all InfoSec news
Devvortex Write-Up
May 7, 2024, 11:33 a.m. | Pr3ach3r
System Weakness - Medium systemweakness.com
A tiny flaw can cause total chaos
HTB bannerINTRODUCTION
Hello everyone, welcome back to my infosec journey! Today we’ll discuss Devvortex, an Easy-difficulty machine from the Hackthebox website.
This time, we need to find a subdomain that leads to a Joomla! administration page. The Joomla service is vulnerable to CVE-2023-23752, which can be exploited via the Metasploit framework. After exploitation, we use the credentials of user lewis to access a CpanelAdmin. This allows us to write a PHP reverse …
ctf-writeup hacking hackthebox-writeup info-sec-writeups pentesting
More from systemweakness.com / System Weakness - Medium
Analyzing WSH RAT
1 day, 14 hours ago |
systemweakness.com
The Essential Cybersecurity Mindset
1 day, 14 hours ago |
systemweakness.com
Secure Architecture: Infrastructure Controls
1 day, 14 hours ago |
systemweakness.com
Data Breaching in Secure Companies
1 day, 14 hours ago |
systemweakness.com
How Prompt Injection Can Steal Your Data
3 days, 19 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC