XML External Entity Injection (XXE) is a web security vulnerability that allows attackers to interfere with an application’s processing of XML data. Attackers exploit these vulnerabilities to view files on the application server file system, and to interact with any systems that the application can access.
What is XML External Entity Injection (XXE)?
Free Assessment
Security for Everyone that Visits Your Website
Find out if your web application is hiding vulnerable, malicious, or dangerous code that could damage your customers and your business. No payment information required.
Related articles
Web Application Security
How Magecart and e-skimming attacks are accelerating
Magecart attacks are accelerating. Many of us have heard about Magecart and other digital skimming attacks at Macy's, Ticketmaster, Smith & Wesson…
08.08.2021
Client-Side Security
The Importance of Defending the Client-Side Attack Surface
It is strange to think that not that long ago the Internet was a very different place. A place filled with static…
08.08.2021
Client-Side Security
Client-Side Security Risk Management: The Root-Cause Solution Approach
Client-side security is it's own universe. Learn about client-side risk management and the root-cause solution approach.
25.05.2021