The challenge requires to craft a URL which will trigger an XSS when clicked by the victim (without any additional user interaction).
When we visit the challenge page we get the following form (with a nice and nostalgic Windows XP layout):
lfama
/ writeup_challenge_0422.md
Last active
January 2, 2025 03:32
Intigriti's April XSS challenge Writeup