In this section we will talk about some new HTTP Attacks.
What is CRLF Injection?
The term CRLF consists of the name of the two control characters Carriage Return (CR) and Line Feed (LF)that mark the beginning of a new line. CRLF injection thus refers to the injection of new lines in places where the beginning of a new line has a special semantic meaning and no proper sanitization is implemented. Examples include the injection of data into log files and the injection of headers into protocols such as HTTP or SMTP, as headers are typically separated by a newline.