[LOS] Skeleton ํ’€์ด(10)

10๋ฒˆ์งธ ๋ฌธ์ œ์ธ " skelton "์ž…๋‹ˆ๋‹ค. if(preg_match('/prob|_|\.|\(\)/i', $_GET [pw])) exit("No Hack ~_~"); ๊ฒ€์ฆ๋˜๋Š” ๋ฌธ์ž์—ด์„ ํ™•์ธํ•ด ๋ณด๋ฉด ์ด์ฒ˜๋Ÿผ ํŠน์ˆ˜๊ธฐํ˜ธ ๋ช‡๊ฐœ๋งŒ ๊ฒ€์ฆ์„ ํ•˜๊ณ  ์žˆ์Šต๋‹ˆ๋‹ค. $query = "select id from prob_skeleton where id='guest' and pw='{$_GET [pw]}' and 1=0"; ์šฐ๋ฆฌ๊ฐ€ ์‚ฌ์šฉํ•  ๋ณ€์ˆ˜๋Š” " pw='{$_GET[pw]} " ์ด ๋ถ€๋ถ„์„ ์‚ฌ์šฉํ•˜๋ฉด ๋  ๊ฑฐ ๊ฐ™์ง€๋งŒ " and 1=0 " ์—ฐ์‚ฐ์ž๊ฐ€ ํฌํ•จ๋˜์–ด ์žˆ๊ธฐ ๋•Œ๋ฌธ์— '1'='1' ํ˜•ํƒœ์˜ ์ฐธ๊ฐ’์„ ๋Œ€์ž…ํ•ด๋„ ๊ฑฐ์ง“ ๊ฐ’์œผ๋กœ ์ธ์‹์„ ํ•˜๊ณ  ์žˆ์Šต๋‹ˆ๋‹ค. if($result ['id'] == 'admin') solve("skeleton"); ๋˜ํ•œ ..
CHALLENGE
1