连接地址:http://lab1.xseclab.com/xss2_0d557e6d2a4ac08b749b61473a075be1/index.php
题目:
因为要2秒内提交 ,只能用脚本获取flag
import requests
url = "http://lab1.xseclab.com/xss2_0d557e6d2a4ac08b749b61473a075be1/index.php"
s=requests.session()
r=s.get(url)
res=r.content
a=res.find('<br/>')
b=res.find('=',a)
num=res[a+9:b]
p=s.post(url,data={'v':eval(num)})
print(p.content)