Cross Site Scripting (XSS) | Task 4
kurtnettle1 min read
Problem Statement
Prerequisites
- XSS (I canโt say the level, you need to learn different types of it. you can follow this tutorial series for an initial understanding)
Solution
By the description, we can understand the query field which is taking input is vulnerable to XXS. And itโs about getting cookie. So a simple payload like alert(document.domain), we can easily get the flag.
Well for me, I know about the payload but I didnโt solve it like that. CTF is about getting flags anyhow ๐. Do you remember we actually got a reverse shell to the server? And the server contains the source code?! Hehehe. Yes I read the source code to get the flag. ๐๐๐
0
Subscribe to my newsletter
Read articles from kurtnettle directly inside your inbox. Subscribe to the newsletter, and don't miss out.
Written by