Path Variables

tar -cvf /root/.backup/pandora-backup.tar.gz /var/www/pandora/pandora_console/*

This line can be leveraged due to the command not using the full path for the tar binary

Drop a malicious file with the same name in your pwd and change the PATH variable;

 export PATH=$(pwd):$PATH
PreviousDockerNextGroups

Last updated