Y
Hacker News
new
|
ask
|
show
|
jobs
by
NickNameNick
4157 days ago
If you have backend systems parsing XML, then an XXE[1] attack could trigger a DNS lookup, for example.
[1]
https://www.owasp.org/index.php/XML_External_Entity_%28XXE%2...
1 comments
sarciszewski
4155 days ago
Ooh, that could lead to some very interesting attack vectors. :D
link