XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
GNU General Public License v3.0
1.69k
stars
339
forks
source link
Fix unintended XSS in SSRF example. Change link title for SSRF bible. #10
Closed
shrz closed 5 years ago
Also we can use file_get_contents() to read local files. May be we should add some additional checks for http:// in URL for example.