CTFd 3.8.0
CTFd 3.8.0 has been released with new analytics and quality-of-life improvements for both admins and participants. Challenge solutions, Challenge Ratings, the new Challenge logic field and other improvements are available in CTFd 3.8.0.…
CTFd 3.7.6
CTFd 3.7.6 has been released with a security configuration improvement. The TRUSTED_HOSTS config setting has been added to config.ini to restrict CTFd to trusted hostnames. This can help prevent attacks against CTFd when CTFd has been deployed without a reverse proxy (e.g. nginx) or if…
CTFd 3.7.5
CTFd 3.7.5 has been released with a security fix for an issue where a user could change their own bracket after registration. Depending on how brackets are used this could affect external systems/processes that relied on the integrity of bracket assignments. CTFd 3.7.5 also converts…
CTFd 3.7.4
CTFd 3.7.4 has been released with a security fix for a vulnerability where an attacker could perform a Denial of Service against a CTFd instance. CTFd v2.2.0 to v3.7.3 are affected. We recommend all CTFd users update their instance to v3.7.4. If…
CTFd 3.7.0
CTFd 3.7.0 has been released with the introduction of scoring brackets and the social sharing system. We have also completely removed webpack from CTFd in favor of Vite.…
CTFd v3.5.0
CTFd v3.5.0 has been released with a few nice to have features and a big overhaul of the core theme.…
CTFd v3.4.0
It's been about 3 months since the release of 3.3.0 and we've got a lot of features to talk about! Let's get the obvious out of the way, Hosted CTFd instances have already been upgraded to CTFd v3.4.0 and the…
CTFd v3.3.1
CTFd v3.3.1 is available now with a security fix for an issue where users could join a team without knowing the team password or having a team invite. The malicious user would not have gained any additional permissions on the team or within CTFd, however it is possible…