Course

In this challenge, the problem is different from previous ones. The issue arises from the way users are redirected back to the login page. The developer forgot to stop the code execution after redirecting users, which means that the PHP code continues to run even after the redirect is sent to the browser. This flaw allows unauthorized access to information by carefully inspecting the responses sent back by the server.

When accessing the root of the application, the browser automatically follows the redirect to /login.php and does not display the body of the response. However, the PHP code does not stop executing after sending the redirect, resulting in the unauthorized code being run. By using a proxy or tools like curl to inspect the body of the HTTP response, you can see the hidden content and obtain the key for this challenge.