Challenge 20: Javascript for Pentesters
Welcome John!
User Settings for UID:3476
Objectives:
Find John's Password using an XSS vulnerability on this page
Display the Password in the div with id "result"
App stores password in Plain Text :(
No Hardcoded values can be used - everything has to be figured out dynamically
Hints:
Remember what you have learnt at
Pentester Academy