Share
## https://sploitus.com/exploit?id=6AA7DB99-D4D5-5CEB-BE9C-BB993342E1F6
This is an educational sandbox demonstrating common web application flaws, including XSS, SQL Injection, CSRF, SSRF, and OS Command Injection, built with Node.js, Express, and PostgreSQL. The primary application entrypoint is the server.js file, which is executed when running the start script. The project includes an automated Python scanner for detection and a setup.sh script for easy deployment. The vulnerable application is likely to be vulnerable to remote code execution, privilege escalation, and data exfiltration.