Premise

In this video walkthrough, we demonstrated how vulnerable WordPress plugins would lead to a complete system compromise. We then escalated our privileges by taking advantage of security misconfigurations in the permissions. We used So simple box from Vulnhub for this walkthrough.

Machine Description

This is an easy level VM with some rabbitholes. Enumeration is key to find your way in. There are three flags (2 user and 1 root flag).

The VM is tested on Virtualbox. After the startup it shows the IP address.

Share your rootflag with me on Twitter: @roelvb79

Good luck and have fun!

This works better with VirtualBox rather than VMware

Machine Link: https://www.vulnhub.com/entry/so-simple-1,515/

Video Walk-through

Penetration Testing, vulnhub, wordpress

Show Comments

Motasem

About the Author

Cybersecurity Trainer MS in Cybersecurity Expertise in Healthcare and Finance Industries Penetration tester and compliance auditor

View Articles

From WordPress Plugin to Remote System Compromise – So simple Vulnhub

Premise

Machine Description

Video Walk-through

Leave a Reply Cancel reply

Motasem

About the Author

Press ESC to close

Premise

Machine Description

Video Walk-through

Leave a Reply Cancel reply

Motasem

About the Author

Share Article:

You might also like

Analyzing a Hacked WebServer With Wireshark | HackTheBox Intro To Blue Team | Chase

Exploiting Microsoft Windows Active Directory Certificate Service | CVE-2022-26923

WIFI Penetration Testing With aircrack-ng | TryHackMe Wifi Hacking 101