The website is a simple blog. We register a user;
test:test and login.
Then we create a blog post with an
XSS-payload. This task has no input filtering so a simple payload is enough. I’ll use
Here we see our post with the hidden
Now we wait for another user to trigger our payload. After waiting for a bit we get a callback on
The flag can be found in the “Cookies”-section: