Lee-GyuHyeok

I study security and share my knowledge.

Recent posts

(bWAPP)Insecure DOR - Insecure DOR (Order Tickets)

์–ด๋– ํ•œ ํ‹ฐ์ผ“์„ ํŒ๋งคํ•˜๋Š” ๊ธฐ๋Šฅ์ด ๊ตฌํ˜„๋˜์–ด ์žˆ๋‹ค. ํ‹ฐ์ผ“ ๊ตฌ๋งค์— ๋Œ€ํ•œ ๊ฐœ์ˆ˜ ์ œํ•œ์€ ์—†์œผ๋ฉฐ, ํ•œ์žฅ๋‹น 15์œ ๋ฃŒ์— ํŒ๋งค๋˜๊ณ  ์žˆ๋‹ค. ๊ตฌ๋งค์‹œ ์ฆ‰์‹œ ๊ตฌ๋งค๊ฐ€ ๋˜๋ฉฐ, 15 ์œ ๋ฃŒ๊ฐ€ ์ž๋™์œผ๋กœ ๋น ์กŒ๋‹ค๊ณ  ๋˜์–ด ์žˆ๋‹ค. ticket_quantity=1&ticket_price=15...

(bWAPP)Insecure DOR - Insecure DOR (Change Secret)

Level - Low ์ด์ „ xss ๋ฌธ์ œ์™€ ๋™์ผํ•˜๊ฒŒ ํŠน์ • ๊ณ„์ •์— ๋Œ€ํ•œ secret๊ฐ’์„ ๋ณ€๊ฒฝํ•˜๋Š” ๋ถ€๋ถ„์ด ์กด์žฌํ•œ๋‹ค. ํ•ด๋‹น ๋ฌธ์ œ๋Š” IDOR ์ทจ์•ฝ์ ์„ ์•…์šฉํ•˜๋Š” ๋ฌธ์ œ์ด๋‹ค. ์ˆ˜ํ‰์  ๊ถŒํ•œ ์ƒ์Šน ๋ฐ ๋ณ€๊ฒฝ์„ ํ†ตํ•ด ํƒ€์ธ์˜ secret ๊ฐ’์„ ๋ณ€๊ฒฝํ•˜๋Š” ๋“ฏ ํ•˜๋‹ค. test ๊ณ„์ •์œผ...

UltraTech - WriteUP

ํ•ด๋‹น ๋ฌธ์ œ๋Š” https://tryhackme.com/r/room/ultratech1 ์—์„œ ํ™•์ธํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค. UltraTech ์‹œ์Šคํ…œ ๋ชจ์˜ ์นจํˆฌ ์ˆ˜ํ–‰ ๋‚ด์šฉ ์ •๋ณด ์ˆ˜์ง‘ robots.txt ๋ฐ sitemap ๋ฐœ๊ฒฌ restAPI์‚ฌ์šฉ์„ ํ†ตํ•œ ์ˆจ๊ฒจ์ง„ ํŽ˜์ด์ง€ ๋ฐ Comma...

(bWAPP)phpMyAdmin BBCode Tag XSS

phpmyadmin ๋‚ด์— error.php ํŽ˜์ด์ง€์˜ BBcode์—์„œ ์Šคํฌ๋ฆฝํŠธ๊ฐ€ ๋ฐœ์ƒํ•˜๋Š” ์ทจ์•ฝ์ ์ธ ๊ฑฐ ๊ฐ™๋‹ค. CVE-2010-4480 ์œผ๋กœ ๋ช…๋ช…๋˜์–ด์žˆ๋‹ค. ํ•ด๋‹น ์ทจ์•ฝ์ ์€ PhpMyAdmin 3.3.8.1 ํ˜น์€ 3.4.0-beta1 ์ด์ „ ๋ฒ„์ „์—์„œ ๋ฐœ์ƒํ•œ๋‹ค. BBc...