Username: 
Password: 
Restrict session to IP 
Questions  |  score: 6  |  Solved By 107 People  |  63351 views  |  since Aug 10, 2012 - 23:28:34

Light in the Darkness (MySQL, Exploit)

Light in the Darkness
This challenge is the sequel to the "Blinded by the lighter" challenge.
Again your mission is to extract an md5 password hash out of the database.
This time your limit for this sql injection are 2 queries.
Also you have to accomplish this task 3 times consecutively, to prove you have solved the challenge.
Again you are given the sourcecode of the vulnerable script, also as highlighted version.
To restart the challenge, you can execute a reset.

Thanks to Mawekl for his motivation!

Good luck!
Password:
Solution:
© 2012, 2013, 2014, 2015, 2016 and 2017 by Mawekl