CVEs-PoC/2017/CVE-2017-16082.md

### [CVE-2017-16082](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16082)
![](https://img.shields.io/static/v1?label=Product&message=pg%20node%20module&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%202.11.2%20%7C%7C%20%3E%3D%203.0.0%20%3C%203.6.4%20%7C%7C%20%3E%3D%204.0.0%20%3C%204.5.7%20%7C%7C%20%3E%3D%205.0.0%20%3C%205.2.1%20%7C%7C%20%3E%3D%206.0.0%20%3C%206.0.5%20%7C%7C%20%3E%3D%206.1.0%20%3C%206.1.6%20%7C%7C%20%3E%3D%206.2.0%20%3C%206.2.5%20%7C%7C%20%3E%3D%206.3.0%20%3C%206.3.3%20%7C%7C%20%3E%3D%206.4.0%20%3C%206.4.2%20%7C%7C%20%3E%3D%207.0.0%20%3C%207.0.2%20%7C%7C%20%3E%3D%207.1.0%20%3C%207.1.2%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Code%20Injection%20(CWE-94)&color=brightgreen)

### Description

A remote code execution vulnerability was found within the pg module when the remote database or query specifies a specially crafted column name. There are 2 likely scenarios in which one would likely be vulnerable. 1) Executing unsafe, user-supplied sql which contains a malicious column name. 2) Connecting to an untrusted database and executing a query which returns results where any of the column names are malicious.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/Threekiii/Awesome-POC
- https://github.com/Threekiii/Vulhub-Reproduce
- https://github.com/XiaomingX/awesome-poc-for-red-team
- https://github.com/bakery312/Vulhub-Reproduce
- https://github.com/nulldreams/CVE-2017-16082
- https://github.com/ossf-cve-benchmark/CVE-2017-16082