【TryHackMe】Introduction to Flask：Walkthrough

概要

TryHackMe「Introduction to Flask」のWalkthroughです。

Task2

Q1.Which environment variable do you need to change in order to run Flask?

A.FLASK_APP

Task3

Q1.What's the default deployment port used by Flask?

A.5000

Q2.Is it possible to change that port? (yay/nay)

A.yay

Task4

Q1.Does Flask support POST requests? (yay/nay)

A.yay

Q2.What markdown language can you use to make templates for Flask?

A.HTML

Task6

Q1.What's inside /home/flask/flag.txt ?

?name={{ get_user_file("/home/flask/flag.txt") }}というパラメータを与えることで/home/flask/flag.txtを読み取れました。

A.THM{flask_1njected}