{"id":225,"date":"2023-09-01T09:56:17","date_gmt":"2023-09-01T13:56:17","guid":{"rendered":"https:\/\/ve2cuy.com\/?page_id=225"},"modified":"2024-09-18T10:07:42","modified_gmt":"2024-09-18T14:07:42","slug":"420-5d3-oswap-solution","status":"publish","type":"page","link":"https:\/\/ve2cuy.com\/index.php\/420-5d3-oswap-solution\/","title":{"rendered":"420-5D3 :\u00a0OSWAP &#8211; Solution"},"content":{"rendered":"\n<p><a href=\"https:\/\/pwning.owasp-juice.shop\/companion-guide\/latest\/part2\/README.html\">&#8211;> \u00c0 la recherche de d\u00e9fis<\/a><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">1 &#8211; Injection de code<\/h2>\n\n\n\n<p>Injection de code au login<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"390\" height=\"465\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-093930.png\" alt=\"\" class=\"wp-image-226\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-093930.png 390w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-093930-252x300.png 252w\" sizes=\"auto, (max-width: 390px) 100vw, 390px\" \/><\/figure>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"896\" height=\"106\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-094133.png\" alt=\"\" class=\"wp-image-227\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-094133.png 896w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-094133-300x35.png 300w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-094133-768x91.png 768w\" sizes=\"auto, (max-width: 896px) 100vw, 896px\" \/><\/figure>\n\n\n\n<p>1.1. &#8211; Nommer la cat\u00e9gorie de la faille<\/p>\n\n\n\n<p>1.2 &#8211; Expliquer la raison de la faille<\/p>\n\n\n\n<p>1.3 &#8211; Proposer une solution<\/p>\n\n\n\n<p><a href=\"https:\/\/cwe.mitre.org\/data\/definitions\/74.html\">Docum et examples d&rsquo;injections<\/a><\/p>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<h2 class=\"wp-block-heading\">2 &#8211; Supplier le chatbot pour un rabais \ud83d\ude09!<\/h2>\n\n\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"815\" height=\"710\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-095506.png\" alt=\"\" class=\"wp-image-228\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-095506.png 815w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-095506-300x261.png 300w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-095506-768x669.png 768w\" sizes=\"auto, (max-width: 815px) 100vw, 815px\" \/><\/figure>\n\n\n\n<p> <\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"108\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100319-1024x108.png\" alt=\"\" class=\"wp-image-235\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100319-1024x108.png 1024w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100319-300x32.png 300w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100319-768x81.png 768w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100319.png 1153w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p>3 &#8211; Acc\u00e8s ftp via le fureteur<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"329\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100918-1024x329.png\" alt=\"\" class=\"wp-image-237\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100918-1024x329.png 1024w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100918-300x96.png 300w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100918-768x247.png 768w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-2023-09-01-100918.png 1230w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p>4 &#8211; Afficher le tableau des r\u00e9ussites (score-board)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>http:&#47;&#47;localhost:3000\/#\/score-board <\/code><\/pre>\n\n\n\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"726\" src=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-1024x726.png\" alt=\"\" class=\"wp-image-257\" srcset=\"https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-1024x726.png 1024w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-300x213.png 300w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-768x544.png 768w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-1536x1089.png 1536w, https:\/\/ve2cuy.com\/wp-content\/uploads\/2023\/09\/Capture-decran-le-2023-09-07-a-17.24.15-2048x1451.png 2048w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<hr class=\"wp-block-separator has-alpha-channel-opacity\"\/>\n\n\n\n<p><a href=\"https:\/\/pwning.owasp-juice.shop\/appendix\/solutions.html#%E2%AD%90%E2%AD%90%E2%AD%90%20Challenges\">Challenge solutions \u00b7 Pwning OWASP Juice Shop (owasp-juice.shop)<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8211;> \u00c0 la recherche de d\u00e9fis 1 &#8211; Injection de code Injection de code au login 1.1. &#8211; Nommer la cat\u00e9gorie de la faille 1.2 &#8211; Expliquer la raison de la faille 1.3 &#8211; Proposer une solution Docum et examples d&rsquo;injections 2 &#8211; Supplier le chatbot pour un rabais \ud83d\ude09! 3 &#8211; Acc\u00e8s ftp via [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":["post-225","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/pages\/225","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/comments?post=225"}],"version-history":[{"count":10,"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/pages\/225\/revisions"}],"predecessor-version":[{"id":1030,"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/pages\/225\/revisions\/1030"}],"wp:attachment":[{"href":"https:\/\/ve2cuy.com\/index.php\/wp-json\/wp\/v2\/media?parent=225"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}