- Published on
The challenge involved crafting an XSS payload to extract a flag from an HTML tag, leveraging a vulnerability in the processing of uploaded .xlsx files and exploiting xmlattr vulnerability in Jinja2.
Web
All Posts
- pwn (4)
- flagyard (4)
- malware (4)
- web (3)
- rev (2)
- forensic (2)
- pwntools (2)
- srop (2)
- osint (2)
- games (1)
- 0xl4ugh (1)
- backdoorctf24 (1)
- torrent (1)
- pcap (1)
- bluehensctf (1)
- xss (1)
- glacierctf (1)
- cve-2024-34064 (1)
- hackthevotectf (1)
- hardware (1)
- arduino (1)
- lucky (1)
- rop (1)
- stego (1)
- spookyctf (1)
- sqlinjection (1)
- sandbox (1)
- shellcode (1)
- payload (1)
- chess (1)
- Published on
My solution for BluehensCTF web/Firefun 3 challenge- Published on
My solution for HackTheVote2024 web/graph1 challenge
