Contact person: Business Client

Phone:Show

Email:Show

Location: Australia

Budget: Recommended by industry experts

Time to start: As soon as possible

Project description:
"Please read the attached document .I’m putting together a small Capture-the-Flag exercise and need a web-based challenge that revolves around an intermediate-level SQL Injection vulnerability running on a MySQL back-end.
The goal is a concise, self-contained project that players can spin up quickly, find the injection point, extract the hidden flag, and shut it down again without extra setup headaches.

What I expect from you
Only one main exploit path. Keep privilege escalation/boot-to-root complexity out.

Vulnerabilities must be realistic (OWASP style) and plausible in real pentests.

No destructive or malicious code. No backdoors or code that attempts to harm evaluation systems.

No plagiarism. The submission will be rejected if it replicates an existing public challenge.

Provide clear instructions for reviewers to reproduce your environment (Docker recommended to avoid dependency problems).

IP: on payment, IP and materials transfer to buyer. Contractor must agree not to reuse the identical challenge publicly." (client-provided description)