mirror of
https://github.com/swisskyrepo/PayloadsAllTheThings.git
synced 2024-12-24 05:15:26 +00:00
commit
976403034c
@ -1,8 +1,16 @@
|
|||||||
# CRLF
|
# CRLF
|
||||||
|
|
||||||
The term CRLF refers to Carriage Return (ASCII 13, \r) Line Feed (ASCII 10, \n). They're used to note the termination of a line, however, dealt with differently in today’s popular Operating Systems. For example: in Windows both a CR and LF are required to note the end of a line, whereas in Linux/UNIX a LF is only required. In the HTTP protocol, the CR-LF sequence is always used to terminate a line.
|
>The term CRLF refers to Carriage Return (ASCII 13, \r) Line Feed (ASCII 10, \n). They're used to note the termination of a line, however, dealt with differently in today’s popular Operating Systems. For example: in Windows both a CR and LF are required to note the end of a line, whereas in Linux/UNIX a LF is only required. In the HTTP protocol, the CR-LF sequence is always used to terminate a line.
|
||||||
|
|
||||||
A CRLF Injection attack occurs when a user manages to submit a CRLF into an application. This is most commonly done by modifying an HTTP parameter or URL.
|
>A CRLF Injection attack occurs when a user manages to submit a CRLF into an application. This is most commonly done by modifying an HTTP parameter or URL.
|
||||||
|
|
||||||
|
## Summary
|
||||||
|
|
||||||
|
- [CRLF - Add a cookie](#crlf---add-a-cookie)
|
||||||
|
- [CRLF - Add a cookie - XSS Bypass](#crlf---add-a-cookie---xss-bypass)
|
||||||
|
- [CRLF - Write HTML](#crlf---write-html)
|
||||||
|
- [CRLF - Filter Bypass](#crlf---filter-bypass)
|
||||||
|
- [References](#references)
|
||||||
|
|
||||||
## CRLF - Add a cookie
|
## CRLF - Add a cookie
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user