Explore >> Select a destination
|
You are here 
|
tcode2k16.github.io | ||
| | | | |
www.thapatechnical.com
|
|
| | | | | [AI summary] The article provides a tutorial on implementing CRUD operations (Create, Read, Update, Delete) using PHP and MySQLi, including code examples for database connection, insertion, display, deletion, and updating data. | |
| | | | |
blog.0x7d0.dev
|
|
| | | | | Bookworm is an Insane-difficulty machine from Hack The Box. We will exploit an XSS vulnerability to gain access to a grandfathered feature accessible only to a few users. Subsequently, we'll leverage a Path Traversal vulnerability to acquire an initial password. Then, we will exploit a bug in an internal HTTP service to pivot to another user. This second user will possess privileges to a system for generating shipping labels, vulnerable to a double injection, allowing us to escalate our privileges to root. | |
| | | | |
blog.ikuamike.io
|
|
| | | | | Difficulty Release Date Author Beginner 2 Mar 2020 Zayotic Summary In this box, we first perform ldap injection on the web application to bypass the login page. Then we are able to read local files by abusing a local file inclusion vulnerability with php base64 filter. From one of the php files we get ldap credentials that we used to authenticate to ldap and dump entries. From the entries we get a base64 encoded password that we could use to ssh into the machine. | |
| | | | |
nebulas.sfwa.org
|
|
| | | [AI summary] The text is a section of a website containing a Nebula Awards-related article about addressing God formally in speech, accompanied by legal and privacy-related content. | ||
