[Saudi and Oman National Cyber Security CTF 2019] [Web] Maria WriteUp


I’m about to share a WebSecurity WriteUp

Let’s Open the link and see what we have …

In this Challenge there is two hints:

  1. The website store our IP address in database

  2. Maria is the only person that can reveal the flag

The Source Code:

SELECT * FROM nxf8_sessions where ip_address = ‘...

We send that to BurpSuite

Let’s Try to change our IP Address from headers via BurpSuite ….


IP Changed

let’s see if there is possibilities of any SQL injection ….

let’s reduce the number of columns to avoid the error message

So we have a SQLi …. (I can’t explain more those are basics as we know Just follow the pics …)

We are dealing with SQLite here

I found two tables:



Let’s grab columns via an easy method

X-Forwarded-For:’ UNION SELECT 1,2,3,sql FROM sqlite_master WHERE type =’table’ AND name = ‘nxf8_sessions’ LIMIT 0,1 — -

And for users

X-Forwarded-For:’ UNION SELECT 1,2,3,sql FROM sqlite_master WHERE type =’table’ AND name = ‘nxf8_users’ LIMIT 0,1 —

From users I found that Maria ID is : 5








[email protected],[email protected],[email protected],[email protected],[email protected],[email protected],[email protected],[email protected]

And in our challenge there is no login pages or anything let us to get the flag and its required to use Maria as an user ….

I tried to crack the password but nothing and after a while I get back to our “nxf8_sessions” Table

X-Forwarded-For:’ UNION SELECT 1,2,3,session_id FROM nxf8_sessions WHERE user_id =5 LIMIT 0,1 — -


emmmm This picture quality

which picture you talking about !

Maybe all of them? :smiley:

You find it that bad ?

On the burp images you can’t zoom in and read the text. Unless I’m dumb?

Nah bro who said that !

What about this quality I think the problem is in your Pics uploader


Picture is not clear.

This topic was automatically closed after 30 days. New replies are no longer allowed.