Skip to main content

status_code_poison_header

Function status_code_poison_header 

Source
pub fn status_code_poison_header() -> &'static str
Expand description

Status code poisoning. Cache stores response with 200-status header but body containing 404 content (so victim sees “not found” presented as successful). Operator triggers via attacker header that flips the origin’s branch.