Logo
Agent Skills Guide

xxe-testing

published 2026/01/27

Validate XML External Entity (XXE) injection vulnerabilities including file disclosure, SSRF, denial of service, and blind XXE via out-of-band channels. Test by injecting malicious XML with external entity references into endpoints that parse XML. Use when testing CWE-611 (XXE), CWE-827 (Improper Control of Document Type Definition), or related XML parsing vulnerabilities.

📦 Install Skill

Command line install

Install directly with the `skills` CLI.

npx skills add anshumanbh/securevibes/packages/core/securevibes/skills/dast/xxe-testing

Local download

Download only this skill directory.

Download xxe-testing only
File Explorer
0 files
No file selected
readonly

Select a file to view its content