68,125 questions
0
votes
0
answers
19
views
I don't fully understand the difference between CL.TE and TE.CL in HTTP request smuggling
I am doing labs in PortSwigger and the topic is HTTP request smuggling. And I am working on CL.TE and TE.CL. And for these labs :
https://portswigger.net/web-security/request-smuggling/exploiting/lab-...
0
votes
0
answers
23
views
Daraja API (Safacricom) B2C payment flutter api call error [closed]
I'm currently developing a payment module in Flutter and using M-Pesa’s B2C API. This is the code for the B2C call future function:
Future<Map<String, dynamic>> b2cPayment({
required ...
0
votes
1
answer
21
views
Allowing a filter query in a PUT endpoint that updates a set
I'm designing a REST API that provides an integration layer to an underlying system I have no control over.
Without going in to detail, in this system, there are products with default prices. A custom ...
- 31
-3
votes
1
answer
31
views
HTTP 400 error when attempting to sort column [closed]
phpMyAdmin 5.2.2 and 5.2.3 (possibly prior versions also) throw a 400 error when attempting to sort on a column in a table. I traced the problem to the inclusion of a line-feed in the sql_query ...
- 43
-4
votes
1
answer
19
views
On Contabo VPS, even after updating IPTABLES and Firewall to open port 80, incoming traffic becomes inaccessible [closed]
On Contabo VPS, even after updating IPTABLES and Firewall to open port 80, incoming traffic becomes inaccessible. localhost:80 (from VPS) works but accessing vps through the public ip fails at port 80....
- 11.3k
0
votes
0
answers
23
views
Cannot get client running on React to send HttpOnly Cookie with JWT back to SpringBoot Server
I'm at my wits end here. The browser is not providing the cookie on my fetch() request. I'm running a SpringBoot server on port 8081 and have set up my CORS like so:
@Bean
CorsConfigurationSource ...
-4
votes
0
answers
44
views
Running sqlmap with difficult parameter [closed]
I am running sqlmap with request:
POST /some/endpoint HTTP/1.1
Host: [HOST]
Accept-Language: ru-RU,ru;q=0.9
Content-Type: application/x-www-form-urlencoded;charset=UTF-8
Accept: */*
Connection: keep-...
-8
votes
0
answers
60
views
JS Slow http request [closed]
I have a website that is selling some products online, and every day there are updates. I try to be the first that is getting those products, and I created a bot in JS run by tampermonkey to make this ...
-2
votes
1
answer
32
views
Got a https licence for my webapp and reconfigured the frontend for it, but now the backend no longer works, no matter what I do [closed]
I have a webapplication deployed, and it worked just fine while I it run on http. However now that the frontend is https, it will no longer connect to the backend, no matter what.
If I leave the ...
2
votes
1
answer
87
views
Why am I getting a different HTTP response for a seemingly same request between curl, C# HttpClient Win10 and C# HttpClient Win11
I'm trying to download a webpage from a specific website (Bandcamp). I'm getting different results although the request seems the same:
On Windows 10, using a HttpClient in C#: I'm getting "...
- 18.8k
0
votes
1
answer
45
views
Webhook requires pooling on client side after data is pushed to webhook endpoint?
I do not understand the real difference between webhooks and traditional pooling of endpoints because to me webhooks still require pooling.
**Traditional case: Client asks, server tells
**
In a ...
- 13
2
votes
0
answers
43
views
optional query parameter in http signature of proto rpc is not mapped as expected
I was under the impression that given an rpc like below
rpc FetchResource(GetResourceRequest) returns (ResourceResponse) {
option (google.api.http) = {get: "/v1/resource/{resource_id}/group&...
- 422
0
votes
1
answer
53
views
Is it possible to paste Multi-Line Long text into HTTP Response?
I am trying to pass text like
"Video Transmission & internal Recording
No Filters
1x 11 Handheld Monitor 1x 19 Monitor"
--> so 5 and more likes with several empty line inbetween as ...
0
votes
1
answer
58
views
HTTP Request Through Ncat in Powershell Windows
I am using Ncat to send raw HTTP requests to the backend JS server. I will add here the backend and frontend files. We write ourselves, which is the goal of the task.
I have installed Ncat and I send ...
0
votes
0
answers
58
views
How to remove header 'Host' using supertest
I have condiiton in my http server that check if req.headers["host"] is undefined or not. I am using supertest and mocha to send GET request. I tried to use unset("Host"), but ...
- 1