漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-17716	2009-01-14		Joomla Component Fantasytournament SQL Injection Vulnerabilities		842 \| 0
SSV-17721	2009-01-14		DMXReady Secure Document Library <= 1.1 Remote SQL Injection Vuln		703 \| 0
SSV-17713	2009-01-14		DMXReady Member Directory Manager <= 1.1 SQL Injection Vulnerability		672 \| 0
SSV-17708	2009-01-14		DMXReady Contact Us Manager <= 1.1 Remote Contents Change Vuln		684 \| 0
SSV-17714	2009-01-14		DMXReady Members Area Manager <= 1.2 SQL Injection Vulnerability		689 \| 0
SSV-17707	2009-01-14		DMXReady Classified Listings Manager <= 1.1 SQL Injection Vulnerability		678 \| 0
SSV-17712	2009-01-14		DMXReady Links Manager <= 1.1 Remote Contents Change Vulnerability		680 \| 0
SSV-17710	2009-01-14		DMXReady Faqs Manager <= 1.1 Remote Contents Change Vulnerability		678 \| 0
SSV-17703	2009-01-14		Syzygy CMS <= 0.3 (Auth Bypass) SQL Injection Vulnerability		692 \| 0
SSV-17709	2009-01-14		DMXReady Document Library Manager <= 1.1 Contents Change Vuln		746 \| 0
SSV-17715	2009-01-14		Joomla Component Camelcitydb2 2.2 SQL Injection Vulnerabilities		823 \| 0
SSV-10465	2009-01-14		Joomla Component com_gigcal (gigcal_gigs_id) SQL Injection Vuln		824 \| 0
SSV-17702	2009-01-13		Dark Age CMS <= v0.2c Beta (Auth Bypass) SQL Injection Vulnerability		677 \| 0
SSV-10459	2009-01-13		Wordpress plugin WP-Forum 1.7.8 Remote SQL Injection Vulnerability		904 \| 0
SSV-10447	2009-01-12		Weight Loss Recipe Book 3.1 (Auth Bypass) SQL Injection Vuln		694 \| 0
SSV-10449	2009-01-12		Social Engine (browse_classifieds.php s) SQL Injection Vulnerability		673 \| 0
SSV-10448	2009-01-12		PHP-Fusion Mod the_kroax (comment_id) SQL Injection Vulnerability		737 \| 0
SSV-17700	2009-01-12		Joomla Component Portfol (vcatid) SQL Injection Vulnerability		787 \| 0
SSV-17698	2009-01-11		XOOPS Module tadbook2 (open_book.php book_sn) SQL Injection Vuln		1432 \| 0
SSV-17691	2009-01-11		Joomla com_xevidmegahd (catid) Remote SQL Injection Exploit		850 \| 0
SSV-17694	2009-01-11		Fast Guest Book (Auth Bypass) SQL Injection Vulnerability		692 \| 0
SSV-17699	2009-01-11		BKWorks ProPHP 0.50b1 (Auth Bypass) SQL Injection Vulnerability		638 \| 0
SSV-17692	2009-01-11		Joomla com_jashowcase (catid) Remote SQL Injection Exploit		811 \| 0
SSV-17695	2009-01-11		DZcms v.3.1 (products.php pcat) Remote SQL Injection Vulnerability		695 \| 0
SSV-10441	2009-01-11		Fast FAQs System (Auth Bypass) SQL Injection Vulnerability		656 \| 0
SSV-17697	2009-01-11		phpMDJ <= 1.0.3 (id_animateur) Blind SQL Injection Exploit		746 \| 0
SSV-17696	2009-01-11		Seo4SMF for SMF forums Multiple Vulnerabilities		665 \| 0
SSV-17693	2009-01-11		Joomla com_newsflash (id) Remote SQL Injection Vulnerability		782 \| 0
SSV-10432	2009-01-09		Pizzis CMS <= 1.5.1 (visualizza.php idvar) Blind SQL Injection Exploit		700 \| 0
SSV-10431	2009-01-09		PHP-Fusion Mod vArcade 1.8 (comment_id) SQL Injection Vulnerability		719 \| 0
SSV-10425	2009-01-08		PHP-Fusion Mod E-Cart 1.3 (items.php CA) SQL Injection Vulnerability		662 \| 0
SSV-10424	2009-01-08		PHP-Fusion Mod Members CV (job) 1.0 SQL Injection Vulnerability		684 \| 0
