Official Inject Discussion

Spright · March 18, 2023, 2:31am

I need help, I think I’m on the right track but I’m just not sure…

prade3p · March 18, 2023, 1:22pm

I’m stuck with LFI. help me please

01_V3n0m_10 · March 18, 2023, 2:24pm

Hey I am not sure if I have found the right CVE for the correct RCE. Can someone help me?

bryan · March 18, 2023, 3:57pm

I need help to get the p** of the user

Pologhini · March 19, 2023, 4:46am

Anyone here who is willing to teach me how to root this of give me a push over the finish line. I am 99% sure that i am the right path for root, but after a week of googling, i just can’t figure out what i am doing wrong.

gr8vilen · March 19, 2023, 5:55am

cant find the playlode

Pologhini · March 19, 2023, 5:58am

if you are looking for acces as a user, check Metasploit as well

PostArctic · March 19, 2023, 11:31am

Manage to exploit and gain shell access. Got user flag.

But can’t figure out how to privilege escalate, very much appreciated someone can point me in the direction.

UPDATE: Manage to root it. Spend quite sometime to learns about a new tool. Thanks to all the pointer shared here.

drysalad · March 19, 2023, 7:50pm

Rooted!

Enumeration is the key.

Look at what is used and check for CVEs on what you come across.

Root is pretty straightforward.

anutrix · March 19, 2023, 11:33pm

It says Inject is under Maintenance.

elf1337 · March 20, 2023, 3:40am

The first one

anutrix · March 20, 2023, 4:10am

Rooted and done.

Tip: Instead of directly trying to form reverse shell, try command like touch /tmp/root_test.txt to test if payload works in case the exploit isn’t supposed give response directly.

AndreiPintea · March 20, 2023, 10:18pm

Rooted!
The hints provided in this thread are sufficient to figure this one out.
Fun machine with some new things I wasn’t aware of.
If anyone needs extra help you can send me a PM here or on Discord

Nemox0 · March 21, 2023, 12:22am

Hey guys so I found the exploit… and I was able to touch a file and confirm the exploit works even when the 500 is present. however I cannot for the life of me get echo to push anything into the file for rev shell… please help?

Nemox0 · March 21, 2023, 1:08am

curl and wget not working… box is busted. guess I’ll try again tomorrow

SaintMichael64 · March 21, 2023, 11:48am

Same…ran some limpeas, linenum, lin_exploit_suggester…lot of info

tried some ansible exploits…

searching for this pom.xml file

got user pretty quick but have spent hours trying to root this…great read in this forum for ideas…

eirikr · March 21, 2023, 12:13pm

Im think too

darshil25 · March 21, 2023, 1:32pm

hey did you manage to get flag. if you need help dm me.

Bu1ar · March 21, 2023, 8:00pm

Anyone got a moment? I think I know what CVE is used to get the user shell, however It does not seem to be working, I think I am doing something wrong. PM me?

zaaap · March 21, 2023, 8:03pm

I truly did find hard time even getting a sens of this machine, I really hope sharing some requirements before exploiting this type of machines as a total beginner