The OWASP Collection — XXE
Insecure XML Processors and External Entities
Welcome back to the OWASP Collection here on Dark Roast Security. This article will cover XXE, or XML External Entities. We’ll start with a brief overview of what XML is and how it’s used, and then we’ll jump into specific types of XXE attacks and walk through an example. So let’s get started.