This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Testing for XML Content-Level (OWASP-WS-004)
From OWASP
XML content-level attacks. These attacks involve malicious content inside XML elements and attributes. This category of attack includes SQL Injection, buffer-overflow attempts, XPath injection, and command injection.
Example HERE