Ú׌Ÿõ
“ü–å    ‚p•‚`    Ž«‘EŽ«“T    ’€ð    –@§Ž·–±    ­ô–@–±    Œö—p•¶    ’n•ûŽ©Ž¡    ’n•ûÅ    ’n•ûŒö–±ˆõ    ‹‹—^    •s•žE‘i×    Œ´Žq—ÍЊQ    S—Šw    ’n•ûŒö‰cŠé‹Æ    à–±    ‘–¯Œ’N•ÛŒ¯    ‰îŒì    •ŸŽƒ    ˆã—à   response.write(9855901*9494713)    ' response.write(9855901*9494713) '    " response.write(9855901*9494713) "    response.write(9581213*9484238)    ' response.write(9581213*9484238) '    " response.write(9581213*9484238) "    response.write(9366262*9259193)    ' response.write(9366262*9259193) '    " response.write(9366262*9259193) "    response.write(9278549*9208774)    ' response.write(9278549*9208774) '    " response.write(9278549*9208774) "    response.write(9607660*9931195)    ' response.write(9607660*9931195) '    " response.write(9607660*9931195) "    response.write(9991539*9196797)    ' response.write(9991539*9196797) '    " response.write(9991539*9196797) "    response.write(9014177*9537599)    ' response.write(9014177*9537599) '    " response.write(9014177*9537599) "    response.write(9354717*9255206)    ' response.write(9354717*9255206) '    " response.write(9354717*9255206) "    response.write(9475004*9676008)    ' response.write(9475004*9676008) '    " response.write(9475004*9676008) "    response.write(9413869*9735455)    ' response.write(9413869*9735455) '    " response.write(9413869*9735455) "    response.write(9161617*9130424)    ' response.write(9161617*9130424) '    " response.write(9161617*9130424) "    response.write(9107114*9794399)    ' response.write(9107114*9794399) '    " response.write(9107114*9794399) "    response.write(9363325*9794048)    ' response.write(9363325*9794048) '    " response.write(9363325*9794048) "    response.write(9206394*9653189)    ' response.write(9206394*9653189) '    " response.write(9206394*9653189) "    response.write(9120282*9832087)    ' response.write(9120282*9832087) '    " response.write(9120282*9832087) "   
    SomeCustomInjectedHeader:injected_by_wvs    ${99446 100218}    ${99896 99858}    ${99087 100477}    ${99079 99398}    ${99447 99880}    ${99212 99836}    ${99920 100299}    ${100329 99078}    ${100043 99252}    ${99962 99881}    ${99196 100344}    ${100284 100055}    ${100260 100485}    ${99442 100122}    ${99670 100263}    ‚p•‚`&n967079    aEoxSzZzak05bm51bUFERTVsS0hRQW1tbHhmVmVsaUlEMmxWTEE2U3ZBTGpkc2t4aXJQVXZ3Y0NRSUdGNmQyY3ppN2NiSkRyR0xKRG1sWHA4V3hKNg    cFVzTGRITE91YmdxV1BuWmR6UzN4Y1V6bUdueHR2ZDlEUGgyRjNsSzhQQ2lob1dMbGxuc29BU2FWczN2c0tzUnY2SzBJVHFyMWlPY1RNNFVEakVURw    ajZydEx5ajVYTDJQUWVXVTBKWnBnSm1LVG5qMGN3TlZ6STFUUGJiRXVINWdXWnV4NGdzdjhaMGd5TDdqTzNHNWNnQTBYWFB0SEMzU2d4YkEzRHlxYw    b0JjMWVEa253Q2ZBSXF0Wlp2dGkyUG02MUl4eElOeWl0cmw4ZlJEb1BJUWtOQ0k1YmFPQ09SeDBwM2poM05yanpERVZJZWRBRVJyVE05c1ZIUzJ4OA    U3hFYjR2N0ZhbTN1aVVrYURvVzVpald4SjFqQU5rV0RFZ0k2SjlYTklheDNCbXBFRGttZFFoSWFrTTFvSGhSUEkyVmlhbmFvZlFQRnFPemxzN3RVRg    TFlSNUJ3OXAyYnZJa1lUM2IyR0IyYk5zQk1pOVFFMUdjQ0J1S0l3V1hTYUZoNm1LcTlGMUV3d0N0NktUdVNKRERTUXdObTY0aXk3a1pWZ1JaRGJWRw    