当前位置:网站首页>Buuctf, web:[geek challenge 2019] buyflag
Buuctf, web:[geek challenge 2019] buyflag
2022-07-03 22:08:00 【Part 02】
attention
If you want to buy the FLAG:
You must be a student from CUIT!!!
You must be answer the correct password!!!Only Cuit's students can buy the FLAG
Three tips , buy , use money=100000000, It's a CUIT Of the students , Correct password
Source code
~~~post money and password~~~
if (isset($_POST['password']))
{
$password = $_POST['password'];
if (is_numeric($password))
{
echo "password can't be number</br>";
}
elseif ($password == 404)
{
echo "Password Right!</br>";
}
}Weak comparison
password=404a
This is the code
Grab the bag post Still no response , The second tip is useless , Students can only correspond to cookie Of user
Change it to 1
Three conditions meet two ,money The parameter is too long
Use scientific counting method to get flag, Operation not available
flag{baf3e10e-319b-4315-a300-09be81b69856}
边栏推荐
- The White House held an open source security summit, attended by many technology giants
- Let me ask you a question. Have you ever used the asynchronous io of Flink SQL to associate dimension tables in MySQL? I set various settings according to the official website
- Dahua series books
- 2022 free examination questions for safety management personnel of hazardous chemical business units and reexamination examination for safety management personnel of hazardous chemical business units
- Investment analysis and prospect trend prediction report of China's boron nitride industry Ⓨ 2022 ~ 2028
- Leetcode problem solving - 230 The k-th smallest element in the binary search tree
- Supply and demand situation and market scale calculation report of China's portable energy storage power PES industry Ⓛ 2022 ~ 2028
- Station B, dark horse programmer, employee management system, access conflict related (there is an unhandled exception at 0x00007ff633a4c54d (in employee management system.Exe): 0xc0000005: read locat
- How to obtain opensea data through opensea JS
- 股票炒股开户注册安全靠谱吗?有没有风险的?
猜你喜欢
Why use pycharm to run the use case successfully but cannot exit?
How PHP gets all method names of objects
Farmersworld farmers world, no faith, how to talk about success?
IPhone development swift foundation 09 assets
gslb(global server load balance)技術的一點理解
The latest analysis of crane driver (limited to bridge crane) in 2022 and the test questions and analysis of crane driver (limited to bridge crane)
Pooling idea: string constant pool, thread pool, database connection pool
Teach you how to install aidlux (1 installation)
On my first day at work, this API timeout optimization put me down!
Some 5000+ likes, the development notes of a director of cosmic factory, leaked
随机推荐
2022 safety officer-a certificate registration examination and summary of safety officer-a certificate examination
Investment planning analysis and prospect prediction report of China's satellite application industry during the 14th five year plan Ⓑ 2022 ~ 2028
The latest analysis of R1 quick opening pressure vessel operation in 2022 and the examination question bank of R1 quick opening pressure vessel operation
This time, thoroughly understand bidirectional data binding 01
Rest参考
2022 safety officer-b certificate examination summary and safety officer-b certificate simulation test questions
WiFi 2.4g/5g/6g channel distribution
DR882-Qualcomm-Atheros-QCA9882-2T2R-MIMO-802.11ac-Mini-PCIe-Wi-Fi-Module-5G-high-power
国泰君安证券开户是安全可靠的么?怎么开国泰君安证券账户
Dahua series books
Compréhension de la technologie gslb (Global Server load balance)
十大券商开户注册安全靠谱吗?有没有风险的?
China's Call Center Industry 14th five year plan direction and operation analysis report Ⓔ 2022 ~ 2028
Data consistency between redis and database
[actual combat record] record the whole process of the server being attacked (redis vulnerability)
How PHP drives mongodb
regular expression
Decompile and modify the non source exe or DLL with dnspy
Mindmanager2022 serial number key decompression installer tutorial
The post-90s resigned and started a business, saying they would kill cloud database