Skip to content
/ RestletXMLDecoder Public

Restlet API consuming XML serialized Java Objects. Vulnerable to XXE and RCE (if third party libraries like GroovyShell are found in the classpath)

3 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

pwntester/RestletXMLDecoder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits

lib

lib

 
 

ClientRestlet.class

ClientRestlet.class

 
 

ClientRestlet.java

ClientRestlet.java

 
 

Customer.class

Customer.class

 
 

Customer.java

Customer.java

 
 

CustomerRessource.class

CustomerRessource.class

 
 

CustomerRessource.java

CustomerRessource.java

 
 

README

README

 
 

README.md

README.md

 
 

ServerRestlets.class

ServerRestlets.class

 
 

ServerRestlets.java

ServerRestlets.java

 
 

customer-rce.xml

customer-rce.xml

 
 

customer-xxe.xml

customer-xxe.xml

 
 

customer.xml

customer.xml

 
 

Repository files navigation

RestletXMLDecoder

Restlet API consuming XML serialized Java Objects. Vulnerable to XXE and RCE (if third party libraries like GroovyShell are found in the classpath)

About

Restlet API consuming XML serialized Java Objects. Vulnerable to XXE and RCE (if third party libraries like GroovyShell are found in the classpath)

Resources

Readme

Security policy

Security policy
Activity

Stars

3 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages