Skip to content
  • Find us on Facebook
  • Follow us on Twiter
  • Follow us on LinkedIn
  • Contact
  • Search
  • Blog
    • Product Releases
    • Docs & FAQs
    • Events
    • Web Security
  • Web Vulnerability Scanner
    • Vulnerability Scanner
    • Indepth Crawl & Analysis
    • Highest Detection Rate
    • Lowest False Positives
    • Reporting and Remediation
    • WordPress Checks
    • Network Security
    • Advanced Features
  • Try
    • Download Software
    • Free Online Scanner
  • Buy
    • Pricing
    • Find a Reseller
    • Request a Quote
  • Solutions
    • Vulnerability Scanner
    • Indepth Crawl & Analysis
    • Highest Detection Rate
    • Lowest False Positives
    • Vulnerability Management
    • WordPress Checks
    • Network Security
    • Advanced Features
  • Company
    • Company News
    • Customers
    • Testimonials
    • Become a Partner
    • Jobs
    • Contact
  • Support
    • FAQ
    • Support Portal
  • Learn
    • Manual
    • Reviews
    • Case Studies
    • Whitepapers
    • Webinars
    • Acunetix Academy
  • GET DEMO
Skip to content
Is Your Website Hackable?
70% are. Detect and action with Acunetix

Download Online Scan

XPath injection vulnerability

  1. Web Vulnerabilities
  2. XPath injection vulnerability
Description
  • This script is possibly vulnerable to XPath Injection attacks.<br/><br/>XPath Injection is an attack technique used to exploit web sites that construct XPath queries from user-supplied input.
Remediation
  • Your script should filter metacharacters from user input.
References
    • XPath injection in XML databases
Severity
Classification
  • CWE-643
  • CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Tags
  • Xpath Injection

Acunetix is available on premise and online. Choose your trial.

Download   Online Scan
Product Information
  • AcuSensor Technology
  • AcuMonitor Technology
  • Network Security Scanner
  • Acunetix Integrations
  • JavaScript Security
Use Cases
  • Penetration Testing Software
  • Website Security Scanner
  • External Vulnerability Scanner
  • Web Application Security
  • Vulnerability Management Software
Website Security
  • Cross-site Scripting
  • SQL Injection
  • Reflected XSS
  • CSRF Attacks
  • Directory Traversal
Learn More
  • TLS Security
  • Securing MySQL Server
  • WordPress Security
  • Web Service Security
  • Prevent SQL Injection
Documentation
  • FAQs
  • Videos
  • Web Vulnerabilities
  • Network Vulnerabilities
  • Trojans and Backdoors

© Acunetix, 2018

  • Acunetix Online Login
  • Privacy Policy
  • Terms and Conditions
  • Find us on Facebook
  • Follow us on Twiter
  • Follow us on LinkedIn