Table of Contents

Premise

In this video walkthrough, we demonstrated how vulnerable WordPress plugins would lead to a complete system compromise. We then escalated our privileges by taking advantage of security misconfigurations in the permissions. We used So simple box from Vulnhub for this walkthrough.

Machine Description

This is an easy level VM with some rabbitholes. Enumeration is key to find your way in. There are three flags (2 user and 1 root flag).

The VM is tested on Virtualbox. After the startup it shows the IP address.

Share your rootflag with me on Twitter: @roelvb79

Good luck and have fun!

This works better with VirtualBox rather than VMware

Machine Link: https://www.vulnhub.com/entry/so-simple-1,515/

Get OSCP Certificate Notes

Video Walk-through

Penetration Testing, vulnhub, wordpress

Show Comments

MasterMind Study Notes

About the Author

Mastermind Study Notes is a group of talented authors and writers who are experienced and well-versed across different fields. The group is led by, Motasem Hamdan, who is a Cybersecurity content creator and YouTuber.

View Articles

From WordPress Plugin to Remote System Compromise – So simple Vulnhub

Premise