| |
|
CoNfi
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 11
|
| |
|
|
|
 |
|
|
hmm
really I have no idea what to do
I already got "you're on the right track"
but I have no clue
hint me please
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
try to think- if you can upload a *** file- how can you exploit that to see the others files on the directory?
(remember- the system is *Nix!)
|
|
|
| |
|
|
CoNfi
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 11
|
| |
|
|
|
|
|
|
bla
I can upload a *** s**ll
but only in txt cause I can't upload **
bla...let me think
cp I hate you challenges!
I have lost many hairs because of them
Edit by : CoNfi At 14/10/2005, 17:11:32
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
think:
1#how can you execute command on the server.
2#how can you find the other files on the directory.
hint : it's *nix server.
Edit by : cp77fk4r At 15/10/2005, 20:29:40
|
|
|
| |
|
|
Minig3N
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 3
|
| |
|
|
|
|
|
|
how can I execute commands from this page? too hard...
Edit by : Minig3N At 19/10/2005, 14:00:10
|
|
|
| |
|
|
CoNfi
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 11
|
| |
|
|
|
|
|
|
I passed this level
cp
you need to fix something there and you know what
there is a fuck.
if you have fixed the level before I was already done it
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
Nice,
and.. it's not a bug, and I don't fixed anything, I just updated some files on this challeng, not more.
|
|
|
| |
|
|
CoNfi
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 11
|
| |
|
|
|
|
|
|
I'll pm the problem (if it's a problem :\)
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
K32.nix
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 78
|
| |
|
|
|
|
|
|
Warning: file_get_contents();exec(1.txt) [function.file-get-contents]: failed to open stream: No such file or directory in D:\webppliance\conf\domains\trythis0necom\Inetpub\wwwroot\levels\web-challanges\Textv\View.php on line 11
i know that i must run this file i inserted the command for listing files, and the first line of a shell file. But how do i run it?? =/
thanks
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
it's cuz you try to open the "1.txt.txt" file - in file name you need to open "1".
|
|
|
| |
|
|
K32.nix
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 78
|
| |
|
|
|
|
|
|
but the problem is how to avoid the .txt extension. i tried to change the disabled box, but id didn't work. =/
|
|
|
| |
|
|
K32.nix
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 78
|
| |
|
|
|
|
|
|
what should i learn to pass this protection?
hint?
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
K32.nix
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 78
|
| |
|
|
|
|
|
|
What the hell is this? hehehehe i'm really lost in this one. =P
|
|
|
| |
|
|
cp77fk4r
Global Admin
Registerd on: 01/01/1970, 04:00:00
Location::
Posts: 621
|
| |
|
|
|
|
|
|
Google it, LFI and Form Manipulation..
|
|
|
| |
|
