Security Hero Rotating Header Image

HOST header manipulation

HOST header manipulation

Posted by on Apr 23

I’m reviewing the authentication process of a web application. It appears
there is a reverse proxy in front of the app that utilizes an auth
framework. A request for a URL protected by the reverse proxy results in
multiple redirects that eventually return a login form. The original URL


One Comment

  1. "Penetration Testing (pen-test) Mailing List" says:

    Re: HOST header manipulation

    Posted by Matt Hellman on Apr 26

    Maybe a shorter version of my question will help:

    Let’s say I have an application that is vulnerable to HOST header
    manipulation. In this case, it’s an issue with the authentication
    process that eventually appends a session ID to a redirect based on the
    HOST header. It could be a XSS…


Leave a Reply

Your email address will not be published. Required fields are marked *