XXE (XML External Entity) Injection Explained
Tags
attack-pattern: | Data Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Vulnerabilities - T1588.006 Default Credentials |
Common Information
Type | Value |
---|---|
UUID | 0f96b028-5432-445f-9b33-85bc8f1e5a61 |
Fingerprint | c509181d1137c7b1 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 23, 2024, 11:01 p.m. |
Added to db | Dec. 24, 2024, 12:04 a.m. |
Last updated | Dec. 25, 2024, 2:37 a.m. |
Headline | XXE (XML External Entity) Injection Explained |
Title | XXE (XML External Entity) Injection Explained |
Detected Hints/Tags/Attributes | 33/1/13 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 166 | www.w3.org |
|
Details | Domain | 4722 | github.com |
|
Details | Domain | 4 | xml.org |
|
Details | Domain | 18 | apache.org |
|
Details | Domain | 4 | gr.linkedin.com |
|
Details | File | 1 | xxe-vulnerable-app.jar |
|
Details | Github username | 4 | iason-tzortzis |
|
Details | Url | 1 | https://www.w3.org/tr/xml |
|
Details | Url | 1 | https://github.com/iason-tzortzis/xxe-vulnerable-application |
|
Details | Url | 3 | http://xml.org/sax/features/external-general-entities |
|
Details | Url | 4 | http://apache.org/xml/features/disallow-doctype-decl |
|
Details | Url | 4 | https://github.com/iason-tzortzis |
|
Details | Url | 4 | https://gr.linkedin.com/in/iason-tzortzis-788559229 |