Smol | THM Writeup
Introduction
Detailed walkthroughs for Smol CTF challenges on TryHackMe .
Description
At the heart of Smol is a WordPress website, a common target due to its extensive plugin ecosystem. The machine showcases a publicly known vulnerable plugin, highlighting the risks of neglecting software updates and security patches. Enhancing the learning experience, Smol introduces a backdoored plugin, emphasizing the significance of meticulous code inspection before integrating third-party components.
Enumaration
echo 10.10.7.163 smol.thm >> /etc/hosts
Mappped the ip to domain smol.thm.
- CTF
- LFI
- SSRF
- CVE-2018-20463
- /Etc/Pam.d/Su
- Wpscan
- Wordpress
- John
- Mysql
- Su
- Php://Filter
- Tryhackme
- Linux
- Medium
11 minutes to read