Forum Discussion

Cirrus

Sep 13, 2019

Double Sostitution Vulnerability

Hi all, today I'm focusing on the double sostitution vulnerability explained here https://support.f5.com/csp/article/K15650046 and reviewing my code but it's not clear to me what I should change or...

Cirrus

Sep 13, 2019

Thank you gersbah to share your knowledge, it would be useful an F5 dedicated article or lightboard lesson on how to prevent this with examples.

Luca

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Double Sostitution Vulnerability

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Double Trouble: Multiple Controllers Handling the Same Kubernetes LoadBalancer Service

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

Mitigating Apache Struts Double OGNL Evaluation Vulnerability (S2-059 / CVE-2019-0230)

BYOEDR, Undetectable backdoor, WhoFi, Cyberattack to airline, and Clickjacking vulnerability

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS