Skip to content

bocajspear1/acme-web-app

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
app
app
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
database.sql
database.sql
 
 
debconf.sh
debconf.sh
 
 
vuln_list.txt.base64
vuln_list.txt.base64
 
 

Repository files navigation

Acme Inc. Vulnerable Web Application

This is a vulnerable web application made for the 2016 CNY Hackathon. It's written in PHP and uses MySQL.

DON'T USE THIS IN A PRODUCTION ENVIRONMENT!

The operational state can be tested using the test.php file.

Requirements

Needs the PHP mysqli library.

Installation

Manual

Copy the contents of the html directory into the /var/www/html or equivalent directory.

Create the database hackathon, then populate it using the database.sql file.

Docker

Build using:

docker build -t acme-webapp .

Then run using (Maps port 1337 to port 80 on the container):

docker run -p 1337:80 --rm -it --name acme-webapp-test -v`pwd`/app:/var/www/html acme-webapp

Vulnerability List

A list of vulnerabilities is available in the vuln_list.txt.base64 file. As indicated, the list is base64 encoded so you can try to find all the vulnerabilities on your own before checking it against the list. Don't cheat :).

About

Vulnerable web application made for CNY Hackathon 2016

Topics

php education webapp vulnerability vulnerable cny-hackathon

Resources

Readme
Activity

Stars

8 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages