Username: 
Password: 
Restrict session to IP 
Questions  |  score: 6  |  Solved By 147 People  |  411207 views  |  since Nov 18, 2011 - 20:38:34

Blinded by the lighter (MySQL, Exploit)

Blinded by the lighter
This challenge is the sequel to the "Blinded by the light" challenge.
Again your mission is to extract an md5 password hash out of the database.
This time your limit for this blind sql injection are 33 queries.
Also you have to accomplish this task 3 times consecutively, to prove you have solved the challenge.
You are also given the sourcecode of the vulnerable script, also as highlighted version.
To restart the challenge, you can execute a reset.
On the run to the great gig.
Thanks go out to dloser for his help in developing and testing the challenge.

Good luck!
Password:
Solution:
© 2011, 2012, 2013, 2014, 2015, 2016 and 2017 by kwisatz