The test case shows an SQL Injection in a PHP script.

The test case shows a basic Cross-Site Scripting in PHP. The associate level of defense is 2. Here we show how to use the replacements of the characters <,>,\',\" etc.

The test case shows a basic Cross-Site Scripting in PHP. The associate level of defense is 1. Here we show how to use the typecasting mechanism.

The test case shows a basic Cross-Site Scripting in PHP. The associate level of defense is zero because the input is directly printed without filtering.

Basic [b]Cross-Site Scripting[/b] (XSS) in PHP.[br] The attacker will write a JavaScript (hop.js) which reads the cookie and send it to: http://www.bad.com/getCookie.php which store it in a file.[br]

This test case show how to solve the [b]PHP Include[/b] problem.[br] The solution consists on the limitation of the possible target files.

This is a basic [b]PHP Include[/b] vulnerability.[br]Attackers can relay malicious code through web application to another system.