Tags: web
Rating:
# Hack.lu CTF 2015 - Module Loader (Web, 100pts)
## Problem
100 Points by lucebac (Web)
Since his students never know what date it is and how much time they have until the next homework's deadline, Mr P. H. Porter wrote a little webapp for that.
## Solution
We get simple web application with two available options:
After quick research there's an obvious LFI (Local File Include)
We can include any file using url:
```
school.fluxfingers.net:1522/?module=../modules/timer
```
And here's source code of _timer_ module - it's just printed out, PHP code is not executed here:
```php
<div id="clock"></div>
<script>
var clock = document.getElementById("clock");
var now = new Date();
clock.innerHTML = countdown(new Date(, , )).toString();
setInterval(function(){clock.innerHTML = countdown(new Date(, , )).toString();}, 1000);
</script>
```
Also, we can display _.htaccess_, which contains some directory with quite "obvious" name :P
```
```
Let's take a look there and here we go:
Last thing is to use LFI and see, what's in flag.php file:
school.fluxfingers.net:1522/?module=../3cdcf3c63dc02f8e5c230943d9f1f4d75a4d88ae/flag.php
