RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

Mambo Vulnerabilities and new updates

By N-Stalker Team on September 5, 2005

N-Stalker has made available the latest database update (v160) for N-Stealth Web Security Scanner.
You should be able to receive it automatically next time you execute the scanner.

to manually download it, use the url:
https://secure.nstalker.com/customercenter/

 

 

If you need any additional assistance during this process, please, contact us at:
E-mail: support at nstalker (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

– Mambo Open Source 4.5.2 Session ID Spoofing Vulnerability
– Community Server Forums SearchResults.ASPX Cross-Site Scripting Vulnerability
– Hosting Controller 6.1 Error.ASP Cross-Site Scripting Vulnerability
– ASPPlayground.NET 3.2 Remote Arbitrary File Upload Vulnerability
– Dynamic Biz Website Builder (QuickWeb) 1.0 Login.ASP SQL Injection Vulnerability
– CGI-Club imTRBBS 1.0.2 Remote Command Execution Vulnerability
– Xoops 2.0.11 Multiple Cross-Site Scripting Vulnerabilities
– Community Link Pro Login.CGI File Parameter Remote Command Execution Vulnerability
– UBBCentral UBB.Threads 6.5.1 Multiple Cross-Site Scripting Vulnerabilities
– UBBCentral UBB.Threads 6.5.1 Multiple SQL Injection Vulnerabilities
– UBBCentral UBB.Threads 6.5.1 Multiple HTTP Response Splitting Vulnerabilities
– K-COLLECT CSV_DB.CGI/i_DB.CGI 1.0 Remote Command Execution Vulnerability
– ASPNuke 0.8 Language_Select.ASP HTTP Response Splitting Vulnerability
– ASPNuke 0.8 Comment_Post.ASP SQL Injection Vulnerability
– PHP-Fusion 6.0.105 SUBMIT.PHP HTML Injection Vulnerabilities
– ActiveBuyAndSell 6.2 Multiple SQL Injection Vulnerabilities
– ActiveBuyAndSell 6.2 SendPassword.ASP Cross-Site Scripting Vulnerability
– Mensajeitor 1.8.9 IP Parameter HTML Injection Vulnerability
– Mambo Open Source 4.5.2 Com_Contents SQL Injection Vulnerability
– Ipswitch WhatsUp Professional 2005 SP1 LOGIN.ASP SQL Injection Vulnerability
– DUware DUclassmate 1.2 Multiple SQL Injection Vulnerabilities
– DUware DUforum 3.1 Multiple SQL Injection Vulnerabilities
– DUware DUpaypal Pro 3.0 Multiple SQL Injection Vulnerabilities
– DUware DUamazon Pro 3.1 Multiple SQL Injection Vulnerabilities
– DUware DUportal Pro 3.4.3 Multiple SQL Injection Vulnerabilities
– Moodle 1.1.1.1 Teacher Privilege Escalation Vulnerability
– MercuryBoard 1.1.4 Index.PHP Remote SQL Injection Vulnerability
– NanoBlogger 3.2.1 Arbitrary Command Execution Vulnerability
– Fortibus CMS 4.0 Multiple SQL Injection Vulnerabilities

N-Stealth DB General Information
Version: 160
Release Date: 09/05/2005

c

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us