๋ณธ๋ฌธ ๋ฐ”๋กœ๊ฐ€๊ธฐ
๋ฐ˜์‘ํ˜•

blind-command1

[Dreamhack] Level2: blind-command ๐Ÿ›Ž๏ธAccess Read the flag file XD ๐Ÿ‘พExploit Algorithm & Payload ๋”๋ณด๊ธฐ #!/usr/bin/env python3 from flask import Flask, request import os app = Flask(__name__) @app.route('/' , methods=['GET']) def index(): cmd = request.args.get('cmd', '') if not cmd: return "?cmd=[cmd]" if request.method == 'GET': '' else: os.system(cmd) return cmd app.run(host='0.0.0.0', port=8000) #1 : '/' ํŽ˜์ด์ง€์—์„œ ?cmd=[cmd]๋ผ๋Š” ํ™”๋ฉด์ด ์ถœ๋ ฅ๋จ.. 2024. 1. 5.
๋ฐ˜์‘ํ˜•

ํ‹ฐ์Šคํ† ๋ฆฌํˆด๋ฐ”