Possibility of Gaining Full Access to the Server Through Vulnerability of the Website
Abstract
We have got the ip address of the server and we have found the open ports and host discovery. Found that port 80 is open and has a website which is vulnerable to sql injection (add admin user) by the outdated CMS version of the website. We have added as admin user and got the reverse shell in the server through the website. We have explored the database and put the backdoor to listen the server. After testing this we have cleared the logs.
Copyright (c) 2023 K.S. Harivignesh
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.