CRLF Injection and HTTP Response Splitting Vulnerability

When a browser sends a request to the server, the server response contains HTTP headers along with HTML response, i.e., the actual website content. Between HTTP headers and HTML responses, there is a special combination of characters that separate them. These characters are called as a carriage return and line feed, or in short, CRLF.  Web servers use … Continued