요청 처리 중입니다...

LOS - 3[goblin]

2024-06-25 10:46:56

/config.php"; login_chk(); dbconnect(); if(preg_match('/prob|_|\.|/i', $_GET[no])) exit("No Hack ~_~"); if(preg_match('/\'|\"|\`/i', $_GET[no])) exit("No Quotes ~_~"); $query = "select id from prob_goblin where id='guest' and no={$_GET[no]}"; echo "query : {$query}"; $result = @mysql_fetch_array(mysql_query($query)); if($result['id']) echo "

Hello {$result[id]}

"; if($result['id'] == 'admin') solve("goblin"); highlight_file(__FILE__); ?> go...

# goblin # Injection # LOS # SQL

원문 링크 : LOS - 3[goblin]

등록된 다른 글

webhacking.kr 42 [200]

Puzzle #4 : The Curious Mr. X

XSS - Reflected(AJAX/JSON)

XSS-game/Level 3: That sinking feeling...

A7 - Missing Function Level Access Control/ Restrict Device Access(디바이스 접근 제한)

[AWS Cloud] - AWS Practitioner_책임 모델 요약 및 문제