picoCTF 2022: web – Forbidden Paths

Ulli Weichert/ April 7, 2022/ IT-Security, Write-Ups/ 0Kommentare

Forbidden Paths Description Can you get the flag? Here’s the website. We know that the website files live in ‚/usr/share/nginx/html/‘ and the flag is at ‚/flag.txt‘ but the website is filtering absolute file paths. Can you get past the filter to read the flag? Solving Open the site and you will see a form, where you can read files. Some
