picoctf 2013 - GETKey: 50

ĐÊ: There's bound to be a key on the spaceport's: https://picoctf.com/problems/getquery/index.php

<!doctype html>
<html lang="en">
<head>
<style type="text/css">
body {
padding-top: 40px;
text-align: center;
}

input {
border-style: solid;
border-color: black;
padding: 5px;
}
</style>
</head>
<body>
Either you aren't admin or wrong competition <form action="?admin=false&competition=ccdc" method="GET">
<input type="hidden" name="admin" value="false" />
<input type="hidden" name="competition" value="ccdc" />
<p><input type="submit" value="Get Key"></p>
</form>
</body>
</html>

Khi ta nhấp vào GET KEY thì sẽ request đến: https://picoctf.com/problems/getquery/index.php?admin=false&competition=ccdc

Vậy với dạng đề này ta chỉ cần chỉnh thông số là được
false thành true
ccdc thành picoctf

https://picoctf.com/problems/getquery/index.php?admin=true&competition=picoctf

FLAG: 9fa449c061d64f58de600dfacaa6bd5d

The UG

Featured Content Slider

picoctf 2013 - GETKey: 50

0 nhận xét:

Đăng nhận xét

Recent Post

Test Footer 1

	<!doctype html>
	<html lang="en">
	<head>
	<style type="text/css">
	body {
	padding-top: 40px;
	text-align: center;
	}

	input {
	border-style: solid;
	border-color: black;
	padding: 5px;
	}
	</style>
	</head>
	<body>
	Either you aren't admin or wrong competition <form action="?admin=false&competition=ccdc" method="GET">
	<input type="hidden" name="admin" value="false" />
	<input type="hidden" name="competition" value="ccdc" />
	<p><input type="submit" value="Get Key"></p>
	</form>
	</body>
	</html>