{"id":"https://openalex.org/W2810568122","doi":"https://doi.org/10.1145/3167132.3167308","title":"Measuring E-mail header injections on the world wide web","display_name":"Measuring E-mail header injections on the world wide web","publication_year":2018,"publication_date":"2018-04-09","ids":{"openalex":"https://openalex.org/W2810568122","doi":"https://doi.org/10.1145/3167132.3167308","mag":"2810568122"},"language":"en","primary_location":{"id":"doi:10.1145/3167132.3167308","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3167132.3167308","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd Annual ACM Symposium on Applied Computing","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5052496279","display_name":"Sai Prashanth Chandramouli","orcid":null},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Sai Prashanth Chandramouli","raw_affiliation_strings":["Arizona State University"],"affiliations":[{"raw_affiliation_string":"Arizona State University","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5018344591","display_name":"Pierre-Marie Bajan","orcid":null},"institutions":[{"id":"https://openalex.org/I3018083178","display_name":"Institut de Recherche Technologique SystemX","ror":"https://ror.org/03crmsn52","country_code":"FR","type":"facility","lineage":["https://openalex.org/I3018083178"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Pierre-Marie Bajan","raw_affiliation_strings":["IRT SystemX"],"affiliations":[{"raw_affiliation_string":"IRT SystemX","institution_ids":["https://openalex.org/I3018083178"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5022177364","display_name":"Christopher Kruegel","orcid":"https://orcid.org/0000-0001-5140-3414"},"institutions":[{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Christopher Kruegel","raw_affiliation_strings":["University of California"],"affiliations":[{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075685499","display_name":"Giovanni Vigna","orcid":"https://orcid.org/0000-0002-3422-5369"},"institutions":[{"id":"https://openalex.org/I2803209242","display_name":"University of California System","ror":"https://ror.org/00pjdza24","country_code":"US","type":"education","lineage":["https://openalex.org/I2803209242"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Giovanni Vigna","raw_affiliation_strings":["University of California"],"affiliations":[{"raw_affiliation_string":"University of California","institution_ids":["https://openalex.org/I2803209242"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073603754","display_name":"Ziming Zhao","orcid":"https://orcid.org/0000-0002-4930-5556"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ziming Zhao","raw_affiliation_strings":["Arizona State University"],"affiliations":[{"raw_affiliation_string":"Arizona State University","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050806439","display_name":"Adam Doup\u00e9","orcid":"https://orcid.org/0000-0003-2634-3901"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Adam Doup\u00e9","raw_affiliation_strings":["Arizona State University"],"affiliations":[{"raw_affiliation_string":"Arizona State University","institution_ids":["https://openalex.org/I55732556"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5025770693","display_name":"Gail\u2010Joon Ahn","orcid":"https://orcid.org/0000-0002-4271-1666"},"institutions":[{"id":"https://openalex.org/I55732556","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40","country_code":"US","type":"education","lineage":["https://openalex.org/I55732556"]},{"id":"https://openalex.org/I4210101778","display_name":"Samsung (United States)","ror":"https://ror.org/01bfbvm65","country_code":"US","type":"company","lineage":["https://openalex.org/I2250650973","https://openalex.org/I4210101778"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Gail-Joon Ahn","raw_affiliation_strings":["Arizona State University and Samsung Research"],"affiliations":[{"raw_affiliation_string":"Arizona State University and Samsung Research","institution_ids":["https://openalex.org/I4210101778","https://openalex.org/I55732556"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5052496279"],"corresponding_institution_ids":["https://openalex.org/I55732556"],"apc_list":null,"apc_paid":null,"fwci":0.7854,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.80098966,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1647","last_page":"1656"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9932000041007996,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9911999702453613,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/header","display_name":"Header","score":0.8929787278175354},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7842822670936584},{"id":"https://openalex.org/keywords/python","display_name":"Python (programming language)","score":0.5793195366859436},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.5630504488945007},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.5270792841911316},{"id":"https://openalex.org/keywords/java","display_name":"Java","score":0.49533382058143616},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4672878384590149},{"id":"https://openalex.org/keywords/construct","display_name":"Construct (python library)","score":0.4399122893810272},{"id":"https://openalex.org/keywords/electronic-mail","display_name":"Electronic mail","score":0.43475446105003357},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3641524314880371},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.21063783764839172},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.15662384033203125}],"concepts":[{"id":"https://openalex.org/C48105269","wikidata":"https://www.wikidata.org/wiki/Q1141160","display_name":"Header","level":2,"score":0.8929787278175354},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7842822670936584},{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.5793195366859436},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.5630504488945007},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.5270792841911316},{"id":"https://openalex.org/C548217200","wikidata":"https://www.wikidata.org/wiki/Q251","display_name":"Java","level":2,"score":0.49533382058143616},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4672878384590149},{"id":"https://openalex.org/C2780801425","wikidata":"https://www.wikidata.org/wiki/Q5164392","display_name":"Construct (python library)","level":2,"score":0.4399122893810272},{"id":"https://openalex.org/C3020028006","wikidata":"https://www.wikidata.org/wiki/Q9158","display_name":"Electronic mail","level":2,"score":0.43475446105003357},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3641524314880371},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.21063783764839172},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.15662384033203125}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3167132.3167308","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3167132.3167308","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd Annual ACM Symposium on Applied Computing","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.550000011920929,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320309835","display_name":"Arizona State University","ror":"https://ror.org/03efmqc40"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":30,"referenced_works":["https://openalex.org/W23242426","https://openalex.org/W39495240","https://openalex.org/W1489243061","https://openalex.org/W1511682410","https://openalex.org/W1519919627","https://openalex.org/W1568881000","https://openalex.org/W1648477960","https://openalex.org/W1774758602","https://openalex.org/W1861561811","https://openalex.org/W1979931683","https://openalex.org/W2003115932","https://openalex.org/W2008494459","https://openalex.org/W2064343889","https://openalex.org/W2072410439","https://openalex.org/W2076253536","https://openalex.org/W2096867800","https://openalex.org/W2106620684","https://openalex.org/W2113321599","https://openalex.org/W2114267717","https://openalex.org/W2132791332","https://openalex.org/W2144696387","https://openalex.org/W2164542999","https://openalex.org/W2168563136","https://openalex.org/W2170188121","https://openalex.org/W2240246332","https://openalex.org/W2291531368","https://openalex.org/W2542617311","https://openalex.org/W2595324690","https://openalex.org/W3001455961","https://openalex.org/W4234187158"],"related_works":["https://openalex.org/W2171597999","https://openalex.org/W2189136227","https://openalex.org/W1866537546","https://openalex.org/W630850086","https://openalex.org/W3200508093","https://openalex.org/W4372053344","https://openalex.org/W3193978431","https://openalex.org/W2379752180","https://openalex.org/W2519240373","https://openalex.org/W1496096987"],"abstract_inverted_index":{"E-mail":[0,23],"header":[1,24],"injection":[2,25,45],"vulnerability":[3,8,48],"is":[4],"a":[5],"class":[6],"of":[7,33,67],"that":[9,15],"can":[10,49],"occur":[11],"in":[12,28],"web":[13],"applications":[14],"use":[16],"user":[17],"input":[18],"to":[19,52,56],"construct":[20],"e-mail":[21,31],"messages.":[22],"vulnerabilities":[26],"exist":[27],"the":[29,34,43,65,68],"built-in":[30],"functionality":[32],"popular":[35],"languages":[36],"PHP,":[37],"Java,":[38],"Python,":[39],"and":[40,63],"Ruby.":[41],"With":[42],"proper":[44],"string,":[46],"this":[47],"be":[50],"exploited":[51],"allow":[53],"an":[54],"attacker":[55],"inject":[57],"additional":[58],"headers,":[59,62],"modify":[60],"existing":[61],"alter":[64],"content":[66],"e-mail.":[69]},"counts_by_year":[{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":3},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}