Academy - Server-side attacks - assesment

did anyone complete the assessment for Server-side attack?
Can’t find the attack point :frowning:

Hi! I have it completed.
Using the given hint try to find encoded strings and utilize one of them.

nice. I’ve found the flag. but the hint didn’t help it.

can you give an advice, where i should find that flag? I tried to decode cookies, but can’t understand where is the attack point :frowning:

Did you mean encoded cookies?

The advice I give you is look closely to the source codes.

Is it concern with button “Delete”?