Cool Effects
I recently solved web hacking challenge by Cyber Talents and decided to make this write-up. For those who don't know, Cyber Talents is a new platform that ranks cybersecurity professionals by running CTF competitions in order to get hired by recruiters
by looking to the challenge link i found input field to enter your name
my first try to check Cross-Site Scripting by injecting the most common payload <script>alert('xss');</script>
i got an forbidden response because server is filtering a few things: script, alert, ....
by trying another payload <img src=x onerror=alert(1)> the secret flag will pop on the page :D
