XPath injection is an attack targeting Web sites that create XPath queries from user-supplied data. If an application embeds unprotected data into an XPath query, the query can be altered so that it is no longer parsed in the manner originally intended. This can be done by bypassing the Web site authentication system and extracting the structure of one or more XML documents in the site.

Read more about it:
>>	The Web Application Security Consortium outlines how XPath injection works.
>>	Amit Klein compares simple XPath injection and blind XPath injection.
>>	Runa Dwibedi discusses XPath injection techniques and countermeasures.

Last updated on: Jun 13, 2006