technology software

documentation technical

forum community discussion

English

Domain 'xsspresso.com' uses the commercial generic top-level domain (.com) while skipping any subdomain. The second-level label 'xsspresso' is 9 characters long holding two vowels versus 7 consonants. Tokenizing the label suggests four words: xs, s, press, o. Average segment length settles at 1.5 characters. No strong language cues emerged from the frequency lists.

html/1f/ad/1fad271f-4d1a-4c69-8e75-86bbed2c54a6.html.gz

default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; img-src 'self' data: blob: https:; font-src 'self'; connect-src 'self'; frame-ancestors 'none'

inline; filename="4473ecc91f70f139-s.p.woff"

inline; filename="463dafcda517f24f-s.p.woff"

inline; filename="webpack-72dd953f1fc7139e.js"

inline; filename="fd9d1056-cd135c6fb2efaab2.js"

inline; filename="117-781861d6a9b21152.js"

inline; filename="main-app-2dcde4753ea0d175.js"

inline; filename="layout-b775c9a528043b63.js"

inline; filename="566-0e477a90f1ffae9a.js"

inline; filename="872-8c3383f21c115b82.js"

inline; filename="page-036a8ed869d0e929.js"

script-src 'none'; frame-src 'none'; sandbox;

inline; filename="page-cb9e4081a5a62225.js"

inline; filename="page-424e4d140242602a.js"

inline; filename="page-09dd0a2d59854c27.js"

inline; filename="page-5f5f0eab484522da.js"

inline; filename="page-07994b7ca99f0846.js"

inline; filename="page-eaa3f4d29cded57a.js"

7b6cb5d436531f9ad3725e3e8dde14894996ac24f9c69f4ba36340fc65aeacd9

0e61e07fa32517cfde5296ae40cf2912ec5b0ceefd925e46073ef62d0d463445

d7008163f1ed16ecb840d251190ac8a9d02132df87f25781faef1499945f9bdc

7bd6f41cfe0ce8b68c0fcfc0c580bf3f21c9d7b49f22665e6b21bb5ef49b476a

78b3186c908f618a35b735b247eec43c9fdc8b375bfa50c71b65427708f9f236

800c95ee8a97fe805c8458e6af4da72fc34ef571b32e5d5e557dc182d64589b5

b8bddf9481d859d648e1e050f8322eb3defe3dd3f9bd13f4c44dd6f2ecf5ab80

6c48c034b27a2ad2072be254dda2dfc7a9ac4aeafac56c4773285fe80ee73110

808c3a20dd5e4ec32d73600de7f4c00bd3fc91492f4957fbea39d858bb63fbae

7c152f15c1e5c7cd55c4136a41f8c870bedc6a62dcf69eff5b1db625505d00cd

11378fbda351c5d98f3f1ec0b8601ba1014b0e7e147b9e4fe858924f66c38a38

f771efe7f7bf48d6dc7cfced5d418e44c5ec296502c03a4b5df73880f8295e3a

750f530d246f9ecc78680beb4ffce7378ef9254c3177cc143d9dcd4fd6606983

5e34a37a1d5c29cd1e3a353ff9f09be59bb0faaf8ed0c6ccdefcec6ebf20e151

e851e1f4b5177c96a7f8f2ac835d376960ec06f9d8e5d080217013b5845585b0

43ef2d3ec8d5b620ec8c5fc2bfc14c3a9836620f75a0a14a0c025ab753cf6f68

4034c297fc8afa1b93a98b4673c0bc350ce15f6ad8fddabf8955f3cac65870f8

954f1f0974099eadf3dc586f48c3f39144826dc6e29e626abd78de86a46fc0e2

d38c01d7a35b1df77cd3e71ed5f3a15ff89ee500a7310758b56b7c723d246c52

a29e47e9ef67969a594888eb99b236e087f4f72add227d61e5d6c6e396f4d31f

84ec035848ea7a7455784d5ce1a317a386045d12833ae78181bb4f5e53728a46

471ff52330608992e57bb05909451a85ccac8f3481cd8c6b54a77170d117789d

c6f2077cefcc8856fb1cccb6fb4b718cf34e9e4c923774d2ab1c8ecbd18b8777

ecb3bc0166d0b88daf6085cd8c61017ecea0e3fd5f5ef8b7c4b6af1143f8de3b

Tiki Wiki CMS Groupware 21.1 - Authentication Bypass

Easy
Feb 2025
VHL — VPS1723
Webmin 1.991 on Ubuntu. CVE-2019-15107 arbitrary command execution via t

