You know how real men don’t swear?

Here’s an e-mail service for those real machos: Alpha Mail
Source code: alphamail.zip

Next, you need to work your way through some web vulns.
Submit second flag here.

Added at 14:45 UTC: that’s an unserialize task. But with a twist, i would call it unserialize injection. (it’s not SQL related at all)