This release brings significant changes to existing challenges (:zap:) which might break canned CTF setups as well as solution guides made for previous versions of OWASP Juice Shop!
π― Challenges
- #1576: Added "Local File Read" challenge (kudos to @cigar-galaxy82 for implementing and @CaptainFreak for the idea)
- #1491: Removed "Login CISO" challenge due to Google no longer accepting
X-User-Email
header during OAuth login (:zap:) - Updated links in quarantine folder to point to new malware location at https://github.com/juice-shop/juicy-malware
ποΈ Products
- Added "OWASP Juice Shop Card (non-foil)" to product inventory
π Bugfixes
- #1628: Fixed server crashes when accessing data export or order history endpoints without an authorization token
πΊοΈ I18N
- Extended πΉπ and π©π° translations significantly