Rating:
Note: These writeups are purposefully short. Each problem had a hint that made the problem trivial to solve.
Login authentication was gated by a cookie named isAdmin that was being set to False. Simply intercept the request (using Burpsuite proxy, for example) and update the cookie's value to be True.
