World Cup Special - Immersive Squad

Question

need help with this lab ,i have bypassed the cookie to login as croatia manger ,&nbsp; even double encoded ../ to get path traversal payload.&nbsp;still i am getting empty roster as output, (see image attached).so please help here&nbsp; ?&nbsp;

netcat · Answer

Depending on the cookie and query string, there are different outcomes (You are...). Do a few different combinations, write the results down, and think about it.

If you still can't find the solution, write them here for discussion.

iots2024 · Answer

this is a little bit odd. try not a relative, maybe try an absolute path :)

tillycorless · Answer

Hi sargentv​ You're on the right lines, but try looking in other directories than just the parent directory (aka ..). You may also find absolute paths useful

Forum Discussion

World Cup Special - Immersive Squad

3 Replies

Featured Places

Help & Support Forum

Related Content

World Cup Special: Immersive Squad

Labs Live Special: The Human Connection Season Finale

Operational CTI: How Immersive Builds Labs for Real-World Threat Preparedness

Beyond the Situation Room: What Your Crisis Response Looks Like to the Outside World

Pen Test CTFs: Immersive Code Q4

Recent Discussions

Foundational Static Analysis: API Analysis step 10

Microsoft Defender for Cloud: Inventory, Resource Health and Recommendations.

Snort Rules: Ep.9 – Exploit Kits

Snort Rules: Ep.7 – Lokibot Infection Traffic

Pen Test CTFs: Artica Shipping Company