We covered the solution for C0m80 Vulnhub where we demonstrated the exploitation of Mantis bug tracker web application and at the end escalated privileges on the Linux system using reverse engineering.

Mantis Bug Tracker is an open source issue tracker that provides a delicate balance between simplicity and power. Users are able to get started in minutes and start managing their projects while collaborating with their teammates and clients effectively. Once you start using it, you will never go back!

We used this exploit “Mantis Bug Tracker 2.3.0 – Remote Code Execution (Unauthenticated)”

We also demonstrated port tunneling in this challenge to access the internal port 65122 which was not visible during the first initial nmap scan.

Get OSCP Certificate Notes

The Complete Practical Web Application Penetration Testing Course

CTF Writeup, Penetration Testing, vulnhub

Show Comments

Motasem

About the Author

I create cybersecurity notes, digital marketing notes and online courses. I also provide digital marketing consulting including but not limited to SEO, Google & Meta ads and CRM administration.

View Articles

Web Application Exploitation | EP1 | C0m80 Vulnhub CTF challenge

Leave a Reply Cancel reply

Motasem

About the Author

Other stories

Metasploitable 1 | Complete Walkthrough Tutorial

Game of Thrones CTF Walkthrough Vulnhub

Press ESC to close

Web Application Exploitation | EP1 | C0m80 Vulnhub CTF challenge

Leave a Reply Cancel reply

Motasem

About the Author

Share Article:

Other stories

Metasploitable 1 | Complete Walkthrough Tutorial

Game of Thrones CTF Walkthrough Vulnhub