leveryd/ctf.php

## ctf.php
<body>
can you alert "flag"? <br>

<pre>
source code: https://gist.github.com/leveryd/40fcaed60727b6163b034145e332640f
</pre>

<script>
function hello(a, b, c){
  if(a=="a" && b=="b" && c=="c"){
    alert("flag");
  }
}

var test ={
  "a":function a(e){
     try{
         eval(this.call + ".test")
     } catch(e){
         console.log("bad")
     }
}
}

<?php
  $a = $_GET["a"];
  $a = str_replace("=", "",$a);
  $a = str_replace("(", "",$a);
  $a = str_replace(")", "",$a);
  $a = str_replace("`", "",$a);
  $a = str_replace("\\", "",$a);
  $a = str_replace("/", "",$a);
  $a = str_replace("[", "",$a);
  $a = str_replace("]", "",$a);
  $a = str_replace("<", "&lt;",$a);
  $a = str_replace(">", "&gt;",$a);

  echo "var a='$a'";
?>

</script>
</body>
	<body>
	can you alert "flag"? <br>

	<pre>
	source code: https://gist.github.com/leveryd/40fcaed60727b6163b034145e332640f
	</pre>

	<script>
	function hello(a, b, c){
	if(a=="a" && b=="b" && c=="c"){
	alert("flag");
	}
	}

	var test ={
	"a":function a(e){
	try{
	eval(this.call + ".test")
	} catch(e){
	console.log("bad")
	}
	}
	}

	<?php
	$a = $_GET["a"];
	$a = str_replace("=", "",$a);
	$a = str_replace("(", "",$a);
	$a = str_replace(")", "",$a);
	$a = str_replace("`", "",$a);
	$a = str_replace("\\", "",$a);
	$a = str_replace("/", "",$a);
	$a = str_replace("[", "",$a);
	$a = str_replace("]", "",$a);
	$a = str_replace("<", "<",$a);
	$a = str_replace(">", ">",$a);

	echo "var a='$a'";
	?>

	</script>
	</body>