Cross-site scripting penetration analysis of the 2023 secondary vocational network security competition-2 (super detailed)

Cross-site scripting penetration

Task environment description: If you need the environment, you can privately message the blogger!

• Server Scene: Server2126 (closed link)
• Server scenario operating system: unknown

1. Visit the server website directory 1, and submit the obtained pop-up frame information as a flag according to the completion conditions of the page information;
2. Visit the server website directory 2, and submit the obtained bullet box information as a flag according to the page information completion conditions;
3. Visit the server website directory 3, and submit the obtained bullet box information as a flag according to the page information completion conditions;
4. Visit the server website directory 4, and submit the obtained bullet box information as a flag according to the page information completion conditions;
5. Visit the server website directory 5, and submit the obtained bullet box information as a flag according to the page information completion conditions;
6. Access the server website directory 6, complete the condition according to the page informationÿ