{"published":"2025-09-16 16:59:27","author_name":"ThisIsOne","url":"https://cysec148.hatenablog.com/entry/2025/09/16/165927","blog_title":"Shikata Ga Nai","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2025%2F09%2F16%2F165927\" title=\"Lab: HTTP request smuggling, confirming a CL.TE vulnerability via differential responses - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","categories":["Web Security Academy","Smuggling"],"type":"rich","height":"190","width":"100%","blog_url":"https://cysec148.hatenablog.com/","provider_name":"Hatena Blog","provider_url":"https://hatena.blog","title":"Lab: HTTP request smuggling, confirming a CL.TE vulnerability via differential responses","version":"1.0","image_url":null,"author_url":"https://blog.hatena.ne.jp/ThisIsOne/","description":"Hello there, ('\u03c9')\u30ce \u80cc\u666f\u306e\u76f4\u611f\uff08\u306a\u305c\u52d5\u304f\u306e\u304b\u3001\u565b\u307f\u7815\u3044\u305f\u8aac\u660e\uff09 HTTP/1.1 \u3067\u306f\u300c\u30ea\u30af\u30a8\u30b9\u30c8\u306e\u7d42\u308f\u308a\u300d\u3092\u6c7a\u3081\u308b\u65b9\u6cd5\u304c\u4e3b\u306b Content-Length\uff08\u30dc\u30c7\u30a3\u306e\u30d0\u30a4\u30c8\u9577\u3092\u660e\u793a\uff09\u3068 Transfer-Encoding: chunked\uff08\u30c1\u30e3\u30f3\u30af\u3067\u533a\u5207\u308b\uff09\u306e 2 \u7a2e\u985e\u3042\u308a\u307e\u3059\u3002 \u30d5\u30ed\u30f3\u30c8\uff08\u30ed\u30fc\u30c9\u30d0\u30e9\u30f3\u30b5\u7b49\uff09 \u3068 \u30d0\u30c3\u30af\uff08\u30a2\u30d7\u30ea\u30b5\u30fc\u30d0\u7b49\uff09 \u304c\u3069\u3061\u3089\u3092\u300c\u6b63\u3057\u3044\u7d42\u7aef\u300d\u3068\u898b\u308b\u304b\u304c\u9055\u3046\u3068\u3001\u540c\u3058\u751f\u30c7\u30fc\u30bf\u5217\u3092\u5225\u3005\u306b\u5207\u308a\u5206\u3051\u3066\u8aad\u307f\u53d6\u3063\u3066\u3057\u307e\u3044\u307e\u3059\u3002 CL.TE \u306e\u5834\u5408\uff1a\u30d5\u30ed\u30f3\u30c8\u306f Content-Length \u3092\u4fe1\u3058\u3066\u300c\u3053\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u306f\u3053\u3053\u3067\u7d42\u308f\u308a\u300d\u3068\u5224\u65ad\u3057\u3001\u30d0\u30c3\u30af\u3078\u305d\u306e\u307e\u307e\u9001\u308b\u3002\u3057\u304b\u3057\u2026"}