This room tested a Union-Based SQL Injection vulnerability that was identified in the /item.php endpoint of the web application,allowing extract of database contents including user credentials that...

This room started by discovering a WordPress instance and identifying a plugin vulnerable to authenticated RCE.Exploiting the nginx off-by-slash vulnerability to read files on the server, I discove...

BoilerCTF was a ctf room designed to test on an OS command injection vulnerability that exists in sar2html via the plot parameter in index.php.The web application fails to sanitize user supplied in...

Whiterose started with discovering a virtual host and logging in with the credentials provided in the room. After logging in, we accessed a chat and, by modifying a parameter to view old messages, ...

Brains was a room focused on an authentication bypass vulnerability in TeamCity (CVE-2024-27198). We began as an attacker, exploiting the vulnerability to achieve remote code execution (RCE) and ca...