2 writeups tagged with Webshell
SQL injection in hotel booking app. Sqlmap writes a PHP webshell. Sudo script with command injection, SUID systemctl for root.
phpbash webshell discovered via directory fuzzing. Lateral movement through sudo scriptmanager, cron-based root.
