⚡
Blog
  • 💲cat ~/README.md
  • CTF
    • GCTF 2023
      • Cryptography
        • Layers of Bases
      • Miscellaneous
        • Master Hidden Within The Slides
      • Pwn
        • Level 1
        • Level 2
        • Level 3
        • Level 4
      • Web
        • Include
    • KnightCTF 2023
      • Networking
      • Miscellaneous
      • Cryptography
        • Factorie
        • Xorathrust
    • Siber Siaga 2023 CTF
  • CAMP
    • Global Cybersecurity Camp 2023
    • Malaysia Cybersecurity Camp 2022
  • CONFERENCE
    • Brewing...
  • WRITE-UP
    • TryHackMe - Attacktive Directory Write-up
Powered by GitBook
On this page
  • Challenge details
  • Solution
  • Flag

Was this helpful?

  1. CTF
  2. GCTF 2023
  3. Web

Include

PreviousWebNextKnightCTF 2023

Last updated 1 year ago

Was this helpful?

Challenge details

Solution

Clicking on the link redirected us to a new tab. The content was pretty straight forward. Since the author mentioned that it's not a phishing link, I decided to click on it :)

New content was shown. The file parameter in the URL address bar immediately caught my attention. It's a classic LFI vulnerability for sure. The location of the flag was mentioned in the description. Let's include that as our parameter value.

And we got the flag.

Flag

GCTF2023{LFI_1nclud3_1s_d4ng3rous}

description