Web App Hacking (Lab series): CVE-2022-42889 (Text4Shell) – Offensive

Question

Hey all,Anyone have any luck with&nbsp;CVE-2022-42889 (Text4Shell) – Offensive?&nbsp; &nbsp;The first few questions were easy enough, but I have spent hours on the last one trying to get the token.&nbsp; On the attacker server, I can setup the listener, I don't believe my problem is there.&nbsp;I have tried many variations of URL encoding and various nc commands in the payload including ones similar to the blog post.&nbsp; If any one has any suggestions I would love to hear them!Thanks.J&nbsp;

xchenoh · Answer

I'm experiencing the exact same problem! I've been working on this lab for hours and have tried everything. Despite getting the "Processed: &lt;PAYLOAD&gt;" response each time, I was never able to retrieve token content from /token.txtThis seems like a systemic issue with the lab environment. Has anyone actually successfully completed this lab recently?&nbsp;