Pentathon 2025 Quals
Last updated on
Description
Web challenge Writeup
Overview
This challenge is a note taking app
if i give a html input
iam getting h2 if we take a look at
<main>
<h1>Note Details</h1>
<p><b>ID:</b> 54e559a3-1849-4c15-83e0-013607821265</p>
<p><b>Content:</b> h1HI</h1><h2>H2</h2></p>
<a href="/">Back to Home</a>
</main>
As u can see <, > are removed once so HTML injection confirmed.