Local File Inclusion - Double encoding

30 Points  

Include can be dangerous.

Author

zM,  

Level  Difficulty

Validations

3780 Challengers 5%

Note  Notation

197 Votes
To reach this part of the site please login

Challenges associated with this section 54 Challenges

Results Challenge's Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution
pas_valide HTML 50% 42955 5 g0uZ 1
pas_valide HTTP - Open redirect 11% 9383 10 Swissky 8
pas_valide Command injection 10% 8547 10 sambecks 7
pas_valide Weak password 39% 33680 10 g0uZ 4
pas_valide User-agent 26% 22177 10 g0uZ 8
pas_valide Backup file 20% 16790 15 g0uZ 6
pas_valide HTTP directory indexing 27% 22675 15 g0uZ 3
pas_valide HTTP Headers 17% 14428 15 Arod 7
pas_valide HTTP verb tampering 16% 13580 15 g0uZ 8
pas_valide Install files 17% 14183 15 g0uZ 1
pas_valide Improper redirect 13% 10853 15 Arod 7
pas_valide CRLF 10% 8438 20 g0uZ 5
pas_valide File upload - double extensions 12% 10238 20 g0uZ 6
pas_valide File upload - MIME type 10% 7807 20 g0uZ 6
pas_valide HTTP cookies 15% 12612 20 g0uZ 5
pas_valide Directory traversal 13% 10630 25 g0uZ 1
pas_valide File upload - null byte 9% 7382 25 g0uZ 4
pas_valide PHP assert() 4% 3405 25 Birdy42 7
pas_valide PHP filters 8% 6702 25 g0uZ 3
pas_valide PHP register globals 7% 5535 25 g0uZ 1
pas_valide File upload - ZIP 2% 1365 30 ghozt 3
pas_valide Command injection - Filter bypass 2% 1078 30 sambecks 6
pas_valide Local File Inclusion 10% 8597 30 g0uZ 3
pas_valide Local File Inclusion - Double encoding 5% 3780 30 zM 3
pas_valide PHP - Loose Comparison 1% 861 30 ghozt 3
pas_valide PHP preg_replace() 4% 2957 30 sambecks 3
pas_valide PHP type juggling 4% 2848 30 vic511 3
pas_valide Remote File Inclusion 5% 3800 30 g0uZ 6
pas_valide Server-side Template Injection 4% 3007 30 righettod 3
pas_valide SQL injection - authentication 14% 12107 30 g0uZ 11
pas_valide SQL injection - authentication - GBK 3% 2052 30 dvor4x 3
pas_valide SQL injection - string 7% 5591 30 g0uZ 6
pas_valide XSLT - Code execution 1% 674 30 ghozt 4
pas_valide LDAP injection - authentication 5% 3504 35 g0uZ 8
pas_valide NoSQL injection - authentication 3% 2462 35 mastho 5
pas_valide Path Truncation 2% 1727 35 Geluchat 3
pas_valide PHP Serialization 3% 2505 35 Arod 2
pas_valide SQL injection - numeric 6% 4611 35 g0uZ 5
pas_valide SQL Injection - Routed 2% 953 35 soka 4
pas_valide SQL Truncation 3% 2012 35 Geluchat 2
pas_valide XML External Entity 2% 1301 35 sambecks 1
pas_valide XPath injection - authentication 4% 2666 35 g0uZ 3
pas_valide Java - Spring Boot 1% 516 40 dvor4x 2
pas_valide Local File Inclusion - Wrappers 1% 826 40 sambecks 2
pas_valide SQL injection - Error 3% 1925 40 sambecks 3
pas_valide SQL injection - Insert 2% 867 40 sambecks 2
pas_valide SQL injection - file reading 2% 1589 40 Arod 1
pas_valide XPath injection - string 2% 1455 40 g0uZ 2
pas_valide NoSQL injection - blind 1% 758 45 ghozt 3
pas_valide SQL injection - Time based 2% 1410 45 ycam 2
pas_valide SQL injection - blind 4% 2776 50 g0uZ 4
pas_valide LDAP injection - blind 2% 1029 55 g0uZ 1
pas_valide XPath injection - blind 1% 642 75 g0uZ 2
pas_valide SQL injection - filter bypass 1% 593 80 sambecks 4