漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-11773	2009-07-09		Opial多个模块SQL注入漏洞		1218 \| 0
SSV-11750	2009-07-03		CMS Chainuk <= 1.2 Multiple Remote Vulnerabilities		696 \| 0
SSV-11753	2009-07-03		Opial 1.0 (albumid) Remote SQL Injection Vulnerability		1320 \| 0
SSV-11752	2009-07-03		Rentventory Multiple Remote SQL Injection Vulnerabilities		718 \| 0
SSV-11747	2009-07-03		phpMyAdmin SQL书签HTML注入漏洞		479 \| 0
SSV-11754	2009-07-03		conpresso 3.4.8 (detail.php) Remote Blind SQL Injection Vuln		688 \| 0
SSV-11739	2009-07-02		WordPress Plugin Related Sites 2.1 Blind SQL Injection Vulnerability		1039 \| 0
SSV-11733	2009-07-02		MySQL Connector/NET缺少SSL证书验证漏洞		1287 \| 0
SSV-11741	2009-07-02		PunBB Extension Vote For Us <= 1.0.1 Blind SQL Injection Exploit		1606 \| 0
SSV-11740	2009-07-02		PunBB Affiliates Mod <= 1.1 Remote Blind SQL Injection Exploit		1465 \| 0
SSV-14877	2009-07-02		Opial 1.0 (Auth Bypass) Remote SQL Injection Vulnerability		1271 \| 0
SSV-14879	2009-07-02		Almnzm 2.0 Remote Blind SQL Injection Exploit		795 \| 0
SSV-11724	2009-06-30		Joomla com_bookflip (book_id) Remote SQL Injection Vulnerability		861 \| 0
SSV-14894	2009-06-30		MDPro Module CWGuestBook <= 2.1 Remote SQL Injection Vulnerability		699 \| 0
SSV-14900	2009-06-30		SMF Mod Member Awards 1.0.2 Blind SQL Injection Exploit		1124 \| 0
SSV-11721	2009-06-30		Messages Library 2.0 (cat.php CatID) SQL Injection Vulnerability		692 \| 0
SSV-11723	2009-06-30		Joomla Component com_K2 <= 1.0.1b (category) SQL Injection Vuln		825 \| 0
SSV-11722	2009-06-30		Joomla Component com_php (id) Blind SQL Injection Vulnerability		838 \| 0
SSV-11704	2009-06-29		帝国（EmpireCMS） 5.1 多个注射漏洞		7221 \| 0
SSV-14911	2009-06-29		Almnzm (COOKIE: customer) Remote SQL Injection Vulnerability		713 \| 0
SSV-14912	2009-06-29		osTicket 1.6 RC4 Admin Login Blind SQL Injection Vulnerability		803 \| 0
SSV-14905	2009-06-29		Newsolved 1.1.6 (login grabber) Multiple SQL Injection Exploit		698 \| 0
SSV-11706	2009-06-29		Joomla Component com_pinboard (task) SQL Injection Exploit		828 \| 0
SSV-14918	2009-06-26		ForumPal FE 1.1 (Auth Bypass) Remote SQL Injection Vulnerability		705 \| 0
SSV-14919	2009-06-26		PHP-Address Book 4.0.x Multiple SQL Injection Vulnerabilities		1016 \| 0
SSV-14920	2009-06-26		Virtue Online Test Generator (AB/SQL/XSS) Multiple Vulnerabilities		700 \| 0
SSV-14923	2009-06-25		AlumniServer 1.0.1 (Auth Bypass) SQL Injection Vulnerability		1495 \| 0
SSV-14922	2009-06-25		AlumniServer 1.0.1 (resetpwemail) Blind SQL Injection Exploit		1467 \| 0
SSV-11703	2009-06-25		Joomla Component com_amocourse (catid) SQL-injection Vulnerability		1347 \| 0
SSV-14921	2009-06-25		MD-Pro 1.083.x Survey Module (pollID) Blind SQL Injection Vulnerability		746 \| 0
SSV-11696	2009-06-24		Zen Cart 1.3.8 Remote SQL Execution Exploit		1467 \| 0
SSV-14926	2009-06-24		Joomla Component com_amocourse (catid) SQL Injection Vuln		881 \| 0
SSV-11676	2009-06-23		MyBB birthdayprivacy参数SQL注入漏洞		1136 \| 0
SSV-11683	2009-06-23		RS-CMS 2.1 (key) Remote SQL Injection Vulnerability		727 \| 0
SSV-11682	2009-06-23		Joomla Component com_tickets <= 2.1 (id) SQL Injection Vuln		839 \| 0
