HTB Zipping
·15 mins
Zipping is a medium-difficulty Linux box hosting a PHP web application with a vulnerable file upload function. This function is susceptible to a file read exploit involving zip archives. By exploiting this flaw, I was able to obtain the application’s source code, revealing a SQL injection vulnerability. I leveraged this vulnerability to write a webshell on the system. Additionally, I discovered that the user
rektsu has sudo privileges over a binary, and misconfigurations in shared library objects can be exploited to gain root privileges.