You have chosen to sponsor your bid up to a maximum amount of .
This project is a research work. the concept is to design two websites about an online store using 2 different approaches. the first website should be vulnerable to simple attack of SQL injection and Xss (cross site scripting) while the second website should not allow for such vulnerabilities. it should use security framework such as the framework attached.the vulnerability in the first website should be outlined clearly. No CMS will be used.
The attached is the model i want you use in developing the 2 websites. putting security checks and balances at each stage of development process. No use of third party CMS because the security is inbuilt already.
The requirement which involve developing the 2 websites from the scratch and not using CMS, with proper documentation and explanation how the SQL and Xss will be used to penetrate website 1 and not 2.