All Questions

2 questions

7votes

0answers

3kviews

Can XXE be exploited when disallow-doctype-decl is set to true (Apache)?

I found out that an endpoint of a website may be vulnerable to XXE. It is using Unmarshal as an XML parser. When I try to send a post request using common XXE payloads, I receive the following ...

Jyosk Natalm

asked Apr 3, 2019 at 17:54

0votes

1answer

311views

Collect XML files from web server with secure authentication

I need to collect XML files from a 3rd party's web server. These XML files are generated by said 3rd party on a daily basis (e.g. data_2015-11-26.xml) and should therefore be fetched at least daily ...

tuesprem

asked Nov 26, 2015 at 18:40

Stack Exchange Network

All Questions

Can XXE be exploited when disallow-doctype-decl is set to true (Apache)?

Collect XML files from web server with secure authentication

Hot Network Questions

All Questions

Related Tags