Please help me! I have a question for this chall

I want solve this chall by XSS and send flag to my host.
My idea is use eval(atob(<payload_fetch_base64>)), so I test in docker and see js doesn't work in browser's bot.
My question is is this direction correct and if so, what needs to be done to let the bot execute js on browser's bot?

#web

작성자 정보

testtt{{7*7}}

자기소개

아직 자기소개가 없습니다.

대한민국 🇰🇷

1999

0 팔로잉

0 팔로워

답변 1

When I check CSP, only img tag is allowed. I think you should think of another way to use it.

2024.01.18. 08:28