Hii buddy.. Thanks for this Amazing Writeup.. I have a Question "If we are getting response that we have injected .. What else we can we do with the server.. And if we simply show that them whatever we are injecting as a request, we are getting response back .. is that will be the valid CRLF injection? "