Vuln Shop

Intentionally vulnerable e-commerce demo for WAF testing.

Attack Surface

HIGH SQL Injection

Product search, user lookup, and login all use raw SQL. Try ' OR 1=1 --

HIGH Reflected XSS

Search results reflect user input unescaped into HTML. Try <script>alert(document.cookie)</script>

HIGH Path Traversal

File viewer reads real files from disk. Try ../../../etc/passwd

MED SSRF

URL fetcher makes real HTTP requests. Try http://169.254.169.254/latest/meta-data/

MED IDOR

User profiles accessible by ID with no auth check. Try incrementing IDs.

LOW Information Disclosure

Error pages leak stack traces. API endpoints expose internal data.