Skip to main content
Hashnodekurtntettle's blog

Command Palette

Search for a command to run...

Cross Site Scripting (XSS) | Task 4

web 𖧹 ??pts

Published
1 min read
S
Shaikh Shafeen
Building solutions of my daily life problems with code.
Part of seriesCYBER SAFE II | BUBT

Problem Statement

Prerequisites

  • XSS (I can’t say the level, you need to learn different types of it. you can follow this tutorial series for an initial understanding)

Solution

By the description, we can understand the query field which is taking input is vulnerable to XXS. And it’s about getting cookie. So a simple payload like alert(document.domain), we can easily get the flag.

Well for me, I know about the payload but I didn’t solve it like that. CTF is about getting flags anyhow 😁. Do you remember we actually got a reverse shell to the server? And the server contains the source code?! Hehehe. Yes I read the source code to get the flag. 😁😁😁

#bubt#ctf#ctf-writeup#web#xss#cybersafe
17 views

Comments

Join the discussion

No comments yet. Be the first to comment.

CYBER SAFE II | BUBT

Part 4 of 4

My write-ups for the CTF Contest arranged by the AI Community of BUBT. I like to hear others' instincts about their approach, so I tried to share mine! The contest was a mixture of web challenges only.

Start from the beginning

SQL Injection | Task 2

web 𖧹 ??pts

More from this blog

kurtntettle's blog

22 posts

Just a developer solving random problems and documenting here.