XXE to SSRF Research Paper by Safe Security

Home Resources Security Research URL Exploiting XXE to SSRF

The paper aims to perform a Server Side Request Forgery attack using Xml eXternal Entity vulnerability. Developers need to make sure these vulnerabilities are mitigated in their web application. The paper first introduces us to what is XML and its usage and then explains the XXE and SSRF vulnerabilities. Later its discussed how an SSRF attack can be initiated after exploiting XXE vulnerability.

Key Pointers:

What are external entities in XML and how they are used in XXE attacks
Understanding how XXE works through demonstration
What is SSRF and what an attacker can do using this vulnerability
Exploit demonstration for how to find SSRF and how it works
Finally using XXE vulnerability in a target application and initiating SSRF attack

Brands that
trust our competence

Related Resources

heap based buffer overflow vulnerability research paper

Heap-Based Overflow Vulnerability in Sudo [CVE-2021-3156]Read More

ubuntu overlays privesc vulnerability

Ubuntu OverlayFS Local Privesc VulnerabilityRead More

heartbleed attack cybersecurity research paper

Heartbleed AttackRead More

linux firewall guide research paper

A Beginners Guide to Linux FirewallRead More

insecure deserialzation research paper

Introduction to Insecure DeserializationRead More

linux privilege escalation research paper

Understanding and Exploiting Zerologon Read More