SSV-10417	2009-01-07		Oracle 10g SYS.LT.COMPRESSWORKSPACETREE SQL Injection Exploit		1587 \| 0
SSV-10410	2009-01-07		Goople <= 1.8.2 (frontpage.php) Blind SQL Injection Exploit		698 \| 0
SSV-10409	2009-01-07		RiotPix <= 0.61 (Auth Bypass) SQL Injection Vulnerability		683 \| 0
SSV-10408	2009-01-07		ezPack 4.2b2 (XSS/SQL) Multiple Remote Vulnerabilities		660 \| 0
SSV-10416	2009-01-07		Oracle 10g SYS.LT.MERGEWORKSPACE SQL Injection Exploit		1482 \| 0
SSV-10415	2009-01-07		Oracle 10g SYS.LT.REMOVEWORKSPACE SQL Injection Exploit		1533 \| 0
SSV-10407	2009-01-07		RiotPix <= 0.61 (forumid) Blind SQL Injection Exploit		687 \| 0
SSV-10411	2009-01-07		ItCMS <= 2.1a (Auth Bypass) SQL Injection Vulnerability		648 \| 0
SSV-10401	2009-01-06		Joomla com_na_newsdescription (newsid) SQL Injection Exploit		845 \| 0
SSV-10402	2009-01-06		Joomla com_phocadocumentation (id) Remote SQL Injection Exploit		858 \| 0
SSV-10403	2009-01-06		PHPAuctionSystem (XSS/SQL) Multiple Remote Vulnerabilities		666 \| 0
SSV-4619	2009-01-06		GForge GroupJoinRequest.class远程SQL注入漏洞		473 \| 0
SSV-10398	2009-01-05		Joomla Component simple_review 1.x SQL Injection Vulnerability		775 \| 0
SSV-10397	2009-01-05		Ayemsis Emlak Pro (Auth Bypass) SQL Injection Vulnerability		747 \| 0
SSV-10395	2009-01-05		The Rat CMS Alpha 2 (viewarticle.php id) Blind SQL Injection Exploit		677 \| 0
SSV-10392	2009-01-05		WSN Guest 1.23 (search) Remote SQL Injection Vulnerability		663 \| 0
SSV-10393	2009-01-05		PhpMesFilms 1.0 (index.php id) Remote SQL Injection Vulnerability		655 \| 0
SSV-10394	2009-01-05		plxAutoReminder 3.7 (id) Remote SQL Injection Vulnerability		720 \| 0
SSV-17688	2009-01-03		Webspell 4 (Auth Bypass) SQL Injection Vulnerability		671 \| 0
SSV-17687	2009-01-03		Lito Lite CMS Multiple Cross Site Scripting / Blind SQL Injection Exploit		670 \| 0
SSV-10374	2009-01-02		w3blabor CMS <= 3.3.0 (Admin Bypass) SQL Injection Vulnerability		688 \| 0
SSV-10376	2009-01-02		PowerClan 1.14a (Auth Bypass) SQL Injection Vulnerability		672 \| 0
SSV-10370	2009-01-02		ASPThai.Net Webboard 6.0 (bview.asp) SQL Injection Vulnerability		656 \| 0
SSV-10375	2009-01-02		PowerNews 2.5.4 (news.php newsid) SQL Injection Vulnerability		711 \| 0
SSV-10368	2009-01-02		2Capsule (sticker.php id) Remote SQL Injection Vulnerability		718 \| 0
SSV-17686	2009-01-01		Konqueror 4.1 XSS / Remote Crash Vulnerabilities		643 \| 0
SSV-10361	2009-01-01		ViArt Shopping Cart 3.5 Multiple Remote Vulnerabilities		693 \| 0
SSV-10357	2008-12-31		Flexphpic 0.0.x (Auth Bypass) SQL Injection Vulnerability		702 \| 0
SSV-4612	2008-12-31		DeluxeBB delete*参数SQL注入漏洞		1326 \| 0
SSV-10358	2008-12-31		CMScout 2.06 SQL Injection/Local File Inclusion Vulnerabilities		698 \| 0
SSV-10359	2008-12-31		Mole Group Vacation Estate Listing Script (editid1) Blind SQL Injection		680 \| 0
SSV-10360	2008-12-31		Pixel8 Web Photo Album 3.0 Remote SQL Injection Vulnerability		681 \| 0
SSV-10349	2008-12-30		Sepcity Shopping Mall (shpdetails.asp ID) SQL Injection Vulnerability		721 \| 0