VlpoYVFVaHBXT3A4S1Nhbll3b2dlRk9yNkw5dGJRcVpDQnNDdVF5TUhubTMwYkxSbVh1amZGT3dpRVVXcGxKdXRWNG5weDRiek0ySHJEbllYaU9EdQ    VlA5dmtXY1ptczI1aXdVQ1dXaDRzMFRFdFRtMXpjT1V4a1k0Mm1EUThtdGV0M3JIRWJVNUgzNGM1cXliUlpRRGhkOVNPY085MURPWmFGSklDVXVLSw    SVVPQnJPZUdXZUc0UUFqRGhOR0ZpVnlxVEZlQkRGSjBLd1h3b1RMNjNyM0RkYVRNTkE5UHhlbXRjdXZMNTZSbk9tYnVRZ2NtT3J6UlNvMWxFdVV5dQ    RjQxajBXNGNuRWRTbU04ZlI5bDg2TGFZTlhpTmFwZHRmMU5oV0JRZkhIVkNTVVVHZHRCWkY3YnVrekhSbzNPU3hxdzFHNEVQQjhGN21mM0dpM29IdQ    SGZwbXdqQ05TUnVRQjl4MWlkcGhoOGNwYTBqSFN6dnZYV2dLMnRYYUgwa0VYNEhVaVlFZzB5bzlHbjA5TTc1bDIxbVQwc3hGR3dieXJ4em1ZV0JqOA    MlRVTllHU2hETzBBY1dpcWQwNWRsMlEwU3BIZ2ZlZERvTFh6eEpROXJRcGdBS3VPenM3ZmF0c011TjVxQ3N5SndoSjNuMU9zTUl6MXlORWFoQkpxTQ    RHFCbEZBSTNmQ3dqWUk5VEEyVERDUDAxbUlCcTV0TjdvZk93TjhMeHBGUUp5TW1GdDBKRzkxQnVBZU5ZWmpWcGw4a1NacGlrMmdUdWtPODUwUGRldw    aDFIVTlWU010UTl0UmphTGN6M2d4SFd2cE5NcU9NVXJ0U1JpcHBHdHpZNjJkcnpyMm5FTUNSRkFlWHNKU0FWMXBvWDhFd3Q1U3NxeVFtQmthbFVoeQ    WlhGRDBPYlVXTDk1ZVlzOE5WZDFMWVhZM2h5QVVLazI0amJIdDRmUGhnOXN0MXpOY2xFRHBoWXJoWjVXb29XU0MyMkFvZGF1SW5oeDJ5a2lvSTdVZA    12345'"\'\");|]*{
<>¿''
    http://testasp.vulnweb.com/t/xss.html?%00.jpg    '"()    set|set&set    'set|set&set'    "set|set&set"   
set|set&set
    `set|set&set`    ;set|set&set;    )    !(()&&!|*|*|    ^(#$!@#$)(()))******    http://hitUvd9GRv3zU.bxss.me/    http://hittQtnyWv9jD.bxss.me/    http://hitXJYzItwksQ.bxss.me/    http://hit9BW6JfnJOC.bxss.me/    http://hitTD9bNTEiF4.bxss.me/    http://hitAu2SJKkmHd.bxss.me/    http://hitc8JPJTIsgl.bxss.me/    http://hit4ADOQqgDXZ.bxss.me/    http://hitzERcqklRBV.bxss.me/    http://hit5vcK7SPW4a.bxss.me/    http://hitz6qYsiuVg2.bxss.me/    http://hittlNNJ7RXjD.bxss.me/    http://hit7rvvii8D7K.bxss.me/    http://hit6fx9GlytWQ.bxss.me/    http://hitWTVyKemM61.bxss.me/    )))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))    www.acunetix.com    yoshelf-regi.cgi    yoshelf-regi.cgi    yoshelf-regi.cgi/.    http://some-inexistent-website.acu/some_inexistent_file_with_long_name?.jpg    1some_inexistent_file_with_long_name.jpg    testasp.vulnweb.com    Http://testasp.vulnweb.com/t/fit.txt    http://testasp.vulnweb.com/t/fit.txt?.jpg    ;print(md5(acunetix_wvs_security_test));    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ${@print(md5(acunetix_wvs_security_test))}    ${@print(md5(acunetix_wvs_security_test))}\    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    '"    ";print(md5(acunetix_wvs_security_test));$a    <!--    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    ';print(md5(acunetix_wvs_security_test));$a    ";print(md5(acunetix_wvs_security_test));$a    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60'"()&%<ScRiPt    >prompt(971851)</ScRiPt>    '"()&%<ScRiPt    >prompt(958548)</ScRiPt>    >prompt(947551)</ScRiPt>    >prompt(902041)</ScRiPt>    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_989722    >prompt(904806)</ScRiPt>    UoPGjwv1    >prompt(990332)</ScRiPt>    -1    OR    2 369-369-1    --    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_989106    -1'    2 855-855-1    -1"    2 787-787-1    >prompt(902380)</ScRiPt>    if(now()    sleep(9)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    0))OR"*/    (select(0)from(select(sleep(9)))v)/*' (select(0)from(select(sleep(9)))v) '" (select(0)from(select(sleep(9)))v) "*/    >prompt(970780)</ScRiPt>    nFikhUh6';    waitfor    delay    '0:0:9'    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_964472    2rPDqFYZ');    '0:0:3'    >prompt(996656)</ScRiPt>    >prompt(934799)</ScRiPt>    pmjwGSav'));    7NSd6zwX';select    pg_sleep(3);    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_961933    PeAAu4gs');select    MOJLSjky'));select    >prompt(981750)</ScRiPt>    >prompt(932153)</ScRiPt>    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_971121    IdntrWt8    >prompt(958814)</ScRiPt>    2 587-587-1    2 612-612-1    >prompt(931539)</ScRiPt>    2 826-826-1    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_980875    if(now()    sleep(4)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    >prompt(970649)</ScRiPt>    (select(0)from(select(sleep(8)))v)/*' (select(0)from(select(sleep(8)))v) '" (select(0)from(select(sleep(8)))v) "*/    >prompt(953476)</ScRiPt>    dZyOdmFL';    '0:0:8'    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_990296    SsWia8TD');    zvqlwJxx'));    >prompt(986663)</ScRiPt>    >prompt(989498)</ScRiPt>    q6wyxFXQ';select    pg_sleep(8);    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_956795    >prompt(933530)</ScRiPt>    eBNk91iO');select    >prompt(960673)</ScRiPt>    YTmRWU8C'));select    pg_sleep(12);    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_962894    >prompt(929658)</ScRiPt>    >prompt(913262)</ScRiPt>    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_922068    qSKcRopq    >prompt(994266)</ScRiPt>    2 490-490-1    >prompt(937693)</ScRiPt>    2 958-958-1    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_987939    2 748-748-1    >prompt(914531)</ScRiPt>    >prompt(941958)</ScRiPt>    if(now()    sleep(15)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_945990    (select(0)from(select(sleep(15)))v)/*' (select(0)from(select(sleep(15)))v) '" (select(0)from(select(sleep(15)))v) "*/    >prompt(976795)</ScRiPt>    FhnwfDht';    '0:0:15'    >prompt(991766)</ScRiPt>    QpkC8LPR');    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_976483    w067KOAo'));    zClyzws2';select    pg_sleep(5);    HJdIszuR');select    >prompt(920226)</ScRiPt>    cLOkVMHj'));select    %93%fc%96%e5%20%96%40%90%a7%8e%b7%96%b1%20%90%ad%8d%f4%96%40%96%b1%20%82p%81%95%82%60_958492    Wh1gKukX    2 327-327-1    2 852-852-1    2 724-724-1    if(now()    sleep(6)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    (select(0)from(select(sleep(6)))v)/*' (select(0)from(select(sleep(6)))v) '" (select(0)from(select(sleep(6)))v) "*/    RH4GBrWE';    '0:0:12'    oFSqmJYH');    UCmqIaEX'));    Nnse2DZj';select    pg_sleep(18);    LYBwMrzC');select    