Easy
Live
Headline
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.
See if you can leak the whole database. The flag is in there somwhere… https://web.ctflearn.com/web4/
First 10 Solvers
| Rank | Username |
|---|---|
| 1 | natjef20 |
| 2 | javier |
| 3 | drmad |
| 4 | limyunkai19 |
| 5 | sebwit20 |
| Rank | Username |
|---|---|
| 6 | yukimo |
| 7 | teamaardvark |
| 8 | witchcraft |
| 9 | aiyam |
| 10 | blackndoor |
Hestshot
ghghg
C0MPL3X123
I did not understand how to find the payloads to inject the input feild.
loing
You can learn something at PortSwigger Academy to understand what is SQL Injection and there are a lot of Lab to exercise.
ibram
this is instruction; the page you should hack is https://web.ctflearn.com/web4/ not the above input (hhhhhhh) ; and when you finish and get database you will found a flag data put this data in the above input and click submit
Feiore
thank you
mazer
Thank you
bilalzahid
Great starting point in injection.
deepmindx
Thank you for this challenge. Just have a small video demo of SQL injection!
jarvic1207
[REDACTED] This comment is only shown to users who have solved this challenge.
kNaN
Noice