• Home
• net.pascal-lab
• tai-e
• 0.5.1
• source code
• README.adoc

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

commonly-used-taint-config.sink.injection.apache-Xalan.xpath-injection.README.adoc Maven / Gradle / Ivy

= Description

- **Overview**: 
    Apache Xalan provides a set of methods for evaluating XPath expressions and selecting nodes within XML documents. These methods enable developers to easily locate, filter, and process specific nodes and data within XML documents.

- **Common Use Cases**:
    These APIs are commonly used to parse and execute XPath expressions, returning corresponding results based on the content of XML documents.

- **Security Risks**:
    XPath Injection: Similar to SQL injection attacks, attackers can craft malicious XPath expressions to reveal the structure of XML data or access data that would normally be restricted. If the XML data is used for user authentication, attackers could even escalate their privileges.