Please remember that VulnHub is a free community resource so we are unable to check the machines that are provided to us. Before you download, please read our FAQs sections dealing with the dangers of running unknown VMs and our suggestions for "protecting yourself and your network. If you understand the risks, please download!
This is an easy to intermediate box that shows you how you can exploit innocent looking php functions and lazy sys admins.
There are 4 flags in total to be found, and you will have to think outside the box and try alternative ways to achieve your goal of capturing all flags.
VM has been tested on VirtualBox 6.1.10 and VMWare (Fusion)
Enjoy! @theart42 and @4nqr34z