XML External Entity Injection

Offered By: Bugcrowd via YouTube

Course Description

Overview

Learn about XML External Entity (XXE) Injection in this 19-minute video from Bugcrowd University. Explore this OWASP-defined attack that targets applications parsing XML input, potentially leading to confidential data disclosure, denial of service, server-side request forgery, and other system impacts. Understand how weakly configured XML parsers process external entity references, and gain insights into detecting and preventing this critical security vulnerability.

Syllabus

XML External Entity Injection

Taught by

Bugcrowd

Related Courses

Secure Coding: Identifying and Mitigating XML External Entity (XXE) Vulnerabilities
Pluralsight Protecting Against XML External Entity and Deserialization Attacks in ASP.NET and ASP.NET Core
Pluralsight OWASP Top 10: #3 Sensitive Data Exposure and #4 External Entities (XXE)
LinkedIn Learning OWASP Top 10 - A4:2017 - XML External Entities
Cybrary Uncle Rat's XXE Handbook
Udemy

XML External Entity Injection

Tags

Course Description

Overview

Syllabus

Taught by

Related Courses

Login to Continue