Web cache poisoning manipulates caching infrastructure (CDNs, reverse proxies, application caches) to store and serve malicious responses to all users who request the same resource. By identifying unkeyed inputs (headers, cookies, or parameters that the application processes but the cache ignores), an attacker can craft a request that produces a harmful response, which the cache then serves to everyone. Testing identifies unkeyed inputs across all cached endpoints, evaluates whether the application processes headers or parameters that the cache does not include in its key, and tests whether malicious responses can be cached and served.
Technical2027-01-28
Web Cache Poisoning: Turning Caching Infrastructure Into an Attack Vector ສຳລັບວິສາຫະກິດລາວ
Cache poisoning manipulates caching servers to serve malicious content to all users. A sophisticated attack that's often overlooked in testing. Guidance for LA market.