HTTP Response Splitting
HTTP Response Splitting - Low Security Level
Solution:
*Note: I am using BurpSuite pre configured browser, in case if you are not using the pre configured browser then please configure the browser with proxy and then follow the below steps.
** In this lesson we have to get the new line detected warning...
Step 1. Click on blog and let the request pass through BurpSuite.
Step 2. Find GET /bWAPP/http_response_splitting.php?url=http://itsecgames.blogspot.com HTTP/1.1
Add the below payload as shown in the video
Payload - %0AReferer%3Agoogle.com
Step 3. Forward the request in BurpSuite and go to the web browser and check the response, you will find the new line detected warning...
PseudoTime
