Basic 8 getting annoying - sorry if any spoliers
Ok, i know the page you have to submit to is the secure-area.php
i know i have to use the $_GET variable from this page and make it so it uses password.
so i've got so far secure-area.php?password=$_GET[QUERY];
but i can't seem to get the right query
do you have to use it so it selects the password from family_db when the usersname equals drake? [[[[BIG SPOLIER!!!]]]]
can anyone help?
[edit by :richo]
do you know how the $_GET array works? basically it takes the values from the url so in a url like http://site.com/page.php?id=1&name=thejas you have two elements you can use in php : $_GET['id'] (=1) and $_GET['name'] (=thejas). so, you don't have to type $_GET in the url bar just the key ( in this example the keys are id and name ) Now, you need to know the key for secure_page.php….remember the first thing you do when you see a page…do it and you'll find that key. Next step is to find a value for that key….you should think about the key itself and what it rapresent…you'll shurely get it
I think you might be getting close, I haven't passed it and I came to this post to look for some help… good thing I didn't find much, I am now sure you have to use the SQL key, that's included in the source. I just don't understand that guy's post about what it means, then you'll 'shurely' get it… I could use some help, pm me if you feel like. I have about the same query as him…
B3ninja wrote: ok so now i've got this
secure-area.php?sq*_qu***=[[[[SPOLIER!!!]]]]
am i getting closer or ?…
you've almost got it just think short and simple =] you'll get it eventualy
read this if you havent already it should help. http://w3schools.com/sql/
good luck.