漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-11481	2009-05-31		Joomla Component JVideo 0.3.x SQL Injection Vulnerability		817 \| 0
SSV-11483	2009-05-31		Zen Help Desk 2.1 (Auth Bypass) SQL Injection Vulnerability		842 \| 0
SSV-11480	2009-05-31		Small Pirates v-2.1 (XSS/SQL) Multiple Remote Vulnerabilities		826 \| 0
SSV-17969	2009-05-29		Million Dollar Text Links <= 1.0 (id) SQL injection Vulnerability		671 \| 0
SSV-17968	2009-05-29		ZeusCart <= 2.3 (maincatid) SQL Injection Vulnerability		739 \| 0
SSV-17967	2009-05-29		Arab Portal 2.2 (Auth Bypass) Remote SQL Injection Vulnerability		677 \| 0
SSV-11458	2009-05-28		WoDig社区程序isay.asp页面过滤不严导致SQL注入漏洞		1191 \| 0
SSV-11466	2009-05-28		WoDig社区程序Members.asp页面过滤不严导致SQL注入漏洞		1194 \| 0
SSV-11469	2009-05-28		Joomla Component AgoraGroup 0.3.5.3 Blind SQL Injection Vulnerability		854 \| 0
SSV-11472	2009-05-28		Evernew Free Joke Script 1.2 (cat_id) Remote SQL Injection Vulnerability		652 \| 0
SSV-11438	2009-05-27		Mole Adult Portal Script (profile.php user_id) SQL Injection Vulnerability		651 \| 0
SSV-11445	2009-05-27		RoomPHPlanning 1.6 Multiple Remote Vulnerabilities		683 \| 0
SSV-11434	2009-05-27		vBulletin vbBux/vbPlaza <= 2.x (vbplaza.php) Blind SQL Injection Vuln		1421 \| 0
SSV-11451	2009-05-27		phpBugTracker 1.0.3 (Auth Bypass) SQL Injection Vulnerability		704 \| 0
SSV-11433	2009-05-27		Joomla Boy Scout Advancement 0.3 (id) SQL Injection Exploit		798 \| 0
SSV-11432	2009-05-27		MiniTwitter 0.3-Beta (SQL/XSS) Multiple Remote Vulnerabilities		1483 \| 0
SSV-11453	2009-05-27		WebMember 1.0 (formID) Remote SQL Injection Vulnerability		644 \| 0
SSV-11435	2009-05-27		WoDig社区程序EditRevert.asp页面过滤不严导致SQL注入漏洞		1307 \| 0
SSV-11448	2009-05-27		MyForum 1.3 (Auth Bypass) Remote SQL Injection Vulnerability		682 \| 0
SSV-11447	2009-05-27		Kensei Board <= 2.0.0b Multiple SQL Injection Vulnerabilities		694 \| 0
SSV-17964	2009-05-26		Lighttpd < 1.4.23 Source Code Disclosure Vulnerability (BSD/Solaris bug)		1352 \| 0
SSV-11411	2009-05-25		WoDig社区程序Doajax.asp页面过滤不严导致SQL注入漏洞		1127 \| 0
SSV-11412	2009-05-25		ECSHOP商城系统过滤不严导致SQL注入漏洞		1934 \| 0
SSV-11407	2009-05-23		ZaoCMS (user_id) Remote SQL Injection Vulnerability		1301 \| 0
SSV-11392	2009-05-22		WoDig社区程序Comment.asp页面过滤不严导致SQL注入漏洞		1313 \| 0
SSV-11399	2009-05-22		ZaoCMS Insecure Cookie Handling Vulnerability		1328 \| 0
SSV-11395	2009-05-22		ASP Inline Corporate Calendar (SQL/XSS) Multiple Remote Vulnerabilities		657 \| 0
SSV-11394	2009-05-22		VICIDIAL 2.0.5-173 (Auth Bypass) SQL Injection Vulnerability		665 \| 1
SSV-11398	2009-05-22		Article Directory (page.php) Remote Blind SQL Injection Vulnerability		691 \| 0
SSV-11396	2009-05-22		Flash Quiz Beta 2 Multiple Remote SQL Injection Vulnerabilities		640 \| 0
SSV-11397	2009-05-22		Article Directory (Auth Bypass) SQL Injection Vulnerability		704 \| 0
SSV-11385	2009-05-21		WoDig社区程序Article.asp页面过滤不严导致SQL注入漏洞		1239 \| 0
