RESELLER | LOGIN
← Volte para a página principal
N-Stalker Latest Updates

Oracle 11i Rapid Install WS vulnerabilities

By N-Stalker Team on October 15, 2007

N-Stalker has made available the latest database update for its Web Application Security Assessment Products. Following the support life-cycle, we are still distributing updates for previous version.

You will be able to download it automatically in the following versions:

  • N-Stalker Web Application Security Scanner 2006 (Enterprise, QA and Infrastructure Edition)
    • WSI Update (N-Stalker Update Manager)
  • N-Stealth HTTP Security Scanner (not updated)

You should be able to receive it automatically next time you execute the scanner.

If you prefer to download it manually, please, use the following url: https://customer.nstalker.com.

If you need any additional assistance during this process, please, contact us at:
Web: Open new support ticket at https://customer.nstalker.com
E-mail: http://www.nstalker.com/about/contact (24hs) or
Phone: +55-11-3675-7093 (9am to 18pm GMT-0300)

This release has included the following vulnerabilities:

  • TagIt! TagBoard 2.1.b Tagviewer.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Wordfilter.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Tagviewer.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Tag_Process.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Tag_Process.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Errmsg.Inc.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b AddTagmin.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Ban_Watch.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b DelTagmin.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b DelTag.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b EditTagmin.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b EditTag.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b ManageTagmins.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Verify.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Index.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Readconf.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Updateconf.PHP Remote File Include Vulnerability [CVE-2007-090]
  • TagIt! TagBoard 2.1.b Updatefilter.PHP Remote File Include Vulnerability [CVE-2007-090]
  • WebMatic 2.6 Index_Album.PHP Remote File Include Vulnerability [CVE-2007-083]
  • WebMatic 2.6 Index_Album.PHP Remote File Include Vulnerability [CVE-2007-083]
  • PHPMyVisites 1.3 Phpmyvistes.PHP Cross-Site Scripting Vulnerability [CVE-2007-089]
  • AV Arcade 2.1b Index.PHP SQL Injection Vulnerability
  • PHP Director 0.21 Videos.PHP SQL Injection Vulnerability
  • Oreon 1.2.3 Remote File Include Vulnerability [CVE-2007-036]
  • vBulletin 3.6.4 Attachment.PHP Cross-Site Scripting Vulnerability [CVE-2007-086]
  • OPENi-CMS 1.0 Plugin Remote File Include Vulnerability [CVE-2007-088]
  • PHPEventCalendar 0.2.3 Eventdisplay.PHP Script SQL Injection Vulnerability
  • HispaH Youtube Clone MSG.PHP Script SQL Injection Vulnerability
  • TotalCalendar 2.402 View_Event Script SQL Injection Vulnerability
  • Wheatblog 1.1 Login SQL Injection Vulnerability
  • Buddy Zone 1.5 View_Sub_Cat.PHP SQL Injection Vulnerability
  • Coppermine Photo Gallery 1.4.10 Album Password Cookie SQL Injection Vulnerability
  • Dagger Cal.Func.PHP Remote File Include Vulnerability [CVE-2007-343]
  • Oracle 11i Rapid Install Web Server Secondary Login Page Cross Site Scripting Vulnerability
  • Oracle 11i Rapid Install Web Server Secondary Login Page Cross Site Scripting Vulnerability
  • WebChat 0.78 Login.PHP SQL Injection Vulnerability
  • B1GBB 2.24 Visitenkarte.PHP Cross Site Scripting Vulnerability
  • B1GBB 2.24 Showboard.PHP SQL Injection Vulnerability
  • B1GBB 2.24 Showthread.PHP SQL Injection Vulnerability
  • PHP RRD Browser 0.2 P Parameter Directory Traversal Vulnerability [CVE-2007-092]
  • Ovidentia 5.8 Calday.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Topman.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Vacadmb.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Vacadma.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Vacadm.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Statart.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Search.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Posts.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Options.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Login.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Frchart.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Flbchart.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Fileman.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Faq.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Event.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Directory.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Articles.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Artedit.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Ovidentia 5.8 Approb.PHP Remote File Include Vulnerability [CVE-2006-281]
