All Questions

2 questions

12votes

1answer

4kviews

Is PHP loadXML vulnerable to XXE attack (and to other attacks)? Is there a list of vulnerable functions?

I have PHP code that uses the loadXML function (as well as other XML functions). Is the loadXML function vulnerable to XXE attack? Namely, if the XML contains external entities, will they be ...

Gari BN

asked Aug 15, 2016 at 9:05

11votes

1answer

881views

Public XSLT & XML playground (with PHP DOMDocument, etc.) Security Risks?

Let's say I want to set up a sandbox or playground in PHP that users can use to create (or paste in) XML and XSLT, then transform the XML via the XSLT (by means of PHP 5's DOMDocument and related ...

tex

asked Jun 7, 2011 at 11:46

Stack Exchange Network

All Questions

Is PHP loadXML vulnerable to XXE attack (and to other attacks)? Is there a list of vulnerable functions?

Public XSLT & XML playground (with PHP DOMDocument, etc.) Security Risks?

Hot Network Questions

All Questions

Related Tags