Changes
Challenges
- #437: Added RCE Tier 2 ⭐⭐⭐⭐⭐ challenge for another type of remote code execution
- a87b1b3: Added XXE Tier 2 ⭐⭐⭐⭐ challenge for a DoS-like XML attack
- Increased difficulty of Extra Language challenge from ⭐⭐⭐⭐ to ⭐⭐⭐⭐⭐
- Reassessed difficulty of XXE Tier 1 challenge to be rather ⭐⭐⭐ than ⭐⭐
- c725065: XXS Tier 1-4 challenges now all expect
<script>alert("XSS")</script>
to be used as the attack pattern - Make simple DoS attacks against implementation of RCE and XEE challenge less likely by sandboxing the respective code
UI
- Updated to Font Awesome 5.0.4
I18N
- Added 🇭🇰Traditional Chinese language
- Changed from two-letter-code to full locale for translated files (
/app/i18n/*.json
) to allow country-specific variants (e.g. 🇨🇳Simplified Chinese and 🇭🇰Traditional Chinese)
Merchandise
- c50d487: Add new sticker provider URL to application and documentation: https://www.stickeryou.com/products/owasp-juice-shop/794