Research Update Enhanced src/pentesting-web/cache-deception/...

[carlospolop]

🤖 Automated Content Update

This PR was automatically generated by the HackTricks News Bot based on a technical blog post.

📝 Source Information

• Blog URL:
• Blog Title: Research Update Enhanced src/pentesting-web/cache-deception/cache-poisoning-to-dos.md
• Suggested Section: Research

🎯 Content Summary

Research Update for src/pentesting-web/cache-deception/cache-poisoning-to-dos.md

This PR contains automated research updates including:

• Latest security vulnerabilities and attack vectors
• Updated techniques and tools
• Enhanced explanations and examples
• Additional references and resources

Generated by: HackTricks Research Agent
Timestamp: 2026-05-15 04:06:44 U...

🔧 Technical Details

Research update for HackTricks content

🤖 Agent Actions

Done — I updated /tmp/hacktricks_update_xq7wcq98/repo/src/pentesting-web/cache-deception/cache-poisoning-to-dos.md.

What I changed

• Added a safer 3-step validation flow (baseline -> poison -> validation) with practical cache-header checks.
• Cleaned up and expanded the existing CPDoS primitives: HHO, HMC/unexpected values, unkeyed error-triggering headers, HMO, unkeyed port, long redirects, host-case normalization, path/static-rule confusion, and fat GET.
• Added a short modern framework/internal cache poisoning section so the page also covers cached 204, zero-length 200, and s-maxage / stale-while-revalidate style failures seen in recent Next.js cache-poisoning DoS work.
• Added internal links to the URL discrepancies page and the Next.js page to avoid duplicating broader content, and reduced the external references to 2 high-value sources. (vercel.com)

Validation

• Internal links resolve.
• Code fences are balanced.
• ## References is the last heading.
• mdbook build could not be run here because mdbook is not installed.

Research URLs used

https://portswigger.net/research/responsible-denial-of-service-with-web-cache-poisoning
https://portswigger.net/research/gotta-cache-em-all
https://cpdos.org/
https://cpdos.org/paper/Your_Cache_Has_Fallen__Cache_Poisoned_Denial_of_Service_Attack__Preprint_.pdf
https://www.jianjunchen.com/p/web-cache-posioning.CCS24.pdf
https://github.com/advisories/GHSA-gp8f-8m3g-qvj9
https://github.com/advisories/GHSA-67rr-84xm-4c7r
https://vercel.com/changelog/cve-2025-49826
https://zhero-web-sec.github.io/research-and-things/nextjs-cache-and-chains-the-stale-elixir
https://zhero-web-sec.github.io/research-and-things/eclipse-on-nextjs-conditioned-exploitation-of-an-intended-race-condition

---

This PR was automatically created by the HackTricks Feed Bot. Please review the changes carefully before merging.

📚 Repository Maintenance

• MD files processed: 974
• MD files fixed: 1

All .md files have been checked for proper formatting (headers, includes, etc.).

[carlospolop]

🔗 Additional Context

Original Blog Post:

Content Categories: Based on the analysis, this content was categorized under "Research".

Repository Maintenance:

• MD Files Formatting: 974 files processed (1 files fixed)

Review Notes:

• This content was automatically processed and may require human review for accuracy
• Check that the placement within the repository structure is appropriate
• Verify that all technical details are correct and up-to-date
• All .md files have been checked for proper formatting (headers, includes, etc.)

Bot Version: HackTricks News Bot v1.0