Highlights
- Pro
Block or Report
Block or report loknop
Report abuse
Contact GitHub support about this user’s behavior. Learn more about reporting abuse.
Report abusePinned
-
Solving "includer's revenge" from hx...
Solving "includer's revenge" from hxp ctf 2021 without controlling any files 1# Solving "includer's revenge" from hxp ctf 2021 without controlling any files
2# The challenge
3The challenge was to achieve RCE with this file:
4```php
5<?php ($_GET['action'] ?? 'read' ) === 'read' ? readfile($_GET['file'] ?? 'index.php') : include_once($_GET['file'] ?? 'index.php');
Something went wrong, please refresh the page to try again.
If the problem persists, check the GitHub status page or contact support.
If the problem persists, check the GitHub status page or contact support.