Apache OFBiz 16.11.04 is susceptible to XML external entity injection (XXE injection)
-
Updated
Jun 21, 2024 - Python
#
xxe-injection
Here are 34 public repositories matching this topic...
A web crawler and vulnerability scanner tool developed by Rohit Ajariwal
ldap
sql-injection
csrf
webcrawler
clickjacking
vulnerability-scanners
ssrf
xxe
csrf-attacks
xxe-injection
xxe-payloads
lfi-exploitation
sql-injection-exploitation
lfi-vulnerability
commandinjection
ssrf-payload
ssrf-scanner
crosssitescripting
lfi-scanner
ssrf-exploit
-
Updated
Aug 10, 2024 - Python
Pentester-Vurnability-Website
-
Updated
Oct 4, 2024 - Python
WAFManis is a Protocol-Level WAF Evasion Fuzzing Tool that automates the discovery of evasion vulnerabilities in Web Application Firewalls (WAFs) by fuzzing HTTP requests to identify potential bypass techniques.
sql
nosql
xml
os
waf
xss
sql-injection
xss-vulnerability
bypass
xss-attacks
sqlinjection
xxe
xxe-injection
path-traversal
xmlinputformat
os-command-injection
nosqlinjection
bypasswaf
nosqlpayload
-
Updated
Oct 5, 2024 - Python
XXE Testing Page
-
Updated
Mar 4, 2022 - JavaScript
An automated tool for discovering vulnerabilities in GraphQL applications through fuzzing techniques, including OS Command Injection and XSS, with a focus on OWASP Top Ten vulnerabilities.
graphql
dos
nosql
xss
xss-vulnerability
graphql-application
vulnerable
graphql-api
ssrf
sqlinjection
xxe-injection
ssrf-payload
ssrf-tool
acyber
-
Updated
Oct 5, 2024 - Python
Oracle CTF Web XML Entity Exploit
-
Updated
Feb 23, 2021
Web Vulnerability Scanner
security-audit
owasp
poc
sql-injection
vulnerability
xss-vulnerability
vulnerability-detection
vulnerability-scanners
ssrf
security-automation
security-tools
xxe-injection
passive-scanner
-
Updated
Jun 20, 2023
Automates HTML injection, HTTP Parameter Pollution, and XXE attacks.
-
Updated
Sep 1, 2024 - Python
Capture the Flag (CTF) is a cybersecurity competition that is used as a test of security skills.
ctf-writeups
rce
csrf
xss-vulnerability
recon
bugbounty
burpsuite
sqlinjection
xxe-injection
webhacking
openredirect
idor
tryhackme
-
Updated
Nov 21, 2022 - Perl
A web app for injecting code into different file types.
-
Updated
Sep 6, 2022 - CSS
A threat actor may interfere with an application's processing of extensible markup language (XML) data to view the content of a target's files
-
Updated
Jan 29, 2024
Exploit WordPress Media Library XML External Entity Injection (XXE) to exfiltrate files.
-
Updated
Nov 11, 2022 - Python
The PHP sandbox environment is a Docker-based tool for testing XML processing code, with XXE vulnerabilities demonstrated and security considerations explained.
-
Updated
Jun 7, 2023 - PHP
Want to keep your Web application from getting hacked? Here's how to get serious about secure apps. So let's do it! Open Friday, Aug 2016 - Presentation Notes.
injection
owasp
html-injection
sql-injection
xss-vulnerability
vulnerabilities
owasp-top-10
xxe-injection
xxe-example
os-injection
crlf-injection
-
Updated
Sep 30, 2018
A collection of security tools for pentersion testing
xss
xss-vulnerability
xss-exploitation
xss-detection
xss-attacks
sqlinjection
xxe
xxe-injection
xxe-payloads
xxe-attack
-
Updated
Apr 23, 2023 - Python
Improve this page
Add a description, image, and links to the xxe-injection topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the xxe-injection topic, visit your repo's landing page and select "manage topics."