Writeup 实验吧/WEB/Guess Next Session/1788 【PHP代码审计】

http://www.shiyanbar.com/ctf/1788
http://ctf5.shiyanbar.com/web/Session.php
源码:

Wrong guess.

'; } mt_srand((microtime() ^ rand(1, 10000)) % rand(1, 10000) + rand(1, 10000)); ?>

burp抓包,提交如下,另两者都为空,可以绕过判断
password=
PHPSESSID=

你可能感兴趣的:(Writeup 实验吧/WEB/Guess Next Session/1788 【PHP代码审计】)