search

jscalc

hashtag
Description

In the mysterious depths of the digital sea, a specialized JavaScript calculator has been crafted by tech-savvy squids. With multiple arms and complex problem-solving skills, these cephalopod engineers use it for everything from inkjet trajectory calculations to deep-sea math. Attempt to outsmart it at your own risk! 🦑

hashtag
Source

index.js

const express       = require('express');
const app           = express();
const bodyParser    = require('body-parser');
const routes        = require('./routes');
const path          = require('path');

app.use(bodyParser.json());

app.set('views', './views');
app.use('/static', express.static(path.resolve('static')));

app.use(routes);

app.all('*', (req, res) => {
    return res.status(404).send({
        message: '404 page not found'
    });
});

app.listen(1337, () => console.log('Listening on port 1337'));

routes/index.js

helpers/calculatorHelper.js

hashtag
Solution

Since the input is going directly into server side eval function, we can perform command injection via modules.

jscalc.png
jscalc-1.png
circle-check

Flag: HTB{c4lcul4t3d_my_w4y_thr0ugh_rc3}

PreviousWhy LambdaNextSuNiNaTaS

Last updated