Skip to content

Latest commit

 

History

History
50 lines (49 loc) · 6.57 KB

TOPREQUESTSMUGGLING.md

File metadata and controls

50 lines (49 loc) · 6.57 KB
Raw

Top Request Smuggling reports from HackerOne:

  1. Mass account takeovers using HTTP Request Smuggling on https://slackb.com/ to steal session cookies to Slack - 835 upvotes, $0
  2. Request smuggling on admin-official.line.me could lead to account takeover to LY Corporation - 556 upvotes, $0
  3. Stealing Zomato X-Access-Token: in Bulk using HTTP Request Smuggling on api.zomato.com to Zomato - 545 upvotes, $0
  4. Password theft login.newrelic.com via Request Smuggling to New Relic - 490 upvotes, $3000
  5. HTTP Request Smuggling via HTTP/2 to Basecamp - 291 upvotes, $7500
  6. HTTP request Smuggling to Helium - 289 upvotes, $0
  7. HTTP request smuggling (?) canpol.deti.mail.ru to Mail.ru - 241 upvotes, $5000
  8. HTTP Request Smuggling on https://labs.data.gov to GSA Bounty - 150 upvotes, $750
  9. HTTP Request Smuggling at app.workbox.dk to Visma Public - 139 upvotes, $500
  10. HTTP Request Smuggling due to CR-to-Hyphen conversion to Node.js - 132 upvotes, $0
  11. HTTP Request Smuggling on vpn.lob.com to Lob - 123 upvotes, $500
  12. HTTP Request Smuggling in Transform Rules using hexadecimal escape sequences in the concat() function to Cloudflare Public Bug Bounty - 107 upvotes, $6000
  13. HTTP request smuggling using malformed Transfer-Encoding header to Node.js - 102 upvotes, $0
  14. Possibility of Request smuggling attack to Internet Bug Bounty - 90 upvotes, $4660
  15. Potential HTTP Request Smuggling in ruby webrick to Ruby - 52 upvotes, $500
  16. CVE-2024-21733 Apache Tomcat HTTP Request Smuggling (Client- Side Desync) (CWE: 444) to Internet Bug Bounty - 51 upvotes, $4660
  17. Request Smuggling in Apache Tomcat (Important, CVE-2023-45648) to Internet Bug Bounty - 48 upvotes, $4660
  18. HTTP request smuggling with Origin Rules using newlines in the host_header action parameter to Cloudflare Public Bug Bounty - 44 upvotes, $3100
  19. HTTP Request Smuggling to U.S. Dept Of Defense - 40 upvotes, $0
  20. Potential HTTP Request Smuggling in nodejs to Node.js - 31 upvotes, $250
  21. HTTP Request Smuggling on api.flocktory.com Leads to XSS on Customer Sites to QIWI - 29 upvotes, $0
  22. Request smuggling on ████████ to U.S. Dept Of Defense - 24 upvotes, $0
  23. Unauthenticated request smuggling on launchpad.37signals.com to Basecamp - 22 upvotes, $1737
  24. Apache HTTP Server: mod_proxy_ajp: Possible request smuggling to Internet Bug Bounty - 21 upvotes, $2400
  25. http request smuggling in pscp.tv and periscope.tv to X (Formerly Twitter) - 21 upvotes, $560
  26. HTTP request smuggling on Basecamp 2 allows web cache poisoning to Basecamp - 20 upvotes, $1700
  27. Request Smuggling vulnerability due a vulnerable skipper reverse proxy running in the environment. to Razer - 18 upvotes, $375
  28. HTTP Request Smuggling due to accepting space before colon to Node.js - 18 upvotes, $250
  29. HTTP Request Smuggling Due to Incorrect Parsing of Header Fields to Internet Bug Bounty - 15 upvotes, $1800
  30. http request smuggling in twitter.com to X (Formerly Twitter) - 15 upvotes, $0
  31. HTTP Request Smuggling via Empty headers separated by CR to Internet Bug Bounty - 14 upvotes, $1800
  32. [demo.stripo.email] HTTP request Smuggling to Stripo Inc - 13 upvotes, $0
  33. HTTP Request Smuggling via Content Length Obfuscation to Node.js - 13 upvotes, $0
  34. HTTP Request Smuggling to Brave Software - 12 upvotes, $0
  35. CVE-2022-32213 - HTTP Request Smuggling Due to Flawed Parsing of Transfer-Encoding to Internet Bug Bounty - 11 upvotes, $1800
  36. HTTP Request Smuggling on my.stripo.email to Stripo Inc - 11 upvotes, $0
  37. HTTP Request Smuggling on https://promosandbox.acronis.com to Acronis - 10 upvotes, $0
  38. HTTP Request Smuggling on https://consumer.acronis.com to Acronis - 10 upvotes, $0
  39. CVE-2022-32214 - HTTP Request Smuggling Due To Improper Delimiting of Header Fields to Internet Bug Bounty - 9 upvotes, $1800
  40. HTTP Request Smuggling to JamieWeb - 9 upvotes, $0
  41. HTTP Request Smuggling Due To Improper Delimiting of Header Fields to Node.js - 7 upvotes, $0
  42. HTTP Request Smuggling via Empty headers separated by CR to Node.js - 7 upvotes, $0
  43. HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding (improper fix for CVE-2022-32215) to Node.js - 6 upvotes, $0
  44. HTTP Request Smuggling Due to Incorrect Parsing of Header Fields to Node.js - 6 upvotes, $0
  45. HTTP Request Smuggling due to ignoring chunk extensions to Node.js - 5 upvotes, $250
  46. HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding to Node.js - 5 upvotes, $0
  47. HTTP Request Smuggling Due to Flawed Parsing of Transfer-Encoding to Node.js - 5 upvotes, $0
  48. CVE-2022-32215 - HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding to Internet Bug Bounty - 4 upvotes, $1800