writeups.xyz / Ping'ing XMLSec

Submitter : c2a

Date: 30 September 2021

Bounty : undisclosed

Vulnerabilities :

• XSLT
• XXE

Programs :

• Ping
• Netflix
• Paypal

Authors :

• An Trinh (@_Tint0)

Link :
https://blog.tint0.com/2021/09/pinging-xmlsec.html