Hack The Box - Blunder
We are going to pwn Blunder from Hack The Box.
Mysql
Hack The Box - Admirer
We need to find some hidden .txt files and one of them have cresentials for FTP and FTP contains webpage backups but everything is old so we need to find new password for the Adminer and its …
Hack The Box - Magic
Initial is by doing a SQLI to bypass login. And File Upload Vulnerability, from there we can get a shell and find user creds in SQL database. And root is by path hijack attack.
Vulnhub - Symfonos 4
Since there is no other interesting Ports Open, I started Gobuster on the webpage.