Header injection in HTTP responses can allow for HTTP response splitting (also known as CRLF - Carriage Return Line Feed), Session fixation via the Set-Cookie header, cross-site scripting (XSS), and malicious redirects attacks via the location header.
Apache HTTP Server | Fuel injection | Turbocharged Direct Injection | fuel injection | HTTP Live Streaming | Page header | Norconex HTTP Collector | Metal injection molding | Love's An Injection | IP header | Intraperitoneal injection | Intramuscular injection | intramuscular injection | Intracytoplasmic sperm injection | HyperText Transfer Protocol (HTTP) | HTTP Secure | fuel injection in NASCAR | Fuel Injection | Direct injection |