Bugzilla vulnerabilities and new updates
N-Stalker has made available the latest database update (v163) for N-Stealth Web Security Scanner.
You should be able to receive it automatically next time you execute the scanner.
![]() |
to manually download it, use the url: https://secure.nstalker.com/customercenter/ |
If you need any additional assistance during this process, please, contact us at:
E-mail: support at nstalker (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)
This release has included the following vulnerabilities:
– VersatileBulletinBoard 1.0.0RC2 Multiple Cross-Site Scripting Vulnerabilities
– PHP 1.30 Advanced Transfer Manager Arbitrary File Upload Vulnerability
– VersatileBulletinBoard 1.0 Information Disclosure Vulnerability
– SqWebMail 5.0.4 File Attachment Script Injection Vulnerability
– SqWebMail 5.0.4 HTML Email Script Tag Script Injection Vulnerability
– SqWebMail 5.0.4 HTML Email IMG Tag Script Injection Vulnerability
– Aenovo Multiple Unspecified Cross-Site and SQL Injection Scripting Vulnerabilities
– Zeroblog 1.2 Thread.PHP Cross-Site Scripting Vulnerability
– SquirrelMail 1.4.2 Address Add Plugin Add.PHP Cross-Site Scripting Vulnerability
– Utopia News Pro 1.1.3 Multiple Cross-Site Scripting Vulnerabilities
– Utopia 1.1.3 News Pro SQL Injection Vulnerability
– Oracle 9.2.3 XML DB Cross-Site Scripting Vulnerability
– MediaWiki History Database Corruption Vulnerability
– TellMe 1.2 Multiple Cross-Site Scripting Vulnerabilities
– MyBloggie Search.PHP SQL Injection Vulnerability
– Hiki 0.8.2 Multiple Cross-Site Scripting Vulnerabilities
– OScommerce Additional_Images.PHP SQL Injection Vulnerability
– AspReady FAQ Manager SQL Injection Vulnerability
– MediaWiki 1.4.10HTML Inline Style Attributes Unspecified Cross-Site Scripting Vulnerability
– Apache mod_ssl SSLCipherSuite Restriction Bypass Vulnerability
– Bugzilla 2.21 User-Matching Information Disclosure Vulnerability
– Bugzilla 2.21 config.cgi Information Disclosure Vulnerability
– Netquery 3.1 Multiple Remote Vulnerabilities
– MySQL Eventum 1.5.5 Multiple Cross-Site Scripting Vulnerabilities
– AderSoftware CFBB 1.1 Index.CFM Cross-Site Scripting Vulnerability
– ChurchInfo 1.2.2 Multiple SQL Injection Vulnerabilities
– PHPFreeNews 1.32 Multiple Cross Site Scripting Vulnerabilities
– PHPFreeNews 1.31 Admin Login SQL Injection Vulnerability
– OpenBook 1.2.2 Admin.PHP SQL Injection Vulnerability
– Naxtor Shopping Cart 1.0 Lost_password.PHP Cross Site Scripting Vulnerability
– Naxtor Shopping Cart 1.0 Shop_Display_Products.PHP SQL Injection Vulnerability
– @Mail 4.11 Multiple Cross Site Scripting Vulnerabilities
– Gforge 4.5 Multiple Cross Site Scripting Vulnerabilities
– Website Baker 2.5.2 Browse.PHP Cross-Site Scripting Vulnerability
– Dragonfly Commerce 1.0 Multiple SQL Injection Vulnerabilities
– WebCalendar 1.0RC2 Assistant_Edit.PHP Unauthorized Access Vulnerability
– Clever Copy 2.0a Multiple Cross-Site Scripting Vulnerabilities
– PHPBB 2.0.16 Nested BBCode URL Tag Script Injection Vulnerability
– BMForum 3.0 Multiple Cross Site Scripting Vulnerabilities
N-Stealth DB General Information
Version: 163
Release Date: 10/23/2005