Irish-Name-Repo2

Point: 350

Question

There is a website running at https://2019shell1.picoctf.com/problem/40968/ (link). Someone has bypassed the login before, and now it's being strengthened. Try to see if you can still login! or http://2019shell1.picoctf.com:40968

The password is being filtered.

The first time we've try with this

Username:       ' OR 'A' = 'A' --

=> SQLi detected.

Try Username with admin' --, then we've got the flag

picoCTF{m0R3_SQL_plz_daf42601}

Last updated 4 years ago