XSS With CSP Bypass

This is the writeup for BugPoC challenge sponsored by Amazon.

Hi there,

In this post I detail about the thought process behind solving the XSS challenge by BugPoC sponsored by Amazon.

I learnt about CSP bypass, CSP with nonce, sandbox iframe , allow-modals and a lot more things.

Thanks :)