N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

• N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
• WSI Update (N-Stalker Update Manager)
• N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

• E Annu 1.0 Login SQL Injection Vulnerability
• PunBB 1.2.13 SQL Injection and Remote File Include Vulnerabilities
• phpFaber CMS 1.3.36 Htmlarea.PHP Cross-Site Scripting Vulnerability
• Easy Web Portal 2.1.2 I-Index.PHP Remote File Include Vulnerability
• Easy Web Portal 2.1.2 I-Accueil.PHP Remote File Include Vulnerability
• S9Y Serendipity 1.1.1 Index.PHP SQL injection Vulnerability
• aWebNews 1.1 Visview.PHP Remote File Include Vulnerability
• aWebNews 1.1 Listing.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Admin/Images.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Scan.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Includes/Attributes.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Db_Utils.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Includes/Images.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Utils.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Admin/Attributes.PHP Remote File Include Vulnerability
• DBImageGallery 1.2.2 Values.PHP Remote File Include Vulnerability
• Mani Stats Reader 1.2 Index.PHP Remote File Include Vulnerability
• Tyger Bug Tracking System 1.1.3 SQL Injection Vulnerability
• Tyger Bug Tracking System 1.1.3 Register.PHP Cross-Site Scripting Vulnerability
• Tyger Bug Tracking System 1.1.3 Login.PHP Cross-Site Scripting Vulnerability
• News-Letterman 1.1 Sqllog Remote File Include Vulnerability
• PHPProfiles 3.1.2b Index.Inc.PHP Remote File Include Vulnerability
• PHPProfiles 3.1.2b Friends.Inc.PHP Remote File Include Vulnerability
• PHPProfiles 3.1.2b Body_Admin.Inc.PHP INCPATH Remote File Include Vulnerability
• PHPProfiles 3.1.2b Body_Admin.Inc.PHP MENU Remote File Include Vulnerability
• PHPProfiles 3.1.2b Body.Inc.PHP INCPATH Remote File Include Vulnerability
• PHPProfiles 3.1.2b Body.Inc.PHP MENU Remote File Include Vulnerability
• PHPProfiles 3.1.2b Admin_Newcomm.Inc.PHP Remote File Include Vulnerability
• PHPProfiles 3.1.2b Account.Inc.PHP Remote File Include Vulnerability
• PHPProfiles 3.1.2b Menu_U.Inc.PHP Remote File Include Vulnerability
• Geeklog 1.4 BlackList.Examine.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 EditIPofURL.Admin.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 MassDelete.Admin.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 MailAdmin.Action.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 EditIP.Admin.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 LogView.Admin.Class.PHP Remote File Include Vulnerability
• Geeklog 1.4 Function.Inc Remote File Include Vulnerability
• AJ Square Products 1.0 Postingdetails.PHP SQL Injection Vulnerability
• AJ Square Products 1.0 View_Profile.PHP SQL Injection Vulnerability
• AJ Square Products 1.0 Subcat.PHP SQL Injection Vulnerability
• AJ Square Products 1.0 Topic_Title.PHP SQL Injection Vulnerability
• Vivvo Article Manager 3.4 DBConn.PHP Remote File Include Vulnerability
• Rigter Portal System 6.2 Categoria Index.PHP SQL injection Vulnerability
• Angel Learning Management Suite 7.1 Default.ASP SQL Injection Vulnerability
• Woltlab Burning Board 2.3.6 Multiple HTML Injection Vulnerabilities
• RRDBrowse 1.6 File Parameter Directory Traversal Vulnerability
• VCard Pro Create.PHP Cross-Site Scripting Vulnerability
• LI-Guestbook 1.1 Guestbook.PHP SQL injection Vulnerability