Changes for page Engine_XalanJ

Last modified by Nicolas Gregoire on 2012/01/31 17:35
From version Icon 31.1 Icon
edited by Nicolas Gregoire
on 2012/01/11 22:47
Change comment: There is no comment for this version
To version Icon 35.1 Icon
edited by Nicolas Gregoire
on 2012/01/11 23:21
Change comment: There is no comment for this version

Summary

Details

Icon Page properties
Content
... ... @@ -25,23 +25,29 @@
25 25  * Java properties disclosure
26 26  * Java environment disclosure
27 27  
28 -== Java environment disclosure ==
28 +== Java properties disclosure ==
29 29  
30 -The checkEnvironment() extension function (documented [[here>>http://xml.apache.org/xalan-j/faq.html#faq-N10064||rel="__blank"]]), associated to the Xalan namespace, will display some information about the execution context (packages, paths, versions, ...). The output of the execution of [[xalanj-checkenv.xsl>>attach:xalanj-checkenv.xsl]] is [[attached>>attach:xalanj-checkenv-output.txt]].
30 +The xsl:system-property() standard function can be called with non standard arguments, mapped to Java properties.
31 31  
32 +|=Namespace|=Extension function|=PoC|=Sample output
33 +|http:~/~/xml.apache.org/xalan|checkEnvironment()|[[xalanj-checkenv.xsl>>attach:xalanj-checkenv.xsl]]|[[xalanj-checkenv-output.txt>>attach:xalanj-checkenv-output.txt]]
32 32  
33 -~|=Namespace|=Extension function|=PoC|=Sample output
34 -~|http:~~/~~/xml.apache.org/xalan/java/java.util.Date|new|~[~[xalanj-java-date.xsl>>attach~:xalanj-java-date.xsl]]|~[~[xalanj-java-date-output.txt>>attach:xalanj-java-date-output.txt]]~\~\
35 +== Java environment disclosure ==
35 35  
37 +The checkEnvironment() extension function (documented [[here>>http://xml.apache.org/xalan-j/faq.html#faq-N10064||rel="__blank"]]) will display some information about the execution context (packages, paths, versions, ...).
36 36  
37 -XX
39 +|=Namespace|=Extension function|=PoC|=Sample output
40 +|http:~/~/xml.apache.org/xalan|checkEnvironment()|[[xalanj-checkenv.xsl>>attach:xalanj-checkenv.xsl]]|[[xalanj-checkenv-output.txt>>attach:xalanj-checkenv-output.txt]]
38 38  
39 39  == Java code execution ==
40 40  
41 -The following code will display the current date :
44 +The attached code will display the current date using a newly created "java.util.Date" object. This should be enough to demonstrate Java code execution.
42 42  
43 -TODO
44 44  
47 +|=Namespace|=Extension function|=PoC|=Sample output
48 +|http:~/~/xml.apache.org/xalan/java/java.util.Date|new()|[[xalanj-java-date.xsl>>attach:xalanj-java-date.xsl]]|Current date:
49 +Wed Jan 11 22:45:07 CET 2012
50 +
45 45  == Execution of external commands ==
46 46  
47 47  The following code will execute the command "touch /tmp/hello" :