Share
## https://sploitus.com/exploit?id=FA95D19B-D3C0-5E81-9781-CFB286B3F87C
# CVE-2026-31908 - Apache APISIX Header Injection Exploit
[](https://nvd.nist.gov/vuln/detail/CVE-2026-31908)
[](https://nvd.nist.gov/vuln/detail/CVE-2026-31908)
[](https://www.python.org/)
[]()
## ๐ Overview
This is a **Proof of Concept (PoC)** exploit for **CVE-2026-31908**, a critical header injection vulnerability discovered in **Apache APISIX** versions `2.12.0` through `3.15.0`.
The vulnerability exists in the `forward-auth` plugin, where improper sanitization of CRLF (`\r\n`) sequences allows unauthenticated attackers to inject malicious HTTP headers. This can lead to **authentication bypass**, **privilege escalation**, and **unauthorized access** to protected resources.
> โ ๏ธ **IMPORTANT:** This tool is for **educational purposes and authorized security testing only**. Use only in isolated lab environments or on systems you own.
---
## ๐ฏ Vulnerability Details
| Attribute | Value |
|-----------|-------|
| **CVE ID** | CVE-2026-31908 |
| **Severity** | Critical |
| **CVSS Score** | 10.0 / 10 |
| **Attack Vector** | Network |
| **Attack Complexity** | Low |
| **Privileges Required** | None |
| **User Interaction** | None |
| **Confidentiality Impact** | High |
| **Integrity Impact** | High |
| **Weakness Type** | CWE-75 (Failure to Sanitize Special Elements) |
### Affected Versions
- Apache APISIX: **2.12.0** through **3.15.0**
### Patched Version
- Apache APISIX: **3.16.0** and above
---
## ๐ง Installation
### Prerequisites
- Python 3.6 or higher
- `requests` library
### Setup
```bash
# Clone the repository
git clone https://github.com/MehranTurk/CVE-2026-31908.git
cd CVE-2026-31908
# Install dependencies
pip install -r requirements.txt
# Make the script executable (Linux/macOS)
chmod +x CVE-2026-31908.py