Using OWASP Mutillidae II, let's determine whether the application protects against stored cross-site scripting.