This site seems to be well secured. I am in no means a "expert" cracker, but I cannot find any vulnerabilities to XSS, SQLi, or even RFI.
Apparently the site also uses sha1 for passwords that are dubled salted (salt and pepper).
I hear all the time that "no site is unhackable", and prehaps I have missed something...who knows.
here is the site: havocarcade.com
What is your opinion on sha1 double salted algorithms?