Github release
This commit is contained in:
igomeow
@@ -1,7 +1,12 @@
|
||||
*## Vulnerable Application
|
||||
The pgAdmin versions up to 8.4 are vulnerable to a Remote Code Execution (RCE) flaw through the validate binary path API. This vulnerability allows attackers to run arbitrary code on the server hosting pgAdmin, which poses a significant threat to the integrity of the database management system and the security of its underlying data.
|
||||
## Vulnerable Application
|
||||
The pgAdmin versions up to 8.4 are vulnerable to a Remote Code Execution (RCE) flaw through the validate binary path API.
|
||||
This vulnerability allows attackers to run arbitrary code on the server hosting pgAdmin, which poses a significant
|
||||
threat to the integrity of the database management system and the security of its underlying data.
|
||||
|
||||
The exploit can be executed in both authenticated and unauthenticated scenarios. When valid credentials are available, Metasploit can log in to pgAdmin, upload a malicious payload using the file management plugin, and then execute it via the validate_binary_path endpoint. This vulnerability is specific to Windows targets. If authentication is not required by the application, Metasploit can directly upload and trigger the payload through the validate_binary_path endpoint.
|
||||
The exploit can be executed in both authenticated and unauthenticated scenarios. When valid credentials are available,
|
||||
Metasploit can log in to pgAdmin, upload a malicious payload using the file management plugin, and then execute it via
|
||||
the validate_binary_path endpoint. This vulnerability is specific to Windows targets. If authentication is not required
|
||||
by the application, Metasploit can directly upload and trigger the payload through the validate_binary_path endpoint.
|
||||
|
||||
## Verification Steps
|
||||
|
||||
|
||||
Reference in New Issue
Block a user