linuxsecurityblog.com
Exploiting XXE Vulnerabilities in IIS/.NET
By Chris Davis XXE (XML External Entity) attacks happen when an XML parser improperly processes input from a user that contains an external entity declaration in the doctype of an XML payload. This…