PHP Vulnerability Test Suite Test suite #103

Author: Bertrand C. Stivalet
Language: PHP
Size: 160 MB
Sha256sum: 3407473fc2cfa38eea9216b8a7f22559b656f20ba5f2eb3b6992010265780f8c
Number Of Test Cases: 42,212
Submission Date: 27 Oct 2015

Description

Bertrand C. Stivalet and Aurelien Delaitre designed the architecture and oversaw development of a test generator by Telecom Nancy students to create 42 212 test cases in PHP, covering the most common security weakness categories, including XSS, SQL injection, URL redirection, etc. See Bertrand Stivalet and Elizabeth Fong, "Large Scale Generation of Complex and Faulty PHP Test Cases," 2016 IEEE International Conference on Software Testing, Verification and Validation (ICST), Chicago, IL.

Displaying test cases 13826 - 13850 of 42212 in total

170844-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote
170845-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote
170846-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : concatenation with simple quote
170847-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote
170848-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote
170849-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : concatenation with simple quote
170850-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote
170851-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote
170852-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : concatenation with simple quote
170853-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : interpretation with simple quote
170854-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use str_replace to escape special chars - construction : use of sprintf via a %s with simple quote
170855-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : concatenation with simple quote
170856-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : interpretation with simple quote
170857-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote
170858-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : concatenation with simple quote
170859-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : interpretation with simple quote
170860-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote
170861-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : concatenation with simple quote
170862-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : interpretation with simple quote
170863-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote
170864-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : concatenation with simple quote
170865-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : interpretation with simple quote
170866-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_literal construction : use of sprintf via a %s with simple quote
CWE-90

170867-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_string construction : concatenation with simple quote
CWE-90

170868-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : get the UserData field of $_SESSION SANITIZE : use of pg_escape_string construction : interpretation with simple quote

Results per page