Download VulnCMS: 1 from Vulnhub.com This box is all about CMS as its name suggests. We enumerate the box, find the CMS, and exploit in order to gain access to other and finally get the user and root flag Network scanning from nmap # nmap -sn 192.168.43.1/24