Skills
.Work. You
Rest

php-xxe-audit

Community

Identify and mitigate XXE risks in PHP apps.

Software Engineering#vulnerability#php#xml#code-review#security-audit#xxe
Author0xShe
Version1.0.0
Installs0

System Documentation

What problem does it solve?

PHP applications that parse XML can be exposed to XXE vulnerabilities when external entities and DOCTYPE are allowed. This skill helps identify XXE risks in PHP source code and provides remediation guidance to prevent data exposure.

Core Features & Use Cases

  • Identify XML parser usage points that may be vulnerable to XXE (DOCTYPE, external entities)
  • Verify safe configuration and usage of PHP XML parsers (libxml options, entity loaders)
  • Produce evidence-backed reports with severity ratings, PoC, and concrete fixes for developers

Quick Start

Run the XXE audit on a PHP project to generate an evidence-backed report with recommended mitigations.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: php-xxe-audit
Download link: https://github.com/0xShe/PHP-Code-Audit-Skill/archive/main.zip#php-xxe-audit

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.