Forum Discussion

Bronze I

3 months ago

Solved

Hack Your First Web App: Ep.4 Missing Cookie

I'm stuck on the last question of Hack Your First Web App: Ep.4.

I have repeated the XSS over and over again successfully, but it does not give me a cookie called "xss-token". It gives me a cookie with some letters and numbers, and those aren't the answer to the question. What can I do from here?

challenges

offensive cyber

jodell
3 months ago
It wasn't giving me the xss-token, but after restarting the lab more times it eventually did. I guess it's fixed now.

3 Replies

netcat
Silver III
3 months ago
😝
If you triggered the XSS just read what is displayed on the screen: whatever,XSS-TOKEN=value.
Enter the value and you're good to go.
- jodell
  Bronze I
  3 months ago
  It wasn't giving me the xss-token, but after restarting the lab more times it eventually did. I guess it's fixed now.
albertogr
Bronze I
8 days ago
I'm having the same issue. This is what I get:

The code I used was onclick="alert(document.cookie)"

Forum Discussion

Hack Your First Web App: Ep.4 Missing Cookie

3 Replies

Featured Places

Help & Support Forum

Related Content

Persistence: Accessibility Features - missing token.txt

Jupyter notebook output missing

Node.js - Beginner -- What am I missing?

PowerShell Basics/Remoting Lab is missing the tasks.

Microsoft Sentinel: Threat Hunting Tools You Could Be Missing Out On

Recent Discussions

Elastic Data Ingest: Ep.1 – Auditbeat

Ep 7 Post Exploitation With Metasploit

Active Directory Basics: Demonstrate Your Skills

Serial Maze Support Group

Web App Hacking (Lab series): CVE-2022-2143 (iView2)