webeasy

Заметки (Notes)

hackerlab

Task: Cloud notes storage with source code provided. Solution: Path Traversal via base64-encoded cookie manipulation - username cookie decoded without path validation allows escaping notes directory to read flag file.

$ ls tags/ techniques/
lfipath_traversalfile_readphpbase64directory_traversalcookie_manipulation
Path Traversal via cookie manipulationBase64 encoding bypassSource code analysis
🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

Create a free account with GitHub, then upgrade to Pro.

$ssh [email protected]