XSS that won't listen - DOJO #17 LeHack edition (Until 10/06/2022)

This is a special DOJO challenge for "Le Hack", one of the biggest hack events from 24 to 25 June 2022, with a Live Bug Bounty on site

• 5 tickets to be won (transport and accommodation not included)
• Make sure you can come to LeHack by your own way

Submit your solution here: yeswehack.com/programs/dojo

Description

This code runs a JavaScript code inside a script that craft a "secret" variable.

Use this when you stuck!

- -Help

Links

• https://owasp.org/www-community/attacks/xss/ - *OWASP, "Cross Site Scripting (XSS)
• https://www.w3schools.com/tags/tag_script.asp - W3schools., "HTML