ST03: injection Challenge (Solved)

Hack The Box Challenge
1

Hi Everyone.
We believe this a great place to do practice and an opportunity to grow your skill in information security. With this believing I’m throwing up this skill test (ST) challenge.

Find out and exploit the vulnerability and PM me with the poc.
Let’s see who can do it.

Challenge URL: http://104.129.171.125/ST3/

Note:

  • This is not a premium challenge (When Coming?)
  • The challenge in under this path /ST3/
  • POC done by any automation tools are not accepted.

Scoreboard

  1. @khan :star:
  2. @Sameull
  3. @Forhad
  4. @zero
3 Likes
2

done :slight_smile: @1337

3 Likes
4

PM me with the poc. :sunglasses:

2 Likes
6

hints ? :zipper_mouth_face:

2 Likes
7

@Shouvo This is not XSS or SQLi :wink:

2 Likes
8

Check PM @1337

Done

2 Likes
9

:zipper_mouth_face::zipper_mouth_face::zipper_mouth_face::zipper_mouth_face:

2 Likes
10

Hi, I just solved the problem. Please check your inbox.

2 Likes
11

Great!

1 Like
12

i am the only guy who can’t solve this problem :frowning:

3 Likes
13

i think if anyone give the solution in this problem, this is beneficial for us .

2 Likes
14

You are not only bro… :disappointed_relieved:

1 Like
15

@1337 Please make it little easy bro… :roll_eyes:

2 Likes
16

@Exploit-Baba @Shouvo It’s a RCE/OS Command Injection

2 Likes
17

:roll_eyes::roll_eyes::roll_eyes::roll_eyes::roll_eyes::roll_eyes:

1 Like
18

i know it’s command injection,but don’t understand which type :stuck_out_tongue:

1 Like
19

If any one share POC in this problem , thats help us.

2 Likes
20

@khan @Sameull bro… :disappointed_relieved:

1 Like