↓Skip to main content

SUITECRM

OFFSEC - Proving Grounds - CRANE

14 August 2025·1533 words·8 mins

OSCP OFFSEC PG PRACTICE SUITECRM

SuiteCRM on port 80 has weak admin:admin credentials. Use CVE-2022–23940 for RCE, then escalate to root via sudo /usr/sbin/service