Databases
Databases
USE CASE:
If your current user is allowed to set UID and/or GID on a specific user in a database you can do:
update TABLE set gid=27 where uid=USER_UID (Sets the user to sudo group (sudo -s))update TABLE set gid=6 where uid=USER_UID (Sets the user to disk group (debugfs))DATABASE CREDENTIALS ENUMERATION
timeout 1 find /var/www -type f -name "*.php" -exec grep -Hn 'database_' {} \; 2>/dev/null (Search for files that contain database credentials)Last updated