N-Stalker has made available the latest database update (v111) for N-Stealth Web Security Scanner.

This updates are available for the N-Stealth 5.0 version. If you are currently using an old version, please, contact us at:
E-mail: support@nstalker.com (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

– myServer 0.4.3 cgi-lib.dll Remote Buffer Overflow Vulnerability
– vbPortal 2.0 Authentication SQL Injection Vulnerability
– FloosieTek FTGatePro 1.2 WebAdmin Interface Information Disclosure Weakness
– IkonBoard 3.1.2a Cookie Default Parameter Arbitrary Command Execution Vulnerability
– Escapade 0.2.1 Scripting Engine PAGE Parameter Cross-Site Scripting Vulnerability
– Invision Power Board 1.2 Index.php Showtopic Cross-Site Scripting Vulnerability
– b2evolution 0.8.2 Multiple SQL Injection Vulnerabilities
– PHPBB 2.0.6 URL BBCode HTML Injection Vulnerability
– FoxWeb 2.5 PATH_INFO Remote Buffer Overrun Vulnerability
– Digital Scribe 1.3 Error Function Cross-Site Scripting Vulnerability
– WebCalendar 0.9.42 Multiple Cross-Site Scripting Vulnerabilities
– WebCalendar 0.9.42 Multiple Module SQL Injection Vulnerabilities
– FloosieTek FTGatePro Mail Server 1.22 Path Disclosure Vulnerability
– FloosieTek FTGatePro Mail Server 1.22 Cross-Site Scripting Vulnerability
– SAP Internet Transaction Server Information Disclosure Vulnerability
– SAP Internet Transaction Server Directory Traversal File Disclosure Vulnerability
– SAP Internet Transaction Server Cross Site Scripting Vulnerability
– Ezboard ‘invitefriends.php3’ Cross Site Scripting Vulnerability
– TSguestbook 2.1 Message Field HTML Injection Vulnerability
– Sitebuilder 1.4 ‘sitebuilder.cgi’ Directory Traversal File Disclosure Vulnerability

N-Stealth DB General Information
Version: 111
Release Date: 09/15/2003

Contact: support@nstalker.com
N-Stalker and N-Stealth are registered trademarks of ZMT Comunicacoes Ltda.
http://www.nstalker.com