UJDRQNCO'));select    ETAunztd    2 516-516-1    2 663-663-1    2 39-39-1    if(now()    sleep(7)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    (select(0)from(select(sleep(7)))v)/*' (select(0)from(select(sleep(7)))v) '" (select(0)from(select(sleep(7)))v) "*/    xYCl77zq';    '0:0:7'    PbqiL43H');    160JfBha'));    IlflTs3y';select    pg_sleep(14);    oKQR8qgV'));select    KNuVJFdL    2 644-644-1    2 462-462-1    2 945-945-1    if(now()    sleep(16)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    (select(0)from(select(sleep(16)))v)/*' (select(0)from(select(sleep(16)))v) '" (select(0)from(select(sleep(16)))v) "*/    rAzC5OpJ';    '0:0:16'    N8WQK86a');    '0:0:24'    NqU3F9DM'));    1wDTWl3L';select    pg_sleep(24);    DbnJ6uHx'));select    E0euvmaL    2 594-594-1    2 309-309-1    2 510-510-1    if(now()    sleep(27)    0)/*'XOR(if(now()    0))OR'"XOR(if(now()    (select(0)from(select(sleep(9)))v)/*' (select(0)from(select(sleep(9)))v) '" (select(0)from(select(sleep(9)))v) "*/    xtiS6B9q';    lCCtcuSP');    SVEfvM3A'));    Pvp3gDtV';select    pg_sleep(9);    I4KziiWR');select    AxbVCKIA'));select    Yiq7FzaR    2 935-935-1    2 366-366-1    2 350-350-1    INNRUTzQ    2 636-636-1    2 519-519-1    aE8e7VG9    2 741-741-1    2 120-120-1    2 102-102-1    9DqAujrk    2 749-749-1    2 706-706-1    2 453-453-1    S6SBUwwc    2 891-891-1    2 558-558-1    UE6VDzgv    2 109-109-1    2 146-146-1    2 480-480-1    mUnYVTHj    2 34-34-1    2 129-129-1    TfA80VWQ    2 668-668-1    2 917-917-1    2 369-369-1    1'"    \    1¨¤xa7¨¤¡é    JyI    ?'?"    e''e""    @@HUWQ3    JyI    @@xgaOM    JyI    @@zIOQt    JyI    @@1xNSo    JyI    @@Kzizl    JyI    @@pb96F    JyI    @@kh0As    JyI    @@0y7k0    JyI    @@UlS1s    @@cd1il    JyI    @@G1JFr    JyI    @@9avqK    JyI    @@jrNBE    JyI    @@wvXvt    JyI    ../../../../../../../../../../etc/passwd    ..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00.jpg    ../../../../../../../../../../etc/passwd.jpg    Li4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vLi4vZXRjL3Bhc3N3ZAAucG5n    /../..//../..//../..//../..//../..//etc/passwd.jpg    .\\./.\\./.\\./.\\./.\\./.\\./etc/passwd    /etc/passwd    ../..//../..//../..//../..//../..//../..//../..//../..//etc/passwd    ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././etc/passwd    ..­..­..­..­..­..­..­..­etc/passwd    file:///etc/passwd    /\../\../\../\../\../\../\../etc/passwd    WEB-INF/web.xml    WEB-INF\web.xml    ../../../../../../../../../../windows/win.ini    ../../../../../../../../../../boot.ini    ../../../../../../../../../../windows/win.ini.jpg    ¬¬­¬¬­¬¬­¬¬­¬¬­¬¬­¬¬­¬¬­windows­win.ini    ................windowswin.ini    ..\..\..\..\..\..\..\..\windows\win.ini    /.\\./.\\./.\\./.\\./.\\./.\\./windows/win.ini    ../..//../..//../..//../..//../..//../..//../..//../..//windows/win.ini    ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././windows/win.ini    WEB-INF/web.xml?    WEB-INF\web.xml?   

