Forum Discussion

Cirrus

Sep 13, 2019

Double Sostitution Vulnerability

Hi all, today I'm focusing on the double sostitution vulnerability explained here https://support.f5.com/csp/article/K15650046 and reviewing my code but it's not clear to me what I should change or...

Cirrus

Sep 13, 2019

Thank you gersbah to share your knowledge, it would be useful an F5 dedicated article or lightboard lesson on how to prevent this with examples.

Luca

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Double Sostitution Vulnerability

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

TCPDUMP in BigIP for traffic coming from distrbuited cloud.

Adding my Product and support to bigF5 account

Illigal Parameter addition as custom signature set wanted to Unblock

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

Double Trouble: Multiple Controllers Handling the Same Kubernetes LoadBalancer Service

Mitigating Apache Struts Double OGNL Evaluation Vulnerability (S2-059 / CVE-2019-0230)

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

Coordinated Vulnerability Disclosure: A Balanced Approach

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS