Possibility of Gaining Full Access to the Server Through Vulnerability of the Website

K.S. Harivignesh

doi:10.34293/sijash.v11i2.6219

Possibility of Gaining Full Access to the Server Through Vulnerability of the Website

K.S. Harivignesh Independent Researcher

DOI: https://doi.org/10.34293/sijash.v11i2.6219

Keywords: Penetration Testing, Linux Server, Vulnerability, Gaining Full Access

Abstract

We have got the ip address of the server and we have found the open ports and host discovery. Found that port 80 is open and has a website which is vulnerable to sql injection (add admin user) by the outdated CMS version of the website. We have added as admin user and got the reverse shell in the server through the website. We have explored the database and put the backdoor to listen the server. After testing this we have cleared the logs.

Published

2023-10-01

Statistics

Abstract views: 227 times
PDF downloads: 138 times

Issue

Vol 11 No 2 (2023)

Section

Articles

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.