This is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is.
Post
malmoeb.bsky.social
malmoeb.bsky.social
did:plc:jbkp7rfrvzhhup3x7kaeiobt
1/ An attacker gained remote code execution on an outdated, internet-facing web application. The .bash_history of the compromised user (tomcat) revealed that the attacker had downloaded "PwnKit" from GitHub - an exploit targeting CVE-2021-4034, a well-known privilege escalation vulnerability.
2025-03-30T13:03:38.402Z