XLSX XXE Injection

Injects XML External Entity (XXE) payloads into XLSX files to test for XXE vulnerabilities in spreadsheet parsers.

Which XML file inside the XLSX archive to replace with your payload.

Complete XML content for the target file. This replaces the entire content of the selected injection point.

Drag & drop your file here, or

About this tool

Injects XML External Entity (XXE) payloads into XLSX files to test for XXE vulnerabilities in spreadsheet parsers.

Read documentation →