';
}
else{
echo 'Hillstone Networks ';
} elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") {
echo 'huaantech ';
} elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") {
echo 'dcnetworks ';
} elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") {
if (false===strpos($_SERVER[REQUEST_URI],"/en/"))
echo 'w-ibeda ';
} elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") {
echo 'hp-telecom ';
} elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") {
echo 'Maipu ';
} elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") {
echo 'Ncurity ';
} elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") {
echo 'Socusnetwork ';
} else{
echo 'Hillstone Networks ';
}
?>
inject_other:cr-lf_and_header-name(Rule ID:1020610005)
Release Date :2025/9/15
Rule Name :HTTP Header Injection Attack via payload (CR/LF and header-name detected)
Severity :critical
CVE ID :
Attakers may hack the Web server making use of HTTP. This rule supports to defend the A1: Broken Access Control of OWASP Top 10 - 2021.
Update vendor patches.