Skip to content

Latest commit

 

History

History
29 lines (19 loc) · 694 Bytes

README.md

File metadata and controls

29 lines (19 loc) · 694 Bytes
Raw

Installation

  1. git clone
  2. composer update
  3. cp .env.example .env
  4. create database and update same records in .env
  5. php artisan key:generate
  6. php artisan migrate:fresh --seed
  7. php artisan serve from the root dir

For JWT you need to install below

first you need to install sudo apt install php7.x-dev
$ git clone https://github.com/cdoco/php-jwt.git $ cd php-jwt $ phpize && ./configure --with-openssl=/path/to/openssl $ make && make install

User

  1. user@example.com password
  2. admin@example.com password

vuln

added blind sql injection at /admin/users, go to view source and search for commented code inside form tag, pass those as query and it will work