SSV-14947	2009-06-22		phpDatingClub 3.7 Remote SQL/XSS Injection Vulnerabilities		676 \| 0
SSV-11655	2009-06-18		WordPress Photoracer插件id参数SQL注入漏洞		820 \| 0
SSV-14953	2009-06-17		FretsWeb 1.2 (name) Remote Blind SQL Injection Exploit		1357 \| 0
SSV-11642	2009-06-17		Joomla Component com_jumi (fileid) Blind SQL Injection Exploit		943 \| 0
SSV-11637	2009-06-17		Joomla Component com_ijoomla_rss Blind SQL Injection Exploit		800 \| 0
SSV-11640	2009-06-17		phpCollegeExchange 0.1.5c (listing_view.php itemnr) SQL Injection Vuln		698 \| 0
SSV-11638	2009-06-17		TorrentTrader Classic 1.09 Multiple Remote Vulnerabilities		1391 \| 0
SSV-11639	2009-06-17		WordPress Plugin Photoracer 1.0 (id) SQL Injection Vulnerability		906 \| 0
SSV-12929	2009-06-17		TekBase All-in-One 3.1 Multiple SQL Injection Vulnerabilities		685 \| 0
SSV-11641	2009-06-17		phportal v1 (topicler.php id) Remote SQL Injection Vulnerability		712 \| 0
SSV-12947	2009-06-15		AdaptWeb 0.9.2 (LFI/SQL) Multiple Remote Vulnerabilities		669 \| 0
SSV-12954	2009-06-15		Impleo Music Collection 2.0 (SQL/XSS) Multiple Remote Vulnerabilities		650 \| 0
SSV-11597	2009-06-13		Zip Store Chat 4.0/5.0 (Auth Bypass) SQL Injection Vulnerability		708 \| 0
SSV-12911	2009-06-12		Campus Virtual-LMS (XSS/SQL Injection) Multiple Remote Vulnerabilities		713 \| 0
SSV-11577	2009-06-11		S-CMS <= 2.0b3 (username) Blind SQL Injection Exploit		1524 \| 0
SSV-11578	2009-06-11		MRCGIGUY The Ticket System 2.0 PHP Multiple Remote Vulnerabilities		1571 \| 0
SSV-11576	2009-06-11		S-CMS <= 2.0b3 Multiple SQL Injection Vulnerabilities		1563 \| 0
SSV-12915	2009-06-11		Yogurt 0.3 (XSS/SQL Injection) Multiple Remote Vulnerabilities		723 \| 0
SSV-11585	2009-06-11		MRCGIGUY FreeTicket (CH/SQL) Multiple Remote Vulnerabilities		1488 \| 0
SSV-12914	2009-06-11		Sniggabo CMS (article.php id) Remote SQL Injection Exploit		673 \| 0
SSV-11579	2009-06-11		MRCGIGUY Hot Links (report.php id) Remote SQL Injection Vulnerability		1509 \| 0
SSV-12917	2009-06-11		Splog <= 1.2 Beta Multiple Remote SQL Injection Vulnerabilities		646 \| 0
SSV-11590	2009-06-11		Open Biller 0.1 (username) Blind SQL Injection Exploit		668 \| 0
SSV-11572	2009-06-11		Joomla Component Akobook 2.3 (gbid) SQL Injection Vulnerability		886 \| 0
SSV-12923	2009-06-10		LightNEasy sql/no-db <= 2.2.x system Config Disclosure Exploit		731 \| 0
SSV-11561	2009-06-09		Shop Script Pro 2.12 Remote SQL Injection Exploit		1417 \| 0
SSV-11553	2009-06-09		MyCars Automotive (Auth Bypass) SQL Injection Vulnerability		687 \| 0
SSV-11554	2009-06-09		Joomla Component com_school 1.4 (classid) SQL Injection Vulnerability		792 \| 0
SSV-11560	2009-06-09		Joomla Component com_portafolio (cid) SQL injection Vulnerability		835 \| 0
SSV-12894	2009-06-08		Frontis 3.9.01.24 (source_class) Remote SQL Injection Vulnerability		709 \| 0
SSV-12898	2009-06-08		Virtue Shopping Mall (cid) Remote SQL Injection Vulnerability		637 \| 0
SSV-12900	2009-06-08		Virtue Classifieds (category) SQL Injection Vulnerability		669 \| 0
SSV-12899	2009-06-08		Virtue Book Store (cid) Remote SQL Injection Vulnerability		668 \| 0