Easy
Feb 2025
VHL — Helpdesk
FTP with anonymous access reveals helpdesk application credentials. SQL

Easy
Feb 2025
VHL — Steven
Wing FTP Server on Windows. Default admin credentials allow access to the

viewport

TikiWiki CMS Groupware on CentOS. Exploited a known CVE for unauthenticated remote code execution to gain a shell.

description

author

CTF,HackTheBox,penetration testing,security research,writeups,OSCP,red team

keywords

robots

twitter:card

twitter:title

A personal log of my offensive security journey, including CTF writeups, projects, blog posts, certifications, and more.

twitter:description

twitter:image

next-size-adjust

html/1f/ad/1fad271f-4d1a-4c69-8e75-86bbed2c54a6_nodriver.html.gz

VHL — Tiki

Cloudflare, Inc.

XSSPRESSO.COM

(self.__next_f=self.__next_f||[]).push([0]);self.__next_f.push([2,null])

self.__next_f.push([1,"1:HL[\"/_next/static/media/4473ecc91f70f139-s.p.woff\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff\"}]\n2:HL[\"/_next/static/media/463dafcda517f24f-s.p.woff\",\"font\",{\"crossOrigin\":\"\",\"type\":\"font/woff\"}]\n3:HL[\"/_next/static/css/27b4d6b789fddb24.css\",\"style\"]\n4:HL[\"/_next/static/css/a8f71fd8c98f73de.css\",\"style\"]\n"])

self.__next_f.push([1,"5:I[2846,[],\"\"]\n8:I[4707,[],\"\"]\na:I[6423,[],\"\"]\nb:I[5528,[\"185\",\"static/chunks/app/layout-b775c9a528043b63.js\"],\"TooltipProvider\"]\nd:I[1060,[],\"\"]\n9:[\"slug\",\"vhl-tiki\",\"d\"]\ne:[]\n"])

