13 writeups tagged with FTP
TeamSpeak 3 server on CentOS. Enumerated FTP for credentials and exploited a vulnerable web application for system access.
Joomla CMS on CentOS with anonymous FTP. Exploited a Joomla authenticated RCE CVE via the template editor for code execution.
FTP anonymous login exposes web application files. Abused file write via FTP to upload a PHP webshell for initial access.
Hiking Trails web application on Ubuntu. Directory traversal and file inclusion vulnerabilities lead to credentials and shell.
Windows with FileZilla FTP and CMS Mini web app. FTP credential exposure and CMS RCE via file upload for initial foothold.
FTP with anonymous access reveals helpdesk application credentials. SQL injection and file upload lead to remote code execution.
Wing FTP Server on Windows. Default admin credentials allow access to the web admin panel, leading to command execution via scheduled tasks.
Production web server with anonymous FTP access. Weak credentials and misconfigured permissions lead to full compromise.
uftpd FTP server with anonymous access. Forum application vulnerability exploited to obtain a shell and escalate to root.
FTP server with anonymous access exposes backup credentials. Password reuse leads to SSH login and privilege escalation.
Development web server with FTP credentials leaked via anonymous login. Credential reuse and web shell upload for root.
Anonymous FTP reveals NVMS-1000 path traversal note. LFI reads credentials file, SSH pivoting to access NSClient++ for SYSTEM.
Anonymous FTP write access to IIS webroot allows ASPX webshell upload. Local kernel exploit for SYSTEM.
