IML - XML External Entity Injection
XML External Entity Injection - A walkthrough of the challenge with enumeration, exploitation and privilege escalation steps.
IML - XML External Entity Injection
- Copy the contents of the xml
- Create file and paste the xml data in. Then add the:
1
<!DOCTYPE store[<!ENTITY signature SYSTEM "file:///tmp/token.txt" >]>
to the top
- Make sure the name next to DOCTYPE correlates with the name in the xml script ie. store
- Add the variable \&signature; somewhere in the script
- Upload file and choose from dropdown list
This post is licensed under CC BY 4.0 by the author.