self.__next_f.push([1,"0:[\"$\",\"$L5\",null,{\"buildId\":\"_ctg-eJSN_7JHf8S5QJ56\",\"assetPrefix\":\"\",\"urlParts\":[\"\",\"writeups\",\"vhl-tiki\"],\"initialTree\":[\"\",{\"children\":[\"writeups\",{\"children\":[[\"slug\",\"vhl-tiki\",\"d\"],{\"children\":[\"__PAGE__\",{}]}]}]},\"$undefined\",\"$undefined\",true],\"initialSeedData\":[\"\",{\"children\":[\"writeups\",{\"children\":[[\"slug\",\"vhl-tiki\",\"d\"],{\"children\":[\"__PAGE__\",{},[[\"$L6\",\"$L7\",null],null],null]},[null,[\"$\",\"$L8\",null,{\"parallelRouterKey\":\"children\",\"segmentPath\":[\"children\",\"writeups\",\"children\",\"$9\",\"children\"],\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$La\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":\"$undefined\",\"notFoundStyles\":\"$undefined\"}]],null]},[[null,[\"$\",\"$L8\",null,{\"parallelRouterKey\":\"children\",\"segmentPath\":[\"children\",\"writeups\",\"children\"],\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$La\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":\"$undefined\",\"notFoundStyles\":\"$undefined\"}]],null],null]},[[[[\"$\",\"link\",\"0\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/css/27b4d6b789fddb24.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\"}],[\"$\",\"link\",\"1\",{\"rel\":\"stylesheet\",\"href\":\"/_next/static/css/a8f71fd8c98f73de.css\",\"precedence\":\"next\",\"crossOrigin\":\"$undefined\"}]],[\"$\",\"html\",null,{\"lang\":\"en\",\"className\":\"dark\",\"children\":[\"$\",\"body\",null,{\"className\":\"__variable_1e4310 __variable_c3aa02 antialiased bg-black text-slate-100 min-h-screen\",\"children\":[\"$\",\"$Lb\",null,{\"children\":[\"$\",\"$L8\",null,{\"parallelRouterKey\":\"children\",\"segmentPath\":[\"children\"],\"error\":\"$undefined\",\"errorStyles\":\"$undefined\",\"errorScripts\":\"$undefined\",\"template\":[\"$\",\"$La\",null,{}],\"templateStyles\":\"$undefined\",\"templateScripts\":\"$undefined\",\"notFound\":[[\"$\",\"title\",null,{\"children\":\"404: This page could not be found.\"}],[\"$\",\"div\",null,{\"style\":{\"fontFamily\":\"system-ui,\\\"Segoe UI\\\",Roboto,Helvetica,Arial,sans-serif,\\\"Apple Color Emoji\\\",\\\"Segoe UI Emoji\\\"\",\"height\":\"100vh\",\"textAlign\":\"center\",\"display\":\"flex\",\"flexDirection\":\"column\",\"alignItems\":\"center\",\"justifyContent\":\"center\"},\"children\":[\"$\",\"div\",null,{\"children\":[[\"$\",\"style\",null,{\"dangerouslySetInnerHTML\":{\"__html\":\"body{color:#000;background:#fff;margin:0}.next-error-h1{border-right:1px solid rgba(0,0,0,.3)}@media (prefers-color-scheme:dark){body{color:#fff;background:#000}.next-error-h1{border-right:1px solid rgba(255,255,255,.3)}}\"}}],[\"$\",\"h1\",null,{\"className\":\"next-error-h1\",\"style\":{\"display\":\"inline-block\",\"margin\":\"0 20px 0 0\",\"padding\":\"0 23px 0 0\",\"fontSize\":24,\"fontWeight\":500,\"verticalAlign\":\"top\",\"lineHeight\":\"49px\"},\"children\":\"404\"}],[\"$\",\"div\",null,{\"style\":{\"display\":\"inline-block\"},\"children\":[\"$\",\"h2\",null,{\"style\":{\"fontSize\":14,\"fontWeight\":400,\"lineHeight\":\"49px\",\"margin\":0},\"children\":\"This page could not be found.\"}]}]]}]}]],\"notFoundStyles\":[]}]}]}]}]],null],null],\"couldBeIntercepted\":false,\"initialHead\":[null,\"$Lc\"],\"globalErrorComponent\":\"$d\",\"missingSlots\":\"$We\"}]\n"])

self.__next_f.push([1,"f:I[9096,[\"566\",\"static/chunks/566-0e477a90f1ffae9a.js\",\"872\",\"static/chunks/872-8c3383f21c115b82.js\",\"589\",\"static/chunks/app/writeups/%5Bslug%5D/page-036a8ed869d0e929.js\"],\"NavSearch\"]\n10:I[2972,[\"566\",\"static/chunks/566-0e477a90f1ffae9a.js\",\"872\",\"static/chunks/872-8c3383f21c115b82.js\",\"589\",\"static/chunks/app/writeups/%5Bslug%5D/page-036a8ed869d0e929.js\"],\"\"]\n11:I[8292,[\"566\",\"static/chunks/566-0e477a90f1ffae9a.js\",\"872\",\"static/chunks/872-8c3383f21c115b82.js\",\"589\",\"static/chunks/app/writeups/%5Bslug%5D/page-036a8ed869d0e929.js\"],\"default\"]\n13:I[9268,[\"566\",\"static/chunks/566-0e477a90f1ffae9a.js\",\"872\",\"static/chunks/872-8c3383f21c115b82.js\",\"589\",\"static/chunks/app/writeups/%5Bslug%5D/page-036a8ed869d0e929.js\"],\"BlogToc\"]\n16:{\"d\":\"M5 12h14\",\"key\":\"1ays0h\"}\n15:[\"path\",\"$16\"]\n18:{\"d\":\"m12 5 7 7-7 7\",\"key\":\"xquz4c\"}\n17:[\"path\",\"$18\"]\n14:[\"$15\",\"$17\"]\n"])

