Report - HTB beep

1. port scan result

address	port
10.10.10.7	22,80,110,111,143,443

2. initial access - LFI vulnerability

Vulnerability Explanation : when i acceessed https, i find out that this web server is elastix. elastix 2.2.0 version has LFI vulnerability. i tried to use the LFI exploit for web server. and this web server has been vuln


Vulnerability Fix : update elastix server


Severity : critical


Steps to reproduce the attack : access "https://10.10.10.7/vtigercrm/graph.php?current_language=../../../../../../../..//etc/amportal.conf%00&module=Accounts&action"

i find out suspicious password. i try to login ssh server. i conneced ssh server.

post-exploitation :