RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

Joomla vulnerabilities and new updates

By N-Stalker Team on July 23, 2007

N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

  • N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
    • WSI Update (N-Stalker Update Manager)
  • N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

  • ScriptMagix Photo Rating 2.0 ViewComments.PHP SQL Injection Vulnerability
  • Multiple ScriptMagix Products 2.0 Index.PHP SQL Injection Vulnerability
  • ScriptMagix Lyrics 2.0 Index.PHP SQL Injection Vulnerability
  • Katalog Plyt Audio 1.0 Index.PHP SQL Injection Vulnerability
  • Splatt Forum 4.0 BBCode_Ref.PHP Local File Include Vulnerability
  • Net Portal Dynamic System 5.10 Print.PHP SQL Injection Vulnerability
  • NetVios 2.0 Portal Page.ASP SQL Injection Vulnerability
  • CCleague Pro 1.0.1 PHP Local File Include Vulnerability
  • PHP-Nuke IFrame Module IFrame.PHP Remote File Include Vulnerability
  • PHPX 3.5.15 Cross-Site Scripting Vulnerability
  • PHPX 3.5.15 Users.PHP SQL Injection Vulnerability
  • PHPX 3.5.15 News.PHP SQL Injection Vulnerability
  • PHPX 3.5.15 Forums.PHP SQL Injection Vulnerability
  • PHPX 3.5.15 Print.PHP SQL Injection Vulnerability
  • PHPX 3.5.15 Gallery.PHP SQL Injection Vulnerability
  • LedgerSMB/SQL-Ledger 2.6.26 Login Parameter Local File Include And Authentication Bypass Vulnerabilities
  • Minerva 2.0.21 Forum.PHP SQL Injection Vulnerability
  • PragmaMX Landkartenmodule 2.1 Local File Include Vulnerability
  • WordPress 0.6.2.1 Templates.PHP Cross-Site Scripting Vulnerability
  • WordPress 2.1.1 Post.PHP Cross-Site Scripting Vulnerability
  • Web Wiz Forums 8.05 String Filtering SQL Injection Vulnerability
  • GEBlog 0.1 Index.PHP Local File Include Vulnerability
  • WebCalendar 1.0.3 Login.PHP Remote File Include Vulnerability
  • WebCalendar 1.0.3 Get_Events.PHP Remote File Include Vulnerability
  • WebCalendar 1.0.3 Get_Reminders.PHP Remote File Include Vulnerability
  • W-Agora 4.2.1 Search.PHP Cross-Site Scripting Vulnerability
  • W-Agora 4.2.1 Change_Password.PHP Cross-Site Scripting Vulnerability
  • W-Agora 4.2.1 Profile.PHP Cross-Site Scripting Vulnerability
  • W-Agora 4.2.1 Search.PHP SQL Injection Vulnerability
  • RealGuestbook 5.01 SQL Injection Vulnerability
  • RealGuestbook 5.01 Cross-Site Scripting Vulnerability
  • PHPRaid 3.0.6 RSS.PHP Remote File Include Vulnerability
  • Active Photo Gallery 6.2 Default.ASP SQL Injection Vulnerability
  • Digital Eye Gallery 1.1 Module.PHP Remote File Include Vulnerability
  • PHP-Revista 1.1.2 Busqueda.PHP SQL Injection Vulnerability
  • PHP-Revista 1.1.2 Lista.PHP SQL Injection Vulnerability
  • PHP-Revista 1.1.2 Autor.PHP SQL Injection Vulnerability
  • PHP-Revista 1.1.2 Articulo.PHP SQL Injection Vulnerability
  • NFN Address Book 0.4 mosConfig_Absolute_Path Remote File Include Vulnerability
  • NFN Address Book 0.4 Admin mosConfig_Absolute_Path Remote File Include Vulnerability
  • Active Link Engine Default.ASP SQL Injection Vulnerability
  • ClassWeb 2.0.3 Language.PHP Remote File Include Vulnerability
  • Study Planner 0.15 Settings.Ses.PHP Remote File Include Vulnerability
  • Study Planner 0.15 Db.Inc.PHP Remote File Include Vulnerability
  • Study Planner 0.15 Configuration.PHP Remote File Include Vulnerability
  • Study Planner 0.15 Service.Alert.Inc.PHP Remote File Include Vulnerability
  • PortailPHP 2.0 IDNews Parameter SQL Injection Vulnerability
  • LMS 1.8.9 Welcome.PHP Remote File Include Vulnerability
