Published onOctober 22, 2022Cursed Secret Party - HTB Hack The Boo CTF 2022webxsscdncspBypassing Content Security Policy (CSP) using jsDelivr CDN to execute a blind XSS payload and steal the admin’s JWT cookie, revealing the flag.