Hello,
This writeup will cover a 300points web mission we solved during PlaidCTF 2011. We had access to a simple guestbook with a form. We tried to trigger a bug unsuccessfully. At first, we thought the vulnerability might be a flaw in csrf handling because of the advisory published last february. The app was reacting strangely to the csrf cookie, (re)setting it multiple times, but then the organizers removed the csrf check altogether.

We were stuck at this point until a hint was given: django settings file contained a reference to a memcached server. We hadn't tried to ...

0 Commentaires / Lire la suite...