Easy Live

Basic Injection

30 points

9153 Solves

Web

Easy

intelagent moderator badge ctflearn++ badge

Community Rating: 4.49 / 5

See if you can leak the whole database. The flag is in there somwhere… https://web.ctflearn.com/web4/

First 10 Solvers

Rank Username
1 natjef20
2 javier
3 drmad
4 limyunkai19
5 sebwit20
Rank Username
6 yukimo
7 teamaardvark
8 witchcraft
9 aiyam
10 blackndoor

      • JuanMusic1

        When i try the payload, it was wrong, but in a few moment i have tried the same payload an it works

  • Theriphunters

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • SpringBok

    Fade.js status is 404. In the console, I keep getting "GET https://web.ctflearn.com/web4/fade.js net::ERR_ABORTED 404".

  • beboms123

    First intro to SQL Injections for me! Awesome!

    • intelagent moderator badge ctflearn++ badge

      Glad you enjoyed, hope you learned something!

      • DonkeyPrime

        I' m an absolute noobie. what are the pre requisites? where should i start

  • Zahrah

    im noob i have no clue what i am doing when i input the url it wont work HELP

  • 0xLuois

    Good! i'm start learn CTF today. Very good program for me.

  • peri4n

    Could someone clarify if the 404 response of the fade.js is expected (part of the problem) or if there are technical problems with the server?

    • peri4n

      Confirmed it myself: fade.js is irrelevant for the problem.

  • Tinggaard

    I would assume it's an SQL-injection, but at the same time, I wouldn't consider those easy. Please help

  • mehedi1194

    flag is not there in well format like flag{here is the flag} its hard for those who is totally new in ctflearn but enjoyed

  • k4at3034

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

  • roylt84

    solved, easy once i realized I was looking at the wrong value for the key.

  • rockylance55

    Protected

    [REDACTED] This comment is only shown to users who have solved this challenge.

    • Dafaq

      Hi read w3schools/sql/sql. This site will give you info on how to do a basic SQL injection. Hope this helps.

  • HG86revient

    a pretty good challenge, I had an idea about SQLi but i needed to view the w3school's page

  • HG86revient

    a pretty good challenge, I had an idea about SQLi but i needed to view the w3school's page