@23Y4D said:
I managed to find whatever I upload… but I’m starting to have a feeling it is a rabbit hole…
Sooo… is it?
Same here…thought I could trick it to upload a specific file type but no luck…
@23Y4D said:
I managed to find whatever I upload… but I’m starting to have a feeling it is a rabbit hole…
Sooo… is it?
Same here…thought I could trick it to upload a specific file type but no luck…
Did anyone get code execution?
Rooted. Loved the box. Hints:
The N***.JS is the way to go?
I didn’t need that. But seems others used another path and did need it.
Ok, so i have been sitting a while trying to get a shell. Could someone PM me so i can find out if my method is not a waste of my time? (Don’t want any spoilers) Cause i feel my method is the way to go.
are we supposed to get creds? cause i seem to be failing on that
also the unauthenticated exploit is not working (maybe modification is needed?)
Could I get a hint please? Ticket portal or JOSN page?
You can use one or the other. There is at least two ways you can go.
hints on privesc?
Should i keep on trying different bypass methods for my shell upload or am i wasting my time? Should i try and get a shell in a different way?
hint for root please
Got half the user… need some tips for finding the rest?
@r0tt3d said:
Should i keep on trying different bypass methods for my shell upload or am i wasting my time? Should i try and get a shell in a different way?
I really can’t say too much without spoiling things, but I would strongly advise you to review the code on github. If you look closely, you’ll be very surprised at what you find.
deleted
@opt1kz said:
@r0tt3d said:
Should i keep on trying different bypass methods for my shell upload or am i wasting my time? Should i try and get a shell in a different way?I really can’t say too much without spoiling things, but I would strongly advise you to review the code on github. If you look closely, you’ll be very surprised at what you find.
That is a good hint
It seems I bypassed the file extensions upload for my php session, but I have not idea where its uploaded to. Looking through the GitHub I dont see anything.
Took me a while to know I had to time travel, I feel discriminated.
@vanquish said:
It seems I bypassed the file extensions upload for my php session, but I have not idea where its uploaded to. Looking through the GitHub I dont see anything.
Look harder. It tells you where to look if you’re reading the code.