漏洞分类 - SQL 注入 - SQL injection - 知道创宇 Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-17661	2008-12-24		doop CMS <= 1.4.0b (CSRF/Upload Shell) Multiple Remote Vulnerabilities		693 \| 0
SSV-10313	2008-12-24		CMS NetCat 3.12 (password_recovery.php) Blind SQL Injection Exploit		767 \| 0
SSV-17663	2008-12-24		Joomla Component Ice Gallery 0.5b2 (catid) Blind SQL Injection Vuln		839 \| 0
SSV-10319	2008-12-24		Joomla Component com_lowcosthotels (id) Blind SQL Injection Vulnerability		856 \| 0
SSV-10304	2008-12-23		Joomla Component Volunteer 2.0 (job_id) SQL Injection Vulnerability		775 \| 0
SSV-10307	2008-12-23		Calendar Script 1.1 (Auth Bypass) SQL Injection Vulnerability		776 \| 0
SSV-17660	2008-12-23		Joomla Component com_lowcosthotels (id) Blind SQL Injection Vuln		750 \| 0
SSV-10308	2008-12-23		REDPEACH CMS (zv) Remote SQL Injection Vulnerability		699 \| 0
SSV-17658	2008-12-22		Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit		3570 \| 0
SSV-17656	2008-12-22		RSS Simple News (news.php pid) Remote SQL Injection Exploit		670 \| 0
SSV-10296	2008-12-22		Joomla Component com_hbssearch 1.0 Blind SQL Injection Vuln		902 \| 0
SSV-10297	2008-12-22		Joomla Component com_tophotelmodule 1.0 Blind SQL Injection Vuln		805 \| 0
SSV-4575	2008-12-22		Courier-Authlib非拉丁字符处理postgres SQL注入漏洞		488 \| 0
SSV-17657	2008-12-22		Text Lines Rearrange Script (filename) File Disclosure Vulnerability		696 \| 0
SSV-10291	2008-12-22		Userlocator 3.0 (y) Remote Blind SQL Injection Exploit		747 \| 0
SSV-17659	2008-12-22		YourPlace <= 1.0.2 Multiple Remote Vulnerabilities + RCE Exploit		725 \| 0
SSV-10290	2008-12-21		Constructr CMS <= 3.02.5 Stable Multiple Remote Vulnerabilities		695 \| 0
SSV-10271	2008-12-19		Joomla Component Tech Article 1.x (item) SQL Injection Vulnerability		798 \| 0
SSV-10268	2008-12-19		Microsoft SQL Server sp_replwritetovarbin() Heap Overflow Exploit (0day)		739 \| 0
SSV-10272	2008-12-19		TinyMCE 2.0.1 (index.php menuID) Remote SQL Injection Vulnerability		2104 \| 1
SSV-10273	2008-12-19		Lizardware CMS <= 0.6.0 Blind SQL Injection Exploit		792 \| 0
SSV-10270	2008-12-19		r.cms v2 Multiple SQL Injection Vulnerabilities		709 \| 0
SSV-10265	2008-12-19		Barracuda Spam Firewall v3.5.11.020, Model 600 SQL Injection Vuln		1592 \| 0
SSV-17654	2008-12-19		MyPBS (index.php seasonID) Remote SQL Injection Exploit		773 \| 0
SSV-10279	2008-12-19		Phpclanwebsite <= 1.23.3 Fix Pack #5 Multiple Remote Vulnerabilities		724 \| 0
SSV-10278	2008-12-19		I-Rater Basic (messages.php) Remote SQL Injection Vulnerability		719 \| 0
SSV-17655	2008-12-19		ReVou Twitter Clone Admin Password Changing Exploit		821 \| 0
SSV-10280	2008-12-19		Injader CMS 2.1.1 (id) Remote SQL Injection Vulnerability		1053 \| 0
SSV-17652	2008-12-18		2532\|Gigs 1.2.2 Stable Remote Login Bypass Vulnerability		855 \| 0
SSV-17651	2008-12-18		2532\|Gigs 1.2.2 Stable Multiple Remote Vulnerabilities		874 \| 0
SSV-17653	2008-12-18		2532\|Gigs 1.2.2 Stable Remote Command Execution Exploit		717 \| 0
SSV-14073	2008-12-17		Microsoft SQL Server sp_replwritetovarbin() Heap Overflow Exploit		756 \| 0
