This project intentionally has a few severe security issues, among them:
- SQL injection vulnerability
- Cross site scripting vulnerability
- Poor authentication of requests
- Missing input validation
- Source code containing credentials
The purpose of this project is to demonstrate the impact of these flaws and to raise awareness.