Skip to content

bhimsen145/php-voting-system

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
db.php
db.php
 
 
index.php
index.php
 
 
result.php
result.php
 
 
style.css
style.css
 
 
vote.php
vote.php
 
 

Repository files navigation

PHP Voting System — Vulnerability Demonstration

This PHP application intentionally demonstrates common web vulnerabilities for educational comparison with the Ur/Web secure implementation.

⚠️ WARNING

This code is intentionally vulnerable. Do NOT use in production. For educational use only — Secure Systems coursework.

Files

File Purpose
index.php Candidate list and voting form
vote.php Vote processing (VULNERABLE)
result.php Results display (VULNERABLE)
db.php MySQL database

Vulnerabilities Demonstrated

Vulnerability Location How to Test
SQL Injection vote.php line 7 Send 1 OR 1=1; DROP TABLE--
Stored XSS results.php line 10 Insert <script>alert(1)</script> as name
CSRF vote.php Submit from external hidden form

Compare With

See the secure Ur/Web version: https://github.com/bhimsen145/urweb-voting-system

About

A simple and basic PHP voting system demonstrating SQL injection, XSS, automation and CSRF vulnerabilities

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages