All Questions

3 questions

11votes

1answer

881views

Public XSLT & XML playground (with PHP DOMDocument, etc.) Security Risks?

Let's say I want to set up a sandbox or playground in PHP that users can use to create (or paste in) XML and XSLT, then transform the XML via the XSLT (by means of PHP 5's DOMDocument and related ...

tex

asked Jun 7, 2011 at 11:46

1vote

1answer

301views

Does using many XML parsers (XDocument, XMLDocument) from the public Internet increase attack surface area?

I am coding an anonymous WCF service that allows others to post XML into it. Does using different kinds of XML parsers XDocument, XMLDocument, or even 3rd party parsers increase the attack surface ...

makerofthings7

51.1k

asked Jan 22, 2011 at 0:10

2votes

2answers

413views

Is WCF or Java Metro security configuration in-scope for your security department; should it be?

Windows Communication Foundation (WCF) is a set of technologies that expose server-side executable code and data over the Internet. Given the port sharing abilities of IIS, or even that a web ...

makerofthings7

51.1k

asked Nov 22, 2010 at 21:29

Stack Exchange Network

All Questions

Public XSLT & XML playground (with PHP DOMDocument, etc.) Security Risks?

Does using many XML parsers (XDocument, XMLDocument) from the public Internet increase attack surface area?

Is WCF or Java Metro security configuration in-scope for your security department; should it be?

Hot Network Questions

All Questions

Related Tags