{"id":18798169,"url":"https://github.com/sasanlabs/vulnerableapp-php","last_synced_at":"2025-04-13T17:12:44.715Z","repository":{"id":43933411,"uuid":"325861510","full_name":"SasanLabs/VulnerableApp-php","owner":"SasanLabs","description":"Vulnerable Application written in PHP","archived":false,"fork":false,"pushed_at":"2022-12-31T00:17:54.000Z","size":44,"stargazers_count":10,"open_issues_count":9,"forks_count":28,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-03-27T08:03:42.484Z","etag":null,"topics":["apache","appsec","burp","hacktoberfest","owasp-vulnerableapp","owasp-vulnerableapp-facade","owasp-zap","php","security"],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/SasanLabs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-12-31T19:27:02.000Z","updated_at":"2023-11-06T13:37:22.000Z","dependencies_parsed_at":"2023-01-31T17:16:10.011Z","dependency_job_id":null,"html_url":"https://github.com/SasanLabs/VulnerableApp-php","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SasanLabs%2FVulnerableApp-php","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SasanLabs%2FVulnerableApp-php/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SasanLabs%2FVulnerableApp-php/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/SasanLabs%2FVulnerableApp-php/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/SasanLabs","download_url":"https://codeload.github.com/SasanLabs/VulnerableApp-php/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248750126,"owners_count":21155687,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["apache","appsec","burp","hacktoberfest","owasp-vulnerableapp","owasp-vulnerableapp-facade","owasp-zap","php","security"],"created_at":"2024-11-07T22:11:08.596Z","updated_at":"2025-04-13T17:12:44.697Z","avatar_url":"https://github.com/SasanLabs.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# ![VulnerableApp-php](https://raw.githubusercontent.com/SasanLabs/VulnerableApp/master/docs/logos/Coloured/iconColoured.png) VulnerableApp-php\n[![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) [![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg?style=flat-square)](http://makeapullrequest.com) [![](https://img.shields.io/twitter/follow/sasan_karan?style=flat\u0026logo=twitter)](https://twitter.com/intent/follow?screen_name=sasan_karan)\n\nVulnerableApp-php is a Vulnerable Application containing vulnerabilities specific to PHP technology stack. It is part of the farm of Vulnerable Applications provided by [SasanLabs](https://github.com/SasanLabs). This Vulnerable Application utilises the facilities provided by [Owasp VulnerableApp-Facade](https://github.com/SasanLabs/VulnerableApp-facade) and it is just exposing bunch of Api's which are vulnerable to various attacks.\nUser Interface for VulnerableApp-php is provided by [Owasp VulnerableApp-Facade](https://github.com/SasanLabs/VulnerableApp-facade).\n\n## How to run the project\nAs VulnerableApp-php doesn't provide user interface and relies on [Owasp VulnerableApp-facade](https://github.com/SasanLabs/VulnerableApp-facade) hence you need to start it using instructions: [VulnerableApp-Facade simple start](https://github.com/SasanLabs/VulnerableApp-facade#simple-start)\n\nFor building the docker image and then using [VulnerableApp-Facade](https://github.com/SasanLabs/VulnerableApp-facade#simple-start) to test the working of the application.\n```\n1. Build the docker image with command: docker buildx build --platform linux/amd64,linux/arm64,linux/ppc64le -t sasanlabs/owasp-vulnerableapp-php:latest . --push\n2. Navigate to VulnerableApp-Facade and run it as described in VulnerableApp-Facade#simple-start\n```\n\n## Contact\nPlease raise a github issue for enhancement/issues in VulnerableApp-jsp or send email to karan.sasan@owasp.org regarding queries\nwe will try to resolve issues asap.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsasanlabs%2Fvulnerableapp-php","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fsasanlabs%2Fvulnerableapp-php","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fsasanlabs%2Fvulnerableapp-php/lists"}