Post

HackThisSite - Basic mission 9

Posted Updated
By Nasrallah Baadi 1 min read

Description

Hello l33ts, I hope you are doing well. We will be doing Basic mission 9 from HackThisSite.

banner

Solution

Let’s navigate the challenge page.

In this level, the password is saved in /9 directory, the script that takes user input and save it in a file is not here, but we can go back to level 8 and use to try to get to the password file.

We can use the same payload as last level, but we need to do a slight modification to it. <!--#exec cmd="ls ../../9" -->. Since the password is in /9 directory, we need to go two directories up and list the content of /9.

Great! We got the password file name, navigate to it to get the password.

Thank you for taking the time to read my writeup, I hope you have learned something with this, if you have any questions or comments, please feel free to reach out to me. See you in the next hack :) .

HackThisSite, Basic missions
hackthissite hts easy web basic html
This post is licensed under CC BY 4.0 by the author.