MIAGE Plus (la vraie)

Russia

1st place

19100 points

Members

User Name	Score
Corentin	6050
Loïc Cambray	8100
Guillaume BOINET Captain	4950

Solves

Challenge	Category	Value
Client-side XSS Protection	XSS	450
API-only XSS	XSS	450
Reflected XSS	XSS	250
Bonus Payload	XSS	100
DOM XSS	XSS	100
Premium Paywall	Cryptographic Issues	1350
Forged Coupon	Cryptographic Issues	1350
Login Jim	Injection	450
Nested Easter Egg	Cryptographic Issues	700
Security Policy	Miscellaneous	250
Access Log	Observability Failures	700
Weird Crypto	Cryptographic Issues	250
Product Tampering	Broken Access Control	450
Login Bender	Injection	450
Reset Bender's Password	Broken Authentication	700
Manipulate Basket	Broken Access Control	450
Blockchain Hype	Security through Obscurity	1000
Reset Jim's Password	Broken Authentication	450
Forged Review	Broken Access Control	450
Forged Feedback	Broken Access Control	450
View Basket	Broken Access Control	250
GDPR Data Erasure	Broken Authentication	450
Forgotten Sales Backup	Sensitive Data Exposure	700
Misplaced Signature File	Observability Failures	700
Bjoern's Favorite Pet	Broken Authentication	450
Five-Star Feedback	Broken Access Control	250
Easter Egg	Broken Access Control	700
Vulnerable Library	Vulnerable Components	700
Empty User Registration	Improper Input Validation	250
Forgotten Developer Backup	Sensitive Data Exposure	700
Poison Null Byte	Improper Input Validation	700
Mass Dispel	Miscellaneous	100
Missing Encoding	Improper Input Validation	100
Web3 Sandbox	Broken Access Control	100
Bully Chatbot	Miscellaneous	100
Admin Section	Broken Access Control	250
Legacy Typosquatting	Vulnerable Components	700
Outdated Allowlist	Unvalidated Redirects	100
Score Board	Miscellaneous	100
Exposed Metrics	Observability Failures	100
Privacy Policy	Miscellaneous	100
Login Admin	Injection	250
Password Strength	Broken Authentication	250
Confidential Document	Sensitive Data Exposure	100
Error Handling	Security Misconfiguration	100