Missing Authentication for Critical Function
Reliance on Untrusted Inputs in a Security Decision
Use of a One-Way Hash without a Salt
URL Redirection to Untrusted Site ('Open Redirect')
XML External Entity
Deserialization of Untrusted Input
Welcome to Insecure Inc.
This is a training site. You are authorized to complete the training challenges. You are
authorized to conduct any disruptive testing or intentionally tamper with the contents of this site.