用试凑法,攻击者可以检查 XML文档的各个子节点并通过查看这个XPath表达式是否能促成成功的身份验证以收集信息。
By trial and error, the attacker can check the various child nodes of the XML document and gather information by seeing if this XPath expression results in a successful authentication.
用试凑法,攻击者可以检查 XML文档的各个子节点并通过查看这个XPath表达式是否能促成成功的身份验证以收集信息。
By trial and error, the attacker can check the various child nodes of the XML document and gather information by seeing if this XPath expression results in a successful authentication.
应用推荐