PHP SQLi
SQL injection testing in a PHP webpage
I have created a setup consisting of a Docker Container running PHP, one running PostgreSQL and another one running PgAdmin. After using inference to learn about the database, I performed basic SQL injection attacks. The attacks violated successfully all three of the CIA properties.
You can test it for yourself on GitHub: php-SQLi-pentesting