Bug Hunting

Stored XSS Leads to Plaintext Password Disclosure

1. Upload HTML file using image upload feature.
2. Send user link to uploaded file.
3. User opens link and their AUTHH cookie is decoded, revealing their password.

CTF Writeups

UTCTF 2020 – Chatt With Bratt

1. Send XSSHunter payload.
2. View secret cookie in XSSHunter.