In this video, I provide a detailed walkthrough of the "Smol" challenge room on TryHackMe.
At the heart of Smol is a WordPress website, a common target due to its extensive plugin ecosystem. The machine showcases a publicly known vulnerable plugin, highlighting the risks of neglecting software updates and security patches.
We also exploit a backdoored plugin, emphasizing the significance of static code review before installing Wordpress plugins.
Enjoy!
----
Hack Smarter: https://hacksmarter.org
Smol: https://tryhackme.com/room/smol