LAB 120 - Identifying XML Injection

Course Details

Course Number: LAB 120

Course Duration: 5 minutes

Course CPE Credits: 0.1

NICE Specialty Areas

Risk Management (RSK)
Securely Provision (SP)
Software Development (DEV)

Related Subject Matter

CWE
Learn Labs
OWASP ASVS
OWASP Web
Web

Foreign Languages Available:

English

Course Overview

This lab on XML Injection assesses the learner’s understanding of how an existing XML Injection vulnerability in an online banking web application can be discovered and exploited.

After completing this lab, the learner will understand how adversaries can exploit such vulnerabilities to bypass authentication mechanisms and gain access to an application, sometimes with high-level privileges.

Ready to Demo this course? Questions? Contact Us!