Forum Discussion
KieranRowley
Community Manager
24 days agoHi QuickSloth I have taken a look but I can't work out which lab you are referring to, please can you clarify the lab name?
QuickSloth
Bronze III
24 days agoDoes this help?
- netcat24 days ago
Silver II
The value is on the target system in /etc/flag.txt - not on the local system.
The target system has a vulnerability, maybe to spawn a shell allowing you to download the file, or a vulnerability in the database allowing to either read and display or to download the file.- QuickSloth24 days ago
Bronze III
Thanks
- QuickSloth9 days ago
Bronze III
Still confused.
I went and worked on the (optional) lab about Unions.
I get the general idea, but I'm not seeing where / how to do one of those commands in this lab.
- netcat6 days ago
Silver II
Did you do the lab "SQL Injection: sqlmap"?
Similar task, more guided.