2021-09-06 10:43:17 +00:00
id : openvpn-hhi
info :
name : OpenVPN Host Header Injection
author : twitter.com/Dheerajmadhukar
2021-10-19 10:17:58 +00:00
description : A vulnerability in OpenVPN Access Server allows remote attackers to inject arbitrary redirection URLs by using the 'Host' HTTP header field.
2021-09-06 10:43:17 +00:00
severity : info
2021-09-06 11:45:30 +00:00
tags : openvpn,hostheader-injection
2021-09-06 10:43:17 +00:00
requests :
- raw :
- |
GET / HTTP/1.1
Host : {{randstr}}.tld
matchers-condition : and
matchers :
- type : word
words :
- "https://{{randstr}}.tld/__session_start__/"
- "openvpn_sess"
part : header
condition : and
- type : status
status :
- 302