goliath
summary
HTTP Request Smuggling
affected versions
*
severity
5.9

Overview

goliath is an Async framework for writing API servers.

It is possible to conductHTTP Request Smuggling attacks where goliath is used as part of a chain of backend servers due to insufficient Content-Length and Transfer Encoding parsing.

References

Cash
$25
XP
590

Popularity
226

2.46K
344.31K