User Profile

Me

karelorigin

About

No information has been set by the researcher

Recognised by

None listed.

karelorigin's challenge statistics

View Researcher Activity

3 total submissions

3 accepted

0 rejected




Easy A properly secured parameter

We recently learned that the message parameter on this page was vulnerable to XSS. While we couldn't afford changing this page, we configured our WAF to prevent exploitation. So it's all fine now,...
Category: Cross Site Scripting (XSS)
Completed on 05-11-2018

Medium/hard Steal teh token!

Can you steal the token?
Category: Cross Site Scripting (XSS)
Completed on 05-11-2018

Medium/hard This strict URL filter should prevent XSS, right?

This one is pretty simple. One parameter is vulnerable, **?url=**. Can you get XSS to execute?
Category: Cross Site Scripting (XSS)
Completed on 05-11-2018