|
Reset Bjoern's Password
|
Broken Authentication |
1000 |
|
|
Leaked Access Logs
|
Observability Failures |
1000 |
|
|
Change Bender's Password
|
Broken Authentication |
1000 |
|
|
Login Bender
|
Injection |
450 |
|
|
Reflected XSS
|
XSS |
250 |
|
|
Deprecated Interface
|
Security Misconfiguration |
250 |
|
|
Manipulate Basket
|
Broken Access Control |
450 |
|
|
API-only XSS
|
XSS |
450 |
|
|
Upload Type
|
Improper Input Validation |
450 |
|
|
Upload Size
|
Improper Input Validation |
450 |
|
|
Reset Jim's Password
|
Broken Authentication |
450 |
|
|
Bjoern's Favorite Pet
|
Broken Authentication |
450 |
|
|
Repetitive Registration
|
Improper Input Validation |
100 |
|
|
Admin Registration
|
Improper Input Validation |
450 |
|
|
Visual Geo Stalking
|
Sensitive Data Exposure |
250 |
|
|
Meta Geo Stalking
|
Sensitive Data Exposure |
250 |
|
|
Security Policy
|
Miscellaneous |
250 |
|
|
Password Strength
|
Broken Authentication |
250 |
|
|
Login MC SafeSearch
|
Sensitive Data Exposure |
250 |
|
|
Five-Star Feedback
|
Broken Access Control |
250 |
|
|
Zero Stars
|
Improper Input Validation |
100 |
|
|
Exposed credentials
|
Sensitive Data Exposure |
250 |
|
|
Exposed Metrics
|
Observability Failures |
100 |
|
|
Bully Chatbot
|
Miscellaneous |
100 |
|
|
DOM XSS
|
XSS |
100 |
|
|
Admin Section
|
Broken Access Control |
250 |
|
|
Login Admin
|
Injection |
250 |
|
|
Score Board
|
Miscellaneous |
100 |
|
|
Error Handling
|
Security Misconfiguration |
100 |
|