Documentation Index
Fetch the complete documentation index at: https://docs.cveplayground.com/llms.txt
Use this file to discover all available pages before exploring further.
About the platform
Is this legal?
Is this legal?
Yes. Every sandbox runs in an isolated container that belongs to the platform. You are exploiting an application the platform owns, in an environment built for it. Nothing you do affects real systems or real users. You are not touching anything you do not have permission to touch.
Is this free?
Is this free?
There is a free tier with full access to a rotating set of labs. The blog and the public profile pages are free for everybody, with no sign in. Pricing for the full catalog is at cveplayground.com.
Do I need to install anything?
Do I need to install anything?
No. A browser is enough. Some labs are easier if you have curl or your favourite HTTP client open in a terminal, but you can do every lab from a browser only.
What is the difference between a lab and a challenge?
What is the difference between a lab and a challenge?
A lab walks you through the bug in five steps and asks five multiple choice questions. A challenge gives you the same vulnerable app, asks you to find the flag, and offers no walkthrough. Labs teach. Challenges test. See guided labs and challenges for the longer version.
Accounts
Why do I need an account?
Why do I need an account?
To track XP, streaks, badges, and your patch log. Without an account, the platform has no way to remember what you have done, and the questions and the leaderboard would be meaningless.
Can I use a fake email?
Can I use a fake email?
The sign in goes through Auth0, so whatever Auth0 accepts is fine.
Can I change my handle?
Can I change my handle?
Not from the UI today. The handle is used in URLs, on the leaderboard, and on first blood records, and rewriting all of that on a handle change is risky. If you really need to change it, contact support and they can do it manually. Display name is changeable any time in settings.
Is my data exported anywhere?
Is my data exported anywhere?
Auth0 has your identity data (email, social login). The platform stores your handle, answers, XP, badges, and the heatmap. Sentry and Microsoft Clarity see anonymised error and session data when those services are enabled. Nothing else.
Labs and questions
Can I see the answers to the MCQs?
Can I see the answers to the MCQs?
The explanation appears after you answer, right or wrong. If you want to read the explanation again later, the question card stays open with your prior verdict; you can come back any time. The platform does not publish an answer key separately, because the explanations are the answer key.
What if a question is wrong or ambiguous?
What if a question is wrong or ambiguous?
Send the CVE ID and the question number to contact@cveplayground.com. Question content is reviewed and updated when issues come in.
Can I retake a lab?
Can I retake a lab?
Yes. The lab is always available. Re-answering correctly does not award XP again, but you can revisit any time to refresh your memory.
Are there hints?
Are there hints?
The brief, locate, and reproduce sections are effectively hints. If you cannot reproduce the bug, the reproduce section walks you through it. If you cannot read the patch, the patch section explains it. The five questions are the only place where there are no hints.
Sandboxes
How long does a sandbox stay up?
How long does a sandbox stay up?
The exact budget is shown on the sandbox card while one is running. If you stop using a sandbox without stopping it, it may expire automatically.
What is in the sandbox container?
What is in the sandbox container?
The vulnerable application, any dependencies it needs to run (a database, a cache, downstream services), and nothing else. No real user data. No network access beyond what the lab requires.
Researcher questions
Are the labs based on real CVEs?
Are the labs based on real CVEs?
Yes. Every lab is tied to a published CVE with a real advisory and a real patch. The platform does not invent vulnerabilities.
Where do the labs come from?
Where do the labs come from?
The lab team picks CVEs that are educational: well documented, with clear patches, and ideally with a public PoC or writeup. The labs then standardise the reproduction so it works inside a small container.
Can I suggest a CVE?
Can I suggest a CVE?
Yes. Send the CVE ID and a sentence on why it would make a good lab to contact@cveplayground.com. Not every CVE makes it; the lab team filters for ones that fit the format.
Can I see the source for the patches?
Can I see the source for the patches?
The patch step shows the upstream diff and links to the original commit when one is available. The lab team does not modify the patches; what you see is what the vendor shipped.
Troubleshooting
When something is broken.
Glossary
Terms used across the docs.