This program contains 2 major flaws: a buffer overflow and a format string vulnerability. See if you can exploit both.
BTW ASLR, NX, Stack Cookies, and Full RELRO are enabled, have fun.
A solution is posted in exploit.py
A write-up can be found at: https://matthewlevydev.com/2019/01/17/exploitchallenge1/
Note: The function vuln() was created to help with exploiting the Buffer Overflow.