Date: Fri, 11 Sep 2020 15:11:55 GMT
<p>Jake Miller a security researcher discovered a serious flaw in proxies that allow h2c clear text upgrade and bypass proxy rules. Let us discuss</p> <p>Thanks to @Textras for sending this article!</p> <p>https://twitter.com/thebumblesec/status/1303305853525725184?s=21</p> <p><a href="https://labs.bishopfox.com/tech-blog/h2c-smuggling-request-smuggling-via-http/2-cleartext-h2c?hs_amp=true">https://labs.bishopfox.com/tech-blog/h2c-smuggling-request-smuggling-via-http/2-cleartext-h2c?hs_amp=true</a></p>