HTTP header smuggling attack against AWS API Gateway exposes systems to cache poisoning
The header smuggling method by Daniel Thatcher creates a mutation in a header request designed to be sent through to backend infrastructure without being processed by a trusted frontend service.