423 visitors now

Newest members :

Chatbox

john white
26 January 2020 at 09:51

vulnix machine - not getting ssh after make new user and pest ssh rsa key
john white
26 January 2020 at 09:51

vulnix machine - not getting ssh after make new user and pest ssh rsa key
nonstandardmodel
25 January 2020 at 19:26

@john white .. I am not preparing yet .. but it is planned (payed by my work-place I hope) :)

>

Refresh

Newsletter

Sponsored by

HTTP Response Splitting

70 Points

Old vulnerability... but powerful !

Author

Arod, 7 November 2013

Level

Validations

897 Challengers 1%

Note

128 Votes

To reach this part of the site please login

3 Solutions

Display solutions Submit a solution

Challenge Results

Pseudo	Challenge	Lang	date
client9784	HTTP Response Splitting		25 January 2020 at 23:13
Ch3n4p4N	HTTP Response Splitting		24 January 2020 at 23:20
Keny Arkana	HTTP Response Splitting		24 January 2020 at 19:00
Waltyon	HTTP Response Splitting		23 January 2020 at 19:55
Alex	HTTP Response Splitting		21 January 2020 at 18:55
wahib	HTTP Response Splitting		21 January 2020 at 17:17
Geot	HTTP Response Splitting		19 January 2020 at 12:41
Kop4c4b4n4	HTTP Response Splitting		19 January 2020 at 07:29
lutzenfried	HTTP Response Splitting		17 January 2020 at 04:24
schlecky	HTTP Response Splitting		17 January 2020 at 00:04

0
10
20
30
40
50
60
70
80
...

19 Challenges

Results	Name	Validations	Number of points	Difficulty	Author	Note	Solution
	HTML - disabled buttons	32% 53508	5		Final		8
	Javascript - Authentication	43% 71153	5		g0uZ		8
	Javascript - Source	41% 68364	5		g0uZ		4
	Javascript - Authentication 2	37% 61554	10		na5sim		3
	Javascript - Obfuscation 1	36% 59672	10		Hel0ck		9
	Javascript - Obfuscation 2	31% 51381	10		Hel0ck		6
	Javascript - Native code	21% 34972	15		g0uZ		6
	Javascript - Obfuscation 3	17% 28321	30		Hel0ck		7
	XSS - Stored 1	10% 16489	30		g0uZ		9
	CSRF - 0 protection	6% 9287	35		sambecks		8
	Flash - Authentication	3% 3682	40		koma		1
	CSRF - token bypass	2% 3195	45		sambecks		7
	XSS - Reflected	2% 1861	45		pickle		3
	Javascript - Obfuscation 4	3% 3604	50		aaSSfxxx		4
	XSS - Stored 2	3% 4079	50		g0uZ		5
	HTTP Response Splitting	1% 897	70		Arod		3
	Javascript - Obfuscation 5	1% 407	70		Hel0ck		3
	XSS - Stored - filter bypass	1% 642	80		Arod, sambecks		6
	XSS - DOM Based	1% 292	85		vic		5