XXE-study
XXE-study copied to clipboard
server not running
EXPLOITATION
Visit http://localhost:8082/xxe to access the vulnerable web application Use http://attackerserver-php:8888/ to access the attacker hosting server from the vulnerable web app.
DEBUGGING
+---------------------------------+----------------------------------------------------------+ | docker containers | How to access | +---------------------------------+----------------------------------------------------------+ | attacker server (file hosting ) | docker container exec -it attackerserver-php bash | +---------------------------------+----------------------------------------------------------+ | vulnerable server | docker container exec -it vulnerableserver-php bash | +---------------------------------+----------------------------------------------------------+ | aws metadata simulator | docker container exec -it aws-metadata-simulator-php bash| +---------------------------------+--------------------------------- i tried as the video did as you mention here.
i am getting like this when i try to access http://localhost:8082/xxe i am not getting anythings? could you please tell me what to do next