Sweetrice

TryHackMe CTF: lazyadmin (Easy)

Exploits a vulnerable SweetRice CMS installation by accessing exposed MySQL database backups containing admin credentials. Bypasses upload restrictions to gain initial access through a PHP reverse shell, then escalates privileges by leveraging a sudo permission on a Perl script.

Categories:

Tags:

Ctf Nmap Gobuster Dirbuster Searchsploit Apache Ubuntu Mysql Linpeas Privesc Upload File-Upload-Bypass Sudo Sweetrice Cms

Tag: Sweetrice

TryHackMe CTF: lazyadmin (Easy)