Hack This Site: Basic Mission 8

Click here: LEVEL 8

I remember that here I write SPOILERS!
I RECOMMEND to win the level alone, using also Google for Theory of arguments

"The password is yet again hidden in an unknown file. Sam's daughter has begun learning PHP, and has a small script to demonstrate her knowledge. 

Requirements: Knowledge of SSI (dynamic html executed by the server, rather than the browser)"

Here we need to look a vulnerability that is exploited by Server Side Includes (SSI) Injection

Before to go, let's read about this:

https://www.owasp.org/index.php/Server-Side_Includes_(SSI)_Injection

https://www.owasp.org/index.php/Testing_for_SSI_Injection_(OWASP-DV-009)

http://hakipedia.com/index.php/Server_Side_Includes

http://hack2play.blogspot.it/2012/11/tut-ssi-injection-shell-uploading.html

http://www.hackingsec.in/2012/08/server-side-includes-ssi-injection.html

However, realized how it works, we inject of following code to the input text field in the form :

<!--#exec cmd="ls ../"-->

We are redirected to a page that says to contain any files. We have the file "au12ha39vc.php". In this way, we must go in:

http://www.hackthissite.org/missions/basic/8/au12ha39vc.php

===============> HTS: Basic Mission 9