## https://sploitus.com/exploit?id=9B57F777-E079-51CB-8ACC-2E89B8A86711
# ktor-xxe-poc
This is a proof-of-concept reproducing the security problem [CVE-2023-45612](https://nvd.nist.gov/vuln/detail/CVE-2023-45612).
## Versions Used
- Ktor: 2.2.3
- xmlutil: 0.84.3
- Java: 17.0.6
- Gradle: 9.1.0
- Python: 3.13.7
## How to Run
1. Build and run the server:
```bash
./gradlew build
./gradlew run
```
2. Test the XXE payload :
```bash
python test.py
```
The server will run on `http://localhost:8080`