all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Devvortex Write-Up

Add to bookmarks
May 7, 2024, 11:33 a.m. | Pr3ach3r

System Weakness - Medium systemweakness.com

A tiny flaw can cause total chaos

HTB banner

INTRODUCTION

Hello everyone, welcome back to my infosec journey! Today we’ll discuss Devvortex, an Easy-difficulty machine from the Hackthebox website.

This time, we need to find a subdomain that leads to a Joomla! administration page. The Joomla service is vulnerable to CVE-2023-23752, which can be exploited via the Metasploit framework. After exploitation, we use the credentials of user lewis to access a CpanelAdmin. This allows us to write a PHP reverse …

ctf-writeup hacking hackthebox-writeup info-sec-writeups pentesting

Visit resource

More from systemweakness.com / System Weakness - Medium

Understanding Mamont Malware The Banking Trojan for Android 8 hours ago | systemweakness.com
accounts android assets attackers +27
Level Up Your Security Expertise: The Ultimate Guide to Installing Kali Linux on Mac. 1 day, 8 hours ago | systemweakness.com
apple cybersecurity kali linux mac +1
Top 5 SAST Vulnerabilities and How to Fix Them 1 day, 9 hours ago | systemweakness.com
alert application application security application security testing +23
Unveiling the World of Spam Emails: A Comprehensive Exploration 2 days, 1 hour ago | systemweakness.com
cloud computing continue critical cybersecurity +18
HTB — Monteverde 2 days, 1 hour ago | systemweakness.com
hackthebox htb htb-writeup oscp +1
Spring Boot Integration Shiro Quick Start Demo 2 days, 1 hour ago | systemweakness.com
backend java shiro spring-boot
A Deep Dive into Network Security Threats 2 days, 1 hour ago | systemweakness.com
advancements challenges connected deep dive +23
Defensive Security: Installing PHPIDS on LAMP Servers 2 days, 1 hour ago | systemweakness.com
cybersecurity defense hacking linux +1
TryHackMe Network Services Writeup 2 days, 1 hour ago | systemweakness.com
ctf cybersecurity tryhackme tryhackme-walkthrough +1

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India
View on infosec-jobs.com

Cybersecurity Architect, Infrastructure & Technical Security

@ KCB Group | Kenya
View on infosec-jobs.com

Security Analyst SOC (m/w/d)

@ Deutsche Telekom | Bonn, Deutschland
View on infosec-jobs.com