Premise

In this video walkthrough, we demonstrated how vulnerable WordPress plugins would lead to a complete system compromise. We then escalated our privileges by taking advantage of security misconfigurations in the permissions. We used So simple box from Vulnhub for this walkthrough.

Machine Description

This is an easy level VM with some rabbitholes. Enumeration is key to find your way in. There are three flags (2 user and 1 root flag).

The VM is tested on Virtualbox. After the startup it shows the IP address.

Share your rootflag with me on Twitter: @roelvb79

Good luck and have fun!

This works better with VirtualBox rather than VMware

Machine Link: https://www.vulnhub.com/entry/so-simple-1,515/

Get OSCP Certificate Notes

Video Walk-through

Penetration Testing, vulnhub, wordpress

Show Comments

Motasem

About the Author

I create cybersecurity notes, digital marketing notes and online courses. I also provide digital marketing consulting including but not limited to SEO, Google & Meta ads and CRM administration.

View Articles

From WordPress Plugin to Remote System Compromise – So simple Vulnhub

Premise

Machine Description

Video Walk-through

Leave a Reply Cancel reply

Motasem

About the Author

Press ESC to close

From WordPress Plugin to Remote System Compromise – So simple Vulnhub

Premise

Machine Description

Video Walk-through

Leave a Reply Cancel reply

Motasem

About the Author

Share Article:

You might also like

Open Source Intelligence Reddit Case Study | TryHackMe Advent of Cyber

Open Source Intelligence Tools & Techniques Explained With Case Studies

WordPress XXE Vulnerability | CVE-2021-29447 TryHackMe