Possibly Related Threads…

celsius · (This post was last modified: 08-24-2024, 06:15 PM by celsius.)

Let the Hunger Games begins !

byteninja9 · (This post was last modified: 08-24-2024, 06:55 PM by byteninja9.)

Let's go, guys! Wink

UnkownWombat · 08-24-2024, 07:09 PM

/admin is an endpoint, also /admin/navbar.php midly interesting. admin is also a username confirmable by password reset option

olkn00b · 08-24-2024, 07:10 PM

found subdomain http://cacti.monitorsthree.htb/cacti/

UnkownWombat · 08-24-2024, 07:21 PM

most rce's look like they need creds

jsvensson · (This post was last modified: 08-24-2024, 07:25 PM by jsvensson.)

This is 1.2.26 version so CVE-2024-25641 - authenticated rce

hackemall · 08-24-2024, 07:27 PM

(_||| _) (/_(_|| (_| )

Extensions: php, aspx, jsp, html, js | HTTP method: GET | Threads: 25
Wordlist size: 11460

Output File: /home/kali/reports/http_cacti.monitorsthree.htb/_24-08-24_19-26-09.txt

Target: http://cacti.monitorsthree.htb/

[19:26:09] Starting:
[19:26:22] 301 - 178B - /app -> http://cacti.monitorsthree.htb/app/
[19:26:22] 200 - 13KB - /app/
[19:26:24] 301 - 178B - /cacti -> http://cacti.monitorsthree.htb/cacti/
[19:26:24] 200 - 14KB - /cacti/

AdenBilal · 08-24-2024, 07:43 PM

anybody got any working cve? most of these are for post login

celsius · 08-24-2024, 07:44 PM

someone found how to sqli the field ???

teky · 08-24-2024, 07:48 PM

ok what are the creds for cacti

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	[FREE] 300+ Writeups PDF HackTheBox/HTB premium retired	Tamarisk	360	88,710	03-28-2026, 09:28 AM Last Post: catsweet
	[FREE] HTB-ProLabs APTLABS Just Flags	kewlsunny	23	2,348	03-28-2026, 03:30 AM Last Post: lulaladrow
	[MEGALEAK] HackTheBox ProLabs, Fortress, Endgame - Alchemy, 250 Flags, leak htb-bot	htb-bot	87	7,490	03-27-2026, 07:22 PM Last Post: stn
	HTB Eloquia User and Root Flags - Insane Box	69646B	13	350	03-27-2026, 06:14 PM Last Post: vlxw
	HTB - ALL Challenges you Stuck in	osamy7593	2	646	03-27-2026, 04:24 PM Last Post: catsweet