Skip to content

This is a vulnerable Flask web application designed to provide a lab environment for people who want to improve their web penetration testing skills. It includes multiple types of vulnerabilities for you to practice exploiting.

License

Notifications You must be signed in to change notification settings

videvelopers/Vulnerable-Flask-App

Repository files navigation

Vulnerable Flask App

Salman-sk v.i. developers

Description

This is a vulnerable Flask web application designed to provide a lab environment for people who want to improve their web penetration testing skills. It includes multiple types of vulnerabilities for you to practice exploiting. Vulnerabilities

This application contains the following vulnerabilities:

  • HTML Injection

  • XSS

  • SSTI

  • SQL Injection

  • Information Disclosure

  • Command Injection

  • Brute Force

  • Deserialization

  • Broken Authentication

  • DOS

  • File Upload

Requirements

To run the application, you will need to have Python 3 installed on your machine.

Usage

Linux

  1. Clone this repository to your local machine. git clone https://github.com/videvelopers/Vulnerable-Flask-App.git
  2. Navigate to the cloned directory. cd Vulnerable-Flask-App
  3. Run the Flask application.

Windows

  1. Clone this repository to your local machine. git clone https://github.com/videvelopers/Vulnerable-Flask-App.git
  2. Navigate to the cloned directory. cd Vulnerable-Flask-App
  3. Run the Flask application.

Disclaimer

This application is for educational purposes only. Use it at your own risk. The author is not responsible for any damage caused by this application. Do not run this application on a production server.

contact

linkedin

salman@videvelopers.com

blog

About

This is a vulnerable Flask web application designed to provide a lab environment for people who want to improve their web penetration testing skills. It includes multiple types of vulnerabilities for you to practice exploiting.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages