Possible content spoofing due to missing error page
Unknown
Vulnerability Details
the domain https://www.legalrobot-uat.com is vulnerable to content spoofing.
visit the following link for POC.
https://www.legalrobot-uat.com/%0D%0AContent-Type%3A%20text%2Fhtml%0D%0A%0D%0AIt%20has%20been%20changed%20by%20a%20new%20one%20https://www.Attacker.com%20so%20go%20to%20the%20new%20one%20since%20this%20one
kindly find attached image.
Actions
View on HackerOneReport Stats
- Report ID: 164137
- State: Closed
- Substate: resolved
- Upvotes: 2