WRITEUP #4868
A Tale of Two Formats: Exploiting Insecure XML and ZIP File Parsers to Create a Web Shell
XXERCEDirectory Traversal
by@spaceraccoonsec(Eugene Lim)
Program
-
Published
Feb 18, 2020
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://spaceraccoon.dev/a-tale-of-two-formats-exploiting-insecure-xml-and-zip-file-parsers-to-create-a