I’m stuck at the last module at the fifth Question “Use a vulnerable plugin to download a file containing a flag value via an unauthenticated file download.”.
I don’t know exactly what they want.
I obviously did a wpscan and found a bunch of vulnerabilities.
wpscan --url http://blog.inlanefreight.local --enumerate --api-token ****
I have already a shell on the target system but without knowing which flag they want exactly, it’s quite difficult (at least for me )
All other questions were clear for me.
Can anyone help me?