| SSV-91246 |
2016-04-05 |
|
TCCMS v9.0 user.class.php sql注入漏洞 |
|
1911 | 0 |
| SSV-91243 |
2016-04-05 |
|
ourphp v1.2 /client/user/?cn-usershopping.html-&ourphp_cms=del&id=1 两处SQL漏洞 |
|
1589 | 0 |
| SSV-91242 |
2016-04-05 |
|
ourphp v1.2 /?cn-shoppingorders.html-&ourphp_cms=buy 参数ourphp_opcms SQL漏洞 |
|
1188 | 0 |
| SSV-91241 |
2016-04-05 |
|
ourphp cms <1.2 function/ourphp_shoppingorders.class.php 参数id SQL注入漏洞 |
|
1155 | 0 |
| SSV-91240 |
2016-04-02 |
|
TaoCMS v2.5Beta5 comment.php sql注入漏洞 |
|
2044 | 0 |
| SSV-91239 |
2016-04-01 |
|
用友TruboCRM管理系统 reservationcomplete.php 参数ID SQL注入漏洞 |
|
1191 | 0 |
| SSV-91238 |
2016-04-01 |
|
用友TruboCRM管理系统 updateactivityemailnum.php 存在sql注入漏洞 |
|
1485 | 0 |
| SSV-91236 |
2016-04-01 |
|
汇文libsys /recm/browsexk_detl.php SQL注入 |
|
2393 | 0 |
| SSV-91227 |
2016-03-31 |
|
MiCollab 7.0 - SQL 注入漏洞 |
|
1711 | 0 |
| SSV-91226 |
2016-03-31 |
|
74cms(20150817) company_jobs.php SQL注入漏洞 |
|
2570 | 0 |
| SSV-91224 |
2016-03-31 |
|
海天OA /loginverify.asp /LosePassAction.asp 两处post类型的sql注入 |
|
1320 | 0 |
| SSV-91223 |
2016-03-31 |
|
海天OA /information/OA_Condition.asp 等7处INT型sql注入 |
|
1057 | 0 |
| SSV-91222 |
2016-03-31 |
|
海天OA /InforForWeb/list.asp文件id参数SQL注入漏洞 |
|
1541 | 0 |
| SSV-91219 |
2016-03-31 |
|
新为软件E-learning系统 /bos/desktop/RequestOrResponse.aspx /site/ajax/WebSiteAjax.aspx 等多处处sql注入 |
|
2218 | 0 |
| SSV-91218 |
2016-03-31 |
|
新为Elearning在线学习系统 /bos/desktop/ajax/EcAjax.aspx sql注入 |
|
1945 | 0 |
| SSV-91217 |
2016-03-31 |
|
shopnc /shop/index.php?act=member&op=address&inajax=1 sql注入漏洞(需要登录) |
|
4451 | 0 |
| SSV-91212 |
2016-03-30 |
|
gongwalker API Manager v1.1 - Blind SQL Injection |
|
1425 | 0 |
| SSV-91203 |
2016-03-30 |
|
TaoCMS v2.5Beta4 index.php 存在sql注入漏洞 |
|
2119 | 0 |
| SSV-91202 |
2016-03-29 |
|
大汉 (JCMS)的opr_getcount.jsp的两处注入( |
|
2779 | 0 |
| SSV-91201 |
2016-03-29 |
|
大汉JCMS政务系统 opr_ballot.jsp 参数c_uuid SQL注入漏洞 |
|
2581 | 0 |
| SSV-91200 |
2016-03-29 |
|
极限OA系统 data_fetch.php check_secure_key.php 等文件SQL注入漏洞 |
|
1784 | 0 |
| SSV-91199 |
2016-03-29 |
|
TinyMCE v3.2.x <= (AuthBypass/ShellUpload) Multiple Vulnerabilites |
|
3280 | 0 |
| SSV-91190 |
2016-03-29 |
|
phpshe v1.1 do.php 存在sql注入(导致可绕过后台登录) |
|
2562 | 0 |
| SSV-91189 |
2016-03-29 |
|
phpshe v1.1 module/index/order.php sql注入 |
|
2357 | 0 |
| SSV-91188 |
2016-03-29 |
