From 9b4a7076e9a7a5fc63109bac3a365da131749779 Mon Sep 17 00:00:00 2001
From: Boik <qazbnm456@gmail.com>
Date: Thu, 2 Aug 2018 00:29:48 +0800
Subject: [PATCH] add an article

---
 README-jp.md | 1 +
 README-zh.md | 1 +
 README.md    | 1 +
 3 files changed, 3 insertions(+)

diff --git a/README-jp.md b/README-jp.md
index 8955dc2..b5239fa 100644
--- a/README-jp.md
+++ b/README-jp.md
@@ -163,6 +163,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre
 ### XXE - XML eXternal Entity
 
 - [XXE](https://phonexicum.github.io/infosec/xxe.html) - Written by [@phonexicum](https://twitter.com/phonexicum).
+- [XXE OOB extracting via HTTP+FTP using single opened port](https://skavans.ru/en/2017/12/02/xxe-oob-extracting-via-httpftp-using-single-opened-port/) - Written by [skavans](https://skavans.ru/).
 
 <a name="csrf"></a>
 ### CSRF - Cross-Site Request Forgery
diff --git a/README-zh.md b/README-zh.md
index a0c2b9a..26e006f 100644
--- a/README-zh.md
+++ b/README-zh.md
@@ -173,6 +173,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre
 - [XXE](https://phonexicum.github.io/infosec/xxe.html) - Written by [@phonexicum](https://twitter.com/phonexicum).
 - [XML实体攻击 - 从内网探测到命令执行步步惊心](http://www.freebuf.com/video/49961.html) - Written by 张天琪.
 - [XXE漏洞的简单理解和测试](https://b1ngz.github.io/XXE-learning-note/) - Written by [@b1ngz](https://b1ngz.github.io/).
+- [XXE OOB extracting via HTTP+FTP using single opened port](https://skavans.ru/en/2017/12/02/xxe-oob-extracting-via-httpftp-using-single-opened-port/) - Written by [skavans](https://skavans.ru/).
 
 <a name="csrf"></a>
 ### CSRF - Cross-Site Request Forgery
diff --git a/README.md b/README.md
index 055a4db..1424ef1 100644
--- a/README.md
+++ b/README.md
@@ -160,6 +160,7 @@ If you enjoy this awesome list and would like to support it, check out my [Patre
 ### XXE - XML eXternal Entity
 
 - [XXE](https://phonexicum.github.io/infosec/xxe.html) - Written by [@phonexicum](https://twitter.com/phonexicum).
+- [XXE OOB extracting via HTTP+FTP using single opened port](https://skavans.ru/en/2017/12/02/xxe-oob-extracting-via-httpftp-using-single-opened-port/) - Written by [skavans](https://skavans.ru/).
 
 <a name="csrf"></a>
 ### CSRF - Cross-Site Request Forgery