Dear project poster,
Could you please clarify me about understanding your needs. You need simple website to test sql injection, lfi, rfi, or other OWASP top 10 vulnerabilities step by step. Website is for only testing purposes of above counted vulnerabilities, right? If i am right, then all can be ready during 1 day.
I will be waiting response for further discussion if needed.
Best Regards
Orkhan