From SQL injection to Shell III
This exercise covers how to gain access to an administration interface using SQL injection followed by how to get command execution using ImageTragick
Course
Make sure you check out PentesterLab PRO and PentesterLab PRO Enterprise to develop your skills.