basic 9

i finshed this challenge now without fully understanding it…. I couldnt find a good page on PNB so i injected the pnb to the right spot and got to the messed up script and i beet the challenge but i wanna no why the cereten string worked!!! that couldnt of been a real pnb attack right because would be injecting that really take me to the good job page contunue on?

Two things, thats a bug and thats a spoiler

im still lost

The file is correct, but there is no need 4 SQL injection here!

You have to use Poison NULL on this file.

If you dont know what it is…. then…. Google it! (as always)

Yes.. This is really simple, don't make it too complicated :happy:

i cant find and good tutorails i only no what it does not how to use it i keep finding garbage article

think about what it says you can use the null byte in the url so where would you place it. come on it's on the page that searches for files.

ok i just beet it but im wonder y pnb worked can i pm some1

i did a search on google for "poisen null", and i came up with nothing. can someone be little bit more specific as to what i should google? thx in advanced

never mind, i just got the misison. this is a very good one, seeing as it introduces a new type of exploit :)

remotec2 wrote: i did a search on google for "poisen null", and i came up with nothing. can someone be little bit more specific as to what i should google? thx in advanced

It's spelled "poison", maybe that's why you didn't get anything :p