CL.TE Desync Attack: This classic HTTP request smuggling technique exploits the difference between how front-end and back-end servers interpret message boundaries. The front-end server uses the Content-Length header to determine request boundaries, while the back-end server prioritizes Transfer-Encoding chunked. This allows attackers to "smuggle" a second request within the body of the first request, potentially bypassing security controls or accessing unauthorized resources.