Level 4 notes (level04)

This level involves the Karma Trader, a system that looks suspiciously like a mockery of Reddit. ;)

What's the vulnerability?

You can inject JavaScript into your password, then send karma to a user, displaying your password to them and executing your JavaScript in their webbrowser.

What's the complication?

Not much, really.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

level4.md

level4.md

Level 4 notes (level04)

What's the vulnerability?

What's the complication?

Files

level4.md

Latest commit

History

level4.md

File metadata and controls

Level 4 notes (level04)

What's the vulnerability?

What's the complication?