challenges blog leaderboard careers companies pricing

CORS Wide Open

Security Misconfiguration

Easy

Objective

Access-Control-Allow-Origin: * on sensitive endpoints.

Submit Flag

Security training for developers who ship AI-generated code. Learn to spot vulnerabilities before attackers do.

Learn

Challenges
Careers
Pricing

Company

Security Review
For Teams
Hire Developers

Legal

Privacy Policy
Terms of Service
Educational use only

All vulnerabilities are intentional. Built for learning.

2026 alicesec