CrossCTF_2018: Baby Web

Category: Web Points: 159 Description:

It is all in the challenge. http://ctf.pwn.sg:8180 *Creator - quanyang (@quanyang)

Write-up

This challenge was also relatively simple, utilizing either \t or \n to act as a field seperator for SQL. This would result in the explode(" ") function not sanitizing the query. With this, we can build our search query to union select the flag from the users column.

%'
UNION
SELECT
flag
FROM
users;#--

Therefore, the flag is CrossCTF{SiMpLe_sQl_iNjEcTiOn_aS_WaRmUp}.

results matching ""

    No results matching ""