The company I work in recently made a subdomain where you need to figure out how to hack the page using a vulnerability they subtly put there. If u are successful u get an interview. I looked it over for fun and was able to do it. But since i already work there i was thinking of telling a friend id love to join us but was rejected a month ago when they interviewed him about how i did it so he can apply maybe they give him another chance. do you think I should do that?

Note that i referred him last month and hes a fresh grad with not much experience

  • 7
    No, let him figure out the vulnerability.

    On the other hand, you could exploit it beyond their expectations to play a joke on them
  • 2
    Do you know he can cut it tho? If he can meet the expectations, help him out and give him a nuge - teach him instead of "here - filled this out for ya, good luck figuring it out".

    At the same time, I hope it's not something like 'webroot is chmodded to 777 and PHP has full reign over the system'.
  • 0
    You could tell him that there is one, but now what it is
  • 1
    @theKarlisK i think hed require a lot of teaching but hes smart :/

    And no its an xss vulnerability
Your Job Suck?
Get a Better Job
Add Comment