• International Journal of Computer Science & Network Security
• /
• 제23권2호
• /
• pp.199-202
• /
• 2023

Carriage return (CR) and line feed (LF), also known as CRLF injection is a type of vulnerability that allows a hacker to enter special characters into a web application, altering its operation or confusing the administrator. Log poisoning and HTTP response splitting are two prominent harmful uses of this technique. Additionally, CRLF injection can be used by an attacker to exploit other vulnerabilities, such as cross-site scripting (XSS). Email injection, also known as email header injection, is another way that can be used to modify the behavior of emails. The Open Web Application Security Project (OWASP) is an organization that studies vulnerabilities and ranks them based on their level of risk. According to OWASP, CRLF vulnerabilities are among the top 10 vulnerabilities and are a type of injection attack. Automated testing can help to quickly identify CRLF vulnerabilities, and is particularly useful for companies to test their applications before releasing them. However, CRLF vulnerabilities can also lead to the discovery of other high-risk vulnerabilities, and it fosters a better approach to mitigate CRLF vulnerabilities in the early stage and help secure applications against known vulnerabilities. Although there has been a significant amount of research on other types of injection attacks, such as Structure Query Language Injection (SQL Injection). There has been less research on CRLF vulnerabilities and how to detect them with automated testing. There is room for further research to be done on this subject matter in order to develop creative solutions to problems. It will also help to reduce false positive alerts by checking the header response of each request. Security automation is an important issue for companies trying to protect themselves against security threats. Automated alerts from security systems can provide a quicker and more accurate understanding of potential vulnerabilities and can help to reduce false positive alerts. Despite the extensive research on various types of vulnerabilities in web applications, CRLF vulnerabilities have only recently been included in the research. Utilizing automated testing as a recurring task can assist companies in receiving consistent updates about their systems and enhance their security.

• BMB Reports
• /
• 제43권7호
• /
• pp.499-505
• /
• 2010

The present study aimed to investigate whether the polymorphisms in the TSLPR gene are associated with atopic and asthmatic disease in the Korean population. We identified eleven single nucleotide polymorphisms (SNPs) and two variation sites in the TSLPR gene, including the promoter region. The genotype and allele frequencies of g.33G>C of the TSLPR gene in asthma patients were significantly different from the respective frequencies of the control group (P = 0.006 and 0.003, respectively). Our additional analysis showed that the genotype and allele frequencies of the g.33G>C and g.19646A>G of the TSLPR gene were significantly associated in the atopic asthma patients rather than in the non-atopic asthma patients (genotype frequencies; P = 0.0001 and 0.0003 respectively, allele frequencies; P = 0.0005 and 0.0001 in that order). Our results suggest that the SNPs of the TSLPR gene could be associated with the susceptibility to atopic asthma in the Korean population.

• 생명과학회지
• /
• 제23권7호
• /
• pp.919-925
• /
• 2013

사람의 TSLPR는 염증 유발 및 알러지 반응에 중요한 역할을 한다. 우리는 TSLPR 유전자에서 11개의 유전자 다형성과 2개의 유전적 변이 부위를 발굴하였고, 이들 TSLPR 유전자 다형성이 아토피 천식의 민감성과 연관성이 있음을 확인 하였다. 이에 우리는 TSLPR 유전자 다형성과 류마티스 관절염과의 연관성에 대해서도 알아 보고자 하였다. 457명의 류마티스 관절염 환자군과 570명의 정상 대조군으로 TSLPR 유전자 다형성의 genotype과 allele frequencies를 비교 분석 해본 결과 두 그룹 간에 유의성이 없었고, 류마티스 관절염 여성 그룹에서의 비교 분석에서도 두 그룹 간에 유의성이 없었다. 또한, 류마티스 관절염 환자에서 TSLPR 유전자 다형성이 RF나 CCP levels에 영향을 미치지 않는 것으로 분석 되었다. 따라서, TSLPR 유전자 다형성이 한국인에서의 류마티스 관절염에 대한 민감성과 연관성이 없는 것으로 생각된다.