Gupta Bless

Jun 28, 2020

4 min read

Exploitation :XML External Entity (XXE)

INDEX

What is XXE

Types

Exploit XXE

Preventive Measures /Mitigation

What is XXE: An XML External Entity attack is a type of attack against an application that parses XML input. It often allows an attacker to view files on the application server file system, and to interact with any backend or external systems that the application itself can access.

In some cases, XXE can also be used to perform server-side request forgery, port…

--

--

More from Gupta Bless

Security enthusiast working to secure web for others.

Recommended from Medium

John Redden

Book Code

Sedat SALMAN

(Encyclopedia of Cybersecurity Standards) Chapter #1: Introduction

Privacy Ninja

The Ninja Sensei’s Logbook: Of MCSTs and Data Protection Officers

Of MCSTs and Data Protection Officers
RESETHACKER

in

RESETHACKER

Subdomain Takeover

Nuwan Zen

What is OAuth 2.0 Authorization Framework

Aurelie Woodberry

{UPDATE} True Hero Hack Free Resources Generator

VPN Reports

11 Tips To Be More Anonymous Online

Josiah Spackman

First group installing and opening DigiByte wallet in schools

AboutHelpTermsPrivacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Gupta Bless

Gupta Bless

952 Followers

Security enthusiast working to secure web for others.

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech