Possibility of Gaining Full Access to the Server Through Vulnerability of the Website

  • K.S. Harivignesh Independent Researcher
Keywords: Penetration Testing, Linux Server, Vulnerability, Gaining Full Access


We have got the ip address of the server and we have found the open ports and host discovery. Found that port 80 is open and has a website which is vulnerable to sql injection (add admin user) by the outdated CMS version of the website. We have added as admin user and got the reverse shell in the server through the website. We have explored the database and put the backdoor to listen the server. After testing this we have cleared the logs.

Abstract views: 183 times
PDF downloads: 117 times