SQL injection in the photo-gallery (10Web Photo Gallery) plugin prior to 1.5.35 for WordPress exists via the admin/controllers/Albumsgalleries.php album_id parameter.
EVM1
Desarrollo del CTF EVM1
1 Configuración de la VM
Download VM: wwwvulnhubcom/entry/evm-1,391/
La VM no funciona en VMWARE WORKSTATION (la interfaz de red no funciona) Solo funciona en VIRTUALBOX
2 Escaneo de Puertos
Nmap 791 scan initiated Tue Apr 20 09:32:39 2021 as: nmap -n -P0 -p- -sS -sC -sV -vv -T5 -oA full 19216856103
Nmap scan report for 19