After we started searching, we found 2 entry points and robots file:

/admin.php

/urlcapture.php

/robots.txt

Robots set to disallow web crawlers from /server-status.

Let's take a look for /urlcapture.php, this entry point captures url and converts to png.
Let's capture:
```
http://localhost/server-status
```
and we see server-status page.

If you look closely at the requests to the server, you can find request with root credentials.

```
root:EYNDR4NhadwX9rtef
```

Let's try this credentials on /admin.php