Schooled
$ tldr Moodle stored XSS → CVE-2020-14321 manager → plugin install RCE
CVE / Bulletins: CVE-2020-14321 ↗
Writeups
Skill resources
Curated documentation for each technique listed in the Skills column above. Sources: HackTricks, GTFOBins, PortSwigger, etc.Related skills worth mastering
Local File Inclusion (LFI) · Remote File Inclusion (RFI) · Shellshock (CVE-2014-6271) · SQL Injection · Server-Side Request ForgeryIf you liked this machine, try
- Undetected — Linux, Medium
- CrossFit — Linux, Insane
- Holiday — Linux, Hard
- Joker — Linux, Hard
- Stacked — Linux, Insane