There is no excerpt because this is a protected post.
1. Upload HTML file using image upload feature.
2. Send user link to uploaded file.
3. User opens link and their AUTHH cookie is decoded, revealing their password.
1. Unpack APK.
2. Recognize that it is a PhoneGap app.
1. Use Binwalk to extract hidden binary.
2. Run hidden binary.
1. Send XSSHunter payload.
2. View secret cookie in XSSHunter.