### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<h3>挑战VIP会员的第一天<h3/>#CTL{\n}<?php#CTL{\n}error_reporting(0);#CTL{\n}highlight_file(__FILE__);#CTL{\n}include('flag.php');#CTL{

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}//取反#CTL{\n}include('flag.php');#CTL{\n}highlight_file(__FILE__);#CTL{\n} if(isset($_GET['v1']) && isset($_GET['v2']) &am

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}highlight_file(__FILE__);#CTL{\n}error_reporting(0); include("flag.php");#CTL{\n}function getFlag(&$v1,&$v2

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}include('flag.php');#CTL{\n} highlight_file(__FILE__);#CTL{\n} error_reporting(0);#CTL{\n} function filter($num)#CTL{\n} {#CTL{\n} $num=str_

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}error_reporting(0);#CTL{\n} highlight_file(__FILE__);#CTL{\n} function filter($file)#CTL{\n} {#CTL{\n} if(preg_match('/compress|root|zip|con

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}highlight_file(__FILE__); #CTL{\n}include("flag.php"); #CTL{\n}//flag in class flag; #CTL{\n}$ctfshow = new ctfshow(); #CTL

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php#CTL{\n}include("flag.php");#CTL{\n} highlight_file(__FILE__);#CTL{\n} if(isset($_GET['num']))#CTL{\n} { #CTL{\n} $num = $_GET['num

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php #CTL{\n}// flag in flag.php#CTL{\n}if(isset($_POST['c']))#CTL{\n}{ $c= $_POST['c'];#CTL{\n} eval($c); #CTL{\n}}#CTL{\n}else#CTL{\n}{ #CTL{\n} highl

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php error_reporting(0);#CTL{\n}if(isset($_GET['c']))#CTL{\n}{ #CTL{\n} $c = $_GET['c'];#CTL{\n} if(!preg_match("/flag|system|exec|shell|php|\.|

### 源码分析：#CTL{\n}#CTL{\n}```php#CTL{\n}<?php #CTL{\n}error_reporting(0); #CTL{\n}if(isset($_GET['c'])){ $c = $_GET['c']; #CTL{\n}if(!preg_match("/flag/i", $c)){#CTL{\n} eval($