rubennati/vulnerable-php-code-examples external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

rubennati/vulnerable-php-code-examples

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/rubennati/vulnerable-php-code-examples)

Close

rubennati / vulnerable-php-code-examplesView on GitHubMore

• External links
• Readme badge

Examples of vulnerable PHP code

☆12Feb 15, 2024Updated 2 years ago

Alternatives and similar repositories for vulnerable-php-code-examples

Users that are interested in vulnerable-php-code-examples are comparing it to the libraries listed below

• gmoaozora / gmo-aozora-api-python

  View on GitHub
  Python SDK for GMO Aozora Net Bank, Ltd.
  ☆11Oct 4, 2022Updated 3 years ago
• tranquac / Linux-Privilege-Escalation

  View on GitHub
  ☆16Apr 6, 2021Updated 4 years ago
• XTeam-Wing / SSRF_BYPASS

  View on GitHub
  SSRF 绕过 Payload
  ☆15Nov 12, 2020Updated 5 years ago
• 0xCCF4 / ExpKit

  View on GitHub
  A framework and build automation tool to process exploits/payloads to evade antivirus and endpoint detection response products using reus…
  ☆11Jan 16, 2024Updated 2 years ago
• w9w / Open_Redirects_list

  View on GitHub
  -
  ☆11Nov 21, 2020Updated 5 years ago
• Email-Analysis-Toolkit / command-injection-scanner

  View on GitHub
  ☆11Aug 18, 2021Updated 4 years ago
• Chocapikk / CVE-2024-8672

  View on GitHub
  Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution
  ☆13Dec 2, 2024Updated last year
• antonpernisch / bruteproxy.py

  View on GitHub
  BruteProxy.py framework for brute-forcing via HTTP/HTTPS requests with looping proxies.
  ☆12Jan 12, 2026Updated 2 months ago
• Chocapikk / CVE-2023-51467

  View on GitHub
  Apache OfBiz Auth Bypass Scanner for CVE-2023-51467
  ☆11Dec 31, 2023Updated 2 years ago
• initinfosec / OSCP-Exam-Report-Generator-From-Markdown

  View on GitHub
  OSCP Exam Report Template in Markdown
  ☆11Jan 14, 2021Updated 5 years ago
• deepsyx / simple-headless-browser-serverless

  View on GitHub
  Simple example of how to use Chrome as headless browser on AWS lambda
  ☆16Mar 6, 2020Updated 6 years ago
• Chocapikk / CVE-2024-3400

  View on GitHub
  ☆14Apr 6, 2025Updated 11 months ago
• cwinfosec / pentestmonkey

  View on GitHub
  Archive of pentestmonkey.net cheat sheets in case the site goes away permanently
  ☆13Oct 28, 2019Updated 6 years ago
• K3ysTr0K3R / CVE-2023-51467-EXPLOIT

  View on GitHub
  A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass
  ☆12Dec 31, 2023Updated 2 years ago
• venomnis / Misanthro.py

  View on GitHub
  Attacking indiscriminately every header, cookie, GET and POST parameter with blind fury.
  ☆13Sep 25, 2025Updated 5 months ago
• Lmnoppy / Scrippy

  View on GitHub
  Scrippy is a browser extension that holds sql statements (think clip board) to aid devlopers in the testing of websites for basic code in…
  ☆12Aug 21, 2022Updated 3 years ago
• website-templates / simple-product_responsive-template

  View on GitHub
  Free simple responsive website template
  ☆13Feb 25, 2019Updated 7 years ago
• xen0vas / XDNR

  View on GitHub
  XDNR is a X0R Cryptor along with DEC/N0T/R0R encoder plus random byte insertion encoder, that generates null free encrypted and encoded s…
  ☆17Jul 12, 2022Updated 3 years ago
• orwagodfather / ShoLister

  View on GitHub
  ShoLister is a tool that collects all available subdomains for specific hostname or organization from Shodan. The tool is designed to be …
  ☆13May 10, 2022Updated 3 years ago
• Chocapikk / CVE-2024-29269

  View on GitHub
  An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.
  ☆17May 19, 2024Updated last year
• 00xmora / autorecon

  View on GitHub
  ☆18Jul 11, 2025Updated 8 months ago
• K3ysTr0K3R / CVE-2023-23752-EXPLOIT

  View on GitHub
  A PoC exploit for CVE-2023-23752 - Joomla Improper Access Check in Versions 4.0.0 through 4.2.7
  ☆16Feb 1, 2026Updated last month
• bepass-org / dnsutils

  View on GitHub
  DNS utils module for bepass sdk, supporting doh, dot, dnscrypt and static hosts file like configuration
  ☆16Jan 13, 2024Updated 2 years ago
• hextreeio / android-challenge1

  View on GitHub
  ☆21Mar 7, 2024Updated 2 years ago
• 11whoami99 / XSS-keylogger

  View on GitHub
  A Simple JS code to keylogger data and send it to the personal server
  ☆31Dec 30, 2024Updated last year
• Josue87 / BurpMetaFinder

  View on GitHub
  Burp Suite extension for extracting metadata from files
  ☆20Dec 29, 2020Updated 5 years ago
• seutje / aprilFools.css

  View on GitHub
  Harmlessly goof up your co-workers browser and chrome dev tools
  ☆79Mar 29, 2013Updated 12 years ago
• Pyr0sec / CSRF-PoC-generator

  View on GitHub
  CSRF Proof of Concept script generator webapp 💻🔒
  ☆20Feb 15, 2023Updated 3 years ago
• Chocapikk / CVE-2024-1212

  View on GitHub
  Unauthenticated Command Injection In Progress Kemp LoadMaster
  ☆19Aug 26, 2025Updated 6 months ago
• freqyXin / Offensive-Wireless-Security

  View on GitHub
  Slide deck for DEF CON 30 - Read Team Village - Offensive Wireless Security presentation
  ☆13Aug 16, 2022Updated 3 years ago
• osirislab / Giraffe

  View on GitHub
  ☆27Sep 4, 2017Updated 8 years ago
• Chocapikk / CVE-2023-50917

  View on GitHub
  MajorDoMo Unauthenticated RCE: Deep Dive & Exploitation Techniques
  ☆15Dec 18, 2023Updated 2 years ago
• rohit-sonii / Escalating-Self-XSS-to-Account-Takeover

  View on GitHub
  This repository contains complete source code for setting up the environment and exploit code for the vulnerability.
  ☆19Mar 23, 2023Updated 2 years ago
• nopgadget / CVE-2022-2588

  View on GitHub
  A PoC for CVE-2022-2588 that triggers a WARNING
  ☆10Sep 28, 2022Updated 3 years ago
• Karma1331 / Target-Enumeration

  View on GitHub
  nmap -> searchploit -> GoBuster/Eyewitness & LDAPsearch & SMBclient & Showmount
  ☆21Apr 26, 2020Updated 5 years ago
• saruman9 / ghidra_dev_pres

  View on GitHub
  Ghidra's development plugins, scripts, contributing. Presentation
  ☆13Aug 10, 2020Updated 5 years ago
• shubhangi-singh21 / Keylogger

  View on GitHub
  Basic Keylogger Using C++ 🔑 Coded in C++, this keylogger captures all alpha-numeric keys, space bar, enter key, delete key, etc. It requ…
  ☆18Jun 8, 2021Updated 4 years ago
• tdonaworth / Firefox-CVE-2024-9680

  View on GitHub
  ☆11Oct 17, 2024Updated last year
• snoopysecurity / Broken-Vulnerable-Code-Snippets

  View on GitHub
  A small collection of vulnerable code snippets
  ☆790Sep 30, 2024Updated last year