edgar.jallier2025

5th place

22400 points

Solves

Challenge	Category	Value
Reset Bender's Password	Broken Authentication	700
Login Amy	Sensitive Data Exposure	450
Product Tampering	Broken Access Control	450
Forged Review	Broken Access Control	450
Payback Time	Improper Input Validation	450
Empty User Registration	Improper Input Validation	250
Missing Encoding	Improper Input Validation	100
Zero Stars	Improper Input Validation	100
Extra Language	Broken Anti Automation	1000
Security Policy	Miscellaneous	250
Supply Chain Attack	Vulnerable Components	1000
Frontend Typosquatting	Vulnerable Components	1000
CAPTCHA Bypass	Broken Anti Automation	450
Vulnerable Library	Vulnerable Components	700
Legacy Typosquatting	Vulnerable Components	700
Login Bjoern	Broken Authentication	700
Manipulate Basket	Broken Access Control	450
Leaked Unsafe Product	Sensitive Data Exposure	700
Access Log	Observability Failures	700
Login Jim	Injection	450
Login Bender	Injection	450
Upload Size	Improper Input Validation	450
Bully Chatbot	Miscellaneous	100
Upload Type	Improper Input Validation	450
Forged Feedback	Broken Access Control	450
Admin Registration	Improper Input Validation	450
Client-side XSS Protection	XSS	450
NoSQL DoS	Injection	700
Confidential Document	Sensitive Data Exposure	100
API-only XSS	XSS	450
Reset Jim's Password	Broken Authentication	450
Password Strength	Broken Authentication	250
Repetitive Registration	Improper Input Validation	100
Privacy Policy	Miscellaneous	100
Misplaced Signature File	Observability Failures	700
Forgotten Sales Backup	Sensitive Data Exposure	700
Forgotten Developer Backup	Sensitive Data Exposure	700
View Basket	Broken Access Control	250
Five-Star Feedback	Broken Access Control	250
Admin Section	Broken Access Control	250
Score Board	Miscellaneous	100
Unsigned JWT	Vulnerable Components	1000
Login Admin	Injection	250
Nested Easter Egg	Cryptographic Issues	700
Poison Null Byte	Improper Input Validation	700
Error Handling	Security Misconfiguration	100
Easter Egg	Broken Access Control	700