ig-ctf-solutions/write-ups-challenges-2024-2025
3
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity
cd79fe01d9
write-ups-challenges-2024-2025/peanutbutter-challenges/peanutbutter-secret-post/SOLUTION.md
Abel Stuker 26039148eb feat: add peanutbutter challenges
2024-11-25 22:31:56 +01:00

670 B
Raw Blame History

Difficulty

??

Category

Web

How To Solve

When visiting the homepage, a GET request is made to the server to obtain the blog posts. Using the Chrome DevTools, you can inspect the response.

Notice that this response corresponds to the blog posts visible on the homepage, with one difference. The homepage doesn't show the blog post with id bee229bc-4147-4c34-9418-9572e9f0ee1b. When clicking on other blog posts, you see that the URL for every blog post is structured as follows: /posts/<id>. Simply going to /posts/bee229bc-4147-4c34-9418-9572e9f0ee1breveals the hidden blog post with the flag.

Flag

IGCTF{M4d3_fr0m_p3Anuts}