github juice-shop/juice-shop v6.4.0
on GitHub

latest releases: v16.0.1, v16.0.0, v15.3.0...
6 years ago

Changes

Challenges

  • #437: Added RCE Tier 2 ⭐⭐⭐⭐⭐ challenge for another type of remote code execution
  • a87b1b3: Added XXE Tier 2 ⭐⭐⭐⭐ challenge for a DoS-like XML attack
  • Increased difficulty of Extra Language challenge from ⭐⭐⭐⭐ to ⭐⭐⭐⭐⭐
  • Reassessed difficulty of XXE Tier 1 challenge to be rather ⭐⭐⭐ than ⭐⭐
  • c725065: XXS Tier 1-4 challenges now all expect <script>alert("XSS")</script> to be used as the attack pattern
  • Make simple DoS attacks against implementation of RCE and XEE challenge less likely by sandboxing the respective code

UI

  • Updated to Font Awesome 5.0.4

I18N

  • Added 🇭🇰Traditional Chinese language
  • Changed from two-letter-code to full locale for translated files (/app/i18n/*.json) to allow country-specific variants (e.g. 🇨🇳Simplified Chinese and 🇭🇰Traditional Chinese)

Merchandise

Download OWASP Juice Shop

Check out latest releases or
releases around juice-shop/juice-shop v6.4.0

Don't miss a new juice-shop release

NewReleases is sending notifications on new releases.

Get notifications