Skip to content

Sections

Maps Timeline Graph Cosmos Life Culture Innovation People Climate Trends Art

Browse Dictionary Books Food Places Asteroids Search

© 2026 Vinony · Knowledge from Wikipedia, Wikidata, and 27 public APIs.

XML外部实体攻击 · Vinony

Home
Web security exploits
XML外部实体攻击

🌐中文

English Tiếng Việt Türkçe فارسی 中文日本語

EntityQ16947775· pop 7· linked from 5 articles

XML外部实体攻击

Also known as XML External Entity, XXE, XXE attack

针对解析XML格式应用程序的攻击类型

Article · 中文

XML外部实体攻击是一种针对解析XML格式应用程序的攻击类型之一。此类攻击发生在配置不当的XML解析器处理指向外部实体的文档时，可能会导致敏感文件泄露、拒绝服务攻击、服务器端请求伪造、端口扫描（解析器所在域）和其他系统影响。

Abstract from DBpedia / Wikipedia · CC BY-SA

Available in 7 languages

中文
日本語
Lombard
Tiếng Việt
Türkçe
فارسی

via Wikidata sitelinks · CC0

Connections

Wayback Machine

Categories

Web security exploits

Sources

wikipedia.externallinksexternallink

XML

Entity

Domain Name Server

Extensible HyperText Markup Language

denial-of-service attack

Uniform Resource Identifier

Document Type Definition

arbitrary code execution

list of character entity references in XML and HTML

data validation

server-side request forgery

billion laughs attack

Sign in to save

What links here5 pages

billion laughs attack

Similar entities

Discovered by embedding cosine similarity (sentence-transformers MiniLM, 384-dim).

Entitydist 0.52

packet injection

Entitydist 0.52

Entitydist 0.54

Entitydist 0.55

spoofing attack

Entitydist 0.56

list of attacks by ASALA

Entitydist 0.56

Category:Massive Attack members

Entitydist 0.57

multilevel security

Entitydist 0.57

Category:Massive Attack

Entitydist 0.57

Entitydist 0.59

Entitydist 0.60

Template:Personal attack removed

Entitydist 0.61