Restrict session to IP 
Questions  |  score: 7  |  8.45 9.82 9.82 |  Solved By 22 People  |  66460 views  |  since Oct 03, 2012 - 04:56:52

Time to Reset II (Exploit, Coding, PHP)

Time to Reset - II
As announced, this is a sequel to the TTR challenge.
noother has proven that it is solveable, and an awesome exploit. Again you have to submit the password reset token for the user
Please note that your tokens are bound to your session.
You probably want to take a look at the sourcecode, also available in a highlighted version

Thanks go to noother for proving that stuff can still be owned in creative ways :)

Good Luck!
Your solution for Time to Reset II
© 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019 and 2020 by Gizmore and noother