CTF web每日一题
标签:iss lazy ctf tar report __file__ 算法 bsp erro
(0);();(‘./flag.php‘(!([‘nums‘])){ [‘nums‘] = 0[‘time‘] = (); [‘whoami‘] = ‘ea‘([‘time‘]+120<();} = [‘value‘ = (‘a‘, ‘z‘); = [(0,25)].[(0,25)];([‘whoami‘]==([0].[1]) && ((),5,4)==0){[‘nums‘]++[‘whoami‘] = ([‘nums‘]>=10){ (?>
整个代码审计完后给value不断的传入参数即可
第十一次得到flag
flag{f3e2b688-8e5c-460c-87c6-535491409c22}
标签:iss lazy ctf tar report __file__ 算法 bsp erro
原文地址:https://www.cnblogs.com/akger/p/14348768.html