Share
## https://sploitus.com/exploit?id=606FB9F8-0AD4-5CF0-A506-E236F45187A6
# ๐ก OWASP Juice Shop โ VAPT Assessment
Black-box web application penetration testing on OWASP Juice Shop demonstrating exploitation of SQL Injection, Cross-Site Scripting (XSS), Directory Exposure, and IDOR vulnerabilities.
---
## ๐ Assessment Overview
- **Target:** OWASP Juice Shop
- **Testing Type:** Black-box Web Application Penetration Testing
- **Tools Used:** Burp Suite, SQLmap, Dirsearch, Browser DevTools
- **Total Findings:** 4
- Critical: 2
- High: 2
---
## ๐จ Vulnerability Summary
| # | Vulnerability | Severity | CVSS |
|---|--------------|----------|------|
| 1 | SQL Injection | Critical | 9.8 |
| 2 | Cross-Site Scripting (XSS) | Critical | 9.0 |
| 3 | Exposed FTP Directory | High | 7.5 |
| 4 | Privilege Escalation (IDOR) | High | 8.0 |
---
1๏ธโฃ SQL Injection โ Authentication Bypass
POST /rest/user/login
๐ Payload Used
' OR 1=1--
๐ก Intercepted Request (Burp)
POST /rest/user/login HTTP/1.1
Content-Type: application/json
{
"email": "' OR 1=1--",
"password": "test"
}
โ
Result
Authentication bypass successful.
JWT token returned.
๐ฅ Impact
Complete authentication bypass
Admin account compromise
Potential full database exposure
2๏ธโฃ Cross-Site Scripting (XSS)
๐ฏ Endpoint
#/search
๐ Payload
alert('XSS')
โ
Result
JavaScript executed in browser context.
๐ฅ Impact
Session hijacking
Credential theft
Client-side attacks
3๏ธโฃ Exposed FTP Directory
๐ฏ URL
/ftp
โ
Result
Directory listing enabled.
Files accessible without authentication.
๐ฅ Impact
Information disclosure
Exposure of internal files
Increased attack surface
4๏ธโฃ Privilege Escalation (IDOR)
๐ฏ Endpoint
GET /rest/basket/{id}
๐ Exploitation Method
Login as normal user
Intercept request in Burp
Modify basket ID
Modified Request
GET /rest/basket/1
Authorization: Bearer
โ
Result
Access to another user's basket.
๐ฅ Impact
Unauthorized data access
Privacy violation
Broken access control
๐ง Skills Demonstrated
Web Application Penetration Testing
Manual Exploitation Techniques
Burp Suite Interception & Manipulation
Injection Testing
Authorization Bypass Testing
Vulnerability Documentation
โ Disclaimer
This testing was conducted in a controlled lab environment using OWASP Juice Shop, an intentionally vulnerable application designed for security training.