Apache OFBiz 16.11.04 is susceptible to XML external entity injection (XXE injection)
-
Updated
May 21, 2024 - Python
Apache OFBiz 16.11.04 is susceptible to XML external entity injection (XXE injection)
XXE Testing Page
Oracle CTF Web XML Entity Exploit
A web app for injecting code into different file types.
Web Vulnerability Scanner
Capture the Flag (CTF) is a cybersecurity competition that is used as a test of security skills.
A threat actor may interfere with an application's processing of extensible markup language (XML) data to view the content of a target's files
Exploit WordPress Media Library XML External Entity Injection (XXE) to exfiltrate files.
The PHP sandbox environment is a Docker-based tool for testing XML processing code, with XXE vulnerabilities demonstrated and security considerations explained.
Want to keep your Web application from getting hacked? Here's how to get serious about secure apps. So let's do it! Open Friday, Aug 2016 - Presentation Notes.
A collection of security tools for pentersion testing
Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.
XXE vulnerability creator
For Web Security
Python XXE 漏洞复现 flask作为后台
XVWA es una aplicación Web mal Desarrollada en PHP / MySQL que ayuda a los entusiastas de la seguridad a aprender la seguridad de las aplicaciones WEB. No es recomendable alojar esta aplicación en línea, ya que está diseñada para ser "Extremadamente Vulnerable". Recomendamos alojar esta aplicación en un entorno local/controlado. El fin es que pu…
Add a description, image, and links to the xxe-injection topic page so that developers can more easily learn about it.
To associate your repository with the xxe-injection topic, visit your repo's landing page and select "manage topics."