  • LMS 1.8.9 Userpanel.PHP Remote File Include Vulnerability
  • ASPWebCalendar 4.5 Calendar.ASP SQL Injection Vulnerability
  • SquirrelMail 1.4.8 Session Parameter Cross-Site Scripting Vulnerability
  • SquirrelMail 1.4.8 Delete_Draft Parameter Cross-Site Scripting Vulnerability
  • SquirrelMail 1.4.8 Webmail.PHP Cross-Site Scripting Vulnerability
  • ActiveBuyAndSell 6.2 BuyerSend.ASP SQL Injection Vulnerability
  • Multiple ActiveWebSoftwares Products Default.ASP SQL Injection Vulnerability
  • RoseOnlineCMS 3 beta2 Op Local File Include Vulnerability
  • Philex 0.2.3 Download.PHP File Include Vulnerabilities
  • Philex 0.2.3 Header.Inc.PHP File Include Vulnerabilities
  • User Home Pages 0.5 UHP_CONFIG.PHP Remote File Include Vulnerability
  • Active Newsletter 4.3 ViewNewspapers.ASP SQL Injection Vulnerability
  • EWebQuiz 8 EWebQuiz.ASP SQL Injection Vulnerability
  • Mambo SWMenu 4.0 MosConfig_Absolute_Path Parameter Remote File Include Vulnerability
  • Mambo SWMenu 4.0 MosConfig_Absolute_Path Parameter Remote File Include Vulnerability
  • Mambo FlatMenu 1.07 Module MosConfig_Absolute_Path Remote File Include Vulnerability
  • Joomla RWCards Component 2.4.3 SQL Injection Vulnerability
  • Joomla Joomlaboard 1.1.5.2 Component Remote File Include Vulnerability
  • Net Side CMS Index.PHP Remote File Include Vulnerability
  • WebFormatique Car Manager 1.1 Joomla Component Index.PHP SQL Injection Vulnerability
  • Image_Upload Script 2.0 Frontpage.PHP Remote File Include Vulnerability
  • Image_Upload Script 2.0 Forgot_Pass.PHP Remote File Include Vulnerability
  • Image_Upload Script 2.0 Login.PHP Remote File Include Vulnerability
  • CcCounter 2.0 Index.PHP Cross-Site Scripting Vulnerability
  • TTCMS 4.0 EZ_SQL.PHP Remote File Include Vulnerability
  • Mephisto 0.7.3 Blog Search Function Cross-Site Scripting Vulnerability
  • Satel Lite Satellite.PHP Local File Include Vulnerability
  • SB-WebSoft Addressbook 1.2 Local File Include Vulnerability
  • IceBB Avatar 1.0 Upload Index.PHP SQL Injection Vulnerability
  • FlexBB 1.0 Start.PHP SQL Injection Vulnerability
  • Free File Hosting System 1.1 Login.PHP Remote File Include Vulnerability
  • Free File Hosting System 1.1 Register.PHP Remote File Include Vulnerability
  • Free File Hosting System 1.1 Send.PHP Remote File Include Vulnerability
  • Free File Hosting System 1.1 Forgot_Pass.PHP Remote File Include Vulnerability
  • Free File Hosting System 1.1 Contact.PHP Remote File Include Vulnerability
  • ABitWhizzy Whizzypic.PHP Cross Site Scripting And Directory Traversal Vulnerability
  • ABitWhizzy Whizzylink.PHP Cross Site Scripting And Directory Traversal Vulnerability
  • CodeBB 1.0 Lang_Select Remote File Include Vulnerability
  • CodeBB 1.0 Pass_Code.PHP Remote File Include Vulnerability
  • AY System Solutions Web Content System 2.7.1 Remote File Include Vulnerability
  • Eve-Nuke Forums beta.01 MySQL.PHP Remote File Include Vulnerability
  • Xoops Articles Module 1.02 Print.PHP SQL Injection Vulnerability
  • MsxStudios Advanced Login 0.76 ProfileEdit.PHP Remote File Include Vulnerability
  • MangoBery 0.5.5 Quotes.PHP Remote File Include Vulnerability
  • MangoBery 0.5.5 Footer.Sample.PHP Remote File Include Vulnerability
  • Picture-Engine 1.2 Wall.PHP SQL Injection Vulnerability
  • sBLOG 0.7.3 Local File Include Vulnerability
  • Softerra Time-Assistant 6.2 Remote File Include Vulnerability
  • Softerra Time-Assistant 6.2 Remote File Include Vulnerability

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us