## https://sploitus.com/exploit?id=08B128DE-C46E-577B-A158-979D8CB1A035
Web Application Security Research - SQL Injection & XSS Comparative Analysis
This repository contains the complete source code and research materials for the academic paper: "A Comparative Analysis of SQL Injection and XSS Vulnerabilities: From Exploitation to Secure Implementation in PHP Applications."
The research demonstrates common web application security vulnerabilities through a dual-version PHP/MySQL application-one intentionally vulnerable and one securely implemented-with comprehensive automated testing.
Research Objectives
- Demonstrate SQL Injection and XSS vulnerabilities in web applications
- Implement industry-standard security mitigations
- Provide empirical evidence of vulnerability detection and prevention
- Offer practical guidance for secure PHP development
- Create an automated testing framework for security validation
Installation & Setup
Prerequisites
- Web Server: Apache (XAMPP/WAMP/LAMP recommended)
- PHP: Version 7.4 or higher (PHP 8.3 recommended)
- Database: MySQL 5.7 or higher (MySQL 8.0 recommended)
Step 1: Clone the Repository
git clone https://github.com/cyberuk/web-security-research.git
2. Run the setup script:
http://localhost/web-security-research/setup.php
Step 3: Configure Database Credentials
Update database credentials in both versions:
Vulnerable Version: vulnerable/config.php
Secure Version: secure/config.php