RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

PHP vulnerabilities (48 new sigs added)

By N-Stalker Team on September 6, 2004

N-Stalker has made available the latest database update (v133) for N-Stealth Web Security Scanner.
You should be able to receive it automatically next time you execute the scanner (to manually download it, use the url
https://secure.nstalker.com/customercenter/).

If you need any additional assistance during this process, please, contact us at:
E-mail: click here (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

– Webmatic 1.8 Unspecified Security Vulnerability
– SWsoft Plesk Reloaded 7.1 Login_name Parameter Cross-Site Scripting Vulnerability
– WebAPP 0.9.9 Directory Traversal Vulnerability
– Easy File Sharing Web Server 1.25 Access Control Bypass Vulnerability
– Easy File Sharing Web Server 1.25 Remote Denial Of Service Vulnerability
– PHP Code Snippet 0.8 Library Multiple Cross-Site Scripting Vulnerabilities
– Dynix WebPac Multiple Undisclosed SQL Injection Vulnerabilities
– JShop E-Commerce Suite v3 Page.PHP Cross-Site Scripting Vulnerability
– Compulsive Media CNU5 News.mdb Database Disclosure Vulnerability
– PhotoADay Pad_selected Parameter Cross-Site Scripting Vulnerability
– INL Ulog-php 0.8.1 Port.PHP SQL Injection Vulnerability
– Axis Network Camera And Video Server Multiple Vulnerabilities
– EGroupWare 1.0.3 Multiple Input Validation Vulnerabilities
– Sympa 4.1.2 New List HTML Injection Vulnerability
– Mantis 0.19a Multiple Cross-Site Scripting Vulnerabilities
– Mantis 0.19a Remote Server-Side Script Execution Vulnerability
– Mantis 0.19a New Account Signup Mass Emailing Vulnerability
– MyDMS 1.4.2 SQL Injection Vulnerability And Directory Traversal Vulnerability
– Working Resources BadBlue Webserver 2.5 Denial Of Service Vulnerability
– Nihuo Web Log 1.6 Analyzer HTML Injection Vulnerability
– Zixforum ZixForum.mdb Database Disclosure Vulnerability
– PlaySMS 0.7 Valid Function SQL Injection Vulnerability
– PHP-Fusion 4.0 Database Backup Information Disclosure Vulnerability
– Merak Mail Server 7.4.5 Webmail Multiple Vulnerabilities
– Gallery 1.4.4 Remote Server-Side Script Execution Vulnerability
– CuteNews 1.3.1 show_archives.php Cross-Site Scripting Vulnerability
– AWStats 6.2 Rawlog Plugin Logfile Parameter Input Validation Vulnerability
– PScript PForum 1.25 User Profile HTML Injection Vulnerability
– MediaWiki 1.3 Remote File Include Vulnerability
– RaXnet Cacti 0.8.5 Auth_Login.PHP SQL Injection Vulnerability
– QuiXplorer 2.3 Item Parameter Directory Traversal Vulnerability
– PHPMyWebHosting 0.3.4 SQL Injection Vulnerability
– Mercantec Softcart 4.0.0 CGI Buffer Overflow Vulnerability
– Moodle 1.3.3 Text Strings Vulnerability
– IceWarp Web Mail 5.2.7 Multiple Remote Vulnerabilities
– PluggedOut Blog 1.60 Calendar Module Cross-Site Scripting Vulnerability-
– PHPGroupWare 0.9.16 Plaintext Cookie Authentication Credentials Information Disclosure
– Simple Form 2.1 Unauthorized Mail Relay Vulnerability

N-Stealth DB General Information
Version: 133
Release Date: 09/06/2004

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us