Skip to content

Commit d80faa1

Browse files
erwanlrerwanlr
committed
Initial Commit
1 parent b773134 commit d80faa1

File tree

532 files changed

+71313
-3
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

532 files changed

+71313
-3
lines changed

CHANGELOG.txt

+174
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,174 @@
1+
=DAMN VULNERABLE WEB APP=
2+
3+
==Change Log v1.0.7==
4+
5+
Re-designed the login page + made some other slight cosmetic changes. 06/06/2010 (ethicalhack3r)
6+
7+
Started PostgreSQL implementation. 15/03/2010 (ethicalhack3r)
8+
9+
A few small cosmetic changes. 15/03/2010 (ethicalhack3r)
10+
11+
Improved the help information and look. 15/03/2010 (ethicalhack3r)
12+
13+
Fixed a few bugs thanks to Digininja. 15/03/2010 (ethicalhack3r)
14+
15+
Show logged in username. 05/02/2010 (Jason Jones)
16+
17+
Added new info on RandomStorm. 04/02/2010 (ethicalhack3r)
18+
19+
Added 'SQL Injection (Blind)'. 04/02/2010 (ethicalhack3r)
20+
21+
Added official documentation. 21/11/2009 (ethicalhack3r)
22+
23+
Implemented view all source functionality. 16/10/2009 (tmacuk, craig, ethicalhack3r)
24+
25+
==Change Log v1.0.6==
26+
27+
Fixed a bug where the logo would not show on first time use. 03/09/2009 (ethicalhack3r)
28+
29+
Removed 'current password' input box for low+med CSRF security. 03/09/2009 (ethicalhack3r)
30+
31+
Added an article which was written for OWASP Turkey. 03/10/2009 (ethicalhack3r)
32+
33+
Added more toubleshooting information. 02/10/2009 (ethicalhack3r)
34+
35+
Stored XSS high now sanitises output. 02/10/2009 (ethicalhack3r)
36+
37+
Fixed a 'bug' in XSS stored low which made it not vulnerable. 02/10/2009 (ethicalhack3r)
38+
39+
Rewritten command execution high to use a whitelist. 30/09/09 (ethicalhack3r)
40+
41+
Fixed a command execution vulnerability in exec high. 17/09/09 (ethicalhack3r)
42+
43+
Added some troubleshooting info for PHP 5.2.6 in readme.txt. 17/09/09 (ethicalhack3r)
44+
45+
Added the upload directory to the upload help. 17/09/09 (ethicalhack3r)
46+
47+
==Change Log v1.0.5==
48+
49+
Made IE friendly as much as possible. 30/08/2009 (ethicalhack3r)
50+
51+
Removed the acunetix scan report. 30/08/2009 (ethicalhack3r)
52+
53+
Added 'Clear Log' button to PHPIDS parser. 27/08/2009 (ethicalhack3r)
54+
55+
Implemented PHPIDS log parser. 27/08/2009 (ethicalhack3r)
56+
57+
Implemented Stored XSS vulnerability. 27/08/2009 (ethicalhack3r)
58+
59+
Added htaccess rule for localhost access only. 22/08/2009 (ethicalhack3r)
60+
61+
Added CSRF. 01/08/2009 (ethicalhack3r)
62+
63+
Implemented sessions/login. 01/08/2009 (ethicalhack3r)
64+
65+
Complete recode. (jamesr)
66+
67+
Complete redesign. (jamesr)
68+
69+
Delimited 'dvwa' in session- minimising the risk of clash with other projects running on localhost. 01/08/2009 (jamesr)
70+
71+
Integrated PHPIDS v0.6. 01/08/2009 (jamesr)
72+
73+
Streamlined login functionality. 01/08/2009 (jamesr)
74+
75+
==Change Log v1.0.4==
76+
77+
Added acunetix scan report. 24/06/2009
78+
79+
All links use http://hiderefer.com to hide referrer header. 23/06/2009
80+
81+
Updated/added 'more info' links. 23/06/2009
82+
83+
Moved change log info to CHANGELOG.txt. 22/06/2009
84+
85+
Fixed the exec.php UTF-8 output. 16/06/2009
86+
87+
Moved Help/View source buttons to footer. 12/06/2009
88+
89+
Fixed phpInfo bug. 12/06/2009
90+
91+
Made dvwa IE friendly. 11/06/2009
92+
93+
Fixed html bugs. 11/06/2009
94+
95+
Added more info to about page. 03/06/2009
96+
97+
Added pictures for the users. 03/06/2009
98+
99+
Fixed typos on the welcome page. 03/06/2009
100+
101+
Improved README.txt and fixed typos. 03/06/2009
102+
103+
Made SQL injection possible in sqli_med.php. Thanks to Teodor Lupan. 03/06/2009
104+
105+
==Change Log v1.0.3==
106+
107+
Changed XAMPP link in index.php. 25/05/2009
108+
109+
Set default security to low. 25/05/2009
110+
111+
Improved output in setup.php. 25/05/2009
112+
113+
==Change Log v1.0.2==
114+
115+
Removed phpinfo on higher security levels. 24/05/2009
116+
117+
Moved all vulnerable code to /source/. 24/05/2009
118+
119+
Added viewsource. 24/05/2009
120+
121+
==Change Log v1.0.1==
122+
123+
Implemented different security levels. 24/05/2009
124+
125+
Changed XSS from POST to GET. 22/05/2009
126+
127+
Some changes to CSS. 22/05/2009
128+
129+
Version number now in variable in header.php. 21/05/2009
130+
131+
Added about page. 21/05/2009
132+
133+
Updated login script to use database. 21/05/2009
134+
135+
Added admin user to database. 21/05/2009
136+
137+
Combined RFI + LFI to make 'File Inclusion'. 21/05/2009
138+
139+
More realism to Local File Inclusion. 21/05/2009
140+
141+
Better error output on upload script. 21/05/2009
142+
143+
==Change Log v1.0==
144+
145+
Made command execution more realistic. 20/05/2009
146+
147+
Added help buttons. 20/05/2009
148+
149+
Added .htaccess file to turn magic quotes off. 20/05/2009
150+
151+
Improved database creation with setup.php. 19/05/2009
152+
153+
Amended installation instructions in README file. 19/05/2009
154+
155+
Added GNU GPL license. 19/05/2009
156+
157+
Added a robots.txt file with disallow all. 26/01/2009
158+
159+
Removed link to www.ethicalhacker.co.uk in footer. 26/01/2009
160+
161+
Added better error output on magic quotes. 26/01/2009
162+
163+
164+
==Links==
165+
166+
Homepage: http://www.dvwa.co.uk
167+
168+
Project Home: http://code.google.com/p/dvwa/
169+
170+
Download: http://code.google.com/p/dvwa/downloads/list
171+
172+
SVN: http://dvwa.googlecode.com/svn/trunk/
173+
174+
*Created by the DVWA team*

0 commit comments

Comments
 (0)