Exploiting SQLi in EQ Enterprise Management System (CVE-2022-45297)

Exploiting SQLi in EQ Enterprise Management System (CVE-2022-45297)

OS

2024.1.*
2020.3.*
2019.4.*

Screenshots from the blog posts

images/cm0h8vtwq10c61hoc8fn5h0zb.webpimages/cm0h8vtwq10c61hoc8fn5h0zb.webp

Summary

In this post, we will be exploring the exploit for SQL injection in EQ Enterprise Management System (CVE-2022-45297). Due to SQLi in MSSQL environment, the SQLi can lead to RCE, which is shown in the example script usage. The post also covers the detailed breakdown of the exploitation script.

general

Description

@secatgourity

175 posts

Total vcoins

113.7K

Social media links

Comments (0)