漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-11208	2009-05-06		TemaTres 1.0.3 Remote Blind SQL Injection Exploit		657 \| 0
SSV-11210	2009-05-06		Joomla Almond Classifieds 5.6.2 Blind SQL Injection Vuln		974 \| 0
SSV-11195	2009-05-05		BluSky CMS (news_id) Remote SQL Injection Vulnerability		1242 \| 0
SSV-11173	2009-05-02		MiniTwitter 0.2b Multiple SQL Injection Vulnerabilities		1400 \| 0
SSV-11163	2009-05-01		Leap CMS 0.1.4 (SQL/XSS/SU) Multiple Remote Vulnerabilities		1470 \| 0
SSV-11162	2009-05-01		Leap CMS 0.1.4 (searchterm) Blind SQL Injection Exploit		1611 \| 0
SSV-11124	2009-04-30		ProjectCMS 1.0b (index.php sn) Remote SQL Injection Vulnerability		1583 \| 0
SSV-11123	2009-04-30		eLitius 1.0 (banner-details.php id) SQL Injection Vulnerability		1764 \| 0
SSV-11120	2009-04-30		Tiger DMS suffers from a remote SQL injection vulnerability that allows for authentication bypass		1121 \| 0
SSV-17928	2009-04-30		Leap CMS 0.1.4 (searchterm) Blind SQL Injection Exploit		719 \| 0
SSV-11126	2009-04-30		Tiger DMS (Auth Bypass) Login.php Remote SQL Injection Vulnerability		1043 \| 0
SSV-17927	2009-04-29		Tiger DMS (Auth Bypass) Remote SQL Injection Vulnerability		719 \| 0
SSV-17926	2009-04-29		S-Cms 1.1 Stable (page) Local File Inclusion Vulnerability		678 \| 0
SSV-11112	2009-04-28		ECShop 2.5.0 (order_sn) Remote SQL Injection Vulnerability		1946 \| 0
SSV-5128	2009-04-28		bBlog rss.php远程SQL注入漏洞		1934 \| 0
SSV-17925	2009-04-28		MIM: InfiniX 1.2.003 Multiple SQL Injection Vulnerabilities		705 \| 0
SSV-11111	2009-04-28		EZ-Blog Beta2 (category) Remote SQL Injection Vulnerability		781 \| 0
SSV-5127	2009-04-28		BBSGood论坛程序UserInfo.asp页面Blogurl变量过滤不严导致SQL注入漏洞		1259 \| 0
SSV-5118	2009-04-28		AbleSpace多个跨站脚本及SQL注入漏洞		583 \| 0
SSV-11096	2009-04-25		Photo-Rigma.BiZ v30 (SQL/XSS) Multiple Remote Vulnerabilities		639 \| 0
SSV-11097	2009-04-25		Pragyan CMS 2.6.4 Multiple SQL Injection Vulnerabilities		673 \| 0
SSV-11088	2009-04-24		PJblog V3.0 0day Vbs		1502 \| 0
SSV-5096	2009-04-24		PJblog V3.0 注入漏洞		1347 \| 0
SSV-11085	2009-04-23		5 star Rating 1.2 (Auth Bypass) SQL Injection Vulnerability		802 \| 0
SSV-17923	2009-04-22		Joomla Component rsmonials Remote Cross Site Scxripting Exploit		787 \| 0
SSV-11067	2009-04-21		Pligg 9.9.0 (editlink.php id) Blind SQL Injection Exploit		1820 \| 0
SSV-17915	2009-04-21		TotalCalendar 2.4 (include) Local File Inclusion Vulnerability		943 \| 0
SSV-11074	2009-04-21		Creasito e-Commerce 1.3.16 (Auth Bypass) SQL Injection Vuln		789 \| 0
SSV-11066	2009-04-21		EZ Webitor (Auth Bypass) SQL Injection Vulnerability		701 \| 0
SSV-17913	2009-04-21		CRE Loaded 6.2 (products_id) SQL Injection Vulnerability		654 \| 0
SSV-11072	2009-04-21		e107 <= 0.7.15 (extended_user_fields) Blind SQL Injection Exploit		1363 \| 0
SSV-17918	2009-04-21		VS PANEL 7.3.6 (Cat_ID) Remote SQL Injection Vulnerability		689 \| 0
SSV-17914	2009-04-21		PastelCMS 0.8.0 (LFI/SQL) Multiple Remote Vulnerabilities		667 \| 0
SSV-17916	2009-04-21		NotFTP 1.3.1 (newlang) Local File Inclusion Vulnerability		673 \| 0