|
phpshe v1.1 user.php sql注入 |
|
2126 | 0 |
| SSV-91186 |
2016-03-28 |
|
Patron Info System - SQL Injection Vulnerability |
|
1435 | 0 |
| SSV-91185 |
2016-03-28 |
|
LBCMS /WebUser/CheckUserName 接口 SQL 注入 |
|
1710 | 0 |
| SSV-91184 |
2016-03-28 |
|
AnyMacro邮件系统 login.php POST参数F_email SQL注入漏洞 |
|
7543 | 1 |
| SSV-91182 |
2016-03-28 |
|
cscmsV4 /plugins/vod/controllers/lists.php sql注入漏洞 |
|
2422 | 2 |
| SSV-91175 |
2016-03-28 |
|
用友NC人力资源管理(e-HR) /hrss/rm/PositionDetail.jsp SQL注入漏洞 |
|
2601 | 0 |
| SSV-91170 |
2016-03-26 |
|
Wordpress Simple Backup 插件2.7.10-任意文件下载漏洞 |
|
1446 | 0 |
| SSV-91169 |
2016-03-26 |
|
嘉缘人才系统V2014版20140521 /member/person_rbrower.php checks参数SQL注入漏洞 |
|
1087 | 0 |
| SSV-91168 |
2016-03-26 |
|
用友NC人力资源管理(e-HR) /hrss/attach.download.d sql注入 |
|
2499 | 0 |
| SSV-91167 |
2016-03-25 |
|
ShopNum1 ScoreProductSearchList.aspx文件Score2参数SQL注入漏洞 |
|
1716 | 0 |
| SSV-91165 |
2016-03-25 |
|
WordPress Booking Calendar Contact Form 1.0.23 盲注 |
|
1725 | 0 |
| SSV-91163 |
2016-03-24 |
|
53KF /new/client.php sql注入漏洞 |
|
2167 | 0 |
| SSV-91161 |
2016-03-24 |
|
akcms 6.1版本 存在sql注入漏洞 |
|
2415 | 0 |
| SSV-91159 |
2016-03-24 |
|
MetInfo 5.1.7 job.php SQL盲注 |
|
2075 | 0 |
| SSV-91150 |
2016-03-23 |
|
Techbridge 会议系统 index.php 参数gId[] POST注入漏洞 |
|
1962 | 0 |
| SSV-91147 |
2016-03-22 |
|
用友GRP-U8 系统登陆处参数UserNameText 存在SQL注入 |
|
2935 | 0 |
| SSV-91142 |
2016-03-22 |
|
用友的优普U8系统 /Server/CmxUser.php sql盲注 |
|
2082 | 0 |
| SSV-91141 |
2016-03-22 |
|
用友NC综合办公平台 /epp/core/eppquickdesk/eppnotice/notice.jsp等2处 SQL注入漏洞 |
|
2353 | 0 |
| SSV-91133 |
2016-03-21 |
|
phpmywind admin路径下多处sql注入 |
|
2455 | 0 |
| SSV-91132 |
2016-03-21 |
|
phpmywind admin/infoclass_save.php第二处sql注入 |
|
2295 | 0 |
| SSV-91131 |
2016-03-21 |
|
phpmywind /admin/paymode_save.php sql注入 |
|
2232 | 0 |
| SSV-91130 |
2016-03-21 |
|
DuomiCms多处SQL注入 |
|
1551 | 0 |
| SSV-91127 |
2016-03-21 |
|
FineCMS企业最新版本后台post SQL注入漏洞 |
|
2000 | 0 |
| SSV-91122 |
2016-03-19 |
|
E-TILLER期刊采编系统 留言登录处/ch/guestbook/Login.aspx 参数GM_NAME POST注入漏洞 |
|
2528 | 0 |
| SSV-91121 |
2016-03-19 |
|
Timber E-learning在线考试系统后台 /Paper/Paper_Manage.aspx 等13处 SQL注入漏洞 |
|
1967 | 0 |
| SSV-91120 |
2016-03-19 |
|
ILASIII 数字化图书管理系统 RdrRInforDetail.aspx 参数Name SQL注入漏洞 |
|
1921 | 0 |
| SSV-91117 |
2016-03-19 |
|
科创CMS /web/doc_hit.jsp等3处 SQL注入漏洞 |
