Certified Secure Challenges - Over challenges en dergelijke

IDB challenge part one

28-09-2014, 13:40 door Anoniem, 2 reacties
hey guys, i'm working on the part one of IDB challenge now. i know how SQL injection and Path traversal work. But i guess i just don't know how to implement them.

So my idea about part 1 is that i should try typing some special character in front of "medewerkersbrief.txt" so that i can get through it. However, the result is either still forbidden or not found.

i saw some tutorial online saying i should use some instructions like get-file or file="" ,but neither of them worked for me.

Can someone give me more hints on this question?
Reacties (2)
28-09-2014, 20:56 door Lupo
[Verwijderd door moderator]
29-09-2014, 14:07 door Anoniem
Misschien moet je even navragen op de IRC channel.
Reageren

Deze posting is gelocked. Reageren is niet meer mogelijk.