Intigriti's February 2023 XSS Challenge

---

February 20, 2023

---

---

Belgian ethical hacking platform Intigriti hosted a new monthly XSS (cross site scripting) challenge in February 2023.

• I uploaded a PDF containing my writeup that can be read below or downloaded here: PDF

The challenge was build around an image file that could be uploaded with the image metadata that was parsed incorreclty via JSON and could be used to trigger the XSS attack.

Embedded writeup PDF: