Injection: XXE Injection¶

Identifier: xxe

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

XXE vulnerabilities occur when XML parsers process external entities, allowing attackers to access sensitive files or make requests to internal resources, potentially reading confidential data or executing malicious code.

How we test: We inject XXE payloads containing external entity references into XML requests and analyze responses to detect if external entities are processed. We test for various XXE attack vectors including file disclosure, SSRF, and denial of service attacks.

Prerequisites:

The target must expose XML request or response handling.
The endpoint must be reachable and stable enough for payload comparison.

References:

http://projects.webappsec.org/XML-External-Entities

Configuration¶

Example¶

Example configuration:

---
security_tests:
  xxe:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.