PHP Vulnerability Test Suite Test suite #103

Author: Bertrand C. Stivalet
Language: PHP
Size: 160 MB
Sha256sum: 3407473fc2cfa38eea9216b8a7f22559b656f20ba5f2eb3b6992010265780f8c
Number Of Test Cases: 42,212
Submission Date: 27 Oct 2015

Description

Bertrand C. Stivalet and Aurelien Delaitre designed the architecture and oversaw development of a test generator by Telecom Nancy students to create 42 212 test cases in PHP, covering the most common security weakness categories, including XSS, SQL injection, URL redirection, etc. See Bertrand Stivalet and Elizabeth Fong, "Large Scale Generation of Complex and Faulty PHP Test Cases," 2016 IEEE International Conference on Software Testing, Verification and Validation (ICST), Chicago, IL.

Displaying test cases 176 - 200 of 42212 in total

157194-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : uses of ESAPI, an OWASP API construction : prepared query and right verification
157195-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : uses indirect reference construction : interpretation with simple quote
157196-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : uses indirect reference construction : right verification
157197-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : uses indirect reference construction : prepared query and no right verification
157198-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : get the field UserData from the variable $_POST SANITIZE : uses indirect reference construction : prepared query and right verification
CWE-862

157199-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : interpretation with simple quote
CWE-862

157200-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : concatenation with simple quote
157201-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : right verification
CWE-862

157202-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : prepared query and no right verification
157203-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : prepared query and right verification
157204-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : cast into int construction : concatenation and checks if the user is allowed to see this data
CWE-862

157205-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt sanitize : none construction : fopen
CWE-862

157206-v1.0.0

Added 9 years ago

candidate

bad

Unsafe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use of preg_replace construction : fopen
157207-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : interpretation with simple quote
157208-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : concatenation with simple quote
157209-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : fopen
157210-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : right verification
157211-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : prepared query and no right verification
157212-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : prepared query and right verification
157213-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt sanitize : use of ternary condition construction : concatenation and checks if the user is allowed to see this data
157214-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : interpretation with simple quote
157215-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : concatenation with simple quote
157216-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : fopen
157217-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : right verification
157218-v1.0.0

Added 9 years ago

candidate

good

Safe sample input : use proc_open to read /tmp/tainted.txt SANITIZE : use in_array to check if $tainted is in the white list construction : prepared query and no right verification

Results per page