Cache poisoning for okhttp

Disclosed: 2016-08-31 04:05:23 By nvolcz To square-open-source

Unknown

Vulnerability Details

If an attacker can control the Host header this can be used to poison the cache. This becomes extra dangerous if the library were to be used to build a caching proxy.

Actions

View on HackerOne

Report Stats

Report ID: 137756
State: Closed
Substate: informative
Upvotes: 1

Cache poisoning for okhttp

Vulnerability Details

Actions

Report Stats

Share this report