当前位置：网站首页>Bugkuctf-web24 (problem solving ideas and steps)

Bugkuctf-web24 (problem solving ideas and steps)

2022-07-02 09:40:00 【hangshao0.0】

Look at the question

Insert picture description here
Look everywhere for , No additional information

Grab the bag

Insert picture description here
Find out “ link ” There is a hidden in that place a label , Click the jump , Get the code

Analysis of the code

<?php
if(isset($_GET['v1']) && isset($_GET['v2']) && isset($_GET['v3'])){
    
    $v1 = $_GET['v1'];
    $v2 = $_GET['v2'];
    $v3 = $_GET['v3'];
    if($v1 != $v2 && md5($v1) == md5($v2)){
    
        if(!strcmp($v3, $flag)){
    
            echo $flag;
        }
    }
}
?>

Follow again md5 of , In fact, I have written an article before
https://blog.csdn.net/weixin_45254208/article/details/115425962
But not only to meet md5, Also make variables $ v3 It's equal to the variable $ flag,strcmp Unrecognized array , Go straight back to 0, It seems , All three variables can be used to construct an array to bypass

Insert picture description here

structure payload

http://114.67.246.176:17268/?v1[]=1&v2[]=2&v3[]=3

OK, Out flag 了
Insert picture description here

Insert picture description here

原网站

版权声明
本文为[hangshao0.0]所创，转载请带上原文链接，感谢
https://yzsam.com/2022/183/202207020624337384.html

当前位置：网站首页>Bugkuctf-web24 (problem solving ideas and steps)

Bugkuctf-web24 (problem solving ideas and steps)

Look at the question

Grab the bag

Analysis of the code

structure payload

边栏推荐

猜你喜欢

随机推荐