The OWASP Collection — XXE

Insecure XML Processors and External Entities

image by author

Welcome back to the OWASP Collection here on Dark Roast Security. This article will cover XXE, or XML External Entities. We’ll start with a brief overview of what XML is and how it’s used, and then we’ll jump into specific types of XXE attacks and walk through an example. So let’s get started.

What is XML?

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store