RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

Apache vulnerabilities and new updates

By N-Stalker Team on October 8, 2007

N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

  • N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
    • WSI Update (N-Stalker Update Manager)
  • N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

  • DreamStats System 4.2 Rootpath Remote File Include Vulnerability [CVE-2007-075]
  • EasyMoblog 0.5.1 Add_Comment.PHP SQL Injection Vulnerability [CVE-2007-075]
  • EasyMoblog 0.5.1 List_Comments.PHP SQL Injection Vulnerability [CVE-2007-075]
  • Uebimiau 2.7.10 Index.PHP Cross-Site Scripting Vulnerability [CVE-2006-330]
  • PHP Web Portail 2.5.1 Includes.PHP Remote File Include Vulnerability [CVE-2007-070]
  • PHPEventMan 1.0.2 Text.Ctrl.PHP Remote File Include Vulnerability [CVE-2007-070]
  • PHPEventMan 1.0.2 Common.Function.PHP Remote File Include Vulnerability [CVE-2007-070]
  • Cerulean Portal System 0.7b Remote File Include Vulnerability [CVE-2007-068]
  • Omegaboard 1.0b4 Functions.PHP Remote File Include Vulnerability [CVE-2007-068]
  • JV2 Folder Gallery 3.0.2 Template.PHP Remote File Include Vulnerability [CVE-2007-068]
  • Pharmacy System 2.0 Index.PHP SQL Injection Vulnerability
  • Simple Invoices 20070525 Index.PHP SQL Injection Vulnerability
  • Endonesia 8.4 Mod.PHP SQL Injection Vulnerability
  • Endonesia 8.4 Banners.PHP SQL Injection Vulnerability
  • Endonesia 8.4 Mod.PHP SQL Injection Vulnerability
  • Endonesia 8.4 Mod.PHP SQL Injection Vulnerability
  • Joomla/Mambo Mod_Forum Component PHPBB_Root.PHP Remote File Include Vulnerability
  • POWL 0.94 Load_Lang.PHP Remote File Include Vulnerability [CVE-2007-335]
  • Joomla/Mambo Com_SiteMap Component 2.0.0 MosConfig_Absolute_Path Remote File Include Vulnerability [CVE-2006-374]
  • OpenEMR 2.8.2 Login_Frame.PHP Remote File Include Vulnerability [CVE-2007-064]
  • FullASPSite ASP Hosting Windows.ASP SQL Injection Vulnerability [CVE-2007-067]
  • OpenEMR 2.8.2 Import_XML.PHP Remote File Include Vulnerability [CVE-2007-064]
  • PHPMyRing 4.1.3 LesLangues.PHP Remote File Include Vulnerability [CVE-2007-067]
  • Phpbb Tweaked 3 PHPBB_Root_Path Remote File Include Vulnerability [CVE-2007-068]
  • Epistemon 1.0 Common.Inc.PHP Remote File Include Vulnerability [CVE-2007-070]
  • NetClassifieds 1.9.6.3 ViewCat.PHP SQL Injection Vulnerability
  • NetClassifieds 1.9.6.3 ViewCat.PHP SQL Injection Vulnerability
  • LiveCMS 3.4 Categoria.PHP SQL Injection Vulnerability
  • SerWeb 0.9.4 Load_Lang.PHP Remote File Include Vulnerability
  • NetJukeBox 4.01 Index.PHP Cross Site Scripting Vulnerability
  • LMS LAN Management System 1.9.6 Language.PHP Remote File Include Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP SQL Injection Vulnerability
  • PHPAccounts 0.5 Index.PHP Local File Include Vulnerability [CVE-2007-334]
  • Wrapper.PHP for OsCommerce Local File Include Vulnerability
  • FuseTalk 4.0 AuthError.CFM Cross Site Scripting Vulnerability
  • FuseTalk 4.0 AuthError.CFM Cross Site Scripting Vulnerability
  • FuseTalk 4.0 ComFinish.CFM Cross Site Scripting Vulnerability
  • FuseTalk 4.0 ComFinish.CFM Cross Site Scripting Vulnerability
  • Musoo 0.21 MusooTemplateLite.PHP Remote File Include Vulnerability [CVE-2007-329]
