DVWS icon indicating copy to clipboard operation
DVWS copied to clipboard

verified publisher icon interference-security

Metadata

OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.

Results 4 DVWS issues
Sort by recently updated
recently updated
newest added

ChangePassword does not verify session

1 comment

The change password function in csrf.php does not actually check the username or if a valid session has been established. It always returns 'Password changed successfully.' I would also rename...

adriendb avatar adriendb

Added Docker Support

Aravindha1234u avatar Aravindha1234u

Fix csrf subpage

Close #8 "There is no way to directly share the $_SESSION variable between Apache and the Ratchet process. It is possible, however, to start a session with the Apache server...

cz0r3k avatar cz0r3k

Bump symfony/http-foundation from 6.4.16 to 6.4.29

Bumps [symfony/http-foundation](https://github.com/symfony/http-foundation) from 6.4.16 to 6.4.29. Release notes Sourced from symfony/http-foundation's releases. v6.4.29 Changelog (https://github.com/symfony/http-foundation/compare/v6.4.28...v6.4.29) no significant changes v6.4.28 Changelog (https://github.com/symfony/http-foundation/compare/v6.4.27...v6.4.28) bug symfony/symfony#62324 [HttpFoundation] Fix parsing hosts and schemes in...

dependabot[bot] avatar dependabot[bot]

dependencies
php

Metadata

329
Stars
69
Forks
Watchers

Owner

verified publisher icon interference-security

Metadata

OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.

Back