SSV-10354	2008-12-30		PHPAlumni (Acomment.php id) SQL Injection Vulnerability		763 \| 0
SSV-10352	2008-12-30		Joomla Component com_na_content 1.0 Blind SQL Injection Vulnerability		805 \| 0
SSV-4607	2008-12-30		AlstraSoft Web Email Script Enterprise 'id'参数SQL注入漏洞		491 \| 0
SSV-10353	2008-12-30		eDNews v2 (eDNews_view.php newsid) SQL Injection Vulnerability		675 \| 0
SSV-17676	2008-12-29		eDNews v2 (lg) Local File Inclusion Vulnerability		683 \| 0
SSV-17683	2008-12-29		ThePortal 2.2 Arbitrary Remote File Upload Exploit		703 \| 0
SSV-17678	2008-12-29		CMS NetCat 3.0/3.12 Blind SQL Injection Exploit		703 \| 0
SSV-17677	2008-12-29		Sepcity Lawyer Portal (deptdisplay.asp ID) SQL Injection Vulnerability		761 \| 0
SSV-17684	2008-12-29		Flexcustomer 0.0.6 Admin Login Bypass / Possible PHP code writing		723 \| 0
SSV-17675	2008-12-29		webClassifieds 2005 (Auth Bypass) SQL Injection Vulnerability		695 \| 0
SSV-17679	2008-12-29		Sepcity Classified (classdis.asp ID) SQL Injection Vulnerability		664 \| 0
SSV-17681	2008-12-29		Flexphpsite 0.0.1 (Auth Bypass) SQL Injection Vulnerability		655 \| 0
SSV-17680	2008-12-29		FlexPHPDirectory 0.0.1 (Auth Bypass) SQL Injection Vulnerability		659 \| 0
SSV-17682	2008-12-29		Flexphplink 0.0.x (Auth Bypass) SQL Injection Vulnerability		847 \| 0
SSV-17665	2008-12-28		Joomla Component PAX Gallery 0.1 Blind SQL Injection Vulnerability		821 \| 0
SSV-17670	2008-12-28		OwenPoll 1.0 Insecure Cookie Handling Vulnerability		686 \| 0
SSV-17672	2008-12-28		ForumApp 3.3 Remote Database Disclosure Vulnerability		675 \| 0
SSV-17671	2008-12-28		PHP-Fusion Mod TI (id) Remote SQL Injection Vulnerability		686 \| 0
SSV-17664	2008-12-28		Miniweb 2.0 (Auth Bypass) SQL Injection Vulnerability		694 \| 0
SSV-17669	2008-12-28		AlstraSoft Web Email Script Enterprise (id) SQL Injection Vuln		670 \| 0
SSV-17673	2008-12-28		Flexphplink Pro Arbitrary File Upload Exploit		723 \| 0
SSV-17674	2008-12-28		Silentum LoginSys 1.0.0 Insecure Cookie Handling vulnerability		695 \| 0
SSV-17667	2008-12-28		DeluxeBB <= 1.2 Remote Blind SQL Injection Exploit		1406 \| 0
SSV-4596	2008-12-26		HZHOST域名虚拟主机管理系统sql注射漏洞		504 \| 0
SSV-4601	2008-12-26		Citrix Broadcast Server login.asp页面SQL注入漏洞		453 \| 0
SSV-10327	2008-12-25		Joomla Component Live Ticker 1.0 (tid) Blind SQL Injection Vuln		839 \| 0
SSV-10330	2008-12-25		PHP-Fusion <= 7.0.2 Remote Blind SQL Injection Exploit		673 \| 0
SSV-10329	2008-12-25		Joomla Component 5starhotels (id) SQL Injection Exploit		865 \| 0
SSV-10328	2008-12-25		Joomla Component mdigg 2.2.8 (category) SQL Injection Vuln		882 \| 0
SSV-10326	2008-12-25		威博多用户商城系统注入0day		1021 \| 0
SSV-10318	2008-12-24		StormBoard 1.0.1 (thread.php id) SQL Injection Vulnerability		718 \| 0
SSV-10314	2008-12-24		CMS NetCat <= 3.12 Multiple Remote Vulnerabilities		700 \| 0
SSV-10312	2008-12-24		phpLD 3.3 (page.php name) Blind SQL Injection Vulnerability		710 \| 0
SSV-10320	2008-12-24		Joomla Component com_allhotels (id) Blind SQL Injection Vulnerability		900 \| 0
SSV-17662	2008-12-24		ILIAS <= 3.7.4 (ref_id) Blind SQL Injection Vulnerability		693 \| 0

1
...
34
35
36
37
38
39
40
41
42
43
44
...
69