Paper: use CVE-2019-17671 and CVE-2021-3560 where it fits the service, gain a shell, and escalate to root.
machinemachine
Wordpress
2 postsmachinemachine
Blog
Blog: abuse the WordPress foothold, stabilize the shell, and escalate through the local weakness.