Hack The Box - Magic
Initial is by doing a SQLI to bypass login. And File Upload Vulnerability, from there we can get a shell and find user creds in SQL database. And root is by path hijack attack.
File-Upload-Vuln
Hack The Box - Bounty
We are going to pwn Bounty from Hack The Box.
Hack The Box - Popcorn
We are going to pwn Popcorn from Hack The Box.
Hack The Box - Beep
We are going to pwn Beep from Hack The Box.