0. Open the web page and view the topic prompt
Description: It looks like an administrator is needed
404 not found, give it to Yujian
1. Use Yujian to scan the catalog
Found the robots.txt file, go in and take a look
Found a new php file, try to open it
It is said that we are not an administrator, and the variable x is received by GET in the source code, so let the variable x==admin
2. Construct the payload: http://114.67.246.176:13153/resusl.php?x=admin
3. Get the flag: flag{5ac1a96f50ac93265f06d992774fc560}