function readOnly(count){ }
Sign Up ›
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
Learn More

Browse by Topic
ShowAll Questionssorted byDate Posted
+ Start a Discussion
SK_SinghSK_Singh 

How to Prevent XML injection Attacks??

 

Hi All,

 

Anyone knows how to prevent XML Injection Attacks. Actually,  I am working on salesforce- PHP integration Project. When, I run a Burp report, then it says that 'The WSDL parameter appears to be vunerable to XML injection'.

Thanks in advance........

sfdcfoxsfdcfox
I don't think this will affect salesforce.com directly, but it is a warning that your PHP script may blow up if someone submits a malicious request to your script in a way that ultimately gets passed into your script. Try reading up more at: http://phpsecurity.readthedocs.org/en/latest/Injection-Attacks.html