Astronaut 🔹

Enumeration

Web server has a file index with a grav page inside

Initial Access

Using this exploit https://github.com/CsEnox/CVE-2021-21425/blob/main/exploit.py we can get a shell

Privilege Escalation

We have php with suid bit

Post Exploitation

Get the flag