Skip to content

Sections

Maps Timeline Graph Cosmos Life Culture Innovation People Climate Trends Art

© 2026 Vinony · Knowledge from Wikipedia, Wikidata, and 27 public APIs.

HTTP header injection · Vinony

EntityQ1592277· pop 5· linked from 34 articles

HTTP header injection

Sign in to save

web application vulnerability that occurs when HTTP headers are dynamically generated from user input; can allow for HTTP response splitting, session fixation (via Set-Cookie), cross-site scripting, and malicious redirect attacks

Connections

list of HTTP status codes

cross-site scripting

list of HTTP header fields

web application

browser extension

451 Unavailable For Legal Reasons

QUIC AES_128GCM

301 Moved Permanently

Categories

Hypertext Transfer Protocol headers Web security exploits

Sources

wikipedia.externallinksexternallink

What links here34 pages

Email injection

Digest access authentication

HTTP persistent connection

HTTP Public Key Pinning

basic access authentication

301 Moved Permanently

X-Forwarded-For

Cache Array Routing Protocol

Secure Hypertext Transfer Protocol

451 Unavailable For Legal Reasons

HTTP compression

HTTP response splitting

content negotiation

HTTP pipelining

Similar entities

Discovered by embedding cosine similarity (sentence-transformers MiniLM, 384-dim).

HTTP response splitting

Entitydist 0.30

cross-site request forgery

Entitydist 0.36

HTTP pipelining

Entitydist 0.54

front controller

Entitydist 0.57

cross-site tracing

Entitydist 0.59

website monitoring

Entitydist 0.60

buffer overflow

Entitydist 0.61

Encapsulating Security Payload

Entitydist 0.61

Entitydist 0.64

blood-borne disease

Entitydist 0.65

buffer overflow protection

Entitydist 0.65

Entitydist 0.67