1. Symantec-Broadcom-Horizontal/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Malicious XML External Entity Payload Upload

Attack: Malicious XML External Entity Payload Upload

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects the attempt to upload malicious XML External Entity payload to vulnerable server in order to obtain potentially sensitive information. This may lead to further attacks.

Additional Information

XML External Entity is an attack against applications that could parse XML input.

When vulnerable application parses these malicious XML input containing reference to an external entity, it may lead to to the disclosure of confidential data, denial of service, server side request forgery, port scanning from the perspective of the machine where the parser is located, and other system impacts.


  • Applications with XML input parsing function.


  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube