In this tutorial, I went through Database exploitation through the use of user-defined functions. The vulnerabilities in user-defined functions can be exploited on MariaDB and MYSQL with slight modifications in the path of the plugin directory. Then through the system execution function and with our shellcode created we can use our root access to the database to establish and jump from MySQL into a system-wide root reverse shell.
---
Receive video documentation
https://www.youtube.com/channel/UCNSdU_1ehXtGclimTVckHmQ/join
----
Do you need private cybersecurity training? sign up here
https://motasem-notes.net/cybersecurity-consultation/
--
Twitter
https://twitter.com/ManMotasem
LinkedIn
https://www.linkedin.com/in/motasem-hamdan-7673289b/
Instagram
https://www.instagram.com/mo.vultu/
Facebook
https://www.facebook.com/motasemhamdantty
--