漏洞分类 - SQL 注入 - SQL injection - Seebug 漏洞平台

漏洞分类 — SQL 注入

英文名字: SQL injection

漏洞详情：: SQL 注入，就是通过把SQL命令插入到Web表单提交或输入域名或页面请求的查询字符串，最终达到欺骗服务器执行恶意的SQL命令。

相关漏洞

SSV ID	提交时间	漏洞等级	漏洞名称	漏洞状态	人气 \| 评论
SSV-15602	2005-06-19		Claroline e-Learning <= 1.6 Remote Hash SQL Injection Exploit (2)		863 \| 0
SSV-15601	2005-06-17		Claroline e-Learning <= 1.6 Remote Hash SQL Injection Exploit		886 \| 0
SSV-15591	2005-06-09		Tcpdump bgp_update_print Remote Denial of Service Exploit		879 \| 0
SSV-15590	2005-06-08		Invision Power Board <= 1.3.1 Login.PHP SQL Injection (working)		934 \| 0
SSV-15588	2005-06-06		Portail PHP < 1.3 SQL Injection Exploit		893 \| 0
SSV-15587	2005-06-05		PostNuke <= 0.750 readpmsg.php SQL Injection Exploit		917 \| 0
SSV-15581	2005-05-31		MyBulletinBoard (MyBB) <= 1.00 RC4 SQL Injection Exploit		916 \| 0
SSV-15582	2005-05-31		myBloggie 2.1.1 - 2.1.2 SQL Injection Exploit		1009 \| 0
SSV-15578	2005-05-30		phpStat <= 1.5 (setup.php) Authentication Bypass Exploit (php 2)		865 \| 0
SSV-15576	2005-05-30		phpStat <= 1.5 (setup.php) Authentication Bypass Exploit (perl)		835 \| 0
SSV-15577	2005-05-30		phpStat <= 1.5 (setup.php) Authentication Bypass Exploit (php)		931 \| 0
SSV-15574	2005-05-27		Invision Power Board <= 2.0.3 Login.PHP SQL Injection (tutorial)		900 \| 0
SSV-15575	2005-05-27		Hosting Controller <= 0.6.1 Unauthenticated User Registeration (3rd)		873 \| 0
SSV-15573	2005-05-26		Invision Power Board <= 2.0.3 Login.PHP SQL Injection Exploit		905 \| 0
SSV-15562	2005-05-17		ZPanel <= 2.5b10 Remote SQL Injection Exploit		951 \| 0
SSV-15539	2005-04-13		Serendipity 0.8beta4 exit.php SQL Injection Exploit		1477 \| 0
SSV-15537	2005-04-11		PunBB 1.2.4 (change_email) SQL Injection Exploit		1289 \| 0
SSV-15535	2005-04-09		ACNews <= 1.0 Admin Authentication Bypass SQL Injection Exploit		924 \| 0
SSV-15533	2005-04-08		The Includer CGI <= 1.0 Remote Command Execution (new version2)		917 \| 0
SSV-15532	2005-04-08		The Includer CGI <= 1.0 Remote Command Execution (new version)		949 \| 0
SSV-15531	2005-04-07		PHP-Nuke 6.x - 7.6 Top module Remote Sql Injection Exploit (working)		1201 \| 0
SSV-15678	2005-03-27		phpMyFamily <= 1.4.0 SQL Injection Exploit		902 \| 0
SSV-15518	2005-03-21		phpMyFamily <= 1.4.0 Admin Bypass SQL Injection		881 \| 0
SSV-15511	2005-03-15		ZPanel <= 2.5 Remote SQL Injection Exploit		899 \| 0
SSV-15499	2005-03-08		paNews 2.0b4 Remote Admin Creation SQL Injection Exploit		953 \| 0
SSV-15500	2005-03-08		Ethereal <= 0.10.9 Denial of Service		1045 \| 0
SSV-15471	2005-02-12		MercuryBoard <= 1.1.1 Working Sql Injection		886 \| 0
SSV-15466	2005-02-10		CMScore SQL Injection Exploit		870 \| 0
SSV-15465	2005-02-10		MyPHP Forum 1.0 SQL Injection Exploit		863 \| 0
SSV-15467	2005-02-10		Chipmunk Forums SQL Injection Exploit		919 \| 0
SSV-15452	2005-02-04		LiteForum 2.1.1 sql injection exploit		953 \| 0
SSV-15437	2005-01-13		ITA Forum <= 1.49 SQL Injection Exploit		922 \| 0
SSV-15390	2004-11-22		Invision Power Board v2.0.0 - 2.0.2 Sql Injection Exploit		956 \| 0
SSV-15384	2004-11-15		vBulletin LAST.PHP SQL Injection Vulnerability		1421 \| 0
SSV-15356	2004-09-28		Serendipity 0.7-beta1 SQL Injection Proof of Concept		1480 \| 0
SSV-15351	2004-09-16		PHP-Nuke SQL Injection Edit/Save Message(s) Bug		2658 \| 0
SSV-15346	2004-09-01		TorrentTrader 1.0 RC2 SQL Injection Exploit		1425 \| 0
SSV-15337	2004-08-21		AWStats Input Validation Hole in 'logfile'		988 \| 0
SSV-15336	2004-08-20		phpMyWebhosting SQL Injection Exploit		1198 \| 0
SSV-15275	2003-12-21		PHP-NUKE version <= 6.9 'cid' sql injection Remote Exploit		1309 \| 0
SSV-15274	2003-12-21		phpBB 2.0.6 search_id sql injection MD5 Hash Remote Exploit		1053 \| 0
SSV-18387	2003-10-09		Brute forcer for OpenSSL ASN.1 parsing bugs (<=0.9.6j <=0.9.7b)		1051 \| 0
SSV-15239	2003-06-20		phpBB 2.0.5 SQL Injection password disclosure Exploit		1195 \| 0

1
...
64
65
66
67
68
69