Jangow - walk through
This is a box from vulnhub that is rated easy by the author but depending on your skill level it may also be considered as medium. The box had a web application that was running which was misconfigured and one endpoint allowed command execution. The box also teaches you to test for password re-use and that’s how we managed to obtain the user flag.
to check out the walkthrough download the article