SSV-10257	2008-12-16		ClickAndEmaiL (SQL/XSS) Multiple Remote Vulnerabilities		701 \| 0
SSV-17646	2008-12-16		Gnews Publisher .NET (authors.asp authorID) SQL Injection Vulnerability		693 \| 0
SSV-10259	2008-12-16		FaScript FaUpload (download.php) SQL Injection Vulnerability		720 \| 0
SSV-17647	2008-12-16		Barracuda Spam Firewall v3.5.11.020 Model 600 SQL Injection Vuln		1621 \| 0
SSV-10258	2008-12-16		Click&Rank (SQL/XSS) Multiple Remote Vulnerabilities		687 \| 0
SSV-10262	2008-12-16		Aiyoota! CMS - Blind SQL Injection Exploit		755 \| 0
SSV-17643	2008-12-16		Nukedit 4.9.8 Remote Database Disclosure Vulnerability		714 \| 0
SSV-10261	2008-12-16		FLDS 1.2a report.php (linkida) Remote SQL Injection Exploit		700 \| 0
SSV-17641	2008-12-15		CFAGCMS v1 (right.php title) SQL Injection Vulnerability		697 \| 0
SSV-17636	2008-12-15		The Rat Cms Alpha 2 (Auth Bypass) SQL Injection Vulnerability		683 \| 0
SSV-17637	2008-12-15		XOOPS Module Amevents (print.php id) SQL Injection Vulnerability		1373 \| 0
SSV-17635	2008-12-15		Mediatheka <= 4.2 Remote Blind SQL Injection Exploit		657 \| 0
SSV-10250	2008-12-15		FLDS 1.2a (redir.php id) Remote SQL Injection Vulnerability		3547 \| 0
SSV-17640	2008-12-15		Aperto Blog 0.1.1 Local File Inclusion / SQL Injection Vulnerabilities		700 \| 0
SSV-10254	2008-12-15		Flatnux html/javascript Injection Cookie Grabber Exploit		705 \| 0
SSV-17633	2008-12-15		FLDS 1.2a (lpro.php id) Remote SQL Injection Vulnerability		676 \| 0
SSV-10256	2008-12-15		IsWeb CMS 3.0 (SQL/XSS) Multiple Remote Vulnerabilities		686 \| 0
SSV-10255	2008-12-15		ASPSiteWare Automotive Dealer V1/V2 SQL Injection Vulnerability		685 \| 0
SSV-17642	2008-12-15		Click&BaneX Multiple Remote SQL Injection Vulnerabilities		708 \| 0
SSV-17638	2008-12-15		CadeNix (cid) Remote SQL Injection Vulnerability		683 \| 0
SSV-10241	2008-12-15		FlexPHPNews 0.0.6 & PRO (Auth Bypass) SQL Injection Vulnerability		720 \| 0
SSV-10245	2008-12-15		ASP-DEV Internal E-Mail System (Auth Bypass) SQL Injection Vuln		767 \| 0
SSV-17624	2008-12-14		ASPSiteWare Home Builder 1.0/2.0 SQL Injection Vulnerability		686 \| 0
SSV-17621	2008-12-14		CodeAvalanche FreeForum (CAForum.mdb) Database Disclosure Vulnerability		762 \| 0
SSV-17625	2008-12-14		ASPSiteWare RealtyListing V1/V2 SQL Injection Vulnerabilities		749 \| 0
SSV-10233	2008-12-13		Social Groupie (group_index.php id) Remote SQL Injection Vulnerability		725 \| 0
SSV-10232	2008-12-13		Xpoze Pro (home menù) <= Blind $ql Injection		764 \| 0
SSV-10236	2008-12-13		The Net Guys ASPired2Blog (SQL/DD) Multiple Remote Vulnerabilities		713 \| 0
SSV-10230	2008-12-13		ASP-CMS 1.0 (index.asp cha) SQL Injection Vulnerability		757 \| 0
SSV-17615	2008-12-12		Xpoze 4.10 (home.html menu) Blind SQL Injection Vulnerability		691 \| 0
SSV-17619	2008-12-12		ColdFusion Scripts Red_Reservations Database Disclosure Vulnerability		1324 \| 0
SSV-17620	2008-12-12		Joomla Live Chat (SQL/Proxy) Multiple Remote Vulnerabilities		832 \| 0
SSV-17618	2008-12-12		Umer Inc Songs Portal Script (id) SQL Injection Vulnerability		684 \| 0
SSV-10226	2008-12-11		Butterfly Organizer 2.0.1 (view.php id) SQL Injection Vulnerability		698 \| 0