|
1664 | 0 |
| SSV-91116 |
2016-03-19 |
|
泛微E-office /E-mobile/flowsorce_page.php等20处 SQL注入漏洞 |
|
4126 | 0 |
| SSV-91115 |
2016-03-19 |
|
天空教室精品系统 /sc8/page/schoolspace/course/academycourse-view.do等4处 SQL注入漏洞 |
|
1212 | 0 |
| SSV-91114 |
2016-03-19 |
|
天空教室精品系统 /sc8/coursefiledownload 参数 filepath 任意文件下载漏洞 |
|
1485 | 0 |
| SSV-91113 |
2016-03-19 |
|
Turbomail bookmark.jsp 参数bookmarkselect SQL注入 |
|
2110 | 0 |
| SSV-91112 |
2016-03-19 |
|
LZXSZXYXT乐知行数字校园系统 /oa/calendar/exportExcel.do等5处 SQL注入漏洞 |
|
1627 | 0 |
| SSV-91111 |
2016-03-19 |
|
E-TILLER期刊采编系统/ch/reader/wait_published_articles.aspx等8处 POST注入漏洞 |
|
2242 | 0 |
| SSV-91110 |
2016-03-19 |
|
Nongyou政务系统/newsymItemView/DynamicItemView.aspx等2处 SQL注入漏洞 |
|
1547 | 0 |
| SSV-91109 |
2016-03-19 |
|
Timber E-learning 天柏在线考试系统 Exam_List.aspx 参数typeid SQL注入漏洞 |
|
1215 | 0 |
| SSV-91108 |
2016-03-19 |
|
Mao10cms v3.5.2 /theme/default/public/head-uesr.php等5处 SQL注入漏洞 |
|
1658 | 0 |
| SSV-91106 |
2016-03-19 |
|
Timber E-learning在线培训系统政府版/Web/New.aspx 等9处 SQL注入漏洞 |
|
1295 | 0 |
| SSV-91105 |
2016-03-19 |
|
Timber E-learning在线考试系统商业版 /Web/User_Sort_List.aspx等8处 SQL注入漏洞 |
|
1420 | 0 |
| SSV-91104 |
2016-03-19 |
|
齐博CMS考试系统 exam_order.php 参数and SQL注入漏洞 |
|
2571 | 0 |
| SSV-91103 |
2016-03-19 |
|
科创CMS addLinks_do.jsp 参数siteid SQL注入漏洞 |
|
1189 | 0 |
| SSV-91102 |
2016-03-19 |
|
TurboMail BulletinAjax.java 等多处SQL注入漏洞 |
|
2011 | 0 |
| SSV-91101 |
2016-03-19 |
|
上海天柏在线培训系统 /WebPage/Paying.aspx 等11处 SQL注入漏洞 |
|
1143 | 0 |
| SSV-91099 |
2016-03-19 |
|
Nongyou政务系统 hnzc.aspx 参数CountryName SQL注入漏洞 |
|
1329 | 0 |
| SSV-91098 |
2016-03-19 |
|
Nongyou政务系统 cwgkview.aspx 参数 tname SQL注入漏洞 |
|
1662 | 0 |
| SSV-91096 |
2016-03-19 |
|
EduWind在线教育建站系统 groupindexcategory 参数categoryId SQL注入漏洞 |
|
1817 | 0 |
| SSV-91095 |
2016-03-19 |
|
Libsys图书管理系统 book_rank.php 参数cls_no SQL注入漏洞 |
|
2156 | 0 |
| SSV-91093 |
2016-03-19 |
|
用友优普U8系统 /Server/CmxGetAppNameByUserName.php等2处 SQL注入漏洞 |
|
1843 | 0 |
| SSV-91090 |
2016-03-19 |
|
Shop7z v2.9 showmessage.asp 文件 id 参数SQL注入漏洞 |
|
2309 | 1 |
| SSV-91089 |
2016-03-19 |
|
泛微OA系统 /ServiceAction/com.eweaver.base.security.servlet.LoginAction 参数keywordid SQL注入漏洞 |
|
6116 | 0 |
| SSV-91088 |
2016-03-19 |
|
科创CMS /cms/voteManager/voteaction.jsp 通用型Oracle注入 |
|
1253 | 0 |
| SSV-91087 |
2016-03-19 |
|
