Realistic 2

Looks like we have some site takeover to do!

Let’s have a look at the source code and see if we can find something interesting there.

It seems there is some update.php script at work here. let’s see if we can find out more about it.

We seem to have a way in… just trying to open the door now. Let’s try a Blind SQLi and see if it works

And we are done!