  • Musoo 0.21 MsDb.PHP Remote File Include Vulnerability [CVE-2007-329]
  • Musoo 0.21 SoundImporter.PHP Remote File Include Vulnerability [CVE-2007-329]
  • Madirish Webmail 2.0 Index.PHP Remote File Include Vulnerability [CVE-2007-305]
  • Madirish Webmail 2.0 Compose.PHP Remote File Include Vulnerability [CVE-2007-305]
  • Madirish Webmail 2.0 Calendar.PHP Remote File Include Vulnerability [CVE-2007-305]
  • XOOPS Cjay Content Module 3.0 Spaw_Control.Class.PHP Remote File Include Vulnerability [CVE-2007-322]
  • XOOPS TinyContent Module 1.5 Spaw_Control.Class.PHP Remote File Include Vulnerability [CVE-2007-322]
  • XOOPS WiwiMod 0.4 Spaw_Control.Class.PHP Remote File Include Vulnerability [CVE-2007-322]
  • Jasmine CMS 1.0 Login.PHP SQL Injection Vulnerability [CVE-2007-331]
  • Jasmine CMS 1.0 News.PHP SQL Injection Vulnerability [CVE-2007-331]
  • FuseTalk 3.0 AuthError.CFM SQL Injection Vulnerability
  • PHPPgAdmin 4.1.1 SQLEdit.PHP Cross Site Scripting Vulnerability [CVE-2007-286]
  • TDizin Arama.ASP Cross-Site Scripting Vulnerability
  • WSPortal 1.0 Content.PHP SQL Injection Vulnerability [CVE-2007-312]
  • Utopia News Pro 1.4 Login.PHP Cross Site Scripting Vulnerability [CVE-2007-312]
  • Apache MyFaces Tomahawk 1.1.5 JSF Framework Autoscroll Parameter Cross Site Scripting Vulnerability [CVE-2007-310]
  • Apache Tomcat 6.0.13 JSP Example Web Applications Cross Site Scripting Vulnerability [CVE-2007-244]
  • MiniBB 2.0.5 Language Parameter Local File Include Vulnerability [CVE-2007-327]
  • YourFreeScreamer 1.0 Form.PHP Remote File Include Vulnerability
  • PHPMyInventory 2.8 Global.Inc.PHP Remote File Include Vulnerability [CVE-2007-327]
  • Solar Empire 2.9.1.1 Game_Listing.PHP SQL Injection Vulnerability
  • SH-News 3.1 News.PHP Remote File Include Vulnerability [CVE-2006-528]
  • SH-News 3.1 Report.PHP Remote File Include Vulnerability [CVE-2006-528]
  • SH-News 3.1 Init.PHP Remote File Include Vulnerability [CVE-2006-528]
  • SH-News 3.1 Comments.PHP Remote File Include Vulnerability [CVE-2006-528]
  • SH-News 3.1 Archive.PHP Remote File Include Vulnerability [CVE-2006-528]
  • Joomla! Letterman Subscriber Module 1.2.4 Mod_Lettermansubscribe.PHP Cross-Site Scripting Vulnerability [CVE-2007-324]
  • PHP::HTML 0.6.4 HTMLClass_Path Remote File Include Vulnerability [CVE-2007-323]
  • Sitellite Forge 4.2.12 Bug-559668.PHP Remote File Include Vulnerability [CVE-2007-322]
  • XOOPS Multiple Module Spaw_Control.Class.PHP Remote File Include Vulnerability [CVE-2007-322]
  • Xoops XT-Conteudo Module 1.52 Spaw_Control.Class.PHP Remote File Include Vulnerability [CVE-2007-322]
  • Xoops Horoscope 2.0 Module Footer.PHP Remote File Include Vulnerability [CVE-2007-323]
  • Fuzzylime 1.0 Low.PHP SQL Injection Vulnerability [CVE-2007-323]
  • PHP Live! 3.2.2 Request.PHP Cross-Site Scripting Vulnerability [CVE-2007-321]
  • Domain Technologie Control 0.25.1 404.PHP Cross-Site Scripting Vulnerability [CVE-2007-321]
  • Xoops XFsection Module 1.07 Dir_Module Parameter Remote File Include Vulnerability [CVE-2007-322]
  • E-Vision CMS 2.02 Style.PHP SQL Injection Vulnerability [CVE-2007-321]
  • PHP Real Estate Classifieds Header.PHP Remote File Include Vulnerability [CVE-2007-3160]

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us