nuclei-templates/http/vulnerabilities/generic/host-header-injection.yaml

37 lines
1.1 KiB
YAML
Raw Normal View History

2021-09-06 11:44:27 +00:00
id: host-header-injection
info:
name: Host Header Injection
author: princechaddha
severity: info
description: HTTP header injection is a general class of web application security vulnerability which occurs when Hypertext Transfer Protocol headers are dynamically generated based on user input.
reference:
- https://portswigger.net/web-security/host-header
- https://portswigger.net/web-security/host-header/exploiting
- https://www.acunetix.com/blog/articles/automated-detection-of-host-header-attacks/
metadata:
max-request: 1
2023-10-14 11:27:55 +00:00
tags: hostheader-injection,generic
2021-09-06 11:44:27 +00:00
http:
2021-09-06 11:44:27 +00:00
- method: GET
path:
- "{{BaseURL}}"
headers:
Host: "{{randstr}}.tld"
matchers-condition: and
matchers:
- type: word
words:
- '{{randstr}}.tld'
part: body
condition: and
- type: status
status:
- 200
# digest: 4a0a0047304502201a0cc6aa14324abed4760ca7f6da7f4065e07829db8c3b192970e373442dbff8022100dfd44946482ffe26a42582ca0bacb224bd8996b85fb13b37bef17869a7780f91:922c64590222798bb761d5b6d8e72950