SSV-17609	2008-12-11		Feed Cms 1.07.03.19b (lang) Local File Inclusion Vulnerability		749 \| 0
SSV-17614	2008-12-11		The Net Guys ASPired2Poll Remote Database Disclosure Vulnerability		675 \| 0
SSV-17608	2008-12-11		eZ Publish 3.9.0/3.9.5/3.10.1 Command Execution Exploit (admin req)		677 \| 0
SSV-17612	2008-12-11		Banner Exchange Java (Auth Bypass) SQL Injection Vulnerability		691 \| 0
SSV-17611	2008-12-11		Ad Management Java (Auth Bypass) SQL Injection Vulnerability		712 \| 0
SSV-17610	2008-12-11		Affiliate Software Java 4.0 (Auth Bypass) SQL Injection Vulnerability		718 \| 0
SSV-4558	2008-12-11		Microsoft SQL Server sp_replwritetovarbin远程堆溢出漏洞		534 \| 0
SSV-17613	2008-12-11		PHP Support Tickets 2.2 Remote File Upload Vulnerability		718 \| 0
SSV-17607	2008-12-11		MyCal Personal Events Calendar (mycal.mdb) Database Disclosure Vuln		710 \| 0
SSV-4560	2008-12-11		phpMyAdmin table参数SQL注入漏洞		502 \| 0
SSV-17605	2008-12-11		PhpAddEdit 1.3 (Cookie) Login Bypass Vulnerability		765 \| 0
SSV-17606	2008-12-11		evCal Events Calendar Database Disclosure Vulnerability		690 \| 0
SSV-10223	2008-12-11		Webmaster Marketplace (member.php u) SQL Injection Vulnerability		679 \| 0
SSV-10227	2008-12-11		CF SHOPKART 5.2.2 (SQL/DD) Multiple Remote Vulnerabilities		718 \| 0
SSV-17604	2008-12-10		CF_Forum Blind SQL Injection Vulnerability		692 \| 0
SSV-10215	2008-12-10		Netref 4.0 Multiple Remote SQL Injection Vulnerabilities		711 \| 0
SSV-10212	2008-12-10		Poll Pro 2.0 (Auth Bypass) Remote SQL Injection Vulnerability		668 \| 0
SSV-10216	2008-12-10		ProQuiz 1.0 (Auth Bypass) SQL Injection Vulnerability		701 \| 0
SSV-17603	2008-12-10		CFMBLOG (index.cfm categorynbr) Blind SQL Injection Vulnerability		744 \| 0
SSV-17601	2008-12-10		CF_Calendar (calendarevent.cfm) Remote SQL Injection Exploit		722 \| 0
SSV-17602	2008-12-10		CF_Auction (forummessage) Blind SQL Injection Vulnerability		708 \| 0
SSV-10214	2008-12-10		Peel Shopping 3.1 (index.php rubid) SQL Injection Vulnerability		732 \| 0
SSV-10205	2008-12-09		Secure Downloads v2.0.0r for vBulletin SQL Injection Vulnerability		1563 \| 0
SSV-10206	2008-12-09		phpBB 3 (Mod Tag Board <= 4) Remote Blind SQL Injection Exploit		1429 \| 0
SSV-10202	2008-12-09		SIU Guarani Multiple Remote Vulnerabilities		711 \| 0
SSV-10203	2008-12-09		phpMyAdmin 3.1.0 (XSRF) SQL Injection Vulnerability		816 \| 0
SSV-17595	2008-12-09		Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln		684 \| 0
SSV-17596	2008-12-09		PostEcards (SQL/DD) Multiple Remote Vulnerabilities		776 \| 0
SSV-10180	2008-12-08		Product Sale Framework 0.1b (forum_topic_id) SQL Injection Vulnerability		753 \| 0
SSV-10197	2008-12-08		RankEm (rankup.asp siteID) Remote SQL Injection Vulnerability		809 \| 0
SSV-10185	2008-12-08		ASPManage Banners (RFU/DD) Multiple Remote Vulnerabilities		724 \| 0
SSV-10190	2008-12-08		ASP Talk (SQL/CSS) Multiple Remote Vulnerabilities		806 \| 0
SSV-10196	2008-12-08		ASP PORTAL Multiple Remote SQL Injection Vulnerabilities		800 \| 0
SSV-17586	2008-12-05		Multiple Membership Script 2.5 (id) SQL Injection Vulnerability		710 \| 0

1
...
35
36
37
38
39
40
41
42
43
44
45
...
69