This is NOT a real store
This application is an intentionally vulnerable web application designed for security testing and educational purposes only. No real transactions are processed, no real products are sold, and no real deliveries are made.
About This Application
What is this?
TaintedPort is a deliberately vulnerable web application built for Dynamic Application Security Testing (DAST) and security research. It simulates a Portuguese wine e-commerce store to provide a realistic attack surface for security scanners and penetration testers.
Important Disclaimers
- Not a real store โ You cannot purchase any wines here. No orders are fulfilled, no payments are processed.
- Inaccurate information โ Wine names, prices, descriptions, tasting notes, and all other product information are fictional or approximate. Do not rely on any data shown here.
- Intentionally vulnerable โ This application may contain security vulnerabilities on purpose. Do not use any of its code in production.
- Testing only โ This site exists solely for testing security scanning tools and learning about web application security.
Purpose
This application was created to serve as a target for:
DAST Scanning
Dynamic Application Security Testing tools
Penetration Testing
Manual and automated security assessments
Security Training
Learning about web application vulnerabilities
Tool Evaluation
Comparing security scanning products
Tech Stack
Built with modern technologies to simulate a realistic web application: