AppSec Tales XX — E

Karol Mazurek
5 min readSep 17, 2023

Application Security Testing for XML eXternal Entity injections.


The article describes how to test the application to find XXE injection vulnerabilities. The advice in this article is based on the following:

  • OWASP Web Security Testing Guide
  • OWASP Application Security Verification Standard