Burp Suite User Forum

Login to post

Lab: Reflected XSS into HTML context with all tags blocked except custom ones lab is not working

Sri | Last updated: Sep 12, 2020 04:25PM UTC

hey i have been doing some labs but i got to notice that the above content lab is passing the payload even i get a xss pop up but still says lab not solved i have done refreshing the page and also i have tried it on the chrome browser as well but still i was unable to the finish the lab i have even logged back in and out to check it works or not but it still doesn't work the payload is this -->search=<xss+id%3Dx+onfocus%3Dalert(document.cookie) tabindex=1>#x'; one time it worked and next time it didn't work i have used two browsers firefox the latest version as well as chrome

Hannah, PortSwigger Agent | Last updated: Sep 14, 2020 12:50PM UTC

Have you tried delivering this payload through the exploit server provided?

You need to Log in to post a reply. Or register here, for free.