Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
B
B
BotaniQ_Q2018-01-26 20:37:57
PHP
BotaniQ_Q, 2018-01-26 20:37:57

I want to understand php code?

<?php
require 'flag.php';

if (isset ($_GET['password'])) {
  if (ereg ("^[a-zA-Z0-9]+$", $_GET['password']) === FALSE)
    echo '<p class="alert">You password must be alphanumeric</p>';
  else if (strpos ($_GET['password'], '--') !== FALSE)
    die('Flag: ' . $flag);
  else
    echo '<p class="alert">Неверный пароль</p>';
}
?>

In general, it is clear that a password check is taking place
. This is a task from a hackerdom, you need to enter a password on the training.hackerdom.ru/tasks/open/122/ website, I don’t know php and I have difficulty in solving this problem, what do these lines mean:
  1. require 'flag.php';
  2. die('Flag: ' . $flag);

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
Andrey Burov, 2018-01-26
@BuriK666

password
"something\n--"
ergeg('^[a-zA-Z0-9]+$') проверит только первую строку (до \n) переменной $_GET['password'],
а strpos ($_GET['password'], '--') ищет во всей строке.

Similar questions
S
sabanovvv2014-04-27 17:27:52
How to create a traffic situation constructor? 4Reply
M
MrLumusss2022-01-12 20:01:57
Is it possible to enable XMP if some dice don't support it? 4Reply
H
Healis2022-01-16 18:03:19
How to apply a gradient to an image so that the gradient does not go beyond the edges? 2Reply
I
Isaac Clark2017-04-05 13:43:42
HTML5 GAME: Is it better to use Canvas or DIV for sprite animation? 5Reply
M
MrFreeman2014-05-22 10:27:02
Where did the events from habrahabr go? 6Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question