Restrict session to IP 
Questions  |  score: 4  |  Solved By 551 People  |  779409 views  |  since Aug 27, 2010 - 21:54:30

The Guestbook (Exploit, PHP, MySQL)

The Guestbook
This time you have to exploit a small guestbook to retrieve the admin password.
Again you are given the guestbook sourcecode, also as highlighted version.
Currently there is no way to register or login to the guestbook tables, but an admin account already exists.
The solution is the Admin password, case sensitive.

Note: Every session gets it own guestbook to play with. However you should clear your guestbook when you are done, as your entries can be read by skilled players.

Your Guestbook

Your solution for The Guestbook
© 2010, 2011, 2012, 2013, 2014, 2015, 2016 and 2017 by Gizmore