# HTB-Editor        I find this [poc](https://github.com/dollarboysushil/CVE-2025-24893-XWiki-Unauthenticated-RCE-Exploit-POC)      Linpeas don't give anything value I started poking around the XWiki installation directory to see if any sensitive configuration files were lying around. A quick look under /usr/lib/xwiki/WEB-INF revealed a promising candidate — hibernate.cfg.xml. https://www.xwiki.org/xwiki/bin/view/Documentation/AdminGuide/Installation/InstallationWAR/InstallationMySQL/  Got the credentials theEd1t0rTeam99 and xwiki I try ssh to user oliver:theEd1t0rTeam99  I know that oliver user is in the netdata group.   I Find some SUID binaries, the one that interested is ndsudo and this one is owned by root and can be executed by netdata group. Luckily, oliver user is in the netdata group so we can execute it. When i search `/opt/netdata/usr/libexec/netdata/plugins.d/ndsudo` i found that ndsudo have [CVE-2024-32019](https://github.com/dollarboysushil/CVE-2024-32019-Netdata-ndsudo-PATH-Vulnerability-Privilege-Escalation)    I need to run in my kali and transfer to target machine