Acunetix Art

TEST and Demonstration site for Acunetix Web Vulnerability Scanner
WARNING: This is not a real shop. This is an example PHP application which is intentionally vulnerable to web attacks. It is intended to help you test security scanners and practice manual hacking skills.
Tip: Look for potential SQL Injections, Cross-site Scripting (XSS), and Cross-site Request Forgery (CSRF), and more.

DOM-based XSS Demo

Hello, World!

Test Payloads

DOM XSS Payloads (via URL fragment or param)

?name=<img src=x onerror=alert(1)>
?name=<svg onload=alert(1)>
?name=<input onfocus=alert(1) autofocus>