Add CVE-2025-1094

2025-10-07 10:18:47 +00:00
parent f4d69d2b9f
commit af32ef356a
2 changed files with 326 additions and 0 deletions
--- a/CVE-2025-1094/setup.sh
+++ b/CVE-2025-1094/setup.sh
@@ -0,0 +1,23 @@
+#!/bin/bash
+
+echo "[+] PostgreSQL 14.15 도커 이미지 다운로드 중..."
+sudo docker pull postgres:14.15
+
+echo "[+] PostgreSQL 14.15 컨테이너 배포 중..."
+sudo docker run --name vulnerable_postgres \
+-e POSTGRES_USER=postgres \
+-e POSTGRES_PASSWORD=postgres \
+-e POSTGRES_DB=testdb \
+-p 5432:5432 \
+-d postgres:14.15
+
+echo "[+] PostgreSQL 초기화 대기 중..."
+sleep 10
+
+echo "[+] 취약한 테이블 생성 중..."
+sudo docker exec -i vulnerable_postgres psql -U postgres -d testdb <<EOF
+CREATE TABLE users (id SERIAL PRIMARY KEY, username TEXT, password TEXT);
+INSERT INTO users (username, password) VALUES ('admin', 'password123');
+EOF
+
+echo "[✓] 설정 완료. 취약한 PostgreSQL 14.15가 실행 중입니다!"