ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

OWASP Vulnerable Web Application Project https://github.com/hummingbirdscyber

Cross-site scripting labs for web application security enthusiasts

Demo of a Vue.js app that mixes both clientside templates and serverside templates leading to an XSS vulnerability

this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.

A PHP script to run on your server to grab cookies through xss

Repository contains an online education portal filled with web vulnerabilities.

The PHP cookie stealer is a tool that can be used in penetration testing (XSS attacks) to steal browser cookies for poc.

Vulnerable Web application made with PHP/SQL designed to help new web testers gain some experience and test DAST tools for identifying web vulnerabilities. Containing some of the most well-known vulnerabilities such as SQL, cross-site scripting (XSS), OS command injections, our intention to expand more vulnerabilities for learning purposes.

This WordPress plugin enhances website security by preventing Cross-Site Scripting (XSS) vulnerabilities. It blocks and encodes malicious characters in URLs, escapes HTML in `$_GET` variables, and provides customizable settings for website owners.

Simple pentesting tool to check Blind XSS

Lotus XSS

Explanation of Cross-site Scripting (XSS) with PHP mini project.

Detector of DOM based XSS

Vulnerable application is test case study for check protection mechanism.

Simple pentesting tool to check Blind XSS

Archive of my experiments related to checking the security of GitHub and XSS vulnerability.

Secure login authentication and comment prevention from Cross site scripting ,SQL INJECTION , and session hijacking

Sistem Auth sederhana menggunakan CI 3

Fixing an Insecure Blog Application.