Sea
Sea
Sea 620
Sea
RETIRED MACHINE

Sea

Sea - Linux Linux
Sea - Easy Easy

3.5

MACHINE RATING

8120

USER OWNS

7317

SYSTEM OWNS

10/08/2024

RELEASED
Created by FisMatHack
Copy Link
Copied to clipboard
Play Machine

Machine Synopsis

`Sea` is an Easy Difficulty Linux machine that features [CVE-2023-41425](https://nvd.nist.gov/vuln/detail/CVE-2023-41425) in WonderCMS, a cross-site scripting (XSS) vulnerability that can be used to upload a malicious module, allowing access to the system. The privilege escalation features extracting and cracking a password from WonderCMS's database file, then exploiting a command injection in custom-built system monitoring software, giving us root access.

Machine Matrix

Ready to start your
hacking journey?

Join Now
Products

Individuals

HTB Academy HTB Labs Elite Red Team Labs Capture The Flag Certifications

Teams

Academy for Business Dedicated Labs Professional Labs BlackSky: Cloud Labs Start a free trial
Solutions

Industries

Government Finance Manufacturing Healthcare Consulting
Pricing
For Individuals For Teams
Resources

Community

Blog Upcoming Events Meetups Forum Affiliate Program SME Program Ambassador Program Parrot OS

Get Help

Help Center Contact Support
Company
About us Careers Social Impact Brand Guidelines Certificate Validation Legal

Contact us

Press Partners Enterprise Sales

Store

HTB Swag Buy Gift Cards
Cookie Settings
Privacy Policy
User Agreement
© 2024 Hack The Box
Products

Individuals

HTB Academy HTB Labs Elite Red Team Labs Capture The Flag Certifications

Teams

Academy for Business Dedicated Labs Professional Labs BlackSky: Cloud Labs Start a free trial
Solutions

Industries

Government Finance Manufacturing Healthcare Consulting
Pricing
For Individuals For Teams
Resources

Community

Blog Upcoming Events Meetups Forum Affiliate Program SME Program Ambassador Program Parrot OS

Get Help

Help Center Contact Support
Company
About us Careers Social Impact Brand Guidelines Certificate Validation Legal

Contact us

Press Partners Enterprise Sales

Store

HTB Swag Buy Gift Cards
Cookie Settings
Privacy Policy
User Agreement
© 2024 Hack The Box