Skip to main content

XML Injection (XXE)

Description#

It is possible to inject XML code into the application’s requests, which is then interpreted by the server. This could allow an attacker to perform data exfiltration or execute commands remotely.

Requirements#