N/A

Go to the challenge

Rules:

• Please do NOT reveal the solution until the challenge is over! After that, feel free to send us your videos / writeups and we'll share them. If you'd like to have your writeup qualify for the contest, send it in before Wednesday!
• This challenge runs from Friday the 9th of May until Friday the 16th of May, 11:59 PM UTC.
• Out of all correct submissions, we will announce seven winners on Monday, the 19th of May: (3 randomly drawn, 3 best write-ups, 1 first blood)
• First blood will receive a €100 swag voucher for our swag shop.
• Every randomly drawn winner and best writeup winner gets a €50 swag voucher for our swag shop.
• The winners will be announced on our Twitter profile.
• For every 50 likes, we'll add a tip to the announcement tweet.
• Join our Discord server to discuss the challenge!

The solution...

• Should work on the latest version of FireFox and Chromium, not Safari
• Should pop an alert
• Should leverage a cross site scripting vulnerability on this domain.
• Shouldn't be self-XSS or related to MiTM attacks.
• You are not allowed to use a previous XSS challenge in order to solve this one.
• Should be reported on the Intigriti platform.

For the writeup content, make sure to add a (hidden) link to your writeup in the report or comments before the challenge has ended! We'll link them on our gitbook afterwards.

If you wish to get @'ed on Twitter, link your Twitter with your Intigriti profile!

N/A

Please submit as medium.

N/A