Restrict session to IP 
Questions  |  score: 7  |  8.45 9.82 9.82 |  Solved By 24 People  |  69548 views  |  since Oct 03, 2012 - 04:56:52

Time to Reset II (Exploit, Coding, PHP)

Time to Reset - II
As announced, this is a sequel to the TTR challenge.
noother has proven that it is solveable, and an awesome exploit. Again you have to submit the password reset token for the user
Please note that your tokens are bound to your session.
You probably want to take a look at the sourcecode, also available in a highlighted version

Thanks go to noother for proving that stuff can still be owned in creative ways :)

Good Luck!
Your solution for Time to Reset II
© 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019, 2020 and 2021 by Gizmore and noother