Skip to content

Instantly share code, notes, and snippets.

@jakekarnes42
Created August 13, 2019 23:44
Show Gist options
  • Save jakekarnes42/b879f913fd3ae071c11199b9bd7ba3a7 to your computer and use it in GitHub Desktop.
Save jakekarnes42/b879f913fd3ae071c11199b9bd7ba3a7 to your computer and use it in GitHub Desktop.
An SVG "image" that uses an XXE attack to embed the hostname file of whichever system processes it into the image itself
Display the source blob
Display the rendered blob
Raw
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
@romankis95
Copy link

very usefull, thank you

@czasec
Copy link

czasec commented Oct 28, 2023

awesome

]>&xxe;

<>

@momka1234
Copy link

__

@momka1234
Copy link

_**

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment