This beautiful website for testing zip files contains a replica of a vulnerability found in a well known bug bounty site.
Log in with rob:smashthestate then exploit the vulnerability to gain access to the ‘admin’ account and the flag.
Automated tools and bruteforcing will not help you solve this challenge.
Action | Rating | Author team |
---|---|---|
Read writeup |
not rated
|
LosFuzzys |
Read writeup |
not rated
|
0x90r00t |