Das Blog

Author: Lucian Nitescu
Contest: NeverLAN CTF 2019

Description:

Stats:

125 points

Solution:

At first, I was provided with following web page which instructed me to authenticate into the application.

Here it is my sample SQL injection payload:

Proof of success:

After login, I retrieved the flag:

The flag is: flag{3sc4pe_Y0ur_1npu7s}