From 73f652984bac0c2a01d367b44d2785da2aec0af6 Mon Sep 17 00:00:00 2001 From: AbhishekPrecogsAI <135996606+AbhishekPrecogsAI@users.noreply.github.com> Date: Mon, 2 Feb 2026 16:02:55 +0530 Subject: [PATCH 1/2] Create vul.py --- vul.py | 76 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 76 insertions(+) create mode 100644 vul.py diff --git a/vul.py b/vul.py new file mode 100644 index 0000000..f127818 --- /dev/null +++ b/vul.py @@ -0,0 +1,76 @@ +""" +vuln_examples.py +Intentionally vulnerable Python code for security testing +""" + +import os +import sqlite3 +import pickle +import requests +import hashlib +from flask import Flask, request + +app = Flask(__name__) + +# 1️⃣ HARDCODED SECRET +API_KEY = "sk_test_1234567890abcdef" + + +# 2️⃣ COMMAND INJECTION +def list_files(user_path): + os.system("ls " + user_path) + + +# 3️⃣ SQL INJECTION +def get_user(username): + conn = sqlite3.connect("users.db") + cursor = conn.cursor() + query = f"SELECT * FROM users WHERE username = '{username}'" + cursor.execute(query) + return cursor.fetchall() + + +# 4️⃣ INSECURE DESERIALIZATION (RCE) +def load_session(data): + return pickle.loads(data) + + +# 5️⃣ PATH TRAVERSAL +def read_file(filename): + with open("uploads/" + filename, "r") as f: + return f.read() + + +# 6️⃣ SSRF +def fetch_url(url): + return requests.get(url).text + + +# 7️⃣ UNSAFE EVAL +def calculate(expression): + return eval(expression) + + +# 8️⃣ WEAK PASSWORD HASHING +def hash_password(password): + return hashlib.md5(password.encode()).hexdigest() + + +# 9️⃣ FLASK DEBUG MODE + USER INPUT EXECUTION +@app.route("/debug") +def debug(): + cmd = request.args.get("cmd") + return os.popen(cmd).read() + + +# 🔟 OVERLY BROAD EXCEPTION (ERROR HIDING) +def divide(a, b): + try: + return a / b + except: + return None + + +if __name__ == "__main__": + # 11️⃣ DEBUG MODE ENABLED + app.run(host="0.0.0.0", port=5000, debug=True) From 29cad1600b3b98d8282d891e3327e4926ae90227 Mon Sep 17 00:00:00 2001 From: AbhishekPrecogsAI <135996606+AbhishekPrecogsAI@users.noreply.github.com> Date: Mon, 2 Feb 2026 16:09:20 +0530 Subject: [PATCH 2/2] Update vul.py --- vul.py | 19 ++++++++++--------- 1 file changed, 10 insertions(+), 9 deletions(-) diff --git a/vul.py b/vul.py index f127818..39c7b36 100644 --- a/vul.py +++ b/vul.py @@ -30,6 +30,16 @@ def get_user(username): return cursor.fetchall() + +# 7️⃣ UNSAFE EVAL +def calculate(expression): + return eval(expression) + + +# 8️⃣ WEAK PASSWORD HASHING +def hash_password(password): + return hashlib.md5(password.encode()).hexdigest() + # 4️⃣ INSECURE DESERIALIZATION (RCE) def load_session(data): return pickle.loads(data) @@ -46,15 +56,6 @@ def fetch_url(url): return requests.get(url).text -# 7️⃣ UNSAFE EVAL -def calculate(expression): - return eval(expression) - - -# 8️⃣ WEAK PASSWORD HASHING -def hash_password(password): - return hashlib.md5(password.encode()).hexdigest() - # 9️⃣ FLASK DEBUG MODE + USER INPUT EXECUTION @app.route("/debug")