Research Academy
My account Customers About Blog Careers Legal Contact Resellers
The Burp Suite User Forum was discontinued on the 1st November 2024.

Burp Suite User Forum

For support requests, go to the Support Center. To discuss with other Burp users, head to our Discord page.

SUPPORT CENTER DISCORD

File Upload Lab not working

Sid | Last updated: Dec 14, 2022 08:58AM UTC

Hello, it seems to me that the first lab (remote code execution via web shell upload) is not working correctly. I managed to print the contents of /home/carlos/secret but when I submit it says wrong solution

Sid | Last updated: Dec 14, 2022 09:37AM UTC

EDIT: the problem is there are 2 identical secret files in the directory so it prints the solution twice (this happens also in the next lab, don't know about the other ones yet)

Ben, PortSwigger Agent | Last updated: Dec 14, 2022 10:41AM UTC

Hi Sid, Are you able to provide us with some screenshots demonstrating the steps that you are performing to solve this lab so that we can see exactly what you are doing? Having run through the lab using the solution provided, I am not encountering any issues so it would be useful to see exactly what you are doing - if it is easier to send your screenshots via email then please feel free to email us at support@portswigger.net and we can take a look from there.

Sid | Last updated: Dec 14, 2022 11:00AM UTC

Running the solution provided (the one using file_get_contents) works fine, however if you upload a web shell and try to print the file (I used the command cat in this case) it prints the solution twice because apparently there are 2 identical secret files in the /home/carlos directory

Ben, PortSwigger Agent | Last updated: Dec 15, 2022 07:58AM UTC

Hi Sid, What does your webshell look like? Is it possible that the shell you are actually using is printing out the contents of the secret file twice i.e. something like this: <?php echo system('cat /home/carlos/secret'); ?>

Sid | Last updated: Dec 15, 2022 11:13AM UTC

Yes, the web shell I used is <?php echo system($_GET['cmd']);?>, thanks for helping

Bailee | Last updated: Sep 14, 2024 06:07PM UTC