This repository contains an example Spring Boot application that implements REST API functionality, Spring MVC and Data JPA, introduces common application security vulnerabilities, and demonstrate how to prevent the vulnerabilities from occurring.
This project demonstrates the following security controls/vulnerabilities:
- Cross-site Scripting (XSS)
- Server-side Request Forgery (SSRF)
- Secure Configuration - Default Error Pages
- Mass Assignment - Web Application (Not API)