HTTP Response Splitting

70 Points  0x0

Old vulnerability... but powerful !

Author

Arod,  

Level  Difficulty

Validations

1617 Challengers 1%

Note  Notation

1
2
3
4
5
186 Votes

To reach this part of the site please login

 3 Solutions

Display solutions Submit a solution

Challenge Results Challenge Results

Pseudo Challenge Lang Date
truff   HTTP Response Splitting 26 January 2022 at 11:39
Twinki   HTTP Response Splitting 25 January 2022 at 07:25
RAW_Captain   HTTP Response Splitting 24 January 2022 at 13:27
apuromafo   HTTP Response Splitting 23 January 2022 at 00:50
yuki   HTTP Response Splitting 20 January 2022 at 15:59
whitehat42   HTTP Response Splitting 17 January 2022 at 18:42
rms92   HTTP Response Splitting 13 January 2022 at 18:35
pandatus   HTTP Response Splitting 11 January 2022 at 12:51
alexandre.fl   HTTP Response Splitting 10 January 2022 at 20:40
RJSOG   HTTP Response Splitting 9 January 2022 at 11:45

 29 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 40% 98378 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 46% 112469 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 107111 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 97190 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 38% 92836 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 79641 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 56827 15 g0uZ 7 13 March 2011
pas_valide Javascript - Webpack 6% 12548 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 44456 30 Hel0ck 8 4 February 2011
pas_valide Web Socket - 0 protection 1% 386 30 Worty 1 22 October 2021
pas_valide XSS - Stored 1 11% 26052 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 1899 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 14534 35 sambecks 8 16 February 2016
pas_valide XSS DOM Based - Introduction 1% 1183 35 Ruulian 2 12 August 2021
pas_valide Flash - Authentication 3% 5081 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 323 40 Ruulian 1 12 August 2021
pas_valide XSS DOM Based - Eval 1% 425 40 Ruulian 3 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 704 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 618 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5198 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 3705 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 409 50 CanardMandarin 1 27 October 2020
pas_valide Javascript - Obfuscation 4 3% 5110 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6063 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 439 50 Ruulian 4 12 August 2021
pas_valide HTTP Response Splitting 1% 1616 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 597 70 Hel0ck 3 4 February 2011
pas_valide XSS - Stored - filter bypass 1% 989 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 552 85 vic 6 24 December 2016