All Questions

2 questions

3votes

1answer

1kviews

Java org.xmlpull.v1.XmlPullParser and XML External Entity (XXE) Processing Attacks

I'm evaluating the security of an Android application and the application is using the XmlPullParser included with Android. I'm having some difficulty getting any common attacks to work, but I want ...

Ben Holland

asked Oct 11, 2014 at 21:13

7votes

1answer

14kviews

How can XML Injection be exploited , need example?

So I found this explanation for a vulnerability on some cms : The XML parser at /WorkArea/Blogs/xmlrpc.aspx is vulnerable to XML external entity attacks which can be used to Scan behind perimeter ...

Daniel

1,452

asked Feb 26, 2013 at 17:34

Stack Exchange Network

All Questions

Java org.xmlpull.v1.XmlPullParser and XML External Entity (XXE) Processing Attacks

How can XML Injection be exploited , need example?

Hot Network Questions

All Questions

Related Tags