X-Path Injection

The introduction of operators XPath (XPath Injection)

These attacks are aimed at Web servers, create a query on the XPath language, based on the data entered by the user.

Language XPath 1.0 is designed to allow access to parts of the document in XML. It can be used directly or as part of XSLT-converting XML-documents or the queries XQuery.