phpvuln is an open source OWASP penetration testing tool written in Python 3, that can speed up the the process of finding common PHP vulnerabilities in PHP code, i.e. command injection, local/remote file inclusion and SQL injection.Installation

You can download phpvuln by cloning the Git repository:

git clone

Install the required PIP packages:

python -m  pip install -r requirements.txt


To get the list of all options use:

python -h



  • Twitter

I’m currently looking for contributors to help improve phpvuln. Contact me on Discord, if you’re interested 🙂

Download Phpvuln

Leave a Reply

Your email address will not be published. Required fields are marked *