Ctf
BlazeCTF 2016 Postboard Writeup
Exploit cPickle.loads which deserialize object from untrusted user input session['auth'] inside verifySession() function.
24-04-2016
4 MIN READ
Ctf
Exploit cPickle.loads which deserialize object from untrusted user input session['auth'] inside verifySession() function.
4 MIN READ
Ctf
Bypass Python urlparse function
2 MIN READ
Vulnerabilities
Every registered user can change every account because `Request
2 MIN READ
Ctf
Exploit Mako Templates for Python.
1 MIN READ
Vulnerabilities
$_GET['order'] is not escaped.
1 MIN READ
Ctf
Use XSS Auditor for XSS bypass
3 MIN READ
Ctf
SQL Injection because of shift-jis encoding.
2 MIN READ
Ctf
In PHP when hash looks like 0e[0-9]* and are compared using == it is treated as exponent
2 MIN READ