Y
Hacker News
new
|
ask
|
show
|
jobs
by
greenleafjacob
3402 days ago
You can smuggle memcached text protocol over HTTP if you can insert a linefeed. I think tptacek meant "bad vulnerability" as in serious, not trivial.
1 comments
homakov
3401 days ago
SSRF usually happens inside a request library that doesn't allow linefeeds. SSRF in general is serious, but HTTP GET SSRF is useless on most hosts.
link