Once you know you can trigger the last step yourself, it makes it all go a bit quicker. I don’t know how many hours I spent waiting… I was also able to get a reverse shell as root even though it is not required to get what you need.
If you are stumped on user or root, send me a DM and I will try to help.
Know what to do to get into admin, found the length required but i can’t get it to work. Anyone kind enough to PM me to check if i got something wrong?
Thank you.
I am having the same problem, I have a feeling that we’re missing something important. but I have a script checking content length of every url I found. So far I got nothing
Any hints are appreciated
Are you sure you are checking the right things - it is a form field you need to focus on.
Know what to do to get into admin, found the length required but i can’t get it to work. Anyone kind enough to PM me to check if i got something wrong?
Thank you.
I am having the same problem, I have a feeling that we’re missing something important. but I have a script checking content length of every url I found. So far I got nothing
Any hints are appreciated
Are you sure you are checking the right things - it is a form field you need to focus on.
What should we do with field? is it SQL injection ?
*beep *beep finally! Thank you for the assistance to everyone that nudged me, respect has been given (If I haven’t please DM). Thank you to @MrR3boot learned lots of new things.
I’m so lost on getting admin panel access. I’ve seen what was in the forums here but I still am at a loss of what to try to get admin access. Can someone pm me please?
Hello there,
I got problems with the exploit for the root it works but it doesnt write anything neither execute the command i give him, the ‘u’ changes to my user id but nothing else happens.
if anyone is nice enough to hit me with a PM it’s be nice thank you.
Hello there,
I got problems with the exploit for the root it works but it doesnt write anything neither execute the command i give him, the ‘u’ changes to my user id but nothing else happens.
if anyone is nice enough to hit me with a PM it’s be nice thank you.
Hello there,
I got problems with the exploit for the root it works but it doesnt write anything neither execute the command i give him, the ‘u’ changes to my user id but nothing else happens.
if anyone is nice enough to hit me with a PM it’s be nice thank you.
Make sure you use single quotes not backticks.
I already did that, nothing changes except for the id -u that changes to my id but the payload doesn’t execute
I already did that, nothing changes except for the id -u that changes to my id but the payload doesn’t execute
Not sure what you mean by chances to your ID - you dont want that to happen.
Chances are the thing you are pointing it at isn’t changing. Either make sure you modify it after running the exploit or drop me a PM for more specifics.
Rooted it FINALLY !
Big thanks to @TazWake for being so patient with me
I really hated the root part, being on a free server and having a race condition sucks i dont know why some people just try to modify your files or even delete them sometimes.