$ cat writeup.md…
$ cat writeup.md…
spbctf
Task: execute prompt("sibears") via XSS in an img onerror handler where the filter blocks >, single quotes, and double quotes using indexOf(). Solution: bypass the filter using HTML entities (' and ") which pass raw string checks but are decoded by the browser's HTML parser before JavaScript execution in the event handler, enabling JS string breakout and code injection.
Permission denied (requires tier.pro)
Sign in with GitHub, Discord, or Google to continue. No email required.
$sign in$ grep --similar