I’m confused…
I have retrieved the credentials from the alternative service. I then proceed to authenticate using these credentials on the obvious http service but now do I just use the well known unauthenticated RCE exploit against this service lol? Isn’t that a bit counter intuitive?
Am I missing another service to auth with?