Backup_Repos/PayloadsAllTheThings
1
0
Fork 0
mirror of https://github.com/swisskyrepo/PayloadsAllTheThings synced 2025-12-06 08:54:40 +01:00
Code Issues Projects Releases Wiki Activity

Fix markdown linting

Browse source
This commit is contained in:
Swissky 2025-11-15 17:36:38 +01:00
parent 80a6b5e1d0
commit ca50df2336
2 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
XXE Injection/README.md
View file

@ -68,6 +68,13 @@ Basic entity test, when the XML parser parses the external entities the result s
It might help to set the `Content-Type: application/xml` in the request when sending XML payload to the server. It might help to set the `Content-Type: application/xml` in the request when sending XML payload to the server.
These are different types of entities in XML:
| Type | Prefix | Where usable |
| ---------------- | -------- | --------------------------- |
| General entity | `&name;` | Inside XML document content |
| Parameter entity | `%name;` | Only inside the DTD |
## Exploiting XXE to Retrieve Files ## Exploiting XXE to Retrieve Files
### Classic XXE ### Classic XXE

1
_LEARNING_AND_SOCIALS/YOUTUBE.md
View file

@ -64,4 +64,3 @@
- [EP003: Red Team | HACKING GOOGLE](https://youtu.be/TusQWn2TQxQ) - [EP003: Red Team | HACKING GOOGLE](https://youtu.be/TusQWn2TQxQ)
- [EP004: Bug Hunters | HACKING GOOGLE](https://youtu.be/IoXiXlCNoXg) - [EP004: Bug Hunters | HACKING GOOGLE](https://youtu.be/IoXiXlCNoXg)
- [EP005: Project Zero | HACKING GOOGLE](https://youtu.be/My_13FXODdU) - [EP005: Project Zero | HACKING GOOGLE](https://youtu.be/My_13FXODdU)