[Owasp-leaders] XXE - XML External Entities

Jim Manico jim.manico at owasp.org
Wed Mar 16 21:30:35 UTC 2016


Hello all,

A great deal of work has gone into cleaning up and updating the OWASP 
Wiki XXE ( XML External Entities) resources. Here are the two main 
updated resources.

  * XXE Prevention Cheatsheet
    https://www.owasp.org/index.php/XML_External_Entity_%28XXE%29_Prevention_Cheat_Sheet
  * XXE Vulnerability page
    https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Processing

Thank you to Dave Wichers for leading the charge on XEE as well as John 
Passki and Xiaoran Wang for their work in this area.

Other XXE pages have been either redirected or deleted. If you see any 
other pages in this area that needs cleaning up, let me know.

Aloha,
Jim Manico


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160316/c53e938b/attachment.html>


More information about the OWASP-Leaders mailing list