Insecure web challenge CTFROOM


Musyoka Ian
Jan 9, 2023

Hello guys and welcome back to my channel this time am going to be taking you through a CTF challenge from CTFROOM called insecure. The challenge show the limitations of using preg_replace() in PHP for match and replace operations and how it can be exploited to cause unintended functionality in a web application. It’s a really simple and fun challenge and without much say lets jump in

I recorded a youtube walkthrough which can be accessed with the link below