webProeasy

Lab 139 — HireFlow — XXE via XML Application Intake

hackadvisor

Task: HireFlow recruitment platform with XML-based ATS integration endpoint. Solution: XXE injection via external entity to read /root/flag.txt, flag reflected in JSON response.

$ ls tags/ techniques/

lfi file_read api xxe xml recruitment_platform

xxe_file_readexternal_entity_injection

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]Lab 291 — HireFlow — Broken Authorization in Premium Feature Endpoints— hackadvisor
[web][Pro]Lab 140 — Pressboard — XXE via RSS Feed Import— hackadvisor
[web][Pro]Lab 38 — PipelineForge — XXE in XML Pipeline Import— hackadvisor
[web][Pro]Lab 156 — IntegraFlow — Path Traversal via Double URL Encoding— hackadvisor
[web][Pro]Lab 102 — HireScreen — Indirect Prompt Injection via Resume Description— hackadvisor