self.__next_f.push([1,"7:[[\"$\",\"$Lf\",null,{}],[\"$\",\"main\",null,{\"className\":\"min-h-screen pt-24 pb-20\",\"children\":[\"$\",\"div\",null,{\"className\":\"max-w-7xl mx-auto px-4 sm:px-6 lg:px-8\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex items-center gap-2 mb-8 text-xs font-mono text-slate-600\",\"children\":[[\"$\",\"$L10\",null,{\"href\":\"/writeups\",\"className\":\"hover:text-slate-400 transition-colors flex items-center gap-1\",\"children\":[[\"$\",\"$L11\",null,{\"iconNode\":[[\"path\",{\"d\":\"m12 19-7-7 7-7\",\"key\":\"1l729n\"}],[\"path\",{\"d\":\"M19 12H5\",\"key\":\"x3x0zl\"}]],\"className\":\"lucide-arrow-left w-3 h-3\"}],\" Writeups\"]}],[\"$\",\"$L11\",null,{\"iconNode\":[[\"path\",{\"d\":\"m9 18 6-6-6-6\",\"key\":\"mthhwq\"}]],\"className\":\"lucide-chevron-right w-3 h-3\"}],[\"$\",\"span\",null,{\"className\":\"text-slate-400 truncate max-w-[140px] sm:max-w-xs\",\"children\":\"VHL — Tiki\"}]]}],[\"$\",\"div\",null,{\"className\":\"flex gap-8\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex-1 min-w-0\",\"children\":[[\"$\",\"div\",null,{\"className\":\"mb-8\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex flex-wrap items-center gap-2 mb-4\",\"children\":[[\"$\",\"span\",null,{\"className\":\"px-2 py-0.5 rounded text-xs font-mono border text-blue-400 bg-blue-500/10 border-blue-500/20\",\"children\":\"Web\"}],[\"$\",\"span\",null,{\"className\":\"px-2 py-0.5 rounded text-xs font-mono border text-green-400 bg-green-500/10 border-green-500/20\",\"children\":\"Easy\"}],[\"$\",\"span\",null,{\"className\":\"px-2 py-0.5 rounded text-xs font-mono border text-yellow-400 bg-yellow-500/10 border-yellow-500/20\",\"children\":\"Linux\"}],\"$undefined\"]}],[\"$\",\"h1\",null,{\"className\":\"font-mono text-2xl sm:text-3xl font-black text-white mb-3\",\"children\":\"VHL — Tiki\"}],[\"$\",\"p\",null,{\"className\":\"text-slate-400 text-sm mb-4\",\"children\":\"TikiWiki CMS Groupware on CentOS. Exploited a known CVE for unauthenticated remote code execution to gain a shell.\"}],[\"$\",\"div\",null,{\"className\":\"flex flex-wrap items-center gap-4 text-xs font-mono text-slate-600\",\"children\":[[\"$\",\"span\",null,{\"className\":\"flex items-center gap-1\",\"children\":[[\"$\",\"$L11\",null,{\"iconNode\":[[\"path\",{\"d\":\"M8 2v4\",\"key\":\"1cmpym\"}],[\"path\",{\"d\":\"M16 2v4\",\"key\":\"4m81vk\"}],[\"rect\",{\"width\":\"18\",\"height\":\"18\",\"x\":\"3\",\"y\":\"4\",\"rx\":\"2\",\"key\":\"1hopcy\"}],[\"path\",{\"d\":\"M3 10h18\",\"key\":\"8toen8\"}]],\"className\":\"lucide-calendar w-3 h-3\"}],\"February 10, 2025\"]}],[\"$\",\"span\",null,{\"className\":\"flex items-center gap-1\",\"children\":[[\"$\",\"$L11\",null,{\"iconNode\":[[\"path\",{\"d\":\"M4 22V4a1 1 0 0 1 .4-.8A6 6 0 0 1 8 2c3 0 5 2 7.333 2q2 0 3.067-.8A1 1 0 0 1 20 4v10a1 1 0 0 1-.4.8A6 6 0 0 1 16 16c-3 0-5-2-8-2a6 6 0 0 0-4 1.528\",\"key\":\"1jaruq\"}]],\"className\":\"lucide-flag w-3 h-3\"}],\"Virtual Hacking Labs\"]}]]}],[\"$\",\"div\",null,{\"className\":\"flex flex-wrap gap-1.5 mt-3\",\"children\":[[\"$\",\"span\",\"TikiWiki\",{\"className\":\"text-[10px] font-mono px-2 py-0.5 rounded bg-white/5 