Looking for the latest version? Download vicnum15.tar (276.5 kB)
Name Modified Size Downloads / Week Status
Totals: 5 Items   62.4 kB 3
Vulnerable_XXE 2015-03-08 0
vicnum15 2012-07-16 1414 weekly downloads
vicnum14 2009-12-31 33 weekly downloads
readme 2012-07-16 974 Bytes 11 weekly downloads
jottotar 2011-02-26 61.4 kB 22 weekly downloads
Vicnum (1.5) is an OWASP project consisting of multiple vulnerable web applications based on games commonly used to kill time. These applications demonstrate common web security problems such as cross site scripting, sql injections, and session management issues. The goal of this project is to strengthen security of web applications by educating different groups (students, management, users, developers, auditors) as to what might go wrong in a web app. And of course it's OK to have a little fun. There are currrently three applications (or challenges) in this version of Vicnum. Guessnum, a game to guess a number the computer has picked. Jotto, a game to guess a word the computer has picked. And the Union Challenge which is new to version 1.5 Besides untarring the tar into the right folder and some Apache webserver tweaking, three MySQL tables will need to be created. For general comments on the project please visit the OWASP project page.
Source: readme, updated 2012-07-16