SSV-17920	2009-04-21		I-Rater Pro/Plantinum v4 (Auth Bypass) SQL Injection Vulnerability		669 \| 0
SSV-17921	2009-04-21		Studio Lounge Address Book 2.5 Authentication Bypass Vulnerability		666 \| 0
SSV-17922	2009-04-21		MixedCMS 1.0b (LFI/SU/AB/FD) Multiple Remote Vulnerabilities		687 \| 0
SSV-17911	2009-04-21		Dokeos LMS <= 1.8.5 (whoisonline.php) PHP Code Injection Exploit		875 \| 0
SSV-17917	2009-04-21		Quick.Cms.Lite 0.5 (id) Remote SQL Injection Vulnerability		692 \| 0
SSV-11068	2009-04-21		WysGui CMS 1.2b (Insecure Cookie Handling) Blind SQL Injection Exploit		655 \| 0
SSV-11061	2009-04-21		Multi-lingual E-Commerce System 0.2 Multiple Remote Vulnerabilities		672 \| 0
SSV-11063	2009-04-21		Seditio CMS Events Plugin (c) Remote SQL Injection Vulnerability		684 \| 0
SSV-11050	2009-04-18		ClanTiger <= 1.1.1 (Auth Bypass) SQL Injection Vulnerability		683 \| 0
SSV-5066	2009-04-18		Geeklog usersettings.php模块SQL注入漏洞		1264 \| 0
SSV-11047	2009-04-18		Tiny Blogr 1.0.0 rc4 (Auth Bypass) SQL Injection Vulnerability		707 \| 0
SSV-11052	2009-04-18		Online Guestbook Pro (display) Blind SQL Injection Vulnerability		2404 \| 0
SSV-11054	2009-04-18		Hot Project v7 (Auth Bypass) SQL Injection Vulnerability		685 \| 0
SSV-11032	2009-04-17		Geeklog <= 1.5.2 savepreferences()/*blocks[] SQL Injection Exploit		1607 \| 0
SSV-11037	2009-04-17		cpCommerce 1.2.8 (id_document) Blind SQL Injection Vulnerability		673 \| 0
SSV-11041	2009-04-17		chCounter 3.1.3 (Login Bypass) SQL Injection Vulnerability		691 \| 0
SSV-11033	2009-04-17		NetHoteles 2.0/3.0 (Auth Bypass) SQL Injection Vulnerability		700 \| 0
SSV-11038	2009-04-17		NetHoteles 3.0 (ficha.php) SQL Injection Vulnerability		696 \| 0
SSV-17910	2009-04-17		ClanTiger <= 1.1.1 (slug) Blind SQL Injection Exploit		690 \| 0
SSV-11001	2009-04-14		XEngineSoft PMS/MGS/NM/AMS 1.0 (Auth Bypass) SQL Injection Vulns		727 \| 0
SSV-17907	2009-04-14		RQMS (Rash) <= 1.2.2 Multiple SQL Injection Vulnerabilities		656 \| 0
SSV-11003	2009-04-14		e107 Plugin userjournals_menu (blog.id) SQL Injection Vulnerability		1471 \| 0
SSV-17906	2009-04-14		Aqua CMS (username) SQL Injection Vulnerability		661 \| 0
SSV-11002	2009-04-14		FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability		706 \| 0
SSV-10983	2009-04-13		Simbas CMS 2.0 (Auth Bypass) SQL Injection Vulnerability		671 \| 0
SSV-10977	2009-04-13		Geeklog <= 1.5.2 SEC_authenticate() SQL Injection Exploit		1699 \| 0
SSV-10984	2009-04-13		BackendCMS 5.0 (main.asp id) SQL Injection Vulnerability		698 \| 0
SSV-10978	2009-04-13		Dynamic Flash Forum 1.0 Beta Multiple Remote Vulnerabilities		705 \| 0
SSV-10981	2009-04-13		AdaptBB 1.0b Multiple Remote Vulnerabilities		697 \| 0
SSV-10982	2009-04-13		WebFileExplorer 3.1 (Auth Bypass) SQL Injection Vulnerability		687 \| 0
SSV-10979	2009-04-13		Absolute Form Processor XE-V 1.5 (Auth Bypass) SQL Injection Vuln		717 \| 0
SSV-10980	2009-04-13		My Dealer CMS 2.0 (Auth Bypass) SQL Injection Vulnerability		654 \| 0
SSV-5031	2009-04-11		Geeklog SEC_authenticate()函数SQL注入漏洞		1317 \| 0
