Exploiting XXE to perform SSRF attacks
https://portswigger.net/web-security/xxe/lab-exploiting-xxe-to-perform-ssrf
Let's check the stock of one of the products.
Since we are proxying the requests through Burp Suite, we can go to Proxy > HTTP History
to view the request.
We can see that the request contains an XML entity.
Let's forward this request to the Repeater
for further modification.
Once in the Repeater
tab, declare the following internal entity after the XML prologue:
Let's add the latest
endpoint to the entity.
Let's add the meta-data
endpoint to the entity.
Let's add the iam
endpoint to the entity.
Let's add the credentials
endpoint to the entity.
Let's add the admin
endpoint to the entity.
We have solved the lab.
Last updated