Task 11 - Sensitive Data Exposure (Challenge)
Task 11 [Severity 3] Sensitive Data Exposure (Challenge)
What is the name of the mentioned directory?
HINT: Have a look at the source code on the /login page.
Navigate to the directory you found in question one. What file stands out as being likely to contain sensitive data?
Use the supporting material to access the sensitive data. What is the password hash of the admin user?
Crack the hash. What is the admin's plaintext password?
HINT: Read the supporting material
Login as the admin. What is the flag?
PreviousTask 7 - Broken Authentication PracticalNextTask 13 - XML External Entity - eXtensible Markup Language
Last updated