Top Request Smuggling reports from HackerOne:
- Mass account takeovers using HTTP Request Smuggling on https://slackb.com/ to steal session cookies to Slack - 835 upvotes, $0
- Request smuggling on admin-official.line.me could lead to account takeover to LY Corporation - 556 upvotes, $0
- Stealing Zomato X-Access-Token: in Bulk using HTTP Request Smuggling on api.zomato.com to Zomato - 545 upvotes, $0
- Password theft login.newrelic.com via Request Smuggling to New Relic - 490 upvotes, $3000
- HTTP Request Smuggling via HTTP/2 to Basecamp - 291 upvotes, $7500
- HTTP request Smuggling to Helium - 289 upvotes, $0
- HTTP request smuggling (?) canpol.deti.mail.ru to Mail.ru - 241 upvotes, $5000
- HTTP Request Smuggling on https://labs.data.gov to GSA Bounty - 150 upvotes, $750
- HTTP Request Smuggling at app.workbox.dk to Visma Public - 139 upvotes, $500
- HTTP Request Smuggling due to CR-to-Hyphen conversion to Node.js - 132 upvotes, $0
- HTTP Request Smuggling on vpn.lob.com to Lob - 123 upvotes, $500
- HTTP Request Smuggling in Transform Rules using hexadecimal escape sequences in the concat() function to Cloudflare Public Bug Bounty - 107 upvotes, $6000
- HTTP request smuggling using malformed Transfer-Encoding header to Node.js - 102 upvotes, $0
- Possibility of Request smuggling attack to Internet Bug Bounty - 90 upvotes, $4660
- Potential HTTP Request Smuggling in ruby webrick to Ruby - 52 upvotes, $500
- CVE-2024-21733 Apache Tomcat HTTP Request Smuggling (Client- Side Desync) (CWE: 444) to Internet Bug Bounty - 51 upvotes, $4660
- Request Smuggling in Apache Tomcat (Important, CVE-2023-45648) to Internet Bug Bounty - 48 upvotes, $4660
- HTTP request smuggling with Origin Rules using newlines in the host_header action parameter to Cloudflare Public Bug Bounty - 44 upvotes, $3100
- HTTP Request Smuggling to U.S. Dept Of Defense - 40 upvotes, $0
- Potential HTTP Request Smuggling in nodejs to Node.js - 31 upvotes, $250
- HTTP Request Smuggling on api.flocktory.com Leads to XSS on Customer Sites to QIWI - 29 upvotes, $0
- Request smuggling on ████████ to U.S. Dept Of Defense - 24 upvotes, $0
- Unauthenticated request smuggling on launchpad.37signals.com to Basecamp - 22 upvotes, $1737
- Apache HTTP Server: mod_proxy_ajp: Possible request smuggling to Internet Bug Bounty - 21 upvotes, $2400
- http request smuggling in pscp.tv and periscope.tv to X (Formerly Twitter) - 21 upvotes, $560
- HTTP request smuggling on Basecamp 2 allows web cache poisoning to Basecamp - 20 upvotes, $1700
- Request Smuggling vulnerability due a vulnerable skipper reverse proxy running in the environment. to Razer - 18 upvotes, $375
- HTTP Request Smuggling due to accepting space before colon to Node.js - 18 upvotes, $250
- HTTP Request Smuggling Due to Incorrect Parsing of Header Fields to Internet Bug Bounty - 15 upvotes, $1800
- http request smuggling in twitter.com to X (Formerly Twitter) - 15 upvotes, $0
- HTTP Request Smuggling via Empty headers separated by CR to Internet Bug Bounty - 14 upvotes, $1800
- [demo.stripo.email] HTTP request Smuggling to Stripo Inc - 13 upvotes, $0
- HTTP Request Smuggling via Content Length Obfuscation to Node.js - 13 upvotes, $0
- HTTP Request Smuggling to Brave Software - 12 upvotes, $0
- CVE-2022-32213 - HTTP Request Smuggling Due to Flawed Parsing of Transfer-Encoding to Internet Bug Bounty - 11 upvotes, $1800
- HTTP Request Smuggling on my.stripo.email to Stripo Inc - 11 upvotes, $0
- HTTP Request Smuggling on https://promosandbox.acronis.com to Acronis - 10 upvotes, $0
- HTTP Request Smuggling on https://consumer.acronis.com to Acronis - 10 upvotes, $0
- CVE-2022-32214 - HTTP Request Smuggling Due To Improper Delimiting of Header Fields to Internet Bug Bounty - 9 upvotes, $1800
- HTTP Request Smuggling to JamieWeb - 9 upvotes, $0
- HTTP Request Smuggling Due To Improper Delimiting of Header Fields to Node.js - 7 upvotes, $0
- HTTP Request Smuggling via Empty headers separated by CR to Node.js - 7 upvotes, $0
- HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding (improper fix for CVE-2022-32215) to Node.js - 6 upvotes, $0
- HTTP Request Smuggling Due to Incorrect Parsing of Header Fields to Node.js - 6 upvotes, $0
- HTTP Request Smuggling due to ignoring chunk extensions to Node.js - 5 upvotes, $250
- HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding to Node.js - 5 upvotes, $0
- HTTP Request Smuggling Due to Flawed Parsing of Transfer-Encoding to Node.js - 5 upvotes, $0
- CVE-2022-32215 - HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding to Internet Bug Bounty - 4 upvotes, $1800