Forum Discussion

Cirrus

Sep 13, 2019

Double Sostitution Vulnerability

Hi all, today I'm focusing on the double sostitution vulnerability explained here https://support.f5.com/csp/article/K15650046 and reviewing my code but it's not clear to me what I should change or...

Cirrus

Sep 13, 2019

Thank you gersbah to share your knowledge, it would be useful an F5 dedicated article or lightboard lesson on how to prevent this with examples.

Luca

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Double Sostitution Vulnerability

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

About F5 idle timeout and keep-alive

Problem with sending BotDefense logs to remote server

OSPF traps on BIG-IP v14

[APM] - How to clear the cached certificate for specific url

Fireeye AX integration with F5 via API.

Related Content

Mitigating Apache Camel Vulnerability CVE-2025–27636 with F5 Products

Phishing, Malware and Spyware Campaign, BRUTED Tool & CISA’s List Of Exploited Vulnerabilities

Mitigating Apache Struts Double OGNL Evaluation Vulnerability (S2-059 / CVE-2019-0230)

Windows Critical RCE Vulnerability, Malicious Solana-py, and EDRKillShifter

Coordinated Vulnerability Disclosure: A Balanced Approach

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS