Information disclosure on debug page

https://portswigger.net/web-security/information-disclosure/exploiting/lab-infoleak-on-debug-page

Description

This lab contains a debug page that discloses sensitive information about the application. To solve the lab, obtain and submit the SECRET_KEY environment variable.

Solution

Searching into page source (CTRL+U) the world 'debug' we found this info disclosure into comments, with a link for this config website: /cgi-bin/phpinfo.php

Adding it to the orginal URL (https://0a5400be03dcbfb683c47334006b00dd.web-security-academy.net/cgi-bin/phpinfo.php) we can obtain info about php version and all other configration data (in our case the 'SECRET_KEY')

PreviousInformation disclosure in error messages NextSource code disclosure via backup files

Last updated 14 days ago