Apache Geronimo Vulnerabilities and new updates
N-Stalker has made available the latest database update (v173) for N-Stealth Web Security Scanner.
You should be able to receive it automatically next time you execute the scanner.
 |
to manually download it, use the url: https://secure.nstalker.com/customercenter/ |
If you need any additional assistance during this process, please, contact us at:
E-mail: support at nstalker (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)
This release has included the following vulnerabilities:
– Netbula Anyboard 9.9.5.6 Anyboard.CGI Cross-Site Scripting Vulnerability
– phpXplorer 0.9.33 Workspaces.PHP Directory Traversal Vulnerability
– Apache Geronimo 1.0 Multiple Input Validation Vulnerabilities
– CubeCart 3.0.7-pl1 Multiple Cross-Site Scripting Vulnerabilities
– EZDatabase 2.1.1 Index.PHP Cross-Site Scripting Vulnerability
– GTP iCommerce Multiple Cross-Site Scripting Vulnerabilities
– Ultimate Auction 3.67 ItemList.PL Cross-Site Scripting Vulnerability
– Faq-O-Matic 2.711 Multiple Cross-Site Scripting Vulnerabilities
– GeoBlog MOD_1.0 ViewCat.PHP SQL Injection Vulnerability
– White Album 2.5 Pictures.PHP SQL Injection Vulnerability
– 8Pixel.net SimpleBlog 2.1 Multiple Input Validation Vulnerabilities
– Ultimate Auction 3.67 Item.PL Cross-Site Scripting Vulnerability
– EZDatabaseRemote 2.0 PHP Script Code Execution Vulnerability
– Web Host Automation Ltd. Helm 3.2.8 ForgotPassword.ASP Cross-Site Scripting Vulnerability
– AlstraSoft Template Seller Pro Fullview.PHP Cross-Site Scripting Vulnerability
– DCP Portal 6.1.1 Multiple Input Validation Vulnerabilities
– Light Weight Calendar 1.0 Index.PHP Remote Command Execution Vulnerability
– TankLogger 2.4 General Functions Script SQL Injection Vulnerabilities
– Fog Creek Software FogBugz 4.0.29 Default.ASP Cross-Site Scripting Vulnerability
– Interspire TrackPoint NX 0.1 Index.PHP Cross-Site Scripting Vulnerability
– MyPhPim 01.05 Multiple Input Validation Vulnerabilities
– Easy Software Products CUPS 1.1.21 HTTP GET Denial Of Service Vulnerability
– Orjinweb Index.PHP Remote File Include Vulnerability
– WebWiz Forums 6.34 Search_form.ASP Cross-Site Scripting Vulnerability
– PostNuke 0.761 ADOdb Server.PHP SQL Injection Vulnerability
– Venom Board 1.22 Post.PHP3 Multiple SQL Injection Vulnerabilities
– PHP PEAR 0.2.2 Go-Pear.PHP Arbitrary Remote Code Execution Vulnerability
– 427BB 2.2.1 Showthread.PHP SQL Injection Vulnerability
– TinyPHPForum 3.6 Multiple Directory Traversal Vulnerabilities
– OnePlug CMS Multiple SQL Injection Vulnerabilities
– Lizard Cart CMS 1.0.4 Multiple SQL Injection Vulnerabilities
– Valdersoft Shopping Cart 3.0 Remote File Include Vulnerability
– Primo Place Primo Cart 1.0 Multiple SQL Injection Vulnerabilities
– INCOGEN Bugport 1.147 Index.PHP Multiple Cross-Site Scripting Vulnerabilities
– INCOGEN Bugport 1.134 Multiple SQL Injection Vulnerabilities
– Chimera Web Portal 0.2 Multiple Input Validation Vulnerabilities
– PHPJournaler 1.0 Readold Variable SQL Injection Vulnerability
– InTouch 0.5.1 Alpha User Variable SQL Injection Vulnerability
N-Stealth DB General Information
Version: 173
Release Date: 04/03/2006
