This time you will get the source of a PHP web application (bitboard 2.4 final rc2) and
you have to find the vulnerability (same vulnerability exists in bitboard 2.5):
Download the File.
Then just write an exploit for it in PHP, Perl or C.
If I run your application it has to ask me for a website and the path to the board you want
to exploit. For example: http://website.com/bitboard/
Then your program has to exploit the vulnerability, to create a PHP file on the server
which does echo a message for example. Where your program puts the file on the server and what its
name is, doesn't really matter for me.
There are just 2 things that are important!
1. Quotes get filtered by the board! So think of something to get around that!
2. If the server rules are pretty strict, you can't create your file everywhere on the server
but there is one place where it always gonne work!
If you got it send your exploit to:
webmaster@bright-shadows.net
theblacksheep