GenericTests/XPathExpressionTests.java at main · mem0verwrite/GenericTests · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
import java.net.Socket;

import javax.xml.parsers.DocumentBuilder;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.xpath.XPath;
import javax.xml.xpath.XPathExpression;
import javax.xml.xpath.XPathFactory;

import org.xml.sax.InputSource;

public class XPathExpressionTests {

  public void safeXPathExpression(Socket sock) throws Exception {
    DocumentBuilderFactory factory = DocumentBuilderFactory.newInstance();
      factory.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true);
      DocumentBuilder builder = factory.newDocumentBuilder();
      XPathFactory xFactory = XPathFactory.newInstance();
      XPath path = xFactory.newXPath();
      XPathExpression expr = path.compile("");
      expr.evaluate(builder.parse(sock.getInputStream())); //safe
  }

  public void unsafeExpressionTests(Socket sock) throws Exception {
      XPathFactory xFactory = XPathFactory.newInstance();
      XPath path = xFactory.newXPath();
      XPathExpression expr = path.compile("");
      expr.evaluate(new InputSource(sock.getInputStream())); //unsafe
  }
}