πŸ”“ Vulnerable Test Application

Comprehensive security testing platform

⚠️ WARNING

This application contains MULTIPLE CRITICAL VULNERABILITIES for testing security scanners.

Do NOT deploy this to production or expose it to the public internet!

πŸ”

GraphQL Introspection

Exposed GraphQL endpoint with full schema introspection

/api/graphql
πŸ”

Admin Panel

Publicly accessible admin dashboard

/admin/dashboard
πŸ”„

Open Redirect

Unvalidated redirect parameters

/login?next=
πŸ“

Git Repository

Exposed .git directory

/.git/config
πŸ—ΊοΈ

Source Maps

Exposed source maps in production

/*.js.map
πŸ›‘οΈ

Security Headers

Missing HSTS, CSP, X-Frame-Options

No headers

Test with BreakMyApp.ai

Deploy this app to Vercel and scan it with the BreakMyApp.ai scanner to verify all vulnerabilities are detected.

Scan URL: https://your-subdomain.vercel.app