科创CMS search_process_hn.jsp 参数siteId SQL注入漏洞 |
|
1189 | 0 |
| SSV-91086 |
2016-03-19 |
|
yershop多用户商城系统 Driver.class.php等多处SQL注入漏洞 |
|
1493 | 0 |
| SSV-91085 |
2016-03-19 |
|
BlueCMS v1.6 sp1 /admin/login.php SQL注入漏洞 |
|
2892 | 0 |
| SSV-91077 |
2016-03-17 |
|
正方教务系统 jwggck.aspx 参数fbsj SQL注入漏洞 |
|
2960 | 0 |
| SSV-91075 |
2016-03-17 |
|
OECMS4.2 /source/control/index/buylist.php cookie注入 |
|
2036 | 0 |
| SSV-91068 |
2016-03-17 |
|
74cms v3.6 (20150817) 设计缺陷导致8处不同文件注入漏洞(gpc=off) |
|
2133 | 0 |
| SSV-91066 |
2016-03-17 |
|
新为Elearning在线学习系统 /bos/desktop/MyShoppingCart.aspx sql注入 |
|
1263 | 0 |
| SSV-91063 |
2016-03-16 |
|
BlueCMS v1.6 sp1 ad_js.php ad_id 参数SQL注入漏洞 |
|
2481 | 0 |
| SSV-91062 |
2016-03-16 |
|
农友政务系统 /ExtWebModels/WebFront/showlandlist.aspx InfoType 参数SQL注入漏洞 |
|
1769 | 0 |
| SSV-91061 |
2016-03-16 |
|
农友政务系统 /ckq/sllistout.aspx tname 参数SQL注入漏洞 |
|
1755 | 0 |
| SSV-91060 |
2016-03-16 |
|
tipask base.class.php 参数sid SQL注入漏洞 |
|
1167 | 0 |
| SSV-91059 |
2016-03-16 |
|
泛微OA系统 /mobile/plugin/loadWfGraph.jsp 等3处 SQL注入漏洞 |
|
1495 | 0 |
| SSV-91058 |
2016-03-16 |
|
农友政务系统 /ExtWebModels/WebFront/ShowCompanyList.aspx ctype 参数SQL注入漏洞 |
|
1636 | 0 |
| SSV-91056 |
2016-03-16 |
|
Shop7z v2.9 /order_checknoprint.asp 文件 id 参数 SQL注入漏洞 |
|
2102 | 0 |
| SSV-91055 |
2016-03-16 |
|
Hishop易分销系统 Brand.aspx,ProductUnSales.aspx 两处SQL注入漏洞 |
|
2500 | 1 |
| SSV-91054 |
2016-03-16 |
|
yershop商城系统/index.php?s=/Home/account/savepaykey.html等30处 SQL注入漏洞 |
|
1952 | 0 |
| SSV-91053 |
2016-03-16 |
|
yershop商城系统 PublicController.class.php 参数username[0] SQL注入漏洞 |
|
1401 | 0 |
| SSV-91052 |
2016-03-16 |
|
74cms company_common.php SQL注入漏洞 |
|
2610 | 1 |
| SSV-91051 |
2016-03-16 |
|
MetInfo v5.3.1 global.func.php SQL注入 |
|
2272 | 0 |
| SSV-91050 |
2016-03-16 |
|
kingdee协同办公系统 fileDownload.do 任意文件下载漏洞 |
|
2368 | 0 |
| SSV-91049 |
2016-03-16 |
|
Mallbuilder lostpass.php 文件 userid 参数SQL注入漏洞 |
|
1130 | 0 |
| SSV-91047 |
2016-03-16 |
|
祥云时代通用型建站系统SQL注射漏洞 |
|
1955 | 0 |
| SSV-91046 |
2016-03-16 |
|
卓光科技通用建站系统SQL注入漏洞 |
|
1931 | 0 |
| SSV-91034 |
2016-03-15 |
|
house5 房产系统 /api.php 参数 sale injection Vulnerability |
|
1238 | 0 |
| SSV-91027 |
2016-03-14 |
|
KesionCMS ASP版 /item/?c-5,key-1.html SQL注入漏洞 |
|
5887 | 0 |
| SSV-91026 |
2016-03-14 |
|
openSNS UserApi.class.php SQL注入漏洞 |
|
2064 | 0 |
京ICP备10040895号