Back to Home
Hack This Page
Safe, educational vulnerability playground. No real exploits.
Stored XSS
Educational
This comment form stores user input without sanitization. Try injecting a script.
<form id="commentForm"> <input name="comment" placeholder="Leave a comment..." /> <button>Submit</button> </form> <div id="comments"> <p>Great article!</p> </div>
// Output will appear here. Try typing a payload and clicking Run.
💡 Hint
Try: <script>alert('XSS')</script> or <img src=x onerror=alert(1)>
This sandbox is fully simulated. No actual code execution occurs. All vulnerabilities are educational demonstrations. Never test security exploits on real websites without explicit authorization.