SSV-11387	2009-05-21		bSpeak 1.10 (forumid) Remote Blind SQL Injection Vulnerability		686 \| 0
SSV-11375	2009-05-21		Joomla Casino 0.3.1 Multiple SQL Injection Exploits		803 \| 0
SSV-17958	2009-05-21		Flash Quiz Beta 2 Multiple Remote SQL Injection Vulnerabilities		680 \| 0
SSV-11382	2009-05-21		Realty Web-Base 1.0 (list_list.php id) SQL Injection Vulnerability		652 \| 0
SSV-11358	2009-05-20		Coppermine Photo Gallery <= 1.4.22 Remote Exploit		3016 \| 0
SSV-11365	2009-05-20		OpenBB 1.0.6 myhome.php SQL注入漏洞		1173 \| 0
SSV-11359	2009-05-20		DM FileManager 3.9.2 (Auth Bypass) SQL Injection Vulnerability		1372 \| 0
SSV-11364	2009-05-20		Oblog多用户博客程序strMonth变量过滤不严导致SQL注入漏洞		1527 \| 0
SSV-11368	2009-05-20		OpenBB board.php远程SQL注入漏洞		1515 \| 0
SSV-11366	2009-05-20		OpenBB 1.0.6 index.php远程SQL注入漏洞		1267 \| 0
SSV-11367	2009-05-20		OpenBB index.php CID参数远程SQL注入漏洞		1205 \| 0
SSV-11357	2009-05-20		Dog Pedigree Online Database 1.0.1b Blind SQL Injection Exploit		650 \| 0
SSV-11369	2009-05-20		OpenBB member.php远程SQL注入漏洞		1269 \| 0
SSV-17957	2009-05-20		exJune Officer Message System v1 Multiple Remote Vulnerabilities		659 \| 0
SSV-11354	2009-05-20		VidShare Pro (SQL/XSS) Multiple Remote Vulnerabilities		667 \| 0
SSV-11351	2009-05-20		Joomla com_gsticketsystem (catid) Blind SQL Injection Exploit		787 \| 0
SSV-11355	2009-05-20		Dog Pedigree Online Database 1.0.1b Multiple SQL Injection Vulns		857 \| 0
SSV-11326	2009-05-19		WoDig社区程序Default.asp页面过滤不严导致SQL注入漏洞		1306 \| 0
SSV-11346	2009-05-19		MaxCMS 2.0 (inc/ajax.asp) Remote SQL Injection Vulnerability		1847 \| 0
SSV-11340	2009-05-19		LightOpenCMS 0.1 (id) Remote SQL Injection Vulnerability		694 \| 0
SSV-11337	2009-05-19		PHP Dir Submit (Auth Bypass) SQL Injection Vulnerability		823 \| 0
SSV-11342	2009-05-19		Coppermine Photo Gallery <= 1.4.22 Multiple Remote Vulnerabilities		2174 \| 0
SSV-11336	2009-05-19		Pc4Uploader 9.0 Remote Blind SQL Injection Vulnerability		721 \| 0
SSV-11347	2009-05-19		DGNews 3.0 Beta (id) Remote SQL Injection Vulnerability		811 \| 0
SSV-11338	2009-05-19		Online Rental Property Script <= 5.0 (pid) SQL Injection Vulnerability		639 \| 0
SSV-11323	2009-05-18		WoDig社区程序wodig.asp页面过滤不严导致SQL注入漏洞		1245 \| 0
SSV-11322	2009-05-17		BigACE username参数SQL注入漏洞		1642 \| 0
SSV-11308	2009-05-15		MRCGIGUY Hot Links SQL 3.2.0 Insecure Cookie Handling Vuln		1688 \| 0
SSV-11310	2009-05-15		Shutter 0.1.1 Multiple Remote SQL Injection Vulnerabilities		761 \| 0
SSV-11304	2009-05-15		TRS搜索引擎代码注入漏洞		1577 \| 0
SSV-11302	2009-05-15		Easy Scripts Answer and Question Script Multiple Vulnerabilities		860 \| 0
SSV-11309	2009-05-15		My Game Script 2.0 (Auth Bypass) SQL Injection Vulnerability		640 \| 0
SSV-17949	2009-05-15		Joomla Component ArtForms 2.1 b7 Remote File Inclusion Vulnerabilities		808 \| 0
SSV-17953	2009-05-15		PHPenpals <= 1.1 (mail.php ID) Remote SQL Injection Exploit		657 \| 0
SSV-17948	2009-05-15		D-Link Products Captcha Bypass Vulnerability		651 \| 0
