Restrict session to IP 
Questions  |  score: 6  |  7.24 8.71 7.41 |  Solved By 132 People  |  83469 views  |  since Aug 10, 2012 - 23:28:34

Light in the Darkness (MySQL, Exploit)

Light in the Darkness
This challenge is the sequel to the "Blinded by the lighter" challenge.
Again your mission is to extract an md5 password hash out of the database.
This time your limit for this sql injection are 2 queries.
Also you have to accomplish this task 3 times consecutively, to prove you have solved the challenge.
Again you are given the sourcecode of the vulnerable script, also as highlighted version.
To restart the challenge, you can execute a reset.

Thanks to Mawekl for his motivation!

Good luck!
© 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019 and 2020 by Mawekl