wavsep Icon


Web Application Vulnerability Scanner Evaluation Project

Add a Review
20 Downloads (This Week)
Last Update:
Download wavsep-src-eclipse.zip
Browse All Files
Windows Linux



A vulnerable web application designed to help assessing the features, quality and accuracy of web application vulnerability scanners.

This evaluation platform contains a collection of unique vulnerable web pages that can be used to test the various properties of web application scanners.

Visit WAVSEP homepage to learn more:

The project includes the following test cases:

Path Traversal/LFI: 816 test cases (GET & POST)
Remote File Inclusion (XSS via RFI): 108 test cases (GET & POST)
Reflected XSS: 66 test cases, implemented in 64 jsp pages (GET & POST)
Error Based SQL Injection: 80 test cases, implemented in 76 jsp pages (GET & POST)
Blind SQL Injection: 46 test cases, implemented in 44 jsp pages (GET & POST)
Time Based SQL Injection: 10 test cases, implemented in 10 jsp pages (GET & POST)

wavsep Web Site

Update Notifications

Write a Review

User Reviews

Be the first to post a review of wavsep!

Additional Project Details



Intended Audience

Developers, Education, Security Professionals, Testers, Security, Quality Engineers

User Interface


Programming Language

JSP, Java


Screenshots can attract more users to your project.
Features can attract more users to your project.

Icons must be PNG, GIF, or JPEG and less than 1 MiB in size. They will be displayed as 48x48 images.