SSV-17937	2009-05-14		Ascad Networks 5 Products Insecure Cookie Handling Vulnerability		672 \| 0
SSV-17947	2009-05-14		MRCGIGUY Top Sites 1.0.0 Insecure Cookie Handling Vuln		648 \| 0
SSV-17940	2009-05-14		MRCGIGUY Amazon Directory 1.0/2.0 Insecure Cookie Handling Vuln		648 \| 0
SSV-17945	2009-05-14		2daybiz Template Monster Clone (edituser.php) Change Pass Exploit		649 \| 0
SSV-11290	2009-05-14		Family Connections CMS <= 1.9 (member) SQL Injection Exploit		728 \| 0
SSV-11292	2009-05-14		Mlffat 2.1 (Auth Bypass / Cookie) SQL Injection Vulnerability		692 \| 0
SSV-17938	2009-05-14		beLive v.0.2.3 (arch.php arch) Local File Inclusion Vulnerability		664 \| 0
SSV-17944	2009-05-14		2daybiz Business Community Script Multiple Remote Vulnerabilities		674 \| 0
SSV-17943	2009-05-14		MRCGIGUY Ultimate Profit Portal 1.0.1 Insecure Cookie Handling Vuln		827 \| 0
SSV-17946	2009-05-14		MRCGIGUY SimpLISTic SQL 2.0.0 Insecure Cookie Handling Vuln		705 \| 0
SSV-17939	2009-05-14		Submitter Script (Auth Bypass) SQL Injection Vulnerability		679 \| 0
SSV-17941	2009-05-14		MRCGIGUY Message Box 1.0 Insecure Cookie Handling Vuln		701 \| 0
SSV-17942	2009-05-14		MRCGIGUY The Ticket System 2.0 Insecure Cookie Handling Vuln		656 \| 0
SSV-11280	2009-05-13		BIGACE CMS 2.5 (username) Remote SQL Injection Exploit		1513 \| 0
SSV-11281	2009-05-13		恒浪IMS整合系统V4.1 多文件存在SQL注入漏洞		861 \| 0
SSV-11274	2009-05-12		microTopic v1 (rating) Remote Blind SQL Injection Exploit		745 \| 0
SSV-11259	2009-05-10		RTWebalbum 1.0.462 (AlbumID) Blind SQL Injection Exploit		1215 \| 0
SSV-11260	2009-05-10		The Recipe Script version 5 (Auth Bypass) Remote Sql Injecion		693 \| 0
SSV-11253	2009-05-09		Realty Web-Base 1.0 (Auth Bypass) SQL Injection Vulnerability		689 \| 0
SSV-11252	2009-05-09		The Recipe Script 5 (Auth Bypass) SQL Injection / DB Backup Vulns		691 \| 0
SSV-11248	2009-05-09		VIDEOSCRIPT.us (Auth Bypass) SQL Injection Vulnerability		747 \| 0
SSV-11249	2009-05-09		ST-Gallery 0.1a Multiple SQL Injection Vulnerabilities		665 \| 0
SSV-11254	2009-05-09		Luxbum 0.5.5/stable (Auth Bypass) SQL Injection Vulnerability		860 \| 0
SSV-11243	2009-05-08		PJBlog博客系统后台Action.aspSQL注入缺陷		1433 \| 0
SSV-11241	2009-05-08		PJBlog博客系统后台c_members.asp页面User变量过滤不严导致SQL注入漏洞		1161 \| 0
SSV-11242	2009-05-08		PJBlog博客系统后台Action.asp页面DelUserID变量过滤不严导致SQL注入缺陷		1403 \| 0
SSV-11238	2009-05-08		PJBlog个人博客系统cls_logAction.asp文件存在注入漏洞		1475 \| 0
SSV-11240	2009-05-08		PJBlog博客系统blogpost.asp页面log_CateID变量过滤不严导致SQL注入漏洞		1621 \| 0
SSV-11239	2009-05-08		PJBlog博客程序多个文件存在SQL注入漏洞		1516 \| 0
SSV-11218	2009-05-08		Bo-Blog 2.0.3 mod_tag.php注射漏洞		1761 \| 0
SSV-11234	2009-05-08		phpcms2008网站管理系统ask/search_ajax.php页面存在SQL注入漏洞		943 \| 0
SSV-17936	2009-05-07		webSPELL <= 4.2.0e (page) Remote Blind SQL Injection Exploit		661 \| 0
SSV-11207	2009-05-06		TemaTres 1.0.3 (Auth Bypass/SQL/XSS) Multiple Remote Vulnerabilities		657 \| 0

1
...
30
31
32
33
34
35
36
37
38
39
40
...
69