漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-10588	2009-02-10		A Better Member-Based ASP Photo Gallery (entry) SQL Injection Vuln		745 \| 0
SSV-17847	2009-02-10		Mynews 0_10 (Auth Bypass) SQL Injection Vulnerability		677 \| 0
SSV-10587	2009-02-10		BusinessSpace <= 1.2 (id) Remote SQL Injection Vulnerability		706 \| 0
SSV-4735	2009-02-09		Php168 v2008 权限提升漏洞		1096 \| 0
SSV-4720	2009-02-09		ESET远程管理员HTML注入漏洞		1330 \| 0
SSV-4731	2009-02-09		ProFTPD字符编码SQL注入漏洞		1176 \| 0
SSV-17843	2009-02-09		IF-CMS <= 2.0 (frame.php id) Blind SQL Injection Exploit		691 \| 0
SSV-17840	2009-02-06		CafeEngine (index.php catid) Remote SQL Injection Vulnerability		708 \| 0
SSV-10563	2009-02-04		rgboard v4 5p1 (07.07.27) Multiple Remote Vulnerabilities		773 \| 0
SSV-17830	2009-02-04		YapBB <= 1.2 (forumID) Blind SQL Injection Exploit		807 \| 0
SSV-10552	2009-02-04		Online Grades 3.2.4 (Auth Bypass) SQL Injection Vulnerability		678 \| 0
SSV-10550	2009-02-04		ClickCart 6.0 (Auth Bypass) Remote SQL Injection Vulnerability		715 \| 0
SSV-10554	2009-02-04		4Site CMS <= 2.6 Multiple Remote SQL Injection Vulnerabilities		697 \| 0
SSV-17821	2009-02-03		Groone's Guestbook 2.0 Remote File Inclusion Vulnerability		666 \| 0
SSV-17823	2009-02-03		WEBalbum 2.4b (photo.php id) Blind SQL Injection Exploit		702 \| 0
SSV-17824	2009-02-03		MyDesing Sayac 2.0 (Auth Bypass) SQL Injection Vulnerability		680 \| 0
SSV-17826	2009-02-03		DreamPics Photo/Video Gallery Blind SQL Injection Exploit		714 \| 0
SSV-17827	2009-02-03		Flatnux 2009-01-27 Remote File Inclusion Vulnerability		691 \| 0
SSV-4702	2009-02-02		马克斯CMS2.0beta (maxcms)SQL注入漏洞		1831 \| 0
SSV-17817	2009-02-02		phpBLASTER 1.0 RC1 (blaster_user) Blind SQL Injection Exploit		752 \| 0
SSV-10510	2009-02-02		MySQL 4/5/6 UDF for Command Execution		1645 \| 0
SSV-10509	2009-02-02		PostgreSQL 8.2/8.3/8.4 UDF for Command Execution		1479 \| 0
SSV-4698	2009-02-02		SocialEngine category_id SQL注入漏洞		504 \| 0
SSV-17815	2009-02-02		WholeHogSoftware Ware Support (Auth Bypass) SQL Injection Vuln		713 \| 0
SSV-4689	2009-02-02		Joomla! BazaarBuilder组件cid参数SQL注入漏洞		638 \| 0
SSV-10534	2009-02-02		eVision CMS <= 2.0 (field) SQL Injection Vulnerability		731 \| 0
SSV-17816	2009-02-02		WholeHogSoftware Password Protect (Auth Bypass) SQL Injection Vuln		666 \| 0
SSV-17819	2009-02-02		sourdough 0.3.5 Remote File Inclusion Vulnerability		673 \| 0
SSV-17818	2009-02-02		CMS Mini <= 0.2.2 Remote Command Execution Exploit		658 \| 0
SSV-4688	2009-02-02		Joomla! com_beamospetition组件SQL注入及跨站脚本执行漏洞		639 \| 0
SSV-4692	2009-02-02		PHP-CMS Project login.php远程SQL注入漏洞		466 \| 0
SSV-17811	2009-01-30		SkaLinks 1.5 (Auth Bypass) SQL Injection Vulnerability		677 \| 0
SSV-17806	2009-01-30		SalesCart (Auth Bypass) SQL Injection Vulnerability		687 \| 0
SSV-17804	2009-01-29		PLE CMS 1.0 beta 4.2 (login.php school) Blind SQL Injection Exploit		670 \| 0
SSV-17802	2009-01-29		GLPI v 0.71.3 Multiple Remote SQL Injection VUlnerabilities		704 \| 0
