Members
| User Name | Score |
| Heidi | 1650 |
| Chirag Rao | 7300 |
| Dennis Nedry | 3095 |
| Flagster | 2000 |
| SecTest | 7200 |
Awards
Hint 373
hints
Hint for Multiple Likes
-135
Hint 480
hints
Hint for Reset Uvogin's Password
-70
Solves
| Challenge | Category | Value | Time |
| Multiple Likes | Broken Anti Automation | 1350 | |
| Email Leak | Sensitive Data Exposure | 1000 | |
| Reset Uvogin's Password | Sensitive Data Exposure | 700 | |
| Client-side XSS Protection | XSS | 450 | |
| Deluxe Fraud | Improper Input Validation | 450 | |
| Upload Type | Improper Input Validation | 450 | |
| Leaked Unsafe Product | Sensitive Data Exposure | 700 | |
| Security Policy | Miscellaneous | 250 | |
| Payback Time | Improper Input Validation | 450 | |
| Admin Registration | Improper Input Validation | 450 | |
| Server-side XSS Protection | XSS | 700 | |
| CAPTCHA Bypass | Broken Anti Automation | 450 | |
| Manipulate Basket | Broken Access Control | 450 | |
| Exposed Metrics | Sensitive Data Exposure | 100 | |
| Privacy Policy Inspection | Security through Obscurity | 450 | |
| Web3 Sandbox | Broken Access Control | 100 | |
| Login Amy | Sensitive Data Exposure | 450 | |
| Outdated Allowlist | Unvalidated Redirects | 100 | |
| NoSQL DoS | Injection | 700 | |
| Nested Easter Egg | Cryptographic Issues | 700 | |
| Weird Crypto | Cryptographic Issues | 250 | |
| Missing Encoding | Improper Input Validation | 100 | |
| Login MC SafeSearch | Sensitive Data Exposure | 250 | |
| Password Strength | Broken Authentication | 250 | |
| Five-Star Feedback | Broken Access Control | 250 | |
| Admin Section | Broken Access Control | 250 | |
| Misplaced Signature File | Sensitive Data Exposure | 700 | |
| Forgotten Developer Backup | Sensitive Data Exposure | 700 | |
| Forgotten Sales Backup | Sensitive Data Exposure | 700 | |
| Poison Null Byte | Improper Input Validation | 700 | |
| Repetitive Registration | Improper Input Validation | 100 | |
| Easter Egg | Broken Access Control | 700 | |
| Meta Geo Stalking | Sensitive Data Exposure | 250 | |
| Zero Stars | Improper Input Validation | 100 | |
| Forged Review | Broken Access Control | 450 | |
| Forged Feedback | Broken Access Control | 450 | |
| Christmas Special | Injection | 700 | |
| Visual Geo Stalking | Sensitive Data Exposure | 250 | |
| Mass Dispel | Miscellaneous | 100 | |
| Privacy Policy | Miscellaneous | 100 | |
| Exposed credentials | Sensitive Data Exposure | 250 | |
| Deprecated Interface | Security Misconfiguration | 250 | |
| Bully Chatbot | Miscellaneous | 100 | |
| Empty User Registration | Improper Input Validation | 250 | |
| Access Log | Sensitive Data Exposure | 700 | |
| Database Schema | Injection | 450 | |
| Bonus Payload | XSS | 100 | |
| Login Bender | Injection | 450 | |
| Login Admin | Injection | 250 | |
| Login Jim | Injection | 450 | |
| Score Board | Miscellaneous | 100 | |
| Confidential Document | Sensitive Data Exposure | 100 | |
| Error Handling | Security Misconfiguration | 100 | |
| DOM XSS | XSS | 100 |