XSS DOM Based - Eval

40 Points  0x0

A bad practice ...

Author

Ruulian,  

Level  Difficulty

Validations

706 Challengers 1%

Note  Notation

1
2
3
4
5
58 Votes

To reach this part of the site please login

solutions 4 Solutions

Display solutions Submit a solution

Challenge Results Challenge Results

Pseudo Challenge Lang Date
yoctosomax Web - Client  XSS DOM Based - Eval fr 24 May 2022 at 09:18
tuxlu Web - Client  XSS DOM Based - Eval fr 23 May 2022 at 15:40
Nardor Web - Client  XSS DOM Based - Eval fr 22 May 2022 at 21:43
laumane Web - Client  XSS DOM Based - Eval fr 21 May 2022 at 18:45
MrAO Web - Client  XSS DOM Based - Eval en 21 May 2022 at 04:11
romainpepps Web - Client  XSS DOM Based - Eval fr 20 May 2022 at 21:48
Sirius14 Web - Client  XSS DOM Based - Eval fr 18 May 2022 at 23:53
linoverdows Web - Client  XSS DOM Based - Eval fr 17 May 2022 at 16:47
PERCESI Web - Client  XSS DOM Based - Eval fr 17 May 2022 at 16:28
Cindy Web - Client  XSS DOM Based - Eval fr 16 May 2022 at 15:40

challenges 33 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 41% 105415 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 47% 118767 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 112889 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 102701 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 39% 98041 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 84160 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 60619 15 g0uZ 8 13 March 2011
pas_valide Javascript - Webpack 6% 15158 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 47091 30 Hel0ck 8 4 February 2011
pas_valide XSS - Stored 1 11% 27524 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 2277 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 15325 35 sambecks 8 16 February 2016
pas_valide Web Socket - 0 protection 1% 449 35 Worty 1 22 October 2021
pas_valide XSS DOM Based - Introduction 1% 1733 35 Ruulian 3 12 August 2021
pas_valide Flash - Authentication 3% 5248 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 622 40 Ruulian 1 12 August 2021
pas_valide XSS DOM Based - Eval 1% 709 40 Ruulian 4 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 842 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 713 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5484 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 4012 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 523 50 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - Nonce 1% 110 50 Ruulian 0 8 April 2022
pas_valide CSS - Exfiltration 1% 149 50 Forgi 0 8 April 2022
pas_valide Javascript - Obfuscation 4 3% 5386 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6430 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 610 50 Ruulian 4 12 August 2021
pas_valide DOM Clobbering 1% 17 60 Mizu 0 8 April 2022
pas_valide HTTP Response Splitting 1% 1730 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 618 70 Hel0ck 3 4 February 2011
pas_valide XS Leaks 1% 7 75 Mizu 0 8 April 2022
pas_valide XSS - Stored - filter bypass 1% 1055 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 604 85 vic 6 24 December 2016