Back to directory

WRITEUP #4409

How to contact Google SRE: Dropping a shell in cloud SQL

SQL InjectionPrivilege escalationParameter injectionRCE

by@wtm_offensi(wtm@offensi.com)

Program

Google

Published

Aug 18, 2020

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://offensi.com/2020/08/18/how-to-contact-google-sre-dropping-a-shell-in-cloud-sql/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Exploiting authorization by nonce in WordPress plugins

RCEArbitrary file upload

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Escalating From Reader To Contributor In Azure API Management

Privilege Escalation

Built with ❤️ by Shubham Rawat