Prototype Pollution Lab

Navigate to[srcdoc]=<img%20src%20onerror%3dalert(document.domain)>

You should see an alert popping up

By combining a "less useless" prototype pollution with a gadget, we have achieved XSS. As we could control properties, we modified srcdoc and have achieved XSS.

The code snippet used in this lab is below.

<script src=""></script>
<script src=""></script>

Writeup & Vulnerable Code Snippet 1
Writeup & Vulnerable Code Snippet 2