Back to directory
WRITEUP #3543

Blind XXE Leads to Internal Port Scanning Through SSRF

XXESSRF
by@caffeinevulns(Sam Paredes)
Program
-
Published
Aug 1, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://coffeejunkie.me/Blind-XXE-Port-Scanning/
RELATED WRITEUPS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
IIS welcome page to source code review to LFI!
SSRFLFI
The Hunt for XXE to LFI: How I Uncovered CVE-2019–9670 in a Bug Bounty Program
XXELFI
NTLM Credential Theft in Python Windows Applications
SSRFNTLMv2 hash disclosure
Vulnerabilities in Homepage Dashboard
RCESSRF

Built with ❤️ by Shubham Rawat