● Cvg3n3rat0r
This is the main page.
If I write down some words and click the submit, you can download a file.
The result file is like this. I don't have much ideas, so I simply tried some code in there.
There is nothing in result file. In this case, I can assume two situations. First, the service has word filtering. Second, the service recognized script tag and apply it in appropriate way. I thought this service has no filtering, so I try another tag to read "/flag.txt" file.
<iframe src="file:///flag.txt"></iframe>
Flag
p4{I_swear_the_input_was_sanitized!}
● V
Ongoing...