OWASP O2 Platform Blog

Packaged Spring MVC Security Test Apps: JPetStore and PetClinc

If you are looking to learn about Spring MVC Security, one of the best places to start are the test applications that are included with Spring MVC since they contain a number of Security Vulnerabilities that are common in Spring MVC apps (namely the AutoBinding vulnerabilties)

The JPetstore files can be downloaded from:  jPetStore – O2 Demo Pack.zip

The PetClinic files can be downloaded from jPetClinic – O2 Demo Pack.zip

This version of the JPetStore O2 Demo Pack already contains a couple *.H2 files which help with the security testing (PetClinic will soon have them)

July 18, 2011 - Posted by | JPetStore, Spring MVC

2 Comments »

  1. […] For the rest of this demo I’m going to use the PetClinc Spring MVC demo app, which you can download from SpringSource or from the O2 Demo Pack that I  published (see Packaged Spring MVC Security Test Apps: JPetStore and PetClinic) […]

    Pingback by Visualizing Spring MVC Annotations based Controls (and Autobinding PetClinic’s vulnerabilities) « OWASP O2 Platform Blog | July 19, 2011 | Reply

  2. […] Packaged Spring MVC Security Test Apps: JPetStore and PetClinc […]

    Pingback by Fixing one of JPetStore’s AutoBinding Vulnerabilities (changing the purchase price) « OWASP O2 Platform Blog | November 17, 2011 | Reply


Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: