Web 200pts
Share Point
Look! I wrote a good service for sharing your files with your friends, enjoy)
share-point.quals.2017.volgactf.ru
The link leads you to a website where have to login to continue. I logged in
with a custom username and password. Now you can upload and share you images.
There was a file upload vulnerability. So using that vulnerability, you can upload
any image and then change it to a PHP file. For that, I first uploaded my .htaccess file. Now I uploaded a PHP shell to print output the flag. Then I went to Files and I could see both of my files.
I opened file.php.jpg to read the flag. The flag was VolgaCTF{AnoTHer_apProOAch_to_file_UplOAd_PhP}
Share Point
Look! I wrote a good service for sharing your files with your friends, enjoy)
share-point.quals.2017.volgactf.ru
The link leads you to a website where have to login to continue. I logged in
with a custom username and password. Now you can upload and share you images.
There was a file upload vulnerability. So using that vulnerability, you can upload
any image and then change it to a PHP file. For that, I first uploaded my .htaccess file. Now I uploaded a PHP shell to print output the flag. Then I went to Files and I could see both of my files.
No comments:
Post a Comment