xxe-testing
•published 2026/01/27
Validate XML External Entity (XXE) injection vulnerabilities including file disclosure, SSRF, denial of service, and blind XXE via out-of-band channels. Test by injecting malicious XML with external entity references into endpoints that parse XML. Use when testing CWE-611 (XXE), CWE-827 (Improper Control of Document Type Definition), or related XML parsing vulnerabilities.
📦 Install Skill
Command line install
Install directly with the `skills` CLI.
npx skills add anshumanbh/securevibes/packages/core/securevibes/skills/dast/xxe-testingFile Explorer
No file selected
Select a file to view its content