SSV-12893	2009-06-08		Virtue News (SQL/XSS) Multiple Remote Vulnerabilities		677 \| 0
SSV-11542	2009-06-06		Kjtechforce mailman b1 (code) SQL Injection Delete Row Vulnerability		706 \| 0
SSV-11544	2009-06-06		Kjtechforce mailman b1 (dest) Remote Blind SQL Injection Exploit		724 \| 0
SSV-11539	2009-06-06		Pixelactivo 3.0 (idx) Remote SQL Injection Vulnerability		704 \| 0
SSV-12907	2009-06-05		Pixelactivo 3.0 (Auth Bypass) Remote SQL Injection Vulnerability		762 \| 0
SSV-11512	2009-06-04		My Mini Bill (orderid) Remote SQL Injection Vulnerability		682 \| 0
SSV-11513	2009-06-04		EgyPlus 7ml <= 1.0.1 (Auth Bypass) SQL Injection Vulnerability		705 \| 0
SSV-11517	2009-06-04		Joomla Component com_mosres Multiple SQL Injection Vulnerabilities		1004 \| 0
SSV-11516	2009-06-04		Joomla Component Seminar 1.28 (id) Blind SQL Injection Exploit		874 \| 0
SSV-12875	2009-06-03		Supernews 2.6 (index.php noticia) Remote SQL Injection Vulnerability		668 \| 0
SSV-17980	2009-06-02		Flashlight Free Edition (LFI/SQL) Multiple Remote Vulnerabilities		690 \| 0
SSV-17983	2009-06-02		WebEyes Guest Book v.3 (yorum.asp mesajid) SQL Injection Vulnerability		749 \| 0
SSV-11503	2009-06-02		Escon SupportPortal Pro 3.0 (tid) Blind SQL Injection Vulnerability		643 \| 0
SSV-17984	2009-06-02		Podcast Generator <= 1.2 GLOBALS[] Multiple Remote Vulnerabilities		700 \| 0
SSV-17978	2009-06-02		Online Grades & Attendance 3.2.6 Blind SQL Injection Exploit		677 \| 0
SSV-11504	2009-06-02		Joomla Component Joomlaequipment 2.0.4 (com_juser) SQL Injection		820 \| 0
SSV-11499	2009-06-02		eliteCMS 1.01 (SQL/XSS) Multiple Remote Vulnerabilities		666 \| 0
SSV-17979	2009-06-02		AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability		820 \| 0
SSV-17981	2009-06-02		WebCal (webCal3_detail.asp event_id) SQL Injection Vulnerability		688 \| 0
SSV-17977	2009-06-02		Online Grades & Attendance 3.2.6 Multiple Local File Inclusion Vulns		731 \| 0
SSV-11500	2009-06-02		Open-school 1.0 (id) Remote SQL Injection Vulnerability		688 \| 0
SSV-11497	2009-06-02		OCS Inventory NG 1.02 Multiple SQL Injection Vulnerabilities		836 \| 0
SSV-11496	2009-06-02		RadCLASSIFIEDS Gold v2 (seller) Remote SQL Injection Exploit		686 \| 0
SSV-17973	2009-06-01		ecsportal rel 6.5 (article_view_photo.php id) SQL Injection Vulnerability		652 \| 0
SSV-11486	2009-06-01		WoDig社区程序Movie_list.asp页面过滤不严导致SQL注入漏洞		1133 \| 0
SSV-17970	2009-06-01		Unclassified NewsBoard 1.6.4 Multiple Remote Vulnerabilities		884 \| 0
SSV-17975	2009-06-01		PAD Site Scripts 3.6 Remote Arbitrary Database Backup Vulnerability		693 \| 0
SSV-17972	2009-06-01		Online Grades & Attendance 3.2.6 Multiple SQL Injection Vulnerabilities		670 \| 0
SSV-17974	2009-06-01		R2 Newsletter Lite/Pro/Stats (admin.mdb) Database Disclosure Vuln		749 \| 0
SSV-17976	2009-06-01		ASP Football Pool 2.3 Remote Database Disclosure Vulnerability		701 \| 0
SSV-17971	2009-06-01		Online Grades & Attendance 3.2.6 Credentials Changer SQL Exploit		640 \| 0
SSV-11485	2009-05-31		Traidnt Up 2.0 (Auth Bypass / Cookie) SQL Injection Vulnerability		652 \| 0

1
...
29
30
31
32
33
34
35
36
37
38
39
...
69