Use NMAP to identify the target machine (192.168.2.4) among (192.168.2.0/24)
Use NMAP to identify the service: PHP server on port 80
Discover the vulnerability: SQLInjection 
Get the list of databases
Get the list of tables
Get the list of credentials
Login as admin
Provide the FinalAnswer