← All Labs
🛡 AI HACKING ADVANCED +140 XP · +60 no-hint bonus

AI Markdown-Rendering Injection — XSS via LLM Output Rendering

DocBot is a chat assistant that renders its replies as Markdown to HTML in the browser. It refuses to embed raw HTML directly, but Markdown image syntax (![alt](url)) is allowed because 'images aren't executable'. The frontend renderer expands ![alt](url) into <img> tags — and an <img onerror> is one of the oldest XSS payloads in the book. Get DocBot to produce a payload that fires.

https://bookshop.local/search