DOM XSS in document.write sink using source location.search

This is a writeup for a challenge from PortSwigger's Web Security Academy. In this one, we will learn how a DOM Cross Site Scripting (XSS) vulnerability works, how it can be exploited and what an attacker can gain out of it. In the previous writeups ...