From directory traversal in a web server to an exploit in NSClient++.
https://hackso.me/servmon-htb-walkthrough/