Skip to content

Instantly share code, notes, and snippets.

Andreas S Andreas237

  • University of Colorado Colorado Springs
  • Colorado Springs, CO United States
Block or report user

Report or block Andreas237

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@Andreas237
Andreas237 / xml-attacks.md
Created Apr 12, 2019 — forked from jordanpotti/xml-attacks.md
XML Vulnerabilities and Attacks cheatsheet
View xml-attacks.md

XML Vulnerabilities

XML processing modules may be not secure against maliciously constructed data. An attacker could abuse XML features to carry out denial of service attacks, access logical files, generate network connections to other machines, or circumvent firewalls.

The penetration tester running XML tests against application will have to determine which XML parser is in use, and then to what kinds of below listed attacks that parser will be vulnerable.


You can’t perform that action at this time.