XML Parser

Here an XML file is read and the information is accessed and manipulated by an external program. Parsers convert XML data into a form that other programs can use.

For XXE injection is parser is misconfigured to process external entities then it can lead to unauthorized access to files, websites etc.

Common XML Parsers

  • DOM

  • SAX (SImplep API for XML)

  • StAX (Streaming API for XML)

  • XPath Parser

PreviousXML EntitiesNextExploitation

Last updated