Title: Hack.me - "Hackme Launch": root?
Post by: b4sh on January 25, 2013, 07:24:59 AM
I wonder if someone here did the hack.me "Hackme Launch" (https://hack.me/101052/vulnerable-webapp.html) too and managed to gain root access or revealed the administrator password.
Per sql injection I could read out the database with all it's user entries.
I haven't seen an admin account and i was not able to load the ".htaccess" file.
Has anyone of you found a way and may give me a hint?
Title: Re: Hack.me - "Hackme Launch": root?
Post by: MaXe on January 25, 2013, 08:11:49 AM
Hint: dumpfile, outfile, load data infile. If that doesn't work, UDF. That's all the hints you're getting from me today before I head of to bed ;D