15 challenges covering XSS, CSRF, clickjacking, JWT flaws, CORS misconfigurations, insecure redirects, and sensitive data exposure.
xss-reflected
xss-stored
xss-dom
csrf-token
sql-injection-demo
auth-bypass
insecure-redirect
sensitive-data
rate-limiting
session-fixation
clickjacking
cors-misconfiguration
file-upload-validation
password-strength
jwt-vulnerabilities