You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
the problem is easy and not for CTF Extension I think that it is a bug on JuiceShop itself.
The Api Snippets give this out file Json with threes bad entries and I try it more 5 times and it's the same.
Thanks a lot for opening your first issue with us! 🧡 We'll get back to you shortly! ⏳ If it was a Support Request, please check our extensive CTF manual first. Also, please consider asking on the community chat next time! 💬
This should not impact the CTF tool in any way, or does it? Shouldn't create broken challenges or anything.
This happens due to some parsing craziness happening in Juice Shop to find those snippets. It doesn't hurt in there either, but it'd be cleaner to filter the API response to only contain entries ending in "Challenge" which would make this go away.
bkimminich
added a commit
to juice-shop/juice-shop
that referenced
this issue
Sep 15, 2021
🐛 Bug report
Description
the problem is easy and not for CTF Extension I think that it is a bug on JuiceShop itself.
The Api Snippets give this out file Json with threes bad entries and I try it more 5 times and it's the same.
In juiceShopUrl + '/snippets'
{
"challenges": [
"directoryListingChallenge",
"accessLogDisclosureChallenge",
"resetPasswordMortyChallenge",
"changeProductChallenge",
"registerAdminChallenge",
"exposedMetricsChallenge",
"fileWriteChallenge",
"loginAdminChallenge",
"loginBenderChallenge",
"loginJimChallenge",
"unionSqlInjectionChallenge",
"dbSchemaChallenge",
"noSqlReviewsChallenge",
"forgedReviewChallenge",
"noSqlCommandChallenge",
"nippet",
"start",
".*/",
"redirectCryptoCurrencyChallenge",
"redirectChallenge",
"adminSectionChallenge",
"scoreBoardChallenge",
"tokenSaleChallenge",
"resetPasswordBjoernOwaspChallenge",
"resetPasswordBjoernChallenge",
"resetPasswordJimChallenge",
"resetPasswordBenderChallenge",
"resetPasswordUvoginChallenge",
"passwordRepeatChallenge",
"restfulXssChallenge",
"localXssChallenge",
"xssBonusChallenge"
]
}
This is not good :
"nippet",
"start",
".*/",
🔬 Minimal Reproduction
The text was updated successfully, but these errors were encountered: