This is the eighth basic mission that can be found at
Hack This Site
. Please use this as a reference or to help you when you get stuck. This is not intended for people to just breeze on by the missions. Besides, what's the fun in that???
Scenario - Sam remains confident that an obscured password file is still the best idea, but he screwed up with the calendar program. Sam has saved the un-encrypted password file in /var/www/hackthissite.org/html/missions/basic/8/. However, Sam's young daughter Stephanie has just learned to program in PHP. She's talented for her age, but she knows nothing about security. She recently learned about saving files, and she wrote a script to demonstrate her ability.
This is a bit harder because it requires knowledge of SSI (Server Side Includes) and SSI Injection. You need to go ahead and look that up to understand this next one. But where the girl failed at was not sanitizing user input. The command to use in the form she created is '<!--#exec cmd="ls ../"-->'. So you may copy everything between the single quotes there and submit it. Then just click the link to see the directory output. You will see the obfuscated file au12ha39vc.php and I am sure you know what to do after that.
Warning: Spoiler! [ Click to expand ] [ Click to hide ]
Part of the message is hidden for the guests. Please log in or register to see it.
This website uses cookies to manage authentication, navigation, and other functions. By using our website, you agree that we can place these types of cookies on your device.
You have declined cookies. This decision can be reversed.
You have allowed cookies to be placed on your computer. This decision can be reversed.
This website uses cookies to manage authentication, navigation, and other functions. By using our website, you agree that we can place these types of cookies on your device.