XXE is one of those things you never expect to be present but it somehow makes it way to a web chall.

Log in to website using info leak in an internal route, and use query-parameter-injection to pollute locals.

BTW Always look at robots.txt :thumbs:.

From Text injection to open redirect using javascript: pseudo protocol for unrestricted XSS.

First major web solve since picoCTF.

CTF Conducted by team Iced Tea.

Placed top 19, solved 5/7 pwn challenges, and one really good web challenge.