SSV-17803	2009-01-29		NetArtMedia Car Portal 1.0 (Auth Bypass) SQL Injection Vulnerability		719 \| 0
SSV-17797	2009-01-28		Social Engine (category_id) SQL Injection Vulnerability		693 \| 0
SSV-17790	2009-01-28		Community CMS <= 0.4 (/index.php id) Blind SQL Injection Exploit		676 \| 0
SSV-17798	2009-01-28		SmartSiteCMS 1.0 (articles.php var) Blind SQL Injection Exploit		712 \| 0
SSV-17796	2009-01-28		Max.Blog <= 1.0.6 (offline_auth.php) Offline Authentication Bypass		691 \| 0
SSV-17795	2009-01-28		Max.Blog <= 1.0.6 (submit_post.php) SQL Injection Vulnerability		709 \| 0
SSV-17794	2009-01-28		Lore 1.5.6 (article.php) Blind SQL Injection Exploit		675 \| 0
SSV-17787	2009-01-27		Pixie CMS 1.0 Multiple Local File Inclusion Vulnerabilities		1351 \| 0
SSV-17786	2009-01-27		Max.Blog <= 1.0.6 (show_post.php) SQL Injection Vulnerability		689 \| 0
SSV-17776	2009-01-26		Script Toko Online 5.01 (shop_display_products.php) SQL Injection Vuln		689 \| 0
SSV-17775	2009-01-26		E-ShopSystem Auth Bypass / SQL Injection Multiple Vulnerabilities		715 \| 0
SSV-17774	2009-01-26		ITLPoll 2.7 Stable2 (index.php id) Blind SQL Injection Exploit		688 \| 0
SSV-17780	2009-01-26		Groone's GLink Organizer (index.php cat) SQL Injection Vulnerability		688 \| 0
SSV-17778	2009-01-26		PHP-CMS 1 (username) Blind SQL Injection Exploit		723 \| 0
SSV-17777	2009-01-26		SHOP-INET v4 (show_cat2.php grid) SQL Injection Vulnerability		684 \| 0
SSV-17783	2009-01-26		Joomla com_flashmagazinedeluxe (mag_id) SQL Injection Vulnerability		796 \| 0
SSV-17779	2009-01-26		Wazzum Dating Software (userid) SQL Injection Vulnerability		633 \| 0
SSV-17782	2009-01-26		ClickAuction (Auth Bypass) Remote SQL Injection Vulnerability		705 \| 0
SSV-17781	2009-01-26		SiteXS <= 0.1.1 (type) Local File Inclusion Exploit		705 \| 0
SSV-17768	2009-01-25		Mambo com_sim v0.8 Blind SQL Injection Exploit		714 \| 0
SSV-17770	2009-01-25		Flax Article Manager 1.1 (cat_id) SQL Injection Vulnerability		706 \| 0
SSV-17771	2009-01-25		OpenGoo 1.1 (script_class) Local File Inclusion Vulnerability		706 \| 0
SSV-17772	2009-01-25		EPOLL SYSTEM 3.1 (password.dat) Disclosure Exploit		718 \| 0
SSV-17769	2009-01-25		Web-Calendar Lite 1.0 (Auth Bypass) SQL Injection Vulnerability		725 \| 0
SSV-17765	2009-01-22		asp-project 1.0 Insecure Cookie Method Vulnerability		644 \| 0
SSV-17766	2009-01-22		Pardal CMS <= 0.2.0 Blind SQL Injection Exploit		687 \| 0
SSV-17764	2009-01-22		OwnRS Blog 1.2 (autor.php) SQL Injection Vulnerability		705 \| 0
SSV-17762	2009-01-21		Joomla com_pcchess (game_id) Blind SQL Injection Exploit		878 \| 0
SSV-17760	2009-01-21		Mambo Component SOBI2 RC 2.8.2 (bid) SQL Injection Vulnerability		708 \| 0
SSV-17759	2009-01-21		Joomla Com BazaarBuilder Shopping Cart v.5.0 SQL Injection Exploit		809 \| 0
SSV-17757	2009-01-20		LinPHA Photo Gallery 2.0 Remote Command Execution Exploit		1449 \| 0
SSV-17755	2009-01-20		Max.Blog 1.0.6 Arbitrary Delete Post Exploit		672 \| 0
SSV-17758	2009-01-20		Dodo's Quiz Script 1.1 (dodosquiz.php) Local File Inclusion Vulnerability		700 \| 0
