CVE-2025-1094

This PoC exploits CVE-2025-1094, a PostgreSQL SQL injection vulnerability that escalates to RCE via WebSocket hijacking. It demonstrates file exfiltration and reverse shell execution.

This repository contains a working proof-of-concept for CVE-2025-1094, a SQL injection vulnerability in PostgreSQL versions prior to 17.3, 16.7, 15.11, 14.16, and 13.19. The exploit leverages an encoding mismatch between client and server to execute arbitrary SQL commands, including reading sensitive files like /etc/passwd.

This repository contains a functional PoC for CVE-2025-1094, demonstrating a PostgreSQL multi-byte SQL injection vulnerability in the `pg-native` Node.js library when using older versions of `libpq` with multi-byte character encodings like BIG5 or EUC_TW.

This repository contains a functional exploit for CVE-2025-1094, targeting PostgreSQL's psql tool via malformed UTF-8 input to achieve SQL injection and remote code execution using the COPY TO PROGRAM feature.

This PoC exploits CVE-2025-1094, a PostgreSQL input sanitization vulnerability in BIG5 encoding, to achieve SQL injection and potentially RCE via COPY TO PROGRAM. It demonstrates how improperly sanitized input can bypass query boundaries and execute arbitrary commands.

This Metasploit module exploits an unauthenticated remote code execution vulnerability in BeyondTrust Privileged Remote Access (PRA) and Remote Support (RS) by leveraging command injection via WebSocket communication. It targets versions 25.3.1 and prior for RS and 24.3.4 and prior for PRA.

This Metasploit module exploits an unauthenticated RCE vulnerability in BeyondTrust PRA/RS (versions ≤ 24.3.1) by leveraging argument injection (CVE-2024-12356) and SQL injection (CVE-2025-1094) via WebSocket communication. It includes checks for target version and site discovery.