This Python script demonstrates a time-based blind SQL injection exploit for MySQL databases, specifically designed for CVE-2024-32640. It can be used to verify vulnerability in a target URL, and if the vulnerability exists, extract information such as the current database name or the current MySQL user.
- Vulnerability Detection: Detects SQL injection vulnerability via time-based
SLEEPdelays. - Information Extraction: Dumps specific information (e.g., database name or user) character-by-character using binary search to optimize extraction speed.
- Proxy Support: Optional support for running requests through a local proxy (e.g., Burp Suite on localhost:8080).
- Python 3.x
- Requests Library: Install using
pip install requests
-u,--url: Target URL for single-target testing.-f,--file: Path to a file containing a list of URLs to test.-p,--proxy: Enable proxy mode (defaultlocalhost:8080) to route traffic through a proxy.--dump: Specify information to extract:dbname: Extract the name of the current database.user: Extract the current MySQL user.
To detect if a URL is vulnerable:
python3 CVE-2024-32640.py -u "https://example.com" --dump userTo extract the database name from multiple URLs:
python3 CVE-2024-32640.py -f urls.txt --dump dbnameRoute traffic through localhost:8080 (e.g., for use with Burp Suite):
python3 CVE-2024-32640.py -u "https://example.com" --dump user -p