CCTVV is an easy-rated Linux machine on Hack The Box that targets common vulnerabilities in CCTV management software. The machine focuses on two platforms, ZoneMinder and motionEye. Initial access is obtained by exploiting a SQL injection vulnerability in ZoneMinder using tools like sqlmap, followed by privilege escalation through a known motionEye CVE.
You need to be signed in to access protected stories.
For hints/guidance/requests, you can join our Discord Server
*Following HTB policies, the solutions to live machines will not be shared publicly even on the Discord server.