Pentest Reference: HTTP Request SmugglingPublished Feb 20, 2022ContentsReferencesReferences Portswigger: HTTP Request Smugglingh2c Smuggling: Request Smuggling Via HTTP/2 Cleartext (h2c)XXE-scape through the front door: circumventing the firewall with HTTP request smugglingAccount takeover via HTTP Request SmugglingHTTP Desync Attacks: Request Smuggling RebornHTTP Request Smuggling + IDOR
ContentsReferencesReferences Portswigger: HTTP Request Smugglingh2c Smuggling: Request Smuggling Via HTTP/2 Cleartext (h2c)XXE-scape through the front door: circumventing the firewall with HTTP request smugglingAccount takeover via HTTP Request SmugglingHTTP Desync Attacks: Request Smuggling RebornHTTP Request Smuggling + IDOR