You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
First of all, thank you for using our plugin after all this time.
Technologies are rapidly evolving, but bugs remain. I think "XSS in Headers" in this case related to CRLF injection. The are many cases and various techniques , when user can manipulate with this type of vulnerability in order to escalate it to XSS or use for web cache poisoning. I am agree with you that these days It's hardly even face with CRLF injection, but who knows?
Thank you for your Pull-Request. Wouldn't it be better to make this option adjustable? In that case user could easily switch, depending on their needs.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
My burp is getting flooded by shitty false positives, so submit this. Feel free to ask me for adjusting