先吐槽一下这次比赛时常两天好累的说,太菜了, 知识答题题目分值比例好高。
web题目不多。题目不多,好难做。绕的头皮发麻,另外math函数构造的时候,很烧脑。各位师傅各种骚姿势。
题目名称:JustSoso
变量引用绕过和parse那个函数的漏洞
<?php
class Handle{
private $handle;
public function __wakeup(){
foreach(get_object_vars($this) as $k => $v) {
$this->$k = null;
}
echo "Waking up\n";
}
public function __construct($handle) {
$this->handle = $handle;
}
public function __destruct(){
$this->handle->getFlag();
}
class Flag{
public $file;
public $token;
public $token_flag;
function __construct($file){
$this->file = $file;
$this->token_flag = $this->token = md5(rand(1,10000));
}
public function getFlag(){
$this->token_flag = md5(rand(1,10000));
if($this->token === $this->token_flag)
{