Jump to content
dancezar

[HARD] Xss challenge

By dancezar, in Challenges (CTF)

Recommended Posts

  • Active Members
dancezar Newbie

dancezar

Posted
  • Author
  • Active Members
Posted

Am cam exagerat este cam de Mediu spre HARD , Toshib4 l-a rezolvat in timpul asta pentru ca este priceput(apropo bravo:D)

//am editat titlul

El_Strong Newbie

El_Strong

Posted
Posted (edited)

@danyweb09Coi

This challenge is very easy, i really don't see why you describe this as "HARD", try my level 1 xss challenge here:http://12342.site11.com/level1.php?a=. That is a hard challenge.

Here are challenges i made from your challenge:

I completed the challenge without user interaction on IE 10 (xss filter=enabled).

I also completed the challenge bypassing IE 10's xss filter, chrome's webkit xss auditor and i have it working on the following browsers:Opera,firefox,chrome,internet explorer.

I'll post the challenge soon ;).

Edited by El_Strong
Strongboi_2 Newbie

Strongboi_2

Posted
Posted

Vector:

' onmouseover=alert(/Strongboi/) '

Encoded:

' onmouseover=alert%26%2340%3b/Strongboi/%26%2341%3b '.

Real challenge for everyone else (bypass chrome's xss filter and IE's xss filter and make it work on both browsers without user interaction).

Strongboi_2 Newbie

Strongboi_2

Posted
Posted
after one minute,and you are still stupid View image: asda

//este si ultima versiune de chrome

After 3 days, you finally added the single quote at the end to make it work (you're a quick editor).

Anyway, it's always a pleasure to challenge you by making a challenge from your lame ass challenges.

  • Active Members
dancezar Newbie

dancezar

Posted
  • Author
  • Active Members
Posted (edited)

3 days to add a fucking (?

the single quote was there but you are blind.

Bucura-te de sederea pe rst presimt ca in maxim 2 ore faci tu ceva si iei ban

//sa inchida cineva topicul

// edit: done :)

Edited by aelius
x
Guest
This topic is now closed to further replies.
Go to topic listing
×
×
  • Create New...