text-slate-500\",\"children\":[\"#\",\"TikiWiki\"]}],[\"$\",\"span\",\"CMS\",{\"className\":\"text-[10px] font-mono px-2 py-0.5 rounded bg-white/5 text-slate-500\",\"children\":[\"#\",\"CMS\"]}],[\"$\",\"span\",\"RCE\",{\"className\":\"text-[10px] font-mono px-2 py-0.5 rounded bg-white/5 text-slate-500\",\"children\":[\"#\",\"RCE\"]}],[\"$\",\"span\",\"CVE\",{\"className\":\"text-[10px] font-mono px-2 py-0.5 rounded bg-white/5 text-slate-500\",\"children\":[\"#\",\"CVE\"]}]]}]]}],[\"$\",\"div\",null,{\"className\":\"h-px bg-gradient-to-r from-transparent via-white/10 to-transparent mb-8\"}],[\"$\",\"div\",null,{\"className\":\"prose prose-invert prose-sm max-w-none prose-headings:font-mono prose-headings:font-bold prose-h1:text-2xl prose-h2:text-xl prose-h2:mt-10 prose-h2:mb-4 prose-h3:text-base prose-h3:mt-6 prose-p:text-slate-300 prose-p:leading-relaxed prose-a:text-cyan-400 prose-a:no-underline hover:prose-a:text-cyan-300 prose-strong:text-white prose-code:text-cyan-400 prose-code:bg-white/5 prose-code:px-1.5 prose-code:py-0.5 prose-code:rounded prose-code:text-xs prose-code:font-mono prose-code:before:content-none prose-code:after:content-none prose-pre:!m-0 prose-pre:!p-4 prose-pre:!bg-[#0d1117] prose-pre:!rounded-none prose-pre:!border-0 prose-pre:overflow-x-auto prose-blockquote:border-l-cyan-500/40 prose-blockquote:text-slate-400 prose-table:text-sm prose-th:font-mono prose-th:text-slate-400 prose-td:text-slate-300 prose-li:text-slate-300 prose-img:rounded-lg prose-img:border prose-img:border-white/10 prose-img:my-6 \",\"children\":\"$L12\"}]]}],[\"$\",\"aside\",null,{\"className\":\"hidden xl:block w-52 flex-shrink-0\",\"children\":[\"$\",\"$L13\",null,{\"headings\":[{\"id\":\"nmap\",\"text\":\"nmap\",\"level\":1},{\"id\":\"80\",\"text\":\"80\",\"level\":1},{\"id\":\"8080\",\"text\":\"8080\",\"level\":1},{\"id\":\"tiki-wiki-cms-groupware-211---authentication-bypass\",\"text\":\"Tiki Wiki CMS Groupware 21.1 - Authentication Bypass\",\"level\":1},{\"id\":\"scheduler\",\"text\":\"scheduler\",\"level\":2},{\"id\":\"priv-esc\",\"text\":\"priv esc\",\"level\":1},{\"id\":\"capabilities-nl\",\"text\":\"capabilities (nl)\",\"level\":2},{\"id\":\"hashcat\",\"text\":\"hashcat\",\"level\":2},{\"id\":\"creds\",\"text\":\"creds\",\"level\":2}]}]}]]}],[\"$\",\"div\",null,{\"className\":\"mt-20 pt-10 border-t border-white/5\",\"children\":[[\"$\",\"p\",null,{\"className\":\"text-[10px] font-mono text-slate-600 uppercase tracking-wider mb-6\",\"children\":\"Up next\"}],[\"$\",\"div\",null,{\"className\":\"grid grid-cols-1 md:grid-cols-3 gap-4\",\"children\":[[\"$\",\"$L10\",\"vhl-vps1723\",{\"href\":\"/writeups/vhl-vps1723\",\"className\":\"group p-4 rounded-lg border border-white/5 bg-white/[0.02] hover:bg-white/[0.05] hover:border-white/10 transition-all\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex items-center justify-between mb-2\",\"children\":[[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono px-1.5 py-0.5 rounded border text-green-400 bg-green-500/10 border-green-500/20\",\"children\":\"Easy\"}],[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono text-slate-600\",\"children\":\"Feb 2025\"}]]}],[\"$\",\"p\",null,{\"className\":\"font-mono text-sm font-semibold text-slate-300 group-hover:text-white transition-colors mb-1 truncate\",\"children\":\"VHL — VPS1723\"}],[\"$\",\"p\",null,{\"className\":\"text-[11px] text-slate-600 line-clamp-2 mb-3\",\"children\":\"Webmin 1.991 on Ubuntu. CVE-2019-15107 arbitrary command execution via the password reset endpoint for instant root access.