# DEADFACE CTF 2024 - TrendyTrove ____ # Part I - Let Me In **Title:** Let Me In **Description:** DEADFACE is running an e-commerce site in an attempt to scam victims and steal their data and their money! See if you can find a way to access the site. Submit the flag found on the main page. Submit the flag as `flag{flag-text}` [TrendyTrove](https://trendytrove.deadface.io/) ## Solution: As soon as I opened the website, I noticed it was a login page, so I began testing for SQL injection vulnerabilities. I started with a basic SQL injection attempt, using the input `admin' OR '1'='1` as the username. This immediately granted access to the admin account. Upon logging in, I found the first flag displayed on the homepage: `flag{Tr3ndy_Tr0v3_$QL_1nj3ct10n}` # Part II - Yalonda **Title:** Yalonda **Description:** One of the victims that fell for DEADFACE's scam is Yalonda Yurlov. Confirm that her data was exposed by submitting her birthdate as the flag. Submit the flag as `flag{MM/DD/YYYY}`. (An American wrote this, so keep that in mind when formatting your dates) [TrendyTrove](https://trendytrove.deadface.io/) ## Solution: From the last step, I checked out `https://trendytrove.deadface.io/profile.php` and saw that the profile showed the date of birth. Since the challenge mentioned finding Yalonda Yurlov's birthdate, it was pretty clear that I needed to figure out her username and log in. I started looking for endpoints that might lead to the admin panel and found it at `https://trendytrove.deadface.io/admin.php`. That’s where I found Yalonda Yurlov's username: `yyurlov7`, now that we have the username we can log into Yurlov's account using the SQL injection we previously used to log into the admin panel, and change `admin` to `yyurlov7`: `yyurlov7' OR '1'='1`, which gave us access to her account, upon accessing the `profile.php` page, we see her date of birth, which gives us our flag: `flag{03-05-1990}`