Home CTFs | 404CTF2023 | Web | Fuite en 1791
Post
Cancel

CTFs | 404CTF2023 | Web | Fuite en 1791

Posted Jun 6, 2023 Updated Jun 9, 2023
By AxelInsa
1 min read

Context

context

The goal is to read the ddfc.

By clicking the link, we end up on this page:

home

The page contains a link to this URL:

1

https://ddfc.challenges.404ctf.fr/ddfc?expiry=-5625891076&signature=wawF6dC4Hz9g5NyCc3j1KCDcfztFE/sp

This is the page we obtain:

expired

The link is expired. As the title mentionned, the link is supposed to be valid a week. Here the time stamp indicate the date 21 september 1791:

date

We need to find a way to modify the expiry parameter in the URL.

After a lot of struggling, trying to understand how the signature is formed, I thought that we could do parameter pollution.

So, I tried to add an expiry parameter:

1

https://ddfc.challenges.404ctf.fr/ddfc?expiry=-5625891076&signature=wawF6dC4Hz9g5NyCc3j1KCDcfztFE/sp&expiry=

I get this page:

missing

It looks like the second expiry parameter is used instead of the first one. Does it validate the signature though?

I tried to add a big positive value as expiry parameter:

1

https://ddfc.challenges.404ctf.fr/ddfc?expiry=-5625891076&signature=wawF6dC4Hz9g5NyCc3j1KCDcfztFE/sp&expiry=5625891076

ddfc

We get the page 🎉 !

We can find the flag at the bottom of the page:

flag

I hope you enjoyed this challenge !

CTFs, 404CTF2023, Web
CTFs 404CTF2023 Web Parameter Pollution
This post is licensed under CC BY 4.0 by the author.
Recently Updated
Contents