<- HTB

Photobomb


8 minutes to read

Photobomb
Hack The Box. Linux. Easy machine. This machine contains a web application built with Sinatra that is vulnerable to command injection, which leads to Remote Code Execution (RCE). The user has sudo permissions to run a Bash script that is vulnerable to PATH hijacking, which can be used to escalate privileges