Bugku Web questions

Others 2019-10-09 14:33:59 views: null
  1. Web2 heard that smart people can find the answer

    Into the sky to see the funny title, and then forced to look ignorant

    Press F12 to view the source code, annotated Flag find below Body, 20 minutes hand

     

  2. Calculator

    Enter the title you can see an input box, try to enter the picture answers, but found only able to enter one. F12 to view source code, find the input input box.

    Found that using the maxlength attribute limits the number of bits we enter, we manually changed to 3.

Returns the interface to re-enter the answer, get the Flag

 

  1. Web basis $ _GET

    4 lines into the topic to see the php code

    Get request is added directly after the url? Parameters and values. We added later according to the code? What = flag to get the Flag

    http://123.206.87.240:8002/get/?what=flag

     

  2. Web basic $ _POST

    On the same topic, but replaced the POST request, can not be added directly in the Url, we need to get caught or add a browser plug-in parameters and values.

    Use HackBar Firefox plugin, get the Flag

  3. contradiction

    Tip code can not be numeric, but the value must be equal to 1 to get the Flag

     

    is_numeric () // determines whether the number is added to the front! On the contrary, it is determined whether or not the digital

    But if we value is 1 plus any uppercase and lowercase letters can be returned Flag, if ($ num == 1) seems to have no effect

    Finally found, php a weakly typed language, for example, the following two examples, respectively, define the variable a = 1asd

    The variable int is converted to a numerical result returned is a 1, only the front of a string of numbers out of a converter, the latter being omitted asd

     

 

 

 

The variables a comparison for equality with the value 1, returns a value of 1, a Boolean type 0 = false, any other figures are ture, i.e., a final value of 1

 

 

 

There are other ways the Internet: Source: https: //blog.csdn.net/xuchen16/article/details/82735533

num = 1% 00 (% 00 of truncated symbol)

  num = 1x (X may be any letter or a character string) PHP string begins with a determination can be judged equivalent

    num = 1e0.1 in scientific notation represented by the number 1, neither purely digital, and its value is equal to 1

Guess you like

Origin www.cnblogs.com/hmomeng/p/11640897.html
Recommended
NetBSD bans submission of code generated by AI
Ranking
Talk dubbo of LRUCache
Chapter 1 Learning Summary
Introduction to Virtualization
pytorch 调用lstm
Six modules
[8086] The natural number of 1 to 36 into a 6x6 two-dimensional array of line-sequentially, and then print out the lower left half of the triangular array
mybatis mapper mapping file $ # {} {} understanding and
C language input and output buffer
c language floating-point input and output
andorid P version compatible, refer to Huawei
Daily
More
2024-05-18(31)
2024-05-17(6)
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)

Code World

© 2018 codetd.com