JOIN BREACHFORUMS NEW TELEGRAM
Checker Hack the Box Season 7 (Linux Hard)
by RedBlock - Saturday February 22, 2025 at 02:24 PM
Breached
Member
Posts: 36
Threads: 1
Joined: Jun 2023
Reputation: 0
#31
Feb 22, 2025, 09:20 PM
I guess the vector attack is LFR (Local FIle Read) via ssrf https://fluidattacks.com/blog/lfr-via-bl...ook-stack/, but I edited the exploit and it didn't work as expected, I still believe that the intended way
Reply
Advanced User

Posts: 72
Threads: 3
Joined: Jan 2025
Reputation: 0
#32
Feb 22, 2025, 09:23 PM
(Feb 22, 2025, 09:19 PM)0xdaniii Wrote:
(Feb 22, 2025, 08:11 PM)HRS4156453 Wrote: I have got bookstack creds:
bob:mYSeCr3T_w1kI_P4sSw0rD

how did you got this ?

Its in Teampass
Reply
Breached
Member
Posts: 36
Threads: 1
Joined: Jun 2023
Reputation: 0
#33
Feb 22, 2025, 09:29 PM
yes exploit works, modify the script to send payloads with request format, and it'll read file, it's kinda slow, but that's the exploit
Reply
Advanced User

Posts: 72
Threads: 3
Joined: Jan 2025
Reputation: 0
#34
Feb 22, 2025, 09:30 PM
New subdomain Unlocked:
vault.checker.htb

XD
Reply
Breached
Member
Posts: 9
Threads: 0
Joined: Feb 2025
Reputation: 0
#35
Feb 22, 2025, 09:37 PM
(Feb 22, 2025, 09:29 PM)v3701 Wrote: yes exploit works, modify the script to send payloads with request format, and it'll read file, it's kinda slow, but that's the exploit

Can u show me ur changes?
Reply
Breached
Member
Posts: 13
Threads: 0
Joined: Aug 2024
Reputation: 0
#36
Feb 22, 2025, 09:40 PM
(Feb 22, 2025, 09:29 PM)v3701 Wrote: yes exploit works, modify the script to send payloads with request format, and it'll read file, it's kinda slow, but that's the exploit

Can you explain a little more?
Reply
Breached
Member
Posts: 25
Threads: 5
Joined: Jan 2025
Reputation: 0
#37
Feb 22, 2025, 09:48 PM
https://github.com/synacktiv/php_filter_...le_exploit
Reply
Advanced User

Posts: 72
Threads: 3
Joined: Jan 2025
Reputation: 0
#38
Feb 22, 2025, 09:59 PM
did anyone manage to get the otp?
Reply
Breached
Member
Posts: 25
Threads: 5
Joined: Jan 2025
Reputation: 0
#39
Feb 22, 2025, 11:06 PM
anyone got the correct way in? im stuck...
Reply
Breached
Member
Posts: 11
Threads: 0
Joined: Aug 2024
Reputation: 0
#40
Feb 22, 2025, 11:33 PM
does any one have any way to get foothold is it ssrf?????
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  [FREE] CPTS • CWES • CDSA • CWEE Exam Hint 3midjets 234 33,201 7 hours ago
Last Post: breachaddictt
  [FREE] HackTheBox Dante - complete writeup written by Tamarisk Tamarisk 608 96,043 7 hours ago
Last Post: breachaddictt
Heart [FREE] HackTheBox All Cheatsheets Tamarisk 30 1,860 7 hours ago
Last Post: breachaddictt
  [MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot htb-bot 106 10,215 10 hours ago
Last Post: kkkreoifezrg
  JET fortress writeup + flags ssrf 39 19,224 11 hours ago
Last Post: vlxw

Forum Jump:


 Users browsing this forum: 1 Guest(s)