Vulnerability Capstone | TryHackMe (THM)
用户需要总结一篇关于安全审计任务的文章,控制在100字以内。文章描述了对新博客进行安全审计的过程,包括部署易受攻击的机器、识别Fuel CMS版本1.4及其相关CVE编号(CVE-2019-16278)。 2025-9-12 05:38:33 Author: infosecwriteups.com(查看原文) 阅读量:8 收藏

Deepika B

Lab Access: https://tryhackme.com/room/vulnerabilitycapstone

Task 1: Introduction

Ackme Support Incorporated recently launched a new blog. Their developer team has requested a security audit before creating and publishing content to the public.

It is your responsibility to do a security audit on the blog, looking for and exploiting any vulnerabilities that you discover.

[Question 1.1] Let’s get hacking

Answer: No answer is needed.

Task 2: Exploit the Machine (Flag Submission)

[Question 2.1] Deploy the vulnerable machine attached to this task & wait five minutes before visiting the vulnerable machine.

Answer: No answer is needed.

[Question 2.2] What is the name of the application running on the vulnerable machine?

Answer: Fuel CMS

[Question 2.3] What is the version number of this application?

Answer: 1.4

[Question 2.4] What is the number of the CVE that allows an attacker to remotely execute code on this application? (Format: CVE-XXXX-XXXXX)


文章来源: https://infosecwriteups.com/vulnerability-capstone-tryhackme-thm-1ab5dc385891?source=rss----7b722bfd1b8d---4
如有侵权请联系:admin#unsafe.sh