[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Thirdparty site authorization header leak in mirror/wget
From: |
王念 |
Subject: |
Thirdparty site authorization header leak in mirror/wget |
Date: |
Thu, 09 Jun 2022 17:12:40 +0800 |
wget does not filter the redirected request header, and will pass the
Authorization request header of the first request to the redirected service,
resulting in the leakage of the Authorization request
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- Thirdparty site authorization header leak in mirror/wget,
王念 <=