Restrict session to IP 
Questions  |  score: 2  |  2.68 3.55 4.95 |  Solved By 118 People  |  26611 views  |  since Dec 09, 2017 - 19:45:43

Railsbin (Exploit)

The years are passing by, and it´s christmas vacation time again.
I was playing a lot with ruby the past years, and i was in need of a pastebin service with an API for my bot.
So… i simply created one myself, within a few hours, using good old RubyOnRails.

The project named "railsbin" is open source, but has a few security problems.
Can you exploit the demo site?
The solution is the password hash of user solution.

Happy Challenging!
Your solution for Railsbin
© 2017, 2018, 2019, 2020, 2021, 2022, 2023 and 2024 by Gizmore