Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
|
CVE-2025-XXX57
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 55 | PRO | |
|
|
CVE-2026-XXX50
This challenge covers the review of a CVE in a python codebase and its patch
|
-- | 56 | PRO | |
|
|
CVE-2024-XX3X9
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 43 | PRO | |
|
|
CVE-2025-0X6X
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 93 | PRO | |
|
|
CVE-2025-6X5X7
This challenge covers the review of a CVE in a python codebase and its patch
|
-- | 73 | PRO | |
|
|
CVE-2024-X68X
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 84 | PRO | |
|
|
CVE-2023-2758X
This challenge covers the review of a CVE in a golang codebase and its patch
|
< 1 Hr. | 33 | PRO | |
|
|
CVE-2017-1XX74
This challenge covers the review of a CVE in a golang codebase and its patch
|
-- | 44 | PRO | |
|
|
CVE-202X-15X7
This challenge covers the review of a CVE in a golang codebase and its patch
|
-- | 32 | PRO | |
|
|
CVE-2022-2X457
This challenge covers the review of a CVE in a java codebase and its patch
|
-- | 40 | PRO | |
|
|
CVE-2025-627X0
This challenge covers the review of a CVE in a java codebase and its patch
|
< 1 Hr. | 44 | PRO | |
|
|
CVE-2025-NOID
This challenge covers the review of a CVE in a java codebase and its patch
|
-- | 41 | PRO | |
|
|
Latex: --shell-escape
This exercise covers how one can leverage latex when pdflatex is used with the --shell-escape option to gain command execution.
|
< 1 Hr. | 40 | PRO | |
|
|
Golang Code Review #07
This challenge covers the review of a snippet of code written in Golang.
|
-- | 47 | PRO | |
|
|
CVE-2025-X93X0
This challenge covers the review of a CVE in a golang codebase and its patch
|
-- | 31 | PRO | |
|
|
CVE-2025-X215X
This challenge covers the review of a CVE in a golang codebase and its patch
|
-- | 34 | PRO | |
|
|
CVE-2025-X942X
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 94 | PRO | |
|
|
CVE-2025-6X9X2
This challenge covers the review of a CVE in a python codebase and its patch
|
-- | 83 | PRO | |
|
|
CVE-2025-6X85
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 92 | PRO | |
|
|
CVE-2025-X270X
This challenge covers the review of a CVE in a python codebase and its patch
|
< 1 Hr. | 107 | PRO | |
|
|
Puzzle 08 | < 1 Hr. | 18 | PRO | |
|
|
CVE-2021-X5X8
This challenge covers the review of a CVE in a Golang codebase and its patch
|
-- | 36 | PRO | |
|
|
CVE-2025-5XX2X
This challenge covers the review of a CVE in a Golang codebase and its patch
|
-- | 48 | PRO | |
|
|
GCM Tag Truncation
This challenge covers the exploitation of tag truncation on GCM
|
> 4 Hr. | 14 | PRO | |
|
|
CVE-2022-24720
This exercise covers how one can leverage image processing in ActiveStorage to gain command execution.
|
1-2 Hr. | 28 | PRO | |
|
|
CVE-2025-XX149
This challenge covers the review of a CVE in a Python codebase and its patch
|
< 1 Hr. | 131 | PRO | |
|
|
CVE-2025-6XX4
This challenge covers the review of a CVE published in 2025 in a go codebase and its patch
|
< 1 Hr. | 45 | PRO | |
|
|
CVE-2025-5X3X9
This challenge covers the review of a CVE discovered in 2025 in a golang codebase and its patch
|
-- | 60 | PRO | |
|
|
CVE-2024-47081 | < 1 Hr. | 21 | PRO | |
|
|
CVE-2023-3219X
This challenge covers the review of a CVE in a Golang project and its patch
|
-- | 60 | PRO |
Showing 31–60 of 704 exercises
Free Labs of the Month