Categories
CTF Writeups

Bug Poc XSS Challenge #2

1. Send a postMessage containing the XSS payload.
2. Use Angular CSTI to bypass CSP.
3. Use JSFuck and an Angular sandbox escape to pop an alert.

Categories
Bug Hunting

Stored XSS Leads to Plaintext Password Disclosure

1. Upload HTML file using image upload feature.
2. Send user link to uploaded file.
3. User opens link and their AUTHH cookie is decoded, revealing their password.

Categories
CTF Writeups

UTCTF 2020 – Chatt With Bratt

1. Send XSSHunter payload.
2. View secret cookie in XSSHunter.