| ทดสอบ(หัวข้อคำถามของท่าน) |
ชื่อผู็ติดต่อ/หรือผู็แจ้ง |
1 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and+0=0 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and+2=9 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'and'e'='e |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'and'c'='r |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456"and"l"="l |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456"and"h"="w |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'and/**/extractvalue(1,concat(char(126),md5(1531777322)))and' |
123456 |
0 |
| (select*from(select+sleep(0)union/**/select+1)a) |
123456 |
0 |
| 123456"and/**/extractvalue(1,concat(char(126),md5(1631509706)))and" |
123456 |
0 |
| (select*from(select+sleep(2)union/**/select+1)a) |
123456 |
0 |
| extractvalue(1,concat(char(126),md5(1128947282))) |
123456 |
0 |
| 123456'and(select*from(select+sleep(0))a/**/union/**/select+1)=' |
123456 |
0 |
| 123456'and(select'1'from/**/cast(md5(1211867778)as/**/int))>'0 |
123456 |
0 |
| 123456'and(select*from(select+sleep(2))a/**/union/**/select+1)=' |
123456 |
0 |
| 123456/**/and/**/cast(md5('1249654157')as/**/int)>0 |
123456 |
0 |
| 123456"and(select*from(select+sleep(0))a/**/union/**/select+1)=" |
123456 |
0 |
| convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1685750995'))) |
123456 |
0 |
| 123456"and(select*from(select+sleep(2))a/**/union/**/select+1)=" |
123456 |
0 |
| 123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1670595808')))>'0 |
123456 |
0 |
| 123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/ |
123456 |
0 |
| 123456鎈'"\( |
123456 |
0 |
| 123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/ |
123456 |
0 |
| 123456'"\( |
123456 |
0 |
| 123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0 |
123456 |
0 |
| 123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/ |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/ |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'and(select+1)>0waitfor/**/delay'0:0:0 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'and(select+1)>0waitfor/**/delay'0:0:2 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('v',0) |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456/**/and/**/2=DBMS_PIPE.RECEIVE_MESSAGE('a',2) |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('z',0)='z |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456'and/**/extractvalue(1,concat(char(126),md5(1988576702)))and' |
0 |
| 123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('u',2)='u |
123456 |
0 |
| 123456 |
123456"and/**/extractvalue(1,concat(char(126),md5(1504787115)))and" |
0 |
| 123456 |
extractvalue(1,concat(char(126),md5(1215473441))) |
0 |
| 123456 |
123456'and(select'1'from/**/cast(md5(1029169346)as/**/int))>'0 |
0 |
| 123456 |
123456/**/and/**/cast(md5('1587988448')as/**/int)>0 |
0 |
| 123456 |
convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1980062188'))) |
0 |
| 123456 |
123456'and/**/convert(int,sys.fn_sqlvarbasetostr(HashBytes('MD5','1723427518')))>'0 |
0 |
| 123456 |
123456鎈'"\( |
0 |
| 123456 |
123456'"\( |
0 |
| 123456 |
123456/**/and+1=1 |
0 |
| 123456 |
123456/**/and+4=9 |
0 |
| 123456 |
123456'and'u'='u |
0 |
| 123456 |
123456'and'r'='f |
0 |
| 123456 |
123456"and"c"="c |
0 |
| 123456 |
123456"and"n"="v |
0 |
| 123456 |
(select*from(select+sleep(0)union/**/select+1)a) |
0 |
| 123456 |
(select*from(select+sleep(2)union/**/select+1)a) |
0 |
| 123456 |
123456'and(select*from(select+sleep(0))a/**/union/**/select+1)=' |
0 |
| 123456 |
123456'and(select*from(select+sleep(2))a/**/union/**/select+1)=' |
0 |
| 123456 |
123456"and(select*from(select+sleep(0))a/**/union/**/select+1)=" |
0 |
| 123456 |
123456"and(select*from(select+sleep(2))a/**/union/**/select+1)=" |
0 |
| 123456 |
123456/**/and(select+1/**/from/**/pg_sleep(0))>0/**/ |
0 |
| 123456 |
123456/**/and(select+1/**/from/**/pg_sleep(2))>0/**/ |
0 |
| 123456 |
123456'/**/and(select'1'from/**/pg_sleep(0))::text>'0 |
0 |
| 123456 |
123456'/**/and(select'1'from/**/pg_sleep(2))::text>'0 |
0 |
| 123456 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:0'/**/ |
0 |
| 123456 |
123456/**/and(select+1)>0waitfor/**/delay'0:0:2'/**/ |
0 |
| 123456 |
123456'and(select+1)>0waitfor/**/delay'0:0:0 |
0 |
| 123456 |
123456'and(select+1)>0waitfor/**/delay'0:0:2 |
0 |
| 123456 |
123456/**/and/**/0=DBMS_PIPE.RECEIVE_MESSAGE('t',0) |
0 |
| 123456 |
123456/**/and/**/2=DBMS_PIPE.RECEIVE_MESSAGE('i',2) |
0 |
| 123456 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('f',0)='f |
0 |
| 123456 |
123456'/**/and/**/DBMS_PIPE.RECEIVE_MESSAGE('h',2)='h |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
| 123456 |
123456 |
0 |
:
