dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
WebGoat/ webgoat/main/project/JavaSource/org/owasp/webgoat/lessons
History
rogan.dawes 137b7c813c several minor bug fixes. 
UpdateProfile uses prepared statements.
ReflectedXSS "code" input field vulnerable to XSS.
Minor updates to concurrency cart


git-svn-id: http://webgoat.googlecode.com/svn/trunk@235 4033779f-a91e-0410-96ef-6bf7bf53c507
2008-01-10 10:11:50 +00:00
..
admin
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
CrossSiteScripting
several minor bug fixes.
2008-01-10 10:11:50 +00:00
DBCrossSiteScripting
Update the DB lessons
2008-01-10 10:10:10 +00:00
DBSQLInjection
Update the DB lessons
2008-01-10 10:10:10 +00:00
GoatHillsFinancial
The return type fix got lost.
2007-07-11 13:40:01 +00:00
instructor
Update the DB lessons
2008-01-10 10:10:10 +00:00
RoleBasedAccessControl
several minor bug fixes.
2008-01-10 10:11:50 +00:00
SQLInjection
Remove some unused imports
2008-01-10 10:11:27 +00:00
AbstractLesson.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
AccessControlMatrix.java
Build cleanup in order to create a complete developer distribution. More menu cleanup
2008-01-03 21:09:17 +00:00
BackDoors.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
BasicAuthentication.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
BlindSqlInjection.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
BufferOverflow.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
Category.java
Add a new Concurrency lesson
2008-01-10 10:08:45 +00:00
Challenge2Screen.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
CommandInjection.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
ConcurrencyCart.java
several minor bug fixes.
2008-01-10 10:11:50 +00:00
CSRF.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
DOMInjection.java
Use AbstractLesson.getLink() and getFormAction() more
2007-07-18 13:31:11 +00:00
DOS_Login.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
Encoding.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
FailOpenAuthentication.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
ForcedBrowsing.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
ForgotPassword.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
HiddenFieldTampering.java
Added client side validation to HiddenFieldTampering.java, added a new ECS makeButton with a OnClick function, corrected authorship in several files
2008-01-09 13:28:07 +00:00
HtmlClues.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
HttpBasics.java
Added client side validation to HiddenFieldTampering.java, added a new ECS makeButton with a OnClick function, corrected authorship in several files
2008-01-09 13:28:07 +00:00
HttpOnly.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
HttpSplitting.java
Extract the stage-related code from LessonTracker into SequentialLessonTracker
2007-07-11 12:50:32 +00:00
JavaScriptValidation.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
JSONInjection.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
LessonAdapter.java
Single platform build.xml
2007-10-08 20:37:43 +00:00
LogSpoofing.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
NewLesson.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
PathBasedAccessControl.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
Phishing.java
Added client side validation to HiddenFieldTampering.java, added a new ECS makeButton with a OnClick function, corrected authorship in several files
2008-01-09 13:28:07 +00:00
RandomLessonAdapter.java
Remove unnecessary setMessage() calls
2007-07-18 13:37:24 +00:00
ReflectedXSS.java
several minor bug fixes.
2008-01-10 10:11:50 +00:00
RemoteAdminFlaw.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
SequentialLessonAdapter.java
Mark SequentialLessonAdapter as abstract to prevent instantiation
2007-07-18 13:35:22 +00:00
SilentTransactions.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
SoapRequest.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
SqlNumericInjection.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
SqlStringInjection.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
StoredXss.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
ThreadSafetyProblem.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
TraceXSS.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
UncheckedEmail.java
Added source parameter to "Show Java" for showing lesson source code. Added Google Mail configuration to UncheckedEmail lesson.
2008-01-08 12:51:13 +00:00
WeakAuthenticationCookie.java
Build cleanup in order to create a complete developer distribution. More menu cleanup
2008-01-03 21:09:17 +00:00
WeakSessionID.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
WelcomeScreen.java
Added some files required to build OWASP release.
2007-01-16 14:56:40 +00:00
WSDLScanning.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
WsSAXInjection.java
Make it possible to return per-stage hints
2007-07-10 11:53:34 +00:00
WsSqlInjection.java
Fix database connetion handling.
2008-01-10 10:11:12 +00:00
XMLInjection.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00
XPATHInjection.java
Menu cleanup for Lab stages. Shortened menu names for most lessons. Changed category naming to be more meaningful.
2008-01-02 13:48:19 +00:00