XSS Challenge #6
Welcome to my sixth XSS challenge!
This challenge's goal is to execute an alert() on this page, by following the rules.
- The exploit that you provide has to not include any user interaction. Eg.. Once the user opens it, he will see the an alert() popup.
- The payload has to be working on a modern browser.
http://secbot.me/xss-challenges/xss-challenge6.php & the HTTP REFERER header as the injection point.
How?. This is the main point of the challenge :-).