Web - Client
Tuesday 24 May 2022, 19:43 #1
Web - Client XSS Strored 1
Hello guys,
I figure out the xxs vulnerability and set up my tools to catch the request i get my cookie but the admin never "visits" the page to steal his cookie. Maybe tha chall has a bug can someone confirm this ? ty
Thursday 11 August 2022, 08:25 #3
Web - Client XSS Strored 1
I get the cookie starting with "ADMIN_COOKIE=" and still the website tells me that it is wrong. This challenge is just broken.
Thursday 11 August 2022, 21:14 #4
Web - Client XSS Stored 1
Hi ExplorerIE,
If you really have the admin’s cookie value then check your input (trailing space?).
Validation on the website works, I just tested it. At worst case delete all site cookies and reconnect to try again.