HTTP Response Splitting

70 Points  

Old vulnerability... but powerful !

Author

Arod,  

Level  Difficulty

Validations

698 Challengers 1%

Note  Notation

1
2
3
4
5
111 Votes
To reach this part of the site please login

Solution 1 Solution

Display solutions Submit a solution

Challenge Results Challenge Results

Pseudo Challenge Lang date
arch3r   HTTP Response Splitting en 18 September 2019 at 20:57
thepouet   HTTP Response Splitting fr 18 September 2019 at 20:32
Derichneumon   HTTP Response Splitting en 18 September 2019 at 18:50
Carbonara   HTTP Response Splitting fr 15 September 2019 at 17:10
cya-st   HTTP Response Splitting en 14 September 2019 at 00:31
skillseries   HTTP Response Splitting fr 13 September 2019 at 18:12
Link   HTTP Response Splitting fr 13 September 2019 at 14:01
MJkram   HTTP Response Splitting en 13 September 2019 at 11:07
aasuuraa   HTTP Response Splitting fr 12 September 2019 at 23:35
Sacriyana   HTTP Response Splitting fr 12 September 2019 at 01:05

Challenges associated with this section 19 Challenges

Results Challenge's Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution
pas_valide HTML - disabled buttons 30% 43524 5 Final 8
pas_valide Javascript - Authentication 42% 61832 5 g0uZ 8
pas_valide Javascript - Source 41% 59616 5 g0uZ 4
pas_valide Javascript - Authentication 2 36% 53434 10 na5sim 3
pas_valide Javascript - Obfuscation 1 35% 52054 10 Hel0ck 9
pas_valide Javascript - Obfuscation 2 31% 44841 10 Hel0ck 6
pas_valide Javascript - Native code 21% 30483 15 g0uZ 5
pas_valide Javascript - Obfuscation 3 17% 24632 30 Hel0ck 7
pas_valide XSS - Stored 1 10% 14332 30 g0uZ 9
pas_valide CSRF - 0 protection 6% 7734 35 sambecks 8
pas_valide Flash - Authentication 3% 3158 40 koma 1
pas_valide CSRF - token bypass 2% 2528 45 sambecks 7
pas_valide XSS - Reflected 1% 1247 45 pickle 3
pas_valide Javascript - Obfuscation 4 3% 3145 50 aaSSfxxx 3
pas_valide XSS - Stored 2 3% 3624 50 g0uZ 5
pas_valide HTTP Response Splitting 1% 698 70 Arod 1
pas_valide Javascript - Obfuscation 5 1% 371 70 Hel0ck 3
pas_valide XSS - Stored - filter bypass 1% 561 80 Arod, sambecks 5
pas_valide XSS - DOM Based 1% 256 85 vic 4