Tags: injection sql
Rating:
Main Page
https://web-cowboy-world-54f063db.chal-2021.duc.tf/robots.txt
The sad.eml mentions a username:
Intercepted the login request and with some basic SQL injection in the password field, we got the flag:
' or 1=1-- -
DUCTF{haww_yeeee_downunderctf?}