VulnerableApp
VulnerableApp copied to clipboard
SasanLabs
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
**Is your feature request related to a problem? Please describe.** Docker images for VulnerableApp have just 2 versions latest and unreleased. It should be latest (whcih is unreleased) and specific...
**Is your feature request related to a problem? Please describe.** In the SSRF vulnerability, we have added the support for AWS metadata service based attack but there are many cloud...
Hello guy, I would like to be able to translate the application into French. I am working on this translation by adding a file "VulnerableApp/src/main/resources/i18n/messages_fr_FR.properties", based on the VulnerableApp/src/main/resources/i18n/messages_en_US.properties file....
**Is your feature request related to a problem? Please describe.** XSSWithHtmlTagInjection vulnerability is handled in the backend at: https://github.com/SasanLabs/VulnerableApp/blob/ed98eb0923893ea822761cca3e7d0969b0eb340d/src/main/java/org/sasanlabs/service/vulnerability/xss/reflected/UrlParamBasedHtmlTagInjection.java It has the following issues: 1. Class name doesn't match the...
**Is your feature request related to a problem? Please describe.** Currently there is no level in Unrestricted File Upload which doesn't have a check on size of file uploaded. **Describe...
- Nimbus jose jwt library upgrade due to vulnerabilities https://mvnrepository.com/artifact/com.nimbusds/nimbus-jose-jwt/8.3 https://github.com/advisories/GHSA-g5vf-v6wf-7w2r https://github.com/advisories/GHSA-269g-pwp5-87pp
**Is your feature request related to a problem? Please describe.** Similar to the Vulnerability definition we provide for DAST, we need to add the support for SAST tools too. Along...
**Is your feature request related to a problem? Please describe.** Currently, VulnerableApp's UnrestrictedFileUpload vulnerability is not having any indicator for telling users that the uploaded file is too large which...
I modified the function so that when file larger than 10mb is uploaded, it will be rejected and some warn message will be displayed on the UI I have no...
