Mission The attacker might not have any user level access to the web application. However, this does not mean that the application cannot be compromised remotely. Remote Code Execution vulnerabi...

Mission A version of MyBB Downloads Plugin is vulnerable to a stored cross site scripting attack.Your task is to find and exploit this vulnerability. The following username and password may be ...

Mission A version of ApPHP MicroBlog is vulnerable to stored cross site scripting attack. Your task is to find and exploit this vulnerability. Authenticated access is not required to exploit thi...

Mission A version of Easy Appointments is vulnerable to stored cross site scripting attack. This application is vulnerable to multiple reflected and stored XSS vulnerabilities. Your task is to f...

Mission GreenCMS is a free and open source CMS developed in PHP. GreenCMS (2.3.0603) is vulnerable to a Sensitive Information Disclosure documented in CVE-2018-12604. Your mission is to find an...