https://le0pard.vercel.app/blog en-us Leopardplaysctf@gmail.com (Yasir Mehmood) Leopardplaysctf@gmail.com (Yasir Mehmood) Sun, 30 Nov 2025 00:00:00 GMT https://le0pard.vercel.app/blog/HTB-Era-Writeup https://le0pard.vercel.app/blog/HTB-Era-Writeup HTB Era exposes FTP and HTTP. VHOST enumeration reveals file.era.htb with a vulnerable file manager. An IDOR leaks a full backup, SQLite DB, and OpenSSL keys. Cracked creds and an unsafe admin-only PHP wrapper enable RCE. Abusing security questions grants admin, and a signed cron-executed binary leads to root access. Sun, 30 Nov 2025 00:00:00 GMT Leopardplaysctf@gmail.com (Yasir Mehmood) ALL BLOGSHack-The-BoxPentestingSeason-8LinuxMediumIDORPHPRCESUIDLateral-MovementCronjobSigned-BinaryPHP-WrappersOpenSSLssh2-wrapperInsecure-DesignELF-SigningSecure-CodingPEM-KeyHash-CrackingCron-AbuseBackup