发现里面有个unescape(),用个在线工具解码,
p1解码后是:
function checkSubmit(){var a=document.getElementById("password");if("undefined"!=typeof a){if("4eeca4
p2解码后是:
b0f5661864a12d73f4d3ddc0a"==a.value)return!0;alert("Error");a.focus();return!1}}document.getElementById("levelQuest").οnsubmit=checkSubmit;
合起来就是
function checkSubmit(){var a=document.getElementById("password");if("undefined"!=typeof a){if("4eeca40b0f5661864a12d73f4d3ddc0a"==a.value)return!0;alert("Error");a.focus();return!1}}document.getElementById("levelQuest").οnsubmit=checkSubmit;
提交4eeca40b0f5661864a12d73f4d3ddc0a,得到flag:wctf{webclieNt_c0py}
提交,通过!