Steam account phish site

This is one of the more clever ones I’ve ran across, incredibly good design. However it’s vulnerable to XSS.
https://giveeaway.com/

XSS EXAMPLE
">