OWASP Vulnerable Web Applications Directory

An OWASP production project

A comprehensive registry of known vulnerable web and mobile applications for legal security testing and training.

OopsSec Store

OopsSec Store is a vulnerable application listed in the OWASP Vulnerable Web Applications Directory and available offline. Technologies include JavaScript, TypeScript, Node.js.

Collections offline
Technology JavaScript TypeScript Node.js React Next.js
Author kOaDT
Stars 25 stars
Last contribution Jun 23, 2026 < 1mo

Notes

Intentionally vulnerable e-commerce application with CTF challenges. Covers OWASP Top 10, API security flaws, and modern frontend attack vectors. Quick setup via npx create-oss-store.

← Back to directory