漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-20989	2011-10-11		MyBB Advanced Forum Signatures (afsignatures-2.0.4) SQL Injection		1381 \| 0
SSV-20990	2011-10-11		MyBB Forum Userbar Plugin (Userbar v2.2) SQL Injection		1395 \| 0
SSV-20988	2011-10-10		Joomla Component (com_expedition) <= SQL Injection Vulnerability		1282 \| 0
SSV-20980	2011-10-09		Joomla Component Time Returns (com_timereturns) SQL Injection		1407 \| 0
SSV-20966	2011-09-30		WordPress WP Bannerize plugin <= 2.8.7 SQL Injection Vulnerability		936 \| 0
SSV-20950	2011-09-25		AWStats 7.0 / 6.0 SQL Injection / Cross Site Scripting / CRLF Injection		1268 \| 0
SSV-20954	2011-09-25		PHPCMS V9 sys_auth() 设计缺陷导致多个SQL注入漏洞		2512 \| 0
SSV-20952	2011-09-25		WordPress Link Library plugin <= 5.2.1 SQL Injection Vulnerability		976 \| 0
SSV-20948	2011-09-23		WordPress WP e-Commerce插件"cs1"参数SQL注入漏洞		933 \| 0
SSV-20941	2011-09-19		WordPress Count per Day plugin <= 2.17 SQL Injection Vulnerability		922 \| 0
SSV-20940	2011-09-18		WordPress Auctions plugin <= 1.8.8 SQL Injection Vulnerability		877 \| 0
SSV-88089	2011-09-16		phpwind 8.7 querybuilder.class.php sql注入		3095 \| 0
SSV-20929	2011-09-14		WordPress WP e-Commerce plugin <= 3.8.6 SQL Injection Vulnerability		981 \| 0
SSV-20918	2011-08-29		WordPress Evarisk plugin <= 5.1.3.6 SQL Injection Vulnerability		986 \| 0
SSV-20917	2011-08-29		WordPress mySTAT plugin <= 2.6 SQL Injection Vulnerability		962 \| 0
SSV-20919	2011-08-29		WordPress Profiles plugin <= 2.0 RC1 SQL Injection Vulnerability		951 \| 0
SSV-20906	2011-08-28		WordPress Super CAPTCHA plugin <= 2.2.4 SQL Injection Vulnerability		920 \| 0
SSV-20905	2011-08-28		WordPress Js-appointment plugin <= 1.5 SQL Injection Vulnerability		1091 \| 0
SSV-20908	2011-08-28		WordPress oQey Headers plugin <= 0.3 SQL Injection Vulnerability		1588 \| 0
SSV-20903	2011-08-28		WordPress Photoracer plugin <= 1.0 SQL Injection Vulnerability		910 \| 0
SSV-20907	2011-08-28		WordPress Collision Testimonials plugin <= 3.0 SQL Injection Vulnerability		1156 \| 0
SSV-20909	2011-08-28		WordPress Photoracer Plugin <= 1.0 Multiple Vulnerabilities		1065 \| 0
SSV-20904	2011-08-28		WordPress MM Forms Community plugin <= 1.2.3 SQL Injection Vulnerability		1097 \| 0
SSV-20902	2011-08-26		PHPWIND v8.7 querybuilder.class.php SQL注入漏洞		8501 \| 0
SSV-20892	2011-08-23		WordPress MM Duplicate plugin <= 1.2 SQL Injection Vulnerability		1257 \| 0
SSV-88013	2011-08-23		Discuz! 1.5-2.0 forum_misc.php SQL注入漏洞		909 \| 0
SSV-20884	2011-08-20		马克斯CMS(Maxcms) admin_inc.asp SQL注入漏洞		2247 \| 1
SSV-88128	2011-08-19		DVBBS 2.0 indivgroup_dispbbs.php sql注入漏洞		1974 \| 0
SSV-62275	2011-08-19		Discuz! X2 forum_attachment.php sql注入漏洞		1114 \| 0
SSV-62272	2011-08-19		kesioncms 6.x-7.06 regajax.asp&Ajaxs.asp SQL注入漏洞		1754 \| 0
SSV-88009	2011-08-18		aspcms 2.0-2.15 productbuy.asp SQL注入漏洞		6963 \| 1
SSV-20876	2011-08-18		WordPress File Groups plugin <= 1.1.2 SQL Injection Vulnerability		1049 \| 0
SSV-20875	2011-08-18		WordPress Contus HD FLV Player plugin <= 1.3 SQL Injection Vulnerability		939 \| 0
SSV-20869	2011-08-18		WordPress Ajax Gallery plugin <= 3.0 SQL Injection Vulnerability		1029 \| 0
SSV-20873	2011-08-18		WordPress Easy Contact Form Lite plugin <= 1.0.7 SQL Injection Vulnerability		953 \| 0
SSV-20870	2011-08-18		WordPress WP Forum plugin <= 1.7.8 SQL Injection Vulnerability		933 \| 0
SSV-20874	2011-08-18		WordPress WP Symposium plugin <= 0.64 SQL Injection Vulnerability		971 \| 0
SSV-20872	2011-08-18		WordPress OdiHost Newsletter plugin <= 1.0 SQL Injection Vulnerability		901 \| 0
SSV-20871	2011-08-18		WordPress WP DS FAQ plugin <= 1.3.2 SQL Injection Vulnerability		1031 \| 0
SSV-20866	2011-08-18		WordPress Global Content Blocks plugin <= 1.2 SQL Injection Vulnerability		909 \| 0
SSV-20864	2011-08-17		WordPress IP-Logger Plugin <= 3.0 SQL Injection Vulnerability		942 \| 0
SSV-20857	2011-08-16		风讯（FooSun）SetNextOptions.asp 注入漏洞		1679 \| 0
SSV-20854	2011-08-15		Php168 v2008 list.php sql注入漏洞		1402 \| 0
SSV-20855	2011-08-15		Php168 v2008 special.php sql注入漏洞		1470 \| 0
SSV-20810	2011-08-04		Joomla Component (com_jdirectory) SQL Injection Vulnerability		1304 \| 0
SSV-20804	2011-08-02		Group-Office命令注入和SQL注入漏洞		502 \| 0
SSV-20805	2011-08-02		MyBB MyTabs (plugin) 0day SQL injection vulnerability		777 \| 0
SSV-20794	2011-07-31		科汛kesion 6.x - 7.06 /plus/Ajaxs.asp SQL注射漏洞		1795 \| 0
SSV-20797	2011-07-31		phpcms2008 & phpcms2007 GBK版ask/search_ajax.php SQL注射漏洞		1655 \| 0
SSV-20795	2011-07-31		科汛kesion 6.x - 7.06 /user/reg/regajax.asp SQL注射漏洞		1726 \| 0
SSV-20792	2011-07-30		Vegetav (news_item.php?id) Remote SQL injection Vulnerability		793 \| 0
SSV-20791	2011-07-30		cgcraft llc (info.php?id) (news_item.php?id) Remote SQL injection		805 \| 0
SSV-20781	2011-07-29		Joomla 1.5 com_virtuemart <= 1.1.7 Blind time-based SQL Injection (MSF)		1584 \| 0
SSV-20787	2011-07-29		JspRun!6.0 论坛管理后台注入漏洞		564 \| 0
SSV-20785	2011-07-29		Gopal Systems (products.php?cat_id) Remote SQL injection		928 \| 0
SSV-20755	2011-07-23		ExtCalendar2 (Auth Bypass/Cookie) SQL Injection		762 \| 0
SSV-20752	2011-07-22		Joomla Component mod_spo SQL Injection Vulnerability		1594 \| 0
SSV-20753	2011-07-22		Vbulletin 4.0.x => 4.1.3 (messagegroupid) SQL injection Vulnerability 0-day		1856 \| 0
SSV-88136	2011-07-21		WordPress 3.1.3,3.1.4,3.2-RC1,3.2-RC3 edit-tags.php SQL注入		535 \| 0
SSV-20734	2011-07-14		Symantec Web Gateway管理接口"username" SQL注入漏洞		617 \| 0
SSV-20733	2011-07-14		Xmap 1.2.11 Joomla Component Blind SQL Injection		1277 \| 0
SSV-20698	2011-07-05		PhpFood CMS v2.00 SQL Injection Vulnerability		775 \| 0
SSV-20689	2011-07-04		Joomla mdigg Component SQL Injection Vulnerability		1340 \| 0
