This lab demonstrates a cross-site scripting (XSS) vulnerability. We'll show how to upload malicious content to the web server that could harm other users (or the site itself), then how to use Content Security Policy as one way of providing protection against this attack.
To get the most out of this lab, you should be familiar with:
Your web application will boot automatically. Once the app loads, proceed to the next step.
The following internal contact can help out:
The following teammates have recently completed this lab: