A pizza-ordering web application on Bugforge gives registered users a single-use discount code. The flag goes to whoever can apply more discount than they should — the fix is one HTTP request away, but you'll need to think carefully about how the server interprets the input you send.
Objetivo: Create an account, log in to the application, and locate the discount code that is presented to you after authentication.
Contexto: The target is a Bugforge pizza-ordering web application. You need a valid account to proceed through the purchase flow.
Revela solo las que necesites. Claude lleva la cuenta de cuántas usaste para calibrar la retroalimentación.
After logging in, look around your account dashboard or the checkout area for any promotional information the app surfaces automatically.
Applications often display coupon or discount codes on the landing page or in the user dashboard after login — check for any banner, label, or text that looks like a promo code.
The discount code displayed to you after login is PIZZA-10. Note it down; you will inject it into the purchase request.
Chatea con un tutor anti-spoiler para este paso. Usa solo la especificación de este lab y empieza por la pista más pequeña que sirva.
Cuéntale qué probaste, dónde te atoraste, o pega la respuesta/error que estás viendo.
¿Te gusta Hintru? Buy me a coffee ☕ ☕