Challenge 7: XSS in a dropdown list

Learn how the XSS vulnerability can be found in other params even though it is not editable by the browser using the BurpSuite Proxy tool

10 February 2023 · 4 min

Challenge 6: XSS Bypass Client-Side Blacklist Validation

Learn why client-side validation cannot be trusted all the time and how it can be tampered with by using BurpSuite as a proxy for exploiting XSS

6 February 2023 · 5 min

Challenge 5: XSS bypass Client-Side Length Limit

Learn why client-side validation cannot be trusted all the time and how it can be tampered with by browser debugging tools for exploiting XSS

2 February 2023 · 3 min

Challenge 4: XSS using HTML attribute

Learn how the XSS payload can be crafted using HTML5 event attributes rather than using the classic

18 January 2023 · 5 min