Answer the question
In order to leave comments, you need to log in
R
R
ReD2018-02-25 23:56:41
ReD, 2018-02-25 23:56:41
How can I bypass password verification?
There is such a code with a loophole (sort of) to get the value of the password field from the form:
<?php
require 'flag.php';
if (isset ($_GET['password'])) {
if (ereg ("^[a-zA-Z0-9]+$", $_GET['password']) === FALSE)
echo '<p class="alert">You password must be alphanumeric</p>';
else if (strpos ($_GET['password'], '--') !== FALSE)
die('Flag: ' . $flag);
else
echo '<p class="alert">Wrong passsword</p>';
}
?>Is there a way to somehow "trick" the input character filtering and get the value of the $flag variable?
3 answer(s)
@anonlatte
A
anonlatte, 2018-02-26 @anonlatte
Exploit null byte vulnerability
Add %00 to the end of the string. Everything after these characters will not be read regularly, but it will be possible to insert the necessary characters that match the condition for obtaining the flag
Solution task example.com/?password=pass%00--
Similar questions
S
S
C
Calius2014-05-30 13:19:16
What to choose for a modern knowledge base (knowledge) for a small team?
6Reply
C
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question