THIS BLOG HAS A NEW HOME WITH SOLUTIONS TO MORE HTS MISSIONS.
On this 3rd mission, which is fairly easy, the network security guy Sam, has remembered to upload the password file, but don’t worry, as the mission briefing says there is a “deeper problem”, by deeper they meant that you have to look at the source of the page ( Firefox shortcut: Ctrl + u ), and after looking at the source you should find this:
As you can see there is a hidden form field that has the name “file” and it’s value is “password.php”, now let’s take a look at the “password.php” file, we’ll do this by appending the file name to the current page URL which is :
to this :
THE REMAINING OF THE SOLUTION IS AVAILABLE HERE.