Q&A•s•žR¸ƒnƒ“ƒhƒuƒbƒN @@ (No.2000)

‚p•‚` ]  [ •s•žE‘i× ]  

•]ŽÒF—È :2008/05/03 :‚¨‚·‚·‚ß“x@@ ‚±‚̃Gƒ“ƒgƒŠ[‚ð‚͂ĂȃuƒbƒNƒ}[ƒN‚ɒljÁ

@–@–±’S“–‚Æ‚µ‚Ä‘Š’k‚ðŽó‚¯‚é‚Æ‚«AŒˆ‚Ü‚Á‚Ä‘Š’kŽÒ‚ÌŠçF‚ª•Ï‚í‚Á‚Ä‚¢‚é‚Ì‚ªA‘i‚¦‚ç‚ꂽ‚Æ‚«‚Æ•s•ž\—§‚Ä‚ª‚³‚ꂽ‚Æ‚«‚Å‚·B‘iׂȂç‚Îi‚¨‹à‚Í‚©‚©‚è‚Ü‚·‚ªj•ÙŒìŽm‚É‚¨Šè‚¢‚·‚é‚Æ‚¢‚¤Žè‚ª‚ ‚è‚Ü‚·‚ªA•s•žR¸‚ÍŽ©‘O‚Å‚±‚È‚³‚È‚­‚Ä‚Í‚È‚è‚Ü‚¹‚ñB
@‚»‚ñ‚È^‚Á‚Ȋç‚Ì‘Š’kŽÒ‚ɑ΂µ‚Ä‚¨Š©‚ß‚µ‚Ä‚¢‚é‚Ì‚ª‚±‚Ì–{‚Å‚·B•s•žR¸‚ði‚ß‚éÛ‚É•ø‚­ƒƒWƒƒ[‚È‹^–â‚Ì‚Ù‚Æ‚ñ‚Ç‚ª‹LÚ‚³‚ê‚Ä‚¢‚é‚ÆŽv‚¢‚Ü‚·B‚p•‚`‚Æ‚µ‚Ä‚¾‚¯‚Å‚È‚­A•s•žR¸‚̃}ƒjƒ…ƒAƒ‹‚Æ‚µ‚Ä‚àŠˆ—p‚Å‚«‚Ü‚·B‚P‰Û‚É‚Pûí”õ‚µ‚Ä‚à‚æ‚¢‚Ì‚Å‚Í‚È‚¢‚Å‚µ‚傤‚©H
@s­•s•žR¸–@‚̉ü³‚ɂ‚¢‚Ä‚Í–{‘‰ï‚Éã’ö‚³‚ê‚Ä‚¢‚Ü‚·‚ªA‚·‚®‚ɉŒˆ‚³‚ê‚Ä‚àŽ{s‚Í‚Q”N‚Ù‚Çæ‚̘bB‚Ü‚¾‚Ü‚¾‚±‚Ì–{‚ªŠˆ–ô‚·‚éê–Ê‚Í‘½‚¢‚ÆŽv‚¢‚Ü‚·B
@ƒRƒƒ“ƒg
s­•s•žR¸‚ÉŠÖ‚·‚éŽÀ–±“I‚Èo”Å•¨i‰ÁœŽ®‚𜂭j‚ÍAˆÓŠO‚Æ­‚È‚¢‚±‚Æ‚à‚ ‚Á‚ÄA
‚±‚Ì–{‚Í—L‰v‚É—˜—p‚µ‚Ä‚¢‚Ü‚·B

‘tŠy‚Ì—·:2008/05/07 (No.2001)

ƒRƒƒ“ƒgíœF No ƒpƒXƒ[ƒh

ƒRƒƒ“ƒg“Še@@@(ƒRƒƒ“ƒg“Še‚Í10Œ‚Å’÷‚ßØ‚è‚Ü‚·)

–¼‘O   ƒpƒXƒ[ƒh  (Ž©ŒÈ휗pB8•¶ŽšˆÈ“à‰p”Žš)

    “Še‚Ì‘O‚ÉŽg‚¢•û‚Æ’ˆÓ“_‚ðŠm”F‚µ‚Ä‚­‚¾‚³‚¢B


‚¨‚·‚·‚ß“x


Q&A•s•žR¸ƒnƒ“ƒhƒuƒbƒN

F’˜
‚¬‚傤‚¹‚¢F”­s
  (2003-12)
3,500
ISBNF4324071209
Amazon‚ÅŒ©‚é