WEB DEVELOPER: 1 Walkthrough
Enumeration
Enumeration
More Enumeration…
Let’s enumerate the port 80,
”WordPress/4.9.8"
📌 username: webdeveloper
Analysing the data,
log=webdeveloper&pwd=Te5eQg&4sBS!Yr$)wf%(DcAd
Upload you shell code in the plugins and go to wp-content/uploads to activate it.
Privilege Escalation
Looking into Mysql DB,
webdeveloper:MasterOfTheUniverse
Used the same password to get escalate to webdeveloper
There is a SUDO permission set for tcpdump