Possibility of Gaining Full Access to the Server Through Vulnerability of the Website

  • K.S. Harivignesh Independent Researcher
Keywords: Penetration Testing, Linux Server, Vulnerability, Gaining Full Access

Abstract

We have got the ip address of the server and we have found the open ports and host discovery. Found that port 80 is open and has a website which is vulnerable to sql injection (add admin user) by the outdated CMS version of the website. We have added as admin user and got the reverse shell in the server through the website. We have explored the database and put the backdoor to listen the server. After testing this we have cleared the logs.

Published
2023-10-01
Statistics
Abstract views: 178 times
PDF downloads: 115 times
Section
Articles