CWE-644
Improper Neutralization of HTTP Headers for Scripting Syntax
The product does not neutralize or incorrectly neutralizes web scripting syntax in HTTP headers that can be used by web browser components that can process raw headers, such as Flash.
Official CWE-644 definition at MITREImpactr finds and proves weaknesses like CWE-644 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist