CWE-644 - Improper Neutralization of HTTP Headers for Scripting Syntax


The application does not neutralize or incorrectly neutralizes web scripting syntax in HTTP headers that can be used by web browser components that can process raw headers, such as Flash.

Latest vulnerabilities for CWE-644


Description of CWE-644 on Mitre website