ig-ctf-solutions/write-ups-challenges-2024-2025
3
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
5991f63f5d
write-ups-challenges-2024-2025/peanutbutter-challenges/peanutbutter-secret-post/SOLUTION.md
Abel Stuker 26039148eb feat: add peanutbutter challenges
2024-11-25 22:31:56 +01:00

10 lines
670 B
Markdown
Raw Blame History

## Difficulty
??
## Category
Web
## How To Solve
When visiting the homepage, a GET request is made to the server to obtain the blog posts. Using the Chrome DevTools, you can inspect the response. ![](devtools_response.png)
Notice that this response corresponds to the blog posts visible on the homepage, with one difference. The homepage doesn't show the blog post with id `bee229bc-4147-4c34-9418-9572e9f0ee1b`. When clicking on other blog posts, you see that the URL for every blog post is structured as follows: `/posts/<id>`. Simply going to `/posts/bee229bc-4147-4c34-9418-9572e9f0ee1b`reveals the hidden blog post with the flag.
## Flag
`IGCTF{M4d3_fr0m_p3Anuts}`
Reference in New Issue View Git Blame Copy Permalink