SSV-20691	2011-07-04		Discuz! X2远程SQL注入漏洞		1657 \| 0
SSV-20688	2011-07-04		WordPress 3.1.3 SQL Injection Vulnerabilities		1087 \| 0
SSV-20687	2011-07-04		DmxReady Document Library Manager v1.2 SQL Injection Vulnerability		804 \| 0
SSV-20681	2011-07-03		discuz! X1.5 Get Shell 0day		2271 \| 0
SSV-20671	2011-06-29		Discuz! X2.0 forum_attachment.php SQL注入漏洞		5185 \| 1
SSV-20648	2011-06-25		PJBLOG文件Action.asp 修改任意用户密码		1482 \| 0
SSV-20647	2011-06-22		vBulletin 4.0.x => 4.1.2 (search.php) SQL Injection Vulnerability		1531 \| 0
SSV-20606	2011-06-15		phpcms v2.4 SQL injection exploit		1529 \| 0
SSV-20593	2011-06-02		Joomla Component com_joomnik SQL Injection Vulnerability		1261 \| 0
SSV-20602	2011-06-02		Discuz! X1-1.5 notify_credit.php Blind SQL injection exploit		1256 \| 0
SSV-20587	2011-05-26		ExtCalendar 2.0b2 (cal_search.php) SQL Injection Vulnerability		702 \| 0
SSV-20585	2011-05-26		Tickets 2.13 SQL Injection Vulnerability		694 \| 0
SSV-20570	2011-05-20		shopxp网上购物系统 v7.4 SQL注入漏洞		2772 \| 0
SSV-20573	2011-05-20		Cisco Unified Operations Manager Multiple Vulnerabilities		1021 \| 0
SSV-20558	2011-05-16		Joomla Component com_question SQL Injection Vulnerability		1333 \| 0
SSV-20527	2011-05-10		Joomla Component com_versioning SQLi Vulnerability		1345 \| 0
SSV-20515	2011-05-04		DiscuzX1.5 门户管理权限SQL注入漏洞		807 \| 0
SSV-20503	2011-05-01		Discuz!NT 2.*-3.5.2 SQL注入漏洞		2207 \| 0
SSV-20504	2011-05-01		JspRun!论坛管理后台注入漏		517 \| 0
SSV-87983	2011-04-28		PHP sqlite_single_query和sqlite_array_query函数SQL注入漏洞		1061 \| 0
SSV-87989	2011-04-28		PHP 5.2.7 magic_quotes_gpc SQL注入漏洞		1093 \| 0
SSV-20441	2011-04-08		Ruby on Rails安全限制绕过和SQL注入漏洞		865 \| 0
SSV-20404	2011-03-28		PHP-Nuke 8.x <= "chng_uid" Blind SQL Injection Vulnerability		1755 \| 0
SSV-20403	2011-03-28		Ecava IntegraXor未明SQL注入漏洞		650 \| 0
SSV-20401	2011-03-28		SimplisCMS 1.0.3.0 Multiple Vulnerabilities		686 \| 0
SSV-20374	2011-03-18		SQL Injection in component com_booklibrary for Joomla		1242 \| 0
SSV-20378	2011-03-18		Joomla! 1.6 Multiple SQL Injection Vulnerabilities		1254 \| 0
SSV-20354	2011-03-03		Bo-blog v2.1.1 注入漏洞		1946 \| 0
SSV-20360	2011-03-03		cChatBox for vBulletin 3.6.8 and 3.7.x SQL Injection Vulnerability		1655 \| 0
SSV-20329	2011-01-19		Symantec Web Gateway Management GUI远程SQL注入漏洞		465 \| 0
SSV-20324	2011-01-11		TinyBB 1.2 SQL Injection Vulnerability		731 \| 0
SSV-20309	2010-12-29		PHP-AddressBook v6.2.4 SQL INJECTION VULNERABILITIES		499 \| 0
SSV-20297	2010-12-19		PayPal Shop Digital SQL Injection Vulnerability		737 \| 0
SSV-20282	2010-12-09		PHP-Nuke Search模块SQL注入漏洞		1501 \| 0
SSV-20269	2010-11-25		SiteEngine 6.0 SQL注入漏洞		1331 \| 0
SSV-20270	2010-11-25		SiteEngine 7.1 SQL注入漏洞		1651 \| 0
SSV-20258	2010-11-17		WordPress Event Registration插件event_id参数SQL注入漏洞		824 \| 0

1
...
20
21
22
23
24
25
26
27
28
29
30
...
69