SSV-5032	2009-04-11		glFusion lib-session.php模块SQL注入漏洞		1603 \| 0
SSV-10972	2009-04-11		w3bcms Gaestebuch 3.0.0 Blind SQL Injection Exploit		843 \| 0
SSV-10975	2009-04-11		Loggix Project 9.4.5 (refer_id) Blind SQL Injection Vulnerability		1010 \| 0
SSV-17893	2009-04-08		Joomla Component MailTo (article) SQL Injection Vulnerability		834 \| 0
SSV-17892	2009-04-08		Joomla Component Maian Music 1.2.1 (category) SQL Injection Vuln		795 \| 0
SSV-17897	2009-04-08		WebFileExplorer 3.1 (DB.MDB) Database Disclosure Vulnerability		720 \| 0
SSV-17896	2009-04-08		Xplode CMS (wrap_script) Remote SQL Injection Vulnerability		759 \| 0
SSV-17894	2009-04-08		Joomla Component Cmimarketplace (viewit) Directory Traversal Vuln		819 \| 0
SSV-17889	2009-04-07		Family Connections CMS <= 1.8.2 Blind SQL Injection Vulnerability		684 \| 0
SSV-17890	2009-04-07		Lanius CMS <= 0.5.2 Remote Arbitrary File Upload Exploit		696 \| 0
SSV-10957	2009-04-07		FlexCMS Calendar (ItemId) Blind SQL Injection Vulnerability		702 \| 0
SSV-10955	2009-04-06		Joomla Component com_bookjoomlas 0.1 SQL Injection Vulnerability		860 \| 0
SSV-10947	2009-04-04		glFusion <= 1.1.2 COM_applyFilter()/cookies Blind SQL Injection Exploit		9206 \| 0
SSV-10951	2009-04-04		AdaptBB 1.0 (topic_id) SQL Injection / Credentials Disclosure Exploit		721 \| 0
SSV-10948	2009-04-04		form2list (page.php id) Remote SQL Injection Vulnerability		722 \| 0
SSV-10950	2009-04-04		Gravity Board X 2.0b SQL Injection / Post Auth Code Execution		695 \| 0
SSV-10941	2009-04-02		MyioSoft Ajax Portal 3.0 (page) SQL Injection Vulnerability		1958 \| 0
SSV-4967	2009-04-01		Yxbbs3.0 20090225版 Usersetup.asp SQL注入		1182 \| 0
SSV-4966	2009-04-01		Yxbbs3.0 注入漏洞		1408 \| 0
SSV-10932	2009-04-01		PHPRecipeBook 2.39 (course_id) Remote SQL Injection Vulnerability		719 \| 0
SSV-10928	2009-04-01		VirtueMart <= 1.1.2 Remote SQL Injection Exploit (meta)		773 \| 0
SSV-10929	2009-04-01		VirtueMart <= 1.1.2 Multiple Remote Vulnerabilities		729 \| 0
SSV-4970	2009-04-01		Xlight FTP Server user参数SQL注入漏洞		1102 \| 0
SSV-10933	2009-04-01		vsp stats processor 0.45 (gamestat.php gameID) SQL Injection Vuln		709 \| 0
SSV-10926	2009-04-01		Community CMS 0.5 Multiple SQL Injection Vulnerabilities		702 \| 0
SSV-10913	2009-03-31		BandSite CMS 1.1.4 (members.php memid) SQL Injection Vulnerability		693 \| 0
SSV-10914	2009-03-31		Gravy Media CMS 1.07 Multiple Remote Vulnerabilities		690 \| 0
SSV-10912	2009-03-31		Diskos CMS Manager (SQL/DB/Auth Bypass) Multiple Vulnerabilities		701 \| 0
SSV-10917	2009-03-31		Family Connection 1.8.1 Multiple Remote Vulnerabilities		688 \| 0
SSV-10916	2009-03-31		JobHut <= 1.2 (pk) Remote SQL Injection Vulnerability		704 \| 0
SSV-10905	2009-03-30		glFusion <= 1.1.2 COM_applyFilter()/order SQL Injection Exploit		10151 \| 0
SSV-10907	2009-03-30		iWare CMS 5.0.4 Multiple Remote SQL Injection Vulnerabilities		757 \| 0
SSV-10896	2009-03-28		Simply Classified 0.2 (category_id) SQL Injection Vulnerability		674 \| 0

1
...
31
32
33
34
35
36
37
38
39
40
41
...
69