Username: 
Password: 
Restrict session to IP 
Questions  |  score: 7  |  Solved By 20 People  |  53422 views  |  since Oct 03, 2012 - 04:56:52

Time to Reset II (Exploit, Coding, PHP)

Time to Reset - II
As announced, this is a sequel to the TTR challenge.
noother has proven that it is solveable, and an awesome exploit. Again you have to submit the password reset token for the user admin@wechall.net
Please note that your tokens are bound to your session.
You probably want to take a look at the sourcecode, also available in a highlighted version

Thanks go to noother for proving that stuff can still be owned in creative ways :)

Good Luck!
Your solution for Time to Reset II
Answer
© 2012, 2013, 2014, 2015, 2016 and 2017 by Gizmore and noother