Directory traversal

25 Punkte

Photo gallery v 0.01

Autor

g0uZ, 31 Juli 2011

Stufe

Validierung

16960 Herausforderer 12%

Bewertung

709 votes

Bitte loggen Sie sich ein um auf diese Seite zugreifen zu können

1 Musterlösung

Musterlösungen anschauen Eine Musterlösung vorschlagen

Ergebnisse der Übungen

Nickname	Übungen	Sprache	date
LysTheSy	Directory traversal		17. Oktober 2019 zu 15:48
lego666	Directory traversal		17. Oktober 2019 zu 13:25
whitehat42	Directory traversal		17. Oktober 2019 zu 12:49
pwnerbee	Directory traversal		17. Oktober 2019 zu 12:39
khirreddine	Directory traversal		17. Oktober 2019 zu 12:27
Fhallen	Directory traversal		17. Oktober 2019 zu 11:43
Ziraki	Directory traversal		17. Oktober 2019 zu 11:16
uju	Directory traversal		17. Oktober 2019 zu 11:15
jehielamia	Directory traversal		17. Oktober 2019 zu 11:07
cookiemobile	Directory traversal		17. Oktober 2019 zu 10:54

61 Übungen

Ergebnis	Name der Übung	Validierung	Anzahl der Punkte	Schwierigkeitsgrad	Autor	Bewertung	Musterlösung
	HTML - Source code	48% 73220	5		g0uZ		2
	HTTP - Open redirect	17% 24867	10		Swissky		1
	HTTP - User-agent	24% 36564	10		g0uZ		3
	Weak password	35% 52363	10		g0uZ		1
	PHP - Command injection	16% 24016	10		sambecks		4
	Backup file	18% 26236	15		g0uZ		1
	HTTP - Directory indexing	24% 36139	15		g0uZ		1
	HTTP - Headers	16% 24084	15		Arod		1
	HTTP - POST	11% 15363	15		Th1b4ud		1
	HTTP - Improper redirect	12% 18419	15		Arod		1
	HTTP - Verb tampering	15% 21915	15		g0uZ		1
	Install files	15% 22020	15		g0uZ		1
	CRLF	10% 14135	20		g0uZ		1
	File upload - Double extensions	11% 16254	20		g0uZ		1
	File upload - MIME type	9% 12629	20		g0uZ		2
	HTTP - Cookies	14% 20266	20		g0uZ		1
	Insecure Code Management	1% 741	20		Swissky		0
	JSON Web Token (JWT) - Introduction	1% 1426	20		Knowledge		0
	Directory traversal	12% 16960	25		g0uZ		1
	File upload - Null byte	8% 11790	25		g0uZ		1
	JSON Web Token (JWT) - Weak secret	1% 916	25		Jrmbt		0
	PHP - assert()	5% 6692	25		Birdy42		1
	PHP - Filters	7% 10316	25		g0uZ		1
	PHP - register globals	6% 8639	25		g0uZ		1
	File upload - ZIP	3% 3788	30		ghozt		0
	Command injection - Filter bypass	2% 2820	30		sambecks		0
	Java - Server-side Template Injection	4% 4786	30		righettod		0
	JSON Web Token (JWT) - Public key	1% 509	30		Jrmbt		0
	Local File Inclusion	9% 13204	30		g0uZ		0
	Local File Inclusion - Double encoding	5% 6243	30		zM		1
	PHP - Loose Comparison	2% 2936	30		ghozt		0
	PHP - preg_replace()	4% 4781	30		sambecks		0
	PHP - type juggling	3% 4566	30		vic		0
	Remote File Inclusion	4% 5661	30		g0uZ		2
	SQL injection - Authentication	13% 19027	30		g0uZ		2
	SQL injection - Authentication - GBK	3% 3939	30		dvor4x		0
	SQL injection - String	6% 8741	30		g0uZ		2
	XSLT - Code execution	1% 1529	30		ghozt		1
	LDAP injection - Authentication	4% 5217	35		g0uZ		1
	NoSQL injection - Authentication	3% 3884	35		mastho		0
	PHP - Path Truncation	2% 2904	35		Geluchat		0
	PHP - Serialization	3% 3613	35		Arod		0
	SQL injection - Numeric	5% 6701	35		g0uZ		0
	SQL Injection - Routed	2% 1895	35		soka		0
	SQL Truncation	3% 3144	35		Geluchat		0
	XML External Entity	2% 2354	35		sambecks		0
	XPath injection - Authentication	3% 3902	35		g0uZ		0
	Java - Spring Boot	1% 997	40		dvor4x		0
	Local File Inclusion - Wrappers	1% 1461	40		sambecks		0
	PHP - Eval	1% 1109	40		chmod		0
	SQL injection - Error	3% 3218	40		sambecks		0
	SQL injection - Insert	1% 1375	40		sambecks		0
	SQL injection - File reading	2% 2499	40		Arod		0
	XPath injection - String	2% 2079	40		g0uZ		0
	NoSQL injection - Blind	1% 1340	45		ghozt		0
	SQL injection - Time based	2% 2338	45		ycam		0
	Server Side Request Forgery	1% 464	50		sambecks		0
	SQL injection - Blind	3% 3690	50		g0uZ		0
	LDAP injection - Blind	1% 1516	55		g0uZ		0
	XPath injection - Blind	1% 1008	75		g0uZ		0
	SQL injection - Filter bypass	1% 993	80		sambecks		0