mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-30 20:39:39 +02:00
new capacity bits (#67)
This commit is contained in:
parent
afaffc0df6
commit
7d0e7320e2
261 changed files with 10591 additions and 231 deletions
17
tests/fixtures/xxe/javascript/unsafe_fast_xml_parser.js
vendored
Normal file
17
tests/fixtures/xxe/javascript/unsafe_fast_xml_parser.js
vendored
Normal file
|
|
@ -0,0 +1,17 @@
|
|||
// Unsafe: tainted XML reaches a fast-xml-parser instance whose
|
||||
// constructor was explicitly opted into entity resolution
|
||||
// (`processEntities: true`). fast-xml-parser is XXE-safe by default,
|
||||
// but this opt-in form is the documented unsafe escape hatch. The
|
||||
// constructor-driven fact is captured in `XmlParserConfigResult`
|
||||
// (`external_entities = true`) and the `parser.parse(xml)` call adds
|
||||
// Cap::XXE on top of the otherwise empty sink_caps.
|
||||
const { XMLParser } = require("fast-xml-parser");
|
||||
|
||||
function handle(req, res) {
|
||||
const body = req.query.xml;
|
||||
const parser = new XMLParser({ processEntities: true });
|
||||
const result = parser.parse(body);
|
||||
res.json(result);
|
||||
}
|
||||
|
||||
module.exports = { handle };
|
||||
Loading…
Add table
Add a link
Reference in a new issue