Vosman12 minBountyHunterA nice easy little box. With XML Entity Injection attack and little bit of Python script abuse to escalate to root.