summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--Dockerfile1
-rw-r--r--www/login.php1
-rw-r--r--www/page.php10
3 files changed, 8 insertions, 4 deletions
diff --git a/Dockerfile b/Dockerfile
index abbf9b5..a4ee265 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -2,5 +2,6 @@ FROM debian:stable-slim
RUN apt update && apt install -y php-cli
COPY www /var/www
ENV PASSWD="password123"
+ENV FLAG="bidon"
WORKDIR /var/www
ENTRYPOINT ["php", "-S", "0.0.0.0:5000"]
diff --git a/www/login.php b/www/login.php
index 85fe569..2869f5b 100644
--- a/www/login.php
+++ b/www/login.php
@@ -35,6 +35,7 @@ else {
<p>Ton login est "stagiaire" et ton mot de passe est dans nmap.lst (livré avec le paquet nmap) !
<br>Au boulot !</p>
<div><strong><?php if (isset($_POST['username'])){ echo $msg; } ?></strong></div>
+ <p><a href="index.html">Retour</a>
</body>
</html>
diff --git a/www/page.php b/www/page.php
index e7ac2f2..92c6efb 100644
--- a/www/page.php
+++ b/www/page.php
@@ -15,10 +15,12 @@
{
echo "<p>Votre OS favori est ".$_REQUEST['os']." !</p>";
}
- if(isset($_COOKIE['date']))
- {
- echo "<p>Nous sommes le ".date("Y-m-d H:i:s",$_COOKIE['date'])."</p>";
- }
+ if (preg_match( "/[Ll][Ii][Nn][Uu][Xx]/",$_REQUEST['os']))
+ {
+ if(getenv('FLAG')){
+ echo "<strong>Bien joué ! Ton flag est ".getenv('FLAG')."</strong>";
+ }
+ }
?>
</div>
<p><a href="javascript:history.back()">Retour</a></p>
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-08 14:53:26 +0000