Here we are presented with login page. Performing any SQL Injections or trying to trigger PHP Exception errors was not working. I googled CISCO default credentials and stumbled on the following page http://portforward.com/default_username_password/CISCO.htm, trying all credentials one by one I found a working one.
Username: root
Password: attack
After successfully logon we are presented with the following JavaScript alert message “alert(‘ssaptluafed_sigalf_cesofni’)”. Reading it backwards is the flag string.
