Offensive XSLT
Video Link:
XSLT engines are software components aimed to transform a XML content in another format, either XML, HTML, text, PDF, … Some high-level applications use those feature-rich components without fully understanding their features. Given the dangerous functionalities exposed by most XSLT engines, it is expected that a systematic and bottom-up review will highlight high-impact vulnerabilities in various applications using XSLT engines.