SSV-17756	2009-01-20		AJ Auction Pro OOPD 2.3 (id) SQL Injection Vulnerability		687 \| 0
SSV-17746	2009-01-19		QNX 6.4.0 bitflipped elf binary (id) Kernel Panic Exploit		752 \| 0
SSV-17744	2009-01-19		Fhimage 1.2.1 Remote Command Execution Exploit (mq = off)		679 \| 0
SSV-17753	2009-01-19		Joomla com_waticketsystem Blind SQL Injection Exploit		830 \| 0
SSV-17745	2009-01-19		D-Bus Daemon < 1.2.4 (libdbus) Denial of Service Exploit		723 \| 0
SSV-17747	2009-01-19		Joomla com_pccookbook (recipe_id) Blind SQL Injection Exploit		790 \| 0
SSV-17748	2009-01-19		Joomla Component com_news SQL Injection Vulnerability		824 \| 0
SSV-17754	2009-01-19		Ninja Blog 4.8 (CSRF/HTML Injection) Vulnerability		697 \| 0
SSV-17743	2009-01-19		Fhimage 1.2.1 Remote Index Change Exploit		666 \| 0
SSV-17742	2009-01-18		ESPG (Enhanced Simple PHP Gallery) 1.72 File Disclosure Vulnerability		687 \| 0
SSV-17740	2009-01-18		Click&Email (Auth Bypass) SQL Injection Vulnerability		696 \| 0
SSV-17741	2009-01-18		SCMS v1 (index.php p) Local File Inclusion Vulnerability		724 \| 0
SSV-17738	2009-01-18		Joomla Component Gigcal 1.x (id) SQL Injection Vulnerability		800 \| 0
SSV-17739	2009-01-18		DS-IPN.NET Digital Sales IPN Database Disclosure Vulnerability		711 \| 0
SSV-10493	2009-01-16		Blue Eye CMS <= 1.0.0 (clanek) Blind SQL Injection Exploit		668 \| 0
SSV-17735	2009-01-16		MPlayer 1.0rc2 TwinVQ Stack Buffer Overflow PoC		716 \| 0
SSV-17734	2009-01-16		Aj Classifieds - For Sale v3 Remote Shell Upload Vulnerability		690 \| 0
SSV-17728	2009-01-16		Ping IP (Auth Bypass) SQL Injection Vulnerability		697 \| 0
SSV-17725	2009-01-16		eFAQ (Auth Bypass) SQL Injection Vulnerability		739 \| 0
SSV-10494	2009-01-16		Free Bible Search PHP Script (readbible.php) SQL Injection Vulnerability		697 \| 0
SSV-17726	2009-01-16		eReservations (Auth Bypass) SQL Injection Vulnerability		699 \| 0
SSV-17731	2009-01-16		ASP ActionCalendar v.1.3 (Auth Bypass) SQL Injection Vulnerability		707 \| 0
SSV-17727	2009-01-16		The Walking Club (Auth Bypass) SQL Injection Vulnerability		713 \| 0
SSV-17737	2009-01-16		BibCiter 1.4 Multiple SQL Injection Vulnerabilities		681 \| 0
SSV-17732	2009-01-16		Aj Classifieds - Real Estate v3 Remote Shell Upload Vulnerability		633 \| 0
SSV-17736	2009-01-16		Simple PHP Newsletter 1.5 (olang) Local File Inclusion Vulnerabilities		705 \| 0
SSV-17733	2009-01-16		Aj Classifieds - Personals v3 Remote Shell Upload Vulnerability		640 \| 0
SSV-10490	2009-01-16		Joomla com_Eventing 1.6.x Blind SQL Injection Exploit		823 \| 0
SSV-10492	2009-01-16		MKPortal <= 1.2.1 () Multiple Remote Vulnerabilities		796 \| 0
SSV-10491	2009-01-16		Joomla Component RD-Autos 1.5.2 (id) SQL Injection Vulnerability		823 \| 0
SSV-17723	2009-01-15		Joomla Component RD-Autos 1.5.5 (id) SQL Injection Vulnerability		843 \| 0
SSV-17711	2009-01-14		DMXReady Job Listing <= 1.1 Remote Contents Change Vulnerability		660 \| 0

1
...
33
34
35
36
37
38
39
40
41
42
43
...
69