Restrict session to IP 
Questions  |  score: 6  |  7.06 8.06 8.81 |  Solved By 96 People  |  306953 views  |  since Aug 10, 2012 - 23:28:20

Are you blind? (MySQL, Exploit)

Are you blind?
This challenge is another sequel to the "Blinded by the light" challenge.
Again your mission is to extract an md5 password hash out of the database.
This time your limit for this blind sql injection are 128 queries.
Also you have to accomplish this task 3 times consecutively, to prove you have solved the challenge.
You are also given the sourcecode of the vulnerable script, also as highlighted version.
To restart the challenge, you can execute a reset.

Thanks to Mawekl for his motivation!

Good luck!
© 2012, 2013, 2014, 2015, 2016, 2017 and 2018 by Mawekl