challenge-28.md

Challenge

<?php 
error_reporting(0);
session_start();
require ('./flag.php');
if (!isset($_SESSION['nums'])) {
    $_SESSION['nums'] = 0;
    $_SESSION['time'] = time();
    $_SESSION['whoami'] = 'ea';
}
if ($_SESSION['time'] + 120 < time()) {
    session_destroy();
}
$value = $_REQUEST['value'];
$str_rand = range('a', 'z');
$str_rands = $str_rand[mt_rand(0, 25) ] . $str_rand[mt_rand(0, 25) ];
if ($_SESSION['whoami'] == ($value[0] . $value[1]) && substr(md5($value) , 5, 4) == 0) {
    $_SESSION['nums']++;
    $_SESSION['whoami'] = $str_rands;
    echo $str_rands;
}
if ($_SESSION['nums'] >= 10) {
    echo $flag;
}
show_source(__FILE__);
?>

Solution

Refference

百度杯CTF二月Web专场

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

challenge-28.md

challenge-28.md

Challenge

Solution

Refference

Files

challenge-28.md

Latest commit

History

challenge-28.md

File metadata and controls

Challenge

Solution

Refference