Hi all,
I’ve been struggling for a few days with the last part of the WordPress skill assessment.
I’ve added the correct url to /etc/hosts and have gotten every other box except the final one. For some reason when I try to use the wp_admin_shell_upload exploit on Metasploit I get the following error:
[] Started reverse TCP handler on 10.10.[].[]:4444
[-] Exploit aborted due to failure: not-found: The target does not appear to be using WordPress
[] Exploit completed, but no session was created.
I’ve set VHOST to ‘yes’ but still can’t get the shell uploaded. I read about uploading the shell manually but can’t find any information on how to do this online. Can anyone help me? Thanks!
Edit: I finally got the flag. If someone else runs into this problem send a message and I can point you in the right direction.