x corp

Challenge Information

• Category: Web Security

• Level: easy

• Points: 50

description

X corp made a new filtration for input data , prove it is secure enough

Solution

after access the lab we review source code

well we missing quote and it based in span so I'll try to close quote

well , now try to input payload to make alert (XSS) u can use this payload admin'onload=alert(1)' first quote to close opne one and add onload action

done