Summary

Upon enumeration of the web application, I was able to find a public exploit that allowed me to execute arbitrary commands on the target. This allowed me to get a reverse shell and then be able to elevate privileges by exploiting the SeImpersonatePrivilege.