Skip to main content

Level 5 - Breaking protocol

1

Hints

  1. The title of this level is a hint.
  1. It is useful look at the source of the signup frame and see how the URL parameter is used.
  1. If you want to make clicking a link execute Javascript (without using the onclick handler), how can you do it?
  1. If you're really stuck, take a look at this IETF draft

Exploitation

Open the frame in a different tab using the following URI: https://xss-game.appspot.com/level5/frame/

4

Click on the Sign up link.

2

Payload

Change the next parameter to the following:

?next=javascript:alert(1);

Click on the Next button.

3