Tag: http-headers

All the articles with the tag "http-headers".

• SQL Injection via X-Forwarded-For Header: Exploiting IP Tracking

  kOaDT

  24 Jan, 2026

  The app tracks visitor IPs via the X-Forwarded-For header and drops the raw value into a SQL query. Here's how to exploit it.