Bugpoc XSS Challenge 2

Bugpoc XSS Challenge 2
Exploiting an open message reciever and an Angular CSTI to get cross site scripting on a seemingly innocuous site.

Stored XSS Leads to Plaintext Password Disclosure

Uploading a malicious HTML file to the web application to get XSS and decode a sensitive cookie.

UTCTF 2020 - Chatt With Bratt

UTCTF 2020 - Chatt With Bratt
Send XSSHunter payload to a chat bot to read their cookie.