CSP Bypass - Inline code

35 Points  0x0

Too lazy to configure this correctly

Author

CanardMandarin,  

Level  Difficulty

Validations

2405 Challengers 1%

Note  Notation

1
2
3
4
5
224 Votes

To reach this part of the site please login

solutions 6 Solutions

Display solutions Submit a solution

Challenge Results Challenge Results

Pseudo Challenge Lang Date
stuxnet Web - Client  CSP Bypass - Inline code fr 25 June 2022 at 00:10
Gluby Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 20:51
thotho Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 16:32
JaunePomme Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 15:41
Shango Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 15:34
Vispenn Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 15:25
LouisRomeas Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 15:17
Ez3kiel Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 11:51
sanoyan Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 02:56
pegasekb Web - Client  CSP Bypass - Inline code fr 24 June 2022 at 00:04

challenges 33 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 42% 106781 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 47% 119967 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 114001 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 103784 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 39% 99026 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 85016 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 61400 15 g0uZ 8 13 March 2011
pas_valide Javascript - Webpack 6% 15560 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 47569 30 Hel0ck 8 4 February 2011
pas_valide XSS - Stored 1 11% 27933 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 2405 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 15533 35 sambecks 8 16 February 2016
pas_valide Web Socket - 0 protection 1% 462 35 Worty 1 22 October 2021
pas_valide XSS DOM Based - Introduction 1% 1856 35 Ruulian 3 12 August 2021
pas_valide Flash - Authentication 3% 5280 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 665 40 Ruulian 1 12 August 2021
pas_valide XSS DOM Based - Eval 1% 761 40 Ruulian 4 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 862 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 731 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5535 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 4096 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 550 50 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - Nonce 1% 151 50 Ruulian 0 8 April 2022
pas_valide CSS - Exfiltration 1% 174 50 Forgi 0 8 April 2022
pas_valide Javascript - Obfuscation 4 3% 5412 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6499 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 624 50 Ruulian 4 12 August 2021
pas_valide DOM Clobbering 1% 48 60 Mizu 0 8 April 2022
pas_valide HTTP Response Splitting 1% 1746 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 623 70 Hel0ck 3 4 February 2011
pas_valide XS Leaks 1% 7 75 Mizu 0 8 April 2022
pas_valide XSS - Stored - filter bypass 1% 1065 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 611 85 vic 6 24 December 2016