\"}],[\"$\",\"div\",null,{\"className\":\"flex items-center gap-1 text-[10px] font-mono text-cyan-500/60 group-hover:text-cyan-400 transition-colors\",\"children\":[\"Read writeup \",[\"$\",\"$L11\",null,{\"iconNode\":[[\"path\",{\"d\":\"M5 12h14\",\"key\":\"1ays0h\"}],[\"path\",{\"d\":\"m12 5 7 7-7 7\",\"key\":\"xquz4c\"}]],\"className\":\"lucide-arrow-right w-3 h-3\"}]]}]]}],[\"$\",\"$L10\",\"vhl-helpdesk\",{\"href\":\"/writeups/vhl-helpdesk\",\"className\":\"group p-4 rounded-lg border border-white/5 bg-white/[0.02] hover:bg-white/[0.05] hover:border-white/10 transition-all\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex items-center justify-between mb-2\",\"children\":[[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono px-1.5 py-0.5 rounded border text-green-400 bg-green-500/10 border-green-500/20\",\"children\":\"Easy\"}],[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono text-slate-600\",\"children\":\"Feb 2025\"}]]}],[\"$\",\"p\",null,{\"className\":\"font-mono text-sm font-semibold text-slate-300 group-hover:text-white transition-colors mb-1 truncate\",\"children\":\"VHL — Helpdesk\"}],[\"$\",\"p\",null,{\"className\":\"text-[11px] text-slate-600 line-clamp-2 mb-3\",\"children\":\"FTP with anonymous access reveals helpdesk application credentials. SQL injection and file upload lead to remote code execution.\"}],[\"$\",\"div\",null,{\"className\":\"flex items-center gap-1 text-[10px] font-mono text-cyan-500/60 group-hover:text-cyan-400 transition-colors\",\"children\":[\"Read writeup \",[\"$\",\"$L11\",null,{\"iconNode\":\"$14\",\"className\":\"lucide-arrow-right w-3 h-3\"}]]}]]}],[\"$\",\"$L10\",\"vhl-steven\",{\"href\":\"/writeups/vhl-steven\",\"className\":\"group p-4 rounded-lg border border-white/5 bg-white/[0.02] hover:bg-white/[0.05] hover:border-white/10 transition-all\",\"children\":[[\"$\",\"div\",null,{\"className\":\"flex items-center justify-between mb-2\",\"children\":[[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono px-1.5 py-0.5 rounded border text-green-400 bg-green-500/10 border-green-500/20\",\"children\":\"Easy\"}],[\"$\",\"span\",null,{\"className\":\"text-[10px] font-mono text-slate-600\",\"children\":\"Feb 2025\"}]]}],[\"$\",\"p\",null,{\"className\":\"font-mono text-sm font-semibold text-slate-300 group-hover:text-white transition-colors mb-1 truncate\",\"children\":\"VHL — Steven\"}],[\"$\",\"p\",null,{\"className\":\"text-[11px] text-slate-600 line-clamp-2 mb-3\",\"children\":\"Wing FTP Server on Windows. Default admin credentials allow access to the web admin panel, leading to command execution via scheduled tasks.\"}],[\"$\",\"div\",null,{\"className\":\"flex items-center gap-1 text-[10px] font-mono text-cyan-500/60 group-hover:text-cyan-400 transition-colors\",\"children\":[\"Read writeup \",[\"$\",\"$L11\",null,{\"iconNode\":\"$14\",\"className\":\"lucide-arrow-right w-3 h-3\"}]]}]]}]]}]]}]]}]}]]\n"])

