Vulnerable Web Application

  • Start Page

  • HTTP and HTML Security

  • HTML Tampering
  • Authentication Flaws
  • CSRF
  • Cross-Site Access (CORS)
  • PostMessage

  • Cross-site scripting (XSS)

  • Server-side
  • Client-side

  • Injection

  • SQL Injection
  • XPath Injection
  • Embedding Pages
  • Cross-Origin Access

Cross-site JavaScript access