Foxhole

Premium Machine (Locked)

A PHP login form uses loose comparison to validate authentication tokens. Pass the right type — not the right value — to bypass the gate entirely. From inside the admin panel, abuse a misconfigured sudo tee policy to overwrite /etc/passwd and claim root.