If you can find vulnerability find it
- Once you have completely setup the wordpress you can login using username : theM7 password : Password123
- Submit the screenshot of executing the vulnerability to 0xthem7@gmail.com there is no flag you have to find bugs not flags
-
Make sure your databases are up and running fine
sudo systemctl status mysql
-
If it's disbaled like mine start with the following command
sudo systemctl start mysql
-
Check you sql credentials
sudo mysql_secure_installation -
Provide password for root it is required later on
-
Make sure to select No on this step
-
Login to mysql
-
Show databases
show databases;
in your case it may be different -
Note the database which contains user in my case its mysql
use <database name>show <tables>Note the database name and table name
-
Now make changes according to the creds we get from mysql
-
Fill the data and you are ready to go
-
Run the server using
php -S 127.0.0.1:8080 -t .