웹찢남

include "./config.php";   login_chk();  $db = dbconnect();  if(preg_match('/prob|_|\.|\(\)/i', $_GET[id])) exit("No Hack ~_~");   if(preg_match('/prob|_|\.|\(\)/i', $_GET[pw])) exit("No Hack ~_~");  if(preg_match('/\'/',$_GET[id])) exit("HeHe");  if(preg_match('/\'/',$_GET[pw])) exit("HeHe");  $query = "select id from prob_succubus where id='{$_GET[id]}' and pw='{$_GET[pw]}'";   echo "query : {$..

include "./config.php";   login_chk();   $db = dbconnect();   if(preg_match('/\'/i', $_GET[pw])) exit("No Hack ~_~");   $query = "select id from prob_assassin where pw like '{$_GET[pw]}'";   echo "query : {$query}";   $result = @mysqli_fetch_array(mysqli_query($db,$query));   if($result['id']) echo "Hello {$result[id]}";   if($result['id'] == 'admin') solve("assassin");   highlight_file(__FILE__..

공백을 만들면 끝나는 문제다 %0b를 사용해 clear!!

include "./config.php";   login_chk();   $db = dbconnect();   if(preg_match('/prob|_|\.|\(\)/i', $_GET[no])) exit("No Hack ~_~");   if(preg_match('/\'/i', $_GET[pw])) exit("HeHe");   if(preg_match('/\'|substr|ascii|=|or|and| |like|0x/i', $_GET[no])) exit("HeHe");   $query = "select id from prob_bugbear where id='guest' and pw='{$_GET[pw]}' and no={$_GET[no]}";   echo "query : {$query}";   $resul..

include "./config.php";   login_chk();   $db = dbconnect();   if(preg_match('/prob|_|\.|\(\)/i', $_GET[no])) exit("No Hack ~_~");   if(preg_match('/\'/i', $_GET[pw])) exit("HeHe");   if(preg_match('/\'|substr|ascii|=/i', $_GET[no])) exit("HeHe");   $query = "select id from prob_darkknight where id='guest' and pw='{$_GET[pw]}' and no={$_GET[no]}";   echo "query : {$query}";   $result = @mysqli_fe..

include "./config.php";   login_chk();   $db = dbconnect();   if(preg_match('/prob|_|\.|\(\)/i', $_GET[pw])) exit("No Hack ~_~");   if(preg_match('/or|and|substr\(|=/i', $_GET[pw])) exit("HeHe");   $query = "select id from prob_golem where id='guest' and pw='{$_GET[pw]}'";   echo "query : {$query}";   $result = @mysqli_fetch_array(mysqli_query($db,$query));   if($result['id']) echo "Hello {$resu..