Under Attack?
Search
Menu

Cache Key Injection

Cache keys are parts of an HTTP request that the cache will use to uniquely identify a response. Typically, a cache key consists of the values of one or more response headers as well as the whole or part of the URL path. Cache key injection, or, in the case of being abused by hackers, “Cache key poisoning”, is the act of identifying a vulnerability in the web cache contents and exploiting it through injection of a malicious script tag into a page and then storing the page in the cache. By doing this an attacker will be able to turn a reflected header XSS into a stored XSS that will last until the cache entry expires.
Document

Eliminating Security Blind Spots in an Age of Technological Change

Radware's ninth annual Global Application & Network Security report analyzes the challenges faced by organizations as they seek to balance agility with cybersecurity.

Read more

Contact Radware Sales

Our experts will answer your questions, assess your needs, and help you understand which products are best for your business.

Contact Us Now

Already a Customer?

We’re ready to help, whether you need support, additional services, or answers to your questions about our products and solutions.

Locations
Get Answers Now from KnowledgeBase
Get Free Online Product Training
Engage with Radware Technical Support
Join the Radware Customer Program

Get Social

Connect with experts and join the conversation about Radware technologies.

Blog
Security Research Center
CyberPedia

Close

What are you looking for?