Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
Apache HTTP Server 2.4.53 and earlier may not send the X-Forwarded-* headers to the origin server based on client side Connection header hop-by-hop mechanism. This may be used to bypass IP based authentication on the origin server/application.
No PoCs from references.
- https://github.com/8ctorres/SIND-Practicas
- https://github.com/ARPSyndicate/cvemon
- https://github.com/EzeTauil/Maquina-Upload
- https://github.com/Leviticus-Triage/CVE_Exploit_Framework-s
- https://github.com/NeoOniX/5ATTACK
- https://github.com/PuddinCat/GithubRepoSpider
- https://github.com/Samaritin/OSINT
- https://github.com/Totes5706/TotesHTB
- https://github.com/bioly230/THM_Skynet
- https://github.com/dodiorne/cve-2022-31813
- https://github.com/firatesatoglu/shodanSearch
- https://github.com/kasem545/vulnsearch
- https://github.com/lekctut/sdb-hw-13-01
- https://github.com/pedr0alencar/vlab-metasploitable2
- https://github.com/plzheheplztrying/cve_monitor