Introduction In this writeup, I am going to explain my approach towards solving the Wacky XSS Challenge. The challenge is primarily about bypassing Content Security Policy (CSP) and DOM Clobbering due to insecure coding practice. Challenge Rules You must alert(origin) showing https://wacky.buggywebsite.com You must bypass CSP It must be reproducible…