- category: Web
- points: 190
There is an old page of UUTCTF at:
Simple, find the flag.
The copy of CTFTime website contains a
/login.php page that shows a member login form.
Just simply using the good-ol’ SQL login bypass
' OR 1=1 -- - we got a message:
The message says that we by successfully bypassed the login check but the cookie is wrong. Let’s check the request using Burp.
We can see that the web server has set a cookie:
AdminToken. Just using that token in the POST request for the login form we got the flag.