self.__next_f.push([1,"c:[[\"$\",\"meta\",\"0\",{\"name\":\"viewport\",\"content\":\"width=device-width, initial-scale=1\"}],[\"$\",\"meta\",\"1\",{\"charSet\":\"utf-8\"}],[\"$\",\"title\",\"2\",{\"children\":\"VHL — Tiki\"}],[\"$\",\"meta\",\"3\",{\"name\":\"description\",\"content\":\"TikiWiki CMS Groupware on CentOS. Exploited a known CVE for unauthenticated remote code execution to gain a shell.\"}],[\"$\",\"meta\",\"4\",{\"name\":\"author\",\"content\":\"xsspresso\"}],[\"$\",\"meta\",\"5\",{\"name\":\"keywords\",\"content\":\"CTF,HackTheBox,penetration testing,security research,writeups,OSCP,red team\"}],[\"$\",\"meta\",\"6\",{\"name\":\"robots\",\"content\":\"index, follow\"}],[\"$\",\"meta\",\"7\",{\"property\":\"og:title\",\"content\":\"VHL — Tiki\"}],[\"$\",\"meta\",\"8\",{\"property\":\"og:description\",\"content\":\"TikiWiki CMS Groupware on CentOS. Exploited a known CVE for unauthenticated remote code execution to gain a shell.\"}],[\"$\",\"meta\",\"9\",{\"property\":\"og:type\",\"content\":\"article\"}],[\"$\",\"meta\",\"10\",{\"property\":\"article:published_time\",\"content\":\"2025-02-10\"}],[\"$\",\"meta\",\"11\",{\"property\":\"article:tag\",\"content\":\"TikiWiki\"}],[\"$\",\"meta\",\"12\",{\"property\":\"article:tag\",\"content\":\"CMS\"}],[\"$\",\"meta\",\"13\",{\"property\":\"article:tag\",\"content\":\"RCE\"}],[\"$\",\"meta\",\"14\",{\"property\":\"article:tag\",\"content\":\"CVE\"}],[\"$\",\"meta\",\"15\",{\"name\":\"twitter:card\",\"content\":\"summary\"}],[\"$\",\"meta\",\"16\",{\"name\":\"twitter:title\",\"content\":\"xsspresso\"}],[\"$\",\"meta\",\"17\",{\"name\":\"twitter:description\",\"content\":\"A personal log of my offensive security journey, including CTF writeups, projects, blog posts, certifications, and more.\"}],[\"$\",\"meta\",\"18\",{\"name\":\"twitter:image\",\"content\":\"https://xsspresso.com/avatar.png\"}],[\"$\",\"link\",\"19\",{\"rel\":\"icon\",\"href\":\"/favicon.ico\",\"type\":\"image/x-icon\",\"sizes\":\"1024x1024\"}],[\"$\",\"link\",\"20\",{\"rel\":\"icon\",\"href\":\"/favicon.ico\"}],[\"$\",\"meta\",\"21\",{\"name\":\"next-size-adjust\"}]]\n6:null\n"])

self.__next_f.push([1,"19:I[3567,[\"566\",\"static/chunks/566-0e477a90f1ffae9a.js\",\"872\",\"static/chunks/872-8c3383f21c115b82.js\",\"589\",\"static/chunks/app/writeups/%5Bslug%5D/page-036a8ed869d0e929.js\"],\"Pre\"]\n"])

self.__next_f.push([1,"12:[[\"$\",\"h1\",null,{\"id\":\"nmap\",\"children\":\"nmap\"}],\"\\n\",[\"$\",\"figure\",null,{\"data-rehype-pretty-code-figure\":\"\",\"children\":[\"$\",\"$L19\",null,{\"styl

Requests	IP Address	Location	AS Autonomous System
37	216.198.79.1	United States	AS16509Amazon.com, Inc.
37	1	-	-

Security Scan Report: xsspresso.com

Summary

AI Security Verdict

Low Risk

Risk Factors

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies3

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History