Task 11 - Sensitive Data Exposure (Challenge)

Task 11 [Severity 3] Sensitive Data Exposure (Challenge)

What is the name of the mentioned directory?

HINT: Have a look at the source code on the /login page.

Reveal Flag đŸš©

đŸš©/assets

Navigate to the directory you found in question one. What file stands out as being likely to contain sensitive data?

Reveal Flag đŸš©

đŸš©webapp.db

Use the supporting material to access the sensitive data. What is the password hash of the admin user?

Reveal Flag đŸš©

đŸš©6eea9b7ef19179a06954edd0f6c05ceb

Crack the hash. What is the admin's plaintext password?

HINT: Read the supporting material

Reveal Flag đŸš©

đŸš©qwertyuiop

Login as the admin. What is the flag?

Reveal Flag đŸš©

đŸš©THM{Yzc2YjdkMjE5N2VjMzNhOTE3NjdiMjdl}

PreviousTask 7 - Broken Authentication PracticalNextTask 13 - XML External Entity - eXtensible Markup Language

Last updated