hackhappy.org
XXE Injection - XML External Entity Injection Attack - HackHappy's Ethical Hacking Security Blog
XXE Injection attacks is a type of injection attack that takes place when parsing XML data. An XXE attack takes place when XML input contains a reference to an external entity and is processed by a weakly configured XML parser. The XXE attack can lead to disclosure of confidential data, denial of service, server side …