Description: XSLT engines are software components aimed to transform a XML content in another format, either XML, HTML, text, PDF, … Some high-level applications use those feature-rich components without fully understanding their features. Given the dangerous functionalities exposed by most XSLT engines, it is expected that a systematic and bottom-up review will highlight high-impact vulnerabilities in various applications using XSLT engines.
Slide :- http://www.hackinparis.com/slides/hip2k11/05-OffensiveXSLT.pdf
Tags: securitytube , Confidence , hacking , hackers , information security , convention , computer security , hack-in-the-paris-11 , hack-in-the-paris-2011 ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.