• HackTheBox - ServMon

  03 Jun 2026

  Field Details OS Windows Difficulty Easy Release Date 2020-04-11 Pwned Date 2026-06-03 Tags ftp nvms-1000 nsclient++ CVE-2019-20085 directory traversal hydra ssh local port forwarding powershell reverse shell Summary ServMon is an easy Windows machine featuring an HTTP server that hosts an NVMS-1000 (Network Surveillance Management Software) instance. This is found...

• HackTheBox - BoardLight

  31 May 2026

  Field Details OS Linux Difficulty Easy Release Date 2024-05-25 Pwned Date 2026-05-31 Tags php ffuf subdirectory enumeration dolibarr CVE-2023-30253 enlightenment privilege escalation CVE-2022-37706 Summary BoardLight is an easy difficulty Linux machine that features a Dolibarr instance vulnerable to CVE-2023-30253. This vulnerability is leveraged to gain access as www-data. After enumerating...

• HackTheBox - Soccer

  27 May 2026

  Field Details OS Linux Difficulty Easy Release Date 2022-12-17 Pwned Date 2026-05-26 Tags Nginx blind sql injection doas misconfiguration dstat privilege escalation ffuf php sqlmap sqlmap websocket proxy tiny file manager web socket Summary Soccer is an easy difficulty Linux machine that features a Tiny File Manager service, which in...