Tag
xxe-injection
Safeguard articles tagged "xxe-injection" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Application Security
Preventing XML external entity (XXE) injection
XXE injection lets attackers read local files, trigger SSRF, or crash servers via XML parsers. Here is how it works and how to shut it down for good.
May 28, 20267 min read
Vulnerability Analysis
What is XML External Entity (XXE) Injection
XXE injection lets attackers abuse XML parsers to read files, trigger SSRF, or crash services. Here's how it works, real CVEs, and how to stop it.
Mar 30, 20266 min read
Vulnerability Analysis
XML External Entity (XXE) injection explained
XXE injection lets attackers abuse XML parsers to read files, hit cloud metadata via SSRF, or crash servers — here's how it works and how to stop it.
Dec 13, 20257 min read