English

XML: eXploitable Markup Language

XPath injection on XML files

solution XML: eXploitable Markup Language

raballestasr

Rafael Ballestas

Loading ...

Share

Tags:

Subscribe to our blog

Sign up for Fluid Attacks' weekly newsletter.

Recommended blog posts

You might be interested in the following related posts.

Photo by Fotis Fotopoulos on Unsplash

LFR via SSRF in BookStack

Beware of insecure-by-default libraries!

Photo by Yeshi Kangrang on Unsplash

RCE in PaperCut MF/NG via CSRF

What is invisible to some hackers is visible to others

Photo by Jelleke Vanooteghem on Unsplash

Your Password Manager Was Hacked!

Benefits and risks of these increasingly used programs

Photo by Rohit Tandon on Unsplash

Certified Ethical Hacker, Huh?

Description and critique of CEH certifications

Photo by sebastiaan stam on Unsplash

UXSS to Account Takeover in Rushbet

Injecting JS into one site is harmful, into all, lethal

Photo by Nahel Abdul Hadi on Unsplash

Account Takeover in KAYAK

So it's the app itself that delivers the cookie to me?

Photo by Axel Ruffini on Unsplash

DirectX/HyperV; An Offensive View

A Black Hat talk follow up

Photo by Lucrezia Carnelos on Unsplash

0-Day Vulnerability Dubbed Follina

Chances are you're vulnerable with Microsoft Office

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which hundreds of organizations are already enjoying.

Start your 21-day free trial

Hacking software for over 20 years

Fluid Attacks tests applications and other systems, covering all software development stages. Our team assists clients in quickly identifying and managing vulnerabilities to reduce the risk of incidents and deploy secure technology.

Service

Continuous Hacking

Platform overview

Solutions

Application security

Compliance

Systems

Testing Techniques

ASPM

SAST

DAST

MPT

MAST

SCA

CSPM

ARM

PTaaS

RE

SCR

Plans

Machine

Squad

Resources

Blog

Learn

Advisories

Clients

Downloadables

Documentation

Company

About us

Certifications

Partners

Careers

Contact us

Ethics Hotline

Copyright © 0 Fluid Attacks. We hack your software. All rights reserved.

Service status

Terms of use

Privacy policy

Cookie policy