Ide
Ide
Ide
π Port Scanning & FTP Enumeration
π΅οΈ First, run an nmap scan:

π» As you can see, it is running Codiad 2.8.4. I searched for vulnerabilities, but we need login credentials to exploit them. Therefore, I checked the FTP server as an anonymous user first: 
π As you can see, there is a file inside the FTP directory named ....

π The username is john, but we donβt know the password yet. So, I brute-forced it using Caido:
The password is password.
π΅οΈ Codiad Exploitation
π‘ Now that we have the credentials, letβs try the exploit. I downloaded the exploit code from Exploitdb:
β‘ As you can see, I got a shell. You need to run both commands they provided: 
β‘ SSH & Privilege Escalation
This post is licensed under CC BY 4.0 by the author.







