You might be the one who gets messages from your friends with a link to various websites, and ask us to answer the questions. If the one who sent you is your dear mate or your girl, and imagine you get a very low score.
One of such website is QZingo.
Have you ever wished to get a high score to stand in the first of the list, Then here is a trick I found after learning how the website's code works.
1) just paste the QId ( asters in the URL. example, URL : http://www.qzingo.com/quiz/****** )
2) Fill in your name.
3) Enter your score you desire of. (non-negative numbers.. can even try a very large number :P )
click on submit. That's it. https://anvesh1212.github.io/QZingo-Hack/
How the trick works :
When you take a look at the source code of the webpage, you can see all the questions in a JSON type. you can also find the Answers for chosen questions in a array named "aids". you can also see a lot of JavaScript and JQuery code. When the user clicks on the answers, if the answer is matching with correct answer then Score value is increased other wise the correct answer gets highlighted. After all the questions been answered, A POST request is performed with 4 parameters
1. Q Uid : It is the user id of the sender stored in the database of the website ( the last 6 characters in the URL, it specifies your unique id ).
2. Uid : It is a user id value assigned to you for temporary purpose. It is sent to you while loading the page through cookies (looks like : CookieName=WrGcTz)
3. Name : It is the name which is to be Displayed on the results list.
4. Score : your score.
What we just did is, we get the Q-Uid, Name, Score for the user through form input and randomly generating Uid value. Then, sending the values to URL - "https://www.qzingo.com/send_score" by POST method.
So, it is to be remembered that, while developing quiz related websites, it is better to send the chosen value to the server for every choice made by the user ( network usage increases, but security is maintained ) and finally compute the result at server side itself.
Hope you had good time trying this trick, meet you with some other interesting article.
Note : It is completely for educational purpose.
One of such website is QZingo.
Have you ever wished to get a high score to stand in the first of the list, Then here is a trick I found after learning how the website's code works.
1) just paste the QId ( asters in the URL. example, URL : http://www.qzingo.com/quiz/****** )
2) Fill in your name.
3) Enter your score you desire of. (non-negative numbers.. can even try a very large number :P )
click on submit. That's it. https://anvesh1212.github.io/QZingo-Hack/
How the trick works :
When you take a look at the source code of the webpage, you can see all the questions in a JSON type. you can also find the Answers for chosen questions in a array named "aids". you can also see a lot of JavaScript and JQuery code. When the user clicks on the answers, if the answer is matching with correct answer then Score value is increased other wise the correct answer gets highlighted. After all the questions been answered, A POST request is performed with 4 parameters
1. Q Uid : It is the user id of the sender stored in the database of the website ( the last 6 characters in the URL, it specifies your unique id ).
2. Uid : It is a user id value assigned to you for temporary purpose. It is sent to you while loading the page through cookies (looks like : CookieName=WrGcTz)
3. Name : It is the name which is to be Displayed on the results list.
4. Score : your score.
What we just did is, we get the Q-Uid, Name, Score for the user through form input and randomly generating Uid value. Then, sending the values to URL - "https://www.qzingo.com/send_score" by POST method.
So, it is to be remembered that, while developing quiz related websites, it is better to send the chosen value to the server for every choice made by the user ( network usage increases, but security is maintained ) and finally compute the result at server side itself.
Hope you had good time trying this trick, meet you with some other interesting article.
Note : It is completely for educational purpose.
Comments
Post a Comment