In this presentation we will look at how to escalate privileges on web applications. I will focus on Wordpress and other common web applications and how gaining access to a low privileged user or exploiting certain vulnerabilities, such as XSS or insecure Cross-domain policies, can lead to a full system compromise. I will give real examples based on experiences gained during pentest gigs and show how far one can get by hopping from one vulnerability to another. Some of these issues are by design so that solutions can be quite tricky, hence interesting. We will also discuss possible mitigation methods to address common scenarios. Note: with this presentation I plan to release a repository with useful working sample code hoping to make your penetration test demonstrations a little bit more interesting than alert boxes or reference links to third party websites.