Arseniy Sharoglazov
Tag: OOB
1 post
Exploiting XXE with local DTD files
This little technique can force your blind XXE to output anything you want!
47139
2018
DTD
OOB
SECURITY
WAF
XML
XXE