Hard
Live
I stumbled upon this website: http://web.ctflearn.com/web8/ and I think they have the flag in their somewhere. UNION might be a helpful command
First 10 Solvers
| Rank | Username |
|---|---|
| 1 | niclev20 |
| 2 | aikakatt |
| 3 | dadi |
| 4 | joshualaurencio |
| 5 | javier |
| Rank | Username |
|---|---|
| 6 | abdilahrf |
| 7 | pir00t |
| 8 | hanto |
| 9 | koshi |
| 10 | batutahibnu17 |
Theriphunters
[REDACTED] This comment is only shown to users who have solved this challenge.
gabrielcampos
[REDACTED] This comment is only shown to users who have solved this challenge.
0xstain
this cool
VineetVenugopal
A really nice challenge. I learnt a lot from this one. Thanks.
R4H47
cool! Easy one
Gj1197
[REDACTED] This comment is only shown to users who have solved this challenge.
TackleJack
[REDACTED] This comment is only shown to users who have solved this challenge.
loopwithinaloop
Tough one !!
moroq
[REDACTED] This comment is only shown to users who have solved this challenge.
Fl4Gg3R
[REDACTED] This comment is only shown to users who have solved this challenge.
CapitalZer0
[REDACTED] This comment is only shown to users who have solved this challenge.
Ishiven
Pretty nice one, but shows why you should sanitize your text fields...
sharkmagic07
got lot of things to learn.
kamil
I like that <3
Negatyw01
WOW! I've learned a lot! For those of you who struggle have a look on this website. A lot of useful infromation!
http://www.securityidiots.com/Web-Pentest/SQL-Injection
Skofos
nice keep learning and stay foolish lelz
Skofos
nice keep learning and stay foolish lelz
SquidBoy
that site helped me....thanks :)
kvlike
I've had some problems with it but I finally sloved this! Thanks!
ukbielecki
No so hard
thevirus69
uni0n_1s_4_gr34t_c0mm4nd
thedoctor00
[REDACTED] This comment is only shown to users who have solved this challenge.
Skofos
lmao, suk ur dck lel
TedZak
delete this comment please
parasarora06
interesting
gh0sst
Good hard challenge!
Skofos
naiz one love it
curiousnikko
It was really great, I was able to learn how to use Sqlmap tool. I don't know if it might be a cheating or what but sqlmap tool just lead me to the payload code but I revise it until I get the flag...
SquidBoy
the only cheating would be to look for someone else having done the answer. I assume beyond that, there are no rules or limits on tools....
armaannarangs
It wasn't that challenging. Took 20 minutes tho
dark_sarcasm
Nice but not really hard :(
thura98
Great challenge!
NewtScamander
love this challenge
warsonline
Loved the challenge, however I couldn't solve it simply with SQLmap like other commenter mentioned because it kept receiving 403 responses with each iteration. Perhaps there's now a defence mechanism against this tool or was it just poor configuration from my side?
eyepatch
[REDACTED] This comment is only shown to users who have solved this challenge.