  • Cpanel Web Hosting Manager 11.1.0 OBJCache.PHP Remote File Include Vulnerability [CVE-2007-085]
  • Atlassian JIRA 3.7.3 BrowseProject.JSPA Cross-Site Scripting Vulnerability [CVE-2007-088]
  • CPanel 11.0 PassWDMySQL Cross-Site Scripting Vulnerability [CVE-2007-089]
  • LushiWarPlaner 1.0 Register.PHP SQL Injection Vulnerability [CVE-2007-086]
  • LushiNews 1.01 Comments.PHP SQL Injection Vulnerability [CVE-2007-086]
  • Site-Assistant 0990 Menu.PHP Remote File Include Vulnerability [CVE-2007-086]
  • OTSCMS 2.1.5 Forum.PHP Cross-Site Scripting Vulnerability [CVE-2007-084]
  • OTSCMS 2.1.5 Priv.PHP SQL Injection Vulnerability [CVE-2007-084]
  • AgerMenu 0.03 Top.Inc.PHP Remote File Include Vulnerability [CVE-2007-083]
  • Kisisel Site 2007 SQL Injection Vulnerability [CVE-2007-082]
  • LightRO CMS Inhalt.PHP Remote File Include Vulnerability [CVE-2007-082]
  • MySQLNewsEngine Affichearticles.PHP3 Remote File Include Vulnerability [CVE-2007-082]
  • Coppermine Photo Gallery 1.4.10 Multiple Remote And Local File Include Vulnerabilities [CVE-2007-083]
  • Uapplication Uphotogallery 1.1 Thumbnails.ASP HTML Injection Vulnerability [CVE-2007-081]
  • Categories Hierarchy 2.1.2 Class_Template.PHP Remote File Include Vulnerability [CVE-2007-080]
  • Geeklog 2.0 ViewInterface.PHP Remote File Include Vulnerability
  • Geeklog 2.0 BaseView.PHP Remote File Include Vulnerability [CVE-2007-081]
  • Letterman 1.2.3 ID Parameter Multiple SQL Injection Vulnerabilities [CVE-2007-038]
  • SMA-DB 0.3.9 Settings.PHP Remote File Include Vulnerability [CVE-2007-079]
  • Simple Invoices 20070125 Controller.PHP Multiple Local File Include Vulnerabilities [CVE-2007-078]
  • Mambo 4.5.4 /Joomla 1.0.10 CMS ID SQL Injection Vulnerability [CVE-2007-037]
  • Flip 2.01 Previewtheme.PHP Remote File Include Vulnerability [CVE-2007-078]
  • Flip 2.01 Options.PHP Remote File Include Vulnerability [CVE-2007-078]
  • Flip 2.01 Head.PHP Remote File Include Vulnerability [CVE-2007-078]
  • Photo Galerie 1.1 View.PHP SQL Injection Vulnerability [CVE-2007-078]
  • PortailPHP 2.0 Index.PHP Remote File Include Vulnerability [CVE-2007-082]
  • PortailPHP 2.0 Goodies.PHP Remote File Include Vulnerability [CVE-2007-082]
  • PortailPHP 2.0 Index.PHP Remote File Include Vulnerability [CVE-2007-082]
  • PortailPHP 2.0 Index.PHP Directory Traversal Vulnerability [CVE-2007-082]
  • PortailPHP 2.0 Goodies.PHP Directory Traversal Vulnerability [CVE-2007-082]
  • Rapid Classified 3.1 Reply.ASP Cross-Site Scripting Vulnerability [CVE-2006-692]
  • Rapid Classified 3.1 Reply.ASP Cross-Site Scripting Vulnerability [CVE-2006-692]
  • Rapid Classified 3.1 Reply.ASP Cross-Site Scripting Vulnerability [CVE-2006-692]
  • Rapid Classified 3.1 Search.ASP Cross-Site Scripting Vulnerability [CVE-2006-692]
  • Rapid Classified 3.1 View_Print.ASP Cross-Site Scripting Vulnerability [CVE-2006-692]
  • Rapid Classified 3.1 Viewad.ASP SQL Injection Vulnerability [CVE-2006-693]
  • phpBB++ build 100 PHPBB_Root_Path Remote File Include Vulnerability [CVE-2007-076]
  • F3Site 2.1 Index.PHP HTML Injection Vulnerability [CVE-2007-076]
  • PHPProbid 5.24 Lang.PHP Cross-Site Scripting Vulnerability [CVE-2007-075]
  • Curium CMS 1.0.3 News.PHP SQL Injection Vulnerability [CVE-2007-076]
  • Pagetool 1.07 Index.PHP SQL Injection Vulnerability [CVE-2007-340]
  • EDocStore Doc.PHP SQL Injection Vulnerability [CVE-2007-345]
  • DUClassmate 1.2 IStateParameter SQL Injection Vulnerability [CVE-2006-635]
  • DUClassmate 1.2 ICity Parameter SQL Injection Vulnerability [CVE-2006-635]
  • Key Focus Web Server 3.1 Index.WKF Cross-Site Scripting Vulnerability
  • Calendarix 0.7 Calendar.PHP SQL Injection Vulnerability [CVE-2007-318]
  • Calendarix 0.7 Calendar.PHP SQL Injection Vulnerability [CVE-2007-318]
  • 6ALBlog Index.PHP Remote File Include Vulnerability
  • SiteDepth 3.44 SiteDepth.PHP Local File Include Vulnerability
  • 6ALBlog Member.PHP SQL Injection Vulnerability
  • BugMall Shopping Cart 2.5 Cross-Site Scripting Vulnerability [CVE-2007-344]
  • phpTrafficA 1.4.2 Index.PHP SQL Injection Vulnerability
  • phpTrafficA 1.4.2 Index.PHP cross-Site Scripting Vulnerability
  • OTRS 2.0.4 Index.PL Cross-Site Scripting Vulnerability [CVE-2007-2524]

This entry was posted in N-Stalker Latest Updates. Bookmark the permalink.
Products
About N-Stalker
Contact

Rua Monte Alegre, 61 - cj 81
Sao Paulo, BRA, 05014-000
BRA Phone: +55-11-3868-1997
Contact us